You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Should it be listed? Is it because it is considered insecure?
I've found a certificate issued with the MD5withRSA signature algorithm (used only for testing) but finding the error was really hard. It would be nice to have a better error description for this kind of failures.
The text was updated successfully, but these errors were encountered:
In that case, it would be better to have a more descriptive error than..
failed to verify certificate: x509: certificate signed by unknown authority (possibly because of "x509: cannot verify signature: algorithm unimplemented" while trying to verify candidate authority certificate "testCA")
"algorithm unimplemented".. The algorithm is implemented, it is not supported because it is considered insecure. Which algorithm? In which part of the chain? Which function failed?
Tracking the error took me a while..
mikioh
changed the title
[crypto/x509] CheckSignature does not support MD5withRSA algorithm
crypto/x509: CheckSignature does not support MD5withRSA algorithm
Apr 14, 2015
mikioh
changed the title
crypto/x509: CheckSignature does not support MD5withRSA algorithm
crypto/x509: more descriptive error message for unsupported algorithms such as MD5 with RSA
Apr 14, 2015
In http://golang.org/src/crypto/x509/x509.go?s=21072:21171#L611 that algorithm is not listed.
Should it be listed? Is it because it is considered insecure?
I've found a certificate issued with the MD5withRSA signature algorithm (used only for testing) but finding the error was really hard. It would be nice to have a better error description for this kind of failures.
The text was updated successfully, but these errors were encountered: