代码
注册 登录
简体中文
简体中文 English
openoker
/
trilium
1
0
收藏 0
文件 工单管理 0 Wiki
分支: master
分支列表 标签列表

decrypt.js 2.2 KB
永久链接 文件历史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192 
  1. const crypto = require("crypto");
    2. 

  2. 

  3. function decryptString(dataKey, cipherText) {
    4. 

  4.     const buffer = decrypt(dataKey, cipherText);
    5. 

  5. 

  6.     if (buffer === null) {
    7. 

  7.         return null;
    8. 

  8.     }
    9. 

  9. 

  10.     const str = buffer.toString('utf-8');
    11. 

  11. 

  12.     if (str === 'false') {
    13. 

  13.         throw new Error("Could not decrypt string.");
    14. 

  14.     }
    15. 

  15. 

  16.     return str;
    17. 

  17. }
    18. 

  18. 

  19. function decrypt(key, cipherText, ivLength = 13) {
    20. 

  20.     if (cipherText === null) {
    21. 

  21.         return null;
    22. 

  22.     }
    23. 

  23. 

  24.     if (!key) {
    25. 

  25.         return "[protected]";
    26. 

  26.     }
    27. 

  27. 

  28.     try {
    29. 

  29.         const cipherTextBufferWithIv = Buffer.from(cipherText.toString(), 'base64');
    30. 

  30.         const iv = cipherTextBufferWithIv.slice(0, ivLength);
    31. 

  31. 

  32.         const cipherTextBuffer = cipherTextBufferWithIv.slice(ivLength);
    33. 

  33. 

  34.         const decipher = crypto.createDecipheriv('aes-128-cbc', pad(key), pad(iv));
    35. 

  35. 

  36.         const decryptedBytes = Buffer.concat([decipher.update(cipherTextBuffer), decipher.final()]);
    37. 

  37. 

  38.         const digest = decryptedBytes.slice(0, 4);
    39. 

  39.         const payload = decryptedBytes.slice(4);
    40. 

  40. 

  41.         const computedDigest = shaArray(payload).slice(0, 4);
    42. 

  42. 

  43.         if (!arraysIdentical(digest, computedDigest)) {
    44. 

  44.             return false;
    45. 

  45.         }
    46. 

  46. 

  47.         return payload;
    48. 

  48.     }
    49. 

  49.     catch (e) {
    50. 

  50.         // recovery from https://github.com/zadam/trilium/issues/510
    51. 

  51.         if (e.message?.includes("WRONG_FINAL_BLOCK_LENGTH") || e.message?.includes("wrong final block length")) {
    52. 

  52.             log.info("Caught WRONG_FINAL_BLOCK_LENGTH, returning cipherText instead");
    53. 

  53. 

  54.             return cipherText;
    55. 

  55.         }
    56. 

  56.         else {
    57. 

  57.             throw e;
    58. 

  58.         }
    59. 

  59.     }
    60. 

  60. }
    61. 

  61. 

  62. function pad(data) {
    63. 

  63.     if (data.length > 16) {
    64. 

  64.         data = data.slice(0, 16);
    65. 

  65.     }
    66. 

  66.     else if (data.length < 16) {
    67. 

  67.         const zeros = Array(16 - data.length).fill(0);
    68. 

  68. 

  69.         data = Buffer.concat([data, Buffer.from(zeros)]);
    70. 

  70.     }
    71. 

  71. 

  72.     return Buffer.from(data);
    73. 

  73. }
    74. 

  74. 

  75. function arraysIdentical(a, b) {
    76. 

  76.     let i = a.length;
    77. 

  77.     if (i !== b.length) return false;
    78. 

  78.     while (i--) {
    79. 

  79.         if (a[i] !== b[i]) return false;
    80. 

  80.     }
    81. 

  81.     return true;
    82. 

  82. }
    83. 

  83. 

  84. function shaArray(content) {
    85. 

  85.     // we use this as simple checksum and don't rely on its security so SHA-1 is good enough
    86. 

  86.     return crypto.createHash('sha1').update(content).digest();
    87. 

  87. }
    88. 

  88. 

  89. module.exports = {
    90. 

  90.     decrypt,
    91. 

  91.     decryptString
    92. 

  92. };
    93.