On Tue, May 03, 2011, Nicholas Wehr wrote: > thanks > > some detail just in case: > > i was actually able to get it to link and invoke the engine functions. when > trying to sign data, the call would fail because the pkey structure was not > correctly filled out by the engine, the field "ameth" in the structure is > left NULL. > > if i try the same call against the openssl 0.9.8 branch, the call correctly > works with the trousers TPM engine. >
That suggests that an EVP_PKEY structure is being initialised incorrectly. In previous versions of OpenSSL an application could (but it was strongly advised against) manually set the pkey->pkey.rsa structure and type. If the function EVP_PKEY_assign_RSA() is used this should resolve that issue: that function exists in OpenSSL 0.9.8 too so it should work in both versions. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org