当前位置：文江博客话题详情

C# cryptography signedxml saml-2.0

签名XML检查签名失败，哈希错误

发布于 2025-01-30 04:51:36 字数 1628 浏览 2 评论 0原文

我正在尝试检查DOT NET中的SAML签名的响应4.8 MVC项目，

我的代码是

_xmlDoc = new XmlDocument();
                _xmlDoc.PreserveWhitespace = true;
                _xmlDoc.XmlResolver = null;
                _xmlDoc.LoadXml(xml);

        XmlNodeList nodeList = _xmlDoc.SelectNodes("//ds:Signature", _xmlNameSpaceManager);

                SignedXml signedXml = new SignedXml(_xmlDoc);
                
                if (nodeList.Count == 0) return false;

                signedXml.LoadXml((XmlElement)nodeList[0]);

                X509Certificate2 serviceCertificate = null;
                foreach (KeyInfoClause clause in signedXml.KeyInfo)
                {
                    if (clause is KeyInfoX509Data)
                    {
                        if (((KeyInfoX509Data)clause).Certificates.Count > 0)
                        {
                            serviceCertificate = (X509Certificate2)((KeyInfoX509Data)clause).Certificates[0];
                        }
                    }
                }
return signedXml.CheckSignature(serviceCertificate, true);

false作为签名验证，

因此我启用了日志，以下是错误，

[SignedXml#026c9e6f, VerifyReference] Reference Reference#000df9b5 hashed with 
"http://www.w3.org/2001/04/xmlenc#sha256" (SHA256Managed) has hash value 
348aa65d5b67edfae901cd4e2596065e75839a18c9a5d3a63d3fd85e48c232d8, expected hash value 
869e1b0273833271a23349cd9bc7bddb597c2277c323abddead0cfe798ae3f63.
System.Security.Cryptography.Xml.SignedXml Information: 12 : [SignedXml#026c9e6f, 
VerificationFailure] Verification failed checking references.

请建议建议

I am trying to check SAML Signed Response in Dot Net 4.8 MVC Project

My code is

_xmlDoc = new XmlDocument();
                _xmlDoc.PreserveWhitespace = true;
                _xmlDoc.XmlResolver = null;
                _xmlDoc.LoadXml(xml);

        XmlNodeList nodeList = _xmlDoc.SelectNodes("//ds:Signature", _xmlNameSpaceManager);

                SignedXml signedXml = new SignedXml(_xmlDoc);
                
                if (nodeList.Count == 0) return false;

                signedXml.LoadXml((XmlElement)nodeList[0]);

                X509Certificate2 serviceCertificate = null;
                foreach (KeyInfoClause clause in signedXml.KeyInfo)
                {
                    if (clause is KeyInfoX509Data)
                    {
                        if (((KeyInfoX509Data)clause).Certificates.Count > 0)
                        {
                            serviceCertificate = (X509Certificate2)((KeyInfoX509Data)clause).Certificates[0];
                        }
                    }
                }
return signedXml.CheckSignature(serviceCertificate, true);

Its getting false as signature validation

So I enabled logs and below is the error

[SignedXml#026c9e6f, VerifyReference] Reference Reference#000df9b5 hashed with 
"http://www.w3.org/2001/04/xmlenc#sha256" (SHA256Managed) has hash value 
348aa65d5b67edfae901cd4e2596065e75839a18c9a5d3a63d3fd85e48c232d8, expected hash value 
869e1b0273833271a23349cd9bc7bddb597c2277c323abddead0cfe798ae3f63.
System.Security.Cryptography.Xml.SignedXml Information: 12 : [SignedXml#026c9e6f, 
VerificationFailure] Verification failed checking references.

Please suggest

收藏 0

分享到微博

如果你对这篇内容有疑问，欢迎到本站社区发帖提问参与讨论，获取更多帮助，或者扫码二维码加入 Web 技术交流群。

扫码二维码加入Web技术交流群

发布评论

需要登录才能够评论，你可以免费注册一个本站的账号。

列表为空，暂无数据

关于作者

苦笑流年记忆

暂无简介

文章

评论

26 人气

关注发私信

相关话题

热门标签

操作系统程序设计 IT运维 Linux系统管理 JavaScript 服务器应用 solaris C/C++ PHP Shell BSD Vue.js aix Oracle Python HTML 系统管理 HTML5 CSS 前端

推荐作者

alipaysp_snBf0MSZIv

文章 0 评论 0

梦断已成空

文章 0 评论 0

瞎闹

文章 0 评论 0

凯凯我们等你回来

文章 0 评论 0

寄意

文章 0 评论 0

似梦非梦

文章 0 评论 0

友情链接

我们使用 Cookies 和其他技术来定制您的体验包括您的登录状态等。通过阅读我们的隐私政策了解更多相关信息。单击 接受 或继续使用网站，即表示您同意使用 Cookies 和您的相关数据。

原文