You are viewing a plain text version of this content. The canonical link for it is here.
Posted to wss4j-dev@ws.apache.org by "Colm O hEigeartaigh (JIRA)" <ji...@apache.org> on 2008/09/29 18:51:44 UTC
[jira] Commented: (WSS-63) RSA transformation string can be
externalized when creating Cipher Instance
[ https://issues.apache.org/jira/browse/WSS-63?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12635442#action_12635442 ]
Colm O hEigeartaigh commented on WSS-63:
----------------------------------------
If this is to be fixed for 1.5.5 you need to grant Apache the right to use the attached source code.
> RSA transformation string can be externalized when creating Cipher Instance
> ---------------------------------------------------------------------------
>
> Key: WSS-63
> URL: https://issues.apache.org/jira/browse/WSS-63
> Project: WSS4J
> Issue Type: Improvement
> Reporter: Muthiah Mohan
> Attachments: wss-63.txt
>
>
> WSS4J tries to create the Cipher Instance using the transformation String RSA/NONE/PKCS1PADDING
> I am not using Bouncy Castle as a JCE Provider and I have my own Security Provider that does not
> understand the Cipher Mode "NONE" but works fine with "ECB" as the Cipher Mode. . It would be really
> great if we do not hardcode this transformation string and take it from a System Property. If the
> value of the System Property is NULL then the default transformation (RSA/NONE/PKCS1PADDING) can be
> used. In my case I need to set the transformation string as RSA/ECB/PKCS1Padding.
> This needs a change to the "getCipherInstance" method of org/apache/ws/security/util/WSSecurityUtil.java
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
---------------------------------------------------------------------
To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: wss4j-dev-help@ws.apache.org