Post Quantum Encryption

Author: 0xGingi

browser-extension/background.js

@@ -1,62 +1,26 @@
-class CryptoService {
-  constructor(key) {
-    this.key = key;
-  }
-
-  static async new(seedPhrase) {
-    const encoder = new TextEncoder();
-    const data = encoder.encode(seedPhrase);
-    const hash = await crypto.subtle.digest('SHA-256', data);
-    return new CryptoService(new Uint8Array(hash));
-  }
-
-  async encrypt(data) {
-    const iv = crypto.getRandomValues(new Uint8Array(12));
-    const key = await crypto.subtle.importKey(
-      'raw',
-      this.key,
-      { name: 'AES-GCM' },
-      false,
-      ['encrypt']
-    );
-    
-    const encoded = new TextEncoder().encode(JSON.stringify(data));
-    const encrypted = await crypto.subtle.encrypt(
-      { name: 'AES-GCM', iv },
-      key,
-      encoded
-    );
-
-    return {
-      iv: Array.from(iv),
-      data: Array.from(new Uint8Array(encrypted))
-    };
-  }
-
-  async decrypt(encrypted) {
-    const key = await crypto.subtle.importKey(
-      'raw',
-      this.key,
-      { name: 'AES-GCM' },
-      false,
-      ['decrypt']
-    );
-    
-    const decrypted = await crypto.subtle.decrypt(
-      { name: 'AES-GCM', iv: new Uint8Array(encrypted.iv) },
-      key,
-      new Uint8Array(encrypted.data)
-    );
-
-    return JSON.parse(new TextDecoder().decode(decrypted));
-  }
-}
+import { CryptoService } from './services/cryptoService.js';
 
 let cryptoService = null;
 let webappTabCheckInterval = null;
 let lastSyncTime = 0;
 const SYNC_COOLDOWN = 2000;
 
+// Initialize the crypto service when the extension starts
+async function initializeCrypto() {
+  try {
+    // Get seed phrase from storage
+    const result = await chrome.storage.local.get('seedPhrase');
+    if (result.seedPhrase) {
+      cryptoService = await CryptoService.new(result.seedPhrase);
+      console.log('Crypto service initialized with PQ support:', cryptoService.isPQAvailable());
+    } else {
+      console.log('No seed phrase found, crypto not initialized');
+    }
+  } catch (error) {
+    console.error('Failed to initialize crypto:', error);
+  }
+}
+
 async function encryptAndStoreNotes(notes) {
   try {
     if (!cryptoService) {
@@ -237,7 +201,64 @@ function startPeriodicCheck() {
 
 startPeriodicCheck();
 
+// Handle messages from content scripts or popup
 chrome.runtime.onMessage.addListener((message, sender, sendResponse) => {
+  if (message.action === 'encrypt') {
+    if (!cryptoService) {
+      sendResponse({ error: 'Crypto service not initialized' });
+      return;
+    }
+    
+    // Encrypt data asynchronously
+    (async () => {
+      try {
+        const encrypted = await cryptoService.encrypt(message.data);
+        sendResponse({ success: true, encrypted });
+      } catch (error) {
+        sendResponse({ error: error.message });
+      }
+    })();
+    
+    return true; // Indicate asynchronous response
+  }
+  
+  if (message.action === 'decrypt') {
+    if (!cryptoService) {
+      sendResponse({ error: 'Crypto service not initialized' });
+      return;
+    }
+    
+    // Decrypt data asynchronously
+    (async () => {
+      try {
+        const decrypted = await cryptoService.decrypt(message.encrypted);
+        sendResponse({ success: true, decrypted });
+      } catch (error) {
+        sendResponse({ error: error.message });
+      }
+    })();
+    
+    return true; // Indicate asynchronous response
+  }
+  
+  if (message.action === 'setupCrypto') {
+    // Initialize with new seed phrase
+    (async () => {
+      try {
+        await chrome.storage.local.set({ seedPhrase: message.seedPhrase });
+        cryptoService = await CryptoService.new(message.seedPhrase);
+        sendResponse({ 
+          success: true, 
+          pqAvailable: cryptoService.isPQAvailable() 
+        });
+      } catch (error) {
+        sendResponse({ error: error.message });
+      }
+    })();
+    
+    return true; // Indicate asynchronous response
+  }
+
   if (message.type === 'NOTES_UPDATED' && message.notes) {
     lastSyncTime = Date.now();
     encryptAndStoreNotes(message.notes);
@@ -257,4 +278,7 @@ chrome.runtime.onConnect.addListener(function(port) {
   port.onDisconnect.addListener(function() {
     startPeriodicCheck();
   });
-}); 
+});
+
+// Initialize when extension loads
+initializeCrypto(); 

browser-extension/popup/sync.js

@@ -0,0 +1,128 @@
+// Sync notes with the server
+async function syncNotes() {
+  try {
+    const statusElement = document.getElementById('sync-status');
+    statusElement.textContent = 'Syncing...';
+    
+    // Get crypto information
+    const cryptoResponse = await chrome.runtime.sendMessage({ action: 'getCryptoStatus' });
+    if (cryptoResponse.error) {
+      throw new Error(cryptoResponse.error);
+    }
+    
+    // Get notes from storage
+    const storedNotes = await chrome.storage.local.get('notes');
+    const notes = storedNotes.notes || [];
+    
+    // Encrypt notes for sync
+    const encryptedNotes = [];
+    for (const note of notes) {
+      if (note.pending_sync) {
+        const encrypted = await chrome.runtime.sendMessage({ 
+          action: 'encrypt', 
+          data: {
+            title: note.title,
+            content: note.content,
+            created_at: note.created_at,
+            updated_at: note.updated_at
+          }
+        });
+        
+        if (encrypted.error) throw new Error(encrypted.error);
+        
+        encryptedNotes.push({
+          id: note.id.toString(16).padStart(16, '0'),
+          data: encrypted.encrypted.data,
+          nonce: encrypted.encrypted.iv,
+          timestamp: note.updated_at,
+          version: encrypted.encrypted.version
+        });
+        
+        // Mark as synced
+        note.pending_sync = false;
+      }
+    }
+    
+    // Get MLKEM public key if available
+    let pqPublicKey = null;
+    if (cryptoResponse.isPQAvailable) {
+      const keyResponse = await chrome.runtime.sendMessage({ action: 'getMlkemPublicKey' });
+      if (!keyResponse.error) {
+        pqPublicKey = keyResponse.publicKey;
+      }
+    }
+    
+    // Send to server
+    const serverUrl = 'https://sync.trustynotes.app'; // Get from settings
+    const publicKey = cryptoResponse.publicKey;
+    
+    const response = await fetch(`${serverUrl}/api/sync`, {
+      method: 'POST',
+      headers: {
+        'Content-Type': 'application/json',
+      },
+      body: JSON.stringify({
+        public_key: publicKey,
+        notes: encryptedNotes,
+        client_version: '0.3.0',
+        sync_type: encryptedNotes.length > 0 ? 'full' : 'check',
+        pq_public_key: pqPublicKey
+      }),
+    });
+    
+    if (!response.ok) {
+      throw new Error(`Server returned ${response.status}`);
+    }
+    
+    const syncResult = await response.json();
+    
+    // Process server notes (decrypt and store)
+    if (syncResult.notes && syncResult.notes.length > 0) {
+      for (const serverNote of syncResult.notes) {
+        const decrypted = await chrome.runtime.sendMessage({
+          action: 'decrypt',
+          encrypted: {
+            data: serverNote.data,
+            iv: serverNote.nonce,
+            version: serverNote.version || 1
+          }
+        });
+        
+        if (decrypted.error) {
+          console.error('Failed to decrypt note:', decrypted.error);
+          continue;
+        }
+        
+        // Update or add note
+        const noteId = parseInt(serverNote.id, 16);
+        const existingIndex = notes.findIndex(n => n.id === noteId);
+        
+        const decryptedNote = {
+          id: noteId,
+          ...decrypted.decrypted,
+          pending_sync: false,
+          encryptionType: serverNote.version || 1
+        };
+        
+        if (existingIndex >= 0) {
+          notes[existingIndex] = decryptedNote;
+        } else {
+          notes.push(decryptedNote);
+        }
+      }
+      
+      // Save updated notes
+      await chrome.storage.local.set({ notes });
+    }
+    
+    statusElement.textContent = 'Sync complete!';
+    setTimeout(() => {
+      statusElement.textContent = '';
+    }, 3000);
+    
+  } catch (error) {
+    console.error('Sync failed:', error);
+    const statusElement = document.getElementById('sync-status');
+    statusElement.textContent = `Sync failed: ${error.message}`;
+  }
+}