OK, i converted over to EVP_*, the sign/verify works but now i'm confused
about decrypt, for EVP_DecryptInit i need to tell it a CIPHER but i dont see
RSA in the cipher listings on
http://www.openssl.org/docs/crypto/EVP_EncryptInit.html# Looking closer at
the man page it looks like RSA isnt considered a cipher, what should i be
using to decrypt RSA messages?
~Shaun
"Goetz Babin-Ebell" <[EMAIL PROTECTED]> wrote in
message news:[EMAIL PROTECTED]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Shaun wrote:
| Is there another way in C to use openssl's sign/verify/encrypt/decrypt
| without using the low-level api? I got my test prog working, I guess
I need
| to figure out how to do a SHA1 hash of my data next.
Your friends are
* to sign: EVP_SignInit, EVP_SignUpdate and EVP_SignFinal
* to verify: EVP_VerifyInit, EVP_VerifyUpdate and EVP_VerifyFinal
* to encrypt: EVP_EncryptInit, EVP_EncryptUpdate and EVP_EncryptFinal
* to decrypt: EVP_DecryptInit, EVP_DecryptUpdate and EVP_DecryptFinal
With your experience you really should not use the RSA_* functions
directly.
And beware: all these functions handle *binary* data, calling string
functions on data generated by them is simply wrong.
I think the RSA_sign man page should get a warning and a pointer
to the EVP interface.
Goetz
- --
DMCA: The greed of the few outweighs the freedom of the many
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.4-svn0 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFJLE0d2iGqZUF3qPYRAs2ZAJ9ie6ev4bXXWQxOTdBMNCjnQzjSHgCfSxGK
tOE3jgsenLkcx4TNdNTVRXs=
=yZKz
-----END PGP SIGNATURE-----
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List
openssl-users@openssl.org
Automated List Manager
[EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
