Class: TC_Signer

Inherits:

Test::Unit::TestCase

• Object
• Test::Unit::TestCase
• TC_Signer

Defined in:

ext/xmlsig/t/tc_signer.rb

Instance Method Summary

• #clear_enveloping(str) ⇒ Object

  def teardown end.

• #test_add_verifying_key ⇒ Object
• #test_enveloped ⇒ Object
• #test_id_attr ⇒ Object
• #test_signer_basics ⇒ Object

Instance Method Details

#clear_enveloping(str) ⇒ Object

def teardown end

# File 'ext/xmlsig/t/tc_signer.rb', line 28

def clear_enveloping (str)
    str = str.gsub(/Reference URI=".*"/, 'Reference URI=""')
    str = str.gsub(/Object Id=".*"/, 'Object Id=""')
    str = str.gsub(/<DigestValue>.*<\/DigestValue>/, 
                   '<DigestValue></DigestValue>')
    str = str.gsub(/<SignatureValue>.*<\/SignatureValue>/m, 
                   '<SignatureValue></SignatureValue>')
    return str
end

#test_add_verifying_key ⇒ Object

# File 'ext/xmlsig/t/tc_signer.rb', line 350

def test_add_verifying_key
    xml = "<Signature xmlns=\"http://www.w3.org/2000/09/xmldsig#\">\n  <SignedInfo>\n<CanonicalizationMethod Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\" />\n<SignatureMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#rsa-sha1\"/> \n<Reference URI=\"#object\">\n  <DigestMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#sha1\" />\n  <DigestValue/>\n</Reference>\n  </SignedInfo>\n  <SignatureValue/>\n  <KeyInfo>\n  <KeyValue/>\n  </KeyInfo>\n  <Object Id=\"object\">some text</Object>\n</Signature>\n    XML\n    xml = <<-XML\n    <hello>world!</hello>\n    XML\n    x = Xmlsig::XmlDoc.new\n    if x.loadFromString(xml) < 0\n        raise \"error loading XML\"\n    end\n    k = Xmlsig::Key.new\n    if k.loadFromFile(\"t/res/rsakey.pem\",\"pem\",\"\") < 0\n        raise \"error loading key\"\n    end\n    s = Xmlsig::Signer.new(x,k)\n    s.attachPublicKey(1)\n    s.signInPlace\n    expected = <<-XML\n<?xml version=\"1.0\"?>\n<Signature xmlns=\"http://www.w3.org/2000/09/xmldsig#\">\n<SignedInfo>\n<CanonicalizationMethod Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\"/>\n<SignatureMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#rsa-sha1\"/>\n<Reference URI=\"#obj1\">\n<Transforms>\n<Transform Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\"/>\n</Transforms>\n<DigestMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#sha1\"/>\n<DigestValue>YSHe8XZ7FyBg4bJyb9nB4m0x+uo=</DigestValue>\n</Reference>\n</SignedInfo>\n<SignatureValue>cAWu6o1UKCUSfsVDlNG6JvE7bj6TrInQPdYYBWn/kR4zkyeSR45IjTjk8ug4w0lP\nRJnPkFcxt9KZystNh/84boNPr8dV4aitMVBcwI9KC+wVyTSiNSGoQ97xwNWvV3P0\nMuP0IfzwMYEYzaz4BcnLAeBS/zJj1nKBrQl4cPendKz258wND3sCx44gGPBWOe6S\n+bgvzO31Dk6bXVid92DU2BBfzJ+vLC/R1pA7zzSbi4IbVOGGxcDwWz1UnXrBWVRv\nl0BUrEO/ggm11KrDPywYpDk4K+S77uirJ5ZnE7/80gtVqeUNXFwPDXwxanr4OAYX\nOqke+lk6t9sVyzTbB/AhDw==</SignatureValue>\n<KeyInfo>\n<KeyValue>\n<RSAKeyValue>\n<Modulus>\nl7j+tD+DNXgWiQTsK2GMv8RfAIFKRebZzeniPJc7Ra2q5o0Ld3EHAU98+X3iGard\nkVn08c89unhGlhGctltGOXNVI6r3ngBc5elJ7DucP4SZOpCt335khsYmcs4xCHl+\nExW45b/WVgKNYCFMJxhk+/tVcPYzvS9VcNVefpmupOCqRUcTqDDVoIqdzCDs5I5R\nyVTFfz5mLXS/o3r48+yUVzm0rAB1YmFUtNDgUob4XnfsUEOc0rqnjGJavLL+88xi\nfiNga8dRSTd4fiUVMKv6tK4ljyL8o0h/8gqKbuD+jfAB7cYzzGuh/aaA7waMr/ZA\nOo5CFCBhEh/j/AWxBdVlww==\n</Modulus>\n<Exponent>\nAQAB\n</Exponent>\n</RSAKeyValue>\n</KeyValue>\n</KeyInfo>\n<Object Id=\"obj1\"><hello>world!</hello></Object>\n</Signature>\n    XML\n    assert_equal(clear_enveloping(expected), \n                 clear_enveloping(x.toString), \n                 \"add raw verifying key\")\n    x = Xmlsig::XmlDoc.new\n    if x.loadFromString('<hello>world!</hello>') < 0\n        raise \"failed to create XML document\"\n    end\n    k = Xmlsig::Key.new\n    if k.loadHMACFromString('secret') < 0\n        raise \"failed to load key\"\n    end\n    s = Xmlsig::Signer.new(x,k)\n    s.attachPublicKey(1)\n    x_dup = s.sign\n    expected = <<-XML\n<?xml version=\"1.0\"?>\n<Signature xmlns=\"http://www.w3.org/2000/09/xmldsig#\">\n<SignedInfo>\n<CanonicalizationMethod Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\"/>\n<SignatureMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#hmac-sha1\"/>\n<Reference URI=\"#obj1\">\n<Transforms>\n<Transform Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\"/>\n</Transforms>\n<DigestMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#sha1\"/>\n<DigestValue>YSHe8XZ7FyBg4bJyb9nB4m0x+uo=</DigestValue>\n</Reference>\n</SignedInfo>\n<SignatureValue>a2xSwgkUYkby86Rw32ZuJjzrkJQ=</SignatureValue>\n<KeyInfo>\n<KeyValue/>\n</KeyInfo>\n<Object Id=\"obj1\"><hello>world!</hello></Object>\n</Signature>\n    XML\n    assert_equal(clear_enveloping(expected), \n                 clear_enveloping(x_dup.toString), \n                 \"sign with HMAC - should not attach key\")\nend\n"

#test_enveloped ⇒ Object

# File 'ext/xmlsig/t/tc_signer.rb', line 462

def test_enveloped
    x = Xmlsig::XmlDoc.new
    if x.loadFromString('<hello>world!</hello>') < 0
        raise "failed to create XML document"
    end
    k = Xmlsig::Key.new
    if k.loadFromFile('t/res/rsakey.pem','pem','') < 0
        raise "failed to load key"
    end
    s = Xmlsig::Signer.new(x,k)
    xp = Xmlsig::XPath.new
    xp.setXPath("/hello")
    s.signInPlace(xp)
    expected = "<?xml version=\"1.0\"?>\n<hello>world!<Signature xmlns=\"http://www.w3.org/2000/09/xmldsig#\">\n<SignedInfo>\n<CanonicalizationMethod Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\"/>\n<SignatureMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#rsa-sha1\"/>\n<Reference URI=\"\">\n<Transforms>\n<Transform Algorithm=\"http://www.w3.org/2000/09/xmldsig#enveloped-signature\"/>\n<Transform Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\"/>\n</Transforms>\n<DigestMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#sha1\"/>\n<DigestValue>1yxTNbA2ACee4VdoRgA69iOj6kg=</DigestValue>\n</Reference>\n</SignedInfo>\n<SignatureValue>R0F67tolSG60Dx7NCsi6f//QboN1FqmQs6C73GiCztY+SLaoOIMohGEWL5dQfvJd\nisRn/AVZe+09bBmJLru73b+floTTf+av6sw0j2NsqQroGAuNDwMVk0fJwv8shMoB\nwOM35Gp6jHs13FayL7QCf4qw7K+OebQtPdCHos4PkDuvKmMK1F/YpDOsezjo1Wg+\n9dKFaTmbeaaq7iY3NlSJaC+kyRUMnlY9jVJWsE/EDTD0XujwlOFhKV9heanPvd+z\ndplValY7ioM+T21IW5UUVY0xy8wTXWeaXRWRDuFcoIIF3UX/aeVEmmLhjKuEgD8k\nee1QrIN9c+mr5+W3Je6QTg==</SignatureValue>\n</Signature></hello>\n    XML\n    assert_equal(expected, x.toString, \"check signed xml\")\nend\n"

#test_id_attr ⇒ Object

# File 'ext/xmlsig/t/tc_signer.rb', line 278

def test_id_attr
    xml = "<foo>\n<thing id=\"me\">ha ha ha</thing>\n<Signature xmlns=\"http://www.w3.org/2000/09/xmldsig#\">\n  <SignedInfo>\n<CanonicalizationMethod Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\" />\n<SignatureMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#hmac-sha1\" />\n<Reference URI=\"#xpointer(id('me'))\">\n  <DigestMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#sha1\" />\n  <DigestValue/>\n</Reference>\n  </SignedInfo>\n  <SignatureValue/>\n</Signature>\n</foo>\n    XML\n    x = Xmlsig::XmlDoc.new\n    if x.loadFromString(xml) < 0\n        raise \"error loading XML\"\n    end\n    x.addIdAttr('id','thing','')\n    k = Xmlsig::Key.new\n    if k.loadHMACFromString(\"secret\") < 0\n        raise \"error loading key\"\n    end\n    s = Xmlsig::Signer.new(x,k)\n    s.signInPlace\n    expected = <<-XML\n<?xml version=\"1.0\"?>\n<foo>\n<thing id=\"me\">ha ha ha</thing>\n<Signature xmlns=\"http://www.w3.org/2000/09/xmldsig#\">\n  <SignedInfo>\n<CanonicalizationMethod Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\"/>\n<SignatureMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#hmac-sha1\"/>\n<Reference URI=\"#xpointer(id('me'))\">\n  <DigestMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#sha1\"/>\n  <DigestValue>LtCo7+kPydkEmDCmDeHN/uw3n7c=</DigestValue>\n</Reference>\n  </SignedInfo>\n  <SignatureValue>PqQMfXh6WV+vLS2Hn/0kFR2Sl8c=</SignatureValue>\n</Signature>\n</foo>\n    XML\n    assert_equal(expected, x.toString, \"signedInPlace with ID attribute\")\n    x = Xmlsig::XmlDoc.new\n    if x.loadFromString(xml) < 0\n        raise \"error loading XML\"\n    end\n    x.addIdAttr('id','thing','')\n    s = Xmlsig::Signer.new(x,k)\n    x_signed = s.sign\n    expected = <<-XML\n<?xml version=\"1.0\"?>\n<foo>\n<thing id=\"me\">ha ha ha</thing>\n<Signature xmlns=\"http://www.w3.org/2000/09/xmldsig#\">\n  <SignedInfo>\n<CanonicalizationMethod Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\"/>\n<SignatureMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#hmac-sha1\"/>\n<Reference URI=\"#xpointer(id('me'))\">\n  <DigestMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#sha1\"/>\n  <DigestValue>LtCo7+kPydkEmDCmDeHN/uw3n7c=</DigestValue>\n</Reference>\n  </SignedInfo>\n  <SignatureValue>PqQMfXh6WV+vLS2Hn/0kFR2Sl8c=</SignatureValue>\n</Signature>\n</foo>\n    XML\n    assert_equal(expected, x_signed.toString, \"signed copy with ID attribute\")\nend\n"

