[prev in list] [next in list] [prev in thread] [next in thread]
List: xml-security-dev
Subject: RE: java signaturevalue verification
From: Miha Vidmar <miha.vidmar () hermes ! si>
Date: 2005-08-19 22:11:52
Message-ID: 71A2775A913CF2459521D91028E219BC02321553 () hal9000 ! hermes ! si
[Download RAW message or body]
No, I use Apache XMLSec. I meant CryptoManager from mozilla jss. I don't
know how exactly they are connected (i know that jss handles the
signaturevalue in some way), but whenever cryptomanager is initialized
with some certificate store, the signatures I load fail with invalid
signaturevalue.
-----Original Message-----
From: Sean Mullan
To: security-dev@xml.apache.org
Sent: 8/19/05 7:27 PM
Subject: Re: java signaturevalue verification
There is no class named CryptoManager in the Apache XMLSec Java sources.
It sounds like you are using some other XML Security implementation.
--Sean
Miha Vidmar wrote:
> Hi,
>
> i am wondering about something. I have a test case where I verify a
> simple signature that keeps failing on me. All the digests where
> calculated ok, only the signature value always failed. I discovered
that
> it's because I initialized cryptomanager. If I comment that code out
it
> works fine.
>
> Now i'm wondering why that happens? Does it fail because it tries to
> validate the entire certificate chain in case if cryptomanager is
> initialized or something? Any help would be greatly appreciated.
>
>
> P.S. I initialize cryptomanager using the following:
> CryptoManager.InitializationValues vals = new
> CryptoManager.InitializationValues(profileDir);
> CryptoManager.initialize(vals);
>
>
> ________________________________________
> Miha Vidmar
> HERMES Softlab d.d., Ljubljana, Slovenija
> Tel. +386 (0)1 586 52 00
> Fax. +386 (0)1 586 52 70
> mailto:miha.vidmar@hermes.si
> http://www.hermes.si <http://www.hermes.si/>
> ________________________________________
>
[Attachment #3 (text/html)]
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=ISO-8859-1">
<META NAME="Generator" CONTENT="MS Exchange Server version 5.5.2658.2">
<TITLE>RE: java signaturevalue verification</TITLE>
</HEAD>
<BODY>
<P><FONT SIZE=2>No, I use Apache XMLSec. I meant CryptoManager from mozilla jss. I \
don't</FONT> <BR><FONT SIZE=2>know how exactly they are connected (i know that jss \
handles the</FONT> <BR><FONT SIZE=2>signaturevalue in some way), but whenever \
cryptomanager is initialized</FONT> <BR><FONT SIZE=2>with some certificate store, the \
signatures I load fail with invalid</FONT> <BR><FONT SIZE=2>signaturevalue.</FONT>
</P>
<P><FONT SIZE=2>-----Original Message-----</FONT>
<BR><FONT SIZE=2>From: Sean Mullan</FONT>
<BR><FONT SIZE=2>To: security-dev@xml.apache.org</FONT>
<BR><FONT SIZE=2>Sent: 8/19/05 7:27 PM</FONT>
<BR><FONT SIZE=2>Subject: Re: java signaturevalue verification</FONT>
</P>
<P><FONT SIZE=2>There is no class named CryptoManager in the Apache XMLSec Java \
sources.</FONT> </P>
<P><FONT SIZE=2>It sounds like you are using some other XML Security \
implementation.</FONT> </P>
<P><FONT SIZE=2>--Sean</FONT>
</P>
<P><FONT SIZE=2>Miha Vidmar wrote:</FONT>
<BR><FONT SIZE=2>> Hi,</FONT>
<BR><FONT SIZE=2>> </FONT>
<BR><FONT SIZE=2>> i am wondering about something. I have a test case where I \
verify a </FONT> <BR><FONT SIZE=2>> simple signature that keeps failing on me. All \
the digests where </FONT> <BR><FONT SIZE=2>> calculated ok, only the signature \
value always failed. I discovered</FONT> <BR><FONT SIZE=2>that </FONT>
<BR><FONT SIZE=2>> it's because I initialized cryptomanager. If I comment that \
code out</FONT> <BR><FONT SIZE=2>it </FONT>
<BR><FONT SIZE=2>> works fine.</FONT>
<BR><FONT SIZE=2>> </FONT>
<BR><FONT SIZE=2>> Now i'm wondering why that happens? Does it fail because it \
tries to </FONT> <BR><FONT SIZE=2>> validate the entire certificate chain in case \
if cryptomanager is </FONT> <BR><FONT SIZE=2>> initialized or something? Any \
help would be greatly appreciated.</FONT> <BR><FONT SIZE=2>> </FONT>
<BR><FONT SIZE=2>> </FONT>
<BR><FONT SIZE=2>> P.S. I initialize cryptomanager using the following:</FONT>
<BR><FONT SIZE=2>> CryptoManager.InitializationValues vals = new </FONT>
<BR><FONT SIZE=2>> CryptoManager.InitializationValues(profileDir);</FONT>
<BR><FONT SIZE=2>> CryptoManager.initialize(vals);</FONT>
<BR><FONT SIZE=2>> </FONT>
<BR><FONT SIZE=2>> </FONT>
<BR><FONT SIZE=2>> ________________________________________</FONT>
<BR><FONT SIZE=2>> Miha Vidmar</FONT>
<BR><FONT SIZE=2>> HERMES Softlab d.d., Ljubljana, Slovenija</FONT>
<BR><FONT SIZE=2>> Tel. +386 (0)1 586 52 00</FONT>
<BR><FONT SIZE=2>> Fax. +386 (0)1 586 52 70</FONT>
<BR><FONT SIZE=2>> <A \
HREF="mailto:miha.vidmar@hermes.si">mailto:miha.vidmar@hermes.si</A></FONT> <BR><FONT \
SIZE=2>> <A HREF="http://www.hermes.si" TARGET="_blank">http://www.hermes.si</A> \
<<A HREF="http://www.hermes.si/" \
TARGET="_blank">http://www.hermes.si/</A>></FONT> <BR><FONT SIZE=2>> \
________________________________________</FONT> <BR><FONT SIZE=2>> </FONT>
</P>
</BODY>
</HTML>
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic