save file

javascript-2020 · javascript-2020 · commit 1fa5e3f4df5d · 2026-04-30T13:03:20.000+01:00
diff --git a/blog/26-04-26/x509-certificates-in-js---encrypt-decrypt-data/ex/rsa-encrypt-decrypt-nodejs.js b/blog/26-04-26/x509-certificates-in-js---encrypt-decrypt-data/ex/rsa-encrypt-decrypt-nodejs.js
@@ -0,0 +1,230 @@
+
+
+!async function(){
+                                                                                console.clear();
+                                                                                
+        const crypto            = require('crypto');
+        
+        var {key,cert}          = setup();
+        
+        
+        
+        
+        var secret              = 'hello world';
+        var blob                = new Blob([secret]);
+        
+        
+        var encrypted_blob      = await encrypt(blob,cert);
+        var b64                 = await blob_b64(encrypted_blob);
+                                                                                console.log('Encrypted:',b64);
+                                                                                
+        var encrypted_blob      = b64_blob(b64);
+        var blob                = await decrypt(encrypted_blob,key);
+        var decrypted           = await blob.text();
+                                                                                console.log('Decrypted:', decrypted);
+                                                                                
+                                                                                
+  //:
+  
+  
+        function extract_spki(certPem){
+        
+              certPem             = normalisePem(certPem);
+              var publicKey       = crypto.createPublicKey(certPem);
+              var spkiDer         = publicKey.export({type:'spki',format:'der'});
+              var uint8           = new Uint8Array(spkiDer);
+              return uint8
+              
+        }//extract_spki
+        
+        
+        async function pub_key(cert){
+        
+              var spki      = extract_spki(cert);
+              var buf       = spki.buffer;
+              var pub_key   = await crypto.subtle.importKey('spki',buf,{name:'RSA-OAEP',hash:'SHA-256'},true,['encrypt']);
+              return pub_key;
+              
+        }//pub_key
+        
+        
+        async function encrypt(blob,cert){
+        
+              var publicKey     = await pub_key(cert);
+              var buf           = await blob.arrayBuffer();
+              var encrypted     = await crypto.subtle.encrypt({name:'RSA-OAEP'},publicKey,buf);
+              var uint8         = new Uint8Array(encrypted);
+              var blob          = new Blob([uint8]);
+              return blob;
+              
+        }//encrypt
+        
+        
+  //:
+  
+  
+        async function priv_key(pem){
+        
+              var b64         = pem.replace(/-----BEGIN PRIVATE KEY-----/, '')
+                                  .replace(/-----END PRIVATE KEY-----/, '')
+                                  .replace(/\s+/g, '');
+              var uint8       = b64_uint8(b64);
+              var buf         = uint8.buffer;
+              var priv_key    = await crypto.subtle.importKey('pkcs8',buf,{name:'RSA-OAEP',hash:'SHA-256',},true,['decrypt']);
+              return priv_key;
