@ledgerhq/hw-ledger-key-ring-protocol 0.2.1-nightly.0

package/lib-es/Device.d.ts

@@ -0,0 +1,43 @@
+import { PublicKey } from "./PublicKey";
+import { CommandBlock } from "./CommandBlock";
+import { KeyPair } from "./Crypto";
+import { StreamTree } from "./StreamTree";
+/**
+ *
+ */
+export interface Device {
+    getPublicKey(): Promise<PublicKey>;
+    /**
+     * Checks wether the public key can be directly fetched or if acquiring the public key
+     * requires a user action.
+     *
+     * @returns True if the public key is directly available, false otherwise
+     */
+    isPublicKeyAvailable(): boolean;
+    sign(stream: CommandBlock[], tree?: StreamTree): Promise<CommandBlock>;
+    /**
+     * Read the symmetric key from the stream tree at the given path. This function may not be implemented by all devices.
+     * @param tree The stream tree
+     * @param path The path to the key
+     * @returns The public key of the symmetric key
+     */
+    readKey(tree: StreamTree, path: number[]): Promise<Uint8Array>;
+}
+export declare class SoftwareDevice implements Device {
+    private keyPair;
+    constructor(kp: KeyPair);
+    getPublicKey(): Promise<PublicKey>;
+    private generateSharedKey;
+    private encryptSharedKey;
+    private decryptSharedKey;
+    private deriveKey;
+    sign(stream: CommandBlock[], tree?: StreamTree): Promise<CommandBlock>;
+    readKey(tree: StreamTree, path: number[]): Promise<Uint8Array>;
+    isPublicKeyAvailable(): boolean;
+}
+/**
+ *
+ */
+export declare function createDevice(): Promise<Device>;
+export declare const ISSUER_PLACEHOLDER: Uint8Array;
+//# sourceMappingURL=Device.d.ts.map

package/lib-es/Device.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"Device.d.ts","sourceRoot":"","sources":["../src/Device.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC;AACxC,OAAO,EACL,YAAY,EAMb,MAAM,gBAAgB,CAAC;AAExB,OAAO,EAA0B,OAAO,EAAE,MAAM,UAAU,CAAC;AAC3D,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAE1C;;GAEG;AACH,MAAM,WAAW,MAAM;IAErB,YAAY,IAAI,OAAO,CAAC,SAAS,CAAC,CAAC;IAEnC;;;;;OAKG;IACH,oBAAoB,IAAI,OAAO,CAAC;IAGhC,IAAI,CAAC,MAAM,EAAE,YAAY,EAAE,EAAE,IAAI,CAAC,EAAE,UAAU,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC;IAEvE;;;;;OAKG;IACH,OAAO,CAAC,IAAI,EAAE,UAAU,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC;CAChE;AAcD,qBAAa,cAAe,YAAW,MAAM;IAC3C,OAAO,CAAC,OAAO,CAAU;gBAEb,EAAE,EAAE,OAAO;IAIjB,YAAY,IAAI,OAAO,CAAC,SAAS,CAAC;YAI1B,iBAAiB;YAMjB,gBAAgB;YAgBhB,gBAAgB;YAUhB,SAAS;IAmBjB,IAAI,CAAC,MAAM,EAAE,YAAY,EAAE,EAAE,IAAI,CAAC,EAAE,UAAU,GAAG,OAAO,CAAC,YAAY,CAAC;IAgGtE,OAAO,CAAC,IAAI,EAAE,UAAU,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,UAAU,CAAC;IA4BpE,oBAAoB,IAAI,OAAO;CAGhC;AAED;;GAEG;AACH,wBAAsB,YAAY,IAAI,OAAO,CAAC,MAAM,CAAC,CAGpD;AAED,eAAO,MAAM,kBAAkB,YAE7B,CAAC"}

