UNPKG

api-console-assets

Version:

This repo only exists to publish api console components to npm

github.com/mulesoft-labs/api-console-assets

mulesoft-labs/api-console-assets

1,211 lines (1,092 loc) • 69.5 kB

JavaScript

/* keyutil-1.2.0.js (c) 2013-2017 Kenji Urushima | kjur.github.com/jsrsasign/license */ /* * keyutil.js - key utility for PKCS#1/5/8 PEM, RSA/DSA/ECDSA key object * * Copyright (c) 2013-2017 Kenji Urushima (kenji.urushima@gmail.com) * * This software is licensed under the terms of the MIT License. * https://kjur.github.io/jsrsasign/license * * The above copyright and license notice shall be * included in all copies or substantial portions of the Software. */ /** * @fileOverview * @name keyutil-1.0.js * @author Kenji Urushima kenji.urushima@gmail.com * @version jsrsasign 8.0.0 keyutil 1.2.0 (2017-Jun-26) * @since jsrsasign 4.1.4 * @license <a href="https://kjur.github.io/jsrsasign/license/">MIT License</a> */ /** * @name KEYUTIL * @class class for RSA/ECC/DSA key utility * @description * <br/> * {@link KEYUTIL} class is an update of former {@link PKCS5PKEY} class. * {@link KEYUTIL} class has following features: * <dl> * <dt><b>key loading - {@link KEYUTIL.getKey}</b> * <dd> * <ul> * <li>supports RSAKey and KJUR.crypto.{ECDSA,DSA} key object</li> * <li>supports private key and public key</li> * <li>supports encrypted and plain private key</li> * <li>supports PKCS#1, PKCS#5 and PKCS#8 key</li> * <li>supports public key in X.509 certificate</li> * <li>key represented by JSON object</li> * </ul> * NOTE1: Encrypted PKCS#8 only supports PBKDF2/HmacSHA1/3DES <br/> * NOTE2: Encrypted PKCS#5 supports DES-CBC, DES-EDE3-CBC, AES-{128,192.256}-CBC <br/> * * <dt><b>exporting key - {@link KEYUTIL.getPEM}</b> * <dd> * {@link KEYUTIL.getPEM} method supports following formats: * <ul> * <li>supports RSA/EC/DSA keys</li> * <li>PKCS#1 plain RSA/EC/DSA private key</li> * <li>PKCS#5 encrypted RSA/EC/DSA private key with DES-CBC, DES-EDE3-CBC, AES-{128,192.256}-CBC</li> * <li>PKCS#8 plain RSA/EC/DSA private key</li> * <li>PKCS#8 encrypted RSA/EC/DSA private key with PBKDF2_HmacSHA1_3DES</li> * </ul> * * <dt><b>keypair generation - {@link KEYUTIL.generateKeypair}</b> * <ul> * <li>generate key pair of {@link RSAKey} or {@link KJUR.crypto.ECDSA}.</li> * <li>generate private key and convert it to PKCS#5 encrypted private key.</li> * </ul> * NOTE: {@link KJUR.crypto.DSA} is not yet supported. * </dl> * * @example * // 1. loading PEM private key * var key = KEYUTIL.getKey(pemPKCS1PrivateKey); * var key = KEYUTIL.getKey(pemPKCS5EncryptedPrivateKey, "passcode"); * var key = KEYUTIL.getKey(pemPKC85PlainPrivateKey); * var key = KEYUTIL.getKey(pemPKC85EncryptedPrivateKey, "passcode"); * // 2. loading PEM public key * var key = KEYUTIL.getKey(pemPKCS8PublicKey); * var key = KEYUTIL.getKey(pemX509Certificate); * // 3. exporting private key * var pem = KEYUTIL.getPEM(privateKeyObj, "PKCS1PRV"); * var pem = KEYUTIL.getPEM(privateKeyObj, "PKCS5PRV", "passcode"); // DES-EDE3-CBC by default * var pem = KEYUTIL.getPEM(privateKeyObj, "PKCS5PRV", "passcode", "DES-CBC"); * var pem = KEYUTIL.getPEM(privateKeyObj, "PKCS8PRV"); * var pem = KEYUTIL.getPEM(privateKeyObj, "PKCS8PRV", "passcode"); * // 4. exporting public key * var pem = KEYUTIL.getPEM(publicKeyObj); */ var KEYUTIL = function() { // ***************************************************************** // *** PRIVATE PROPERTIES AND METHODS ******************************* // ***************************************************************** // shared key decryption ------------------------------------------ var decryptAES = function(dataHex, keyHex, ivHex) { return decryptGeneral(CryptoJS.AES, dataHex, keyHex, ivHex); }; var decrypt3DES = function(dataHex, keyHex, ivHex) { return decryptGeneral(CryptoJS.TripleDES, dataHex, keyHex, ivHex); }; var decryptDES = function(dataHex, keyHex, ivHex) { return decryptGeneral(CryptoJS.DES, dataHex, keyHex, ivHex); }; var decryptGeneral = function(f, dataHex, keyHex, ivHex) { var data = CryptoJS.enc.Hex.parse(dataHex); var key = CryptoJS.enc.Hex.parse(keyHex); var iv = CryptoJS.enc.Hex.parse(ivHex); var encrypted = {}; encrypted.key = key; encrypted.iv = iv; encrypted.ciphertext = data; var decrypted = f.decrypt(encrypted, key, { iv: iv }); return CryptoJS.enc.Hex.stringify(decrypted); }; // shared key decryption ------------------------------------------ var encryptAES = function(dataHex, keyHex, ivHex) { return encryptGeneral(CryptoJS.AES, dataHex, keyHex, ivHex); }; var encrypt3DES = function(dataHex, keyHex, ivHex) { return encryptGeneral(CryptoJS.TripleDES, dataHex, keyHex, ivHex); }; var encryptDES = function(dataHex, keyHex, ivHex) { return encryptGeneral(CryptoJS.DES, dataHex, keyHex, ivHex); }; var encryptGeneral = function(f, dataHex, keyHex, ivHex) { var data = CryptoJS.enc.Hex.parse(dataHex); var key = CryptoJS.enc.Hex.parse(keyHex); var iv = CryptoJS.enc.Hex.parse(ivHex); var encryptedHex = f.encrypt(data, key, { iv: iv }); var encryptedWA = CryptoJS.enc.Hex.parse(encryptedHex.toString()); var encryptedB64 = CryptoJS.enc.Base64.stringify(encryptedWA); return encryptedB64; }; // other methods and properties ---------------------------------------- var ALGLIST = { 'AES-256-CBC': { 'proc': decryptAES, 'eproc': encryptAES, keylen: 32, ivlen: 16 }, 'AES-192-CBC': { 'proc': decryptAES, 'eproc': encryptAES, keylen: 24, ivlen: 16 }, 'AES-128-CBC': { 'proc': decryptAES, 'eproc': encryptAES, keylen: 16, ivlen: 16 }, 'DES-EDE3-CBC': { 'proc': decrypt3DES, 'eproc': encrypt3DES, keylen: 24, ivlen: 8 }, 'DES-CBC': { 'proc': decryptDES, 'eproc': encryptDES, keylen: 8, ivlen: 8 } }; var getFuncByName = function(algName) { return ALGLIST[algName]['proc']; }; var _generateIvSaltHex = function(numBytes) { var wa = CryptoJS.lib.WordArray.random(numBytes); var hex = CryptoJS.enc.Hex.stringify(wa); return hex; }; var _parsePKCS5PEM = function(sPKCS5PEM) { var info = {}; var matchResult1 = sPKCS5PEM.match(new RegExp("DEK-Info: ([^,]+),([0-9A-Fa-f]+)", "m")); if (matchResult1) { info.cipher = matchResult1[1]; info.ivsalt = matchResult1[2]; } var matchResult2 = sPKCS5PEM.match(new RegExp("-----BEGIN ([A-Z]+) PRIVATE KEY-----")); if (matchResult2) { info.type = matchResult2[1]; } var i1 = -1; var lenNEWLINE = 0; if (sPKCS5PEM.indexOf("\r\n\r\n") != -1) { i1 = sPKCS5PEM.indexOf("\r\n\r\n"); lenNEWLINE = 2; } if (sPKCS5PEM.indexOf("\n\n") != -1) { i1 = sPKCS5PEM.indexOf("\n\n"); lenNEWLINE = 1; } var i2 = sPKCS5PEM.indexOf("-----END"); if (i1 != -1 && i2 != -1) { var s = sPKCS5PEM.substring(i1 + lenNEWLINE * 2, i2 - lenNEWLINE); s = s.replace(/\s+/g, ''); info.data = s; } return info; }; var _getKeyAndUnusedIvByPasscodeAndIvsalt = function(algName, passcode, ivsaltHex) { //alert("ivsaltHex(2) = " + ivsaltHex); var saltHex = ivsaltHex.substring(0, 16); //alert("salt = " + saltHex); var salt = CryptoJS.enc.Hex.parse(saltHex); var data = CryptoJS.enc.Utf8.parse(passcode); //alert("salt = " + salt); //alert("data = " + data); var nRequiredBytes = ALGLIST[algName]['keylen'] + ALGLIST[algName]['ivlen']; var hHexValueJoined = ''; var hLastValue = null; //alert("nRequiredBytes = " + nRequiredBytes); for (;;) { var h = CryptoJS.algo.MD5.create(); if (hLastValue != null) { h.update(hLastValue); } h.update(data); h.update(salt); hLastValue = h.finalize(); hHexValueJoined = hHexValueJoined + CryptoJS.enc.Hex.stringify(hLastValue); //alert("joined = " + hHexValueJoined); if (hHexValueJoined.length >= nRequiredBytes * 2) { break; } } var result = {}; result.keyhex = hHexValueJoined.substr(0, ALGLIST[algName]['keylen'] * 2); result.ivhex = hHexValueJoined.substr(ALGLIST[algName]['keylen'] * 2, ALGLIST[algName]['ivlen'] * 2); return result; }; /* * @param {String} privateKeyB64 base64 string of encrypted private key * @param {String} sharedKeyAlgName algorithm name of shared key encryption * @param {String} sharedKeyHex hexadecimal string of shared key to encrypt * @param {String} ivsaltHex hexadecimal string of IV and salt * @param {String} hexadecimal string of decrypted private key */ var _decryptKeyB64 = function(privateKeyB64, sharedKeyAlgName, sharedKeyHex, ivsaltHex) { var privateKeyWA = CryptoJS.enc.Base64.parse(privateKeyB64); var privateKeyHex = CryptoJS.enc.Hex.stringify(privateKeyWA); var f = ALGLIST[sharedKeyAlgName]['proc']; var decryptedKeyHex = f(privateKeyHex, sharedKeyHex, ivsaltHex); return decryptedKeyHex; }; /* * @param {String} privateKeyHex hexadecimal string of private key * @param {String} sharedKeyAlgName algorithm name of shared key encryption * @param {String} sharedKeyHex hexadecimal string of shared key to encrypt * @param {String} ivsaltHex hexadecimal string of IV and salt * @param {String} base64 string of encrypted private key */ var _encryptKeyHex = function(privateKeyHex, sharedKeyAlgName, sharedKeyHex, ivsaltHex) { var f = ALGLIST[sharedKeyAlgName]['eproc']; var encryptedKeyB64 = f(privateKeyHex, sharedKeyHex, ivsaltHex); return encryptedKeyB64; }; // ***************************************************************** // *** PUBLIC PROPERTIES AND METHODS ******************************* // ***************************************************************** return { // -- UTILITY METHODS ------------------------------------------------------------ /** * decrypt private key by shared key * @name version * @memberOf KEYUTIL * @property {String} version * @description version string of KEYUTIL class */ version: "1.0.0", /** * parse PEM formatted passcode protected PKCS#5 private key * @name parsePKCS5PEM * @memberOf KEYUTIL * @function * @param {String} sEncryptedPEM PEM formatted protected passcode protected PKCS#5 private key * @return {Hash} hash of key information * @description * Resulted hash has following attributes. * <ul> * <li>cipher - symmetric key algorithm name (ex. 'DES-EBE3-CBC', 'AES-256-CBC')</li> * <li>ivsalt - IV used for decrypt. Its heading 8 bytes will be used for passcode salt.</li> * <li>type - asymmetric key algorithm name of private key described in PEM header.</li> * <li>data - base64 encoded encrypted private key.</li> * </ul> * */ parsePKCS5PEM: function(sPKCS5PEM) { return _parsePKCS5PEM(sPKCS5PEM); }, /** * the same function as OpenSSL EVP_BytsToKey to generate shared key and IV * @name getKeyAndUnusedIvByPasscodeAndIvsalt * @memberOf KEYUTIL * @function * @param {String} algName name of symmetric key algorithm (ex. 'DES-EBE3-CBC') * @param {String} passcode passcode to decrypt private key (ex. 'password') * @param {String} hexadecimal string of IV. heading 8 bytes will be used for passcode salt * @return {Hash} hash of key and unused IV (ex. {keyhex:2fe3..., ivhex:3fad..}) */ getKeyAndUnusedIvByPasscodeAndIvsalt: function(algName, passcode, ivsaltHex) { return _getKeyAndUnusedIvByPasscodeAndIvsalt(algName, passcode, ivsaltHex); }, decryptKeyB64: function(privateKeyB64, sharedKeyAlgName, sharedKeyHex, ivsaltHex) { return _decryptKeyB64(privateKeyB64, sharedKeyAlgName, sharedKeyHex, ivsaltHex); }, /** * decrypt PEM formatted protected PKCS#5 private key with passcode * @name getDecryptedKeyHex * @memberOf KEYUTIL * @function * @param {String} sEncryptedPEM PEM formatted protected passcode protected PKCS#5 private key * @param {String} passcode passcode to decrypt private key (ex. 'password') * @return {String} hexadecimal string of decrypted RSA priavte key */ getDecryptedKeyHex: function(sEncryptedPEM, passcode) { // 1. parse pem var info = _parsePKCS5PEM(sEncryptedPEM); var publicKeyAlgName = info.type; var sharedKeyAlgName = info.cipher; var ivsaltHex = info.ivsalt; var privateKeyB64 = info.data; //alert("ivsaltHex = " + ivsaltHex); // 2. generate shared key var sharedKeyInfo = _getKeyAndUnusedIvByPasscodeAndIvsalt(sharedKeyAlgName, passcode, ivsaltHex); var sharedKeyHex = sharedKeyInfo.keyhex; //alert("sharedKeyHex = " + sharedKeyHex); // 3. decrypt private key var decryptedKey = _decryptKeyB64(privateKeyB64, sharedKeyAlgName, sharedKeyHex, ivsaltHex); return decryptedKey; }, /* * get PEM formatted encrypted PKCS#5 private key from hexadecimal string of plain private key * @name getEncryptedPKCS5PEMFromPrvKeyHex * @memberOf KEYUTIL * @function * @param {String} pemHeadAlg algorithm name in the pem header (i.e. RSA,EC or DSA) * @param {String} hPrvKey hexadecimal string of plain private key * @param {String} passcode pass code to protect private key (ex. password) * @param {String} sharedKeyAlgName algorithm name to protect private key (ex. AES-256-CBC) * @param {String} ivsaltHex hexadecimal string of IV and salt * @return {String} string of PEM formatted encrypted PKCS#5 private key * @since pkcs5pkey 1.0.2 * @description * <br/> * generate PEM formatted encrypted PKCS#5 private key by hexadecimal string encoded * ASN.1 object of plain RSA private key. * Following arguments can be omitted. * <ul> * <li>alg - AES-256-CBC will be used if omitted.</li> * <li>ivsaltHex - automatically generate IV and salt which length depends on algorithm</li> * </ul> * NOTE1: DES-CBC, DES-EDE3-CBC, AES-{128,192.256}-CBC algorithm are supported. * @example * var pem = * KEYUTIL.getEncryptedPKCS5PEMFromPrvKeyHex(plainKeyHex, "password"); * var pem2 = * KEYUTIL.getEncryptedPKCS5PEMFromPrvKeyHex(plainKeyHex, "password", "AES-128-CBC"); * var pem3 = * KEYUTIL.getEncryptedPKCS5PEMFromPrvKeyHex(plainKeyHex, "password", "AES-128-CBC", "1f3d02..."); */ getEncryptedPKCS5PEMFromPrvKeyHex: function(pemHeadAlg, hPrvKey, passcode, sharedKeyAlgName, ivsaltHex) { var sPEM = ""; // 1. set sharedKeyAlgName if undefined (default AES-256-CBC) if (typeof sharedKeyAlgName == "undefined" || sharedKeyAlgName == null) { sharedKeyAlgName = "AES-256-CBC"; } if (typeof ALGLIST[sharedKeyAlgName] == "undefined") throw "KEYUTIL unsupported algorithm: " + sharedKeyAlgName; // 2. set ivsaltHex if undefined if (typeof ivsaltHex == "undefined" || ivsaltHex == null) { var ivlen = ALGLIST[sharedKeyAlgName]['ivlen']; var randIV = _generateIvSaltHex(ivlen); ivsaltHex = randIV.toUpperCase(); } // 3. get shared key //alert("ivsalthex=" + ivsaltHex); var sharedKeyInfo = _getKeyAndUnusedIvByPasscodeAndIvsalt(sharedKeyAlgName, passcode, ivsaltHex); var sharedKeyHex = sharedKeyInfo.keyhex; // alert("sharedKeyHex = " + sharedKeyHex); // 3. get encrypted Key in Base64 var encryptedKeyB64 = _encryptKeyHex(hPrvKey, sharedKeyAlgName, sharedKeyHex, ivsaltHex); var pemBody = encryptedKeyB64.replace(/(.{64})/g, "$1\r\n"); var sPEM = "-----BEGIN " + pemHeadAlg + " PRIVATE KEY-----\r\n"; sPEM += "Proc-Type: 4,ENCRYPTED\r\n"; sPEM += "DEK-Info: " + sharedKeyAlgName + "," + ivsaltHex + "\r\n"; sPEM += "\r\n"; sPEM += pemBody; sPEM += "\r\n-----END " + pemHeadAlg + " PRIVATE KEY-----\r\n"; return sPEM; }, // === PKCS8 =============================================================== /** * generate PBKDF2 key hexstring with specified passcode and information * @name parseHexOfEncryptedPKCS8 * @memberOf KEYUTIL * @function * @param {String} passcode passcode to decrypto private key * @return {Array} info associative array of PKCS#8 parameters * @since pkcs5pkey 1.0.3 * @description * The associative array which is returned by this method has following properties: * <ul> * <li>info.pbkdf2Salt - hexadecimal string of PBKDF2 salt</li> * <li>info.pkbdf2Iter - iteration count</li> * <li>info.ciphertext - hexadecimal string of encrypted private key</li> * <li>info.encryptionSchemeAlg - encryption algorithm name (currently TripleDES only)</li> * <li>info.encryptionSchemeIV - initial vector for encryption algorithm</li> * </ul> * Currently, this method only supports PKCS#5v2.0 with PBES2/PBDKF2 of HmacSHA1 and TripleDES. * <ul> * <li>keyDerivationFunc = pkcs5PBKDF2 with HmacSHA1</li> * <li>encryptionScheme = des-EDE3-CBC(i.e. TripleDES</li> * </ul> * @example * // to convert plain PKCS#5 private key to encrypted PKCS#8 private * // key with PBKDF2 with TripleDES * % openssl pkcs8 -in plain_p5.pem -topk8 -v2 -des3 -out encrypted_p8.pem */ parseHexOfEncryptedPKCS8: function(sHEX) { var _ASN1HEX = ASN1HEX; var _getChildIdx = _ASN1HEX.getChildIdx; var _getV = _ASN1HEX.getV; var info = {}; var a0 = _getChildIdx(sHEX, 0); if (a0.length != 2) throw "malformed format: SEQUENCE(0).items != 2: " + a0.length; // 1. ciphertext info.ciphertext = _getV(sHEX, a0[1]); // 2. pkcs5PBES2 var a0_0 = _getChildIdx(sHEX, a0[0]); if (a0_0.length != 2) throw "malformed format: SEQUENCE(0.0).items != 2: " + a0_0.length; // 2.1 check if pkcs5PBES2(1 2 840 113549 1 5 13) if (_getV(sHEX, a0_0[0]) != "2a864886f70d01050d") throw "this only supports pkcs5PBES2"; // 2.2 pkcs5PBES2 param var a0_0_1 = _getChildIdx(sHEX, a0_0[1]); if (a0_0.length != 2) throw "malformed format: SEQUENCE(0.0.1).items != 2: " + a0_0_1.length; // 2.2.1 encryptionScheme var a0_0_1_1 = _getChildIdx(sHEX, a0_0_1[1]); if (a0_0_1_1.length != 2) throw "malformed format: SEQUENCE(0.0.1.1).items != 2: " + a0_0_1_1.length; if (_getV(sHEX, a0_0_1_1[0]) != "2a864886f70d0307") throw "this only supports TripleDES"; info.encryptionSchemeAlg = "TripleDES"; // 2.2.1.1 IV of encryptionScheme info.encryptionSchemeIV = _getV(sHEX, a0_0_1_1[1]); // 2.2.2 keyDerivationFunc var a0_0_1_0 = _getChildIdx(sHEX, a0_0_1[0]); if (a0_0_1_0.length != 2) throw "malformed format: SEQUENCE(0.0.1.0).items != 2: " + a0_0_1_0.length; if (_getV(sHEX, a0_0_1_0[0]) != "2a864886f70d01050c") throw "this only supports pkcs5PBKDF2"; // 2.2.2.1 pkcs5PBKDF2 param var a0_0_1_0_1 = _getChildIdx(sHEX, a0_0_1_0[1]); if (a0_0_1_0_1.length < 2) throw "malformed format: SEQUENCE(0.0.1.0.1).items < 2: " + a0_0_1_0_1.length; // 2.2.2.1.1 PBKDF2 salt info.pbkdf2Salt = _getV(sHEX, a0_0_1_0_1[0]); // 2.2.2.1.2 PBKDF2 iter var iterNumHex = _getV(sHEX, a0_0_1_0_1[1]); try { info.pbkdf2Iter = parseInt(iterNumHex, 16); } catch(ex) { throw "malformed format pbkdf2Iter: " + iterNumHex; } return info; }, /** * generate PBKDF2 key hexstring with specified passcode and information * @name getPBKDF2KeyHexFromParam * @memberOf KEYUTIL * @function * @param {Array} info result of {@link parseHexOfEncryptedPKCS8} which has preference of PKCS#8 file * @param {String} passcode passcode to decrypto private key * @return {String} hexadecimal string of PBKDF2 key * @since pkcs5pkey 1.0.3 * @description * As for info, this uses following properties: * <ul> * <li>info.pbkdf2Salt - hexadecimal string of PBKDF2 salt</li> * <li>info.pkbdf2Iter - iteration count</li> * </ul> * Currently, this method only supports PKCS#5v2.0 with PBES2/PBDKF2 of HmacSHA1 and TripleDES. * <ul> * <li>keyDerivationFunc = pkcs5PBKDF2 with HmacSHA1</li> * <li>encryptionScheme = des-EDE3-CBC(i.e. TripleDES</li> * </ul> * @example * // to convert plain PKCS#5 private key to encrypted PKCS#8 private * // key with PBKDF2 with TripleDES * % openssl pkcs8 -in plain_p5.pem -topk8 -v2 -des3 -out encrypted_p8.pem */ getPBKDF2KeyHexFromParam: function(info, passcode) { var pbkdf2SaltWS = CryptoJS.enc.Hex.parse(info.pbkdf2Salt); var pbkdf2Iter = info.pbkdf2Iter; var pbkdf2KeyWS = CryptoJS.PBKDF2(passcode, pbkdf2SaltWS, { keySize: 192/32, iterations: pbkdf2Iter }); var pbkdf2KeyHex = CryptoJS.enc.Hex.stringify(pbkdf2KeyWS); return pbkdf2KeyHex; }, /* * read PEM formatted encrypted PKCS#8 private key and returns hexadecimal string of plain PKCS#8 private key * @name getPlainPKCS8HexFromEncryptedPKCS8PEM * @memberOf KEYUTIL * @function * @param {String} pkcs8PEM PEM formatted encrypted PKCS#8 private key * @param {String} passcode passcode to decrypto private key * @return {String} hexadecimal string of plain PKCS#8 private key * @since pkcs5pkey 1.0.3 * @description * Currently, this method only supports PKCS#5v2.0 with PBES2/PBDKF2 of HmacSHA1 and TripleDES. * <ul> * <li>keyDerivationFunc = pkcs5PBKDF2 with HmacSHA1</li> * <li>encryptionScheme = des-EDE3-CBC(i.e. TripleDES</li> * </ul> * @example * // to convert plain PKCS#5 private key to encrypted PKCS#8 private * // key with PBKDF2 with TripleDES * % openssl pkcs8 -in plain_p5.pem -topk8 -v2 -des3 -out encrypted_p8.pem */ _getPlainPKCS8HexFromEncryptedPKCS8PEM: function(pkcs8PEM, passcode) { // 1. derHex - PKCS#8 private key encrypted by PBKDF2 var derHex = pemtohex(pkcs8PEM, "ENCRYPTED PRIVATE KEY"); // 2. info - PKCS#5 PBES info var info = this.parseHexOfEncryptedPKCS8(derHex); // 3. hKey - PBKDF2 key var pbkdf2KeyHex = KEYUTIL.getPBKDF2KeyHexFromParam(info, passcode); // 4. decrypt ciphertext by PBKDF2 key var encrypted = {}; encrypted.ciphertext = CryptoJS.enc.Hex.parse(info.ciphertext); var pbkdf2KeyWS = CryptoJS.enc.Hex.parse(pbkdf2KeyHex); var des3IVWS = CryptoJS.enc.Hex.parse(info.encryptionSchemeIV); var decWS = CryptoJS.TripleDES.decrypt(encrypted, pbkdf2KeyWS, { iv: des3IVWS }); var decHex = CryptoJS.enc.Hex.stringify(decWS); return decHex; }, /** * get RSAKey/ECDSA private key object from encrypted PEM PKCS#8 private key * @name getKeyFromEncryptedPKCS8PEM * @memberOf KEYUTIL * @function * @param {String} pkcs8PEM string of PEM formatted PKCS#8 private key * @param {String} passcode passcode string to decrypt key * @return {Object} RSAKey or