Merge branch 'development' of CoBox/cobox-crypto into master

index.js

@@ -1,16 +1,31 @@
 const sodium = require('sodium-native')
 const crypto = require('hypercore-crypto')
 const assert = require('assert')
-
-module.exports = () => new Crypto()
+const bip39 = require('bip39')
 
 class Crypto {
+  randomBytes (length) {
+    return crypto.randomBytes(length)
+  }
+
   masterKey () {
     const key = sodium.sodium_malloc(sodium.crypto_kdf_KEYBYTES)
     sodium.crypto_kdf_keygen(key)
     return key
   }
 
+  address () {
+    return this.randomBytes(sodium.crypto_secretbox_KEYBYTES)
+  }
+
+  encryptionKey (encryptionKey) {
+    var key = sodium.sodium_malloc(sodium.crypto_secretbox_KEYBYTES)
+    if (encryptionKey && Buffer.isBuffer(encryptionKey)) key.copy(encryptionKey)
+    else if (encryptionKey && typeof encryptionKey === 'string') key.write(encryptionKey)
+    else sodium.randombytes_buf(key)
+    return key
+  }
+
   keyPair (masterKey, id, ctxt = 'cobox') {
     const context = sodium.sodium_malloc(sodium.crypto_hash_sha256_BYTES)
     sodium.crypto_hash_sha256(context, Buffer.from(ctxt))
@@ -20,45 +35,37 @@ class Crypto {
   }
 
   keySet () {
-    var publicKey = this.randomBytes(sodium.crypto_secretbox_KEYBYTES)
-    var symmetricKey = this.symmetricKey()
-    var accessKey = this.pack(publicKey, symmetricKey)
-    const encryptionKey = sodium.sodium_malloc(sodium.crypto_secretbox_KEYBYTES)
-    sodium.crypto_hash_sha256(encryptionKey, accessKey)
-    return { publicKey, symmetricKey, encryptionKey }
-  }
-
-  randomBytes (length) {
-    return crypto.randomBytes(length)
-  }
-
-  symmetricKey () {
-    var key = sodium.sodium_malloc(sodium.crypto_secretbox_KEYBYTES)
-    sodium.randombytes_buf(key)
-    return key
+    return {
+      address: this.address(),
+      encryptionKey: this.encryptionKey()
+    }
   }
 
   accessKey () {
-    return this.pack(this.randomBytes(sodium.crypto_secretbox_KEYBYTES), this.symmetricKey())
+    return this.pack(this.randomBytes(sodium.crypto_secretbox_KEYBYTES), this.encryptionKey())
   }
 
-  pack (pubKey, symKey) {
-    pubKey = this.toBuf(pubKey, sodium.crypto_sign_PUBLICKEYBYTES)
-    symKey = this.toBuf(symKey, sodium.crypto_secretbox_KEYBYTES)
+  pack (address, encryptionKey) {
+    address = this.toBuffer(address, sodium.crypto_sign_PUBLICKEYBYTES)
+    encryptionKey = this.toBuffer(encryptionKey, sodium.crypto_secretbox_KEYBYTES)
     const accessKey = sodium.sodium_malloc(sodium.crypto_sign_PUBLICKEYBYTES + sodium.crypto_secretbox_KEYBYTES)
-    pubKey.copy(accessKey)
-    symKey.copy(accessKey, sodium.crypto_secretbox_KEYBYTES)
+    address.copy(accessKey)
+    encryptionKey.copy(accessKey, sodium.crypto_secretbox_KEYBYTES)
     return accessKey
   }
 
   unpack (key) {
-    key = this.toBuf(key, [sodium.crypto_sign_PUBLICKEYBYTES, sodium.crypto_sign_PUBLICKEYBYTES + sodium.crypto_secretbox_KEYBYTES])
-    if (key.length === sodium.crypto_sign_PUBLICKEYBYTES) return { publicKey: key }
-    const publicKey = key.slice(0, sodium.crypto_sign_PUBLICKEYBYTES)
-    const symmetricKey = key.slice(sodium.crypto_secretbox_KEYBYTES)
-    const encryptionKey = sodium.sodium_malloc(sodium.crypto_secretbox_KEYBYTES)
-    sodium.crypto_hash_sha256(encryptionKey, key)
-    return { publicKey, symmetricKey, encryptionKey }
+    key = this.toBuffer(key, [sodium.crypto_sign_PUBLICKEYBYTES, sodium.crypto_sign_PUBLICKEYBYTES + sodium.crypto_secretbox_KEYBYTES])
+
+    if (key.length === sodium.crypto_sign_PUBLICKEYBYTES) return { address: key }
+
+    const address = key.slice(0, sodium.crypto_sign_PUBLICKEYBYTES)
+    const encryptionKey = key.slice(sodium.crypto_secretbox_KEYBYTES)
+
+    return {
+      address,
+      encryptionKey
+    }
   }
 
   isKey (key) {
@@ -68,7 +75,8 @@ class Crypto {
       length === sodium.crypto_sign_PUBLICKEYBYTES + sodium.crypto_secretbox_KEYBYTES
   }
 
-  toBuf (stringOrBuffer, lengths) {
+  toBuffer (stringOrBuffer, lengths) {
+    if (!lengths) lengths = [sodium.crypto_sign_PUBLICKEYBYTES, sodium.crypto_secretbox_KEYBYTES]
     if (typeof lengths === 'number') lengths = [lengths]
     if ((Buffer.isBuffer(stringOrBuffer)) && (lengths.indexOf(stringOrBuffer.length) > -1)) return stringOrBuffer
     assert(typeof stringOrBuffer === 'string', 'Key is incorrect type')
@@ -77,6 +85,14 @@ class Crypto {
     return res
   }
 
+  keyToMnemonic (key) {
+    return bip39.entropyToMnemonic(key)
+  }
+
+  mnemonicToKey (mnemonic) {
+    return this.toBuffer(bip39.mnemonicToEntropy(mnemonic), [sodium.crypto_secretbox_KEYBYTES])
+  }
+
   encoder (encryptionKey, opts = {}) {
     var can = Buffer.isBuffer(encryptionKey) &&
       (encryptionKey.length === sodium.crypto_secretbox_KEYBYTES)
@@ -130,3 +146,6 @@ class Crypto {
     return encoder
   }
 }
+
+module.exports = new Crypto()
+

lib/keypair.lua

@@ -1,12 +0,0 @@
-data = JSON.decode(DATA)
-keyring = ECDH.new(data.curve)
-keyring:keygen()
-assert(ECDH.checkpub(keyring))
-
-keypair = JSON.encode({
-  curve=data.curve,
-  public=keyring:public():base64(),
-  private=keyring:private():base64()
-})
-
-print(keypair)

package.json

@@ -4,7 +4,7 @@
   "description": "crypto encoding library for use in cobox",
   "main": "index.js",
   "repository": "keybase://team/blockades.cobox/cobox-crypto",
-  "author": "cobox-cloud-cooperative",
+  "author": "magma collective",
   "license": "AGPL-3",
   "scripts": {
     "test": "tape test/**/*.test.js | tap-spec",
@@ -12,6 +12,7 @@
   },
   "dependencies": {
     "assert": "^2.0.0",
+    "bip39": "^3.0.2",
     "hypercore-crypto": "^1.0.0",
     "sodium-native": "^2.4.2"
   },

test/index.test.js

@@ -3,29 +3,48 @@ const hypercore = require('hypercore')
 const path = require('path')
 const fs = require('fs')
 
