const decipher = crypto.createDecipheriv('aes-256-gcm', key, iv); decipher.setAuthTag(authTag);
return (encoding === 'utf8' ? decrypted.toString('utf8') : decrypted.toString('base64')) as T; core-decrypt
const key = crypto.pbkdf2Sync(password, Buffer.from(salt, 'hex'), 100000, 32, 'sha256'); const decipher = crypto
const plain = coreDecrypt( encryptedData: '...', // from core-encrypt password: 'my-secret', ); If you give me more details (use case, stack, encryption format), I’ll tailor the feature exactly to your needs. const decipher = crypto.createDecipheriv('aes-256-gcm'
export function coreDecrypt<T = string>( encryptedData, password, encoding = 'utf8', : DecryptOptions): T // Derive a 32-byte key using PBKDF2 const salt = encryptedData.slice(0, 32); // first 32 chars = salt (hex) const ciphertextWithTag = encryptedData.slice(32);
// Extract IV (12 bytes), auth tag (16 bytes), and actual ciphertext const iv = Buffer.from(ciphertextWithTag.slice(0, 24), 'hex'); const authTag = Buffer.from(ciphertextWithTag.slice(24, 56), 'hex'); const ciphertext = Buffer.from(ciphertextWithTag.slice(56), 'hex');