Buckets:
| import random from './random.js'; | |
| import { p2s as concatSalt } from '../lib/buffer_utils.js'; | |
| import { encode as base64url } from './base64url.js'; | |
| import { wrap, unwrap } from './aeskw.js'; | |
| import checkP2s from '../lib/check_p2s.js'; | |
| import crypto, { isCryptoKey } from './webcrypto.js'; | |
| import { checkEncCryptoKey } from '../lib/crypto_key.js'; | |
| import invalidKeyInput from '../lib/invalid_key_input.js'; | |
| import { types } from './is_key_like.js'; | |
| function getCryptoKey(key, alg) { | |
| if (key instanceof Uint8Array) { | |
| return crypto.subtle.importKey('raw', key, 'PBKDF2', false, ['deriveBits']); | |
| } | |
| if (isCryptoKey(key)) { | |
| checkEncCryptoKey(key, alg, 'deriveBits', 'deriveKey'); | |
| return key; | |
| } | |
| throw new TypeError(invalidKeyInput(key, ...types, 'Uint8Array')); | |
| } | |
| async function deriveKey(p2s, alg, p2c, key) { | |
| checkP2s(p2s); | |
| const salt = concatSalt(alg, p2s); | |
| const keylen = parseInt(alg.slice(13, 16), 10); | |
| const subtleAlg = { | |
| hash: `SHA-${alg.slice(8, 11)}`, | |
| iterations: p2c, | |
| name: 'PBKDF2', | |
| salt, | |
| }; | |
| const wrapAlg = { | |
| length: keylen, | |
| name: 'AES-KW', | |
| }; | |
| const cryptoKey = await getCryptoKey(key, alg); | |
| if (cryptoKey.usages.includes('deriveBits')) { | |
| return new Uint8Array(await crypto.subtle.deriveBits(subtleAlg, cryptoKey, keylen)); | |
| } | |
| if (cryptoKey.usages.includes('deriveKey')) { | |
| return crypto.subtle.deriveKey(subtleAlg, cryptoKey, wrapAlg, false, ['wrapKey', 'unwrapKey']); | |
| } | |
| throw new TypeError('PBKDF2 key "usages" must include "deriveBits" or "deriveKey"'); | |
| } | |
| export const encrypt = async (alg, key, cek, p2c = 2048, p2s = random(new Uint8Array(16))) => { | |
| const derived = await deriveKey(p2s, alg, p2c, key); | |
| const encryptedKey = await wrap(alg.slice(-6), derived, cek); | |
| return { encryptedKey, p2c, p2s: base64url(p2s) }; | |
| }; | |
| export const decrypt = async (alg, key, encryptedKey, p2c, p2s) => { | |
| const derived = await deriveKey(p2s, alg, p2c, key); | |
| return unwrap(alg.slice(-6), derived, encryptedKey); | |
| }; | |
Xet Storage Details
- Size:
- 2.09 kB
- Xet hash:
- ed4cebe2f4c337504a79ca7f6fbc5c1c7461194d5935d51ee0484c71d9207376
·
Xet efficiently stores files, intelligently splitting them into unique chunks and accelerating uploads and downloads. More info.