Mikhail Blinov wrote:
>
> Hi
>
> I tried to play with PKCS7 encryption - decryption (enveloped-data content
> type).
> I notices that
> 1) neither crypto/pkcs7/enc.c nor crypto/pkcs7/dec.c can be compiled
> because "PEM_read_bio_*" functions now have an extra "char **u"
> parameter
> 2) after adding an extra ",NULL" to the function calls like
> PEM_read_bio_PKCS7(data,NULL,NULL,NULL)
> "dec" utility can't decrypt data generated by "enc" utility.
>
Thank you for the complete report. The problem with enc/dec not
compiling is fixed in the latest snapshot.
Your enc/dec problem is because the private key you have does not match
the certificate. I suppose OpenSSL should really check this and give an
appropriate error.
You can see this yourself by comparing:
openssl rsa -in recv_cert.pem -noout -modulus
openssl x509 -in recv_cert.pem -noout -modulus
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
