Closed GoogleCodeExporter closed 9 years ago
This broke my brain when I read this.
How did all the integration tests I wrote pass on every permutation of keyczar
(minus 50% of c++ since it's missing keyczartool features).
So I went through the code for SignedSessionEncrypter/Decrypter ciphertexts.
* Java version doesn't encode, so the user can encode after signing.
* The C# has option of encoding after signing or not at all.
* The Go encodes only after signing.
* Python version once upon a time encoded before signing, but it was a bug
fixed 2011, so it also only encodes after signing.
https://code.google.com/p/keyczar/source/detail?r=974885e7bb7b59429adff5d54974fb
abf8ff178d
So that leaves C++ version. Which I know at least SessionDecrypt passes against
each of the above versons.
https://code.google.com/r/jtuley-keyczar-dev/source/browse/cpp/src/keyczar/inter
op_test.cc?name=cpp/all#126
But even looking through the code it optionally encodes/decodes only on the
Sign and Verify step, and the raw binary is used for Encrypt and Decrypt (sent
to Key class directly)
https://code.google.com/p/keyczar/source/browse/cpp/src/keyczar/session.cc#136
https://code.google.com/p/keyczar/source/browse/cpp/src/keyczar/session.cc#178
So nothing encodes before signing.
So is this issue only the inconvenience of the java version not having an
option to encode the final result?
Original comment by jtu...@gmail.com
on 23 Jul 2013 at 2:17
You're right. For some reason I was looking at the SessionDecrypter instead of
the Signed SessionDecrypter in python. And C++ they are using the raw key as
well. Sorry for the false issue. Java still does not give the option to encode
the final result and python will always encode the final result. But these are
not major issues as you suggested.
Original comment by dlundb...@google.com
on 23 Jul 2013 at 4:35
Original issue reported on code.google.com by
dlundb...@google.com
on 22 Jul 2013 at 7:05