UNPKG

crypto-key-composer

Version:

A library to decompose and compose crypto keys of different types and formats

github.com/ipfs-shipyard/js-crypto-key-composer

ipfs-shipyard/js-crypto-key-composer

134 lines (109 loc) 3.52 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
import { maybeDecryptPemBody, maybeEncryptPemBody } from './encryption'; import { decomposeRawPrivateKey, composeRawPrivateKey, decomposeRawPublicKey, composeRawPublicKey } from './keys'; import { uint8ArrayToBinaryString, binaryStringToUint8Array } from '../../util/binary'; import { decodePem, encodePem } from '../../util/pem-encoder'; import { DecodePemFailedError, UnsupportedAlgorithmError } from '../../util/errors'; import { KEY_TYPES } from '../../util/key-types'; const getKeyType = pemType => { const match = /^(\S+?) (PUBLIC|PRIVATE) KEY$/.exec(pemType); return match && match[1].toLocaleLowerCase(); }; const getPemType = keyAlgorithm => { const keyType = KEY_TYPES[keyAlgorithm.id]; return keyType && keyType.toUpperCase(); }; export const decomposePrivateKey = (pem, options) => { let decodedPem; try { decodedPem = decodePem(pem, '* PRIVATE KEY'); } catch (err) { err.invalidInputKey = err instanceof DecodePemFailedError; throw err; } // Decrypt pem if encrypted const { pemBody, encryptionAlgorithm } = maybeDecryptPemBody(decodedPem, options.password); // Extract the key type from it const keyType = getKeyType(decodedPem.type); /* istanbul ignore if */ if (!keyType) { throw new DecodePemFailedError('Unable to extract key type from PEM', { invalidInputKey: true }); } // Finally decompose the key within it const { keyAlgorithm, keyData } = decomposeRawPrivateKey(keyType, pemBody); return { format: 'raw-pem', keyAlgorithm, keyData, encryptionAlgorithm }; }; export const composePrivateKey = ({ keyAlgorithm, keyData, encryptionAlgorithm }, options) => { // Compose the key const rawKey = composeRawPrivateKey(keyAlgorithm, keyData); // Extract the pem type const pemKeyType = getPemType(keyAlgorithm); /* istanbul ignore if */ if (!pemKeyType) { throw new UnsupportedAlgorithmError('Unable to extract pem type from key algorithm'); } // Encrypt pem if password was specified const { pemBody, pemHeaders } = maybeEncryptPemBody(rawKey, encryptionAlgorithm, options.password); // Finally build pem return encodePem({ type: `${pemKeyType} PRIVATE KEY`, body: uint8ArrayToBinaryString(pemBody), ...pemHeaders }); }; export const decomposePublicKey = pem => { // Decode pem let decodedPem; try { decodedPem = decodePem(pem); } catch (err) { err.invalidInputKey = err instanceof DecodePemFailedError; throw err; } // Extract the key type from it const keyType = getKeyType(decodedPem.type); /* istanbul ignore if */ if (!keyType) { throw new DecodePemFailedError('Unable to extract key type from PEM', { invalidInputKey: true }); } // Finally decompose the key within it const pemBody = binaryStringToUint8Array(decodedPem.body); const { keyAlgorithm, keyData } = decomposeRawPublicKey(keyType, pemBody); return { format: 'raw-pem', keyAlgorithm, keyData }; }; export const composePublicKey = ({ keyAlgorithm, keyData }) => { // Compose the key const rawKey = composeRawPublicKey(keyAlgorithm, keyData); // Extract the pem type const pemKeyType = getPemType(keyAlgorithm); /* istanbul ignore if */ if (!pemKeyType) { throw new UnsupportedAlgorithmError('Unable to extract pem type from key algorithm'); } // Finally build pem return encodePem({ type: `${pemKeyType} PUBLIC KEY`, body: uint8ArrayToBinaryString(rawKey) }); };