@ -62,28 +62,24 @@ function API(opts) {
} ; } ;
API . prototype . _ loadAndCheck = function ( opts ) { API . prototype . _ loadAndCheck = function ( opts , cb ) {
var data = this . storage . load ( ) ; this . storage . load ( function ( err , data ) {
if ( ! data ) { if ( err || ! data ) {
log . error ( 'Wallet file not found.' ) ; return cb ( err || 'Wallet file not found.' ) ;
process . exit ( 1 ) ; }
}
if ( data . verified == 'corrupt' ) {
throw new Error ( 'The wallet is tagged as corrupt. Some of the copayers cannot be verified to have known the wallet secret.' ) ;
}
if ( data . n > 1 ) {
var pkrComplete = data . publicKeyRing && data . m && data . publicKeyRing . length === data . n ;
if ( opts . requireCompletePKR && ! pkrComplete ) { if ( data . verified == 'corrupt' ) {
throw new Error ( 'Wallet Incomplete, cannot derive address .') ; return cb ( 'The wallet is tagged as corrupt. Some of the copayers cannot be verified to have known the wallet secret.' ) ;
} }
if ( data . n > 1 ) {
var pkrComplete = data . publicKeyRing && data . m && data . publicKeyRing . length === data . n ;
if ( ! pkrComplete ) { if ( opts . requireCompletePKR && ! pkrComplete ) {
log . warn ( 'The file ' + this . filename + ' is incomplete. It will allow you to operate with the wallet but it should not be trusted as a backup. Please wait for all copayers to join the wallet and run the tool with -export flag.' ) return cb ( 'Wallet Incomplete, cannot derive address' ) ;
}
} }
} return cb ( null , data ) ;
return data ; } ) ;
} ; } ;
API . prototype . _ doRequest = function ( method , url , args , data , cb ) { API . prototype . _ doRequest = function ( method , url , args , data , cb ) {
@ -130,44 +126,48 @@ API.prototype.createWallet = function(walletName, copayerName, m, n, network, cb
if ( ! _ . contains ( [ 'testnet' , 'livenet' ] , network ) ) if ( ! _ . contains ( [ 'testnet' , 'livenet' ] , network ) )
return cb ( 'Invalid network' ) ; return cb ( 'Invalid network' ) ;
var data = this . storage . load ( ) ; this . storage . load ( function ( err , data ) {
if ( data ) return cb ( 'File ' + this . filename + ' already contains a wallet' ) ; if ( data )
return cb ( 'Storage already contains a wallet' ) ;
// Generate wallet key pair to verify copayers
var privKey = new Bitcore . PrivateKey ( null , network ) ; console . log ( '[API.js.132]' ) ; //TODO
var pubKey = privKey . toPublicKey ( ) ; // Generate wallet key pair to verify copayers
var privKey = new Bitcore . PrivateKey ( null , network ) ;
data = { var pubKey = privKey . toPublicKey ( ) ;
m : m ,
n : n , data = {
walletPrivKey : privKey . toWIF ( ) , m : m ,
network : network , n : n ,
} ; walletPrivKey : privKey . toWIF ( ) ,
network : network ,
var args = { } ;
name : walletName ,
m : m , var args = {
n : n , name : walletName ,
pubKey : pubKey . toString ( ) , m : m ,
network : network , n : n ,
} ; pubKey : pubKey . toString ( ) ,
var url = '/v1/wallets/' ; network : network ,
} ;
this . _ doPostRequest ( url , args , data , function ( err , body ) { var url = '/v1/wallets/' ;
if ( err ) return cb ( err ) ;
self . _ doPostRequest ( url , args , data , function ( err , body ) {
if ( err ) return cb ( err ) ;
var walletId = body . walletId ; var walletId = body . walletId ;
var secret = walletId + ':' + privKey . toString ( ) + ':' + ( network == 'testnet' ? 'T' : 'L' ) ; var secret = walletId + ':' + privKey . toString ( ) + ':' + ( network == 'testnet' ? 'T' : 'L' ) ;
var ret ; var ret ;
if ( n > 1 ) if ( n > 1 )
ret = data . secret = secret ; ret = data . secret = secret ;
self . storage . save ( data ) ; self . storage . save ( data , function ( err ) {
self . _ joinWallet ( data , secret , copayerName , function ( err ) { if ( err ) return cb ( err ) ;
if ( err ) return cb ( err ) ; self . _ joinWallet ( data , secret , copayerName , function ( err ) {
return cb ( err , ret ) ;
} ) ;
return cb ( null , ret ) ; } ) ;
} ) ; } ) ;
} ) ; } ) ;
} ; } ;
@ -204,54 +204,58 @@ API.prototype._joinWallet = function(data, secret, copayerName, cb) {
