Home Explore Help
Register Sign In
Shiqi
/
ImageProcess
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 2be75c9f01
Branches Tags
ImageProcess
/
node_modules
/
node-forge
/
lib
/
cipher.js

cipher.js 6.5 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230 
  1. /**
    2. 

  2.  * Cipher base API.
    3. 

  3.  *
    4. 

  4.  * @author Dave Longley
    5. 

  5.  *
    6. 

  6.  * Copyright (c) 2010-2014 Digital Bazaar, Inc.
    7. 

  7.  */
    8. 

  8. var forge = require('./forge');
    9. 

  9. require('./util');
    10. 

  10. 

  11. module.exports = forge.cipher = forge.cipher || {};
    12. 

  12. 

  13. // registered algorithms
    14. 

  14. forge.cipher.algorithms = forge.cipher.algorithms || {};
    15. 

  15. 

  16. /**
    17. 

  17.  * Creates a cipher object that can be used to encrypt data using the given
    18. 

  18.  * algorithm and key. The algorithm may be provided as a string value for a
    19. 

  19.  * previously registered algorithm or it may be given as a cipher algorithm
    20. 

  20.  * API object.
    21. 

  21.  *
    22. 

  22.  * @param algorithm the algorithm to use, either a string or an algorithm API
    23. 

  23.  *          object.
    24. 

  24.  * @param key the key to use, as a binary-encoded string of bytes or a
    25. 

  25.  *          byte buffer.
    26. 

  26.  *
    27. 

  27.  * @return the cipher.
    28. 

  28.  */
    29. 

  29. forge.cipher.createCipher = function(algorithm, key) {
    30. 

  30.   var api = algorithm;
    31. 

  31.   if(typeof api === 'string') {
    32. 

  32.     api = forge.cipher.getAlgorithm(api);
    33. 

  33.     if(api) {
    34. 

  34.       api = api();
    35. 

  35.     }
    36. 

  36.   }
    37. 

  37.   if(!api) {
    38. 

  38.     throw new Error('Unsupported algorithm: ' + algorithm);
    39. 

  39.   }
    40. 

  40. 

  41.   // assume block cipher
    42. 

  42.   return new forge.cipher.BlockCipher({
    43. 

  43.     algorithm: api,
    44. 

  44.     key: key,
    45. 

  45.     decrypt: false
    46. 

  46.   });
    47. 

  47. };
    48. 

  48. 

  49. /**
    50. 

  50.  * Creates a decipher object that can be used to decrypt data using the given
    51. 

  51.  * algorithm and key. The algorithm may be provided as a string value for a
    52. 

  52.  * previously registered algorithm or it may be given as a cipher algorithm
    53. 

  53.  * API object.
    54. 

  54.  *
    55. 

  55.  * @param algorithm the algorithm to use, either a string or an algorithm API
    56. 

  56.  *          object.
    57. 

  57.  * @param key the key to use, as a binary-encoded string of bytes or a
    58. 

  58.  *          byte buffer.
    59. 

  59.  *
    60. 

  60.  * @return the cipher.
    61. 

  61.  */
    62. 

  62. forge.cipher.createDecipher = function(algorithm, key) {
    63. 

  63.   var api = algorithm;
    64. 

  64.   if(typeof api === 'string') {
    65. 

  65.     api = forge.cipher.getAlgorithm(api);
    66. 

  66.     if(api) {
    67. 

  67.       api = api();
    68. 

  68.     }
    69. 

  69.   }
    70. 

  70.   if(!api) {
    71. 

  71.     throw new Error('Unsupported algorithm: ' + algorithm);
    72. 

  72.   }
    73. 

  73. 

  74.   // assume block cipher
    75. 

  75.   return new forge.cipher.BlockCipher({
    76. 

  76.     algorithm: api,
    77. 

  77.     key: key,
    78. 

  78.     decrypt: true
    79. 

  79.   });
    80. 

  80. };
    81. 

  81. 

  82. /**
    83. 

  83.  * Registers an algorithm by name. If the name was already registered, the
    84. 

  84.  * algorithm API object will be overwritten.
    85. 

  85.  *
    86. 

  86.  * @param name the name of the algorithm.
    87. 

  87.  * @param algorithm the algorithm API object.
    88. 

  88.  */
    89. 

  89. forge.cipher.registerAlgorithm = function(name, algorithm) {
    90. 

  90.   name = name.toUpperCase();
    91. 

  91.   forge.cipher.algorithms[name] = algorithm;
    92. 

  92. };
    93. 

  93. 

  94. /**
    95. 

  95.  * Gets a registered algorithm by name.
    96. 

  96.  *
    97. 

  97.  * @param name the name of the algorithm.
    98. 

  98.  *
    99. 

  99.  * @return the algorithm, if found, null if not.
    100. 

  100.  */
    101. 

  101. forge.cipher.getAlgorithm = function(name) {
    102. 

  102.   name = name.toUpperCase();
    103. 

  103.   if(name in forge.cipher.algorithms) {
    104. 

  104.     return forge.cipher.algorithms[name];
    105. 

  105.   }
    106. 

  106.   return null;
    107. 

  107. };
    108. 

  108. 

  109. var BlockCipher = forge.cipher.BlockCipher = function(options) {
    110. 

  110.   this.algorithm = options.algorithm;
    111. 

  111.   this.mode = this.algorithm.mode;
    112. 

  112.   this.blockSize = this.mode.blockSize;
    113. 

  113.   this._finish = false;
    114. 

  114.   this._input = null;
    115. 

  115.   this.output = null;
    116. 

  116.   this._op = options.decrypt ? this.mode.decrypt : this.mode.encrypt;
    117. 

