You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@santuario.apache.org by "Pavel Raev (JIRA)" <ji...@apache.org> on 2019/03/14 11:40:00 UTC
[jira] [Commented] (SANTUARIO-404) Add support for embedding
elliptic curve public keys in KeyValue element
[ https://issues.apache.org/jira/browse/SANTUARIO-404?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16792587#comment-16792587 ]
Pavel Raev commented on SANTUARIO-404:
--------------------------------------
It's 2019 and problem still there.
Here is where it was introduced.
[http://svn.apache.org/viewvc/santuario/xml-security-java/trunk/src/main/java/org/apache/xml/security/keys/content/KeyValue.java?r1=1720201&r2=1745493&diff_format=h]
Before that it was possible to produce signature (may be with wrong key info but it was fixable at application code).
Now we stuck with very old version of the library. It would be great at least let create signature as it could now. Just remove that exception or add some compatibility mode to ignore it.
> Add support for embedding elliptic curve public keys in KeyValue element
> ------------------------------------------------------------------------
>
> Key: SANTUARIO-404
> URL: https://issues.apache.org/jira/browse/SANTUARIO-404
> Project: Santuario
> Issue Type: Improvement
> Components: Java
> Affects Versions: Java 2.0.2
> Reporter: Nick Sawadsky
> Assignee: Colm O hEigeartaigh
> Priority: Minor
>
> It seems Santuario does not currently support embedding elliptic curve public keys in the KeyValue element of an XML signature. See, for example:
> http://svn.apache.org/viewvc/santuario/xml-security-java/trunk/src/main/java/org/apache/xml/security/keys/content/KeyValue.java?revision=1450197&view=markup
> This ticket is to request that this support be added. As EC certs gain in popularity, this seems like something that would be nice to have.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)