Add crypto module

thom4parisot · Feb 3, 2019 · 5f49392 · 5f49392
1 parent ee08c35
commit 5f49392
Show file tree

Hide file tree

Showing 8 changed files with 257 additions and 121 deletions.
diff --git a/README.md b/README.md
@@ -2,23 +2,23 @@
 
 > crx is a utility to **package Google Chrome extensions** via a *Node API* and the *command line*. It is written **purely in JavaScript** and **does not require OpenSSL**!
 
+Massive hat tip to the [node-rsa project](https://npmjs.com/node-rsa) for the pure JavaScript encryption!
+
+**Compatibility**: this extension is compatible with `node>=0.10`.
+
 Packages are available to use `crx` with:
 
 - *grunt*: [grunt-crx](https://npmjs.com/grunt-crx)
 - *gulp*: [gulp-crx-pack](https://npmjs.com/gulp-crx-pack)
 - *webpack*: [crx-webpack-plugin](https://npmjs.com/crx-webpack-plugin)
 
-Massive hat tip to the [node-rsa project](https://npmjs.com/node-rsa) for the pure JavaScript encryption!
-
-**Compatibility**: this extension is compatible with `node>=10`.
-
 ## Install
 
 ```bash
 $ npm install crx
 ```
 
-## Module API
+## crx API
 
 Asynchronous functions returns a native ECMAScript Promise.
 
@@ -46,12 +46,17 @@ crx.load( path.resolve(__dirname, './myExtension') )
   });
 ```
 
-### ChromeExtension = require("crx")
-### crx = new ChromeExtension(attrs)
+### `ChromeExtension(options)`
 
 This module exports the `ChromeExtension` constructor directly, which can take an optional attribute object, which is used to extend the instance.
 
-### crx.load(path|files)
+```js
+var ChromeExtension = require("crx");
+
+crx = new ChromeExtension({ ... });
+```
+
+### `crx.load(path|files)`
 
 Prepares the temporary workspace for the Chrome Extension located at `path` — which is expected to directly contain `manifest.json`.
 
@@ -69,7 +74,7 @@ crx.load(['/my/extension/manifest.json', '/my/extension/background.json']).then(
 });
 ```
 
-### crx.pack()
+### `crx.pack()`
 
 Packs the Chrome Extension and resolves the promise with a Buffer containing the `.crx` file.
 
@@ -81,7 +86,7 @@ crx.load('/path/to/extension')
   });
 ```
 
-### crx.generateUpdateXML()
+### `crx.generateUpdateXML()`
 
 Returns a Buffer containing the update.xml file used for `autoupdate`, as specified for `update_url` in the manifest. In this case, the instance must have a property called `codebase`.
 
@@ -103,6 +108,39 @@ Generates application id (extension id) from given path.
 
