Branch: refs/heads/master
Home: https://github.com/OpenSC/libp11
Commit: b487da5a0f69576139949d7235b988e822137cab
https://github.com/OpenSC/libp11/commit/b487da5a0f69576139949d7235b988e822137cab
Author: Stanislav Levin <sl...@al...>
Date: 2019-10-04 (Fri, 04 Oct 2019)
Changed paths:
M src/p11_rsa.c
Log Message:
-----------
Set RSA_FLAG_EXT_PKEY flag
>From docs:
"""
This flag means the private key operations will be handled by
rsa_mod_exp and that they do not depend on the private key
components being present:
for example a key stored in external hardware. Without this flag
bn_mod_exp gets called when private key components are absent.
"""
Setting this flag allows BIND to identify RSA key (stored on a HSM)
as a private key. Otherwise, BIND fails to sign and to verify signs.
Fixes: https://github.com/OpenSC/libp11/issues/304
Signed-off-by: Stanislav Levin <sl...@al...>
|
