"use strict";
|
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
|
if (k2 === undefined) k2 = k;
|
var desc = Object.getOwnPropertyDescriptor(m, k);
|
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
|
desc = { enumerable: true, get: function() { return m[k]; } };
|
}
|
Object.defineProperty(o, k2, desc);
|
}) : (function(o, m, k, k2) {
|
if (k2 === undefined) k2 = k;
|
o[k2] = m[k];
|
}));
|
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
|
Object.defineProperty(o, "default", { enumerable: true, value: v });
|
}) : function(o, v) {
|
o["default"] = v;
|
});
|
var __importStar = (this && this.__importStar) || function (mod) {
|
if (mod && mod.__esModule) return mod;
|
var result = {};
|
if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
|
__setModuleDefault(result, mod);
|
return result;
|
};
|
Object.defineProperty(exports, "__esModule", { value: true });
|
exports.RFC3161Timestamp = void 0;
|
/*
|
Copyright 2023 The Sigstore Authors.
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
you may not use this file except in compliance with the License.
|
You may obtain a copy of the License at
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
Unless required by applicable law or agreed to in writing, software
|
distributed under the License is distributed on an "AS IS" BASIS,
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
See the License for the specific language governing permissions and
|
limitations under the License.
|
*/
|
const asn1_1 = require("../asn1");
|
const crypto = __importStar(require("../crypto"));
|
const oid_1 = require("../oid");
|
const error_1 = require("./error");
|
const tstinfo_1 = require("./tstinfo");
|
const OID_PKCS9_CONTENT_TYPE_SIGNED_DATA = '1.2.840.113549.1.7.2';
|
const OID_PKCS9_CONTENT_TYPE_TSTINFO = '1.2.840.113549.1.9.16.1.4';
|
const OID_PKCS9_MESSAGE_DIGEST_KEY = '1.2.840.113549.1.9.4';
|
class RFC3161Timestamp {
|
constructor(asn1) {
|
this.root = asn1;
|
}
|
static parse(der) {
|
const asn1 = asn1_1.ASN1Obj.parseBuffer(der);
|
return new RFC3161Timestamp(asn1);
|
}
|
get status() {
|
return this.pkiStatusInfoObj.subs[0].toInteger();
|
}
|
get contentType() {
|
return this.contentTypeObj.toOID();
|
}
|
get eContentType() {
|
return this.eContentTypeObj.toOID();
|
}
|
get signingTime() {
|
return this.tstInfo.genTime;
|
}
|
get signerIssuer() {
|
return this.signerSidObj.subs[0].value;
|
}
|
get signerSerialNumber() {
|
return this.signerSidObj.subs[1].value;
|
}
|
get signerDigestAlgorithm() {
|
const oid = this.signerDigestAlgorithmObj.subs[0].toOID();
|
return oid_1.SHA2_HASH_ALGOS[oid];
|
}
|
get signatureAlgorithm() {
|
const oid = this.signatureAlgorithmObj.subs[0].toOID();
|
return oid_1.ECDSA_SIGNATURE_ALGOS[oid];
|
}
|
get signatureValue() {
|
return this.signatureValueObj.value;
|
}
|
get tstInfo() {
|
// Need to unpack tstInfo from an OCTET STRING
|
return new tstinfo_1.TSTInfo(this.eContentObj.subs[0].subs[0]);
|
}
|
verify(data, publicKey) {
|
if (!this.timeStampTokenObj) {
|
throw new error_1.RFC3161TimestampVerificationError('timeStampToken is missing');
|
}
|
// Check for expected ContentInfo content type
|
if (this.contentType !== OID_PKCS9_CONTENT_TYPE_SIGNED_DATA) {
|
throw new error_1.RFC3161TimestampVerificationError(`incorrect content type: ${this.contentType}`);
|
}
|
// Check for expected encapsulated content type
|
if (this.eContentType !== OID_PKCS9_CONTENT_TYPE_TSTINFO) {
|
throw new error_1.RFC3161TimestampVerificationError(`incorrect encapsulated content type: ${this.eContentType}`);
|
}
|
// Check that the tstInfo references the correct artifact
|
this.tstInfo.verify(data);
|
// Check that the signed message digest matches the tstInfo
|
this.verifyMessageDigest();
|
// Check that the signature is valid for the signed attributes
|
this.verifySignature(publicKey);
|
}
|
verifyMessageDigest() {
|
// Check that the tstInfo matches the signed data
|
const tstInfoDigest = crypto.digest(this.signerDigestAlgorithm, this.tstInfo.raw);
|
const expectedDigest = this.messageDigestAttributeObj.subs[1].subs[0].value;
|
if (!crypto.bufferEqual(tstInfoDigest, expectedDigest)) {
|
throw new error_1.RFC3161TimestampVerificationError('signed data does not match tstInfo');
|
}
|
}
|
verifySignature(key) {
|
// Encode the signed attributes for verification
|
const signedAttrs = this.signedAttrsObj.toDER();
|
signedAttrs[0] = 0x31; // Change context-specific tag to SET
|
// Check that the signature is valid for the signed attributes
|
const verified = crypto.verify(signedAttrs, key, this.signatureValue, this.signatureAlgorithm);
|
if (!verified) {
|
throw new error_1.RFC3161TimestampVerificationError('signature verification failed');
|
}
|
}
|
// https://www.rfc-editor.org/rfc/rfc3161#section-2.4.2
|
get pkiStatusInfoObj() {
|
// pkiStatusInfo is the first element of the timestamp response sequence
|
return this.root.subs[0];
|
}
|
// https://www.rfc-editor.org/rfc/rfc3161#section-2.4.2
|
get timeStampTokenObj() {
|
// timeStampToken is the first element of the timestamp response sequence
|
return this.root.subs[1];
|
}
|
// https://datatracker.ietf.org/doc/html/rfc5652#section-3
|
get contentTypeObj() {
|
return this.timeStampTokenObj.subs[0];
|
}
|
// https://www.rfc-editor.org/rfc/rfc5652#section-3
|
get signedDataObj() {
|
const obj = this.timeStampTokenObj.subs.find((sub) => sub.tag.isContextSpecific(0x00));
|
return obj.subs[0];
|
}
|
// https://datatracker.ietf.org/doc/html/rfc5652#section-5.1
|
get encapContentInfoObj() {
|
return this.signedDataObj.subs[2];
|
}
|
// https://datatracker.ietf.org/doc/html/rfc5652#section-5.1
|
get signerInfosObj() {
|
// SignerInfos is the last element of the signed data sequence
|
const sd = this.signedDataObj;
|
return sd.subs[sd.subs.length - 1];
|
}
|
// https://www.rfc-editor.org/rfc/rfc5652#section-5.1
|
get signerInfoObj() {
|
// Only supporting one signer
|
return this.signerInfosObj.subs[0];
|
}
|
// https://datatracker.ietf.org/doc/html/rfc5652#section-5.2
|
get eContentTypeObj() {
|
return this.encapContentInfoObj.subs[0];
|
}
|
// https://datatracker.ietf.org/doc/html/rfc5652#section-5.2
|
get eContentObj() {
|
return this.encapContentInfoObj.subs[1];
|
}
|
// https://datatracker.ietf.org/doc/html/rfc5652#section-5.3
|
get signedAttrsObj() {
|
const signedAttrs = this.signerInfoObj.subs.find((sub) => sub.tag.isContextSpecific(0x00));
|
return signedAttrs;
|
}
|
// https://datatracker.ietf.org/doc/html/rfc5652#section-5.3
|
get messageDigestAttributeObj() {
|
const messageDigest = this.signedAttrsObj.subs.find((sub) => sub.subs[0].tag.isOID() &&
|
sub.subs[0].toOID() === OID_PKCS9_MESSAGE_DIGEST_KEY);
|
return messageDigest;
|
}
|
// https://datatracker.ietf.org/doc/html/rfc5652#section-5.3
|
get signerSidObj() {
|
return this.signerInfoObj.subs[1];
|
}
|
// https://datatracker.ietf.org/doc/html/rfc5652#section-5.3
|
get signerDigestAlgorithmObj() {
|
// Signature is the 2nd element of the signerInfoObj object
|
return this.signerInfoObj.subs[2];
|
}
|
// https://datatracker.ietf.org/doc/html/rfc5652#section-5.3
|
get signatureAlgorithmObj() {
|
// Signature is the 4th element of the signerInfoObj object
|
return this.signerInfoObj.subs[4];
|
}
|
// https://datatracker.ietf.org/doc/html/rfc5652#section-5.3
|
get signatureValueObj() {
|
// Signature is the 6th element of the signerInfoObj object
|
return this.signerInfoObj.subs[5];
|
}
|
}
|
exports.RFC3161Timestamp = RFC3161Timestamp;
|
