Hi Aleksey Sanin:

        I downloaded v0.0.11 binary code from Mr. Igor's site so that I could avoid
miscompilation. I try to sign with the template with ver0.0.11, it works(sign and 
verify ok):

<?xml version="1.0" encoding="UTF-8"?>
<Envelope xmlns="urn:envelope">
  <Data>
    Hello, World!
  </Data>
  <Signature xmlns="http://www.w3.org/2000/09/xmldsig#";>
    <SignedInfo>
      <CanonicalizationMethod 
Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315"; />
      <SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"; />
      <Reference URI="">
        <Transforms>
          <Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"; 
/>
        </Transforms>
        <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"; />
        <DigestValue></DigestValue>
      </Reference>
    </SignedInfo>
    <SignatureValue/>
    <KeyInfo>
    <KeyValue/>
    </KeyInfo>
  </Signature>

</Envelope>


However, when I modify the transform method to be:
<Transform Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315"; />
Ver0.0.11 fails to verify while the old version, v0.0.7 still works. Is this method
not allowed in Enveloped Signature? 

                                                                kltsai
-- 


_______________________________________________
xmlsec mailing list
[EMAIL PROTECTED]
http://www.aleksey.com/mailman/listinfo/xmlsec

Reply via email to