On Fri, Feb 03, 2012, francesco.petru...@innovery.it wrote: > Have you miss the OpenSSL_add_all_algorithms() initialization? > > > > Da: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] > Per conto di Roberto Martelloni > Inviato: venerdì 3 febbraio 2012 12:31 > A: openssl-users@openssl.org > Oggetto: Unable to verify a RSA SHA512 signature maded from CLI from a C > source code. > > > > Hello to all, > > I can't verify a signature from a C code but maded with openssl command line > . > Anyone can give me some hints ? > > I create my RSA key pair with this command: > /usr/bin/openssl genrsa -out RSA-1024.key 1024 > /usr/bin/openssl rsa -in RSA-1024.key -pubout > RSA-1024-public.key > > I made the signature with: > /usr/bin/openssl dgst -binary -sha512 -sign RSA-1024.key -out > serial.SHA512.asc serial.SHA512 > > If I verify it from CLI all work > /usr/bin/openssl dgst -sha512 -verify RSA-1024-public.key -signature > serial.txt.SHA512.asc serial.txt.SHA512 > Verified OK > > But when I try to check it from source code all get wrong. > > Here the code http://nopaste.info/da38ec303b.html > > What is wrong ? >
The OP is doing two things wrong.. 1. Posting in HTML and 2. If you call RSA_verify() it expects the digest of the data and not the data itself. You can digest and verify using EVP_Verify*() functions, see manual pages and examples. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org