Re: Problem decrypting a pkcs7 structure

Massimiliano Pala Sun, 03 Nov 2002 12:41:11 -0800

Vadim Fedukovich wrote:
[...]

It's easy to see PKCS7_decrypt() does X509_check_private_key(certificate, key)
and then PKCS7_dataDecode()


One could also read PKCS7_dataDecode() source to see "decryption certificate"
will only be used to match issuer and serial number with that of each
"recipient info" from enveloped data, so your code should work fine
with PKCS7_decrypt() replaced

Indeed I had tried also using directly the PKCS7_dataDecode() but I got
a core dump as well...

Thanks for the hint on the PKCS7_decrypt(), however should't we add some checking on the passed parameters so as to avoid "unsafe" code from
core dumping ?

--

C'you,

Massimiliano Pala

--o-------------------------------------------------------------------------
Massimiliano Pala [OpenCA Project Manager] [EMAIL PROTECTED]
[EMAIL PROTECTED]
http://www.openca.org Tel.: +39 (0)59 270 094
http://openca.sourceforge.net Mobile: +39 (0)347 7222 365

smime.p7s
Description: S/MIME Cryptographic Signature

Re: Problem decrypting a pkcs7 structure

Reply via email to