@casual-simulation/crypto 2.0.12

package/HashHelpers.js

@@ -0,0 +1,72 @@
+import { sha256 } from 'hash.js';
+import stringify from 'fast-json-stable-stringify';
+import { randomBytes } from 'tweetnacl';
+import { deriveKey } from './Encryption';
+import { fromByteArray, toByteArray } from 'base64-js';
+/**
+ * Calculates the SHA-256 hash of the given object.
+ * @param obj The object to calculate the hash of.
+ */
+export function getHash(obj) {
+    const json = stringify(obj);
+    let sha = sha256();
+    sha.update(json);
+    return sha.digest('hex');
+}
+/**
+ * Calculates the SHA-256 hash of the given object and
+ * returns a byte buffer containing the hash.
+ * @param obj The object to hash.
+ */
+export function getHashBuffer(obj) {
+    const json = stringify(obj);
+    let sha = sha256();
+    sha.update(json);
+    return Buffer.from(sha.digest());
+}
+/**
+ * Hashes the given password using scrypt and returns the result.
+ * @param password The password that should be hashed.
+ */
+export function hashPassword(password) {
+    if (!password) {
+        throw new Error('Invalid password. Must not be null or undefined.');
+    }
+    const salt = randomBytes(16);
+    const textEncoder = new TextEncoder();
+    const passwordBytes = textEncoder.encode(password);
+    const hashBytes = deriveKey(passwordBytes, salt);
+    return `vP1.${fromByteArray(hashBytes.salt)}.${fromByteArray(hashBytes.hash)}`;
+}
+/**
+ * Verifies that the given password matches the given hash.
+ * @param password The password to check.
+ * @param hash The hash to check the password against.
+ */
+export function verifyPassword(password, hash) {
+    if (!password) {
+        throw new Error('Invalid password. Must not be null or undefined.');
+    }
+    if (!hash) {
+        throw new Error('Invalid hash. Must not be null or undefined.');
+    }
+    if (!hash.startsWith('vP1.')) {
+        throw new Error('Invalid hash. Must start with "vP1."');
+    }
+    const withoutVersion = hash.slice('vP1.'.length);
+    let nextPeriod = withoutVersion.indexOf('.');
+    if (nextPeriod < 0) {
+        return false;
+    }
+    const saltBase64 = withoutVersion.slice(0, nextPeriod);
+    const hashBase64 = withoutVersion.slice(nextPeriod + 1);
+    if (hashBase64.length <= 0) {
+        return false;
+    }
+    const textEncoder = new TextEncoder();
+    const passwordBytes = textEncoder.encode(password);
+    const salt = toByteArray(saltBase64);
+    const hashBytes = deriveKey(passwordBytes, salt);
+    return fromByteArray(hashBytes.hash) === hashBase64;
+}
+//# sourceMappingURL=HashHelpers.js.map

package/HashHelpers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"HashHelpers.js","sourceRoot":"","sources":["HashHelpers.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AACjC,OAAO,SAAS,MAAM,4BAA4B,CAAC;AAEnD,OAAO,EAAE,WAAW,EAAE,MAAM,WAAW,CAAC;AACxC,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AACzC,OAAO,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,WAAW,CAAC;AAEvD;;;GAGG;AACH,MAAM,UAAU,OAAO,CAAC,GAAQ;IAC5B,MAAM,IAAI,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC;IAC5B,IAAI,GAAG,GAAG,MAAM,EAAE,CAAC;IACnB,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;IACjB,OAAO,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;AAC7B,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,aAAa,CAAC,GAAQ;IAClC,MAAM,IAAI,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC;IAC5B,IAAI,GAAG,GAAG,MAAM,EAAE,CAAC;IACnB,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;IACjB,OAAO,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC;AACrC,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,YAAY,CAAC,QAAgB;IACzC,IAAI,CAAC,QAAQ,EAAE;QACX,MAAM,IAAI,KAAK,CAAC,kDAAkD,CAAC,CAAC;KACvE;IACD,MAAM,IAAI,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC;IAC7B,MAAM,WAAW,GAAG,IAAI,WAAW,EAAE,CAAC;IACtC,MAAM,aAAa,GAAG,WAAW,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;IAEnD,MAAM,SAAS,GAAG,SAAS,CAAC,aAAa,EAAE,IAAI,CAAC,CAAC;IAEjD,OAAO,OAAO,aAAa,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,aAAa,CACxD,SAAS,CAAC,IAAI,CACjB,EAAE,CAAC;AACR,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,cAAc,CAAC,QAAgB,EAAE,IAAY;IACzD,IAAI,CAAC,QAAQ,EAAE;QACX,MAAM,IAAI,KAAK,CAAC,kDAAkD,CAAC,CAAC;KACvE;IACD,IAAI,CAAC,IAAI,EAAE;QACP,MAAM,IAAI,KAAK,CAAC,8CAA8C,CAAC,CAAC;KACnE;IACD,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE;QAC1B,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;KAC3D;IACD,MAAM,cAAc,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACjD,IAAI,UAAU,GAAG,cAAc,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;IAC7C,IAAI,UAAU,GAAG,CAAC,EAAE;QAChB,OAAO,KAAK,CAAC;KAChB;IACD,MAAM,UAAU,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;IACvD,MAAM,UAAU,GAAG,cAAc,CAAC,KAAK,CAAC,UAAU,GAAG,CAAC,CAAC,CAAC;IACxD,IAAI,UAAU,CAAC,MAAM,IAAI,CAAC,EAAE;QACxB,OAAO,KAAK,CAAC;KAChB;IAED,MAAM,WAAW,GAAG,IAAI,WAAW,EAAE,CAAC;IACtC,MAAM,aAAa,GAAG,WAAW,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;IACnD,MAAM,IAAI,GAAG,WAAW,CAAC,UAAU,CAAC,CAAC;IACrC,MAAM,SAAS,GAAG,SAAS,CAAC,aAAa,EAAE,IAAI,CAAC,CAAC;IACjD,OAAO,aAAa,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,UAAU,CAAC;AACxD,CAAC"}

package/LICENSE.txt

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2019 Casual Simulation, Inc.
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,40 @@
+# Crypto
+
+[![npm (scoped)](https://img.shields.io/npm/v/@casual-simulation/crypto.svg)](https://www.npmjs.com/package/@casual-simulation/crypto)
+
+A common set of crypto helpers.
+
+Defines a common interface for crypto implementations between web browsers and Node.js. (Currently only signing/verification and SHA-256 hashing is implemented)
+
+## Installation
+
+```
+npm install @casual-simulation/crypto
+```
+
+## Usage
+
+```js
+// ES6-style imports are required.
+// If you are running in an environment that does not support ES Modules,
+// then use Webpack or Babel to transpile to the format you want. (like CommonJS)
+import { getHash, parsePublicPEMKey } from '@casual-simulation/crypto';
+
+let myHash = getHash('Hello, World');
+
+console.log('Hash: ', myHash);
+// Hash: 03675ac53ff9cd1535ccc7dfcdfa2c458c5218371f418dc136f2d19ac1fbe8a5
+
+let publicKeyPEM = `-----BEGIN PUBLIC KEY-----
+MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAryQICCl6NZ5gDKrnSztO
+3Hy8PEUcuyvg/ikC+VcIo2SFFSf18a3IMYldIugqqqZCs4/4uVW3sbdLs/6PfgdX
+7O9D22ZiFWHPYA2k2N744MNiCD1UE+tJyllUhSblK48bn+v1oZHCM0nYQ2NqUkvS
+j+hwUU3RiWl7x3D2s9wSdNt7XUtW05a/FXehsPSiJfKvHJJnGOX0BgTvkLnkAOTd
+OrUZ/wK69Dzu4IvrN4vs9Nes8vbwPa/ddZEzGR0cQMt0JBkhk9kU/qwqUseP1QRJ
+5I1jR4g8aYPL/ke9K35PxZWuDp3U0UPAZ3PjFAh+5T+fc7gzCs9dPzSHloruU+gl
+FQIDAQAB
+-----END PUBLIC KEY-----`;
+
+let publicKeyBytes = parsePublicPEMKey(publicKeyPEM);
+console.log(publicKeyBytes.byteLength);
+```

package/SignatureAlgorithm.d.ts

@@ -0,0 +1,15 @@
+/**
+ * The possible signature algorithm types.
+ */
+export declare type SignatureAlgorithmType = ECDSA_SHA256_NISTP256;
+/**
+ * Defines a signature algorithm that uses ECDSA Curve P-256 for signing and verification
+ * and SHA-256 for message integrity.
+ *
+ * Basically this gives us 2 things:
+ * 1. A digital signature. This means we can verify that only the party with the private key could have created a message.
+ * 2. A hash. This means we can verify that the data hasn't changed while in transit. This helps prevent chosen ciphertext attacks because
+ *    it's supposed to catch any changes to the ciphertext before signature verification occurs.
+ */
+export declare type ECDSA_SHA256_NISTP256 = 'ECDSA-SHA256-NISTP256';
+//# sourceMappingURL=SignatureAlgorithm.d.ts.map

