[xmlsec] Big patch to xmlsec in recent OpenOffice.org sources
Aleksey Sanin
aleksey at aleksey.com
Tue Mar 8 01:46:28 PST 2005
>> Unfortunately, I found quite a lot of problems with these changes:
>> - hmac does not work at all (I guess, the reason is symkeys.c changes)
>> - aes key wrap does not at all
>> - many des encryption regression tests do not work
>>
> :-( But all of the above interfaces have been tested and used in
> encryption at staroffice internally. I'm afraid it is because we haven't
> change the app* implementations.
Well, I don't know details about the testing you did. But I already
found that none of AES encryption can possibly work because of line 112
in symkeys.c which looks defenetly wrong to me :)
#ifndef XMLSEC_NO_AES
if(xmlSecKeyDataCheckId(data, xmlSecNssKeyDataDesId)) {
ctx->cipher = CKM_AES_KEY_GEN;
} else
#endif /* XMLSEC_NO_AES */
It is possible that there are issues with *App* methods but as I wrote
before, these methods are used in xmlsec for testing and I would really
love to have some testing done on my side before I can checkin new
stuff :)
I'll continue playing with these changes but I'll probably look at the
x509.c/x509vfy.c changes first
Aleksey
More information about the xmlsec
mailing list