Merge commit from fork

* - Draft: see what is signed

* Fix bugs

* Fix bugs

* Revert "Fix bugs"

This reverts commit cd4b7d6fcb21cd1a40e57fd214c950c47c8667d5.

* Revert "Fix bugs"

This reverts commit 0947a89a04e16bedffc3cc5bf3152c6dedbe3a7d.

* Revert "- Draft: see what is signed"

This reverts commit 2a9c405f09f7843b994820f6933408d522a6d849.

* Patch for version 3

* Only parse references from canonicalized signed info

* Space

* Fixing spaces

* remove space

* Remove fix that does not apply

* Formatting

* Add warning about references.

* Remove formatting changes.

* Backport references, SignedInfo, and DigestValue patches.

* Only allow exclusive canon.

* Apply changes from v6 review

* Revert package-lock.json

* Apply suggested changes

---------

Co-authored-by: SecureSAML <[email protected]>
Co-authored-by: Blair Weber <[email protected]>

Author: 3 people

lib/signed-xml.js

@@ -362,6 +362,46 @@ SignedXml.prototype.checkSignature = function (xml, callback) {
 
   var doc = new Dom().parseFromString(xml);
 
+  // Reset the references as only references from our re-parsed signedInfo node can be trusted
+  this.references = [];
+
+  const unverifiedSignedInfoCanon = this.getCanonSignedInfoXml(doc);
+  if (!unverifiedSignedInfoCanon) {
+    if (callback) {
+      callback(new Error("Canonical signed info cannot be empty"));
+      return;
+    }
+
+    throw new Error("Canonical signed info cannot be empty");
+  }
+
+  // unsigned, verify later to keep with consistent callback behavior
+  const parsedUnverifiedSignedInfo = new Dom().parseFromString(unverifiedSignedInfoCanon, "text/xml");
+
+  const unverifiedSignedInfoDoc = parsedUnverifiedSignedInfo.documentElement;
+  if (!unverifiedSignedInfoDoc) {
+    if (callback) {
+      callback(new Error("Could not parse signedInfoCanon into a document"));
+      return;
+    }
+
+    throw new Error("Could not parse signedInfoCanon into a document");
+  }
+
+  const references = utils.findChilds(unverifiedSignedInfoDoc, "Reference");
+  if (references.length === 0) {
+    if (callback) {
+      callback(new Error("could not find any Reference elements"));
+      return;
+    }
+
+    throw new Error("could not find any Reference elements");
+  }
+
+  for (const reference of references) {
+    this.loadReference(reference);
+  }
+
   if (!this.validateReferences(doc)) {
     if (!callback) {
       return false;
@@ -371,6 +411,7 @@ SignedXml.prototype.checkSignature = function (xml, callback) {
     }
   }
 
+  // Stage B: Take the signature algorithm and key and verify the SignatureValue against the canonicalized SignedInfo
   if (!callback) {
     // Synchronous flow
     if (!this.validateSignatureValue(doc)) {
@@ -394,7 +435,14 @@ SignedXml.prototype.checkSignature = function (xml, callback) {
 
 SignedXml.prototype.getCanonSignedInfoXml = function (doc) {
   var signedInfo = utils.findChilds(this.signatureNode, "SignedInfo");
-  if (signedInfo.length == 0) throw new Error("could not find SignedInfo element in the message");
+  if (signedInfo.length == 0) { 
+    throw new Error("could not find SignedInfo element in the message");
+  }
+  if (signedInfo.length > 1) {
+    throw new Error(
+      "could not get canonicalized signed info for a signature that contains multiple SignedInfo nodes"
+    );
+  }
 
   if (
     this.canonicalizationAlgorithm === "http://www.w3.org/TR/2001/REC-xml-c14n-20010315" ||
@@ -477,7 +525,7 @@ SignedXml.prototype.validateReferences = function (doc) {
 
     var ref = this.references[r];
 
-    var uri = ref.uri[0] == "#" ? ref.uri.substring(1) : ref.uri;
+    var uri = ref.uri ? (ref.uri[0]=="#" ? ref.uri.substring(1) : ref.uri) : "";
     var elem = [];
 
     if (uri == "") {
@@ -594,11 +642,43 @@ SignedXml.prototype.loadSignature = function (signatureNode) {
     ".//*[local-name(.)='SignatureMethod']/@Algorithm"
   ).value;
 
-  this.references = [];
-  var references = xpath.select(
-    ".//*[local-name(.)='SignedInfo']/*[local-name(.)='Reference']",
-    signatureNode
+  const signedInfoNodes = utils.findChilds(this.signatureNode, "SignedInfo");
+  if (signedInfoNodes.length == 0) {
+    throw new Error("no signed info node found");
+  }
+  if (signedInfoNodes.length > 1) {
+    throw new Error("could not load signature that contains multiple SignedInfo nodes");
+  }
+
+  // Try to operate on the c14n version of signedInfo. This forces the initial getReferences()
+  // API call to always return references that are loaded under the canonical SignedInfo
+  // in the case that the client access the .references **before** signature verification.
+
+  // Ensure canonicalization algorithm is exclusive, otherwise we'd need the entire document
+  let canonicalizationAlgorithmForSignedInfo = this.canonicalizationAlgorithm;
+  if (
+    !canonicalizationAlgorithmForSignedInfo ||
+    canonicalizationAlgorithmForSignedInfo ===
+      "http://www.w3.org/TR/2001/REC-xml-c14n-20010315" ||
+    canonicalizationAlgorithmForSignedInfo ===
+      "http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments"
+  ) {
+    canonicalizationAlgorithmForSignedInfo = "http://www.w3.org/2001/10/xml-exc-c14n#";
+  }
+  
+  const temporaryCanonSignedInfo = this.getCanonXml(
+    [this.canonicalizationAlgorithm || "http://www.w3.org/2001/10/xml-exc-c14n#"],
+    signedInfoNodes[0]
   );
+  const temporaryCanonSignedInfoXml = new Dom().parseFromString(
+    temporaryCanonSignedInfo,
+    "text/xml"
+  );
+  const signedInfoDoc = temporaryCanonSignedInfoXml.documentElement;
+
+  this.references = [];
+  
+  const references = utils.findChilds(signedInfoDoc, "Reference");
   if (references.length == 0) throw new Error("could not find any Reference elements");
 
   for (var i in references) {
@@ -632,10 +712,17 @@ SignedXml.prototype.loadReference = function (ref) {
   nodes = utils.findChilds(ref, "DigestValue");
   if (nodes.length == 0)
     throw new Error("could not find DigestValue node in reference " + ref.toString());
-  if (nodes[0].childNodes.length == 0 || !nodes[0].firstChild.data) {
-    throw new Error("could not find the value of DigestValue in " + nodes[0].toString());
+  
+  if (nodes.length > 1) {
+    throw new Error(
+      `could not load reference for a node that contains multiple DigestValue nodes: ${ref.toString()}`
+    );
+  }
+
+  const digestValue = nodes[0].textContent;
+  if (!digestValue) {
+    throw new Error(`could not find the value of DigestValue in ${ref.toString()}`);
   }
-  var digestValue = nodes[0].firstChild.data;
 
   var transforms = [];
   var inclusiveNamespacesPrefixList;
@@ -688,11 +775,12 @@ SignedXml.prototype.loadReference = function (ref) {
     transforms.push("http://www.w3.org/TR/2001/REC-xml-c14n-20010315");
   }
 
+  const refUri = ref.getAttribute("URI") || undefined;
   this.addReference(
     null,
     transforms,
     digestAlgo,
-    utils.findAttr(ref, "URI").value,
+    refUri,
     digestValue,
     inclusiveNamespacesPrefixList,
     false

