Remove require('crypto') imports in browser client (#721)

compileForDeno.ts

@@ -135,17 +135,13 @@ export async function run({
 
         let resolvedImportPath = resolveImportPath(importPath, sourcePath);
 
-        if (resolvedImportPath.endsWith("/adapter.node.ts")) {
-          resolvedImportPath = resolvedImportPath.replace(
-            "/adapter.node.ts",
-            "/adapter.deno.ts"
-          );
-        }
-        if (resolvedImportPath.endsWith("/adapter.shared.node.ts")) {
-          resolvedImportPath = resolvedImportPath.replace(
-            "/adapter.shared.node.ts",
-            "/adapter.shared.deno.ts"
-          );
+        for (const name of ["adapter", "adapter.shared", "adapter.crypto"]) {
+          if (resolvedImportPath.endsWith(`/${name}.node.ts`)) {
+            resolvedImportPath = resolvedImportPath.replace(
+              `/${name}.node.ts`,
+              `/${name}.deno.ts`
+            );
+          }
         }
 
         rewrittenFile.push(resolvedImportPath);

packages/driver/src/adapter.crypto.deno.ts

@@ -0,0 +1,35 @@
+import { crypto } from "https://deno.land/[email protected]/crypto/mod.ts";
+
+import type { CryptoUtils } from "./utils.ts";
+
+const cryptoUtils: CryptoUtils = {
+  async randomBytes(size: number): Promise<Uint8Array> {
+    const buf = new Uint8Array(size);
+    return crypto.getRandomValues(buf);
+  },
+
+  async H(msg: Uint8Array): Promise<Uint8Array> {
+    return new Uint8Array(await crypto.subtle.digest("SHA-256", msg));
+  },
+
+  async HMAC(key: Uint8Array, msg: Uint8Array): Promise<Uint8Array> {
+    return new Uint8Array(
+      await crypto.subtle.sign(
+        "HMAC",
+        await crypto.subtle.importKey(
+          "raw",
+          key,
+          {
+            name: "HMAC",
+            hash: { name: "SHA-256" },
+          },
+          false,
+          ["sign"]
+        ),
+        msg
+      )
+    );
+  },
+};
+
+export default cryptoUtils;

packages/driver/src/adapter.crypto.node.ts

@@ -0,0 +1,39 @@
+import type { CryptoUtils } from "./utils";
+
+let cryptoUtils: CryptoUtils;
+
+if (typeof crypto === "undefined") {
+  // tslint:disable-next-line:no-var-requires
+  const nodeCrypto = require("crypto");
+
+  cryptoUtils = {
+    randomBytes(size: number): Promise<Uint8Array> {
+      return new Promise((resolve, reject) => {
+        nodeCrypto.randomBytes(size, (err: Error | null, buf: Buffer) => {
+          if (err) {
+            reject(err);
+          } else {
+            resolve(buf);
+          }
+        });
+      });
+    },
+
+    async H(msg: Uint8Array): Promise<Uint8Array> {
+      const sign = nodeCrypto.createHash("sha256");
+      sign.update(msg);
+      return sign.digest();
+    },
+
+    async HMAC(key: Uint8Array, msg: Uint8Array): Promise<Uint8Array> {
+      const hm = nodeCrypto.createHmac("sha256", key);
+      hm.update(msg);
+      return hm.digest();
+    },
+  };
+} else {
+  // tslint:disable-next-line:no-var-requires
+  cryptoUtils = require("./browserCrypto").default;
+}
+
+export default cryptoUtils;

packages/driver/src/adapter.shared.deno.ts

@@ -1,36 +1,3 @@
-import { crypto } from "https://deno.land/[email protected]/crypto/mod.ts";
-
-export async function randomBytes(size: number): Promise<Uint8Array> {
-  const buf = new Uint8Array(size);
-  return crypto.getRandomValues(buf);
-}
-
-export async function H(msg: Uint8Array): Promise<Uint8Array> {
-  return new Uint8Array(await crypto.subtle.digest("SHA-256", msg));
-}
-
-export async function HMAC(
-  key: Uint8Array,
-  msg: Uint8Array
-): Promise<Uint8Array> {
-  return new Uint8Array(
-    await crypto.subtle.sign(
-      "HMAC",
-      await crypto.subtle.importKey(
-        "raw",
-        key,
-        {
-          name: "HMAC",
-          hash: { name: "SHA-256" },
-        },
-        false,
-        ["sign"]
-      ),
-      msg
-    )
-  );
-}
-
 export function getEnv(envName: string, required = false): string | undefined {
   if (!required) {
     const state = Deno.permissions.querySync({

