UNPKG

ox

Version:

Ethereum Standard Library

wevm.dev

wevm/ox

62 lines 2.62 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
import { p256 } from '@noble/curves/p256'; import * as Registration from '../../webauthn/Registration.js'; import * as PublicKey from '../PublicKey.js'; /** * Parses an ASN.1 signature into a r and s value. * * @internal */ export function parseAsn1Signature(bytes) { const sig = p256.Signature.fromDER(bytes).normalizeS(); return { r: sig.r, s: sig.s }; } /** * Parses a public key into x and y coordinates from the public key * defined on the credential. * * @internal */ export async function parseCredentialPublicKey(response, /** Pre-cloned attestationObject to use in the fallback path, avoiding * cross-origin access on the proxy response object. */ attestationObject) { try { const publicKeyBuffer = response.getPublicKey(); if (!publicKeyBuffer) throw new Registration.CreateFailedError(); // Converting `publicKeyBuffer` throws when credential is created by 1Password Firefox Add-on const publicKeyBytes = new Uint8Array(publicKeyBuffer); const cryptoKey = await crypto.subtle.importKey('spki', new Uint8Array(publicKeyBytes), { name: 'ECDSA', namedCurve: 'P-256', hash: 'SHA-256', }, true, ['verify']); const publicKey = new Uint8Array(await crypto.subtle.exportKey('raw', cryptoKey)); return PublicKey.from(publicKey); } catch (error) { // Fallback for 1Password Firefox Add-on restricts access to certain credential properties // so we need to use `attestationObject` to extract the public key. // https://github.com/passwordless-id/webauthn/issues/50#issuecomment-2072902094 if (error.message !== 'Permission denied to access object') throw error; const data = new Uint8Array(attestationObject ?? response.attestationObject); const coordinateLength = 0x20; const cborPrefix = 0x58; const findStart = (key) => { const coordinate = new Uint8Array([key, cborPrefix, coordinateLength]); for (let i = 0; i < data.length - coordinate.length; i++) if (coordinate.every((byte, j) => data[i + j] === byte)) return i + coordinate.length; throw new Registration.CreateFailedError(); }; const xStart = findStart(0x21); const yStart = findStart(0x22); return PublicKey.from(new Uint8Array([ 0x04, ...data.slice(xStart, xStart + coordinateLength), ...data.slice(yStart, yStart + coordinateLength), ])); } } //# sourceMappingURL=webauthn.js.map