1 files changed, 0 insertions, 452 deletions
diff --git a/src/lib/libcrypto/man/ECDSA_SIG_new.3 b/src/lib/libcrypto/man/ECDSA_SIG_new.3
deleted file mode 100644
index 2b72e6f1b9..0000000000
--- a/src/lib/libcrypto/man/ECDSA_SIG_new.3
+++ /dev/null
@@ -1,452 +0,0 @@
-.\" $OpenBSD: ECDSA_SIG_new.3,v 1.21 2024/11/15 20:14:58 tb Exp $
-.\" full merge up to: OpenSSL e9b77246 Jan 20 19:58:49 2017 +0100
-.\" selective merge up to: OpenSSL da4ea0cf Aug 5 16:13:24 2019 +0100
-.\"
-.\" This file was written by Nils Larsch <nils@openssl.org>.
-.\" Copyright (c) 2004, 2005, 2013, 2016 The OpenSSL Project.
-.\" All rights reserved.
-.\"
-.\" Redistribution and use in source and binary forms, with or without
-.\" modification, are permitted provided that the following conditions
-.\" are met:
-.\"
-.\" 1. Redistributions of source code must retain the above copyright
-.\"    notice, this list of conditions and the following disclaimer.
-.\"
-.\" 2. Redistributions in binary form must reproduce the above copyright
-.\"    notice, this list of conditions and the following disclaimer in
-.\"    the documentation and/or other materials provided with the
-.\"    distribution.
-.\"
-.\" 3. All advertising materials mentioning features or use of this
-.\"    software must display the following acknowledgment:
-.\"    "This product includes software developed by the OpenSSL Project
-.\"    for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
-.\"
-.\" 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
-.\"    endorse or promote products derived from this software without
-.\"    prior written permission. For written permission, please contact
-.\"    openssl-core@openssl.org.
-.\"
-.\" 5. Products derived from this software may not be called "OpenSSL"
-.\"    nor may "OpenSSL" appear in their names without prior written
-.\"    permission of the OpenSSL Project.
-.\"
-.\" 6. Redistributions of any form whatsoever must retain the following
-.\"    acknowledgment:
-.\"    "This product includes software developed by the OpenSSL Project
-.\"    for use in the OpenSSL Toolkit (http://www.openssl.org/)"
-.\"
-.\" THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
-.\" EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
-.\" PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
-.\" ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-.\" SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
-.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
-.\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
-.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
-.\" STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
-.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
-.\" OF THE POSSIBILITY OF SUCH DAMAGE.
-.\"
-.Dd $Mdocdate: November 15 2024 $
-.Dt ECDSA_SIG_NEW 3
-.Os
-.Sh NAME
-.Nm ECDSA_SIG_new ,
-.Nm ECDSA_SIG_free ,
-.Nm ECDSA_SIG_get0 ,
-.Nm ECDSA_SIG_get0_r ,
-.Nm ECDSA_SIG_get0_s ,
-.Nm ECDSA_SIG_set0 ,
-.Nm i2d_ECDSA_SIG ,
-.Nm d2i_ECDSA_SIG ,
-.Nm ECDSA_size ,
-.Nm ECDSA_sign ,
-.Nm ECDSA_verify ,
-.Nm ECDSA_do_sign ,
-.Nm ECDSA_do_verify
-.Nd Elliptic Curve Digital Signature Algorithm
-.Sh SYNOPSIS
-.In openssl/ec.h
-.Ft ECDSA_SIG*
-.Fo ECDSA_SIG_new
-.Fa void
-.Fc
-.Ft void
-.Fo ECDSA_SIG_free
-.Fa "ECDSA_SIG *sig"
-.Fc
-.Ft void
-.Fo ECDSA_SIG_get0
-.Fa "const ECDSA_SIG *sig"
-.Fa "const BIGNUM **r"
-.Fa "const BIGNUM **s"
-.Fc
-.Ft "const BIGNUM *"
-.Fo ECDSA_SIG_get0_r
-.Fa "const ECDSA_SIG *sig"
-.Fc
-.Ft "const BIGNUM *"
-.Fo ECDSA_SIG_get0_s
-.Fa "const ECDSA_SIG *sig"
-.Fc
-.Ft int
-.Fo ECDSA_SIG_set0
-.Fa "ECDSA_SIG *sig"
-.Fa "BIGNUM *r"
-.Fa "BIGNUM *s"
-.Fc
-.Ft int
-.Fo i2d_ECDSA_SIG
-.Fa "const ECDSA_SIG *sig_in"
-.Fa "unsigned char **der_out"
-.Fc
-.Ft ECDSA_SIG*
-.Fo d2i_ECDSA_SIG
-.Fa "ECDSA_SIG **sig_out"
-.Fa "const unsigned char **der_in"
-.Fa "long len"
-.Fc
-.Ft int
-.Fo ECDSA_size
-.Fa "const EC_KEY *eckey"
-.Fc
-.Ft int
-.Fo ECDSA_sign
-.Fa "int type"
-.Fa "const unsigned char *dgst"
-.Fa "int dgstlen"
-.Fa "unsigned char *sig"
-.Fa "unsigned int *siglen"
-.Fa "EC_KEY *eckey"
-.Fc
-.Ft int
-.Fo ECDSA_verify
-.Fa "int type"
-.Fa "const unsigned char *dgst"
-.Fa "int dgstlen"
-.Fa "const unsigned char *sig"
-.Fa "int siglen"
-.Fa "EC_KEY *eckey"
-.Fc
-.Ft ECDSA_SIG*
-.Fo ECDSA_do_sign
-.Fa "const unsigned char *dgst"
-.Fa "int dgst_len"
-.Fa "EC_KEY *eckey"
-.Fc
-.Ft int
-.Fo ECDSA_do_verify
-.Fa "const unsigned char *dgst"
-.Fa "int dgst_len"
-.Fa "const ECDSA_SIG *sig"
-.Fa "EC_KEY* eckey"
-.Fc
-.Sh DESCRIPTION
-These functions provide a low level interface to ECDSA.
-Most applications should use the higher level EVP interface such as
-.Xr EVP_DigestSignInit 3
-or
-.Xr EVP_DigestVerifyInit 3
-instead.
-Creation of the required
-.Vt EC_KEY
-objects is described in
-.Xr EC_KEY_new 3 .
-.Pp
-The
-.Vt ECDSA_SIG
-structure consists of two
-.Vt BIGNUM Ns s
-for the
-.Fa r
-and
-.Fa s
-value of an ECDSA signature (see X9.62 or FIPS 186-2).
-.Bd -literal -offset indent
-struct {
-        BIGNUM *r;
-        BIGNUM *s;
-} ECDSA_SIG;
-.Ed
-.Pp
-.Fn ECDSA_SIG_new
-allocates a new
-.Vt ECDSA_SIG
-structure (note: this function also allocates the
-.Vt BIGNUM Ns s )
-and initializes it.
-.Pp
-.Fn ECDSA_SIG_free
-frees the
-.Vt ECDSA_SIG
-structure
-.Fa sig .
-.Pp
-.Fn ECDSA_SIG_get0
-retrieves internal pointers the
-.Fa r
-and
-.Fa s
-values contained in
-.Fa sig .
-The values
-.Fa r
-and
-.Fa s
-can also be retrieved separately by the corresponding function
-.Fn ECDSA_SIG_get0_r
-and
-.Fn ECDSA_SIG_get0_s ,
-respectively.
-.Pp
-.Fn ECDSA_SIG_set0
-sets the
-.Fa r
-and
-.Fa s
-values in
-.Fa sig .
-Calling this function transfers the memory management of the values to
-.Fa sig .
-Therefore, the values that have been passed in
-should not be freed by the caller.
-.Pp
-.Fn i2d_ECDSA_SIG
-creates the DER encoding of the ECDSA signature
-.Fa sig_in
-and writes the encoded signature to
-.Pf * Fa der_out .
-.Fn d2i_ECDSA_SIG
-decodes the DER-encoded signature stored in the buffer
-.Pf * Fa der_in
-which is
-.Fa len
-bytes long into
-.Pf * Fa sig_out .
-For details about the semantics, examples, caveats, and bugs, see
-.Xr ASN1_item_d2i 3 .
-.Pp
-.Fn ECDSA_size
-returns the maximum length of a DER-encoded ECDSA signature created with
-the private EC key
-.Fa eckey .
-.Pp
-.Fn ECDSA_sign
-computes a digital signature of the
-.Fa dgstlen
-bytes hash value
-.Fa dgst
-using the private EC key
-.Fa eckey .
-The DER-encoded signature is stored in
-.Fa sig
-and its length is returned in
-.Fa siglen .
-Note:
-.Fa sig
-must point to
-.Fn ECDSA_size
-bytes of memory.
-The parameter
-.Fa type
-is ignored.
-.Pp
-.Fn ECDSA_verify
-verifies that the signature in
-.Fa sig
-of size
-.Fa siglen
-is a valid ECDSA signature of the hash value
-.Fa dgst
-of size
-.Fa dgstlen
-using the public key
-.Fa eckey .
-The parameter
-.Fa type
-is ignored.
-.Pp
-.Fn ECDSA_do_sign
-computes a digital signature of the
-.Fa dgst_len
-bytes hash value
-.Fa dgst
-using the private key
-.Fa eckey .
-The signature is returned in a newly allocated
-.Vt ECDSA_SIG
-structure (or
-.Dv NULL
-on error).
-.Pp
-.Fn ECDSA_do_verify
-verifies that the signature
-.Fa sig
-is a valid ECDSA signature of the hash value
-.Fa dgst
-of size
-.Fa dgst_len
-using the public key
-.Fa eckey .
-.Sh RETURN VALUES
-.Fn ECDSA_SIG_new
-returns the new
-.Vt ECDSA_SIG
-object or
-.Dv NULL
-if an error occurs.
-.Pp
-.Fn i2d_ECDSA_SIG
-returns the number of bytes successfully encoded
-or a negative value if an error occurs.
-.Pp
-.Fn d2i_ECDSA_SIG
-returns a pointer to the decoded
-.Vt ECDSA_SIG
-structure or
-.Dv NULL
-if an error occurs.
-.Pp
-.Fn ECDSA_size
-returns the maximum length signature or 0 on error.
-.Pp
-.Fn ECDSA_SIG_get0_r
-and
-.Fn ECDSA_SIG_get0_s
-return a pointer owned by the
-.Vt ECDSA_SIG
-object if it has been set or
-.Dv NULL
-otherwise.
-.Pp
-.Fn ECDSA_SIG_set0
-and
-.Fn ECDSA_sign
-return 1 if successful or 0 on error.
-.Pp
-.Fn ECDSA_do_sign
-returns a pointer to an allocated
-.Vt ECDSA_SIG
-structure or
-.Dv NULL
-on error.
-.Pp
-.Fn ECDSA_verify
-and
-.Fn ECDSA_do_verify
-return 1 for a valid signature, 0 for an invalid signature and -1 on
-error.
-The error codes can be obtained by
-.Xr ERR_get_error 3 .
-.Sh EXAMPLES
-Creating an ECDSA signature of given SHA-384 hash value using the named
-curve secp384r1.
-.Pp
-First step: create an
-.Vt EC_KEY
-object.
-This part is
-.Em not
-ECDSA specific.
