@solana/keys 2.0.0-rc.0 → 2.0.0-rc.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +50 -4
- package/dist/index.browser.cjs +42 -0
- package/dist/index.browser.cjs.map +1 -1
- package/dist/index.browser.mjs +44 -3
- package/dist/index.browser.mjs.map +1 -1
- package/dist/index.native.mjs +44 -3
- package/dist/index.native.mjs.map +1 -1
- package/dist/index.node.cjs +42 -0
- package/dist/index.node.cjs.map +1 -1
- package/dist/index.node.mjs +44 -3
- package/dist/index.node.mjs.map +1 -1
- package/dist/types/key-pair.d.ts +1 -0
- package/dist/types/key-pair.d.ts.map +1 -1
- package/dist/types/public-key.d.ts +2 -0
- package/dist/types/public-key.d.ts.map +1 -0
- package/package.json +5 -5
package/README.md
CHANGED
|
@@ -6,15 +6,15 @@
|
|
|
6
6
|
|
|
7
7
|
[code-style-prettier-image]: https://img.shields.io/badge/code_style-prettier-ff69b4.svg?style=flat-square
|
|
8
8
|
[code-style-prettier-url]: https://github.com/prettier/prettier
|
|
9
|
-
[npm-downloads-image]: https://img.shields.io/npm/dm/@solana/keys/
|
|
10
|
-
[npm-image]: https://img.shields.io/npm/v/@solana/keys/
|
|
11
|
-
[npm-url]: https://www.npmjs.com/package/@solana/keys/v/
|
|
9
|
+
[npm-downloads-image]: https://img.shields.io/npm/dm/@solana/keys/rc.svg?style=flat
|
|
10
|
+
[npm-image]: https://img.shields.io/npm/v/@solana/keys/rc.svg?style=flat
|
|
11
|
+
[npm-url]: https://www.npmjs.com/package/@solana/keys/v/rc
|
|
12
12
|
[semantic-release-image]: https://img.shields.io/badge/%20%20%F0%9F%93%A6%F0%9F%9A%80-semantic--release-e10079.svg
|
|
13
13
|
[semantic-release-url]: https://github.com/semantic-release/semantic-release
|
|
14
14
|
|
|
15
15
|
# @solana/keys
|
|
16
16
|
|
|
17
|
-
This package contains utilities for validating, generating, and manipulating addresses and key material. It can be used standalone, but it is also exported as part of the Solana JavaScript SDK [`@solana/web3.js@
|
|
17
|
+
This package contains utilities for validating, generating, and manipulating addresses and key material. It can be used standalone, but it is also exported as part of the Solana JavaScript SDK [`@solana/web3.js@rc`](https://github.com/solana-labs/solana-web3.js/tree/master/packages/library).
|
|
18
18
|
|
|
19
19
|
## Types
|
|
20
20
|
|
|
@@ -81,6 +81,52 @@ const keypairBytes = new Uint8Array(JSON.parse(keypairFile.toString()));
|
|
|
81
81
|
const { privateKey, publicKey } = await createKeyPairFromBytes(keypairBytes);
|
|
82
82
|
```
|
|
83
83
|
|
|
84
|
+
### `createKeyPairFromPrivateKeyBytes()`
|
|
85
|
+
|
|
86
|
+
Given a private key represented as a 32-bytes `Uint8Array`, creates an Ed25519 public/private key pair for use with other methods in this package that accept `CryptoKey` objects.
|
|
87
|
+
|
|
88
|
+
```ts
|
|
89
|
+
import { createKeyPairFromPrivateKeyBytes } from '@solana/keys';
|
|
90
|
+
|
|
91
|
+
const { privateKey, publicKey } = await createKeyPairFromPrivateKeyBytes(new Uint8Array([...]));
|
|
92
|
+
```
|
|
93
|
+
|
|
94
|
+
This can be useful when you have a private key but not the corresponding public key or when you need to derive key pairs from seeds. For instance, the following code snippet derives a key pair from the hash of a message.
|
|
95
|
+
|
|
96
|
+
```ts
|
|
97
|
+
import { getUtf8Encoder } from '@solana/codecs-strings';
|
|
98
|
+
import { createKeyPairFromPrivateKeyBytes } from '@solana/keys';
|
|
99
|
+
|
|
100
|
+
const message = getUtf8Encoder().encode('Hello, World!');
|
|
101
|
+
const seed = new Uint8Array(await crypto.subtle.digest('SHA-256', message));
|
|
102
|
+
|
|
103
|
+
const derivedKeypair = await createKeyPairFromPrivateKeyBytes(seed);
|
|
104
|
+
```
|
|
105
|
+
|
|
106
|
+
### `createPrivateKeyFromBytes()`
|
|
107
|
+
|
|
108
|
+
Given a private key represented as a 32-bytes `Uint8Array`, creates an Ed25519 private key for use with other methods in this package that accept `CryptoKey` objects.
|
|
109
|
+
|
|
110
|
+
```ts
|
|
111
|
+
import { createPrivateKeyFromBytes } from '@solana/keys';
|
|
112
|
+
|
|
113
|
+
const privateKey = await createPrivateKeyFromBytes(new Uint8Array([...]));
|
|
114
|
+
const extractablePrivateKey = await createPrivateKeyFromBytes(new Uint8Array([...]), true);
|
|
115
|
+
```
|
|
116
|
+
|
|
117
|
+
### `getPublicKeyFromPrivateKey()`
|
|
118
|
+
|
|
119
|
+
Given an extractable `CryptoKey` private key, gets the corresponding public key as a `CryptoKey`.
|
|
120
|
+
|
|
121
|
+
```ts
|
|
122
|
+
import { createPrivateKeyFromBytes, getPublicKeyFromPrivateKey } from '@solana/keys';
|
|
123
|
+
|
|
124
|
+
const privateKey = await createPrivateKeyFromBytes(new Uint8Array([...]), true);
|
|
125
|
+
|
|
126
|
+
const publicKey = await getPublicKeyFromPrivateKey(privateKey);
|
|
127
|
+
const extractablePublicKey = await getPublicKeyFromPrivateKey(privateKey, true);
|
|
128
|
+
```
|
|
129
|
+
|
|
84
130
|
### `isSignature()`
|
|
85
131
|
|
|
86
132
|
This is a type guard that accepts a string as input. It will both return `true` if the string conforms to the `Signature` type and will refine the type for use in your program.
|
package/dist/index.browser.cjs
CHANGED
|
@@ -61,6 +61,26 @@ async function createPrivateKeyFromBytes(bytes, extractable) {
|
|
|
61
61
|
const privateKeyBytesPkcs8 = addPkcs8Header(bytes);
|
|
62
62
|
return await crypto.subtle.importKey("pkcs8", privateKeyBytesPkcs8, "Ed25519", extractable ?? false, ["sign"]);
|
|
63
63
|
}
|
|
64
|
+
async function getPublicKeyFromPrivateKey(privateKey, extractable = false) {
|
|
65
|
+
assertions.assertKeyExporterIsAvailable();
|
|
66
|
+
if (privateKey.extractable === false) {
|
|
67
|
+
throw new errors.SolanaError(errors.SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY, { key: privateKey });
|
|
68
|
+
}
|
|
69
|
+
const jwk = await crypto.subtle.exportKey("jwk", privateKey);
|
|
70
|
+
return await crypto.subtle.importKey(
|
|
71
|
+
"jwk",
|
|
72
|
+
{
|
|
73
|
+
crv: "Ed25519",
|
|
74
|
+
ext: extractable,
|
|
75
|
+
key_ops: ["verify"],
|
|
76
|
+
kty: "OKP",
|
|
77
|
+
x: jwk.x
|
|
78
|
+
},
|
|
79
|
+
"Ed25519",
|
|
80
|
+
extractable,
|
|
81
|
+
["verify"]
|
|
82
|
+
);
|
|
83
|
+
}
|
|
64
84
|
var base58Encoder;
|
|
65
85
|
function assertIsSignature(putativeSignature) {
|
|
66
86
|
if (!base58Encoder) base58Encoder = codecsStrings.getBase58Encoder();
|
|
@@ -151,9 +171,31 @@ async function createKeyPairFromBytes(bytes, extractable) {
|
|
|
151
171
|
}
|
|
152
172
|
return { privateKey, publicKey };
|
|
153
173
|
}
|
|
174
|
+
async function createKeyPairFromPrivateKeyBytes(bytes, extractable = false) {
|
|
175
|
+
const privateKeyPromise = createPrivateKeyFromBytes(bytes, extractable);
|
|
176
|
+
const [publicKey, privateKey] = await Promise.all([
|
|
177
|
+
// This nested promise makes things efficient by
|
|
178
|
+
// creating the public key in parallel with the
|
|
179
|
+
// second private key creation, if it is needed.
|
|
180
|
+
(extractable ? privateKeyPromise : createPrivateKeyFromBytes(
|
|
181
|
+
bytes,
|
|
182
|
+
true
|
|
183
|
+
/* extractable */
|
|
184
|
+
)).then(
|
|
185
|
+
async (privateKey2) => await getPublicKeyFromPrivateKey(
|
|
186
|
+
privateKey2,
|
|
187
|
+
true
|
|
188
|
+
/* extractable */
|
|
189
|
+
)
|
|
190
|
+
),
|
|
191
|
+
privateKeyPromise
|
|
192
|
+
]);
|
|
193
|
+
return { privateKey, publicKey };
|
|
194
|
+
}
|
|
154
195
|
|
|
155
196
|
exports.assertIsSignature = assertIsSignature;
|
|
156
197
|
exports.createKeyPairFromBytes = createKeyPairFromBytes;
|
|
198
|
+
exports.createKeyPairFromPrivateKeyBytes = createKeyPairFromPrivateKeyBytes;
|
|
157
199
|
exports.createPrivateKeyFromBytes = createPrivateKeyFromBytes;
|
|
158
200
|
exports.generateKeyPair = generateKeyPair;
|
|
159
201
|
exports.isSignature = isSignature;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"sources":["../src/private-key.ts","../src/signatures.ts","../src/key-pair.ts"],"names":["SolanaError","SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH","getBase58Encoder","SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE","SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH","assertSigningCapabilityIsAvailable","signature","assertVerificationCapabilityIsAvailable","assertKeyGenerationIsAvailable","assertPRNGIsAvailable","SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH","SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY"],"mappings":";;;;;;;AAGA,SAAS,eAAe,KAA+C,EAAA;AAEnE,EAAA,OAAO,IAAI,UAAW,CAAA;AAAA;AAAA;AAAA;AAAA,IAIlB,EAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IAEJ,EAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA;AAAA,IAEQ,EAAA;AAAA;AAAA,IACA,GAAA;AAAA;AAAA;AAAA,IAEA,GAAA;AAAA;AAAA;AAAA;AAAA;AAAA,IAKhB,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA;AAAA,IAGI,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEJ,GAAG,KAAA;AAAA,GACN,CAAA,CAAA;AACL,CAAA;AAEA,eAAsB,yBAAA,CAA0B,OAA2B,WAA2C,EAAA;AAClH,EAAA,MAAM,eAAe,KAAM,CAAA,UAAA,CAAA;AAC3B,EAAA,IAAI,iBAAiB,EAAI,EAAA;AACrB,IAAM,MAAA,IAAIA,mBAAYC,0DAAqD,EAAA;AAAA,MACvE,YAAA;AAAA,KACH,CAAA,CAAA;AAAA,GACL;AACA,EAAM,MAAA,oBAAA,GAAuB,eAAe,KAAK,CAAA,CAAA;AACjD,EAAO,OAAA,MAAM,MAAO,CAAA,MAAA,CAAO,SAAU,CAAA,OAAA,EAAS,oBAAsB,EAAA,SAAA,EAAW,WAAe,IAAA,KAAA,EAAO,CAAC,MAAM,CAAC,CAAA,CAAA;AACjH,CAAA;ACrCA,IAAI,aAAA,CAAA;AAEG,SAAS,kBAAkB,iBAAmE,EAAA;AACjG,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgBC,8BAAiB,EAAA,CAAA;AAErD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAM,MAAA,IAAIF,mBAAYG,+DAA0D,EAAA;AAAA,MAC5E,cAAc,iBAAkB,CAAA,MAAA;AAAA,KACnC,CAAA,CAAA;AAAA,GACL;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAM,MAAA,IAAIH,mBAAYI,wDAAmD,EAAA;AAAA,MACrE,YAAc,EAAA,QAAA;AAAA,KACjB,CAAA,CAAA;AAAA,GACL;AACJ,CAAA;AAEO,SAAS,YAAY,iBAA2D,EAAA;AACnF,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgBF,8BAAiB,EAAA,CAAA;AAGrD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AACA,EAAO,OAAA,IAAA,CAAA;AACX,CAAA;AAEA,eAAsB,SAAA,CAAU,KAAgB,IAAmD,EAAA;AAC/F,EAAmCG,6CAAA,EAAA,CAAA;AACnC,EAAA,MAAM,aAAa,MAAM,MAAA,CAAO,OAAO,IAAK,CAAA,SAAA,EAAW,KAAK,IAAI,CAAA,CAAA;AAChE,EAAO,OAAA,IAAI,WAAW,UAAU,CAAA,CAAA;AACpC,CAAA;AAEO,SAAS,UAAU,iBAAsC,EAAA;AAC5D,EAAA,iBAAA,CAAkB,iBAAiB,CAAA,CAAA;AACnC,EAAO,OAAA,iBAAA,CAAA;AACX,CAAA;AAEA,eAAsB,eAAA,CAClB,GACAC,EAAAA,UAAAA,EACA,IACgB,EAAA;AAChB,EAAwCC,kDAAA,EAAA,CAAA;AACxC,EAAA,OAAO,MAAM,MAAO,CAAA,MAAA,CAAO,OAAO,SAAW,EAAA,GAAA,EAAKD,YAAW,IAAI,CAAA,CAAA;AACrE,CAAA;;;ACjEA,eAAsB,eAA0C,GAAA;AAC5D,EAAA,MAAME,yCAA+B,EAAA,CAAA;AACrC,EAAM,MAAA,OAAA,GAAU,MAAM,MAAA,CAAO,MAAO,CAAA,WAAA;AAAA;AAAA,IAChB,SAAA;AAAA;AAAA;AAAA,IACE,KAAA;AAAA;AAAA;AAAA,IACC,CAAC,QAAQ,QAAQ,CAAA;AAAA,GACxC,CAAA;AACA,EAAO,OAAA,OAAA,CAAA;AACX,CAAA;AAEA,eAAsB,sBAAA,CAAuB,OAA2B,WAA+C,EAAA;AACnH,EAAsBC,gCAAA,EAAA,CAAA;AAEtB,EAAI,IAAA,KAAA,CAAM,eAAe,EAAI,EAAA;AACzB,IAAA,MAAM,IAAIT,kBAAY,CAAAU,uDAAA,EAAkD,EAAE,UAAY,EAAA,KAAA,CAAM,YAAY,CAAA,CAAA;AAAA,GAC5G;AACA,EAAA,MAAM,CAAC,SAAW,EAAA,UAAU,CAAI,GAAA,MAAM,QAAQ,GAAI,CAAA;AAAA,IAC9C,OAAO,MAAO,CAAA,SAAA;AAAA,MAAU,KAAA;AAAA,MAAO,KAAA,CAAM,MAAM,EAAE,CAAA;AAAA,MAAG,SAAA;AAAA;AAAA,MAA6B,IAAA;AAAA,MAAM,CAAC,QAAQ,CAAA;AAAA,KAAC;AAAA,IAC7F,0BAA0B,KAAM,CAAA,KAAA,CAAM,CAAG,EAAA,EAAE,GAAG,WAAW,CAAA;AAAA,GAC5D,CAAA,CAAA;AAGD,EAAM,MAAA,WAAA,GAAc,IAAI,UAAA,CAAW,EAAE,CAAA,CAAA;AACrC,EAAA,MAAA,CAAO,gBAAgB,WAAW,CAAA,CAAA;AAClC,EAAA,MAAM,UAAa,GAAA,MAAM,SAAU,CAAA,UAAA,EAAY,WAAW,CAAA,CAAA;AAC1D,EAAA,MAAM,OAAU,GAAA,MAAM,eAAgB,CAAA,SAAA,EAAW,YAAY,WAAW,CAAA,CAAA;AACxE,EAAA,IAAI,CAAC,OAAS,EAAA;AACV,IAAM,MAAA,IAAIV,mBAAYW,4DAAqD,CAAA,CAAA;AAAA,GAC/E;AAEA,EAAO,OAAA,EAAE,YAAY,SAAU,EAAA,CAAA;AACnC","file":"index.browser.cjs","sourcesContent":["import { ReadonlyUint8Array } from '@solana/codecs-core';\nimport { SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, SolanaError } from '@solana/errors';\n\nfunction addPkcs8Header(bytes: ReadonlyUint8Array): ReadonlyUint8Array {\n // prettier-ignore\n return new Uint8Array([\n /**\n * PKCS#8 header\n */\n 0x30, // ASN.1 sequence tag\n 0x2e, // Length of sequence (46 more bytes)\n\n 0x02, // ASN.1 integer tag\n 0x01, // Length of integer\n 0x00, // Version number\n\n 0x30, // ASN.1 sequence tag\n 0x05, // Length of sequence\n 0x06, // ASN.1 object identifier tag\n 0x03, // Length of object identifier\n // Edwards curve algorithms identifier https://oid-rep.orange-labs.fr/get/1.3.101.112\n 0x2b, // iso(1) / identified-organization(3) (The first node is multiplied by the decimal 40 and the result is added to the value of the second node)\n 0x65, // thawte(101)\n // Ed25519 identifier\n 0x70, // id-Ed25519(112)\n\n /**\n * Private key payload\n */\n 0x04, // ASN.1 octet string tag\n 0x22, // String length (34 more bytes)\n\n // Private key bytes as octet string\n 0x04, // ASN.1 octet string tag\n 0x20, // String length (32 bytes)\n\n ...bytes\n ]);\n}\n\nexport async function createPrivateKeyFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKey> {\n const actualLength = bytes.byteLength;\n if (actualLength !== 32) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, {\n actualLength,\n });\n }\n const privateKeyBytesPkcs8 = addPkcs8Header(bytes);\n return await crypto.subtle.importKey('pkcs8', privateKeyBytesPkcs8, 'Ed25519', extractable ?? false, ['sign']);\n}\n","import { assertSigningCapabilityIsAvailable, assertVerificationCapabilityIsAvailable } from '@solana/assertions';\nimport { Encoder, ReadonlyUint8Array } from '@solana/codecs-core';\nimport { getBase58Encoder } from '@solana/codecs-strings';\nimport {\n SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE,\n SolanaError,\n} from '@solana/errors';\n\nexport type Signature = string & { readonly __brand: unique symbol };\nexport type SignatureBytes = Uint8Array & { readonly __brand: unique symbol };\n\nlet base58Encoder: Encoder<string> | undefined;\n\nexport function assertIsSignature(putativeSignature: string): asserts putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n throw new SolanaError(SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE, {\n actualLength: putativeSignature.length,\n });\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH, {\n actualLength: numBytes,\n });\n }\n}\n\nexport function isSignature(putativeSignature: string): putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n return false;\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n return false;\n }\n return true;\n}\n\nexport async function signBytes(key: CryptoKey, data: ReadonlyUint8Array): Promise<SignatureBytes> {\n assertSigningCapabilityIsAvailable();\n const signedData = await crypto.subtle.sign('Ed25519', key, data);\n return new Uint8Array(signedData) as SignatureBytes;\n}\n\nexport function signature(putativeSignature: string): Signature {\n assertIsSignature(putativeSignature);\n return putativeSignature;\n}\n\nexport async function verifySignature(\n key: CryptoKey,\n signature: SignatureBytes,\n data: ReadonlyUint8Array,\n): Promise<boolean> {\n assertVerificationCapabilityIsAvailable();\n return await crypto.subtle.verify('Ed25519', key, signature, data);\n}\n","import { assertKeyGenerationIsAvailable, assertPRNGIsAvailable } from '@solana/assertions';\nimport { ReadonlyUint8Array } from '@solana/codecs-core';\nimport {\n SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY,\n SolanaError,\n} from '@solana/errors';\n\nimport { createPrivateKeyFromBytes } from './private-key';\nimport { signBytes, verifySignature } from './signatures';\n\nexport async function generateKeyPair(): Promise<CryptoKeyPair> {\n await assertKeyGenerationIsAvailable();\n const keyPair = await crypto.subtle.generateKey(\n /* algorithm */ 'Ed25519', // Native implementation status: https://github.com/WICG/webcrypto-secure-curves/issues/20\n /* extractable */ false, // Prevents the bytes of the private key from being visible to JS.\n /* allowed uses */ ['sign', 'verify'],\n );\n return keyPair as CryptoKeyPair;\n}\n\nexport async function createKeyPairFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKeyPair> {\n assertPRNGIsAvailable();\n\n if (bytes.byteLength !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH, { byteLength: bytes.byteLength });\n }\n const [publicKey, privateKey] = await Promise.all([\n crypto.subtle.importKey('raw', bytes.slice(32), 'Ed25519', /* extractable */ true, ['verify']),\n createPrivateKeyFromBytes(bytes.slice(0, 32), extractable),\n ]);\n\n // Verify the key pair\n const randomBytes = new Uint8Array(32);\n crypto.getRandomValues(randomBytes);\n const signedData = await signBytes(privateKey, randomBytes);\n const isValid = await verifySignature(publicKey, signedData, randomBytes);\n if (!isValid) {\n throw new SolanaError(SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY);\n }\n\n return { privateKey, publicKey } as CryptoKeyPair;\n}\n"]}
|
|
1
|
+
{"version":3,"sources":["../src/private-key.ts","../src/public-key.ts","../src/signatures.ts","../src/key-pair.ts"],"names":["SolanaError","SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH","assertKeyExporterIsAvailable","SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY","getBase58Encoder","SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE","SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH","assertSigningCapabilityIsAvailable","signature","assertVerificationCapabilityIsAvailable","assertKeyGenerationIsAvailable","assertPRNGIsAvailable","SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH","SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY","privateKey"],"mappings":";;;;;;;AAGA,SAAS,eAAe,KAA+C,EAAA;AAEnE,EAAA,OAAO,IAAI,UAAW,CAAA;AAAA;AAAA;AAAA;AAAA,IAIlB,EAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IAEJ,EAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA;AAAA,IAEQ,EAAA;AAAA;AAAA,IACA,GAAA;AAAA;AAAA;AAAA,IAEA,GAAA;AAAA;AAAA;AAAA;AAAA;AAAA,IAKhB,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA;AAAA,IAGI,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEJ,GAAG,KAAA;AAAA,GACN,CAAA,CAAA;AACL,CAAA;AAEA,eAAsB,yBAAA,CAA0B,OAA2B,WAA2C,EAAA;AAClH,EAAA,MAAM,eAAe,KAAM,CAAA,UAAA,CAAA;AAC3B,EAAA,IAAI,iBAAiB,EAAI,EAAA;AACrB,IAAM,MAAA,IAAIA,mBAAYC,0DAAqD,EAAA;AAAA,MACvE,YAAA;AAAA,KACH,CAAA,CAAA;AAAA,GACL;AACA,EAAM,MAAA,oBAAA,GAAuB,eAAe,KAAK,CAAA,CAAA;AACjD,EAAO,OAAA,MAAM,MAAO,CAAA,MAAA,CAAO,SAAU,CAAA,OAAA,EAAS,oBAAsB,EAAA,SAAA,EAAW,WAAe,IAAA,KAAA,EAAO,CAAC,MAAM,CAAC,CAAA,CAAA;AACjH,CAAA;AC9CA,eAAsB,0BAAA,CAClB,UACA,EAAA,WAAA,GAAuB,KACL,EAAA;AAClB,EAA6BC,uCAAA,EAAA,CAAA;AAE7B,EAAI,IAAA,UAAA,CAAW,gBAAgB,KAAO,EAAA;AAClC,IAAA,MAAM,IAAIF,kBAAY,CAAAG,qEAAA,EAAgE,EAAE,GAAA,EAAK,YAAY,CAAA,CAAA;AAAA,GAC7G;AAGA,EAAA,MAAM,MAAM,MAAM,MAAA,CAAO,MAAO,CAAA,SAAA,CAAU,OAAO,UAAU,CAAA,CAAA;AAG3D,EAAO,OAAA,MAAM,OAAO,MAAO,CAAA,SAAA;AAAA,IACvB,KAAA;AAAA,IACA;AAAA,MACI,GAAiB,EAAA,SAAA;AAAA,MACjB,GAAuB,EAAA,WAAA;AAAA,MACvB,OAAA,EAA8B,CAAC,QAAQ,CAAA;AAAA,MACvC,GAAoB,EAAA,KAAA;AAAA,MACpB,GAAiC,GAAI,CAAA,CAAA;AAAA,KACzC;AAAA,IACA,SAAA;AAAA,IACA,WAAA;AAAA,IACA,CAAC,QAAQ,CAAA;AAAA,GACb,CAAA;AACJ,CAAA;AClBA,IAAI,aAAA,CAAA;AAEG,SAAS,kBAAkB,iBAAmE,EAAA;AACjG,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgBC,8BAAiB,EAAA,CAAA;AAErD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAM,MAAA,IAAIJ,mBAAYK,+DAA0D,EAAA;AAAA,MAC5E,cAAc,iBAAkB,CAAA,MAAA;AAAA,KACnC,CAAA,CAAA;AAAA,GACL;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAM,MAAA,IAAIL,mBAAYM,wDAAmD,EAAA;AAAA,MACrE,YAAc,EAAA,QAAA;AAAA,KACjB,CAAA,CAAA;AAAA,GACL;AACJ,CAAA;AAEO,SAAS,YAAY,iBAA2D,EAAA;AACnF,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgBF,8BAAiB,EAAA,CAAA;AAGrD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AACA,EAAO,OAAA,IAAA,CAAA;AACX,CAAA;AAEA,eAAsB,SAAA,CAAU,KAAgB,IAAmD,EAAA;AAC/F,EAAmCG,6CAAA,EAAA,CAAA;AACnC,EAAA,MAAM,aAAa,MAAM,MAAA,CAAO,OAAO,IAAK,CAAA,SAAA,EAAW,KAAK,IAAI,CAAA,CAAA;AAChE,EAAO,OAAA,IAAI,WAAW,UAAU,CAAA,CAAA;AACpC,CAAA;AAEO,SAAS,UAAU,iBAAsC,EAAA;AAC5D,EAAA,iBAAA,CAAkB,iBAAiB,CAAA,CAAA;AACnC,EAAO,OAAA,iBAAA,CAAA;AACX,CAAA;AAEA,eAAsB,eAAA,CAClB,GACAC,EAAAA,UAAAA,EACA,IACgB,EAAA;AAChB,EAAwCC,kDAAA,EAAA,CAAA;AACxC,EAAA,OAAO,MAAM,MAAO,CAAA,MAAA,CAAO,OAAO,SAAW,EAAA,GAAA,EAAKD,YAAW,IAAI,CAAA,CAAA;AACrE,CAAA;;;AChEA,eAAsB,eAA0C,GAAA;AAC5D,EAAA,MAAME,yCAA+B,EAAA,CAAA;AACrC,EAAM,MAAA,OAAA,GAAU,MAAM,MAAA,CAAO,MAAO,CAAA,WAAA;AAAA;AAAA,IAChB,SAAA;AAAA;AAAA;AAAA,IACE,KAAA;AAAA;AAAA;AAAA,IACC,CAAC,QAAQ,QAAQ,CAAA;AAAA,GACxC,CAAA;AACA,EAAO,OAAA,OAAA,CAAA;AACX,CAAA;AAEA,eAAsB,sBAAA,CAAuB,OAA2B,WAA+C,EAAA;AACnH,EAAsBC,gCAAA,EAAA,CAAA;AAEtB,EAAI,IAAA,KAAA,CAAM,eAAe,EAAI,EAAA;AACzB,IAAA,MAAM,IAAIX,kBAAY,CAAAY,uDAAA,EAAkD,EAAE,UAAY,EAAA,KAAA,CAAM,YAAY,CAAA,CAAA;AAAA,GAC5G;AACA,EAAA,MAAM,CAAC,SAAW,EAAA,UAAU,CAAI,GAAA,MAAM,QAAQ,GAAI,CAAA;AAAA,IAC9C,OAAO,MAAO,CAAA,SAAA;AAAA,MAAU,KAAA;AAAA,MAAO,KAAA,CAAM,MAAM,EAAE,CAAA;AAAA,MAAG,SAAA;AAAA;AAAA,MAA6B,IAAA;AAAA,MAAM,CAAC,QAAQ,CAAA;AAAA,KAAC;AAAA,IAC7F,0BAA0B,KAAM,CAAA,KAAA,CAAM,CAAG,EAAA,EAAE,GAAG,WAAW,CAAA;AAAA,GAC5D,CAAA,CAAA;AAGD,EAAM,MAAA,WAAA,GAAc,IAAI,UAAA,CAAW,EAAE,CAAA,CAAA;AACrC,EAAA,MAAA,CAAO,gBAAgB,WAAW,CAAA,CAAA;AAClC,EAAA,MAAM,UAAa,GAAA,MAAM,SAAU,CAAA,UAAA,EAAY,WAAW,CAAA,CAAA;AAC1D,EAAA,MAAM,OAAU,GAAA,MAAM,eAAgB,CAAA,SAAA,EAAW,YAAY,WAAW,CAAA,CAAA;AACxE,EAAA,IAAI,CAAC,OAAS,EAAA;AACV,IAAM,MAAA,IAAIZ,mBAAYa,4DAAqD,CAAA,CAAA;AAAA,GAC/E;AAEA,EAAO,OAAA,EAAE,YAAY,SAAU,EAAA,CAAA;AACnC,CAAA;AAEA,eAAsB,gCAAA,CAClB,KACA,EAAA,WAAA,GAAuB,KACD,EAAA;AACtB,EAAM,MAAA,iBAAA,GAAoB,yBAA0B,CAAA,KAAA,EAAO,WAAW,CAAA,CAAA;AAOtE,EAAA,MAAM,CAAC,SAAW,EAAA,UAAU,CAAI,GAAA,MAAM,QAAQ,GAAI,CAAA;AAAA;AAAA;AAAA;AAAA,IAAA,CAI7C,cAAc,iBAAoB,GAAA,yBAAA;AAAA,MAA0B,KAAA;AAAA,MAAO,IAAA;AAAA;AAAA,KAAyB,EAAA,IAAA;AAAA,MACzF,OAAMC,gBAAc,MAAM,0BAAA;AAAA,QAA2BA,WAAAA;AAAA,QAAY,IAAA;AAAA;AAAA,OAAsB;AAAA,KAC3F;AAAA,IACA,iBAAA;AAAA,GACH,CAAA,CAAA;AAED,EAAO,OAAA,EAAE,YAAY,SAAU,EAAA,CAAA;AACnC","file":"index.browser.cjs","sourcesContent":["import { ReadonlyUint8Array } from '@solana/codecs-core';\nimport { SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, SolanaError } from '@solana/errors';\n\nfunction addPkcs8Header(bytes: ReadonlyUint8Array): ReadonlyUint8Array {\n // prettier-ignore\n return new Uint8Array([\n /**\n * PKCS#8 header\n */\n 0x30, // ASN.1 sequence tag\n 0x2e, // Length of sequence (46 more bytes)\n\n 0x02, // ASN.1 integer tag\n 0x01, // Length of integer\n 0x00, // Version number\n\n 0x30, // ASN.1 sequence tag\n 0x05, // Length of sequence\n 0x06, // ASN.1 object identifier tag\n 0x03, // Length of object identifier\n // Edwards curve algorithms identifier https://oid-rep.orange-labs.fr/get/1.3.101.112\n 0x2b, // iso(1) / identified-organization(3) (The first node is multiplied by the decimal 40 and the result is added to the value of the second node)\n 0x65, // thawte(101)\n // Ed25519 identifier\n 0x70, // id-Ed25519(112)\n\n /**\n * Private key payload\n */\n 0x04, // ASN.1 octet string tag\n 0x22, // String length (34 more bytes)\n\n // Private key bytes as octet string\n 0x04, // ASN.1 octet string tag\n 0x20, // String length (32 bytes)\n\n ...bytes\n ]);\n}\n\nexport async function createPrivateKeyFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKey> {\n const actualLength = bytes.byteLength;\n if (actualLength !== 32) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, {\n actualLength,\n });\n }\n const privateKeyBytesPkcs8 = addPkcs8Header(bytes);\n return await crypto.subtle.importKey('pkcs8', privateKeyBytesPkcs8, 'Ed25519', extractable ?? false, ['sign']);\n}\n","import { assertKeyExporterIsAvailable } from '@solana/assertions';\nimport { SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY, SolanaError } from '@solana/errors';\n\nexport async function getPublicKeyFromPrivateKey(\n privateKey: CryptoKey,\n extractable: boolean = false,\n): Promise<CryptoKey> {\n assertKeyExporterIsAvailable();\n\n if (privateKey.extractable === false) {\n throw new SolanaError(SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY, { key: privateKey });\n }\n\n // Export private key.\n const jwk = await crypto.subtle.exportKey('jwk', privateKey);\n\n // Import public key.\n return await crypto.subtle.importKey(\n 'jwk',\n {\n crv /* curve */: 'Ed25519',\n ext /* extractable */: extractable,\n key_ops /* key operations */: ['verify'],\n kty /* key type */: 'OKP' /* octet key pair */,\n x /* public key x-coordinate */: jwk.x,\n },\n 'Ed25519',\n extractable,\n ['verify'],\n );\n}\n","import { assertSigningCapabilityIsAvailable, assertVerificationCapabilityIsAvailable } from '@solana/assertions';\nimport { Encoder, ReadonlyUint8Array } from '@solana/codecs-core';\nimport { getBase58Encoder } from '@solana/codecs-strings';\nimport {\n SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE,\n SolanaError,\n} from '@solana/errors';\n\nexport type Signature = string & { readonly __brand: unique symbol };\nexport type SignatureBytes = Uint8Array & { readonly __brand: unique symbol };\n\nlet base58Encoder: Encoder<string> | undefined;\n\nexport function assertIsSignature(putativeSignature: string): asserts putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n throw new SolanaError(SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE, {\n actualLength: putativeSignature.length,\n });\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH, {\n actualLength: numBytes,\n });\n }\n}\n\nexport function isSignature(putativeSignature: string): putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n return false;\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n return false;\n }\n return true;\n}\n\nexport async function signBytes(key: CryptoKey, data: ReadonlyUint8Array): Promise<SignatureBytes> {\n assertSigningCapabilityIsAvailable();\n const signedData = await crypto.subtle.sign('Ed25519', key, data);\n return new Uint8Array(signedData) as SignatureBytes;\n}\n\nexport function signature(putativeSignature: string): Signature {\n assertIsSignature(putativeSignature);\n return putativeSignature;\n}\n\nexport async function verifySignature(\n key: CryptoKey,\n signature: SignatureBytes,\n data: ReadonlyUint8Array,\n): Promise<boolean> {\n assertVerificationCapabilityIsAvailable();\n return await crypto.subtle.verify('Ed25519', key, signature, data);\n}\n","import { assertKeyGenerationIsAvailable, assertPRNGIsAvailable } from '@solana/assertions';\nimport { ReadonlyUint8Array } from '@solana/codecs-core';\nimport {\n SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY,\n SolanaError,\n} from '@solana/errors';\n\nimport { createPrivateKeyFromBytes } from './private-key';\nimport { getPublicKeyFromPrivateKey } from './public-key';\nimport { signBytes, verifySignature } from './signatures';\n\nexport async function generateKeyPair(): Promise<CryptoKeyPair> {\n await assertKeyGenerationIsAvailable();\n const keyPair = await crypto.subtle.generateKey(\n /* algorithm */ 'Ed25519', // Native implementation status: https://github.com/WICG/webcrypto-secure-curves/issues/20\n /* extractable */ false, // Prevents the bytes of the private key from being visible to JS.\n /* allowed uses */ ['sign', 'verify'],\n );\n return keyPair as CryptoKeyPair;\n}\n\nexport async function createKeyPairFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKeyPair> {\n assertPRNGIsAvailable();\n\n if (bytes.byteLength !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH, { byteLength: bytes.byteLength });\n }\n const [publicKey, privateKey] = await Promise.all([\n crypto.subtle.importKey('raw', bytes.slice(32), 'Ed25519', /* extractable */ true, ['verify']),\n createPrivateKeyFromBytes(bytes.slice(0, 32), extractable),\n ]);\n\n // Verify the key pair\n const randomBytes = new Uint8Array(32);\n crypto.getRandomValues(randomBytes);\n const signedData = await signBytes(privateKey, randomBytes);\n const isValid = await verifySignature(publicKey, signedData, randomBytes);\n if (!isValid) {\n throw new SolanaError(SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY);\n }\n\n return { privateKey, publicKey } as CryptoKeyPair;\n}\n\nexport async function createKeyPairFromPrivateKeyBytes(\n bytes: ReadonlyUint8Array,\n extractable: boolean = false,\n): Promise<CryptoKeyPair> {\n const privateKeyPromise = createPrivateKeyFromBytes(bytes, extractable);\n\n // Here we need the private key to be extractable in order to export\n // it as a public key. Therefore, if the `extractable` parameter\n // is `false`, we need to create two private keys such that:\n // - The extractable one is used to create the public key and\n // - The non-extractable one is the one we will return.\n const [publicKey, privateKey] = await Promise.all([\n // This nested promise makes things efficient by\n // creating the public key in parallel with the\n // second private key creation, if it is needed.\n (extractable ? privateKeyPromise : createPrivateKeyFromBytes(bytes, true /* extractable */)).then(\n async privateKey => await getPublicKeyFromPrivateKey(privateKey, true /* extractable */),\n ),\n privateKeyPromise,\n ]);\n\n return { privateKey, publicKey };\n}\n"]}
|
package/dist/index.browser.mjs
CHANGED
|
@@ -1,5 +1,5 @@
|
|
|
1
|
-
import { assertSigningCapabilityIsAvailable, assertVerificationCapabilityIsAvailable, assertKeyGenerationIsAvailable, assertPRNGIsAvailable } from '@solana/assertions';
|
|
2
|
-
import { SolanaError, SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE, SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH, SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH, SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY } from '@solana/errors';
|
|
1
|
+
import { assertSigningCapabilityIsAvailable, assertVerificationCapabilityIsAvailable, assertKeyGenerationIsAvailable, assertPRNGIsAvailable, assertKeyExporterIsAvailable } from '@solana/assertions';
|
|
2
|
+
import { SolanaError, SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE, SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH, SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH, SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY, SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY } from '@solana/errors';
|
|
3
3
|
import { getBase58Encoder } from '@solana/codecs-strings';
|
|
4
4
|
|
|
5
5
|
// src/key-pair.ts
|
|
@@ -59,6 +59,26 @@ async function createPrivateKeyFromBytes(bytes, extractable) {
|
|
|
59
59
|
const privateKeyBytesPkcs8 = addPkcs8Header(bytes);
|
|
60
60
|
return await crypto.subtle.importKey("pkcs8", privateKeyBytesPkcs8, "Ed25519", extractable ?? false, ["sign"]);
|
|
61
61
|
}
|
|
62
|
+
async function getPublicKeyFromPrivateKey(privateKey, extractable = false) {
|
|
63
|
+
assertKeyExporterIsAvailable();
|
|
64
|
+
if (privateKey.extractable === false) {
|
|
65
|
+
throw new SolanaError(SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY, { key: privateKey });
|
|
66
|
+
}
|
|
67
|
+
const jwk = await crypto.subtle.exportKey("jwk", privateKey);
|
|
68
|
+
return await crypto.subtle.importKey(
|
|
69
|
+
"jwk",
|
|
70
|
+
{
|
|
71
|
+
crv: "Ed25519",
|
|
72
|
+
ext: extractable,
|
|
73
|
+
key_ops: ["verify"],
|
|
74
|
+
kty: "OKP",
|
|
75
|
+
x: jwk.x
|
|
76
|
+
},
|
|
77
|
+
"Ed25519",
|
|
78
|
+
extractable,
|
|
79
|
+
["verify"]
|
|
80
|
+
);
|
|
81
|
+
}
|
|
62
82
|
var base58Encoder;
|
|
63
83
|
function assertIsSignature(putativeSignature) {
|
|
64
84
|
if (!base58Encoder) base58Encoder = getBase58Encoder();
|
|
@@ -149,7 +169,28 @@ async function createKeyPairFromBytes(bytes, extractable) {
|
|
|
149
169
|
}
|
|
150
170
|
return { privateKey, publicKey };
|
|
151
171
|
}
|
|
172
|
+
async function createKeyPairFromPrivateKeyBytes(bytes, extractable = false) {
|
|
173
|
+
const privateKeyPromise = createPrivateKeyFromBytes(bytes, extractable);
|
|
174
|
+
const [publicKey, privateKey] = await Promise.all([
|
|
175
|
+
// This nested promise makes things efficient by
|
|
176
|
+
// creating the public key in parallel with the
|
|
177
|
+
// second private key creation, if it is needed.
