You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@santuario.apache.org by "Colm O hEigeartaigh (JIRA)" <ji...@apache.org> on 2015/12/07 14:47:11 UTC
[jira] [Closed] (SANTUARIO-428) Decryption failure for
KeyIdentifier.X509SubjectName and SkiKeyIdentifier
[ https://issues.apache.org/jira/browse/SANTUARIO-428?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Colm O hEigeartaigh closed SANTUARIO-428.
-----------------------------------------
> Decryption failure for KeyIdentifier.X509SubjectName and SkiKeyIdentifier
> -------------------------------------------------------------------------
>
> Key: SANTUARIO-428
> URL: https://issues.apache.org/jira/browse/SANTUARIO-428
> Project: Santuario
> Issue Type: Bug
> Security Level: Public(Public issues, viewable by everyone)
> Components: Java
> Affects Versions: Java 2.0.5
> Environment: JDK 7
> Reporter: sit
> Assignee: Colm O hEigeartaigh
> Priority: Minor
> Fix For: Java 2.0.6
>
>
> In encrypt() function with KeyIdentifier.X509SubjectName, or SkiKeyIdentifier, the KeyInfo in EncryptedKey is generated correspondantly (see below). But the decrypt() function fails with the message:
> XMLSecurityException: Key could not be resolved and no key was loaded for Decryption.
> Even if I set the XMLSecurityProperties.EncryptionUseThisCertificate for the decryption function. (ignored by API ?) The same code works with other KeyIdentifier(s) such as KeyValue, IssuerSerial, X509KeyIdentifier.
> --------------------------------------------------------------------
> <dsig:KeyInfo>
> <dsig:X509Data>
> <dsig:X509SKI>iVvT2bl+7ys0vup4tz+7YQ4a34E=</dsig:X509SKI>
> </dsig:X509Data>
> </dsig:KeyInfo>
>
> <dsig:KeyInfo>
> <dsig:X509Data> <dsig:X509SubjectName>CN=localhost,OU=EBICSServer,O=Axway,L=Puteaux,ST=France,C=FR</dsig:X509SubjectName>
> </dsig:X509Data>
> </dsig:KeyInfo>
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)