+              
+        }//priv_key
+        
+        
+        async function decrypt(blob,key){
+        
+              var privateKey        = await priv_key(key);
+              var uint8             = await blob_uint8(blob);
+              var buffer            = await crypto.subtle.decrypt({name:'RSA-OAEP',},privateKey,uint8);
+              var blob              = new Blob([buffer]);
+              return blob;
+              
+        }//decrypt
+        
+        
+  //:
+  
+  
+        function b64_uint8(b64){
+        
+              var bin       = atob(b64);
+              var uint8     = bin_uint8(bin);
+              return uint8;
+              
+        }//b64_uint8
+        
+        
+        async function blob_uint8(blob){
+        
+              var buf     = await blob.arrayBuffer();
+              var uint8   = new Uint8Array(buf);
+              return uint8;
+              
+        }//blob_uint8
+        
+        
+        async function blob_b64(blob){
+        
+              var buf     = await blob.arrayBuffer();
+              var bytes   = new Uint8Array(buf);
+              var bin     = bytes.reduce((acc,byte)=>acc+=String.fromCharCode(byte),'');
+              var b64     = btoa(bin);
+              return b64;
+              
+        }//blob_b64
+        
+        
+        function b64_blob(b64){
+        
+              var bin     = atob(b64);
+              var bytes   = [...bin].map(c=>c.charCodeAt(0));
+              var buf     = new Uint8Array(bytes);
+              var blob    = new Blob([buf]);
+              return blob;
+              
+        }//b64_blob
+        
+        
+        function bin_uint8(bin){
+        
+              var uint8   = Uint8Array.from(bin,c=>c.charCodeAt(0));
+              return uint8;
+              
+        }//bin_uint8
+        
+        
+        function normalisePem(pem){
+        
+              pem   = pem.replace(/\r/g,'');
+              var lines   = pem.split('\n');
+              var n       = lines.length;
+              for(var i=1;i<n-1;i++){
+              
+                    var line    = lines[i];
+                    line        = line.trimStart();
+                    lines[i]     = line;
+                    
+              }//for
+              pem   = lines.join('\n').trim();
+              return pem;
+              
+        }//normalisePem
+        
+        
+  //:
+  
+  
+        function setup(){
+        
+              var key   = `
+                    -----BEGIN PRIVATE KEY-----
+                    MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQCxmOIm6QsAC/59
+                    OMC/fkLkf4eAuKggR8400SkbtquAk7+z/4mrdlnCnOnpUQqUEr/AN6xDJZqkbxRL
+                    ZRwtlaffZbER1cW3Tbk8xDOzmQiVF/frLJwXjiK8JzfVnqpdVym5w5nK313hJ6OX
+                    tQBrdfMgMKTA84nhbLHtW2CFbOY3yc7dntuUqRkAY53Hry3R3n5pZtJdyjTEVnoz
+                    fURCwEFfnfQxMJJ8ia5oG9w5MIZXi2s+AC2+WCEXYU3K+Wrua74M0S1cLlgRojer
+                    sOctsTpppXLpDh+OtINGiLI9citrH+nLBf61N8Vh5Pzqpx07k4J1qLoBGDXhs9IX
+                    bJZEBhuBAgMBAAECggEANyd0rILZULVo3ni+m3nZyl60tUwjoorKRmriqmGrl23L
+                    Llpg5egGbkMO/c+WSnAcLtTbYasPAJwioFuRSbLdhKpvOEu8cHXp3i5MpC0Vlj/w
+                    VY/wFfylWuuPEn+JBx3nrnJJk9CUtjT6QEYNEFJ8I/YXZHj9zA1WoJEtQ6KTSKWV
+                    c9Ni4SxYqkY0rBvzT/2gGeY2MbGPUGUENLdMFxRdPPCu4XxmM/C/vVG0jJKbvBDT
+                    8UOSHUwGCpnVSqWAeqNYyDjvZu+unDLZXSc87QSN8Y4H9OGAJ96YW1AGcSamkz8m
+                    Qb0u4vpFnfjzhCN4IBWMZNq8DPV7J3MJwK1RzdglBQKBgQDw9X7DrWDC//+D8p8D
+                    2UIN8OlTeVnLveUFZbQLoPPIPaEkw02K2m4Ho8+g/lHnHRygh/aRds9RiBKJ0ydv
+                    gkJwkN9JJ1YzRfpXUNCY+Dv83yXvnoVaX2db/gpFTEEYdU0f7n+GxeEfeIAepcUw
+                    24RSQv5pwT6PhDK6D//mX9FuvwKBgQC8rt9SBPODD4lbjGEvpQGD1Y0HQGma/4Vo
+                    9XAoqnJZCt7DgNAt52Aq9fAC2hR263x2yh4/Bx7pkDCRLAvz2UpNU3jyNRUNVszm
+                    INVv5u1vrO/dnWeqHL1IkNM6wPQzMu5HFuGzkK/hqqxHq+vx1vaXnylXAfWyh2/Y
+                    zZCakdVFvwKBgDLFd5Vhhd7ws/UofSsBbzKizXciPbJ5a7VMbbh5jIRnv/mQEVmt
+                    lruTX59rlvRcpPiKTYDvCNYEFuvliwyq5Lb1P6cZW8dn+kzFoX5p57HrjwHDZBPb
+                    wFqY168sVxcBOGP/C+3o6fuIl25dvYQC7QmsRhEgf78butiLoH75N5bfAoGBALbY
+                    K9earrRCGRTba86080vjZUAyvmQS3CDDQAZYbmk1bHw+Vv806e+X1xecaBp5x2qC
+                    IV9osh8auMXlzktnNWbLzjfBEv6TMAqOpOdE/LCtAOFcyPmD0jYBCoE0PTFkWJ4R
+                    YXUWcCqar0rhIsuASgTSm0gSwRtZvhx10HzJd8iXAoGAB4R5cCA6RAVzlJVXYVQ7
+                    8rAgrI4TiQ6+Jzdq9VNRyLnMJ1ABIN5RK4pa+Gd4LQuSWPyAp8PoVzrN9tv3x0om
+                    yu1oIACUws53sGrzHpEEvCsUMzzLoDjukcViWE3njfQCq8mhW8JUH15lAh/+L7rK
+                    7mJ3nfrCVI3DR83ar/sRG4Q=
+                    -----END PRIVATE KEY-----
+              `;
+              
+              var cert    = `
+                    -----BEGIN CERTIFICATE-----
+                    MIIDfDCCAmSgAwIBAgIIpL8fq0UzAwgwDQYJKoZIhvcNAQELBQAwJTEjMCEGA1UE
+                    AxMabG9jYWxob3N0IHRlc3QgY2VydGlmaWNhdGUwHhcNMjYwNDI2MTgxOTAwWhcN
+                    MjcwNDI2MTgxOTAwWjAlMSMwIQYDVQQDExpsb2NhbGhvc3QgdGVzdCBjZXJ0aWZp
+                    Y2F0ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALGY4ibpCwAL/n04
+                    wL9+QuR/h4C4qCBHzjTRKRu2q4CTv7P/iat2WcKc6elRCpQSv8A3rEMlmqRvFEtl
+                    HC2Vp99lsRHVxbdNuTzEM7OZCJUX9+ssnBeOIrwnN9Weql1XKbnDmcrfXeEno5e1
+                    AGt18yAwpMDzieFsse1bYIVs5jfJzt2e25SpGQBjncevLdHefmlm0l3KNMRWejN9
+                    RELAQV+d9DEwknyJrmgb3DkwhleLaz4ALb5YIRdhTcr5au5rvgzRLVwuWBGiN6uw
+                    5y2xOmmlcukOH460g0aIsj1yK2sf6csF/rU3xWHk/OqnHTuTgnWougEYNeGz0hds
+                    lkQGG4ECAwEAAaOBrzCBrDAMBgNVHRMBAf8EAjAAMCAGA1UdEQQZMBeCCWxvY2Fs
+                    aG9zdIcEfwAAAYcEfwAAAjAdBgNVHQ4EFgQU3k/k6mVExJziZIwxZxmdsP6lPJEw
+                    CwYDVR0PBAQDAgL0MDsGA1UdJQQ0MDIGCCsGAQUFBwMCBggrBgEFBQcDAwYIKwYB
+                    BQUHAwQGCCsGAQUFBwMBBggrBgEFBQcDCDARBglghkgBhvhCAQEEBAMCAOcwDQYJ
+                    KoZIhvcNAQELBQADggEBAEyq4Fog+tbPN5jzjWz19GreYZdStt7MDPLW9nbL38TK
+                    6DlGZV37HTGdp5F+IWDImh2gCUzPSK9D9QPWNVVG85qC3oZnSktKxjeucjBsMtMi
+                    v18gTYyCdF/nQm34czuYjnPA44RJCiqsJreBtaNERPHP+ki++nsq707dBq8pfl+r
+                    ox+kK4iUcI3x/F6CvDMru1LXxAU81kLY+F7RqJRieZr+SaOxPtlz4+U/HxY5k9FK
+                    ImLsCyhzLJREirc892Cbb8s8Q9mJKnQtydpG7U2SGd/D+Gapwql5Lg1VM+PaJgWW
+                    8nq7W+J/VuFG+JOzYSKe9qzEVnsmnbxvxwZpW6VuFEE=
+                    -----END CERTIFICATE-----
+              `;
+              
+              return {key,cert};
+              
+        }//setup
+        
+        
+        
+        
+}();
+
+
+
+
