New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
crypto/x509: certificate with signature RMD160 shows wrong error message #5301
Comments
Comment 1 by raul.san@sent.com: Related to: https://groups.google.com/forum/?fromgroups=#!topic/golang-nuts/0zFsLU3ASdE |
Comment 3 by raul.san@sent.com: The package x509 does not support RMD160 for the signature algorithm. http://golang.org/pkg/crypto/x509/#SignatureAlgorithm However, somebody can to use OpenSSL to create a certificate with that signature and try to use it in Go; then you'll see the failure. |
Comment 7 by raul.san@sent.com: pong! I had forgot about it. I'll try to create it today or tomorrow. |
Comment 8 by raul.san@sent.com: In the attachment, there are a stuff related to certificate built with SHA1 digest and another one with RPM160. To run the test: $ go run x509.go -rpmd client: dial: x509: certificate signed by unknown authority $ go run x509.go -sha1 November Rain result: true * * * Like you can check, when it is used the certificate with signature algorithm RMD160, it shows the error: x509: certificate signed by unknown authority Attachments:
|
I'm getting this error when trying to fetch https://api.bitfinex.com/v1/ticker/btcusd How can I tell if it's the same problem and if it is, is there a work around? |
Anybody: does this still happen? Repro? |
@bradfitz yes, it is still gives the same error $ go run x509.go -rpmd
client: dial: x509: certificate signed by unknown authority (possibly because of "x509: cannot verify signature: algorithm unimplemented" while trying to verify candidate authority certificate "Foo Certification Authority - RMD160")
exit status 1 However this bug is a duplicate of #7735 opened by @agl (a year after that one), however @agl's bug and title are focused on fixing the actual problem which is an improved error message when the hash is not supported/wasn't compiled in. I untar'd |
Okay, I'll close this one then and we can use #7735 instead. Thanks. |
Change https://golang.org/cl/42143 mentions this issue: |
by raul.san@sent.com:
The text was updated successfully, but these errors were encountered: