Context Navigation

← Previous Revision
Latest Revision
Next Revision →
Normal
Revision Log

source: trip-planner-front/node_modules/node-forge/lib/cipher.js@ e29cc2e

Last change on this file since e29cc2e was 6a3a178, checked in by Ema <ema_spirova@…>, 3 years ago
initial commit
Property mode set to `100644`
File size: 6.5 KB

Rev	Line
[6a3a178]	1	/**
	2	* Cipher base API.
	3	*
	4	* @author Dave Longley
	5	*
	6	* Copyright (c) 2010-2014 Digital Bazaar, Inc.
	7	*/
	8	var forge = require('./forge');
	9	require('./util');
	10
	11	module.exports = forge.cipher = forge.cipher \|\| {};
	12
	13	// registered algorithms
	14	forge.cipher.algorithms = forge.cipher.algorithms \|\| {};
	15
	16	/**
	17	* Creates a cipher object that can be used to encrypt data using the given
	18	* algorithm and key. The algorithm may be provided as a string value for a
	19	* previously registered algorithm or it may be given as a cipher algorithm
	20	* API object.
	21	*
	22	* @param algorithm the algorithm to use, either a string or an algorithm API
	23	* object.
	24	* @param key the key to use, as a binary-encoded string of bytes or a
	25	* byte buffer.
	26	*
	27	* @return the cipher.
	28	*/
	29	forge.cipher.createCipher = function(algorithm, key) {
	30	var api = algorithm;
	31	if(typeof api === 'string') {
	32	api = forge.cipher.getAlgorithm(api);
	33	if(api) {
	34	api = api();
	35	}
	36	}
	37	if(!api) {
	38	throw new Error('Unsupported algorithm: ' + algorithm);
	39	}
	40
	41	// assume block cipher
	42	return new forge.cipher.BlockCipher({
	43	algorithm: api,
	44	key: key,
	45	decrypt: false
	46	});
	47	};
	48
	49	/**
	50	* Creates a decipher object that can be used to decrypt data using the given
	51	* algorithm and key. The algorithm may be provided as a string value for a
	52	* previously registered algorithm or it may be given as a cipher algorithm
	53	* API object.
	54	*
	55	* @param algorithm the algorithm to use, either a string or an algorithm API
	56	* object.
	57	* @param key the key to use, as a binary-encoded string of bytes or a
	58	* byte buffer.
	59	*
	60	* @return the cipher.
	61	*/
	62	forge.cipher.createDecipher = function(algorithm, key) {
	63	var api = algorithm;
	64	if(typeof api === 'string') {
	65	api = forge.cipher.getAlgorithm(api);
	66	if(api) {
	67	api = api();
	68	}
	69	}
	70	if(!api) {
	71	throw new Error('Unsupported algorithm: ' + algorithm);
	72	}
	73
	74	// assume block cipher
	75	return new forge.cipher.BlockCipher({
	76	algorithm: api,
	77	key: key,
	78	decrypt: true
	79	});
	80	};
	81
	82	/**
	83	* Registers an algorithm by name. If the name was already registered, the
	84	* algorithm API object will be overwritten.
	85	*
	86	* @param name the name of the algorithm.
	87	* @param algorithm the algorithm API object.
	88	*/
	89	forge.cipher.registerAlgorithm = function(name, algorithm) {
	90	name = name.toUpperCase();
	91	forge.cipher.algorithms[name] = algorithm;
	92	};
	93
	94	/**
	95	* Gets a registered algorithm by name.
	96	*
	97	* @param name the name of the algorithm.
	98	*
	99	* @return the algorithm, if found, null if not.
	100	*/
	101	forge.cipher.getAlgorithm = function(name) {
	102	name = name.toUpperCase();
	103	if(name in forge.cipher.algorithms) {
	104	return forge.cipher.algorithms[name];
	105	}
	106	return null;
	107	};
	108
	109	var BlockCipher = forge.cipher.BlockCipher = function(options) {
	110	this.algorithm = options.algorithm;
	111	this.mode = this.algorithm.mode;
	112	this.blockSize = this.mode.blockSize;
	113	this._finish = false;
	114	this._input = null;
	115	this.output = null;
	116	this._op = options.decrypt ? this.mode.decrypt : this.mode.encrypt;
	117	this._decrypt = options.decrypt;
	118	this.algorithm.initialize(options);
	119	};
	120
	121	/**
	122	* Starts or restarts the encryption or decryption process, whichever
