David Stutzman wrote:
Oh, so the signer info stuff is Java proper, not JSS. What you need is either a PrivateKey from JSS that came through it's JCE provider interface, or a JSS call that gives our a SingerInfo from JSS itself.Robert Relyea wrote:The JSS method to create this is:SignerInfo(SignerIdentifier signerIdentifier, SET signedAttributes, SET unsignedAttributes, OBJECT_IDENTIFIER contentType, byte[] messageDigest, SignatureAlgorithm signingAlg, PrivateKey signingKey)So just passing agentPrivateKey here doesn't work?I can test it again to see for sure if you'd like, but I think the reason I went through the conversion process in the first place was because the SignerInfo constructor threw an exception complaining that the private key didn't belong to the JSS provider. Now that I'm working with a hardware token that isn't giving up its keybytes so I can build a key with the JSS provider I'm in trouble.
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
