algorithm support

mymindstorm · mymindstorm · commit 78dcebea2704 · 2020-02-06T22:32:39.000-06:00
diff --git a/_locales/en/messages.json b/_locales/en/messages.json
@@ -324,5 +324,8 @@
     },
     "digits": {
         "message": "Digits"
+    },
+    "algorithm": {
+        "message": "Algorithm"
     }
 }
diff --git a/src/TODO b/src/TODO
@@ -4,6 +4,9 @@
   - from import normal
   - from import otpauth
   - from manual
-  - export normal
-  - export otpauth
-- algo
+- algo
+  - export
+  - from qr
+  - from import normal
+  - from import otpauth
+  - from manual
diff --git a/src/background.ts b/src/background.ts
@@ -129,6 +129,7 @@ async function getTotp(text: string) {
       let secret = "";
       let account: string | undefined;
       let issuer: string | undefined;
+      let algorithm: string | undefined;
       let period: number | undefined;
       let digits: number | undefined;
 
@@ -167,6 +168,8 @@ async function getTotp(text: string) {
         } else if (parameter[0].toLowerCase() === "digits") {
           digits = Number(parameter[1]);
           digits = isNaN(digits) ? 6 : digits;
+        } else if (parameter[0].toLowerCase() === "algorithm") {
+          algorithm = parameter[1];
         }
       });
 
@@ -210,6 +213,9 @@ async function getTotp(text: string) {
         if (digits) {
           entryData[hash].digits = digits;
         }
+        if (algorithm) {
+          entryData[hash].algorithm = algorithm;
+        }
         if (
           (await EntryStorage.hasEncryptedEntry()) !==
           encryption.getEncryptionStatus()
diff --git a/src/components/Popup/AddAccountPage.vue b/src/components/Popup/AddAccountPage.vue
@@ -22,6 +22,13 @@
         <option v-bind:value="8">8</option>
       </select>
       <br />
+      <label class="combo-label">{{ i18n.algorithm }}</label>
+      <select v-model="newAccount.algorithm">
+        <option v-bind:value="OTPAlgorithm.SHA1">SHA-1</option>
+        <option v-bind:value="OTPAlgorithm.SHA256">SHA-256</option>
+        <option v-bind:value="OTPAlgorithm.SHA512">SHA-512</option>
+      </select>
+      <br />
       <label class="combo-label">{{ i18n.type }}</label>
       <select v-model="newAccount.type">
         <option v-bind:value="OTPType.totp">{{ i18n.based_on_time }}</option>
@@ -36,7 +43,7 @@
 <script lang="ts">
 import Vue from "vue";
 import { mapState } from "vuex";
-import { OTPType, OTPEntry } from "../../models/otp";
+import { OTPType, OTPEntry, OTPAlgorithm } from "../../models/otp";
 
 export default Vue.extend({
   data: function(): {
@@ -47,6 +54,7 @@ export default Vue.extend({
       type: OTPType;
       period: number | undefined;
       digits: number;
+      algorithm: OTPAlgorithm;
     };
   } {
     return {
@@ -56,11 +64,12 @@ export default Vue.extend({
         secret: "",
         type: OTPType.totp,
         period: undefined,
-        digits: 6
+        digits: 6,
+        algorithm: OTPAlgorithm.SHA1
       }
     };
   },
-  computed: mapState("accounts", ["OTPType"]),
+  computed: mapState("accounts", ["OTPType", "OTPAlgorithm"]),
   methods: {
     async addNewAccount() {
       this.newAccount.secret = this.newAccount.secret.replace(/ /g, "");
@@ -113,7 +122,8 @@ export default Vue.extend({
           secret: this.newAccount.secret,
           counter: 0,
           period: this.newAccount.period,
-          digits: this.newAccount.digits
+          digits: this.newAccount.digits,
+          algorithm: this.newAccount.algorithm
         },
         this.$store.state.accounts.encryption
       );
diff --git a/src/components/Popup/EntryComponent.vue b/src/components/Popup/EntryComponent.vue
@@ -251,7 +251,8 @@ function getQrUrl(entry: OTPEntry) {
     (entry.type === OTPType.totp && entry.period !== 30
       ? "&period=" + entry.period
       : "") +
-    (entry.digits !== 6 ? "&digits=" + entry.digits : "");
+    (entry.digits !== 6 ? "&digits=" + entry.digits : "") +
+    (entry.algorithm ? "&algorithm=" + entry.algorithm : "");
   const qr = QRGen(0, "L");
   qr.addData(otpauth);
   qr.make();
diff --git a/src/components/Popup/ExportPage.vue b/src/components/Popup/ExportPage.vue
@@ -129,7 +129,8 @@ function getOneLineOtpBackupFile(entryData: { [hash: string]: OTPStorage }) {
       (type === "totp" && otpStorage.period
         ? "&period=" + otpStorage.period
         : "") +
-      (otpStorage.digits ? "&digits=" + otpStorage.digits : "");
+      (otpStorage.digits ? "&digits=" + otpStorage.digits : "") +
+      (otpStorage.algorithm ? "&algorithm=" + otpStorage.algorithm : "");
 
     otpAuthLines.push(otpAuthLine);
   }
diff --git a/src/definitions/otp.d.ts b/src/definitions/otp.d.ts
@@ -10,6 +10,7 @@ interface IOTPEntry {
   code: string;
   period: number;
   digits: number;
+  algorithm: number; // OTPAlgorithm
   create(): Promise<void>;
   update(): Promise<void>;
   next(): Promise<void>;
@@ -38,4 +39,5 @@ interface OTPStorage {
   counter?: number;
   period?: number;
   digits?: number;
+  algorithm?: string;
 }
diff --git a/src/import.ts b/src/import.ts
@@ -107,6 +107,7 @@ export async function getEntryDataFromOTPAuthPerLine(importCode: string) {
       let secret = "";
       let account: string | undefined;
       let issuer: string | undefined;
+      let algorithm: string | undefined;
       let period: number | undefined;
       let digits: number | undefined;
 
@@ -145,6 +146,8 @@ export async function getEntryDataFromOTPAuthPerLine(importCode: string) {
         } else if (parameter[0].toLowerCase() === "digits") {
           digits = Number(parameter[1]);
           digits = isNaN(digits) ? 6 : digits;
+        } else if (parameter[0].toLowerCase() === "algorithm") {
+          algorithm = parameter[1];
         }
       });
 
@@ -187,6 +190,9 @@ export async function getEntryDataFromOTPAuthPerLine(importCode: string) {
         if (digits) {
           exportData[hash].digits = digits;
         }
+        if (algorithm) {
+          exportData[hash].algorithm = algorithm;
+        }
       }
     }
   }
diff --git a/src/models/key-utilities.ts b/src/models/key-utilities.ts
@@ -1,4 +1,4 @@
-import { OTPType } from "./otp";
+import { OTPType, OTPAlgorithm } from "./otp";
 import * as CryptoJS from "crypto-js";
 
 // Originally based on the JavaScript implementation as provided by Russell
@@ -96,7 +96,8 @@ export class KeyUtilities {
     secret: string,
     counter: number,
     period: number,
-    len?: number
+    len?: number,
+    algorithm?: OTPAlgorithm
   ) {
     secret = secret.replace(/\s/g, "");
     if (!len) {
@@ -148,10 +149,28 @@ export class KeyUtilities {
       }
     }
 
