Use acceptedCryptosuites internally.

Author: dlongley

lib/exchanges/chapiDirect.js

@@ -1,5 +1,5 @@
 /*!
- * Copyright (c) 2023 Digital Bazaar, Inc. All rights reserved.
+ * Copyright (c) 2023-2026 Digital Bazaar, Inc. All rights reserved.
  */
 import * as presentations from '../presentations.js';
 import {Exchange} from './Exchange.js';
@@ -42,19 +42,19 @@ export class ChapiDirectExchange extends Exchange {
 
       // sign presentation if `signOptions` is given
       if(signOptions) {
-        // get `acceptedProofTypes`, `domain`, and `challenge` from VPR
+        // get `acceptedCryptosuites`, `domain`, and `challenge` from VPR
         const vpr = this._event.credentialRequestOptions?.web
           .VerifiablePresentation;
         const {
           // FIXME: Throw error if challenge not provided
           challenge = 'c0ae1c8e-c7e7-469f-b252-86e6a0e7387e',
           domain,
-          acceptedProofTypes
+          acceptedCryptosuites
         } = getDIDAuthenticationOptions({vpr});
         const {profileId} = signOptions;
         verifiablePresentation = await presentations.sign({
           challenge, domain, presentation: verifiablePresentation,
-          profileId, acceptedProofTypes
+          profileId, acceptedCryptosuites
         });
       }
       this._finish({verifiablePresentation});

lib/exchanges/oid4vci.js

@@ -1,5 +1,5 @@
 /*!
- * Copyright (c) 2023-2024 Digital Bazaar, Inc. All rights reserved.
+ * Copyright (c) 2023-2026 Digital Bazaar, Inc. All rights reserved.
  */
 import * as presentations from '../presentations.js';
 import {
@@ -63,16 +63,16 @@ export class OID4VCIExchange extends Exchange {
 
         const {authorizationRequest, vpr} = this._oid4vp;
 
-        // get `acceptedProofTypes`, `domain`, and `challenge` from VPR
+        // get `acceptedCryptosuites`, `domain`, and `challenge` from VPR
         const {
           // FIXME: Throw error if challenge not provided
           challenge = 'c0ae1c8e-c7e7-469f-b252-86e6a0e7387e',
           domain,
-          acceptedProofTypes
+          acceptedCryptosuites
         } = getDIDAuthenticationOptions({vpr});
         verifiablePresentation = await presentations.sign({
           challenge, domain, presentation: verifiablePresentation,
-          profileId, acceptedProofTypes
+          profileId, acceptedCryptosuites
         });
         // send OID4VP authorization response
         const {
@@ -85,9 +85,9 @@ export class OID4VCIExchange extends Exchange {
         // result successful, fall through to finish with OID4VCI...
       } else {
         // FIXME: profile signer needs to be selected based on
-        // `acceptedProofTypes`, so this needs to be passed into
+        // `acceptedCryptosuites`, so this needs to be passed into
         // `getProfileSigner`; until then, the signer `type` should be checked
-        // against `acceptedProofTypes` and rejected if there's no match
+        // against `acceptedCryptosuites` and rejected if there's no match
         const {
           invocationSigner: signer
         } = await profileManager.getProfileSigner({profileId});

lib/exchanges/oid4vp.js

@@ -1,5 +1,5 @@
 /*!
- * Copyright (c) 2023 Digital Bazaar, Inc. All rights reserved.
+ * Copyright (c) 2023-2026 Digital Bazaar, Inc. All rights reserved.
  */
 import * as presentations from '../presentations.js';
 import {Exchange} from './Exchange.js';
@@ -58,17 +58,17 @@ export class OID4VPExchange extends Exchange {
 
       // sign presentation if `signOptions` is given
       if(signOptions) {
-        // get `acceptedProofTypes`, `domain`, and `challenge` from VPR
+        // get `acceptedCryptosuites`, `domain`, and `challenge` from VPR
         const {profileId} = signOptions;
         const {
           // FIXME: Throw error if challenge not provided
           challenge = 'c0ae1c8e-c7e7-469f-b252-86e6a0e7387e',
           domain,
-          acceptedProofTypes
+          acceptedCryptosuites
         } = getDIDAuthenticationOptions({vpr: verifiablePresentationRequest});
         verifiablePresentation = await presentations.sign({
           challenge, domain, presentation: verifiablePresentation,
-          profileId, acceptedProofTypes
+          profileId, acceptedCryptosuites
         });
       }
     }

lib/exchanges/vcapi.js

@@ -1,5 +1,5 @@
 /*!
- * Copyright (c) 2023 Digital Bazaar, Inc. All rights reserved.
+ * Copyright (c) 2023-2026 Digital Bazaar, Inc. All rights reserved.
  */
 import * as presentations from '../presentations.js';
 import {Exchange} from './Exchange.js';
@@ -64,17 +64,17 @@ export class VcapiExchange extends Exchange {
 
       // sign presentation if `signOptions` is given
       if(signOptions) {
-        // get `acceptedProofTypes`, `domain`, and `challenge` from VPR
+        // get `acceptedCryptosuites`, `domain`, and `challenge` from VPR
         const {profileId} = signOptions;
         const {
           // FIXME: Throw error if challenge not provided
           challenge = 'c0ae1c8e-c7e7-469f-b252-86e6a0e7387e',
           domain,
-          acceptedProofTypes
+          acceptedCryptosuites
         } = getDIDAuthenticationOptions({vpr: this._vpr});
         verifiablePresentation = await presentations.sign({
           challenge, domain, presentation: verifiablePresentation,
-          profileId, acceptedProofTypes
+          profileId, acceptedCryptosuites
         });
       }
     }

lib/presentations.js

@@ -129,15 +129,15 @@ export async function sign({
       ({name}) => ({cryptosuite: name}));
   }
 
-  // FIXME: profile signer needs to be selected based on `acceptedProofTypes`,
+  // FIXME: profile signer needs to be selected based on `acceptedCryptosuites`,
   // so this needs to be passed into `getProfileSigner`; until then, the
-  // signer `type` should be checked against `acceptedProofTypes` and rejected
-  // if there's no match
+  // signer `type` should be checked against `acceptedCryptosuites` and
+  // rejected if there's no match
   const {
     invocationSigner: signer
   } = await profileManager.getProfileSigner({profileId});
 
-  // pick a suite from the accepted proof types, initialized to a special
+  // pick a suite from the accepted cryptosuites, initialized to a special
   // backwards compatibility case (or `undefined` if it does not apply)
   let suite = _handleLegacyDraftCryptosuites({presentation});
   if(!suite && Array.isArray(acceptedCryptosuites) &&
@@ -246,6 +246,11 @@ async function _deriveCredentials({
     return;
   }
 
+  // normalize `acceptedCryptosuites` to `[{cryptosuite}, ...]` to handle
+  // backwards-compatibility where an array of strings was used
+  acceptedCryptosuites = acceptedCryptosuites.map(
+    ac => typeof ac === 'object' ? ac : ({cryptosuite: ac}));
+
   // convert `vprQuery.credentialQuery.example` to JSON pointers, modulo
   // `@context` field (the `@context` field is assumed to already have been
   // matched during prior processing); any VCDM mandatory pointers will be
@@ -271,7 +276,8 @@ async function _deriveCredentials({
   // otherwise generate a derived VC for each SD proof that is both understood
   // by the wallet and in `credentialQuery.acceptedCryptosuites`, setting
   // match.derived[<cryptosuite>] = derived VC
-  const acceptedCryptosuiteSet = new Set(acceptedCryptosuites);
+  const acceptedCryptosuiteSet = new Set(acceptedCryptosuites
+    .map(ac => ac?.cryptosuite));
   for(const match of matches) {
     const {record: {content: verifiableCredential}} = match;
     match.derived = [];
@@ -308,7 +314,7 @@ async function _deriveCredentials({
   // in some way would be useful; need to signal to UIs selective disclosure
   // (data minimization) and unlinkability likelihood -- also unlinkability for
   // verifiers vs. for regulators and similar for well-known VC types vs. via
-  // proof types
+  // proof types (cryptosuites)
 }
 
 async function _getLocalMatches({vprQuery, credentialStore}) {
@@ -588,7 +594,7 @@ function _pruneShallowPointers(pointers) {
 
 function _checkSignerCryptosuite({acceptedCryptosuites, signer}) {
   const supported = SUPPORTED_CRYPTOSUITES.get(signer.type);
-  const accepted = new Set(acceptedCryptosuites.map(ac => ac.cryptosuite));
+  const accepted = new Set(acceptedCryptosuites.map(ac => ac?.cryptosuite));
   if(accepted.intersection(supported).size === 0) {
     const names = [...accepted].join(', ');
     throw new Error(