[xmlsec] Signing a document with key and cert..

[Aleksey Sanin]

>
> No, no warning when I sign it with:
>
> xmlsec sign --privkey privkey.pem,privkey-cert.pem org.xml. But I will 
> see if I can dig out a correct DTD for the document.


You might just add ID attributes declaration. You do not need full DTD.
And probably I will change warning to an error.


> If I print the document after adding the signature nodes, but before 
> signing, the 509Data section is still not there.

...

> If it does not add the node, I guess it should at least return an error. 

Hm... This function is too simple to fail but I'll check it.

> I will file it now. It is not urgent, as I can get by with unprotected 
> keys for now (and I have enough to do with getting the document signed 
> and validated for now). 

Thanks, I'll check this too as soon as I finish my big code refactoring :)


Aleksey