[xmlsec] Unable to find key

Aleksey Sanin aleksey at aleksey.com
Sun Nov 25 09:36:31 PST 2012

Simplest way would probably be to extract the public key from
the certificate using openssl command line tools and then load
it from a PEM file into xmlsec.


On 11/25/12 5:25 AM, Kurt Roeckx wrote:
> Hi,
> I get the following error trying to verify a signature:
> func=xmlSecKeysMngrGetKey:file=keys.c:line=1370:obj=unknown:subj=xmlSecKeysMngrFindKey:error=1:xmlsec library function failed: 
> func=xmlSecDSigCtxProcessKeyInfoNode:file=xmldsig.c:line=871:obj=unknown:subj=unknown:error=45:key is not found: 
> func=xmlSecDSigCtxProcessSignatureNode:file=xmldsig.c:line=565:obj=unknown:subj=xmlSecDSigCtxProcessKeyInfoNode:error=1:xmlsec library function failed: 
> func=xmlSecDSigCtxVerify:file=xmldsig.c:line=366:obj=unknown:subj=xmlSecDSigCtxSigantureProcessNode:error=1:xmlsec library function failed: 
> It's using X509 certificates.  But instead of adding the cert in
> the xml file they put the fingerprint of the cert in KeyName, and
> I have the cert locally in PEM format.
> So I created a key manager and loaded the cert with
> xmlSecCryptoAppKeysMngrCertLoad().  But I think that's why it
> can't find the cert because I can't give it the keyname they're
> sending.
> I don't think I can use xmlSecKeySetName() because it's not
> a key.
> How can I get this working?
> Kurt
> _______________________________________________
> xmlsec mailing list
> xmlsec at aleksey.com
> http://www.aleksey.com/mailman/listinfo/xmlsec

More information about the xmlsec mailing list