my buggy SMIME implementation

[Robert Withers <reefedjib@xxxxxxxxx>]

I realize this list is for the purpose of discussing the SMIME  
specification and that my implementation question is not pertinent.   
Nevertheless, I hope some kind soul will have the means to assist me  
in figuring out where my implementation is failing.  I could think of  
no other place to go ask this question.

I have written an SMIME client in Squeak, a programming environment.   
I got the CMS put together and I can read signed and encrypted  
messages sent by my Mac Email client.  When I generate signed and  
encrypted emails, however, the Mac Email client cannot read them.  I  
am using the same Certificate and PrivateKey in both email programs,  
so I know that the actual encryption should work, since the Mac email  
decrypts on both the Mac email client and the Squeak client.   
Furthermore, the Mac Email client only tells me that it failed to  
decrypt or failed to verify signature, but no other details.  Is  
there an SMIME Client that runs on the Mac, which could tell me  
exactly where my encrypted msg is bogus?

I have attached a sample encrypted email from both the Mac and  
Squeak.  Without the certs and the privateKey, could someone look at  
the CMS structure and tell me why my Squeak email is failing to decrypt?

Many thanks,
Robert

Content-Type: application/pkcs7-mime; name=smime.p7m; smime-type=enveloped-data
Message-Id: <0D4A3FA6-8DA7-4A68-BC82-F384CF02B55A@xxxxxxxxx>
Content-Disposition: attachment; filename=smime.p7m
Content-Transfer-Encoding: base64
From: Robert Withers <reefedjib@xxxxxxxxx>
Subject: Mac Encrypted Email
Date: Tue, 17 Apr 2007 08:58:37 -0700
To: Robert Withers <reefedjib@xxxxxxxxx>
X-Mailer: Apple Mail (2.752.2)
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To: reefedjib@xxxxxxxxx
Mime-version: 1.0
Content-disposition: attachment;filename=smime.p7m
Subject: Squeak Encrypted Email
Content-type: application/pkcs7-mime;name=smime.p7m;smime-type=enveloped-data
Content-transfer-encoding: base64
From: reefedjib@xxxxxxxxx
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