bitwarden-browser/src/services/cryptoService.js

function CryptoService() {
    initCryptoService();
};

function initCryptoService() {
    var _key,
        _b64Key,
        _aes;

    sjcl.beware["CBC mode is dangerous because it doesn't protect message integrity."]();

    CryptoService.prototype.setKey = function (key, callback) {
        if (!callback || typeof callback !== 'function') {
            throw 'callback function required';
        }

        _key = key;
        chrome.storage.local.set({
            'key': sjcl.codec.base64.fromBits(key)
        }, function () {
            callback();
        });
    }

    CryptoService.prototype.getKey = function (b64, callback) {
        if (!callback || typeof callback !== 'function') {
            throw 'callback function required';
        }

        if (b64 && b64 === true && _b64Key) {
            return callback(_b64Key);
        }
        else if (!b64 && _key) {
            return callback(_key);
        }

        chrome.storage.local.get('key', function (obj) {
            if (obj && obj.key) {
                _key = sjcl.codec.base64.toBits(obj.key);
            }

            if (b64 && b64 === true) {
                _b64Key = sjcl.codec.base64.fromBits(_key);
                return callback(_b64Key);
            }

            return callback(_key);
        });
    };

    CryptoService.prototype.clearKey = function (callback) {
        if (!callback || typeof callback !== 'function') {
            throw 'callback function required';
        }

        _key = _b64Key = _aes = null;
        chrome.storage.local.remove('key', function () {
            callback();
        });
    };

    CryptoService.prototype.makeKey = function (password, salt, b64) {
        var key = sjcl.misc.pbkdf2(password, salt, 5000, 256, null);

        if (b64 && b64 === true) {
            return sjcl.codec.base64.fromBits(key);
        }

        return key;
    };

    CryptoService.prototype.hashPassword = function (password, key, callback) {
        this.getKey(false, function (storedKey) {
            if (!key) {
                key = storedKey;
            }

            if (!password || !key) {
                throw 'Invalid parameters.';
            }

            var hashBits = sjcl.misc.pbkdf2(key, password, 1, 256, null);
            callback(sjcl.codec.base64.fromBits(hashBits));
        });
    };

    CryptoService.prototype.getAes = function (callback) {
        if (!callback || typeof callback !== 'function') {
            throw 'callback function required';
        }

        this.getKey(false, function (key) {
            if (!_aes && key) {
                _aes = new sjcl.cipher.aes(key);
            }

            callback(_aes);
        });
    };

    CryptoService.prototype.encrypt = function (plaintextValue) {
        var deferred = Q.defer();

        if (plaintextValue === null || plaintextValue === undefined) {
            deferred.resolve(null);
        }
        else {
            this.getKey(false, function (key) {
                if (!key) {
                    throw 'Encryption key unavailable.';
                }

                var response = {};
                var params = {
                    mode: "cbc",
                    iv: sjcl.random.randomWords(4, 0)
                };

                var ctJson = sjcl.encrypt(key, plaintextValue, params, response);

                var ct = ctJson.match(/"ct":"([^"]*)"/)[1];
                var iv = sjcl.codec.base64.fromBits(response.iv);

                var cs = new CipherString(iv + "|" + ct);
                deferred.resolve(cs);
            });
        }

        return deferred.promise;
    };

    CryptoService.prototype.decrypt = function (cipherString) {
        var deferred = Q.defer();

        if (cipherString === null || cipherString === undefined || !cipherString.encryptedString) {
            throw 'cannot decrypt nothing';
        }

        this.getAes(function (aes) {
            if (!aes) {
                throw 'AES encryption unavailable.';
            }

            var ivBits = sjcl.codec.base64.toBits(cipherString.initializationVector);
            var ctBits = sjcl.codec.base64.toBits(cipherString.cipherText);

            var decBits = sjcl.mode.cbc.decrypt(aes, ctBits, ivBits, null);
            var decValue = sjcl.codec.utf8String.fromBits(decBits);
            deferred.resolve(decValue);
        });

        return deferred.promise;
    };
};
decrypt and list sites 2016-09-06 04:27:32 +02:00			`function CryptoService() {`
more services and async callthroughs for vault list/add 2016-09-04 06:34:24 +02:00			`initCryptoService();`
setup various pages and services 2016-09-03 06:03:13 +02:00			`};`
setup various services and login page 2016-09-02 06:50:57 +02:00
more services and async callthroughs for vault list/add 2016-09-04 06:34:24 +02:00			`function initCryptoService() {`
setup various pages and services 2016-09-03 06:03:13 +02:00			`var _key,`
			`_b64Key,`
			`_aes;`

tuneing up mdoels and services for site add 2016-09-05 07:49:44 +02:00			`sjcl.beware["CBC mode is dangerous because it doesn't protect message integrity."]();`

setup various pages and services 2016-09-03 06:03:13 +02:00			`CryptoService.prototype.setKey = function (key, callback) {`
setup various services and login page 2016-09-02 06:50:57 +02:00			`if (!callback \|\| typeof callback !== 'function') {`
			`throw 'callback function required';`
			`}`

			`_key = key;`
			`chrome.storage.local.set({`
			`'key': sjcl.codec.base64.fromBits(key)`
			`}, function () {`
			`callback();`
			`});`
setup various pages and services 2016-09-03 06:03:13 +02:00			`}`
setup various services and login page 2016-09-02 06:50:57 +02:00
setup various pages and services 2016-09-03 06:03:13 +02:00			`CryptoService.prototype.getKey = function (b64, callback) {`
setup various services and login page 2016-09-02 06:50:57 +02:00			`if (!callback \|\| typeof callback !== 'function') {`
			`throw 'callback function required';`
			`}`

			`if (b64 && b64 === true && _b64Key) {`
			`return callback(_b64Key);`
			`}`
			`else if (!b64 && _key) {`
			`return callback(_key);`
			`}`

more services and async callthroughs for vault list/add 2016-09-04 06:34:24 +02:00			`chrome.storage.local.get('key', function (obj) {`
			`if (obj && obj.key) {`
			`_key = sjcl.codec.base64.toBits(obj.key);`
setup various services and login page 2016-09-02 06:50:57 +02:00			`}`

			`if (b64 && b64 === true) {`
			`_b64Key = sjcl.codec.base64.fromBits(_key);`
			`return callback(_b64Key);`
			`}`

			`return callback(_key);`
			`});`
			`};`

setup various pages and services 2016-09-03 06:03:13 +02:00			`CryptoService.prototype.clearKey = function (callback) {`
setup various services and login page 2016-09-02 06:50:57 +02:00			`if (!callback \|\| typeof callback !== 'function') {`
			`throw 'callback function required';`
			`}`

			`_key = _b64Key = _aes = null;`
			`chrome.storage.local.remove('key', function () {`
			`callback();`
			`});`
			`};`

setup various pages and services 2016-09-03 06:03:13 +02:00			`CryptoService.prototype.makeKey = function (password, salt, b64) {`
setup various services and login page 2016-09-02 06:50:57 +02:00			`var key = sjcl.misc.pbkdf2(password, salt, 5000, 256, null);`

			`if (b64 && b64 === true) {`
			`return sjcl.codec.base64.fromBits(key);`
			`}`

			`return key;`
			`};`

hashpassword with callback 2016-09-05 06:03:49 +02:00			`CryptoService.prototype.hashPassword = function (password, key, callback) {`
			`this.getKey(false, function (storedKey) {`
			`if (!key) {`
			`key = storedKey;`
			`}`
setup various services and login page 2016-09-02 06:50:57 +02:00
hashpassword with callback 2016-09-05 06:03:49 +02:00			`if (!password \|\| !key) {`
			`throw 'Invalid parameters.';`
			`}`
setup various services and login page 2016-09-02 06:50:57 +02:00
hashpassword with callback 2016-09-05 06:03:49 +02:00			`var hashBits = sjcl.misc.pbkdf2(key, password, 1, 256, null);`
			`callback(sjcl.codec.base64.fromBits(hashBits));`
			`});`
setup various services and login page 2016-09-02 06:50:57 +02:00			`};`