-    const hmacObj = CryptoJS.HmacSHA1(
-      CryptoJS.enc.Hex.parse(time),
-      CryptoJS.enc.Hex.parse(key)
-    );
+    let hmacObj: CryptoJS.WordArray;
+    switch (algorithm) {
+      case OTPAlgorithm.SHA256:
+        hmacObj = CryptoJS.HmacSHA256(
+          CryptoJS.enc.Hex.parse(time),
+          CryptoJS.enc.Hex.parse(key)
+        );
+        break;
+      case OTPAlgorithm.SHA512:
+        hmacObj = CryptoJS.HmacSHA512(
+          CryptoJS.enc.Hex.parse(time),
+          CryptoJS.enc.Hex.parse(key)
+        );
+        break;
+      default:
+        hmacObj = CryptoJS.HmacSHA1(
+          CryptoJS.enc.Hex.parse(time),
+          CryptoJS.enc.Hex.parse(key)
+        );
+        break;
+    }
+
     const hmac = CryptoJS.enc.Hex.stringify(hmacObj);
 
     let offset = 0;
diff --git a/src/models/otp.ts b/src/models/otp.ts
@@ -17,6 +17,12 @@ export enum CodeState {
   Encrypted = "-2"
 }
 
+export enum OTPAlgorithm {
+  SHA1 = 1,
+  SHA256,
+  SHA512
+}
+
 export class OTPEntry implements IOTPEntry {
   type: OTPType;
   index: number;
@@ -28,6 +34,7 @@ export class OTPEntry implements IOTPEntry {
   counter: number;
   period: number;
   digits: number;
+  algorithm: OTPAlgorithm;
   code = "&bull;&bull;&bull;&bull;&bull;&bull;";
 
   constructor(
@@ -42,6 +49,7 @@ export class OTPEntry implements IOTPEntry {
       period?: number;
       hash?: string;
       digits?: number;
+      algorithm?: OTPAlgorithm;
     },
     encryption?: Encryption
   ) {
@@ -82,6 +90,11 @@ export class OTPEntry implements IOTPEntry {
     } else {
       this.digits = 6;
     }
+    if (entry.algorithm) {
+      this.algorithm = entry.algorithm;
+    } else {
+      this.algorithm = OTPAlgorithm.SHA1;
+    }
     if (this.type === OTPType.totp && entry.period) {
       this.period = entry.period;
     } else {
@@ -162,7 +175,8 @@ export class OTPEntry implements IOTPEntry {
           this.secret,
           this.counter,
           this.period,
-          this.digits
+          this.digits,
+          this.algorithm
         );
       } catch (error) {
         this.code = CodeState.Invalid;
diff --git a/src/models/storage.ts b/src/models/storage.ts
@@ -1,5 +1,5 @@
 import { Encryption } from "./encryption";
-import { OTPEntry, OTPType } from "./otp";
+import { OTPEntry, OTPType, OTPAlgorithm } from "./otp";
 import * as uuid from "uuid/v4";
 
 export class BrowserStorage {
@@ -189,6 +189,10 @@ export class EntryStorage {
       storageItem.digits = entry.digits;
     }
 
+    if (entry.algorithm && entry.algorithm !== OTPAlgorithm.SHA1) {
+      storageItem.algorithm = OTPAlgorithm[entry.algorithm];
+    }
+
     return storageItem;
   }
 
@@ -353,6 +357,8 @@ export class EntryStorage {
               data[hash].type = data[hash].type || OTPType[OTPType.totp];
               data[hash].counter = data[hash].counter || 0;
               data[hash].digits = data[hash].digits || 6;
+              data[hash].algorithm =
+                data[hash].algorithm || OTPAlgorithm[OTPAlgorithm.SHA1];
               const period = data[hash].period;
               if (
                 data[hash].type !== OTPType[OTPType.totp] ||
@@ -361,12 +367,18 @@ export class EntryStorage {
                 delete data[hash].period;
               }
 
-              // If invalid digits, then use defualt.
+              // If invalid digits, then use default.
               const digits = data[hash].digits;
               if (digits && (digits > 10 || digits < 1)) {
                 data[hash].digits = 6;
               }
 
