UNPKG

ssv-keys

Version:

Tool for splitting a validator key into a predefined threshold of shares via Shamir-Secret-Sharing (SSS), and encrypt them with a set of operator keys.

github.com/ssvlabs/ssv-keys

ssvlabs/ssv-keys

112 lines (88 loc) 3.11 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
import dotenv from 'dotenv'; import { constants } from 'http2'; import bodyParser from 'body-parser'; import { SSVKeys, KeyShares, KeySharesItem } from 'ssv-keys'; import express, { Express, Request, Response } from 'express'; dotenv.config(); const app: Express = express(); const port = process.env.PORT; const ssvKeys = new SSVKeys(); app.use(express.json()); app.use(bodyParser.urlencoded({ extended: true })); app.post('/key-shares/generate', async (req: Request, res: Response) => { const operator_ids = String(req.body['operator_ids'] || '') .split(',') .map((id) => Number(id.trim())) .filter(id => !!id); if (!operator_ids.length) { return res .status(constants.HTTP_STATUS_BAD_REQUEST) .json({ message: 'Operator IDs required' }); } const operator_keys = String(req.body['operator_keys'] || '') .split(',') .map((key) => key.trim()) .filter(key => !!key); if (!operator_keys.length) { return res .status(constants.HTTP_STATUS_BAD_REQUEST) .json({ message: 'Operator keys required' }); } const keystore = req.body['keystore']; if (!keystore) { return res .status(constants.HTTP_STATUS_BAD_REQUEST) .json({ message: 'Keystore is required' }); } // The nonce of the owner within the SSV contract (increments after each validator registration), obtained using the ssv-scanner tool const nonce = Number(req.body['nonce']); if (isNaN(nonce)) { return res .status(constants.HTTP_STATUS_BAD_REQUEST) .json({ message: 'Nonce is required' }); } // The owner address for signing the share payload const owner_address = String(req.body['owner_address']); if (!owner_address) { return res .status(constants.HTTP_STATUS_BAD_REQUEST) .json({ message: 'owner_address is required' }); } const password = String(req.body['password'] || ''); if (!password.length) { return res .status(constants.HTTP_STATUS_BAD_REQUEST) .json({ message: 'Keystore password is required' }); } const { publicKey, privateKey } = await ssvKeys.extractKeys(keystore, password); const operators = operator_keys.map((operatorKey, index) => ({ id: operator_ids[index], operatorKey, })); const encryptedShares = await ssvKeys.buildShares(privateKey, operators); // Build final web3 transaction payload and update keyshares file with payload data const keySharesItem = new KeySharesItem(); keySharesItem.update({ ownerAddress: owner_address, ownerNonce: nonce, operators, publicKey }); // The cluster owner address await keySharesItem.buildPayload({ publicKey, operators, encryptedShares, },{ ownerAddress: owner_address, ownerNonce: nonce, privateKey }); const keyShares = new KeyShares(); keyShares.add(keySharesItem); console.log(`Built key shares for operators: ${String(operator_ids)} and public key: ${keystore.pubkey}`); res.json(JSON.parse(keyShares.toJson())); }); app.listen(port, () => { console.log(`⚡️[server]: Server is running at http://localhost:${port}`); });