KJUR.crypto.ECDSA private key object * @since pkcs5pkey 1.0.5 */ getKeyFromEncryptedPKCS8PEM: function(pkcs8PEM, passcode) { var prvKeyHex = this._getPlainPKCS8HexFromEncryptedPKCS8PEM(pkcs8PEM, passcode); var key = this.getKeyFromPlainPrivatePKCS8Hex(prvKeyHex); return key; }, /** * parse hexadecimal string of plain PKCS#8 private key * @name parsePlainPrivatePKCS8Hex * @memberOf KEYUTIL * @function * @param {String} pkcs8PrvHex hexadecimal string of PKCS#8 plain private key * @return {Array} associative array of parsed key * @since pkcs5pkey 1.0.5 * @description * Resulted associative array has following properties: * <ul> * <li>algoid - hexadecimal string of OID of asymmetric key algorithm</li> * <li>algparam - hexadecimal string of OID of ECC curve name or null</li> * <li>keyidx - string starting index of key in pkcs8PrvHex</li> * </ul> */ parsePlainPrivatePKCS8Hex: function(pkcs8PrvHex) { var _ASN1HEX = ASN1HEX; var _getChildIdx = _ASN1HEX.getChildIdx; var _getV = _ASN1HEX.getV; var result = {}; result.algparam = null; // 1. sequence if (pkcs8PrvHex.substr(0, 2) != "30") throw "malformed plain PKCS8 private key(code:001)"; // not sequence var a1 = _getChildIdx(pkcs8PrvHex, 0); if (a1.length != 3) throw "malformed plain PKCS8 private key(code:002)"; // 2. AlgID if (pkcs8PrvHex.substr(a1[1], 2) != "30") throw "malformed PKCS8 private key(code:003)"; // AlgId not sequence var a2 = _getChildIdx(pkcs8PrvHex, a1[1]); if (a2.length != 2) throw "malformed PKCS8 private key(code:004)"; // AlgId not have two elements // 2.1. AlgID OID if (pkcs8PrvHex.substr(a2[0], 2) != "06") throw "malformed PKCS8 private key(code:005)"; // AlgId.oid is not OID result.algoid = _getV(pkcs8PrvHex, a2[0]); // 2.2. AlgID param if (pkcs8PrvHex.substr(a2[1], 2) == "06") { result.algparam = _getV(pkcs8PrvHex, a2[1]); } // 3. Key index if (pkcs8PrvHex.substr(a1[2], 2) != "04") throw "malformed PKCS8 private key(code:006)"; // not octet string result.keyidx = _ASN1HEX.getVidx(pkcs8PrvHex, a1[2]); return result; }, /** * get RSAKey/ECDSA private key object from PEM plain PEM PKCS#8 private key * @name getKeyFromPlainPrivatePKCS8PEM * @memberOf KEYUTIL * @function * @param {String} pkcs8PEM string of plain PEM formatted PKCS#8 private key * @return {Object} RSAKey or KJUR.crypto.ECDSA private key object * @since pkcs5pkey 1.0.5 */ getKeyFromPlainPrivatePKCS8PEM: function(prvKeyPEM) { var prvKeyHex = pemtohex(prvKeyPEM, "PRIVATE KEY"); var key = this.getKeyFromPlainPrivatePKCS8Hex(prvKeyHex); return key; }, /** * get RSAKey/DSA/ECDSA private key object from HEX plain PEM PKCS#8 private key * @name getKeyFromPlainPrivatePKCS8Hex * @memberOf KEYUTIL * @function * @param {String} prvKeyHex hexadecimal string of plain PKCS#8 private key * @return {Object} RSAKey or KJUR.crypto.{DSA,ECDSA} private key object * @since pkcs5pkey 1.0.5 */ getKeyFromPlainPrivatePKCS8Hex: function(prvKeyHex) { var p8 = this.parsePlainPrivatePKCS8Hex(prvKeyHex); var key; if (p8.algoid == "2a864886f70d010101") { // RSA key = new RSAKey(); } else if (p8.algoid == "2a8648ce380401") { // DSA key = new KJUR.crypto.DSA(); } else if (p8.algoid == "2a8648ce3d0201") { // ECC key = new KJUR.crypto.ECDSA(); } else { throw "unsupported private key algorithm"; } key.readPKCS8PrvKeyHex(prvKeyHex); return key; }, // === PKCS8 RSA Public Key ================================================ /* * get RSAKey/DSA/ECDSA public key object from hexadecimal string of PKCS#8 public key * @name _getKeyFromPublicPKCS8Hex * @memberOf KEYUTIL * @function * @param {String} pkcsPub8Hex hexadecimal string of PKCS#8 public key * @return {Object} RSAKey or KJUR.crypto.{ECDSA,DSA} private key object * @since pkcs5pkey 1.0.5 */ _getKeyFromPublicPKCS8Hex: function(h) { var key; var hOID = ASN1HEX.getVbyList(h, 0, [0, 0], "06"); if (hOID === "2a864886f70d010101") { // oid=RSA key = new RSAKey(); } else if (hOID === "2a8648ce380401") { // oid=DSA key = new KJUR.crypto.DSA(); } else if (hOID === "2a8648ce3d0201") { // oid=ECPUB key = new KJUR.crypto.ECDSA(); } else { throw "unsupported PKCS#8 public key hex"; } key.readPKCS8PubKeyHex(h); return key; }, /** * parse hexadecimal string of plain PKCS#8 private key * @name parsePublicRawRSAKeyHex * @memberOf KEYUTIL * @function * @param {String} pubRawRSAHex hexadecimal string of ASN.1 encoded PKCS#8 public key * @return {Array} associative array of parsed key * @since pkcs5pkey 1.0.5 * @description * Resulted associative array has following properties: * <ul> * <li>n - hexadecimal string of public key * <li>e - hexadecimal string of public exponent * </ul> */ parsePublicRawRSAKeyHex: function(pubRawRSAHex) { var _ASN1HEX = ASN1HEX; var _getChildIdx = _ASN1HEX.getChildIdx; var _getV = _ASN1HEX.getV; var result = {}; // 1. Sequence if (pubRawRSAHex.substr(0, 2) != "30") throw "malformed RSA key(code:001)"; // not sequence var a1 = _getChildIdx(pubRawRSAHex, 0); if (a1.length != 2) throw "malformed RSA key(code:002)"; // not 2 items in seq // 2. public key "N" if (pubRawRSAHex.substr(a1[0], 2) != "02") throw "malformed RSA key(code:003)"; // 1st item is not integer result.n = _getV(pubRawRSAHex, a1[0]); // 3. public key "E" if (pubRawRSAHex.substr(a1[1], 2) != "02") throw "malformed RSA key(code:004)"; // 2nd item is not integer