|
|
178
|
+
(extractable ? privateKeyPromise : createPrivateKeyFromBytes(
|
|
179
|
+
bytes,
|
|
180
|
+
true
|
|
181
|
+
/* extractable */
|
|
182
|
+
)).then(
|
|
183
|
+
async (privateKey2) => await getPublicKeyFromPrivateKey(
|
|
184
|
+
privateKey2,
|
|
185
|
+
true
|
|
186
|
+
/* extractable */
|
|
187
|
+
)
|
|
188
|
+
),
|
|
189
|
+
privateKeyPromise
|
|
190
|
+
]);
|
|
191
|
+
return { privateKey, publicKey };
|
|
192
|
+
}
|
|
152
193
|
|
|
153
|
-
export { assertIsSignature, createKeyPairFromBytes, createPrivateKeyFromBytes, generateKeyPair, isSignature, signBytes, signature, verifySignature };
|
|
194
|
+
export { assertIsSignature, createKeyPairFromBytes, createKeyPairFromPrivateKeyBytes, createPrivateKeyFromBytes, generateKeyPair, isSignature, signBytes, signature, verifySignature };
|
|
154
195
|
//# sourceMappingURL=index.browser.mjs.map
|
|
155
196
|
//# sourceMappingURL=index.browser.mjs.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"sources":["../src/private-key.ts","../src/signatures.ts","../src/key-pair.ts"],"names":["SolanaError","signature"],"mappings":";;;;;AAGA,SAAS,eAAe,KAA+C,EAAA;AAEnE,EAAA,OAAO,IAAI,UAAW,CAAA;AAAA;AAAA;AAAA;AAAA,IAIlB,EAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IAEJ,EAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA;AAAA,IAEQ,EAAA;AAAA;AAAA,IACA,GAAA;AAAA;AAAA;AAAA,IAEA,GAAA;AAAA;AAAA;AAAA;AAAA;AAAA,IAKhB,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA;AAAA,IAGI,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEJ,GAAG,KAAA;AAAA,GACN,CAAA,CAAA;AACL,CAAA;AAEA,eAAsB,yBAAA,CAA0B,OAA2B,WAA2C,EAAA;AAClH,EAAA,MAAM,eAAe,KAAM,CAAA,UAAA,CAAA;AAC3B,EAAA,IAAI,iBAAiB,EAAI,EAAA;AACrB,IAAM,MAAA,IAAI,YAAY,mDAAqD,EAAA;AAAA,MACvE,YAAA;AAAA,KACH,CAAA,CAAA;AAAA,GACL;AACA,EAAM,MAAA,oBAAA,GAAuB,eAAe,KAAK,CAAA,CAAA;AACjD,EAAO,OAAA,MAAM,MAAO,CAAA,MAAA,CAAO,SAAU,CAAA,OAAA,EAAS,oBAAsB,EAAA,SAAA,EAAW,WAAe,IAAA,KAAA,EAAO,CAAC,MAAM,CAAC,CAAA,CAAA;AACjH,CAAA;ACrCA,IAAI,aAAA,CAAA;AAEG,SAAS,kBAAkB,iBAAmE,EAAA;AACjG,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgB,gBAAiB,EAAA,CAAA;AAErD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAM,MAAA,IAAIA,YAAY,wDAA0D,EAAA;AAAA,MAC5E,cAAc,iBAAkB,CAAA,MAAA;AAAA,KACnC,CAAA,CAAA;AAAA,GACL;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAM,MAAA,IAAIA,YAAY,iDAAmD,EAAA;AAAA,MACrE,YAAc,EAAA,QAAA;AAAA,KACjB,CAAA,CAAA;AAAA,GACL;AACJ,CAAA;AAEO,SAAS,YAAY,iBAA2D,EAAA;AACnF,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgB,gBAAiB,EAAA,CAAA;AAGrD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AACA,EAAO,OAAA,IAAA,CAAA;AACX,CAAA;AAEA,eAAsB,SAAA,CAAU,KAAgB,IAAmD,EAAA;AAC/F,EAAmC,kCAAA,EAAA,CAAA;AACnC,EAAA,MAAM,aAAa,MAAM,MAAA,CAAO,OAAO,IAAK,CAAA,SAAA,EAAW,KAAK,IAAI,CAAA,CAAA;AAChE,EAAO,OAAA,IAAI,WAAW,UAAU,CAAA,CAAA;AACpC,CAAA;AAEO,SAAS,UAAU,iBAAsC,EAAA;AAC5D,EAAA,iBAAA,CAAkB,iBAAiB,CAAA,CAAA;AACnC,EAAO,OAAA,iBAAA,CAAA;AACX,CAAA;AAEA,eAAsB,eAAA,CAClB,GACAC,EAAAA,UAAAA,EACA,IACgB,EAAA;AAChB,EAAwC,uCAAA,EAAA,CAAA;AACxC,EAAA,OAAO,MAAM,MAAO,CAAA,MAAA,CAAO,OAAO,SAAW,EAAA,GAAA,EAAKA,YAAW,IAAI,CAAA,CAAA;AACrE,CAAA;;;ACjEA,eAAsB,eAA0C,GAAA;AAC5D,EAAA,MAAM,8BAA+B,EAAA,CAAA;AACrC,EAAM,MAAA,OAAA,GAAU,MAAM,MAAA,CAAO,MAAO,CAAA,WAAA;AAAA;AAAA,IAChB,SAAA;AAAA;AAAA;AAAA,IACE,KAAA;AAAA;AAAA;AAAA,IACC,CAAC,QAAQ,QAAQ,CAAA;AAAA,GACxC,CAAA;AACA,EAAO,OAAA,OAAA,CAAA;AACX,CAAA;AAEA,eAAsB,sBAAA,CAAuB,OAA2B,WAA+C,EAAA;AACnH,EAAsB,qBAAA,EAAA,CAAA;AAEtB,EAAI,IAAA,KAAA,CAAM,eAAe,EAAI,EAAA;AACzB,IAAA,MAAM,IAAID,WAAY,CAAA,gDAAA,EAAkD,EAAE,UAAY,EAAA,KAAA,CAAM,YAAY,CAAA,CAAA;AAAA,GAC5G;AACA,EAAA,MAAM,CAAC,SAAW,EAAA,UAAU,CAAI,GAAA,MAAM,QAAQ,GAAI,CAAA;AAAA,IAC9C,OAAO,MAAO,CAAA,SAAA;AAAA,MAAU,KAAA;AAAA,MAAO,KAAA,CAAM,MAAM,EAAE,CAAA;AAAA,MAAG,SAAA;AAAA;AAAA,MAA6B,IAAA;AAAA,MAAM,CAAC,QAAQ,CAAA;AAAA,KAAC;AAAA,IAC7F,0BAA0B,KAAM,CAAA,KAAA,CAAM,CAAG,EAAA,EAAE,GAAG,WAAW,CAAA;AAAA,GAC5D,CAAA,CAAA;AAGD,EAAM,MAAA,WAAA,GAAc,IAAI,UAAA,CAAW,EAAE,CAAA,CAAA;AACrC,EAAA,MAAA,CAAO,gBAAgB,WAAW,CAAA,CAAA;AAClC,EAAA,MAAM,UAAa,GAAA,MAAM,SAAU,CAAA,UAAA,EAAY,WAAW,CAAA,CAAA;AAC1D,EAAA,MAAM,OAAU,GAAA,MAAM,eAAgB,CAAA,SAAA,EAAW,YAAY,WAAW,CAAA,CAAA;AACxE,EAAA,IAAI,CAAC,OAAS,EAAA;AACV,IAAM,MAAA,IAAIA,YAAY,qDAAqD,CAAA,CAAA;AAAA,GAC/E;AAEA,EAAO,OAAA,EAAE,YAAY,SAAU,EAAA,CAAA;AACnC","file":"index.browser.mjs","sourcesContent":["import { ReadonlyUint8Array } from '@solana/codecs-core';\nimport { SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, SolanaError } from '@solana/errors';\n\nfunction addPkcs8Header(bytes: ReadonlyUint8Array): ReadonlyUint8Array {\n // prettier-ignore\n return new Uint8Array([\n /**\n * PKCS#8 header\n */\n 0x30, // ASN.1 sequence tag\n 0x2e, // Length of sequence (46 more bytes)\n\n 0x02, // ASN.1 integer tag\n 0x01, // Length of integer\n 0x00, // Version number\n\n 0x30, // ASN.1 sequence tag\n 0x05, // Length of sequence\n 0x06, // ASN.1 object identifier tag\n 0x03, // Length of object identifier\n // Edwards curve algorithms identifier https://oid-rep.orange-labs.fr/get/1.3.101.112\n 0x2b, // iso(1) / identified-organization(3) (The first node is multiplied by the decimal 40 and the result is added to the value of the second node)\n 0x65, // thawte(101)\n // Ed25519 identifier\n 0x70, // id-Ed25519(112)\n\n /**\n * Private key payload\n */\n 0x04, // ASN.1 octet string tag\n 0x22, // String length (34 more bytes)\n\n // Private key bytes as octet string\n 0x04, // ASN.1 octet string tag\n 0x20, // String length (32 bytes)\n\n ...bytes\n ]);\n}\n\nexport async function createPrivateKeyFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKey> {\n const actualLength = bytes.byteLength;\n if (actualLength !== 32) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, {\n actualLength,\n });\n }\n const privateKeyBytesPkcs8 = addPkcs8Header(bytes);\n return await crypto.subtle.importKey('pkcs8', privateKeyBytesPkcs8, 'Ed25519', extractable ?? false, ['sign']);\n}\n","import { assertSigningCapabilityIsAvailable, assertVerificationCapabilityIsAvailable } from '@solana/assertions';\nimport { Encoder, ReadonlyUint8Array } from '@solana/codecs-core';\nimport { getBase58Encoder } from '@solana/codecs-strings';\nimport {\n SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE,\n SolanaError,\n} from '@solana/errors';\n\nexport type Signature = string & { readonly __brand: unique symbol };\nexport type SignatureBytes = Uint8Array & { readonly __brand: unique symbol };\n\nlet base58Encoder: Encoder<string> | undefined;\n\nexport function assertIsSignature(putativeSignature: string): asserts putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n throw new SolanaError(SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE, {\n actualLength: putativeSignature.length,\n });\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH, {\n actualLength: numBytes,\n });\n }\n}\n\nexport function isSignature(putativeSignature: string): putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n return false;\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n return false;\n }\n return true;\n}\n\nexport async function signBytes(key: CryptoKey, data: ReadonlyUint8Array): Promise<SignatureBytes> {\n assertSigningCapabilityIsAvailable();\n const signedData = await crypto.subtle.sign('Ed25519', key, data);\n return new Uint8Array(signedData) as SignatureBytes;\n}\n\nexport function signature(putativeSignature: string): Signature {\n assertIsSignature(putativeSignature);\n return putativeSignature;\n}\n\nexport async function verifySignature(\n key: CryptoKey,\n signature: SignatureBytes,\n data: ReadonlyUint8Array,\n): Promise<boolean> {\n assertVerificationCapabilityIsAvailable();\n return await crypto.subtle.verify('Ed25519', key, signature, data);\n}\n","import { assertKeyGenerationIsAvailable, assertPRNGIsAvailable } from '@solana/assertions';\nimport { ReadonlyUint8Array } from '@solana/codecs-core';\nimport {\n SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY,\n SolanaError,\n} from '@solana/errors';\n\nimport { createPrivateKeyFromBytes } from './private-key';\nimport { signBytes, verifySignature } from './signatures';\n\nexport async function generateKeyPair(): Promise<CryptoKeyPair> {\n await assertKeyGenerationIsAvailable();\n const keyPair = await crypto.subtle.generateKey(\n /* algorithm */ 'Ed25519', // Native implementation status: https://github.com/WICG/webcrypto-secure-curves/issues/20\n /* extractable */ false, // Prevents the bytes of the private key from being visible to JS.\n /* allowed uses */ ['sign', 'verify'],\n );\n return keyPair as CryptoKeyPair;\n}\n\nexport async function createKeyPairFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKeyPair> {\n assertPRNGIsAvailable();\n\n if (bytes.byteLength !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH, { byteLength: bytes.byteLength });\n }\n const [publicKey, privateKey] = await Promise.all([\n crypto.subtle.importKey('raw', bytes.slice(32), 'Ed25519', /* extractable */ true, ['verify']),\n createPrivateKeyFromBytes(bytes.slice(0, 32), extractable),\n ]);\n\n // Verify the key pair\n const randomBytes = new Uint8Array(32);\n crypto.getRandomValues(randomBytes);\n const signedData = await signBytes(privateKey, randomBytes);\n const isValid = await verifySignature(publicKey, signedData, randomBytes);\n if (!isValid) {\n throw new SolanaError(SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY);\n }\n\n return { privateKey, publicKey } as CryptoKeyPair;\n}\n"]}
|
|
1
|
+
