[xmlsec] Question about signature RSA-SHA1
Aleksey Sanin
aleksey at aleksey.com
Tue Jun 12 08:56:54 PDT 2012
Neko,
You might want to read the details on the PCKCS1 format used
by XML Digital Signature spec here
http://www.w3.org/TR/xmldsig-core/#sec-SignatureAlg
Best,
Aleksey
On 6/11/12 10:37 PM, Neko wrote:
> Dear Aleksey
>
> I computed the signature value with OpenSSL, while the result doesn't
> match with xmlsec
> I checked the message actually signed when xmlsec perform signature with
> --store-signatures, it's no problem.
>
> What I did with OpenSSL
> RSA_sign(NID_sha1, digest of signinfo node, length of the digest,
> signature value buff, length of signature, rsa key);
> (and it can be verified with RSA_verify() too)
>
> And I tried to trace the source code of xmlsec, I didn't find any
> RSA_sign() used, but I found a lot of RSA_public_encrypt() instead.
> I'm wondering if there's something I missed?
>
> Thank you
>
>
> _______________________________________________
> xmlsec mailing list
> xmlsec at aleksey.com
> http://www.aleksey.com/mailman/listinfo/xmlsec
>
More information about the xmlsec
mailing list