Hi,
I'm working on a web page which will have direct link
to local major banks for transactions. Transactions
are secured wit rsa algoritm. More specifically I
must call a banks cgi link with various parameters
and one of them will be my digital signature calculated
like this: signature = RSA(SHA-1(x1|x2|....|xn), e, n )
I did created my key pair with openssl c-l tool, bank verified
my public key and give me their public key. The key's
are in .pem format
So now I
need some function for encryption/decryption.......but
after I spend some day's searching what I need on openssl
page I must say (no offence...) that the slogan on the opening
page "Why buy an SSL toolkit as a black-box when you can
get an open for free ?" is sick joke at least for me. Currently
the openssl toolbox is for me a16MB of undocumented
abracadabra = black-box..........
I also searched the mailing list and found a guy like me
searching help for the same kind of problem I have (he wanted
to use openssl c-l tool for that). So what I got. a) advice
to look at rsa.h - i looked, there's hundreds on undocumented
functions who needs various undocumeneted parameters. ok
there's some help on web pages, but the explanation about
padding parameters is 120% chinese..........at least my bank
does know nothing about padding :-( Also how to read the
keys from file ?
b) advice to look at sign.c in apps folder. I did looked and
voilaa, something i need, but call to open a .pem file
results some EAY_KEY type. Functions for RSA enc/dec
need keys type RSA. Searching eay.h - again hundreds of
undocumented lines of code. Searching for help on web pages,
nothing - dead end.
What's the purpose of that whining ? :-)
- hope that somebody will give me help, concerning
my little problem
- wondering why people wrote public undocumented
and uncommented code. I remember my lessons at school
where my teachers insisted to frequently comment whatever code
I ever will write.....
- could somebody just give me some hints about some (also commercial)
toolboxes with some (preferably good) documentation and ability to
performthose 2 simple ? functions. .....
best regards
Priit
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
