UNPKG

paid-services

Version:

Lightning Paid Services library

github.com/alexbosworth/paid-services

alexbosworth/paid-services

109 lines (83 loc) 3.23 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
const {createDecipheriv} = require('crypto'); const {createHash} = require('crypto'); const {decodeBigSize} = require('bolt01'); const {decodeTlvStream} = require('bolt01'); const {privateTypes} = require('./swap_field_types'); const {publicTypes} = require('./swap_field_types'); const algorithm = 'aes-256-gcm'; const {concat} = Buffer; const decodeNumber = encoded => decodeBigSize({encoded}).decoded; const findRecord = (records, type) => records.find(n => n.type === type); const bufferAsHex = buffer => buffer.toString('hex'); const hexAsBuffer = hex => Buffer.from(hex, 'hex'); const makeIv = () => Buffer.alloc(16, 0); const sha256 = n => createHash('sha256').update(n).digest(); const {typeAuthTag} = privateTypes; const {typeCipher} = privateTypes; const {typeCoopPrivateKey} = privateTypes; const {typeKeyIndex} = privateTypes; const {typeSecret} = privateTypes; const {typeSoloPrivateKey} = privateTypes; const {typeVersion} = publicTypes; /** Decode swap secrets { decrypt: <Decrypt With Key Hex String> encoded: <Encoded Secrets Hex String> hash: <Funding Hash Hex String> } @throws <Error> @returns { coop_private_key: <Cooperative Private Key Hex String> [key_index]: <Unilateral Key Id Number> [secret]: <Swap Claim Secret Hex String> [solo_private_key]: <Unilateral Private Key Hex String> } */ module.exports = ({decrypt, encoded, hash}) => { const iv = makeIv(); const key = sha256(hexAsBuffer(decrypt + hash)); try { decodeTlvStream({encoded}); } catch (err) { throw new Error('ExpectedTlvEncodedSwapSecretsValue'); } const {records} = decodeTlvStream({encoded}); if (!!findRecord(records, typeVersion)) { throw new Error('UnexpectedVersionOfSwapSecrets'); } const authTagRecord = findRecord(records, typeAuthTag); if (!authTagRecord) { throw new Error('ExpectedAuthTagRecordToDecodeSwapSecrets'); } const cipherRecord = findRecord(records, typeCipher); if (!cipherRecord) { throw new Error('ExpectedCipherRecordToDecodeSwapSecrets'); } const decipher = createDecipheriv(algorithm, key, iv); const encrypted = hexAsBuffer(cipherRecord.value); decipher.setAuthTag(hexAsBuffer(authTagRecord.value)); const elements = [decipher.update(encrypted), decipher.final()]; const secrets = bufferAsHex(concat(elements)); try { decodeTlvStream({encoded: secrets}); } catch (err) { throw new Error('ExpectedValidSecretsTlvStreamToDecodeSecrets'); } const privateRecords = decodeTlvStream({encoded: secrets}).records; const coopPrivateKeyRecord = findRecord(privateRecords, typeCoopPrivateKey); if (!coopPrivateKeyRecord) { throw new Error('ExpectedCoopPrivateKeyRecordToDecodeSecrets'); } const keyIndexRecord = findRecord(privateRecords, typeKeyIndex) || {}; const secretRecord = findRecord(privateRecords, typeSecret) || {}; const soloKeyRecord = findRecord(privateRecords, typeSoloPrivateKey) || {}; const keyIndexValue = keyIndexRecord.value; return { coop_private_key: coopPrivateKeyRecord.value, key_index: !!keyIndexValue ? decodeNumber(keyIndexValue) : undefined, secret: secretRecord.value, solo_private_key: soloKeyRecord.value, }; };