Steve, thanks. My understanding is that DSA signatures should be 40bytes not 48 (i.e. 2* the length of q (160 bits) accoridng to the standard). Can you or someone else explain the difference ?
The DSA signature is the DER encoding of (the ASN.1 object): SEQUENCE { r Integer, s Integer } => 40 bytes + 2 bytes SEQUENCE header (tag + len) + 2 * 2 bytes ASN.1 Integer header + two possible bytes if the highest bit of each integer is set => sizeof(DssSigValue) <= 48 bytes.
Nils
______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
