narras-oss opened a new pull request, #240: URL: https://github.com/apache/santuario-xml-security-java/pull/240
The debug log message makes a call to Signature.getProvider() too early. This causes Signature.chooseFirstProvider() to be called which matched the first provider always rather than the correct provider based on PrivateKey.getAlgorithm() when there are multiple providers. This debug log was changed in this commit and introduced the issue: https://github.com/apache/santuario-xml-security-java/commit/1f4891867a938b29f2f1904be35b07d113d3eda9 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
