From mboxrd@z Thu Jan  1 00:00:00 1970
From: David Howells <dhowells@redhat.com>
Date: Wed, 17 Oct 2018 14:40:43 +0000
Subject: Re: [PATCH] support other engines for module signing
Message-Id: <10177.1539787243@warthog.procyon.org.uk>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
List-Id: <keyrings.vger.kernel.org>
References: <alpine.LFD.2.21.1810171142300.20697@hatman>
In-Reply-To: <alpine.LFD.2.21.1810171142300.20697@hatman>
To: keyrings@vger.kernel.org

James Bottomley <James.Bottomley@HansenPartnership.com> wrote:

> > Allow sign-file to use any available OpenSSL engine, not limited
> > to PKCS-11 by using "enginename:keyname" syntax.  We have to do a
> > special case for pkcs11 key name passing.
> 
> There's actually already a proposal for this which David (Howells) has
> been ignoring:

Not so much ignoring as it just keeps getting buried.

> https://marc.info/?l=linux-keyrings&m1845297302654&w=2
> 
> It tries to use the correct UI callbacks, which yours is missing.

If this works for Mark and Dave, then I could take this instead.

David