Home Explore Help
Register Sign In
ice-static
/
Eve-Project
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 7c7ad82433
Branches Tags
Eve-Project
/
app-node
/
case-psql
/
node_modules
/
pg
/
lib
/
crypto
/
utils-webcrypto.js

utils-webcrypto.js 2.4 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283 
  1. const nodeCrypto = require('crypto')
    2. 

  2. 

  3. module.exports = {
    4. 

  4.   postgresMd5PasswordHash,
    5. 

  5.   randomBytes,
    6. 

  6.   deriveKey,
    7. 

  7.   sha256,
    8. 

  8.   hmacSha256,
    9. 

  9.   md5,
    10. 

  10. }
    11. 

  11. 

  12. /**
    13. 

  13.  * The Web Crypto API - grabbed from the Node.js library or the global
    14. 

  14.  * @type Crypto
    15. 

  15.  */
    16. 

  16. const webCrypto = nodeCrypto.webcrypto || globalThis.crypto
    17. 

  17. /**
    18. 

  18.  * The SubtleCrypto API for low level crypto operations.
    19. 

  19.  * @type SubtleCrypto
    20. 

  20.  */
    21. 

  21. const subtleCrypto = webCrypto.subtle
    22. 

  22. const textEncoder = new TextEncoder()
    23. 

  23. 

  24. /**
    25. 

  25.  *
    26. 

  26.  * @param {*} length
    27. 

  27.  * @returns
    28. 

  28.  */
    29. 

  29. function randomBytes(length) {
    30. 

  30.   return webCrypto.getRandomValues(Buffer.alloc(length))
    31. 

  31. }
    32. 

  32. 

  33. async function md5(string) {
    34. 

  34.   try {
    35. 

  35.     return nodeCrypto.createHash('md5').update(string, 'utf-8').digest('hex')
    36. 

  36.   } catch (e) {
    37. 

  37.     // `createHash()` failed so we are probably not in Node.js, use the WebCrypto API instead.
    38. 

  38.     // Note that the MD5 algorithm on WebCrypto is not available in Node.js.
    39. 

  39.     // This is why we cannot just use WebCrypto in all environments.
    40. 

  40.     const data = typeof string === 'string' ? textEncoder.encode(string) : string
    41. 

  41.     const hash = await subtleCrypto.digest('MD5', data)
    42. 

  42.     return Array.from(new Uint8Array(hash))
    43. 

  43.       .map((b) => b.toString(16).padStart(2, '0'))
    44. 

  44.       .join('')
    45. 

  45.   }
    46. 

  46. }
    47. 

  47. 

  48. // See AuthenticationMD5Password at https://www.postgresql.org/docs/current/static/protocol-flow.html
    49. 

  49. async function postgresMd5PasswordHash(user, password, salt) {
    50. 

  50.   var inner = await md5(password + user)
    51. 

  51.   var outer = await md5(Buffer.concat([Buffer.from(inner), salt]))
    52. 

  52.   return 'md5' + outer
    53. 

  53. }
    54. 

  54. 

  55. /**
    56. 

  56.  * Create a SHA-256 digest of the given data
    57. 

  57.  * @param {Buffer} data
    58. 

  58.  */
    59. 

  59. async function sha256(text) {
    60. 

  60.   return await subtleCrypto.digest('SHA-256', text)
    61. 

  61. }
    62. 

  62. 

  63. /**
    64. 

  64.  * Sign the message with the given key
    65. 

  65.  * @param {ArrayBuffer} keyBuffer
    66. 

  66.  * @param {string} msg
    67. 

  67.  */
    68. 

  68. async function hmacSha256(keyBuffer, msg) {
    69. 

  69.   const key = await subtleCrypto.importKey('raw', keyBuffer, { name: 'HMAC', hash: 'SHA-256' }, false, ['sign'])
    70. 

  70.   return await subtleCrypto.sign('HMAC', key, textEncoder.encode(msg))
    71. 

  71. }
    72. 

  72. 

  73. /**
    74. 

  74.  * Derive a key from the password and salt
    75. 

  75.  * @param {string} password
    76. 

  76.  * @param {Uint8Array} salt
    77. 

  77.  * @param {number} iterations
    78. 

  78.  */
    79. 

  79. async function deriveKey(password, salt, iterations) {
    80. 

  80.   const key = await subtleCrypto.importKey('raw', textEncoder.encode(password), 'PBKDF2', false, ['deriveBits'])
    81. 

  81.   const params = { name: 'PBKDF2', hash: 'SHA-256', salt: salt, iterations: iterations }
    82. 

  82.   return await subtleCrypto.deriveBits(params, key, 32 * 8, ['deriveBits'])
    83. 

  83. }
    84.