[xmlsec] Trying to implement GOST 28147-89 cipher. Need help

Aleksey Sanin aleksey at aleksey.com
Wed Mar 4 10:48:43 PST 2015 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

The error message indicates that the correct key can not be found
which is probably due to mismatch in expected keyId. Set a breakpoint
in xmlSecKeyReqMatchKeyValue() and check what's going on.

Aleksey

On 3/4/15 5:50 AM, Nikolay Shaplov wrote:
> Hi!
> 
> I am trying to implement GOST 28147-89 cipher.
> 
> I've cloned all objects related to Des3Cbc into Gost28147_89 but it
> turned out that I've missed something...
> 
> When I try to encrypt binary daya with GOST key it says
> 
> func=xmlSecKeysMngrGetKey:file=keys.c:line=1370:obj=unknown:subj=xmlSecKeysMngrFindKey:error=1:xmlsec
>  library function failed: 
> func=xmlSecEncCtxEncDataNodeRead:file=xmlenc.c:line=957:obj=unknown:subj=unknown:error=45:key
>  is not found: 
> func=xmlSecEncCtxUriEncrypt:file=xmlenc.c:line=568:obj=unknown:subj=xmlSecEncCtxEncDataNodeRead:error=1:xmlsec
>  library function failed: Error: failed to encrypt file "data" 
> Error: failed to encrypt file with template "gost.tmpl"
> 
> I did not managed to debug this properly, may be because of lack of
> C experience.
> 
> Can you have a look at it. May be I've made some stupid mistake
> that can bee easily seen (something like using wrong name in key
> file for example). Or it mistake can't be easily seen may be you
> can tell me from what point I should look for mistake... Or give
> some other useful advise...
> 
> In attach there is a diff file for gost89 and my test files that I
> am using to run it.
> 
> 
> 
> _______________________________________________ xmlsec mailing
> list xmlsec at aleksey.com 
> http://www.aleksey.com/mailman/listinfo/xmlsec
> 
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
Comment: GPGTools - https://gpgtools.org

iQIcBAEBCgAGBQJU91OLAAoJEEEbi2vACtCgsLsP/28kB4tcGyIyRZ6URx8YAJ2H
H06ssFv8KbkaCXExuO9gSAJmGshUPrdki9h9ssDssQXpkJ7cLSGRVnatyrYdwWVo
6UmVa1giQjyQQDH/5YD4wvYAFFP/U/yQIrFbgtluKvlzMD8v8bYb2jmvOmyvLcI8
Rw0lCNKy+t7XSoVwCxMt3vXDGXehJ0WF4PcnRryEb+Gjd/vHVReip3Vn+DeFSOi6
2aPVSJCCciflUO6JC2gDNlWizfBqGQ3+vm0u3MJX/FqJMOy8DtIKSsIAY2QAKmVb
23qmMHw4LMqu0opyZiykmfVtG+96ptClN3hVXgfzG6gqYusnLGQZKnmBeHyh3tQX
yT3Zu5lM/x24nDScwQV2ZNcRNx+C8EawGkl5xpmpVcxtxA5iwdMd498WzR/e4Vl2
zErs02LNq4JpD6ah47RRCOKZ1MNSgRYy9qh2Ov0IoYJ1jx66lWBccNiJrtIhLoBG
mRu3nZvveKHKKBHiD12hspaCwXgkc31wEy2wUkk4f5cAuEcLGB6KsWtI25gPg5T2
s0D26JOcr1FPqGOtQdVMIfMclgwluhrVlUDcbx+iOwB7+lJ/Ru1kN0G/lxySVl1v
kC/h0AMn80X9Zlqc5A7OD0NujsSzL5CMLIg/5p/iscbpg/ce6TJg6lnTHFCDhr1N
AMVYZto+m/blsR+18vAa
=AwCC
-----END PGP SIGNATURE-----

More information about the xmlsec mailing list