UNPKG

ox

Version:

Ethereum Standard Library

wevm.dev

wevm/ox

84 lines (75 loc) 2.77 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
import { p256 } from '@noble/curves/p256' import * as Registration from '../../webauthn/Registration.js' import type * as Errors from '../Errors.js' import * as PublicKey from '../PublicKey.js' /** * Parses an ASN.1 signature into a r and s value. * * @internal */ export function parseAsn1Signature(bytes: Uint8Array) { const sig = p256.Signature.fromDER(bytes).normalizeS() return { r: sig.r, s: sig.s } } /** * Parses a public key into x and y coordinates from the public key * defined on the credential. * * @internal */ export async function parseCredentialPublicKey( response: AuthenticatorAttestationResponse, /** Pre-cloned attestationObject to use in the fallback path, avoiding * cross-origin access on the proxy response object. */ attestationObject?: ArrayBuffer | ArrayBufferLike, ): Promise<PublicKey.PublicKey> { try { const publicKeyBuffer = response.getPublicKey() if (!publicKeyBuffer) throw new Registration.CreateFailedError() // Converting `publicKeyBuffer` throws when credential is created by 1Password Firefox Add-on const publicKeyBytes = new Uint8Array(publicKeyBuffer) const cryptoKey = await crypto.subtle.importKey( 'spki', new Uint8Array(publicKeyBytes), { name: 'ECDSA', namedCurve: 'P-256', hash: 'SHA-256', }, true, ['verify'], ) const publicKey = new Uint8Array( await crypto.subtle.exportKey('raw', cryptoKey), ) return PublicKey.from(publicKey) } catch (error) { // Fallback for 1Password Firefox Add-on restricts access to certain credential properties // so we need to use `attestationObject` to extract the public key. // https://github.com/passwordless-id/webauthn/issues/50#issuecomment-2072902094 if ((error as Error).message !== 'Permission denied to access object') throw error const data = new Uint8Array(attestationObject ?? response.attestationObject) const coordinateLength = 0x20 const cborPrefix = 0x58 const findStart = (key: number) => { const coordinate = new Uint8Array([key, cborPrefix, coordinateLength]) for (let i = 0; i < data.length - coordinate.length; i++) if (coordinate.every((byte, j) => data[i + j] === byte)) return i + coordinate.length throw new Registration.CreateFailedError() } const xStart = findStart(0x21) const yStart = findStart(0x22) return PublicKey.from( new Uint8Array([ 0x04, ...data.slice(xStart, xStart + coordinateLength), ...data.slice(yStart, yStart + coordinateLength), ]), ) } } export declare namespace parseCredentialPublicKey { type ErrorType = Registration.CreateFailedError | Errors.GlobalErrorType }