Package Exports

hash-wasm

This package does not declare an exports field, so the exports above have been automatically detected and optimized by JSPM instead. If any package subpath is missing, it is recommended to post an issue to the original package (hash-wasm) to support the "exports" field. If that is not possible, create a JSPM override to customize the exports field for this package.

Readme

hash-wasm

Hash-WASM is a ⚡lightning fast⚡ and portable hash function library. It is using hand-tuned WebAssembly binaries to calculate the hash faster than other libraries.

Supported algorithms

Argon2: Argon2d, Argon2i, Argon2id (v1.3)
BLAKE2b
CRC32
HMAC (with all hash algorithms)
MD4, MD5
PBKDF2 (with all hash algorithms)
RIPEMD-160
SHA-1
SHA-2: SHA-224, SHA-256, SHA-384, SHA-512
SHA-3: SHA3-224, SHA3-256, SHA3-384, SHA3-512
Keccak: Keccak-224, Keccak-256, Keccak-384, Keccak-512
xxHash: xxHash32, xxHash64

Features

A lot faster than other JS / WASM implementations (see benchmarks below)
Compiled from heavily optimized algorithms written in C
Supports all modern browsers and Node.js
Supports large data streams
Supports UTF-8 strings and typed arrays
Supports chunked input streams
Works without Webpack or other bundlers
WASM modules are bundled as base64 strings (no problems with linking)
Supports tree shaking (it only bundles the hash algorithms you need)
It's lightweight. Including a single algorithm increases the bundle size with only 10-20KB
Includes TypeScript type definitions
Works in Web Workers
Zero dependencies
Supports concurrent hash calculations with multiple states
Unit tests for all algorithms
100% open source & transparent build process
Easy to use, synchronous API

Installation

npm i hash-wasm

or it can be inserted directly into HTML (via jsDelivr)

<script src="https://cdn.jsdelivr.net/npm/hash-wasm@4"></script>
<!-- defines the global `hashwasm` variable -->

Examples

Demo apps

Hash calculator - source code

MD5 file hasher using HTML5 File API

Usage with the shorthand form

It is the easiest and the fastest way to calculate hashes. Use it when the input buffer is already in the memory.

import { md5, sha1, sha512, sha3 } from 'hash-wasm';

console.log('MD5:', md5('demo'));

const int8Buffer = new Uint8Array([0, 1, 2, 3]);
console.log('SHA1:', sha1(int8Buffer));
console.log('SHA512:', sha512(int8Buffer));

const int32Buffer = new Uint32Array([1056, 641]);
console.log('SHA3-256:', sha3(int32Buffer, 256));

* See API reference

Advanced usage with streaming input

createXXXX() functions create new WASM instances with separate states, which can be used to calculate multiple hashes paralelly. They are slower compared to shorthand functions like md5(), which reuse the same WASM instance and state to do multiple calculations. For this reason, the shorthand form is always preferred when the data is already in the memory.

For the best performance, avoid calling createXXXX() functions in loops. When calculating multiple hashes sequentially, the init() function can be used to reset the internal state between runs. It is faster than creating new instances with createXXXX().

import { createSHA1 } from 'hash-wasm';

const sha1 = createSHA1();
sha1.init();

while (hasMoreData()) {
  const chunk = readChunk();
  sha1.update(chunk);
}

const hash = sha1.digest('binary'); // returns Uint8Array
console.log('SHA1:', hash);

* See API reference

Calculating Argon2

The recommended process for choosing the parameters can be found here: https://tools.ietf.org/html/draft-irtf-cfrg-argon2-04#section-4

import { argon2id } from 'hash-wasm';

const salt = new Uint8Array(16);
window.crypto.getRandomValues(salt);

const key = argon2id({
  password: 'pass',
  salt, // salt is a buffer containing random bytes
  parallelism: 1,
  iterations: 256,
  memorySize: 512, // use 512KB memory
  hashLength: 32, // output size = 32 bytes
  outputType: 'encoded', // return standard encoded string containing parameters needed to verify the key
});

console.log('Derived key:', key);

* See API reference

Calculating HMAC

All supported hash functions can be used to calculate HMAC. For the best performance, avoid calling createXXXX() in loops (see Advanced usage with streaming input section above)

import { createHMAC, createSHA3 } from 'hash-wasm';

const hmac = createHMAC(createSHA3(224), 'key'); // HMAC-SHA3-224

const fruits = ['apple', 'raspberry', 'watermelon'];
console.log('Input:', fruits);

const codes = fruits.map(data => {
  hmac.init();
  hmac.update(data);
  return hmac.digest();
});

console.log('HMAC:', codes);

* See API reference

Calculating PBKDF2

All supported hash functions can be used to calculate PBKDF2. For the best performance, avoid calling createXXXX() in loops (see Advanced usage with streaming input section above)

import { pbkdf2, createSHA1 } from 'hash-wasm';

const salt = new Uint8Array(16);
window.crypto.getRandomValues(salt);

const key = pbkdf2({
  password: 'password',
  salt,
  iterations: 1000,
  hashLength: 32,
  hashFunction: createSHA1(),
  outputType: 'hex',
});

console.log('Derived key:', key);

* See API reference

Browser support

Chrome	Safari	Firefox	Edge	IE	Node.js
57+	11+	53+	16+	Not supported	8+

Benchmark

You can make your own measurements here: link

The source code for the benchmark can be found here

Two scenarios were measured:

throughput with the short form (input size = 32 bytes)
throughput with the short form (input size = 1MB)

Results:

