In order to sign certificates with Ed25519 keys, NULL must be passed as md to X509_sign. This NULL is then passed
(via ASN1_item_sign_ex) as type to EVP_DigestSignInit. The documentation of EVP_DigestSignInit states that type must be NULL for various key types, including Ed25519.
rhenium
commented
5 months ago
In order to sign certificates with Ed25519 keys,
NULLmust be passed asmdtoX509_sign. ThisNULLis then passed (viaASN1_item_sign_ex) as type toEVP_DigestSignInit. The documentation ofEVP_DigestSignInitstates thattypemust be NULL for various key types, including Ed25519.