astro-ghostcms/.pnpm-store/v3/files/49/cd6e031662ef51962620ceafb85...

import { Buffer } from 'node:buffer';
import { KeyObject, createDecipheriv, createCipheriv, createSecretKey } from 'node:crypto';
import { JOSENotSupported } from '../util/errors.js';
import { concat } from '../lib/buffer_utils.js';
import { isCryptoKey } from './webcrypto.js';
import { checkEncCryptoKey } from '../lib/crypto_key.js';
import isKeyObject from './is_key_object.js';
import invalidKeyInput from '../lib/invalid_key_input.js';
import supported from './ciphers.js';
import { types } from './is_key_like.js';
function checkKeySize(key, alg) {
    if (key.symmetricKeySize << 3 !== parseInt(alg.slice(1, 4), 10)) {
        throw new TypeError(`Invalid key size for alg: ${alg}`);
    }
}
function ensureKeyObject(key, alg, usage) {
    if (isKeyObject(key)) {
        return key;
    }
    if (key instanceof Uint8Array) {
        return createSecretKey(key);
    }
    if (isCryptoKey(key)) {
        checkEncCryptoKey(key, alg, usage);
        return KeyObject.from(key);
    }
    throw new TypeError(invalidKeyInput(key, ...types, 'Uint8Array'));
}
export const wrap = (alg, key, cek) => {
    const size = parseInt(alg.slice(1, 4), 10);
    const algorithm = `aes${size}-wrap`;
    if (!supported(algorithm)) {
        throw new JOSENotSupported(`alg ${alg} is not supported either by JOSE or your javascript runtime`);
    }
    const keyObject = ensureKeyObject(key, alg, 'wrapKey');
    checkKeySize(keyObject, alg);
    const cipher = createCipheriv(algorithm, keyObject, Buffer.alloc(8, 0xa6));
    return concat(cipher.update(cek), cipher.final());
};
export const unwrap = (alg, key, encryptedKey) => {
    const size = parseInt(alg.slice(1, 4), 10);
    const algorithm = `aes${size}-wrap`;
    if (!supported(algorithm)) {
        throw new JOSENotSupported(`alg ${alg} is not supported either by JOSE or your javascript runtime`);
    }
    const keyObject = ensureKeyObject(key, alg, 'unwrapKey');
    checkKeySize(keyObject, alg);
    const cipher = createDecipheriv(algorithm, keyObject, Buffer.alloc(8, 0xa6));
    return concat(cipher.update(encryptedKey), cipher.final());
};
chore: update versions 2024-02-14 14:10:47 +00:00			`import { Buffer } from 'node:buffer';`
			`import { KeyObject, createDecipheriv, createCipheriv, createSecretKey } from 'node:crypto';`
			`import { JOSENotSupported } from '../util/errors.js';`
			`import { concat } from '../lib/buffer_utils.js';`
			`import { isCryptoKey } from './webcrypto.js';`
			`import { checkEncCryptoKey } from '../lib/crypto_key.js';`
			`import isKeyObject from './is_key_object.js';`
			`import invalidKeyInput from '../lib/invalid_key_input.js';`
			`import supported from './ciphers.js';`
			`import { types } from './is_key_like.js';`
			`function checkKeySize(key, alg) {`
			`if (key.symmetricKeySize << 3 !== parseInt(alg.slice(1, 4), 10)) {`
			throw new TypeError(`Invalid key size for alg: ${alg}`);
			`}`
			`}`
			`function ensureKeyObject(key, alg, usage) {`
			`if (isKeyObject(key)) {`
			`return key;`
			`}`
			`if (key instanceof Uint8Array) {`
			`return createSecretKey(key);`
			`}`
			`if (isCryptoKey(key)) {`
			`checkEncCryptoKey(key, alg, usage);`
			`return KeyObject.from(key);`
			`}`
			`throw new TypeError(invalidKeyInput(key, ...types, 'Uint8Array'));`
			`}`
			`export const wrap = (alg, key, cek) => {`
			`const size = parseInt(alg.slice(1, 4), 10);`
			const algorithm = `aes${size}-wrap`;
			`if (!supported(algorithm)) {`
			throw new JOSENotSupported(`alg ${alg} is not supported either by JOSE or your javascript runtime`);
			`}`
			`const keyObject = ensureKeyObject(key, alg, 'wrapKey');`
			`checkKeySize(keyObject, alg);`
			`const cipher = createCipheriv(algorithm, keyObject, Buffer.alloc(8, 0xa6));`
			`return concat(cipher.update(cek), cipher.final());`
			`};`
			`export const unwrap = (alg, key, encryptedKey) => {`
			`const size = parseInt(alg.slice(1, 4), 10);`
			const algorithm = `aes${size}-wrap`;
			`if (!supported(algorithm)) {`
			throw new JOSENotSupported(`alg ${alg} is not supported either by JOSE or your javascript runtime`);
			`}`
			`const keyObject = ensureKeyObject(key, alg, 'unwrapKey');`
			`checkKeySize(keyObject, alg);`
			`const cipher = createDecipheriv(algorithm, keyObject, Buffer.alloc(8, 0xa6));`
			`return concat(cipher.update(encryptedKey), cipher.final());`
			`};`