Key Management question
106 views
Skip to first unread message
tomasz bartczak
Aug 2, 2024, 4:39:01 AM8/2/24
to openss...@openssl.org
Hi
I am working on my own provider for RSA algorithm. I need to implement key import method for the key management. The problem that I am facing is that I need to use internal low level OpenSSL API, which is not exposed to the OpenSSL user. I need to implement something like in providers/implementations/keymgmt/rsa_kmgmt.c. I would like to build my provider out of the OpenSSL tree.
Is there a way I could in my import method call the import method from the default RSA provider? Or maybe is there a way to gain access to internal OpenSSL API?
Thanks
Tom
Neil Horman
Aug 2, 2024, 7:16:23 AM8/2/24
to tomasz bartczak, openss...@openssl.org
what API's are you looking to use within your provider?
--
You received this message because you are subscribed to the Google Groups "openssl-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to openssl-user...@openssl.org.
To view this discussion on the web visit https://groups.google.com/a/openssl.org/d/msgid/openssl-users/eenswcrnwgkdsqqpyuuw%40wauw.
tomasz bartczak
Aug 2, 2024, 8:38:47 AM8/2/24
to Neil Horman, openss...@openssl.org
Hi Niel,
I am trying to use the following methods:
ossl_rsa_get0_pss_params_30
ossl_rsa_pss_params_30_fromdata
ossl_rsa_pss_params_30_is_unrestricted
ossl_rsa_get0_libctx
ossl_rsa_fromdata
Temat: Re: Key Management question
Data: 2024-08-02 13:16
Nadawca: "Neil Horman" <nho...@openssl.org>
Adresat: "tomasz bartczak" <tba...@poczta.fm>;
DW: openss...@openssl.org;
>
> what API's are you looking to use within your provider?
>
>
I am trying to use the following methods:
ossl_rsa_get0_pss_params_30
ossl_rsa_pss_params_30_fromdata
ossl_rsa_pss_params_30_is_unrestricted
ossl_rsa_get0_libctx
ossl_rsa_fromdata
Temat: Re: Key Management question
Data: 2024-08-02 13:16
Nadawca: "Neil Horman" <nho...@openssl.org>
Adresat: "tomasz bartczak" <tba...@poczta.fm>;
DW: openss...@openssl.org;
>
> what API's are you looking to use within your provider?
>
> On Fri, Aug 2, 2024 at 4:38 AM tomasz bartczak <tba...@poczta.fm> wrote:
>
>>
>>
>> Hi
>>
>> I am working on my own provider for RSA algorithm. I need to
implement key import method for the key management. The problem that I am
facing is that I need to use internal low level OpenSSL API, which is not exposed
to the OpenSSL user. I need to implement something like in providers/implementations/keymgmt/rsa_kmgmt.c.
I would like to build my provider out of the OpenSSL tree.
>>
>> Is there a way I could in my import method call the import
method from the default RSA provider? Or maybe is there a way to gain access to
internal OpenSSL API?
>>
>>
>
>>
>>
>> Hi
>>
>> I am working on my own provider for RSA algorithm. I need to
implement key import method for the key management. The problem that I am
facing is that I need to use internal low level OpenSSL API, which is not exposed
to the OpenSSL user. I need to implement something like in providers/implementations/keymgmt/rsa_kmgmt.c.
I would like to build my provider out of the OpenSSL tree.
>>
>> Is there a way I could in my import method call the import
method from the default RSA provider? Or maybe is there a way to gain access to
internal OpenSSL API?
>>
>>
>> Thanks
>>
>> Tom
>>
>> --
>> You received this message because you are subscribed to the Google Groups "openssl-users" group.
>> To unsubscribe from this group and stop receiving emails from it, send an email to openssl-user...@openssl.org.
>> To view this discussion on the web visit https://groups.google.com/a/openssl.org/d/msgid/openssl-users/eenswcrnwgkdsqqpyuuw%40wauw.
>>
>
> --
> You received this message because you are subscribed to the Google Groups "openssl-users" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to openssl-user...@openssl.org.
> To view this discussion on the web visit https://groups.google.com/a/openssl.org/d/msgid/openssl-users/CAJbOq17%2BrSGJuiGmkP8uGXxCXBXLMrdvQZiN2Oj2DDto1MFr5A%40mail.gmail.com.
>> Thanks
>>
>> Tom
>>
>> --
>> You received this message because you are subscribed to the Google Groups "openssl-users" group.
>> To unsubscribe from this group and stop receiving emails from it, send an email to openssl-user...@openssl.org.
>> To view this discussion on the web visit https://groups.google.com/a/openssl.org/d/msgid/openssl-users/eenswcrnwgkdsqqpyuuw%40wauw.
>>
>
> --
> You received this message because you are subscribed to the Google Groups "openssl-users" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to openssl-user...@openssl.org.
>
Neil Horman
Aug 2, 2024, 9:07:14 AM8/2/24
to tomasz bartczak, openss...@openssl.org
I think most of the data extracted by those apis is available via the public function EVP_PKEY_fromdata, no?
tomasz bartczak
Aug 5, 2024, 10:20:32 AM8/5/24
to Neil Horman, openss...@openssl.org
Makes perfect sense, thanks a lot!Temat: Re: Key Management question
Data: 2024-08-02 15:07
DW: "openss...@openssl.org" <openss...@openssl.org>;
>
> I think most of the data extracted by those apis is available via the public function EVP_PKEY_fromdata, no?
