I realize it's probably too late... But I literally just found a bug this evening. I'll open a Jira issue, but basically an xenc:EncryptionMethod/ds:DigestMethod as generated by XMLCipher encryptKey appears to be broken as it does not declare the signature namespace on the digest method element, so the "ds" prefix is not resolveable. It's a pretty simple fix. This affects encryption ops using RSA OAEP key transport with any explicit digest method (meaning not the implicit SHA-1 default).
Thanks Brent On 9/19/14 6:40 AM, Colm O hEigeartaigh wrote: > This is a vote to release Apache Santuario (XML Security for Java) > 2.0.2. It fixes a couple of bugs with the streaming code, as well as a > few dependency upgrades: > > https://issues.apache.org/jira/browse/SANTUARIO/fixforversion/12327163 > https://issues.apache.org/jira/browse/WSS-508 > > Maven artifacts: > > https://repository.apache.org/content/repositories/orgapachesantuario-1004/ > > SVN tag: > > http://svn.apache.org/viewvc/santuario/xml-security-java/tags/xmlsec-2.0.2/ > > Here is my +1. > > Colm. > > > -- > Colm O hEigeartaigh > > Talend Community Coder > http://coders.talend.com
