Chris Covell wrote:
actually - i'm that far, that the code itself seemes to be fine in most cases, since i got the pub-user-test certificate workingDalini, On Tuesday 29 June 2004 17:48, dalini wrote:
Any ideas ?
yes, but no good news... i just try to trace down this problem this is related to all browserbased signing at the moment is broken somehow...
thanks for this ! I shall have a look too, (but don't hold your breath !!!).
the problem there was: the signing text had a \n at the end, but the text used to verify against didn't have \n at the end - so the verify fails... i just removed all \n inside the text for generating the signature - and it just worked...
the certificate could be verifyid as valid
so i guess - the current problems mainly result from missing or added bytes at the text or data to be proofed...
but i havn't localized this part for sure, where this happens... i think it could be part of internationalization code, but i'm not sure since:
the pkcs7, openssl and openca-sv code seemes to be fine in general to test the above - you just go to: .../lib/cmd/test_cert line 13 i removed all \n and the whole thing worked...
if i insert somewhere a \n in the to be signed text - the verification breaks... that means - there is a converting problem with \n most probably it gets translated to \n\r or something, i will check the
hexcode of the data file used for verification
the question is - where does it get converted/changed so verification breaks...
since in other to be signed stuff there is \n used or a byte in the challenge with the same meaning - this is our troublemaker i guess...
if we find this - i think fixing is a question of some minutes ;o)
greetings dalini
-------------------------------------------------------
This SF.Net email sponsored by Black Hat Briefings & Training.
Attend Black Hat Briefings & Training, Las Vegas July 24-29 - digital self defense, top technical experts, no vendor pitches, unmatched networking opportunities. Visit www.blackhat.com
_______________________________________________
Openca-Users mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/openca-users
