PHP WebShell

• .. (вверх)
• [DIR] ..
• [FILE] .editorconfig
• [FILE] .prettierignore
• [FILE] .travis.yml
• [FILE] Gruntfile.js
• [FILE] LICENSE
• [FILE] README.md
• [FILE] asmcrypto.all.js
• [FILE] asmcrypto.all.js.map
• [FILE] asmcrypto.js
• [FILE] asmcrypto.js.d.ts
• [FILE] asmcrypto.js.map
• [FILE] asmcrypto.min.js
• [FILE] asmcrypto.min.js.map
• [FILE] asmcrypto.mjs
• [FILE] asmcrypto.mjs.map
• [FILE] bower.json
• [FILE] package.json
• [DIR] src
• [DIR] test
• [FILE] tsconfig.json

Просмотр файла: README.md

asmCrypto [![Build Status](https://travis-ci.org/asmcrypto/asmcrypto.js.svg?branch=master)](https://travis-ci.org/asmcrypto/asmcrypto.js) [![Join the chat at https://gitter.im/asmcrypto/asmcrypto.js](https://badges.gitter.im/Join%20Chat.svg)](https://gitter.im/asmcrypto/asmcrypto.js?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge&utm_content=badge)
=========

JavaScript implementation of popular cryptographic utilities with performance in mind.

Synopsis
--------

Add `<script src="path/to/asmcrypto.js"></script>` into your page.

    // Hash whole string at once
    digest = asmCrypto.SHA256.hex("The quick brown fox jumps over the lazy dog");

Index
-----

* [Build & Test](#build--test)
* [Performance](#performance)
* [API Reference](#api-reference)
    * [Message Digest](#sha256)
        * [SHA1](#sha1)
        * [SHA256](#sha256)
        * [SHA512](#sha512)
    * [Hash-based Message Authentication](#hmac)
        * [HMAC-SHA1](#hmac_sha1)
        * [HMAC-SHA256](#hmac_sha256)
        * [HMAC-SHA512](#hmac_sha512)
    * [Password-based Key Derivation](#pbkdf2)
        * [PBKDF2-HMAC-SHA1](#pbkdf2_hmac_sha1)
        * [PBKDF2-HMAC-SHA256](#pbkdf2_hmac_sha256)
        * [PBKDF2-HMAC-SHA512](#pbkdf2_hmac_sha512)
    * [Block Cipher](#aes)
        * [AES-EBC](#aes_ecb)
        * [AES-CBC](#aes_cbc)
        * [AES-CFB](#aes_cfb)
        * [AES-OFB](#aes_ofb)
        * [AES-CTR](#aes_ctr)
        * [AES-CCM](#aes_ccm)
        * [AES-GCM](#aes_gcm)
    * [Asymmetric encryption](#rsa)
        * [RSA](#rsa)
        * [RSA-OAEP-SHA1](#rsa_oaep_sha1)
        * [RSA-OAEP-SHA256](#rsa_oaep_sha256)
        * [RSA-OAEP-SHA512](#rsa_oaep_sha512)
        * [RSA-PSS-SHA1](#rsa_pss_sha1)
        * [RSA-PSS-SHA256](#rsa_pss_sha256)
        * [RSA-PSS-SHA512](#rsa_pss_sha512)
    * [Cryptographically secure pseudorandom number generator](#cryptographically-secure-pseudorandom-number-generator)


Build & Test
------------

Before you start check that [npm](http://npmjs.org/) is installed:

    npm --version

Then download and build the stuff:

    git clone https://github.com/asmcrypto/asmcrypto.js.git
    cd asmcrypto.js/
    npm install

Running tests is always a good idea:

    npm test

Congratulations! Now you have your `asmcrypto.js` ready to use ☺

Performance
-----------

In the development of this project, special attention was paid to the performance issues.
In the result of all the optimizations made this stuff is pretty fast under Firefox and Chrome.

Support
-----------

* NodeJS 8 and NodeJS 9
* IE11 (temporarily disabled, use previous versions: 0.16.x)
* last two Chrome versions
* last two Firefox versions and the latest Firefox ESR
* last two Edge versions
* last two Safari versions

API Reference
-------------

### Message Digest

#### SHA1

[Secure Hash Algorithm](http://en.wikipedia.org/wiki/SHA-1) — a cryptographic hash function with 160-bit output.

A cryptographic hash fuction with 256-bit output.

##### SHA1.BLOCK_SIZE = 64

##### SHA1.HASH_SIZE = 20

##### SHA1.bytes( data )

Calculates message digest of the supplied input `data` (can be a binary string or `ArrayBuffer`/`Uint8Array` object).

