Background and motivation
This is a proposal for the discussion in #67059. We have some helpers for {EC}DSA for getting signature sizes. This adds a complementary API for RSA. The method handles a "right" size for encryption and signing, and a "worst case" for decryption.
This is useful if you want to stackalloc or rent a buffer to hold a signature and need to know how much data you need.
Remark:
I considered what this might look like for ECDiffieHellman derived keys. It's a little easier for developers to reason about those sizes from DeriveKeyFrom{Hash,Hmac} without a helper, so I didn't propose anything there.
API Proposal
namespace System.Security.Cryptography {
public partial class RSA {
public int GetMaxOutputSize();
}
}API Usage
byte[] signatureBuffer = ArrayPool<byte>.Shared.Rent(rsa.GetMaxOutputSize());
int written = rsa.Sign(blah, blah, signatureBuffer);
ReadOnlySpan<byte> signature = signatureBuffer.AsSpan(0, written);
Alternative Designs
Do nothing. Expect that developers know (KeySize + 7) / 8 is correct.
Risks
No response
Background and motivation
This is a proposal for the discussion in #67059. We have some helpers for {EC}DSA for getting signature sizes. This adds a complementary API for RSA. The method handles a "right" size for encryption and signing, and a "worst case" for decryption.
This is useful if you want to stackalloc or rent a buffer to hold a signature and need to know how much data you need.
Remark:
I considered what this might look like for ECDiffieHellman derived keys. It's a little easier for developers to reason about those sizes from
DeriveKeyFrom{Hash,Hmac}without a helper, so I didn't propose anything there.API Proposal
API Usage
Alternative Designs
Do nothing. Expect that developers know
(KeySize + 7) / 8is correct.Risks
No response