Verify MD2 algorithm signed certificates

help-gnutls

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Verify MD2 algorithm signed certificates

From:	liuxiaoyu
Subject:	Verify MD2 algorithm signed certificates
Date:	Wed, 25 Aug 2010 15:02:20 +0800

Hi,

I am attemping to verify some MD2 algorithm signed certificates using GnuTLS 2.6.3.

I notice it says in the GnuTLS manual that MD2 algorithms have been broken and should not be trusted, but flag "GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD2" can be used with verification functions "guntls_x509_crt_verify()" to allow certificates to be signed using the old MD2 algorithm.

However, when I used the following function call it still return "GNUTLS_CERT_INVALID".

gnutls_x509_crt_verify (crt, ca_list, ca_list_size,
GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT | GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD2, &output);

I have attached the certificates I used. Zip password: guntls

Is there any problem in the certificates? Any advise on what I should do to make it work?

Thanks and Regards,
Sean

cred.zip
Description: Zip compressed data

[Prev in Thread]

Current Thread

[Next in Thread]

Verify MD2 algorithm signed certificates, liuxiaoyu <=
- Re: Verify MD2 algorithm signed certificates, Nikos Mavrogiannopoulos, 2010/08/25

Prev by Date: Libtasn1-1.8 doesn't exist in gnutls directory
Next by Date: Re: Couple of questions regarding CommonName and peer verification
Previous by thread: Libtasn1-1.8 doesn't exist in gnutls directory
Next by thread: Re: Verify MD2 algorithm signed certificates
Index(es):
- Date
- Thread