1 /* S/MIME signing example: 2 signers. OpenSSL 0.9.9 only */ 2 #include <openssl/pem.h> 3 #include <openssl/pkcs7.h> 4 #include <openssl/err.h> 5 6 int main(int argc, char **argv) 7 { 8 BIO *in = NULL, *out = NULL, *tbio = NULL; 9 X509 *scert = NULL, *scert2 = NULL; 10 EVP_PKEY *skey = NULL, *skey2 = NULL; 11 PKCS7 *p7 = NULL; 12 int ret = 1; 13 14 OpenSSL_add_all_algorithms(); 15 ERR_load_crypto_strings(); 16 17 tbio = BIO_new_file("signer.pem", "r"); 18 19 if (!tbio) 20 goto err; 21 22 scert = PEM_read_bio_X509(tbio, NULL, 0, NULL); 23 24 BIO_reset(tbio); 25 26 skey = PEM_read_bio_PrivateKey(tbio, NULL, 0, NULL); 27 28 BIO_free(tbio); 29 30 tbio = BIO_new_file("signer2.pem", "r"); 31 32 if (!tbio) 33 goto err; 34 35 scert2 = PEM_read_bio_X509(tbio, NULL, 0, NULL); 36 37 BIO_reset(tbio); 38 39 skey2 = PEM_read_bio_PrivateKey(tbio, NULL, 0, NULL); 40 41 if (!scert2 || !skey2) 42 goto err; 43 44 in = BIO_new_file("sign.txt", "r"); 45 46 if (!in) 47 goto err; 48 49 p7 = PKCS7_sign(NULL, NULL, NULL, in, PKCS7_STREAM|PKCS7_PARTIAL); 50 51 if (!p7) 52 goto err; 53 54 /* Add each signer in turn */ 55 56 if (!PKCS7_sign_add_signer(p7, scert, skey, NULL, 0)) 57 goto err; 58 59 if (!PKCS7_sign_add_signer(p7, scert2, skey2, NULL, 0)) 60 goto err; 61 62 out = BIO_new_file("smout.txt", "w"); 63 if (!out) 64 goto err; 65 66 /* NB: content included and finalized by SMIME_write_PKCS7 */ 67 68 if (!SMIME_write_PKCS7(out, p7, in, PKCS7_STREAM)) 69 goto err; 70 71 ret = 0; 72 73 err: 74 75 if (ret) 76 { 77 fprintf(stderr, "Error Signing Data\n"); 78 ERR_print_errors_fp(stderr); 79 } 80 81 if (p7) 82 PKCS7_free(p7); 83 84 if (scert) 85 X509_free(scert); 86 if (skey) 87 EVP_PKEY_free(skey); 88 89 if (scert2) 90 X509_free(scert2); 91 if (skey) 92 EVP_PKEY_free(skey2); 93 94 if (in) 95 BIO_free(in); 96 if (out) 97 BIO_free(out); 98 if (tbio) 99 BIO_free(tbio); 100 101 return ret; 102 103 } 104 105 106 107 108