package/lib-es/Device.js

@@ -0,0 +1,195 @@
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+import { PublicKey } from "./PublicKey";
+import { CommandType, signCommandBlock, } from "./CommandBlock";
+import CommandStreamResolver from "./CommandStreamResolver";
+import { crypto, DerivationPath } from "./Crypto";
+export class SoftwareDevice {
+    constructor(kp) {
+        this.keyPair = kp;
+    }
+    getPublicKey() {
+        return __awaiter(this, void 0, void 0, function* () {
+            return new PublicKey(this.keyPair.publicKey);
+        });
+    }
+    generateSharedKey() {
+        return __awaiter(this, void 0, void 0, function* () {
+            const xpriv = yield crypto.randomBytes(64);
+            const pk = yield crypto.derivePrivate(xpriv, []);
+            return { xpriv, publicKey: pk.publicKey };
+        });
+    }
+    encryptSharedKey(sharedKey, recipient) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const kp = yield crypto.randomKeypair();
+            const ecdh = yield crypto.ecdh(kp, recipient);
+            const initializationVector = yield crypto.randomBytes(16);
+            const encryptedXpriv = yield crypto.encrypt(ecdh, initializationVector, sharedKey.xpriv);
+            return {
+                encryptedXpriv,
+                publicKey: sharedKey.publicKey,
+                ephemeralPublicKey: kp.publicKey,
+                initializationVector,
+            };
+        });
+    }
+    decryptSharedKey(encryptedSharedKey) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const ecdh = yield crypto.ecdh(this.keyPair, encryptedSharedKey.ephemeralPublicKey);
+            const xpriv = yield crypto.decrypt(ecdh, encryptedSharedKey.initializationVector, encryptedSharedKey.encryptedXpriv);
+            return { xpriv, publicKey: encryptedSharedKey.publicKey };
+        });
+    }
+    deriveKey(tree, path) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const event = yield tree.getPublishKeyEvent(this.keyPair.publicKey, path);
+            if (!event) {
+                throw new Error("Cannot find key in the tree for the current device");
+            }
+            const encryptedSharedKey = {
+                encryptedXpriv: event.encryptedXpriv,
+                publicKey: event.groupPublicKey,
+                ephemeralPublicKey: event.ephemeralPublicKey,
+                initializationVector: event.nonce,
+            };
+            const sharedKey = yield this.decryptSharedKey(encryptedSharedKey);
+            const newKey = yield crypto.derivePrivate(sharedKey.xpriv, path);
+            const xpriv = new Uint8Array(64);
+            xpriv.set(newKey.privateKey);
+            xpriv.set(newKey.chainCode, 32);
+            return { xpriv, publicKey: newKey.publicKey };
+        });
+    }
+    sign(stream, tree) {
+        return __awaiter(this, void 0, void 0, function* () {
+            if (stream.length === 0) {
+                throw new Error("Cannot sign an empty stream");
+            }
+            if (stream[stream.length - 1].commands.length === 0) {
+                throw new Error("Cannot sign an empty block");
+            }
+            const lastBlock = stream[stream.length - 1];
+            lastBlock.issuer = this.keyPair.publicKey;
+            // Resolve the stream (before the last block)
+            const resolved = yield CommandStreamResolver.resolve(stream.slice(0, stream.length - 1));
+            // The shared key of the stream
+            let sharedKey = null;
+            // Iterate through the commands to inject encrypted keys
+            for (let commandIndex = 0; commandIndex < lastBlock.commands.length; commandIndex++) {
+                const command = lastBlock.commands[commandIndex];
+                switch (command.getType()) {
+                    case CommandType.Seed: {
+                        // Generate the shared key
+                        sharedKey = yield this.generateSharedKey();
+                        // Encrypt the shared key and inject it in the command
+                        const encryptedSharedKey = yield this.encryptSharedKey(sharedKey, this.keyPair.publicKey);
+                        command.groupKey = sharedKey.publicKey;
+                        command.encryptedXpriv = encryptedSharedKey.encryptedXpriv;
+                        command.ephemeralPublicKey = encryptedSharedKey.ephemeralPublicKey;
+                        command.initializationVector = encryptedSharedKey.initializationVector;
+                        break;
+                    }
+                    case CommandType.Derive: {
+                        // Derive the shared key from the tree
+                        if (!tree) {
+                            throw new Error("Cannot derive a key without a tree");
