@pezkuwi/util-crypto 14.0.2 → 14.0.3

package/cjs/random/asU8a.js

@@ -0,0 +1,28 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.randomAsHex = void 0;
+exports.randomAsU8a = randomAsU8a;
+const x_randomvalues_1 = require("@pezkuwi/x-randomvalues");
+const helpers_js_1 = require("../helpers.js");
+/**
+ * @name randomAsU8a
+ * @summary Creates a Uint8Array filled with random bytes.
+ * @description
+ * Returns a `Uint8Array` with the specified (optional) length filled with random bytes.
+ * @example
+ * <BR>
+ *
+ * ```javascript
+ * import { randomAsU8a } from '@pezkuwi/util-crypto';
+ *
+ * randomAsU8a(); // => Uint8Array([...])
+ * ```
+ */
+function randomAsU8a(length = 32) {
+    return (0, x_randomvalues_1.getRandomValues)(new Uint8Array(length));
+}
+/**
+ * @name randomAsHex
+ * @description Creates a hex string filled with random bytes.
+ */
+exports.randomAsHex = (0, helpers_js_1.createAsHex)(randomAsU8a);

package/{src/random/index.ts → cjs/random/index.d.ts}

@@ -1,9 +1,5 @@
-// Copyright 2017-2025 @polkadot/util-crypto authors & contributors
-// SPDX-License-Identifier: Apache-2.0
-
 /**
  * @summary Returns a sequence of secure random bytes in a variety of formats
  */
-
 export { randomAsNumber } from './asNumber.js';
 export { randomAsHex, randomAsU8a } from './asU8a.js';

package/cjs/random/index.js

@@ -0,0 +1,11 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.randomAsU8a = exports.randomAsHex = exports.randomAsNumber = void 0;
+/**
+ * @summary Returns a sequence of secure random bytes in a variety of formats
+ */
+var asNumber_js_1 = require("./asNumber.js");
+Object.defineProperty(exports, "randomAsNumber", { enumerable: true, get: function () { return asNumber_js_1.randomAsNumber; } });
+var asU8a_js_1 = require("./asU8a.js");
+Object.defineProperty(exports, "randomAsHex", { enumerable: true, get: function () { return asU8a_js_1.randomAsHex; } });
+Object.defineProperty(exports, "randomAsU8a", { enumerable: true, get: function () { return asU8a_js_1.randomAsU8a; } });

package/cjs/scrypt/defaults.d.ts

@@ -0,0 +1,3 @@
+import type { ScryptParams } from './types.js';
+export declare const ALLOWED_PARAMS: ScryptParams[];
+export declare const DEFAULT_PARAMS: ScryptParams;

package/cjs/scrypt/defaults.js

@@ -0,0 +1,16 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.DEFAULT_PARAMS = exports.ALLOWED_PARAMS = void 0;
+exports.ALLOWED_PARAMS = [
+    { N: 1 << 13, p: 10, r: 8 },
+    { N: 1 << 14, p: 5, r: 8 },
+    { N: 1 << 15, p: 3, r: 8 },
+    { N: 1 << 15, p: 1, r: 8 },
+    { N: 1 << 16, p: 2, r: 8 },
+    { N: 1 << 17, p: 1, r: 8 }
+];
+exports.DEFAULT_PARAMS = {
+    N: 1 << 17,
+    p: 1,
+    r: 8
+};

package/cjs/scrypt/encode.d.ts

@@ -0,0 +1,8 @@
+import type { ScryptParams } from './types.js';
+interface Result {
+    params: ScryptParams;
+    password: Uint8Array;
+    salt: Uint8Array;
+}
+export declare function scryptEncode(passphrase?: string | Uint8Array, salt?: Uint8Array, params?: ScryptParams, onlyJs?: boolean): Result;
+export {};

package/cjs/scrypt/encode.js

@@ -0,0 +1,18 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.scryptEncode = scryptEncode;
+const scrypt_1 = require("@noble/hashes/scrypt");
+const util_1 = require("@pezkuwi/util");
+const wasm_crypto_1 = require("@pezkuwi/wasm-crypto");
+const asU8a_js_1 = require("../random/asU8a.js");
+const defaults_js_1 = require("./defaults.js");
+function scryptEncode(passphrase, salt = (0, asU8a_js_1.randomAsU8a)(), params = defaults_js_1.DEFAULT_PARAMS, onlyJs) {
+    const u8a = (0, util_1.u8aToU8a)(passphrase);
+    return {
+        params,
+        password: !util_1.hasBigInt || (!onlyJs && (0, wasm_crypto_1.isReady)())
+            ? (0, wasm_crypto_1.scrypt)(u8a, salt, Math.log2(params.N), params.r, params.p)
+            : (0, scrypt_1.scrypt)(u8a, salt, (0, util_1.objectSpread)({ dkLen: 64 }, params)),
+        salt
+    };
+}

