[XML-SIG] c14n attribute ordering problem?
Rich Salz
rsalz at datapower.com
Tue Sep 30 22:05:38 EDT 2003
> # What I expect:
> $ python2.3 c14n_test.py
> <dsig:SignedInfo xmlns="urn:envelope" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"></dsig:SignedInfo>
> # What I get:
> $ python2.3 c14n_test.py
> <dsig:SignedInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" xmlns="urn:envelope"></dsig:SignedInfo>
The Python code is right; your expectation (and, apparently xmlsec)
is wrong. The default namespace declaration is treated as if the localname
is "xmlns". See the "Namespace Nodes" bullet in section 2.3
Sorry, Aleksey, looks like a bug. :) (That's actually a rueful smile;
Aleksey and I have commiserated over the pain in the a-- that is XML
c14n and exc-c14n.)
/r$
--
Rich Salz Chief Security Architect
DataPower Technology http://www.datapower.com
XS40 XML Security Gateway http://www.datapower.com/products/xs40.html
XML Security Overview http://www.datapower.com/xmldev/xmlsecurity.html
More information about the XML-SIG
mailing list