UNPKG

ts-mls

Version:

[![CI](https://github.com/LukaJCB/ts-mls/actions/workflows/ci.yml/badge.svg)](https://github.com/LukaJCB/ts-mls/actions/workflows/ci.yml) [![npm version](https://badge.fury.io/js/ts-mls.svg)](https://badge.fury.io/js/ts-mls) [![Coverage Status](https://co

github.com/LukaJCB/ts-mls

LukaJCB/ts-mls

123 lines 5.96 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
import { decodeUint64, uint64Encoder } from "./codec/number.js"; import { mapDecoders } from "./codec/tlsDecoder.js"; import { contramapBufferEncoders, encode } from "./codec/tlsEncoder.js"; import { decodeVarLenData, varLenDataEncoder } from "./codec/variableLength.js"; import { decodeCommit, commitEncoder } from "./commit.js"; import { contentTypeEncoder, decodeContentType } from "./contentType.js"; import { decodeFramedContentAuthDataCommit, framedContentAuthDataEncoder, } from "./framedContent.js"; import { byteLengthToPad } from "./paddingConfig.js"; import { decodeProposal, proposalEncoder } from "./proposal.js"; import { decodeSenderData, senderDataEncoder, senderDataAADEncoder, expandSenderDataKey, expandSenderDataNonce, } from "./sender.js"; export const privateMessageEncoder = contramapBufferEncoders([varLenDataEncoder, uint64Encoder, contentTypeEncoder, varLenDataEncoder, varLenDataEncoder, varLenDataEncoder], (msg) => [msg.groupId, msg.epoch, msg.contentType, msg.authenticatedData, msg.encryptedSenderData, msg.ciphertext]); export const encodePrivateMessage = encode(privateMessageEncoder); export const decodePrivateMessage = mapDecoders([decodeVarLenData, decodeUint64, decodeContentType, decodeVarLenData, decodeVarLenData, decodeVarLenData], (groupId, epoch, contentType, authenticatedData, encryptedSenderData, ciphertext) => ({ groupId, epoch, contentType, authenticatedData, encryptedSenderData, ciphertext, })); export const privateContentAADEncoder = contramapBufferEncoders([varLenDataEncoder, uint64Encoder, contentTypeEncoder, varLenDataEncoder], (aad) => [aad.groupId, aad.epoch, aad.contentType, aad.authenticatedData]); export const encodePrivateContentAAD = encode(privateContentAADEncoder); export const decodePrivateContentAAD = mapDecoders([decodeVarLenData, decodeUint64, decodeContentType, decodeVarLenData], (groupId, epoch, contentType, authenticatedData) => ({ groupId, epoch, contentType, authenticatedData, })); export function decodePrivateMessageContent(contentType) { switch (contentType) { case "application": return decoderWithPadding(mapDecoders([decodeVarLenData, decodeVarLenData], (applicationData, signature) => ({ contentType, applicationData, auth: { contentType, signature }, }))); case "proposal": return decoderWithPadding(mapDecoders([decodeProposal, decodeVarLenData], (proposal, signature) => ({ contentType, proposal, auth: { contentType, signature }, }))); case "commit": return decoderWithPadding(mapDecoders([decodeCommit, decodeVarLenData, decodeFramedContentAuthDataCommit], (commit, signature, auth) => ({ contentType, commit, auth: { ...auth, signature, contentType }, }))); } } export function privateMessageContentEncoder(config) { return (msg) => { switch (msg.contentType) { case "application": return encoderWithPadding(contramapBufferEncoders([varLenDataEncoder, framedContentAuthDataEncoder], (m) => [m.applicationData, m.auth]), config)(msg); case "proposal": return encoderWithPadding(contramapBufferEncoders([proposalEncoder, framedContentAuthDataEncoder], (m) => [m.proposal, m.auth]), config)(msg); case "commit": return encoderWithPadding(contramapBufferEncoders([commitEncoder, framedContentAuthDataEncoder], (m) => [m.commit, m.auth]), config)(msg); } }; } export function encodePrivateMessageContent(config) { return encode(privateMessageContentEncoder(config)); } export async function decryptSenderData(msg, senderDataSecret, cs) { const key = await expandSenderDataKey(cs, senderDataSecret, msg.ciphertext); const nonce = await expandSenderDataNonce(cs, senderDataSecret, msg.ciphertext); const aad = { groupId: msg.groupId, epoch: msg.epoch, contentType: msg.contentType, }; const decrypted = await cs.hpke.decryptAead(key, nonce, encode(senderDataAADEncoder)(aad), msg.encryptedSenderData); return decodeSenderData(decrypted, 0)?.[0]; } export async function encryptSenderData(senderDataSecret, senderData, aad, ciphertext, cs) { const key = await expandSenderDataKey(cs, senderDataSecret, ciphertext); const nonce = await expandSenderDataNonce(cs, senderDataSecret, ciphertext); return await cs.hpke.encryptAead(key, nonce, encode(senderDataAADEncoder)(aad), encode(senderDataEncoder)(senderData)); } export function toAuthenticatedContent(content, msg, senderLeafIndex) { return { wireformat: "mls_private_message", content: { groupId: msg.groupId, epoch: msg.epoch, sender: { senderType: "member", leafIndex: senderLeafIndex, }, authenticatedData: msg.authenticatedData, ...content, }, auth: content.auth, }; } function encoderWithPadding(encoder, config) { return (t) => { const [len, write] = encoder(t); const totalLength = len + byteLengthToPad(len, config); return [ totalLength, (offset, buffer) => { write(offset, buffer); }, ]; }; } function decoderWithPadding(decoder) { return (bytes, offset) => { const result = decoder(bytes, offset); if (result === undefined) return undefined; const [decoded, innerOffset] = result; const paddingBytes = bytes.subarray(offset + innerOffset, bytes.length); const allZeroes = paddingBytes.every((byte) => byte === 0); if (!allZeroes) return undefined; return [decoded, bytes.length]; }; } //# sourceMappingURL=privateMessage.js.map