-const Crypto = require('../')
-const crypto = Crypto()
+const crypto = require('../')
 
 const { cleanup, tmp } = require('./util')
 
 describe('key generation', (context) => {
-  context('generate an asymmetric keypair', (assert, next) => {
+  context('masterKey()', (assert, next) => {
+    const masterKey = crypto.masterKey()
+    assert.ok(masterKey, 'key generated successfully')
+    next()
+  })
+
+  context('keyPair()', (assert, next) => {
     const masterKey = crypto.masterKey()
     const keypair = crypto.keyPair(masterKey, 0)
-    assert.ok(keypair, 'Keys successfully generated')
-    assert.ok(keypair.publicKey instanceof Buffer, 'Public Key is a buffer')
-    assert.ok(keypair.secretKey instanceof Buffer, 'Secret Key s a buffer')
+    assert.ok(keypair, 'keys successfully generated')
+    assert.ok(keypair.publicKey instanceof Buffer, 'public key is a buffer')
+    assert.ok(keypair.secretKey instanceof Buffer, 'secret key is a buffer')
+    next()
+  })
+
+  context('encryptionKey()', (assert, next) => {
+    const key = crypto.encryptionKey()
+    assert.ok(key, 'Key successfully generated')
+    assert.ok(key instanceof Buffer, 'key is a secure buffer')
+    next()
+  })
+
+  context('encryptionKey(string)', (assert, next) => {
+    const key = crypto.encryptionKey(crypto.randomBytes(32).toString('hex'))
+    assert.ok(key, 'Key successfully generated')
+    assert.ok(key instanceof Buffer, 'key is a secure buffer')
     next()
   })
 
-  context('generate a symmetric key', (assert, next) => {
-    const key = crypto.symmetricKey()
+  context('encryptionKey(buffer)', (assert, next) => {
+    const key = crypto.encryptionKey(crypto.randomBytes(32))
     assert.ok(key, 'Key successfully generated')
-    assert.ok(key instanceof Buffer, 'Symmetric key is a buffer')
+    assert.ok(key instanceof Buffer, 'key is a secure buffer')
     next()
   })
 
-  context('generate an access key', (assert, next) => {
+  context('accessKey()', (assert, next) => {
     const accessKey = crypto.accessKey()
     assert.ok(accessKey, 'Key successfully generated')
     assert.same(accessKey.length, 64, 'Read key is 64 bytes')
@@ -33,70 +52,84 @@ describe('key generation', (context) => {
     next()
   })
 
-  context('pack an access key', (assert, next) => {
-    const pubKey = crypto.randomBytes(32)
-    const secretKey = crypto.symmetricKey()
+  context('pack(buffer, buffer)', (assert, next) => {
+    const address = crypto.randomBytes(32)
+    const encryptionKey = crypto.encryptionKey()
 
-    const accessKey = crypto.pack(pubKey, secretKey)
+    const accessKey = crypto.pack(address, encryptionKey)
     assert.ok(accessKey, 'Key successfully generated')
     assert.ok(accessKey instanceof Buffer, 'Access key is a buffer')
     assert.same(accessKey.length, 64, 'read key is 64 bytes')
-    assert.same(accessKey.slice(0, 32), pubKey)
-    assert.same(accessKey.slice(32, 64), secretKey)
+    assert.same(accessKey.slice(0, 32), address)
+    assert.same(accessKey.slice(32, 64), encryptionKey)
     next()
   })
 
-  context('pack an access key given as strings', (assert, next) => {
-    const pubKey = crypto.randomBytes(32)
-    const secretKey = crypto.symmetricKey()
+  context('pack(string, string)', (assert, next) => {
+    const address = crypto.randomBytes(32)
+    const secretKey = crypto.encryptionKey()
 
-    const accessKey = crypto.pack(pubKey.toString('hex'), secretKey.toString('hex'))
+    const accessKey = crypto.pack(address.toString('hex'), secretKey.toString('hex'))
     assert.ok(accessKey, 'Key successfully generated')
     assert.ok(accessKey instanceof Buffer, 'Access key is a buffer')
     assert.same(accessKey.length, 64, 'read key is 64 bytes')
-    assert.same(accessKey.slice(0, 32), pubKey)
+    assert.same(accessKey.slice(0, 32), address)
     assert.same(accessKey.slice(32, 64), secretKey)
     next()
   })
 
-  context('unpack an access key', (assert, next) => {
+  context('unpack(buffer)', (assert, next) => {
     const accessKey = crypto.accessKey()
 
     const keys = crypto.unpack(accessKey)
-    const pubKey = accessKey.slice(0, 32)
-    const symKey = accessKey.slice(32, 64)
+    const address = accessKey.slice(0, 32)
+    const encryptionKey = accessKey.slice(32, 64)
 
-    assert.same(keys.publicKey, pubKey, 'Unpacks the public key')
-    assert.same(keys.symmetricKey, symKey, 'Unpacks the symmetric key')
+    assert.same(keys.address, address, 'Unpacks the public key')
+    assert.same(keys.encryptionKey, encryptionKey, 'Unpacks the symmetric key')
     next()
   })
 
-  context('check a key is a valid key', (assert, next) => {
+  context('isKey()', (assert, next) => {
     const accessKey = crypto.accessKey()
     assert.ok(crypto.isKey(accessKey), '64 byte buffer is a valid read/write key')
     assert.ok(crypto.isKey(accessKey.toString('hex')), '64 byte string is a valid read/write key')
+
     const blindKey = crypto.randomBytes(32)
     assert.ok(crypto.isKey(blindKey), '32 byte public key is a valid blind replication key')
     assert.ok(crypto.isKey(blindKey.toString('hex')), '32 byte string is a valid blind replication key')
+
     next()
   })
 
-  context('unpack an access key given as a string', (assert, next) => {
+  context('unpack(string)', (assert, next) => {
     const accessKey = crypto.accessKey()
 
     const keys = crypto.unpack(accessKey.toString('hex'))
-    const pubKey = accessKey.slice(0, 32)
-    const symKey = accessKey.slice(32, 64)
+    const address = accessKey.slice(0, 32)
+    const encryptionKey = accessKey.slice(32, 64)
+
+    assert.same(keys.address, address, 'Unpacks the public key')
+    assert.same(keys.encryptionKey, encryptionKey, 'Unpacks the symmetric key')
+    next()
+  })
+
+  context('mnemnonic', (assert, next) => {
+    const encryptionKey = crypto.encryptionKey()
+    const words = crypto.keyToMnemonic(encryptionKey)
+    assert.ok(words, 'generates a mnemonic')
+    assert.ok(words.split(/\s/).length, 24, '24 words long')
+
+    var check = crypto.mnemonicToKey(words)
+    assert.same(encryptionKey, check, 'returns the correct key')
 
-    assert.same(keys.publicKey, pubKey, 'Unpacks the public key')
-    assert.same(keys.symmetricKey, symKey, 'Unpacks the symmetric key')
     next()
   })
 })
 
 describe('message encoding', (context) => {
   context('encrypt and decrypt a message', (assert, next) => {
-    const key = crypto.symmetricKey()
+    const key = crypto.encryptionKey()
     const encoder = crypto.encoder(key, { valueEncoding: 'utf-8' })
 
     const encrypted = encoder.encode("Hello World")
@@ -117,7 +150,7 @@ describe('hypercore', (context) => {
   })
 
   context('encrypted the log', (assert, next) => {
-    const key = crypto.symmetricKey()
+    const key = crypto.encryptionKey()
     const encoder = crypto.encoder(key, { valueEncoding: 'utf-8' })
     const feed = hypercore(storage, { valueEncoding: encoder })
 
@@ -138,7 +171,7 @@ describe('hypercore', (context) => {
   })
 
   context('encrypted the log, with a json object', (assert, next) => {
-    const key = crypto.symmetricKey()
+    const key = crypto.encryptionKey()
     const encoder = crypto.encoder(key, { valueEncoding: 'json' })
     const feed = hypercore(storage, { valueEncoding: encoder })
 

yarn.lock

@@ -90,6 +90,11 @@
     lodash "^4.17.13"
     to-fast-properties "^2.0.0"
 
+"@types/node@11.11.6":
+  version "11.11.6"
+  resolved "https://registry.yarnpkg.com/@types/node/-/node-11.11.6.tgz#df929d1bb2eee5afdda598a41930fe50b43eaa6a"
+  integrity sha512-Exw4yUWMBXM3X+8oqzJNRqZSwUAaS4+7NdvHqQuFi/d+synz++xmX3QIf+BFqneW8N31R8Ky+sikfZUXq07ggQ==
+
 ansi-regex@^2.0.0:
   version "2.1.1"
   resolved "https://registry.yarnpkg.com/ansi-regex/-/ansi-regex-2.1.1.tgz#c3b33ab5ee360d86e0e628f0468ae7ef27d654df"
@@ -156,6 +161,16 @@ balanced-match@^1.0.0:
   resolved "https://registry.yarnpkg.com/balanced-match/-/balanced-match-1.0.0.tgz#89b4d199ab2bee49de164ea02b89ce462d71b767"
   integrity sha1-ibTRmasr7kneFk6gK4nORi1xt2c=
 
+bip39@^3.0.2:
+  version "3.0.2"
+  resolved "https://registry.yarnpkg.com/bip39/-/bip39-3.0.2.tgz#2baf42ff3071fc9ddd5103de92e8f80d9257ee32"
+  integrity sha512-J4E1r2N0tUylTKt07ibXvhpT2c5pyAFgvuA5q1H9uDy6dEGpjV8jmymh3MTYJDLCNbIVClSB9FbND49I6N24MQ==
+  dependencies:
+    "@types/node" "11.11.6"
+    create-hash "^1.1.0"
+    pbkdf2 "^3.0.9"
+    randombytes "^2.0.1"
+
 bitfield-rle@^2.2.1:
   version "2.2.1"
   resolved "https://registry.yarnpkg.com/bitfield-rle/-/bitfield-rle-2.2.1.tgz#07c910f7e650c005c46d18ee5ca6e62c4baf8310"
@@ -259,6 +274,14 @@ chalk@^2.0.0:
     escape-string-regexp "^1.0.5"
     supports-color "^5.3.0"
 
+cipher-base@^1.0.1, cipher-base@^1.0.3:
+  version "1.0.4"
+  resolved "https://registry.yarnpkg.com/cipher-base/-/cipher-base-1.0.4.tgz#8760e4ecc272f4c363532f926d874aae2c1397de"
+  integrity sha512-Kkht5ye6ZGmwv40uUDZztayT2ThLQGfnj/T71N/XzeZeo3nf8foyW7zGTsPYkEya3m5f3cAypH+qe7YOrM1U2Q==
+  dependencies:
+    inherits "^2.0.1"
+    safe-buffer "^5.0.1"
+
 cliui@^5.0.0:
   version "5.0.0"
   resolved "https://registry.yarnpkg.com/cliui/-/cliui-5.0.0.tgz#deefcfdb2e800784aa34f46fa08e06851c7bbbc5"
@@ -328,6 +351,29 @@ cp-file@^6.2.0:
     pify "^4.0.1"
     safe-buffer "^5.0.1"
 
