I use some nodejs code like `Crypto randomBytes 16 ` and `Bu kotlinlang #javascript

I use some nodejs code (like `Crypto.randomBytes(1...

Jurriaan Mous

03/25/2020, 5:02 PM

I use some nodejs code (like

Crypto.randomBytes(16)

and

Buffer.from("AQ", "base64")

in actual implementations of multiplatform code I intended to replace with browser compatible code. Somehow if I run my tests in the browser, the node functions all work and tests succeed in all browsers. (Firefox/Safari/Chrome) How can this be explained? Can I expect these functions to run in a proper application? Or am I overlooking something?

bashor

03/30/2020, 12:35 PM

Likely them were polyfilled, I think you can check it by debugging your code inside a browser.

bashor

03/30/2020, 12:36 PM

modern browsers have https://developer.mozilla.org/en-US/docs/Web/API/Crypto/getRandomValues

Jurriaan Mous

03/30/2020, 8:55 PM

Thanks for the reply! I debugged the code and it seems two npm packages where loaded that contained the relevant code: https://www.npmjs.com/package/randombytes https://www.npmjs.com/package/buffer randombytes indeed uses getRandomValues() Can I trust these npm packages to be there in future releases or would it be wise to manually add them?

Jurriaan Mous

03/30/2020, 8:57 PM

Should random crypto bytes and base64 functionality maybe instead be exposed in the js or multiplatform standard library?

bashor

03/30/2020, 9:10 PM

Can I trust these npm packages to be there in future releases or would it be wise to manually add them?

adding manually/explicitly could be more robust

Should random crypto bytes and base64 functionality maybe instead be exposed in the js or multiplatform standard library?

I doubt, but you can ask in #stdlib or youtrack

Jurriaan Mous

03/31/2020, 6:53 AM

Thanks for the replies 😄

6 Views

Open in Slack

Previous Next