Fixed -kvmdatatrace issue.

pki.js/OCSPRequest.js

@@ -0,0 +1,304 @@
+import * as asn1js from "asn1js";
+import { getParametersValue, clearProps } from "pvutils";
+import { getEngine } from "./common.js";
+import TBSRequest from "./TBSRequest.js";
+import Signature from "./Signature.js";
+import Request from "./Request.js";
+import CertID from "./CertID.js";
+//**************************************************************************************
+/**
+ * Class from RFC6960
+ */
+export default class OCSPRequest 
+{
+	//**********************************************************************************
+	/**
+	 * Constructor for OCSPRequest class
+	 * @param {Object} [parameters={}]
+	 * @param {Object} [parameters.schema] asn1js parsed value to initialize the class from
+	 */
+	constructor(parameters = {})
+	{
+		//region Internal properties of the object
+		/**
+		 * @type {TBSRequest}
+		 * @desc tbsRequest
+		 */
+		this.tbsRequest = getParametersValue(parameters, "tbsRequest", OCSPRequest.defaultValues("tbsRequest"));
+		
+		if("optionalSignature" in parameters)
+			/**
+			 * @type {Signature}
+			 * @desc optionalSignature
+			 */
+			this.optionalSignature = getParametersValue(parameters, "optionalSignature", OCSPRequest.defaultValues("optionalSignature"));
+		//endregion
+		
+		//region If input argument array contains "schema" for this object
+		if("schema" in parameters)
+			this.fromSchema(parameters.schema);
+		//endregion
+	}
+	//**********************************************************************************
+	/**
+	 * Return default values for all class members
+	 * @param {string} memberName String name for a class member
+	 */
+	static defaultValues(memberName)
+	{
+		switch(memberName)
+		{
+			case "tbsRequest":
+				return new TBSRequest();
+			case "optionalSignature":
+				return new Signature();
+			default:
+				throw new Error(`Invalid member name for OCSPRequest class: ${memberName}`);
+		}
+	}
+	//**********************************************************************************
+	/**
+	 * Compare values with default values for all class members
+	 * @param {string} memberName String name for a class member
+	 * @param {*} memberValue Value to compare with default value
+	 */
+	static compareWithDefault(memberName, memberValue)
+	{
+		switch(memberName)
+		{
+			case "tbsRequest":
+				// noinspection OverlyComplexBooleanExpressionJS
+				return ((TBSRequest.compareWithDefault("tbs", memberValue.tbs)) &&
+				(TBSRequest.compareWithDefault("version", memberValue.version)) &&
+				(TBSRequest.compareWithDefault("requestorName", memberValue.requestorName)) &&
+				(TBSRequest.compareWithDefault("requestList", memberValue.requestList)) &&
+				(TBSRequest.compareWithDefault("requestExtensions", memberValue.requestExtensions)));
+			case "optionalSignature":
+				return ((Signature.compareWithDefault("signatureAlgorithm", memberValue.signatureAlgorithm)) &&
+				(Signature.compareWithDefault("signature", memberValue.signature)) &&
+				(Signature.compareWithDefault("certs", memberValue.certs)));
+			default:
+				throw new Error(`Invalid member name for OCSPRequest class: ${memberName}`);
+		}
+	}
+	//**********************************************************************************
+	/**
+	 * Return value of pre-defined ASN.1 schema for current class
+	 *
+	 * ASN.1 schema:
+	 * ```asn1
+	 * OCSPRequest     ::=     SEQUENCE {
+	 *    tbsRequest                  TBSRequest,
+	 *    optionalSignature   [0]     EXPLICIT Signature OPTIONAL }
+	 * ```
+	 *
+	 * @param {Object} parameters Input parameters for the schema
+	 * @returns {Object} asn1js schema object
+	 */
+	static schema(parameters = {})
+	{
+		/**
+		 * @type {Object}
+		 * @property {string} [blockName]
+		 * @property {string} [tbsRequest]
+		 * @property {string} [optionalSignature]
+		 */
+		const names = getParametersValue(parameters, "names", {});
+		
+		return (new asn1js.Sequence({
+			name: names.blockName || "OCSPRequest",
+			value: [
+				TBSRequest.schema(names.tbsRequest || {
+					names: {
+						blockName: "tbsRequest"
+					}
+				}),
+				new asn1js.Constructed({
+					optional: true,
+					idBlock: {
+						tagClass: 3, // CONTEXT-SPECIFIC
+						tagNumber: 0 // [0]
+					},
+					value: [
+						Signature.schema(names.optionalSignature || {
+							names: {
+								blockName: "optionalSignature"
+							}
+						})
+					]
+				})
+			]
+		}));
+	}
+	//**********************************************************************************
+	/**
+	 * Convert parsed asn1js object into current class
+	 * @param {!Object} schema
+	 */
+	fromSchema(schema)
+	{
+		//region Clear input data first
+		clearProps(schema, [
+			"tbsRequest",
+			"optionalSignature"
+		]);
+		//endregion
+		
+		//region Check the schema is valid
+		const asn1 = asn1js.compareSchema(schema,
+			schema,
+			OCSPRequest.schema()
+		);
+		
+		if(asn1.verified === false)
+			throw new Error("Object's schema was not verified against input data for OCSPRequest");
+		//endregion
+		
+		//region Get internal properties from parsed schema
+		this.tbsRequest = new TBSRequest({ schema: asn1.result.tbsRequest });
+		if("optionalSignature" in asn1.result)
+			this.optionalSignature = new Signature({ schema: asn1.result.optionalSignature });
+		//endregion
+	}
+	//**********************************************************************************
+	/**
+	 * Convert current object to asn1js object and set correct values
+	 * @param {boolean} encodeFlag If param equal to false then create TBS schema via decoding stored value. In othe case create TBS schema via assembling from TBS parts.
+	 * @returns {Object} asn1js object
+	 */
+	toSchema(encodeFlag = false)
+	{
+		//region Create array for output sequence
+		const outputArray = [];
+		
+		outputArray.push(this.tbsRequest.toSchema(encodeFlag));
+		if("optionalSignature" in this)
+			outputArray.push(this.optionalSignature.toSchema());
+		//endregion
+		
+		//region Construct and return new ASN.1 schema for this object
+		return (new asn1js.Sequence({
+			value: outputArray
+		}));
+		//endregion
+	}
+	//**********************************************************************************
+	/**
+	 * Convertion for the class to JSON object
+	 * @returns {Object}
+	 */
+	toJSON()
+	{
+		const _object = {
+			tbsRequest: this.tbsRequest.toJSON()
+		};
+		
+		if("optionalSignature" in this)
+			_object.optionalSignature = this.optionalSignature.toJSON();
+		
+		return _object;
+	}
+	//**********************************************************************************
+	/**
+	 * Making OCSP Request for specific certificate
+	 * @param {Certificate} certificate Certificate making OCSP Request for
+	 * @param {Object} parameters Additional parameters
+	 * @returns {Promise}
+	 */
+	createForCertificate(certificate, parameters)
+	{
+		//region Initial variables
+		let sequence = Promise.resolve();
+		
+		const certID = new CertID();
+		//endregion
+		
+		//region Create OCSP certificate identifier for the certificate
+		sequence = sequence.then(() =>
+			certID.createForCertificate(certificate, parameters)
+		);
+		//endregion
+		
+		//region Make final request data
+		sequence = sequence.then(() =>
+		{
+			this.tbsRequest = new TBSRequest({
+				requestList: [
+					new Request({
+						reqCert: certID
+					})
+				]
+			});
+		}, error =>
+			Promise.reject(error)
+		);
+		//endregion
+		
+		return sequence;
+	}
+	//**********************************************************************************
+	/**
+	 * Make signature for current OCSP Request
+	 * @param {Object} privateKey Private key for "subjectPublicKeyInfo" structure
+	 * @param {string} [hashAlgorithm] Hashing algorithm. Default SHA-1
+	 * @returns {Promise}
+	 */
+	sign(privateKey, hashAlgorithm = "SHA-1")
+	{
+		//region Initial checking
+		//region Check private key
+		if(typeof privateKey === "undefined")
+			return Promise.reject("Need to provide a private key for signing");
+		//endregion
+		
+		//region Check that "optionalSignature" exists in the current request
+		if(("optionalSignature" in this) === false)
+			return Promise.reject("Need to create \"optionalSignature\" field before signing");
+		//endregion
+		//endregion
+		
+		//region Initial variables
+		let sequence = Promise.resolve();
+		let parameters;
+		
+		let tbs;
+		
+		const engine = getEngine();
+		//endregion
+
+		//region Get a "default parameters" for current algorithm and set correct signature algorithm
+		sequence = sequence.then(() => engine.subtle.getSignatureParameters(privateKey, hashAlgorithm));
+		
+		sequence = sequence.then(result =>
+		{
+			parameters = result.parameters;
+			this.optionalSignature.signatureAlgorithm = result.signatureAlgorithm;
+		});
+		//endregion
+		
+		//region Create TBS data for signing
+		sequence = sequence.then(() =>
+		{
+			tbs = this.tbsRequest.toSchema(true).toBER(false);
+		});
+		//endregion
+		
+		//region Signing TBS data on provided private key
+		sequence = sequence.then(() => engine.subtle.signWithPrivateKey(tbs, privateKey, parameters));
+		
+		sequence = sequence.then(result =>
+		{
+			this.optionalSignature.signature = new asn1js.BitString({ valueHex: result });
+		});
+		//endregion
+		
+		return sequence;
+	}
+	//**********************************************************************************
+	verify()
+	{
+		// TODO: Create the function
+	}
+	//**********************************************************************************
+}
+//**************************************************************************************