node-opcua-crypto 1.12.0 → 2.0.1

package/dist/source/asn1.d.ts

@@ -51,7 +51,7 @@ export declare function _readObjectIdentifier(buffer: Buffer, block: BlockInfo):
 };
 export declare function _readAlgorithmIdentifier(buffer: Buffer, block: BlockInfo): AlgorithmIdentifier;
 export declare function _readECCAlgorithmIdentifier(buffer: Buffer, block: BlockInfo): AlgorithmIdentifier;
-export declare type SignatureValue = string;
+export type SignatureValue = string;
 export declare function _readSignatureValueBin(buffer: Buffer, block: BlockInfo): Buffer;
 export declare function _readSignatureValue(buffer: Buffer, block: BlockInfo): SignatureValue;
 export declare function _readLongIntegerValue(buffer: Buffer, block: BlockInfo): Buffer;

package/dist/source/buffer_utils.d.ts

@@ -1,3 +1,4 @@
+/// <reference types="node" />
 /**
  * @internal
  * @private

package/dist/source/certificate_matches_private_key.d.ts

@@ -0,0 +1,2 @@
+import { Certificate, PrivateKey } from "./common";
+export declare function certificateMatchesPrivateKey(certificate: Certificate, privateKey: PrivateKey): boolean;

package/dist/source/certificate_matches_private_key.js

@@ -0,0 +1,22 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.certificateMatchesPrivateKey = void 0;
+const crypto_utils_1 = require("./crypto_utils");
+/**
+ * check that the given certificate matches the given private key
+ * @param certificate
+ * @param privateKey
+ */
+function certificateMatchesPrivateKeyPEM(certificate, privateKey) {
+    const initialBuffer = Buffer.from("Lorem Ipsum");
+    const encryptedBuffer = (0, crypto_utils_1.publicEncrypt_long)(initialBuffer, certificate, 256, 11);
+    const decryptedBuffer = (0, crypto_utils_1.privateDecrypt_long)(encryptedBuffer, privateKey, 256);
+    return initialBuffer.toString("utf-8") === decryptedBuffer.toString("utf-8");
+}
+function certificateMatchesPrivateKey(certificate, privateKey) {
+    const certificatePEM = (0, crypto_utils_1.toPem)(certificate, "CERTIFICATE");
+    const privateKeyPEM = (0, crypto_utils_1.toPem)(privateKey, "RSA PRIVATE KEY");
+    return certificateMatchesPrivateKeyPEM(certificatePEM, privateKeyPEM);
+}
+exports.certificateMatchesPrivateKey = certificateMatchesPrivateKey;
+//# sourceMappingURL=certificate_matches_private_key.js.map

package/dist/source/certificate_matches_private_key.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"certificate_matches_private_key.js","sourceRoot":"","sources":["../../source/certificate_matches_private_key.ts"],"names":[],"mappings":";;;AACA,iDAAgF;AAEhF;;;;GAIG;AACH,SAAS,+BAA+B,CAAC,WAA2B,EAAE,UAAyB;IAC3F,MAAM,aAAa,GAAG,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;IACjD,MAAM,eAAe,GAAG,IAAA,iCAAkB,EAAC,aAAa,EAAE,WAAW,EAAE,GAAG,EAAE,EAAE,CAAC,CAAC;IAChF,MAAM,eAAe,GAAG,IAAA,kCAAmB,EAAC,eAAe,EAAE,UAAU,EAAE,GAAG,CAAC,CAAC;IAC9E,OAAO,aAAa,CAAC,QAAQ,CAAC,OAAO,CAAC,KAAK,eAAe,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;AACjF,CAAC;AAED,SAAgB,4BAA4B,CAAC,WAAwB,EAAE,UAAsB;IACzF,MAAM,cAAc,GAAG,IAAA,oBAAK,EAAC,WAAW,EAAE,aAAa,CAAC,CAAC;IACzD,MAAM,aAAa,GAAG,IAAA,oBAAK,EAAC,UAAU,EAAE,iBAAiB,CAAC,CAAC;IAC3D,OAAO,+BAA+B,CAAC,cAAc,EAAE,aAAa,CAAC,CAAC;AAC1E,CAAC;AAJD,oEAIC"}

package/dist/source/common.d.ts

@@ -1,12 +1,12 @@
 /// <reference types="node" />
-export declare type Nonce = Buffer;
-export declare type PEM = string;
-export declare type DER = Buffer;
-export declare type Certificate = DER;
-export declare type CertificatePEM = PEM;
-export declare type PrivateKey = DER;
-export declare type PrivateKeyPEM = PEM;
-export declare type PublicKey = DER;
-export declare type PublicKeyPEM = PEM;
-export declare type Signature = Buffer;
-export declare type CertificateRevocationList = Buffer;
+export type Nonce = Buffer;
+export type PEM = string;
+export type DER = Buffer;
+export type Certificate = DER;
+export type CertificatePEM = PEM;
+export type PrivateKey = DER;
+export type PrivateKeyPEM = PEM;
+export type PublicKey = DER;
+export type PublicKeyPEM = PEM;
+export type Signature = Buffer;
+export type CertificateRevocationList = Buffer;

package/dist/source/crypto_utils.d.ts

@@ -1,5 +1,5 @@
 /// <reference types="node" />
-import { Certificate, CertificatePEM, DER, PEM, PrivateKeyPEM, PublicKey, PublicKeyPEM, Signature } from "./common";
+import { Certificate, CertificatePEM, DER, PEM, PrivateKey, PrivateKeyPEM, PublicKey, PublicKeyPEM, Signature } from "./common";
 export declare function identifyPemType(rawKey: Buffer | string): undefined | string;
 export declare function convertPEMtoDER(raw_key: PEM): DER;
 /**
@@ -58,17 +58,19 @@ export declare function publicEncrypt_native(buffer: Buffer, publicKey: PublicKe
 export declare function privateDecrypt_native(buffer: Buffer, privateKey: PrivateKeyPEM, algorithm?: PaddingAlgorithm): Buffer;
 export declare const publicEncrypt: typeof publicEncrypt_native;
 export declare const privateDecrypt: typeof privateDecrypt_native;
-export declare function publicEncrypt_long(buffer: Buffer, publicKey: PublicKeyPEM, blockSize: number, padding: number, algorithm?: PaddingAlgorithm): Buffer;
-export declare function privateDecrypt_long(buffer: Buffer, privateKey: PrivateKeyPEM, blockSize: number, algorithm?: number): Buffer;
+export declare function publicEncrypt_long(buffer: Buffer, publicKey: PublicKeyPEM, blockSize: number, padding: number, paddingAlgorithm?: PaddingAlgorithm): Buffer;
+export declare function privateDecrypt_long(buffer: Buffer, privateKey: PrivateKeyPEM, blockSize: number, paddingAlgorithm?: number): Buffer;
 export declare function coerceCertificatePem(certificate: Certificate | CertificatePEM): CertificatePEM;
 export declare function coercePublicKeyPem(publicKey: PublicKey | PublicKeyPEM): PublicKeyPEM;
+export declare function coercePrivateKeyPem(privateKey: PrivateKey | PrivateKeyPEM): PrivateKeyPEM;
 /***
- * @method rsa_length
+ * @method rsaLengthPrivateKey
  * A very expensive way to determine the rsa key length ( i.e 2048bits or 1024bits)
  * @param key  a PEM public key or a PEM rsa private key
- * @return { the key length in bytes.
+ * @return the key length in bytes.
  */
-export declare function rsa_length(key: PublicKeyPEM | PublicKey): number;
+export declare function rsaLengthPrivateKey(key: PrivateKeyPEM | PrivateKey): number;
+export declare function rsaLengthPublicKey(key: PublicKeyPEM | PublicKey): number;
 export declare function extractPublicKeyFromCertificateSync(certificate: Certificate | CertificatePEM): PublicKeyPEM;
 /**
  * extract the publickey from a certificate

package/dist/source/crypto_utils.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.extractPublicKeyFromCertificate = exports.extractPublicKeyFromCertificateSync = exports.rsa_length = exports.coercePublicKeyPem = exports.coerceCertificatePem = exports.privateDecrypt_long = exports.publicEncrypt_long = exports.privateDecrypt = exports.publicEncrypt = exports.privateDecrypt_native = exports.publicEncrypt_native = exports.PaddingAlgorithm = exports.RSA_PKCS1_PADDING = exports.RSA_PKCS1_OAEP_PADDING = exports.makeSHA1Thumbprint = exports.verifyMessageChunkSignature = exports.makeMessageChunkSignature = exports.hexDump = exports.toPem = exports.convertPEMtoDER = exports.identifyPemType = void 0;
+exports.extractPublicKeyFromCertificate = exports.extractPublicKeyFromCertificateSync = exports.rsaLengthPublicKey = exports.rsaLengthPrivateKey = exports.coercePrivateKeyPem = exports.coercePublicKeyPem = exports.coerceCertificatePem = exports.privateDecrypt_long = exports.publicEncrypt_long = exports.privateDecrypt = exports.publicEncrypt = exports.privateDecrypt_native = exports.publicEncrypt_native = exports.PaddingAlgorithm = exports.RSA_PKCS1_PADDING = exports.RSA_PKCS1_OAEP_PADDING = exports.makeSHA1Thumbprint = exports.verifyMessageChunkSignature = exports.makeMessageChunkSignature = exports.hexDump = exports.toPem = exports.convertPEMtoDER = exports.identifyPemType = void 0;
 // tslint:disabled:no-var-requires
 /**
  * @module node_opcua_crypto
@@ -81,7 +81,7 @@ function hexDump(buffer, width) {
     }
     width = width || 32;
     if (buffer.length > 1024) {
-        return (0, hexy_1.hexy)(buffer.slice(0, 1024), { width, format: "twos" }) + "\n .... ( " + buffer.length + ")";
+        return (0, hexy_1.hexy)(buffer.subarray(0, 1024), { width, format: "twos" }) + "\n .... ( " + buffer.length + ")";
     }
     else {
         return (0, hexy_1.hexy)(buffer, { width, format: "twos" });
@@ -189,36 +189,42 @@ function privateDecrypt_native(buffer, privateKey, algorithm) {
 exports.privateDecrypt_native = privateDecrypt_native;
 exports.publicEncrypt = publicEncrypt_native;
 exports.privateDecrypt = privateDecrypt_native;
-function publicEncrypt_long(buffer, publicKey, blockSize, padding, algorithm) {
-    if (algorithm === undefined) {
-        algorithm = PaddingAlgorithm.RSA_PKCS1_PADDING;
+function publicEncrypt_long(buffer, publicKey, blockSize, padding, paddingAlgorithm) {
+    if (paddingAlgorithm === undefined) {
+        paddingAlgorithm = PaddingAlgorithm.RSA_PKCS1_PADDING;
+    }
+    if (paddingAlgorithm !== exports.RSA_PKCS1_PADDING && paddingAlgorithm !== exports.RSA_PKCS1_OAEP_PADDING) {
+        throw new Error("Invalid padding algorithm " + paddingAlgorithm);
     }
-    assert(algorithm === exports.RSA_PKCS1_PADDING || algorithm === exports.RSA_PKCS1_OAEP_PADDING);
     const chunk_size = blockSize - padding;
     const nbBlocks = Math.ceil(buffer.length / chunk_size);
     const outputBuffer = (0, buffer_utils_1.createFastUninitializedBuffer)(nbBlocks * blockSize);
     for (let i = 0; i < nbBlocks; i++) {
-        const currentBlock = buffer.slice(chunk_size * i, chunk_size * (i + 1));
-        const encrypted_chunk = (0, exports.publicEncrypt)(currentBlock, publicKey, algorithm);
-        assert(encrypted_chunk.length === blockSize);
+        const currentBlock = buffer.subarray(chunk_size * i, chunk_size * (i + 1));
+        const encrypted_chunk = (0, exports.publicEncrypt)(currentBlock, publicKey, paddingAlgorithm);
+        if (encrypted_chunk.length !== blockSize) {
+            throw new Error(`publicEncrypt_long unexpected chunk length ${encrypted_chunk.length}  expecting ${blockSize}`);
+        }
         encrypted_chunk.copy(outputBuffer, i * blockSize);
     }
     return outputBuffer;
 }
 exports.publicEncrypt_long = publicEncrypt_long;
-function privateDecrypt_long(buffer, privateKey, blockSize, algorithm) {
-    algorithm = algorithm || exports.RSA_PKCS1_PADDING;
-    assert(algorithm === exports.RSA_PKCS1_PADDING || algorithm === exports.RSA_PKCS1_OAEP_PADDING);
+function privateDecrypt_long(buffer, privateKey, blockSize, paddingAlgorithm) {
+    paddingAlgorithm = paddingAlgorithm || exports.RSA_PKCS1_PADDING;
+    if (paddingAlgorithm !== exports.RSA_PKCS1_PADDING && paddingAlgorithm !== exports.RSA_PKCS1_OAEP_PADDING) {
+        throw new Error("Invalid padding algorithm " + paddingAlgorithm);
+    }
     const nbBlocks = Math.ceil(buffer.length / blockSize);
     const outputBuffer = (0, buffer_utils_1.createFastUninitializedBuffer)(nbBlocks * blockSize);
     let total_length = 0;
     for (let i = 0; i < nbBlocks; i++) {
-        const currentBlock = buffer.slice(blockSize * i, Math.min(blockSize * (i + 1), buffer.length));
-        const decrypted_buf = (0, exports.privateDecrypt)(currentBlock, privateKey, algorithm);
+        const currentBlock = buffer.subarray(blockSize * i, Math.min(blockSize * (i + 1), buffer.length));
+        const decrypted_buf = (0, exports.privateDecrypt)(currentBlock, privateKey, paddingAlgorithm);
         decrypted_buf.copy(outputBuffer, total_length);
         total_length += decrypted_buf.length;
     }
-    return outputBuffer.slice(0, total_length);
+    return outputBuffer.subarray(0, total_length);
 }
 exports.privateDecrypt_long = privateDecrypt_long;
 function coerceCertificatePem(certificate) {
@@ -237,19 +243,45 @@ function coercePublicKeyPem(publicKey) {
     return publicKey;
 }
 exports.coercePublicKeyPem = coercePublicKeyPem;
+function coercePrivateKeyPem(privateKey) {
+    if (privateKey instanceof Buffer) {
+        const o = crypto.createPrivateKey({ key: privateKey, format: "der", type: "pkcs1" });
+        const e = o.export({ format: "der", type: "pkcs1" });
+        privateKey = toPem(e, "RSA PRIVATE KEY");
+    }
+    assert(typeof privateKey === "string");
+    return privateKey;
+}
+exports.coercePrivateKeyPem = coercePrivateKeyPem;
 /***
- * @method rsa_length
+ * @method rsaLengthPrivateKey
  * A very expensive way to determine the rsa key length ( i.e 2048bits or 1024bits)
  * @param key  a PEM public key or a PEM rsa private key
- * @return { the key length in bytes.
+ * @return the key length in bytes.
  */
-function rsa_length(key) {
+function rsaLengthPrivateKey(key) {
+    key = coercePrivateKeyPem(key);
+    assert(typeof key === "string");
+    if (/PRIVATE/.test(key)) {
+        const o = crypto.createPrivateKey(key);
+        // in node 16 and above : 
+        // return o.asymmetricKeyDetails.modulusLength/8
+        // in node <16 : 
+        const key2 = o.export({ type: "pkcs1", format: "pem" });
+        const a = jsrsasign.KEYUTIL.getKey(key2);
+        return a.n.toString(16).length / 2;
+    }
+    const a = jsrsasign.KEYUTIL.getKey(key);
+    return a.n.toString(16).length / 2;
+}
+exports.rsaLengthPrivateKey = rsaLengthPrivateKey;
+function rsaLengthPublicKey(key) {
     key = coercePublicKeyPem(key);
     assert(typeof key === "string");
     const a = jsrsasign.KEYUTIL.getKey(key);
     return a.n.toString(16).length / 2;
 }
-exports.rsa_length = rsa_length;
+exports.rsaLengthPublicKey = rsaLengthPublicKey;
 function extractPublicKeyFromCertificateSync(certificate) {
     certificate = coerceCertificatePem(certificate);
     const key = jsrsasign.KEYUTIL.getKey(certificate);

