On 5/21/14 8:04 PM, Brent Putman wrote: > > The actual BC crypto ops seem to work ok. However I think they have a > bug around this: when used with GCMParameterSpec, after encryption > their Cipher#getIV() returns null. This is used by XMLCipher to get > the IV to concat with the encrypted bytes (see around line 1172). The > null here causes an NPE. So this currently doesn't just transparently > work as it should.
Just a quick update to my own post: Looks like this may already be fixed in BC for their next release (1.51): http://www.bouncycastle.org/jira/browse/BJA-473