package/cjs/scrypt/fromU8a.d.ts

@@ -0,0 +1,7 @@
+import type { ScryptParams } from './types.js';
+interface Result {
+    params: ScryptParams;
+    salt: Uint8Array;
+}
+export declare function scryptFromU8a(data: Uint8Array): Result;
+export {};

package/cjs/scrypt/fromU8a.js

@@ -0,0 +1,27 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.scryptFromU8a = scryptFromU8a;
+const util_1 = require("@pezkuwi/util");
+const bn_js_1 = require("../bn.js");
+const defaults_js_1 = require("./defaults.js");
+function scryptFromU8a(data) {
+    if (!(data instanceof Uint8Array)) {
+        throw new Error('Expected input to be a Uint8Array');
+    }
+    // Ensure the input is exactly 44 bytes: 32 for salt + 3 * 4 for N, p, r
+    if (data.length < 32 + 12) {
+        throw new Error(`Invalid input length: expected 44 bytes, found ${data.length}`);
+    }
+    const salt = data.subarray(0, 32);
+    const N = (0, util_1.u8aToBn)(data.subarray(32, 36), bn_js_1.BN_LE_OPTS).toNumber();
+    const p = (0, util_1.u8aToBn)(data.subarray(36, 40), bn_js_1.BN_LE_OPTS).toNumber();
+    const r = (0, util_1.u8aToBn)(data.subarray(40, 44), bn_js_1.BN_LE_OPTS).toNumber();
+    if (N > (1 << 20) || p > 4 || r > 16) {
+        throw new Error('Scrypt parameters exceed safe limits');
+    }
+    const isAllowed = defaults_js_1.ALLOWED_PARAMS.some((preset) => preset.N === N && preset.p === p && preset.r === r);
+    if (!isAllowed) {
+        throw new Error('Invalid injected scrypt params found');
+    }
+    return { params: { N, p, r }, salt };
+}

package/{src/scrypt/index.ts → cjs/scrypt/index.d.ts}

@@ -1,6 +1,3 @@
-// Copyright 2017-2025 @polkadot/util-crypto authors & contributors
-// SPDX-License-Identifier: Apache-2.0
-
 export { scryptEncode } from './encode.js';
 export { scryptFromU8a } from './fromU8a.js';
 export { scryptToU8a } from './toU8a.js';

package/cjs/scrypt/index.js

@@ -0,0 +1,9 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.scryptToU8a = exports.scryptFromU8a = exports.scryptEncode = void 0;
+var encode_js_1 = require("./encode.js");
+Object.defineProperty(exports, "scryptEncode", { enumerable: true, get: function () { return encode_js_1.scryptEncode; } });
+var fromU8a_js_1 = require("./fromU8a.js");
+Object.defineProperty(exports, "scryptFromU8a", { enumerable: true, get: function () { return fromU8a_js_1.scryptFromU8a; } });
+var toU8a_js_1 = require("./toU8a.js");
+Object.defineProperty(exports, "scryptToU8a", { enumerable: true, get: function () { return toU8a_js_1.scryptToU8a; } });

package/cjs/scrypt/toU8a.d.ts

@@ -0,0 +1,2 @@
+import type { ScryptParams } from './types.js';
+export declare function scryptToU8a(salt: Uint8Array, { N, p, r }: ScryptParams): Uint8Array;

package/cjs/scrypt/toU8a.js

@@ -0,0 +1,8 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.scryptToU8a = scryptToU8a;
+const util_1 = require("@pezkuwi/util");
+const bn_js_1 = require("../bn.js");
+function scryptToU8a(salt, { N, p, r }) {
+    return (0, util_1.u8aConcat)(salt, (0, util_1.bnToU8a)(N, bn_js_1.BN_LE_32_OPTS), (0, util_1.bnToU8a)(p, bn_js_1.BN_LE_32_OPTS), (0, util_1.bnToU8a)(r, bn_js_1.BN_LE_32_OPTS));
+}

package/cjs/scrypt/types.d.ts

@@ -0,0 +1,6 @@
+/** The params that control scrypt generation */
+export interface ScryptParams {
+    N: number;
+    p: number;
+    r: number;
+}

package/cjs/scrypt/types.js

@@ -0,0 +1,2 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });

package/cjs/secp256k1/compress.d.ts

@@ -0,0 +1 @@
+export declare function secp256k1Compress(publicKey: Uint8Array, onlyJs?: boolean): Uint8Array;

package/cjs/secp256k1/compress.js

@@ -0,0 +1,17 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.secp256k1Compress = secp256k1Compress;
+const secp256k1_1 = require("@noble/curves/secp256k1");
+const util_1 = require("@pezkuwi/util");
+const wasm_crypto_1 = require("@pezkuwi/wasm-crypto");
+function secp256k1Compress(publicKey, onlyJs) {
+    if (![33, 65].includes(publicKey.length)) {
+        throw new Error(`Invalid publicKey provided, received ${publicKey.length} bytes input`);
+    }
+    if (publicKey.length === 33) {
+        return publicKey;
+    }
+    return !util_1.hasBigInt || (!onlyJs && (0, wasm_crypto_1.isReady)())
+        ? (0, wasm_crypto_1.secp256k1Compress)(publicKey)
+        : secp256k1_1.secp256k1.ProjectivePoint.fromHex(publicKey).toRawBytes(true);
+}

package/cjs/secp256k1/deriveHard.d.ts

@@ -0,0 +1 @@
+export declare function secp256k1DeriveHard(seed: Uint8Array, chainCode: Uint8Array): Uint8Array;

package/cjs/secp256k1/deriveHard.js

@@ -0,0 +1,13 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.secp256k1DeriveHard = secp256k1DeriveHard;
+const util_1 = require("@pezkuwi/util");
+const asU8a_js_1 = require("../blake2/asU8a.js");
+const HDKD = (0, util_1.compactAddLength)((0, util_1.stringToU8a)('Secp256k1HDKD'));
+function secp256k1DeriveHard(seed, chainCode) {
+    if (!(0, util_1.isU8a)(chainCode) || chainCode.length !== 32) {
+        throw new Error('Invalid chainCode passed to derive');
+    }
+    // NOTE This is specific to the Substrate HDD derivation, so always use the blake2 hasher
+    return (0, asU8a_js_1.blake2AsU8a)((0, util_1.u8aConcat)(HDKD, seed, chainCode), 256);
+}

package/cjs/secp256k1/expand.d.ts

@@ -0,0 +1 @@
+export declare function secp256k1Expand(publicKey: Uint8Array, onlyJs?: boolean): Uint8Array;

package/cjs/secp256k1/expand.js

@@ -0,0 +1,20 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.secp256k1Expand = secp256k1Expand;
+const secp256k1_1 = require("@noble/curves/secp256k1");
+const util_1 = require("@pezkuwi/util");
+const wasm_crypto_1 = require("@pezkuwi/wasm-crypto");
+const bn_js_1 = require("../bn.js");
+function secp256k1Expand(publicKey, onlyJs) {
+    if (![33, 65].includes(publicKey.length)) {
+        throw new Error(`Invalid publicKey provided, received ${publicKey.length} bytes input`);
+    }
+    if (publicKey.length === 65) {
+        return publicKey.subarray(1);
+    }
+    if (!util_1.hasBigInt || (!onlyJs && (0, wasm_crypto_1.isReady)())) {
+        return (0, wasm_crypto_1.secp256k1Expand)(publicKey).subarray(1);
+    }
+    const { px, py } = secp256k1_1.secp256k1.ProjectivePoint.fromHex(publicKey);
+    return (0, util_1.u8aConcat)((0, util_1.bnToU8a)(px, bn_js_1.BN_BE_256_OPTS), (0, util_1.bnToU8a)(py, bn_js_1.BN_BE_256_OPTS));
+}

package/cjs/secp256k1/hasher.d.ts

@@ -0,0 +1,2 @@
+import type { HashType } from './types.js';
+export declare function hasher(hashType: HashType, data: Uint8Array | string, onlyJs?: boolean): Uint8Array;

