@lindorm/aes 0.1.3 → 0.2.0

package/dist/utils/private/key-types/get-rsa-keys.js

@@ -0,0 +1,58 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports._getRsaDecryptionKey = exports._getRsaEncryptionKey = void 0;
+const kryptos_1 = require("@lindorm/kryptos");
+const constants_1 = require("constants");
+const crypto_1 = require("crypto");
+const errors_1 = require("../../../errors");
+const calculate_content_encryption_key_size_1 = require("../calculate/calculate-content-encryption-key-size");
+const calculate_rsa_oaep_hash_1 = require("../calculate/calculate-rsa-oaep-hash");
+const _getRsaEncryptionKey = ({ encryption, kryptos, }) => {
+    if (!kryptos_1.Kryptos.isRsa(kryptos)) {
+        throw new errors_1.AesError("Invalid Kryptos instance");
+    }
+    if (kryptos.algorithm !== "RSA-OAEP" &&
+        kryptos.algorithm !== "RSA-OAEP-256" &&
+        kryptos.algorithm !== "RSA-OAEP-384" &&
+        kryptos.algorithm !== "RSA-OAEP-512") {
+        throw new errors_1.AesError("Invalid encryption key algorithm");
+    }
+    const keyLength = (0, calculate_content_encryption_key_size_1._calculateContentEncryptionKeySize)(encryption);
+    const contentEncryptionKey = (0, crypto_1.randomBytes)(keyLength);
+    const { publicKey } = kryptos.export("pem");
+    const publicEncryptionKey = (0, crypto_1.publicEncrypt)({
+        key: publicKey,
+        padding: constants_1.RSA_PKCS1_OAEP_PADDING,
+        oaepHash: (0, calculate_rsa_oaep_hash_1._calculateRsaOaepHash)(kryptos.algorithm),
+    }, contentEncryptionKey);
+    return { contentEncryptionKey, publicEncryptionKey };
+};
+exports._getRsaEncryptionKey = _getRsaEncryptionKey;
+const _getRsaDecryptionKey = ({ kryptos, publicEncryptionKey, }) => {
+    if (!kryptos_1.Kryptos.isRsa(kryptos)) {
+        throw new errors_1.AesError("Invalid Kryptos instance");
+    }
+    if (!publicEncryptionKey) {
+        throw new errors_1.AesError("Missing publicEncryptionKey");
+    }
+    if (kryptos.algorithm !== "RSA-OAEP" &&
+        kryptos.algorithm !== "RSA-OAEP-256" &&
+        kryptos.algorithm !== "RSA-OAEP-384" &&
+        kryptos.algorithm !== "RSA-OAEP-512") {
+        throw new errors_1.AesError("Invalid encryption key algorithm", {
+            debug: { kryptos },
+        });
+    }
+    const { privateKey } = kryptos.export("pem");
+    if (!privateKey) {
+        throw new errors_1.AesError("Unable to decrypt AES without private key");
+    }
+    const contentEncryptionKey = (0, crypto_1.privateDecrypt)({
+        key: privateKey,
+        padding: constants_1.RSA_PKCS1_OAEP_PADDING,
+        oaepHash: (0, calculate_rsa_oaep_hash_1._calculateRsaOaepHash)(kryptos.algorithm),
+    }, publicEncryptionKey);
+    return { contentEncryptionKey };
+};
+exports._getRsaDecryptionKey = _getRsaDecryptionKey;
+//# sourceMappingURL=get-rsa-keys.js.map

package/dist/utils/private/key-types/get-rsa-keys.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"get-rsa-keys.js","sourceRoot":"","sources":["../../../../src/utils/private/key-types/get-rsa-keys.ts"],"names":[],"mappings":";;;AAAA,8CAA2C;AAC3C,yCAAmD;AACnD,mCAAoE;AACpE,4CAA2C;AAO3C,8GAAwG;AACxG,kFAA6E;AAEtE,MAAM,oBAAoB,GAAG,CAAC,EACnC,UAAU,EACV,OAAO,GACU,EAAmB,EAAE;IACtC,IAAI,CAAC,iBAAO,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,iBAAQ,CAAC,0BAA0B,CAAC,CAAC;IACjD,CAAC;IAED,IACE,OAAO,CAAC,SAAS,KAAK,UAAU;QAChC,OAAO,CAAC,SAAS,KAAK,cAAc;QACpC,OAAO,CAAC,SAAS,KAAK,cAAc;QACpC,OAAO,CAAC,SAAS,KAAK,cAAc,EACpC,CAAC;QACD,MAAM,IAAI,iBAAQ,CAAC,kCAAkC,CAAC,CAAC;IACzD,CAAC;IAED,MAAM,SAAS,GAAG,IAAA,0EAAkC,EAAC,UAAU,CAAC,CAAC;IACjE,MAAM,oBAAoB,GAAG,IAAA,oBAAW,EAAC,SAAS,CAAC,CAAC;IAEpD,MAAM,EAAE,SAAS,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAE5C,MAAM,mBAAmB,GAAG,IAAA,sBAAa,EACvC;QACE,GAAG,EAAE,SAAS;QACd,OAAO,EAAE,kCAAsB;QAC/B,QAAQ,EAAE,IAAA,+CAAqB,EAAC,OAAO,CAAC,SAAS,CAAC;KACnD,EACD,oBAAoB,CACrB,CAAC;IAEF,OAAO,EAAE,oBAAoB,EAAE,mBAAmB,EAAE,CAAC;AACvD,CAAC,CAAC;AAhCW,QAAA,oBAAoB,wBAgC/B;AAEK,MAAM,oBAAoB,GAAG,CAAC,EACnC,OAAO,EACP,mBAAmB,GACD,EAAoB,EAAE;IACxC,IAAI,CAAC,iBAAO,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,iBAAQ,CAAC,0BAA0B,CAAC,CAAC;IACjD,CAAC;IACD,IAAI,CAAC,mBAAmB,EAAE,CAAC;QACzB,MAAM,IAAI,iBAAQ,CAAC,6BAA6B,CAAC,CAAC;IACpD,CAAC;IAED,IACE,OAAO,CAAC,SAAS,KAAK,UAAU;QAChC,OAAO,CAAC,SAAS,KAAK,cAAc;QACpC,OAAO,CAAC,SAAS,KAAK,cAAc;QACpC,OAAO,CAAC,SAAS,KAAK,cAAc,EACpC,CAAC;QACD,MAAM,IAAI,iBAAQ,CAAC,kCAAkC,EAAE;YACrD,KAAK,EAAE,EAAE,OAAO,EAAE;SACnB,CAAC,CAAC;IACL,CAAC;IAED,MAAM,EAAE,UAAU,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAE7C,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,MAAM,IAAI,iBAAQ,CAAC,2CAA2C,CAAC,CAAC;IAClE,CAAC;IAED,MAAM,oBAAoB,GAAG,IAAA,uBAAc,EACzC;QACE,GAAG,EAAE,UAAU;QACf,OAAO,EAAE,kCAAsB;QAC/B,QAAQ,EAAE,IAAA,+CAAqB,EAAC,OAAO,CAAC,SAAS,CAAC;KACnD,EACD,mBAAmB,CACpB,CAAC;IAEF,OAAO,EAAE,oBAAoB,EAAE,CAAC;AAClC,CAAC,CAAC;AAtCW,QAAA,oBAAoB,wBAsC/B"}

