SP 2.0: Metadata with EncryptionMethod elements fails to load

Ferenc Wagner wferi at niif.hu
Thu Jan 22 22:40:23 UTC 2009

Russ Allbery <rra at debian.org> writes:

> Ferenc Wagner <wferi at niif.hu> writes:
>> I'm finished with OpenSAML2, please upload with the two small fixes.
>> The first is indeed critical, the second is merely important, but at
>> the same time trivial.  These would be a pity to miss.  As for the
>> other packages, I asked around and nobody felt like commenting, so
>> those must be mostly OK.  If anything turns up, we can work on best
>> effort basis while time permits.
> Okay, I'm building now and will upload later today.

Great, thanks!  It occured to me that we may also take to opportunity
to remove the reference to WS-Trust.xsd from the SP catalog.  Sporadic
warnings appear about this in the 2.0 logs:

WARN XMLTooling.ParserPool [13]: warning on line 0, column 0, message: An exception occurred! Type:RuntimeException, Message:Warning: The primary document entity could not be opened. Id=/usr/share/xml/shibboleth/WS-Trust.xsd

I'm not sure about the best way to do this.  The following commits
could be cherry-picked or merged into the Lenny branch:


However, this would be dangerous in itself, as the version check in
the postinst compares to 2.0.dfsg1-4 for handling the
/etc/apache2/mods-enabled/shib.load -> shib2.load rename.  If
including that isn't possible (being a quite important change), then
the check version should be corrected as well.

And maybe there are some other little changes worth including.
What do you think?

More information about the Pkg-shibboleth-devel mailing list