Miguel Rodríguez wrote: > > Hi, > I have problems setting the signing time of a PKCS# Signed Data object. > I don't want to use local time because this code is running on a client > system and I can't trust on it. I use a SNTP server to get the right > time. > Let "sign_time" the date obtained from the SNTP server. I use the next > line to set the time: > > PKCS7_add_signed_attribute (sib, NID_pkcs9_signingTime, > V_ASN1_UTCTIME, sign_time); > > The time is stablished without problems, but after I use > PKCS7_dataFinal in the signing process, the time is changed to local > time. What can I do? > Thanks in advance. >
Currently there's no way to change this behaviour without modifying OpenSSL, though that isn't too hard to do. I'll change the dev version so it doesn't add a new signing time if one already exists. Steve. -- Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/ Personal Email: [EMAIL PROTECTED] Senior crypto engineer, Gemplus: http://www.gemplus.com/ Core developer of the OpenSSL project: http://www.openssl.org/ Business Email: [EMAIL PROTECTED] PGP key: via homepage. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
