[xmlsec] Problem with ver 0.0.11

kltsai kltsai at ecomuniversal.com.tw
Wed Dec 4 17:57:54 PST 2002

Hi Aleksey Sanin:

	I downloaded v0.0.11 binary code from Mr. Igor's site so that I could avoid
miscompilation. I try to sign with the template with ver0.0.11, it works(sign and 
verify ok):

<?xml version="1.0" encoding="UTF-8"?>
<Envelope xmlns="urn:envelope">
    Hello, World!
  <Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
      <CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" />
      <SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1" />
      <Reference URI="">
          <Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
        <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />


However, when I modify the transform method to be:
<Transform Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" />
Ver0.0.11 fails to verify while the old version, v0.0.7 still works. Is this method
not allowed in Enveloped Signature? 


More information about the xmlsec mailing list