Hi, Can we expect a patch or should we need to make the same changes?. Nelson, Can we get your fix?
Thanks Krish. nelson wrote: > On Wed, 10 Jul 2002 16:32:57 -0300, Krishnan Chellakarai wrote: > > [strip] > > Finally I was able to sign some data, but now I am not able to verify. I > > am getting the following error. > > > > java.security.SignatureException: encryptedDigest was not the correct > > signature of the contents of the DER-encoded authenticated attributes at > > org.mozilla.jss.pkcs7.SignerInfo.verifyWithAuthenticatedAttributes(SignerInfo.java > > > > at org.mozilla.jss.pkcs7.SignerInfo.verify(SignerInfo.java:488) > > > > Any ideas would really help. I have pasted my code below. > [strip] > > I have the same problem. I was looking the JSS code and I think there is > a problem in the verify and sign routines. > The sign and verify routines make diferent thinks... I have code that fix > this problem.... but sign and verify continues to make a mistake I > think... > > The PKCS7 spec say (may be some ambigous) that the verify is agains > data digest and if there are authAttributes, the digest of both... > but JSS, if found authAttributes, only verify agains the authAttributes, > and the same when sign, only sign authAttributes if they found some... > > I fix JSS and sign and verify OK, but *only* the authAttributes. I think > that need new code the sign and verify routines to deal with Data and > authAttributes if they exits....If I interpret ok the PKCS7 specs..... > > Jamie if you want I can look forward and make a patch for SignerInfo class > > -- > > :: Nelson ::
