[xmlsec] Signing and verifying a XAdES template

[Alfredo Esteban]

Hello,

I was verifying whether xmlsec supports XAdES signature (Does it?). As
you probably know, XAdES is an European extension of XMLsign.

I'm able to sign the attached XAdES template without errors but
xmlsec1 is not able to verify its own resulting signature:

> xmlsec1 --version
xmlsec1 1.2.18 (openssl)

> xmlsec1 sign --pkcs12 ../../certificado-ceres-alfredo-esteban.p12 --output hola.xsig --pwd xxxxxxxxxxxxx ejemplo-xades-enveloped.xml

> xmlsec1 verify --trusted-der aet-cert.der ejemplo-xades-enveloped.xsig func=xmlSecOpenSSLEvpDigestVerify:file=digests.c:line=229:obj=sha1:subj=unknown:error=12:invalid data:data and digest do not match
FAIL
SignedInfo References (ok/all): 1/2
Manifests References (ok/all): 0/0
Error: failed to verify file "ejemplo-xades-enveloped.xsig"

Is it a bug? Any help is welcome.

Thanks,

Alfredo
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ejemplo-xades-enveloped.xml
Type: text/xml
Size: 3467 bytes
Desc: not available
URL: <http://www.aleksey.com/pipermail/xmlsec/attachments/20121103/1d65c986/attachment.xml>