UNPKG

@opendatalabs/vana-sdk

Version:

A TypeScript library for interacting with Vana Network smart contracts.

github.com/vana-com/vana-sdk

vana-com/vana-sdk

1 lines 3.72 kB
1
{"version":3,"sources":["../../../src/crypto/keys/derive.ts"],"sourcesContent":["/**\n * HKDF-based key derivation for the Vana Data Portability Protocol.\n *\n * @remarks\n * Ported verbatim from `personal-server-ts` (`packages/core/src/keys/derive.ts`)\n * to keep wire compatibility with the locked DPv1 encryption scheme. The wallet\n * signature over `\"vana-master-key-v1\"` IS the master key material (spec §2.3),\n * and per-scope keys are derived via HKDF-SHA256 with `salt=\"vana\"` and\n * `info=\"scope:{scope}\"`.\n *\n * @category Cryptography\n */\n\nimport { hkdf } from \"@noble/hashes/hkdf\";\nimport { sha256 } from \"@noble/hashes/sha2\";\nimport { recoverMessageAddress } from \"viem\";\n\n/**\n * Canonical message signed by the user's wallet to derive the master key.\n *\n * @remarks\n * NOTE: kept in sync with personal-server-ts. The Vana team's encryption design\n * doc references `\"vana-master-encryption-v1\"`; this implementation uses the\n * shipping value to preserve wire compatibility.\n */\nexport const MASTER_KEY_MESSAGE = \"vana-master-key-v1\";\n\n/**\n * Extracts master key material from an EIP-191 signature over the master key\n * message. The raw 65 signature bytes ARE the master key material.\n *\n * @param signature - 0x-prefixed hex string (65 bytes = 130 hex chars + 0x).\n * @returns 65-byte Uint8Array containing the raw signature bytes.\n */\nexport function deriveMasterKey(signature: `0x${string}`): Uint8Array {\n const hex = signature.slice(2);\n\n if (hex.length !== 130) {\n throw new Error(\n `Invalid signature length: expected 130 hex chars (65 bytes), got ${hex.length}`,\n );\n }\n\n if (!/^[0-9a-fA-F]+$/.test(hex)) {\n throw new Error(\"Invalid signature: contains non-hex characters\");\n }\n\n const bytes = new Uint8Array(65);\n for (let i = 0; i < 65; i++) {\n bytes[i] = parseInt(hex.slice(i * 2, i * 2 + 2), 16);\n }\n return bytes;\n}\n\n/**\n * Recovers the server owner address from a master key signature using EIP-191\n * recovery over {@link MASTER_KEY_MESSAGE}.\n */\nexport async function recoverServerOwner(\n masterKeySignature: `0x${string}`,\n): Promise<`0x${string}`> {\n return recoverMessageAddress({\n message: MASTER_KEY_MESSAGE,\n signature: masterKeySignature,\n });\n}\n\n/**\n * Derives a scope-specific 32-byte key via HKDF-SHA256.\n *\n * @remarks\n * Uses `salt=\"vana\"` and `info=\"scope:{scope}\"` per spec §2.3.\n *\n * @param masterKey - 65-byte master key material from {@link deriveMasterKey}.\n * @param scope - Scope identifier (e.g. `\"instagram.profile\"`).\n * @returns 32-byte derived key suitable for symmetric encryption.\n */\nexport function deriveScopeKey(\n masterKey: Uint8Array,\n scope: string,\n): Uint8Array {\n const salt = new TextEncoder().encode(\"vana\");\n const info = new TextEncoder().encode(`scope:${scope}`);\n return hkdf(sha256, masterKey, salt, info, 32);\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAaA,kBAAqB;AACrB,kBAAuB;AACvB,kBAAsC;AAU/B,MAAM,qBAAqB;AAS3B,SAAS,gBAAgB,WAAsC;AACpE,QAAM,MAAM,UAAU,MAAM,CAAC;AAE7B,MAAI,IAAI,WAAW,KAAK;AACtB,UAAM,IAAI;AAAA,MACR,oEAAoE,IAAI,MAAM;AAAA,IAChF;AAAA,EACF;AAEA,MAAI,CAAC,iBAAiB,KAAK,GAAG,GAAG;AAC/B,UAAM,IAAI,MAAM,gDAAgD;AAAA,EAClE;AAEA,QAAM,QAAQ,IAAI,WAAW,EAAE;AAC/B,WAAS,IAAI,GAAG,IAAI,IAAI,KAAK;AAC3B,UAAM,CAAC,IAAI,SAAS,IAAI,MAAM,IAAI,GAAG,IAAI,IAAI,CAAC,GAAG,EAAE;AAAA,EACrD;AACA,SAAO;AACT;AAMA,eAAsB,mBACpB,oBACwB;AACxB,aAAO,mCAAsB;AAAA,IAC3B,SAAS;AAAA,IACT,WAAW;AAAA,EACb,CAAC;AACH;AAYO,SAAS,eACd,WACA,OACY;AACZ,QAAM,OAAO,IAAI,YAAY,EAAE,OAAO,MAAM;AAC5C,QAAM,OAAO,IAAI,YAAY,EAAE,OAAO,SAAS,KAAK,EAAE;AACtD,aAAO,kBAAK,oBAAQ,WAAW,MAAM,MAAM,EAAE;AAC/C;","names":[]}