package/SignatureAlgorithm.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=SignatureAlgorithm.js.map

package/SignatureAlgorithm.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"SignatureAlgorithm.js","sourceRoot":"","sources":["SignatureAlgorithm.ts"],"names":[],"mappings":""}

package/Signatures.d.ts

@@ -0,0 +1,69 @@
+/**
+ * Creates a keypair that can be used for digitally signing data.
+ *
+ * The returned keypair contains a version number at the beginning which determines the format of the following data.
+ *
+ * v1 keypairs use ed25519.
+ * The output string is formatting as following with periods between the components:
+ * 1. The version number (vK1) - the K is for keypair
+ * 2. The base64 of the public key.
+ * 3. The base64 of the encrypted private key.
+ *
+ * @param password The password that should be used to encrypt the private key of the keypair.
+ */
+export declare function keypair(password: string): string;
+/**
+ * Creates a version 1 keypair that can be used for digitally signing data.
+ *
+ * The returned keypair contains a version number at the beginning which determines the format of the following data.
+ *
+ * v1 keypairs use ed25519.
+ * The output string is formatting as following with periods between the components:
+ * 1. The version number (vK1) - The K is for keypair
+ * 2. The base64 of the public key.
+ * 3. The base64 of the encrypted private key.
+ *
+ * @param password The password that should be used to encrypt the private key of the keypair.
+ */
+export declare function keypairV1(password: string): string;
+/**
+ * Creates a version 1 signature from the given keypair and returns the result.
+ *
+ * v1 signatures use ed25519.
+ * The output string is formatted as following with periods between the components:
+ * 1. The version number (vS1) - THe S is for signature.
+ * 2. The base64 of the signature.
+ *
+ * @param keypair The keypair to use.
+ * @param password The password that is used to decrypt the private key.
+ * @param data The data to sign.
+ */
+export declare function sign(keypair: string, password: string, data: Uint8Array): string;
+/**
+ * Creates a version 1 signature from the given keypair and returns the result.
+ *
+ * v1 signatures use ed25519.
+ * The output string is formatted as following with periods between the components:
+ * 1. The version number (vS1) - THe S is for signature.
+ * 2. The base64 of the signature.
+ *
+ * @param keypair The keypair to use.
+ * @param password The password that is used to decrypt the private key.
+ * @param data The data to sign.
+ */
+export declare function signV1(keypair: string, password: string, data: Uint8Array): string;
+/**
+ * Validates that the given signature was created by the given keypair for the given data.
+ * @param keypair The keypair.
+ * @param signature The signature to validate.
+ * @param data The data that was signed.
+ */
+export declare function verify(keypair: string, signature: string, data: Uint8Array): boolean;
+/**
+ * Validates a signature that was created by signV1().
+ * @param keypair The keypair that created the signature.
+ * @param signature The signature.
+ * @param data The data.
+ */
+export declare function verifyV1(keypair: string, signature: string, data: Uint8Array): boolean;
+//# sourceMappingURL=Signatures.d.ts.map

package/Signatures.js

@@ -0,0 +1,165 @@
+import { sign as signImpl } from 'tweetnacl';
+import { encrypt, decrypt } from './Encryption';
+import { fromByteArray, toByteArray } from 'base64-js';
+/**
+ * Creates a keypair that can be used for digitally signing data.
+ *
+ * The returned keypair contains a version number at the beginning which determines the format of the following data.
+ *
+ * v1 keypairs use ed25519.
+ * The output string is formatting as following with periods between the components:
+ * 1. The version number (vK1) - the K is for keypair
+ * 2. The base64 of the public key.
+ * 3. The base64 of the encrypted private key.
+ *
+ * @param password The password that should be used to encrypt the private key of the keypair.
+ */
+export function keypair(password) {
+    return keypairV1(password);
+}
+/**
+ * Creates a version 1 keypair that can be used for digitally signing data.
+ *
+ * The returned keypair contains a version number at the beginning which determines the format of the following data.
+ *
+ * v1 keypairs use ed25519.
+ * The output string is formatting as following with periods between the components:
+ * 1. The version number (vK1) - The K is for keypair
+ * 2. The base64 of the public key.
+ * 3. The base64 of the encrypted private key.
+ *
+ * @param password The password that should be used to encrypt the private key of the keypair.
+ */
+export function keypairV1(password) {
+    const pair = signImpl.keyPair();
+    const encryptedPrivateKey = encrypt(password, pair.secretKey);
+    const encoder = new TextEncoder();
+    const privateKeyBytes = encoder.encode(encryptedPrivateKey);
+    return `vK1.${fromByteArray(pair.publicKey)}.${fromByteArray(privateKeyBytes)}`;
+}
+/**
+ * Creates a version 1 signature from the given keypair and returns the result.
+ *
+ * v1 signatures use ed25519.
+ * The output string is formatted as following with periods between the components:
+ * 1. The version number (vS1) - THe S is for signature.
+ * 2. The base64 of the signature.
+ *
+ * @param keypair The keypair to use.
+ * @param password The password that is used to decrypt the private key.
+ * @param data The data to sign.
+ */
+export function sign(keypair, password, data) {
+    if (!keypair) {
+        throw new Error('Invalid keypair. Must not be null or undefined.');
+    }
+    if (!password) {
+        throw new Error('Invalid password. Must not be null or undefined.');
+    }
+    if (keypair.startsWith('vK1.')) {
+        return signV1(keypair, password, data);
+    }
+    return null;
+}
+/**
+ * Creates a version 1 signature from the given keypair and returns the result.
+ *
+ * v1 signatures use ed25519.
+ * The output string is formatted as following with periods between the components:
+ * 1. The version number (vS1) - THe S is for signature.
+ * 2. The base64 of the signature.
+ *
+ * @param keypair The keypair to use.
+ * @param password The password that is used to decrypt the private key.
+ * @param data The data to sign.
+ */
+export function signV1(keypair, password, data) {
+    if (!keypair) {
+        throw new Error('Invalid keypair. Must not be null or undefined.');
+    }
+    if (!password) {
+        throw new Error('Invalid password. Must not be null or undefined.');
