| 123456789101112131415161718192021222324252627282930313233343536 |
- import * as crypto from 'crypto';
- import { promisify } from 'util';
- import nodeDigest from './dsa_digest.js';
- import nodeKey from './node_key.js';
- import sign from './sign.js';
- import getVerifyKey from './get_sign_verify_key.js';
- import { oneShotCallback } from './flags.js';
- let oneShotVerify;
- if (crypto.verify.length > 4 && oneShotCallback) {
- oneShotVerify = promisify(crypto.verify);
- }
- else {
- oneShotVerify = crypto.verify;
- }
- const verify = async (alg, key, signature, data) => {
- const keyObject = getVerifyKey(alg, key, 'verify');
- if (alg.startsWith('HS')) {
- const expected = await sign(alg, keyObject, data);
- const actual = signature;
- try {
- return crypto.timingSafeEqual(actual, expected);
- }
- catch {
- return false;
- }
- }
- const algorithm = nodeDigest(alg);
- const keyInput = nodeKey(alg, keyObject);
- try {
- return await oneShotVerify(algorithm, data, keyInput, signature);
- }
- catch {
- return false;
- }
- };
- export default verify;
|
