UNPKG

sendover

Version:

Tools for creating and paying invoices privately on Bitcoin SV

github.com/p2ppsr/sendover

p2ppsr/sendover

228 lines (220 loc) 7.25 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
import { getPaymentPrivateKey, getPaymentAddress, normalizeProtocol, getProtocolInvoiceNumber } from '.' import bsv from 'babbage-bsv' /** * Input params to the `deriveKey` function. * * This function derives the child key given the root key. * * The flags: * * rootKey, identityKey, publicKey, and sharedSymmetricKey flags * * can be combined with: * * counterparty, protocolID and keyID * * to derive the required key. */ export interface SendOverDeriveKeyParams { /* * The root key for derivation */ key: Uint8Array /* * The counterparty to use for derivation. Can be "self", "anyone", or the public key of a counterparty. * * public key must be a babbage-bsv PublicKey object. * * Only the counterparty can derive the corresponding private keys for asymmetric operations, * or the corresponding shared symmetric key in symmetric operations. */ counterparty: string | 'self' | 'anyone' | bsv.PublicKey /* * The protocol under which this key is used. */ protocolID: string | [number, string] /* * The specific key to derive under this protocol. */ keyID: string /* * Optional, defaults to '1'. The identity under which key derivation should occur (default 1) */ derivationIdentity: string /* * Optional, defaults to false. Whether the root key should be returned */ rootKey?: boolean /* * Optional, defaults to false. Whether the identity key should be returned, only works if rootKey = false */ identityKey?: boolean /* * Optional, defaults to false. Whether a public key should be derived */ publicKey?: boolean /* * Optional, defaults to false. Whether the derived key corresponds to a private key held by the current user. */ forSelf?: boolean /* * Optional, defaults to false. Whether a shared symmetric key should be returned. Cannot be used when publicKey = true */ sharedSymmetricKey?: boolean /* * Whether to derive from the root key, rather than the provided identity (default true) */ deriveFromRoot?: boolean /** * */ revealCounterpartyLinkage?: boolean /** * Optional, defaults to false. */ revealPaymentLinkage?: boolean } /** * This function derives the child key given the root key. * * The rootKey, identityKey, publicKey, and sharedSymmetricKey flags can be combined with * counterparty, protocolID and keyID to derive the needed keys. * * @return Hex string of key to return */ export function deriveKey(params: SendOverDeriveKeyParams): string { let counterparty = params.counterparty const { key, protocolID, keyID, derivationIdentity = '1', rootKey = false, identityKey = false, publicKey = false, forSelf = false, sharedSymmetricKey = false, deriveFromRoot = true, revealCounterpartyLinkage = false, revealPaymentLinkage = false } = params if (rootKey) { if (publicKey) { return bsv.PrivateKey.fromBuffer(Buffer.from(key)) .publicKey.toString() } else { return Buffer.from(key).toString('hex') } } const rootPrivate = bsv.PrivateKey.fromBuffer(Buffer.from(key)) let identity if (deriveFromRoot) { identity = rootPrivate } else { identity = getPaymentPrivateKey({ recipientPrivateKey: rootPrivate, senderPublicKey: rootPrivate.publicKey, invoiceNumber: derivationIdentity, returnType: 'babbage-bsv' }) } if (identityKey) { if (publicKey) { return bsv.PrivateKey.fromBuffer(identity.toBuffer({ size: 32 })).publicKey.toString() } else { return identity.toHex({ size: 32 }) } } if (!counterparty) { throw new Error('counterparty must be self, anyone or a public key!') } else if (counterparty === 'self') { if (revealCounterpartyLinkage) { throw new Error('Counterparty secrets cannot be revealed for counterparty=self as specified by BRC-69') } counterparty = bsv.PrivateKey.fromBuffer(identity.toBuffer({ size: 32 })).publicKey } else if (counterparty === 'anyone') { if (sharedSymmetricKey) { throw new Error( 'Symmetric keys (such as encryption keys or HMAC keys) should not be derivable by everyone, because messages would be decryptable by anyone who knows the identity public key of the user, and HMACs would be similarly forgeable.' ) } counterparty = bsv.PrivateKey.fromHex( '0000000000000000000000000000000000000000000000000000000000000001' ).publicKey } // If the counterparty secret is requested, it's worth making absolutely certain this is not counterparty=self, even if passed in manually // This process ensures that whatever formats the keys are in, if the derivations produce the same child keys, the counterparty secret is not evealed if (revealCounterpartyLinkage) { const self = bsv.PrivateKey.fromBuffer(identity.toBuffer({ size: 32 })).publicKey const keyDerivedBySelf = getPaymentPrivateKey({ recipientPrivateKey: identity, senderPublicKey: self, invoiceNumber: 'test', returnType: 'hex' }) const keyDerivedByCounterparty = getPaymentPrivateKey({ recipientPrivateKey: identity, senderPublicKey: counterparty, invoiceNumber: 'test', returnType: 'hex' }) if (keyDerivedBySelf === keyDerivedByCounterparty) { throw new Error('Counterparty secrets cannot be revealed for counterparty=self as specified by BRC-69') } } const normalizedProtocolID = normalizeProtocol(protocolID) const invoiceNumber = getProtocolInvoiceNumber({ protocolID: normalizedProtocolID, keyID }) let derivedPublicKey if (sharedSymmetricKey || publicKey) { if (forSelf) { const ourPrivateKey = getPaymentPrivateKey({ recipientPrivateKey: identity, senderPublicKey: counterparty, invoiceNumber, returnType: 'babbage-bsv', revealCounterpartyLinkage, revealPaymentLinkage }) if (revealCounterpartyLinkage || revealPaymentLinkage) { return ourPrivateKey } return bsv.PrivateKey.fromBuffer(ourPrivateKey.toBuffer({ size: 32 })).publicKey.toString() } else { derivedPublicKey = getPaymentAddress({ senderPrivateKey: identity, recipientPublicKey: counterparty, invoiceNumber, returnType: 'babbage-bsv', revealCounterpartyLinkage, revealPaymentLinkage }) if (revealCounterpartyLinkage || revealPaymentLinkage) { return derivedPublicKey } } } if (publicKey) { if (sharedSymmetricKey) { throw new Error('Cannot return a public key for a symmetric key!') } return derivedPublicKey.toString() } const derivedPrivateKey = getPaymentPrivateKey({ recipientPrivateKey: identity, senderPublicKey: counterparty, invoiceNumber, returnType: 'babbage-bsv', revealCounterpartyLinkage, revealPaymentLinkage }) if (revealCounterpartyLinkage || revealPaymentLinkage) { return derivedPrivateKey } if (!sharedSymmetricKey) { return derivedPrivateKey.toHex({ size: 32 }) } const sharedSecret = derivedPublicKey.point.mul( derivedPrivateKey ).toBuffer().slice(1) return sharedSecret.toString('hex') }