From: Chris R. <chr...@ma...> - 2003-02-25 16:19:05
|
On 25/2/03 4:12 pm, Graham Barr <gb...@po...> wrote: > On Tue, Feb 25, 2003 at 12:05:10PM +0100, Lars Uffmann wrote: >> If I cannot exact DER encode the PublicKeyAndChallenge, i cannot verify the >> signature, right? >> >> Of course, openssl's spkac app can verify the SPAKS to, but it challenged me >> to try it `perl only' :-) > > Chris was right that Convert::ASN1 is largely DER, but in some places it > is not. There were plans to control this with a switch, but I don't > think it was ever finished. > > If you know of areas where the encoding is not DER then we can look > into adding the switch to force strict der encoding. > > Graham. The "DER-encoded" object that Lars sent me off-list was indeed DER-encoded, so it seems that the encoding wasn't the problem. We think his problem's somewhere else in his code, possibly in the way he's using Crypt::RSA. Cheers, Chris |