MatrixAI
diff --git a/‎test-keygen-webcrypto.ts‎
Lines changed: 358 additions & 6 deletions b/‎test-keygen-webcrypto.ts‎
Lines changed: 358 additions & 6 deletions
@@ -1,4 +1,20 @@
-import { webcrypto } from 'crypto';
+import type { X509Certificate } from '@peculiar/x509';
+import { Crypto } from '@peculiar/webcrypto';
+import * as x509 from '@peculiar/x509';
+
+/**
+ * WebCrypto polyfill from @peculiar/webcrypto
+ * This behaves differently with respect to Ed25519 keys
+ * See: https://github.com/PeculiarVentures/webcrypto/issues/55
+ */
+const webcrypto = new Crypto();
+
+/**
+ * Monkey patches the global crypto object polyfill
+ */
+globalThis.crypto = webcrypto;
+
+x509.cryptoProvider.set(webcrypto);
 
 async function generateKeyPairRSA(): Promise<{
   publicKey: JsonWebKey;
@@ -62,14 +78,15 @@ async function generateKeyPairEd25519(): Promise<{
 }> {
   const keyPair = await webcrypto.subtle.generateKey(
     {
-      name: 'ED25519',
+      name: 'EdDSA',
+      namedCurve: 'Ed25519'
     },
     true,
     [
       'sign',
       'verify'
     ]
-  ) as webcrypto.CryptoKeyPair;
+  ) as CryptoKeyPair;
   return {
     publicKey: await webcrypto.subtle.exportKey(
       'jwk',
@@ -82,10 +99,345 @@ async function generateKeyPairEd25519(): Promise<{
   };
 }
 
+/**
+ * Imports public key.
+ * This uses `@peculiar/webcrypto` API for Ed25519 keys.
+ */
+async function importPublicKey(publicKey: JsonWebKey): Promise<CryptoKey> {
+  let algorithm;
+  switch (publicKey.kty) {
+    case 'RSA':
+      switch(publicKey.alg) {
+        case 'RS256':
+          algorithm = {
+            name: 'RSASSA-PKCS1-v1_5',
+            hash: 'SHA-256'
+          };
+          break;
+        case 'RS384':
+          algorithm = {
+            name: 'RSASSA-PKCS1-v1_5',
+            hash: 'SHA-384'
+          };
+          break;
+        case 'RS512':
+          algorithm = {
+            name: 'RSASSA-PKCS1-v1_5',
+            hash: 'SHA-512'
+          };
+          break;
+        default:
+          throw new Error(`Unsupported algorithm ${publicKey.alg}`);
+      }
+      break;
+    case 'EC':
+      switch(publicKey.crv) {
+        case 'P-256':
+          algorithm = {
+            name: 'ECDSA',
+            namedCurve: 'P-256',
+          };
+          break;
+        case 'P-384':
+          algorithm = {
+            name: 'ECDSA',
+            namedCurve: 'P-384',
+          };
+          break;
+        case 'P-521':
+          algorithm = {
+            name: 'ECDSA',
+            namedCurve: 'P-521',
+          };
+          break;
+        default:
+          throw new Error(`Unsupported curve ${publicKey.crv}`);
+      }
+      break;
+    case 'OKP':
+      algorithm = {
+        name: 'EdDSA',
+        namedCurve: 'Ed25519',
+      };
+      break;
+    default:
+      throw new Error(`Unsupported key type ${publicKey.kty}`);
+  }
+  return await webcrypto.subtle.importKey(
+    'jwk',
+    publicKey,
+    algorithm,
+    true,
+    ['verify']
+  );
+}
+
+/**
+ * Imports private key.
+ * This uses `@peculiar/webcrypto` API for Ed25519 keys.
