[openssl-users] Error in X509_check_private_key when using pkcs11 engine (OpenSSL 1.0.2j)
Dr. Stephen Henson
steve at openssl.org
Fri Sep 15 22:18:50 UTC 2017
On Fri, Sep 15, 2017, Anton Gerasimov wrote:
> So it turns out load_privkey() function of engine_pkcs11.so sets pub_key
> in the returned 'struct ec_key_st' to NULL. Is it a failure inside
> engine_pkcs11.so?
>
Well sort of. OpenSSL requires that public key components are set for private
keys (except for a legacy RSA case).
Steve.
--
Dr Stephen N. Henson. OpenSSL project core developer.
Commercial tech support now available see: http://www.openssl.org
More information about the openssl-users
mailing list