@lindorm/aes 0.6.4 → 0.7.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +15 -0
- package/README.md +126 -231
- package/__tests__/esm-smoke.test.ts +2 -1
- package/__tests__/fixtures/keys.ts +4 -4
- package/__tests__/helpers/index.ts +2 -2
- package/__tests__/helpers/jwe-adapter.ts +2 -2
- package/__tests__/jose-jwe.test.ts +9 -8
- package/__tests__/noble-ciphers.test.ts +6 -5
- package/dist/classes/AesKit.d.ts +4 -4
- package/dist/classes/AesKit.d.ts.map +1 -1
- package/dist/classes/AesKit.js +29 -33
- package/dist/classes/AesKit.js.map +1 -1
- package/dist/classes/index.d.ts +1 -1
- package/dist/classes/index.d.ts.map +1 -1
- package/dist/classes/index.js +1 -17
- package/dist/classes/index.js.map +1 -1
- package/dist/errors/AesError.js +2 -6
- package/dist/errors/AesError.js.map +1 -1
- package/dist/errors/index.d.ts +1 -1
- package/dist/errors/index.d.ts.map +1 -1
- package/dist/errors/index.js +1 -17
- package/dist/errors/index.js.map +1 -1
- package/dist/index.d.ts +5 -6
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +5 -22
- package/dist/index.js.map +1 -1
- package/dist/interfaces/AesKit.d.ts +3 -3
- package/dist/interfaces/AesKit.d.ts.map +1 -1
- package/dist/interfaces/AesKit.js +1 -2
- package/dist/interfaces/index.d.ts +1 -1
- package/dist/interfaces/index.d.ts.map +1 -1
- package/dist/interfaces/index.js +1 -17
- package/dist/interfaces/index.js.map +1 -1
- package/dist/internal/constants/version.js +3 -6
- package/dist/internal/constants/version.js.map +1 -1
- package/dist/internal/types/aes-data.d.ts +4 -4
- package/dist/internal/types/aes-data.d.ts.map +1 -1
- package/dist/internal/types/aes-data.js +1 -2
- package/dist/internal/types/aes-key-derivation.js +1 -2
- package/dist/internal/types/auth-tag.d.ts +2 -2
- package/dist/internal/types/auth-tag.d.ts.map +1 -1
- package/dist/internal/types/auth-tag.js +1 -2
- package/dist/internal/types/auth-tag.js.map +1 -1
- package/dist/internal/types/content-encryption-key.d.ts +2 -2
- package/dist/internal/types/content-encryption-key.d.ts.map +1 -1
- package/dist/internal/types/content-encryption-key.js +1 -2
- package/dist/internal/types/key-wrap.d.ts +1 -1
- package/dist/internal/types/key-wrap.d.ts.map +1 -1
- package/dist/internal/types/key-wrap.js +1 -2
- package/dist/internal/types/prepared-encryption.d.ts +3 -3
- package/dist/internal/types/prepared-encryption.d.ts.map +1 -1
- package/dist/internal/types/prepared-encryption.js +1 -2
- package/dist/internal/utils/aes-header.d.ts +3 -3
- package/dist/internal/utils/aes-header.d.ts.map +1 -1
- package/dist/internal/utils/aes-header.js +22 -30
- package/dist/internal/utils/aes-header.js.map +1 -1
- package/dist/internal/utils/calculate/calculate-aes-encryption.d.ts +2 -2
- package/dist/internal/utils/calculate/calculate-aes-encryption.d.ts.map +1 -1
- package/dist/internal/utils/calculate/calculate-aes-encryption.js +4 -8
- package/dist/internal/utils/calculate/calculate-aes-encryption.js.map +1 -1
- package/dist/internal/utils/calculate/calculate-content-encryption-key-size.d.ts +2 -2
- package/dist/internal/utils/calculate/calculate-content-encryption-key-size.d.ts.map +1 -1
- package/dist/internal/utils/calculate/calculate-content-encryption-key-size.js +4 -8
- package/dist/internal/utils/calculate/calculate-content-encryption-key-size.js.map +1 -1
- package/dist/internal/utils/calculate/calculate-key-wrap-encryption.d.ts +1 -1
- package/dist/internal/utils/calculate/calculate-key-wrap-encryption.d.ts.map +1 -1
- package/dist/internal/utils/calculate/calculate-key-wrap-encryption.js +3 -7
- package/dist/internal/utils/calculate/calculate-key-wrap-encryption.js.map +1 -1
- package/dist/internal/utils/calculate/calculate-key-wrap-size.d.ts +2 -2
- package/dist/internal/utils/calculate/calculate-key-wrap-size.d.ts.map +1 -1
- package/dist/internal/utils/calculate/calculate-key-wrap-size.js +3 -7
- package/dist/internal/utils/calculate/calculate-key-wrap-size.js.map +1 -1
- package/dist/internal/utils/calculate/calculate-pbkdf-hash.d.ts +2 -2
- package/dist/internal/utils/calculate/calculate-pbkdf-hash.d.ts.map +1 -1
- package/dist/internal/utils/calculate/calculate-pbkdf-hash.js +3 -7
- package/dist/internal/utils/calculate/calculate-pbkdf-hash.js.map +1 -1
- package/dist/internal/utils/calculate/calculate-rsa-oaep-hash.d.ts +2 -2
- package/dist/internal/utils/calculate/calculate-rsa-oaep-hash.d.ts.map +1 -1
- package/dist/internal/utils/calculate/calculate-rsa-oaep-hash.js +3 -7
- package/dist/internal/utils/calculate/calculate-rsa-oaep-hash.js.map +1 -1
- package/dist/internal/utils/content.d.ts +1 -1
- package/dist/internal/utils/content.d.ts.map +1 -1
- package/dist/internal/utils/content.js +11 -17
- package/dist/internal/utils/content.js.map +1 -1
- package/dist/internal/utils/data/auth-tag-hmac.d.ts +1 -1
- package/dist/internal/utils/data/auth-tag-hmac.d.ts.map +1 -1
- package/dist/internal/utils/data/auth-tag-hmac.js +9 -14
- package/dist/internal/utils/data/auth-tag-hmac.js.map +1 -1
- package/dist/internal/utils/data/auth-tag.d.ts +1 -1
- package/dist/internal/utils/data/auth-tag.d.ts.map +1 -1
- package/dist/internal/utils/data/auth-tag.js +9 -14
- package/dist/internal/utils/data/auth-tag.js.map +1 -1
- package/dist/internal/utils/data/get-initialisation-vector.d.ts +1 -1
- package/dist/internal/utils/data/get-initialisation-vector.d.ts.map +1 -1
- package/dist/internal/utils/data/get-initialisation-vector.js +6 -10
- package/dist/internal/utils/data/get-initialisation-vector.js.map +1 -1
- package/dist/internal/utils/data/split-content-encryption-key.d.ts +1 -1
- package/dist/internal/utils/data/split-content-encryption-key.d.ts.map +1 -1
- package/dist/internal/utils/data/split-content-encryption-key.js +4 -8
- package/dist/internal/utils/data/split-content-encryption-key.js.map +1 -1
- package/dist/internal/utils/diffie-hellman/diffie-hellman-key-wrap.d.ts +1 -1
- package/dist/internal/utils/diffie-hellman/diffie-hellman-key-wrap.d.ts.map +1 -1
- package/dist/internal/utils/diffie-hellman/diffie-hellman-key-wrap.js +20 -25
- package/dist/internal/utils/diffie-hellman/diffie-hellman-key-wrap.js.map +1 -1
- package/dist/internal/utils/diffie-hellman/diffie-hellman.d.ts +1 -1
- package/dist/internal/utils/diffie-hellman/diffie-hellman.d.ts.map +1 -1
- package/dist/internal/utils/diffie-hellman/diffie-hellman.js +16 -21
- package/dist/internal/utils/diffie-hellman/diffie-hellman.js.map +1 -1
