@lindorm/aes 0.2.0 → 0.3.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +6 -0
- package/dist/classes/AesKit.d.ts +0 -1
- package/dist/classes/AesKit.d.ts.map +1 -1
- package/dist/classes/AesKit.js +1 -5
- package/dist/classes/AesKit.js.map +1 -1
- package/dist/constants/private/format.d.ts +2 -0
- package/dist/constants/private/format.d.ts.map +1 -0
- package/dist/constants/private/format.js +5 -0
- package/dist/constants/private/format.js.map +1 -0
- package/dist/constants/version.d.ts +1 -1
- package/dist/constants/version.js +1 -1
- package/dist/types/aes-data.d.ts +2 -2
- package/dist/types/aes-data.d.ts.map +1 -1
- package/dist/types/aes-encryption-data.d.ts +2 -2
- package/dist/types/aes-encryption-data.d.ts.map +1 -1
- package/dist/types/aes-kit.d.ts +0 -2
- package/dist/types/aes-kit.d.ts.map +1 -1
- package/dist/types/private/aes-string.d.ts +2 -1
- package/dist/types/private/aes-string.d.ts.map +1 -1
- package/dist/types/private/content-encryption-key.d.ts +4 -0
- package/dist/types/private/content-encryption-key.d.ts.map +1 -1
- package/dist/types/private/index.d.ts +1 -0
- package/dist/types/private/index.d.ts.map +1 -1
- package/dist/types/private/index.js +1 -0
- package/dist/types/private/index.js.map +1 -1
- package/dist/types/private/key-wrap.d.ts +23 -0
- package/dist/types/private/key-wrap.d.ts.map +1 -0
- package/dist/types/private/key-wrap.js +3 -0
- package/dist/types/private/key-wrap.js.map +1 -0
- package/dist/utils/private/aes-data.d.ts.map +1 -1
- package/dist/utils/private/aes-data.js +9 -5
- package/dist/utils/private/aes-data.js.map +1 -1
- package/dist/utils/private/calculate/calculate-key-wrap-encryption.d.ts +1 -1
- package/dist/utils/private/calculate/calculate-key-wrap-encryption.d.ts.map +1 -1
- package/dist/utils/private/calculate/calculate-key-wrap-encryption.js +9 -0
- package/dist/utils/private/calculate/calculate-key-wrap-encryption.js.map +1 -1
- package/dist/utils/private/calculate/calculate-key-wrap-size.d.ts.map +1 -1
- package/dist/utils/private/calculate/calculate-key-wrap-size.js +6 -0
- package/dist/utils/private/calculate/calculate-key-wrap-size.js.map +1 -1
- package/dist/utils/private/decode-aes-string.d.ts.map +1 -1
- package/dist/utils/private/decode-aes-string.js +11 -10
- package/dist/utils/private/decode-aes-string.js.map +1 -1
- package/dist/utils/private/diffie-hellman/diffie-hellman-key-wrap.d.ts +1 -1
- package/dist/utils/private/diffie-hellman/diffie-hellman-key-wrap.d.ts.map +1 -1
- package/dist/utils/private/diffie-hellman/diffie-hellman-key-wrap.js +8 -5
- package/dist/utils/private/diffie-hellman/diffie-hellman-key-wrap.js.map +1 -1
- package/dist/utils/private/encode-aes-string.d.ts +1 -1
- package/dist/utils/private/encode-aes-string.d.ts.map +1 -1
- package/dist/utils/private/encode-aes-string.js +11 -9
- package/dist/utils/private/encode-aes-string.js.map +1 -1
- package/dist/utils/private/key-types/get-ec-keys.d.ts.map +1 -1
- package/dist/utils/private/key-types/get-ec-keys.js +6 -0
- package/dist/utils/private/key-types/get-ec-keys.js.map +1 -1
- package/dist/utils/private/key-types/get-oct-keys.d.ts.map +1 -1
- package/dist/utils/private/key-types/get-oct-keys.js +9 -3
- package/dist/utils/private/key-types/get-oct-keys.js.map +1 -1
- package/dist/utils/private/key-types/get-okp-keys.d.ts.map +1 -1
- package/dist/utils/private/key-types/get-okp-keys.js +15 -0
- package/dist/utils/private/key-types/get-okp-keys.js.map +1 -1
- package/dist/utils/private/key-wrap/ecb-key-wrap.d.ts +4 -0
- package/dist/utils/private/key-wrap/ecb-key-wrap.d.ts.map +1 -0
- package/dist/utils/private/key-wrap/ecb-key-wrap.js +66 -0
- package/dist/utils/private/key-wrap/ecb-key-wrap.js.map +1 -0
- package/dist/utils/private/key-wrap/gcm-key-wrap.d.ts +4 -0
- package/dist/utils/private/key-wrap/gcm-key-wrap.d.ts.map +1 -0
- package/dist/utils/private/key-wrap/gcm-key-wrap.js +36 -0
- package/dist/utils/private/key-wrap/gcm-key-wrap.js.map +1 -0
- package/dist/utils/private/key-wrap/key-wrap.d.ts +3 -15
- package/dist/utils/private/key-wrap/key-wrap.d.ts.map +1 -1
- package/dist/utils/private/key-wrap/key-wrap.js +42 -59
- package/dist/utils/private/key-wrap/key-wrap.js.map +1 -1
- package/dist/utils/private/oct/{get-oct-key-wrap-keys.d.ts → get-oct-key-key-wrap.d.ts} +2 -2
- package/dist/utils/private/oct/get-oct-key-key-wrap.d.ts.map +1 -0
- package/dist/utils/private/oct/{get-oct-key-wrap-keys.js → get-oct-key-key-wrap.js} +9 -6
- package/dist/utils/private/oct/get-oct-key-key-wrap.js.map +1 -0
- package/dist/utils/private/oct/get-oct-pbkdf-key-wrap-keys.d.ts.map +1 -1
- package/dist/utils/private/oct/get-oct-pbkdf-key-wrap-keys.js +4 -5
- package/dist/utils/private/oct/get-oct-pbkdf-key-wrap-keys.js.map +1 -1
- package/package.json +3 -3
- package/dist/utils/private/oct/get-oct-key-wrap-keys.d.ts.map +0 -1
- package/dist/utils/private/oct/get-oct-key-wrap-keys.js.map +0 -1
|
@@ -2,18 +2,20 @@
|
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
3
|
exports._encodeAesString = void 0;
|
|
4
4
|
const utils_1 = require("@lindorm/utils");
|
|
5
|
-
const
|
|
5
|
+
const format_1 = require("../../constants/private/format");
|
|
6
|
+
const _encodeAesString = ({ algorithm, authTag, content, encryption, hkdfSalt, initialisationVector, keyId, pbkdfIterations, pbkdfSalt, publicEncryptionIv, publicEncryptionJwk, publicEncryptionKey, publicEncryptionTag, version, }) => {
|
|
6
7
|
const values = (0, utils_1.removeEmpty)({
|
|
7
8
|
v: version.toString(),
|
|
8
|
-
|
|
9
|
+
kid: keyId.toString(format_1._B64U),
|
|
9
10
|
alg: algorithm,
|
|
10
|
-
iv: initialisationVector.toString(
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
hks: hkdfSalt?.toString(format),
|
|
11
|
+
iv: initialisationVector.toString(format_1._B64U),
|
|
12
|
+
tag: authTag.toString(format_1._B64U),
|
|
13
|
+
hks: hkdfSalt?.toString(format_1._B64U),
|
|
14
14
|
p2c: pbkdfIterations?.toString(),
|
|
15
|
-
p2s: pbkdfSalt?.toString(
|
|
16
|
-
|
|
15
|
+
p2s: pbkdfSalt?.toString(format_1._B64U),
|
|
16
|
+
pei: publicEncryptionIv?.toString(format_1._B64U),
|
|
17
|
+
pek: publicEncryptionKey?.toString(format_1._B64U),
|
|
18
|
+
pet: publicEncryptionTag?.toString(format_1._B64U),
|
|
17
19
|
crv: publicEncryptionJwk?.crv,
|
|
18
20
|
kty: publicEncryptionJwk?.kty,
|
|
19
21
|
x: publicEncryptionJwk?.x,
|
|
@@ -21,7 +23,7 @@ const _encodeAesString = ({ algorithm, authTag, content, encryption, format, hkd
|
|
|
21
23
|
});
|
|
22
24
|
const array = Object.entries(values).map(([key, value]) => `${key}=${value}`);
|
|
23
25
|
const str = array.join(",");
|
|
24
|
-
const cnt = content.toString(
|
|
26
|
+
const cnt = content.toString(format_1._B64U);
|
|
25
27
|
return `$${encryption}$${str}$${cnt}$`;
|
|
26
28
|
};
|
|
27
29
|
exports._encodeAesString = _encodeAesString;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"encode-aes-string.js","sourceRoot":"","sources":["../../../src/utils/private/encode-aes-string.ts"],"names":[],"mappings":";;;AAAA,0CAA6C;
|
|
1
|
+
{"version":3,"file":"encode-aes-string.js","sourceRoot":"","sources":["../../../src/utils/private/encode-aes-string.ts"],"names":[],"mappings":";;;AAAA,0CAA6C;AAC7C,2DAAuD;AAIhD,MAAM,gBAAgB,GAAG,CAAC,EAC/B,SAAS,EACT,OAAO,EACP,OAAO,EACP,UAAU,EACV,QAAQ,EACR,oBAAoB,EACpB,KAAK,EACL,eAAe,EACf,SAAS,EACT,kBAAkB,EAClB,mBAAmB,EACnB,mBAAmB,EACnB,mBAAmB,EACnB,OAAO,GACW,EAAU,EAAE;IAC9B,MAAM,MAAM,GAAoB,IAAA,mBAAW,EAAC;QAC1C,CAAC,EAAE,OAAO,CAAC,QAAQ,EAAE;QACrB,GAAG,EAAE,KAAK,CAAC,QAAQ,CAAC,cAAK,CAAC;QAG1B,GAAG,EAAE,SAAS;QACd,EAAE,EAAE,oBAAoB,CAAC,QAAQ,CAAC,cAAK,CAAC;QACxC,GAAG,EAAE,OAAO,CAAC,QAAQ,CAAC,cAAK,CAAC;QAG5B,GAAG,EAAE,QAAQ,EAAE,QAAQ,CAAC,cAAK,CAAC;QAC9B,GAAG,EAAE,eAAe,EAAE,QAAQ,EAAE;QAChC,GAAG,EAAE,SAAS,EAAE,QAAQ,CAAC,cAAK,CAAC;QAG/B,GAAG,EAAE,kBAAkB,EAAE,QAAQ,CAAC,cAAK,CAAC;QACxC,GAAG,EAAE,mBAAmB,EAAE,QAAQ,CAAC,cAAK,CAAC;QACzC,GAAG,EAAE,mBAAmB,EAAE,QAAQ,CAAC,cAAK,CAAC;QAGzC,GAAG,EAAE,mBAAmB,EAAE,GAAG;QAC7B,GAAG,EAAE,mBAAmB,EAAE,GAAG;QAC7B,CAAC,EAAE,mBAAmB,EAAE,CAAC;QACzB,CAAC,EAAE,mBAAmB,EAAE,CAAC;KAC1B,CAAC,CAAC;IACH,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,EAAE,KAAK,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,IAAI,KAAK,EAAE,CAAC,CAAC;IAE9E,MAAM,GAAG,GAAG,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAC5B,MAAM,GAAG,GAAG,OAAO,CAAC,QAAQ,CAAC,cAAK,CAAC,CAAC;IAEpC,OAAO,IAAI,UAAU,IAAI,GAAG,IAAI,GAAG,GAAG,CAAC;AACzC,CAAC,CAAC;AA/CW,QAAA,gBAAgB,oBA+C3B"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-ec-keys.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/key-types/get-ec-keys.ts"],"names":[],"mappings":"AACA,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,wBAAwB,CAAC;AAUhC,eAAO,MAAM,mBAAmB,YAAa,gBAAgB,KAAG,
|
|
1
|
+
{"version":3,"file":"get-ec-keys.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/key-types/get-ec-keys.ts"],"names":[],"mappings":"AACA,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,wBAAwB,CAAC;AAUhC,eAAO,MAAM,mBAAmB,YAAa,gBAAgB,KAAG,eAkB/D,CAAC;AAEF,eAAO,MAAM,mBAAmB,YAAa,iBAAiB,KAAG,gBAkBhE,CAAC"}
|
|
@@ -11,6 +11,9 @@ const _getEcEncryptionKey = (options) => {
|
|
|
11
11
|
case "ECDH-ES+A128KW":
|
|
12
12
|
case "ECDH-ES+A192KW":
|
|
13
13
|
case "ECDH-ES+A256KW":
|
|
14
|
+
case "ECDH-ES+A128GCMKW":
|
|
15
|
+
case "ECDH-ES+A192GCMKW":
|
|
16
|
+
case "ECDH-ES+A256GCMKW":
|
|
14
17
|
return (0, diffie_hellman_key_wrap_1._getDiffieHellmanKeyWrapEncryptionKey)(options);
|
|
15
18
|
default:
|
|
16
19
|
throw new errors_1.AesError("Unexpected Kryptos", {
|
|
@@ -26,6 +29,9 @@ const _getEcDecryptionKey = (options) => {
|
|
|
26
29
|
case "ECDH-ES+A128KW":
|
|
27
30
|
case "ECDH-ES+A192KW":
|
|
28
31
|
case "ECDH-ES+A256KW":
|
|
32
|
+
case "ECDH-ES+A128GCMKW":
|
|
33
|
+
case "ECDH-ES+A192GCMKW":
|
|
34
|
+
case "ECDH-ES+A256GCMKW":
|
|
29
35
|
return (0, diffie_hellman_key_wrap_1._getDiffieHellmanKeyWrapDecryptionKey)(options);
|
|
30
36
|
default:
|
|
31
37
|
throw new errors_1.AesError("Unexpected Kryptos", {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-ec-keys.js","sourceRoot":"","sources":["../../../../src/utils/private/key-types/get-ec-keys.ts"],"names":[],"mappings":";;;AAAA,4CAA2C;AAO3C,qEAG0C;AAC1C,uFAGmD;AAE5C,MAAM,mBAAmB,GAAG,CAAC,OAAyB,EAAmB,EAAE;IAChF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,IAAA,+CAA8B,EAAC,OAAO,CAAC,CAAC;QAEjD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB;
|
|
1
|
+
{"version":3,"file":"get-ec-keys.js","sourceRoot":"","sources":["../../../../src/utils/private/key-types/get-ec-keys.ts"],"names":[],"mappings":";;;AAAA,4CAA2C;AAO3C,qEAG0C;AAC1C,uFAGmD;AAE5C,MAAM,mBAAmB,GAAG,CAAC,OAAyB,EAAmB,EAAE;IAChF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,IAAA,+CAA8B,EAAC,OAAO,CAAC,CAAC;QAEjD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,IAAA,+DAAqC,EAAC,OAAO,CAAC,CAAC;QAExD;YACE,MAAM,IAAI,iBAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC;AAlBW,QAAA,mBAAmB,uBAkB9B;AAEK,MAAM,mBAAmB,GAAG,CAAC,OAA0B,EAAoB,EAAE;IAClF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,IAAA,+CAA8B,EAAC,OAAO,CAAC,CAAC;QAEjD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,IAAA,+DAAqC,EAAC,OAAO,CAAC,CAAC;QAExD;YACE,MAAM,IAAI,iBAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC;AAlBW,QAAA,mBAAmB,uBAkB9B"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-oct-keys.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/key-types/get-oct-keys.ts"],"names":[],"mappings":"AACA,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,wBAAwB,CAAC;AAchC,eAAO,MAAM,oBAAoB,YAAa,gBAAgB,KAAG,
|
|
1
|
+
{"version":3,"file":"get-oct-keys.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/key-types/get-oct-keys.ts"],"names":[],"mappings":"AACA,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,wBAAwB,CAAC;AAchC,eAAO,MAAM,oBAAoB,YAAa,gBAAgB,KAAG,eAuBhE,CAAC;AAEF,eAAO,MAAM,oBAAoB,YAAa,iBAAiB,KAAG,gBAuBjE,CAAC"}
|
|
@@ -3,7 +3,7 @@ Object.defineProperty(exports, "__esModule", { value: true });
|
|
|
3
3
|
exports._getOctDecryptionKey = exports._getOctEncryptionKey = void 0;
|
|
4
4
|
const errors_1 = require("../../../errors");
|
|
5
5
|
const get_oct_dir_keys_1 = require("../oct/get-oct-dir-keys");
|
|
6
|
-
const
|
|
6
|
+
const get_oct_key_key_wrap_1 = require("../oct/get-oct-key-key-wrap");
|
|
7
7
|
const get_oct_pbkdf_key_wrap_keys_1 = require("../oct/get-oct-pbkdf-key-wrap-keys");
|
|
8
8
|
const _getOctEncryptionKey = (options) => {
|
|
9
9
|
switch (options.kryptos.algorithm) {
|
|
@@ -12,7 +12,10 @@ const _getOctEncryptionKey = (options) => {
|
|
|
12
12
|
case "A128KW":
