diff options
Diffstat (limited to 'docs/tests/merlin-xmlenc-five')
34 files changed, 1485 insertions, 0 deletions
diff --git a/docs/tests/merlin-xmlenc-five/Readme.txt b/docs/tests/merlin-xmlenc-five/Readme.txt new file mode 100644 index 00000000..3a663b7c --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/Readme.txt @@ -0,0 +1,117 @@ +Example Signatures[1] using Encryption[2] key information and +Additional Security URIs[3], Encrypted Data[2] and Decryption +Transform[4] + +[1] http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/ +[2] http://www.w3.org/Encryption/2001/Drafts/xmlenc-core/ +[3] http://www.ietf.org/internet-drafts/draft-eastlake-xmldsig-uri-02.txt +[4] http://www.w3.org/TR/xmlenc-decrypt + +*** +Some of these signature are WITHOUT cryptographic merit; +for example, key transport of an HMAC key is meaningless. +These are provided solely for testing purposes. +*** + +Private keys necessary for performing the verification +and decryption are provided in the PKCS#12 file ids.p12, +encrypted under the pass phrase "Our Little Secret". I +may have done some of the ASN.1 encoding in this P12 +incorrectly; I hope not. Private keys are also available +in PKCS#8 encoding; rsa.p8, dh1.p8. + +RSA/OAEP is presently poorly defined; I assume MGF1/SHA-1. + +Secret keys are identified by key name as follows: + + Key Name | Algorithm | Key Value +----------+-----------+----------- + bob | 3des | "abcdefghijklmnopqrstuvwx".getBytes ("ASCII") + job | aes-128 | "abcdefghijklmnop".getBytes ("ASCII") + jeb | aes-192 | "abcdefghijklmnopqrstuvwx".getBytes ("ASCII") + jed | aes-256 | "abcdefghijklmnopqrstuvwxyz012345".getBytes ("ASCII") + +. encrypt-content-aes128-cbc-kw-aes192.xml +. encrypt-content-aes192-cbc-dh-sha512.xml +. encrypt-content-tripledes-cbc.xml +. encrypt-data-aes128-cbc.xml +. encrypt-data-aes192-cbc-kw-aes256.xml +. encrypt-data-aes256-cbc-kw-tripledes.xml +. encrypt-data-tripledes-cbc-rsa-oaep-mgf1p-sha256.xml +. encrypt-data-tripledes-cbc-rsa-oaep-mgf1p.xml +. encrypt-element-aes128-cbc-rsa-1_5.xml +. encrypt-element-aes192-cbc-ref.xml +. encrypt-element-aes256-cbc-kw-aes256-dh-ripemd160.xml +. encrypt-element-tripledes-cbc-kw-aes128.xml + Encrypted content, element and data. RSA private key has + friendly name "RSA" in the P12, and is rsa.p8. + DH private key has ID "DH1", and is dh1.p8. + +. encrypt-content-aes256-cbc-prop.xml + Contains a useless EncryptionProperty. + +. encrypt-element-aes256-cbc-carried-kw-aes256.xml + External EncryptedKey contains a CarriedKeyName which + is referenced by a KeyName in the EncryptedData; the + key for Recipient "someone else" is not for you; the + key for Recipient "you" is. + +. encrypt-element-aes256-cbc-retrieved-kw-aes256.xml + External EncryptedKey is identified by a RetrievalMethod + in the EncryptedData. + +. decryption-transform.xml + Decryption transform. + +. decryption-transform-except.xml + Decryption transform with Except. + +All signatures are performed with nontruncated HMAC +algorithms. + +For debugging purposes, where chosen, the MAC key is +"abcdefghijklmnopqrstuvwxyz012345".getBytes ("ASCII"). Where +agreed, it has length equal to the HMAC output length; e.g., 256 +bits for HMAC/SHA-256. + +. encsig-ripemd160-hmac-ripemd160-kw-tripledes.xml + RIPEMD-160 message digest; HMAC/RIPEMD-160 key is wrapped + using triple DES. The decryption key is from the above table, + identified by the key name "bob". + +. encsig-sha256-hmac-sha256-kw-aes128.xml + SHA-256 message digest; HMAC/SHA-256 key is wrapped using + AES-128. The decryption key is from the above table, identified + by the key name "job". + +. encsig-sha384-hmac-sha384-kw-aes192.xml + SHA-384 message digest; HMAC/SHA-384 key is wrapped using + AES-192. The decryption key is from the above table, identified + by the key name "jeb". + +. encsig-sha512-hmac-sha512-kw-aes256.xml + SHA-512 message digest; HMAC/SHA-512 key is wrapped using + AES-256. The decryption key is from the above table, identified + by the key name "jed". + +. encsig-hmac-sha256-rsa-1_5.xml + HMAC/SHA-256 keys is transported using RSA/OAEP. Your private + key has friendly name "RSA" in the P12. + +. encsig-hmac-sha256-rsa-oaep-mgf1p.xml + HMAC/SHA-256 keys is transported using RSA/PKCS#1. Your private + key has friendly name "RSA" in the P12. + +. encsig-hmac-sha256-dh.xml + HMAC/SHA-256 key is agreed using Diffie Hellman. Your private + key has friendly name "DH1" in the P12. + +. encsig-hmac-sha256-kw-tripledes-dh.xml + HMAC/SHA-256 key is wrapped using triple DES. The decryption + key is agreed using Diffie Hellman. Your private key has + friendly name "DH1" in the P12. + +Merlin Hughes <merlin@baltimore.ie> +Baltimore Technologies, Ltd. + +Monday, March 4, 2002 diff --git a/docs/tests/merlin-xmlenc-five/bad-encrypt-content-aes128-cbc-kw-aes192.xml b/docs/tests/merlin-xmlenc-five/bad-encrypt-content-aes128-cbc-kw-aes192.xml new file mode 100644 index 00000000..74eec57f --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/bad-encrypt-content-aes128-cbc-kw-aes192.xml @@ -0,0 +1,42 @@ +<?xml version="1.0" encoding="UTF-8"?> +<PurchaseOrder xmlns="urn:example:po"> + <Items> + <Item Code="001-001-001" Quantity="1"> + spade + </Item> + <Item Code="001-001-002" Quantity="1"> + shovel + </Item> + </Items> + <ShippingAddress> + Dig PLC, 1 First Ave, Dublin 1, Ireland + </ShippingAddress> + <PaymentInfo> + <EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" Type="http://www.w3.org/2001/04/xmlenc#Content"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#kw-aes192" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>jeb</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + JbjZH7Mq564oMybpvCHWYM/5ER3eFsAV + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> + <CipherData> + <CipherValue> + YDYTxR+smxZDSVoXXEp3n6HzTgWqV7ZlG6I1lmEv7zLGZBF/o7eqe5QGT6L3DPNW + geflA8vVJHxwliixWcvHCnNKQkx+Sw8YbIknCQyr4mqtXEmHhsie5XYTEyqgKLVP + YdNXf56wLUTMEmBqq7cto9OrYcBWkrDcQQvHmDkHuG+Nom4m+623GsB0FNts6VyN + sdGMwo4K0bEFReLL04l6It+cgLJ2q+LKdBoMQL59IAQmrwi0bkiqee2cLlDuGyQ1 + KD9IQ1qtlJpvQujN4xNVWT00UjtWxmpSMID/Kue/AnXn7Cf8zw1ZZQitgh8uWOX2 + uMy99F2YlxqIK1r+MeXHuZDNf75S8dFaKIKtHMf7ioA= + </CipherValue> + </CipherData> + </EncryptedData> + </PaymentInfo> +</PurchaseOrder> diff --git a/docs/tests/merlin-xmlenc-five/decryption-transform-except.xml b/docs/tests/merlin-xmlenc-five/decryption-transform-except.xml new file mode 100644 index 00000000..bdd22516 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/decryption-transform-except.xml @@ -0,0 +1,83 @@ +<?xml version="1.0" encoding="UTF-8"?> +<PurchaseOrder xmlns="urn:example:po"> + <Items> + <Item Code="001-001-001" Quantity="1"> + spade + </Item> + <Item Code="001-001-002" Quantity="1"> + shovel + </Item> + </Items> + <ShippingAddress> + Dig PLC, 1 First Ave, Dublin 1, Ireland + </ShippingAddress> + <PaymentInfo> + <EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" Id="encrypt-data-0" Type="http://www.w3.org/2001/04/xmlenc#Content"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>jed</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + cX6lnfgmvWuxyiQgNhzAq1lYggW2M5GziFgNBQju3xcnDqlzf5LSjeyBnbL0Q7ws + 8XhySFCrdwIi5mVxyfdFkVrTlzQQ0viaqTDgi9PQRgZMOImGGWij3wbmf9XseHHt + 6q8V7LPjMFQAnsLDQgKf4gzzOnhtKf15GfTEpGvUnNn2dLDxw+hDcD1N54/bjSQs + uTiL7PgGQ5g4u4eaXRRLWeAGsIf5QgdQG3GLiOZIX1LJ5bREKgXeKrtJJI97xUX3 + 3vaF+tKRcSFBFIMjFrw271bFj4vvvQZfSS6xX+BKXHOUu8C4NH9Le8pA9o4NgCB8 + tWA8W3iI5/BGEZve0Me9byvPHYjRXlbG+YqysVTmzfw= + </CipherValue> + </CipherData> + </EncryptedData> + <EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" Id="encrypt-data-1"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc" /> + <CipherData> + <CipherValue> + x3aR5pJ5pepFFH5ENv61pZG4pVwNKaM+H9oyY4qG6d8l/C0J1iGv6c8dyLp0YQ2k + </CipherValue> + </CipherData> + </EncryptedData> + </PaymentInfo> + <Signature xmlns="http://www.w3.org/2000/09/xmldsig#"> + <SignedInfo> + <CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" /> + <SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1" /> + <Reference URI=""> + <Transforms> + <Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" /> + <Transform Algorithm="http://www.w3.org/2001/04/decrypt#"> + <Except xmlns="http://www.w3.org/2001/04/decrypt#" URI="#encrypt-data-1" /> + </Transform> + </Transforms> + <DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" /> + <DigestValue>5Oe9qba6preOZG1NZAYK2/6pu9RCon9vRJ9hVLDpeng=</DigestValue> + </Reference> + </SignedInfo> + <SignatureValue> + LuHrz9+WG7/c4Q81tFboNZg2cktWbZcRfp08XrmgKy1GDm9xSfTYCA== + </SignatureValue> + <KeyInfo> + <KeyValue> + <DSAKeyValue> + <P> + imup6lmki4rAmUstKb/xdBRMWNtQ+pDN97ZnLA9X3lKbkEHtYFyjQ3uActgVSJ75 + iVRuKxz4Cb5RzVm25EaKmKq8rif1MtBIi6jjDJxmIdNaEKG9zVTf9giJx1N9I0t3 + oh1fAVZDSrzKzJGQ2WvDfIfFHdJMtB3C0VKGmLZR7Xk= + </P> + <Q> + xDve3j7sEnh4rIzM5gK+5/gxxFU= + </Q> + <G> + NLugAf6IZJxo3BCOi5yrGEVwtlEzXcnndXhd0Tz38CnQKc4SEupm4PyP5TmLvK64 + TDfOD7sno/W5oI1KZdimfW2c4r/6waNzZSvicMOWhLYY621Nn6njBc8VNwoxWpzC + XhKm70b8+D4YZMn/eU5DN8dvhTv/bNK21FfJqjp033U= + </G> + <Y> + W7dOmH/vWqocVCiqaxj6soxVXfR8XpMdY2Zv4Amjr3n81geyOLb6IZ+l7MUbdp85 + 29DQzuoVTthVpB9X4JKCprZIzifOTM1PFflTBzjx7egJwJWAIVdWyiIPjke6Va+w + uV2n4Rl/cgCvrXK5cTov5C/Bpaf6o+qrrDGFBLLZTF4= + </Y> + </DSAKeyValue> + </KeyValue> + </KeyInfo> + </Signature> +</PurchaseOrder> diff --git a/docs/tests/merlin-xmlenc-five/decryption-transform.xml b/docs/tests/merlin-xmlenc-five/decryption-transform.xml new file mode 100644 index 00000000..50d68b34 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/decryption-transform.xml @@ -0,0 +1,73 @@ +<?xml version="1.0" encoding="UTF-8"?> +<PurchaseOrder xmlns="urn:example:po"> + <Items> + <Item Code="001-001-001" Quantity="1"> + spade + </Item> + <Item Code="001-001-002" Quantity="1"> + shovel + </Item> + </Items> + <ShippingAddress> + Dig PLC, 1 First Ave, Dublin 1, Ireland + </ShippingAddress> + <PaymentInfo> + <EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" Id="encrypt-data-0" Type="http://www.w3.org/2001/04/xmlenc#Content"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>jed</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + SE3HkQevYxzuN9LoMH3QIYHK0X7DBlobhiTbRucgKcTKt9DsUJIcd6JZV6lrw/4x + YICyq6YM73IWpibspxgz/0chhvWem9sYZvWTuTtZgHzeY0Uri6bpXqBEn1YT0K6B + chwfv1myfp91EmdPHU+shH6ZEyYkHJUMss58iIawIuVsIfpCO7xDKgfs/glnN3os + epY0KvAMZSnwUAf42fQ3TlahLTR+B52AmdodwaCwQlwQwrC7RH0FtNiiLQA9SA2t + //StKWcyHjswUCejfKLdjv6bK+WmBxmnNWtmI9DYkjJ6V5pYU1MVw+JG410O+gaa + fnNWxlWa+BGwcTaz+KNrP8bIqli8IoJJgxXIUqfb734= + </CipherValue> + </CipherData> + </EncryptedData> + </PaymentInfo> + <Signature xmlns="http://www.w3.org/2000/09/xmldsig#"> + <SignedInfo> + <CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" /> + <SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1" /> + <Reference URI=""> + <Transforms> + <Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" /> + <Transform Algorithm="http://www.w3.org/2001/04/decrypt#" /> + </Transforms> + <DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" /> + <DigestValue>wSvPYqTcpLfX2mKXibtsmm7FDu8N+/BObM0+bGaeXhk=</DigestValue> + </Reference> + </SignedInfo> + <SignatureValue> + O0VYUdslJ8t2EURD0T/v2nNrFQMo42vzvfAhooZrDbkuLbCj6/Hxmw== + </SignatureValue> + <KeyInfo> + <KeyValue> + <DSAKeyValue> + <P> + imup6lmki4rAmUstKb/xdBRMWNtQ+pDN97ZnLA9X3lKbkEHtYFyjQ3uActgVSJ75 + iVRuKxz4Cb5RzVm25EaKmKq8rif1MtBIi6jjDJxmIdNaEKG9zVTf9giJx1N9I0t3 + oh1fAVZDSrzKzJGQ2WvDfIfFHdJMtB3C0VKGmLZR7Xk= + </P> + <Q> + xDve3j7sEnh4rIzM5gK+5/gxxFU= + </Q> + <G> + NLugAf6IZJxo3BCOi5yrGEVwtlEzXcnndXhd0Tz38CnQKc4SEupm4PyP5TmLvK64 + TDfOD7sno/W5oI1KZdimfW2c4r/6waNzZSvicMOWhLYY621Nn6njBc8VNwoxWpzC + XhKm70b8+D4YZMn/eU5DN8dvhTv/bNK21FfJqjp033U= + </G> + <Y> + W7dOmH/vWqocVCiqaxj6soxVXfR8XpMdY2Zv4Amjr3n81geyOLb6IZ+l7MUbdp85 + 29DQzuoVTthVpB9X4JKCprZIzifOTM1PFflTBzjx7egJwJWAIVdWyiIPjke6Va+w + uV2n4Rl/cgCvrXK5cTov5C/Bpaf6o+qrrDGFBLLZTF4= + </Y> + </DSAKeyValue> + </KeyValue> + </KeyInfo> + </Signature> +</PurchaseOrder> diff --git a/docs/tests/merlin-xmlenc-five/dh0.p8 b/docs/tests/merlin-xmlenc-five/dh0.p8 Binary files differnew file mode 100644 index 00000000..bd3683d7 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/dh0.p8 diff --git a/docs/tests/merlin-xmlenc-five/dh1.p8 b/docs/tests/merlin-xmlenc-five/dh1.p8 Binary files differnew file mode 100644 index 00000000..56946899 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/dh1.p8 diff --git a/docs/tests/merlin-xmlenc-five/dsa.p8 b/docs/tests/merlin-xmlenc-five/dsa.p8 Binary files differnew file mode 100644 index 00000000..8e4a85cd --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/dsa.p8 diff --git a/docs/tests/merlin-xmlenc-five/encrypt-content-aes128-cbc-kw-aes192.xml b/docs/tests/merlin-xmlenc-five/encrypt-content-aes128-cbc-kw-aes192.xml new file mode 100644 index 00000000..21467fb7 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encrypt-content-aes128-cbc-kw-aes192.xml @@ -0,0 +1,42 @@ +<?xml version="1.0" encoding="UTF-8"?> +<PurchaseOrder xmlns="urn:example:po"> + <Items> + <Item Code="001-001-001" Quantity="1"> + spade + </Item> + <Item Code="001-001-002" Quantity="1"> + shovel + </Item> + </Items> + <ShippingAddress> + Dig PLC, 1 First Ave, Dublin 1, Ireland + </ShippingAddress> + <PaymentInfo> + <EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" Type="http://www.w3.org/2001/04/xmlenc#Content"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#kw-aes192" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>jeb</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + IbjZH7Mq564oMybpvCHWYM/5ER3eFsAV + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> + <CipherData> + <CipherValue> + YDYTxR+smxZDSVoXXEp3n6HzTgWqV7ZlG6I1lmEv7zLGZBF/o7eqe5QGT6L3DPNW + geflA8vVJHxwliixWcvHCnNKQkx+Sw8YbIknCQyr4mqtXEmHhsie5XYTEyqgKLVP + YdNXf56wLUTMEmBqq7cto9OrYcBWkrDcQQvHmDkHuG+Nom4m+623GsB0FNts6VyN + sdGMwo4K0bEFReLL04l6It+cgLJ2q+LKdBoMQL59IAQmrwi0bkiqee2cLlDuGyQ1 + KD9IQ1qtlJpvQujN4xNVWT00UjtWxmpSMID/Kue/AnXn7Cf8zw1ZZQitgh8uWOX2 + uMy99F2YlxqIK1r+MeXHuZDNf75S8dFaKIKtHMf7ioA= + </CipherValue> + </CipherData> + </EncryptedData> + </PaymentInfo> +</PurchaseOrder> diff --git a/docs/tests/merlin-xmlenc-five/encrypt-content-aes192-cbc-dh-sha512.xml b/docs/tests/merlin-xmlenc-five/encrypt-content-aes192-cbc-dh-sha512.xml new file mode 100644 index 00000000..d1242784 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encrypt-content-aes192-cbc-dh-sha512.xml @@ -0,0 +1,113 @@ +<?xml version="1.0" encoding="UTF-8"?> +<PurchaseOrder xmlns="urn:example:po"> + <Items> + <Item Code="001-001-001" Quantity="1"> + spade + </Item> + <Item Code="001-001-002" Quantity="1"> + shovel + </Item> + </Items> + <ShippingAddress> + Dig PLC, 1 First Ave, Dublin 1, Ireland + </ShippingAddress> + <PaymentInfo> + <EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" Type="http://www.w3.org/2001/04/xmlenc#Content"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <AgreementMethod xmlns="http://www.w3.org/2001/04/xmlenc#" Algorithm="http://www.w3.org/2001/04/xmlenc#dh"> + <KA-Nonce> + bm9uY2U= + </KA-Nonce> + <DigestMethod xmlns="http://www.w3.org/2000/09/xmldsig#" Algorithm="http://www.w3.org/2001/04/xmlenc#sha512" /> + <OriginatorKeyInfo> + <KeyValue xmlns="http://www.w3.org/2000/09/xmldsig#"> + <DHKeyValue xmlns="http://www.w3.org/2001/04/xmlenc#"> + <P> + plygl2uMNc+jYtAZeKCZxPsmqa2z8DrOUa7L455iszN4SdPnL+LsZD47VJayvQY8 + 6D1J5arkwrbUzmhMAjBZsENPBgffRwwEBTjoq+gjSyZNIbxqsqnJdEyUElzn4kGE + whECkJGnOaScacpjZg11h+gd0iBfY091bGHrCZrvr/8= + </P> + <Q> + 9jJXQijNovoq6QUBFcEUYwUvyTM= + </Q> + <Generator> + PerUZgMEMDTegMdTBRG9DPY5EHmwDxwzladdRcfvfdfU/9wlPzz5BUotMm730J9d + lF6avWr929fzYsnIOUDeUOJpltXmrTYnvz5Bi6yuUu6bVwSfv7u4S+I/EM9ZB+eY + 3fdF5TAMHD4tK86lw5APDrN2QnO1UMCwIvjOFatSOI0= + </Generator> + <Public> + Ulu6B1lCwajtIBnolqqgU+R1oxfye63DnI/iLM/Oe+Y8I/LMMaEmo3LmCU30m82r + NyOUqgfnm97S0bT8ZhI8gvw0EyQJ87vhlUz4WcmddU/YlTi3gJHUClr2olmBmRCt + m2vKo/BpoLGJ0Wg1eyWfo54+gCqbeNez/DmBGcBEEhM= + </Public> + </DHKeyValue> + </KeyValue> + <X509Data xmlns="http://www.w3.org/2000/09/xmldsig#"> + <X509Certificate> + MIIDvjCCA36gAwIBAgIGAOxN39MIMAkGByqGSM44BAMwbjELMAkGA1UEBhMCSUUx + DzANBgNVBAgTBkR1YmxpbjEkMCIGA1UEChMbQmFsdGltb3JlIFRlY2hub2xvZ2ll + cyBMdGQuMREwDwYDVQQLEwhYL1NlY3VyZTEVMBMGA1UEAxMMVHJhbnNpZW50IENB + MB4XDTAyMDIyODE3NTMxNloXDTAzMDIyODE3NTI1NFowbzELMAkGA1UEBhMCSUUx + DzANBgNVBAgTBkR1YmxpbjEkMCIGA1UEChMbQmFsdGltb3JlIFRlY2hub2xvZ2ll + cyBMdGQuMREwDwYDVQQLEwhYL1NlY3VyZTEWMBQGA1UEAxMNTWVybGluIEh1Z2hl + czCCAiUwggGaBgcqhkjOPgIBMIIBjQKBgQCmXKCXa4w1z6Ni0Bl4oJnE+yaprbPw + Os5RrsvjnmKzM3hJ0+cv4uxkPjtUlrK9BjzoPUnlquTCttTOaEwCMFmwQ08GB99H + DAQFOOir6CNLJk0hvGqyqcl0TJQSXOfiQYTCEQKQkac5pJxpymNmDXWH6B3SIF9j + T3VsYesJmu+v/wKBgD3q1GYDBDA03oDHUwURvQz2ORB5sA8cM5WnXUXH733X1P/c + JT88+QVKLTJu99CfXZRemr1q/dvX82LJyDlA3lDiaZbV5q02J78+QYusrlLum1cE + n7+7uEviPxDPWQfnmN33ReUwDBw+LSvOpcOQDw6zdkJztVDAsCL4zhWrUjiNAhUA + 9jJXQijNovoq6QUBFcEUYwUvyTMCbQCs/HkLusCqHmY71JxUOFzy5fuWkPpWXJzx + qU3oz1BfMZtPUqjpBnqU97M7VUEg+5pRG2txaHP8XNmB1bY0DCE88riDmHP7HqZB + Z2gbaH2LxXDQDayb5GcPfn38eDcWvVAaKP9fJ8wG5RUu3AoDgYQAAoGAUlu6B1lC + wajtIBnolqqgU+R1oxfye63DnI/iLM/Oe+Y8I/LMMaEmo3LmCU30m82rNyOUqgfn + m97S0bT8ZhI8gvw0EyQJ87vhlUz4WcmddU/YlTi3gJHUClr2olmBmRCtm2vKo/Bp + oLGJ0Wg1eyWfo54+gCqbeNez/DmBGcBEEhOjOjA4MA4GA1UdDwEB/wQEAwIDCDAR + BgNVHQ4ECgQIgUAwB+9f1oIwEwYDVR0jBAwwCoAIgjqisiZ1WVswCQYHKoZIzjgE + AwMvADAsAhQ41mCUsFhmxI58tytV8XEVZOCuUwIUVMe/HbUAH5PJ7aRoCNqa3fCI + cU0= + </X509Certificate> + </X509Data> + </OriginatorKeyInfo> + <RecipientKeyInfo> + <X509Data xmlns="http://www.w3.org/2000/09/xmldsig#"> + <X509Certificate> + MIIDvjCCA36gAwIBAgIGAOxN3+EMMAkGByqGSM44BAMwbjELMAkGA1UEBhMCSUUx + DzANBgNVBAgTBkR1YmxpbjEkMCIGA1UEChMbQmFsdGltb3JlIFRlY2hub2xvZ2ll + cyBMdGQuMREwDwYDVQQLEwhYL1NlY3VyZTEVMBMGA1UEAxMMVHJhbnNpZW50IENB + MB4XDTAyMDIyODE3NTMxOVoXDTAzMDIyODE3NTI1NFowbzELMAkGA1UEBhMCSUUx + DzANBgNVBAgTBkR1YmxpbjEkMCIGA1UEChMbQmFsdGltb3JlIFRlY2hub2xvZ2ll + cyBMdGQuMREwDwYDVQQLEwhYL1NlY3VyZTEWMBQGA1UEAxMNTmlscmVtIFNlaGd1 + aDCCAiUwggGaBgcqhkjOPgIBMIIBjQKBgQCmXKCXa4w1z6Ni0Bl4oJnE+yaprbPw + Os5RrsvjnmKzM3hJ0+cv4uxkPjtUlrK9BjzoPUnlquTCttTOaEwCMFmwQ08GB99H + DAQFOOir6CNLJk0hvGqyqcl0TJQSXOfiQYTCEQKQkac5pJxpymNmDXWH6B3SIF9j + T3VsYesJmu+v/wKBgD3q1GYDBDA03oDHUwURvQz2ORB5sA8cM5WnXUXH733X1P/c + JT88+QVKLTJu99CfXZRemr1q/dvX82LJyDlA3lDiaZbV5q02J78+QYusrlLum1cE + n7+7uEviPxDPWQfnmN33ReUwDBw+LSvOpcOQDw6zdkJztVDAsCL4zhWrUjiNAhUA + 9jJXQijNovoq6QUBFcEUYwUvyTMCbQCs/HkLusCqHmY71JxUOFzy5fuWkPpWXJzx + qU3oz1BfMZtPUqjpBnqU97M7VUEg+5pRG2txaHP8XNmB1bY0DCE88riDmHP7HqZB + Z2gbaH2LxXDQDayb5GcPfn38eDcWvVAaKP9fJ8wG5RUu3AoDgYQAAoGAGSYT19Pb + VCxMt06cAP7zQZ6AC5eXp3zeAweIevV96ryA1mB03qhB9X2lVowAUOFc24aVRTz7 + wRoRjNQ20atzSy21C7yXDkvZ4uxfdrpIqpIVrI28e7XL+6CrhnAk621OvdeyEz5H + orA21hPXoCNdnUPG5Ib20oopM87ptF5dwiWjOjA4MA4GA1UdDwEB/wQEAwIDCDAR + BgNVHQ4ECgQIiDCSQ3FB/oEwEwYDVR0jBAwwCoAIgjqisiZ1WVswCQYHKoZIzjgE + AwMvADAsAhQMtZ98TyqVkVqUJ3RJqaU7l2xqKgIUX997qRqeMjAkK88NHeNd95/2 + Yos= + </X509Certificate> + </X509Data> + </RecipientKeyInfo> + </AgreementMethod> + </KeyInfo> + <CipherData> + <CipherValue> + 5jIlxXZGhx8vUNbL0ZvdRry6mPapX8qLYlDgy3tE6nRbnBRWACviYQAXBqvDfn1R + TKmBWZ5NoJobM8lXWOk2nNQIuSQojcFYRuvcWU7DffDVX7dUCAVRJp6PS/5V1IHR + JJ2WBagWSW1lFW9mqjfe0ZflEZGYI3/5kUYQIpbMvEuXoF8129VGiKalZsCVTRxd + /IsdT8x/7L57GlGq0OzCMI5zG3QrBV7wUOoqBu5SxS8QUvUPucH8hsD4Bq4BwVEa + GlUVAj7H3HYYo7fviTO4i2lTMunGW9rcJVnKXjDM/Mds3oM4zbBo/Ao3m3rmpUUz + AwSe6ofh6ML418+cyCaRUoVQOlG+VwkHEKUiYYGhsKY= + </CipherValue> + </CipherData> + </EncryptedData> + </PaymentInfo> +</PurchaseOrder> diff --git a/docs/tests/merlin-xmlenc-five/encrypt-content-aes256-cbc-prop.xml b/docs/tests/merlin-xmlenc-five/encrypt-content-aes256-cbc-prop.xml new file mode 100644 index 00000000..03a73157 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encrypt-content-aes256-cbc-prop.xml @@ -0,0 +1,39 @@ +<?xml version="1.0" encoding="UTF-8"?> +<PurchaseOrder xmlns="urn:example:po"> + <Items> + <Item Code="001-001-001" Quantity="1"> + spade + </Item> + <Item Code="001-001-002" Quantity="1"> + shovel + </Item> + </Items> + <ShippingAddress> + Dig PLC, 1 First Ave, Dublin 1, Ireland + </ShippingAddress> + <PaymentInfo> + <EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" Id="encrypt-data-0" Type="http://www.w3.org/2001/04/xmlenc#Content"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>jed</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + H8n1OuEJFyUgUguDFF6ml8nRbA0IaDYgmtGelWT4V7CSz9q/AvtfxyMzUH+tQZ+F + jyXh3otR1+V1+8EsevzEq5nUmNKl+wyxQmWaUvbvXpSwAJnlJdyvnP56JiXUBS+p + C2KzlO9kk8l6awtuRd9Z6eVjngwTf7kNprmu5Bv0o+x7dcq96G8wGLvMThbs4uxk + iIDK5+qGBzzIlFw3GG82MKmnVBveQw3LD52y76yBtoayuAJFJMnrXa0OEAaBRSI2 + fjPNGJV3sCyKZDHqGlsQ4X+VvXzevLbBLkFy1xH9/zoUXo8cEaTvsIOBYu/Xn/CJ + y/dpe/dvOqqji+9vFccAyrBHxHeYSonuFsxfpSDVC6Y= + </CipherValue> + </CipherData> + <EncryptionProperties> + <EncryptionProperty Target="#encrypt-data-0"> + <Certification xmlns="urn:example:prop"> + certifiable + </Certification> + </EncryptionProperty> + </EncryptionProperties> + </EncryptedData> + </PaymentInfo> +</PurchaseOrder> diff --git a/docs/tests/merlin-xmlenc-five/encrypt-content-tripledes-cbc.xml b/docs/tests/merlin-xmlenc-five/encrypt-content-tripledes-cbc.xml new file mode 100644 index 00000000..f5dafe98 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encrypt-content-tripledes-cbc.xml @@ -0,0 +1,32 @@ +<?xml version="1.0" encoding="UTF-8"?> +<PurchaseOrder xmlns="urn:example:po"> + <Items> + <Item Code="001-001-001" Quantity="1"> + spade + </Item> + <Item Code="001-001-002" Quantity="1"> + shovel + </Item> + </Items> + <ShippingAddress> + Dig PLC, 1 First Ave, Dublin 1, Ireland + </ShippingAddress> + <PaymentInfo> + <EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" Type="http://www.w3.org/2001/04/xmlenc#Content"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>bob</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + uchJT2QyzQe7BoBaDYKPR5BDgEW8jsJ3UOGEYz9EVrBKVztYfcu0xhif5Y9kqtyx + DDa7woNcTyhwQDZh9jGr5hzkcjrsKfMjJw+PnKNZzc+KMW0z861L8sdhdl8TA+bt + yudfaCEJaH4RdHABp+VMzL5CrXr5skvubolWs1KzUtqbRekkxucknzJmnqRY8yPp + 4iBvVuvus+Bk0pj271NWu13CmHvdJRMMDSX30JMfsecW6mfdF5xjoFciL8VnemzJ + qt0SUVjMzoeY0PnCdk09Ej2OZdj8AtkLPCEKeiBBD+coCf5F8WaLrPTRPgjoAtiN + Wda+McaZPJje1IfoAKGTcg== + </CipherValue> + </CipherData> + </EncryptedData> + </PaymentInfo> +</PurchaseOrder> diff --git a/docs/tests/merlin-xmlenc-five/encrypt-data-aes128-cbc.xml b/docs/tests/merlin-xmlenc-five/encrypt-data-aes128-cbc.xml new file mode 100644 index 00000000..8ae0a064 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encrypt-data-aes128-cbc.xml @@ -0,0 +1,12 @@ +<?xml version="1.0" encoding="UTF-8"?> +<EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" MimeType="text/plain"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>job</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + QMpxhXq1DtBeyC9KfSaMQWrEtefe+e935gF/x62spvmL6IW0XeS0W4Kk31OgWzN0 + </CipherValue> + </CipherData> +</EncryptedData> diff --git a/docs/tests/merlin-xmlenc-five/encrypt-data-aes192-cbc-kw-aes256.xml b/docs/tests/merlin-xmlenc-five/encrypt-data-aes192-cbc-kw-aes256.xml new file mode 100644 index 00000000..55ccb1e7 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encrypt-data-aes192-cbc-kw-aes256.xml @@ -0,0 +1,22 @@ +<?xml version="1.0" encoding="UTF-8"?> +<EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" MimeType="text/plain"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#kw-aes256" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>jed</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + 4AAgyi3M7xNdBimbQZKdGJLn3/cS4Yv8QKuA01+gUnY= + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> + <CipherData> + <CipherValue> + 50lv94d/DFJirJXYOUXaBlrO+7gIXpx8cqH+G2xvE4mueoIxmGs8RH7FBXwjuMgf + </CipherValue> + </CipherData> +</EncryptedData> diff --git a/docs/tests/merlin-xmlenc-five/encrypt-data-aes256-cbc-kw-tripledes.xml b/docs/tests/merlin-xmlenc-five/encrypt-data-aes256-cbc-kw-tripledes.xml new file mode 100644 index 00000000..14e2b922 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encrypt-data-aes256-cbc-kw-tripledes.xml @@ -0,0 +1,22 @@ +<?xml version="1.0" encoding="UTF-8"?> +<EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" MimeType="text/plain"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#kw-tripledes" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>bob</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + ZyJbVsjRM4MEsswwwHz57aUz1eMqZHuEIoEPGS47CcmLvhuCtlzWZ9S/WcVJZIpz + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> + <CipherData> + <CipherValue> + Lp2ZWyJERT05icmHvWWbEtCCfmB2jvSlSclhS0oj3A3PU90aE6v+bFFQxrHw7VUd + </CipherValue> + </CipherData> +</EncryptedData> diff --git a/docs/tests/merlin-xmlenc-five/encrypt-data-tripledes-cbc-rsa-oaep-mgf1p-sha256.xml b/docs/tests/merlin-xmlenc-five/encrypt-data-tripledes-cbc-rsa-oaep-mgf1p-sha256.xml new file mode 100644 index 00000000..c9c30e09 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encrypt-data-tripledes-cbc-rsa-oaep-mgf1p-sha256.xml @@ -0,0 +1,46 @@ +<?xml version="1.0" encoding="UTF-8"?