Initial work on node:crypto bindings

Author: JordanMartinez

.gitignore

@@ -0,0 +1,12 @@
+/bower_components/
+/node_modules/
+/.pulp-cache/
+/output/
+/generated-docs/
+/.psc-package/
+/.psc*
+/.purs*
+/.psa*
+/.spago
+
+/.vscode

packages.dhall

@@ -0,0 +1,5 @@
+let upstream =
+      https://github.com/purescript/package-sets/releases/download/psc-0.15.14-20240123/packages.dhall
+        sha256:bb64d773919b5992d37a50050c4bc0e4358bda2f0eabfa494e7d3444ca683556
+
+in  upstream

spago.dhall

@@ -0,0 +1,15 @@
+{ name = "node-crypto"
+, dependencies =
+  [ "effect"
+  , "either"
+  , "exceptions"
+  , "maybe"
+  , "node-buffer"
+  , "node-streams"
+  , "nullable"
+  , "prelude"
+  , "unsafe-coerce"
+  ]
+, packages = ./packages.dhall
+, sources = [ "src/**/*.purs" ]
+}

src/Node/Crypto/Certificate.js

@@ -0,0 +1,10 @@
+import { Certificate } from "node:crypto";
+
+export const exportChallengeImpl = (spkac) => Certificate.exportChallenge(spkac);
+export const exportChallengeEncodingImpl = (spkac, encoding) => Certificate.exportChallenge(spkac, encoding);
+
+export const exportPublicKeyImpl = (spkac) => Certificate.exportPublicKey(spkac);
+export const exportPublicKeyEncodingImpl = (spkac, encoding) => Certificate.exportPublicKey(spkac, encoding);
+
+export const verifySpkacImpl = (spkac) => Certificate.verifySpkac(spkac);
+export const verifySpkacEncodingImpl = (spkac, encoding) => Certificate.verifySpkac(spkac, encoding);

src/Node/Crypto/Certificate.purs

@@ -0,0 +1,55 @@
+-- | SPKAC is a Certificate Signing Request mechanism originally implemented by Netscape and was specified formally as part of HTML5's `keygen` element.
+-- | 
+-- | `<keygen>` is deprecated since [HTML 5.2](https://www.w3.org/TR/html52/changes.html#features-removed) and new projects should not use this element anymore.
+-- | 
+-- | The node:crypto module provides the Certificate class for working with SPKAC data. 
+-- | The most common usage is handling output generated by the HTML5 <keygen> element. 
+-- | Node.js uses [OpenSSL's SPKAC implementation](https://www.openssl.org/docs/man3.0/man1/openssl-spkac.html) internally.
+module Node.Crypto.Certificate where
+
+import Effect (Effect)
+import Effect.Uncurried (EffectFn1, EffectFn2, runEffectFn1, runEffectFn2)
+import Node.Buffer (Buffer)
+import Node.Encoding (Encoding, encodingToNode)
+
+foreign import exportChallengeImpl :: EffectFn1 (Buffer) (Buffer)
+
+-- | Returns the challenge component of the spkac data structure, which includes a public key and a challenge.
+exportChallenge :: Buffer -> Effect Buffer
+exportChallenge buffer = runEffectFn1 exportChallengeImpl buffer
+
+foreign import exportChallengeEncodingImpl :: EffectFn2 (String) (String) (Buffer)
+
+-- | Returns the challenge component of the spkac data structure, which includes a public key and a challenge.
+exportChallenge' :: String -> Encoding -> Effect Buffer
+exportChallenge' str encoding =
+  runEffectFn2 exportChallengeEncodingImpl str (encodingToNode encoding)
+
+foreign import exportPublicKeyImpl :: EffectFn1 (Buffer) (Buffer)
+
+-- | Returns the public key component of the spkac data structure, which includes a public key and a challenge.
+exportPublicKey :: Buffer -> Effect Buffer
+exportPublicKey buffer = runEffectFn1 exportPublicKeyImpl buffer
+
+foreign import exportPublicKeyEncodingImpl :: EffectFn2 (String) (String) (Buffer)
+
+-- | Returns the public key component of the spkac data structure, which includes a public key and a challenge.
+exportPublicKey' :: String -> Encoding -> Effect Buffer
+exportPublicKey' str encoding =
+  runEffectFn2 exportPublicKeyEncodingImpl str (encodingToNode encoding)
+
+foreign import verifySpkacImpl :: EffectFn1 (Buffer) (Boolean)
+
+-- | Returns `true` if the given spkac data structure is valid, `false` otherwise.
+verifySpkac :: Buffer -> Effect Boolean
+verifySpkac buffer = runEffectFn1 verifySpkacImpl buffer
+
+foreign import verifySpkacEncodingImpl :: EffectFn2 (String) (String) (Boolean)
+
+-- | Returns `true` if the given spkac data structure is valid, `false` otherwise.
+verifySpkac' :: String -> Encoding -> Effect Boolean
+verifySpkac' str encoding =
+  runEffectFn2 verifySpkacEncodingImpl str (encodingToNode encoding)
+
+
+

