2024-03-11 20:24:51 +08:00
|
|
|
const vaultRawKey = sessionStorage.getItem('vaultRawKey');
|
2024-03-12 17:04:19 +08:00
|
|
|
|
|
|
|
|
async function getSaltFromBackend() {
|
|
|
|
|
const response = await fetch('index.php?r=vault%2Fget-salt');
|
|
|
|
|
const data = await response.json();
|
|
|
|
|
return data.vault_salt;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async function deriveKey(password) {
|
2024-03-11 20:24:51 +08:00
|
|
|
const passwordBuffer = new TextEncoder().encode(password);
|
2024-03-12 17:04:19 +08:00
|
|
|
const salt = await getSaltFromBackend();
|
|
|
|
|
const saltBuffer = new TextEncoder().encode(salt);
|
2024-03-11 20:24:51 +08:00
|
|
|
const key = await window.crypto.subtle.importKey(
|
|
|
|
|
'raw',
|
|
|
|
|
passwordBuffer,
|
|
|
|
|
{name: 'PBKDF2'},
|
|
|
|
|
false,
|
|
|
|
|
['deriveKey']
|
|
|
|
|
);
|
|
|
|
|
return await window.crypto.subtle.deriveKey(
|
|
|
|
|
{
|
|
|
|
|
name: 'PBKDF2',
|
2024-03-12 17:04:19 +08:00
|
|
|
salt: saltBuffer,
|
2024-03-11 20:24:51 +08:00
|
|
|
iterations: 100000,
|
|
|
|
|
hash: 'SHA-256'
|
|
|
|
|
},
|
|
|
|
|
key,
|
|
|
|
|
{name: 'AES-GCM', length: 256},
|
2024-03-12 17:04:19 +08:00
|
|
|
false, // 是否允许导出
|
2024-03-11 20:24:51 +08:00
|
|
|
['encrypt', 'decrypt']
|
|
|
|
|
);
|
|
|
|
|
}
|
2024-03-12 17:04:19 +08:00
|
|
|
|
2024-03-11 20:24:51 +08:00
|
|
|
async function encryptFile(file, password) {
|
2024-03-12 17:04:19 +08:00
|
|
|
const iv = window.crypto.getRandomValues(new Uint8Array(12));
|
|
|
|
|
const derivedKey = await deriveKey(password);
|
|
|
|
|
// console.log(password);
|
|
|
|
|
const plaintextData = await file.arrayBuffer();
|
|
|
|
|
const encryptedData = await window.crypto.subtle.encrypt(
|
|
|
|
|
{name: 'AES-GCM', iv: iv, tagLength: 128},
|
|
|
|
|
derivedKey,
|
|
|
|
|
plaintextData
|
2024-03-11 20:24:51 +08:00
|
|
|
);
|
2024-03-12 17:04:19 +08:00
|
|
|
return new Blob([iv, encryptedData], {type: file.type});
|
2024-03-11 20:24:51 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async function decryptFile(encryptedFile, password) {
|
2024-03-12 17:04:19 +08:00
|
|
|
const encryptedData = new Uint8Array(await encryptedFile.arrayBuffer());
|
|
|
|
|
const iv = encryptedData.slice(0, 12);
|
|
|
|
|
const ciphertext = encryptedData.slice(12);
|
|
|
|
|
const derivedKey = await deriveKey(password);
|
|
|
|
|
const decryptedData = await window.crypto.subtle.decrypt(
|
|
|
|
|
{name: 'AES-GCM', iv: iv, tagLength: 128},
|
|
|
|
|
derivedKey,
|
|
|
|
|
ciphertext
|
|
|
|
|
);
|
|
|
|
|
return new Blob([decryptedData], {type: encryptedFile.type});
|
2024-03-11 20:24:51 +08:00
|
|
|
}
|
2024-03-12 17:04:19 +08:00
|
|
|
// async function decryptFile(encryptedFile, password) {
|
|
|
|
|
// const encryptedData = new Uint8Array(await encryptedFile.arrayBuffer());
|
|
|
|
|
// const iv = encryptedData.slice(0, 12);
|
|
|
|
|
// const ciphertext = encryptedData.slice(12);
|
|
|
|
|
// const derivedKey = await deriveKey(password);
|
|
|
|
|
// const keyData = await window.crypto.subtle.exportKey('raw', derivedKey);
|
|
|
|
|
// const keyBytes = new Uint8Array(keyData);
|
|
|
|
|
// // console.log('Key:', keyBytes);
|
|
|
|
|
// // console.log(password);
|
|
|
|
|
// const decryptedData = await window.crypto.subtle.decrypt(
|
|
|
|
|
// {name: 'AES-GCM', iv: iv, tagLength: 128},
|
|
|
|
|
// derivedKey,
|
|
|
|
|
// ciphertext
|
|
|
|
|
// );
|
|
|
|
|
// return new Blob([decryptedData], {type: encryptedFile.type});
|
|
|
|
|
// }
|
2024-03-11 20:24:51 +08:00
|
|
|
async function downloadAndDecryptFile(url, password, filename) {
|
|
|
|
|
const response = await fetch(url);
|
|
|
|
|
const encryptedFile = await response.blob();
|
|
|
|
|
const decryptedFile = await decryptFile(encryptedFile, password);
|
|
|
|
|
const blob = new Blob([decryptedFile], {type: decryptedFile.type});
|
|
|
|
|
const blobURL = window.URL.createObjectURL(blob);
|
|
|
|
|
const link = document.createElement('a');
|
|
|
|
|
link.href = blobURL;
|
|
|
|
|
link.download = filename;
|
|
|
|
|
link.click();
|
|
|
|
|
window.URL.revokeObjectURL(blobURL);
|
|
|
|
|
}
|
