[prev in list] [next in list] [prev in thread] [next in thread]
List: xmlrpc-user
Subject: [jira] [Updated] (AXIOM-458) Issue with signature verification on messages containing MTOM attachmen
From: "Wally Dennis (JIRA)" <jira () apache ! org>
Date: 2014-03-12 18:34:44
Message-ID: JIRA.12701055.1394648918557.53220.1394649283995 () arcas
[Download RAW message or body]
[ https://issues.apache.org/jira/browse/AXIOM-458?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel \
]
Wally Dennis updated AXIOM-458:
-------------------------------
Description:
I am currently attempting to upgrade our server environment from Axis2 1.5.6 to Axis2 \
1.6.2 and have encountered a serious issue with any of our services that return MTOM \
attachments. All of our services use X.590 digital signatures on both the request \
and responses, and with the move to 1.6.2 the response signature verification is \
consistently failing. Basically, the digest validation step is failing to match the \
expected digest in almost every test I've attempted when using the service based on \
1.6.2:
1.5.6 Client->1.5.6 Service . . . works
1.5.6 Client->1.6.2 Service . . . fails
1.6.2 Client->1.6.2 Service . . . fails
1.6.2 Client->1.5.6 Service . . . works
was:
I am currently attempted to upgrade our server environment from Axis2 1.5.6 to Axis2 \
1.6.2 and have encountered a serious issue with any of our services that return MTOM \
attachments. All of our services use X.590 digital signatures on both the request \
and responses, and with the move to 1.6.2 the response signature verification is \
consistently failing. Basically, the digest validation step is failing to match the \
expected digest in almost every test I've attempted when using the service based on \
1.6.2:
1.5.6 Client->1.5.6 Service . . . works
1.5.6 Client->1.6.2 Service . . . fails
1.6.2 Client->1.6.2 Service . . . fails
1.6.2 Client->1.5.6 Service . . . works
> Issue with signature verification on messages containing MTOM attachments
> -------------------------------------------------------------------------
>
> Key: AXIOM-458
> URL: https://issues.apache.org/jira/browse/AXIOM-458
> Project: Axiom
> Issue Type: Bug
> Affects Versions: 1.2.13
> Environment: Axis2 1.6.2
> Reporter: Wally Dennis
> Priority: Blocker
>
> I am currently attempting to upgrade our server environment from Axis2 1.5.6 to \
> Axis2 1.6.2 and have encountered a serious issue with any of our services that \
> return MTOM attachments. All of our services use X.590 digital signatures on both \
> the request and responses, and with the move to 1.6.2 the response signature \
> verification is consistently failing. Basically, the digest validation step is \
> failing to match the expected digest in almost every test I've attempted when using \
> the service based on 1.6.2: 1.5.6 Client->1.5.6 Service . . . works
> 1.5.6 Client->1.6.2 Service . . . fails
> 1.6.2 Client->1.6.2 Service . . . fails
> 1.6.2 Client->1.5.6 Service . . . works
--
This message was sent by Atlassian JIRA
(v6.2#6252)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@ws.apache.org
For additional commands, e-mail: dev-help@ws.apache.org
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic