santuario-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 47459] New: c14n11 does include parent xml:id attributes in encrypted data
Date Tue, 30 Jun 2009 13:22:28 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=47459

           Summary: c14n11 does include parent xml:id attributes in
                    encrypted data
           Product: Security
           Version: Java 1.4.2
          Platform: All
        OS/Version: All
            Status: NEW
          Keywords: RFC
          Severity: normal
          Priority: P2
         Component: Canonicalization
        AssignedTo: security-dev@xml.apache.org
        ReportedBy: staible@keyon.ch


Created an attachment (id=23913)
 --> (https://issues.apache.org/bugzilla/attachment.cgi?id=23913)
debug log

xml:id attributes are still not correctly handled when using c14n11 for
encryption.

Example:

When I encrypt the <data> element in the following xml document, the xml:id
attribute is added to the canonical form of the data tag during encryption.

<?xml version="1.0" encoding="UTF-8"?><test xml:id="ref1234">
  <data>12345678</data>
</test>

encrypt/decrypt using c14n11 creates the following:

<?xml version="1.0" encoding="UTF-8"?><test xml:id="ref1234">
  <data xml:id="ref1234">12345678</data>
</test>

See also attached debug log.

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

Mime
View raw message