UNPKG

node-webtokens

Version:

Simple, opinionated implementation of JWS and JWE compact serialization

github.com/teifip/node-webtokens

teifip/node-webtokens

79 lines (75 loc) 2.7 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
const ERR_MSG = 'Could not extract parameters from DER signature'; exports.derToConcat = (signature, size) => { let offset = 0; if (signature[offset++] !== 0x30) throw new Error(ERR_MSG); let seqLength = signature[offset++]; if (seqLength === 0x81) seqLength = signature[offset++]; if (seqLength > signature.length - offset || signature[offset++] !== 0x02) { throw new Error(ERR_MSG); } let rLength = signature[offset++]; if (rLength > signature.length - offset - 2 || rLength > size + 1) { throw new Error(ERR_MSG); } let rOffset = offset; offset += rLength; if (signature[offset++] !== 0x02) throw new Error(ERR_MSG); let sLength = signature[offset++]; if (sLength !== signature.length - offset || sLength > size + 1) { throw new Error(ERR_MSG); } let sOffset = offset; offset += sLength; if (offset !== signature.length) throw new Error(ERR_MSG); let rPadding = size - rLength; let sPadding = size - sLength; let dst = Buffer.allocUnsafe(rPadding + rLength + sPadding + sLength); for (offset = 0; offset < rPadding; offset++) dst[offset] = 0; let rPad = Math.max(-rPadding, 0); signature.copy(dst, offset, rOffset + rPad, rOffset + rLength); offset = size; for (let o = offset; offset < o + sPadding; offset++) dst[offset] = 0; let sPad = Math.max(-sPadding, 0); signature.copy(dst, offset, sOffset + sPad, sOffset + sLength); return dst; } exports.concatToDer = (signature, size) => { let rPadding = countPadding(signature, 0, size); let sPadding = countPadding(signature, size, signature.length); let rLength = size - rPadding; let sLength = size - sPadding; let rsBytes = rLength + sLength + 4; let shortLength = rsBytes < 0x80; let dst = Buffer.allocUnsafe((shortLength ? 2 : 3) + rsBytes); let offset = 0; dst[offset++] = 0x30; if (shortLength) { dst[offset++] = rsBytes; } else { dst[offset++] = 0x81; dst[offset++] = rsBytes & 0xFF; } dst[offset++] = 0x02; dst[offset++] = rLength; if (rPadding < 0) { dst[offset++] = 0; offset += signature.copy(dst, offset, 0, size); } else { offset += signature.copy(dst, offset, rPadding, size); } dst[offset++] = 0x02; dst[offset++] = sLength; if (sPadding < 0) { dst[offset++] = 0; signature.copy(dst, offset, size); } else { signature.copy(dst, offset, size + sPadding); } return dst; } function countPadding(buf, start, stop) { let padding = 0; while (start + padding < stop && buf[start + padding] === 0) padding++; let needsSign = buf[start + padding] >= 0x80; return needsSign ? --padding : padding; }