No, I use Apache XMLSec. I meant CryptoManager from mozilla jss. I don't
know how exactly they are connected (i know that jss handles the
signaturevalue in some way), but whenever cryptomanager is initialized
with some certificate store, the signatures I load fail with invalid
signaturevalue.
-----Original Message-----
From: Sean Mullan
To: security-dev@xml.apache.org
Sent: 8/19/05 7:27 PM
Subject: Re: java signaturevalue verification
There is no class named CryptoManager in the Apache XMLSec Java sources.
It sounds like you are using some other XML Security implementation.
--Sean
Miha Vidmar wrote:
> Hi,
>
> i am wondering about something. I have a test case where I verify a
> simple signature that keeps failing on me. All the digests where
> calculated ok, only the signature value always failed. I discovered
that
> it's because I initialized cryptomanager. If I comment that code out
it
> works fine.
>
> Now i'm wondering why that happens? Does it fail because it tries to
> validate the entire certificate chain in case if cryptomanager is
> initialized or something? Any help would be greatly appreciated.
>
>
> P.S. I initialize cryptomanager using the following:
> CryptoManager.InitializationValues vals = new
> CryptoManager.InitializationValues(profileDir);
> CryptoManager.initialize(vals);
>
>
> ________________________________________
> Miha Vidmar
> HERMES Softlab d.d., Ljubljana, Slovenija
> Tel. +386 (0)1 586 52 00
> Fax. +386 (0)1 586 52 70
> mailto:[EMAIL PROTECTED]
> http://www.hermes.si <http://www.hermes.si/>
> ________________________________________
>