package/dist/source/crypto_utils.js.map

@@ -1 +1 @@
-{"version":3,"file":"crypto_utils.js","sourceRoot":"","sources":["../../source/crypto_utils.ts"],"names":[],"mappings":";;;AAAA,kCAAkC;AAClC;;GAEG;AACH,uCAAuC;AACvC,iCAAiC;AACjC,iDAA+D;AAE/D,6EAA2D;AAC3D,iCAAiC;AACjC,+BAA4B;AAE5B,MAAM,SAAS,GAAG,OAAO,CAAC,WAAW,CAAC,CAAC;AAEvC,MAAM,SAAS,GAAG,gFAAgF,CAAC;AAEnG,MAAM,cAAc,GAAG,0BAA0B,CAAC;AAClD,0CAA0C;AAC1C,kBAAkB;AAElB;;;;GAIG;AACH,SAAgB,eAAe,CAAC,MAAuB;IACnD,IAAI,MAAM,YAAY,MAAM,EAAE;QAC1B,MAAM,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;KACpC;IACD,MAAM,KAAK,GAAG,cAAc,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC1C,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;AACzC,CAAC;AAND,0CAMC;AAED,SAAgB,eAAe,CAAC,OAAY;IACxC,IAAI,KAAU,CAAC;IACf,IAAI,OAAO,CAAC;IACZ,IAAI,SAAS,CAAC;IAEd,MAAM,KAAK,GAAU,EAAE,CAAC;IAExB,SAAS,CAAC,SAAS,GAAG,CAAC,CAAC;IACxB,qDAAqD;IACrD,OAAO,CAAC,KAAK,GAAG,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,KAAK,IAAI,EAAE;QAC/C,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACnB,+EAA+E;QAC/E,SAAS,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACrB,SAAS,GAAG,SAAS,CAAC,OAAO,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;QAC5C,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC,CAAC;KAChD;IACD,OAAO,IAAA,wCAAW,EAAC,KAAK,CAAC,CAAC;AAC9B,CAAC;AAjBD,0CAiBC;AAED;;;;;GAKG;AACH,SAAgB,KAAK,CAAC,OAAwB,EAAE,GAAW;IACvD,MAAM,CAAC,OAAO,EAAE,iBAAiB,CAAC,CAAC;IACnC,MAAM,CAAC,OAAO,GAAG,KAAK,QAAQ,CAAC,CAAC;IAChC,IAAI,OAAO,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;IACvC,IAAI,OAAO,EAAE;QACT,OAAO,OAAO,YAAY,MAAM,CAAC,CAAC,CAAE,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC;KAC1E;SAAM;QACH,OAAO,GAAG,GAAG,CAAC;QACd,MAAM,CAAC,CAAC,qBAAqB,EAAE,aAAa,EAAE,iBAAiB,EAAE,YAAY,EAAE,UAAU,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC;QAClH,IAAI,CAAC,GAAI,OAAkB,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;QAC/C,IAAI,GAAG,GAAG,aAAa,GAAG,OAAO,GAAG,SAAS,CAAC;QAC9C,OAAO,CAAC,CAAC,MAAM,EAAE;YACb,GAAG,IAAI,CAAC,CAAC,MAAM,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,IAAI,CAAC;YAC9B,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;SACpB;QACD,GAAG,IAAI,WAAW,GAAG,OAAO,GAAG,OAAO,CAAC;QACvC,GAAG,IAAI,IAAI,CAAC;QACZ,OAAO,GAAG,CAAC;KACd;AACL,CAAC;AAnBD,sBAmBC;AAED,uBAAuB;AACvB,SAAgB,OAAO,CAAC,MAAc,EAAE,KAAc;IAClD,IAAI,CAAC,MAAM,EAAE;QACT,OAAO,IAAI,CAAC;KACf;IACD,KAAK,GAAG,KAAK,IAAI,EAAE,CAAC;IACpB,IAAI,MAAM,CAAC,MAAM,GAAG,IAAI,EAAE;QACtB,OAAO,IAAA,WAAI,EAAC,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,GAAG,YAAY,GAAG,MAAM,CAAC,MAAM,GAAG,GAAG,CAAC;KACtG;SAAM;QACH,OAAO,IAAA,WAAI,EAAC,MAAM,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;KAClD;AACL,CAAC;AAVD,0BAUC;AAQD;;;;;;;;GAQG;AACH,SAAgB,yBAAyB,CAAC,KAAa,EAAE,OAAyC;IAC9F,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,cAAc,CAAC,IAAI,CAAC,OAAO,EAAC,WAAW,CAAC,CAAC,CAAC;IAClE,MAAM,CAAC,KAAK,YAAY,MAAM,CAAC,CAAC;IAChC,MAAM,CAAC,CAAC,iBAAiB,EAAE,aAAa,CAAC,CAAC,OAAO,CAAC,eAAe,CAAC,OAAO,CAAC,UAAU,CAAW,CAAC,IAAI,CAAC,CAAC,CAAC;IACvG,+BAA+B;IAC/B,MAAM,MAAM,GAAG,MAAM,CAAC,UAAU,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IACpD,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACrB,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;IAClD,MAAM,CAAC,CAAC,OAAO,CAAC,eAAe,IAAI,SAAS,CAAC,MAAM,KAAK,OAAO,CAAC,eAAe,CAAC,CAAC;IACjF,OAAO,SAAS,CAAC;AACrB,CAAC;AAVD,8DAUC;AAQD;;;;;;;;;;;;;;;GAeG;AACH,SAAgB,2BAA2B,CACvC,aAAqB,EACrB,SAAoB,EACpB,OAA2C;IAE3C,MAAM,CAAC,aAAa,YAAY,MAAM,CAAC,CAAC;IACxC,MAAM,CAAC,SAAS,YAAY,MAAM,CAAC,CAAC;IACpC,MAAM,CAAC,OAAO,OAAO,CAAC,SAAS,KAAK,QAAQ,CAAC,CAAC;IAC9C,MAAM,CAAC,eAAe,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC;IAE3C,MAAM,MAAM,GAAG,MAAM,CAAC,YAAY,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IACtD,MAAM,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC;IAC7B,OAAO,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;AACvD,CAAC;AAbD,kEAaC;AAED,SAAgB,kBAAkB,CAAC,MAAc;IAC7C,OAAO,MAAM,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,MAAM,EAAE,CAAC;AAC7D,CAAC;AAFD,gDAEC;AAED,+GAA+G;AAC/G,8GAA8G;AAC9G,2GAA2G;AAC3G,2GAA2G;AAC3G,8GAA8G;AAC9G,4GAA4G;AAC5G,yGAAyG;AACzG,8FAA8F;AAEjF,QAAA,sBAAsB,GAAW,SAAS,CAAC,sBAAsB,CAAC;AAClE,QAAA,iBAAiB,GAAW,SAAS,CAAC,iBAAiB,CAAC;AAErE,IAAY,gBAGX;AAHD,WAAY,gBAAgB;IACxB,2FAA0B,CAAA;IAC1B,iFAAqB,CAAA;AACzB,CAAC,EAHW,gBAAgB,GAAhB,wBAAgB,KAAhB,wBAAgB,QAG3B;AAED,MAAM,CAAC,gBAAgB,CAAC,sBAAsB,KAAK,SAAS,CAAC,sBAAsB,CAAC,CAAC;AACrF,MAAM,CAAC,gBAAgB,CAAC,iBAAiB,KAAK,SAAS,CAAC,iBAAiB,CAAC,CAAC;AAE3E,mDAAmD;AACnD,6CAA6C;AAC7C,SAAgB,oBAAoB,CAAC,MAAc,EAAE,SAAuB,EAAE,SAA4B;IACtG,IAAI,SAAS,KAAK,SAAS,EAAE;QACzB,SAAS,GAAG,gBAAgB,CAAC,iBAAiB,CAAC;KAClD;IACD,MAAM,CAAC,SAAS,KAAK,yBAAiB,IAAI,SAAS,KAAK,8BAAsB,CAAC,CAAC;IAChF,MAAM,CAAC,MAAM,YAAY,MAAM,EAAE,oBAAoB,CAAC,CAAC;IACvD,OAAO,MAAM,CAAC,aAAa,CACvB;QACI,GAAG,EAAE,SAAS;QACd,OAAO,EAAE,SAAS;KACrB,EACD,MAAM,CACT,CAAC;AACN,CAAC;AAbD,oDAaC;AAED,SAAgB,qBAAqB,CAAC,MAAc,EAAE,UAAyB,EAAE,SAA4B;IACzG,IAAI,SAAS,KAAK,SAAS,EAAE;QACzB,SAAS,GAAG,gBAAgB,CAAC,iBAAiB,CAAC;KAClD;IAED,MAAM,CAAC,SAAS,KAAK,yBAAiB,IAAI,SAAS,KAAK,8BAAsB,CAAC,CAAC;IAChF,MAAM,CAAC,MAAM,YAAY,MAAM,EAAE,oBAAoB,CAAC,CAAC;IACvD,IAAI;QACA,OAAO,MAAM,CAAC,cAAc,CACxB;YACI,GAAG,EAAE,UAAU;YACf,OAAO,EAAE,SAAS;SACrB,EACD,MAAM,CACT,CAAC;KACL;IAAC,OAAO,GAAG,EAAE;QACV,OAAO,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;KAC1B;AACL,CAAC;AAlBD,sDAkBC;AAEY,QAAA,aAAa,GAAG,oBAAoB,CAAC;AACrC,QAAA,cAAc,GAAG,qBAAqB,CAAC;AAEpD,SAAgB,kBAAkB,CAC9B,MAAc,EACd,SAAuB,EACvB,SAAiB,EACjB,OAAe,EACf,SAA4B;IAE5B,IAAI,SAAS,KAAK,SAAS,EAAE;QACzB,SAAS,GAAG,gBAAgB,CAAC,iBAAiB,CAAC;KAClD;IACD,MAAM,CAAC,SAAS,KAAK,yBAAiB,IAAI,SAAS,KAAK,8BAAsB,CAAC,CAAC;IAEhF,MAAM,UAAU,GAAG,SAAS,GAAG,OAAO,CAAC;IACvC,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,UAAU,CAAC,CAAC;IAEvD,MAAM,YAAY,GAAG,IAAA,4CAA6B,EAAC,QAAQ,GAAG,SAAS,CAAC,CAAC;IACzE,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,EAAE,CAAC,EAAE,EAAE;QAC/B,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,UAAU,GAAG,CAAC,EAAE,UAAU,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;QACxE,MAAM,eAAe,GAAG,IAAA,qBAAa,EAAC,YAAY,EAAE,SAAS,EAAE,SAAS,CAAC,CAAC;QAC1E,MAAM,CAAC,eAAe,CAAC,MAAM,KAAK,SAAS,CAAC,CAAC;QAC7C,eAAe,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC,GAAG,SAAS,CAAC,CAAC;KACrD;IACD,OAAO,YAAY,CAAC;AACxB,CAAC;AAvBD,gDAuBC;AAED,SAAgB,mBAAmB,CAAC,MAAc,EAAE,UAAyB,EAAE,SAAiB,EAAE,SAAkB;IAChH,SAAS,GAAG,SAAS,IAAI,yBAAiB,CAAC;IAC3C,MAAM,CAAC,SAAS,KAAK,yBAAiB,IAAI,SAAS,KAAK,8BAAsB,CAAC,CAAC;IAEhF,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,SAAS,CAAC,CAAC;IAEtD,MAAM,YAAY,GAAG,IAAA,4CAA6B,EAAC,QAAQ,GAAG,SAAS,CAAC,CAAC;IAEzE,IAAI,YAAY,GAAG,CAAC,CAAC;IACrB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,EAAE,CAAC,EAAE,EAAE;QAC/B,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,SAAS,GAAG,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC;QAC/F,MAAM,aAAa,GAAG,IAAA,sBAAc,EAAC,YAAY,EAAE,UAAU,EAAE,SAAS,CAAC,CAAC;QAC1E,aAAa,CAAC,IAAI,CAAC,YAAY,EAAE,YAAY,CAAC,CAAC;QAC/C,YAAY,IAAI,aAAa,CAAC,MAAM,CAAC;KACxC;IACD,OAAO,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,YAAY,CAAC,CAAC;AAC/C,CAAC;AAhBD,kDAgBC;AAED,SAAgB,oBAAoB,CAAC,WAAyC;IAC1E,IAAI,WAAW,YAAY,MAAM,EAAE;QAC/B,WAAW,GAAG,KAAK,CAAC,WAAW,EAAE,aAAa,CAAC,CAAC;KACnD;IACD,MAAM,CAAC,OAAO,WAAW,KAAK,QAAQ,CAAC,CAAC;IACxC,OAAO,WAAW,CAAC;AACvB,CAAC;AAND,oDAMC;AAED,SAAgB,kBAAkB,CAAC,SAAmC;IAClE,IAAI,SAAS,YAAY,MAAM,EAAE;QAC7B,SAAS,GAAG,KAAK,CAAC,SAAS,EAAE,YAAY,CAAC,CAAC;KAC9C;IACD,MAAM,CAAC,OAAO,SAAS,KAAK,QAAQ,CAAC,CAAC;IACtC,OAAO,SAAS,CAAC;AACrB,CAAC;AAND,gDAMC;AAED;;;;;GAKG;AACH,SAAgB,UAAU,CAAC,GAA6B;IACpD,GAAG,GAAG,kBAAkB,CAAC,GAAG,CAAC,CAAC;IAC9B,MAAM,CAAC,OAAO,GAAG,KAAK,QAAQ,CAAC,CAAC;IAChC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IACxC,OAAO,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC;AACvC,CAAC;AALD,gCAKC;AAED,SAAgB,mCAAmC,CAAC,WAAyC;IACzF,WAAW,GAAG,oBAAoB,CAAC,WAAW,CAAC,CAAC;IAChD,MAAM,GAAG,GAAG,SAAS,CAAC,OAAO,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;IAClD,MAAM,cAAc,GAAG,SAAS,CAAC,OAAO,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IACrD,MAAM,CAAC,OAAO,cAAc,KAAK,QAAQ,CAAC,CAAC;IAC3C,OAAO,cAAc,CAAC;AAC1B,CAAC;AAND,kFAMC;AAED,4DAA4D;AAC5D,6DAA6D;AAC7D;;;GAGG;AACH,SAAgB,+BAA+B,CAC3C,WAAyC,EACzC,QAAkE;IAElE,IAAI,IAAI,GAAQ,IAAI,CAAC;IACrB,IAAI,MAAoB,CAAC;IACzB,IAAI;QACA,MAAM,GAAG,mCAAmC,CAAC,WAAW,CAAC,CAAC;KAC7D;IAAC,OAAO,GAAG,EAAE;QACV,IAAI,GAAG,GAAG,CAAC;KACd;IACD,YAAY,CAAC,GAAG,EAAE;QACd,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;IAC3B,CAAC,CAAC,CAAC;AACP,CAAC;AAdD,0EAcC"}
