SP 2.0: Metadata with EncryptionMethod elements fails to load
Ferenc Wagner
wferi at niif.hu
Thu Jan 22 22:40:23 UTC 2009
Russ Allbery <rra at debian.org> writes:
> Ferenc Wagner <wferi at niif.hu> writes:
>
>> I'm finished with OpenSAML2, please upload with the two small fixes.
>> The first is indeed critical, the second is merely important, but at
>> the same time trivial. These would be a pity to miss. As for the
>> other packages, I asked around and nobody felt like commenting, so
>> those must be mostly OK. If anything turns up, we can work on best
>> effort basis while time permits.
>
> Okay, I'm building now and will upload later today.
Great, thanks! It occured to me that we may also take to opportunity
to remove the reference to WS-Trust.xsd from the SP catalog. Sporadic
warnings appear about this in the 2.0 logs:
WARN XMLTooling.ParserPool [13]: warning on line 0, column 0, message: An exception occurred! Type:RuntimeException, Message:Warning: The primary document entity could not be opened. Id=/usr/share/xml/shibboleth/WS-Trust.xsd
I'm not sure about the best way to do this. The following commits
could be cherry-picked or merged into the Lenny branch:
533b5d91a3b26ee2b9f7883165ad3df563401312
43c6606f63b0986c1102d7018d3594a11f3f8236
a2d1d8e217965f237da6859d407c2a064e188e44
However, this would be dangerous in itself, as the version check in
the postinst compares to 2.0.dfsg1-4 for handling the
/etc/apache2/mods-enabled/shib.load -> shib2.load rename. If
including that isn't possible (being a quite important change), then
the check version should be corrected as well.
And maybe there are some other little changes worth including.
--
What do you think?
Regards,
Feri.
More information about the Pkg-shibboleth-devel
mailing list