[xmlsec] upgrading from xmlsec1-1.2.16 to xmlsec1-1.2.29

Aleksey Sanin aleksey at aleksey.com
Tue Feb 4 12:10:00 PST 2020 

xmlsec reports a detailed error. What is it?

Also make sure that you got the correct headers and libraries. Mixing
headers and libraries files from different versions of any library
will not work well.

Aleksey

On 2/4/20 11:45 AM, Floodeenjr, Thomas wrote:
> It turns out the key manager issue was a red herring. I had some 
> debug/release runtime issues.
> 
> So I am back to the original question:
> 
> We are in the process of upgrading from openssl-1.0.2g to openssl-1.1.1d 
> and from libxml2-2.7.8 to libxml2-2.9.9. We are also upgrading from 
> xmlsec1-1.2.16 to xmlsec1-1.2.29.
> 
> The code we have been using for years to encrypt our xml is no longer 
> working.
> 
> staticbool S_EncryptXMLNode(xmlDocPtr_doc, xmlNodePtr_node, 
> xmlSecKeysMngrPtr_keysMngr, xmlChar* _keyName)
> 
> {
> 
> bool            localRet = false;
> 
> xmlNodePtr      encDataNode = NULL;
> 
> xmlSecEncCtxPtrencCtx = NULL;
> 
>      localRet = SDDInfrasecUtil::CreateEncryptedDataNode(_doc, 
> xmlSecTypeEncElement, _keyName, &encDataNode);
> 
> if(true== localRet) {
> 
>          encCtx = xmlSecEncCtxCreate(_keysMngr);
> 
> if(NULL== encCtx) {
> 
>              fprintf(stderr,"Error: failed to create encryption context\n");
> 
>              xmlFreeNode(encDataNode);   encDataNode = NULL;
> 
>              localRet = false;
> 
>          } else{
> 
>              encCtx->defEncMethodId = xmlSecTransformAes128CbcId;
> 
>          }
> 
>      }
> 
> if((NULL!= encDataNode) && (NULL!= encCtx)) {
> 
> if(xmlSecEncCtxXmlEncrypt(encCtx, encDataNode, _node) < 0) {
> 
>              fprintf(stderr,"Error: encryption failed\n");
> 
>              xmlFreeNode(encDataNode);       encDataNode = NULL;
> 
>              xmlSecEncCtxDestroy(encCtx);    encCtx = NULL;
> 
>              localRet = false;
> 
>          } else{
> 
>              encDataNode = NULL;
> 
>          }
> 
>      }
> 
> if(NULL!= encCtx)         xmlSecEncCtxDestroy(encCtx);
> 
> if(NULL!= encDataNode)    xmlFreeNode(encDataNode);
> 
> returnlocalRet;
> 
> }
> 
> Encryption fails on this line: if(xmlSecEncCtxXmlEncrypt(encCtx, 
> encDataNode, _node) < 0) {
> 
> It worked before the upgrade.
> 
> Is there something we need to change?
> 
> Thanks,
> 
> -Tom
> 
> 
> _______________________________________________
> xmlsec mailing list
> xmlsec at aleksey.com
> http://www.aleksey.com/mailman/listinfo/xmlsec
>

More information about the xmlsec mailing list