UNPKG

@tabcat/aes-gcm-crypter

Version:

encrypt and decrypt aes-gcm ciphers

github.com/tabcat/aes-gcm-crypter

tabcat/aes-gcm-crypter

116 lines (104 loc) 3.43 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
'use strict' const webcrypto = require('@tabcat/webcrypto-ponyfill') const { validKey } = require('./util') const expectDefined = (param) => new Error(`expected ${param} to be defined`) const invalidCryptoKey = () => new Error('invalid CryptoKey given') const invalidIVLen = () => new Error('iv was invalid length') class Crypter { constructor (cryptoKey) { if (!cryptoKey) throw expectDefined('cryptoKey') if (!validKey(cryptoKey)) throw invalidCryptoKey() this._cryptoKey = cryptoKey } /** * Creates an instance of Crypter. * @param {CryptoKey} cryptoKey The key to use for the crypter. * @return {Crypter} */ static create (cryptoKey) { return new Crypter(cryptoKey) } /** * Generates a random aes-gcm key. * @param {Number} length The length of the aes-gcm key. * @return {CryptoKey} */ static async generateKey (length = 128) { return webcrypto.get().subtle.generateKey( { name: 'AES-GCM', length // can be 128, 192, or 256 }, true, // exportable ['encrypt', 'decrypt'] ) } /** * Imports a raw aes-gcm key. * @param {ArrayBuffer} rawKey The raw aes key as an ArrayBuffer. Output from exportKey. * @return {CryptoKey} The imported key. */ static async importKey (rawKey) { if (!rawKey) throw expectDefined('rawKey') return webcrypto.get().subtle.importKey( 'raw', rawKey, { name: 'AES-GCM' }, true, // exportable ['encrypt', 'decrypt'] ) } /** * Exports an aes-gcm CryptoKey. * @param {CryptoKey} cryptoKey The key to export. Output from generateKey or importKey. * @return {ArrayBuffer} The raw aes key. */ static async exportKey (cryptoKey) { if (!cryptoKey) throw expectDefined('cryptoKey') return webcrypto.get().subtle.exportKey('raw', cryptoKey) } /** * Generates a random initialization vector. * @return {Uint8Array} The initialization vector. */ static generateIV () { return webcrypto.get().getRandomValues(new Uint8Array(12)) } generateIV () { return Crypter.generateIV() } /** * Encrypts the bytes using the crypter instance cryptoKey. * @param {ArrayBuffer} bytes The bytes to be encrypted. * @param {Uint8Array} [iv] The initialization vector to use. * @return {object} An object including the encrypted bytes and initialization vector */ async encrypt (bytes, iv = this.generateIV()) { if (!bytes) throw expectDefined('bytes') if (!iv) throw expectDefined('iv') iv = Uint8Array.from(iv) if (iv.length !== 12) throw invalidIVLen() const cipherbytes = await webcrypto.get().subtle.encrypt( { ...this._cryptoKey.algorithm, iv }, this._cryptoKey, bytes ) return { cipherbytes, iv } } /** * Decrypted the ciphered bytes using the crypter instance crytoKey. * @param {ArrayBuffer} cipherbytes The encrypted bytes. * @param {Uint8Array} iv The initialization vector used to encrypt. * @return {object} An object including the encrypted bytes and initialization vector */ async decrypt (cipherbytes, iv) { if (!cipherbytes) throw expectDefined('cipherbytes') if (!iv) throw expectDefined('iv') iv = Uint8Array.from(iv) if (iv.length !== 12) throw invalidIVLen() return webcrypto.get().subtle.decrypt( { ...this._cryptoKey.algorithm, iv }, this._cryptoKey, cipherbytes ) } } module.exports = Crypter