Hi It also seems to be an issue with a IdP SAMLResponse from okta:
I have attached the xml as test xml and the base64 version as well as
the private key (that private key is from perl-Net-SAML2 and is
already public so it is fine to post). My perl XML::Enc module
decrypts this file without any issues.
I am continuing to review.
Tim
xmlsec1 --decrypt --privkey-pem sign-private-rsa.pem test.xml
func=xmlSecXPathDataExecute:file=xpath.c:line=246:obj=unknown:subj=xmlXPtrEval:error=5:libxml2
library function
failed:expr=xpointer(id('_040a0aae3380dc9275ae08c24a8ddd72')); xml
error: 0: NULL
func=xmlSecXPathDataListExecute:file=xpath.c:line=330:obj=unknown:subj=xmlSecXPathDataExecute:error=1:xmlsec
library function failed:
func=xmlSecTransformXPathExecute:file=xpath.c:line=430:obj=xpointer:subj=xmlSecXPathDataListExecute:error=1:xmlsec
library function failed:
func=xmlSecTransformDefaultPushXml:file=transforms.c:line=2108:obj=xpointer:subj=xmlSecTransformExecute:error=1:xmlsec
library function failed:
func=xmlSecTransformCtxXmlExecute:file=transforms.c:line=1044:obj=xpointer:subj=xmlSecTransformPushXml:error=1:xmlsec
library function failed:
func=xmlSecTransformCtxExecute:file=transforms.c:line=1092:obj=unknown:subj=xmlSecTransformCtxXmlExecute:error=1:xmlsec
library function failed:
func=xmlSecKeyDataRetrievalMethodXmlRead:file=keyinfo.c:line=1108:obj=retrieval-method:subj=xmlSecTransformCtxExecute:error=1:xmlsec
library function failed:
func=xmlSecKeyInfoNodeRead:file=keyinfo.c:line=121:obj=retrieval-method:subj=xmlSecKeyDataXmlRead:error=1:xmlsec
library function failed:node=RetrievalMethod
func=xmlSecKeysMngrGetKey:file=keys.c:line=1234:obj=unknown:subj=xmlSecKeyInfoNodeRead:error=1:xmlsec
library function failed:node=KeyInfo
func=xmlSecEncCtxEncDataNodeRead:file=xmlenc.c:line=779:obj=unknown:subj=unknown:error=45:key
is not found:encMethod=aes256-gcm
func=xmlSecEncCtxDecryptToBuffer:file=xmlenc.c:line=596:obj=unknown:subj=xmlSecEncCtxEncDataNodeRead:error=1:xmlsec
library function failed:
func=xmlSecEncCtxDecrypt:file=xmlenc.c:line=524:obj=unknown:subj=xmlSecEncCtxDecryptToBuffer:error=1:xmlsec
library function failed:
Error: failed to decrypt file
Error: failed to decrypt file "test.xml"
Timothy Legge
[email protected]
[email protected]
On Tue, Mar 29, 2022 at 1:25 PM Timothy Legge <[email protected]> wrote:
>
> perfect. I do get errors but my laptop is home at the moment. I will test
> again tonight and let you know.
>
> Tim
>
> On Tue., Mar. 29, 2022, 12:57 p.m. Aleksey Sanin, <[email protected]> wrote:
>>
>> Well, the gcm code for openssl is here:
>>
>> https://github.com/lsh123/xmlsec/blob/4b6ab2d86b71f8642f19ab3b7a0777984b6bce9a/src/openssl/ciphers.c#L80
>>
>> so adding printfs in these functions would help.
>>
>> Do you get any errors?
>>
>> Aleksey
>>
>> On 3/29/22 11:51 AM, Timothy Legge wrote:
>> > Hi
>> >
>> > I am working on adding support for aes*-gcm to perl's XML::Enc. I can:
>> >
>> > 1. Decrypt SAML responses encrypted with aes*-gcm using XML::Enc
>> > 2. Decrypt xmlsec encrypted aes*-gcm XML using XML::Enc
>> > 3. Encrypt XML using aes*-gcm with XML::Sec
>> > 4. Decrypt XML that was encrypted with XML::Sec using ases*-gcm
>> >
>> > However, I cannot use xmlsec to decrypt XML::Sec encrypted XML that
>> > uses aes*-gcm.
>> >
>> > I can't think of any issues that would allow me to encrypt and decrypt
>> > XML successfully with XML::Enc but not allow xmlsec to decrypt those
>> > files.
>> >
>> > I was wondering if there is a debug flag for XML sec that would allow
>> > me to output the following:
>> >
>> > 1. base64 of the CipherValue it reads from the XML file
>> > 2. base 64 of IV
>> > 3 base64 of encrypted data
>> > 4 base 64 of the tag
>> > 5 base 64 of the key
>> >
>> > I don't mind adding some print debugging and recompiling if you can
>> > point me to a starting place. It has been a while since I wrote much
>> > C but I have no issues. Finding the correct spot though...
>> >
>> > Tim
>> >
>> > Timothy Legge
>> > [email protected]
>> > [email protected]
>> > _______________________________________________
>> > xmlsec mailing list
>> > [email protected]
>> > http://www.aleksey.com/mailman/listinfo/xmlsec
sign-private-rsa.pem
Description: application/x509-ca-cert
<?xml version="1.0" encoding="UTF-8"?><saml2p:Response Destination="https://netsaml2-testapp.local/consumer-post"; ID="id3435569302739881667113987" InResponseTo="NETSAML2_737165d676199942b9e7f903ad34d07d" IssueInstant="2022-03-28T23:36:00.292Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol"><saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">http://www.okta.com/exk28wtb7tuOef5F95d7</saml2:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#";><ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/><ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/><ds:Reference URI="#id3435569302739881667113987"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><ds:DigestValue>C8Cnun3HB9WeIk09fjcXHoBd1l67FUV5dt5kp8ac6ZQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>sTY2pdH3XUNowEhFwTekWRnsdxQ3USNgOsObAhAWOh0z3ry0y2S/rrYi38sma/M3W0oBak2ryU6cI+updLnhHnF7zwO9rgyqguETXTE+9W12J0qr6uLHlBONrruHSLnHsLcJchgaucFypQLmGdc1h8pHErgWZTf8uHeL4CtQpGuiUAHtMFvMbYboBnxsS7YR5FGwA78sOeT6EytHJwJTH/e38S6NRoV2ZW7Wpeb4wZupVPUlH3v5bzVQWo9syRd9wapoTJTPxK4oo0WD0hbzSHvbJbEiN1ER/mgJmrQTsPhD47BQpf8xngr6tjQM/aduAYwFYVxvqKf8yw3cZcCgOw==</ds:SignatureValue><ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIIDqDCCApCgAwIBAgIGAXyAendDMA0GCSqGSIb3DQEBCwUAMIGUMQswCQYDVQQGEwJVUzETMBEG A1UECAwKQ2FsaWZvcm5pYTEWMBQGA1UEBwwNU2FuIEZyYW5jaXNjbzENMAsGA1UECgwET2t0YTEU MBIGA1UECwwLU1NPUHJvdmlkZXIxFTATBgNVBAMMDGRldi0zMzg4OTc2MzEcMBoGCSqGSIb3DQEJ ARYNaW5mb0Bva3RhLmNvbTAeFw0yMTEwMTQyMDIzNDJaFw0zMTEwMTQyMDI0NDJaMIGUMQswCQYD VQQGEwJVUzETMBEGA1UECAwKQ2FsaWZvcm5pYTEWMBQGA1UEBwwNU2FuIEZyYW5jaXNjbzENMAsG A1UECgwET2t0YTEUMBIGA1UECwwLU1NPUHJvdmlkZXIxFTATBgNVBAMMDGRldi0zMzg4OTc2MzEc MBoGCSqGSIb3DQEJARYNaW5mb0Bva3RhLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALQqx4q6YR7p1vJD5QavXIm+uZV05mdZQWuP8duIenHhCrTdA0fpu3UagNsoSPgSeNu8GZ8B 2bcfMWH6tVQS/ksDBSMUhC3BUzc7YBfc6ieaglY1chVRM3S8yp5mC1hN+WurDIk4/jXj73GGEGk9 BbhBVXYoR6UNUZIwJjyAXssWa3QHqTbYpaoeK+1ZQVkMmUZiNIc7m8dOER6abfZI1XHbzIBf5Wru GmWldGfXoE5LoM1KJWQC+fReX2iA8KRJ2bhEBgVt3fk51ohqfMor0zeghe0xyTCpnTdc1NESBnVK eRMnGD3tkbLff3LKUuPOBsylEczbNQ5/bkxHn6/6168CAwEAATANBgkqhkiG9w0BAQsFAAOCAQEA rNTZRsPPrgXkVJJN0mxVQjVJ3EAmephS2PrOp50+658osDDfX4S0FEJeoA+BLKxBpgY+Mp8zImiU IUrjvXzJ9jb+PbwpAxcuSvVMjLdfuF4pu0D+0XcLMocOs0VFcgArqn32/fSLD0z+QKMKj6WMGBUH KjmWjOaWYfffwpSVyadIT7h4FGpisrRGgmDqINvXVPFs1Ddo+wn9t8+umSEExogm0MRV6IKsk++p aecdOwH0uDaVQQiX6eGd0zWleVNeNvmV8IpVQRwtWY3dfxcwBDdNoUWUUrFg7/nTZpqrz0F19DFh +a7Q9EPZQ45D3qM+vtx7VnikOILwQWXKTFx4VQ==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><saml2p:Status xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol"><saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/></saml2p:Status><saml2:EncryptedAssertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"><xenc:EncryptedData Id="_9c7a70c9c35491cbad4880b0555743aa" Type="http://www.w3.org/2001/04/xmlenc#Element"; xmlns:xenc="http://www.w3.org/2001/04/xmlenc#";><xenc:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"; xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"/><ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#";><ds:RetrievalMethod Type="http://www.w3.org/2001/04/xmlenc#EncryptedKey"; URI="#_040a0aae3380dc9275ae08c24a8ddd72"/></ds:KeyInfo><xenc:CipherData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#";><xenc:CipherValue>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</xenc:CipherValue></xenc:CipherData></xenc:EncryptedData><xenc:EncryptedKey Id="_040a0aae3380dc9275ae08c24a8ddd72" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#";><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"; xmlns:xenc="http://www.w3.org/2001/04/xmlenc#";><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"; xmlns:ds="http://www.w3.org/2000/09/xmldsig#"/></xenc:EncryptionMethod><ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#";><ds:X509Data><ds:X509Certificate>MIIF0zCCA7ugAwIBAgIUTVUDAxHeTfknh9Jtyij/ZCWaZE4wDQYJKoZIhvcNAQELBQAweDELMAkG A1UEBhMCQ0ExFjAUBgNVBAgMDU5ldyBCcnVuc3dpY2sxEDAOBgNVBAcMB01vbmN0b24xEzARBgNV