mtcute/packages/web/src/crypto.ts

import { BaseCryptoProvider, IAesCtr, ICryptoProvider, IEncryptionScheme } from '@mtcute/core/utils.js'
import {
    createCtr256,
    ctr256,
    deflateMaxSize,
    freeCtr256,
    gunzip,
    ige256Decrypt,
    ige256Encrypt,
    initSync,
    sha1,
    sha256,
} from '@mtcute/wasm'

import { loadWasmBinary, WasmInitInput } from './wasm.js'

const ALGO_TO_SUBTLE: Record<string, string> = {
    sha256: 'SHA-256',
    sha1: 'SHA-1',
    sha512: 'SHA-512',
}

export interface WebCryptoProviderOptions {
    crypto?: Crypto
    wasmInput?: WasmInitInput
}

export class WebCryptoProvider extends BaseCryptoProvider implements ICryptoProvider {
    readonly crypto: Crypto
    private _wasmInput?: WasmInitInput

    sha1(data: Uint8Array): Uint8Array {
        return sha1(data)
    }

    sha256(data: Uint8Array): Uint8Array {
        return sha256(data)
    }

    createAesCtr(key: Uint8Array, iv: Uint8Array): IAesCtr {
        const ctx = createCtr256(key, iv)

        return {
            process: (data) => ctr256(ctx, data),
            close: () => freeCtr256(ctx),
        }
    }

    createAesIge(key: Uint8Array, iv: Uint8Array): IEncryptionScheme {
        return {
            encrypt: (data) => ige256Encrypt(data, key, iv),
            decrypt: (data) => ige256Decrypt(data, key, iv),
        }
    }

    gzip(data: Uint8Array, maxSize: number): Uint8Array | null {
        return deflateMaxSize(data, maxSize)
    }

    gunzip(data: Uint8Array): Uint8Array {
        return gunzip(data)
    }

    constructor(params?: WebCryptoProviderOptions) {
        super()
        const crypto = params?.crypto ?? globalThis.crypto

        if (!crypto || !crypto.subtle) {
            throw new Error('WebCrypto is not available')
        }
        this.crypto = crypto
        this._wasmInput = params?.wasmInput
    }

    async initialize(): Promise<void> {
        initSync(await loadWasmBinary(this._wasmInput))
    }

    async pbkdf2(
        password: Uint8Array,
        salt: Uint8Array,
        iterations: number,
        keylen?: number | undefined,
        algo?: string | undefined,
    ): Promise<Uint8Array> {
        const keyMaterial = await this.crypto.subtle.importKey('raw', password, 'PBKDF2', false, ['deriveBits'])

        return this.crypto.subtle
            .deriveBits(
                {
                    name: 'PBKDF2',
                    salt,
                    iterations,
                    hash: algo ? ALGO_TO_SUBTLE[algo] : 'SHA-512',
                },
                keyMaterial,
                (keylen || 64) * 8,
            )
            .then((result) => new Uint8Array(result))
    }

    async hmacSha256(data: Uint8Array, key: Uint8Array): Promise<Uint8Array> {
        const keyMaterial = await this.crypto.subtle.importKey(
            'raw',
            key,
            { name: 'HMAC', hash: { name: 'SHA-256' } },
            false,
            ['sign'],
        )

        const res = await this.crypto.subtle.sign({ name: 'HMAC' }, keyMaterial, data)

        return new Uint8Array(res)
    }

    randomFill(buf: Uint8Array): void {
        this.crypto.getRandomValues(buf)
    }
}
chore!: removed `@mtcute/wasm` dependency from core breaking: `WasmCryptoProvider` no longer exists 2024-03-04 04:04:58 +03:00			`import { BaseCryptoProvider, IAesCtr, ICryptoProvider, IEncryptionScheme } from '@mtcute/core/utils.js'`
			`import {`
			`createCtr256,`
			`ctr256,`
			`deflateMaxSize,`
			`freeCtr256,`
			`gunzip,`
			`ige256Decrypt,`
			`ige256Encrypt,`
			`initSync,`
			`sha1,`
			`sha256,`
			`} from '@mtcute/wasm'`
chore!: started extracting platform-specific stuff into separate packages 2024-02-28 00:33:23 +03:00
			`import { loadWasmBinary, WasmInitInput } from './wasm.js'`
ESM + end-to-end tests (#11) * feat: moved tl-runtime to esm and native ArrayBuffers * feat: migration to esm * fix(core): web-related fixes * test: finally, some good fucking e2e * chore: fixed linters etc * ci: added e2e to ci * build(tl): fixed gen-code on node 20 * fix: codegen Uint8Array, not Buffer never `git reset --hard` kids * build: only do type-aware linting for `packages/` build: ignore no-unresolved in ci for e2e * fix: node 16 doesn't have subtle crypto apparently? * fix(tests): use Uint8Array for gods sake please can i just merge this already * ci: don't parallel tasks in ci because machines are utter garbage and it may just randomly break * ci: pass secrets to e2e tests * ci: separate cli command for ci apparently im retarded * fix: run codegen in e2e im actually retarded * ci: more fixes for e2e * ci: debugging stuff * ci: still debugging * ci: hopefully fix ci??? 2023-10-16 19:23:53 +03:00
			`const ALGO_TO_SUBTLE: Record<string, string> = {`
			`sha256: 'SHA-256',`
			`sha1: 'SHA-1',`
			`sha512: 'SHA-512',`
			`}`

chore!: started extracting platform-specific stuff into separate packages 2024-02-28 00:33:23 +03:00			`export interface WebCryptoProviderOptions {`
			`crypto?: Crypto`
			`wasmInput?: WasmInitInput`
			`}`

chore!: removed `@mtcute/wasm` dependency from core breaking: `WasmCryptoProvider` no longer exists 2024-03-04 04:04:58 +03:00			`export class WebCryptoProvider extends BaseCryptoProvider implements ICryptoProvider {`
chore(core): moved random to crypto provider, added tests for functions relying on rng 2023-11-12 00:36:00 +03:00			`readonly crypto: Crypto`
chore!: started extracting platform-specific stuff into separate packages 2024-02-28 00:33:23 +03:00			`private _wasmInput?: WasmInitInput`
ESM + end-to-end tests (#11) * feat: moved tl-runtime to esm and native ArrayBuffers * feat: migration to esm * fix(core): web-related fixes * test: finally, some good fucking e2e * chore: fixed linters etc * ci: added e2e to ci * build(tl): fixed gen-code on node 20 * fix: codegen Uint8Array, not Buffer never `git reset --hard` kids * build: only do type-aware linting for `packages/` build: ignore no-unresolved in ci for e2e * fix: node 16 doesn't have subtle crypto apparently? * fix(tests): use Uint8Array for gods sake please can i just merge this already * ci: don't parallel tasks in ci because machines are utter garbage and it may just randomly break * ci: pass secrets to e2e tests * ci: separate cli command for ci apparently im retarded * fix: run codegen in e2e im actually retarded * ci: more fixes for e2e * ci: debugging stuff * ci: still debugging * ci: hopefully fix ci??? 2023-10-16 19:23:53 +03:00
chore!: removed `@mtcute/wasm` dependency from core breaking: `WasmCryptoProvider` no longer exists 2024-03-04 04:04:58 +03:00			`sha1(data: Uint8Array): Uint8Array {`
			`return sha1(data)`
			`}`

			`sha256(data: Uint8Array): Uint8Array {`
			`return sha256(data)`
			`}`

			`createAesCtr(key: Uint8Array, iv: Uint8Array): IAesCtr {`
			`const ctx = createCtr256(key, iv)`

			`return {`
			`process: (data) => ctr256(ctx, data),`
			`close: () => freeCtr256(ctx),`
			`}`
			`}`

			`createAesIge(key: Uint8Array, iv: Uint8Array): IEncryptionScheme {`
			`return {`
			`encrypt: (data) => ige256Encrypt(data, key, iv),`
			`decrypt: (data) => ige256Decrypt(data, key, iv),`
			`}`
			`}`

			`gzip(data: Uint8Array, maxSize: number): Uint8Array \| null {`
			`return deflateMaxSize(data, maxSize)`
			`}`