#test_signer_basics ⇒ Object

# File 'ext/xmlsig/t/tc_signer.rb', line 38

def test_signer_basics
    x = Xmlsig::XmlDoc.new
    if x.loadFromString('<hello>world!</hello>') < 0
        raise "failed to create XML document"
    end
    k = Xmlsig::Key.new
    if k.loadFromFile('t/res/rsakey.pem','pem','') < 0
        raise "failed to load key"
    end
    s = Xmlsig::Signer.new(x,k)
    s.signInPlace()
    expected = "<?xml version=\"1.0\"?>\n<Signature xmlns=\"http://www.w3.org/2000/09/xmldsig#\">\n<SignedInfo>\n<CanonicalizationMethod Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\"/>\n<SignatureMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#rsa-sha1\"/>\n<Reference URI=\"#obj1\">\n<Transforms>\n<Transform Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\"/>\n</Transforms>\n<DigestMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#sha1\"/>\n<DigestValue>YSHe8XZ7FyBg4bJyb9nB4m0x+uo=</DigestValue>\n</Reference>\n</SignedInfo>\n<SignatureValue>cAWu6o1UKCUSfsVDlNG6JvE7bj6TrInQPdYYBWn/kR4zkyeSR45IjTjk8ug4w0lP\nRJnPkFcxt9KZystNh/84boNPr8dV4aitMVBcwI9KC+wVyTSiNSGoQ97xwNWvV3P0\nMuP0IfzwMYEYzaz4BcnLAeBS/zJj1nKBrQl4cPendKz258wND3sCx44gGPBWOe6S\n+bgvzO31Dk6bXVid92DU2BBfzJ+vLC/R1pA7zzSbi4IbVOGGxcDwWz1UnXrBWVRv\nl0BUrEO/ggm11KrDPywYpDk4K+S77uirJ5ZnE7/80gtVqeUNXFwPDXwxanr4OAYX\nOqke+lk6t9sVyzTbB/AhDw==</SignatureValue>\n<Object Id=\"obj1\"><hello>world!</hello></Object>\n</Signature>\n    XML\n    assert_equal(clear_enveloping(expected), \n                 clear_enveloping(x.toString), \"check signed xml\")\n\n    if x.loadFromString('<hello>world!</hello>') < 0\n        raise \"failed to create XML document\"\n    end\n    s = Xmlsig::Signer.new(x,k)\n    s.signInPlace()\n    assert_equal(clear_enveloping(expected), \n                 clear_enveloping(x.toString), \"should be able to sign again\")\n\n\n    if x.loadFromString('<hello>world!</hello>') < 0\n        raise \"failed to create XML document\"\n    end\n    s = Xmlsig::Signer.new(x,k)\n    x_dup = s.sign()\n    original = <<-XML\n<?xml version=\"1.0\"?>\n<hello>world!</hello>\n    XML\n    assert_equal(original, x.toString, \"sign should preserve the original\")\n    assert_equal(clear_enveloping(expected), \n                 clear_enveloping(x_dup.toString), \"sign should produce a copy\")\n    s.signInPlace()\n    assert_equal(clear_enveloping(expected), \n                 clear_enveloping(x.toString), \"signInPlace should still work\")\n\n\n    enveloped = <<-XML\n<n0:pdu xmlns:n0=\"http://a.example\">\n<n1:elem1 xmlns:n1=\"http://b.example\">\ncontent\n</n1:elem1>\n</n0:pdu>\n    XML\n    if x.loadFromString(enveloped) < 0\n        raise \"failed to create XML document\"\n    end\n    s = Xmlsig::Signer.new(x,k)\n    x_dup = s.sign\n    expected = <<-XML\n<?xml version=\"1.0\"?>\n<Signature xmlns=\"http://www.w3.org/2000/09/xmldsig#\">\n<SignedInfo>\n<CanonicalizationMethod Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\"/>\n<SignatureMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#rsa-sha1\"/>\n<Reference URI=\"#obj1\">\n<Transforms>\n<Transform Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\"/>\n</Transforms>\n<DigestMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#sha1\"/>\n<DigestValue>Z1BLe+Di+r3Q88UGYMg0U98+SkQ=</DigestValue>\n</Reference>\n</SignedInfo>\n<SignatureValue>XnIMidjeC2cwjpx1g5cdUjJhaeOrUn7QVbOp3nZfZ9pX9h0RzNr7IbyBDIFYDz8V\nx/pJTrIBwtNRNv/zipgNdO3Zz6k5cKOeh518F+tIVa6LiApywRIUSZJRJRDrkfRI\nD+qllTfEz0nBZIkW6R40xawHYXbMi7/jirJPFptIqYW0P/X2QUqoR7tKMB6U7z97\n6YXwLTO32O2R1udK8psoKwalOqdmWdR/8xWxLSjLoywyhF6c2+sNIa16BWMilFPX\nhCz91erW1LWKcUXgVGbsniG/3Wqz7VXmROf0iYZ56gTLWA2qKRBS8DC3uZo830bq\ncG04ZgJEZyAdMCjFcN0kaA==</SignatureValue>\n<Object Id=\"obj1\"><n0:pdu xmlns:n0=\"http://a.example\">\n<n1:elem1 xmlns:n1=\"http://b.example\">\ncontent\n</n1:elem1>\n</n0:pdu></Object>\n</Signature>\n    XML\n    assert_equal(clear_enveloping(expected), \n                 clear_enveloping(x_dup.toString), \"inclusive c14n\")\n    s.useExclusiveCanonicalizer('')\n    x_dup = s.sign\n    expected = <<-XML\n<?xml version=\"1.0\"?>\n<Signature xmlns=\"http://www.w3.org/2000/09/xmldsig#\">\n<SignedInfo>\n<CanonicalizationMethod Algorithm=\"http://www.w3.org/2001/10/xml-exc-c14n#\"/>\n<SignatureMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#rsa-sha1\"/>\n<Reference URI=\"#obj1\">\n<Transforms>\n<Transform Algorithm=\"http://www.w3.org/2001/10/xml-exc-c14n#\"/>\n</Transforms>\n<DigestMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#sha1\"/>\n<DigestValue>Z1BLe+Di+r3Q88UGYMg0U98+SkQ=</DigestValue>\n</Reference>\n</SignedInfo>\n<SignatureValue>V/BJBFvJNWJmrPoTcCiEJ+Kiho3oNcwWzBrJIA9uCgl5LXvgJsH1iedVHzPlDyfH\nzRxxjx3EiXBpmh92sPmboBcBEOJxEsXRmNNspLjdBlywoAJNSCXqdpWTKpjCeFxe\ntefTsPt2u3FvMrHHPzqWJBegHkO1egsAJQ4ZenyfJw6OkXttdj52UJDiUNaoa5mr\nucKC4ccFxbOgtGg7pkfJ1mStvChRABb1a27glf0HkgXrffDkXklVwqmGLw+QD2VK\nI3p3jWjicltVHHYazr1GzBG2MJ6JH/6q0cAS1tmXDQZPl/iV7kVX1kiJcjnUHbxi\nDaJbsDL5hmar/m7hOKDgHA==</SignatureValue>\n<Object Id=\"obj1\"><n0:pdu xmlns:n0=\"http://a.example\">\n<n1:elem1 xmlns:n1=\"http://b.example\">\ncontent\n</n1:elem1>\n</n0:pdu></Object>\n</Signature>\n    XML\n    assert_equal(clear_enveloping(expected), \n                 clear_enveloping(x_dup.toString), \"exclusive c14n\")\n\n    x = Xmlsig::XmlDoc.new\n    if x.loadFromString('<hello>world!