Updating release notes with GCM issue
Project: http://git-wip-us.apache.org/repos/asf/cxf/repo Commit: http://git-wip-us.apache.org/repos/asf/cxf/commit/2ce38563 Tree: http://git-wip-us.apache.org/repos/asf/cxf/tree/2ce38563 Diff: http://git-wip-us.apache.org/repos/asf/cxf/diff/2ce38563 Branch: refs/heads/2.7.x-fixes Commit: 2ce38563c3ad6ac7a927c9e4e1315a4a774f8ab2 Parents: f02aee0 Author: Colm O hEigeartaigh <[email protected]> Authored: Mon Jul 14 17:14:54 2014 +0100 Committer: Colm O hEigeartaigh <[email protected]> Committed: Mon Jul 14 17:15:24 2014 +0100 ---------------------------------------------------------------------- distribution/src/main/release/release_notes.txt | 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) ---------------------------------------------------------------------- http://git-wip-us.apache.org/repos/asf/cxf/blob/2ce38563/distribution/src/main/release/release_notes.txt ---------------------------------------------------------------------- diff --git a/distribution/src/main/release/release_notes.txt b/distribution/src/main/release/release_notes.txt index 02297b0..d2ede73 100644 --- a/distribution/src/main/release/release_notes.txt +++ b/distribution/src/main/release/release_notes.txt @@ -41,7 +41,7 @@ with the specified versions, are installed on your system: * Apache Maven 2.2.1 or 3.x to build the samples -3. Integrating CXF Into You Application +3. Integrating CXF Into Your Application If you use Maven to build your application, you need merely add appropriate dependencies. See the pom.xml files in the samples. @@ -142,7 +142,13 @@ for caveats when upgrading from CXF 2.6.x to 2.7.x. ** Task * [CXF-5565] - update to opensaml 2.6.1 +8. Known issues +If you are using AES encryption with GCM for symmetric encryption in +XML/WS-Security, there is a problem if you are using BouncyCastle < 1.49 or +1.50. To circumvent this either of the following steps can be taken: +a) Upgrade to BouncyCastle 1.49 (or 1.51 when it gets released) OR +b) Set the system property "org.apache.xml.security.cipher.gcm.useIvParameterSpec" to "true".
