@lindorm/aes 0.5.5 → 0.6.0

package/dist/utils/private/serialised-aes.js

@@ -2,52 +2,44 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.parseSerialisedAesRecord = exports.createSerialisedAesRecord = void 0;
 const b64_1 = require("@lindorm/b64");
-const createSerialisedAesRecord = (data) => ({
-    algorithm: data.algorithm,
-    authTag: b64_1.B64.encode(data.authTag),
-    content: b64_1.B64.encode(data.content),
-    contentType: data.contentType,
-    encryption: data.encryption,
-    hkdfSalt: data.hkdfSalt ? b64_1.B64.encode(data.hkdfSalt) : undefined,
-    initialisationVector: b64_1.B64.encode(data.initialisationVector),
-    keyId: data.keyId,
-    pbkdfIterations: data.pbkdfIterations,
-    pbkdfSalt: data.pbkdfSalt ? b64_1.B64.encode(data.pbkdfSalt) : undefined,
-    publicEncryptionIv: data.publicEncryptionIv
-        ? b64_1.B64.encode(data.publicEncryptionIv)
-        : undefined,
-    publicEncryptionJwk: data.publicEncryptionJwk,
-    publicEncryptionKey: data.publicEncryptionKey
-        ? b64_1.B64.encode(data.publicEncryptionKey)
-        : undefined,
-    publicEncryptionTag: data.publicEncryptionTag
-        ? b64_1.B64.encode(data.publicEncryptionTag)
-        : undefined,
-    version: data.version,
-});
+const private_1 = require("../../constants/private");
+const aes_header_1 = require("./aes-header");
+const createSerialisedAesRecord = (data) => {
+    const header = (0, aes_header_1.buildAesHeader)({
+        algorithm: data.algorithm,
+        contentType: data.contentType,
+        encryption: data.encryption,
+        keyId: data.keyId,
+        pbkdfIterations: data.pbkdfIterations,
+        pbkdfSalt: data.pbkdfSalt,
+        publicEncryptionIv: data.publicEncryptionIv,
+        publicEncryptionJwk: data.publicEncryptionJwk,
+        publicEncryptionTag: data.publicEncryptionTag,
+    });
+    return {
+        cek: data.publicEncryptionKey
+            ? b64_1.B64.encode(data.publicEncryptionKey, "b64u")
+            : undefined,
+        ciphertext: b64_1.B64.encode(data.content, "b64u"),
+        header: (0, aes_header_1.encodeAesHeader)(header),
+        iv: b64_1.B64.encode(data.initialisationVector, "b64u"),
+        tag: b64_1.B64.encode(data.authTag, "b64u"),
+        v: private_1.AES_FORMAT_VERSION,
+    };
+};
 exports.createSerialisedAesRecord = createSerialisedAesRecord;
-const parseSerialisedAesRecord = (options) => ({
-    algorithm: options.algorithm,
-    authTag: options.authTag ? b64_1.B64.toBuffer(options.authTag) : undefined,
-    content: b64_1.B64.toBuffer(options.content),
-    contentType: options.contentType,
-    encryption: options.encryption,
-    hkdfSalt: options.hkdfSalt ? b64_1.B64.toBuffer(options.hkdfSalt) : undefined,
-    initialisationVector: b64_1.B64.toBuffer(options.initialisationVector),
-    keyId: options.keyId,
-    pbkdfIterations: options.pbkdfIterations,
-    pbkdfSalt: options.pbkdfSalt ? b64_1.B64.toBuffer(options.pbkdfSalt) : undefined,
-    publicEncryptionIv: options.publicEncryptionIv
-        ? b64_1.B64.toBuffer(options.publicEncryptionIv)
-        : undefined,
-    publicEncryptionJwk: options.publicEncryptionJwk,
-    publicEncryptionKey: options.publicEncryptionKey
-        ? b64_1.B64.toBuffer(options.publicEncryptionKey)
-        : undefined,
-    publicEncryptionTag: options.publicEncryptionTag
-        ? b64_1.B64.toBuffer(options.publicEncryptionTag)
-        : undefined,
-    version: options.version,
-});
+const parseSerialisedAesRecord = (options) => {
+    const header = (0, aes_header_1.decodeAesHeader)(options.header);
+    const params = (0, aes_header_1.headerToDecryptionParams)(header);
+    const aad = (0, aes_header_1.computeAad)(options.header);
+    return {
+        ...params,
+        aad,
+        authTag: b64_1.B64.toBuffer(options.tag, "b64u"),
+        content: b64_1.B64.toBuffer(options.ciphertext, "b64u"),
+        initialisationVector: b64_1.B64.toBuffer(options.iv, "b64u"),
+        publicEncryptionKey: options.cek ? b64_1.B64.toBuffer(options.cek, "b64u") : undefined,
+    };
+};
 exports.parseSerialisedAesRecord = parseSerialisedAesRecord;
 //# sourceMappingURL=serialised-aes.js.map

