Steve, thanks. My understanding is that DSA signatures should be
40bytes not 48 (i.e. 2* the length of q (160 bits) accoridng to the
standard). Can you or someone else explain the difference ?
Thanks,
Frank
Dr. Stephen Henson wrote:
On Tue, Sep 23, 2003, Frank wrote:
First I created DSA ca and users certs /private keys w/2048bits
when I call EVP_PKEY_size() with my private/public keys it returns 48
in my examples. EVP_PKEY_bits() returns 2048, this is documented and
tells me this is the size in bits of my p (which is what I would
exspect). But what is EVP_PKEY_size() returning (not documented)?
It is returning the maximum size of the signature that that key will
produce. For a DSA key it isn't possible to know the precise size of the
signature in advance but it is possible to determine its maximum size.
Steve.
--
Dr Stephen N. Henson.
Core developer of the OpenSSL project: http://www.openssl.org/
Freelance consultant see: http://www.drh-consultancy.demon.co.uk/
Email: [EMAIL PROTECTED], PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
|
