Add examples for wrapKey

Will Bamberg · Will Bamberg · commit 952590a38fe7 · 2019-01-04T17:16:33.000-08:00
diff --git a/web-crypto/wrap-key/index.html b/web-crypto/wrap-key/index.html
@@ -0,0 +1,52 @@
+<!DOCTYPE html>
+<html>
+  <head>
+    <meta charset="utf-8">
+    <title>Web Crypto API example</title>
+    <link rel="stylesheet" href="style.css">
+  </head>
+
+  <body>
+    <main>
+      <h1>Web Crypto: wrapKey</h1>
+
+      <section class="description">
+        <p>This page shows the use of the <code>wrapKey()</code> function of the <a href="https://developer.mozilla.org/en-US/docs/Web/API/Web_Crypto_API">Web Crypto API</a>.</p>
+        <p>On page load, it generates four keys:</p>
+        <ul>
+          <li>An AES-GCM secret key</li>
+          <li>An RSA-PSS signing key pair</li>
+          <li>An RSA-OAEP encryption key pair</li>
+          <li>An ECDSA signing key pair</li>
+        </ul>
+        <p>It provides four buttons across the top:</p>
+        <ul>
+          <li>Wrap the AES-GCM key in raw format</li>
+          <li>Wrap the RSA-PSS private key in PKCS #8 format</li>
+          <li>Wrap the RSA-OAEP public key in SubjectPublicKeyInfo format</li>
+          <li>Wrap the ECDSA private key in JWK format</li>
+        </ul>
+        <p>"Wrapping" a key essentially means exporting it in an encrypted form. So in all four cases, when you click the button you'll be asked for a password, and we will derive a symmetric key from the password, which we will use to encrypt the key after it is exported.</p>
+        <p>The exported, encrypted key is written to the area below the buttons.</p>
+      </section>
+
+      <section class="examples">
+        <section class="buttons">
+          <input class="raw wrap-key-button" type="button" value="Wrap AES-GCM key as raw">
+          <input class="pkcs8 wrap-key-button" type="button" value="Wrap RSA-PSS key as PKCS #8">
+          <input class="spki wrap-key-button" type="button" value="Wrap RSA-OAEP key as SPKI">
+          <input class="jwk wrap-key-button" type="button" value="Wrap ECDSA key as JWK">
+        </section>
+        <section class="output">
+          <pre class="wrapped-key"></pre>
+        </section>
+      </section>
+
+    </main>
+
+  </body>
+  <script src="raw.js"></script>
+  <script src="pkcs8.js"></script>
+  <script src="spki.js"></script>
+  <script src="jwk.js"></script>
+</html>
diff --git a/web-crypto/wrap-key/jwk.js b/web-crypto/wrap-key/jwk.js
@@ -0,0 +1,90 @@
+(() => {
+
+  let salt;
+  let iv;
+
+  /*
+  Get some key material to use as input to the deriveKey method.
+  The key material is a password supplied by the user.
+  */
+  function getKeyMaterial() {
+    let password = window.prompt("Enter your password");
+    let enc = new TextEncoder();
+    return window.crypto.subtle.importKey(
+      "raw", 
+      enc.encode(password), 
+      {name: "PBKDF2"}, 
+      false, 
+      ["deriveBits", "deriveKey"]
+    );
+  }
+
+  /*
+  Given some key material and some random salt
+  derive an AES-GCM key using PBKDF2.
+  */
+  function getKey(keyMaterial, salt) {
+    return window.crypto.subtle.deriveKey(
+      {
+        "name": "PBKDF2",
+        salt: salt, 
+        "iterations": 100000,
+        "hash": "SHA-256"
+      },
+      keyMaterial,
+      { "name": "AES-GCM", "length": 256},
+      true,
+      [ "wrapKey", "unwrapKey" ]
+    );
+  }
+
+  /*
+  Wrap the given key and write it into the "wrapped-key" space.
+  */
+  async function wrapCryptoKey(keyToWrap) {
+    // get the key encryption key
+    const keyMaterial = await getKeyMaterial();
+    salt = window.crypto.getRandomValues(new Uint8Array(16));
+    const wrappingKey = await getKey(keyMaterial, salt);
+    iv = window.crypto.getRandomValues(new Uint8Array(12));
+
+    const wrapped = await window.crypto.subtle.wrapKey(
+      "jwk",
+      keyToWrap,
+      wrappingKey,
+      {
+        name: "AES-GCM",
+        iv: iv
+      }
+    );
+
+    const wrappedKeyBuffer = new Uint8Array(wrapped);
+
+    const wrappedKeyOutput = document.querySelector(".wrapped-key");
+    wrappedKeyOutput.classList.add("fade-in");
+    wrappedKeyOutput.addEventListener("animationend", () => {
+      wrappedKeyOutput.classList.remove("fade-in");
+    });
+    wrappedKeyOutput.textContent = `[${wrappedKeyBuffer}]`;
+  }
+
+  /*
+  Generate a sign/verify key pair,
+  then set up an event listener on the "Wrap" button.
+  */
+  window.crypto.subtle.generateKey(
+    {
+      name: "ECDSA",
+      namedCurve: "P-384"
+    },
+    true,
+    ["sign", "verify"]
+  ).then((keyPair) => {
+    const wrapButton = document.querySelector(".jwk");
+    wrapButton.addEventListener("click", () => {
+      wrapCryptoKey(keyPair.privateKey);
+    });
+
+  });
+
+})();
diff --git a/web-crypto/wrap-key/pkcs8.js b/web-crypto/wrap-key/pkcs8.js
@@ -0,0 +1,93 @@
+(() => {
+
+  let salt;
+  let iv;
+
+  /*
+  Get some key material to use as input to the deriveKey method.
+  The key material is a password supplied by the user.
+  */
+  function getKeyMaterial() {
+    let password = window.prompt("Enter your password");
+    let enc = new TextEncoder();
+    return window.crypto.subtle.importKey(
+      "raw", 
+      enc.encode(password), 
+      {name: "PBKDF2"}, 
+      false, 
+      ["deriveBits", "deriveKey"]
+    );
+  }
+
+  /*
+  Given some key material and some random salt
+  derive an AES-GCM key using PBKDF2.
+  */
+  function getKey(keyMaterial, salt) {
+    return window.crypto.subtle.deriveKey(
+      {
+        "name": "PBKDF2",
+        salt: salt, 
+        "iterations": 100000,
+        "hash": "SHA-256"
+      },
+      keyMaterial,
+      { "name": "AES-GCM", "length": 256},
+      true,
+      [ "wrapKey", "unwrapKey" ]
+    );
+  }
+
+  /*
+  Wrap the given key and write it into the "wrapped-key" space.
+  */
+  async function wrapCryptoKey(keyToWrap) {
+    // get the key encryption key
+    const keyMaterial = await getKeyMaterial();
+    salt = window.crypto.getRandomValues(new Uint8Array(16));
+    const wrappingKey = await getKey(keyMaterial, salt);
+    iv = window.crypto.getRandomValues(new Uint8Array(12));
+
+    const wrapped = await window.crypto.subtle.wrapKey(
+      "pkcs8",
+      keyToWrap,
+      wrappingKey,
+      {
+        name: "AES-GCM",
+        iv: iv
+      }
+    );
+
+    const wrappedKeyBuffer = new Uint8Array(wrapped);
+
+    const wrappedKeyOutput = document.querySelector(".wrapped-key");
+    wrappedKeyOutput.classList.add("fade-in");
+    wrappedKeyOutput.addEventListener("animationend", () => {
+      wrappedKeyOutput.classList.remove("fade-in");
+    });
+    wrappedKeyOutput.textContent = `[${wrappedKeyBuffer}]`;
+  }
+
+  /*
+  Generate a sign/verify key pair,
+  then set up an event listener on the "Wrap" button.
+  */
+  window.crypto.subtle.generateKey(
+    {
+      name: "RSA-PSS",
+      // Consider using a 4096-bit key for systems that require long-term security
+      modulusLength: 2048,
+      publicExponent: new Uint8Array([1, 0, 1]),
+      hash: "SHA-256",
+    },
+    true,
+    ["sign", "verify"]
+  ).then((keyPair) => {
+    const wrapButton = document.querySelector(".pkcs8");
+    wrapButton.addEventListener("click", () => {
+      wrapCryptoKey(keyPair.privateKey);
+    });
+
+  });
+
+})();
diff --git a/web-crypto/wrap-key/raw.js b/web-crypto/wrap-key/raw.js
@@ -0,0 +1,85 @@
+(() => {
+
+  let salt;
+
+  /*
+  Get some key material to use as input to the deriveKey method.
+  The key material is a password supplied by the user.
+  */
+  function getKeyMaterial() {
+    let password = window.prompt("Enter your password");
+    let enc = new TextEncoder();
+    return window.crypto.subtle.importKey(
+      "raw", 
+      enc.encode(password), 
+      {name: "PBKDF2"}, 
+      false, 
+      ["deriveBits", "deriveKey"]
+    );
+  }
+
+  /*
+  Given some key material and some random salt
+  derive an AES-KW key using PBKDF2.
+  */
+  function getKey(keyMaterial, salt) {
+    return window.crypto.subtle.deriveKey(
+      {
+        "name": "PBKDF2",
+        salt: salt, 
+        "iterations": 100000,
+        "hash": "SHA-256"
+      },
+      keyMaterial,
+      { "name": "AES-KW", "length": 256},
+      true,
+      [ "wrapKey", "unwrapKey" ]
+    );
+  }
+
+  /*
+  Wrap the given key and write it into the "wrapped-key" space.
+  */
+  async function wrapCryptoKey(keyToWrap) {
+    // get the key encryption key
+    const keyMaterial = await getKeyMaterial();
+    salt = window.crypto.getRandomValues(new Uint8Array(16));
+    const wrappingKey = await getKey(keyMaterial, salt);
+
+    const wrapped = await window.crypto.subtle.wrapKey(
+      "raw",
+      keyToWrap,
+      wrappingKey,
+      "AES-KW"
+    );
+
+    const wrappedKeyBuffer = new Uint8Array(wrapped);
+
+    const wrappedKeyOutput = document.querySelector(".wrapped-key");
+    wrappedKeyOutput.classList.add("fade-in");
+    wrappedKeyOutput.addEventListener("animationend", () => {
+      wrappedKeyOutput.classList.remove("fade-in");
+    });
+    wrappedKeyOutput.textContent = `[${wrappedKeyBuffer}]`;
+  }
+
+  /*
+  Generate an encrypt/decrypt secret key,
+  then set up an event listener on the "Wrap" button.
+  */
+  window.crypto.subtle.generateKey(
+    {
+      name: "AES-GCM",
+      length: 256,
+    },
+    true,
+    ["encrypt", "decrypt"]
+  ).then((secretKey) => {
+    const wrapButton = document.querySelector(".raw");
+    wrapButton.addEventListener("click", () => {
+      wrapCryptoKey(secretKey);
+    });
+
+  });
+
+})();
diff --git a/web-crypto/wrap-key/spki.js b/web-crypto/wrap-key/spki.js
diff --git a/web-crypto/wrap-key/style.css b/web-crypto/wrap-key/style.css
