Add correct identifier for RSA-OAEP algorithm

http://www.w3.org/2001/04/xmlenc#rsa-oaep does not exist as an
identifier for RSA-OAEP algorithm and it was introduced by a mistake.

We will keep http://www.w3.org/2001/04/xmlenc#rsa-oaep, but we will
treat it as http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p, for backwards
compatibility reasons.

Author: GeoK

src/Microsoft.IdentityModel.Tokens/CryptoProviderFactory.cs

@@ -603,7 +603,8 @@ private bool IsSupportedKeyWrapAlgorithm(string algorithm, SecurityKey key)
 
             if (algorithm.Equals(SecurityAlgorithms.RsaPKCS1, StringComparison.Ordinal)
                 || algorithm.Equals(SecurityAlgorithms.RsaOAEP, StringComparison.Ordinal)
-                || algorithm.Equals(SecurityAlgorithms.RsaOaepKeyWrap, StringComparison.Ordinal))
+                || algorithm.Equals(SecurityAlgorithms.RsaOaepKeyWrap, StringComparison.Ordinal)
+                || algorithm.Equals(SecurityAlgorithms.RsaOaepMgf1pKeyWrap, StringComparison.Ordinal))
             {
                 if (key is RsaSecurityKey)
                     return true;
@@ -641,6 +642,7 @@ private bool IsSupportedRsaAlgorithm(string algorithm)
                 case SecurityAlgorithms.RsaOAEP:
                 case SecurityAlgorithms.RsaPKCS1:
                 case SecurityAlgorithms.RsaOaepKeyWrap:
+                case SecurityAlgorithms.RsaOaepMgf1pKeyWrap:
                     return true;
             }
 

src/Microsoft.IdentityModel.Tokens/SecurityAlgorithms.cs

@@ -51,7 +51,8 @@ public static class SecurityAlgorithms
         public const string Ripemd160Digest = "http://www.w3.org/2001/04/xmlenc#ripemd160";
 
         // See: https://www.w3.org/TR/xmlenc-core1/#sec-RSA-OAEP
-        public const string RsaOaepKeyWrap = "http://www.w3.org/2001/04/xmlenc#rsa-oaep";
+        public const string RsaOaepKeyWrap = "http://www.w3.org/2001/04/xmlenc#rsa-oaep"; // treat as http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p. RsaOaepKeyWrap identifier doesn't exist, but we released, so don't break now.
+        public const string RsaOaepMgf1pKeyWrap = "http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p";
 
         // See: https://tools.ietf.org/html/rfc7518#section-4.1
         public const string Aes128KW = "A128KW";
@@ -117,7 +118,7 @@ public static class SecurityAlgorithms
         public const string Aes192CbcHmacSha384 = "A192CBC-HS384";
         public const string Aes256CbcHmacSha512 = "A256CBC-HS512";
 
-        internal const string DefaultAsymmetricKeyWrapAlgorithm = RsaOaepKeyWrap;
+        internal const string DefaultAsymmetricKeyWrapAlgorithm = RsaOaepMgf1pKeyWrap;
         internal const string DefaultSymmetricEncryptionAlgorithm = Aes128Gcm;
 
