UNPKG

eth-crypto

Version:

Cryptographic functions for ethereum and how to use them with web3 and solidity

github.com/pubkey/eth-crypto

pubkey/eth-crypto

72 lines (58 loc) 2.2 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
import { secp256k1 } from 'ethereum-cryptography/secp256k1'; import { encrypt as aesEncrypt } from 'ethereum-cryptography/aes'; import { sha512 } from '@noble/hashes/sha2.js'; import { hmac } from '@noble/hashes/hmac.js'; import { sha256 } from '@noble/hashes/sha2.js'; import { randomBytes, concatBytes } from '@noble/hashes/utils.js'; import { decompress } from './public-key'; export async function encryptWithPublicKey(publicKey, message, opts) { // ensure its an uncompressed publicKey publicKey = decompress(publicKey); // re-add the compression-flag and convert to Uint8Array (noble requires strict Uint8Array) const pubKeyBytes = new Uint8Array(Buffer.from('04' + publicKey, 'hex')); opts = opts || {}; // generate ephemeral key pair let ephemPrivKey = opts.ephemPrivateKey ? new Uint8Array(Buffer.from(opts.ephemPrivateKey)) : randomBytes(32); while (!secp256k1.utils.isValidPrivateKey(ephemPrivKey)) { ephemPrivKey = randomBytes(32); } const ephemPubKey = secp256k1.getPublicKey(ephemPrivKey, false); // 65-byte uncompressed // ECDH: shared secret = x-coordinate of ephemPrivKey * recipientPubKey const sharedSecret = secp256k1.getSharedSecret(ephemPrivKey, pubKeyBytes, true).slice(1); // 32 bytes // KDF: SHA-512 of shared secret const hash = sha512(sharedSecret); const encKey = hash.slice(0, 32); const macKey = hash.slice(32); const iv = opts.iv ? new Uint8Array(Buffer.from(opts.iv)) : randomBytes(16); const msgBytes = new Uint8Array(Buffer.from(message)); // aesEncrypt uses WebCrypto and returns a Promise const ciphertext = new Uint8Array(await aesEncrypt(msgBytes, encKey, iv, 'aes-256-cbc')); // MAC = HMAC-SHA256(macKey, IV || ephemPubKey || ciphertext) const dataToMac = concatBytes(iv, ephemPubKey, ciphertext); const mac = hmac(sha256, macKey, dataToMac); return { iv: Buffer.from(iv).toString('hex'), ephemPublicKey: Buffer.from(ephemPubKey).toString('hex'), ciphertext: Buffer.from(ciphertext).toString('hex'), mac: Buffer.from(mac).toString('hex') }; }