- package/dist/internal/utils/diffie-hellman/shared-secret.d.ts +3 -3
- package/dist/internal/utils/diffie-hellman/shared-secret.d.ts.map +1 -1
- package/dist/internal/utils/diffie-hellman/shared-secret.js +22 -27
- package/dist/internal/utils/diffie-hellman/shared-secret.js.map +1 -1
- package/dist/internal/utils/encoded-aes.d.ts +2 -2
- package/dist/internal/utils/encoded-aes.d.ts.map +1 -1
- package/dist/internal/utils/encoded-aes.js +18 -23
- package/dist/internal/utils/encoded-aes.js.map +1 -1
- package/dist/internal/utils/encrypt-content.d.ts +1 -1
- package/dist/internal/utils/encrypt-content.d.ts.map +1 -1
- package/dist/internal/utils/encrypt-content.js +14 -18
- package/dist/internal/utils/encrypt-content.js.map +1 -1
- package/dist/internal/utils/encrypt-encoded.d.ts +2 -2
- package/dist/internal/utils/encrypt-encoded.d.ts.map +1 -1
- package/dist/internal/utils/encrypt-encoded.js +15 -19
- package/dist/internal/utils/encrypt-encoded.js.map +1 -1
- package/dist/internal/utils/encrypt-serialised.d.ts +3 -3
- package/dist/internal/utils/encrypt-serialised.d.ts.map +1 -1
- package/dist/internal/utils/encrypt-serialised.js +20 -24
- package/dist/internal/utils/encrypt-serialised.js.map +1 -1
- package/dist/internal/utils/encrypt-tokenised.d.ts +2 -2
- package/dist/internal/utils/encrypt-tokenised.d.ts.map +1 -1
- package/dist/internal/utils/encrypt-tokenised.js +18 -22
- package/dist/internal/utils/encrypt-tokenised.js.map +1 -1
- package/dist/internal/utils/encryption.d.ts +3 -3
- package/dist/internal/utils/encryption.d.ts.map +1 -1
- package/dist/internal/utils/encryption.js +22 -27
- package/dist/internal/utils/encryption.js.map +1 -1
- package/dist/internal/utils/get-key/get-decryption-key.d.ts +1 -1
- package/dist/internal/utils/get-key/get-decryption-key.d.ts.map +1 -1
- package/dist/internal/utils/get-key/get-decryption-key.js +11 -15
- package/dist/internal/utils/get-key/get-decryption-key.js.map +1 -1
- package/dist/internal/utils/get-key/get-encryption-key.d.ts +1 -1
- package/dist/internal/utils/get-key/get-encryption-key.d.ts.map +1 -1
- package/dist/internal/utils/get-key/get-encryption-key.js +11 -15
- package/dist/internal/utils/get-key/get-encryption-key.js.map +1 -1
- package/dist/internal/utils/key-derivation/concat-kdf.d.ts +1 -1
- package/dist/internal/utils/key-derivation/concat-kdf.d.ts.map +1 -1
- package/dist/internal/utils/key-derivation/concat-kdf.js +3 -7
- package/dist/internal/utils/key-derivation/concat-kdf.js.map +1 -1
- package/dist/internal/utils/key-derivation/pbkdf.d.ts +1 -1
- package/dist/internal/utils/key-derivation/pbkdf.d.ts.map +1 -1
- package/dist/internal/utils/key-derivation/pbkdf.js +7 -11
- package/dist/internal/utils/key-derivation/pbkdf.js.map +1 -1
- package/dist/internal/utils/key-types/get-ec-keys.d.ts +1 -1
- package/dist/internal/utils/key-types/get-ec-keys.d.ts.map +1 -1
- package/dist/internal/utils/key-types/get-ec-keys.js +11 -16
- package/dist/internal/utils/key-types/get-ec-keys.js.map +1 -1
- package/dist/internal/utils/key-types/get-oct-keys.d.ts +1 -1
- package/dist/internal/utils/key-types/get-oct-keys.d.ts.map +1 -1
- package/dist/internal/utils/key-types/get-oct-keys.js +14 -19
- package/dist/internal/utils/key-types/get-oct-keys.js.map +1 -1
- package/dist/internal/utils/key-types/get-okp-keys.d.ts +1 -1
- package/dist/internal/utils/key-types/get-okp-keys.d.ts.map +1 -1
- package/dist/internal/utils/key-types/get-okp-keys.js +11 -16
- package/dist/internal/utils/key-types/get-okp-keys.js.map +1 -1
- package/dist/internal/utils/key-types/get-rsa-keys.d.ts +1 -1
- package/dist/internal/utils/key-types/get-rsa-keys.d.ts.map +1 -1
- package/dist/internal/utils/key-types/get-rsa-keys.js +24 -29
- package/dist/internal/utils/key-types/get-rsa-keys.js.map +1 -1
- package/dist/internal/utils/key-wrap/ecb-key-wrap.d.ts +1 -1
- package/dist/internal/utils/key-wrap/ecb-key-wrap.d.ts.map +1 -1
- package/dist/internal/utils/key-wrap/ecb-key-wrap.js +12 -17
- package/dist/internal/utils/key-wrap/ecb-key-wrap.js.map +1 -1
- package/dist/internal/utils/key-wrap/gcm-key-wrap.d.ts +1 -1
- package/dist/internal/utils/key-wrap/gcm-key-wrap.d.ts.map +1 -1
- package/dist/internal/utils/key-wrap/gcm-key-wrap.js +14 -19
- package/dist/internal/utils/key-wrap/gcm-key-wrap.js.map +1 -1
- package/dist/internal/utils/key-wrap/key-wrap.d.ts +1 -1
- package/dist/internal/utils/key-wrap/key-wrap.d.ts.map +1 -1
- package/dist/internal/utils/key-wrap/key-wrap.js +11 -16
- package/dist/internal/utils/key-wrap/key-wrap.js.map +1 -1
- package/dist/internal/utils/oct/get-oct-dir-keys.d.ts +1 -1
- package/dist/internal/utils/oct/get-oct-dir-keys.d.ts.map +1 -1
- package/dist/internal/utils/oct/get-oct-dir-keys.js +13 -18
- package/dist/internal/utils/oct/get-oct-dir-keys.js.map +1 -1
- package/dist/internal/utils/oct/get-oct-key-key-wrap.d.ts +1 -1
- package/dist/internal/utils/oct/get-oct-key-key-wrap.d.ts.map +1 -1
- package/dist/internal/utils/oct/get-oct-key-key-wrap.js +19 -24
- package/dist/internal/utils/oct/get-oct-key-key-wrap.js.map +1 -1
- package/dist/internal/utils/oct/get-oct-pbkdf-key-wrap-keys.d.ts +1 -1
- package/dist/internal/utils/oct/get-oct-pbkdf-key-wrap-keys.d.ts.map +1 -1
- package/dist/internal/utils/oct/get-oct-pbkdf-key-wrap-keys.js +25 -30
- package/dist/internal/utils/oct/get-oct-pbkdf-key-wrap-keys.js.map +1 -1
- package/dist/internal/utils/prepare-encryption.d.ts +1 -1
- package/dist/internal/utils/prepare-encryption.d.ts.map +1 -1
- package/dist/internal/utils/prepare-encryption.js +5 -9
- package/dist/internal/utils/prepare-encryption.js.map +1 -1
- package/dist/internal/utils/serialised-aes.d.ts +2 -2
- package/dist/internal/utils/serialised-aes.d.ts.map +1 -1
- package/dist/internal/utils/serialised-aes.js +19 -24
- package/dist/internal/utils/serialised-aes.js.map +1 -1
- package/dist/internal/utils/tokenised-aes.d.ts +2 -2
- package/dist/internal/utils/tokenised-aes.d.ts.map +1 -1
- package/dist/internal/utils/tokenised-aes.js +22 -27
- package/dist/internal/utils/tokenised-aes.js.map +1 -1
- package/dist/internal/utils/validate-version.js +8 -12
- package/dist/internal/utils/validate-version.js.map +1 -1
- package/dist/mocks/create-mock-aes-kit.d.ts +4 -0
- package/dist/mocks/create-mock-aes-kit.d.ts.map +1 -0
- package/dist/mocks/create-mock-aes-kit.js +81 -0
- package/dist/mocks/create-mock-aes-kit.js.map +1 -0