 #pragma warning restore 1591

test/Microsoft.IdentityModel.JsonWebTokens.Tests/JsonWebTokenHandlerTests.cs

@@ -1708,23 +1708,23 @@ public static TheoryData<CreateTokenTheoryData> RoundTripJWEKeyWrappingTheoryDat
                         ValidationParameters = Default.TokenValidationParameters(KeyingMaterial.RsaSecurityKey_2048, Default.SymmetricSigningKey256),
                         Payload = Default.PayloadString,
                         SigningCredentials = Default.SymmetricSigningCredentials,
-                        EncryptingCredentials = new EncryptingCredentials(KeyingMaterial.RsaSecurityKey_2048, SecurityAlgorithms.RsaOaepKeyWrap, SecurityAlgorithms.Aes128CbcHmacSha256)
+                        EncryptingCredentials = new EncryptingCredentials(KeyingMaterial.RsaSecurityKey_2048, SecurityAlgorithms.RsaOaepMgf1pKeyWrap, SecurityAlgorithms.Aes128CbcHmacSha256)
                     },
                     new CreateTokenTheoryData()
                     {
                         TestId = "RsaOaepKeyWrap-Aes192CbcHmacSha384",
                         ValidationParameters = Default.TokenValidationParameters(KeyingMaterial.RsaSecurityKey_2048, Default.SymmetricSigningKey256),
                         Payload = Default.PayloadString,
                         SigningCredentials = Default.SymmetricSigningCredentials,
-                        EncryptingCredentials = new EncryptingCredentials(KeyingMaterial.RsaSecurityKey_2048, SecurityAlgorithms.RsaOaepKeyWrap, SecurityAlgorithms.Aes192CbcHmacSha384)
+                        EncryptingCredentials = new EncryptingCredentials(KeyingMaterial.RsaSecurityKey_2048, SecurityAlgorithms.RsaOaepMgf1pKeyWrap, SecurityAlgorithms.Aes192CbcHmacSha384)
                     },
                     new CreateTokenTheoryData()
                     {
                         TestId = "RsaOaepKeyWrap-Aes256CbcHmacSha512",
                         ValidationParameters = Default.TokenValidationParameters(KeyingMaterial.RsaSecurityKey_2048, Default.SymmetricSigningKey256),
                         Payload = Default.PayloadString,
                         SigningCredentials = Default.SymmetricSigningCredentials,
-                        EncryptingCredentials = new EncryptingCredentials(KeyingMaterial.RsaSecurityKey_2048, SecurityAlgorithms.RsaOaepKeyWrap, SecurityAlgorithms.Aes256CbcHmacSha512)
+                        EncryptingCredentials = new EncryptingCredentials(KeyingMaterial.RsaSecurityKey_2048, SecurityAlgorithms.RsaOaepMgf1pKeyWrap, SecurityAlgorithms.Aes256CbcHmacSha512)
                     },
                     new CreateTokenTheoryData()
                     {
@@ -1748,7 +1748,7 @@ public static TheoryData<CreateTokenTheoryData> RoundTripJWEKeyWrappingTheoryDat
                         ValidationParameters = Default.TokenValidationParameters(KeyingMaterial.RsaSecurityKey_2048, Default.SymmetricSigningKey256),
                         Payload = Default.PayloadString,
                         SigningCredentials = Default.SymmetricSigningCredentials,
-                        EncryptingCredentials = new EncryptingCredentials(KeyingMaterial.RsaSecurityKey_2048, SecurityAlgorithms.RsaOaepKeyWrap, SecurityAlgorithms.Aes192CbcHmacSha384)
+                        EncryptingCredentials = new EncryptingCredentials(KeyingMaterial.RsaSecurityKey_2048, SecurityAlgorithms.RsaOaepMgf1pKeyWrap, SecurityAlgorithms.Aes192CbcHmacSha384)
                     }
                 };
             }

test/Microsoft.IdentityModel.Tokens.Tests/EncryptingCredentialsTests.cs

@@ -81,7 +81,7 @@ public static TheoryData<EncryptingCredentialsTheoryData> ConstructorATheoryData
                 new EncryptingCredentialsTheoryData
                 {
                     Key = null,
-                    Alg = SecurityAlgorithms.RsaOaepKeyWrap,
+                    Alg = SecurityAlgorithms.RsaOaepMgf1pKeyWrap,
                     Enc = SecurityAlgorithms.Aes128CbcHmacSha256,
                     ExpectedException = ExpectedException.ArgumentNullException("IDX10000: The parameter 'key'"),
                     TestId = "NullKey"
@@ -97,7 +97,7 @@ public static TheoryData<EncryptingCredentialsTheoryData> ConstructorATheoryData
                 new EncryptingCredentialsTheoryData
                 {
                     Key = Default.AsymmetricEncryptionKeyPublic,
-                    Alg = SecurityAlgorithms.RsaOaepKeyWrap,
+                    Alg = SecurityAlgorithms.RsaOaepMgf1pKeyWrap,
                     Enc = String.Empty,
                     ExpectedException = ExpectedException.ArgumentNullException("IDX10000: The parameter 'enc'"),
                     TestId = "EmptyEncString"
@@ -113,15 +113,15 @@ public static TheoryData<EncryptingCredentialsTheoryData> ConstructorATheoryData
                 new EncryptingCredentialsTheoryData
                 {
                     Key = Default.AsymmetricEncryptionKeyPublic,
-                    Alg = SecurityAlgorithms.RsaOaepKeyWrap,
+                    Alg = SecurityAlgorithms.RsaOaepMgf1pKeyWrap,
                     Enc = null,
                     ExpectedException = ExpectedException.ArgumentNullException("IDX10000: The parameter 'enc'"),
                     TestId = "NullEncString"
                 },
                 new EncryptingCredentialsTheoryData
                 {
                     Key = Default.AsymmetricEncryptionKeyPublic,
-                    Alg = SecurityAlgorithms.RsaOaepKeyWrap,
+                    Alg = SecurityAlgorithms.RsaOaepMgf1pKeyWrap,
                     Enc = SecurityAlgorithms.Aes128CbcHmacSha256,
                     TestId = "ValidTest"
                 }

test/Microsoft.IdentityModel.Tokens.Tests/KeyVaultVerify.cs

@@ -138,7 +138,7 @@ public static TheoryData<KeyWrapTestParams> KeyWrapTheoryData
                 rsaOaep = new RsaOaep();
                 theoryData.Add(new KeyWrapTestParams
                 {
-                    Algorithm = SecurityAlgorithms.RsaOaepKeyWrap,
+                    Algorithm = SecurityAlgorithms.RsaOaepMgf1pKeyWrap,
                     KeyVaultEncryptor = rsaOaep.CreateEncryptor(KeyingMaterial.RsaSecurityKeyWithCspProvider_2048_Public.Rsa),
                     KeyVaultDecryptor = rsaOaep.CreateDecryptor(KeyingMaterial.RsaSecurityKeyWithCspProvider_2048.Rsa),
                     Key = KeyingMaterial.RsaSecurityKeyWithCspProvider_2048,

test/Microsoft.IdentityModel.Tokens.Tests/X509EncryptingCredentialsTests.cs

@@ -66,7 +66,7 @@ public static TheoryData<X509EncryptingCredentialsTheoryData> ConstructorsTheory
                 new X509EncryptingCredentialsTheoryData
                 {
                     Certificate = null,
-                    Alg = SecurityAlgorithms.RsaOaepKeyWrap,
+                    Alg = SecurityAlgorithms.RsaOaepMgf1pKeyWrap,
                     Enc = SecurityAlgorithms.Aes128Gcm,
                     ExpectedException = ExpectedException.ArgumentNullException("IDX10000: The parameter 'certificate'"),
                     TestId = "NullCertificate"
@@ -82,7 +82,7 @@ public static TheoryData<X509EncryptingCredentialsTheoryData> ConstructorsTheory
                 new X509EncryptingCredentialsTheoryData
                 {
                     Certificate = Default.Certificate,
-                    Alg = SecurityAlgorithms.RsaOaepKeyWrap,
+                    Alg = SecurityAlgorithms.RsaOaepMgf1pKeyWrap,
                     Enc = String.Empty,
                     ExpectedException = ExpectedException.ArgumentNullException("IDX10000: The parameter 'enc'"),
                     TestId = "EmptyEncString"
@@ -98,15 +98,15 @@ public static TheoryData<X509EncryptingCredentialsTheoryData> ConstructorsTheory
                 new X509EncryptingCredentialsTheoryData
                 {
                     Certificate = Default.Certificate,
-                    Alg = SecurityAlgorithms.RsaOaepKeyWrap,
+                    Alg = SecurityAlgorithms.RsaOaepMgf1pKeyWrap,
                     Enc = null,
                     ExpectedException = ExpectedException.ArgumentNullException("IDX10000: The parameter 'enc'"),
                     TestId = "NullEncString"
                 },
                 new X509EncryptingCredentialsTheoryData
                 {
                     Certificate = Default.Certificate,
-                    Alg = SecurityAlgorithms.RsaOaepKeyWrap,
+                    Alg = SecurityAlgorithms.RsaOaepMgf1pKeyWrap,
                     Enc = SecurityAlgorithms.Aes128Gcm,
                     TestId = "ValidTest"
                 }

test/System.IdentityModel.Tokens.Jwt.Tests/CreateAndValidateTokens.cs

@@ -823,23 +823,23 @@ public static TheoryData<string, SecurityTokenDescriptor, TokenValidationParamet
                 ExpectedException.NoExceptionExpected
             );
 
-            encryptingCredentials = new EncryptingCredentials(KeyingMaterial.RsaSecurityKey_2048, SecurityAlgorithms.RsaOaepKeyWrap, SecurityAlgorithms.Aes128CbcHmacSha256);
+            encryptingCredentials = new EncryptingCredentials(KeyingMaterial.RsaSecurityKey_2048, SecurityAlgorithms.RsaOaepMgf1pKeyWrap, SecurityAlgorithms.Aes128CbcHmacSha256);
             theoryData.Add(
                 "RsaOaepKeyWrap-Aes128CbcHmacSha256",
                 Default.SecurityTokenDescriptor(encryptingCredentials, Default.SymmetricSigningCredentials, ClaimSets.DefaultClaims),
                 Default.TokenValidationParameters(KeyingMaterial.RsaSecurityKey_2048, Default.SymmetricSigningKey256),
                 ExpectedException.NoExceptionExpected
             );
 
-            encryptingCredentials = new EncryptingCredentials(KeyingMaterial.RsaSecurityKey_2048, SecurityAlgorithms.RsaOaepKeyWrap, SecurityAlgorithms.Aes192CbcHmacSha384);
+            encryptingCredentials = new EncryptingCredentials(KeyingMaterial.RsaSecurityKey_2048, SecurityAlgorithms.RsaOaepMgf1pKeyWrap, SecurityAlgorithms.Aes192CbcHmacSha384);
             theoryData.Add(
                 "RsaOaepKeyWrap-Aes192CbcHmacSha384",
                 Default.SecurityTokenDescriptor(encryptingCredentials, Default.SymmetricSigningCredentials, ClaimSets.DefaultClaims),
                 Default.TokenValidationParameters(KeyingMaterial.RsaSecurityKey_2048, Default.SymmetricSigningKey256),
                 ExpectedException.NoExceptionExpected
             );
 
-            encryptingCredentials = new EncryptingCredentials(KeyingMaterial.RsaSecurityKey_2048, SecurityAlgorithms.RsaOaepKeyWrap, SecurityAlgorithms.Aes256CbcHmacSha512);
+            encryptingCredentials = new EncryptingCredentials(KeyingMaterial.RsaSecurityKey_2048, SecurityAlgorithms.RsaOaepMgf1pKeyWrap, SecurityAlgorithms.Aes256CbcHmacSha512);
             theoryData.Add(
                 "RsaOaepKeyWrap-Aes256CbcHmacSha512",
                 Default.SecurityTokenDescriptor(encryptingCredentials, Default.SymmetricSigningCredentials, ClaimSets.DefaultClaims),
@@ -888,7 +888,7 @@ public static TheoryData<string, SecurityTokenDescriptor, TokenValidationParamet
                 ExpectedException.NoExceptionExpected
             );
 
-            encryptingCredentials = new EncryptingCredentials(KeyingMaterial.RsaSecurityKey_2048, SecurityAlgorithms.RsaOaepKeyWrap, SecurityAlgorithms.Aes192CbcHmacSha384);
+            encryptingCredentials = new EncryptingCredentials(KeyingMaterial.RsaSecurityKey_2048, SecurityAlgorithms.RsaOaepMgf1pKeyWrap, SecurityAlgorithms.Aes192CbcHmacSha384);
             theoryData.Add(
                 "RsaOaepKeyWrap-Aes192CbcHmacSha384",
                 Default.SecurityTokenDescriptor(encryptingCredentials, Default.SymmetricSigningCredentials, ClaimSets.DefaultClaims),