[xmlsec] OpenSSL
Jan-Olof Andersson
jan-olof.andersson@blcc.biz
Fri, 26 Sep 2003 10:08:46 -0400
This is a multi-part message in MIME format.
------=_NextPart_000_001F_01C38416.2C1C3960
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: 7bit
Hi Aleksey,
I am compiling the latest versin for Win32.
I have problem with the Openssl. It seems to be missing some archives or
there is an archive with the wrong version.
Anybody who can give me an hint?
Best regards
/NODEFAULTLIB:library
app.obj : error LNK2001: unresolved external symbol
_OPENSSL_add_all_algorithms_
noconf
app.obj : error LNK2001: unresolved external symbol
_CRYPTO_cleanup_all_ex_data
ciphers.obj : error LNK2001: unresolved external symbol _EVP_aes_256_cbc
ciphers.obj : error LNK2001: unresolved external symbol _EVP_aes_192_cbc
ciphers.obj : error LNK2001: unresolved external symbol _EVP_aes_128_cbc
ciphers.obj : error LNK2001: unresolved external symbol
_EVP_CIPHER_CTX_set_padd
ing
kw_des.obj : error LNK2001: unresolved external symbol
_EVP_CIPHER_CTX_set_paddi
ng
digests.obj : error LNK2001: unresolved external symbol _EVP_MD_CTX_init
signatures.obj : error LNK2001: unresolved external symbol _EVP_MD_CTX_init
digests.obj : error LNK2001: unresolved external symbol _EVP_MD_CTX_cleanup
signatures.obj : error LNK2001: unresolved external symbol
_EVP_MD_CTX_cleanup
hmac.obj : error LNK2001: unresolved external symbol _HMAC_CTX_init
hmac.obj : error LNK2001: unresolved external symbol _HMAC_CTX_cleanup
kw_aes.obj : error LNK2001: unresolved external symbol _AES_encrypt
kw_aes.obj : error LNK2001: unresolved external symbol _AES_set_encrypt_key
kw_aes.obj : error LNK2001: unresolved external symbol _AES_decrypt
kw_aes.obj : error LNK2001: unresolved external symbol _AES_set_decrypt_key
x509.obj : error LNK2001: unresolved external symbol _ASN1_TIME_check
libeay32.lib(rand_win.obj) : error LNK2001: unresolved external symbol
__imp__Re
gQueryValueExA@24
binaries\libxmlsec-openssl.dll : fatal error LNK1120: 16 unresolved
externals
NMAKE : fatal error U1077: 'link.exe' : return code '0x460'
-----Original Message-----
From: xmlsec-admin@aleksey.com [mailto:xmlsec-admin@aleksey.com]On Behalf
Of Aleksey Sanin
Sent: den 26 september 2003 03:02
To: Johannes Kjos
Cc: 'xmlsec@aleksey.com'
Subject: Re: SV: [xmlsec] Using a content ID for URI
Well, probably the best option for you would be option #2: use special URL
protocol
in URI attributes like "cid:<attachment id>" and create custom protocol
handlers
for "cid". Take a look at LibXML2 IO tutorial:
http://xmlsoft.org/xmlio.html
and xmlsec API reference:
http://www.aleksey.com/xmlsec/api/xmlsec-io.html
And do not forget to register your protocol handlers in both xmlsec and
libxml2.
Aleksey
Johannes Kjos wrote:
Ok, I will try to explain once more :)
My secapp is a toolkit to support XMLDsig signing MIME message, there are
two or more mime parts and the first part is SOAP (<header> and <body>), the
other mime parts are attachments. These attachments are signed and the
<Signature> is placed inside the SOAP <header>. My secapp only relates and
thereby returns the SOAP message to the calling application which deals with
the mime packing and so on. So, when signing an attachment, the calling
application has to give my secapp a cid and the filepath (it's all filebased
for a reason not to mention here) for the file to sign, insert the cid in
<SignedInfo> make a digest (and put it in <DigestValue>) of the file with
filepath, and then sign <SignedInfo>. The reason the cid is signed and not
the filepath is because my secapp don't deal with the attachment in the
mimemessage, the calling application does.
So when verifying the callig app will search through the attachments and
when it finds a cid it will give the filepath and the cid to my secapp (the
rest of the <References> in the <Signature> will be resolved by xmlsec in
normal manner). My secapp will make a list of these mappings and hopefully
in some way make the xmlsec to understand that the <SignatureValue> is a
signature over the current <SignedInfo> but the <DigestValue> of the
references with the cids is from the files with filepath given by the
mappings....I know this is working e.g. in the java lib IAIK...