- package/dist/mocks/jest.d.ts +5 -0
- package/dist/mocks/jest.d.ts.map +1 -0
- package/dist/mocks/jest.js +4 -0
- package/dist/mocks/jest.js.map +1 -0
- package/dist/mocks/vitest.d.ts +6 -0
- package/dist/mocks/vitest.d.ts.map +1 -0
- package/dist/mocks/vitest.js +5 -0
- package/dist/mocks/vitest.js.map +1 -0
- package/dist/types/aes-decryption-data.d.ts +3 -3
- package/dist/types/aes-decryption-data.d.ts.map +1 -1
- package/dist/types/aes-decryption-data.js +1 -2
- package/dist/types/aes-encryption-data.d.ts +3 -3
- package/dist/types/aes-encryption-data.d.ts.map +1 -1
- package/dist/types/aes-encryption-data.js +1 -2
- package/dist/types/aes-kit.d.ts +1 -1
- package/dist/types/aes-kit.d.ts.map +1 -1
- package/dist/types/aes-kit.js +1 -2
- package/dist/types/content.d.ts +1 -1
- package/dist/types/content.d.ts.map +1 -1
- package/dist/types/content.js +1 -2
- package/dist/types/curve.js +1 -2
- package/dist/types/index.d.ts +7 -7
- package/dist/types/index.d.ts.map +1 -1
- package/dist/types/index.js +6 -22
- package/dist/types/index.js.map +1 -1
- package/dist/types/types.d.ts +1 -1
- package/dist/types/types.d.ts.map +1 -1
- package/dist/types/types.js +1 -2
- package/dist/utils/index.d.ts +2 -2
- package/dist/utils/index.d.ts.map +1 -1
- package/dist/utils/index.js +2 -18
- package/dist/utils/index.js.map +1 -1
- package/dist/utils/is-aes.d.ts +1 -1
- package/dist/utils/is-aes.d.ts.map +1 -1
- package/dist/utils/is-aes.js +4 -10
- package/dist/utils/is-aes.js.map +1 -1
- package/dist/utils/parse-aes.d.ts +1 -1
- package/dist/utils/parse-aes.d.ts.map +1 -1
- package/dist/utils/parse-aes.js +15 -19
- package/dist/utils/parse-aes.js.map +1 -1
- package/package.json +19 -26
- package/vitest.config.mjs +6 -0
- package/dist/mocks/index.d.ts +0 -2
- package/dist/mocks/index.d.ts.map +0 -1
- package/dist/mocks/index.js +0 -6
- package/dist/mocks/index.js.map +0 -1
- package/dist/mocks/mock-aes-kit.d.ts +0 -4
- package/dist/mocks/mock-aes-kit.d.ts.map +0 -1
- package/dist/mocks/mock-aes-kit.js +0 -74
- package/dist/mocks/mock-aes-kit.js.map +0 -1
- package/jest.config.interop.mjs +0 -24
- package/tsconfig.interop.json +0 -13
|
@@ -1,13 +1,10 @@
|
|
|
1
|
-
|
|
2
|
-
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.concatKdf = void 0;
|
|
4
|
-
const crypto_1 = require("crypto");
|
|
1
|
+
import { createHash } from "crypto";
|
|
5
2
|
const lengthPrefixed = (data) => {
|
|
6
3
|
const len = Buffer.alloc(4);
|
|
7
4
|
len.writeUInt32BE(data.length);
|
|
8
5
|
return Buffer.concat([len, data]);
|
|
9
6
|
};
|
|
10
|
-
const concatKdf = (options) => {
|
|
7
|
+
export const concatKdf = (options) => {
|
|
11
8
|
const algId = lengthPrefixed(Buffer.from(options.algorithm, "utf8"));
|
|
12
9
|
const partyU = lengthPrefixed(options.apu ?? Buffer.alloc(0));
|
|
13
10
|
const partyV = lengthPrefixed(options.apv ?? Buffer.alloc(0));
|
|
@@ -16,11 +13,10 @@ const concatKdf = (options) => {
|
|
|
16
13
|
const otherInfo = Buffer.concat([algId, partyU, partyV, suppPub]);
|
|
17
14
|
const round = Buffer.alloc(4);
|
|
18
15
|
round.writeUInt32BE(1);
|
|
19
|
-
const hash =
|
|
16
|
+
const hash = createHash("sha256");
|
|
20
17
|
hash.update(round);
|
|
21
18
|
hash.update(options.sharedSecret);
|
|
22
19
|
hash.update(otherInfo);
|
|
23
20
|
return { derivedKey: hash.digest().subarray(0, options.keyLength) };
|
|
24
21
|
};
|
|
25
|
-
exports.concatKdf = concatKdf;
|
|
26
22
|
//# sourceMappingURL=concat-kdf.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"concat-kdf.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-derivation/concat-kdf.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"concat-kdf.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-derivation/concat-kdf.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AAepC,MAAM,cAAc,GAAG,CAAC,IAAY,EAAU,EAAE;IAC9C,MAAM,GAAG,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAC5B,GAAG,CAAC,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC/B,OAAO,MAAM,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC,CAAC;AACpC,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,SAAS,GAAG,CAAC,OAAgB,EAAU,EAAE;IACpD,MAAM,KAAK,GAAG,cAAc,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC,CAAC;IACrE,MAAM,MAAM,GAAG,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IAC9D,MAAM,MAAM,GAAG,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IAC9D,MAAM,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAChC,OAAO,CAAC,aAAa,CAAC,OAAO,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC;IAE7C,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;IAClE,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAC9B,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC;IAEvB,MAAM,IAAI,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC;IAClC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACnB,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;IAClC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IAEvB,OAAO,EAAE,UAAU,EAAE,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,CAAC,EAAE,OAAO,CAAC,SAAS,CAAC,EAAE,CAAC;AACtE,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"pbkdf.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-derivation/pbkdf.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;
|
|
1
|
+
{"version":3,"file":"pbkdf.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-derivation/pbkdf.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAIjE,KAAK,OAAO,GAAG;IACb,SAAS,EAAE,YAAY,CAAC;IACxB,aAAa,EAAE,MAAM,CAAC;IACtB,SAAS,EAAE,YAAY,CAAC;IACxB,gBAAgB,EAAE,MAAM,CAAC;IACzB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,CAAC;AAEF,KAAK,MAAM,GAAG;IACZ,UAAU,EAAE,MAAM,CAAC;IACnB,eAAe,EAAE,MAAM,CAAC;IACxB,SAAS,EAAE,MAAM,CAAC;CACnB,CAAC;AAKF,eAAO,MAAM,KAAK,GAAI,SAAS,OAAO,KAAG,MAyBxC,CAAC"}
|
|
@@ -1,14 +1,11 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
const
|
|
5
|
-
const
|
|
6
|
-
const randomIterations = () => (0, crypto_1.randomInt)(90000, 110001);
|
|
7
|
-
const pbkdf = (options) => {
|
|
8
|
-
const pbkdfSalt = options.pbkdfSalt ?? (0, crypto_1.randomBytes)(16);
|
|
1
|
+
import { pbkdf2Sync, randomBytes, randomInt } from "crypto";
|
|
2
|
+
import { AesError } from "../../../errors/index.js";
|
|
3
|
+
const randomIterations = () => randomInt(90000, 110001);
|
|
4
|
+
export const pbkdf = (options) => {
|
|
5
|
+
const pbkdfSalt = options.pbkdfSalt ?? randomBytes(16);
|
|
9
6
|