-.Bd -literal -offset indent
-int ret;
-ECDSA_SIG *sig;
-EC_KEY *eckey;
-eckey = EC_KEY_new_by_curve_name(NID_secp384r1);
-if (eckey == NULL) {
-        /* error */
-}
-if (!EC_KEY_generate_key(eckey)) {
-        /* error */
-}
-.Ed
-.Pp
-Second step: compute the ECDSA signature of a SHA-384 hash value using
-.Fn ECDSA_do_sign
-.Bd -literal -offset indent
-sig = ECDSA_do_sign(digest, SHA384_DIGEST_LENGTH, eckey);
-if (sig == NULL) {
-        /* error */
-}
-.Ed
-.Pp
-or using
-.Fn ECDSA_sign
-.Bd -literal -offset indent
-unsigned char *buffer, *pp;
-int buf_len;
-buf_len = ECDSA_size(eckey);
-buffer  = malloc(buf_len);
-pp = buffer;
-if (!ECDSA_sign(0, dgst, dgstlen, pp, &buf_len, eckey) {
-        /* error */
-}
-.Ed
-.Pp
-Third step: verify the created ECDSA signature using
-.Fn ECDSA_do_verify
-.Pp
-.Dl ret = ECDSA_do_verify(digest, SHA384_DIGEST_LENGTH, sig, eckey);
-.Pp
-or using
-.Fn ECDSA_verify
-.Pp
-.Dl ret = ECDSA_verify(0, digest, SHA384_DIGEST_LENGTH, buffer, buf_len, eckey);
-.Pp
-and finally evaluate the return value:
-.Bd -literal -offset indent
-if (ret == -1) {
-        /* error */
-} else if (ret == 0) {
-        /* incorrect signature */
-} else {
-        /* ret == 1 */
-        /* signature ok */
-}
-.Ed
-.Sh SEE ALSO
-.Xr crypto 3 ,
-.Xr d2i_ECPKParameters 3 ,
-.Xr DSA_new 3 ,
-.Xr EC_GROUP_new 3 ,
-.Xr EC_KEY_METHOD_new 3 ,
-.Xr EC_KEY_new 3 ,
-.Xr EC_KEY_set_ex_data 3 ,
-.Xr EVP_DigestSignInit 3 ,
-.Xr EVP_DigestVerifyInit 3 ,
-.Xr RSA_new 3
-.Sh STANDARDS
-ANSI X9.62, US Federal Information Processing Standard FIPS 186-5
-(Digital Signature Standard, DSS)
-.Sh HISTORY
-.Fn ECDSA_SIG_new ,
-.Fn ECDSA_SIG_free ,
-.Fn i2d_ECDSA_SIG ,
-.Fn d2i_ECDSA_SIG ,
-.Fn ECDSA_size ,
-.Fn ECDSA_sign ,
-.Fn ECDSA_verify ,
-.Fn ECDSA_do_sign ,
-and
-.Fn ECDSA_do_verify
-first appeared in OpenSSL 0.9.8 and have been available since
-.Ox 4.5 .
-.Pp
-.Fn ECDSA_SIG_get0
-and
-.Fn ECDSA_SIG_set0
-first appeared in OpenSSL 1.1.0 and have been available since
-.Ox 6.3 .
-.Fn ECDSA_SIG_get0_r
-and
-.Fn ECDSA_SIG_get0_s
-first appeared in OpenSSL 1.1.1 and have been available since
-.Ox 7.1 .
-.Sh AUTHORS
-.An Nils Larsch
-for the OpenSSL project.

diff --git a/src/lib/libcrypto/man/ECDSA_SIG_new.3 b/src/lib/libcrypto/man/ECDSA_SIG_new.3 deleted file mode 100644 index 2b72e6f1b9..0000000000 --- a/src/lib/libcrypto/man/ECDSA_SIG_new.3 +++ /dev/null
@@ -1,452 +0,0 @@
1	.\" $OpenBSD: ECDSA_SIG_new.3,v 1.21 2024/11/15 20:14:58 tb Exp $
2	.\" full merge up to: OpenSSL e9b77246 Jan 20 19:58:49 2017 +0100
3	.\" selective merge up to: OpenSSL da4ea0cf Aug 5 16:13:24 2019 +0100
4	.\"
5	.\" This file was written by Nils Larsch <nils@openssl.org>.
