UNPKG

@veramo/did-comm

Version:

Veramo messaging plugin implementing DIDComm v2.

github.com/decentralized-identity/veramo

decentralized-identity/veramo

101 lines (95 loc) 2.97 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
import { AuthEncryptParams, ContentEncrypter, ECDH, Encrypter, EncryptionResult, EphemeralKeyPair, genX25519EphemeralKeyPair, KekCreator, KeyWrapper, ProtectedHeader, Recipient, } from 'did-jwt' import { bytesToBase64url } from '@veramo/utils' import { randomBytes } from '@noble/hashes/utils' /** * Compute the length of the content encryption key based on the algorithm. * Only considering the algorithms known to did-comm. * @param enc */ const cekLength = (enc: string) => { switch (enc) { case 'A256CBC-HS512': return 512 case 'A256GCM': case 'XC20P': return 256 default: return 256 } } // duplicate of the method from did-jwt, where the Content Encryption key length is assumed to be 256 bits export function createFullEncrypter( recipientPublicKey: Uint8Array, senderSecret: Uint8Array | ECDH | undefined, options: Partial<AuthEncryptParams> = {}, kekCreator: KekCreator, keyWrapper: KeyWrapper, contentEncrypter: ContentEncrypter, ): Encrypter { async function encryptCek(cek: Uint8Array, ephemeralKeyPair?: EphemeralKeyPair): Promise<Recipient> { const { epk, kek } = await kekCreator.createKek( recipientPublicKey, senderSecret, `${kekCreator.alg}+${keyWrapper.alg}`, options.apu, options.apv, ephemeralKeyPair, ) const res = await keyWrapper.from(kek).wrap(cek) const recipient: Recipient = { encrypted_key: bytesToBase64url(res.ciphertext), header: {}, } if (res.iv) recipient.header.iv = bytesToBase64url(res.iv) if (res.tag) recipient.header.tag = bytesToBase64url(res.tag) if (options.kid) recipient.header.kid = options.kid if (options.apu) recipient.header.apu = options.apu if (options.apv) recipient.header.apv = options.apv if (!ephemeralKeyPair) { recipient.header.alg = `${kekCreator.alg}+${keyWrapper.alg}` recipient.header.epk = epk } return recipient } async function encrypt( cleartext: Uint8Array, protectedHeader: ProtectedHeader = {}, aad?: Uint8Array, ephemeralKeyPair?: EphemeralKeyPair, ): Promise<EncryptionResult> { // we won't want alg to be set to dir from xc20pDirEncrypter Object.assign(protectedHeader, { alg: undefined }) // Content Encryption Key const cek = randomBytes(cekLength(contentEncrypter.enc) >> 3) const recipient: Recipient = await encryptCek(cek, ephemeralKeyPair) // getting an ephemeral key means the epk is set only once per all recipients if (ephemeralKeyPair) { protectedHeader.alg = `${kekCreator.alg}+${keyWrapper.alg}` protectedHeader.epk = ephemeralKeyPair.publicKeyJWK } return { ...(await contentEncrypter.from(cek).encrypt(cleartext, protectedHeader, aad)), recipient, cek, } } return { alg: keyWrapper.alg, enc: contentEncrypter.enc, encrypt, encryptCek, genEpk: genX25519EphemeralKeyPair, } }