An, Based on some of the responses to this error on openssl-users mailing list, it looks like this error occurs when the signature on the certificate is bigger than RSA key size.
But I'm not sure why this happens in your case. What version of openssl do you have on the system? What type of machine is this? I'm copying [email protected] to get inputs from others on that list to fix this issue. Raj On Thu, 24 Jul 2008, An Ho wrote: > Hi Raj, > > I've been attempting to setup the simpleCA by following the following link: > http://www.globus.org/toolkit/docs/4.2/4.2.0/security/gsic/admin/gsic-configuring.html > But I have not been able to get it to work. At the verification step > (5), I always get the following error. I've tried going through the > procedures a few times with the same results. Do you have any idea what > I might be doing wrong? > > Thanks > > An > > > > > ---------------------------------------------------- Output > ----------------------------------------------------------------------------- > > > [EMAIL PROTECTED] ~]$ grid-proxy-init -debug -verify > > User Cert File: /usr/home/hoas/.globus/usercert.pem > User Key File: /usr/home/hoas/.globus/userkey.pem > > Trusted CA Cert Dir: /etc/grid-security/certificates > > Output File: /tmp/x509up_u500 > Your identity: > /O=Grid/OU=GlobusTest/OU=simpleCA-vis.cs.ucdavis.edu/OU=cs.ucdavis.edu/CN=An > Ho > Enter GRID pass phrase for this identity: > Creating proxy ......++++++++++++ > .++++++++++++ > Done > > > ERROR: Couldn't verify the authenticity of the user's credential to > generate a proxy from. > > grid_proxy_init.c:1079:globus_credential: Error verifying credential: > Failed to verify credential > globus_gsi_callback_module: Could not verify credential > globus_gsi_callback_module: Could not verify credential: certificate > signature failure > OpenSSL Error: a_verify.c:162: in library: asn1 encoding routines, > function ASN1_verify: EVP lib > OpenSSL Error: rsa_eay.c:532: in library: rsa routines, function > RSA_EAY_PUBLIC_DECRYPT: data too large for modulus >
