XMLSec 1.3.11 (rc1)

[lsh123]

Please test the release candidate 1.3.11-rc1 (signature) and let me know if you see any issues:

• (xmlsec-openssl) Added support for OpenSSL 4.0.0.
• (xmlsec-windows) The XMLSec build configuration script on Windows is converted to PowerShell, the JScript version is deprecated and will be remove in the future versions.
• (xmlsec-docs) The XMLSec API reference was converted to Doxygen / Pandoc (instead of Gtk-Doc).
• (xmlsec-docs) The XMLSec API reference, tutorial, and examples had been updated to Markdown files and moved to
  GitHub Wiki.
• Several other small fixes (see more details).

---

This discussion was created from the release XMLSec 1.3.11 (rc1).

[vmiklos]

Hmm, updating to this version in odfsig with this patch:

diff --git a/extern/xmlsec/CMakeLists.txt b/extern/xmlsec/CMakeLists.txt
index d7b00ae..d7108ae 100644
--- a/extern/xmlsec/CMakeLists.txt
+++ b/extern/xmlsec/CMakeLists.txt
@@ -2,8 +2,8 @@
 #
 # SPDX-License-Identifier: MIT
 
-set(XMLSEC_VERSION 1.3.10)
-set(XMLSEC_SHA256SUM 5915590780566dae4b5d13d51a42fc0e34b30b26fda6f2c5f744ec31b363ee1a)
+set(XMLSEC_VERSION 1.3.11-rc1)
+set(XMLSEC_SHA256SUM ae260237b5a32006aad80a8a6defcd0fac137038e22ccdd4679e340a216d1143)
 
 if (NOT ODFSIG_INTERNAL_XMLSEC)
     find_package(PkgConfig REQUIRED)

Results in this failure at least on Linux:

  CCLD     xmlsec1
/usr/lib64/gcc/x86_64-suse-linux/15/../../../../x86_64-suse-linux/bin/ld: /home/vmiklos/git/odfsig/workdir/extern/xmlsec/extern-xmlsec-project-prefix/src/extern-xmlsec-project/src/.libs/libxmlsec1.a(xpath.o): in function `xmlSecXPathHereFunction':
/home/vmiklos/git/odfsig/workdir/extern/xmlsec/extern-xmlsec-project-prefix/src/extern-xmlsec-project/src/xpath.c:46:(.text+0x546): undefined reference to `xmlXPathValuePush'
/usr/lib64/gcc/x86_64-suse-linux/15/../../../../x86_64-suse-linux/bin/ld: /home/vmiklos/git/odfsig/workdir/extern/xmlsec/extern-xmlsec-project-prefix/src/extern-xmlsec-project/src/.libs/libxmlsec1.a(parser.o): in function `xmlSecParserPopXml':
/home/vmiklos/git/odfsig/workdir/extern/xmlsec/extern-xmlsec-project-prefix/src/extern-xmlsec-project/src/parser.c:281:(.text+0x4cc): undefined reference to `xmlCtxtPushInput'
collect2: error: ld returned 1 exit status
make[6]: *** [Makefile:676: xmlsec_unit_tests] Error 1
make[6]: *** Waiting for unfinished jobs....
/usr/lib64/gcc/x86_64-suse-linux/15/../../../../x86_64-suse-linux/bin/ld: /home/vmiklos/git/odfsig/workdir/extern/xmlsec/extern-xmlsec-project-prefix/src/extern-xmlsec-project/src/.libs/libxmlsec1.a(parser.o): in function `xmlSecParserPopXml':
/home/vmiklos/git/odfsig/workdir/extern/xmlsec/extern-xmlsec-project-prefix/src/extern-xmlsec-project/src/parser.c:281:(.text+0x4cc): undefined reference to `xmlCtxtPushInput'
/usr/lib64/gcc/x86_64-suse-linux/15/../../../../x86_64-suse-linux/bin/ld: /home/vmiklos/git/odfsig/workdir/extern/xmlsec/extern-xmlsec-project-prefix/src/extern-xmlsec-project/src/.libs/libxmlsec1.a(xpath.o): in function `xmlSecXPathHereFunction':
/home/vmiklos/git/odfsig/workdir/extern/xmlsec/extern-xmlsec-project-prefix/src/extern-xmlsec-project/src/xpath.c:46:(.text+0x546): undefined reference to `xmlXPathValuePush'
collect2: error: ld returned 1 exit status
make[6]: *** [Makefile:653: xmlsec1] Error 1
make[5]: *** [Makefile:778: all-recursive] Error 1
make[4]: *** [Makefile:596: all] Error 2
make[3]: *** [extern/xmlsec/CMakeFiles/extern-xmlsec-project.dir/build.make:86: extern/xmlsec/extern-xmlsec-project-prefix/src/extern-xmlsec-project-stamp/extern-xmlsec-project-build] Error 2
make[2]: *** [CMakeFiles/Makefile2:620: extern/xmlsec/CMakeFiles/extern-xmlsec-project.dir/all] Error 2
make[1]: *** [CMakeFiles/Makefile2:798: tests/CMakeFiles/check.dir/rule] Error 2
make: *** [Makefile:358: check] Error 2

I wonder what goes wrong there, given that 1.3.10 was fine. Note that I build against libxml2 2.14.6 (is that now too old?), also I use these options:

https://github.com/vmiklos/odfsig/blob/c76762eb86b842fdfa2f8fa5a7515dd76e33e98b/extern/xmlsec/CMakeLists.txt#L54-L63

Maybe somehow the --without-libxslt case broke?

I can try to investigate some more, but if the above rings a bell for you, I would be interested to hear about that. Thanks.

[lsh123]

Looks like you are building against 2.15+ headers but then linking against 2.14 libraries for LibXML2. This is the offending line:

xmlsec/src/parser.c

Line 32 in eb28991

#define xmlCtxtPushInput inputPush

and it's 6+ months old

[lsh123]

Can you add this above #if statement manually and check what LIBXML_VERSION you actually have there?

#define XSTR(x) #x
#define STR(x) XSTR(x)
#pragma message "LIBXML_VERSION: "  STR(LIBXML_VERSION)

[vmiklos]

Thanks, it was indeed a libxml2 mismatch that was always broken, but somehow it didn't surface in practice. I had an include path to my bundled libxml2 (2.14.6) and by accident I linked to system libxml2 (2.13.8). So nothing in xmlsec at the end, sorry for the noise. :-)

[lsh123]

Glad you figured it out! LibXML2 API/ ABI was very stable until recently so no surprises you didn't run into it until now.