npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@yeez-tech/meta-encryptor

v4.3.2

Published

Data Seal/Unseal for Fidelius

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

yeez_techyeez_techfreeof123freeof123

Keywords

Readme

meta-encryptor

中文 | English

介绍

典枢的流程中,用户需要托管数据,供Fidelius解密、计算保证数据的正确性和隐私性,但是,用户不希望暴露源数据。因此,用户需要在本地完成加密,同样的,用户获得数据时,需要在本地进行解密(注意,此处的本地可以是网页,也可以是客户端)。meta-encryptor 就是提供给用户的加解密工具。

软件架构

使用 crypto 等加密算法。

安装教程

npm

npm install @yeez-tech/meta-encryptor --save

yarn

yarn add @yeez-tech/meta-encryptor

构建及测试

yarn install
yarn test

快速开始

import { YPCCrypto } from "@yeez-tech/meta-encryptor";

// YPCCrypto 是单例对象(Node / Browser / SSR 通用)
// 不需要、也不能调用 ()
const crypto = YPCCrypto;

// 生成密钥对
const sKey = crypto.generatePrivateKey();
const pKey = crypto.generatePublicKeyFromPrivateKey(sKey);

// 生成文件名和文件内容
const fileName = crypto.generateFileNameFromPKey(pKey);
const fileContent = crypto.generateFileContentFromSKey(sKey);

// 解密消息(浏览器环境需要 await)
await crypto.decryptMessage(sKey, encryptedMessage);

API

YPCCrypto.generatePrivateKey

生成私钥

import { YPCCrypto } from "@yeez-tech/meta-encryptor";

const crypto = YPCCrypto;
const sKey = crypto.generatePrivateKey();
YPCCrypto.generatePublicKeyFromPrivateKey

通过私钥生成公钥

import { YPCCrypto } from "@yeez-tech/meta-encryptor";

const crypto = YPCCrypto;
const pKey = crypto.generatePublicKeyFromPrivateKey(sKey);
YPCCrypto.generateFileNameFromPKey

通过公钥生成文件名

import { YPCCrypto } from "@yeez-tech/meta-encryptor";

const crypto = YPCCrypto;
const fileName = crypto.generateFileNameFromPKey(pKey);
YPCCrypto.generateFileContentFromSKey

通过私钥获取密钥文件内容

import { YPCCrypto } from "@yeez-tech/meta-encryptor";

const crypto = YPCCrypto;
const fileContent = crypto.generateFileContentFromSKey(sKey);
Sealer

推荐使用 Sealer 加密流,该方法支持多种格式,包括 CSV,Excel,下面是对 CSV 的例子,其中使用了ToStringcsv()产生的对象转换为Buffer

import {Sealer, ToString} from "@yeez-tech/meta-encryptor"

let rs = fs.createReadStream(src)
let ws = fs.createWriteStream(dst)

rs.pipe(csv())
  .pipe(new ToString())
  .pipe(new Sealer({keyPair:key_pair))
  .pipe(ws);
Unsealer

Unsealer 用来解密流,并且将结果输出到流.

import { Sealer, Unsealer, SealedFileStream } from "@yeez-tech/meta-encryptor";

/*
let src = "./tsconfig.json"
let dst = "./tsconfig.json.encrypted";
let rs = fs.createReadStream(src)
let ws = fs.createWriteStream(dst)

rs.pipe(csv())
  .pipe(new Sealer({keyPair:key_pair))
  .pipe(ws);
await new Promise(resolve=>{
  ws.on('finish', ()=>resolve());
});
*/

let unsealer = new Unsealer({ keyPair: key_pair });
let rrs = new SealedFileStream(dst);
let wws = fs.createWriteStream(src + ".new");

rrs.pipe(unsealer).pipe(wws);
await new Promise((resolve) => {
  wws.on("finish", () => resolve());
});
isSealedFile

用于判断一个文件是否为一个有效的封装文件,如果为真,返回true,否则,返回false

import { isSealedFile } from "@yeez-tech/meta-encryptor";

let r = isSealedFile(path);

浏览器环境支持

本库同时支持 Node.js 和浏览器环境,使用方法完全一致。

import { YPCCrypto } from '@yeez-tech/meta-encryptor'

// YPCCrypto 是单例对象(Node / Browser / SSR 通用)
// 不需要、也不能调用 ()
const crypto = YPCCrypto

await crypto.decryptMessage(...)

注意

  • 库会自动检测运行环境并使用对应的实现(Node.js 或浏览器)
  • 由于 Web Crypto API 的限制,浏览器环境中部分方法(如 decryptMessage_encryptMessage 等)是异步的,需要使用 await 调用
浏览器端下载功能

在浏览器环境中,可以使用 downloadUnsealed 直接下载并解密文件:

import { downloadUnsealed } from "@yeez-tech/meta-encryptor";

await downloadUnsealed({
  url: "https://example.com/encrypted file",
  privateKeyHex: "YOUR_PRIVATE_KEY_HEX",
  filename: "decrypted-file.txt",
  progressHandler: (totalItems, processedItems, readBytes, writeBytes) => {
    console.log(`Progress: ${processedItems}/${totalItems}`);
  },
});
sealedFileVersion

返回封装文件的版本号。

import { sealedFileVersion } from "@yeez-tech/meta-encryptor";

let r = sealedFileVersion(path);
dataHashOfSealedFile

返回封装文件对应的原始数据的 hash。注意,该函数直接读取的是记录在文件头的 hash,如果文件被篡改,该函数有可能返回错误的 hash,因此,如果有可能,应该在解密之后,对 hash 进行校验。

import { dataHashOfSealedFile } from "@yeez-tech/meta-encryptor";

let r = dataHashOfSealedFile(path);
signedDataHash

对数据 hash 进行签名。

import { signedDataHash } from "@yeez-tech/meta-encryptor";

//keyPair应该是{'private-key':'hex string of private key',
//dataHash应该是一个Buffer,长度为32字节
let r = signedDataHash(keyPair, dataHash);
forwardSkey

生成转发枢私钥的信息。

import { forwardSkey } from "@yeez-tech/meta-encryptor";

//keyPair应该是{'private-key':'hex string of private key',
//dianPKey应该是一个Buffer,包含了典公钥,
//enclaveHash应该是一个Buffer,包含了keyMgr的hash,可以为null,如果为null,则意味着可以被转发到任意的enclave中;
let r = forwardSkey(keyPair, dianPKey, enclaveHash);

返回如下对象,

{
  encrypted_skey:Buffer,
  forward_sig: Buffer
}
可恢复流(仅适用于Node环境)

meta-encryptor 提供了支持断点续传的可恢复流功能,主要包含以下组件:

RecoverableReadStream

用于支持断点续传的读取流,可以从指定位置恢复读取。

import { RecoverableReadStream } from "@yeez-tech/meta-encryptor";

const context = new PipelineContextInFile("context.dat");
const readStream = new RecoverableReadStream("input.file", context);

readStream.pipe(someWriteStream);
RecoverableWriteStream

用于支持断点续传的写入流,可以从指定位置恢复写入。

import { RecoverableWriteStream } from "@yeez-tech/meta-encryptor";

const context = new PipelineContextInFile("context.dat");
const writeStream = new RecoverableWriteStream("output.file", context);

someReadStream.pipe(writeStream);
PipelineContext

用于管理断点续传过程中的上下文信息的基类。

import { PipelineContext } from "@yeez-tech/meta-encryptor";

class MyContext extends PipelineContext {
  saveContext() {
    // 实现保存上下文的逻辑
  }

  loadContext() {
    // 实现加载上下文的逻辑
  }
}
PipelineContextInFile

基于文件存储的上下文管理实现,支持二进制数据。

import { PipelineContextInFile } from "@yeez-tech/meta-encryptor";

const context = new PipelineContextInFile("context.dat");

// 保存上下文
await context.saveContext();

// 加载上下文
await context.loadContext();

使用示例:

import {
  RecoverableReadStream,
  RecoverableWriteStream,
  PipelineContextInFile,
} from "@yeez-tech/meta-encryptor";

// 创建上下文管理器
const context = new PipelineContextInFile("transfer.context");

// 创建可恢复的读写流
const readStream = new RecoverableReadStream("source.file", context);
const writeStream = new RecoverableWriteStream("target.file", context);

// 处理传输
readStream.pipe(writeStream);

// 如果传输中断,可以使用相同的上下文重新创建流来继续传输
const resumeReadStream = new RecoverableReadStream("source.file", context);
const resumeWriteStream = new RecoverableWriteStream("target.file", context);
resumeReadStream.pipe(resumeWriteStream);

这些类提供了可靠的断点续传功能,特别适用于大文件传输或需要支持中断恢复的场景。上下文信息会被自动保存,确保传输可以从中断点准确恢复。

断点续传解密

meta-encryptor 支持将可恢复流与 Unsealer 结合使用,实现加密文件的断点续传解密功能。

import {
  RecoverableReadStream,
  RecoverableWriteStream,
  PipelineContextInFile,
  Unsealer,
} from "@yeez-tech/meta-encryptor";

// 创建上下文管理器
const context = new PipelineContextInFile("context.dat");
await context.loadContext();

// 创建解密管道
const readStream = new RecoverableReadStream(encryptedFile, context);
const unsealer = new Unsealer({
  keyPair,
  context,
  progressHandler: (totalItem, readItem, bytes, writeBytes) => {
    console.log(`Progress: ${(bytes / (1024 * 1024)).toFixed(2)}MB`);
  },
});
const writeStream = new RecoverableWriteStream(decryptedFile, context);

// 连接管道并处理事件
readStream.pipe(unsealer).pipe(writeStream);

// 如果需要暂停,可以断开管道并保存上下文
readStream.unpipe(unsealer);
unsealer.unpipe(writeStream);

// 之后可以使用相同的上下文重新创建管道继续解密

这种方式特别适用于大文件解密和需要断点续传的场景。系统会自动管理解密进度和上下文信息,确保可以从任意断点恢复解密过程

Author

[email protected]