[xmlsec] Internally Detached Signature verification

Aleksey Sanin aleksey at aleksey.com
Wed Sep 3 16:16:44 PDT 2014


Please take a look at section 3.2 from the FAQ.

Aleksey

On 9/3/14, 2:30 PM, miguel galvez cendegui wrote:
> I am trying to verify a internally detached signature with the online
> xmldsig-verifier from the official website. In this case the signed data
> is signature's sibling (data and signature inside an envelope element),
> and is referenced with data's id (ID="someid") as uri attribute from
> signature's reference (URI="#someid").
> 
> I get the next log from the online verifier:
> 
> "func=xmlSecXPathDataExecute:file=xpath.c:line=273:obj=unknown:subj=xmlXPtrEval:error=5:libxml2
> library function failed:expr=xpointer(id('A1001'))
> func=xmlSecXPathDataListExecute:file=xpath.c:line=356:obj=unknown:subj=xmlSecXPathDataExecute:error=1:xmlsec
> library function failed:
> func=xmlSecTransformXPathExecute:file=xpath.c:line=466:obj=xpointer:subj=xmlSecXPathDataExecute:error=1:xmlsec
> library function failed:
> func=xmlSecTransformDefaultPushXml:file=transforms.c:line=2405:obj=xpointer:subj=xmlSecTransformExecute:error=1:xmlsec
> library function failed:
> func=xmlSecTransformCtxXmlExecute:file=transforms.c:line=1236:obj=unknown:subj=xmlSecTransformPushXml:error=1:xmlsec
> library function failed:transform=xpointer
> func=xmlSecTransformCtxExecute:file=transforms.c:line=1296:obj=unknown:subj=xmlSecTransformCtxXmlExecute:error=1:xmlsec
> library function failed:
> func=xmlSecDSigReferenceCtxProcessNode:file=xmldsig.c:line=1571:obj=unknown:subj=xmlSecTransformCtxExecute:error=1:xmlsec
> library function failed:
> func=xmlSecDSigCtxProcessSignedInfoNode:file=xmldsig.c:line=804:obj=unknown:subj=xmlSecDSigReferenceCtxProcessNode:error=1:xmlsec
> library function failed:node=Reference
> func=xmlSecDSigCtxProcessSignatureNode:file=xmldsig.c:line=547:obj=unknown:subj=xmlSecDSigCtxProcessSignedInfoNode:error=1:xmlsec
> library function failed:
> func=xmlSecDSigCtxVerify:file=xmldsig.c:line=366:obj=unknown:subj=xmlSecDSigCtxSigantureProcessNode:error=1:xmlsec
> library function failed: Error: signature verification failed"
> 
> Here is an outline of what I am producing:
> 
> -xml version encoding
> -envelope
>     -data ID="A1001"
>     -Signature
>         -SignedInfo
>             -CanonicalizationMethod
>             -SignatureMethod
>             -Reference URI ="#A1001"
>         -SignatureValue
>         -KeyInfo
> 
> Primarily I need to know if the online verifying tool is accepts this
> kind of signature.
> 
> Regards
> 
> -- 
> Miguel Gálvez A.K.A. Milo
> 
> 
> _______________________________________________
> xmlsec mailing list
> xmlsec at aleksey.com
> http://www.aleksey.com/mailman/listinfo/xmlsec
> 


More information about the xmlsec mailing list