Página inicial Explorar Ajuda
Registrar Entrar
wcheng81
/
jtBaseApp
1
0
Fork 0
Arquivos Issues 0 Pull Requests 0 Wiki
Tree: 88b498efa4
Branches Tags
jtBaseApp
/
node_modules
/
hmac-drbg
/
lib
/
hmac-drbg.js

hmac-drbg.js 2.9 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113 
  1. 'use strict';
    2. 

  2. 

  3. var hash = require('hash.js');
    4. 

  4. var utils = require('minimalistic-crypto-utils');
    5. 

  5. var assert = require('minimalistic-assert');
    6. 

  6. 

  7. function HmacDRBG(options) {
    8. 

  8.   if (!(this instanceof HmacDRBG))
    9. 

  9.     return new HmacDRBG(options);
    10. 

  10.   this.hash = options.hash;
    11. 

  11.   this.predResist = !!options.predResist;
    12. 

  12. 

  13.   this.outLen = this.hash.outSize;
    14. 

  14.   this.minEntropy = options.minEntropy || this.hash.hmacStrength;
    15. 

  15. 

  16.   this._reseed = null;
    17. 

  17.   this.reseedInterval = null;
    18. 

  18.   this.K = null;
    19. 

  19.   this.V = null;
    20. 

  20. 

  21.   var entropy = utils.toArray(options.entropy, options.entropyEnc || 'hex');
    22. 

  22.   var nonce = utils.toArray(options.nonce, options.nonceEnc || 'hex');
    23. 

  23.   var pers = utils.toArray(options.pers, options.persEnc || 'hex');
    24. 

  24.   assert(entropy.length >= (this.minEntropy / 8),
    25. 

  25.          'Not enough entropy. Minimum is: ' + this.minEntropy + ' bits');
    26. 

  26.   this._init(entropy, nonce, pers);
    27. 

  27. }
    28. 

  28. module.exports = HmacDRBG;
    29. 

  29. 

  30. HmacDRBG.prototype._init = function init(entropy, nonce, pers) {
    31. 

  31.   var seed = entropy.concat(nonce).concat(pers);
    32. 

  32. 

  33.   this.K = new Array(this.outLen / 8);
    34. 

  34.   this.V = new Array(this.outLen / 8);
    35. 

  35.   for (var i = 0; i < this.V.length; i++) {
    36. 

  36.     this.K[i] = 0x00;
    37. 

  37.     this.V[i] = 0x01;
    38. 

  38.   }
    39. 

  39. 

  40.   this._update(seed);
    41. 

  41.   this._reseed = 1;
    42. 

  42.   this.reseedInterval = 0x1000000000000;  // 2^48
    43. 

  43. };
    44. 

  44. 

  45. HmacDRBG.prototype._hmac = function hmac() {
    46. 

  46.   return new hash.hmac(this.hash, this.K);
    47. 

  47. };
    48. 

  48. 

  49. HmacDRBG.prototype._update = function update(seed) {
    50. 

  50.   var kmac = this._hmac()
    51. 

  51.                  .update(this.V)
    52. 

  52.                  .update([ 0x00 ]);
    53. 

  53.   if (seed)
    54. 

  54.     kmac = kmac.update(seed);
    55. 

  55.   this.K = kmac.digest();
    56. 

  56.   this.V = this._hmac().update(this.V).digest();
    57. 

  57.   if (!seed)
    58. 

  58.     return;
    59. 

  59. 

  60.   this.K = this._hmac()
    61. 

  61.                .update(this.V)
    62. 

  62.                .update([ 0x01 ])
    63. 

  63.                .update(seed)
    64. 

  64.                .digest();
    65. 

  65.   this.V = this._hmac().update(this.V).digest();
    66. 

  66. };
    67. 

  67. 

  68. HmacDRBG.prototype.reseed = function reseed(entropy, entropyEnc, add, addEnc) {
    69. 

  69.   // Optional entropy enc
    70. 

  70.   if (typeof entropyEnc !== 'string') {
    71. 

  71.     addEnc = add;
    72. 

  72.     add = entropyEnc;
    73. 

  73.     entropyEnc = null;
    74. 

  74.   }
    75. 

  75. 

  76.   entropy = utils.toArray(entropy, entropyEnc);
    77. 

  77.   add = utils.toArray(add, addEnc);
    78. 

  78. 

  79.   assert(entropy.length >= (this.minEntropy / 8),
    80. 

  80.          'Not enough entropy. Minimum is: ' + this.minEntropy + ' bits');
    81. 

  81. 

  82.   this._update(entropy.concat(add || []));
    83. 

  83.   this._reseed = 1;
    84. 

  84. };
    85. 

  85. 

  86. HmacDRBG.prototype.generate = function generate(len, enc, add, addEnc) {
    87. 

  87.   if (this._reseed > this.reseedInterval)
    88. 

  88.     throw new Error('Reseed is required');
    89. 

  89. 

  90.   // Optional encoding
    91. 

  91.   if (typeof enc !== 'string') {
    92. 

  92.     addEnc = add;
    93. 

  93.     add = enc;
    94. 

  94.     enc = null;
    95. 

  95.   }
    96. 

  96. 

  97.   // Optional additional data
    98. 

  98.   if (add) {
    99. 

  99.     add = utils.toArray(add, addEnc || 'hex');
    100. 

  100.     this._update(add);
    101. 

  101.   }
    102. 

  102. 

  103.   var temp = [];
    104. 

  104.   while (temp.length < len) {
    105. 

  105.     this.V = this._hmac().update(this.V).digest();
    106. 

  106.     temp = temp.concat(this.V);
    107. 

  107.   }
    108. 

  108. 

  109.   var res = temp.slice(0, len);
    110. 

  110.   this._update(add);
    111. 

  111.   this._reseed++;
    112. 

  112.   return utils.encode(res, enc);
    113. 

  113. };
    114.