From fa90c3f6a2052e1adbdae0b59fd4953c96bc0bd4 Mon Sep 17 00:00:00 2001 From: Matthieu Sieben Date: Fri, 12 Apr 2024 15:22:57 +0200 Subject: [PATCH] fix(jwk-webcrypto): prefer jwk algorithms that yield smaller signatures --- packages/jwk-webcrypto/src/util.ts | 31 +++++++++++++++++++++++++++++- 1 file changed, 30 insertions(+), 1 deletion(-) diff --git a/packages/jwk-webcrypto/src/util.ts b/packages/jwk-webcrypto/src/util.ts index fc7c3a3f900..ac2ddc7e1a3 100644 --- a/packages/jwk-webcrypto/src/util.ts +++ b/packages/jwk-webcrypto/src/util.ts @@ -126,7 +126,8 @@ export async function generateKeypair( extractable = false, ): Promise { const errors: unknown[] = [] - for (const alg of algs) { + const algsSorted = Array.from(algs).sort(compareAlgos) + for (const alg of algsSorted) { try { return await crypto.subtle.generateKey( toSubtleAlgorithm(alg), @@ -140,3 +141,31 @@ export async function generateKeypair( throw new AggregateError(errors, 'Failed to generate keypair') } + +const PREFERED_FAMILY = ['ES', 'PS', 'RS'] +/** + * 256K > ES (256 > 384 > 512) > PS (256 > 384 > 512) > RS (256 > 384 > 512) > other (in original order) + */ +function compareAlgos(a: string, b: string): number { + if (a === 'ES256K') return -1 + if (b === 'ES256K') return 1 + + const aFam = a.slice(0, 2) + const bFam = b.slice(0, 2) + + const aFamIdx = PREFERED_FAMILY.indexOf(aFam) + const bFamIdx = PREFERED_FAMILY.indexOf(bFam) + if (aFamIdx !== -1 || bFamIdx !== -1) { + if (aFamIdx === -1) return 1 + if (bFamIdx === -1) return -1 + if (aFamIdx !== bFamIdx) return aFamIdx - bFamIdx + + // Prefer shorter key lengths + const aLen = parseInt(a.slice(2, 5)) + const bLen = parseInt(b.slice(2, 5)) + return aLen - bLen + } + + // Don't know how to compare, keep original order + return 0 +}