metamask-extension/app/scripts/lib/encryptor.js

var vector = global.crypto.getRandomValues(new Uint8Array(16))

module.exports = {
  encrypt,
  decrypt,
  convertArrayBufferViewtoString,
  keyFromPassword,
  encryptWithKey,
  decryptWithKey,
}

// Takes a Pojo, returns encrypted text.
function encrypt (password, dataObj) {
  return keyFromPassword(password)
  .then(function (passwordDerivedKey) {
    return encryptWithKey(passwordDerivedKey, dataObj)
  })
}

function encryptWithKey (key, dataObj) {
  var data = JSON.stringify(dataObj)
  var dataBuffer = convertStringToArrayBufferView(data)

  return global.crypto.subtle.encrypt({
    name: 'AES-GCM',
    iv: vector
  }, key, dataBuffer).then(function(result){
    const encryptedData = new Uint8Array(result)
    const encryptedStr =  encryptedData.toString()
    return encryptedStr
  })
}

// Takes encrypted text, returns the restored Pojo.
function decrypt (password, text) {
  return keyFromPassword(password)
  .then(function (key) {
    return decryptWithKey(key, text)
  })
}

// AUDIT: See if this still works when generating a fresh vector
function decryptWithKey (key, text) {
  return crypto.subtle.decrypt({name: "AES-CBC", iv: vector}, key, encrypted_data)
  .then(function(result){
    debugger
    const decryptedData = new Uint8Array(result)
    const decryptedStr = convertArrayBufferViewtoString(decryptedData))
    const decryptedObj = JSON.parse(decryptedStr)
    return decryptedObj
  })
}

function convertStringToArrayBufferView (str) {
  var bytes = new Uint8Array(str.length)
  for (var i = 0; i < str.length; i++) {
    bytes[i] = str.charCodeAt(i)
  }

  return bytes
}

function convertArrayBufferViewtoString (buffer) {
  var str = ''
  for (var i = 0; i < buffer.byteLength; i++) {
    str += String.fromCharCode(buffer[i])
  }

  return str
}

function keyFromPassword (password) {
  var passBuffer = convertStringToArrayBufferView(password)
  return global.crypto.subtle.digest('SHA-256', passBuffer)
  .then(function (passHash){
    return global.crypto.subtle.importKey('raw', passHash, {name: 'AES-GCM'}, false, ['encrypt', 'decrypt'])
  })
}
Began adding browser-native encryptor module Added new Qunit build process that will browserify the contents of `test/integration/lib` into the QUnit browser, allowing much more modular testing, including unit testing of our modules in our target browsers. Made a basic unit test file of this form for the new encryptor module, which fails miserably because I've only just begun to work with it. I've started with this blog post as a starting point, and will be adjusting it to our needs from there: http://qnimate.com/passphrase-based-encryption-using-web-cryptography-api/ 2016-10-13 05:03:14 +02:00			`var vector = global.crypto.getRandomValues(new Uint8Array(16))`

			`module.exports = {`
			`encrypt,`
			`decrypt,`
			`convertArrayBufferViewtoString,`
			`keyFromPassword,`
Got encrypting working, not yet decrypting 2016-10-14 22:21:00 +02:00			`encryptWithKey,`
			`decryptWithKey,`
Began adding browser-native encryptor module Added new Qunit build process that will browserify the contents of `test/integration/lib` into the QUnit browser, allowing much more modular testing, including unit testing of our modules in our target browsers. Made a basic unit test file of this form for the new encryptor module, which fails miserably because I've only just begun to work with it. I've started with this blog post as a starting point, and will be adjusting it to our needs from there: http://qnimate.com/passphrase-based-encryption-using-web-cryptography-api/ 2016-10-13 05:03:14 +02:00			`}`

			`// Takes a Pojo, returns encrypted text.`
			`function encrypt (password, dataObj) {`
Got encrypting working, not yet decrypting 2016-10-14 22:21:00 +02:00			`return keyFromPassword(password)`
			`.then(function (passwordDerivedKey) {`
			`return encryptWithKey(passwordDerivedKey, dataObj)`
			`})`
			`}`

			`function encryptWithKey (key, dataObj) {`
Began adding browser-native encryptor module Added new Qunit build process that will browserify the contents of `test/integration/lib` into the QUnit browser, allowing much more modular testing, including unit testing of our modules in our target browsers. Made a basic unit test file of this form for the new encryptor module, which fails miserably because I've only just begun to work with it. I've started with this blog post as a starting point, and will be adjusting it to our needs from there: http://qnimate.com/passphrase-based-encryption-using-web-cryptography-api/ 2016-10-13 05:03:14 +02:00			`var data = JSON.stringify(dataObj)`
Got encrypting working, not yet decrypting 2016-10-14 22:21:00 +02:00			`var dataBuffer = convertStringToArrayBufferView(data)`

