UNPKG

@hashgraph/cryptography

Version:

Cryptographic utilities and primitives for the Hiero SDK

github.com/hiero-ledger/hiero-sdk-js

hiero-ledger/hiero-sdk-js

115 lines (97 loc) 3.14 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
import { keccak256 } from "./keccak.js"; import * as hex from "../encoding/hex.js"; import { secp256k1 } from "@noble/curves/secp256k1"; import { equalBytes } from "./utils.js"; /** * @typedef {import("../EcdsaPrivateKey.js").KeyPair} KeyPair */ /** * @returns {KeyPair} */ export function generate() { const privateKey = secp256k1.utils.randomPrivateKey(); const publicKey = secp256k1.getPublicKey(privateKey, true); return { privateKey, publicKey, }; } /** * @returns {Promise<KeyPair>} */ // eslint-disable-next-line @typescript-eslint/no-unused-vars export async function generateAsync() { return Promise.resolve(generate()); } /** * @param {Uint8Array} data * @returns {KeyPair} */ // eslint-disable-next-line @typescript-eslint/no-unused-vars export function fromBytes(data) { const privateKey = new Uint8Array(data); const publicKey = secp256k1.getPublicKey(privateKey, true); return { privateKey: privateKey, publicKey: publicKey, }; } /** * @param {Uint8Array} data * @returns {Uint8Array} */ // eslint-disable-next-line @typescript-eslint/no-unused-vars export function getFullPublicKey(data) { return secp256k1.getPublicKey(data, false); } /** * @param {Uint8Array} keydata * @param {Uint8Array} message * @returns {Uint8Array} */ // eslint-disable-next-line @typescript-eslint/no-unused-vars export function sign(keydata, message) { const msg = hex.encode(message); const data = hex.decode(keccak256(`0x${msg}`)); const signature = secp256k1.sign(data, keydata); return signature.toCompactRawBytes(); } /** * @param {Uint8Array} keydata * @param {Uint8Array} message * @param {Uint8Array} signature * @returns {boolean} */ // eslint-disable-next-line @typescript-eslint/no-unused-vars export function verify(keydata, message, signature) { const msg = hex.encode(message); const data = hex.decode(keccak256(`0x${msg}`)); const r = BigInt("0x" + hex.encode(signature.subarray(0, 32))); const s = BigInt("0x" + hex.encode(signature.subarray(32, 64))); return secp256k1.verify({ r, s }, data, keydata); } /** * @param {Uint8Array} privateKey * @param {Uint8Array} signature - 64-byte compact signature (r || s) * @param {Uint8Array} message - Original message (not hashed) * @returns {number} Recovery ID (0–3), or -1 */ export function getRecoveryId(privateKey, signature, message) { const expectedPubKey = secp256k1.getPublicKey(privateKey, false); const hash = hex.decode(keccak256(`0x${hex.encode(message)}`)); for (let recovery = 0; recovery < 4; recovery++) { try { const sig = secp256k1.Signature.fromCompact(signature).addRecoveryBit( recovery, ); const recovered = sig.recoverPublicKey(hash).toRawBytes(false); if (equalBytes(recovered, expectedPubKey)) { return recovery; } } catch { // Ignore invalid recoveries } } throw new Error("Unexpected error: could not construct a recoverable key."); }