npm - asherah - Versions diffs - 1.2.9 → 1.3.0 - Mend

asherah 1.2.9 → 1.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/dist/asherah.d.ts CHANGED Viewed

@@ -46,3 +46,4 @@ export declare function decrypt(partitionId: string, dataRowRecord: string): Buf
 export declare function encrypt(partitionId: string, data: Buffer): string;
 export declare function decrypt_string(partitionId: string, dataRowRecord: string): string;
 export declare function encrypt_string(partitionId: string, data: string): string;
+export declare function set_max_stack_alloc_item_size(max_item_size: number): any;

package/dist/asherah.js CHANGED Viewed

@@ -1,23 +1,10 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.encrypt_string = exports.decrypt_string = exports.encrypt = exports.decrypt = exports.shutdown = exports.setup = void 0;
-const cobhan_1 = require("cobhan");
+exports.set_max_stack_alloc_item_size = exports.encrypt_string = exports.decrypt_string = exports.encrypt = exports.decrypt = exports.shutdown = exports.setup = void 0;
 const napi_asherah = require('../build/Release/napiasherah.node');
-const EstimatedEncryptionOverhead = 48;
-const EstimatedEnvelopeOverhead = 185;
-const Base64Overhead = 1.34;
-let EstimatedIntermediateKeyOverhead = 0;
-function estimate_buffer(dataLen, partitionLen) {
-    const estimatedDataLen = (dataLen + EstimatedEncryptionOverhead) * Base64Overhead;
-    return EstimatedEnvelopeOverhead + EstimatedIntermediateKeyOverhead + partitionLen + estimatedDataLen;
-}
 function setup(config) {
-    const configJsonBuffer = (0, cobhan_1.json_to_cbuffer)(config);
-    EstimatedIntermediateKeyOverhead = config.ProductID.length + config.ServiceName.length;
-    const result = napi_asherah.Napi_SetupJson(configJsonBuffer);
-    if (result < 0) {
-        throw new Error('setupJson failed: ' + result);
-    }
+    const configStr = JSON.stringify(config);
+    napi_asherah.Napi_SetupJson(configStr, config.ProductID.length, config.ServiceName.length, configStr.length);
 }
 exports.setup = setup;
 function shutdown() {
@@ -25,32 +12,22 @@ function shutdown() {
 }
 exports.shutdown = shutdown;
 function decrypt(partitionId, dataRowRecord) {
-    const partitionIdBuffer = (0, cobhan_1.string_to_cbuffer)(partitionId);
-    const jsonBuffer = (0, cobhan_1.string_to_cbuffer)(dataRowRecord);
-    const outputDataBuffer = (0, cobhan_1.allocate_cbuffer)(jsonBuffer.byteLength);
-    const result = napi_asherah.Napi_DecryptFromJson(partitionIdBuffer, jsonBuffer, outputDataBuffer);
-    if (result < 0) {
-        throw new Error('decrypt failed: ' + result);
-    }
-    return (0, cobhan_1.cbuffer_to_buffer)(outputDataBuffer);
+    return napi_asherah.Napi_DecryptFromJsonToBuffer(partitionId, dataRowRecord);
 }
 exports.decrypt = decrypt;
 function encrypt(partitionId, data) {
-    const partitionIdBuffer = (0, cobhan_1.string_to_cbuffer)(partitionId);
-    const dataBuffer = (0, cobhan_1.buffer_to_cbuffer)(data);
-    const outputJsonBuffer = (0, cobhan_1.allocate_cbuffer)(estimate_buffer(data.byteLength, partitionId.length));
-    const result = napi_asherah.Napi_EncryptToJson(partitionIdBuffer, dataBuffer, outputJsonBuffer);
-    if (result < 0) {
-        throw new Error('encrypt failed: ' + result);
-    }
-    return (0, cobhan_1.cbuffer_to_string)(outputJsonBuffer);
+    return napi_asherah.Napi_EncryptFromBufferToJson(partitionId, data);
 }
 exports.encrypt = encrypt;
 function decrypt_string(partitionId, dataRowRecord) {
-    return decrypt(partitionId, dataRowRecord).toString('utf8');
+    return napi_asherah.Napi_DecryptFromJsonToString(partitionId, dataRowRecord);
 }
 exports.decrypt_string = decrypt_string;
 function encrypt_string(partitionId, data) {
-    return encrypt(partitionId, Buffer.from(data, 'utf8'));
+    return napi_asherah.Napi_EncryptFromStringToJson(partitionId, data);
 }
 exports.encrypt_string = encrypt_string;
+function set_max_stack_alloc_item_size(max_item_size) {
+    return napi_asherah.Napi_SetMaxStackAllocItemSize(max_item_size);
+}
+exports.set_max_stack_alloc_item_size = set_max_stack_alloc_item_size;

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "asherah",
-  "version": "1.2.9",
+  "version": "1.3.0",
   "description": "Asherah envelope encryption and key rotation library",
   "main": "dist/asherah.js",
   "repository": {

package/src/napiasherah.cc CHANGED Viewed

@@ -1,85 +1,473 @@
 #include <napi.h>
 #include "../lib/libasherah.h"
-//extern GoInt32 SetupJson(void* configJson);
+const size_t EstimatedEncryptionOverhead = 48;
+const size_t EstimatedEnvelopeOverhead = 185;
+const double Base64Overhead = 1.34;
+size_t EstimatedIntermediateKeyOverhead = 0;
+size_t SafetyPaddingOverhead = 0;
+const size_t header_size = 64 / 8;
+size_t max_stack_alloc_size = 4096;
+const char* SetupJsonFailedMessage = "SetupJson failed: ";
+const char* DecryptFailedMessage = "Decrypt failed: ";
+const char* EncryptFailedMessage = "Encrypt failed: ";
+void finalize_cbuffer(napi_env env, void* finalize_data) {
+  char* buffer = ((char*) finalize_data) - header_size;
+  delete[] buffer;
+}
+__attribute__((always_inline)) inline size_t estimate_buffer(size_t dataLen, size_t partitionLen) {
+  double estimatedDataLen = double(dataLen + EstimatedEncryptionOverhead) * Base64Overhead;
+  return size_t(EstimatedEnvelopeOverhead + EstimatedIntermediateKeyOverhead + partitionLen + estimatedDataLen + SafetyPaddingOverhead);
+}
+__attribute__((always_inline)) inline char* configure_cbuffer(char *buffer, size_t length) {
+  *((int32_t*)buffer) = length;
+  *((int32_t*)(buffer+sizeof(int32_t))) = 0;
+  return buffer;
+}
+__attribute__((always_inline)) inline char* allocate_cbuffer(size_t length) {
+  char *cobhanBuffer = new char[length + header_size + SafetyPaddingOverhead];
+  return configure_cbuffer(cobhanBuffer, length);
+}
+__attribute__((always_inline)) inline char* nbuffer_to_cbuffer(Napi::Env &env, Napi::Buffer<unsigned char> &buffer) {
+  size_t bufferLength = buffer.ByteLength();
+  char *cobhanBuffer = new char[bufferLength + header_size + SafetyPaddingOverhead];
+  memcpy(cobhanBuffer + header_size, buffer.Data(), bufferLength);
+  return configure_cbuffer(cobhanBuffer, bufferLength);
+}
+__attribute__((always_inline)) inline Napi::Value cbuffer_to_nstring(Napi::Env &env, char *cobhanBuffer) {
+  napi_value output;
+  //Using C function because it allows length delimited input
+  napi_status status = napi_create_string_utf8(env, ((const char*) cobhanBuffer) + header_size, *((int*) cobhanBuffer), &output);
+  if(status != napi_ok) {
+    Napi::Error::New(env, "cbuffer_to_nstring failed")
+      .ThrowAsJavaScriptException();
+    return env.Null();
+  }
+  return Napi::String(env, output);
+}
+__attribute__((always_inline)) inline size_t nstring_utf8_length(Napi::Env &env, Napi::String &str) {
+  napi_status status;
+  size_t utf8_length;
+  status = napi_get_value_string_utf8(env, str, NULL, 0, &utf8_length);
+  if(status != napi_ok) {
+    Napi::Error::New(env, "nstring_to_cbuffer: Napi utf8 string conversion failure (length check): " + std::to_string(status))
+      .ThrowAsJavaScriptException();
+    return (size_t)(-1);
+  }
+  return utf8_length;
+}
+__attribute__((always_inline)) inline char* copy_nstring_to_cbuffer(Napi::Env &env, Napi::String &str, size_t utf8_length, char *cbuffer, size_t *length = NULL) {
+  napi_status status;
+  size_t copied_bytes;
+  status = napi_get_value_string_utf8(env, str, cbuffer + header_size, utf8_length + 1, &copied_bytes);
+  if(status != napi_ok) {
+    Napi::Error::New(env, "nstring_to_cbuffer: Napi utf8 string conversion failure: " + std::to_string(status))
+      .ThrowAsJavaScriptException();
+    return NULL;
+  }
+  if(copied_bytes != utf8_length) {
+    Napi::Error::New(env, "nstring_to_cbuffer: Did not copy expected number of bytes " + std::to_string(utf8_length) + " copied " + std::to_string(copied_bytes))
+      .ThrowAsJavaScriptException();
+    return NULL;
+  }
+  *((int*)cbuffer) = copied_bytes;
+  *((int*)(cbuffer+sizeof(int32_t))) = 0;
+  if(length != NULL)
+    *length = copied_bytes;
+  return cbuffer;
+}
+__attribute__((always_inline)) inline char* nstring_to_cbuffer(Napi::Env &env, Napi::String &str, size_t *length = NULL) {
+  size_t utf8_length = nstring_utf8_length(env, str);
+  if(utf8_length == (size_t)(-1)) {
+    return NULL;
+  }
+  char *cobhanBuffer = new char[utf8_length + 1 + header_size + SafetyPaddingOverhead];
+  char *output = copy_nstring_to_cbuffer(env, str, utf8_length, cobhanBuffer, length);
+  if(output == NULL) {
+    delete[] cobhanBuffer;
+  }
+  return output;
+}
 Napi::Value Napi_SetupJson(const Napi::CallbackInfo& info) {
   Napi::Env env = info.Env();
-  if (info.Length() < 1) {
-    Napi::TypeError::New(env, "Wrong number of arguments")
+  if (info.Length() < 3) {
+    Napi::TypeError::New(env, "SetupJson: Wrong number of arguments")
         .ThrowAsJavaScriptException();
     return env.Null();
   }
-  Napi::Buffer<unsigned char> configJson = info[0].As<Napi::Buffer<unsigned char>>();
+  if (!info[0].IsString() || !info[1].IsNumber() || !info[2].IsNumber()) {
+    Napi::TypeError::New(env, "SetupJson: Wrong argument types")
+      .ThrowAsJavaScriptException();
+    return env.Null();
+  }
+  Napi::String configJson = info[0].As<Napi::String>();
+  char *configJsonCobhanBuffer = nstring_to_cbuffer(env, configJson);
+  if (configJsonCobhanBuffer == NULL) {
+    return env.Null();
+  }
+  Napi::Number productIdLength = info[1].As<Napi::Number>();
+  Napi::Number serviceNameLength = info[2].As<Napi::Number>();
-  GoInt32 result = SetupJson(configJson.Data());
+  EstimatedIntermediateKeyOverhead = productIdLength.Int32Value() + serviceNameLength.Int32Value();
-  Napi::Number num = Napi::Number::New(env, result);
-  return num;
+  //extern GoInt32 SetupJson(void* configJson);
+  GoInt32 result = SetupJson(configJsonCobhanBuffer);
+  delete[] configJsonCobhanBuffer;
+  if (result < 0) {
+      Napi::TypeError::New(env, SetupJsonFailedMessage + std::to_string(result))
+        .ThrowAsJavaScriptException();
+  }
+  return env.Null();
 }
-//extern GoInt32 EncryptToJson(void* partitionIdPtr, void* dataPtr, void* jsonPtr);
-Napi::Value Napi_EncryptToJson(const Napi::CallbackInfo& info) {
+Napi::Value Napi_EncryptFromBufferToJson(const Napi::CallbackInfo& info) {
   Napi::Env env = info.Env();
-  if (info.Length() < 3) {
-    Napi::TypeError::New(env, "Wrong number of arguments")
+  if (info.Length() < 2) {
+    Napi::TypeError::New(env, "EncryptFromBufferToJson: Wrong number of arguments")
         .ThrowAsJavaScriptException();
     return env.Null();
   }
-  if (!info[0].IsBuffer() || !info[1].IsBuffer() || !info[2].IsBuffer()) {
