Hello. I've been trying to get validated a xml signed document, but after a lot changes in my source code and hours checking all, i'm unable to do it.
First, I generated a public/private keypair using OpenSSL: openssl genrsa -out privkey.pem 512 openssl req -new -x509 -key privkey.pem -out cert.pem -days 365 After that, using my "xmlsigner", i sign the file "test.xml" and i get a "signed.xml" file. Then, when using my "xmlverify" I always get this error: Reference URI="" failed to verify RSA Validation of <SignedInfo> failed Any idea? I'm sure that i have silly error (probably conceptual). I've attached the files that i'm using. Thank in advance, and sorry for my english. It's far from perfect :( -- Antonio Perdices González --- CriptoLab. Despacho 5212. Facultad de Informatica. Campus de Montegancedo S/N Universidad Politécnica de Madrid. Boadilla del Monte. Madrid (Spain) --- e-mail: [EMAIL PROTECTED] MSN messenger : [EMAIL PROTECTED]
main.cpp
Description: Binary data
main.cpp
Description: Binary data
<?xml version="1.0" encoding="UTF-8"?> <CONFIG> <ADDRESS>localhost</ADDRESS> <PORT>4327</PORT> <TIMEOUT>1</TIMEOUT> <MAXCHILDS>20</MAXCHILDS> <SSL>1</SSL> <SSLCERT>sslcert.pem</SSLCERT> <SSLKEY>sslkey.pem</SSLKEY> <LOGFILE>/var/log/xmltsa.log</LOGFILE> </CONFIG>
<?xml version="1.0" encoding="UTF-8" standalone="no" ?> <CONFIG> <ADDRESS>localhost</ADDRESS> <PORT>4327</PORT> <TIMEOUT>1</TIMEOUT> <MAXCHILDS>20</MAXCHILDS> <SSL>1</SSL> <SSLCERT>sslcert.pem</SSLCERT> <SSLKEY>sslkey.pem</SSLKEY> <LOGFILE>/var/log/xmltsa.log</LOGFILE> <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#";> <ds:SignedInfo> <ds:CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments"/> <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> <ds:Reference URI=""> <ds:Transforms> <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/> </ds:Transforms> <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> <ds:DigestValue>aUNzIOWfxUSgETqCOEEi4eTS3lE=</ds:DigestValue> </ds:Reference> </ds:SignedInfo> <ds:SignatureValue>NWNLjm3svxH0sUIfBrWrQUujRWFUDquTpN9gUjPgRzothZJr26q2vIcLG11e21i2 YE2m07uUuLvobAWsr2vErQ==</ds:SignatureValue> <ds:KeyInfo> <ds:X509Data> <ds:X509Certificate>MIIDCjCCArSgAwIBAgIBADANBgkqhkiG9w0BAQQFADCBkjELMAkGA1UEBhMCRVMx DzANBgNVBAgTBk1hZHJpZDEPMA0GA1UEBxMGTWFkcmlkMRIwEAYDVQQKEwlDcmlw dG9MYWIxEjAQBgNVBAsTCUNyaXB0b0xhYjEZMBcGA1UEAxMQQW50b25pbyBQZXJk aWNlczEeMBwGCSqGSIb3DQEJARYPYW50cGdtQHRlcnJhLmVzMB4XDTA0MDgzMTIx MDA1NloXDTA1MDgzMTIxMDA1NlowgZIxCzAJBgNVBAYTAkVTMQ8wDQYDVQQIEwZN YWRyaWQxDzANBgNVBAcTBk1hZHJpZDESMBAGA1UEChMJQ3JpcHRvTGFiMRIwEAYD VQQLEwlDcmlwdG9MYWIxGTAXBgNVBAMTEEFudG9uaW8gUGVyZGljZXMxHjAcBgkq hkiG9w0BCQEWD2FudHBnbUB0ZXJyYS5lczBcMA0GCSqGSIb3DQEBAQUAA0sAMEgC QQDFs0njAuGjDBZcKuj7UecVJ96a66PxX67TjlPZXoP5U1b0JpvPCfaBxZrXaOh7 4RU1046C7scjpoBUBPqQ6HGfAgMBAAGjgfIwge8wHQYDVR0OBBYEFK+MJmAPyNxi wa7eFSRhx9jnuRArMIG/BgNVHSMEgbcwgbSAFK+MJmAPyNxiwa7eFSRhx9jnuRAr oYGYpIGVMIGSMQswCQYDVQQGEwJFUzEPMA0GA1UECBMGTWFkcmlkMQ8wDQYDVQQH EwZNYWRyaWQxEjAQBgNVBAoTCUNyaXB0b0xhYjESMBAGA1UECxMJQ3JpcHRvTGFi MRkwFwYDVQQDExBBbnRvbmlvIFBlcmRpY2VzMR4wHAYJKoZIhvcNAQkBFg9hbnRw Z21AdGVycmEuZXOCAQAwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQQFAANBAAGB RASALdHugfE/7hMCOItoS5F44JPIxcSM1IVB9wFEX/deO0JbTfsouOUAD+MQA8Zc PF3EBoczSQebcy/QF4A= </ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </ds:Signature> </CONFIG>
cert.pem
Description: Binary data
privkey.pem
Description: Binary data
