LMS Signature Generation

Developer Guide and Reference for Intel® Cryptography Primitives Library

Download PDF

ID 834196

Date 4/28/2026

Version

Public

LMS Signature Generation

Performs the LMS signature generation.

Syntax

IppStatus ippsLMSSign (const Ipp8u* pMsg,
                       const Ipp32s msgLen,
                       IppsLMSPrivateKeyState* pPrvKey,
                       IppsLMSSignatureState* pSign,
                       IppBitSupplier rndFunc,
                       void* pRndParam,
                       Ipp8u* pBuffer);

Include Files

ippcp.h

Parameters

pMsg	Pointer to the message that is signed.
msgLen	Message length in bytes.
pPrvKey	Pointer to the initialized `IppsLMSPrivateKeyState` context. Size is greater or equal to the value returned by the ippsLMSPrivateKeyStateGetSize function.
pSign	Pointer to the initialized `IppsLMSSignatureState` context. Size is greater or equal to the value returned by the ippsLMSSignatureStateGetSize function.
rndFunc	Pointer to the random number generator function that is used for private key generation. The function should be defined as: `IppStatus rndFunc(Ipp8u* pRnd, int size, void* pRndParam)`. This function must be cryptographically secure. Security strength must be `8*n` bits, where `n` is the length of the hash function output. The `size` parameter is the size of the buffer in bytes. The `pRndParam` parameter is a pointer to the user-defined parameter. If `rndFunc` is NULL then `TRNGenRDSEED` is used as a random number generator.
pRndParam	Pointer to the user-defined parameter for the random number generator function. It can be a NULL pointer.
pBuffer	Pointer to the temporary buffer. Size is greater or equal to the value returned by the ippsLMSSignBufferGetSize function.

Description

This function signs the message with the LMS algorithm.

This function uses internally the random number generator (RNG) provided by the user through the rndFunc parameter, please see User’s Implementation of a RNG for more information regarding creation the customer’s defined RNG object. If rndFunc is NULL, the internal default random number generator based on RDRAND hardware instruction is used.

pSign is an output parameter.

NOTE:

Important

You need to enable the IPPCP_PREVIEW_LMS macro to use the feature. For more information, see Preview Features.

Return Values

ippStsNoErr	Indicates no error. All single operations executed without errors. Any other value indicates an error or warning.
ippStsNullPtrErr	Any of the input parameters is a NULL pointer.
ippStsContextMatchErr	`pPrvKey` or `pSign` contexts are invalid.
ippStsBadArgErr	wrong LMS or LMOTS parameters.
ippStsOutOfRangeErr	private key will not be valid any longer after executing the function and new keys need to be generated again using `ippsLMSKeyGen`.
ippStsLengthErr	`msgLen < 1` or `msgLen > IPP_MAX_32S - (22 + n)`, where `n` is the LM-OTS parameter.

Select Your Language

Using Intel.com Search

Quick Links

Recent Searches

Advanced Search

Only search in

Developer Guide and Reference for Intel® Cryptography Primitives Library

LMS Signature Generation

Syntax

Include Files

Parameters

Description

Return Values