[xmlsec] Encrypting more than 128 bytes with XMLSec

Damjan Rems d_rems at yahoo.com
Mon Nov 13 00:43:52 PST 2006


When I try to encrypt XML file I get this message:
---------------------- 
func=xmlSecOpenSSLRsaPkcs1Process:file=..\src\openssl\kt_rsa.c:line=282:obj=rsa-
1_5:subj=unknown:error=11:invalid size:587 when
expected less than 128
func=xmlSecOpenSSLRsaPkcs1Execute:file=..\src\openssl\kt_rsa.c:line=228:obj=rsa-
1_5:subj=xmlSecOpenSSLRsaPkcs1Process:error=1:xmlsec
library function failed:
func=xmlSecTransformDefaultPushBin:file=..\src\transforms.c:line=2173:obj=rsa-1_
5:subj=xmlSecTransformExecute:error=1:xmlsec library
function failed:final=1
func=xmlSecTransformIOBufferClose:file=..\src\transforms.c:line=2856:obj=rsa-1_5
:subj=xmlSecTransformPushBin:error=1:xmlsec library
function failed:
func=xmlSecEncCtxXmlEncrypt:file=..\src\xmlenc.c:line=430:obj=unknown:subj=xmlOu
tputBufferClose:error=5:libxml2 library function
failed:
Error: failed to encrypt xml file "signed.xml"
Error: failed to encrypt file with template
"temp_encrypt.xml"
----------------------------

Command I am using:
xmlsec encrypt --xml-data signed.xml --node-name data
--pkcs12 my.pfx --pwd mypwd --output kriptirano.xml
temp_encrypt.xml
----------------------------

signed.xml:
<?xml version="1.0" encoding="UTF-8"?>
<Message>
	<Body>
	<Data><el1>Podatki porocila</el1>

<el2>fffffffffffffffffffffffffffffffffffffffffffffffffffffffffff</el2>

<el3>kkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkk</el3>

<el4>uiuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuu</el4>

<el5>eeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee</el5>

<el6>iiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiii</el6>

<el7>oooooooooooooooooooooooooooooooooooooooooooooooooooo</el7>

<el8>bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb</el8>

<el9>pppppppppppppppppppppppppppppppppppppppppppppppppppppppp</el9>
	</Data>

	<Signature
xmlns="http://www.w3.org/2000/09/xmldsig#">
		<SignedInfo> <CanonicalizationMethod
Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315"/>
			<SignatureMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
				<Reference URI="">
					<Transforms>
						<Transform
Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
					</Transforms>
					<DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
				
<DigestValue>i7sEQYdSi6+F5IF3RlBp4gwrVYA=</DigestValue>
				</Reference>
		</SignedInfo>
	
<SignatureValue>1AvooAu1+I4Wf5ChFN5sum8Ubn0/nPo2U3bCRfJblyjMPvDTOTlVJEyV8VJgkq6C
Qh7ZoyibWk4yi51FFpJoR5FJQKcUaTPe2qRBGnjRdpP2QfPONoJ2D4P38lJtYF87
iGcCdQXx8LQdcsnFPzHK9AA6fhNJNhRzkuCMtB3xqTU=</SignatureValue>
		<KeyInfo>
			<X509Data>
		
<X509Certificate>MIIEGTCCAwGgAwIBAgIEOzz5yTANBgkqhkiG9w0BAQUFADA9MQswCQYDVQQGEwJz

etc ...............

--------------------------------------

temp_encrypt.xml

<?xml version="1.0" encoding="UTF-8"?>
<!--
XML Security Library example: XML doc file encrypted
with recipient's public key using xmlenc#rsa-1_5
-->
<EncryptedData
xmlns="http://www.w3.org/2001/04/xmlenc#"
Type="http://www.w3.org/2001/04/xmlenc#Element">
	<EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/>
	<KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
		<KeyName>my.pfx</KeyName>
	</KeyInfo>
	<CipherData>
		<CipherValue></CipherValue>
	</CipherData>
</EncryptedData>
------------------------------------

Please help.

TheR




 
____________________________________________________________________________________
Do you Yahoo!?
Everyone is raving about the all-new Yahoo! Mail beta.
http://new.mail.yahoo.com


More information about the xmlsec mailing list