> From: owner-openssl-us...@openssl.org On Behalf Of Anant Rao
> Sent: Wednesday, June 11, 2014 09:45
> The signature is generated by a client program (also a 'c' program). What is
> the format of a signature? How do I find out?
The format for an ECDSA or DSA signature is an ASN.1 SEQUENCE of two INTEGERs.
I'm practice I've always seen DER, but I don't know if that's required; the two
reasons
that commonly require DER (hashed and byte-compared) don't apply.
> Just to confirm - whether it's ECDSA or RSA, for verification, we just get
> the EVP_PKEY data structure filled with
> the public key correctly and call in a sequence ending up with a call to
> EVP_VerifyFinal. Is that correct?
Either the old way with EVP_Verify{Init,Update,Final} and the key on the Final,
or the new way with EVP_DigestVerify{Init,Update,Final} and the key on the Init.
But either way independent of the keytype = PKalgorithm.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
