UNPKG

@erasure/crypto-ipfs

Version:

asymmetric and symmetric crypto for use with erasure, ipfs and private backend. warning: unaudited.

erasureprotocol/erasure-protocol

172 lines (162 loc) 5.78 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
const fernet = require('fernet') const tweetnacl = require('tweetnacl') const pbkdf2 = require('pbkdf2') const getRandomValues = require('get-random-values') const multihash = require('multihashes') const sha256_cid = require('ipfs-only-hash') const ethers = require('ethers') const MAX_UINT32 = Math.pow(2, 32) - 1 const MAX_UINT8 = Math.pow(2, 8) - 1 const FERNET_SECRET_LENGTH = 32 const NONCE_LENGTH = 24 const randomNumber = () => { if (typeof window === 'undefined') { return getRandomValues(new Uint8Array(1))[0] / MAX_UINT8 } return getRandomValues(new Uint32Array(1))[0] / MAX_UINT32 } const randomString = () => { let result = '' const characters = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789' const charactersLength = characters.length for (let i = 0; i < FERNET_SECRET_LENGTH; i++) { result += characters.charAt(Math.floor(randomNumber() * charactersLength)) } return result } /// Convert multihash from input of specified type to multihash buffer object /// Valid input types: /// - 'raw': raw data of any form - will caculate chunked ipld content id using sha2-256 /// - 'sha2-256': hex encoded sha2-256 hash - will append multihash prefix /// - 'hex': hex encoded multihash /// - 'b58': base58 encoded multihash async function multihashFrom(input, inputType) { const inputTypes = ['raw', 'sha2-256', 'hex', 'b58'] let contentid if (inputType === 'raw') { contentid = multihash.fromB58String(await sha256_cid.of(Buffer.from(input))) } else if (inputType === 'sha2-256') { input = input.slice(0, 2) === '0x' ? input.slice(2) : input contentid = multihash.fromHexString('1220' + input) } else if (inputType === 'hex') { input = input.slice(0, 2) === '0x' ? input.slice(2) : input contentid = multihash.fromHexString(input) } else if (inputType === 'b58') { contentid = multihash.fromB58String(input) } else { throw new Error( `Invalid inputType: ${inputType} should be one of [${inputTypes}]`, ) } multihash.validate(contentid) return contentid } /// Convert multihash from buffer object to output of specified type /// Valid output types: /// - 'prefix': hex encoded multihash prefix /// - 'digest': hex encoded hash /// - 'hex': hex encoded multihash /// - 'b58': base58 encoded multihash async function multihashTo(contentid, outputType) { const outputTypes = ['prefix', 'digest', 'hex', 'b58'] if (outputType === 'prefix') { return '0x' + multihash.prefix(contentid).toString('hex') } else if (outputType === 'digest') { return '0x' + multihash.toHexString(multihash.decode(contentid).digest) } else if (outputType === 'hex') { return '0x' + multihash.toHexString(contentid) } else if (outputType === 'b58') { return multihash.toB58String(contentid) } else { throw new Error( `Invalid outputType: ${outputType} should be one of [${outputTypes}]`, ) } } const ErasureHelper = { multihash: async ({ input, inputType, outputType }) => multihashTo(await multihashFrom(input, inputType), outputType), constants: { RATIO_TYPES: { NaN: 0, Inf: 1, Dec: 2, }, TOKEN_TYPES: { NaN: 0, NMR: 1, DAI: 2, }, }, encodeCreateCall: (templateABI, abiValues) => { const interface = new ethers.utils.Interface(templateABI) const calldata = interface.functions.initialize.encode(abiValues) return calldata }, crypto: { symmetric: { generateKey: () => { let key = Buffer.from(randomString()).toString('base64') let secret = fernet.decode64toHex(key) while (secret.length !== fernet.hexBits(256)) { key = Buffer.from(randomString()).toString('base64') secret = fernet.decode64toHex(key) } return key }, encryptMessage: (secretKey, msg) => { const secret = new fernet.Secret(secretKey) const token = new fernet.Token({ secret, ttl: 0 }) return token.encode(msg) }, decryptMessage: (secretKey, encryptedMessage) => { const secret = new fernet.Secret(secretKey) const token = new fernet.Token({ secret, ttl: 0, token: encryptedMessage, }) return token.decode() }, }, asymmetric: { generateKeyPair: (sig, salt) => tweetnacl.box.keyPair.fromSecretKey( pbkdf2.pbkdf2Sync(sig, salt, 1000, 32), ), generateNonce: () => tweetnacl.randomBytes(NONCE_LENGTH), encryptMessage: (msg, nonce, publicKey, secretKey) => { const encoder = new TextEncoder() const encodedMessage = encoder.encode(msg) return tweetnacl.box(encodedMessage, nonce, publicKey, secretKey) }, decryptMessage: (box, nonce, publicKey, secretKey) => { const decoder = new TextDecoder() const encodedMessage = tweetnacl.box.open( box, nonce, publicKey, secretKey, ) if (!encodedMessage) { throw new Error('Asymmetric decryption failed. Make sure the public key belongs to the sender and the private key belongs to the receiver') } return decoder.decode(encodedMessage) }, secretBox: { encryptMessage: (msg, nonce, secretKey) => { const encoder = new TextEncoder() const encodedMessage = encoder.encode(msg) return tweetnacl.secretbox(encodedMessage, nonce, secretKey) }, decryptMessage: (box, nonce, secretKey) => { const decoder = new TextDecoder() const encodedMessage = tweetnacl.secretbox.open(box, nonce, secretKey) return decoder.decode(encodedMessage) }, }, }, }, } module.exports = ErasureHelper