6	.\" Copyright (c) 2004, 2005, 2013, 2016 The OpenSSL Project.
7	.\" All rights reserved.
8	.\"
9	.\" Redistribution and use in source and binary forms, with or without
10	.\" modification, are permitted provided that the following conditions
11	.\" are met:
12	.\"
13	.\" 1. Redistributions of source code must retain the above copyright
14	.\" notice, this list of conditions and the following disclaimer.
15	.\"
16	.\" 2. Redistributions in binary form must reproduce the above copyright
17	.\" notice, this list of conditions and the following disclaimer in
18	.\" the documentation and/or other materials provided with the
19	.\" distribution.
20	.\"
21	.\" 3. All advertising materials mentioning features or use of this
22	.\" software must display the following acknowledgment:
23	.\" "This product includes software developed by the OpenSSL Project
24	.\" for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
25	.\"
26	.\" 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
27	.\" endorse or promote products derived from this software without
28	.\" prior written permission. For written permission, please contact
29	.\" openssl-core@openssl.org.
30	.\"
31	.\" 5. Products derived from this software may not be called "OpenSSL"
32	.\" nor may "OpenSSL" appear in their names without prior written
33	.\" permission of the OpenSSL Project.
34	.\"
35	.\" 6. Redistributions of any form whatsoever must retain the following
36	.\" acknowledgment:
37	.\" "This product includes software developed by the OpenSSL Project
38	.\" for use in the OpenSSL Toolkit (http://www.openssl.org/)"
39	.\"
40	.\" THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
41	.\" EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
42	.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
43	.\" PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
44	.\" ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
45	.\" SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
46	.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
47	.\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48	.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
49	.\" STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
50	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
51	.\" OF THE POSSIBILITY OF SUCH DAMAGE.
52	.\"
53	.Dd $Mdocdate: November 15 2024 $
54	.Dt ECDSA_SIG_NEW 3
55	.Os
56	.Sh NAME
57	.Nm ECDSA_SIG_new ,
58	.Nm ECDSA_SIG_free ,
59	.Nm ECDSA_SIG_get0 ,
60	.Nm ECDSA_SIG_get0_r ,
61	.Nm ECDSA_SIG_get0_s ,
62	.Nm ECDSA_SIG_set0 ,
63	.Nm i2d_ECDSA_SIG ,
64	.Nm d2i_ECDSA_SIG ,
65	.Nm ECDSA_size ,
66	.Nm ECDSA_sign ,
67	.Nm ECDSA_verify ,
68	.Nm ECDSA_do_sign ,
69	.Nm ECDSA_do_verify
70	.Nd Elliptic Curve Digital Signature Algorithm
71	.Sh SYNOPSIS
72	.In openssl/ec.h
73	.Ft ECDSA_SIG*
74	.Fo ECDSA_SIG_new
75	.Fa void
76	.Fc
77	.Ft void
78	.Fo ECDSA_SIG_free
79	.Fa "ECDSA_SIG *sig"
80	.Fc
81	.Ft void
82	.Fo ECDSA_SIG_get0
83	.Fa "const ECDSA_SIG *sig"
84	.Fa "const BIGNUM **r"
85	.Fa "const BIGNUM **s"
86	.Fc
87	.Ft "const BIGNUM *"
88	.Fo ECDSA_SIG_get0_r
89	.Fa "const ECDSA_SIG *sig"
90	.Fc
91	.Ft "const BIGNUM *"
92	.Fo ECDSA_SIG_get0_s
93	.Fa "const ECDSA_SIG *sig"
94	.Fc
95	.Ft int
96	.Fo ECDSA_SIG_set0
97	.Fa "ECDSA_SIG *sig"
98	.Fa "BIGNUM *r"
99	.Fa "BIGNUM *s"
100	.Fc
101	.Ft int
102	.Fo i2d_ECDSA_SIG
103	.Fa "const ECDSA_SIG *sig_in"
104	.Fa "unsigned char **der_out"
105	.Fc
106	.Ft ECDSA_SIG*
107	.Fo d2i_ECDSA_SIG
108	.Fa "ECDSA_SIG **sig_out"
109	.Fa "const unsigned char **der_in"
110	.Fa "long len"
111	.Fc
112	.Ft int
113	.Fo ECDSA_size
114	.Fa "const EC_KEY *eckey"
115	.Fc
116	.Ft int
117	.Fo ECDSA_sign
118	.Fa "int type"
119	.Fa "const unsigned char *dgst"
120	.Fa "int dgstlen"
121	.Fa "unsigned char *sig"
122	.Fa "unsigned int *siglen"
123	.Fa "EC_KEY *eckey"
124	.Fc
125	.Ft int
126	.Fo ECDSA_verify
127	.Fa "int type"
128	.Fa "const unsigned char *dgst"
129	.Fa "int dgstlen"
130	.Fa "const unsigned char *sig"
131	.Fa "int siglen"
132	.Fa "EC_KEY *eckey"
133	.Fc
134	.Ft ECDSA_SIG*
135	.Fo ECDSA_do_sign
136	.Fa "const unsigned char *dgst"
137	.Fa "int dgst_len"
138	.Fa "EC_KEY *eckey"
139	.Fc
140	.Ft int
141	.Fo ECDSA_do_verify
142	.Fa "const unsigned char *dgst"
143	.Fa "int dgst_len"
144	.Fa "const ECDSA_SIG *sig"
145	.Fa "EC_KEY* eckey"
146	.Fc
147	.Sh DESCRIPTION
148	These functions provide a low level interface to ECDSA.
149	Most applications should use the higher level EVP interface such as
150	.Xr EVP_DigestSignInit 3
151	or
152	.Xr EVP_DigestVerifyInit 3
153	instead.
154	Creation of the required
155	.Vt EC_KEY
156	objects is described in
157	.Xr EC_KEY_new 3 .
158	.Pp
159	The
160	.Vt ECDSA_SIG
161	structure consists of two
162	.Vt BIGNUM Ns s
163	for the
164	.Fa r
165	and
166	.Fa s
167	value of an ECDSA signature (see X9.62 or FIPS 186-2).
168	.Bd -literal -offset indent
169	struct {
170	BIGNUM *r;
171	BIGNUM *s;
172	} ECDSA_SIG;
173	.Ed
174	.Pp
175	.Fn ECDSA_SIG_new
176	allocates a new
177	.Vt ECDSA_SIG
178	structure (note: this function also allocates the
179	.Vt BIGNUM Ns s )
180	and initializes it.
181	.Pp
182	.Fn ECDSA_SIG_free
183	frees the
184	.Vt ECDSA_SIG
185	structure
186	.Fa sig .
187	.Pp
188	.Fn ECDSA_SIG_get0
189	retrieves internal pointers the
190	.Fa r
191	and
192	.Fa s
193	values contained in
194	.Fa sig .
195	The values
196	.Fa r
197	and
198	.Fa s
199	can also be retrieved separately by the corresponding function
200	.Fn ECDSA_SIG_get0_r
201	and
202	.Fn ECDSA_SIG_get0_s ,
203	respectively.
204	.Pp
205	.Fn ECDSA_SIG_set0
206	sets the
207	.Fa r
208	and
209	.Fa s
210	values in
211	.Fa sig .
212	Calling this function transfers the memory management of the values to
213	.Fa sig .
214	Therefore, the values that have been passed in
215	should not be freed by the caller.
