See crypto/rsa/rsa_pmeth.c pkey_rsa_ctrl_str for the options.
There is also rsa_oaep_label
Thank you!! That saved the day:
. . . . .
Where can I see the complete list of the options that “-pkeyopt” supports
now?
I missed the crypto/rsa/rsa_pmeth.c pkey_rsa_ctrl_st
On 9/18/17, 14:50, "openssl-dev on behalf of Douglas E Engert"
wrote:
Can you also add -pkeyopt rsa_oaep_md:sah256
See crypto/rsa/rsa_pmeth.c pkey_rsa_ctrl_str for the options.
There is also rsa_oaep_label
Thank you!! That saved the day:
$ ~/openssl-1.1/bin/openssl pkeyutl -encrypt
Can you also add -pkeyopt rsa_oaep_md:sah256
See crypto/rsa/rsa_pmeth.c pkey_rsa_ctrl_str for the options.
There is also rsa_oaep_label
On 9/18/2017 10:46 AM, Blumenthal, Uri - 0553 - MITLL wrote:
OpenSSL implementation of OAEP wrongly refuses to set the hash algorithm,
preventing one from usi
OpenSSL implementation of OAEP wrongly refuses to set the hash algorithm,
preventing one from using SHA-2 family:
You'll probably need to pick up master and its -rsa_mgf1_md argument to pkeyutl.
Thank you – better with “-pkeyopt rsa_mgf1_md:sha256”. But still broken – as it
affects only the M
On 09/18/2017 09:32 AM, Blumenthal, Uri - 0553 - MITLL wrote:
>
> RSA-OAEP supports different hash functions and MGF. SHA-1 is the default.
>
>
>
> OpenSSL implementation of OAEP wrongly refuses to set the hash
> algorithm, preventing one from using SHA-2 family:
>
>
You'll probably need to pick
RSA-OAEP supports different hash functions and MGF. SHA-1 is the default.
OpenSSL implementation of OAEP wrongly refuses to set the hash algorithm,
preventing one from using SHA-2 family:
$ openssl version
OpenSSL 1.0.2l 25 May 2017
$ openssl pkeyutl -encrypt -in t1264.dat -out t1264.da
