@diana-db/odm 1.6.0 → 1.7.0

package/dist/helpers/crypto-helper.js

@@ -6,15 +6,13 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.CryptoHelper = void 0;
 const crypto_1 = __importDefault(require("crypto"));
 const ALGORITHM = 'aes-256-gcm';
-const KEY_LEN = 32;
-const SALT_LEN = 16;
-const IV_LEN = 12;
-const TAG_LEN = 16;
+const KEY_LEN = 32; // AES-256
+const IV_LEN = 12; // Recommended for GCM
+const TAG_LEN = 16; // GCM auth tag
 class CryptoHelper {
     static encrypt(password, plaintext) {
-        const salt = crypto_1.default.randomBytes(SALT_LEN);
         const iv = crypto_1.default.randomBytes(IV_LEN);
-        const key = crypto_1.default.scryptSync(password, salt, KEY_LEN);
+        const key = crypto_1.default.createHash('sha256').update(password).digest().subarray(0, KEY_LEN);
         const cipher = crypto_1.default.createCipheriv(ALGORITHM, key, iv);
         const ciphertext = Buffer.concat([
             cipher.update(plaintext),
@@ -22,7 +20,6 @@ class CryptoHelper {
         ]);
         const tag = cipher.getAuthTag();
         return Buffer.concat([
-            salt,
             iv,
             tag,
             ciphertext,
@@ -30,11 +27,10 @@ class CryptoHelper {
     }
     static decrypt(password, text) {
         const encrypted = Buffer.from(text, 'base64');
-        const salt = encrypted.subarray(0, SALT_LEN);
-        const iv = encrypted.subarray(SALT_LEN, SALT_LEN + IV_LEN);
-        const tag = encrypted.subarray(SALT_LEN + IV_LEN, SALT_LEN + IV_LEN + TAG_LEN);
-        const ciphertext = encrypted.subarray(SALT_LEN + IV_LEN + TAG_LEN);
-        const key = crypto_1.default.scryptSync(password, salt, KEY_LEN);
+        const iv = encrypted.subarray(0, IV_LEN);
+        const tag = encrypted.subarray(IV_LEN, IV_LEN + TAG_LEN);
+        const ciphertext = encrypted.subarray(IV_LEN + TAG_LEN);
+        const key = crypto_1.default.createHash('sha256').update(password).digest().subarray(0, KEY_LEN);
         const decipher = crypto_1.default.createDecipheriv(ALGORITHM, key, iv);
         decipher.setAuthTag(tag);
         return Buffer.concat([