result.e = _getV(pubRawRSAHex, a1[1]); return result; }, /** * parse hexadecimal string of PKCS#8 RSA/EC/DSA public key * @name parsePublicPKCS8Hex * @memberOf KEYUTIL * @function * @param {String} pkcs8PubHex hexadecimal string of PKCS#8 public key * @return {Hash} hash of key information * @description * Resulted hash has following attributes. * <ul> * <li>algoid - hexadecimal string of OID of asymmetric key algorithm</li> * <li>algparam - hexadecimal string of OID of ECC curve name, parameter SEQUENCE of DSA or null</li> * <li>key - hexadecimal string of public key</li> * </ul> */ parsePublicPKCS8Hex: function(pkcs8PubHex) { var _ASN1HEX = ASN1HEX; var _getChildIdx = _ASN1HEX.getChildIdx; var _getV = _ASN1HEX.getV; var result = {}; result.algparam = null; // 1. AlgID and Key bit string var a1 = _getChildIdx(pkcs8PubHex, 0); if (a1.length != 2) throw "outer DERSequence shall have 2 elements: " + a1.length; // 2. AlgID var idxAlgIdTLV = a1[0]; if (pkcs8PubHex.substr(idxAlgIdTLV, 2) != "30") throw "malformed PKCS8 public key(code:001)"; // AlgId not sequence var a2 = _getChildIdx(pkcs8PubHex, idxAlgIdTLV); if (a2.length != 2) throw "malformed PKCS8 public key(code:002)"; // AlgId not have two elements // 2.1. AlgID OID if (pkcs8PubHex.substr(a2[0], 2) != "06") throw "malformed PKCS8 public key(code:003)"; // AlgId.oid is not OID result.algoid = _getV(pkcs8PubHex, a2[0]); // 2.2. AlgID param if (pkcs8PubHex.substr(a2[1], 2) == "06") { // OID for EC result.algparam = _getV(pkcs8PubHex, a2[1]); } else if (pkcs8PubHex.substr(a2[1], 2) == "30") { // SEQ for DSA result.algparam = {}; result.algparam.p = _ASN1HEX.getVbyList(pkcs8PubHex, a2[1], [0], "02"); result.algparam.q = _ASN1HEX.getVbyList(pkcs8PubHex, a2[1], [1], "02"); result.algparam.g = _ASN1HEX.getVbyList(pkcs8PubHex, a2[1], [2], "02"); } // 3. Key if (pkcs8PubHex.substr(a1[1], 2) != "03") throw "malformed PKCS8 public key(code:004)"; // Key is not bit string result.key = _getV(pkcs8PubHex, a1[1]).substr(2); // 4. return result assoc array return result; }, }; }(); // -- MAJOR PUBLIC METHODS ------------------------------------------------------- /** * get private or public key object from any arguments * @name getKey * @memberOf KEYUTIL * @function * @static * @param {Object} param parameter to get key object. see description in detail. * @param {String} passcode (OPTION) parameter to get key object. see description in detail. * @param {String} hextype (OPTOIN) parameter to get key object. see description in detail. * @return {Object} {@link RSAKey}, {@link KJUR.crypto.ECDSA} or {@link KJUR.crypto.ECDSA} object * @since keyutil 1.0.0 * @description * This method gets private or public key object({@link RSAKey}, {@link KJUR.crypto.DSA} or {@link KJUR.crypto.ECDSA}) * for RSA, DSA and ECC. * Arguments for this methods depends on a key format you specify. * Following key representations are supported. * <ul> * <li>ECC private/public key object(as is): param=KJUR.crypto.ECDSA</li> * <li>DSA private/public key object(as is): param=KJUR.crypto.DSA</li> * <li>RSA private/public key object(as is): param=RSAKey </li> * <li>ECC private key parameters: param={d: d, curve: curveName}</li> * <li>RSA private key parameters: param={n: n, e: e, d: d, p: p, q: q, dp: dp, dq: dq, co: co}<br/> * NOTE: Each value shall be hexadecimal string of key spec.</li> * <li>DSA private key parameters: param={p: p, q: q, g: g, y: y, x: x}<br/> * NOTE: Each value shall be hexadecimal string of key spec.</li> * <li>ECC public key parameters: param={xy: xy, curve: curveName}<br/> * NOTE: ECC public key 'xy' shall be concatination of "04", x-bytes-hex and y-bytes-hex.</li> * <li>DSA public key parameters: param={p: p, q: q, g: g, y: y}<br/> * NOTE: Each value shall be hexadecimal string of key spec.</li> * <li>RSA public key parameters: param={n: n, e: e} </li> * <li>X.509v1/v3 PEM certificate (RSA/DSA/ECC): param=pemString</li> * <li>PKCS#8 hexadecimal RSA/ECC public key: param=pemString, null, "pkcs8pub"</li> * <li>PKCS#8 PEM RSA/DSA/ECC public key: param=pemString</li> * <li>PKCS#5 plain hexadecimal RSA private key: param=hexString, null, "pkcs5prv"</li> * <li>PKCS#5 plain PEM DSA/RSA private key: param=pemString</li> * <li>PKCS#8 plain PEM RSA/ECDSA private key: param=pemString</li> * <li>PKCS#5 encrypted PEM RSA/DSA private key: param=pemString, passcode</li> * <li>PKCS#8 encrypted PEM RSA/ECDSA private key: param=pemString, passcode</li> * </ul> * Please note following limitation on encrypted keys: * <ul> * <li>Encrypted PKCS#8 only supports PBKDF2/HmacSHA1/3DES</li> * <li>Encrypted PKCS#5 supports DES-CBC, DES-EDE3-CBC, AES-{128,192.256}-CBC</li> * <li>JWT plain ECC private/public key</li> * <li>JWT plain RSA public key</li> * <li>JWT plain RSA private key with P/Q/DP/DQ/COEFF</li> * <li>JWT plain RSA private key without P/Q/DP/DQ/COEFF (since jsrsasign 5.0.0)</li> * </ul> * NOTE1: <a href="https://tools.ietf.org/html/rfc7517">RFC 7517 JSON Web Key(JWK)</a> support for RSA/ECC private/public key from jsrsasign 4.8.1.<br/> * NOTE2: X509v1 support is added since jsrsasign 5.0.11. * * <h5>EXAMPLE</h5> * @example * // 1. loading private key from PEM string * keyObj = KEYUTIL.getKey("-----BEGIN RSA PRIVATE KEY..."); * keyObj = KEYUTIL.getKey("-----BEGIN RSA PRIVATE KEY..., "passcode"); * keyObj = KEYUTIL.getKey("-----BEGIN PRIVATE KEY..."); * keyObj = KEYUTIL.getKey("-----BEGIN PRIVATE KEY...", "passcode"); * // 2. loading public key from PEM string * keyObj = KEYUTIL.getKey("-----BEGIN PUBLIC KEY..."); * keyObj = KEYUTIL.getKey("-----BEGIN X509 CERTIFICATE..."); * // 3. loading hexadecimal PKCS#5/PKCS#8 key * keyObj = KEYUTIL.getKey("308205c1...", null, "pkcs8pub"); * keyObj = KEYUTIL.getKey("3082048b...", null, "pkcs5prv"); * // 4. loading JSON Web Key(JWK) * keyObj = KEYUTIL.getKey({kty: "RSA", n: "0vx7...", e: "AQAB"}); * keyObj = KEYUTIL.getKey({kty: "EC", crv: "P-256", * x: "MKBC...", y: "4Etl6...", d: "870Mb..."}); * // 5. bare hexadecimal key * keyObj = KEYUTIL.getKey({n: "75ab..", e: "010001"}); */ KEYUTIL.getKey = function(param, passcode, hextype) { var _ASN1HEX = ASN1HEX, _getChildIdx = _ASN1HEX.getChildIdx, _getV = _ASN1HEX.getV, _getVbyList = _ASN1HEX.getVbyList, _KJUR_crypto = KJUR.crypto, _KJUR_crypto_ECDSA = _KJUR_crypto.ECDSA, _KJUR_crypto_DSA = _KJUR_crypto.DSA, _RSAKey = RSAKey, _pemtohex = pemtohex, _KEYUTIL = KEYUTIL; // 1. by key RSAKey/KJUR.crypto.ECDSA/KJUR.crypto.DSA object if (typeof _RSAKey != 'undefined' && param instanceof _RSAKey) return param; if (typeof _KJUR_crypto_ECDSA != 'undefined' && param instanceof _KJUR_crypto_ECDSA) return param; if (typeof _KJUR_crypto_DSA != 'undefined' && param instanceof _KJUR_crypto_DSA) return param; // 2. by parameters of key // 2.1. bare ECC // 2.1.1. bare ECC public key by hex values if (param.curve !== undefined && param.xy !== undefined && param.d === undefined) { return new _KJUR_crypto_ECDSA({pub: param.xy, curve: param.curve}); } // 2.1.2. bare ECC private key by hex values if (param.curve !== undefined && param.d !== undefined) { return new _KJUR_crypto_ECDSA({prv: param.d, curve: param.curve}); } // 2.2. bare RSA // 2.2.1. bare RSA public key by hex values if (param.kty === undefined && param.n !== undefined && param.e !== undefined && param.d === undefined) { var key = new _RSAKey(); key.setPublic(param.n, param.e); return key; } // 2.2.2. bare RSA private key with P/Q/DP/DQ/COEFF by hex values if (param.kty === undefined && param.n !== undefined && param.e !== undefined && param.d !== undefined && param.p !== undefined && param.q !== undefined && param.dp !== undefined && param.dq !== undefined && param.co !== undefined && param.qi === undefined) { var key = new _RSAKey(); key.setPrivateEx(param.n, param.e, param.d, param.p, param.q, param.dp, param.dq, param.co); return key; } // 2.2.3. bare RSA public key without P/Q/DP/DQ/COEFF by hex values if (param.kty === undefined && param.n !== undefined && param.e !== undefined && param.d !== undefined && param.p === undefined) { var key = new _RSAKey(); key.setPrivate(param.n, param.e, param.d); return key; } // 2.3. bare DSA // 2.3.1. bare DSA public key by hex values if (param.p !== undefined && param.q !== undefined && param.g !== undefined && param.y !== undefined && param.x === undefined) { var key = new _KJUR_crypto_DSA(); key.setPublic(param.p, param.q, param.g, param.y); return key; } // 2.3.2. bare DSA private key by hex values if (param.p !== undefined && param.q !== undefined && param.g !== undefined && param.y !== undefined && param.x !== undefined) { var key = new _KJUR_crypto_DSA(); key.setPrivate(param.p, param.q, param.g, param.y, param.x); return key; } // 3. JWK // 3.1. JWK RSA // 3.1.1. JWK RSA public key by b64u values if (param.kty === "RSA" && param.n !== undefined && param.e !== undefined && param.d === undefined) { var key = new _RSAKey(); key.setPublic(b64utohex(param.n), b64utohex(param.e)); return key; } // 3.1.2. JWK RSA private key with p/q/dp/dq/coeff by b64u values if (param.kty === "RSA" && param.n !== undefined && param.e !== undefined && param.d !== undefined && param.p !== undefined && param.q !== undefined && param.dp !== undefined && param.dq !== undefined && param.qi !== undefined) { var key = new _RSAKey(); key.setPrivateEx(b64utohex(param.n), b64utohex(param.e), b64utohex(param.d), b64utohex(param.p), b64utohex(param.q), b64utohex(param.dp), b64utohex(param.dq), b64utohex(param.qi)); return key; } // 3.1.3. JWK RSA private key without p/q/dp/dq/coeff by b64u // since jsrsasign 5.0.0 keyutil 1.0.11 if (param.kty === "RSA" && param.n !== undefined && param.e !== undefined && param.d !== undefined) { var key = new _RSAKey(); key.setPrivate(b64utohex(param.n), b64utohex(param.e), b64utohex(param.d)); return key; } // 3.2. JWK ECC // 3.2.1. JWK ECC public key by b64u values if (param.kty === "EC" && param.crv !== undefined && param.x !== undefined && param.y !== undefined && param.d === undefined) { var ec = new _KJUR_crypto_ECDSA({"curve": param.crv}); var charlen = ec.ecparams.keylen / 4; var hX = ("0000000000" + b64utohex(param.x)).slice(- charlen); var hY = ("0000000000" + b64utohex(param.y)).slice(- charlen); var hPub = "04" + hX + hY; ec.setPublicKeyHex(hPub); return ec; } // 3.2.2. JWK ECC private key by b64u values if (param.kty === "EC" && param.crv !== undefined && param.x !== undefined && param.y !== undefined && param.d !== undefined) { var ec = new _KJUR_crypto_ECDSA({"curve": param.crv}); var charlen = ec.ecparams.keylen / 4; var hX = ("0000000000" + b64utohex(param.x)).slice(- charlen); var hY = ("0000000000" + b64utohex(param.y)).slice(- charlen); var hPub = "04" + hX + hY; var hPrv = ("0000000000" + b64utohex(param.d)).slice(- charlen); ec.setPublicKeyHex(hPub); ec.setPrivateKeyHex(hPrv); return ec; } // 4. (plain) hexadecimal data // 4.1. get private key by PKCS#5 plain RSA/DSA/ECDSA hexadecimal string if (hextype === "pkcs5prv") { var h = param, _ASN1HEX = ASN1HEX, a, key; a = _getChildIdx(h, 0); if (a.length === 9) { // RSA (INT x 9) key = new _RSAKey(); key.readPKCS5PrvKeyHex(h); } else if (a.length === 6) { // DSA (INT x 6) key = new _KJUR_crypto_DSA(); key.readPKCS5PrvKeyHex(h); } else if (a.length > 2 && // ECDSA (INT, OCT prv, [0] curve, [1] pub) h.substr(a[1], 2) === "04") { key = new _KJUR_crypto_ECDSA(); key.readPKCS5PrvKeyHex(h); } else { throw "unsupported PKCS#1/5 hexadecimal key"; } return key; } // 4.2. get private key by PKCS#8 plain RSA/DSA/ECDSA hexadecimal string if (hextype === "pkcs8prv") { var key = _KEYUTIL.getKeyFromPlainPrivatePKCS8Hex(param); return key; } // 4.3. get public key by PKCS#8 RSA/DSA/ECDSA hexadecimal string if (hextype === "pkcs8pub") { return _KEYUTIL._getKeyFromPublicPKCS8Hex(param); } // 4.4. get public key by X.509 hexadecimal string for RSA/DSA/ECDSA if (hextype === "x509pub") { return X509.getPublicKeyFromCertHex(param); } // 5. by PEM certificate (-----BEGIN ... CERTIFICATE----) if (param.indexOf("-END CERTIFICATE-", 0) != -1 || param.indexOf("-END X509 CERTIFICATE-", 0) != -1 || param.indexOf("-END TRUSTED CERTIFICATE-", 0) != -1) { return X509.getPublicKeyFromCertPEM(param); } // 6. public key by PKCS#8 PEM string if (param.indexOf("-END PUBLIC KEY-") != -1) { var pubKeyHex = pemtohex(param, "PUBLIC KEY"); return _KEYUTIL._getKeyFromPublicPKCS8Hex(pubKeyHex); } // 8.1 private key by plain PKCS#5 PEM RSA string // getKey("-----BEGIN RSA PRIVATE KEY-...") if (param.indexOf("-END RSA PRIVATE KEY-") != -1 && param.indexOf("4,ENCRYPTED") == -1) { var hex = _pemtohex(param, "RSA PRIVATE KEY"); return _KEYUTIL.getKey(hex, null, "pkcs5prv"); } // 8.2. private key by plain PKCS#5 PEM DSA string if (param.indexOf("-END DSA PRIVATE KEY-") != -1 && param.indexOf("4,ENCRYPTED") == -1) { var hKey = _pemtohex(param, "DSA PRIVATE KEY"); var p = _getVbyList(hKey, 0, [1], "02"); var q = _getVbyList(hKey, 0, [2], "02"); var g = _getVbyList(hKey, 0, [3], "02"); var y = _getVbyList(hKey, 0, [4], "02"); var x = _getVbyList(hKey, 0, [5], "02"); var key = new _KJUR_crypto_DSA(); key.setPrivate(new BigInteger(p, 16), new BigInteger(q, 16), new BigInteger(g, 16), new BigInteger(y, 16), new BigInteger(x, 16)); return key; } // 10. private key by plain PKCS#8 PEM ECC/RSA string if (param.indexOf("-END PRIVATE KEY-") != -1) { return _KEYUTIL.getKeyFromPlainPrivatePKCS8PEM(param); } // 11.1 private key by encrypted PKCS#5 PEM RSA string if (param.indexOf("-END RSA PRIVATE KEY-") != -1 && param.indexOf("4,ENCRYPTED") != -1) { var hPKey = _KEYUTIL.getDecryptedKeyHex(param, passcode); var rsaKey = new RSAKey(); rsaKey.readPKCS5PrvKeyHex(hPKey); return rsaKey; } // 11.2. private key by encrypted PKCS#5 PEM ECDSA string if (param.indexOf("-END EC PRIVATE KEY-") != -1 && param.indexOf("4,ENCRYPTED") != -1) { var hKey = _KEYUTIL.getDecryptedKeyHex(param, passcode); var key = _getVbyList(hKey, 0, [1], "04"); var curveNameOidHex = _getVbyList(hKey, 0, [2,0], "06"); var pubkey = _getVbyList(hKey, 0, [3,0], "03").substr(2); var curveName = ""; if (KJUR.crypto.OID.oidhex2name[curveNameOidHex] !== undefined) { curveName = KJUR.crypto.OID.oidhex2name[curveNameOidHex]; } else { throw "undefined OID(hex) in KJUR.crypto.OID: " + curveNameOidHex; } var ec = new _KJUR_crypto_ECDSA({'curve': curveName}); ec.setPublicKeyHex(pubkey); ec.setPrivateKeyHex(key); ec.isPublic = false; return ec; } // 11.3. private key by encrypted PKCS#5 PEM DSA string if (param.indexOf("-END DSA PRIVATE KEY-") != -1 && param.indexOf("4,ENCRYPTED") != -1) { var hKey = _KEYUTIL.getDecryptedKeyHex(param, passcode); var p = _getVbyList(hKey, 0, [1], "02"); var q = _getVbyList(hKey, 0, [2], "02"); var g = _getVbyList(hKey, 0, [3], "02"); var y = _getVbyList(hKey, 0, [4], "02"); var x = _getVbyList(hKey, 0, [5], "02"); var key = new _KJUR_crypto_DSA(); key.setPrivate(new BigInteger(p, 16), new BigInteger(q, 16), new BigInteger(g, 16), new BigInteger(y, 16), new BigInteger(x, 16)); return key; } // 11. private key by encrypted PKCS#8 hexadecimal RSA/ECDSA string if (param.indexOf("-END ENCRYPTED PRIVATE KEY-") != -1) { return _KEYUTIL.getKeyFromEncryptedPKCS8PEM(param, passcode); } throw "not supported argument"; }; /** * @name generateKeypair * @memberOf KEYUTIL * @function * @static * @param {String} alg 'RSA' or 'EC' * @param {Object} keylenOrCurve key length for RSA or curve name for EC * @return {Array} associative array of keypair which has prvKeyObj and pubKeyObj parameters * @since keyutil 1.0.1 * @description * This method generates a key pair of public key algorithm. * The result will be an associative array which has following * parameters: * <ul> * <li>prvKeyObj - RSAKey or ECDSA object of private key</li> * <li>pubKeyObj - RSAKey or ECDSA object of public key</li> * </ul> * NOTE1: As for RSA algoirthm, public