2018-06-13 15:39:39 -04:00
|
|
|
'use strict';
|
|
|
|
var __importStar = (this && this.__importStar) || function (mod) {
|
|
|
|
if (mod && mod.__esModule) return mod;
|
|
|
|
var result = {};
|
|
|
|
if (mod != null) for (var k in mod) if (Object.hasOwnProperty.call(mod, k)) result[k] = mod[k];
|
|
|
|
result["default"] = mod;
|
|
|
|
return result;
|
|
|
|
};
|
|
|
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
|
|
// See: https://github.com/bitcoin/bips/blob/master/bip-0032.mediawiki
|
|
|
|
// See: https://github.com/bitcoin/bips/blob/master/bip-0039.mediawiki
|
2018-09-24 16:07:14 -04:00
|
|
|
var errors = __importStar(require("../errors"));
|
2018-06-20 20:29:54 -04:00
|
|
|
// The English language word list.
|
|
|
|
// For additional word lists, please see /src.tc/wordlists/
|
|
|
|
var lang_en_1 = require("../wordlists/lang-en");
|
2018-07-16 00:24:50 -04:00
|
|
|
// Automatically register English?
|
|
|
|
//import { register } from '../wordlists/wordlist';
|
|
|
|
//register(langEn);
|
2018-09-24 16:07:14 -04:00
|
|
|
var bytes_1 = require("./bytes");
|
|
|
|
var bignumber_1 = require("./bignumber");
|
|
|
|
var utf8_1 = require("./utf8");
|
|
|
|
var pbkdf2_1 = require("./pbkdf2");
|
|
|
|
var hmac_1 = require("./hmac");
|
|
|
|
var properties_1 = require("./properties");
|
|
|
|
var secp256k1_1 = require("./secp256k1");
|
|
|
|
var sha2_1 = require("./sha2");
|
2018-07-23 02:59:01 -04:00
|
|
|
var N = bignumber_1.bigNumberify("0xfffffffffffffffffffffffffffffffebaaedce6af48a03bbfd25e8cd0364141");
|
2018-06-13 15:39:39 -04:00
|
|
|
// "Bitcoin seed"
|
|
|
|
var MasterSecret = utf8_1.toUtf8Bytes('Bitcoin seed');
|
|
|
|
var HardenedBit = 0x80000000;
|
|
|
|
// Returns a byte with the MSB bits set
|
|
|
|
function getUpperMask(bits) {
|
|
|
|
return ((1 << bits) - 1) << (8 - bits);
|
|
|
|
}
|
|
|
|
// Returns a byte with the LSB bits set
|
|
|
|
function getLowerMask(bits) {
|
|
|
|
return (1 << bits) - 1;
|
|
|
|
}
|
2018-07-30 18:59:52 -04:00
|
|
|
var _constructorGuard = {};
|
2018-06-18 05:42:41 -04:00
|
|
|
exports.defaultPath = "m/44'/60'/0'/0/0";
|
2018-07-30 18:59:52 -04:00
|
|
|
var HDNode = /** @class */ (function () {
|
2018-06-19 02:12:57 -04:00
|
|
|
/**
|
|
|
|
* This constructor should not be called directly.
|
|
|
|
*
|
|
|
|
* Please use:
|
|
|
|
* - fromMnemonic
|
|
|
|
* - fromSeed
|
|
|
|
*/
|
2018-07-30 18:59:52 -04:00
|
|
|
function HDNode(constructorGuard, privateKey, chainCode, index, depth, mnemonic, path) {
|
|
|
|
errors.checkNew(this, HDNode);
|
|
|
|
if (constructorGuard !== _constructorGuard) {
|
|
|
|
throw new Error('HDNode constructor cannot be called directly');
|
|
|
|
}
|
|
|
|
properties_1.defineReadOnly(this, 'keyPair', new secp256k1_1.KeyPair(privateKey));
|
|
|
|
properties_1.defineReadOnly(this, 'privateKey', this.keyPair.privateKey);
|
|
|
|
properties_1.defineReadOnly(this, 'publicKey', this.keyPair.compressedPublicKey);
|
2018-10-07 01:13:10 -04:00
|
|
|
properties_1.defineReadOnly(this, 'address', secp256k1_1.computeAddress(this.publicKey));
|
2018-07-30 18:59:52 -04:00
|
|
|
properties_1.defineReadOnly(this, 'chainCode', bytes_1.hexlify(chainCode));
|
|
|
|
properties_1.defineReadOnly(this, 'index', index);
|
|
|
|
properties_1.defineReadOnly(this, 'depth', depth);
|
|
|
|
properties_1.defineReadOnly(this, 'mnemonic', mnemonic);
|
|
|
|
properties_1.defineReadOnly(this, 'path', path);
|
|
|
|
properties_1.setType(this, 'HDNode');
|
2018-06-13 15:39:39 -04:00
|
|
|
}
|
|
|
|
HDNode.prototype._derive = function (index) {
|
|
|
|
// Public parent key -> public child key
|
|
|
|
if (!this.privateKey) {
|
|
|
|
if (index >= HardenedBit) {
|
|
|
|
throw new Error('cannot derive child of neutered node');
|
|
|
|
}
|
|
|
|
throw new Error('not implemented');
|
|
|
|
}
|
|
|
|
var data = new Uint8Array(37);
|
|
|
|
// Base path
|
|
|
|
var mnemonic = this.mnemonic;
|
|
|
|
var path = this.path;
|
|
|
|
if (path) {
|
|
|
|
path += '/' + index;
|
|
|
|
}
|
|
|
|
if (index & HardenedBit) {
|
|
|
|
// Data = 0x00 || ser_256(k_par)
|
2018-06-17 16:47:28 -04:00
|
|
|
data.set(bytes_1.arrayify(this.privateKey), 1);
|
2018-06-13 15:39:39 -04:00
|
|
|
// Hardened path
|
|
|
|
if (path) {
|
|
|
|
path += "'";
|
|
|
|
}
|
|
|
|
}
|
|
|
|
else {
|
|
|
|
// Data = ser_p(point(k_par))
|
2018-06-15 04:18:17 -04:00
|
|
|
data.set(this.keyPair.publicKeyBytes);
|
2018-06-13 15:39:39 -04:00
|
|
|
}
|
|
|
|
// Data += ser_32(i)
|
|
|
|
for (var i = 24; i >= 0; i -= 8) {
|
|
|
|
data[33 + (i >> 3)] = ((index >> (24 - i)) & 0xff);
|
|
|
|
}
|
2018-08-01 18:05:19 -04:00
|
|
|
var I = hmac_1.computeHmac(hmac_1.SupportedAlgorithms.sha512, this.chainCode, data);
|
2018-06-13 15:39:39 -04:00
|
|
|
var IL = bignumber_1.bigNumberify(I.slice(0, 32));
|
|
|
|
var IR = I.slice(32);
|
2018-07-23 02:59:01 -04:00
|
|
|
var ki = IL.add(this.keyPair.privateKey).mod(N);
|
2018-07-30 18:59:52 -04:00
|
|
|
return new HDNode(_constructorGuard, bytes_1.arrayify(ki), IR, index, this.depth + 1, mnemonic, path);
|
2018-06-13 15:39:39 -04:00
|
|
|
};
|
|
|
|
HDNode.prototype.derivePath = function (path) {
|
|
|
|
var components = path.split('/');
|
|
|
|
if (components.length === 0 || (components[0] === 'm' && this.depth !== 0)) {
|
|
|
|
throw new Error('invalid path');
|
|
|
|
}
|
|
|
|
if (components[0] === 'm') {
|
|
|
|
components.shift();
|
|
|
|
}
|
|
|
|
var result = this;
|
|
|
|
for (var i = 0; i < components.length; i++) {
|
|
|
|
var component = components[i];
|
|
|
|
if (component.match(/^[0-9]+'$/)) {
|
|
|
|
