node-opcua-crypto 5.3.1 → 5.3.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (23) hide show
  1. package/dist/{chunk-ISWOJ526.js → chunk-DC5KIPR2.js} +2 -2
  2. package/dist/{chunk-Z4PNMXBN.js → chunk-MFGOTDMX.js} +65 -13
  3. package/dist/chunk-MFGOTDMX.js.map +1 -0
  4. package/dist/{chunk-3KSBDOQT.cjs → chunk-R6I4NJSZ.cjs} +67 -15
  5. package/dist/chunk-R6I4NJSZ.cjs.map +1 -0
  6. package/dist/{chunk-MUTGGDEL.cjs → chunk-XJHDKGLH.cjs} +22 -22
  7. package/dist/{chunk-MUTGGDEL.cjs.map → chunk-XJHDKGLH.cjs.map} +1 -1
  8. package/dist/index.cjs +7 -3
  9. package/dist/index.cjs.map +1 -1
  10. package/dist/index.d.cts +1 -1
  11. package/dist/index.d.ts +1 -1
  12. package/dist/index.js +7 -3
  13. package/dist/source/index_web.cjs +6 -2
  14. package/dist/source/index_web.cjs.map +1 -1
  15. package/dist/source/index_web.d.cts +10 -1
  16. package/dist/source/index_web.d.ts +10 -1
  17. package/dist/source/index_web.js +7 -3
  18. package/dist/source_nodejs/index.cjs +3 -3
  19. package/dist/source_nodejs/index.js +2 -2
  20. package/package.json +6 -5
  21. package/dist/chunk-3KSBDOQT.cjs.map +0 -1
  22. package/dist/chunk-Z4PNMXBN.js.map +0 -1
  23. /package/dist/{chunk-ISWOJ526.js.map → chunk-DC5KIPR2.js.map} +0 -0
package/dist/{chunk-MUTGGDEL.cjs → chunk-XJHDKGLH.cjs} RENAMED
@@ -7,14 +7,14 @@
7
7
 
8
8
 
9
9
 
10
- var _chunk3KSBDOQTcjs = require('./chunk-3KSBDOQT.cjs');
10
+ var _chunkR6I4NJSZcjs = require('./chunk-R6I4NJSZ.cjs');
11
11
 
12
12
  // source_nodejs/generate_private_key_filename.ts
13
13
  var _crypto = require('crypto');
14
14
  var _fs = require('fs'); var _fs2 = _interopRequireDefault(_fs);
15
15
  async function generatePrivateKeyFile(privateKeyFilename, modulusLength) {
16
- const keys = await _chunk3KSBDOQTcjs.generateKeyPair.call(void 0, modulusLength);
17
- const privateKeyPem = await _chunk3KSBDOQTcjs.privateKeyToPEM.call(void 0, keys.privateKey);
16
+ const keys = await _chunkR6I4NJSZcjs.generateKeyPair.call(void 0, modulusLength);
17
+ const privateKeyPem = await _chunkR6I4NJSZcjs.privateKeyToPEM.call(void 0, keys.privateKey);
18
18
  await _fs2.default.promises.writeFile(privateKeyFilename, privateKeyPem.privPem, "utf-8");
19
19
  privateKeyPem.privPem = "";
20
20
  privateKeyPem.privDer = new ArrayBuffer(0);
@@ -36,7 +36,7 @@ var _path = require('path'); var _path2 = _interopRequireDefault(_path);
36
36
  var _sshpk = require('sshpk'); var _sshpk2 = _interopRequireDefault(_sshpk);
37
37
  function _readPemFile(filename) {
38
38
  _assert2.default.call(void 0, typeof filename === "string");
39
- return _chunk3KSBDOQTcjs.removeTrailingLF.call(void 0, _fs2.default.readFileSync(filename, "utf-8"));
39
+ return _chunkR6I4NJSZcjs.removeTrailingLF.call(void 0, _fs2.default.readFileSync(filename, "utf-8"));
40
40
  }
41
41
  function _countPemCertBlocks(pem) {
42
42
  const matches = pem.match(/-----BEGIN CERTIFICATE-----/g);
@@ -53,11 +53,11 @@ function readCertificate(filename) {
53
53
  `[node-opcua-crypto] readCertificate: "${_path2.default.basename(filename)}" contains ${count} PEM certificate block(s) but only the first will be used. Use readCertificateChain() to read all certificates.`
54
54
  );
55
55
  }
56
- return _chunk3KSBDOQTcjs.convertPEMtoDER.call(void 0, pem);
56
+ return _chunkR6I4NJSZcjs.convertPEMtoDER.call(void 0, pem);
57
57
  }
58
58
  function readCertificateChain(filename) {
59
59
  if (filename.match(/.*\.der/)) {
60
- return _chunk3KSBDOQTcjs.split_der.call(void 0, _fs2.default.readFileSync(filename));
60
+ return _chunkR6I4NJSZcjs.split_der.call(void 0, _fs2.default.readFileSync(filename));
61
61
  }
62
62
  const pem = _readPemFile(filename);
63
63
  return _extractAllPemDerCertificates(pem);
@@ -65,9 +65,9 @@ function readCertificateChain(filename) {
65
65
  async function readCertificateChainAsync(filename) {
66
66
  const buf = await _fs2.default.promises.readFile(filename);
67
67
  if (filename.match(/.*\.der/)) {
68
- return _chunk3KSBDOQTcjs.split_der.call(void 0, buf);
68
+ return _chunkR6I4NJSZcjs.split_der.call(void 0, buf);
69
69
  }
70
- const pem = _chunk3KSBDOQTcjs.removeTrailingLF.call(void 0, buf.toString("utf-8"));
70
+ const pem = _chunkR6I4NJSZcjs.removeTrailingLF.call(void 0, buf.toString("utf-8"));
71
71
  return _extractAllPemDerCertificates(pem);
72
72
  }
73
73
  function _extractAllPemDerCertificates(pem) {
@@ -87,14 +87,14 @@ async function readCertificateAsync(filename) {
87
87
  if (filename.match(/.*\.der/)) {
88
88
  return buf;
89
89
  }
90
- const raw_key = _chunk3KSBDOQTcjs.removeTrailingLF.call(void 0, buf.toString("utf-8"));
90
+ const raw_key = _chunkR6I4NJSZcjs.removeTrailingLF.call(void 0, buf.toString("utf-8"));
91
91
  const count = _countPemCertBlocks(raw_key);
92
92
  if (count > 1) {
93
93
  console.warn(
94
94
  `[node-opcua-crypto] readCertificateAsync: "${_path2.default.basename(filename)}" contains ${count} PEM certificate block(s) but only the first will be used. Use readCertificateChainAsync() to read all certificates.`
95
95
  );
96
96
  }
97
- return _chunk3KSBDOQTcjs.convertPEMtoDER.call(void 0, raw_key);
97
+ return _chunkR6I4NJSZcjs.convertPEMtoDER.call(void 0, raw_key);
98
98
  }
99
99
  function readPublicKey(filename) {
100
100
  if (filename.match(/.*\.der/)) {
@@ -110,13 +110,13 @@ async function readPublicKeyAsync(filename) {
110
110
  if (filename.match(/.*\.der/)) {
111
111
  return _crypto.createPublicKey.call(void 0, buf);
112
112
  }
113
- return _crypto.createPublicKey.call(void 0, _chunk3KSBDOQTcjs.removeTrailingLF.call(void 0, buf.toString("utf-8")));
113
+ return _crypto.createPublicKey.call(void 0, _chunkR6I4NJSZcjs.removeTrailingLF.call(void 0, buf.toString("utf-8")));
114
114
  }
115
115
  function myCreatePrivateKey(rawKey) {
116
116
  if (!_crypto.createPrivateKey || process.env.NO_CREATE_PRIVATEKEY) {
117
117
  if (Buffer.isBuffer(rawKey)) {
118
- const pemKey = _chunk3KSBDOQTcjs.toPem.call(void 0, rawKey, "PRIVATE KEY");
119
- _assert2.default.call(void 0, ["RSA PRIVATE KEY", "PRIVATE KEY"].indexOf(_chunk3KSBDOQTcjs.identifyPemType.call(void 0, pemKey)) >= 0);
118
+ const pemKey = _chunkR6I4NJSZcjs.toPem.call(void 0, rawKey, "PRIVATE KEY");
119
+ _assert2.default.call(void 0, ["RSA PRIVATE KEY", "PRIVATE KEY"].indexOf(_chunkR6I4NJSZcjs.identifyPemType.call(void 0, pemKey)) >= 0);
120
120
  return { hidden: pemKey };
121
121
  }
122
122
  return { hidden: ensureTrailingLF(rawKey) };
@@ -145,28 +145,28 @@ async function readPrivateKeyAsync(filename) {
145
145
  if (filename.match(/.*\.der/)) {
146
146
  return myCreatePrivateKey(buf);
147
147
  }
148
- return myCreatePrivateKey(_chunk3KSBDOQTcjs.removeTrailingLF.call(void 0, buf.toString("utf-8")));
148
+ return myCreatePrivateKey(_chunkR6I4NJSZcjs.removeTrailingLF.call(void 0, buf.toString("utf-8")));
149
149
  }
150
150
  function readCertificatePEM(filename) {
151
151
  return _readPemFile(filename);
152
152
  }
153
153
  async function readCertificatePEMAsync(filename) {
154
154
  const buf = await _fs2.default.promises.readFile(filename, "utf-8");
155
- return _chunk3KSBDOQTcjs.removeTrailingLF.call(void 0, buf);
155
+ return _chunkR6I4NJSZcjs.removeTrailingLF.call(void 0, buf);
156
156
  }
157
157
  function readPublicKeyPEM(filename) {
158
158
  return _readPemFile(filename);
159
159
  }
160
160
  async function readPublicKeyPEMAsync(filename) {
161
161
  const buf = await _fs2.default.promises.readFile(filename, "utf-8");
162
- return _chunk3KSBDOQTcjs.removeTrailingLF.call(void 0, buf);
162
+ return _chunkR6I4NJSZcjs.removeTrailingLF.call(void 0, buf);
163
163
  }
164
164
  function readPrivateKeyPEM(filename) {
165
165
  return _readPemFile(filename);
166
166
  }
167
167
  async function readPrivateKeyPEMAsync(filename) {
168
168
  const buf = await _fs2.default.promises.readFile(filename, "utf-8");
169
- return _chunk3KSBDOQTcjs.removeTrailingLF.call(void 0, buf);
169
+ return _chunkR6I4NJSZcjs.removeTrailingLF.call(void 0, buf);
170
170
  }
171
171
  var _g_certificate_store = "";
172
172
  function setCertificateStore(store) {
@@ -211,7 +211,7 @@ async function readCertificateRevocationList(filename) {
211
211
  return crl;
212
212
  }
213
213
  const raw_crl = crl.toString();
214
- return _chunk3KSBDOQTcjs.convertPEMtoDER.call(void 0, raw_crl);
214
+ return _chunkR6I4NJSZcjs.convertPEMtoDER.call(void 0, raw_crl);
215
215
  }
216
216
 
217
217
  // source_nodejs/read_certificate_signing_request.ts
@@ -222,14 +222,14 @@ async function readCertificateSigningRequest(filename) {
222
222
  return csr;
223
223
  }
224
224
  const raw_crl = csr.toString();
225
- return _chunk3KSBDOQTcjs.convertPEMtoDER.call(void 0, raw_crl);
225
+ return _chunkR6I4NJSZcjs.convertPEMtoDER.call(void 0, raw_crl);
226
226
  }
227
227
 
228
228
  // source_nodejs/write.ts
229
229
 
230
230
  function certificatesToPem(certificates) {
231
231
  const certs = Array.isArray(certificates) ? certificates : [certificates];
232
- return `${certs.map((der) => _chunk3KSBDOQTcjs.toPem.call(void 0, der, "CERTIFICATE")).join("\n")}
232
+ return `${certs.map((der) => _chunkR6I4NJSZcjs.toPem.call(void 0, der, "CERTIFICATE")).join("\n")}
233
233
  `;
234
234
  }
235
235
  function writeCertificateChain(filename, certificates) {
@@ -240,7 +240,7 @@ async function writeCertificateChainAsync(filename, certificates) {
240
240
  }
241
241
  function certificatesToDer(certificates) {
242
242
  const certs = Array.isArray(certificates) ? certificates : [certificates];
243
- return _chunk3KSBDOQTcjs.combine_der.call(void 0, certs);
243
+ return _chunkR6I4NJSZcjs.combine_der.call(void 0, certs);
244
244
  }
245
245
  function writeCertificateChainDer(filename, certificates) {
246
246
  _fs2.default.writeFileSync(filename, certificatesToDer(certificates));
@@ -279,4 +279,4 @@ async function writeCertificateChainDerAsync(filename, certificates) {
279
279
 
