UNPKG

@libp2p/crypto

Version:

Crypto primitives for libp2p

github.com/libp2p/js-libp2p/tree/main/packages/crypto

libp2p/js-libp2p

106 lines 5.35 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
import { concat } from 'uint8arrays/concat'; import { fromString } from 'uint8arrays/from-string'; import webcrypto from '../webcrypto/index.js'; // WebKit on Linux does not support deriving a key from an empty PBKDF2 key. // So, as a workaround, we provide the generated key as a constant. We test that // this generated key is accurate in test/workaround.spec.ts // Generated via: // await crypto.subtle.exportKey('jwk', // await crypto.subtle.deriveKey( // { name: 'PBKDF2', salt: new Uint8Array(16), iterations: 32767, hash: { name: 'SHA-256' } }, // await crypto.subtle.importKey('raw', new Uint8Array(0), { name: 'PBKDF2' }, false, ['deriveKey']), // { name: 'AES-GCM', length: 128 }, true, ['encrypt', 'decrypt']) // ) export const derivedEmptyPasswordKey = { alg: 'A128GCM', ext: true, /* spell-checker:disable-next-line */ k: 'scm9jmO_4BJAgdwWGVulLg', key_ops: ['encrypt', 'decrypt'], kty: 'oct' }; // Based off of code from https://github.com/luke-park/SecureCompatibleEncryptionExamples export function create(opts) { const algorithm = opts?.algorithm ?? 'AES-GCM'; let keyLength = opts?.keyLength ?? 16; const nonceLength = opts?.nonceLength ?? 12; const digest = opts?.digest ?? 'SHA-256'; const saltLength = opts?.saltLength ?? 16; const iterations = opts?.iterations ?? 32767; const crypto = webcrypto.get(); keyLength *= 8; // Browser crypto uses bits instead of bytes /** * Uses the provided password to derive a pbkdf2 key. The key * will then be used to encrypt the data. */ async function encrypt(data, password) { const salt = crypto.getRandomValues(new Uint8Array(saltLength)); const nonce = crypto.getRandomValues(new Uint8Array(nonceLength)); const aesGcm = { name: algorithm, iv: nonce }; if (typeof password === 'string') { password = fromString(password); } let cryptoKey; if (password.length === 0) { cryptoKey = await crypto.subtle.importKey('jwk', derivedEmptyPasswordKey, { name: 'AES-GCM' }, true, ['encrypt']); try { const deriveParams = { name: 'PBKDF2', salt, iterations, hash: { name: digest } }; const runtimeDerivedEmptyPassword = await crypto.subtle.importKey('raw', password, { name: 'PBKDF2' }, false, ['deriveKey']); cryptoKey = await crypto.subtle.deriveKey(deriveParams, runtimeDerivedEmptyPassword, { name: algorithm, length: keyLength }, true, ['encrypt']); } catch { cryptoKey = await crypto.subtle.importKey('jwk', derivedEmptyPasswordKey, { name: 'AES-GCM' }, true, ['encrypt']); } } else { // Derive a key using PBKDF2. const deriveParams = { name: 'PBKDF2', salt, iterations, hash: { name: digest } }; const rawKey = await crypto.subtle.importKey('raw', password, { name: 'PBKDF2' }, false, ['deriveKey']); cryptoKey = await crypto.subtle.deriveKey(deriveParams, rawKey, { name: algorithm, length: keyLength }, true, ['encrypt']); } // Encrypt the string. const ciphertext = await crypto.subtle.encrypt(aesGcm, cryptoKey, data); return concat([salt, aesGcm.iv, new Uint8Array(ciphertext)]); } /** * Uses the provided password to derive a pbkdf2 key. The key * will then be used to decrypt the data. The options used to create * this decryption cipher must be the same as those used to create * the encryption cipher. */ async function decrypt(data, password) { const salt = data.subarray(0, saltLength); const nonce = data.subarray(saltLength, saltLength + nonceLength); const ciphertext = data.subarray(saltLength + nonceLength); const aesGcm = { name: algorithm, iv: nonce }; if (typeof password === 'string') { password = fromString(password); } let cryptoKey; if (password.length === 0) { try { const deriveParams = { name: 'PBKDF2', salt, iterations, hash: { name: digest } }; const runtimeDerivedEmptyPassword = await crypto.subtle.importKey('raw', password, { name: 'PBKDF2' }, false, ['deriveKey']); cryptoKey = await crypto.subtle.deriveKey(deriveParams, runtimeDerivedEmptyPassword, { name: algorithm, length: keyLength }, true, ['decrypt']); } catch { cryptoKey = await crypto.subtle.importKey('jwk', derivedEmptyPasswordKey, { name: 'AES-GCM' }, true, ['decrypt']); } } else { // Derive the key using PBKDF2. const deriveParams = { name: 'PBKDF2', salt, iterations, hash: { name: digest } }; const rawKey = await crypto.subtle.importKey('raw', password, { name: 'PBKDF2' }, false, ['deriveKey']); cryptoKey = await crypto.subtle.deriveKey(deriveParams, rawKey, { name: algorithm, length: keyLength }, true, ['decrypt']); } // Decrypt the string. const plaintext = await crypto.subtle.decrypt(aesGcm, cryptoKey, ciphertext); return new Uint8Array(plaintext); } const cipher = { encrypt, decrypt }; return cipher; } //# sourceMappingURL=aes-gcm.browser.js.map