added web worker

Author: wiegelmann

audit.js

@@ -1,113 +1,32 @@
-/**
- * Audit Security Tool for Encrypt.to
- * The script compares js files from github and the deployed version at Encrypt.to.
- *
- */
-
-// define audit class
-function Audit(url, isJson) {
-	var self = this;
-	self.isJson = isJson;
-	self.url = url;
-	
-	self.startAudit();
-}
-
-// start processing
-Audit.prototype.startAudit = function() {
-	var self = this;
-	self.loadData();
-	self.encodeData();
-	
-	if (self.isJson) {
-		self.parseJson();
-		self.cleanupString();
-	}
-};
-
-// fetch data from remote source
-Audit.prototype.loadData = function() {
-	var self = this;
- 	self.sourceData = $.ajax({
-    	url: self.url + "?" + new Date().getTime(),
-        async: false
-    }).responseText;
-};
-
-// encode sourceData to base64
-Audit.prototype.encodeData = function() {
-	var self = this;	
- 	self.encodedData = window.btoa(self.sourceData);
-};
-
-// load encoded data from obj
-Audit.prototype.parseJson = function() {
-	var self = this;
- 	var obj = JSON.parse(self.sourceData);
-	self.encodedData = obj.content;
-};
-
-// remove newlines
-Audit.prototype.cleanupString = function() {
-	var self = this;
-	self.encodedData = self.encodedData.replace(/\n/g,'');
-};
-
-// define ObjLoader class
-function ObjLoader(url) {
-	var self = this;
-	self.url = url;
-	self.objects = [];
-	self.loadData();
-}
-
-// fetch data from remote source
-ObjLoader.prototype.loadData = function() {
-	var self = this;
- 	self.sourceData = $.ajax({
-    	url: self.url + "?" + new Date().getTime(),
-        async: false
-    }).responseText;
-	self.objects = JSON.parse(self.sourceData);
-};
-
 // start audit after page load 
 $(document).ready(function () {
-    setTimeout(function(){
-        
-		// load js file list
-		var fileLoader = new ObjLoader("https://api.github.com/repos/encrypt-to/encrypt.to/contents/public/assets");
-
-		// load commits
-		var commitLoader = new ObjLoader("https://api.github.com/repos/encrypt-to/encrypt.to/commits");
-		var lastCommit = commitLoader.objects[0];
-		$('#commit').append("<a href='https://github.com/encrypt-to/encrypt.to/commit/" + lastCommit.sha + "'>" + "Last commit from " + lastCommit.commit.author.date + ", " + lastCommit.commit.message + "</a>");		
+		var worker = new Worker('worker.js');
 
-		// start file audit
-		for (var i in fileLoader.objects) {
-			var name = fileLoader.objects[i].name;
-			var size = fileLoader.objects[i].size;
-			if (name.indexOf(".js") !== -1) {
-
-				// build links
-				var deployedLink = 'https://encrypt.to/assets/' + name;
-				var githubLink = 'https://api.github.com/repos/encrypt-to/encrypt.to/contents/public/assets/' + name;
-				
-				// load files
-				var deployed = new Audit(deployedLink, false);
-				var github = new Audit(githubLink, true);	
-
-				// compare base64 string
-				var result = deployed.encodedData === github.encodedData;
-
-				// write result
-				if (result) {
-					$('#resultTable > tbody:last').append('<tr><td>' + name + '</td><td style="background-color:green;color:white;">=</td><td>' + name + '</td><td>' + size / 1000 + ' kb</td></tr>');		
-				} else {
-					$('#resultTable > tbody:last').append('<tr style="background-color:red;color:white;"><td>' + name + '</td><td>!=</td><td>' + name + '</td></tr>');
-				}		
-			}
-		}
-		$('#running').text("Test finished.");
-    }, 500);
+		worker.addEventListener('message', function(e) {
+	    var data = e.data;
+			switch (data.cmd) {
+			    case 'audit':
+						if (data.valid === 'true') {
+				      $('#resultTable > tbody:last').append('<tr><td>' + data.name + '</td><td style="background-color:green;color:white;">=</td><td>' + data.name + '</td><td>' + data.size / 1000 + ' kb</td></tr>');
+			      } else {
+				      $('#resultTable > tbody:last').append('<tr style="background-color:red;color:white;"><td>' + data.name + '</td><td>!=</td><td>' + data.name + '</td></tr>');
+			      }
+			      break;
+			    case 'commit':
+						$('#commit').append("<a href='https://github.com/encrypt-to/encrypt.to/commit/" + data.lastCommit.sha + "'>" + "Last commit from " + data.lastCommit.commit.author.date + ", " + data.lastCommit.commit.message + "</a>");	
+			      break;
+					case 'done':
+						$('#running').text("Test finished.");
+						worker.terminate();
+						break
+					case 'error':
+						$('#running').text(data.msg);
+						break
+			    default:
+			      $('#resultTable > tbody:last').append('<tr style="background-color:blue;color:white;"><td>' + data.name + ' unavailable</td><td>!=</td><td>' + data.name + ' unavailable</td></tr>');
+			  };
+	  }, false);
+		
+		// start worker
+		worker.postMessage({'cmd': 'start'});
 });

