[jira] [Comment Edited] (WSS-706) Support for Key Agreement using ECDH-ES

Thu, 25 Jan 2024 08:07:06 -0800 


    [ 
https://issues.apache.org/jira/browse/WSS-706?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17810954#comment-17810954
 ] 

Joze Rihtarsic edited comment on WSS-706 at 1/25/24 4:06 PM:
-------------------------------------------------------------

This is a bit awkward :(
It looks like this issue is still present in JDK 11
https://bugs.java.com/bugdatabase/view_bug.do?bug_id=JDK-8213363

One option is to skip XDH tests with JDK 11 or to set "AuxiliaryProvider" the 
BC to 1  place
to handle XDH parsing like this 


{code:java}
 if (!JDKTestUtils.isAlgorithmSupportedByJDK(algorithm)) {
  LOG.info("Add AuxiliaryProvider to execute test with algorithm [{}] and cert 
alias [{}]", algorithm,  certAlias);
  Security.addProvider(JDKTestUtils.getAuxiliaryProvider());
} else if (JDKTestUtils.getJDKVersion() == 11) {
  Security.insertProviderAt(JDKTestUtils.getAuxiliaryProvider(), 1 );
}
{code}



was (Author: JIRAUSER302640):
This is a bit awkward :(
It looks like this issue is still present in JDK 11
https://bugs.java.com/bugdatabase/view_bug.do?bug_id=JDK-8213363

One option is to skip XDH tests with JDK 11 or to set "AuxiliaryProvider" the 
BC to 1  place
to handle XDH parsing like this 


{code:java}
 if (!JDKTestUtils.isAlgorithmSupportedByJDK(algorithm)) {
                LOG.info("Add AuxiliaryProvider to execute test with algorithm 
[{}] and cert alias [{}]", algorithm,  certAlias);
                Security.addProvider(JDKTestUtils.getAuxiliaryProvider());
} else if (JDKTestUtils.getJDKVersion() == 11) {
                Security.insertProviderAt(JDKTestUtils.getAuxiliaryProvider(), 
1 );
}
{code}


> Support for Key Agreement using ECDH-ES
> ---------------------------------------
>
>                 Key: WSS-706
>                 URL: https://issues.apache.org/jira/browse/WSS-706
>             Project: WSS4J
>          Issue Type: New Feature
>          Components: WSS4J Core
>            Reporter: Joze Rihtarsic
>            Assignee: Colm O hEigeartaigh
>            Priority: Major
>             Fix For: 4.0.0, 3.0.3
>
>
> Recently a PR was opened for the 
> [ECDH-ES|https://www.w3.org/TR/xmlenc-core1/#sec-ECDH-ES]  implementation in 
> the santuario library.
> See the ticket:
> [https://issues.apache.org/jira/projects/SANTUARIO/issues/SANTUARIO-511]
> The purpose of this request/ticket is to update the wss4j library so that it 
> can use the new Key Agreement method  ECDH-ES. 



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to