httpjamesm
diff --git a/‎bun.lockb
11.8 KB b/‎bun.lockb
11.8 KB
diff --git a/‎package.json
Lines changed: 7 additions & 2 deletions b/‎package.json
Lines changed: 7 additions & 2 deletions
diff --git a/‎src/srp/littleK.test.ts
Lines changed: 21 additions & 0 deletions b/‎src/srp/littleK.test.ts
Lines changed: 21 additions & 0 deletions
diff --git a/‎src/srp/srpClient.ts
Lines changed: 118 additions & 0 deletions b/‎src/srp/srpClient.ts
Lines changed: 118 additions & 0 deletions
diff --git a/‎src/srp/srpGroup.ts
Lines changed: 163 additions & 0 deletions b/‎src/srp/srpGroup.ts
Lines changed: 163 additions & 0 deletions
diff --git a/‎src/utils/bigint.test.ts
Lines changed: 55 additions & 0 deletions b/‎src/utils/bigint.test.ts
Lines changed: 55 additions & 0 deletions
@@ -30,7 +30,12 @@
   "bugs": "https://github.com/wobsoriano/pkg-name/issues",
   "author": "Robert Soriano <[email protected]>",
   "devDependencies": {
-    "bun-plugin-dts": "^0.3.0",
-    "@types/bun": "^1.1.10"
+    "@types/bun": "^1.1.10",
+    "@types/jsbn": "^1.2.33",
+    "bun-plugin-dts": "^0.3.0"
+  },
+  "dependencies": {
+    "assert": "^2.1.0",
+    "jsbn": "^1.1.0"
   }
 }
@@ -0,0 +1,21 @@
+import { createHash } from "node:crypto";
+import { BigInteger } from "jsbn";
+import { hexToBigInt } from "../utils/hex";
+import { knownGroups } from "./srpGroup";
+import { bigIntToBytes } from "../utils/bigint";
+
+const makeLittleK = (N: BigInteger, g: BigInteger) => {
+  const hash = createHash("sha256");
+  const nBytes = bigIntToBytes(N);
+  const gBytes = bigIntToBytes(g);
+  console.log(Buffer.from(gBytes).toString("base64"));
+  hash.update(nBytes);
+  hash.update(gBytes);
+  return hexToBigInt(hash.digest("hex"));
+};
+
+const k = makeLittleK(
+  knownGroups[8192].getN(),
+  knownGroups[8192].getGenerator()
+);
+console.log(k.toString());
@@ -0,0 +1,118 @@
+import { bigIntToBytes, maxInt } from "../utils/bigint";
+import { hexToBigInt } from "../utils/hex";
+import { minExponentSize, SrpGroup } from "./srpGroup";
+import { createHash, randomBytes } from "node:crypto";
+import { BigInteger } from "jsbn";
+
+const zero = new BigInteger("0");
+
+export class SrpClient {
+  private ephemeralPrivate: BigInteger = zero;
+  private ephemeralPublicA: BigInteger = zero;
+  private ephemeralPublicB: BigInteger = zero;
+  private x: BigInteger = zero;
+  private v: BigInteger = zero;
+  private u: BigInteger | null = zero;
+  private k: BigInteger = zero;
+  private premasterKey: BigInteger;
+  private key: Uint8Array | null = null;
+  private m: Uint8Array | null = null;
+  private cProof: Uint8Array | null = null;
+  private isServerProved: boolean = false;
+  private group: SrpGroup;
+  private badState = false;
+
+  constructor(group: SrpGroup, v: BigInteger, k?: BigInteger) {
+    this.group = group;
+
+    if (k) {
+      this.k = k;
+    } else {
+    }
+  }
+
+  private makeLittleK(): BigInteger {
+    const hash = createHash("sha256");
+    hash.update(new Uint8Array(this.group.getN().toByteArray()));
+    hash.update(new Uint8Array(this.group.getGenerator().toByteArray()));
+    return hexToBigInt(hash.digest("hex"));
+  }
+
+  private generateMySecret(): BigInteger {
+    const eSize = maxInt(this.group.exponentSize, minExponentSize);
+    // get eSize random bytes
+    const bytes = randomBytes(eSize);
+    this.ephemeralPrivate = hexToBigInt(bytes.toString("hex"));
+    return this.ephemeralPrivate;
+  }
+
+  private makeA(): BigInteger {
+    if (this.ephemeralPrivate === zero) {
+      this.generateMySecret();
+    }
+    this.ephemeralPublicA = this.group
+      .getGenerator()
+      .modPow(this.ephemeralPrivate, this.group.getN());
+    return this.ephemeralPublicA;
+  }
+
+  private isUValid(): boolean {
+    if (this.u === null || this.badState) {
+      this.u = null;
+      return false;
+    }
+    if (this.u.compareTo(zero) === 0) {
+      return false;
+    }
+    return true;
+  }
+
+  private makeVerifier(): BigInteger {
+    if (this.badState) {
+      throw new Error("we have bad data");
+    }
+    if (this.x.equals(zero)) {
+      throw new Error("x must be known to calculate v");
+    }
+    this.v = this.group.getGenerator().modPow(this.x, this.group.getN());
+    return this.v;
+  }
+
+  public isPublicValid(AorB: BigInteger): boolean {
+    if (this.group.getGenerator().compareTo(zero) === 0) {
+      return false;
+    }
+
+    if (AorB.mod(this.group.getGenerator()).compareTo(zero) === 0) {
+      return false;
+    }
+    const bigOne = new BigInteger("1");
+    if (AorB.gcd(this.group.getN()).compareTo(bigOne) !== 0) {
+      return false;
+    }
+
+    return true;
+  }
+  private calculateU(): BigInteger {
+    if (
+      !this.isPublicValid(this.ephemeralPublicB) ||
+      !this.isPublicValid(this.ephemeralPublicA)
+    ) {
+      this.u = null;
+      throw new Error("both A and B must be known to calculate u");
+    }
+
+    const hash = createHash("sha256");
+    hash.update(
+      new TextEncoder().encode(
+        this.ephemeralPublicA.toString() + this.ephemeralPublicB.toString()
+      )
+    );
+
+    this.u = new BigInteger(hash.digest().toString("hex"), 16);
+    if (this.u.compareTo(zero) === 0) {
+      throw new Error("u == 0, which is a bad thing");
+    }
+    return this.u;
+  }
+}
@@ -0,0 +1,163 @@
+import { hexToBigInt } from "../utils/hex";
+import { BigInteger } from "jsbn";
+export const minExponentSize = 32;
+
+export class SrpGroup {
+  private g: BigInteger;
+  private n: BigInteger;
+  public label: string;
+  public exponentSize: number;
+
+  public constructor(
+    g: BigInteger,
+    n: BigInteger,
+    label: string,
+    exponentSize: number
+  ) {
+    this.g = g;
+    this.n = n;
+    this.label = label;
+    this.exponentSize = exponentSize;
