Michael Ströder wrote: > > I'd like to generate and verify a detached signature (in a separate > file) with a key from my Seamonkey profile. Is this approach with > cmsutil ok (single command-line wrapped here)? > > cmsutil -S -d ~/.mozilla/xxxxxxx/ -N "cert nickname" -G -H SHA1 -T -i > name.tar.gz -o name.tar.gz.p7m > [..] > I also tried signver but this hangs: > > signver -V -v -d ~/.mozilla/xxxxxxx/ -i name.tar.gz -s name.tar.gz.p7m
The following command works reading the detached signature from stdin: $ signver -V -v -d ~/.mozilla/xxxxxxx/ -i name.tar.gz < name.tar.gz.p7m signatureValid=yes But this differs from what signver -h says. Also on the web page http://www.mozilla.org/projects/security/pki/nss/tools/index.html#signver the old Sun docs on http://docs.sun.com/source/816-6153-10/signver.htm are referenced. For the examples given there command-line options are used which does not seem to work with recent signver anymore. Strange... Ciao, Michael. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
