magnus/node-rsa
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

edited the wrong file...

Browse Source
This commit is contained in:
Magnus von Wachenfeldt 2021-09-01 11:19:47 +02:00
parent e3c35c525f
commit b70f21a233
Signed by: magnus
GPG Key ID: A469F7D71D09F795
1 changed files with 147 additions and 182 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

287
src/formats/pkcs1.js
View File

@ -1,183 +1,148 @@
/** var ber = require('asn1').Ber;
* PKCS1 padding and signature scheme var _ = require('../utils')._;
*/ var utils = require('../utils');
var BigInteger = require('../libs/jsbn'); const PRIVATE_OPENING_BOUNDARY = '-----BEGIN RSA PRIVATE KEY-----';
var crypt = require('crypto'); const PRIVATE_CLOSING_BOUNDARY = '-----END RSA PRIVATE KEY-----';
var SIGN_INFO_HEAD = {
md2: Buffer.from('3020300c06082a864886f70d020205000410', 'hex'),
md5: Buffer.from('3020300c06082a864886f70d020505000410', 'hex'),
sha1: Buffer.from('3021300906052b0e03021a05000414', 'hex'),
sha224: Buffer.from('302d300d06096086480165030402040500041c', 'hex'),
sha256: Buffer.from('3031300d060960864801650304020105000420', 'hex'),
sha384: Buffer.from('3041300d060960864801650304020205000430', 'hex'),
sha512: Buffer.from('3051300d060960864801650304020305000440', 'hex'),
ripemd160: Buffer.from('3021300906052b2403020105000414', 'hex'),
rmd160: Buffer.from('3021300906052b2403020105000414', 'hex')
};
var SIGN_ALG_TO_HASH_ALIASES = { const PUBLIC_OPENING_BOUNDARY = '-----BEGIN RSA PUBLIC KEY-----';
'ripemd160': 'rmd160' const PUBLIC_CLOSING_BOUNDARY = '-----END RSA PUBLIC KEY-----';
};
var DEFAULT_HASH_FUNCTION = 'sha256'; module.exports = {
privateExport: function (key, options) {
options = options || {};
module.exports = { var n = key.n.toBuffer();
isEncryption: true, var d = key.d.toBuffer();
isSignature: true var p = key.p.toBuffer();
}; var q = key.q.toBuffer();
var dmp1 = key.dmp1.toBuffer();
var dmq1 = key.dmq1.toBuffer();
var coeff = key.coeff.toBuffer();
module.exports.makeScheme = function (key, options) { var length = n.length + d.length + p.length + q.length + dmp1.length + dmq1.length + coeff.length + 512; // magic
function Scheme(key, options) { var writer = new ber.Writer({size: length});
this.key = key;
this.options = options;
}
Scheme.prototype.maxMessageLength = function () { writer.startSequence();
if (this.options.encryptionSchemeOptions && this.options.encryptionSchemeOptions.padding == 3) { writer.writeInt(0);
return this.key.encryptedDataLength; writer.writeBuffer(n, 2);
} writer.writeInt(key.e);
return this.key.encryptedDataLength - 11; writer.writeBuffer(d, 2);
}; writer.writeBuffer(p, 2);
writer.writeBuffer(q, 2);
writer.writeBuffer(dmp1, 2);
writer.writeBuffer(dmq1, 2);
writer.writeBuffer(coeff, 2);
writer.endSequence();
/** if (options.type === 'der') {
* Pad input Buffer to encryptedDataLength bytes, and return Buffer.from return writer.buffer;
* alg: PKCS#1 } else {
* @param buffer return PRIVATE_OPENING_BOUNDARY + '\n' + utils.linebrk(writer.buffer.toString('base64'), 64) + '\n' + PRIVATE_CLOSING_BOUNDARY;
* @returns {Buffer} }
*/ },
Scheme.prototype.encPad = function (buffer, options) {
options = options || {};
var filled;
if (buffer.length > this.key.maxMessageLength) {