+  }
+
+  public getN(): BigInteger {
+    return this.n;
+  }
+
+  public getGenerator(): BigInteger {
+    return this.g;
+  }
+}
+
+const g2048n =
+  "0xAC6BDB41324A9A9BF166DE5E1389582FAF72B6651987EE07FC319294" +
+  "3DB56050A37329CBB4A099ED8193E0757767A13DD52312AB4B03310D" +
+  "CD7F48A9DA04FD50E8083969EDB767B0CF6095179A163AB3661A05FB" +
+  "D5FAAAE82918A9962F0B93B855F97993EC975EEAA80D740ADBF4FF74" +
+  "7359D041D5C33EA71D281E446B14773BCA97B43A23FB801676BD207A" +
+  "436C6481F1D2B9078717461A5B9D32E688F87748544523B524B0D57D" +
+  "5EA77A2775D2ECFA032CFBDBF52FB3786160279004E57AE6AF874E73" +
+  "03CE53299CCC041C7BC308D82A5698F3A8D0C38271AE35F8E9DBFBB6" +
+  "94B5C803D89F7AE435DE236D525F54759B65E372FCD68EF20FA7111F" +
+  "9E4AFF73";
+
+const g3072n =
+  "0xFFFFFFFFFFFFFFFFC90FDAA22168C234C4C6628B80DC1CD1" +
+  "29024E088A67CC74020BBEA63B139B22514A08798E3404DD" +
+  "EF9519B3CD3A431B302B0A6DF25F14374FE1356D6D51C245" +
+  "E485B576625E7EC6F44C42E9A637ED6B0BFF5CB6F406B7ED" +
+  "EE386BFB5A899FA5AE9F24117C4B1FE649286651ECE45B3D" +
+  "C2007CB8A163BF0598DA48361C55D39A69163FA8FD24CF5F" +
+  "83655D23DCA3AD961C62F356208552BB9ED529077096966D" +
+  "670C354E4ABC9804F1746C08CA18217C32905E462E36CE3B" +
+  "E39E772C180E86039B2783A2EC07A28FB5C55DF06F4C52C9" +
+  "DE2BCBF6955817183995497CEA956AE515D2261898FA0510" +
+  "15728E5A8AAAC42DAD33170D04507A33A85521ABDF1CBA64" +
+  "ECFB850458DBEF0A8AEA71575D060C7DB3970F85A6E1E4C7" +
+  "ABF5AE8CDB0933D71E8C94E04A25619DCEE3D2261AD2EE6B" +
+  "F12FFA06D98A0864D87602733EC86A64521F2B18177B200C" +
+  "BBE117577A615D6C770988C0BAD946E208E24FA074E5AB31" +
+  "43DB5BFCE0FD108E4B82D120A93AD2CAFFFFFFFFFFFFFFFF";
+
+const g4096n =
+  "0xFFFFFFFFFFFFFFFFC90FDAA22168C234C4C6628B80DC1CD129024E08" +
+  "8A67CC74020BBEA63B139B22514A08798E3404DDEF9519B3CD3A431B" +
+  "302B0A6DF25F14374FE1356D6D51C245E485B576625E7EC6F44C42E9" +
+  "A637ED6B0BFF5CB6F406B7EDEE386BFB5A899FA5AE9F24117C4B1FE6" +
+  "49286651ECE45B3DC2007CB8A163BF0598DA48361C55D39A69163FA8" +
+  "FD24CF5F83655D23DCA3AD961C62F356208552BB9ED529077096966D" +
+  "670C354E4ABC9804F1746C08CA18217C32905E462E36CE3BE39E772C" +
+  "180E86039B2783A2EC07A28FB5C55DF06F4C52C9DE2BCBF695581718" +
+  "3995497CEA956AE515D2261898FA051015728E5A8AAAC42DAD33170D" +
+  "04507A33A85521ABDF1CBA64ECFB850458DBEF0A8AEA71575D060C7D" +
+  "B3970F85A6E1E4C7ABF5AE8CDB0933D71E8C94E04A25619DCEE3D226" +
+  "1AD2EE6BF12FFA06D98A0864D87602733EC86A64521F2B18177B200C" +
+  "BBE117577A615D6C770988C0BAD946E208E24FA074E5AB3143DB5BFC" +
+  "E0FD108E4B82D120A92108011A723C12A787E6D788719A10BDBA5B26" +
+  "99C327186AF4E23C1A946834B6150BDA2583E9CA2AD44CE8DBBBC2DB" +
+  "04DE8EF92E8EFC141FBECAA6287C59474E6BC05D99B2964FA090C3A2" +
+  "233BA186515BE7ED1F612970CEE2D7AFB81BDD762170481CD0069127" +
+  "D5B05AA993B4EA988D8FDDC186FFB7DC90A6C08F4DF435C934063199" +
+  "FFFFFFFFFFFFFFFF";
+
+const g6144n =
+  "0xFFFFFFFFFFFFFFFFC90FDAA22168C234C4C6628B80DC1CD129024E08" +
+  "8A67CC74020BBEA63B139B22514A08798E3404DDEF9519B3CD3A431B" +
+  "302B0A6DF25F14374FE1356D6D51C245E485B576625E7EC6F44C42E9" +
+  "A637ED6B0BFF5CB6F406B7EDEE386BFB5A899FA5AE9F24117C4B1FE6" +
+  "49286651ECE45B3DC2007CB8A163BF0598DA48361C55D39A69163FA8" +
+  "FD24CF5F83655D23DCA3AD961C62F356208552BB9ED529077096966D" +
+  "670C354E4ABC9804F1746C08CA18217C32905E462E36CE3BE39E772C" +
+  "180E86039B2783A2EC07A28FB5C55DF06F4C52C9DE2BCBF695581718" +
+  "3995497CEA956AE515D2261898FA051015728E5A8AAAC42DAD33170D" +
+  "04507A33A85521ABDF1CBA64ECFB850458DBEF0A8AEA71575D060C7D" +
+  "B3970F85A6E1E4C7ABF5AE8CDB0933D71E8C94E04A25619DCEE3D226" +
+  "1AD2EE6BF12FFA06D98A0864D87602733EC86A64521F2B18177B200C" +
+  "BBE117577A615D6C770988C0BAD946E208E24FA074E5AB3143DB5BFC" +
+  "E0FD108E4B82D120A92108011A723C12A787E6D788719A10BDBA5B26" +
+  "99C327186AF4E23C1A946834B6150BDA2583E9CA2AD44CE8DBBBC2DB" +
+  "04DE8EF92E8EFC141FBECAA6287C59474E6BC05D99B2964FA090C3A2" +
+  "233BA186515BE7ED1F612970CEE2D7AFB81BDD762170481CD0069127" +
+  "D5B05AA993B4EA988D8FDDC186FFB7DC90A6C08F4DF435C934028492" +
+  "36C3FAB4D27C7026C1D4DCB2602646DEC9751E763DBA37BDF8FF9406" +
+  "AD9E530EE5DB382F413001AEB06A53ED9027D831179727B0865A8918" +
+  "DA3EDBEBCF9B14ED44CE6CBACED4BB1BDB7F1447E6CC254B33205151" +
+  "2BD7AF426FB8F401378CD2BF5983CA01C64B92ECF032EA15D1721D03" +
+  "F482D7CE6E74FEF6D55E702F46980C82B5A84031900B1C9E59E7C97F" +
+  "BEC7E8F323A97A7E36CC88BE0F1D45B7FF585AC54BD407B22B4154AA" +
+  "CC8F6D7EBF48E1D814CC5ED20F8037E0A79715EEF29BE32806A1D58B" +
+  "B7C5DA76F550AA3D8A1FBFF0EB19CCB1A313D55CDA56C9EC2EF29632" +
+  "387FE8D76E3C0468043E8F663F4860EE12BF2D5B0B7474D6E694F91E" +
+  "6DCC4024FFFFFFFFFFFFFFFF";
+
+const g8192n =
+  "0xFFFFFFFFFFFFFFFFC90FDAA22168C234C4C6628B80DC1CD129024E08" +
+  "8A67CC74020BBEA63B139B22514A08798E3404DDEF9519B3CD3A431B" +
+  "302B0A6DF25F14374FE1356D6D51C245E485B576625E7EC6F44C42E9" +
+  "A637ED6B0BFF5CB6F406B7EDEE386BFB5A899FA5AE9F24117C4B1FE6" +
+  "49286651ECE45B3DC2007CB8A163BF0598DA48361C55D39A69163FA8" +
+  "FD24CF5F83655D23DCA3AD961C62F356208552BB9ED529077096966D" +
+  "670C354E4ABC9804F1746C08CA18217C32905E462E36CE3BE39E772C" +
+  "180E86039B2783A2EC07A28FB5C55DF06F4C52C9DE2BCBF695581718" +
+  "3995497CEA956AE515D2261898FA051015728E5A8AAAC42DAD33170D" +
+  "04507A33A85521ABDF1CBA64ECFB850458DBEF0A8AEA71575D060C7D" +
+  "B3970F85A6E1E4C7ABF5AE8CDB0933D71E8C94E04A25619DCEE3D226" +
+  "1AD2EE6BF12FFA06D98A0864D87602733EC86A64521F2B18177B200C" +
+  "BBE117577A615D6C770988C0BAD946E208E24FA074E5AB3143DB5BFC" +
+  "E0FD108E4B82D120A92108011A723C12A787E6D788719A10BDBA5B26" +
+  "99C327186AF4E23C1A946834B6150BDA2583E9CA2AD44CE8DBBBC2DB" +
+  "04DE8EF92E8EFC141FBECAA6287C59474E6BC05D99B2964FA090C3A2" +
+  "233BA186515BE7ED1F612970CEE2D7AFB81BDD762170481CD0069127" +
+  "D5B05AA993B4EA988D8FDDC186FFB7DC90A6C08F4DF435C934028492" +
