bitcoinjs-lib/src/ecpair.js

let ecdsa = require('./ecdsa')
let randomBytes = require('randombytes')
let typeforce = require('typeforce')
let types = require('./types')
let wif = require('wif')

let NETWORKS = require('./networks')
let BigInteger = require('bigi')

let ecurve = require('ecurve')
let secp256k1 = ecdsa.__curve

function ECPair (d, Q, options) {
  if (options) {
    typeforce({
      compressed: types.maybe(types.Boolean),
      network: types.maybe(types.Network)
    }, options)
  }

  options = options || {}

  if (d) {
    if (d.signum() <= 0) throw new Error('Private key must be greater than 0')
    if (d.compareTo(secp256k1.n) >= 0) throw new Error('Private key must be less than the curve order')
    if (Q) throw new TypeError('Unexpected publicKey parameter')

    this.d = d
  } else {
    typeforce(types.ECPoint, Q)

    this.__Q = Q
  }

  this.compressed = options.compressed === undefined ? true : options.compressed
  this.network = options.network || NETWORKS.bitcoin
}

Object.defineProperty(ECPair.prototype, 'Q', {
  get: function () {
    if (!this.__Q && this.d) {
      this.__Q = secp256k1.G.multiply(this.d)
    }

    return this.__Q
  }
})

ECPair.fromPublicKeyBuffer = function (buffer, network) {
  var Q = ecurve.Point.decodeFrom(secp256k1, buffer)

  return new ECPair(null, Q, {
    compressed: Q.compressed,
    network: network
  })
}

ECPair.fromWIF = function (string, network) {
  var decoded = wif.decode(string)
  var version = decoded.version

  // list of networks?
  if (types.Array(network)) {
    network = network.filter(function (x) {
      return version === x.wif
    }).pop()

    if (!network) throw new Error('Unknown network version')

  // otherwise, assume a network object (or default to bitcoin)
  } else {
    network = network || NETWORKS.bitcoin

    if (version !== network.wif) throw new Error('Invalid network version')
  }

  var d = BigInteger.fromBuffer(decoded.privateKey)

  return new ECPair(d, null, {
    compressed: decoded.compressed,
    network: network
  })
}

ECPair.makeRandom = function (options) {
  options = options || {}

  var rng = options.rng || randomBytes

  var d
  do {
    var buffer = rng(32)
    typeforce(types.Buffer256bit, buffer)

    d = BigInteger.fromBuffer(buffer)
  } while (d.signum() <= 0 || d.compareTo(secp256k1.n) >= 0)

  return new ECPair(d, null, options)
}

ECPair.prototype.getNetwork = function () {
  return this.network
}

ECPair.prototype.getPublicKeyBuffer = function () {
  return this.Q.getEncoded(this.compressed)
}

ECPair.prototype.sign = function (hash) {
  if (!this.d) throw new Error('Missing private key')

  let signature = ecdsa.sign(hash, this.d)
  return Buffer.concat([signature.r.toBuffer(32), signature.s.toBuffer(32)], 64)
}

ECPair.prototype.toWIF = function () {
  if (!this.d) throw new Error('Missing private key')

  return wif.encode(this.network.wif, this.d.toBuffer(32), this.compressed)
}

ECPair.prototype.verify = function (hash, signature) {
  signature = {
    r: BigInteger.fromBuffer(signature.slice(0, 32)),
    s: BigInteger.fromBuffer(signature.slice(32, 64))
  }

  return ecdsa.verify(hash, signature, this.Q)
}

module.exports = ECPair
rm getAddress 2018-05-22 09:43:25 +02:00			`let ecdsa = require('./ecdsa')`
			`let randomBytes = require('randombytes')`
			`let typeforce = require('typeforce')`
			`let types = require('./types')`
			`let wif = require('wif')`
add ECPair module 2014-10-17 04:31:01 +02:00
rm getAddress 2018-05-22 09:43:25 +02:00			`let NETWORKS = require('./networks')`
			`let BigInteger = require('bigi')`
add ECPair module 2014-10-17 04:31:01 +02:00
rm getAddress 2018-05-22 09:43:25 +02:00			`let ecurve = require('ecurve')`
			`let secp256k1 = ecdsa.__curve`
ECPair: stop exposing ECDSA curve 2015-08-19 07:12:55 +02:00
add ECPair module 2014-10-17 04:31:01 +02:00			`function ECPair (d, Q, options) {`
ECPair: stop exposing ECDSA curve 2015-08-19 07:12:55 +02:00			`if (options) {`
			`typeforce({`
			`compressed: types.maybe(types.Boolean),`
			`network: types.maybe(types.Network)`
			`}, options)`
			`}`
add ECPair module 2014-10-17 04:31:01 +02:00
ECPair: stop exposing ECDSA curve 2015-08-19 07:12:55 +02:00			`options = options \|\| {}`
add ECPair module 2014-10-17 04:31:01 +02:00
			`if (d) {`
add types 2015-08-11 09:01:47 +02:00			`if (d.signum() <= 0) throw new Error('Private key must be greater than 0')`
ECPair: stop exposing ECDSA curve 2015-08-19 07:12:55 +02:00			`if (d.compareTo(secp256k1.n) >= 0) throw new Error('Private key must be less than the curve order')`
add types 2015-08-11 09:01:47 +02:00			`if (Q) throw new TypeError('Unexpected publicKey parameter')`
add ECPair module 2014-10-17 04:31:01 +02:00
ECPair: lazily calculate Q 2015-03-19 03:25:41 +01:00			`this.d = d`
add ECPair module 2014-10-17 04:31:01 +02:00			`} else {`
add types 2015-08-11 09:01:47 +02:00			`typeforce(types.ECPoint, Q)`

ECPair: lazily calculate Q 2015-03-19 03:25:41 +01:00			`this.__Q = Q`
add ECPair module 2014-10-17 04:31:01 +02:00			`}`

add types 2015-08-11 09:01:47 +02:00			`this.compressed = options.compressed === undefined ? true : options.compressed`
			`this.network = options.network \|\| NETWORKS.bitcoin`
add ECPair module 2014-10-17 04:31:01 +02:00			`}`

ECPair: lazily calculate Q 2015-03-19 03:25:41 +01:00			`Object.defineProperty(ECPair.prototype, 'Q', {`
standard formatting fixes 2015-03-19 03:35:25 +01:00			`get: function () {`
ECPair: lazily calculate Q 2015-03-19 03:25:41 +01:00			`if (!this.__Q && this.d) {`
ECPair: stop exposing ECDSA curve 2015-08-19 07:12:55 +02:00			`this.__Q = secp256k1.G.multiply(this.d)`
ECPair: lazily calculate Q 2015-03-19 03:25:41 +01:00			`}`

			`return this.__Q`
			`}`
			`})`

add ECPair module 2014-10-17 04:31:01 +02:00			`ECPair.fromPublicKeyBuffer = function (buffer, network) {`
ECPair: stop exposing ECDSA curve 2015-08-19 07:12:55 +02:00			`var Q = ecurve.Point.decodeFrom(secp256k1, buffer)`
add ECPair module 2014-10-17 04:31:01 +02:00
			`return new ECPair(null, Q, {`
			`compressed: Q.compressed,`
			`network: network`
			`})`
			`}`

ECPair: extract WIF to 3rd party module 2015-08-20 12:16:57 +02:00			`ECPair.fromWIF = function (string, network) {`
ECPair: don't depend on WIF error message, avoid unnecessary import 2016-04-27 09:05:33 +02:00			`var decoded = wif.decode(string)`
			`var version = decoded.version`
add ECPair module 2014-10-17 04:31:01 +02:00
ecpair/hdnode: fix network variable shadowing 2017-01-06 03:41:51 +01:00			`// list of networks?`
ECPair: extract WIF to 3rd party module 2015-08-20 12:16:57 +02:00			`if (types.Array(network)) {`
ecpair/hdnode: fix network variable shadowing 2017-01-06 03:41:51 +01:00			`network = network.filter(function (x) {`
			`return version === x.wif`
Update wif to 2.0.1 2016-02-24 11:08:40 +01:00			`}).pop()`
ECPair/HDNode: missing version from list is Unknown, not Invalid 2016-02-25 03:48:29 +01:00
			`if (!network) throw new Error('Unknown network version')`
ECPair: don't depend on WIF error message, avoid unnecessary import 2016-04-27 09:05:33 +02:00
ecpair/hdnode: fix network variable shadowing 2017-01-06 03:41:51 +01:00			`// otherwise, assume a network object (or default to bitcoin)`
ECPair: no elseif needed, move default for clarity 2016-04-27 10:04:35 +02:00			`} else {`
			`network = network \|\| NETWORKS.bitcoin`

ECPair: don't depend on WIF error message, avoid unnecessary import 2016-04-27 09:05:33 +02:00			`if (version !== network.wif) throw new Error('Invalid network version')`
ECPair: support strict network syntax 2015-07-28 08:42:57 +02:00			`}`

Update wif to 2.0.1 2016-02-24 11:08:40 +01:00			`var d = BigInteger.fromBuffer(decoded.privateKey)`
add ECPair module 2014-10-17 04:31:01 +02:00
			`return new ECPair(d, null, {`
ECPair: extract WIF to 3rd party module 2015-08-20 12:16:57 +02:00			`compressed: decoded.compressed,`
add ECPair module 2014-10-17 04:31:01 +02:00			`network: network`
			`})`
			`}`

			`ECPair.makeRandom = function (options) {`
			`options = options \|\| {}`

			`var rng = options.rng \|\| randomBytes`

ECPair: fix modulo bias in makeRandom 2015-08-21 08:46:18 +02:00			`var d`
			`do {`
			`var buffer = rng(32)`
			`typeforce(types.Buffer256bit, buffer)`

			`d = BigInteger.fromBuffer(buffer)`
ECPair: enforce <= 0, not just === 2015-09-08 16:35:54 +02:00			`} while (d.signum() <= 0 \|\| d.compareTo(secp256k1.n) >= 0)`
add ECPair module 2014-10-17 04:31:01 +02:00
			`return new ECPair(d, null, options)`
			`}`

ECPair/HDNode: adds getNetwork 2015-09-21 09:37:21 +02:00			`ECPair.prototype.getNetwork = function () {`
			`return this.network`
			`}`

add ECPair module 2014-10-17 04:31:01 +02:00			`ECPair.prototype.getPublicKeyBuffer = function () {`
			`return this.Q.getEncoded(this.compressed)`
			`}`

			`ECPair.prototype.sign = function (hash) {`
ECPair: remove use of assert 2015-08-11 09:03:10 +02:00			`if (!this.d) throw new Error('Missing private key')`
add ECPair module 2014-10-17 04:31:01 +02:00
ECPair/script_signature: switch to 64-byte RS buffers only 2018-05-15 02:07:11 +02:00			`let signature = ecdsa.sign(hash, this.d)`
			`return Buffer.concat([signature.r.toBuffer(32), signature.s.toBuffer(32)], 64)`
add ECPair module 2014-10-17 04:31:01 +02:00			`}`

ECPair: extract WIF to 3rd party module 2015-08-20 12:16:57 +02:00			`ECPair.prototype.toWIF = function () {`
			`if (!this.d) throw new Error('Missing private key')`

			`return wif.encode(this.network.wif, this.d.toBuffer(32), this.compressed)`
			`}`

add ECPair module 2014-10-17 04:31:01 +02:00			`ECPair.prototype.verify = function (hash, signature) {`
ECPair/script_signature: switch to 64-byte RS buffers only 2018-05-15 02:07:11 +02:00			`signature = {`
			`r: BigInteger.fromBuffer(signature.slice(0, 32)),`
			`s: BigInteger.fromBuffer(signature.slice(32, 64))`
			`}`

ecdsa: remove curve parameter 2015-08-25 12:43:32 +02:00			`return ecdsa.verify(hash, signature, this.Q)`
add ECPair module 2014-10-17 04:31:01 +02:00			`}`

			`module.exports = ECPair`