ethers.js/src.ts/utils/secp256k1.ts

'use strict';


import { getAddress } from './address';

import { arrayify, hexlify, hexZeroPad, splitSignature } from './bytes';
import { hashMessage } from './hash';
import { keccak256 } from './keccak256';
import { defineReadOnly } from './properties';

import { Arrayish, Signature } from './types';

import * as errors from './errors';

let _curve: EC = null
function getCurve() {
    if (!_curve) {
        _curve = new EC('secp256k1');
    }
    return _curve;
}


export class KeyPair {

    readonly privateKey: string;

    readonly publicKey: string;
    readonly compressedPublicKey: string;

    readonly publicKeyBytes: Uint8Array;

    constructor(privateKey: Arrayish) {
        let keyPair = getCurve().keyFromPrivate(arrayify(privateKey));

        defineReadOnly(this, 'privateKey', hexlify(keyPair.priv.toArray('be', 32)));
        defineReadOnly(this, 'publicKey', '0x' + keyPair.getPublic(false, 'hex'));
        defineReadOnly(this, 'compressedPublicKey', '0x' + keyPair.getPublic(true, 'hex'));
        defineReadOnly(this, 'publicKeyBytes', keyPair.getPublic().encode(null, true));
    }

    sign(digest: Arrayish): Signature {
        let keyPair = getCurve().keyFromPrivate(arrayify(this.privateKey));
        let signature = keyPair.sign(arrayify(digest), {canonical: true});
        return {
            recoveryParam: signature.recoveryParam,
            r: hexZeroPad('0x' + signature.r.toString(16), 32),
            s: hexZeroPad('0x' + signature.s.toString(16), 32),
            v: 27 + signature.recoveryParam
        }

    }
}

export function recoverPublicKey(digest: Arrayish, signature: Signature): string {
    let sig = {
        r: arrayify(signature.r),
        s: arrayify(signature.s)
    };
    return '0x' + getCurve().recoverPubKey(arrayify(digest), sig, signature.recoveryParam).encode('hex', false);
}

export function computePublicKey(key: Arrayish, compressed?: boolean): string {

    let bytes = arrayify(key);

    if (bytes.length === 32) {
        let keyPair: KeyPair = new KeyPair(bytes);
        if (compressed) {
            return keyPair.compressedPublicKey;
        }
        return keyPair.publicKey;

    } else if (bytes.length === 33) {
        if (compressed) { return hexlify(bytes); }
        return '0x' + getCurve().keyFromPublic(bytes).getPublic(false, 'hex');

    } else if (bytes.length === 65) {
        if (!compressed) { return hexlify(bytes); }
        return '0x' + getCurve().keyFromPublic(bytes).getPublic(true, 'hex');
    }

    errors.throwError('invalid public or private key', errors.INVALID_ARGUMENT, { arg: 'key', value: '[REDACTED]' });
    return null;
}

export function recoverAddress(digest: Arrayish, signature: Signature): string {
    return computeAddress(recoverPublicKey(digest, signature));
}

export function computeAddress(key: string): string {
    // Strip off the leading "0x04"
    let publicKey = '0x' + computePublicKey(key).slice(4);
    return getAddress('0x' + keccak256(publicKey).substring(26));
}


export function verifyMessage(message: Arrayish | string, signature: Signature | string): string {
    let sig = splitSignature(signature);
    let digest = hashMessage(message);

    return recoverAddress(
        digest,
        {
            r: sig.r,
            s: sig.s,
            recoveryParam: sig.recoveryParam
        }
    );
}

// !!! IMPORTANT !!!
//
// This must be be at the end, otherwise Browserify attempts to include upstream
// dependencies before this module is loaded.

import { ec as EC } from 'elliptic';
Initial TypeScript migration. 2018-06-13 22:39:39 +03:00			`'use strict';`

Moved static Wallet calls to utils and refactors exposed types. 2018-07-17 08:44:04 +03:00
Added no implicit any for TypeScript checking. 2018-06-23 03:30:50 +03:00
Refectoring; split getAddress, expose transactions, hex operations. 2018-06-17 23:32:57 +03:00			`import { getAddress } from './address';`
Fixing weird browserify bug with pacakge resolution order. 2018-07-13 03:11:32 +03:00
Moved static Wallet calls to utils and refactors exposed types. 2018-07-17 08:44:04 +03:00			`import { arrayify, hexlify, hexZeroPad, splitSignature } from './bytes';`
			`import { hashMessage } from './hash';`
Refectoring; split getAddress, expose transactions, hex operations. 2018-06-17 23:32:57 +03:00			`import { keccak256 } from './keccak256';`
Renamed convert to bytes. 2018-06-17 23:47:28 +03:00			`import { defineReadOnly } from './properties';`
Refactor API. 2018-06-15 11:18:17 +03:00
Refactored imports and exports to be both node-friendly and TypeScript-friendly. 2018-07-16 10:27:49 +03:00			`import { Arrayish, Signature } from './types';`

Renamed convert to bytes. 2018-06-17 23:47:28 +03:00			`import * as errors from './errors';`
Refactor API. 2018-06-15 11:18:17 +03:00
Lazy load the elliptic curve; also fixed circular dependencies internal to the library that cause issues in browserify. 2018-07-23 03:05:14 +03:00			`let _curve: EC = null`
			`function getCurve() {`
			`if (!_curve) {`
			`_curve = new EC('secp256k1');`
			`}`
			`return _curve;`
			`}`

