var ECKey = require('../../browser/vendor-bundle.js').ECKey; var SecureRandom = require('../SecureRandom'); var Curve = require('../Curve'); var bignum = require('bignum'); var elliptic = require('elliptic'); var Key = function() { this._pub = null; this._compressed = true; // default }; var bufferToArray = Key.bufferToArray = function(buffer) { var ret = []; var l = buffer.length; for (var i = 0; i < l; i++) { ret.push(buffer.readUInt8(i)); } return ret; } Object.defineProperty(Key.prototype, 'public', { set: function(p) { if (!Buffer.isBuffer(p)) { throw new Error('Arg should be a buffer'); } var type = p[0]; this._compressed = type !== 0x04; this._pub = p; }, get: function() { return this._pub; } }); Object.defineProperty(Key.prototype, 'compressed', { set: function(c) { var oldc = this._compressed; this._compressed = !!c; if (oldc == this._compressed) return; var oldp = this._pub; if (this._pub) { var eckey = new ECKey(); eckey.setPub(bufferToArray(this.public)); eckey.setCompressed(this._compressed); this._pub = new Buffer(eckey.getPub()); } if (!this._compressed) { //bug in eckey //oldp.slice(1).copy(this._pub, 1); } }, get: function() { return this._compressed; } }); Key.generateSync = function() { var privbuf; while (true) { privbuf = SecureRandom.getRandomBuffer(32); if ((bignum.fromBuffer(privbuf, { size: 32 })).cmp(Curve.getN()) < 0) break; } var privhex = privbuf.toString('hex'); var eck = new ECKey(privhex); eck.setCompressed(true); var pub = eck.getPub(); ret = new Key(); ret.private = privbuf; ret._compressed = true; ret.public = new Buffer(eck.getPub()); return ret; }; Key.prototype.regenerateSync = function() { if (!this.private) { throw new Error('Key does not have a private key set'); } var ec = elliptic.curves.secp256k1; var g = ec.g; var ecp = ec.g.mul(this.private); var x = new bignum(ecp.x.toArray()); var y = new bignum(ecp.y.toArray()); var p = new Point(x, y); if (this.compressed) this._pub = p.toCompressedPubKey(); else this._pub = p.toUncompressedPubKey(); return this; }; Key.prototype.signSync = function(hash) { var getSECCurveByName = require('../../browser/vendor-bundle.js').getSECCurveByName; var BigInteger = require('../../browser/vendor-bundle.js').BigInteger; var rng = new SecureRandom(); var ecparams = getSECCurveByName('secp256k1'); var rng = {}; rng.nextBytes = function(array) { var buf = SecureRandom.getRandomBuffer(array.length); var a = bufferToArray(SecureRandom.getRandomBuffer(array.length)); for (var i in a) { array[i] = a[i]; } }; var getBigRandom = function(limit) { return new BigInteger(limit.bitLength(), rng) .mod(limit.subtract(BigInteger.ONE)) .add(BigInteger.ONE); }; var sign = function(hash, priv) { var d = priv; var n = ecparams.getN(); var e = BigInteger.fromByteArrayUnsigned(hash); do { var k = getBigRandom(n); var G = ecparams.getG(); var Q = G.multiply(k); var r = Q.getX().toBigInteger().mod(n); var s = k.modInverse(n).multiply(e.add(d.multiply(r))).mod(n); } while (r.compareTo(BigInteger.ZERO) <= 0 || s.compareTo(BigInteger.ZERO) <= 0); return serializeSig(r, s); }; var serializeSig = function(r, s) { var rBa = r.toByteArraySigned(); var sBa = s.toByteArraySigned(); var sequence = []; sequence.push(0x02); // INTEGER sequence.push(rBa.length); sequence = sequence.concat(rBa); sequence.push(0x02); // INTEGER sequence.push(sBa.length); sequence = sequence.concat(sBa); sequence.unshift(sequence.length); sequence.unshift(0x30); // SEQUENCE return sequence; }; if (!this.private) { throw new Error('Key does not have a private key set'); } if (!Buffer.isBuffer(hash) || hash.length !== 32) { throw new Error('Arg should be a 32 bytes hash buffer'); } var privhex = this.private.toString('hex'); var privnum = new BigInteger(privhex, 16); var signature = sign(bufferToArray(hash), privnum); return new Buffer(signature); }; Key.prototype.verifySignature = function(hash, sig, callback) { try { var result = this.verifySignatureSync(hash, sig); callback(null, result); } catch (e) { callback(e); } }; Key.prototype.verifySignatureSync = function(hash, sig) { var self = this; if (!Buffer.isBuffer(hash) || hash.length !== 32) { throw new Error('Arg 1 should be a 32 bytes hash buffer'); } if (!Buffer.isBuffer(sig)) { throw new Error('Arg 2 should be a buffer'); } if (!self.public) { throw new Error('Key does not have a public key set'); } var eck = new ECKey(); eck.setPub(bufferToArray(self.public)); eck.setCompressed(self._compressed); var sigA = bufferToArray(sig); var ret = eck.verify(bufferToArray(hash), sigA); return ret; }; module.exports = Key;