var index = parseInt(component.substring(0, component.length - 1));
|
|
|
|
if (index >= HardenedBit) {
|
|
|
|
throw new Error('invalid path index - ' + component);
|
|
|
|
}
|
|
|
|
result = result._derive(HardenedBit + index);
|
|
|
|
}
|
|
|
|
else if (component.match(/^[0-9]+$/)) {
|
|
|
|
var index = parseInt(component);
|
|
|
|
if (index >= HardenedBit) {
|
|
|
|
throw new Error('invalid path index - ' + component);
|
|
|
|
}
|
|
|
|
result = result._derive(index);
|
|
|
|
}
|
|
|
|
else {
|
|
|
|
throw new Error('invlaid path component - ' + component);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return result;
|
|
|
|
};
|
2018-07-30 18:59:52 -04:00
|
|
|
HDNode.isHDNode = function (value) {
|
|
|
|
return properties_1.isType(value, 'HDNode');
|
|
|
|
};
|
2018-06-13 15:39:39 -04:00
|
|
|
return HDNode;
|
2018-07-30 18:59:52 -04:00
|
|
|
}());
|
|
|
|
exports.HDNode = HDNode;
|
2018-06-13 15:39:39 -04:00
|
|
|
function _fromSeed(seed, mnemonic) {
|
2018-06-17 16:47:28 -04:00
|
|
|
var seedArray = bytes_1.arrayify(seed);
|
2018-06-15 04:18:17 -04:00
|
|
|
if (seedArray.length < 16 || seedArray.length > 64) {
|
2018-06-13 15:39:39 -04:00
|
|
|
throw new Error('invalid seed');
|
|
|
|
}
|
2018-08-01 18:05:19 -04:00
|
|
|
var I = bytes_1.arrayify(hmac_1.computeHmac(hmac_1.SupportedAlgorithms.sha512, MasterSecret, seedArray));
|
2018-07-30 18:59:52 -04:00
|
|
|
return new HDNode(_constructorGuard, I.slice(0, 32), I.slice(32), 0, 0, mnemonic, 'm');
|
2018-06-13 15:39:39 -04:00
|
|
|
}
|
2018-06-20 20:29:54 -04:00
|
|
|
function fromMnemonic(mnemonic, wordlist) {
|
2018-06-13 15:39:39 -04:00
|
|
|
// Check that the checksum s valid (will throw an error)
|
2018-06-20 20:29:54 -04:00
|
|
|
mnemonicToEntropy(mnemonic, wordlist);
|
2018-06-13 15:39:39 -04:00
|
|
|
return _fromSeed(mnemonicToSeed(mnemonic), mnemonic);
|
|
|
|
}
|
|
|
|
exports.fromMnemonic = fromMnemonic;
|
|
|
|
function fromSeed(seed) {
|
|
|
|
return _fromSeed(seed, null);
|
|
|
|
}
|
|
|
|
exports.fromSeed = fromSeed;
|
|
|
|
function mnemonicToSeed(mnemonic, password) {
|
|
|
|
if (!password) {
|
|
|
|
password = '';
|
|
|
|
}
|
|
|
|
var salt = utf8_1.toUtf8Bytes('mnemonic' + password, utf8_1.UnicodeNormalizationForm.NFKD);
|
2018-06-19 02:12:57 -04:00
|
|
|
return bytes_1.hexlify(pbkdf2_1.pbkdf2(utf8_1.toUtf8Bytes(mnemonic, utf8_1.UnicodeNormalizationForm.NFKD), salt, 2048, 64, 'sha512'));
|
2018-06-13 15:39:39 -04:00
|
|
|
}
|
|
|
|
exports.mnemonicToSeed = mnemonicToSeed;
|
2018-06-20 20:29:54 -04:00
|
|
|
function mnemonicToEntropy(mnemonic, wordlist) {
|
|
|
|
if (!wordlist) {
|
|
|
|
wordlist = lang_en_1.langEn;
|
|
|
|
}
|
2018-11-09 14:42:29 -05:00
|
|
|
errors.checkNormalize();
|
2018-06-20 20:29:54 -04:00
|
|
|
var words = wordlist.split(mnemonic);
|
2018-06-13 15:39:39 -04:00
|
|
|
if ((words.length % 3) !== 0) {
|
|
|
|
throw new Error('invalid mnemonic');
|
|
|
|
}
|
2018-06-17 16:47:28 -04:00
|
|
|
var entropy = bytes_1.arrayify(new Uint8Array(Math.ceil(11 * words.length / 8)));
|
2018-06-13 15:39:39 -04:00
|
|
|
var offset = 0;
|
|
|
|
for (var i = 0; i < words.length; i++) {
|
2018-06-20 20:29:54 -04:00
|
|
|
var index = wordlist.getWordIndex(words[i].normalize('NFKD'));
|
2018-06-13 15:39:39 -04:00
|
|
|
if (index === -1) {
|
|
|
|
throw new Error('invalid mnemonic');
|
|
|
|
}
|
|
|
|
for (var bit = 0; bit < 11; bit++) {
|
|
|
|
if (index & (1 << (10 - bit))) {
|
|
|
|
entropy[offset >> 3] |= (1 << (7 - (offset % 8)));
|
|
|
|
}
|
|
|
|
offset++;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
var entropyBits = 32 * words.length / 3;
|
|
|
|
var checksumBits = words.length / 3;
|
|
|
|
var checksumMask = getUpperMask(checksumBits);
|
2018-06-17 16:47:28 -04:00
|
|
|
var checksum = bytes_1.arrayify(sha2_1.sha256(entropy.slice(0, entropyBits / 8)))[0];
|
2018-06-13 15:39:39 -04:00
|
|
|
checksum &= checksumMask;
|
|
|
|
if (checksum !== (entropy[entropy.length - 1] & checksumMask)) {
|
|
|
|
throw new Error('invalid checksum');
|
|
|
|
}
|
2018-06-17 16:47:28 -04:00
|
|
|
return bytes_1.hexlify(entropy.slice(0, entropyBits / 8));
|
2018-06-13 15:39:39 -04:00
|
|
|
}
|
|
|
|
exports.mnemonicToEntropy = mnemonicToEntropy;
|
2018-06-20 20:29:54 -04:00
|
|
|
function entropyToMnemonic(entropy, wordlist) {
|
2018-06-17 16:47:28 -04:00
|
|
|
entropy = bytes_1.arrayify(entropy);
|
2018-06-13 15:39:39 -04:00
|
|
|
if ((entropy.length % 4) !== 0 || entropy.length < 16 || entropy.length > 32) {
|
|
|
|
throw new Error('invalid entropy');
|
|
|
|
}
|
2018-06-15 04:18:17 -04:00
|
|
|
var indices = [0];
|
2018-06-13 15:39:39 -04:00
|
|
|
var remainingBits = 11;
|
|
|
|
for (var i = 0; i < entropy.length; i++) {
|
|
|
|
// Consume the whole byte (with still more to go)
|
|
|
|
if (remainingBits > 8) {
|
2018-06-15 04:18:17 -04:00
|
|
|
indices[indices.length - 1] <<= 8;
|
|
|
|
indices[indices.length - 1] |= entropy[i];
|
2018-06-13 15:39:39 -04:00
|
|
|
remainingBits -= 8;
|
|
|
|
// This byte will complete an 11-bit index
|
|
|
|
}
|
|
|
|
else {
|
2018-06-15 04:18:17 -04:00
|
|
|
indices[indices.length - 1] <<= remainingBits;
|
|
|
|
indices[indices.length - 1] |= entropy[i] >> (8 - remainingBits);
|
2018-06-13 15:39:39 -04:00
|
|
|
// Start the next word
|
2018-06-15 04:18:17 -04:00
|
|
|
indices.push(entropy[i] & getLowerMask(8 - remainingBits));
|
2018-06-13 15:39:39 -04:00
|
|
|
remainingBits += 3;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
// Compute the checksum bits
|
2018-06-17 16:47:28 -04:00
|
|
|
var checksum = bytes_1.arrayify(sha2_1.sha256(entropy))[0];
|
2018-06-13 15:39:39 -04:00
|
|
|
var checksumBits = entropy.length / 4;
|
|
|
|
checksum &= getUpperMask(checksumBits);
|
|
|
|
// Shift the checksum into the word indices
|
2018-06-15 04:18:17 -04:00
|
|
|
indices[indices.length - 1] <<= checksumBits;
|
|
|
|
indices[indices.length - 1] |= (checksum >> (8 - checksumBits));
|
2018-06-20 20:29:54 -04:00
|
|
|
if (!wordlist) {
|
|
|
|
wordlist = lang_en_1.langEn;
|
|
|
|
}
|
|
|
|
return wordlist.join(indices.map(function (index) { return wordlist.getWord(index); }));
|
2018-06-13 15:39:39 -04:00
|
|
|
}
|
|
|
|
exports.entropyToMnemonic = entropyToMnemonic;
|
2018-06-20 20:29:54 -04:00
|
|
|
function isValidMnemonic(mnemonic, wordlist) {
|
2018-06-13 15:39:39 -04:00
|
|
|
try {
|
2018-06-20 20:29:54 -04:00
|
|
|
mnemonicToEntropy(mnemonic, wordlist);
|
2018-06-13 15:39:39 -04:00
|
|
|
return true;
|
|
|
|
}
|
|
|
|
catch (error) { }
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
exports.isValidMnemonic = isValidMnemonic;
|