{"version":3,"sources":["../src/private-key.ts","../src/public-key.ts","../src/signatures.ts","../src/key-pair.ts"],"names":["SolanaError","signature","privateKey"],"mappings":";;;;;AAGA,SAAS,eAAe,KAA+C,EAAA;AAEnE,EAAA,OAAO,IAAI,UAAW,CAAA;AAAA;AAAA;AAAA;AAAA,IAIlB,EAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IAEJ,EAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA;AAAA,IAEQ,EAAA;AAAA;AAAA,IACA,GAAA;AAAA;AAAA;AAAA,IAEA,GAAA;AAAA;AAAA;AAAA;AAAA;AAAA,IAKhB,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA;AAAA,IAGI,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEJ,GAAG,KAAA;AAAA,GACN,CAAA,CAAA;AACL,CAAA;AAEA,eAAsB,yBAAA,CAA0B,OAA2B,WAA2C,EAAA;AAClH,EAAA,MAAM,eAAe,KAAM,CAAA,UAAA,CAAA;AAC3B,EAAA,IAAI,iBAAiB,EAAI,EAAA;AACrB,IAAM,MAAA,IAAI,YAAY,mDAAqD,EAAA;AAAA,MACvE,YAAA;AAAA,KACH,CAAA,CAAA;AAAA,GACL;AACA,EAAM,MAAA,oBAAA,GAAuB,eAAe,KAAK,CAAA,CAAA;AACjD,EAAO,OAAA,MAAM,MAAO,CAAA,MAAA,CAAO,SAAU,CAAA,OAAA,EAAS,oBAAsB,EAAA,SAAA,EAAW,WAAe,IAAA,KAAA,EAAO,CAAC,MAAM,CAAC,CAAA,CAAA;AACjH,CAAA;AC9CA,eAAsB,0BAAA,CAClB,UACA,EAAA,WAAA,GAAuB,KACL,EAAA;AAClB,EAA6B,4BAAA,EAAA,CAAA;AAE7B,EAAI,IAAA,UAAA,CAAW,gBAAgB,KAAO,EAAA;AAClC,IAAA,MAAM,IAAIA,WAAY,CAAA,8DAAA,EAAgE,EAAE,GAAA,EAAK,YAAY,CAAA,CAAA;AAAA,GAC7G;AAGA,EAAA,MAAM,MAAM,MAAM,MAAA,CAAO,MAAO,CAAA,SAAA,CAAU,OAAO,UAAU,CAAA,CAAA;AAG3D,EAAO,OAAA,MAAM,OAAO,MAAO,CAAA,SAAA;AAAA,IACvB,KAAA;AAAA,IACA;AAAA,MACI,GAAiB,EAAA,SAAA;AAAA,MACjB,GAAuB,EAAA,WAAA;AAAA,MACvB,OAAA,EAA8B,CAAC,QAAQ,CAAA;AAAA,MACvC,GAAoB,EAAA,KAAA;AAAA,MACpB,GAAiC,GAAI,CAAA,CAAA;AAAA,KACzC;AAAA,IACA,SAAA;AAAA,IACA,WAAA;AAAA,IACA,CAAC,QAAQ,CAAA;AAAA,GACb,CAAA;AACJ,CAAA;AClBA,IAAI,aAAA,CAAA;AAEG,SAAS,kBAAkB,iBAAmE,EAAA;AACjG,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgB,gBAAiB,EAAA,CAAA;AAErD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAM,MAAA,IAAIA,YAAY,wDAA0D,EAAA;AAAA,MAC5E,cAAc,iBAAkB,CAAA,MAAA;AAAA,KACnC,CAAA,CAAA;AAAA,GACL;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAM,MAAA,IAAIA,YAAY,iDAAmD,EAAA;AAAA,MACrE,YAAc,EAAA,QAAA;AAAA,KACjB,CAAA,CAAA;AAAA,GACL;AACJ,CAAA;AAEO,SAAS,YAAY,iBAA2D,EAAA;AACnF,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgB,gBAAiB,EAAA,CAAA;AAGrD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AACA,EAAO,OAAA,IAAA,CAAA;AACX,CAAA;AAEA,eAAsB,SAAA,CAAU,KAAgB,IAAmD,EAAA;AAC/F,EAAmC,kCAAA,EAAA,CAAA;AACnC,EAAA,MAAM,aAAa,MAAM,MAAA,CAAO,OAAO,IAAK,CAAA,SAAA,EAAW,KAAK,IAAI,CAAA,CAAA;AAChE,EAAO,OAAA,IAAI,WAAW,UAAU,CAAA,CAAA;AACpC,CAAA;AAEO,SAAS,UAAU,iBAAsC,EAAA;AAC5D,EAAA,iBAAA,CAAkB,iBAAiB,CAAA,CAAA;AACnC,EAAO,OAAA,iBAAA,CAAA;AACX,CAAA;AAEA,eAAsB,eAAA,CAClB,GACAC,EAAAA,UAAAA,EACA,IACgB,EAAA;AAChB,EAAwC,uCAAA,EAAA,CAAA;AACxC,EAAA,OAAO,MAAM,MAAO,CAAA,MAAA,CAAO,OAAO,SAAW,EAAA,GAAA,EAAKA,YAAW,IAAI,CAAA,CAAA;AACrE,CAAA;;;AChEA,eAAsB,eAA0C,GAAA;AAC5D,EAAA,MAAM,8BAA+B,EAAA,CAAA;AACrC,EAAM,MAAA,OAAA,GAAU,MAAM,MAAA,CAAO,MAAO,CAAA,WAAA;AAAA;AAAA,IAChB,SAAA;AAAA;AAAA;AAAA,IACE,KAAA;AAAA;AAAA;AAAA,IACC,CAAC,QAAQ,QAAQ,CAAA;AAAA,GACxC,CAAA;AACA,EAAO,OAAA,OAAA,CAAA;AACX,CAAA;AAEA,eAAsB,sBAAA,CAAuB,OAA2B,WAA+C,EAAA;AACnH,EAAsB,qBAAA,EAAA,CAAA;AAEtB,EAAI,IAAA,KAAA,CAAM,eAAe,EAAI,EAAA;AACzB,IAAA,MAAM,IAAID,WAAY,CAAA,gDAAA,EAAkD,EAAE,UAAY,EAAA,KAAA,CAAM,YAAY,CAAA,CAAA;AAAA,GAC5G;AACA,EAAA,MAAM,CAAC,SAAW,EAAA,UAAU,CAAI,GAAA,MAAM,QAAQ,GAAI,CAAA;AAAA,IAC9C,OAAO,MAAO,CAAA,SAAA;AAAA,MAAU,KAAA;AAAA,MAAO,KAAA,CAAM,MAAM,EAAE,CAAA;AAAA,MAAG,SAAA;AAAA;AAAA,MAA6B,IAAA;AAAA,MAAM,CAAC,QAAQ,CAAA;AAAA,KAAC;AAAA,IAC7F,0BAA0B,KAAM,CAAA,KAAA,CAAM,CAAG,EAAA,EAAE,GAAG,WAAW,CAAA;AAAA,GAC5D,CAAA,CAAA;AAGD,EAAM,MAAA,WAAA,GAAc,IAAI,UAAA,CAAW,EAAE,CAAA,CAAA;AACrC,EAAA,MAAA,CAAO,gBAAgB,WAAW,CAAA,CAAA;AAClC,EAAA,MAAM,UAAa,GAAA,MAAM,SAAU,CAAA,UAAA,EAAY,WAAW,CAAA,CAAA;AAC1D,EAAA,MAAM,OAAU,GAAA,MAAM,eAAgB,CAAA,SAAA,EAAW,YAAY,WAAW,CAAA,CAAA;AACxE,EAAA,IAAI,CAAC,OAAS,EAAA;AACV,IAAM,MAAA,IAAIA,YAAY,qDAAqD,CAAA,CAAA;AAAA,GAC/E;AAEA,EAAO,OAAA,EAAE,YAAY,SAAU,EAAA,CAAA;AACnC,CAAA;AAEA,eAAsB,gCAAA,CAClB,KACA,EAAA,WAAA,GAAuB,KACD,EAAA;AACtB,EAAM,MAAA,iBAAA,GAAoB,yBAA0B,CAAA,KAAA,EAAO,WAAW,CAAA,CAAA;AAOtE,EAAA,MAAM,CAAC,SAAW,EAAA,UAAU,CAAI,GAAA,MAAM,QAAQ,GAAI,CAAA;AAAA;AAAA;AAAA;AAAA,IAAA,CAI7C,cAAc,iBAAoB,GAAA,yBAAA;AAAA,MAA0B,KAAA;AAAA,MAAO,IAAA;AAAA;AAAA,KAAyB,EAAA,IAAA;AAAA,MACzF,OAAME,gBAAc,MAAM,0BAAA;AAAA,QAA2BA,WAAAA;AAAA,QAAY,IAAA;AAAA;AAAA,OAAsB;AAAA,KAC3F;AAAA,IACA,iBAAA;AAAA,GACH,CAAA,CAAA;AAED,EAAO,OAAA,EAAE,YAAY,SAAU,EAAA,CAAA;AACnC","file":"index.browser.mjs","sourcesContent":["import { ReadonlyUint8Array } from '@solana/codecs-core';\nimport { SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, SolanaError } from '@solana/errors';\n\nfunction addPkcs8Header(bytes: ReadonlyUint8Array): ReadonlyUint8Array {\n // prettier-ignore\n return new Uint8Array([\n /**\n * PKCS#8 header\n */\n 0x30, // ASN.1 sequence tag\n 0x2e, // Length of sequence (46 more bytes)\n\n 0x02, // ASN.1 integer tag\n 0x01, // Length of integer\n 0x00, // Version number\n\n 0x30, // ASN.1 sequence tag\n 0x05, // Length of sequence\n 0x06, // ASN.1 object identifier tag\n 0x03, // Length of object identifier\n // Edwards curve algorithms identifier https://oid-rep.orange-labs.fr/get/1.3.101.112\n 0x2b, // iso(1) / identified-organization(3) (The first node is multiplied by the decimal 40 and the result is added to the value of the second node)\n 0x65, // thawte(101)\n // Ed25519 identifier\n 0x70, // id-Ed25519(112)\n\n /**\n * Private key payload\n */\n 0x04, // ASN.1 octet string tag\n 0x22, // String length (34 more bytes)\n\n // Private key bytes as octet string\n 0x04, // ASN.1 octet string tag\n 0x20, // String length (32 bytes)\n\n ...bytes\n ]);\n}\n\nexport async function createPrivateKeyFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKey> {\n const actualLength = bytes.byteLength;\n if (actualLength !== 32) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, {\n actualLength,\n });\n }\n const privateKeyBytesPkcs8 = addPkcs8Header(bytes);\n return await crypto.subtle.importKey('pkcs8', privateKeyBytesPkcs8, 'Ed25519', extractable ?? false, ['sign']);\n}\n","import { assertKeyExporterIsAvailable } from '@solana/assertions';\nimport { SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY, SolanaError } from '@solana/errors';\n\nexport async function getPublicKeyFromPrivateKey(\n privateKey: CryptoKey,\n extractable: boolean = false,\n): Promise<CryptoKey> {\n assertKeyExporterIsAvailable();\n\n if (privateKey.extractable === false) {\n throw new SolanaError(SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY, { key: privateKey });\n }\n\n // Export private key.\n const jwk = await crypto.subtle.exportKey('jwk', privateKey);\n\n // Import public key.\n return await crypto.subtle.importKey(\n 'jwk',\n {\n crv /* curve */: 'Ed25519',\n ext /* extractable */: extractable,\n key_ops /* key operations */: ['verify'],\n kty /* key type */: 'OKP' /* octet key pair */,\n x /* public key x-coordinate */: jwk.x,\n },\n 'Ed25519',\n extractable,\n ['verify'],\n );\n}\n","import { assertSigningCapabilityIsAvailable, assertVerificationCapabilityIsAvailable } from '@solana/assertions';\nimport { Encoder, ReadonlyUint8Array } from '@solana/codecs-core';\nimport { getBase58Encoder } from '@solana/codecs-strings';\nimport {\n SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE,\n SolanaError,\n} from '@solana/errors';\n\nexport type Signature = string & { readonly __brand: unique symbol };\nexport type SignatureBytes = Uint8Array & { readonly __brand: unique symbol };\n\nlet base58Encoder: Encoder<string> | undefined;\n\nexport function assertIsSignature(putativeSignature: string): asserts putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n throw new SolanaError(SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE, {\n actualLength: putativeSignature.length,\n });\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH, {\n actualLength: numBytes,\n });\n }\n}\n\nexport function isSignature(putativeSignature: string): putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n return false;\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n return false;\n }\n return true;\n}\n\nexport async function signBytes(key: CryptoKey, data: ReadonlyUint8Array): Promise<SignatureBytes> {\n assertSigningCapabilityIsAvailable();\n const signedData = await crypto.subtle.sign('Ed25519', key, data);\n return new Uint8Array(signedData) as SignatureBytes;\n}\n\nexport function signature(putativeSignature: string): Signature {\n assertIsSignature(putativeSignature);\n return putativeSignature;\n}\n\nexport async function verifySignature(\n key: CryptoKey,\n signature: SignatureBytes,\n data: ReadonlyUint8Array,\n): Promise<boolean> {\n assertVerificationCapabilityIsAvailable();\n return await crypto.subtle.verify('Ed25519', key, signature, data);\n}\n","import { assertKeyGenerationIsAvailable, assertPRNGIsAvailable } from '@solana/assertions';\nimport { ReadonlyUint8Array } from '@solana/codecs-core';\nimport {\n SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY,\n SolanaError,\n} from '@solana/errors';\n\nimport { createPrivateKeyFromBytes } from './private-key';\nimport { getPublicKeyFromPrivateKey } from './public-key';\nimport { signBytes, verifySignature } from './signatures';\n\nexport async function generateKeyPair(): Promise<CryptoKeyPair> {\n await assertKeyGenerationIsAvailable();\n const keyPair = await crypto.subtle.generateKey(\n /* algorithm */ 'Ed25519', // Native implementation status: https://github.com/WICG/webcrypto-secure-curves/issues/20\n /* extractable */ false, // Prevents the bytes of the private key from being visible to JS.\n /* allowed uses */ ['sign', 'verify'],\n );\n return keyPair as CryptoKeyPair;\n}\n\nexport async function createKeyPairFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKeyPair> {\n assertPRNGIsAvailable();\n\n if (bytes.byteLength !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH, { byteLength: bytes.byteLength });\n }\n const [publicKey, privateKey] = await Promise.all([\n crypto.subtle.importKey('raw', bytes.slice(32), 'Ed25519', /* extractable */ true, ['verify']),\n createPrivateKeyFromBytes(bytes.slice(0, 32), extractable),\n ]);\n\n // Verify the key pair\n const randomBytes = new Uint8Array(32);\n crypto.getRandomValues(randomBytes);\n const signedData = await signBytes(privateKey, randomBytes);\n const isValid = await verifySignature(publicKey, signedData, randomBytes);\n if (!isValid) {\n throw new SolanaError(SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY);\n }\n\n return { privateKey, publicKey } as CryptoKeyPair;\n}\n\nexport async function createKeyPairFromPrivateKeyBytes(\n bytes: ReadonlyUint8Array,\n extractable: boolean = false,\n): Promise<CryptoKeyPair> {\n const privateKeyPromise = createPrivateKeyFromBytes(bytes, extractable);\n\n // Here we need the private key to be extractable in order to export\n // it as a public key. Therefore, if the `extractable` parameter\n // is `false`, we need to create two private keys such that:\n // - The extractable one is used to create the public key and\n // - The non-extractable one is the one we will return.\n const [publicKey, privateKey] = await Promise.all([\n // This nested promise makes things efficient by\n // creating the public key in parallel with the\n // second private key creation, if it is needed.\n (extractable ? privateKeyPromise : createPrivateKeyFromBytes(bytes, true /* extractable */)).then(\n async privateKey => await getPublicKeyFromPrivateKey(privateKey, true /* extractable */),\n ),\n privateKeyPromise,\n ]);\n\n return { privateKey, publicKey };\n}\n"]}
