I have converted a Microsoft code signing key obtained from Thawte into
a PKCS12 file, and then converted to a pair of PEM files, one with the
private key and the other without, like this:
openssl pkcs12 -chain -in palisadesys.pfx -out palisadesys.pem
openssl pkcs12 -chain -in palisadesys.pfx -nokeys -out
palisadesys-publiconly.pem
Then I have signed a file like this:
openssl dgst -sha1 -sign palisadesys.pem -out file.tar.gz.sha1 file.tar.gz
But when I validate the signature:
openssl dgst -sha1 -verify palisadesys-publiconly.pem -signature
file.tar.gz.sha1 file.tar.gz
results in the message "unable to load key file". All three files
(palisadesys-publiconly.pem, file.tar.gz.sha1, and file.tar.gz) are
readable.
Thanks for any help,
Guy Helmer
--
Guy Helmer, Ph.D.
Chief System Architect
Palisade Systems, Inc.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
