Re: [openssl.org #2459] ecdsa_method declaration prevents use in implementing a dynamic engine

Wed, 23 Feb 2011 12:08:39 -0800 


On 2/23/2011 12:31 PM, Kent Yoder via RT wrote:

Hi,

   It appears that the way ECDSA_METHOD was defined prevents it from
being used unless the internal header ecs_locl.h is included.  This
prevents it from being used for example to implement a stand-alone
dynamic engine for ECDSA, since the internal header is not available.

   If possible i would like to see a fix applied to openssl stable, due
to the fact that no ECDSA engines can be implemented without the fix.


I second this motion! I have modifications to the OpenSC engine_pkcs11 and
libp11 packages to implement EDCSA signatures via the engine that require
ecs_locl.h to get the ECDSA_METHOD.




Thanks,
Kent

On Wed, Feb 23, 2011 at 10:03 AM, Mounir IDRASSI
<mounir.idra...@idrix.net>  wrote:


Yes, you should open a ticket on the issue tracker. However, I'm not sure if
Dr. Stephen Henson will agree to add this change to the current stable
versions (0.9.8x and 1.0.0x) as he usually delays header changes till the
1.1.0 release.

--
Mounir IDRASSI
IDRIX
http://www.idrix.fr

On 2/23/2011 4:44 PM, Kent Yoder wrote:


Thanks Mounir,

   I'd like to use ECDSA_METHOD to implement a dynamic engine for
ecdsa.  I want to avoid copying the header files from the upstream
source so that my engine package can compile stand-alone.  This should
be in line with the way dynamic engines have worked for other
algorithms since 0.9.8, if I understand correctly.

   Should I open an item in the issue tracker for this?

Thanks,
Kent

On Tue, Feb 22, 2011 at 8:04 PM, Mounir IDRASSI
<mounir.idra...@idrix.net>    wrote:


Hi,

In the case of RSA_METHOD, it is working because the underlying type
rsa_meth_st is defined in rsa.h, whereas for ECDSA_METHOD, the underlying
type ecdsa_method is not exported by the public headers: it is defined in
the internal OpenSSL header ecs_locl.h found in the source distribution

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
Development Mailing List                       openssl-dev@openssl.org
Automated List Manager                           majord...@openssl.org




--

 Douglas E. Engert  <deeng...@anl.gov>
 Argonne National Laboratory
 9700 South Cass Avenue
 Argonne, Illinois  60439
 (630) 252-5444
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
Development Mailing List                       openssl-dev@openssl.org
Automated List Manager                           majord...@openssl.org






















					Reply via email to