x509 v1 certificate

ARIGA Seiji ariga at os.rim.or.jp
Fri Sep 29 10:26:00 CEST 2006

sorry for belated response.

On Tue, 26 Sep 2006 11:13:41 +0200,
Werner Koch <wk at gnupg.org> wrote,

> > Because verisign's root certificates are v1 which are widely accepted.
> Okay, with the current SVN version of gnupg, you may now have a line
> 85371CA6E550143DCE2803471BDE3A09E8F8770F S relax  
> in the trustlist.txt to allow using the old Verisign certificates.
> Note the "relax" flag.  You need to restart gpg-agent.

i built gpgsm/gpg-agent from the source "svn update"-ed at 2006/09/29
02:00 UTC.
# certchain.c r4267 | wk | 2006-09-26 19:00:12 +0900 (Tue, 26 Sep 2006)

and still got following error:

gpgsm: error getting key usage information: No value
gpgsm: invalid certification chain: No value

i believe "rc = gpgsm_cert_use_cert_p (issuer_cert);" is the issue.

// ARIGA Seiji

More information about the Gnupg-devel mailing list