			`return global.crypto.subtle.encrypt({`
			`name: 'AES-GCM',`
			`iv: vector`
			`}, key, dataBuffer).then(function(result){`
Began adding browser-native encryptor module Added new Qunit build process that will browserify the contents of `test/integration/lib` into the QUnit browser, allowing much more modular testing, including unit testing of our modules in our target browsers. Made a basic unit test file of this form for the new encryptor module, which fails miserably because I've only just begun to work with it. I've started with this blog post as a starting point, and will be adjusting it to our needs from there: http://qnimate.com/passphrase-based-encryption-using-web-cryptography-api/ 2016-10-13 05:03:14 +02:00			`const encryptedData = new Uint8Array(result)`
Got encrypting working, not yet decrypting 2016-10-14 22:21:00 +02:00			`const encryptedStr = encryptedData.toString()`
			`return encryptedStr`
Began adding browser-native encryptor module Added new Qunit build process that will browserify the contents of `test/integration/lib` into the QUnit browser, allowing much more modular testing, including unit testing of our modules in our target browsers. Made a basic unit test file of this form for the new encryptor module, which fails miserably because I've only just begun to work with it. I've started with this blog post as a starting point, and will be adjusting it to our needs from there: http://qnimate.com/passphrase-based-encryption-using-web-cryptography-api/ 2016-10-13 05:03:14 +02:00			`})`
			`}`

			`// Takes encrypted text, returns the restored Pojo.`
			`function decrypt (password, text) {`
Got encrypting working, not yet decrypting 2016-10-14 22:21:00 +02:00			`return keyFromPassword(password)`
			`.then(function (key) {`
			`return decryptWithKey(key, text)`
			`})`
			`}`
Began adding browser-native encryptor module Added new Qunit build process that will browserify the contents of `test/integration/lib` into the QUnit browser, allowing much more modular testing, including unit testing of our modules in our target browsers. Made a basic unit test file of this form for the new encryptor module, which fails miserably because I've only just begun to work with it. I've started with this blog post as a starting point, and will be adjusting it to our needs from there: http://qnimate.com/passphrase-based-encryption-using-web-cryptography-api/ 2016-10-13 05:03:14 +02:00
Got encrypting working, not yet decrypting 2016-10-14 22:21:00 +02:00			`// AUDIT: See if this still works when generating a fresh vector`
			`function decryptWithKey (key, text) {`
			`return crypto.subtle.decrypt({name: "AES-CBC", iv: vector}, key, encrypted_data)`
			`.then(function(result){`
			`debugger`
			`const decryptedData = new Uint8Array(result)`
			`const decryptedStr = convertArrayBufferViewtoString(decryptedData))`
			`const decryptedObj = JSON.parse(decryptedStr)`
			`return decryptedObj`
			`})`
Began adding browser-native encryptor module Added new Qunit build process that will browserify the contents of `test/integration/lib` into the QUnit browser, allowing much more modular testing, including unit testing of our modules in our target browsers. Made a basic unit test file of this form for the new encryptor module, which fails miserably because I've only just begun to work with it. I've started with this blog post as a starting point, and will be adjusting it to our needs from there: http://qnimate.com/passphrase-based-encryption-using-web-cryptography-api/ 2016-10-13 05:03:14 +02:00			`}`

			`function convertStringToArrayBufferView (str) {`
			`var bytes = new Uint8Array(str.length)`
			`for (var i = 0; i < str.length; i++) {`
			`bytes[i] = str.charCodeAt(i)`
			`}`

			`return bytes`
			`}`

			`function convertArrayBufferViewtoString (buffer) {`
			`var str = ''`
			`for (var i = 0; i < buffer.byteLength; i++) {`
			`str += String.fromCharCode(buffer[i])`
			`}`

			`return str`
			`}`

			`function keyFromPassword (password) {`
Got encrypting working, not yet decrypting 2016-10-14 22:21:00 +02:00			`var passBuffer = convertStringToArrayBufferView(password)`
			`return global.crypto.subtle.digest('SHA-256', passBuffer)`
			`.then(function (passHash){`
			`return global.crypto.subtle.importKey('raw', passHash, {name: 'AES-GCM'}, false, ['encrypt', 'decrypt'])`
Began adding browser-native encryptor module Added new Qunit build process that will browserify the contents of `test/integration/lib` into the QUnit browser, allowing much more modular testing, including unit testing of our modules in our target browsers. Made a basic unit test file of this form for the new encryptor module, which fails miserably because I've only just begun to work with it. I've started with this blog post as a starting point, and will be adjusting it to our needs from there: http://qnimate.com/passphrase-based-encryption-using-web-cryptography-api/ 2016-10-13 05:03:14 +02:00			`})`
			`}`