Kaustubh
Reputation: 27
What can potentially cause CMS routines:CMS_SIGNERINFO_VERIFY_CERT:certificate verify error?
I am trying to verify the signer cert based on its issuer CA cert. I am using following OpenSSL API to verify the certs.
int CMS_verify(CMS_ContentInfo *cms, STACK_OF(X509) *certs, X509_STORE *store, BIO *indata, BIO *out, unsigned int flags);
The first parameter contains the base 64 encoded message. The second parameter is the Stack of both CA and signer certs, The third parameter is the pointer to the cert store, The fourth and fifth parameter is BIO pointers. The last parameter is set to 0.
When I try to verify signer certificate based on the CA certificate I get
CMS routines:CMS_SIGNERINFO_VERIFY_CERT:certificate verify error
The issuer certificate for the signer cert is the CA cert and both CA and signer cert is valid.
Does anyone know what could be causing this verification failure? And any ways of getting around it?
Upvotes: 1
Views: 271
Answers (0)
Related Questions
- SignTool.exe Sporadically Fails with Exit Code 1
- Verification failure: CMS routines:cms_signerinfo_verify_cert:certificate verify error:..cms_smime.c:253:Verify error:self signed certificate
- Knative & cert-manager - SSL_ERROR_SYSCALL
- Warning on certificate keyUsage
- SignedCms.CheckSignature() always fails when using a valid certificate
- openssl cms -verify doesn't work with external certificate
- CMS signing in .NET with certificate chain not in local trusted certificate store
- m_safeCertContext is an invalid handle
- Error when using signedCms with smartcard certificate
- CmisInvalidArgumentException bad request exception