package nocrypto

  1. Overview
  2. Docs

PSS-based signing, as defined by PKCS #1 v2.1.

The same hash function is used for padding, MGF and computing message digest. MGF is MGF1 as defined in PKCS #1 2.1.

Keys must have a minimum of 2 + hlen + slen bytes, where hlen is the hash length and slen is the seed length.


module H : Hash.S


val sign : ?g:Rng.g -> ?slen:int -> key:priv -> Cstruct.t -> Cstruct.t

sign ~g ~slen ~key message the p PSS-padded digest of message, signed with the key. slen is the optional seed length and default to the size of the underlying hash function.

val verify : ?slen:int -> key:pub -> signature:Cstruct.t -> Cstruct.t -> bool

verify ~slen ~key ~signature message checks whether signature is a valid PSS signature of the message under the given key.