package/dist/utils/private/serialised-aes.js.map

@@ -1 +1 @@
-{"version":3,"file":"serialised-aes.js","sourceRoot":"","sources":["../../../src/utils/private/serialised-aes.ts"],"names":[],"mappings":";;;AAAA,sCAAmC;AAQ5B,MAAM,yBAAyB,GAAG,CACvC,IAAyB,EACA,EAAE,CAAC,CAAC;IAC7B,SAAS,EAAE,IAAI,CAAC,SAAS;IACzB,OAAO,EAAE,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC;IACjC,OAAO,EAAE,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC;IACjC,WAAW,EAAE,IAAI,CAAC,WAAW;IAC7B,UAAU,EAAE,IAAI,CAAC,UAAU;IAC3B,QAAQ,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,SAAS;IAC/D,oBAAoB,EAAE,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,oBAAoB,CAAC;IAC3D,KAAK,EAAE,IAAI,CAAC,KAAK;IACjB,eAAe,EAAE,IAAI,CAAC,eAAe;IACrC,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS;IAClE,kBAAkB,EAAE,IAAI,CAAC,kBAAkB;QACzC,CAAC,CAAC,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,kBAAkB,CAAC;QACrC,CAAC,CAAC,SAAS;IACb,mBAAmB,EAAE,IAAI,CAAC,mBAAmB;IAC7C,mBAAmB,EAAE,IAAI,CAAC,mBAAmB;QAC3C,CAAC,CAAC,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,mBAAmB,CAAC;QACtC,CAAC,CAAC,SAAS;IACb,mBAAmB,EAAE,IAAI,CAAC,mBAAmB;QAC3C,CAAC,CAAC,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,mBAAmB,CAAC;QACtC,CAAC,CAAC,SAAS;IACb,OAAO,EAAE,IAAI,CAAC,OAAO;CACtB,CAAC,CAAC;AAxBU,QAAA,yBAAyB,6BAwBnC;AAEI,MAAM,wBAAwB,GAAG,CACtC,OAAgC,EACX,EAAE,CAAC,CAAC;IACzB,SAAS,EAAE,OAAO,CAAC,SAAS;IAC5B,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,SAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,SAAS;IACpE,OAAO,EAAE,SAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,OAAO,CAAC;IACtC,WAAW,EAAE,OAAO,CAAC,WAAW;IAChC,UAAU,EAAE,OAAO,CAAC,UAAU;IAC9B,QAAQ,EAAE,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,SAAS;IACvE,oBAAoB,EAAE,SAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,oBAAoB,CAAC;IAChE,KAAK,EAAE,OAAO,CAAC,KAAK;IACpB,eAAe,EAAE,OAAO,CAAC,eAAe;IACxC,SAAS,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,SAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS;IAC1E,kBAAkB,EAAE,OAAO,CAAC,kBAAkB;QAC5C,CAAC,CAAC,SAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,kBAAkB,CAAC;QAC1C,CAAC,CAAC,SAAS;IACb,mBAAmB,EAAE,OAAO,CAAC,mBAAmB;IAChD,mBAAmB,EAAE,OAAO,CAAC,mBAAmB;QAC9C,CAAC,CAAC,SAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,mBAAmB,CAAC;QAC3C,CAAC,CAAC,SAAS;IACb,mBAAmB,EAAE,OAAO,CAAC,mBAAmB;QAC9C,CAAC,CAAC,SAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,mBAAmB,CAAC;QAC3C,CAAC,CAAC,SAAS;IACb,OAAO,EAAE,OAAO,CAAC,OAAO;CACzB,CAAC,CAAC;AAxBU,QAAA,wBAAwB,4BAwBlC"}
+{"version":3,"file":"serialised-aes.js","sourceRoot":"","sources":["../../../src/utils/private/serialised-aes.ts"],"names":[],"mappings":";;;AAAA,sCAAmC;AACnC,qDAA6D;AAO7D,6CAMsB;AAiBf,MAAM,yBAAyB,GAAG,CACvC,IAAyB,EACA,EAAE;IAC3B,MAAM,MAAM,GAAG,IAAA,2BAAc,EAAC;QAC5B,SAAS,EAAE,IAAI,CAAC,SAAS;QACzB,WAAW,EAAE,IAAI,CAAC,WAAW;QAC7B,UAAU,EAAE,IAAI,CAAC,UAAU;QAC3B,KAAK,EAAE,IAAI,CAAC,KAAK;QACjB,eAAe,EAAE,IAAI,CAAC,eAAe;QACrC,SAAS,EAAE,IAAI,CAAC,SAAS;QACzB,kBAAkB,EAAE,IAAI,CAAC,kBAAkB;QAC3C,mBAAmB,EAAE,IAAI,CAAC,mBAAmB;QAC7C,mBAAmB,EAAE,IAAI,CAAC,mBAAmB;KAC9C,CAAC,CAAC;IAEH,OAAO;QACL,GAAG,EAAE,IAAI,CAAC,mBAAmB;YAC3B,CAAC,CAAC,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,mBAAmB,EAAE,MAAM,CAAC;YAC9C,CAAC,CAAC,SAAS;QACb,UAAU,EAAE,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,EAAE,MAAM,CAAC;QAC5C,MAAM,EAAE,IAAA,4BAAe,EAAC,MAAM,CAAC;QAC/B,EAAE,EAAE,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,oBAAoB,EAAE,MAAM,CAAC;QACjD,GAAG,EAAE,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,EAAE,MAAM,CAAC;QACrC,CAAC,EAAE,4BAAkB;KACtB,CAAC;AACJ,CAAC,CAAC;AAzBW,QAAA,yBAAyB,6BAyBpC;AAEK,MAAM,wBAAwB,GAAG,CACtC,OAAgC,EACX,EAAE;IACvB,MAAM,MAAM,GAAG,IAAA,4BAAe,EAAC,OAAO,CAAC,MAAM,CAAC,CAAC;IAC/C,MAAM,MAAM,GAAG,IAAA,qCAAwB,EAAC,MAAM,CAAC,CAAC;IAChD,MAAM,GAAG,GAAG,IAAA,uBAAU,EAAC,OAAO,CAAC,MAAM,CAAC,CAAC;IAEvC,OAAO;QACL,GAAG,MAAM;QACT,GAAG;QACH,OAAO,EAAE,SAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,GAAG,EAAE,MAAM,CAAC;QAC1C,OAAO,EAAE,SAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,UAAU,EAAE,MAAM,CAAC;QACjD,oBAAoB,EAAE,SAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,EAAE,MAAM,CAAC;QACtD,mBAAmB,EAAE,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,SAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,SAAS;KACjF,CAAC;AACJ,CAAC,CAAC;AAfW,QAAA,wBAAwB,4BAenC"}

package/dist/utils/private/tokenised-aes.d.ts

@@ -1,4 +1,4 @@
-import { AesEncryptionRecord } from "../../types";
-export declare const createTokenisedAesString: ({ algorithm, authTag, content, contentType, encryption, hkdfSalt, initialisationVector, keyId, pbkdfIterations, pbkdfSalt, publicEncryptionIv, publicEncryptionJwk, publicEncryptionKey, publicEncryptionTag, version, }: AesEncryptionRecord) => string;
-export declare const parseTokenisedAesString: (data: string) => AesEncryptionRecord;
+import { AesEncryptionRecord, ParsedAesDecryptionRecord } from "../../types";
+export declare const createTokenisedAesString: (data: AesEncryptionRecord) => string;
+export declare const parseTokenisedAesString: (data: string) => ParsedAesDecryptionRecord;
 //# sourceMappingURL=tokenised-aes.d.ts.map

package/dist/utils/private/tokenised-aes.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"tokenised-aes.d.ts","sourceRoot":"","sources":["../../../src/utils/private/tokenised-aes.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAC;AAMlD,eAAO,MAAM,wBAAwB,GAAI,0NAgBtC,mBAAmB,KAAG,MAiCxB,CAAC;AAEF,eAAO,MAAM,uBAAuB,GAAI,MAAM,MAAM,KAAG,mBAkEtD,CAAC"}
+{"version":3,"file":"tokenised-aes.d.ts","sourceRoot":"","sources":["../../../src/utils/private/tokenised-aes.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,mBAAmB,EAAE,yBAAyB,EAAE,MAAM,aAAa,CAAC;AAsB7E,eAAO,MAAM,wBAAwB,GAAI,MAAM,mBAAmB,KAAG,MAwBpE,CAAC;AAEF,eAAO,MAAM,uBAAuB,GAAI,MAAM,MAAM,KAAG,yBAqEtD,CAAC"}

