import random from './random.js'; import { p2s as concatSalt } from '../lib/buffer_utils.js'; import { encode as base64url } from './base64url.js'; import { wrap, unwrap } from './aeskw.js'; import checkP2s from '../lib/check_p2s.js'; import crypto, { isCryptoKey } from './webcrypto.js'; import { checkEncCryptoKey } from '../lib/crypto_key.js'; import invalidKeyInput from '../lib/invalid_key_input.js'; import { types } from './is_key_like.js'; function getCryptoKey(key, alg) { if (key instanceof Uint8Array) { return crypto.subtle.importKey('raw', key, 'PBKDF2', false, ['deriveBits']); } if (isCryptoKey(key)) { checkEncCryptoKey(key, alg, 'deriveBits', 'deriveKey'); return key; } throw new TypeError(invalidKeyInput(key, ...types, 'Uint8Array')); } async function deriveKey(p2s, alg, p2c, key) { checkP2s(p2s); const salt = concatSalt(alg, p2s); const keylen = parseInt(alg.slice(13, 16), 10); const subtleAlg = { hash: `SHA-${alg.slice(8, 11)}`, iterations: p2c, name: 'PBKDF2', salt, }; const wrapAlg = { length: keylen, name: 'AES-KW', }; const cryptoKey = await getCryptoKey(key, alg); if (cryptoKey.usages.includes('deriveBits')) { return new Uint8Array(await crypto.subtle.deriveBits(subtleAlg, cryptoKey, keylen)); } if (cryptoKey.usages.includes('deriveKey')) { return crypto.subtle.deriveKey(subtleAlg, cryptoKey, wrapAlg, false, ['wrapKey', 'unwrapKey']); } throw new TypeError('PBKDF2 key "usages" must include "deriveBits" or "deriveKey"'); } export const encrypt = async (alg, key, cek, p2c = 2048, p2s = random(new Uint8Array(16))) => { const derived = await deriveKey(p2s, alg, p2c, key); const encryptedKey = await wrap(alg.slice(-6), derived, cek); return { encryptedKey, p2c, p2s: base64url(p2s) }; }; export const decrypt = async (alg, key, encryptedKey, p2c, p2s) => { const derived = await deriveKey(p2s, alg, p2c, key); return unwrap(alg.slice(-6), derived, encryptedKey); };