const pbkdfIterations = options.pbkdfIterations ?? randomIterations();
|
|
10
7
|
if (pbkdfIterations < 1000) {
|
|
11
|
-
throw new
|
|
8
|
+
throw new AesError("PBKDF2 iteration count must be at least 1000", {
|
|
12
9
|
debug: { pbkdfIterations },
|
|
13
10
|
});
|
|
14
11
|
}
|
|
@@ -17,8 +14,7 @@ const pbkdf = (options) => {
|
|
|
17
14
|
Buffer.from([0x00]),
|
|
18
15
|
pbkdfSalt,
|
|
19
16
|
]);
|
|
20
|
-
const derivedKey =
|
|
17
|
+
const derivedKey = pbkdf2Sync(options.derivationKey, rfcSalt, pbkdfIterations, options.keyLength, options.algorithm);
|
|
21
18
|
return { derivedKey, pbkdfIterations, pbkdfSalt };
|
|
22
19
|
};
|
|
23
|
-
exports.pbkdf = pbkdf;
|
|
24
20
|
//# sourceMappingURL=pbkdf.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"pbkdf.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-derivation/pbkdf.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"pbkdf.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-derivation/pbkdf.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AAC5D,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAkBpD,MAAM,gBAAgB,GAAG,GAAW,EAAE,CAAC,SAAS,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;AAEhE,MAAM,CAAC,MAAM,KAAK,GAAG,CAAC,OAAgB,EAAU,EAAE;IAChD,MAAM,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IACvD,MAAM,eAAe,GAAG,OAAO,CAAC,eAAe,IAAI,gBAAgB,EAAE,CAAC;IAEtE,IAAI,eAAe,GAAG,IAAI,EAAE,CAAC;QAC3B,MAAM,IAAI,QAAQ,CAAC,8CAA8C,EAAE;YACjE,KAAK,EAAE,EAAE,eAAe,EAAE;SAC3B,CAAC,CAAC;IACL,CAAC;IAED,MAAM,OAAO,GAAG,MAAM,CAAC,MAAM,CAAC;QAC5B,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,gBAAgB,EAAE,MAAM,CAAC;QAC7C,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC;QACnB,SAAS;KACV,CAAC,CAAC;IAEH,MAAM,UAAU,GAAG,UAAU,CAC3B,OAAO,CAAC,aAAa,EACrB,OAAO,EACP,eAAe,EACf,OAAO,CAAC,SAAS,EACjB,OAAO,CAAC,SAAS,CAClB,CAAC;IAEF,OAAO,EAAE,UAAU,EAAE,eAAe,EAAE,SAAS,EAAE,CAAC;AACpD,CAAC,CAAC"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
import { CreateCekOptions, CreateCekResult, DecryptCekOptions, DecryptCekResult } from "
|
|
1
|
+
import type { CreateCekOptions, CreateCekResult, DecryptCekOptions, DecryptCekResult } from "../../types/content-encryption-key.js";
|
|
2
2
|
export declare const getEcEncryptionKey: (options: CreateCekOptions) => CreateCekResult;
|
|
3
3
|
export declare const getEcDecryptionKey: (options: DecryptCekOptions) => DecryptCekResult;
|
|
4
4
|
//# sourceMappingURL=get-ec-keys.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-ec-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-ec-keys.ts"],"names":[],"mappings":"AACA,OAAO,
|
|
1
|
+
{"version":3,"file":"get-ec-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-ec-keys.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,uCAAuC,CAAC;AAU/C,eAAO,MAAM,kBAAkB,GAAI,SAAS,gBAAgB,KAAG,eAkB9D,CAAC;AAEF,eAAO,MAAM,kBAAkB,GAAI,SAAS,iBAAiB,KAAG,gBAkB/D,CAAC"}
|
|
@@ -1,43 +1,38 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
const
|
|
5
|
-
const diffie_hellman_1 = require("#internal/utils/diffie-hellman/diffie-hellman");
|
|
6
|
-
const diffie_hellman_key_wrap_1 = require("#internal/utils/diffie-hellman/diffie-hellman-key-wrap");
|
|
7
|
-
const getEcEncryptionKey = (options) => {
|
|
1
|
+
import { AesError } from "../../../errors/index.js";
|
|
2
|
+
import { getDiffieHellmanDecryptionKey, getDiffieHellmanEncryptionKey, } from "../diffie-hellman/diffie-hellman.js";
|
|
3
|
+
import { getDiffieHellmanKeyWrapDecryptionKey, getDiffieHellmanKeyWrapEncryptionKey, } from "../diffie-hellman/diffie-hellman-key-wrap.js";
|
|
4
|
+
export const getEcEncryptionKey = (options) => {
|
|
8
5
|
switch (options.kryptos.algorithm) {
|
|
9
6
|
case "ECDH-ES":
|
|
10
|
-
return
|
|
7
|
+
return getDiffieHellmanEncryptionKey(options);
|
|
11
8
|
case "ECDH-ES+A128KW":
|
|
12
9
|
case "ECDH-ES+A192KW":
|
|
13
10
|
case "ECDH-ES+A256KW":
|
|
14
11
|
case "ECDH-ES+A128GCMKW":
|
|
15
12
|
case "ECDH-ES+A192GCMKW":
|
|
16
13
|
case "ECDH-ES+A256GCMKW":
|
|
17
|
-
return
|
|
14
|
+
return getDiffieHellmanKeyWrapEncryptionKey(options);
|
|
18
15
|
default:
|
|
19
|
-
throw new
|
|
16
|
+
throw new AesError("Unexpected Kryptos", {
|
|
20
17
|
debug: { kryptos: options.kryptos.toJSON() },
|
|
21
18
|
});
|
|
22
19
|
}
|
|
23
20
|
};
|
|
24
|
-
|
|
25
|
-
const getEcDecryptionKey = (options) => {
|
|
21
|
+
export const getEcDecryptionKey = (options) => {
|
|
26
22
|
switch (options.kryptos.algorithm) {
|
|
27
23
|
case "ECDH-ES":
|
|
28
|
-
return
|
|
24
|
+
return getDiffieHellmanDecryptionKey(options);
|
|
29
25
|
case "ECDH-ES+A128KW":
|
|
30
26
|
case "ECDH-ES+A192KW":
|
|
31
27
|
case "ECDH-ES+A256KW":
|
|
32
28
|
case "ECDH-ES+A128GCMKW":
|
|
33
29
|
case "ECDH-ES+A192GCMKW":
|
|
34
30
|
case "ECDH-ES+A256GCMKW":
|
|
35
|
-
return
|
|
31
|
+
return getDiffieHellmanKeyWrapDecryptionKey(options);
|
|
36
32
|
default:
|
|
37
|
-
throw new
|
|
33
|
+
throw new AesError("Unexpected Kryptos", {
|
|
38
34
|
debug: { kryptos: options.kryptos.toJSON() },
|
|
39
35
|
});
|
|
40
36
|
}
|
|
41
37
|
};
|
|
42
|
-
exports.getEcDecryptionKey = getEcDecryptionKey;
|
|
43
38
|
//# sourceMappingURL=get-ec-keys.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-ec-keys.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-ec-keys.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"get-ec-keys.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-ec-keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EACL,6BAA6B,EAC7B,6BAA6B,GAC9B,MAAM,qCAAqC,CAAC;AAC7C,OAAO,EACL,oCAAoC,EACpC,oCAAoC,GACrC,MAAM,8CAA8C,CAAC;AAEtD,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,OAAyB,EAAmB,EAAE;IAC/E,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,6BAA6B,CAAC,OAAO,CAAC,CAAC;QAEhD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,oCAAoC,CAAC,OAAO,CAAC,CAAC;QAEvD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,OAA0B,EAAoB,EAAE;IACjF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,6BAA6B,CAAC,OAAO,CAAC,CAAC;QAEhD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,oCAAoC,CAAC,OAAO,CAAC,CAAC;QAEvD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
import { CreateCekOptions, CreateCekResult, DecryptCekOptions, DecryptCekResult } from "
|
|
1
|
+
import type { CreateCekOptions, CreateCekResult, DecryptCekOptions, DecryptCekResult } from "../../types/content-encryption-key.js";
|
|
2
2
|
export declare const getOctEncryptionKey: (options: CreateCekOptions) => CreateCekResult;
|
|
3
3
|