+{"version":3,"file":"crypto_utils.js","sourceRoot":"","sources":["../../source/crypto_utils.ts"],"names":[],"mappings":";;;AAAA,kCAAkC;AAClC;;GAEG;AACH,uCAAuC;AACvC,iCAAiC;AACjC,iDAA+D;AAE/D,6EAA2D;AAC3D,iCAAiC;AACjC,+BAA4B;AAE5B,MAAM,SAAS,GAAG,OAAO,CAAC,WAAW,CAAC,CAAC;AAEvC,MAAM,SAAS,GAAG,gFAAgF,CAAC;AAEnG,MAAM,cAAc,GAAG,0BAA0B,CAAC;AAClD,0CAA0C;AAC1C,kBAAkB;AAElB;;;;GAIG;AACH,SAAgB,eAAe,CAAC,MAAuB;IACnD,IAAI,MAAM,YAAY,MAAM,EAAE;QAC1B,MAAM,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;KACpC;IACD,MAAM,KAAK,GAAG,cAAc,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC1C,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;AACzC,CAAC;AAND,0CAMC;AAED,SAAgB,eAAe,CAAC,OAAY;IACxC,IAAI,KAAU,CAAC;IACf,IAAI,OAAO,CAAC;IACZ,IAAI,SAAS,CAAC;IAEd,MAAM,KAAK,GAAU,EAAE,CAAC;IAExB,SAAS,CAAC,SAAS,GAAG,CAAC,CAAC;IACxB,qDAAqD;IACrD,OAAO,CAAC,KAAK,GAAG,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,KAAK,IAAI,EAAE;QAC/C,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACnB,+EAA+E;QAC/E,SAAS,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACrB,SAAS,GAAG,SAAS,CAAC,OAAO,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;QAC5C,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC,CAAC;KAChD;IACD,OAAO,IAAA,wCAAW,EAAC,KAAK,CAAC,CAAC;AAC9B,CAAC;AAjBD,0CAiBC;AAED;;;;;GAKG;AACH,SAAgB,KAAK,CAAC,OAAwB,EAAE,GAAW;IACvD,MAAM,CAAC,OAAO,EAAE,iBAAiB,CAAC,CAAC;IACnC,MAAM,CAAC,OAAO,GAAG,KAAK,QAAQ,CAAC,CAAC;IAChC,IAAI,OAAO,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;IACvC,IAAI,OAAO,EAAE;QACT,OAAO,OAAO,YAAY,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC;KACzE;SAAM;QACH,OAAO,GAAG,GAAG,CAAC;QACd,MAAM,CAAC,CAAC,qBAAqB,EAAE,aAAa,EAAE,iBAAiB,EAAE,YAAY,EAAE,UAAU,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC;QAClH,IAAI,CAAC,GAAI,OAAkB,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;QAC/C,IAAI,GAAG,GAAG,aAAa,GAAG,OAAO,GAAG,SAAS,CAAC;QAC9C,OAAO,CAAC,CAAC,MAAM,EAAE;YACb,GAAG,IAAI,CAAC,CAAC,MAAM,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,IAAI,CAAC;YAC9B,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;SACpB;QACD,GAAG,IAAI,WAAW,GAAG,OAAO,GAAG,OAAO,CAAC;QACvC,GAAG,IAAI,IAAI,CAAC;QACZ,OAAO,GAAG,CAAC;KACd;AACL,CAAC;AAnBD,sBAmBC;AAED,uBAAuB;AACvB,SAAgB,OAAO,CAAC,MAAc,EAAE,KAAc;IAClD,IAAI,CAAC,MAAM,EAAE;QACT,OAAO,IAAI,CAAC;KACf;IACD,KAAK,GAAG,KAAK,IAAI,EAAE,CAAC;IACpB,IAAI,MAAM,CAAC,MAAM,GAAG,IAAI,EAAE;QACtB,OAAO,IAAA,WAAI,EAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,EAAE,IAAI,CAAC,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,GAAG,YAAY,GAAG,MAAM,CAAC,MAAM,GAAG,GAAG,CAAC;KACzG;SAAM;QACH,OAAO,IAAA,WAAI,EAAC,MAAM,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;KAClD;AACL,CAAC;AAVD,0BAUC;AAQD;;;;;;;;GAQG;AACH,SAAgB,yBAAyB,CAAC,KAAa,EAAE,OAAyC;IAC9F,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,cAAc,CAAC,IAAI,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC,CAAC;IACnE,MAAM,CAAC,KAAK,YAAY,MAAM,CAAC,CAAC;IAChC,MAAM,CAAC,CAAC,iBAAiB,EAAE,aAAa,CAAC,CAAC,OAAO,CAAC,eAAe,CAAC,OAAO,CAAC,UAAU,CAAW,CAAC,IAAI,CAAC,CAAC,CAAC;IACvG,+BAA+B;IAC/B,MAAM,MAAM,GAAG,MAAM,CAAC,UAAU,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IACpD,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACrB,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;IAClD,MAAM,CAAC,CAAC,OAAO,CAAC,eAAe,IAAI,SAAS,CAAC,MAAM,KAAK,OAAO,CAAC,eAAe,CAAC,CAAC;IACjF,OAAO,SAAS,CAAC;AACrB,CAAC;AAVD,8DAUC;AAQD;;;;;;;;;;;;;;;GAeG;AACH,SAAgB,2BAA2B,CACvC,aAAqB,EACrB,SAAoB,EACpB,OAA2C;IAE3C,MAAM,CAAC,aAAa,YAAY,MAAM,CAAC,CAAC;IACxC,MAAM,CAAC,SAAS,YAAY,MAAM,CAAC,CAAC;IACpC,MAAM,CAAC,OAAO,OAAO,CAAC,SAAS,KAAK,QAAQ,CAAC,CAAC;IAC9C,MAAM,CAAC,eAAe,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC;IAE3C,MAAM,MAAM,GAAG,MAAM,CAAC,YAAY,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IACtD,MAAM,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC;IAC7B,OAAO,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;AACvD,CAAC;AAbD,kEAaC;AAED,SAAgB,kBAAkB,CAAC,MAAc;IAC7C,OAAO,MAAM,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,MAAM,EAAE,CAAC;AAC7D,CAAC;AAFD,gDAEC;AAED,+GAA+G;AAC/G,8GAA8G;AAC9G,2GAA2G;AAC3G,2GAA2G;AAC3G,8GAA8G;AAC9G,4GAA4G;AAC5G,yGAAyG;AACzG,8FAA8F;AAEjF,QAAA,sBAAsB,GAAW,SAAS,CAAC,sBAAsB,CAAC;AAClE,QAAA,iBAAiB,GAAW,SAAS,CAAC,iBAAiB,CAAC;AAErE,IAAY,gBAGX;AAHD,WAAY,gBAAgB;IACxB,2FAA0B,CAAA;IAC1B,iFAAqB,CAAA;AACzB,CAAC,EAHW,gBAAgB,GAAhB,wBAAgB,KAAhB,wBAAgB,QAG3B;AAED,MAAM,CAAC,gBAAgB,CAAC,sBAAsB,KAAK,SAAS,CAAC,sBAAsB,CAAC,CAAC;AACrF,MAAM,CAAC,gBAAgB,CAAC,iBAAiB,KAAK,SAAS,CAAC,iBAAiB,CAAC,CAAC;AAE3E,mDAAmD;AACnD,6CAA6C;AAC7C,SAAgB,oBAAoB,CAAC,MAAc,EAAE,SAAuB,EAAE,SAA4B;IACtG,IAAI,SAAS,KAAK,SAAS,EAAE;QACzB,SAAS,GAAG,gBAAgB,CAAC,iBAAiB,CAAC;KAClD;IACD,MAAM,CAAC,SAAS,KAAK,yBAAiB,IAAI,SAAS,KAAK,8BAAsB,CAAC,CAAC;IAChF,MAAM,CAAC,MAAM,YAAY,MAAM,EAAE,oBAAoB,CAAC,CAAC;IACvD,OAAO,MAAM,CAAC,aAAa,CACvB;QACI,GAAG,EAAE,SAAS;QACd,OAAO,EAAE,SAAS;KACrB,EACD,MAAM,CACT,CAAC;AACN,CAAC;AAbD,oDAaC;AAED,SAAgB,qBAAqB,CAAC,MAAc,EAAE,UAAyB,EAAE,SAA4B;IACzG,IAAI,SAAS,KAAK,SAAS,EAAE;QACzB,SAAS,GAAG,gBAAgB,CAAC,iBAAiB,CAAC;KAClD;IAED,MAAM,CAAC,SAAS,KAAK,yBAAiB,IAAI,SAAS,KAAK,8BAAsB,CAAC,CAAC;IAChF,MAAM,CAAC,MAAM,YAAY,MAAM,EAAE,oBAAoB,CAAC,CAAC;IACvD,IAAI;QACA,OAAO,MAAM,CAAC,cAAc,CACxB;YACI,GAAG,EAAE,UAAU;YACf,OAAO,EAAE,SAAS;SACrB,EACD,MAAM,CACT,CAAC;KACL;IAAC,OAAO,GAAG,EAAE;QACV,OAAO,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;KAC1B;AACL,CAAC;AAlBD,sDAkBC;AAEY,QAAA,aAAa,GAAG,oBAAoB,CAAC;AACrC,QAAA,cAAc,GAAG,qBAAqB,CAAC;AAEpD,SAAgB,kBAAkB,CAC9B,MAAc,EACd,SAAuB,EACvB,SAAiB,EACjB,OAAe,EACf,gBAAmC;IAEnC,IAAI,gBAAgB,KAAK,SAAS,EAAE;QAChC,gBAAgB,GAAG,gBAAgB,CAAC,iBAAiB,CAAC;KACzD;IACD,IAAI,gBAAgB,KAAK,yBAAiB,IAAI,gBAAgB,KAAK,8BAAsB,EAAE;QACvF,MAAM,IAAI,KAAK,CAAC,4BAA4B,GAAG,gBAAgB,CAAC,CAAC;KACpE;IAED,MAAM,UAAU,GAAG,SAAS,GAAG,OAAO,CAAC;IACvC,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,UAAU,CAAC,CAAC;IAEvD,MAAM,YAAY,GAAG,IAAA,4CAA6B,EAAC,QAAQ,GAAG,SAAS,CAAC,CAAC;IACzE,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,EAAE,CAAC,EAAE,EAAE;QAC/B,MAAM,YAAY,GAAG,MAAM,CAAC,QAAQ,CAAC,UAAU,GAAG,CAAC,EAAE,UAAU,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;QAC3E,MAAM,eAAe,GAAG,IAAA,qBAAa,EAAC,YAAY,EAAE,SAAS,EAAE,gBAAgB,CAAC,CAAC;QACjF,IAAI,eAAe,CAAC,MAAM,KAAK,SAAS,EAAE;YACtC,MAAM,IAAI,KAAK,CAAC,8CAA8C,eAAe,CAAC,MAAM,eAAe,SAAS,EAAE,CAAC,CAAC;SACnH;QACD,eAAe,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC,GAAG,SAAS,CAAC,CAAC;KACrD;IACD,OAAO,YAAY,CAAC;AACxB,CAAC;AA3BD,gDA2BC;AAED,SAAgB,mBAAmB,CAC/B,MAAc,EACd,UAAyB,EACzB,SAAiB,EACjB,gBAAyB;IAEzB,gBAAgB,GAAG,gBAAgB,IAAI,yBAAiB,CAAC;IACzD,IAAI,gBAAgB,KAAK,yBAAiB,IAAI,gBAAgB,KAAK,8BAAsB,EAAE;QACvF,MAAM,IAAI,KAAK,CAAC,4BAA4B,GAAG,gBAAgB,CAAC,CAAC;KACpE;IAED,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,SAAS,CAAC,CAAC;IAEtD,MAAM,YAAY,GAAG,IAAA,4CAA6B,EAAC,QAAQ,GAAG,SAAS,CAAC,CAAC;IAEzE,IAAI,YAAY,GAAG,CAAC,CAAC;IACrB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,EAAE,CAAC,EAAE,EAAE;QAC/B,MAAM,YAAY,GAAG,MAAM,CAAC,QAAQ,CAAC,SAAS,GAAG,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC;QAClG,MAAM,aAAa,GAAG,IAAA,sBAAc,EAAC,YAAY,EAAE,UAAU,EAAE,gBAAgB,CAAC,CAAC;QACjF,aAAa,CAAC,IAAI,CAAC,YAAY,EAAE,YAAY,CAAC,CAAC;QAC/C,YAAY,IAAI,aAAa,CAAC,MAAM,CAAC;KACxC;IACD,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC,EAAE,YAAY,CAAC,CAAC;AAClD,CAAC;AAvBD,kDAuBC;AAED,SAAgB,oBAAoB,CAAC,WAAyC;IAC1E,IAAI,WAAW,YAAY,MAAM,EAAE;QAC/B,WAAW,GAAG,KAAK,CAAC,WAAW,EAAE,aAAa,CAAC,CAAC;KACnD;IACD,MAAM,CAAC,OAAO,WAAW,KAAK,QAAQ,CAAC,CAAC;IACxC,OAAO,WAAW,CAAC;AACvB,CAAC;AAND,oDAMC;AAED,SAAgB,kBAAkB,CAAC,SAAmC;IAClE,IAAI,SAAS,YAAY,MAAM,EAAE;QAC7B,SAAS,GAAG,KAAK,CAAC,SAAS,EAAE,YAAY,CAAC,CAAC;KAC9C;IACD,MAAM,CAAC,OAAO,SAAS,KAAK,QAAQ,CAAC,CAAC;IACtC,OAAO,SAAS,CAAC;AACrB,CAAC;AAND,gDAMC;AACD,SAAgB,mBAAmB,CAAC,UAAsC;IACtE,IAAI,UAAU,YAAY,MAAM,EAAE;QAE9B,MAAM,CAAC,GAAG,MAAM,CAAC,gBAAgB,CAAC,EAAE,GAAG,EAAE,UAAU,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,EAAC,CAAC,CAAC;QAEpF,MAAM,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,EAAC,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,EAAC,CAAC,CAAC;QACnD,UAAU,GAAG,KAAK,CAAC,CAAC,EAAE,iBAAiB,CAAC,CAAC;KAC5C;IACD,MAAM,CAAC,OAAO,UAAU,KAAK,QAAQ,CAAC,CAAC;IACvC,OAAO,UAAU,CAAC;AACtB,CAAC;AAVD,kDAUC;AAED;;;;;GAKG;AACH,SAAgB,mBAAmB,CAAC,GAA+B;IAC/D,GAAG,GAAG,mBAAmB,CAAC,GAAG,CAAC,CAAC;IAC/B,MAAM,CAAC,OAAO,GAAG,KAAK,QAAQ,CAAC,CAAC;IAChC,IAAI,SAAS,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE;QACrB,MAAM,CAAC,GAAG,MAAM,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC;QACvC,0BAA0B;QAC1B,gDAAgD;QAChD,iBAAiB;QACjB,MAAM,IAAI,GAAG,CAAC,CAAC,MAAM,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;QACxD,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QACzC,OAAO,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC;KACtC;IACD,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IACxC,OAAO,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC;AACvC,CAAC;AAdD,kDAcC;AAED,SAAgB,kBAAkB,CAAC,GAA8B;IAC7D,GAAG,GAAG,kBAAkB,CAAC,GAAG,CAAC,CAAC;IAC9B,MAAM,CAAC,OAAO,GAAG,KAAK,QAAQ,CAAC,CAAC;IAChC,MAAM,CAAC,GAAG,SAAS,CAAC,OAAO,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IACxC,OAAO,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC;AACvC,CAAC;AALD,gDAKC;AAED,SAAgB,mCAAmC,CAAC,WAAyC;IACzF,WAAW,GAAG,oBAAoB,CAAC,WAAW,CAAC,CAAC;IAChD,MAAM,GAAG,GAAG,SAAS,CAAC,OAAO,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;IAClD,MAAM,cAAc,GAAG,SAAS,CAAC,OAAO,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IACrD,MAAM,CAAC,OAAO,cAAc,KAAK,QAAQ,CAAC,CAAC;IAC3C,OAAO,cAAc,CAAC;AAC1B,CAAC;AAND,kFAMC;AAED,4DAA4D;AAC5D,6DAA6D;AAC7D;;;GAGG;AACH,SAAgB,+BAA+B,CAC3C,WAAyC,EACzC,QAAkE;IAElE,IAAI,IAAI,GAAQ,IAAI,CAAC;IACrB,IAAI,MAAoB,CAAC;IACzB,IAAI;QACA,MAAM,GAAG,mCAAmC,CAAC,WAAW,CAAC,CAAC;KAC7D;IAAC,OAAO,GAAG,EAAE;QACV,IAAI,GAAG,GAAG,CAAC;KACd;IACD,YAAY,CAAC,GAAG,EAAE;QACd,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;IAC3B,CAAC,CAAC,CAAC;AACP,CAAC;AAdD,0EAcC"}

