oh, I forgot to mention that this behaviour appears in the latest
snapshot (20070816) of openssl-0.9.9-dev.
Am 16.08.2007 um 10:30 schrieb Harald Latzko:
Hello!
Am 14.04.2007 um 00:04 schrieb Dr. Stephen Henson:
'tis done.
I found a quiet period to look into it and test it a little. Check
out the new
-stream option in the smime utility for OpenSSL 0.9.9.
Support in the API is quite simple too, just include the
PKCS7_STREAM flag in
the calls to PKCS7_{sign,encrypt} and SMIME_write_PKCS7() see the
docs for more
info or the new examples in demos/smime. Chaining isn't possible
using that
method however (e.g. sign & encrypt) that would need major API
changes.
Any problems let me know. Money back if not completely satisfied :-)
It seems I've found a problem in the "-stream" functionality of the
command line openssl tool in 0.9.9. When signing a little file (in
this case: a null byte file), the following command writes a null
byte file as output:
openssl smime -sign -in /tmp/nullfile -out /tmp/signed_nullfile -
signer /tmp/my_private_key -nodetach -binary -outform DER -stream
When not using the option "-stream", a (expected) signed file is
written. Is this behaviour a bug or wanted?
Regards,
Harald
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
