UNPKG

@swtc/keypairs

Version:

swtc keypairs

github.com/swtcca/swtclib

swtcca/swtclib

84 lines 3.58 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
"use strict"; var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) { if (k2 === undefined) k2 = k; Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } }); }) : (function(o, m, k, k2) { if (k2 === undefined) k2 = k; o[k2] = m[k]; })); var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) { Object.defineProperty(o, "default", { enumerable: true, value: v }); }) : function(o, v) { o["default"] = v; }); var __importStar = (this && this.__importStar) || function (mod) { if (mod && mod.__esModule) return mod; var result = {}; if (mod != null) for (var k in mod) if (k !== "default" && Object.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k); __setModuleDefault(result, mod); return result; }; var __importDefault = (this && this.__importDefault) || function (mod) { return (mod && mod.__esModule) ? mod : { "default": mod }; }; Object.defineProperty(exports, "__esModule", { value: true }); exports.accountPublicFromPublicGenerator = exports.derivePrivateKey = void 0; const elliptic = __importStar(require("elliptic")); const sha512_1 = __importDefault(require("./sha512")); const secp256k1 = elliptic.ec("secp256k1"); // TODO: type of `discrim`? function deriveScalar(bytes, discrim) { const order = secp256k1.curve.n; for (let i = 0; i <= 0xffffffff; i++) { // We hash the bytes to find a 256 bit number, looping until we are sure it // is less than the order of the curve. const hasher = new sha512_1.default().add(bytes); // If the optional discriminator index was passed in, update the hash. if (discrim !== undefined) { hasher.addU32(discrim); } hasher.addU32(i); const key = hasher.first256BN(); if (key.cmpn(0) > 0 && key.cmp(order) < 0) { return key; } } throw new Error("impossible unicorn ;)"); } /** * @param {Array} seed - bytes * @param {Object} [opts] - object * @param {Number} [opts.accountIndex=0] - the account number to generate * @param {Boolean} [opts.validator=false] - generate root key-pair, * as used by validators. * @return {bn.js} - 256 bit scalar value * */ function derivePrivateKey(seed, opts = {}) { const root = opts.validator; const order = secp256k1.curve.n; // This private generator represents the `root` private key, and is what's // used by validators for signing when a keypair is generated from a seed. const privateGen = deriveScalar(seed); if (root) { // As returned by validation_create for a given seed return privateGen; } const publicGen = secp256k1.g.mul(privateGen); // A seed can generate many keypairs as a function of the seed and a uint32. // Almost everyone just uses the first account, `0`. const accountIndex = opts.accountIndex || 0; return deriveScalar(publicGen.encodeCompressed(), accountIndex) .add(privateGen) .mod(order); } exports.derivePrivateKey = derivePrivateKey; function accountPublicFromPublicGenerator(publicGenBytes) { const rootPubPoint = secp256k1.curve.decodePoint(publicGenBytes); const scalar = deriveScalar(publicGenBytes, 0); const point = secp256k1.g.mul(scalar); const offset = rootPubPoint.add(point); return offset.encodeCompressed(); } exports.accountPublicFromPublicGenerator = accountPublicFromPublicGenerator; //# sourceMappingURL=secp256k1.js.map