Hello,
I'm working on development of OpenSSL ENGINE that integrates
post-quantum algorithms (new NIDs). During integration I
need to modify OpenSSL code to add custom function, but would
prefer not to need add anything to OpenSSL code (so engine
can be dynmicaly loaded by any modern OpenSSL).
So
Hi Nobuo,
I'm afraid a bit more details are needed. Not sure,
what you mean by "enabling ephemeral key for SSL/TLS".
For example, TLSv1.3 uses only key exchanges that offer
forward secrecy, so one way to "enable ephemeral" is
to use this new version of TLS protocol.
If you wish see an example of
Can you point to instructions on how to load provider
it into OpenSSL?
Is there something similar to "[engine_section]",
that can be used to configure loading from openssl.conf?
BR,
Kris
On 9/15/21 4:39 PM, Matt Caswell wrote:
> Another, slightly more complicated, but fully self contained provid
Great, thanks!
On 15 September 2021 17:07:59 BST, Matt Caswell wrote:
>
>
>On 15/09/2021 16:57, Matt Caswell wrote:
>>
>>
>> On 15/09/2021 16:50, Kris Kwiatkowski wrote:
>>> Can you point to instructions on how to load provider
>>> it into O
Hello,
On my server, I would like to support 2 certificate chains. One chain
would be signed with RSA and the other with EdDSA (so 2 complatelly different
chains with 2 root certificates). Then, let say, new clients that support
EdDSA will choose to use it, otherwise I'll serve RSA for everybody
