[xmlsec] Re: Invalid certificate (and new todo)
Aleksey Sanin
aleksey@aleksey.com
Thu, 25 Sep 2003 23:18:42 -0700
This is a multi-part message in MIME format.
--------------060002080906090302040007
Content-Type: multipart/alternative;
boundary="------------060309090001010106010501"
--------------060309090001010106010501
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
> 1) Run API docs generator to find out how bad is the situation. Fix as
> much
> as possible (Wouter, I would probably need you help with this).
Done. It turns out that we are in a pretty good shape! Less than a
couple dozens
functions are not documented. Wouter, I would appreciate if you can take
a look
at these functions (see list bellow) and comment them while everything
is still
fresh in memory :)
> 2) Create "Cert" key type for public keys.
Done for OpenSSL, NSS and MSCrypto. The patch and new der certificate
are attached
(the new cert should go into tests/merlin-xmldsig-twenty-three/certs/
folder). Everything is
checked in the trunk.
Also I have added a new docs/authors.html page. The content is copied
from AUTHORS
file in the distribution with obscured email addresses. If you are
listed there and would
like to change something then do not hesitate to send me an email :)
Aleksey
Not documented functions:
--------------------------------------
xmlSecMSCryptoAppDefaultKeysMngrAdoptKey
xmlSecMSCryptoAppDefaultKeysMngrInit
xmlSecMSCryptoAppDefaultKeysMngrLoad
xmlSecMSCryptoAppDefaultKeysMngrSave
xmlSecMSCryptoAppKeyCertLoadMemory
xmlSecMSCryptoAppKeysMngrCertLoadMemory
xmlSecMSCryptoAppPkcs12LoadMemory
xmlSecMSCryptoKeyDataDesId
xmlSecMSCryptoKeyDataDesSet
xmlSecMSCryptoKeyDataDuplicate
xmlSecMSCryptoKeyDataGetCert
xmlSecMSCryptoKeyDataGetKey
xmlSecMSCryptoKeyDataHmacGetKlass
xmlSecMSCryptoKeyDataHmacSet
xmlSecMSCryptoTransformHmacMd5GetKlass
xmlSecMSCryptoTransformHmacSha1GetKlass
--------------060309090001010106010501
Content-Type: text/html; charset=us-ascii
Content-Transfer-Encoding: 7bit
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html;charset=ISO-8859-1">
<title></title>
</head>
<body text="#000000" bgcolor="#ffffff">
<meta http-equiv="Content-Type" content="text/html;charset=ISO-8859-1">
<br>
<blockquote type="cite" cite="mid3F723305.80207@aleksey.com">1) Run API
docs generator to find out how bad is the situation. Fix as much
<br>
as possible (Wouter, I would probably need you help with this).
</blockquote>
Done. It turns out that we are in a pretty good shape! Less than a
couple dozens<br>
functions are not documented. Wouter, I would appreciate if you can
take a look<br>
at these functions (see list bellow) and comment them while everything
is still<br>
fresh in memory :)<br>
<br>
<blockquote type="cite" cite="mid3F723305.80207@aleksey.com">2) Create
"Cert" key type for public keys.