package/dist/utils/private/key-wrap/key-wrap.d.ts

@@ -0,0 +1,16 @@
+/// <reference types="node" />
+import { IKryptos } from "@lindorm/kryptos";
+type KeyWrapOptions = {
+    contentEncryptionKey: Buffer;
+    keyEncryptionKey: Buffer;
+    kryptos: IKryptos;
+};
+type KeyUnwrapOptions = {
+    keyEncryptionKey: Buffer;
+    kryptos: IKryptos;
+    wrappedKey: Buffer;
+};
+export declare const _aesKeyWrap: ({ contentEncryptionKey, keyEncryptionKey, kryptos, }: KeyWrapOptions) => Buffer;
+export declare const _aesKeyUnwrap: ({ keyEncryptionKey, kryptos, wrappedKey, }: KeyUnwrapOptions) => Buffer;
+export {};
+//# sourceMappingURL=key-wrap.d.ts.map

package/dist/utils/private/key-wrap/key-wrap.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"key-wrap.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/key-wrap/key-wrap.ts"],"names":[],"mappings":";AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAO5C,KAAK,cAAc,GAAG;IACpB,oBAAoB,EAAE,MAAM,CAAC;IAC7B,gBAAgB,EAAE,MAAM,CAAC;IACzB,OAAO,EAAE,QAAQ,CAAC;CACnB,CAAC;AAEF,KAAK,gBAAgB,GAAG;IACtB,gBAAgB,EAAE,MAAM,CAAC;IACzB,OAAO,EAAE,QAAQ,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;CACpB,CAAC;AAEF,eAAO,MAAM,WAAW,yDAIrB,cAAc,KAAG,MA8BnB,CAAC;AAEF,eAAO,MAAM,aAAa,+CAIvB,gBAAgB,KAAG,MAmCrB,CAAC"}

package/dist/utils/private/key-wrap/key-wrap.js

@@ -0,0 +1,66 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports._aesKeyUnwrap = exports._aesKeyWrap = void 0;
+const crypto_1 = require("crypto");
+const calculate_key_wrap_encryption_1 = require("../calculate/calculate-key-wrap-encryption");
+const AIV = "A6A6A6A6A6A6A6A6";
+const BLOCK_SIZE = 8;
+const _aesKeyWrap = ({ contentEncryptionKey, keyEncryptionKey, kryptos, }) => {
+    const algorithm = (0, calculate_key_wrap_encryption_1._calculateKeyWrapEncryption)(kryptos);
+    const n = contentEncryptionKey.length / BLOCK_SIZE;
+    let a = Buffer.from(AIV, "hex");
+    const r = [];
+    for (let i = 0; i < n; i++) {
+        r[i] = contentEncryptionKey.subarray(i * BLOCK_SIZE, (i + 1) * BLOCK_SIZE);
+    }
+    const cipher = (0, crypto_1.createCipheriv)(algorithm, keyEncryptionKey, null);
+    cipher.setAutoPadding(false);
+    for (let j = 0; j < 6; j++) {
+        for (let i = 0; i < n; i++) {
+            const b = Buffer.concat([a, r[i]]);
+            const encrypted = cipher.update(b);
+            a = encrypted.subarray(0, BLOCK_SIZE);
+            const t = n * j + i + 1;
+            const tBuffer = Buffer.alloc(BLOCK_SIZE);
+            tBuffer.writeUIntBE(t, 4, 4);
+            for (let k = 0; k < BLOCK_SIZE; k++) {
+                a[k] ^= tBuffer[k];
+            }
+            r[i] = encrypted.subarray(BLOCK_SIZE);
+        }
+    }
+    return Buffer.concat([a, ...r]);
+};
+exports._aesKeyWrap = _aesKeyWrap;
+const _aesKeyUnwrap = ({ keyEncryptionKey, kryptos, wrappedKey, }) => {
+    const encryption = (0, calculate_key_wrap_encryption_1._calculateKeyWrapEncryption)(kryptos);
+    const n = wrappedKey.length / BLOCK_SIZE - 1;
+    let a = wrappedKey.subarray(0, BLOCK_SIZE);
+    const r = [];
+    for (let i = 0; i < n; i++) {
+        r[i] = wrappedKey.subarray((i + 1) * BLOCK_SIZE, (i + 2) * BLOCK_SIZE);
+    }
+    const decipher = (0, crypto_1.createDecipheriv)(encryption, keyEncryptionKey, null);
+    decipher.setAutoPadding(false);
+    for (let j = 5; j >= 0; j--) {
+        for (let i = n - 1; i >= 0; i--) {
+            const t = n * j + i + 1;
+            const tBuffer = Buffer.alloc(BLOCK_SIZE);
+            tBuffer.writeUIntBE(t, 4, 4);
+            const aXorT = Buffer.alloc(BLOCK_SIZE);
+            for (let k = 0; k < BLOCK_SIZE; k++) {
+                aXorT[k] = a[k] ^ tBuffer[k];
+            }
+            const b = Buffer.concat([aXorT, r[i]]);
+            const decrypted = decipher.update(b);
+            a = decrypted.subarray(0, BLOCK_SIZE);
+            r[i] = decrypted.subarray(BLOCK_SIZE);
+        }
+    }
+    if (!a.equals(Buffer.from(AIV, "hex"))) {
+        throw new Error("Integrity check failed");
+    }
+    return Buffer.concat(r);
+};
+exports._aesKeyUnwrap = _aesKeyUnwrap;
+//# sourceMappingURL=key-wrap.js.map

package/dist/utils/private/key-wrap/key-wrap.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"key-wrap.js","sourceRoot":"","sources":["../../../../src/utils/private/key-wrap/key-wrap.ts"],"names":[],"mappings":";;;AACA,mCAA0D;AAC1D,8FAAyF;AAEzF,MAAM,GAAG,GAAG,kBAA2B,CAAC;AACxC,MAAM,UAAU,GAAG,CAAU,CAAC;AAcvB,MAAM,WAAW,GAAG,CAAC,EAC1B,oBAAoB,EACpB,gBAAgB,EAChB,OAAO,GACQ,EAAU,EAAE;IAC3B,MAAM,SAAS,GAAG,IAAA,2DAA2B,EAAC,OAAO,CAAC,CAAC;IAEvD,MAAM,CAAC,GAAG,oBAAoB,CAAC,MAAM,GAAG,UAAU,CAAC;IACnD,IAAI,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;IAChC,MAAM,CAAC,GAAG,EAAE,CAAC;IAEb,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC3B,CAAC,CAAC,CAAC,CAAC,GAAG,oBAAoB,CAAC,QAAQ,CAAC,CAAC,GAAG,UAAU,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,UAAU,CAAC,CAAC;IAC7E,CAAC;IAED,MAAM,MAAM,GAAG,IAAA,uBAAc,EAAC,SAAS,EAAE,gBAAgB,EAAE,IAAI,CAAC,CAAC;IACjE,MAAM,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC;IAE7B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC3B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;YAC3B,MAAM,CAAC,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YACnC,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;YACnC,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;YACtC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACxB,MAAM,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YACzC,OAAO,CAAC,WAAW,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC;YAC7B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,UAAU,EAAE,CAAC,EAAE,EAAE,CAAC;gBACpC,CAAC,CAAC,CAAC,CAAC,IAAI,OAAO,CAAC,CAAC,CAAC,CAAC;YACrB,CAAC;YACD,CAAC,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;QACxC,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,CAAC;AAClC,CAAC,CAAC;AAlCW,QAAA,WAAW,eAkCtB;AAEK,MAAM,aAAa,GAAG,CAAC,EAC5B,gBAAgB,EAChB,OAAO,EACP,UAAU,GACO,EAAU,EAAE;IAC7B,MAAM,UAAU,GAAG,IAAA,2DAA2B,EAAC,OAAO,CAAC,CAAC;IAExD,MAAM,CAAC,GAAG,UAAU,CAAC,MAAM,GAAG,UAAU,GAAG,CAAC,CAAC;IAC7C,IAAI,CAAC,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;IAC3C,MAAM,CAAC,GAAG,EAAE,CAAC;IAEb,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC3B,CAAC,CAAC,CAAC,CAAC,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,UAAU,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,UAAU,CAAC,CAAC;IACzE,CAAC;IAED,MAAM,QAAQ,GAAG,IAAA,yBAAgB,EAAC,UAAU,EAAE,gBAAgB,EAAE,IAAI,CAAC,CAAC;IACtE,QAAQ,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC;IAE/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC5B,KAAK,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;YAChC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACxB,MAAM,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YACzC,OAAO,CAAC,WAAW,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC;YAC7B,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YACvC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,UAAU,EAAE,CAAC,EAAE,EAAE,CAAC;gBACpC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;YAC/B,CAAC;YACD,MAAM,CAAC,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YACvC,MAAM,SAAS,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;YACrC,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;YACtC,CAAC,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;QACxC,CAAC;IACH,CAAC;IAED,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC,EAAE,CAAC;QACvC,MAAM,IAAI,KAAK,CAAC,wBAAwB,CAAC,CAAC;IAC5C,CAAC;IAED,OAAO,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;AAC1B,CAAC,CAAC;AAvCW,QAAA,aAAa,iBAuCxB"}

package/dist/utils/private/oct/get-oct-dir-keys.d.ts

@@ -0,0 +1,4 @@
+import { CreateCekOptions, CreateCekResult, DecryptCekOptions, DecryptCekResult } from "../../../types/private";
+export declare const _getOctDirEncryptionKey: ({ encryption, kryptos, }: CreateCekOptions) => CreateCekResult;
+export declare const _getOctDirDecryptionKey: ({ encryption, kryptos, }: DecryptCekOptions) => DecryptCekResult;
+//# sourceMappingURL=get-oct-dir-keys.d.ts.map

package/dist/utils/private/oct/get-oct-dir-keys.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"get-oct-dir-keys.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/oct/get-oct-dir-keys.ts"],"names":[],"mappings":"AAEA,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,wBAAwB,CAAC;AAGhC,eAAO,MAAM,uBAAuB,6BAGjC,gBAAgB,KAAG,eAerB,CAAC;AAEF,eAAO,MAAM,uBAAuB,6BAGjC,iBAAiB,KAAG,gBAetB,CAAC"}

package/dist/utils/private/oct/get-oct-dir-keys.js

@@ -0,0 +1,35 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports._getOctDirDecryptionKey = exports._getOctDirEncryptionKey = void 0;
+const kryptos_1 = require("@lindorm/kryptos");
+const errors_1 = require("../../../errors");
+const calculate_content_encryption_key_size_1 = require("../calculate/calculate-content-encryption-key-size");
+const _getOctDirEncryptionKey = ({ encryption, kryptos, }) => {
+    if (!kryptos_1.Kryptos.isOct(kryptos)) {
+        throw new errors_1.AesError("Invalid Kryptos", { debug: { kryptos: kryptos.toJSON() } });
+    }
+    const der = kryptos.export("der");
+    const keyLength = (0, calculate_content_encryption_key_size_1._calculateContentEncryptionKeySize)(encryption);
+    if (der.privateKey.length !== keyLength) {
+        throw new errors_1.AesError("Invalid key length", {
+            debug: { keyLength, privateKeyLength: der.privateKey.length },
+        });
+    }
+    return { contentEncryptionKey: der.privateKey };
+};
+exports._getOctDirEncryptionKey = _getOctDirEncryptionKey;
+const _getOctDirDecryptionKey = ({ encryption, kryptos, }) => {
+    if (!kryptos_1.Kryptos.isOct(kryptos)) {
+        throw new errors_1.AesError("Invalid Kryptos", { debug: { kryptos: kryptos.toJSON() } });
+    }
+    const der = kryptos.export("der");
+    const keyLength = (0, calculate_content_encryption_key_size_1._calculateContentEncryptionKeySize)(encryption);
+    if (der.privateKey.length !== keyLength) {
+        throw new errors_1.AesError("Invalid key length", {
+            debug: { keyLength, privateKeyLength: der.privateKey.length },
+        });
+    }
+    return { contentEncryptionKey: der.privateKey };
+};
+exports._getOctDirDecryptionKey = _getOctDirDecryptionKey;
+//# sourceMappingURL=get-oct-dir-keys.js.map

