make functions sync

Uzlopak · Uzlopak · commit 0d948280a926 · 2023-11-29T13:11:45.000+01:00
diff --git a/src/index.ts b/src/index.ts
@@ -2,21 +2,21 @@ export { sign } from "./node/sign";
 import { verify } from "./node/verify";
 export { verify };
 
-export async function verifyWithFallback(
+export function verifyWithFallback(
   secret: string,
   payload: string,
   signature: string,
   additionalSecrets: undefined | string[],
-): Promise<any> {
-  const firstPass = await verify(secret, payload, signature);
+): boolean {
+  const firstPass = verify(secret, payload, signature);
 
   if (firstPass) {
     return true;
   }
 
   if (additionalSecrets !== undefined) {
     for (const s of additionalSecrets) {
-      const v: boolean = await verify(s, payload, signature);
+      const v: boolean = verify(s, payload, signature);
       if (v) {
         return v;
       }
diff --git a/src/node/sign.ts b/src/node/sign.ts
@@ -1,10 +1,7 @@
 import { createHmac } from "crypto";
 import { VERSION } from "../version";
 
-export async function sign(
-  secret: string | Buffer,
-  payload: string,
-): Promise<string> {
+export function sign(secret: string | Buffer, payload: string): string {
   if (!secret || !payload) {
     throw new TypeError(
       "[@octokit/webhooks-methods] secret & payload required for sign()",
diff --git a/src/node/verify.ts b/src/node/verify.ts
@@ -4,11 +4,11 @@ import { Buffer } from "buffer";
 import { VERSION } from "../version";
 import { isValidSignaturePrefix } from "../utils";
 
-export async function verify(
+export function verify(
   secret: string | Buffer,
   eventPayload: string,
   signature: string,
-): Promise<boolean> {
+): boolean {
   if (!secret || !eventPayload || !signature) {
     throw new TypeError(
       "[@octokit/webhooks-methods] secret, eventPayload & signature required",
@@ -24,9 +24,9 @@ export async function verify(
     return false;
   }
 
-  const verificationBuffer = Buffer.from(
-    createHmac("sha256", secret).update(eventPayload).digest(),
-  );
+  const verificationBuffer = createHmac("sha256", secret)
+    .update(eventPayload)
+    .digest().buffer as Buffer;
 
   // constant time comparison to prevent timing attacks
   // https://stackoverflow.com/a/31096242/206879
diff --git a/src/web.ts b/src/web.ts
@@ -1,5 +1,3 @@
-import { type SignOptions } from "./types";
-
 const enc = new TextEncoder();
 
 function hexToUInt8Array(string: string) {
@@ -35,15 +33,7 @@ async function importKey(secret: string) {
   );
 }
 
-export async function sign(options: SignOptions | string, payload: string) {
-  const { secret, algorithm } =
-    typeof options === "object"
-      ? {
-          secret: options.secret,
-          algorithm: "sha256",
-        }
-      : { secret: options, algorithm: "sha256" };
-
+export async function sign(secret: string, payload: string) {
   if (!secret || !payload) {
     throw new TypeError(
       "[@octokit/webhooks-methods] secret & payload required for sign()",
@@ -56,7 +46,7 @@ export async function sign(options: SignOptions | string, payload: string) {
     enc.encode(payload),
   );
 
-  return `${algorithm}=${UInt8ArrayToHex(signature)}`;
+  return `sha256=${UInt8ArrayToHex(signature)}`;
 }
 
 export async function verify(
diff --git a/test/sign.test.ts b/test/sign.test.ts
@@ -14,31 +14,31 @@ describe("sign", () => {
     expect(sign.VERSION).toEqual("0.0.0-development");
   });
 
-  test("throws without options throws", async () => {
+  test("throws without options throws", () => {
     // @ts-expect-error
-    await expect(() => sign()).rejects.toThrow(
+    expect(() => sign()).toThrow(
       "[@octokit/webhooks-methods] secret & payload required for sign()",
     );
   });
 
