Hi,
In my XML-signed document I have used:
createReference(MAKE_UNICODE_STRING("#SignedProperties"),
HASH_SHA1, "http://uri.etsi.org/01903/v1.1.1#SignedProperties";)
When I verify signature over this document it fails :(.
When I've looked into details I saw, that there is a big difference
between data that I sign, and data that I verify. I mean, when I sign
document WinCAPICryptoHash::hash function is called with whole node in
which, there is a subnode: <ds:Reference Type=
"http://uri.etsi.org/01903/v1.1.1#SignedProperties";>.
And it is WRONG!!! Because, it should be: <ds:Reference Type=
"http://uri.etsi.org/01903/v1.1.1#SignedProperties";
URI="#SignedProperties">.
And here is a question: why, during signing, there is only type
attribute in reference node? What am I doing wrong? Or is it a bug in
xsec?
andrzeJ Matejko