MD5	throughput (32 bytes)	throughput (1MB)
hash-wasm 3.7.0	29.65 MB/s	611.04 MB/s
md5-wasm 0.9.1 (npm library)	14.50 MB/s	76.66 MB/s
spark-md5 0.9.1 (npm library)	9.46 MB/s	19.17 MB/s
md5 2.2.1 (npm library)	7.45 MB/s	11.96 MB/s
node-forge 0.9.1 (npm library)	5.50 MB/s	11.78 MB/s

SHA1	throughput (32 bytes)	throughput (1MB)
hash-wasm 3.7.0	25.64 MB/s	642.54 MB/s
jsSHA 3.1.0 (npm library)	5.45 MB/s	46.98 MB/s
crypto-js 4.0.0 (npm library)	6.81 MB/s	18.56 MB/s
sha1 1.1.1 (npm library)	6.65 MB/s	13.37 MB/s
node-forge 0.9.1 (npm library)	6.38 MB/s	12.29 MB/s

SHA256	throughput (32 bytes)	throughput (1MB)
hash-wasm 3.7.0	21.63 MB/s	259.93 MB/s
sha256-wasm 2.0.3 (npm library)	5.59 MB/s	166.07 MB/s
jsSHA 3.1.0 (npm library)	4.71 MB/s	36.44 MB/s
crypto-js 4.0.0 (npm library)	5.90 MB/s	18.13 MB/s
node-forge 0.9.1 (npm library)	3.74 MB/s	11.37 MB/s

SHA3-512	throughput (32 bytes)	throughput (1MB)
hash-wasm 3.7.0	16.56 MB/s	179.05 MB/s
sha3 2.1.3 (npm library)	1.38 MB/s	6.61 MB/s
jsSHA 3.1.0 (npm library)	0.86 MB/s	2.06 MB/s

XXHash64	throughput (32 bytes)	throughput (1MB)
hash-wasm 3.7.0	27.10 MB/s	11715.15 MB/s
xxhash-wasm 0.4.0 (npm library)	0.09 MB/s	56.39 MB/s
xxhashjs 0.2.2 (npm library)	0.36 MB/s	18.12 MB/s

PBKDF2-SHA512 - 1000 iterations	operations per second (16 bytes)
hash-wasm 3.7.0	208 ops
pbkdf2 3.1.1 (npm library)	56 ops
crypto-js 4.0.0 (npm library)	7 ops

Argon2id (m=512, t=8, p=1)	operations per second (16 bytes)
hash-wasm 3.7.0	243 ops
argon2-wasm 0.9.0 (npm library)	103 ops
argon2-wasm-pro 1.1.0 (npm library)	102 ops

* These measurements were made with Chrome v84 on a Kaby Lake desktop CPU.

API

type IDataType = string | Buffer | Uint8Array | Uint16Array | Uint32Array;

// all functions return hash in hex format
blake2b(data: IDataType, bits?: number, key?: IDataType): string // default is 512 bits
crc32(data: IDataType): string
keccak(data: IDataType, bits?: 224 | 256 | 384 | 512): string // default is 512 bits
md4(data: IDataType): string
md5(data: IDataType): string
ripemd160(data: IDataType): string
sha1(data: IDataType): string
sha224(data: IDataType): string
sha256(data: IDataType): string
sha3(data: IDataType, bits?: 224 | 256 | 384 | 512): string // default is 512 bits
sha384(data: IDataType): string
sha512(data: IDataType): string
xxhash32(data: IDataType, seed?: number): string
xxhash64(data: IDataType, seedLow?: number, seedHigh?: number): string

interface IHasher {
  init: () => IHasher;
  update: (data: IDataType) => IHasher;
  digest: (outputType: 'hex' | 'binary') => string | Uint8Array; // by default returns hex string
  blockSize: number; // in bytes
  digestSize: number; // in bytes
}

createBLAKE2b(bits?: number, key?: IDataType): IHasher // default is 512 bits
createCRC32(): IHasher
createKeccak(bits?: 224 | 256 | 384 | 512): IHasher // default is 512 bits
createMD4(): IHasher
createMD5(): IHasher
createRIPEMD160(): IHasher
createSHA1(): IHasher
createSHA224(): IHasher
createSHA256(): IHasher
createSHA3(bits?: 224 | 256 | 384 | 512): IHasher // default is 512 bits
createSHA384(): IHasher
createSHA512(): IHasher
createXXHash32(seed: number): IHasher
createXXHash64(seedLow: number, seedHigh: number): IHasher

createHMAC(hashFunction: IHasher, key: IDataType): IHasher

pbkdf2({
  password: IDataType, // password (or message) to be hashed
  salt: IDataType, // salt
  iterations: number, // number of iterations to perform
  hashLength: number, // output size in bytes
  hashFunction: IHasher, // the return value of a function like createSHA1()
  outputType: 'hex' | 'binary', // by default returns hex string
}): string | Uint8Array

interface IArgon2Options {
  password: IDataType; // password (or message) to be hashed
  salt: IDataType; // salt (usually containing random bytes)
  iterations: number; // number of iterations to perform
  parallelism: number; // degree of parallelism
  memorySize: number; // amount of memory to be used in kibibytes (1024 bytes)
  hashLength: number; // output size in bytes
  outputType?: 'hex' | 'binary' | 'encoded'; // by default returns hex string
}

argon2i(options: IArgon2Options): string | Uint8Array
argon2d(options: IArgon2Options): string | Uint8Array
argon2id(options: IArgon2Options): string | Uint8Array

Future plans

Write a helper function, which allows calculating the hashes in different threads using WebWorkers and Worker Threads
Write a polyfill which keeps bundle sizes low and enables running binaries containing newer WASM instructions
Use WebAssembly Bulk Memory Operations
Use WebAssembly SIMD instructions (expecting a 10-20% performance increase)
Enable multithreading where it's possible (like at Argon2)
Add more algorithms