[xmlsec] error on signature verification
path at bshellz.net
path at bshellz.net
Tue Apr 27 15:15:43 PDT 2010
Aleksey,
I'm trying to validate the attached document, so I'm using
two command lines to verify both signatures:
xmlsec1 --verify --print-debug \
--print-crypto-error-msgs \
--id-attr:ID 'http://www.sii.cl/SiiDte:Documento' \
--node-name 'http://www.sii.cl/SiiDte:Documento' \
--node-id 'F185T33' \
documento-20100427.1.xml 2>&1
xmlsec1 --verify --print-debug \
--print-crypto-error-msgs \
--id-attr:ID 'http://www.sii.cl/SiiDte:SetDTE' \
--node-name 'http://www.sii.cl/SiiDte:SetDTE' \
--node-id 'DTE1272374641984' \
documento-20100427.1.xml 2>&1
With first one, the signature is validated and it's ok, but the second one seems to try to verify the
first '#F185T33' instead of the second one '#DTE1272374641984', and I get this error message:
Error: signature failed
ERROR
SignedInfo References (ok/all): 0/1
Manifests References (ok/all): 0/0
Error: failed to verify file "documento-20100427.1.xml"
= VERIFICATION CONTEXT
== Status: unknown
And the trace seems to be looking at the first URI:
func=xmlSecXPathDataExecute:file=xpath.c:line=273:obj=unknown:subj=xmlXPtrEval:error=5:libxml2
library function failed:expr=xpointer(id('F185T33'))
func=xmlSecXPathDataListExecute:file=xpath.c:line=356:obj=unknown:subj=xmlSecXPathDataExecute:error=1:xmlsec
library function failed:
Thanks in advance,
-------------- next part --------------
A non-text attachment was scrubbed...
Name: documento-20100427.1.xml
Type: application/xml
Size: 8442 bytes
Desc: not available
URL: <http://www.aleksey.com/pipermail/xmlsec/attachments/20100428/c7f2cb11/attachment.xml>
More information about the xmlsec
mailing list