src/Node/Crypto/Cipher.js

@@ -0,0 +1,14 @@
+import * as crypto from "node:crypto";
+export const newImpl = (algorithm, key, iv) => crypto.createCipheriv(algorithm, key, iv);
+export const newOptsImpl = (algorithm, key, iv, options) => crypto.createCipheriv(algorithm, key, iv, options);
+export const finalBufImpl = (cipher) => cipher.final();
+export const finalStrImpl = (cipher, encoding) => cipher.final(encoding);
+export const getAuthTagImpl = (cipher) => cipher.getAuthTag();
+export const setAADImpl = (cipher, buffer) => cipher.setAAD(buffer);
+export const setAADOptsImpl = (cipher, buffer, opts) => cipher.setAAD(buffer, opts);
+export const setAutoPaddingImpl = (cipher) => cipher.setAutoPadding();
+export const setAutoPaddingBoolImpl = (cipher, autoPadding) => cipher.setAutoPadding(autoPadding);
+export const updateBufBufImpl = (cipher, buf) => cipher.update(buf);
+export const updateBufStrImpl = (cipher, buf, outEncoding) => cipher.update(buf, outEncoding);
+export const updateStrBufImpl = (cipher, str, inputEncoding) => cipher.update(str, inputEncoding);
+export const updateStrStrImpl = (cipher, str, inputEncoding, outputEncoding) => cipher.update(str, inputEncoding, outputEncoding);

