UNPKG

crypt4gh_js

Version:

Crypt4GH Version JavaScript

github.com/fathelen/crypt4ghJS

fathelen/crypt4ghJS

386 lines (367 loc) • 15 kB

JavaScript

import * as helperfunction from './helper functions.js' import * as x25519 from '@stablelib/x25519' import * as Blake2b from '@stablelib/blake2b' import _sodium from 'libsodium-wrappers' export const SEGMENT_SIZE = 65536 const PacketTypeDataEnc = '0000' const PacketTypeEditList = '1000' const encryptionMethod = '0000' // only (xchacha20poly1305) const magicBytestring = helperfunction.string2byte('crypt4gh') export async function decrypption (headerInfo, text, counter, wantedblocks) { if (headerInfo[5][0] && headerInfo[5][1] === false && Array.from(headerInfo[5][0].keys()).includes(counter)) { const plaintext = await pureDecryption(Uint8Array.from(text), headerInfo[0]) const aplliedEdit = applyEditlist(headerInfo[5][0].get(counter), plaintext) return aplliedEdit } else if (headerInfo[5][0] && headerInfo[5][1] === true) { if(Array.from(headerInfo[5][0].keys()).includes(counter)){ const plaintext = await pureDecryption(Uint8Array.from(text), headerInfo[0]) const aplliedEdit = applyEditlist(headerInfo[5][0].get(counter), plaintext) return aplliedEdit } else if(counter > Math.max(...headerInfo[5][0].keys())) { const plaintext = await pureDecryption(Uint8Array.from(text), headerInfo[0]) return plaintext } else { const plaintext = Uint8Array.from(''); return plaintext } } else if (wantedblocks && !headerInfo[5][0]) { if (wantedblocks.includes(counter)) { const plaintext = await pureDecryption(Uint8Array.from(text), headerInfo[0]) return plaintext } } else if (!wantedblocks && !headerInfo[5][0]) { const plaintext = await pureDecryption(Uint8Array.from(text), headerInfo[0]) return plaintext } } export async function pureDecryption (d, key) { let encData = new Uint8Array() await (async () => { await _sodium.ready const sodium = _sodium const nonce = d.subarray(0, 12) const enc = d.subarray(12) encData = sodium.crypto_aead_chacha20poly1305_ietf_decrypt(null, enc, null, nonce, key) })() return encData } export function pureEdit (d) { const edits = calculateEditlist(d) //const edits = RecalculateEditlist(d) return edits } /** * Function checks if a decryption is possible, by checking if the given seckey is able to decode a header packet. * @param {*} header => header part of the encrypted data * @param {*} seckeys => secret key to decrypt header packet * @returns => List containing the sessionkey, nonce, body, editlist and position bodystart */ export async function headerDeconstruction (header, seckeys) { try { let editlist = new Uint8Array() const headerPackets = parse(header) const decryptedPackets = await decryptHeader(headerPackets[0], seckeys) const partitionedPackages = partitionPackets(decryptedPackets[0]) const sessionKey = parseEncPacket(partitionedPackages[0][0]) if (partitionedPackages[1].length > 0) { editlist = pureEdit([sessionKey, decryptedPackets[2], headerPackets[1], partitionedPackages[1], headerPackets[2]]) } return [sessionKey, decryptedPackets[2], headerPackets[1], partitionedPackages[1], headerPackets[2], editlist, partitionedPackages[1][0]] } catch (e) { console.trace('header deconstruction not possible.',e) } } /** * Function to check if the input data is in Crypt4gh format, version number and #packages * @param {*} header => start of the file containing the header packages * @returns => List containing the list of header packages, body and position bodystart */ export function parse (header) { try { // checken magic number const magicHeaderDecryption = new TextDecoder().decode(header.subarray(0, 8)) const magicHeaderOrignal = new TextDecoder().decode(magicBytestring) if (magicHeaderDecryption !== magicHeaderOrignal) return undefined // check version number const version = new Uint8Array(header.subarray(8, 12)) if (version[0] !