216	.Pp
217	.Fn i2d_ECDSA_SIG
218	creates the DER encoding of the ECDSA signature
219	.Fa sig_in
220	and writes the encoded signature to
221	.Pf * Fa der_out .
222	.Fn d2i_ECDSA_SIG
223	decodes the DER-encoded signature stored in the buffer
224	.Pf * Fa der_in
225	which is
226	.Fa len
227	bytes long into
228	.Pf * Fa sig_out .
229	For details about the semantics, examples, caveats, and bugs, see
230	.Xr ASN1_item_d2i 3 .
231	.Pp
232	.Fn ECDSA_size
233	returns the maximum length of a DER-encoded ECDSA signature created with
234	the private EC key
235	.Fa eckey .
236	.Pp
237	.Fn ECDSA_sign
238	computes a digital signature of the
239	.Fa dgstlen
240	bytes hash value
241	.Fa dgst
242	using the private EC key
243	.Fa eckey .
244	The DER-encoded signature is stored in
245	.Fa sig
246	and its length is returned in
247	.Fa siglen .
248	Note:
249	.Fa sig
250	must point to
251	.Fn ECDSA_size
252	bytes of memory.
253	The parameter
254	.Fa type
255	is ignored.
256	.Pp
257	.Fn ECDSA_verify
258	verifies that the signature in
259	.Fa sig
260	of size
261	.Fa siglen
262	is a valid ECDSA signature of the hash value
263	.Fa dgst
264	of size
265	.Fa dgstlen
266	using the public key
267	.Fa eckey .
268	The parameter
269	.Fa type
270	is ignored.
271	.Pp
272	.Fn ECDSA_do_sign
273	computes a digital signature of the
274	.Fa dgst_len
275	bytes hash value
276	.Fa dgst
277	using the private key
278	.Fa eckey .
279	The signature is returned in a newly allocated
280	.Vt ECDSA_SIG
281	structure (or
282	.Dv NULL
283	on error).
284	.Pp
285	.Fn ECDSA_do_verify
286	verifies that the signature
287	.Fa sig
288	is a valid ECDSA signature of the hash value
289	.Fa dgst
290	of size
291	.Fa dgst_len
292	using the public key
293	.Fa eckey .
294	.Sh RETURN VALUES
295	.Fn ECDSA_SIG_new
296	returns the new
297	.Vt ECDSA_SIG
298	object or
299	.Dv NULL
300	if an error occurs.
301	.Pp
302	.Fn i2d_ECDSA_SIG
303	returns the number of bytes successfully encoded
304	or a negative value if an error occurs.
305	.Pp
306	.Fn d2i_ECDSA_SIG
307	returns a pointer to the decoded
308	.Vt ECDSA_SIG
309	structure or
310	.Dv NULL
311	if an error occurs.
312	.Pp
313	.Fn ECDSA_size
314	returns the maximum length signature or 0 on error.
315	.Pp
316	.Fn ECDSA_SIG_get0_r
317	and
318	.Fn ECDSA_SIG_get0_s
319	return a pointer owned by the
320	.Vt ECDSA_SIG
321	object if it has been set or
322	.Dv NULL
323	otherwise.
324	.Pp
325	.Fn ECDSA_SIG_set0
326	and
327	.Fn ECDSA_sign
328	return 1 if successful or 0 on error.
329	.Pp
330	.Fn ECDSA_do_sign
331	returns a pointer to an allocated
332	.Vt ECDSA_SIG
333	structure or
334	.Dv NULL
335	on error.
336	.Pp
337	.Fn ECDSA_verify
338	and
339	.Fn ECDSA_do_verify
340	return 1 for a valid signature, 0 for an invalid signature and -1 on
341	error.
342	The error codes can be obtained by
343	.Xr ERR_get_error 3 .
344	.Sh EXAMPLES
345	Creating an ECDSA signature of given SHA-384 hash value using the named
346	curve secp384r1.
