I said in the note
below: "(And not me. I am taking the 1.1 approach to getting ECDH.
working in engine.) " Now that OpenSC's libp11 and engine_pkcs11 have code committed for use with OpenSSL-1.1-pre2 to use ECDH, I created patches for libp11 and engine_pkcs11 to use 1.0.2. This requires libp11 to be compiled with crypto/ecdh/ech_locl.h to gain access to the hidden ecdh_meth_st. This is only for OpenSSL-1.0.2, and does not require any changes to OpenSSL. This is more of a hack, and intended for anyone who can't wait for 1.1, and I don't see this being added to the libp11, Pointers to the patches can be found: https://github.com/OpenSC/libp11/issues/49 Comments welcome. (This does not address the issue Alexander has with using software-generated ephemeral keys.) On 1/27/2016 9:54 PM, Alexander Gostrer
wrote:
-- Douglas E. Engert <deeng...@gmail.com> |
_______________________________________________ openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev