-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Bertram Scharpf wrote: > Hi Goetz, Hi Bertram,
> Am Samstag, 03. Feb 2007, 16:05:46 +0100 schrieb Goetz Babin-Ebell: >> Bertram Scharpf wrote: >>> $ wc -c xxx >>> 118 xxx >>> $ openssl rsautl -encrypt -certin <some.crt -in xxx >>> RSA operation error >>> 5747:error:0406D06E:rsa routines:RSA_padding_add_PKCS1_type_2:data too >>> large for key size:rsa_pk1.c:151: >> If you can't figure out by yourself the maximum length of data you can >> encrypt with a given key using the rsautl comand, >> you shouldn't use it to encrypt data. > > So what do I have to read? Most mortals (including me) don't want to directly encrypt data with the RSA key but use a combined asymetric/symetric encription. The programming interface for that is the EVP- interface of OpenSSL >> You should use the openssl smime command. > > I'm using Ruby; S/MIME seems to be rather young here. At > least it is hidden properly well. I just found it. SMIME is basically PKCS#7 with some aditionally data, so you find the related info in the OpenSSL pkcs7 interface. Bye Goetz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFFxPSs2iGqZUF3qPYRAlOlAJ4ogr1MmBzv6YYBnKyTF+iagecN7QCeODw9 qS2Xgcc605tyqUfMmIyF5Vw= =dTJM -----END PGP SIGNATURE----- ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
