Re: [Openvpn-devel] [PATCH 0/1] add engine keys keys

2017-11-01 Thread Selva
Hi, On Wed, Nov 1, 2017 at 2:18 PM, Steffan Karger wrote: > Hi, > > On 29-10-17 22:03, Selva wrote: > > I would like to see new features transparently supported on Windows > > as well without the need for too much extra code and associated > > maintenance burden. Our

Re: [Openvpn-devel] [PATCH 0/1] add engine keys keys

2017-11-01 Thread Steffan Karger
Hi, On 29-10-17 22:03, Selva wrote: > I would like to see new features transparently supported on Windows > as well without the need for too much extra code and associated > maintenance burden. Our 'cryptoapicert' implementation is already in > need of a major re-write to support TLS 1.2 and

Re: [Openvpn-devel] [PATCH 0/1] add engine keys keys

2017-10-31 Thread Jan Just Keijser
Hi James, On 30/10/17 15:09, James Bottomley wrote: On Sun, 2017-10-29 at 17:03 -0400, Selva wrote: On Sun, Oct 29, 2017 at 12:04 PM, James Bottomley wrote: On Sun, 2017-10-29 at 16:24 +0100, Gert Doering wrote: On Sat, Oct 28, 2017 at 01:02:27PM

Re: [Openvpn-devel] [PATCH 0/1] add engine keys keys

2017-10-30 Thread James Bottomley
On Sun, 2017-10-29 at 17:03 -0400, Selva wrote: > Hi, > > On Sun, Oct 29, 2017 at 12:04 PM, James Bottomley hansenpartnership.com> wrote: > > > > > On Sun, 2017-10-29 at 16:24 +0100, Gert Doering wrote: > > > > > > Hi, > > > > > > On Sat, Oct 28, 2017 at 01:02:27PM +0100,

Re: [Openvpn-devel] [PATCH 0/1] add engine keys keys

2017-10-29 Thread Selva
Hi, On Sun, Oct 29, 2017 at 12:04 PM, James Bottomley wrote: > On Sun, 2017-10-29 at 16:24 +0100, Gert Doering wrote: > > Hi, > > > > On Sat, Oct 28, 2017 at 01:02:27PM +0100, James Bottomley wrote: > > > > > > Engine keys are an openssl concept for a key

Re: [Openvpn-devel] [PATCH 0/1] add engine keys keys

2017-10-29 Thread Arne Schwabe
Am 29.10.17 um 16:24 schrieb Gert Doering: > Hi, > > On Sat, Oct 28, 2017 at 01:02:27PM +0100, James Bottomley wrote: >> Engine keys are an openssl concept for a key file which can only be >> understood by an engine (usually because it's been wrapped by the >> engine itself).  We use this for TPM

Re: [Openvpn-devel] [PATCH 0/1] add engine keys keys

2017-10-29 Thread James Bottomley
On Sun, 2017-10-29 at 16:24 +0100, Gert Doering wrote: > Hi, > > On Sat, Oct 28, 2017 at 01:02:27PM +0100, James Bottomley wrote: > > > > Engine keys are an openssl concept for a key file which can only be > > understood by an engine (usually because it's been wrapped by the > > engine itself).  

Re: [Openvpn-devel] [PATCH 0/1] add engine keys keys

2017-10-29 Thread Gert Doering
Hi, On Sat, Oct 28, 2017 at 01:02:27PM +0100, James Bottomley wrote: > Engine keys are an openssl concept for a key file which can only be > understood by an engine (usually because it's been wrapped by the > engine itself).  We use this for TPM engine keys, so you can either > generate them

[Openvpn-devel] [PATCH 0/1] add engine keys keys

2017-10-28 Thread James Bottomley
Engine keys are an openssl concept for a key file which can only be understood by an engine (usually because it's been wrapped by the engine itself).  We use this for TPM engine keys, so you can either generate them within your TPM or wrap them from existing private keys.  Once wrapped, the keys