[xmlsec] About verifying with x509 certificate.

[Aleksey Sanin]

Check OpenSSL erorr codes:

openssl/crypto/x509/x509_vfy.h:
#define X509_V_ERR_CERT_SIGNATURE_FAILURE 7

Basically, this means that cert signature verification failed. As the
first step,
I would strongly recommend to upgrade both xmlsec and OpenSSL.
The versions you have now are quite old and have known bugs there.

Aleksey


°­Á¤È£ wrote:

> xmlSecX509StoreVerify: cert verification failed (X509_STORE_CTX.error=7)


> xmlsec library: 0.0.7 (self sign certificate bug fix)
> openssl library: 0.9.6d