</hello>') < 0\n        raise \"failed to create XML document\"\n    end\n    k = Xmlsig::Key.new\n    if k.loadFromFile('t/res/rsakey.pem','pem','') < 0\n        raise \"failed to load key\"\n    end\n    s = Xmlsig::Signer.new(x,k)\n    if s.addCertFromFile('t/res/rsacert.pem', 'pem') < 0\n        raise \"failed to add cert\"\n    end\n    x_dup = s.sign\n    expected = <<-XML\n<?xml version=\"1.0\"?>\n<Signature xmlns=\"http://www.w3.org/2000/09/xmldsig#\">\n<SignedInfo>\n<CanonicalizationMethod Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\"/>\n<SignatureMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#rsa-sha1\"/>\n<Reference URI=\"#obj-gXKdX4PpMA\">\n<Transforms>\n<Transform Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\"/>\n</Transforms>\n<DigestMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#sha1\"/>\n<DigestValue>FmuiTWZt7LioHNUGy5rSu+lqcNA=</DigestValue>\n</Reference>\n</SignedInfo>\n<SignatureValue>M7eBJdXlzNuyAFdsFG/6ZHydmmq4X7VLXWixvRnXDZM2xVY1eCi3JtPtOI/qNdEp\nFiV8/PvZ2fUQqMdGmKU2HX4RJyf2BuzlrsJ3lGXu84HDSDRnt6TChO2PThFjw7ZP\nvicru6g8PN6uK5aWDZ6AXT/aDvwiar1wN0LfAnthnXXByQtIwDbtQLvkbdcoDjVh\nYNn2FD/XjXsNtEH2Ny7wWsd3zsX3X3TbYJWyuXfvsg1/rS7m0hLYNM4EDIyAj8CF\nBAgYY55DLt8GX7jiKQD/0gYebp0NQCepL02drQ090URMksNyOYIpZwPv2lUfCOAn\n5LnFffld7w+CGCIdMegVaQ==</SignatureValue>\n<KeyInfo>\n<X509Data>\n<X509Certificate>MIIE3zCCBEigAwIBAgIBBTANBgkqhkiG9w0BAQQFADCByzELMAkGA1UEBhMCVVMx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\nNJ2D</X509Certificate>\n</X509Data>\n</KeyInfo>\n<Object Id=\"obj-gXKdX4PpMA\"><hello>world!</hello></Object>\n</Signature>\n    XML\n    assert_equal(clear_enveloping(expected), \n                 clear_enveloping(x_dup.toString), \n                 \"sign and attach pubkey x509 cert\")\n\n    x = Xmlsig::XmlDoc.new\n    if x.loadFromString('<hello>world!</hello>') < 0\n        raise \"failed to create XML document\"\n    end\n    k = Xmlsig::Key.new\n    if k.loadHMACFromString('secret') < 0\n        raise \"failed to load key\"\n    end\n    s = Xmlsig::Signer.new(x,k)\n    x_dup = s.sign\n    expected = <<-XML\n<?xml version=\"1.0\"?>\n<Signature xmlns=\"http://www.w3.org/2000/09/xmldsig#\">\n<SignedInfo>\n<CanonicalizationMethod Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\"/>\n<SignatureMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#hmac-sha1\"/>\n<Reference URI=\"#obj1\">\n<Transforms>\n<Transform Algorithm=\"http://www.w3.org/TR/2001/REC-xml-c14n-20010315\"/>\n</Transforms>\n<DigestMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#sha1\"/>\n<DigestValue>YSHe8XZ7FyBg4bJyb9nB4m0x+uo=</DigestValue>\n</Reference>\n</SignedInfo>\n<SignatureValue>a2xSwgkUYkby86Rw32ZuJjzrkJQ=</SignatureValue>\n<Object Id=\"obj1\"><hello>world!</hello></Object>\n</Signature>\n    XML\n    assert_equal(clear_enveloping(expected), \n                 clear_enveloping(x_dup.toString), \n                 \"sign with HMAC\")\nend\n"