[openssl-users] engine interface for genrsa

William Roberts bill.c.roberts at gmail.com
Fri Apr 13 16:17:28 UTC 2018

I am currently working on writing an openssl engine
to interface with a piece of hardware.

I am trying to understand how to implement
rsa key generation, where the private key
bytes would not be available.

I am currently invoking the

openssl genrsa -engine foo

Which is calling my callback for RSA keygen, registered via ENGINE_set_RSA()
and I set the flags: RSA_FLAG_EXT_PKEY.

However, genrsa app seems to want rsa->e set here:

I can't find documentation on how to handle the keygen interface
for RSA.

Can someone point me in the right direction?


More information about the openssl-users mailing list