UNPKG

paid-services

Version:

Lightning Paid Services library

github.com/alexbosworth/paid-services

alexbosworth/paid-services

99 lines (81 loc) 3.08 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
const {createCipheriv} = require('crypto'); const {createHash} = require('crypto'); const {randomBytes} = require('crypto'); const asyncAuto = require('async/auto'); const {diffieHellmanComputeSecret} = require('ln-service'); const {returnResult} = require('asyncjs-util'); const algorithm = 'aes-256-gcm'; const bufferAsHex = buffer => buffer.toString('hex'); const digest = 'sha512'; const hexAsBuffer = hex => Buffer.from(hex, 'hex'); const iv = Buffer.alloc(16, 0); const makePreimage = () => randomBytes(32).toString('hex'); const sha256 = n => createHash('sha256').update(n).digest(); /** Encode a secret for a trade { lnd: <Authenticated LND API Object> secret: <Secret Hex String> to: <Trading With Node Id Public Key Hex String> } @returns via cbk or Promise { payment_secret: <Payment Hash Preimage Hex String> trade_auth_tag: <Trade Data Data Auth Tag Hex String> trade_cipher: <Trade Data Encrypted Hex String> } */ module.exports = ({lnd, secret, to}, cbk) => { return new Promise((resolve, reject) => { return asyncAuto({ // Check arguments validate: cbk => { if (!lnd) { return cbk([400, 'ExpectedAuthenticatedLndToEncryptTradeSecret']); } if (!secret) { return cbk([400, 'ExpectedSecretToTradeToEncryptTradeSecret']); } if (!to) { return cbk([400, 'ExpectedToPublicKeyToEncryptTradeSecret']); } return cbk(); }, // Generate a secret to use for the payment preimage paymentSecret: ['validate', ({}, cbk) => cbk(null, makePreimage())], // Compute a shared secret with the destination computeSharedSecret: ['validate', ({}, cbk) => { return diffieHellmanComputeSecret({lnd, partner_public_key: to}, cbk); }], // Combine the shared secret with a payment preimage for the final secret key: [ 'computeSharedSecret', 'paymentSecret', ({computeSharedSecret, paymentSecret}, cbk) => { const paidSecret = hexAsBuffer(paymentSecret); const key = hexAsBuffer(computeSharedSecret.secret); // Combine the shared secret with the payment preimage for (let i = 0; i < paidSecret.length; ++i) { key[i] = key[i] ^ paidSecret[i]; } return cbk(null, key); }], // Encrypt the trade details with the secret encrypt: ['key', 'paymentSecret', ({key, paymentSecret}, cbk) => { try { createCipheriv(algorithm, key, iv); } catch (err) { return cbk([500, 'FailedToCreateCipherEncryptingSecret', {err}]); } const cipher = createCipheriv(algorithm, key, iv); const updated = [cipher.update(hexAsBuffer(secret)), cipher.final()]; return cbk(null, { payment_secret: paymentSecret, trade_auth_tag: bufferAsHex(cipher.getAuthTag()), trade_cipher: bufferAsHex(Buffer.concat(updated)), }); }], }, returnResult({reject, resolve, of: 'encrypt'}, cbk)); }); };