Yeap... The last update is dated Feb/07! I'm will read carefully the 0.9.7 release notes to check if it supports the algorithms I need... The Digital Signature I'll be validating has the following requirements:
<CanonicalizationMethod Algorithm=" http://www.w3.org/TR/2001/REC-xml-c14n-20010315"; xmlns:ns5="http://www.w3.org/2000/09/xmldsig#"/> <SignatureMethod Algorithm=" http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"; xmlns:ns5="http://www.w3.org/2000/09/xmldsig#"/> <Reference URI="" xmlns:ns5="http://www.w3.org/2000/09/xmldsig#";> <Transforms> <Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature "/> </Transforms> <DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> They doesn't seem to be newer than the 0.9.7... I'll recompile everything again with 0.9.7 and re-test to make sure is not something mistake introduced by me! I mean: as soon as the connectivity with my dev environment is re-stablished! Thanks a lot for your help! /Helio On Tue, Sep 13, 2011 at 8:08 PM, Cantor, Scott <[email protected]> wrote: > On 9/13/11 5:54 PM, "Helio Cola Rodrigues" <[email protected]> wrote: > > > >Actually I tried to compile xmlsecurity with OPENSSL 0.9.7 and 1.0.0. > >The xmlsecurity compiles successfully with both version but when I > >compile and run the simpleValidate.cpp (xsec/samples/simpleValidate.cpp) > >the verification of my digital signature fails, but the same code works > >with OPENSSL 1.0.0. > > > >Is there any requirement on xmlsecurity 1.6.1 to use OPENSSL 1.0.0? > > Individual algorithms are supported, or not, based on the capabilities of > the OpenSSL version. That's the primary difference. > > 0.9.7 is ancient. It doesn't even support SHA-2. > > -- Scott > >
