Jürgen Heiss wrote:
Hi Nils,
Hmm, I thin k I can't follow you.
Can you maybe give me a short example?
Thanks and regards
Jürgen
what he means is that there is no asn.1 sequence, just the 2 integers
concat'ed. normally you would've expected to have something like this:
sequence { // der tag 0x30
int r;
int s;
}
in the absence of such a struct u just have 2 int's put together (no
tags), as he mentioned. IIRC ssh-dss signature is similar, just 2 int's
concat'd.
hope that's clear.
724PlFGHTTL1cFlLFU6g6UetcPVBEAN6oNpogAUx3rgELFH86gA+NqvjVf316zek
are you _really_ sure that this is a ecdsa-with-something signature ?
Your data starts with 0xEF,0x6E... but a ecdsa signature is a
asn.1 sequence of two asn.1 integers and hence must begin with 0x30 ...
hmm, actually I was wrong. According to rfc 4050 the xml ecdsa-* signature
value is simply the concatenation of the two signature value without the asn.1
der encoding ...
OpenSSL has no function to handle this signature format directly.
Nils
-jb
--
mathematician, n.:
Some one who believes imaginary things appear right before your
i's.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]