Hi, I am using openssl_1.0.0a.
My question is about the RSA_verify() api. First of all, can i use the RSA_verify() api to verify a signature which was generated using openssl commandline (openssl dgst -sign -sha256 ) ?. Should RSA_sign() always preceed RSA_verify() or the apis can be interchangeably used with commandline openssl as well?, like can i sign an image with commandline openssl tool and verify it in C code with RSA_verify() using sha256 or sha1?. Secondly im using the api like below. But it doesnt work for me( I get a return value of 0, because ASN1_get_object() in asn1_check_tlen() fails and returns i=128 for the case: ASN1_ITYPE_SEQUENCE). All the parameters to the api are valid. Is there any preliminary setup that should be done before calling RSA_verify() ?. ret = RSA_verify(NID_sha256, digest_ptr, digest_size, signature_ptr, SIGNATURE_SIZE, rsa_key); Need your help to resolve it. Please let me know if you need more info. Thanks, Sundarajan.
