fast decrypt

2025-12-19 01:33:33 +00:00 · 2018-05-07 09:00:49 -04:00
parent c6c5dd6d46
commit de4494e1b3
9 changed files with 234 additions and 87 deletions
--- a/src/services/nodeCryptoFunction.service.ts
+++ b/src/services/nodeCryptoFunction.service.ts
@@ -6,6 +6,9 @@ import { CryptoFunctionService } from '../abstractions/cryptoFunction.service';

 import { Utils } from '../misc/utils';

+import { DecryptParameters } from '../models/domain/decryptParameters';
+import { SymmetricCryptoKey } from '../models/domain/symmetricCryptoKey';
+
 export class NodeCryptoFunctionService implements CryptoFunctionService {
    pbkdf2(password: string | ArrayBuffer, salt: string | ArrayBuffer, algorithm: 'sha256' | 'sha512',
        iterations: number): Promise<ArrayBuffer> {
@@ -38,6 +41,33 @@ export class NodeCryptoFunctionService implements CryptoFunctionService {
        return Promise.resolve(this.toArrayBuffer(hmac.digest()));
    }

+    async timeSafeEqual(a: ArrayBuffer, b: ArrayBuffer): Promise<boolean> {
+        const key = await this.randomBytes(32);
+        const mac1 = await this.hmac(a, key, 'sha256');
+        const mac2 = await this.hmac(b, key, 'sha256');
+        if (mac1.byteLength !== mac2.byteLength) {
+            return false;
+        }
+
+        const arr1 = new Uint8Array(mac1);
+        const arr2 = new Uint8Array(mac2);
+        for (let i = 0; i < arr2.length; i++) {
+            if (arr1[i] !== arr2[i]) {
+                return false;
+            }
+        }
+
+        return true;
+    }
+
+    hmacFast(value: ArrayBuffer, key: ArrayBuffer, algorithm: 'sha1' | 'sha256' | 'sha512'): Promise<ArrayBuffer> {
+        return this.hmac(value, key, algorithm);
+    }
+
+    timeSafeEqualFast(a: ArrayBuffer, b: ArrayBuffer): Promise<boolean> {
+        return this.timeSafeEqual(a, b);
+    }
+
    aesEncrypt(data: ArrayBuffer, iv: ArrayBuffer, key: ArrayBuffer): Promise<ArrayBuffer> {
        const nodeData = this.toNodeBuffer(data);
        const nodeIv = this.toNodeBuffer(iv);
@@ -47,8 +77,31 @@ export class NodeCryptoFunctionService implements CryptoFunctionService {
        return Promise.resolve(this.toArrayBuffer(encBuf));
    }

-    aesDecryptSmall(data: ArrayBuffer, iv: ArrayBuffer, key: ArrayBuffer): Promise<ArrayBuffer> {
-        return this.aesDecryptLarge(data, iv, key);
+    aesDecryptFastParameters(data: string, iv: string, mac: string, key: SymmetricCryptoKey):
+        DecryptParameters<ArrayBuffer> {
+        const p = new DecryptParameters<ArrayBuffer>();
+        p.encKey = key.encKey;
+        p.data = Utils.fromB64ToArray(data).buffer;
+        p.iv = Utils.fromB64ToArray(iv).buffer;
+
+        const macData = new Uint8Array(p.iv.byteLength + p.data.byteLength);
+        macData.set(new Uint8Array(p.iv), 0);
+        macData.set(new Uint8Array(p.data), p.iv.byteLength);
+        p.macData = macData.buffer;
+
+        if (key.macKey != null) {
+            p.macKey = key.macKey;
+        }
+        if (mac != null) {
+            p.mac = Utils.fromB64ToArray(mac).buffer;
+        }
+
+        return p;
+    }
+
+    async aesDecryptFast(parameters: DecryptParameters<ArrayBuffer>): Promise<string> {
+        const decBuf = await this.aesDecryptLarge(parameters.data, parameters.iv, parameters.encKey);
+        return Utils.fromBufferToUtf8(decBuf);
    }

    aesDecryptLarge(data: ArrayBuffer, iv: ArrayBuffer, key: ArrayBuffer): Promise<ArrayBuffer> {