Hi all, As stated in other threads, I am migrating our production 1.0.2 CA over to 1.5.1. The data transferred over fine (except for the sort order but that is another thread). All the exist data reports that signatures are invalid. The output is below. Signing new certificates however do not get this error. Their signatures are not corrupt. The cert chain is fine and I'm not missing any of the root certificates.
Cannot build PKCS#7-object from extracted signature! OpenCA::PKCS7 returns errorcode 7911031 OpenCA::PKCS7->new: Cannot initialize signature (7912021). OpenCA::PKCS7->initSignature: Cannot parse signature (7921021). OpenCA::PKCS7->getParsed: The crypto-backend cannot verify the signature (7742075). OpenCA::OpenSSL->verify: openca-sv failed. [Error]: error:04091068:rsa routines:INT_RSA_VERIFY:bad signature [Info]: Input file intialized. [Info]: Signaturefile initialized. [Info]: Reading Certificate file. [Info]: PKCS#7 object loaded. [Info]: Data is ready for verification. [Info]: Signature Informations (PKCS#7): depth:2 serial:ACE7E75961F0DC6C ... depth:1 serial:08 ... depth:0 serial:0524 ... [Info]: Signature is corrupt. Errorcode -1. signature:error:-1
smime.p7s
Description: S/MIME Cryptographic Signature
------------------------------------------------------------------------------ Open source business process management suite built on Java and Eclipse Turn processes into business applications with Bonita BPM Community Edition Quickly connect people, data, and systems into organized workflows Winner of BOSSIE, CODIE, OW2 and Gartner awards http://p.sf.net/sfu/Bonitasoft
_______________________________________________ Openca-Users mailing list Openca-Users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openca-users
