[xmlsec] FW: Fixes to mscrypto for non-MS CSPs

Aleksey Sanin aleksey at aleksey.com
Wed Jun 6 09:54:01 PDT 2007


Thanks a lot! I'll take a look at the patch tonight!

Aleksey

Wouter wrote:
> Ok :) This patch has been extended a little bit after that first post, I 
> just saw the files Ed sent. Ed has tested this patch thoroughly, and I 
> also have done some tests with these changes.
> 
> The changes will make mscrypto behave better with non micorsoft CSP's 
> (Crypto Service Provider). For example also smartcards and in this 
> particular case Entrust provider will now function better related to 
> finding and using keys that are accessible via the MS certificate store.
> 
> I've created a patch from the current svn tree of xmlsec with the same 
> changes (see attachment). However the patch is created on win32 
> platform, and I hope you can apply it. If not, let me know, and I'll try 
> to create one without the windows endofline chars. (I don't know how to 
> create such a diff on a windows platform with svn, any ideas?).
> 
> Wouter
> 
> Aleksey Sanin wrote:
>> Aha! I remember that one! You've asked Ed to try it
>> and I was waiting for a confirmation that it works :)
>>
>> Aleksey
>>
>> Wouter wrote:
>>> Is it the same patch as being posted in this mail?
>>> http://www.aleksey.com/pipermail/xmlsec/2006/003560.html 
>>> <http://www.aleksey.com/pipermail/xmlsec/2006/003560.html>
>>>
>>> Then there you can find a patch as well.
>>>
>>> Wouter
>>>
>>>
>>> Aleksey Sanin wrote:
>>>> To be honest, this is the first time I see it.... I might have
>>>> missed it somehow, sorry. Is there any way you can create a diff?
>>>> It is much easier to apply...
>>>>
>>>> Thanks!
>>>> Aleksey
>>>>
>>>>
>>>>
>>>>
>>>> Ed Shallow wrote:
>>>>> Hi Aleksey,
>>>>>
>>>>>     Any developments here ?
>>>>>
>>>>> Cheers,
>>>>> Ed
>>>>>
>>>>> -----Original Message-----
>>>>> From: Ed Shallow [mailto:ed.shallow.pwgsc at rogers.com] Sent: Friday, 
>>>>> March 09, 2007 6:41 AM
>>>>> To: 'xmlsec at aleksey.com'
>>>>> Subject: Fixes to mscrypto for non-MS CSPs
>>>>>
>>>>>       Hi Aleksey,
>>>>>
>>>>>    Please find attached changes to selected mscrypto routines to 
>>>>> correct
>>>>> problems found with non-Microsoft Cryptographic Service Providers 
>>>>> (CSPs).
>>>>> Most notably these patches fix handling of Entrust's CSP aka 
>>>>> Entrust Service
>>>>> Provider for Windows 7.x. These patches were written by Wouter and 
>>>>> tested by
>>>>> both Wouter and I last November and December. They were made to the 
>>>>> 1.2.10
>>>>> source baseline. They also introduce fallback search by "Friendly 
>>>>> Name" if
>>>>> cn and full dn searches fail.
>>>>>
>>>>>    I did not create diffs but rather included them exactly as I 
>>>>> received
>>>>> them from Wouter last November. These changes were applied and 
>>>>> compiled to
>>>>> the 1.2.10 distribution and not from the daily snapshot.
>>>>>
>>>>>    Can you apply and test ?
>>>>>
>>>>>    Wouter can answer any specific question you may have.
>>>>>
>>>>> Cheers,
>>>>> Ed
>>>>> ------------------------------------------------------------------------ 
>>>>>
>>>>>
>>>>> _______________________________________________
>>>>> xmlsec mailing list
>>>>> xmlsec at aleksey.com
>>>>> http://www.aleksey.com/mailman/listinfo/xmlsec
>>>>
>>>
>>
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> xmlsec mailing list
> xmlsec at aleksey.com
> http://www.aleksey.com/mailman/listinfo/xmlsec


More information about the xmlsec mailing list