+                        }
+                        sharedKey = yield this.deriveKey(tree, command.path);
+                        // Encrypt the shared key and inject it in the command
+                        const encryptedDerivedKey = yield this.encryptSharedKey(sharedKey, this.keyPair.publicKey);
+                        command.groupKey = sharedKey.publicKey;
+                        command.encryptedXpriv = encryptedDerivedKey.encryptedXpriv;
+                        command.initializationVector = encryptedDerivedKey.initializationVector;
+                        command.ephemeralPublicKey = encryptedDerivedKey.ephemeralPublicKey;
+                        break;
+                    }
+                    case CommandType.PublishKey: {
+                        // Derive the shared key from the tree
+                        if (!sharedKey) {
+                            // If the current stream is the seed stream, read the key from the first command in the first block
+                            const encryptedKey = resolved.getEncryptedKey(this.keyPair.publicKey);
+                            if (encryptedKey) {
+                                sharedKey = yield this.decryptSharedKey({
+                                    encryptedXpriv: encryptedKey.encryptedXpriv,
+                                    initializationVector: encryptedKey.initialiationVector,
+                                    publicKey: encryptedKey.issuer,
+                                    ephemeralPublicKey: encryptedKey.ephemeralPublicKey,
+                                });
+                            }
+                            else if (stream[0].commands[0].getType() == CommandType.Seed) {
+                                if (crypto.to_hex(stream[0].issuer) !== crypto.to_hex(this.keyPair.publicKey)) {
+                                    throw new Error("Cannot read the seed key from another device");
+                                }
+                            }
+                            else {
+                                // console.dir(stream, { depth: null });
+                                sharedKey = yield this.deriveKey(tree, resolved.getStreamDerivationPath());
+                            }
+                            if (!sharedKey)
+                                throw new Error("Cannot find the shared key");
+                        }
+                        const encryptedSharedKey = yield this.encryptSharedKey(sharedKey, command.recipient);
+                        command.encryptedXpriv = encryptedSharedKey.encryptedXpriv;
+                        command.initializationVector = encryptedSharedKey.initializationVector;
+                        command.ephemeralPublicKey = encryptedSharedKey.ephemeralPublicKey;
+                        break;
+                    }
+                }
+            }
+            const signature = (yield signCommandBlock(lastBlock, (yield this.getPublicKey()).publicKey, this.keyPair.privateKey)).signature;
+            lastBlock.signature = signature;
+            return lastBlock;
+        });
+    }
+    readKey(tree, path) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const event = yield tree.getPublishKeyEvent(this.keyPair.publicKey, path);
+            if (!event) {
+                throw new Error("Cannot find key in the tree for the current device");
+            }
+            const encryptedSharedKey = {
+                encryptedXpriv: event.encryptedXpriv,
+                initializationVector: event.nonce,
+                publicKey: event.groupPublicKey,
+                ephemeralPublicKey: event.ephemeralPublicKey,
+            };
+            const sharedKey = yield this.decryptSharedKey(encryptedSharedKey);
+            // Derive the key to match the path
+            let index = DerivationPath.toIndexArray(event.stream.getStreamPath()).length;
+            while (index < path.length) {
+                const derivation = yield crypto.derivePrivate(sharedKey.xpriv, [index]);
+                const xpriv = new Uint8Array(64);
+                xpriv.set(derivation.privateKey);
+                xpriv.set(derivation.chainCode, 32);
+                sharedKey.xpriv = xpriv;
+                sharedKey.publicKey = derivation.publicKey;
+                index += 1;
+            }
+            return sharedKey.xpriv;
+        });
+    }
+    isPublicKeyAvailable() {
+        return true;
+    }
+}
+/**
+ *
+ */
+export function createDevice() {
+    return __awaiter(this, void 0, void 0, function* () {
+        const kp = yield crypto.randomKeypair();
+        return new SoftwareDevice(kp);
+    });
+}
+export const ISSUER_PLACEHOLDER = new Uint8Array([
+    3, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
+]);
+//# sourceMappingURL=Device.js.map

