argon2 replaced with native crypto

Author: Artuomka

package.json

@@ -26,7 +26,6 @@
     "@nestjs/core": "^8.0.6",
     "@nestjs/platform-express": "^8.0.6",
     "@nestjs/platform-ws": "^8.0.6",
-    "argon2": "^0.28.2",
     "crypto-js": "^4.1.1",
     "faker": "^5.5.3",
     "get-port": "^5.1.1",

src/helpers/app-logs/dto/create-log-record.dto.ts

@@ -1,7 +1,4 @@
-import {
-  LogOperationTypeEnum,
-  OperationResultStatusEnum,
-} from '../../../enums';
+import { LogOperationTypeEnum, OperationResultStatusEnum } from '../../../enums';
 
 export class CreateLogRecordDto {
   table_name: string;

src/helpers/encryption/encryptor.ts

@@ -1,6 +1,5 @@
 import * as CryptoJS from 'crypto-js';
-import * as argon2 from 'argon2';
-import { Messages } from '../../text/messages';
+import * as crypto from 'crypto';
 
 export class Encryptor {
   public static encryptDataMasterPwd(data: string, masterPwd: string): string {
@@ -13,15 +12,22 @@ export class Encryptor {
   }
 
   public static async hashPassword(password: string): Promise<string> {
-    return await argon2.hash(password);
+    return new Promise((resolve, reject) => {
+      const salt = crypto.randomBytes(8).toString('hex');
+      crypto.scrypt(password, salt, 64, (err, derivedKey) => {
+        if (err) reject(err);
+        resolve(salt + ':' + derivedKey.toString('hex'));
+      });
+    });
   }
 
-  public static async verifyPassword(hash: string, password: string): Promise<boolean> {
-    try {
-      return await argon2.verify(hash, password);
-    } catch (err) {
-      console.log(Messages.CORRUPTED_DATA);
-      process.exit(0);
-    }
+  public static async verifyPassword(password: string, hash: string): Promise<boolean> {
+    return new Promise((resolve, reject) => {
+      const [salt, key] = hash.split(':');
+      crypto.scrypt(password, salt, 64, (err, derivedKey) => {
+        if (err) reject(err);
+        resolve(key == derivedKey.toString('hex'));
+      });
+    });
   }
 }

src/shared/config/config.ts

@@ -113,7 +113,7 @@ export class Config {
             encryptionPassword = CLIQuestionUtility.askConnectionPassword(
               Messages.INTRO_MESSAGES.ASK_ENCRYPTION_PASSWORD_MESSAGE,
             );
-            if (!(await Encryptor.verifyPassword(appConfig.hash, encryptionPassword))) {
+            if (!(await Encryptor.verifyPassword(encryptionPassword, appConfig.hash))) {
               console.log(Messages.CORRUPTED_DATA_OR_PASSWORD);
               if (i === 2) {
                 console.log(Messages.INTRO_MESSAGES.APPLICATION_ATTEMPTS_QUIT);