[xmlsec] Why won't this verify?

Aleksey Sanin aleksey at aleksey.com
Tue Nov 26 22:16:18 PST 2002

In XML ID attribute has a meaning only if there is a DTD or schema.
Using "#XXX" references w/o schema is meaningless. Actually, you do
not need to load full DTD, you may just specify the DTD for one
particular attribute (see section 3.2 of the FAQ 
for example).
If you are writing program in C you may "hack" and specify attributes
directly in the code w/o any DTD.


Rich Salz wrote:

>It looks like it's not finding the ID in the Reference/@URI.  Do I
>need to load a DTD (hope not...)
>This is a WS-Security signature using IBM's XSS4J.
>I just used the commandline "xmlsec verify {filename}".
>; xmlsec  verify xslbench3-xsl.verify-alice.ref
>xmlSecTransformStateParseUri (transforms.c:1166): error 24: invalid nodes set : empty
>xmlSecSignedInfoRead (xmldsig.c:1493): error 51: invalid reference :
>= Status:
>== Signatures ok: 0
>== Signatures fail: 1
>== SignedInfo Ref ok: 0
>== SignedInfo Ref fail: 1
>== Manifest Ref ok: 0
>== Manifest Ref fail: 0
>Error: operation failed
>        /r$

More information about the xmlsec mailing list