> +<EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" MimeType="text/plain"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"> + <DigestMethod xmlns="http://www.w3.org/2000/09/xmldsig#" Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" /> + <OAEPparams> + MTIzNDU2Nzg= + </OAEPparams> + </EncryptionMethod> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <X509Data> + <X509Certificate> + MIICkjCCAfugAwIBAgIGAOxN32E+MA0GCSqGSIb3DQEBBQUAMG4xCzAJBgNVBAYT + AklFMQ8wDQYDVQQIEwZEdWJsaW4xJDAiBgNVBAoTG0JhbHRpbW9yZSBUZWNobm9s + b2dpZXMgTHRkLjERMA8GA1UECxMIWC9TZWN1cmUxFTATBgNVBAMTDFRyYW5zaWVu + dCBDQTAeFw0wMjAyMjgxNzUyNDZaFw0wMzAyMjgxNzUyNDBaMG8xCzAJBgNVBAYT + AklFMQ8wDQYDVQQIEwZEdWJsaW4xJDAiBgNVBAoTG0JhbHRpbW9yZSBUZWNobm9s + b2dpZXMgTHRkLjERMA8GA1UECxMIWC9TZWN1cmUxFjAUBgNVBAMTDU1lcmxpbiBI + dWdoZXMwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAORdNSxbNFWlQeNsOlYJ + 9gN9eZD+rguRqKhmhOm7i63VDd5ALm2APXhqAmGBPzLN5jlL9g2XALK5WSO4XKjJ + McVfYg4+nPuOeHgqdD4HUgf19j/6SaTMcmDFJQMmx1Qw+Aakq3mGcSfvOJcBZctz + a50VucfCGL1NdfBEcaL3BnhjAgMBAAGjOjA4MA4GA1UdDwEB/wQEAwIFoDARBgNV + HQ4ECgQIjFG0ZGNyvNswEwYDVR0jBAwwCoAIhJXVlhr6O4wwDQYJKoZIhvcNAQEF + BQADgYEAXzG7x5aCJYRusTbmuZqhidGM5iiA9+RmZ4JTPDEgbeiTiJROxpr+ZjnA + TmsDKrCpqNUiHWjmsKEArYQp8R/KjdKl/pVe3jUvTxb0YZ+li/7k0GQ5LyRT/K4c + 2SgyLlyBPhpMq+z3g4P2egVRaZbxsLuKQILf7MIV/X5iAEBzu1w= + </X509Certificate> + </X509Data> + </KeyInfo> + <CipherData> + <CipherValue> + 1SVctZA/RB6vVjsu5NYTxowdvsViJJ1skDXX09RmNU3YlCuPpSqWWhCU5u5ILfr9 + 6AFcascXbdFyEZ9tjDhK8Nid2MEqkR/Mc9zFHf7mPMnO7C8bRggkjjdILSIF/Ft7 + FXzm/DFP50IF3zPe/n5jy2Nk8uRvTmKUDcnoV6qnUgY= + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> + <CipherData> + <CipherValue> + QOImekuU44UeCmVaMma9bCT5h5a6mWXDSndTB81jvHw= + </CipherValue> + </CipherData> +</EncryptedData> diff --git a/docs/tests/merlin-xmlenc-five/encrypt-data-tripledes-cbc-rsa-oaep-mgf1p.xml b/docs/tests/merlin-xmlenc-five/encrypt-data-tripledes-cbc-rsa-oaep-mgf1p.xml new file mode 100644 index 00000000..29daa4ea --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encrypt-data-tripledes-cbc-rsa-oaep-mgf1p.xml @@ -0,0 +1,43 @@ +<?xml version="1.0" encoding="UTF-8"?> +<EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" MimeType="text/plain"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"> + <DigestMethod xmlns="http://www.w3.org/2000/09/xmldsig#" Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> + </EncryptionMethod> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <X509Data> + <X509Certificate> + MIICkjCCAfugAwIBAgIGAOxN32E+MA0GCSqGSIb3DQEBBQUAMG4xCzAJBgNVBAYT + AklFMQ8wDQYDVQQIEwZEdWJsaW4xJDAiBgNVBAoTG0JhbHRpbW9yZSBUZWNobm9s + b2dpZXMgTHRkLjERMA8GA1UECxMIWC9TZWN1cmUxFTATBgNVBAMTDFRyYW5zaWVu + dCBDQTAeFw0wMjAyMjgxNzUyNDZaFw0wMzAyMjgxNzUyNDBaMG8xCzAJBgNVBAYT + AklFMQ8wDQYDVQQIEwZEdWJsaW4xJDAiBgNVBAoTG0JhbHRpbW9yZSBUZWNobm9s + b2dpZXMgTHRkLjERMA8GA1UECxMIWC9TZWN1cmUxFjAUBgNVBAMTDU1lcmxpbiBI + dWdoZXMwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAORdNSxbNFWlQeNsOlYJ + 9gN9eZD+rguRqKhmhOm7i63VDd5ALm2APXhqAmGBPzLN5jlL9g2XALK5WSO4XKjJ + McVfYg4+nPuOeHgqdD4HUgf19j/6SaTMcmDFJQMmx1Qw+Aakq3mGcSfvOJcBZctz + a50VucfCGL1NdfBEcaL3BnhjAgMBAAGjOjA4MA4GA1UdDwEB/wQEAwIFoDARBgNV + HQ4ECgQIjFG0ZGNyvNswEwYDVR0jBAwwCoAIhJXVlhr6O4wwDQYJKoZIhvcNAQEF + BQADgYEAXzG7x5aCJYRusTbmuZqhidGM5iiA9+RmZ4JTPDEgbeiTiJROxpr+ZjnA + TmsDKrCpqNUiHWjmsKEArYQp8R/KjdKl/pVe3jUvTxb0YZ+li/7k0GQ5LyRT/K4c + 2SgyLlyBPhpMq+z3g4P2egVRaZbxsLuKQILf7MIV/X5iAEBzu1w= + </X509Certificate> + </X509Data> + </KeyInfo> + <CipherData> + <CipherValue> + S5SqVG+QxxpCNWobuqQFAI6db1pTEpWNMQXQVJAPjlfmvnVmTtq5v6fgMA2l/r7M + iX7gUPZthrKezkSavDfi057cK6YKpC5/KACXjNJvUoaVXj/aXpcoMOO+ZTPq36eo + pyeW99DWYgCbY88Kf9R3r3QMx/ogwjScfRVJTRZL3Lo= + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> + <CipherData> + <CipherValue> + HG02AxNyn4iA9NH5x+PQ9lgPNzTkljThotXWKz0UYrE= + </CipherValue> + </CipherData> +</EncryptedData> diff --git a/docs/tests/merlin-xmlenc-five/encrypt-element-aes128-cbc-rsa-1_5.xml b/docs/tests/merlin-xmlenc-five/encrypt-element-aes128-cbc-rsa-1_5.xml new file mode 100644 index 00000000..ae349285 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encrypt-element-aes128-cbc-rsa-1_5.xml @@ -0,0 +1,60 @@ +<?xml version="1.0" encoding="UTF-8"?> +<PurchaseOrder xmlns="urn:example:po"> + <Items> + <Item Code="001-001-001" Quantity="1"> + spade + </Item> + <Item Code="001-001-002" Quantity="1"> + shovel + </Item> + </Items> + <ShippingAddress> + Dig PLC, 1 First Ave, Dublin 1, Ireland + </ShippingAddress> + <EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" Type="http://www.w3.org/2001/04/xmlenc#Element"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <X509Data> + <X509Certificate> + MIICkjCCAfugAwIBAgIGAOxN32E+MA0GCSqGSIb3DQEBBQUAMG4xCzAJBgNVBAYT + AklFMQ8wDQYDVQQIEwZEdWJsaW4xJDAiBgNVBAoTG0JhbHRpbW9yZSBUZWNobm9s + b2dpZXMgTHRkLjERMA8GA1UECxMIWC9TZWN1cmUxFTATBgNVBAMTDFRyYW5zaWVu + dCBDQTAeFw0wMjAyMjgxNzUyNDZaFw0wMzAyMjgxNzUyNDBaMG8xCzAJBgNVBAYT + AklFMQ8wDQYDVQQIEwZEdWJsaW4xJDAiBgNVBAoTG0JhbHRpbW9yZSBUZWNobm9s + b2dpZXMgTHRkLjERMA8GA1UECxMIWC9TZWN1cmUxFjAUBgNVBAMTDU1lcmxpbiBI + dWdoZXMwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAORdNSxbNFWlQeNsOlYJ + 9gN9eZD+rguRqKhmhOm7i63VDd5ALm2APXhqAmGBPzLN5jlL9g2XALK5WSO4XKjJ + McVfYg4+nPuOeHgqdD4HUgf19j/6SaTMcmDFJQMmx1Qw+Aakq3mGcSfvOJcBZctz + a50VucfCGL1NdfBEcaL3BnhjAgMBAAGjOjA4MA4GA1UdDwEB/wQEAwIFoDARBgNV + HQ4ECgQIjFG0ZGNyvNswEwYDVR0jBAwwCoAIhJXVlhr6O4wwDQYJKoZIhvcNAQEF + BQADgYEAXzG7x5aCJYRusTbmuZqhidGM5iiA9+RmZ4JTPDEgbeiTiJROxpr+ZjnA + TmsDKrCpqNUiHWjmsKEArYQp8R/KjdKl/pVe3jUvTxb0YZ+li/7k0GQ5LyRT/K4c + 2SgyLlyBPhpMq+z3g4P2egVRaZbxsLuKQILf7MIV/X5iAEBzu1w= + </X509Certificate> + </X509Data> + </KeyInfo> + <CipherData> + <CipherValue> + heZshNX5m7arS3OmR72+8WNCMMpznxE41dLWkgd6XJpzl+IN2xuijAf4YPEjjJmZ + nt9PlO3/hiHl0Cvpg5vMR6AhvL49BvCz9JCeMG6x3MHBiKbRNhyEq2rX7o1GdJhC + 5cm35Q/ZDKV9DHG8jWmPcOb8yKU9NYo2LJKDb3YHOJY= + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> + <CipherData> + <CipherValue> + 0wkECpTy60/FDwbVM4zgd9qJVjR4h0q4PLm5pyyIxAuhbEh0art03yEikmbWBt2H + 7qOk2G9iufUdwwqNPuZV5Qw5Rg2FMvTx234lDERGn5p+hhjOTcss5JF9QDzgdiec + KABX3vbCESi/f3uwQ8BYDT+6SnxTR+xtcNv5xhbUCIFk/TaenSWx6p6fntTwTl1e + lpwnI0EtM1yf4a9tBiH9PNd36BUv2rvSi4cZvJqSB3ZKvGtuwwyRzOzlzl259d1u + QuoYysTBEAHw/WIop8eAexU9PUv7UbTkQAQag1yStda+GepVdpXEpu4hcxXQcvfs + 9AQgkAgh4JKrnY4Bhz2B/e4CHHfbEedDOi+FVYlZuLn0CzrKMnM+1nUmqxJVWHz7 + hytidpuqNRw3gcMkYvgH6g== + </CipherValue> + </CipherData> + </EncryptedData> +</PurchaseOrder> diff --git a/docs/tests/merlin-xmlenc-five/encrypt-element-aes192-cbc-ref.xml b/docs/tests/merlin-xmlenc-five/encrypt-element-aes192-cbc-ref.xml new file mode 100644 index 00000000..b092d7f1 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encrypt-element-aes192-cbc-ref.xml @@ -0,0 +1,39 @@ +<?xml version="1.0" encoding="UTF-8"?> +<PurchaseOrder xmlns="urn:example:po"> + <Items> + <Item Code="001-001-001" Quantity="1"> + spade + </Item> + <Item Code="001-001-002" Quantity="1"> + shovel + </Item> + </Items> + <ShippingAddress> + Dig PLC, 1 First Ave, Dublin 1, Ireland + </ShippingAddress> + <EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" Type="http://www.w3.org/2001/04/xmlenc#Element"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>jeb</KeyName> + </KeyInfo> + <CipherData> + <CipherReference URI=""> + <Transforms> + <Transform xmlns="http://www.w3.org/2000/09/xmldsig#" Algorithm="http://www.w3.org/TR/1999/REC-xpath-19991116"> + <XPath xmlns:rep="http://www.example.org/repository">self::text()[parent::rep:CipherValue[@Id="example1"]]</XPath> + </Transform> + <Transform xmlns="http://www.w3.org/2000/09/xmldsig#" Algorithm="http://www.w3.org/2000/09/xmldsig#base64" /> + </Transforms> + </CipherReference> + </CipherData> + </EncryptedData> + <CipherValue xmlns="http://www.example.org/repository" Id="example1"> + zih1MFU6Px1m2U1lSEIV9LUIsnb3SIWBfRHlRrOWKFFFcVvXiE6z3nCbkNYMuy1T + nPwXDd9/BkOGiPuFT2jixN7Zowe2ANK1dZXKVjZ1+ACx+Kg17U+EMPEuq481OW7e + wm0vnbur0L2lCXb4DP7c6sotV89W53v2MlaYqWHhlBO/zasqwhl6q/c/L/GdPUHH + ovKZ+24ZWYktxCLEXMslIAysQ0UFBLolrtC/7XDgYY9s4UvbedgeqbrdnxQ4LiRn + L+aKN1bnKF3KlWKCJFvVrRESriGPBfpasWA/A1LOK333a8LaOlS7RFamflfICk+t + VqCspVnIs6vBBtrGLI5SsJS+rh1r42jI/h/ivELUOmUq1sZCFQvEhx7AiHi4/9SY + LWcR4w3ZH3aqFL/XtAzKYQ== + </CipherValue> +</PurchaseOrder> diff --git a/docs/tests/merlin-xmlenc-five/encrypt-element-aes256-cbc-carried-kw-aes256.xml b/docs/tests/merlin-xmlenc-five/encrypt-element-aes256-cbc-carried-kw-aes256.xml new file mode 100644 index 00000000..3594a7f4 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encrypt-element-aes256-cbc-carried-kw-aes256.xml @@ -0,0 +1,57 @@ +<?xml version="1.0" encoding="UTF-8"?