[xmlsec] Problem with ver 0.0.11
kltsai
kltsai at ecomuniversal.com.tw
Wed Dec 4 17:57:54 PST 2002
Hi Aleksey Sanin:
I downloaded v0.0.11 binary code from Mr. Igor's site so that I could avoid
miscompilation. I try to sign with the template with ver0.0.11, it works(sign and
verify ok):
<?xml version="1.0" encoding="UTF-8"?>
<Envelope xmlns="urn:envelope">
<Data>
Hello, World!
</Data>
<Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
<SignedInfo>
<CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" />
<SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1" />
<Reference URI="">
<Transforms>
<Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<DigestValue></DigestValue>
</Reference>
</SignedInfo>
<SignatureValue/>
<KeyInfo>
<KeyValue/>
</KeyInfo>
</Signature>
</Envelope>
However, when I modify the transform method to be:
<Transform Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" />
Ver0.0.11 fails to verify while the old version, v0.0.7 still works. Is this method
not allowed in Enveloped Signature?
kltsai
--
More information about the xmlsec
mailing list