The c14n is applied "on the fly" before the signature is calculated. The
original document doesn't change.
Best,
Aleksey
On 10/19/20 5:50 AM, Roshan Kumar wrote:
Hi,
I am working on a project in c++ which requires signing and verification
of xml documents. For which I am using XMLSEC library along with LIBXML2
with openssl as the crypto engine.
I signed one example xml document by applying canonicalization 1.1 with
sha256 and with transformation algorithms.
But the final result contains XML headers i.e "<?xml version="1.0"
encoding="UTF-8"?>"
But as per canonicalization algorithm this must not exist.
I am attaching the input file , the program and the output file with
this mail. So that you can reproduce the problem.
I compiled the program with the following command :
"gcc -g -D__XMLSEC_FUNCTION__=__func__ -DXMLSEC_NO_SIZE_T
-DXMLSEC_NO_GOST=1 -DXMLSEC_NO_GOST2012=1 -DXMLSEC_DL_LIBLTDL=1
-I/usr/local/include/xmlsec1 -I/usr/local/include/libxml2
-DXMLSEC_CRYPTO_DYNAMIC_LOADING=1 -DUNIX_SOCKETS sign3.c -g
-L/usr/local/lib -lltdl -lxmlsec1 -lz -llzma -lm -ldl -lxslt -lxml2 -o
sign3"
Please let me know if I am missing something. Hope to hear from you at
the earliest.
Thanks and Regards
Roshan Kumar
_______________________________________________
xmlsec mailing list
[email protected]
http://www.aleksey.com/mailman/listinfo/xmlsec