package/dist/utils/private/oct/get-oct-dir-keys.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"get-oct-dir-keys.js","sourceRoot":"","sources":["../../../../src/utils/private/oct/get-oct-dir-keys.ts"],"names":[],"mappings":";;;AAAA,8CAA2C;AAC3C,4CAA2C;AAO3C,8GAAwG;AAEjG,MAAM,uBAAuB,GAAG,CAAC,EACtC,UAAU,EACV,OAAO,GACU,EAAmB,EAAE;IACtC,IAAI,CAAC,iBAAO,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,iBAAQ,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,MAAM,EAAE,EAAE,EAAE,CAAC,CAAC;IAClF,CAAC;IAED,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAClC,MAAM,SAAS,GAAG,IAAA,0EAAkC,EAAC,UAAU,CAAC,CAAC;IAEjE,IAAI,GAAG,CAAC,UAAU,CAAC,MAAM,KAAK,SAAS,EAAE,CAAC;QACxC,MAAM,IAAI,iBAAQ,CAAC,oBAAoB,EAAE;YACvC,KAAK,EAAE,EAAE,SAAS,EAAE,gBAAgB,EAAE,GAAG,CAAC,UAAU,CAAC,MAAM,EAAE;SAC9D,CAAC,CAAC;IACL,CAAC;IAED,OAAO,EAAE,oBAAoB,EAAE,GAAG,CAAC,UAAU,EAAE,CAAC;AAClD,CAAC,CAAC;AAlBW,QAAA,uBAAuB,2BAkBlC;AAEK,MAAM,uBAAuB,GAAG,CAAC,EACtC,UAAU,EACV,OAAO,GACW,EAAoB,EAAE;IACxC,IAAI,CAAC,iBAAO,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,iBAAQ,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,MAAM,EAAE,EAAE,EAAE,CAAC,CAAC;IAClF,CAAC;IAED,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAClC,MAAM,SAAS,GAAG,IAAA,0EAAkC,EAAC,UAAU,CAAC,CAAC;IAEjE,IAAI,GAAG,CAAC,UAAU,CAAC,MAAM,KAAK,SAAS,EAAE,CAAC;QACxC,MAAM,IAAI,iBAAQ,CAAC,oBAAoB,EAAE;YACvC,KAAK,EAAE,EAAE,SAAS,EAAE,gBAAgB,EAAE,GAAG,CAAC,UAAU,CAAC,MAAM,EAAE;SAC9D,CAAC,CAAC;IACL,CAAC;IAED,OAAO,EAAE,oBAAoB,EAAE,GAAG,CAAC,UAAU,EAAE,CAAC;AAClD,CAAC,CAAC;AAlBW,QAAA,uBAAuB,2BAkBlC"}

package/dist/utils/private/oct/get-oct-key-wrap-keys.d.ts

@@ -0,0 +1,4 @@
+import { CreateCekOptions, CreateCekResult, DecryptCekOptions, DecryptCekResult } from "../../../types/private";
+export declare const _getOctKeyWrapEncryptionKey: ({ encryption, kryptos, }: CreateCekOptions) => CreateCekResult;
+export declare const _getOctKeyWrapDecryptionKey: ({ hkdfSalt, kryptos, publicEncryptionKey, }: DecryptCekOptions) => DecryptCekResult;
+//# sourceMappingURL=get-oct-key-wrap-keys.d.ts.map

package/dist/utils/private/oct/get-oct-key-wrap-keys.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"get-oct-key-wrap-keys.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/oct/get-oct-key-wrap-keys.ts"],"names":[],"mappings":"AAGA,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,wBAAwB,CAAC;AAMhC,eAAO,MAAM,2BAA2B,6BAGrC,gBAAgB,KAAG,eA0BrB,CAAC;AAEF,eAAO,MAAM,2BAA2B,gDAIrC,iBAAiB,KAAG,gBAuBtB,CAAC"}

package/dist/utils/private/oct/get-oct-key-wrap-keys.js

@@ -0,0 +1,55 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports._getOctKeyWrapDecryptionKey = exports._getOctKeyWrapEncryptionKey = void 0;
+const kryptos_1 = require("@lindorm/kryptos");
+const crypto_1 = require("crypto");
+const errors_1 = require("../../../errors");
+const calculate_content_encryption_key_size_1 = require("../calculate/calculate-content-encryption-key-size");
+const calculate_key_wrap_size_1 = require("../calculate/calculate-key-wrap-size");
+const hkdf_1 = require("../key-derivation/hkdf");
+const key_wrap_1 = require("../key-wrap/key-wrap");
+const _getOctKeyWrapEncryptionKey = ({ encryption, kryptos, }) => {
+    if (!kryptos_1.Kryptos.isOct(kryptos)) {
+        throw new errors_1.AesError("Invalid Kryptos", { debug: { kryptos: kryptos.toJSON() } });
+    }
+    const der = kryptos.export("der");
+    const cekSize = (0, calculate_content_encryption_key_size_1._calculateContentEncryptionKeySize)(encryption);
+    const contentEncryptionKey = (0, crypto_1.randomBytes)(cekSize);
+    const { derivedKey, hkdfSalt } = (0, hkdf_1._hkdf)({
+        derivationKey: der.privateKey,
+        keyLength: (0, calculate_key_wrap_size_1._calculateKeyWrapSize)(kryptos.algorithm),
+    });
+    const publicEncryptionKey = (0, key_wrap_1._aesKeyWrap)({
+        contentEncryptionKey,
+        kryptos,
+        keyEncryptionKey: derivedKey,
+    });
+    return {
+        contentEncryptionKey,
+        hkdfSalt,
+        publicEncryptionKey,
+    };
+};
+exports._getOctKeyWrapEncryptionKey = _getOctKeyWrapEncryptionKey;
+const _getOctKeyWrapDecryptionKey = ({ hkdfSalt, kryptos, publicEncryptionKey, }) => {
+    if (!kryptos_1.Kryptos.isOct(kryptos)) {
+        throw new errors_1.AesError("Invalid Kryptos", { debug: { kryptos: kryptos.toJSON() } });
+    }
+    if (!publicEncryptionKey) {
+        throw new errors_1.AesError("Missing publicEncryptionKey");
+    }
+    const der = kryptos.export("der");
+    const { derivedKey } = (0, hkdf_1._hkdf)({
+        derivationKey: der.privateKey,
+        hkdfSalt,
+        keyLength: (0, calculate_key_wrap_size_1._calculateKeyWrapSize)(kryptos.algorithm),
+    });
+    const unwrappedKey = (0, key_wrap_1._aesKeyUnwrap)({
+        keyEncryptionKey: derivedKey,
+        kryptos,
+        wrappedKey: publicEncryptionKey,
+    });
+    return { contentEncryptionKey: unwrappedKey };
+};
+exports._getOctKeyWrapDecryptionKey = _getOctKeyWrapDecryptionKey;
+//# sourceMappingURL=get-oct-key-wrap-keys.js.map