base64.js

@@ -0,0 +1,46 @@
+var base64 = {};
+base64.PADCHAR = '=';
+base64.ALPHA = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/';
+
+base64.getbyte = function(s,i) {
+    var x = s.charCodeAt(i) & 0xFF;
+    return x;
+}
+
+base64.encode = function(s) {
+    var padchar = base64.PADCHAR;
+    var alpha   = base64.ALPHA;
+    var getbyte = base64.getbyte;
+
+    var i, b10;
+    var x = [];
+
+    // convert to string
+    s = '' + s;
+
+    var imax = s.length - s.length % 3;
+
+    if (s.length === 0) {
+        return s;
+    }
+    for (i = 0; i < imax; i += 3) {
+        b10 = (getbyte(s,i) << 16) | (getbyte(s,i+1) << 8) | getbyte(s,i+2);
+        x.push(alpha.charAt(b10 >> 18));
+        x.push(alpha.charAt((b10 >> 12) & 0x3F));
+        x.push(alpha.charAt((b10 >> 6) & 0x3f));
+        x.push(alpha.charAt(b10 & 0x3f));
+    }
+    switch (s.length - imax) {
+    case 1:
+        b10 = getbyte(s,i) << 16;
+        x.push(alpha.charAt(b10 >> 18) + alpha.charAt((b10 >> 12) & 0x3F) +
+               padchar + padchar);
+        break;
+    case 2:
+        b10 = (getbyte(s,i) << 16) | (getbyte(s,i+1) << 8);
+        x.push(alpha.charAt(b10 >> 18) + alpha.charAt((b10 >> 12) & 0x3F) +
+               alpha.charAt((b10 >> 6) & 0x3f) + padchar);
+        break;
+    }
+    return x.join('');
+}

index.html

@@ -7,7 +7,7 @@
 </head>
 <body>	
 	<p><b>Security Audit for <a href="https://encrypt.to/">Encrypt.to</a></b></p>	
-	<p id="running">Test running <img src="indicator.gif"></p>	
+	<div style="background-color:yellow;width:200px;" id="running">Test running <img src="indicator.gif"></div>	
 	<table id="resultTable" border="0" cellspacing="3" cellpadding="3">
 		<tbody>
 			<tr><th>Github</th><th>equals?</th><th>Encrypt.to</th><th>Size</th></tr>

worker.js

@@ -0,0 +1,132 @@
+function startAudit() {
+	// load js file list
+	var fileLoader = new ObjLoader("https://api.github.com/repos/encrypt-to/encrypt.to/contents/public/assets");
+
+	// load commits
+	var commitLoader = new ObjLoader("https://api.github.com/repos/encrypt-to/encrypt.to/commits");
+	var lastCommit = commitLoader.objects[0];	
+	
+	if (lastCommit) {
+		self.postMessage({'cmd':'commit','lastCommit':lastCommit});
+	} else {
+		self.postMessage({'cmd':'error','msg':'Can not load files from Github.'});
+		//self.close();
+	}
+	
+	// start file audit
+	for (var i in fileLoader.objects) {
+		var name = fileLoader.objects[i].name;
+		var size = fileLoader.objects[i].size;
+		if (name.indexOf(".js") !== -1) {
+
+			// build links
+			var deployedLink = 'https://encrypt.to/assets/' + name;
+			var githubLink = 'https://api.github.com/repos/encrypt-to/encrypt.to/contents/public/assets/' + name;
+		
+			// load files
+			var deployed = new Audit(deployedLink, false);
+			var github = new Audit(githubLink, true);	
+
+			// compare base64 string
+			var result = deployed.encodedData === github.encodedData;
+
+			// write result
+			if (result) {
+				self.postMessage({'cmd':'audit','valid':'true','name':name,'size':size});
+			} else {
+				self.postMessage({'cmd':'audit','valid':'false','name':name,'size':size});
+			}		
+		}
+	}
+	
+	// worker done
+	self.postMessage({'cmd':'done'});
+	
+}
+
+/**
+ * Audit Security Tool for Encrypt.to
+ * The script compares js files from github and the deployed version at Encrypt.to.
+ *
+ */
+
+// define audit class
+function Audit(url, isJson) {
+	var self = this;
+	self.isJson = isJson;
+	self.url = url;
+	
+	self.startAudit();
+}
+
+// start processing
+Audit.prototype.startAudit = function() {
+	var self = this;
+	self.loadData();
+	self.encodeData();
+	
+	if (self.isJson) {
+		self.parseJson();
+		self.cleanupString();
+	}
+};
+
+// fetch data from remote source
+Audit.prototype.loadData = function() {
+	var self = this;
+	var req = new XMLHttpRequest();
+	req.open('GET', self.url + "?" + new Date().getTime(), false); 
+	req.send(null);
+	if(req.status == 200) {
+		self.sourceData = req.responseText;
+	} else {
+		//self.postMessage({'cmd':'error','req':req});
+	}
+};
+
+// encode sourceData to base64
+Audit.prototype.encodeData = function() {
+	var self = this;	
+	importScripts("base64.js");
+ 	self.encodedData = base64.encode(self.sourceData);
+};
+
+// load encoded data from obj
+Audit.prototype.parseJson = function() {
+	var self = this;
+ 	var obj = JSON.parse(self.sourceData);
+	self.encodedData = obj.content;
+};
+
+// remove newlines
+Audit.prototype.cleanupString = function() {
+	var self = this;
+	self.encodedData = self.encodedData.replace(/\n/g,'');
+};
+
+// define ObjLoader class
+function ObjLoader(url) {
+	var self = this;
+	self.url = url;
+	self.objects = [];
+	self.loadData();
+}
+
+// fetch data from remote source
+ObjLoader.prototype.loadData = function() {
+	var self = this;
+	var req = new XMLHttpRequest();
+	req.open('GET', self.url + "?" + new Date().getTime(), false); 
+	req.send(null);
+	if(req.status == 200) {
+		self.sourceData = req.responseText;
+		self.objects = JSON.parse(self.sourceData);
+	} else {
+		//self.postMessage({'cmd':'error','req':req});
+	}
+};
+
+// web worker 
+self.addEventListener('message', function(e) {
+  startAudit();
+}, false);