Support for PKCS#11 provider in OpenSSL 3.0
This patch set is a way towards support of PKCS#11 provider with OpenSSL 3.0:
https://github.com/latchset/pkcs11-provider
It is going through several self-contained changes including the removal of the usage of deprecated OpenSSL 3.0 API for the ECDSA keys and should be final. Last missing functionality is the implementation of the digest+sign operation in the pkcs11 provider if the pkcs11 module (softhsm here) does not provide the operation as a whole, but only raw ECDSA operation (https://github.com/latchset/pkcs11-provider/issues/168).
Checklist
-
Commits have Signed-off-by:with name/author being identical to the commit author -
Code modified for feature -
Test suite updated with functionality tests -
Test suite updated with negative tests -
Documentation updated
Reviewer's checklist:
-
Any issues marked for closing are addressed -
There is a test suite reasonably covering new functionality or modifications -
Function naming, parameters, return values, types, etc., are consistent and according to CONTRIBUTING.md -
This feature/change has adequate documentation added -
No obvious mistakes in the code
Edited by Jakub Jelen