@mysten/signers 0.1.11 → 0.1.13

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@mysten/signers",
-  "version": "0.1.11",
+  "version": "0.1.13",
   "description": "A collection of KMS signers for various cloud providers",
   "license": "Apache-2.0",
   "author": "Mysten Labs <build@mystenlabs.com>",
@@ -13,6 +13,10 @@
     "./gcp": {
       "import": "./dist/esm/gcp/index.js",
       "require": "./dist/cjs/gcp/index.js"
+    },
+    "./webcrypto": {
+      "import": "./dist/esm/webcrypto/index.js",
+      "require": "./dist/cjs/webcrypto/index.js"
     }
   },
   "sideEffects": false,
@@ -23,7 +27,8 @@
     "aws",
     "dist",
     "gcp",
-    "src"
+    "src",
+    "webcrypto"
   ],
   "repository": {
     "type": "git",
@@ -45,7 +50,7 @@
     "@noble/curves": "^1.4.2",
     "@noble/hashes": "^1.4.0",
     "asn1-ts": "^8.0.2",
-    "@mysten/sui": "1.23.0"
+    "@mysten/sui": "1.24.0"
   },
   "engines": {
     "node": ">=20"

package/src/webcrypto/index.ts

@@ -0,0 +1,69 @@
+// Copyright (c) Mysten Labs, Inc.
+// SPDX-License-Identifier: Apache-2.0
+
+import type { SignatureScheme } from '@mysten/sui/cryptography';
+import { Signer } from '@mysten/sui/cryptography';
+import { Secp256r1PublicKey } from '@mysten/sui/keypairs/secp256r1';
+
+// Convert from uncompressed (65 bytes) to compressed (33 bytes) format
+function getCompressedPublicKey(publicKey: Uint8Array) {
+	const rawBytes = new Uint8Array(publicKey);
+	const x = rawBytes.slice(1, 33);
+	const y = rawBytes.slice(33, 65);
+
+	const prefix = (y[31] & 1) === 0 ? 0x02 : 0x03;
+
+	const compressed = new Uint8Array(Secp256r1PublicKey.SIZE);
+	compressed[0] = prefix;
+	compressed.set(x, 1);
+
+	return compressed;
+}
+
+export class WebCryptoSigner extends Signer {
+	privateKey: CryptoKey;
+
+	#publicKey: Secp256r1PublicKey;
+
+	static async generate({ extractable = false }: { extractable?: boolean } = {}) {
+		const keypair = await globalThis.crypto.subtle.generateKey(
+			{
+				name: 'ECDSA',
+				namedCurve: 'P-256',
+			},
+			extractable,
+			['sign', 'verify'],
+		);
+
+		const publicKey = await globalThis.crypto.subtle.exportKey('raw', keypair.publicKey);
+
+		return new WebCryptoSigner(keypair.privateKey, new Uint8Array(publicKey));
+	}
+
+	getKeyScheme(): SignatureScheme {
+		return 'Secp256r1';
+	}
+
+	constructor(privateKey: CryptoKey, publicKey: Uint8Array) {
+		super();
+		this.privateKey = privateKey;
+		this.#publicKey = new Secp256r1PublicKey(getCompressedPublicKey(publicKey));
+	}
+
+	getPublicKey() {
+		return this.#publicKey;
+	}
+
+	async sign(bytes: Uint8Array): Promise<Uint8Array> {
+		const signature = await globalThis.crypto.subtle.sign(
+			{
+				name: 'ECDSA',
+				hash: 'SHA-256',
+			},
+			this.privateKey,
+			bytes,
+		);
+
+		return new Uint8Array(signature);
+	}
+}

package/webcrypto/package.json

@@ -0,0 +1,6 @@
+{
+	"private": true,
+	"import": "../dist/esm/webcrypto/index.js",
+	"main": "../dist/cjs/webcrypto/index.js",
+	"sideEffects": false
+}