implemented a version registry

Author: mqxym

packages/core/src/algorithms/aesgmc/AESGCMEncryption.ts

@@ -0,0 +1,29 @@
+
+import { CryptoProvider } from '../../../providers/CryptoProvider.js';
+import { EncryptionAlgorithm } from '../../../types/index.js';
+
+export class AESGCM implements EncryptionAlgorithm {
+  private key!: CryptoKey;
+
+  constructor(private readonly p: CryptoProvider) {}
+
+  setKey(k: CryptoKey) { this.key = k; }     // simple setter (ISP)
+  // or expose through a common mix‑in helper to avoid repetition
+
+  async encryptChunk(plain: Uint8Array): Promise<Uint8Array> {
+    const iv = this.p.getRandomValues(new Uint8Array(12));
+    const cipher = new Uint8Array(
+      await this.p.subtle.encrypt({ name: 'AES-GCM', iv }, this.key, plain),
+    );
+    const out = new Uint8Array(iv.length + cipher.length);
+    out.set(iv);
+    out.set(cipher, iv.length);
+    return out;
+  }
+  async decryptChunk(data: Uint8Array): Promise<Uint8Array> {
+    const iv     = data.slice(0, 12);
+    const cipher = data.slice(12);
+    const plain  = await this.p.subtle.decrypt({ name: 'AES-GCM', iv }, this.key, cipher);
+    return new Uint8Array(plain);
+  }
+}

packages/core/src/algorithms/aesgmc/index.ts

@@ -0,0 +1,21 @@
+// packages/core/src/algorithms/kdf/Argon2.ts
+import { KeyDerivation } from '../../types/index.js';
+import { argon2id, Argon2Tuning } from './argon2-wrapper.js';
+import { CryptoProvider } from '../../providers/CryptoProvider.js';
+
+export class Argon2KDF implements KeyDerivation {
+  constructor(private readonly presets: Record<string, Argon2Tuning>) {}
+
+  async derive(
+    pass: Uint8Array | string,
+    salt: Uint8Array,
+    diff: string,
+    p: CryptoProvider,
+  ): Promise<CryptoKey> {
+    const { hash } = await argon2id(pass, salt, this.presets[diff], p.isNode ? 'node' : 'browser');
+    return p.subtle.importKey('raw', hash, { name: 'AES-GCM', length: 256 }, false, [
+      'encrypt',
+      'decrypt',
+    ]);
+  }
+}

packages/core/src/algorithms/encryption/aes-gmc/AESGCM.ts

@@ -0,0 +1,19 @@
+// packages/core/src/config/VersionRegistry.ts
+import { VersionDescriptor } from "../types/index.js";
+
+export class VersionRegistry {
+  private static readonly byId = new Map<number, VersionDescriptor>();
+
+  /** register at app‑start (or dynamically for plug‑ins) */
+  static register(v: VersionDescriptor): void {
+    if (this.byId.has(v.id)) throw new Error(`Version ${v.id} already registered`);
+    this.byId.set(v.id, v);
+  }
+  static get(id: number): VersionDescriptor {
+    const v = this.byId.get(id);
+    if (!v) throw new Error(`Unknown version: ${id}`);
+    return v;
+  }
+  /** default (current) version – convenience */
+  static get current(): VersionDescriptor { return this.get(0); }
+}

packages/core/src/algorithms/kdf/Argon2.ts

@@ -1,12 +1,24 @@
-// packages/core/src/config/defaults.ts
-export const DefaultConfig = {
-  saltLengths: { low: 12, high: 16 } as const,
-  argon: {
-    low:    { time: 5, mem:  64 * 1024, parallelism: 1 },
-    middle: { time: 20, mem:  64 * 1024, parallelism: 1 },
-    high:   { time: 40, mem: 64 * 1024, parallelism: 1 }
-  },
-  chunkSize: 512 * 1024 // 512 KiB
+import { VersionRegistry } from './VersionRegistry.js';
+import { AESGCM } from '../algorithms/encryption/aes-gmc/AESGCM.js';
+import { Argon2KDF } from '../algorithms/kdf/Argon2.js';
+import { VersionDescriptor } from '../types/index.js';
+
+export const DEFAULT_DIFFICULTIES = {
+  low   : { time:  5, mem:  64 * 1024, parallelism: 1 },
+  middle: { time: 20, mem:  64 * 1024, parallelism: 1 },
+  high  : { time: 40, mem:  64 * 1024, parallelism: 1 },
+} as const;
+
+const v0: VersionDescriptor = {
+  id: 0,
+  cipher: AESGCM,
+  kdf: new Argon2KDF(DEFAULT_DIFFICULTIES),
+  saltLengths: { low: 12, high: 16 },
+  difficulties: DEFAULT_DIFFICULTIES,
+  defaultChunkSize: 512 * 1024,
 };
-export type Difficulty = keyof typeof DefaultConfig.argon;
-export type SaltStrength = keyof typeof DefaultConfig.saltLengths;
+
+VersionRegistry.register(v0);
+
+export type SaltStrength = 'low' | 'high';
+export type Difficulty = keyof typeof DEFAULT_DIFFICULTIES;

packages/core/src/algorithms/argon2.ts …ore/src/algorithms/kdf/argon2-wrapper.tspackages/core/src/algorithms/argon2.ts renamed to packages/core/src/algorithms/kdf/argon2-wrapper.ts packages/core/src/algorithms/argon2.ts renamed to packages/core/src/algorithms/kdf/argon2-wrapper.ts

@@ -1,3 +1,2 @@
 // packages/core/src/header/constants.ts
-export const HEADER_START_BYTE = 0x01;          // magic
-export const CURRENT_VERSION   = 0;             // 3 bits
+export const HEADER_START_BYTE = 0x01;          // magic

packages/core/src/config/VersionRegistry.ts

@@ -1,14 +1,14 @@
-import { CURRENT_VERSION, HEADER_START_BYTE } from './constants.js';
-import { DefaultConfig, Difficulty, SaltStrength } from '../config/defaults.js';
+import {  HEADER_START_BYTE } from './constants.js';
+import { VersionRegistry } from '../config/VersionRegistry.js';
 
-export function decodeHeader(bytes: Uint8Array) {
-  if (bytes[0] !== HEADER_START_BYTE) throw new Error('INVALID_HEADER');
-  const info = bytes[1];
-  const version = info >> 5;
+export function decodeHeader(buf: Uint8Array) {
+  if (buf[0] !== HEADER_START_BYTE) throw new Error('INVALID_HEADER');
+  const info = buf[1];
+  const version      = info >> 5;
   const saltStrength = ((info >> 2) & 1) ? 'high' : 'low';
-  const diffCode = info & 0b11;
-  const difficulty = (['low','middle','high'] as const)[diffCode];
-  const saltLen = DefaultConfig.saltLengths[saltStrength];
-  const salt = bytes.slice(2, 2 + saltLen);
+  const diffCode     = info & 0b11;
+  const difficulty   = (['low', 'middle', 'high'] as const)[diffCode];
+  const saltLen      = VersionRegistry.get(version).saltLengths[saltStrength];
+  const salt         = buf.slice(2, 2 + saltLen);
   return { version, difficulty, saltStrength, salt, headerLen: 2 + saltLen };
 }

packages/core/src/config/defaults.ts

@@ -1,15 +1,14 @@
 // packages/core/src/header/encoder.ts
-import { DefaultConfig, Difficulty, SaltStrength } from '../config/defaults.js';
-import { CURRENT_VERSION, HEADER_START_BYTE } from './constants.js';
+import { HEADER_START_BYTE } from './constants.js';
+import { concat } from '../util/bytes.js';
 
 export function encodeHeader(
-  diff: Difficulty,
-  saltStrength: SaltStrength,
-  salt: Uint8Array
+  version: number,
+  difficulty: string,
+  saltStrength: 'low' | 'high',
+  salt: Uint8Array,
 ): Uint8Array {
-  const infoByte =
-    (CURRENT_VERSION << 5) |
-    ((saltStrength === 'high' ? 1 : 0) << 2) |
-    ({ low: 0, middle: 1, high: 2 } as const)[diff];
-  return new Uint8Array([HEADER_START_BYTE, infoByte, ...salt]);
+  const diffCode = { low: 0, middle: 1, high: 2 }[difficulty] ?? 0;
+  const infoByte = (version << 5) | ((saltStrength === 'high' ? 1 : 0) << 2) | diffCode;
+  return concat(new Uint8Array([HEADER_START_BYTE, infoByte]), salt);
 }