package/lib-es/Device.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"Device.js","sourceRoot":"","sources":["../src/Device.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC;AACxC,OAAO,EAEL,WAAW,EACX,gBAAgB,GAIjB,MAAM,gBAAgB,CAAC;AACxB,OAAO,qBAAqB,MAAM,yBAAyB,CAAC;AAC5D,OAAO,EAAE,MAAM,EAAE,cAAc,EAAW,MAAM,UAAU,CAAC;AA0C3D,MAAM,OAAO,cAAc;IAGzB,YAAY,EAAW;QACrB,IAAI,CAAC,OAAO,GAAG,EAAE,CAAC;IACpB,CAAC;IAEK,YAAY;;YAChB,OAAO,IAAI,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QAC/C,CAAC;KAAA;IAEa,iBAAiB;;YAC7B,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC;YAC3C,MAAM,EAAE,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YACjD,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,EAAE,CAAC,SAAS,EAAE,CAAC;QAC5C,CAAC;KAAA;IAEa,gBAAgB,CAC5B,SAAoB,EACpB,SAAqB;;YAErB,MAAM,EAAE,GAAG,MAAM,MAAM,CAAC,aAAa,EAAE,CAAC;YACxC,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,EAAE,EAAE,SAAS,CAAC,CAAC;YAC9C,MAAM,oBAAoB,GAAG,MAAM,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC;YAC1D,MAAM,cAAc,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,IAAI,EAAE,oBAAoB,EAAE,SAAS,CAAC,KAAK,CAAC,CAAC;YACzF,OAAO;gBACL,cAAc;gBACd,SAAS,EAAE,SAAS,CAAC,SAAS;gBAC9B,kBAAkB,EAAE,EAAE,CAAC,SAAS;gBAChC,oBAAoB;aACrB,CAAC;QACJ,CAAC;KAAA;IAEa,gBAAgB,CAAC,kBAAsC;;YACnE,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;YACpF,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,OAAO,CAChC,IAAI,EACJ,kBAAkB,CAAC,oBAAoB,EACvC,kBAAkB,CAAC,cAAc,CAClC,CAAC;YACF,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,kBAAkB,CAAC,SAAS,EAAE,CAAC;QAC5D,CAAC;KAAA;IAEa,SAAS,CAAC,IAAgB,EAAE,IAAc;;YACtD,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;YAC1E,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,MAAM,IAAI,KAAK,CAAC,oDAAoD,CAAC,CAAC;YACxE,CAAC;YACD,MAAM,kBAAkB,GAAG;gBACzB,cAAc,EAAE,KAAK,CAAC,cAAc;gBACpC,SAAS,EAAE,KAAK,CAAC,cAAc;gBAC/B,kBAAkB,EAAE,KAAK,CAAC,kBAAkB;gBAC5C,oBAAoB,EAAE,KAAK,CAAC,KAAK;aAClC,CAAC;YACF,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,kBAAkB,CAAC,CAAC;YAClE,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,SAAS,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;YACjE,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC;YACjC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;YAC7B,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC;YAChC,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,MAAM,CAAC,SAAS,EAAE,CAAC;QAChD,CAAC;KAAA;IAEK,IAAI,CAAC,MAAsB,EAAE,IAAiB;;YAClD,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACxB,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;YACjD,CAAC;YACD,IAAI,MAAM,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACpD,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;YAChD,CAAC;YACD,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;YAE5C,SAAS,CAAC,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC;YAE1C,6CAA6C;YAC7C,MAAM,QAAQ,GAAG,MAAM,qBAAqB,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC;YAEzF,+BAA+B;YAE/B,IAAI,SAAS,GAAqB,IAAI,CAAC;YAEvC,wDAAwD;YACxD,KAAK,IAAI,YAAY,GAAG,CAAC,EAAE,YAAY,GAAG,SAAS,CAAC,QAAQ,CAAC,MAAM,EAAE,YAAY,EAAE,EAAE,CAAC;gBACpF,MAAM,OAAO,GAAG,SAAS,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC;gBACjD,QAAQ,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC;oBAC1B,KAAK,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC;wBACtB,0BAA0B;wBAC1B,SAAS,GAAG,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;wBAE3C,sDAAsD;wBACtD,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,SAAS,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;wBACzF,OAAgB,CAAC,QAAQ,GAAG,SAAS,CAAC,SAAS,CAAC;wBAChD,OAAgB,CAAC,cAAc,GAAG,kBAAkB,CAAC,cAAc,CAAC;wBACpE,OAAgB,CAAC,kBAAkB,GAAG,kBAAkB,CAAC,kBAAkB,CAAC;wBAC5E,OAAgB,CAAC,oBAAoB,GAAG,kBAAkB,CAAC,oBAAoB,CAAC;wBACjF,MAAM;oBACR,CAAC;oBACD,KAAK,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC;wBACxB,sCAAsC;wBACtC,IAAI,CAAC,IAAI,EAAE,CAAC;4BACV,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;wBACxD,CAAC;wBACD,SAAS,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,IAAI,EAAG,OAAkB,CAAC,IAAI,CAAC,CAAC;wBAEjE,sDAAsD;wBACtD,MAAM,mBAAmB,GAAG,MAAM,IAAI,CAAC,gBAAgB,CACrD,SAAS,EACT,IAAI,CAAC,OAAO,CAAC,SAAS,CACvB,CAAC;wBACD,OAAkB,CAAC,QAAQ,GAAG,SAAS,CAAC,SAAS,CAAC;wBAClD,OAAkB,CAAC,cAAc,GAAG,mBAAmB,CAAC,cAAc,CAAC;wBACvE,OAAkB,CAAC,oBAAoB,GAAG,mBAAmB,CAAC,oBAAoB,CAAC;wBACnF,OAAkB,CAAC,kBAAkB,GAAG,mBAAmB,CAAC,kBAAkB,CAAC;wBAChF,MAAM;oBACR,CAAC;oBACD,KAAK,WAAW,CAAC,UAAU,CAAC,CAAC,CAAC;wBAC5B,sCAAsC;wBACtC,IAAI,CAAC,SAAS,EAAE,CAAC;4BACf,mGAAmG;4BACnG,MAAM,YAAY,GAAG,QAAQ,CAAC,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;4BACtE,IAAI,YAAY,EAAE,CAAC;gCACjB,SAAS,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC;oCACtC,cAAc,EAAE,YAAY,CAAC,cAAc;oCAC3C,oBAAoB,EAAE,YAAY,CAAC,mBAAmB;oCACtD,SAAS,EAAE,YAAY,CAAC,MAAM;oCAC9B,kBAAkB,EAAE,YAAY,CAAC,kBAAkB;iCACpD,CAAC,CAAC;4BACL,CAAC;iCAAM,IAAI,MAAM,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,OAAO,EAAE,IAAI,WAAW,CAAC,IAAI,EAAE,CAAC;gCAC/D,IAAI,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,CAAC;oCAC9E,MAAM,IAAI,KAAK,CAAC,8CAA8C,CAAC,CAAC;gCAClE,CAAC;4BACH,CAAC;iCAAM,CAAC;gCACN,wCAAwC;gCACxC,SAAS,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,IAAK,EAAE,QAAQ,CAAC,uBAAuB,EAAE,CAAC,CAAC;4BAC9E,CAAC;4BACD,IAAI,CAAC,SAAS;gCAAE,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;wBAChE,CAAC;wBACD,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,gBAAgB,CACpD,SAAU,EACT,OAAsB,CAAC,SAAS,CAClC,CAAC;wBACD,OAAsB,CAAC,cAAc,GAAG,kBAAkB,CAAC,cAAc,CAAC;wBAC1E,OAAsB,CAAC,oBAAoB,GAAG,kBAAkB,CAAC,oBAAoB,CAAC;wBACtF,OAAsB,CAAC,kBAAkB,GAAG,kBAAkB,CAAC,kBAAkB,CAAC;wBACnF,MAAM;oBACR,CAAC;gBACH,CAAC;YACH,CAAC;YACD,MAAM,SAAS,GAAG,CAChB,MAAM,gBAAgB,CACpB,SAAS,EACT,CAAC,MAAM,IAAI,CAAC,YAAY,EAAE,CAAC,CAAC,SAAS,EACrC,IAAI,CAAC,OAAO,CAAC,UAAU,CACxB,CACF,CAAC,SAAS,CAAC;YACZ,SAAS,CAAC,SAAS,GAAG,SAAS,CAAC;YAChC,OAAO,SAAS,CAAC;QACnB,CAAC;KAAA;IAEK,OAAO,CAAC,IAAgB,EAAE,IAAc;;YAC5C,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;YAC1E,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,MAAM,IAAI,KAAK,CAAC,oDAAoD,CAAC,CAAC;YACxE,CAAC;YACD,MAAM,kBAAkB,GAAuB;gBAC7C,cAAc,EAAE,KAAK,CAAC,cAAc;gBACpC,oBAAoB,EAAE,KAAK,CAAC,KAAK;gBACjC,SAAS,EAAE,KAAK,CAAC,cAAc;gBAC/B,kBAAkB,EAAE,KAAK,CAAC,kBAAkB;aAC7C,CAAC;YACF,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,kBAAkB,CAAC,CAAC;YAElE,mCAAmC;YACnC,IAAI,KAAK,GAAG,cAAc,CAAC,YAAY,CAAC,KAAK,CAAC,MAAM,CAAC,aAAa,EAAG,CAAC,CAAC,MAAM,CAAC;YAC9E,OAAO,KAAK,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC;gBAC3B,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,SAAS,CAAC,KAAK,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC;gBACxE,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC;gBACjC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,UAAU,CAAC,CAAC;gBACjC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC;gBACpC,SAAS,CAAC,KAAK,GAAG,KAAK,CAAC;gBACxB,SAAS,CAAC,SAAS,GAAG,UAAU,CAAC,SAAS,CAAC;gBAC3C,KAAK,IAAI,CAAC,CAAC;YACb,CAAC;YAED,OAAO,SAAS,CAAC,KAAK,CAAC;QACzB,CAAC;KAAA;IAED,oBAAoB;QAClB,OAAO,IAAI,CAAC;IACd,CAAC;CACF;AAED;;GAEG;AACH,MAAM,UAAgB,YAAY;;QAChC,MAAM,EAAE,GAAG,MAAM,MAAM,CAAC,aAAa,EAAE,CAAC;QACxC,OAAO,IAAI,cAAc,CAAC,EAAE,CAAC,CAAC;IAChC,CAAC;CAAA;AAED,MAAM,CAAC,MAAM,kBAAkB,GAAG,IAAI,UAAU,CAAC;IAC/C,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC;CAClG,CAAC,CAAC"}

