I've been trying to get information on PKCS7 routines within the browser
and was fortunate enough to catch some very helpful people on IRC.
From what I understand, any of the certificate handling application
types do allow you to import a sequence of certificates via the PKCS7
cert format.
I've done a few tests and posted the first couple of tests at:
http://testca.gatech.edu/pkcs7-test.html
I've had a couple of other people contact me since I posted this once
before (but didn't have any data to show) and have recieved similar
reports of having difficulties doing this.
The certificates are PKCS7 PEM formatted being "printed" to the browser
using the following code:
<?php
Header("Content-Type: application/x-x509-ca-cert\n\n");
readfile("test-pkcs7.pem");
?>
Does anyone have any implementations of a similar fashion (using PKCS7
certs with a chain) that can possibly point out a problem with my set up?
Included are all the certificates, the PHP code, and the openssl
commands I used in attempting to get a certificate chain into Mozilla.
I believe the certificates are ordered correctly.
http://testca.gatech.edu/pkcs7-test.html
Thanks,
- John Douglass
- Re: PKCS7 problems with importing chained sequence of ce... John Douglass
- Re: PKCS7 problems with importing chained sequence ... Nelson B. Bolyard
- Re: PKCS7 problems with importing chained seque... Stephen Henson
- Re: PKCS7 problems with importing chained s... Nelson B. Bolyard
- Re: PKCS7 problems with importing chained sequence ... Martin Leung
- Re: PKCS7 problems with importing chained seque... John Douglass
- Re: PKCS7 problems with importing chained s... John Douglass