+    }
+    if (!keypair.startsWith('vK1.')) {
+        throw new Error('Invalid keypair. Must start with "vK1."');
+    }
+    const [publicKey, privateKey] = decodeKeyV1(keypair);
+    if (!publicKey || !privateKey) {
+        throw new Error('Invalid keypair. Unable to be decoded.');
+    }
+    const decrypted = decrypt(password, privateKey);
+    if (!decrypted) {
+        throw new Error('Invalid keypair. Unable to decrypt the private key.');
+    }
+    const signature = signImpl.detached(data, decrypted);
+    return `vS1.${fromByteArray(signature)}`;
+}
+/**
+ * Validates that the given signature was created by the given keypair for the given data.
+ * @param keypair The keypair.
+ * @param signature The signature to validate.
+ * @param data The data that was signed.
+ */
+export function verify(keypair, signature, data) {
+    if (!keypair) {
+        throw new Error('Invalid keypair. Must not be null or undefined.');
+    }
+    if (!signature) {
+        throw new Error('Invalid signature. Must not be null or undefined.');
+    }
+    const isV1Keypair = keypair.startsWith('vK1.');
+    const isV1Signature = signature.startsWith('vS1.');
+    if (isV1Keypair && isV1Signature) {
+        return verifyV1(keypair, signature, data);
+    }
+    else if (isV1Keypair || isV1Signature) {
+        throw new Error('Mismatched keypair and signature. They must have matching versions.');
+    }
+    return false;
+}
+/**
+ * Validates a signature that was created by signV1().
+ * @param keypair The keypair that created the signature.
+ * @param signature The signature.
+ * @param data The data.
+ */
+export function verifyV1(keypair, signature, data) {
+    if (!keypair) {
+        throw new Error('Invalid keypair. Must not be null or undefined.');
+    }
+    if (!signature) {
+        throw new Error('Invalid signature. Must not be null or undefined.');
+    }
+    if (!keypair.startsWith('vK1')) {
+        throw new Error('Invalid keypair. Must start with "vK1."');
+    }
+    if (!signature.startsWith('vS1')) {
+        throw new Error('Invalid signature. Must start with "vS1."');
+    }
+    const [publicKey, privateKey] = decodeKeyV1(keypair);
+    if (!publicKey || !privateKey) {
+        throw new Error('Invalid keypair. Unable to be decoded.');
+    }
+    const signatureBytes = decodeSigV1(signature);
+    return signImpl.detached.verify(data, signatureBytes, publicKey);
+}
+function decodeKeyV1(keypair) {
+    const withoutVersion = keypair.slice('vK1.'.length);
+    let nextPeriod = withoutVersion.indexOf('.');
+    if (nextPeriod < 0) {
+        return [null, null];
+    }
+    const publicKeyBase64 = withoutVersion.slice(0, nextPeriod);
+    const withoutPublicKey = withoutVersion.slice(nextPeriod + 1);
+    const privateKeyBase64 = withoutPublicKey;
+    const publicKey = toByteArray(publicKeyBase64);
+    const privateKeyBytes = toByteArray(privateKeyBase64);
+    const decoder = new TextDecoder();
+    const privateKey = decoder.decode(privateKeyBytes);
+    return [publicKey, privateKey];
+}
+function decodeSigV1(signature) {
+    const signatureBase64 = signature.slice('vK1.'.length);
+    return toByteArray(signatureBase64);
+}
+//# sourceMappingURL=Signatures.js.map

package/Signatures.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"Signatures.js","sourceRoot":"","sources":["Signatures.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,IAAI,QAAQ,EAAE,MAAM,WAAW,CAAC;AAC7C,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAChD,OAAO,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,WAAW,CAAC;AAEvD;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,OAAO,CAAC,QAAgB;IACpC,OAAO,SAAS,CAAC,QAAQ,CAAC,CAAC;AAC/B,CAAC;AAED;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,SAAS,CAAC,QAAgB;IACtC,MAAM,IAAI,GAAG,QAAQ,CAAC,OAAO,EAAE,CAAC;IAChC,MAAM,mBAAmB,GAAG,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC;IAC9D,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC;IAClC,MAAM,eAAe,GAAG,OAAO,CAAC,MAAM,CAAC,mBAAmB,CAAC,CAAC;IAC5D,OAAO,OAAO,aAAa,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,aAAa,CACxD,eAAe,CAClB,EAAE,CAAC;AACR,CAAC;AAED;;;;;;;;;;;GAWG;AACH,MAAM,UAAU,IAAI,CAChB,OAAe,EACf,QAAgB,EAChB,IAAgB;IAEhB,IAAI,CAAC,OAAO,EAAE;QACV,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;KACtE;IACD,IAAI,CAAC,QAAQ,EAAE;QACX,MAAM,IAAI,KAAK,CAAC,kDAAkD,CAAC,CAAC;KACvE;IAED,IAAI,OAAO,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE;QAC5B,OAAO,MAAM,CAAC,OAAO,EAAE,QAAQ,EAAE,IAAI,CAAC,CAAC;KAC1C;IACD,OAAO,IAAI,CAAC;AAChB,CAAC;AAED;;;;;;;;;;;GAWG;AACH,MAAM,UAAU,MAAM,CAClB,OAAe,EACf,QAAgB,EAChB,IAAgB;IAEhB,IAAI,CAAC,OAAO,EAAE;QACV,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;KACtE;IACD,IAAI,CAAC,QAAQ,EAAE;QACX,MAAM,IAAI,KAAK,CAAC,kDAAkD,CAAC,CAAC;KACvE;IACD,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE;QAC7B,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;KAC9D;IAED,MAAM,CAAC,SAAS,EAAE,UAAU,CAAC,GAAG,WAAW,CAAC,OAAO,CAAC,CAAC;IACrD,IAAI,CAAC,SAAS,IAAI,CAAC,UAAU,EAAE;QAC3B,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;KAC7D;IACD,MAAM,SAAS,GAAG,OAAO,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAC;IAChD,IAAI,CAAC,SAAS,EAAE;QACZ,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;KAC1E;IAED,MAAM,SAAS,GAAG,QAAQ,CAAC,QAAQ,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;IAErD,OAAO,OAAO,aAAa,CAAC,SAAS,CAAC,EAAE,CAAC;AAC7C,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,MAAM,CAClB,OAAe,EACf,SAAiB,EACjB,IAAgB;IAEhB,IAAI,CAAC,OAAO,EAAE;QACV,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;KACtE;IACD,IAAI,CAAC,SAAS,EAAE;QACZ,MAAM,IAAI,KAAK,CAAC,mDAAmD,CAAC,CAAC;KACxE;IACD,MAAM,WAAW,GAAG,OAAO,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;IAC/C,MAAM,aAAa,GAAG,SAAS,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;IACnD,IAAI,WAAW,IAAI,aAAa,EAAE;QAC9B,OAAO,QAAQ,CAAC,OAAO,EAAE,SAAS,EAAE,IAAI,CAAC,CAAC;KAC7C;SAAM,IAAI,WAAW,IAAI,aAAa,EAAE;QACrC,MAAM,IAAI,KAAK,CACX,qEAAqE,CACxE,CAAC;KACL;IAED,OAAO,KAAK,CAAC;AACjB,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,QAAQ,CACpB,OAAe,EACf,SAAiB,EACjB,IAAgB;IAEhB,IAAI,CAAC,OAAO,EAAE;QACV,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;KACtE;IACD,IAAI,CAAC,SAAS,EAAE;QACZ,MAAM,IAAI,KAAK,CAAC,mDAAmD,CAAC,CAAC;KACxE;IACD,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,EAAE;QAC5B,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;KAC9D;IACD,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,KAAK,CAAC,EAAE;QAC9B,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAC;KAChE;IAED,MAAM,CAAC,SAAS,EAAE,UAAU,CAAC,GAAG,WAAW,CAAC,OAAO,CAAC,CAAC;IACrD,IAAI,CAAC,SAAS,IAAI,CAAC,UAAU,EAAE;QAC3B,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;KAC7D;IAED,MAAM,cAAc,GAAG,WAAW,CAAC,SAAS,CAAC,CAAC;IAE9C,OAAO,QAAQ,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,EAAE,cAAc,EAAE,SAAS,CAAC,CAAC;AACrE,CAAC;AAED,SAAS,WAAW,CAAC,OAAe;IAChC,MAAM,cAAc,GAAG,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACpD,IAAI,UAAU,GAAG,cAAc,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;IAC7C,IAAI,UAAU,GAAG,CAAC,EAAE;QAChB,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;KACvB;IACD,MAAM,eAAe,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;IAC5D,MAAM,gBAAgB,GAAG,cAAc,CAAC,KAAK,CAAC,UAAU,GAAG,CAAC,CAAC,CAAC;IAC9D,MAAM,gBAAgB,GAAG,gBAAgB,CAAC;IAC1C,MAAM,SAAS,GAAG,WAAW,CAAC,eAAe,CAAC,CAAC;IAC/C,MAAM,eAAe,GAAG,WAAW,CAAC,gBAAgB,CAAC,CAAC;IACtD,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC;IAClC,MAAM,UAAU,GAAG,OAAO,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;IAEnD,OAAO,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;AACnC,CAAC;AAED,SAAS,WAAW,CAAC,SAAiB;IAClC,MAAM,eAAe,GAAG,SAAS,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACvD,OAAO,WAAW,CAAC,eAAe,CAAC,CAAC;AACxC,CAAC"}

package/index.d.ts

@@ -0,0 +1,7 @@
+export * from './SignatureAlgorithm';
+export * from './CryptoImpl';
+export * from './utils';
+export * from './HashHelpers';
+export * from './Encryption';
+export * from './Signatures';
+//# sourceMappingURL=index.d.ts.map

package/index.js

@@ -0,0 +1,7 @@
+export * from './SignatureAlgorithm';
+export * from './CryptoImpl';
+export * from './utils';
+export * from './HashHelpers';
+export * from './Encryption';
+export * from './Signatures';
+//# sourceMappingURL=index.js.map

package/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["index.ts"],"names":[],"mappings":"AAAA,cAAc,sBAAsB,CAAC;AACrC,cAAc,cAAc,CAAC;AAC7B,cAAc,SAAS,CAAC;AACxB,cAAc,eAAe,CAAC;AAC9B,cAAc,cAAc,CAAC;AAC7B,cAAc,cAAc,CAAC"}

package/package.json

@@ -0,0 +1,51 @@
+{
+    "name": "@casual-simulation/crypto",
+    "version": "2.0.12",
+    "description": "Crypto helpers used by AUX",
+    "keywords": [
+        "cryptography",
+        "crypto"
+    ],
+    "author": "Casual Simulation, Inc.",
+    "homepage": "https://github.com/casual-simulation/casualos",
+    "license": "MIT",
+    "main": "index.js",
+    "types": "index.d.ts",
+    "module": "index.js",
+    "directories": {
+        "lib": "."
+    },
+    "files": [
+        "/README.md",
+        "/LICENSE.txt",
+        "**/*.js",
+        "**/*.js.map",
+        "**/*.d.ts"
+    ],
+    "repository": {
+        "type": "git",
+        "url": "git+https://github.com/casual-simulation/casualos.git"
+    },
+    "scripts": {
+        "watch": "tsc --watch",
+        "watch:player": "npm run watch",
+        "build": "echo \"Nothing to do.\"",
+        "build:docs": "typedoc --mode file --excludeNotExported --out ../../api-docs/crypto .",
+        "test": "jest",
+        "test:watch": "jest --watchAll"
+    },
+    "bugs": {
+        "url": "https://github.com/casual-simulation/casualos/issues"
+    },
+    "publishConfig": {
+        "access": "public"
+    },
+    "dependencies": {
+        "@types/scrypt-async": "^1.3.1",
+        "base64-js": "^1.3.0",
+        "hash.js": "1.1.7",
+        "scrypt-js": "3.0.1",
+        "tweetnacl": "1.0.3"
+    },
+    "gitHead": "82eaafa4ae9d432b2fdd61f645eedc3577dffc5d"
+}

package/test/TestCryptoImpl.d.ts

@@ -0,0 +1,21 @@
+import { SigningCryptoImpl, PrivateCryptoKey, PublicCryptoKey, SigningCryptoKey } from '../CryptoImpl';
+import { SignatureAlgorithmType } from '../SignatureAlgorithm';
+export declare class TestCryptoImpl implements SigningCryptoImpl {
+    valid: boolean;
+    signature: ArrayBuffer;
+    algorithm: SignatureAlgorithmType;
+    constructor(algorithm: SignatureAlgorithmType);
+    supported(): boolean;
+    sign(key: PrivateCryptoKey, data: ArrayBuffer): Promise<ArrayBuffer>;
+    verify(key: PublicCryptoKey, signature: ArrayBuffer, data: ArrayBuffer): Promise<boolean>;
+    verifyBatch(key: PublicCryptoKey, signatures: ArrayBuffer[], datas: ArrayBuffer[]): Promise<boolean[]>;
+    exportKey(key: SigningCryptoKey): Promise<string>;
+    importPublicKey(key: string): Promise<PublicCryptoKey>;
+    importPrivateKey(key: string): Promise<PrivateCryptoKey>;
+    generateKeyPair(): Promise<[PublicCryptoKey, PrivateCryptoKey]>;
+}
+export declare class TestCryptoKey {
+    type: string;
+    constructor(type: string);
+}
+//# sourceMappingURL=TestCryptoImpl.d.ts.map

package/test/TestCryptoImpl.js

@@ -0,0 +1,57 @@
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+export class TestCryptoImpl {
+    constructor(algorithm) {
+        this.valid = false;
+        this.signature = null;
+        this.algorithm = algorithm;
+    }
+    supported() {
+        return true;
+    }
+    sign(key, data) {
+        return __awaiter(this, void 0, void 0, function* () {
+            return this.signature || data.slice(0, 32);
+        });
+    }
+    verify(key, signature, data) {
+        return __awaiter(this, void 0, void 0, function* () {
+            return this.valid;
+        });
+    }
+    verifyBatch(key, signatures, datas) {
+        return __awaiter(this, void 0, void 0, function* () {
+            return signatures.map(s => this.valid);
+        });
+    }
+    exportKey(key) {
+        return Promise.resolve(key.type);
+    }
+    importPublicKey(key) {
+        return Promise.resolve(new TestCryptoKey(key));
+    }
+    importPrivateKey(key) {
+        return Promise.resolve(new TestCryptoKey(key));
+    }
+    generateKeyPair() {
+        return __awaiter(this, void 0, void 0, function* () {
+            return [
+                new TestCryptoKey('public'),
+                new TestCryptoKey('private'),
+            ];
+        });
+    }
+}
+export class TestCryptoKey {
+    constructor(type) {
+        this.type = type;
+    }
+}
+//# sourceMappingURL=TestCryptoImpl.js.map