src/Node/Crypto/Cipher.purs

@@ -0,0 +1,220 @@
+module Node.Crypto.Cipher 
+  ( Cipher
+  , new
+  , NewOptions
+  , new'
+  , toDuplex
+  , finalBuf
+  , finalStr
+  , getAuthTag
+  , setAAD
+  , SetAADOptions
+  , setAAD'
+  , setAutoPadding
+  , setAutoPadding'
+  , updateBufBuf
+  , updateBufStr
+  , updateStrBuf
+  , updateStrStr
+  ) where
+
+
+import Data.Nullable (Nullable)
+import Effect (Effect)
+import Effect.Uncurried (EffectFn1, EffectFn2, EffectFn3, EffectFn4, runEffectFn1, runEffectFn2, runEffectFn3, runEffectFn4)
+import Node.Buffer (Buffer)
+import Node.Encoding (Encoding, encodingToNode)
+import Node.Stream (Duplex)
+import Prim.Row as Row
+import Unsafe.Coerce (unsafeCoerce)
+
+-- | Instances of the `Cipher` class are used to encrypt data. The class can be used in one of two ways:
+-- | - As a stream that is both readable and writable, where plain unencrypted data is written to produce encrypted data on the readable side, or
+-- | - Using the `cipher.update()` and `cipher.final()` methods to produce the encrypted data.
+foreign import data Cipher :: Type
+
+foreign import newImpl :: EffectFn3 (String) (Buffer) (Nullable Buffer) (Cipher)
+
+-- | Creates and returns a Cipher object, with the given `algorithm`, `key`, and `initialization vector` (IV).
+-- | 
+-- | Use `new'` instead of this function when using
+-- | - A cipher in CCM or OCB mode as the `authTagLength` options is required and specifies the length of the authentication tag in bytes
+-- | - A cipher in GCM mode and you want to use the `authTagLength` option to set the length of the authentication tag that is returned by `getAuthTag` (defaults to 16 bytes).
+-- |
+-- | For `chacha20-poly1305`, the `authTagLength` option defaults to 16 bytes.
+-- | 
+-- | The `algorithm` is dependent on OpenSSL, examples are 'aes192', etc. On recent OpenSSL releases,
+-- | `openssl list -cipher-algorithms` will display the available cipher algorithms.
+-- | 
+-- | If the cipher does not need an IV, it may be null.
+-- | 
+-- | Initialization vectors should be unpredictable and unique; ideally, they will be cryptographically random. 
+-- | They do not have to be secret: IVs are typically just added to ciphertext messages unencrypted. 
+-- | It may sound contradictory that something has to be unpredictable and unique, but does not have to be secret; 
+-- | remember that an attacker must not be able to predict ahead of time what a given IV will be.
+new :: String -> Buffer -> Nullable Buffer -> Effect Cipher
+new algorithm key initializationBuffer =
+  runEffectFn3 newImpl algorithm key initializationBuffer
+
+foreign import newOptsImpl :: forall r. EffectFn4 (String) (Buffer) (Nullable Buffer) ({ | r }) (Cipher)
+
+type NewOptions =
+  ( authTagLength :: Number
+  )
+
+-- | Creates and returns a Cipher object, with the given `algorithm`, `key`, `initialization vector` (IV), and `options`.
+-- | 
+-- | The `options` argument controls stream behavior and is optional except when a cipher in CCM or OCB mode (e.g. 'aes-128-ccm') is used. 
+-- | In that case, the `authTagLength` option is required and specifies the length of the authentication tag in bytes, see CCM mode. 
+-- | In GCM mode, the `authTagLength` option is not required but can be used to set the length of the authentication tag that 
+-- | will be returned by `getAuthTag()` and defaults to 16 bytes. 
+-- | For `chacha20-poly1305`, the `authTagLength` option defaults to 16 bytes.
+-- | 
+-- | The `algorithm` is dependent on OpenSSL, examples are 'aes192', etc. On recent OpenSSL releases,
+-- | `openssl list -cipher-algorithms` will display the available cipher algorithms.
+-- | 
+-- | If the cipher does not need an initialization vector, it may be null.
+-- | 
+-- | Initialization vectors should be unpredictable and unique; ideally, they will be cryptographically random. 
+-- | They do not have to be secret: IVs are typically just added to ciphertext messages unencrypted. 
+-- | It may sound contradictory that something has to be unpredictable and unique, but does not have to be secret; 
+-- | remember that an attacker must not be able to predict ahead of time what a given IV will be.
+new' :: forall r trash. Row.Union r trash NewOptions => String -> Buffer -> Nullable Buffer -> { | r } -> Effect Cipher
+new' algorithm key initializationBuffer options =
+  runEffectFn4 newOptsImpl algorithm key initializationBuffer options
+
+toDuplex :: Cipher -> Duplex
+toDuplex = unsafeCoerce
+
+foreign import finalBufImpl :: EffectFn1 (Cipher) (Buffer)
+
+-- | Once the `cipher.final()` method has been called, 
+-- | the `Cipher` object can no longer be used to encrypt data. 
+-- | Attempts to call `cipher.final()` more than once will result in an error being thrown.
+finalBuf :: Cipher -> Effect Buffer
+finalBuf cipher = runEffectFn1 finalBufImpl cipher
+
+foreign import finalStrImpl :: EffectFn2 (Cipher) (String) (Buffer)
+
+-- | Once the `cipher.final()` method has been called, 
+-- | the `Cipher` object can no longer be used to encrypt data. 
+-- | Attempts to call `cipher.final()` more than once will result in an error being thrown.
+-- |
+-- | `cipher # finalStr UTF8`
+finalStr :: Encoding -> Cipher -> Effect Buffer
+finalStr encoding cipher = runEffectFn2 finalStrImpl cipher (encodingToNode encoding)
+
+foreign import getAuthTagImpl :: EffectFn1 (Cipher) (Buffer)
+
+
+-- | When using an authenticated encryption mode (GCM, CCM, OCB, and chacha20-poly1305 are currently supported), 
+-- | the `cipher.getAuthTag()` method returns a `Buffer` containing the authentication tag that has been computed from the given data.
+-- | 
+-- | The `cipher.getAuthTag()` method should only be called after encryption has been completed using the `cipher.final()` method.
+-- | 
+-- | If the `authTagLength` option was set during the `cipher` instance's creation, this function will return exactly `authTagLength` bytes.
+getAuthTag :: Cipher -> Effect Buffer
+getAuthTag cipher = runEffectFn1 getAuthTagImpl cipher
+
+foreign import setAADImpl :: EffectFn2 (Cipher) (Buffer) (Cipher)
+
+-- | When using an authenticated encryption mode (GCM, CCM, OCB, and chacha20-poly1305 are currently supported), 
+-- | the `cipher.setAAD()` method sets the value used for the _additional authenticated data_ (AAD) input parameter.
+-- | 
+-- | The `cipher.setAAD()` method must be called before `cipher.update()`.
+setAAD :: Buffer -> Cipher -> Effect Cipher
+setAAD buffer cipher =
+  runEffectFn2 setAADImpl cipher buffer
+
+type SetAADOptions =
+  ( plainTextLength :: Number
+  , encoding :: String
+  )
+
+foreign import setAADOptsImpl :: forall r. EffectFn3 (Cipher) (Buffer) ({ | r }) (Cipher)
+
+-- | When using an authenticated encryption mode (GCM, CCM, OCB, and chacha20-poly1305 are currently supported), 
+-- | the `cipher.setAAD()` method sets the value used for the additional authenticated data (AAD) input parameter.
+-- | 
+-- | The `plaintextLength` option is optional for GCM and OCB. When using CCM, the `plaintextLength` option must 
+-- | be specified and its value must match the length of the plaintext in bytes. See CCM mode.
+-- | 
+-- | The `cipher.setAAD()` method must be called before `cipher.update()`.
+setAAD' 
+  :: forall r trash
+   . Row.Union r trash SetAADOptions
+  => Buffer
+  -> { | r }
+  -> Cipher
+  -> Effect Cipher
+setAAD' buffer r cipher =
+  runEffectFn3 setAADOptsImpl cipher buffer r
+
+foreign import setAutoPaddingImpl :: EffectFn1 (Cipher) (Cipher)
+
+-- | Sets the `cipher`'s `autoPadding` to `true`.
+-- |
+-- | When using block encryption algorithms, the `Cipher` class will automatically 
+-- | add padding to the input data to the appropriate block size. To disable the default padding call `cipher.setAutoPadding(false)`.
+-- |
+-- | When `autoPadding` is `false`, the length of the entire input data must be a 
+-- | multiple of the cipher's block size or `cipher.final()` will throw an error. 
+-- | Disabling automatic padding is useful for non-standard padding, for instance using `0x0` instead of PKCS padding.
+-- |
+-- | The `cipher.setAutoPadding()` method must be called before `cipher.final()`.
+setAutoPadding :: Cipher -> Effect Cipher
+setAutoPadding cipher = runEffectFn1 setAutoPaddingImpl cipher
+
+foreign import setAutoPaddingBoolImpl :: EffectFn2 (Cipher) (Boolean) (Cipher)
+
+-- | When using block encryption algorithms, the `Cipher` class will automatically 
+-- | add padding to the input data to the appropriate block size. To disable the default padding call `cipher.setAutoPadding(false)`.
+-- |
+-- | When `autoPadding` is `false`, the length of the entire input data must be a 
+-- | multiple of the cipher's block size or `cipher.final()` will throw an error. 
+-- | Disabling automatic padding is useful for non-standard padding, for instance using `0x0` instead of PKCS padding.
+-- |
+-- | The `cipher.setAutoPadding()` method must be called before `cipher.final()`.
+setAutoPadding' :: Boolean -> Cipher -> Effect Cipher
+setAutoPadding' boolean cipher =
+  runEffectFn2 setAutoPaddingBoolImpl cipher boolean
+
+foreign import updateBufBufImpl :: EffectFn2 (Cipher) (Buffer) (Buffer)
+
+-- | Updates the `cipher`. This variant's input is `Buffer` and output is `Buffer`.
+-- | 
+-- | The `cipher.update()` method can be called multiple times with new data until `cipher.final()` is called. Calling `cipher.update()` after `cipher.final()` will result in an error being thrown.
+updateBufBuf :: Buffer -> Cipher -> Effect Buffer
+updateBufBuf buffer cipher =
+  runEffectFn2 updateBufBufImpl cipher buffer
+
+foreign import updateBufStrImpl :: EffectFn3 (Cipher) (Buffer) (String) (String)
+
+-- | Updates the `cipher`. This variant's input is `Buffer` and output is `String` using the speified encoding.
+-- | 
+-- | The `cipher.update()` method can be called multiple times with new data until `cipher.final()` is called. Calling `cipher.update()` after `cipher.final()` will result in an error being thrown.
+updateBufStr :: Buffer -> Encoding -> Cipher -> Effect String
+updateBufStr buffer outputEncoding cipher =
+  runEffectFn3 updateBufStrImpl cipher buffer (encodingToNode outputEncoding)
+
+foreign import updateStrBufImpl :: EffectFn3 (Cipher) (String) (String) (Buffer)
+
+-- | Updates the `cipher`. This variant's input is `String` using the specified encoding and output is `Buffer`.
+-- | 
+-- | The `cipher.update()` method can be called multiple times with new data until `cipher.final()` is called. Calling `cipher.update()` after `cipher.final()` will result in an error being thrown.
+updateStrBuf :: String -> Encoding -> Cipher -> Effect Buffer
+updateStrBuf string inputEncoding cipher =
+  runEffectFn3 updateStrBufImpl cipher string (encodingToNode inputEncoding)
+
+foreign import updateStrStrImpl :: EffectFn4 (Cipher) (String) (String) (String) (String)
+
+-- | Updates the `cipher`. This variant's input is `String` using the first specified encoding and output is `String` using the second specified encoding.
+-- | 
+-- | The `cipher.update()` method can be called multiple times with new data until `cipher.final()` is called. Calling `cipher.update()` after `cipher.final()` will result in an error being thrown.
+-- | ```
+-- | updateStr cipher input inputEncoding outputEncoding
+-- | ```
+updateStrStr :: String -> Encoding -> Encoding -> Cipher -> Effect String
+updateStrStr string inputEncoding outputEncoding cipher =
+  runEffectFn4 updateStrStrImpl cipher string (encodingToNode inputEncoding) (encodingToNode outputEncoding)
+