 ```js
 new crx().generateAppId('/path/to/ext') // epgkjnfaepceeghkjflpimappmlalchn
+
+## crypto API
+
+### `generateAppId(publicKey)`
+
+```js
+const crypto = require('crx/crypto');
+
+
+```
+
+### `generateAppIdFromPath(path)`
+
+```js
+const crypto = require('crx/crypto');
+
+
+```
+
+### `generatePrivateKey()`
+
+```js
+const crypto = require('crx/crypto');
+
+
+```
+
+### `generatePublicKey(privateKey[, format])`
+
+```js
+const crypto = require('crx/crypto');
+
+
 ```
 
 ## CLI API

diff --git a/bin/crx.js b/bin/crx.js
@@ -2,10 +2,10 @@
 
 var path = require("path");
 var fs = require("fs");
-var rsa = require("node-rsa");
 var {promisify} = require("util");
 var writeFile = promisify(fs.writeFile);
 var readFile = promisify(fs.readFile);
+var {generatePrivateKey} = require("../crypto");
 
 var program = require("commander");
 var ChromeExtension = require("..");
@@ -44,16 +44,6 @@ program
 program.parse(process.argv);
 
 
-/**
- * Generate a new key file
- * @param {String} keyPath path of the key file to create
- * @returns {Promise}
- */
-function generateKeyFile(keyPath) {
-  return Promise.resolve(new rsa({ b: 2048 }))
-    .then(key => key.exportKey("pkcs1-private-pem"))
-    .then(keyVal => writeFile(keyPath, keyVal));
-}
 
 function keygen(dir, program) {
   dir = dir ? resolve(cwd, dir) : cwd;
@@ -65,7 +55,7 @@ function keygen(dir, program) {
       throw new Error("key.pem already exists in the given location.");
     }
 
-    generateKeyFile(keyPath);
+    generatePrivateKey().then(privateKey => writeFile(keyPath, privateKey));
   });
 }
 
@@ -96,26 +86,16 @@ function pack(dir, program) {
     }
   }
 
-  var crx = new ChromeExtension({
-    rootDirectory: input,
-    maxBuffer: program.maxBuffer
-  });
-
   readFile(keyPath)
-    .then(null, function(err) {
-      // If the key file doesn't exist, create one
-      if (err.code === "ENOENT") {
-        return generateKeyFile(keyPath);
-      } else {
-        throw err;
-      }
-    })
-    .then(function(key) {
-      crx.privateKey = key;
+    .then(function(privateKey) {
+      return new ChromeExtension({
+        rootDirectory: input,
+        maxBuffer: program.maxBuffer,
+        privateKey
+      });
     })
-    .then(function() {
-      crx
-        .load()
+    .then(function(crx) {
+      crx.load()
         .then(() => crx.loadContents())
         .then(function(fileBuffer) {
           if (program.zipOutput) {

diff --git a/crypto.js b/crypto.js
@@ -0,0 +1,98 @@
+"use strict";
+
+var RSA = require("node-rsa");
+var crypto = require("crypto");
+
+/**
+ * Generate an AppId from a public key
+ *
+ * @param  {String|Buffer} content Public Key content
+ * @return {String}        AppId
+ */
+function generateAppId (content) {
+  if (typeof content !== 'string' && !(content instanceof Buffer)) {
+    throw new Error('Public key is neither set, nor given');
+  }
+
+  return crypto
+    .createHash("sha256")
+    .update(content)
+    .digest()
+    .toString("hex")
+    .split("")
+    .map(x => (parseInt(x, 16) + 0x0a).toString(26))
+    .join("")
+    .slice(0, 32);
+}
+
+/**
+ * Generate an AppId from a filesystem path
+ *
+ * @param  {String} path Unix or Windows path to the folder containing the manifest.json
+ * @return {String}      AppId
+ */
+function generateAppIdFromPath (path) {
+  var charCode = path.charCodeAt(0);
+
+  // Handling Windows Path
+  // 65 (A) < charCode < 122 (z)
+  if (charCode >= 65 && charCode <= 122 && path[1] === ':') {
+    path = Buffer.from(
+      path[0].toUpperCase() + path.slice(1),
+      "utf-16le"
+    );
+  }
+
+  return generateAppId(path);
+}
+
+/**
+ * [generatePrivateKey description]
+ * @return {Promise} [description]
+ */
+function generatePrivateKey () {
+  return Promise.resolve(new RSA({ b: 2048 }))
+    .then(key => key.exportKey("pkcs1-private-pem"));
+}
+
+/**
+ * [generatePublicKey description]
+ * @param  {Buffer} privateKey [description]
+ * @param  {String} format     [description]
+ * @return {String|Buffer}            [description]
+ */
+function generatePublicKey (privateKey, format) {
+  var ALLOWED_FORMATS = ['der', 'pem'];
+
+  return new Promise(function(resolve, reject){
+    if (!privateKey) {
+      return reject('Impossible to generate a public key: privateKey option has not been defined or is empty.');
+    }
+
+    if (format && ALLOWED_FORMATS.indexOf(format) === -1) {
+      return reject('Allowed public key formats are "der" (default) or "pem".');
+    }
+
+    var key = new RSA(privateKey);
+
+    resolve(key.exportKey('pkcs8-public-' + (format || 'der')));
+  });
+};
+
+/**
+ * [sign description]
+ * @param  {Any} content    [description]
+ * @param  {Buffer|String} privateKey [description]
+ * @return {Buffer}            [description]
+ */
+function sign (content, privateKey) {
+  return crypto.createSign("sha1").update(content).sign(privateKey);
+}
+
+module.exports = {
+  generateAppId: generateAppId,
+  generateAppIdFromPath: generateAppIdFromPath,
+  generatePublicKey: generatePublicKey,
+  generatePrivateKey: generatePrivateKey,
+  sign: sign,
+}