@naylence/advanced-security 0.3.7-test.123 → 0.3.7-test.124
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/browser/index.cjs +14 -16
- package/dist/browser/index.mjs +4 -6
- package/dist/cjs/naylence/fame/security/signing/eddsa-envelope-signer-factory.js +1 -1
- package/dist/cjs/naylence/fame/security/signing/eddsa-envelope-signer-factory.js.map +1 -1
- package/dist/cjs/naylence/fame/security/signing/eddsa-envelope-verifier.js +1 -4
- package/dist/cjs/naylence/fame/security/signing/eddsa-envelope-verifier.js.map +1 -1
- package/dist/cjs/version.js +2 -2
- package/dist/esm/naylence/fame/security/signing/eddsa-envelope-signer-factory.js +1 -1
- package/dist/esm/naylence/fame/security/signing/eddsa-envelope-signer-factory.js.map +1 -1
- package/dist/esm/naylence/fame/security/signing/eddsa-envelope-verifier.js +1 -4
- package/dist/esm/naylence/fame/security/signing/eddsa-envelope-verifier.js.map +1 -1
- package/dist/esm/version.js +2 -2
- package/dist/node/index.cjs +14 -16
- package/dist/node/index.mjs +4 -6
- package/dist/node/node.cjs +14 -16
- package/dist/node/node.mjs +4 -6
- package/dist/types/naylence/fame/security/signing/eddsa-envelope-signer-factory.d.ts +1 -2
- package/dist/types/naylence/fame/security/signing/eddsa-envelope-signer-factory.d.ts.map +1 -1
- package/dist/types/naylence/fame/security/signing/eddsa-envelope-verifier.d.ts.map +1 -1
- package/dist/types/version.d.ts +1 -1
- package/package.json +2 -2
package/dist/browser/index.cjs
CHANGED
|
@@ -8,8 +8,6 @@ var asn1X509 = require('@peculiar/asn1-x509');
|
|
|
8
8
|
var ed25519 = require('@noble/ed25519');
|
|
9
9
|
var sha2_js = require('@noble/hashes/sha2.js');
|
|
10
10
|
var core = require('@naylence/core');
|
|
11
|
-
var eddsaSignerVerifier_js = require('@naylence/runtime/naylence/fame/security/signing/eddsa-signer-verifier.js');
|
|
12
|
-
var eddsaUtils_js = require('@naylence/runtime/naylence/fame/security/signing/eddsa-utils.js');
|
|
13
11
|
var chacha_js = require('@noble/ciphers/chacha.js');
|
|
14
12
|
var ed25519_js = require('@noble/curves/ed25519.js');
|
|
15
13
|
var hkdf_js = require('@noble/hashes/hkdf.js');
|
|
@@ -20,12 +18,12 @@ var x509 = require('@peculiar/x509');
|
|
|
20
18
|
var node = require('@naylence/runtime/node');
|
|
21
19
|
|
|
22
20
|
// This file is auto-generated during build - do not edit manually
|
|
23
|
-
// Generated from package.json version: 0.3.7-test.
|
|
21
|
+
// Generated from package.json version: 0.3.7-test.124
|
|
24
22
|
/**
|
|
25
23
|
* The package version, injected at build time.
|
|
26
24
|
* @internal
|
|
27
25
|
*/
|
|
28
|
-
const VERSION = '0.3.7-test.
|
|
26
|
+
const VERSION = '0.3.7-test.124';
|
|
29
27
|
|
|
30
28
|
const logger$h = node.getLogger("naylence.fame.security.cert.util");
|
|
31
29
|
const CACHE_LIMIT = 512;
|
|
@@ -3651,7 +3649,7 @@ const FACTORY_META$9 = {
|
|
|
3651
3649
|
let eddsaEnvelopeSignerModulePromise = null;
|
|
3652
3650
|
async function getEdDSAEnvelopeSignerModule() {
|
|
3653
3651
|
if (!eddsaEnvelopeSignerModulePromise) {
|
|
3654
|
-
eddsaEnvelopeSignerModulePromise = import('@naylence/runtime
|
|
3652
|
+
eddsaEnvelopeSignerModulePromise = import('@naylence/runtime');
|
|
3655
3653
|
}
|
|
3656
3654
|
return eddsaEnvelopeSignerModulePromise;
|
|
3657
3655
|
}
|
|
@@ -3787,7 +3785,7 @@ class EdDSAEnvelopeVerifier {
|
|
|
3787
3785
|
}
|
|
3788
3786
|
throw error;
|
|
3789
3787
|
}
|
|
3790
|
-
const publicKey =
|
|
3788
|
+
const publicKey = runtime.decodeBase64Url(candidate);
|
|
3791
3789
|
return { normalizedJwk, publicKey };
|
|
3792
3790
|
}
|
|
3793
3791
|
async verifyEnvelope(envelope, options = {}) {
|
|
@@ -3810,7 +3808,7 @@ class EdDSAEnvelopeVerifier {
|
|
|
3810
3808
|
throw new Error("DataFrame missing payload digest (pd field)");
|
|
3811
3809
|
}
|
|
3812
3810
|
const payload = envelope.frame.payload ?? "";
|
|
3813
|
-
const payloadString = payload === "" ? "" :
|
|
3811
|
+
const payloadString = payload === "" ? "" : runtime.canonicalJson(payload);
|
|
3814
3812
|
const actualDigest = runtime.secureDigest(payloadString);
|
|
3815
3813
|
if (actualDigest !== envelope.frame.pd) {
|
|
3816
3814
|
throw new Error("Payload digest mismatch in DataFrame");
|
|
@@ -3825,18 +3823,18 @@ class EdDSAEnvelopeVerifier {
|
|
|
3825
3823
|
}
|
|
3826
3824
|
}
|
|
3827
3825
|
else {
|
|
3828
|
-
trustedDigest =
|
|
3826
|
+
trustedDigest = runtime.frameDigest(envelope.frame);
|
|
3829
3827
|
}
|
|
3830
3828
|
const sid = assertString(normalizedJwk.sid, "Signing key missing sid");
|
|
3831
|
-
const immutable =
|
|
3832
|
-
const tbs = new Uint8Array(
|
|
3829
|
+
const immutable = runtime.canonicalJson(runtime.immutableHeaders(envelope));
|
|
3830
|
+
const tbs = new Uint8Array(runtime.encodeUtf8(sid).length +
|
|
3833
3831
|
1 +
|
|
3834
|
-
|
|
3832
|
+
runtime.encodeUtf8(immutable).length +
|
|
3835
3833
|
1 +
|
|
3836
|
-
|
|
3837
|
-
const sidBytes =
|
|
3838
|
-
const immBytes =
|
|
3839
|
-
const digestBytes =
|
|
3834
|
+
runtime.encodeUtf8(trustedDigest).length);
|
|
3835
|
+
const sidBytes = runtime.encodeUtf8(sid);
|
|
3836
|
+
const immBytes = runtime.encodeUtf8(immutable);
|
|
3837
|
+
const digestBytes = runtime.encodeUtf8(trustedDigest);
|
|
3840
3838
|
let offset = 0;
|
|
3841
3839
|
tbs.set(sidBytes, offset);
|
|
3842
3840
|
offset += sidBytes.length;
|
|
@@ -3847,7 +3845,7 @@ class EdDSAEnvelopeVerifier {
|
|
|
3847
3845
|
tbs[offset] = 0x1f;
|
|
3848
3846
|
offset += 1;
|
|
3849
3847
|
tbs.set(digestBytes, offset);
|
|
3850
|
-
const signatureBytes =
|
|
3848
|
+
const signatureBytes = runtime.decodeBase64Url(signatureValue);
|
|
3851
3849
|
if (signatureBytes.length !== 64) {
|
|
3852
3850
|
throw new Error("Signature must be 64 bytes for Ed25519");
|
|
3853
3851
|
}
|
package/dist/browser/index.mjs
CHANGED
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
import { EncryptionResult, getLogger as getLogger$1, urlsafeBase64Decode, sealedDecrypt, sealedEncrypt, FIXED_PREFIX_LEN, urlsafeBase64Encode, EncryptionManagerFactory, ENCRYPTION_MANAGER_FACTORY_BASE_TYPE, requireCryptoSupport, SECURE_CHANNEL_MANAGER_FACTORY_BASE_TYPE, SecureChannelManagerFactory, ENVELOPE_SIGNER_FACTORY_BASE_TYPE, EnvelopeSignerFactory, SigningConfigClass, validateSigningKey, JWKValidationError, secureDigest, ENVELOPE_VERIFIER_FACTORY_BASE_TYPE, EnvelopeVerifierFactory, TaskSpawner, getKeyStore, DefaultKeyManager, validateJwkComplete, currentTraceId, DeliveryOriginType, KEY_MANAGER_FACTORY_BASE_TYPE, KeyManagerFactory, KeyStoreFactory, BaseNodeEventListener, LOAD_BALANCER_STICKINESS_MANAGER_FACTORY_BASE_TYPE, LoadBalancerStickinessManagerFactory, REPLICA_STICKINESS_MANAGER_FACTORY_BASE_TYPE, ReplicaStickinessManagerFactory, color, AnsiColor, validateHostLogicals, HTTP_CONNECTION_GRANT_TYPE, formatTimestamp, jsonDumps, WELCOME_SERVICE_FACTORY_BASE_TYPE, WelcomeServiceFactory, NodePlacementStrategyFactory, TransportProvisionerFactory, TokenIssuerFactory, AuthorizerFactory, AuthInjectionStrategyFactory } from '@naylence/runtime';
|
|
1
|
+
import { EncryptionResult, getLogger as getLogger$1, urlsafeBase64Decode, sealedDecrypt, sealedEncrypt, FIXED_PREFIX_LEN, urlsafeBase64Encode, EncryptionManagerFactory, ENCRYPTION_MANAGER_FACTORY_BASE_TYPE, requireCryptoSupport, SECURE_CHANNEL_MANAGER_FACTORY_BASE_TYPE, SecureChannelManagerFactory, ENVELOPE_SIGNER_FACTORY_BASE_TYPE, EnvelopeSignerFactory, SigningConfigClass, validateSigningKey, JWKValidationError, decodeBase64Url, canonicalJson, secureDigest, frameDigest, immutableHeaders, encodeUtf8, ENVELOPE_VERIFIER_FACTORY_BASE_TYPE, EnvelopeVerifierFactory, TaskSpawner, getKeyStore, DefaultKeyManager, validateJwkComplete, currentTraceId, DeliveryOriginType, KEY_MANAGER_FACTORY_BASE_TYPE, KeyManagerFactory, KeyStoreFactory, BaseNodeEventListener, LOAD_BALANCER_STICKINESS_MANAGER_FACTORY_BASE_TYPE, LoadBalancerStickinessManagerFactory, REPLICA_STICKINESS_MANAGER_FACTORY_BASE_TYPE, ReplicaStickinessManagerFactory, color, AnsiColor, validateHostLogicals, HTTP_CONNECTION_GRANT_TYPE, formatTimestamp, jsonDumps, WELCOME_SERVICE_FACTORY_BASE_TYPE, WelcomeServiceFactory, NodePlacementStrategyFactory, TransportProvisionerFactory, TokenIssuerFactory, AuthorizerFactory, AuthInjectionStrategyFactory } from '@naylence/runtime';
|
|
2
2
|
import { ExtensionManager, AbstractResourceFactory, createResource, createDefaultResource, Registry } from '@naylence/factory';
|
|
3
3
|
import { AsnConvert, OctetString } from '@peculiar/asn1-schema';
|
|
4
4
|
import { Attributes, CertificationRequestInfo, CertificationRequest } from '@peculiar/asn1-csr';
|
|
@@ -6,8 +6,6 @@ import { Certificate, SubjectAlternativeName, NameConstraints, id_ce_subjectAltN
|
|
|
6
6
|
import { verify, etc } from '@noble/ed25519';
|
|
7
7
|
import { sha256, sha512 } from '@noble/hashes/sha2.js';
|
|
8
8
|
import { localDeliveryContext, createFameEnvelope, generateId, formatAddress, FameAddress, SigningMaterial, DeliveryOriginType as DeliveryOriginType$1 } from '@naylence/core';
|
|
9
|
-
import { decodeBase64Url, canonicalJson, frameDigest, immutableHeaders } from '@naylence/runtime/naylence/fame/security/signing/eddsa-signer-verifier.js';
|
|
10
|
-
import { encodeUtf8 } from '@naylence/runtime/naylence/fame/security/signing/eddsa-utils.js';
|
|
11
9
|
import { chacha20poly1305 } from '@noble/ciphers/chacha.js';
|
|
12
10
|
import { x25519 } from '@noble/curves/ed25519.js';
|
|
13
11
|
import { hkdf } from '@noble/hashes/hkdf.js';
|
|
@@ -18,12 +16,12 @@ import { X509Certificate } from '@peculiar/x509';
|
|
|
18
16
|
import { getLogger, secureDigest as secureDigest$1, validateHostLogical, CERTIFICATE_MANAGER_FACTORY_BASE_TYPE, CertificateManagerFactory, SigningConfigClass as SigningConfigClass$1 } from '@naylence/runtime/node';
|
|
19
17
|
|
|
20
18
|
// This file is auto-generated during build - do not edit manually
|
|
21
|
-
// Generated from package.json version: 0.3.7-test.
|
|
19
|
+
// Generated from package.json version: 0.3.7-test.124
|
|
22
20
|
/**
|
|
23
21
|
* The package version, injected at build time.
|
|
24
22
|
* @internal
|
|
25
23
|
*/
|
|
26
|
-
const VERSION = '0.3.7-test.
|
|
24
|
+
const VERSION = '0.3.7-test.124';
|
|
27
25
|
|
|
28
26
|
const logger$h = getLogger("naylence.fame.security.cert.util");
|
|
29
27
|
const CACHE_LIMIT = 512;
|
|
@@ -3649,7 +3647,7 @@ const FACTORY_META$9 = {
|
|
|
3649
3647
|
let eddsaEnvelopeSignerModulePromise = null;
|
|
3650
3648
|
async function getEdDSAEnvelopeSignerModule() {
|
|
3651
3649
|
if (!eddsaEnvelopeSignerModulePromise) {
|
|
3652
|
-
eddsaEnvelopeSignerModulePromise = import('@naylence/runtime
|
|
3650
|
+
eddsaEnvelopeSignerModulePromise = import('@naylence/runtime');
|
|
3653
3651
|
}
|
|
3654
3652
|
return eddsaEnvelopeSignerModulePromise;
|
|
3655
3653
|
}
|
|
@@ -8,7 +8,7 @@ export const FACTORY_META = {
|
|
|
8
8
|
let eddsaEnvelopeSignerModulePromise = null;
|
|
9
9
|
async function getEdDSAEnvelopeSignerModule() {
|
|
10
10
|
if (!eddsaEnvelopeSignerModulePromise) {
|
|
11
|
-
eddsaEnvelopeSignerModulePromise = import("@naylence/runtime
|
|
11
|
+
eddsaEnvelopeSignerModulePromise = import("@naylence/runtime");
|
|
12
12
|
}
|
|
13
13
|
return eddsaEnvelopeSignerModulePromise;
|
|
14
14
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"eddsa-envelope-signer-factory.js","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-signer-factory.ts"],"names":[],"mappings":"AACA,OAAO,EACL,iCAAiC,EACjC,qBAAqB,GAEtB,MAAM,mBAAmB,CAAC;
|
|
1
|
+
{"version":3,"file":"eddsa-envelope-signer-factory.js","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-signer-factory.ts"],"names":[],"mappings":"AACA,OAAO,EACL,iCAAiC,EACjC,qBAAqB,GAEtB,MAAM,mBAAmB,CAAC;AAM3B,MAAM,CAAC,MAAM,YAAY,GAAG;IAC1B,IAAI,EAAE,iCAAiC;IACvC,GAAG,EAAE,qBAAqB;IAC1B,SAAS,EAAE,IAAI;IACf,QAAQ,EAAE,GAAG;CACL,CAAC;AAIX,IAAI,gCAAgC,GAClC,IAAI,CAAC;AAEP,KAAK,UAAU,4BAA4B;IACzC,IAAI,CAAC,gCAAgC,EAAE,CAAC;QACtC,gCAAgC,GAAG,MAAM,CAAC,mBAAmB,CAAC,CAAC;IACjE,CAAC;IAED,OAAO,gCAAgC,CAAC;AAC1C,CAAC;AAED,MAAM,OAAO,kCAAmC,SAAQ,qBAAgD;IAAxG;;QACkB,SAAI,GAAG,qBAAqB,CAAC;QAC7B,cAAS,GAAG,IAAI,CAAC;QACjB,aAAQ,GAAG,GAAG,CAAC;IAiBjC,CAAC;IAfQ,KAAK,CAAC,MAAM,CACjB,OAAoE,EACpE,OAA2C;QAE3C,MAAM,QAAQ,GAA+B;YAC3C,cAAc,EAAE,OAAO,EAAE,cAAc,IAAI,IAAI;YAC/C,aAAa,EAAE,OAAO,EAAE,aAAa,IAAI,IAAI;YAC7C,aAAa,EAAE,OAAO,EAAE,aAAa;YACrC,KAAK,EAAE,OAAO,EAAE,KAAK;SACtB,CAAC;QAEF,MAAM,EAAE,mBAAmB,EAAE,GAAG,MAAM,4BAA4B,EAAE,CAAC;QAErE,OAAO,IAAI,mBAAmB,CAAC,QAAQ,CAAC,CAAC;IAC3C,CAAC;CACF;AAED,eAAe,kCAAkC,CAAC"}
|
|
@@ -1,10 +1,7 @@
|
|
|
1
1
|
import { etc as edEtc, verify } from "@noble/ed25519";
|
|
2
2
|
import { sha512 } from "@noble/hashes/sha2.js";
|
|
3
3
|
import { SigningMaterial } from "@naylence/core";
|
|
4
|
-
import { SigningConfigClass, secureDigest, } from "@naylence/runtime";
|
|
5
|
-
import { canonicalJson, decodeBase64Url, frameDigest, immutableHeaders, } from "@naylence/runtime/naylence/fame/security/signing/eddsa-signer-verifier.js";
|
|
6
|
-
import { encodeUtf8 } from "@naylence/runtime/naylence/fame/security/signing/eddsa-utils.js";
|
|
7
|
-
import { JWKValidationError, validateSigningKey } from "@naylence/runtime";
|
|
4
|
+
import { SigningConfigClass, secureDigest, canonicalJson, decodeBase64Url, frameDigest, immutableHeaders, encodeUtf8, JWKValidationError, validateSigningKey, } from "@naylence/runtime";
|
|
8
5
|
import { publicKeyFromX5c } from "../cert/util.js";
|
|
9
6
|
function assertString(value, field) {
|
|
10
7
|
if (typeof value !== "string" || value.length === 0) {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"eddsa-envelope-verifier.js","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-verifier.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,GAAG,IAAI,KAAK,EAAE,MAAM,EAAE,MAAM,gBAAgB,CAAC;AACtD,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAE/C,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AACjD,OAAO,EACL,kBAAkB,EAClB,YAAY,
|
|
1
|
+
