<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
Dmitry,<br>
<br>
Thanks for your patch! I made a couple minor fixes and pushed the
changes to git.<br>
I would appreciate if you try the git version to make sure
everything is good and then<br>
I will be happy to do a release.<br>
<br>
Thanks again!<br>
<br>
<pre class="moz-signature" cols="72">Aleksey
</pre>
<br>
On 9/3/11 4:55 AM, Dmitry Belyavsky wrote:
<blockquote
cite="mid:CADqLbzLvf-bouEVsQc7Mk-MNBsE_F3-8Ja9-SHejUj8wqJ1Dqg@mail.gmail.com"
type="cite">
<pre wrap="">Greetings!
I've found an linking error and now openssl xmlsec works with the
Russian GOST digital signature algorythm. Here is the patch.
The only known bugfeature is related with the absence of functions
determining whether the public key only or both private and public are
available in EVP_PKEY struct in modern openssl.
The result is compatible with gost mscrypto signature. Example test:
apps/.libs/xmlsec1 --verify --trusted-pem tests/keys/gost2001ca.pem
--verification-time "2006-04-01 00:00:00"
tests/aleksey-xmldsig-01/enveloped-gost.xml
works, the signature and digest are verified successfully.
The usage of GOST algorythms requires OpenSSL 1.0 or later. It should
be configured according to README.gost instructions. The library
should be builded with --enable-gost parameter.
I hope you'll find this patch suitable for distribution.
Thank you!
</pre>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
xmlsec mailing list
<a class="moz-txt-link-abbreviated" href="mailto:xmlsec@aleksey.com">xmlsec@aleksey.com</a>
<a class="moz-txt-link-freetext" href="http://www.aleksey.com/mailman/listinfo/xmlsec">http://www.aleksey.com/mailman/listinfo/xmlsec</a>
</pre>
</blockquote>
</body>
</html>