+create-hash@^1.1.0, create-hash@^1.1.2:
+  version "1.2.0"
+  resolved "https://registry.yarnpkg.com/create-hash/-/create-hash-1.2.0.tgz#889078af11a63756bcfb59bd221996be3a9ef196"
+  integrity sha512-z00bCGNHDG8mHAkP7CtT1qVu+bFQUPjYq/4Iv3C3kWjTFV10zIjfSoeqXo9Asws8gwSHDGj/hl2u4OGIjapeCg==
+  dependencies:
+    cipher-base "^1.0.1"
+    inherits "^2.0.1"
+    md5.js "^1.3.4"
+    ripemd160 "^2.0.1"
+    sha.js "^2.4.0"
+
+create-hmac@^1.1.4:
+  version "1.1.7"
+  resolved "https://registry.yarnpkg.com/create-hmac/-/create-hmac-1.1.7.tgz#69170c78b3ab957147b2b8b04572e47ead2243ff"
+  integrity sha512-MJG9liiZ+ogc4TzUwuvbER1JRdgvUFSB5+VR/g5h82fGaIRWMWddtKBHi7/sVhfjQZ6SehlyhvQYrcYkaUIpLg==
+  dependencies:
+    cipher-base "^1.0.3"
+    create-hash "^1.1.0"
+    inherits "^2.0.1"
+    ripemd160 "^2.0.0"
+    safe-buffer "^5.0.1"
+    sha.js "^2.4.8"
+
 cross-spawn@^4:
   version "4.0.2"
   resolved "https://registry.yarnpkg.com/cross-spawn/-/cross-spawn-4.0.2.tgz#7b9247621c23adfdd3856004a823cbe397424d41"
@@ -574,6 +620,14 @@ has@^1.0.1, has@^1.0.3, has@~1.0.3:
   dependencies:
     function-bind "^1.1.1"
 
+hash-base@^3.0.0:
+  version "3.0.4"
+  resolved "https://registry.yarnpkg.com/hash-base/-/hash-base-3.0.4.tgz#5fc8686847ecd73499403319a6b0a3f3f6ae4918"
+  integrity sha1-X8hoaEfs1zSZQDMZprCj8/auSRg=
+  dependencies:
+    inherits "^2.0.1"
+    safe-buffer "^5.0.1"
+
 hasha@^3.0.0:
   version "3.0.0"
   resolved "https://registry.yarnpkg.com/hasha/-/hasha-3.0.0.tgz#52a32fab8569d41ca69a61ff1a214f8eb7c8bd39"
@@ -871,6 +925,15 @@ make-dir@^2.0.0, make-dir@^2.1.0:
     pify "^4.0.1"
     semver "^5.6.0"
 
+md5.js@^1.3.4:
+  version "1.3.5"
+  resolved "https://registry.yarnpkg.com/md5.js/-/md5.js-1.3.5.tgz#b5d07b8e3216e3e27cd728d72f70d1e6a342005f"
+  integrity sha512-xitP+WxNPcTTOgnTJcrhM0xvdPepipPSf3I8EIpGKeFLjt3PlJLIDG3u8EX53ZIubkb+5U2+3rELYpEhHhzdkg==
+  dependencies:
+    hash-base "^3.0.0"
+    inherits "^2.0.1"
+    safe-buffer "^5.1.2"
+
 memory-pager@^1.0.2:
   version "1.5.0"
   resolved "https://registry.yarnpkg.com/memory-pager/-/memory-pager-1.5.0.tgz#d8751655d22d384682741c972f2c3d6dfa3e66b5"
@@ -1120,6 +1183,17 @@ path-type@^3.0.0:
   dependencies:
     pify "^3.0.0"
 
+pbkdf2@^3.0.9:
+  version "3.0.17"
+  resolved "https://registry.yarnpkg.com/pbkdf2/-/pbkdf2-3.0.17.tgz#976c206530617b14ebb32114239f7b09336e93a6"
+  integrity sha512-U/il5MsrZp7mGg3mSQfn742na2T+1/vHDCG5/iTI3X9MKUuYUZVLQhyRsg06mCgDBTd57TxzgZt7P+fYfjRLtA==
+  dependencies:
+    create-hash "^1.1.2"
+    create-hmac "^1.1.4"
+    ripemd160 "^2.0.1"
+    safe-buffer "^5.0.1"
+    sha.js "^2.4.8"
+
 pify@^3.0.0:
   version "3.0.0"
   resolved "https://registry.yarnpkg.com/pify/-/pify-3.0.0.tgz#e5a4acd2c101fdf3d9a4d07f0dbc4db49dd28176"
@@ -1208,6 +1282,13 @@ random-access-storage@^1.1.1:
   dependencies:
     inherits "^2.0.3"
 
+randombytes@^2.0.1:
+  version "2.1.0"
+  resolved "https://registry.yarnpkg.com/randombytes/-/randombytes-2.1.0.tgz#df6f84372f0270dc65cdf6291349ab7a473d4f2a"
+  integrity sha512-vYl3iOX+4CKUWuxGi9Ukhie6fsqXqS9FE2Zaic4tNFD2N2QQaXOMFbuKK4QmDHC0JO6B1Zp41J0LpT0oR68amQ==
+  dependencies:
+    safe-buffer "^5.1.0"
+
 re-emitter@1.1.3:
   version "1.1.3"
   resolved "https://registry.yarnpkg.com/re-emitter/-/re-emitter-1.1.3.tgz#fa9e319ffdeeeb35b27296ef0f3d374dac2f52a7"
@@ -1318,7 +1399,15 @@ rimraf@^2.6.3:
   dependencies:
     glob "^7.1.3"
 
-safe-buffer@^5.0.1, safe-buffer@^5.1.2:
+ripemd160@^2.0.0, ripemd160@^2.0.1:
+  version "2.0.2"
+  resolved "https://registry.yarnpkg.com/ripemd160/-/ripemd160-2.0.2.tgz#a1c1a6f624751577ba5d07914cbc92850585890c"
+  integrity sha512-ii4iagi25WusVoiC4B4lq7pbXfAp3D9v5CwfkY33vffw2+pkDjY1D8GaN7spsxvCSx8dkPqOZCEZyfxcmJG2IA==
+  dependencies:
+    hash-base "^3.0.0"
+    inherits "^2.0.1"
+
+safe-buffer@^5.0.1, safe-buffer@^5.1.0, safe-buffer@^5.1.2:
   version "5.2.0"
   resolved "https://registry.yarnpkg.com/safe-buffer/-/safe-buffer-5.2.0.tgz#b74daec49b1148f88c64b68d49b1e815c1f2f519"
   integrity sha512-fZEwUGbVl7kouZs1jCdMLdt95hdIv0ZeHg6L7qPeciMZhZ+/gdesW4wgTARkrFWEpspjEATAzUGPG8N2jJiwbg==
@@ -1343,6 +1432,14 @@ set-blocking@^2.0.0:
   resolved "https://registry.yarnpkg.com/set-blocking/-/set-blocking-2.0.0.tgz#045f9782d011ae9a6803ddd382b24392b3d890f7"
   integrity sha1-BF+XgtARrppoA93TgrJDkrPYkPc=
 
+sha.js@^2.4.0, sha.js@^2.4.8:
+  version "2.4.11"
+  resolved "https://registry.yarnpkg.com/sha.js/-/sha.js-2.4.11.tgz#37a5cf0b81ecbc6943de109ba2960d1b26584ae7"
+  integrity sha512-QMEp5B7cftE7APOjk5Y6xgrbWu+WkLVQwk8JNjZ8nKRciZaByEW6MubieAiToS7+dwvrjGhH8jRXz3MVd0AYqQ==
+  dependencies:
+    inherits "^2.0.1"
+    safe-buffer "^5.0.1"
+
 signal-exit@^3.0.0, signal-exit@^3.0.2:
   version "3.0.2"
   resolved "https://registry.yarnpkg.com/signal-exit/-/signal-exit-3.0.2.tgz#b5fdc08f1287ea1178628e415e25132b73646c6d"