I created a certification chain, it have 3 levels:
Root CA-> Level 2 CA -> Level 3 CA
| |
+-> Web site cert +-> User certs on smartcards.I use OpenSSL for certificate generation, OpenSC/OpenCT for the card I/O and Schlumberger CSP for the card I/O for IExplore...
For the Web Server Apache + mod_ssl...
The certificates are for 2048 bits length keys.
The fact is:
- It works with IExplore/MSCryptoAPI on Windows.
- It works with Mozilla/OpenSC on Windows.
- It does not work with Mozilla/OpenSC on Linux (i386 and PPC)...
The given error is -12227, after log ananlysis, Mozilla did not sent the certificate... Strange behaviour because it ask me to do it twice ! (and of course I agreed...)
In the certificate manager, Mozilla seems to be very happy, I granted the root CA, and it tell me everything are ok, showing me the certification tree, and telling me the certificates are certified to the correct usages.
Is there any way to trace the Mozilla action under Linux in order to find WHY it does not send the certificate ?
Or more easy for me the miracle solution ?
Thanks you very much, Romain _______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
