From 47043e8a5df6722db013e1ac19babb6d83a081db Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ram=C3=B3n=20Garc=C3=ADa=20Fern=C3=A1ndez?=
 <ramon.garcia.f@gmail.com>
Date: Thu, 18 Jun 2020 23:36:24 +0200
Subject: [PATCH] Ported code from luacrypto to luaossl

---
 luajwtjitsi-1.3-7.rockspec |  2 +-
 luajwtjitsi.lua            | 29 +++++++++++++++++++++--------
 2 files changed, 22 insertions(+), 9 deletions(-)

diff --git a/luajwtjitsi-1.3-7.rockspec b/luajwtjitsi-1.3-7.rockspec
index dec6616..8979816 100644
--- a/luajwtjitsi-1.3-7.rockspec
+++ b/luajwtjitsi-1.3-7.rockspec
@@ -15,7 +15,7 @@ description = {
 
 dependencies = {
 	"lua >= 5.1",
-	"luacrypto >= 0.3.2-1",
+	"luaossl >= 20190731-0",
 	"lua-cjson >= 2.1.0",
 	"lbase64 >= 20120807-3"
 }
diff --git a/luajwtjitsi.lua b/luajwtjitsi.lua
index d92c00b..9e26007 100644
--- a/luajwtjitsi.lua
+++ b/luajwtjitsi.lua
@@ -1,29 +1,42 @@
 local cjson  = require 'cjson'
 local base64 = require 'base64'
-local crypto = require 'crypto'
+local openssl = require 'openssl'
+local pkey = require 'openssl.pkey'
+local digest = require 'openssl.digest'
+local hmac = require 'openssl.hmac'
 
 local function signRS (data, key, algo)
-	local privkey = crypto.pkey.from_pem(key, true)
+	local privkey = pkey.new(key, "PEM")
 	if privkey == nil then
 		return nil, 'Not a private PEM key'
 	else
-		return crypto.sign(algo, data, privkey)
+		local digest_o = digest.new(algo)
+		local digest_result = digest_o:final(digest_o, data)
+		return privkey:sign(digest_result)
 	end
 end
 
 local function verifyRS (data, signature, key, algo)
-	local pubkey = crypto.pkey.from_pem(key)
+	local pubkey = pkey.new(key, "PEM")
 	if pubkey == nil then
 		return nil, 'Not a public PEM key'
 	else
-		return crypto.verify(algo, data, signature, pubkey)
+		local digest_o = digest.new(algo)
+		local digest_result = digest_o:final(data)
+		return pubkey:verify(digest_result, signature)
 	end
 end
 
+local function hmacDigest(algo, data, key)
+	local digest_o = hmac.new(key, algo)
+	return digest_o:final(data)
+
+end
+
 local alg_sign = {
-	['HS256'] = function(data, key) return crypto.hmac.digest('sha256', data, key, true) end,
-	['HS384'] = function(data, key) return crypto.hmac.digest('sha384', data, key, true) end,
-	['HS512'] = function(data, key) return crypto.hmac.digest('sha512', data, key, true) end,
+	['HS256'] = function(data, key) return hmacDigest('sha256', data, key) end,
+	['HS384'] = function(data, key) return hmacDigest('sha384', data, key) end,
+	['HS512'] = function(data, key) return hmacDigest('sha512', data, key) end,
 	['RS256'] = function(data, key) return signRS(data, key, 'sha256') end,
 	['RS384'] = function(data, key) return signRS(data, key, 'sha384') end,
 	['RS512'] = function(data, key) return signRS(data, key, 'sha512') end