Ste*_*eve 5 c openssl cryptography
我有两个独立的程序(下面拼接在一起)。第一个生成密钥对并保存到文件(工作正常)。第二个打开私钥,使用密码短语进行解密,然后我需要它来签署一串文本。下面的代码在 PEM_read_PrivateKey() (最后一次)调用上失败(不明白为什么)。谁能指出我做错了什么,然后我应该调用哪些 openssl 来使用私钥签署一些文本?
int main (int argc, char *argv[])
{
char *priv_pem = "priv.pem";
char *pub_pem = "pub.pem";
char *pass = "Password";
FILE *fp;
int bits = 4096;
unsigned long exp = RSA_F4;
RSA *rsa;
EVP_PKEY *pkey;
// GENERATE KEY
rsa=RSA_generate_key(bits,exp,NULL,NULL);
if (RSA_check_key(rsa)!=1)
Exit(1,"Error whilst checking key","");
pkey = EVP_PKEY_new();
EVP_PKEY_assign_RSA(pkey, rsa);
// WRITE ENCRYPTED PRIVATE KEY
if (!(fp = fopen(priv_pem, "w")))
Exit(2,"Error opening PEM file",priv_pem);
if (!PEM_write_PrivateKey(fp,pkey,EVP_aes_256_cbc(),NULL,0,NULL,pass))
Exit(3,"Error writing PEM file",priv_pem);
fclose(fp);
// WRITE PUBLIC KEY
if (!(fp = fopen(pub_pem, "w")))
Exit(4,"Error opening PEM file",pub_pem);
if (!PEM_write_PUBKEY(fp, pkey))
Exit(5,"Error writing PEM file",pub_pem);
fclose(fp);
// ------- End of key generation program -------
// ------- Start of text signing program -------
// READ IN ENCRYPTED PRIVATE KEY
if (!(fp = fopen(priv_pem, "r")))
Exit(6,"Error reading encrypted private key file",priv_pem);
if (!PEM_read_PrivateKey(fp,&pkey,NULL,pass))
Exit(7,"Error decrypting private key file",priv_pem);
fclose(fp);
// Sign some text using the private key....
// FREE
RSA_free(rsa);
return 0;
}
你在传递pkeyto之前初始化过to吗?如果没有,它将尝试重新使用指向的结构- 如果未初始化,它将查看内存中的随机位置。NULL&pkeyPEM_read_PrivateKey()EVP_PKEYpkeypkey
您可以ERR_print_errors_fp(stderr);在发生错误时转储 OpenSSL 错误堆栈stderr- 这通常有助于查找问题。
| 归档时间: |
|
| 查看次数: |
8148 次 |
| 最近记录: |