Google Git
Sign in
fuchsia / third_party / tink / c45eb7a5ba5a806fc1488d5ab39294dca89b9932 / . / javascript / subtle / aes_ctr.js
blob: a9b1ab9c4e88c0aea34dce8e427bdf2e2f523b71 [file] [log] [blame]
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//
////////////////////////////////////////////////////////////////////////////////
goog.module('tink.subtle.AesCtr');
const AesCtrPureJs = goog.require('tink.subtle.purejs.AesCtr');
const Bytes = goog.require('tink.subtle.Bytes');
const Environment = goog.require('tink.subtle.Environment');
const IndCpaCipher = goog.require('tink.subtle.IndCpaCipher');
const Random = goog.require('tink.subtle.Random');
const SecurityException = goog.require('tink.exception.SecurityException');
const Validators = goog.require('tink.subtle.Validators');
/**
* The minimum IV size.
*
* @const {number}
*/
const MIN_IV_SIZE_IN_BYTES = 12;
/**
* AES block size.
*
* @const {number}
*/
const AES_BLOCK_SIZE_IN_BYTES = 16;
/**
* Implementation of AES-CTR.
*
* @implements {IndCpaCipher}
* @protected
* @final
*/
class AesCtr {
/**
* @param {!webCrypto.CryptoKey} key
* @param {number} ivSize the size of the IV
*/
constructor(key, ivSize) {
/** @const @private {!webCrypto.CryptoKey} */
this.key_ = key;
/** @const @private {number} */
this.ivSize_ = ivSize;
}
/**
* @param {!Uint8Array} key
* @param {number} ivSize the size of the IV, must be larger than or equal to
* {@link MIN_IV_SIZE_IN_BYTES}
* @return {!Promise.<!IndCpaCipher>}
* @static
*/
static async newInstance(key, ivSize) {
if (!Number.isInteger(ivSize)) {
throw new SecurityException('invalid IV length, must be an integer');
}
if (ivSize < MIN_IV_SIZE_IN_BYTES || ivSize > AES_BLOCK_SIZE_IN_BYTES) {
throw new SecurityException(
'invalid IV length, must be at least ' + MIN_IV_SIZE_IN_BYTES +
' and at most ' + AES_BLOCK_SIZE_IN_BYTES);
}
Validators.requireUint8Array(key);
Validators.validateAesKeySize(key.length);
if (Environment.IS_WEBCRYPTO_AVAILABLE) {
try {
const cryptoKey = await self.crypto.subtle.importKey(
'raw', key, {'name': 'AES-CTR', 'length': key.length}, false,
['encrypt', 'decrypt']);
return new AesCtr(cryptoKey, ivSize);
} catch (error) {
// CTR might be unsupported in this browser. Fall back to Pure JS.
}
}
return new AesCtrPureJs(key, ivSize);
}
/**
* @override
*/
async encrypt(plaintext) {
Validators.requireUint8Array(plaintext);
const iv = Random.randBytes(this.ivSize_);
const counter = new Uint8Array(AES_BLOCK_SIZE_IN_BYTES);
counter.set(iv);
const alg = {'name': 'AES-CTR', 'counter': counter, 'length': 128};
const ciphertext =
await self.crypto.subtle.encrypt(alg, this.key_, plaintext);
return Bytes.concat(iv, new Uint8Array(ciphertext));
}
/**
* @override
*/
async decrypt(ciphertext) {
Validators.requireUint8Array(ciphertext);
if (ciphertext.length < this.ivSize_) {
throw new SecurityException('ciphertext too short');
}
const counter = new Uint8Array(AES_BLOCK_SIZE_IN_BYTES);
counter.set(ciphertext.subarray(0, this.ivSize_));
const alg = {'name': 'AES-CTR', 'counter': counter, 'length': 128};
return new Uint8Array(await self.crypto.subtle.decrypt(
alg, this.key_, new Uint8Array(ciphertext.subarray(this.ivSize_))));
}
}
exports = AesCtr;