test/saml-response-test.js

@@ -93,3 +93,76 @@ exports["test validating SAML response WithComments"] = function (test) {
   test.equal(result, false);
   test.done();
 };
+
+exports["test validating SAML response with digest comment"] = function (test) {
+  var xml = fs.readFileSync("./test/static/valid_saml_with_digest_comment.xml", "utf-8");
+  var doc = new xmldom.DOMParser().parseFromString(xml);
+  const assertion = xpath.select1("//*[local-name(.)='Assertion']", doc);
+  const signature = xpath.select1(
+    "//*[local-name(.)='Signature' and namespace-uri(.)='http://www.w3.org/2000/09/xmldsig#']",
+    assertion,
+  );
+  var sig = new crypto.SignedXml();
+  sig.keyInfoProvider = new crypto.FileKeyInfo("./test/static/feide_public.pem");
+  sig.loadSignature(signature);
+  var result = sig.checkSignature(xml);
+  test.equal(sig.references[0].digestValue, "RnNjoyUguwze5w2R+cboyTHlkQk=");
+  test.equal(result, false);
+  test.done();
+};
+
+exports["test signature contains a `SignedInfo` node"] = function (test) {
+  var xml = fs.readFileSync("./test/static/invalid_saml_no_signed_info.xml", "utf-8");
+  var doc = new xmldom.DOMParser().parseFromString(xml);
+  const node = xpath.select1(
+    "/*/*[local-name(.)='Signature' and namespace-uri(.)='http://www.w3.org/2000/09/xmldsig#']",
+    doc,
+  );
+  var sig = new crypto.SignedXml();
+  sig.keyInfoProvider = new crypto.FileKeyInfo("./test/static/feide_public.pem");
+  test.throws(
+    function () {
+      sig.loadSignature(node);
+    },
+    Error,
+    "no signed info node found"
+  );
+  test.done();
+};
+
+exports["test validation ignores an additional wrapped `SignedInfo` node"] = function (test) {
+  var xml = fs.readFileSync("./test/static/saml_wrapped_signed_info_node.xml", "utf-8");
+  var doc = new xmldom.DOMParser().parseFromString(xml);
+  var assertion = xpath.select("//*[local-name(.)='Assertion']", doc)[0];
+  var signature = xpath.select(
+    "//*[local-name(.)='Signature' and namespace-uri(.)='http://www.w3.org/2000/09/xmldsig#']",
+    assertion
+  )[0];
+  var sig = new crypto.SignedXml();
+  sig.keyInfoProvider = new crypto.FileKeyInfo("./test/static/saml_external_ns.pem");
+  sig.loadSignature(signature);
+  test.equal(sig.references.length, 1);
+  var result = sig.checkSignature(xml);
+  test.equal(result, true);
+  test.done();
+};
+
+exports["test signature does not contain multiple `SignedInfo` nodes"] = function (test) {
+  var xml = fs.readFileSync("./test/static/saml_multiple_signed_info_nodes.xml", "utf-8");
+  var doc = new xmldom.DOMParser().parseFromString(xml);
+  var assertion = xpath.select("//*[local-name(.)='Assertion']", doc)[0];
+  var signature = xpath.select(
+    "//*[local-name(.)='Signature' and namespace-uri(.)='http://www.w3.org/2000/09/xmldsig#']",
+    assertion
+  )[0];
+  var sig = new crypto.SignedXml();
+  sig.keyInfoProvider = new crypto.FileKeyInfo("./test/static/saml_external_ns.pem");
+  test.throws(
+    function () {
+      sig.loadSignature(signature);
+    },
+    Error,
+    "could not load signature that contains multiple SignedInfo nodes"
+  );
+  test.done();
+};

