On Tue, Dec 7, 2010 at 01:50, Dr. Stephen Henson <[email protected]> wrote: > On Tue, Dec 07, 2010, Maxim Kammerer wrote: >> > The command-line argument "-md" to "openssl cms -sign_receipt" is >> > apparently ignored, and the default digest algorithm (SHA-1 in my >> > tests) is used instead. > > At present this is a limitation of the API: there is no option to specify an > alternative digest. I'll have to see if there is an easy way to fix this > without a new API. > > It would be relatively easy to use the same digest as the original content > instead of using the default public key algorithm digest.
Any news on this issue? "openssl cms -sign_receipt" still uses SHA-1 in my tests for 1.0.0d. Thanks, Maxim ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [email protected]
