Hello, OpenSSL community,
I faced the problem and can't find any solution or explanation for this problem. I have built CMS file with Botan library tools, and my CMS document looks exactly the same as the document generated with openssl cms -sign command except for a signing time and the signature.
I have separately verified the signature with openssl command:
openssl dgst -sha256 -verify pub_key.pem -signature signature.txt signer_attributes.txt
I have separately verified the signature with openssl command:
openssl dgst -sha256 -verify pub_key.pem -signature signature.txt signer_attributes.txt
And the output was: Verified OK
But I can't verify the CMS document itself with the command:
openssl cms -verify -CAfile ca_test.crt -inform der -signer cert.crt -in cms.p7b
I am getting error:
70288:error:04091068:rsa routines:int_rsa_verify:bad signature:../openssl-1.1.1l/crypto/rsa/rsa_sign.c:220:
70288:error:04091068:rsa routines:int_rsa_verify:bad signature:../openssl-1.1.1l/crypto/rsa/rsa_sign.c:220:
70288:error:2E09809E:CMS routines:CMS_SignerInfo_verify:verification failure:../openssl-1.1.1l/crypto/cms/cms_sd.c:767:
ssl version is 1.1.1l
Thank you in advance for any help!
Regards,
---------------------------------------
Yehor SEMENIAKA
