[xmlsec] Canonicalization and sha1 of a document part with xmlsec1

Aleksey Sanin aleksey at aleksey.com
Sat Nov 12 09:58:21 PST 2011

Well, sorry, I am not sure what exactly you are trying to do. But you 
have the spec and the source code so I am sure you can figure it out.



On 11/12/11 5:40 AM, Si St wrote:
> Thank You Aleksey.
> I finally understood by changing your sha'd to sha1'ed.
> I can clearly see what is sha1'ed of the input-file. Between</Document>
> and</MsgHead>  where<Signature/>  belongs, there are 2 spaces, 0x20.
> That is the only difference between the result from xmlsec1
> canonalization and the 'xmllint --c14n' canonalization. But still,
> trying to run the
> openssl dsgt -sha1 -binary | openssl enc -base64
> on the exactly hex-controlled copy of the --store-references dumped
> PreDigest buffer part does not give the same DigestValue, and I so far
> do not understand why.

More information about the xmlsec mailing list