package/cjs/secp256k1/hasher.js

@@ -0,0 +1,10 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.hasher = hasher;
+const index_js_1 = require("../blake2/index.js");
+const index_js_2 = require("../keccak/index.js");
+function hasher(hashType, data, onlyJs) {
+    return hashType === 'keccak'
+        ? (0, index_js_2.keccakAsU8a)(data, undefined, onlyJs)
+        : (0, index_js_1.blake2AsU8a)(data, undefined, undefined, onlyJs);
+}

package/{src/secp256k1/index.ts → cjs/secp256k1/index.d.ts}

@@ -1,6 +1,3 @@
-// Copyright 2017-2025 @polkadot/util-crypto authors & contributors
-// SPDX-License-Identifier: Apache-2.0
-
 export { secp256k1Compress } from './compress.js';
 export { secp256k1Expand } from './expand.js';
 export { secp256k1PairFromSeed } from './pair/fromSeed.js';

package/cjs/secp256k1/index.js

@@ -0,0 +1,17 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.secp256k1Verify = exports.secp256k1PrivateKeyTweakAdd = exports.secp256k1Sign = exports.secp256k1Recover = exports.secp256k1PairFromSeed = exports.secp256k1Expand = exports.secp256k1Compress = void 0;
+var compress_js_1 = require("./compress.js");
+Object.defineProperty(exports, "secp256k1Compress", { enumerable: true, get: function () { return compress_js_1.secp256k1Compress; } });
+var expand_js_1 = require("./expand.js");
+Object.defineProperty(exports, "secp256k1Expand", { enumerable: true, get: function () { return expand_js_1.secp256k1Expand; } });
+var fromSeed_js_1 = require("./pair/fromSeed.js");
+Object.defineProperty(exports, "secp256k1PairFromSeed", { enumerable: true, get: function () { return fromSeed_js_1.secp256k1PairFromSeed; } });
+var recover_js_1 = require("./recover.js");
+Object.defineProperty(exports, "secp256k1Recover", { enumerable: true, get: function () { return recover_js_1.secp256k1Recover; } });
+var sign_js_1 = require("./sign.js");
+Object.defineProperty(exports, "secp256k1Sign", { enumerable: true, get: function () { return sign_js_1.secp256k1Sign; } });
+var tweakAdd_js_1 = require("./tweakAdd.js");
+Object.defineProperty(exports, "secp256k1PrivateKeyTweakAdd", { enumerable: true, get: function () { return tweakAdd_js_1.secp256k1PrivateKeyTweakAdd; } });
+var verify_js_1 = require("./verify.js");
+Object.defineProperty(exports, "secp256k1Verify", { enumerable: true, get: function () { return verify_js_1.secp256k1Verify; } });

package/cjs/secp256k1/pair/fromSeed.d.ts

@@ -0,0 +1,6 @@
+import type { Keypair } from '../../types.js';
+/**
+ * @name secp256k1PairFromSeed
+ * @description Returns a object containing a `publicKey` & `secretKey` generated from the supplied seed.
+ */
+export declare function secp256k1PairFromSeed(seed: Uint8Array, onlyJs?: boolean): Keypair;

package/cjs/secp256k1/pair/fromSeed.js

@@ -0,0 +1,34 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.secp256k1PairFromSeed = secp256k1PairFromSeed;
+const secp256k1_1 = require("@noble/curves/secp256k1");
+const util_1 = require("@pezkuwi/util");
+const wasm_crypto_1 = require("@pezkuwi/wasm-crypto");
+/**
+ * @name secp256k1PairFromSeed
+ * @description Returns a object containing a `publicKey` & `secretKey` generated from the supplied seed.
+ */
+function secp256k1PairFromSeed(seed, onlyJs) {
+    if (seed.length !== 32) {
+        throw new Error('Expected valid 32-byte private key as a seed');
+    }
+    if (!util_1.hasBigInt || (!onlyJs && (0, wasm_crypto_1.isReady)())) {
+        const full = (0, wasm_crypto_1.secp256k1FromSeed)(seed);
+        const publicKey = full.slice(32);
+        // There is an issue with the secp256k1 when running in an ASM.js environment where
+        // it seems that the lazy static section yields invalid results on the _first_ run.
+        // If this happens, fail outright, we cannot allow invalid return values
+        // https://github.com/polkadot-js/wasm/issues/307
+        if ((0, util_1.u8aEmpty)(publicKey)) {
+            throw new Error('Invalid publicKey generated from WASM interface');
+        }
+        return {
+            publicKey,
+            secretKey: full.slice(0, 32)
+        };
+    }
+    return {
+        publicKey: secp256k1_1.secp256k1.getPublicKey(seed, true),
+        secretKey: seed
+    };
+}

package/cjs/secp256k1/recover.d.ts

@@ -0,0 +1,6 @@
+import type { HashType } from './types.js';
+/**
+ * @name secp256k1Recover
+ * @description Recovers a publicKey from the supplied signature
+ */
+export declare function secp256k1Recover(msgHash: string | Uint8Array, signature: string | Uint8Array, recovery: number, hashType?: HashType, onlyJs?: boolean): Uint8Array;

package/cjs/secp256k1/recover.js

@@ -0,0 +1,29 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.secp256k1Recover = secp256k1Recover;
+const secp256k1_1 = require("@noble/curves/secp256k1");
+const util_1 = require("@pezkuwi/util");
+const wasm_crypto_1 = require("@pezkuwi/wasm-crypto");
+const compress_js_1 = require("./compress.js");
+const expand_js_1 = require("./expand.js");
+/**
+ * @name secp256k1Recover
+ * @description Recovers a publicKey from the supplied signature
+ */
+function secp256k1Recover(msgHash, signature, recovery, hashType = 'blake2', onlyJs) {
+    const sig = (0, util_1.u8aToU8a)(signature).subarray(0, 64);
+    const msg = (0, util_1.u8aToU8a)(msgHash);
+    const publicKey = !util_1.hasBigInt || (!onlyJs && (0, wasm_crypto_1.isReady)())
+        ? (0, wasm_crypto_1.secp256k1Recover)(msg, sig, recovery)
+        : secp256k1_1.secp256k1.Signature
+            .fromCompact(sig)
+            .addRecoveryBit(recovery)
+            .recoverPublicKey(msg)
+            .toRawBytes();
+    if (!publicKey) {
+        throw new Error('Unable to recover publicKey from signature');
+    }
+    return hashType === 'keccak'
+        ? (0, expand_js_1.secp256k1Expand)(publicKey, onlyJs)
+        : (0, compress_js_1.secp256k1Compress)(publicKey, onlyJs);
+}

package/cjs/secp256k1/sign.d.ts

@@ -0,0 +1,7 @@
+import type { Keypair } from '../types.js';
+import type { HashType } from './types.js';
+/**
+ * @name secp256k1Sign
+ * @description Returns message signature of `message`, using the supplied pair
+ */
+export declare function secp256k1Sign(message: Uint8Array | string, { secretKey }: Partial<Keypair>, hashType?: HashType, onlyJs?: boolean): Uint8Array;

package/cjs/secp256k1/sign.js

@@ -0,0 +1,23 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.secp256k1Sign = secp256k1Sign;
+const secp256k1_1 = require("@noble/curves/secp256k1");
+const util_1 = require("@pezkuwi/util");
+const wasm_crypto_1 = require("@pezkuwi/wasm-crypto");
+const bn_js_1 = require("../bn.js");
+const hasher_js_1 = require("./hasher.js");
+/**
+ * @name secp256k1Sign
+ * @description Returns message signature of `message`, using the supplied pair
+ */
+function secp256k1Sign(message, { secretKey }, hashType = 'blake2', onlyJs) {
+    if (secretKey?.length !== 32) {
+        throw new Error('Expected valid secp256k1 secretKey, 32-bytes');
+    }
+    const data = (0, hasher_js_1.hasher)(hashType, message, onlyJs);
+    if (!util_1.hasBigInt || (!onlyJs && (0, wasm_crypto_1.isReady)())) {
+        return (0, wasm_crypto_1.secp256k1Sign)(data, secretKey);
+    }
+    const signature = secp256k1_1.secp256k1.sign(data, secretKey, { lowS: true });
+    return (0, util_1.u8aConcat)((0, util_1.bnToU8a)(signature.r, bn_js_1.BN_BE_256_OPTS), (0, util_1.bnToU8a)(signature.s, bn_js_1.BN_BE_256_OPTS), new Uint8Array([signature.recovery || 0]));
+}

package/cjs/secp256k1/tweakAdd.d.ts

@@ -0,0 +1 @@
+export declare function secp256k1PrivateKeyTweakAdd(seckey: Uint8Array, tweak: Uint8Array, onlyBn?: boolean): Uint8Array;

package/cjs/secp256k1/tweakAdd.js

@@ -0,0 +1,48 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.secp256k1PrivateKeyTweakAdd = secp256k1PrivateKeyTweakAdd;
+const util_1 = require("@pezkuwi/util");
+const x_bigint_1 = require("@pezkuwi/x-bigint");
+const bn_js_1 = require("../bn.js");
+const N = 'ffffffff ffffffff ffffffff fffffffe baaedce6 af48a03b bfd25e8c d0364141'.replace(/ /g, '');
+const N_BI = (0, x_bigint_1.BigInt)(`0x${N}`);
+const N_BN = new util_1.BN(N, 'hex');
+function addBi(seckey, tweak) {
+    let res = (0, util_1.u8aToBigInt)(tweak, bn_js_1.BN_BE_OPTS);
+    if (res >= N_BI) {
+        throw new Error('Tweak parameter is out of range');
+    }
+    res += (0, util_1.u8aToBigInt)(seckey, bn_js_1.BN_BE_OPTS);
+    if (res >= N_BI) {
+        res -= N_BI;
+    }
+    if (res === util_1._0n) {
+        throw new Error('Invalid resulting private key');
+    }
+    return (0, util_1.nToU8a)(res, bn_js_1.BN_BE_256_OPTS);
+}
+function addBn(seckey, tweak) {
+    const res = new util_1.BN(tweak);
+    if (res.cmp(N_BN) >= 0) {
+        throw new Error('Tweak parameter is out of range');
+    }
+    res.iadd(new util_1.BN(seckey));
+    if (res.cmp(N_BN) >= 0) {
+        res.isub(N_BN);
+    }
+    if (res.isZero()) {
+        throw new Error('Invalid resulting private key');
+    }
+    return (0, util_1.bnToU8a)(res, bn_js_1.BN_BE_256_OPTS);
+}
+function secp256k1PrivateKeyTweakAdd(seckey, tweak, onlyBn) {
+    if (!(0, util_1.isU8a)(seckey) || seckey.length !== 32) {
+        throw new Error('Expected seckey to be an Uint8Array with length 32');
+    }
+    else if (!(0, util_1.isU8a)(tweak) || tweak.length !== 32) {
+        throw new Error('Expected tweak to be an Uint8Array with length 32');
+    }
+    return !util_1.hasBigInt || onlyBn
+        ? addBn(seckey, tweak)
+        : addBi(seckey, tweak);
+}

package/cjs/secp256k1/types.d.ts

@@ -0,0 +1 @@
+export type HashType = 'blake2' | 'keccak';

package/cjs/secp256k1/types.js

@@ -0,0 +1,2 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });

package/cjs/secp256k1/verify.d.ts

@@ -0,0 +1,6 @@
+import type { HashType } from './types.js';
+/**
+ * @name secp256k1Verify
+ * @description Verifies the signature of `message`, using the supplied pair
+ */
+export declare function secp256k1Verify(msgHash: string | Uint8Array, signature: string | Uint8Array, address: string | Uint8Array, hashType?: HashType, onlyJs?: boolean): boolean;

package/cjs/secp256k1/verify.js

@@ -0,0 +1,23 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.secp256k1Verify = secp256k1Verify;
+const util_1 = require("@pezkuwi/util");
+const hasher_js_1 = require("./hasher.js");
+const recover_js_1 = require("./recover.js");
+/**
+ * @name secp256k1Verify
+ * @description Verifies the signature of `message`, using the supplied pair
+ */
+function secp256k1Verify(msgHash, signature, address, hashType = 'blake2', onlyJs) {
+    const sig = (0, util_1.u8aToU8a)(signature);
+    if (sig.length !== 65) {
+        throw new Error(`Expected signature with 65 bytes, ${sig.length} found instead`);
+    }
+    const publicKey = (0, recover_js_1.secp256k1Recover)((0, hasher_js_1.hasher)(hashType, msgHash), sig, sig[64], hashType, onlyJs);
+    const signerAddr = (0, hasher_js_1.hasher)(hashType, publicKey, onlyJs);
+    const inputAddr = (0, util_1.u8aToU8a)(address);
+    // for Ethereum (keccak) the last 20 bytes is the address
+    return (0, util_1.u8aEq)(publicKey, inputAddr) || (hashType === 'keccak'
+        ? (0, util_1.u8aEq)(signerAddr.slice(-20), inputAddr.slice(-20))
+        : (0, util_1.u8aEq)(signerAddr, inputAddr));
+}

