Hi Aleksey,<br><br>I am verifying the signature file with following format from W3C spec <br><?xml version="1.0" encoding="UTF-8"?><br><br><Signature xmlns=“<a href="http://www.w3.org/2000/09/xmldsig#" target="_blank">http://www.w3.org/2000/09/xmldsig#</a>” Id="DistributorASignature" ><br>
<SignedInfo><br> <CanonicalizationMethod Algorithm="<a href="http://www.w3.org/2001/10/xml-exc-c14n#" target="_blank">http://www.w3.org/2001/10/xml-exc-c14n#</a>"/><br> <SignatureMethod Algorithm="<a href="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256" target="_blank">http://www.w3.org/2001/04/xmldsig-more#rsa-sha256</a>"/><br>
<Reference URI="config.xml"><br> <DigestMethod Algorithm="<a href="http://www.w3.org/2001/04/xmlenc#sha256" target="_blank">http://www.w3.org/2001/04/xmlenc#sha256</a>"/><br> <DigestValue>...</DigestValue><br>
</Reference><br> <Reference URI="index.html"><br> <DigestMethod Algorithm="<a href="http://www.w3.org/2001/04/xmlenc#sha256" target="_blank">http://www.w3.org/2001/04/xmlenc#sha256</a>"/><br>
<DigestValue>.... </DigestValue><br> </Reference><br> <span style="color: rgb(255, 0, 0);"><Reference URI="#prop "></span><br style="color: rgb(255, 0, 0);"><span style="color: rgb(255, 0, 0);"> <DigestMethod Algorithm="<a href="http://www.w3.org/2001/04/xmlenc#sha256" target="_blank">http://www.w3.org/2001/04/xmlenc#sha256</a>"/></span><br style="color: rgb(255, 0, 0);">
<span style="color: rgb(255, 0, 0);"> <DigestValue>.... </DigestValue></span><br style="color: rgb(255, 0, 0);"><span style="color: rgb(255, 0, 0);"> </Reference></span><br></SignedInfo><br>
<SignatureValue>... </SignatureValue><br> <KeyInfo><X509Data><br> <X509Certificate>MI...</X509Certificate><br> <X509Certificate>MI...</X509Certificate><br> </X509Data></KeyInfo><br>
<span style="color: rgb(255, 0, 0);"> <Object Id="prop"></span><br style="color: rgb(255, 0, 0);"><span style="color: rgb(255, 0, 0);"> <SignatureProperties xmlns:dsp="<a href="http://www.w3.org/2009/xmldsig-properties" target="_blank">http://www.w3.org/2009/xmldsig-properties</a>"></span><br style="color: rgb(255, 0, 0);">
<span style="color: rgb(255, 0, 0);"> <SignatureProperty Id="profile" Target="#DistributorASignature"></span><br style="color: rgb(255, 0, 0);"><span style="color: rgb(255, 0, 0);"> <dsp:Profile URI="<a href="http://www.w3.org/ns/widgets-digsig#profile" target="_blank">http://www.w3.org/ns/widgets-digsig#profile</a>" /> </SignatureProperty></span><br style="color: rgb(255, 0, 0);">
<span style="color: rgb(255, 0, 0);"> <SignatureProperty Id="role" Target="#DistributorASignature"></span><br style="color: rgb(255, 0, 0);"><span style="color: rgb(255, 0, 0);"> <dsp:Role URI="<a href="http://www.w3.org/ns/widgets-digsig#role-distributor" target="_blank">http://www.w3.org/ns/widgets-digsig#role-distributor</a>" /> </SignatureProperty></span><br style="color: rgb(255, 0, 0);">
<span style="color: rgb(255, 0, 0);"> <SignatureProperty Id="identifier" Target="#DistributorASignature"></span><br style="color: rgb(255, 0, 0);"><span style="color: rgb(255, 0, 0);"> <dsp:Identifier>J............</dsp:Identifier> </SignatureProperty></span><br style="color: rgb(255, 0, 0);">
<span style="color: rgb(255, 0, 0);"> </SignatureProperties></span><br> </Object><br></Signature><br><br>I am getting the signature verification failure<br>Error is : func=xmlSecOpenSSLEvpSignatureVerify:file=signatures.c:line=346:obj=rsa-sha256:subj=EVP_VerifyFinal:error=18:data do not match:signature do not match<br>
<br>I am concluding that the problem is because of #prop is due to the fact that i am not getting any error with other signature files which don,t have #prop.<br><br>So my question is does xmlsec supports <Reference URI="#prop "> ? If yes then to which version i have to update?<br>
If not please point me to where i have to make changes to support this.<br><br><br>
Thanks and Regards<br>Gaurav<br><br><br><br><br>