PKCS#7 handling broken

[GoogleCodeExporter]

Pathfinder doesn't handle PKCS#7 bundles very well.  It stops when it hits
a self-signed cert, even if there are more certs in the bundle after that.
 In some cases, an intermediate cert might be after the self-signed trust
anchor, and it thinks it's finished before it really is, and it can't build
a path.

Original issue reported on code.google.com by dcoo...@gmail.com on 24 Jul 2008 at 8:11

[GoogleCodeExporter]

Is this still true?

Original comment by dcoo...@gmail.com on 26 Oct 2009 at 8:03

[GoogleCodeExporter]

Apr 29 03:21:30 48-214 pathfinderd: WARNING: Tried to add certificate from file
/etc/pki/tls/certs/make-dummy-cert, but loaded certificate not ok! 
Apr 29 03:21:30 48-214 pathfinderd: Import DER from
'/etc/pki/tls/certs/ca-bundle.crt': error:0D0680A8:asn1 encoding
routines:ASN1_CHECK_TLEN:wrong tag 
Apr 29 03:21:30 48-214 pathfinderd: WARNING: Tried to add certificate from file
/etc/pki/tls/certs/ca-bundle.crt, but loaded certificate not ok!

It is standard certificate bundle from RedHat distribiton. Sure the bundle is 
not loaded.

Original comment by arke...@gmail.com on 28 Apr 2010 at 11:45

[GoogleCodeExporter]

well, actually those bundles are not pkcs #7, so it is not proper place for this
comment. but it is still a bug.

Original comment by arke...@gmail.com on 28 Apr 2010 at 11:51