npm - @meshsdk/core-cst - Versions diffs - 1.7.15 → 1.7.16 - Mend

@meshsdk/core-cst 1.7.15 → 1.7.16

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/index.cjs CHANGED Viewed

@@ -1130,6 +1130,9 @@ var DRepID = import_core.Cardano.DRepID;
 var DRep = import_core.Serialization.DRep;
 var StakeCredentialStatus = import_core.Cardano.StakeCredentialStatus;
+// src/message-signing/check-signature.ts
+var import_bip32ed25519 = require("@stricahq/bip32ed25519");
 // src/message-signing/cose-sign1.ts
 var import_buffer = require("buffer");
 var import_blakejs = __toESM(require_blakejs(), 1);
@@ -1274,8 +1277,66 @@ var getCoseKeyFromPublicKey = (cbor) => {
 };
 // src/message-signing/check-signature.ts
-var checkSignature = (data, { key, signature }) => {
+var checkSignature = (data, { key, signature }, address) => {
   const builder = CoseSign1.fromCbor(signature);
+  const publicKeyBuffer = getPublicKeyFromCoseKey(key);
+  if (address) {
+    let network = NetworkId.Mainnet;
+    const paymentAddress = BaseAddress.fromAddress(Address.fromBech32(address));
+    const coseSign1PublicKey = new import_bip32ed25519.Bip32PublicKey(publicKeyBuffer);
+    const credential = {
+      hash: Hash28ByteBase162.fromEd25519KeyHashHex(
+        Ed25519KeyHashHex2(
+          coseSign1PublicKey.toPublicKey().hash().toString("hex")
+        )
+      ),
+      type: 0
+    };
+    if (address.startsWith("addr")) {
+      if (address.startsWith("addr_test1")) {
+        network = NetworkId.Testnet;
+      }
+      const stakeCredential = paymentAddress?.getStakeCredential();
+      if (stakeCredential) {
+        const paymentAddressBech32 = BaseAddress.fromCredentials(
+          network,
+          credential,
+          stakeCredential
+        ).toAddress().toBech32();
+        if (address !== paymentAddressBech32) {
+          const extractedRewardAddress = RewardAddress.fromCredentials(
+            network,
+            stakeCredential
+          ).toAddress().toBech32();
+          const rewardAddress = RewardAddress.fromCredentials(
+            network,
+            credential
+          ).toAddress().toBech32();
+          if (rewardAddress !== extractedRewardAddress) {
+            return false;
+          }
+        }
+      } else {
+        const enterpriseAddress = EnterpriseAddress.fromCredentials(
+          network,
+          credential
+        ).toAddress().toBech32();
+        if (enterpriseAddress !== address) {
+          return false;
+        }
+      }
+    } else if (address.startsWith("stake")) {
+      if (address.startsWith("stake_test1")) {
+        network = NetworkId.Testnet;
+      }
+      const rewardAddress = RewardAddress.fromCredentials(network, credential).toAddress().toBech32();
+      if (rewardAddress !== address) {
+        return false;
+      }
+    } else {
+      return false;
+    }
+  }
   if (builder.getPayload() === null) {
     return false;
   }
@@ -1283,7 +1344,7 @@ var checkSignature = (data, { key, signature }) => {
     return false;
   }
   return builder.verifySignature({
-    publicKeyBuffer: getPublicKeyFromCoseKey(key)
+    publicKeyBuffer
   });
 };

package/dist/index.d.cts CHANGED Viewed

@@ -220,7 +220,8 @@ type Signer = {
     key: StricaPrivateKey;
 };
-declare const checkSignature: (data: string, { key, signature }: DataSignature) => boolean;
+/** @param address - Optional Bech32 string of a stake, stake_test1, addr, or addr_test1 address. If provided, this function will validate the signer's address against this value. */
+declare const checkSignature: (data: string, { key, signature }: DataSignature, address?: string) => boolean;
 declare class CoseSign1 {
     private protectedMap;

package/dist/index.d.ts CHANGED Viewed

@@ -220,7 +220,8 @@ type Signer = {
     key: StricaPrivateKey;
 };
-declare const checkSignature: (data: string, { key, signature }: DataSignature) => boolean;
+/** @param address - Optional Bech32 string of a stake, stake_test1, addr, or addr_test1 address. If provided, this function will validate the signer's address against this value. */
+declare const checkSignature: (data: string, { key, signature }: DataSignature, address?: string) => boolean;
 declare class CoseSign1 {
     private protectedMap;

package/dist/index.js CHANGED Viewed

@@ -970,6 +970,9 @@ var DRepID = Cardano.DRepID;
 var DRep = Serialization.DRep;
 var StakeCredentialStatus = Cardano.StakeCredentialStatus;
+// src/message-signing/check-signature.ts
+import { Bip32PublicKey } from "@stricahq/bip32ed25519";
 // src/message-signing/cose-sign1.ts
 var import_blakejs = __toESM(require_blakejs(), 1);
 import { Buffer as Buffer2 } from "buffer";
@@ -1114,8 +1117,66 @@ var getCoseKeyFromPublicKey = (cbor) => {
 };
 // src/message-signing/check-signature.ts
-var checkSignature = (data, { key, signature }) => {
+var checkSignature = (data, { key, signature }, address) => {
   const builder = CoseSign1.fromCbor(signature);
+  const publicKeyBuffer = getPublicKeyFromCoseKey(key);
+  if (address) {
+    let network = NetworkId.Mainnet;
+    const paymentAddress = BaseAddress.fromAddress(Address.fromBech32(address));
+    const coseSign1PublicKey = new Bip32PublicKey(publicKeyBuffer);
+    const credential = {
+      hash: Hash28ByteBase162.fromEd25519KeyHashHex(
+        Ed25519KeyHashHex2(
+          coseSign1PublicKey.toPublicKey().hash().toString("hex")
+        )
+      ),
+      type: 0
+    };
+    if (address.startsWith("addr")) {
+      if (address.startsWith("addr_test1")) {
+        network = NetworkId.Testnet;
+      }
+      const stakeCredential = paymentAddress?.getStakeCredential();
+      if (stakeCredential) {
+        const paymentAddressBech32 = BaseAddress.fromCredentials(
+          network,
+          credential,
+          stakeCredential
+        ).toAddress().toBech32();
+        if (address !== paymentAddressBech32) {
+          const extractedRewardAddress = RewardAddress.fromCredentials(
+            network,
+            stakeCredential
+          ).toAddress().toBech32();
+          const rewardAddress = RewardAddress.fromCredentials(
+            network,
+            credential
+          ).toAddress().toBech32();
+          if (rewardAddress !== extractedRewardAddress) {
+            return false;
+          }
+        }
+      } else {
+        const enterpriseAddress = EnterpriseAddress.fromCredentials(
+          network,
+          credential
+        ).toAddress().toBech32();
+        if (enterpriseAddress !== address) {
+          return false;
+        }
+      }
+    } else if (address.startsWith("stake")) {
+      if (address.startsWith("stake_test1")) {
+        network = NetworkId.Testnet;
+      }
+      const rewardAddress = RewardAddress.fromCredentials(network, credential).toAddress().toBech32();
+      if (rewardAddress !== address) {
+        return false;
+      }
+    } else {
+      return false;
+    }
+  }
   if (builder.getPayload() === null) {
     return false;
   }
@@ -1123,7 +1184,7 @@ var checkSignature = (data, { key, signature }) => {
     return false;
   }
   return builder.verifySignature({
-    publicKeyBuffer: getPublicKeyFromCoseKey(key)
+    publicKeyBuffer
   });
 };

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@meshsdk/core-cst",
-  "version": "1.7.15",
+  "version": "1.7.16",
   "description": "",
   "main": "./dist/index.cjs",
   "browser": "./dist/index.js",
@@ -42,7 +42,7 @@
     "@harmoniclabs/cbor": "1.3.0",
     "@harmoniclabs/plutus-data": "1.2.4",
     "@harmoniclabs/uplc": "1.2.4",
-    "@meshsdk/common": "1.7.15",
+    "@meshsdk/common": "1.7.16",
     "@stricahq/bip32ed25519": "^1.1.0",
     "@stricahq/cbors": "^1.0.3",
     "pbkdf2": "^3.1.2"
@@ -59,4 +59,4 @@
     "blockchain",
     "sdk"
   ]
-}
+}