{"version":3,"file":"eddsa-envelope-verifier.js","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-verifier.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,GAAG,IAAI,KAAK,EAAE,MAAM,EAAE,MAAM,gBAAgB,CAAC;AACtD,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAE/C,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AACjD,OAAO,EACL,kBAAkB,EAClB,YAAY,EAEZ,aAAa,EACb,eAAe,EACf,WAAW,EACX,gBAAgB,EAChB,UAAU,EACV,kBAAkB,EAClB,kBAAkB,GACnB,MAAM,mBAAmB,CAAC;AAC3B,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAcnD,SAAS,YAAY,CAAC,KAAc,EAAE,KAAa;IACjD,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACpD,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,6BAA6B,CAAC,CAAC;IACzD,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,WAAW,CAAC,KAA4B;IAC/C,OAAQ,KAA2B,CAAC,IAAI,KAAK,MAAM,CAAC;AACtD,CAAC;AAED,SAAS,eAAe,CAAC,KAAiB;IACxC,IAAI,OAAO,MAAM,KAAK,WAAW,EAAE,CAAC;QAClC,OAAO,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC;aACtB,QAAQ,CAAC,QAAQ,CAAC;aAClB,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;aACpB,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;aACpB,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;IACzB,CAAC;IAED,IAAI,MAAM,GAAG,EAAE,CAAC;IAChB,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,MAAM,IAAI,MAAM,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;IACtC,CAAC;IAED,IAAI,OAAO,IAAI,KAAK,UAAU,EAAE,CAAC;QAC/B,OAAO,IAAI,CAAC,MAAM,CAAC;aAChB,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;aACpB,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;aACpB,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;IACzB,CAAC;IAED,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;AACrE,CAAC;AAED,SAAS,yBAAyB;IAChC,MAAM,QAAQ,GAAG,KAGhB,CAAC;IAEF,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC;QACrB,QAAQ,CAAC,MAAM,GAAG,CAAC,OAAmB,EAAE,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IAC7D,CAAC;IAED,IAAI,CAAC,QAAQ,CAAC,UAAU,EAAE,CAAC;QACzB,QAAQ,CAAC,UAAU,GAAG,CAAC,GAAG,QAAsB,EAAc,EAAE;YAC9D,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC1B,OAAO,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAE,CAAC,CAAC;YAC9B,CAAC;YAED,MAAM,QAAQ,GAAG,KAAK,CAAC,WAAW,CAAC,GAAG,QAAQ,CAAC,CAAC;YAChD,OAAO,MAAM,CAAC,QAAQ,CAAC,CAAC;QAC1B,CAAC,CAAC;IACJ,CAAC;AACH,CAAC;AAED,SAAS,uBAAuB,CAC9B,GAAgB,EAChB,aAA4B,EAC5B,aAA4B;IAE5B,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,GAAG,CAAC,GAAG,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACpD,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,aAAa,CAAC,eAAe,KAAK,eAAe,CAAC,UAAU,EAAE,CAAC;QACjE,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;IACrE,CAAC;IAED,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CACb,mHAAmH,CACpH,CAAC;IACJ,CAAC;IAED,MAAM,SAAS,GAAG,gBAAgB,CAAC,GAAG,CAAC,GAAe,EAAE;QACtD,sBAAsB,EAAE,aAAa,CAAC,2BAA2B;QACjE,aAAa;KACd,CAAC,CAAC;IAEH,IAAI,SAAS,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;QAC5B,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;IACzE,CAAC;IAED,OAAO,eAAe,CAAC,SAAS,CAAC,CAAC;AACpC,CAAC;AAOD,MAAM,OAAO,qBAAqB;IAMhC,YACE,WAAwB,EACxB,UAAwC,EAAE;QAE1C,IAAI,CAAC,WAAW,GAAG,WAAW,CAAC;QAC/B,IAAI,CAAC,aAAa,GAAG,OAAO,CAAC,aAAa,IAAI,IAAI,kBAAkB,EAAE,CAAC;QACvE,IAAI,CAAC,kBAAkB,GAAG,OAAO,CAAC,kBAAkB,IAAI,IAAI,CAAC;QAC7D,yBAAyB,EAAE,CAAC;IAC9B,CAAC;IAEO,KAAK,CAAC,iBAAiB;QAC7B,IAAI,CAAC,IAAI,CAAC,kBAAkB,EAAE,CAAC;YAC7B,OAAO,IAAI,CAAC;QACd,CAAC;QAED,IAAI,OAAO,IAAI,CAAC,kBAAkB,CAAC,UAAU,KAAK,UAAU,EAAE,CAAC;YAC7D,MAAM,IAAI,CAAC,kBAAkB,CAAC,UAAU,EAAE,CAAC;QAC7C,CAAC;QAED,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,gBAAgB,EAAE,CAAC;QAC7D,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QAClD,OAAO,UAAU,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC;IACnD,CAAC;IAEO,KAAK,CAAC,sBAAsB,CAClC,GAAW,EACX,GAAgB;QAEhB,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;QACrD,MAAM,cAAc,GAAG,uBAAuB,CAC5C,GAAG,EACH,IAAI,CAAC,aAAa,EAClB,aAAa,CACd,CAAC;QAEF,MAAM,SAAS,GACb,cAAc;YACd,CAAC,OAAO,GAAG,CAAC,CAAC,KAAK,QAAQ;gBACxB,CAAC,CAAC,GAAG,CAAC,CAAC;gBACP,CAAC,CAAC,OAAO,GAAG,CAAC,KAAK,KAAK,QAAQ;oBAC7B,CAAC,CAAC,GAAG,CAAC,KAAK;oBACX,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAEjB,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;YAClC,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;QACrD,CAAC;QAED,MAAM,aAAa,GAAgB,EAAE,GAAG,GAAG,EAAE,CAAC;QAC9C,IAAI,cAAc,IAAI,OAAO,aAAa,CAAC,CAAC,KAAK,QAAQ,EAAE,CAAC;YAC1D,aAAa,CAAC,CAAC,GAAG,cAAc,IAAI,SAAS,CAAC;QAChD,CAAC;QAED,IAAI,CAAC;YACH,kBAAkB,CAAC,aAAa,CAAC,CAAC;QACpC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,kBAAkB,EAAE,CAAC;gBACxC,MAAM,IAAI,KAAK,CACb,OAAO,GAAG,8BAA8B,KAAK,CAAC,OAAO,EAAE,CACxD,CAAC;YACJ,CAAC;YACD,MAAM,KAAK,CAAC;QACd,CAAC;QAED,MAAM,SAAS,GAAG,eAAe,CAAC,SAAS,CAAC,CAAC;QAC7C,OAAO,EAAE,aAAa,EAAE,SAAS,EAAE,CAAC;IACtC,CAAC;IAEM,KAAK,CAAC,cAAc,CACzB,QAAsB,EACtB,UAAwD,EAAE;QAE1D,MAAM,eAAe,GAAG,QAAQ,CAAC,GAAG,EAAE,GAAG,CAAC;QAC1C,IAAI,CAAC,eAAe,EAAE,CAAC;YACrB,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;QACrD,CAAC;QAED,MAAM,GAAG,GAAG,YAAY,CACtB,eAAe,CAAC,GAAG,EACnB,gCAAgC,CACjC,CAAC;QACF,MAAM,cAAc,GAAG,YAAY,CACjC,eAAe,CAAC,GAAG,EACnB,gCAAgC,CACjC,CAAC;QAEF,MAAM,GAAG,GAAG,CAAC,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,GAAG,CAAC,CAAuB,CAAC;QACvE,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,MAAM,IAAI,KAAK,CAAC,mBAAmB,GAAG,EAAE,CAAC,CAAC;QAC5C,CAAC;QAED,MAAM,EAAE,aAAa,EAAE,SAAS,EAAE,GAAG,MAAM,IAAI,CAAC,sBAAsB,CACpE,GAAG,EACH,GAAG,CACJ,CAAC;QAEF,MAAM,YAAY,GAAG,OAAO,CAAC,YAAY,IAAI,IAAI,CAAC;QAElD,IAAI,aAAqB,CAAC;QAC1B,IAAI,WAAW,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;YAChC,IAAI,YAAY,EAAE,CAAC;gBACjB,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,EAAE,CAAC;oBACvB,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAC;gBACjE,CAAC;gBACD,MAAM,OAAO,GAAG,QAAQ,CAAC,KAAK,CAAC,OAAO,IAAI,EAAE,CAAC;gBAC7C,MAAM,aAAa,GAAG,OAAO,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC;gBACnE,MAAM,YAAY,GAAG,YAAY,CAAC,aAAa,CAAC,CAAC;gBACjD,IAAI,YAAY,KAAK,QAAQ,CAAC,KAAK,CAAC,EAAE,EAAE,CAAC;oBACvC,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;gBAC1D,CAAC;gBACD,aAAa,GAAG,YAAY,CAAC;YAC/B,CAAC;iBAAM,CAAC;gBACN,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,EAAE,CAAC;oBACvB,MAAM,IAAI,KAAK,CACb,2EAA2E,CAC5E,CAAC;gBACJ,CAAC;gBACD,aAAa,GAAG,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;YACpC,CAAC;QACH,CAAC;aAAM,CAAC;YACN,aAAa,GAAG,WAAW,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QAC9C,CAAC;QAEH,MAAM,GAAG,GAAG,YAAY,CAAC,aAAa,CAAC,GAAG,EAAE,yBAAyB,CAAC,CAAC;QACrE,MAAM,SAAS,GAAG,aAAa,CAAC,gBAAgB,CAAC,QAAQ,CAAC,CAAC,CAAC;QAC5D,MAAM,GAAG,GAAG,IAAI,UAAU,CACxB,UAAU,CAAC,GAAG,CAAC,CAAC,MAAM;YACpB,CAAC;YACD,UAAU,CAAC,SAAS,CAAC,CAAC,MAAM;YAC5B,CAAC;YACD,UAAU,CAAC,aAAa,CAAC,CAAC,MAAM,CACnC,CAAC;QAEF,MAAM,QAAQ,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC;QACjC,MAAM,QAAQ,GAAG,UAAU,CAAC,SAAS,CAAC,CAAC;QACvC,MAAM,WAAW,GAAG,UAAU,CAAC,aAAa,CAAC,CAAC;QAC9C,IAAI,MAAM,GAAG,CAAC,CAAC;QAEf,GAAG,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QAC1B,MAAM,IAAI,QAAQ,CAAC,MAAM,CAAC;QAC1B,GAAG,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC;QACnB,MAAM,IAAI,CAAC,CAAC;QAEZ,GAAG,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QAC1B,MAAM,IAAI,QAAQ,CAAC,MAAM,CAAC;QAC1B,GAAG,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC;QACnB,MAAM,IAAI,CAAC,CAAC;QAEZ,GAAG,CAAC,GAAG,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;QAE7B,MAAM,cAAc,GAAG,eAAe,CAAC,cAAc,CAAC,CAAC;QACvD,IAAI,cAAc,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;YACjC,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;QAC5D,CAAC;QAED,IAAI,SAAS,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;QACzD,CAAC;QAED,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,cAAc,EAAE,GAAG,EAAE,SAAS,CAAC,CAAC;QAC3D,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;QAC5D,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;CACF"}
|
package/dist/cjs/version.js
CHANGED
|
@@ -1,8 +1,8 @@
|
|
|
1
1
|
// This file is auto-generated during build - do not edit manually
|
|
2
|
-
// Generated from package.json version: 0.3.7-test.
