[xmlsec] Question about signature RSA-SHA1

Aleksey Sanin aleksey at aleksey.com
Tue Jun 12 08:56:54 PDT 2012


You might want to read the details on the PCKCS1 format used
by XML Digital Signature spec here




On 6/11/12 10:37 PM, Neko wrote:
> Dear Aleksey
> I computed the signature value with OpenSSL, while the result doesn't
> match with xmlsec
> I checked the message actually signed when xmlsec perform signature with
> --store-signatures, it's no problem.
> What I did with OpenSSL
> RSA_sign(NID_sha1, digest of signinfo node, length of the digest,
> signature value buff, length of signature, rsa key);
> (and it can be verified with RSA_verify() too)
> And I tried to trace the source code of xmlsec, I didn't find any
> RSA_sign() used, but I found a lot of RSA_public_encrypt() instead.
> I'm wondering if there's something I missed?
> Thank you
> _______________________________________________
> xmlsec mailing list
> xmlsec at aleksey.com
> http://www.aleksey.com/mailman/listinfo/xmlsec

More information about the xmlsec mailing list