Hello!
I have read earlier messages about support of RSA-PSS, but I'm confused.
I'm trying to verify certificate that signed using RSA-PSS. OpenSSL version
is 1.0.0a.
============================================================================
==========
X509_STORE_CTX cert_ctx;
X509_STORE *store = fillTrustedCertificateStore(csca);
X509 *certificate = readCertificate(dsc);
if (store && certificate && X509_STORE_CTX_init (&cert_ctx, store,
certificate, NULL))
{
int r = X509_verify_cert(&cert_ctx);
int e = X509_STORE_CTX_get_error(&cert_ctx);
std::cout << "r = " << r << ", e = " << e << "\n";
}
============================================================================
==========
Output: r = 0, e = 7
7 means X509_V_ERR_CERT_SIGNATURE_FAILURE
Sample certificate I got at this page http://www.kaiser.cx/x509Pss.html
What's wrong with this code?
Sincerelly, Alexei.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [email protected]
Automated List Manager [email protected]
