堆栈内存溢出
  简体   繁体   English

如何在C中使用OpenSSL生成RSA SHA签名

[英]How to generate RSA SHA signature using OpenSSL in C

 原文  2014-06-05 17:17:42       c/ openssl/ rsa/ sha

问题描述

I need some help using OpenSSL to generate a signature of a block of data using C (Windows and Linux). 我需要一些帮助,使用OpenSSL使用C(Windows和Linux)生成数据块的签名。 The application has to do with Google authentication. 该应用程序与Google身份验证有关。 The instructions from Google's documentation are: Google文档中的说明如下:

"Sign the UTF-8 representation of the input using SHA256withRSA (also known as RSASSA-PKCS1-V1_5-SIGN with the SHA-256 hash function) with the private key obtained from the Google Developers Console. The output will be a byte array." “使用SHA256withRSA(也称为带有SHA-256哈希函数的RSASSA-PKCS1-V1_5-SIGN)和使用从Google Developers Console获得的私钥对输入的UTF-8表示进行签名。输出将是一个字节数组。 “

The private key is a .p12 file containing 1660 bytes of binary data. 私钥是包含1660字节二进制数据的.p12文件。

Do I use the RSA_sign() API for this? 我是否使用RSA_sign()API? If so am I supposed to hash the data first? 如果是这样,我应该首先散列数据? Using what key value? 使用什么键值? I assume the RSA * parameter is supposed to hold the private key? 我假设RSA *参数应该保存私钥? How does it get loaded? 怎么加载? I have used the HMAC function to generate a SHA hash, but I'm a bit lost here - any help or sample code would be appreciated. 我已经使用HMAC函数生成SHA哈希,但我在这里有点丢失 - 任何帮助或示例代码将不胜感激。 (And yes, I know Google has libraries to do this, but none for C, which I need to use). (是的,我知道谷歌有图书馆可以做到这一点,但没有一个用于C,我需要使用它)。

1 个解决方案

解决方案1
 4  2014-06-06 06:17:10

You can use RSA_sign to sign the data with SHA256 hash. 您可以使用RSA_sign使用SHA256哈希对数据进行签名。 You can call this 你可以这个叫 

RSA_sign(NID_sha256, digest, digest_len, &sign_buffer, sign_len, rsa_key);

You have calculate SHA256 hash of the data into digest buffer. 您已将数据的SHA256哈希值计算到digest缓冲区中。 rsa_key should be initialized. 应该初始化rsa_key

Since, you have .p12 file, you need to do the following. 因为,您有.p12文件,您需要执行以下操作。

Create PKCS12 structure from .p12 file. .p12文件创建PKCS12结构。 

PKCS12 * p12 = d2i_PKCS12_fp(fp_to_p12_file, NULL);

Parse the p12 structure to certificate and key. p12结构解析为证书和密钥。 

PKCS12_parse(p12, passphrase, &evp_pkey, &x509_cert, NULL);

It will give EVP_PKEY structure from which you can get RSA structure using EVP_PKEY_get1_RSA or access evp_pkey->pkey.rsa member of the structure. 它将给出EVP_PKEY结构,您可以使用EVP_PKEY_get1_RSA从该结构获取RSA结构,或者访问结构的evp_pkey->pkey.rsa成员。

This should help you to start. 这应该可以帮助你开始。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 如何使c openssl生成与JAVA SHA256withRSA / PSS签名相同的签名文本? - how to make c openssl generate the same signed text as JAVA SHA256withRSA/PSS Signature? 如何使用OpenSSL生成RSA私钥? - How to generate RSA private key using OpenSSL? 如何使用OpenSSL C库将RSA密钥从二进制数据加载到RSA结构? - How to load an RSA key from binary data to an RSA structure using the OpenSSL C Library? 如何使用OpenSSL验证Jarsigner创建的* .SF / *。RSA签名 - How to use OpenSSL to validate a *.SF / *.RSA signature created by the Jarsigner C 中的 sha1 示例使用 openssl 库 - sha1 example in C using openssl library 如何在 C 中使用 OpenSSL 3.0 RSA? - How to use OpenSSL 3.0 RSA in C? C套接字和openssl(RSA) - C socket and openssl (RSA) OpenSSL RSA 签名验证:散列和填充? - OpenSSL RSA signature verification: hash and padding? 使用 OpenSSL 的 SHA -256 密钥大小 2048 位的 RSA-OAEP - RSA-OAEP with SHA -256 key size 2048 bits using OpenSSL 如何将OpenSSL SHA-512哈希转换为GMP编号以在RSA加密方法中使用 - How to convert OpenSSL SHA-512 hash to GMP number to use in RSA encryption method
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM