@swtc/keypairs/cjs/sm2p256v1.js

swtc keypairs

"use strict";
var __importDefault = (this && this.__importDefault) || function (mod) {
    return (mod && mod.__esModule) ? mod : { "default": mod };
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.accountPublicFromPublicGenerator = exports.derivePrivateKey = void 0;
const sm_js_1 = require("@swtc/sm.js");
const common_1 = require("@swtc/common");
const bn_js_1 = __importDefault(require("bn.js"));
// TODO: type of `discrim`?
function deriveScalar(bytes, discrim) {
    const order = sm_js_1.sm2.curve.n;
    for (let i = 0; i <= 0xffffffff; i++) {
        // We hash the bytes to find a 256 bit number, looping until we are sure it
        // is less than the order of the curve.
        const hasher = discrim !== undefined ? Buffer.alloc(41) : Buffer.alloc(20);
        hasher.fill(Buffer.from(bytes), 0, bytes.length);
        // If the optional discriminator index was passed in, update the hash.
        if (discrim !== undefined) {
            hasher.writeUIntBE(discrim, bytes.length, 4);
            hasher.writeUIntBE(i, bytes.length + 4, 4);
        }
        hasher.writeUIntBE(i, bytes.length, 4);
        const hasher2 = new common_1.SM3().update(hasher).digest("hex"); // (V)
        const key = new bn_js_1.default(hasher2, "hex");
        if (key.cmpn(0) > 0 && key.cmp(order) < 0) {
            return key;
        }
    }
    throw new Error("impossible unicorn ;)");
}
/**
 * @param {Array} seed - bytes
 * @param {Object} [opts] - object
 * @param {Number} [opts.accountIndex=0] - the account number to generate
 * @param {Boolean} [opts.validator=false] - generate root key-pair,
 *                                              as used by validators.
 * @return {bn.js} - 256 bit scalar value
 *
 */
function derivePrivateKey(seed, opts = {}) {
    const root = opts.validator;
    const order = sm_js_1.sm2.curve.n;
    // This private generator represents the `root` private key, and is what's
    // used by validators for signing when a keypair is generated from a seed.
    const privateGen = deriveScalar(seed);
    if (root) {
        // As returned by validation_create for a given seed
        return privateGen;
    }
    const publicGen = sm_js_1.sm2.curve.g.mul(privateGen);
    // A seed can generate many keypairs as a function of the seed and a uint32.
    // Almost everyone just uses the first account, `0`.
    const accountIndex = opts.accountIndex || 0;
    return deriveScalar(publicGen.encodeCompressed(), accountIndex)
        .add(privateGen)
        .mod(order);
}
exports.derivePrivateKey = derivePrivateKey;
function accountPublicFromPublicGenerator(publicGenBytes) {
    const rootPubPoint = sm_js_1.sm2.curve.decodePoint(publicGenBytes);
    const scalar = deriveScalar(publicGenBytes, 0);
    const point = sm_js_1.sm2.curve.g.mul(scalar);
    const offset = rootPubPoint.add(point);
    return offset.encodeCompressed();
}
exports.accountPublicFromPublicGenerator = accountPublicFromPublicGenerator;
//# sourceMappingURL=sm2p256v1.js.map