mail/src/js/crypto/crypto.js

/**
 * High level crypto api that invokes native crypto (if available) and
 * gracefully degrades to JS crypto (if unavailable)
 */
app.crypto.Crypto = function(window, util) {
	'use strict';

	var aes = new cryptoLib.AesCBC(forge); // use AES-CBC mode by default
	var rsa = new cryptoLib.RSA(forge, util); // use RSA for asym. crypto

	/**
	 * Initializes the crypto modules by fetching the user's
	 * encrypted secret key from storage and storing it in memory.
	 */
	this.init = function(args, callback) {
		var self = this;

		// valdiate input
		if (!args.emailAddress || !args.keySize || !args.rsaKeySize) {
			callback({
				errMsg: 'Crypto init failed. Not all args set!'
			});
			return;
		}

		self.emailAddress = args.emailAddress;
		self.keySize = args.keySize;
		self.ivSize = args.keySize;
		self.rsaKeySize = args.rsaKeySize;

		// derive PBKDF2 from password in web worker thread
		self.deriveKey(args.password, self.keySize, function(err, pbkdf2) {
			if (err) {
				callback(err);
				return;
			}

			// check if key exists
			if (!args.storedKeypair) {
				// generate keys, encrypt and persist if none exists
				generateKeypair(pbkdf2);
			} else {
				// decrypt key
				decryptKeypair(args.storedKeypair, pbkdf2);
			}

		});

		function generateKeypair(pbkdf2) {
			// generate RSA keypair in web worker
			rsa.generateKeypair(self.rsaKeySize, function(err, generatedKeypair) {
				if (err) {
					callback(err);
					return;
				}

				// encrypt keypair
				var iv = util.random(self.ivSize);
				var encryptedPrivateKey = aes.encrypt(generatedKeypair.privkeyPem, pbkdf2, iv);

				// new encrypted keypair object
				var newKeypair = {
					publicKey: {
						_id: generatedKeypair._id,
						userId: self.emailAddress,
						publicKey: generatedKeypair.pubkeyPem
					},
					privateKey: {
						_id: generatedKeypair._id,
						userId: self.emailAddress,
						encryptedKey: encryptedPrivateKey,
						iv: iv
					}
				};

				// return generated keypair for storage in keychain dao
				callback(null, newKeypair);
			});
		}

		function decryptKeypair(storedKeypair, pbkdf2) {
			var decryptedPrivateKey;

			// validate input
			if (!storedKeypair || !storedKeypair.privateKey || !storedKeypair.privateKey.encryptedKey || !storedKeypair.privateKey.iv) {
				callback({
					errMsg: 'Incomplete arguments for private key decryption!'
				});
				return;
			}

			// try to decrypt with pbkdf2
			try {
				var prK = storedKeypair.privateKey;
				decryptedPrivateKey = aes.decrypt(prK.encryptedKey, pbkdf2, prK.iv);
			} catch (ex) {
				callback({
					errMsg: 'Wrong password!'
				});
				return;
			}
			// set rsa keys
			rsa.init(storedKeypair.publicKey.publicKey, decryptedPrivateKey, storedKeypair.publicKey._id);

			callback();
		}
	};

	/**
	 * Do PBKDF2 key derivation in a WebWorker thread
	 */
	this.deriveKey = function(password, keySize, callback) {
		startWorker('/crypto/pbkdf2-worker.js', {
			password: password,
			keySize: keySize
		}, callback, function() {
			var pbkdf2 = new app.crypto.PBKDF2();
			return pbkdf2.getKey(password, keySize);
		});
	};

	//
	// En/Decrypts single item
	//

	this.aesEncrypt = function(plaintext, key, iv, callback) {
		var self = this;

		startWorker('/crypto/aes-worker.js', {
			type: 'encrypt',
			plaintext: plaintext,
			key: key,
			iv: iv
		}, callback, function() {
			return self.aesEncryptSync(plaintext, key, iv);
		});
	};

	this.aesDecrypt = function(ciphertext, key, iv, callback) {
		var self = this;

		startWorker('/crypto/aes-worker.js', {
			type: 'decrypt',
			ciphertext: ciphertext,
			key: key,
			iv: iv
		}, callback, function() {
			return self.aesDecryptSync(ciphertext, key, iv);
		});
	};

	this.aesEncryptSync = function(plaintext, key, iv) {
		return aes.encrypt(plaintext, key, iv);
	};

	this.aesDecryptSync = function(ciphertext, key, iv) {
		return aes.decrypt(ciphertext, key, iv);
	};

	//
	// En/Decrypt a list of items with AES in a WebWorker thread
	//

	this.aesEncryptList = function(list, callback) {
		startWorker('/crypto/aes-batch-worker.js', {
			type: 'encrypt',
			list: list
		}, callback, function() {
			var batch = new cryptoLib.CryptoBatch(aes);
			return batch.encryptList(list);
		});
	};

	this.aesDecryptList = function(list, callback) {
		startWorker('/crypto/aes-batch-worker.js', {
			type: 'decrypt',
			list: list
		}, callback, function() {
			var batch = new cryptoLib.CryptoBatch(aes);
			return batch.decryptList(list);
		});
	};

	//
	// En/Decrypt something speficially using the user's secret key
	//

	this.encryptListForUser = function(list, receiverPubkeys, callback) {
		var envelope, envelopes = [],
			self = this;

		if (!receiverPubkeys || receiverPubkeys.length !== 1) {
			callback({
				errMsg: 'Encryption is currently implemented for only one receiver!'
			});
			return;
		}

		var keypair = rsa.exportKeys();
		var senderPrivkey = {
			_id: keypair._id,
			privateKey: keypair.privkeyPem
		};

		// package objects into batchable envelope format
		list.forEach(function(i) {
			envelope = {
				id: i.id,
				plaintext: i,
				key: util.random(self.keySize),
				iv: util.random(self.ivSize),
				receiverPk: receiverPubkeys[0]._id
			};
			envelopes.push(envelope);
		});

		startWorker('/crypto/crypto-batch-worker.js', {
			type: 'encrypt',
			list: envelopes,
			senderPrivkey: senderPrivkey,
			receiverPubkeys: receiverPubkeys
		}, callback, function() {
			var batch = new cryptoLib.CryptoBatch(aes, rsa, util, _);
			return batch.encryptListForUser(envelopes, receiverPubkeys, senderPrivkey);
		});
	};

	this.decryptListForUser = function(list, senderPubkeys, callback) {
		if (!senderPubkeys || senderPubkeys < 1) {
			callback({
				errMsg: 'Sender public keys must be set!'
			});
			return;
		}

		var keypair = rsa.exportKeys();
		var receiverPrivkey = {
			_id: keypair._id,
			privateKey: keypair.privkeyPem
		};

		startWorker('/crypto/crypto-batch-worker.js', {
			type: 'decrypt',
			list: list,
			receiverPrivkey: receiverPrivkey,
			senderPubkeys: senderPubkeys
		}, callback, function() {
			var batch = new cryptoLib.CryptoBatch(aes, rsa, util, _);
			return batch.decryptListForUser(list, senderPubkeys, receiverPrivkey);
		});
	};

	function startWorker(script, args, callback, noWorker) {
		// check for WebWorker support
		if (window.Worker) {

			// init webworker thread
			var worker = new Worker(app.config.workerPath + script);

			worker.onmessage = function(e) {
				// return derived key from the worker
				callback(null, e.data);
			};

			// send data to the worker
			worker.postMessage(args);

		} else {
			// no WebWorker support... do synchronous call
			var result = noWorker();
			callback(null, result);
		}
	}

};
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`/**`
			`* High level crypto api that invokes native crypto (if available) and`
			`* gracefully degrades to JS crypto (if unavailable)`
			`*/`
			`app.crypto.Crypto = function(window, util) {`
refactored all files to use functional strict scope 2013-04-01 18:12:15 -04:00			`'use strict';`

refactored crypto libto use different namespace 2013-05-22 11:03:54 -04:00			`var aes = new cryptoLib.AesCBC(forge); // use AES-CBC mode by default`
			`var rsa = new cryptoLib.RSA(forge, util); // use RSA for asym. crypto`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00
initial commit 2013-03-13 11:58:46 -04:00			`/**`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`* Initializes the crypto modules by fetching the user's`
			`* encrypted secret key from storage and storing it in memory.`
initial commit 2013-03-13 11:58:46 -04:00			`*/`
started refacroting crypto 2013-05-14 14:28:12 -04:00			`this.init = function(args, callback) {`
			`var self = this;`

minor fixes to email dao and crypto 2013-05-18 19:33:59 -04:00			`// valdiate input`
			`if (!args.emailAddress \|\| !args.keySize \|\| !args.rsaKeySize) {`
			`callback({`
			`errMsg: 'Crypto init failed. Not all args set!'`
			`});`
			`return;`
			`}`

refactored crypto.js tp use keypair input 2013-05-31 07:00:54 -04:00			`self.emailAddress = args.emailAddress;`
			`self.keySize = args.keySize;`
			`self.ivSize = args.keySize;`
			`self.rsaKeySize = args.rsaKeySize;`
fixed cloudstorage dao it tests 2013-05-18 22:00:53 -04:00
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`// derive PBKDF2 from password in web worker thread`
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`self.deriveKey(args.password, self.keySize, function(err, pbkdf2) {`
			`if (err) {`
			`callback(err);`
			`return;`
			`}`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00
			`// check if key exists`
refactored crypto.js tp use keypair input 2013-05-31 07:00:54 -04:00			`if (!args.storedKeypair) {`
started refacroting crypto 2013-05-14 14:28:12 -04:00			`// generate keys, encrypt and persist if none exists`
fixed cloudstorage dao it tests 2013-05-18 22:00:53 -04:00			`generateKeypair(pbkdf2);`
refactored all files to use functional strict scope 2013-04-01 18:12:15 -04:00			`} else {`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`// decrypt key`
refactored crypto.js tp use keypair input 2013-05-31 07:00:54 -04:00			`decryptKeypair(args.storedKeypair, pbkdf2);`
started refacroting crypto 2013-05-14 14:28:12 -04:00			`}`

			`});`

fixed cloudstorage dao it tests 2013-05-18 22:00:53 -04:00			`function generateKeypair(pbkdf2) {`
started refacroting crypto 2013-05-14 14:28:12 -04:00			`// generate RSA keypair in web worker`
refactored crypto.js tp use keypair input 2013-05-31 07:00:54 -04:00			`rsa.generateKeypair(self.rsaKeySize, function(err, generatedKeypair) {`
started refacroting crypto 2013-05-14 14:28:12 -04:00			`if (err) {`
			`callback(err);`
added exception handling for password/login 2013-05-07 09:10:51 -04:00			`return;`
			`}`

started refacroting crypto 2013-05-14 14:28:12 -04:00			`// encrypt keypair`
			`var iv = util.random(self.ivSize);`
refactored crypto.js tp use keypair input 2013-05-31 07:00:54 -04:00			`var encryptedPrivateKey = aes.encrypt(generatedKeypair.privkeyPem, pbkdf2, iv);`

			`// new encrypted keypair object`
			`var newKeypair = {`
			`publicKey: {`
			`_id: generatedKeypair._id,`
			`userId: self.emailAddress,`
			`publicKey: generatedKeypair.pubkeyPem`
			`},`
			`privateKey: {`
			`_id: generatedKeypair._id,`
			`userId: self.emailAddress,`
			`encryptedKey: encryptedPrivateKey,`
			`iv: iv`
			`}`
started refacroting crypto 2013-05-14 14:28:12 -04:00			`};`

refactored crypto.js tp use keypair input 2013-05-31 07:00:54 -04:00			`// return generated keypair for storage in keychain dao`
			`callback(null, newKeypair);`
started refacroting crypto 2013-05-14 14:28:12 -04:00			`});`
			`}`

			`function decryptKeypair(storedKeypair, pbkdf2) {`
refactored crypto.js tp use keypair input 2013-05-31 07:00:54 -04:00			`var decryptedPrivateKey;`

