UNPKG

mima-kit

Version:

mima-kit is a cryptographic suite implemented in TypeScript. The goal is to provide an easy-to-use cryptographic library. mima-kit 是一个使用 TypeScript 实现的密码学套件。目标是提供一个简单易用的密码学库。

github.com/RSoraM/mima-kit

RSoraM/mima-kit

121 lines (120 loc) 5.29 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
import { KitError, U8, rotateL32 } from '../../core/utils'; import { createCipher } from '../../core/cipher'; // * Constants const SBox = new Uint8Array([0xD6, 0x90, 0xE9, 0xFE, 0xCC, 0xE1, 0x3D, 0xB7, 0x16, 0xB6, 0x14, 0xC2, 0x28, 0xFB, 0x2C, 0x05, 0x2B, 0x67, 0x9A, 0x76, 0x2A, 0xBE, 0x04, 0xC3, 0xAA, 0x44, 0x13, 0x26, 0x49, 0x86, 0x06, 0x99, 0x9C, 0x42, 0x50, 0xF4, 0x91, 0xEF, 0x98, 0x7A, 0x33, 0x54, 0x0B, 0x43, 0xED, 0xCF, 0xAC, 0x62, 0xE4, 0xB3, 0x1C, 0xA9, 0xC9, 0x08, 0xE8, 0x95, 0x80, 0xDF, 0x94, 0xFA, 0x75, 0x8F, 0x3F, 0xA6, 0x47, 0x07, 0xA7, 0xFC, 0xF3, 0x73, 0x17, 0xBA, 0x83, 0x59, 0x3C, 0x19, 0xE6, 0x85, 0x4F, 0xA8, 0x68, 0x6B, 0x81, 0xB2, 0x71, 0x64, 0xDA, 0x8B, 0xF8, 0xEB, 0x0F, 0x4B, 0x70, 0x56, 0x9D, 0x35, 0x1E, 0x24, 0x0E, 0x5E, 0x63, 0x58, 0xD1, 0xA2, 0x25, 0x22, 0x7C, 0x3B, 0x01, 0x21, 0x78, 0x87, 0xD4, 0x00, 0x46, 0x57, 0x9F, 0xD3, 0x27, 0x52, 0x4C, 0x36, 0x02, 0xE7, 0xA0, 0xC4, 0xC8, 0x9E, 0xEA, 0xBF, 0x8A, 0xD2, 0x40, 0xC7, 0x38, 0xB5, 0xA3, 0xF7, 0xF2, 0xCE, 0xF9, 0x61, 0x15, 0xA1, 0xE0, 0xAE, 0x5D, 0xA4, 0x9B, 0x34, 0x1A, 0x55, 0xAD, 0x93, 0x32, 0x30, 0xF5, 0x8C, 0xB1, 0xE3, 0x1D, 0xF6, 0xE2, 0x2E, 0x82, 0x66, 0xCA, 0x60, 0xC0, 0x29, 0x23, 0xAB, 0x0D, 0x53, 0x4E, 0x6F, 0xD5, 0xDB, 0x37, 0x45, 0xDE, 0xFD, 0x8E, 0x2F, 0x03, 0xFF, 0x6A, 0x72, 0x6D, 0x6C, 0x5B, 0x51, 0x8D, 0x1B, 0xAF, 0x92, 0xBB, 0xDD, 0xBC, 0x7F, 0x11, 0xD9, 0x5C, 0x41, 0x1F, 0x10, 0x5A, 0xD8, 0x0A, 0xC1, 0x31, 0x88, 0xA5, 0xCD, 0x7B, 0xBD, 0x2D, 0x74, 0xD0, 0x12, 0xB8, 0xE5, 0xB4, 0xB0, 0x89, 0x69, 0x97, 0x4A, 0x0C, 0x96, 0x77, 0x7E, 0x65, 0xB9, 0xF1, 0x09, 0xC5, 0x6E, 0xC6, 0x84, 0x18, 0xF0, 0x7D, 0xEC, 0x3A, 0xDC, 0x4D, 0x20, 0x79, 0xEE, 0x5F, 0x3E, 0xD7, 0xCB, 0x39, 0x48]); const CK = new Uint32Array([0x00070E15, 0x1C232A31, 0x383F464D, 0x545B6269, 0x70777E85, 0x8C939AA1, 0xA8AFB6BD, 0xC4CBD2D9, 0xE0E7EEF5, 0xFC030A11, 0x181F262D, 0x343B4249, 0x50575E65, 0x6C737A81, 0x888F969D, 0xA4ABB2B9, 0xC0C7CED5, 0xDCE3EAF1, 0xF8FF060D, 0x141B2229, 0x30373E45, 0x4C535A61, 0x686F767D, 0x848B9299, 0xA0A7AEB5, 0xBCC3CAD1, 0xD8DFE6ED, 0xF4FB0209, 0x10171E25, 0x2C333A41, 0x484F565D, 0x646B7279]); // * Functions /** * 非线性变换函数 `τ`. * * Nonlinear transformation function `τ`. * * @param {number} A - 工作字 / word */ function tau(A) { return SBox[A >> 24 & 0xFF] << 24 | SBox[A >> 16 & 0xFF] << 16 | SBox[A >> 8 & 0xFF] << 8 | SBox[A & 0xFF]; } /** * 合成置换函数 `T`, 由非线性变换函数 `τ` 和线性变换函数 `L` 组成. * * Synthetic permutation function `T`, composed of function `τ` and function `L`. * * @param {number} A - 工作字 / word */ function T(A) { const B = tau(A); return B ^ rotateL32(B, 2) ^ rotateL32(B, 10) ^ rotateL32(B, 18) ^ rotateL32(B, 24); } /** * 合成置换函数 `T1`, 由非线性变换函数 `τ` 和线性变换函数 `L1` 组成. * * Synthetic permutation function `T1`, composed of function `τ` and function `L1`. * * @param {number} A - 工作字 / word */ function T1(A) { const B = tau(A); return B ^ rotateL32(B, 13) ^ rotateL32(B, 23); } /** * 密钥扩展函数 / Key expansion function */ function expandKey(key) { if (key.length !== 16) { throw new KitError('SM4 key must be 16 byte'); } const KView = new DataView(key.buffer); let K0 = 0xA3B1BAC6 ^ KView.getUint32(0, false); let K1 = 0x56AA3350 ^ KView.getUint32(4, false); let K2 = 0x677D9197 ^ KView.getUint32(8, false); let K3 = 0xB27022DC ^ KView.getUint32(12, false); const rk = new Uint32Array(32); for (let i = 0; i < 32; i++) { rk[i] = K0 ^ T1(K1 ^ K2 ^ K3 ^ CK[i]); K0 = K1; K1 = K2; K2 = K3; K3 = rk[i]; } return rk; } /** * 轮函数 `F` / Round function `F` * * @param {number} X0 - 工作字 / word * @param {number} X1 - 工作字 / word * @param {number} X2 - 工作字 / word * @param {number} X3 - 工作字 / word * @param {number} rk - 轮密钥 / round key */ function F(X0, X1, X2, X3, rk) { return X0 ^ T(X1 ^ X2 ^ X3 ^ rk); } // * SM4 Algorithm /** * @param {Uint8Array} M - 输入块 / input block * @param {Uint32Array} rk - 轮密钥 / round keys */ function cipher(M, rk) { if (M.length !== 16) { throw new KitError('SM4 block must be 16 byte'); } const MView = new DataView(M.buffer, M.byteOffset); let X0 = MView.getUint32(0, false); let X1 = MView.getUint32(4, false); let X2 = MView.getUint32(8, false); let X3 = MView.getUint32(12, false); let X_; for (let i = 0; i < 32; i++) { X_ = F(X0, X1, X2, X3, rk[i]); X0 = X1; X1 = X2; X2 = X3; X3 = X_; } const R = new U8(16); const RView = new DataView(R.buffer); RView.setUint32(0, X3, false); RView.setUint32(4, X2, false); RView.setUint32(8, X1, false); RView.setUint32(12, X0, false); return R; } function _sm4(K) { const rk = expandKey(K); const rkReversed = rk.toReversed(); return { encrypt: (M) => cipher(M, rk), decrypt: (M) => cipher(M, rkReversed), }; } /** * SM4 分组密码算法 / block cipher algorithm */ export const sm4 = createCipher(_sm4, { ALGORITHM: 'SM4', BLOCK_SIZE: 16, KEY_SIZE: 16, MIN_KEY_SIZE: 16, MAX_KEY_SIZE: 16, });