node-opcua-crypto 1.11.0 → 2.0.0

package/dist/source/public_private_match.d.ts

@@ -1,3 +1,3 @@
-import { Certificate } from "./common";
-import { PrivateKey } from "./common";
-export declare function publicKeyAndPrivateKeyMatches(certificate: Certificate, privateKey: PrivateKey): boolean;
+import { Certificate, PrivateKey } from "./common";
+export declare function publicKeyAndPrivateKeyMatches(certificate: Certificate, privateKey: PrivateKey): boolean;
+export declare function certificateMatchesPrivateKey(certificate: Certificate, privateKey: PrivateKey): boolean;

package/dist/source/public_private_match.js

@@ -1,17 +1,38 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.publicKeyAndPrivateKeyMatches = void 0;
-const _1 = require(".");
-const explore_private_key_1 = require("./explore_private_key");
-function publicKeyAndPrivateKeyMatches(certificate, privateKey) {
-    const i = (0, _1.exploreCertificate)(certificate);
-    const j = (0, explore_private_key_1.explorePrivateKey)(privateKey);
-    const modulus1 = i.tbsCertificate.subjectPublicKeyInfo.subjectPublicKey.modulus;
-    const modulus2 = j.modulus;
-    if (modulus1.length != modulus2.length) {
-        return false;
-    }
-    return modulus1.toString("hex") === modulus2.toString("hex");
-}
-exports.publicKeyAndPrivateKeyMatches = publicKeyAndPrivateKeyMatches;
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.certificateMatchesPrivateKey = exports.publicKeyAndPrivateKeyMatches = void 0;
+const explore_private_key_1 = require("./explore_private_key");
+const crypto_utils_1 = require("./crypto_utils");
+const crypto_explore_certificate_1 = require("./crypto_explore_certificate");
+function publicKeyAndPrivateKeyMatches(certificate, privateKey) {
+    const i = (0, crypto_explore_certificate_1.exploreCertificate)(certificate);
+    const j = (0, explore_private_key_1.explorePrivateKey)(privateKey);
+    const modulus1 = i.tbsCertificate.subjectPublicKeyInfo.subjectPublicKey.modulus;
+    const modulus2 = j.modulus;
+    if (modulus1.length != modulus2.length) {
+        return false;
+    }
+    return modulus1.toString("hex") === modulus2.toString("hex");
+}
+exports.publicKeyAndPrivateKeyMatches = publicKeyAndPrivateKeyMatches;
+/**
+ * check that the given certificate matches the given private key
+ * @param certificate
+ * @param privateKey
+ */
+function certificateMatchesPrivateKeyPEM(certificate, privateKey, blockSize) {
+    const initialBuffer = Buffer.from("Lorem Ipsum");
+    const encryptedBuffer = (0, crypto_utils_1.publicEncrypt_long)(initialBuffer, certificate, blockSize, 11);
+    const decryptedBuffer = (0, crypto_utils_1.privateDecrypt_long)(encryptedBuffer, privateKey, blockSize);
+    const finalString = decryptedBuffer.toString("utf-8");
+    return initialBuffer.toString("utf-8") === finalString;
+}
+function certificateMatchesPrivateKey(certificate, privateKey) {
+    const e = (0, explore_private_key_1.explorePrivateKey)(privateKey);
+    const blockSize = e.modulus.length;
+    const certificatePEM = (0, crypto_utils_1.toPem)(certificate, "CERTIFICATE");
+    const privateKeyPEM = (0, crypto_utils_1.toPem)(privateKey, "RSA PRIVATE KEY");
+    return certificateMatchesPrivateKeyPEM(certificatePEM, privateKeyPEM, blockSize);
+}
+exports.certificateMatchesPrivateKey = certificateMatchesPrivateKey;
 //# sourceMappingURL=public_private_match.js.map

package/dist/source/public_private_match.js.map

@@ -1 +1 @@
-{"version":3,"file":"public_private_match.js","sourceRoot":"","sources":["../../source/public_private_match.ts"],"names":[],"mappings":";;;AAAA,wBAAuC;AAGvC,+DAA0D;AAE1D,SAAiB,6BAA6B,CAAC,WAAwB,EAAC,UAAsB;IAE1F,MAAM,CAAC,GAAG,IAAA,qBAAkB,EAAC,WAAW,CAAC,CAAC;IAC1C,MAAM,CAAC,GAAG,IAAA,uCAAiB,EAAC,UAAU,CAAC,CAAC;IAExC,MAAM,QAAQ,GAAG,CAAC,CAAC,cAAc,CAAC,oBAAoB,CAAC,gBAAgB,CAAC,OAAO,CAAC;IAChF,MAAM,QAAQ,GAAG,CAAC,CAAC,OAAO,CAAC;IAE3B,IAAI,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,MAAM,EAAE;QACpC,OAAO,KAAK,CAAC;KAChB;IACD,OAAO,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,KAAK,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;AACjE,CAAC;AAZD,sEAYC"}
+{"version":3,"file":"public_private_match.js","sourceRoot":"","sources":["../../source/public_private_match.ts"],"names":[],"mappings":";;;AAAA,+DAA0D;AAE1D,iDAAgF;AAChF,6EAAkE;AAElE,SAAiB,6BAA6B,CAAC,WAAwB,EAAC,UAAsB;IAE1F,MAAM,CAAC,GAAG,IAAA,+CAAkB,EAAC,WAAW,CAAC,CAAC;IAC1C,MAAM,CAAC,GAAG,IAAA,uCAAiB,EAAC,UAAU,CAAC,CAAC;IAExC,MAAM,QAAQ,GAAG,CAAC,CAAC,cAAc,CAAC,oBAAoB,CAAC,gBAAgB,CAAC,OAAO,CAAC;IAChF,MAAM,QAAQ,GAAG,CAAC,CAAC,OAAO,CAAC;IAE3B,IAAI,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,MAAM,EAAE;QACpC,OAAO,KAAK,CAAC;KAChB;IACD,OAAO,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,KAAK,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;AACjE,CAAC;AAZD,sEAYC;AAID;;;;GAIG;AACH,SAAS,+BAA+B,CAAC,WAA2B,EAAE,UAAyB,EAAE,SAAiB;IAC9G,MAAM,aAAa,GAAG,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;IACjD,MAAM,eAAe,GAAG,IAAA,iCAAkB,EAAC,aAAa,EAAE,WAAW,EAAE,SAAS,EAAE,EAAE,CAAC,CAAC;IACtF,MAAM,eAAe,GAAG,IAAA,kCAAmB,EAAC,eAAe,EAAE,UAAU,EAAE,SAAS,CAAC,CAAC;IACpF,MAAM,WAAW,GAAG,eAAe,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IACtD,OAAO,aAAa,CAAC,QAAQ,CAAC,OAAO,CAAC,KAAK,WAAW,CAAC;AAC3D,CAAC;AAED,SAAgB,4BAA4B,CAAC,WAAwB,EAAE,UAAsB;IACzF,MAAM,CAAC,GAAG,IAAA,uCAAiB,EAAC,UAAU,CAAC,CAAC;IACxC,MAAM,SAAS,GAAG,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC;IACnC,MAAM,cAAc,GAAG,IAAA,oBAAK,EAAC,WAAW,EAAE,aAAa,CAAC,CAAC;IACzD,MAAM,aAAa,GAAG,IAAA,oBAAK,EAAC,UAAU,EAAE,iBAAiB,CAAC,CAAC;IAC3D,OAAO,+BAA+B,CAAC,cAAc,EAAE,aAAa,EAAE,SAAS,CAAC,CAAC;AACrF,CAAC;AAND,oEAMC"}

package/dist/source/verify_certificate_signature.d.ts

@@ -1,10 +1,10 @@
-/// <reference types="node" />
-import { Certificate } from "./common";
-export declare function verifyCertificateOrClrSignature(certificateOrCrl: Buffer, parentCertificate: Certificate): boolean;
-export declare function verifyCertificateSignature(certificate: Certificate, parentCertificate: Certificate): boolean;
-export declare function verifyCertificateRevocationListSignature(certificateRevocationList: Certificate, parentCertificate: Certificate): boolean;
-export declare type _VerifyStatus = "BadCertificateIssuerUseNotAllowed" | "BadCertificateInvalid" | "Good";
-export declare function verifyCertificateChain(certificateChain: Certificate[]): Promise<{
-    status: _VerifyStatus;
-    reason: string;
-}>;
+/// <reference types="node" />
+import { Certificate } from "./common";
+export declare function verifyCertificateOrClrSignature(certificateOrCrl: Buffer, parentCertificate: Certificate): boolean;
+export declare function verifyCertificateSignature(certificate: Certificate, parentCertificate: Certificate): boolean;
+export declare function verifyCertificateRevocationListSignature(certificateRevocationList: Certificate, parentCertificate: Certificate): boolean;
+export type _VerifyStatus = "BadCertificateIssuerUseNotAllowed" | "BadCertificateInvalid" | "Good";
+export declare function verifyCertificateChain(certificateChain: Certificate[]): Promise<{
+    status: _VerifyStatus;
+    reason: string;
+}>;

package/dist/source/verify_certificate_signature.js

@@ -1,102 +1,102 @@
-"use strict";
-// tslint:disable: no-console
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.verifyCertificateChain = exports.verifyCertificateRevocationListSignature = exports.verifyCertificateSignature = exports.verifyCertificateOrClrSignature = void 0;
-// Now that we got a hash of the original certificate,
-// we need to verify if we can obtain the same hash by using the same hashing function
-// (in this case SHA-384). In order to do that, we need to extract just the body of
-// the signed certificate. Which, in our case, is everything but the signature.
-// The start of the body is always the first digit of the second line of the following command:
-const crypto = require("crypto");
-const crypto_explore_certificate_1 = require("./crypto_explore_certificate");
-const crypto_utils_1 = require("./crypto_utils");
-const asn1_1 = require("./asn1");
-function verifyCertificateOrClrSignature(certificateOrCrl, parentCertificate) {
-    const block_info = (0, asn1_1.readTag)(certificateOrCrl, 0);
-    const blocks = (0, asn1_1._readStruct)(certificateOrCrl, block_info);
-    const bufferToBeSigned = certificateOrCrl.slice(block_info.position, blocks[1].position - 2);
-    //xx console.log("bufferToBeSigned  = ", bufferToBeSigned.length, bufferToBeSigned.toString("hex").substr(0, 50), bufferToBeSigned.toString("hex").substr(-10));
-    const signatureAlgorithm = (0, asn1_1._readAlgorithmIdentifier)(certificateOrCrl, blocks[1]);
-    const signatureValue = (0, asn1_1._readSignatureValueBin)(certificateOrCrl, blocks[2]);
-    const p = (0, crypto_explore_certificate_1.split_der)(parentCertificate)[0];
-    //xx    const publicKey = extractPublicKeyFromCertificateSync(p);
-    const certPem = (0, crypto_utils_1.toPem)(p, "CERTIFICATE");
-    const verify = crypto.createVerify(signatureAlgorithm.identifier);
-    verify.update(bufferToBeSigned);
-    verify.end();
-    return verify.verify(certPem, signatureValue);
-}
-exports.verifyCertificateOrClrSignature = verifyCertificateOrClrSignature;
-function verifyCertificateSignature(certificate, parentCertificate) {
-    return verifyCertificateOrClrSignature(certificate, parentCertificate);
-}
-exports.verifyCertificateSignature = verifyCertificateSignature;
-function verifyCertificateRevocationListSignature(certificateRevocationList, parentCertificate) {
-    return verifyCertificateOrClrSignature(certificateRevocationList, parentCertificate);
-}
-exports.verifyCertificateRevocationListSignature = verifyCertificateRevocationListSignature;
-function verifyCertificateChain(certificateChain) {
-    return __awaiter(this, void 0, void 0, function* () {
-        // verify that all the certificate
-        // second certificate must be used for CertificateSign
-        for (let index = 1; index < certificateChain.length; index++) {
-            const cert = certificateChain[index - 1];
-            const certParent = certificateChain[index];
-            // parent child must have keyCertSign
-            const certParentInfo = (0, crypto_explore_certificate_1.exploreCertificate)(certParent);
-            const keyUsage = certParentInfo.tbsCertificate.extensions.keyUsage;
-            // istanbul ignore next
-            if (!keyUsage.keyCertSign) {
-                return {
-                    status: "BadCertificateIssuerUseNotAllowed",
-                    reason: "One of the certificate in the chain has not keyUsage set for Certificate Signing",
-                };
-            }
-            const parentSignChild = verifyCertificateSignature(cert, certParent);
-            if (!parentSignChild) {
-                return {
-                    status: "BadCertificateInvalid",
-                    reason: "One of the certificate in the chain is not signing the previous certificate",
-                };
-            }
-            const certInfo = (0, crypto_explore_certificate_1.exploreCertificate)(cert);
-            // istanbul ignore next
-            if (!certInfo.tbsCertificate.extensions) {
-                return {
-                    status: "BadCertificateInvalid",
-                    reason: "Cannot find X409 Extension 3 in certificate",
-                };
-            }
-            // istanbul ignore next
-            if (!certParentInfo.tbsCertificate.extensions || !certInfo.tbsCertificate.extensions.authorityKeyIdentifier) {
-                return {
-                    status: "BadCertificateInvalid",
-                    reason: "Cannot find X409 Extension 3 in certificate (parent)",
-                };
-            }
-            // istanbul ignore next
-            if (certParentInfo.tbsCertificate.extensions.subjectKeyIdentifier !==
-                certInfo.tbsCertificate.extensions.authorityKeyIdentifier.keyIdentifier) {
-                return {
-                    status: "BadCertificateInvalid",
-                    reason: "subjectKeyIdentifier authorityKeyIdentifier in child certificate do not match subjectKeyIdentifier of parent certificate",
-                };
-            }
-        }
-        return {
-            status: "Good",
-            reason: `certificate chain is valid(length = ${certificateChain.length})`,
-        };
-    });
-}
-exports.verifyCertificateChain = verifyCertificateChain;
+"use strict";
+// tslint:disable: no-console
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.verifyCertificateChain = exports.verifyCertificateRevocationListSignature = exports.verifyCertificateSignature = exports.verifyCertificateOrClrSignature = void 0;
+// Now that we got a hash of the original certificate,
+// we need to verify if we can obtain the same hash by using the same hashing function
+// (in this case SHA-384). In order to do that, we need to extract just the body of
+// the signed certificate. Which, in our case, is everything but the signature.
+// The start of the body is always the first digit of the second line of the following command:
+const crypto = require("crypto");
+const crypto_explore_certificate_1 = require("./crypto_explore_certificate");
+const crypto_utils_1 = require("./crypto_utils");
+const asn1_1 = require("./asn1");
+function verifyCertificateOrClrSignature(certificateOrCrl, parentCertificate) {
+    const block_info = (0, asn1_1.readTag)(certificateOrCrl, 0);
+    const blocks = (0, asn1_1._readStruct)(certificateOrCrl, block_info);
+    const bufferToBeSigned = certificateOrCrl.slice(block_info.position, blocks[1].position - 2);
+    //xx console.log("bufferToBeSigned  = ", bufferToBeSigned.length, bufferToBeSigned.toString("hex").substr(0, 50), bufferToBeSigned.toString("hex").substr(-10));
+    const signatureAlgorithm = (0, asn1_1._readAlgorithmIdentifier)(certificateOrCrl, blocks[1]);
+    const signatureValue = (0, asn1_1._readSignatureValueBin)(certificateOrCrl, blocks[2]);
+    const p = (0, crypto_explore_certificate_1.split_der)(parentCertificate)[0];
+    //xx    const publicKey = extractPublicKeyFromCertificateSync(p);
+    const certPem = (0, crypto_utils_1.toPem)(p, "CERTIFICATE");
+    const verify = crypto.createVerify(signatureAlgorithm.identifier);
+    verify.update(bufferToBeSigned);
+    verify.end();
+    return verify.verify(certPem, signatureValue);
+}
+exports.verifyCertificateOrClrSignature = verifyCertificateOrClrSignature;
+function verifyCertificateSignature(certificate, parentCertificate) {
+    return verifyCertificateOrClrSignature(certificate, parentCertificate);
+}
+exports.verifyCertificateSignature = verifyCertificateSignature;
+function verifyCertificateRevocationListSignature(certificateRevocationList, parentCertificate) {
+    return verifyCertificateOrClrSignature(certificateRevocationList, parentCertificate);
+}
+exports.verifyCertificateRevocationListSignature = verifyCertificateRevocationListSignature;
+function verifyCertificateChain(certificateChain) {
+    return __awaiter(this, void 0, void 0, function* () {
+        // verify that all the certificate
+        // second certificate must be used for CertificateSign
+        for (let index = 1; index < certificateChain.length; index++) {
+            const cert = certificateChain[index - 1];
+            const certParent = certificateChain[index];
+            // parent child must have keyCertSign
+            const certParentInfo = (0, crypto_explore_certificate_1.exploreCertificate)(certParent);
+            const keyUsage = certParentInfo.tbsCertificate.extensions.keyUsage;
+            // istanbul ignore next
+            if (!keyUsage.keyCertSign) {
+                return {
+                    status: "BadCertificateIssuerUseNotAllowed",
+                    reason: "One of the certificate in the chain has not keyUsage set for Certificate Signing",
+                };
+            }
+            const parentSignChild = verifyCertificateSignature(cert, certParent);
+            if (!parentSignChild) {
+                return {
+                    status: "BadCertificateInvalid",
+                    reason: "One of the certificate in the chain is not signing the previous certificate",
+                };
+            }
+            const certInfo = (0, crypto_explore_certificate_1.exploreCertificate)(cert);
+            // istanbul ignore next
+            if (!certInfo.tbsCertificate.extensions) {
+                return {
+                    status: "BadCertificateInvalid",
+                    reason: "Cannot find X409 Extension 3 in certificate",
+                };
+            }
+            // istanbul ignore next
+            if (!certParentInfo.tbsCertificate.extensions || !certInfo.tbsCertificate.extensions.authorityKeyIdentifier) {
+                return {
+                    status: "BadCertificateInvalid",
+                    reason: "Cannot find X409 Extension 3 in certificate (parent)",
+                };
+            }
+            // istanbul ignore next
+            if (certParentInfo.tbsCertificate.extensions.subjectKeyIdentifier !==
+                certInfo.tbsCertificate.extensions.authorityKeyIdentifier.keyIdentifier) {
+                return {
+                    status: "BadCertificateInvalid",
+                    reason: "subjectKeyIdentifier authorityKeyIdentifier in child certificate do not match subjectKeyIdentifier of parent certificate",
+                };
+            }
+        }
+        return {
+            status: "Good",
+            reason: `certificate chain is valid(length = ${certificateChain.length})`,
+        };
+    });
+}
+exports.verifyCertificateChain = verifyCertificateChain;
 //# sourceMappingURL=verify_certificate_signature.js.map

package/dist/source_nodejs/index.d.ts

@@ -1,3 +1,3 @@
-export * from "./read";
-export * from "./read_certificate_revocation_list";
-export * from "./read_certificate_signing_request";
+export * from "./read";
+export * from "./read_certificate_revocation_list";
+export * from "./read_certificate_signing_request";

package/dist/source_nodejs/index.js

@@ -1,20 +1,20 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __exportStar = (this && this.__exportStar) || function(m, exports) {
-    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-__exportStar(require("./read"), exports);
-__exportStar(require("./read_certificate_revocation_list"), exports);
-__exportStar(require("./read_certificate_signing_request"), exports);
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./read"), exports);
+__exportStar(require("./read_certificate_revocation_list"), exports);
+__exportStar(require("./read_certificate_signing_request"), exports);
 //# sourceMappingURL=index.js.map

package/dist/source_nodejs/read.d.ts

@@ -1,29 +1,29 @@
-import { Certificate, CertificatePEM, PrivateKey, PrivateKeyPEM, PublicKey, PublicKeyPEM } from "../source/common";
-/**
- * @method readKeyPem
- * @param filename
- */
-export declare function readKeyPem(filename: string): string;
-/**
- * read a DER or PEM certificate from file
- */
-export declare function readCertificate(filename: string): Certificate;
-/**
- * read a DER or PEM certificate from file
- */
-export declare function readPublicKey(filename: string): PublicKey;
-/**
- * read a DER or PEM certificate from file
- */
-export declare function readPrivateKey(filename: string): PrivateKey;
-export declare function readCertificatePEM(filename: string): CertificatePEM;
-export declare function readPublicKeyPEM(filename: string): PublicKeyPEM;
-export declare function readPrivateKeyPEM(filename: string): PrivateKeyPEM;
-export declare function setCertificateStore(store: string): string;
-export declare function read_sshkey_as_pem(filename: string): PublicKeyPEM;
-/**
- *
- * @param filename
- */
-export declare function readPrivateRsaKey(filename: string): PrivateKeyPEM;
-export declare function readPublicRsaKey(filename: string): PublicKeyPEM;
+import { Certificate, CertificatePEM, PrivateKey, PrivateKeyPEM, PublicKey, PublicKeyPEM } from "../source/common";
+/**
+ * @method readKeyPem
+ * @param filename
+ */
+export declare function readKeyPem(filename: string): string;
+/**
+ * read a DER or PEM certificate from file
+ */
+export declare function readCertificate(filename: string): Certificate;
+/**
+ * read a DER or PEM certificate from file
+ */
+export declare function readPublicKey(filename: string): PublicKey;
+/**
+ * read a DER or PEM certificate from file
+ */
+export declare function readPrivateKey(filename: string): PrivateKey;
+export declare function readCertificatePEM(filename: string): CertificatePEM;
+export declare function readPublicKeyPEM(filename: string): PublicKeyPEM;
+export declare function readPrivateKeyPEM(filename: string): PrivateKeyPEM;
+export declare function setCertificateStore(store: string): string;
+export declare function read_sshkey_as_pem(filename: string): PublicKeyPEM;
+/**
+ *
+ * @param filename
+ */
+export declare function readPrivateRsaKey(filename: string): PrivateKeyPEM;
+export declare function readPublicRsaKey(filename: string): PublicKeyPEM;

package/dist/source_nodejs/read.js

@@ -1,95 +1,95 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.readPublicRsaKey = exports.readPrivateRsaKey = exports.read_sshkey_as_pem = exports.setCertificateStore = exports.readPrivateKeyPEM = exports.readPublicKeyPEM = exports.readCertificatePEM = exports.readPrivateKey = exports.readPublicKey = exports.readCertificate = exports.readKeyPem = void 0;
-const assert = require("assert");
-const fs = require("fs");
-const path = require("path");
-const crypto_utils_1 = require("../source/crypto_utils");
-const sshpk = require("sshpk");
-/**
- * @method readKeyPem
- * @param filename
- */
-function readKeyPem(filename) {
-    const raw_key = fs.readFileSync(filename, "utf8");
-    const pemType = (0, crypto_utils_1.identifyPemType)(raw_key);
-    assert(typeof pemType === "string"); // must have a valid pem type
-    return raw_key;
-}
-exports.readKeyPem = readKeyPem;
-function _readPemFile(filename) {
-    assert(typeof filename === "string");
-    return fs.readFileSync(filename, "ascii");
-}
-function _readPemOrDerFileAsDER(filename) {
-    if (filename.match(/.*\.der/)) {
-        return fs.readFileSync(filename);
-    }
-    const raw_key = _readPemFile(filename);
-    return (0, crypto_utils_1.convertPEMtoDER)(raw_key);
-}
-/**
- * read a DER or PEM certificate from file
- */
-function readCertificate(filename) {
-    return _readPemOrDerFileAsDER(filename);
-}
-exports.readCertificate = readCertificate;
-/**
- * read a DER or PEM certificate from file
- */
-function readPublicKey(filename) {
-    return _readPemOrDerFileAsDER(filename);
-}
-exports.readPublicKey = readPublicKey;
-/**
- * read a DER or PEM certificate from file
- */
-function readPrivateKey(filename) {
-    return _readPemOrDerFileAsDER(filename);
-}
-exports.readPrivateKey = readPrivateKey;
-function readCertificatePEM(filename) {
-    return _readPemFile(filename);
-}
-exports.readCertificatePEM = readCertificatePEM;
-function readPublicKeyPEM(filename) {
-    return _readPemFile(filename);
-}
-exports.readPublicKeyPEM = readPublicKeyPEM;
-function readPrivateKeyPEM(filename) {
-    return _readPemFile(filename);
-}
-exports.readPrivateKeyPEM = readPrivateKeyPEM;
-let __certificate_store = path.join(__dirname, "../../certificates/");
-function setCertificateStore(store) {
-    const old_store = __certificate_store;
-    __certificate_store = store;
-    return old_store;
-}
-exports.setCertificateStore = setCertificateStore;
-function read_sshkey_as_pem(filename) {
-    if (filename.substr(0, 1) !== ".") {
-        filename = __certificate_store + filename;
-    }
-    const key = fs.readFileSync(filename, "ascii");
-    const sshKey = sshpk.parseKey(key, "ssh");
-    return sshKey.toString("pkcs8");
-}
-exports.read_sshkey_as_pem = read_sshkey_as_pem;
-/**
- *
- * @param filename
- */
-function readPrivateRsaKey(filename) {
-    if (filename.substr(0, 1) !== "." && !fs.existsSync(filename)) {
-        filename = __certificate_store + filename;
-    }
-    return fs.readFileSync(filename, "ascii");
-}
-exports.readPrivateRsaKey = readPrivateRsaKey;
-function readPublicRsaKey(filename) {
-    return readPrivateRsaKey(filename);
-}
-exports.readPublicRsaKey = readPublicRsaKey;
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.readPublicRsaKey = exports.readPrivateRsaKey = exports.read_sshkey_as_pem = exports.setCertificateStore = exports.readPrivateKeyPEM = exports.readPublicKeyPEM = exports.readCertificatePEM = exports.readPrivateKey = exports.readPublicKey = exports.readCertificate = exports.readKeyPem = void 0;
+const assert = require("assert");
+const fs = require("fs");
+const path = require("path");
+const crypto_utils_1 = require("../source/crypto_utils");
+const sshpk = require("sshpk");
+/**
+ * @method readKeyPem
+ * @param filename
+ */
+function readKeyPem(filename) {
+    const raw_key = fs.readFileSync(filename, "utf8");
+    const pemType = (0, crypto_utils_1.identifyPemType)(raw_key);
+    assert(typeof pemType === "string"); // must have a valid pem type
+    return raw_key;
+}
+exports.readKeyPem = readKeyPem;
+function _readPemFile(filename) {
+    assert(typeof filename === "string");
+    return fs.readFileSync(filename, "ascii");
+}
+function _readPemOrDerFileAsDER(filename) {
+    if (filename.match(/.*\.der/)) {
+        return fs.readFileSync(filename);
+    }
+    const raw_key = _readPemFile(filename);
+    return (0, crypto_utils_1.convertPEMtoDER)(raw_key);
+}
+/**
+ * read a DER or PEM certificate from file
+ */
+function readCertificate(filename) {
+    return _readPemOrDerFileAsDER(filename);
+}
+exports.readCertificate = readCertificate;
+/**
+ * read a DER or PEM certificate from file
+ */
+function readPublicKey(filename) {
+    return _readPemOrDerFileAsDER(filename);
+}
+exports.readPublicKey = readPublicKey;
+/**
+ * read a DER or PEM certificate from file
+ */
+function readPrivateKey(filename) {
+    return _readPemOrDerFileAsDER(filename);
+}
+exports.readPrivateKey = readPrivateKey;
+function readCertificatePEM(filename) {
+    return _readPemFile(filename);
+}
+exports.readCertificatePEM = readCertificatePEM;
+function readPublicKeyPEM(filename) {
+    return _readPemFile(filename);
+}
+exports.readPublicKeyPEM = readPublicKeyPEM;
+function readPrivateKeyPEM(filename) {
+    return _readPemFile(filename);
+}
+exports.readPrivateKeyPEM = readPrivateKeyPEM;
+let __certificate_store = path.join(__dirname, "../../certificates/");
+function setCertificateStore(store) {
+    const old_store = __certificate_store;
+    __certificate_store = store;
+    return old_store;
+}
+exports.setCertificateStore = setCertificateStore;
+function read_sshkey_as_pem(filename) {
+    if (filename.substring(0, 1) !== ".") {
+        filename = __certificate_store + filename;
+    }
+    const key = fs.readFileSync(filename, "ascii");
+    const sshKey = sshpk.parseKey(key, "ssh");
+    return sshKey.toString("pkcs8");
+}
+exports.read_sshkey_as_pem = read_sshkey_as_pem;
+/**
+ *
+ * @param filename
+ */
+function readPrivateRsaKey(filename) {
+    if (filename.substring(0, 1) !== "." && !fs.existsSync(filename)) {
+        filename = __certificate_store + filename;
+    }
+    return fs.readFileSync(filename, "ascii");
+}
+exports.readPrivateRsaKey = readPrivateRsaKey;
+function readPublicRsaKey(filename) {
+    return readPrivateRsaKey(filename);
+}
+exports.readPublicRsaKey = readPublicRsaKey;
 //# sourceMappingURL=read.js.map

package/dist/source_nodejs/read.js.map

@@ -1 +1 @@
-{"version":3,"file":"read.js","sourceRoot":"","sources":["../../source_nodejs/read.ts"],"names":[],"mappings":";;;AAAA,iCAAiC;AACjC,yBAAyB;AACzB,6BAA6B;AAE7B,yDAA0E;AAC1E,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;AAE/B;;;GAGG;AACH,SAAgB,UAAU,CAAC,QAAgB;IACvC,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IAClD,MAAM,OAAO,GAAG,IAAA,8BAAe,EAAC,OAAO,CAAC,CAAC;IACzC,MAAM,CAAC,OAAO,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,6BAA6B;IAClE,OAAO,OAAO,CAAC;AACnB,CAAC;AALD,gCAKC;AAED,SAAS,YAAY,CAAC,QAAgB;IAClC,MAAM,CAAC,OAAO,QAAQ,KAAK,QAAQ,CAAC,CAAC;IACrC,OAAO,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;AAC9C,CAAC;AAED,SAAS,sBAAsB,CAAC,QAAgB;IAC5C,IAAI,QAAQ,CAAC,KAAK,CAAC,SAAS,CAAC,EAAE;QAC3B,OAAO,EAAE,CAAC,YAAY,CAAC,QAAQ,CAAW,CAAC;KAC9C;IACD,MAAM,OAAO,GAAW,YAAY,CAAC,QAAQ,CAAC,CAAC;IAC/C,OAAO,IAAA,8BAAe,EAAC,OAAO,CAAC,CAAC;AACpC,CAAC;AAED;;GAEG;AACH,SAAgB,eAAe,CAAC,QAAgB;IAC5C,OAAO,sBAAsB,CAAC,QAAQ,CAAgB,CAAC;AAC3D,CAAC;AAFD,0CAEC;AAED;;GAEG;AACH,SAAgB,aAAa,CAAC,QAAgB;IAC1C,OAAO,sBAAsB,CAAC,QAAQ,CAAc,CAAC;AACzD,CAAC;AAFD,sCAEC;AAED;;GAEG;AACH,SAAgB,cAAc,CAAC,QAAgB;IAC3C,OAAO,sBAAsB,CAAC,QAAQ,CAAe,CAAC;AAC1D,CAAC;AAFD,wCAEC;AAED,SAAgB,kBAAkB,CAAC,QAAgB;IAC/C,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC;AAClC,CAAC;AAFD,gDAEC;AAED,SAAgB,gBAAgB,CAAC,QAAgB;IAC7C,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC;AAClC,CAAC;AAFD,4CAEC;AAED,SAAgB,iBAAiB,CAAC,QAAgB;IAC9C,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC;AAClC,CAAC;AAFD,8CAEC;AACD,IAAI,mBAAmB,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,qBAAqB,CAAC,CAAC;AAEtE,SAAgB,mBAAmB,CAAC,KAAa;IAC7C,MAAM,SAAS,GAAG,mBAAmB,CAAC;IACtC,mBAAmB,GAAG,KAAK,CAAC;IAC5B,OAAO,SAAS,CAAC;AACrB,CAAC;AAJD,kDAIC;AAED,SAAgB,kBAAkB,CAAC,QAAgB;IAC/C,IAAI,QAAQ,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,GAAG,EAAE;QAC/B,QAAQ,GAAG,mBAAmB,GAAG,QAAQ,CAAC;KAC7C;IACD,MAAM,GAAG,GAAW,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IACvD,MAAM,MAAM,GAAG,KAAK,CAAC,QAAQ,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;IAE1C,OAAO,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAQ,CAAC;AAC3C,CAAC;AARD,gDAQC;AAED;;;GAGG;AACH,SAAgB,iBAAiB,CAAC,QAAgB;IAC9C,IAAI,QAAQ,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,GAAG,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE;QAC3D,QAAQ,GAAG,mBAAmB,GAAG,QAAQ,CAAC;KAC7C;IACD,OAAO,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAW,CAAC;AACxD,CAAC;AALD,8CAKC;AAED,SAAgB,gBAAgB,CAAC,QAAgB;IAC7C,OAAO,iBAAiB,CAAC,QAAQ,CAAC,CAAC;AACvC,CAAC;AAFD,4CAEC"}
+{"version":3,"file":"read.js","sourceRoot":"","sources":["../../source_nodejs/read.ts"],"names":[],"mappings":";;;AAAA,iCAAiC;AACjC,yBAAyB;AACzB,6BAA6B;AAE7B,yDAA0E;AAC1E,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;AAE/B;;;GAGG;AACH,SAAgB,UAAU,CAAC,QAAgB;IACvC,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IAClD,MAAM,OAAO,GAAG,IAAA,8BAAe,EAAC,OAAO,CAAC,CAAC;IACzC,MAAM,CAAC,OAAO,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,6BAA6B;IAClE,OAAO,OAAO,CAAC;AACnB,CAAC;AALD,gCAKC;AAED,SAAS,YAAY,CAAC,QAAgB;IAClC,MAAM,CAAC,OAAO,QAAQ,KAAK,QAAQ,CAAC,CAAC;IACrC,OAAO,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;AAC9C,CAAC;AAED,SAAS,sBAAsB,CAAC,QAAgB;IAC5C,IAAI,QAAQ,CAAC,KAAK,CAAC,SAAS,CAAC,EAAE;QAC3B,OAAO,EAAE,CAAC,YAAY,CAAC,QAAQ,CAAW,CAAC;KAC9C;IACD,MAAM,OAAO,GAAW,YAAY,CAAC,QAAQ,CAAC,CAAC;IAC/C,OAAO,IAAA,8BAAe,EAAC,OAAO,CAAC,CAAC;AACpC,CAAC;AAED;;GAEG;AACH,SAAgB,eAAe,CAAC,QAAgB;IAC5C,OAAO,sBAAsB,CAAC,QAAQ,CAAgB,CAAC;AAC3D,CAAC;AAFD,0CAEC;AAED;;GAEG;AACH,SAAgB,aAAa,CAAC,QAAgB;IAC1C,OAAO,sBAAsB,CAAC,QAAQ,CAAc,CAAC;AACzD,CAAC;AAFD,sCAEC;AAED;;GAEG;AACH,SAAgB,cAAc,CAAC,QAAgB;IAC3C,OAAO,sBAAsB,CAAC,QAAQ,CAAe,CAAC;AAC1D,CAAC;AAFD,wCAEC;AAED,SAAgB,kBAAkB,CAAC,QAAgB;IAC/C,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC;AAClC,CAAC;AAFD,gDAEC;AAED,SAAgB,gBAAgB,CAAC,QAAgB;IAC7C,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC;AAClC,CAAC;AAFD,4CAEC;AAED,SAAgB,iBAAiB,CAAC,QAAgB;IAC9C,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC;AAClC,CAAC;AAFD,8CAEC;AACD,IAAI,mBAAmB,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,qBAAqB,CAAC,CAAC;AAEtE,SAAgB,mBAAmB,CAAC,KAAa;IAC7C,MAAM,SAAS,GAAG,mBAAmB,CAAC;IACtC,mBAAmB,GAAG,KAAK,CAAC;IAC5B,OAAO,SAAS,CAAC;AACrB,CAAC;AAJD,kDAIC;AAED,SAAgB,kBAAkB,CAAC,QAAgB;IAC/C,IAAI,QAAQ,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,GAAG,EAAE;QAClC,QAAQ,GAAG,mBAAmB,GAAG,QAAQ,CAAC;KAC7C;IACD,MAAM,GAAG,GAAW,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IACvD,MAAM,MAAM,GAAG,KAAK,CAAC,QAAQ,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;IAE1C,OAAO,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAQ,CAAC;AAC3C,CAAC;AARD,gDAQC;AAED;;;GAGG;AACH,SAAgB,iBAAiB,CAAC,QAAgB;IAC9C,IAAI,QAAQ,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,GAAG,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE;QAC9D,QAAQ,GAAG,mBAAmB,GAAG,QAAQ,CAAC;KAC7C;IACD,OAAO,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAW,CAAC;AACxD,CAAC;AALD,8CAKC;AAED,SAAgB,gBAAgB,CAAC,QAAgB;IAC7C,OAAO,iBAAiB,CAAC,QAAQ,CAAC,CAAC;AACvC,CAAC;AAFD,4CAEC"}

package/dist/source_nodejs/read_certificate_revocation_list.d.ts

@@ -1,2 +1,2 @@
-import { CertificateRevocationList } from "../source/common";
-export declare function readCertificateRevocationList(filename: string): Promise<CertificateRevocationList>;
+import { CertificateRevocationList } from "../source/common";
+export declare function readCertificateRevocationList(filename: string): Promise<CertificateRevocationList>;