UNPKG

@yubing744/rooch-sdk

Version:

Rooch SDK

github.com/rooch-network/rooch

rooch-network/rooch

173 lines (152 loc) 5.57 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
// Copyright (c) RoochNetwork // SPDX-License-Identifier: Apache-2.0 import nacl from 'tweetnacl' import type { ExportedKeypair } from '../../crypto/keypair' import { Ed25519PublicKey } from './publickey' import { isValidHardenedPath, mnemonicToSeedHex } from '../../crypto/mnemonics' import { derivePath } from './ed25519-hd-key' import { toB64 } from '../../../types/bcs' import type { SignatureScheme } from '../../crypto/signature' import { PRIVATE_KEY_SIZE, Keypair } from '../../crypto/keypair' // eslint-disable-next-line quotes export const DEFAULT_ED25519_DERIVATION_PATH = "m/44'/784'/0'/0'/0'" export const DEFAULT_ED25519_SCHEMAS = 'ED25519' /** * Ed25519 Keypair data. The publickey is the 32-byte public key and * the secretkey is 64-byte, where the first 32 bytes is the secret * key and the last 32 bytes is the public key. */ export interface Ed25519KeypairData { publicKey: Uint8Array secretKey: Uint8Array } /** * An Ed25519 Keypair used for signing transactions. */ export class Ed25519Keypair extends Keypair { private keypair: Ed25519KeypairData private scheme: SignatureScheme /** * Create a new Ed25519 keypair instance. * Generate random keypair if no {@link Ed25519Keypair} is provided. * * @param keypair Ed25519 keypair */ constructor(keypair?: Ed25519KeypairData) { super() if (keypair) { this.keypair = keypair } else { this.keypair = nacl.sign.keyPair() } this.scheme = 'ED25519' } /** * Get the key scheme of the keypair ED25519 */ getKeyScheme(): SignatureScheme { return this.scheme } /** * Generate a new random Ed25519 keypair */ static generate(): Ed25519Keypair { return new Ed25519Keypair(nacl.sign.keyPair()) } /** * Create a Ed25519 keypair from a raw secret key byte array, also known as seed. * This is NOT the private scalar which is result of hashing and bit clamping of * the raw secret key. * * The rooch.keystore key is a list of Base64 encoded `flag || privkey`. To import * a key from rooch.keystore to typescript, decode from base64 and remove the first * flag byte after checking it is indeed the Ed25519 scheme flag 0x00 (See more * on flag for signature scheme: https://github.com/rooch-network/rooch/blob/main/crates/rooch-types/src/crypto.rs): * ``` * import { Ed25519Keypair, fromB64 } from 'rooch' * const raw = fromB64(t[1]) * if (raw[0] !== 0 || raw.length !== PRIVATE_KEY_SIZE + 1) { * throw new Error('invalid key') * } * const imported = Ed25519Keypair.fromSecretKey(raw.slice(1)) * ``` * @throws error if the provided secret key is invalid and validation is not skipped. * * @param secretKey secret key byte array * @param options: skip secret key validation */ static fromSecretKey( secretKey: Uint8Array, options?: { skipValidation?: boolean }, ): Ed25519Keypair { const secretKeyLength = secretKey.length if (secretKeyLength !== PRIVATE_KEY_SIZE) { throw new Error( `Wrong secretKey size. Expected ${PRIVATE_KEY_SIZE} bytes, got ${secretKeyLength}.`, ) } const keypair = nacl.sign.keyPair.fromSeed(secretKey) if (!options || !options.skipValidation) { const encoder = new TextEncoder() const signData = encoder.encode('rooch validation') const signature = nacl.sign.detached(signData, keypair.secretKey) if (!nacl.sign.detached.verify(signData, signature, keypair.publicKey)) { throw new Error('provided secretKey is invalid') } } return new Ed25519Keypair(keypair) } /** * The public key for this Ed25519 keypair */ getPublicKey(): Ed25519PublicKey { return new Ed25519PublicKey(this.keypair.publicKey) } async sign(data: Uint8Array) { return this.signData(data) } /** * Return the signature for the provided data using Ed25519. */ signData(data: Uint8Array): Uint8Array { return nacl.sign.detached(data, this.keypair.secretKey) } /** * Derive Ed25519 keypair from mnemonics and path. The mnemonics must be normalized * and validated against the english wordlist. * * If path is none, it will default to m/44'/784'/0'/0'/0', otherwise the path must * be compliant to SLIP-0010 in form m/44'/784'/{account_index}'/{change_index}'/{address_index}'. */ static deriveKeypair(mnemonics: string, path?: string): Ed25519Keypair { const newPath = path ?? DEFAULT_ED25519_DERIVATION_PATH if (!isValidHardenedPath(newPath)) { throw new Error('Invalid derivation path') } const { key } = derivePath(newPath, mnemonicToSeedHex(mnemonics)) return Ed25519Keypair.fromSecretKey(key) } /** * Derive Ed25519 keypair from mnemonicSeed and path. * * If path is none, it will default to m/44'/784'/0'/0'/0', otherwise the path must * be compliant to SLIP-0010 in form m/44'/784'/{account_index}'/{change_index}'/{address_index}'. */ static deriveKeypairFromSeed(seedHex: string, path?: string): Ed25519Keypair { const newPath = path ?? DEFAULT_ED25519_DERIVATION_PATH if (!isValidHardenedPath(newPath)) { throw new Error('Invalid derivation path') } const { key } = derivePath(newPath, seedHex) return Ed25519Keypair.fromSecretKey(key) } /** * This returns an exported keypair object, the private key field is the pure 32-byte seed. */ export(): ExportedKeypair { return { schema: 'ED25519', privateKey: toB64(this.keypair.secretKey.slice(0, PRIVATE_KEY_SIZE)), } } }