package/cjs/sha/asU8a.d.ts

@@ -0,0 +1,15 @@
+/**
+ * @name shaAsU8a
+ * @summary Creates a sha Uint8Array from the input.
+ */
+export declare const shaAsU8a: (value: string | Uint8Array, bitLength?: 256 | 512, onlyJs?: boolean) => Uint8Array;
+/**
+ * @name sha256AsU8a
+ * @summary Creates a sha256 Uint8Array from the input.
+ */
+export declare const sha256AsU8a: (data: string | Uint8Array, onlyJs?: boolean) => Uint8Array;
+/**
+ * @name sha512AsU8a
+ * @summary Creates a sha512 Uint8Array from the input.
+ */
+export declare const sha512AsU8a: (data: string | Uint8Array, onlyJs?: boolean) => Uint8Array;

package/cjs/sha/asU8a.js

@@ -0,0 +1,22 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.sha512AsU8a = exports.sha256AsU8a = exports.shaAsU8a = void 0;
+const sha256_1 = require("@noble/hashes/sha256");
+const sha512_1 = require("@noble/hashes/sha512");
+const wasm_crypto_1 = require("@pezkuwi/wasm-crypto");
+const helpers_js_1 = require("../helpers.js");
+/**
+ * @name shaAsU8a
+ * @summary Creates a sha Uint8Array from the input.
+ */
+exports.shaAsU8a = (0, helpers_js_1.createDualHasher)({ 256: wasm_crypto_1.sha256, 512: wasm_crypto_1.sha512 }, { 256: sha256_1.sha256, 512: sha512_1.sha512 });
+/**
+ * @name sha256AsU8a
+ * @summary Creates a sha256 Uint8Array from the input.
+ */
+exports.sha256AsU8a = (0, helpers_js_1.createBitHasher)(256, exports.shaAsU8a);
+/**
+ * @name sha512AsU8a
+ * @summary Creates a sha512 Uint8Array from the input.
+ */
+exports.sha512AsU8a = (0, helpers_js_1.createBitHasher)(512, exports.shaAsU8a);

package/{src/sha/index.ts → cjs/sha/index.d.ts}

@@ -1,8 +1,4 @@
-// Copyright 2017-2025 @polkadot/util-crypto authors & contributors
-// SPDX-License-Identifier: Apache-2.0
-
 /**
  * @summary Implements Sha-256/512 hashing functions for a variety of input and outputs
  */
-
 export { sha256AsU8a, sha512AsU8a, shaAsU8a } from './asU8a.js';

package/cjs/sha/index.js

@@ -0,0 +1,10 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.shaAsU8a = exports.sha512AsU8a = exports.sha256AsU8a = void 0;
+/**
+ * @summary Implements Sha-256/512 hashing functions for a variety of input and outputs
+ */
+var asU8a_js_1 = require("./asU8a.js");
+Object.defineProperty(exports, "sha256AsU8a", { enumerable: true, get: function () { return asU8a_js_1.sha256AsU8a; } });
+Object.defineProperty(exports, "sha512AsU8a", { enumerable: true, get: function () { return asU8a_js_1.sha512AsU8a; } });
+Object.defineProperty(exports, "shaAsU8a", { enumerable: true, get: function () { return asU8a_js_1.shaAsU8a; } });

package/cjs/signature/index.d.ts

@@ -0,0 +1,4 @@
+/**
+ * @summary Utilities for working with signatures
+ */
+export { signatureVerify } from './verify.js';

package/cjs/signature/index.js

@@ -0,0 +1,8 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.signatureVerify = void 0;
+/**
+ * @summary Utilities for working with signatures
+ */
+var verify_js_1 = require("./verify.js");
+Object.defineProperty(exports, "signatureVerify", { enumerable: true, get: function () { return verify_js_1.signatureVerify; } });

package/cjs/signature/verify.d.ts

@@ -0,0 +1,2 @@
+import type { VerifyResult } from '../types.js';
+export declare function signatureVerify(message: string | Uint8Array, signature: string | Uint8Array, addressOrPublicKey: string | Uint8Array): VerifyResult;