We've fixed x509vfy.c patch. The problem was in two typos in recursion calls. New version is attached.
OK, the patch is checked in but I had to modify it slightly. In order to keep existing behavior, I added a new flag to the MS Crypto store data that enables/disables system trusted certs (default value is "enabled"). The new function xmlSecMSCryptoX509StoreEnableSystemTrustedCerts() should be called to change this behavior and get the functionality provided in the Dmitry's patch. Aleksey _______________________________________________ xmlsec mailing list [email protected] http://www.aleksey.com/mailman/listinfo/xmlsec