|
|
2
|
+
// Generated from package.json version: 0.3.7-test.124
|
|
3
3
|
/**
|
|
4
4
|
* The package version, injected at build time.
|
|
5
5
|
* @internal
|
|
6
6
|
*/
|
|
7
|
-
export const VERSION = '0.3.7-test.
|
|
7
|
+
export const VERSION = '0.3.7-test.124';
|
|
8
8
|
//# sourceMappingURL=version.js.map
|
|
@@ -8,7 +8,7 @@ export const FACTORY_META = {
|
|
|
8
8
|
let eddsaEnvelopeSignerModulePromise = null;
|
|
9
9
|
async function getEdDSAEnvelopeSignerModule() {
|
|
10
10
|
if (!eddsaEnvelopeSignerModulePromise) {
|
|
11
|
-
eddsaEnvelopeSignerModulePromise = import("@naylence/runtime
|
|
11
|
+
eddsaEnvelopeSignerModulePromise = import("@naylence/runtime");
|
|
12
12
|
}
|
|
13
13
|
return eddsaEnvelopeSignerModulePromise;
|
|
14
14
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"eddsa-envelope-signer-factory.js","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-signer-factory.ts"],"names":[],"mappings":"AACA,OAAO,EACL,iCAAiC,EACjC,qBAAqB,GAEtB,MAAM,mBAAmB,CAAC;
|
|
1
|
+
{"version":3,"file":"eddsa-envelope-signer-factory.js","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-signer-factory.ts"],"names":[],"mappings":"AACA,OAAO,EACL,iCAAiC,EACjC,qBAAqB,GAEtB,MAAM,mBAAmB,CAAC;AAM3B,MAAM,CAAC,MAAM,YAAY,GAAG;IAC1B,IAAI,EAAE,iCAAiC;IACvC,GAAG,EAAE,qBAAqB;IAC1B,SAAS,EAAE,IAAI;IACf,QAAQ,EAAE,GAAG;CACL,CAAC;AAIX,IAAI,gCAAgC,GAClC,IAAI,CAAC;AAEP,KAAK,UAAU,4BAA4B;IACzC,IAAI,CAAC,gCAAgC,EAAE,CAAC;QACtC,gCAAgC,GAAG,MAAM,CAAC,mBAAmB,CAAC,CAAC;IACjE,CAAC;IAED,OAAO,gCAAgC,CAAC;AAC1C,CAAC;AAED,MAAM,OAAO,kCAAmC,SAAQ,qBAAgD;IAAxG;;QACkB,SAAI,GAAG,qBAAqB,CAAC;QAC7B,cAAS,GAAG,IAAI,CAAC;QACjB,aAAQ,GAAG,GAAG,CAAC;IAiBjC,CAAC;IAfQ,KAAK,CAAC,MAAM,CACjB,OAAoE,EACpE,OAA2C;QAE3C,MAAM,QAAQ,GAA+B;YAC3C,cAAc,EAAE,OAAO,EAAE,cAAc,IAAI,IAAI;YAC/C,aAAa,EAAE,OAAO,EAAE,aAAa,IAAI,IAAI;YAC7C,aAAa,EAAE,OAAO,EAAE,aAAa;YACrC,KAAK,EAAE,OAAO,EAAE,KAAK;SACtB,CAAC;QAEF,MAAM,EAAE,mBAAmB,EAAE,GAAG,MAAM,4BAA4B,EAAE,CAAC;QAErE,OAAO,IAAI,mBAAmB,CAAC,QAAQ,CAAC,CAAC;IAC3C,CAAC;CACF;AAED,eAAe,kCAAkC,CAAC"}
|
|
@@ -1,10 +1,7 @@
|
|
|
1
1
|
import { etc as edEtc, verify } from "@noble/ed25519";
|
|
2
2
|
import { sha512 } from "@noble/hashes/sha2.js";
|
|
3
3
|
import { SigningMaterial } from "@naylence/core";
|
|
4
|
-
import { SigningConfigClass, secureDigest, } from "@naylence/runtime";
|
|
5
|
-
import { canonicalJson, decodeBase64Url, frameDigest, immutableHeaders, } from "@naylence/runtime/naylence/fame/security/signing/eddsa-signer-verifier.js";
|
|
6
|
-
import { encodeUtf8 } from "@naylence/runtime/naylence/fame/security/signing/eddsa-utils.js";
|
|
7
|
-
import { JWKValidationError, validateSigningKey } from "@naylence/runtime";
|
|
4
|
+
import { SigningConfigClass, secureDigest, canonicalJson, decodeBase64Url, frameDigest, immutableHeaders, encodeUtf8, JWKValidationError, validateSigningKey, } from "@naylence/runtime";
|
|
8
5
|
import { publicKeyFromX5c } from "../cert/util.js";
|
|
9
6
|
function assertString(value, field) {
|
|
10
7
|
if (typeof value !== "string" || value.length === 0) {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"eddsa-envelope-verifier.js","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-verifier.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,GAAG,IAAI,KAAK,EAAE,MAAM,EAAE,MAAM,gBAAgB,CAAC;AACtD,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAE/C,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AACjD,OAAO,EACL,kBAAkB,EAClB,YAAY,
|
|
1
|
+
{"version":3,"file":"eddsa-envelope-verifier.js","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-verifier.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,GAAG,IAAI,KAAK,EAAE,MAAM,EAAE,MAAM,gBAAgB,CAAC;AACtD,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAE/C,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AACjD,OAAO,EACL,kBAAkB,EAClB,YAAY,EAEZ,aAAa,EACb,eAAe,EACf,WAAW,EACX,gBAAgB,EAChB,UAAU,EACV,kBAAkB,EAClB,kBAAkB,GACnB,MAAM,mBAAmB,CAAC;AAC3B,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAcnD,SAAS,YAAY,CAAC,KAAc,EAAE,KAAa;IACjD,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACpD,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,6BAA6B,CAAC,CAAC;IACzD,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,WAAW,CAAC,KAA4B;IAC/C,OAAQ,KAA2B,CAAC,IAAI,KAAK,MAAM,CAAC;AACtD,CAAC;AAED,SAAS,eAAe,CAAC,KAAiB;IACxC,IAAI,OAAO,MAAM,KAAK,WAAW,EAAE,CAAC;QAClC,OAAO,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC;aACtB,QAAQ,CAAC,QAAQ,CAAC;aAClB,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;aACpB,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;aACpB,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;IACzB,CAAC;IAED,IAAI,MAAM,GAAG,EAAE,CAAC;IAChB,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,MAAM,IAAI,MAAM,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;IACtC,CAAC;IAED,IAAI,OAAO,IAAI,KAAK,UAAU,EAAE,CAAC;QAC/B,OAAO,IAAI,CAAC,MAAM,CAAC;aAChB,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;aACpB,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;aACpB,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;IACzB,CAAC;IAED,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;AACrE,CAAC;AAED,SAAS,yBAAyB;IAChC,MAAM,QAAQ,GAAG,KAGhB,CAAC;IAEF,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC;QACrB,QAAQ,CAAC,MAAM,GAAG,CAAC,OAAmB,EAAE,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IAC7D,CAAC;IAED,IAAI,CAAC,QAAQ,CAAC,UAAU,EAAE,CAAC;QACzB,QAAQ,CAAC,UAAU,GAAG,CAAC,GAAG,QAAsB,EAAc,EAAE;YAC9D,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC1B,OAAO,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAE,CAAC,CAAC;YAC9B,CAAC;YAED,MAAM,QAAQ,GAAG,KAAK,CAAC,WAAW,CAAC,GAAG,QAAQ,CAAC,CAAC;YAChD,OAAO,MAAM,CAAC,QAAQ,CAAC,CAAC;QAC1B,CAAC,CAAC;IACJ,CAAC;AACH,CAAC;AAED,SAAS,uBAAuB,CAC9B,GAAgB,EAChB,aAA4B,EAC5B,aAA4B;IAE5B,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,GAAG,CAAC,GAAG,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACpD,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,aAAa,CAAC,eAAe,KAAK,eAAe,CAAC,UAAU,EAAE,CAAC;QACjE,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;IACrE,CAAC;IAED,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CACb,mHAAmH,CACpH,CAAC;IACJ,CAAC;IAED,MAAM,SAAS,GAAG,gBAAgB,CAAC,GAAG,CAAC,GAAe,EAAE;QACtD,sBAAsB,EAAE,aAAa,CAAC,2BAA2B;QACjE,aAAa;KACd,CAAC,CAAC;IAEH,IAAI,SAAS,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;QAC5B,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