[openssl-dev] [openssl.org #3872] EVP_PKEY_asn1_set_item

Sergey Agievich via RT rt at openssl.org
Wed May 27 11:58:48 UTC 2015


Please find file attached: EVP_PKEY_asn1_set_item.patch.
This is a patch to allow setting item_verify and item_sign handlers
in the internal structure evp_pkey_asn1_method_st
(see crypto/asn1/asn1_locl.h).

These handlers are called when a signature is encountered requiring
special handling. For example, item_verify and item_sign are used
in the implementation of RSA-PSS (see crypto/rsa/rsa_ameth.c) to deal with
X509_ALGOR mirror-ASN.1 type.

Currently OpenSSL doesn't provide write access to item_verify and
item_sign fields from external engines and special handling for non-standard
signature algorithms is impossible.

Type of request: enhancement request.

Version of OpenSSL: 1.0.2a.

Operating system: doesn't matter.

Affected files:


Patch created using the command:
diff -rupN openssl-1.0.2a/ openssl-1.0.2a-EVP_PKEY_asn1_set_item/ >

To apply pach use following command in current OpenSSL root dev. directory:

patch -p1 -l -u -b -i EVP_PKEY_asn1_set_item.patch

Sergey Agievich
Belarusian State University

-------------- next part --------------
A non-text attachment was scrubbed...
Name: EVP_PKEY_asn1_set_item.patch
Type: text/x-patch
Size: 2838 bytes
Desc: not available
URL: <http://mta.openssl.org/pipermail/openssl-dev/attachments/20150527/2d38a7e1/attachment.bin>

More information about the openssl-dev mailing list