-  test("throws without secret", async () => {
+  test("throws without secret", () => {
     // @ts-ignore
-    await expect(() => sign(undefined, eventPayload)).rejects.toThrow(
+    expect(() => sign(undefined, eventPayload)).toThrow(
       "[@octokit/webhooks-methods] secret & payload required for sign()",
     );
   });
 
-  test("throws without eventPayload", async () => {
+  test("throws without eventPayload", () => {
     // @ts-expect-error
-    await expect(() => sign(secret)).rejects.toThrow(
+    expect(() => sign(secret)).toThrow(
       "[@octokit/webhooks-methods] secret & payload required for sign()",
     );
   });
 
   describe("with secret as Buffer", () => {
     describe("returns expected sha256 signature", () => {
-      test("sign(secret, eventPayload)", async () => {
-        const signature = await sign(
+      test("sign(secret, eventPayload)", () => {
+        const signature = sign(
           Buffer.from(secret),
           JSON.stringify(eventPayload),
         );
@@ -51,8 +51,8 @@ describe("sign", () => {
 
   describe("with eventPayload as string", () => {
     describe("returns expected sha256 signature", () => {
-      test("sign(secret, eventPayload)", async () => {
-        const signature = await sign(secret, JSON.stringify(eventPayload));
+      test("sign(secret, eventPayload)", () => {
+        const signature = sign(secret, JSON.stringify(eventPayload));
         expect(signature).toBe(
           "sha256=4864d2759938a15468b5df9ade20bf161da9b4f737ea61794142f3484236bda3",
         );
diff --git a/test/verify.test.ts b/test/verify.test.ts
@@ -22,86 +22,86 @@ describe("verify", () => {
     expect(verify.VERSION).toEqual("0.0.0-development");
   });
 
-  test("verify() without options throws", async () => {
+  test("verify() without options throws", () => {
     // @ts-expect-error
-    await expect(() => verify()).rejects.toThrow(
+    expect(() => verify()).toThrow(
       "[@octokit/webhooks-methods] secret, eventPayload & signature required",
     );
   });
 
-  test("verify(undefined, eventPayload) without secret throws", async () => {
+  test("verify(undefined, eventPayload) without secret throws", () => {
     // @ts-expect-error
-    await expect(() => verify(undefined, eventPayload)).rejects.toThrow(
+    expect(() => verify(undefined, eventPayload)).toThrow(
       "[@octokit/webhooks-methods] secret, eventPayload & signature required",
     );
   });
 
-  test("verify(secret) without eventPayload throws", async () => {
+  test("verify(secret) without eventPayload throws", () => {
     // @ts-expect-error
-    await expect(() => verify(secret)).rejects.toThrow(
+    expect(() => verify(secret)).toThrow(
       "[@octokit/webhooks-methods] secret, eventPayload & signature required",
     );
   });
 
-  test("verify(secret, eventPayload) without options.signature throws", async () => {
+  test("verify(secret, eventPayload) without options.signature throws", () => {
     // @ts-expect-error
-    await expect(() => verify(secret, eventPayload)).rejects.toThrow(
+    expect(() => verify(secret, eventPayload)).toThrow(
       "[@octokit/webhooks-methods] secret, eventPayload & signature required",
     );
   });
 
-  test("verify(secret, eventPayload, signature) returns true for correct signature", async () => {
-    const signatureMatches = await verify(secret, eventPayload, signature);
+  test("verify(secret, eventPayload, signature) returns true for correct signature", () => {
+    const signatureMatches = verify(secret, eventPayload, signature);
     expect(signatureMatches).toBe(true);
   });
 
-  test("verify(secret, eventPayload, signature) returns true for secret provided as Buffer", async () => {
-    const signatureMatches = await verify(
+  test("verify(secret, eventPayload, signature) returns true for secret provided as Buffer", () => {
+    const signatureMatches = verify(
       Buffer.from(secret),
       eventPayload,
       signature,
     );
     expect(signatureMatches).toBe(true);
   });
 
