UNPKG

age-encryption

Version:

<p align="center"> <picture> <source media="(prefers-color-scheme: dark)" srcset="https://github.com/FiloSottile/age/blob/main/logo/logo_white.svg"> <source media="(prefers-color-scheme: light)" srcset="https://github.com/FiloSottile/a

github.com/FiloSottile/typage

FiloSottile/typage

102 lines (101 loc) 4.22 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
import { chacha20poly1305 } from "@noble/ciphers/chacha"; const chacha20poly1305Overhead = 16; const chunkSize = /* @__PURE__ */ (() => 64 * 1024)(); const chunkSizeWithOverhead = /* @__PURE__ */ (() => chunkSize + chacha20poly1305Overhead)(); export function decryptSTREAM(key) { const streamNonce = new Uint8Array(12); const incNonce = () => { for (let i = streamNonce.length - 2; i >= 0; i--) { streamNonce[i]++; if (streamNonce[i] !== 0) break; } }; let firstChunk = true; const ciphertextBuffer = new Uint8Array(chunkSizeWithOverhead); let ciphertextBufferUsed = 0; return new TransformStream({ transform(chunk, controller) { while (chunk.length > 0) { if (ciphertextBufferUsed === ciphertextBuffer.length) { const decryptedChunk = chacha20poly1305(key, streamNonce) .decrypt(ciphertextBuffer); controller.enqueue(decryptedChunk); incNonce(); ciphertextBufferUsed = 0; firstChunk = false; } const n = Math.min(ciphertextBuffer.length - ciphertextBufferUsed, chunk.length); ciphertextBuffer.set(chunk.subarray(0, n), ciphertextBufferUsed); ciphertextBufferUsed += n; chunk = chunk.subarray(n); } }, flush(controller) { streamNonce[11] = 1; // Last chunk flag. const decryptedChunk = chacha20poly1305(key, streamNonce) .decrypt(ciphertextBuffer.subarray(0, ciphertextBufferUsed)); if (!firstChunk && decryptedChunk.length === 0) { // The final chunk can only be empty if it's the first one. throw new Error("final chunk is empty"); } controller.enqueue(decryptedChunk); }, }); } export function plaintextSize(ciphertextSize) { if (ciphertextSize < chacha20poly1305Overhead) { throw Error("ciphertext is too small"); } if (ciphertextSize === chacha20poly1305Overhead) { return 0; // Empty plaintext. } const fullChunks = Math.floor(ciphertextSize / chunkSizeWithOverhead); const lastChunk = ciphertextSize % chunkSizeWithOverhead; if (0 < lastChunk && lastChunk <= chacha20poly1305Overhead) { throw Error("ciphertext size is invalid"); } let size = ciphertextSize; size -= fullChunks * chacha20poly1305Overhead; size -= lastChunk > 0 ? chacha20poly1305Overhead : 0; return size; } export function encryptSTREAM(key) { const streamNonce = new Uint8Array(12); const incNonce = () => { for (let i = streamNonce.length - 2; i >= 0; i--) { streamNonce[i]++; if (streamNonce[i] !== 0) break; } }; const plaintextBuffer = new Uint8Array(chunkSize); let plaintextBufferUsed = 0; return new TransformStream({ transform(chunk, controller) { while (chunk.length > 0) { if (plaintextBufferUsed === plaintextBuffer.length) { const encryptedChunk = chacha20poly1305(key, streamNonce) .encrypt(plaintextBuffer); controller.enqueue(encryptedChunk); incNonce(); plaintextBufferUsed = 0; } const n = Math.min(plaintextBuffer.length - plaintextBufferUsed, chunk.length); plaintextBuffer.set(chunk.subarray(0, n), plaintextBufferUsed); plaintextBufferUsed += n; chunk = chunk.subarray(n); } }, flush(controller) { streamNonce[11] = 1; // Last chunk flag. const encryptedChunk = chacha20poly1305(key, streamNonce) .encrypt(plaintextBuffer.subarray(0, plaintextBufferUsed)); controller.enqueue(encryptedChunk); }, }); } export function ciphertextSize(plaintextSize) { const chunks = Math.max(1, Math.ceil(plaintextSize / chunkSize)); return plaintextSize + chacha20poly1305Overhead * chunks; }