hello Mark,
On Tuesday 28 February 2006 19:25, Mark Wielaard wrote:
> On Fri, 2006-02-24 at 00:23 +1100, Raif S. Naffah wrote:
> > this pacth --already committed...
>
> It looks like this patch broke https support for me.
> The following little program gives an error now:
>
> import java.io.*;
> import java.net.*;
>
> public class HTTPS
> {
> public static void main(String[] args) throws Exception
> {
> URL u = new URL("https://www.paypal.com/";);
> InputStream in = u.openStream();
> BufferedReader br = new BufferedReader(new
> InputStreamReader(in)); String line = br.readLine();
> while (line != null)
> {
> System.out.println(line);
> line = br.readLine();
> }
> }
> }
>
> javax.net.ssl.SSLPeerUnverifiedException: could not verify peer
> certificate: C=US,ST=California,L=Mountain View,O=Paypal
> Inc.,OU=Information Systems,OU=Terms of use at www.verisign.com/rpa
> (c)00,CN=www.paypal.com at
> gnu.javax.net.ssl.provider.SSLSocket.doClientHandshake
> (SSLSocket.java:1559) [...]
> Caused by: java.security.InvalidParameterException: Wrong signature
> field at
> gnu.java.security.sig.rsa.RSAPKCS1V1_5SignatureX509Codec.decodeSignat
>ure (RSAPKCS1V1_5SignatureX509Codec.java:144) at
> gnu.java.security.jce.sig.SignatureAdapter.engineVerify
> (SignatureAdapter.java:226) [...]
>
> Apparently because RSAPKCS1V1_5SignatureX509Codec expects
> DERValue.getValue() to return a BitString.
>
> Cheers,
>
> Marki'm working on a fix. if it's going to take too long (more than 48 hours) i'll let you know so we can then decide if we should revert it. cheers; rsn
pgp3u9PWR8Joc.pgp
Description: PGP signature