280
280
 
281
281
  exports.generatePrivateKeyFile = generatePrivateKeyFile; exports.generatePrivateKeyFileAlternate = generatePrivateKeyFileAlternate; exports.readCertificate = readCertificate; exports.readCertificateChain = readCertificateChain; exports.readCertificateChainAsync = readCertificateChainAsync; exports.readCertificateAsync = readCertificateAsync; exports.readPublicKey = readPublicKey; exports.readPublicKeyAsync = readPublicKeyAsync; exports.readPrivateKey = readPrivateKey; exports.readPrivateKeyAsync = readPrivateKeyAsync; exports.readCertificatePEM = readCertificatePEM; exports.readCertificatePEMAsync = readCertificatePEMAsync; exports.readPublicKeyPEM = readPublicKeyPEM; exports.readPublicKeyPEMAsync = readPublicKeyPEMAsync; exports.readPrivateKeyPEM = readPrivateKeyPEM; exports.readPrivateKeyPEMAsync = readPrivateKeyPEMAsync; exports.setCertificateStore = setCertificateStore; exports.getCertificateStore = getCertificateStore; exports.readPrivateRsaKey = readPrivateRsaKey; exports.readPublicRsaKey = readPublicRsaKey; exports.readCertificateRevocationList = readCertificateRevocationList; exports.readCertificateSigningRequest = readCertificateSigningRequest; exports.certificatesToPem = certificatesToPem; exports.writeCertificateChain = writeCertificateChain; exports.writeCertificateChainAsync = writeCertificateChainAsync; exports.certificatesToDer = certificatesToDer; exports.writeCertificateChainDer = writeCertificateChainDer; exports.writeCertificateChainDerAsync = writeCertificateChainDerAsync;
282
- //# sourceMappingURL=chunk-MUTGGDEL.cjs.map
282
+ //# sourceMappingURL=chunk-XJHDKGLH.cjs.map
package/dist/{chunk-MUTGGDEL.cjs.map → chunk-XJHDKGLH.cjs.map} RENAMED
@@ -1 +1 @@
1
- {"version":3,"sources":["/home/runner/work/node-opcua-crypto/node-opcua-crypto/packages/node-opcua-crypto/dist/chunk-MUTGGDEL.cjs","../source_nodejs/generate_private_key_filename.ts","../source_nodejs/read.ts","../source_nodejs/read_certificate_revocation_list.ts","../source_nodejs/read_certificate_signing_request.ts","../source_nodejs/write.ts"],"names":["fs"],"mappings":"AAAA;AACE;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACF,wDAA6B;AAC7B;AACA;ACYA,gCAAoC;AACpC,gEAAe;AAEf,MAAA,SAAsB,sBAAA,CAAuB,kBAAA,EAA4B,aAAA,EAA0C;AAC/G,EAAA,MAAM,KAAA,EAAO,MAAM,+CAAA,aAA6B,CAAA;AAChD,EAAA,MAAM,cAAA,EAAgB,MAAM,+CAAA,IAAgB,CAAK,UAAU,CAAA;AAC3D,EAAA,MAAM,YAAA,CAAG,QAAA,CAAS,SAAA,CAAU,kBAAA,EAAoB,aAAA,CAAc,OAAA,EAAS,OAAO,CAAA;AAC9E,EAAA,aAAA,CAAc,QAAA,EAAU,EAAA;AACxB,EAAA,aAAA,CAAc,QAAA,EAAU,IAAI,WAAA,CAAY,CAAC,CAAA;AAC7C;AAQA,MAAA,SAAsB,+BAAA,CAAgC,kBAAA,EAA4B,aAAA,EAAmC;AACjH,EAAA,MAAM,EAAE,WAAW,EAAA,EAAI,yCAAA,KAAoB,EAAO;AAAA,IAC9C,aAAA;AAAA,IACA,kBAAA,EAAoB,EAAE,IAAA,EAAM,OAAA,EAAS,MAAA,EAAQ,MAAM,CAAA;AAAA,IACnD,iBAAA,EAAmB,EAAE,IAAA,EAAM,MAAA,EAAQ,MAAA,EAAQ,MAAM;AAAA,EACrD,CAAC,CAAA;AACD,EAAA,MAAM,YAAA,CAAG,QAAA,CAAS,SAAA,CAAU,kBAAA,EAAoB,UAAA,EAAY,OAAO,CAAA;AACvE;ADlBA;AACA;AEPA,gFAAmB;AACnB;AACA;AACA,wEAAiB;AACjB,4EAAkB;AAelB,SAAS,YAAA,CAAa,QAAA,EAAuB;AACzC,EAAA,8BAAA,OAAc,SAAA,IAAa,QAAQ,CAAA;AACnC,EAAA,OAAO,gDAAA,YAAiBA,CAAG,YAAA,CAAa,QAAA,EAAU,OAAO,CAAC,CAAA;AAC9D;AAUA,SAAS,mBAAA,CAAoB,GAAA,EAAqB;AAC9C,EAAA,MAAM,QAAA,EAAU,GAAA,CAAI,KAAA,CAAM,8BAA8B,CAAA;AACxD,EAAA,OAAO,QAAA,EAAU,OAAA,CAAQ,OAAA,EAAS,CAAA;AACtC;AAaO,SAAS,eAAA,CAAgB,QAAA,EAA+B;AAC3D,EAAA,GAAA,CAAI,QAAA,CAAS,KAAA,CAAM,SAAS,CAAA,EAAG;AAC3B,IAAA,OAAOA,YAAAA,CAAG,YAAA,CAAa,QAAQ,CAAA;AAAA,EACnC;AACA,EAAA,MAAM,IAAA,EAAM,YAAA,CAAa,QAAQ,CAAA;AACjC,EAAA,MAAM,MAAA,EAAQ,mBAAA,CAAoB,GAAG,CAAA;AACrC,EAAA,GAAA,CAAI,MAAA,EAAQ,CAAA,EAAG;AACX,IAAA,OAAA,CAAQ,IAAA;AAAA,MACJ,CAAA,sCAAA,EAAyC,cAAA,CAAK,QAAA,CAAS,QAAQ,CAAC,CAAA,WAAA,EACnD,KAAK,CAAA,+GAAA;AAAA,IAEtB,CAAA;AAAA,EACJ;AACA,EAAA,OAAO,+CAAA,GAAmB,CAAA;AAC9B;AAWO,SAAS,oBAAA,CAAqB,QAAA,EAAiC;AAClE,EAAA,GAAA,CAAI,QAAA,CAAS,KAAA,CAAM,SAAS,CAAA,EAAG;AAC3B,IAAA,OAAO,yCAAA,YAAUA,CAAG,YAAA,CAAa,QAAQ,CAAgB,CAAA;AAAA,EAC7D;AACA,EAAA,MAAM,IAAA,EAAM,YAAA,CAAa,QAAQ,CAAA;AACjC,EAAA,OAAO,6BAAA,CAA8B,GAAG,CAAA;AAC5C;AAKA,MAAA,SAAsB,yBAAA,CAA0B,QAAA,EAA0C;AACtF,EAAA,MAAM,IAAA,EAAM,MAAMA,YAAAA,CAAG,QAAA,CAAS,QAAA,CAAS,QAAQ,CAAA;AAC/C,EAAA,GAAA,CAAI,QAAA,CAAS,KAAA,CAAM,SAAS,CAAA,EAAG;AAC3B,IAAA,OAAO,yCAAA,GAA4B,CAAA;AAAA,EACvC;AACA,EAAA,MAAM,IAAA,EAAM,gDAAA,GAAiB,CAAI,QAAA,CAAS,OAAO,CAAC,CAAA;AAClD,EAAA,OAAO,6BAAA,CAA8B,GAAG,CAAA;AAC5C;AAMA,SAAS,6BAAA,CAA8B,GAAA,EAA4B;AAC/D,EAAA,MAAM,MAAA,EAAuB,CAAC,CAAA;AAC9B,EAAA,MAAM,MAAA,EAAQ,sFAAA;AACd,EAAA,IAAI,KAAA;AACJ,EAAA,MAAA,EAAQ,KAAA,CAAM,IAAA,CAAK,GAAG,CAAA;AACtB,EAAA,MAAA,CAAO,MAAA,IAAU,IAAA,EAAM;AACnB,IAAA,MAAM,OAAA,EAAS,KAAA,CAAM,CAAC,CAAA,CAAE,OAAA,CAAQ,QAAA,EAAU,EAAE,CAAA;AAC5C,IAAA,KAAA,CAAM,IAAA,CAAK,MAAA,CAAO,IAAA,CAAK,MAAA,EAAQ,QAAQ,CAAgB,CAAA;AACvD,IAAA,MAAA,EAAQ,KAAA,CAAM,IAAA,CAAK,GAAG,CAAA;AAAA,EAC1B;AACA,EAAA,OAAO,KAAA;AACX;AAYA,MAAA,SAAsB,oBAAA,CAAqB,QAAA,EAAwC;AAC/E,EAAA,MAAM,IAAA,EAAM,MAAMA,YAAAA,CAAG,QAAA,CAAS,QAAA,CAAS,QAAQ,CAAA;AAC/C,EAAA,GAAA,CAAI,QAAA,CAAS,KAAA,CAAM,SAAS,CAAA,EAAG;AAC3B,IAAA,OAAO,GAAA;AAAA,EACX;AACA,EAAA,MAAM,QAAA,EAAU,gDAAA,GAAiB,CAAI,QAAA,CAAS,OAAO,CAAC,CAAA;AACtD,EAAA,MAAM,MAAA,EAAQ,mBAAA,CAAoB,OAAO,CAAA;AACzC,EAAA,GAAA,CAAI,MAAA,EAAQ,CAAA,EAAG;AACX,IAAA,OAAA,CAAQ,IAAA;AAAA,MACJ,CAAA,2CAAA,EAA8C,cAAA,CAAK,QAAA,CAAS,QAAQ,CAAC,CAAA,WAAA,EACxD,KAAK,CAAA,oHAAA;AAAA,IAEtB,CAAA;AAAA,EACJ;AACA,EAAA,OAAO,+CAAA,OAAuB,CAAA;AAClC;AAKO,SAAS,aAAA,CAAc,QAAA,EAA6B;AACvD,EAAA,GAAA,CAAI,QAAA,CAAS,KAAA,CAAM,SAAS,CAAA,EAAG;AAC3B,IAAA,MAAM,IAAA,EAAMA,YAAAA,CAAG,YAAA,CAAa,QAAQ,CAAA;AACpC,IAAA,OAAO,qCAAA,GAAmB,CAAA;AAAA,EAC9B,EAAA,KAAO;AACH,IAAA,MAAM,QAAA,EAAkB,YAAA,CAAa,QAAQ,CAAA;AAC7C,IAAA,OAAO,qCAAA,OAAuB,CAAA;AAAA,EAClC;AACJ;AAKA,MAAA,SAAsB,kBAAA,CAAmB,QAAA,EAAsC;AAC3E,EAAA,MAAM,IAAA,EAAM,MAAMA,YAAAA,CAAG,QAAA,CAAS,QAAA,CAAS,QAAQ,CAAA;AAC/C,EAAA,GAAA,CAAI,QAAA,CAAS,KAAA,CAAM,SAAS,CAAA,EAAG;AAC3B,IAAA,OAAO,qCAAA,GAAmB,CAAA;AAAA,EAC9B;AACA,EAAA,OAAO,qCAAA,gDAAgB,GAAiB,CAAI,QAAA,CAAS,OAAO,CAAC,CAAC,CAAA;AAClE;AAIA,SAAS,kBAAA,CAAmB,MAAA,EAAqC;AAC7D,EAAA,GAAA,CAAI,CAAC,yBAAA,GAAoB,OAAA,CAAQ,GAAA,CAAI,oBAAA,EAAsB;AAEvD,IAAA,GAAA,CAAI,MAAA,CAAO,QAAA,CAAS,MAAM,CAAA,EAAG;AACzB,MAAA,MAAM,OAAA,EAAS,qCAAA,MAAM,EAAQ,aAAa,CAAA;AAC1C,MAAA,8BAAA,CAAQ,iBAAA,EAAmB,aAAa,CAAA,CAAE,OAAA,CAAQ,+CAAA,MAAsB,CAAW,EAAA,GAAK,CAAC,CAAA;AACzF,MAAA,OAAO,EAAE,MAAA,EAAQ,OAAO,CAAA;AAAA,IAC5B;AACA,IAAA,OAAO,EAAE,MAAA,EAAQ,gBAAA,CAAiB,MAAgB,EAAE,CAAA;AAAA,EACxD;AAEA,EAAA,MAAM,OAAA,EAAS,OAAA,CAAQ,GAAA,CAAI,YAAA;AAC3B,EAAA,OAAA,CAAQ,GAAA,CAAI,aAAA,EAAe,WAAA;AAC3B,EAAA,MAAM,SAAA,EAAW,sCAAA,MAAuB,CAAA;AACxC,EAAA,OAAA,CAAQ,GAAA,CAAI,aAAA,EAAe,MAAA;AAC3B,EAAA,OAAO,EAAE,MAAA,EAAQ,SAAS,CAAA;AAC9B;AAEA,SAAS,gBAAA,CAAiB,GAAA,EAAqB;AAC3C,EAAA,OAAO,GAAA,CAAI,KAAA,CAAM,KAAK,EAAA,EAAI,IAAA,EAAM,CAAA,EAAA;AAAM;AAC1C;AAI6D;AAC1B,EAAA;AACS,IAAA;AACP,IAAA;AAC1B,EAAA;AACkC,IAAA;AACX,IAAA;AAC9B,EAAA;AACJ;AAK0C;AACR,EAAA;AACC,EAAA;AACE,IAAA;AACjC,EAAA;AAC0B,EAAA;AAC9B;AAEmC;AACH,EAAA;AAChC;AAKsB;AACY,EAAA;AACH,EAAA;AAC/B;AAEiC;AACD,EAAA;AAChC;AAKsB;AACY,EAAA;AACH,EAAA;AAC/B;AAKkC;AACF,EAAA;AAChC;AAMsB;AACY,EAAA;AACH,EAAA;AAC/B;AAEmC;AAEC;AACd,EAAA;AACK,EAAA;AAChB,EAAA;AACX;AAC8C;AACf,EAAA;AACK,IAAA;AAChC,EAAA;AACO,EAAA;AACX;AAKkC;AACP,EAAA;AACH,IAAA;AACpB,EAAA;AACiC,EAAA;AACR,IAAA;AACzB,EAAA;AACgC,EAAA;AACX,EAAA;AACO,EAAA;AACI,EAAA;AAChB,EAAA;AACpB;AAEiC;AACI,EAAA;AACR,IAAA;AACzB,EAAA;AACgC,EAAA;AACF,EAAA;AACF,EAAA;AACK,EAAA;AACrC;AF1GmC;AACA;AGtLpB;AAIO;AACY,EAAA;AACI,EAAA;AAEvB,IAAA;AACX,EAAA;AAC6B,EAAA;AACC,EAAA;AAClC;AHoLmC;AACA;AIjMpB;AAMO;AACY,EAAA;AACI,EAAA;AAEvB,IAAA;AACX,EAAA;AAC6B,EAAA;AACC,EAAA;AAClC;AJ6LmC;AACA;AK5MpB;AAemB;AACF,EAAA;AACC,EAAA;AAAqC;AACtE;AAQsC;AACP,EAAA;AAC/B;AAKsB;AACU,EAAA;AAChC;AAUkC;AACF,EAAA;AACJ,EAAA;AAC5B;AAQyC;AACV,EAAA;AAC/B;AAKsB;AACU,EAAA;AAChC;ALkKmC;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA","file":"/home/runner/work/node-opcua-crypto/node-opcua-crypto/packages/node-opcua-crypto/dist/chunk-MUTGGDEL.cjs","sourcesContent":[null,"// ---------------------------------------------------------------------------------------------------------------------\n// node-opcua-crypto\n// ---------------------------------------------------------------------------------------------------------------------\n// Copyright (c) 2014-2022 - Etienne Rossignon - etienne.rossignon (at) gadz.org\n// Copyright (c) 2022-2026 - Sterfive.com\n// ---------------------------------------------------------------------------------------------------------------------\n//\n// This project is licensed under the terms of the MIT license.\n//\n// Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated\n// documentation files (the \"Software\"), to deal in the Software without restriction, including without limitation the\n// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to\n// permit persons to whom the Software is furnished to do so, subject to the following conditions:\n//\n// The above copyright notice and this permission notice shall be included in all copies or substantial portions of the\n// Software.\n//\n// THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE\n// WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR\n// COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR\n// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.\n// ---------------------------------------------------------------------------------------------------------------------\n\nimport { generateKeyPairSync } from \"node:crypto\";\nimport fs from \"node:fs\";\nimport { generateKeyPair, privateKeyToPEM } from \"../source/index.js\";\nexport async function generatePrivateKeyFile(privateKeyFilename: string, modulusLength: 1024 | 2048 | 3072 | 4096) {\n const keys = await generateKeyPair(modulusLength);\n const privateKeyPem = await privateKeyToPEM(keys.privateKey);\n await fs.promises.writeFile(privateKeyFilename, privateKeyPem.privPem, \"utf-8\");\n privateKeyPem.privPem = \"\";\n privateKeyPem.privDer = new ArrayBuffer(0);\n}\n\n/**\n * alternate function to generate PrivateKeyFile, using native\n * node:crypto.\n *\n * This function is slower than generatePrivateKeyFile\n */\nexport async function generatePrivateKeyFileAlternate(privateKeyFilename: string, modulusLength: 2048 | 3072 | 4096) {\n const { privateKey } = generateKeyPairSync(\"rsa\", {\n modulusLength,\n privateKeyEncoding: { type: \"pkcs8\", format: \"pem\" },\n publicKeyEncoding: { type: \"spki\", format: \"pem\" },\n });\n await fs.promises.writeFile(privateKeyFilename, privateKey, \"utf-8\");\n}\n","// ---------------------------------------------------------------------------------------------------------------------\n// node-opcua-crypto\n// ---------------------------------------------------------------------------------------------------------------------\n// Copyright (c) 2014-2022 - Etienne Rossignon - etienne.rossignon (at) gadz.org\n// Copyright (c) 2022-2026 - Sterfive.com\n// ---------------------------------------------------------------------------------------------------------------------\n//\n// This project is licensed under the terms of the MIT license.\n//\n// Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated\n// documentation files (the \"Software\"), to deal in the Software without restriction, including without limitation the\n// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to\n// permit persons to whom the Software is furnished to do so, subject to the following conditions:\n//\n// The above copyright notice and this permission notice shall be included in all copies or substantial portions of the\n// Software.\n//\n// THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE\n// WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR\n// COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR\n// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.\n// ---------------------------------------------------------------------------------------------------------------------\n\nimport assert from \"node:assert\";\nimport { createPrivateKey, createPublicKey } from \"node:crypto\";\nimport fs from \"node:fs\";\nimport path from \"node:path\";\nimport sshpk from \"sshpk\";\nimport type {\n Certificate,\n CertificatePEM,\n DER,\n KeyObject,\n PEM,\n PrivateKey,\n PrivateKeyPEM,\n PublicKey,\n PublicKeyPEM,\n} from \"../source/common.js\";\nimport { split_der } from \"../source/crypto_explore_certificate.js\";\nimport { convertPEMtoDER, identifyPemType, removeTrailingLF, toPem } from \"../source/crypto_utils.js\";\n\nfunction _readPemFile(filename: string): PEM {\n assert(typeof filename === \"string\");\n return removeTrailingLF(fs.readFileSync(filename, \"utf-8\"));\n}\n\nfunction _readPemOrDerFileAsDER(filename: string): DER {\n if (filename.match(/.*\\.der/)) {\n return fs.readFileSync(filename) as Buffer;\n }\n const raw_key: string = _readPemFile(filename);\n return convertPEMtoDER(raw_key);\n}\n\nfunction _countPemCertBlocks(pem: string): number {\n const matches = pem.match(/-----BEGIN CERTIFICATE-----/g);\n return matches ? matches.length : 0;\n}\n\n/**\n * Read a DER or PEM certificate from file.\n *\n * **Note:** If the PEM file contains multiple certificate blocks\n * (e.g. a leaf cert + CA chain), only the **first** certificate\n * is returned. Use {@link readCertificateChain} to read all\n * certificates individually.\n *\n * @deprecated Use {@link readCertificateChain} instead, which\n * returns each certificate as a separate DER buffer.\n */\nexport function readCertificate(filename: string): Certificate {\n if (filename.match(/.*\\.der/)) {\n return fs.readFileSync(filename) as Certificate;\n }\n const pem = _readPemFile(filename);\n const count = _countPemCertBlocks(pem);\n if (count > 1) {\n console.warn(\n `[node-opcua-crypto] readCertificate: \"${path.basename(filename)}\"` +\n ` contains ${count} PEM certificate block(s) but only the first` +\n ` will be used. Use readCertificateChain() to read all certificates.`,\n );\n }\n return convertPEMtoDER(pem) as Certificate;\n}\n\n/**\n * Read a PEM or DER certificate file that may contain multiple\n * certificates (e.g. a leaf cert + CA issuer chain) and return\n * each certificate as a separate DER `Buffer`.\n *\n * - For a DER file, returns a single-element array.\n * - For a PEM file with N certificate blocks, returns N elements\n * in the same order they appear in the file (leaf first).\n */\nexport function readCertificateChain(filename: string): Certificate[] {\n if (filename.match(/.*\\.der/)) {\n return split_der(fs.readFileSync(filename) as Certificate);\n }\n const pem = _readPemFile(filename);\n return _extractAllPemDerCertificates(pem);\n}\n\n/**\n * Async version of {@link readCertificateChain}.\n */\nexport async function readCertificateChainAsync(filename: string): Promise<Certificate[]> {\n const buf = await fs.promises.readFile(filename);\n if (filename.match(/.*\\.der/)) {\n return split_der(buf as Certificate);\n }\n const pem = removeTrailingLF(buf.toString(\"utf-8\"));\n return _extractAllPemDerCertificates(pem);\n}\n\n/**\n * Extract all CERTIFICATE PEM blocks from a PEM string and\n * return each as a separate DER `Buffer`.\n */\nfunction _extractAllPemDerCertificates(pem: string): Certificate[] {\n const certs: Certificate[] = [];\n const regex = /-----BEGIN CERTIFICATE-----\\r?\\n([/+=a-zA-Z0-9\\r\\n]*)\\r?\\n-----END CERTIFICATE-----/g;\n let match: RegExpExecArray | null;\n match = regex.exec(pem);\n while (match !== null) {\n const base64 = match[1].replace(/\\r?\\n/g, \"\");\n certs.push(Buffer.from(base64, \"base64\") as Certificate);\n match = regex.exec(pem);\n }\n return certs;\n}\n\n/**\n * Async version of {@link readCertificate}.\n * Uses `fs.promises.readFile` so the event loop is not blocked\n * during I/O.\n *\n * **Note:** If the PEM file contains multiple certificate blocks,\n * only the first is returned. Use {@link readCertificateChainAsync}.\n *\n * @deprecated Use {@link readCertificateChainAsync} instead.\n */\nexport async function readCertificateAsync(filename: string): Promise<Certificate> {\n const buf = await fs.promises.readFile(filename);\n if (filename.match(/.*\\.der/)) {\n return buf as Certificate;\n }\n const raw_key = removeTrailingLF(buf.toString(\"utf-8\"));\n const count = _countPemCertBlocks(raw_key);\n if (count > 1) {\n console.warn(\n `[node-opcua-crypto] readCertificateAsync: \"${path.basename(filename)}\"` +\n ` contains ${count} PEM certificate block(s) but only the first` +\n ` will be used. Use readCertificateChainAsync() to read all certificates.`,\n );\n }\n return convertPEMtoDER(raw_key) as Certificate;\n}\n\n/**\n * read a DER or PEM certificate from file\n */\nexport function readPublicKey(filename: string): KeyObject {\n if (filename.match(/.*\\.der/)) {\n const der = fs.readFileSync(filename) as Buffer;\n return createPublicKey(der);\n } else {\n const raw_key: string = _readPemFile(filename);\n return createPublicKey(raw_key);\n }\n}\n\n/**\n * Async version of {@link readPublicKey}.\n */\nexport async function readPublicKeyAsync(filename: string): Promise<KeyObject> {\n const buf = await fs.promises.readFile(filename);\n if (filename.match(/.*\\.der/)) {\n return createPublicKey(buf);\n }\n return createPublicKey(removeTrailingLF(buf.toString(\"utf-8\")));\n}\n\n// console.log(\"createPrivateKey\", (crypto as any).createPrivateKey, process.env.NO_CREATE_PRIVATEKEY);\n\nfunction myCreatePrivateKey(rawKey: string | Buffer): PrivateKey {\n if (!createPrivateKey || process.env.NO_CREATE_PRIVATEKEY) {\n // we are not running nodejs or createPrivateKey is not supported in the environment\n if (Buffer.isBuffer(rawKey)) {\n const pemKey = toPem(rawKey, \"PRIVATE KEY\");\n assert([\"RSA PRIVATE KEY\", \"PRIVATE KEY\"].indexOf(identifyPemType(pemKey) as string) >= 0);\n return { hidden: pemKey };\n }\n return { hidden: ensureTrailingLF(rawKey as string) };\n }\n // see https://askubuntu.com/questions/1409458/openssl-config-cuases-error-in-node-js-crypto-how-should-the-config-be-updated\n const backup = process.env.OPENSSL_CONF;\n process.env.OPENSSL_CONF = \"/dev/null\";\n const retValue = createPrivateKey(rawKey);\n process.env.OPENSSL_CONF = backup;\n return { hidden: retValue };\n}\n\nfunction ensureTrailingLF(str: string): string {\n return str.match(/\\n$/) ? str : `${str}\\n`;\n}\n/**\n * read a DER or PEM certificate from file\n */\nexport function readPrivateKey(filename: string): PrivateKey {\n if (filename.match(/.*\\.der/)) {\n const der: Buffer = fs.readFileSync(filename);\n return myCreatePrivateKey(der);\n } else {\n const raw_key: string = _readPemFile(filename);\n return myCreatePrivateKey(raw_key);\n }\n}\n\n/**\n * Async version of {@link readPrivateKey}.\n */\nexport async function readPrivateKeyAsync(filename: string): Promise<PrivateKey> {\n const buf = await fs.promises.readFile(filename);\n if (filename.match(/.*\\.der/)) {\n return myCreatePrivateKey(buf);\n }\n return myCreatePrivateKey(removeTrailingLF(buf.toString(\"utf-8\")));\n}\n\nexport function readCertificatePEM(filename: string): CertificatePEM {\n return _readPemFile(filename);\n}\n\n/**\n * Async version of {@link readCertificatePEM}.\n */\nexport async function readCertificatePEMAsync(filename: string): Promise<CertificatePEM> {\n const buf = await fs.promises.readFile(filename, \"utf-8\");\n return removeTrailingLF(buf);\n}\n\nexport function readPublicKeyPEM(filename: string): PublicKeyPEM {\n return _readPemFile(filename);\n}\n\n/**\n * Async version of {@link readPublicKeyPEM}.\n */\nexport async function readPublicKeyPEMAsync(filename: string): Promise<PublicKeyPEM> {\n const buf = await fs.promises.readFile(filename, \"utf-8\");\n return removeTrailingLF(buf);\n}\n/**\n *\n * @deprecated\n */\nexport function readPrivateKeyPEM(filename: string): PrivateKeyPEM {\n return _readPemFile(filename);\n}\n\n/**\n * Async version of {@link readPrivateKeyPEM}.\n * @deprecated\n */\nexport async function readPrivateKeyPEMAsync(filename: string): Promise<PrivateKeyPEM> {\n const buf = await fs.promises.readFile(filename, \"utf-8\");\n return removeTrailingLF(buf);\n}\n\nlet _g_certificate_store: string = \"\";\n\nexport function setCertificateStore(store: string): string {\n const old_store = _g_certificate_store;\n _g_certificate_store = store;\n return old_store;\n}\nexport function getCertificateStore(): string {\n if (!_g_certificate_store) {\n _g_certificate_store = path.join(__dirname, \"../../certificates/\");\n }\n return _g_certificate_store;\n}\n/**\n *\n * @param filename\n */\nexport function readPrivateRsaKey(filename: string): PrivateKey {\n if (!createPrivateKey) {\n throw new Error(\"createPrivateKey is not supported in this environment\");\n }\n if (filename.substring(0, 1) !== \".\" && !fs.existsSync(filename)) {\n filename = path.join(getCertificateStore(), filename);\n }\n const content = fs.readFileSync(filename, \"utf8\");\n const sshKey = sshpk.parsePrivateKey(content, \"auto\");\n const key = sshKey.toString(\"pkcs1\") as PEM;\n const hidden = createPrivateKey({ format: \"pem\", type: \"pkcs1\", key });\n return { hidden };\n}\n\nexport function readPublicRsaKey(filename: string): PublicKey {\n if (filename.substring(0, 1) !== \".\" && !fs.existsSync(filename)) {\n filename = path.join(getCertificateStore(), filename);\n }\n const content = fs.readFileSync(filename, \"utf-8\");\n const sshKey = sshpk.parseKey(content, \"ssh\");\n const key = sshKey.toString(\"pkcs1\") as PEM;\n return createPublicKey({ format: \"pem\", type: \"pkcs1\", key });\n}\n","// ---------------------------------------------------------------------------------------------------------------------\n// node-opcua-crypto\n// ---------------------------------------------------------------------------------------------------------------------\n// Copyright (c) 2014-2022 - Etienne Rossignon - etienne.rossignon (at) gadz.org\n// Copyright (c) 2022-2026 - Sterfive.com\n// ---------------------------------------------------------------------------------------------------------------------\n//\n// This project is licensed under the terms of the MIT license.\n//\n// Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated\n// documentation files (the \"Software\"), to deal in the Software without restriction, including without limitation the\n// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to\n// permit persons to whom the Software is furnished to do so, subject to the following conditions:\n//\n// The above copyright notice and this permission notice shall be included in all copies or substantial portions of the\n// Software.\n//\n// THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE\n// WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR\n// COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR\n// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.\n// ---------------------------------------------------------------------------------------------------------------------\n\nimport fs from \"node:fs\";\nimport type { CertificateRevocationList } from \"../source/common.js\";\nimport { convertPEMtoDER } from \"../source/crypto_utils.js\";\n\nexport async function readCertificateRevocationList(filename: string): Promise<CertificateRevocationList> {\n const crl = await fs.promises.readFile(filename);\n if (crl[0] === 0x30 && crl[1] === 0x82) {\n // der format\n return crl as CertificateRevocationList;\n }\n const raw_crl = crl.toString();\n return convertPEMtoDER(raw_crl);\n}\n","// ---------------------------------------------------------------------------------------------------------------------\n// node-opcua-crypto\n// ---------------------------------------------------------------------------------------------------------------------\n// Copyright (c) 2014-2022 - Etienne Rossignon - etienne.rossignon (at) gadz.org\n// Copyright (c) 2022-2026 - Sterfive.com\n// ---------------------------------------------------------------------------------------------------------------------\n//\n// This project is licensed under the terms of the MIT license.\n//\n// Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated\n// documentation files (the \"Software\"), to deal in the Software without restriction, including without limitation the\n// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to\n// permit persons to whom the Software is furnished to do so, subject to the following conditions:\n//\n// The above copyright notice and this permission notice shall be included in all copies or substantial portions of the\n// Software.\n//\n// THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE\n// WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR\n// COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR\n// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.\n// ---------------------------------------------------------------------------------------------------------------------\n\nimport fs from \"node:fs\";\nimport type { CertificateRevocationList } from \"../source/common.js\";\nimport { convertPEMtoDER } from \"../source/crypto_utils.js\";\n\nexport type CertificateSigningRequest = Buffer;\n\nexport async function readCertificateSigningRequest(filename: string): Promise<CertificateSigningRequest> {\n const csr = await fs.promises.readFile(filename);\n if (csr[0] === 0x30 && csr[1] === 0x82) {\n // der format\n return csr as CertificateRevocationList;\n }\n const raw_crl = csr.toString();\n return convertPEMtoDER(raw_crl);\n}\n","// ---------------------------------------------------------------------------------------------------------------------\n// node-opcua-crypto\n// ---------------------------------------------------------------------------------------------------------------------\n// Copyright (c) 2014-2022 - Etienne Rossignon - etienne.rossignon (at) gadz.org\n// Copyright (c) 2022-2026 - Sterfive.com\n// ---------------------------------------------------------------------------------------------------------------------\n//\n// This project is licensed under the terms of the MIT license.\n//\n// Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated\n// documentation files (the \"Software\"), to deal in the Software without restriction, including without limitation the\n// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to\n// permit persons to whom the Software is furnished to do so, subject to the following conditions:\n//\n// The above copyright notice and this permission notice shall be included in all copies or substantial portions of the\n// Software.\n//\n// THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE\n// WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR\n// COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR\n// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.\n// ---------------------------------------------------------------------------------------------------------------------\n\nimport fs from \"node:fs\";\n\nimport type { Certificate } from \"../source/common.js\";\nimport { combine_der } from \"../source/crypto_explore_certificate.js\";\nimport { toPem } from \"../source/crypto_utils.js\";\n\n// ── PEM ──────────────────────────────────────────────────────\n\n/**\n * Convert one or more DER certificates to a PEM string.\n *\n * Accepts a single `Certificate` (DER buffer) or an array.\n * Returns a multi-block PEM string with each certificate\n * separated by a newline.\n */\nexport function certificatesToPem(certificates: Certificate | Certificate[]): string {\n const certs = Array.isArray(certificates) ? certificates : [certificates];\n return `${certs.map((der) => toPem(der, \"CERTIFICATE\")).join(\"\\n\")}\\n`;\n}\n\n/**\n * Write one or more DER certificates to a PEM file.\n *\n * Each certificate is written as a separate PEM block in the\n * order provided (typically leaf first, then issuer chain).\n */\nexport function writeCertificateChain(filename: string, certificates: Certificate | Certificate[]): void {\n fs.writeFileSync(filename, certificatesToPem(certificates), \"utf-8\");\n}\n\n/**\n * Async version of {@link writeCertificateChain}.\n */\nexport async function writeCertificateChainAsync(filename: string, certificates: Certificate | Certificate[]): Promise<void> {\n await fs.promises.writeFile(filename, certificatesToPem(certificates), \"utf-8\");\n}\n\n// ── DER ──────────────────────────────────────────────────────\n\n/**\n * Convert one or more DER certificates to a single concatenated\n * DER buffer (OPC UA certificate chain format).\n *\n * Accepts a single `Certificate` (DER buffer) or an array.\n */\nexport function certificatesToDer(certificates: Certificate | Certificate[]): Certificate {\n const certs = Array.isArray(certificates) ? certificates : [certificates];\n return combine_der(certs);\n}\n\n/**\n * Write one or more DER certificates to a `.der` file as a\n * concatenated DER chain (OPC UA binary chain format).\n *\n * Order should be leaf first, then issuer chain.\n */\nexport function writeCertificateChainDer(filename: string, certificates: Certificate | Certificate[]): void {\n fs.writeFileSync(filename, certificatesToDer(certificates));\n}\n\n/**\n * Async version of {@link writeCertificateChainDer}.\n */\nexport async function writeCertificateChainDerAsync(filename: string, certificates: Certificate | Certificate[]): Promise<void> {\n await fs.promises.writeFile(filename, certificatesToDer(certificates));\n}\n"]}
1
+ {"version":3,"sources":["/home/runner/work/node-opcua-crypto/node-opcua-crypto/packages/node-opcua-crypto/dist/chunk-XJHDKGLH.cjs","../source_nodejs/generate_private_key_filename.ts","../source_nodejs/read.ts","../source_nodejs/read_certificate_revocation_list.ts","../source_nodejs/read_certificate_signing_request.ts","../source_nodejs/write.ts"],"names":["fs"],"mappings":"AAAA;AACE;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACF,wDAA6B;AAC7B;AACA;ACYA,gCAAoC;AACpC,gEAAe;AAEf,MAAA,SAAsB,sBAAA,CAAuB,kBAAA,EAA4B,aAAA,EAA0C;AAC/G,EAAA,MAAM,KAAA,EAAO,MAAM,+CAAA,aAA6B,CAAA;AAChD,EAAA,MAAM,cAAA,EAAgB,MAAM,+CAAA,IAAgB,CAAK,UAAU,CAAA;AAC3D,EAAA,MAAM,YAAA,CAAG,QAAA,CAAS,SAAA,CAAU,kBAAA,EAAoB,aAAA,CAAc,OAAA,EAAS,OAAO,CAAA;AAC9E,EAAA,aAAA,CAAc,QAAA,EAAU,EAAA;AACxB,EAAA,aAAA,CAAc,QAAA,EAAU,IAAI,WAAA,CAAY,CAAC,CAAA;AAC7C;AAQA,MAAA,SAAsB,+BAAA,CAAgC,kBAAA,EAA4B,aAAA,EAAmC;AACjH,EAAA,MAAM,EAAE,WAAW,EAAA,EAAI,yCAAA,KAAoB,EAAO;AAAA,IAC9C,aAAA;AAAA,IACA,kBAAA,EAAoB,EAAE,IAAA,EAAM,OAAA,EAAS,MAAA,EAAQ,MAAM,CAAA;AAAA,IACnD,iBAAA,EAAmB,EAAE,IAAA,EAAM,MAAA,EAAQ,MAAA,EAAQ,MAAM;AAAA,EACrD,CAAC,CAAA;AACD,EAAA,MAAM,YAAA,CAAG,QAAA,CAAS,SAAA,CAAU,kBAAA,EAAoB,UAAA,EAAY,OAAO,CAAA;AACvE;ADlBA;AACA;AEPA,gFAAmB;AACnB;AACA;AACA,wEAAiB;AACjB,4EAAkB;AAelB,SAAS,YAAA,CAAa,QAAA,EAAuB;AACzC,EAAA,8BAAA,OAAc,SAAA,IAAa,QAAQ,CAAA;AACnC,EAAA,OAAO,gDAAA,YAAiBA,CAAG,YAAA,CAAa,QAAA,EAAU,OAAO,CAAC,CAAA;AAC9D;AAUA,SAAS,mBAAA,CAAoB,GAAA,EAAqB;AAC9C,EAAA,MAAM,QAAA,EAAU,GAAA,CAAI,KAAA,CAAM,8BAA8B,CAAA;AACxD,EAAA,OAAO,QAAA,EAAU,OAAA,CAAQ,OAAA,EAAS,CAAA;AACtC;AAaO,SAAS,eAAA,CAAgB,QAAA,EAA+B;AAC3D,EAAA,GAAA,CAAI,QAAA,CAAS,KAAA,CAAM,SAAS,CAAA,EAAG;AAC3B,IAAA,OAAOA,YAAAA,CAAG,YAAA,CAAa,QAAQ,CAAA;AAAA,EACnC;AACA,EAAA,MAAM,IAAA,EAAM,YAAA,CAAa,QAAQ,CAAA;AACjC,EAAA,MAAM,MAAA,EAAQ,mBAAA,CAAoB,GAAG,CAAA;AACrC,EAAA,GAAA,CAAI,MAAA,EAAQ,CAAA,EAAG;AACX,IAAA,OAAA,CAAQ,IAAA;AAAA,MACJ,CAAA,sCAAA,EAAyC,cAAA,CAAK,QAAA,CAAS,QAAQ,CAAC,CAAA,WAAA,EACnD,KAAK,CAAA,+GAAA;AAAA,IAEtB,CAAA;AAAA,EACJ;AACA,EAAA,OAAO,+CAAA,GAAmB,CAAA;AAC9B;AAWO,SAAS,oBAAA,CAAqB,QAAA,EAAiC;AAClE,EAAA,GAAA,CAAI,QAAA,CAAS,KAAA,CAAM,SAAS,CAAA,EAAG;AAC3B,IAAA,OAAO,yCAAA,YAAUA,CAAG,YAAA,CAAa,QAAQ,CAAgB,CAAA;AAAA,EAC7D;AACA,EAAA,MAAM,IAAA,EAAM,YAAA,CAAa,QAAQ,CAAA;AACjC,EAAA,OAAO,6BAAA,CAA8B,GAAG,CAAA;AAC5C;AAKA,MAAA,SAAsB,yBAAA,CAA0B,QAAA,EAA0C;AACtF,EAAA,MAAM,IAAA,EAAM,MAAMA,YAAAA,CAAG,QAAA,CAAS,QAAA,CAAS,QAAQ,CAAA;AAC/C,EAAA,GAAA,CAAI,QAAA,CAAS,KAAA,CAAM,SAAS,CAAA,EAAG;AAC3B,IAAA,OAAO,yCAAA,GAA4B,CAAA;AAAA,EACvC;AACA,EAAA,MAAM,IAAA,EAAM,gDAAA,GAAiB,CAAI,QAAA,CAAS,OAAO,CAAC,CAAA;AAClD,EAAA,OAAO,6BAAA,CAA8B,GAAG,CAAA;AAC5C;AAMA,SAAS,6BAAA,CAA8B,GAAA,EAA4B;AAC/D,EAAA,MAAM,MAAA,EAAuB,CAAC,CAAA;AAC9B,EAAA,MAAM,MAAA,EAAQ,sFAAA;AACd,EAAA,IAAI,KAAA;AACJ,EAAA,MAAA,EAAQ,KAAA,CAAM,IAAA,CAAK,GAAG,CAAA;AACtB,EAAA,MAAA,CAAO,MAAA,IAAU,IAAA,EAAM;AACnB,IAAA,MAAM,OAAA,EAAS,KAAA,CAAM,CAAC,CAAA,CAAE,OAAA,CAAQ,QAAA,EAAU,EAAE,CAAA;AAC5C,IAAA,KAAA,CAAM,IAAA,CAAK,MAAA,CAAO,IAAA,CAAK,MAAA,EAAQ,QAAQ,CAAgB,CAAA;AACvD,IAAA,MAAA,EAAQ,KAAA,CAAM,IAAA,CAAK,GAAG,CAAA;AAAA,EAC1B;AACA,EAAA,OAAO,KAAA;AACX;AAYA,MAAA,SAAsB,oBAAA,CAAqB,QAAA,EAAwC;AAC/E,EAAA,MAAM,IAAA,EAAM,MAAMA,YAAAA,CAAG,QAAA,CAAS,QAAA,CAAS,QAAQ,CAAA;AAC/C,EAAA,GAAA,CAAI,QAAA,CAAS,KAAA,CAAM,SAAS,CAAA,EAAG;AAC3B,IAAA,OAAO,GAAA;AAAA,EACX;AACA,EAAA,MAAM,QAAA,EAAU,gDAAA,GAAiB,CAAI,QAAA,CAAS,OAAO,CAAC,CAAA;AACtD,EAAA,MAAM,MAAA,EAAQ,mBAAA,CAAoB,OAAO,CAAA;AACzC,EAAA,GAAA,CAAI,MAAA,EAAQ,CAAA,EAAG;AACX,IAAA,OAAA,CAAQ,IAAA;AAAA,MACJ,CAAA,2CAAA,EAA8C,cAAA,CAAK,QAAA,CAAS,QAAQ,CAAC,CAAA,WAAA,EACxD,KAAK,CAAA,oHAAA;AAAA,IAEtB,CAAA;AAAA,EACJ;AACA,EAAA,OAAO,+CAAA,OAAuB,CAAA;AAClC;AAKO,SAAS,aAAA,CAAc,QAAA,EAA6B;AACvD,EAAA,GAAA,CAAI,QAAA,CAAS,KAAA,CAAM,SAAS,CAAA,EAAG;AAC3B,IAAA,MAAM,IAAA,EAAMA,YAAAA,CAAG,YAAA,CAAa,QAAQ,CAAA;AACpC,IAAA,OAAO,qCAAA,GAAmB,CAAA;AAAA,EAC9B,EAAA,KAAO;AACH,IAAA,MAAM,QAAA,EAAkB,YAAA,CAAa,QAAQ,CAAA;AAC7C,IAAA,OAAO,qCAAA,OAAuB,CAAA;AAAA,EAClC;AACJ;AAKA,MAAA,SAAsB,kBAAA,CAAmB,QAAA,EAAsC;AAC3E,EAAA,MAAM,IAAA,EAAM,MAAMA,YAAAA,CAAG,QAAA,CAAS,QAAA,CAAS,QAAQ,CAAA;AAC/C,EAAA,GAAA,CAAI,QAAA,CAAS,KAAA,CAAM,SAAS,CAAA,EAAG;AAC3B,IAAA,OAAO,qCAAA,GAAmB,CAAA;AAAA,EAC9B;AACA,EAAA,OAAO,qCAAA,gDAAgB,GAAiB,CAAI,QAAA,CAAS,OAAO,CAAC,CAAC,CAAA;AAClE;AAIA,SAAS,kBAAA,CAAmB,MAAA,EAAqC;AAC7D,EAAA,GAAA,CAAI,CAAC,yBAAA,GAAoB,OAAA,CAAQ,GAAA,CAAI,oBAAA,EAAsB;AAEvD,IAAA,GAAA,CAAI,MAAA,CAAO,QAAA,CAAS,MAAM,CAAA,EAAG;AACzB,MAAA,MAAM,OAAA,EAAS,qCAAA,MAAM,EAAQ,aAAa,CAAA;AAC1C,MAAA,8BAAA,CAAQ,iBAAA,EAAmB,aAAa,CAAA,CAAE,OAAA,CAAQ,+CAAA,MAAsB,CAAW,EAAA,GAAK,CAAC,CAAA;AACzF,MAAA,OAAO,EAAE,MAAA,EAAQ,OAAO,CAAA;AAAA,IAC5B;AACA,IAAA,OAAO,EAAE,MAAA,EAAQ,gBAAA,CAAiB,MAAgB,EAAE,CAAA;AAAA,EACxD;AAEA,EAAA,MAAM,OAAA,EAAS,OAAA,CAAQ,GAAA,CAAI,YAAA;AAC3B,EAAA,OAAA,CAAQ,GAAA,CAAI,aAAA,EAAe,WAAA;AAC3B,EAAA,MAAM,SAAA,EAAW,sCAAA,MAAuB,CAAA;AACxC,EAAA,OAAA,CAAQ,GAAA,CAAI,aAAA,EAAe,MAAA;AAC3B,EAAA,OAAO,EAAE,MAAA,EAAQ,SAAS,CAAA;AAC9B;AAEA,SAAS,gBAAA,CAAiB,GAAA,EAAqB;AAC3C,EAAA,OAAO,GAAA,CAAI,KAAA,CAAM,KAAK,EAAA,EAAI,IAAA,EAAM,CAAA,EAAA;AAAM;AAC1C;AAI6D;AAC1B,EAAA;AACS,IAAA;AACP,IAAA;AAC1B,EAAA;AACkC,IAAA;AACX,IAAA;AAC9B,EAAA;AACJ;AAK0C;AACR,EAAA;AACC,EAAA;AACE,IAAA;AACjC,EAAA;AAC0B,EAAA;AAC9B;AAEmC;AACH,EAAA;AAChC;AAKsB;AACY,EAAA;AACH,EAAA;AAC/B;AAEiC;AACD,EAAA;AAChC;AAKsB;AACY,EAAA;AACH,EAAA;AAC/B;AAKkC;AACF,EAAA;AAChC;AAMsB;AACY,EAAA;AACH,EAAA;AAC/B;AAEmC;AAEC;AACd,EAAA;AACK,EAAA;AAChB,EAAA;AACX;AAC8C;AACf,EAAA;AACK,IAAA;AAChC,EAAA;AACO,EAAA;AACX;AAKkC;AACP,EAAA;AACH,IAAA;AACpB,EAAA;AACiC,EAAA;AACR,IAAA;AACzB,EAAA;AACgC,EAAA;AACX,EAAA;AACO,EAAA;AACI,EAAA;AAChB,EAAA;AACpB;AAEiC;AACI,EAAA;AACR,IAAA;AACzB,EAAA;AACgC,EAAA;AACF,EAAA;AACF,EAAA;AACK,EAAA;AACrC;AF1GmC;AACA;AGtLpB;AAIO;AACY,EAAA;AACI,EAAA;AAEvB,IAAA;AACX,EAAA;AAC6B,EAAA;AACC,EAAA;AAClC;AHoLmC;AACA;AIjMpB;AAMO;AACY,EAAA;AACI,EAAA;AAEvB,IAAA;AACX,EAAA;AAC6B,EAAA;AACC,EAAA;AAClC;AJ6LmC;AACA;AK5MpB;AAemB;AACF,EAAA;AACC,EAAA;AAAqC;AACtE;AAQsC;AACP,EAAA;AAC/B;AAKsB;AACU,EAAA;AAChC;AAUkC;AACF,EAAA;AACJ,EAAA;AAC5B;AAQyC;AACV,EAAA;AAC/B;AAKsB;AACU,EAAA;AAChC;ALkKmC;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA","file":"/home/runner/work/node-opcua-crypto/node-opcua-crypto/packages/node-opcua-crypto/dist/chunk-XJHDKGLH.cjs","sourcesContent":[null,"// ---------------------------------------------------------------------------------------------------------------------\n// node-opcua-crypto\n// ---------------------------------------------------------------------------------------------------------------------\n// Copyright (c) 2014-2022 - Etienne Rossignon - etienne.rossignon (at) gadz.org\n// Copyright (c) 2022-2026 - Sterfive.com\n// ---------------------------------------------------------------------------------------------------------------------\n//\n// This project is licensed under the terms of the MIT license.\n//\n// Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated\n// documentation files (the \"Software\"), to deal in the Software without restriction, including without limitation the\n// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to\n// permit persons to whom the Software is furnished to do so, subject to the following conditions:\n//\n// The above copyright notice and this permission notice shall be included in all copies or substantial portions of the\n// Software.\n//\n// THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE\n// WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR\n// COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR\n// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.\n// ---------------------------------------------------------------------------------------------------------------------\n\nimport { generateKeyPairSync } from \"node:crypto\";\nimport fs from \"node:fs\";\nimport { generateKeyPair, privateKeyToPEM } from \"../source/index.js\";\nexport async function generatePrivateKeyFile(privateKeyFilename: string, modulusLength: 1024 | 2048 | 3072 | 4096) {\n const keys = await generateKeyPair(modulusLength);\n const privateKeyPem = await privateKeyToPEM(keys.privateKey);\n await fs.promises.writeFile(privateKeyFilename, privateKeyPem.privPem, \"utf-8\");\n privateKeyPem.privPem = \"\";\n privateKeyPem.privDer = new ArrayBuffer(0);\n}\n\n/**\n * alternate function to generate PrivateKeyFile, using native\n * node:crypto.\n *\n * This function is slower than generatePrivateKeyFile\n */\nexport async function generatePrivateKeyFileAlternate(privateKeyFilename: string, modulusLength: 2048 | 3072 | 4096) {\n const { privateKey } = generateKeyPairSync(\"rsa\", {\n modulusLength,\n privateKeyEncoding: { type: \"pkcs8\", format: \"pem\" },\n publicKeyEncoding: { type: \"spki\", format: \"pem\" },\n });\n await fs.promises.writeFile(privateKeyFilename, privateKey, \"utf-8\");\n}\n","// ---------------------------------------------------------------------------------------------------------------------\n// node-opcua-crypto\n// ---------------------------------------------------------------------------------------------------------------------\n// Copyright (c) 2014-2022 - Etienne Rossignon - etienne.rossignon (at) gadz.org\n// Copyright (c) 2022-2026 - Sterfive.com\n// ---------------------------------------------------------------------------------------------------------------------\n//\n// This project is licensed under the terms of the MIT license.\n//\n// Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated\n// documentation files (the \"Software\"), to deal in the Software without restriction, including without limitation the\n// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to\n// permit persons to whom the Software is furnished to do so, subject to the following conditions:\n//\n// The above copyright notice and this permission notice shall be included in all copies or substantial portions of the\n// Software.\n//\n// THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE\n// WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR\n// COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR\n// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.\n// ---------------------------------------------------------------------------------------------------------------------\n\nimport assert from \"node:assert\";\nimport { createPrivateKey, createPublicKey } from \"node:crypto\";\nimport fs from \"node:fs\";\nimport path from \"node:path\";\nimport sshpk from \"sshpk\";\nimport type {\n Certificate,\n CertificatePEM,\n DER,\n KeyObject,\n PEM,\n PrivateKey,\n PrivateKeyPEM,\n PublicKey,\n PublicKeyPEM,\n} from \"../source/common.js\";\nimport { split_der } from \"../source/crypto_explore_certificate.js\";\nimport { convertPEMtoDER, identifyPemType, removeTrailingLF, toPem } from \"../source/crypto_utils.js\";\n\nfunction _readPemFile(filename: string): PEM {\n assert(typeof filename === \"string\");\n return removeTrailingLF(fs.readFileSync(filename, \"utf-8\"));\n}\n\nfunction _readPemOrDerFileAsDER(filename: string): DER {\n if (filename.match(/.*\\.der/)) {\n return fs.readFileSync(filename) as Buffer;\n }\n const raw_key: string = _readPemFile(filename);\n return convertPEMtoDER(raw_key);\n}\n\nfunction _countPemCertBlocks(pem: string): number {\n const matches = pem.match(/-----BEGIN CERTIFICATE-----/g);\n return matches ? matches.length : 0;\n}\n\n/**\n * Read a DER or PEM certificate from file.\n *\n * **Note:** If the PEM file contains multiple certificate blocks\n * (e.g. a leaf cert + CA chain), only the **first** certificate\n * is returned. Use {@link readCertificateChain} to read all\n * certificates individually.\n *\n * @deprecated Use {@link readCertificateChain} instead, which\n * returns each certificate as a separate DER buffer.\n */\nexport function readCertificate(filename: string): Certificate {\n if (filename.match(/.*\\.der/)) {\n return fs.readFileSync(filename) as Certificate;\n }\n const pem = _readPemFile(filename);\n const count = _countPemCertBlocks(pem);\n if (count > 1) {\n console.warn(\n `[node-opcua-crypto] readCertificate: \"${path.basename(filename)}\"` +\n ` contains ${count} PEM certificate block(s) but only the first` +\n ` will be used. Use readCertificateChain() to read all certificates.`,\n );\n }\n return convertPEMtoDER(pem) as Certificate;\n}\n\n/**\n * Read a PEM or DER certificate file that may contain multiple\n * certificates (e.g. a leaf cert + CA issuer chain) and return\n * each certificate as a separate DER `Buffer`.\n *\n * - For a DER file, returns a single-element array.\n * - For a PEM file with N certificate blocks, returns N elements\n * in the same order they appear in the file (leaf first).\n */\nexport function readCertificateChain(filename: string): Certificate[] {\n if (filename.match(/.*\\.der/)) {\n return split_der(fs.readFileSync(filename) as Certificate);\n }\n const pem = _readPemFile(filename);\n return _extractAllPemDerCertificates(pem);\n}\n\n/**\n * Async version of {@link readCertificateChain}.\n */\nexport async function readCertificateChainAsync(filename: string): Promise<Certificate[]> {\n const buf = await fs.promises.readFile(filename);\n if (filename.match(/.*\\.der/)) {\n return split_der(buf as Certificate);\n }\n const pem = removeTrailingLF(buf.toString(\"utf-8\"));\n return _extractAllPemDerCertificates(pem);\n}\n\n/**\n * Extract all CERTIFICATE PEM blocks from a PEM string and\n * return each as a separate DER `Buffer`.\n */\nfunction _extractAllPemDerCertificates(pem: string): Certificate[] {\n const certs: Certificate[] = [];\n const regex = /-----BEGIN CERTIFICATE-----\\r?\\n([/+=a-zA-Z0-9\\r\\n]*)\\r?\\n-----END CERTIFICATE-----/g;\n let match: RegExpExecArray | null;\n match = regex.exec(pem);\n while (match !== null) {\n const base64 = match[1].replace(/\\r?\\n/g, \"\");\n certs.push(Buffer.from(base64, \"base64\") as Certificate);\n match = regex.exec(pem);\n }\n return certs;\n}\n\n/**\n * Async version of {@link readCertificate}.\n * Uses `fs.promises.readFile` so the event loop is not blocked\n * during I/O.\n *\n * **Note:** If the PEM file contains multiple certificate blocks,\n * only the first is returned. Use {@link readCertificateChainAsync}.\n *\n * @deprecated Use {@link readCertificateChainAsync} instead.\n */\nexport async function readCertificateAsync(filename: string): Promise<Certificate> {\n const buf = await fs.promises.readFile(filename);\n if (filename.match(/.*\\.der/)) {\n return buf as Certificate;\n }\n const raw_key = removeTrailingLF(buf.toString(\"utf-8\"));\n const count = _countPemCertBlocks(raw_key);\n if (count > 1) {\n console.warn(\n `[node-opcua-crypto] readCertificateAsync: \"${path.basename(filename)}\"` +\n ` contains ${count} PEM certificate block(s) but only the first` +\n ` will be used. Use readCertificateChainAsync() to read all certificates.`,\n );\n }\n return convertPEMtoDER(raw_key) as Certificate;\n}\n\n/**\n * read a DER or PEM certificate from file\n */\nexport function readPublicKey(filename: string): KeyObject {\n if (filename.match(/.*\\.der/)) {\n const der = fs.readFileSync(filename) as Buffer;\n return createPublicKey(der);\n } else {\n const raw_key: string = _readPemFile(filename);\n return createPublicKey(raw_key);\n }\n}\n\n/**\n * Async version of {@link readPublicKey}.\n */\nexport async function readPublicKeyAsync(filename: string): Promise<KeyObject> {\n const buf = await fs.promises.readFile(filename);\n if (filename.match(/.*\\.der/)) {\n return createPublicKey(buf);\n }\n return createPublicKey(removeTrailingLF(buf.toString(\"utf-8\")));\n}\n\n// console.log(\"createPrivateKey\", (crypto as any).createPrivateKey, process.env.NO_CREATE_PRIVATEKEY);\n\nfunction myCreatePrivateKey(rawKey: string | Buffer): PrivateKey {\n if (!createPrivateKey || process.env.NO_CREATE_PRIVATEKEY) {\n // we are not running nodejs or createPrivateKey is not supported in the environment\n if (Buffer.isBuffer(rawKey)) {\n const pemKey = toPem(rawKey, \"PRIVATE KEY\");\n assert([\"RSA PRIVATE KEY\", \"PRIVATE KEY\"].indexOf(identifyPemType(pemKey) as string) >= 0);\n return { hidden: pemKey };\n }\n return { hidden: ensureTrailingLF(rawKey as string) };\n }\n // see https://askubuntu.com/questions/1409458/openssl-config-cuases-error-in-node-js-crypto-how-should-the-config-be-updated\n const backup = process.env.OPENSSL_CONF;\n process.env.OPENSSL_CONF = \"/dev/null\";\n const retValue = createPrivateKey(rawKey);\n process.env.OPENSSL_CONF = backup;\n return { hidden: retValue };\n}\n\nfunction ensureTrailingLF(str: string): string {\n return str.match(/\\n$/) ? str : `${str}\\n`;\n}\n/**\n * read a DER or PEM certificate from file\n */\nexport function readPrivateKey(filename: string): PrivateKey {\n if (filename.match(/.*\\.der/)) {\n const der: Buffer = fs.readFileSync(filename);\n return myCreatePrivateKey(der);\n } else {\n const raw_key: string = _readPemFile(filename);\n return myCreatePrivateKey(raw_key);\n }\n}\n\n/**\n * Async version of {@link readPrivateKey}.\n */\nexport async function readPrivateKeyAsync(filename: string): Promise<PrivateKey> {\n const buf = await fs.promises.readFile(filename);\n if (filename.match(/.*\\.der/)) {\n return myCreatePrivateKey(buf);\n }\n return myCreatePrivateKey(removeTrailingLF(buf.toString(\"utf-8\")));\n}\n\nexport function readCertificatePEM(filename: string): CertificatePEM {\n return _readPemFile(filename);\n}\n\n/**\n * Async version of {@link readCertificatePEM}.\n */\nexport async function readCertificatePEMAsync(filename: string): Promise<CertificatePEM> {\n const buf = await fs.promises.readFile(filename, \"utf-8\");\n return removeTrailingLF(buf);\n}\n\nexport function readPublicKeyPEM(filename: string): PublicKeyPEM {\n return _readPemFile(filename);\n}\n\n/**\n * Async version of {@link readPublicKeyPEM}.\n */\nexport async function readPublicKeyPEMAsync(filename: string): Promise<PublicKeyPEM> {\n const buf = await fs.promises.readFile(filename, \"utf-8\");\n return removeTrailingLF(buf);\n}\n/**\n *\n * @deprecated\n */\nexport function readPrivateKeyPEM(filename: string): PrivateKeyPEM {\n return _readPemFile(filename);\n}\n\n/**\n * Async version of {@link readPrivateKeyPEM}.\n * @deprecated\n */\nexport async function readPrivateKeyPEMAsync(filename: string): Promise<PrivateKeyPEM> {\n const buf = await fs.promises.readFile(filename, \"utf-8\");\n return removeTrailingLF(buf);\n}\n\nlet _g_certificate_store: string = \"\";\n\nexport function setCertificateStore(store: string): string {\n const old_store = _g_certificate_store;\n _g_certificate_store = store;\n return old_store;\n}\nexport function getCertificateStore(): string {\n if (!_g_certificate_store) {\n _g_certificate_store = path.join(__dirname, \"../../certificates/\");\n }\n return _g_certificate_store;\n}\n/**\n *\n * @param filename\n */\nexport function readPrivateRsaKey(filename: string): PrivateKey {\n if (!createPrivateKey) {\n throw new Error(\"createPrivateKey is not supported in this environment\");\n }\n if (filename.substring(0, 1) !== \".\" && !fs.existsSync(filename)) {\n filename = path.join(getCertificateStore(), filename);\n }\n const content = fs.readFileSync(filename, \"utf8\");\n const sshKey = sshpk.parsePrivateKey(content, \"auto\");\n const key = sshKey.toString(\"pkcs1\") as PEM;\n const hidden = createPrivateKey({ format: \"pem\", type: \"pkcs1\", key });\n return { hidden };\n}\n\nexport function readPublicRsaKey(filename: string): PublicKey {\n if (filename.substring(0, 1) !== \".\" && !fs.existsSync(filename)) {\n filename = path.join(getCertificateStore(), filename);\n }\n const content = fs.readFileSync(filename, \"utf-8\");\n const sshKey = sshpk.parseKey(content, \"ssh\");\n const key = sshKey.toString(\"pkcs1\") as PEM;\n return createPublicKey({ format: \"pem\", type: \"pkcs1\", key });\n}\n","// ---------------------------------------------------------------------------------------------------------------------\n// node-opcua-crypto\n// ---------------------------------------------------------------------------------------------------------------------\n// Copyright (c) 2014-2022 - Etienne Rossignon - etienne.rossignon (at) gadz.org\n// Copyright (c) 2022-2026 - Sterfive.com\n// ---------------------------------------------------------------------------------------------------------------------\n//\n// This project is licensed under the terms of the MIT license.\n//\n// Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated\n// documentation files (the \"Software\"), to deal in the Software without restriction, including without limitation the\n// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to\n// permit persons to whom the Software is furnished to do so, subject to the following conditions:\n//\n// The above copyright notice and this permission notice shall be included in all copies or substantial portions of the\n// Software.\n//\n// THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE\n// WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR\n// COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR\n// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.\n// ---------------------------------------------------------------------------------------------------------------------\n\nimport fs from \"node:fs\";\nimport type { CertificateRevocationList } from \"../source/common.js\";\nimport { convertPEMtoDER } from \"../source/crypto_utils.js\";\n\nexport async function readCertificateRevocationList(filename: string): Promise<CertificateRevocationList> {\n const crl = await fs.promises.readFile(filename);\n if (crl[0] === 0x30 && crl[1] === 0x82) {\n // der format\n return crl as CertificateRevocationList;\n }\n const raw_crl = crl.toString();\n return convertPEMtoDER(raw_crl);\n}\n","// ---------------------------------------------------------------------------------------------------------------------\n// node-opcua-crypto\n// ---------------------------------------------------------------------------------------------------------------------\n// Copyright (c) 2014-2022 - Etienne Rossignon - etienne.rossignon (at) gadz.org\n// Copyright (c) 2022-2026 - Sterfive.com\n// ---------------------------------------------------------------------------------------------------------------------\n//\n// This project is licensed under the terms of the MIT license.\n//\n// Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated\n// documentation files (the \"Software\"), to deal in the Software without restriction, including without limitation the\n// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to\n// permit persons to whom the Software is furnished to do so, subject to the following conditions:\n//\n// The above copyright notice and this permission notice shall be included in all copies or substantial portions of the\n// Software.\n//\n// THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE\n// WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR\n// COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR\n// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.\n// ---------------------------------------------------------------------------------------------------------------------\n\nimport fs from \"node:fs\";\nimport type { CertificateRevocationList } from \"../source/common.js\";\nimport { convertPEMtoDER } from \"../source/crypto_utils.js\";\n\nexport type CertificateSigningRequest = Buffer;\n\nexport async function readCertificateSigningRequest(filename: string): Promise<CertificateSigningRequest> {\n const csr = await fs.promises.readFile(filename);\n if (csr[0] === 0x30 && csr[1] === 0x82) {\n // der format\n return csr as CertificateRevocationList;\n }\n const raw_crl = csr.toString();\n return convertPEMtoDER(raw_crl);\n}\n","// ---------------------------------------------------------------------------------------------------------------------\n// node-opcua-crypto\n// ---------------------------------------------------------------------------------------------------------------------\n// Copyright (c) 2014-2022 - Etienne Rossignon - etienne.rossignon (at) gadz.org\n// Copyright (c) 2022-2026 - Sterfive.com\n// ---------------------------------------------------------------------------------------------------------------------\n//\n// This project is licensed under the terms of the MIT license.\n//\n// Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated\n// documentation files (the \"Software\"), to deal in the Software without restriction, including without limitation the\n// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to\n// permit persons to whom the Software is furnished to do so, subject to the following conditions:\n//\n// The above copyright notice and this permission notice shall be included in all copies or substantial portions of the\n// Software.\n//\n// THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE\n// WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR\n// COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR\n// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.\n// ---------------------------------------------------------------------------------------------------------------------\n\nimport fs from \"node:fs\";\n\nimport type { Certificate } from \"../source/common.js\";\nimport { combine_der } from \"../source/crypto_explore_certificate.js\";\nimport { toPem } from \"../source/crypto_utils.js\";\n\n// ── PEM ──────────────────────────────────────────────────────\n\n/**\n * Convert one or more DER certificates to a PEM string.\n *\n * Accepts a single `Certificate` (DER buffer) or an array.\n * Returns a multi-block PEM string with each certificate\n * separated by a newline.\n */\nexport function certificatesToPem(certificates: Certificate | Certificate[]): string {\n const certs = Array.isArray(certificates) ? certificates : [certificates];\n return `${certs.map((der) => toPem(der, \"CERTIFICATE\")).join(\"\\n\")}\\n`;\n}\n\n/**\n * Write one or more DER certificates to a PEM file.\n *\n * Each certificate is written as a separate PEM block in the\n * order provided (typically leaf first, then issuer chain).\n */\nexport function writeCertificateChain(filename: string, certificates: Certificate | Certificate[]): void {\n fs.writeFileSync(filename, certificatesToPem(certificates), \"utf-8\");\n}\n\n/**\n * Async version of {@link writeCertificateChain}.\n */\nexport async function writeCertificateChainAsync(filename: string, certificates: Certificate | Certificate[]): Promise<void> {\n await fs.promises.writeFile(filename, certificatesToPem(certificates), \"utf-8\");\n}\n\n// ── DER ──────────────────────────────────────────────────────\n\n/**\n * Convert one or more DER certificates to a single concatenated\n * DER buffer (OPC UA certificate chain format).\n *\n * Accepts a single `Certificate` (DER buffer) or an array.\n */\nexport function certificatesToDer(certificates: Certificate | Certificate[]): Certificate {\n const certs = Array.isArray(certificates) ? certificates : [certificates];\n return combine_der(certs);\n}\n\n/**\n * Write one or more DER certificates to a `.der` file as a\n * concatenated DER chain (OPC UA binary chain format).\n *\n * Order should be leaf first, then issuer chain.\n */\nexport function writeCertificateChainDer(filename: string, certificates: Certificate | Certificate[]): void {\n fs.writeFileSync(filename, certificatesToDer(certificates));\n}\n\n/**\n * Async version of {@link writeCertificateChainDer}.\n */\nexport async function writeCertificateChainDerAsync(filename: string, certificates: Certificate | Certificate[]): Promise<void> {\n await fs.promises.writeFile(filename, certificatesToDer(certificates));\n}\n"]}
package/dist/index.cjs CHANGED
@@ -27,7 +27,7 @@
27
27
 
28
28
 
29
29
 
30
- var _chunkMUTGGDELcjs = require('./chunk-MUTGGDEL.cjs');
30
+ var _chunkXJHDKGLHcjs = require('./chunk-XJHDKGLH.cjs');
31
31
 
32
32
 
33
33
 
@@ -104,9 +104,9 @@ var _chunkMUTGGDELcjs = require('./chunk-MUTGGDEL.cjs');
104
104
 
105
105
 
106
106
 
107
- var _chunk3KSBDOQTcjs = require('./chunk-3KSBDOQT.cjs');
108
107
 
109
108
 
109
+ var _chunkR6I4NJSZcjs = require('./chunk-R6I4NJSZ.cjs');
110
110
 
111
111
 
112
112
 
@@ -209,5 +209,9 @@ var _chunk3KSBDOQTcjs = require('./chunk-3KSBDOQT.cjs');
209
209
 
210
210
 
211
211
 
212
- exports.CertificatePurpose = _chunk3KSBDOQTcjs.CertificatePurpose; exports.PaddingAlgorithm = _chunk3KSBDOQTcjs.PaddingAlgorithm; exports.RSA_PKCS1_OAEP_PADDING = _chunk3KSBDOQTcjs.RSA_PKCS1_OAEP_PADDING; exports.RSA_PKCS1_PADDING = _chunk3KSBDOQTcjs.RSA_PKCS1_PADDING; exports.Subject = _chunk3KSBDOQTcjs.Subject; exports._coercePrivateKey = _chunk3KSBDOQTcjs._coercePrivateKey; exports.asn1 = _chunk3KSBDOQTcjs.asn1; exports.certificateMatchesPrivateKey = _chunk3KSBDOQTcjs.certificateMatchesPrivateKey; exports.certificatesToDer = _chunkMUTGGDELcjs.certificatesToDer; exports.certificatesToPem = _chunkMUTGGDELcjs.certificatesToPem; exports.coerceCertificate = _chunk3KSBDOQTcjs.coerceCertificate; exports.coerceCertificatePem = _chunk3KSBDOQTcjs.coerceCertificatePem; exports.coercePEMorDerToPrivateKey = _chunk3KSBDOQTcjs.coercePEMorDerToPrivateKey; exports.coercePrivateKeyPem = _chunk3KSBDOQTcjs.coercePrivateKeyPem; exports.coercePublicKeyPem = _chunk3KSBDOQTcjs.coercePublicKeyPem; exports.coerceRsaPublicKeyPem = _chunk3KSBDOQTcjs.coerceRsaPublicKeyPem; exports.combine_der = _chunk3KSBDOQTcjs.combine_der; exports.computeDerivedKeys = _chunk3KSBDOQTcjs.computeDerivedKeys; exports.computePaddingFooter = _chunk3KSBDOQTcjs.computePaddingFooter; exports.convertPEMtoDER = _chunk3KSBDOQTcjs.convertPEMtoDER; exports.createCertificateSigningRequest = _chunk3KSBDOQTcjs.createCertificateSigningRequest; exports.createPrivateKeyFromNodeJSCrypto = _chunk3KSBDOQTcjs.createPrivateKeyFromNodeJSCrypto; exports.createSelfSignedCertificate = _chunk3KSBDOQTcjs.createSelfSignedCertificate; exports.decryptBufferWithDerivedKeys = _chunk3KSBDOQTcjs.decryptBufferWithDerivedKeys; exports.derToPrivateKey = _chunk3KSBDOQTcjs.derToPrivateKey; exports.encryptBufferWithDerivedKeys = _chunk3KSBDOQTcjs.encryptBufferWithDerivedKeys; exports.exploreAsn1 = _chunk3KSBDOQTcjs.exploreAsn1; exports.exploreCertificate = _chunk3KSBDOQTcjs.exploreCertificate; exports.exploreCertificateInfo = _chunk3KSBDOQTcjs.exploreCertificateInfo; exports.exploreCertificateRevocationList = _chunk3KSBDOQTcjs.exploreCertificateRevocationList; exports.exploreCertificateSigningRequest = _chunk3KSBDOQTcjs.exploreCertificateSigningRequest; exports.explorePrivateKey = _chunk3KSBDOQTcjs.explorePrivateKey; exports.extractPublicKeyFromCertificate = _chunk3KSBDOQTcjs.extractPublicKeyFromCertificate; exports.extractPublicKeyFromCertificateSync = _chunk3KSBDOQTcjs.extractPublicKeyFromCertificateSync; exports.generateKeyPair = _chunk3KSBDOQTcjs.generateKeyPair; exports.generatePrivateKey = _chunk3KSBDOQTcjs.generatePrivateKey; exports.generatePrivateKeyFile = _chunkMUTGGDELcjs.generatePrivateKeyFile; exports.generatePrivateKeyFileAlternate = _chunkMUTGGDELcjs.generatePrivateKeyFileAlternate; exports.getCertificateStore = _chunkMUTGGDELcjs.getCertificateStore; exports.hexDump = _chunk3KSBDOQTcjs.hexDump; exports.identifyDERContent = _chunk3KSBDOQTcjs.identifyDERContent; exports.identifyPemType = _chunk3KSBDOQTcjs.identifyPemType; exports.isCrlIssuedByCertificate = _chunk3KSBDOQTcjs.isCrlIssuedByCertificate; exports.isKeyObject = _chunk3KSBDOQTcjs.isKeyObject; exports.makeMessageChunkSignature = _chunk3KSBDOQTcjs.makeMessageChunkSignature; exports.makeMessageChunkSignatureWithDerivedKeys = _chunk3KSBDOQTcjs.makeMessageChunkSignatureWithDerivedKeys; exports.makePrivateKeyFromPem = _chunk3KSBDOQTcjs.makePrivateKeyFromPem; exports.makePrivateKeyThumbPrint = _chunk3KSBDOQTcjs.makePrivateKeyThumbPrint; exports.makePseudoRandomBuffer = _chunk3KSBDOQTcjs.makePseudoRandomBuffer; exports.makeSHA1Thumbprint = _chunk3KSBDOQTcjs.makeSHA1Thumbprint; exports.pemToPrivateKey = _chunk3KSBDOQTcjs.pemToPrivateKey; exports.privateDecrypt = _chunk3KSBDOQTcjs.privateDecrypt; exports.privateDecrypt_long = _chunk3KSBDOQTcjs.privateDecrypt_long; exports.privateDecrypt_native = _chunk3KSBDOQTcjs.privateDecrypt_native; exports.privateKeyToPEM = _chunk3KSBDOQTcjs.privateKeyToPEM; exports.publicEncrypt = _chunk3KSBDOQTcjs.publicEncrypt; exports.publicEncrypt_long = _chunk3KSBDOQTcjs.publicEncrypt_long; exports.publicEncrypt_native = _chunk3KSBDOQTcjs.publicEncrypt_native; exports.publicKeyAndPrivateKeyMatches = _chunk3KSBDOQTcjs.publicKeyAndPrivateKeyMatches; exports.readCertificate = _chunkMUTGGDELcjs.readCertificate; exports.readCertificateAsync = _chunkMUTGGDELcjs.readCertificateAsync; exports.readCertificateChain = _chunkMUTGGDELcjs.readCertificateChain; exports.readCertificateChainAsync = _chunkMUTGGDELcjs.readCertificateChainAsync; exports.readCertificatePEM = _chunkMUTGGDELcjs.readCertificatePEM; exports.readCertificatePEMAsync = _chunkMUTGGDELcjs.readCertificatePEMAsync; exports.readCertificateRevocationList = _chunkMUTGGDELcjs.readCertificateRevocationList; exports.readCertificateSigningRequest = _chunkMUTGGDELcjs.readCertificateSigningRequest; exports.readCertificationRequestInfo = _chunk3KSBDOQTcjs.readCertificationRequestInfo; exports.readExtension = _chunk3KSBDOQTcjs.readExtension; exports.readNameForCrl = _chunk3KSBDOQTcjs.readNameForCrl; exports.readPrivateKey = _chunkMUTGGDELcjs.readPrivateKey; exports.readPrivateKeyAsync = _chunkMUTGGDELcjs.readPrivateKeyAsync; exports.readPrivateKeyPEM = _chunkMUTGGDELcjs.readPrivateKeyPEM; exports.readPrivateKeyPEMAsync = _chunkMUTGGDELcjs.readPrivateKeyPEMAsync; exports.readPrivateRsaKey = _chunkMUTGGDELcjs.readPrivateRsaKey; exports.readPublicKey = _chunkMUTGGDELcjs.readPublicKey; exports.readPublicKeyAsync = _chunkMUTGGDELcjs.readPublicKeyAsync; exports.readPublicKeyPEM = _chunkMUTGGDELcjs.readPublicKeyPEM; exports.readPublicKeyPEMAsync = _chunkMUTGGDELcjs.readPublicKeyPEMAsync; exports.readPublicRsaKey = _chunkMUTGGDELcjs.readPublicRsaKey; exports.readTbsCertificate = _chunk3KSBDOQTcjs.readTbsCertificate; exports.reduceLength = _chunk3KSBDOQTcjs.reduceLength; exports.removePadding = _chunk3KSBDOQTcjs.removePadding; exports.removeTrailingLF = _chunk3KSBDOQTcjs.removeTrailingLF; exports.rsaLengthPrivateKey = _chunk3KSBDOQTcjs.rsaLengthPrivateKey; exports.rsaLengthPublicKey = _chunk3KSBDOQTcjs.rsaLengthPublicKey; exports.rsaLengthRsaPublicKey = _chunk3KSBDOQTcjs.rsaLengthRsaPublicKey; exports.setCertificateStore = _chunkMUTGGDELcjs.setCertificateStore; exports.split_der = _chunk3KSBDOQTcjs.split_der; exports.toPem = _chunk3KSBDOQTcjs.toPem; exports.toPem2 = _chunk3KSBDOQTcjs.toPem2; exports.verifyCertificateChain = _chunk3KSBDOQTcjs.verifyCertificateChain; exports.verifyCertificateOrClrSignature = _chunk3KSBDOQTcjs.verifyCertificateOrClrSignature; exports.verifyCertificateRevocationListSignature = _chunk3KSBDOQTcjs.verifyCertificateRevocationListSignature; exports.verifyCertificateSignature = _chunk3KSBDOQTcjs.verifyCertificateSignature; exports.verifyChunkSignature = _chunk3KSBDOQTcjs.verifyChunkSignature; exports.verifyChunkSignatureWithDerivedKeys = _chunk3KSBDOQTcjs.verifyChunkSignatureWithDerivedKeys; exports.verifyCrlIssuedByCertificate = _chunk3KSBDOQTcjs.verifyCrlIssuedByCertificate; exports.verifyMessageChunkSignature = _chunk3KSBDOQTcjs.verifyMessageChunkSignature; exports.writeCertificateChain = _chunkMUTGGDELcjs.writeCertificateChain; exports.writeCertificateChainAsync = _chunkMUTGGDELcjs.writeCertificateChainAsync; exports.writeCertificateChainDer = _chunkMUTGGDELcjs.writeCertificateChainDer; exports.writeCertificateChainDerAsync = _chunkMUTGGDELcjs.writeCertificateChainDerAsync;
212
+
213
+
214
+
215
+
216
+ exports.CertificatePurpose = _chunkR6I4NJSZcjs.CertificatePurpose; exports.PaddingAlgorithm = _chunkR6I4NJSZcjs.PaddingAlgorithm; exports.RSA_PKCS1_OAEP_PADDING = _chunkR6I4NJSZcjs.RSA_PKCS1_OAEP_PADDING; exports.RSA_PKCS1_PADDING = _chunkR6I4NJSZcjs.RSA_PKCS1_PADDING; exports.Subject = _chunkR6I4NJSZcjs.Subject; exports._coercePrivateKey = _chunkR6I4NJSZcjs._coercePrivateKey; exports.asn1 = _chunkR6I4NJSZcjs.asn1; exports.certificateMatchesPrivateKey = _chunkR6I4NJSZcjs.certificateMatchesPrivateKey; exports.certificatesToDer = _chunkXJHDKGLHcjs.certificatesToDer; exports.certificatesToPem = _chunkXJHDKGLHcjs.certificatesToPem; exports.clearExploreCertificateCache = _chunkR6I4NJSZcjs.clearExploreCertificateCache; exports.coerceCertificate = _chunkR6I4NJSZcjs.coerceCertificate; exports.coerceCertificatePem = _chunkR6I4NJSZcjs.coerceCertificatePem; exports.coercePEMorDerToPrivateKey = _chunkR6I4NJSZcjs.coercePEMorDerToPrivateKey; exports.coercePrivateKeyPem = _chunkR6I4NJSZcjs.coercePrivateKeyPem; exports.coercePublicKeyPem = _chunkR6I4NJSZcjs.coercePublicKeyPem; exports.coerceRsaPublicKeyPem = _chunkR6I4NJSZcjs.coerceRsaPublicKeyPem; exports.combine_der = _chunkR6I4NJSZcjs.combine_der; exports.computeDerivedKeys = _chunkR6I4NJSZcjs.computeDerivedKeys; exports.computePaddingFooter = _chunkR6I4NJSZcjs.computePaddingFooter; exports.convertPEMtoDER = _chunkR6I4NJSZcjs.convertPEMtoDER; exports.createCertificateSigningRequest = _chunkR6I4NJSZcjs.createCertificateSigningRequest; exports.createPrivateKeyFromNodeJSCrypto = _chunkR6I4NJSZcjs.createPrivateKeyFromNodeJSCrypto; exports.createSelfSignedCertificate = _chunkR6I4NJSZcjs.createSelfSignedCertificate; exports.decryptBufferWithDerivedKeys = _chunkR6I4NJSZcjs.decryptBufferWithDerivedKeys; exports.derToPrivateKey = _chunkR6I4NJSZcjs.derToPrivateKey; exports.encryptBufferWithDerivedKeys = _chunkR6I4NJSZcjs.encryptBufferWithDerivedKeys; exports.exploreAsn1 = _chunkR6I4NJSZcjs.exploreAsn1; exports.exploreCertificate = _chunkR6I4NJSZcjs.exploreCertificate; exports.exploreCertificateInfo = _chunkR6I4NJSZcjs.exploreCertificateInfo; exports.exploreCertificateRevocationList = _chunkR6I4NJSZcjs.exploreCertificateRevocationList; exports.exploreCertificateSigningRequest = _chunkR6I4NJSZcjs.exploreCertificateSigningRequest; exports.explorePrivateKey = _chunkR6I4NJSZcjs.explorePrivateKey; exports.extractPublicKeyFromCertificate = _chunkR6I4NJSZcjs.extractPublicKeyFromCertificate; exports.extractPublicKeyFromCertificateSync = _chunkR6I4NJSZcjs.extractPublicKeyFromCertificateSync; exports.generateKeyPair = _chunkR6I4NJSZcjs.generateKeyPair; exports.generatePrivateKey = _chunkR6I4NJSZcjs.generatePrivateKey; exports.generatePrivateKeyFile = _chunkXJHDKGLHcjs.generatePrivateKeyFile; exports.generatePrivateKeyFileAlternate = _chunkXJHDKGLHcjs.generatePrivateKeyFileAlternate; exports.getCertificateStore = _chunkXJHDKGLHcjs.getCertificateStore; exports.hexDump = _chunkR6I4NJSZcjs.hexDump; exports.identifyDERContent = _chunkR6I4NJSZcjs.identifyDERContent; exports.identifyPemType = _chunkR6I4NJSZcjs.identifyPemType; exports.isCrlIssuedByCertificate = _chunkR6I4NJSZcjs.isCrlIssuedByCertificate; exports.isKeyObject = _chunkR6I4NJSZcjs.isKeyObject; exports.makeMessageChunkSignature = _chunkR6I4NJSZcjs.makeMessageChunkSignature; exports.makeMessageChunkSignatureWithDerivedKeys = _chunkR6I4NJSZcjs.makeMessageChunkSignatureWithDerivedKeys; exports.makePrivateKeyFromPem = _chunkR6I4NJSZcjs.makePrivateKeyFromPem; exports.makePrivateKeyThumbPrint = _chunkR6I4NJSZcjs.makePrivateKeyThumbPrint; exports.makePseudoRandomBuffer = _chunkR6I4NJSZcjs.makePseudoRandomBuffer; exports.makeSHA1Thumbprint = _chunkR6I4NJSZcjs.makeSHA1Thumbprint; exports.pemToPrivateKey = _chunkR6I4NJSZcjs.pemToPrivateKey; exports.privateDecrypt = _chunkR6I4NJSZcjs.privateDecrypt; exports.privateDecrypt_long = _chunkR6I4NJSZcjs.privateDecrypt_long; exports.privateDecrypt_native = _chunkR6I4NJSZcjs.privateDecrypt_native; exports.privateKeyToPEM = _chunkR6I4NJSZcjs.privateKeyToPEM; exports.publicEncrypt = _chunkR6I4NJSZcjs.publicEncrypt; exports.publicEncrypt_long = _chunkR6I4NJSZcjs.publicEncrypt_long; exports.publicEncrypt_native = _chunkR6I4NJSZcjs.publicEncrypt_native; exports.publicKeyAndPrivateKeyMatches = _chunkR6I4NJSZcjs.publicKeyAndPrivateKeyMatches; exports.readCertificate = _chunkXJHDKGLHcjs.readCertificate; exports.readCertificateAsync = _chunkXJHDKGLHcjs.readCertificateAsync; exports.readCertificateChain = _chunkXJHDKGLHcjs.readCertificateChain; exports.readCertificateChainAsync = _chunkXJHDKGLHcjs.readCertificateChainAsync; exports.readCertificatePEM = _chunkXJHDKGLHcjs.readCertificatePEM; exports.readCertificatePEMAsync = _chunkXJHDKGLHcjs.readCertificatePEMAsync; exports.readCertificateRevocationList = _chunkXJHDKGLHcjs.readCertificateRevocationList; exports.readCertificateSigningRequest = _chunkXJHDKGLHcjs.readCertificateSigningRequest; exports.readCertificationRequestInfo = _chunkR6I4NJSZcjs.readCertificationRequestInfo; exports.readExtension = _chunkR6I4NJSZcjs.readExtension; exports.readNameForCrl = _chunkR6I4NJSZcjs.readNameForCrl; exports.readPrivateKey = _chunkXJHDKGLHcjs.readPrivateKey; exports.readPrivateKeyAsync = _chunkXJHDKGLHcjs.readPrivateKeyAsync; exports.readPrivateKeyPEM = _chunkXJHDKGLHcjs.readPrivateKeyPEM; exports.readPrivateKeyPEMAsync = _chunkXJHDKGLHcjs.readPrivateKeyPEMAsync; exports.readPrivateRsaKey = _chunkXJHDKGLHcjs.readPrivateRsaKey; exports.readPublicKey = _chunkXJHDKGLHcjs.readPublicKey; exports.readPublicKeyAsync = _chunkXJHDKGLHcjs.readPublicKeyAsync; exports.readPublicKeyPEM = _chunkXJHDKGLHcjs.readPublicKeyPEM; exports.readPublicKeyPEMAsync = _chunkXJHDKGLHcjs.readPublicKeyPEMAsync; exports.readPublicRsaKey = _chunkXJHDKGLHcjs.readPublicRsaKey; exports.readTbsCertificate = _chunkR6I4NJSZcjs.readTbsCertificate; exports.reduceLength = _chunkR6I4NJSZcjs.reduceLength; exports.removePadding = _chunkR6I4NJSZcjs.removePadding; exports.removeTrailingLF = _chunkR6I4NJSZcjs.removeTrailingLF; exports.rsaLengthPrivateKey = _chunkR6I4NJSZcjs.rsaLengthPrivateKey; exports.rsaLengthPublicKey = _chunkR6I4NJSZcjs.rsaLengthPublicKey; exports.rsaLengthRsaPublicKey = _chunkR6I4NJSZcjs.rsaLengthRsaPublicKey; exports.setCertificateStore = _chunkXJHDKGLHcjs.setCertificateStore; exports.split_der = _chunkR6I4NJSZcjs.split_der; exports.toPem = _chunkR6I4NJSZcjs.toPem; exports.toPem2 = _chunkR6I4NJSZcjs.toPem2; exports.verifyCertificateChain = _chunkR6I4NJSZcjs.verifyCertificateChain; exports.verifyCertificateOrClrSignature = _chunkR6I4NJSZcjs.verifyCertificateOrClrSignature; exports.verifyCertificateRevocationListSignature = _chunkR6I4NJSZcjs.verifyCertificateRevocationListSignature; exports.verifyCertificateSignature = _chunkR6I4NJSZcjs.verifyCertificateSignature; exports.verifyChunkSignature = _chunkR6I4NJSZcjs.verifyChunkSignature; exports.verifyChunkSignatureWithDerivedKeys = _chunkR6I4NJSZcjs.verifyChunkSignatureWithDerivedKeys; exports.verifyCrlIssuedByCertificate = _chunkR6I4NJSZcjs.verifyCrlIssuedByCertificate; exports.verifyMessageChunkSignature = _chunkR6I4NJSZcjs.verifyMessageChunkSignature; exports.verify_certificate_der_structure = _chunkR6I4NJSZcjs.verify_certificate_der_structure; exports.writeCertificateChain = _chunkXJHDKGLHcjs.writeCertificateChain; exports.writeCertificateChainAsync = _chunkXJHDKGLHcjs.writeCertificateChainAsync; exports.writeCertificateChainDer = _chunkXJHDKGLHcjs.writeCertificateChainDer; exports.writeCertificateChainDerAsync = _chunkXJHDKGLHcjs.writeCertificateChainDerAsync;
213
217
  //# sourceMappingURL=index.cjs.map
package/dist/index.cjs.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"sources":["/home/runner/work/node-opcua-crypto/node-opcua-crypto/packages/node-opcua-crypto/dist/index.cjs"],"names":[],"mappings":"AAAA;AACE;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACF,wDAA6B;AAC7B;AACE;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACF,w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ktOAAC","file":"/home/runner/work/node-opcua-crypto/node-opcua-crypto/packages/node-opcua-crypto/dist/index.cjs"}
1
+ {"version":3,"sources":["/home/runner/work/node-opcua-crypto/node-opcua-crypto/packages/node-opcua-crypto/dist/index.cjs"],"names":[],"mappings":"AAAA;AACE;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACF,wDAA6B;AAC7B;AACE;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACF,wDAA6B;AAC7B;AACE;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACF,w4OAAC","file":"/home/runner/work/node-opcua-crypto/node-opcua-crypto/packages/node-opcua-crypto/dist/index.cjs"}
package/dist/index.d.cts CHANGED
@@ -1,4 +1,4 @@
1
- export { AttributeTypeAndValue, AuthorityKeyIdentifier, BasicConstraints, CertificateExtension, CertificateInfo, CertificateInternals, CertificateRevocationListInfo, CertificateSerialNumber, CertificateSigningRequestInfo, ComputeDerivedKeysOptions, CreateSelfSignCertificateOptions, DERContentType, DerivedKeys, DirectoryName, ExtensionRequest, Extensions, Name, PaddingAlgorithm, PrivateKeyInternals, PublicKeyLength, RSA_PKCS1_OAEP_PADDING, RSA_PKCS1_PADDING, RevokedCertificate, Subject, SubjectAltName, SubjectOptions, SubjectPublicKey, SubjectPublicKeyInfo, TBSCertList, TbsCertificate, Validity, VerifyChunkSignatureOptions, VerifyMessageChunkSignatureOptions, Version, X509ExtKeyUsage, X509KeyUsage, _VerifyStatus, _coercePrivateKey, asn1, certificateMatchesPrivateKey, coerceCertificate, coerceCertificatePem, coercePEMorDerToPrivateKey, coercePrivateKeyPem, coercePublicKeyPem, coerceRsaPublicKeyPem, combine_der, computeDerivedKeys, computePaddingFooter, convertPEMtoDER, createCertificateSigningRequest, createSelfSignedCertificate, decryptBufferWithDerivedKeys, derToPrivateKey, encryptBufferWithDerivedKeys, exploreAsn1, exploreCertificate, exploreCertificateInfo, exploreCertificateRevocationList, exploreCertificateSigningRequest, explorePrivateKey, extractPublicKeyFromCertificate, extractPublicKeyFromCertificateSync, generateKeyPair, generatePrivateKey, hexDump, identifyDERContent, identifyPemType, isCrlIssuedByCertificate, makeMessageChunkSignature, makeMessageChunkSignatureWithDerivedKeys, makePrivateKeyFromPem, makePrivateKeyThumbPrint, makePseudoRandomBuffer, makeSHA1Thumbprint, pemToPrivateKey, privateDecrypt, privateDecrypt_long, privateDecrypt_native, privateKeyToPEM, publicEncrypt, publicEncrypt_long, publicEncrypt_native, publicKeyAndPrivateKeyMatches, readCertificationRequestInfo, readExtension, readNameForCrl, readTbsCertificate, reduceLength, removePadding, removeTrailingLF, rsaLengthPrivateKey, rsaLengthPublicKey, rsaLengthRsaPublicKey, split_der, toPem, toPem2, verifyCertificateChain, verifyCertificateOrClrSignature, verifyCertificateRevocationListSignature, verifyCertificateSignature, verifyChunkSignature, verifyChunkSignatureWithDerivedKeys, verifyCrlIssuedByCertificate, verifyMessageChunkSignature } from './source/index_web.cjs';
1
+ export { AttributeTypeAndValue, AuthorityKeyIdentifier, BasicConstraints, CertificateExtension, CertificateInfo, CertificateInternals, CertificateRevocationListInfo, CertificateSerialNumber, CertificateSigningRequestInfo, ComputeDerivedKeysOptions, CreateSelfSignCertificateOptions, DERContentType, DerivedKeys, DirectoryName, ExtensionRequest, Extensions, Name, PaddingAlgorithm, PrivateKeyInternals, PublicKeyLength, RSA_PKCS1_OAEP_PADDING, RSA_PKCS1_PADDING, RevokedCertificate, Subject, SubjectAltName, SubjectOptions, SubjectPublicKey, SubjectPublicKeyInfo, TBSCertList, TbsCertificate, Validity, VerifyChunkSignatureOptions, VerifyMessageChunkSignatureOptions, Version, X509ExtKeyUsage, X509KeyUsage, _VerifyStatus, _coercePrivateKey, asn1, certificateMatchesPrivateKey, clearExploreCertificateCache, coerceCertificate, coerceCertificatePem, coercePEMorDerToPrivateKey, coercePrivateKeyPem, coercePublicKeyPem, coerceRsaPublicKeyPem, combine_der, computeDerivedKeys, computePaddingFooter, convertPEMtoDER, createCertificateSigningRequest, createSelfSignedCertificate, decryptBufferWithDerivedKeys, derToPrivateKey, encryptBufferWithDerivedKeys, exploreAsn1, exploreCertificate, exploreCertificateInfo, exploreCertificateRevocationList, exploreCertificateSigningRequest, explorePrivateKey, extractPublicKeyFromCertificate, extractPublicKeyFromCertificateSync, generateKeyPair, generatePrivateKey, hexDump, identifyDERContent, identifyPemType, isCrlIssuedByCertificate, makeMessageChunkSignature, makeMessageChunkSignatureWithDerivedKeys, makePrivateKeyFromPem, makePrivateKeyThumbPrint, makePseudoRandomBuffer, makeSHA1Thumbprint, pemToPrivateKey, privateDecrypt, privateDecrypt_long, privateDecrypt_native, privateKeyToPEM, publicEncrypt, publicEncrypt_long, publicEncrypt_native, publicKeyAndPrivateKeyMatches, readCertificationRequestInfo, readExtension, readNameForCrl, readTbsCertificate, reduceLength, removePadding, removeTrailingLF, rsaLengthPrivateKey, rsaLengthPublicKey, rsaLengthRsaPublicKey, split_der, toPem, toPem2, verifyCertificateChain, verifyCertificateOrClrSignature, verifyCertificateRevocationListSignature, verifyCertificateSignature, verifyChunkSignature, verifyChunkSignatureWithDerivedKeys, verifyCrlIssuedByCertificate, verifyMessageChunkSignature, verify_certificate_der_structure } from './source/index_web.cjs';
2
2
  export { CertificateSigningRequest, certificatesToDer, certificatesToPem, generatePrivateKeyFile, generatePrivateKeyFileAlternate, getCertificateStore, readCertificate, readCertificateAsync, readCertificateChain, readCertificateChainAsync, readCertificatePEM, readCertificatePEMAsync, readCertificateRevocationList, readCertificateSigningRequest, readPrivateKey, readPrivateKeyAsync, readPrivateKeyPEM, readPrivateKeyPEMAsync, readPrivateRsaKey, readPublicKey, readPublicKeyAsync, readPublicKeyPEM, readPublicKeyPEMAsync, readPublicRsaKey, setCertificateStore, writeCertificateChain, writeCertificateChainAsync, writeCertificateChainDer, writeCertificateChainDerAsync } from './source_nodejs/index.cjs';
3
3
  export { C as Certificate, d as CertificatePEM, h as CertificatePurpose, g as CertificateRevocationList, D as DER, K as KeyObject, N as Nonce, b as PEM, P as PrivateKey, e as PrivateKeyPEM, a as PublicKey, f as PublicKeyPEM, S as Signature, c as createPrivateKeyFromNodeJSCrypto, i as isKeyObject } from './common-DxHkx4Pv.cjs';
4
4
  import '@peculiar/x509';
package/dist/index.d.ts CHANGED
@@ -1,4 +1,4 @@
1
- export { AttributeTypeAndValue, AuthorityKeyIdentifier, BasicConstraints, CertificateExtension, CertificateInfo, CertificateInternals, CertificateRevocationListInfo, CertificateSerialNumber, CertificateSigningRequestInfo, ComputeDerivedKeysOptions, CreateSelfSignCertificateOptions, DERContentType, DerivedKeys, DirectoryName, ExtensionRequest, Extensions, Name, PaddingAlgorithm, PrivateKeyInternals, PublicKeyLength, RSA_PKCS1_OAEP_PADDING, RSA_PKCS1_PADDING, RevokedCertificate, Subject, SubjectAltName, SubjectOptions, SubjectPublicKey, SubjectPublicKeyInfo, TBSCertList, TbsCertificate, Validity, VerifyChunkSignatureOptions, VerifyMessageChunkSignatureOptions, Version, X509ExtKeyUsage, X509KeyUsage, _VerifyStatus, _coercePrivateKey, asn1, certificateMatchesPrivateKey, coerceCertificate, coerceCertificatePem, coercePEMorDerToPrivateKey, coercePrivateKeyPem, coercePublicKeyPem, coerceRsaPublicKeyPem, combine_der, computeDerivedKeys, computePaddingFooter, convertPEMtoDER, createCertificateSigningRequest, createSelfSignedCertificate, decryptBufferWithDerivedKeys, derToPrivateKey, encryptBufferWithDerivedKeys, exploreAsn1, exploreCertificate, exploreCertificateInfo, exploreCertificateRevocationList, exploreCertificateSigningRequest, explorePrivateKey, extractPublicKeyFromCertificate, extractPublicKeyFromCertificateSync, generateKeyPair, generatePrivateKey, hexDump, identifyDERContent, identifyPemType, isCrlIssuedByCertificate, makeMessageChunkSignature, makeMessageChunkSignatureWithDerivedKeys, makePrivateKeyFromPem, makePrivateKeyThumbPrint, makePseudoRandomBuffer, makeSHA1Thumbprint, pemToPrivateKey, privateDecrypt, privateDecrypt_long, privateDecrypt_native, privateKeyToPEM, publicEncrypt, publicEncrypt_long, publicEncrypt_native, publicKeyAndPrivateKeyMatches, readCertificationRequestInfo, readExtension, readNameForCrl, readTbsCertificate, reduceLength, removePadding, removeTrailingLF, rsaLengthPrivateKey, rsaLengthPublicKey, rsaLengthRsaPublicKey, split_der, toPem, toPem2, verifyCertificateChain, verifyCertificateOrClrSignature, verifyCertificateRevocationListSignature, verifyCertificateSignature, verifyChunkSignature, verifyChunkSignatureWithDerivedKeys, verifyCrlIssuedByCertificate, verifyMessageChunkSignature } from './source/index_web.js';
1
+ export { AttributeTypeAndValue, AuthorityKeyIdentifier, BasicConstraints, CertificateExtension, CertificateInfo, CertificateInternals, CertificateRevocationListInfo, CertificateSerialNumber, CertificateSigningRequestInfo, ComputeDerivedKeysOptions, CreateSelfSignCertificateOptions, DERContentType, DerivedKeys, DirectoryName, ExtensionRequest, Extensions, Name, PaddingAlgorithm, PrivateKeyInternals, PublicKeyLength, RSA_PKCS1_OAEP_PADDING, RSA_PKCS1_PADDING, RevokedCertificate, Subject, SubjectAltName, SubjectOptions, SubjectPublicKey, SubjectPublicKeyInfo, TBSCertList, TbsCertificate, Validity, VerifyChunkSignatureOptions, VerifyMessageChunkSignatureOptions, Version, X509ExtKeyUsage, X509KeyUsage, _VerifyStatus, _coercePrivateKey, asn1, certificateMatchesPrivateKey, clearExploreCertificateCache, coerceCertificate, coerceCertificatePem, coercePEMorDerToPrivateKey, coercePrivateKeyPem, coercePublicKeyPem, coerceRsaPublicKeyPem, combine_der, computeDerivedKeys, computePaddingFooter, convertPEMtoDER, createCertificateSigningRequest, createSelfSignedCertificate, decryptBufferWithDerivedKeys, derToPrivateKey, encryptBufferWithDerivedKeys, exploreAsn1, exploreCertificate, exploreCertificateInfo, exploreCertificateRevocationList, exploreCertificateSigningRequest, explorePrivateKey, extractPublicKeyFromCertificate, extractPublicKeyFromCertificateSync, generateKeyPair, generatePrivateKey, hexDump, identifyDERContent, identifyPemType, isCrlIssuedByCertificate, makeMessageChunkSignature, makeMessageChunkSignatureWithDerivedKeys, makePrivateKeyFromPem, makePrivateKeyThumbPrint, makePseudoRandomBuffer, makeSHA1Thumbprint, pemToPrivateKey, privateDecrypt, privateDecrypt_long, privateDecrypt_native, privateKeyToPEM, publicEncrypt, publicEncrypt_long, publicEncrypt_native, publicKeyAndPrivateKeyMatches, readCertificationRequestInfo, readExtension, readNameForCrl, readTbsCertificate, reduceLength, removePadding, removeTrailingLF, rsaLengthPrivateKey, rsaLengthPublicKey, rsaLengthRsaPublicKey, split_der, toPem, toPem2, verifyCertificateChain, verifyCertificateOrClrSignature, verifyCertificateRevocationListSignature, verifyCertificateSignature, verifyChunkSignature, verifyChunkSignatureWithDerivedKeys, verifyCrlIssuedByCertificate, verifyMessageChunkSignature, verify_certificate_der_structure } from './source/index_web.js';
2
2
  export { CertificateSigningRequest, certificatesToDer, certificatesToPem, generatePrivateKeyFile, generatePrivateKeyFileAlternate, getCertificateStore, readCertificate, readCertificateAsync, readCertificateChain, readCertificateChainAsync, readCertificatePEM, readCertificatePEMAsync, readCertificateRevocationList, readCertificateSigningRequest, readPrivateKey, readPrivateKeyAsync, readPrivateKeyPEM, readPrivateKeyPEMAsync, readPrivateRsaKey, readPublicKey, readPublicKeyAsync, readPublicKeyPEM, readPublicKeyPEMAsync, readPublicRsaKey, setCertificateStore, writeCertificateChain, writeCertificateChainAsync, writeCertificateChainDer, writeCertificateChainDerAsync } from './source_nodejs/index.js';
3
3
  export { C as Certificate, d as CertificatePEM, h as CertificatePurpose, g as CertificateRevocationList, D as DER, K as KeyObject, N as Nonce, b as PEM, P as PrivateKey, e as PrivateKeyPEM, a as PublicKey, f as PublicKeyPEM, S as Signature, c as createPrivateKeyFromNodeJSCrypto, i as isKeyObject } from './common-DxHkx4Pv.js';
4
4
  import '@peculiar/x509';
package/dist/index.js CHANGED
@@ -27,7 +27,7 @@ import {
27
27
  writeCertificateChainAsync,
28
28
  writeCertificateChainDer,
29
29
  writeCertificateChainDerAsync
30
- } from "./chunk-ISWOJ526.js";
30
+ } from "./chunk-DC5KIPR2.js";
31
31
  import {
32
32
  CertificatePurpose,
33
33
  PaddingAlgorithm,
@@ -37,6 +37,7 @@ import {
37
37
  _coercePrivateKey,
38
38
  asn1,
39
39
  certificateMatchesPrivateKey,
40
+ clearExploreCertificateCache,
40
41
  coerceCertificate,
41
42
  coerceCertificatePem,
42
43
  coercePEMorDerToPrivateKey,
@@ -103,8 +104,9 @@ import {
103
104
  verifyChunkSignature,
104
105
  verifyChunkSignatureWithDerivedKeys,
105
106
  verifyCrlIssuedByCertificate,
106
- verifyMessageChunkSignature
107
- } from "./chunk-Z4PNMXBN.js";
107
+ verifyMessageChunkSignature,
108
+ verify_certificate_der_structure
109
+ } from "./chunk-MFGOTDMX.js";
108
110
  export {
109
111
  CertificatePurpose,
110
112
  PaddingAlgorithm,
@@ -116,6 +118,7 @@ export {
116
118
  certificateMatchesPrivateKey,
117
119
  certificatesToDer,
118
120
  certificatesToPem,
121
+ clearExploreCertificateCache,
119
122
  coerceCertificate,
120
123
  coerceCertificatePem,
121
124
  coercePEMorDerToPrivateKey,
@@ -205,6 +208,7 @@ export {
205
208
  verifyChunkSignatureWithDerivedKeys,
206
209
  verifyCrlIssuedByCertificate,
207
210
  verifyMessageChunkSignature,
211
+ verify_certificate_der_structure,
208
212
  writeCertificateChain,
209
213
  writeCertificateChainAsync,
210
214
  writeCertificateChainDer,
package/dist/source/index_web.cjs CHANGED
@@ -74,9 +74,9 @@
74
74
 
75
75
 
76
76
 
77
- var _chunk3KSBDOQTcjs = require('../chunk-3KSBDOQT.cjs');
78
77
 
79
78
 
79
+ var _chunkR6I4NJSZcjs = require('../chunk-R6I4NJSZ.cjs');
80
80
 
81
81
 
82
82
 
@@ -151,5 +151,9 @@ var _chunk3KSBDOQTcjs = require('../chunk-3KSBDOQT.cjs');
151
151
 
152
152
 
153
153
 
154
- exports.CertificatePurpose = _chunk3KSBDOQTcjs.CertificatePurpose; exports.PaddingAlgorithm = _chunk3KSBDOQTcjs.PaddingAlgorithm; exports.RSA_PKCS1_OAEP_PADDING = _chunk3KSBDOQTcjs.RSA_PKCS1_OAEP_PADDING; exports.RSA_PKCS1_PADDING = _chunk3KSBDOQTcjs.RSA_PKCS1_PADDING; exports.Subject = _chunk3KSBDOQTcjs.Subject; exports._coercePrivateKey = _chunk3KSBDOQTcjs._coercePrivateKey; exports.asn1 = _chunk3KSBDOQTcjs.asn1; exports.certificateMatchesPrivateKey = _chunk3KSBDOQTcjs.certificateMatchesPrivateKey; exports.coerceCertificate = _chunk3KSBDOQTcjs.coerceCertificate; exports.coerceCertificatePem = _chunk3KSBDOQTcjs.coerceCertificatePem; exports.coercePEMorDerToPrivateKey = _chunk3KSBDOQTcjs.coercePEMorDerToPrivateKey; exports.coercePrivateKeyPem = _chunk3KSBDOQTcjs.coercePrivateKeyPem; exports.coercePublicKeyPem = _chunk3KSBDOQTcjs.coercePublicKeyPem; exports.coerceRsaPublicKeyPem = _chunk3KSBDOQTcjs.coerceRsaPublicKeyPem; exports.combine_der = _chunk3KSBDOQTcjs.combine_der; exports.computeDerivedKeys = _chunk3KSBDOQTcjs.computeDerivedKeys; exports.computePaddingFooter = _chunk3KSBDOQTcjs.computePaddingFooter; exports.convertPEMtoDER = _chunk3KSBDOQTcjs.convertPEMtoDER; exports.createCertificateSigningRequest = _chunk3KSBDOQTcjs.createCertificateSigningRequest; exports.createPrivateKeyFromNodeJSCrypto = _chunk3KSBDOQTcjs.createPrivateKeyFromNodeJSCrypto; exports.createSelfSignedCertificate = _chunk3KSBDOQTcjs.createSelfSignedCertificate; exports.decryptBufferWithDerivedKeys = _chunk3KSBDOQTcjs.decryptBufferWithDerivedKeys; exports.derToPrivateKey = _chunk3KSBDOQTcjs.derToPrivateKey; exports.encryptBufferWithDerivedKeys = _chunk3KSBDOQTcjs.encryptBufferWithDerivedKeys; exports.exploreAsn1 = _chunk3KSBDOQTcjs.exploreAsn1; exports.exploreCertificate = _chunk3KSBDOQTcjs.exploreCertificate; exports.exploreCertificateInfo = _chunk3KSBDOQTcjs.exploreCertificateInfo; exports.exploreCertificateRevocationList = _chunk3KSBDOQTcjs.exploreCertificateRevocationList; exports.exploreCertificateSigningRequest = _chunk3KSBDOQTcjs.exploreCertificateSigningRequest; exports.explorePrivateKey = _chunk3KSBDOQTcjs.explorePrivateKey; exports.extractPublicKeyFromCertificate = _chunk3KSBDOQTcjs.extractPublicKeyFromCertificate; exports.extractPublicKeyFromCertificateSync = _chunk3KSBDOQTcjs.extractPublicKeyFromCertificateSync; exports.generateKeyPair = _chunk3KSBDOQTcjs.generateKeyPair; exports.generatePrivateKey = _chunk3KSBDOQTcjs.generatePrivateKey; exports.hexDump = _chunk3KSBDOQTcjs.hexDump; exports.identifyDERContent = _chunk3KSBDOQTcjs.identifyDERContent; exports.identifyPemType = _chunk3KSBDOQTcjs.identifyPemType; exports.isCrlIssuedByCertificate = _chunk3KSBDOQTcjs.isCrlIssuedByCertificate; exports.isKeyObject = _chunk3KSBDOQTcjs.isKeyObject; exports.makeMessageChunkSignature = _chunk3KSBDOQTcjs.makeMessageChunkSignature; exports.makeMessageChunkSignatureWithDerivedKeys = _chunk3KSBDOQTcjs.makeMessageChunkSignatureWithDerivedKeys; exports.makePrivateKeyFromPem = _chunk3KSBDOQTcjs.makePrivateKeyFromPem; exports.makePrivateKeyThumbPrint = _chunk3KSBDOQTcjs.makePrivateKeyThumbPrint; exports.makePseudoRandomBuffer = _chunk3KSBDOQTcjs.makePseudoRandomBuffer; exports.makeSHA1Thumbprint = _chunk3KSBDOQTcjs.makeSHA1Thumbprint; exports.pemToPrivateKey = _chunk3KSBDOQTcjs.pemToPrivateKey; exports.privateDecrypt = _chunk3KSBDOQTcjs.privateDecrypt; exports.privateDecrypt_long = _chunk3KSBDOQTcjs.privateDecrypt_long; exports.privateDecrypt_native = _chunk3KSBDOQTcjs.privateDecrypt_native; exports.privateKeyToPEM = _chunk3KSBDOQTcjs.privateKeyToPEM; exports.publicEncrypt = _chunk3KSBDOQTcjs.publicEncrypt; exports.publicEncrypt_long = _chunk3KSBDOQTcjs.publicEncrypt_long; exports.publicEncrypt_native = _chunk3KSBDOQTcjs.publicEncrypt_native; exports.publicKeyAndPrivateKeyMatches = _chunk3KSBDOQTcjs.publicKeyAndPrivateKeyMatches; exports.readCertificationRequestInfo = _chunk3KSBDOQTcjs.readCertificationRequestInfo; exports.readExtension = _chunk3KSBDOQTcjs.readExtension; exports.readNameForCrl = _chunk3KSBDOQTcjs.readNameForCrl; exports.readTbsCertificate = _chunk3KSBDOQTcjs.readTbsCertificate; exports.reduceLength = _chunk3KSBDOQTcjs.reduceLength; exports.removePadding = _chunk3KSBDOQTcjs.removePadding; exports.removeTrailingLF = _chunk3KSBDOQTcjs.removeTrailingLF; exports.rsaLengthPrivateKey = _chunk3KSBDOQTcjs.rsaLengthPrivateKey; exports.rsaLengthPublicKey = _chunk3KSBDOQTcjs.rsaLengthPublicKey; exports.rsaLengthRsaPublicKey = _chunk3KSBDOQTcjs.rsaLengthRsaPublicKey; exports.split_der = _chunk3KSBDOQTcjs.split_der; exports.toPem = _chunk3KSBDOQTcjs.toPem; exports.toPem2 = _chunk3KSBDOQTcjs.toPem2; exports.verifyCertificateChain = _chunk3KSBDOQTcjs.verifyCertificateChain; exports.verifyCertificateOrClrSignature = _chunk3KSBDOQTcjs.verifyCertificateOrClrSignature; exports.verifyCertificateRevocationListSignature = _chunk3KSBDOQTcjs.verifyCertificateRevocationListSignature; exports.verifyCertificateSignature = _chunk3KSBDOQTcjs.verifyCertificateSignature; exports.verifyChunkSignature = _chunk3KSBDOQTcjs.verifyChunkSignature; exports.verifyChunkSignatureWithDerivedKeys = _chunk3KSBDOQTcjs.verifyChunkSignatureWithDerivedKeys; exports.verifyCrlIssuedByCertificate = _chunk3KSBDOQTcjs.verifyCrlIssuedByCertificate; exports.verifyMessageChunkSignature = _chunk3KSBDOQTcjs.verifyMessageChunkSignature;
154
+
155
+
156
+
157
+
158
+ exports.CertificatePurpose = _chunkR6I4NJSZcjs.CertificatePurpose; exports.PaddingAlgorithm = _chunkR6I4NJSZcjs.PaddingAlgorithm; exports.RSA_PKCS1_OAEP_PADDING = _chunkR6I4NJSZcjs.RSA_PKCS1_OAEP_PADDING; exports.RSA_PKCS1_PADDING = _chunkR6I4NJSZcjs.RSA_PKCS1_PADDING; exports.Subject = _chunkR6I4NJSZcjs.Subject; exports._coercePrivateKey = _chunkR6I4NJSZcjs._coercePrivateKey; exports.asn1 = _chunkR6I4NJSZcjs.asn1; exports.certificateMatchesPrivateKey = _chunkR6I4NJSZcjs.certificateMatchesPrivateKey; exports.clearExploreCertificateCache = _chunkR6I4NJSZcjs.clearExploreCertificateCache; exports.coerceCertificate = _chunkR6I4NJSZcjs.coerceCertificate; exports.coerceCertificatePem = _chunkR6I4NJSZcjs.coerceCertificatePem; exports.coercePEMorDerToPrivateKey = _chunkR6I4NJSZcjs.coercePEMorDerToPrivateKey; exports.coercePrivateKeyPem = _chunkR6I4NJSZcjs.coercePrivateKeyPem; exports.coercePublicKeyPem = _chunkR6I4NJSZcjs.coercePublicKeyPem; exports.coerceRsaPublicKeyPem = _chunkR6I4NJSZcjs.coerceRsaPublicKeyPem; exports.combine_der = _chunkR6I4NJSZcjs.combine_der; exports.computeDerivedKeys = _chunkR6I4NJSZcjs.computeDerivedKeys; exports.computePaddingFooter = _chunkR6I4NJSZcjs.computePaddingFooter; exports.convertPEMtoDER = _chunkR6I4NJSZcjs.convertPEMtoDER; exports.createCertificateSigningRequest = _chunkR6I4NJSZcjs.createCertificateSigningRequest; exports.createPrivateKeyFromNodeJSCrypto = _chunkR6I4NJSZcjs.createPrivateKeyFromNodeJSCrypto; exports.createSelfSignedCertificate = _chunkR6I4NJSZcjs.createSelfSignedCertificate; exports.decryptBufferWithDerivedKeys = _chunkR6I4NJSZcjs.decryptBufferWithDerivedKeys; exports.derToPrivateKey = _chunkR6I4NJSZcjs.derToPrivateKey; exports.encryptBufferWithDerivedKeys = _chunkR6I4NJSZcjs.encryptBufferWithDerivedKeys; exports.exploreAsn1 = _chunkR6I4NJSZcjs.exploreAsn1; exports.exploreCertificate = _chunkR6I4NJSZcjs.exploreCertificate; exports.exploreCertificateInfo = _chunkR6I4NJSZcjs.exploreCertificateInfo; exports.exploreCertificateRevocationList = _chunkR6I4NJSZcjs.exploreCertificateRevocationList; exports.exploreCertificateSigningRequest = _chunkR6I4NJSZcjs.exploreCertificateSigningRequest; exports.explorePrivateKey = _chunkR6I4NJSZcjs.explorePrivateKey; exports.extractPublicKeyFromCertificate = _chunkR6I4NJSZcjs.extractPublicKeyFromCertificate; exports.extractPublicKeyFromCertificateSync = _chunkR6I4NJSZcjs.extractPublicKeyFromCertificateSync; exports.generateKeyPair = _chunkR6I4NJSZcjs.generateKeyPair; exports.generatePrivateKey = _chunkR6I4NJSZcjs.generatePrivateKey; exports.hexDump = _chunkR6I4NJSZcjs.hexDump; exports.identifyDERContent = _chunkR6I4NJSZcjs.identifyDERContent; exports.identifyPemType = _chunkR6I4NJSZcjs.identifyPemType; exports.isCrlIssuedByCertificate = _chunkR6I4NJSZcjs.isCrlIssuedByCertificate; exports.isKeyObject = _chunkR6I4NJSZcjs.isKeyObject; exports.makeMessageChunkSignature = _chunkR6I4NJSZcjs.makeMessageChunkSignature; exports.makeMessageChunkSignatureWithDerivedKeys = _chunkR6I4NJSZcjs.makeMessageChunkSignatureWithDerivedKeys; exports.makePrivateKeyFromPem = _chunkR6I4NJSZcjs.makePrivateKeyFromPem; exports.makePrivateKeyThumbPrint = _chunkR6I4NJSZcjs.makePrivateKeyThumbPrint; exports.makePseudoRandomBuffer = _chunkR6I4NJSZcjs.makePseudoRandomBuffer; exports.makeSHA1Thumbprint = _chunkR6I4NJSZcjs.makeSHA1Thumbprint; exports.pemToPrivateKey = _chunkR6I4NJSZcjs.pemToPrivateKey; exports.privateDecrypt = _chunkR6I4NJSZcjs.privateDecrypt; exports.privateDecrypt_long = _chunkR6I4NJSZcjs.privateDecrypt_long; exports.privateDecrypt_native = _chunkR6I4NJSZcjs.privateDecrypt_native; exports.privateKeyToPEM = _chunkR6I4NJSZcjs.privateKeyToPEM; exports.publicEncrypt = _chunkR6I4NJSZcjs.publicEncrypt; exports.publicEncrypt_long = _chunkR6I4NJSZcjs.publicEncrypt_long; exports.publicEncrypt_native = _chunkR6I4NJSZcjs.publicEncrypt_native; exports.publicKeyAndPrivateKeyMatches = _chunkR6I4NJSZcjs.publicKeyAndPrivateKeyMatches; exports.readCertificationRequestInfo = _chunkR6I4NJSZcjs.readCertificationRequestInfo; exports.readExtension = _chunkR6I4NJSZcjs.readExtension; exports.readNameForCrl = _chunkR6I4NJSZcjs.readNameForCrl; exports.readTbsCertificate = _chunkR6I4NJSZcjs.readTbsCertificate; exports.reduceLength = _chunkR6I4NJSZcjs.reduceLength; exports.removePadding = _chunkR6I4NJSZcjs.removePadding; exports.removeTrailingLF = _chunkR6I4NJSZcjs.removeTrailingLF; exports.rsaLengthPrivateKey = _chunkR6I4NJSZcjs.rsaLengthPrivateKey; exports.rsaLengthPublicKey = _chunkR6I4NJSZcjs.rsaLengthPublicKey; exports.rsaLengthRsaPublicKey = _chunkR6I4NJSZcjs.rsaLengthRsaPublicKey; exports.split_der = _chunkR6I4NJSZcjs.split_der; exports.toPem = _chunkR6I4NJSZcjs.toPem; exports.toPem2 = _chunkR6I4NJSZcjs.toPem2; exports.verifyCertificateChain = _chunkR6I4NJSZcjs.verifyCertificateChain; exports.verifyCertificateOrClrSignature = _chunkR6I4NJSZcjs.verifyCertificateOrClrSignature; exports.verifyCertificateRevocationListSignature = _chunkR6I4NJSZcjs.verifyCertificateRevocationListSignature; exports.verifyCertificateSignature = _chunkR6I4NJSZcjs.verifyCertificateSignature; exports.verifyChunkSignature = _chunkR6I4NJSZcjs.verifyChunkSignature; exports.verifyChunkSignatureWithDerivedKeys = _chunkR6I4NJSZcjs.verifyChunkSignatureWithDerivedKeys; exports.verifyCrlIssuedByCertificate = _chunkR6I4NJSZcjs.verifyCrlIssuedByCertificate; exports.verifyMessageChunkSignature = _chunkR6I4NJSZcjs.verifyMessageChunkSignature; exports.verify_certificate_der_structure = _chunkR6I4NJSZcjs.verify_certificate_der_structure;
155
159
  //# sourceMappingURL=index_web.cjs.map
package/dist/source/index_web.cjs.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"sources":["/home/runner/work/node-opcua-crypto/node-opcua-crypto/packages/node-opcua-crypto/dist/source/index_web.cjs"],"names":[],"mappings":"AAAA;AACE;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACF,yDAA8B;AAC9B;AACE;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACF,4uKAAC","file":"/home/runner/work/node-opcua-crypto/node-opcua-crypto/packages/node-opcua-crypto/dist/source/index_web.cjs"}
1
+ {"version":3,"sources":["/home/runner/work/node-opcua-crypto/node-opcua-crypto/packages/node-opcua-crypto/dist/source/index_web.cjs"],"names":[],"mappings":"AAAA;AACE;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACF,yDAA8B;AAC9B;AACE;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACF,k6KAAC","file":"/home/runner/work/node-opcua-crypto/node-opcua-crypto/packages/node-opcua-crypto/dist/source/index_web.cjs"}
package/dist/source/index_web.d.cts CHANGED
@@ -196,6 +196,7 @@ interface CertificateInternals {
196
196
  signatureAlgorithm: AlgorithmIdentifier;
197
197
  signatureValue: SignatureValue;
198
198
  }
199
+ declare function clearExploreCertificateCache(): void;
199
200
  /**
200
201
  * explore a certificate structure
201
202
  * @param certificate
@@ -209,6 +210,14 @@ declare function exploreCertificate(certificate: Certificate): CertificateIntern
209
210
  * @returns an array of Der , each element of the array is one certificate of the chain
210
211
  */
211
212
  declare function split_der(certificateChain: Certificate): Certificate[];
213
+ /**
214
+ * @method verify_certificate_der_structure
215
+ * Verify that a certificate or certificate chain is structurally well-formed DER.
216
+ * Ensures the blocks parse correctly and the length exactly matches the buffer length.
217
+ * @param cert the DER certificate or chain to verify
218
+ * @throws {Error} if the structure is invalid or truncated
219
+ */
220
+ declare function verify_certificate_der_structure(cert: Certificate): void;
212
221
  /**
213
222
  * @method combine_der
214
223
  * combine an array of certificates into a single blob
@@ -574,4 +583,4 @@ declare const asn1: {
574
583
  readSignatureValueBin: typeof readSignatureValueBin;
575
584
  };
576
585
 
577
- export { type AttributeTypeAndValue, type AuthorityKeyIdentifier, type BasicConstraints, Certificate, type CertificateExtension, type CertificateInfo, type CertificateInternals, CertificatePEM, CertificatePurpose, CertificateRevocationList, type CertificateRevocationListInfo, type CertificateSerialNumber, type CertificateSigningRequestInfo, type ComputeDerivedKeysOptions, type CreateSelfSignCertificateOptions, DER, type DERContentType, type DerivedKeys, type DirectoryName, type ExtensionRequest, type Extensions, KeyObject, type Name, Nonce, PEM, PaddingAlgorithm, PrivateKey, type PrivateKeyInternals, PrivateKeyPEM, PublicKey, type PublicKeyLength, PublicKeyPEM, RSA_PKCS1_OAEP_PADDING, RSA_PKCS1_PADDING, type RevokedCertificate, Signature, Subject, type SubjectAltName, type SubjectOptions, type SubjectPublicKey, type SubjectPublicKeyInfo, type TBSCertList, type TbsCertificate, type Validity, type VerifyChunkSignatureOptions, type VerifyMessageChunkSignatureOptions, type Version, type X509ExtKeyUsage, type X509KeyUsage, type _VerifyStatus, _coercePrivateKey, asn1, certificateMatchesPrivateKey, coerceCertificate, coerceCertificatePem, coercePEMorDerToPrivateKey, coercePrivateKeyPem, coercePublicKeyPem, coerceRsaPublicKeyPem, combine_der, computeDerivedKeys, computePaddingFooter, convertPEMtoDER, createCertificateSigningRequest, createSelfSignedCertificate, decryptBufferWithDerivedKeys, derToPrivateKey, encryptBufferWithDerivedKeys, exploreAsn1, exploreCertificate, exploreCertificateInfo, exploreCertificateRevocationList, exploreCertificateSigningRequest, explorePrivateKey, extractPublicKeyFromCertificate, extractPublicKeyFromCertificateSync, generateKeyPair, generatePrivateKey, hexDump, identifyDERContent, identifyPemType, isCrlIssuedByCertificate, makeMessageChunkSignature, makeMessageChunkSignatureWithDerivedKeys, makePrivateKeyFromPem, makePrivateKeyThumbPrint, makePseudoRandomBuffer, makeSHA1Thumbprint, pemToPrivateKey, privateDecrypt, privateDecrypt_long, privateDecrypt_native, privateKeyToPEM, publicEncrypt, publicEncrypt_long, publicEncrypt_native, publicKeyAndPrivateKeyMatches, readCertificationRequestInfo, readExtension, readNameForCrl, readTbsCertificate, reduceLength, removePadding, removeTrailingLF, rsaLengthPrivateKey, rsaLengthPublicKey, rsaLengthRsaPublicKey, split_der, toPem, toPem2, verifyCertificateChain, verifyCertificateOrClrSignature, verifyCertificateRevocationListSignature, verifyCertificateSignature, verifyChunkSignature, verifyChunkSignatureWithDerivedKeys, verifyCrlIssuedByCertificate, verifyMessageChunkSignature };
586
+ export { type AttributeTypeAndValue, type AuthorityKeyIdentifier, type BasicConstraints, Certificate, type CertificateExtension, type CertificateInfo, type CertificateInternals, CertificatePEM, CertificatePurpose, CertificateRevocationList, type CertificateRevocationListInfo, type CertificateSerialNumber, type CertificateSigningRequestInfo, type ComputeDerivedKeysOptions, type CreateSelfSignCertificateOptions, DER, type DERContentType, type DerivedKeys, type DirectoryName, type ExtensionRequest, type Extensions, KeyObject, type Name, Nonce, PEM, PaddingAlgorithm, PrivateKey, type PrivateKeyInternals, PrivateKeyPEM, PublicKey, type PublicKeyLength, PublicKeyPEM, RSA_PKCS1_OAEP_PADDING, RSA_PKCS1_PADDING, type RevokedCertificate, Signature, Subject, type SubjectAltName, type SubjectOptions, type SubjectPublicKey, type SubjectPublicKeyInfo, type TBSCertList, type TbsCertificate, type Validity, type VerifyChunkSignatureOptions, type VerifyMessageChunkSignatureOptions, type Version, type X509ExtKeyUsage, type X509KeyUsage, type _VerifyStatus, _coercePrivateKey, asn1, certificateMatchesPrivateKey, clearExploreCertificateCache, coerceCertificate, coerceCertificatePem, coercePEMorDerToPrivateKey, coercePrivateKeyPem, coercePublicKeyPem, coerceRsaPublicKeyPem, combine_der, computeDerivedKeys, computePaddingFooter, convertPEMtoDER, createCertificateSigningRequest, createSelfSignedCertificate, decryptBufferWithDerivedKeys, derToPrivateKey, encryptBufferWithDerivedKeys, exploreAsn1, exploreCertificate, exploreCertificateInfo, exploreCertificateRevocationList, exploreCertificateSigningRequest, explorePrivateKey, extractPublicKeyFromCertificate, extractPublicKeyFromCertificateSync, generateKeyPair, generatePrivateKey, hexDump, identifyDERContent, identifyPemType, isCrlIssuedByCertificate, makeMessageChunkSignature, makeMessageChunkSignatureWithDerivedKeys, makePrivateKeyFromPem, makePrivateKeyThumbPrint, makePseudoRandomBuffer, makeSHA1Thumbprint, pemToPrivateKey, privateDecrypt, privateDecrypt_long, privateDecrypt_native, privateKeyToPEM, publicEncrypt, publicEncrypt_long, publicEncrypt_native, publicKeyAndPrivateKeyMatches, readCertificationRequestInfo, readExtension, readNameForCrl, readTbsCertificate, reduceLength, removePadding, removeTrailingLF, rsaLengthPrivateKey, rsaLengthPublicKey, rsaLengthRsaPublicKey, split_der, toPem, toPem2, verifyCertificateChain, verifyCertificateOrClrSignature, verifyCertificateRevocationListSignature, verifyCertificateSignature, verifyChunkSignature, verifyChunkSignatureWithDerivedKeys, verifyCrlIssuedByCertificate, verifyMessageChunkSignature, verify_certificate_der_structure };
package/dist/source/index_web.d.ts CHANGED
@@ -196,6 +196,7 @@ interface CertificateInternals {
196
196
  signatureAlgorithm: AlgorithmIdentifier;
197
197
  signatureValue: SignatureValue;
198
198
  }
199
+ declare function clearExploreCertificateCache(): void;
199
200
  /**
200
201
  * explore a certificate structure
201
202
  * @param certificate
@@ -209,6 +210,14 @@ declare function exploreCertificate(certificate: Certificate): CertificateIntern
209
210
  * @returns an array of Der , each element of the array is one certificate of the chain
210
211
  */
211
212
  declare function split_der(certificateChain: Certificate): Certificate[];
213
+ /**
214
+ * @method verify_certificate_der_structure
215
+ * Verify that a certificate or certificate chain is structurally well-formed DER.
216
+ * Ensures the blocks parse correctly and the length exactly matches the buffer length.
217
+ * @param cert the DER certificate or chain to verify
218
+ * @throws {Error} if the structure is invalid or truncated
219
+ */
220
+ declare function verify_certificate_der_structure(cert: Certificate): void;
212
221
  /**
213
222
  * @method combine_der
214
223
  * combine an array of certificates into a single blob
@@ -574,4 +583,4 @@ declare const asn1: {
574
583
  readSignatureValueBin: typeof readSignatureValueBin;
575
584
  };
576
585
 
577
- export { type AttributeTypeAndValue, type AuthorityKeyIdentifier, type BasicConstraints, Certificate, type CertificateExtension, type CertificateInfo, type CertificateInternals, CertificatePEM, CertificatePurpose, CertificateRevocationList, type CertificateRevocationListInfo, type CertificateSerialNumber, type CertificateSigningRequestInfo, type ComputeDerivedKeysOptions, type CreateSelfSignCertificateOptions, DER, type DERContentType, type DerivedKeys, type DirectoryName, type ExtensionRequest, type Extensions, KeyObject, type Name, Nonce, PEM, PaddingAlgorithm, PrivateKey, type PrivateKeyInternals, PrivateKeyPEM, PublicKey, type PublicKeyLength, PublicKeyPEM, RSA_PKCS1_OAEP_PADDING, RSA_PKCS1_PADDING, type RevokedCertificate, Signature, Subject, type SubjectAltName, type SubjectOptions, type SubjectPublicKey, type SubjectPublicKeyInfo, type TBSCertList, type TbsCertificate, type Validity, type VerifyChunkSignatureOptions, type VerifyMessageChunkSignatureOptions, type Version, type X509ExtKeyUsage, type X509KeyUsage, type _VerifyStatus, _coercePrivateKey, asn1, certificateMatchesPrivateKey, coerceCertificate, coerceCertificatePem, coercePEMorDerToPrivateKey, coercePrivateKeyPem, coercePublicKeyPem, coerceRsaPublicKeyPem, combine_der, computeDerivedKeys, computePaddingFooter, convertPEMtoDER, createCertificateSigningRequest, createSelfSignedCertificate, decryptBufferWithDerivedKeys, derToPrivateKey, encryptBufferWithDerivedKeys, exploreAsn1, exploreCertificate, exploreCertificateInfo, exploreCertificateRevocationList, exploreCertificateSigningRequest, explorePrivateKey, extractPublicKeyFromCertificate, extractPublicKeyFromCertificateSync, generateKeyPair, generatePrivateKey, hexDump, identifyDERContent, identifyPemType, isCrlIssuedByCertificate, makeMessageChunkSignature, makeMessageChunkSignatureWithDerivedKeys, makePrivateKeyFromPem, makePrivateKeyThumbPrint, makePseudoRandomBuffer, makeSHA1Thumbprint, pemToPrivateKey, privateDecrypt, privateDecrypt_long, privateDecrypt_native, privateKeyToPEM, publicEncrypt, publicEncrypt_long, publicEncrypt_native, publicKeyAndPrivateKeyMatches, readCertificationRequestInfo, readExtension, readNameForCrl, readTbsCertificate, reduceLength, removePadding, removeTrailingLF, rsaLengthPrivateKey, rsaLengthPublicKey, rsaLengthRsaPublicKey, split_der, toPem, toPem2, verifyCertificateChain, verifyCertificateOrClrSignature, verifyCertificateRevocationListSignature, verifyCertificateSignature, verifyChunkSignature, verifyChunkSignatureWithDerivedKeys, verifyCrlIssuedByCertificate, verifyMessageChunkSignature };
586
+ export { type AttributeTypeAndValue, type AuthorityKeyIdentifier, type BasicConstraints, Certificate, type CertificateExtension, type CertificateInfo, type CertificateInternals, CertificatePEM, CertificatePurpose, CertificateRevocationList, type CertificateRevocationListInfo, type CertificateSerialNumber, type CertificateSigningRequestInfo, type ComputeDerivedKeysOptions, type CreateSelfSignCertificateOptions, DER, type DERContentType, type DerivedKeys, type DirectoryName, type ExtensionRequest, type Extensions, KeyObject, type Name, Nonce, PEM, PaddingAlgorithm, PrivateKey, type PrivateKeyInternals, PrivateKeyPEM, PublicKey, type PublicKeyLength, PublicKeyPEM, RSA_PKCS1_OAEP_PADDING, RSA_PKCS1_PADDING, type RevokedCertificate, Signature, Subject, type SubjectAltName, type SubjectOptions, type SubjectPublicKey, type SubjectPublicKeyInfo, type TBSCertList, type TbsCertificate, type Validity, type VerifyChunkSignatureOptions, type VerifyMessageChunkSignatureOptions, type Version, type X509ExtKeyUsage, type X509KeyUsage, type _VerifyStatus, _coercePrivateKey, asn1, certificateMatchesPrivateKey, clearExploreCertificateCache, coerceCertificate, coerceCertificatePem, coercePEMorDerToPrivateKey, coercePrivateKeyPem, coercePublicKeyPem, coerceRsaPublicKeyPem, combine_der, computeDerivedKeys, computePaddingFooter, convertPEMtoDER, createCertificateSigningRequest, createSelfSignedCertificate, decryptBufferWithDerivedKeys, derToPrivateKey, encryptBufferWithDerivedKeys, exploreAsn1, exploreCertificate, exploreCertificateInfo, exploreCertificateRevocationList, exploreCertificateSigningRequest, explorePrivateKey, extractPublicKeyFromCertificate, extractPublicKeyFromCertificateSync, generateKeyPair, generatePrivateKey, hexDump, identifyDERContent, identifyPemType, isCrlIssuedByCertificate, makeMessageChunkSignature, makeMessageChunkSignatureWithDerivedKeys, makePrivateKeyFromPem, makePrivateKeyThumbPrint, makePseudoRandomBuffer, makeSHA1Thumbprint, pemToPrivateKey, privateDecrypt, privateDecrypt_long, privateDecrypt_native, privateKeyToPEM, publicEncrypt, publicEncrypt_long, publicEncrypt_native, publicKeyAndPrivateKeyMatches, readCertificationRequestInfo, readExtension, readNameForCrl, readTbsCertificate, reduceLength, removePadding, removeTrailingLF, rsaLengthPrivateKey, rsaLengthPublicKey, rsaLengthRsaPublicKey, split_der, toPem, toPem2, verifyCertificateChain, verifyCertificateOrClrSignature, verifyCertificateRevocationListSignature, verifyCertificateSignature, verifyChunkSignature, verifyChunkSignatureWithDerivedKeys, verifyCrlIssuedByCertificate, verifyMessageChunkSignature, verify_certificate_der_structure };