[xmlsec] Verify on Microsoft-produced sig
Aleksey Sanin
aleksey@aleksey.com
Fri, 29 Aug 2003 10:20:41 -0700
It does not look like it's a problem with undefined ID attributes. If
you run
xmlsec command line utility with "--store-references" flag you'll see that
we could not verify the first reference. It's has an xslt transform and with
"--store-references" flag you can see the result of processing this
transform:
<my:myFields
xmlns:my="http://schemas.microsoft.com/office/infopath/2003/myXSD/2003-04-12T15:07:25"
xml:lang="en-us">
<my:OrderNumber>1234</my:OrderNumber>
<my:txtName>Edward Shallow</my:txtName>
<my:intCustomerNumber
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">12345678</my:intCustomerNumber>
<my:signatures1></my:signatures1>
</my:myFields>
This is the data that goes into digest and after that digests do not match.
I would suspect that there is an interop problem between MS xslt engine
and libxslt.
It would be helpfull if you can apply the same xslt template to the same
data
using MS engine and compare results.
Aleksey