Follow xml-crypto 3.2.1 (fix CVE-2025-29774 and CVE-2025-29775)

Author: scribetw

CHANGELOG.md

@@ -1,6 +1,15 @@
-## 3.2.0
+## 3.2.1
 
 * The last version that supports Dart 2.x
+* Follow xml-crypto 3.2.1
+
+  This addresses two critical CVE:
+
+    * CVE-2025-29774
+    * CVE-2025-29775
+
+## 3.2.0
+
 * Follow xml-crypto 3.2.0
   * Use inclusiveNamespacesPrefixList to generate InclusiveNamespaces
   * Add support for appending attributes to KeyInfo element

lib/src/signed_xml.dart

@@ -202,6 +202,48 @@ class SignedXml {
 
     final doc = parseFromString(xml);
 
+    // Reset the references as only references from our re-parsed signedInfo node can be trusted
+    this.references.clear();
+
+    final unverifiedSignedInfoCanon = _getCanonSignedInfoXml(doc);
+    if (unverifiedSignedInfoCanon.isEmpty) {
+      if (callback != null) {
+        callback(ArgumentError('Canonical signed info cannot be empty'), false);
+        return false;
+      }
+
+      throw ArgumentError('Canonical signed info cannot be empty');
+    }
+
+    // unsigned, verify later to keep with consistent callback behavior
+    final parsedUnverifiedSignedInfo =
+        parseFromString(unverifiedSignedInfoCanon);
+    final unverifiedSignedInfoDoc = parsedUnverifiedSignedInfo.document;
+    if (unverifiedSignedInfoDoc == null) {
+      if (callback != null) {
+        callback(
+            ArgumentError('Could not parse signedInfoCanon into a document'),
+            false);
+        return false;
+      }
+
+      throw ArgumentError('Could not parse signedInfoCanon into a document');
+    }
+
+    final references = findChilds(unverifiedSignedInfoDoc, 'Reference');
+    if (references.isEmpty) {
+      if (callback != null) {
+        callback(ArgumentError('could not find any Reference elements'), false);
+        return false;
+      }
+
+      throw ArgumentError('could not find any Reference elements');
+    }
+
+    for (var reference in references) {
+      _loadReference(reference);
+    }
+
     if (!_validateReferences(doc)) {
       if (callback == null) {
         return false;
@@ -211,6 +253,7 @@ class SignedXml {
       }
     }
 
+    // Stage B: Take the signature algorithm and key and verify the SignatureValue against the canonicalized SignedInfo
     if (callback == null) {
       //Synchronous flow
       if (!_validateSignatureValue(doc)) {
@@ -237,6 +280,10 @@ class SignedXml {
     if (signedInfo.isEmpty) {
       throw ArgumentError('could not find SignedInfo element in the message');
     }
+    if (signedInfo.length > 1) {
+      throw ArgumentError(
+          'could not get canonicalized signed info for a signature that contains multiple SignedInfo nodes');
+    }
 
     // Since in Dart the doc is always a XmlDocument
     // if (canonicalizationAlgorithm == 'http://www.w3.org/TR/2001/REC-xml-c14n-20010315'
@@ -321,7 +368,9 @@ class SignedXml {
 
   bool _validateReferences(XmlDocument doc) {
     for (final ref in references) {
-      final uri = ref.uri.startsWith('#') ? ref.uri.substring(1) : ref.uri;
+      final uri = ref.uri != null
+          ? (ref.uri!.startsWith('#') ? ref.uri!.substring(1) : ref.uri!)
+          : '';
       final elem = <XPathNode<XmlNode>>[];
 
       if (uri == '') {
@@ -399,15 +448,46 @@ class SignedXml {
       throw ArgumentError('could not find SignatureMethod/@Algorithm element');
     }
     signatureAlgorithm = nodes.attr ?? '';
-    references.clear();
-    final refs = XmlXPath.node(signatureNode)
-        .query(".//*[local-name()='SignedInfo']/*[local-name()='Reference']");
-    if (refs.nodes.isEmpty) {
+    final signedInfoNodes = findChilds(signatureNode, 'SignedInfo');
+    if (signedInfoNodes.isEmpty) {
+      throw ArgumentError('no signed info node found');
+    }
+    if (signedInfoNodes.length > 1) {
+      throw ArgumentError(
+          'could not load signature that contains multiple SignedInfo nodes');
+    }
+
+    // Try to operate on the c14n version of signedInfo. This forces the initial getReferences()
+    // API call to always return references that are loaded under the canonical SignedInfo
+    // in the case that the client access the .references **before** signature verification.
+
+    // Ensure canonicalization algorithm is exclusive, otherwise we'd need the entire document
+    var canonicalizationAlgorithmForSignedInfo = canonicalizationAlgorithm;
+    if (canonicalizationAlgorithmForSignedInfo ==
+            "http://www.w3.org/TR/2001/REC-xml-c14n-20010315" ||
+        canonicalizationAlgorithmForSignedInfo ==
+            "http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments") {
+      canonicalizationAlgorithmForSignedInfo =
+          "http://www.w3.org/2001/10/xml-exc-c14n#";
+    }
+
+    final temporaryCanonSignedInfo = _getCanonXml(
+      [canonicalizationAlgorithm],
+      signedInfoNodes.first,
+    );
+    final temporaryCanonSignedInfoXml =
+        parseFromString(temporaryCanonSignedInfo);
+    final signedInfoDoc = temporaryCanonSignedInfoXml.rootElement;
+
+    this.references.clear();
+
+    final references = findChilds(signedInfoDoc, 'Reference');
+    if (references.isEmpty) {
       throw ArgumentError('could not find any Reference elements');
     }
 
-    for (final ref in refs.nodes) {
-      _loadReference(ref.node);
+    for (final ref in references) {
+      _loadReference(ref);
     }
 
     signatureValue =
@@ -439,12 +519,16 @@ class SignedXml {
     if (nodes.isEmpty) {
       throw ArgumentError('could not find DigestValue in reference $ref');
     }
-    if (nodes.first.firstChild == null ||
-        (nodes.first.firstChild?.value ?? '') == '') {
+
+    if (nodes.length > 1) {
       throw ArgumentError(
-          'could not find the value of DigestValue in ${nodes.first}');
+          'could not load reference for a node that contains multiple DigestValue nodes: $ref');
+    }
+
+    final digestValue = nodes.first.innerText;
+    if (digestValue.isEmpty) {
+      throw ArgumentError('could not find the value of DigestValue in $ref');
     }
-    final digestValue = nodes.first.firstChild!.value;
 
     final transforms = <String>[];
     String? inclusiveNamespacesPrefixList;
@@ -490,14 +574,9 @@ class SignedXml {
       transforms.add('http://www.w3.org/TR/2001/REC-xml-c14n-20010315');
     }
 
-    addReference(
-        null,
-        transforms,
-        digestAlgo,
-        findAttr(ref, 'URI')?.value ?? '',
-        digestValue,
-        inclusiveNamespacesPrefixList,
-        false);
+    final refUri = ref.getAttribute('URI');
+    addReference(null, transforms, digestAlgo, refUri, digestValue,
+        inclusiveNamespacesPrefixList, false);
   }
 
   void addReference(String? xpath,
@@ -1079,7 +1158,7 @@ class _Reference {
   String? xpath;
   final List<String> transforms;
   final String digestAlgorithm;
-  String uri;
+  String? uri;
   final String digestValue;
   final String? inclusiveNamespacesPrefixList;
   final bool isEmptyUri;

pubspec.yaml

@@ -1,13 +1,13 @@
 name: xml_crypto
-version: 3.2.0
+version: 3.2.1
 description: |
   Xml digital signature library for Dart. For signing and verifying XML documents.
 homepage: https://github.com/rikulo/xml-crypto
 repository: https://github.com/rikulo/xml-crypto
 issue_tracker: https://github.com/rikulo/xml-crypto/issues
 
 environment:
-  sdk: '>=2.12.0 <3.0.0'
+  sdk: '>=2.12.0 <4.0.0'
 
 dependencies:
   xml: ^6.3.0

test/saml_response_test.dart

@@ -81,4 +81,56 @@ void main() {
     sig.loadSignature(signature);
     expect(sig.checkSignature(xml), isFalse);
   });
+
+  test('test validating SAML response with digest comment', () {
+    final xml = File('./test/static/valid_saml_with_digest_comment.xml').readAsStringSync();
+    final doc = parseFromString(xml);
+    final signature = XmlXPath.node(doc)
+        .query("//*[local-name()='Signature' and namespace()='ds']") // FIXME should use namespace-uri()
+        .node?.node;
+
+    final sig = SignedXml();
+    sig.keyInfoProvider = FileKeyInfo('./test/static/feide_public.pem');
+    sig.loadSignature(signature);
+    expect(sig.checkSignature(xml), isFalse);
+    expect(sig.references.first.digestValue, 'RnNjoyUguwze5w2R+cboyTHlkQk=');
+  });
+
+  test('test signature contains a `SignedInfo` node', () {
+    final xml = File('./test/static/invalid_saml_no_signed_info.xml').readAsStringSync();
+    final doc = parseFromString(xml);
+    final signature = XmlXPath.node(doc)
+        .query("/*/*[local-name()='Signature' and namespace()='ds']") // FIXME should use namespace-uri()
+        .node?.node;
+
+    final sig = SignedXml();
+    sig.keyInfoProvider = FileKeyInfo('./test/static/feide_public.pem');
+    expect(() => sig.loadSignature(signature), throwsArgumentError);
+  });
+
+  test('test validation ignores an additional wrapped `SignedInfo` node', () {
+    final xml = File('./test/static/saml_wrapped_signed_info_node.xml').readAsStringSync();
+    final doc = parseFromString(xml);
+    final signature = XmlXPath.node(doc)
+        .query("//*[local-name()='Signature' and namespace()='ds']") // FIXME should use namespace-uri()
+        .node?.node;
+
+    final sig = SignedXml();
+    sig.keyInfoProvider = FileKeyInfo('./test/static/saml_external_ns.pem');
+    sig.loadSignature(signature);
+    expect(sig.references.length, 1);
+    expect(sig.checkSignature(xml), isTrue);
+  });
+
+  test('test signature does not contain multiple `SignedInfo` nodes', () {
+    final xml = File('./test/static/saml_multiple_signed_info_nodes.xml').readAsStringSync();
+    final doc = parseFromString(xml);
+    final signature = XmlXPath.node(doc)
+        .query("//*[local-name()='Signature' and namespace()='ds']") // FIXME should use namespace-uri()
+        .node?.node;
+
+    final sig = SignedXml();
+    sig.keyInfoProvider = FileKeyInfo('./test/static/saml_external_ns.pem');
+    expect(() => sig.loadSignature(signature), throwsArgumentError);
+  });
 }

test/static/invalid_saml_no_signed_info.xml

@@ -0,0 +1,9 @@
+<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx94e4a319-b6f7-4a40-25d1-01fcb642e4c5" Version="2.0" IssueInstant="2012-07-03T11:32:20Z" Destination="http://localhost:3000/login/callback" InResponseTo="_d766d16611ac0d14121b"><saml:Issuer>https://openidp.feide.no</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+  <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
+  <ds:SignatureValue>dkONrkxW+LSuDvnNMG/mWYFa47d2WGyapLhXSTYqrlT9Td+tT7ciojNJ55WTaPaCMt7IrGtIxxskPAZIjdIn5pRyDxHr0joWxzZ7oZHCOI1CnQV5HjOq+rzzmEN2LctCZ6S4hbL7SQ1qJ3vp2BCXAygy4tmJOURQdnk0KLwwRS8=</ds:SignatureValue>
+<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/></samlp:Status><saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx66496e6c-3c29-230d-6d47-b245434b872d" Version="2.0" IssueInstant="2012-07-03T11:32:20Z"><saml:Issuer>https://openidp.feide.no</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
+  <ds:Reference URI="#pfx66496e6c-3c29-230d-6d47-b245434b872d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>RnNjoyUguwze5w2R+cboyTHlkQk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>aw5711jKP7xragunjRRCAD4mT4xKHc37iohBpQDbdSomD3ksOSB96UZQp0MtaC3xlVSkMtYw85Om96T2q2xrxLLYVA50eFJEMMF7SCVPStWTVjBlaCuOPEQxIaHyJs9Sy3MCEfbBh4Pqn9IJBd1kzwdlCrWWjAmksbFFg5wHQJA=</ds:SignatureValue>
+<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><saml:Subject><saml:NameID SPNameQualifier="passport-saml" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_6c5dcaa3053321ff4d63785fbc3f67c59a129cde82</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData NotOnOrAfter="2012-07-03T11:37:20Z" Recipient="http://localhost:3000/login/callback" InResponseTo="_d766d16611ac0d14121b"/></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2012-07-03T11:31:50Z" NotOnOrAfter="2012-07-03T11:37:20Z"><saml:AudienceRestriction><saml:Audience>passport-saml</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2012-07-03T11:32:20Z" SessionNotOnOrAfter="2012-07-03T19:32:20Z" SessionIndex="_c8e6823fe38ddbce125f9be6e5118b8c352d04bcae"><saml:AuthnContext><saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef></saml:AuthnContext></saml:AuthnStatement><saml:AttributeStatement><saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">bergie</saml:AttributeValue></saml:Attribute><saml:Attribute Name="givenName" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Henri</saml:AttributeValue></saml:Attribute><saml:Attribute Name="sn" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Bergius</saml:AttributeValue></saml:Attribute><saml:Attribute Name="cn" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Henri Bergius</saml:AttributeValue></saml:Attribute><saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">[email protected]</saml:AttributeValue></saml:Attribute><saml:Attribute Name="eduPersonPrincipalName" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">[email protected]</saml:AttributeValue></saml:Attribute><saml:Attribute Name="eduPersonTargetedID" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">8216c78fe244502efa13f62e6615c94acb7bdf3e</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">bergie</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Henri</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Bergius</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:2.5.4.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Henri Bergius</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">[email protected]</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">[email protected]</saml:AttributeValue></saml:Attribute><saml:Attribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">8216c78fe244502efa13f62e6615c94acb7bdf3e</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>