Overuse of InclusivePrefixes list when signing.

Description

Current signature code adds all encountered prefixes to the inclusive list, essentially undermining use of exclusive c14n.

Environment

None

Activity

Scott Cantor 
December 17, 2010 at 2:39 PM

Closing after release.

Scott Cantor 
August 20, 2010 at 10:37 PM

http://svn.middleware.georgetown.edu/view/cpp-xmltooling?view=rev&revision=771

Added hook to marshaller for preprocessing.
Extended helper for nonvisible prefixes to pass up the whole declaration, and prevent removal of visible prefix if declared to a different namespace.
Detect attempts to add the same prefix with a different namespace.

http://svn.middleware.georgetown.edu/view/cpp-opensaml2?view=rev&revision=570

Populate root node with non-visible prefix declarations, and add to prefix list in content reference during marshalling stage.
Hook the marshaller in signable object impls.
Redo CR implementation to remove duplicate walk of prefixes.

Scott Cantor 
August 20, 2010 at 3:43 PM

Reopening, need to rework helper API to let me declare the to-be-inclusive namespaces on the object being signed.

Scott Cantor 
January 19, 2010 at 3:13 PM

Fixed

Details

Assignee

Reporter

Components

Fix versions

Affects versions

Created January 18, 2010 at 4:53 PM
Updated December 17, 2010 at 2:39 PM
Resolved August 20, 2010 at 10:37 PM