MFKDF

setup/kdf.js

  1. /**
  2.  * @file Key Derivation Function (KDF) Setup
  3.  * @copyright Multifactor 2022 All Rights Reserved
  4.  *
  5.  * @description
  6.  * Validate and setup a KDF configuration for a multi-factor derived key
  7.  *
  8.  * @author Vivek Nair (https://nair.me) <vivek@nair.me>
  9.  */
  11. const defaults = require('../defaults')
  13. /**
  14.  * Validate and setup a KDF configuration for a multi-factor derived key
  15.  *
  16.  * @example
  17.  * // setup kdf configuration
  18.  * const config = await mfkdf.setup.kdf({
  19.  *   kdf: 'pbkdf2',
  20.  *   pbkdf2rounds: 100000,
  21.  *   pbkdf2digest: 'sha256'
  22.  * }); // -> { type: 'pbkdf2', params: { rounds: 100000, digest: 'sha256' } }
  23.  *
  24.  * // derive key
  25.  * const key = await mfkdf.kdf('password', 'salt', 8, config);
  26.  * key.toString('hex') // -> 0394a2ede332c9a1
  27.  *
  28.  * @param {Object} [options] - KDF configuration options
  29.  * @param {string} [options.kdf='argon2id'] - KDF algorithm to use; hkdf, pbkdf2, bcrypt, scrypt, argon2i, argon2d, or argon2id
  30.  * @param {string} [options.hkdfdigest='sha256'] - Hash function to use if using hkdf; sha1, sha256, sha384, or sha512
  31.  * @param {number} [options.pbkdf2rounds=310000] - Number of rounds to use if using pbkdf2
  32.  * @param {string} [options.pbkdf2digest='sha256'] - Hash function to use if using pbkdf2; sha1, sha256, sha384, or sha512
  33.  * @param {number} [options.bcryptrounds=10] - Number of rounds to use if using bcrypt
  34.  * @param {number} [options.scryptcost=16384] - Iterations count (N) to use if using scrypt
  35.  * @param {number} [options.scryptblocksize=8] - Block size (r) to use if using scrypt
  36.  * @param {number} [options.scryptparallelism=1] - Parallelism factor (p) to use if using scrypt
  37.  * @param {number} [options.argon2time=2] - Iterations to use if using argon2
  38.  * @param {number} [options.argon2mem=24576] - Memory to use if using argon2
  39.  * @param {number} [options.argon2parallelism=1] - Parallelism to use if using argon2
  40.  * @returns {object} A KDF configuration as a JSON object
  41.  * @author Vivek Nair (https://nair.me) <vivek@nair.me>
  42.  * @since 0.7.0
  43.  * @memberOf setup
  44.  */
  45. function kdf (options) {
  46.   options = Object.assign(Object.assign({}, defaults.kdf), options)
  47.   if (typeof options.kdf !== 'string') throw new TypeError('kdf must be a string')
  48.   const config = {
  49.     type: options.kdf,
  50.     params: {}
  51.   }
  53.   if (options.kdf === 'hkdf') {
  54.     // hdkf digest
  55.     if (typeof options.hkdfdigest !== 'string') throw new TypeError('hkdfdigest must be a string')
  56.     if (!['sha1', 'sha256', 'sha384', 'sha512'].includes(options.hkdfdigest)) throw new RangeError('hkdfdigest must be one of sha1, sha256, sha384, or sha512')
  57.     config.params.digest = options.hkdfdigest
  58.   } else if (options.kdf === 'pbkdf2') {
  59.     // pbkdf2 rounds
  60.     if (!(Number.isInteger(options.pbkdf2rounds))) throw new TypeError('pbkdf2rounds must be an integer')
  61.     if (!(options.pbkdf2rounds > 0)) throw new RangeError('pbkdf2rounds must be positive')
  62.     config.params.rounds = options.pbkdf2rounds
  64.     // pbkdf2 digest
  65.     if (typeof options.pbkdf2digest !== 'string') throw new TypeError('pbkdf2digest must be a string')
  66.     if (!['sha1', 'sha256', 'sha384', 'sha512'].includes(options.pbkdf2digest)) throw new RangeError('pbkdf2digest must be one of sha1, sha256, sha384, or sha512')
  67.     config.params.digest = options.pbkdf2digest
  68.   } else if (options.kdf === 'bcrypt') {
  69.     // bcrypt rounds
  70.     if (!(Number.isInteger(options.bcryptrounds))) throw new TypeError('bcryptrounds must be an integer')
  71.     if (!(options.bcryptrounds > 0)) throw new RangeError('bcryptrounds must be positive')
  72.     config.params.rounds = options.bcryptrounds
  73.   } else if (options.kdf === 'scrypt') {
  74.     // scrypt rounds
  75.     if (!(Number.isInteger(options.scryptcost))) throw new TypeError('scryptcost must be a positive integer')
  76.     if (!(options.scryptcost > 0)) throw new RangeError('scryptcost must be positive')
  77.     config.params.rounds = options.scryptcost
  79.     // scrypt block size
  80.     if (!(Number.isInteger(options.scryptblocksize))) throw new TypeError('scryptblocksize must be an integer')
  81.     if (!(options.scryptblocksize > 0)) throw new RangeError('scryptblocksize must be positive')
  82.     config.params.blocksize = options.scryptblocksize
  84.     // scrypt parallelism
  85.     if (!(Number.isInteger(options.scryptparallelism))) throw new TypeError('scryptparallelism must be an integer')
  86.     if (!(options.scryptparallelism > 0)) throw new RangeError('scryptparallelism must be positive')
  87.     config.params.parallelism = options.scryptparallelism
  88.   } else if (options.kdf === 'argon2i' || options.kdf === 'argon2d' || options.kdf === 'argon2id') {
  89.     // argon2 rounds
  90.     if (!(Number.isInteger(options.argon2time))) throw new TypeError('argon2time must be an integer')
  91.     if (!(options.argon2time > 0)) throw new RangeError('argon2time must be positive')
  92.     config.params.rounds = options.argon2time
  94.     // argon2 memory
  95.     if (!(Number.isInteger(options.argon2mem))) throw new TypeError('argon2mem must be an integer')
  96.     if (!(options.argon2mem > 0)) throw new RangeError('argon2mem must be positive')
  97.     config.params.memory = options.argon2mem
  99.     // argon2 parallelism
  100.     if (!(Number.isInteger(options.argon2parallelism))) throw new TypeError('argon2parallelism must be an integer')
  101.     if (!(options.argon2parallelism > 0)) throw new RangeError('argon2parallelism must be positive')
  102.     config.params.parallelism = options.argon2parallelism
  103.   } else {
  104.     throw new RangeError('kdf must be one of pbkdf2, bcrypt, scrypt, argon2i, argon2d, or argon2id')
  105.   }
  106.   return config
  107. }
  108. module.exports.kdf = kdf