Hi all.I'm using OpenSSL 1.0.0a and I need to produce some different kinds of signed PKCS7; in particular, I'm trying hard to change the signature algorithm to sha256-with-rsa (sha256WithRSAEncryption, OID.1.2.840.113549.1.1.11).The output (parsed with asn1parse command) shall be like in the following (example from a vendor): (...omitting the rest of PKCS7...) 1811:d=5 hl=2 l= 13 cons: SEQUENCE 1813:d=6 hl=2 l= 9 prim: OBJECT :sha256WithRSAEncryption 1824:d=6 hl=2 l= 0 prim: NULL 1826:d=5 hl=3 l= 128 prim: OCTET STRING [HEX DUMP]:C799C8A6E8D99973926BD5E17B49E35CB622930753A64419893D980E56C760827AFDC6EF21A01B8EC3BC538AEBB78B4FBBCE52B91E6FC8E6A2C21AAC85C54E306713E86911D65D7928ECA9EAE18ED44269541EDA463362DA1BD4EC82489F4FC122CDCF080E21594D4F585E1FF25BEFD9900D5D67370DC38C36061023128825A6But what I obtain by changing si->digest_alg->algorithm is just (maybe *technically* the same but not what I want): (...omitting the rest of PKCS7...) (hash attribute, how does it link to my problem?) 1670:d=11 hl=2 l= 11 cons: SEQUENCE 1672:d=12 hl=2 l= 9 prim: OBJECT :sha256 1683:d=11 hl=2 l= 32 prim: OCTET STRING [HEX DUMP]:B0367ABE6FFBE185CB0A4DE21BA1EFF2BCF8BADCA005D52BAA439042D378353E (...now the signature, you can see it is just "rsaEnryption"...) **** 1717:d=5 hl=2 l= 13 cons: SEQUENCE 1719:d=6 hl=2 l= 9 prim: OBJECT :rsaEncryption 1730:d=6 hl=2 l= 0 prim: NULL 1732:d=5 hl=3 l= 128 prim: OCTET STRING [HEX DUMP]:4DC9B5F8D20BF2E4B71FCC0C0947E458CFECEC8061EED43D1F7A8AE2D153FFC92BC20CC292652D90D0A5820E5A9BE0B3196EF9C966F6350677D3AA78B2124CF49B5F93352DF1425DDFB2F244FD316F32BCA79CFB9E1C8BE9674D681D5AE45AF6267285180E7D423F9D4E3EE7D0EE0BB4DE646CC4D5F862AB885AB16B72E14512Has anybody done this? Can I do it using the standard PKCS7 functions or should I hack them someway?