347	.Pp
348	First step: create an
349	.Vt EC_KEY
350	object.
351	This part is
352	.Em not
353	ECDSA specific.
354	.Bd -literal -offset indent
355	int ret;
356	ECDSA_SIG *sig;
357	EC_KEY *eckey;
358
359	eckey = EC_KEY_new_by_curve_name(NID_secp384r1);
360	if (eckey == NULL) {
361	/* error */
362	}
363	if (!EC_KEY_generate_key(eckey)) {
364	/* error */
365	}
366	.Ed
367	.Pp
368	Second step: compute the ECDSA signature of a SHA-384 hash value using
369	.Fn ECDSA_do_sign
370	.Bd -literal -offset indent
371	sig = ECDSA_do_sign(digest, SHA384_DIGEST_LENGTH, eckey);
372	if (sig == NULL) {
373	/* error */
374	}
375	.Ed
376	.Pp
377	or using
378	.Fn ECDSA_sign
379	.Bd -literal -offset indent
380	unsigned char buffer, pp;
381	int buf_len;
382
383	buf_len = ECDSA_size(eckey);
384	buffer = malloc(buf_len);
385	pp = buffer;
386	if (!ECDSA_sign(0, dgst, dgstlen, pp, &buf_len, eckey) {
387	/* error */
388	}
389	.Ed
390	.Pp
391	Third step: verify the created ECDSA signature using
392	.Fn ECDSA_do_verify
393	.Pp
394	.Dl ret = ECDSA_do_verify(digest, SHA384_DIGEST_LENGTH, sig, eckey);
395	.Pp
396	or using
397	.Fn ECDSA_verify
398	.Pp
399	.Dl ret = ECDSA_verify(0, digest, SHA384_DIGEST_LENGTH, buffer, buf_len, eckey);
400	.Pp
401	and finally evaluate the return value:
402	.Bd -literal -offset indent
403	if (ret == -1) {
404	/* error */
405	} else if (ret == 0) {
406	/* incorrect signature */
407	} else {
408	/* ret == 1 */
409	/* signature ok */
410	}
411	.Ed
412	.Sh SEE ALSO
413	.Xr crypto 3 ,
414	.Xr d2i_ECPKParameters 3 ,
415	.Xr DSA_new 3 ,
416	.Xr EC_GROUP_new 3 ,
417	.Xr EC_KEY_METHOD_new 3 ,
418	.Xr EC_KEY_new 3 ,
419	.Xr EC_KEY_set_ex_data 3 ,
420	.Xr EVP_DigestSignInit 3 ,
421	.Xr EVP_DigestVerifyInit 3 ,
422	.Xr RSA_new 3
423	.Sh STANDARDS
424	ANSI X9.62, US Federal Information Processing Standard FIPS 186-5
425	(Digital Signature Standard, DSS)
426	.Sh HISTORY
427	.Fn ECDSA_SIG_new ,
428	.Fn ECDSA_SIG_free ,
429	.Fn i2d_ECDSA_SIG ,
430	.Fn d2i_ECDSA_SIG ,
431	.Fn ECDSA_size ,
432	.Fn ECDSA_sign ,
433	.Fn ECDSA_verify ,
434	.Fn ECDSA_do_sign ,
435	and
436	.Fn ECDSA_do_verify
437	first appeared in OpenSSL 0.9.8 and have been available since
438	.Ox 4.5 .
439	.Pp
440	.Fn ECDSA_SIG_get0
441	and
442	.Fn ECDSA_SIG_set0
443	first appeared in OpenSSL 1.1.0 and have been available since
444	.Ox 6.3 .
445	.Fn ECDSA_SIG_get0_r
446	and
447	.Fn ECDSA_SIG_get0_s
448	first appeared in OpenSSL 1.1.1 and have been available since
449	.Ox 7.1 .
450	.Sh AUTHORS
451	.An Nils Larsch
452	for the OpenSSL project.