package/lib-es/IndexedTree.d.ts

@@ -0,0 +1,13 @@
+export declare class IndexedTree<T> {
+    private node;
+    private children;
+    constructor(node: T | null, children?: Map<number, IndexedTree<T>>);
+    getHighestIndex(): number;
+    getChildren(): Map<number, IndexedTree<T>>;
+    getChild(index: number): IndexedTree<T> | undefined;
+    findChild(path: number[]): IndexedTree<T> | undefined;
+    getValue(): T | null;
+    updateChild(path: number[], value: T): IndexedTree<T>;
+    addChild(path: number[], child: IndexedTree<T>): IndexedTree<T>;
+}
+//# sourceMappingURL=IndexedTree.d.ts.map

package/lib-es/IndexedTree.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"IndexedTree.d.ts","sourceRoot":"","sources":["../src/IndexedTree.ts"],"names":[],"mappings":"AAAA,qBAAa,WAAW,CAAC,CAAC;IACxB,OAAO,CAAC,IAAI,CAAW;IACvB,OAAO,CAAC,QAAQ,CAA8B;gBAElC,IAAI,EAAE,CAAC,GAAG,IAAI,EAAE,QAAQ,GAAE,GAAG,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC,CAAC,CAAa;IAKtE,eAAe,IAAI,MAAM;IAIzB,WAAW,IAAI,GAAG,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC,CAAC,CAAC;IAI1C,QAAQ,CAAC,KAAK,EAAE,MAAM,GAAG,WAAW,CAAC,CAAC,CAAC,GAAG,SAAS;IAInD,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,WAAW,CAAC,CAAC,CAAC,GAAG,SAAS;IAYrD,QAAQ,IAAI,CAAC,GAAG,IAAI;IAKpB,WAAW,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,KAAK,EAAE,CAAC,GAAG,WAAW,CAAC,CAAC,CAAC;IAmBrD,QAAQ,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,KAAK,EAAE,WAAW,CAAC,CAAC,CAAC,GAAG,WAAW,CAAC,CAAC,CAAC;CAsBvE"}

package/lib-es/IndexedTree.js

@@ -0,0 +1,71 @@
+export class IndexedTree {
+    constructor(node, children = new Map()) {
+        this.node = node;
+        this.children = children;
+    }
+    getHighestIndex() {
+        return [...this.children.keys()].reduce((a, b) => Math.max(a, b), 0);
+    }
+    getChildren() {
+        return this.children;
+    }
+    getChild(index) {
+        return this.children.get(index);
+    }
+    findChild(path) {
+        if (path.length === 0) {
+            return this;
+        }
+        const index = path[0];
+        const rest = path.slice(1);
+        if (this.children.has(index)) {
+            return this.children.get(index).findChild(rest);
+        }
+        return undefined;
+    }
+    getValue() {
+        return this.node;
+    }
+    /// Update the value of the node, if the node doesn't exist, it will be created
+    updateChild(path, value) {
+        if (path.length === 0) {
+            return new IndexedTree(value, this.children);
+        }
+        const index = path[0];
+        const rest = path.slice(1);
+        const children = new Map(this.children);
+        if (this.children.has(index)) {
+            const subTree = this.children.get(index).updateChild(rest, value);
+            children.set(index, subTree);
+        }
+        else {
+            const subTree = new IndexedTree(null).updateChild(rest, value);
+            children.set(index, subTree);
+        }
+        return new IndexedTree(this.node, children);
+    }
+    /// Adds a subtree to the tree
+    addChild(path, child) {
+        if (path.length === 0) {
+            return this;
+        }
+        if (path.length == 1) {
+            const children = new Map(this.children);
+            children.set(path[0], child);
+            return new IndexedTree(this.node, children);
+        }
+        const index = path[0];
+        const rest = path.slice(1);
+        const children = new Map(this.children);
+        if (this.children.has(index)) {
+            const subTree = this.children.get(index).addChild(rest, child);
+            children.set(index, subTree);
+        }
+        else {
+            const subTree = new IndexedTree(null).addChild(rest, child);
+            children.set(index, subTree);
+        }
+        return new IndexedTree(this.node, children);
+    }
+}
+//# sourceMappingURL=IndexedTree.js.map

