Edit

SslVerifySignature function

  • Article

The SslVerifySignature function verifies the specified signature by using the supplied hash and the public key.

Syntax

SECURITY_STATUS WINAPI SslVerifySignature(
  _In_ NCRYPT_PROV_HANDLE hSslProvider,
  _In_ NCRYPT_KEY_HANDLE  hPublicKey,
  _In_ PBYTE              pbHashValue,
  _In_ DWORD              cbHashValue,
  _In_ PBYTE              pbSignature,
  _In_ DWORD              cbSignature,
  _In_ DWORD              dwFlags
);

Parameters

hSslProvider [in]

The handle to the Secure Sockets Layer protocol (SSL) protocol provider instance.

hPublicKey [in]

The handle to the public key.

pbHashValue [in]

A pointer to a buffer that contains the hash to use to verify the signature.

cbHashValue [in]

The size, in bytes, of the pbHashValue buffer.

pbSignature [in]

A pointer to a buffer that contains the signature to verify.

cbSignature [in]

The size, in bytes, of the pbSignature buffer.

dwFlags [in]

This parameter is reserved for future use.

Return value

If the function succeeds, it returns zero.

If the function fails, it returns a nonzero error value.

Possible return codes include, but are not limited to, the following.

Return code/value Description
NTE_INVALID_HANDLE
0x80090026L
 One of the provided handles is not valid.

Remarks

The SslVerifySignature function is not currently called by Windows. This function is a required part of the SSL Provider interface and should be fully implemented to ensure forward compatibility.

Current implementations of the server side of the Transport Layer Security protocol (TLS) connection call the NCryptVerifySignature function during the client authentication to process the certificate verify message.

Requirements

Requirement Value
Minimum supported client
 Windows Vista [desktop apps only]
Minimum supported server
 Windows Server 2008 [desktop apps only]
Header
Sslprovider.h
DLL
Ncrypt.dll