			`// validate input`
			`if (!storedKeypair \|\| !storedKeypair.privateKey \|\| !storedKeypair.privateKey.encryptedKey \|\| !storedKeypair.privateKey.iv) {`
			`callback({`
			`errMsg: 'Incomplete arguments for private key decryption!'`
			`});`
			`return;`
			`}`

refactored crypto for user to use RSA encrypt/sign 2013-05-15 06:26:32 -04:00			`// try to decrypt with pbkdf2`
started refacroting crypto 2013-05-14 14:28:12 -04:00			`try {`
refactored crypto.js tp use keypair input 2013-05-31 07:00:54 -04:00			`var prK = storedKeypair.privateKey;`
			`decryptedPrivateKey = aes.decrypt(prK.encryptedKey, pbkdf2, prK.iv);`
started refacroting crypto 2013-05-14 14:28:12 -04:00			`} catch (ex) {`
			`callback({`
			`errMsg: 'Wrong password!'`
			`});`
			`return;`
initial commit 2013-03-13 11:58:46 -04:00			`}`
refactored crypto for user to use RSA encrypt/sign 2013-05-15 06:26:32 -04:00			`// set rsa keys`
refactored crypto.js tp use keypair input 2013-05-31 07:00:54 -04:00			`rsa.init(storedKeypair.publicKey.publicKey, decryptedPrivateKey, storedKeypair.publicKey._id);`
refactored all files to use functional strict scope 2013-04-01 18:12:15 -04:00
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`callback();`
started refacroting crypto 2013-05-14 14:28:12 -04:00			`}`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`};`
refactored all files to use functional strict scope 2013-04-01 18:12:15 -04:00
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`/**`
			`* Do PBKDF2 key derivation in a WebWorker thread`
			`*/`
			`this.deriveKey = function(password, keySize, callback) {`
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`startWorker('/crypto/pbkdf2-worker.js', {`
			`password: password,`
			`keySize: keySize`
			`}, callback, function() {`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`var pbkdf2 = new app.crypto.PBKDF2();`
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`return pbkdf2.getKey(password, keySize);`
			`});`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`};`
refactored all files to use functional strict scope 2013-04-01 18:12:15 -04:00
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`//`
			`// En/Decrypts single item`
			`//`

			`this.aesEncrypt = function(plaintext, key, iv, callback) {`
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`var self = this;`
refactored all files to use functional strict scope 2013-04-01 18:12:15 -04:00
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`startWorker('/crypto/aes-worker.js', {`
			`type: 'encrypt',`
			`plaintext: plaintext,`
			`key: key,`
			`iv: iv`
			`}, callback, function() {`
			`return self.aesEncryptSync(plaintext, key, iv);`
			`});`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`};`

			`this.aesDecrypt = function(ciphertext, key, iv, callback) {`
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`var self = this;`
refactored all files to use functional strict scope 2013-04-01 18:12:15 -04:00
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`startWorker('/crypto/aes-worker.js', {`
			`type: 'decrypt',`
			`ciphertext: ciphertext,`
			`key: key,`
			`iv: iv`
			`}, callback, function() {`
			`return self.aesDecryptSync(ciphertext, key, iv);`
			`});`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`};`

			`this.aesEncryptSync = function(plaintext, key, iv) {`
			`return aes.encrypt(plaintext, key, iv);`
			`};`

			`this.aesDecryptSync = function(ciphertext, key, iv) {`
			`return aes.decrypt(ciphertext, key, iv);`
			`};`

			`//`
			`// En/Decrypt a list of items with AES in a WebWorker thread`
			`//`

			`this.aesEncryptList = function(list, callback) {`
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`startWorker('/crypto/aes-batch-worker.js', {`
			`type: 'encrypt',`
			`list: list`
			`}, callback, function() {`
refactored crypto libto use different namespace 2013-05-22 11:03:54 -04:00			`var batch = new cryptoLib.CryptoBatch(aes);`
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`return batch.encryptList(list);`
			`});`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`};`

			`this.aesDecryptList = function(list, callback) {`
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`startWorker('/crypto/aes-batch-worker.js', {`
			`type: 'decrypt',`
			`list: list`
			`}, callback, function() {`
refactored crypto libto use different namespace 2013-05-22 11:03:54 -04:00			`var batch = new cryptoLib.CryptoBatch(aes);`
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`return batch.decryptList(list);`
			`});`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`};`

			`//`
			`// En/Decrypt something speficially using the user's secret key`
			`//`

integrated new crypto lib api into crypto.js 2013-05-23 16:17:25 -04:00			`this.encryptListForUser = function(list, receiverPubkeys, callback) {`
crypto cleanup of for loops using forEach 2013-05-14 13:11:16 -04:00			`var envelope, envelopes = [],`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`self = this;`

integrated new crypto lib api into crypto.js 2013-05-23 16:17:25 -04:00			`if (!receiverPubkeys \|\| receiverPubkeys.length !== 1) {`
			`callback({`
			`errMsg: 'Encryption is currently implemented for only one receiver!'`
			`});`
			`return;`
			`}`

