[Bulk] Re: [xmlsec] OpenSSL vs mscrypto

Aleksey Sanin aleksey at aleksey.com
Thu Jan 12 22:19:56 PST 2006

As I wrote, I *did not* use this option in my test. What your
results show is exactly what I already explained to you: the
key w/o "--enabled-key-data retrieval-method,x509,raw-x509-cert"
is searched by key name and you have a match in your MS Crypto


Edward Shallow wrote:
> Aleksey,
> I was able to produce exactly what you produced with the selection below of
> --enabled-key-data. The message is identical. What you are seeing has
> nothing to do with cert chain verification. It is likely related to your
> inability to get the "Test User 1" certificate from the crypto store given
> the new --enabled-key-data constraint.
> You still have an mscrypto problem.
> Ed

More information about the xmlsec mailing list