Naming of methods in RSA_METHOD
thulasi.goriparthi at gmail.com
Tue Feb 11 10:56:31 UTC 2020
Operations that a private key can do are decrypt and sign. Similarly,
operations that a public key can do are encrypt and verify.
The legacy priv_enc(raw) just refers to raw signing, and is almost same as
sign(with proper padding mechanisms).
It is just a misnomer, as data encrypted with a private key can be
decrypted by everyone with the corresponding public key. It is actually a
sign operation, that lets everyone verify the signature.
On Sat, 8 Feb, 2020, 08:17 Rafael Ferrer, <eureka6676 at gmail.com> wrote:
> I implemented some custom engines and RSA_meth_set_priv_enc seems to map
> to other libraries' RSA decrypt operation (NCryptDecrypt ||||on Windows
> CNG, Cipher class with Cipher.DECRYPT_MODE on Android). They can do a
> TLS connection just fine with a self-signed cert.
> I looked at another custom engine and they seem to also use RSA decrypt for
> BoringSSL's (deprecated) rsa_meth_st only has a sign and a decrypt,
> having no encrypt operation:
> Is this just a naming quirk? I want to put down the nagging feeling I
> have a bug somewhere.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the openssl-users