test/static/invalid_saml_no_signed_info.xml

@@ -0,0 +1,9 @@
+<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx94e4a319-b6f7-4a40-25d1-01fcb642e4c5" Version="2.0" IssueInstant="2012-07-03T11:32:20Z" Destination="http://localhost:3000/login/callback" InResponseTo="_d766d16611ac0d14121b"><saml:Issuer>https://openidp.feide.no</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+  <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
+  <ds:SignatureValue>dkONrkxW+LSuDvnNMG/mWYFa47d2WGyapLhXSTYqrlT9Td+tT7ciojNJ55WTaPaCMt7IrGtIxxskPAZIjdIn5pRyDxHr0joWxzZ7oZHCOI1CnQV5HjOq+rzzmEN2LctCZ6S4hbL7SQ1qJ3vp2BCXAygy4tmJOURQdnk0KLwwRS8=</ds:SignatureValue>
+<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/></samlp:Status><saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx66496e6c-3c29-230d-6d47-b245434b872d" Version="2.0" IssueInstant="2012-07-03T11:32:20Z"><saml:Issuer>https://openidp.feide.no</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
+  <ds:Reference URI="#pfx66496e6c-3c29-230d-6d47-b245434b872d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>RnNjoyUguwze5w2R+cboyTHlkQk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>aw5711jKP7xragunjRRCAD4mT4xKHc37iohBpQDbdSomD3ksOSB96UZQp0MtaC3xlVSkMtYw85Om96T2q2xrxLLYVA50eFJEMMF7SCVPStWTVjBlaCuOPEQxIaHyJs9Sy3MCEfbBh4Pqn9IJBd1kzwdlCrWWjAmksbFFg5wHQJA=</ds:SignatureValue>
+<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICizCCAfQCCQCY8tKaMc0BMjANBgkqhkiG9w0BAQUFADCBiTELMAkGA1UEBhMCTk8xEjAQBgNVBAgTCVRyb25kaGVpbTEQMA4GA1UEChMHVU5JTkVUVDEOMAwGA1UECxMFRmVpZGUxGTAXBgNVBAMTEG9wZW5pZHAuZmVpZGUubm8xKTAnBgkqhkiG9w0BCQEWGmFuZHJlYXMuc29sYmVyZ0B1bmluZXR0Lm5vMB4XDTA4MDUwODA5MjI0OFoXDTM1MDkyMzA5MjI0OFowgYkxCzAJBgNVBAYTAk5PMRIwEAYDVQQIEwlUcm9uZGhlaW0xEDAOBgNVBAoTB1VOSU5FVFQxDjAMBgNVBAsTBUZlaWRlMRkwFwYDVQQDExBvcGVuaWRwLmZlaWRlLm5vMSkwJwYJKoZIhvcNAQkBFhphbmRyZWFzLnNvbGJlcmdAdW5pbmV0dC5ubzCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEAt8jLoqI1VTlxAZ2axiDIThWcAOXdu8KkVUWaN/SooO9O0QQ7KRUjSGKN9JK65AFRDXQkWPAu4HlnO4noYlFSLnYyDxI66LCr71x4lgFJjqLeAvB/GqBqFfIZ3YK/NrhnUqFwZu63nLrZjcUZxNaPjOOSRSDaXpv1kb5k3jOiSGECAwEAATANBgkqhkiG9w0BAQUFAAOBgQBQYj4cAafWaYfjBU2zi1ElwStIaJ5nyp/s/8B8SAPK2T79McMyccP3wSW13LHkmM1jwKe3ACFXBvqGQN0IbcH49hu0FKhYFM/GPDJcIHFBsiyMBXChpye9vBaTNEBCtU3KjjyG0hRT2mAQ9h+bkPmOvlEo/aH0xR68Z9hw4PF13w==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><saml:Subject><saml:NameID SPNameQualifier="passport-saml" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_6c5dcaa3053321ff4d63785fbc3f67c59a129cde82</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData NotOnOrAfter="2012-07-03T11:37:20Z" Recipient="http://localhost:3000/login/callback" InResponseTo="_d766d16611ac0d14121b"/></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2012-07-03T11:31:50Z" NotOnOrAfter="2012-07-03T11:37:20Z"><saml:AudienceRestriction><saml:Audience>passport-saml</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2012-07-03T11:32:20Z" SessionNotOnOrAfter="2012-07-03T19:32:20Z" SessionIndex="_c8e6823fe38ddbce125f9be6e5118b8c352d04bcae"><saml:AuthnContext><saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef></saml:AuthnContext></saml:AuthnStatement><saml:AttributeStatement><saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">bergie</saml:AttributeValue></saml:Attribute><saml:Attribute Name="givenName" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Henri</saml:AttributeValue></saml:Attribute><saml:Attribute Name="sn" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Bergius</saml:AttributeValue></saml:Attribute><saml:Attribute Name="cn" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Henri Bergius</saml:AttributeValue></saml:Attribute><saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">[email protected]</saml:AttributeValue></saml:Attribute><saml:Attribute Name="eduPersonPrincipalName" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">[email protected]</saml:AttributeValue></saml:Attribute><saml:Attribute Name="eduPersonTargetedID" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">8216c78fe244502efa13f62e6615c94acb7bdf3e</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">bergie</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Henri</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Bergius</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:2.5.4.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Henri Bergius</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">[email protected]</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">[email protected]</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">8216c78fe244502efa13f62e6615c94acb7bdf3e</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>