@vailix/mask 0.2.4 → 0.2.5

package/CHANGELOG.md

@@ -1,5 +1,15 @@
 # @vailix/mask
 
+## 0.2.5
+
+### Patch Changes
+
+- a48760e: Fix master key generation to use cryptographically secure random bytes
+
+  Changed master key generation from `randomUUID()` to `randomBytes(32).toString('hex')`.
+  This fixes the "Invalid master key format" error caused by UUID hyphens failing hex validation,
+  and provides proper 256-bit cryptographic randomness following security best practices.
+
 ## 0.2.4
 
 ### Patch Changes

package/dist/index.js

@@ -73,7 +73,7 @@ var IdentityManager = class {
     try {
       let key = await this.keyStorage.getKey();
       if (!key) {
-        key = (0, import_react_native_quick_crypto.randomUUID)();
+        key = (0, import_react_native_quick_crypto.randomBytes)(32).toString("hex");
         await this.keyStorage.setKey(key);
       }
       this.masterKey = key;

package/dist/index.mjs

@@ -1,8 +1,8 @@
 // src/index.ts
-import { createCipheriv, randomBytes } from "react-native-quick-crypto";
+import { createCipheriv, randomBytes as randomBytes2 } from "react-native-quick-crypto";
 
 // src/identity.ts
-import { createHmac, randomUUID } from "react-native-quick-crypto";
+import { createHmac, randomBytes } from "react-native-quick-crypto";
 import * as SecureStore from "expo-secure-store";
 
 // src/utils.ts
@@ -37,7 +37,7 @@ var IdentityManager = class {
     try {
       let key = await this.keyStorage.getKey();
       if (!key) {
-        key = randomUUID();
+        key = randomBytes(32).toString("hex");
         await this.keyStorage.setKey(key);
       }
       this.masterKey = key;
@@ -89,7 +89,7 @@ var IdentityManager = class {
 // src/storage.ts
 import { sqliteTable, text, integer, index } from "drizzle-orm/sqlite-core";
 import { lt, gt, inArray } from "drizzle-orm";
-import { randomUUID as randomUUID2 } from "react-native-quick-crypto";
+import { randomUUID } from "react-native-quick-crypto";
 import AsyncStorage from "@react-native-async-storage/async-storage";
 var SCAN_HISTORY_KEY = "vailix_scan_history";
 var scannedEvents = sqliteTable("scanned_events", {
@@ -123,7 +123,7 @@ var StorageService = class _StorageService {
     return Date.now() - lastScan >= this.rescanIntervalMs;
   }
   async logScan(rpi, metadataKey, timestamp) {
-    await this.db.insert(scannedEvents).values({ id: randomUUID2(), rpi, metadataKey, timestamp });
+    await this.db.insert(scannedEvents).values({ id: randomUUID(), rpi, metadataKey, timestamp });
     this.lastScanByRpi.set(rpi, Date.now());
     if (this.lastScanByRpi.size > _StorageService.MAX_SCAN_HISTORY_SIZE) {
       const entries2 = Array.from(this.lastScanByRpi.entries());
@@ -1055,7 +1055,7 @@ var VailixSDK = class _VailixSDK {
       throw new Error(`Metadata exceeds maximum size of ${_VailixSDK.MAX_METADATA_SIZE} bytes`);
     }
     const key = Buffer.from(keyHex, "hex");
-    const iv = randomBytes(12);
+    const iv = randomBytes2(12);
     const cipher = createCipheriv("aes-256-gcm", key, iv);
     let encrypted = cipher.update(jsonStr, "utf8", "base64");
     encrypted += cipher.final("base64");

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@vailix/mask",
-  "version": "0.2.4",
+  "version": "0.2.5",
   "description": "Privacy-preserving proximity tracing SDK for React Native & Expo",
   "author": "Gil Eyni",
   "keywords": [

package/src/identity.ts

@@ -1,4 +1,4 @@
-import { createHmac, randomUUID } from 'react-native-quick-crypto';
+import { createHmac, randomBytes } from 'react-native-quick-crypto';
 import * as SecureStore from 'expo-secure-store';
 import type { KeyStorage } from './types';
 import { generateDisplayName } from './utils';
@@ -30,7 +30,7 @@ export class IdentityManager {
         try {
             let key = await this.keyStorage.getKey();
             if (!key) {
-                key = randomUUID();
+                key = randomBytes(32).toString('hex');
                 await this.keyStorage.setKey(key);
             }
             this.masterKey = key;