Is there also a way to load the root cert into the keymanager if the root cert
is already in one PCCERT_CONTEXT struct?
xmlSecMSCryptoX509StoreAdoptCert()
Aleksey
___
xmlsec mailing list
xmlsec@aleksey.com
http://www.aleksey.com/mailman/listinfo/x
-Original Message-
From: Jürgen Heiss
Sent: Freitag, 02. Juni 2006 11:26
To: 'xmlsec@aleksey.com'
Subject: RE: [xmlsec] RE: Need urgent help for verify
Hi,
Is there a way to load a PCCERT_CONTEXT into the KeyManager?
For example something like.
xmlSecPtrListAdd( PCCE
Hi,
Is there a way to load a PCCERT_CONTEXT into the KeyManager?
For example something like.
xmlSecPtrListAdd( PCCERT_CONTEXT,)?
Thanks
Jürgen
___
xmlsec mailing list
xmlsec@aleksey.com
http://www.aleksey.com/mailman/listinfo/xmlsec
Take a look at xmlsec.exe sources and search for enabledKeyData
Aleksey
Jürgen Heiss wrote:
Ups I think I don't understand something.
I call the function
if(xmlSecDSigCtxVerify(&dsigCtx, data->startNode) < 0)
And how it look this function look in the KeyName and try to get the
certificate
ECTED]
Sent: Donnerstag, 01. Juni 2006 13:54
To: Jürgen Heiss; 'Aleksey Sanin'; xmlsec@aleksey.com
Subject: RE: [xmlsec] RE: Need urgent help for verify
My point exactly !!!
If X509Certificate is there, then one can only assume the signer wants you to
use it. In xmlsec we are u
ore anyway !!!
Aleksey ?
Ed
-Original Message-
From: Jürgen Heiss [mailto:[EMAIL PROTECTED]
Sent: June 1, 2006 6:53 AM
To: [EMAIL PROTECTED]; Aleksey Sanin; xmlsec@aleksey.com
Subject: RE: [xmlsec] RE: Need urgent help for verify
Ups I think I don't understand something.
I call t
he certificate with which the document was signed.
Thanks
Jürgen
-Original Message-
From: Edward Shallow [mailto:[EMAIL PROTECTED]
Sent: Donnerstag, 01. Juni 2006 12:30
To: Jürgen Heiss; 'Aleksey Sanin'; xmlsec@aleksey.com
Subject: RE: [xmlsec] RE: Need urgent help for verify
; [EMAIL PROTECTED]; xmlsec@aleksey.com
Subject: RE: [xmlsec] RE: Need urgent help for verify
Hi everybody,
Well you are right, its really the Keyname. So if I remove the Keyname it
works.
But of course the document isn't anymore valid. Is there a way always to
ignore the keyname and use th
aleksey.com
Subject: Re: [xmlsec] RE: Need urgent help for verify
Yes
xmlSecDSigCtx::keyInfoReadCtx->enabledKeyData
xmlSecDSigCtx::keyInfoWriteCtx->enabledKeyData
Aleksey
[EMAIL PROTECTED] wrote:
> Yes you are right !!! I forgot about that.
>
> You mean the "--enabled-key-data&qu
API ? in the Ctx ?
- Original Message
From: Aleksey Sanin <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Cc: Jürgen Heiss <[EMAIL PROTECTED]>; xmlsec@aleksey.com
Sent: Wednesday, May 31, 2006 2:31:14 PM
Subject: Re: [xmlsec] RE: Need urgent help for verify
> Does it not make sense to c
Does it not make sense to check X509Certificate first ? Or must we
consciously remove KeyName to avoid problems in the mscrypto world where
the chances of actually having the public verification certificate in
the verifiers mscrypto store is remote at best ?
I think, that either signer or v
xmlsec@aleksey.comSent: Wednesday, May 31, 2006 11:54:26 AMSubject: Re: [xmlsec] RE: Need urgent help for verify
> I would wager, but Alexsey is the expert, that it might be a good idea > to ignore the KeyName if an X509Certificate is present when Verifying. > After all the reason it got there in
ECTED]>Cc: xmlsec@aleksey.comSent: Wednesday, May 31, 2006 11:23:21 AMSubject: Re: [xmlsec] RE: Need urgent help for verify
No. Please, provide the stack trace for the crash.AlekseyJürgen Heiss wrote:> Does really now one have any idea? > Hi,> > I use the following code to verify a sign
I would wager, but Alexsey is the expert, that it might be a good idea
to ignore the KeyName if an X509Certificate is present when Verifying.
After all the reason it got there in the first place is that it was used
to select the cert/key when you originally signed it with xmlsec and is
left
No. Please, provide the stack trace for the crash.
Aleksey
Jürgen Heiss wrote:
Does really now one have any idea?
Hi,
I use the following code to verify a signed file.
The problem is now, the xmlSecDSigCtxVerify crahses if the certificate
isn't installed on my machine!?!
How can I check this
15 matches
Mail list logo