node-opcua-crypto 4.3.1 → 4.5.0

package/README.md

@@ -107,13 +107,8 @@ Thank you for considering NodeOPCUA Crypto for your OPCUA cryptography needs. We
 
 
 
-## :heart: Supporting the development effort - Sponsors & Backers</span>
+##  Supporting the development effort - Sponsors & Backers
 
-If you like node-opcua-pki and if you are relying on it in one of your projects, please consider becoming a backer and [sponsoring us](https://github.com/sponsors/node-opcua), this will help us to maintain a high-quality stack and constant evolution of this module.
+If you like `node-opcua-pki` and if you are relying on it in one of your projects, please consider becoming a backer and [sponsoring us](https://github.com/sponsors/node-opcua), this will help us to maintain a high-quality stack and constant evolution of this module.
 
-If your company would like to participate and influence the development of future versions of node-opcua please contact [sterfive](mailto:contact@sterfive.com).
-
-<!--
-https://app.fossa.com/reports/489947c3-2e83-48e5-8351-192f553ded57
-https://linuxctl.com/2017/02/x509-certificate-manual-signature-verification/
--->
+If your company would like to participate and influence the development of future versions of `node-opcua` please contact [sterfive](mailto:contact@sterfive.com).

package/dist/{chunk-QSSIRHMR.mjs → chunk-SNCRM4BA.mjs}

@@ -880,11 +880,23 @@ function _readAuthorityKeyIdentifier(buffer) {
 }
 function readBasicConstraint2_5_29_19(buffer, block) {
   const block_info = readTag(buffer, 0);
-  const inner_blocks = _readStruct(buffer, block_info);
-  const cA = inner_blocks.length > 0 ? _readBooleanValue(buffer, inner_blocks[0]) : false;
+  const inner_blocks = _readStruct(buffer, block_info).slice(0, 2);
+  let cA = false;
   let pathLengthConstraint = 0;
-  if (inner_blocks.length > 1) {
-    pathLengthConstraint = _readIntegerValue(buffer, inner_blocks[1]);
+  let breakControl = 0;
+  for (const inner_block of inner_blocks) {
+    switch (inner_block.tag) {
+      case 1 /* BOOLEAN */:
+        cA = _readBooleanValue(buffer, inner_block);
+        break;
+      case 2 /* INTEGER */:
+        pathLengthConstraint = _readIntegerValue(buffer, inner_block);
+        breakControl = 1;
+        break;
+    }
+    if (breakControl) {
+      break;
+    }
   }
   return { critical: true, cA, pathLengthConstraint };
 }
@@ -6034,6 +6046,7 @@ async function createSelfSignedCertificate({
         new x5092.ExtendedKeyUsageExtension(keyUsageExtension, true),
         new x5092.KeyUsagesExtension(usages, true),
         await x5092.SubjectKeyIdentifierExtension.create(keys.publicKey),
+        await x5092.AuthorityKeyIdentifierExtension.create(keys.publicKey),
         new x5092.SubjectAlternativeNameExtension(alternativeNameExtensions)
       ]
     },
@@ -6240,4 +6253,4 @@ asn1js/build/index.es.js:
    * 
    *)
 */
-//# sourceMappingURL=chunk-QSSIRHMR.mjs.map
+//# sourceMappingURL=chunk-SNCRM4BA.mjs.map

package/dist/{chunk-KPKFYTZJ.mjs → chunk-UZNNRQTR.mjs}

@@ -6,7 +6,7 @@ import {
   privateKeyToPEM,
   removeTrailingLF,
   toPem
-} from "./chunk-QSSIRHMR.mjs";
+} from "./chunk-SNCRM4BA.mjs";
 