packages/driver/src/adapter.shared.node.ts

@@ -1,65 +1,3 @@
-let randomBytes: (size: number) => Promise<Uint8Array>;
-let H: (msg: Uint8Array) => Promise<Uint8Array>;
-let HMAC: (key: Uint8Array, msg: Uint8Array) => Promise<Uint8Array>;
-
-if (typeof crypto === "undefined") {
-  // tslint:disable-next-line:no-var-requires
-  const nodeCrypto = require("crypto");
-
-  randomBytes = (size: number): Promise<Uint8Array> => {
-    return new Promise((resolve, reject) => {
-      nodeCrypto.randomBytes(size, (err: Error | null, buf: Buffer) => {
-        if (err) {
-          reject(err);
-        } else {
-          resolve(buf);
-        }
-      });
-    });
-  };
-
-  H = async (msg: Uint8Array): Promise<Uint8Array> => {
-    const sign = nodeCrypto.createHash("sha256");
-    sign.update(msg);
-    return sign.digest();
-  };
-
-  HMAC = async (key: Uint8Array, msg: Uint8Array): Promise<Uint8Array> => {
-    const hm = nodeCrypto.createHmac("sha256", key);
-    hm.update(msg);
-    return hm.digest();
-  };
-} else {
-  randomBytes = async (size: number): Promise<Uint8Array> => {
-    return crypto.getRandomValues(new Uint8Array(size));
-  };
-
-  H = async (msg: Uint8Array): Promise<Uint8Array> => {
-    return new Uint8Array(await crypto.subtle.digest("SHA-256", msg));
-  };
-
-  HMAC = async (key: Uint8Array, msg: Uint8Array): Promise<Uint8Array> => {
-    return new Uint8Array(
-      await crypto.subtle.sign(
-        "HMAC",
-        await crypto.subtle.importKey(
-          "raw",
-          key,
-          {
-            name: "HMAC",
-            hash: { name: "SHA-256" },
-          },
-          false,
-          ["sign"]
-        ),
-        msg
-      )
-    );
-  };
-}
-
-export { randomBytes, H, HMAC };
-
 export function getEnv(
   envName: string,
   required: boolean = false

packages/driver/src/browserClient.ts

@@ -1,14 +1,17 @@
 import { BaseClientPool, Client, ConnectOptions } from "./baseClient";
 import { getConnectArgumentsParser } from "./conUtils";
+import cryptoUtils from "./browserCrypto";
 import { EdgeDBError } from "./errors";
 import { FetchConnection } from "./fetchConn";
+import { getHTTPSCRAMAuth } from "./httpScram";
 import { Options } from "./options";
 
 const parseConnectArguments = getConnectArgumentsParser(null);
+const httpSCRAMAuth = getHTTPSCRAMAuth(cryptoUtils);
 
-export class FetchClientPool extends BaseClientPool {
+class FetchClientPool extends BaseClientPool {
   isStateless = true;
-  _connectWithTimeout = FetchConnection.connectWithTimeout;
+  _connectWithTimeout = FetchConnection.createConnectWithTimeout(httpSCRAMAuth);
 }
 
 export function createClient(): Client {

packages/driver/src/browserCrypto.ts

@@ -0,0 +1,32 @@
+import type { CryptoUtils } from "./utils";
+
+const cryptoUtils: CryptoUtils = {
+  async randomBytes(size: number): Promise<Uint8Array> {
+    return crypto.getRandomValues(new Uint8Array(size));
+  },
+
+  async H(msg: Uint8Array): Promise<Uint8Array> {
+    return new Uint8Array(await crypto.subtle.digest("SHA-256", msg));
+  },
+
+  async HMAC(key: Uint8Array, msg: Uint8Array): Promise<Uint8Array> {
+    return new Uint8Array(
+      await crypto.subtle.sign(
+        "HMAC",
+        await crypto.subtle.importKey(
+          "raw",
+          key,
+          {
+            name: "HMAC",
+            hash: { name: "SHA-256" },
+          },
+          false,
+          ["sign"]
+        ),
+        msg
+      )
+    );
+  },
+};
+
+export default cryptoUtils;

packages/driver/src/fetchConn.ts

@@ -22,7 +22,7 @@ import { PROTO_VER, BaseRawConnection } from "./baseConn";
 import Event from "./primitives/event";
 import * as chars from "./primitives/chars";
 import { InternalClientError, ProtocolError } from "./errors";
-import { HTTPSCRAMAuth } from "./httpScram";
+import type { HttpSCRAMAuth } from "./httpScram";
 
 interface FetchConfig {
   address: Address | string;
@@ -177,38 +177,40 @@ export class FetchConnection extends BaseFetchConnection {
     return `${baseUrl}/db/${database}`;
   }
 
-  static async connectWithTimeout(
-    addr: Address,
-    config: NormalizedConnectConfig,
-    registry: CodecsRegistry
-  ): Promise<FetchConnection> {
-    const {
-      connectionParams: { tlsSecurity, user, password = "", secretKey },
-    } = config;
-
-    let token = secretKey ?? _tokens.get(config);
-
-    if (!token) {
-      const protocol = tlsSecurity === "insecure" ? "http" : "https";
-      const baseUrl = `${protocol}://${addr[0]}:${addr[1]}`;
-      token = await HTTPSCRAMAuth(baseUrl, user, password);
-      _tokens.set(config, token);
-    }
+  static createConnectWithTimeout(httpSCRAMAuth: HttpSCRAMAuth) {
+    return async function connectWithTimeout(
+      addr: Address,
+      config: NormalizedConnectConfig,
+      registry: CodecsRegistry
+    ) {
+      const {
+        connectionParams: { tlsSecurity, user, password = "", secretKey },
+      } = config;
+
+      let token = secretKey ?? _tokens.get(config);
+
+      if (!token) {
+        const protocol = tlsSecurity === "insecure" ? "http" : "https";
+        const baseUrl = `${protocol}://${addr[0]}:${addr[1]}`;
+        token = await httpSCRAMAuth(baseUrl, user, password);
+        _tokens.set(config, token);
+      }
 
-    const conn = new FetchConnection(
-      {
-        address: addr,
-        tlsSecurity,
-        database: config.connectionParams.database,
-        user: config.connectionParams.user,
-        token,
-      },
-      registry
-    );
+      const conn = new FetchConnection(
+        {
+          address: addr,
+          tlsSecurity,
+          database: config.connectionParams.database,
+          user: config.connectionParams.user,
+          token,
+        },
+        registry
+      );
 
-    conn.connected = true;
-    conn.connWaiter.set();
+      conn.connected = true;
+      conn.connWaiter.set();
 
-    return conn;
+      return conn;
+    };
   }
 }