;IACzE,CAAC;IAED,OAAO,eAAe,CAAC,SAAS,CAAC,CAAC;AACpC,CAAC;AAOD,MAAM,OAAO,qBAAqB;IAMhC,YACE,WAAwB,EACxB,UAAwC,EAAE;QAE1C,IAAI,CAAC,WAAW,GAAG,WAAW,CAAC;QAC/B,IAAI,CAAC,aAAa,GAAG,OAAO,CAAC,aAAa,IAAI,IAAI,kBAAkB,EAAE,CAAC;QACvE,IAAI,CAAC,kBAAkB,GAAG,OAAO,CAAC,kBAAkB,IAAI,IAAI,CAAC;QAC7D,yBAAyB,EAAE,CAAC;IAC9B,CAAC;IAEO,KAAK,CAAC,iBAAiB;QAC7B,IAAI,CAAC,IAAI,CAAC,kBAAkB,EAAE,CAAC;YAC7B,OAAO,IAAI,CAAC;QACd,CAAC;QAED,IAAI,OAAO,IAAI,CAAC,kBAAkB,CAAC,UAAU,KAAK,UAAU,EAAE,CAAC;YAC7D,MAAM,IAAI,CAAC,kBAAkB,CAAC,UAAU,EAAE,CAAC;QAC7C,CAAC;QAED,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,gBAAgB,EAAE,CAAC;QAC7D,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QAClD,OAAO,UAAU,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC;IACnD,CAAC;IAEO,KAAK,CAAC,sBAAsB,CAClC,GAAW,EACX,GAAgB;QAEhB,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;QACrD,MAAM,cAAc,GAAG,uBAAuB,CAC5C,GAAG,EACH,IAAI,CAAC,aAAa,EAClB,aAAa,CACd,CAAC;QAEF,MAAM,SAAS,GACb,cAAc;YACd,CAAC,OAAO,GAAG,CAAC,CAAC,KAAK,QAAQ;gBACxB,CAAC,CAAC,GAAG,CAAC,CAAC;gBACP,CAAC,CAAC,OAAO,GAAG,CAAC,KAAK,KAAK,QAAQ;oBAC7B,CAAC,CAAC,GAAG,CAAC,KAAK;oBACX,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAEjB,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;YAClC,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;QACrD,CAAC;QAED,MAAM,aAAa,GAAgB,EAAE,GAAG,GAAG,EAAE,CAAC;QAC9C,IAAI,cAAc,IAAI,OAAO,aAAa,CAAC,CAAC,KAAK,QAAQ,EAAE,CAAC;YAC1D,aAAa,CAAC,CAAC,GAAG,cAAc,IAAI,SAAS,CAAC;QAChD,CAAC;QAED,IAAI,CAAC;YACH,kBAAkB,CAAC,aAAa,CAAC,CAAC;QACpC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,kBAAkB,EAAE,CAAC;gBACxC,MAAM,IAAI,KAAK,CACb,OAAO,GAAG,8BAA8B,KAAK,CAAC,OAAO,EAAE,CACxD,CAAC;YACJ,CAAC;YACD,MAAM,KAAK,CAAC;QACd,CAAC;QAED,MAAM,SAAS,GAAG,eAAe,CAAC,SAAS,CAAC,CAAC;QAC7C,OAAO,EAAE,aAAa,EAAE,SAAS,EAAE,CAAC;IACtC,CAAC;IAEM,KAAK,CAAC,cAAc,CACzB,QAAsB,EACtB,UAAwD,EAAE;QAE1D,MAAM,eAAe,GAAG,QAAQ,CAAC,GAAG,EAAE,GAAG,CAAC;QAC1C,IAAI,CAAC,eAAe,EAAE,CAAC;YACrB,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;QACrD,CAAC;QAED,MAAM,GAAG,GAAG,YAAY,CACtB,eAAe,CAAC,GAAG,EACnB,gCAAgC,CACjC,CAAC;QACF,MAAM,cAAc,GAAG,YAAY,CACjC,eAAe,CAAC,GAAG,EACnB,gCAAgC,CACjC,CAAC;QAEF,MAAM,GAAG,GAAG,CAAC,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,GAAG,CAAC,CAAuB,CAAC;QACvE,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,MAAM,IAAI,KAAK,CAAC,mBAAmB,GAAG,EAAE,CAAC,CAAC;QAC5C,CAAC;QAED,MAAM,EAAE,aAAa,EAAE,SAAS,EAAE,GAAG,MAAM,IAAI,CAAC,sBAAsB,CACpE,GAAG,EACH,GAAG,CACJ,CAAC;QAEF,MAAM,YAAY,GAAG,OAAO,CAAC,YAAY,IAAI,IAAI,CAAC;QAElD,IAAI,aAAqB,CAAC;QAC1B,IAAI,WAAW,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;YAChC,IAAI,YAAY,EAAE,CAAC;gBACjB,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,EAAE,CAAC;oBACvB,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAC;gBACjE,CAAC;gBACD,MAAM,OAAO,GAAG,QAAQ,CAAC,KAAK,CAAC,OAAO,IAAI,EAAE,CAAC;gBAC7C,MAAM,aAAa,GAAG,OAAO,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC;gBACnE,MAAM,YAAY,GAAG,YAAY,CAAC,aAAa,CAAC,CAAC;gBACjD,IAAI,YAAY,KAAK,QAAQ,CAAC,KAAK,CAAC,EAAE,EAAE,CAAC;oBACvC,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;gBAC1D,CAAC;gBACD,aAAa,GAAG,YAAY,CAAC;YAC/B,CAAC;iBAAM,CAAC;gBACN,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,EAAE,CAAC;oBACvB,MAAM,IAAI,KAAK,CACb,2EAA2E,CAC5E,CAAC;gBACJ,CAAC;gBACD,aAAa,GAAG,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;YACpC,CAAC;QACH,CAAC;aAAM,CAAC;YACN,aAAa,GAAG,WAAW,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QAC9C,CAAC;QAEH,MAAM,GAAG,GAAG,YAAY,CAAC,aAAa,CAAC,GAAG,EAAE,yBAAyB,CAAC,CAAC;QACrE,MAAM,SAAS,GAAG,aAAa,CAAC,gBAAgB,CAAC,QAAQ,CAAC,CAAC,CAAC;QAC5D,MAAM,GAAG,GAAG,IAAI,UAAU,CACxB,UAAU,CAAC,GAAG,CAAC,CAAC,MAAM;YACpB,CAAC;YACD,UAAU,CAAC,SAAS,CAAC,CAAC,MAAM;YAC5B,CAAC;YACD,UAAU,CAAC,aAAa,CAAC,CAAC,MAAM,CACnC,CAAC;QAEF,MAAM,QAAQ,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC;QACjC,MAAM,QAAQ,GAAG,UAAU,CAAC,SAAS,CAAC,CAAC;QACvC,MAAM,WAAW,GAAG,UAAU,CAAC,aAAa,CAAC,CAAC;QAC9C,IAAI,MAAM,GAAG,CAAC,CAAC;QAEf,GAAG,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QAC1B,MAAM,IAAI,QAAQ,CAAC,MAAM,CAAC;QAC1B,GAAG,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC;QACnB,MAAM,IAAI,CAAC,CAAC;QAEZ,GAAG,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QAC1B,MAAM,IAAI,QAAQ,CAAC,MAAM,CAAC;QAC1B,GAAG,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC;QACnB,MAAM,IAAI,CAAC,CAAC;QAEZ,GAAG,CAAC,GAAG,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;QAE7B,MAAM,cAAc,GAAG,eAAe,CAAC,cAAc,CAAC,CAAC;QACvD,IAAI,cAAc,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;YACjC,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;QAC5D,CAAC;QAED,IAAI,SAAS,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;QACzD,CAAC;QAED,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,cAAc,EAAE,GAAG,EAAE,SAAS,CAAC,CAAC;QAC3D,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;QAC5D,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;CACF"}
|
package/dist/esm/version.js
CHANGED
|
@@ -1,8 +1,8 @@
|
|
|
1
1
|
// This file is auto-generated during build - do not edit manually
|
|
2
|
-
// Generated from package.json version: 0.3.7-test.
|
|
2
|
+
// Generated from package.json version: 0.3.7-test.124
|
|
3
3
|
/**
|
|
4
4
|
* The package version, injected at build time.
|
|
5
5
|
* @internal
|
|
6
6
|
*/
|
|
7
|
-
export const VERSION = '0.3.7-test.
|
|
7
|
+
export const VERSION = '0.3.7-test.124';
|
|
8
8
|
//# sourceMappingURL=version.js.map
|
package/dist/node/index.cjs
CHANGED
|
@@ -8,8 +8,6 @@ var asn1X509 = require('@peculiar/asn1-x509');
|
|
|
8
8
|
var ed25519 = require('@noble/ed25519');
|
|
9
9
|
var sha2_js = require('@noble/hashes/sha2.js');
|
|
10
10
|
var core = require('@naylence/core');
|
|
11
|
-
var eddsaSignerVerifier_js = require('@naylence/runtime/naylence/fame/security/signing/eddsa-signer-verifier.js');
|
|
12
|
-
var eddsaUtils_js = require('@naylence/runtime/naylence/fame/security/signing/eddsa-utils.js');
|
|
13
11
|
var chacha_js = require('@noble/ciphers/chacha.js');
|
|
14
12
|
var ed25519_js = require('@noble/curves/ed25519.js');
|
|
15
13
|
var hkdf_js = require('@noble/hashes/hkdf.js');
|
|
@@ -20,12 +18,12 @@ var x509 = require('@peculiar/x509');
|
|
|
20
18
|
var node = require('@naylence/runtime/node');
|
|
21
19
|
|
|
22
20
|
// This file is auto-generated during build - do not edit manually
|
|
23
|
-
// Generated from package.json version: 0.3.7-test.
|
|
21
|
+
// Generated from package.json version: 0.3.7-test.124
|
|
24
22
|
/**
|
|
25
23
|
* The package version, injected at build time.
|
|
26
24
|
* @internal
|
|
27
25
|
*/
|
|
28
|
-
const VERSION = '0.3.7-test.
|
|
26
|
+
const VERSION = '0.3.7-test.124';
|
|
29
27
|
|
|
30
28
|
const logger$h = node.getLogger("naylence.fame.security.cert.util");
|
|
31
29
|
const CACHE_LIMIT = 512;
|
|
@@ -3651,7 +3649,7 @@ const FACTORY_META$9 = {
|
|
|
3651
3649
|
let eddsaEnvelopeSignerModulePromise = null;
|
|
3652
3650
|
async function getEdDSAEnvelopeSignerModule() {
|
|
3653
3651
|
if (!eddsaEnvelopeSignerModulePromise) {
|
|
3654
|
-
eddsaEnvelopeSignerModulePromise = import('@naylence/runtime
|
|
3652
|
+
eddsaEnvelopeSignerModulePromise = import('@naylence/runtime');
|
|
3655
3653
|
}
|
|
3656
3654
|
return eddsaEnvelopeSignerModulePromise;
|
|
3657
3655
|
}
|
|
@@ -3787,7 +3785,7 @@ class EdDSAEnvelopeVerifier {
|
|
|
3787
3785
|
}
|
|
3788
3786
|
throw error;
|
|
3789
3787
|
}
|
|
3790
|
-
const publicKey =
|
|
3788
|
+
const publicKey = runtime.decodeBase64Url(candidate);
|
|
3791
3789
|
return { normalizedJwk, publicKey };
|
|
3792
3790
|
}
|
|
3793
3791
|
async verifyEnvelope(envelope, options = {}) {
|
|
@@ -3810,7 +3808,7 @@ class EdDSAEnvelopeVerifier {
|
|
|
3810
3808
|
throw new Error("DataFrame missing payload digest (pd field)");
|
|
3811
3809
|
}
|
|
3812
3810
|
const payload = envelope.frame.payload ?? "";
|
|
3813
|
-
const payloadString = payload === "" ? "" :
|
|
3811
|
+
const payloadString = payload === "" ? "" : runtime.canonicalJson(payload);
|
|
3814
3812
|
const actualDigest = runtime.secureDigest(payloadString);
|
|
3815
3813
|
if (actualDigest !== envelope.frame.pd) {
|
|
3816
3814
|
throw new Error("Payload digest mismatch in DataFrame");
|
|
@@ -3825,18 +3823,18 @@ class EdDSAEnvelopeVerifier {
|
|
|
3825
3823
|
}
|
|
3826
3824
|
}
|
|
3827
3825
|
else {
|
|
3828
|
-
trustedDigest =
|
|
3826
|
+
trustedDigest = runtime.frameDigest(envelope.frame);
|
|
3829
3827
|
}
|
|
3830
3828
|
const sid = assertString(normalizedJwk.sid, "Signing key missing sid");
|
|
3831
|
-
const immutable =
|
|
3832
|
-
const tbs = new Uint8Array(
|
|
3829
|
+
const immutable = runtime.canonicalJson(runtime.immutableHeaders(envelope));
|
|
3830
|
+
const tbs = new Uint8Array(runtime.encodeUtf8(sid).length +
|
|
3833
3831
|
1 +
|
|
3834
|
-
|
|
3832
|
+
runtime.encodeUtf8(immutable).length +
|
|
3835
3833
|
1 +
|
|
3836
|
-
|
|
3837
|
-
const sidBytes =
|
|
3838
|
-
const immBytes =
|
|
3839
|
-
const digestBytes =
|
|
3834
|
+
runtime.encodeUtf8(trustedDigest).length);
|
|
3835
|
+
const sidBytes = runtime.encodeUtf8(sid);
|
|
3836
|
+
const immBytes = runtime.encodeUtf8(immutable);
|
|
3837
|
+
const digestBytes = runtime.encodeUtf8(trustedDigest);
|
|
3840
3838
|
let offset = 0;
|
|
3841
3839
|
tbs.set(sidBytes, offset);
|
|
3842
3840
|
offset += sidBytes.length;
|
|
@@ -3847,7 +3845,7 @@ class EdDSAEnvelopeVerifier {
|
|
|
3847
3845
|
tbs[offset] = 0x1f;
|
|
3848
3846
|
offset += 1;
|
|
3849
3847
|
tbs.set(digestBytes, offset);
|
|
3850
|
-
const signatureBytes =
|
|
3848
|
+
const signatureBytes = runtime.decodeBase64Url(signatureValue);
|
|
3851
3849
|
if (signatureBytes.length !== 64) {
|
|
3852
3850
|
throw new Error("Signature must be 64 bytes for Ed25519");
|
|
3853
3851
|
}
|
package/dist/node/index.mjs
CHANGED
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
import { EncryptionResult, getLogger as getLogger$1, urlsafeBase64Decode, sealedDecrypt, sealedEncrypt, FIXED_PREFIX_LEN, urlsafeBase64Encode, EncryptionManagerFactory, ENCRYPTION_MANAGER_FACTORY_BASE_TYPE, requireCryptoSupport, SECURE_CHANNEL_MANAGER_FACTORY_BASE_TYPE, SecureChannelManagerFactory, ENVELOPE_SIGNER_FACTORY_BASE_TYPE, EnvelopeSignerFactory, SigningConfigClass, validateSigningKey, JWKValidationError, secureDigest, ENVELOPE_VERIFIER_FACTORY_BASE_TYPE, EnvelopeVerifierFactory, TaskSpawner, getKeyStore, DefaultKeyManager, validateJwkComplete, currentTraceId, DeliveryOriginType, KEY_MANAGER_FACTORY_BASE_TYPE, KeyManagerFactory, KeyStoreFactory, BaseNodeEventListener, LOAD_BALANCER_STICKINESS_MANAGER_FACTORY_BASE_TYPE, LoadBalancerStickinessManagerFactory, REPLICA_STICKINESS_MANAGER_FACTORY_BASE_TYPE, ReplicaStickinessManagerFactory, color, AnsiColor, validateHostLogicals, HTTP_CONNECTION_GRANT_TYPE, formatTimestamp, jsonDumps, WELCOME_SERVICE_FACTORY_BASE_TYPE, WelcomeServiceFactory, NodePlacementStrategyFactory, TransportProvisionerFactory, TokenIssuerFactory, AuthorizerFactory, AuthInjectionStrategyFactory } from '@naylence/runtime';
|
|
1
|
+
import { EncryptionResult, getLogger as getLogger$1, urlsafeBase64Decode, sealedDecrypt, sealedEncrypt, FIXED_PREFIX_LEN, urlsafeBase64Encode, EncryptionManagerFactory, ENCRYPTION_MANAGER_FACTORY_BASE_TYPE, requireCryptoSupport, SECURE_CHANNEL_MANAGER_FACTORY_BASE_TYPE, SecureChannelManagerFactory, ENVELOPE_SIGNER_FACTORY_BASE_TYPE, EnvelopeSignerFactory, SigningConfigClass, validateSigningKey, JWKValidationError, decodeBase64Url, canonicalJson, secureDigest, frameDigest, immutableHeaders, encodeUtf8, ENVELOPE_VERIFIER_FACTORY_BASE_TYPE, EnvelopeVerifierFactory, TaskSpawner, getKeyStore, DefaultKeyManager, validateJwkComplete, currentTraceId, DeliveryOriginType, KEY_MANAGER_FACTORY_BASE_TYPE, KeyManagerFactory, KeyStoreFactory, BaseNodeEventListener, LOAD_BALANCER_STICKINESS_MANAGER_FACTORY_BASE_TYPE, LoadBalancerStickinessManagerFactory, REPLICA_STICKINESS_MANAGER_FACTORY_BASE_TYPE, ReplicaStickinessManagerFactory, color, AnsiColor, validateHostLogicals, HTTP_CONNECTION_GRANT_TYPE, formatTimestamp, jsonDumps, WELCOME_SERVICE_FACTORY_BASE_TYPE, WelcomeServiceFactory, NodePlacementStrategyFactory, TransportProvisionerFactory, TokenIssuerFactory, AuthorizerFactory, AuthInjectionStrategyFactory } from '@naylence/runtime';
|
|
2
2
|
import { ExtensionManager, AbstractResourceFactory, createResource, createDefaultResource, Registry } from '@naylence/factory';
|
|
3
3
|
import { AsnConvert, OctetString } from '@peculiar/asn1-schema';
|
|
4
4
|
import { Attributes, CertificationRequestInfo, CertificationRequest } from '@peculiar/asn1-csr';
|
|
@@ -6,8 +6,6 @@ import { Certificate, SubjectAlternativeName, NameConstraints, id_ce_subjectAltN
|
|
|
6
6
|
import { verify, etc } from '@noble/ed25519';
|
|
7
7
|
import { sha256, sha512 } from '@noble/hashes/sha2.js';
|
|
8
8
|
import { localDeliveryContext, createFameEnvelope, generateId, formatAddress, FameAddress, SigningMaterial, DeliveryOriginType as DeliveryOriginType$1 } from '@naylence/core';
|
|
9
|
-
import { decodeBase64Url, canonicalJson, frameDigest, immutableHeaders } from '@naylence/runtime/naylence/fame/security/signing/eddsa-signer-verifier.js';
|
|
10
|
-
import { encodeUtf8 } from '@naylence/runtime/naylence/fame/security/signing/eddsa-utils.js';
|
|
11
9
|
import { chacha20poly1305 } from '@noble/ciphers/chacha.js';
|
|
12
10
|
import { x25519 } from '@noble/curves/ed25519.js';
|
|
13
11
|
import { hkdf } from '@noble/hashes/hkdf.js';
|
|
@@ -18,12 +16,12 @@ import { X509Certificate } from '@peculiar/x509';
|
|
|
18
16
|
import { getLogger, secureDigest as secureDigest$1, validateHostLogical, CERTIFICATE_MANAGER_FACTORY_BASE_TYPE, CertificateManagerFactory, SigningConfigClass as SigningConfigClass$1 } from '@naylence/runtime/node';
|
|
19
17
|
|
|
20
18
|
// This file is auto-generated during build - do not edit manually
|
|
21
|
-
// Generated from package.json version: 0.3.7-test.