			`var keypair = rsa.exportKeys();`
			`var senderPrivkey = {`
			`_id: keypair._id,`
			`privateKey: keypair.privkeyPem`
			`};`

cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`// package objects into batchable envelope format`
crypto cleanup of for loops using forEach 2013-05-14 13:11:16 -04:00			`list.forEach(function(i) {`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`envelope = {`
crypto cleanup of for loops using forEach 2013-05-14 13:11:16 -04:00			`id: i.id,`
			`plaintext: i,`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`key: util.random(self.keySize),`
integrated new crypto lib api into crypto.js 2013-05-23 16:17:25 -04:00			`iv: util.random(self.ivSize),`
			`receiverPk: receiverPubkeys[0]._id`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`};`
			`envelopes.push(envelope);`
crypto cleanup of for loops using forEach 2013-05-14 13:11:16 -04:00			`});`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`startWorker('/crypto/crypto-batch-worker.js', {`
			`type: 'encrypt',`
			`list: envelopes,`
			`senderPrivkey: senderPrivkey,`
			`receiverPubkeys: receiverPubkeys`
			`}, callback, function() {`
integrated new crypto lib api into crypto.js 2013-05-23 16:17:25 -04:00			`var batch = new cryptoLib.CryptoBatch(aes, rsa, util, _);`
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`return batch.encryptListForUser(envelopes, receiverPubkeys, senderPrivkey);`
			`});`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`};`
refactored all files to use functional strict scope 2013-04-01 18:12:15 -04:00
integrated new crypto lib api into crypto.js 2013-05-23 16:17:25 -04:00			`this.decryptListForUser = function(list, senderPubkeys, callback) {`
			`if (!senderPubkeys \|\| senderPubkeys < 1) {`
			`callback({`
			`errMsg: 'Sender public keys must be set!'`
			`});`
			`return;`
			`}`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00
integrated new crypto lib api into crypto.js 2013-05-23 16:17:25 -04:00			`var keypair = rsa.exportKeys();`
			`var receiverPrivkey = {`
			`_id: keypair._id,`
			`privateKey: keypair.privkeyPem`
			`};`

refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`startWorker('/crypto/crypto-batch-worker.js', {`
			`type: 'decrypt',`
			`list: list,`
			`receiverPrivkey: receiverPrivkey,`
			`senderPubkeys: senderPubkeys`
			`}, callback, function() {`
			`var batch = new cryptoLib.CryptoBatch(aes, rsa, util, _);`
			`return batch.decryptListForUser(list, senderPubkeys, receiverPrivkey);`
			`});`
			`};`

			`function startWorker(script, args, callback, noWorker) {`
			`// check for WebWorker support`
integrated new crypto lib api into crypto.js 2013-05-23 16:17:25 -04:00			`if (window.Worker) {`
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`// init webworker thread`
			`var worker = new Worker(app.config.workerPath + script);`

refactored worker code... all asym and sym batch encryption is done in a worker 2013-05-15 07:11:08 -04:00			`worker.onmessage = function(e) {`
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`// return derived key from the worker`
refactored worker code... all asym and sym batch encryption is done in a worker 2013-05-15 07:11:08 -04:00			`callback(null, e.data);`
			`};`
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00
			`// send data to the worker`
			`worker.postMessage(args);`
initial commit 2013-03-13 11:58:46 -04:00
refactored worker code... all asym and sym batch encryption is done in a worker 2013-05-15 07:11:08 -04:00			`} else {`
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`// no WebWorker support... do synchronous call`
			`var result = noWorker();`
			`callback(null, result);`
refactored worker code... all asym and sym batch encryption is done in a worker 2013-05-15 07:11:08 -04:00			`}`
refactoring of crypto worker code and lots of cleanup 2013-06-04 19:47:28 -04:00			`}`
refactored all files to use functional strict scope 2013-04-01 18:12:15 -04:00
cleanup strict mode function placement 2013-04-02 09:02:57 -04:00			`};`