Re: [dotnetopenauth] Possible Oversight in bug 47

[Andrew Arnott]

Hi Michael,

It appears you're right.  I've reopened the issue.
--
Andrew Arnott
"I [may] not agree with what you have to say, but I'll defend to the death your right to say it." - S. G. Tallentyre

On Thu, Jul 12, 2012 at 3:57 PM, Michael Vasiloff <michael....@gmail.com> wrote:

I've attempted to solve this issue to no avail and believe it may have something to do with the solution applied to bug 47.  Please refer to http://stackoverflow.com/questions/11353733/dotnetopenauth-and-fips-server-error for the steps I've taken to duplicate the issue.  What I noticed is that in the bug report (https://github.com/DotNetOpenAuth/DotNetOpenAuth/issues/47) joeudwin said that he was able to get this working when he added the new Security.Cyptography.dll, machine.config changes, and changed the source code to instead use HMAC.Create("HMACSHA512").  However, when I look at the solution from AArnott (https://github.com/DotNetOpenAuth/DotNetOpenAuth/commit/fc0c0e297798f12e556917dbb27f7966c181df10), it only has changes to SHA###...nothing to HMACSHA###.

Please enable FIPS on your machine and use the OpenIdRelyingPartyWebForms sample site and you'll see that an exception is thrown trying to use System.Security.Cryptography.HMACSHA256 even though the machine.config settings are in place (as mentioned in the first stackoverflow link).  Thank you for your help.

--
You received this message because you are subscribed to the Google Groups "DotNetOpenAuth" group.
To view this discussion on the web visit https://groups.google.com/d/msg/dotnetopenid/-/FxcEixACOpoJ.
To post to this group, send email to dotnet...@googlegroups.com.
To unsubscribe from this group, send email to dotnetopenid...@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/dotnetopenid?hl=en.

[Michael Vasiloff]

Excellent, I appreciate the assistance very much!  Thank you.