package/lib-es/IndexedTree.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"IndexedTree.js","sourceRoot":"","sources":["../src/IndexedTree.ts"],"names":[],"mappings":"AAAA,MAAM,OAAO,WAAW;IAItB,YAAY,IAAc,EAAE,WAAwC,IAAI,GAAG,EAAE;QAC3E,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;QACjB,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;IAC3B,CAAC;IAEM,eAAe;QACpB,OAAO,CAAC,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IACvE,CAAC;IAEM,WAAW;QAChB,OAAO,IAAI,CAAC,QAAQ,CAAC;IACvB,CAAC;IAEM,QAAQ,CAAC,KAAa;QAC3B,OAAO,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;IAClC,CAAC;IAEM,SAAS,CAAC,IAAc;QAC7B,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACtB,OAAO,IAAI,CAAC;QACd,CAAC;QACD,MAAM,KAAK,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC;QACtB,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QAC3B,IAAI,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;YAC7B,OAAO,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAE,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;QACnD,CAAC;QACD,OAAO,SAAS,CAAC;IACnB,CAAC;IAEM,QAAQ;QACb,OAAO,IAAI,CAAC,IAAI,CAAC;IACnB,CAAC;IAED,+EAA+E;IACxE,WAAW,CAAC,IAAc,EAAE,KAAQ;QACzC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACtB,OAAO,IAAI,WAAW,CAAC,KAAK,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC/C,CAAC;QAED,MAAM,KAAK,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC;QACtB,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QAC3B,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACxC,IAAI,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;YAC7B,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAE,CAAC,WAAW,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC;YACnE,QAAQ,CAAC,GAAG,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;QAC/B,CAAC;aAAM,CAAC;YACN,MAAM,OAAO,GAAG,IAAI,WAAW,CAAI,IAAI,CAAC,CAAC,WAAW,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC;YAClE,QAAQ,CAAC,GAAG,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;QAC/B,CAAC;QACD,OAAO,IAAI,WAAW,CAAC,IAAI,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;IAC9C,CAAC;IAED,8BAA8B;IACvB,QAAQ,CAAC,IAAc,EAAE,KAAqB;QACnD,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACtB,OAAO,IAAI,CAAC;QACd,CAAC;QACD,IAAI,IAAI,CAAC,MAAM,IAAI,CAAC,EAAE,CAAC;YACrB,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YACxC,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC;YAC7B,OAAO,IAAI,WAAW,CAAC,IAAI,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;QAC9C,CAAC;QACD,MAAM,KAAK,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC;QACtB,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QAC3B,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAExC,IAAI,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;YAC7B,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAE,CAAC,QAAQ,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC;YAChE,QAAQ,CAAC,GAAG,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;QAC/B,CAAC;aAAM,CAAC;YACN,MAAM,OAAO,GAAG,IAAI,WAAW,CAAI,IAAI,CAAC,CAAC,QAAQ,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC;YAC/D,QAAQ,CAAC,GAAG,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;QAC/B,CAAC;QACD,OAAO,IAAI,WAAW,CAAC,IAAI,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;IAC9C,CAAC;CACF"}

