> Where am i going wrong here?
> char* message = "Hello World";
> if(RSA_sign(NID_md5, (unsigned char*) message, strlen(message),
> signature, &slen, private_key) != 1) {
The problem is that your RSA key is very small. A 256-bit RSA key can only
sign up to 32 bytes. 11 bytes are lost due to PKCS1 padding. A raw MD5
signature is 5 bytes. Add to that the fact that your key isn't quite 256
bits (it's about 248) and that an X509 signature has overhead, and you hit
the limit.
A typical signature is 36 bytes. Add 11 bytes for PKCS padding and you get
47 bytes, or 376 bits. So a 256-bit RSA key is not going to cut it.
DS
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
