Closed GoogleCodeExporter closed 9 years ago
The OID 1.2.840.113549.1.1.5 is SHA1withRSA. However, the algorithm being
requested is SHA1withSHA1withRSA (which is not correct..). This seems to be a
bug on the sun's classes:
http://javasourcecode.org/html/open-source/jdk/jdk-6u23/sun/security/pkcs/Signer
Info.java.html (line 325) which should have been fixed on jdk7:
http://www.docjar.com/html/api/sun/security/pkcs/SignerInfo.java.html (line
340).
I updated to jdk 6u31 and still got this problem.. I don't think I can force
the fix from "the outside". Anyway, the timestamp providers will soon be based
on bouncy castle to remove the dependencies on sun's internal classes. This
will avoid the bug.
Original comment by luis.fgoncalv
on 8 Apr 2012 at 4:03
Original comment by luis.fgoncalv
on 16 Apr 2012 at 9:51
Original comment by luis.fgoncalv
on 16 Apr 2012 at 9:52
As expected, the TS verification succeeds now that BC is being used.
Original comment by luis.fgoncalv
on 16 Apr 2012 at 10:40
Original issue reported on code.google.com by
adilsona...@gmail.com
on 28 Feb 2012 at 8:00Attachments: