Closed savely-krasovsky closed 2 years ago
Oh, after a day of research I've understood that gnusm DOES NOT use system-wide cert storage and you need to manually import root cert to gpgsm.
$ gpgsm --import ca.crt
You also need to create ~/.gnupg/trustlist.txt
file with fingerprint of your CA:
2B:00:80:0B:B7:A7:62:E6:9B:D4:11:27:7F:CF:5C:59:14:65:C3:25 S
It's seems for me that signatures made by smimesign cannot be verified by gpgsm. gpgsm uses for ID string like this
0x85B45FC2
and smimesign just cert fingerprint. So gpgsm simply cannot found this cert: