[xmlsec] From Openssl to NSS

Si St sigbj-st at operamail.com
Fri Nov 4 04:53:38 PDT 2011

I have xml-signingtried with the new smartcarddriver. 
Tools like pkcs11-tool and clientToolBox manages to sign and test the
I am getting contact with the card with xmlsec1 and openssl, but signing
is still negativ - error:45 - just like before. What I believe is that
regardless of MultiSign and SingleSign as to xmlsec1, they both will

If I change to NSS instead of OPENSSL, what has to be done?

There is little sense to get from the firefox sites.

xmlsec1 sign --crypto nss --output signedKOM KOM.xml
library function failed: ;last nss error=-8157 (0xFFFFE023)
is not found: ;last nss error=-8157 (0xFFFFE023)
library function failed: ;last nss error=-8157 (0xFFFFE023)
library function failed: ;last nss error=-8157 (0xFFFFE023)
Error: signature failed
Error: failed to sign file "KOM.xml"

  Si St
  sigbj-st at operamail.com

http://www.fastmail.fm - Send your email first class

More information about the xmlsec mailing list