package/test/TestCryptoImpl.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"TestCryptoImpl.js","sourceRoot":"","sources":["TestCryptoImpl.ts"],"names":[],"mappings":";;;;;;;;;AAQA,MAAM,OAAO,cAAc;IAKvB,YAAY,SAAiC;QAJ7C,UAAK,GAAY,KAAK,CAAC;QACvB,cAAS,GAAgB,IAAI,CAAC;QAI1B,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;IAC/B,CAAC;IAED,SAAS;QACL,OAAO,IAAI,CAAC;IAChB,CAAC;IAEK,IAAI,CAAC,GAAqB,EAAE,IAAiB;;YAC/C,OAAO,IAAI,CAAC,SAAS,IAAI,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QAC/C,CAAC;KAAA;IAEK,MAAM,CACR,GAAoB,EACpB,SAAsB,EACtB,IAAiB;;YAEjB,OAAO,IAAI,CAAC,KAAK,CAAC;QACtB,CAAC;KAAA;IAEK,WAAW,CACb,GAAoB,EACpB,UAAyB,EACzB,KAAoB;;YAEpB,OAAO,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAC3C,CAAC;KAAA;IAED,SAAS,CAAC,GAAqB;QAC3B,OAAO,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IACrC,CAAC;IAED,eAAe,CAAC,GAAW;QACvB,OAAO,OAAO,CAAC,OAAO,CAAkB,IAAI,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC;IACpE,CAAC;IAED,gBAAgB,CAAC,GAAW;QACxB,OAAO,OAAO,CAAC,OAAO,CAAmB,IAAI,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC;IACrE,CAAC;IAEK,eAAe;;YACjB,OAAO;gBACc,IAAI,aAAa,CAAC,QAAQ,CAAC;gBAC1B,IAAI,aAAa,CAAC,SAAS,CAAC;aACjD,CAAC;QACN,CAAC;KAAA;CACJ;AAED,MAAM,OAAO,aAAa;IAGtB,YAAY,IAAY;QACpB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;IACrB,CAAC;CACJ"}

package/utils.d.ts

@@ -0,0 +1,57 @@
+/**
+ * The header that gets added to private keys formated as a PEM file.
+ */
+export declare const PEM_PRIVATE_KEY_HEADER: string;
+/**
+ * The footer that gets added to private keys formated as a PEM file.
+ */
+export declare const PEM_PRIVATE_KEY_FOOTER: string;
+/**
+ * The header that gets added to public keys formated as a PEM file.
+ */
+export declare const PEM_PUBLIC_KEY_HEADER: string;
+/**
+ * The footer that gets added to public keys formated as a PEM file.
+ */
+export declare const PEM_PUBLIC_KEY_FOOTER: string;
+/**
+ * Formats the given buffer as a PEM file for public keys.
+ * @param key The buffer that should be stored in the PEM file.
+ */
+export declare function formatPublicPEMKey(key: ArrayBuffer): string;
+/**
+ * Formats the given buffer as a PEM file for private keys.
+ * @param key The buffer that should be stored in the PEM file.
+ */
+export declare function formatPrivatePEMKey(key: ArrayBuffer): string;
+/**
+ * Formats the given buffer into PEM format.
+ * @param buffer The buffer to format.
+ * @param header The header to use.
+ * @param footer The footer to use.
+ */
+export declare function formatPEM(buffer: ArrayBuffer, header: string, footer: string): string;
+/**
+ * Parses the given private key PEM file into a buffer that contains just the key.
+ * @param pem The PEM file that represents the private key.
+ */
+export declare function parsePrivatePEMKey(pem: string): ArrayBuffer;
+/**
+ * Parses the given public key PEM file into a buffer that contains just the key.
+ * @param pem The PEM file that represents the public key.
+ */
+export declare function parsePublicPEMKey(pem: string): ArrayBuffer;
+/**
+ * Parses the given PEM file using the given header and footer strings.
+ * Returns an ArrayBuffer containing the bytes that were formatted into the PEM file.
+ *
+ * Note that this should probably not be used for PEM files other than the ones produced by
+ * formatPEM(). This is because PEM files can contain a lot of extra data that this implementation
+ * does not expect. For example, some PEM files can contain multiple keys and probably allow more whitespace.
+ *
+ * @param pem The PEM file to parse.
+ * @param header The header that we're expecting the file to have.
+ * @param footer The footer that we're expecting the file to have.
+ */
+export declare function parsePEM(pem: string, header: string, footer: string): ArrayBuffer;
+//# sourceMappingURL=utils.d.ts.map