data . n = wallet . n ; data . n = wallet . n ;
data . publicKeyRing = wallet . publicKeyRing ; data . publicKeyRing = wallet . publicKeyRing ;
data . network = wallet . network , data . network = wallet . network ,
self . storage . save ( data ) ; self . storage . save ( data , cb ) ;
return cb ( ) ;
} ) ; } ) ;
} ; } ;
API . prototype . joinWallet = function ( secret , copayerName , cb ) { API . prototype . joinWallet = function ( secret , copayerName , cb ) {
var self = this ; var self = this ;
var data = this . storage . load ( ) ; this . storage . load ( function ( err , data ) {
if ( data ) return cb ( 'File ' + this . filename + ' already contains a wallet' ) ; if ( data )
return cb ( 'Storage already contains a wallet' ) ;
self . _ joinWallet ( data , secret , copayerName , cb ) ; self . _ joinWallet ( data , secret , copayerName , cb ) ;
} ) ;
} ; } ;
API . prototype . getStatus = function ( cb ) { API . prototype . getStatus = function ( cb ) {
var self = this ; var self = this ;
var data = this . _ loadAndCheck ( ) ; this . _ loadAndCheck ( { } , function ( err , data ) {
var url = '/v1/wallets/' ;
this . _ doGetRequest ( url , data , function ( err , body ) {
if ( err ) return cb ( err ) ; if ( err ) return cb ( err ) ;
var wallet = body ; var url = '/v1/wallets/' ;
if ( wallet . n > 0 && wallet . status === 'complete' && ! data . verified ) { self . _ doGetRequest ( url , data , function ( err , body ) {
var pubKey = Bitcore . PrivateKey . fromString ( data . walletPrivKey ) . toPublicKey ( ) . toString ( ) ; if ( err ) return cb ( err ) ;
var fake = [ ] ;
_ . each ( wallet . copayers , function ( copayer ) {
console . log ( '[clilib.js.224]' , copayer . xPubKey , copayer . xPubKeySignature , pubKey ) ; //TODO
if ( ! SignUtils . verify ( copayer . xPubKey , copayer . xPubKeySignature , pubKey ) ) {
console . log ( '[clilib.js.227] FAKE' ) ; //TODO
var wallet = body ;
fake . push ( copayer ) ; if ( wallet . n > 0 && wallet . status === 'complete' && ! data . verified ) {
var pubKey = Bitcore . PrivateKey . fromString ( data . walletPrivKey ) . toPublicKey ( ) . toString ( ) ;
var fake = [ ] ;
_ . each ( wallet . copayers , function ( copayer ) {
console . log ( '[clilib.js.224]' , copayer . xPubKey , copayer . xPubKeySignature , pubKey ) ; //TODO
if ( ! SignUtils . verify ( copayer . xPubKey , copayer . xPubKeySignature , pubKey ) ) {
console . log ( '[clilib.js.227] FAKE' ) ; //TODO
fake . push ( copayer ) ;
}
} ) ;
if ( fake . length > 0 ) {
log . error ( 'Some copayers in the wallet could not be verified to have known the wallet secret' ) ;
data . verified = 'corrupt' ;
} else {
data . verified = 'ok' ;
} }
} ) ; self . storage . save ( data , function ( err ) {
if ( fake . length > 0 ) { return cb ( err , wallet ) ;
log . error ( 'Some copayers in the wallet could not be verified to have known the wallet secret' ) ; } ) ;
data . verified = 'corrupt' ;
} else {
data . verified = 'ok' ;
} }
self . storage . save ( data ) ;
}
return cb ( null , wallet ) ; return cb ( null , wallet ) ;
} ) ;
} ) ; } ) ;
} ; } ;
@ -266,38 +270,35 @@ API.prototype.getStatus = function(cb) {
API . prototype . sendTxProposal = function ( inArgs , cb ) { API . prototype . sendTxProposal = function ( inArgs , cb ) {
var self = this ; var self = this ;
var data = this . _ loadAndCheck ( ) ; this . _ loadAndCheck ( {
var args = _ createProposalOpts ( inArgs , data . signingPrivKey ) ; requireCompletePKR : true
} , function ( err , data ) {
var url = '/v1/txproposals/' ; if ( err ) return cb ( err ) ;
this . _ doPostRequest ( url , args , data , cb ) ;
} ;
// Get addresses
API . prototype . getAddresses = function ( cb ) {
var self = this ;
var data = this . _ loadAndCheck ( ) ; var args = _ createProposalOpts ( inArgs , data . signingPrivKey ) ;
var url = '/v1/addresses/' ; var url = '/v1/txproposals/' ;
this . _ doGetRequest ( url , data , cb ) ; self . _ doPostRequest ( url , args , data , cb ) ;
} ) ;
} ; } ;
// Creates a new address
// TODO: verify derivation!!
