UNPKG

secretbox-encoding

Version:

XSalsa20 Poly1305 codec that implements the abstract-encoding interface.

github.com/jwerle/secretbox-encoding

jwerle/secretbox-encoding

190 lines (152 loc) 4.53 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
const assert = require('assert') const crypto = require('crypto') const { crypto_secretbox_MACBYTES, crypto_secretbox_open_easy, crypto_secretbox_easy, crypto_generichash } = require('sodium-universal') /** * Converts a value to a buffer, if possible, otherwise * `null` is returned. * @private * @param {?(Mixed)} value * @return {?(Buffer)} */ function toBuffer(value) { if (Buffer.isBuffer(value)) { return value } if ('string' === typeof value) { return Buffer.from(value) } if (Array.isArray(value)) { return Buffer.from(value) } if (value && 'object' === typeof value && 'Buffer' === value.type) { // istanbul ignore next if (Array.isArray(value.data)) { return Buffer.from(value.data) } } return null } /** * The size in bytes for the nonce used to encipher/decipher * values encoded or decoded by this module. * @public */ const NONCE_BYTES = 24 /** * The size in bytes for the MAC used to encipher/decipher * values encoded or decoded by this module. * @public */ const MAC_BYTES = crypto_secretbox_MACBYTES /** * The default encoding for the `valueEncoding` option. * @private */ class DefaultEncoding { encode(value) { return value } decode(value) { return value } } /** * Creates and returns an abstract-encoding interface to encode * and decode values using the Xsalsa20poly1305 cipher. Nonces are * prepended (attached) to encoded output and must be a present * when decoding. Detached nonces may be used if the `Buffer` instance * to decode as a `nonce` property set on it. * @param {Buffer} key * @param {?(Object)} opts * @return {Object} */ function createCodec(key, opts) { if (!opts || 'object' !== typeof opts) { opts = {} } assert(Buffer.isBuffer(key), 'key should be a buffer') assert(32 >= key.length, 'key should be 32 bytes') assert('object' === typeof opts, 'options should be an object') const { valueEncoding = new DefaultEncoding() } = opts key = key.slice(0, 32) encode.bytes = 0 decode.bytes = 0 return { encodingLength, valueEncoding, encode, decode, key, } function encode(value, buffer, offset) { const encodedValue = valueEncoding.encode(value) const plaintext = toBuffer(encodedValue) const length = encodingLength(plaintext) assert(Buffer.isBuffer(plaintext), 'cannot convert plaintext to a buffer') assert(plaintext.length, 'cannot encode empty plaintext buffer') if (!Buffer.isBuffer(buffer)) { buffer = Buffer.alloc(length) } if (!offset || 'number' !== typeof offset) { offset = 0 } const ciphertext = buffer.slice(offset + NONCE_BYTES) const nonce = buffer.slice(offset, offset + NONCE_BYTES) assert(ciphertext.length >= length - NONCE_BYTES, 'cannot store ciphertext in buffer at offset.') crypto.randomBytes(NONCE_BYTES).copy(nonce) crypto_secretbox_easy(ciphertext, plaintext, nonce, key) encode.bytes = length return buffer.slice(offset, offset + length) } function decode(buffer, start, end) { if (!start || 'number' !== typeof start) { start = 0 } if (!end || 'number' !== typeof end) { end = buffer.length } assert(Buffer.isBuffer(buffer), 'cannot decode non-buffer') // istanbul ignore next const ciphertext = Buffer.isBuffer(buffer.nonce) ? Object.assign(buffer.slice(start, end), { nonce: buffer.nonce }) : buffer.slice(start + NONCE_BYTES, end) // istanbul ignore next const nonce = Buffer.isBuffer(buffer.nonce) ? buffer.nonce : buffer.slice(start, start + NONCE_BYTES) const length = ciphertext.length - MAC_BYTES if (length <= 0) { throw new RangeError('Cannot decode empty ciphertext at offset.') } const plaintext = Buffer.allocUnsafe(length) crypto_secretbox_open_easy(plaintext, ciphertext, nonce, key) decode.bytes = length + MAC_BYTES + NONCE_BYTES const decodedValue = valueEncoding.decode(plaintext, 0) return decodedValue } } /** * Cmoputes the encoding length for a given value. * @param {Mixed} value * @return {Number} */ function encodingLength(value) { const buffer = toBuffer(value) // istanbul ignore next if (buffer && buffer.nonce) { return buffer.length + MAC_BYTES } else { return buffer && buffer.length ? MAC_BYTES + NONCE_BYTES + buffer.length : 0 } } /** * Module exports. */ module.exports = Object.assign(createCodec, { MAC_BYTES, NONCE_BYTES })