overload key signing function for opensc tokens...
Markus Friedl
markus at openbsd.org
Tue Apr 8 07:32:00 EST 2003
On Mon, Apr 07, 2003 at 12:25:12PM -0500, Kevin Stefanik wrote:
> My best guess... openssl immediately uses the engine if RSA_FLAG_SIGN_VER flag
> is set - it doesn't check if there is an engine defined. In this case, in
> my debugging, rsa.engine is 0x0 and the ENGINE_get_RSA() called from
> RSA_sign call doesn't verify it before referencing an element of the
> structure, so it segfaults.
>
> Would a cleaner patch be to use the sc_get_engine() and assign an engine?
> That doesn't seem to be happening in sc_read_pubkey at the moment. In fact,
> I can't see that sc_get_engine is called anywhere. I'm currently using
> 0.9.7a, so shouldn't USE_ENGINE be undefined? What if there's no USE_ENGINE?
USE_ENGINE is for the 0.9.6-engine interface.
in 0.9.7 the engine interface was removed.
More information about the openssh-unix-dev
mailing list