I think this is a version of ebXML.
Best regards,
Johannes
-----Opprinnelig melding-----
Fra: Aleksey Sanin [mailto:aleksey@aleksey.com]
Sendt: 25. september 2003 17:41
Til: Johannes Kjos
Kopi: 'xmlsec@aleksey.com'
Emne: Re: [xmlsec] Using a content ID for URI
No, it's actually not quite clear but I would try to guess :)
1) You would like to use "#ID" or any other XPointer expression in
URI attributes.
Yes, it is possible. Please read section 3.2 from FAQ
http://www.aleksey.com/xmlsec/faq.html
for the only known common issue about that.
2) You need to use custom protocols like URI="cid:something"
Yes, it is possible. You would need to register custom protocol
handlers in both
LibXML2 and xmlsec. Search headers in both libraries for
"RegisterProtocol".
Protocol handlers in both libraries are exactly the same. LibXML2
handlers are used
for reading XML files (thus they can automatically do some smart
things like gzip/gunzip)
and xmlsec protocol handlers are used for reading binary files. Also
there is a tutorial'
page on LibXML2 web site http://xmlsoft.org about writing IO callbacks.
Aleksey
Johannes Kjos wrote:
Hello!
I'm using xmlsec 0.0.15! And using an upgrade makes a lot of work for me
because other project participants have made quit a lot of work in the
0.0.15 code.
My question is: Is it possible to make the xmlseclib to use a cid for URI
in
SignedInfo References? E.g.I want the calling app to search through a some
blocks of a message, inside them there is cids to be resolved for the cids
in the references (the signature is in a header element). The calling app
should send e.g. filepath and URI to my secapp and I will make xmlsec to
use
the file for digest but have the cid for that file in SignedInfo when
signing - and the other way when verifying.
Hope this is understandable...
Best regards,
Johannes
_______________________________________________
xmlsec mailing list
xmlsec@aleksey.com
http://www.aleksey.com/mailman/listinfo/xmlsec
_______________________________________________
xmlsec mailing list
xmlsec@aleksey.com
http://www.aleksey.com/mailman/listinfo/xmlsec
------=_NextPart_000_001F_01C38416.2C1C3960
Content-Type: text/html;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD><TITLE></TITLE>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Dus-ascii">
<META content=3D"MSHTML 6.00.2800.1226" name=3DGENERATOR></HEAD>
<BODY text=3D#000000 bgColor=3D#ffffff>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN =
class=3D427165213-26092003>Hi=20
Aleksey,</SPAN></FONT></DIV>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN=20
class=3D427165213-26092003></SPAN></FONT> </DIV>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN=20
class=3D427165213-26092003></SPAN></FONT> </DIV>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN =
class=3D427165213-26092003>I am=20
compiling the latest versin for Win32. </SPAN></FONT></DIV>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN=20
class=3D427165213-26092003></SPAN></FONT> </DIV>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN =
class=3D427165213-26092003>I have=20
problem with the Openssl. It seems to be missing some archives or there =
is an=20
archive with the wrong version.</SPAN></FONT></DIV>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN=20
class=3D427165213-26092003></SPAN></FONT> </DIV>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN=20
class=3D427165213-26092003>Anybody who can give me an =
hint?</SPAN></FONT></DIV>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN=20
class=3D427165213-26092003></SPAN></FONT> </DIV>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN =
class=3D427165213-26092003>Best=20
regards</SPAN></FONT></DIV>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN=20
class=3D427165213-26092003></SPAN></FONT> </DIV>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN=20
class=3D427165213-26092003></SPAN></FONT> </DIV>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN=20
class=3D427165213-26092003>/NODEFAULTLIB:library<BR>app.obj : error =
LNK2001:=20
unresolved external symbol =
_OPENSSL_add_all_algorithms_<BR>noconf<BR>app.obj :=20
error LNK2001: unresolved external symbol=20
_CRYPTO_cleanup_all_ex_data<BR>ciphers.obj : error LNK2001: unresolved =
external=20
symbol _EVP_aes_256_cbc<BR>ciphers.obj : error LNK2001: unresolved =