-  test("verify(secret, eventPayload, signature) returns false for incorrect signature", async () => {
-    const signatureMatches = await verify(
+  test("verify(secret, eventPayload, signature) returns false for incorrect signature", () => {
+    const signatureMatches = verify(
       secret,
       eventPayload,
       "sha256=xxxccac34c43c7dc1cbb905488b1b81347fcc700a7b025697a9d07862256023f",
     );
     expect(signatureMatches).toBe(false);
   });
 
-  test("verify(secret, eventPayload, signature) returns false for incorrect signature", async () => {
-    const signatureMatches = await verify(secret, eventPayload, "foo");
+  test("verify(secret, eventPayload, signature) returns false for incorrect signature", () => {
+    const signatureMatches = verify(secret, eventPayload, "foo");
     expect(signatureMatches).toBe(false);
   });
 
-  test("verify(secret, eventPayload, signature) returns false for incorrect secret", async () => {
-    const signatureMatches = await verify("foo", eventPayload, signature);
+  test("verify(secret, eventPayload, signature) returns false for incorrect secret", () => {
+    const signatureMatches = verify("foo", eventPayload, signature);
     expect(signatureMatches).toBe(false);
   });
 
-  test("verify(secret, eventPayload, signature) returns true if eventPayload contains special characters (#71)", async () => {
+  test("verify(secret, eventPayload, signature) returns true if eventPayload contains special characters (#71)", () => {
     // https://github.com/octokit/webhooks.js/issues/71
-    const signatureMatchesLowerCaseSequence = await verify(
+    const signatureMatchesLowerCaseSequence = verify(
       "development",
       toNormalizedJsonString({
         foo: "Foo\n\u001b[34mbar: ♥♥♥♥♥♥♥♥\nthis-is-lost\u001b[0m\u001b[2K",
       }),
       "sha256=9dacf9003316b09be07df56d86a2d0d6872e42a1e6c72c3bad9ff915a7c5603e",
     );
     expect(signatureMatchesLowerCaseSequence).toBe(true);
-    const signatureMatchesUpperCaseSequence = await verify(
+    const signatureMatchesUpperCaseSequence = verify(
       "development",
       toNormalizedJsonString({
         foo: "Foo\n\u001B[34mbar: ♥♥♥♥♥♥♥♥\nthis-is-lost\u001B[0m\u001B[2K",
       }),
       "sha256=9dacf9003316b09be07df56d86a2d0d6872e42a1e6c72c3bad9ff915a7c5603e",
     );
     expect(signatureMatchesUpperCaseSequence).toBe(true);
-    const signatureMatchesEscapedSequence = await verify(
+    const signatureMatchesEscapedSequence = verify(
       "development",
       toNormalizedJsonString({
         foo: "\\u001b",
@@ -117,8 +117,8 @@ describe("verifyWithFallback", () => {
     expect(verifyWithFallback).toBeInstanceOf(Function);
   });
 
-  test("verifyWithFallback(secret, eventPayload, signature, [bogus]) returns true", async () => {
-    const signatureMatches = await verifyWithFallback(
+  test("verifyWithFallback(secret, eventPayload, signature, [bogus]) returns true", () => {
+    const signatureMatches = verifyWithFallback(
       secret,
       eventPayload,
       signature,
@@ -127,8 +127,8 @@ describe("verifyWithFallback", () => {
     expect(signatureMatches).toBe(true);
   });
 
-  test("verifyWithFallback(bogus, eventPayload, signature, [secret]) returns true", async () => {
-    const signatureMatches = await verifyWithFallback(
+  test("verifyWithFallback(bogus, eventPayload, signature, [secret]) returns true", () => {
+    const signatureMatches = verifyWithFallback(
       "foo",
       eventPayload,
       signature,
@@ -137,8 +137,8 @@ describe("verifyWithFallback", () => {
     expect(signatureMatches).toBe(true);
   });
 
-  test("verify(bogus, eventPayload, signature, [bogus]) returns false", async () => {
-    const signatureMatches = await verifyWithFallback(
+  test("verify(bogus, eventPayload, signature, [bogus]) returns false", () => {
+    const signatureMatches = verifyWithFallback(
       "foo",
       eventPayload,
       signature,