  117.   this._decrypt = options.decrypt;
    118. 

  118.   this.algorithm.initialize(options);
    119. 

  119. };
    120. 

  120. 

  121. /**
    122. 

  122.  * Starts or restarts the encryption or decryption process, whichever
    123. 

  123.  * was previously configured.
    124. 

  124.  *
    125. 

  125.  * For non-GCM mode, the IV may be a binary-encoded string of bytes, an array
    126. 

  126.  * of bytes, a byte buffer, or an array of 32-bit integers. If the IV is in
    127. 

  127.  * bytes, then it must be Nb (16) bytes in length. If the IV is given in as
    128. 

  128.  * 32-bit integers, then it must be 4 integers long.
    129. 

  129.  *
    130. 

  130.  * Note: an IV is not required or used in ECB mode.
    131. 

  131.  *
    132. 

  132.  * For GCM-mode, the IV must be given as a binary-encoded string of bytes or
    133. 

  133.  * a byte buffer. The number of bytes should be 12 (96 bits) as recommended
    134. 

  134.  * by NIST SP-800-38D but another length may be given.
    135. 

  135.  *
    136. 

  136.  * @param options the options to use:
    137. 

  137.  *          iv the initialization vector to use as a binary-encoded string of
    138. 

  138.  *            bytes, null to reuse the last ciphered block from a previous
    139. 

  139.  *            update() (this "residue" method is for legacy support only).
    140. 

  140.  *          additionalData additional authentication data as a binary-encoded
    141. 

  141.  *            string of bytes, for 'GCM' mode, (default: none).
    142. 

  142.  *          tagLength desired length of authentication tag, in bits, for
    143. 

  143.  *            'GCM' mode (0-128, default: 128).
    144. 

  144.  *          tag the authentication tag to check if decrypting, as a
    145. 

  145.  *             binary-encoded string of bytes.
    146. 

  146.  *          output the output the buffer to write to, null to create one.
    147. 

  147.  */
    148. 

  148. BlockCipher.prototype.start = function(options) {
    149. 

  149.   options = options || {};
    150. 

  150.   var opts = {};
    151. 

  151.   for(var key in options) {
    152. 

  152.     opts[key] = options[key];
    153. 

  153.   }
    154. 

  154.   opts.decrypt = this._decrypt;
    155. 

  155.   this._finish = false;
    156. 

  156.   this._input = forge.util.createBuffer();
    157. 

  157.   this.output = options.output || forge.util.createBuffer();
    158. 

  158.   this.mode.start(opts);
    159. 

  159. };
    160. 

  160. 

  161. /**
    162. 

  162.  * Updates the next block according to the cipher mode.
    163. 

  163.  *
    164. 

  164.  * @param input the buffer to read from.
    165. 

  165.  */
    166. 

  166. BlockCipher.prototype.update = function(input) {
    167. 

  167.   if(input) {
    168. 

  168.     // input given, so empty it into the input buffer
    169. 

  169.     this._input.putBuffer(input);
    170. 

  170.   }
    171. 

  171. 

  172.   // do cipher operation until it needs more input and not finished
    173. 

  173.   while(!this._op.call(this.mode, this._input, this.output, this._finish) &&
    174. 

  174.     !this._finish) {}
    175. 

  175. 

  176.   // free consumed memory from input buffer
    177. 

  177.   this._input.compact();
    178. 

  178. };
    179. 

  179. 

  180. /**
    181. 

  181.  * Finishes encrypting or decrypting.
    182. 

  182.  *
    183. 

  183.  * @param pad a padding function to use in CBC mode, null for default,
    184. 

  184.  *          signature(blockSize, buffer, decrypt).
    185. 

  185.  *
    186. 

  186.  * @return true if successful, false on error.
    187. 

  187.  */
    188. 

  188. BlockCipher.prototype.finish = function(pad) {
    189. 

  189.   // backwards-compatibility w/deprecated padding API
    190. 

  190.   // Note: will overwrite padding functions even after another start() call
    191. 

  191.   if(pad && (this.mode.name === 'ECB' || this.mode.name === 'CBC')) {
    192. 

  192.     this.mode.pad = function(input) {
    193. 

  193.       return pad(this.blockSize, input, false);
    194. 

  194.     };
    195. 

  195.     this.mode.unpad = function(output) {
    196. 

  196.       return pad(this.blockSize, output, true);
    197. 

  197.     };
    198. 

  198.   }
    199. 

  199. 

  200.   // build options for padding and afterFinish functions
    201. 

  201.   var options = {};
    202. 

  202.   options.decrypt = this._decrypt;
    203. 

  203. 

  204.   // get # of bytes that won't fill a block
    205. 

  205.   options.overflow = this._input.length() % this.blockSize;
    206. 

  206. 

  207.   if(!this._decrypt && this.mode.pad) {
    208. 

  208.     if(!this.mode.pad(this._input, options)) {
    209. 

  209.       return false;
    210. 

  210.     }
    211. 

  211.   }
    212. 

  212. 

  213.   // do final update
    214. 

  214.   this._finish = true;
    215. 

  215.   this.update();
    216. 

  216. 

  217.   if(this._decrypt && this.mode.unpad) {
    218. 

  218.     if(!this.mode.unpad(this.output, options)) {
    219. 

  219.       return false;
    220. 

  220.     }
    221. 

  221.   }
    222. 

  222. 

  223.   if(this.mode.afterFinish) {
    224. 

  224.     if(!this.mode.afterFinish(this.output, options)) {
    225. 

  225.       return false;
    226. 

  226.     }
    227. 

  227.   }
    228. 

  228. 

  229.   return true;
    230. 

  230. };
    231.