+ */
+async function importPrivateKey(privateKey: JsonWebKey): Promise<CryptoKey> {
+  let algorithm;
+  switch (privateKey.kty) {
+    case 'RSA':
+      switch(privateKey.alg) {
+        case 'RS256':
+          algorithm = {
+            name: 'RSASSA-PKCS1-v1_5',
+            hash: 'SHA-256'
+          };
+          break;
+        case 'RS384':
+          algorithm = {
+            name: 'RSASSA-PKCS1-v1_5',
+            hash: 'SHA-384'
+          };
+          break;
+        case 'RS512':
+          algorithm = {
+            name: 'RSASSA-PKCS1-v1_5',
+            hash: 'SHA-512'
+          };
+          break;
+        default:
+          throw new Error(`Unsupported algorithm ${privateKey.alg}`);
+      }
+      break;
+    case 'EC':
+      switch(privateKey.crv) {
+        case 'P-256':
+          algorithm = {
+            name: 'ECDSA',
+            namedCurve: 'P-256',
+          };
+          break;
+        case 'P-384':
+          algorithm = {
+            name: 'ECDSA',
+            namedCurve: 'P-384',
+          };
+          break;
+        case 'P-521':
+          algorithm = {
+            name: 'ECDSA',
+            namedCurve: 'P-521',
+          };
+          break;
+        default:
+          throw new Error(`Unsupported curve ${privateKey.crv}`);
+      }
+      break;
+    case 'OKP':
+      algorithm = {
+        name: 'EdDSA',
+        namedCurve: 'Ed25519',
+      };
+      break;
+    default:
+      throw new Error(`Unsupported key type ${privateKey.kty}`);
+  }
+  return await webcrypto.subtle.importKey(
+    'jwk',
+    privateKey,
+    algorithm,
+    true,
+    ['sign']
+  );
+}
+
+const extendedKeyUsageFlags = {
+  serverAuth: '1.3.6.1.5.5.7.3.1',
+  clientAuth: '1.3.6.1.5.5.7.3.2',
+  codeSigning: '1.3.6.1.5.5.7.3.3',
+  emailProtection: '1.3.6.1.5.5.7.3.4',
+  timeStamping: '1.3.6.1.5.5.7.3.8',
+  ocspSigning: '1.3.6.1.5.5.7.3.9',
+};
+
+/**
+ * Generate x509 certificate.
+ * Duration is in seconds.
+ * X509 certificates currently use `UTCTime` format for `notBefore` and `notAfter`.
+ * This means:
+ *   - Only second resolution.
+ *   - Minimum date for validity is 1970-01-01T00:00:00Z (inclusive).
+ *   - Maximum date for valdity is 2049-12-31T23:59:59Z (inclusive).
+ */
+async function generateCertificate({
+  certId,
+  subjectKeyPair,
+  issuerPrivateKey,
+  duration,
+  subjectAttrsExtra = [],
+  issuerAttrsExtra = [],
+  now = new Date(),
+}: {
+  certId: string;
+  subjectKeyPair: {
+    publicKey: JsonWebKey;
+    privateKey: JsonWebKey;
+  };
+  issuerPrivateKey: JsonWebKey;
+  duration: number;
+  subjectAttrsExtra?: Array<{ [key: string]: Array<string> }>;
+  issuerAttrsExtra?: Array<{ [key: string]: Array<string> }>;
+  now?: Date;
+}): Promise<X509Certificate> {
+  const certIdNum = parseInt(certId);
+  const iss = certIdNum === 0 ? certIdNum : certIdNum - 1;
+  const sub = certIdNum;
+  const subjectPublicCryptoKey = await importPublicKey(
+    subjectKeyPair.publicKey,
+  );
+  const subjectPrivateCryptoKey = await importPrivateKey(
+    subjectKeyPair.privateKey,
+  );
+  const issuerPrivateCryptoKey = await importPrivateKey(issuerPrivateKey);
+  if (duration < 0) {
+    throw new RangeError('`duration` must be positive');
+  }
+  // X509 `UTCTime` format only has resolution of seconds
+  // this truncates to second resolution
+  const notBeforeDate = new Date(now.getTime() - (now.getTime() % 1000));
+  const notAfterDate = new Date(now.getTime() - (now.getTime() % 1000));
+  // If the duration is 0, then only the `now` is valid
+  notAfterDate.setSeconds(notAfterDate.getSeconds() + duration);
+  if (notBeforeDate < new Date(0)) {
+    throw new RangeError(
+      '`notBeforeDate` cannot be before 1970-01-01T00:00:00Z',
+    );
+  }
+  if (notAfterDate > new Date(new Date('2050').getTime() - 1)) {
+    throw new RangeError('`notAfterDate` cannot be after 2049-12-31T23:59:59Z');
+  }
+  const serialNumber = certId;
+  // The entire subject attributes and issuer attributes
+  // is constructed via `x509.Name` class
+  // By default this supports on a limited set of names:
+  // CN, L, ST, O, OU, C, DC, E, G, I, SN, T
+  // If custom names are desired, this needs to change to constructing
+  // `new x509.Name('FOO=BAR', { FOO: '1.2.3.4' })` manually
+  // And each custom attribute requires a registered OID
+  // Because the OID is what is encoded into ASN.1
+  const subjectAttrs = [
+    {
+      CN: [`${sub}`],
+    },
+    // Filter out conflicting CN attributes
+    ...subjectAttrsExtra.filter((attr) => !('CN' in attr)),
+  ];
+  const issuerAttrs = [
+    {
+      CN: [`${iss}`],
+    },
+    // Filter out conflicting CN attributes
+    ...issuerAttrsExtra.filter((attr) => !('CN' in attr)),
+  ];
+  const signingAlgorithm: any = issuerPrivateCryptoKey.algorithm;
+  if (signingAlgorithm.name === 'ECDSA') {
+    switch(signingAlgorithm.namedCurve) {
+      case 'P-256':
+        signingAlgorithm.hash = 'SHA-256';
+        break;
+      case 'P-384':
+        signingAlgorithm.hash = 'SHA-384';
+        break;
+      case 'P-521':
+        signingAlgorithm.hash = 'SHA-512';
+        break;
+      default:
+        throw new TypeError(
+          `Issuer private key has an unsupported curve: ${signingAlgorithm.namedCurve}`
+        );
+    }
+  }
+  const certConfig = {
+    serialNumber,
+    notBefore: notBeforeDate,
+    notAfter: notAfterDate,
+    subject: subjectAttrs,
+    issuer: issuerAttrs,
+    signingAlgorithm,
+    publicKey: subjectPublicCryptoKey,
+    signingKey: subjectPrivateCryptoKey,
+    extensions: [
+      new x509.BasicConstraintsExtension(true, undefined, true),
+      new x509.KeyUsagesExtension(
+        x509.KeyUsageFlags.keyCertSign |
+          x509.KeyUsageFlags.cRLSign |
+          x509.KeyUsageFlags.digitalSignature |
+          x509.KeyUsageFlags.nonRepudiation |
+          x509.KeyUsageFlags.keyAgreement |
+          x509.KeyUsageFlags.keyEncipherment |
+          x509.KeyUsageFlags.dataEncipherment,
+        true,
+      ),
+      new x509.ExtendedKeyUsageExtension([
+        extendedKeyUsageFlags.serverAuth,
+        extendedKeyUsageFlags.clientAuth,
+        extendedKeyUsageFlags.codeSigning,
+        extendedKeyUsageFlags.emailProtection,
+        extendedKeyUsageFlags.timeStamping,
+        extendedKeyUsageFlags.ocspSigning,
+      ]),
+      await x509.SubjectKeyIdentifierExtension.create(subjectPublicCryptoKey),
+    ] as Array<x509.Extension>,
+  };
+  certConfig.signingKey = issuerPrivateCryptoKey;
+  return await x509.X509CertificateGenerator.create(certConfig);
+}
+
 async function main() {
-  console.log(await generateKeyPairRSA());
-  console.log(await generateKeyPairECDSA());
-  console.log(await generateKeyPairEd25519());
+  const keyPairRSA = await generateKeyPairRSA();
+  const keyPairECDSA = await generateKeyPairECDSA();
+  const keyPairEd25519 = await generateKeyPairEd25519();
+
+  console.log(keyPairRSA);
+  console.log(keyPairECDSA);
+  console.log(keyPairEd25519);
+
+  const publicKeyRSA = await importPublicKey(keyPairRSA.publicKey);
+  const publicKeyECDSA = await importPublicKey(keyPairECDSA.publicKey);
+  const publicKeyEd25519 = await importPublicKey(keyPairEd25519.publicKey);
+
+  console.log(publicKeyRSA);
+  console.log(publicKeyECDSA);
+  console.log(publicKeyEd25519);
+
+  const privateKeyRSA = await importPrivateKey(keyPairRSA.privateKey);
+  const privateKeyECDSA = await importPrivateKey(keyPairECDSA.privateKey);
+  const privateKeyEd25519 = await importPrivateKey(keyPairEd25519.privateKey);
+
+  console.log(privateKeyRSA);
+  console.log(privateKeyECDSA);
+  console.log(privateKeyEd25519);
+
+
+  const certRSA = await generateCertificate({
+    certId: '0',
+    subjectKeyPair: keyPairRSA,
+    issuerPrivateKey: keyPairRSA.privateKey,
+    duration: 60 * 60 * 24 * 365 * 10,
+  });
+
+  const certECDSA = await generateCertificate({
+    certId: '0',
+    subjectKeyPair: keyPairECDSA,
+    issuerPrivateKey: keyPairECDSA.privateKey,
+    duration: 60 * 60 * 24 * 365 * 10,
+  });
+
+  const certEd25519 = await generateCertificate({
+    certId: '0',
+    subjectKeyPair: keyPairEd25519,
+    issuerPrivateKey: keyPairEd25519.privateKey,
+    duration: 60 * 60 * 24 * 365 * 10,
+  });
+
+  console.log(certRSA);
+  console.log(certECDSA);
+  console.log(certEd25519);
+
 }
 
 void main();