|
package/dist/index.native.mjs
CHANGED
|
@@ -1,5 +1,5 @@
|
|
|
1
|
-
import { assertSigningCapabilityIsAvailable, assertVerificationCapabilityIsAvailable, assertKeyGenerationIsAvailable, assertPRNGIsAvailable } from '@solana/assertions';
|
|
2
|
-
import { SolanaError, SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE, SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH, SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH, SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY } from '@solana/errors';
|
|
1
|
+
import { assertSigningCapabilityIsAvailable, assertVerificationCapabilityIsAvailable, assertKeyGenerationIsAvailable, assertPRNGIsAvailable, assertKeyExporterIsAvailable } from '@solana/assertions';
|
|
2
|
+
import { SolanaError, SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE, SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH, SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH, SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY, SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY } from '@solana/errors';
|
|
3
3
|
import { getBase58Encoder } from '@solana/codecs-strings';
|
|
4
4
|
|
|
5
5
|
// src/key-pair.ts
|
|
@@ -59,6 +59,26 @@ async function createPrivateKeyFromBytes(bytes, extractable) {
|
|
|
59
59
|
const privateKeyBytesPkcs8 = addPkcs8Header(bytes);
|
|
60
60
|
return await crypto.subtle.importKey("pkcs8", privateKeyBytesPkcs8, "Ed25519", extractable ?? false, ["sign"]);
|
|
61
61
|
}
|
|
62
|
+
async function getPublicKeyFromPrivateKey(privateKey, extractable = false) {
|
|
63
|
+
assertKeyExporterIsAvailable();
|
|
64
|
+
if (privateKey.extractable === false) {
|
|
65
|
+
throw new SolanaError(SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY, { key: privateKey });
|
|
66
|
+
}
|
|
67
|
+
const jwk = await crypto.subtle.exportKey("jwk", privateKey);
|
|
68
|
+
return await crypto.subtle.importKey(
|
|
69
|
+
"jwk",
|
|
70
|
+
{
|
|
71
|
+
crv: "Ed25519",
|
|
72
|
+
ext: extractable,
|
|
73
|
+
key_ops: ["verify"],
|
|
74
|
+
kty: "OKP",
|
|
75
|
+
x: jwk.x
|
|
76
|
+
},
|
|
77
|
+
"Ed25519",
|
|
78
|
+
extractable,
|
|
79
|
+
["verify"]
|
|
80
|
+
);
|
|
81
|
+
}
|
|
62
82
|
var base58Encoder;
|
|
63
83
|
function assertIsSignature(putativeSignature) {
|
|
64
84
|
if (!base58Encoder) base58Encoder = getBase58Encoder();
|
|
@@ -149,7 +169,28 @@ async function createKeyPairFromBytes(bytes, extractable) {
|
|
|
149
169
|
}
|
|
150
170
|
return { privateKey, publicKey };
|
|
151
171
|
}
|
|
172
|
+
async function createKeyPairFromPrivateKeyBytes(bytes, extractable = false) {
|
|
173
|
+
const privateKeyPromise = createPrivateKeyFromBytes(bytes, extractable);
|
|
174
|
+
const [publicKey, privateKey] = await Promise.all([
|
|
175
|
+
// This nested promise makes things efficient by
|
|
176
|
+
// creating the public key in parallel with the
|
|
177
|
+
// second private key creation, if it is needed.
|
|
178
|
+
(extractable ? privateKeyPromise : createPrivateKeyFromBytes(
|
|
179
|
+
bytes,
|
|
180
|
+
true
|
|
181
|
+
/* extractable */
|
|
182
|
+
)).then(
|
|
183
|
+
async (privateKey2) => await getPublicKeyFromPrivateKey(
|
|
184
|
+
privateKey2,
|
|
185
|
+
true
|
|
186
|
+
/* extractable */
|
|
187
|
+
)
|
|
188
|
+
),
|
|
189
|
+
privateKeyPromise
|
|
190
|
+
]);
|
|
191
|
+
return { privateKey, publicKey };
|
|
192
|
+
}
|
|
152
193
|
|
|
153
|
-
export { assertIsSignature, createKeyPairFromBytes, createPrivateKeyFromBytes, generateKeyPair, isSignature, signBytes, signature, verifySignature };
|
|
194
|
+
export { assertIsSignature, createKeyPairFromBytes, createKeyPairFromPrivateKeyBytes, createPrivateKeyFromBytes, generateKeyPair, isSignature, signBytes, signature, verifySignature };
|
|
154
195
|
//# sourceMappingURL=index.native.mjs.map
|
|
155
196
|
//# sourceMappingURL=index.native.mjs.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"sources":["../src/private-key.ts","../src/signatures.ts","../src/key-pair.ts"],"names":["SolanaError","signature"],"mappings":";;;;;AAGA,SAAS,eAAe,KAA+C,EAAA;AAEnE,EAAA,OAAO,IAAI,UAAW,CAAA;AAAA;AAAA;AAAA;AAAA,IAIlB,EAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IAEJ,EAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA;AAAA,IAEQ,EAAA;AAAA;AAAA,IACA,GAAA;AAAA;AAAA;AAAA,IAEA,GAAA;AAAA;AAAA;AAAA;AAAA;AAAA,IAKhB,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA;AAAA,IAGI,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEJ,GAAG,KAAA;AAAA,GACN,CAAA,CAAA;AACL,CAAA;AAEA,eAAsB,yBAAA,CAA0B,OAA2B,WAA2C,EAAA;AAClH,EAAA,MAAM,eAAe,KAAM,CAAA,UAAA,CAAA;AAC3B,EAAA,IAAI,iBAAiB,EAAI,EAAA;AACrB,IAAM,MAAA,IAAI,YAAY,mDAAqD,EAAA;AAAA,MACvE,YAAA;AAAA,KACH,CAAA,CAAA;AAAA,GACL;AACA,EAAM,MAAA,oBAAA,GAAuB,eAAe,KAAK,CAAA,CAAA;AACjD,EAAO,OAAA,MAAM,MAAO,CAAA,MAAA,CAAO,SAAU,CAAA,OAAA,EAAS,oBAAsB,EAAA,SAAA,EAAW,WAAe,IAAA,KAAA,EAAO,CAAC,MAAM,CAAC,CAAA,CAAA;AACjH,CAAA;ACrCA,IAAI,aAAA,CAAA;AAEG,SAAS,kBAAkB,iBAAmE,EAAA;AACjG,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgB,gBAAiB,EAAA,CAAA;AAErD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAM,MAAA,IAAIA,YAAY,wDAA0D,EAAA;AAAA,MAC5E,cAAc,iBAAkB,CAAA,MAAA;AAAA,KACnC,CAAA,CAAA;AAAA,GACL;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAM,MAAA,IAAIA,YAAY,iDAAmD,EAAA;AAAA,MACrE,YAAc,EAAA,QAAA;AAAA,KACjB,CAAA,CAAA;AAAA,GACL;AACJ,CAAA;AAEO,SAAS,YAAY,iBAA2D,EAAA;AACnF,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgB,gBAAiB,EAAA,CAAA;AAGrD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AACA,EAAO,OAAA,IAAA,CAAA;AACX,CAAA;AAEA,eAAsB,SAAA,CAAU,KAAgB,IAAmD,EAAA;AAC/F,EAAmC,kCAAA,EAAA,CAAA;AACnC,EAAA,MAAM,aAAa,MAAM,MAAA,CAAO,OAAO,IAAK,CAAA,SAAA,EAAW,KAAK,IAAI,CAAA,CAAA;AAChE,EAAO,OAAA,IAAI,WAAW,UAAU,CAAA,CAAA;AACpC,CAAA;AAEO,SAAS,UAAU,iBAAsC,EAAA;AAC5D,EAAA,iBAAA,CAAkB,iBAAiB,CAAA,CAAA;AACnC,EAAO,OAAA,iBAAA,CAAA;AACX,CAAA;AAEA,eAAsB,eAAA,CAClB,GACAC,EAAAA,UAAAA,EACA,IACgB,EAAA;AAChB,EAAwC,uCAAA,EAAA,CAAA;AACxC,EAAA,OAAO,MAAM,MAAO,CAAA,MAAA,CAAO,OAAO,SAAW,EAAA,GAAA,EAAKA,YAAW,IAAI,CAAA,CAAA;AACrE,CAAA;;;ACjEA,eAAsB,eAA0C,GAAA;AAC5D,EAAA,MAAM,8BAA+B,EAAA,CAAA;AACrC,EAAM,MAAA,OAAA,GAAU,MAAM,MAAA,CAAO,MAAO,CAAA,WAAA;AAAA;AAAA,IAChB,SAAA;AAAA;AAAA;AAAA,IACE,KAAA;AAAA;AAAA;AAAA,IACC,CAAC,QAAQ,QAAQ,CAAA;AAAA,GACxC,CAAA;AACA,EAAO,OAAA,OAAA,CAAA;AACX,CAAA;AAEA,eAAsB,sBAAA,CAAuB,OAA2B,WAA+C,EAAA;AACnH,EAAsB,qBAAA,EAAA,CAAA;AAEtB,EAAI,IAAA,KAAA,CAAM,eAAe,EAAI,EAAA;AACzB,IAAA,MAAM,IAAID,WAAY,CAAA,gDAAA,EAAkD,EAAE,UAAY,EAAA,KAAA,CAAM,YAAY,CAAA,CAAA;AAAA,GAC5G;AACA,EAAA,MAAM,CAAC,SAAW,EAAA,UAAU,CAAI,GAAA,MAAM,QAAQ,GAAI,CAAA;AAAA,IAC9C,OAAO,MAAO,CAAA,SAAA;AAAA,MAAU,KAAA;AAAA,MAAO,KAAA,CAAM,MAAM,EAAE,CAAA;AAAA,MAAG,SAAA;AAAA;AAAA,MAA6B,IAAA;AAAA,MAAM,CAAC,QAAQ,CAAA;AAAA,KAAC;AAAA,IAC7F,0BAA0B,KAAM,CAAA,KAAA,CAAM,CAAG,EAAA,EAAE,GAAG,WAAW,CAAA;AAAA,GAC5D,CAAA,CAAA;AAGD,EAAM,MAAA,WAAA,GAAc,IAAI,UAAA,CAAW,EAAE,CAAA,CAAA;AACrC,EAAA,MAAA,CAAO,gBAAgB,WAAW,CAAA,CAAA;AAClC,EAAA,MAAM,UAAa,GAAA,MAAM,SAAU,CAAA,UAAA,EAAY,WAAW,CAAA,CAAA;AAC1D,EAAA,MAAM,OAAU,GAAA,MAAM,eAAgB,CAAA,SAAA,EAAW,YAAY,WAAW,CAAA,CAAA;AACxE,EAAA,IAAI,CAAC,OAAS,EAAA;AACV,IAAM,MAAA,IAAIA,YAAY,qDAAqD,CAAA,CAAA;AAAA,GAC/E;AAEA,EAAO,OAAA,EAAE,YAAY,SAAU,EAAA,CAAA;AACnC","file":"index.native.mjs","sourcesContent":["import { ReadonlyUint8Array } from '@solana/codecs-core';\nimport { SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, SolanaError } from '@solana/errors';\n\nfunction addPkcs8Header(bytes: ReadonlyUint8Array): ReadonlyUint8Array {\n // prettier-ignore\n return new Uint8Array([\n /**\n * PKCS#8 header\n */\n 0x30, // ASN.1 sequence tag\n 0x2e, // Length of sequence (46 more bytes)\n\n 0x02, // ASN.1 integer tag\n 0x01, // Length of integer\n 0x00, // Version number\n\n 0x30, // ASN.1 sequence tag\n 0x05, // Length of sequence\n 0x06, // ASN.1 object identifier tag\n 0x03, // Length of object identifier\n // Edwards curve algorithms identifier https://oid-rep.orange-labs.fr/get/1.3.101.112\n 0x2b, // iso(1) / identified-organization(3) (The first node is multiplied by the decimal 40 and the result is added to the value of the second node)\n 0x65, // thawte(101)\n // Ed25519 identifier\n 0x70, // id-Ed25519(112)\n\n /**\n * Private key payload\n */\n 0x04, // ASN.1 octet string tag\n 0x22, // String length (34 more bytes)\n\n // Private key bytes as octet string\n 0x04, // ASN.1 octet string tag\n 0x20, // String length (32 bytes)\n\n ...bytes\n ]);\n}\n\nexport async function createPrivateKeyFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKey> {\n const actualLength = bytes.byteLength;\n if (actualLength !== 32) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, {\n actualLength,\n });\n }\n const privateKeyBytesPkcs8 = addPkcs8Header(bytes);\n return await crypto.subtle.importKey('pkcs8', privateKeyBytesPkcs8, 'Ed25519', extractable ?? false, ['sign']);\n}\n","import { assertSigningCapabilityIsAvailable, assertVerificationCapabilityIsAvailable } from '@solana/assertions';\nimport { Encoder, ReadonlyUint8Array } from '@solana/codecs-core';\nimport { getBase58Encoder } from '@solana/codecs-strings';\nimport {\n SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE,\n SolanaError,\n} from '@solana/errors';\n\nexport type Signature = string & { readonly __brand: unique symbol };\nexport type SignatureBytes = Uint8Array & { readonly __brand: unique symbol };\n\nlet base58Encoder: Encoder<string> | undefined;\n\nexport function assertIsSignature(putativeSignature: string): asserts putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n throw new SolanaError(SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE, {\n actualLength: putativeSignature.length,\n });\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH, {\n actualLength: numBytes,\n });\n }\n}\n\nexport function isSignature(putativeSignature: string): putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n return false;\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n return false;\n }\n return true;\n}\n\nexport async function signBytes(key: CryptoKey, data: ReadonlyUint8Array): Promise<SignatureBytes> {\n assertSigningCapabilityIsAvailable();\n const signedData = await crypto.subtle.sign('Ed25519', key, data);\n return new Uint8Array(signedData) as SignatureBytes;\n}\n\nexport function signature(putativeSignature: string): Signature {\n assertIsSignature(putativeSignature);\n return putativeSignature;\n}\n\nexport async function verifySignature(\n key: CryptoKey,\n signature: SignatureBytes,\n data: ReadonlyUint8Array,\n): Promise<boolean> {\n assertVerificationCapabilityIsAvailable();\n return await crypto.subtle.verify('Ed25519', key, signature, data);\n}\n","import { assertKeyGenerationIsAvailable, assertPRNGIsAvailable } from '@solana/assertions';\nimport { ReadonlyUint8Array } from '@solana/codecs-core';\nimport {\n SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY,\n SolanaError,\n} from '@solana/errors';\n\nimport { createPrivateKeyFromBytes } from './private-key';\nimport { signBytes, verifySignature } from './signatures';\n\nexport async function generateKeyPair(): Promise<CryptoKeyPair> {\n await assertKeyGenerationIsAvailable();\n const keyPair = await crypto.subtle.generateKey(\n /* algorithm */ 'Ed25519', // Native implementation status: https://github.com/WICG/webcrypto-secure-curves/issues/20\n /* extractable */ false, // Prevents the bytes of the private key from being visible to JS.\n /* allowed uses */ ['sign', 'verify'],\n );\n return keyPair as CryptoKeyPair;\n}\n\nexport async function createKeyPairFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKeyPair> {\n assertPRNGIsAvailable();\n\n if (bytes.byteLength !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH, { byteLength: bytes.byteLength });\n }\n const [publicKey, privateKey] = await Promise.all([\n crypto.subtle.importKey('raw', bytes.slice(32), 'Ed25519', /* extractable */ true, ['verify']),\n createPrivateKeyFromBytes(bytes.slice(0, 32), extractable),\n ]);\n\n // Verify the key pair\n const randomBytes = new Uint8Array(32);\n crypto.getRandomValues(randomBytes);\n const signedData = await signBytes(privateKey, randomBytes);\n const isValid = await verifySignature(publicKey, signedData, randomBytes);\n if (!isValid) {\n throw new SolanaError(SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY);\n }\n\n return { privateKey, publicKey } as CryptoKeyPair;\n}\n"]}
|
|
1
|
+
{"version":3,"sources":["../src/private-key.ts","../src/public-key.ts","../src/signatures.ts","../src/key-pair.ts"],"names":["SolanaError","signature","privateKey"],"mappings":";;;;;AAGA,SAAS,eAAe,KAA+C,EAAA;AAEnE,EAAA,OAAO,IAAI,UAAW,CAAA;AAAA;AAAA;AAAA;AAAA,IAIlB,EAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IAEJ,EAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA;AAAA,IAEQ,EAAA;AAAA;AAAA,IACA,GAAA;AAAA;AAAA;AAAA,IAEA,GAAA;AAAA;AAAA;AAAA;AAAA;AAAA,IAKhB,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA;AAAA,IAGI,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEJ,GAAG,KAAA;AAAA,GACN,CAAA,CAAA;AACL,CAAA;AAEA,eAAsB,yBAAA,CAA0B,OAA2B,WAA2C,EAAA;AAClH,EAAA,MAAM,eAAe,KAAM,CAAA,UAAA,CAAA;AAC3B,EAAA,IAAI,iBAAiB,EAAI,EAAA;AACrB,IAAM,MAAA,IAAI,YAAY,mDAAqD,EAAA;AAAA,MACvE,YAAA;AAAA,KACH,CAAA,CAAA;AAAA,GACL;AACA,EAAM,MAAA,oBAAA,GAAuB,eAAe,KAAK,CAAA,CAAA;AACjD,EAAO,OAAA,MAAM,MAAO,CAAA,MAAA,CAAO,SAAU,CAAA,OAAA,EAAS,oBAAsB,EAAA,SAAA,EAAW,WAAe,IAAA,KAAA,EAAO,CAAC,MAAM,CAAC,CAAA,CAAA;AACjH,CAAA;AC9CA,eAAsB,0BAAA,CAClB,UACA,EAAA,WAAA,GAAuB,KACL,EAAA;AAClB,EAA6B,4BAAA,EAAA,CAAA;AAE7B,EAAI,IAAA,UAAA,CAAW,gBAAgB,KAAO,EAAA;AAClC,IAAA,MAAM,IAAIA,WAAY,CAAA,8DAAA,EAAgE,EAAE,GAAA,EAAK,YAAY,CAAA,CAAA;AAAA,GAC7G;AAGA,EAAA,MAAM,MAAM,MAAM,MAAA,CAAO,MAAO,CAAA,SAAA,CAAU,OAAO,UAAU,CAAA,CAAA;AAG3D,EAAO,OAAA,MAAM,OAAO,MAAO,CAAA,SAAA;AAAA,IACvB,KAAA;AAAA,IACA;AAAA,MACI,GAAiB,EAAA,SAAA;AAAA,MACjB,GAAuB,EAAA,WAAA;AAAA,MACvB,OAAA,EAA8B,CAAC,QAAQ,CAAA;AAAA,MACvC,GAAoB,EAAA,KAAA;AAAA,MACpB,GAAiC,GAAI,CAAA,CAAA;AAAA,KACzC;AAAA,IACA,SAAA;AAAA,IACA,WAAA;AAAA,IACA,CAAC,QAAQ,CAAA;AAAA,GACb,CAAA;AACJ,CAAA;AClBA,IAAI,aAAA,CAAA;AAEG,SAAS,kBAAkB,iBAAmE,EAAA;AACjG,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgB,gBAAiB,EAAA,CAAA;AAErD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAM,MAAA,IAAIA,YAAY,wDAA0D,EAAA;AAAA,MAC5E,cAAc,iBAAkB,CAAA,MAAA;AAAA,KACnC,CAAA,CAAA;AAAA,GACL;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAM,MAAA,IAAIA,YAAY,iDAAmD,EAAA;AAAA,MACrE,YAAc,EAAA,QAAA;AAAA,KACjB,CAAA,CAAA;AAAA,GACL;AACJ,CAAA;AAEO,SAAS,YAAY,iBAA2D,EAAA;AACnF,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgB,gBAAiB,EAAA,CAAA;AAGrD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AACA,EAAO,OAAA,IAAA,CAAA;AACX,CAAA;AAEA,eAAsB,SAAA,CAAU,KAAgB,IAAmD,EAAA;AAC/F,EAAmC,kCAAA,EAAA,CAAA;AACnC,EAAA,MAAM,aAAa,MAAM,MAAA,CAAO,OAAO,IAAK,CAAA,SAAA,EAAW,KAAK,IAAI,CAAA,CAAA;AAChE,EAAO,OAAA,IAAI,WAAW,UAAU,CAAA,CAAA;AACpC,CAAA;AAEO,SAAS,UAAU,iBAAsC,EAAA;AAC5D,EAAA,iBAAA,CAAkB,iBAAiB,CAAA,CAAA;AACnC,EAAO,OAAA,iBAAA,CAAA;AACX,CAAA;AAEA,eAAsB,eAAA,CAClB,GACAC,EAAAA,UAAAA,EACA,IACgB,EAAA;AAChB,EAAwC,uCAAA,EAAA,CAAA;AACxC,EAAA,OAAO,MAAM,MAAO,CAAA,MAAA,CAAO,OAAO,SAAW,EAAA,GAAA,EAAKA,YAAW,IAAI,CAAA,CAAA;AACrE,CAAA;;;AChEA,eAAsB,eAA0C,GAAA;AAC5D,EAAA,MAAM,8BAA+B,EAAA,CAAA;AACrC,EAAM,MAAA,OAAA,GAAU,MAAM,MAAA,CAAO,MAAO,CAAA,WAAA;AAAA;AAAA,IAChB,SAAA;AAAA;AAAA;AAAA,IACE,KAAA;AAAA;AAAA;AAAA,IACC,CAAC,QAAQ,QAAQ,CAAA;AAAA,GACxC,CAAA;AACA,EAAO,OAAA,OAAA,CAAA;AACX,CAAA;AAEA,eAAsB,sBAAA,CAAuB,OAA2B,WAA+C,EAAA;AACnH,EAAsB,qBAAA,EAAA,CAAA;AAEtB,EAAI,IAAA,KAAA,CAAM,eAAe,EAAI,EAAA;AACzB,IAAA,MAAM,IAAID,WAAY,CAAA,gDAAA,EAAkD,EAAE,UAAY,EAAA,KAAA,CAAM,YAAY,CAAA,CAAA;AAAA,GAC5G;AACA,EAAA,MAAM,CAAC,SAAW,EAAA,UAAU,CAAI,GAAA,MAAM,QAAQ,GAAI,CAAA;AAAA,IAC9C,OAAO,MAAO,CAAA,SAAA;AAAA,MAAU,KAAA;AAAA,MAAO,KAAA,CAAM,MAAM,EAAE,CAAA;AAAA,MAAG,SAAA;AAAA;AAAA,MAA6B,IAAA;AAAA,MAAM,CAAC,QAAQ,CAAA;AAAA,KAAC;AAAA,IAC7F,0BAA0B,KAAM,CAAA,KAAA,CAAM,CAAG,EAAA,EAAE,GAAG,WAAW,CAAA;AAAA,GAC5D,CAAA,CAAA;AAGD,EAAM,MAAA,WAAA,GAAc,IAAI,UAAA,CAAW,EAAE,CAAA,CAAA;AACrC,EAAA,MAAA,CAAO,gBAAgB,WAAW,CAAA,CAAA;AAClC,EAAA,MAAM,UAAa,GAAA,MAAM,SAAU,CAAA,UAAA,EAAY,WAAW,CAAA,CAAA;AAC1D,EAAA,MAAM,OAAU,GAAA,MAAM,eAAgB,CAAA,SAAA,EAAW,YAAY,WAAW,CAAA,CAAA;AACxE,EAAA,IAAI,CAAC,OAAS,EAAA;AACV,IAAM,MAAA,IAAIA,YAAY,qDAAqD,CAAA,CAAA;AAAA,GAC/E;AAEA,EAAO,OAAA,EAAE,YAAY,SAAU,EAAA,CAAA;AACnC,CAAA;AAEA,eAAsB,gCAAA,CAClB,KACA,EAAA,WAAA,GAAuB,KACD,EAAA;AACtB,EAAM,MAAA,iBAAA,GAAoB,yBAA0B,CAAA,KAAA,EAAO,WAAW,CAAA,CAAA;AAOtE,EAAA,MAAM,CAAC,SAAW,EAAA,UAAU,CAAI,GAAA,MAAM,QAAQ,GAAI,CAAA;AAAA;AAAA;AAAA;AAAA,IAAA,CAI7C,cAAc,iBAAoB,GAAA,yBAAA;AAAA,MAA0B,KAAA;AAAA,MAAO,IAAA;AAAA;AAAA,KAAyB,EAAA,IAAA;AAAA,MACzF,OAAME,gBAAc,MAAM,0BAAA;AAAA,QAA2BA,WAAAA;AAAA,QAAY,IAAA;AAAA;AAAA,OAAsB;AAAA,KAC3F;AAAA,IACA,iBAAA;AAAA,GACH,CAAA,CAAA;AAED,EAAO,OAAA,EAAE,YAAY,SAAU,EAAA,CAAA;AACnC","file":"index.native.mjs","sourcesContent":["import { ReadonlyUint8Array } from '@solana/codecs-core';\nimport { SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, SolanaError } from '@solana/errors';\n\nfunction addPkcs8Header(bytes: ReadonlyUint8Array): ReadonlyUint8Array {\n // prettier-ignore\n return new Uint8Array([\n /**\n * PKCS#8 header\n */\n 0x30, // ASN.1 sequence tag\n 0x2e, // Length of sequence (46 more bytes)\n\n 0x02, // ASN.1 integer tag\n 0x01, // Length of integer\n 0x00, // Version number\n\n 0x30, // ASN.1 sequence tag\n 0x05, // Length of sequence\n 0x06, // ASN.1 object identifier tag\n 0x03, // Length of object identifier\n // Edwards curve algorithms identifier https://oid-rep.orange-labs.fr/get/1.3.101.112\n 0x2b, // iso(1) / identified-organization(3) (The first node is multiplied by the decimal 40 and the result is added to the value of the second node)\n 0x65, // thawte(101)\n // Ed25519 identifier\n 0x70, // id-Ed25519(112)\n\n /**\n * Private key payload\n */\n 0x04, // ASN.1 octet string tag\n 0x22, // String length (34 more bytes)\n\n // Private key bytes as octet string\n 0x04, // ASN.1 octet string tag\n 0x20, // String length (32 bytes)\n\n ...bytes\n ]);\n}\n\nexport async function createPrivateKeyFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKey> {\n const actualLength = bytes.byteLength;\n if (actualLength !