UNPKG

@hdwallet/core

Version:

A complete Hierarchical Deterministic (HD) Wallet generator for 200+ cryptocurrencies, built with TypeScript.

hdwallet.io

hdwallet-io/hdwallet.js

85 lines 3.87 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
"use strict"; // SPDX-License-Identifier: MIT Object.defineProperty(exports, "__esModule", { value: true }); exports.P2TRAddress = void 0; const segwit_bech32_1 = require("../libs/segwit-bech32"); const eccs_1 = require("../eccs"); const cryptocurrencies_1 = require("../cryptocurrencies"); const crypto_1 = require("../crypto"); const utils_1 = require("../utils"); const address_1 = require("./address"); class P2TRAddress extends address_1.Address { static hrp = cryptocurrencies_1.Bitcoin.NETWORKS.MAINNET.HRP; static fieldSize = BigInt(cryptocurrencies_1.Bitcoin.PARAMS.FIELD_SIZE); static tapTweakTagHash = (0, utils_1.getBytes)(cryptocurrencies_1.Bitcoin.PARAMS.TAP_TWEAK_SHA256); static witnessVersion = cryptocurrencies_1.Bitcoin.NETWORKS.MAINNET.WITNESS_VERSIONS.P2TR; static getName() { return 'P2TR'; } static taggedHash(tag, data) { const tagHash = typeof tag === 'string' ? (0, crypto_1.sha256)(tag) : tag; return (0, crypto_1.sha256)(new Uint8Array([...tagHash, ...tagHash, ...data])); } static hashTapTweak(pubKey) { const x = BigInt(pubKey.getPoint().getX()); return this.taggedHash(this.tapTweakTagHash, (0, utils_1.integerToBytes)(x)); } static liftX(pubKey) { const p = this.fieldSize; const x = BigInt(pubKey.getPoint().getX()); if (x >= p) throw new Error('Unable to compute LiftX point'); const xCubed = this.modPow(x, BigInt(3), p); const c = (xCubed + BigInt(7)) % p; const y = this.modularSqrt(c, p); const ySquared = this.modPow(y, BigInt(2), p); if (ySquared !== c) throw new Error('Unable to compute LiftX point'); const evenY = y % BigInt(2) === BigInt(0) ? y : p - y; return eccs_1.SLIP10Secp256k1Point.fromCoordinates(x, evenY); } static tweakPublicKey(pubKey) { const tweak = BigInt((0, utils_1.bytesToInteger)(this.hashTapTweak(pubKey))); const lifted = this.liftX(pubKey); const tweaked = lifted.add(eccs_1.SLIP10Secp256k1ECC.GENERATOR.multiply(tweak)); return (0, utils_1.integerToBytes)(BigInt(tweaked.getX())); } static encode(publicKey, options = { hrp: this.hrp, witnessVersion: this.witnessVersion }) { const pubKey = (0, eccs_1.validateAndGetPublicKey)(publicKey, eccs_1.SLIP10Secp256k1PublicKey); return (0, segwit_bech32_1.segwitEncode)(options.hrp ?? this.hrp, options.witnessVersion ?? this.witnessVersion, this.tweakPublicKey(pubKey)); } static decode(address, options = { hrp: this.hrp }) { const [witnessVersion, data] = (0, segwit_bech32_1.segwitDecode)(options.hrp ?? this.hrp, address); const expectedLength = eccs_1.SLIP10Secp256k1PublicKey.getCompressedLength() - 1; if (data?.length !== expectedLength) { throw new Error(`Invalid length (expected: ${expectedLength}, got: ${data?.length})`); } if (witnessVersion !== this.witnessVersion) { throw new Error(`Invalid witness version (expected: ${this.witnessVersion}, got: ${witnessVersion})`); } return (0, utils_1.bytesToString)(data); } static modPow(base, exponent, modulus) { if (modulus === BigInt(1)) return BigInt(0); let result = BigInt(1); base = base % modulus; while (exponent > BigInt(0)) { if (exponent % BigInt(2) === BigInt(1)) { result = (result * base) % modulus; } exponent = exponent >> BigInt(1); base = (base * base) % modulus; } return result; } static modularSqrt(a, p) { const exponent = (p + BigInt(1)) / BigInt(4); return this.modPow(a, exponent, p); } } exports.P2TRAddress = P2TRAddress; //# sourceMappingURL=p2tr.js.map