Home Explore Help
Sign In
liushengqiang
/
excalidraw
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 8f8dd1105f
Branches Tags
excalidraw
/
src
/
data
/
encryption.ts

encryption.ts 2.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293 
  1. import { ENCRYPTION_KEY_BITS } from "../constants";
    2. 

  2. import { blobToArrayBuffer } from "./blob";
    3. 

  3. 

  4. export const IV_LENGTH_BYTES = 12;
    5. 

  5. 

  6. export const createIV = () => {
    7. 

  7.   const arr = new Uint8Array(IV_LENGTH_BYTES);
    8. 

  8.   return window.crypto.getRandomValues(arr);
    9. 

  9. };
    10. 

  10. 

  11. export const generateEncryptionKey = async <
    12. 

  12.   T extends "string" | "cryptoKey" = "string",
    13. 

  13. >(
    14. 

  14.   returnAs?: T,
    15. 

  15. ): Promise<T extends "cryptoKey" ? CryptoKey : string> => {
    16. 

  16.   const key = await window.crypto.subtle.generateKey(
    17. 

  17.     {
    18. 

  18.       name: "AES-GCM",
    19. 

  19.       length: ENCRYPTION_KEY_BITS,
    20. 

  20.     },
    21. 

  21.     true, // extractable
    22. 

  22.     ["encrypt", "decrypt"],
    23. 

  23.   );
    24. 

  24.   return (
    25. 

  25.     returnAs === "cryptoKey"
    26. 

  26.       ? key
    27. 

  27.       : (await window.crypto.subtle.exportKey("jwk", key)).k
    28. 

  28.   ) as T extends "cryptoKey" ? CryptoKey : string;
    29. 

  29. };
    30. 

  30. 

  31. export const getCryptoKey = (key: string, usage: KeyUsage) =>
    32. 

  32.   window.crypto.subtle.importKey(
    33. 

  33.     "jwk",
    34. 

  34.     {
    35. 

  35.       alg: "A128GCM",
    36. 

  36.       ext: true,
    37. 

  37.       k: key,
    38. 

  38.       key_ops: ["encrypt", "decrypt"],
    39. 

  39.       kty: "oct",
    40. 

  40.     },
    41. 

  41.     {
    42. 

  42.       name: "AES-GCM",
    43. 

  43.       length: ENCRYPTION_KEY_BITS,
    44. 

  44.     },
    45. 

  45.     false, // extractable
    46. 

  46.     [usage],
    47. 

  47.   );
    48. 

  48. 

  49. export const encryptData = async (
    50. 

  50.   key: string | CryptoKey,
    51. 

  51.   data: Uint8Array | ArrayBuffer | Blob | File | string,
    52. 

  52. ): Promise<{ encryptedBuffer: ArrayBuffer; iv: Uint8Array }> => {
    53. 

  53.   const importedKey =
    54. 

  54.     typeof key === "string" ? await getCryptoKey(key, "encrypt") : key;
    55. 

  55.   const iv = createIV();
    56. 

  56.   const buffer: ArrayBuffer | Uint8Array =
    57. 

  57.     typeof data === "string"
    58. 

  58.       ? new TextEncoder().encode(data)
    59. 

  59.       : data instanceof Uint8Array
    60. 

  60.       ? data
    61. 

  61.       : data instanceof Blob
    62. 

  62.       ? await blobToArrayBuffer(data)
    63. 

  63.       : data;
    64. 

  64. 

  65.   // We use symmetric encryption. AES-GCM is the recommended algorithm and
    66. 

  66.   // includes checks that the ciphertext has not been modified by an attacker.
    67. 

  67.   const encryptedBuffer = await window.crypto.subtle.encrypt(
    68. 

  68.     {
    69. 

  69.       name: "AES-GCM",
    70. 

  70.       iv,
    71. 

  71.     },
    72. 

  72.     importedKey,
    73. 

  73.     buffer as ArrayBuffer | Uint8Array,
    74. 

  74.   );
    75. 

  75. 

  76.   return { encryptedBuffer, iv };
    77. 

  77. };
    78. 

  78. 

  79. export const decryptData = async (
    80. 

  80.   iv: Uint8Array,
    81. 

  81.   encrypted: Uint8Array | ArrayBuffer,
    82. 

  82.   privateKey: string,
    83. 

  83. ): Promise<ArrayBuffer> => {
    84. 

  84.   const key = await getCryptoKey(privateKey, "decrypt");
    85. 

  85.   return window.crypto.subtle.decrypt(
    86. 

  86.     {
    87. 

  87.       name: "AES-GCM",
    88. 

  88.       iv,
    89. 

  89.     },
    90. 

  90.     key,
    91. 

  91.     encrypted,
    92. 

  92.   );
    93. 

  93. };
    94.