Re: possible Bug in OpenSSL - rfc 3161 - TSA service

kapetr Mon, 11 Mar 2013 12:02:21 -0700

Of course YES.
Timestamp reply is nothing else as CMS SignedData structure.


--kapetr

Dne 11.3.2013 19:51, Dr. Stephen Henson napsal(a):

On Mon, Mar 11, 2013, kap...@mizera.cz wrote:

Hello,

Dne 11.3.2013 17:33, Dr. Stephen Henson napsal(a):

As to the OP query. I'm not that familiar with the timestamping code. OpenSSL
doesn't support attribute certificates and adding support is not trivial.


The attribute certificates are common possible in CMS, not just in
TS => attr. cert. (in the SigningCertificate->certs) will kill any
CMS verification.


Do you have an example of a CMS message where that happens?

Steve.
--
Dr Stephen N. Henson. OpenSSL project core developer.
Commercial tech support now available see: http://www.openssl.org
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majord...@openssl.org

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majord...@openssl.org

Re: possible Bug in OpenSSL - rfc 3161 - TSA service

Reply via email to