Provided by: libssl-doc_1.1.1c-1ubuntu4_all

**NAME**

RSA_private_encrypt, RSA_public_decrypt - low level signature operations

**SYNOPSIS**

#include <openssl/rsa.h> int RSA_private_encrypt(int flen, unsigned char *from, unsigned char *to, RSA *rsa, int padding); int RSA_public_decrypt(int flen, unsigned char *from, unsigned char *to, RSA *rsa, int padding);

**DESCRIPTION**

These functions handle RSA signatures at a low level.RSA_private_encrypt()signs theflenbytes atfrom(usually a message digest with an algorithm identifier) using the private keyrsaand stores the signature into.tomust point toRSA_size(rsa)bytes of memory.paddingdenotes one of the following modes: RSA_PKCS1_PADDING PKCS #1 v1.5 padding. This function does not handle thealgorithmIdentifierspecified in PKCS #1. When generating or verifying PKCS #1 signatures,RSA_sign(3) andRSA_verify(3) should be used. RSA_NO_PADDING Raw RSA signature. This mode shouldonlybe used to implement cryptographically sound padding modes in the application code. Signing user data directly with RSA is insecure.RSA_public_decrypt()recovers the message digest from theflenbytes long signature atfromusing the signer's public keyrsa.tomust point to a memory section large enough to hold the message digest (which is smaller thanRSA_size(rsa)-11).paddingis the padding mode that was used to sign the data.

**RETURN** **VALUES**

RSA_private_encrypt()returns the size of the signature (i.e., RSA_size(rsa)).RSA_public_decrypt()returns the size of the recovered message digest. On error, -1 is returned; the error codes can be obtained byERR_get_error(3).

**SEE** **ALSO**

ERR_get_error(3),RSA_sign(3),RSA_verify(3)

**COPYRIGHT**

Copyright 2000-2016 The OpenSSL Project Authors. All Rights Reserved. Licensed under the OpenSSL license (the "License"). You may not use this file except in compliance with the License. You can obtain a copy in the file LICENSE in the source distribution or at <https://www.openssl.org/source/license.html>.