summaryrefslogtreecommitdiffhomepage
path: root/packages/server/src/helpers
diff options
context:
space:
mode:
Diffstat (limited to 'packages/server/src/helpers')
-rw-r--r--packages/server/src/helpers/validateCertificatePath.ts4
-rw-r--r--packages/server/src/helpers/verifySignature.ts16
2 files changed, 10 insertions, 10 deletions
diff --git a/packages/server/src/helpers/validateCertificatePath.ts b/packages/server/src/helpers/validateCertificatePath.ts
index c05087c..69b8aa9 100644
--- a/packages/server/src/helpers/validateCertificatePath.ts
+++ b/packages/server/src/helpers/validateCertificatePath.ts
@@ -125,8 +125,8 @@ async function _validatePath(certificates: string[]): Promise<boolean> {
const verified = await verifySignature({
data: new Uint8Array(data),
signature: new Uint8Array(signature),
- leafCertificate: issuerCertBytes,
- attestationHashAlgorithm: signatureAlgorithm,
+ x509Certificate: issuerCertBytes,
+ hashAlgorithm: signatureAlgorithm,
});
if (!verified) {
diff --git a/packages/server/src/helpers/verifySignature.ts b/packages/server/src/helpers/verifySignature.ts
index ff4e73b..00ada70 100644
--- a/packages/server/src/helpers/verifySignature.ts
+++ b/packages/server/src/helpers/verifySignature.ts
@@ -10,16 +10,16 @@ export async function verifySignature(opts: {
signature: Uint8Array;
data: Uint8Array;
credentialPublicKey?: Uint8Array;
- leafCertificate?: Uint8Array;
- attestationHashAlgorithm?: COSEALG;
+ x509Certificate?: Uint8Array;
+ hashAlgorithm?: COSEALG;
}): Promise<boolean> {
- const { signature, data, credentialPublicKey, leafCertificate, attestationHashAlgorithm } = opts;
+ const { signature, data, credentialPublicKey, x509Certificate, hashAlgorithm } = opts;
- if (!leafCertificate && !credentialPublicKey) {
+ if (!x509Certificate && !credentialPublicKey) {
throw new Error('Must declare either "leafCert" or "credentialPublicKey"');
}
- if (leafCertificate && credentialPublicKey) {
+ if (x509Certificate && credentialPublicKey) {
throw new Error('Must not declare both "leafCert" and "credentialPublicKey"');
}
@@ -27,14 +27,14 @@ export async function verifySignature(opts: {
if (credentialPublicKey) {
cosePublicKey = decodeCredentialPublicKey(credentialPublicKey);
- } else if (leafCertificate) {
- cosePublicKey = convertX509PublicKeyToCOSE(leafCertificate);
+ } else if (x509Certificate) {
+ cosePublicKey = convertX509PublicKeyToCOSE(x509Certificate);
}
return isoCrypto.verify({
cosePublicKey,
signature,
data,
- shaHashOverride: attestationHashAlgorithm,
+ shaHashOverride: hashAlgorithm,
});
}
generated by cgit v1.2.3 (git 2.39.1) at 2025-04-27 09:25:20 +0000