[SANTUARIO-428] Decryption failure for KeyIdentifier.X509SubjectName and SkiKeyIdentifier - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: Java 2.0.5
Fix Version/s: Java 2.0.6
Component/s: Java
Security Level: Public (Public issues, viewable by everyone)
Labels:
None
Environment:
JDK 7

Description

In encrypt() function with KeyIdentifier.X509SubjectName, or SkiKeyIdentifier, the KeyInfo in EncryptedKey is generated correspondantly (see below). But the decrypt() function fails with the message:

XMLSecurityException: Key could not be resolved and no key was loaded for Decryption.

Even if I set the XMLSecurityProperties.EncryptionUseThisCertificate for the decryption function. (ignored by API ?) The same code works with other KeyIdentifier(s) such as KeyValue, IssuerSerial, X509KeyIdentifier.

--------------------------------------------------------------------
<dsig:KeyInfo>
<dsig:X509Data>
<dsig:X509SKI>iVvT2bl+7ys0vup4tz+7YQ4a34E=</dsig:X509SKI>
</dsig:X509Data>
</dsig:KeyInfo>

<dsig:KeyInfo>
<dsig:X509Data> <dsig:X509SubjectName>CN=localhost,OU=EBICSServer,O=Axway,L=Puteaux,ST=France,C=FR</dsig:X509SubjectName>
</dsig:X509Data>
</dsig:KeyInfo>

Attachments

Activity

People

Assignee:: Colm O hEigeartaigh

Reporter:: sit

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 09/Sep/15 13:13

Updated:: 07/Dec/15 13:46

Resolved:: 10/Sep/15 11:53