/**
* Constructor.
*
+ * <p>The final boolean parameter is used to enforce a requirement for an authenticated cipher
+ * suite such as AES-GCM or similar. These ciphers include an HMAC or equivalent step that
+ * prevents tampering. Newer applications should set this parameter to true unless the ciphertext
+ * has been independently authenticated, and even in such a case, it is rarely possible to prevent
+ * chosen ciphertext attacks by trusted signers.
+ *
* @param credResolver locked credential resolver to supply decryption keys
* @param criteria optional external criteria to use with resolver
* @param EKResolver locates an EncryptedKey pertaining to the EncryptedData
+ * @param requireAuthenticatedCipher true iff the bulk data encryption algorithm must be an authenticated cipher
*/
Decrypter(
const xmltooling::CredentialResolver* credResolver=nullptr,
xmltooling::CredentialCriteria* criteria=nullptr,
- const EncryptedKeyResolver* EKResolver=nullptr
+ const EncryptedKeyResolver* EKResolver=nullptr,
+ bool requireAuthenticatedCipher=false
);
virtual ~Decrypter();
const xmltooling::CredentialResolver* m_credResolver;
xmltooling::CredentialCriteria* m_criteria;
const EncryptedKeyResolver* m_EKResolver;
+ bool m_requireAuthenticatedCipher;
};
DECL_XMLTOOLING_EXCEPTION(DecryptionException,XMLTOOL_EXCEPTIONAPI(XMLTOOL_API),xmlencryption,xmltooling::XMLToolingException,Exceptions in decryption processing);
using namespace xercesc;
using namespace std;
-Decrypter::Decrypter(const CredentialResolver* credResolver, CredentialCriteria* criteria, const EncryptedKeyResolver* EKResolver)
- : m_cipher(nullptr), m_credResolver(credResolver), m_criteria(criteria), m_EKResolver(EKResolver)
+
+Decrypter::Decrypter(
+ const CredentialResolver* credResolver,
+ CredentialCriteria* criteria,
+ const EncryptedKeyResolver* EKResolver,
+ bool requireAuthenticatedCipher
+ ) : m_cipher(nullptr), m_credResolver(credResolver), m_criteria(criteria), m_EKResolver(EKResolver),
+ m_requireAuthenticatedCipher(requireAuthenticatedCipher)
{
}
DOMDocumentFragment* Decrypter::decryptData(const EncryptedData& encryptedData, XSECCryptoKey* key)
{
- if (encryptedData.getDOM()==nullptr)
+ if (encryptedData.getDOM() == nullptr)
throw DecryptionException("The object must be marshalled before decryption.");
+ XMLToolingInternalConfig& xmlconf = XMLToolingInternalConfig::getInternalConfig();
+ if (m_requireAuthenticatedCipher) {
+ const XMLCh* alg = encryptedData.getEncryptionMethod() ? encryptedData.getEncryptionMethod()->getAlgorithm() : nullptr;
+ if (!alg || !xmlconf.isXMLAlgorithmSupported(alg, XMLToolingConfig::ALGTYPE_AUTHNENCRYPT)) {
+ throw DecryptionException("Unauthenticated data encryption algorithm unsupported.");
+ }
+ }
+
// We can reuse the cipher object if the document hasn't changed.
if (m_cipher && m_cipher->getDocument()!=encryptedData.getDOM()->getOwnerDocument()) {
- XMLToolingInternalConfig::getInternalConfig().m_xsecProvider->releaseCipher(m_cipher);
+ xmlconf.m_xsecProvider->releaseCipher(m_cipher);
m_cipher=nullptr;
}
if (!m_cipher)
- m_cipher=XMLToolingInternalConfig::getInternalConfig().m_xsecProvider->newCipher(encryptedData.getDOM()->getOwnerDocument());
+ m_cipher = xmlconf.m_xsecProvider->newCipher(encryptedData.getDOM()->getOwnerDocument());
try {
m_cipher->setKey(key->clone());
- DOMNode* ret=m_cipher->decryptElementDetached(encryptedData.getDOM());
+ DOMNode* ret = m_cipher->decryptElementDetached(encryptedData.getDOM());
if (ret->getNodeType()!=DOMNode::DOCUMENT_FRAGMENT_NODE) {
ret->release();
throw DecryptionException("Decryption operation did not result in DocumentFragment.");
const EncryptionMethod* meth = encryptedData.getEncryptionMethod();
if (meth)
m_criteria->setXMLAlgorithm(meth->getAlgorithm());
- m_credResolver->resolve(creds,m_criteria);
+ m_credResolver->resolve(creds, m_criteria);
}
else {
CredentialCriteria criteria;
const EncryptionMethod* meth = encryptedData.getEncryptionMethod();
if (meth)
criteria.setXMLAlgorithm(meth->getAlgorithm());
- m_credResolver->resolve(creds,&criteria);
+ m_credResolver->resolve(creds, &criteria);
}
// Loop over them and try each one.
XSECCryptoKey* key;
- for (vector<const Credential*>::const_iterator cred = creds.begin(); cred!=creds.end(); ++cred) {
+ for (vector<const Credential*>::const_iterator cred = creds.begin(); cred != creds.end(); ++cred) {
try {
key = (*cred)->getPrivateKey();
if (!key)
void Decrypter::decryptData(ostream& out, const EncryptedData& encryptedData, XSECCryptoKey* key)
{
- if (encryptedData.getDOM()==nullptr)
+ if (encryptedData.getDOM() == nullptr)
throw DecryptionException("The object must be marshalled before decryption.");
+ XMLToolingInternalConfig& xmlconf = XMLToolingInternalConfig::getInternalConfig();
+ if (m_requireAuthenticatedCipher) {
+ const XMLCh* alg = encryptedData.getEncryptionMethod() ? encryptedData.getEncryptionMethod()->getAlgorithm() : nullptr;
+ if (!alg || !xmlconf.isXMLAlgorithmSupported(alg, XMLToolingConfig::ALGTYPE_AUTHNENCRYPT)) {
+ throw DecryptionException("Unauthenticated data encryption algorithm unsupported.");
+ }
+ }
+
// We can reuse the cipher object if the document hasn't changed.
- if (m_cipher && m_cipher->getDocument()!=encryptedData.getDOM()->getOwnerDocument()) {
- XMLToolingInternalConfig::getInternalConfig().m_xsecProvider->releaseCipher(m_cipher);
- m_cipher=nullptr;
+ if (m_cipher && m_cipher->getDocument() != encryptedData.getDOM()->getOwnerDocument()) {
+ xmlconf.m_xsecProvider->releaseCipher(m_cipher);
+ m_cipher = nullptr;
}
if (!m_cipher)
- m_cipher=XMLToolingInternalConfig::getInternalConfig().m_xsecProvider->newCipher(encryptedData.getDOM()->getOwnerDocument());
+ m_cipher = xmlconf.m_xsecProvider->newCipher(encryptedData.getDOM()->getOwnerDocument());
try {
m_cipher->setKey(key->clone());
// Loop over them and try each one.
XSECCryptoKey* key;
- for (vector<const Credential*>::const_iterator cred = creds.begin(); cred!=creds.end(); ++cred) {
+ for (vector<const Credential*>::const_iterator cred = creds.begin(); cred != creds.end(); ++cred) {
try {
key = (*cred)->getPrivateKey();
if (!key)
if (m_cipher && m_cipher->getDocument()!=encryptedKey.getDOM()->getOwnerDocument()) {
XMLToolingInternalConfig::getInternalConfig().m_xsecProvider->releaseCipher(m_cipher);
- m_cipher=nullptr;
+ m_cipher = nullptr;
}
if (!m_cipher)
- m_cipher=XMLToolingInternalConfig::getInternalConfig().m_xsecProvider->newCipher(encryptedKey.getDOM()->getOwnerDocument());
+ m_cipher = XMLToolingInternalConfig::getInternalConfig().m_xsecProvider->newCipher(encryptedKey.getDOM()->getOwnerDocument());
// Resolve key decryption keys.
int types = CredentialCriteria::KEYINFO_EXTRACTION_KEY | CredentialCriteria::KEYINFO_EXTRACTION_KEYNAMES;
throw DecryptionException("Unable to resolve any key decryption keys.");
XMLByte buffer[1024];
- for (vector<const Credential*>::const_iterator cred = creds.begin(); cred!=creds.end(); ++cred) {
+ for (vector<const Credential*>::const_iterator cred = creds.begin(); cred != creds.end(); ++cred) {
try {
if (!(*cred)->getPrivateKey())
throw DecryptionException("Credential did not contain a private key.");
projects / shibboleth / cpp-xmltooling.git / commitdiff