33 lines
1.4 KiB
JavaScript
33 lines
1.4 KiB
JavaScript
|
import bogusWebCrypto from './bogus.js';
|
||
|
|
import crypto, { isCryptoKey } from './webcrypto.js';
|
||
|
|
import { checkEncCryptoKey } from '../lib/crypto_key.js';
|
||
|
|
import invalidKeyInput from '../lib/invalid_key_input.js';
|
||
|
|
import { types } from './is_key_like.js';
|
||
|
|
function checkKeySize(key, alg) {
|
||
|
|
if (key.algorithm.length !== parseInt(alg.slice(1, 4), 10)) {
|
||
|
|
throw new TypeError(`Invalid key size for alg: ${alg}`);
|
||
|
|
}
|
||
|
|
}
|
||
|
|
function getCryptoKey(key, alg, usage) {
|
||
|
|
if (isCryptoKey(key)) {
|
||
|
|
checkEncCryptoKey(key, alg, usage);
|
||
|
|
return key;
|
||
|
|
}
|
||
|
|
if (key instanceof Uint8Array) {
|
||
|
|
return crypto.subtle.importKey('raw', key, 'AES-KW', true, [usage]);
|
||
|
|
}
|
||
|
|
throw new TypeError(invalidKeyInput(key, ...types, 'Uint8Array'));
|
||
|
|
}
|
||
|
|
export const wrap = async (alg, key, cek) => {
|
||
|
|
const cryptoKey = await getCryptoKey(key, alg, 'wrapKey');
|
||
|
|
checkKeySize(cryptoKey, alg);
|
||
|
|
const cryptoKeyCek = await crypto.subtle.importKey('raw', cek, ...bogusWebCrypto);
|
||
|
|
return new Uint8Array(await crypto.subtle.wrapKey('raw', cryptoKeyCek, cryptoKey, 'AES-KW'));
|
||
|
|
};
|
||
|
|
export const unwrap = async (alg, key, encryptedKey) => {
|
||
|
|
const cryptoKey = await getCryptoKey(key, alg, 'unwrapKey');
|
||
|
|
checkKeySize(cryptoKey, alg);
|
||
|
|
const cryptoKeyCek = await crypto.subtle.unwrapKey('raw', encryptedKey, cryptoKey, 'AES-KW', ...bogusWebCrypto);
|
||
|
|
return new Uint8Array(await crypto.subtle.exportKey('raw', cryptoKeyCek));
|
||
|
|
};
|