UNPKG

ctjs

Version:

CTjs is a full set of classes necessary to work with any kind of Certificate Transparency log (V1 as from RFC6962, or V2 as from RFC6962-bis). In CTjs you could find all necessary validation/verification functions for all related data shipped with full-fe

github.com/YuryStrozhevsky/CTjs

YuryStrozhevsky/CTjs

130 lines (112 loc) 4.75 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); var _pvutils = require("pvutils"); var _bytestreamjs = require("bytestreamjs"); var _DigitallySigned = require("./DigitallySigned.js"); var _DigitallySigned2 = _interopRequireDefault(_DigitallySigned); var _utils = require("./utils.js"); function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; } function _asyncToGenerator(fn) { return function () { var gen = fn.apply(this, arguments); return new Promise(function (resolve, reject) { function step(key, arg) { try { var info = gen[key](arg); var value = info.value; } catch (error) { reject(error); return; } if (info.done) { resolve(value); } else { return Promise.resolve(value).then(function (value) { step("next", value); }, function (err) { step("throw", err); }); } } return step("next"); }); }; } //************************************************************************************** class SignedTreeHead { //********************************************************************************** /** * Constructor for SignedTreeHead class * @param {Object} [parameters={}] * @property {Object} [schema] asn1js parsed value */ constructor(parameters = {}) { //region Internal properties of the object /** * @type {Number} * @description treeSize */ this.treeSize = (0, _pvutils.getParametersValue)(parameters, "treeSize", SignedTreeHead.constants("treeSize")); /** * @type {Date} * @description timestamp */ this.timestamp = (0, _pvutils.getParametersValue)(parameters, "timestamp", SignedTreeHead.constants("timestamp")); /** * @type {ArrayBuffer} * @description rootHash */ this.rootHash = (0, _pvutils.getParametersValue)(parameters, "rootHash", SignedTreeHead.constants("rootHash")); /** * @type {DigitallySigned} * @description treeHeadSignature */ this.treeHeadSignature = (0, _pvutils.getParametersValue)(parameters, "treeHeadSignature", SignedTreeHead.constants("treeHeadSignature")); //endregion //region If input argument array contains "json" for this object if ("json" in parameters) this.fromJSON(parameters.json); //endregion } //********************************************************************************** /** * Return value for a constant by name * @param {string} name String name for a constant */ static constants(name) { switch (name) { case "treeSize": return 0; case "timestamp": return new Date(); case "rootHash": return new ArrayBuffer(0); case "treeHeadSignature": return new _DigitallySigned2.default(); default: throw new Error(`Invalid constant name for SignedTreeHead class: ${name}`); } } //********************************************************************************** /** * Convert JSON value into current object * @param {Object} json * @param {String} json.tree_size * @param {String} json.timestamp * @param {String} json.sha256_root_hash * @param {String} json.tree_head_signature */ fromJSON(json) { this.treeSize = json.tree_size; this.timestamp = new Date(json.timestamp); this.rootHash = (0, _pvutils.stringToArrayBuffer)((0, _pvutils.fromBase64)(json.sha256_root_hash)); const stream = new _bytestreamjs.SeqStream({ buffer: (0, _pvutils.stringToArrayBuffer)((0, _pvutils.fromBase64)(json.tree_head_signature)) }); this.treeHeadSignature = new _DigitallySigned2.default({ stream }); } //********************************************************************************** /** * Verify Signed Tree Head using given public key * @param {PublicKeyInfo} publicKey Public key using for verification * @return {Promise<Boolean>} */ verify(publicKey) { var _this = this; return _asyncToGenerator(function* () { // digitally-signed struct { // Version version; // SignatureType signature_type = tree_hash; // uint64 timestamp; // uint64 tree_size; // opaque sha256_root_hash[32]; // } TreeHeadSignature; const stream = new _bytestreamjs.SeqStream(); stream.appendChar(0); // version stream.appendChar(1); // signature_type = tree_hash; _utils.utils.appendUint64(_this.timestamp.valueOf(), stream); // timestamp _utils.utils.appendUint64(_this.treeSize, stream); // tree_size stream.appendView(new Uint8Array(_this.rootHash)); // sha256_root_hash return _this.treeHeadSignature.verify(stream.buffer, publicKey); })(); } //********************************************************************************** } exports.default = SignedTreeHead; //************************************************************************************** //# sourceMappingURL=SignedTreeHead.js.map