UNPKG

@libp2p/crypto

Version:

Crypto primitives for libp2p

github.com/libp2p/js-libp2p/tree/main/packages/crypto

libp2p/js-libp2p

133 lines (111 loc) 3.8 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
import { InvalidParametersError } from '@libp2p/interface' import { concat as uint8ArrayConcat } from 'uint8arrays/concat' import { equals as uint8ArrayEquals } from 'uint8arrays/equals' import { toString as uint8ArrayToString } from 'uint8arrays/to-string' import { base64urlToBuffer } from '../../util.js' import webcrypto from '../../webcrypto/index.js' import type { Curve } from './index.ts' import type { ECDHKey, ECDHKeyPair, JWKEncodedPrivateKey, JWKEncodedPublicKey } from '../interface.js' const curveLengths = { 'P-256': 32, 'P-384': 48, 'P-521': 66 } const curveTypes = Object.keys(curveLengths) const names = curveTypes.join(' / ') export async function generateEphemeralKeyPair (curve: Curve): Promise<ECDHKey> { if (curve !== 'P-256' && curve !== 'P-384' && curve !== 'P-521') { throw new InvalidParametersError(`Unknown curve: ${curve}. Must be ${names}`) } const pair = await webcrypto.get().subtle.generateKey( { name: 'ECDH', namedCurve: curve }, true, ['deriveBits'] ) // forcePrivate is used for testing only const genSharedKey = async (theirPub: Uint8Array, forcePrivate?: ECDHKeyPair): Promise<Uint8Array> => { let privateKey if (forcePrivate != null) { privateKey = await webcrypto.get().subtle.importKey( 'jwk', unmarshalPrivateKey(curve, forcePrivate), { name: 'ECDH', namedCurve: curve }, false, ['deriveBits'] ) } else { privateKey = pair.privateKey } const key = await webcrypto.get().subtle.importKey( 'jwk', unmarshalPublicKey(curve, theirPub), { name: 'ECDH', namedCurve: curve }, false, [] ) const buffer = await webcrypto.get().subtle.deriveBits( { name: 'ECDH', public: key }, privateKey, curveLengths[curve] * 8 ) return new Uint8Array(buffer, 0, buffer.byteLength) } const publicKey = await webcrypto.get().subtle.exportKey('jwk', pair.publicKey) const ecdhKey: ECDHKey = { key: marshalPublicKey(publicKey), genSharedKey } return ecdhKey } // Marshal converts a jwk encoded ECDH public key into the // form specified in section 4.3.6 of ANSI X9.62. (This is the format // go-ipfs uses) function marshalPublicKey (jwk: JsonWebKey): Uint8Array { if (jwk.crv == null || jwk.x == null || jwk.y == null) { throw new InvalidParametersError('JWK was missing components') } if (jwk.crv !== 'P-256' && jwk.crv !== 'P-384' && jwk.crv !== 'P-521') { throw new InvalidParametersError(`Unknown curve: ${jwk.crv}. Must be ${names}`) } const byteLen = curveLengths[jwk.crv] return uint8ArrayConcat([ Uint8Array.from([4]), // uncompressed point base64urlToBuffer(jwk.x, byteLen), base64urlToBuffer(jwk.y, byteLen) ], 1 + byteLen * 2) } /** * Unmarshal converts a point, serialized by Marshal, into an jwk encoded key */ function unmarshalPublicKey (curve: Curve, key: Uint8Array): JWKEncodedPublicKey { if (curve !== 'P-256' && curve !== 'P-384' && curve !== 'P-521') { throw new InvalidParametersError(`Unknown curve: ${curve}. Must be ${names}`) } const byteLen = curveLengths[curve] if (!uint8ArrayEquals(key.subarray(0, 1), Uint8Array.from([4]))) { throw new InvalidParametersError('Cannot unmarshal public key - invalid key format') } return { kty: 'EC', crv: curve, x: uint8ArrayToString(key.subarray(1, byteLen + 1), 'base64url'), y: uint8ArrayToString(key.subarray(1 + byteLen), 'base64url'), ext: true } } const unmarshalPrivateKey = (curve: Curve, key: ECDHKeyPair): JWKEncodedPrivateKey => ({ ...unmarshalPublicKey(curve, key.public), d: uint8ArrayToString(key.private, 'base64url') })