UNPKG

@node-dlc/crypto

Version:

Lightning cryptography utilities

github.com/atomicfinance/node-dlc/tree/master/packages/crypto

atomicfinance/node-dlc

53 lines (47 loc) 1.59 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
import crypto from 'crypto'; /** * HMAC-based Extact and Expand Key Derivation Function (HKDF) * that complies with RFC 5869. * * @remarks * Refer to https://tools.ietf.org/html/rfc5869 for detailed information. * * The current implementation only supports up to 254 expansion rounds for * a total of 255 rounds. * * @param ikm initial key material, variable length * @param len output key material length * @param salt optional, defaults to none * @param info optional, defaults to none * @param hash optional, defaults to sha256 * @returns output key material of specified length */ export function hkdf( ikm: Buffer, len: number, salt: Buffer = Buffer.alloc(0), info: Buffer = Buffer.alloc(0), hash = 'sha256', ): Buffer { // extract step const prk = hmacHash(salt, ikm, hash); // expand const n = Math.ceil(len / prk.byteLength); // validate we don't overflow iteration counter buffer. // Note that we can support larger values but will need // to modify how the integer byte is constructed, additionally // the specification does not specify the endianness of the counter if (n > 255) throw new Error('Output length exceeds maximum'); const t = [Buffer.alloc(0)]; for (let i = 1; i <= n; i++) { const tp = t[t.length - 1]; const bi = Buffer.from([i]); t.push(hmacHash(prk, Buffer.concat([tp, info, bi]), hash)); } return Buffer.concat(t.slice(1)).slice(0, len); } function hmacHash(key: Buffer, input: Buffer, hash: string) { const hmac = crypto.createHmac(hash, key); hmac.update(input); return hmac.digest(); }