@lindorm/aes 0.7.2 → 0.8.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/classes/AesKit.d.ts +3 -1
- package/dist/classes/AesKit.d.ts.map +1 -1
- package/dist/classes/AesKit.js +72 -5
- package/dist/classes/AesKit.js.map +1 -1
- package/dist/errors/AesError.d.ts +1 -0
- package/dist/errors/AesError.d.ts.map +1 -1
- package/dist/errors/AesError.js +1 -0
- package/dist/errors/AesError.js.map +1 -1
- package/dist/interfaces/AesKit.d.ts +17 -0
- package/dist/interfaces/AesKit.d.ts.map +1 -1
- package/dist/internal/utils/aes-descriptor.d.ts +17 -0
- package/dist/internal/utils/aes-descriptor.d.ts.map +1 -0
- package/dist/internal/utils/aes-descriptor.js +100 -0
- package/dist/internal/utils/aes-descriptor.js.map +1 -0
- package/dist/internal/utils/aes-header.d.ts.map +1 -1
- package/dist/internal/utils/aes-header.js +6 -0
- package/dist/internal/utils/aes-header.js.map +1 -1
- package/dist/internal/utils/calculate/calculate-aes-encryption.d.ts.map +1 -1
- package/dist/internal/utils/calculate/calculate-aes-encryption.js +2 -22
- package/dist/internal/utils/calculate/calculate-aes-encryption.js.map +1 -1
- package/dist/internal/utils/calculate/calculate-content-encryption-key-size.d.ts.map +1 -1
- package/dist/internal/utils/calculate/calculate-content-encryption-key-size.js +2 -22
- package/dist/internal/utils/calculate/calculate-content-encryption-key-size.js.map +1 -1
- package/dist/internal/utils/calculate/calculate-key-wrap-encryption.d.ts.map +1 -1
- package/dist/internal/utils/calculate/calculate-key-wrap-encryption.js +5 -1
- package/dist/internal/utils/calculate/calculate-key-wrap-encryption.js.map +1 -1
- package/dist/internal/utils/calculate/calculate-key-wrap-size.d.ts.map +1 -1
- package/dist/internal/utils/calculate/calculate-key-wrap-size.js +6 -1
- package/dist/internal/utils/calculate/calculate-key-wrap-size.js.map +1 -1
- package/dist/internal/utils/calculate/calculate-pbkdf-hash.d.ts.map +1 -1
- package/dist/internal/utils/calculate/calculate-pbkdf-hash.js +6 -1
- package/dist/internal/utils/calculate/calculate-pbkdf-hash.js.map +1 -1
- package/dist/internal/utils/calculate/calculate-rsa-oaep-hash.d.ts.map +1 -1
- package/dist/internal/utils/calculate/calculate-rsa-oaep-hash.js +4 -1
- package/dist/internal/utils/calculate/calculate-rsa-oaep-hash.js.map +1 -1
- package/dist/internal/utils/content-primitive.d.ts +24 -0
- package/dist/internal/utils/content-primitive.d.ts.map +1 -0
- package/dist/internal/utils/content-primitive.js +47 -0
- package/dist/internal/utils/content-primitive.js.map +1 -0
- package/dist/internal/utils/content.d.ts.map +1 -1
- package/dist/internal/utils/content.js +12 -3
- package/dist/internal/utils/content.js.map +1 -1
- package/dist/internal/utils/data/auth-tag-hmac.d.ts.map +1 -1
- package/dist/internal/utils/data/auth-tag-hmac.js +11 -2
- package/dist/internal/utils/data/auth-tag-hmac.js.map +1 -1
- package/dist/internal/utils/data/auth-tag.d.ts.map +1 -1
- package/dist/internal/utils/data/auth-tag.js +28 -17
- package/dist/internal/utils/data/auth-tag.js.map +1 -1
- package/dist/internal/utils/data/get-initialisation-vector.d.ts.map +1 -1
- package/dist/internal/utils/data/get-initialisation-vector.js +2 -17
- package/dist/internal/utils/data/get-initialisation-vector.js.map +1 -1
- package/dist/internal/utils/data/split-content-encryption-key.d.ts.map +1 -1
- package/dist/internal/utils/data/split-content-encryption-key.js +12 -22
- package/dist/internal/utils/data/split-content-encryption-key.js.map +1 -1
- package/dist/internal/utils/diffie-hellman/diffie-hellman-key-wrap.d.ts.map +1 -1
- package/dist/internal/utils/diffie-hellman/diffie-hellman-key-wrap.js +5 -1
- package/dist/internal/utils/diffie-hellman/diffie-hellman-key-wrap.js.map +1 -1
- package/dist/internal/utils/diffie-hellman/diffie-hellman.d.ts.map +1 -1
- package/dist/internal/utils/diffie-hellman/diffie-hellman.js +10 -2
- package/dist/internal/utils/diffie-hellman/diffie-hellman.js.map +1 -1
- package/dist/internal/utils/diffie-hellman/shared-secret.d.ts.map +1 -1
- package/dist/internal/utils/diffie-hellman/shared-secret.js +30 -6
- package/dist/internal/utils/diffie-hellman/shared-secret.js.map +1 -1
- package/dist/internal/utils/encoded-aes.d.ts.map +1 -1
- package/dist/internal/utils/encoded-aes.js +33 -18
- package/dist/internal/utils/encoded-aes.js.map +1 -1
- package/dist/internal/utils/encrypt-content.d.ts.map +1 -1
- package/dist/internal/utils/encrypt-content.js +14 -10
- package/dist/internal/utils/encrypt-content.js.map +1 -1
- package/dist/internal/utils/encryption.d.ts.map +1 -1
- package/dist/internal/utils/encryption.js +20 -12
- package/dist/internal/utils/encryption.js.map +1 -1
- package/dist/internal/utils/get-key/get-decryption-key.d.ts.map +1 -1
- package/dist/internal/utils/get-key/get-decryption-key.js +3 -0
- package/dist/internal/utils/get-key/get-decryption-key.js.map +1 -1
- package/dist/internal/utils/get-key/get-encryption-key.d.ts.map +1 -1
- package/dist/internal/utils/get-key/get-encryption-key.js +3 -0
- package/dist/internal/utils/get-key/get-encryption-key.js.map +1 -1
- package/dist/internal/utils/key-derivation/pbkdf.d.ts.map +1 -1
- package/dist/internal/utils/key-derivation/pbkdf.js +4 -1
- package/dist/internal/utils/key-derivation/pbkdf.js.map +1 -1
- package/dist/internal/utils/key-types/get-ec-keys.d.ts.map +1 -1
- package/dist/internal/utils/key-types/get-ec-keys.js +6 -0
- package/dist/internal/utils/key-types/get-ec-keys.js.map +1 -1
- package/dist/internal/utils/key-types/get-oct-keys.d.ts.map +1 -1
- package/dist/internal/utils/key-types/get-oct-keys.js +6 -0
- package/dist/internal/utils/key-types/get-oct-keys.js.map +1 -1
- package/dist/internal/utils/key-types/get-okp-keys.d.ts.map +1 -1
- package/dist/internal/utils/key-types/get-okp-keys.js +6 -0
- package/dist/internal/utils/key-types/get-okp-keys.js.map +1 -1
- package/dist/internal/utils/key-types/get-rsa-keys.d.ts.map +1 -1
- package/dist/internal/utils/key-types/get-rsa-keys.js +30 -6
- package/dist/internal/utils/key-types/get-rsa-keys.js.map +1 -1
- package/dist/internal/utils/key-wrap/ecb-key-wrap.d.ts.map +1 -1
- package/dist/internal/utils/key-wrap/ecb-key-wrap.js +10 -2
- package/dist/internal/utils/key-wrap/ecb-key-wrap.js.map +1 -1
- package/dist/internal/utils/key-wrap/gcm-key-wrap.d.ts.map +1 -1
- package/dist/internal/utils/key-wrap/gcm-key-wrap.js +20 -4
- package/dist/internal/utils/key-wrap/gcm-key-wrap.js.map +1 -1
- package/dist/internal/utils/key-wrap/key-wrap.d.ts.map +1 -1
- package/dist/internal/utils/key-wrap/key-wrap.js +10 -2
- package/dist/internal/utils/key-wrap/key-wrap.js.map +1 -1
- package/dist/internal/utils/oct/get-oct-dir-keys.d.ts.map +1 -1
- package/dist/internal/utils/oct/get-oct-dir-keys.js +20 -4
- package/dist/internal/utils/oct/get-oct-dir-keys.js.map +1 -1
- package/dist/internal/utils/oct/get-oct-key-key-wrap.d.ts.map +1 -1
- package/dist/internal/utils/oct/get-oct-key-key-wrap.js +17 -3
- package/dist/internal/utils/oct/get-oct-key-key-wrap.js.map +1 -1
- package/dist/internal/utils/oct/get-oct-pbkdf-key-wrap-keys.d.ts.map +1 -1
- package/dist/internal/utils/oct/get-oct-pbkdf-key-wrap-keys.js +17 -3
- package/dist/internal/utils/oct/get-oct-pbkdf-key-wrap-keys.js.map +1 -1
- package/dist/internal/utils/tokenised-aes.d.ts.map +1 -1
- package/dist/internal/utils/tokenised-aes.js +19 -4
- package/dist/internal/utils/tokenised-aes.js.map +1 -1
- package/dist/internal/utils/validate-version.d.ts.map +1 -1
- package/dist/internal/utils/validate-version.js +12 -3
- package/dist/internal/utils/validate-version.js.map +1 -1
- package/dist/mocks/create-mock-aes-kit.d.ts.map +1 -1
- package/dist/mocks/create-mock-aes-kit.js +6 -0
- package/dist/mocks/create-mock-aes-kit.js.map +1 -1
- package/dist/types/types.d.ts +1 -1
- package/dist/types/types.d.ts.map +1 -1
- package/dist/utils/parse-aes.d.ts.map +1 -1
- package/dist/utils/parse-aes.js +5 -1
- package/dist/utils/parse-aes.js.map +1 -1
- package/package.json +7 -7
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"encoded-aes.js","sourceRoot":"","sources":["../../../src/internal/utils/encoded-aes.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,GAAG,EAAE,MAAM,cAAc,CAAC;
|
|
1
|
+
{"version":3,"file":"encoded-aes.js","sourceRoot":"","sources":["../../../src/internal/utils/encoded-aes.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,GAAG,EAAE,MAAM,cAAc,CAAC;AAEnC,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAGpD,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AACvD,OAAO,EACL,cAAc,EACd,UAAU,EACV,eAAe,EACf,wBAAwB,GACzB,MAAM,iBAAiB,CAAC;AAqBzB,MAAM,SAAS,GAAG,CAAC,GAAsB,EAAU,EAAE,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC,OAAO,CAAC;AAEpF,MAAM,UAAU,GAAG,CAAC,GAAsB,EAAU,EAAE,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC;AAEtF,MAAM,CAAC,MAAM,sBAAsB,GAAG,CAAC,IAAyB,EAAU,EAAE;IAC1E,MAAM,MAAM,GAAG,cAAc,CAAC;QAC5B,SAAS,EAAE,IAAI,CAAC,SAAS;QACzB,WAAW,EAAE,IAAI,CAAC,WAAW;QAC7B,UAAU,EAAE,IAAI,CAAC,UAAU;QAC3B,KAAK,EAAE,IAAI,CAAC,KAAK;QACjB,eAAe,EAAE,IAAI,CAAC,eAAe;QACrC,SAAS,EAAE,IAAI,CAAC,SAAS;QACzB,kBAAkB,EAAE,IAAI,CAAC,kBAAkB;QAC3C,mBAAmB,EAAE,IAAI,CAAC,mBAAmB;QAC7C,mBAAmB,EAAE,IAAI,CAAC,mBAAmB;KAC9C,CAAC,CAAC;IAEH,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,MAAM,CAAC,CAAC;IAC/D,MAAM,OAAO,GAAa,EAAE,CAAC;IAG7B,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IACrC,YAAY,CAAC,aAAa,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;IAC9C,OAAO,CAAC,IAAI,CAAC,YAAY,EAAE,UAAU,CAAC,CAAC;IAGvC,MAAM,SAAS,GAAG,IAAI,CAAC,mBAAmB,EAAE,MAAM,IAAI,CAAC,CAAC;IACxD,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IACrC,YAAY,CAAC,aAAa,CAAC,SAAS,CAAC,CAAC;IACtC,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;IAC3B,IAAI,IAAI,CAAC,mBAAmB,EAAE,CAAC;QAC7B,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;IACzC,CAAC;IAGD,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;IAGxC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IAG3B,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IAE3B,OAAO,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,MAAM,CAAC,CAAC;AACpD,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,qBAAqB,GAAG,CAAC,OAAe,EAA6B,EAAE;IAClF,MAAM,MAAM,GAAG,GAAG,CAAC,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAC7C,IAAI,MAAM,GAAG,CAAC,CAAC;IAGf,IAAI,MAAM,GAAG,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC;QAC/B,MAAM,IAAI,QAAQ,CAAC,2DAA2D,EAAE;YAC9E,IAAI,EAAE,wBAAwB;YAC9B,KAAK,EAAE,wBAAwB;YAC/B,OAAO,EACL,oFAAoF;SACvF,CAAC,CAAC;IACL,CAAC;IACD,MAAM,gBAAgB,GAAG,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;IACrD,MAAM,IAAI,CAAC,CAAC;IAGZ,IAAI,MAAM,GAAG,gBAAgB,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC;QAC9C,MAAM,IAAI,QAAQ,CAAC,2DAA2D,EAAE;YAC9E,IAAI,EAAE,wBAAwB;YAC9B,KAAK,EAAE,wBAAwB;YAC/B,OAAO,EACL,8EAA8E;SACjF,CAAC,CAAC;IACL,CAAC;IACD,MAAM,eAAe,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,gBAAgB,CAAC,CAAC;IAC3E,MAAM,IAAI,gBAAgB,CAAC;IAG3B,MAAM,SAAS,GAAG,GAAG,CAAC,MAAM,CAAC,eAAe,EAAE,MAAM,CAAC,CAAC;IACtD,MAAM,aAAa,GAAG,eAAe,CAAC,SAAS,CAAC,CAAC;IACjD,MAAM,MAAM,GAAG,wBAAwB,CAAC,aAAa,CAAC,CAAC;IAGvD,MAAM,GAAG,GAAG,UAAU,CAAC,SAAS,CAAC,CAAC;IAGlC,IAAI,MAAM,GAAG,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC;QAC/B,MAAM,IAAI,QAAQ,CAAC,wDAAwD,EAAE;YAC3E,IAAI,EAAE,wBAAwB;YAC9B,KAAK,EAAE,wBAAwB;YAC/B,OAAO,EACL,oGAAoG;SACvG,CAAC,CAAC;IACL,CAAC;IACD,MAAM,SAAS,GAAG,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;IAC9C,MAAM,IAAI,CAAC,CAAC;IAGZ,IAAI,mBAAuC,CAAC;IAC5C,IAAI,SAAS,GAAG,CAAC,EAAE,CAAC;QAClB,IAAI,MAAM,GAAG,SAAS,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC;YACvC,MAAM,IAAI,QAAQ,CAAC,wDAAwD,EAAE;gBAC3E,IAAI,EAAE,wBAAwB;gBAC9B,KAAK,EAAE,wBAAwB;gBAC/B,OAAO,EACL,8FAA8F;aACjG,CAAC,CAAC;QACL,CAAC;QACD,mBAAmB,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,SAAS,CAAC,CAAC;QAClE,MAAM,IAAI,SAAS,CAAC;IACtB,CAAC;IAGD,MAAM,MAAM,GAAG,SAAS,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;IAC5C,IAAI,MAAM,GAAG,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC;QACpC,MAAM,IAAI,QAAQ,CAAC,uDAAuD,EAAE;YAC1E,IAAI,EAAE,wBAAwB;YAC9B,KAAK,EAAE,wBAAwB;YAC/B,OAAO,EACL,gHAAgH;SACnH,CAAC,CAAC;IACL,CAAC;IACD,MAAM,oBAAoB,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAAC,CAAC;IACtE,MAAM,IAAI,MAAM,CAAC;IAGjB,MAAM,OAAO,GAAG,UAAU,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;IAC9C,IAAI,MAAM,GAAG,OAAO,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC;QACrC,MAAM,IAAI,QAAQ,CAAC,wDAAwD,EAAE;YAC3E,IAAI,EAAE,wBAAwB;YAC9B,KAAK,EAAE,wBAAwB;YAC/B,OAAO,EACL,6GAA6G;SAChH,CAAC,CAAC;IACL,CAAC;IACD,MAAM,OAAO,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC;IAC1D,MAAM,IAAI,OAAO,CAAC;IAGlB,MAAM,OAAO,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;IAExC,OAAO;QACL,GAAG;QACH,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,OAAO;QACP,OAAO;QACP,WAAW,EAAE,MAAM,CAAC,WAAW;QAC/B,UAAU,EAAE,MAAM,CAAC,UAAU;QAC7B,oBAAoB;QACpB,KAAK,EAAE,MAAM,CAAC,KAAK;QACnB,eAAe,EAAE,MAAM,CAAC,eAAe;QACvC,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,kBAAkB,EAAE,MAAM,CAAC,kBAAkB;QAC7C,mBAAmB,EAAE,MAAM,CAAC,mBAAmB;QAC/C,mBAAmB;QACnB,mBAAmB,EAAE,MAAM,CAAC,mBAAmB;QAC/C,OAAO,EAAE,MAAM,CAAC,OAAO;KACxB,CAAC;AACJ,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"encrypt-content.d.ts","sourceRoot":"","sources":["../../../src/internal/utils/encrypt-content.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"encrypt-content.d.ts","sourceRoot":"","sources":["../../../src/internal/utils/encrypt-content.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EACV,qBAAqB,EACrB,oBAAoB,EACrB,MAAM,iCAAiC,CAAC;AAOzC,eAAO,MAAM,iBAAiB,GAC5B,SAAS,qBAAqB,KAC7B,oBA8CF,CAAC"}
|
|
@@ -1,24 +1,28 @@
|
|
|
1
|
-
import { createCipheriv } from "crypto";
|
|
2
|
-
import {
|
|
1
|
+
import { createCipheriv, } from "crypto";
|
|
2
|
+
import { getAesDescriptor } from "./aes-descriptor.js";
|
|
3
3
|
import { calculateContentType, contentToBuffer } from "./content.js";
|
|
4
4
|
import { createAuthTag } from "./data/auth-tag.js";
|
|
5
5
|
import { getInitialisationVector } from "./data/get-initialisation-vector.js";
|
|
6
6
|
import { splitContentEncryptionKey } from "./data/split-content-encryption-key.js";
|
|
7
7
|
export const encryptAesContent = (options) => {
|
|
8
8
|
const { aad, contentEncryptionKey, data, encryption } = options;
|
|
9
|
+
const descriptor = getAesDescriptor(encryption);
|
|
9
10
|
const { encryptionKey, hashKey } = splitContentEncryptionKey(encryption, contentEncryptionKey);
|
|
10
|
-
const aesEncryption = calculateAesEncryption(encryption);
|
|
11
11
|
const initialisationVector = options.initialisationVector ?? getInitialisationVector(encryption);
|
|
12
|
-
const
|
|
13
|
-
|
|
14
|
-
? { authTagLength: 16 }
|
|
12
|
+
const cipherOptions = descriptor.aead
|
|
13
|
+
? { authTagLength: descriptor.tagBytes }
|
|
15
14
|
: undefined;
|
|
16
|
-
const cipher = createCipheriv(
|
|
17
|
-
if (isGcm && aad) {
|
|
18
|
-
cipher.setAAD(aad);
|
|
19
|
-
}
|
|
15
|
+
const cipher = createCipheriv(descriptor.nodeCipher, encryptionKey, initialisationVector, cipherOptions);
|
|
20
16
|
const contentType = calculateContentType(data);
|
|
21
17
|
const buffer = contentToBuffer(data, contentType);
|
|
18
|
+
if (descriptor.aead && aad) {
|
|
19
|
+
if (descriptor.mode === "ccm") {
|
|
20
|
+
cipher.setAAD(aad, { plaintextLength: buffer.length });
|
|
21
|
+
}
|
|
22
|
+
else {
|
|
23
|
+
cipher.setAAD(aad);
|
|
24
|
+
}
|
|
25
|
+
}
|
|
22
26
|
const content = Buffer.concat([cipher.update(buffer), cipher.final()]);
|
|
23
27
|
const authTag = createAuthTag({
|
|
24
28
|
aad,
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"encrypt-content.js","sourceRoot":"","sources":["../../../src/internal/utils/encrypt-content.ts"],"names":[],"mappings":"AAAA,OAAO,
|
|
1
|
+
{"version":3,"file":"encrypt-content.js","sourceRoot":"","sources":["../../../src/internal/utils/encrypt-content.ts"],"names":[],"mappings":"AAAA,OAAO,EAIL,cAAc,GACf,MAAM,QAAQ,CAAC;AAKhB,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AACvD,OAAO,EAAE,oBAAoB,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC;AACrE,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AACnD,OAAO,EAAE,uBAAuB,EAAE,MAAM,qCAAqC,CAAC;AAC9E,OAAO,EAAE,yBAAyB,EAAE,MAAM,wCAAwC,CAAC;AAEnF,MAAM,CAAC,MAAM,iBAAiB,GAAG,CAC/B,OAA8B,EACR,EAAE;IACxB,MAAM,EAAE,GAAG,EAAE,oBAAoB,EAAE,IAAI,EAAE,UAAU,EAAE,GAAG,OAAO,CAAC;IAEhE,MAAM,UAAU,GAAG,gBAAgB,CAAC,UAAU,CAAC,CAAC;IAChD,MAAM,EAAE,aAAa,EAAE,OAAO,EAAE,GAAG,yBAAyB,CAC1D,UAAU,EACV,oBAAoB,CACrB,CAAC;IACF,MAAM,oBAAoB,GACxB,OAAO,CAAC,oBAAoB,IAAI,uBAAuB,CAAC,UAAU,CAAC,CAAC;IAEtE,MAAM,aAAa,GAAiC,UAAU,CAAC,IAAI;QACjE,CAAC,CAAC,EAAE,aAAa,EAAE,UAAU,CAAC,QAAQ,EAAE;QACxC,CAAC,CAAC,SAAS,CAAC;IACd,MAAM,MAAM,GAAG,cAAc,CAC3B,UAAU,CAAC,UAAU,EACrB,aAAa,EACb,oBAAoB,EACpB,aAAiC,CAClC,CAAC;IAEF,MAAM,WAAW,GAAG,oBAAoB,CAAC,IAAI,CAAC,CAAC;IAC/C,MAAM,MAAM,GAAG,eAAe,CAAC,IAAI,EAAE,WAAW,CAAC,CAAC;IAIlD,IAAI,UAAU,CAAC,IAAI,IAAI,GAAG,EAAE,CAAC;QAC3B,IAAI,UAAU,CAAC,IAAI,KAAK,KAAK,EAAE,CAAC;YAC7B,MAAoB,CAAC,MAAM,CAAC,GAAG,EAAE,EAAE,eAAe,EAAE,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;QACxE,CAAC;aAAM,CAAC;YACL,MAAoB,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QACpC,CAAC;IACH,CAAC;IAED,MAAM,OAAO,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;IAEvE,MAAM,OAAO,GAAG,aAAa,CAAC;QAC5B,GAAG;QACH,MAAM;QACN,OAAO;QACP,OAAO;QACP,UAAU;QACV,oBAAoB;KACrB,CAAC,CAAC;IAEH,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,WAAW,EAAE,oBAAoB,EAAE,CAAC;AACjE,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"encryption.d.ts","sourceRoot":"","sources":["../../../src/internal/utils/encryption.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"encryption.d.ts","sourceRoot":"","sources":["../../../src/internal/utils/encryption.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,oCAAoC,CAAC;AAC9E,OAAO,KAAK,EACV,2BAA2B,EAC3B,2BAA2B,EAC5B,MAAM,sBAAsB,CAAC;AAS9B,eAAO,MAAM,UAAU,GAAI,SAAS,2BAA2B,KAAG,mBA4BjE,CAAC;AAEF,eAAO,MAAM,UAAU,GAAI,CAAC,SAAS,UAAU,GAAG,MAAM,EACtD,SAAS,2BAA2B,KACnC,CA6EF,CAAC"}
|
|
@@ -1,7 +1,7 @@
|
|
|
1
|
-
import { createDecipheriv } from "crypto";
|
|
1
|
+
import { createDecipheriv, } from "crypto";
|
|
2
2
|
import { LATEST_AES_VERSION } from "../constants/version.js";
|
|
3
3
|
import { AesError } from "../../errors/AesError.js";
|
|
4
|
-
import {
|
|
4
|
+
import { getAesDescriptor } from "./aes-descriptor.js";
|
|
5
5
|
import { parseContent } from "./content.js";
|
|
6
6
|
import { assertAuthTag } from "./data/auth-tag.js";
|
|
7
7
|
import { splitContentEncryptionKey } from "./data/split-content-encryption-key.js";
|
|
@@ -47,17 +47,17 @@ export const decryptAes = (options) => {
|
|
|
47
47
|
publicEncryptionTag,
|
|
48
48
|
});
|
|
49
49
|
const { encryptionKey, hashKey } = splitContentEncryptionKey(encryption, contentEncryptionKey);
|
|
50
|
-
const
|
|
51
|
-
const
|
|
52
|
-
|
|
53
|
-
? { authTagLength: 16 }
|
|
50
|
+
const descriptor = getAesDescriptor(encryption);
|
|
51
|
+
const decipherOptions = descriptor.aead
|
|
52
|
+
? { authTagLength: descriptor.tagBytes }
|
|
54
53
|
: undefined;
|
|
55
|
-
const decipher = createDecipheriv(
|
|
56
|
-
if (
|
|
57
|
-
throw new AesError("Invalid
|
|
58
|
-
|
|
59
|
-
|
|
60
|
-
|
|
54
|
+
const decipher = createDecipheriv(descriptor.nodeCipher, encryptionKey, initialisationVector, decipherOptions);
|
|
55
|
+
if (descriptor.aead && authTag && authTag.length !== descriptor.tagBytes) {
|
|
56
|
+
throw new AesError("Invalid auth tag length", {
|
|
57
|
+
code: "invalid_auth_tag_length",
|
|
58
|
+
title: "Invalid Auth Tag Length",
|
|
59
|
+
details: `AEAD decryption for ${encryption} requires a ${descriptor.tagBytes}-byte authentication tag.`,
|
|
60
|
+
});
|
|
61
61
|
}
|
|
62
62
|
assertAuthTag({
|
|
63
63
|
aad,
|
|
@@ -68,6 +68,14 @@ export const decryptAes = (options) => {
|
|
|
68
68
|
encryption,
|
|
69
69
|
initialisationVector,
|
|
70
70
|
});
|
|
71
|
+
if (descriptor.aead && aad) {
|
|
72
|
+
if (descriptor.mode === "ccm") {
|
|
73
|
+
decipher.setAAD(aad, { plaintextLength: content.length });
|
|
74
|
+
}
|
|
75
|
+
else {
|
|
76
|
+
decipher.setAAD(aad);
|
|
77
|
+
}
|
|
78
|
+
}
|
|
71
79
|
const final = Buffer.concat([decipher.update(content), decipher.final()]);
|
|
72
80
|
return parseContent(final, contentType);
|
|
73
81
|
};
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"encryption.js","sourceRoot":"","sources":["../../../src/internal/utils/encryption.ts"],"names":[],"mappings":"AAAA,OAAO,
|
|
1
|
+
{"version":3,"file":"encryption.js","sourceRoot":"","sources":["../../../src/internal/utils/encryption.ts"],"names":[],"mappings":"AAAA,OAAO,EAIL,gBAAgB,GACjB,MAAM,QAAQ,CAAC;AAChB,OAAO,EAAE,kBAAkB,EAAE,MAAM,yBAAyB,CAAC;AAC7D,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AACvD,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC5C,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AACnD,OAAO,EAAE,yBAAyB,EAAE,MAAM,wCAAwC,CAAC;AACnF,OAAO,EAAE,gBAAgB,EAAE,MAAM,iCAAiC,CAAC;AACnE,OAAO,EAAE,gBAAgB,EAAE,MAAM,iCAAiC,CAAC;AACnE,OAAO,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAC;AAEzD,MAAM,CAAC,MAAM,UAAU,GAAG,CAAC,OAAoC,EAAuB,EAAE;IACtF,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,UAAU,GAAG,SAAS,EAAE,OAAO,EAAE,GAAG,OAAO,CAAC;IAE/D,MAAM,SAAS,GAAG,gBAAgB,CAAC,EAAE,UAAU,EAAE,OAAO,EAAE,CAAC,CAAC;IAE5D,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,WAAW,EAAE,oBAAoB,EAAE,GAAG,iBAAiB,CAAC;QAChF,GAAG;QACH,oBAAoB,EAAE,SAAS,CAAC,oBAAoB;QACpD,IAAI;QACJ,UAAU;KACX,CAAC,CAAC;IAEH,OAAO;QACL,SAAS,EAAE,OAAO,CAAC,SAAS;QAC5B,OAAO;QACP,OAAO;QACP,WAAW;QACX,UAAU;QACV,oBAAoB;QACpB,KAAK,EAAE,OAAO,CAAC,EAAE;QACjB,eAAe,EAAE,SAAS,CAAC,eAAe;QAC1C,SAAS,EAAE,SAAS,CAAC,SAAS;QAC9B,kBAAkB,EAAE,SAAS,CAAC,kBAAkB;QAChD,mBAAmB,EAAE,SAAS,CAAC,mBAAmB;QAClD,mBAAmB,EAAE,SAAS,CAAC,mBAAmB;QAClD,mBAAmB,EAAE,SAAS,CAAC,mBAAmB;QAClD,OAAO,EAAE,kBAAkB;KAC5B,CAAC;AACJ,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,UAAU,GAAG,CACxB,OAAoC,EACjC,EAAE;IACL,MAAM,EACJ,GAAG,EACH,OAAO,EACP,OAAO,EACP,WAAW,EACX,UAAU,EACV,oBAAoB,EACpB,OAAO,EACP,eAAe,EACf,SAAS,EACT,kBAAkB,EAClB,mBAAmB,EACnB,mBAAmB,EACnB,mBAAmB,GACpB,GAAG,OAAO,CAAC;IAEZ,MAAM,EAAE,oBAAoB,EAAE,GAAG,gBAAgB,CAAC;QAChD,UAAU;QACV,OAAO;QACP,eAAe;QACf,SAAS;QACT,kBAAkB;QAClB,mBAAmB;QACnB,mBAAmB;QACnB,mBAAmB;KACpB,CAAC,CAAC;IAEH,MAAM,EAAE,aAAa,EAAE,OAAO,EAAE,GAAG,yBAAyB,CAC1D,UAAU,EACV,oBAAoB,CACrB,CAAC;IAEF,MAAM,UAAU,GAAG,gBAAgB,CAAC,UAAU,CAAC,CAAC;IAChD,MAAM,eAAe,GAAiC,UAAU,CAAC,IAAI;QACnE,CAAC,CAAC,EAAE,aAAa,EAAE,UAAU,CAAC,QAAQ,EAAE;QACxC,CAAC,CAAC,SAAS,CAAC;IACd,MAAM,QAAQ,GAAG,gBAAgB,CAC/B,UAAU,CAAC,UAAU,EACrB,aAAa,EACb,oBAAoB,EACpB,eAAmC,CACpC,CAAC;IAEF,IAAI,UAAU,CAAC,IAAI,IAAI,OAAO,IAAI,OAAO,CAAC,MAAM,KAAK,UAAU,CAAC,QAAQ,EAAE,CAAC;QACzE,MAAM,IAAI,QAAQ,CAAC,yBAAyB,EAAE;YAC5C,IAAI,EAAE,yBAAyB;YAC/B,KAAK,EAAE,yBAAyB;YAChC,OAAO,EAAE,uBAAuB,UAAU,eAAe,UAAU,CAAC,QAAQ,2BAA2B;SACxG,CAAC,CAAC;IACL,CAAC;IAID,aAAa,CAAC;QACZ,GAAG;QACH,OAAO;QACP,OAAO;QACP,OAAO;QACP,QAAQ;QACR,UAAU;QACV,oBAAoB;KACrB,CAAC,CAAC;IAIH,IAAI,UAAU,CAAC,IAAI,IAAI,GAAG,EAAE,CAAC;QAC3B,IAAI,UAAU,CAAC,IAAI,KAAK,KAAK,EAAE,CAAC;YAC7B,QAAwB,CAAC,MAAM,CAAC,GAAG,EAAE,EAAE,eAAe,EAAE,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;QAC7E,CAAC;aAAM,CAAC;YACL,QAAwB,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QACxC,CAAC;IACH,CAAC;IAED,MAAM,KAAK,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,QAAQ,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;IAE1E,OAAO,YAAY,CAAI,KAAK,EAAE,WAAW,CAAC,CAAC;AAC7C,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-decryption-key.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/get-key/get-decryption-key.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,uCAAuC,CAAC;AAM/C,eAAO,MAAM,gBAAgB,GAAI,SAAS,iBAAiB,KAAG,
|
|
1
|
+
{"version":3,"file":"get-decryption-key.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/get-key/get-decryption-key.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,uCAAuC,CAAC;AAM/C,eAAO,MAAM,gBAAgB,GAAI,SAAS,iBAAiB,KAAG,gBAuB7D,CAAC"}
|
|
@@ -15,6 +15,9 @@ export const getDecryptionKey = (options) => {
|
|
|
15
15
|
return getRsaDecryptionKey(options);
|
|
16
16
|
default:
|
|
17
17
|
throw new AesError("Unexpected Kryptos", {
|
|
18
|
+
code: "unexpected_kryptos",
|
|
19
|
+
title: "Unexpected Kryptos",
|
|
20
|
+
details: "The Kryptos key type is not one of the supported types (EC, oct, OKP, RSA) for decryption key derivation.",
|
|
18
21
|
debug: { kryptos: options.kryptos.toJSON() },
|
|
19
22
|
});
|
|
20
23
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-decryption-key.js","sourceRoot":"","sources":["../../../../src/internal/utils/get-key/get-decryption-key.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAKpD,OAAO,EAAE,kBAAkB,EAAE,MAAM,6BAA6B,CAAC;AACjE,OAAO,EAAE,mBAAmB,EAAE,MAAM,8BAA8B,CAAC;AACnE,OAAO,EAAE,mBAAmB,EAAE,MAAM,8BAA8B,CAAC;AACnE,OAAO,EAAE,mBAAmB,EAAE,MAAM,8BAA8B,CAAC;AAEnE,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,OAA0B,EAAoB,EAAE;IAC/E,QAAQ,OAAO,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;QAC7B,KAAK,IAAI;YACP,OAAO,kBAAkB,CAAC,OAAO,CAAC,CAAC;QAErC,KAAK,KAAK;YACR,OAAO,mBAAmB,CAAC,OAAO,CAAC,CAAC;QAEtC,KAAK,KAAK;YACR,OAAO,mBAAmB,CAAC,OAAO,CAAC,CAAC;QAEtC,KAAK,KAAK;YACR,OAAO,mBAAmB,CAAC,OAAO,CAAC,CAAC;QAEtC;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC"}
