xmlenc

package module

v0.0.0-...-4c889cd Latest Latest Go to latest Published: Aug 14, 2018 License: BSD-2-Clause Imports: 8 Imported by: 1

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/aykevl/go-xmlenc

Links

Open Source Insights

README ¶

XML Encryption

This is a very bare-bones implementation of XML Encryption, just enough to decrypt the SAML attributes of the iDIN protocol provided by (mostly) Dutch banks.

Some warnings:

This is unfinished. It supports almost nothing except for one specific combination of RSA-OAEP, SHA1, and AES-256-CBC.
Do not use unauthenticated XML encryption. It is broken by design and allows for a padding oracle attack. Make sure the messages you're trying to decrypt have been verified in some way (e.g. using an XML signature).
This library hasn't been reviewed by a cryptographer so it may contain mistakes. However, as it is only decrypting stuff (which should be already authenticated), there is not a whole lot that can go wrong.

Documentation ¶

Index ¶

func DecryptElement(src *etree.Element, sk *rsa.PrivateKey) (*etree.Element, error)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func DecryptElement ¶

func DecryptElement(src *etree.Element, sk *rsa.PrivateKey) (*etree.Element, error)

Types ¶

This section is empty.

Source Files ¶

View all Source files

xmlenc.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL