'RE: java signaturevalue verification'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       xml-security-dev
Subject:    RE: java signaturevalue verification
From:       Miha Vidmar <miha.vidmar () hermes ! si>
Date:       2005-08-19 22:11:52
Message-ID: 71A2775A913CF2459521D91028E219BC02321553 () hal9000 ! hermes ! si
[Download RAW message or body]

No, I use Apache XMLSec. I meant CryptoManager from mozilla jss. I don't
know how exactly they are connected (i know that jss handles the
signaturevalue in some way), but whenever cryptomanager is initialized
with some certificate store, the signatures I load fail with invalid
signaturevalue.

-----Original Message-----
From: Sean Mullan
To: security-dev@xml.apache.org
Sent: 8/19/05 7:27 PM
Subject: Re: java signaturevalue verification

There is no class named CryptoManager in the Apache XMLSec Java sources.

It sounds like you are using some other XML Security implementation.

--Sean

Miha Vidmar wrote:
> Hi,
>  
> i am wondering about something. I have a test case where I verify a 
> simple signature that keeps failing on me. All the digests where 
> calculated ok, only the signature value always failed. I discovered
that 
> it's because I initialized cryptomanager. If I comment that code out
it 
> works fine.
>  
> Now i'm wondering why that happens? Does it fail because it tries to 
> validate the entire certificate chain in case if cryptomanager is 
> initialized or something?  Any help would be greatly appreciated.
>  
>  
> P.S. I initialize cryptomanager using the following:
>  CryptoManager.InitializationValues vals = new 
> CryptoManager.InitializationValues(profileDir);
>   CryptoManager.initialize(vals);
>  
>  
> ________________________________________
> Miha Vidmar
> HERMES Softlab d.d., Ljubljana, Slovenija
> Tel. +386 (0)1 586 52 00
> Fax. +386 (0)1 586 52 70
> mailto:miha.vidmar@hermes.si
> http://www.hermes.si <http://www.hermes.si/>
> ________________________________________
>  

[Attachment #3 (text/html)]

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=ISO-8859-1">
<META NAME="Generator" CONTENT="MS Exchange Server version 5.5.2658.2">
<TITLE>RE: java signaturevalue verification</TITLE>
</HEAD>
<BODY>

<P><FONT SIZE=2>No, I use Apache XMLSec. I meant CryptoManager from mozilla jss. I \
don't</FONT> <BR><FONT SIZE=2>know how exactly they are connected (i know that jss \
handles the</FONT> <BR><FONT SIZE=2>signaturevalue in some way), but whenever \
cryptomanager is initialized</FONT> <BR><FONT SIZE=2>with some certificate store, the \
signatures I load fail with invalid</FONT> <BR><FONT SIZE=2>signaturevalue.</FONT>
</P>

<P><FONT SIZE=2>-----Original Message-----</FONT>
<BR><FONT SIZE=2>From: Sean Mullan</FONT>
<BR><FONT SIZE=2>To: security-dev@xml.apache.org</FONT>
<BR><FONT SIZE=2>Sent: 8/19/05 7:27 PM</FONT>
<BR><FONT SIZE=2>Subject: Re: java signaturevalue verification</FONT>
</P>

<P><FONT SIZE=2>There is no class named CryptoManager in the Apache XMLSec Java \
sources.</FONT> </P>

<P><FONT SIZE=2>It sounds like you are using some other XML Security \
implementation.</FONT> </P>

<P><FONT SIZE=2>--Sean</FONT>
</P>

<P><FONT SIZE=2>Miha Vidmar wrote:</FONT>
<BR><FONT SIZE=2>&gt; Hi,</FONT>
<BR><FONT SIZE=2>&gt;&nbsp; </FONT>
<BR><FONT SIZE=2>&gt; i am wondering about something. I have a test case where I \
verify a </FONT> <BR><FONT SIZE=2>&gt; simple signature that keeps failing on me. All \
the digests where </FONT> <BR><FONT SIZE=2>&gt; calculated ok, only the signature \
value always failed. I discovered</FONT> <BR><FONT SIZE=2>that </FONT>
<BR><FONT SIZE=2>&gt; it's because I initialized cryptomanager. If I comment that \
code out</FONT> <BR><FONT SIZE=2>it </FONT>
<BR><FONT SIZE=2>&gt; works fine.</FONT>
<BR><FONT SIZE=2>&gt;&nbsp; </FONT>
<BR><FONT SIZE=2>&gt; Now i'm wondering why that happens? Does it fail because it \
tries to </FONT> <BR><FONT SIZE=2>&gt; validate the entire certificate chain in case \
if cryptomanager is </FONT> <BR><FONT SIZE=2>&gt; initialized or something?&nbsp; Any \
help would be greatly appreciated.</FONT> <BR><FONT SIZE=2>&gt;&nbsp; </FONT>
<BR><FONT SIZE=2>&gt;&nbsp; </FONT>
<BR><FONT SIZE=2>&gt; P.S. I initialize cryptomanager using the following:</FONT>
<BR><FONT SIZE=2>&gt;&nbsp; CryptoManager.InitializationValues vals = new </FONT>
<BR><FONT SIZE=2>&gt; CryptoManager.InitializationValues(profileDir);</FONT>
<BR><FONT SIZE=2>&gt;&nbsp;&nbsp; CryptoManager.initialize(vals);</FONT>
<BR><FONT SIZE=2>&gt;&nbsp; </FONT>
<BR><FONT SIZE=2>&gt;&nbsp; </FONT>
<BR><FONT SIZE=2>&gt; ________________________________________</FONT>
<BR><FONT SIZE=2>&gt; Miha Vidmar</FONT>
<BR><FONT SIZE=2>&gt; HERMES Softlab d.d., Ljubljana, Slovenija</FONT>
<BR><FONT SIZE=2>&gt; Tel. +386 (0)1 586 52 00</FONT>
<BR><FONT SIZE=2>&gt; Fax. +386 (0)1 586 52 70</FONT>
<BR><FONT SIZE=2>&gt; <A \
HREF="mailto:miha.vidmar@hermes.si">mailto:miha.vidmar@hermes.si</A></FONT> <BR><FONT \
SIZE=2>&gt; <A HREF="http://www.hermes.si" TARGET="_blank">http://www.hermes.si</A> \
&lt;<A HREF="http://www.hermes.si/" \
TARGET="_blank">http://www.hermes.si/</A>&gt;</FONT> <BR><FONT SIZE=2>&gt; \
________________________________________</FONT> <BR><FONT SIZE=2>&gt;&nbsp; </FONT>
</P>

</BODY>
</HTML>



[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic