139879345423680:error:2506406A:DSO support routines:dlfcn_bind_func:could not bind to the requested symbol name:…/crypto/dso/dso_dlfcn.c:188:symname(EVP_PKEY_get_base_id): /usr/lib/x86_64-linux-gnu/engines-1.1/pkcs11.so: undefined symbol: EVP_PKEY_get_base_id
139879345423680:error:2506C06A:DSO support routines:DSO_bind_func:could not bind to the requested symbol name:…/crypto/dso/dso_lib.c:186:
What do I have to do to get the missing symbols? I found some hints on “stackoverflow” but they were related to osX and others
I would recommend to use XCA instead, which is a frontend for OpenSSL that has PKCS#11 support integrated and that works well with the HSM.
I guess the problem is caused by a mismatch between OpenSSL and the installed OpenSC version. The OpenSSL package is progressing much faster than OpenSC and the API is frequently breaking.
That is the reason why we have a separate tooling in OpenSCDP and the PKI-as-a-Service Portal, which does not need complicated layers like PKCS#11 and engine-pkcs11.
Then my recommendation is to compile matching releases of OpenSC and engine-pkcs11 locally. You might also find additional information in the OpenSC project on Github.