From fff510b85223274822709ea6319f1aa2ec594f51 Mon Sep 17 00:00:00 2001
From: Erny <erny@castellotti.net>
Date: Sat, 19 Oct 2024 21:49:14 +0200
Subject: Move CIG GPON password generator to frontend

The password generator algorithm has been reversed and published on Github
by a third party (https://github.com/amnemonic/nokia-ont-research).
Therefore there is no reason to keep our original implementation hidden.

Signed-off-by: Erny <erny@castellotti.net>
---
 assets/js/cigpassword.js | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)
 create mode 100644 assets/js/cigpassword.js

(limited to 'assets')

diff --git a/assets/js/cigpassword.js b/assets/js/cigpassword.js
new file mode 100644
index 0000000..7fbcf0f
--- /dev/null
+++ b/assets/js/cigpassword.js
@@ -0,0 +1,28 @@
+function hexToBytes(hex) {
+    let bytes = new Uint8Array(hex.length / 2);
+    for (let i = 0; i < hex.length; i += 2) {
+        bytes[i / 2] = parseInt(hex.substr(i, 2), 16);
+    }
+    return bytes;
+}
+
+function cigpassword_gpon(ont_serial, ont_user) {
+    const hardcoded_key = '01030a1013051764c8061419b49d0500';
+    const hardcoded_seed = '2345679abcdefghijkmnpqrstuvwxyzACDEFGHJKLMNPQRSTUVWXYZ';
+
+    let ont_vendor = ont_serial.substring(0, 4).toUpperCase();
+    let ont_id = ont_serial.substring(4).toLowerCase();
+    let formatted_serial = `${ont_vendor}${ont_id}`;
+
+    let key_bytes = CryptoJS.enc.Hex.parse(hardcoded_key);
+    let hmac = CryptoJS.HmacMD5(`${formatted_serial}-${ont_user}`, key_bytes);
+    let pw_md5_hmac = hexToBytes(hmac.toString(CryptoJS.enc.Hex));
+
+    let output = Array(pw_md5_hmac.length);
+
+    for (let i = 0; i < pw_md5_hmac.length; i++) {
+        output[i] = hardcoded_seed[pw_md5_hmac[i] % 0x36];
+    }
+
+    return output.join('');
+}
-- 
cgit v1.2.3