> +<PurchaseOrder xmlns="urn:example:po"> + <Items> + <Item Code="001-001-001" Quantity="1"> + spade + </Item> + <Item Code="001-001-002" Quantity="1"> + shovel + </Item> + </Items> + <ShippingAddress> + Dig PLC, 1 First Ave, Dublin 1, Ireland + </ShippingAddress> + <EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" Type="http://www.w3.org/2001/04/xmlenc#Element"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>Foo Key</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + pdDtiyd7XQ/BFEEN0PMJuHnLUfCY+bJlsW+q04OiKSPnRd4/dS1tjaTfj5dPpGXe + cY3fJvRsq9QP1CJiwyEC/EQ1zSLbzwOtZ+NtxtsFgYvPBJ9t86ZcXIjlErQ85z3L + wnb8rSHpE9tu4tJ1rjgf2i6NCbdFnSMXLSDgLEs48+gkX0cJCmKxzRaSE4cV0OSl + hBWND4EYzX1M679VlSYrI0de+lSPO3Vx+y/TuZ5Vo+uu9+YP+ce0LRkx2BicjjsP + QO9sp+yjHPNDIV1Z7VHsDIWqqmBaNQo3GuzF5WzWgaXTKnPv/IgUQn+1t3EtgHyb + JhnfR/1em16z/Zaf9Uy1Lfd//yfEJ9BCjqwe1UjwN6ytu1v2BHd+8bVjD2o+Dg8V + 7ayOLlkWOTOLvtJMPOXPqw== + </CipherValue> + </CipherData> + </EncryptedData> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#" Recipient="someone else"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#kw-aes256" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>ned</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + EWlIkFPGrkeW4cyjWSznLVoClVh/OEC7Klya9d9o7R6wll6JswZb2w== + </CipherValue> + </CipherData> + <CarriedKeyName>Foo Key</CarriedKeyName> + </EncryptedKey> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#" Recipient="you"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#kw-aes256" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>jed</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + bsL63D0hPN6EOyzdgfEmKsAAvoJiGM+Wp9a9KZM92IKdl7s3YSntRg== + </CipherValue> + </CipherData> + <CarriedKeyName>Foo Key</CarriedKeyName> + </EncryptedKey> + </KeyInfo> +</PurchaseOrder> diff --git a/docs/tests/merlin-xmlenc-five/encrypt-element-aes256-cbc-kw-aes256-dh-ripemd160.xml b/docs/tests/merlin-xmlenc-five/encrypt-element-aes256-cbc-kw-aes256-dh-ripemd160.xml new file mode 100644 index 00000000..5fb336ac --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encrypt-element-aes256-cbc-kw-aes256-dh-ripemd160.xml @@ -0,0 +1,122 @@ +<?xml version="1.0" encoding="UTF-8"?> +<PurchaseOrder xmlns="urn:example:po"> + <Items> + <Item Code="001-001-001" Quantity="1"> + spade + </Item> + <Item Code="001-001-002" Quantity="1"> + shovel + </Item> + </Items> + <ShippingAddress> + Dig PLC, 1 First Ave, Dublin 1, Ireland + </ShippingAddress> + <EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" Type="http://www.w3.org/2001/04/xmlenc#Element"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#kw-aes256" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <AgreementMethod xmlns="http://www.w3.org/2001/04/xmlenc#" Algorithm="http://www.w3.org/2001/04/xmlenc#dh"> + <KA-Nonce> + bm9uY2U= + </KA-Nonce> + <DigestMethod xmlns="http://www.w3.org/2000/09/xmldsig#" Algorithm="http://www.w3.org/2001/04/xmlenc#ripemd160" /> + <OriginatorKeyInfo> + <KeyValue xmlns="http://www.w3.org/2000/09/xmldsig#"> + <DHKeyValue xmlns="http://www.w3.org/2001/04/xmlenc#"> + <P> + plygl2uMNc+jYtAZeKCZxPsmqa2z8DrOUa7L455iszN4SdPnL+LsZD47VJayvQY8 + 6D1J5arkwrbUzmhMAjBZsENPBgffRwwEBTjoq+gjSyZNIbxqsqnJdEyUElzn4kGE + whECkJGnOaScacpjZg11h+gd0iBfY091bGHrCZrvr/8= + </P> + <Q> + 9jJXQijNovoq6QUBFcEUYwUvyTM= + </Q> + <Generator> + PerUZgMEMDTegMdTBRG9DPY5EHmwDxwzladdRcfvfdfU/9wlPzz5BUotMm730J9d + lF6avWr929fzYsnIOUDeUOJpltXmrTYnvz5Bi6yuUu6bVwSfv7u4S+I/EM9ZB+eY + 3fdF5TAMHD4tK86lw5APDrN2QnO1UMCwIvjOFatSOI0= + </Generator> + <Public> + Ulu6B1lCwajtIBnolqqgU+R1oxfye63DnI/iLM/Oe+Y8I/LMMaEmo3LmCU30m82r + NyOUqgfnm97S0bT8ZhI8gvw0EyQJ87vhlUz4WcmddU/YlTi3gJHUClr2olmBmRCt + m2vKo/BpoLGJ0Wg1eyWfo54+gCqbeNez/DmBGcBEEhM= + </Public> + </DHKeyValue> + </KeyValue> + <X509Data xmlns="http://www.w3.org/2000/09/xmldsig#"> + <X509Certificate> + MIIDvjCCA36gAwIBAgIGAOxN39MIMAkGByqGSM44BAMwbjELMAkGA1UEBhMCSUUx + DzANBgNVBAgTBkR1YmxpbjEkMCIGA1UEChMbQmFsdGltb3JlIFRlY2hub2xvZ2ll + cyBMdGQuMREwDwYDVQQLEwhYL1NlY3VyZTEVMBMGA1UEAxMMVHJhbnNpZW50IENB + MB4XDTAyMDIyODE3NTMxNloXDTAzMDIyODE3NTI1NFowbzELMAkGA1UEBhMCSUUx + DzANBgNVBAgTBkR1YmxpbjEkMCIGA1UEChMbQmFsdGltb3JlIFRlY2hub2xvZ2ll + cyBMdGQuMREwDwYDVQQLEwhYL1NlY3VyZTEWMBQGA1UEAxMNTWVybGluIEh1Z2hl + czCCAiUwggGaBgcqhkjOPgIBMIIBjQKBgQCmXKCXa4w1z6Ni0Bl4oJnE+yaprbPw + Os5RrsvjnmKzM3hJ0+cv4uxkPjtUlrK9BjzoPUnlquTCttTOaEwCMFmwQ08GB99H + DAQFOOir6CNLJk0hvGqyqcl0TJQSXOfiQYTCEQKQkac5pJxpymNmDXWH6B3SIF9j + T3VsYesJmu+v/wKBgD3q1GYDBDA03oDHUwURvQz2ORB5sA8cM5WnXUXH733X1P/c + JT88+QVKLTJu99CfXZRemr1q/dvX82LJyDlA3lDiaZbV5q02J78+QYusrlLum1cE + n7+7uEviPxDPWQfnmN33ReUwDBw+LSvOpcOQDw6zdkJztVDAsCL4zhWrUjiNAhUA + 9jJXQijNovoq6QUBFcEUYwUvyTMCbQCs/HkLusCqHmY71JxUOFzy5fuWkPpWXJzx + qU3oz1BfMZtPUqjpBnqU97M7VUEg+5pRG2txaHP8XNmB1bY0DCE88riDmHP7HqZB + Z2gbaH2LxXDQDayb5GcPfn38eDcWvVAaKP9fJ8wG5RUu3AoDgYQAAoGAUlu6B1lC + wajtIBnolqqgU+R1oxfye63DnI/iLM/Oe+Y8I/LMMaEmo3LmCU30m82rNyOUqgfn + m97S0bT8ZhI8gvw0EyQJ87vhlUz4WcmddU/YlTi3gJHUClr2olmBmRCtm2vKo/Bp + oLGJ0Wg1eyWfo54+gCqbeNez/DmBGcBEEhOjOjA4MA4GA1UdDwEB/wQEAwIDCDAR + BgNVHQ4ECgQIgUAwB+9f1oIwEwYDVR0jBAwwCoAIgjqisiZ1WVswCQYHKoZIzjgE + AwMvADAsAhQ41mCUsFhmxI58tytV8XEVZOCuUwIUVMe/HbUAH5PJ7aRoCNqa3fCI + cU0= + </X509Certificate> + </X509Data> + </OriginatorKeyInfo> + <RecipientKeyInfo> + <X509Data xmlns="http://www.w3.org/2000/09/xmldsig#"> + <X509Certificate> + MIIDvjCCA36gAwIBAgIGAOxN3+EMMAkGByqGSM44BAMwbjELMAkGA1UEBhMCSUUx + DzANBgNVBAgTBkR1YmxpbjEkMCIGA1UEChMbQmFsdGltb3JlIFRlY2hub2xvZ2ll + cyBMdGQuMREwDwYDVQQLEwhYL1NlY3VyZTEVMBMGA1UEAxMMVHJhbnNpZW50IENB + MB4XDTAyMDIyODE3NTMxOVoXDTAzMDIyODE3NTI1NFowbzELMAkGA1UEBhMCSUUx + DzANBgNVBAgTBkR1YmxpbjEkMCIGA1UEChMbQmFsdGltb3JlIFRlY2hub2xvZ2ll + cyBMdGQuMREwDwYDVQQLEwhYL1NlY3VyZTEWMBQGA1UEAxMNTmlscmVtIFNlaGd1 + aDCCAiUwggGaBgcqhkjOPgIBMIIBjQKBgQCmXKCXa4w1z6Ni0Bl4oJnE+yaprbPw + Os5RrsvjnmKzM3hJ0+cv4uxkPjtUlrK9BjzoPUnlquTCttTOaEwCMFmwQ08GB99H + DAQFOOir6CNLJk0hvGqyqcl0TJQSXOfiQYTCEQKQkac5pJxpymNmDXWH6B3SIF9j + T3VsYesJmu+v/wKBgD3q1GYDBDA03oDHUwURvQz2ORB5sA8cM5WnXUXH733X1P/c + JT88+QVKLTJu99CfXZRemr1q/dvX82LJyDlA3lDiaZbV5q02J78+QYusrlLum1cE + n7+7uEviPxDPWQfnmN33ReUwDBw+LSvOpcOQDw6zdkJztVDAsCL4zhWrUjiNAhUA + 9jJXQijNovoq6QUBFcEUYwUvyTMCbQCs/HkLusCqHmY71JxUOFzy5fuWkPpWXJzx + qU3oz1BfMZtPUqjpBnqU97M7VUEg+5pRG2txaHP8XNmB1bY0DCE88riDmHP7HqZB + Z2gbaH2LxXDQDayb5GcPfn38eDcWvVAaKP9fJ8wG5RUu3AoDgYQAAoGAGSYT19Pb + VCxMt06cAP7zQZ6AC5eXp3zeAweIevV96ryA1mB03qhB9X2lVowAUOFc24aVRTz7 + wRoRjNQ20atzSy21C7yXDkvZ4uxfdrpIqpIVrI28e7XL+6CrhnAk621OvdeyEz5H + orA21hPXoCNdnUPG5Ib20oopM87ptF5dwiWjOjA4MA4GA1UdDwEB/wQEAwIDCDAR + BgNVHQ4ECgQIiDCSQ3FB/oEwEwYDVR0jBAwwCoAIgjqisiZ1WVswCQYHKoZIzjgE + AwMvADAsAhQMtZ98TyqVkVqUJ3RJqaU7l2xqKgIUX997qRqeMjAkK88NHeNd95/2 + Yos= + </X509Certificate> + </X509Data> + </RecipientKeyInfo> + </AgreementMethod> + </KeyInfo> + <CipherData> + <CipherValue> + qKWnCxVIlNvPEqBMxhCaY6z9NK0ZFCmRef1U5wbIMPaR/g2Zdw7VZg== + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> + <CipherData> + <CipherValue> + betMfG/VMLdwNGdkspCrJSo092PltInklQisKd8ImQgeFMzjn73OpXhK0KJtB9IB + 1xGjENZ8Yzu625ehhCZGGFK4mp8DkIE7Sfw7O+5UEqprE/cGrWL0bbcz0U7X2Evh + 4/9va6h+DHAzmVYW7bqsa0WkiHkELRq44ORdSzyPUIwpGUCsOWyThsYfIn4uhIHQ + NJVTKPRHTb5H5lsxNtobSeXACSYAHk/BmJM99h4IQ9Gh7bCkhkmZsIvo/lNOW+6r + xtvLqHfYw9XhJe7hL0Q5EluMCBZQJ/Vx2r5lTXzBeonlurpzNdRa+ClKSVRUwKYH + Vjemr/o+Y4e4r8gD3TVP3auVuUCmi3XLpj4WjOsPDcekzZUgXA/xuJ+7jHXjOEOK + RViMiwIk0cqOa6s0Qg63EQ== + </CipherValue> + </CipherData> + </EncryptedData> +</PurchaseOrder> diff --git a/docs/tests/merlin-xmlenc-five/encrypt-element-aes256-cbc-retrieved-kw-aes256.xml b/docs/tests/merlin-xmlenc-five/encrypt-element-aes256-cbc-retrieved-kw-aes256.xml new file mode 100644 index 00000000..7311b845 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encrypt-element-aes256-cbc-retrieved-kw-aes256.xml @@ -0,0 +1,44 @@ +<?xml version="1.0" encoding="UTF-8"?> +<PurchaseOrder xmlns="urn:example:po"> + <Items> + <Item Code="001-001-001" Quantity="1"> + spade + </Item> + <Item Code="001-001-002" Quantity="1"> + shovel + </Item> + </Items> + <ShippingAddress> + Dig PLC, 1 First Ave, Dublin 1, Ireland + </ShippingAddress> + <EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" Type="http://www.w3.org/2001/04/xmlenc#Element"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <RetrievalMethod Type="http://www.w3.org/2001/04/xmlenc#EncryptedKey" URI="#encrypt-key-0" /> + </KeyInfo> + <CipherData> + <CipherValue> + cudR6Hg0xqhrOjbvQz4C/WOdHbcB7Duc+xFxbObkfkW6jXweDOf8Tq87FPbj5bby + oCLbWqq3ap/zx/gN8Xv3Fj6fYUz3dIb1wzXy7B0/3me7i4fBHyGropflLi7iEag2 + WU7aGJ0CA9/jQr6Td2qhH0CDU47QN9eK/PVMPPfLX1D1A90uK32wPn+SCysE58Q3 + rCi7Jwo+OsrxT0qqjP82T3FjVi0i/dsnPb5GQWLE3/y7OsIuknuMRO4mWma+bO/m + aAN9JNeom5Kn3IKHCK2+kyx+LsGo2daKxF7RF9QqlaA/imsMS4trRjZjYhgfgm96 + kb1l4AI7VZcfRXwYdzLqKNHty6ZxbSQBMeEca0mEuIbor7IH34641a/BuFME/BLm + MoVaLUCE0rg1e1U0S18UCg== + </CipherValue> + </CipherData> + </EncryptedData> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#" Id="encrypt-key-0"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#kw-aes256" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>jed</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + bsL63D0hPN6EOyzdgfEmKsAAvoJiGM+Wp9a9KZM92IKdl7s3YSntRg== + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> +</PurchaseOrder> diff --git a/docs/tests/merlin-xmlenc-five/encrypt-element-tripledes-cbc-kw-aes128.xml b/docs/tests/merlin-xmlenc-five/encrypt-element-tripledes-cbc-kw-aes128.xml new file mode 100644 index 00000000..1ede0646 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encrypt-element-tripledes-cbc-kw-aes128.xml @@ -0,0 +1,40 @@ +<?xml version="1.0" encoding="UTF-8"?> +<PurchaseOrder xmlns="urn:example:po"> + <Items> + <Item Code="001-001-001" Quantity="1"> + spade + </Item> + <Item Code="001-001-002" Quantity="1"> + shovel + </Item> + </Items> + <ShippingAddress> + Dig PLC, 1 First Ave, Dublin 1, Ireland + </ShippingAddress> + <EncryptedData xmlns="http://www.w3.org/2001/04/xmlenc#" Type="http://www.w3.org/2001/04/xmlenc#Element"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#kw-aes128" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>job</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + dV45TUpJbidb9iKa34xj1WVtTZ036cnqvym2TBJWR5c= + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> + <CipherData> + <CipherValue> + bmExbDyrUQtsGjNBU7TRpMhOC76O/wBDWVMQML43lWNP0xp7QwVPce1XdbB4AVUn + xxAuJh18jOd9UzPTzrJHrKWvsWP8Xp1m/HL3A1XhOUe+MEcFyJB9fXazhDmyaSYU + SvieaPXcpzKWiHhZE8RKUyAYw9nU9wf2SEUgCVRuRPfsrXg4Uyr83VTn84LPe9sL + dd2hMj4jhgHL86b7PTYBWdtrYXq0Jwzptuw+TZ1C706BAZDYNAiSTdx3J17Ey3ex + IeIFBBIq8D8Gp7XiH4UxiDB6rtA2czox6+FCvaIsrGFaaw9XdzvhiZ3HxYROjprz + qiXcJlZzG6j8yRdpHSjsDkN3w7XjEgRODieGx110rBytZcwtqb0zc6JTZH5DzoJy + </CipherValue> + </CipherData> + </EncryptedData> +</PurchaseOrder> diff --git a/docs/tests/merlin-xmlenc-five/encsig-hmac-sha256-dh.xml b/docs/tests/merlin-xmlenc-five/encsig-hmac-sha256-dh.xml new file mode 100644 index 00000000..a69d9361 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encsig-hmac-sha256-dh.xml @@ -0,0 +1,98 @@ +<?xml version="1.0" encoding="UTF-8"?> +<Signature xmlns="http://www.w3.org/2000/09/xmldsig#"> + <SignedInfo> + <CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" /> + <SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#hmac-sha256" /> + <Reference URI="http://www.w3.org/TR/xml-stylesheet"> + <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> + <DigestValue>60NvZvtdTB+7UnlLp/H24p7h4bs=</DigestValue> + </Reference> + </SignedInfo> + <SignatureValue> + 255LFQdP+eAK2aeuuLnz10pmaw4WEYb6TZa3B6H4z8c= + </SignatureValue> + <KeyInfo> + <AgreementMethod xmlns="http://www.w3.org/2001/04/xmlenc#" Algorithm="http://www.w3.org/2001/04/xmlenc#dh"> + <KA-Nonce> + bm9uY2U= + </KA-Nonce> + <DigestMethod xmlns="http://www.w3.org/2000/09/xmldsig#" Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" /> + <OriginatorKeyInfo> + <KeyValue xmlns="http://www.w3.org/2000/09/xmldsig#"> + <DHKeyValue xmlns="http://www.w3.org/2001/04/xmlenc#"> + <P> + plygl2uMNc+jYtAZeKCZxPsmqa2z8DrOUa7L455iszN4SdPnL+LsZD47VJayvQY8 + 6D1J5arkwrbUzmhMAjBZsENPBgffRwwEBTjoq+gjSyZNIbxqsqnJdEyUElzn4kGE + whECkJGnOaScacpjZg11h+gd0iBfY091bGHrCZrvr/8= + </P> + <Q> + 9jJXQijNovoq6QUBFcEUYwUvyTM= + </Q> + <Generator> + PerUZgMEMDTegMdTBRG9DPY5EHmwDxwzladdRcfvfdfU/9wlPzz5BUotMm730J9d + lF6avWr929fzYsnIOUDeUOJpltXmrTYnvz5Bi6yuUu6bVwSfv7u4S+I/EM9ZB+eY + 3fdF5TAMHD4tK86lw5APDrN2QnO1UMCwIvjOFatSOI0= + </Generator> + <Public> + Ulu6B1lCwajtIBnolqqgU+R1oxfye63DnI/iLM/Oe+Y8I/LMMaEmo3LmCU30m82r + NyOUqgfnm97S0bT8ZhI8gvw0EyQJ87vhlUz4WcmddU/YlTi3gJHUClr2olmBmRCt + m2vKo/BpoLGJ0Wg1eyWfo54+gCqbeNez/DmBGcBEEhM= + </Public> + </DHKeyValue> + </KeyValue> + <X509Data xmlns="http://www.w3.org/2000/09/xmldsig#"> + <X509Certificate> + MIIDvjCCA36gAwIBAgIGAOxN39MIMAkGByqGSM44BAMwbjELMAkGA1UEBhMCSUUx + DzANBgNVBAgTBkR1YmxpbjEkMCIGA1UEChMbQmFsdGltb3JlIFRlY2hub2xvZ2ll + cyBMdGQuMREwDwYDVQQLEwhYL1NlY3VyZTEVMBMGA1UEAxMMVHJhbnNpZW50IENB + MB4XDTAyMDIyODE3NTMxNloXDTAzMDIyODE3NTI1NFowbzELMAkGA1UEBhMCSUUx + DzANBgNVBAgTBkR1YmxpbjEkMCIGA1UEChMbQmFsdGltb3JlIFRlY2hub2xvZ2ll + cyBMdGQuMREwDwYDVQQLEwhYL1NlY3VyZTEWMBQGA1UEAxMNTWVybGluIEh1Z2hl + czCCAiUwggGaBgcqhkjOPgIBMIIBjQKBgQCmXKCXa4w1z6Ni0Bl4oJnE+yaprbPw + Os5RrsvjnmKzM3hJ0+cv4uxkPjtUlrK9BjzoPUnlquTCttTOaEwCMFmwQ08GB99H + DAQFOOir6CNLJk0hvGqyqcl0TJQSXOfiQYTCEQKQkac5pJxpymNmDXWH6B3SIF9j + T3VsYesJmu+v/wKBgD3q1GYDBDA03oDHUwURvQz2ORB5sA8cM5WnXUXH733X1P/c + JT88+QVKLTJu99CfXZRemr1q/dvX82LJyDlA3lDiaZbV5q02J78+QYusrlLum1cE + n7+7uEviPxDPWQfnmN33ReUwDBw+LSvOpcOQDw6zdkJztVDAsCL4zhWrUjiNAhUA + 9jJXQijNovoq6QUBFcEUYwUvyTMCbQCs/HkLusCqHmY71JxUOFzy5fuWkPpWXJzx + qU3oz1BfMZtPUqjpBnqU97M7VUEg+5pRG2txaHP8XNmB1bY0DCE88riDmHP7HqZB + Z2gbaH2LxXDQDayb5GcPfn38eDcWvVAaKP9fJ8wG5RUu3AoDgYQAAoGAUlu6B1lC + wajtIBnolqqgU+R1oxfye63DnI/iLM/Oe+Y8I/LMMaEmo3LmCU30m82rNyOUqgfn + m97S0bT8ZhI8gvw0EyQJ87vhlUz4WcmddU/YlTi3gJHUClr2olmBmRCtm2vKo/Bp + oLGJ0Wg1eyWfo54+gCqbeNez/DmBGcBEEhOjOjA4MA4GA1UdDwEB/wQEAwIDCDAR + BgNVHQ4ECgQIgUAwB+9f1oIwEwYDVR0jBAwwCoAIgjqisiZ1WVswCQYHKoZIzjgE + AwMvADAsAhQ41mCUsFhmxI58tytV8XEVZOCuUwIUVMe/HbUAH5PJ7aRoCNqa3fCI + cU0= + </X509Certificate> + </X509Data> + </OriginatorKeyInfo> + <RecipientKeyInfo> + <X509Data xmlns="http://www.w3.org/2000/09/xmldsig#"> + <X509Certificate> + MIIDvjCCA36gAwIBAgIGAOxN3+EMMAkGByqGSM44BAMwbjELMAkGA1UEBhMCSUUx + DzANBgNVBAgTBkR1YmxpbjEkMCIGA1UEChMbQmFsdGltb3JlIFRlY2hub2xvZ2ll + cyBMdGQuMREwDwYDVQQLEwhYL1NlY3VyZTEVMBMGA1UEAxMMVHJhbnNpZW50IENB + MB4XDTAyMDIyODE3NTMxOVoXDTAzMDIyODE3NTI1NFowbzELMAkGA1UEBhMCSUUx + DzANBgNVBAgTBkR1YmxpbjEkMCIGA1UEChMbQmFsdGltb3JlIFRlY2hub2xvZ2ll + cyBMdGQuMREwDwYDVQQLEwhYL1NlY3VyZTEWMBQGA1UEAxMNTmlscmVtIFNlaGd1 + aDCCAiUwggGaBgcqhkjOPgIBMIIBjQKBgQCmXKCXa4w1z6Ni0Bl4oJnE+yaprbPw + Os5RrsvjnmKzM3hJ0+cv4uxkPjtUlrK9BjzoPUnlquTCttTOaEwCMFmwQ08GB99H + DAQFOOir6CNLJk0hvGqyqcl0TJQSXOfiQYTCEQKQkac5pJxpymNmDXWH6B3SIF9j + T3VsYesJmu+v/wKBgD3q1GYDBDA03oDHUwURvQz2ORB5sA8cM5WnXUXH733X1P/c + JT88+QVKLTJu99CfXZRemr1q/dvX82LJyDlA3lDiaZbV5q02J78+QYusrlLum1cE + n7+7uEviPxDPWQfnmN33ReUwDBw+LSvOpcOQDw6zdkJztVDAsCL4zhWrUjiNAhUA + 9jJXQijNovoq6QUBFcEUYwUvyTMCbQCs/HkLusCqHmY71JxUOFzy5fuWkPpWXJzx + qU3oz1BfMZtPUqjpBnqU97M7VUEg+5pRG2txaHP8XNmB1bY0DCE88riDmHP7HqZB + Z2gbaH2LxXDQDayb5GcPfn38eDcWvVAaKP9fJ8wG5RUu3AoDgYQAAoGAGSYT19Pb + VCxMt06cAP7zQZ6AC5eXp3zeAweIevV96ryA1mB03qhB9X2lVowAUOFc24aVRTz7 + wRoRjNQ20atzSy21C7yXDkvZ4uxfdrpIqpIVrI28e7XL+6CrhnAk621OvdeyEz5H + orA21hPXoCNdnUPG5Ib20oopM87ptF5dwiWjOjA4MA4GA1UdDwEB/wQEAwIDCDAR + BgNVHQ4ECgQIiDCSQ3FB/oEwEwYDVR0jBAwwCoAIgjqisiZ1WVswCQYHKoZIzjgE + AwMvADAsAhQMtZ98TyqVkVqUJ3RJqaU7l2xqKgIUX997qRqeMjAkK88NHeNd95/2 + Yos= + </X509Certificate> + </X509Data> + </RecipientKeyInfo> + </AgreementMethod> + </KeyInfo> +</Signature> diff --git a/docs/tests/merlin-xmlenc-five/encsig-hmac-sha256-kw-tripledes-dh.xml b/docs/tests/merlin-xmlenc-five/encsig-hmac-sha256-kw-tripledes-dh.xml new file mode 100644 index 00000000..79ef3f12 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encsig-hmac-sha256-kw-tripledes-dh.xml @@ -0,0 +1,108 @@ +<?xml version="1.0" encoding="UTF-8"?> +<Signature xmlns="http://www.w3.org/2000/09/xmldsig#"> + <SignedInfo> + <CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" /> + <SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#hmac-sha256" /> + <Reference URI="http://www.w3.org/TR/xml-stylesheet"> + <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> + <DigestValue>60NvZvtdTB+7UnlLp/H24p7h4bs=</DigestValue> + </Reference> + </SignedInfo> + <SignatureValue> + 9XBpYbFplNqqF7U/QtCHYE20U7oIxcyCr0L19MlenNo= + </SignatureValue> + <KeyInfo> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#kw-tripledes" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <AgreementMethod xmlns="http://www.w3.org/2001/04/xmlenc#" Algorithm="http://www.w3.org/2001/04/xmlenc#dh"> + <KA-Nonce> + bm9uY2U= + </KA-Nonce> + <DigestMethod xmlns="http://www.w3.org/2000/09/xmldsig#" Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" /> + <OriginatorKeyInfo> + <KeyValue xmlns="http://www.w3.org/2000/09/xmldsig#"> + <DHKeyValue xmlns="http://www.w3.org/2001/04/xmlenc#"> + <P> + plygl2uMNc+jYtAZeKCZxPsmqa2z8DrOUa7L455iszN4SdPnL+LsZD47VJayvQY8 + 6D1J5arkwrbUzmhMAjBZsENPBgffRwwEBTjoq+gjSyZNIbxqsqnJdEyUElzn4kGE + whECkJGnOaScacpjZg11h+gd0iBfY091bGHrCZrvr/8= + </P> + <Q> + 9jJXQijNovoq6QUBFcEUYwUvyTM= + </Q> + <Generator> + PerUZgMEMDTegMdTBRG9DPY5EHmwDxwzladdRcfvfdfU/9wlPzz5BUotMm730J9d + lF6avWr929fzYsnIOUDeUOJpltXmrTYnvz5Bi6yuUu6bVwSfv7u4S+I/EM9ZB+eY + 3fdF5TAMHD4tK86lw5APDrN2QnO1UMCwIvjOFatSOI0= + </Generator> + <Public> + Ulu6B1lCwajtIBnolqqgU+R1oxfye63DnI/iLM/Oe+Y8I/LMMaEmo3LmCU30m82r + NyOUqgfnm97S0bT8ZhI8gvw0EyQJ87vhlUz4WcmddU/YlTi3gJHUClr2olmBmRCt + m2vKo/BpoLGJ0Wg1eyWfo54+gCqbeNez/DmBGcBEEhM= + </Public> + </DHKeyValue> + </KeyValue> + <X509Data xmlns="http://www.w3.org/2000/09/xmldsig#"> + <X509Certificate> + MIIDvjCCA36gAwIBAgIGAOxN39MIMAkGByqGSM44BAMwbjELMAkGA1UEBhMCSUUx + DzANBgNVBAgTBkR1YmxpbjEkMCIGA1UEChMbQmFsdGltb3JlIFRlY2hub2xvZ2ll + cyBMdGQuMREwDwYDVQQLEwhYL1NlY3VyZTEVMBMGA1UEAxMMVHJhbnNpZW50IENB + MB4XDTAyMDIyODE3NTMxNloXDTAzMDIyODE3NTI1NFowbzELMAkGA1UEBhMCSUUx + DzANBgNVBAgTBkR1YmxpbjEkMCIGA1UEChMbQmFsdGltb3JlIFRlY2hub2xvZ2ll + cyBMdGQuMREwDwYDVQQLEwhYL1NlY3VyZTEWMBQGA1UEAxMNTWVybGluIEh1Z2hl + czCCAiUwggGaBgcqhkjOPgIBMIIBjQKBgQCmXKCXa4w1z6Ni0Bl4oJnE+yaprbPw + Os5RrsvjnmKzM3hJ0+cv4uxkPjtUlrK9BjzoPUnlquTCttTOaEwCMFmwQ08GB99H + DAQFOOir6CNLJk0hvGqyqcl0TJQSXOfiQYTCEQKQkac5pJxpymNmDXWH6B3SIF9j + T3VsYesJmu+v/wKBgD3q1GYDBDA03oDHUwURvQz2ORB5sA8cM5WnXUXH733X1P/c + JT88+QVKLTJu99CfXZRemr1q/dvX82LJyDlA3lDiaZbV5q02J78+QYusrlLum1cE + n7+7uEviPxDPWQfnmN33ReUwDBw+LSvOpcOQDw6zdkJztVDAsCL4zhWrUjiNAhUA + 9jJXQijNovoq6QUBFcEUYwUvyTMCbQCs/HkLusCqHmY71JxUOFzy5fuWkPpWXJzx + qU3oz1BfMZtPUqjpBnqU97M7VUEg+5pRG2txaHP8XNmB1bY0DCE88riDmHP7HqZB + Z2gbaH2LxXDQDayb5GcPfn38eDcWvVAaKP9fJ8wG5RUu3AoDgYQAAoGAUlu6B1lC + wajtIBnolqqgU+R1oxfye63DnI/iLM/Oe+Y8I/LMMaEmo3LmCU30m82rNyOUqgfn + m97S0bT8ZhI8gvw0EyQJ87vhlUz4WcmddU/YlTi3gJHUClr2olmBmRCtm2vKo/Bp + oLGJ0Wg1eyWfo54+gCqbeNez/DmBGcBEEhOjOjA4MA4GA1UdDwEB/wQEAwIDCDAR + BgNVHQ4ECgQIgUAwB+9f1oIwEwYDVR0jBAwwCoAIgjqisiZ1WVswCQYHKoZIzjgE + AwMvADAsAhQ41mCUsFhmxI58tytV8XEVZOCuUwIUVMe/HbUAH5PJ7aRoCNqa3fCI + cU0= + </X509Certificate> + </X509Data> + </OriginatorKeyInfo> + <RecipientKeyInfo> + <X509Data xmlns="http://www.w3.org/2000/09/xmldsig#"> + <X509Certificate> + MIIDvjCCA36gAwIBAgIGAOxN3+EMMAkGByqGSM44BAMwbjELMAkGA1UEBhMCSUUx + DzANBgNVBAgTBkR1YmxpbjEkMCIGA1UEChMbQmFsdGltb3JlIFRlY2hub2xvZ2ll + cyBMdGQuMREwDwYDVQQLEwhYL1NlY3VyZTEVMBMGA1UEAxMMVHJhbnNpZW50IENB + MB4XDTAyMDIyODE3NTMxOVoXDTAzMDIyODE3NTI1NFowbzELMAkGA1UEBhMCSUUx + DzANBgNVBAgTBkR1YmxpbjEkMCIGA1UEChMbQmFsdGltb3JlIFRlY2hub2xvZ2ll + cyBMdGQuMREwDwYDVQQLEwhYL1NlY3VyZTEWMBQGA1UEAxMNTmlscmVtIFNlaGd1 + aDCCAiUwggGaBgcqhkjOPgIBMIIBjQKBgQCmXKCXa4w1z6Ni0Bl4oJnE+yaprbPw + Os5RrsvjnmKzM3hJ0+cv4uxkPjtUlrK9BjzoPUnlquTCttTOaEwCMFmwQ08GB99H + DAQFOOir6CNLJk0hvGqyqcl0TJQSXOfiQYTCEQKQkac5pJxpymNmDXWH6B3SIF9j + T3VsYesJmu+v/wKBgD3q1GYDBDA03oDHUwURvQz2ORB5sA8cM5WnXUXH733X1P/c + JT88+QVKLTJu99CfXZRemr1q/dvX82LJyDlA3lDiaZbV5q02J78+QYusrlLum1cE + n7+7uEviPxDPWQfnmN33ReUwDBw+LSvOpcOQDw6zdkJztVDAsCL4zhWrUjiNAhUA + 9jJXQijNovoq6QUBFcEUYwUvyTMCbQCs/HkLusCqHmY71JxUOFzy5fuWkPpWXJzx + qU3oz1BfMZtPUqjpBnqU97M7VUEg+5pRG2txaHP8XNmB1bY0DCE88riDmHP7HqZB + Z2gbaH2LxXDQDayb5GcPfn38eDcWvVAaKP9fJ8wG5RUu3AoDgYQAAoGAGSYT19Pb + VCxMt06cAP7zQZ6AC5eXp3zeAweIevV96ryA1mB03qhB9X2lVowAUOFc24aVRTz7 + wRoRjNQ20atzSy21C7yXDkvZ4uxfdrpIqpIVrI28e7XL+6CrhnAk621OvdeyEz5H + orA21hPXoCNdnUPG5Ib20oopM87ptF5dwiWjOjA4MA4GA1UdDwEB/wQEAwIDCDAR + BgNVHQ4ECgQIiDCSQ3FB/oEwEwYDVR0jBAwwCoAIgjqisiZ1WVswCQYHKoZIzjgE + AwMvADAsAhQMtZ98TyqVkVqUJ3RJqaU7l2xqKgIUX997qRqeMjAkK88NHeNd95/2 + Yos= + </X509Certificate> + </X509Data> + </RecipientKeyInfo> + </AgreementMethod> + </KeyInfo> + <CipherData> + <CipherValue> + 2s+2ji8opL0SLKziiyNZ+mZ8Ibfu7cTwe4C0MmyarYDwGmsiRSqff8trHUwa+njZ + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> +</Signature> diff --git a/docs/tests/merlin-xmlenc-five/encsig-hmac-sha256-rsa-1_5.xml b/docs/tests/merlin-xmlenc-five/encsig-hmac-sha256-rsa-1_5.xml new file mode 100644 index 00000000..ecc29878 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encsig-hmac-sha256-rsa-1_5.xml @@ -0,0 +1,46 @@ +<?xml version="1.0" encoding="UTF-8"?> +<Signature xmlns="http://www.w3.org/2000/09/xmldsig#"> + <SignedInfo> + <CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" /> + <SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#hmac-sha256" /> + <Reference URI="http://www.w3.org/TR/xml-stylesheet"> + <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> + <DigestValue>60NvZvtdTB+7UnlLp/H24p7h4bs=</DigestValue> + </Reference> + </SignedInfo> + <SignatureValue> + 9XBpYbFplNqqF7U/QtCHYE20U7oIxcyCr0L19MlenNo= + </SignatureValue> + <KeyInfo> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <X509Data> + <X509Certificate> + MIICkjCCAfugAwIBAgIGAOxN32E+MA0GCSqGSIb3DQEBBQUAMG4xCzAJBgNVBAYT + AklFMQ8wDQYDVQQIEwZEdWJsaW4xJDAiBgNVBAoTG0JhbHRpbW9yZSBUZWNobm9s + b2dpZXMgTHRkLjERMA8GA1UECxMIWC9TZWN1cmUxFTATBgNVBAMTDFRyYW5zaWVu + dCBDQTAeFw0wMjAyMjgxNzUyNDZaFw0wMzAyMjgxNzUyNDBaMG8xCzAJBgNVBAYT + AklFMQ8wDQYDVQQIEwZEdWJsaW4xJDAiBgNVBAoTG0JhbHRpbW9yZSBUZWNobm9s + b2dpZXMgTHRkLjERMA8GA1UECxMIWC9TZWN1cmUxFjAUBgNVBAMTDU1lcmxpbiBI + dWdoZXMwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAORdNSxbNFWlQeNsOlYJ + 9gN9eZD+rguRqKhmhOm7i63VDd5ALm2APXhqAmGBPzLN5jlL9g2XALK5WSO4XKjJ + McVfYg4+nPuOeHgqdD4HUgf19j/6SaTMcmDFJQMmx1Qw+Aakq3mGcSfvOJcBZctz + a50VucfCGL1NdfBEcaL3BnhjAgMBAAGjOjA4MA4GA1UdDwEB/wQEAwIFoDARBgNV + HQ4ECgQIjFG0ZGNyvNswEwYDVR0jBAwwCoAIhJXVlhr6O4wwDQYJKoZIhvcNAQEF + BQADgYEAXzG7x5aCJYRusTbmuZqhidGM5iiA9+RmZ4JTPDEgbeiTiJROxpr+ZjnA + TmsDKrCpqNUiHWjmsKEArYQp8R/KjdKl/pVe3jUvTxb0YZ+li/7k0GQ5LyRT/K4c + 2SgyLlyBPhpMq+z3g4P2egVRaZbxsLuKQILf7MIV/X5iAEBzu1w= + </X509Certificate> + </X509Data> + </KeyInfo> + <CipherData> + <CipherValue> + BRhPOKN/KLCih2Q2RoxQiaV0s1FfpOM+kisl9MwRSPow5CyX91rBVfoWpP/Qq1T3 + Rj/f0gVoJyE008uLic4X/S4spnudlOzTkVB6bUzoBt4j+z4hEq/cIfHqVdEJ+lN0 + iu1sJk3k6ESl22OWEqQB7Rl5sAdhFPOqXsnLUNWmqA8= + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> +</Signature> diff --git a/docs/tests/merlin-xmlenc-five/encsig-hmac-sha256-rsa-oaep-mgf1p.xml b/docs/tests/merlin-xmlenc-five/encsig-hmac-sha256-rsa-oaep-mgf1p.xml new file mode 100644 index 00000000..1779093a --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encsig-hmac-sha256-rsa-oaep-mgf1p.xml @@ -0,0 +1,51 @@ +<?xml version="1.0" encoding="UTF-8"?> +<Signature xmlns="http://www.w3.org/2000/09/xmldsig#"> + <SignedInfo> + <CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" /> + <SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#hmac-sha256" /> + <Reference URI="http://www.w3.org/TR/xml-stylesheet"> + <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> + <DigestValue>60NvZvtdTB+7UnlLp/H24p7h4bs=</DigestValue> + </Reference> + </SignedInfo> + <SignatureValue> + 9XBpYbFplNqqF7U/QtCHYE20U7oIxcyCr0L19MlenNo= + </SignatureValue> + <KeyInfo> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"> + <DigestMethod xmlns="http://www.w3.org/2000/09/xmldsig#" Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> + <OAEPparams> + MTIzNDU2Nzg= + </OAEPparams> + </EncryptionMethod> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <X509Data> + <X509Certificate> + MIICkjCCAfugAwIBAgIGAOxN32E+MA0GCSqGSIb3DQEBBQUAMG4xCzAJBgNVBAYT + AklFMQ8wDQYDVQQIEwZEdWJsaW4xJDAiBgNVBAoTG0JhbHRpbW9yZSBUZWNobm9s + b2dpZXMgTHRkLjERMA8GA1UECxMIWC9TZWN1cmUxFTATBgNVBAMTDFRyYW5zaWVu + dCBDQTAeFw0wMjAyMjgxNzUyNDZaFw0wMzAyMjgxNzUyNDBaMG8xCzAJBgNVBAYT + AklFMQ8wDQYDVQQIEwZEdWJsaW4xJDAiBgNVBAoTG0JhbHRpbW9yZSBUZWNobm9s + b2dpZXMgTHRkLjERMA8GA1UECxMIWC9TZWN1cmUxFjAUBgNVBAMTDU1lcmxpbiBI + dWdoZXMwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAORdNSxbNFWlQeNsOlYJ + 9gN9eZD+rguRqKhmhOm7i63VDd5ALm2APXhqAmGBPzLN5jlL9g2XALK5WSO4XKjJ + McVfYg4+nPuOeHgqdD4HUgf19j/6SaTMcmDFJQMmx1Qw+Aakq3mGcSfvOJcBZctz + a50VucfCGL1NdfBEcaL3BnhjAgMBAAGjOjA4MA4GA1UdDwEB/wQEAwIFoDARBgNV + HQ4ECgQIjFG0ZGNyvNswEwYDVR0jBAwwCoAIhJXVlhr6O4wwDQYJKoZIhvcNAQEF + BQADgYEAXzG7x5aCJYRusTbmuZqhidGM5iiA9+RmZ4JTPDEgbeiTiJROxpr+ZjnA + TmsDKrCpqNUiHWjmsKEArYQp8R/KjdKl/pVe3jUvTxb0YZ+li/7k0GQ5LyRT/K4c + 2SgyLlyBPhpMq+z3g4P2egVRaZbxsLuKQILf7MIV/X5iAEBzu1w= + </X509Certificate> + </X509Data> + </KeyInfo> + <CipherData> + <CipherValue> + NGIOL9UzhGwPYvVzbBxOGzxXfTIkzIsmtNSkWA03p64aS41vVA0sKWvcr/79Nf7T + 6RdA61TmwOKa5GDUYRumEadC7Z0zKFDKcuN78iJzlj2WwVqr5vBx14X2BSVW+de1 + UTmXRZFRosFOk9etvD7Lm1V+kqIxqSrod68G8gJvGrY= + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> +</Signature> diff --git a/docs/tests/merlin-xmlenc-five/encsig-ripemd160-hmac-ripemd160-kw-tripledes.xml b/docs/tests/merlin-xmlenc-five/encsig-ripemd160-hmac-ripemd160-kw-tripledes.xml new file mode 100644 index 00000000..532800bb --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encsig-ripemd160-hmac-ripemd160-kw-tripledes.xml @@ -0,0 +1,27 @@ +<?xml version="1.0" encoding="UTF-8"?> +<Signature xmlns="http://www.w3.org/2000/09/xmldsig#"> + <SignedInfo> + <CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" /> + <SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#hmac-ripemd160" /> + <Reference URI="http://www.w3.org/TR/xml-stylesheet"> + <DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#ripemd160" /> + <DigestValue>ixv9ZpIiqEzBC3Uztm5Rl6tXd9Q=</DigestValue> + </Reference> + </SignedInfo> + <SignatureValue> + kwV4uELL96oFm8/+VGzq+xAOgUg= + </SignatureValue> + <KeyInfo> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#kw-tripledes" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>bob</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + gHMpx5iF7+KXtNHLasZrkcLHn8Ti4rxUjCIRK+IcgbQir6FUsQ/uxQ3o8enEMWq1 + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> +</Signature> diff --git a/docs/tests/merlin-xmlenc-five/encsig-sha256-hmac-sha256-kw-aes128.xml b/docs/tests/merlin-xmlenc-five/encsig-sha256-hmac-sha256-kw-aes128.xml new file mode 100644 index 00000000..535510c7 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encsig-sha256-hmac-sha256-kw-aes128.xml @@ -0,0 +1,27 @@ +<?xml version="1.0" encoding="UTF-8"?> +<Signature xmlns="http://www.w3.org/2000/09/xmldsig#"> + <SignedInfo> + <CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" /> + <SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#hmac-sha256" /> + <Reference URI="http://www.w3.org/TR/xml-stylesheet"> + <DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" /> + <DigestValue>eI1OLVStn6Z4q7Byq8XGUJ4bce1LMSlanI6o+SvYzt0=</DigestValue> + </Reference> + </SignedInfo> + <SignatureValue> + cOQGJE3d3fXi1BIfdvr1v6tz/4lt9xGznfyDPXEvc4Q= + </SignatureValue> + <KeyInfo> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#kw-aes128" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>job</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + rPnY/XoSGCbuwy7vpslf29rs9dbvSCmGFOjEs3LT6g/qyZjfDA+2fQ== + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> +</Signature> diff --git a/docs/tests/merlin-xmlenc-five/encsig-sha384-hmac-sha384-kw-aes192.xml b/docs/tests/merlin-xmlenc-five/encsig-sha384-hmac-sha384-kw-aes192.xml new file mode 100644 index 00000000..836aba22 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encsig-sha384-hmac-sha384-kw-aes192.xml @@ -0,0 +1,27 @@ +<?xml version="1.0" encoding="UTF-8"?> +<Signature xmlns="http://www.w3.org/2000/09/xmldsig#"> + <SignedInfo> + <CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" /> + <SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#hmac-sha384" /> + <Reference URI="http://www.w3.org/TR/xml-stylesheet"> + <DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384" /> + <DigestValue>bWetGDV3M5oEiecfEHILQxVQRa1XgdY37VH8eWi9yVVx7Rr7UNhk+v6Jk7sMNPoA</DigestValue> + </Reference> + </SignedInfo> + <SignatureValue> + iEjhOJoKiwsOBduxHj7bxILSsl6TLhNO3w/vlRcw9RZAe24HIxLRfhj4Xqsz1Orr + </SignatureValue> + <KeyInfo> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#kw-aes192" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>jeb</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + 19D633XVohP6UJvaVRAhJek+ahtM3gOiVs6nZyAasDEb+WCUQOcWZw== + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> +</Signature> diff --git a/docs/tests/merlin-xmlenc-five/encsig-sha512-hmac-sha512-kw-aes256.xml b/docs/tests/merlin-xmlenc-five/encsig-sha512-hmac-sha512-kw-aes256.xml new file mode 100644 index 00000000..9adfafd8 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/encsig-sha512-hmac-sha512-kw-aes256.xml @@ -0,0 +1,28 @@ +<?xml version="1.0" encoding="UTF-8"?> +<Signature xmlns="http://www.w3.org/2000/09/xmldsig#"> + <SignedInfo> + <CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" /> + <SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#hmac-sha512" /> + <Reference URI="http://www.w3.org/TR/xml-stylesheet"> + <DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512" /> + <DigestValue>c8+KT9+qCSbNpdZm7/dp9Mv/lgF51ATycY0Ttz/0bw2p5nvnmeEgQpIPw5HhVJ9Ku6dDf0RKVVR/CsYvPGfnEg==</DigestValue> + </Reference> + </SignedInfo> + <SignatureValue> + zB8ZUo9bQxzxnxW2aZ217eu//1e5xHB6RlfEOFOlx1l5PIhadKAlQo0z1D9B2HVU + Kj4StSnlUsrvDo2BxgiAoA== + </SignatureValue> + <KeyInfo> + <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#"> + <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#kw-aes256" /> + <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> + <KeyName>jed</KeyName> + </KeyInfo> + <CipherData> + <CipherValue> + tPCC89jQShB+WDINCdRfKgf8wTlAx8xRXD73RmEHPBfix8zS1N82KQ== + </CipherValue> + </CipherData> + </EncryptedKey> + </KeyInfo> +</Signature> diff --git a/docs/tests/merlin-xmlenc-five/ids.p12 b/docs/tests/merlin-xmlenc-five/ids.p12 Binary files differnew file mode 100644 index 00000000..503960f8 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/ids.p12 diff --git a/docs/tests/merlin-xmlenc-five/plaintext.txt b/docs/tests/merlin-xmlenc-five/plaintext.txt new file mode 100644 index 00000000..9d04ac31 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/plaintext.txt @@ -0,0 +1 @@ +top secret message diff --git a/docs/tests/merlin-xmlenc-five/plaintext.xml b/docs/tests/merlin-xmlenc-five/plaintext.xml new file mode 100644 index 00000000..26907987 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/plaintext.xml @@ -0,0 +1,24 @@ +<?xml version="1.0" encoding="UTF-8"?> +<PurchaseOrder xmlns="urn:example:po"> + <Items> + <Item Code="001-001-001" Quantity="1"> + spade + </Item> + <Item Code="001-001-002" Quantity="1"> + shovel + </Item> + </Items> + <ShippingAddress> + Dig PLC, 1 First Ave, Dublin 1, Ireland + </ShippingAddress> + <PaymentInfo> + <BillingAddress> + Dig PLC, 1 First Ave, Dublin 1, Ireland + </BillingAddress> + <CreditCard Type="Amex"> + <Name>Foo B Baz</Name> + <Number>1234 567890 12345</Number> + <Expires Month="1" Year="2005" /> + </CreditCard> + </PaymentInfo> +</PurchaseOrder> diff --git a/docs/tests/merlin-xmlenc-five/rsa.p8 b/docs/tests/merlin-xmlenc-five/rsa.p8 Binary files differnew file mode 100644 index 00000000..6a7d8282 --- /dev/null +++ b/docs/tests/merlin-xmlenc-five/rsa.p8 |