On Mon, Aug 15, 2011, Chang Lee wrote: > I appreciate the timely response. So it is as I suspected then. > PKSC_signatureVerify() is not digesting all of the authenticated attribute > value SET, only the messagedigest. Will this be scheduled to be fixed? >
No it is digesting the whole SET. The function ASN1_item_i2d() generates the encoding of the authenticated attributes and EVP_Verify*() verifies their digital signature. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