|
|
1
|
+
{"version":3,"file":"get-decryption-key.js","sourceRoot":"","sources":["../../../../src/internal/utils/get-key/get-decryption-key.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAKpD,OAAO,EAAE,kBAAkB,EAAE,MAAM,6BAA6B,CAAC;AACjE,OAAO,EAAE,mBAAmB,EAAE,MAAM,8BAA8B,CAAC;AACnE,OAAO,EAAE,mBAAmB,EAAE,MAAM,8BAA8B,CAAC;AACnE,OAAO,EAAE,mBAAmB,EAAE,MAAM,8BAA8B,CAAC;AAEnE,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,OAA0B,EAAoB,EAAE;IAC/E,QAAQ,OAAO,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;QAC7B,KAAK,IAAI;YACP,OAAO,kBAAkB,CAAC,OAAO,CAAC,CAAC;QAErC,KAAK,KAAK;YACR,OAAO,mBAAmB,CAAC,OAAO,CAAC,CAAC;QAEtC,KAAK,KAAK;YACR,OAAO,mBAAmB,CAAC,OAAO,CAAC,CAAC;QAEtC,KAAK,KAAK;YACR,OAAO,mBAAmB,CAAC,OAAO,CAAC,CAAC;QAEtC;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,IAAI,EAAE,oBAAoB;gBAC1B,KAAK,EAAE,oBAAoB;gBAC3B,OAAO,EACL,2GAA2G;gBAC7G,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-encryption-key.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/get-key/get-encryption-key.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EAChB,MAAM,uCAAuC,CAAC;AAM/C,eAAO,MAAM,gBAAgB,GAAI,SAAS,gBAAgB,KAAG,
|
|
1
|
+
{"version":3,"file":"get-encryption-key.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/get-key/get-encryption-key.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EAChB,MAAM,uCAAuC,CAAC;AAM/C,eAAO,MAAM,gBAAgB,GAAI,SAAS,gBAAgB,KAAG,eAuB5D,CAAC"}
|
|
@@ -15,6 +15,9 @@ export const getEncryptionKey = (options) => {
|
|
|
15
15
|
return getRsaEncryptionKey(options);
|
|
16
16
|
default:
|
|
17
17
|
throw new AesError("Unexpected Kryptos", {
|
|
18
|
+
code: "unexpected_kryptos",
|
|
19
|
+
title: "Unexpected Kryptos",
|
|
20
|
+
details: "The Kryptos key type is not one of the supported types (EC, oct, OKP, RSA) for encryption key derivation.",
|
|
18
21
|
debug: { kryptos: options.kryptos.toJSON() },
|
|
19
22
|
});
|
|
20
23
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-encryption-key.js","sourceRoot":"","sources":["../../../../src/internal/utils/get-key/get-encryption-key.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAKpD,OAAO,EAAE,kBAAkB,EAAE,MAAM,6BAA6B,CAAC;AACjE,OAAO,EAAE,mBAAmB,EAAE,MAAM,8BAA8B,CAAC;AACnE,OAAO,EAAE,mBAAmB,EAAE,MAAM,8BAA8B,CAAC;AACnE,OAAO,EAAE,mBAAmB,EAAE,MAAM,8BAA8B,CAAC;AAEnE,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,OAAyB,EAAmB,EAAE;IAC7E,QAAQ,OAAO,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;QAC7B,KAAK,IAAI;YACP,OAAO,kBAAkB,CAAC,OAAO,CAAC,CAAC;QAErC,KAAK,KAAK;YACR,OAAO,mBAAmB,CAAC,OAAO,CAAC,CAAC;QAEtC,KAAK,KAAK;YACR,OAAO,mBAAmB,CAAC,OAAO,CAAC,CAAC;QAEtC,KAAK,KAAK;YACR,OAAO,mBAAmB,CAAC,OAAO,CAAC,CAAC;QAEtC;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC"}
|
|
1
|
+
{"version":3,"file":"get-encryption-key.js","sourceRoot":"","sources":["../../../../src/internal/utils/get-key/get-encryption-key.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAKpD,OAAO,EAAE,kBAAkB,EAAE,MAAM,6BAA6B,CAAC;AACjE,OAAO,EAAE,mBAAmB,EAAE,MAAM,8BAA8B,CAAC;AACnE,OAAO,EAAE,mBAAmB,EAAE,MAAM,8BAA8B,CAAC;AACnE,OAAO,EAAE,mBAAmB,EAAE,MAAM,8BAA8B,CAAC;AAEnE,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,OAAyB,EAAmB,EAAE;IAC7E,QAAQ,OAAO,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;QAC7B,KAAK,IAAI;YACP,OAAO,kBAAkB,CAAC,OAAO,CAAC,CAAC;QAErC,KAAK,KAAK;YACR,OAAO,mBAAmB,CAAC,OAAO,CAAC,CAAC;QAEtC,KAAK,KAAK;YACR,OAAO,mBAAmB,CAAC,OAAO,CAAC,CAAC;QAEtC,KAAK,KAAK;YACR,OAAO,mBAAmB,CAAC,OAAO,CAAC,CAAC;QAEtC;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,IAAI,EAAE,oBAAoB;gBAC1B,KAAK,EAAE,oBAAoB;gBAC3B,OAAO,EACL,2GAA2G;gBAC7G,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"pbkdf.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-derivation/pbkdf.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAIjE,KAAK,OAAO,GAAG;IACb,SAAS,EAAE,YAAY,CAAC;IACxB,aAAa,EAAE,MAAM,CAAC;IACtB,SAAS,EAAE,YAAY,CAAC;IACxB,gBAAgB,EAAE,MAAM,CAAC;IACzB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,CAAC;AAEF,KAAK,MAAM,GAAG;IACZ,UAAU,EAAE,MAAM,CAAC;IACnB,eAAe,EAAE,MAAM,CAAC;IACxB,SAAS,EAAE,MAAM,CAAC;CACnB,CAAC;AAKF,eAAO,MAAM,KAAK,GAAI,SAAS,OAAO,KAAG,
|
|
1
|
+
{"version":3,"file":"pbkdf.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-derivation/pbkdf.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAIjE,KAAK,OAAO,GAAG;IACb,SAAS,EAAE,YAAY,CAAC;IACxB,aAAa,EAAE,MAAM,CAAC;IACtB,SAAS,EAAE,YAAY,CAAC;IACxB,gBAAgB,EAAE,MAAM,CAAC;IACzB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,CAAC;AAEF,KAAK,MAAM,GAAG;IACZ,UAAU,EAAE,MAAM,CAAC;IACnB,eAAe,EAAE,MAAM,CAAC;IACxB,SAAS,EAAE,MAAM,CAAC;CACnB,CAAC;AAKF,eAAO,MAAM,KAAK,GAAI,SAAS,OAAO,KAAG,MA6BxC,CAAC"}
|
|
@@ -6,7 +6,10 @@ export const pbkdf = (options) => {
|
|
|
6
6
|
const pbkdfIterations = options.pbkdfIterations ?? randomIterations();
|
|
7
7
|
if (pbkdfIterations < 1000) {
|
|
8
8
|
throw new AesError("PBKDF2 iteration count must be at least 1000", {
|
|
9
|
-
|
|
9
|
+
code: "insufficient_pbkdf2_iterations",
|
|
10
|
+
title: "Insufficient PBKDF2 Iterations",
|
|
11
|
+
details: "The PBKDF2 iteration count is below the minimum of 1000 required for safe key derivation.",
|
|
12
|
+
data: { pbkdfIterations },
|
|
10
13
|
});
|
|
11
14
|
}
|
|
12
15
|
const rfcSalt = Buffer.concat([
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"pbkdf.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-derivation/pbkdf.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AAC5D,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAkBpD,MAAM,gBAAgB,GAAG,GAAW,EAAE,CAAC,SAAS,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;AAEhE,MAAM,CAAC,MAAM,KAAK,GAAG,CAAC,OAAgB,EAAU,EAAE;IAChD,MAAM,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IACvD,MAAM,eAAe,GAAG,OAAO,CAAC,eAAe,IAAI,gBAAgB,EAAE,CAAC;IAEtE,IAAI,eAAe,GAAG,IAAI,EAAE,CAAC;QAC3B,MAAM,IAAI,QAAQ,CAAC,8CAA8C,EAAE;YACjE,KAAK,EAAE,EAAE,eAAe,EAAE;
|
|
1
|
+
{"version":3,"file":"pbkdf.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-derivation/pbkdf.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AAC5D,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAkBpD,MAAM,gBAAgB,GAAG,GAAW,EAAE,CAAC,SAAS,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;AAEhE,MAAM,CAAC,MAAM,KAAK,GAAG,CAAC,OAAgB,EAAU,EAAE;IAChD,MAAM,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IACvD,MAAM,eAAe,GAAG,OAAO,CAAC,eAAe,IAAI,gBAAgB,EAAE,CAAC;IAEtE,IAAI,eAAe,GAAG,IAAI,EAAE,CAAC;QAC3B,MAAM,IAAI,QAAQ,CAAC,8CAA8C,EAAE;YACjE,IAAI,EAAE,gCAAgC;YACtC,KAAK,EAAE,gCAAgC;YACvC,OAAO,EACL,2FAA2F;YAC7F,IAAI,EAAE,EAAE,eAAe,EAAE;SAC1B,CAAC,CAAC;IACL,CAAC;IAED,MAAM,OAAO,GAAG,MAAM,CAAC,MAAM,CAAC;QAC5B,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,gBAAgB,EAAE,MAAM,CAAC;QAC7C,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC;QACnB,SAAS;KACV,CAAC,CAAC;IAEH,MAAM,UAAU,GAAG,UAAU,CAC3B,OAAO,CAAC,aAAa,EACrB,OAAO,EACP,eAAe,EACf,OAAO,CAAC,SAAS,EACjB,OAAO,CAAC,SAAS,CAClB,CAAC;IAEF,OAAO,EAAE,UAAU,EAAE,eAAe,EAAE,SAAS,EAAE,CAAC;AACpD,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-ec-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-ec-keys.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,uCAAuC,CAAC;AAU/C,eAAO,MAAM,kBAAkB,GAAI,SAAS,gBAAgB,KAAG,
|
|
1
|
+
{"version":3,"file":"get-ec-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-ec-keys.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,uCAAuC,CAAC;AAU/C,eAAO,MAAM,kBAAkB,GAAI,SAAS,gBAAgB,KAAG,eAsB9D,CAAC;AAEF,eAAO,MAAM,kBAAkB,GAAI,SAAS,iBAAiB,KAAG,gBAsB/D,CAAC"}
|
|
@@ -14,6 +14,9 @@ export const getEcEncryptionKey = (options) => {
|
|
|
14
14
|
return getDiffieHellmanKeyWrapEncryptionKey(options);
|
|
15
15
|
default:
|
|
16
16
|
throw new AesError("Unexpected Kryptos", {
|
|
17
|
+
code: "unexpected_kryptos",
|
|
18
|
+
title: "Unexpected Kryptos",
|
|
19
|
+
details: "The EC Kryptos algorithm is not a supported ECDH-ES encryption variant.",
|
|
17
20
|
debug: { kryptos: options.kryptos.toJSON() },
|
|
18
21
|
});
|
|
19
22
|
}
|
|
@@ -31,6 +34,9 @@ export const getEcDecryptionKey = (options) => {
|
|
|
31
34
|
return getDiffieHellmanKeyWrapDecryptionKey(options);
|
|
32
35
|
default:
|
|
33
36
|
throw new AesError("Unexpected Kryptos", {
|
|
37
|
+
code: "unexpected_kryptos",
|
|
38
|
+
title: "Unexpected Kryptos",
|
|