package/dist/helpers/crypto-helper.js.map

@@ -1 +1 @@
-{"version":3,"file":"crypto-helper.js","sourceRoot":"","sources":["../../src/helpers/crypto-helper.ts"],"names":[],"mappings":";;;;;;AAAA,oDAAkD;AAClD,MAAM,SAAS,GAAG,aAAa,CAAC;AAChC,MAAM,OAAO,GAAG,EAAE,CAAC;AACnB,MAAM,QAAQ,GAAG,EAAE,CAAC;AACpB,MAAM,MAAM,GAAG,EAAE,CAAC;AAClB,MAAM,OAAO,GAAG,EAAE,CAAC;AAEnB,MAAa,YAAY;IAChB,MAAM,CAAC,OAAO,CAAC,QAAgB,EAAE,SAAiB;QACvD,MAAM,IAAI,GAAG,gBAAM,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC;QAC1C,MAAM,EAAE,GAAG,gBAAM,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;QACtC,MAAM,GAAG,GAAG,gBAAM,CAAC,UAAU,CAAC,QAAQ,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QACvD,MAAM,MAAM,GAAG,gBAAM,CAAC,cAAc,CAAC,SAAS,EAAE,GAAG,EAAE,EAAE,CAAC,CAAC;QACzD,MAAM,UAAU,GAAG,MAAM,CAAC,MAAM,CAAC;YAC/B,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC;YACxB,MAAM,CAAC,KAAK,EAAE;SACf,CAAC,CAAC;QACH,MAAM,GAAG,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;QAChC,OAAO,MAAM,CAAC,MAAM,CAAC;YACnB,IAAI;YACJ,EAAE;YACF,GAAG;YACH,UAAU;SACX,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IACxB,CAAC;IAEM,MAAM,CAAC,OAAO,CAAC,QAAgB,EAAE,IAAY;QAClD,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;QAC9C,MAAM,IAAI,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC;QAC7C,MAAM,EAAE,GAAG,SAAS,CAAC,QAAQ,CAAC,QAAQ,EAAE,QAAQ,GAAG,MAAM,CAAC,CAAC;QAC3D,MAAM,GAAG,GAAG,SAAS,CAAC,QAAQ,CAAC,QAAQ,GAAG,MAAM,EAAE,QAAQ,GAAG,MAAM,GAAG,OAAO,CAAC,CAAC;QAC/E,MAAM,UAAU,GAAG,SAAS,CAAC,QAAQ,CAAC,QAAQ,GAAG,MAAM,GAAG,OAAO,CAAC,CAAC;QACnE,MAAM,GAAG,GAAG,gBAAM,CAAC,UAAU,CAAC,QAAQ,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QACvD,MAAM,QAAQ,GAAG,gBAAM,CAAC,gBAAgB,CAAC,SAAS,EAAE,GAAG,EAAE,EAAE,CAAC,CAAC;QAC7D,QAAQ,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;QACzB,OAAO,MAAM,CAAC,MAAM,CAAC;YACnB,QAAQ,CAAC,MAAM,CAAC,UAAU,CAAC;YAC3B,QAAQ,CAAC,KAAK,EAAE;SACjB,CAAC,CAAC,QAAQ,EAAE,CAAC;IAChB,CAAC;CACF;AAjCD,oCAiCC"}
+{"version":3,"file":"crypto-helper.js","sourceRoot":"","sources":["../../src/helpers/crypto-helper.ts"],"names":[],"mappings":";;;;;;AAAA,oDAA4B;AAC5B,MAAM,SAAS,GAAG,aAAa,CAAC;AAChC,MAAM,OAAO,GAAG,EAAE,CAAC,CAAC,UAAU;AAC9B,MAAM,MAAM,GAAG,EAAE,CAAC,CAAC,sBAAsB;AACzC,MAAM,OAAO,GAAG,EAAE,CAAC,CAAC,eAAe;AAEnC,MAAa,YAAY;IAChB,MAAM,CAAC,OAAO,CAAC,QAAgB,EAAE,SAAiB;QACvD,MAAM,EAAE,GAAG,gBAAM,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;QACtC,MAAM,GAAG,GAAG,gBAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;QAEvF,MAAM,MAAM,GAAG,gBAAM,CAAC,cAAc,CAAC,SAAS,EAAE,GAAG,EAAE,EAAE,CAAC,CAAC;QAEzD,MAAM,UAAU,GAAG,MAAM,CAAC,MAAM,CAAC;YAC/B,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC;YACxB,MAAM,CAAC,KAAK,EAAE;SACf,CAAC,CAAC;QAEH,MAAM,GAAG,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;QAChC,OAAO,MAAM,CAAC,MAAM,CAAC;YACnB,EAAE;YACF,GAAG;YACH,UAAU;SACX,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IACxB,CAAC;IAEM,MAAM,CAAC,OAAO,CAAC,QAAgB,EAAE,IAAY;QAClD,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;QAC9C,MAAM,EAAE,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;QACzC,MAAM,GAAG,GAAG,SAAS,CAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC;QACzD,MAAM,UAAU,GAAG,SAAS,CAAC,QAAQ,CAAC,MAAM,GAAG,OAAO,CAAC,CAAC;QAExD,MAAM,GAAG,GAAG,gBAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;QACvF,MAAM,QAAQ,GAAG,gBAAM,CAAC,gBAAgB,CAAC,SAAS,EAAE,GAAG,EAAE,EAAE,CAAC,CAAC;QAC7D,QAAQ,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;QACzB,OAAO,MAAM,CAAC,MAAM,CAAC;YACnB,QAAQ,CAAC,MAAM,CAAC,UAAU,CAAC;YAC3B,QAAQ,CAAC,KAAK,EAAE;SACjB,CAAC,CAAC,QAAQ,EAAE,CAAC;IAChB,CAAC;CACF;AAlCD,oCAkCC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@diana-db/odm",
-  "version": "1.6.0",
+  "version": "1.7.0",
   "description": "ODM for DianaDB",
   "author": "Data Bikers Limited",
   "license": "MIT",