[Mono-bugs] [Bug 75841][Nor] New - 'Set Of' Auth.Attr in PKCS #7 must be sorted

bugzilla-daemon at bugzilla.ximian.com bugzilla-daemon at bugzilla.ximian.com
Thu Aug 18 04:58:55 EDT 2005


Please do not reply to this email- if you want to comment on the bug, go to the
URL shown below and enter your comments there.

Changed by dgranath at gmail.com.

http://bugzilla.ximian.com/show_bug.cgi?id=75841

--- shadow/75841	2005-08-18 04:58:55.000000000 -0400
+++ shadow/75841.tmp.20719	2005-08-18 04:58:55.000000000 -0400
@@ -0,0 +1,27 @@
+Bug#: 75841
+Product: Mono: Class Libraries
+Version: 1.1
+OS: 
+OS Details: 
+Status: NEW   
+Resolution: 
+Severity: 
+Priority: Normal
+Component: Mono.Security
+AssignedTo: mono-bugs at ximian.com                            
+ReportedBy: dgranath at gmail.com               
+QAContact: mono-bugs at ximian.com
+TargetMilestone: ---
+URL: 
+Cc: 
+Summary: 'Set Of' Auth.Attr in PKCS #7 must be sorted
+
+If generating a PKCS #7 signature with authenticated attributes, these
+attributes must be lexicographically sorted as per DER standard.
+
+Failure to do so will lead to verification failures in at least one PKCS #7
+implementation, BouncyCastle java, since it actually sorts the attributes
+before verifying the signature. 
+
+On the other hand OpenSSL does no sorting but runs with the original order
+which means Mono signatures verifies fine even in their current state.


More information about the mono-bugs mailing list