<br>
</blockquote>
Done for OpenSSL, NSS and MSCrypto. The patch and new der certificate
are
attached <br>
(the new cert should go into tests/merlin-xmldsig-twenty-three/certs/
folder). Everything is <br>
checked in the trunk.<br>
<br>
Also I have added a new docs/authors.html page. The content is copied
from AUTHORS<br>
file in the distribution with obscured email addresses. If you are
listed there and would<br>
like to change something then do not hesitate to send me an email :)<br>
<br>
Aleksey<br>
<br>
<br>
Not documented functions:<br>
--------------------------------------<br>
<br>
xmlSecMSCryptoAppDefaultKeysMngrAdoptKey<br>
xmlSecMSCryptoAppDefaultKeysMngrInit<br>
xmlSecMSCryptoAppDefaultKeysMngrLoad<br>
xmlSecMSCryptoAppDefaultKeysMngrSave<br>
xmlSecMSCryptoAppKeyCertLoadMemory<br>
xmlSecMSCryptoAppKeysMngrCertLoadMemory<br>
xmlSecMSCryptoAppPkcs12LoadMemory<br>
xmlSecMSCryptoKeyDataDesId<br>
xmlSecMSCryptoKeyDataDesSet<br>
xmlSecMSCryptoKeyDataDuplicate<br>
xmlSecMSCryptoKeyDataGetCert<br>
xmlSecMSCryptoKeyDataGetKey<br>
xmlSecMSCryptoKeyDataHmacGetKlass<br>
xmlSecMSCryptoKeyDataHmacSet<br>
xmlSecMSCryptoTransformHmacMd5GetKlass<br>
xmlSecMSCryptoTransformHmacSha1GetKlass<br>
<br>
</body>
</html>
--------------060309090001010106010501--
--------------060002080906090302040007
Content-Type: application/gzip;
name="lugh-cert.der.gz"
Content-Transfer-Encoding: base64
Content-Disposition: inline;
filename="lugh-cert.der.gz"
H4sICBC2cz8AA2x1Z2gtY2VydC5kZXIAM2hi9jdoYuZbwMzEyMTExvDmp+KRZQacbOxabR7n
LFiYDcoMuYFc5lAWNmEmT1dDfgNeEIdDmM2lNCknM89QxUAJJMAlLO2UmFOSmZtflKoQkpqc
kZefk5+emVqs4FOSomcoaMAPUsUtzBGhH5yaXFqUaihrIA0SYhYWcczLL8lILVIIKUrMK85M
zStRcHY0kBPnNTAyMDEwNgACI8MocV5DENfIyMjU0sQsyiCNVu7iNeCGuIvFpzQ9w6CJcRsQ
a8MChBHIkWNqbGRo6drgpd5zcYHc+Xft7yO0OD+kH8i9a/fuJINn9PXCJQdLCr6Kn293zVWM
eMgz7ZMGk94ZTcv182QKJTZmH7lw6+vUQ+0BX1+9e2eqMofdbG0gQ/jMTr8N2W9d9au//rXN
ZuK5tzTuo3fHrHo7/aMXz0z9o6D5y0jz1y5V3+KFwfZZQpZHEw4ziTLM8P5V0ZTN3tR78fNF
BuGPdy7eKIpkamxQbXsm+Yfn/NZ1/3L8nBxXq3nG3Pn02L760dk3DKmCNQJufhNqJ8TEH7ld
8dnl48T05lb57V+MGZ4aMmwUfufUUOXHWa2defaseIKa0Y4kB7881q/TTJcwVZ7knDKb+3Di
zaiUeaolOef+ylUL/Xww/+OObSseL9LVOV7x6u2Z9/zsbnKVRheYG1sYgM7wKIsweDJl5+GA
HdlzLoS9LLnbdNTPbfpLmWjfbuaisi/e6gvWHprwXO9M4/JmX1ePM+q7nEN7+758rdkjNltD
0zRUxHJSi6rty4kKdZ//nViTbKeYKnzMp+PgaoVNWRfmxt/6oTJRNOBzKlOnuLks57c0bZ+N
7cnZNicmLGJesK41uWHXU+HFVgYWBnzAqJTlZ2T8z8LCzMTeYCAI4vOxcLFw9ETy7VP69zbA
QBgkpMzCY8DVwNElE2YQZSRUi5QBmA0YDHSBgd3yPqflzuy4S9H+y2umLX38yWiuoBqTSIn8
bOcJxckbt9/P7OdQ/F1ybWuyCwCGOxs+UwMAAA==
--------------060002080906090302040007
Content-Type: application/gzip;
name="key-from-cert.diff.gz"
Content-Transfer-Encoding: base64
Content-Disposition: inline;
filename="key-from-cert.diff.gz"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--------------060002080906090302040007--