mirror of
https://github.com/nodejs/node.git
synced 2025-05-03 02:06:12 +00:00
761bbfbd76
The native crypto module doesn't export INT_MAX, so all occurrences in the JavaScript layer evaluated to undefined. This change removes all such occurrences and replaces validateInt32 with validateUint32 since the native layer assumes uint32_t anyway. The alternative would be to use the constant from the constants module, but that would be pointless as far as I can tell. PR-URL: https://github.com/nodejs/node/pull/22581 Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Ruben Bridgewater <ruben@bridgewater.de>
115 lines
3.7 KiB
JavaScript
115 lines
3.7 KiB
JavaScript
'use strict';
|
|
|
|
const { internalBinding } = require('internal/bootstrap/loaders');
|
|
const { AsyncWrap, Providers } = internalBinding('async_wrap');
|
|
const { Buffer } = require('buffer');
|
|
const { scrypt: _scrypt } = internalBinding('crypto');
|
|
const { validateUint32 } = require('internal/validators');
|
|
const {
|
|
ERR_CRYPTO_SCRYPT_INVALID_PARAMETER,
|
|
ERR_CRYPTO_SCRYPT_NOT_SUPPORTED,
|
|
ERR_INVALID_CALLBACK,
|
|
} = require('internal/errors').codes;
|
|
const {
|
|
getDefaultEncoding,
|
|
validateArrayBufferView,
|
|
} = require('internal/crypto/util');
|
|
|
|
const defaults = {
|
|
N: 16384,
|
|
r: 8,
|
|
p: 1,
|
|
maxmem: 32 << 20, // 32 MB, matches SCRYPT_MAX_MEM.
|
|
};
|
|
|
|
function scrypt(password, salt, keylen, options, callback = defaults) {
|
|
if (callback === defaults) {
|
|
callback = options;
|
|
options = defaults;
|
|
}
|
|
|
|
options = check(password, salt, keylen, options);
|
|
const { N, r, p, maxmem } = options;
|
|
({ password, salt, keylen } = options);
|
|
|
|
if (typeof callback !== 'function')
|
|
throw new ERR_INVALID_CALLBACK();
|
|
|
|
const encoding = getDefaultEncoding();
|
|
const keybuf = Buffer.alloc(keylen);
|
|
|
|
const wrap = new AsyncWrap(Providers.SCRYPTREQUEST);
|
|
wrap.ondone = (ex) => { // Retains keybuf while request is in flight.
|
|
if (ex) return callback.call(wrap, ex);
|
|
if (encoding === 'buffer') return callback.call(wrap, null, keybuf);
|
|
callback.call(wrap, null, keybuf.toString(encoding));
|
|
};
|
|
|
|
handleError(keybuf, password, salt, N, r, p, maxmem, wrap);
|
|
}
|
|
|
|
function scryptSync(password, salt, keylen, options = defaults) {
|
|
options = check(password, salt, keylen, options);
|
|
const { N, r, p, maxmem } = options;
|
|
({ password, salt, keylen } = options);
|
|
const keybuf = Buffer.alloc(keylen);
|
|
handleError(keybuf, password, salt, N, r, p, maxmem);
|
|
const encoding = getDefaultEncoding();
|
|
if (encoding === 'buffer') return keybuf;
|
|
return keybuf.toString(encoding);
|
|
}
|
|
|
|
function handleError(keybuf, password, salt, N, r, p, maxmem, wrap) {
|
|
const ex = _scrypt(keybuf, password, salt, N, r, p, maxmem, wrap);
|
|
|
|
if (ex === undefined)
|
|
return;
|
|
|
|
if (ex === null)
|
|
throw new ERR_CRYPTO_SCRYPT_INVALID_PARAMETER(); // Bad N, r, p, or maxmem.
|
|
|
|
throw ex; // Scrypt operation failed, exception object contains details.
|
|
}
|
|
|
|
function check(password, salt, keylen, options, callback) {
|
|
if (_scrypt === undefined)
|
|
throw new ERR_CRYPTO_SCRYPT_NOT_SUPPORTED();
|
|
|
|
password = validateArrayBufferView(password, 'password');
|
|
salt = validateArrayBufferView(salt, 'salt');
|
|
keylen = validateUint32(keylen, 'keylen');
|
|
|
|
let { N, r, p, maxmem } = defaults;
|
|
if (options && options !== defaults) {
|
|
let has_N, has_r, has_p;
|
|
if (has_N = (options.N !== undefined))
|
|
N = validateUint32(options.N, 'N');
|
|
if (options.cost !== undefined) {
|
|
if (has_N) throw new ERR_CRYPTO_SCRYPT_INVALID_PARAMETER();
|
|
N = validateUint32(options.cost, 'cost');
|
|
}
|
|
if (has_r = (options.r !== undefined))
|
|
r = validateUint32(options.r, 'r');
|
|
if (options.blockSize !== undefined) {
|
|
if (has_r) throw new ERR_CRYPTO_SCRYPT_INVALID_PARAMETER();
|
|
r = validateUint32(options.blockSize, 'blockSize');
|
|
}
|
|
if (has_p = (options.p !== undefined))
|
|
p = validateUint32(options.p, 'p');
|
|
if (options.parallelization !== undefined) {
|
|
if (has_p) throw new ERR_CRYPTO_SCRYPT_INVALID_PARAMETER();
|
|
p = validateUint32(options.parallelization, 'parallelization');
|
|
}
|
|
if (options.maxmem !== undefined)
|
|
maxmem = validateUint32(options.maxmem, 'maxmem');
|
|
if (N === 0) N = defaults.N;
|
|
if (r === 0) r = defaults.r;
|
|
if (p === 0) p = defaults.p;
|
|
if (maxmem === 0) maxmem = defaults.maxmem;
|
|
}
|
|
|
|
return { password, salt, keylen, N, r, p, maxmem };
|
|
}
|
|
|
|
module.exports = { scrypt, scryptSync };
|