== 1) return undefined // check packet count const numPakets = new Uint32Array(new Uint8Array(header.subarray(12, 16))) if (numPakets[0] === 0) return undefined // extract packets -- returns list of packets const extracted = extractPackets(numPakets[0], header) return [extracted[0], extracted[1], extracted[2]] } catch (e) { console.trace('header parsing not possible.') } } /** * Function to extract the individual header packages from the header * @param {*} packetNum => #header packages * @param {*} header => start of the file containing the header packages * @returns => List containing the list of header packages, body and position bodystart */ export function extractPackets (packetNum, header) { const listHeaderPackages = [] let position = 0 try { for (let i = 0; i < packetNum; i++) { const currentPackage = [] const headerStart = 16 if (i === 0) { const firstUint32 = new Uint32Array(new Uint8Array(header.slice(16, 20).buffer)) position = headerStart // first_header_packet_length + header_start; for (let j = 0; j < firstUint32[0]; j++) { currentPackage.push(header[position + j]) } position = position + firstUint32[0] } else { const uint32 = new Uint32Array(new Uint8Array(header.slice(position, position + 4))) for (let j = 0; j < uint32[0]; j++) { currentPackage.push(header[position + j]) } position = position + uint32[0] } listHeaderPackages.push(currentPackage) } const bodyBuffer = header.slice(position) return [listHeaderPackages, bodyBuffer, position] } catch (e) { console.trace("packages couln't be extracted.") } } /** * Function to decrypt the seckey fitting header package * @param {*} headerPackets => list of header packages * @param {*} seckeys => seckey to decode a header package * @returns => List containing the decrypted package, the undecrypted packages and the nonce */ export async function decryptHeader (headerPackets, seckeys) { seckeys = [seckeys] const decryptedPackets = [] const undecryptablePackets = [] let nonceUint8 = new Uint8Array(12) try { await (async () => { await _sodium.ready const sodium = _sodium for (let i = 0; i < headerPackets.length; i++) { const wKeyUint8 = new Uint8Array(headerPackets[i].slice(8, 40)) nonceUint8 = new Uint8Array(headerPackets[i].slice(40, 52)) const encryptedUint8 = new Uint8Array(headerPackets[i].slice(52)) for (let j = 0; j < seckeys.length; j++) { const k = x25519.generateKeyPairFromSeed(seckeys[j]) const dh = x25519.sharedKey(seckeys[j], wKeyUint8) const uint8Blake2b = new Uint8Array(dh.length + wKeyUint8.length + k.publicKey.length) uint8Blake2b.set(dh) uint8Blake2b.set(k.publicKey, dh.length) uint8Blake2b.set(wKeyUint8, dh.length + wKeyUint8.length) const blake2b = new Blake2b.BLAKE2b() blake2b.update(uint8Blake2b) const uint8FromBlake2b = blake2b.digest() const sharedKey = uint8FromBlake2b.subarray(0, 32) try { const encKey = sodium.crypto_aead_chacha20poly1305_ietf_decrypt(null, encryptedUint8, null, nonceUint8, sharedKey) decryptedPackets.push(encKey) } catch { undecryptablePackets.push(headerPackets[i]) } } } })() } catch (e) { console.trace('Header could not be decrypted.') } return [decryptedPackets, undecryptablePackets, nonceUint8] } /** * Function to devide the packages in encryption packages and edit packages * @param {*} packets => List of packages * @returns => Two dimensional Array containing first the encryption packages and second the edit packages */ function partitionPackets (packets) { try { const encPackets = [] const editPackets = [] for (let i = 0; i < packets.length; i++) { const packetType = [packets[i][0], packets[i][1], packets[i][2], packets[i][3]].join('') if (packetType === PacketTypeDataEnc) { encPackets.push(packets[i].subarray(4)) } else if (packetType === PacketTypeEditList) { editPackets.push(packets[i].subarray(8)) } else console.trace('Invalid package type') } return [encPackets, editPackets] } catch (e) { console.trace('Package partition not possible.') } } /** * Function to parse the encryption packages * @param {*} packet => encryption package * @returns => session key, to decrypt the encrypted data */ function parseEncPacket (packet) { try { const encMethod = [packet[0], packet[1], packet[2], packet[3]].join('') let sessionKey if (encMethod !== encryptionMethod) console.trace('Invalid encryption method!') else { sessionKey = packet.slice(4) } return sessionKey } catch (e) { console.trace('encryption package could not be parsed.') } } /** * Function to apply the edit list (original algorithm at http://samtools.github.io/hts-specs/crypt4gh.pdf page 15) * @param {*} edlist => editlist extracted from the edit package * @param {*} decryptedText => already decrypted input data * @returns => decrypted data edited according to the editlist */ export function applyEditlist (edlist, decryptedText) { try { const editedData = [] let pos = BigInt(0) const len = BigInt(decryptedText.length) for (let i = 0; i < edlist.length; i = i + 2) { const discard = edlist[i] pos = pos + discard if (i === edlist.length - 1) { const part = decryptedText.subarray(Number(pos), Number(len)) editedData.push(part) } else { const keep = edlist[i + 1] const part = decryptedText.subarray(Number(pos), Number(pos) + Number(keep)) editedData.push(part) pos = pos + keep } } let length = 0 editedData.forEach(item => { length += item.length }) // Create a new array with total length and merge all source arrays. const mergedArray = new Uint8Array(length) let offset = 0 editedData.forEach(item => { mergedArray.set(item, offset) offset += item.length }) return mergedArray } catch (e) { console.trace('edit list could not be applied.') } } /** * blocks2encrypt is needed to prepare the edit informations to calculate new editlists for each block * @param {*} headerInformation 2 dim array containing the header Informations, needed to decrypt the data * @returns an Array containing the addeded editlist (summed values of editlist), the editlist and a boolean if the og editlist was even or odd. */ function blocks2encrypt (headerInformation) { // 1.Step: Welche Blöcke müssen entschlüsselt werden const edit64 = new BigInt64Array(headerInformation[3][0].buffer) let editlist = edit64.subarray(1) let addedEdit = [] let j = 0n for (let i = 0; i < editlist.length; i++) { j = j + editlist[i] addedEdit.push(j) } // ungerade editlist anpassen let unEven = false const editOdd = new BigInt64Array(editlist.length + 1) if (editlist.length % 2 !== 0) { unEven = true const sum = (editlist.reduce((partialSum, a) => partialSum + a, 0n)) editOdd.set(editlist) editOdd[editOdd.length - 1] = 65536n * ((sum / 65536n) + 1n) - sum } // 2.Map erstellen if (editlist.length % 2 !== 0) { addedEdit = [] editlist = editOdd let j = 0n for (let i = 0; i < editlist.length; i++) { j = j + editlist[i] addedEdit.push(j) } } return [addedEdit, editlist, unEven] } const calculateSum = (arr) => { return arr.reduce((total, current) => { return total + current; }, 0n); } /** * calculateEditlist is a function to calculate edit lists for each block from the original editlist. * @param {*} headerInformation 2 dim array containing the header Informations, needed to decrypt the data * @param {*} encryptedData encrypted data whitch is about to be decrypted * @param {*} chacha20poly1305 decryption method * @returns Array containing a map with the edits for each block and a boolean if the og editlist was even or odd. */ function calculateEditlist (headerInformation) { const preEdit = blocks2encrypt(headerInformation) let bEven = 0 const blocks = new Map() for (let i = 0; i < preEdit[0].length; i++) { if (i % 2 === 0) { bEven = Number((preEdit[0][i]/ 65536n) + 1n) } else { const bOdd = Number((preEdit[0][i]/ 65536n) + 1n) //even edit list entry (keeping bytes) and odd edit list entry(non-keeping bytes) are in the same block if (bEven === bOdd && i >= 2) { if (Number((preEdit[0][i - 2] / 65536n) + 1n) === bOdd) { // previous bEven is also in the same block (bEven is already in the map) blocks.set(bEven, [...blocks.get(bEven), preEdit[1][i - 1]]) blocks.set(bEven, [...blocks.get(bEven), preEdit[1][i]]) } else { //previous bEven is not in the same block const lastKey = [...blocks.keys()].pop() const inlast = 65536n - calculateSum(blocks.get(lastKey)) blocks.set(bEven, [preEdit[1][i - 1] - inlast]) blocks.set(bEven, [...blocks.get(bEven), preEdit[1][i]]) } } else if (bEven === bOdd && i < 2) { //odd entry is bigger than blocksize if (preEdit[1][i - 1] > 65536n) { blocks.set(bEven, [preEdit[1][i - 1] - (BigInt(bEven - 1) * 65536n)]) } else { // odd entry is smaller than blocksize blocks.set(bEven, [preEdit[1][i - 1]]) } blocks.set(bEven, [...blocks.get(bEven), preEdit[1][i]]) //even and odd editlist entries are in different blocks } else if (bEven !== bOdd) { //odd editlist entry ist bigger than blocksize if (preEdit[1][i - 1] > 65536n) { // if blocks is empty if (blocks.size === 0){ const overjump = preEdit[1][i - 1]/65536n const rest = preEdit[1][i - 1] - overjump*65536n blocks.set(Number(overjump)+1, [rest]) }else{ const lastKey = [...blocks.keys()].pop() blocks.set(bEven, [preEdit[1][i - 1] - (65536n*BigInt(bEven-lastKey) - calculateSum(blocks.get(lastKey)))]) }} else { // odd edit list entry is smaller than blocksize blocks.set(bEven, [preEdit[1][i - 1]]) } const lastKey = [...blocks.keys()].pop() const left = preEdit[1][i] - (65536n- calculateSum(blocks.get(lastKey))) const take = left/65536n const rest = left - 65536n*take if (preEdit[1][i] > 65536n) { blocks.set(bEven, [...blocks.get(bEven), 65536n- calculateSum(blocks.get(lastKey))]) for (let j = lastKey+1; j <=bOdd-1; j++) { blocks.set(j, [0n, 65536n]) } } blocks.set(bOdd, [0n, rest]) } } } return [blocks, preEdit[2]] }