when i got a signed smime letter signed by PKCS7_sign suppose the certificate chain is myca -> mycertificate so the PKCS7_verify is ok
but if the certificate chain is myca -> myissueca -> mycertificate so the pkcs7_verify will fail even i use openssl smime -verify -certfile my.cer -CAfile myca.cer -in o.eml it will fail too ,and the error messsage is "unable to get local issuer certificate" but if the signed letter is signed by other application ,such as outlook there is no problem i wonder why any help would be great appreciate thanks -- View this message in context: http://www.nabble.com/PKCS7_verify-t1634754.html#a4427414 Sent from the OpenSSL - Dev forum at Nabble.com. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
