Re: [openssl-users] EVP_MD_CTX and EVP_PKEY_CTX? How to init? How to free?

Understood. Thanks! Yes, it would be nice if 1_0_2-stable and 1_1 branches returned an error on an attempt to sign or verify with RSA_NO_PADDING. Regards, Uri Sent from my iPhone > On Apr 30, 2017, at 15:19, Dr. Stephen Henson wrote: > >> On Sun, Apr 30, 2017,

Re: [openssl-users] EVP_MD_CTX and EVP_PKEY_CTX? How to init? How to free?

On Sun, Apr 30, 2017, Blumenthal, Uri - 0553 - MITLL wrote: > > Semi-related question. Is RSA_NO_PADDING allowed for EVP signature? When I > tried that (without using DigestSign of course), signing succeeded but > verification always failed. Was that expected? Are there some special >

Re: [openssl-users] EVP_MD_CTX and EVP_PKEY_CTX? How to init? How to free?

Matt, *Thank you!* Crystal clear now. Semi-related question. Is RSA_NO_PADDING allowed for EVP signature? When I tried that (without using DigestSign of course), signing succeeded but verification always failed. Was that expected? Are there some special settings one needs to apply besides

Re: [openssl-users] EVP_MD_CTX and EVP_PKEY_CTX? How to init? How to free?

On 28/04/17 20:29, Blumenthal, Uri - 0553 - MITLL wrote: > I’m playing with RSA-PSS signatures, and stumbled upon a few problems. I > tried the OpenSSL manual pages, but still coming short of complete > understanding. :-) > > > > This is how I initialize the contexts (error handlers removed

[openssl-users] EVP_MD_CTX and EVP_PKEY_CTX? How to init? How to free?

I’m playing with RSA-PSS signatures, and stumbled upon a few problems. I tried the OpenSSL manual pages, but still coming short of complete understanding. :-) This is how I initialize the contexts (error handlers removed for brevity):   ctx = EVP_PKEY_CTX_new(privkey, NULL);