+  "36C3FAB4D27C7026C1D4DCB2602646DEC9751E763DBA37BDF8FF9406" +
+  "AD9E530EE5DB382F413001AEB06A53ED9027D831179727B0865A8918" +
+  "DA3EDBEBCF9B14ED44CE6CBACED4BB1BDB7F1447E6CC254B33205151" +
+  "2BD7AF426FB8F401378CD2BF5983CA01C64B92ECF032EA15D1721D03" +
+  "F482D7CE6E74FEF6D55E702F46980C82B5A84031900B1C9E59E7C97F" +
+  "BEC7E8F323A97A7E36CC88BE0F1D45B7FF585AC54BD407B22B4154AA" +
+  "CC8F6D7EBF48E1D814CC5ED20F8037E0A79715EEF29BE32806A1D58B" +
+  "B7C5DA76F550AA3D8A1FBFF0EB19CCB1A313D55CDA56C9EC2EF29632" +
+  "387FE8D76E3C0468043E8F663F4860EE12BF2D5B0B7474D6E694F91E" +
+  "6DBE115974A3926F12FEE5E438777CB6A932DF8CD8BEC4D073B931BA" +
+  "3BC832B68D9DD300741FA7BF8AFC47ED2576F6936BA424663AAB639C" +
+  "5AE4F5683423B4742BF1C978238F16CBE39D652DE3FDB8BEFC848AD9" +
+  "22222E04A4037C0713EB57A81A23F0C73473FC646CEA306B4BCBC886" +
+  "2F8385DDFA9D4B7FA2C087E879683303ED5BDD3A062B3CF5B3A278A6" +
+  "6D2A13F83F44F82DDF310EE074AB6A364597E899A0255DC164F31CC5" +
+  "0846851DF9AB48195DED7EA1B1D510BD7EE74D73FAF36BC31ECFA268" +
+  "359046F4EB879F924009438B481C6CD7889A002ED5EE382BC9190DA6" +
+  "FC026E479558E4475677E9AA9E3050E2765694DFC81F56E880B96E71" +
+  "60C980DD98EDD3DFFFFFFFFFFFFFFFFF";
+
+export const knownGroups = {
+  2048: new SrpGroup(new BigInteger("2"), hexToBigInt(g2048n), "5054A2048", 27),
+  3072: new SrpGroup(new BigInteger("5"), hexToBigInt(g3072n), "5054A3072", 32),
+  4096: new SrpGroup(new BigInteger("5"), hexToBigInt(g4096n), "5054A4096", 38),
+  6144: new SrpGroup(new BigInteger("5"), hexToBigInt(g6144n), "5054A6144", 43),
+  8192: new SrpGroup(
+    new BigInteger("19"),
+    hexToBigInt(g8192n),
+    "5054A8192",
+    48
+  ),
+};
@@ -0,0 +1,55 @@
+import assert from "assert";
+import { bigIntToBytes } from "./bigint";
+
+// Test cases
+function runTests() {
+  // Test zero
+  assert.deepStrictEqual(
+    Array.from(bigIntToBytes(0n)),
+    [],
+    "Zero should return empty array"
+  );
+
+  // Test single byte values
+  assert.deepStrictEqual(
+    Array.from(bigIntToBytes(255n)),
+    [255],
+    "255 should be [255]"
+  );
+
+  // Test two byte values
+  assert.deepStrictEqual(
+    Array.from(bigIntToBytes(256n)),
+    [1, 0],
+    "256 should be [1, 0]"
+  );
+
+  // Test negative values
+  assert.deepStrictEqual(
+    Array.from(bigIntToBytes(-255n)),
+    [255],
+    "Negative values should return same as positive"
+  );
+
+  // Test larger numbers
+  assert.deepStrictEqual(
+    Array.from(bigIntToBytes(65535n)),
+    [255, 255],
+    "65535 should be [255, 255]"
+  );
+
+  // Test very large number
+  assert.deepStrictEqual(
+    Array.from(bigIntToBytes(0x123456789an)),
+    [18, 52, 86, 120, 154],
+    "0x123456789a should be [18, 52, 86, 120, 154]"
+  );
+
+  console.log("All tests passed!");
+}
+
+try {
+  runTests();
+} catch (error) {
+  console.error("Test failed:", (error as Error).message);
+}