39
|
+
details: "The EC Kryptos algorithm is not a supported ECDH-ES decryption variant.",
|
|
34
40
|
debug: { kryptos: options.kryptos.toJSON() },
|
|
35
41
|
});
|
|
36
42
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-ec-keys.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-ec-keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EACL,6BAA6B,EAC7B,6BAA6B,GAC9B,MAAM,qCAAqC,CAAC;AAC7C,OAAO,EACL,oCAAoC,EACpC,oCAAoC,GACrC,MAAM,8CAA8C,CAAC;AAEtD,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,OAAyB,EAAmB,EAAE;IAC/E,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,6BAA6B,CAAC,OAAO,CAAC,CAAC;QAEhD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,oCAAoC,CAAC,OAAO,CAAC,CAAC;QAEvD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,OAA0B,EAAoB,EAAE;IACjF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,6BAA6B,CAAC,OAAO,CAAC,CAAC;QAEhD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,oCAAoC,CAAC,OAAO,CAAC,CAAC;QAEvD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC"}
|
|
1
|
+
{"version":3,"file":"get-ec-keys.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-ec-keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EACL,6BAA6B,EAC7B,6BAA6B,GAC9B,MAAM,qCAAqC,CAAC;AAC7C,OAAO,EACL,oCAAoC,EACpC,oCAAoC,GACrC,MAAM,8CAA8C,CAAC;AAEtD,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,OAAyB,EAAmB,EAAE;IAC/E,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,6BAA6B,CAAC,OAAO,CAAC,CAAC;QAEhD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,oCAAoC,CAAC,OAAO,CAAC,CAAC;QAEvD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,IAAI,EAAE,oBAAoB;gBAC1B,KAAK,EAAE,oBAAoB;gBAC3B,OAAO,EACL,yEAAyE;gBAC3E,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,OAA0B,EAAoB,EAAE;IACjF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,6BAA6B,CAAC,OAAO,CAAC,CAAC;QAEhD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,oCAAoC,CAAC,OAAO,CAAC,CAAC;QAEvD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,IAAI,EAAE,oBAAoB;gBAC1B,KAAK,EAAE,oBAAoB;gBAC3B,OAAO,EACL,yEAAyE;gBAC3E,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-oct-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-oct-keys.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,uCAAuC,CAAC;AAc/C,eAAO,MAAM,mBAAmB,GAAI,SAAS,gBAAgB,KAAG,
|
|
1
|
+
{"version":3,"file":"get-oct-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-oct-keys.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,uCAAuC,CAAC;AAc/C,eAAO,MAAM,mBAAmB,GAAI,SAAS,gBAAgB,KAAG,eA2B/D,CAAC;AAEF,eAAO,MAAM,mBAAmB,GAAI,SAAS,iBAAiB,KAAG,gBA2BhE,CAAC"}
|
|
@@ -19,6 +19,9 @@ export const getOctEncryptionKey = (options) => {
|
|
|
19
19
|
return getOctPbkdfKeyWrapEncryptionKey(options);
|
|
20
20
|
default:
|
|
21
21
|
throw new AesError("Unexpected Kryptos", {
|
|
22
|
+
code: "unexpected_kryptos",
|
|
23
|
+
title: "Unexpected Kryptos",
|
|
24
|
+
details: "The oct Kryptos algorithm is not a supported dir, AES key-wrap, or PBES2 encryption variant.",
|
|
22
25
|
debug: { kryptos: options.kryptos.toJSON() },
|
|
23
26
|
});
|
|
24
27
|
}
|
|
@@ -40,6 +43,9 @@ export const getOctDecryptionKey = (options) => {
|
|
|
40
43
|
return getOctPbkdfKeyWrapDecryptionKey(options);
|
|
41
44
|
default:
|
|
42
45
|
throw new AesError("Unexpected Kryptos", {
|
|
46
|
+
code: "unexpected_kryptos",
|
|
47
|
+
title: "Unexpected Kryptos",
|
|
48
|
+
details: "The oct Kryptos algorithm is not a supported dir, AES key-wrap, or PBES2 decryption variant.",
|
|
43
49
|
debug: { kryptos: options.kryptos.toJSON() },
|
|
44
50
|
});
|
|
45
51
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-oct-keys.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-oct-keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EACL,sBAAsB,EACtB,sBAAsB,GACvB,MAAM,4BAA4B,CAAC;AACpC,OAAO,EACL,0BAA0B,EAC1B,0BAA0B,GAC3B,MAAM,gCAAgC,CAAC;AACxC,OAAO,EACL,+BAA+B,EAC/B,+BAA+B,GAChC,MAAM,uCAAuC,CAAC;AAE/C,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,OAAyB,EAAmB,EAAE;IAChF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,KAAK;YACR,OAAO,sBAAsB,CAAC,OAAO,CAAC,CAAC;QAEzC,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW;YACd,OAAO,0BAA0B,CAAC,OAAO,CAAC,CAAC;QAE7C,KAAK,oBAAoB,CAAC;QAC1B,KAAK,oBAAoB,CAAC;QAC1B,KAAK,oBAAoB;YACvB,OAAO,+BAA+B,CAAC,OAAO,CAAC,CAAC;QAElD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,OAA0B,EAAoB,EAAE;IAClF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,KAAK;YACR,OAAO,sBAAsB,CAAC,OAAO,CAAC,CAAC;QAEzC,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW;YACd,OAAO,0BAA0B,CAAC,OAAO,CAAC,CAAC;QAE7C,KAAK,oBAAoB,CAAC;QAC1B,KAAK,oBAAoB,CAAC;QAC1B,KAAK,oBAAoB;YACvB,OAAO,+BAA+B,CAAC,OAAO,CAAC,CAAC;QAElD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC"}
|
|
1
|
+
{"version":3,"file":"get-oct-keys.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-oct-keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EACL,sBAAsB,EACtB,sBAAsB,GACvB,MAAM,4BAA4B,CAAC;AACpC,OAAO,EACL,0BAA0B,EAC1B,0BAA0B,GAC3B,MAAM,gCAAgC,CAAC;AACxC,OAAO,EACL,+BAA+B,EAC/B,+BAA+B,GAChC,MAAM,uCAAuC,CAAC;AAE/C,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,OAAyB,EAAmB,EAAE;IAChF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,KAAK;YACR,OAAO,sBAAsB,CAAC,OAAO,CAAC,CAAC;QAEzC,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW;YACd,OAAO,0BAA0B,CAAC,OAAO,CAAC,CAAC;QAE7C,KAAK,oBAAoB,CAAC;QAC1B,KAAK,oBAAoB,CAAC;QAC1B,KAAK,oBAAoB;YACvB,OAAO,+BAA+B,CAAC,OAAO,CAAC,CAAC;QAElD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,IAAI,EAAE,oBAAoB;gBAC1B,KAAK,EAAE,oBAAoB;gBAC3B,OAAO,EACL,8FAA8F;gBAChG,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,OAA0B,EAAoB,EAAE;IAClF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,KAAK;YACR,OAAO,sBAAsB,CAAC,OAAO,CAAC,CAAC;QAEzC,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW;YACd,OAAO,0BAA0B,CAAC,OAAO,CAAC,CAAC;QAE7C,KAAK,oBAAoB,CAAC;QAC1B,KAAK,oBAAoB,CAAC;QAC1B,KAAK,oBAAoB;YACvB,OAAO,+BAA+B,CAAC,OAAO,CAAC,CAAC;QAElD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,IAAI,EAAE,oBAAoB;gBAC1B,KAAK,EAAE,oBAAoB;gBAC3B,OAAO,EACL,8FAA8F;gBAChG,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-okp-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-okp-keys.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,uCAAuC,CAAC;AAU/C,eAAO,MAAM,mBAAmB,GAAI,SAAS,gBAAgB,KAAG,
|
|
1
|
+
{"version":3,"file":"get-okp-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-okp-keys.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,uCAAuC,CAAC;AAU/C,eAAO,MAAM,mBAAmB,GAAI,SAAS,gBAAgB,KAAG,eAsB/D,CAAC;AAEF,eAAO,MAAM,mBAAmB,GAAI,SAAS,iBAAiB,KAAG,gBAsBhE,CAAC"}
|
|
@@ -14,6 +14,9 @@ export const getOkpEncryptionKey = (options) => {
|
|
|
14
14
|
return getDiffieHellmanKeyWrapEncryptionKey(options);
|
|
15
15
|
default:
|
|
16
16
|
throw new AesError("Unexpected Kryptos", {
|
|
17
|
+
code: "unexpected_kryptos",
|
|
18
|
+
title: "Unexpected Kryptos",
|
|
19
|
+
details: "The OKP Kryptos algorithm is not a supported ECDH-ES encryption variant.",
|
|
17
20
|
debug: { kryptos: options.kryptos.toJSON() },
|
|
18
21
|
});
|
|
19
22
|
}
|
|
@@ -31,6 +34,9 @@ export const getOkpDecryptionKey = (options) => {
|
|
|
31
34
|
return getDiffieHellmanKeyWrapDecryptionKey(options);
|
|
32
35
|
default:
|
|
33
36
|
throw new AesError("Unexpected Kryptos", {
|
|
37
|
+
code: "unexpected_kryptos",
|
|
38
|
+
title: "Unexpected Kryptos",
|
|
39
|
+
details: "The OKP Kryptos algorithm is not a supported ECDH-ES decryption variant.",
|
|
34
40
|
debug: { kryptos: options.kryptos.toJSON() },
|
|
35
41
|
});
|
|
36
42
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-okp-keys.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-okp-keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EACL,6BAA6B,EAC7B,6BAA6B,GAC9B,MAAM,qCAAqC,CAAC;AAC7C,OAAO,EACL,oCAAoC,EACpC,oCAAoC,GACrC,MAAM,8CAA8C,CAAC;AAEtD,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,OAAyB,EAAmB,EAAE;IAChF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,6BAA6B,CAAC,OAAO,CAAC,CAAC;QAEhD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,oCAAoC,CAAC,OAAO,CAAC,CAAC;QAEvD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,OAA0B,EAAoB,EAAE;IAClF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,6BAA6B,CAAC,OAAO,CAAC,CAAC;QAEhD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,oCAAoC,CAAC,OAAO,CAAC,CAAC;QAEvD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC"}
|
|
1
|