throw new Error("Message too long for RSA (n=" + this.key.encryptedDataLength + ", l=" + buffer.length + ")");
}
if (this.options.encryptionSchemeOptions && this.options.encryptionSchemeOptions.padding == 3) { privateImport: function (key, data, options) {
//RSA_NO_PADDING treated like JAVA left pad with zero character options = options || {};
filled = Buffer.alloc(this.key.maxMessageLength - buffer.length); var buffer;
filled.fill(0);
return Buffer.concat([filled, buffer]);
}
/* Type 1: zeros padding for private key encrypt */ if (options.type !== 'der') {
if (options.type === 1) { if (Buffer.isBuffer(data)) {
filled = Buffer.alloc(this.key.encryptedDataLength - buffer.length - 1); data = data.toString('utf8');
filled.fill(0xff, 0, filled.length - 1); }
filled[0] = 1;
filled[filled.length - 1] = 0;
return Buffer.concat([filled, buffer]); if (_.isString(data)) {
} else { var pem = utils.trimSurroundingText(data, PRIVATE_OPENING_BOUNDARY, PRIVATE_CLOSING_BOUNDARY)
/* random padding for public key encrypt */ .replace(/\s+|\n\r|\n|\r$/gm, '');
filled = Buffer.alloc(this.key.encryptedDataLength - buffer.length); buffer = Buffer.from(pem, 'base64');
filled[0] = 0; } else {
filled[1] = 2; throw Error('Unsupported key format');
var rand = crypt.randomBytes(filled.length - 3); }
for (var i = 0; i < rand.length; i++) { } else if (Buffer.isBuffer(data)) {
var r = rand[i]; buffer = data;
while (r === 0) { // non-zero only } else {
r = crypt.randomBytes(1)[0]; throw Error('Unsupported key format');
} }
filled[i + 2] = r;
}
filled[filled.length - 1] = 0;
return Buffer.concat([filled, buffer]);
}
};
/** var reader = new ber.Reader(buffer);
* Unpad input Buffer and, if valid, return the Buffer object reader.readSequence();
* alg: PKCS#1 (type 2, random) reader.readString(2, true); // just zero
* @param buffer key.setPrivate(
* @returns {Buffer} reader.readString(2, true), // modulus
*/ reader.readString(2, true), // publicExponent
Scheme.prototype.encUnPad = function (buffer, options) { reader.readString(2, true), // privateExponent
return buffer; reader.readString(2, true), // prime1
}; reader.readString(2, true), // prime2
reader.readString(2, true), // exponent1 -- d mod (p1)
reader.readString(2, true), // exponent2 -- d mod (q-1)
reader.readString(2, true) // coefficient -- (inverse of q) mod p
);
},
Scheme.prototype.sign = function (buffer) { publicExport: function (key, options) {
var hashAlgorithm = this.options.signingSchemeOptions.hash || DEFAULT_HASH_FUNCTION; options = options || {};
hashAlgorithm = SIGN_ALG_TO_HASH_ALIASES[hashAlgorithm] || hashAlgorithm;
var hasher = crypt.createHash(hashAlgorithm); var n = key.n.toBuffer();
hasher.update(buffer); var length = n.length + 512; // magic
var hash = this.pkcs1pad(hasher.digest(), hashAlgorithm);
var res = this.key.$doPrivate(new BigInteger(hash)).toBuffer(this.key.encryptedDataLength);
return res; var bodyWriter = new ber.Writer({size: length});
}; bodyWriter.startSequence();
bodyWriter.writeBuffer(n, 2);
bodyWriter.writeInt(key.e);
bodyWriter.endSequence();
Scheme.prototype.verify = function (buffer, signature, signature_encoding) { if (options.type === 'der') {
if (this.options.encryptionSchemeOptions && this.options.encryptionSchemeOptions.padding == 3) { return bodyWriter.buffer;
//RSA_NO_PADDING has no verify data } else {
return false; return PUBLIC_OPENING_BOUNDARY + '\n' + utils.linebrk(bodyWriter.buffer.toString('base64'), 64) + '\n' + PUBLIC_CLOSING_BOUNDARY;
} }
var hashAlgorithm = this.options.signingSchemeOptions.hash || DEFAULT_HASH_FUNCTION; },
hashAlgorithm = SIGN_ALG_TO_HASH_ALIASES[hashAlgorithm] || hashAlgorithm;
if (signature_encoding) { publicImport: function (key, data, options) {
signature = Buffer.from(signature, signature_encoding); options = options || {};
} var buffer;
var hasher = crypt.createHash(hashAlgorithm); if (options.type !== 'der') {
hasher.update(buffer); if (Buffer.isBuffer(data)) {
var hash = this.pkcs1pad(hasher.digest(), hashAlgorithm); data = data.toString('utf8');
var m = this.key.$doPublic(new BigInteger(signature)); }
return m.toBuffer().toString('hex') == hash.toString('hex'); if (_.isString(data)) {
}; var pem = utils.trimSurroundingText(data, PUBLIC_OPENING_BOUNDARY, PUBLIC_CLOSING_BOUNDARY)
.replace(/\s+|\n\r|\n|\r$/gm, '');
buffer = Buffer.from(pem, 'base64');
}
} else if (Buffer.isBuffer(data)) {
buffer = data;
} else {
throw Error('Unsupported key format');
}
/** var body = new ber.Reader(buffer);
* PKCS#1 zero pad input buffer to max data length body.readSequence();
* @param hashBuf key.setPublic(
* @param hashAlgorithm body.readString(0x02, true), // modulus
* @returns {*} body.readString(0x02, true) // publicExponent
*/ );
Scheme.prototype.pkcs0pad = function (buffer) { },
var filled = Buffer.alloc(this.key.maxMessageLength - buffer.length);
filled.fill(0);
return Buffer.concat([filled, buffer]);
};
Scheme.prototype.pkcs0unpad = function (buffer) { /**
var unPad; * Trying autodetect and import key
if (typeof buffer.lastIndexOf == "function") { //patch for old node version * @param key
unPad = buffer.slice(buffer.lastIndexOf('\0') + 1, buffer.length); * @param data
} else { */
unPad = buffer.slice(String.prototype.lastIndexOf.call(buffer, '\0') + 1, buffer.length); autoImport: function (key, data) {
} // [\S\s]* matches zero or more of any character
if (/^[\S\s]*-----BEGIN RSA PRIVATE KEY-----\s*(?=(([A-Za-z0-9+/=]+\s*)+))\1-----END RSA PRIVATE KEY-----[\S\s]*$/g.test(data)) {
module.exports.privateImport(key, data);
return true;
}
return unPad; if (/^[\S\s]*-----BEGIN RSA PUBLIC KEY-----\s*(?=(([A-Za-z0-9+/=]+\s*)+))\1-----END RSA PUBLIC KEY-----[\S\s]*$/g.test(data)) {
}; module.exports.publicImport(key, data);
return true;
}
/** return false;
* PKCS#1 pad input buffer to max data length }
* @param hashBuf };
* @param hashAlgorithm
* @returns {*}
*/
Scheme.prototype.pkcs1pad = function (hashBuf, hashAlgorithm) {
var digest = SIGN_INFO_HEAD[hashAlgorithm];
if (!digest) {
throw Error('Unsupported hash algorithm');
}
var data = Buffer.concat([digest, hashBuf]);
if (data.length + 10 > this.key.encryptedDataLength) {
throw Error('Key is too short for signing algorithm (' + hashAlgorithm + ')');
}
var filled = Buffer.alloc(this.key.encryptedDataLength - data.length - 1);
filled.fill(0xff, 0, filled.length - 1);
filled[0] = 1;
filled[filled.length - 1] = 0;
var res = Buffer.concat([filled, data]);
return res;
};
return new Scheme(key, options);
};