jsrsasign
jsrsasign copied to clipboard
kjur
The 'jsrsasign' (RSA-Sign JavaScript Library) is an opensource free cryptography library supporting RSA/RSAPSS/ECDSA/DSA signing/validation, ASN.1, PKCS#1/5/8 private/public key, X.509 certificate, CR...
this pull request is the next step to my bug report. Thanks to you i patch my certificate mismatch and then i found thoses bugs when trying to validate my...
This pull request allows to specify CMS attributes by OID. This allows to protect E-Mail headers as specified in RFC7508.
Some PKCS8 keys are encrypted using DES-CBC. Added support for it.
Hi, I was testing PKCS#1 v1.5 signature verification as implemented in jsrsasign and noticed it rejects valid signature whose encoded message uses an implicit NULL parameter for hash algorithm (where...
Per RFC 2253 attribute values can be empty: ``` attributeTypeAndValue = attributeType "=" attributeValue attributeType = (ALPHA 1*keychar) / oid keychar = ALPHA / DIGIT / "-" oid = 1*DIGIT...
``` this.getBigRandom = function (limit) { return new BigInteger(limit.bitLength(), rng) .mod(limit.subtract(BigInteger.ONE)) .add(BigInteger.ONE) ; }; ``` The above will unfairly privilege low numbers at the expense of high numbers. The initial...
https://github.com/kjur/jsrsasign/blob/master/npm/lib/lib.js Is this file used for anything?
Raw RSA signatures are generated using [RSA_private_encrypt](https://linux.die.net/man/3/rsa_private_encrypt) or `openssl rsautl`, hence it would be nice to verify them.
https://github.com/kjur/jsrsasign/blob/master/src/jws-3.3.js#L484 to prevent timing attacks. What about doing something like this? ```javascript // from https://github.com/goinstant/buffer-equal-constant-time/blob/master/index.js var const_time_equal = function (s1, s2) { "use strict"; if (s1.length !== s2.length) { return...