Re: PKCS#7/CMS verify reports bad signature

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: openssl-users@xxxxxxxxxxx
Subject: Re: PKCS#7/CMS verify reports bad signature
From: Steffen <steffenl.sw@xxxxxxxxx>
Date: Fri, 5 Apr 2019 23:31:58 +0200
In-reply-to: <CAMwAdU3a0XNeofeNX_JK8cTEownmgnv7Y5qaByWeNsAsjmYNeA@mail.gmail.com>
References: <CAMwAdU3hWAgqn9KdCcVDTF1iG6bh_S4tWEhCchJ=w+c=EB6E5A@mail.gmail.com> <d11f8e7b-a052-3065-ac81-9ba69ce23e86@openssl.org> <CAMwAdU2q1t8+wTntYLFERMuXSWQumur6PgjzEoajsQ9dtXOTLg@mail.gmail.com> <CAMwAdU0GHtKFcO7=w9hsOHqz=dmtXcF0z5mpZfc=8TyiO-y9Uw@mail.gmail.com> <9cf49c7f-af14-63c0-3e12-e5a5b0e72cc7@openssl.org> <25072.1554213065@localhost> <CAMwAdU1+xOsELuB8Zub31Tgkf21qtkbUDg7tTTttVFfi5a=t4A@mail.gmail.com> <20d2a0b1-d062-81f9-f6a7-5e8e1b047539@openssl.org> <CAMwAdU3a0XNeofeNX_JK8cTEownmgnv7Y5qaByWeNsAsjmYNeA@mail.gmail.com>

Hello,

I have a small update in order to close this issue.

The identity provider that produced the invalid signatures have fixed their signatures so that we can verify them using the latest LTS version of OpenSSL. We use Bouncy Castle in some products and it does not catch the invalid signatures either, or at least not the way we use it.

Anyway, this is a satisfactory outcome.

Thank you for the help, everyone!

Regards,

Steffen

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

References:
- PKCS#7/CMS verify reports bad signature
  - From: Steffen
- Re: PKCS#7/CMS verify reports bad signature
  - From: Matt Caswell
- Re: PKCS#7/CMS verify reports bad signature
  - From: Steffen
- Re: PKCS#7/CMS verify reports bad signature
  - From: Steffen
- Re: PKCS#7/CMS verify reports bad signature
  - From: Matt Caswell
- Re: PKCS#7/CMS verify reports bad signature
  - From: Michael Richardson
- Re: PKCS#7/CMS verify reports bad signature
  - From: Steffen
- Re: PKCS#7/CMS verify reports bad signature
  - From: Matt Caswell
- Re: PKCS#7/CMS verify reports bad signature
  - From: Steffen

Prev by Date: Re: Setter methods for X509_REQ signature attributes
Next by Date: migration from openssl 1.0.2n to 1.1.1
Previous by thread: Re: PKCS#7/CMS verify reports bad signature
Next by thread: Upgrading OpenSSL in CentOS
Index(es):
- Date
- Thread

[Index of Archives] [Linux ARM Kernel] [Linux ARM] [Linux Omap] [Fedora ARM] [IETF Annouce] [Security] [Bugtraq] [Linux] [Linux OMAP] [Linux MIPS] [ECOS] [Asterisk Internet PBX] [Linux API]