[Opendnssec-develop] proposed libhsm API

John Dickinson jad at jadickinson.co.uk
Fri Apr 24 12:02:05 UTC 2009

On 24 Apr 2009, at 12:39, Ray.Bellis at nominet.org.uk wrote:

> re:
>  const hsm_key_t *hsm_generate_rsa_key(unsigned long keysize);
> Do we need a parameter to say _which_ HSM the key will be generated  
> on.
> For instance, when adding a second HSM to an existing system (so  
> that the
> old can be eventually decommissioned) we might need to specify that  
> all
> news keys are created on the new HSM and not on the old one.

Yes. and maybe a few other things like exponent size.
John Dickinson

I am riding from Lands end to John O'Groats to raise money for  
Parkinson's Disease Research. Please sponsor me here http://justgiving.com/pedalforparkinsons2009

More information about the Opendnssec-develop mailing list