Rishi Renjith wrote:
I also tried this test.*cryptoadm disable provider=mca/0 mechanism=all*In this case, the handshake fails. But..., if i disable only RSA in the card, cryptoadm disable provider=mca/0 mechanism=<all RSA mechanisms> *it works, which means that the card is currently used for AES jobs and RSA joba are done at the software level. *
Ok, looks like one of the SSL devs in mozilla.dev.tech.crypto (Nelson) thinks this is a question for the Sun Metaslot folks. I'm not sure why this works in mod_ssl with openssl, it may be that they explicitly configure things to work only in hardware.
Description: S/MIME Cryptographic Signature