UNPKG

vouchsafe

Version:

Vouchsafe Decentralized Identity and Trust Verification module

github.com/ionzero/vouchsafe

ionzero/vouchsafe-js

75 lines (60 loc) 2.35 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
'use strict'; async function generateKeyPair() { const keyPair = await crypto.subtle.generateKey({ name: 'Ed25519', namedCurve: 'Ed25519' }, true, ['sign', 'verify'] ); const publicKey = await crypto.subtle.exportKey('spki', keyPair.publicKey); const privateKey = await crypto.subtle.exportKey('pkcs8', keyPair.privateKey); return { publicKey, privateKey }; } async function sign(data, privateKeyPkcs8) { const key = await crypto.subtle.importKey( 'pkcs8', privateKeyPkcs8, { name: 'Ed25519' }, false, ['sign']); return await crypto.subtle.sign({ name: 'Ed25519' }, key, data); } async function verify(data, signature, publicKeyRaw) { const key = await crypto.subtle.importKey( 'raw', publicKeyRaw, { name: 'Ed25519' }, false, ['verify']); return await crypto.subtle.verify({ name: 'Ed25519' }, key, signature, data); } async function sha256(data) { return await crypto.subtle.digest('SHA-256', data); } async function sha512(data) { return await crypto.subtle.digest('SHA-512', data); } async function getKeyBytes(type, base64Der) { const der = Uint8Array.from(atob(base64Der), c => c.charCodeAt(0)); try { let key; let raw; if (type === 'public') { key = await crypto.subtle.importKey( 'spki', der.buffer, { name: 'Ed25519' }, true, ['verify']); raw = new Uint8Array(await crypto.subtle.exportKey('raw', key)); if (raw.length !== 32) { throw new Error('Public key must be 32 bytes'); } } else if (type === 'private') { key = await crypto.subtle.importKey( 'pkcs8', der.buffer, { name: 'Ed25519' }, true, ['sign']); raw = new Uint8Array(await crypto.subtle.exportKey('pkcs8', key)); if (raw.length < 64) { throw new Error('Private key DER structure is too short'); } } else { throw new Error(`Unsupported key type: ${type}`); } return raw; } catch (err) { throw new Error(`Invalid Ed25519 ${type} key (browser): ${err.message}`); } } exports.generateKeyPair = generateKeyPair; exports.getKeyBytes = getKeyBytes; exports.sha256 = sha256; exports.sha512 = sha512; exports.sign = sign; exports.verify = verify;