Uploaded image for project: 'EJBCA'
  1. EJBCA
  2. ECA-2297

NestedMessageContent implements version RFC2510 instead of RFC4210

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: EJBCA 4.0.4
    • Fix Version/s: EJBCA 4.0.5
    • Component/s: Protocols
    • Labels:
      None

      Description

      EJBCA 4.0.4 introduced the possibility to send Nested CMP messages, verifying an RA signature on the outer message, then passing the inner message on to normal CMP processing.

      The implementation in 4.0.4 follows the older standard in RFC2510 instead of the newer in RFC4210.

      The difference is:

      RFC2510, section "3.1.3 PKI Message Protection":
      NestedMessageContent ::= PKIMessage

      RFC4210, section "5.1.3.4. Multiple Protection":
      NestedMessageContent ::= PKIMessages
      PKIMessages is a SEQUENCE OF PKIMessage

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              aveen Aveen Ismail (Inactive)
              Reporter:
              tomas Tomas Gustavsson
              Verified by:
              Tomas Gustavsson
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: