UNPKG

@libp2p/crypto

Version:

Crypto primitives for libp2p

github.com/libp2p/js-libp2p/tree/main/packages/crypto

libp2p/js-libp2p

117 lines (102 loc) 5.14 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
import { concat } from 'uint8arrays/concat' import { fromString } from 'uint8arrays/from-string' import webcrypto from '../webcrypto/index.js' import type { CreateOptions, AESCipher } from './interface.js' // WebKit on Linux does not support deriving a key from an empty PBKDF2 key. // So, as a workaround, we provide the generated key as a constant. We test that // this generated key is accurate in test/workaround.spec.ts // Generated via: // await crypto.subtle.exportKey('jwk', // await crypto.subtle.deriveKey( // { name: 'PBKDF2', salt: new Uint8Array(16), iterations: 32767, hash: { name: 'SHA-256' } }, // await crypto.subtle.importKey('raw', new Uint8Array(0), { name: 'PBKDF2' }, false, ['deriveKey']), // { name: 'AES-GCM', length: 128 }, true, ['encrypt', 'decrypt']) // ) export const derivedEmptyPasswordKey = { alg: 'A128GCM', ext: true, /* spell-checker:disable-next-line */ k: 'scm9jmO_4BJAgdwWGVulLg', key_ops: ['encrypt', 'decrypt'], kty: 'oct' } // Based off of code from https://github.com/luke-park/SecureCompatibleEncryptionExamples export function create (opts?: CreateOptions): AESCipher { const algorithm = opts?.algorithm ?? 'AES-GCM' let keyLength = opts?.keyLength ?? 16 const nonceLength = opts?.nonceLength ?? 12 const digest = opts?.digest ?? 'SHA-256' const saltLength = opts?.saltLength ?? 16 const iterations = opts?.iterations ?? 32767 const crypto = webcrypto.get() keyLength *= 8 // Browser crypto uses bits instead of bytes /** * Uses the provided password to derive a pbkdf2 key. The key * will then be used to encrypt the data. */ async function encrypt (data: Uint8Array, password: string | Uint8Array): Promise<Uint8Array> { const salt = crypto.getRandomValues(new Uint8Array(saltLength)) const nonce = crypto.getRandomValues(new Uint8Array(nonceLength)) const aesGcm = { name: algorithm, iv: nonce } if (typeof password === 'string') { password = fromString(password) } let cryptoKey: CryptoKey if (password.length === 0) { cryptoKey = await crypto.subtle.importKey('jwk', derivedEmptyPasswordKey, { name: 'AES-GCM' }, true, ['encrypt']) try { const deriveParams = { name: 'PBKDF2', salt, iterations, hash: { name: digest } } const runtimeDerivedEmptyPassword = await crypto.subtle.importKey('raw', password, { name: 'PBKDF2' }, false, ['deriveKey']) cryptoKey = await crypto.subtle.deriveKey(deriveParams, runtimeDerivedEmptyPassword, { name: algorithm, length: keyLength }, true, ['encrypt']) } catch { cryptoKey = await crypto.subtle.importKey('jwk', derivedEmptyPasswordKey, { name: 'AES-GCM' }, true, ['encrypt']) } } else { // Derive a key using PBKDF2. const deriveParams = { name: 'PBKDF2', salt, iterations, hash: { name: digest } } const rawKey = await crypto.subtle.importKey('raw', password, { name: 'PBKDF2' }, false, ['deriveKey']) cryptoKey = await crypto.subtle.deriveKey(deriveParams, rawKey, { name: algorithm, length: keyLength }, true, ['encrypt']) } // Encrypt the string. const ciphertext = await crypto.subtle.encrypt(aesGcm, cryptoKey, data) return concat([salt, aesGcm.iv, new Uint8Array(ciphertext)]) } /** * Uses the provided password to derive a pbkdf2 key. The key * will then be used to decrypt the data. The options used to create * this decryption cipher must be the same as those used to create * the encryption cipher. */ async function decrypt (data: Uint8Array, password: string | Uint8Array): Promise<Uint8Array> { const salt = data.subarray(0, saltLength) const nonce = data.subarray(saltLength, saltLength + nonceLength) const ciphertext = data.subarray(saltLength + nonceLength) const aesGcm = { name: algorithm, iv: nonce } if (typeof password === 'string') { password = fromString(password) } let cryptoKey: CryptoKey if (password.length === 0) { try { const deriveParams = { name: 'PBKDF2', salt, iterations, hash: { name: digest } } const runtimeDerivedEmptyPassword = await crypto.subtle.importKey('raw', password, { name: 'PBKDF2' }, false, ['deriveKey']) cryptoKey = await crypto.subtle.deriveKey(deriveParams, runtimeDerivedEmptyPassword, { name: algorithm, length: keyLength }, true, ['decrypt']) } catch { cryptoKey = await crypto.subtle.importKey('jwk', derivedEmptyPasswordKey, { name: 'AES-GCM' }, true, ['decrypt']) } } else { // Derive the key using PBKDF2. const deriveParams = { name: 'PBKDF2', salt, iterations, hash: { name: digest } } const rawKey = await crypto.subtle.importKey('raw', password, { name: 'PBKDF2' }, false, ['deriveKey']) cryptoKey = await crypto.subtle.deriveKey(deriveParams, rawKey, { name: algorithm, length: keyLength }, true, ['decrypt']) } // Decrypt the string. const plaintext = await crypto.subtle.decrypt(aesGcm, cryptoKey, ciphertext) return new Uint8Array(plaintext) } const cipher: AESCipher = { encrypt, decrypt } return cipher }