API . prototype . createAddress = function ( cb ) { API . prototype . createAddress = function ( cb ) {
var self = this ; var self = this ;
var data = this . _ loadAndCheck ( { requireCompletePKR : true } ) ; this . _ loadAndCheck ( {
var url = '/v1/addresses/' ; requireCompletePKR : true
this . _ doPostRequest ( url , { } , data , function ( err , address ) { } , function ( err , dat a) {
if ( err ) return cb ( err ) ; if ( err ) return cb ( err ) ;
if ( ! Verifier . checkAddress ( data , address ) ) {
return cb ( new ServerCompromisedError ( 'Server sent fake address' ) ) ;
}
return cb ( null , address ) ; var url = '/v1/addresses/' ;
self . _ doPostRequest ( url , { } , data , function ( err , address ) {
if ( err ) return cb ( err ) ;
if ( ! Verifier . checkAddress ( data , address ) ) {
return cb ( new ServerCompromisedError ( 'Server sent fake address' ) ) ;
}
return cb ( null , address ) ;
} ) ;
} ) ; } ) ;
} ; } ;
@ -308,92 +309,113 @@ API.prototype.history = function(limit, cb) {
API . prototype . getBalance = function ( cb ) { API . prototype . getBalance = function ( cb ) {
var self = this ; var self = this ;
var data = this . _ loadAndCheck ( ) ; this . _ loadAndCheck ( { } , function ( err , data ) {
if ( err ) return cb ( err ) ;
var url = '/v1/balance/' ; var url = '/v1/balance/' ;
this . _ doGetRequest ( url , data , cb ) ; self . _ doGetRequest ( url , data , cb ) ;
} ) ;
} ; } ;
API . prototype . getTxProposals = function ( opts , cb ) { API . prototype . getTxProposals = function ( opts , cb ) {
var self = this ; var self = this ;
var data = this . _ loadAndCheck ( ) ; this . _ loadAndCheck ( {
requireCompletePKR : true
var url = '/v1/txproposals/' ; } , function ( err , data ) {
this . _ doGetRequest ( url , data , cb ) ; if ( err ) return cb ( err ) ;
var url = '/v1/txproposals/' ;
self . _ doGetRequest ( url , data , cb ) ;
} ) ;
} ; } ;
API . prototype . signTxProposal = function ( txp , cb ) { API . prototype . signTxProposal = function ( txp , cb ) {
var self = this ; var self = this ;
var data = this . _ loadAndCheck ( ) ;
this . _ loadAndCheck ( {
requireCompletePKR : true
} , function ( err , data ) {
if ( err ) return cb ( err ) ;
//Derive proper key to sign, for each input
var privs = [ ] ,
derived = { } ;
var network = new Bitcore . Address ( txp . toAddress ) . network . name ; //Derive proper key to sign, for each input
var xpriv = new Bitcore . HDPrivateKey ( data . xPrivKey , network ) ; var privs = [ ] ,
derived = { } ;
_ . each ( txp . inputs , function ( i ) { var network = new Bitcore . Address ( txp . toAddress ) . network . name ;
if ( ! derived [ i . path ] ) { var xpriv = new Bitcore . HDPrivateKey ( data . xPrivKey , network ) ;
derived [ i . path ] = xpriv . derive ( i . path ) . privateKey ;
}
privs . push ( derived [ i . path ] ) ;
} ) ;
var t = new Bitcore . Transaction ( ) ; _ . each ( txp . inputs , function ( i ) {
_ . each ( txp . inputs , function ( i ) { if ( ! derived [ i . path ] ) {
