Merge commit from fork

* Patch for version 2

* Backport v6 patch, loading references from canon XML.

* Only allow exclusive canon.

* Updates based on v6 feedback.

* Apply changes

---------

Co-authored-by: Blair Weber <[email protected]>

Author: mattgd

lib/signed-xml.js

@@ -383,6 +383,46 @@ SignedXml.prototype.checkSignature = function(xml, callback) {
 
   var doc = new Dom().parseFromString(xml)
 
+  // Reset the references as only references from our re-parsed signedInfo node can be trusted
+  this.references = [];
+
+  const unverifiedSignedInfoCanon = this.getCanonSignedInfoXml(doc);
+  if (!unverifiedSignedInfoCanon) {
+    if (callback) {
+      callback(new Error("Canonical signed info not be empty"));
+      return;
+    } else {
+      throw new Error("Canonical signed info not be empty");
+    }
+  }
+
+  // unsigned, verify later to keep with consistent callback behavior
+  const unverifiedParsedSignedInfo = new Dom().parseFromString(unverifiedSignedInfoCanon, "text/xml");
+
+  const unverifiedSignedInfoDoc = unverifiedParsedSignedInfo.documentElement;
+  if (!unverifiedSignedInfoDoc) {
+    if (callback) {
+      callback(new Error("Could not parse signedInfoCanon into a document"));
+      return;
+    } else {
+      throw new Error("Could not parse signedInfoCanon into a document");
+    }
+  }
+
+  const references = utils.findChilds(unverifiedSignedInfoDoc, "Reference");
+  if (references.length === 0) {
+    if (callback) {
+      callback(new Error("Could not find any Reference elements"));
+      return;
+    } else {
+      throw new Error("Could not find any Reference elements");
+    }
+  }
+
+  for (const reference of references) {
+    this.loadReference(reference);
+  }
+
   if (!this.validateReferences(doc)) {
     if (!callback) {
       return false;
@@ -392,6 +432,7 @@ SignedXml.prototype.checkSignature = function(xml, callback) {
     }
   }
 
+  // Stage B: Take the signature algorithm and key and verify the SignatureValue against the canonicalized SignedInfo
   if (!callback) {
     //Syncronous flow
     if (!this.validateSignatureValue(doc)) {
@@ -414,7 +455,14 @@ SignedXml.prototype.checkSignature = function(xml, callback) {
 
 SignedXml.prototype.getCanonSignedInfoXml = function(doc) {
   var signedInfo = utils.findChilds(this.signatureNode, "SignedInfo")
-  if (signedInfo.length==0) throw new Error("could not find SignedInfo element in the message")
+  if (signedInfo.length == 0) {
+    throw new Error("could not find SignedInfo element in the message")
+  }
+  if (signedInfo.length > 1) {
+    throw new Error(
+      "could not get canonicalized signed info for a signature that contains multiple SignedInfo nodes",
+    );
+  }
 
   if(this.canonicalizationAlgorithm === "http://www.w3.org/TR/2001/REC-xml-c14n-20010315"
   || this.canonicalizationAlgorithm === "http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments")
@@ -494,7 +542,7 @@ SignedXml.prototype.validateReferences = function(doc) {
 
     var ref = this.references[r]
 
-    var uri = ref.uri[0]=="#" ? ref.uri.substring(1) : ref.uri
+    var uri = ref.uri ? (ref.uri[0]=="#" ? ref.uri.substring(1) : ref.uri) : "";
     var elem = [];
 
     if (uri=="") {
@@ -596,8 +644,43 @@ SignedXml.prototype.loadSignature = function(signatureNode) {
   this.signatureAlgorithm =
     utils.findFirst(signatureNode, ".//*[local-name(.)='SignatureMethod']/@Algorithm").value
 
