@noble/curves 1.9.1 → 1.9.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +56 -25
- package/_shortw_utils.d.ts +7 -5
- package/_shortw_utils.d.ts.map +1 -1
- package/_shortw_utils.js +2 -8
- package/_shortw_utils.js.map +1 -1
- package/abstract/bls.d.ts +60 -24
- package/abstract/bls.d.ts.map +1 -1
- package/abstract/bls.js +158 -109
- package/abstract/bls.js.map +1 -1
- package/abstract/curve.d.ts +44 -9
- package/abstract/curve.d.ts.map +1 -1
- package/abstract/curve.js +86 -7
- package/abstract/curve.js.map +1 -1
- package/abstract/edwards.d.ts +112 -25
- package/abstract/edwards.d.ts.map +1 -1
- package/abstract/edwards.js +138 -102
- package/abstract/edwards.js.map +1 -1
- package/abstract/fft.d.ts +12 -10
- package/abstract/fft.d.ts.map +1 -1
- package/abstract/fft.js +12 -13
- package/abstract/fft.js.map +1 -1
- package/abstract/hash-to-curve.d.ts +25 -11
- package/abstract/hash-to-curve.d.ts.map +1 -1
- package/abstract/hash-to-curve.js +17 -14
- package/abstract/hash-to-curve.js.map +1 -1
- package/abstract/modular.d.ts +24 -11
- package/abstract/modular.d.ts.map +1 -1
- package/abstract/modular.js +49 -20
- package/abstract/modular.js.map +1 -1
- package/abstract/montgomery.d.ts +1 -1
- package/abstract/montgomery.d.ts.map +1 -1
- package/abstract/montgomery.js +5 -4
- package/abstract/montgomery.js.map +1 -1
- package/abstract/poseidon.d.ts +5 -13
- package/abstract/poseidon.d.ts.map +1 -1
- package/abstract/poseidon.js +12 -7
- package/abstract/poseidon.js.map +1 -1
- package/abstract/tower.d.ts +20 -46
- package/abstract/tower.d.ts.map +1 -1
- package/abstract/tower.js +9 -3
- package/abstract/tower.js.map +1 -1
- package/abstract/utils.d.ts +1 -115
- package/abstract/utils.d.ts.map +1 -1
- package/abstract/utils.js +17 -371
- package/abstract/utils.js.map +1 -1
- package/abstract/weierstrass.d.ts +132 -76
- package/abstract/weierstrass.d.ts.map +1 -1
- package/abstract/weierstrass.js +462 -398
- package/abstract/weierstrass.js.map +1 -1
- package/bls12-381.d.ts +2 -0
- package/bls12-381.d.ts.map +1 -1
- package/bls12-381.js +504 -466
- package/bls12-381.js.map +1 -1
- package/bn254.d.ts +2 -0
- package/bn254.d.ts.map +1 -1
- package/bn254.js +44 -32
- package/bn254.js.map +1 -1
- package/ed25519.d.ts +8 -5
- package/ed25519.d.ts.map +1 -1
- package/ed25519.js +67 -54
- package/ed25519.js.map +1 -1
- package/ed448.d.ts +10 -6
- package/ed448.d.ts.map +1 -1
- package/ed448.js +80 -57
- package/ed448.js.map +1 -1
- package/esm/_shortw_utils.d.ts +7 -5
- package/esm/_shortw_utils.d.ts.map +1 -1
- package/esm/_shortw_utils.js +2 -8
- package/esm/_shortw_utils.js.map +1 -1
- package/esm/abstract/bls.d.ts +60 -24
- package/esm/abstract/bls.d.ts.map +1 -1
- package/esm/abstract/bls.js +158 -109
- package/esm/abstract/bls.js.map +1 -1
- package/esm/abstract/curve.d.ts +44 -9
- package/esm/abstract/curve.d.ts.map +1 -1
- package/esm/abstract/curve.js +83 -8
- package/esm/abstract/curve.js.map +1 -1
- package/esm/abstract/edwards.d.ts +112 -25
- package/esm/abstract/edwards.d.ts.map +1 -1
- package/esm/abstract/edwards.js +138 -104
- package/esm/abstract/edwards.js.map +1 -1
- package/esm/abstract/fft.d.ts +12 -10
- package/esm/abstract/fft.d.ts.map +1 -1
- package/esm/abstract/fft.js +10 -11
- package/esm/abstract/fft.js.map +1 -1
- package/esm/abstract/hash-to-curve.d.ts +25 -11
- package/esm/abstract/hash-to-curve.d.ts.map +1 -1
- package/esm/abstract/hash-to-curve.js +17 -14
- package/esm/abstract/hash-to-curve.js.map +1 -1
- package/esm/abstract/modular.d.ts +24 -11
- package/esm/abstract/modular.d.ts.map +1 -1
- package/esm/abstract/modular.js +48 -19
- package/esm/abstract/modular.js.map +1 -1
- package/esm/abstract/montgomery.d.ts +1 -1
- package/esm/abstract/montgomery.d.ts.map +1 -1
- package/esm/abstract/montgomery.js +5 -4
- package/esm/abstract/montgomery.js.map +1 -1
- package/esm/abstract/poseidon.d.ts +5 -13
- package/esm/abstract/poseidon.d.ts.map +1 -1
- package/esm/abstract/poseidon.js +12 -7
- package/esm/abstract/poseidon.js.map +1 -1
- package/esm/abstract/tower.d.ts +20 -46
- package/esm/abstract/tower.d.ts.map +1 -1
- package/esm/abstract/tower.js +9 -3
- package/esm/abstract/tower.js.map +1 -1
- package/esm/abstract/utils.d.ts +1 -115
- package/esm/abstract/utils.d.ts.map +1 -1
- package/esm/abstract/utils.js +3 -344
- package/esm/abstract/utils.js.map +1 -1
- package/esm/abstract/weierstrass.d.ts +132 -76
- package/esm/abstract/weierstrass.d.ts.map +1 -1
- package/esm/abstract/weierstrass.js +460 -400
- package/esm/abstract/weierstrass.js.map +1 -1
- package/esm/bls12-381.d.ts +2 -0
- package/esm/bls12-381.d.ts.map +1 -1
- package/esm/bls12-381.js +503 -465
- package/esm/bls12-381.js.map +1 -1
- package/esm/bn254.d.ts +2 -0
- package/esm/bn254.d.ts.map +1 -1
- package/esm/bn254.js +41 -29
- package/esm/bn254.js.map +1 -1
- package/esm/ed25519.d.ts +8 -5
- package/esm/ed25519.d.ts.map +1 -1
- package/esm/ed25519.js +62 -49
- package/esm/ed25519.js.map +1 -1
- package/esm/ed448.d.ts +10 -6
- package/esm/ed448.d.ts.map +1 -1
- package/esm/ed448.js +74 -51
- package/esm/ed448.js.map +1 -1
- package/esm/misc.d.ts.map +1 -1
- package/esm/misc.js +31 -26
- package/esm/misc.js.map +1 -1
- package/esm/nist.d.ts +7 -16
- package/esm/nist.d.ts.map +1 -1
- package/esm/nist.js +86 -97
- package/esm/nist.js.map +1 -1
- package/esm/p256.d.ts +3 -3
- package/esm/p384.d.ts +3 -3
- package/esm/p521.d.ts +3 -3
- package/esm/secp256k1.d.ts +6 -6
- package/esm/secp256k1.d.ts.map +1 -1
- package/esm/secp256k1.js +43 -40
- package/esm/secp256k1.js.map +1 -1
- package/esm/utils.d.ts +96 -0
- package/esm/utils.d.ts.map +1 -0
- package/esm/utils.js +279 -0
- package/esm/utils.js.map +1 -0
- package/misc.d.ts.map +1 -1
- package/misc.js +35 -30
- package/misc.js.map +1 -1
- package/nist.d.ts +7 -16
- package/nist.d.ts.map +1 -1
- package/nist.js +86 -97
- package/nist.js.map +1 -1
- package/p256.d.ts +3 -3
- package/p384.d.ts +3 -3
- package/p521.d.ts +3 -3
- package/package.json +14 -5
- package/secp256k1.d.ts +6 -6
- package/secp256k1.d.ts.map +1 -1
- package/secp256k1.js +46 -43
- package/secp256k1.js.map +1 -1
- package/src/_shortw_utils.ts +5 -15
- package/src/abstract/bls.ts +260 -145
- package/src/abstract/curve.ts +115 -13
- package/src/abstract/edwards.ts +279 -138
- package/src/abstract/fft.ts +30 -19
- package/src/abstract/hash-to-curve.ts +51 -27
- package/src/abstract/modular.ts +49 -28
- package/src/abstract/montgomery.ts +9 -7
- package/src/abstract/poseidon.ts +22 -18
- package/src/abstract/tower.ts +36 -67
- package/src/abstract/utils.ts +3 -378
- package/src/abstract/weierstrass.ts +700 -453
- package/src/bls12-381.ts +540 -489
- package/src/bn254.ts +47 -35
- package/src/ed25519.ts +80 -64
- package/src/ed448.ts +129 -92
- package/src/misc.ts +39 -34
- package/src/nist.ts +138 -127
- package/src/p256.ts +3 -3
- package/src/p384.ts +3 -3
- package/src/p521.ts +3 -3
- package/src/secp256k1.ts +58 -46
- package/src/utils.ts +328 -0
- package/utils.d.ts +96 -0
- package/utils.d.ts.map +1 -0
- package/utils.js +313 -0
- package/utils.js.map +1 -0
package/esm/utils.d.ts
ADDED
|
@@ -0,0 +1,96 @@
|
|
|
1
|
+
export { abytes, anumber, bytesToHex, bytesToUtf8, concatBytes, hexToBytes, isBytes, randomBytes, utf8ToBytes, } from '@noble/hashes/utils.js';
|
|
2
|
+
export type Hex = Uint8Array | string;
|
|
3
|
+
export type PrivKey = Hex | bigint;
|
|
4
|
+
export type CHash = {
|
|
5
|
+
(message: Uint8Array | string): Uint8Array;
|
|
6
|
+
blockLen: number;
|
|
7
|
+
outputLen: number;
|
|
8
|
+
create(opts?: {
|
|
9
|
+
dkLen?: number;
|
|
10
|
+
}): any;
|
|
11
|
+
};
|
|
12
|
+
export type FHash = (message: Uint8Array | string) => Uint8Array;
|
|
13
|
+
export declare function abool(title: string, value: boolean): void;
|
|
14
|
+
export declare function numberToHexUnpadded(num: number | bigint): string;
|
|
15
|
+
export declare function hexToNumber(hex: string): bigint;
|
|
16
|
+
export declare function bytesToNumberBE(bytes: Uint8Array): bigint;
|
|
17
|
+
export declare function bytesToNumberLE(bytes: Uint8Array): bigint;
|
|
18
|
+
export declare function numberToBytesBE(n: number | bigint, len: number): Uint8Array;
|
|
19
|
+
export declare function numberToBytesLE(n: number | bigint, len: number): Uint8Array;
|
|
20
|
+
export declare function numberToVarBytesBE(n: number | bigint): Uint8Array;
|
|
21
|
+
/**
|
|
22
|
+
* Takes hex string or Uint8Array, converts to Uint8Array.
|
|
23
|
+
* Validates output length.
|
|
24
|
+
* Will throw error for other types.
|
|
25
|
+
* @param title descriptive title for an error e.g. 'private key'
|
|
26
|
+
* @param hex hex string or Uint8Array
|
|
27
|
+
* @param expectedLength optional, will compare to result array's length
|
|
28
|
+
* @returns
|
|
29
|
+
*/
|
|
30
|
+
export declare function ensureBytes(title: string, hex: Hex, expectedLength?: number): Uint8Array;
|
|
31
|
+
export declare function equalBytes(a: Uint8Array, b: Uint8Array): boolean;
|
|
32
|
+
export declare function inRange(n: bigint, min: bigint, max: bigint): boolean;
|
|
33
|
+
/**
|
|
34
|
+
* Asserts min <= n < max. NOTE: It's < max and not <= max.
|
|
35
|
+
* @example
|
|
36
|
+
* aInRange('x', x, 1n, 256n); // would assume x is in (1n..255n)
|
|
37
|
+
*/
|
|
38
|
+
export declare function aInRange(title: string, n: bigint, min: bigint, max: bigint): void;
|
|
39
|
+
/**
|
|
40
|
+
* Calculates amount of bits in a bigint.
|
|
41
|
+
* Same as `n.toString(2).length`
|
|
42
|
+
* TODO: merge with nLength in modular
|
|
43
|
+
*/
|
|
44
|
+
export declare function bitLen(n: bigint): number;
|
|
45
|
+
/**
|
|
46
|
+
* Gets single bit at position.
|
|
47
|
+
* NOTE: first bit position is 0 (same as arrays)
|
|
48
|
+
* Same as `!!+Array.from(n.toString(2)).reverse()[pos]`
|
|
49
|
+
*/
|
|
50
|
+
export declare function bitGet(n: bigint, pos: number): bigint;
|
|
51
|
+
/**
|
|
52
|
+
* Sets single bit at position.
|
|
53
|
+
*/
|
|
54
|
+
export declare function bitSet(n: bigint, pos: number, value: boolean): bigint;
|
|
55
|
+
/**
|
|
56
|
+
* Calculate mask for N bits. Not using ** operator with bigints because of old engines.
|
|
57
|
+
* Same as BigInt(`0b${Array(i).fill('1').join('')}`)
|
|
58
|
+
*/
|
|
59
|
+
export declare const bitMask: (n: number) => bigint;
|
|
60
|
+
type Pred<T> = (v: Uint8Array) => T | undefined;
|
|
61
|
+
/**
|
|
62
|
+
* Minimal HMAC-DRBG from NIST 800-90 for RFC6979 sigs.
|
|
63
|
+
* @returns function that will call DRBG until 2nd arg returns something meaningful
|
|
64
|
+
* @example
|
|
65
|
+
* const drbg = createHmacDRBG<Key>(32, 32, hmac);
|
|
66
|
+
* drbg(seed, bytesToKey); // bytesToKey must return Key or undefined
|
|
67
|
+
*/
|
|
68
|
+
export declare function createHmacDrbg<T>(hashLen: number, qByteLen: number, hmacFn: (key: Uint8Array, ...messages: Uint8Array[]) => Uint8Array): (seed: Uint8Array, predicate: Pred<T>) => T;
|
|
69
|
+
declare const validatorFns: {
|
|
70
|
+
readonly bigint: (val: any) => boolean;
|
|
71
|
+
readonly function: (val: any) => boolean;
|
|
72
|
+
readonly boolean: (val: any) => boolean;
|
|
73
|
+
readonly string: (val: any) => boolean;
|
|
74
|
+
readonly stringOrUint8Array: (val: any) => boolean;
|
|
75
|
+
readonly isSafeInteger: (val: any) => boolean;
|
|
76
|
+
readonly array: (val: any) => boolean;
|
|
77
|
+
readonly field: (val: any, object: any) => any;
|
|
78
|
+
readonly hash: (val: any) => boolean;
|
|
79
|
+
};
|
|
80
|
+
type Validator = keyof typeof validatorFns;
|
|
81
|
+
type ValMap<T extends Record<string, any>> = {
|
|
82
|
+
[K in keyof T]?: Validator;
|
|
83
|
+
};
|
|
84
|
+
export declare function validateObject<T extends Record<string, any>>(object: T, validators: ValMap<T>, optValidators?: ValMap<T>): T;
|
|
85
|
+
export declare function isHash(val: CHash): boolean;
|
|
86
|
+
export declare function _validateObject(object: Record<string, any>, fields: Record<string, string>, optFields?: Record<string, string>): void;
|
|
87
|
+
/**
|
|
88
|
+
* throws not implemented error
|
|
89
|
+
*/
|
|
90
|
+
export declare const notImplemented: () => never;
|
|
91
|
+
/**
|
|
92
|
+
* Memoizes (caches) computation result.
|
|
93
|
+
* Uses WeakMap: the value is going auto-cleaned by GC after last reference is removed.
|
|
94
|
+
*/
|
|
95
|
+
export declare function memoized<T extends object, R, O extends any[]>(fn: (arg: T, ...args: O) => R): (arg: T, ...args: O) => R;
|
|
96
|
+
//# sourceMappingURL=utils.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../src/utils.ts"],"names":[],"mappings":"AAYA,OAAO,EACL,MAAM,EACN,OAAO,EACP,UAAU,EACV,WAAW,EACX,WAAW,EACX,UAAU,EACV,OAAO,EACP,WAAW,EACX,WAAW,GACZ,MAAM,wBAAwB,CAAC;AAGhC,MAAM,MAAM,GAAG,GAAG,UAAU,GAAG,MAAM,CAAC;AACtC,MAAM,MAAM,OAAO,GAAG,GAAG,GAAG,MAAM,CAAC;AACnC,MAAM,MAAM,KAAK,GAAG;IAClB,CAAC,OAAO,EAAE,UAAU,GAAG,MAAM,GAAG,UAAU,CAAC;IAC3C,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,IAAI,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,GAAG,CAAC;CACxC,CAAC;AACF,MAAM,MAAM,KAAK,GAAG,CAAC,OAAO,EAAE,UAAU,GAAG,MAAM,KAAK,UAAU,CAAC;AAEjE,wBAAgB,KAAK,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,IAAI,CAEzD;AAGD,wBAAgB,mBAAmB,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,GAAG,MAAM,CAGhE;AAED,wBAAgB,WAAW,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAG/C;AAGD,wBAAgB,eAAe,CAAC,KAAK,EAAE,UAAU,GAAG,MAAM,CAEzD;AACD,wBAAgB,eAAe,CAAC,KAAK,EAAE,UAAU,GAAG,MAAM,CAGzD;AAED,wBAAgB,eAAe,CAAC,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,UAAU,CAE3E;AACD,wBAAgB,eAAe,CAAC,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,UAAU,CAE3E;AAED,wBAAgB,kBAAkB,CAAC,CAAC,EAAE,MAAM,GAAG,MAAM,GAAG,UAAU,CAEjE;AAED;;;;;;;;GAQG;AACH,wBAAgB,WAAW,CAAC,KAAK,EAAE,MAAM,EAAE,GAAG,EAAE,GAAG,EAAE,cAAc,CAAC,EAAE,MAAM,GAAG,UAAU,CAmBxF;AAGD,wBAAgB,UAAU,CAAC,CAAC,EAAE,UAAU,EAAE,CAAC,EAAE,UAAU,GAAG,OAAO,CAKhE;AAeD,wBAAgB,OAAO,CAAC,CAAC,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,OAAO,CAEpE;AAED;;;;GAIG;AACH,wBAAgB,QAAQ,CAAC,KAAK,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,IAAI,CAQjF;AAID;;;;GAIG;AACH,wBAAgB,MAAM,CAAC,CAAC,EAAE,MAAM,GAAG,MAAM,CAIxC;AAED;;;;GAIG;AACH,wBAAgB,MAAM,CAAC,CAAC,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,MAAM,CAErD;AAED;;GAEG;AACH,wBAAgB,MAAM,CAAC,CAAC,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,MAAM,CAErE;AAED;;;GAGG;AACH,eAAO,MAAM,OAAO,GAAI,GAAG,MAAM,KAAG,MAAkC,CAAC;AAIvE,KAAK,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,EAAE,UAAU,KAAK,CAAC,GAAG,SAAS,CAAC;AAChD;;;;;;GAMG;AACH,wBAAgB,cAAc,CAAC,CAAC,EAC9B,OAAO,EAAE,MAAM,EACf,QAAQ,EAAE,MAAM,EAChB,MAAM,EAAE,CAAC,GAAG,EAAE,UAAU,EAAE,GAAG,QAAQ,EAAE,UAAU,EAAE,KAAK,UAAU,GACjE,CAAC,IAAI,EAAE,UAAU,EAAE,SAAS,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CA8C7C;AAID,QAAA,MAAM,YAAY;2BACF,GAAG,KAAG,OAAO;6BACX,GAAG,KAAG,OAAO;4BACd,GAAG,KAAG,OAAO;2BACd,GAAG,KAAG,OAAO;uCACD,GAAG,KAAG,OAAO;kCAClB,GAAG,KAAG,OAAO;0BACrB,GAAG,KAAG,OAAO;0BACb,GAAG,UAAU,GAAG,KAAG,GAAG;yBACvB,GAAG,KAAG,OAAO;CACjB,CAAC;AACX,KAAK,SAAS,GAAG,MAAM,OAAO,YAAY,CAAC;AAC3C,KAAK,MAAM,CAAC,CAAC,SAAS,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,IAAI;KAAG,CAAC,IAAI,MAAM,CAAC,CAAC,CAAC,EAAE,SAAS;CAAE,CAAC;AAG5E,wBAAgB,cAAc,CAAC,CAAC,SAAS,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EAC1D,MAAM,EAAE,CAAC,EACT,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,EACrB,aAAa,GAAE,MAAM,CAAC,CAAC,CAAM,GAC5B,CAAC,CAgBH;AAUD,wBAAgB,MAAM,CAAC,GAAG,EAAE,KAAK,GAAG,OAAO,CAE1C;AACD,wBAAgB,eAAe,CAC7B,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EAC3B,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,EAC9B,SAAS,GAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAM,GACrC,IAAI,CAYN;AAED;;GAEG;AACH,eAAO,MAAM,cAAc,QAAO,KAEjC,CAAC;AAEF;;;GAGG;AACH,wBAAgB,QAAQ,CAAC,CAAC,SAAS,MAAM,EAAE,CAAC,EAAE,CAAC,SAAS,GAAG,EAAE,EAC3D,EAAE,EAAE,CAAC,GAAG,EAAE,CAAC,EAAE,GAAG,IAAI,EAAE,CAAC,KAAK,CAAC,GAC5B,CAAC,GAAG,EAAE,CAAC,EAAE,GAAG,IAAI,EAAE,CAAC,KAAK,CAAC,CAS3B"}
|
package/esm/utils.js
ADDED
|
@@ -0,0 +1,279 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Hex, bytes and number utilities.
|
|
3
|
+
* @module
|
|
4
|
+
*/
|
|
5
|
+
/*! noble-curves - MIT License (c) 2022 Paul Miller (paulmillr.com) */
|
|
6
|
+
import { abytes as abytes_, bytesToHex as bytesToHex_, concatBytes as concatBytes_, hexToBytes as hexToBytes_, isBytes as isBytes_, } from '@noble/hashes/utils.js';
|
|
7
|
+
export { abytes, anumber, bytesToHex, bytesToUtf8, concatBytes, hexToBytes, isBytes, randomBytes, utf8ToBytes, } from '@noble/hashes/utils.js';
|
|
8
|
+
const _0n = /* @__PURE__ */ BigInt(0);
|
|
9
|
+
const _1n = /* @__PURE__ */ BigInt(1);
|
|
10
|
+
export function abool(title, value) {
|
|
11
|
+
if (typeof value !== 'boolean')
|
|
12
|
+
throw new Error(title + ' boolean expected, got ' + value);
|
|
13
|
+
}
|
|
14
|
+
// Used in weierstrass, der
|
|
15
|
+
export function numberToHexUnpadded(num) {
|
|
16
|
+
const hex = num.toString(16);
|
|
17
|
+
return hex.length & 1 ? '0' + hex : hex;
|
|
18
|
+
}
|
|
19
|
+
export function hexToNumber(hex) {
|
|
20
|
+
if (typeof hex !== 'string')
|
|
21
|
+
throw new Error('hex string expected, got ' + typeof hex);
|
|
22
|
+
return hex === '' ? _0n : BigInt('0x' + hex); // Big Endian
|
|
23
|
+
}
|
|
24
|
+
// BE: Big Endian, LE: Little Endian
|
|
25
|
+
export function bytesToNumberBE(bytes) {
|
|
26
|
+
return hexToNumber(bytesToHex_(bytes));
|
|
27
|
+
}
|
|
28
|
+
export function bytesToNumberLE(bytes) {
|
|
29
|
+
abytes_(bytes);
|
|
30
|
+
return hexToNumber(bytesToHex_(Uint8Array.from(bytes).reverse()));
|
|
31
|
+
}
|
|
32
|
+
export function numberToBytesBE(n, len) {
|
|
33
|
+
return hexToBytes_(n.toString(16).padStart(len * 2, '0'));
|
|
34
|
+
}
|
|
35
|
+
export function numberToBytesLE(n, len) {
|
|
36
|
+
return numberToBytesBE(n, len).reverse();
|
|
37
|
+
}
|
|
38
|
+
// Unpadded, rarely used
|
|
39
|
+
export function numberToVarBytesBE(n) {
|
|
40
|
+
return hexToBytes_(numberToHexUnpadded(n));
|
|
41
|
+
}
|
|
42
|
+
/**
|
|
43
|
+
* Takes hex string or Uint8Array, converts to Uint8Array.
|
|
44
|
+
* Validates output length.
|
|
45
|
+
* Will throw error for other types.
|
|
46
|
+
* @param title descriptive title for an error e.g. 'private key'
|
|
47
|
+
* @param hex hex string or Uint8Array
|
|
48
|
+
* @param expectedLength optional, will compare to result array's length
|
|
49
|
+
* @returns
|
|
50
|
+
*/
|
|
51
|
+
export function ensureBytes(title, hex, expectedLength) {
|
|
52
|
+
let res;
|
|
53
|
+
if (typeof hex === 'string') {
|
|
54
|
+
try {
|
|
55
|
+
res = hexToBytes_(hex);
|
|
56
|
+
}
|
|
57
|
+
catch (e) {
|
|
58
|
+
throw new Error(title + ' must be hex string or Uint8Array, cause: ' + e);
|
|
59
|
+
}
|
|
60
|
+
}
|
|
61
|
+
else if (isBytes_(hex)) {
|
|
62
|
+
// Uint8Array.from() instead of hash.slice() because node.js Buffer
|
|
63
|
+
// is instance of Uint8Array, and its slice() creates **mutable** copy
|
|
64
|
+
res = Uint8Array.from(hex);
|
|
65
|
+
}
|
|
66
|
+
else {
|
|
67
|
+
throw new Error(title + ' must be hex string or Uint8Array');
|
|
68
|
+
}
|
|
69
|
+
const len = res.length;
|
|
70
|
+
if (typeof expectedLength === 'number' && len !== expectedLength)
|
|
71
|
+
throw new Error(title + ' of length ' + expectedLength + ' expected, got ' + len);
|
|
72
|
+
return res;
|
|
73
|
+
}
|
|
74
|
+
// Compares 2 u8a-s in kinda constant time
|
|
75
|
+
export function equalBytes(a, b) {
|
|
76
|
+
if (a.length !== b.length)
|
|
77
|
+
return false;
|
|
78
|
+
let diff = 0;
|
|
79
|
+
for (let i = 0; i < a.length; i++)
|
|
80
|
+
diff |= a[i] ^ b[i];
|
|
81
|
+
return diff === 0;
|
|
82
|
+
}
|
|
83
|
+
/**
|
|
84
|
+
* @example utf8ToBytes('abc') // new Uint8Array([97, 98, 99])
|
|
85
|
+
*/
|
|
86
|
+
// export const utf8ToBytes: typeof utf8ToBytes_ = utf8ToBytes_;
|
|
87
|
+
/**
|
|
88
|
+
* Converts bytes to string using UTF8 encoding.
|
|
89
|
+
* @example bytesToUtf8(Uint8Array.from([97, 98, 99])) // 'abc'
|
|
90
|
+
*/
|
|
91
|
+
// export const bytesToUtf8: typeof bytesToUtf8_ = bytesToUtf8_;
|
|
92
|
+
// Is positive bigint
|
|
93
|
+
const isPosBig = (n) => typeof n === 'bigint' && _0n <= n;
|
|
94
|
+
export function inRange(n, min, max) {
|
|
95
|
+
return isPosBig(n) && isPosBig(min) && isPosBig(max) && min <= n && n < max;
|
|
96
|
+
}
|
|
97
|
+
/**
|
|
98
|
+
* Asserts min <= n < max. NOTE: It's < max and not <= max.
|
|
99
|
+
* @example
|
|
100
|
+
* aInRange('x', x, 1n, 256n); // would assume x is in (1n..255n)
|
|
101
|
+
*/
|
|
102
|
+
export function aInRange(title, n, min, max) {
|
|
103
|
+
// Why min <= n < max and not a (min < n < max) OR b (min <= n <= max)?
|
|
104
|
+
// consider P=256n, min=0n, max=P
|
|
105
|
+
// - a for min=0 would require -1: `inRange('x', x, -1n, P)`
|
|
106
|
+
// - b would commonly require subtraction: `inRange('x', x, 0n, P - 1n)`
|
|
107
|
+
// - our way is the cleanest: `inRange('x', x, 0n, P)
|
|
108
|
+
if (!inRange(n, min, max))
|
|
109
|
+
throw new Error('expected valid ' + title + ': ' + min + ' <= n < ' + max + ', got ' + n);
|
|
110
|
+
}
|
|
111
|
+
// Bit operations
|
|
112
|
+
/**
|
|
113
|
+
* Calculates amount of bits in a bigint.
|
|
114
|
+
* Same as `n.toString(2).length`
|
|
115
|
+
* TODO: merge with nLength in modular
|
|
116
|
+
*/
|
|
117
|
+
export function bitLen(n) {
|
|
118
|
+
let len;
|
|
119
|
+
for (len = 0; n > _0n; n >>= _1n, len += 1)
|
|
120
|
+
;
|
|
121
|
+
return len;
|
|
122
|
+
}
|
|
123
|
+
/**
|
|
124
|
+
* Gets single bit at position.
|
|
125
|
+
* NOTE: first bit position is 0 (same as arrays)
|
|
126
|
+
* Same as `!!+Array.from(n.toString(2)).reverse()[pos]`
|
|
127
|
+
*/
|
|
128
|
+
export function bitGet(n, pos) {
|
|
129
|
+
return (n >> BigInt(pos)) & _1n;
|
|
130
|
+
}
|
|
131
|
+
/**
|
|
132
|
+
* Sets single bit at position.
|
|
133
|
+
*/
|
|
134
|
+
export function bitSet(n, pos, value) {
|
|
135
|
+
return n | ((value ? _1n : _0n) << BigInt(pos));
|
|
136
|
+
}
|
|
137
|
+
/**
|
|
138
|
+
* Calculate mask for N bits. Not using ** operator with bigints because of old engines.
|
|
139
|
+
* Same as BigInt(`0b${Array(i).fill('1').join('')}`)
|
|
140
|
+
*/
|
|
141
|
+
export const bitMask = (n) => (_1n << BigInt(n)) - _1n;
|
|
142
|
+
/**
|
|
143
|
+
* Minimal HMAC-DRBG from NIST 800-90 for RFC6979 sigs.
|
|
144
|
+
* @returns function that will call DRBG until 2nd arg returns something meaningful
|
|
145
|
+
* @example
|
|
146
|
+
* const drbg = createHmacDRBG<Key>(32, 32, hmac);
|
|
147
|
+
* drbg(seed, bytesToKey); // bytesToKey must return Key or undefined
|
|
148
|
+
*/
|
|
149
|
+
export function createHmacDrbg(hashLen, qByteLen, hmacFn) {
|
|
150
|
+
if (typeof hashLen !== 'number' || hashLen < 2)
|
|
151
|
+
throw new Error('hashLen must be a number');
|
|
152
|
+
if (typeof qByteLen !== 'number' || qByteLen < 2)
|
|
153
|
+
throw new Error('qByteLen must be a number');
|
|
154
|
+
if (typeof hmacFn !== 'function')
|
|
155
|
+
throw new Error('hmacFn must be a function');
|
|
156
|
+
// Step B, Step C: set hashLen to 8*ceil(hlen/8)
|
|
157
|
+
const u8n = (len) => new Uint8Array(len); // creates Uint8Array
|
|
158
|
+
const u8of = (byte) => Uint8Array.of(byte); // another shortcut
|
|
159
|
+
let v = u8n(hashLen); // Minimal non-full-spec HMAC-DRBG from NIST 800-90 for RFC6979 sigs.
|
|
160
|
+
let k = u8n(hashLen); // Steps B and C of RFC6979 3.2: set hashLen, in our case always same
|
|
161
|
+
let i = 0; // Iterations counter, will throw when over 1000
|
|
162
|
+
const reset = () => {
|
|
163
|
+
v.fill(1);
|
|
164
|
+
k.fill(0);
|
|
165
|
+
i = 0;
|
|
166
|
+
};
|
|
167
|
+
const h = (...b) => hmacFn(k, v, ...b); // hmac(k)(v, ...values)
|
|
168
|
+
const reseed = (seed = u8n(0)) => {
|
|
169
|
+
// HMAC-DRBG reseed() function. Steps D-G
|
|
170
|
+
k = h(u8of(0x00), seed); // k = hmac(k || v || 0x00 || seed)
|
|
171
|
+
v = h(); // v = hmac(k || v)
|
|
172
|
+
if (seed.length === 0)
|
|
173
|
+
return;
|
|
174
|
+
k = h(u8of(0x01), seed); // k = hmac(k || v || 0x01 || seed)
|
|
175
|
+
v = h(); // v = hmac(k || v)
|
|
176
|
+
};
|
|
177
|
+
const gen = () => {
|
|
178
|
+
// HMAC-DRBG generate() function
|
|
179
|
+
if (i++ >= 1000)
|
|
180
|
+
throw new Error('drbg: tried 1000 values');
|
|
181
|
+
let len = 0;
|
|
182
|
+
const out = [];
|
|
183
|
+
while (len < qByteLen) {
|
|
184
|
+
v = h();
|
|
185
|
+
const sl = v.slice();
|
|
186
|
+
out.push(sl);
|
|
187
|
+
len += v.length;
|
|
188
|
+
}
|
|
189
|
+
return concatBytes_(...out);
|
|
190
|
+
};
|
|
191
|
+
const genUntil = (seed, pred) => {
|
|
192
|
+
reset();
|
|
193
|
+
reseed(seed); // Steps D-G
|
|
194
|
+
let res = undefined; // Step H: grind until k is in [1..n-1]
|
|
195
|
+
while (!(res = pred(gen())))
|
|
196
|
+
reseed();
|
|
197
|
+
reset();
|
|
198
|
+
return res;
|
|
199
|
+
};
|
|
200
|
+
return genUntil;
|
|
201
|
+
}
|
|
202
|
+
// Validating curves and fields
|
|
203
|
+
const validatorFns = {
|
|
204
|
+
bigint: (val) => typeof val === 'bigint',
|
|
205
|
+
function: (val) => typeof val === 'function',
|
|
206
|
+
boolean: (val) => typeof val === 'boolean',
|
|
207
|
+
string: (val) => typeof val === 'string',
|
|
208
|
+
stringOrUint8Array: (val) => typeof val === 'string' || isBytes_(val),
|
|
209
|
+
isSafeInteger: (val) => Number.isSafeInteger(val),
|
|
210
|
+
array: (val) => Array.isArray(val),
|
|
211
|
+
field: (val, object) => object.Fp.isValid(val),
|
|
212
|
+
hash: (val) => typeof val === 'function' && Number.isSafeInteger(val.outputLen),
|
|
213
|
+
};
|
|
214
|
+
// type Record<K extends string | number | symbol, T> = { [P in K]: T; }
|
|
215
|
+
export function validateObject(object, validators, optValidators = {}) {
|
|
216
|
+
const checkField = (fieldName, type, isOptional) => {
|
|
217
|
+
const checkVal = validatorFns[type];
|
|
218
|
+
if (typeof checkVal !== 'function')
|
|
219
|
+
throw new Error('invalid validator function');
|
|
220
|
+
const val = object[fieldName];
|
|
221
|
+
if (isOptional && val === undefined)
|
|
222
|
+
return;
|
|
223
|
+
if (!checkVal(val, object)) {
|
|
224
|
+
throw new Error('param ' + String(fieldName) + ' is invalid. Expected ' + type + ', got ' + val);
|
|
225
|
+
}
|
|
226
|
+
};
|
|
227
|
+
for (const [fieldName, type] of Object.entries(validators))
|
|
228
|
+
checkField(fieldName, type, false);
|
|
229
|
+
for (const [fieldName, type] of Object.entries(optValidators))
|
|
230
|
+
checkField(fieldName, type, true);
|
|
231
|
+
return object;
|
|
232
|
+
}
|
|
233
|
+
// validate type tests
|
|
234
|
+
// const o: { a: number; b: number; c: number } = { a: 1, b: 5, c: 6 };
|
|
235
|
+
// const z0 = validateObject(o, { a: 'isSafeInteger' }, { c: 'bigint' }); // Ok!
|
|
236
|
+
// // Should fail type-check
|
|
237
|
+
// const z1 = validateObject(o, { a: 'tmp' }, { c: 'zz' });
|
|
238
|
+
// const z2 = validateObject(o, { a: 'isSafeInteger' }, { c: 'zz' });
|
|
239
|
+
// const z3 = validateObject(o, { test: 'boolean', z: 'bug' });
|
|
240
|
+
// const z4 = validateObject(o, { a: 'boolean', z: 'bug' });
|
|
241
|
+
export function isHash(val) {
|
|
242
|
+
return typeof val === 'function' && Number.isSafeInteger(val.outputLen);
|
|
243
|
+
}
|
|
244
|
+
export function _validateObject(object, fields, optFields = {}) {
|
|
245
|
+
if (!object || typeof object !== 'object')
|
|
246
|
+
throw new Error('expected valid options object');
|
|
247
|
+
function checkField(fieldName, expectedType, isOpt) {
|
|
248
|
+
const val = object[fieldName];
|
|
249
|
+
if (isOpt && val === undefined)
|
|
250
|
+
return;
|
|
251
|
+
const current = typeof val;
|
|
252
|
+
if (current !== expectedType || val === null)
|
|
253
|
+
throw new Error(`param "${fieldName}" is invalid: expected ${expectedType}, got ${current}`);
|
|
254
|
+
}
|
|
255
|
+
Object.entries(fields).forEach(([k, v]) => checkField(k, v, false));
|
|
256
|
+
Object.entries(optFields).forEach(([k, v]) => checkField(k, v, true));
|
|
257
|
+
}
|
|
258
|
+
/**
|
|
259
|
+
* throws not implemented error
|
|
260
|
+
*/
|
|
261
|
+
export const notImplemented = () => {
|
|
262
|
+
throw new Error('not implemented');
|
|
263
|
+
};
|
|
264
|
+
/**
|
|
265
|
+
* Memoizes (caches) computation result.
|
|
266
|
+
* Uses WeakMap: the value is going auto-cleaned by GC after last reference is removed.
|
|
267
|
+
*/
|
|
268
|
+
export function memoized(fn) {
|
|
269
|
+
const map = new WeakMap();
|
|
270
|
+
return (arg, ...args) => {
|
|
271
|
+
const val = map.get(arg);
|
|
272
|
+
if (val !== undefined)
|
|
273
|
+
return val;
|
|
274
|
+
const computed = fn(arg, ...args);
|
|
275
|
+
map.set(arg, computed);
|
|
276
|
+
return computed;
|
|
277
|
+
};
|
|
278
|
+
}
|
|
279
|
+
//# sourceMappingURL=utils.js.map
|
package/esm/utils.js.map
ADDED
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"utils.js","sourceRoot":"","sources":["../src/utils.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,sEAAsE;AACtE,OAAO,EACL,MAAM,IAAI,OAAO,EACjB,UAAU,IAAI,WAAW,EACzB,WAAW,IAAI,YAAY,EAC3B,UAAU,IAAI,WAAW,EACzB,OAAO,IAAI,QAAQ,GACpB,MAAM,wBAAwB,CAAC;AAChC,OAAO,EACL,MAAM,EACN,OAAO,EACP,UAAU,EACV,WAAW,EACX,WAAW,EACX,UAAU,EACV,OAAO,EACP,WAAW,EACX,WAAW,GACZ,MAAM,wBAAwB,CAAC;AAChC,MAAM,GAAG,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;AACtC,MAAM,GAAG,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;AAWtC,MAAM,UAAU,KAAK,CAAC,KAAa,EAAE,KAAc;IACjD,IAAI,OAAO,KAAK,KAAK,SAAS;QAAE,MAAM,IAAI,KAAK,CAAC,KAAK,GAAG,yBAAyB,GAAG,KAAK,CAAC,CAAC;AAC7F,CAAC;AAED,2BAA2B;AAC3B,MAAM,UAAU,mBAAmB,CAAC,GAAoB;IACtD,MAAM,GAAG,GAAG,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;IAC7B,OAAO,GAAG,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,GAAG,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC;AAC1C,CAAC;AAED,MAAM,UAAU,WAAW,CAAC,GAAW;IACrC,IAAI,OAAO,GAAG,KAAK,QAAQ;QAAE,MAAM,IAAI,KAAK,CAAC,2BAA2B,GAAG,OAAO,GAAG,CAAC,CAAC;IACvF,OAAO,GAAG,KAAK,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,GAAG,GAAG,CAAC,CAAC,CAAC,aAAa;AAC7D,CAAC;AAED,oCAAoC;AACpC,MAAM,UAAU,eAAe,CAAC,KAAiB;IAC/C,OAAO,WAAW,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC,CAAC;AACzC,CAAC;AACD,MAAM,UAAU,eAAe,CAAC,KAAiB;IAC/C,OAAO,CAAC,KAAK,CAAC,CAAC;IACf,OAAO,WAAW,CAAC,WAAW,CAAC,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;AACpE,CAAC;AAED,MAAM,UAAU,eAAe,CAAC,CAAkB,EAAE,GAAW;IAC7D,OAAO,WAAW,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,GAAG,GAAG,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC;AAC5D,CAAC;AACD,MAAM,UAAU,eAAe,CAAC,CAAkB,EAAE,GAAW;IAC7D,OAAO,eAAe,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,OAAO,EAAE,CAAC;AAC3C,CAAC;AACD,wBAAwB;AACxB,MAAM,UAAU,kBAAkB,CAAC,CAAkB;IACnD,OAAO,WAAW,CAAC,mBAAmB,CAAC,CAAC,CAAC,CAAC,CAAC;AAC7C,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,WAAW,CAAC,KAAa,EAAE,GAAQ,EAAE,cAAuB;IAC1E,IAAI,GAAe,CAAC;IACpB,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;QAC5B,IAAI,CAAC;YACH,GAAG,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC;QACzB,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,MAAM,IAAI,KAAK,CAAC,KAAK,GAAG,4CAA4C,GAAG,CAAC,CAAC,CAAC;QAC5E,CAAC;IACH,CAAC;SAAM,IAAI,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QACzB,mEAAmE;QACnE,sEAAsE;QACtE,GAAG,GAAG,UAAU,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAC7B,CAAC;SAAM,CAAC;QACN,MAAM,IAAI,KAAK,CAAC,KAAK,GAAG,mCAAmC,CAAC,CAAC;IAC/D,CAAC;IACD,MAAM,GAAG,GAAG,GAAG,CAAC,MAAM,CAAC;IACvB,IAAI,OAAO,cAAc,KAAK,QAAQ,IAAI,GAAG,KAAK,cAAc;QAC9D,MAAM,IAAI,KAAK,CAAC,KAAK,GAAG,aAAa,GAAG,cAAc,GAAG,iBAAiB,GAAG,GAAG,CAAC,CAAC;IACpF,OAAO,GAAG,CAAC;AACb,CAAC;AAED,0CAA0C;AAC1C,MAAM,UAAU,UAAU,CAAC,CAAa,EAAE,CAAa;IACrD,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM;QAAE,OAAO,KAAK,CAAC;IACxC,IAAI,IAAI,GAAG,CAAC,CAAC;IACb,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE;QAAE,IAAI,IAAI,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;IACvD,OAAO,IAAI,KAAK,CAAC,CAAC;AACpB,CAAC;AAED;;GAEG;AACH,gEAAgE;AAChE;;;GAGG;AACH,gEAAgE;AAEhE,qBAAqB;AACrB,MAAM,QAAQ,GAAG,CAAC,CAAS,EAAE,EAAE,CAAC,OAAO,CAAC,KAAK,QAAQ,IAAI,GAAG,IAAI,CAAC,CAAC;AAElE,MAAM,UAAU,OAAO,CAAC,CAAS,EAAE,GAAW,EAAE,GAAW;IACzD,OAAO,QAAQ,CAAC,CAAC,CAAC,IAAI,QAAQ,CAAC,GAAG,CAAC,IAAI,QAAQ,CAAC,GAAG,CAAC,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,GAAG,CAAC;AAC9E,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,QAAQ,CAAC,KAAa,EAAE,CAAS,EAAE,GAAW,EAAE,GAAW;IACzE,uEAAuE;IACvE,iCAAiC;IACjC,qEAAqE;IACrE,yEAAyE;IACzE,mEAAmE;IACnE,IAAI,CAAC,OAAO,CAAC,CAAC,EAAE,GAAG,EAAE,GAAG,CAAC;QACvB,MAAM,IAAI,KAAK,CAAC,iBAAiB,GAAG,KAAK,GAAG,IAAI,GAAG,GAAG,GAAG,UAAU,GAAG,GAAG,GAAG,QAAQ,GAAG,CAAC,CAAC,CAAC;AAC9F,CAAC;AAED,iBAAiB;AAEjB;;;;GAIG;AACH,MAAM,UAAU,MAAM,CAAC,CAAS;IAC9B,IAAI,GAAG,CAAC;IACR,KAAK,GAAG,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,EAAE,CAAC,KAAK,GAAG,EAAE,GAAG,IAAI,CAAC;QAAC,CAAC;IAC5C,OAAO,GAAG,CAAC;AACb,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,MAAM,CAAC,CAAS,EAAE,GAAW;IAC3C,OAAO,CAAC,CAAC,IAAI,MAAM,CAAC,GAAG,CAAC,CAAC,GAAG,GAAG,CAAC;AAClC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,MAAM,CAAC,CAAS,EAAE,GAAW,EAAE,KAAc;IAC3D,OAAO,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,IAAI,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC;AAClD,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,MAAM,OAAO,GAAG,CAAC,CAAS,EAAU,EAAE,CAAC,CAAC,GAAG,IAAI,MAAM,CAAC,CAAC,CAAC,CAAC,GAAG,GAAG,CAAC;AAKvE;;;;;;GAMG;AACH,MAAM,UAAU,cAAc,CAC5B,OAAe,EACf,QAAgB,EAChB,MAAkE;IAElE,IAAI,OAAO,OAAO,KAAK,QAAQ,IAAI,OAAO,GAAG,CAAC;QAAE,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAC;IAC5F,IAAI,OAAO,QAAQ,KAAK,QAAQ,IAAI,QAAQ,GAAG,CAAC;QAAE,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;IAC/F,IAAI,OAAO,MAAM,KAAK,UAAU;QAAE,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;IAC/E,gDAAgD;IAChD,MAAM,GAAG,GAAG,CAAC,GAAW,EAAE,EAAE,CAAC,IAAI,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,qBAAqB;IACvE,MAAM,IAAI,GAAG,CAAC,IAAY,EAAE,EAAE,CAAC,UAAU,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC,mBAAmB;IACvE,IAAI,CAAC,GAAG,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,qEAAqE;IAC3F,IAAI,CAAC,GAAG,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,qEAAqE;IAC3F,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,gDAAgD;IAC3D,MAAM,KAAK,GAAG,GAAG,EAAE;QACjB,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QACV,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QACV,CAAC,GAAG,CAAC,CAAC;IACR,CAAC,CAAC;IACF,MAAM,CAAC,GAAG,CAAC,GAAG,CAAe,EAAE,EAAE,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,CAAC,wBAAwB;IAC9E,MAAM,MAAM,GAAG,CAAC,IAAI,GAAG,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE;QAC/B,yCAAyC;QACzC,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,IAAI,CAAC,CAAC,CAAC,mCAAmC;QAC5D,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,mBAAmB;QAC5B,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO;QAC9B,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,IAAI,CAAC,CAAC,CAAC,mCAAmC;QAC5D,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,mBAAmB;IAC9B,CAAC,CAAC;IACF,MAAM,GAAG,GAAG,GAAG,EAAE;QACf,gCAAgC;QAChC,IAAI,CAAC,EAAE,IAAI,IAAI;YAAE,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAC5D,IAAI,GAAG,GAAG,CAAC,CAAC;QACZ,MAAM,GAAG,GAAiB,EAAE,CAAC;QAC7B,OAAO,GAAG,GAAG,QAAQ,EAAE,CAAC;YACtB,CAAC,GAAG,CAAC,EAAE,CAAC;YACR,MAAM,EAAE,GAAG,CAAC,CAAC,KAAK,EAAE,CAAC;YACrB,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACb,GAAG,IAAI,CAAC,CAAC,MAAM,CAAC;QAClB,CAAC;QACD,OAAO,YAAY,CAAC,GAAG,GAAG,CAAC,CAAC;IAC9B,CAAC,CAAC;IACF,MAAM,QAAQ,GAAG,CAAC,IAAgB,EAAE,IAAa,EAAK,EAAE;QACtD,KAAK,EAAE,CAAC;QACR,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,YAAY;QAC1B,IAAI,GAAG,GAAkB,SAAS,CAAC,CAAC,uCAAuC;QAC3E,OAAO,CAAC,CAAC,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;YAAE,MAAM,EAAE,CAAC;QACtC,KAAK,EAAE,CAAC;QACR,OAAO,GAAG,CAAC;IACb,CAAC,CAAC;IACF,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,+BAA+B;AAE/B,MAAM,YAAY,GAAG;IACnB,MAAM,EAAE,CAAC,GAAQ,EAAW,EAAE,CAAC,OAAO,GAAG,KAAK,QAAQ;IACtD,QAAQ,EAAE,CAAC,GAAQ,EAAW,EAAE,CAAC,OAAO,GAAG,KAAK,UAAU;IAC1D,OAAO,EAAE,CAAC,GAAQ,EAAW,EAAE,CAAC,OAAO,GAAG,KAAK,SAAS;IACxD,MAAM,EAAE,CAAC,GAAQ,EAAW,EAAE,CAAC,OAAO,GAAG,KAAK,QAAQ;IACtD,kBAAkB,EAAE,CAAC,GAAQ,EAAW,EAAE,CAAC,OAAO,GAAG,KAAK,QAAQ,IAAI,QAAQ,CAAC,GAAG,CAAC;IACnF,aAAa,EAAE,CAAC,GAAQ,EAAW,EAAE,CAAC,MAAM,CAAC,aAAa,CAAC,GAAG,CAAC;IAC/D,KAAK,EAAE,CAAC,GAAQ,EAAW,EAAE,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC;IAChD,KAAK,EAAE,CAAC,GAAQ,EAAE,MAAW,EAAO,EAAE,CAAE,MAAc,CAAC,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC;IACtE,IAAI,EAAE,CAAC,GAAQ,EAAW,EAAE,CAAC,OAAO,GAAG,KAAK,UAAU,IAAI,MAAM,CAAC,aAAa,CAAC,GAAG,CAAC,SAAS,CAAC;CACrF,CAAC;AAGX,wEAAwE;AAExE,MAAM,UAAU,cAAc,CAC5B,MAAS,EACT,UAAqB,EACrB,gBAA2B,EAAE;IAE7B,MAAM,UAAU,GAAG,CAAC,SAAkB,EAAE,IAAe,EAAE,UAAmB,EAAE,EAAE;QAC9E,MAAM,QAAQ,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC;QACpC,IAAI,OAAO,QAAQ,KAAK,UAAU;YAAE,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;QAElF,MAAM,GAAG,GAAG,MAAM,CAAC,SAAgC,CAAC,CAAC;QACrD,IAAI,UAAU,IAAI,GAAG,KAAK,SAAS;YAAE,OAAO;QAC5C,IAAI,CAAC,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC,EAAE,CAAC;YAC3B,MAAM,IAAI,KAAK,CACb,QAAQ,GAAG,MAAM,CAAC,SAAS,CAAC,GAAG,wBAAwB,GAAG,IAAI,GAAG,QAAQ,GAAG,GAAG,CAChF,CAAC;QACJ,CAAC;IACH,CAAC,CAAC;IACF,KAAK,MAAM,CAAC,SAAS,EAAE,IAAI,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,UAAU,CAAC;QAAE,UAAU,CAAC,SAAS,EAAE,IAAK,EAAE,KAAK,CAAC,CAAC;IAChG,KAAK,MAAM,CAAC,SAAS,EAAE,IAAI,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,aAAa,CAAC;QAAE,UAAU,CAAC,SAAS,EAAE,IAAK,EAAE,IAAI,CAAC,CAAC;IAClG,OAAO,MAAM,CAAC;AAChB,CAAC;AACD,sBAAsB;AACtB,uEAAuE;AACvE,gFAAgF;AAChF,4BAA4B;AAC5B,2DAA2D;AAC3D,qEAAqE;AACrE,+DAA+D;AAC/D,4DAA4D;AAE5D,MAAM,UAAU,MAAM,CAAC,GAAU;IAC/B,OAAO,OAAO,GAAG,KAAK,UAAU,IAAI,MAAM,CAAC,aAAa,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;AAC1E,CAAC;AACD,MAAM,UAAU,eAAe,CAC7B,MAA2B,EAC3B,MAA8B,EAC9B,YAAoC,EAAE;IAEtC,IAAI,CAAC,MAAM,IAAI,OAAO,MAAM,KAAK,QAAQ;QAAE,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC;IAE5F,SAAS,UAAU,CAAC,SAAe,EAAE,YAAoB,EAAE,KAAc;QACvE,MAAM,GAAG,GAAG,MAAM,CAAC,SAAS,CAAC,CAAC;QAC9B,IAAI,KAAK,IAAI,GAAG,KAAK,SAAS;YAAE,OAAO;QACvC,MAAM,OAAO,GAAG,OAAO,GAAG,CAAC;QAC3B,IAAI,OAAO,KAAK,YAAY,IAAI,GAAG,KAAK,IAAI;YAC1C,MAAM,IAAI,KAAK,CAAC,UAAU,SAAS,0BAA0B,YAAY,SAAS,OAAO,EAAE,CAAC,CAAC;IACjG,CAAC;IACD,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,UAAU,CAAC,CAAC,EAAE,CAAC,EAAE,KAAK,CAAC,CAAC,CAAC;IACpE,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,UAAU,CAAC,CAAC,EAAE,CAAC,EAAE,IAAI,CAAC,CAAC,CAAC;AACxE,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,MAAM,cAAc,GAAG,GAAU,EAAE;IACxC,MAAM,IAAI,KAAK,CAAC,iBAAiB,CAAC,CAAC;AACrC,CAAC,CAAC;AAEF;;;GAGG;AACH,MAAM,UAAU,QAAQ,CACtB,EAA6B;IAE7B,MAAM,GAAG,GAAG,IAAI,OAAO,EAAQ,CAAC;IAChC,OAAO,CAAC,GAAM,EAAE,GAAG,IAAO,EAAK,EAAE;QAC/B,MAAM,GAAG,GAAG,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACzB,IAAI,GAAG,KAAK,SAAS;YAAE,OAAO,GAAG,CAAC;QAClC,MAAM,QAAQ,GAAG,EAAE,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;QAClC,GAAG,CAAC,GAAG,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;QACvB,OAAO,QAAQ,CAAC;IAClB,CAAC,CAAC;AACJ,CAAC"}
|
package/misc.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"misc.d.ts","sourceRoot":"","sources":["src/misc.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"misc.d.ts","sourceRoot":"","sources":["src/misc.ts"],"names":[],"mappings":"AAUA,OAAO,EAEL,KAAK,OAAO,EAEZ,KAAK,YAAY,EAClB,MAAM,uBAAuB,CAAC;AAE/B,OAAO,EAAe,KAAK,OAAO,IAAI,QAAQ,EAAE,MAAM,2BAA2B,CAAC;AAkBlF,8DAA8D;AAC9D,eAAO,MAAM,MAAM,EAAE,OAInB,CAAC;AAWH,gEAAgE;AAChE,eAAO,MAAM,UAAU,EAAE,OAIvB,CAAC;AAOH,wBAAgB,gBAAgB,CAAC,GAAG,EAAE,UAAU,EAAE,eAAe,EAAE,UAAU,GAAG,YAAY,CAU3F;AAKD,wBAAgB,oBAAoB,CAAC,CAAC,EAAE,UAAU,EAAE,eAAe,EAAE,UAAU,GAAG,YAAY,CAW7F;AAID,eAAO,MAAM,OAAO,EAAE,MAErB,CAAC;AACF,eAAO,MAAM,OAAO,EAAE,MAErB,CAAC;AAEF;;;GAGG;AACH,eAAO,MAAM,MAAM,EAAE,QASnB,CAAC;AACH;;;GAGG;AACH,eAAO,MAAM,KAAK,EAAE,QASlB,CAAC"}
|
package/misc.js
CHANGED
|
@@ -9,55 +9,60 @@ exports.jubjub_findGroupHash = jubjub_findGroupHash;
|
|
|
9
9
|
* @module
|
|
10
10
|
*/
|
|
11
11
|
/*! noble-curves - MIT License (c) 2022 Paul Miller (paulmillr.com) */
|
|
12
|
-
const
|
|
13
|
-
const
|
|
14
|
-
const
|
|
15
|
-
const
|
|
16
|
-
const _shortw_utils_ts_1 = require("./_shortw_utils.js");
|
|
12
|
+
const blake1_js_1 = require("@noble/hashes/blake1.js");
|
|
13
|
+
const blake2_js_1 = require("@noble/hashes/blake2.js");
|
|
14
|
+
const sha2_js_1 = require("@noble/hashes/sha2.js");
|
|
15
|
+
const utils_js_1 = require("@noble/hashes/utils.js");
|
|
17
16
|
const edwards_ts_1 = require("./abstract/edwards.js");
|
|
18
17
|
const modular_ts_1 = require("./abstract/modular.js");
|
|
19
18
|
const weierstrass_ts_1 = require("./abstract/weierstrass.js");
|
|
19
|
+
const bls12_381_ts_1 = require("./bls12-381.js");
|
|
20
|
+
const bn254_ts_1 = require("./bn254.js");
|
|
20
21
|
// Jubjub curves have 𝔽p over scalar fields of other curves. They are friendly to ZK proofs.
|
|
21
22
|
// jubjub Fp = bls n. babyjubjub Fp = bn254 n.
|
|
22
23
|
// verify manually, check bls12-381.ts and bn254.ts.
|
|
23
24
|
// https://neuromancer.sk/std/other/JubJub
|
|
24
|
-
const
|
|
25
|
-
|
|
26
|
-
/** Curve over scalar field of bls12-381. jubjub Fp = bls n */
|
|
27
|
-
exports.jubjub = (0, edwards_ts_1.twistedEdwards)({
|
|
28
|
-
a: BigInt('0x73eda753299d7d483339d80809a1d80553bda402fffe5bfeffffffff00000000'),
|
|
29
|
-
d: BigInt('0x2a9318e74bfa2b48f5fd9207e6bd7fd4292d7f6d37579d2601065fd6d6343eb1'),
|
|
30
|
-
Fp: bls12_381_Fr,
|
|
25
|
+
const jubjub_CURVE = {
|
|
26
|
+
p: bls12_381_ts_1.bls12_381_Fr.ORDER,
|
|
31
27
|
n: BigInt('0xe7db4ea6533afa906673b0101343b00a6682093ccc81082d0970e5ed6f72cb7'),
|
|
32
28
|
h: BigInt(8),
|
|
29
|
+
a: BigInt('0x73eda753299d7d483339d80809a1d80553bda402fffe5bfeffffffff00000000'),
|
|
30
|
+
d: BigInt('0x2a9318e74bfa2b48f5fd9207e6bd7fd4292d7f6d37579d2601065fd6d6343eb1'),
|
|
33
31
|
Gx: BigInt('0x11dafe5d23e1218086a365b99fbf3d3be72f6afd7d1f72623e6b071492d1122b'),
|
|
34
32
|
Gy: BigInt('0x1d523cf1ddab1a1793132e78c866c0c33e26ba5cc220fed7cc3f870e59d292aa'),
|
|
35
|
-
|
|
36
|
-
|
|
33
|
+
};
|
|
34
|
+
/** Curve over scalar field of bls12-381. jubjub Fp = bls n */
|
|
35
|
+
exports.jubjub = (0, edwards_ts_1.twistedEdwards)({
|
|
36
|
+
...jubjub_CURVE,
|
|
37
|
+
Fp: bls12_381_ts_1.bls12_381_Fr,
|
|
38
|
+
hash: sha2_js_1.sha512,
|
|
37
39
|
});
|
|
40
|
+
const babyjubjub_CURVE = {
|
|
41
|
+
p: bn254_ts_1.bn254_Fr.ORDER,
|
|
42
|
+
n: BigInt('0x30644e72e131a029b85045b68181585d59f76dc1c90770533b94bee1c9093788'),
|
|
43
|
+
h: BigInt(8),
|
|
44
|
+
a: BigInt('168700'),
|
|
45
|
+
d: BigInt('168696'),
|
|
46
|
+
Gx: BigInt('0x23343e3445b673d38bcba38f25645adb494b1255b1162bb40f41a59f4d4b45e'),
|
|
47
|
+
Gy: BigInt('0xc19139cb84c680a6e14116da06056174a0cfa121e6e5c2450f87d64fc000001'),
|
|
48
|
+
};
|
|
38
49
|
/** Curve over scalar field of bn254. babyjubjub Fp = bn254 n */
|
|
39
50
|
exports.babyjubjub = (0, edwards_ts_1.twistedEdwards)({
|
|
40
|
-
|
|
41
|
-
|
|
42
|
-
|
|
43
|
-
n: BigInt('21888242871839275222246405745257275088614511777268538073601725287587578984328'),
|
|
44
|
-
h: BigInt(8),
|
|
45
|
-
Gx: BigInt('995203441582195749578291179787384436505546430278305826713579947235728471134'),
|
|
46
|
-
Gy: BigInt('5472060717959818805561601436314318772137091100104008585924551046643952123905'),
|
|
47
|
-
hash: blake1_1.blake256,
|
|
48
|
-
randomBytes: utils_1.randomBytes,
|
|
51
|
+
...babyjubjub_CURVE,
|
|
52
|
+
Fp: bn254_ts_1.bn254_Fr,
|
|
53
|
+
hash: blake1_js_1.blake256,
|
|
49
54
|
});
|
|
50
|
-
const jubjub_gh_first_block = (0,
|
|
55
|
+
const jubjub_gh_first_block = (0, utils_js_1.utf8ToBytes)('096b36a5804bfacef1691e173c366a47ff5ba84a44f26ddd7e8d9f79d5b42df0');
|
|
51
56
|
// Returns point at JubJub curve which is prime order and not zero
|
|
52
57
|
function jubjub_groupHash(tag, personalization) {
|
|
53
|
-
const h =
|
|
58
|
+
const h = blake2_js_1.blake2s.create({ personalization, dkLen: 32 });
|
|
54
59
|
h.update(jubjub_gh_first_block);
|
|
55
60
|
h.update(tag);
|
|
56
61
|
// NOTE: returns ExtendedPoint, in case it will be multiplied later
|
|
57
|
-
let p = exports.jubjub.
|
|
62
|
+
let p = exports.jubjub.Point.fromHex(h.digest());
|
|
58
63
|
// NOTE: cannot replace with isSmallOrder, returns Point*8
|
|
59
64
|
p = p.multiply(exports.jubjub.CURVE.h);
|
|
60
|
-
if (p.equals(exports.jubjub.
|
|
65
|
+
if (p.equals(exports.jubjub.Point.ZERO))
|
|
61
66
|
throw new Error('Point has small order');
|
|
62
67
|
return p;
|
|
63
68
|
}
|
|
@@ -65,7 +70,7 @@ function jubjub_groupHash(tag, personalization) {
|
|
|
65
70
|
// It operates over public data:
|
|
66
71
|
// const G_SPEND = jubjub.findGroupHash(Uint8Array.of(), utf8ToBytes('Item_G_'));
|
|
67
72
|
function jubjub_findGroupHash(m, personalization) {
|
|
68
|
-
const tag = (0,
|
|
73
|
+
const tag = (0, utils_js_1.concatBytes)(m, Uint8Array.of(0));
|
|
69
74
|
const hashes = [];
|
|
70
75
|
for (let i = 0; i < 256; i++) {
|
|
71
76
|
tag[tag.length - 1] = i;
|
|
@@ -93,7 +98,7 @@ exports.pallas = (0, weierstrass_ts_1.weierstrass)({
|
|
|
93
98
|
Gx: (0, modular_ts_1.mod)(BigInt(-1), exports.pasta_p),
|
|
94
99
|
Gy: BigInt(2),
|
|
95
100
|
h: BigInt(1),
|
|
96
|
-
|
|
101
|
+
hash: sha2_js_1.sha256,
|
|
97
102
|
});
|
|
98
103
|
/**
|
|
99
104
|
* https://neuromancer.sk/std/other/Vesta
|
|
@@ -107,6 +112,6 @@ exports.vesta = (0, weierstrass_ts_1.weierstrass)({
|
|
|
107
112
|
Gx: (0, modular_ts_1.mod)(BigInt(-1), exports.pasta_q),
|
|
108
113
|
Gy: BigInt(2),
|
|
109
114
|
h: BigInt(1),
|
|
110
|
-
|
|
115
|
+
hash: sha2_js_1.sha256,
|
|
111
116
|
});
|
|
112
117
|
//# sourceMappingURL=misc.js.map
|
package/misc.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"misc.js","sourceRoot":"","sources":["src/misc.ts"],"names":[],"mappings":";;;
|
|
1
|
+
{"version":3,"file":"misc.js","sourceRoot":"","sources":["src/misc.ts"],"names":[],"mappings":";;;AA+DA,4CAUC;AAKD,oDAWC;AAzFD;;;;GAIG;AACH,sEAAsE;AACtE,uDAAmD;AACnD,uDAAkD;AAClD,mDAAuD;AACvD,qDAAkE;AAClE,sDAK+B;AAC/B,sDAAmD;AACnD,8DAAkF;AAClF,iDAA8C;AAC9C,yCAAsC;AAEtC,6FAA6F;AAC7F,8CAA8C;AAC9C,oDAAoD;AACpD,0CAA0C;AAE1C,MAAM,YAAY,GAAgB;IAChC,CAAC,EAAE,2BAAY,CAAC,KAAK;IACrB,CAAC,EAAE,MAAM,CAAC,mEAAmE,CAAC;IAC9E,CAAC,EAAE,MAAM,CAAC,CAAC,CAAC;IACZ,CAAC,EAAE,MAAM,CAAC,oEAAoE,CAAC;IAC/E,CAAC,EAAE,MAAM,CAAC,oEAAoE,CAAC;IAC/E,EAAE,EAAE,MAAM,CAAC,oEAAoE,CAAC;IAChF,EAAE,EAAE,MAAM,CAAC,oEAAoE,CAAC;CACjF,CAAC;AACF,8DAA8D;AACjD,QAAA,MAAM,GAA4B,IAAA,2BAAc,EAAC;IAC5D,GAAG,YAAY;IACf,EAAE,EAAE,2BAAY;IAChB,IAAI,EAAE,gBAAM;CACb,CAAC,CAAC;AAEH,MAAM,gBAAgB,GAAgB;IACpC,CAAC,EAAE,mBAAQ,CAAC,KAAK;IACjB,CAAC,EAAE,MAAM,CAAC,oEAAoE,CAAC;IAC/E,CAAC,EAAE,MAAM,CAAC,CAAC,CAAC;IACZ,CAAC,EAAE,MAAM,CAAC,QAAQ,CAAC;IACnB,CAAC,EAAE,MAAM,CAAC,QAAQ,CAAC;IACnB,EAAE,EAAE,MAAM,CAAC,mEAAmE,CAAC;IAC/E,EAAE,EAAE,MAAM,CAAC,mEAAmE,CAAC;CAChF,CAAC;AACF,gEAAgE;AACnD,QAAA,UAAU,GAA4B,IAAA,2BAAc,EAAC;IAChE,GAAG,gBAAgB;IACnB,EAAE,EAAE,mBAAQ;IACZ,IAAI,EAAE,oBAAQ;CACf,CAAC,CAAC;AAEH,MAAM,qBAAqB,GAAG,IAAA,sBAAW,EACvC,kEAAkE,CACnE,CAAC;AAEF,kEAAkE;AAClE,SAAgB,gBAAgB,CAAC,GAAe,EAAE,eAA2B;IAC3E,MAAM,CAAC,GAAG,mBAAO,CAAC,MAAM,CAAC,EAAE,eAAe,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC;IACzD,CAAC,CAAC,MAAM,CAAC,qBAAqB,CAAC,CAAC;IAChC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IACd,mEAAmE;IACnE,IAAI,CAAC,GAAG,cAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC;IACzC,0DAA0D;IAC1D,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,cAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAC/B,IAAI,CAAC,CAAC,MAAM,CAAC,cAAM,CAAC,KAAK,CAAC,IAAI,CAAC;QAAE,MAAM,IAAI,KAAK,CAAC,uBAAuB,CAAC,CAAC;IAC1E,OAAO,CAAC,CAAC;AACX,CAAC;AAED,wCAAwC;AACxC,gCAAgC;AAChC,iFAAiF;AACjF,SAAgB,oBAAoB,CAAC,CAAa,EAAE,eAA2B;IAC7E,MAAM,GAAG,GAAG,IAAA,sBAAW,EAAC,CAAC,EAAE,UAAU,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;IAC7C,MAAM,MAAM,GAAG,EAAE,CAAC;IAClB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC;QAC7B,GAAG,CAAC,GAAG,CAAC,MAAM,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC;QACxB,IAAI,CAAC;YACH,MAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,GAAG,EAAE,eAAe,CAAC,CAAC,CAAC;QACtD,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC,CAAA,CAAC;IAChB,CAAC;IACD,IAAI,CAAC,MAAM,CAAC,MAAM;QAAE,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;IAClE,OAAO,MAAM,CAAC,CAAC,CAAC,CAAC;AACnB,CAAC;AAED,sFAAsF;AAEzE,QAAA,OAAO,GAAW,MAAM,CACnC,oEAAoE,CACrE,CAAC;AACW,QAAA,OAAO,GAAW,MAAM,CACnC,oEAAoE,CACrE,CAAC;AAEF;;;GAGG;AACU,QAAA,MAAM,GAAa,IAAA,4BAAW,EAAC;IAC1C,CAAC,EAAE,MAAM,CAAC,CAAC,CAAC;IACZ,CAAC,EAAE,MAAM,CAAC,CAAC,CAAC;IACZ,EAAE,EAAE,IAAA,kBAAK,EAAC,eAAO,CAAC;IAClB,CAAC,EAAE,eAAO;IACV,EAAE,EAAE,IAAA,gBAAG,EAAC,MAAM,CAAC,CAAC,CAAC,CAAC,EAAE,eAAO,CAAC;IAC5B,EAAE,EAAE,MAAM,CAAC,CAAC,CAAC;IACb,CAAC,EAAE,MAAM,CAAC,CAAC,CAAC;IACZ,IAAI,EAAE,gBAAM;CACb,CAAC,CAAC;AACH;;;GAGG;AACU,QAAA,KAAK,GAAa,IAAA,4BAAW,EAAC;IACzC,CAAC,EAAE,MAAM,CAAC,CAAC,CAAC;IACZ,CAAC,EAAE,MAAM,CAAC,CAAC,CAAC;IACZ,EAAE,EAAE,IAAA,kBAAK,EAAC,eAAO,CAAC;IAClB,CAAC,EAAE,eAAO;IACV,EAAE,EAAE,IAAA,gBAAG,EAAC,MAAM,CAAC,CAAC,CAAC,CAAC,EAAE,eAAO,CAAC;IAC5B,EAAE,EAAE,MAAM,CAAC,CAAC,CAAC;IACb,CAAC,EAAE,MAAM,CAAC,CAAC,CAAC;IACZ,IAAI,EAAE,gBAAM;CACb,CAAC,CAAC"}
|
package/nist.d.ts
CHANGED
|
@@ -1,30 +1,21 @@
|
|
|
1
1
|
import { type CurveFnWithCreate } from './_shortw_utils.ts';
|
|
2
|
-
import { type
|
|
3
|
-
/**
|
|
4
|
-
* secp256r1 curve, ECDSA and ECDH methods.
|
|
5
|
-
* Field: `2n**224n * (2n**32n-1n) + 2n**192n + 2n**96n-1n`
|
|
6
|
-
*/
|
|
2
|
+
import { type H2CHasher } from './abstract/hash-to-curve.ts';
|
|
3
|
+
/** NIST P256 (aka secp256r1, prime256v1) curve, ECDSA and ECDH methods. */
|
|
7
4
|
export declare const p256: CurveFnWithCreate;
|
|
8
5
|
/** Alias to p256. */
|
|
9
6
|
export declare const secp256r1: CurveFnWithCreate;
|
|
10
7
|
/** Hashing / encoding to p256 points / field. RFC 9380 methods. */
|
|
11
|
-
export declare const p256_hasher:
|
|
12
|
-
/**
|
|
13
|
-
* secp384r1 curve, ECDSA and ECDH methods.
|
|
14
|
-
* Field: `2n**384n - 2n**128n - 2n**96n + 2n**32n - 1n`.
|
|
15
|
-
* */
|
|
8
|
+
export declare const p256_hasher: H2CHasher<bigint>;
|
|
9
|
+
/** NIST P384 (aka secp384r1) curve, ECDSA and ECDH methods. */
|
|
16
10
|
export declare const p384: CurveFnWithCreate;
|
|
17
11
|
/** Alias to p384. */
|
|
18
12
|
export declare const secp384r1: CurveFnWithCreate;
|
|
19
13
|
/** Hashing / encoding to p384 points / field. RFC 9380 methods. */
|
|
20
|
-
export declare const p384_hasher:
|
|
21
|
-
/**
|
|
22
|
-
* NIST secp521r1 aka p521 curve, ECDSA and ECDH methods.
|
|
23
|
-
* Field: `2n**521n - 1n`.
|
|
24
|
-
*/
|
|
14
|
+
export declare const p384_hasher: H2CHasher<bigint>;
|
|
15
|
+
/** NIST P521 (aka secp521r1) curve, ECDSA and ECDH methods. */
|
|
25
16
|
export declare const p521: CurveFnWithCreate;
|
|
26
17
|
/** Alias to p521. */
|
|
27
18
|
export declare const secp521r1: CurveFnWithCreate;
|
|
28
19
|
/** Hashing / encoding to p521 points / field. RFC 9380 methods. */
|
|
29
|
-
export declare const p521_hasher:
|
|
20
|
+
export declare const p521_hasher: H2CHasher<bigint>;
|
|
30
21
|
//# sourceMappingURL=nist.d.ts.map
|
package/nist.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"nist.d.ts","sourceRoot":"","sources":["src/nist.ts"],"names":[],"mappings":"AAOA,OAAO,EAAe,KAAK,iBAAiB,EAAE,MAAM,oBAAoB,CAAC;AACzE,OAAO,EAAgB,KAAK,
|
|
1
|
+
{"version":3,"file":"nist.d.ts","sourceRoot":"","sources":["src/nist.ts"],"names":[],"mappings":"AAOA,OAAO,EAAe,KAAK,iBAAiB,EAAE,MAAM,oBAAoB,CAAC;AACzE,OAAO,EAAgB,KAAK,SAAS,EAAE,MAAM,6BAA6B,CAAC;AA2E3E,2EAA2E;AAC3E,eAAO,MAAM,IAAI,EAAE,iBAGlB,CAAC;AACF,qBAAqB;AACrB,eAAO,MAAM,SAAS,EAAE,iBAAwB,CAAC;AACjD,mEAAmE;AACnE,eAAO,MAAM,WAAW,EAAE,SAAS,CAAC,MAAM,CAkBtC,CAAC;AAEL,+DAA+D;AAC/D,eAAO,MAAM,IAAI,EAAE,iBAGlB,CAAC;AACF,qBAAqB;AACrB,eAAO,MAAM,SAAS,EAAE,iBAAwB,CAAC;AACjD,mEAAmE;AACnE,eAAO,MAAM,WAAW,EAAE,SAAS,CAAC,MAAM,CAkBtC,CAAC;AAEL,+DAA+D;AAC/D,eAAO,MAAM,IAAI,EAAE,iBAGlB,CAAC;AACF,qBAAqB;AACrB,eAAO,MAAM,SAAS,EAAE,iBAAwB,CAAC;AACjD,mEAAmE;AACnE,eAAO,MAAM,WAAW,EAAE,SAAS,CAAC,MAAM,CAkBtC,CAAC"}
|