external=20
symbol _EVP_aes_192_cbc<BR>ciphers.obj : error LNK2001: unresolved =
external=20
symbol _EVP_aes_128_cbc<BR>ciphers.obj : error LNK2001: unresolved =
external=20
symbol _EVP_CIPHER_CTX_set_padd<BR>ing<BR>kw_des.obj : error LNK2001: =
unresolved=20
external symbol _EVP_CIPHER_CTX_set_paddi<BR>ng<BR>digests.obj : error =
LNK2001:=20
unresolved external symbol _EVP_MD_CTX_init<BR>signatures.obj : error =
LNK2001:=20
unresolved external symbol _EVP_MD_CTX_init<BR>digests.obj : error =
LNK2001:=20
unresolved external symbol _EVP_MD_CTX_cleanup<BR>signatures.obj : error =
LNK2001: unresolved external symbol _EVP_MD_CTX_cleanup<BR>hmac.obj : =
error=20
LNK2001: unresolved external symbol _HMAC_CTX_init<BR>hmac.obj : error =
LNK2001:=20
unresolved external symbol _HMAC_CTX_cleanup<BR>kw_aes.obj : error =
LNK2001:=20
unresolved external symbol _AES_encrypt<BR>kw_aes.obj : error LNK2001:=20
unresolved external symbol _AES_set_encrypt_key<BR>kw_aes.obj : error =
LNK2001:=20
unresolved external symbol _AES_decrypt<BR>kw_aes.obj : error LNK2001:=20
unresolved external symbol _AES_set_decrypt_key<BR>x509.obj : error =
LNK2001:=20
unresolved external symbol =
_ASN1_TIME_check<BR>libeay32.lib(rand_win.obj) :=20
error LNK2001: unresolved external symbol __imp__Re<BR><A=20
href=3D"mailto:gQueryValueExA@24">gQueryValueExA@24</A><BR>binaries\libxm=
lsec-openssl.dll=20
: fatal error LNK1120: 16 unresolved externals<BR>NMAKE : fatal error =
U1077:=20
'link.exe' : return code '0x460'</SPAN></FONT></DIV>
<BLOCKQUOTE dir=3Dltr style=3D"MARGIN-RIGHT: 0px">
<DIV class=3DOutlookMessageHeader dir=3Dltr align=3Dleft><FONT =
face=3DTahoma=20
size=3D2>-----Original Message-----<BR><B>From:</B> =
xmlsec-admin@aleksey.com=20
[mailto:xmlsec-admin@aleksey.com]<B>On Behalf Of </B>Aleksey=20
Sanin<BR><B>Sent:</B> den 26 september 2003 03:02<BR><B>To:</B> =
Johannes=20
Kjos<BR><B>Cc:</B> 'xmlsec@aleksey.com'<BR><B>Subject:</B> Re: SV: =
[xmlsec]=20
Using a content ID for URI<BR><BR></FONT></DIV>Well, probably the best =
option=20
for you would be option #2: use special URL protocol<BR>in URI =
attributes like=20
"cid:<attachment id>" and create custom protocol handlers<BR>for =
"cid".=20
Take a look at LibXML2 IO tutorial:<BR><BR> <A =
class=3Dmoz-txt-link-freetext=20
=
href=3D"http://xmlsoft.org/xmlio.html">http://xmlsoft.org/xmlio.html</A><=
BR><BR>and=20
xmlsec API reference:<BR><BR> <A=20
class=3Dmoz-txt-link-freetext=20
=
href=3D"http://www.aleksey.com/xmlsec/api/xmlsec-io.html">http://www.alek=
sey.com/xmlsec/api/xmlsec-io.html</A><BR><BR>And=20
do not forget to register your protocol handlers in both xmlsec and=20
libxml2.<BR><BR>Aleksey<BR><BR><BR>Johannes Kjos wrote:<BR>
<BLOCKQUOTE =
cite=3DmidDD392039E892594289474E1F7234FF190AB38254@hermes.sds.no=20
type=3D"cite"><PRE wrap=3D"">Ok, I will try to explain once more :)
My secapp is a toolkit to support XMLDsig signing MIME message, there =
are
two or more mime parts and the first part is SOAP (<header> and =
<body>), the
other mime parts are attachments. These attachments are signed and the
<Signature> is placed inside the SOAP <header>. My secapp =
only relates and
thereby returns the SOAP message to the calling application which deals =
with
the mime packing and so on. So, when signing an attachment, the calling
application has to give my secapp a cid and the filepath (it's all =
filebased
for a reason not to mention here) for the file to sign, insert the cid =
in
<SignedInfo> make a digest (and put it in <DigestValue>) of =
the file with
filepath, and then sign <SignedInfo>. The reason the cid is signed =
and not
the filepath is because my secapp don't deal with the attachment in the
mimemessage, the calling application does.=20
So when verifying the callig app will search through the attachments and
when it finds a cid it will give the filepath and the cid to my secapp =
(the
rest of the <References> in the <Signature> will be resolved =
by xmlsec in
normal manner). My secapp will make a list of these mappings and =
hopefully
in some way make the xmlsec to understand that the =
<SignatureValue> is a
signature over the current <SignedInfo> but the =
<DigestValue> of the
references with the cids is from the files with filepath given by the
mappings....I know this is working e.g. in the java lib IAIK...
