Call own sign/verify callback - engine

Pedro Lopes pedroterrosolopes at gmail.com
Thu Feb 6 16:23:01 UTC 2020


Hello,

I'd like that my callback is called when a sign/verify is being requested by
*EVP_DigestSignFinal()* function.
I've tried add a EVP_PKEY_METHOD to app_methods stack, that works good
however doesnt fit on my solution.

I noticed that creating an engine and set pkey methods there, it could solve
it.
I looked at gost engine to have in mind what I should do.
So, in engine I call *ENGINE_set_pkey_meths()*, so far so good.

The issue occurs when I try to assign a RSA key. I call
*EVP_PKEY_assign(*outKey, NID_sha1WithRSAEncryption, key);*. The error
returned is *pkey_set_type:unsupported algorithm*.

Most probably I'm missing something.

If *EVP_PKEY_assign()*worked I will call *EVP_DigestSignInit(ctx, NULL,
sha1(), engine, pkey)*.

Thanks in advance.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20200206/3253de82/attachment.html>


More information about the openssl-users mailing list