[openssl-users] in the department of "ain't no perfect"

Eliot Lear lear at ofcourseimright.com
Tue Jan 15 21:38:32 UTC 2019

Hi Rich and thanks for your response.  Please see below.

On 15.01.19 21:12, Salz, Rich via openssl-users wrote:
>> like a way to extract the signature date from a CMS structure.  With all the opaque structs that have been introduced in the last few releases, it's not clear to me how to do that.  Any examples or guidance (other than don't do that)?
> Can you list which fields you need and open an issue on github?  Yes, this would be a bug-fix because "going opaque" made some things not possible.

Wilco.  For the benefit of others, I'm the verifier, and at least at the
moment, no externally signed timestamp is available.  So what I want
access to is the id-signingTime attribute from the CMS structure,
preferably parsed neatly into a time_t akin to
X509_VERIFY_PARAM_get_time, but presumably coming  from CMS_ContentInfo.

I don't know if this was was ever externalized, Rich, but I'll open the
Github issue.  I recognize that examining this value is not without
risks in the general case.


ps: sorry for the artsy subject line.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20190115/c0e8ef00/attachment.sig>

More information about the openssl-users mailing list