[xmlsec] Re: GOST support in xmlsec

Dmitry Belyavsky beldmit at cryptocom.ru
Sun Feb 19 04:27:01 PST 2006


On Tue, 14 Feb 2006, Aleksey Sanin wrote:

> > We've fixed x509vfy.c patch. The problem was in two typos in recursion
> > calls. New version is attached.
> >
> OK, the patch is checked in but I had to modify it slightly. In order to
> keep existing behavior, I added a new flag to the MS Crypto store data
> that enables/disables system trusted certs (default value is "enabled").
> The new function xmlSecMSCryptoX509StoreEnableSystemTrustedCerts()
> should be called to change this behavior and get the functionality
> provided in the Dmitry's patch.

I have thought some more time :-) and now I see I don't understand where
the last patch breaks backward compatibility. If key manager is not
empty, the last patch I've submitted is equal to 1.2.9 behaviour...

Thank you!

SY, Dmitry Belyavsky (ICQ UIN 11116575)

More information about the xmlsec mailing list