package/dist/source/derived_keys.d.ts

@@ -35,7 +35,7 @@ export declare function reduceLength(buffer: Buffer, byteToRemove: number): Buff
  * @return buffer with padding removed
  */
 export declare function removePadding(buffer: Buffer): Buffer;
-export declare type VerifyChunkSignatureOptions = VerifyMessageChunkSignatureOptions;
+export type VerifyChunkSignatureOptions = VerifyMessageChunkSignatureOptions;
 /**
  * @method verifyChunkSignature
  *

package/dist/source/explore_certificate.d.ts

@@ -4,7 +4,7 @@
 import { Certificate, CertificatePEM } from "./common";
 import { SubjectPublicKey } from "./crypto_explore_certificate";
 import { DirectoryName } from "./asn1";
-export declare type PublicKeyLength = 64 | 96 | 128 | 256 | 384 | 512;
+export type PublicKeyLength = 64 | 96 | 128 | 256 | 384 | 512;
 /**
  * A structure exposing useful information about a certificate
  */

package/dist/source/explore_certificate_revocation_list.d.ts

@@ -1,10 +1,10 @@
 /// <reference types="node" />
 import { AlgorithmIdentifier, BlockInfo, DirectoryName } from "./asn1";
 import { CertificateRevocationList } from "./common";
-export declare type Version = string;
-export declare type Name = string;
-export declare type CertificateSerialNumber = string;
-export declare type Extensions = Record<string, unknown>;
+export type Version = string;
+export type Name = string;
+export type CertificateSerialNumber = string;
+export type Extensions = Record<string, unknown>;
 export interface RevokedCertificate {
     userCertificate: CertificateSerialNumber;
     revocationDate: Date;

package/dist/source/explore_private_key.js

@@ -4,7 +4,7 @@ exports.explorePrivateKey = void 0;
 const assert = require("assert");
 const asn1_1 = require("./asn1");
 function f(buffer, b) {
-    return buffer.slice(b.position + 1, b.position + b.length);
+    return buffer.subarray(b.position + 1, b.position + b.length);
 }
 const doDebug = !!process.env.DEBUG;
 /**
@@ -50,18 +50,18 @@ function explorePrivateKey(privateKey) {
     /* istanbul ignore next */
     if (doDebug) {
         // tslint:disable:no-console
-        console.log("--------------------");
+        console.log("-------------------- private key:");
         console.log(block_info);
         // tslint:disable:no-console
         console.log(blocks.map((b) => ({
             tag: asn1_1.TagType[b.tag] + " 0x" + b.tag.toString(16),
             l: b.length,
             p: b.position,
-            buff: privateKey.slice(b.position, b.position + b.length).toString("hex"),
+            buff: privateKey.subarray(b.position, b.position + b.length).toString("hex"),
         })));
     }
     const b = blocks[2];
-    const bb = privateKey.slice(b.position, b.position + b.length);
+    const bb = privateKey.subarray(b.position, b.position + b.length);
     const block_info1 = (0, asn1_1.readTag)(bb, 0);
     const blocks1 = (0, asn1_1._readStruct)(bb, block_info1);
     /* istanbul ignore next */
@@ -71,7 +71,7 @@ function explorePrivateKey(privateKey) {
             tag: asn1_1.TagType[b.tag] + " 0x" + b.tag.toString(16),
             l: b.length,
             p: b.position,
-            buff: bb.slice(b.position, b.position + b.length).toString("hex"),
+            buff: bb.subarray(b.position, b.position + b.length).toString("hex"),
         })));
     }
     const version = f(bb, blocks1[0]);

package/dist/source/explore_private_key.js.map

@@ -1 +1 @@
-{"version":3,"file":"explore_private_key.js","sourceRoot":"","sources":["../../source/explore_private_key.ts"],"names":[],"mappings":";;;AAAA,iCAAiC;AACjC,iCAA4F;AAiB5F,SAAS,CAAC,CAAC,MAAc,EAAE,CAAY;IACnC,OAAO,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,GAAC,CAAC,EAAE,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,MAAM,CAAC,CAAA;AAC5D,CAAC;AACD,MAAM,OAAO,GAAE,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC;AACnC;;;;;;;;;;;;;;GAcG;AACH,SAAgB,iBAAiB,CAAC,UAAsB;IACpD,MAAM,CAAC,UAAU,YAAY,MAAM,CAAC,CAAC;IACrC,MAAM,UAAU,GAAG,IAAA,cAAO,EAAC,UAAU,EAAE,CAAC,CAAC,CAAC;IAC1C,MAAM,MAAM,GAAG,IAAA,kBAAW,EAAC,UAAU,EAAE,UAAU,CAAC,CAAC;IAEnD,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE;QACrB,YAAY;QACZ,MAAM,OAAO,GAAG,CAAC,CAAC,UAAU,EAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAA,oDAAoD;QAC5F,MAAM,OAAO,GAAG,CAAC,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;QACzC,MAAM,cAAc,GAAG,CAAC,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;QAChD,MAAM,eAAe,GAAG,CAAC,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;QACjD,MAAM,MAAM,GAAG,CAAC,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;QACxC,MAAM,MAAM,GAAG,CAAC,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;QACxC,MAAM,SAAS,GAAG,CAAC,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;QAC3C,MAAM,SAAS,GAAG,CAAC,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;QAE3C,OAAO;YACH,OAAO;YACP,OAAO;YACP,cAAc;YACd,eAAe;YACf,MAAM;YACN,MAAM;YACN,SAAS;YACT,SAAS;SACZ,CAAC;KAEL;IACD,0BAA0B;IAC1B,IAAI,OAAO,EAAE;QACT,4BAA4B;QAC5B,OAAO,CAAC,GAAG,CAAC,sBAAsB,CAAC,CAAA;QACnC,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;QAExB,4BAA4B;QAC5B,OAAO,CAAC,GAAG,CACP,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACf,GAAG,EAAE,cAAO,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,KAAK,GAAG,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;YAChD,CAAC,EAAE,CAAC,CAAC,MAAM;YACX,CAAC,EAAE,CAAC,CAAC,QAAQ;YACb,IAAI,EAAE,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC;SAC5E,CAAC,CAAC,CACN,CAAC;KACL;IAED,MAAM,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;IACpB,MAAM,EAAE,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC;IAC/D,MAAM,WAAW,GAAG,IAAA,cAAO,EAAC,EAAE,EAAE,CAAC,CAAC,CAAC;IACnC,MAAM,OAAO,GAAG,IAAA,kBAAW,EAAC,EAAE,EAAE,WAAW,CAAC,CAAC;IAE7C,0BAA0B;IAC1B,IAAI,OAAO,EAAE;QACT,4BAA4B;QAC5B,OAAO,CAAC,GAAG,CACP,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAChB,GAAG,EAAE,cAAO,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,KAAK,GAAG,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;YAChD,CAAC,EAAE,CAAC,CAAC,MAAM;YACX,CAAC,EAAE,CAAC,CAAC,QAAQ;YACb,IAAI,EAAE,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC;SACpE,CAAC,CAAC,CACN,CAAC;KACL;IAED,MAAM,OAAO,GAAE,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IACjC,MAAM,OAAO,GAAG,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IAClC,MAAM,cAAc,GAAG,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IACzC,MAAM,eAAe,GAAG,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IAC1C,MAAM,MAAM,GAAG,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IACjC,MAAM,MAAM,GAAG,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IACjC,MAAM,SAAS,GAAG,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IACpC,MAAM,SAAS,GAAG,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IAGpC,OAAO;QACH,OAAO;QACP,OAAO;QACP,cAAc;QACd,eAAe;QACf,MAAM;QACN,MAAM;QACN,SAAS;QACT,SAAS;KACZ,CAAC;AACN,CAAC;AAnFD,8CAmFC"}
+{"version":3,"file":"explore_private_key.js","sourceRoot":"","sources":["../../source/explore_private_key.ts"],"names":[],"mappings":";;;AAAA,iCAAiC;AACjC,iCAA4F;AAiB5F,SAAS,CAAC,CAAC,MAAc,EAAE,CAAY;IACnC,OAAO,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ,GAAC,CAAC,EAAE,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,MAAM,CAAC,CAAA;AAC/D,CAAC;AACD,MAAM,OAAO,GAAE,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC;AACnC;;;;;;;;;;;;;;GAcG;AACH,SAAgB,iBAAiB,CAAC,UAAsB;IACpD,MAAM,CAAC,UAAU,YAAY,MAAM,CAAC,CAAC;IACrC,MAAM,UAAU,GAAG,IAAA,cAAO,EAAC,UAAU,EAAE,CAAC,CAAC,CAAC;IAC1C,MAAM,MAAM,GAAG,IAAA,kBAAW,EAAC,UAAU,EAAE,UAAU,CAAC,CAAC;IAEnD,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE;QACrB,YAAY;QACZ,MAAM,OAAO,GAAG,CAAC,CAAC,UAAU,EAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAA,oDAAoD;QAC5F,MAAM,OAAO,GAAG,CAAC,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;QACzC,MAAM,cAAc,GAAG,CAAC,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;QAChD,MAAM,eAAe,GAAG,CAAC,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;QACjD,MAAM,MAAM,GAAG,CAAC,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;QACxC,MAAM,MAAM,GAAG,CAAC,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;QACxC,MAAM,SAAS,GAAG,CAAC,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;QAC3C,MAAM,SAAS,GAAG,CAAC,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;QAE3C,OAAO;YACH,OAAO;YACP,OAAO;YACP,cAAc;YACd,eAAe;YACf,MAAM;YACN,MAAM;YACN,SAAS;YACT,SAAS;SACZ,CAAC;KAEL;IACD,0BAA0B;IAC1B,IAAI,OAAO,EAAE;QACT,4BAA4B;QAC5B,OAAO,CAAC,GAAG,CAAC,mCAAmC,CAAC,CAAA;QAChD,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;QAExB,4BAA4B;QAC5B,OAAO,CAAC,GAAG,CACP,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACf,GAAG,EAAE,cAAO,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,KAAK,GAAG,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;YAChD,CAAC,EAAE,CAAC,CAAC,MAAM;YACX,CAAC,EAAE,CAAC,CAAC,QAAQ;YACb,IAAI,EAAE,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC;SAC/E,CAAC,CAAC,CACN,CAAC;KACL;IAED,MAAM,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;IACpB,MAAM,EAAE,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC;IAClE,MAAM,WAAW,GAAG,IAAA,cAAO,EAAC,EAAE,EAAE,CAAC,CAAC,CAAC;IACnC,MAAM,OAAO,GAAG,IAAA,kBAAW,EAAC,EAAE,EAAE,WAAW,CAAC,CAAC;IAE7C,0BAA0B;IAC1B,IAAI,OAAO,EAAE;QACT,4BAA4B;QAC5B,OAAO,CAAC,GAAG,CACP,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAChB,GAAG,EAAE,cAAO,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,KAAK,GAAG,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;YAChD,CAAC,EAAE,CAAC,CAAC,MAAM;YACX,CAAC,EAAE,CAAC,CAAC,QAAQ;YACb,IAAI,EAAE,EAAE,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC;SACvE,CAAC,CAAC,CACN,CAAC;KACL;IAED,MAAM,OAAO,GAAE,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IACjC,MAAM,OAAO,GAAG,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IAClC,MAAM,cAAc,GAAG,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IACzC,MAAM,eAAe,GAAG,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IAC1C,MAAM,MAAM,GAAG,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IACjC,MAAM,MAAM,GAAG,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IACjC,MAAM,SAAS,GAAG,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IACpC,MAAM,SAAS,GAAG,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IAGpC,OAAO;QACH,OAAO;QACP,OAAO;QACP,cAAc;QACd,eAAe;QACf,MAAM;QACN,MAAM;QACN,SAAS;QACT,SAAS;KACZ,CAAC;AACN,CAAC;AAnFD,8CAmFC"}

