Uploaded image for project: 'CXF'
  1. CXF
  2. CXF-6464

The derived key versions of sign/encrypt in SymmetricBindingHandler don't support attachments

          Details

          • Type: Bug
          • Status: Closed
          • Priority: Major
          • Resolution: Fixed
          • Affects Version/s: 3.1.1
          • Fix Version/s: 3.0.6, 3.1.2
          • Component/s: WS-* Components
          • Labels:
            None
          • Estimated Complexity:
            Unknown

            Description

            Adding a sp:Attachment policy to the binding policy eventually causes client requests to fail with the following exception.

            Caused by: org.apache.wss4j.common.ext.WSSecurityException: Cannot setup signature data structure
            Original Exception was org.apache.wss4j.common.ext.WSSecurityException: no attachment callbackhandler supplied
            at org.apache.wss4j.dom.message.WSSecSignatureBase.addReferencesToSign(WSSecSignatureBase.java:204)
            at org.apache.wss4j.dom.message.WSSecDKSign.addReferencesToSign(WSSecDKSign.java:189)
            at org.apache.cxf.ws.security.wss4j.policyhandlers.SymmetricBindingHandler.doSignatureDK(SymmetricBindingHandler.java:732)
            at org.apache.cxf.ws.security.wss4j.policyhandlers.SymmetricBindingHandler.doSignature(SymmetricBindingHandler.java:757)
            at org.apache.cxf.ws.security.wss4j.policyhandlers.SymmetricBindingHandler.doSignBeforeEncrypt(SymmetricBindingHandler.java:342)
            at org.apache.cxf.ws.security.wss4j.policyhandlers.SymmetricBindingHandler.handleBinding(SymmetricBindingHandler.java:126)
            at org.apache.cxf.ws.security.wss4j.PolicyBasedWSS4JOutInterceptor$PolicyBasedWSS4JOutInterceptorInternal.handleMessageInternal(PolicyBasedWSS4JOutInterceptor.java:174)
            at org.apache.cxf.ws.security.wss4j.PolicyBasedWSS4JOutInterceptor$PolicyBasedWSS4JOutInterceptorInternal.handleMessage(PolicyBasedWSS4JOutInterceptor.java:108)
            at org.apache.cxf.ws.security.wss4j.PolicyBasedWSS4JOutInterceptor$PolicyBasedWSS4JOutInterceptorInternal.handleMessage(PolicyBasedWSS4JOutInterceptor.java:95)

              Attachments

                Issue Links

                depends upon

                Bug - A problem which impairs or prevents the functions of the product. WSS-541 No support for signing and encrypting attachments while using derived keys

                • Major - Major loss of function.
                • Closed

                  Activity

                    People

                    • Assignee:
                      coheigea Colm O hEigeartaigh
                      Reporter:
                      htrippaers Hugo Trippaers
                    • Votes:
                      0 Vote for this issue
                      Watchers:
                      2 Start watching this issue

                      Dates

                      • Created:
                        Updated:
                        Resolved: