Начало Каталог Помощ
Вход
lovecoding
/
W250511
10
0
Разклонения 0
Файлове Задачи 0 Заявки за сливане 0 Уики
ИН на ревизия: 7d9b12ad3f
Клонове Маркери
W250511
/
20.webpack
/
node_modules
/
selfsigned
/
pkcs7.js

pkcs7.js 2.0 KB
История Директен файл

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970 
  1. const pkijs = require("pkijs");
    2. 

  2. const nodeCrypto = require("crypto");
    3. 

  3. 

  4. // Use Node.js native webcrypto
    5. 

  5. const crypto = nodeCrypto.webcrypto;
    6. 

  6. 

  7. // Set up pkijs to use native crypto
    8. 

  8. // Note: This modifies global pkijs state. If the consumer also uses pkijs,
    9. 

  9. // they should set their own engine or use a version that supports per-instance engines.
    10. 

  10. let pkijsInitialized = false;
    11. 

  11. 

  12. function ensurePkijsInitialized() {
    13. 

  13.   if (!pkijsInitialized) {
    14. 

  14.     pkijs.setEngine("nodeEngine", crypto, new pkijs.CryptoEngine({
    15. 

  15.       name: "",
    16. 

  16.       crypto: crypto,
    17. 

  17.       subtle: crypto.subtle
    18. 

  18.     }));
    19. 

  19.     pkijsInitialized = true;
    20. 

  20.   }
    21. 

  21. }
    22. 

  22. 

  23. /**
    24. 

  24.  * Create PKCS#7 formatted certificate from PEM certificate
    25. 

  25.  *
    26. 

  26.  * @param {string} certPem - PEM formatted certificate
    27. 

  27.  * @returns {string} PKCS#7 PEM formatted certificate
    28. 

  28.  */
    29. 

  29. function createPkcs7(certPem) {
    30. 

  30.   ensurePkijsInitialized();
    31. 

  31. 

  32.   // Parse the PEM certificate to get raw data
    33. 

  33.   const certLines = certPem.split('\n').filter(line =>
    34. 

  34.     !line.includes('BEGIN CERTIFICATE') &&
    35. 

  35.     !line.includes('END CERTIFICATE') &&
    36. 

  36.     line.trim()
    37. 

  37.   );
    38. 

  38.   const certBase64 = certLines.join('');
    39. 

  39.   const certBuffer = Buffer.from(certBase64, 'base64');
    40. 

  40. 

  41.   // Parse certificate using pkijs
    42. 

  42.   const asn1Cert = pkijs.Certificate.fromBER(certBuffer);
    43. 

  43. 

  44.   // Create PKCS#7 SignedData structure
    45. 

  45.   const cmsSigned = new pkijs.SignedData({
    46. 

  46.     version: 1,
    47. 

  47.     encapContentInfo: new pkijs.EncapsulatedContentInfo({
    48. 

  48.       eContentType: "1.2.840.113549.1.7.1" // data
    49. 

  49.     }),
    50. 

  50.     certificates: [asn1Cert]
    51. 

  51.   });
    52. 

  52. 

  53.   // Wrap in ContentInfo
    54. 

  54.   const cmsSignedSchema = cmsSigned.toSchema();
    55. 

  55.   const cmsContentInfo = new pkijs.ContentInfo({
    56. 

  56.     contentType: "1.2.840.113549.1.7.2", // signedData
    57. 

  57.     content: cmsSignedSchema
    58. 

  58.   });
    59. 

  59. 

  60.   // Convert to DER and then PEM
    61. 

  61.   const cmsSignedDer = cmsContentInfo.toSchema().toBER(false);
    62. 

  62.   const pkcs7Pem =
    63. 

  63.     '-----BEGIN PKCS7-----\n' +
    64. 

  64.     Buffer.from(cmsSignedDer).toString('base64').match(/.{1,64}/g).join('\n') +
    65. 

  65.     '\n-----END PKCS7-----\n';
    66. 

  66. 

  67.   return pkcs7Pem;
    68. 

  68. }
    69. 

  69. 

  70. module.exports = { createPkcs7 };
    71.