Symbols ![]()
loading...
Files ![]()
loading...
mbedtls_pk_verify() function
Verify signature (including padding if relevant).
Syntax
int mbedtls_pk_verify(mbedtls_pk_context *ctx,
mbedtls_md_type_t md_alg,
const unsigned char *hash,
size_t hash_len,
const unsigned char *sig,
size_t sig_len);
Implemented in ![]()
pk.c:333
Return value
0 on success (signature is valid), #MBEDTLS_ERR_PK_SIG_LEN_MISMATCH if there is a valid signature in \p sig but its length is less than \p sig_len, or a specific error code.
Notes
For RSA keys, the default padding type is PKCS#1 v1.5. Use \c mbedtls_pk_verify_ext( MBEDTLS_PK_RSASSA_PSS, ... ) to verify RSASSA_PSS signatures. If #MBEDTLS_USE_PSA_CRYPTO is enabled, the PSA crypto subsystem must have been initialized by calling psa_crypto_init() before calling this function, if the key might be an ECC (ECDSA) key. If hash_len is 0, then the length associated with md_alg is used instead, or an error returned if it is invalid. md_alg may be MBEDTLS_MD_NONE, only if hash_len != 0
Related Functions
Found 29 other functions taking a ![]()
mbedtls_pk_context
argument:
Function
Description
Free the components of a #mbedtls_pk_context.
Tell if a context can do the operation given by type
Quick access to an EC context inside a PK context. \warning This function can only be used when the type of the context, as returned by mbedtls_pk_get_type(), is #MBEDTLS_PK_ECKEY, #MBEDTLS_PK_ECKEY_DH, or #MBEDTLS_PK_ECDSA. Ensuring that is the caller's responsibility. Alternatively, you can check whether this function returns NULL.
Initialize a PK context with the information given and allocates the type-specific PK subcontext.
Quick access to an RSA context inside a PK context. \warning This function can only be used when the type of the context, as returned by mbedtls_pk_get_type(), is #MBEDTLS_PK_RSA. Ensuring that is the caller's responsibility. Alternatively, you can check whether this function returns NULL.
Initialize a #mbedtls_pk_context (as NONE).
Get the key type
Parse a SubjectPublicKeyInfo DER structure
Get the size in bits of the underlying key
Restartable version of \c mbedtls_pk_sign()
Restartable version of \c mbedtls_pk_verify()
Decrypt message (including padding if relevant).
Encrypt message (including padding if relevant).
Access the type name
Verify signature, with options. (Includes verification of the padding depending on type.)
Make signature, including padding if relevant.
Get the length in bytes of the underlying key
Check if a public-private pair of keys matches.
Export debug information
Parse a private key in PEM or DER format
Parse a public key in PEM or DER format
Set own certificate chain and private key
Set own certificate and key for the current handshake