@tuskydp/cli 0.3.0 → 0.4.0

package/src/crypto.ts

@@ -1,165 +0,0 @@
-import {
-  createHash,
-  createHmac,
-  randomBytes,
-  createCipheriv,
-  createDecipheriv,
-  pbkdf2Sync,
-} from 'crypto';
-
-export interface FileMeta {
-  /** Original filename */
-  n: string;
-  /** Original MIME type */
-  m: string;
-}
-
-const PBKDF2_ITERATIONS = 600_000;
-const AES_ALGO = 'aes-256-gcm' as const;
-const VERIFIER_CONTEXT = 'tuskydp-key-verifier-v1';
-
-export function deriveMasterKey(passphrase: string, salt: Buffer): Buffer {
-  return pbkdf2Sync(passphrase, salt, PBKDF2_ITERATIONS, 32, 'sha256');
-}
-
-export function computeVerifier(masterKey: Buffer): Buffer {
-  return createHmac('sha256', masterKey)
-    .update(VERIFIER_CONTEXT)
-    .digest();
-}
-
-export function verifyPassphrase(masterKey: Buffer, expectedVerifier: Buffer): boolean {
-  const computed = computeVerifier(masterKey);
-  if (computed.length !== expectedVerifier.length) return false;
-  let diff = 0;
-  for (let i = 0; i < computed.length; i++) diff |= computed[i] ^ expectedVerifier[i];
-  return diff === 0;
-}
-
-export function generateSalt(): Buffer {
-  return randomBytes(16);
-}
-
-export function generateRecoveryKey(): Buffer {
-  return randomBytes(32);
-}
-
-export function generateMasterKey(): Buffer {
-  return randomBytes(32);
-}
-
-export function wrapMasterKey(masterKey: Buffer, recoveryKey: Buffer): Buffer {
-  const wrapIv = randomBytes(12);
-  const cipher = createCipheriv(AES_ALGO, recoveryKey, wrapIv);
-  const wrapped = Buffer.concat([cipher.update(masterKey), cipher.final()]);
-  const tag = cipher.getAuthTag();
-  return Buffer.concat([wrapIv, wrapped, tag]);
-}
-
-export function unwrapMasterKey(wrappedData: Buffer, recoveryKey: Buffer): Buffer {
-  const wrapIv = wrappedData.subarray(0, 12);
-  const wrapped = wrappedData.subarray(12, wrappedData.length - 16);
-  const tag = wrappedData.subarray(wrappedData.length - 16);
-  const decipher = createDecipheriv(AES_ALGO, recoveryKey, wrapIv);
-  decipher.setAuthTag(tag);
-  return Buffer.concat([decipher.update(wrapped), decipher.final()]);
-}
-
-export function encryptBuffer(plaintext: Buffer, masterKey: Buffer): {
-  ciphertext: Buffer;
-  wrappedKey: string;
-  iv: string;
-  plaintextChecksum: string;
-} {
-  // Hash plaintext
-  const plaintextChecksum = createHash('sha256').update(plaintext).digest('hex');
-
-  // Generate random per-file key and IV
-  const fileKey = randomBytes(32);
-  const fileIv = randomBytes(12);
-
-  // Encrypt file
-  const cipher = createCipheriv(AES_ALGO, fileKey, fileIv);
-  const encrypted = Buffer.concat([cipher.update(plaintext), cipher.final()]);
-  const authTag = cipher.getAuthTag();
-  const ciphertext = Buffer.concat([encrypted, authTag]);
-
-  // Wrap file key with master key
-  const wrapIv = randomBytes(12);
-  const wrapCipher = createCipheriv(AES_ALGO, masterKey, wrapIv);
-  const wrappedKeyData = Buffer.concat([wrapCipher.update(fileKey), wrapCipher.final()]);
-  const wrapTag = wrapCipher.getAuthTag();
-  const wrappedKeyFull = Buffer.concat([wrapIv, wrappedKeyData, wrapTag]);
-
-  return {
-    ciphertext,
-    wrappedKey: wrappedKeyFull.toString('base64'),
-    iv: fileIv.toString('base64'),
-    plaintextChecksum,
-  };
-}
-
-/**
- * Encrypt filename + MIME type together using master key (AES-256-GCM).
- * Format: base64([iv(12) | ciphertext | authTag(16)])
- */
-export function encryptMetadata(name: string, mimeType: string, masterKey: Buffer): string {
-  const plaintext = Buffer.from(JSON.stringify({ n: name, m: mimeType }), 'utf8');
-  const iv = randomBytes(12);
-  const cipher = createCipheriv(AES_ALGO, masterKey, iv);
-  const encrypted = Buffer.concat([cipher.update(plaintext), cipher.final()]);
-  const tag = cipher.getAuthTag();
-  return Buffer.concat([iv, encrypted, tag]).toString('base64');
-}
-
-/**
- * Decrypt an encryptedName blob produced by encryptMetadata.
- * Returns the original { name, mimeType }.
- */
-export function decryptMetadata(encryptedBase64: string, masterKey: Buffer): FileMeta {
-  const buf = Buffer.from(encryptedBase64, 'base64');
-  const iv = buf.subarray(0, 12);
-  const tag = buf.subarray(buf.length - 16);
-  const ciphertext = buf.subarray(12, buf.length - 16);
-  const decipher = createDecipheriv(AES_ALGO, masterKey, iv);
-  decipher.setAuthTag(tag);
-  const plaintext = Buffer.concat([decipher.update(ciphertext), decipher.final()]);
-  return JSON.parse(plaintext.toString('utf8')) as FileMeta;
-}
-
-export function decryptBuffer(
-  ciphertext: Buffer,
-  wrappedKeyBase64: string,
-  ivBase64: string,
-  masterKey: Buffer,
-  expectedChecksum?: string,
-): Buffer {
-  // Unwrap file key
-  const wrappedKeyFull = Buffer.from(wrappedKeyBase64, 'base64');
-  const wrapIv = wrappedKeyFull.subarray(0, 12);
-  const wrappedKeyData = wrappedKeyFull.subarray(12, wrappedKeyFull.length - 16);
-  const wrapTag = wrappedKeyFull.subarray(wrappedKeyFull.length - 16);
-
-  const unwrapDecipher = createDecipheriv(AES_ALGO, masterKey, wrapIv);
-  unwrapDecipher.setAuthTag(wrapTag);
-  const fileKey = Buffer.concat([unwrapDecipher.update(wrappedKeyData), unwrapDecipher.final()]);
-
-  // Decrypt file
-  const fileIv = Buffer.from(ivBase64, 'base64');
-  const authTag = ciphertext.subarray(ciphertext.length - 16);
-  const encryptedData = ciphertext.subarray(0, ciphertext.length - 16);
-
-  const decipher = createDecipheriv(AES_ALGO, fileKey, fileIv);
-  decipher.setAuthTag(authTag);
-  const plaintext = Buffer.concat([decipher.update(encryptedData), decipher.final()]);
-
-  // Verify integrity
-  if (expectedChecksum) {
-    const actualChecksum = createHash('sha256').update(plaintext).digest('hex');
-    if (actualChecksum !== expectedChecksum) {
-      throw new Error('Integrity check failed — file may be corrupted');
-    }
-  }
-
-  return plaintext;
-}

package/src/lib/keyring.ts

@@ -1,50 +0,0 @@
-import { readFileSync, writeFileSync, mkdirSync, existsSync, unlinkSync } from 'fs';
-import { join } from 'path';
-import { homedir } from 'os';
-import { createCipheriv, createDecipheriv, randomBytes, createHash } from 'crypto';
-
-const SESSION_DIR = join(homedir(), '.tusky');
-const SESSION_FILE = join(SESSION_DIR, 'session.enc');
-
-// Derive a machine-specific key from hostname + user
-function getMachineKey(): Buffer {
-  const machineId = `${homedir()}-tusky-session-key`;
-  return createHash('sha256').update(machineId).digest();
-}
-
-export function storeMasterKey(masterKey: Buffer): void {
-  mkdirSync(SESSION_DIR, { recursive: true, mode: 0o700 });
-  const key = getMachineKey();
-  const iv = randomBytes(12);
-  const cipher = createCipheriv('aes-256-gcm', key, iv);
-  const encrypted = Buffer.concat([cipher.update(masterKey), cipher.final()]);
-  const tag = cipher.getAuthTag();
-  const data = Buffer.concat([iv, tag, encrypted]);
-  writeFileSync(SESSION_FILE, data, { mode: 0o600 });
-}
-
-export function loadMasterKey(): Buffer | null {
-  if (!existsSync(SESSION_FILE)) return null;
-  try {
-    const data = readFileSync(SESSION_FILE);
-    const key = getMachineKey();
-    const iv = data.subarray(0, 12);
-    const tag = data.subarray(12, 28);
-    const encrypted = data.subarray(28);
-    const decipher = createDecipheriv('aes-256-gcm', key, iv);
-    decipher.setAuthTag(tag);
-    return Buffer.concat([decipher.update(encrypted), decipher.final()]);
-  } catch {
-    return null;
-  }
-}
-
-export function clearSession(): void {
-  try {
-    if (existsSync(SESSION_FILE)) {
-      unlinkSync(SESSION_FILE);
-    }
-  } catch {
-    // Ignore
-  }
-}