[xmlsec] problems by xmlSecKeysMngrFindKey

Ed Shallow ed.shallow at rogers.com
Tue Oct 10 18:06:03 PDT 2006 

The substring following the CN= will work. This is the Common Name sub-field
and is not the same as the Friendly Name sub-field which is entirely
optional.

 

The full DN with all sub-fields will also work. Again check what MS display
using the MS Cert Viewer.

 

As Wouter indicated the Friendly Name is an entirely different sub-field and
not (yet) supported. Please check what the MS Cert Viewer displays and
ensure you are consistent with that.

 

Ed

 

 

 

   _____  

From: xmlsec-bounces at aleksey.com [mailto:xmlsec-bounces at aleksey.com] On
Behalf Of Wouter
Sent: Tuesday, October 10, 2006 9:13 AM
To: Jürgen Heiss
Cc: xmlsec at aleksey.com
Subject: Re: [xmlsec] problems by xmlSecKeysMngrFindKey

 

Serial Number is usually SN, Common Name CN, Country C... Check what the
certificate looks like in MS certificate store.

Wouter

Jürgen Heiss wrote: 

Hi,

 

My certificate subject look like this.

 

Serial Number = xxxxxx

N = Dummy

C = AT

 

How should look now the function call?

 

xmlSecKeyPtr key = xmlSecKeysMngrFindKey(mngr, (xmlChar *)"Serival number =
xxxxxx N = Dummy c = AT ", keyInfoCtx); 

 

This down't work!

   _____  

From: Wouter Ketting [HYPERLINK
"mailto:wsh333 at gmail.com"mailto:wsh333 at gmail.com] 
Sent: Dienstag, 10. Oktober 2006 12:06
To: Jürgen Heiss
Cc: HYPERLINK "mailto:xmlsec at aleksey.com"xmlsec at aleksey.com
Subject: Re: [xmlsec] problems by xmlSecKeysMngrFindKey

Search by friendly name is not (yet) supported. You could try search by full
subject DN, or apply the patch posted in HYPERLINK
"http://www.aleksey.com/pipermail/xmlsec/2006/003560.html"http://www.aleksey
.com/pipermail/xmlsec/2006/003560.html and see whether you are able to
retrieve the certificate by friendly name.

Wouter

On 10/10/06, Jürgen Heiss <HYPERLINK "mailto:jheiss at mesonic.com"
jheiss at mesonic.com> wrote: 

Hi Wouter,

 

Yes I use this three Init Functions.

I don't get any error, "just" the result is always NULL.

The parm (name) in the FindKey Function is the friendly name of the cert, or
should it be something else.

 

   _____  

From: Wouter Ketting [mailto:HYPERLINK "mailto:wsh333 at gmail.com"
\nwsh333 at gmail.com] 
Sent: Dienstag, 10. Oktober 2006 11:38
To: Jürgen Heiss
Cc: HYPERLINK "mailto:xmlsec at aleksey.com" \nxmlsec at aleksey.com
Subject: Re: [xmlsec] problems by xmlSecKeysMngrFindKey

As far as I know it is the same mechanism as used internally... Did you
initialize xmlsec lib properly (probably a redundant question, but you never
know):

xmlSecInit();
xmlSecCryptoAppInit(NULL);
xmlSecCryptoInit(); 

Also, do you get any error messages anywhere? Or the key is simply not
found?

Wouter

On 10/10/06, Jürgen Heiss <HYPERLINK "mailto:jheiss at mesonic.com" \n
jheiss at mesonic.com> wrote: 

I forgot to tell that I'm using mscrypto.

 

   _____  

From: HYPERLINK "mailto:xmlsec-bounces at aleksey.com"
\nxmlsec-bounces at aleksey.com [mailto:HYPERLINK
"mailto:xmlsec-bounces at aleksey.com" \n xmlsec-bounces at aleksey.com] On Behalf
Of Jürgen Heiss
Sent: Dienstag, 10. Oktober 2006 11:06
To: HYPERLINK "mailto:xmlsec at aleksey.com" \nxmlsec at aleksey.com
Subject: [xmlsec] problems by xmlSecKeysMngrFindKey

I try to Find a Key but it always returns Null.

 

 

    xmlSecKeysMngrPtr mngr = xmlSecKeysMngrCreate();  
    xmlSecCryptoAppDefaultKeysMngrInit(mngr);

 

    /* locate and load key you want to use */
    xmlSecKeyInfoCtxPtr keyInfoCtx = xmlSecKeyInfoCtxCreate(mngr);
    xmlSecKeyPtr key = xmlSecKeysMngrFindKey(mngr, (xmlChar *)"dummy",
keyInfoCtx); 

 

 

I my computer exists a certificate with the name CN=dummy.

any ideas what went wrong?


_______________________________________________
xmlsec mailing list
HYPERLINK "mailto:xmlsec at aleksey.com" \nxmlsec at aleksey.com
HYPERLINK "http://www.aleksey.com/mailman/listinfo/xmlsec"
\nhttp://www.aleksey.com/mailman/listinfo/xmlsec







 

 


--
No virus found in this incoming message.
Checked by AVG Free Edition.
Version: 7.1.407 / Virus Database: 268.13.0/465 - Release Date: 10/6/2006



-- 
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.407 / Virus Database: 268.13.0/465 - Release Date: 10/6/2006
 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.aleksey.com/pipermail/xmlsec/attachments/20061010/d400f1fe/attachment-0002.htm

More information about the xmlsec mailing list