npm - @functionland/react-native-fula - Versions diffs - 1.2.2 → 1.2.3 - Mend

@functionland/react-native-fula 1.2.2 → 1.2.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

package/android/.gradle/7.5.1/checksums/checksums.lock CHANGED Viewed

Binary file

package/android/.gradle/7.5.1/fileHashes/fileHashes.bin CHANGED Viewed

Binary file

package/android/.gradle/7.5.1/fileHashes/fileHashes.lock CHANGED Viewed

Binary file

package/android/.gradle/7.5.1/fileHashes/resourceHashesCache.bin CHANGED Viewed

Binary file

package/android/.gradle/buildOutputCleanup/buildOutputCleanup.lock CHANGED Viewed

Binary file

package/android/.gradle/buildOutputCleanup/outputFiles.bin CHANGED Viewed

Binary file

package/android/src/main/java/land/fx/fula/Cryptography.java CHANGED Viewed

@@ -1,47 +1,60 @@
-package land.fx.fula;
-import android.util.Base64;
-import java.io.UnsupportedEncodingException;
-import java.security.InvalidAlgorithmParameterException;
-import java.security.InvalidKeyException;
-import java.security.NoSuchAlgorithmException;
-import java.security.spec.InvalidKeySpecException;
-import java.security.spec.InvalidParameterSpecException;
-import javax.crypto.BadPaddingException;
-import javax.crypto.Cipher;
-import javax.crypto.IllegalBlockSizeException;
-import javax.crypto.NoSuchPaddingException;
-import javax.crypto.SecretKey;
-import javax.crypto.SecretKeyFactory;
-import javax.crypto.spec.PBEKeySpec;
-import javax.crypto.spec.SecretKeySpec;
-public class Cryptography {
-  public static String encryptMsg(String message, SecretKey secret)
-    throws NoSuchAlgorithmException, NoSuchPaddingException, InvalidKeyException, InvalidParameterSpecException, IllegalBlockSizeException, BadPaddingException, UnsupportedEncodingException {
-    Cipher cipher = null;
-    cipher = Cipher.getInstance("AES/ECB/PKCS5Padding");
-    cipher.init(Cipher.ENCRYPT_MODE, secret);
-    byte[] cipherText = cipher.doFinal(message.getBytes("UTF-8"));
-    return Base64.encodeToString(cipherText, Base64.NO_WRAP);
-  }
-  public static String decryptMsg(String cipherText, SecretKey secret)
-    throws NoSuchPaddingException, NoSuchAlgorithmException, InvalidParameterSpecException, InvalidAlgorithmParameterException, InvalidKeyException, BadPaddingException, IllegalBlockSizeException, UnsupportedEncodingException {
-    Cipher cipher = null;
-    cipher = Cipher.getInstance("AES/ECB/PKCS5Padding");
-    cipher.init(Cipher.DECRYPT_MODE, secret);
-    byte[] decode = Base64.decode(cipherText, Base64.NO_WRAP);
-    String decryptString = new String(cipher.doFinal(decode), "UTF-8");
-    return decryptString;
-  }
-  public static SecretKey generateKey(byte[] key)
-    throws NoSuchAlgorithmException, InvalidKeySpecException {
-    PBEKeySpec pbeKeySpec = new PBEKeySpec(StaticHelper.bytesToBase64(key).toCharArray(), key, 1000, 128);
-    SecretKey pbeKey = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA256").generateSecret(pbeKeySpec);
-    return new SecretKeySpec(pbeKey.getEncoded(), "AES");
-  }
-}
+package land.fx.fula;
+import android.util.Base64;
+import java.io.UnsupportedEncodingException;
+import java.nio.charset.StandardCharsets;
+import java.security.InvalidAlgorithmParameterException;
+import java.security.InvalidKeyException;
+import java.security.NoSuchAlgorithmException;
+import java.security.spec.InvalidKeySpecException;
+import java.security.SecureRandom;
+import java.nio.ByteBuffer;
+import java.security.spec.InvalidParameterSpecException;
+import javax.crypto.BadPaddingException;
+import javax.crypto.Cipher;
+import javax.crypto.IllegalBlockSizeException;
+import javax.crypto.NoSuchPaddingException;
+import javax.crypto.SecretKey;
+import javax.crypto.SecretKeyFactory;
+import javax.crypto.spec.PBEKeySpec;
+import javax.crypto.spec.SecretKeySpec;
+import javax.crypto.spec.GCMParameterSpec;
+public class Cryptography {
+  public static String encryptMsg(String message, SecretKey secret)
+    throws NoSuchAlgorithmException, NoSuchPaddingException, InvalidKeyException, IllegalBlockSizeException, BadPaddingException, InvalidAlgorithmParameterException {
+    Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding");
+    byte[] iv = new byte[12]; // Ensure this is randomly generated for each encryption.
+    new SecureRandom().nextBytes(iv);
+    GCMParameterSpec spec = new GCMParameterSpec(128, iv);
+    cipher.init(Cipher.ENCRYPT_MODE, secret, spec);
+    byte[] cipherText = cipher.doFinal(message.getBytes(StandardCharsets.UTF_8));
+    ByteBuffer byteBuffer = ByteBuffer.allocate(iv.length + cipherText.length);
+    byteBuffer.put(iv);
+    byteBuffer.put(cipherText);
+    return Base64.encodeToString(byteBuffer.array(), Base64.NO_WRAP);
+  }
+  public static String decryptMsg(String cipherText, SecretKey secret)
+    throws NoSuchPaddingException, NoSuchAlgorithmException, InvalidAlgorithmParameterException, InvalidKeyException, BadPaddingException, IllegalBlockSizeException {
+    ByteBuffer byteBuffer = ByteBuffer.wrap(Base64.decode(cipherText, Base64.NO_WRAP));
+    byte[] iv = new byte[12];
+    byteBuffer.get(iv);
+    byte[] cipherBytes = new byte[byteBuffer.remaining()];
+    byteBuffer.get(cipherBytes);
+    Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding");
+    GCMParameterSpec spec = new GCMParameterSpec(128, iv);
+    cipher.init(Cipher.DECRYPT_MODE, secret, spec);
+    String decryptString = new String(cipher.doFinal(cipherBytes), StandardCharsets.UTF_8);
+    return decryptString;
+  }
+  public static SecretKey generateKey(byte[] key)
+    throws NoSuchAlgorithmException, InvalidKeySpecException {
+    PBEKeySpec pbeKeySpec = new PBEKeySpec(StaticHelper.bytesToBase64(key).toCharArray(), key, 1000, 128);
+    SecretKey pbeKey = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA256").generateSecret(pbeKeySpec);
+    return new SecretKeySpec(pbeKey.getEncoded(), "AES");
+  }
+}

package/android/src/main/java/land/fx/fula/FulaModule.java CHANGED Viewed

@@ -16,9 +16,17 @@ import org.apache.commons.io.FileUtils;
 import org.jetbrains.annotations.Contract;
 import java.io.File;
+import java.io.IOException;
 import java.nio.charset.StandardCharsets;
+import java.security.GeneralSecurityException;
+import java.security.InvalidAlgorithmParameterException;
+import java.security.InvalidKeyException;
+import java.security.NoSuchAlgorithmException;
 import java.util.Arrays;
+import javax.crypto.BadPaddingException;
+import javax.crypto.IllegalBlockSizeException;
+import javax.crypto.NoSuchPaddingException;
 import javax.crypto.SecretKey;
 import java.util.concurrent.Executors;
@@ -414,24 +422,32 @@ public class FulaModule extends ReactContextBaseJavaModule {
   }
   @NonNull
-  private byte[] createPeerIdentity(byte[] privateKey) throws Exception {
+  private byte[] createPeerIdentity(byte[] privateKey) throws GeneralSecurityException, IOException {
     try {
       // 1: First: create public key from provided private key
       // 2: Should read the local keychain store (if it is key-value, key is public key above,
       // 3: if found, decrypt using the private key
       // 4: If not found or decryption not successful, generate an identity
       // 5: then encrypt and store in keychain
       String encryptedKey = sharedPref.getValue(PRIVATE_KEY_STORE_ID);
       SecretKey secretKey = Cryptography.generateKey(privateKey);
-      if (encryptedKey == null) {
-        byte[] autoGeneratedIdentity = Fulamobile.generateEd25519Key();
-        encryptedKey = Cryptography.encryptMsg(StaticHelper.bytesToBase64(autoGeneratedIdentity), secretKey);
+      if (encryptedKey == null || !encryptedKey.startsWith("FULA_ENC_V2:")) {
+        byte[] autoGeneratedIdentity;
+        try {
+          autoGeneratedIdentity = Fulamobile.generateEd25519Key();
+        } catch (Exception e) {
+          Log.d("ReactNative", "Failed to generate key: " + e.getMessage());
+          throw new GeneralSecurityException("Failed to generate key", e);
+        }
+        encryptedKey = "FULA_ENC_V2:" + Cryptography.encryptMsg(StaticHelper.bytesToBase64(autoGeneratedIdentity), secretKey);
         sharedPref.add(PRIVATE_KEY_STORE_ID, encryptedKey);
       }
-      return StaticHelper.base64ToBytes(Cryptography.decryptMsg(encryptedKey, secretKey));
-    } catch (Exception e) {
+      String decryptedKey = Cryptography.decryptMsg(encryptedKey.replace("FULA_ENC_V2:", ""), secretKey);
+      return StaticHelper.base64ToBytes(decryptedKey);
+    } catch (InvalidKeyException | NoSuchAlgorithmException | NoSuchPaddingException | IllegalBlockSizeException | BadPaddingException | InvalidAlgorithmParameterException e) {
       Log.d("ReactNative", "createPeerIdentity failed with Error: " + e.getMessage());
       throw (e);
     }
@@ -512,7 +528,8 @@ public class FulaModule extends ReactContextBaseJavaModule {
   }
   @NonNull
-  private byte[] newClientInternal(byte[] identity, String storePath, String bloxAddr, String exchange, boolean autoFlush, boolean useRelay, boolean refresh) throws Exception {
+  private byte[] newClientInternal(byte[] identity, String storePath, String bloxAddr, String exchange, boolean autoFlush, boolean useRelay, boolean refresh) throws GeneralSecurityException, IOException {
+    byte[] peerIdentity = null;
     try {
       fulaConfig = new Config();
       if (storePath == null || storePath.trim().isEmpty()) {
@@ -522,7 +539,7 @@ public class FulaModule extends ReactContextBaseJavaModule {
       }
       Log.d("ReactNative", "newClientInternal storePath is set: " + fulaConfig.getStorePath());
-      byte[] peerIdentity = this.createPeerIdentity(identity);
+      peerIdentity = this.createPeerIdentity(identity);
       fulaConfig.setIdentity(peerIdentity);
       Log.d("ReactNative", "peerIdentity is set: " + toString(fulaConfig.getIdentity()));
       fulaConfig.setBloxAddr(bloxAddr);
@@ -535,19 +552,25 @@ public class FulaModule extends ReactContextBaseJavaModule {
       }
       if (this.fula == null || refresh) {
         Log.d("ReactNative", "Creating a new Fula instance");
-        shutdownInternal();
-        this.fula = Fulamobile.newClient(fulaConfig);
-      }
-      if (this.fula != null) {
-        this.fula.flush();
+        try {
+          shutdownInternal();
+          this.fula = Fulamobile.newClient(fulaConfig);
+          if (this.fula != null) {
+            this.fula.flush();
+          }
+        } catch (Exception e) {
+          Log.d("ReactNative", "Failed to create new Fula instance: " + e.getMessage());
+          throw new IOException("Failed to create new Fula instance", e);
+        }
       }
-      return peerIdentity;
-    } catch (Exception e) {
+    } catch (InvalidKeyException | NoSuchAlgorithmException | NoSuchPaddingException | IllegalBlockSizeException | BadPaddingException | InvalidAlgorithmParameterException e) {
       Log.d("ReactNative", "newclientInternal failed with Error: " + e.getMessage());
       throw (e);
     }
+    return peerIdentity;
   }
   @NonNull
   private String[] initInternal(byte[] identity, String storePath, String bloxAddr, String exchange, boolean autoFlush, String rootCid, boolean useRelay, boolean refresh) throws Exception {
     try {

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@functionland/react-native-fula",
-  "version": "1.2.2",
+  "version": "1.2.3",
   "description": "This package is a bridge to use the Fula libp2p protocols in the react-native which is using wnfs",
   "main": "lib/commonjs/index",
   "module": "lib/module/index",