feat: improve perf (#117)

2025-06-25 04:32:02 +00:00 · 2018-01-28 07:54:04 +13:00
parent 2c0dc706b7
commit cdcca5f828
6 changed files with 117 additions and 39 deletions
--- a/src/keys/index.js
+++ b/src/keys/index.js
@ -2,8 +2,7 @@

 const protobuf = require('protons')
 const keysPBM = protobuf(require('./keys.proto'))
-const jsrsasign = require('jsrsasign')
-const KEYUTIL = jsrsasign.KEYUTIL
+const forge = require('node-forge')

 exports = module.exports

@ -120,13 +119,13 @@ exports.marshalPrivateKey = (key, type) => {

 exports.import = (pem, password, callback) => {
  try {
-    const key = KEYUTIL.getKey(pem, password)
-    if (key instanceof jsrsasign.RSAKey) {
-      const jwk = KEYUTIL.getJWKFromKey(key)
-      return supportedKeys.rsa.fromJwk(jwk, callback)
-    } else {
-      throw new Error(`Unknown key type '${key.prototype.toString()}'`)
+    const key = forge.pki.decryptRsaPrivateKey(pem, password)
+    if (key === null) {
+      throw new Error('Cannot read the key, most likely the password is wrong or not a RSA key')
    }
+    let der = forge.asn1.toDer(forge.pki.privateKeyToAsn1(key))
+    der = Buffer.from(der.getBytes(), 'binary')
+    return supportedKeys.rsa.unmarshalRsaPrivateKey(der, callback)
  } catch (err) {
    callback(err)
  }
--- a/src/keys/rsa-class.js
+++ b/src/keys/rsa-class.js
@ -6,7 +6,7 @@ const bs58 = require('bs58')

 const crypto = require('./rsa')
 const pbm = protobuf(require('./keys.proto'))
-const KEYUTIL = require('jsrsasign').KEYUTIL
+const forge = require('node-forge')
 const setImmediate = require('async/setImmediate')

 class RsaPublicKey {
@ -127,20 +127,29 @@ class RsaPrivateKey {
      format = 'pkcs-8'
    }

-    setImmediate(() => {
-      ensure(callback)
+    ensure(callback)

+    setImmediate(() => {
      let err = null
      let pem = null
      try {
-        const key = KEYUTIL.getKey(this._key) // _key is a JWK (JSON Web Key)
+        const buffer = new forge.util.ByteBuffer(this.marshal())
+        const asn1 = forge.asn1.fromDer(buffer)
+        const privateKey = forge.pki.privateKeyFromAsn1(asn1)
+
        if (format === 'pkcs-8') {
-          pem = KEYUTIL.getPEM(key, 'PKCS8PRV', password)
+          const options = {
+            algorithm: 'aes256',
+            count: 10000,
+            saltSize: 128 / 8,
+            prfAlgorithm: 'sha512'
+          }
+          pem = forge.pki.encryptRsaPrivateKey(privateKey, password, options)
        } else {
          err = new Error(`Unknown export format '${format}'`)
        }
-      } catch (e) {
-        err = e
+      } catch (_err) {
+        err = _err
      }

      callback(err, pem)
@ -150,6 +159,7 @@ class RsaPrivateKey {

 function unmarshalRsaPrivateKey (bytes, callback) {
  const jwk = crypto.utils.pkcs1ToJwk(bytes)
+
  crypto.unmarshalPrivateKey(jwk, (err, keys) => {
    if (err) {
      return callback(err)
@ -175,18 +185,18 @@ function fromJwk (jwk, callback) {
  })
 }

-function generateKeyPair (bits, cb) {
+function generateKeyPair (bits, callback) {
  crypto.generateKey(bits, (err, keys) => {
    if (err) {
-      return cb(err)
+      return callback(err)
    }

-    cb(null, new RsaPrivateKey(keys.privateKey, keys.publicKey))
+    callback(null, new RsaPrivateKey(keys.privateKey, keys.publicKey))
  })
 }

-function ensure (cb) {
-  if (typeof cb !== 'function') {
+function ensure (callback) {
+  if (typeof callback !== 'function') {
    throw new Error('callback is required')
  }
 }