private bool ProcessEncryptedDataItem(XmlElement encryptedDataElement)
{
if (ExceptUris.Count > 0)
{
for (int index = 0; index < ExceptUris.Count; index++)
{
if (IsTargetElement(encryptedDataElement, (string)ExceptUris[index]))
{
return(false);
}
}
}
EncryptedData ed = new EncryptedData();
ed.LoadXml(encryptedDataElement);
ICipherParameters symAlg = XmlDecryption.GetDecryptionKey(ed, NS.None);
if (symAlg == null)
{
throw new System.Security.Cryptography.CryptographicException(SR.Cryptography_Xml_MissingDecryptionKey);
}
byte[] decrypted = XmlDecryption.DecryptData(ed, symAlg);
ReplaceEncryptedData(encryptedDataElement, decrypted);
return(true);
}
public void DecryptEncryptedKey_KeyInfoEncryptedKey()
{
XmlDocument doc = new XmlDocument();
doc.PreserveWhitespace = true;
string xml = "<root> <child>sample</child> </root>";
doc.LoadXml(xml);
var random = new SecureRandom();
var keydata = new byte[256 / 8];
random.NextBytes(keydata);
var param = new KeyParameter(keydata);
keydata = new byte[128 / 8];
random.NextBytes(keydata);
var innerParam = new KeyParameter(keydata);
keydata = new byte[192 / 8];
random.NextBytes(keydata);
var outerParam = new KeyParameter(keydata);
XmlDecryption exml = new XmlDecryption(doc);
exml.AddKeyNameMapping("aes", param);
EncryptedKey ekey = new EncryptedKey();
byte[] encKeyBytes = XmlEncryption.EncryptKey(outerParam.GetKey(), param);
ekey.CipherData = new CipherData(encKeyBytes);
ekey.EncryptionMethod = new EncryptionMethod(NS.XmlEncAES256Url);
ekey.Id = "Key_ID";
ekey.KeyInfo = new KeyInfo();
ekey.KeyInfo.AddClause(new KeyInfoName("aes"));
KeyInfo topLevelKeyInfo = new KeyInfo();
topLevelKeyInfo.AddClause(new KeyInfoEncryptedKey(ekey));
EncryptedKey ekeyTopLevel = new EncryptedKey();
byte[] encTopKeyBytes = XmlEncryption.EncryptKey(innerParam.GetKey(), outerParam);
ekeyTopLevel.CipherData = new CipherData(encTopKeyBytes);
ekeyTopLevel.EncryptionMethod = new EncryptionMethod(NS.XmlEncAES256Url);
ekeyTopLevel.KeyInfo = topLevelKeyInfo;
doc.LoadXml(ekeyTopLevel.GetXml().OuterXml);
byte[] decryptedKey = exml.DecryptEncryptedKey(ekeyTopLevel);
Assert.Equal(innerParam.GetKey(), decryptedKey);
EncryptedData eData = new EncryptedData();
eData.EncryptionMethod = new EncryptionMethod(NS.XmlEncAES256Url);
eData.KeyInfo = topLevelKeyInfo;
var decryptedAlg = exml.GetDecryptionKey(eData, NS.None);
Assert.Equal(outerParam.GetKey(), ((KeyParameter)decryptedAlg).GetKey());
}
public void GetDecryptionKey_CarriedKeyName()
{
var random = new SecureRandom();
var ivdata = new byte[128 / 8];
var keydata = new byte[256 / 8];
random.NextBytes(ivdata);
random.NextBytes(keydata);
var param = new ParametersWithIV(new KeyParameter(keydata), ivdata);
keydata = new byte[128 / 8];
random.NextBytes(ivdata);
random.NextBytes(keydata);
var innerParam = new ParametersWithIV(new KeyParameter(keydata), ivdata);
EncryptedData edata = new EncryptedData();
edata.KeyInfo = new KeyInfo();
edata.KeyInfo.AddClause(new KeyInfoName("aes"));
EncryptedKey ekey = new EncryptedKey();
byte[] encKeyBytes = XmlEncryption.EncryptKey(((KeyParameter)innerParam.Parameters).GetKey(), (KeyParameter)param.Parameters);
ekey.CipherData = new CipherData(encKeyBytes);
ekey.EncryptionMethod = new EncryptionMethod(NS.XmlEncAES256Url);
ekey.CarriedKeyName = "aes";
ekey.KeyInfo = new KeyInfo();
ekey.KeyInfo.AddClause(new KeyInfoName("another_aes"));
XmlDocument doc = new XmlDocument();
doc.LoadXml(ekey.GetXml().OuterXml);
XmlDecryption exml = new XmlDecryption(doc);
exml.AddKeyNameMapping("another_aes", param);
var decryptedAlg = exml.GetDecryptionKey(edata, NS.XmlEncAES256Url);
Assert.IsType <KeyParameter>(decryptedAlg);
Assert.Equal(((KeyParameter)innerParam.Parameters).GetKey(), ((KeyParameter)decryptedAlg).GetKey());
}
public void GetDecryptionKey_KeyInfoName()
{
var random = new SecureRandom();
var ivdata = new byte[128 / 8];
var keydata = new byte[256 / 8];
random.NextBytes(ivdata);
random.NextBytes(keydata);
var param = new ParametersWithIV(new KeyParameter(keydata), ivdata);
EncryptedData edata = new EncryptedData();
edata.KeyInfo = new KeyInfo();
edata.KeyInfo.AddClause(new KeyInfoName("aes"));
XmlDecryption exml = new XmlDecryption();
exml.AddKeyNameMapping("aes", param);
var decryptedAlg = exml.GetDecryptionKey(edata, NS.None);
Assert.IsType <ParametersWithIV>(decryptedAlg);
Assert.Equal(((KeyParameter)param.Parameters).GetKey(), ((KeyParameter)((ParametersWithIV)decryptedAlg).Parameters).GetKey());
}
public void GetDecryptionKey_StringNull()
{
XmlDecryption ex = new XmlDecryption();
Assert.Null(ex.GetDecryptionKey(new EncryptedData(), NS.None));
}
public void GetDecryptionKey_NoEncryptionMethod()
{
EncryptedData edata = new EncryptedData();
edata.KeyInfo = new KeyInfo();
edata.KeyInfo.AddClause(new KeyInfoEncryptedKey(new EncryptedKey()));
XmlDecryption exml = new XmlDecryption();
Assert.Throws <System.Security.Cryptography.CryptographicException>(() => exml.GetDecryptionKey(edata, NS.None));
}
public void GetDecryptionKey_EncryptedDataNull()
{
XmlDecryption ex = new XmlDecryption();
Assert.Throws <ArgumentNullException>(() => ex.GetDecryptionKey(null, NS.XmlEncAES128Url));
}