Steve,
Thanks. How did I " tells it to ignore verify errors.."? Did not due
that on purpose to my understanding.
Well I put the CA cert in the store with a link to the hashed name also
with a .0 after it. This worked on another program that I did but I seem to
be having a problem now. If you don't mine could you look at the piece of
code that I have going this and see if you see any problems (attached)?
Thanks,
Frank
Dr S N Henson wrote:
> Frank Geck wrote:
> >
> > I'm having a problem with PKCS7_dataVerify returning 1 (seemingly
> > success full but displaying the following):
> >
>
> It will do that if your callback tells it to ignore verify errors...
>
> > depth=0
> > [EMAIL PROTECTED]
> >
> > m
> > verify error:num=20:unable to get local issuer certificate
> > verify return:1
> > depth=0
> >
>
> This means it can't find a valid issuer certificate either in the
> message or the trusted store. All the other messages are bogus due to
> the callback overriding errors.
>
> Steve.
> --
> Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
> Personal Email: [EMAIL PROTECTED]
> Senior crypto engineer, Gemplus: http://www.gemplus.com/
> Core developer of the OpenSSL project: http://www.openssl.org/
> Business Email: [EMAIL PROTECTED] PGP key: via homepage.
>
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
pkcs7_dec.cpp
Description: application/unknown-content-type-cppfile
verify_callback.cpp
Description: application/unknown-content-type-cppfile
