[xmlsec] Some URI problems
Aleksey Sanin
aleksey at aleksey.com
Mon Aug 19 14:17:58 PDT 2013
Not sure where you've got these uris but these are the uris that
xmlsec supports (taken from specs):
https://git.gnome.org/browse/xmlsec/tree/src/strings.c
Aleksey
On 8/19/13 7:59 AM, Ulrich Wisser wrote:
> Hi,
>
> while testing a perl implementation of xml-dsig I found some problems
> with URI's.
>
> Could it be that xmlsec only supports sha1? I have been trying to verify
> rsa-sha512 and signatures and sha-256 digests. Maybe I have the wrong URI's?
>
> http://www.w3.org/2000/09/xmldsig#rsa-sha512
> http://www.w3.org/2000/09/xmldsig#sha256
>
> By testing the perl implementation against some live data from working
> federations I found more URI issues. Should Canonicalization be given as
> http://www.w3.org/TR/2001/REC-xml-c14n-20010315#
> or
> http://www.w3.org/TR/2001/REC-xml-c14n-20010315
>
> The only difference is the missing hash tag. Xmlsec allows only the one
> without hash tag. But libxml2 will only output with hashtag.
>
> For Transform xmlsec requires the hashtag
> http://www.w3.org/2001/10/xml-exc-c14n#
> But refuses the version without hashtag.
>
> Could some please enlighten me? Which URI's should I use and why?
> Which digest and signature algorithms does xmlsec support?
>
> Thanks
>
> /Ulrich
>
>
> _______________________________________________
> xmlsec mailing list
> xmlsec at aleksey.com
> http://www.aleksey.com/mailman/listinfo/xmlsec
>
More information about the xmlsec
mailing list