santuario-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Miroslav Nachev" <m...@space-comm.com>
Subject Re: Invalid Reference Signature when I try to refer some XMLObject element
Date Wed, 31 Jan 2007 21:53:50 GMT
It is very interesting how is solved this problem in the other XAdES
realizations? Maybe they use another XML Security library like BouncyCastle?

Are there some plans for JDK and Apache XML Security to provide all kind of
functionality which exists in BouncyCastle and similar libraries?
In this way of thinking I am asking for help how to do the OCSP request
using JDK6? I am looking for some real working example(s)? From the guide it
is not so clear how to realize it.

On 1/31/07, Miroslav Nachev <miro@space-comm.com> wrote:
>
> For XML Signature I use JDK6. For XML Encription I use Apache XML Security
> 1.4. If this will solve my problem I will use Apache XML Security for
> both.
>
>
> On 1/31/07, Sean Mullan <Sean.Mullan@sun.com> wrote:
> >
> > Miroslav Nachev wrote:
> > > I will try your suggestions tomorrow, but I am not sure that this is
> > the
> > > problem. Before to quit from the office I found that the digest value
> > > for this reference is different calculated for Signing and Validation.
> >
> > >
> > > The stack trace from Exception is missing because any exception is not
> > > thrown. The boolean value "false" is returned for whole signature.
> > Then
> > > I check each time individually and see that the problem is in this
> > > reference again without exception. Only "false" value is returned.
> > >
> > > Because of the above I think that the digest algorithm for Signing and
> > > Validation is different. And because the only difference are both
> > > Namespaces in one element, I think that this is the real problem.
> >
> > Try enabling logging support and inspect what is being digested when
> > signing and when validating. You should be able to precisely narrow down
> >
> > the problem (it is probably namespace related). I assume you are using
> > JSR 105 from our previous correspondences. See this blog for more info
> > on enabling the logging:
> >
> >
> > http://weblogs.java.net/blog/mullan/archive/2006/02/more_xml_signat_1.html
> >
> > --Sean
> >
> >
>

Mime
View raw message