+  const signedInfoNodes = utils.findChilds(this.signatureNode, "SignedInfo");
+  if (signedInfoNodes.length == 0) {
+    throw new Error("no signed info node found");
+  }
+  if (signedInfoNodes.length > 1) {
+    throw new Error("could not load signature that contains multiple SignedInfo nodes");
+  }
+
+  // Try to operate on the c14n version of `signedInfo`. This forces the initial `getReferences()`
+  // API call to always return references that are loaded under the canonical `SignedInfo`
+  // in the case that the client access the `.references` **before** signature verification.
+
+  // Ensure canonicalization algorithm is exclusive, otherwise we'd need the entire document
+  let canonicalizationAlgorithmForSignedInfo = this.canonicalizationAlgorithm;
+  if (
+    !canonicalizationAlgorithmForSignedInfo ||
+    canonicalizationAlgorithmForSignedInfo ===
+      "http://www.w3.org/TR/2001/REC-xml-c14n-20010315" ||
+    canonicalizationAlgorithmForSignedInfo ===
+      "http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments"
+  ) {
+    canonicalizationAlgorithmForSignedInfo = "http://www.w3.org/2001/10/xml-exc-c14n#";
+  }
+
+  const temporaryCanonSignedInfo = this.getCanonXml(
+    [canonicalizationAlgorithmForSignedInfo],
+    signedInfoNodes[0],
+  );
+  const temporaryCanonSignedInfoXml = new Dom().parseFromString(
+    temporaryCanonSignedInfo,
+    "text/xml",
+  );
+  const signedInfoDoc = temporaryCanonSignedInfoXml.documentElement;
+
   this.references = []
-  var references = xpath.select(".//*[local-name(.)='SignedInfo']/*[local-name(.)='Reference']", signatureNode)
+  
+  const references = utils.findChilds(signedInfoDoc, "Reference");
   if (references.length == 0) throw new Error("could not find any Reference elements")
 
   for (var i in references) {
@@ -626,12 +709,16 @@ SignedXml.prototype.loadReference = function(ref) {
   var digestAlgo = attr.value
 
   nodes = utils.findChilds(ref, "DigestValue")
-  if (nodes.length==0) throw new Error("could not find DigestValue node in reference " + ref.toString())
-  if (nodes[0].childNodes.length==0 || !nodes[0].firstChild.data)
-  {
-    throw new Error("could not find the value of DigestValue in " + nodes[0].toString())
+  if (nodes.length > 1) {
+    throw new Error(
+      `could not load reference for a node that contains multiple DigestValue nodes: ${ref.toString()}`,
+    );
+  }
+
+  const digestValue = nodes[0].textContent;
+  if (!digestValue) {
+    throw new Error(`could not find the value of DigestValue in ${ref.toString()}`);
   }
-  var digestValue = nodes[0].firstChild.data
 
   var transforms = []
   var inclusiveNamespacesPrefixList;
@@ -679,7 +766,8 @@ SignedXml.prototype.loadReference = function(ref) {
       transforms.push("http://www.w3.org/TR/2001/REC-xml-c14n-20010315")
   }
 
-  this.addReference(null, transforms, digestAlgo, utils.findAttr(ref, "URI").value, digestValue, inclusiveNamespacesPrefixList, false)
+  const refUri = ref.getAttribute("URI") || undefined;
+  this.addReference(null, transforms, digestAlgo, refUri, digestValue, inclusiveNamespacesPrefixList, false)
 }
 
 SignedXml.prototype.addReference = function(xpath, transforms, digestAlgorithm, uri, digestValue, inclusiveNamespacesPrefixList, isEmptyUri) {

test/saml-response-test.js

@@ -77,3 +77,102 @@ exports['test validating SAML response WithComments'] = function (test) {
   test.equal(result, false);
   test.done();
 };
+
+exports["test validating SAML response with digest comment"] = function (test) {
+  var xml = fs.readFileSync("./test/static/valid_saml_with_digest_comment.xml", "utf-8");
+  var doc = new xmldom.DOMParser().parseFromString(xml);
+  const assertion = xpath.select1("//*[local-name(.)='Assertion']", doc);
+  const signature = xpath.select1(
+    "//*[local-name(.)='Signature' and namespace-uri(.)='http://www.w3.org/2000/09/xmldsig#']",
+    assertion,
+  );
+  var sig = new crypto.SignedXml();
+  sig.keyInfoProvider = new crypto.FileKeyInfo("./test/static/feide_public.pem");
+  sig.loadSignature(signature);
+  var result = sig.checkSignature(xml);
+  test.equal(sig.references[0].digestValue, "RnNjoyUguwze5w2R+cboyTHlkQk=");
+  test.equal(result, false);
+  test.done();
+};
+
+exports["test signature contains a SignedInfo node"] = function (test) {
+  var xml = fs.readFileSync("./test/static/invalid_saml_no_signed_info.xml", "utf-8");
+  var doc = new xmldom.DOMParser().parseFromString(xml);
+  const node = xpath.select1(
+    "/*/*[local-name(.)='Signature' and namespace-uri(.)='http://www.w3.org/2000/09/xmldsig#']",
+    doc,
+  );
+  var sig = new crypto.SignedXml();
+  sig.keyInfoProvider = new crypto.FileKeyInfo("./test/static/feide_public.pem");
+  test.throws(
+    function () {
+      sig.loadSignature(node);
+    },
+    Error,
+    "no signed info node found"
+  );
+  test.done();
+};
+
+exports["throws an error for a document with no `SignedInfo` node"] = function (
+  test
+) {
+  var xml = fs.readFileSync(
+    "./test/static/invalid_saml_no_signed_info.xml",
+    "utf-8"
+  );
+  var doc = new xmldom.DOMParser().parseFromString(xml);
+  const node = xpath.select1(
+    "/*/*[local-name(.)='Signature' and namespace-uri(.)='http://www.w3.org/2000/09/xmldsig#']",
+    doc
+  );
+  var sig = new crypto.SignedXml();
+  const feidePublicCert = fs.readFileSync("./test/static/feide_public.pem");
+  sig.publicCert = feidePublicCert;
+
+  test.throws(
+    function () {
+      sig.loadSignature(node);
+    },
+    Error,
+    "no signed info node found"
+  );
+  test.done();
+};
+
+exports["test validation ignores an additional wrapped `SignedInfo` node"] = function (test) {
+  var xml = fs.readFileSync("./test/static/saml_wrapped_signed_info_node.xml", "utf-8");
+  var doc = new xmldom.DOMParser().parseFromString(xml);
+  var assertion = xpath.select("//*[local-name(.)='Assertion']", doc)[0];
+  var signature = xpath.select(
+    "//*[local-name(.)='Signature' and namespace-uri(.)='http://www.w3.org/2000/09/xmldsig#']",
+    assertion
+  )[0];
+  var sig = new crypto.SignedXml();
+  sig.keyInfoProvider = new crypto.FileKeyInfo("./test/static/saml_external_ns.pem");
+  sig.loadSignature(signature);
+  test.equal(sig.references.length, 1);
+  var result = sig.checkSignature(xml);
+  test.equal(result, true);
+  test.done();
+};
+
+exports["test signature throws if multiple `SignedInfo` nodes are found"] = function (test) {
+  var xml = fs.readFileSync("./test/static/saml_multiple_signed_info_nodes.xml", "utf-8");
+  var doc = new xmldom.DOMParser().parseFromString(xml);
+  var assertion = xpath.select("//*[local-name(.)='Assertion']", doc)[0];
+  var signature = xpath.select(
+    "//*[local-name(.)='Signature' and namespace-uri(.)='http://www.w3.org/2000/09/xmldsig#']",
+    assertion
+  )[0];
+  var sig = new crypto.SignedXml();
+  sig.keyInfoProvider = new crypto.FileKeyInfo("./test/static/saml_external_ns.pem");
+  test.throws(
+    function () {
+      sig.loadSignature(signature);
+    },
+    Error,
+    "could not load signature that contains multiple SignedInfo nodes"
+  );
+  test.done();
+};

test/signature-unit-tests.js

@@ -733,7 +733,7 @@ function verifyDoesNotDuplicateIdAttributes(test, mode, prefix) {
 }
 
 function verifyAddsId(test, mode, nsMode) {
-  var xml = "<x xmlns=\"ns\"></x><y attr=\"value\"></y><z><w></w></z>"
+  var xml = "<x xmlns=\"ns\"><y attr=\"value\"></y><z><w></w></z></x>"
   var sig = new SignedXml(mode)
   sig.signingKey = fs.readFileSync("./test/static/client.pem")
 

test/static/invalid_saml_no_signed_info.xml

@@ -0,0 +1,9 @@
+<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx94e4a319-b6f7-4a40-25d1-01fcb642e4c5" Version="2.0" IssueInstant="2012-07-03T11:32:20Z" Destination="http://localhost:3000/login/callback" InResponseTo="_d766d16611ac0d14121b"><saml:Issuer>https://openidp.feide.no</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+  <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
+  <ds:SignatureValue>dkONrkxW+LSuDvnNMG/mWYFa47d2WGyapLhXSTYqrlT9Td+tT7ciojNJ55WTaPaCMt7IrGtIxxskPAZIjdIn5pRyDxHr0joWxzZ7oZHCOI1CnQV5HjOq+rzzmEN2LctCZ6S4hbL7SQ1qJ3vp2BCXAygy4tmJOURQdnk0KLwwRS8=</ds:SignatureValue>
+<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICizCCAfQCCQCY8tKaMc0BMjANBgkqhkiG9w0BAQUFADCBiTELMAkGA1UEBhMCTk8xEjAQBgNVBAgTCVRyb25kaGVpbTEQMA4GA1UEChMHVU5JTkVUVDEOMAwGA1UECxMFRmVpZGUxGTAXBgNVBAMTEG9wZW5pZHAuZmVpZGUubm8xKTAnBgkqhkiG9w0BCQEWGmFuZHJlYXMuc29sYmVyZ0B1bmluZXR0Lm5vMB4XDTA4MDUwODA5MjI0OFoXDTM1MDkyMzA5MjI0OFowgYkxCzAJBgNVBAYTAk5PMRIwEAYDVQQIEwlUcm9uZGhlaW0xEDAOBgNVBAoTB1VOSU5FVFQxDjAMBgNVBAsTBUZlaWRlMRkwFwYDVQQDExBvcGVuaWRwLmZlaWRlLm5vMSkwJwYJKoZIhvcNAQkBFhphbmRyZWFzLnNvbGJlcmdAdW5pbmV0dC5ubzCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEAt8jLoqI1VTlxAZ2axiDIThWcAOXdu8KkVUWaN/SooO9O0QQ7KRUjSGKN9JK65AFRDXQkWPAu4HlnO4noYlFSLnYyDxI66LCr71x4lgFJjqLeAvB/GqBqFfIZ3YK/NrhnUqFwZu63nLrZjcUZxNaPjOOSRSDaXpv1kb5k3jOiSGECAwEAATANBgkqhkiG9w0BAQUFAAOBgQBQYj4cAafWaYfjBU2zi1ElwStIaJ5nyp/s/8B8SAPK2T79McMyccP3wSW13LHkmM1jwKe3ACFXBvqGQN0IbcH49hu0FKhYFM/GPDJcIHFBsiyMBXChpye9vBaTNEBCtU3KjjyG0hRT2mAQ9h+bkPmOvlEo/aH0xR68Z9hw4PF13w==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/></samlp:Status><saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx66496e6c-3c29-230d-6d47-b245434b872d" Version="2.0" IssueInstant="2012-07-03T11:32:20Z"><saml:Issuer>https://openidp.feide.no</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
+  <ds:Reference URI="#pfx66496e6c-3c29-230d-6d47-b245434b872d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>RnNjoyUguwze5w2R+cboyTHlkQk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>aw5711jKP7xragunjRRCAD4mT4xKHc37iohBpQDbdSomD3ksOSB96UZQp0MtaC3xlVSkMtYw85Om96T2q2xrxLLYVA50eFJEMMF7SCVPStWTVjBlaCuOPEQxIaHyJs9Sy3MCEfbBh4Pqn9IJBd1kzwdlCrWWjAmksbFFg5wHQJA=</ds:SignatureValue>
+<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><saml:Subject><saml:NameID SPNameQualifier="passport-saml" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_6c5dcaa3053321ff4d63785fbc3f67c59a129cde82</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData NotOnOrAfter="2012-07-03T11:37:20Z" Recipient="http://localhost:3000/login/callback" InResponseTo="_d766d16611ac0d14121b"/></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2012-07-03T11:31:50Z" NotOnOrAfter="2012-07-03T11:37:20Z"><saml:AudienceRestriction><saml:Audience>passport-saml</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2012-07-03T11:32:20Z" SessionNotOnOrAfter="2012-07-03T19:32:20Z" SessionIndex="_c8e6823fe38ddbce125f9be6e5118b8c352d04bcae"><saml:AuthnContext><saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef></saml:AuthnContext></saml:AuthnStatement><saml:AttributeStatement><saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">bergie</saml:AttributeValue></saml:Attribute><saml:Attribute Name="givenName" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Henri</saml:AttributeValue></saml:Attribute><saml:Attribute Name="sn" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Bergius</saml:AttributeValue></saml:Attribute><saml:Attribute Name="cn" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Henri Bergius</saml:AttributeValue></saml:Attribute><saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">[email protected]</saml:AttributeValue></saml:Attribute><saml:Attribute Name="eduPersonPrincipalName" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">[email protected]</saml:AttributeValue></saml:Attribute><saml:Attribute Name="eduPersonTargetedID" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">8216c78fe244502efa13f62e6615c94acb7bdf3e</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">bergie</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Henri</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Bergius</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:2.5.4.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Henri Bergius</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">[email protected]</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">[email protected]</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">8216c78fe244502efa13f62e6615c94acb7bdf3e</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>