|
|
13
13
|
case "A192KW":
|
|
14
14
|
case "A256KW":
|
|
15
|
-
|
|
15
|
+
case "A128GCMKW":
|
|
16
|
+
case "A192GCMKW":
|
|
17
|
+
case "A256GCMKW":
|
|
18
|
+
return (0, get_oct_key_key_wrap_1._getOctKeyWrapEncryptionKey)(options);
|
|
16
19
|
case "PBES2-HS256+A128KW":
|
|
17
20
|
case "PBES2-HS384+A192KW":
|
|
18
21
|
case "PBES2-HS512+A256KW":
|
|
@@ -31,7 +34,10 @@ const _getOctDecryptionKey = (options) => {
|
|
|
31
34
|
case "A128KW":
|
|
32
35
|
case "A192KW":
|
|
33
36
|
case "A256KW":
|
|
34
|
-
|
|
37
|
+
case "A128GCMKW":
|
|
38
|
+
case "A192GCMKW":
|
|
39
|
+
case "A256GCMKW":
|
|
40
|
+
return (0, get_oct_key_key_wrap_1._getOctKeyWrapDecryptionKey)(options);
|
|
35
41
|
case "PBES2-HS256+A128KW":
|
|
36
42
|
case "PBES2-HS384+A192KW":
|
|
37
43
|
case "PBES2-HS512+A256KW":
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-oct-keys.js","sourceRoot":"","sources":["../../../../src/utils/private/key-types/get-oct-keys.ts"],"names":[],"mappings":";;;AAAA,4CAA2C;AAO3C,8DAGiC;AACjC,
|
|
1
|
+
{"version":3,"file":"get-oct-keys.js","sourceRoot":"","sources":["../../../../src/utils/private/key-types/get-oct-keys.ts"],"names":[],"mappings":";;;AAAA,4CAA2C;AAO3C,8DAGiC;AACjC,sEAGqC;AACrC,oFAG4C;AAErC,MAAM,oBAAoB,GAAG,CAAC,OAAyB,EAAmB,EAAE;IACjF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,KAAK;YACR,OAAO,IAAA,0CAAuB,EAAC,OAAO,CAAC,CAAC;QAE1C,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW;YACd,OAAO,IAAA,kDAA2B,EAAC,OAAO,CAAC,CAAC;QAE9C,KAAK,oBAAoB,CAAC;QAC1B,KAAK,oBAAoB,CAAC;QAC1B,KAAK,oBAAoB;YACvB,OAAO,IAAA,8DAAgC,EAAC,OAAO,CAAC,CAAC;QAEnD;YACE,MAAM,IAAI,iBAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC;AAvBW,QAAA,oBAAoB,wBAuB/B;AAEK,MAAM,oBAAoB,GAAG,CAAC,OAA0B,EAAoB,EAAE;IACnF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,KAAK;YACR,OAAO,IAAA,0CAAuB,EAAC,OAAO,CAAC,CAAC;QAE1C,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW;YACd,OAAO,IAAA,kDAA2B,EAAC,OAAO,CAAC,CAAC;QAE9C,KAAK,oBAAoB,CAAC;QAC1B,KAAK,oBAAoB,CAAC;QAC1B,KAAK,oBAAoB;YACvB,OAAO,IAAA,8DAAgC,EAAC,OAAO,CAAC,CAAC;QAEnD;YACE,MAAM,IAAI,iBAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC;AAvBW,QAAA,oBAAoB,wBAuB/B"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-okp-keys.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/key-types/get-okp-keys.ts"],"names":[],"mappings":"AACA,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,wBAAwB,CAAC;
|
|
1
|
+
{"version":3,"file":"get-okp-keys.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/key-types/get-okp-keys.ts"],"names":[],"mappings":"AACA,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,wBAAwB,CAAC;AAUhC,eAAO,MAAM,oBAAoB,YAAa,gBAAgB,KAAG,eAkBhE,CAAC;AAEF,eAAO,MAAM,oBAAoB,YAAa,iBAAiB,KAAG,gBAkBjE,CAAC"}
|
|
@@ -3,10 +3,18 @@ Object.defineProperty(exports, "__esModule", { value: true });
|
|
|
3
3
|
exports._getOkpDecryptionKey = exports._getOkpEncryptionKey = void 0;
|
|
4
4
|
const errors_1 = require("../../../errors");
|
|
5
5
|
const diffie_hellman_1 = require("../diffie-hellman/diffie-hellman");
|
|
6
|
+
const diffie_hellman_key_wrap_1 = require("../diffie-hellman/diffie-hellman-key-wrap");
|
|
6
7
|
const _getOkpEncryptionKey = (options) => {
|
|
7
8
|
switch (options.kryptos.algorithm) {
|
|
8
9
|
case "ECDH-ES":
|
|
9
10
|
return (0, diffie_hellman_1._getDiffieHellmanEncryptionKey)(options);
|
|
11
|
+
case "ECDH-ES+A128KW":
|
|
12
|
+
case "ECDH-ES+A192KW":
|
|
13
|
+
case "ECDH-ES+A256KW":
|
|
14
|
+
case "ECDH-ES+A128GCMKW":
|
|
15
|
+
case "ECDH-ES+A192GCMKW":
|
|
16
|
+
case "ECDH-ES+A256GCMKW":
|
|
17
|
+
return (0, diffie_hellman_key_wrap_1._getDiffieHellmanKeyWrapEncryptionKey)(options);
|
|
10
18
|
default:
|
|
11
19
|
throw new errors_1.AesError("Unexpected Kryptos", {
|
|
12
20
|
debug: { kryptos: options.kryptos.toJSON() },
|
|
@@ -18,6 +26,13 @@ const _getOkpDecryptionKey = (options) => {
|
|
|
18
26
|
switch (options.kryptos.algorithm) {
|
|
19
27
|
case "ECDH-ES":
|
|
20
28
|
return (0, diffie_hellman_1._getDiffieHellmanDecryptionKey)(options);
|
|
29
|
+
case "ECDH-ES+A128KW":
|
|
30
|
+
case "ECDH-ES+A192KW":
|
|
31
|
+
case "ECDH-ES+A256KW":
|
|
32
|
+
case "ECDH-ES+A128GCMKW":
|
|
33
|
+
case "ECDH-ES+A192GCMKW":
|
|
34
|
+
case "ECDH-ES+A256GCMKW":
|
|
35
|
+
return (0, diffie_hellman_key_wrap_1._getDiffieHellmanKeyWrapDecryptionKey)(options);
|
|
21
36
|
default:
|
|
22
37
|
throw new errors_1.AesError("Unexpected Kryptos", {
|
|
23
38
|
debug: { kryptos: options.kryptos.toJSON() },
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-okp-keys.js","sourceRoot":"","sources":["../../../../src/utils/private/key-types/get-okp-keys.ts"],"names":[],"mappings":";;;AAAA,4CAA2C;AAO3C,qEAG0C;
|
|
1
|
+
{"version":3,"file":"get-okp-keys.js","sourceRoot":"","sources":["../../../../src/utils/private/key-types/get-okp-keys.ts"],"names":[],"mappings":";;;AAAA,4CAA2C;AAO3C,qEAG0C;AAC1C,uFAGmD;AAE5C,MAAM,oBAAoB,GAAG,CAAC,OAAyB,EAAmB,EAAE;IACjF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,IAAA,+CAA8B,EAAC,OAAO,CAAC,CAAC;QAEjD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,IAAA,+DAAqC,EAAC,OAAO,CAAC,CAAC;QAExD;YACE,MAAM,IAAI,iBAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC;AAlBW,QAAA,oBAAoB,wBAkB/B;AAEK,MAAM,oBAAoB,GAAG,CAAC,OAA0B,EAAoB,EAAE;IACnF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,IAAA,+CAA8B,EAAC,OAAO,CAAC,CAAC;QAEjD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,IAAA,+DAAqC,EAAC,OAAO,CAAC,CAAC;QAExD;YACE,MAAM,IAAI,iBAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC;AAlBW,QAAA,oBAAoB,wBAkB/B"}
|
|
@@ -0,0 +1,4 @@
|
|
|
1
|
+
import { KeyUnwrapOptions, KeyUnwrapResult, KeyWrapOptions, KeyWrapResult } from "../../../types/private";
|
|
2
|
+
export declare const _ecbKeyWrap: ({ contentEncryptionKey, keyEncryptionKey, kryptos, }: KeyWrapOptions) => KeyWrapResult;
|
|
3
|
+
export declare const _ecbKeyUnwrap: ({ keyEncryptionKey, kryptos, publicEncryptionKey, }: KeyUnwrapOptions) => KeyUnwrapResult;
|
|
4
|
+
//# sourceMappingURL=ecb-key-wrap.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"ecb-key-wrap.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/key-wrap/ecb-key-wrap.ts"],"names":[],"mappings":"AACA,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,cAAc,EACd,aAAa,EACd,MAAM,wBAAwB,CAAC;AAMhC,eAAO,MAAM,WAAW,yDAIrB,cAAc,KAAG,aA8BnB,CAAC;AAEF,eAAO,MAAM,aAAa,wDAIvB,gBAAgB,KAAG,eAmCrB,CAAC"}
