UNPKG

@ldclabs/cose-ts

Version:

Implemented Keys, Algorithms (RFC9053), COSE (RFC9052) and CWT (RFC8392) in TypeScript.

github.com/ldclabs/cose-ts

ldclabs/cose-ts

71 lines 2.37 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
// (c) 2023-present, LDC Labs. All rights reserved. // See the file LICENSE for licensing terms. import * as iana from './iana'; import { assertBytes } from './map'; import { Key } from './key'; import { randomBytes, decodeCBOR } from './utils'; import { hmac, getHash } from './hash'; // TODO: more checks // HMACKey implements message authentication code algorithm HMAC for COSE as defined in RFC9053. // https://datatracker.ietf.org/doc/html/rfc9053#name-hash-based-message-authenti. export class HMACKey extends Key { static fromBytes(data) { return new HMACKey(decodeCBOR(data)); } static generate(alg, kid) { return HMACKey.fromSecret(randomBytes(getKeySize(alg)), alg, kid); } static fromSecret(secret, alg, kid) { if (assertBytes(secret, 'secret').length != getKeySize(alg)) { throw new Error(`cose-ts: HMACKey.fromSecret: secret size mismatch, expected ${getKeySize(alg)}, got ${secret.length}`); } const key = new HMACKey(); key.alg = alg; if (kid != null) { key.setKid(kid); } key.setParam(iana.SymmetricKeyParameterK, secret); return key; } constructor(kv) { super(kv); this.kty = iana.KeyTypeSymmetric; } getSecretKey() { return this.getBytes(iana.SymmetricKeyParameterK, 'k'); } mac(message) { const hash = getHash(this.alg); const tag = hmac(hash, this.getSecretKey(), message); return tag.subarray(0, getTagSize(this.alg)); } } function getKeySize(alg) { switch (alg) { case iana.AlgorithmHMAC_256_64: return 32; case iana.AlgorithmHMAC_256_256: return 32; case iana.AlgorithmHMAC_384_384: return 48; case iana.AlgorithmHMAC_512_512: return 64; default: throw new Error(`cose-ts: unsupported HMAC alg ${alg}`); } } function getTagSize(alg) { switch (alg) { case iana.AlgorithmHMAC_256_64: return 8; case iana.AlgorithmHMAC_256_256: return 32; case iana.AlgorithmHMAC_384_384: return 48; case iana.AlgorithmHMAC_512_512: return 64; default: throw new Error(`cose-ts: unsupported HMAC alg ${alg}`); } } //# sourceMappingURL=hmac.js.map