Returns raw message digest as an `Uint8Array` object.

Throws
* `TypeError` when something ridiculous is supplied as input data.

##### SHA1.hex( data )

Calculates message digest of the supplied input `data` (can be a binary string or `ArrayBuffer`/`Uint8Array` object).

Returns a string containing hex-encoded message digest.

Throws
* `TypeError` when something ridiculous is supplied as input data.

##### SHA1.base64( data )

Calculates message digest of the supplied input `data` (can be a binary string or `ArrayBuffer`/`Uint8Array` object).

Returns a string containing hex-encoded message digest.

Throws
* `TypeError` when something ridiculous is supplied as input data.

#### SHA256

[Secure Hash Algorithm](http://en.wikipedia.org/wiki/SHA-2) — a cryptographic hash functions family.

A cryptographic hash fuction with 256-bit output.

##### SHA256.BLOCK_SIZE = 64

##### SHA256.HASH_SIZE = 32

##### SHA256.bytes( data )

Calculates message digest of the supplied input `data` (can be a binary string or `ArrayBuffer`/`Uint8Array` object).

Returns raw message digest as an `Uint8Array` object.

Throws
* `TypeError` when something ridiculous is supplied as input data.

##### SHA256.hex( data )

Calculates message digest of the supplied input `data` (can be a binary string or `ArrayBuffer`/`Uint8Array` object).

Returns a string containing hex-encoded message digest.

Throws
* `TypeError` when something ridiculous is supplied as input data.

##### SHA256.base64( data )

Calculates message digest of the supplied input `data` (can be a binary string or `ArrayBuffer`/`Uint8Array` object).

Returns a string containing hex-encoded message digest.

Throws
* `TypeError` when something ridiculous is supplied as input data.

#### SHA512

A cryptographic hash function with 512-bit output.

##### SHA512.BLOCK_SIZE = 128

##### SHA512.HASH_SIZE = 64

##### SHA512.bytes( data )

Calculates message digest of the supplied input `data` (can be a binary string or `ArrayBuffer`/`Uint8Array` object).

Returns raw message digest as an `Uint8Array` object.

Throws
* `TypeError` when something ridiculous is supplied as input data.

##### SHA512.hex( data )

Calculates message digest of the supplied input `data` (can be a binary string or `ArrayBuffer`/`Uint8Array` object).

Returns a string containing hex-encoded message digest.

Throws
* `TypeError` when something ridiculous is supplied as input data.

##### SHA512.base64( data )

Calculates message digest of the supplied input `data` (can be a binary string or `ArrayBuffer`/`Uint8Array` object).

Returns a string containing hex-encoded message digest.

Throws
* `TypeError` when something ridiculous is supplied as input data.

### HMAC

[Hash-based Message Authentication Code](http://en.wikipedia.org/wiki/HMAC)

Used to calculate message authentication code with a cryptographic hash function
in combination with a secret cryptographic key.

#### HMAC_SHA1

##### HMAC_SHA1.BLOCK_SIZE = 64

##### HMAC_SHA1.HMAC_SIZE = 20

##### HMAC_SHA1.bytes( data, password )

Calculates HMAC-SHA1 of `data` with `password`. Both can be either binary strings or `Uint8Array`/`ArrayBuffer` objects.

Returns araw message authentication code as an `Uint8Array` object.

Throws
* `TypeError` when something ridiculous is supplied as input data.

##### HMAC_SHA1.hex( data, password )

Calculates HMAC-SHA1 of `data` with `password`. Both can be either binary strings or `Uint8Array`/`ArrayBuffer` objects.

Returns a string containing hex-encoded message authentication code.

Throws
* `TypeError` when something ridiculous is supplied as input data.

##### HMAC_SHA1.base64( data, password )

Calculates HMAC-SHA1 of `data` with `password`. Both can be either binary strings or `Uint8Array`/`ArrayBuffer` objects.

Returns a string containing base64-encoded message authentication code.

Throws
* `TypeError` when something ridiculous is supplied as input data.

#### HMAC_SHA256

##### HMAC_SHA256.BLOCK_SIZE = 64

##### HMAC_SHA256.HMAC_SIZE = 32

##### HMAC_SHA256.bytes( data, password )

Calculates HMAC-SHA256 of `data` with `password`. Both can be either binary strings or `Uint8Array`/`ArrayBuffer` objects.

Returns araw message authentication code as an `Uint8Array` object.

Throws
* `TypeError` when something ridiculous is supplied as input data.

##### HMAC_SHA256.hex( data, password )

Calculates HMAC-SHA256 of `data` with `password`. Both can be either binary strings or `Uint8Array`/`ArrayBuffer` objects.

Returns a string containing hex-encoded message authentication code.

Throws
* `TypeError` when something ridiculous is supplied as input data.

##### HMAC_SHA256.base64( data, password )

Calculates HMAC-SHA256 of `data` with `password`. Both can be either binary strings or `Uint8Array`/`ArrayBuffer` objects.

Returns a string containing base64-encoded message authentication code.

Throws
* `TypeError` when something ridiculous is supplied as input data.

#### HMAC_SHA512

##### HMAC_SHA512.BLOCK_SIZE = 128

##### HMAC_SHA512.HMAC_SIZE = 64

##### HMAC_SHA512.bytes( data, password )

Calculates HMAC-SHA512 of `data` with `password`. Both can be either binary strings or `Uint8Array`/`ArrayBuffer` objects.

Returns araw message authentication code as an `Uint8Array` object.

Throws
* `TypeError` when something ridiculous is supplied as input data.

##### HMAC_SHA512.hex( data, password )

Calculates HMAC-SHA512 of `data` with `password`. Both can be either binary strings or `Uint8Array`/`ArrayBuffer` objects.

Returns a string containing hex-encoded message authentication code.

Throws
* `TypeError` when something ridiculous is supplied as input data.

##### HMAC_SHA512.base64( data, password )

Calculates HMAC-SHA512 of `data` with `password`. Both can be either binary strings or `Uint8Array`/`ArrayBuffer` objects.

Returns a string containing base64-encoded message authentication code.

Throws
* `TypeError` when something ridiculous is supplied as input data.

### PBKDF2

[Password-Based Key Derivation Function 2](http://en.wikipedia.org/wiki/PBKDF2)

Applies a cryptographic hash function to the input password or passphrase along with a salt value and repeats the process many times to produce a derived key,
which can then be used as a cryptographic key in subsequent operations. The added computational work makes password cracking much more difficult.

#### PBKDF2_HMAC_SHA1

##### PBKDF2_HMAC_SHA1.bytes( password, salt, iterations, dklen )

Derive key from the `password` with `salt`. Both can be either binary strings or `Uint8Array`/`ArrayBuffer` objects.

Optional `iterations` (number of key derivatoin rounds) and `dklen` (desired key length) may be supplied.

Throws
* `TypeError`.

##### PBKDF2_HMAC_SHA1.hex( password, salt, iterations, dklen )

The same as above except returning value type.

##### PBKDF2_HMAC_SHA1.base64( password, salt, iterations, dklen )

The same as above except returning value type.

#### PBKDF2_HMAC_SHA256

##### PBKDF2_HMAC_SHA256.bytes( password, salt, iterations, dklen )

Derive key from the `password` with `salt`. Both can be either binary strings or `Uint8Array`/`ArrayBuffer` objects.

Optional `iterations` (number of key derivatoin rounds) and `dklen` (desired key length) may be supplied.

Throws
* `TypeError`.

##### PBKDF2_HMAC_SHA256.hex( password, salt, iterations, dklen )

The same as above except returning value type.

##### PBKDF2_HMAC_SHA256.base64( password, salt, iterations, dklen )

The same as above except returning value type.

#### PBKDF2_HMAC_SHA512

##### PBKDF2_HMAC_SHA512.bytes( password, salt, iterations, dklen )

Derive key from the `password` with `salt`. Both can be either binary strings or `Uint8Array`/`ArrayBuffer` objects.

Optional `iterations` (number of key derivatoin rounds) and `dklen` (desired key length) may be supplied.

Throws
* `TypeError`.

##### PBKDF2_HMAC_SHA512.hex( password, salt, iterations, dklen )

The same as above except returning value type.

##### PBKDF2_HMAC_SHA512.base64( password, salt, iterations, dklen )

The same as above except returning value type.

### AES

Advanced Encryption Standard

#### AES_ECB

TODO

#### AES_CBC

Cipher Block Chaining Mode.

##### AES_CBC.encrypt( data, key, padding, iv )

Encrypts supplied `data` with `key` in CBC mode. Both can be either binary strings or `Uint8Array` objects or `ArrayBuffer` objects.

Optional `padding` and `iv` may be passed to override default settings (PKCS#7 padding is on and iv is zero-vector).

Returns encrypted data as `Uint8Array`.

##### AES_CBC.decrypt( data, key, padding, iv )

Decrypts supplied `data` with `key` in CBC mode. Both can be either binary strings or `Uint8Array` objects or `ArrayBuffer` objects.

Optional `padding` and `iv` may be passed to override default settings (PKCS#7 padding is on and iv is zero-vector).

Returns encrypted data as `Uint8Array`.

#### AES_CFB

Cipher Feedback Mode.

##### AES_CFB.encrypt( data, key, iv )

Encrypts supplied `data` with `key` in CFB mode. Both can be either binary strings or `Uint8Array` objects or `ArrayBuffer` objects.

Optional `iv` may be passed to override default settings (zero-vector `iv`).

Returns encrypted data as `Uint8Array`.

##### AES_CFB.decrypt( data, key, iv )

Decrypts supplied `data` with `key` in CFB mode. Both can be either binary strings or `Uint8Array` objects or `ArrayBuffer` objects.

Optional `iv` may be passed to override default settings (zero-vector `iv`).

Returns encrypted data as `Uint8Array`.

#### AES_OFB

Output Feedback Mode.

##### AES_OFB.encrypt( data, key, iv )

Encrypts supplied `data` with `key` in OFB mode. Both can be either binary strings or `Uint8Array` objects or `ArrayBuffer` objects.

Optional `iv` may be passed to override default settings (zero-vector `iv`).

Returns encrypted data as `Uint8Array`.

##### AES_OFB.decrypt( data, key, iv )

Decrypts supplied `data` with `key` in OFB mode. Both can be either binary strings or `Uint8Array` objects or `ArrayBuffer` objects.

Optional `iv` may be passed to override default settings (zero-vector `iv`).

Returns encrypted data as `Uint8Array`.

#### AES_CTR

TODO

#### AES_CCM

Counter with CBC-MAC mode.

Due to JS limitations (counter is 32-bit unsigned) maximum encrypted message length is limited to near 64 GiB ( 2^36 - 16 ) per `nonce`-`key` pair.

Additional authenticated data `adata` maximum length is limited to 65279 bytes ( 2^16 - 2^8 ),
wich is considered enough for the most of use-cases.

Optional `tagSize`, the size of the authentication tag, may be 4, 6, 8, 12, 16 (default).

Keep in mind that **same nonce must not be used more than once with the same key**.

##### AES_CCM.encrypt( data, key, nonce, adata, tagsize )

Encrypts supplied `data` with `key`-`nonce` in CCM mode.

Returns encrypted data as `Uint8Array`.

##### AES_CCM.decrypt( data, key, nonce, adata, tagsize )

Decrypts supplied `data` with `key`-`nonce` in CCM mode.

Returns encrypted data as `Uint8Array`.

#### AES_GCM

TODO

### RSA

#### RSA.generateKey( bitlen, pubexp )

Generate RSA private key of `bitlen` length along with the public exponent `pubexp`.

#### RSA_OAEP_SHA1

##### RSA_OAEP_SHA1.encrypt( data, key, label )

TODO

##### RSA_OAEP_SHA1.decrypt( data, key, label )

TODO

#### RSA_OAEP_SHA256

##### RSA_OAEP_SHA256.encrypt( data, key, label )

TODO

##### RSA_OAEP_SHA256.decrypt( data, key, label )

TODO

#### RSA_OAEP_SHA512

##### RSA_OAEP_SHA512.encrypt( data, key, label )

TODO

##### RSA_OAEP_SHA512.decrypt( data, key, label )

TODO

#### RSA_PSS_SHA1

##### RSA_PSS_SHA1.sign( data, key, slen )

TODO

##### RSA_PSS_SHA1.verify( signature, data, key, slen )

TODO

#### RSA_PSS_SHA256

##### RSA_PSS_SHA256.sign( data, key, slen )

TODO

##### RSA_PSS_SHA256.verify( signature, data, key, slen )

TODO

#### RSA_PSS_SHA512

##### RSA_PSS_SHA512.sign( data, key, slen )

TODO

##### RSA_PSS_SHA512.verify( signature, data, key, slen )

TODO

### Cryptographically secure pseudorandom number generator

ISAAC-based CSPRG

##### random.getValues( buffer )

Drop-in replacement for `window.crypto.getRandomValues`

##### random.getValues.seed( seed )

Perform PRNG seeding.

##### random.getValues.allowWeak = false

Allow implicitly-only seeded random output.

##### random.getValues.skipSystemRNGWarning = false

Disable implicit seeding warning when it's not desirable, e.g. at a unit test run.

Not yet implemented:
* scrypt,
* dsa, ecdsa,
* rsa-pkcs-v1.5

Выполнить команду