|
|
@@ -0,0 +1,66 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports._ecbKeyUnwrap = exports._ecbKeyWrap = void 0;
|
|
4
|
+
const crypto_1 = require("crypto");
|
|
5
|
+
const calculate_key_wrap_encryption_1 = require("../calculate/calculate-key-wrap-encryption");
|
|
6
|
+
const AIV = "A6A6A6A6A6A6A6A6";
|
|
7
|
+
const BLOCK_SIZE = 8;
|
|
8
|
+
const _ecbKeyWrap = ({ contentEncryptionKey, keyEncryptionKey, kryptos, }) => {
|
|
9
|
+
const algorithm = (0, calculate_key_wrap_encryption_1._calculateKeyWrapEncryption)(kryptos);
|
|
10
|
+
const n = contentEncryptionKey.length / BLOCK_SIZE;
|
|
11
|
+
let a = Buffer.from(AIV, "hex");
|
|
12
|
+
const r = [];
|
|
13
|
+
for (let i = 0; i < n; i++) {
|
|
14
|
+
r[i] = contentEncryptionKey.subarray(i * BLOCK_SIZE, (i + 1) * BLOCK_SIZE);
|
|
15
|
+
}
|
|
16
|
+
const cipher = (0, crypto_1.createCipheriv)(algorithm, keyEncryptionKey, null);
|
|
17
|
+
cipher.setAutoPadding(false);
|
|
18
|
+
for (let j = 0; j < 6; j++) {
|
|
19
|
+
for (let i = 0; i < n; i++) {
|
|
20
|
+
const b = Buffer.concat([a, r[i]]);
|
|
21
|
+
const encrypted = cipher.update(b);
|
|
22
|
+
a = encrypted.subarray(0, BLOCK_SIZE);
|
|
23
|
+
const t = n * j + i + 1;
|
|
24
|
+
const tBuffer = Buffer.alloc(BLOCK_SIZE);
|
|
25
|
+
tBuffer.writeUIntBE(t, 4, 4);
|
|
26
|
+
for (let k = 0; k < BLOCK_SIZE; k++) {
|
|
27
|
+
a[k] ^= tBuffer[k];
|
|
28
|
+
}
|
|
29
|
+
r[i] = encrypted.subarray(BLOCK_SIZE);
|
|
30
|
+
}
|
|
31
|
+
}
|
|
32
|
+
return { publicEncryptionKey: Buffer.concat([a, ...r]) };
|
|
33
|
+
};
|
|
34
|
+
exports._ecbKeyWrap = _ecbKeyWrap;
|
|
35
|
+
const _ecbKeyUnwrap = ({ keyEncryptionKey, kryptos, publicEncryptionKey, }) => {
|
|
36
|
+
const encryption = (0, calculate_key_wrap_encryption_1._calculateKeyWrapEncryption)(kryptos);
|
|
37
|
+
const n = publicEncryptionKey.length / BLOCK_SIZE - 1;
|
|
38
|
+
let a = publicEncryptionKey.subarray(0, BLOCK_SIZE);
|
|
39
|
+
const r = [];
|
|
40
|
+
for (let i = 0; i < n; i++) {
|
|
41
|
+
r[i] = publicEncryptionKey.subarray((i + 1) * BLOCK_SIZE, (i + 2) * BLOCK_SIZE);
|
|
42
|
+
}
|
|
43
|
+
const decipher = (0, crypto_1.createDecipheriv)(encryption, keyEncryptionKey, null);
|
|
44
|
+
decipher.setAutoPadding(false);
|
|
45
|
+
for (let j = 5; j >= 0; j--) {
|
|
46
|
+
for (let i = n - 1; i >= 0; i--) {
|
|
47
|
+
const t = n * j + i + 1;
|
|
48
|
+
const tBuffer = Buffer.alloc(BLOCK_SIZE);
|
|
49
|
+
tBuffer.writeUIntBE(t, 4, 4);
|
|
50
|
+
const aXorT = Buffer.alloc(BLOCK_SIZE);
|
|
51
|
+
for (let k = 0; k < BLOCK_SIZE; k++) {
|
|
52
|
+
aXorT[k] = a[k] ^ tBuffer[k];
|
|
53
|
+
}
|
|
54
|
+
const b = Buffer.concat([aXorT, r[i]]);
|
|
55
|
+
const decrypted = decipher.update(b);
|
|
56
|
+
a = decrypted.subarray(0, BLOCK_SIZE);
|
|
57
|
+
r[i] = decrypted.subarray(BLOCK_SIZE);
|
|
58
|
+
}
|
|
59
|
+
}
|
|
60
|
+
if (!a.equals(Buffer.from(AIV, "hex"))) {
|
|
61
|
+
throw new Error("Integrity check failed");
|
|
62
|
+
}
|
|
63
|
+
return { contentEncryptionKey: Buffer.concat(r) };
|
|
64
|
+
};
|
|
65
|
+
exports._ecbKeyUnwrap = _ecbKeyUnwrap;
|
|
66
|
+
//# sourceMappingURL=ecb-key-wrap.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"ecb-key-wrap.js","sourceRoot":"","sources":["../../../../src/utils/private/key-wrap/ecb-key-wrap.ts"],"names":[],"mappings":";;;AAAA,mCAA0D;AAO1D,8FAAyF;AAEzF,MAAM,GAAG,GAAG,kBAA2B,CAAC;AACxC,MAAM,UAAU,GAAG,CAAU,CAAC;AAEvB,MAAM,WAAW,GAAG,CAAC,EAC1B,oBAAoB,EACpB,gBAAgB,EAChB,OAAO,GACQ,EAAiB,EAAE;IAClC,MAAM,SAAS,GAAG,IAAA,2DAA2B,EAAC,OAAO,CAAC,CAAC;IAEvD,MAAM,CAAC,GAAG,oBAAoB,CAAC,MAAM,GAAG,UAAU,CAAC;IACnD,IAAI,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;IAChC,MAAM,CAAC,GAAG,EAAE,CAAC;IAEb,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC3B,CAAC,CAAC,CAAC,CAAC,GAAG,oBAAoB,CAAC,QAAQ,CAAC,CAAC,GAAG,UAAU,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,UAAU,CAAC,CAAC;IAC7E,CAAC;IAED,MAAM,MAAM,GAAG,IAAA,uBAAc,EAAC,SAAS,EAAE,gBAAgB,EAAE,IAAI,CAAC,CAAC;IACjE,MAAM,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC;IAE7B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC3B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;YAC3B,MAAM,CAAC,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YACnC,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;YACnC,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;YACtC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACxB,MAAM,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YACzC,OAAO,CAAC,WAAW,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC;YAC7B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,UAAU,EAAE,CAAC,EAAE,EAAE,CAAC;gBACpC,CAAC,CAAC,CAAC,CAAC,IAAI,OAAO,CAAC,CAAC,CAAC,CAAC;YACrB,CAAC;YACD,CAAC,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;QACxC,CAAC;IACH,CAAC;IAED,OAAO,EAAE,mBAAmB,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC;AAC3D,CAAC,CAAC;AAlCW,QAAA,WAAW,eAkCtB;AAEK,MAAM,aAAa,GAAG,CAAC,EAC5B,gBAAgB,EAChB,OAAO,EACP,mBAAmB,GACF,EAAmB,EAAE;IACtC,MAAM,UAAU,GAAG,IAAA,2DAA2B,EAAC,OAAO,CAAC,CAAC;IAExD,MAAM,CAAC,GAAG,mBAAmB,CAAC,MAAM,GAAG,UAAU,GAAG,CAAC,CAAC;IACtD,IAAI,CAAC,GAAG,mBAAmB,CAAC,QAAQ,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;IACpD,MAAM,CAAC,GAAG,EAAE,CAAC;IAEb,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC3B,CAAC,CAAC,CAAC,CAAC,GAAG,mBAAmB,CAAC,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,UAAU,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,UAAU,CAAC,CAAC;IAClF,CAAC;IAED,MAAM,QAAQ,GAAG,IAAA,yBAAgB,EAAC,UAAU,EAAE,gBAAgB,EAAE,IAAI,CAAC,CAAC;IACtE,QAAQ,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC;IAE/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC5B,KAAK,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;YAChC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACxB,MAAM,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YACzC,OAAO,CAAC,WAAW,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC;YAC7B,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YACvC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,UAAU,EAAE,CAAC,EAAE,EAAE,CAAC;gBACpC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;YAC/B,CAAC;YACD,MAAM,CAAC,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YACvC,MAAM,SAAS,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;YACrC,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;YACtC,CAAC,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;QACxC,CAAC;IACH,CAAC;IAED,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC,EAAE,CAAC;QACvC,MAAM,IAAI,KAAK,CAAC,wBAAwB,CAAC,CAAC;IAC5C,CAAC;IAED,OAAO,EAAE,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC;AACpD,CAAC,CAAC;AAvCW,QAAA,aAAa,iBAuCxB"}
|
|
@@ -0,0 +1,4 @@
|
|
|
1
|
+
import { KeyUnwrapOptions, KeyUnwrapResult, KeyWrapOptions, KeyWrapResult } from "../../../types/private";
|
|
2
|
+
export declare const _gcmKeyWrap: ({ contentEncryptionKey, keyEncryptionKey, kryptos, }: KeyWrapOptions) => KeyWrapResult;
|
|
3
|
+
export declare const _gcmKeyUnwrap: ({ keyEncryptionKey, kryptos, publicEncryptionIv, publicEncryptionKey, publicEncryptionTag, }: KeyUnwrapOptions) => KeyUnwrapResult;
|
|
4
|
+
//# sourceMappingURL=gcm-key-wrap.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"gcm-key-wrap.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/key-wrap/gcm-key-wrap.ts"],"names":[],"mappings":"AAQA,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,cAAc,EACd,aAAa,EACd,MAAM,wBAAwB,CAAC;AAGhC,eAAO,MAAM,WAAW,yDAIrB,cAAc,KAAG,aAkBnB,CAAC;AAEF,eAAO,MAAM,aAAa,iGAMvB,gBAAgB,KAAG,eAwBrB,CAAC"}
|
|
@@ -0,0 +1,36 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports._gcmKeyUnwrap = exports._gcmKeyWrap = void 0;
|
|
4
|
+
const crypto_1 = require("crypto");
|
|
5
|
+
const errors_1 = require("../../../errors");
|
|
6
|
+
const calculate_key_wrap_encryption_1 = require("../calculate/calculate-key-wrap-encryption");
|
|
7
|
+
const _gcmKeyWrap = ({ contentEncryptionKey, keyEncryptionKey, kryptos, }) => {
|
|
8
|
+
const algorithm = (0, calculate_key_wrap_encryption_1._calculateKeyWrapEncryption)(kryptos);
|
|
9
|
+
const publicEncryptionIv = (0, crypto_1.randomBytes)(12);
|
|
10
|
+
const cipher = (0, crypto_1.createCipheriv)(algorithm, keyEncryptionKey, publicEncryptionIv);
|
|
11
|
+
const publicEncryptionKey = Buffer.concat([
|
|
12
|
+
cipher.update(contentEncryptionKey),
|
|
13
|
+
cipher.final(),
|
|
14
|
+
]);
|
|
15
|
+
const publicEncryptionTag = cipher.getAuthTag();
|
|
16
|
+
return { publicEncryptionKey, publicEncryptionIv, publicEncryptionTag };
|
|
17
|
+
};
|
|
18
|
+
exports._gcmKeyWrap = _gcmKeyWrap;
|
|
19
|
+
const _gcmKeyUnwrap = ({ keyEncryptionKey, kryptos, publicEncryptionIv, publicEncryptionKey, publicEncryptionTag, }) => {
|
|
20
|
+
if (!publicEncryptionIv) {
|
|
21
|
+
throw new errors_1.AesError("Invalid public encryption iv");
|
|
22
|
+
}
|
|
23
|
+
if (!publicEncryptionTag) {
|
|
24
|
+
throw new errors_1.AesError("Invalid public encryption tag");
|
|
25
|
+
}
|
|
26
|
+
const algorithm = (0, calculate_key_wrap_encryption_1._calculateKeyWrapEncryption)(kryptos);
|
|
27
|
+
const decipher = (0, crypto_1.createDecipheriv)(algorithm, keyEncryptionKey, publicEncryptionIv);
|
|
28
|
+
decipher.setAuthTag(publicEncryptionTag);
|
|
29
|
+
const contentEncryptionKey = Buffer.concat([
|
|
30
|
+
decipher.update(publicEncryptionKey),
|
|
31
|
+
decipher.final(),
|
|
32
|
+
]);
|
|
33
|
+
return { contentEncryptionKey };
|
|
34
|
+
};
|
|
35
|
+
exports._gcmKeyUnwrap = _gcmKeyUnwrap;
|
|
36
|
+
//# sourceMappingURL=gcm-key-wrap.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"gcm-key-wrap.js","sourceRoot":"","sources":["../../../../src/utils/private/key-wrap/gcm-key-wrap.ts"],"names":[],"mappings":";;;AAAA,mCAMgB;AAChB,4CAA2C;AAO3C,8FAAyF;AAElF,MAAM,WAAW,GAAG,CAAC,EAC1B,oBAAoB,EACpB,gBAAgB,EAChB,OAAO,GACQ,EAAiB,EAAE;IAClC,MAAM,SAAS,GAAG,IAAA,2DAA2B,EAAC,OAAO,CAAC,CAAC;IAEvD,MAAM,kBAAkB,GAAG,IAAA,oBAAW,EAAC,EAAE,CAAC,CAAC;IAC3C,MAAM,MAAM,GAAG,IAAA,uBAAc,EAC3B,SAAS,EACT,gBAAgB,EAChB,kBAAkB,CACN,CAAC;IAEf,MAAM,mBAAmB,GAAG,MAAM,CAAC,MAAM,CAAC;QACxC,MAAM,CAAC,MAAM,CAAC,oBAAoB,CAAC;QACnC,MAAM,CAAC,KAAK,EAAE;KACf,CAAC,CAAC;IAEH,MAAM,mBAAmB,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;IAEhD,OAAO,EAAE,mBAAmB,EAAE,kBAAkB,EAAE,mBAAmB,EAAE,CAAC;AAC1E,CAAC,CAAC;AAtBW,QAAA,WAAW,eAsBtB;AAEK,MAAM,aAAa,GAAG,CAAC,EAC5B,gBAAgB,EAChB,OAAO,EACP,kBAAkB,EAClB,mBAAmB,EACnB,mBAAmB,GACF,EAAmB,EAAE;IACtC,IAAI,CAAC,kBAAkB,EAAE,CAAC;QACxB,MAAM,IAAI,iBAAQ,CAAC,8BAA8B,CAAC,CAAC;IACrD,CAAC;IACD,IAAI,CAAC,mBAAmB,EAAE,CAAC;QACzB,MAAM,IAAI,iBAAQ,CAAC,+BAA+B,CAAC,CAAC;IACtD,CAAC;IAED,MAAM,SAAS,GAAG,IAAA,2DAA2B,EAAC,OAAO,CAAC,CAAC;IAEvD,MAAM,QAAQ,GAAG,IAAA,yBAAgB,EAC/B,SAAS,EACT,gBAAgB,EAChB,kBAAkB,CACJ,CAAC;IAEjB,QAAQ,CAAC,UAAU,CAAC,mBAAmB,CAAC,CAAC;IAEzC,MAAM,oBAAoB,GAAG,MAAM,CAAC,MAAM,CAAC;QACzC,QAAQ,CAAC,MAAM,CAAC,mBAAmB,CAAC;QACpC,QAAQ,CAAC,KAAK,EAAE;KACjB,CAAC,CAAC;IAEH,OAAO,EAAE,oBAAoB,EAAE,CAAC;AAClC,CAAC,CAAC;AA9BW,QAAA,aAAa,iBA8BxB"}
|
|
@@ -1,16 +1,4 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
contentEncryptionKey: Buffer;
|
|
5
|
-
keyEncryptionKey: Buffer;
|
|
6
|
-
kryptos: IKryptos;
|
|
7
|
-
};
|
|
8
|
-
type KeyUnwrapOptions = {
|
|
9
|
-
keyEncryptionKey: Buffer;
|
|
10
|
-
kryptos: IKryptos;
|
|
11
|
-
wrappedKey: Buffer;
|
|
12
|
-
};
|
|
13
|
-
export declare const _aesKeyWrap: ({ contentEncryptionKey, keyEncryptionKey, kryptos, }: KeyWrapOptions) => Buffer;
|
|
14
|
-
export declare const _aesKeyUnwrap: ({ keyEncryptionKey, kryptos, wrappedKey, }: KeyUnwrapOptions) => Buffer;
|
|
15
|
-
export {};
|
|
1
|
+
import { KeyUnwrapOptions, KeyUnwrapResult, KeyWrapOptions, KeyWrapResult } from "../../../types/private";
|
|
2
|
+
export declare const _keyWrap: (options: KeyWrapOptions) => KeyWrapResult;
|
|
3
|
+
export declare const _keyUnwrap: (options: KeyUnwrapOptions) => KeyUnwrapResult;
|
|
16
4
|
//# sourceMappingURL=key-wrap.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"key-wrap.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/key-wrap/key-wrap.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"key-wrap.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/key-wrap/key-wrap.ts"],"names":[],"mappings":"AACA,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,cAAc,EACd,aAAa,EACd,MAAM,wBAAwB,CAAC;AAIhC,eAAO,MAAM,QAAQ,YAAa,cAAc,KAAG,aAqBlD,CAAC;AAEF,eAAO,MAAM,UAAU,YAAa,gBAAgB,KAAG,eAqBtD,CAAC"}
|
|
@@ -1,66 +1,49 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.
|
|
4
|
-
const
|
|
5
|
-
const
|
|
6
|
-
const
|
|
7
|
-
const
|
|
8
|
-
|
|
9
|
-
|
|
10
|
-
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
14
|
-
|
|
3
|
+
exports._keyUnwrap = exports._keyWrap = void 0;
|
|
4
|
+
const errors_1 = require("../../../errors");
|
|
5
|
+
const ecb_key_wrap_1 = require("./ecb-key-wrap");
|
|
6
|
+
const gcm_key_wrap_1 = require("./gcm-key-wrap");
|
|
7
|
+
const _keyWrap = (options) => {
|
|
8
|
+
switch (options.kryptos.algorithm) {
|
|
9
|
+
case "A128KW":
|
|
10
|
+
case "A192KW":
|
|
11
|
+
case "A256KW":
|
|
12
|
+
case "ECDH-ES+A128KW":
|
|
13
|
+
case "ECDH-ES+A192KW":
|
|
14
|
+
case "ECDH-ES+A256KW":
|
|
15
|
+
return (0, ecb_key_wrap_1._ecbKeyWrap)(options);
|
|
16
|
+
case "A128GCMKW":
|
|
17
|
+
case "A192GCMKW":
|
|
18
|
+
case "A256GCMKW":
|
|
19
|
+
case "ECDH-ES+A128GCMKW":
|
|
20
|
+
case "ECDH-ES+A192GCMKW":
|
|
21
|
+
case "ECDH-ES+A256GCMKW":
|
|
22
|
+
return (0, gcm_key_wrap_1._gcmKeyWrap)(options);
|
|
23
|
+
default:
|
|
24
|
+
throw new errors_1.AesError("Unsupported key wrap algorithm");
|
|
15
25
|
}
|
|
16
|
-
const cipher = (0, crypto_1.createCipheriv)(algorithm, keyEncryptionKey, null);
|
|
17
|
-
cipher.setAutoPadding(false);
|
|
18
|
-
for (let j = 0; j < 6; j++) {
|
|
19
|
-
for (let i = 0; i < n; i++) {
|
|
20
|
-
const b = Buffer.concat([a, r[i]]);
|
|
21
|
-
const encrypted = cipher.update(b);
|
|
22
|
-
a = encrypted.subarray(0, BLOCK_SIZE);
|
|
23
|
-
const t = n * j + i + 1;
|
|
24
|
-
const tBuffer = Buffer.alloc(BLOCK_SIZE);
|
|
25
|
-
tBuffer.writeUIntBE(t, 4, 4);
|
|
26
|
-
for (let k = 0; k < BLOCK_SIZE; k++) {
|
|
27
|
-
a[k] ^= tBuffer[k];
|
|
28
|
-
}
|
|
29
|
-
r[i] = encrypted.subarray(BLOCK_SIZE);
|
|
30
|
-
}
|
|
31
|
-
}
|
|
32
|
-
return Buffer.concat([a, ...r]);
|
|
33
26
|
};
|
|
34
|
-
exports.
|
|
35
|
-
const
|
|
36
|
-
|
|
37
|
-
|
|
38
|
-
|
|
39
|
-
|
|
40
|
-
|
|
41
|
-
|
|
42
|
-
|
|
43
|
-
|
|
44
|
-
|
|
45
|
-
|
|
46
|
-
|
|
47
|
-
|
|
48
|
-
|
|
49
|
-
|
|
50
|
-
|
|
51
|
-
|
|
52
|
-
|
|
53
|
-
}
|
|
54
|
-
const b = Buffer.concat([aXorT, r[i]]);
|
|
55
|
-
const decrypted = decipher.update(b);
|
|
56
|
-
a = decrypted.subarray(0, BLOCK_SIZE);
|
|
57
|
-
r[i] = decrypted.subarray(BLOCK_SIZE);
|
|
58
|
-
}
|
|
59
|
-
}
|
|
60
|
-
if (!a.equals(Buffer.from(AIV, "hex"))) {
|
|
61
|
-
throw new Error("Integrity check failed");
|
|
27
|
+
exports._keyWrap = _keyWrap;
|
|
28
|
+
const _keyUnwrap = (options) => {
|
|
29
|
+
switch (options.kryptos.algorithm) {
|
|
30
|
+
case "A128KW":
|
|
31
|
+
case "A192KW":
|
|
32
|
+
case "A256KW":
|
|
33
|
+
case "ECDH-ES+A128KW":
|
|
34
|
+
case "ECDH-ES+A192KW":
|
|
35
|
+
case "ECDH-ES+A256KW":
|
|
36
|
+
return (0, ecb_key_wrap_1._ecbKeyUnwrap)(options);
|
|
37
|
+
case "A128GCMKW":
|
|
38
|
+
case "A192GCMKW":
|
|
39
|
+
case "A256GCMKW":
|
|
40
|
+
case "ECDH-ES+A128GCMKW":
|
|
41
|
+
case "ECDH-ES+A192GCMKW":
|
|
42
|
+
case "ECDH-ES+A256GCMKW":
|
|
43
|
+
return (0, gcm_key_wrap_1._gcmKeyUnwrap)(options);
|
|
44
|
+
default:
|
|
45
|
+
throw new errors_1.AesError("Unsupported key wrap algorithm");
|
|
62
46
|
}
|
|
63
|
-
return Buffer.concat(r);
|
|
64
47
|
};
|
|
65
|
-
exports.
|
|
48
|
+
exports._keyUnwrap = _keyUnwrap;
|
|
66
49
|
//# sourceMappingURL=key-wrap.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"key-wrap.js","sourceRoot":"","sources":["../../../../src/utils/private/key-wrap/key-wrap.ts"],"names":[],"mappings":";;;
|
|
1
|
+
{"version":3,"file":"key-wrap.js","sourceRoot":"","sources":["../../../../src/utils/private/key-wrap/key-wrap.ts"],"names":[],"mappings":";;;AAAA,4CAA2C;AAO3C,iDAA4D;AAC5D,iDAA4D;AAErD,MAAM,QAAQ,GAAG,CAAC,OAAuB,EAAiB,EAAE;IACjE,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB;YACnB,OAAO,IAAA,0BAAW,EAAC,OAAO,CAAC,CAAC;QAE9B,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,IAAA,0BAAW,EAAC,OAAO,CAAC,CAAC;QAE9B;YACE,MAAM,IAAI,iBAAQ,CAAC,gCAAgC,CAAC,CAAC;IACzD,CAAC;AACH,CAAC,CAAC;AArBW,QAAA,QAAQ,YAqBnB;AAEK,MAAM,UAAU,GAAG,CAAC,OAAyB,EAAmB,EAAE;IACvE,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB;YACnB,OAAO,IAAA,4BAAa,EAAC,OAAO,CAAC,CAAC;QAEhC,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,IAAA,4BAAa,EAAC,OAAO,CAAC,CAAC;QAEhC;YACE,MAAM,IAAI,iBAAQ,CAAC,gCAAgC,CAAC,CAAC;IACzD,CAAC;AACH,CAAC,CAAC;AArBW,QAAA,UAAU,cAqBrB"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
1
|
import { CreateCekOptions, CreateCekResult, DecryptCekOptions, DecryptCekResult } from "../../../types/private";
|
|
2
2
|
export declare const _getOctKeyWrapEncryptionKey: ({ encryption, kryptos, }: CreateCekOptions) => CreateCekResult;
|
|
3
|
-
export declare const _getOctKeyWrapDecryptionKey: ({ hkdfSalt, kryptos, publicEncryptionKey, }: DecryptCekOptions) => DecryptCekResult;
|
|
4
|
-
//# sourceMappingURL=get-oct-key-wrap
|
|
3
|
+
export declare const _getOctKeyWrapDecryptionKey: ({ hkdfSalt, kryptos, publicEncryptionIv, publicEncryptionKey, publicEncryptionTag, }: DecryptCekOptions) => DecryptCekResult;
|
|
4
|
+
//# sourceMappingURL=get-oct-key-key-wrap.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"get-oct-key-key-wrap.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/oct/get-oct-key-key-wrap.ts"],"names":[],"mappings":"AAGA,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,wBAAwB,CAAC;AAMhC,eAAO,MAAM,2BAA2B,6BAGrC,gBAAgB,KAAG,eA4BrB,CAAC;AAEF,eAAO,MAAM,2BAA2B,yFAMrC,iBAAiB,KAAG,gBAuBtB,CAAC"}
|
|
@@ -19,7 +19,7 @@ const _getOctKeyWrapEncryptionKey = ({ encryption, kryptos, }) => {
|
|
|
19
19
|
derivationKey: der.privateKey,
|
|
20
20
|
keyLength: (0, calculate_key_wrap_size_1._calculateKeyWrapSize)(kryptos.algorithm),
|
|
21
21
|
});
|
|
22
|
-
const publicEncryptionKey = (0, key_wrap_1.
|
|
22
|
+
const { publicEncryptionKey, publicEncryptionIv, publicEncryptionTag } = (0, key_wrap_1._keyWrap)({
|
|
23
23
|
contentEncryptionKey,
|
|
24
24
|
kryptos,
|
|
25
25
|
keyEncryptionKey: derivedKey,
|
|
@@ -28,10 +28,12 @@ const _getOctKeyWrapEncryptionKey = ({ encryption, kryptos, }) => {
|
|
|
28
28
|
contentEncryptionKey,
|
|
29
29
|
hkdfSalt,
|
|
30
30
|
publicEncryptionKey,
|
|
31
|
+
publicEncryptionIv,
|
|
32
|
+
publicEncryptionTag,
|
|
31
33
|
};
|
|
32
34
|
};
|
|
33
35
|
exports._getOctKeyWrapEncryptionKey = _getOctKeyWrapEncryptionKey;
|
|
34
|
-
const _getOctKeyWrapDecryptionKey = ({ hkdfSalt, kryptos, publicEncryptionKey, }) => {
|
|
36
|
+
const _getOctKeyWrapDecryptionKey = ({ hkdfSalt, kryptos, publicEncryptionIv, publicEncryptionKey, publicEncryptionTag, }) => {
|
|
35
37
|
if (!kryptos_1.Kryptos.isOct(kryptos)) {
|
|
36
38
|
throw new errors_1.AesError("Invalid Kryptos", { debug: { kryptos: kryptos.toJSON() } });
|
|
37
39
|
}
|
|
@@ -44,12 +46,13 @@ const _getOctKeyWrapDecryptionKey = ({ hkdfSalt, kryptos, publicEncryptionKey, }
|
|
|
44
46
|
hkdfSalt,
|
|
45
47
|
keyLength: (0, calculate_key_wrap_size_1._calculateKeyWrapSize)(kryptos.algorithm),
|
|
46
48
|
});
|
|
47
|
-
|
|
49
|
+
return (0, key_wrap_1._keyUnwrap)({
|
|
48
50
|
keyEncryptionKey: derivedKey,
|
|
49
51
|
kryptos,
|
|
50
|
-
|
|
52
|
+
publicEncryptionIv,
|
|
53
|
+
publicEncryptionKey,
|
|
54
|
+
publicEncryptionTag,
|
|
51
55
|
});
|
|
52
|
-
return { contentEncryptionKey: unwrappedKey };
|
|
53
56
|
};
|
|
54
57
|
exports._getOctKeyWrapDecryptionKey = _getOctKeyWrapDecryptionKey;
|
|
55
|
-
//# sourceMappingURL=get-oct-key-wrap
|
|
58
|
+
//# sourceMappingURL=get-oct-key-key-wrap.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"get-oct-key-key-wrap.js","sourceRoot":"","sources":["../../../../src/utils/private/oct/get-oct-key-key-wrap.ts"],"names":[],"mappings":";;;AAAA,8CAA2C;AAC3C,mCAAqC;AACrC,4CAA2C;AAO3C,8GAAwG;AACxG,kFAA6E;AAC7E,iDAA+C;AAC/C,mDAA4D;AAErD,MAAM,2BAA2B,GAAG,CAAC,EAC1C,UAAU,EACV,OAAO,GACU,EAAmB,EAAE;IACtC,IAAI,CAAC,iBAAO,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,iBAAQ,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,MAAM,EAAE,EAAE,EAAE,CAAC,CAAC;IAClF,CAAC;IAED,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAElC,MAAM,OAAO,GAAG,IAAA,0EAAkC,EAAC,UAAU,CAAC,CAAC;IAC/D,MAAM,oBAAoB,GAAG,IAAA,oBAAW,EAAC,OAAO,CAAC,CAAC;IAElD,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,GAAG,IAAA,YAAK,EAAC;QACrC,aAAa,EAAE,GAAG,CAAC,UAAU;QAC7B,SAAS,EAAE,IAAA,+CAAqB,EAAC,OAAO,CAAC,SAAS,CAAC;KACpD,CAAC,CAAC;IAEH,MAAM,EAAE,mBAAmB,EAAE,kBAAkB,EAAE,mBAAmB,EAAE,GAAG,IAAA,mBAAQ,EAAC;QAChF,oBAAoB;QACpB,OAAO;QACP,gBAAgB,EAAE,UAAU;KAC7B,CAAC,CAAC;IAEH,OAAO;QACL,oBAAoB;QACpB,QAAQ;QACR,mBAAmB;QACnB,kBAAkB;QAClB,mBAAmB;KACpB,CAAC;AACJ,CAAC,CAAC;AA/BW,QAAA,2BAA2B,+BA+BtC;AAEK,MAAM,2BAA2B,GAAG,CAAC,EAC1C,QAAQ,EACR,OAAO,EACP,kBAAkB,EAClB,mBAAmB,EACnB,mBAAmB,GACD,EAAoB,EAAE;IACxC,IAAI,CAAC,iBAAO,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,iBAAQ,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,MAAM,EAAE,EAAE,EAAE,CAAC,CAAC;IAClF,CAAC;IACD,IAAI,CAAC,mBAAmB,EAAE,CAAC;QACzB,MAAM,IAAI,iBAAQ,CAAC,6BAA6B,CAAC,CAAC;IACpD,CAAC;IAED,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAElC,MAAM,EAAE,UAAU,EAAE,GAAG,IAAA,YAAK,EAAC;QAC3B,aAAa,EAAE,GAAG,CAAC,UAAU;QAC7B,QAAQ;QACR,SAAS,EAAE,IAAA,+CAAqB,EAAC,OAAO,CAAC,SAAS,CAAC;KACpD,CAAC,CAAC;IAEH,OAAO,IAAA,qBAAU,EAAC;QAChB,gBAAgB,EAAE,UAAU;QAC5B,OAAO;QACP,kBAAkB;QAClB,mBAAmB;QACnB,mBAAmB;KACpB,CAAC,CAAC;AACL,CAAC,CAAC;AA7BW,QAAA,2BAA2B,+BA6BtC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-oct-pbkdf-key-wrap-keys.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/oct/get-oct-pbkdf-key-wrap-keys.ts"],"names":[],"mappings":"AAGA,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,wBAAwB,CAAC;AAOhC,eAAO,MAAM,gCAAgC,6BAG1C,gBAAgB,KAAG,eA4BrB,CAAC;AAEF,eAAO,MAAM,gCAAgC,kEAK1C,iBAAiB,KAAG,
|
|
1
|
+
{"version":3,"file":"get-oct-pbkdf-key-wrap-keys.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/oct/get-oct-pbkdf-key-wrap-keys.ts"],"names":[],"mappings":"AAGA,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,wBAAwB,CAAC;AAOhC,eAAO,MAAM,gCAAgC,6BAG1C,gBAAgB,KAAG,eA4BrB,CAAC;AAEF,eAAO,MAAM,gCAAgC,kEAK1C,iBAAiB,KAAG,gBAuBtB,CAAC"}
|
|
@@ -8,7 +8,7 @@ const calculate_content_encryption_key_size_1 = require("../calculate/calculate-
|
|
|
8
8
|
const calculate_key_wrap_size_1 = require("../calculate/calculate-key-wrap-size");
|
|
9
9
|
const calculate_pbkdf_hash_1 = require("../calculate/calculate-pbkdf-hash");
|
|
10
10
|
const pbkdf_1 = require("../key-derivation/pbkdf");
|
|
11
|
-
const
|
|
11
|
+
const ecb_key_wrap_1 = require("../key-wrap/ecb-key-wrap");
|
|
12
12
|
const _getOctPbkdfKeyWrapEncryptionKey = ({ encryption, kryptos, }) => {
|
|
13
13
|
if (!kryptos_1.Kryptos.isOct(kryptos)) {
|
|
14
14
|
throw new errors_1.AesError("Invalid Kryptos", { debug: { kryptos: kryptos.toJSON() } });
|
|
@@ -21,7 +21,7 @@ const _getOctPbkdfKeyWrapEncryptionKey = ({ encryption, kryptos, }) => {
|
|
|
21
21
|
keyLength: (0, calculate_key_wrap_size_1._calculateKeyWrapSize)(kryptos.algorithm),
|
|
22
22
|
algorithm: (0, calculate_pbkdf_hash_1._calculatePbkdfAlgorithm)(kryptos),
|
|
23
23
|
});
|
|
24
|
-
const publicEncryptionKey = (0,
|
|
24
|
+
const { publicEncryptionKey } = (0, ecb_key_wrap_1._ecbKeyWrap)({
|
|
25
25
|
contentEncryptionKey,
|
|
26
26
|
kryptos,
|
|
27
27
|
keyEncryptionKey: derivedKey,
|
|
@@ -49,12 +49,11 @@ const _getOctPbkdfKeyWrapDecryptionKey = ({ kryptos, pbkdfIterations, pbkdfSalt,
|
|
|
49
49
|
pbkdfIterations,
|
|
50
50
|
pbkdfSalt,
|
|
51
51
|
});
|
|
52
|
-
|
|
52
|
+
return (0, ecb_key_wrap_1._ecbKeyUnwrap)({
|
|
53
53
|
keyEncryptionKey: derivedKey,
|
|
54
54
|
kryptos,
|
|
55
|
-
|
|
55
|
+
publicEncryptionKey,
|
|
56
56
|
});
|
|
57
|
-
return { contentEncryptionKey: unwrappedKey };
|
|
58
57
|
};
|
|
59
58
|
exports._getOctPbkdfKeyWrapDecryptionKey = _getOctPbkdfKeyWrapDecryptionKey;
|
|
60
59
|
//# sourceMappingURL=get-oct-pbkdf-key-wrap-keys.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-oct-pbkdf-key-wrap-keys.js","sourceRoot":"","sources":["../../../../src/utils/private/oct/get-oct-pbkdf-key-wrap-keys.ts"],"names":[],"mappings":";;;AAAA,8CAA2C;AAC3C,mCAAqC;AACrC,4CAA2C;AAO3C,8GAAwG;AACxG,kFAA6E;AAC7E,4EAA6E;AAC7E,mDAAiD;AACjD,
|
|
1
|
+
{"version":3,"file":"get-oct-pbkdf-key-wrap-keys.js","sourceRoot":"","sources":["../../../../src/utils/private/oct/get-oct-pbkdf-key-wrap-keys.ts"],"names":[],"mappings":";;;AAAA,8CAA2C;AAC3C,mCAAqC;AACrC,4CAA2C;AAO3C,8GAAwG;AACxG,kFAA6E;AAC7E,4EAA6E;AAC7E,mDAAiD;AACjD,2DAAsE;AAE/D,MAAM,gCAAgC,GAAG,CAAC,EAC/C,UAAU,EACV,OAAO,GACU,EAAmB,EAAE;IACtC,IAAI,CAAC,iBAAO,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,iBAAQ,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,MAAM,EAAE,EAAE,EAAE,CAAC,CAAC;IAClF,CAAC;IAED,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAElC,MAAM,OAAO,GAAG,IAAA,0EAAkC,EAAC,UAAU,CAAC,CAAC;IAC/D,MAAM,oBAAoB,GAAG,IAAA,oBAAW,EAAC,OAAO,CAAC,CAAC;IAElD,MAAM,EAAE,UAAU,EAAE,eAAe,EAAE,SAAS,EAAE,GAAG,IAAA,cAAM,EAAC;QACxD,aAAa,EAAE,GAAG,CAAC,UAAU;QAC7B,SAAS,EAAE,IAAA,+CAAqB,EAAC,OAAO,CAAC,SAAS,CAAC;QACnD,SAAS,EAAE,IAAA,+CAAwB,EAAC,OAAO,CAAC;KAC7C,CAAC,CAAC;IAEH,MAAM,EAAE,mBAAmB,EAAE,GAAG,IAAA,0BAAW,EAAC;QAC1C,oBAAoB;QACpB,OAAO;QACP,gBAAgB,EAAE,UAAU;KAC7B,CAAC,CAAC;IAEH,OAAO;QACL,oBAAoB;QACpB,eAAe;QACf,SAAS;QACT,mBAAmB;KACpB,CAAC;AACJ,CAAC,CAAC;AA/BW,QAAA,gCAAgC,oCA+B3C;AAEK,MAAM,gCAAgC,GAAG,CAAC,EAC/C,OAAO,EACP,eAAe,EACf,SAAS,EACT,mBAAmB,GACD,EAAoB,EAAE;IACxC,IAAI,CAAC,iBAAO,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,iBAAQ,CAAC,iBAAiB,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,MAAM,EAAE,EAAE,EAAE,CAAC,CAAC;IAClF,CAAC;IACD,IAAI,CAAC,mBAAmB,EAAE,CAAC;QACzB,MAAM,IAAI,iBAAQ,CAAC,6BAA6B,CAAC,CAAC;IACpD,CAAC;IAED,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAElC,MAAM,EAAE,UAAU,EAAE,GAAG,IAAA,cAAM,EAAC;QAC5B,aAAa,EAAE,GAAG,CAAC,UAAU;QAC7B,SAAS,EAAE,IAAA,+CAAqB,EAAC,OAAO,CAAC,SAAS,CAAC;QACnD,SAAS,EAAE,IAAA,+CAAwB,EAAC,OAAO,CAAC;QAC5C,eAAe;QACf,SAAS;KACV,CAAC,CAAC;IAEH,OAAO,IAAA,4BAAa,EAAC;QACnB,gBAAgB,EAAE,UAAU;QAC5B,OAAO;QACP,mBAAmB;KACpB,CAAC,CAAC;AACL,CAAC,CAAC;AA5BW,QAAA,gCAAgC,oCA4B3C"}
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@lindorm/aes",
|
|
3
|
-
"version": "0.
|
|
3
|
+
"version": "0.3.0",
|
|
4
4
|
"license": "AGPL-3.0-or-later",
|
|
5
5
|
"author": "Jonn Nilsson",
|
|
6
6
|
"repository": {
|
|
@@ -28,10 +28,10 @@
|
|
|
28
28
|
"dependencies": {
|
|
29
29
|
"@lindorm/errors": "^0.1.5",
|
|
30
30
|
"@lindorm/is": "^0.1.5",
|
|
31
|
-
"@lindorm/kryptos": "^0.3.
|
|
31
|
+
"@lindorm/kryptos": "^0.3.1"
|
|
32
32
|
},
|
|
33
33
|
"devDependencies": {
|
|
34
34
|
"@lindorm/types": "^0.1.4"
|
|
35
35
|
},
|
|
36
|
-
"gitHead": "
|
|
36
|
+
"gitHead": "b2bcea52f09a87f312028c18b12dcb5632ffaf35"
|
|
37
37
|
}
|