Highest Voted 'openssl-engine' Questions

1

vote

1 answer

Proper implementation of an OpenSSL RSA engine: questions about rsa_meth_st

Overview I have a few specific questions regarding the implementation of the rsa_meth_st (a.k.a. RSA_METHOD) in openSSL, however I'm also generally confused about where exactly my engine is (or should be) "hooked" by the user, when doing standard…

asked Aug 23 '17 at 14:27

asmvolatile

522
5
22

1

vote

0 answers

RSA-engine could not be loaded by openssl configuration file

Well I am new to engines in openssl . I have implemented a rsa engine. When i load it using envirmental variables by following command it works. openssl engine -t -c rsaa-engine openssl rsautl -encrypt -in msg.txt -pubin -inkey pubkey-B.pem -engine…

c openssl php-openssl openssl-engine

asked Jul 06 '17 at 13:36

Khurram

71
3

1

vote

0 answers

OPENSSL by Cavium

Cavium provides a configured OPENSSL for better performance on their hardware. It usage must lowers the CPU utilization by crypto operations offloading. I wanted to ask whether we can install Cavium OPENSSL Toolkit on Linux OS (on Cavium hardware),…

openssl openssl-engine

asked Aug 08 '16 at 23:32

neutrino

17
10

1

vote

2 answers

Openssl Engine for iOS is not loaded

We have a project that needs to run an openssl engine on iOS device. We have compiled the .so file for the test engine and it works fine with the command line. But when we put it in the iOS project and tries to load the engine, the load step always…

ios openssl openssl-engine

asked Jan 14 '16 at 21:48

Summer

488
4
14

1

vote

2 answers

How to do ECDHE handshake without exportable private key

I'm building an OpenSSL engine that implements ECDSA_METHOD, which includes signature creation and signature verification functions. Since the only usage of ECDHE private key is related to signature creation, having the key exported from the engine…

ssl openssl ecdsa openssl-engine ecdhe

asked Nov 28 '15 at 22:26

Oleg Gryb

5,122
1
28
40

1

vote

0 answers

How to install ecs_locl.h and ech_locl.h headres with OpenSSL build?

Two headers in subject that define "struct ecdsa_method" and "struct ecdh_method" are not copied to the target directory when you build and install openssl using traditional commands: config make install However, types that use these structures,…

openssl openssl-engine

asked Nov 28 '15 at 21:59

Oleg Gryb

5,122
1
28
40

0

votes

0 answers

osslsigncode Sign with Hardware Token issue (Failed to set 'dynamic' engine)

I'm trying to sign EXE files with osslsigncode, my cert and key are on a Safenet Hardware token which the system is able to read : :~# pkcs11-tool --module /usr/lib/pkcs11/libeToken.so --login --list-objects --id 01 Using slot 0 with a present token…

openssl pkcs#11 openssl-engine safenet

asked Aug 30 '23 at 14:22

Ben74

11
3

0

votes

0 answers

Random number generation in Openssl provider

I am trying to implement a openssl provider (say x-prov) with random number generation from HSM. The x-prov provider during the initialization (in OSSL_provider_init function) uses the RAND_bytes api of openssl. I execute the openssl command…

openssl cryptography openssl-engine

asked Aug 02 '23 at 04:35

sujay

1
1

0

votes

0 answers

CURL does not show all OPENSSL engines on Linux

When I run bash-4.2# openssl engine (rdrand) Intel RDRAND engine (dynamic) Dynamic engine loading support (pkcs11) pkcs11 engine But when I run bash-4.2# OPENSSL_CONF=/etc/pki/tls/openssl.cnf curl --engine list Build-time engines: rdrand …

curl openssl amazon-linux-2 openssl-engine

asked Jul 28 '23 at 10:29

Rizwan Syed

1

0

votes

0 answers

rsa padding error on opensssl 3.0 and libp11 with an eToken

TLS 1.2 (RSA mode: ex AES256-GCM-SHA384 ) does't work on red hat 9 (openssl 3.0.7-16.el9_2 ) with libp11 (version 0.4.7 and 0.4.8 and 0.4.11 and 0.4.12). I use an eToken (5110) to store the private key. The server is a stunnel with openssl 3.0 and…

pkcs#11 openssl-engine e-token

asked Jul 10 '23 at 13:38

df7108

1
1

0

votes

0 answers

Unable to Connect Using TLS_AES_128_CCM_SHA256 Cipher Despite Being Listed in nginx.conf

I am using Ubuntu 20.04 server, running Openssl 1.1.1t, and nginx=1.21.6. I've configured nginx.conf to allow a set of ssl ciphers: nginx.conf ssl_ciphers…

nginx encryption openssl nginx-config openssl-engine

asked Jul 04 '23 at 05:43

raw-bean

1

0

votes

0 answers

About whether pycurl supports loading openssl engine

Hello guys: I would like to ask if python2 can load openssl engine via pycurl? If it supports please how to load it? I see that there is an SSLENGINE option in pycurl, but by specifying the correct engine path, an error is always reported that the…

python openssl pycurl openssl-engine

asked Jun 16 '23 at 03:33

jwei teng

1

0

votes

0 answers

OpenSSL 3.x Migration from DH_meth_set_bn_mod_exp() to provider architecture

We have a custom implementation for computing the Diffie Hellman key that uses hardware acceleration. We had been using DH_meth_set_bn_mod_exp() to register the acceleration function. As of OpenSSL3.0 this function (as well as others) has been…

openssl openssl-engine

asked May 17 '23 at 15:29

Andrew Sporner

1

0

votes

1 answer

Cipherd not supported by SSL engine

I swear I have looked all over them place but I cannot find an explanation or solution to this problem: I have 2 environments (DEV and TEST). I was recently tasked with limiting the CIPHER exposure when opening ports (LINUX). In DEV, there are no…

spring encryption openssl-engine

asked May 09 '23 at 12:24

Allan B.

11
1

0

votes

1 answer

Integrate Sophos Firewall with Azure AD (openssl)

please help me on this error Did as in the bellow link, [https://community.sophos.com/sophos-xg-firewall/f/recommended-reads/125872/sophos-firewall-integrate-sophos-firewall-with-azure-ad#mcetoc_1etvmh9lj1] openssl x509 -req -extensions…

azure azure-active-directory openssl openssl-engine

asked Feb 02 '23 at 16:37

sasith abey

1

Questions tagged [openssl-engine]