[xmlsec] Verify on Microsoft-produced sig

[Edward Shallow]

This is a multi-part message in MIME format.

------=_NextPart_000_0044_01C36E2D.D081B150
Content-Type: text/plain;
	charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

Hi Aleksey,

    The attached file is a signature produced by Microsoft's InfoPath =
(XML
forms Manager from Office 2003). It's an enveloped signature with an =
extra
reference to a comment element. XMLSec verify reports data and digest
problem (as below). InfoPath uses the latest .Net Framework librairies =
which
is used across all Microsoft XMLDSIG implementations.

    Is this the same problem as referenced in your FAQ section 3.2 ? Or =
is
this something else ?

Ed


C:\XMLSec>xmlsec verify --store-signatures --print-debug
inout/SimpleForm-2003-08-13.xml
func=3DxmlSecOpenSSLEvpDigestVerify:file=3D..\src\openssl\digests.c:line=3D=
164:obj
=3Dsha1:subj=3Dunknown:error=3D12:invalid data:data and digest do not =
match
FAIL

P.S.  For all the XMLSec followers waiting for a MS CAPI implementation, =
we
have a work-around for our desktop signer which essentially exports the =
key
from the MS Crypto Store using CAPICOM. There XMLSEC can get at it as a
P12/PFX on the file system. There is a password prompt, but we enforce
password protection of the MS Crypto Store anyway. The only =
pre-requisite is
that the key/cert must be marked as exportable when initially loaded =
into
the MS Crypto Store. It has been getting us by while we wait. Our XMLSec =
is
running OpenSSL on the desktop. =20

------=_NextPart_000_0044_01C36E2D.D081B150
Content-Type: application/x-zip-compressed;
	name="SimpleForm-2003-08-13.zip"
Content-Transfer-Encoding: base64
Content-Disposition: attachment;
	filename="SimpleForm-2003-08-13.zip"
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------=_NextPart_000_0044_01C36E2D.D081B150--