Re: [ebxmlms-general] Verifying digital signatures

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
  <meta http-equiv="Content-Type" content="text/html;charset=ISO-8859-1">
  <title></title>
</head>
<body>
Hi David,<br>
<br>
From the description you gave, we have no clues on what's happening.
The only thing sounds a bit different is that you are using RSA key
(the default one is DSA..). Have you tried DSA? <br>
<br>
If still no luck, please make another set of keystores for our debug
purpose, with all information insensitive, and send to us. My email
address is <a class="moz-txt-link-abbreviated" href="mailto:kc...@ce...">kc...@ce...</a>. We can try to have a trace here.<br>
<br>
Regards, -Patrick<br>
<br>
<br>
<br>
David Mcveigh wrote:<br>
<blockquote type="cite"
 cite="mid03aa01c31aad$790cc410$6f00000a@workstation20">
  <meta http-equiv="Content-Type" content="text/html; ">
  <meta content="MSHTML 6.00.2800.1126" name="GENERATOR">
  <style></style>
  <div><font face="Arial" size="2">Hi,</font></div>
  <div>&nbsp;</div>
  <div><font face="Arial" size="2">&nbsp; I have Hermes 0.9.3.0 installed
under the following environment:</font></div>
  <div><font face="Arial" size="2">&nbsp; OS: Windows NT</font></div>
  <div><font face="Arial" size="2">&nbsp; JDK: 1.4.1</font></div>
  <div><font face="Arial" size="2">&nbsp;&nbsp;Servlet Container: Tomcat 4.0.3</font></div>
  <div>&nbsp;</div>
  <div><font face="Arial" size="2">I've written a small test
application that just sends messages to itself via HTTP, I can
currently send messages both reliably and unreliably. What I am having
problems with is sending ("unreliably" sending that is)&nbsp;digitally
signed messages, for some unknown reason digitally signed messages
always fail verification with the following error message: </font><font
 face="Arial" size="2">Received SOAPMessage cannot be verified! I've
also tried sending signed messages using JDK131 and I get the same
result.</font></div>
  <div>&nbsp;</div>
  <div><font face="Arial" size="2">The private key that I'm using to
sign messages has 1 root certificate and 1 intermediate certificate in
its chain. The digital signature keystore that I'm using that contains
the private key also contains both the root and intermediate
certificates. The trust anchor keystore that I am using contains both
the root and intermediate certificates mentioned above. The private
key is a standard 1024 bit&nbsp;RSA key.</font></div>
  <div>&nbsp;</div>
  <div><font face="Arial" size="2">I have installed xalan.jar in the
jre/lib/endorsed directory and I've also copied the jaxm-api.jar and
saaj-api.jar files into&nbsp;Tomcat's&nbsp;common/lib directory as per the
installation guide. I've also replaced the Tomcat's
common/lib/xerces.jar file with xercesImpl.jar copied from Hermes and
I've removed libraries from the Hermes msh.war file that currently
appear in either&nbsp;Tomcat's common/lib directory or the JDK's
jre/lib/endorsed directory. </font></div>
  <div>&nbsp;</div>
  <div><font face="Arial" size="2">I know that I must be missing
something or I must&nbsp;have misconfigured something&nbsp;but I don't know
what, any ideas? </font></div>
  <div>&nbsp;</div>
  <div>&nbsp;</div>
  <div><font face="Arial" size="2">Regards,</font></div>
  <div>&nbsp;</div>
  <div><font face="Arial" size="2">David McVeigh<br>
Paradigm.One - making IT happen, today<br>
(02) 9954 6528<br>
  <a href="mailto:he...@pa...">he...@pa...</a></font></div>
  <div>&nbsp;</div>
</blockquote>
</body>
</html>