Generate Digital Signature but with a Specific Namespace Prefix (“ds:”)

by

Apparently a lot of people ran into the same problem. After investigating source code of the class Signature, I came to conclusion that Microsoft aimed to help us. There is hardcoded prefix “ds” in the method LoadXml(). So, it is possible to generate signature, then add namespace prefix “ds” to it, load modified signature back and recompute “SignatureValue”. Unfortunatelly bug in the library makes things a bit harder than they need to be. The code with workaround and comments is below.

public static void SignXml(XmlDocument xmlDoc, X509Certificate2 cert)
{
        // transformation cert -> key omitted
        RSACryptoServiceProvider key;

        // Create a SignedXml object. 
        SignedXml signedXml = new SignedXml(xmlDoc);

        // Add the key to the SignedXml document. 
        signedXml.SigningKey = key;
        signedXml.SignedInfo.SignatureMethod = "http://www.w3.org/2001/04/xmldsig-more#rsa-sha256";
        signedXml.SignedInfo.CanonicalizationMethod = SignedXml.XmlDsigExcC14NTransformUrl;

        // Create a reference to be signed. 
        Reference reference = new Reference();
        reference.Uri = "#foo";
        reference.DigestMethod = "http://www.w3.org/2001/04/xmlenc#sha256";
        // Add an enveloped transformation to the reference. 
        reference.AddTransform(new XmlDsigEnvelopedSignatureTransform());
        reference.AddTransform(new XmlDsigExcC14NTransform());
        signedXml.AddReference(reference);

        KeyInfo keyInfo = new KeyInfo();
        KeyInfoX509Data keyInfoData = new KeyInfoX509Data();
        keyInfoData.AddIssuerSerial(cert.IssuerName.Format(false), cert.SerialNumber);
        keyInfo.AddClause(keyInfoData);
        signedXml.KeyInfo = keyInfo;

        // Compute the signature. 
        signedXml.ComputeSignature();

        // Add prefix "ds:" to signature
        XmlElement signature = signedXml.GetXml();
        SetPrefix("ds", signature);

        // Load modified signature back
        signedXml.LoadXml(signature);

        // this is workaround for overcoming a bug in the library
        signedXml.SignedInfo.References.Clear();

        // Recompute the signature
        signedXml.ComputeSignature();
        string recomputedSignature = Convert.ToBase64String(signedXml.SignatureValue);

        // Replace value of the signature with recomputed one
        ReplaceSignature(signature, recomputedSignature);

        // Append the signature to the XML document. 
        xmlDoc.DocumentElement.InsertAfter(xmlDoc.ImportNode(signature, true), xmlDoc.DocumentElement.FirstChild);
    }

    private static void SetPrefix(string prefix, XmlNode node)
    {
        node.Prefix = prefix;
        foreach (XmlNode n in node.ChildNodes)
        {
            SetPrefix(prefix, n);
        }
    }

    private static void ReplaceSignature(XmlElement signature, string newValue)
    {
        if (signature == null) throw new ArgumentNullException(nameof(signature));
        if (signature.OwnerDocument == null) throw new ArgumentException("No owner document", nameof(signature));

        XmlNamespaceManager nsm = new XmlNamespaceManager(signature.OwnerDocument.NameTable);
        nsm.AddNamespace("ds", SignedXml.XmlDsigNamespaceUrl);

        XmlNode signatureValue = signature.SelectSingleNode("ds:SignatureValue", nsm);
        if (signatureValue == null)
            throw new Exception("Signature does not contain 'ds:SignatureValue'");

        signatureValue.InnerXml = newValue;
    }

More Related Contents:

  1. Memory Leak using StreamReader and XmlSerializer
  2. Proper way to implement IXmlSerializable?
  3. How to serialize/deserialize to `Dictionary` from custom XML not using XElement?
  4. Dynamically generate LINQ queries
  5. Apostrophe (‘) in XPath query
  6. How to deal with XML in C#
  7. Get the XPath to an XElement?
  8. Set up dot instead of comma in numeric values
  9. Why doesn’t XmlSerializer support Dictionary?
  10. Create XML Nodes based on XPath?
  11. How to decode string to XML string in C#
  12. Converting XML to a dynamic C# object
  13. Reading embedded XML file c#
  14. How to remove an xml element from file?
  15. XML Parsing – Read a Simple XML File and Retrieve Values
  16. Error Deserializing Xml to Object – xmlns=” was not expected
  17. Suppress Null Value Types from Being Emitted by XmlSerializer
  18. XmlTextReader vs. XDocument
  19. Removing nodes from an XmlDocument
  20. How do you deserialize XML with dynamic element names?
  21. XML Error: There are multiple root elements
  22. parsing XML with ampersand
  23. Check well-formed XML without a try/catch?
  24. Data at the root level is invalid. Line 1, position 1 -why do I get this error while loading an xml file?
  25. Trouble serializing and deserializing multiple objects
  26. Force XDocument to write to String with UTF-8 encoding
  27. How to transform XML as a string w/o using files in .NET?
  28. How to add xmlnamespace to a xmldocument
  29. Creating a specific XML document using namespaces in C#
  30. How to convert JSON to XML or XML to JSON in C#?

Leave a Comment