UNPKG

@polkadot/util-crypto

Version:

A collection of useful crypto utilities for @polkadot

github.com/polkadot-js/common/tree/master/packages/util-crypto

polkadot-js/common

29 lines (28 loc) 1.53 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.scryptFromU8a = scryptFromU8a; const util_1 = require("@polkadot/util"); const bn_js_1 = require("../bn.js"); const defaults_js_1 = require("./defaults.js"); function scryptFromU8a(data) { if (!(data instanceof Uint8Array)) { throw new Error('Expected input to be a Uint8Array'); } // Ensure the input is exactly 44 bytes: 32 for salt + 3 * 4 for N, p, r if (data.length < 32 + 12) { throw new Error(`Invalid input length: expected 44 bytes, found ${data.length}`); } const salt = data.subarray(0, 32); const N = (0, util_1.u8aToBn)(data.subarray(32, 36), bn_js_1.BN_LE_OPTS).toNumber(); const p = (0, util_1.u8aToBn)(data.subarray(36, 40), bn_js_1.BN_LE_OPTS).toNumber(); const r = (0, util_1.u8aToBn)(data.subarray(40, 44), bn_js_1.BN_LE_OPTS).toNumber(); // FIXME At this moment we assume these to be fixed params, this is not a great idea // since we lose flexibility and updates for greater security. However we need some // protection against carefully-crafted params that can eat up CPU since these are user // inputs. So we need to get very clever here, but atm we only allow the defaults // and if no match, bail out if (N !== defaults_js_1.DEFAULT_PARAMS.N || p !== defaults_js_1.DEFAULT_PARAMS.p || r !== defaults_js_1.DEFAULT_PARAMS.r) { throw new Error('Invalid injected scrypt params found'); } return { params: { N, p, r }, salt }; }