You are viewing a plain text version of this content. The canonical link for it is here.
Posted to java-user@axis.apache.org by Paul Grillo <Pa...@trivininc.com> on 2005/08/12 22:12:46 UTC
Signature Verification, is it really not valid?
I've been looking at this problem for a day or 2 now and can't figure
out what the problem is. I'm interacting with a .NET server. I've sent
my message signed with my private key, and encrypted with their public
key.
The receive the message, verify signature and decrypt. All is well.
Then they return the message to me, presumable signed with their private
key and encrypted with our public key.
The problem is that the signature verification fails. Everything all
appears correct. This customer/vendor insists that all is okay, must be
a problem on my end.
I've debugged into it as far as I can not quite understanding the
nuances below, but I'm getting there.
I apologize for shipping the whole SOAP message, but context might be
important. I've wrapped the inMessage and outMessage in a RoundTrip tag
for readability. You can skip to the outMessage, since this is where
the problem lies. The <Signature> section appears in good order.
references to TimeStamp and Body, and a digest for each.
<KeyInfo> section defines the key as a reference back to a
directReference Binary Key. Looks like all is in place. Looks like the
code finds these things.
But, at around line 586 in WSSecurityEngine:
boolean signatureOk = false;
if (certs != null) {
signatureOk = sig.checkSignatureValue(certs[0]);
} else {
signatureOk = sig.checkSignatureValue(sig
.createSecretKey(secretKey));
}
certs is not = to null, and the 1st call to signatureOK comes back
false.
My client side configuration file uses DirectReference.
Below is the full roundtrip. I apologize again for the size. I'm
hoping that somebody can look at this and possibly see an issue .. or
give me some pointers on what else to look for.
thanks much ahead of time for anybody that takes the time to examine
this. If you skip down to <OutMessage> that will be the beginning of
the message I can't verify. The 1st section shows that this same key
has been used when sending with no problems.
<RoundTrip>
<TimeSent>Fri Aug 12 15:41:16 EDT 2005</TimeSent>
<TimeReceived>Fri Aug 12 15:41:19 EDT 2005</TimeReceived>
<InMessage>
<soapenv:Envelope
xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
<soapenv:Header>
<wsse:Security
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wsse
curity-secext-1.0.xsd" soapenv:mustUnderstand="1" actor="">
<wsse:BinarySecurityToken
EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-so
ap-message-security-1.0#Base64Binary"
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-
token-profile-1.0#X509v3" wsu:Id="EncCertId-27609163"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssec
urity-utility-1.0.xsd">DCCBDmgAwIBAgIQGB9P0EvmabhAbPASiJoRvjANBgkqhkiG9w
0BAQUFADCBujEfMB0GA1UEgVHJ1c3QgTmV0d29yazEXMBUGA1UECxMOVmVyaVNpZ24sIEluY
y4xMzAxBgNVaW9uYWwgU2VydmVyIENBIC0gQ2xhc3MgMzFJMEcGA1UECxNAd3LnZlcmlzaWd
uLmNvbS9DUFMgSW5jb3JwLmJ5IFJlZi4gTElBQklMSVRZIExURC4oYyk5NyBWlnbjAeFw0wN
TA2MzAwMDAwMDBaFw0wNzA2MzAyMzU5NTlaMIHVMQswCQYDVQQGEwJVUzENUECBMET2hpbzE
RMA8GA1UEBxQIQ29sdW1idXMxKTAnBgNVBAoUIE9oaW8gRGVwYXJ0bWVuFmZXR5MSYwJAYDV
QQLFB1JbmZvcm1hdGlvbiBUZWNobm9sb2d5IE9mZmljUECxQqVGVybXMgb2YgdXNlIGF0IHd
3dy52ZXJpc2lnbi5jb20vcnBhIChjKTA1MRwwYXRlLm9oLnVzMIGfMA0GCSqGSIb3DQEBAQU
AA4GNADCBiQKBgQDRwHxq9BhHfov2RfjQVKVjE40DMdSOaSjgJf0Bk/dOZXAaNbkupS71TiT
xg4rhmGB5xLJnVfPKRGMtuz9KqtVX7Nddfqg7kWfDPGhCc871V44E3demm7ofOJuaLtguONb
M5svPrzkrBh14VxMlJlwIDAQABo4IBuDCCAbQwCQYDVR0TBAIwADALBgNVHQ8EBAMCBaAwRA
YDVR0gwOzA5BgtghkgBhvhFAQcXAzAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy52ZXJpc
2lnbi5jvcnBhMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9TVlJJbnRsLWNybC52ZXJpc2ln
bi5jb20vZSSW50bC5jcmwwNAYDVR0lBC0wKwYIKwYBBQUHAwEGCCsGAQUFBwMCBglghkgBhv
hCBAEGCisGvb2NzcC52ZXJpc2lnjb20wOwYIKwYBBQUHMAKGL2h0dHA6Ly9TVlJJbnRsLWFp
YS52ZXJpc2lnbi5jb20vU1ZSSW50haWEuY2VyMG0GCCsGAQUFBwEMBGEwX6FdoFswWTBXMFU
WCWltYWdlL2dpZjAhMB8wBwYFKw4D/l0xqGrI2Oa8PPgGrUSBgsexkuMCUWI2h0dHA6Ly9sb
2dvLnZlcmlzaWduLmNvbS92c2xvuZ2lmMA0GCSqGSIb3DQEBBQUAA4GBAKFXHVIkiB//b6xF
HtdXYE3SlgieAmSrzlnHXaQu+kr8
qfI2G/wMspyH+oxalQ+QXB3ROo9ozyxlhx/Rt7V5UiLne3icbrztmhty+A4NfBAq+Z56CmVn
jvQmM7Nshd2S6QClfz9rfQbbigpmVPfoT1HuVbsmxjISsGC
</wsse:BinarySecurityToken>
<xenc:EncryptedKey
xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
<xenc:EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/>
<ds:KeyInfo
xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<wsse:SecurityTokenReference>
<wsse:Reference
URI="#EncCertId-27609163"
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-
token-profile-1.0#X509v3"/>
</wsse:SecurityTokenReference>
</ds:KeyInfo>
<xenc:CipherData>
<xenc:CipherValue>/eUg0Ud6bluNu95aKEdWbgdAik4DlRa/nKXe54Xa11r1YixbK5VfMk
zcxV5a57It0n40F0Za5FkO+J1nUYZrmW8LY6PmLYkKoyueApwAc4EJWI86XNGmoljDhwXKnA
BAOxHPL0w+9OW5/qcUnB1Acst9ZdOBKZvd3K1jA= </xenc:CipherValue>
</xenc:CipherData>
<xenc:ReferenceList>
<xenc:DataReference
URI="#EncDataId-20783574"/>
</xenc:ReferenceList>
</xenc:EncryptedKey>
<ds:Signature
xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:SignedInfo>
<ds:CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
<ds:SignatureMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<ds:Reference
URI="#id-20783574">
<ds:Transforms>
<ds:Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</ds:Transforms>
<ds:DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<ds:DigestValue>q7SxRKmyPkA5D3Qo8TLdpfWo= </ds:DigestValue>
</ds:Reference>
<ds:Reference
URI="#id-6204829">
<ds:Transforms>
<ds:Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</ds:Transforms>
<ds:DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<ds:DigestValue>
rt2fqX9tq/HU/JNVdIgFO06Reo= </ds:DigestValue>
</ds:Reference>
</ds:SignedInfo>
<ds:SignatureValue>/cBgLGpYLsMgDgN58cozK9WxmiIg/RzzJuycBuNu3DNENkUcfHvqo
Ut3DGqObn6gRStPyjt3fWx
JVQAqcI6w== </ds:SignatureValue>
<ds:KeyInfo Id="KeyId-19783652">
<wsse:SecurityTokenReference
wsu:Id="STRId-26179329"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssec
urity-utility-1.0.xsd">
<wsse:KeyIdentifier
EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-so
ap-message-security-1.0#Base64Binary"
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-
token-profile-1.0#X509SubjectKeyIdentifier">
tfGiDtiWNmGnn9H6WqUCc7cyFc= </wsse:KeyIdentifier>
</wsse:SecurityTokenReference>
</ds:KeyInfo>
</ds:Signature>
<wsu:Timestamp
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssec
urity-utility-1.0.xsd" wsu:Id="id-6204829">
<wsu:Created>
-08-12T19:41:16.672Z </wsu:Created>
<wsu:Expires>
-08-12T19:46:16.672Z </wsu:Expires>
</wsu:Timestamp>
</wsse:Security>
</soapenv:Header>
<soapenv:Body wsu:Id="id-20783574"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssec
urity-utility-1.0.xsd">
<xenc:EncryptedData
xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" Id="EncDataId-20783574"
Type="http://www.w3.org/2001/04/xmlenc#Content">
<xenc:EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
<xenc:CipherData>
<xenc:CipherValue>c5wVdC5Z09/rCTjUvq3OMjTqPQQR99ivueBa/yNNbYNZuMakCHgWZK
RDUswVplYHz9eaKWT743GU0wv8EX/tTp1KEIp2YPSFFDC2KEL6Jm7yqv1mNrfqmTyqvjsBw7
bTxiIOqg06H30qS/4uZddegI3EhegJog/t9GlEFCZ2QyZFIfzBH3f26WVClPBaCScu+efg3U
R3RllHNeJHVko/U0Tb/U1w/Q9F
cexpnMecGUMay5aelQQXZPKAjEPlPLoY0aLD9Ph65G03VEy0TDoOl4JYOxMVr31UYQqrx5Fy
owGAPNxo7+xNOiQlmzUMyT7tsh6qjxYPk5RCm+/gQYljIIQVNg8v8P3Ca5QWDGCS34Uy3/BS
dk5bOYbQLfzi/91XVcs5LxQDPITXiz7NsblIV+WxGgqnZW3sKYPdgz0V/kebEdhRZJ8APW3d
Uv75UCCqAvaK9QIuihUtiB6vFIjoS/3w4bsEng8JAo1Bi/mWzk9P56UKdnHYSxEFWvZ512kn
XJLVPAX6QjBwMYTFtIjmTtk+RBRzsowRHnw1LhUWP7WzNOl8Be22TSyP940wpDiZpfe/u3fM
k2br8RROvhlM0bxsia7aiuyL+20R59jfFW1wxG/f9lMjq0AnZCXA1/dkjcJYGB7BsIQyLssO
H6pu1Dth8vIyTnQ+2JV7kAFaunZeqhMsk8ELBSPUxNJxN/WnKe5MSkT86JFUd4pPmkQghEoM
p+o60uOjqEPJfiFHL9ZzyMIQX1tXJaIPtP0lYGbAKEl7wHmAILleC4br/DnzhvBfT//ja4h4
tiLkKIWUpTRq4tFKOdE/ygHx/XiGG/SHSy9p8s9KBmMQAe7k9vQulDpVJ2UqT
YDYJErsY+TOadFusDtHQZkmAoj+WiFyYVqXNBmnlvesBgd7LEEYPkSQg4rPXuAOpPgTZHAJ7
snJHY6nIAZ8+2hDG0xdUxnW6Wb1Fq5asgDQx9FwuLSjhA/4Y+Zlb1GwS/rRezWOrCxuQmZ5O
NIrf6Lz/qtPg2ow187WYj1gcDc54dv/riryAN680RR64X1LIN4Na+1gigmhMdxUiaHbTdxIM
MxnJa3mXCqCdz4r363V8PpPgNi3gUbyoToegssgiNHDp0aag/cKOjmkZGKEdJQARDF4D9I1w
ejnBjJbrkmyOo8nKt4sQlNw68imGlmLAUZw0SIVr2b4SkvZ5OcwrdQZun97LwjcCrOZtpArc
rr51axP1SgG0K3EZIx7utcx9OQvU8udBxKc3kEyw0/7ESbpecE6mTuV7K7v1kvRxAu+WfgY+
3uihLTAJItNCCcprDKXGOwV7DFR7Hrm+jZ1LjXypXQbTdpTp27kV4Bj2XwlkuA
hrLtts1OAWWtWK5kkwbPiY8q3a28KmaJtia4+9lM7pJX8pMA8k92OOtJc4RJE+7InFAB7Yiu
P+RGUeaE1+eJOWtoyFgHfSIemAWKfOLp+1RqLl94UveR8nR2ry+d8GwQ8FKNH0JVpEqcAmMi
ARmcHM8eVpF/0BOprdXhLcRRbmIxdaEhpSGfHzaAm2lFKJjNfWbStAg3dWA0NylJ1PFfbuPB
ITUXsITNYEUpXI6AZOXMnhtcxXvZdXqAzvTY4jdwtR/KCHQL8OEx8HUPxfpGxyPAymegLxdi
sU+8v/znV2dNnjpGyTYMOy+tjxwdcPDNNCvK2Yarbukt38EhUyQ2i+DUhoke1Y
dRYlh5qv7QzxOu9i8NxK2G0q0tO9GGiC3aqINF/VSJqM2s4b864gBCO5moClDhGN7+qEfbaa
wVa
kcVSsE6y8Jamx8OqE0XgjNdZFCxT07J1OpLozRhag7eMJtuMI57z7fWT3iAP8aex48egU6UI
EoDcmEI8c8u97ss6ZNg6P+m7mWR9t7U0pgowfsDlCiWd9RTAa3KyGOj2T2Y3HaIf3jkzMjOT
4/HjPxJJRTsvsYxrxGVeCE8KDryOaJxlKS5bxh4/TMv4DXrU5GsIpwEekP/JwEs3HK3JiFxR
PmN5JoRE6V+NhNwquY4IX0giWpgiK3KHpL4Ou97+srKqb2hvQ5dxOKMbfPIUigGJ2TlSVLtM
fLp4GAjlyoOHub+hO13P3v9sU3DsuRsiUFhy10wd9i2fvnFwRFuM3sZDIkpOuk6P0uN9MhAy
DwBqrvyeALOAKRWo7PJ2S9a/LO/vPJyaVy7aHfsOBt6/3rngikBV6qqTUas7gVUi2FoH+Sj+
Ox6553n8+KEj/+s3/QhMZoum5dKw== </xenc:CipherValue>
</xenc:CipherData>
</xenc:EncryptedData>
</soapenv:Body>
</soapenv:Envelope>
</InMessage>
<OutMessage>
<soap:Envelope
xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/">
<soap:Header>
<wsse:Security
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wsse
curity-secext-1.0.xsd" soap:mustUnderstand="1" actor="">
<wsu:Timestamp
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssec
urity-utility-1.0.xsd"
wsu:Id="Timestamp-6236d88b-0383-4871-96a5-0c73d4dd4439">
<wsu:Created>
-08-12T19:41:19Z </wsu:Created>
<wsu:Expires>
-08-12T19:46:19Z </wsu:Expires>
</wsu:Timestamp>
<wsse:BinarySecurityToken
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-
token-profile-1.0#X509v3"
EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-so
ap-message-security-1.0#Base64Binary"
wsu:Id="SecurityToken-293c720b-a27e-4862-a97e-d40d1670b4fb"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssec
urity-utility-1.0.xsd">DCCBDmgAwIBAgIQGB9P0EvmabhAbPASiJoRvjANBgkqhkiG9w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 </wsse:BinarySecurityToken>
<xenc:EncryptedKey
xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
<xenc:EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/>
<KeyInfo>
<wsse:SecurityTokenReference>
<wsse:KeyIdentifier
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-
token-profile-1.0#X509SubjectKeyIdentifier">
tfGiDtiWNmGnn9H6WqUCc7cyFc= </wsse:KeyIdentifier>
</wsse:SecurityTokenReference>
</KeyInfo>
<xenc:CipherData>
<xenc:CipherValue>WnzXM6hBL381fWL1QE14YbMalmI8ggiDcz+7c0HYAATX5SNOeyYE9F
t1Wb7YdsG/DV9PEf26Fow+vw1Q== </xenc:CipherValue>
</xenc:CipherData>
<xenc:ReferenceList>
<xenc:DataReference
URI="#EncryptedContent-3135e7f1-5d0e-47aa-82bf-0f3a2660c152"/>
</xenc:ReferenceList>
</xenc:EncryptedKey>
<Signature>
<SignedInfo>
<ds:CanonicalizationMethod
xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
<SignatureMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<Reference
URI="#Timestamp-6236d88b-0383-4871-96a5-0c73d4dd4439">
<Transforms>
<Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>jBGwSwQ18C4Ols= </DigestValue>
</Reference>
<Reference
URI="#Id-0125b29d-d5bb-4d41-aa32-6bdb75e7dca0">
<Transforms>
<Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>sAVMrS27a8KKOMxV1tMIpA= </DigestValue>
</Reference>
</SignedInfo>
<SignatureValue>FqaKZA9OvPbZTpbALkmXgVnW7t4tXst3DuRbFKhC30Hr09SUyYl5B3+l
ofdyq/nP3sBSz1lexZ+yLzRspdzuh1SBKhxWq4WGe/bpW9L2krzkTavwyndNgS66pb1P0Q0G
6sgs2CJufLO2DjETsl1QfL6pbfOIIngvSGq4k= </SignatureValue>
<KeyInfo>
<wsse:SecurityTokenReference>
<wsse:Reference
URI="#SecurityToken-293c720b-a27e-4862-a97e-d40d1670b4fb"
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-
token-profile-1.0#X509v3"/>
</wsse:SecurityTokenReference>
</KeyInfo>
</Signature>
</wsse:Security>
</soap:Header>
<soap:Body
wsu:Id="Id-0125b29d-d5bb-4d41-aa32-6bdb75e7dca0"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssec
urity-utility-1.0.xsd">
<xenc:EncryptedData
xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
Id="EncryptedContent-3135e7f1-5d0e-47aa-82bf-0f3a2660c152"
Type="http://www.w3.org/2001/04/xmlenc#Content">
<xenc:EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
<xenc:CipherData>
<xenc:CipherValue>+pnmfo056HSj1JA0uRp2pQWReJyKlD6q8sCMoo/e8cgjolOsohafd7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=
</xenc:CipherValue>
</xenc:CipherData>
</xenc:EncryptedData>
</soap:Body>
</soap:Envelope>
</OutMessage>
</RoundTrip>