src/Node/Crypto/Decipher.js

@@ -0,0 +1,15 @@
+import * as crypto from "node:crypto";
+export const newImpl = (algorithm, key, iv) => crypto.createDecipheriv(algorithm, key, iv);
+export const newOptsImpl = (algorithm, key, iv, options) => crypto.createDecipheriv(algorithm, key, iv, options);
+export const finalBufImpl = (decipher) => decipher.final();
+export const finalStrImpl = (decipher, encoding) => decipher.final(encoding);
+export const setAuthTagBufImpl = (decipher, buf) => decipher.getAuthTag(buf);
+export const setAuthTagStrImpl = (decipher, str, encoding) => decipher.getAuthTag(str, encoding);
+export const setAADImpl = (decipher, buffer) => decipher.setAAD(buffer);
+export const setAADOptsImpl = (decipher, buffer, opts) => decipher.setAAD(buffer, opts);
+export const setAutoPaddingImpl = (decipher) => decipher.setAutoPadding();
+export const setAutoPaddingBoolImpl = (decipher, autoPadding) => decipher.setAutoPadding(autoPadding);
+export const updateBufBufImpl = (decipher, buf) => decipher.update(buf);
+export const updateBufStrImpl = (decipher, buf, outEncoding) => decipher.update(buf, outEncoding);
+export const updateStrBufImpl = (decipher, str, inputEncoding) => decipher.update(str, inputEncoding);
+export const updateStrStrImpl = (decipher, str, inputEncoding, outputEncoding) => decipher.update(str, inputEncoding, outputEncoding);