PHP WebShell

Текущая директория: /usr/lib/node_modules/bitgo/node_modules/ox/_cjs/core

.. (вверх)
[DIR] ..
[FILE] Abi.js
[FILE] Abi.js.map
[FILE] AbiConstructor.js
[FILE] AbiConstructor.js.map
[FILE] AbiError.js
[FILE] AbiError.js.map
[FILE] AbiEvent.js
[FILE] AbiEvent.js.map
[FILE] AbiFunction.js
[FILE] AbiFunction.js.map
[FILE] AbiItem.js
[FILE] AbiItem.js.map
[FILE] AbiParameters.js
[FILE] AbiParameters.js.map
[FILE] AccessList.js
[FILE] AccessList.js.map
[FILE] AccountProof.js
[FILE] AccountProof.js.map
[FILE] Address.js
[FILE] Address.js.map
[FILE] AesGcm.js
[FILE] AesGcm.js.map
[FILE] Authorization.js
[FILE] Authorization.js.map
[FILE] Base58.js
[FILE] Base58.js.map
[FILE] Base64.js
[FILE] Base64.js.map
[FILE] BinaryStateTree.js
[FILE] BinaryStateTree.js.map
[FILE] Blobs.js
[FILE] Blobs.js.map
[FILE] Block.js
[FILE] Block.js.map
[FILE] BlockOverrides.js
[FILE] BlockOverrides.js.map
[FILE] Bloom.js
[FILE] Bloom.js.map
[FILE] Bls.js
[FILE] Bls.js.map
[FILE] BlsPoint.js
[FILE] BlsPoint.js.map
[FILE] Bytes.js
[FILE] Bytes.js.map
[FILE] Caches.js
[FILE] Caches.js.map
[FILE] ContractAddress.js
[FILE] ContractAddress.js.map
[FILE] Ed25519.js
[FILE] Ed25519.js.map
[FILE] Ens.js
[FILE] Ens.js.map
[FILE] Errors.js
[FILE] Errors.js.map
[FILE] Fee.js
[FILE] Fee.js.map
[FILE] Filter.js
[FILE] Filter.js.map
[FILE] Hash.js
[FILE] Hash.js.map
[FILE] HdKey.js
[FILE] HdKey.js.map
[FILE] Hex.js
[FILE] Hex.js.map
[FILE] Json.js
[FILE] Json.js.map
[FILE] Keystore.js
[FILE] Keystore.js.map
[FILE] Kzg.js
[FILE] Kzg.js.map
[FILE] Log.js
[FILE] Log.js.map
[FILE] Mnemonic.js
[FILE] Mnemonic.js.map
[FILE] P256.js
[FILE] P256.js.map
[FILE] PersonalMessage.js
[FILE] PersonalMessage.js.map
[FILE] Provider.js
[FILE] Provider.js.map
[FILE] PublicKey.js
[FILE] PublicKey.js.map
[FILE] Rlp.js
[FILE] Rlp.js.map
[FILE] RpcRequest.js
[FILE] RpcRequest.js.map
[FILE] RpcResponse.js
[FILE] RpcResponse.js.map
[FILE] RpcSchema.js
[FILE] RpcSchema.js.map
[FILE] RpcTransport.js
[FILE] RpcTransport.js.map
[FILE] Secp256k1.js
[FILE] Secp256k1.js.map
[FILE] Signature.js
[FILE] Signature.js.map
[FILE] Siwe.js
[FILE] Siwe.js.map
[FILE] Solidity.js
[FILE] Solidity.js.map
[FILE] StateOverrides.js
[FILE] StateOverrides.js.map
[FILE] Transaction.js
[FILE] Transaction.js.map
[FILE] TransactionEnvelope.js
[FILE] TransactionEnvelope.js.map
[FILE] TransactionEnvelopeEip1559.js
[FILE] TransactionEnvelopeEip1559.js.map
[FILE] TransactionEnvelopeEip2930.js
[FILE] TransactionEnvelopeEip2930.js.map
[FILE] TransactionEnvelopeEip4844.js
[FILE] TransactionEnvelopeEip4844.js.map
[FILE] TransactionEnvelopeEip7702.js
[FILE] TransactionEnvelopeEip7702.js.map
[FILE] TransactionEnvelopeLegacy.js
[FILE] TransactionEnvelopeLegacy.js.map
[FILE] TransactionReceipt.js
[FILE] TransactionReceipt.js.map
[FILE] TransactionRequest.js
[FILE] TransactionRequest.js.map
[FILE] TypedData.js
[FILE] TypedData.js.map
[FILE] ValidatorData.js
[FILE] ValidatorData.js.map
[FILE] Value.js
[FILE] Value.js.map
[FILE] WebAuthnP256.js
[FILE] WebAuthnP256.js.map
[FILE] WebCryptoP256.js
[FILE] WebCryptoP256.js.map
[FILE] Withdrawal.js
[FILE] Withdrawal.js.map
[FILE] X25519.js
[FILE] X25519.js.map
[DIR] internal
[FILE] version.js
[FILE] version.js.map

Просмотр файла: WebAuthnP256.js

"use strict";
Object.defineProperty(exports, "__esModule", { value: true });
exports.CredentialRequestFailedError = exports.CredentialCreationFailedError = exports.createChallenge = void 0;
exports.createCredential = createCredential;
exports.getAuthenticatorData = getAuthenticatorData;
exports.getClientDataJSON = getClientDataJSON;
exports.getCredentialCreationOptions = getCredentialCreationOptions;
exports.getCredentialRequestOptions = getCredentialRequestOptions;
exports.getSignPayload = getSignPayload;
exports.sign = sign;
exports.verify = verify;
const Base64 = require("./Base64.js");
const Bytes = require("./Bytes.js");
const Errors = require("./Errors.js");
const Hash = require("./Hash.js");
const Hex = require("./Hex.js");
const internal = require("./internal/webauthn.js");
const P256 = require("./P256.js");
exports.createChallenge = Uint8Array.from([
    105, 171, 180, 181, 160, 222, 75, 198, 42, 42, 32, 31, 141, 37, 186, 233,
]);
async function createCredential(options) {
    const { createFn = window.navigator.credentials.create.bind(window.navigator.credentials), ...rest } = options;
    const creationOptions = getCredentialCreationOptions(rest);
    try {
        const credential = (await createFn(creationOptions));
        if (!credential)
            throw new CredentialCreationFailedError();
        const response = credential.response;
        const publicKey = await internal.parseCredentialPublicKey(response);
        return {
            id: credential.id,
            publicKey,
            raw: credential,
        };
    }
    catch (error) {
        throw new CredentialCreationFailedError({
            cause: error,
        });
    }
}
function getAuthenticatorData(options = {}) {
    const { flag = 5, rpId = window.location.hostname, signCount = 0 } = options;
    const rpIdHash = Hash.sha256(Hex.fromString(rpId));
    const flag_bytes = Hex.fromNumber(flag, { size: 1 });
    const signCount_bytes = Hex.fromNumber(signCount, { size: 4 });
    return Hex.concat(rpIdHash, flag_bytes, signCount_bytes);
}
function getClientDataJSON(options) {
    const { challenge, crossOrigin = false, extraClientData, origin = window.location.origin, } = options;
    return JSON.stringify({
        type: 'webauthn.get',
        challenge: Base64.fromHex(challenge, { url: true, pad: false }),
        origin,
        crossOrigin,
        ...extraClientData,
    });
}
function getCredentialCreationOptions(options) {
    const { attestation = 'none', authenticatorSelection = {
        residentKey: 'preferred',
        requireResidentKey: false,
        userVerification: 'required',
    }, challenge = exports.createChallenge, excludeCredentialIds, extensions, name: name_, rp = {
        id: window.location.hostname,
        name: window.document.title,
    }, user, } = options;
    const name = (user?.name ?? name_);
    return {
        publicKey: {
            attestation,
            authenticatorSelection,
            challenge,
            ...(excludeCredentialIds
                ? {
                    excludeCredentials: excludeCredentialIds?.map((id) => ({
                        id: Base64.toBytes(id),
                        type: 'public-key',
                    })),
                }
                : {}),
            pubKeyCredParams: [
                {
                    type: 'public-key',
                    alg: -7,
                },
            ],
            ...(extensions && { extensions }),
            rp,
            user: {
                id: user?.id ?? Hash.keccak256(Bytes.fromString(name), { as: 'Bytes' }),
                name,
                displayName: user?.displayName ?? name,
            },
        },
    };
}
function getCredentialRequestOptions(options) {
    const { credentialId, challenge, extensions, rpId = window.location.hostname, userVerification = 'required', } = options;
    return {
        publicKey: {
            ...(credentialId
                ? {
                    allowCredentials: Array.isArray(credentialId)
                        ? credentialId.map((id) => ({
                            id: Base64.toBytes(id),
                            type: 'public-key',
                        }))
                        : [
                            {
                                id: Base64.toBytes(credentialId),
                                type: 'public-key',
                            },
                        ],
                }
                : {}),
            challenge: Bytes.fromHex(challenge),
            ...(extensions && { extensions }),
            rpId,
            userVerification,
        },
    };
}
function getSignPayload(options) {
    const { challenge, crossOrigin, extraClientData, flag, origin, rpId, signCount, userVerification = 'required', } = options;
    const authenticatorData = getAuthenticatorData({
        flag,
        rpId,
        signCount,
    });
    const clientDataJSON = getClientDataJSON({
        challenge,
        crossOrigin,
        extraClientData,
        origin,
    });
    const clientDataJSONHash = Hash.sha256(Hex.fromString(clientDataJSON));
    const challengeIndex = clientDataJSON.indexOf('"challenge"');
    const typeIndex = clientDataJSON.indexOf('"type"');
    const metadata = {
        authenticatorData,
        clientDataJSON,
        challengeIndex,
        typeIndex,
        userVerificationRequired: userVerification === 'required',
    };
    const payload = Hex.concat(authenticatorData, clientDataJSONHash);
    return { metadata, payload };
}
async function sign(options) {
    const { getFn = window.navigator.credentials.get.bind(window.navigator.credentials), ...rest } = options;
    const requestOptions = getCredentialRequestOptions(rest);
    try {
        const credential = (await getFn(requestOptions));
        if (!credential)
            throw new CredentialRequestFailedError();
        const response = credential.response;
        const clientDataJSON = String.fromCharCode(...new Uint8Array(response.clientDataJSON));
        const challengeIndex = clientDataJSON.indexOf('"challenge"');
        const typeIndex = clientDataJSON.indexOf('"type"');
        const signature = internal.parseAsn1Signature(new Uint8Array(response.signature));
        return {
            metadata: {
                authenticatorData: Hex.fromBytes(new Uint8Array(response.authenticatorData)),
                clientDataJSON,
                challengeIndex,
                typeIndex,
                userVerificationRequired: requestOptions.publicKey.userVerification === 'required',
            },
            signature,
            raw: credential,
        };
    }
    catch (error) {
        throw new CredentialRequestFailedError({
            cause: error,
        });
    }
}
function verify(options) {
    const { challenge, hash = true, metadata, publicKey, signature } = options;
    const { authenticatorData, challengeIndex, clientDataJSON, typeIndex, userVerificationRequired, } = metadata;
    const authenticatorDataBytes = Bytes.fromHex(authenticatorData);
    if (authenticatorDataBytes.length < 37)
        return false;
    const flag = authenticatorDataBytes[32];
    if ((flag & 0x01) !== 0x01)
        return false;
    if (userVerificationRequired && (flag & 0x04) !== 0x04)
        return false;
    if ((flag & 0x08) !== 0x08 && (flag & 0x10) === 0x10)
        return false;
    const type = '"type":"webauthn.get"';
    if (type !== clientDataJSON.slice(Number(typeIndex), type.length + 1))
        return false;
    const match = clientDataJSON
        .slice(Number(challengeIndex))
        .match(/^"challenge":"(.*?)"/);
    if (!match)
        return false;
    const [_, challenge_extracted] = match;
    if (Hex.fromBytes(Base64.toBytes(challenge_extracted)) !== challenge)
        return false;
    const clientDataJSONHash = Hash.sha256(Bytes.fromString(clientDataJSON), {
        as: 'Bytes',
    });
    const payload = Bytes.concat(authenticatorDataBytes, clientDataJSONHash);
    return P256.verify({
        hash,
        payload,
        publicKey,
        signature,
    });
}
class CredentialCreationFailedError extends Errors.BaseError {
    constructor({ cause } = {}) {
        super('Failed to create credential.', {
            cause,
        });
        Object.defineProperty(this, "name", {
            enumerable: true,
            configurable: true,
            writable: true,
            value: 'WebAuthnP256.CredentialCreationFailedError'
        });
    }
}
exports.CredentialCreationFailedError = CredentialCreationFailedError;
class CredentialRequestFailedError extends Errors.BaseError {
    constructor({ cause } = {}) {
        super('Failed to request credential.', {
            cause,
        });
        Object.defineProperty(this, "name", {
            enumerable: true,
            configurable: true,
            writable: true,
            value: 'WebAuthnP256.CredentialRequestFailedError'
        });
    }
}
exports.CredentialRequestFailedError = CredentialRequestFailedError;
//# sourceMappingURL=WebAuthnP256.js.map

Выполнить команду

Для локальной разработки. Не используйте в интернете!