BAoMCk5ldDo6U0FNTDIxKjAoBgNVBAMMIU5ldDo6U0FNTDIgU1AgU2lnbmluZyBDZXJ0aWZpY2F0 ZTAgFw0yMTEwMTYxODAwNTlaGA8yMTIxMDkyMjE4MDA1OVoweDELMAkGA1UEBhMCQ0ExFjAUBgNV BAgMDU5ldyBCcnVuc3dpY2sxEDAOBgNVBAcMB01vbmN0b24xEzARBgNVBAoMCk5ldDo6U0FNTDIx KjAoBgNVBAMMIU5ldDo6U0FNTDIgU1AgU2lnbmluZyBDZXJ0aWZpY2F0ZTCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBALJAo+ANmR4YZ+Vxs+NgNSaa1hVZVu6QBx4gN6513ojOrObdYQ3w 7mvMS2gl4Oi5kaEp1QRFLt6otOnbqmZU4aR7EowTTfMm2DQFTujRej1WMfSH1eoOJcVEPWy73B6B VyRVX3Qjbx8nVh1ok6OhTauNwZPqoxsw26d1zqa8kGk6ormcfsukQuGArxpMKNqNMMfsK92HY4UA H/1vtPgZ6kPsZzSLhUXgw9fQrsuCUCcn2fFBBR2Ij5lkbwhxgUAsicpqKouxW5nSOW4qsNr0+3pS /mk5+l5omfiFapx0B9D9Mq8b9DNmRqogBI0LbME3Rl32VxaPThLw95esMwg+8/aId13MkSULR9IA LLueRGj5bZJUyopMaJF6M8+mNd8VWR2Onuy3kaTWCR5Qefvegs0vsfgtt1+zHsMzpqq09UBMFUPi RthRDDC/0Lhz9sMxl2jxMXkUYmlUy4l5PJt7/zOyp+9ZgPdr+Iz82aFxPRyMQ1pGBFxhHdkAAWSy ij1tejzmiO6/IWhTa3O/mPuQcyL/IzTcgrXWR1Jz0xfHUfMx4YdLMuJePB/6TcRqNtUo4lrT3KKw D4VFsNo4WltRiYFCnb0BCtrA06jxL/0G4BkFz3ysmbpMsgeK8a/j8mXuqnDZeCfHirtsg1LGq7ax x/2FH+JkB1uBpRKyoSVbya+HAgMBAAGjUzBRMB0GA1UdDgQWBBRC74lhFalFJDI/DsGuaBI6XJK6 yjAfBgNVHSMEGDAWgBRC74lhFalFJDI/DsGuaBI6XJK6yjAPBgNVHRMBAf8EBTADAQH/MA0GCSqG SIb3DQEBCwUAA4ICAQCkyLvdNugINS7nVZzBRJ/iC9A5B3Zh8eV9R77tSLIJB7Bc9OhCkxQWwHg1 +5FoQvUhAzMEJrsSCs5bX6xkuvz5FaP6w+QeulCt0ONPhjHEYJ+BcxPIHHiZXXfG52acRiFcE37Z 76WKji591IfZAy5O30JLF25J4ovwysPnIf9k4LuVrEPHlPkNYfeff52WrAO8qVtYsi9x/u81SXqx nKFyP2mEfv+Med4F2PW6zbTVvdCZ9lCsc43DTM6ACMAo3Bd9YSM8Xbv2B+8yRfVTGjwAlg6opU7L yEiplmevnELR5o2zjjQ1Qe3foIpnyxF8MR21z/4zRmOp7aM4XXYHIlguPrgaDMelTrFfqU4BuERB JEIT5NqU1EEmsNl0L9w0yb9b+8xHodUyWZ9PPlZnZhMOHizxOT6PCst72OxfLpH+WLqhguhRGUnJ hUMC4oymcQ/qCmRQBJLz5zTFZsHf7rHJAJIqP7YOY3b2QXKJlE6WsAPvjaCwm26NGJMMUbMcNn8h aCw3AQmtvd91c9nXkstplQo0jERth/yGkJnRtL5mxi3JP8oL9NIh+kMMesHljCYkgUGi6wwRW3j2 zPiowpHDZsDLgF88/cjuq6UdleNacIsngCxEvosIEPBPtPj03hUDl4qKZCif1SndcSI9aEhz21aV 1vCZjyOZTb+mYgWUvg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo><xenc:CipherData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#";><xenc:CipherValue>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</xenc:CipherValue></xenc:CipherData><xenc:ReferenceList><xenc:DataReference URI="#_9c7a70c9c35491cbad4880b0555743aa"/></xenc:ReferenceList></xenc:EncryptedKey></saml2:EncryptedAssertion></saml2p:Response>
test.b64
Description: Binary data
_______________________________________________ xmlsec mailing list [email protected] http://www.aleksey.com/mailman/listinfo/xmlsec
