ECDSA signing/verification issues

[lcobucci]

Hello guys, @jurriaan opened an issue in my library to notify that the I have some problems with my ECDSA signer.

Looking at your code I saw that you're basically doing the same thing as I, but you have another issue: you're ignoring openssl_verify() return by casting it bool. It's returning -1 (error) and if you run openssl_error_string() you'll get error:0906D06C:PEM routines:PEM_read_bio:no start line as return.

You can have more information in lcobucci/jwt#30.
I'm working on a solution for that and I'll share with you guys 😄

[odino]

perfect, waiting for a PR then :)

[jurriaan]

See jwt/ruby-jwt#87 for how I fixed it in ruby-jwt :)

[lcobucci]

@odino I've finished implementation.
I had to rewrite everything since OpenSSL doesn't supports NIST curves.

You can see the related commits and apply the same thing here ;)

[fproject]

Dear all
How about the status now?

[odino]

@lcobucci do you have a link to the changeset?

[lcobucci]

@odino sorry about my delay. Check here: lcobucci/jwt@f787525

[odino]

thanks!

[cirpo]

theopenssl_verify() casting issue is solved and merged: #58

[GrahamCampbell]

Can this be closed then?