On Wed, May 25, 2005, Suram Chandra Sekhar wrote: > Hi all, > Thank you very much for the reply. I was going through the man page of > RSA_sign(). It is indicating as follows... > If type is NID_md5_sha1, an SSL signature (MD5 and SHA1 message digests > with PKCS #1 padding and no algorithm identifier) > is created. > > It means that Signature Algorithm is not used in RSA_sign(). If my > understanding is correct, can anyone please point out how to make > RSA_sign() do this job. >
Not sure what you mean there. NID_md5_sha1 is an exceptional case where the signature format is different. This format is required for TLS and SSL. In all other cases the DigestInfo encapsulation is used. AFAIK there isn't a standard for DigestInfo encapsulation of a TLS/SSL signature: not sure why you'd want to. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
