[openssl-users] How to override methods in EVP_PKEY_METHOD structure that is attached to a EVP_PKEY_CTX?

Jakob Bohm jb-openssl at wisemo.com
Fri Feb 17 15:09:17 UTC 2017

On 17/02/2017 15:25, Stephan Mühlstrasser wrote:
> Hi,
> we use OpenSSL 1.0.2 together with PKCS#11 tokens by plugging methods 
> into the RSA_METHOD structure that interface with the PKCS#11 token, 
> and this works fine so far. However, for creating RSA signatures with 
> PSS padding this strategy doesn't work anymore, because OpenSSL wants 
> to directly encrypt with the private key in this case, which is not 
> possible in PKCS#11.
I believe some PKCS#11 tokens can do this by using CKM_RSA_X_509


Jakob Bohm, CIO, Partner, WiseMo A/S.  https://www.wisemo.com
Transformervej 29, 2860 Søborg, Denmark.  Direct +45 31 13 16 10
This public discussion message is non-binding and may contain errors.
WiseMo - Remote Service Management for PCs, Phones and Embedded

More information about the openssl-users mailing list