OpenBSD manual page server

NAME

DSA_do_sign, DSA_do_verify — raw DSA signature operations

SYNOPSIS

#include <openssl/dsa.h>

DSA_SIG *
DSA_do_sign(const unsigned char *dgst, int dlen, DSA *dsa);

int
DSA_do_verify(const unsigned char *dgst, int dgst_len, DSA_SIG *sig, DSA *dsa);

DESCRIPTION

DSA_do_sign() computes a digital signature on the dlen byte message digest dgst using the private key dsa and returns it in a newly allocated DSA_SIG structure.

DSA_sign_setup(3) may be used to precompute part of the signing operation in case signature generation is time-critical.

DSA_do_verify() verifies that the signature sig matches a given message digest dgst of size dgst_len. dsa is the signer's public key.

RETURN VALUES

DSA_do_sign() returns the signature or NULL on error. DSA_do_verify() returns 1 for a valid signature, 0 for an incorrect signature, and -1 on error. The error codes can be obtained by ERR_get_error(3).

SEE ALSO

DSA_get0_key(3), DSA_meth_set_sign(3), DSA_new(3), DSA_SIG_new(3), DSA_sign(3)

HISTORY

DSA_do_sign() and DSA_do_verify() first appeared in OpenSSL 0.9.3 and have been available since OpenBSD 2.6.