package/dist/utils/private/tokenised-aes.js

@@ -1,68 +1,86 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.parseTokenisedAesString = exports.createTokenisedAesString = void 0;
-const utils_1 = require("@lindorm/utils");
-const private_1 = require("../../constants/private");
+const b64_1 = require("@lindorm/b64");
 const errors_1 = require("../../errors");
-const regex = /(?<key>[a-z0-9]+)=(?<value>.+)/g;
-const createTokenisedAesString = ({ algorithm, authTag, content, contentType, encryption, hkdfSalt, initialisationVector, keyId, pbkdfIterations, pbkdfSalt, publicEncryptionIv, publicEncryptionJwk, publicEncryptionKey, publicEncryptionTag, version, }) => {
-    const values = (0, utils_1.removeEmpty)({
-        v: version.toString(),
-        kid: keyId,
-        alg: algorithm,
-        cty: contentType,
-        iv: initialisationVector.toString(private_1.B64U),
-        tag: authTag.toString(private_1.B64U),
-        hks: hkdfSalt?.toString(private_1.B64U),
-        p2c: pbkdfIterations?.toString(),
-        p2s: pbkdfSalt?.toString(private_1.B64U),
-        pei: publicEncryptionIv?.toString(private_1.B64U),
-        pek: publicEncryptionKey?.toString(private_1.B64U),
-        pet: publicEncryptionTag?.toString(private_1.B64U),
-        crv: publicEncryptionJwk?.crv,
-        kty: publicEncryptionJwk?.kty,
-        x: publicEncryptionJwk?.x,
-        y: publicEncryptionJwk?.y,
+const aes_header_1 = require("./aes-header");
+const createTokenisedAesString = (data) => {
+    const header = (0, aes_header_1.buildAesHeader)({
+        algorithm: data.algorithm,
+        contentType: data.contentType,
+        encryption: data.encryption,
+        keyId: data.keyId,
+        pbkdfIterations: data.pbkdfIterations,
+        pbkdfSalt: data.pbkdfSalt,
+        publicEncryptionIv: data.publicEncryptionIv,
+        publicEncryptionJwk: data.publicEncryptionJwk,
+        publicEncryptionTag: data.publicEncryptionTag,
     });
-    const array = Object.entries(values).map(([key, value]) => `${key}=${value}`);
-    const str = array.join(",");
-    const cnt = content.toString(private_1.B64U);
-    return `$${encryption}$${str}$${cnt}$`;
+    const headerB64 = (0, aes_header_1.encodeAesHeader)(header);
+    const ivB64 = b64_1.B64.encode(data.initialisationVector, "b64u");
+    const tagB64 = b64_1.B64.encode(data.authTag, "b64u");
+    const ciphertextB64 = b64_1.B64.encode(data.content, "b64u");
+    if (data.publicEncryptionKey) {
+        const cekB64 = b64_1.B64.encode(data.publicEncryptionKey, "b64u");
+        return `aes:${headerB64}$${cekB64}$${ivB64}$${tagB64}$${ciphertextB64}`;
+    }
+    return `aes:${headerB64}$${ivB64}$${tagB64}$${ciphertextB64}`;
 };
 exports.createTokenisedAesString = createTokenisedAesString;
 const parseTokenisedAesString = (data) => {
-    const [_, enc, array, content] = data.split("$");
-    const encryption = enc;
-    const items = array.split(",");
-    const values = {};
-    for (const item of items) {
-        const match = new RegExp(regex).exec(item);
-        if (!match?.groups?.key || !match?.groups?.value) {
-            throw new errors_1.AesError("Invalid AES cipher string", {
-                debug: { item },
-            });
-        }
-        values[match.groups.key] = match.groups.value;
+    if (!data.startsWith("aes:")) {
+        throw new errors_1.AesError("Invalid tokenised AES string: must start with 'aes:'");
+    }
+    const withoutPrefix = data.slice(4);
+    const parts = withoutPrefix.split("$");
+    if (parts.length < 4 || parts.length > 5) {
+        throw new errors_1.AesError("Invalid tokenised AES string: unexpected number of segments", {
+            debug: { segmentCount: parts.length },
+        });
+    }
+    const headerB64 = parts[0];
+    const header = (0, aes_header_1.decodeAesHeader)(headerB64);
+    const params = (0, aes_header_1.headerToDecryptionParams)(header);
+    const aad = (0, aes_header_1.computeAad)(headerB64);
+    const isDirect = header.alg === "dir" || header.alg === "ECDH-ES";
+    const hasCek = parts.length === 5;
+    if (isDirect && hasCek) {
+        throw new errors_1.AesError("Invalid tokenised AES string: dir/ECDH-ES must not have CEK segment");
+    }
+    if (!isDirect && !hasCek) {
+        throw new errors_1.AesError("Invalid tokenised AES string: non-dir algorithm must have CEK segment");
+    }
+    let publicEncryptionKey;
+    let ivB64;
+    let tagB64;
+    let ciphertextB64;
+    if (hasCek) {
+        publicEncryptionKey = b64_1.B64.toBuffer(parts[1], "b64u");
+        ivB64 = parts[2];
+        tagB64 = parts[3];
+        ciphertextB64 = parts[4];
+    }
+    else {
+        ivB64 = parts[1];
+        tagB64 = parts[2];
+        ciphertextB64 = parts[3];
     }
-    const { v, kid, alg, cty, iv, tag, hks, p2c, p2s, pei, pek, pet, crv: curve, kty: keyType, x, y, } = values;
-    const crv = curve;
-    const kty = keyType;
     return {
-        algorithm: alg,
-        authTag: Buffer.from(tag, private_1.B64U),
-        content: Buffer.from(content, private_1.B64U),
-        contentType: cty,
-        encryption: encryption,
-        hkdfSalt: hks ? Buffer.from(hks, private_1.B64U) : undefined,
-        initialisationVector: Buffer.from(iv, private_1.B64U),
-        keyId: kid,
-        pbkdfIterations: p2c ? parseInt(p2c, 10) : undefined,
-        pbkdfSalt: p2s ? Buffer.from(p2s, private_1.B64U) : undefined,
-        publicEncryptionIv: pei ? Buffer.from(pei, private_1.B64U) : undefined,
-        publicEncryptionJwk: crv && x && kty ? { crv, x, y, kty } : undefined,
-        publicEncryptionKey: pek ? Buffer.from(pek, private_1.B64U) : undefined,
-        publicEncryptionTag: pet ? Buffer.from(pet, private_1.B64U) : undefined,
-        version: parseInt(v, 10),
+        aad,
+        algorithm: params.algorithm,
+        authTag: b64_1.B64.toBuffer(tagB64, "b64u"),
+        content: b64_1.B64.toBuffer(ciphertextB64, "b64u"),
+        contentType: params.contentType,
+        encryption: params.encryption,
+        initialisationVector: b64_1.B64.toBuffer(ivB64, "b64u"),
+        keyId: params.keyId,
+        pbkdfIterations: params.pbkdfIterations,
+        pbkdfSalt: params.pbkdfSalt,
+        publicEncryptionIv: params.publicEncryptionIv,
+        publicEncryptionJwk: params.publicEncryptionJwk,
+        publicEncryptionKey,
+        publicEncryptionTag: params.publicEncryptionTag,
+        version: params.version,
     };
 };
 exports.parseTokenisedAesString = parseTokenisedAesString;

