#35 CSR signing algorythm is not used

closed
nobody
None
5
2007-02-26
2007-02-09
grubis
No

Version:
--------
0.6.0-beta02

Description:
------------
If you sign a CSR the signing algorythm stated in the CSR is not used.

Steps to reproduce:
-------------------
1.) Import a CSR with signing algorythm: sha1/rsa
2.) Sign that CSR with a ca certificate from within xca
3.) Verify that the certificat is signed with sha256/rsa

Workaround:
-----------
Do not sign the CSR via it's context menu but use "create certificate" instead and set the signing algorythm on the subject page before referencing the CSR

Discussion

  • Christian Hohnstaedt

    Logged In: YES
    user_id=609294
    Originator: NO

    The CSR sig-alg is used to "self-sign" the CSR.

    (The csr may have "sha256WithRSAEncryption" but the signer has a DSA key
    and must use SHA1)

    But the certificate dialog is badly designed.
    The key (for selfsigning) and the sig-algo of the signing key
    should be selected on the first page in the signer section
    and not on the "subject" page.

    Will fix that for 0.6.0

     
  • Christian Hohnstaedt

    • status: open --> pending
     
  • Christian Hohnstaedt

    Logged In: YES
    user_id=609294
    Originator: NO

    moved sig-alg to the first page
    for 0.6.0 in commit c35ec0d23a8b2c49a9e97dbe521bd7410f3490bc

     
  • SourceForge Robot

    Logged In: YES
    user_id=1312539
    Originator: NO

    This Tracker item was closed automatically by the system. It was
    previously set to a Pending status, and the original submitter
    did not respond within 14 days (the time period specified by
    the administrator of this Tracker).

     
  • SourceForge Robot

    • status: pending --> closed
     

Log in to post a comment.