UNPKG

@iden3/js-crypto

Version:

Crypto primitives for iden3

github.com/iden3/js-crypto

iden3/js-crypto

116 lines (94 loc) 2.54 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
import { babyJub } from './babyjub'; import { Eddsa, eddsa } from './eddsa'; import { Hex } from '../hex'; import { blake512 } from '@noble/hashes/blake1'; import { utils } from '../ff'; export class Signature { R8: [bigint, bigint]; S: bigint; constructor(r8: [bigint, bigint], s: bigint) { this.R8 = r8; this.S = s; } static newFromCompressed(buf: Uint8Array): Signature { if (buf.length !== 64) { throw new Error('buf must be 64 bytes'); } const sig = eddsa.unpackSignature(buf); if (sig.R8 == null) { throw new Error('unpackSignature failed'); } return new Signature(sig.R8, sig.S as bigint); } compress(): Uint8Array { return eddsa.packSignature(this); } toString(): string { return this.compress().toString(); } hex(): string { return Hex.encodeString(this.compress()); } } export class PublicKey { p: [bigint, bigint]; constructor(p: [bigint, bigint]) { this.p = p; } static newFromCompressed(buf: Uint8Array): PublicKey { if (buf.length !== 32) { throw new Error('buf must be 32 bytes'); } // const bufLE = utils.swapEndianness(buf); const p = babyJub.unpackPoint(buf); if (p == null) { throw new Error('unpackPoint failed'); } return new PublicKey(p); } static newFromHex(hexStr: string): PublicKey { const buff = Hex.decodeString(hexStr); return PublicKey.newFromCompressed(buff); } compress(): Uint8Array { // return utils.swapEndianness(babyJub.packPoint(this.p)); return babyJub.packPoint(this.p); } toString(): string { return this.compress().toString(); } hex(): string { return Hex.encodeString(this.compress()); } verifyPoseidon(msg: bigint, sig: Signature): boolean { return eddsa.verifyPoseidon(msg, sig, this.p); } } export class PrivateKey { private _sk: Uint8Array; constructor(buf: Uint8Array) { if (buf.length !== 32) { throw new Error('buf must be 32 bytes'); } this._sk = buf; } bigInt(): bigint { const h1 = blake512(this._sk); const sBuff = Eddsa.pruneBuffer(h1.slice(0, 32)); const s = utils.leBuff2int(sBuff); return s >> 3n; } toString(): string { return this._sk.toString(); } hex(): string { return Hex.encodeString(this._sk); } public(): PublicKey { return new PublicKey(eddsa.prv2pub(this._sk)); } signPoseidon(msg: bigint): Signature { const s = eddsa.signPoseidon(this._sk, msg); return new Signature(s.R8, s.S); } }