export declare const getOctDecryptionKey: (options: DecryptCekOptions) => DecryptCekResult;
|
|
4
4
|
//# sourceMappingURL=get-oct-keys.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-oct-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-oct-keys.ts"],"names":[],"mappings":"AACA,OAAO,
|
|
1
|
+
{"version":3,"file":"get-oct-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-oct-keys.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,uCAAuC,CAAC;AAc/C,eAAO,MAAM,mBAAmB,GAAI,SAAS,gBAAgB,KAAG,eAuB/D,CAAC;AAEF,eAAO,MAAM,mBAAmB,GAAI,SAAS,iBAAiB,KAAG,gBAuBhE,CAAC"}
|
|
@@ -1,52 +1,47 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
|
|
5
|
-
const
|
|
6
|
-
const get_oct_key_key_wrap_1 = require("#internal/utils/oct/get-oct-key-key-wrap");
|
|
7
|
-
const get_oct_pbkdf_key_wrap_keys_1 = require("#internal/utils/oct/get-oct-pbkdf-key-wrap-keys");
|
|
8
|
-
const getOctEncryptionKey = (options) => {
|
|
1
|
+
import { AesError } from "../../../errors/index.js";
|
|
2
|
+
import { getOctDirDecryptionKey, getOctDirEncryptionKey, } from "../oct/get-oct-dir-keys.js";
|
|
3
|
+
import { getOctKeyWrapDecryptionKey, getOctKeyWrapEncryptionKey, } from "../oct/get-oct-key-key-wrap.js";
|
|
4
|
+
import { getOctPbkdfKeyWrapDecryptionKey, getOctPbkdfKeyWrapEncryptionKey, } from "../oct/get-oct-pbkdf-key-wrap-keys.js";
|
|
5
|
+
export const getOctEncryptionKey = (options) => {
|
|
9
6
|
switch (options.kryptos.algorithm) {
|
|
10
7
|
case "dir":
|
|
11
|
-
return
|
|
8
|
+
return getOctDirEncryptionKey(options);
|
|
12
9
|
case "A128KW":
|
|
13
10
|
case "A192KW":
|
|
14
11
|
case "A256KW":
|
|
15
12
|
case "A128GCMKW":
|
|
16
13
|
case "A192GCMKW":
|
|
17
14
|
case "A256GCMKW":
|
|
18
|
-
return
|
|
15
|
+
return getOctKeyWrapEncryptionKey(options);
|
|
19
16
|
case "PBES2-HS256+A128KW":
|
|
20
17
|
case "PBES2-HS384+A192KW":
|
|
21
18
|
case "PBES2-HS512+A256KW":
|
|
22
|
-
return
|
|
19
|
+
return getOctPbkdfKeyWrapEncryptionKey(options);
|
|
23
20
|
default:
|
|
24
|
-
throw new
|
|
21
|
+
throw new AesError("Unexpected Kryptos", {
|
|
25
22
|
debug: { kryptos: options.kryptos.toJSON() },
|
|
26
23
|
});
|
|
27
24
|
}
|
|
28
25
|
};
|
|
29
|
-
|
|
30
|
-
const getOctDecryptionKey = (options) => {
|
|
26
|
+
export const getOctDecryptionKey = (options) => {
|
|
31
27
|
switch (options.kryptos.algorithm) {
|
|
32
28
|
case "dir":
|
|
33
|
-
return
|
|
29
|
+
return getOctDirDecryptionKey(options);
|
|
34
30
|
case "A128KW":
|
|
35
31
|
case "A192KW":
|
|
36
32
|
case "A256KW":
|
|
37
33
|
case "A128GCMKW":
|
|
38
34
|
case "A192GCMKW":
|
|
39
35
|
case "A256GCMKW":
|
|
40
|
-
return
|
|
36
|
+
return getOctKeyWrapDecryptionKey(options);
|
|
41
37
|
case "PBES2-HS256+A128KW":
|
|
42
38
|
case "PBES2-HS384+A192KW":
|
|
43
39
|
case "PBES2-HS512+A256KW":
|
|
44
|
-
return
|
|
40
|
+
return getOctPbkdfKeyWrapDecryptionKey(options);
|
|
45
41
|
default:
|
|
46
|
-
throw new
|
|
42
|
+
throw new AesError("Unexpected Kryptos", {
|
|
47
43
|
debug: { kryptos: options.kryptos.toJSON() },
|
|
48
44
|
});
|
|
49
45
|
}
|
|
50
46
|
};
|
|
51
|
-
exports.getOctDecryptionKey = getOctDecryptionKey;
|
|
52
47
|
//# sourceMappingURL=get-oct-keys.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-oct-keys.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-oct-keys.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"get-oct-keys.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-oct-keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EACL,sBAAsB,EACtB,sBAAsB,GACvB,MAAM,4BAA4B,CAAC;AACpC,OAAO,EACL,0BAA0B,EAC1B,0BAA0B,GAC3B,MAAM,gCAAgC,CAAC;AACxC,OAAO,EACL,+BAA+B,EAC/B,+BAA+B,GAChC,MAAM,uCAAuC,CAAC;AAE/C,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,OAAyB,EAAmB,EAAE;IAChF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,KAAK;YACR,OAAO,sBAAsB,CAAC,OAAO,CAAC,CAAC;QAEzC,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW;YACd,OAAO,0BAA0B,CAAC,OAAO,CAAC,CAAC;QAE7C,KAAK,oBAAoB,CAAC;QAC1B,KAAK,oBAAoB,CAAC;QAC1B,KAAK,oBAAoB;YACvB,OAAO,+BAA+B,CAAC,OAAO,CAAC,CAAC;QAElD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,OAA0B,EAAoB,EAAE;IAClF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,KAAK;YACR,OAAO,sBAAsB,CAAC,OAAO,CAAC,CAAC;QAEzC,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW;YACd,OAAO,0BAA0B,CAAC,OAAO,CAAC,CAAC;QAE7C,KAAK,oBAAoB,CAAC;QAC1B,KAAK,oBAAoB,CAAC;QAC1B,KAAK,oBAAoB;YACvB,OAAO,+BAA+B,CAAC,OAAO,CAAC,CAAC;QAElD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
import { CreateCekOptions, CreateCekResult, DecryptCekOptions, DecryptCekResult } from "
|
|
1
|
+
import type { CreateCekOptions, CreateCekResult, DecryptCekOptions, DecryptCekResult } from "../../types/content-encryption-key.js";
|
|
2
2
|
export declare const getOkpEncryptionKey: (options: CreateCekOptions) => CreateCekResult;
|
|
3
3
|
export declare const getOkpDecryptionKey: (options: DecryptCekOptions) => DecryptCekResult;
|
|
4
4
|
//# sourceMappingURL=get-okp-keys.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-okp-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-okp-keys.ts"],"names":[],"mappings":"AACA,OAAO,
|
|
1
|
+
{"version":3,"file":"get-okp-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-okp-keys.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,uCAAuC,CAAC;AAU/C,eAAO,MAAM,mBAAmB,GAAI,SAAS,gBAAgB,KAAG,eAkB/D,CAAC;AAEF,eAAO,MAAM,mBAAmB,GAAI,SAAS,iBAAiB,KAAG,gBAkBhE,CAAC"}
|
|
@@ -1,43 +1,38 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
const
|
|
5
|
-
const diffie_hellman_1 = require("#internal/utils/diffie-hellman/diffie-hellman");
|
|
6
|
-
const diffie_hellman_key_wrap_1 = require("#internal/utils/diffie-hellman/diffie-hellman-key-wrap");
|
|
7
|
-
const getOkpEncryptionKey = (options) => {
|
|
1
|
+
import { AesError } from "../../../errors/index.js";
|
|
2
|
+
import { getDiffieHellmanDecryptionKey, getDiffieHellmanEncryptionKey, } from "../diffie-hellman/diffie-hellman.js";
|
|
3
|
+
import { getDiffieHellmanKeyWrapDecryptionKey, getDiffieHellmanKeyWrapEncryptionKey, } from "../diffie-hellman/diffie-hellman-key-wrap.js";
|
|
4
|
+
export const getOkpEncryptionKey = (options) => {
|
|
8
5
|
switch (options.kryptos.algorithm) {
|
|
9
6
|
case "ECDH-ES":
|
|
10
|
-
return
|
|
7
|
+
return getDiffieHellmanEncryptionKey(options);
|
|
11
8
|
case "ECDH-ES+A128KW":
|
|
12
9
|
case "ECDH-ES+A192KW":
|
|
13
10
|
case "ECDH-ES+A256KW":
|
|
14
11
|
case "ECDH-ES+A128GCMKW":
|
|
15
12
|
case "ECDH-ES+A192GCMKW":