t . from ( i , i . publicKeys , txp . requiredSignatures ) ; derived [ i . path ] = xpriv . derive ( i . path ) . privateKey ;
} ) ; }
privs . push ( derived [ i . path ] ) ;
} ) ;
t . to ( txp . toAddress , txp . amount ) var t = new Bitcore . Transaction ( ) ;
. change ( txp . changeAddress ) _ . each ( txp . inputs , function ( i ) {
. sign ( privs ) ; t . from ( i , i . publicKeys , txp . requiredSignatures ) ;
} ) ;
var signatures = [ ] ; t . to ( txp . toAddress , txp . amount )
_ . each ( privs , function ( p ) { . change ( txp . changeAddress )
var s = t . getSignatures ( p ) [ 0 ] . signature . toDER ( ) . toString ( 'hex' ) ; . sign ( privs ) ;
signatures . push ( s ) ;
} ) ;
var url = '/v1/txproposals/' + txp . id + '/signatures/' ; var signatures = [ ] ;
var args = { _ . each ( privs , function ( p ) {
signatures : signatures var s = t . getSignatures ( p ) [ 0 ] . signature . toDER ( ) . toString ( 'hex' ) ;
} ; signatures . push ( s ) ;
} ) ;
this . _ doPostRequest ( url , args , data , cb ) ; var url = '/v1/txproposals/' + txp . id + '/signatures/' ;
var args = {
signatures : signatures
} ;
self . _ doPostRequest ( url , args , data , cb ) ;
} ) ;
} ; } ;
API . prototype . rejectTxProposal = function ( txp , reason , cb ) { API . prototype . rejectTxProposal = function ( txp , reason , cb ) {
var self = this ; var self = this ;
var data = this . _ loadAndCheck ( ) ;
var url = '/v1/txproposals/' + txp . id + '/rejections/' ; this . _ loadAndCheck ( {
var args = { requireCompletePKR : true
reason : reason || '' , } , function ( err , data ) {
} ; if ( err ) return cb ( err ) ;
this . _ doPostRequest ( url , args , data , cb ) ;
var url = '/v1/txproposals/' + txp . id + '/rejections/' ;
var args = {
reason : reason || '' ,
} ;
self . _ doPostRequest ( url , args , data , cb ) ;
} ) ;
} ; } ;
API . prototype . broadcastTxProposal = function ( txp , cb ) { API . prototype . broadcastTxProposal = function ( txp , cb ) {
var self = this ; var self = this ;
var data = this . _ loadAndCheck ( ) ;
var url = '/v1/txproposals/' + txp . id + '/broadcast/' ; this . _ loadAndCheck ( {
this . _ doPostRequest ( url , { } , data , cb ) ; requireCompletePKR : true
} , function ( err , data ) {
if ( err ) return cb ( err ) ;
var url = '/v1/txproposals/' + txp . id + '/broadcast/' ;
self . _ doPostRequest ( url , { } , data , cb ) ;
} ) ;
} ; } ;
API . prototype . removeTxProposal = function ( txp , cb ) { API . prototype . removeTxProposal = function ( txp , cb ) {
var self = this ; var self = this ;
var data = this . _ loadAndCheck ( ) ; this . _ loadAndCheck ( {
requireCompletePKR : true
var url = '/v1/txproposals/' + txp . id ; } , function ( err , data ) {
if ( err ) return cb ( err ) ;
this . _ doRequest ( 'delete' , url , { } , data , cb ) ; var url = '/v1/txproposals/' + txp . id ;
self . _ doRequest ( 'delete' , url , { } , data , cb ) ;
} ) ;
} ; } ;
module . exports = API ; module . exports = API ;
Matias Alejo Garcia
10 years ago