+
{"version":3,"file":"get-okp-keys.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-okp-keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EACL,6BAA6B,EAC7B,6BAA6B,GAC9B,MAAM,qCAAqC,CAAC;AAC7C,OAAO,EACL,oCAAoC,EACpC,oCAAoC,GACrC,MAAM,8CAA8C,CAAC;AAEtD,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,OAAyB,EAAmB,EAAE;IAChF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,6BAA6B,CAAC,OAAO,CAAC,CAAC;QAEhD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,oCAAoC,CAAC,OAAO,CAAC,CAAC;QAEvD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,IAAI,EAAE,oBAAoB;gBAC1B,KAAK,EAAE,oBAAoB;gBAC3B,OAAO,EACL,0EAA0E;gBAC5E,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,OAA0B,EAAoB,EAAE;IAClF,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,SAAS;YACZ,OAAO,6BAA6B,CAAC,OAAO,CAAC,CAAC;QAEhD,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,oCAAoC,CAAC,OAAO,CAAC,CAAC;QAEvD;YACE,MAAM,IAAI,QAAQ,CAAC,oBAAoB,EAAE;gBACvC,IAAI,EAAE,oBAAoB;gBAC1B,KAAK,EAAE,oBAAoB;gBAC3B,OAAO,EACL,0EAA0E;gBAC5E,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE;aAC7C,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-rsa-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-rsa-keys.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,uCAAuC,CAAC;AAI/C,eAAO,MAAM,mBAAmB,GAAI,0BAGjC,gBAAgB,KAAG,
|
|
1
|
+
{"version":3,"file":"get-rsa-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-rsa-keys.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,uCAAuC,CAAC;AAI/C,eAAO,MAAM,mBAAmB,GAAI,0BAGjC,gBAAgB,KAAG,eAuCrB,CAAC;AAEF,eAAO,MAAM,mBAAmB,GAAI,mCAGjC,iBAAiB,KAAG,gBAqDtB,CAAC"}
|
|
@@ -6,13 +6,22 @@ import { calculateContentEncryptionKeySize } from "../calculate/calculate-conten
|
|
|
6
6
|
import { calculateRsaOaepHash } from "../calculate/calculate-rsa-oaep-hash.js";
|
|
7
7
|
export const getRsaEncryptionKey = ({ encryption, kryptos, }) => {
|
|
8
8
|
if (!KryptosKit.isRsa(kryptos)) {
|
|
9
|
-
throw new AesError("Invalid Kryptos instance"
|
|
9
|
+
throw new AesError("Invalid Kryptos instance", {
|
|
10
|
+
code: "invalid_kryptos",
|
|
11
|
+
title: "Invalid Kryptos",
|
|
12
|
+
details: "RSA-OAEP encryption requires an RSA Kryptos key type.",
|
|
13
|
+
});
|
|
10
14
|
}
|
|
11
15
|
if (kryptos.algorithm !== "RSA-OAEP" &&
|
|
12
16
|
kryptos.algorithm !== "RSA-OAEP-256" &&
|
|
13
17
|
kryptos.algorithm !== "RSA-OAEP-384" &&
|
|
14
18
|
kryptos.algorithm !== "RSA-OAEP-512") {
|
|
15
|
-
throw new AesError("Invalid encryption key algorithm"
|
|
19
|
+
throw new AesError("Invalid encryption key algorithm", {
|
|
20
|
+
code: "invalid_key_algorithm",
|
|
21
|
+
title: "Invalid Key Algorithm",
|
|
22
|
+
details: "RSA encryption requires an RSA-OAEP algorithm variant (RSA-OAEP, RSA-OAEP-256, RSA-OAEP-384, or RSA-OAEP-512).",
|
|
23
|
+
data: { algorithm: kryptos.algorithm },
|
|
24
|
+
});
|
|
16
25
|
}
|
|
17
26
|
const keyLength = calculateContentEncryptionKeySize(encryption);
|
|
18
27
|
const contentEncryptionKey = randomBytes(keyLength);
|
|
@@ -26,22 +35,37 @@ export const getRsaEncryptionKey = ({ encryption, kryptos, }) => {
|
|
|
26
35
|
};
|
|
27
36
|
export const getRsaDecryptionKey = ({ kryptos, publicEncryptionKey, }) => {
|
|
28
37
|
if (!KryptosKit.isRsa(kryptos)) {
|
|
29
|
-
throw new AesError("Invalid Kryptos instance"
|
|
38
|
+
throw new AesError("Invalid Kryptos instance", {
|
|
39
|
+
code: "invalid_kryptos",
|
|
40
|
+
title: "Invalid Kryptos",
|
|
41
|
+
details: "RSA-OAEP decryption requires an RSA Kryptos key type.",
|
|
42
|
+
});
|
|
30
43
|
}
|
|
31
44
|
if (!publicEncryptionKey) {
|
|
32
|
-
throw new AesError("Missing publicEncryptionKey"
|
|
45
|
+
throw new AesError("Missing publicEncryptionKey", {
|
|
46
|
+
code: "missing_public_encryption_key",
|
|
47
|
+
title: "Missing Public Encryption Key",
|
|
48
|
+
details: "RSA-OAEP decryption requires the RSA-encrypted content encryption key, but it was not provided.",
|
|
49
|
+
});
|
|
33
50
|
}
|
|
34
51
|
if (kryptos.algorithm !== "RSA-OAEP" &&
|
|
35
52
|
kryptos.algorithm !== "RSA-OAEP-256" &&
|
|
36
53
|
kryptos.algorithm !== "RSA-OAEP-384" &&
|
|
37
54
|
kryptos.algorithm !== "RSA-OAEP-512") {
|
|
38
55
|
throw new AesError("Invalid encryption key algorithm", {
|
|
39
|
-
|
|
56
|
+
code: "invalid_key_algorithm",
|
|
57
|
+
title: "Invalid Key Algorithm",
|
|
58
|
+
details: "RSA decryption requires an RSA-OAEP algorithm variant (RSA-OAEP, RSA-OAEP-256, RSA-OAEP-384, or RSA-OAEP-512).",
|
|
59
|
+
data: { algorithm: kryptos.algorithm },
|
|
40
60
|
});
|
|
41
61
|
}
|
|
42
62
|
const { privateKey } = kryptos.export("pem");
|
|
43
63
|
if (!privateKey) {
|
|
44
|
-
throw new AesError("Unable to decrypt AES without private key"
|
|
64
|
+
throw new AesError("Unable to decrypt AES without private key", {
|
|
65
|
+
code: "missing_private_key",
|
|
66
|
+
title: "Missing Private Key",
|
|
67
|
+
details: "RSA-OAEP decryption requires the RSA private key to unwrap the content encryption key.",
|
|
68
|
+
});
|
|
45
69
|
}
|
|
46
70
|
const contentEncryptionKey = privateDecrypt({
|
|
47
71
|
key: privateKey,
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-rsa-keys.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-rsa-keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAC9C,OAAO,EAAE,sBAAsB,EAAE,MAAM,WAAW,CAAC;AACnD,OAAO,EAAE,cAAc,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AACpE,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EAAE,iCAAiC,EAAE,MAAM,uDAAuD,CAAC;AAC1G,OAAO,EAAE,oBAAoB,EAAE,MAAM,yCAAyC,CAAC;AAE/E,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,EAClC,UAAU,EACV,OAAO,GACU,EAAmB,EAAE;IACtC,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,QAAQ,CAAC,0BAA0B,CAAC,CAAC;
|
|
1
|
+
{"version":3,"file":"get-rsa-keys.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-types/get-rsa-keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAC9C,OAAO,EAAE,sBAAsB,EAAE,MAAM,WAAW,CAAC;AACnD,OAAO,EAAE,cAAc,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AACpE,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EAAE,iCAAiC,EAAE,MAAM,uDAAuD,CAAC;AAC1G,OAAO,EAAE,oBAAoB,EAAE,MAAM,yCAAyC,CAAC;AAE/E,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,EAClC,UAAU,EACV,OAAO,GACU,EAAmB,EAAE;IACtC,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,QAAQ,CAAC,0BAA0B,EAAE;YAC7C,IAAI,EAAE,iBAAiB;YACvB,KAAK,EAAE,iBAAiB;YACxB,OAAO,EAAE,uDAAuD;SACjE,CAAC,CAAC;IACL,CAAC;IAED,IACE,OAAO,CAAC,SAAS,KAAK,UAAU;QAChC,OAAO,CAAC,SAAS,KAAK,cAAc;QACpC,OAAO,CAAC,SAAS,KAAK,cAAc;QACpC,OAAO,CAAC,SAAS,KAAK,cAAc,EACpC,CAAC;QACD,MAAM,IAAI,QAAQ,CAAC,kCAAkC,EAAE;YACrD,IAAI,EAAE,uBAAuB;YAC7B,KAAK,EAAE,uBAAuB;YAC9B,OAAO,EACL,gHAAgH;YAClH,IAAI,EAAE,EAAE,SAAS,EAAE,OAAO,CAAC,SAAS,EAAE;SACvC,CAAC,CAAC;IACL,CAAC;IAED,MAAM,SAAS,GAAG,iCAAiC,CAAC,UAAU,CAAC,CAAC;IAChE,MAAM,oBAAoB,GAAG,WAAW,CAAC,SAAS,CAAC,CAAC;IAEpD,MAAM,EAAE,SAAS,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAE5C,MAAM,mBAAmB,GAAG,aAAa,CACvC;QACE,GAAG,EAAE,SAAS;QACd,OAAO,EAAE,sBAAsB;QAC/B,QAAQ,EAAE,oBAAoB,CAAC,OAAO,CAAC,SAAS,CAAC;KAClD,EACD,oBAAoB,CACrB,CAAC;IAEF,OAAO,EAAE,oBAAoB,EAAE,mBAAmB,EAAE,CAAC;AACvD,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,EAClC,OAAO,EACP,mBAAmB,GACD,EAAoB,EAAE;IACxC,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,QAAQ,CAAC,0BAA0B,EAAE;YAC7C,IAAI,EAAE,iBAAiB;YACvB,KAAK,EAAE,iBAAiB;YACxB,OAAO,EAAE,uDAAuD;SACjE,CAAC,CAAC;IACL,CAAC;IACD,IAAI,CAAC,mBAAmB,EAAE,CAAC;QACzB,MAAM,IAAI,QAAQ,CAAC,6BAA6B,EAAE;YAChD,IAAI,EAAE,+BAA+B;YACrC,KAAK,EAAE,+BAA+B;YACtC,OAAO,EACL,iGAAiG;SACpG,CAAC,CAAC;IACL,CAAC;IAED,IACE,OAAO,CAAC,SAAS,KAAK,UAAU;QAChC,OAAO,CAAC,SAAS,KAAK,cAAc;QACpC,OAAO,CAAC,SAAS,KAAK,cAAc;QACpC,OAAO,CAAC,SAAS,KAAK,cAAc,EACpC,CAAC;QACD,MAAM,IAAI,QAAQ,CAAC,kCAAkC,EAAE;YACrD,IAAI,EAAE,uBAAuB;YAC7B,KAAK,EAAE,uBAAuB;YAC9B,OAAO,EACL,gHAAgH;YAClH,IAAI,EAAE,EAAE,SAAS,EAAE,OAAO,CAAC,SAAS,EAAE;SACvC,CAAC,CAAC;IACL,CAAC;IAED,MAAM,EAAE,UAAU,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAE7C,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,MAAM,IAAI,QAAQ,CAAC,2CAA2C,EAAE;YAC9D,IAAI,EAAE,qBAAqB;YAC3B,KAAK,EAAE,qBAAqB;YAC5B,OAAO,EACL,wFAAwF;SAC3F,CAAC,CAAC;IACL,CAAC;IAED,MAAM,oBAAoB,GAAG,cAAc,CACzC;QACE,GAAG,EAAE,UAAU;QACf,OAAO,EAAE,sBAAsB;QAC/B,QAAQ,EAAE,oBAAoB,CAAC,OAAO,CAAC,SAAS,CAAC;KAClD,EACD,mBAAmB,CACpB,CAAC;IAEF,OAAO,EAAE,oBAAoB,EAAE,CAAC;AAClC,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"ecb-key-wrap.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/ecb-key-wrap.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,cAAc,EACd,aAAa,EACd,MAAM,yBAAyB,CAAC;AAQjC,eAAO,MAAM,UAAU,GAAI,sDAIxB,cAAc,KAAG,
