[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: RSA sign/verify and hash generation functions
|
From: |
Nikos Mavrogiannopoulos |
|
Subject: |
Re: RSA sign/verify and hash generation functions |
|
Date: |
Mon, 13 Dec 2010 22:44:41 +0100 |
|
User-agent: |
Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.13) Gecko/20101208 Thunderbird/3.1.7 |
On 12/09/2010 07:13 PM, Murray S. Kucherawy wrote:
>> -----Original Message-----
>> From: Nikos Mavrogiannopoulos [mailto:address@hidden On Behalf Of Nikos
>> Mavrogiannopoulos
>> Sent: Thursday, December 09, 2010 12:23 AM
>> To: Murray S. Kucherawy
>> Cc: address@hidden
>> Subject: Re: RSA sign/verify and hash generation functions
>>
>>> I did. By the looks of things, the *_sign_hash() functions look like
>>> they sign a hash that's already been computed, which is the case for
>>> me, so that's what I used.
>>
>> The current sign_hash function is not what you want. They are tricky to
>> use to generate correct signatures (for DSA they work ok, but for RSA
>> require one more step to generate a PKCS #1 compliant signature - i.e.
>> BER encode the hash as DigestInfo). I'll add a safer to use API for
>> 2.12.x and deprecate those functions.
>
> OK. If you would like me to try those out once they're available, just point
> me at the tarball.
Could you check:
http://git.savannah.gnu.org/gitweb/?p=gnutls.git;a=tree;h=refs/heads/master;hb=master
You can get a tarball by clicking on snapshot. I've added sign_hash2()
family of functions that should work as expected. For usage you can
also check the test program x509sign-verify.c.
regards,
Nikos
- RE: RSA sign/verify and hash generation functions, (continued)
- RE: RSA sign/verify and hash generation functions, Murray S. Kucherawy, 2010/12/08
- Re: RSA sign/verify and hash generation functions, Nikos Mavrogiannopoulos, 2010/12/08
- RE: RSA sign/verify and hash generation functions, Murray S. Kucherawy, 2010/12/08
- Re: RSA sign/verify and hash generation functions, Alessandro Vesely, 2010/12/09
- Re: RSA sign/verify and hash generation functions, Nikos Mavrogiannopoulos, 2010/12/09
- Re: RSA sign/verify and hash generation functions, Alessandro Vesely, 2010/12/11
- Re: RSA sign/verify and hash generation functions, Nikos Mavrogiannopoulos, 2010/12/08
- RE: RSA sign/verify and hash generation functions, Murray S. Kucherawy, 2010/12/08
- Re: RSA sign/verify and hash generation functions, Nikos Mavrogiannopoulos, 2010/12/09
- RE: RSA sign/verify and hash generation functions, Murray S. Kucherawy, 2010/12/09
- Re: RSA sign/verify and hash generation functions,
Nikos Mavrogiannopoulos <=
- RE: RSA sign/verify and hash generation functions, Murray S. Kucherawy, 2010/12/14
- Re: RSA sign/verify and hash generation functions, Nikos Mavrogiannopoulos, 2010/12/14
- RE: RSA sign/verify and hash generation functions, Murray S. Kucherawy, 2010/12/14
- RE: RSA sign/verify and hash generation functions, Murray S. Kucherawy, 2010/12/15
- Re: RSA sign/verify and hash generation functions, Nikos Mavrogiannopoulos, 2010/12/16
- RE: RSA sign/verify and hash generation functions, Murray S. Kucherawy, 2010/12/16
- Re: RSA sign/verify and hash generation functions, Nikos Mavrogiannopoulos, 2010/12/16
- RE: RSA sign/verify and hash generation functions, Murray S. Kucherawy, 2010/12/16
- Re: RSA sign/verify and hash generation functions, Nikos Mavrogiannopoulos, 2010/12/18
- RE: RSA sign/verify and hash generation functions, Murray S. Kucherawy, 2010/12/20