UNPKG

cose-kit

Version:

**DEPRECATED:** Use [@auth0/cose](https://www.npmjs.com/package/@auth0/cose).

github.com/jfromaniello/cose-kit

jfromaniello/cose-kit

117 lines (116 loc) 5.26 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
"use strict"; var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) { if (k2 === undefined) k2 = k; var desc = Object.getOwnPropertyDescriptor(m, k); if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) { desc = { enumerable: true, get: function() { return m[k]; } }; } Object.defineProperty(o, k2, desc); }) : (function(o, m, k, k2) { if (k2 === undefined) k2 = k; o[k2] = m[k]; })); var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) { Object.defineProperty(o, "default", { enumerable: true, value: v }); }) : function(o, v) { o["default"] = v; }); var __importStar = (this && this.__importStar) || function (mod) { if (mod && mod.__esModule) return mod; var result = {}; if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k); __setModuleDefault(result, mod); return result; }; var __importDefault = (this && this.__importDefault) || function (mod) { return (mod && mod.__esModule) ? mod : { "default": mod }; }; Object.defineProperty(exports, "__esModule", { value: true }); exports.Mac0 = void 0; const verify_js_1 = __importDefault(require("#runtime/verify.js")); const sign_js_1 = __importDefault(require("#runtime/sign.js")); const cbor_js_1 = require("../cbor.js"); const COSEBase_js_1 = require("./COSEBase.js"); const headers_js_1 = require("../headers.js"); const buffer_utils_js_1 = require("../lib/buffer_utils.js"); const errors = __importStar(require("../util/errors.js")); const validate_algorithms_js_1 = __importDefault(require("../lib/validate_algorithms.js")); const decode_js_1 = require("./decode.js"); class Mac0 extends COSEBase_js_1.COSEBase { constructor(protectedHeaders, unprotectedHeaders, payload, tag) { super(protectedHeaders, unprotectedHeaders); this.payload = payload; this.tag = tag; } static createMAC0(protectedHeaders, applicationHeaders, payload) { return cbor_js_1.encoder.encode([ 'MAC0', protectedHeaders, applicationHeaders, payload, ]); } getContentForEncoding() { return [ this.encodedProtectedHeaders, this.unprotectedHeaders, this.payload, this.tag, ]; } async verify(key, options) { var _a, _b; const mac0Structure = Mac0.createMAC0(this.encodedProtectedHeaders || new Uint8Array(), (_a = options === null || options === void 0 ? void 0 : options.externalAAD) !== null && _a !== void 0 ? _a : new Uint8Array(), (_b = options === null || options === void 0 ? void 0 : options.detachedPayload) !== null && _b !== void 0 ? _b : this.payload); if (!this.alg || !this.algName || !headers_js_1.MacAlgorithmNames.has(this.alg)) { throw new errors.COSEInvalid(`Unsupported MAC algorithm ${this.alg}`); } const algorithms = options && (0, validate_algorithms_js_1.default)('algorithms', options.algorithms); if (algorithms && !algorithms.has(this.alg)) { throw new errors.COSEAlgNotAllowed(`[${headers_js_1.Headers.Algorithm}] (algorithm) Header Parameter not allowed`); } const isValid = await (0, verify_js_1.default)(this.algName, key, this.tag, mac0Structure); if (!isValid) { throw new errors.COSESignatureVerificationFailed('MAC0 signature verification failed'); } } get alg() { return this.protectedHeaders.get(headers_js_1.Headers.Algorithm) || this.unprotectedHeaders.get(headers_js_1.Headers.Algorithm); } get algName() { return this.alg ? headers_js_1.MacAlgorithmNames.get(this.alg) : undefined; } hasSupportedAlg() { return !!this.algName; } areEqual(mac0) { return (0, buffer_utils_js_1.areEqual)(this.tag, mac0.tag); } static async create(protectedHeaders, unprotectedHeaders, payload, key) { const wProtectedHeaders = headers_js_1.MacProtectedHeaders.wrap(protectedHeaders); const alg = headers_js_1.MacAlgorithmNames.get(wProtectedHeaders.get(headers_js_1.Headers.Algorithm)); const encodedProtectedHeaders = cbor_js_1.encoder.encode(wProtectedHeaders.esMap); const wUnprotectedHeaders = headers_js_1.UnprotectedHeaders.wrap(unprotectedHeaders); const toBeSigned = Mac0.createMAC0(encodedProtectedHeaders, new Uint8Array(), payload); if (!alg) { throw new Error(`The [${headers_js_1.Headers.Algorithm}] (Algorithm) header must be set.`); } const tag = await (0, sign_js_1.default)(alg, key, toBeSigned); return new Mac0(encodedProtectedHeaders, wUnprotectedHeaders.esMap, payload, tag); } static decode(cose) { return (0, decode_js_1.decode)(cose, Mac0); } } exports.Mac0 = Mac0; Mac0.tag = 17; (0, cbor_js_1.addExtension)({ Class: Mac0, tag: Mac0.tag, encode(instance, encodeFn) { return encodeFn(instance.getContentForEncoding()); }, decode: (data) => { return new Mac0(data[0], data[1], data[2], data[3]); } });