Kuenni
commented
3 years ago Please, merge this PR. We could very well use this improvement! :) THX
Closed mekpavit closed 9 months ago
Kuenni
commented
3 years ago Please, merge this PR. We could very well use this improvement! :) THX
kuhlmannmarkus
commented
3 years ago Thank you for this solution @mekpavit! We have been looking for a solution like this for some time now. Can somebody merge this, please?
RichardLaos
commented
2 years ago Great solution @mekpavit. Would be happy to have this merged as well.
jessepeterson
commented
2 years ago Apologies for the direct ping @g-k (or other project maintainers) but is there any chance this could get merged? We're maintaining a fork just for this change. Thanks!
AlCutter
commented
9 months ago Hi @g-k (or others), we could really do with this being merged too - any chance of it going in? Thanks!
jvehent
commented
9 months ago @g-k and myself no longer work at mozilla and therefore no longer maintain this repository. perhaps @hwine can be of assistance?
jessepeterson
commented
9 months ago @AlCutter I'd suggest taking a look at the smallstep/pkcs7#3 fork (and that issue that mentions this one). They're more actively maintaining it over there. Also see #73 in this repo.
This pull request fix
getOIDForEncryptionAlgorithminpkcs7.gocheck type of public key instead of private key if thepkeyimplementscrypto.Signer. This should make this library compatible withcrpyto.Signerthat does not expose private key (for example,crpyto.Signerfrom ThalesIgnite/crypto11 that holds the signer from HSM).Change
getOIDForEncryptionAlgorithmto check forcrypto.Signerfirst. if it iscrypto.Signer, it will determineOIDForEncryptionAlgorithmfrom the public key.