-    Napi::TypeError::New(env, "Wrong arguments").ThrowAsJavaScriptException();
+  if (!info[0].IsString() || !info[1].IsBuffer()) {
+    Napi::TypeError::New(env, "EncryptFromBufferToJson: Wrong argument types")
+      .ThrowAsJavaScriptException();
+    return env.Null();
+  }
+  size_t partition_utf8_length, partition_copied_bytes;
+  Napi::String partitionId = info[0].As<Napi::String>();
+  partition_utf8_length = nstring_utf8_length(env, partitionId);
+  if(partition_utf8_length == (size_t)(-1)) {
+    return env.Null();
+  }
+  char *partitionIdCobhanBuffer;
+  if (partition_utf8_length < max_stack_alloc_size) {
+    partitionIdCobhanBuffer = (char*)alloca(partition_utf8_length + 1 + header_size + SafetyPaddingOverhead);
+  } else {
+    partitionIdCobhanBuffer = new char[partition_utf8_length + 1 + header_size + SafetyPaddingOverhead];
+  }
+  partitionIdCobhanBuffer = copy_nstring_to_cbuffer(env, partitionId, partition_utf8_length, partitionIdCobhanBuffer, &partition_copied_bytes);
+  if (partitionIdCobhanBuffer == NULL) {
+    if (partition_utf8_length >= max_stack_alloc_size)
+      delete[] partitionIdCobhanBuffer;
     return env.Null();
   }
-  Napi::Buffer<unsigned char> partitionId = info[0].As<Napi::Buffer<unsigned char>>();
   Napi::Buffer<unsigned char> data = info[1].As<Napi::Buffer<unsigned char>>();
-  Napi::Buffer<unsigned char> outputJson = info[2].As<Napi::Buffer<unsigned char>>();
+  char *dataCobhanBuffer = nbuffer_to_cbuffer(env, data);
+  if (dataCobhanBuffer == NULL) {
+    if (partition_utf8_length >= max_stack_alloc_size)
+      delete[] partitionIdCobhanBuffer;
+    return env.Null();
+  }
+  size_t bufferSize = estimate_buffer(partition_copied_bytes, data.ByteLength());
+  char *cobhanOutputBuffer;
+  if (bufferSize < max_stack_alloc_size) {
+    cobhanOutputBuffer = configure_cbuffer((char*)alloca(bufferSize + header_size + SafetyPaddingOverhead), bufferSize);
+  } else {
+    cobhanOutputBuffer = allocate_cbuffer(bufferSize);
+  }
-  GoInt32 result = EncryptToJson(partitionId.Data(), data.Data(), outputJson.Data());
+  //extern GoInt32 EncryptToJson(void* partitionIdPtr, void* dataPtr, void* jsonPtr);
+  GoInt32 result = EncryptToJson(partitionIdCobhanBuffer, dataCobhanBuffer, cobhanOutputBuffer);
+  if (partition_utf8_length >= max_stack_alloc_size)
+    delete[] partitionIdCobhanBuffer;
+  delete[] dataCobhanBuffer;
+  if (result < 0) {
+      if (bufferSize >= max_stack_alloc_size)
+        delete[] cobhanOutputBuffer;
+      Napi::TypeError::New(env, EncryptFailedMessage + std::to_string(result))
+        .ThrowAsJavaScriptException();
+      return env.Null();
+  }
-  Napi::Number num = Napi::Number::New(env, result);
-  return num;
+  Napi::Value output = cbuffer_to_nstring(env, cobhanOutputBuffer);
+  if (bufferSize >= max_stack_alloc_size)
+    delete[] cobhanOutputBuffer;
+  return output;
 }
-//extern GoInt32 DecryptFromJson(void* partitionIdPtr, void* jsonPtr, void* dataPtr);
-Napi::Value Napi_DecryptFromJson(const Napi::CallbackInfo& info) {
+Napi::Value Napi_EncryptFromStringToJson(const Napi::CallbackInfo& info) {
   Napi::Env env = info.Env();
-  if (info.Length() < 3) {
-    Napi::TypeError::New(env, "Wrong number of arguments")
+  if (info.Length() < 2) {
+    Napi::TypeError::New(env, "EncryptFromStringToJson: Wrong number of arguments")
         .ThrowAsJavaScriptException();
     return env.Null();
   }
-  if (!info[0].IsBuffer() || !info[1].IsBuffer() || !info[2].IsBuffer()) {
-    Napi::TypeError::New(env, "Wrong arguments").ThrowAsJavaScriptException();
+  if (!info[0].IsString() || !info[1].IsString()) {
+    Napi::TypeError::New(env, "EncryptFromStringToJson: Wrong argument types")
+      .ThrowAsJavaScriptException();
+    return env.Null();
+  }
+  size_t partition_utf8_length, partition_copied_bytes;
+  Napi::String partitionId = info[0].As<Napi::String>();
+  partition_utf8_length = nstring_utf8_length(env, partitionId);
+  if(partition_utf8_length == (size_t)(-1)) {
+    return env.Null();
+  }
+  char *partitionIdCobhanBuffer;
+  if (partition_utf8_length < max_stack_alloc_size) {
+    partitionIdCobhanBuffer = (char*)alloca(partition_utf8_length + 1 + header_size + SafetyPaddingOverhead);
+  } else {
+    partitionIdCobhanBuffer = new char[partition_utf8_length + 1 + header_size + SafetyPaddingOverhead];
+  }
+  partitionIdCobhanBuffer = copy_nstring_to_cbuffer(env, partitionId, partition_utf8_length, partitionIdCobhanBuffer, &partition_copied_bytes);
+  if (partitionIdCobhanBuffer == NULL) {
+    if (partition_utf8_length >= max_stack_alloc_size)
+      delete[] partitionIdCobhanBuffer;
+    return env.Null();
+  }
+  size_t input_utf8_length;
+  Napi::String input = info[1].As<Napi::String>();
+  char *inputCobhanBuffer = nstring_to_cbuffer(env, input, &input_utf8_length);
+  if (inputCobhanBuffer == NULL) {
+    if (partition_utf8_length >= max_stack_alloc_size)
+      delete[] partitionIdCobhanBuffer;
     return env.Null();
   }
-  Napi::Buffer<unsigned char> partitionId = info[0].As<Napi::Buffer<unsigned char>>();
-  Napi::Buffer<unsigned char> inputJson = info[1].As<Napi::Buffer<unsigned char>>();
-  Napi::Buffer<unsigned char> outputData = info[2].As<Napi::Buffer<unsigned char>>();
+  //Call estimate_buffer to determine Cobhan output buffer length
+  size_t bufferSize = estimate_buffer(partition_utf8_length, input_utf8_length);
-  GoInt32 result = DecryptFromJson(partitionId.Data(), inputJson.Data(), outputData.Data());
+  char *cobhanOutputBuffer;
+  if (bufferSize < max_stack_alloc_size) {
+    cobhanOutputBuffer = configure_cbuffer((char*)alloca(bufferSize + header_size + SafetyPaddingOverhead), bufferSize);
+  } else {
+    cobhanOutputBuffer = allocate_cbuffer(bufferSize);
+  }
-  Napi::Number num = Napi::Number::New(env, result);
-  return num;
+  //extern GoInt32 EncryptToJson(void* partitionIdPtr, void* dataPtr, void* jsonPtr);
+  GoInt32 result = EncryptToJson(partitionIdCobhanBuffer, inputCobhanBuffer, cobhanOutputBuffer);
+  if (partition_utf8_length >= max_stack_alloc_size)
+    delete[] partitionIdCobhanBuffer;
+  delete[] inputCobhanBuffer;
+  if (result < 0) {
+      if (bufferSize >= max_stack_alloc_size)
+        delete[] cobhanOutputBuffer;
+      Napi::TypeError::New(env, EncryptFailedMessage + std::to_string(result))
+        .ThrowAsJavaScriptException();
+      return env.Null();
+  }
+  Napi::Value output = cbuffer_to_nstring(env, cobhanOutputBuffer);
+  if (bufferSize >= max_stack_alloc_size)
+    delete[] cobhanOutputBuffer;
+  return output;
+}
+Napi::Value Napi_DecryptFromJsonToBuffer(const Napi::CallbackInfo& info) {
+  Napi::Env env = info.Env();
+  if (info.Length() < 2) {
+    Napi::TypeError::New(env, "DecryptFromJsonToBuffer: Wrong number of arguments")
+        .ThrowAsJavaScriptException();
+    return env.Null();
+  }
+  if (!info[0].IsString() || !info[1].IsString()) {
+    Napi::TypeError::New(env, "DecryptFromJsonToBuffer: Wrong argument types")
+      .ThrowAsJavaScriptException();
+    return env.Null();
+  }
+  size_t partition_utf8_length, partition_copied_bytes;
+  Napi::String partitionId = info[0].As<Napi::String>();
+  partition_utf8_length = nstring_utf8_length(env, partitionId);
+  if(partition_utf8_length == (size_t)(-1)) {
+    return env.Null();
+  }
+  char *partitionIdCobhanBuffer;
+  if (partition_utf8_length < max_stack_alloc_size) {
+    partitionIdCobhanBuffer = (char*)alloca(partition_utf8_length + 1 + header_size + SafetyPaddingOverhead);
+  } else {
+    partitionIdCobhanBuffer = new char[partition_utf8_length + 1 + header_size + SafetyPaddingOverhead];
+  }
+  partitionIdCobhanBuffer = copy_nstring_to_cbuffer(env, partitionId, partition_utf8_length, partitionIdCobhanBuffer, &partition_copied_bytes);
+  if (partitionIdCobhanBuffer == NULL) {
+    if (partition_utf8_length >= max_stack_alloc_size)
+      delete[] partitionIdCobhanBuffer;
+    return env.Null();
+  }
+  size_t utf8_length;
+  Napi::String inputJson = info[1].As<Napi::String>();
+  char *inputJsonCobhanBuffer = nstring_to_cbuffer(env, inputJson, &utf8_length);
+  if (inputJsonCobhanBuffer == NULL) {
+    if (partition_utf8_length >= max_stack_alloc_size)
+      delete[] partitionIdCobhanBuffer;
+    return env.Null();
+  }
+  char *cobhanOutputBuffer;
+  if (utf8_length < max_stack_alloc_size) {
+    cobhanOutputBuffer = configure_cbuffer((char*)alloca(utf8_length + header_size + SafetyPaddingOverhead), utf8_length);
+  } else {
+    cobhanOutputBuffer = allocate_cbuffer(utf8_length);
+  }
+  //extern GoInt32 DecryptFromJson(void* partitionIdPtr, void* jsonPtr, void* dataPtr);
+  GoInt32 result = DecryptFromJson(partitionIdCobhanBuffer, inputJsonCobhanBuffer, cobhanOutputBuffer);
+  if (partition_utf8_length >= max_stack_alloc_size)
+    delete[] partitionIdCobhanBuffer;
+  delete[] inputJsonCobhanBuffer;
+  if (result < 0) {
+      delete[] cobhanOutputBuffer;
+      Napi::TypeError::New(env, DecryptFailedMessage + std::to_string(result))
+        .ThrowAsJavaScriptException();
+      return env.Null();
+  }
+  //Wrap the Cobhan output buffer with a NAPI buffer with finalizer
+  if (utf8_length < max_stack_alloc_size) {
+    return Napi::Buffer<unsigned char>::Copy(env,
+      ((unsigned char*) cobhanOutputBuffer) + header_size,
+      *((int*) cobhanOutputBuffer));
+  } else {
+    return Napi::Buffer<unsigned char>::New(env,
+      ((unsigned char*) cobhanOutputBuffer) + header_size,
+      *((int*) cobhanOutputBuffer),
+      &finalize_cbuffer);
+  }
+}
+Napi::Value Napi_DecryptFromJsonToString(const Napi::CallbackInfo& info) {
+  Napi::Env env = info.Env();
+  if (info.Length() < 2) {
+    Napi::TypeError::New(env, "DecryptFromJsonToString: Wrong number of arguments")
+        .ThrowAsJavaScriptException();
+    return env.Null();
+  }
+  if (!info[0].IsString() || !info[1].IsString()) {
+    Napi::TypeError::New(env, "DecryptFromJsonToString: Wrong argument types")
+      .ThrowAsJavaScriptException();
+    return env.Null();
+  }
+  size_t partition_utf8_length, partition_copied_bytes;
+  Napi::String partitionId = info[0].As<Napi::String>();
+  partition_utf8_length = nstring_utf8_length(env, partitionId);
+  if(partition_utf8_length == (size_t)(-1)) {
+    return env.Null();
+  }
+  char *partitionIdCobhanBuffer;
+  if (partition_utf8_length < max_stack_alloc_size) {
+    partitionIdCobhanBuffer = (char*)alloca(partition_utf8_length + 1 + header_size + SafetyPaddingOverhead);
+  } else {
+    partitionIdCobhanBuffer = new char[partition_utf8_length + 1 + header_size + SafetyPaddingOverhead];
+  }
+  partitionIdCobhanBuffer = copy_nstring_to_cbuffer(env, partitionId, partition_utf8_length, partitionIdCobhanBuffer, &partition_copied_bytes);
+  if (partitionIdCobhanBuffer == NULL) {
+    if (partition_utf8_length >= max_stack_alloc_size)
+      delete[] partitionIdCobhanBuffer;
+    return env.Null();
+  }
+  size_t utf8_length;
+  Napi::String inputJson = info[1].As<Napi::String>();
+  char *inputJsonCobhanBuffer = nstring_to_cbuffer(env, inputJson, &utf8_length);
+  if (inputJsonCobhanBuffer == NULL) {
+    if (partition_utf8_length >= max_stack_alloc_size)
+      delete[] partitionIdCobhanBuffer;
+    return env.Null();
+  }
+  char *cobhanOutputBuffer;
+  if (utf8_length < max_stack_alloc_size) {
+    cobhanOutputBuffer = configure_cbuffer((char*)alloca(utf8_length + header_size + SafetyPaddingOverhead), utf8_length);
+  } else {
+    cobhanOutputBuffer = allocate_cbuffer(utf8_length);
+  }
+  //extern GoInt32 DecryptFromJson(void* partitionIdPtr, void* jsonPtr, void* dataPtr);
+  GoInt32 result = DecryptFromJson(partitionIdCobhanBuffer, inputJsonCobhanBuffer, cobhanOutputBuffer);
+  if (partition_utf8_length >= max_stack_alloc_size)
+    delete[] partitionIdCobhanBuffer;
+  delete[] inputJsonCobhanBuffer;
+  if (result < 0) {
+    if (utf8_length >= max_stack_alloc_size)
+      delete[] cobhanOutputBuffer;
+    Napi::TypeError::New(env, DecryptFailedMessage + std::to_string(result))
+      .ThrowAsJavaScriptException();
+    return env.Null();
+  }
+  Napi::Value output = cbuffer_to_nstring(env, cobhanOutputBuffer);
+  if (utf8_length >= max_stack_alloc_size)
+    delete[] cobhanOutputBuffer;
+  return output;
 }
-//extern void Shutdown();
 Napi::Value Napi_Shutdown(const Napi::CallbackInfo& info) {
   Napi::Env env = info.Env();
+  //extern void Shutdown();
   Shutdown();
   return env.Null();
 }
+Napi::Value Napi_SetMaxStackAllocItemSize(const Napi::CallbackInfo& info) {
+  Napi::Env env = info.Env();
+  if (info.Length() < 1) {
+    Napi::TypeError::New(env, "SetMaxStackAllocItemSize: Wrong number of arguments")
+        .ThrowAsJavaScriptException();
+    return env.Null();
+  }
+  Napi::Number item_size = info[0].As<Napi::Number>();
+  max_stack_alloc_size = (size_t)item_size.Int32Value();
+  return env.Null();
+}
+Napi::Value Napi_SetSafetyPaddingOverhead(const Napi::CallbackInfo& info) {
+  Napi::Env env = info.Env();
+  if (info.Length() < 1) {
+    Napi::TypeError::New(env, "SetSafetyPaddingOverhead: Wrong number of arguments")
+        .ThrowAsJavaScriptException();
+    return env.Null();
+  }
+  Napi::Number safety_padding = info[0].As<Napi::Number>();
+  SafetyPaddingOverhead = (size_t)safety_padding.Int32Value();
+  return env.Null();
+}
 Napi::Object Init(Napi::Env env, Napi::Object exports) {
   exports.Set(Napi::String::New(env, "Napi_SetupJson"), Napi::Function::New(env, Napi_SetupJson));
-  exports.Set(Napi::String::New(env, "Napi_EncryptToJson"), Napi::Function::New(env, Napi_EncryptToJson));
-  exports.Set(Napi::String::New(env, "Napi_DecryptFromJson"), Napi::Function::New(env, Napi_DecryptFromJson));
+  exports.Set(Napi::String::New(env, "Napi_EncryptFromBufferToJson"), Napi::Function::New(env, Napi_EncryptFromBufferToJson));
+  exports.Set(Napi::String::New(env, "Napi_EncryptFromStringToJson"), Napi::Function::New(env, Napi_EncryptFromStringToJson));
+  exports.Set(Napi::String::New(env, "Napi_DecryptFromJsonToBuffer"), Napi::Function::New(env, Napi_DecryptFromJsonToBuffer));
+  exports.Set(Napi::String::New(env, "Napi_DecryptFromJsonToString"), Napi::Function::New(env, Napi_DecryptFromJsonToString));
   exports.Set(Napi::String::New(env, "Napi_Shutdown"), Napi::Function::New(env, Napi_Shutdown));
   return exports;
 }