Refectoring; split getAddress, expose transactions, hex operations. 2018-06-17 23:32:57 +03:00
Refactor API. 2018-06-15 11:18:17 +03:00			`export class KeyPair {`

			`readonly privateKey: string;`

			`readonly publicKey: string;`
			`readonly compressedPublicKey: string;`

			`readonly publicKeyBytes: Uint8Array;`

			`constructor(privateKey: Arrayish) {`
Lazy load the elliptic curve; also fixed circular dependencies internal to the library that cause issues in browserify. 2018-07-23 03:05:14 +03:00			`let keyPair = getCurve().keyFromPrivate(arrayify(privateKey));`
Refactor API. 2018-06-15 11:18:17 +03:00
			`defineReadOnly(this, 'privateKey', hexlify(keyPair.priv.toArray('be', 32)));`
			`defineReadOnly(this, 'publicKey', '0x' + keyPair.getPublic(false, 'hex'));`
			`defineReadOnly(this, 'compressedPublicKey', '0x' + keyPair.getPublic(true, 'hex'));`
			`defineReadOnly(this, 'publicKeyBytes', keyPair.getPublic().encode(null, true));`
			`}`

			`sign(digest: Arrayish): Signature {`
Lazy load the elliptic curve; also fixed circular dependencies internal to the library that cause issues in browserify. 2018-07-23 03:05:14 +03:00			`let keyPair = getCurve().keyFromPrivate(arrayify(this.privateKey));`
Refactor API. 2018-06-15 11:18:17 +03:00			`let signature = keyPair.sign(arrayify(digest), {canonical: true});`
			`return {`
			`recoveryParam: signature.recoveryParam,`
Refactoring. 2018-06-18 12:42:41 +03:00			`r: hexZeroPad('0x' + signature.r.toString(16), 32),`
			`s: hexZeroPad('0x' + signature.s.toString(16), 32),`
Refectoring; split getAddress, expose transactions, hex operations. 2018-06-17 23:32:57 +03:00			`v: 27 + signature.recoveryParam`
Refactor API. 2018-06-15 11:18:17 +03:00			`}`

			`}`
			`}`

			`export function recoverPublicKey(digest: Arrayish, signature: Signature): string {`
			`let sig = {`
			`r: arrayify(signature.r),`
			`s: arrayify(signature.s)`
			`};`
Lazy load the elliptic curve; also fixed circular dependencies internal to the library that cause issues in browserify. 2018-07-23 03:05:14 +03:00			`return '0x' + getCurve().recoverPubKey(arrayify(digest), sig, signature.recoveryParam).encode('hex', false);`
Refactor API. 2018-06-15 11:18:17 +03:00			`}`

			`export function computePublicKey(key: Arrayish, compressed?: boolean): string {`

			`let bytes = arrayify(key);`

			`if (bytes.length === 32) {`
			`let keyPair: KeyPair = new KeyPair(bytes);`
			`if (compressed) {`
			`return keyPair.compressedPublicKey;`
			`}`
			`return keyPair.publicKey;`

			`} else if (bytes.length === 33) {`
			`if (compressed) { return hexlify(bytes); }`
Lazy load the elliptic curve; also fixed circular dependencies internal to the library that cause issues in browserify. 2018-07-23 03:05:14 +03:00			`return '0x' + getCurve().keyFromPublic(bytes).getPublic(false, 'hex');`
Refactor API. 2018-06-15 11:18:17 +03:00
			`} else if (bytes.length === 65) {`
			`if (!compressed) { return hexlify(bytes); }`
Lazy load the elliptic curve; also fixed circular dependencies internal to the library that cause issues in browserify. 2018-07-23 03:05:14 +03:00			`return '0x' + getCurve().keyFromPublic(bytes).getPublic(true, 'hex');`
Refactor API. 2018-06-15 11:18:17 +03:00			`}`

			`errors.throwError('invalid public or private key', errors.INVALID_ARGUMENT, { arg: 'key', value: '[REDACTED]' });`
			`return null;`
			`}`
Initial TypeScript migration. 2018-06-13 22:39:39 +03:00
Refectoring; split getAddress, expose transactions, hex operations. 2018-06-17 23:32:57 +03:00			`export function recoverAddress(digest: Arrayish, signature: Signature): string {`
			`return computeAddress(recoverPublicKey(digest, signature));`
			`}`

			`export function computeAddress(key: string): string {`
			`// Strip off the leading "0x04"`
			`let publicKey = '0x' + computePublicKey(key).slice(4);`
			`return getAddress('0x' + keccak256(publicKey).substring(26));`
			`}`
Moved static Wallet calls to utils and refactors exposed types. 2018-07-17 08:44:04 +03:00

			`export function verifyMessage(message: Arrayish \| string, signature: Signature \| string): string {`
			`let sig = splitSignature(signature);`
			`let digest = hashMessage(message);`

			`return recoverAddress(`
			`digest,`
			`{`
			`r: sig.r,`
			`s: sig.s,`
			`recoveryParam: sig.recoveryParam`
			`}`
			`);`
			`}`

Fixing out-of-order browserify imports again. 2018-07-23 12:37:07 +03:00			`// !!! IMPORTANT !!!`
			`//`
			`// This must be be at the end, otherwise Browserify attempts to include upstream`
			`// dependencies before this module is loaded.`

			`import { ec as EC } from 'elliptic';`