[tor-dev] [GSoC] HTTPS Everywhere secure ruleset update mechanism update

Ben Laurie ben at links.org
Tue Jul 8 09:55:04 UTC 2014


On 7 July 2014 19:40, Red <redwire at riseup.net> wrote:
> Despite the fact that the process for producing the signature in
> question[2] seemed to work fine- Openssl was able to generate and verify
> the signature, the testing code calling the verifyData[3] function used
> for verification was returning an undocumented NS_ERROR_FAILURE
> exception.  I had spent a great deal of time asking for support in
> relevant Firefox extension development IRC channels, reading source code
> from unit tests for the nsIDataSignatureVerifier component, and
> experimenting with alternative openssl commands in order to try to
> figure out why this error was occurring.

Looking at the pk1sign source, it looks like the signature needs to be
in base64. Was that what you were using?

Do you have a test case that fails using command line tools?


More information about the tor-dev mailing list