|
|
19
|
+
// Generated from package.json version: 0.3.7-test.124
|
|
22
20
|
/**
|
|
23
21
|
* The package version, injected at build time.
|
|
24
22
|
* @internal
|
|
25
23
|
*/
|
|
26
|
-
const VERSION = '0.3.7-test.
|
|
24
|
+
const VERSION = '0.3.7-test.124';
|
|
27
25
|
|
|
28
26
|
const logger$h = getLogger("naylence.fame.security.cert.util");
|
|
29
27
|
const CACHE_LIMIT = 512;
|
|
@@ -3649,7 +3647,7 @@ const FACTORY_META$9 = {
|
|
|
3649
3647
|
let eddsaEnvelopeSignerModulePromise = null;
|
|
3650
3648
|
async function getEdDSAEnvelopeSignerModule() {
|
|
3651
3649
|
if (!eddsaEnvelopeSignerModulePromise) {
|
|
3652
|
-
eddsaEnvelopeSignerModulePromise = import('@naylence/runtime
|
|
3650
|
+
eddsaEnvelopeSignerModulePromise = import('@naylence/runtime');
|
|
3653
3651
|
}
|
|
3654
3652
|
return eddsaEnvelopeSignerModulePromise;
|
|
3655
3653
|
}
|
package/dist/node/node.cjs
CHANGED
|
@@ -13,19 +13,17 @@ var chacha_js = require('@noble/ciphers/chacha.js');
|
|
|
13
13
|
var ed25519_js = require('@noble/curves/ed25519.js');
|
|
14
14
|
var hkdf_js = require('@noble/hashes/hkdf.js');
|
|
15
15
|
var utils_js = require('@noble/hashes/utils.js');
|
|
16
|
-
var eddsaSignerVerifier_js = require('@naylence/runtime/naylence/fame/security/signing/eddsa-signer-verifier.js');
|
|
17
|
-
var eddsaUtils_js = require('@naylence/runtime/naylence/fame/security/signing/eddsa-utils.js');
|
|
18
16
|
var factory = require('@naylence/factory');
|
|
19
17
|
var jose = require('jose');
|
|
20
18
|
var sha256_js = require('@noble/hashes/sha256.js');
|
|
21
19
|
|
|
22
20
|
// This file is auto-generated during build - do not edit manually
|
|
23
|
-
// Generated from package.json version: 0.3.7-test.
|
|
21
|
+
// Generated from package.json version: 0.3.7-test.124
|
|
24
22
|
/**
|
|
25
23
|
* The package version, injected at build time.
|
|
26
24
|
* @internal
|
|
27
25
|
*/
|
|
28
|
-
const VERSION = '0.3.7-test.
|
|
26
|
+
const VERSION = '0.3.7-test.124';
|
|
29
27
|
|
|
30
28
|
const logger$h = node.getLogger("naylence.fame.security.cert.util");
|
|
31
29
|
const CACHE_LIMIT = 512;
|
|
@@ -3662,7 +3660,7 @@ const FACTORY_META$a = {
|
|
|
3662
3660
|
let eddsaEnvelopeSignerModulePromise = null;
|
|
3663
3661
|
async function getEdDSAEnvelopeSignerModule() {
|
|
3664
3662
|
if (!eddsaEnvelopeSignerModulePromise) {
|
|
3665
|
-
eddsaEnvelopeSignerModulePromise = import('@naylence/runtime
|
|
3663
|
+
eddsaEnvelopeSignerModulePromise = import('@naylence/runtime');
|
|
3666
3664
|
}
|
|
3667
3665
|
return eddsaEnvelopeSignerModulePromise;
|
|
3668
3666
|
}
|
|
@@ -3798,7 +3796,7 @@ class EdDSAEnvelopeVerifier {
|
|
|
3798
3796
|
}
|
|
3799
3797
|
throw error;
|
|
3800
3798
|
}
|
|
3801
|
-
const publicKey =
|
|
3799
|
+
const publicKey = runtime.decodeBase64Url(candidate);
|
|
3802
3800
|
return { normalizedJwk, publicKey };
|
|
3803
3801
|
}
|
|
3804
3802
|
async verifyEnvelope(envelope, options = {}) {
|
|
@@ -3821,7 +3819,7 @@ class EdDSAEnvelopeVerifier {
|
|
|
3821
3819
|
throw new Error("DataFrame missing payload digest (pd field)");
|
|
3822
3820
|
}
|
|
3823
3821
|
const payload = envelope.frame.payload ?? "";
|
|
3824
|
-
const payloadString = payload === "" ? "" :
|
|
3822
|
+
const payloadString = payload === "" ? "" : runtime.canonicalJson(payload);
|
|
3825
3823
|
const actualDigest = runtime.secureDigest(payloadString);
|
|
3826
3824
|
if (actualDigest !== envelope.frame.pd) {
|
|
3827
3825
|
throw new Error("Payload digest mismatch in DataFrame");
|
|
@@ -3836,18 +3834,18 @@ class EdDSAEnvelopeVerifier {
|
|
|
3836
3834
|
}
|
|
3837
3835
|
}
|
|
3838
3836
|
else {
|
|
3839
|
-
trustedDigest =
|
|
3837
|
+
trustedDigest = runtime.frameDigest(envelope.frame);
|
|
3840
3838
|
}
|
|
3841
3839
|
const sid = assertString(normalizedJwk.sid, "Signing key missing sid");
|
|
3842
|
-
const immutable =
|
|
3843
|
-
const tbs = new Uint8Array(
|
|
3840
|
+
const immutable = runtime.canonicalJson(runtime.immutableHeaders(envelope));
|
|
3841
|
+
const tbs = new Uint8Array(runtime.encodeUtf8(sid).length +
|
|
3844
3842
|
1 +
|
|
3845
|
-
|
|
3843
|
+
runtime.encodeUtf8(immutable).length +
|
|
3846
3844
|
1 +
|
|
3847
|
-
|
|
3848
|
-
const sidBytes =
|
|
3849
|
-
const immBytes =
|
|
3850
|
-
const digestBytes =
|
|
3845
|
+
runtime.encodeUtf8(trustedDigest).length);
|
|
3846
|
+
const sidBytes = runtime.encodeUtf8(sid);
|
|
3847
|
+
const immBytes = runtime.encodeUtf8(immutable);
|
|
3848
|
+
const digestBytes = runtime.encodeUtf8(trustedDigest);
|
|
3851
3849
|
let offset = 0;
|
|
3852
3850
|
tbs.set(sidBytes, offset);
|
|
3853
3851
|
offset += sidBytes.length;
|
|
@@ -3858,7 +3856,7 @@ class EdDSAEnvelopeVerifier {
|
|
|
3858
3856
|
tbs[offset] = 0x1f;
|
|
3859
3857
|
offset += 1;
|
|
3860
3858
|
tbs.set(digestBytes, offset);
|
|
3861
|
-
const signatureBytes =
|
|
3859
|
+
const signatureBytes = runtime.decodeBase64Url(signatureValue);
|
|
3862
3860
|
if (signatureBytes.length !== 64) {
|
|
3863
3861
|
throw new Error("Signature must be 64 bytes for Ed25519");
|
|
3864
3862
|
}
|
package/dist/node/node.mjs
CHANGED
|
@@ -6,24 +6,22 @@ import { getLogger, CERTIFICATE_MANAGER_FACTORY_BASE_TYPE, SigningConfigClass as
|
|
|
6
6
|
import { Attributes, CertificationRequestInfo, CertificationRequest } from '@peculiar/asn1-csr';
|
|
7
7
|
import { X509Certificate } from '@peculiar/x509';
|
|
8
8
|
import { localDeliveryContext, createFameEnvelope, FameAddress, generateId, formatAddress, SigningMaterial, DeliveryOriginType as DeliveryOriginType$1 } from '@naylence/core';
|
|
9
|
-
import { getLogger as getLogger$1, EncryptionResult, urlsafeBase64Decode, sealedDecrypt, sealedEncrypt, FIXED_PREFIX_LEN, urlsafeBase64Encode, ENCRYPTION_MANAGER_FACTORY_BASE_TYPE, EncryptionManagerFactory, requireCryptoSupport, SECURE_CHANNEL_MANAGER_FACTORY_BASE_TYPE, SecureChannelManagerFactory, ENVELOPE_SIGNER_FACTORY_BASE_TYPE, EnvelopeSignerFactory, SigningConfigClass, validateSigningKey, JWKValidationError, secureDigest, ENVELOPE_VERIFIER_FACTORY_BASE_TYPE, EnvelopeVerifierFactory, TaskSpawner, getKeyStore, DefaultKeyManager, validateJwkComplete, currentTraceId, DeliveryOriginType, KEY_MANAGER_FACTORY_BASE_TYPE, KeyManagerFactory, KeyStoreFactory, BaseNodeEventListener, LOAD_BALANCER_STICKINESS_MANAGER_FACTORY_BASE_TYPE, LoadBalancerStickinessManagerFactory, REPLICA_STICKINESS_MANAGER_FACTORY_BASE_TYPE, ReplicaStickinessManagerFactory, color, formatTimestamp, AnsiColor, jsonDumps, validateHostLogicals, HTTP_CONNECTION_GRANT_TYPE, WELCOME_SERVICE_FACTORY_BASE_TYPE, WelcomeServiceFactory, NodePlacementStrategyFactory, TransportProvisionerFactory, TokenIssuerFactory, AuthorizerFactory, AuthInjectionStrategyFactory } from '@naylence/runtime';
