Skip to Content.
Sympa Menu

mace-opensaml-users - RE: [OpenSAML] RE: Digital signature not valid

Subject: OpenSAML user discussion

List archive

RE: [OpenSAML] RE: Digital signature not valid


Chronological Thread 
  • From: "Ravi Balasubramanian" <>
  • To: <>
  • Subject: RE: [OpenSAML] RE: Digital signature not valid
  • Date: Fri, 28 Aug 2009 11:24:34 -0400

Reference URI Issue:


The digital signature generated is
<ds:SignedInfo>
<ds:CanonicalizationMethod
Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315"/>
<ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<ds:Reference URI="#object">
<ds:Transforms>
<ds:Transform
Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
<ds:Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#";><ec:InclusiveNamespaces
xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"; PrefixList="ds saml
#default xs"/></ds:Transform>
</ds:Transforms>
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<ds:DigestValue>eLXzpI9txLgXKxeoo+8CBtpykiE=</ds:DigestValue>
</ds:Reference>
</ds:SignedInfo>
<ds:SignatureValue>
mivVWbI33OteUqvEK/HMZ1MkVs/K3zS4Fdi2g/Om1cz2f0M2fxA9NED3t8OzdhoKgCG7zq6jmRgF
1b1U55JKWgL5N4jrnReux1+ZB5x8ihvB1PVcxfLaDdooPhPZmqBAAqU+84UiJgpn4QT4S8y+x5jG
Bf7+kYSfi71degu5ayE=
</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICUjCCAbsCBEk/yWAwDQYJKoZIhvc
NAQEEBQAwcTELMAkGA1UEBhMCdXMxEDAOBgNVBAgTB0dl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</ds:X509Certificate></ds:X509Data><
/ds:KeyInfo></ds:Signature>

Error I get
func=xmlSecXPathDataExecute:file=xpath.c:line=273:obj=unknown:subj=xmlXPtrEv
al:error=5:libxml2 library function failed:expr=xpointer(id('object'))
func=xmlSecXPathDataListExecute:file=xpath.c:line=356:obj=unknown:subj=xmlSe
cXPathDataExecute:error=1:xmlsec library function failed:
func=xmlSecTransformXPathExecute:file=xpath.c:line=466:obj=xpointer:subj=xml
SecXPathDataExecute:error=1:xmlsec library function failed:
func=xmlSecTransformDefaultPushXml:file=transforms.c:line=2371:obj=xpointer:
subj=xmlSecTransformExecute:error=1:xmlsec library function failed:
func=xmlSecTransformCtxXmlExecute:file=transforms.c:line=1207:obj=unknown:su
bj=xmlSecTransformPushXml:error=1:xmlsec library function
failed:transform=xpointer
func=xmlSecTransformCtxExecute:file=transforms.c:line=1267:obj=unknown:subj=
xmlSecTransformCtxXmlExecute:error=1:xmlsec library function failed:
func=xmlSecDSigReferenceCtxProcessNode:file=xmldsig.c:line=1568:obj=unknown:
subj=xmlSecTransformCtxExecute:error=1:xmlsec library function failed:
func=xmlSecDSigCtxProcessSignedInfoNode:file=xmldsig.c:line=804:obj=unknown:
subj=xmlSecDSigReferenceCtxProcessNode:error=1:xmlsec library function
failed:node=Reference
func=xmlSecDSigCtxProcessSignatureNode:file=xmldsig.c:line=547:obj=unknown:s
ubj=xmlSecDSigCtxProcessSignedInfoNode:error=1:xmlsec library function
failed:
func=xmlSecDSigCtxVerify:file=xmldsig.c:line=366:obj=unknown:subj=xmlSecDSig
CtxSigantureProcessNode:error=1:xmlsec library function failed:
Error: signature verification failed





Archive powered by MHonArc 2.6.16.

Top of Page