|
|
16
13
|
case "ECDH-ES+A256GCMKW":
|
|
17
|
-
return
|
|
14
|
+
return getDiffieHellmanKeyWrapEncryptionKey(options);
|
|
18
15
|
default:
|
|
19
|
-
throw new
|
|
16
|
+
throw new AesError("Unexpected Kryptos", {
|
|
20
17
|
debug: { kryptos: options.kryptos.toJSON() },
|
|
21
18
|
});
|
|
22
19
|
}
|
|
23
20
|
};
|
|
24
|
-
|
|
25
|
-
const getOkpDecryptionKey = (options) => {
|
|
21
|
+
export const getOkpDecryptionKey = (options) => {
|
|
26
22
|
switch (options.kryptos.algorithm) {
|
|
27
23
|
case "ECDH-ES":
|
|
28
|
-
return
|
|
24
|
+
return getDiffieHellmanDecryptionKey(options);
|
|
29
25
|
case "ECDH-ES+A128KW":
|
|
30
26
|
case "ECDH-ES+A192KW":
|
|
31
27
|
case "ECDH-ES+A256KW":
|
|
32
28
|
case "ECDH-ES+A128GCMKW":
|
|
33
29
|
case "ECDH-ES+A192GCMKW":
|
|
34
30
|
case "ECDH-ES+A256GCMKW":
|
|
35
|
-
return
|
|
31
|
+
return getDiffieHellmanKeyWrapDecryptionKey(options);
|
|
36
32
|
default:
|
|
37
|
-
throw new
|
|
33
|
+
throw new AesError("Unexpected Kryptos", {
|
|
38
34
|
debug: { kryptos: options.kryptos.toJSON() },
|
|
39
35
|
});
|
|
40
36
|
}
|
|
41
37
|
};
|
|
42
|
-
exports.getOkpDecryptionKey = getOkpDecryptionKey;
|
|
43
38
|
//# sourceMappingURL=get-okp-keys.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-okp-keys.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-okp-keys.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"get-okp-keys.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-okp-keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EACL,6BAA6B,EAC7B,6BAA6B,GAC9B,MAAM,qCAAqC,CAAC;AAC7C,OAAO,EACL,oCAAoC,EACpC,oCAAoC,GACrC,MAAM,8CAA8C,CAAC;AAEtD,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,OAAyB,EAAmB,EAAE;IAChF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,6BAA6B,CAAC,OAAO,CAAC,CAAC;QAEhD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,oCAAoC,CAAC,OAAO,CAAC,CAAC;QAEvD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,OAA0B,EAAoB,EAAE;IAClF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,6BAA6B,CAAC,OAAO,CAAC,CAAC;QAEhD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,oCAAoC,CAAC,OAAO,CAAC,CAAC;QAEvD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
import { CreateCekOptions, CreateCekResult, DecryptCekOptions, DecryptCekResult } from "
|
|
1
|
+
import type { CreateCekOptions, CreateCekResult, DecryptCekOptions, DecryptCekResult } from "../../types/content-encryption-key.js";
|
|
2
2
|
export declare const getRsaEncryptionKey: ({ encryption, kryptos, }: CreateCekOptions) => CreateCekResult;
|
|
3
3
|
export declare const getRsaDecryptionKey: ({ kryptos, publicEncryptionKey, }: DecryptCekOptions) => DecryptCekResult;
|
|
4
4
|
//# sourceMappingURL=get-rsa-keys.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-rsa-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-rsa-keys.ts"],"names":[],"mappings":"AAIA,OAAO,
|
|
1
|
+
{"version":3,"file":"get-rsa-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-rsa-keys.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,uCAAuC,CAAC;AAI/C,eAAO,MAAM,mBAAmB,GAAI,0BAGjC,gBAAgB,KAAG,eA6BrB,CAAC;AAEF,eAAO,MAAM,mBAAmB,GAAI,mCAGjC,iBAAiB,KAAG,gBAmCtB,CAAC"}
|
|
@@ -1,58 +1,53 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
|
|
5
|
-
|
|
6
|
-
|
|
7
|
-
const
|
|
8
|
-
|
|
9
|
-
|
|
10
|
-
const getRsaEncryptionKey = ({ encryption, kryptos, }) => {
|
|
11
|
-
if (!kryptos_1.KryptosKit.isRsa(kryptos)) {
|
|
12
|
-
throw new errors_1.AesError("Invalid Kryptos instance");
|
|
1
|
+
import { KryptosKit } from "@lindorm/kryptos";
|
|
2
|
+
import { RSA_PKCS1_OAEP_PADDING } from "constants";
|
|
3
|
+
import { privateDecrypt, publicEncrypt, randomBytes } from "crypto";
|
|
4
|
+
import { AesError } from "../../../errors/index.js";
|
|
5
|
+
import { calculateContentEncryptionKeySize } from "../calculate/calculate-content-encryption-key-size.js";
|
|
6
|
+
import { calculateRsaOaepHash } from "../calculate/calculate-rsa-oaep-hash.js";
|
|
7
|
+
export const getRsaEncryptionKey = ({ encryption, kryptos, }) => {
|
|
8
|
+
if (!KryptosKit.isRsa(kryptos)) {
|
|
9
|
+
throw new AesError("Invalid Kryptos instance");
|
|
13
10
|
}
|
|
14
11
|
if (kryptos.algorithm !== "RSA-OAEP" &&
|
|
15
12
|
kryptos.algorithm !== "RSA-OAEP-256" &&
|
|
16
13
|
kryptos.algorithm !== "RSA-OAEP-384" &&
|
|
17
14
|
kryptos.algorithm !== "RSA-OAEP-512") {
|
|
18
|
-
throw new
|
|
15
|
+
throw new AesError("Invalid encryption key algorithm");
|
|
19
16
|
}
|
|
20
|
-
const keyLength =
|
|
21
|
-
const contentEncryptionKey =
|
|
17
|
+
const keyLength = calculateContentEncryptionKeySize(encryption);
|
|
18
|
+
const contentEncryptionKey = randomBytes(keyLength);
|
|
22
19
|
const { publicKey } = kryptos.export("pem");
|
|
23
|
-
const publicEncryptionKey =
|
|
20
|
+
const publicEncryptionKey = publicEncrypt({
|
|
24
21
|
key: publicKey,
|
|
25
|
-
padding:
|
|
26
|
-
oaepHash:
|
|
22
|
+
padding: RSA_PKCS1_OAEP_PADDING,
|
|
23
|
+
oaepHash: calculateRsaOaepHash(kryptos.algorithm),
|
|
27
24
|
}, contentEncryptionKey);
|
|
28
25
|
return { contentEncryptionKey, publicEncryptionKey };
|
|
29
26
|
};
|
|
30
|
-
|
|
31
|
-
|
|
32
|
-
|
|
33
|
-
throw new errors_1.AesError("Invalid Kryptos instance");
|
|
27
|
+
export const getRsaDecryptionKey = ({ kryptos, publicEncryptionKey, }) => {
|
|
28
|
+
if (!KryptosKit.isRsa(kryptos)) {
|
|
29
|
+
throw new AesError("Invalid Kryptos instance");
|
|
34
30
|
}
|
|
35
31
|
if (!publicEncryptionKey) {
|
|
36
|
-
throw new
|
|
32
|
+
throw new AesError("Missing publicEncryptionKey");
|
|
37
33
|
}
|
|
38
34
|
if (kryptos.algorithm !== "RSA-OAEP" &&
|
|
39
35
|
kryptos.algorithm !== "RSA-OAEP-256" &&
|
|
40
36
|
kryptos.algorithm !== "RSA-OAEP-384" &&
|
|
41
37
|
kryptos.algorithm !== "RSA-OAEP-512") {
|
|
42
|
-
throw new
|
|
38
|
+
throw new AesError("Invalid encryption key algorithm", {
|
|
43
39
|
debug: { kryptos },
|
|
44
40
|
});
|
|
45
41
|
}
|
|
46
42
|
const { privateKey } = kryptos.export("pem");
|
|
47
43
|
if (!privateKey) {
|
|
48
|
-
throw new
|
|
44
|
+
throw new AesError("Unable to decrypt AES without private key");
|
|
49
45
|
}
|
|
50
|
-
const contentEncryptionKey =
|
|
46
|
+
const contentEncryptionKey = privateDecrypt({
|
|
51
47
|
key: privateKey,
|
|
52
|
-
padding:
|
|
53
|
-
oaepHash:
|
|
48
|
+
padding: RSA_PKCS1_OAEP_PADDING,
|
|
49
|
+
oaepHash: calculateRsaOaepHash(kryptos.algorithm),
|
|
54
50
|
}, publicEncryptionKey);
|
|
55
51
|
return { contentEncryptionKey };
|
|
56
52
|
};
|
|
57
|
-
exports.getRsaDecryptionKey = getRsaDecryptionKey;
|
|
58
53
|
//# sourceMappingURL=get-rsa-keys.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-rsa-keys.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-rsa-keys.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"get-rsa-keys.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-rsa-keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAC9C,OAAO,EAAE,sBAAsB,EAAE,MAAM,WAAW,CAAC;AACnD,OAAO,EAAE,cAAc,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AACpE,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EAAE,iCAAiC,EAAE,MAAM,uDAAuD,CAAC;AAC1G,OAAO,EAAE,oBAAoB,EAAE,MAAM,yCAAyC,CAAC;AAE/E,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,EAClC,UAAU,EACV,OAAO,GACU,EAAmB,EAAE;IACtC,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,QAAQ,CAAC,0BAA0B,CAAC,CAAC;IACjD,CAAC;IAED,IACE,OAAO,CAAC,SAAS,KAAK,UAAU;QAChC,OAAO,CAAC,SAAS,KAAK,cAAc;QACpC,OAAO,CAAC,SAAS,KAAK,cAAc;QACpC,OAAO,CAAC,SAAS,KAAK,cAAc,EACpC,CAAC;QACD,MAAM,IAAI,QAAQ,CAAC,kCAAkC,CAAC,CAAC;IACzD,CAAC;IAED,MAAM,SAAS,GAAG,iCAAiC,CAAC,UAAU,CAAC,CAAC;IAChE,MAAM,oBAAoB,GAAG,WAAW,CAAC,SAAS,CAAC,CAAC;IAEpD,MAAM,EAAE,SAAS,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAE5C,MAAM,mBAAmB,GAAG,aAAa,CACvC;QACE,GAAG,EAAE,SAAS;QACd,OAAO,EAAE,sBAAsB;QAC/B,QAAQ,EAAE,oBAAoB,CAAC,OAAO,CAAC,SAAS,CAAC;KAClD,EACD,oBAAoB,CACrB,CAAC;IAEF,OAAO,EAAE,oBAAoB,EAAE,mBAAmB,EAAE,CAAC;AACvD,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,EAClC,OAAO,EACP,mBAAmB,GACD,EAAoB,EAAE;IACxC,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,QAAQ,CAAC,0BAA0B,CAAC,CAAC;IACjD,CAAC;IACD,IAAI,CAAC,mBAAmB,EAAE,CAAC;QACzB,MAAM,IAAI,QAAQ,CAAC,6BAA6B,CAAC,CAAC;IACpD,CAAC;IAED,IACE,OAAO,CAAC,SAAS,KAAK,UAAU;QAChC,OAAO,CAAC,SAAS,KAAK,cAAc;QACpC,OAAO,CAAC,SAAS,KAAK,cAAc;QACpC,OAAO,CAAC,SAAS,KAAK,cAAc,EACpC,CAAC;QACD,MAAM,IAAI,QAAQ,CAAC,kCAAkC,EAAE;YACrD,KAAK,EAAE,EAAE,OAAO,EAAE;SACnB,CAAC,CAAC;IACL,CAAC;IAED,MAAM,EAAE,UAAU,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAE7C,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,MAAM,IAAI,QAAQ,CAAC,2CAA2C,CAAC,CAAC;IAClE,CAAC;IAED,MAAM,oBAAoB,GAAG,cAAc,CACzC;QACE,GAAG,EAAE,UAAU;QACf,OAAO,EAAE,sBAAsB;QAC/B,QAAQ,EAAE,oBAAoB,CAAC,OAAO,CAAC,SAAS,CAAC;KAClD,EACD,mBAAmB,CACpB,CAAC;IAEF,OAAO,EAAE,oBAAoB,EAAE,CAAC;AAClC,CAAC,CAAC"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
import { KeyUnwrapOptions, KeyUnwrapResult, KeyWrapOptions, KeyWrapResult } from "
|
|
1
|
+
import type { KeyUnwrapOptions, KeyUnwrapResult, KeyWrapOptions, KeyWrapResult } from "../../types/key-wrap.js";
|
|
2
2
|
export declare const ecbKeyWrap: ({ contentEncryptionKey, keyEncryptionKey, kryptos, }: KeyWrapOptions) => KeyWrapResult;
|
|
3
3
|
export declare const ecbKeyUnwrap: ({ keyEncryptionKey, kryptos, publicEncryptionKey, }: KeyUnwrapOptions) => KeyUnwrapResult;
|
|
4
4
|
//# sourceMappingURL=ecb-key-wrap.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"ecb-key-wrap.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/ecb-key-wrap.ts"],"names":[],"mappings":"AACA,OAAO,
|
|
1
|
+
{"version":3,"file":"ecb-key-wrap.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/ecb-key-wrap.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,cAAc,EACd,aAAa,EACd,MAAM,yBAAyB,CAAC;AAQjC,eAAO,MAAM,UAAU,GAAI,sDAIxB,cAAc,KAAG,aAoCnB,CAAC;AAEF,eAAO,MAAM,YAAY,GAAI,qDAI1B,gBAAgB,KAAG,eAqCrB,CAAC"}
|
|
@@ -1,16 +1,13 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
const crypto_1 = require("crypto");
|
|
5
|
-
const AesError_1 = require("../../../errors/AesError");
|
|
6
|
-
const calculate_key_wrap_encryption_1 = require("#internal/utils/calculate/calculate-key-wrap-encryption");
|
|
1
|
+
import { createCipheriv, createDecipheriv, timingSafeEqual } from "crypto";
|
|
2
|
+
import { AesError } from "../../../errors/AesError.js";
|
|
3
|
+
import { calculateKeyWrapEncryption } from "../calculate/calculate-key-wrap-encryption.js";
|
|
7
4
|
const AIV = "A6A6A6A6A6A6A6A6";
|
|
8
5
|
const AIV_BUFFER = Buffer.from(AIV, "hex");
|
|
9
6
|
const BLOCK_SIZE = 8;
|
|
10
|
-
const ecbKeyWrap = ({ contentEncryptionKey, keyEncryptionKey, kryptos, }) => {
|
|
11
|
-
const algorithm =
|
|
7
|
+
export const ecbKeyWrap = ({ contentEncryptionKey, keyEncryptionKey, kryptos, }) => {
|
|
8
|
+
const algorithm = calculateKeyWrapEncryption(kryptos);
|
|
12
9
|
if (contentEncryptionKey.length < 16 || contentEncryptionKey.length % 8 !== 0) {
|
|
13
|
-
throw new
|
|
10
|
+
throw new AesError("Key wrap input must be at least 16 bytes and a multiple of 8");
|
|
14
11
|
}
|
|
15
12
|
const n = contentEncryptionKey.length / BLOCK_SIZE;
|
|
16
13
|
let a = Buffer.from(AIV_BUFFER);
|
|
@@ -18,7 +15,7 @@ const ecbKeyWrap = ({ contentEncryptionKey, keyEncryptionKey, kryptos, }) => {
|
|
|
18
15
|
for (let i = 0; i < n; i++) {
|
|
19
16
|
r[i] = contentEncryptionKey.subarray(i * BLOCK_SIZE, (i + 1) * BLOCK_SIZE);
|
|
20
17
|
}
|
|
21
|
-
const cipher =
|
|
18
|
+
const cipher = createCipheriv(algorithm, keyEncryptionKey, null);
|
|
22
19
|
cipher.setAutoPadding(false);
|
|
23
20
|
for (let j = 0; j < 6; j++) {
|
|
24
21
|
for (let i = 0; i < n; i++) {
|
|
@@ -37,16 +34,15 @@ const ecbKeyWrap = ({ contentEncryptionKey, keyEncryptionKey, kryptos, }) => {
|
|
|
37
34
|
cipher.final();
|
|
38
35
|
return { publicEncryptionKey: Buffer.concat([a, ...r]) };
|
|
39
36
|
};
|
|
40
|
-
|
|
41
|
-
const
|
|
42
|
-
const encryption = (0, calculate_key_wrap_encryption_1.calculateKeyWrapEncryption)(kryptos);
|
|
37
|
+
export const ecbKeyUnwrap = ({ keyEncryptionKey, kryptos, publicEncryptionKey, }) => {
|
|
38
|
+
const encryption = calculateKeyWrapEncryption(kryptos);
|
|
43
39
|
const n = publicEncryptionKey.length / BLOCK_SIZE - 1;
|
|
44
40
|
let a = publicEncryptionKey.subarray(0, BLOCK_SIZE);
|
|
45
41
|
const r = [];
|
|
46
42
|
for (let i = 0; i < n; i++) {
|
|
47
43
|
r[i] = publicEncryptionKey.subarray((i + 1) * BLOCK_SIZE, (i + 2) * BLOCK_SIZE);
|
|
48
44
|
}
|
|
49
|
-
const decipher =
|
|
45
|
+
const decipher = createDecipheriv(encryption, keyEncryptionKey, null);
|
|
50
46
|
decipher.setAutoPadding(false);
|
|
51
47
|
for (let j = 5; j >= 0; j--) {
|
|
52
48
|
for (let i = n - 1; i >= 0; i--) {
|
|
@@ -64,10 +60,9 @@ const ecbKeyUnwrap = ({ keyEncryptionKey, kryptos, publicEncryptionKey, }) => {
|
|
|
64
60
|
}
|
|
65
61
|
}
|
|
66
62
|
decipher.final();
|
|
67
|
-
if (!
|
|
68
|
-
throw new
|
|
63
|
+
if (!timingSafeEqual(a, AIV_BUFFER)) {
|
|
64
|
+
throw new AesError("Integrity check failed");
|
|
69
65
|
}
|
|
70
66
|
return { contentEncryptionKey: Buffer.concat(r) };
|
|
71
67
|
};
|
|
72
|
-
exports.ecbKeyUnwrap = ecbKeyUnwrap;
|
|
73
68
|
//# sourceMappingURL=ecb-key-wrap.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"ecb-key-wrap.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/ecb-key-wrap.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"ecb-key-wrap.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/ecb-key-wrap.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,gBAAgB,EAAE,eAAe,EAAE,MAAM,QAAQ,CAAC;AAO3E,OAAO,EAAE,QAAQ,EAAE,MAAM,6BAA6B,CAAC;AACvD,OAAO,EAAE,0BAA0B,EAAE,MAAM,+CAA+C,CAAC;AAE3F,MAAM,GAAG,GAAG,kBAA2B,CAAC;AACxC,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;AAC3C,MAAM,UAAU,GAAG,CAAU,CAAC;AAE9B,MAAM,CAAC,MAAM,UAAU,GAAG,CAAC,EACzB,oBAAoB,EACpB,gBAAgB,EAChB,OAAO,GACQ,EAAiB,EAAE;IAClC,MAAM,SAAS,GAAG,0BAA0B,CAAC,OAAO,CAAC,CAAC;IAEtD,IAAI,oBAAoB,CAAC,MAAM,GAAG,EAAE,IAAI,oBAAoB,CAAC,MAAM,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;QAC9E,MAAM,IAAI,QAAQ,CAAC,8DAA8D,CAAC,CAAC;IACrF,CAAC;IAED,MAAM,CAAC,GAAG,oBAAoB,CAAC,MAAM,GAAG,UAAU,CAAC;IACnD,IAAI,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;IAChC,MAAM,CAAC,GAAG,EAAE,CAAC;IAEb,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC3B,CAAC,CAAC,CAAC,CAAC,GAAG,oBAAoB,CAAC,QAAQ,CAAC,CAAC,GAAG,UAAU,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,UAAU,CAAC,CAAC;IAC7E,CAAC;IAED,MAAM,MAAM,GAAG,cAAc,CAAC,SAAS,EAAE,gBAAgB,EAAE,IAAI,CAAC,CAAC;IACjE,MAAM,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC;IAE7B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC3B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;YAC3B,MAAM,CAAC,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YACnC,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;YACnC,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;YACtC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACxB,MAAM,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YACzC,OAAO,CAAC,WAAW,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC;YAC7B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,UAAU,EAAE,CAAC,EAAE,EAAE,CAAC;gBACpC,CAAC,CAAC,CAAC,CAAC,IAAI,OAAO,CAAC,CAAC,CAAC,CAAC;YACrB,CAAC;YACD,CAAC,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;QACxC,CAAC;IACH,CAAC;IAED,MAAM,CAAC,KAAK,EAAE,CAAC;IAEf,OAAO,EAAE,mBAAmB,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC;AAC3D,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,YAAY,GAAG,CAAC,EAC3B,gBAAgB,EAChB,OAAO,EACP,mBAAmB,GACF,EAAmB,EAAE;IACtC,MAAM,UAAU,GAAG,0BAA0B,CAAC,OAAO,CAAC,CAAC;IAEvD,MAAM,CAAC,GAAG,mBAAmB,CAAC,MAAM,GAAG,UAAU,GAAG,CAAC,CAAC;IACtD,IAAI,CAAC,GAAG,mBAAmB,CAAC,QAAQ,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;IACpD,MAAM,CAAC,GAAG,EAAE,CAAC;IAEb,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC3B,CAAC,CAAC,CAAC,CAAC,GAAG,mBAAmB,CAAC,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,UAAU,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,UAAU,CAAC,CAAC;IAClF,CAAC;IAED,MAAM,QAAQ,GAAG,gBAAgB,CAAC,UAAU,EAAE,gBAAgB,EAAE,IAAI,CAAC,CAAC;IACtE,QAAQ,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC;IAE/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC5B,KAAK,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;YAChC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACxB,MAAM,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YACzC,OAAO,CAAC,WAAW,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC;YAC7B,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YACvC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,UAAU,EAAE,CAAC,EAAE,EAAE,CAAC;gBACpC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;YAC/B,CAAC;YACD,MAAM,CAAC,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YACvC,MAAM,SAAS,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;YACrC,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;YACtC,CAAC,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;QACxC,CAAC;IACH,CAAC;IAED,QAAQ,CAAC,KAAK,EAAE,CAAC;IAEjB,IAAI,CAAC,eAAe,CAAC,CAAC,EAAE,UAAU,CAAC,EAAE,CAAC;QACpC,MAAM,IAAI,QAAQ,CAAC,wBAAwB,CAAC,CAAC;IAC/C,CAAC;IAED,OAAO,EAAE,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC;AACpD,CAAC,CAAC"}
|
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
import { KeyUnwrapOptions, KeyUnwrapResult, KeyWrapOptions, KeyWrapResult } from "
|
|
1
|
+
import type { KeyUnwrapOptions, KeyUnwrapResult, KeyWrapOptions, KeyWrapResult } from "../../types/key-wrap.js";
|
|
2
2
|
export declare const gcmKeyWrap: ({ contentEncryptionKey, keyEncryptionKey, kryptos, }: KeyWrapOptions) => KeyWrapResult;
|
|
3
3
|
export declare const gcmKeyUnwrap: ({ keyEncryptionKey, kryptos, publicEncryptionIv, publicEncryptionKey, publicEncryptionTag, }: KeyUnwrapOptions) => KeyUnwrapResult;
|
|
4
4
|
//# sourceMappingURL=gcm-key-wrap.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"gcm-key-wrap.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/gcm-key-wrap.ts"],"names":[],"mappings":"AAQA,OAAO,
|
|
1
|
+
{"version":3,"file":"gcm-key-wrap.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/gcm-key-wrap.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,cAAc,EACd,aAAa,EACd,MAAM,yBAAyB,CAAC;AAGjC,eAAO,MAAM,UAAU,GAAI,sDAIxB,cAAc,KAAG,aAkBnB,CAAC;AAEF,eAAO,MAAM,YAAY,GAAI,8FAM1B,gBAAgB,KAAG,eA8BrB,CAAC"}
|