I think this is a version of ebXML.
Best regards,
Johannes
-----Opprinnelig melding-----
Fra: Aleksey Sanin [<A class=3Dmoz-txt-link-freetext =
href=3D"mailto:aleksey@aleksey.com">mailto:aleksey@aleksey.com</A>]
Sendt: 25. september 2003 17:41
Til: Johannes Kjos
Kopi: '<A class=3Dmoz-txt-link-abbreviated =
href=3D"mailto:xmlsec@aleksey.com">xmlsec@aleksey.com</A>'
Emne: Re: [xmlsec] Using a content ID for URI
No, it's actually not quite clear but I would try to guess :)
1) You would like to use "#ID" or any other XPointer expression in=20
URI attributes.
Yes, it is possible. Please read section 3.2 from FAQ=20
<A class=3Dmoz-txt-link-freetext =
href=3D"http://www.aleksey.com/xmlsec/faq.html">http://www.aleksey.com/xm=
lsec/faq.html</A>
for the only known common issue about that.
=20
2) You need to use custom protocols like URI=3D<A =
class=3Dmoz-txt-link-rfc2396E href=3D"cid:something">"cid:something"</A>
Yes, it is possible. You would need to register custom protocol=20
handlers in both
LibXML2 and xmlsec. Search headers in both libraries for=20
"RegisterProtocol".
Protocol handlers in both libraries are exactly the same. LibXML2=20
handlers are used
for reading XML files (thus they can automatically do some smart=20
things like gzip/gunzip)
and xmlsec protocol handlers are used for reading binary files. Also =
there is a tutorial'
page on LibXML2 web site <A class=3Dmoz-txt-link-freetext =
href=3D"http://xmlsoft.org">http://xmlsoft.org</A> about writing IO =
callbacks.
Aleksey
Johannes Kjos wrote:
</PRE>
<BLOCKQUOTE type=3D"cite"><PRE wrap=3D"">Hello!
I'm using xmlsec 0.0.15! And using an upgrade makes a lot of work for me
because other project participants have made quit a lot of work in the
0.0.15 code.=20
My question is: Is it possible to make the xmlseclib to use a cid for =
URI
</PRE></BLOCKQUOTE><PRE wrap=3D""><!---->in
</PRE>
<BLOCKQUOTE type=3D"cite"><PRE wrap=3D"">SignedInfo References? =
E.g.I want the calling app to search through a some
blocks of a message, inside them there is cids to be resolved for the =
cids
in the references (the signature is in a header element). The calling =
app
should send e.g. filepath and URI to my secapp and I will make xmlsec to
</PRE></BLOCKQUOTE><PRE wrap=3D""><!---->use
</PRE>
<BLOCKQUOTE type=3D"cite"><PRE wrap=3D"">the file for digest but =
have the cid for that file in SignedInfo when
signing - and the other way when verifying.
Hope this is understandable...
Best regards,
Johannes
_______________________________________________
xmlsec mailing list
<A class=3Dmoz-txt-link-abbreviated =
href=3D"mailto:xmlsec@aleksey.com">xmlsec@aleksey.com</A>
<A class=3Dmoz-txt-link-freetext =
href=3D"http://www.aleksey.com/mailman/listinfo/xmlsec">http://www.alekse=
y.com/mailman/listinfo/xmlsec</A>
=20
</PRE></BLOCKQUOTE><PRE =
wrap=3D""><!---->_______________________________________________
xmlsec mailing list
<A class=3Dmoz-txt-link-abbreviated =
href=3D"mailto:xmlsec@aleksey.com">xmlsec@aleksey.com</A>
<A class=3Dmoz-txt-link-freetext =
href=3D"http://www.aleksey.com/mailman/listinfo/xmlsec">http://www.alekse=
y.com/mailman/listinfo/xmlsec</A>
</PRE></BLOCKQUOTE></BLOCKQUOTE></BODY></HTML>
------=_NextPart_000_001F_01C38416.2C1C3960--