more services and async callthroughs for vault list/add 2016-09-04 06:34:24 +02:00			`CryptoService.prototype.getAes = function (callback) {`
			`if (!callback \|\| typeof callback !== 'function') {`
			`throw 'callback function required';`
setup various services and login page 2016-09-02 06:50:57 +02:00			`}`

more services and async callthroughs for vault list/add 2016-09-04 06:34:24 +02:00			`this.getKey(false, function (key) {`
			`if (!_aes && key) {`
			`_aes = new sjcl.cipher.aes(key);`
			`}`

			`callback(_aes);`
			`});`
setup various services and login page 2016-09-02 06:50:57 +02:00			`};`

refactoring with promises throughout 2016-09-17 05:47:50 +02:00			`CryptoService.prototype.encrypt = function (plaintextValue) {`
			`var deferred = Q.defer();`
setup various services and login page 2016-09-02 06:50:57 +02:00
tuneing up mdoels and services for site add 2016-09-05 07:49:44 +02:00			`if (plaintextValue === null \|\| plaintextValue === undefined) {`
refactoring with promises throughout 2016-09-17 05:47:50 +02:00			`deferred.resolve(null);`
			`}`
			`else {`
			`this.getKey(false, function (key) {`
			`if (!key) {`
			`throw 'Encryption key unavailable.';`
			`}`

			`var response = {};`
			`var params = {`
			`mode: "cbc",`
			`iv: sjcl.random.randomWords(4, 0)`
			`};`

			`var ctJson = sjcl.encrypt(key, plaintextValue, params, response);`

			`var ct = ctJson.match(/"ct":"([^"]*)"/)[1];`
			`var iv = sjcl.codec.base64.fromBits(response.iv);`

			`var cs = new CipherString(iv + "\|" + ct);`
			`deferred.resolve(cs);`
			`});`
tuneing up mdoels and services for site add 2016-09-05 07:49:44 +02:00			`}`

refactoring with promises throughout 2016-09-17 05:47:50 +02:00			`return deferred.promise;`
setup various services and login page 2016-09-02 06:50:57 +02:00			`};`

refactoring with promises throughout 2016-09-17 05:47:50 +02:00			`CryptoService.prototype.decrypt = function (cipherString) {`
			`var deferred = Q.defer();`
setup various services and login page 2016-09-02 06:50:57 +02:00
adjustments to site getall 2016-09-05 17:05:27 +02:00			`if (cipherString === null \|\| cipherString === undefined \|\| !cipherString.encryptedString) {`
tuneing up mdoels and services for site add 2016-09-05 07:49:44 +02:00			`throw 'cannot decrypt nothing';`
			`}`

more services and async callthroughs for vault list/add 2016-09-04 06:34:24 +02:00			`this.getAes(function (aes) {`
			`if (!aes) {`
			`throw 'AES encryption unavailable.';`
			`}`

			`var ivBits = sjcl.codec.base64.toBits(cipherString.initializationVector);`
			`var ctBits = sjcl.codec.base64.toBits(cipherString.cipherText);`
setup various services and login page 2016-09-02 06:50:57 +02:00
more services and async callthroughs for vault list/add 2016-09-04 06:34:24 +02:00			`var decBits = sjcl.mode.cbc.decrypt(aes, ctBits, ivBits, null);`
decrypt and list sites 2016-09-06 04:27:32 +02:00			`var decValue = sjcl.codec.utf8String.fromBits(decBits);`
refactoring with promises throughout 2016-09-17 05:47:50 +02:00			`deferred.resolve(decValue);`
more services and async callthroughs for vault list/add 2016-09-04 06:34:24 +02:00			`});`
refactoring with promises throughout 2016-09-17 05:47:50 +02:00
			`return deferred.promise;`
setup various services and login page 2016-09-02 06:50:57 +02:00			`};`
more services and async callthroughs for vault list/add 2016-09-04 06:34:24 +02:00			`};`