You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@santuario.apache.org by "sit (JIRA)" <ji...@apache.org> on 2015/09/09 15:13:45 UTC
[jira] [Created] (SANTUARIO-428) Descryption failure for
KeyIdentifier.X509SubjectName and SkiKeyIdentifier
sit created SANTUARIO-428:
-----------------------------
Summary: Descryption failure for KeyIdentifier.X509SubjectName and SkiKeyIdentifier
Key: SANTUARIO-428
URL: https://issues.apache.org/jira/browse/SANTUARIO-428
Project: Santuario
Issue Type: Bug
Security Level: Public (Public issues, viewable by everyone)
Components: Java
Affects Versions: Java 2.0.5
Environment: JDK 7
Reporter: sit
Assignee: Colm O hEigeartaigh
Priority: Minor
In encrypt() function with KeyIdentifier.X509SubjectName, or SkiKeyIdentifier, the KeyInfo in EncryptedKey is generated correspondantly (see below). But the decrypt() function fails with the message:
XMLSecurityException: Key could not be resolved and no key was loaded for Decryption.
Even if I set the XMLSecurityProperties.EncryptionUseThisCertificate for the decryption function. (ignored by API ?) The same code works with other KeyIdentifier(s) such as KeyValue, IssuerSerial, X509KeyIdentifier.
--------------------------------------------------------------------
<dsig:KeyInfo>
<dsig:X509Data>
<dsig:X509SKI>iVvT2bl+7ys0vup4tz+7YQ4a34E=</dsig:X509SKI>
</dsig:X509Data>
</dsig:KeyInfo>
<dsig:KeyInfo>
<dsig:X509Data> <dsig:X509SubjectName>CN=localhost,OU=EBICSServer,O=Axway,L=Puteaux,ST=France,C=FR</dsig:X509SubjectName>
</dsig:X509Data>
</dsig:KeyInfo>
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)