39bd08002b
Add low R value signing as option to ECPair.sign
146 lines
3.9 KiB
TypeScript
146 lines
3.9 KiB
TypeScript
import { Network } from './networks';
|
|
import * as NETWORKS from './networks';
|
|
import * as types from './types';
|
|
const ecc = require('tiny-secp256k1');
|
|
const randomBytes = require('randombytes');
|
|
const typeforce = require('typeforce');
|
|
const wif = require('wif');
|
|
|
|
const isOptions = typeforce.maybe(
|
|
typeforce.compile({
|
|
compressed: types.maybe(types.Boolean),
|
|
network: types.maybe(types.Network),
|
|
}),
|
|
);
|
|
|
|
interface ECPairOptions {
|
|
compressed?: boolean;
|
|
network?: Network;
|
|
rng?(arg0: number): Buffer;
|
|
}
|
|
|
|
export interface ECPairInterface {
|
|
compressed: boolean;
|
|
network: Network;
|
|
publicKey: Buffer;
|
|
privateKey?: Buffer;
|
|
toWIF(): string;
|
|
sign(hash: Buffer, lowR?: boolean): Buffer;
|
|
verify(hash: Buffer, signature: Buffer): boolean;
|
|
getPublicKey?(): Buffer;
|
|
}
|
|
|
|
class ECPair implements ECPairInterface {
|
|
compressed: boolean;
|
|
network: Network;
|
|
|
|
constructor(
|
|
private __D?: Buffer,
|
|
private __Q?: Buffer,
|
|
options?: ECPairOptions,
|
|
) {
|
|
if (options === undefined) options = {};
|
|
this.compressed =
|
|
options.compressed === undefined ? true : options.compressed;
|
|
this.network = options.network || NETWORKS.bitcoin;
|
|
|
|
if (__Q !== undefined) this.__Q = ecc.pointCompress(__Q, this.compressed);
|
|
}
|
|
|
|
get privateKey(): Buffer | undefined {
|
|
return this.__D;
|
|
}
|
|
|
|
get publicKey(): Buffer {
|
|
if (!this.__Q)
|
|
this.__Q = ecc.pointFromScalar(this.__D, this.compressed) as Buffer;
|
|
return this.__Q;
|
|
}
|
|
|
|
toWIF(): string {
|
|
if (!this.__D) throw new Error('Missing private key');
|
|
return wif.encode(this.network.wif, this.__D, this.compressed);
|
|
}
|
|
|
|
sign(hash: Buffer, lowR: boolean = false): Buffer {
|
|
if (!this.__D) throw new Error('Missing private key');
|
|
if (lowR === false) {
|
|
return ecc.sign(hash, this.__D);
|
|
} else {
|
|
let sig = ecc.sign(hash, this.__D);
|
|
const extraData = Buffer.alloc(32, 0);
|
|
let counter = 0;
|
|
// if first try is lowR, skip the loop
|
|
// for second try and on, add extra entropy counting up
|
|
while (sig[0] > 0x7f) {
|
|
counter++;
|
|
extraData.writeUIntLE(counter, 0, 6);
|
|
sig = ecc.signWithEntropy(hash, this.__D, extraData);
|
|
}
|
|
return sig;
|
|
}
|
|
}
|
|
|
|
verify(hash: Buffer, signature: Buffer): boolean {
|
|
return ecc.verify(hash, this.publicKey, signature);
|
|
}
|
|
}
|
|
|
|
function fromPrivateKey(buffer: Buffer, options?: ECPairOptions): ECPair {
|
|
typeforce(types.Buffer256bit, buffer);
|
|
if (!ecc.isPrivate(buffer))
|
|
throw new TypeError('Private key not in range [1, n)');
|
|
typeforce(isOptions, options);
|
|
|
|
return new ECPair(buffer, undefined, options);
|
|
}
|
|
|
|
function fromPublicKey(buffer: Buffer, options?: ECPairOptions): ECPair {
|
|
typeforce(ecc.isPoint, buffer);
|
|
typeforce(isOptions, options);
|
|
return new ECPair(undefined, buffer, options);
|
|
}
|
|
|
|
function fromWIF(wifString: string, network?: Network | Network[]): ECPair {
|
|
const decoded = wif.decode(wifString);
|
|
const version = decoded.version;
|
|
|
|
// list of networks?
|
|
if (types.Array(network)) {
|
|
network = (network as Network[])
|
|
.filter((x: Network) => {
|
|
return version === x.wif;
|
|
})
|
|
.pop() as Network;
|
|
|
|
if (!network) throw new Error('Unknown network version');
|
|
|
|
// otherwise, assume a network object (or default to bitcoin)
|
|
} else {
|
|
network = network || NETWORKS.bitcoin;
|
|
|
|
if (version !== (network as Network).wif)
|
|
throw new Error('Invalid network version');
|
|
}
|
|
|
|
return fromPrivateKey(decoded.privateKey, {
|
|
compressed: decoded.compressed,
|
|
network: network as Network,
|
|
});
|
|
}
|
|
|
|
function makeRandom(options?: ECPairOptions): ECPair {
|
|
typeforce(isOptions, options);
|
|
if (options === undefined) options = {};
|
|
const rng = options.rng || randomBytes;
|
|
|
|
let d;
|
|
do {
|
|
d = rng(32);
|
|
typeforce(types.Buffer256bit, d);
|
|
} while (!ecc.isPrivate(d));
|
|
|
|
return fromPrivateKey(d, options);
|
|
}
|
|
|
|
export { makeRandom, fromPrivateKey, fromPublicKey, fromWIF };
|