package/dist/utils/private/oct/get-oct-key-wrap-keys.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"get-oct-key-wrap-keys.js","sourceRoot":"","sources":["../../../../src/utils/private/oct/get-oct-key-wrap-keys.ts"],"names":[],"mappings":";;;AAAA,8CAA2C;AAC3C,mCAAqC;AACrC,4CAA2C;AAO3C,8GAAwG;AACxG,kFAA6E;AAC7E,iDAA+C;AAC/C,mDAAkE;AAE3D,MAAM,2BAA2B,GAAG,CAAC,EAC1C,UAAU,EACV,OAAO,GACU,EAAmB,EAAE;IACtC,IAAI,CAAC,iBAAO,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,iBAAQ,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,MAAM,EAAE,EAAE,EAAE,CAAC,CAAC;IAClF,CAAC;IAED,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAElC,MAAM,OAAO,GAAG,IAAA,0EAAkC,EAAC,UAAU,CAAC,CAAC;IAC/D,MAAM,oBAAoB,GAAG,IAAA,oBAAW,EAAC,OAAO,CAAC,CAAC;IAElD,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,GAAG,IAAA,YAAK,EAAC;QACrC,aAAa,EAAE,GAAG,CAAC,UAAU;QAC7B,SAAS,EAAE,IAAA,+CAAqB,EAAC,OAAO,CAAC,SAAS,CAAC;KACpD,CAAC,CAAC;IAEH,MAAM,mBAAmB,GAAG,IAAA,sBAAW,EAAC;QACtC,oBAAoB;QACpB,OAAO;QACP,gBAAgB,EAAE,UAAU;KAC7B,CAAC,CAAC;IAEH,OAAO;QACL,oBAAoB;QACpB,QAAQ;QACR,mBAAmB;KACpB,CAAC;AACJ,CAAC,CAAC;AA7BW,QAAA,2BAA2B,+BA6BtC;AAEK,MAAM,2BAA2B,GAAG,CAAC,EAC1C,QAAQ,EACR,OAAO,EACP,mBAAmB,GACD,EAAoB,EAAE;IACxC,IAAI,CAAC,iBAAO,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,iBAAQ,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,MAAM,EAAE,EAAE,EAAE,CAAC,CAAC;IAClF,CAAC;IACD,IAAI,CAAC,mBAAmB,EAAE,CAAC;QACzB,MAAM,IAAI,iBAAQ,CAAC,6BAA6B,CAAC,CAAC;IACpD,CAAC;IAED,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAElC,MAAM,EAAE,UAAU,EAAE,GAAG,IAAA,YAAK,EAAC;QAC3B,aAAa,EAAE,GAAG,CAAC,UAAU;QAC7B,QAAQ;QACR,SAAS,EAAE,IAAA,+CAAqB,EAAC,OAAO,CAAC,SAAS,CAAC;KACpD,CAAC,CAAC;IAEH,MAAM,YAAY,GAAG,IAAA,wBAAa,EAAC;QACjC,gBAAgB,EAAE,UAAU;QAC5B,OAAO;QACP,UAAU,EAAE,mBAAmB;KAChC,CAAC,CAAC;IAEH,OAAO,EAAE,oBAAoB,EAAE,YAAY,EAAE,CAAC;AAChD,CAAC,CAAC;AA3BW,QAAA,2BAA2B,+BA2BtC"}

package/dist/utils/private/oct/get-oct-pbkdf-key-wrap-keys.d.ts

@@ -0,0 +1,4 @@
+import { CreateCekOptions, CreateCekResult, DecryptCekOptions, DecryptCekResult } from "../../../types/private";
+export declare const _getOctPbkdfKeyWrapEncryptionKey: ({ encryption, kryptos, }: CreateCekOptions) => CreateCekResult;
+export declare const _getOctPbkdfKeyWrapDecryptionKey: ({ kryptos, pbkdfIterations, pbkdfSalt, publicEncryptionKey, }: DecryptCekOptions) => DecryptCekResult;
+//# sourceMappingURL=get-oct-pbkdf-key-wrap-keys.d.ts.map

package/dist/utils/private/oct/get-oct-pbkdf-key-wrap-keys.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"get-oct-pbkdf-key-wrap-keys.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/oct/get-oct-pbkdf-key-wrap-keys.ts"],"names":[],"mappings":"AAGA,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,wBAAwB,CAAC;AAOhC,eAAO,MAAM,gCAAgC,6BAG1C,gBAAgB,KAAG,eA4BrB,CAAC;AAEF,eAAO,MAAM,gCAAgC,kEAK1C,iBAAiB,KAAG,gBAyBtB,CAAC"}

package/dist/utils/private/oct/get-oct-pbkdf-key-wrap-keys.js

@@ -0,0 +1,60 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports._getOctPbkdfKeyWrapDecryptionKey = exports._getOctPbkdfKeyWrapEncryptionKey = void 0;
+const kryptos_1 = require("@lindorm/kryptos");
+const crypto_1 = require("crypto");
+const errors_1 = require("../../../errors");
+const calculate_content_encryption_key_size_1 = require("../calculate/calculate-content-encryption-key-size");
+const calculate_key_wrap_size_1 = require("../calculate/calculate-key-wrap-size");
+const calculate_pbkdf_hash_1 = require("../calculate/calculate-pbkdf-hash");
+const pbkdf_1 = require("../key-derivation/pbkdf");
+const key_wrap_1 = require("../key-wrap/key-wrap");
+const _getOctPbkdfKeyWrapEncryptionKey = ({ encryption, kryptos, }) => {
+    if (!kryptos_1.Kryptos.isOct(kryptos)) {
+        throw new errors_1.AesError("Invalid Kryptos", { debug: { kryptos: kryptos.toJSON() } });
+    }
+    const der = kryptos.export("der");
+    const cekSize = (0, calculate_content_encryption_key_size_1._calculateContentEncryptionKeySize)(encryption);
+    const contentEncryptionKey = (0, crypto_1.randomBytes)(cekSize);
+    const { derivedKey, pbkdfIterations, pbkdfSalt } = (0, pbkdf_1._pbkdf)({
+        derivationKey: der.privateKey,
+        keyLength: (0, calculate_key_wrap_size_1._calculateKeyWrapSize)(kryptos.algorithm),
+        algorithm: (0, calculate_pbkdf_hash_1._calculatePbkdfAlgorithm)(kryptos),
+    });
+    const publicEncryptionKey = (0, key_wrap_1._aesKeyWrap)({
+        contentEncryptionKey,
+        kryptos,
+        keyEncryptionKey: derivedKey,
+    });
+    return {
+        contentEncryptionKey,
+        pbkdfIterations,
+        pbkdfSalt,
+        publicEncryptionKey,
+    };
+};
+exports._getOctPbkdfKeyWrapEncryptionKey = _getOctPbkdfKeyWrapEncryptionKey;
+const _getOctPbkdfKeyWrapDecryptionKey = ({ kryptos, pbkdfIterations, pbkdfSalt, publicEncryptionKey, }) => {
+    if (!kryptos_1.Kryptos.isOct(kryptos)) {
+        throw new errors_1.AesError("Invalid Kryptos", { debug: { kryptos: kryptos.toJSON() } });
+    }
+    if (!publicEncryptionKey) {
+        throw new errors_1.AesError("Missing publicEncryptionKey");
+    }
+    const der = kryptos.export("der");
+    const { derivedKey } = (0, pbkdf_1._pbkdf)({
+        derivationKey: der.privateKey,
+        keyLength: (0, calculate_key_wrap_size_1._calculateKeyWrapSize)(kryptos.algorithm),
+        algorithm: (0, calculate_pbkdf_hash_1._calculatePbkdfAlgorithm)(kryptos),
+        pbkdfIterations,
+        pbkdfSalt,
+    });
+    const unwrappedKey = (0, key_wrap_1._aesKeyUnwrap)({
+        keyEncryptionKey: derivedKey,
+        kryptos,
+        wrappedKey: publicEncryptionKey,
+    });
+    return { contentEncryptionKey: unwrappedKey };
+};
+exports._getOctPbkdfKeyWrapDecryptionKey = _getOctPbkdfKeyWrapDecryptionKey;
+//# sourceMappingURL=get-oct-pbkdf-key-wrap-keys.js.map

package/dist/utils/private/oct/get-oct-pbkdf-key-wrap-keys.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"get-oct-pbkdf-key-wrap-keys.js","sourceRoot":"","sources":["../../../../src/utils/private/oct/get-oct-pbkdf-key-wrap-keys.ts"],"names":[],"mappings":";;;AAAA,8CAA2C;AAC3C,mCAAqC;AACrC,4CAA2C;AAO3C,8GAAwG;AACxG,kFAA6E;AAC7E,4EAA6E;AAC7E,mDAAiD;AACjD,mDAAkE;AAE3D,MAAM,gCAAgC,GAAG,CAAC,EAC/C,UAAU,EACV,OAAO,GACU,EAAmB,EAAE;IACtC,IAAI,CAAC,iBAAO,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,iBAAQ,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,MAAM,EAAE,EAAE,EAAE,CAAC,CAAC;IAClF,CAAC;IAED,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAElC,MAAM,OAAO,GAAG,IAAA,0EAAkC,EAAC,UAAU,CAAC,CAAC;IAC/D,MAAM,oBAAoB,GAAG,IAAA,oBAAW,EAAC,OAAO,CAAC,CAAC;IAElD,MAAM,EAAE,UAAU,EAAE,eAAe,EAAE,SAAS,EAAE,GAAG,IAAA,cAAM,EAAC;QACxD,aAAa,EAAE,GAAG,CAAC,UAAU;QAC7B,SAAS,EAAE,IAAA,+CAAqB,EAAC,OAAO,CAAC,SAAS,CAAC;QACnD,SAAS,EAAE,IAAA,+CAAwB,EAAC,OAAO,CAAC;KAC7C,CAAC,CAAC;IAEH,MAAM,mBAAmB,GAAG,IAAA,sBAAW,EAAC;QACtC,oBAAoB;QACpB,OAAO;QACP,gBAAgB,EAAE,UAAU;KAC7B,CAAC,CAAC;IAEH,OAAO;QACL,oBAAoB;QACpB,eAAe;QACf,SAAS;QACT,mBAAmB;KACpB,CAAC;AACJ,CAAC,CAAC;AA/BW,QAAA,gCAAgC,oCA+B3C;AAEK,MAAM,gCAAgC,GAAG,CAAC,EAC/C,OAAO,EACP,eAAe,EACf,SAAS,EACT,mBAAmB,GACD,EAAoB,EAAE;IACxC,IAAI,CAAC,iBAAO,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,iBAAQ,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,MAAM,EAAE,EAAE,EAAE,CAAC,CAAC;IAClF,CAAC;IACD,IAAI,CAAC,mBAAmB,EAAE,CAAC;QACzB,MAAM,IAAI,iBAAQ,CAAC,6BAA6B,CAAC,CAAC;IACpD,CAAC;IAED,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAElC,MAAM,EAAE,UAAU,EAAE,GAAG,IAAA,cAAM,EAAC;QAC5B,aAAa,EAAE,GAAG,CAAC,UAAU;QAC7B,SAAS,EAAE,IAAA,+CAAqB,EAAC,OAAO,CAAC,SAAS,CAAC;QACnD,SAAS,EAAE,IAAA,+CAAwB,EAAC,OAAO,CAAC;QAC5C,eAAe;QACf,SAAS;KACV,CAAC,CAAC;IAEH,MAAM,YAAY,GAAG,IAAA,wBAAa,EAAC;QACjC,gBAAgB,EAAE,UAAU;QAC5B,OAAO;QACP,UAAU,EAAE,mBAAmB;KAChC,CAAC,CAAC;IAEH,OAAO,EAAE,oBAAoB,EAAE,YAAY,EAAE,CAAC;AAChD,CAAC,CAAC;AA9BW,QAAA,gCAAgC,oCA8B3C"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@lindorm/aes",
-  "version": "0.1.3",
+  "version": "0.2.0",
   "license": "AGPL-3.0-or-later",
   "author": "Jonn Nilsson",
   "repository": {
@@ -26,9 +26,12 @@
     "update": "ncu -u"
   },
   "dependencies": {
-    "@lindorm/errors": "^0.1.4",
-    "@lindorm/is": "^0.1.4",
-    "@lindorm/kryptos": "^0.2.1"
+    "@lindorm/errors": "^0.1.5",
+    "@lindorm/is": "^0.1.5",
+    "@lindorm/kryptos": "^0.3.0"
   },
-  "gitHead": "cb57e5e2cc3e7ee6a1db97875e05bebb910a1efe"
+  "devDependencies": {
+    "@lindorm/types": "^0.1.4"
+  },
+  "gitHead": "677a485cb48b37f891f25a46f417b033cbfec9e2"
 }

package/dist/enums/AesEncryption.d.ts

@@ -1,9 +0,0 @@
-export declare enum AesEncryption {
-    AES_128_CBC = "aes-128-cbc",
-    AES_192_CBC = "aes-192-cbc",
-    AES_256_CBC = "aes-256-cbc",
-    AES_128_GCM = "aes-128-gcm",
-    AES_192_GCM = "aes-192-gcm",
-    AES_256_GCM = "aes-256-gcm"
-}
-//# sourceMappingURL=AesEncryption.d.ts.map

package/dist/enums/AesEncryption.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"AesEncryption.d.ts","sourceRoot":"","sources":["../../src/enums/AesEncryption.ts"],"names":[],"mappings":"AAAA,oBAAY,aAAa;IAEvB,WAAW,gBAAgB;IAC3B,WAAW,gBAAgB;IAC3B,WAAW,gBAAgB;IAG3B,WAAW,gBAAgB;IAC3B,WAAW,gBAAgB;IAC3B,WAAW,gBAAgB;CAC5B"}

package/dist/enums/AesEncryption.js

@@ -1,13 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.AesEncryption = void 0;
-var AesEncryption;
-(function (AesEncryption) {
-    AesEncryption["AES_128_CBC"] = "aes-128-cbc";
-    AesEncryption["AES_192_CBC"] = "aes-192-cbc";
-    AesEncryption["AES_256_CBC"] = "aes-256-cbc";
-    AesEncryption["AES_128_GCM"] = "aes-128-gcm";
-    AesEncryption["AES_192_GCM"] = "aes-192-gcm";
-    AesEncryption["AES_256_GCM"] = "aes-256-gcm";
-})(AesEncryption || (exports.AesEncryption = AesEncryption = {}));
-//# sourceMappingURL=AesEncryption.js.map

package/dist/enums/AesEncryption.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"AesEncryption.js","sourceRoot":"","sources":["../../src/enums/AesEncryption.ts"],"names":[],"mappings":";;;AAAA,IAAY,aAUX;AAVD,WAAY,aAAa;IAEvB,4CAA2B,CAAA;IAC3B,4CAA2B,CAAA;IAC3B,4CAA2B,CAAA;IAG3B,4CAA2B,CAAA;IAC3B,4CAA2B,CAAA;IAC3B,4CAA2B,CAAA;AAC7B,CAAC,EAVW,aAAa,6BAAb,aAAa,QAUxB"}

package/dist/enums/AesEncryptionKeyAlgorithm.d.ts

@@ -1,9 +0,0 @@
-export declare enum AesEncryptionKeyAlgorithm {
-    ECDH_ES = "ECDH-ES",
-    RSA_OAEP = "RSA-OAEP",
-    RSA_OAEP_256 = "RSA-OAEP-256",
-    RSA_OAEP_384 = "RSA-OAEP-384",
-    RSA_OAEP_512 = "RSA-OAEP-512",
-    RSA_PRIVATE_KEY = "RSA-PRIVATE-KEY"
-}
-//# sourceMappingURL=AesEncryptionKeyAlgorithm.d.ts.map

package/dist/enums/AesEncryptionKeyAlgorithm.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"AesEncryptionKeyAlgorithm.d.ts","sourceRoot":"","sources":["../../src/enums/AesEncryptionKeyAlgorithm.ts"],"names":[],"mappings":"AAAA,oBAAY,yBAAyB;IAEnC,OAAO,YAAY;IAGnB,QAAQ,aAAa;IACrB,YAAY,iBAAiB;IAC7B,YAAY,iBAAiB;IAC7B,YAAY,iBAAiB;IAC7B,eAAe,oBAAoB;CACpC"}

package/dist/enums/AesEncryptionKeyAlgorithm.js

@@ -1,13 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.AesEncryptionKeyAlgorithm = void 0;
-var AesEncryptionKeyAlgorithm;
-(function (AesEncryptionKeyAlgorithm) {
-    AesEncryptionKeyAlgorithm["ECDH_ES"] = "ECDH-ES";
-    AesEncryptionKeyAlgorithm["RSA_OAEP"] = "RSA-OAEP";
-    AesEncryptionKeyAlgorithm["RSA_OAEP_256"] = "RSA-OAEP-256";
-    AesEncryptionKeyAlgorithm["RSA_OAEP_384"] = "RSA-OAEP-384";
-    AesEncryptionKeyAlgorithm["RSA_OAEP_512"] = "RSA-OAEP-512";
-    AesEncryptionKeyAlgorithm["RSA_PRIVATE_KEY"] = "RSA-PRIVATE-KEY";
-})(AesEncryptionKeyAlgorithm || (exports.AesEncryptionKeyAlgorithm = AesEncryptionKeyAlgorithm = {}));
-//# sourceMappingURL=AesEncryptionKeyAlgorithm.js.map

package/dist/enums/AesEncryptionKeyAlgorithm.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"AesEncryptionKeyAlgorithm.js","sourceRoot":"","sources":["../../src/enums/AesEncryptionKeyAlgorithm.ts"],"names":[],"mappings":";;;AAAA,IAAY,yBAUX;AAVD,WAAY,yBAAyB;IAEnC,gDAAmB,CAAA;IAGnB,kDAAqB,CAAA;IACrB,0DAA6B,CAAA;IAC7B,0DAA6B,CAAA;IAC7B,0DAA6B,CAAA;IAC7B,gEAAmC,CAAA;AACrC,CAAC,EAVW,yBAAyB,yCAAzB,yBAAyB,QAUpC"}

package/dist/enums/AesFormat.d.ts

@@ -1,6 +0,0 @@
-export declare enum AesFormat {
-    BASE64 = "base64",
-    BASE64_URL = "base64url",
-    HEX = "hex"
-}
-//# sourceMappingURL=AesFormat.d.ts.map

package/dist/enums/AesFormat.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"AesFormat.d.ts","sourceRoot":"","sources":["../../src/enums/AesFormat.ts"],"names":[],"mappings":"AAAA,oBAAY,SAAS;IACnB,MAAM,WAAW;IACjB,UAAU,cAAc;IACxB,GAAG,QAAQ;CACZ"}

package/dist/enums/AesFormat.js

@@ -1,10 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.AesFormat = void 0;
-var AesFormat;
-(function (AesFormat) {
-    AesFormat["BASE64"] = "base64";
-    AesFormat["BASE64_URL"] = "base64url";
-    AesFormat["HEX"] = "hex";
-})(AesFormat || (exports.AesFormat = AesFormat = {}));
-//# sourceMappingURL=AesFormat.js.map

package/dist/enums/AesFormat.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"AesFormat.js","sourceRoot":"","sources":["../../src/enums/AesFormat.ts"],"names":[],"mappings":";;;AAAA,IAAY,SAIX;AAJD,WAAY,SAAS;IACnB,8BAAiB,CAAA;IACjB,qCAAwB,CAAA;IACxB,wBAAW,CAAA;AACb,CAAC,EAJW,SAAS,yBAAT,SAAS,QAIpB"}

package/dist/enums/AesIntegrityHash.d.ts

@@ -1,6 +0,0 @@
-export declare enum AesIntegrityHash {
-    SHA256 = "sha256",
-    SHA384 = "sha384",
-    SHA512 = "sha512"
-}
-//# sourceMappingURL=AesIntegrityHash.d.ts.map

package/dist/enums/AesIntegrityHash.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"AesIntegrityHash.d.ts","sourceRoot":"","sources":["../../src/enums/AesIntegrityHash.ts"],"names":[],"mappings":"AAAA,oBAAY,gBAAgB;IAC1B,MAAM,WAAW;IACjB,MAAM,WAAW;IACjB,MAAM,WAAW;CAClB"}

package/dist/enums/AesIntegrityHash.js

@@ -1,10 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.AesIntegrityHash = void 0;
-var AesIntegrityHash;
-(function (AesIntegrityHash) {
-    AesIntegrityHash["SHA256"] = "sha256";
-    AesIntegrityHash["SHA384"] = "sha384";
-    AesIntegrityHash["SHA512"] = "sha512";
-})(AesIntegrityHash || (exports.AesIntegrityHash = AesIntegrityHash = {}));
-//# sourceMappingURL=AesIntegrityHash.js.map

package/dist/enums/AesIntegrityHash.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"AesIntegrityHash.js","sourceRoot":"","sources":["../../src/enums/AesIntegrityHash.ts"],"names":[],"mappings":";;;AAAA,IAAY,gBAIX;AAJD,WAAY,gBAAgB;IAC1B,qCAAiB,CAAA;IACjB,qCAAiB,CAAA;IACjB,qCAAiB,CAAA;AACnB,CAAC,EAJW,gBAAgB,gCAAhB,gBAAgB,QAI3B"}

package/dist/enums/index.d.ts

@@ -1,5 +0,0 @@
-export * from "./AesEncryption";
-export * from "./AesEncryptionKeyAlgorithm";
-export * from "./AesFormat";
-export * from "./AesIntegrityHash";
-//# sourceMappingURL=index.d.ts.map

package/dist/enums/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/enums/index.ts"],"names":[],"mappings":"AAAA,cAAc,iBAAiB,CAAC;AAChC,cAAc,6BAA6B,CAAC;AAC5C,cAAc,aAAa,CAAC;AAC5B,cAAc,oBAAoB,CAAC"}

package/dist/enums/index.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/enums/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,kDAAgC;AAChC,8DAA4C;AAC5C,8CAA4B;AAC5B,qDAAmC"}

package/dist/types/auth-tag.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"auth-tag.d.ts","sourceRoot":"","sources":["../../src/types/auth-tag.ts"],"names":[],"mappings":";;AAAA,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,QAAQ,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAClE,OAAO,EAAE,UAAU,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAEpD,MAAM,MAAM,iBAAiB,GAAG;IAC9B,MAAM,EAAE,MAAM,GAAG,SAAS,CAAC;IAC3B,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,UAAU,CAAC;IACvB,aAAa,EAAE,MAAM,CAAC;IACtB,oBAAoB,EAAE,MAAM,CAAC;IAC7B,aAAa,CAAC,EAAE,aAAa,CAAC;CAC/B,CAAC;AAEF,MAAM,MAAM,iBAAiB,GAAG;IAC9B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,QAAQ,GAAG,WAAW,CAAC;IACjC,aAAa,EAAE,MAAM,CAAC;IACtB,UAAU,EAAE,UAAU,CAAC;IACvB,oBAAoB,EAAE,MAAM,CAAC;IAC7B,aAAa,CAAC,EAAE,aAAa,CAAC;CAC/B,CAAC;AAEF,MAAM,MAAM,iBAAiB,GAAG;IAC9B,OAAO,EAAE,MAAM,CAAC;IAChB,aAAa,EAAE,MAAM,CAAC;IACtB,oBAAoB,EAAE,MAAM,CAAC;IAC7B,aAAa,EAAE,aAAa,CAAC;CAC9B,CAAC;AAEF,MAAM,MAAM,iBAAiB,GAAG,iBAAiB,GAAG;IAAE,OAAO,EAAE,MAAM,CAAA;CAAE,CAAC"}

package/dist/utils/private/auth-tag-hmac.d.ts

@@ -1,5 +0,0 @@
-/// <reference types="node" />
-import { CreateHmacAuthTag, VerifyHmacAuthTag } from "../../types/auth-tag";
-export declare const createHmacAuthTag: ({ content, encryptionKey, initialisationVector, integrityHash, }: CreateHmacAuthTag) => Buffer;
-export declare const verifyHmacAuthTag: ({ authTag, content, encryptionKey, initialisationVector, integrityHash, }: VerifyHmacAuthTag) => void;
-//# sourceMappingURL=auth-tag-hmac.d.ts.map

package/dist/utils/private/auth-tag-hmac.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"auth-tag-hmac.d.ts","sourceRoot":"","sources":["../../../src/utils/private/auth-tag-hmac.ts"],"names":[],"mappings":";AAEA,OAAO,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAC;AAE5E,eAAO,MAAM,iBAAiB,qEAK3B,iBAAiB,KAAG,MAOtB,CAAC;AAEF,eAAO,MAAM,iBAAiB,8EAM3B,iBAAiB,KAAG,IAWtB,CAAC"}

package/dist/utils/private/auth-tag-hmac.js

@@ -1,25 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.verifyHmacAuthTag = exports.createHmacAuthTag = void 0;
-const crypto_1 = require("crypto");
-const errors_1 = require("../../errors");
-const createHmacAuthTag = ({ content, encryptionKey, initialisationVector, integrityHash = "sha256", }) => {
-    const hmac = (0, crypto_1.createHmac)(integrityHash, encryptionKey);
-    hmac.update(initialisationVector);
-    hmac.update(content);
-    return hmac.digest();
-};
-exports.createHmacAuthTag = createHmacAuthTag;
-const verifyHmacAuthTag = ({ authTag, content, encryptionKey, initialisationVector, integrityHash, }) => {
-    const generated = (0, exports.createHmacAuthTag)({
-        content,
-        encryptionKey,
-        initialisationVector,
-        integrityHash,
-    });
-    if (Buffer.compare(generated, authTag) === 0)
-        return;
-    throw new errors_1.AesError("Auth tag verification failed");
-};
-exports.verifyHmacAuthTag = verifyHmacAuthTag;
-//# sourceMappingURL=auth-tag-hmac.js.map

package/dist/utils/private/auth-tag-hmac.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"auth-tag-hmac.js","sourceRoot":"","sources":["../../../src/utils/private/auth-tag-hmac.ts"],"names":[],"mappings":";;;AAAA,mCAAoC;AACpC,yCAAwC;AAGjC,MAAM,iBAAiB,GAAG,CAAC,EAChC,OAAO,EACP,aAAa,EACb,oBAAoB,EACpB,aAAa,GAAG,QAAQ,GACN,EAAU,EAAE;IAC9B,MAAM,IAAI,GAAG,IAAA,mBAAU,EAAC,aAAa,EAAE,aAAa,CAAC,CAAC;IAEtD,IAAI,CAAC,MAAM,CAAC,oBAAoB,CAAC,CAAC;IAClC,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IAErB,OAAO,IAAI,CAAC,MAAM,EAAE,CAAC;AACvB,CAAC,CAAC;AAZW,QAAA,iBAAiB,qBAY5B;AAEK,MAAM,iBAAiB,GAAG,CAAC,EAChC,OAAO,EACP,OAAO,EACP,aAAa,EACb,oBAAoB,EACpB,aAAa,GACK,EAAQ,EAAE;IAC5B,MAAM,SAAS,GAAG,IAAA,yBAAiB,EAAC;QAClC,OAAO;QACP,aAAa;QACb,oBAAoB;QACpB,aAAa;KACd,CAAC,CAAC;IAEH,IAAI,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,OAAO,CAAC,KAAK,CAAC;QAAE,OAAO;IAErD,MAAM,IAAI,iBAAQ,CAAC,8BAA8B,CAAC,CAAC;AACrD,CAAC,CAAC;AAjBW,QAAA,iBAAiB,qBAiB5B"}

package/dist/utils/private/auth-tag.d.ts

@@ -1,5 +0,0 @@
-/// <reference types="node" />
-import { GetAuthTagOptions, SetAuthTagOptions } from "../../types/auth-tag";
-export declare const _getAuthTag: ({ encryption: algorithm, cipher, content, encryptionKey, initialisationVector, integrityHash, }: GetAuthTagOptions) => Buffer | undefined;
-export declare const _setAuthTag: ({ encryption: algorithm, authTag, content, decipher, decryptionKey, initialisationVector, integrityHash, }: SetAuthTagOptions) => void;
-//# sourceMappingURL=auth-tag.d.ts.map

package/dist/utils/private/auth-tag.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"auth-tag.d.ts","sourceRoot":"","sources":["../../../src/utils/private/auth-tag.ts"],"names":[],"mappings":";AAEA,OAAO,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAC;AAG5E,eAAO,MAAM,WAAW,oGAOrB,iBAAiB,KAAG,MAAM,GAAG,SAuB/B,CAAC;AAEF,eAAO,MAAM,WAAW,+GAQrB,iBAAiB,KAAG,IA6BtB,CAAC"}