package/lib-es/NobleCrypto.d.ts

@@ -0,0 +1,41 @@
+import { Crypto, KeyPair, KeyPairWithChainCode } from "./Crypto";
+export declare class NobleCryptoSecp256k1 implements Crypto {
+    randomKeypair(): Promise<KeyPair>;
+    derivePrivate(xpriv: Uint8Array, path: number[]): Promise<KeyPairWithChainCode>;
+    keypairFromSecretKey(secretKey: Uint8Array): Promise<KeyPair>;
+    private derEncode;
+    private derDecode;
+    sign(message: Uint8Array, keyPair: KeyPair): Promise<Uint8Array>;
+    verify(message: Uint8Array, signature: Uint8Array, publicKey: Uint8Array): Promise<boolean>;
+    private to_array;
+    private normalizeKey;
+    private normalizeNonce;
+    private concat;
+    private enforceLength;
+    private pad;
+    private unpad;
+    encrypt(secret: Uint8Array, nonce: Uint8Array, message: Uint8Array): Promise<Uint8Array>;
+    decrypt(secret: Uint8Array, nonce: Uint8Array, ciphertext: Uint8Array): Promise<Uint8Array>;
+    /**
+     * Ledger Live data are encrypted following pattern based on ECIES.
+     * For each encryption the Ledger Live instance generates a random keypair over secp256k1 (ephemeral public key)
+     * and a 16 bytes IV. Ledger Live then perform an ECDH between the command stream public key and
+     * the ephemeral private key to get the encryption key.
+     * The data is then encrypted using AES-256-GCM and serialized using the following format:
+  1 byte : Version of the format (0x00)
+  33 bytes : Compressed ephemeral public key
+  16 bytes : Nonce/IV
+  16 bytes : Tag/MAC (from AES-256-GCM)
+  variable : Encrypted data
+     */
+    encryptUserData(commandStreamPrivateKey: Uint8Array, data: Uint8Array): Promise<Uint8Array>;
+    decryptUserData(commandStreamPrivateKey: Uint8Array, data: Uint8Array): Promise<Uint8Array>;
+    randomBytes(size: number): Promise<Uint8Array>;
+    ecdh(keyPair: KeyPair, publicKey: Uint8Array): Promise<Uint8Array>;
+    computeSymmetricKey(privateKey: Uint8Array, extra: Uint8Array): Promise<Uint8Array>;
+    hash(message: Uint8Array): Promise<Uint8Array>;
+    from_hex(hex: string): Uint8Array;
+    to_hex(bytes?: Uint8Array | undefined | null): string;
+}
+export declare function to_hex(bytes?: Uint8Array | undefined | null): string;
+//# sourceMappingURL=NobleCrypto.d.ts.map

package/lib-es/NobleCrypto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"NobleCrypto.d.ts","sourceRoot":"","sources":["../src/NobleCrypto.ts"],"names":[],"mappings":"AAMA,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,oBAAoB,EAAE,MAAM,UAAU,CAAC;AAMjE,qBAAa,oBAAqB,YAAW,MAAM;IAC3C,aAAa,IAAI,OAAO,CAAC,OAAO,CAAC;IAQjC,aAAa,CAAC,KAAK,EAAE,UAAU,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,oBAAoB,CAAC;IAc/E,oBAAoB,CAAC,SAAS,EAAE,UAAU,GAAG,OAAO,CAAC,OAAO,CAAC;IAOnE,OAAO,CAAC,SAAS;IAajB,OAAO,CAAC,SAAS;IAYX,IAAI,CAAC,OAAO,EAAE,UAAU,EAAE,OAAO,EAAE,OAAO,GAAG,OAAO,CAAC,UAAU,CAAC;IAMhE,MAAM,CACV,OAAO,EAAE,UAAU,EACnB,SAAS,EAAE,UAAU,EACrB,SAAS,EAAE,UAAU,GACpB,OAAO,CAAC,OAAO,CAAC;IAMnB,OAAO,CAAC,QAAQ;IAIhB,OAAO,CAAC,YAAY;IAOpB,OAAO,CAAC,cAAc;IAStB,OAAO,CAAC,MAAM;IAOd,OAAO,CAAC,aAAa;IAarB,OAAO,CAAC,GAAG;IAYX,OAAO,CAAC,KAAK;IAaP,OAAO,CAAC,MAAM,EAAE,UAAU,EAAE,KAAK,EAAE,UAAU,EAAE,OAAO,EAAE,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC;IAWxF,OAAO,CACX,MAAM,EAAE,UAAU,EAClB,KAAK,EAAE,UAAU,EACjB,UAAU,EAAE,UAAU,GACrB,OAAO,CAAC,UAAU,CAAC;IAYtB;;;;;;;;;;;OAWG;IACG,eAAe,CACnB,uBAAuB,EAAE,UAAU,EACnC,IAAI,EAAE,UAAU,GACf,OAAO,CAAC,UAAU,CAAC;IAmChB,eAAe,CACnB,uBAAuB,EAAE,UAAU,EACnC,IAAI,EAAE,UAAU,GACf,OAAO,CAAC,UAAU,CAAC;IA2BhB,WAAW,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC;IAI9C,IAAI,CAAC,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC;IAOlE,mBAAmB,CAAC,UAAU,EAAE,UAAU,EAAE,KAAK,EAAE,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC;IAKnF,IAAI,CAAC,OAAO,EAAE,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC;IAIpD,QAAQ,CAAC,GAAG,EAAE,MAAM,GAAG,UAAU;IAQjC,MAAM,CAAC,KAAK,CAAC,EAAE,UAAU,GAAG,SAAS,GAAG,IAAI,GAAG,MAAM;CAGtD;AAED,wBAAgB,MAAM,CAAC,KAAK,CAAC,EAAE,UAAU,GAAG,SAAS,GAAG,IAAI,GAAG,MAAM,CAKpE"}