			`gunzip(data: Uint8Array): Uint8Array {`
			`return gunzip(data)`
			`}`

chore!: started extracting platform-specific stuff into separate packages 2024-02-28 00:33:23 +03:00			`constructor(params?: WebCryptoProviderOptions) {`
			`super()`
chore(core): moved random to crypto provider, added tests for functions relying on rng 2023-11-12 00:36:00 +03:00			`const crypto = params?.crypto ?? globalThis.crypto`
ESM + end-to-end tests (#11) * feat: moved tl-runtime to esm and native ArrayBuffers * feat: migration to esm * fix(core): web-related fixes * test: finally, some good fucking e2e * chore: fixed linters etc * ci: added e2e to ci * build(tl): fixed gen-code on node 20 * fix: codegen Uint8Array, not Buffer never `git reset --hard` kids * build: only do type-aware linting for `packages/` build: ignore no-unresolved in ci for e2e * fix: node 16 doesn't have subtle crypto apparently? * fix(tests): use Uint8Array for gods sake please can i just merge this already * ci: don't parallel tasks in ci because machines are utter garbage and it may just randomly break * ci: pass secrets to e2e tests * ci: separate cli command for ci apparently im retarded * fix: run codegen in e2e im actually retarded * ci: more fixes for e2e * ci: debugging stuff * ci: still debugging * ci: hopefully fix ci??? 2023-10-16 19:23:53 +03:00
chore(core): moved random to crypto provider, added tests for functions relying on rng 2023-11-12 00:36:00 +03:00			`if (!crypto \|\| !crypto.subtle) {`
			`throw new Error('WebCrypto is not available')`
feat: wasm! 🚀 2023-11-04 06:44:18 +03:00			`}`
chore(core): moved random to crypto provider, added tests for functions relying on rng 2023-11-12 00:36:00 +03:00			`this.crypto = crypto`
chore!: started extracting platform-specific stuff into separate packages 2024-02-28 00:33:23 +03:00			`this._wasmInput = params?.wasmInput`
			`}`

			`async initialize(): Promise<void> {`
			`initSync(await loadWasmBinary(this._wasmInput))`
ESM + end-to-end tests (#11) * feat: moved tl-runtime to esm and native ArrayBuffers * feat: migration to esm * fix(core): web-related fixes * test: finally, some good fucking e2e * chore: fixed linters etc * ci: added e2e to ci * build(tl): fixed gen-code on node 20 * fix: codegen Uint8Array, not Buffer never `git reset --hard` kids * build: only do type-aware linting for `packages/` build: ignore no-unresolved in ci for e2e * fix: node 16 doesn't have subtle crypto apparently? * fix(tests): use Uint8Array for gods sake please can i just merge this already * ci: don't parallel tasks in ci because machines are utter garbage and it may just randomly break * ci: pass secrets to e2e tests * ci: separate cli command for ci apparently im retarded * fix: run codegen in e2e im actually retarded * ci: more fixes for e2e * ci: debugging stuff * ci: still debugging * ci: hopefully fix ci??? 2023-10-16 19:23:53 +03:00			`}`

			`async pbkdf2(`
			`password: Uint8Array,`
			`salt: Uint8Array,`
			`iterations: number,`
			`keylen?: number \| undefined,`
			`algo?: string \| undefined,`
			`): Promise<Uint8Array> {`
chore(core): moved random to crypto provider, added tests for functions relying on rng 2023-11-12 00:36:00 +03:00			`const keyMaterial = await this.crypto.subtle.importKey('raw', password, 'PBKDF2', false, ['deriveBits'])`
ESM + end-to-end tests (#11) * feat: moved tl-runtime to esm and native ArrayBuffers * feat: migration to esm * fix(core): web-related fixes * test: finally, some good fucking e2e * chore: fixed linters etc * ci: added e2e to ci * build(tl): fixed gen-code on node 20 * fix: codegen Uint8Array, not Buffer never `git reset --hard` kids * build: only do type-aware linting for `packages/` build: ignore no-unresolved in ci for e2e * fix: node 16 doesn't have subtle crypto apparently? * fix(tests): use Uint8Array for gods sake please can i just merge this already * ci: don't parallel tasks in ci because machines are utter garbage and it may just randomly break * ci: pass secrets to e2e tests * ci: separate cli command for ci apparently im retarded * fix: run codegen in e2e im actually retarded * ci: more fixes for e2e * ci: debugging stuff * ci: still debugging * ci: hopefully fix ci??? 2023-10-16 19:23:53 +03:00
chore(core): moved random to crypto provider, added tests for functions relying on rng 2023-11-12 00:36:00 +03:00			`return this.crypto.subtle`
ESM + end-to-end tests (#11) * feat: moved tl-runtime to esm and native ArrayBuffers * feat: migration to esm * fix(core): web-related fixes * test: finally, some good fucking e2e * chore: fixed linters etc * ci: added e2e to ci * build(tl): fixed gen-code on node 20 * fix: codegen Uint8Array, not Buffer never `git reset --hard` kids * build: only do type-aware linting for `packages/` build: ignore no-unresolved in ci for e2e * fix: node 16 doesn't have subtle crypto apparently? * fix(tests): use Uint8Array for gods sake please can i just merge this already * ci: don't parallel tasks in ci because machines are utter garbage and it may just randomly break * ci: pass secrets to e2e tests * ci: separate cli command for ci apparently im retarded * fix: run codegen in e2e im actually retarded * ci: more fixes for e2e * ci: debugging stuff * ci: still debugging * ci: hopefully fix ci??? 2023-10-16 19:23:53 +03:00			`.deriveBits(`
			`{`
			`name: 'PBKDF2',`
			`salt,`
			`iterations,`
			`hash: algo ? ALGO_TO_SUBTLE[algo] : 'SHA-512',`
			`},`
			`keyMaterial,`
			`(keylen \|\| 64) * 8,`
			`)`
			`.then((result) => new Uint8Array(result))`
			`}`

