Menu
▾
▴
[Re-alpine-bugs] [ re-alpine-Bugs-3527156 ] smime signature verification fails for chained certs
|
From: SourceForge.net <no...@so...> - 2012-05-16 05:51:49
|
Bugs item #3527156, was opened at 2012-05-15 22:51 Message generated for change (Tracker Item Submitted) made by dbfunk You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=1128048&aid=3527156&group_id=264924 Please note that this message will contain a full copy of the comment thread, including the initial issue submission, for this request, not just the latest update. Category: None Group: None Status: Open Resolution: None Priority: 5 Private: No Submitted By: Dave Funk (dbfunk) Assigned to: Nobody/Anonymous (nobody) Summary: smime signature verification fails for chained certs Initial Comment: The s/mime signature that alpine generates fails to include any intermediate chained CA certs when the user's personal cert was created from an intermediate CA. This causes signature verification failures at the recipients, unless the recipients happen to have the necessary intermediate chained CAs in their local CA store. ("Couldn't verify S/MIME signature: certificate verify error"). In the file "pith/smime.c" the call to "PKCS7_sign" has the third argument set to "NULL". This should be a "STACK_OF(X509)" structure populated with intermediate chained CA certs for the case that the user's signing cert has them. ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=1128048&aid=3527156&group_id=264924 |