package/dist/utils/private/tokenised-aes.js.map

@@ -1 +1 @@
-{"version":3,"file":"tokenised-aes.js","sourceRoot":"","sources":["../../../src/utils/private/tokenised-aes.ts"],"names":[],"mappings":";;;AACA,0CAA6C;AAC7C,qDAA+C;AAC/C,yCAAwC;AAKxC,MAAM,KAAK,GAAG,iCAAiC,CAAC;AAEzC,MAAM,wBAAwB,GAAG,CAAC,EACvC,SAAS,EACT,OAAO,EACP,OAAO,EACP,WAAW,EACX,UAAU,EACV,QAAQ,EACR,oBAAoB,EACpB,KAAK,EACL,eAAe,EACf,SAAS,EACT,kBAAkB,EAClB,mBAAmB,EACnB,mBAAmB,EACnB,mBAAmB,EACnB,OAAO,GACa,EAAU,EAAE;IAChC,MAAM,MAAM,GAAoB,IAAA,mBAAW,EAAC;QAC1C,CAAC,EAAE,OAAO,CAAC,QAAQ,EAAE;QACrB,GAAG,EAAE,KAAK;QAGV,GAAG,EAAE,SAAS;QACd,GAAG,EAAE,WAAW;QAChB,EAAE,EAAE,oBAAoB,CAAC,QAAQ,CAAC,cAAI,CAAC;QACvC,GAAG,EAAE,OAAO,CAAC,QAAQ,CAAC,cAAI,CAAC;QAG3B,GAAG,EAAE,QAAQ,EAAE,QAAQ,CAAC,cAAI,CAAC;QAC7B,GAAG,EAAE,eAAe,EAAE,QAAQ,EAAE;QAChC,GAAG,EAAE,SAAS,EAAE,QAAQ,CAAC,cAAI,CAAC;QAG9B,GAAG,EAAE,kBAAkB,EAAE,QAAQ,CAAC,cAAI,CAAC;QACvC,GAAG,EAAE,mBAAmB,EAAE,QAAQ,CAAC,cAAI,CAAC;QACxC,GAAG,EAAE,mBAAmB,EAAE,QAAQ,CAAC,cAAI,CAAC;QAGxC,GAAG,EAAE,mBAAmB,EAAE,GAAG;QAC7B,GAAG,EAAE,mBAAmB,EAAE,GAAG;QAC7B,CAAC,EAAE,mBAAmB,EAAE,CAAC;QACzB,CAAC,EAAE,mBAAmB,EAAE,CAAC;KAC1B,CAAC,CAAC;IACH,MAAM,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,EAAE,KAAK,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,IAAI,KAAK,EAAE,CAAC,CAAC;IAE9E,MAAM,GAAG,GAAG,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAC5B,MAAM,GAAG,GAAG,OAAO,CAAC,QAAQ,CAAC,cAAI,CAAC,CAAC;IAEnC,OAAO,IAAI,UAAU,IAAI,GAAG,IAAI,GAAG,GAAG,CAAC;AACzC,CAAC,CAAC;AAjDW,QAAA,wBAAwB,4BAiDnC;AAEK,MAAM,uBAAuB,GAAG,CAAC,IAAY,EAAuB,EAAE;IAC3E,MAAM,CAAC,CAAC,EAAE,GAAG,EAAE,KAAK,EAAE,OAAO,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAEjD,MAAM,UAAU,GAAG,GAAwB,CAAC;IAC5C,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAC/B,MAAM,MAAM,GAAiB,EAAE,CAAC;IAEhC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAE3C,IAAI,CAAC,KAAK,EAAE,MAAM,EAAE,GAAG,IAAI,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC;YACjD,MAAM,IAAI,iBAAQ,CAAC,2BAA2B,EAAE;gBAC9C,KAAK,EAAE,EAAE,IAAI,EAAE;aAChB,CAAC,CAAC;QACL,CAAC;QAED,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC;IAChD,CAAC;IAED,MAAM,EACJ,CAAC,EACD,GAAG,EAGH,GAAG,EACH,GAAG,EACH,EAAE,EACF,GAAG,EAGH,GAAG,EACH,GAAG,EACH,GAAG,EAGH,GAAG,EACH,GAAG,EACH,GAAG,EAGH,GAAG,EAAE,KAAK,EACV,GAAG,EAAE,OAAO,EACZ,CAAC,EACD,CAAC,GACF,GAAG,MAAoC,CAAC;IAEzC,MAAM,GAAG,GAAG,KAAqB,CAAC;IAClC,MAAM,GAAG,GAAG,OAAuB,CAAC;IAEpC,OAAO;QACL,SAAS,EAAE,GAAuB;QAClC,OAAO,EAAE,MAAM,CAAC,IAAI,CAAC,GAAG,EAAE,cAAI,CAAC;QAC/B,OAAO,EAAE,MAAM,CAAC,IAAI,CAAC,OAAO,EAAE,cAAI,CAAC;QACnC,WAAW,EAAE,GAAG;QAChB,UAAU,EAAE,UAAU;QACtB,QAAQ,EAAE,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,EAAE,cAAI,CAAC,CAAC,CAAC,CAAC,SAAS;QAClD,oBAAoB,EAAE,MAAM,CAAC,IAAI,CAAC,EAAE,EAAE,cAAI,CAAC;QAC3C,KAAK,EAAE,GAAG;QACV,eAAe,EAAE,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS;QACpD,SAAS,EAAE,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,EAAE,cAAI,CAAC,CAAC,CAAC,CAAC,SAAS;QACnD,kBAAkB,EAAE,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,EAAE,cAAI,CAAC,CAAC,CAAC,CAAC,SAAS;QAC5D,mBAAmB,EAAE,GAAG,IAAI,CAAC,IAAI,GAAG,CAAC,CAAC,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,CAAC,EAAE,GAAG,EAAE,CAAC,CAAC,CAAC,SAAS;QACrE,mBAAmB,EAAE,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,EAAE,cAAI,CAAC,CAAC,CAAC,CAAC,SAAS;QAC7D,mBAAmB,EAAE,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,EAAE,cAAI,CAAC,CAAC,CAAC,CAAC,SAAS;QAC7D,OAAO,EAAE,QAAQ,CAAC,CAAC,EAAE,EAAE,CAAC;KACzB,CAAC;AACJ,CAAC,CAAC;AAlEW,QAAA,uBAAuB,2BAkElC"}
