[SANTUARIO-609] Remove call to Signature.getProvider() in debug log - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: Java 4.0.1, Java 3.0.4, Java 2.3.5
Component/s: None
Labels:
None

Description

The debug log message makes a call to Signature.getProvider() too early.
This causes Signature.chooseFirstProvider() to be called which matches the first provider always rather than the correct provider based on PrivateKey.getAlgorithm() when there are multiple providers.
This debug log was changed in this commit and introduced the issue: 1f48918

https://github.com/apache/santuario-xml-security-java/pull/240

Attachments

Activity

People

Assignee:: Colm O hEigeartaigh

Reporter:: Colm O hEigeartaigh

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 23/Nov/23 06:37

Updated:: 23/Nov/23 06:38

Resolved:: 23/Nov/23 06:38