Struct ring::signature::RSASigningState

pub struct RSASigningState { /* fields omitted */ }

State used for RSA Signing. Feature: rsa_signing.

Methods

impl SigningState

pub fn new(key_pair: Arc<KeyPair>) -> Result<Self, Unspecified>

Construct a signing state appropriate for use with the given key pair.

pub fn key_pair(&self) -> &KeyPair

The key pair. This can be used, for example, to access the key pair's public key.

pub fn sign(     &mut self,     padding_alg: &'static RSAEncoding,     rng: &SecureRandom,     msg: &[u8],     signature: &mut [u8] ) -> Result<(), Unspecified>

Sign msg. msg is digested using the digest algorithm from padding_alg and the digest is then padded using the padding algorithm from padding_alg. The signature it written into signature; signature's length must be exactly the length returned by public_modulus_len(). rng may be used to randomize the padding (e.g. for PSS).

Many other crypto libraries have signing functions that takes a precomputed digest as input, instead of the message to digest. This function does not take a precomputed digest; instead, sign calculates the digest itself.

Lots of effort has been made to make the signing operations close to constant time to protect the private key from side channel attacks. On x86-64, this is done pretty well, but not perfectly. On other platforms, it is done less perfectly.