CSRs generated from CloudHSM EC key fail verification

amazon-web-services openssl

The OpenSSL engine for CloudHSM doesn't support ECC keys.

This is stated implicitly by https://docs.aws.amazon.com/cloudhsm/latest/userguide/openssl-library.html (it's not in the list).

What confused me is that https://docs.aws.amazon.com/cloudhsm/latest/userguide/ki-openssl-sdk.html#ki-openssl-4 implies that it is supported.

It's not. Use one of the other client libraries (JCE, PKCS#11, KSP or CNG).

(I confirmed this with AWS support)

Related

RAID 5 RECONSTRUCT with RAID Reconstructor
How do I manage last level cache among virtual machines?
How do I connect my FreeNAS File Server to my Mac OS X Directory Server?
different between tracert(windows) and traceroute(linux)
Limit of maximum of $f_{n}(x)=\frac{1}{n}(\sin{x}+\sin{(2x)}+\cdots+\sin{(nx)})$
$x^n - a$ is irreducible over $\mathbb{Q}$?
The Hairy ball theorem and Möbius transformations
Elliptic Regularity on Manifolds
Uniform Convergence verification for Sequence of functions - NBHM
When the mathematical community consider the inclusion of a new axiom?.
Solving the quadratic equation for matrices
Explanation for the integral of differential forms