New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[iOS] Signing certifiate expiration date time does not supercede the expiration date time of the green certificate #102
Comments
@RalicaY could you please check expiration time of the certificate, it's 2022-07-05T06:42:53Z. Year is - 2022. Probably that's the issue. Certificate is not expired. It expires next year. |
The idea is that the Certificate is indeed chronologically valid but the signer's certificate is already expired so that the certificate's epiration time eventually supercedes (is valid longer than ) the signer's. |
So as @RalicaY said the Health Certificate is still valid. The missing data is that the Signing Certificate (DSC) is not valid anymore. The Signing certificate has the kid "9T3aGXtSul0=" and is only valid until "2021-07-07 06:14:17". So the hcert is valid but the Signing Certificate is not. I have uploaded the PEM encoded certificate which is also in the TST environment. |
@RalicaY App work as expected. We received this certificate from BE side. Here is the list of valid certificates we are received from server as you see this key present in this list and we don't removed this key from app. |
same info analog issue #142 |
Successfully retested with Error Notification "Cryptographoc Signature Invalid". |
Describe the bug
In order to check, that when the signing certificate expiration datetime supersedes the expiration datetime in the Green certificate, the app returns INVALID we have created the following QR-Code with chronologically valid certificate but with an expired DSC Certificate.
Attached JSON file and QR Code.
Nevertheless, scanning this QR Code with the Verifier app returns VALID.
Expected behaviour
Expected is a RED screen saying the Certificate is INVALID.
Steps to reproduce the issue
Technical details
Verifier 1.1.5-tst
iPhone 8 plus v. Lutz, iOS 14.4
Possible Fix
Additional context
The text was updated successfully, but these errors were encountered: