Re: JSR 106

I)? I've had an OK from the expert group (who I approached last week > > on the offchance), but thought I'd better check with the community. > > Not in the least! Go right ahead. > > +1 > > Erwin = Davanum Srinivas - http://webservices.apache.org/~dims/

Need (Fwd: WSS4J and interoperability)

support in xmlsec Signature. Thanks, dims --- Dittmann Werner <[EMAIL PROTECTED]> wrote: > From: Dittmann Werner <[EMAIL PROTECTED]> > To: "'Davanum Srinivas'" <[EMAIL PROTECTED]> > CC: [EMAIL PROTECTED] > Subject: WSS4J and interoperability >

Re: Patch for XMLCipher

nhancement such wrong coding, enhancement of > Serializer code to include comment, CDATA nodes, > etc. follow the next days. > > > Regards, > Werner > > > ATTACHMENT part 2 application/octet-stream name=XMLCipher.patch > ATTACHMENT part 3 application/octet-stre

Re: Patch for XMLCipher

fe has > been intruding :>. Will try to get to this in the next few days if > that's cool. If very urgent, come back to me! > > Cheers, > Berin > > Davanum Srinivas wrote: > > Berin, > > > > Could you please review and commit these patches?

Re: AW: [java] Large XML Files ( > 1 MB )

lication/x-pkcs7-signature name=smime.p7s = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: AW: [java] Large XML Files ( > 1 MB )

in the future and hope he can > > contribute a lot to the project, but I think we should stick to > > procedure.. > > > > And I think that's what Axl was referering to when we replied with: > > "The more you do, the more you are allowed to do! Go for it." > > +1. > > > > > Thanks, > > > > Erwin > > > > > > > ATTACHMENT part 2 application/x-pkcs7-signature name=smime.p7s = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: AW: [java] Large XML Files ( > 1 MB )

ure.. > > And I think that's what Axl was referering to when we replied with: "The > more you do, the more you are allowed to do! Go for it." > > Thanks, > > Erwin > = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: XMLCipher - enhancement for content encryption

he stuff, give it a shot without worrying about reading anything > > and mailing "I get this and such exception, what's wrong". > > > > So if we can make a distribution which will do the same thing it does > right > > now and your patch only makes it work without breaking anything at the > > moment I think that's pretty acceptable. If it breaks encryption only in > > some way I think we should have to sit down and have a discussion. If it > > breaks the signature stuff I think it would be wise to think about it long > > and hard, wait what the Xerces guys come up with and then discuss it some > > more :) > > > > If you have some more info, let me know, > > > > Erwin > = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: XMLCipher - enhancement for content encryption

Werner, did you see org.apache.xml.security.c14n.implementations.CanonicalizerBase? -- dims --- Davanum Srinivas <[EMAIL PROTECTED]> wrote: > Werner, > > my 2 cents, let's (make a copy of XMLSerializer) or (write an equivalent) that can > be maintained > as part of

Re: [WSS4J] XMLCipher - enhancement for content encryption

. > > If necessary I can provide the a Xerces jar file that contains the > fixed XMLSerializer. > > The questions is, how do we proceed here? > > Regards, > Werner > > > ATTACHMENT part 2 application/x-zip-compressed name=XMLCipher-2.zip = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: AW: AW: AW: Verification after decrypt

;Content mode as opposed to Element mode, also if your XML > > >>>contains CDATA or comments it may break. > > >>> > > >>>Please refer to some mails about this in the mail archive > > >> > > >>(December and > > >> > > >>>January). There was a fix for one particular problem but not as a > > >>>overall solution. > > >>> > > >>>Regards, > > >>>Werner > > >>> > > >>>-Ursprüngliche Nachricht- > > >>>Von: Hye-Jung Kim [mailto:[EMAIL PROTECTED] > > >>>Gesendet: Montag, 2. Februar 2004 00:51 > > >>>An: [EMAIL PROTECTED] > > >>>Betreff: Verification after decrypt > > >>> > > >>> > > >>>Hello, > > >>>I am trying to decrypt and verify data( signed & encrypted > > >> > > >>) using the > > >> > > >>>XML security suite and the > > >> > > >>signature.checkSignatureValue(cert) returns > > >> > > >>>false which means the signature varification has failed. I > > >> > > >>am not sure > > >> > > >>>why it failed since verification for signed only data and > > >> > > >>decrypt for > > >> > > >>>encrypted only data work fine. Can I simply decrypt the signed & > > >>>encrypted data first then pass it to my verifier to create > > >> > > >>XMLSignature > > >> > > >>>to call checkSignatureValue ? Please advise! Thanks in advance. > > >>> > > >>>Hyejung > > >>> > > >>> > > >>> > > >>> > > >>> > > >>> > > >>> > > >>> > > >> > > >> > > >> > > > > > > > > = Davanum Srinivas - http://webservices.apache.org/~dims/

RE: AW: AW: AW: Verification after decrypt

ld > be compatible with any JAXP compatible parser, easing maintenance headaches > somewhat. > > So it might actually be easier to maintain in the long run. > > Erwin = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: AW: Verification after decrypt - patch for XMLCipher

write the C14n method used to serlaize. > By default the code uses C14n with comments to serialize. > > Regards, > Werner > > > -Ursprüngliche Nachricht- > > Von: Davanum Srinivas [mailto:[EMAIL PROTECTED] > > Gesendet: Dienstag, 3. Februar 20

Re: Identifying elements by wsuId

ntById() return > such an element, we have to explicitly do putIdentifier(wsuId, element) > on the document. Is this the only way we can accomplish this now - will > apache provide support for this in future ? > Thanks, > Anil. > = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: Werner's patch

tests to cope with this, but just wanted to flag it. > > Cheers, > Berin > = Davanum Srinivas - http://webservices.apache.org/~dims/

One more Xerces dependency

(idValue, element); } Thanks, dims = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: One more Xerces dependency

urity > register and continue. > > That way, we could register the Id ourselves when we build the document. > > Cheers, > Berin > > Davanum Srinivas wrote: > > > Just found another hard-coded dependency on Xerces in IdResolver.java. Is there > > a

RE: One more Xerces dependency

and ifdef it). > > The Java is trickier because the Xerces version doesn't help you. They won't > build the DOM3 version as the "official" release yet, so you're left > probably testing with introspection for it. The docs on the site are for the > non-DOM3 ver

RE: One more Xerces dependency

; It should be simple to conditionally call those methods (if they exist) as a > consequence of the proprietary calls. And enable/disable the proprietary > schema as a library option. > > -- Scott > = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: One more Xerces dependency

ECTED]> wrote: > Hmm, why a WeakHashMap? That seems kind of dangerous if the programmer > is not aware you are using a WeakHashMap because entries could be removed if you > don't maintain a reference to the key. Or maybe I am missing something. > > Davanum Srinivas wrote: &g

RE: One more Xerces dependency

ather old?) > Thanks for pointing this out. I will look to see what we can do to remove > this dependancy. > Dims - Do you mind raising a bugzilla so we can track this? > > Cheers, > > > = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: DO NOT REPLY [Bug 26789] - Dependency on Xerces - Dirty Secret :)

004-02-09 19:58 --- > Created an attachment (id=10286) > Better patch (ignore the prev one) = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: Java xmlsec still contains base64 bug

ay.. > > > > What are the thoughts on the list of using jakarta-commons-codec? > > We can either take the entire library and use it as a library or could > > just rip out the needed classes and package those. > > I like the rip-out-and-use idea. Less dependenc

Re: Proposed Release Plan

o be done : > > 1) Site update. I'm nearly done on the C++ stuff, we just have to > organise for the Java code. > 2) Integration of the various bug fixes that are outstanding on the list. > 3) A check to ensure I caught everything in the re-license. > > For your com

Re: Adding a signature to a SOAP Header

er. > > I presume adding a signature to the SOAP Body would be easy enough, using > javax.xml.soap.SOAPBody.addDocument(org.w3c.dom.Document document), but the > SOAPHeader interface doesn't appear to have an equivalent method. > > Any suggestions how to achieve this? > >

RE: Using XML security slows down the Axis Call

me. > > Note I'm talking about supporting many signatures a second. If you don't > need that, Java's fine. > > -- Scott > = Davanum Srinivas - http://webservices.apache.org/~dims/

RE: Using XML security slows down the Axis Call

er if one could apply for a signing cert from > > Sun to sign the provider? > > We looked at it, I don't think we came to any conclusions. If somebody does > the legwork... > > The nice thing is it's easy to just keep adding stuff, whatever you don't > implement w

RE: Using XML security slows down the Axis Call

a shorthand > name. Then you stick in a reference to the provider at the top of the > various algorithm lists below. > > Looks like they've implemented MD5, SHA1, SHA1withRSA and RSA (which I think > doesn't work because the jar isn't signed). > > -- Scott > = Davanum Srinivas - http://webservices.apache.org/~dims/

RE: Using XML security slows down the Axis Call

n it a shorthand > name. Then you stick in a reference to the provider at the top of the > various algorithm lists below. > > Looks like they've implemented MD5, SHA1, SHA1withRSA and RSA (which I think > doesn't work because the jar isn't signed). > > -- Scott > = Davanum Srinivas - http://webservices.apache.org/~dims/

RE: Using XML security slows down the Axis Call

eJCE jar without > > having to sign it first). Right? > > Yes, signature providers can be unsigned, it's encryption providers that > can't be. So you have to implement the signature algorithm without calling > back into the JCE. > > -- Scott > = Davanum Srinivas - http://webservices.apache.org/~dims/

RE: Using XML security slows down the Axis Call

Scott, Can you please send me the details of EXACTLY what kind of jar signing needs to be done to get the RSA stuff working? I dug/googled a bit but could not find the details. thanks, dims --- Davanum Srinivas <[EMAIL PROTECTED]> wrote: > I just downloaded OpenSSL, compiled nati

config.xml / updates with latest algo's in JDK1.5?

Dear SUN folks (Axl/Vishal), Is the config.xml up-to-date? Can you please update the config.xml with the latest algo's available in JDK1.5? thanks, dims = Davanum Srinivas - http://webservices.apache.org/~dims/

List of items needed in NativeJCE?

"SHA1WithRSAEncryption" javax.crypto.Mac: "HMACSHA1" java.security.MessageDigest: "SHA-1", "SHA-256", "SHA-512", "RIPEMD160" Thanks, dims = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: config.xml / updates with latest algo's in JDK1.5?

uilds where BC is > not being called (for some reason). > I had not looked at 1.5 as I was trying to fix 1.4, and thus the comment > above :>. > Cheers, > > > = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: Please Remove me from your mailing list

curity-dev-unsubscribelink. Ax/ > ATTACHMENT part 2 application/x-pkcs7-signature name=smime.p7s = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: Native JCE proposal

se the > xml-security mailing list?) > > Cheers, > Berin > = Davanum Srinivas - http://webservices.apache.org/~dims/

RE: Native JCE proposal

e sure it all looks OK? Feel free to update, and come back to the > > > list if you are uncomfortable with the proposal? > > Made a couple of minor changes to reflect the fact that it's more of a > Shibboleth project contribution. > > > What about "Juice"? Like in s

Re: [VOTE] Native JCE Proposal

gt;> > >> To start : > >> > > Committers: > > [+1] Berin Lautenbach > [+1] Axl Mattheus > [+1] Erwin van der Koogh > [] Karel Wouters > > non-Committers: > > [] Davanum Srinivas > [] Scott Cantor > [] Walter Hoehn > [] Others? = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: Question on JCE 1.5 key wraps

BC JCE takes an algorithm of "AESWrap" or "DESEDEWrap" for the > >> unwrap algorithms. The SunJCE , I think, uses "AES" and "DESEde" > >> However I get decryption errors. > >> > >> Is there something special here that someone is aware of? (Am hoping > >> on of the Sun gurus in the list can help me here :>.) > >> > >> Cheers, > >> Berin > >> > > > > > > > > = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: Question on JCE 1.5 key wraps

having issues with symmetric key wraps. The > >>>>Baltimore interop tests all fail where a symmetric key wrap is used. > >>>>The BC JCE takes an algorithm of "AESWrap" or "DESEDEWrap" for the > >>>>unwrap algorithms. The SunJCE , I think, uses "AES" and "DESEde" > >>>>However I get decryption errors. > >>>> > >>>>Is there something special here that someone is aware of? (Am hoping > >>>>on of the Sun gurus in the list can help me here :>.) > >>>> > >>>>Cheers, > >>>>Berin > >>>> > >>> > >>> > >>> > >>> > > > > > > = > > Davanum Srinivas - http://webservices.apache.org/~dims/ > > > > = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: What's the Difference

in WRAP_MODE. > > Thanks in advance, > Vishal > = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: Question on JCE 1.5 key wraps

hRSA, something strange going on there ... when I have > more time I'll look into it. > > HTH, > Sean > > > Davanum Srinivas wrote: > > Sean, Berin, > > > > Done. Here's the updated JDK1.5 run after commenting out lib.jce from > > classpath.

RE: [VOTE] Native JCE Proposal

e could help with that). > > I think the point of Juice was that JCE were in the name...sounds like > there's another project with a similar name though. > > -- Scott > = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: Updates to support SunJCE provider

O padding and Key Wrap algorithms. If these are not > available, the unit tests will skip the relevant tests and output a warning. > > So the unit tests will now pass for BC, JDK 1.4 and JDK 1.5 providers. > > Note that all the signature tests pass for all three c

data files in XSS4J

files are covered. Can you please let us know if we can use these files? thanks, dims = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: Gump Succeeded!

been since October/November last year as far as I > can see.) > > Cheers, > Berin = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: license problems with test vectors in CVS

ose files out and maybe put them in a seperate download > somewhere? > > Erwin = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: license problems with test vectors in CVS

See http://marc.theaimsgroup.com/?l=xml-security-dev&m=107861829518928&w=2 for the original email. --- Davanum Srinivas <[EMAIL PROTECTED]> wrote: > Erwin, > > i sent a note out to the IBM folks asking for clatification. my VOTE would be to > wait for their > r

Fix for JDK1.3 missed (Re: cvs commit: xml-security/src_unitTests/org/apache/xml/security/test/interop IBMTest.java)

build.xml >libs .cvsignore >doc/site/src/documentation/content/xdocs/Java interop.xml >src_unitTests/org/apache/xml/security/test/interop > IBMTest.java > Log: > New IBM test vectors > PR: 27435 >

Re: Include latest Bouncy Castle?

nd there > has quite a few bugfixes in the meantime. > Erwin > > = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: just committed clover support

> > 9.Independent Contractors > > Assignment: The parties are independent contractors with respect to > each other, and nothing in this Agreement shall be construed as > creating an employer-employee relationship, a partnership, agency > relationship or a joint venture between t

Re: just committed clover support

se wouldn't make it so easy to commit stuff I probably would have > thought twice about it myself :D > > @Dims.. > > How exactly would the sharing work? > > Thanks, > > Erwin = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: WSS4J status

t; comprehensive answer - or Dims may chip in :>. > > Cheers, > Berin = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: data files in XSS4J

en my > preference would be to remove these from the CVS and not add them to the > release files. > > Cheers, > Berin > > > Davanum Srinivas wrote: > > > Sanjiva, > > > > We'd like to use the data files in XSS4J for interop testing an

Kill and Switch (Re: Updates to build-ant1.5)

they would all be included into the one high level > >build.xml? My only constraint woudl be can we wait until post 1.1? I'm > >already wary that I'm doing some large changes to the build file just > >prior to release. > > > > > +1. > > > > > > >>>Are we happy to move to this as the formal build.xml? > >>> > >>> > >>I can't wait to get rid of the beast :) > >> > >> > > > > > >. I'll take that as a +1. It's got +1 from me as well. If I get > >no vetos, lets make the change. We can rename the old one > >build-ant.deprecated or some such. > > > > > I was sick of build.xml eons ago - that is why I started > build-ant1.5.xml. The world would be a better place without > xml-security/build.xml. +1 to kill it. > > >Cheers, > > Berin > > > > > > > > > > > > > = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: rc1

m pretty sure you'll be able to :>. > > I've tagged all the Java files as J_1_1_0, so it'd be great if you could > retag anything that you decide needs to be fixed for the release! > > Cheers, > Berin = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: XKMS 2.0

that > > allow other key services and/or SOAP listeners to be configured around > > the XKMS server. > > > > Would be interesting to do something similar in Java. And I'd like to > > work on getting both through the Interop prior to the end of October. > > > > Anyway, very interested in thoughts. In the first instance I just want > > to create a simple prototype :>. > > > > Cheers, > > Berin > > = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: XKMS 2.0

erop prior to the end of October. > > > > Anyway, very interested in thoughts. In the first instance I just want > > to create a simple prototype :>. > > > > Cheers, > > Berin > > > > > -- > _ > Shivaram H. Mysore <[EMAIL PROTECTED]> > > JavaSoft, Sun Microsystems Inc. Co-Chair, W3C's XKMS WG > http://www.w3.org/2001/XKMS > > Direct: (408)276-7524 > Fax:(408)276-7674 > _ > = Davanum Srinivas - http://webservices.apache.org/~dims/

RE: Little optimization of JCEMapper

g in DOM) we could > probably cut down times all over the place. > > I'll re-wrap 1.1 tonight and make it official unless anyone objects > between now and then. > > Cheers, > Berin > > > = Davanum Srinivas - http://webservices.apache.org/~dims/

Fwd: JSR 105: Proposed Final Draft

FYI. Note: forwarded message attached. = Davanum Srinivas - http://webservices.apache.org/~dims/--- Begin Message --- The Proposed Final Draft Specification for JSR-000105 XML Digital Signature APIs is now available from http://jcp.org/en/jsr/stage?listBy=proposed as well as

Re: 1.1 Release

b, with updated docs. > > I'll also try to get an announcement out (for both Java and C++) in the > next few days. > > Cheers, > Berin > = Davanum Srinivas - http://webservices.apache.org/~dims/C:\APACHE\xml-security>ant -f build-ant1.5.xml test Buildfile:

Re: 1.1 Release

Here's the junit report - http://nagoya.apache.org/~dims/xmlsec-junit/ -- dims --- Davanum Srinivas <[EMAIL PROTECTED]> wrote: > Berin, > > I have trouble running "ant -f build-ant1.5.xml" straight from latest cvs...Am > getting test > failures

Re: 1.1 Release

our JRE? > > Cheers, > Berin > > Davanum Srinivas wrote: > > > Here's the junit report - http://nagoya.apache.org/~dims/xmlsec-junit/ > > > > -- dims > > > > --- Davanum Srinivas <[EMAIL PROTECTED]> wrote: > > > >>

Re: XKMS 2.0

ut, I guess. > > I sure will. ;) > > Anyhow, xml.linux.dk has been down for the last week or so, due to hardware > failure, but it's up and running again (with a new powersupply). > > -- > Best regards > Kenneth > = Davanum Srinivas - http://webservices.apache.org/~dims/

Re: XKMS 2.0

SS TC is XrML, SAML etc. thanks, dims --- Sean Mullan <[EMAIL PROTECTED]> wrote: > Davanum Srinivas wrote: > > Kenneth, > > > > we'd like to start an effort at Apache XML-Security project to implement XKMS in > > Java. We'd > also > > like t

Re: Samples now failing

np. we should add "mega-sample" target to the "test" itself. -- dims On Wed, 12 May 2004 22:34:29 +1000, Berin Lautenbach <[EMAIL PROTECTED]> wrote: > > Dims, > > I just tried to apply your new code for Merlin-23 and it's flushed out > that the mega-sample target is now throwing an exception w

Re: Samples now failing

> > > What do others think? > > I agree with your opinion. However, I think that this is actually fixable in > the test case by making sure that reference-1 is inserted in the document > before the manifest is generated. > > --Sean > > > > > >

Re: test_sixteen_external_dsa in,org.apache.xml.security.test.interop.BaltimoreTest

(Mind you - we really should look at integrating 23 into the unit tests.) > > Cheers, > Berin > > > > > Davanum Srinivas wrote: > > ok. So, Raul needs to know that we need to pass 16 for us to accept > > the patch. right? > > > > -- di

Re: test_sixteen_external_dsa in,org.apache.xml.security.test.interop.BaltimoreTest

Looks like merlin-xmldsig-sixteen has been deprecratedand we are WAY behind the times, we need to update to latest interop tests - http://lists.w3.org/Archives/Public/w3c-ietf-xmldsig/2002AprJun/att-0016/01-merlin-xmldsig-twenty-three.tar.gz - http://lists.w3.org/Archives/Public/w3c-ietf-xml

Re: Speed optimizations

awesome!!...please open up a bugzilla bug report and attach the "cvs diff -u" output. thx, dims - Original Message - From: [EMAIL PROTECTED] <[EMAIL PROTECTED]> Date: Sun, 02 May 2004 00:32:37 +0200 Subject: Speed optimizations To: [EMAIL PROTECTED] Hello, I have been w

Re: DO NOT REPLY [Bug 28752] - Some patches for c14 and various other improvment

Berin, Can we please accept this patch? thanks, dims On 5 May 2004 22:27:35 -, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > > DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG > RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT >

Re: merlin 23

gt; > (And thanks for adding it!) > > Cheers, > Berin > > > > > Davanum Srinivas wrote: > > > Berin, > > > > When you get a chance, can you please add the merlin 23 stuff? i added > > a patch to bugzilla. > > > > thanks, > > dims > > > > >

Re: TLP Status

#1: +1 on security TLP #2: How about VAJRA (http://www.hindunet.org/saraswati/indianarms.htm) #3: Don't count me out :) #4: That's gotta be you :) -- dims On Tue, 18 May 2004 22:20:16 +1000, Berin Lautenbach <[EMAIL PROTECTED]> wrote: > > I'd like to move this TLP thing forward a bit. > > W

Re: [Patch] build.src.jar target in build.xml

+1 from me. On Wed, 09 Jun 2004 15:17:46 +0530, Vishal Mahajan <[EMAIL PROTECTED]> wrote: > > All, > > I felt it would be useful to have a target that builds only the src jar. > The "build.jar" target that we have, builds the test and sample jars also. > I propose the attached patch which introd

Re: DO NOT REPLY [Bug 29507] - Support for IBM JCE provider in WebSphere v5

L PROTECTED] 2004-06-10 18:21 --- > Created an attachment (id=11818) > diff.txt > -- Davanum Srinivas - http://webservices.apache.org/~dims/

gump failures

Folks, Can we please apply this patch? (http://www.mail-archive.com/[EMAIL PROTECTED]/msg00954.html) and remove the extraneous "import org.apache.bcel.classfile.Node" in org\apache\xml\security\transforms\implementations\TransformC14NExclusive.java? Thanks, dims -- Davanum Srini

Re: gump failures

done. But my commits have not showed up yet :( -- dims On Mon, 21 Jun 2004 20:39:41 +1000, Berin Lautenbach <[EMAIL PROTECTED]> wrote: > > . You should now be able to apply yourself! > > Cheers, > Berin > > > > Davanum Srinivas wrote: > > &g

"ant test" using JDK15 without extra Xalan jar

Vishal, I was thinking about the xalan dependency and noticed that JDK15 has xalan under com.sun.apache.*...Are u planning to take a stab at being able to run "ant test" using JDK15 without extra Xalan jar thanks, dims -- Davanum Srinivas - http://webservices.apache.org/~dims/

Re: Hello world?

Awesomewe needed an xpath impl (independent of xalan) for the xml-security project that works with 1.3, 1.4 and 1.5 :) -- dims On Tue, 22 Jun 2004 09:40:24 -0400, Norman Walsh <[EMAIL PROTECTED]> wrote: > > / Davanum Srinivas <[EMAIL PROTECTED]> was heard to say: >

Re: Hello world?

22 Jun 2004 10:44:02 -0400, Davanum Srinivas <[EMAIL PROTECTED]> wrote: > > > > Awesomewe needed an xpath impl (independent of xalan) for the > > xml-security project that works with 1.3, 1.4 and 1.5 :) > > > > -- dims > > > > On Tu

Re: Sun's J2SE 1.5 JCE provider now passes all tests

iredKey="AES" /> > + + JCEName="AESWrap" > + RequiredKey="AES" /> > > > http://www.w3.org/2001/04/xmlenc#kw-aes256"; > *** > *** 479,484

Re: "ant test" using JDK15 without extra Xalan jar

s: 0, Errors: 5, Time elapsed: 0.801 sec On Tue, 22 Jun 2004 11:47:07 -0700, Vishal Mahajan <[EMAIL PROTECTED]> wrote: > > Dims, > > Davanum Srinivas wrote: > > > > Vishal, > > > > I was thinking about the xalan dependency and noticed that JDK15 has >

Re: sun.security.util.DerValue not available on IBM SDKs

xception e) { > > throw new MyErrorException(e); > > } catch (KeyResolverException e) { > > throw new MyErrorException(e); > > } > > return cert; > > } else { > > throw new MyErrorException( > > "Message contains no KeyInfo. " + "Cannot check dsig."); > > } > > } else { > > throw new MyErrorException( > > "Message contains no X509Data. " + "Cannot check dsig."); > > } > > } > > -- Davanum Srinivas - http://webservices.apache.org/~dims/

Re: BouncyCastle version

with JDK 1.4.2? > > Thanks Dominik > > -- > +++ Jetzt WLAN-Router fïr alle DSL-Einsteiger und Wechsler +++ > GMX DSL-Powertarife zudem 3 Monate gratis* http://www.gmx.net/dsl > > -- Davanum Srinivas - http://webservices.apache.org/~dims/

Re: BouncyCastle version

alle DSL-Einsteiger und Wechsler +++ > GMX DSL-Powertarife zudem 3 Monate gratis* http://www.gmx.net/dsl > > -- Davanum Srinivas - http://webservices.apache.org/~dims/

Re: how we can encode SHA-1 hash to Base64

on of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message. -- Davanum Srini

Re: sun.security.util.DerValue not available on IBM SDKs

ctet > String from the DER-encoded extension value and then strip off the octet tag. > > If I have some time later, I'll send a snippet of code. > > --Sean > > > > Davanum Srinivas wrote: > > would you be able to compile a fresh version of xml-securit

Re: "ant test" using JDK15 without extra Xalan jar

0700, Vishal Mahajan <[EMAIL PROTECTED]> wrote: > Dims, > > Davanum Srinivas wrote: > > > > Vishal, > > > > I was thinking about the xalan dependency and noticed that JDK15 has > > xalan under com.sun.apache.*...Are u planning to take a stab at being > &g

"ant test" fails with 1.4.2_05 (used to work with 1.4.2._04)

e0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) -------

Re: "ant test" fails with 1.4.2_05 (used to work with 1.4.2._04)

FYI, if i drop bc-jce-jdk13-124.jar into jre\lib\endorsed it works fineSo it's probably a bug in the javax.crypto / local_policy.jar / US_export_policy.jar -- dims On Mon, 12 Jul 2004 12:27:00 -0400, Davanum Srinivas <[EMAIL PROTECTED]> wrote: > FYI, "JDK 1.3.1_11&quo

Re: sun.security.util.DerValue not available on IBM SDKs

back today after JavaOne and vacation but swamped in email, etc... I > should be able to look at this later in the week. > > --Sean > > > > Davanum Srinivas wrote: > > Sean, > > > > Are u guys back from vacation yet? :) > > > > -- dims &

Re: "ant test" fails with 1.4.2_05 (used to work with 1.4.2._04)

oll to bottom of page). > > --Sean > > > > Davanum Srinivas wrote: > > FYI, if i drop bc-jce-jdk13-124.jar into jre\lib\endorsed it works > > fineSo it's probably a bug in the javax.crypto / local_policy.jar > > / US_export_policy.jar > > >

Re: "ant test" fails with 1.4.2_05 (used to work with 1.4.2._04)

E/jre/lib/security/local_policy.jar > META-INF/MANIFEST.MF > META-INF/JCE_DSA.SF > META-INF/JCE_DSA.DSA > META-INF/JCE_RSA.SF > META-INF/JCE_RSA.RSA > META-INF/ > default_local.policy > > > > > Davanum Srinivas wrote: > > yep. i did. > > > > -- dims &

Re: "ant test" fails with 1.4.2_05 (used to work with 1.4.2._04)

lse try testing with 1.4.2_05? Remember you must > install the unlimited JCE strength policy files for all tests to pass. > > Thanks, > Sean > > > > Davanum Srinivas wrote: > > C:\JDK14\jre\lib\security>jar tvf local_policy.jar > >169 Mon Jun 16 15:36:32 E

Re: JDK 1.4.2_05 incompatibility

_ENTITY_URI; > public static final int FUNC_DOCLOCATION; > public static org.apache.xpath.compiler.FuncLoader[] m_functions; > private static final int NUM_BUILT_IN_FUNCS; > private static final int NUM_ALLOWABLE_ADDINS; > static int m_funcNextFreeIndex; > public org.apache.xpath.compiler.FunctionTable(); > public static org.apache.xpath.functions.Function getFunction(int); >throws javax/xml/transform/TransformerException > public static int > installFunction(java.lang.String,org.apache.xpath.Expression); > public static void installFunction(org.apache.xpath.Expression,int); > static {}; > } > > -- Davanum Srinivas - http://webservices.apache.org/~dims/

Re: Java WSDP 1.4 and JSR 105 for XML DSigs

APIs to the standard? I presume that will take > place rather than just relying on Sun's version as it rolls out (ever so > slowly!)... Has anybody determined how hard it is to migrate to the > standard API? > > Thanks, > David > > -- Davanum Srinivas - http://webservices.apache.org/~dims/

Re: XmlDsig error with base64Binary Type

ound is > > not to validate during parse. > > It is possible with Xerces, we do it in OpenSAML to enable signing a signed > object, which of course includes base64 data. There's a parser "feature" or > whatever they call it to disable schema normalization

Re: XmlDsig error with base64Binary Type

ther one has to do with something that schema > processing overrides. > > -- Scott > > -- Davanum Srinivas - http://webservices.apache.org/~dims/

Re: [Java] Problem in config.xml with multiple provider entries

which is awkward. > > Vishal Mahajan has a fix for this problem and will be putting it back soon. > > --Sean > -- Davanum Srinivas - http://webservices.apache.org/~dims/

Re: Bug/regression in XMLSignatureInput.getNodeSet()

tNodeSet.isEmpty()) { > ! > XMLUtils.circumventBug2650(XMLUtils.getOwnerDocument(this._inputNodeSet)); > !} > return this._inputNodeSet; > } else if (this.isOctetStream()) { > DocumentBuilderFactory dfactory = DocumentBuilderFactory.newInstance(); > > -- Davanum Srinivas - http://webservices.apache.org/~dims/

  1   2   >