@phala/dstack-sdk/dist/node/verify-env-encrypt-public-key.js

dstack SDK

"use strict";
// SPDX-FileCopyrightText: © 2025 Phala Network <dstack@phala.network>
//
// SPDX-License-Identifier: Apache-2.0
Object.defineProperty(exports, "__esModule", { value: true });
exports.verifyEnvEncryptPublicKey = verifyEnvEncryptPublicKey;
const sha3_1 = require("@noble/hashes/sha3");
const secp256k1_1 = require("@noble/curves/secp256k1");
/**
 * Verify the signature of a public key.
 *
 * @param publicKey - The public key bytes to verify (32 bytes)
 * @param signature - The signature bytes (65 bytes)
 * @param appId - The application ID
 * @returns The compressed public key if valid, null otherwise
 *
 * @example
 * ```typescript
 * const publicKey = new Uint8Array(Buffer.from('e33a1832c6562067ff8f844a61e51ad051f1180b66ec2551fb0251735f3ee90a', 'hex'));
 * const signature = new Uint8Array(Buffer.from('8542c49081fbf4e03f62034f13fbf70630bdf256a53032e38465a27c36fd6bed7a5e7111652004aef37f7fd92fbfc1285212c4ae6a6154203a48f5e16cad2cef00', 'hex'));
 * const appId = '00'.repeat(20);
 * const compressedPubkey = verifySignature(publicKey, signature, appId);
 * console.log(compressedPubkey); // 0x0217610d74cbd39b6143842c6d8bc310d79da1d82cc9d17f8876376221eda0c38f
 * ```
 */
function verifyEnvEncryptPublicKey(publicKey, signature, appId) {
    if (signature.length !== 65) {
        return null;
    }
    // Create the message to verify
    const prefix = Buffer.from("dstack-env-encrypt-pubkey", "utf8");
    // Remove 0x prefix if present
    let cleanAppId = appId;
    if (appId.startsWith("0x")) {
        cleanAppId = appId.slice(2);
    }
    const appIdBytes = Buffer.from(cleanAppId, "hex");
    const separator = Buffer.from(":", "utf8");
    // Construct message: prefix + ":" + app_id + public_key
    const message = Buffer.concat([prefix, separator, appIdBytes, Buffer.from(publicKey)]);
    // Hash the message with Keccak-256
    const messageHash = (0, sha3_1.keccak_256)(message);
    try {
        // Extract r, s, v from signature (last byte is recovery id)
        const r = signature.slice(0, 32);
        const s = signature.slice(32, 64);
        const recovery = signature[64];
        // Create signature in DER format for secp256k1
        const sigBytes = new Uint8Array(64);
        sigBytes.set(r, 0);
        sigBytes.set(s, 32);
        // Recover the public key from the signature
        const recoveredPubKey = secp256k1_1.secp256k1.Signature.fromCompact(sigBytes)
            .addRecoveryBit(recovery)
            .recoverPublicKey(messageHash);
        // Return compressed public key with 0x prefix
        return '0x' + Buffer.from(recoveredPubKey.toRawBytes(true)).toString('hex');
    }
    catch (error) {
        console.error('signature verification failed:', error);
        return null;
    }
}
//# sourceMappingURL=verify-env-encrypt-public-key.js.map