[openssl-users] Implementing ECDSA in an engine

Dmitry Belyavsky beldmit at gmail.com
Fri Jun 26 16:51:42 UTC 2015

Hello Reinier,

On Fri, Jun 26, 2015 at 7:47 PM, Reinier Torenbeek <
reinier.torenbeek at gmail.com> wrote:

> Hi,
> The mechanism for implementing ECDSA in my own engine is unclear to me.
> Unfortunately, none of the example engines implement ECDSA so it is hard
> for me to find answers.
> Invoking ENGINE_set_ECDSA() does not seem to be sufficient: my setup,
> sign and verify methods never get invoked. Stepping through the openssl
> code, it looks like I also need to register my own EVP_PKEY_EC method.
> That looks pretty complicated and I do not understand why that is
> required in the first place if I only want to replace the ECDSA signing
> and verification methods.
> Can someone confirm that registering my own EVP_PKEY_EC method is indeed
> the approach I have to take, or is there a shorter path to achieve my goal?

I did not find a way shorter then provide own EVP_PKEY_METHOD. But it works
for me this way.

SY, Dmitry Belyavsky
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20150626/fa91895b/attachment.html>

More information about the openssl-users mailing list