package/dist/source/public_private_match.d.ts

@@ -1,3 +1,3 @@
-import { Certificate } from "./common";
-import { PrivateKey } from "./common";
+import { Certificate, PrivateKey } from "./common";
 export declare function publicKeyAndPrivateKeyMatches(certificate: Certificate, privateKey: PrivateKey): boolean;
+export declare function certificateMatchesPrivateKey(certificate: Certificate, privateKey: PrivateKey): boolean;

package/dist/source/public_private_match.js

@@ -1,10 +1,11 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.publicKeyAndPrivateKeyMatches = void 0;
-const _1 = require(".");
+exports.certificateMatchesPrivateKey = exports.publicKeyAndPrivateKeyMatches = void 0;
 const explore_private_key_1 = require("./explore_private_key");
+const crypto_utils_1 = require("./crypto_utils");
+const crypto_explore_certificate_1 = require("./crypto_explore_certificate");
 function publicKeyAndPrivateKeyMatches(certificate, privateKey) {
-    const i = (0, _1.exploreCertificate)(certificate);
+    const i = (0, crypto_explore_certificate_1.exploreCertificate)(certificate);
     const j = (0, explore_private_key_1.explorePrivateKey)(privateKey);
     const modulus1 = i.tbsCertificate.subjectPublicKeyInfo.subjectPublicKey.modulus;
     const modulus2 = j.modulus;
@@ -14,4 +15,24 @@ function publicKeyAndPrivateKeyMatches(certificate, privateKey) {
     return modulus1.toString("hex") === modulus2.toString("hex");
 }
 exports.publicKeyAndPrivateKeyMatches = publicKeyAndPrivateKeyMatches;
+/**
+ * check that the given certificate matches the given private key
+ * @param certificate
+ * @param privateKey
+ */
+function certificateMatchesPrivateKeyPEM(certificate, privateKey, blockSize) {
+    const initialBuffer = Buffer.from("Lorem Ipsum");
+    const encryptedBuffer = (0, crypto_utils_1.publicEncrypt_long)(initialBuffer, certificate, blockSize, 11);
+    const decryptedBuffer = (0, crypto_utils_1.privateDecrypt_long)(encryptedBuffer, privateKey, blockSize);
+    const finalString = decryptedBuffer.toString("utf-8");
+    return initialBuffer.toString("utf-8") === finalString;
+}
+function certificateMatchesPrivateKey(certificate, privateKey) {
+    const e = (0, explore_private_key_1.explorePrivateKey)(privateKey);
+    const blockSize = e.modulus.length;
+    const certificatePEM = (0, crypto_utils_1.toPem)(certificate, "CERTIFICATE");
+    const privateKeyPEM = (0, crypto_utils_1.toPem)(privateKey, "RSA PRIVATE KEY");
+    return certificateMatchesPrivateKeyPEM(certificatePEM, privateKeyPEM, blockSize);
+}
+exports.certificateMatchesPrivateKey = certificateMatchesPrivateKey;
 //# sourceMappingURL=public_private_match.js.map

package/dist/source/public_private_match.js.map

@@ -1 +1 @@
-{"version":3,"file":"public_private_match.js","sourceRoot":"","sources":["../../source/public_private_match.ts"],"names":[],"mappings":";;;AAAA,wBAAuC;AAGvC,+DAA0D;AAE1D,SAAiB,6BAA6B,CAAC,WAAwB,EAAC,UAAsB;IAE1F,MAAM,CAAC,GAAG,IAAA,qBAAkB,EAAC,WAAW,CAAC,CAAC;IAC1C,MAAM,CAAC,GAAG,IAAA,uCAAiB,EAAC,UAAU,CAAC,CAAC;IAExC,MAAM,QAAQ,GAAG,CAAC,CAAC,cAAc,CAAC,oBAAoB,CAAC,gBAAgB,CAAC,OAAO,CAAC;IAChF,MAAM,QAAQ,GAAG,CAAC,CAAC,OAAO,CAAC;IAE3B,IAAI,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,MAAM,EAAE;QACpC,OAAO,KAAK,CAAC;KAChB;IACD,OAAO,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,KAAK,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;AACjE,CAAC;AAZD,sEAYC"}
+{"version":3,"file":"public_private_match.js","sourceRoot":"","sources":["../../source/public_private_match.ts"],"names":[],"mappings":";;;AAAA,+DAA0D;AAE1D,iDAAgF;AAChF,6EAAkE;AAElE,SAAiB,6BAA6B,CAAC,WAAwB,EAAC,UAAsB;IAE1F,MAAM,CAAC,GAAG,IAAA,+CAAkB,EAAC,WAAW,CAAC,CAAC;IAC1C,MAAM,CAAC,GAAG,IAAA,uCAAiB,EAAC,UAAU,CAAC,CAAC;IAExC,MAAM,QAAQ,GAAG,CAAC,CAAC,cAAc,CAAC,oBAAoB,CAAC,gBAAgB,CAAC,OAAO,CAAC;IAChF,MAAM,QAAQ,GAAG,CAAC,CAAC,OAAO,CAAC;IAE3B,IAAI,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,MAAM,EAAE;QACpC,OAAO,KAAK,CAAC;KAChB;IACD,OAAO,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,KAAK,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;AACjE,CAAC;AAZD,sEAYC;AAID;;;;GAIG;AACH,SAAS,+BAA+B,CAAC,WAA2B,EAAE,UAAyB,EAAE,SAAiB;IAC9G,MAAM,aAAa,GAAG,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;IACjD,MAAM,eAAe,GAAG,IAAA,iCAAkB,EAAC,aAAa,EAAE,WAAW,EAAE,SAAS,EAAE,EAAE,CAAC,CAAC;IACtF,MAAM,eAAe,GAAG,IAAA,kCAAmB,EAAC,eAAe,EAAE,UAAU,EAAE,SAAS,CAAC,CAAC;IACpF,MAAM,WAAW,GAAG,eAAe,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IACtD,OAAO,aAAa,CAAC,QAAQ,CAAC,OAAO,CAAC,KAAK,WAAW,CAAC;AAC3D,CAAC;AAED,SAAgB,4BAA4B,CAAC,WAAwB,EAAE,UAAsB;IACzF,MAAM,CAAC,GAAG,IAAA,uCAAiB,EAAC,UAAU,CAAC,CAAC;IACxC,MAAM,SAAS,GAAG,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC;IACnC,MAAM,cAAc,GAAG,IAAA,oBAAK,EAAC,WAAW,EAAE,aAAa,CAAC,CAAC;IACzD,MAAM,aAAa,GAAG,IAAA,oBAAK,EAAC,UAAU,EAAE,iBAAiB,CAAC,CAAC;IAC3D,OAAO,+BAA+B,CAAC,cAAc,EAAE,aAAa,EAAE,SAAS,CAAC,CAAC;AACrF,CAAC;AAND,oEAMC"}

package/dist/source/verify_certificate_signature.d.ts

@@ -3,7 +3,7 @@ import { Certificate } from "./common";
 export declare function verifyCertificateOrClrSignature(certificateOrCrl: Buffer, parentCertificate: Certificate): boolean;
 export declare function verifyCertificateSignature(certificate: Certificate, parentCertificate: Certificate): boolean;
 export declare function verifyCertificateRevocationListSignature(certificateRevocationList: Certificate, parentCertificate: Certificate): boolean;
-export declare type _VerifyStatus = "BadCertificateIssuerUseNotAllowed" | "BadCertificateInvalid" | "Good";
+export type _VerifyStatus = "BadCertificateIssuerUseNotAllowed" | "BadCertificateInvalid" | "Good";
 export declare function verifyCertificateChain(certificateChain: Certificate[]): Promise<{
     status: _VerifyStatus;
     reason: string;

package/dist/source_nodejs/read.js

@@ -69,7 +69,7 @@ function setCertificateStore(store) {
 }
 exports.setCertificateStore = setCertificateStore;
 function read_sshkey_as_pem(filename) {
-    if (filename.substr(0, 1) !== ".") {
+    if (filename.substring(0, 1) !== ".") {
         filename = __certificate_store + filename;
     }
     const key = fs.readFileSync(filename, "ascii");
@@ -82,7 +82,7 @@ exports.read_sshkey_as_pem = read_sshkey_as_pem;
  * @param filename
  */
 function readPrivateRsaKey(filename) {
-    if (filename.substr(0, 1) !== "." && !fs.existsSync(filename)) {
+    if (filename.substring(0, 1) !== "." && !fs.existsSync(filename)) {
         filename = __certificate_store + filename;
     }
     return fs.readFileSync(filename, "ascii");

package/dist/source_nodejs/read.js.map

@@ -1 +1 @@
-{"version":3,"file":"read.js","sourceRoot":"","sources":["../../source_nodejs/read.ts"],"names":[],"mappings":";;;AAAA,iCAAiC;AACjC,yBAAyB;AACzB,6BAA6B;AAE7B,yDAA0E;AAC1E,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;AAE/B;;;GAGG;AACH,SAAgB,UAAU,CAAC,QAAgB;IACvC,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IAClD,MAAM,OAAO,GAAG,IAAA,8BAAe,EAAC,OAAO,CAAC,CAAC;IACzC,MAAM,CAAC,OAAO,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,6BAA6B;IAClE,OAAO,OAAO,CAAC;AACnB,CAAC;AALD,gCAKC;AAED,SAAS,YAAY,CAAC,QAAgB;IAClC,MAAM,CAAC,OAAO,QAAQ,KAAK,QAAQ,CAAC,CAAC;IACrC,OAAO,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;AAC9C,CAAC;AAED,SAAS,sBAAsB,CAAC,QAAgB;IAC5C,IAAI,QAAQ,CAAC,KAAK,CAAC,SAAS,CAAC,EAAE;QAC3B,OAAO,EAAE,CAAC,YAAY,CAAC,QAAQ,CAAW,CAAC;KAC9C;IACD,MAAM,OAAO,GAAW,YAAY,CAAC,QAAQ,CAAC,CAAC;IAC/C,OAAO,IAAA,8BAAe,EAAC,OAAO,CAAC,CAAC;AACpC,CAAC;AAED;;GAEG;AACH,SAAgB,eAAe,CAAC,QAAgB;IAC5C,OAAO,sBAAsB,CAAC,QAAQ,CAAgB,CAAC;AAC3D,CAAC;AAFD,0CAEC;AAED;;GAEG;AACH,SAAgB,aAAa,CAAC,QAAgB;IAC1C,OAAO,sBAAsB,CAAC,QAAQ,CAAc,CAAC;AACzD,CAAC;AAFD,sCAEC;AAED;;GAEG;AACH,SAAgB,cAAc,CAAC,QAAgB;IAC3C,OAAO,sBAAsB,CAAC,QAAQ,CAAe,CAAC;AAC1D,CAAC;AAFD,wCAEC;AAED,SAAgB,kBAAkB,CAAC,QAAgB;IAC/C,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC;AAClC,CAAC;AAFD,gDAEC;AAED,SAAgB,gBAAgB,CAAC,QAAgB;IAC7C,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC;AAClC,CAAC;AAFD,4CAEC;AAED,SAAgB,iBAAiB,CAAC,QAAgB;IAC9C,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC;AAClC,CAAC;AAFD,8CAEC;AACD,IAAI,mBAAmB,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,qBAAqB,CAAC,CAAC;AAEtE,SAAgB,mBAAmB,CAAC,KAAa;IAC7C,MAAM,SAAS,GAAG,mBAAmB,CAAC;IACtC,mBAAmB,GAAG,KAAK,CAAC;IAC5B,OAAO,SAAS,CAAC;AACrB,CAAC;AAJD,kDAIC;AAED,SAAgB,kBAAkB,CAAC,QAAgB;IAC/C,IAAI,QAAQ,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,GAAG,EAAE;QAC/B,QAAQ,GAAG,mBAAmB,GAAG,QAAQ,CAAC;KAC7C;IACD,MAAM,GAAG,GAAW,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IACvD,MAAM,MAAM,GAAG,KAAK,CAAC,QAAQ,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;IAE1C,OAAO,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAQ,CAAC;AAC3C,CAAC;AARD,gDAQC;AAED;;;GAGG;AACH,SAAgB,iBAAiB,CAAC,QAAgB;IAC9C,IAAI,QAAQ,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,GAAG,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE;QAC3D,QAAQ,GAAG,mBAAmB,GAAG,QAAQ,CAAC;KAC7C;IACD,OAAO,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAW,CAAC;AACxD,CAAC;AALD,8CAKC;AAED,SAAgB,gBAAgB,CAAC,QAAgB;IAC7C,OAAO,iBAAiB,CAAC,QAAQ,CAAC,CAAC;AACvC,CAAC;AAFD,4CAEC"}
+{"version":3,"file":"read.js","sourceRoot":"","sources":["../../source_nodejs/read.ts"],"names":[],"mappings":";;;AAAA,iCAAiC;AACjC,yBAAyB;AACzB,6BAA6B;AAE7B,yDAA0E;AAC1E,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;AAE/B;;;GAGG;AACH,SAAgB,UAAU,CAAC,QAAgB;IACvC,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IAClD,MAAM,OAAO,GAAG,IAAA,8BAAe,EAAC,OAAO,CAAC,CAAC;IACzC,MAAM,CAAC,OAAO,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,6BAA6B;IAClE,OAAO,OAAO,CAAC;AACnB,CAAC;AALD,gCAKC;AAED,SAAS,YAAY,CAAC,QAAgB;IAClC,MAAM,CAAC,OAAO,QAAQ,KAAK,QAAQ,CAAC,CAAC;IACrC,OAAO,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;AAC9C,CAAC;AAED,SAAS,sBAAsB,CAAC,QAAgB;IAC5C,IAAI,QAAQ,CAAC,KAAK,CAAC,SAAS,CAAC,EAAE;QAC3B,OAAO,EAAE,CAAC,YAAY,CAAC,QAAQ,CAAW,CAAC;KAC9C;IACD,MAAM,OAAO,GAAW,YAAY,CAAC,QAAQ,CAAC,CAAC;IAC/C,OAAO,IAAA,8BAAe,EAAC,OAAO,CAAC,CAAC;AACpC,CAAC;AAED;;GAEG;AACH,SAAgB,eAAe,CAAC,QAAgB;IAC5C,OAAO,sBAAsB,CAAC,QAAQ,CAAgB,CAAC;AAC3D,CAAC;AAFD,0CAEC;AAED;;GAEG;AACH,SAAgB,aAAa,CAAC,QAAgB;IAC1C,OAAO,sBAAsB,CAAC,QAAQ,CAAc,CAAC;AACzD,CAAC;AAFD,sCAEC;AAED;;GAEG;AACH,SAAgB,cAAc,CAAC,QAAgB;IAC3C,OAAO,sBAAsB,CAAC,QAAQ,CAAe,CAAC;AAC1D,CAAC;AAFD,wCAEC;AAED,SAAgB,kBAAkB,CAAC,QAAgB;IAC/C,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC;AAClC,CAAC;AAFD,gDAEC;AAED,SAAgB,gBAAgB,CAAC,QAAgB;IAC7C,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC;AAClC,CAAC;AAFD,4CAEC;AAED,SAAgB,iBAAiB,CAAC,QAAgB;IAC9C,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC;AAClC,CAAC;AAFD,8CAEC;AACD,IAAI,mBAAmB,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,qBAAqB,CAAC,CAAC;AAEtE,SAAgB,mBAAmB,CAAC,KAAa;IAC7C,MAAM,SAAS,GAAG,mBAAmB,CAAC;IACtC,mBAAmB,GAAG,KAAK,CAAC;IAC5B,OAAO,SAAS,CAAC;AACrB,CAAC;AAJD,kDAIC;AAED,SAAgB,kBAAkB,CAAC,QAAgB;IAC/C,IAAI,QAAQ,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,GAAG,EAAE;QAClC,QAAQ,GAAG,mBAAmB,GAAG,QAAQ,CAAC;KAC7C;IACD,MAAM,GAAG,GAAW,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IACvD,MAAM,MAAM,GAAG,KAAK,CAAC,QAAQ,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;IAE1C,OAAO,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAQ,CAAC;AAC3C,CAAC;AARD,gDAQC;AAED;;;GAGG;AACH,SAAgB,iBAAiB,CAAC,QAAgB;IAC9C,IAAI,QAAQ,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,GAAG,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE;QAC9D,QAAQ,GAAG,mBAAmB,GAAG,QAAQ,CAAC;KAC7C;IACD,OAAO,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAW,CAAC;AACxD,CAAC;AALD,8CAKC;AAED,SAAgB,gBAAgB,CAAC,QAAgB;IAC7C,OAAO,iBAAiB,CAAC,QAAQ,CAAC,CAAC;AACvC,CAAC;AAFD,4CAEC"}

package/dist/source_nodejs/read_certificate_signing_request.d.ts

@@ -1,3 +1,3 @@
 /// <reference types="node" />
-export declare type CertificateSigningRequest = Buffer;
+export type CertificateSigningRequest = Buffer;
 export declare function readCertificateSigningRequest(filename: string): Promise<CertificateSigningRequest>;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "node-opcua-crypto",
-  "version": "1.12.0",
+  "version": "2.0.1",
   "description": "Crypto tools for Node-OPCUA",
   "main": "./index.js",
   "types": "./index.d.ts",
@@ -28,27 +28,27 @@
   "author": "Etienne Rossignon",
   "license": "MIT",
   "devDependencies": {
-    "@types/mocha": "^10.0.0",
-    "@types/node": "^18.11.3",
-    "@typescript-eslint/eslint-plugin": "^5.40.1",
-    "@typescript-eslint/parser": "^5.40.1",
-    "eslint": "^8.25.0",
+    "@types/mocha": "^10.0.1",
+    "@types/node": "^18.11.15",
+    "@typescript-eslint/eslint-plugin": "^5.46.1",
+    "@typescript-eslint/parser": "^5.46.1",
+    "eslint": "^8.29.0",
     "eslint-config-prettier": "^8.5.0",
     "eslint-plugin-prettier": "^4.2.1",
     "lorem-ipsum": "^2.0.8",
-    "mocha": "^10.1.0",
-    "prettier": "^2.7.1",
+    "mocha": "^10.2.0",
+    "prettier": "^2.8.1",
     "should": "^13.2.3",
     "source-map": "^0.7.4",
     "source-map-support": "^0.5.21",
     "ts-node": "^10.9.1",
-    "typescript": "^4.8.4"
+    "typescript": "^4.9.4"
   },
   "dependencies": {
     "better-assert": "^1.0.2",
     "chalk": "^4.1.2",
     "hexy": "0.3.4",
-    "jsrsasign": "^10.5.27",
+    "jsrsasign": "^10.6.1",
     "sshpk": "^1.17.0"
   },
   "repository": {

package/source/crypto_utils.ts

@@ -61,7 +61,7 @@ export function toPem(raw_key: Buffer | string, pem: string): string {
     assert(typeof pem === "string");
     let pemType = identifyPemType(raw_key);
     if (pemType) {
-        return raw_key instanceof Buffer ?  raw_key.toString("utf8") : raw_key;
+        return raw_key instanceof Buffer ? raw_key.toString("utf8") : raw_key;
     } else {
         pemType = pem;
         assert(["CERTIFICATE REQUEST", "CERTIFICATE", "RSA PRIVATE KEY", "PUBLIC KEY", "X509 CRL"].indexOf(pemType) >= 0);
@@ -84,7 +84,7 @@ export function hexDump(buffer: Buffer, width?: number): string {
     }
     width = width || 32;
     if (buffer.length > 1024) {
-        return hexy(buffer.slice(0, 1024), { width, format: "twos" }) + "\n .... ( " + buffer.length + ")";
+        return hexy(buffer.subarray(0, 1024), { width, format: "twos" }) + "\n .... ( " + buffer.length + ")";
     } else {
         return hexy(buffer, { width, format: "twos" });
     }
@@ -106,7 +106,7 @@ interface MakeMessageChunkSignatureOptions {
  * @return - the signature
  */
 export function makeMessageChunkSignature(chunk: Buffer, options: MakeMessageChunkSignatureOptions): Buffer {
-    assert(Object.prototype.hasOwnProperty.call(options,"algorithm"));
+    assert(Object.prototype.hasOwnProperty.call(options, "algorithm"));
     assert(chunk instanceof Buffer);
     assert(["RSA PRIVATE KEY", "PRIVATE KEY"].indexOf(identifyPemType(options.privateKey) as string) >= 0);
     // signature length = 128 bytes
@@ -223,29 +223,40 @@ export function publicEncrypt_long(
     publicKey: PublicKeyPEM,
     blockSize: number,
     padding: number,
-    algorithm?: PaddingAlgorithm
+    paddingAlgorithm?: PaddingAlgorithm
 ): Buffer {
-    if (algorithm === undefined) {
-        algorithm = PaddingAlgorithm.RSA_PKCS1_PADDING;
+    if (paddingAlgorithm === undefined) {
+        paddingAlgorithm = PaddingAlgorithm.RSA_PKCS1_PADDING;
+    }
+    if (paddingAlgorithm !== RSA_PKCS1_PADDING && paddingAlgorithm !== RSA_PKCS1_OAEP_PADDING) {
+        throw new Error("Invalid padding algorithm " + paddingAlgorithm);
     }
-    assert(algorithm === RSA_PKCS1_PADDING || algorithm === RSA_PKCS1_OAEP_PADDING);
 
     const chunk_size = blockSize - padding;
     const nbBlocks = Math.ceil(buffer.length / chunk_size);
 
     const outputBuffer = createFastUninitializedBuffer(nbBlocks * blockSize);
     for (let i = 0; i < nbBlocks; i++) {
-        const currentBlock = buffer.slice(chunk_size * i, chunk_size * (i + 1));
-        const encrypted_chunk = publicEncrypt(currentBlock, publicKey, algorithm);
-        assert(encrypted_chunk.length === blockSize);
+        const currentBlock = buffer.subarray(chunk_size * i, chunk_size * (i + 1));
+        const encrypted_chunk = publicEncrypt(currentBlock, publicKey, paddingAlgorithm);
+        if (encrypted_chunk.length !== blockSize) {
+            throw new Error(`publicEncrypt_long unexpected chunk length ${encrypted_chunk.length}  expecting ${blockSize}`);
+        }
         encrypted_chunk.copy(outputBuffer, i * blockSize);
     }
     return outputBuffer;
 }
 
-export function privateDecrypt_long(buffer: Buffer, privateKey: PrivateKeyPEM, blockSize: number, algorithm?: number): Buffer {
-    algorithm = algorithm || RSA_PKCS1_PADDING;
-    assert(algorithm === RSA_PKCS1_PADDING || algorithm === RSA_PKCS1_OAEP_PADDING);
+export function privateDecrypt_long(
+    buffer: Buffer,
+    privateKey: PrivateKeyPEM,
+    blockSize: number,
+    paddingAlgorithm?: number
+): Buffer {
+    paddingAlgorithm = paddingAlgorithm || RSA_PKCS1_PADDING;
+    if (paddingAlgorithm !== RSA_PKCS1_PADDING && paddingAlgorithm !== RSA_PKCS1_OAEP_PADDING) {
+        throw new Error("Invalid padding algorithm " + paddingAlgorithm);
+    }
 
     const nbBlocks = Math.ceil(buffer.length / blockSize);
 
@@ -253,12 +264,12 @@ export function privateDecrypt_long(buffer: Buffer, privateKey: PrivateKeyPEM, b
 
     let total_length = 0;
     for (let i = 0; i < nbBlocks; i++) {
-        const currentBlock = buffer.slice(blockSize * i, Math.min(blockSize * (i + 1), buffer.length));
-        const decrypted_buf = privateDecrypt(currentBlock, privateKey, algorithm);
+        const currentBlock = buffer.subarray(blockSize * i, Math.min(blockSize * (i + 1), buffer.length));
+        const decrypted_buf = privateDecrypt(currentBlock, privateKey, paddingAlgorithm);
         decrypted_buf.copy(outputBuffer, total_length);
         total_length += decrypted_buf.length;
     }
-    return outputBuffer.slice(0, total_length);
+    return outputBuffer.subarray(0, total_length);
 }
 
 export function coerceCertificatePem(certificate: Certificate | CertificatePEM): CertificatePEM {
@@ -276,14 +287,41 @@ export function coercePublicKeyPem(publicKey: PublicKey | PublicKeyPEM): PublicK
     assert(typeof publicKey === "string");
     return publicKey;
 }
+export function coercePrivateKeyPem(privateKey: PrivateKey | PrivateKeyPEM): PrivateKeyPEM {
+    if (privateKey instanceof Buffer) {
+        
+        const o = crypto.createPrivateKey({ key: privateKey, format: "der", type: "pkcs1"});
+
+        const e = o.export({format: "der", type: "pkcs1"});
+        privateKey = toPem(e, "RSA PRIVATE KEY");
+    }
+    assert(typeof privateKey === "string");
+    return privateKey;
+}
 
 /***
- * @method rsa_length
+ * @method rsaLengthPrivateKey
  * A very expensive way to determine the rsa key length ( i.e 2048bits or 1024bits)
  * @param key  a PEM public key or a PEM rsa private key
- * @return { the key length in bytes.
+ * @return the key length in bytes.
  */
-export function rsa_length(key: PublicKeyPEM | PublicKey): number {
+export function rsaLengthPrivateKey(key: PrivateKeyPEM | PrivateKey): number {
+    key = coercePrivateKeyPem(key);
+    assert(typeof key === "string");
+    if (/PRIVATE/.test(key)) {
+        const o = crypto.createPrivateKey(key);
+        // in node 16 and above : 
+        // return o.asymmetricKeyDetails.modulusLength/8
+        // in node <16 : 
+        const key2 = o.export({ type: "pkcs1", format: "pem" });
+        const a = jsrsasign.KEYUTIL.getKey(key2);
+        return a.n.toString(16).length / 2;
+    }
+    const a = jsrsasign.KEYUTIL.getKey(key);
+    return a.n.toString(16).length / 2;
+}
+
+export function rsaLengthPublicKey(key: PublicKeyPEM  | PublicKey): number {
     key = coercePublicKeyPem(key);
     assert(typeof key === "string");
     const a = jsrsasign.KEYUTIL.getKey(key);

package/source/explore_private_key.ts

@@ -17,7 +17,7 @@ export interface PrivateKeyInternals {
 }
 
 function f(buffer: Buffer, b: BlockInfo) {
-    return buffer.slice(b.position+1, b.position + b.length)
+    return buffer.subarray(b.position+1, b.position + b.length)
 }
 const doDebug= !!process.env.DEBUG;
 /**
@@ -66,7 +66,7 @@ export function explorePrivateKey(privateKey: PrivateKey): PrivateKeyInternals {
     /* istanbul ignore next */
     if (doDebug) {
         // tslint:disable:no-console
-        console.log("--------------------")
+        console.log("-------------------- private key:")
         console.log(block_info);
 
         // tslint:disable:no-console
@@ -75,13 +75,13 @@ export function explorePrivateKey(privateKey: PrivateKey): PrivateKeyInternals {
                 tag: TagType[b.tag] + " 0x" + b.tag.toString(16),
                 l: b.length,
                 p: b.position,
-                buff: privateKey.slice(b.position, b.position + b.length).toString("hex"),
+                buff: privateKey.subarray(b.position, b.position + b.length).toString("hex"),
             }))
         );
     }
 
     const b = blocks[2];
-    const bb = privateKey.slice(b.position, b.position + b.length);
+    const bb = privateKey.subarray(b.position, b.position + b.length);
     const block_info1 = readTag(bb, 0);
     const blocks1 = _readStruct(bb, block_info1);
 
@@ -93,7 +93,7 @@ export function explorePrivateKey(privateKey: PrivateKey): PrivateKeyInternals {
                 tag: TagType[b.tag] + " 0x" + b.tag.toString(16),
                 l: b.length,
                 p: b.position,
-                buff: bb.slice(b.position, b.position + b.length).toString("hex"),
+                buff: bb.subarray(b.position, b.position + b.length).toString("hex"),
             }))
         );
     }

package/source/public_private_match.ts

@@ -1,7 +1,7 @@
-import { exploreCertificate } from ".";
-import { Certificate } from "./common";
-import { PrivateKey } from "./common";
 import { explorePrivateKey } from "./explore_private_key";
+import { Certificate, CertificatePEM, PrivateKey, PrivateKeyPEM } from "./common";
+import { privateDecrypt_long, publicEncrypt_long, toPem } from "./crypto_utils";
+import { exploreCertificate } from "./crypto_explore_certificate";
 
 export function  publicKeyAndPrivateKeyMatches(certificate: Certificate,privateKey: PrivateKey): boolean {
 
@@ -15,4 +15,27 @@ export function  publicKeyAndPrivateKeyMatches(certificate: Certificate,privateK
         return false;
     }
     return modulus1.toString("hex") === modulus2.toString("hex");
-}
+}
+
+
+
+/**
+ * check that the given certificate matches the given private key
+ * @param certificate
+ * @param privateKey
+ */
+function certificateMatchesPrivateKeyPEM(certificate: CertificatePEM, privateKey: PrivateKeyPEM, blockSize: number): boolean {
+    const initialBuffer = Buffer.from("Lorem Ipsum");
+    const encryptedBuffer = publicEncrypt_long(initialBuffer, certificate, blockSize, 11);
+    const decryptedBuffer = privateDecrypt_long(encryptedBuffer, privateKey, blockSize);
+    const finalString = decryptedBuffer.toString("utf-8");
+    return initialBuffer.toString("utf-8") === finalString;
+}
+
+export function certificateMatchesPrivateKey(certificate: Certificate, privateKey: PrivateKey): boolean {
+    const e = explorePrivateKey(privateKey);
+    const blockSize = e.modulus.length;
+    const certificatePEM = toPem(certificate, "CERTIFICATE");
+    const privateKeyPEM = toPem(privateKey, "RSA PRIVATE KEY");
+    return certificateMatchesPrivateKeyPEM(certificatePEM, privateKeyPEM, blockSize);
+}

package/source_nodejs/read.ts

@@ -70,7 +70,7 @@ export function setCertificateStore(store: string): string {
 }
 
 export function read_sshkey_as_pem(filename: string): PublicKeyPEM {
-    if (filename.substr(0, 1) !== ".") {
+    if (filename.substring(0, 1) !== ".") {
         filename = __certificate_store + filename;
     }
     const key: string = fs.readFileSync(filename, "ascii");
@@ -84,7 +84,7 @@ export function read_sshkey_as_pem(filename: string): PublicKeyPEM {
  * @param filename
  */
 export function readPrivateRsaKey(filename: string): PrivateKeyPEM {
-    if (filename.substr(0, 1) !== "." && !fs.existsSync(filename)) {
+    if (filename.substring(0, 1) !== "." && !fs.existsSync(filename)) {
         filename = __certificate_store + filename;
     }
     return fs.readFileSync(filename, "ascii") as string;