[Bulk] Re: [xmlsec] xmlSecMSCryptoX509StoreConstructCertsChain

Dmitry Belyavsky beldmit at cryptocom.ru
Tue Dec 20 07:38:28 PST 2005


Greetings!

On Tue, 20 Dec 2005, Edward Shallow wrote:

> Great, that would make it easier on all of us. Looking forward to this.
>
> Then all we have to do is make sure our public issuer certificates are in
> the "Trusted Root Certification Authorities" store when we call Verify
> correct ?

Not only public issuer certificates but CRLs too. Without CRL we can get
an error CERT_TRUST_REVOCATION_STATUS_UNKNOWN. Yes, it seems to be
enough.

Thank you!

-- 
SY, Dmitry Belyavsky (ICQ UIN 11116575)



More information about the xmlsec mailing list