Talk:EVP Signing and Verifying

From OpenSSLWiki
Revision as of 21:16, 15 June 2013 by Matt (talk | contribs) (Added response to question)
Jump to navigationJump to search

Clarification required

Why is 

 if(1 != EVP_DigestSignFinal(mdctx, *sig, slen)) goto err;

done two times?

Good question! I've added some extra code comments to explain it. Basically the first call has a NULL sig parameter to obtain the length of the signature. Memory is then allocated sufficient to hold the sig, and then the sig is obtained in the second call to EVP_DigestSignFinal.

--Matt 21:16, 15 June 2013 (UTC)

Retrieved from "https://wiki.openssl.org/index.php?title=Talk:EVP_Signing_and_Verifying&oldid=1116"