			`async hmacSha256(data: Uint8Array, key: Uint8Array): Promise<Uint8Array> {`
chore(core): moved random to crypto provider, added tests for functions relying on rng 2023-11-12 00:36:00 +03:00			`const keyMaterial = await this.crypto.subtle.importKey(`
ESM + end-to-end tests (#11) * feat: moved tl-runtime to esm and native ArrayBuffers * feat: migration to esm * fix(core): web-related fixes * test: finally, some good fucking e2e * chore: fixed linters etc * ci: added e2e to ci * build(tl): fixed gen-code on node 20 * fix: codegen Uint8Array, not Buffer never `git reset --hard` kids * build: only do type-aware linting for `packages/` build: ignore no-unresolved in ci for e2e * fix: node 16 doesn't have subtle crypto apparently? * fix(tests): use Uint8Array for gods sake please can i just merge this already * ci: don't parallel tasks in ci because machines are utter garbage and it may just randomly break * ci: pass secrets to e2e tests * ci: separate cli command for ci apparently im retarded * fix: run codegen in e2e im actually retarded * ci: more fixes for e2e * ci: debugging stuff * ci: still debugging * ci: hopefully fix ci??? 2023-10-16 19:23:53 +03:00			`'raw',`
			`key,`
			`{ name: 'HMAC', hash: { name: 'SHA-256' } },`
			`false,`
			`['sign'],`
			`)`

chore(core): moved random to crypto provider, added tests for functions relying on rng 2023-11-12 00:36:00 +03:00			`const res = await this.crypto.subtle.sign({ name: 'HMAC' }, keyMaterial, data)`
ESM + end-to-end tests (#11) * feat: moved tl-runtime to esm and native ArrayBuffers * feat: migration to esm * fix(core): web-related fixes * test: finally, some good fucking e2e * chore: fixed linters etc * ci: added e2e to ci * build(tl): fixed gen-code on node 20 * fix: codegen Uint8Array, not Buffer never `git reset --hard` kids * build: only do type-aware linting for `packages/` build: ignore no-unresolved in ci for e2e * fix: node 16 doesn't have subtle crypto apparently? * fix(tests): use Uint8Array for gods sake please can i just merge this already * ci: don't parallel tasks in ci because machines are utter garbage and it may just randomly break * ci: pass secrets to e2e tests * ci: separate cli command for ci apparently im retarded * fix: run codegen in e2e im actually retarded * ci: more fixes for e2e * ci: debugging stuff * ci: still debugging * ci: hopefully fix ci??? 2023-10-16 19:23:53 +03:00
			`return new Uint8Array(res)`
			`}`
chore(core): moved random to crypto provider, added tests for functions relying on rng 2023-11-12 00:36:00 +03:00
			`randomFill(buf: Uint8Array): void {`
			`this.crypto.getRandomValues(buf)`
			`}`
ESM + end-to-end tests (#11) * feat: moved tl-runtime to esm and native ArrayBuffers * feat: migration to esm * fix(core): web-related fixes * test: finally, some good fucking e2e * chore: fixed linters etc * ci: added e2e to ci * build(tl): fixed gen-code on node 20 * fix: codegen Uint8Array, not Buffer never `git reset --hard` kids * build: only do type-aware linting for `packages/` build: ignore no-unresolved in ci for e2e * fix: node 16 doesn't have subtle crypto apparently? * fix(tests): use Uint8Array for gods sake please can i just merge this already * ci: don't parallel tasks in ci because machines are utter garbage and it may just randomly break * ci: pass secrets to e2e tests * ci: separate cli command for ci apparently im retarded * fix: run codegen in e2e im actually retarded * ci: more fixes for e2e * ci: debugging stuff * ci: still debugging * ci: hopefully fix ci??? 2023-10-16 19:23:53 +03:00			`}`