On Wed, 10 Jul 2002 16:32:57 -0300, Krishnan Chellakarai wrote: [strip] > Finally I was able to sign some data, but now I am not able to verify. I > am getting the following error. > > java.security.SignatureException: encryptedDigest was not the correct > signature of the contents of the DER-encoded authenticated attributes at > org.mozilla.jss.pkcs7.SignerInfo.verifyWithAuthenticatedAttributes(SignerInfo.java > > at org.mozilla.jss.pkcs7.SignerInfo.verify(SignerInfo.java:488) > > Any ideas would really help. I have pasted my code below. [strip]
I have the same problem. I was looking the JSS code and I think there is a problem in the verify and sign routines. The sign and verify routines make diferent thinks... I have code that fix this problem.... but sign and verify continues to make a mistake I think... The PKCS7 spec say (may be some ambigous) that the verify is agains data digest and if there are authAttributes, the digest of both... but JSS, if found authAttributes, only verify agains the authAttributes, and the same when sign, only sign authAttributes if they found some... I fix JSS and sign and verify OK, but *only* the authAttributes. I think that need new code the sign and verify routines to deal with Data and authAttributes if they exits....If I interpret ok the PKCS7 specs..... Jamie if you want I can look forward and make a patch for SignerInfo class -- :: Nelson ::
