mbedtls_pk_verify_ext() function

Verify signature, with options. (Includes verification of the padding depending on type.)

Syntax

Show:

Summary

Declaration

Definition

from pk.h:812

int mbedtls_pk_verify_ext(mbedtls_pk_type_t type, const void *options, mbedtls_pk_context *ctx, mbedtls_md_type_t md_alg, const unsigned char *hash, size_t hash_len, const unsigned char *sig, size_t sig_len);

Implemented in pk.c:1103

Arguments

Argument

Declared as

Description

type

mbedtls_pk_type_t

Signature type (inc. possible padding type) to verify

options

const void *

Pointer to type-specific options, or NULL

ctx

mbedtls_pk_context *

The PK context to use. It must have been set up.

md_alg

mbedtls_md_type_t

Hash algorithm used (see notes)

hash

const unsigned char *

Hash of the message to sign

hash_len

size_t

Hash length or 0 (see notes)

sig

const unsigned char *

Signature to verify

sig_len

size_t

Signature length

Return value

0 on success (signature is valid), #MBEDTLS_ERR_PK_TYPE_MISMATCH if the PK context can't be used for this type of signatures, #MBEDTLS_ERR_PK_SIG_LEN_MISMATCH if there is a valid signature in \p sig but its length is less than \p sig_len, or a specific error code.

Notes

If hash_len is 0, then the length associated with md_alg is used instead, or an error returned if it is invalid. md_alg may be MBEDTLS_MD_NONE, only if hash_len != 0 If type is MBEDTLS_PK_RSASSA_PSS, then options must point to a mbedtls_pk_rsassa_pss_options structure, otherwise it must be NULL. Note that if #MBEDTLS_USE_PSA_CRYPTO is defined, the salt length is not verified as PSA_ALG_RSA_PSS_ANY_SALT is used.