>
>> Adresat: "tomasz bartczak" &lt;tba...@poczta.fm>;
>
Data: 2024-08-02 15:07
DW: "openss...@openssl.org" <openss...@openssl.org>;
>
> I think most of the data extracted by those apis is available via the public function EVP_PKEY_fromdata, no?
>
> On Fri, Aug 2, 2024 at 8:38 AM tomasz bartczak <tba...@poczta.fm> wrote:
>
>> Hi Niel,
>> I am trying to use the following methods:
>> ossl_rsa_get0_pss_params_30
>> ossl_rsa_pss_params_30_fromdata
>> ossl_rsa_pss_params_30_is_unrestricted
>> ossl_rsa_get0_libctx
>> ossl_rsa_fromdata
>> Temat: Re: Key Management question
>> Data: 2024-08-02 13:16
>> Nadawca: "Neil Horman" &lt;nho...@openssl.org>
>
>> Hi Niel,
>> I am trying to use the following methods:
>> ossl_rsa_get0_pss_params_30
>> ossl_rsa_pss_params_30_fromdata
>> ossl_rsa_pss_params_30_is_unrestricted
>> ossl_rsa_get0_libctx
>> ossl_rsa_fromdata
>> Temat: Re: Key Management question
>> Data: 2024-08-02 13:16
>> Adresat: "tomasz bartczak" &lt;tba...@poczta.fm>;
>> DW: openss...@openssl.org;
>>
>>>
>>> what API's are you looking to use within your provider?
>>>
>>> On Fri, Aug 2, 2024 at 4:38 AM tomasz bartczak &lt;tba...@poczta.fm> wrote:
>>>
>>>>
>>
>>>>
>>>> Hi
>>>>
>>>> I am working on my own provider for RSA algorithm. I need to
>> implement key import method for the key management. The problem that I am
>> facing is that I need to use internal low level OpenSSL API, which is not exposed
>> to the OpenSSL user. I need to implement something like in providers/implementations/keymgmt/rsa_kmgmt.c.
>> I would like to build my provider out of the OpenSSL tree.
>>>>
>>>> Is there a way I could in my import method call the import
>> method from the default RSA provider? Or maybe is there a way to gain access to
>> internal OpenSSL API?
>>>>
>>>> &nbsp;
>>
>>>
>>> what API's are you looking to use within your provider?
>>>
>>> On Fri, Aug 2, 2024 at 4:38 AM tomasz bartczak &lt;tba...@poczta.fm> wrote:
>>>
>>>>
>>
>>>>
>>>> Hi
>>>>
>>>> I am working on my own provider for RSA algorithm. I need to
>> implement key import method for the key management. The problem that I am
>> facing is that I need to use internal low level OpenSSL API, which is not exposed
>> to the OpenSSL user. I need to implement something like in providers/implementations/keymgmt/rsa_kmgmt.c.
>> I would like to build my provider out of the OpenSSL tree.
>>>>
>>>> Is there a way I could in my import method call the import
>> method from the default RSA provider? Or maybe is there a way to gain access to
>> internal OpenSSL API?
>>>>
>>>>
>>>> Thanks
>>>>
>>>> Tom
>>>>
>>>> --
>>>> You received this message because you are subscribed to the Google Groups "openssl-users" group.
>>>> To unsubscribe from this group and stop receiving emails from it, send an email to openssl-user...@openssl.org.
>>>> To view this discussion on the web visit https://groups.google.com/a/openssl.org/d/msgid/openssl-users/eenswcrnwgkdsqqpyuuw%40wauw.
>>>>
>>>
>>> --
>>> You received this message because you are subscribed to the Google Groups "openssl-users" group.
>>> To unsubscribe from this group and stop receiving emails from it, send an email to openssl-user...@openssl.org.
>>> To view this discussion on the web visit https://groups.google.com/a/openssl.org/d/msgid/openssl-users/CAJbOq17%2BrSGJuiGmkP8uGXxCXBXLMrdvQZiN2Oj2DDto1MFr5A%40mail.gmail.com.
>>>
>>
>
> --
> You received this message because you are subscribed to the Google Groups "openssl-users" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to openssl-user...@openssl.org.
> To view this discussion on the web visit https://groups.google.com/a/openssl.org/d/msgid/openssl-users/CAJbOq16VNiQYvbiDRR30n-HxUBiY023E4x5nUdzj7VByPOpNjQ%40mail.gmail.com.
>>>> Thanks
>>>>
>>>> Tom
>>>>
>>>> --
>>>> You received this message because you are subscribed to the Google Groups "openssl-users" group.
>>>> To unsubscribe from this group and stop receiving emails from it, send an email to openssl-user...@openssl.org.
>>>> To view this discussion on the web visit https://groups.google.com/a/openssl.org/d/msgid/openssl-users/eenswcrnwgkdsqqpyuuw%40wauw.
>>>>
>>>
>>> --
>>> You received this message because you are subscribed to the Google Groups "openssl-users" group.
>>> To unsubscribe from this group and stop receiving emails from it, send an email to openssl-user...@openssl.org.
>>> To view this discussion on the web visit https://groups.google.com/a/openssl.org/d/msgid/openssl-users/CAJbOq17%2BrSGJuiGmkP8uGXxCXBXLMrdvQZiN2Oj2DDto1MFr5A%40mail.gmail.com.
>>>
>>
>
> --
> You received this message because you are subscribed to the Google Groups "openssl-users" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to openssl-user...@openssl.org.
>
Reply all
Reply to author
Forward
0 new messages