+{"version":3,"file":"tokenised-aes.js","sourceRoot":"","sources":["../../../src/utils/private/tokenised-aes.ts"],"names":[],"mappings":";;;AAAA,sCAAmC;AACnC,yCAAwC;AAExC,6CAMsB;AAef,MAAM,wBAAwB,GAAG,CAAC,IAAyB,EAAU,EAAE;IAC5E,MAAM,MAAM,GAAG,IAAA,2BAAc,EAAC;QAC5B,SAAS,EAAE,IAAI,CAAC,SAAS;QACzB,WAAW,EAAE,IAAI,CAAC,WAAW;QAC7B,UAAU,EAAE,IAAI,CAAC,UAAU;QAC3B,KAAK,EAAE,IAAI,CAAC,KAAK;QACjB,eAAe,EAAE,IAAI,CAAC,eAAe;QACrC,SAAS,EAAE,IAAI,CAAC,SAAS;QACzB,kBAAkB,EAAE,IAAI,CAAC,kBAAkB;QAC3C,mBAAmB,EAAE,IAAI,CAAC,mBAAmB;QAC7C,mBAAmB,EAAE,IAAI,CAAC,mBAAmB;KAC9C,CAAC,CAAC;IAEH,MAAM,SAAS,GAAG,IAAA,4BAAe,EAAC,MAAM,CAAC,CAAC;IAC1C,MAAM,KAAK,GAAG,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,oBAAoB,EAAE,MAAM,CAAC,CAAC;IAC5D,MAAM,MAAM,GAAG,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAChD,MAAM,aAAa,GAAG,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAEvD,IAAI,IAAI,CAAC,mBAAmB,EAAE,CAAC;QAC7B,MAAM,MAAM,GAAG,SAAG,CAAC,MAAM,CAAC,IAAI,CAAC,mBAAmB,EAAE,MAAM,CAAC,CAAC;QAC5D,OAAO,OAAO,SAAS,IAAI,MAAM,IAAI,KAAK,IAAI,MAAM,IAAI,aAAa,EAAE,CAAC;IAC1E,CAAC;IAED,OAAO,OAAO,SAAS,IAAI,KAAK,IAAI,MAAM,IAAI,aAAa,EAAE,CAAC;AAChE,CAAC,CAAC;AAxBW,QAAA,wBAAwB,4BAwBnC;AAEK,MAAM,uBAAuB,GAAG,CAAC,IAAY,EAA6B,EAAE;IACjF,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;QAC7B,MAAM,IAAI,iBAAQ,CAAC,sDAAsD,CAAC,CAAC;IAC7E,CAAC;IAED,MAAM,aAAa,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IACpC,MAAM,KAAK,GAAG,aAAa,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAEvC,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACzC,MAAM,IAAI,iBAAQ,CAAC,6DAA6D,EAAE;YAChF,KAAK,EAAE,EAAE,YAAY,EAAE,KAAK,CAAC,MAAM,EAAE;SACtC,CAAC,CAAC;IACL,CAAC;IAED,MAAM,SAAS,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;IAC3B,MAAM,MAAM,GAAG,IAAA,4BAAe,EAAC,SAAS,CAAC,CAAC;IAC1C,MAAM,MAAM,GAAG,IAAA,qCAAwB,EAAC,MAAM,CAAC,CAAC;IAChD,MAAM,GAAG,GAAG,IAAA,uBAAU,EAAC,SAAS,CAAC,CAAC;IAIlC,MAAM,QAAQ,GAAG,MAAM,CAAC,GAAG,KAAK,KAAK,IAAI,MAAM,CAAC,GAAG,KAAK,SAAS,CAAC;IAClE,MAAM,MAAM,GAAG,KAAK,CAAC,MAAM,KAAK,CAAC,CAAC;IAElC,IAAI,QAAQ,IAAI,MAAM,EAAE,CAAC;QACvB,MAAM,IAAI,iBAAQ,CAChB,qEAAqE,CACtE,CAAC;IACJ,CAAC;IAED,IAAI,CAAC,QAAQ,IAAI,CAAC,MAAM,EAAE,CAAC;QACzB,MAAM,IAAI,iBAAQ,CAChB,uEAAuE,CACxE,CAAC;IACJ,CAAC;IAED,IAAI,mBAAuC,CAAC;IAC5C,IAAI,KAAa,CAAC;IAClB,IAAI,MAAc,CAAC;IACnB,IAAI,aAAqB,CAAC;IAE1B,IAAI,MAAM,EAAE,CAAC;QACX,mBAAmB,GAAG,SAAG,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;QACrD,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACjB,MAAM,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QAClB,aAAa,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;IAC3B,CAAC;SAAM,CAAC;QACN,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACjB,MAAM,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QAClB,aAAa,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;IAC3B,CAAC;IAED,OAAO;QACL,GAAG;QACH,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,OAAO,EAAE,SAAG,CAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;QACrC,OAAO,EAAE,SAAG,CAAC,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAC;QAC5C,WAAW,EAAE,MAAM,CAAC,WAAW;QAC/B,UAAU,EAAE,MAAM,CAAC,UAAU;QAC7B,oBAAoB,EAAE,SAAG,CAAC,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;QACjD,KAAK,EAAE,MAAM,CAAC,KAAK;QACnB,eAAe,EAAE,MAAM,CAAC,eAAe;QACvC,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,kBAAkB,EAAE,MAAM,CAAC,kBAAkB;QAC7C,mBAAmB,EAAE,MAAM,CAAC,mBAAmB;QAC/C,mBAAmB;QACnB,mBAAmB,EAAE,MAAM,CAAC,mBAAmB;QAC/C,OAAO,EAAE,MAAM,CAAC,OAAO;KACxB,CAAC;AACJ,CAAC,CAAC;AArEW,QAAA,uBAAuB,2BAqElC"}

