when i got a signed smime letter signed by PKCS7_sign
suppose the certificate chain is
myca - mycertificate
so the PKCS7_verify is ok
but if the certificate chain is
myca - myissueca - mycertificate
so the pkcs7_verify will fail
even i use
openssl smime -verify -certfile my.cer -CAfile
On Wed, May 17, 2006, camino (sent by Nabble.com) wrote:
when i got a signed smime letter signed by PKCS7_sign
suppose the certificate chain is
myca - mycertificate
so the PKCS7_verify is ok
but if the certificate chain is
myca - myissueca - mycertificate
so the pkcs7_verify will
Hi all!
I need to make such stuct:
SEQUENCE{
SEQUENCE{
OCTET STRING
}
OCTET STRING
}
Is it posible to make it with macros like ASN1_SEQUENCE, ASN1_EXP and etc.
And if it posible, then how?
i have an end x509 certificate ,and i hope to get the certificate chain
do openssl has a function like CertGetCertificateChain in windows api?
thanks
--
View this message in context:
http://www.nabble.com/how-can-I-get-the-certificate-chain-from-an-end-certificate--t1640417.html#a4443193