done
case "$method" in
- rsa) method="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256";;
- ecdsa) method="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256";;
+ rsa) method="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512";;
+ ecdsa) method="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512";;
*) echo invalid signature method $method; usage; exit 1;;
esac
tempi=`echo $i | sed -e 's,%20,\ ,g'`
cat << EOL
<Reference URI="$tempi">
- <DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" />
+ <DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512" />
<DigestValue></DigestValue>
</Reference>
EOL
<Transforms>
<Transform Algorithm="http://www.w3.org/2006/12/xml-c14n11"/>
</Transforms>
- <DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" />
+ <DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512" />
<DigestValue></DigestValue>
</Reference>
</SignedInfo>
# http://www.w3.org/TR/widgets-digsig/#signature-algorithms
SIGMETHOD=$(xmlstarlet sel -N sig=http://www.w3.org/2000/09/xmldsig# -t -m "//sig:SignatureMethod/@Algorithm" -v . $i)
case "$SIGMETHOD" in
- (http://www.w3.org/2001/04/xmldsig-more#rsa-sha256)
+ (http://www.w3.org/2001/04/xmldsig-more#rsa-sha512)
echo Signature method RSA
;;
- (http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256)
+ (http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512)
echo Signature method ECDSA
;;
(*) echo Unknown Signature Method && continue;;