|
|
1
|
+
{"version":3,"file":"ecb-key-wrap.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/ecb-key-wrap.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,cAAc,EACd,aAAa,EACd,MAAM,yBAAyB,CAAC;AAQjC,eAAO,MAAM,UAAU,GAAI,sDAIxB,cAAc,KAAG,aAyCnB,CAAC;AAEF,eAAO,MAAM,YAAY,GAAI,qDAI1B,gBAAgB,KAAG,eA0CrB,CAAC"}
|
|
@@ -7,7 +7,11 @@ const BLOCK_SIZE = 8;
|
|
|
7
7
|
export const ecbKeyWrap = ({ contentEncryptionKey, keyEncryptionKey, kryptos, }) => {
|
|
8
8
|
const algorithm = calculateKeyWrapEncryption(kryptos);
|
|
9
9
|
if (contentEncryptionKey.length < 16 || contentEncryptionKey.length % 8 !== 0) {
|
|
10
|
-
throw new AesError("Key wrap input must be at least 16 bytes and a multiple of 8"
|
|
10
|
+
throw new AesError("Key wrap input must be at least 16 bytes and a multiple of 8", {
|
|
11
|
+
code: "invalid_key_wrap_input",
|
|
12
|
+
title: "Invalid Key Wrap Input",
|
|
13
|
+
details: "AES key wrapping requires the content encryption key to be at least 16 bytes and a multiple of 8 bytes in length.",
|
|
14
|
+
});
|
|
11
15
|
}
|
|
12
16
|
const n = contentEncryptionKey.length / BLOCK_SIZE;
|
|
13
17
|
let a = Buffer.from(AIV_BUFFER);
|
|
@@ -61,7 +65,11 @@ export const ecbKeyUnwrap = ({ keyEncryptionKey, kryptos, publicEncryptionKey, }
|
|
|
61
65
|
}
|
|
62
66
|
decipher.final();
|
|
63
67
|
if (!timingSafeEqual(a, AIV_BUFFER)) {
|
|
64
|
-
throw new AesError("Integrity check failed"
|
|
68
|
+
throw new AesError("Integrity check failed", {
|
|
69
|
+
code: "key_unwrap_integrity_failed",
|
|
70
|
+
title: "Key Unwrap Integrity Failed",
|
|
71
|
+
details: "The AES key unwrap integrity check failed; the wrapped key was corrupted or the key encryption key was incorrect.",
|
|
72
|
+
});
|
|
65
73
|
}
|
|
66
74
|
return { contentEncryptionKey: Buffer.concat(r) };
|
|
67
75
|
};
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"ecb-key-wrap.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/ecb-key-wrap.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,gBAAgB,EAAE,eAAe,EAAE,MAAM,QAAQ,CAAC;AAO3E,OAAO,EAAE,QAAQ,EAAE,MAAM,6BAA6B,CAAC;AACvD,OAAO,EAAE,0BAA0B,EAAE,MAAM,+CAA+C,CAAC;AAE3F,MAAM,GAAG,GAAG,kBAA2B,CAAC;AACxC,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;AAC3C,MAAM,UAAU,GAAG,CAAU,CAAC;AAE9B,MAAM,CAAC,MAAM,UAAU,GAAG,CAAC,EACzB,oBAAoB,EACpB,gBAAgB,EAChB,OAAO,GACQ,EAAiB,EAAE;IAClC,MAAM,SAAS,GAAG,0BAA0B,CAAC,OAAO,CAAC,CAAC;IAEtD,IAAI,oBAAoB,CAAC,MAAM,GAAG,EAAE,IAAI,oBAAoB,CAAC,MAAM,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;QAC9E,MAAM,IAAI,QAAQ,CAAC,8DAA8D,CAAC,CAAC;
|
|
1
|
+
{"version":3,"file":"ecb-key-wrap.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/ecb-key-wrap.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,gBAAgB,EAAE,eAAe,EAAE,MAAM,QAAQ,CAAC;AAO3E,OAAO,EAAE,QAAQ,EAAE,MAAM,6BAA6B,CAAC;AACvD,OAAO,EAAE,0BAA0B,EAAE,MAAM,+CAA+C,CAAC;AAE3F,MAAM,GAAG,GAAG,kBAA2B,CAAC;AACxC,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;AAC3C,MAAM,UAAU,GAAG,CAAU,CAAC;AAE9B,MAAM,CAAC,MAAM,UAAU,GAAG,CAAC,EACzB,oBAAoB,EACpB,gBAAgB,EAChB,OAAO,GACQ,EAAiB,EAAE;IAClC,MAAM,SAAS,GAAG,0BAA0B,CAAC,OAAO,CAAC,CAAC;IAEtD,IAAI,oBAAoB,CAAC,MAAM,GAAG,EAAE,IAAI,oBAAoB,CAAC,MAAM,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;QAC9E,MAAM,IAAI,QAAQ,CAAC,8DAA8D,EAAE;YACjF,IAAI,EAAE,wBAAwB;YAC9B,KAAK,EAAE,wBAAwB;YAC/B,OAAO,EACL,mHAAmH;SACtH,CAAC,CAAC;IACL,CAAC;IAED,MAAM,CAAC,GAAG,oBAAoB,CAAC,MAAM,GAAG,UAAU,CAAC;IACnD,IAAI,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;IAChC,MAAM,CAAC,GAAG,EAAE,CAAC;IAEb,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC3B,CAAC,CAAC,CAAC,CAAC,GAAG,oBAAoB,CAAC,QAAQ,CAAC,CAAC,GAAG,UAAU,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,UAAU,CAAC,CAAC;IAC7E,CAAC;IAED,MAAM,MAAM,GAAG,cAAc,CAAC,SAAS,EAAE,gBAAgB,EAAE,IAAI,CAAC,CAAC;IACjE,MAAM,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC;IAE7B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC3B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;YAC3B,MAAM,CAAC,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YACnC,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;YACnC,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;YACtC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACxB,MAAM,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YACzC,OAAO,CAAC,WAAW,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC;YAC7B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,UAAU,EAAE,CAAC,EAAE,EAAE,CAAC;gBACpC,CAAC,CAAC,CAAC,CAAC,IAAI,OAAO,CAAC,CAAC,CAAC,CAAC;YACrB,CAAC;YACD,CAAC,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;QACxC,CAAC;IACH,CAAC;IAED,MAAM,CAAC,KAAK,EAAE,CAAC;IAEf,OAAO,EAAE,mBAAmB,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC;AAC3D,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,YAAY,GAAG,CAAC,EAC3B,gBAAgB,EAChB,OAAO,EACP,mBAAmB,GACF,EAAmB,EAAE;IACtC,MAAM,UAAU,GAAG,0BAA0B,CAAC,OAAO,CAAC,CAAC;IAEvD,MAAM,CAAC,GAAG,mBAAmB,CAAC,MAAM,GAAG,UAAU,GAAG,CAAC,CAAC;IACtD,IAAI,CAAC,GAAG,mBAAmB,CAAC,QAAQ,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;IACpD,MAAM,CAAC,GAAG,EAAE,CAAC;IAEb,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC3B,CAAC,CAAC,CAAC,CAAC,GAAG,mBAAmB,CAAC,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,UAAU,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,UAAU,CAAC,CAAC;IAClF,CAAC;IAED,MAAM,QAAQ,GAAG,gBAAgB,CAAC,UAAU,EAAE,gBAAgB,EAAE,IAAI,CAAC,CAAC;IACtE,QAAQ,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC;IAE/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC5B,KAAK,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;YAChC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACxB,MAAM,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YACzC,OAAO,CAAC,WAAW,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC;YAC7B,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YACvC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,UAAU,EAAE,CAAC,EAAE,EAAE,CAAC;gBACpC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;YAC/B,CAAC;YACD,MAAM,CAAC,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YACvC,MAAM,SAAS,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;YACrC,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;YACtC,CAAC,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;QACxC,CAAC;IACH,CAAC;IAED,QAAQ,CAAC,KAAK,EAAE,CAAC;IAEjB,IAAI,CAAC,eAAe,CAAC,CAAC,EAAE,UAAU,CAAC,EAAE,CAAC;QACpC,MAAM,IAAI,QAAQ,CAAC,wBAAwB,EAAE;YAC3C,IAAI,EAAE,6BAA6B;YACnC,KAAK,EAAE,6BAA6B;YACpC,OAAO,EACL,mHAAmH;SACtH,CAAC,CAAC;IACL,CAAC;IAED,OAAO,EAAE,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC;AACpD,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"gcm-key-wrap.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/gcm-key-wrap.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,cAAc,EACd,aAAa,EACd,MAAM,yBAAyB,CAAC;AAGjC,eAAO,MAAM,UAAU,GAAI,sDAIxB,cAAc,KAAG,aAkBnB,CAAC;AAEF,eAAO,MAAM,YAAY,GAAI,8FAM1B,gBAAgB,KAAG,
|
|
1
|
+
{"version":3,"file":"gcm-key-wrap.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/gcm-key-wrap.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,cAAc,EACd,aAAa,EACd,MAAM,yBAAyB,CAAC;AAGjC,eAAO,MAAM,UAAU,GAAI,sDAIxB,cAAc,KAAG,aAkBnB,CAAC;AAEF,eAAO,MAAM,YAAY,GAAI,8FAM1B,gBAAgB,KAAG,eAiDrB,CAAC"}
|
|
@@ -14,16 +14,32 @@ export const gcmKeyWrap = ({ contentEncryptionKey, keyEncryptionKey, kryptos, })
|
|
|
14
14
|
};
|
|
15
15
|
export const gcmKeyUnwrap = ({ keyEncryptionKey, kryptos, publicEncryptionIv, publicEncryptionKey, publicEncryptionTag, }) => {
|
|
16
16
|
if (!publicEncryptionIv) {
|
|
17
|
-
throw new AesError("Invalid public encryption iv"
|
|
17
|
+
throw new AesError("Invalid public encryption iv", {
|
|
18
|
+
code: "missing_key_wrap_iv",
|
|
19
|
+
title: "Missing Key Wrap IV",
|
|
20
|
+
details: "GCM key unwrapping requires a public encryption IV, but none was supplied with the wrapped key.",
|
|
21
|
+
});
|
|
18
22
|
}
|
|
19
23
|
if (!publicEncryptionTag) {
|
|
20
|
-
throw new AesError("Invalid public encryption tag"
|
|
24
|
+
throw new AesError("Invalid public encryption tag", {
|
|
25
|
+
code: "missing_key_wrap_tag",
|
|
26
|
+
title: "Missing Key Wrap Tag",
|
|
27
|
+
details: "GCM key unwrapping requires a public encryption auth tag, but none was supplied with the wrapped key.",
|
|
28
|
+
});
|
|
21
29
|
}
|
|
22
30
|
if (publicEncryptionIv.length !== 12) {
|
|
23
|
-
throw new AesError("Invalid GCM key wrap IV length"
|
|
31
|
+
throw new AesError("Invalid GCM key wrap IV length", {
|
|
32
|
+
code: "invalid_key_wrap_iv_length",
|
|
33
|
+
title: "Invalid Key Wrap IV Length",
|
|
34
|
+
details: "GCM key unwrapping requires a 12-byte (96-bit) public encryption IV.",
|
|
35
|
+
});
|
|
24
36
|
}
|
|
25
37
|
if (publicEncryptionTag.length !== 16) {
|
|
26
|
-
throw new AesError("Invalid GCM key wrap auth tag length"
|
|
38
|
+
throw new AesError("Invalid GCM key wrap auth tag length", {
|
|
39
|
+
code: "invalid_key_wrap_tag_length",
|
|
40
|
+
title: "Invalid Key Wrap Tag Length",
|
|
41
|
+
details: "GCM key unwrapping requires a 16-byte (128-bit) public encryption auth tag.",
|
|
42
|
+
});
|
|
27
43
|
}
|
|
28
44
|
const algorithm = calculateKeyWrapEncryption(kryptos);
|
|
29
45
|
const decipher = createDecipheriv(algorithm, keyEncryptionKey, publicEncryptionIv);
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"gcm-key-wrap.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/gcm-key-wrap.ts"],"names":[],"mappings":"AAAA,OAAO,EAGL,cAAc,EACd,gBAAgB,EAChB,WAAW,GACZ,MAAM,QAAQ,CAAC;AAChB,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EAAE,0BAA0B,EAAE,MAAM,+CAA+C,CAAC;AAE3F,MAAM,CAAC,MAAM,UAAU,GAAG,CAAC,EACzB,oBAAoB,EACpB,gBAAgB,EAChB,OAAO,GACQ,EAAiB,EAAE;IAClC,MAAM,SAAS,GAAG,0BAA0B,CAAC,OAAO,CAAC,CAAC;IAEtD,MAAM,kBAAkB,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC;IAC3C,MAAM,MAAM,GAAG,cAAc,CAC3B,SAAS,EACT,gBAAgB,EAChB,kBAAkB,CACN,CAAC;IAEf,MAAM,mBAAmB,GAAG,MAAM,CAAC,MAAM,CAAC;QACxC,MAAM,CAAC,MAAM,CAAC,oBAAoB,CAAC;QACnC,MAAM,CAAC,KAAK,EAAE;KACf,CAAC,CAAC;IAEH,MAAM,mBAAmB,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;IAEhD,OAAO,EAAE,mBAAmB,EAAE,kBAAkB,EAAE,mBAAmB,EAAE,CAAC;AAC1E,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,YAAY,GAAG,CAAC,EAC3B,gBAAgB,EAChB,OAAO,EACP,kBAAkB,EAClB,mBAAmB,EACnB,mBAAmB,GACF,EAAmB,EAAE;IACtC,IAAI,CAAC,kBAAkB,EAAE,CAAC;QACxB,MAAM,IAAI,QAAQ,CAAC,8BAA8B,CAAC,CAAC;
|
|
1
|
+
{"version":3,"file":"gcm-key-wrap.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/gcm-key-wrap.ts"],"names":[],"mappings":"AAAA,OAAO,EAGL,cAAc,EACd,gBAAgB,EAChB,WAAW,GACZ,MAAM,QAAQ,CAAC;AAChB,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EAAE,0BAA0B,EAAE,MAAM,+CAA+C,CAAC;AAE3F,MAAM,CAAC,MAAM,UAAU,GAAG,CAAC,EACzB,oBAAoB,EACpB,gBAAgB,EAChB,OAAO,GACQ,EAAiB,EAAE;IAClC,MAAM,SAAS,GAAG,0BAA0B,CAAC,OAAO,CAAC,CAAC;IAEtD,MAAM,kBAAkB,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC;IAC3C,MAAM,MAAM,GAAG,cAAc,CAC3B,SAAS,EACT,gBAAgB,EAChB,kBAAkB,CACN,CAAC;IAEf,MAAM,mBAAmB,GAAG,MAAM,CAAC,MAAM,CAAC;QACxC,MAAM,CAAC,MAAM,CAAC,oBAAoB,CAAC;QACnC,MAAM,CAAC,KAAK,EAAE;KACf,CAAC,CAAC;IAEH,MAAM,mBAAmB,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;IAEhD,OAAO,EAAE,mBAAmB,EAAE,kBAAkB,EAAE,mBAAmB,EAAE,CAAC;AAC1E,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,YAAY,GAAG,CAAC,EAC3B,gBAAgB,EAChB,OAAO,EACP,kBAAkB,EAClB,mBAAmB,EACnB,mBAAmB,GACF,EAAmB,EAAE;IACtC,IAAI,CAAC,kBAAkB,EAAE,CAAC;QACxB,MAAM,IAAI,QAAQ,CAAC,8BAA8B,EAAE;YACjD,IAAI,EAAE,qBAAqB;YAC3B,KAAK,EAAE,qBAAqB;YAC5B,OAAO,EACL,iGAAiG;SACpG,CAAC,CAAC;IACL,CAAC;IACD,IAAI,CAAC,mBAAmB,EAAE,CAAC;QACzB,MAAM,IAAI,QAAQ,CAAC,+BAA+B,EAAE;YAClD,IAAI,EAAE,sBAAsB;YAC5B,KAAK,EAAE,sBAAsB;YAC7B,OAAO,EACL,uGAAuG;SAC1G,CAAC,CAAC;IACL,CAAC;IACD,IAAI,kBAAkB,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;QACrC,MAAM,IAAI,QAAQ,CAAC,gCAAgC,EAAE;YACnD,IAAI,EAAE,4BAA4B;YAClC,KAAK,EAAE,4BAA4B;YACnC,OAAO,EAAE,sEAAsE;SAChF,CAAC,CAAC;IACL,CAAC;IACD,IAAI,mBAAmB,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;QACtC,MAAM,IAAI,QAAQ,CAAC,sCAAsC,EAAE;YACzD,IAAI,EAAE,6BAA6B;YACnC,KAAK,EAAE,6BAA6B;YACpC,OAAO,EACL,6EAA6E;SAChF,CAAC,CAAC;IACL,CAAC;IAED,MAAM,SAAS,GAAG,0BAA0B,CAAC,OAAO,CAAC,CAAC;IAEtD,MAAM,QAAQ,GAAG,gBAAgB,CAC/B,SAAS,EACT,gBAAgB,EAChB,kBAAkB,CACJ,CAAC;IAEjB,QAAQ,CAAC,UAAU,CAAC,mBAAmB,CAAC,CAAC;IAEzC,MAAM,oBAAoB,GAAG,MAAM,CAAC,MAAM,CAAC;QACzC,QAAQ,CAAC,MAAM,CAAC,mBAAmB,CAAC;QACpC,QAAQ,CAAC,KAAK,EAAE;KACjB,CAAC,CAAC;IAEH,OAAO,EAAE,oBAAoB,EAAE,CAAC;AAClC,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"key-wrap.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/key-wrap.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,cAAc,EACd,aAAa,EACd,MAAM,yBAAyB,CAAC;AAIjC,eAAO,MAAM,OAAO,GAAI,SAAS,cAAc,KAAG,
|
|
1
|
+
{"version":3,"file":"key-wrap.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/key-wrap.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,cAAc,EACd,aAAa,EACd,MAAM,yBAAyB,CAAC;AAIjC,eAAO,MAAM,OAAO,GAAI,SAAS,cAAc,KAAG,aA0BjD,CAAC;AAEF,eAAO,MAAM,SAAS,GAAI,SAAS,gBAAgB,KAAG,eA0BrD,CAAC"}
|
|
@@ -18,7 +18,11 @@ export const keyWrap = (options) => {
|
|
|
18
18
|
case "ECDH-ES+A256GCMKW":
|
|
19
19
|
return gcmKeyWrap(options);
|
|
20
20
|
default:
|
|
21
|
-
throw new AesError("Unsupported key wrap algorithm"
|
|
21
|
+
throw new AesError("Unsupported key wrap algorithm", {
|
|
22
|
+
code: "unsupported_key_wrap_algorithm",
|
|
23
|
+
title: "Unsupported Key Wrap Algorithm",
|
|
24
|
+
details: "The Kryptos algorithm is not a recognised AES key wrapping algorithm for wrapping the content encryption key.",
|
|
25
|
+
});
|
|
22
26
|
}
|
|
23
27
|
};
|
|
24
28
|
export const keyUnwrap = (options) => {
|
|
@@ -38,7 +42,11 @@ export const keyUnwrap = (options) => {
|
|
|
38
42
|
case "ECDH-ES+A256GCMKW":
|
|
39
43
|
return gcmKeyUnwrap(options);
|
|
40
44
|
default:
|
|
41
|
-
throw new AesError("Unsupported key wrap algorithm"
|
|
45
|
+
throw new AesError("Unsupported key wrap algorithm", {
|
|
46
|
+
code: "unsupported_key_wrap_algorithm",
|
|
47
|
+
title: "Unsupported Key Wrap Algorithm",
|
|
48
|
+
details: "The Kryptos algorithm is not a recognised AES key wrapping algorithm for unwrapping the content encryption key.",
|
|
49
|
+
});
|
|
42
50
|
}
|
|
43
51
|
};
|
|
44
52
|
//# sourceMappingURL=key-wrap.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"key-wrap.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/key-wrap.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAC7D,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAE7D,MAAM,CAAC,MAAM,OAAO,GAAG,CAAC,OAAuB,EAAiB,EAAE;IAChE,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB;YACnB,OAAO,UAAU,CAAC,OAAO,CAAC,CAAC;QAE7B,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,UAAU,CAAC,OAAO,CAAC,CAAC;QAE7B;YACE,MAAM,IAAI,QAAQ,CAAC,gCAAgC,CAAC,CAAC;
|
|
1
|
+
{"version":3,"file":"key-wrap.js","sourceRoot":"","sources":["../../../../src/internal/utils/key-wrap/key-wrap.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAOpD,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAC7D,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAE7D,MAAM,CAAC,MAAM,OAAO,GAAG,CAAC,OAAuB,EAAiB,EAAE;IAChE,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB;YACnB,OAAO,UAAU,CAAC,OAAO,CAAC,CAAC;QAE7B,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,UAAU,CAAC,OAAO,CAAC,CAAC;QAE7B;YACE,MAAM,IAAI,QAAQ,CAAC,gCAAgC,EAAE;gBACnD,IAAI,EAAE,gCAAgC;gBACtC,KAAK,EAAE,gCAAgC;gBACvC,OAAO,EACL,+GAA+G;aAClH,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,SAAS,GAAG,CAAC,OAAyB,EAAmB,EAAE;IACtE,QAAQ,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAClC,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB,CAAC;QACtB,KAAK,gBAAgB;YACnB,OAAO,YAAY,CAAC,OAAO,CAAC,CAAC;QAE/B,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,WAAW,CAAC;QACjB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB,CAAC;QACzB,KAAK,mBAAmB;YACtB,OAAO,YAAY,CAAC,OAAO,CAAC,CAAC;QAE/B;YACE,MAAM,IAAI,QAAQ,CAAC,gCAAgC,EAAE;gBACnD,IAAI,EAAE,gCAAgC;gBACtC,KAAK,EAAE,gCAAgC;gBACvC,OAAO,EACL,iHAAiH;aACpH,CAAC,CAAC;IACP,CAAC;AACH,CAAC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"get-oct-dir-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/oct/get-oct-dir-keys.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,uCAAuC,CAAC;AAG/C,eAAO,MAAM,sBAAsB,GAAI,0BAGpC,gBAAgB,KAAG,
|
|
1
|
+
{"version":3,"file":"get-oct-dir-keys.d.ts","sourceRoot":"","sources":["../../../../src/internal/utils/oct/get-oct-dir-keys.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EACjB,MAAM,uCAAuC,CAAC;AAG/C,eAAO,MAAM,sBAAsB,GAAI,0BAGpC,gBAAgB,KAAG,eAwBrB,CAAC;AAEF,eAAO,MAAM,sBAAsB,GAAI,0BAGpC,iBAAiB,KAAG,gBAwBtB,CAAC"}
|