[xmlsec] gnutls signature, x509chain test

Roumen Petrov xmlsec at roumenpetrov.info
Sun Nov 25 11:50:31 PST 2012

Aleksey Sanin wrote:
> Thanks. What errors do you get? Or is it just tests failure?
May be test failure is correct answer. Verify command complain and 
output messages 'Bad signature' (gnutls) or 'signature do not match' 
(openssl) or ...VFY_EndWithSignature:error=4:crypto library function 
failed:error code=-8182;last nss error=-8182 (nss).

File with signature is one and the same with openssl and nss and could 
be verified by openssl, nss and gnutls.
Gnutls produce file without errors but with different signature and 
later other "crypto" complain for invalid signature.

I could test all above outside regression test with attached script 

-------------- next part --------------
A non-text attachment was scrubbed...
Name: test-enveloping-rsa-x509chain.sh
Type: application/x-sh
Size: 1089 bytes
Desc: not available
URL: <http://www.aleksey.com/pipermail/xmlsec/attachments/20121125/1dec0700/attachment.sh>

More information about the xmlsec mailing list