On Wed, Apr 22, 2009 at 09:50:49PM +0530, Sibasis Panigrahi wrote:
> Hi All,
>
> I have to generate a SHA1 from some data(const char*).
> The data looks like this :
>
> -----BEGIN CERTIFICATE REQUEST-----
> MIIBcTCB3gIBADA1MQ8wDQYDVQQKEwZNY0FmZWUxDDAKBgNVBAsTA2VQTzEUMBIG
> A1UEAxMLTElOVVgtTkFDLTAwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAPT9
> xXMj+nEKh0XZtqNllDxg8aYxbm4okdx1/6keHGu1GcnUGMtywg1cpjBWSS6Lm5r1
> 5A8n4t1fJUEBFXd05OpRRla/4azIaxaNP2gm8/tkeUDi1PXm+8jUf7aLJekbTSzw
> Uwzb+ZhMpCfKB+dRD3i7BWvr5kxnsS40LuUKHicZAgMBAAGgADAKBgYrJAMDAQIF
> AAOBgQBlwS1uP9+zmtfGc9frZCUYrCq+qlsk0TWJrNjzbZNMI3+8TCjbfxdlte4P
> HTRbmQ90BrQhuxh+/d5L9nwzKldcOivZsq0U/HJUmwKoYOBbRk9SATkJD5rgIhdh
> UFM31/KHYnklk576mpeRJsdfiyuitytutyI69UrwzYIENvSMrj5C9QtovBtGreA==
> -----END CERTIFICATE REQUEST-----
It is extremely unlikely that the "SHA1" fingerprint of a base64 encoded
CSR has any useful value. You are solving the wrong problem. Why do you
believe that you need the SHA1 fingerprint of this data?
> After creating the digest i am getting digest length as 21,but it sould give
> me 20.So when i use it in DSA_sign(digest,md_len,dsa) it fails throwing
> error as
Why do you believe that you need to sign a hash of a CSR? CSRs already
contain internal signatures under their own private key.
Try:
openssl req -in req.pem -text
--
Viktor.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
