mirror of
https://github.com/azure/login.git
synced 2026-03-15 09:20:56 -04:00
45b10ffd19
* Bump lodash from 4.17.15 to 4.17.19 (#52) Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Amruta Kawade <65217380+AmrutaKawade@users.noreply.github.com> * Bump @actions/core from 1.1.3 to 1.2.6 (#60) Bumps [@actions/core](https://github.com/actions/toolkit/tree/HEAD/packages/core) from 1.1.3 to 1.2.6. - [Release notes](https://github.com/actions/toolkit/releases) - [Changelog](https://github.com/actions/toolkit/blob/main/packages/core/RELEASES.md) - [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/core) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Amruta Kawade <65217380+AmrutaKawade@users.noreply.github.com> * updating node_nodules * updated package-lock Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
93 lines
2.3 KiB
JavaScript
93 lines
2.3 KiB
JavaScript
// Copyright 2015 Joyent, Inc.
|
|
|
|
module.exports = {
|
|
Verifier: Verifier,
|
|
Signer: Signer
|
|
};
|
|
|
|
var nacl = require('tweetnacl');
|
|
var stream = require('stream');
|
|
var util = require('util');
|
|
var assert = require('assert-plus');
|
|
var Buffer = require('safer-buffer').Buffer;
|
|
var Signature = require('./signature');
|
|
|
|
function Verifier(key, hashAlgo) {
|
|
if (hashAlgo.toLowerCase() !== 'sha512')
|
|
throw (new Error('ED25519 only supports the use of ' +
|
|
'SHA-512 hashes'));
|
|
|
|
this.key = key;
|
|
this.chunks = [];
|
|
|
|
stream.Writable.call(this, {});
|
|
}
|
|
util.inherits(Verifier, stream.Writable);
|
|
|
|
Verifier.prototype._write = function (chunk, enc, cb) {
|
|
this.chunks.push(chunk);
|
|
cb();
|
|
};
|
|
|
|
Verifier.prototype.update = function (chunk) {
|
|
if (typeof (chunk) === 'string')
|
|
chunk = Buffer.from(chunk, 'binary');
|
|
this.chunks.push(chunk);
|
|
};
|
|
|
|
Verifier.prototype.verify = function (signature, fmt) {
|
|
var sig;
|
|
if (Signature.isSignature(signature, [2, 0])) {
|
|
if (signature.type !== 'ed25519')
|
|
return (false);
|
|
sig = signature.toBuffer('raw');
|
|
|
|
} else if (typeof (signature) === 'string') {
|
|
sig = Buffer.from(signature, 'base64');
|
|
|
|
} else if (Signature.isSignature(signature, [1, 0])) {
|
|
throw (new Error('signature was created by too old ' +
|
|
'a version of sshpk and cannot be verified'));
|
|
}
|
|
|
|
assert.buffer(sig);
|
|
return (nacl.sign.detached.verify(
|
|
new Uint8Array(Buffer.concat(this.chunks)),
|
|
new Uint8Array(sig),
|
|
new Uint8Array(this.key.part.A.data)));
|
|
};
|
|
|
|
function Signer(key, hashAlgo) {
|
|
if (hashAlgo.toLowerCase() !== 'sha512')
|
|
throw (new Error('ED25519 only supports the use of ' +
|
|
'SHA-512 hashes'));
|
|
|
|
this.key = key;
|
|
this.chunks = [];
|
|
|
|
stream.Writable.call(this, {});
|
|
}
|
|
util.inherits(Signer, stream.Writable);
|
|
|
|
Signer.prototype._write = function (chunk, enc, cb) {
|
|
this.chunks.push(chunk);
|
|
cb();
|
|
};
|
|
|
|
Signer.prototype.update = function (chunk) {
|
|
if (typeof (chunk) === 'string')
|
|
chunk = Buffer.from(chunk, 'binary');
|
|
this.chunks.push(chunk);
|
|
};
|
|
|
|
Signer.prototype.sign = function () {
|
|
var sig = nacl.sign.detached(
|
|
new Uint8Array(Buffer.concat(this.chunks)),
|
|
new Uint8Array(Buffer.concat([
|
|
this.key.part.k.data, this.key.part.A.data])));
|
|
var sigBuf = Buffer.from(sig);
|
|
var sigObj = Signature.parse(sigBuf, 'ed25519', 'raw');
|
|
sigObj.hashAlgorithm = 'sha512';
|
|
return (sigObj);
|
|
};
|