> Does your response mean, that RSA-PSS meanhile _is_ fully supported in 1.1.0?
I hesitate to say fully, because there are no doubt parts that don't work.
But RSAPSS signatures are supported.
But more importantly, 1.1.1 not 1.1.0
> Any estimations about how much work has to be done for
Am 27.06.2017 um 14:18 schrieb Salz, Rich via openssl-users:
1.0.2 does not have full RSA-PSS support; you can’t use it.
Thanks Rich, in my case it works, because we partially do the
verification (and algo selection) work externally.
We just need to access the public key which is rsa in
1.0.2 does not have full RSA-PSS support; you can’t use it.
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Am 26.06.2017 um 22:30 schrieb Benjamin Kaduk:
On 06/25/2017 03:06 PM, we...@infotech.de wrote:
Dear OpenSSSL users,
we recently came across a certificate with OID: id-RSASSA-PSS aka
rsassaPss in x509 subjects public key AlgorithmIdentifier.
According to rfc4056 it is legitimate to use
On 06/25/2017 03:06 PM, we...@infotech.de wrote:
> Dear OpenSSSL users,
>
> we recently came across a certificate with OID: id-RSASSA-PSS aka
> rsassaPss in x509 subjects public key AlgorithmIdentifier.
>
> According to rfc4056 it is legitimate to use rsaEncryption or
> id-RSASSA-PSS as OID for
Dear OpenSSSL users,
we recently came across a certificate with OID: id-RSASSA-PSS aka
rsassaPss in x509 subjects public key AlgorithmIdentifier.
According to rfc4056 it is legitimate to use rsaEncryption or
id-RSASSA-PSS as OID for the subject public key.
But when listing the certs's