 // source_nodejs/read.ts
 import assert from "assert";
@@ -170,4 +170,4 @@ export {
   generatePrivateKeyFile,
   generatePrivateKeyFileAlternate
 };
-//# sourceMappingURL=chunk-KPKFYTZJ.mjs.map
+//# sourceMappingURL=chunk-UZNNRQTR.mjs.map

package/dist/index.js

@@ -824,11 +824,23 @@ function _readAuthorityKeyIdentifier(buffer) {
 }
 function readBasicConstraint2_5_29_19(buffer, block) {
   const block_info = readTag(buffer, 0);
-  const inner_blocks = _readStruct(buffer, block_info);
-  const cA = inner_blocks.length > 0 ? _readBooleanValue(buffer, inner_blocks[0]) : false;
+  const inner_blocks = _readStruct(buffer, block_info).slice(0, 2);
+  let cA = false;
   let pathLengthConstraint = 0;
-  if (inner_blocks.length > 1) {
-    pathLengthConstraint = _readIntegerValue(buffer, inner_blocks[1]);
+  let breakControl = 0;
+  for (const inner_block of inner_blocks) {
+    switch (inner_block.tag) {
+      case 1 /* BOOLEAN */:
+        cA = _readBooleanValue(buffer, inner_block);
+        break;
+      case 2 /* INTEGER */:
+        pathLengthConstraint = _readIntegerValue(buffer, inner_block);
+        breakControl = 1;
+        break;
+    }
+    if (breakControl) {
+      break;
+    }
   }
   return { critical: true, cA, pathLengthConstraint };
 }
@@ -6153,6 +6165,7 @@ async function createSelfSignedCertificate({
         new x5092.ExtendedKeyUsageExtension(keyUsageExtension, true),
         new x5092.KeyUsagesExtension(usages, true),
         await x5092.SubjectKeyIdentifierExtension.create(keys.publicKey),
+        await x5092.AuthorityKeyIdentifierExtension.create(keys.publicKey),
         new x5092.SubjectAlternativeNameExtension(alternativeNameExtensions)
       ]
     },

package/dist/index.mjs

@@ -14,7 +14,7 @@ import {
   readPublicKeyPEM,
   readPublicRsaKey,
   setCertificateStore
-} from "./chunk-KPKFYTZJ.mjs";
+} from "./chunk-UZNNRQTR.mjs";
 import "./chunk-5NV4OKIV.mjs";
 import {
   CertificatePurpose,
@@ -110,7 +110,7 @@ import {
   verifyChunkSignature,
   verifyChunkSignatureWithDerivedKeys,
   verifyMessageChunkSignature
-} from "./chunk-QSSIRHMR.mjs";
+} from "./chunk-SNCRM4BA.mjs";
 export {
   CertificatePurpose,
   PaddingAlgorithm,

package/dist/source/index.js

@@ -809,11 +809,23 @@ function _readAuthorityKeyIdentifier(buffer) {
 }
 function readBasicConstraint2_5_29_19(buffer, block) {
   const block_info = readTag(buffer, 0);
-  const inner_blocks = _readStruct(buffer, block_info);
-  const cA = inner_blocks.length > 0 ? _readBooleanValue(buffer, inner_blocks[0]) : false;
+  const inner_blocks = _readStruct(buffer, block_info).slice(0, 2);
+  let cA = false;
   let pathLengthConstraint = 0;
-  if (inner_blocks.length > 1) {
-    pathLengthConstraint = _readIntegerValue(buffer, inner_blocks[1]);
+  let breakControl = 0;
+  for (const inner_block of inner_blocks) {
+    switch (inner_block.tag) {
+      case 1 /* BOOLEAN */:
+        cA = _readBooleanValue(buffer, inner_block);
+        break;
+      case 2 /* INTEGER */:
+        pathLengthConstraint = _readIntegerValue(buffer, inner_block);
+        breakControl = 1;
+        break;
+    }
+    if (breakControl) {
+      break;
+    }
   }
   return { critical: true, cA, pathLengthConstraint };
 }
@@ -6138,6 +6150,7 @@ async function createSelfSignedCertificate({
         new x5092.ExtendedKeyUsageExtension(keyUsageExtension, true),
         new x5092.KeyUsagesExtension(usages, true),
         await x5092.SubjectKeyIdentifierExtension.create(keys.publicKey),
+        await x5092.AuthorityKeyIdentifierExtension.create(keys.publicKey),
         new x5092.SubjectAlternativeNameExtension(alternativeNameExtensions)
       ]
     },

package/dist/source/index.mjs

@@ -93,7 +93,7 @@ import {
   verifyChunkSignature,
   verifyChunkSignatureWithDerivedKeys,
   verifyMessageChunkSignature
-} from "../chunk-QSSIRHMR.mjs";
+} from "../chunk-SNCRM4BA.mjs";
 export {
   CertificatePurpose,
   PaddingAlgorithm,

package/dist/source/index_web.js

@@ -809,11 +809,23 @@ function _readAuthorityKeyIdentifier(buffer) {
 }
 function readBasicConstraint2_5_29_19(buffer, block) {
   const block_info = readTag(buffer, 0);
-  const inner_blocks = _readStruct(buffer, block_info);
-  const cA = inner_blocks.length > 0 ? _readBooleanValue(buffer, inner_blocks[0]) : false;
+  const inner_blocks = _readStruct(buffer, block_info).slice(0, 2);
+  let cA = false;
   let pathLengthConstraint = 0;
-  if (inner_blocks.length > 1) {
-    pathLengthConstraint = _readIntegerValue(buffer, inner_blocks[1]);
+  let breakControl = 0;
+  for (const inner_block of inner_blocks) {
+    switch (inner_block.tag) {
+      case 1 /* BOOLEAN */:
+        cA = _readBooleanValue(buffer, inner_block);
+        break;
+      case 2 /* INTEGER */:
+        pathLengthConstraint = _readIntegerValue(buffer, inner_block);
+        breakControl = 1;
+        break;
+    }
+    if (breakControl) {
+      break;
+    }
   }
   return { critical: true, cA, pathLengthConstraint };
 }
@@ -6138,6 +6150,7 @@ async function createSelfSignedCertificate({
         new x5092.ExtendedKeyUsageExtension(keyUsageExtension, true),
         new x5092.KeyUsagesExtension(usages, true),
         await x5092.SubjectKeyIdentifierExtension.create(keys.publicKey),
+        await x5092.AuthorityKeyIdentifierExtension.create(keys.publicKey),
         new x5092.SubjectAlternativeNameExtension(alternativeNameExtensions)
       ]
     },

package/dist/source/index_web.mjs

@@ -92,7 +92,7 @@ import {
   verifyChunkSignature,
   verifyChunkSignatureWithDerivedKeys,
   verifyMessageChunkSignature
-} from "../chunk-QSSIRHMR.mjs";
+} from "../chunk-SNCRM4BA.mjs";
 export {
   CertificatePurpose,
   PaddingAlgorithm,

package/dist/source_nodejs/index.mjs

@@ -14,9 +14,9 @@ import {
   readPublicKeyPEM,
   readPublicRsaKey,
   setCertificateStore
-} from "../chunk-KPKFYTZJ.mjs";
+} from "../chunk-UZNNRQTR.mjs";
 import "../chunk-5NV4OKIV.mjs";
-import "../chunk-QSSIRHMR.mjs";
+import "../chunk-SNCRM4BA.mjs";
 export {
   generatePrivateKeyFile,
   generatePrivateKeyFileAlternate,

package/package.json

@@ -1,6 +1,6 @@
 {
     "name": "node-opcua-crypto",
-    "version": "4.3.1",
+    "version": "4.5.0",
     "description": "Crypto tools for Node-OPCUA",
     "types": "./dist-types/index.d.ts",
     "main": "./dist/index.js",
@@ -80,5 +80,5 @@
     "bugs": {
         "url": "https://github.com/node-opcua/node-opcua-crypto/issues"
     },
-    "gitHead": "0aa3e491d5d63ce1e718aaf5fa6a4a7d4321d415"
+    "gitHead": "d597dce6e5ef21f15d8736646039d5d17dbbf9de"
 }