On Monday 11 January 2016 15:53:26 Kai Thiele wrote: > Hi, > > regarding CMS (Cryptographic Message Syntax), > which RFC is the current one NSS is supporting ? > (e.g RFC 5652 and RFC 5753 or only RFC 2630) > > I already searched for this in the list, > but relevant entries are 5 to 10 years old. > > > I tried to decrypt a CMS container using cmsutil (NSS 3.21) > The container(signed-data) was generated by OpenSSL 1.0.1p > Keys are ECC secp256v1 and signature is ECDSA_SHA256. > > It seems that NSS is not identifying the keys as 'ecKey' > and the algorithm-ids like SEC_OID_ANSIX962_ECDSA_SHA256_SIGNATURE > are ignored. That leads to error Messages from cmsutil. > > So I wonder, to which RFC the CMS in NSS is compliant.
Could you provide exact steps needed to reproduce this? -- Regards, Hubert Kario Senior Quality Engineer, QE BaseOS Security team Web: www.cz.redhat.com Red Hat Czech s.r.o., Purkyňova 99/71, 612 45, Brno, Czech Republic
signature.asc
Description: This is a digitally signed message part.
-- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto