Implement OpenSSL EVP_PKEY methods for EC/RSA keys #65
Labels
Comments
|
@raghuncstate Patches are allways welcome ! ;-) I think, I'd like most about this, that no external program would be required for generating TPM keys. Do I understand this correctly ? |
AndreasFuchsTPM
added
enhancement
|
Correct. That would be one of the benefits. Opened PR #89 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Request to implement the OpenSSL EVP_PKEY api's for the engine. This way, we can use TPM keys to sign X509 certificate using the OpenSSL x509 APIs and almost any EVP API's. We can also hook up the engine to digest using the TPM which may be useful when we want to sign using a restricted signing key.
This will require hooking/assigning the engine when the EVP_PKEYS are created during loadkey and also implementing the EVP_PKEY_METHODS.
Patches welcome ?
The text was updated successfully, but these errors were encountered: