UNPKG

five-bells-condition

Version:

Implementation of crypto-conditions in JavaScript

github.com/interledgerjs/five-bells-condition

interledgerjs/five-bells-condition

109 lines (92 loc) 2.92 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
'use strict' /** * @module types */ const crypto = require('crypto') const constants = require('constants') const Pss = require('../crypto/pss') const pem = require('../util/pem') /** * RSA-PSS using Node crypto module. * * This class combines Node's native crypto functionality with PSS padding * implemented in this library. */ class Rsa { constructor (opts) { opts = opts || {} this.hashAlgorithm = opts.hashAlgorithm || 'sha256' this.pss = new Pss({ hashAlgorithm: this.hashAlgorithm }) } /** * Get the length in bits of an RSA modulus. * * @param {Buffer} modulus RSA modulus. * @return {Number} Number of bits in RSA modulus. */ getModulusBitLength (modulus) { const modulusHighByteBitLength = modulus[0].toString(2).length const modulusBitLength = (modulus.length - 1) * 8 + modulusHighByteBitLength return modulusBitLength } /** * Sign a message using RSA-PSS. * * @param {String} privateKey PEM-encoded RSA private key. * @param {Buffer} message Message to sign. * @return {Buffer} RSA signature. */ sign (privateKey, message) { // Calculate modulus bit length const modulus = pem.modulusFromPrivateKey(privateKey) const modulusBitLength = this.getModulusBitLength(modulus) // Pad message using PSS const encodedMessage = this.pss.encode(message, modulusBitLength - 1) // OpenSSL expects the message buffer to be the same length (in bytes) as // the modulus. const paddedMessage = (encodedMessage.length < modulus.length) ? Buffer.concat([Rsa.ZERO_BYTE, encodedMessage]) : encodedMessage // Sign return crypto.privateEncrypt( { key: privateKey, padding: constants.RSA_NO_PADDING }, paddedMessage ) } /** * Verify a RSA-PSS signature. * * @param {Buffer} modulus RSA public modulus. * @param {Buffer} message Message the signature should correspond to. * @param {Buffer} signature RSA signature. * @return {Boolean} Whether the signature is valid or not. */ verify (modulus, message, signature) { // Verify signature const publicKey = pem.modulusToPem(modulus) const paddedMessage = crypto.publicDecrypt( { key: publicKey, padding: constants.RSA_NO_PADDING }, signature ) // OpenSSL returns a buffer that fits the bitlength of the modulus, but we // need this buffer to be just long enough to fit the bitlength of the // encodedMessage, which is one bit shorter. const modulusBitLength = this.getModulusBitLength(modulus) const encodedMessage = modulusBitLength % 8 === 1 ? paddedMessage.slice(1) : paddedMessage // Verify message padding return this.pss.verify(message, encodedMessage, modulusBitLength - 1) } } // Used to add a zero for padding Rsa.ZERO_BYTE = new Buffer([0]) module.exports = Rsa