package/dist/utils/private/validate-version.d.ts

@@ -0,0 +1,2 @@
+export declare const validateAesVersion: (v: string) => string;
+//# sourceMappingURL=validate-version.d.ts.map

package/dist/utils/private/validate-version.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"validate-version.d.ts","sourceRoot":"","sources":["../../../src/utils/private/validate-version.ts"],"names":[],"mappings":"AAUA,eAAO,MAAM,kBAAkB,GAAI,GAAG,MAAM,KAAG,MA0B9C,CAAC"}

package/dist/utils/private/validate-version.js

@@ -0,0 +1,27 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.validateAesVersion = void 0;
+const private_1 = require("../../constants/private");
+const errors_1 = require("../../errors");
+const validateAesVersion = (v) => {
+    if (/^\d+$/.test(v)) {
+        throw new errors_1.AesError("Legacy AES version format is no longer supported", {
+            debug: { version: v },
+        });
+    }
+    const match = /^(\d+)\.(\d+)$/.exec(v);
+    if (!match) {
+        throw new errors_1.AesError("Invalid AES version format", {
+            debug: { version: v, expected: "X.Y" },
+        });
+    }
+    const major = parseInt(match[1], 10);
+    if (major !== private_1.AES_FORMAT_MAJOR) {
+        throw new errors_1.AesError("Incompatible AES version", {
+            debug: { version: v, expectedMajor: private_1.AES_FORMAT_MAJOR },
+        });
+    }
+    return v;
+};
+exports.validateAesVersion = validateAesVersion;
+//# sourceMappingURL=validate-version.js.map

package/dist/utils/private/validate-version.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"validate-version.js","sourceRoot":"","sources":["../../../src/utils/private/validate-version.ts"],"names":[],"mappings":";;;AAAA,qDAA2D;AAC3D,yCAAwC;AASjC,MAAM,kBAAkB,GAAG,CAAC,CAAS,EAAU,EAAE;IAEtD,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC;QACpB,MAAM,IAAI,iBAAQ,CAAC,kDAAkD,EAAE;YACrE,KAAK,EAAE,EAAE,OAAO,EAAE,CAAC,EAAE;SACtB,CAAC,CAAC;IACL,CAAC;IAGD,MAAM,KAAK,GAAG,gBAAgB,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAEvC,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,MAAM,IAAI,iBAAQ,CAAC,4BAA4B,EAAE;YAC/C,KAAK,EAAE,EAAE,OAAO,EAAE,CAAC,EAAE,QAAQ,EAAE,KAAK,EAAE;SACvC,CAAC,CAAC;IACL,CAAC;IAED,MAAM,KAAK,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IAErC,IAAI,KAAK,KAAK,0BAAgB,EAAE,CAAC;QAC/B,MAAM,IAAI,iBAAQ,CAAC,0BAA0B,EAAE;YAC7C,KAAK,EAAE,EAAE,OAAO,EAAE,CAAC,EAAE,aAAa,EAAE,0BAAgB,EAAE;SACvD,CAAC,CAAC;IACL,CAAC;IAED,OAAO,CAAC,CAAC;AACX,CAAC,CAAC;AA1BW,QAAA,kBAAkB,sBA0B7B"}

package/jest.config.interop.mjs

@@ -0,0 +1,24 @@
+import base from "../../jest.config.base.mjs";
+import packageJson from "./package.json" with { type: "json" };
+
+export default {
+  ...base,
+  displayName: `${packageJson.name}/interop`,
+  roots: ["<rootDir>/__tests__"],
+  extensionsToTreatAsEsm: [".ts"],
+  moduleNameMapper: {
+    "^(\\.{1,2}/.*)\\.js$": "$1",
+  },
+  transform: {
+    "^.+\\.tsx?$": [
+      "ts-jest",
+      {
+        useESM: true,
+        tsconfig: "tsconfig.interop.json",
+      },
+    ],
+  },
+  transformIgnorePatterns: ["node_modules/(?!(@noble/ciphers|jose)/)"],
+  collectCoverageFrom: [],
+  coverageThreshold: {},
+};

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@lindorm/aes",
-  "version": "0.5.5",
+  "version": "0.6.0",
   "license": "AGPL-3.0-or-later",
   "author": "Jonn Nilsson",
   "repository": {
@@ -16,26 +16,27 @@
   "scripts": {
     "build": "rimraf dist && tsc -b ./tsconfig.build.json",
     "example": "ts-node example",
-    "integration": "compd --file docker-compose.yml jest --config jest.config.integration.js --watch",
-    "integration:focus": "compd --file docker-compose.yml jest --config jest.config.integration.js --watch $1",
     "prettier": "prettier --write ./src/*",
-    "test": "jest --watch --",
-    "test:ci": "npm run test:unit",
-    "test:integration": "jest --config jest.config.integration.js --",
-    "test:unit": "jest --config jest.config.js --",
-    "typecheck": "tsc --watch",
-    "typecheck:ci": "tsc",
+    "test": "jest --",
+    "test:ci": "jest",
+    "test:interop": "NODE_OPTIONS='--experimental-vm-modules' jest --config jest.config.interop.mjs --no-coverage",
+    "test:watch": "jest --watch --",
+    "typecheck": "tsc",
+    "typecheck:watch": "tsc --watch --",
     "update": "ncu -i",
     "update:auto": "ncu -u"
   },
   "dependencies": {
-    "@lindorm/b64": "^0.1.6",
-    "@lindorm/errors": "^0.1.12",
-    "@lindorm/is": "^0.1.11",
-    "@lindorm/kryptos": "^0.4.5"
+    "@lindorm/b64": "^0.1.7",
+    "@lindorm/errors": "^0.1.13",
+    "@lindorm/is": "^0.1.12",
+    "@lindorm/kryptos": "^0.5.0",
+    "@lindorm/utils": "^0.5.5"
   },
   "devDependencies": {
-    "@lindorm/types": "^0.3.3"
+    "@lindorm/types": "^0.3.4",
+    "@noble/ciphers": "^1.2.1",
+    "jose": "^6.1.3"
   },
-  "gitHead": "3302fa2c4d75f2832959018d9e089d11af4a35fc"
+  "gitHead": "4b8579886ad8a24c22a8bf260dd0bb5dc45afc08"
 }

package/tsconfig.interop.json

@@ -0,0 +1,9 @@
+{
+  "extends": "../../tsconfig.json",
+  "compilerOptions": {
+    "module": "esnext",
+    "moduleResolution": "node",
+    "rootDir": "."
+  },
+  "include": ["__tests__/**/*", "src/**/*"]
+}

package/dist/constants/private/format.d.ts

@@ -1,2 +0,0 @@
-export declare const B64U: "base64url";
-//# sourceMappingURL=format.d.ts.map

package/dist/constants/private/format.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"format.d.ts","sourceRoot":"","sources":["../../../src/constants/private/format.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,IAAI,EAAG,WAAoB,CAAC"}

package/dist/constants/private/format.js

@@ -1,5 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.B64U = void 0;
-exports.B64U = "base64url";
-//# sourceMappingURL=format.js.map

package/dist/constants/private/format.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"format.js","sourceRoot":"","sources":["../../../src/constants/private/format.ts"],"names":[],"mappings":";;;AAAa,QAAA,IAAI,GAAG,WAAoB,CAAC"}

package/dist/types/private/aes-string.d.ts

@@ -1,21 +0,0 @@
-import { KryptosAlgorithm, KryptosCurve, KryptosType } from "@lindorm/kryptos";
-import { AesContentType } from "../content";
-export type AesStringValues = {
-    v: string;
-    alg: KryptosAlgorithm;
-    cty: AesContentType;
-    crv: KryptosCurve | undefined;
-    hks: string | undefined;
-    iv: string;
-    kid: string;
-    kty: KryptosType | undefined;
-    p2c: string | undefined;
-    p2s: string | undefined;
-    pei: string | undefined;
-    pek: string | undefined;
-    pet: string | undefined;
-    tag: string;
-    x: string | undefined;
-    y: string | undefined;
-};
-//# sourceMappingURL=aes-string.d.ts.map

package/dist/types/private/aes-string.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"aes-string.d.ts","sourceRoot":"","sources":["../../../src/types/private/aes-string.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAC/E,OAAO,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAE5C,MAAM,MAAM,eAAe,GAAG;IAC5B,CAAC,EAAE,MAAM,CAAC;IACV,GAAG,EAAE,gBAAgB,CAAC;IACtB,GAAG,EAAE,cAAc,CAAC;IACpB,GAAG,EAAE,YAAY,GAAG,SAAS,CAAC;IAC9B,GAAG,EAAE,MAAM,GAAG,SAAS,CAAC;IACxB,EAAE,EAAE,MAAM,CAAC;IACX,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,WAAW,GAAG,SAAS,CAAC;IAC7B,GAAG,EAAE,MAAM,GAAG,SAAS,CAAC;IACxB,GAAG,EAAE,MAAM,GAAG,SAAS,CAAC;IACxB,GAAG,EAAE,MAAM,GAAG,SAAS,CAAC;IACxB,GAAG,EAAE,MAAM,GAAG,SAAS,CAAC;IACxB,GAAG,EAAE,MAAM,GAAG,SAAS,CAAC;IACxB,GAAG,EAAE,MAAM,CAAC;IACZ,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IACtB,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;CACvB,CAAC"}

package/dist/types/private/aes-string.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"aes-string.js","sourceRoot":"","sources":["../../../src/types/private/aes-string.ts"],"names":[],"mappings":""}

package/dist/utils/private/key-derivation/hkdf.d.ts

@@ -1,13 +0,0 @@
-import { AesKeyLength } from "@lindorm/types";
-type Options = {
-    derivationKey: Buffer;
-    hkdfSalt?: Buffer;
-    keyLength: AesKeyLength;
-};
-type Result = {
-    derivedKey: Buffer;
-    hkdfSalt: Buffer;
-};
-export declare const hkdf: (options: Options) => Result;
-export {};
-//# sourceMappingURL=hkdf.d.ts.map

package/dist/utils/private/key-derivation/hkdf.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"hkdf.d.ts","sourceRoot":"","sources":["../../../../src/utils/private/key-derivation/hkdf.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAG9C,KAAK,OAAO,GAAG;IACb,aAAa,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,YAAY,CAAC;CACzB,CAAC;AAEF,KAAK,MAAM,GAAG;IACZ,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;CAClB,CAAC;AAEF,eAAO,MAAM,IAAI,GAAI,SAAS,OAAO,KAAG,MASvC,CAAC"}

package/dist/utils/private/key-derivation/hkdf.js

@@ -1,12 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.hkdf = void 0;
-const crypto_1 = require("crypto");
-const hkdf = (options) => {
-    const hkdfSalt = options.hkdfSalt ?? (0, crypto_1.randomBytes)(16);
-    const info = Buffer.from("lindorm.hkdf", "utf-8");
-    const derivedKey = Buffer.from((0, crypto_1.hkdfSync)("SHA256", options.derivationKey, hkdfSalt, info, options.keyLength));
-    return { derivedKey, hkdfSalt };
-};
-exports.hkdf = hkdf;
-//# sourceMappingURL=hkdf.js.map

package/dist/utils/private/key-derivation/hkdf.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"hkdf.js","sourceRoot":"","sources":["../../../../src/utils/private/key-derivation/hkdf.ts"],"names":[],"mappings":";;;AACA,mCAA+C;AAaxC,MAAM,IAAI,GAAG,CAAC,OAAgB,EAAU,EAAE;IAC/C,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,IAAA,oBAAW,EAAC,EAAE,CAAC,CAAC;IACrD,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,cAAc,EAAE,OAAO,CAAC,CAAC;IAElD,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAC5B,IAAA,iBAAQ,EAAC,QAAQ,EAAE,OAAO,CAAC,aAAa,EAAE,QAAQ,EAAE,IAAI,EAAE,OAAO,CAAC,SAAS,CAAC,CAC7E,CAAC;IAEF,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,CAAC;AAClC,CAAC,CAAC;AATW,QAAA,IAAI,QASf"}