|
|
9
|
+
import { getLogger as getLogger$1, EncryptionResult, urlsafeBase64Decode, sealedDecrypt, sealedEncrypt, FIXED_PREFIX_LEN, urlsafeBase64Encode, ENCRYPTION_MANAGER_FACTORY_BASE_TYPE, EncryptionManagerFactory, requireCryptoSupport, SECURE_CHANNEL_MANAGER_FACTORY_BASE_TYPE, SecureChannelManagerFactory, ENVELOPE_SIGNER_FACTORY_BASE_TYPE, EnvelopeSignerFactory, SigningConfigClass, validateSigningKey, JWKValidationError, decodeBase64Url, canonicalJson, secureDigest, frameDigest, immutableHeaders, encodeUtf8, ENVELOPE_VERIFIER_FACTORY_BASE_TYPE, EnvelopeVerifierFactory, TaskSpawner, getKeyStore, DefaultKeyManager, validateJwkComplete, currentTraceId, DeliveryOriginType, KEY_MANAGER_FACTORY_BASE_TYPE, KeyManagerFactory, KeyStoreFactory, BaseNodeEventListener, LOAD_BALANCER_STICKINESS_MANAGER_FACTORY_BASE_TYPE, LoadBalancerStickinessManagerFactory, REPLICA_STICKINESS_MANAGER_FACTORY_BASE_TYPE, ReplicaStickinessManagerFactory, color, formatTimestamp, AnsiColor, jsonDumps, validateHostLogicals, HTTP_CONNECTION_GRANT_TYPE, WELCOME_SERVICE_FACTORY_BASE_TYPE, WelcomeServiceFactory, NodePlacementStrategyFactory, TransportProvisionerFactory, TokenIssuerFactory, AuthorizerFactory, AuthInjectionStrategyFactory } from '@naylence/runtime';
|
|
10
10
|
import { chacha20poly1305 } from '@noble/ciphers/chacha.js';
|
|
11
11
|
import { x25519 } from '@noble/curves/ed25519.js';
|
|
12
12
|
import { hkdf } from '@noble/hashes/hkdf.js';
|
|
13
13
|
import { utf8ToBytes, randomBytes as randomBytes$1 } from '@noble/hashes/utils.js';
|
|
14
|
-
import { decodeBase64Url, canonicalJson, frameDigest, immutableHeaders } from '@naylence/runtime/naylence/fame/security/signing/eddsa-signer-verifier.js';
|
|
15
|
-
import { encodeUtf8 } from '@naylence/runtime/naylence/fame/security/signing/eddsa-utils.js';
|
|
16
14
|
import { ExtensionManager, AbstractResourceFactory, createResource, createDefaultResource, Registry } from '@naylence/factory';
|
|
17
15
|
import { SignJWT, importPKCS8, compactVerify, importJWK, importSPKI } from 'jose';
|
|
18
16
|
import { sha256 as sha256$1 } from '@noble/hashes/sha256.js';
|
|
19
17
|
|
|
20
18
|
// This file is auto-generated during build - do not edit manually
|
|
21
|
-
// Generated from package.json version: 0.3.7-test.
|
|
19
|
+
// Generated from package.json version: 0.3.7-test.124
|
|
22
20
|
/**
|
|
23
21
|
* The package version, injected at build time.
|
|
24
22
|
* @internal
|
|
25
23
|
*/
|
|
26
|
-
const VERSION = '0.3.7-test.
|
|
24
|
+
const VERSION = '0.3.7-test.124';
|
|
27
25
|
|
|
28
26
|
const logger$h = getLogger("naylence.fame.security.cert.util");
|
|
29
27
|
const CACHE_LIMIT = 512;
|
|
@@ -3660,7 +3658,7 @@ const FACTORY_META$a = {
|
|
|
3660
3658
|
let eddsaEnvelopeSignerModulePromise = null;
|
|
3661
3659
|
async function getEdDSAEnvelopeSignerModule() {
|
|
3662
3660
|
if (!eddsaEnvelopeSignerModulePromise) {
|
|
3663
|
-
eddsaEnvelopeSignerModulePromise = import('@naylence/runtime
|
|
3661
|
+
eddsaEnvelopeSignerModulePromise = import('@naylence/runtime');
|
|
3664
3662
|
}
|
|
3665
3663
|
return eddsaEnvelopeSignerModulePromise;
|
|
3666
3664
|
}
|
|
@@ -1,6 +1,5 @@
|
|
|
1
|
-
import type { EnvelopeSigner } from "@naylence/runtime";
|
|
1
|
+
import type { EnvelopeSigner, EdDSAEnvelopeSignerOptions } from "@naylence/runtime";
|
|
2
2
|
import { EnvelopeSignerFactory, type EnvelopeSignerConfig } from "@naylence/runtime";
|
|
3
|
-
import type { EdDSAEnvelopeSignerOptions } from "@naylence/runtime/naylence/fame/security/signing/eddsa-envelope-signer.js";
|
|
4
3
|
export interface EdDSAEnvelopeSignerConfig extends EnvelopeSignerConfig {
|
|
5
4
|
readonly type: "EdDSAEnvelopeSigner";
|
|
6
5
|
}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"eddsa-envelope-signer-factory.d.ts","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-signer-factory.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;
|
|
1
|
+
{"version":3,"file":"eddsa-envelope-signer-factory.d.ts","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-signer-factory.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,cAAc,EAAE,0BAA0B,EAAE,MAAM,mBAAmB,CAAC;AACpF,OAAO,EAEL,qBAAqB,EACrB,KAAK,oBAAoB,EAC1B,MAAM,mBAAmB,CAAC;AAE3B,MAAM,WAAW,yBAA0B,SAAQ,oBAAoB;IACrE,QAAQ,CAAC,IAAI,EAAE,qBAAqB,CAAC;CACtC;AAED,eAAO,MAAM,YAAY;;;;;CAKf,CAAC;AAeX,qBAAa,kCAAmC,SAAQ,qBAAqB,CAAC,yBAAyB,CAAC;IACtG,SAAgB,IAAI,yBAAyB;IAC7C,SAAgB,SAAS,QAAQ;IACjC,SAAgB,QAAQ,OAAO;IAElB,MAAM,CACjB,OAAO,CAAC,EAAE,yBAAyB,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,EACpE,OAAO,CAAC,EAAE,0BAA0B,GAAG,IAAI,GAC1C,OAAO,CAAC,cAAc,CAAC;CAY3B;AAED,eAAe,kCAAkC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"eddsa-envelope-verifier.d.ts","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-verifier.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAa,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAE9D,OAAO,EACL,kBAAkB,EAElB,KAAK,WAAW,
|
|
1
|
+
{"version":3,"file":"eddsa-envelope-verifier.d.ts","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-verifier.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAa,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAE9D,OAAO,EACL,kBAAkB,EAElB,KAAK,WAAW,EAQjB,MAAM,mBAAmB,CAAC;AAE3B,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,6CAA6C,CAAC;AAEtF,KAAK,aAAa,GAAG,YAAY,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAmG7D,MAAM,WAAW,4BAA4B;IAC3C,QAAQ,CAAC,aAAa,CAAC,EAAE,aAAa,GAAG,IAAI,CAAC;IAC9C,QAAQ,CAAC,kBAAkB,CAAC,EAAE,kBAAkB,GAAG,IAAI,CAAC;CACzD;AAED,qBAAa,qBAAqB;IAChC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAc;IAE1C,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAgB;IAC9C,OAAO,CAAC,QAAQ,CAAC,kBAAkB,CAA4B;gBAG7D,WAAW,EAAE,WAAW,EACxB,OAAO,GAAE,4BAAiC;YAQ9B,iBAAiB;YAcjB,sBAAsB;IA2CvB,cAAc,CACzB,QAAQ,EAAE,YAAY,EACtB,OAAO,GAAE;QAAE,YAAY,CAAC,EAAE,OAAO,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAA;KAAO,GACzD,OAAO,CAAC,OAAO,CAAC;CA+FpB;AAED,YAAY,EAAE,aAAa,IAAI,qBAAqB,EAAE,CAAC"}
|
package/dist/types/version.d.ts
CHANGED
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@naylence/advanced-security",
|
|
3
|
-
"version": "0.3.7-test.
|
|
3
|
+
"version": "0.3.7-test.124",
|
|
4
4
|
"type": "module",
|
|
5
5
|
"description": "Advanced security utilities for the Naylence Fame runtime implemented in TypeScript.",
|
|
6
6
|
"author": "Naylence Dev <naylencedev@gmail.com>",
|
|
@@ -142,7 +142,7 @@
|
|
|
142
142
|
"prepublishOnly": "npm run build && npm test"
|
|
143
143
|
},
|
|
144
144
|
"dependencies": {
|
|
145
|
-
"@naylence/runtime": "^0.3.5-test.
|
|
145
|
+
"@naylence/runtime": "^0.3.5-test.923",
|
|
146
146
|
"@noble/ciphers": "^2.0.1",
|
|
147
147
|
"@noble/curves": "^1.4.0",
|
|
148
148
|
"@noble/ed25519": "^2.1.0",
|