How to use the @aws-crypto/material-management-node.KeyringTraceFlag.WRAPPING_KEY_GENERATED_DATA_KEY function in @aws-crypto/material-management-node
To help you get started, we’ve selected a few @aws-crypto/material-management-node examples, based on popular ways it is used in public projects.
Secure your code as it's written. Use Snyk Code to scan source code in minutes - no build needed - and fix issues immediately.
aws / aws-encryption-sdk-javascript / modules / raw-aes-keyring-node / src / raw_aes_keyring_node.ts View on Github 
constructor (input: RawAesKeyringNodeInput) {
super()
const { keyName, keyNamespace, unencryptedMasterKey, wrappingSuite } = input
/* Precondition: AesKeyringNode needs identifying information for encrypt and decrypt. */
needs(keyName && keyNamespace, 'Identifying information must be defined.')
/* Precondition: RawAesKeyringNode requires wrappingSuite to be a valid RawAesWrappingSuite. */
const wrappingMaterial = new NodeRawAesMaterial(wrappingSuite)
/* Precondition: unencryptedMasterKey must correspond to the NodeAlgorithmSuite specification.
* Note: the KeyringTrace and flag are _only_ set because I am reusing an existing implementation.
* See: raw_aes_material.ts in @aws-crypto/raw-keyring for details
*/
.setUnencryptedDataKey(unencryptedMasterKey, { keyNamespace, keyName, flags: KeyringTraceFlag.WRAPPING_KEY_GENERATED_DATA_KEY })
const _wrapKey = async (material: NodeEncryptionMaterial) => {
/* The AAD section is uInt16BE(length) + AAD
* see: https://docs.aws.amazon.com/encryption-sdk/latest/developer-guide/message-format.html#header-aad
* However, the RAW Keyring wants _only_ the ADD.
* So, I just slice off the length.
*/
const { buffer, byteOffset, byteLength } = serializeEncryptionContext(material.encryptionContext).slice(2)
const aad = Buffer.from(buffer, byteOffset, byteLength)
const { keyNamespace, keyName } = this
return aesGcmWrapKey(keyNamespace, keyName, material, aad, wrappingMaterial)
}
const _unwrapKey = async (material: NodeDecryptionMaterial, edk: EncryptedDataKey) => {
const { keyNamespace, keyName } = this@aws-crypto/material-management-node
The AWS Encryption SDK for JavaScript is a client-side encryption library designed to make it easy for everyone to encrypt and decrypt data using industry standards and best practices. It uses a data format compatible with the AWS Encryption SDKs in other
Apache-2.0
Latest version published 4 months agoPackage Health Score
65 / 100Popular @aws-crypto/material-management-node functions
- @aws-crypto/material-management-node.EncryptedDataKey
- @aws-crypto/material-management-node.getEncryptHelper
- @aws-crypto/material-management-node.immutableClass
- @aws-crypto/material-management-node.KeyringTraceFlag.WRAPPING_KEY_DECRYPTED_DATA_KEY
- @aws-crypto/material-management-node.KeyringTraceFlag.WRAPPING_KEY_ENCRYPTED_DATA_KEY
- @aws-crypto/material-management-node.KeyringTraceFlag.WRAPPING_KEY_GENERATED_DATA_KEY
- @aws-crypto/material-management-node.KeyringTraceFlag.WRAPPING_KEY_SIGNED_ENC_CTX
- @aws-crypto/material-management-node.KeyringTraceFlag.WRAPPING_KEY_VERIFIED_ENC_CTX
- @aws-crypto/material-management-node.needs
- @aws-crypto/material-management-node.NodeAlgorithmSuite
- @aws-crypto/material-management-node.NodeDefaultCryptographicMaterialsManager
- @aws-crypto/material-management-node.readOnlyProperty
- @aws-crypto/material-management-node.unwrapDataKey