	123	* was previously configured.
	124	*
	125	* For non-GCM mode, the IV may be a binary-encoded string of bytes, an array
	126	* of bytes, a byte buffer, or an array of 32-bit integers. If the IV is in
	127	* bytes, then it must be Nb (16) bytes in length. If the IV is given in as
	128	* 32-bit integers, then it must be 4 integers long.
	129	*
	130	* Note: an IV is not required or used in ECB mode.
	131	*
	132	* For GCM-mode, the IV must be given as a binary-encoded string of bytes or
	133	* a byte buffer. The number of bytes should be 12 (96 bits) as recommended
	134	* by NIST SP-800-38D but another length may be given.
	135	*
	136	* @param options the options to use:
	137	* iv the initialization vector to use as a binary-encoded string of
	138	* bytes, null to reuse the last ciphered block from a previous
	139	* update() (this "residue" method is for legacy support only).
	140	* additionalData additional authentication data as a binary-encoded
	141	* string of bytes, for 'GCM' mode, (default: none).
	142	* tagLength desired length of authentication tag, in bits, for
	143	* 'GCM' mode (0-128, default: 128).
	144	* tag the authentication tag to check if decrypting, as a
	145	* binary-encoded string of bytes.
	146	* output the output the buffer to write to, null to create one.
	147	*/
	148	BlockCipher.prototype.start = function(options) {
	149	options = options \|\| {};
	150	var opts = {};
	151	for(var key in options) {
	152	opts[key] = options[key];
	153	}
	154	opts.decrypt = this._decrypt;
	155	this._finish = false;
	156	this._input = forge.util.createBuffer();
	157	this.output = options.output \|\| forge.util.createBuffer();
	158	this.mode.start(opts);
	159	};
	160
	161	/**
	162	* Updates the next block according to the cipher mode.
	163	*
	164	* @param input the buffer to read from.
	165	*/
	166	BlockCipher.prototype.update = function(input) {
	167	if(input) {
	168	// input given, so empty it into the input buffer
	169	this._input.putBuffer(input);
	170	}
	171
	172	// do cipher operation until it needs more input and not finished
	173	while(!this._op.call(this.mode, this._input, this.output, this._finish) &&
	174	!this._finish) {}
	175
	176	// free consumed memory from input buffer
	177	this._input.compact();
	178	};
	179
	180	/**
	181	* Finishes encrypting or decrypting.
	182	*
	183	* @param pad a padding function to use in CBC mode, null for default,
	184	* signature(blockSize, buffer, decrypt).
	185	*
	186	* @return true if successful, false on error.
	187	*/
	188	BlockCipher.prototype.finish = function(pad) {
	189	// backwards-compatibility w/deprecated padding API
	190	// Note: will overwrite padding functions even after another start() call
	191	if(pad && (this.mode.name === 'ECB' \|\| this.mode.name === 'CBC')) {
	192	this.mode.pad = function(input) {
	193	return pad(this.blockSize, input, false);
	194	};
	195	this.mode.unpad = function(output) {
	196	return pad(this.blockSize, output, true);
	197	};
	198	}
	199
	200	// build options for padding and afterFinish functions
	201	var options = {};
	202	options.decrypt = this._decrypt;
	203
	204	// get # of bytes that won't fill a block
	205	options.overflow = this._input.length() % this.blockSize;
	206
	207	if(!this._decrypt && this.mode.pad) {
	208	if(!this.mode.pad(this._input, options)) {
	209	return false;
	210	}
	211	}
	212
	213	// do final update
	214	this._finish = true;
	215	this.update();
	216
	217	if(this._decrypt && this.mode.unpad) {
	218	if(!this.mode.unpad(this.output, options)) {
	219	return false;
	220	}
	221	}
	222
	223	if(this.mode.afterFinish) {
	224	if(!this.mode.afterFinish(this.output, options)) {
	225	return false;
	226	}
	227	}
	228
	229	return true;
	230	};

Note: See TracBrowser for help on using the repository browser.

Download in other formats: