npm - @koralabs/kora-labs-common - Versions diffs - 6.6.0 → 6.6.2 - Mend

@koralabs/kora-labs-common 6.6.0 → 6.6.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
     "name": "@koralabs/kora-labs-common",
-    "version": "6.6.0",
+    "version": "6.6.2",
     "description": "Kora Labs Common Utilities",
     "main": "index.js",
     "types": "index.d.ts",
@@ -47,9 +47,7 @@
         "bs58": "^6.0.0",
         "cbor": "^9.0.2",
         "crc": "^4.3.2",
+        "libsodium-wrappers-sumo": "^0.8.3",
         "pluralize-esm": "^9.0.5"
-    },
-    "overrides": {
-        "minimatch": "10.2.2"
     }
 }

package/utils/cip8/index.d.ts CHANGED Viewed

@@ -1,3 +1,18 @@
+/**
+ * Produce a CIP-30 signData (CIP-8) signature.
+ *
+ * Builds COSE_Sign1 and COSE_Key structures that verifyCip30SignData can verify.
+ *
+ * @param privateKeyHex - raw Ed25519 private key (32 bytes hex)
+ * @param publicKeyHex  - raw Ed25519 public key (32 bytes hex)
+ * @param payloadHex    - hex of the payload to sign (e.g. UTF-8 bytes of requestId + handle)
+ * @param addressHex    - hex of the signing address (included in COSE protected headers)
+ * @returns { signature: string, key: string } — COSESign1 and COSEKey as CBOR hex
+ */
+export declare const signCip30Data: (privateKeyHex: string, publicKeyHex: string, payloadHex: string, addressHex: string, signFn?: ((messageHex: string) => string) | undefined) => Promise<{
+    signature: string;
+    key: string;
+}>;
 /**
  * Verify a CIP-30 signData (CIP-8) signature.
  *

package/utils/cip8/index.js CHANGED Viewed

@@ -23,7 +23,7 @@ var __importStar = (this && this.__importStar) || function (mod) {
     return result;
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.verifyCip30SignData = void 0;
+exports.verifyCip30SignData = exports.signCip30Data = void 0;
 const crypto_1 = require("crypto");
 let _cms;
 const getCms = async () => {
@@ -32,6 +32,65 @@ const getCms = async () => {
     }
     return _cms;
 };
+/**
+ * Produce a CIP-30 signData (CIP-8) signature.
+ *
+ * Builds COSE_Sign1 and COSE_Key structures that verifyCip30SignData can verify.
+ *
+ * @param privateKeyHex - raw Ed25519 private key (32 bytes hex)
+ * @param publicKeyHex  - raw Ed25519 public key (32 bytes hex)
+ * @param payloadHex    - hex of the payload to sign (e.g. UTF-8 bytes of requestId + handle)
+ * @param addressHex    - hex of the signing address (included in COSE protected headers)
+ * @returns { signature: string, key: string } — COSESign1 and COSEKey as CBOR hex
+ */
+const signCip30Data = async (privateKeyHex, publicKeyHex, payloadHex, addressHex,
+/** Optional sign function for extended keys. Takes message hex, returns signature hex. */
+signFn) => {
+    const cms = await getCms();
+    const payloadBytes = Buffer.from(payloadHex, 'hex');
+    const addrBytes = Buffer.from(addressHex, 'hex');
+    const pubKeyBytes = Buffer.from(publicKeyHex, 'hex');
+    // Build protected headers: algorithm = EdDSA, address = signing address
+    const protectedHeaders = cms.HeaderMap.new();
+    protectedHeaders.set_algorithm_id(cms.Label.from_algorithm_id(cms.AlgorithmId.EdDSA));
+    protectedHeaders.set_header(cms.Label.new_text('address'), cms.CBORValue.new_bytes(addrBytes));
+    const headers = cms.Headers.new(cms.ProtectedHeaderMap.new(protectedHeaders), cms.HeaderMap.new());
+    const builder = cms.COSESign1Builder.new(headers, payloadBytes, false);
+    // Sign the SigStructure with the Ed25519 private key.
+    // Accepts 32-byte seed (Node.js crypto) or 64-byte extended key (Cardano BIP32).
+    // For extended keys, a signFn callback must be provided since the standard
+    // DER format doesn't support pre-clamped scalars.
+    const sigStructureBytes = builder.make_data_to_sign().to_bytes();
+    const privKeyRaw = Buffer.from(privateKeyHex, 'hex');
+    let signatureBytes;
+    if (privKeyRaw.length <= 32) {
+        // 32-byte seed: use Node.js crypto
+        const privKeyDer = Buffer.concat([
+            Buffer.from('302e020100300506032b657004220420', 'hex'),
+            privKeyRaw
+        ]);
+        const keyObject = (0, crypto_1.createPrivateKey)({ key: privKeyDer, format: 'der', type: 'pkcs8' });
+        signatureBytes = (0, crypto_1.sign)(null, Buffer.from(sigStructureBytes), keyObject);
+    }
+    else if (signFn) {
+        // Extended key with custom sign function (e.g. @cardano-sdk/crypto Ed25519PrivateKey.sign)
+        signatureBytes = Buffer.from(signFn(Buffer.from(sigStructureBytes).toString('hex')), 'hex');
+    }
+    else {
+        throw new Error('64-byte extended key requires a signFn parameter');
+    }
+    const coseSign1 = builder.build(signatureBytes);
+    // Build COSE_Key with the public key
+    const coseKey = cms.COSEKey.new(cms.Label.from_key_type(cms.KeyType.OKP));
+    coseKey.set_algorithm_id(cms.Label.from_algorithm_id(cms.AlgorithmId.EdDSA));
+    coseKey.set_header(cms.Label.new_int(cms.Int.new_i32(-1)), cms.CBORValue.from_label(cms.Label.from_curve_type(cms.CurveType.Ed25519)));
+    coseKey.set_header(cms.Label.new_int(cms.Int.new_i32(-2)), cms.CBORValue.new_bytes(pubKeyBytes));
+    return {
+        signature: Buffer.from(coseSign1.to_bytes()).toString('hex'),
+        key: Buffer.from(coseKey.to_bytes()).toString('hex')
+    };
+};
+exports.signCip30Data = signCip30Data;
 /**
  * Verify a CIP-30 signData (CIP-8) signature.
  *