You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@santuario.apache.org by "Colm O hEigeartaigh (JIRA)" <ji...@apache.org> on 2015/09/10 13:46:45 UTC
[jira] [Updated] (SANTUARIO-428) Descryption failure for
KeyIdentifier.X509SubjectName and SkiKeyIdentifier
[ https://issues.apache.org/jira/browse/SANTUARIO-428?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Colm O hEigeartaigh updated SANTUARIO-428:
------------------------------------------
Fix Version/s: Java 2.0.6
> Descryption failure for KeyIdentifier.X509SubjectName and SkiKeyIdentifier
> --------------------------------------------------------------------------
>
> Key: SANTUARIO-428
> URL: https://issues.apache.org/jira/browse/SANTUARIO-428
> Project: Santuario
> Issue Type: Bug
> Security Level: Public(Public issues, viewable by everyone)
> Components: Java
> Affects Versions: Java 2.0.5
> Environment: JDK 7
> Reporter: sit
> Assignee: Colm O hEigeartaigh
> Priority: Minor
> Fix For: Java 2.0.6
>
>
> In encrypt() function with KeyIdentifier.X509SubjectName, or SkiKeyIdentifier, the KeyInfo in EncryptedKey is generated correspondantly (see below). But the decrypt() function fails with the message:
> XMLSecurityException: Key could not be resolved and no key was loaded for Decryption.
> Even if I set the XMLSecurityProperties.EncryptionUseThisCertificate for the decryption function. (ignored by API ?) The same code works with other KeyIdentifier(s) such as KeyValue, IssuerSerial, X509KeyIdentifier.
> --------------------------------------------------------------------
> <dsig:KeyInfo>
> <dsig:X509Data>
> <dsig:X509SKI>iVvT2bl+7ys0vup4tz+7YQ4a34E=</dsig:X509SKI>
> </dsig:X509Data>
> </dsig:KeyInfo>
>
> <dsig:KeyInfo>
> <dsig:X509Data> <dsig:X509SubjectName>CN=localhost,OU=EBICSServer,O=Axway,L=Puteaux,ST=France,C=FR</dsig:X509SubjectName>
> </dsig:X509Data>
> </dsig:KeyInfo>
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)