Vidal Pascal wrote, On 2009-02-06 00:05: > Hi, > >> Include all the certificates which chain from the original end-user >> certificate into the PKCS7 file. Firefox should import them happily.
Maybe. > I agree with you, that's i've done. In fact, the problem is: > > EE certificate contains an AIA extension which indicates a p7c file. > In this p7c file, there is a cross-certificate which also contains an AIA > extension with the URL of an another p7c files. > In this p7c file, there is the second cross-certificate and the user, which > receives the EE certificate, can validate the certificate with its own CA > Root. Maybe you've stopped reading your original thread on this topic, so I'll ask the questions again in this thread. PKCS#7 defines 6 content types: data, signed data, enveloped data, signed-and-enveloped data, digested data, and encrypted data. Which of those 6 content types is found in your .p7c files? What MIME content type does your server use when serving those files? -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
