[xmlsec] Signature Verification Problem Using X509 Certificates

[Roumen Petrov]

Paul Keeler wrote:
> Still no success I'm afraid.  I'm starting to think that the only option I'm
> left with is to (within my application) manually parse the signed document
> and add all of the certificates to the untrusted store.
>
> [SNIP]
The valid path must begin with certificates issued by a trust anchor.
So if whole certificate chain is in untrusted store certificate cannot 
be validated.


Roumen