+              // If invalid algorithm, then use default
+              // @ts-ignore - it's fine if this ends up undefined
+              if (!OTPAlgorithm[data[hash].algorithm]) {
+                data[hash].algorithm = OTPAlgorithm[OTPAlgorithm.SHA1];
+              }
+
               if (/^(blz\-|bliz\-)/.test(data[hash].secret)) {
                 const secretMatches = data[hash].secret.match(
                   /^(blz\-|bliz\-)(.*)/
@@ -551,7 +563,9 @@ export class EntryStorage {
                 type,
                 counter: entryData.counter,
                 period,
-                digits: entryData.digits
+                digits: entryData.digits,
+                // @ts-ignore - it's fine if this ends up undefined
+                algorithm: OTPAlgorithm[entryData.algorithm]
               });
 
               data.push(entry);
diff --git a/src/store/Accounts.ts b/src/store/Accounts.ts
@@ -1,7 +1,7 @@
 import { EntryStorage, BrowserStorage } from "../models/storage";
 import { Encryption } from "../models/encryption";
 import * as CryptoJS from "crypto-js";
-import { OTPType, CodeState } from "../models/otp";
+import { OTPType, OTPAlgorithm, CodeState } from "../models/otp";
 import { ActionContext } from "vuex";
 
 export class Accounts implements IModule {
@@ -25,6 +25,7 @@ export class Accounts implements IModule {
         entries,
         encryption,
         OTPType,
+        OTPAlgorithm,
         shouldShowPassphrase,
         sectorStart: false, // Should display timer circles?
         sectorOffset: 0, // Offset in seconds for animations

Original file line number	Diff line number	Diff line change
`@@ -324,5 +324,8 @@`
`324`	`324`	`},`
`325`	`325`	`"digits": {`
`326`	`326`	`"message": "Digits"`
	`327`	`+ },`
	`328`	`+ "algorithm": {`
	`329`	`+ "message": "Algorithm"`
`327`	`330`	`}`
`328`	`331`	`}`
Original file line number	Diff line number	Diff line change
`@@ -129,7 +129,8 @@ function getOneLineOtpBackupFile(entryData: { [hash: string]: OTPStorage }) {`
`129`	`129`	`(type === "totp" && otpStorage.period`
`130`	`130`	`? "&period=" + otpStorage.period`
`131`	`131`	`: "") +`
`132`		`- (otpStorage.digits ? "&digits=" + otpStorage.digits : "");`
	`132`	`+ (otpStorage.digits ? "&digits=" + otpStorage.digits : "") +`
	`133`	`+ (otpStorage.algorithm ? "&algorithm=" + otpStorage.algorithm : "");`
`133`	`134`
`134`	`135`	`otpAuthLines.push(otpAuthLine);`
`135`	`136`	`}`
Original file line number	Diff line number	Diff line change
`@@ -107,6 +107,7 @@ export async function getEntryDataFromOTPAuthPerLine(importCode: string) {`
`107`	`107`	`let secret = "";`
`108`	`108`	`let account: string \| undefined;`
`109`	`109`	`let issuer: string \| undefined;`
	`110`	`+ let algorithm: string \| undefined;`
`110`	`111`	`let period: number \| undefined;`
`111`	`112`	`let digits: number \| undefined;`
`112`	`113`
`@@ -145,6 +146,8 @@ export async function getEntryDataFromOTPAuthPerLine(importCode: string) {`
`145`	`146`	`} else if (parameter[0].toLowerCase() === "digits") {`
`146`	`147`	`digits = Number(parameter[1]);`
`147`	`148`	`digits = isNaN(digits) ? 6 : digits;`
	`149`	`+ } else if (parameter[0].toLowerCase() === "algorithm") {`
	`150`	`+ algorithm = parameter[1];`
`148`	`151`	`}`
`149`	`152`	`});`
`150`	`153`
`@@ -187,6 +190,9 @@ export async function getEntryDataFromOTPAuthPerLine(importCode: string) {`
`187`	`190`	`if (digits) {`
`188`	`191`	`exportData[hash].digits = digits;`
`189`	`192`	`}`
	`193`	`+ if (algorithm) {`
	`194`	`+ exportData[hash].algorithm = algorithm;`
	`195`	`+ }`
`190`	`196`	`}`
`191`	`197`	`}`
`192`	`198`	`}`