Fwd: CMS_NOATTR and CMS_SignerInfo_sign

Previous Topic Next Topic
classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view

Fwd: CMS_NOATTR and CMS_SignerInfo_sign



I have been unable to prevent CMS_SignerInfo_sign() to add a signing time attribute even though I used CMS_NOATTR. I think the issue is here:

if (CMS_signed_get_attr_by_NID(si, NID_pkcs9_signingTime, -1) < 0) {
if (!cms_add1_signingTime(si, NULL))
goto err;

This is around line 648 of crypto/cms/cms_sd.c.

It seems to me that no matter what, the signing time attribute will be added if not present. If I comment out the above lines I get the result I want, which is no signing time attribute, but maybe I am not using the flags correctly.

Can someone comment?


openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users