== 32) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, {\n actualLength,\n });\n }\n const privateKeyBytesPkcs8 = addPkcs8Header(bytes);\n return await crypto.subtle.importKey('pkcs8', privateKeyBytesPkcs8, 'Ed25519', extractable ?? false, ['sign']);\n}\n","import { assertKeyExporterIsAvailable } from '@solana/assertions';\nimport { SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY, SolanaError } from '@solana/errors';\n\nexport async function getPublicKeyFromPrivateKey(\n privateKey: CryptoKey,\n extractable: boolean = false,\n): Promise<CryptoKey> {\n assertKeyExporterIsAvailable();\n\n if (privateKey.extractable === false) {\n throw new SolanaError(SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY, { key: privateKey });\n }\n\n // Export private key.\n const jwk = await crypto.subtle.exportKey('jwk', privateKey);\n\n // Import public key.\n return await crypto.subtle.importKey(\n 'jwk',\n {\n crv /* curve */: 'Ed25519',\n ext /* extractable */: extractable,\n key_ops /* key operations */: ['verify'],\n kty /* key type */: 'OKP' /* octet key pair */,\n x /* public key x-coordinate */: jwk.x,\n },\n 'Ed25519',\n extractable,\n ['verify'],\n );\n}\n","import { assertSigningCapabilityIsAvailable, assertVerificationCapabilityIsAvailable } from '@solana/assertions';\nimport { Encoder, ReadonlyUint8Array } from '@solana/codecs-core';\nimport { getBase58Encoder } from '@solana/codecs-strings';\nimport {\n SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE,\n SolanaError,\n} from '@solana/errors';\n\nexport type Signature = string & { readonly __brand: unique symbol };\nexport type SignatureBytes = Uint8Array & { readonly __brand: unique symbol };\n\nlet base58Encoder: Encoder<string> | undefined;\n\nexport function assertIsSignature(putativeSignature: string): asserts putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n throw new SolanaError(SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE, {\n actualLength: putativeSignature.length,\n });\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH, {\n actualLength: numBytes,\n });\n }\n}\n\nexport function isSignature(putativeSignature: string): putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n return false;\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n return false;\n }\n return true;\n}\n\nexport async function signBytes(key: CryptoKey, data: ReadonlyUint8Array): Promise<SignatureBytes> {\n assertSigningCapabilityIsAvailable();\n const signedData = await crypto.subtle.sign('Ed25519', key, data);\n return new Uint8Array(signedData) as SignatureBytes;\n}\n\nexport function signature(putativeSignature: string): Signature {\n assertIsSignature(putativeSignature);\n return putativeSignature;\n}\n\nexport async function verifySignature(\n key: CryptoKey,\n signature: SignatureBytes,\n data: ReadonlyUint8Array,\n): Promise<boolean> {\n assertVerificationCapabilityIsAvailable();\n return await crypto.subtle.verify('Ed25519', key, signature, data);\n}\n","import { assertKeyGenerationIsAvailable, assertPRNGIsAvailable } from '@solana/assertions';\nimport { ReadonlyUint8Array } from '@solana/codecs-core';\nimport {\n SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY,\n SolanaError,\n} from '@solana/errors';\n\nimport { createPrivateKeyFromBytes } from './private-key';\nimport { getPublicKeyFromPrivateKey } from './public-key';\nimport { signBytes, verifySignature } from './signatures';\n\nexport async function generateKeyPair(): Promise<CryptoKeyPair> {\n await assertKeyGenerationIsAvailable();\n const keyPair = await crypto.subtle.generateKey(\n /* algorithm */ 'Ed25519', // Native implementation status: https://github.com/WICG/webcrypto-secure-curves/issues/20\n /* extractable */ false, // Prevents the bytes of the private key from being visible to JS.\n /* allowed uses */ ['sign', 'verify'],\n );\n return keyPair as CryptoKeyPair;\n}\n\nexport async function createKeyPairFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKeyPair> {\n assertPRNGIsAvailable();\n\n if (bytes.byteLength !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH, { byteLength: bytes.byteLength });\n }\n const [publicKey, privateKey] = await Promise.all([\n crypto.subtle.importKey('raw', bytes.slice(32), 'Ed25519', /* extractable */ true, ['verify']),\n createPrivateKeyFromBytes(bytes.slice(0, 32), extractable),\n ]);\n\n // Verify the key pair\n const randomBytes = new Uint8Array(32);\n crypto.getRandomValues(randomBytes);\n const signedData = await signBytes(privateKey, randomBytes);\n const isValid = await verifySignature(publicKey, signedData, randomBytes);\n if (!isValid) {\n throw new SolanaError(SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY);\n }\n\n return { privateKey, publicKey } as CryptoKeyPair;\n}\n\nexport async function createKeyPairFromPrivateKeyBytes(\n bytes: ReadonlyUint8Array,\n extractable: boolean = false,\n): Promise<CryptoKeyPair> {\n const privateKeyPromise = createPrivateKeyFromBytes(bytes, extractable);\n\n // Here we need the private key to be extractable in order to export\n // it as a public key. Therefore, if the `extractable` parameter\n // is `false`, we need to create two private keys such that:\n // - The extractable one is used to create the public key and\n // - The non-extractable one is the one we will return.\n const [publicKey, privateKey] = await Promise.all([\n // This nested promise makes things efficient by\n // creating the public key in parallel with the\n // second private key creation, if it is needed.\n (extractable ? privateKeyPromise : createPrivateKeyFromBytes(bytes, true /* extractable */)).then(\n async privateKey => await getPublicKeyFromPrivateKey(privateKey, true /* extractable */),\n ),\n privateKeyPromise,\n ]);\n\n return { privateKey, publicKey };\n}\n"]}
|
package/dist/index.node.cjs
CHANGED
|
@@ -61,6 +61,26 @@ async function createPrivateKeyFromBytes(bytes, extractable) {
|
|
|
61
61
|
const privateKeyBytesPkcs8 = addPkcs8Header(bytes);
|
|
62
62
|
return await crypto.subtle.importKey("pkcs8", privateKeyBytesPkcs8, "Ed25519", extractable ?? false, ["sign"]);
|
|
63
63
|
}
|
|
64
|
+
async function getPublicKeyFromPrivateKey(privateKey, extractable = false) {
|
|
65
|
+
assertions.assertKeyExporterIsAvailable();
|
|
66
|
+
if (privateKey.extractable === false) {
|
|
67
|
+
throw new errors.SolanaError(errors.SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY, { key: privateKey });
|
|
68
|
+
}
|
|
69
|
+
const jwk = await crypto.subtle.exportKey("jwk", privateKey);
|
|
70
|
+
return await crypto.subtle.importKey(
|
|
71
|
+
"jwk",
|
|
72
|
+
{
|
|
73
|
+
crv: "Ed25519",
|
|
74
|
+
ext: extractable,
|
|
75
|
+
key_ops: ["verify"],
|
|
76
|
+
kty: "OKP",
|
|
77
|
+
x: jwk.x
|
|
78
|
+
},
|
|
79
|
+
"Ed25519",
|
|
80
|
+
extractable,
|
|
81
|
+
["verify"]
|
|
82
|
+
);
|
|
83
|
+
}
|
|
64
84
|
var base58Encoder;
|
|
65
85
|
function assertIsSignature(putativeSignature) {
|
|
66
86
|
if (!base58Encoder) base58Encoder = codecsStrings.getBase58Encoder();
|
|
@@ -151,9 +171,31 @@ async function createKeyPairFromBytes(bytes, extractable) {
|
|
|
151
171
|
}
|
|
152
172
|
return { privateKey, publicKey };
|
|
153
173
|
}
|
|
174
|
+
async function createKeyPairFromPrivateKeyBytes(bytes, extractable = false) {
|
|
175
|
+
const privateKeyPromise = createPrivateKeyFromBytes(bytes, extractable);
|
|
176
|
+
const [publicKey, privateKey] = await Promise.all([
|
|
177
|
+
// This nested promise makes things efficient by
|
|
178
|
+
// creating the public key in parallel with the
|
|
179
|
+
// second private key creation, if it is needed.
|
|
180
|
+
(extractable ? privateKeyPromise : createPrivateKeyFromBytes(
|
|
181
|
+
bytes,
|
|
182
|
+
true
|
|
183
|
+
/* extractable */
|
|
184
|
+
)).then(
|
|
185
|
+
async (privateKey2) => await getPublicKeyFromPrivateKey(
|
|
186
|
+
privateKey2,
|
|
187
|
+
true
|
|
188
|
+
/* extractable */
|
|
189
|
+
)
|
|
190
|
+
),
|
|
191
|
+
privateKeyPromise
|
|
192
|
+
]);
|
|
193
|
+
return { privateKey, publicKey };
|
|
194
|
+
}
|
|
154
195
|
|
|
155
196
|
exports.assertIsSignature = assertIsSignature;
|
|
156
197
|
exports.createKeyPairFromBytes = createKeyPairFromBytes;
|
|
198
|
+
exports.createKeyPairFromPrivateKeyBytes = createKeyPairFromPrivateKeyBytes;
|
|
157
199
|
exports.createPrivateKeyFromBytes = createPrivateKeyFromBytes;
|
|
158
200
|
exports.generateKeyPair = generateKeyPair;
|
|
159
201
|
exports.isSignature = isSignature;
|
package/dist/index.node.cjs.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"sources":["../src/private-key.ts","../src/signatures.ts","../src/key-pair.ts"],"names":["SolanaError","SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH","getBase58Encoder","SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE","SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH","assertSigningCapabilityIsAvailable","signature","assertVerificationCapabilityIsAvailable","assertKeyGenerationIsAvailable","assertPRNGIsAvailable","SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH","SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY"],"mappings":";;;;;;;AAGA,SAAS,eAAe,KAA+C,EAAA;AAEnE,EAAA,OAAO,IAAI,UAAW,CAAA;AAAA;AAAA;AAAA;AAAA,IAIlB,EAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IAEJ,EAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA;AAAA,IAEQ,EAAA;AAAA;AAAA,IACA,GAAA;AAAA;AAAA;AAAA,IAEA,GAAA;AAAA;AAAA;AAAA;AAAA;AAAA,IAKhB,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA;AAAA,IAGI,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEJ,GAAG,KAAA;AAAA,GACN,CAAA,CAAA;AACL,CAAA;AAEA,eAAsB,yBAAA,CAA0B,OAA2B,WAA2C,EAAA;AAClH,EAAA,MAAM,eAAe,KAAM,CAAA,UAAA,CAAA;AAC3B,EAAA,IAAI,iBAAiB,EAAI,EAAA;AACrB,IAAM,MAAA,IAAIA,mBAAYC,0DAAqD,EAAA;AAAA,MACvE,YAAA;AAAA,KACH,CAAA,CAAA;AAAA,GACL;AACA,EAAM,MAAA,oBAAA,GAAuB,eAAe,KAAK,CAAA,CAAA;AACjD,EAAO,OAAA,MAAM,MAAO,CAAA,MAAA,CAAO,SAAU,CAAA,OAAA,EAAS,oBAAsB,EAAA,SAAA,EAAW,WAAe,IAAA,KAAA,EAAO,CAAC,MAAM,CAAC,CAAA,CAAA;AACjH,CAAA;ACrCA,IAAI,aAAA,CAAA;AAEG,SAAS,kBAAkB,iBAAmE,EAAA;AACjG,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgBC,8BAAiB,EAAA,CAAA;AAErD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAM,MAAA,IAAIF,mBAAYG,+DAA0D,EAAA;AAAA,MAC5E,cAAc,iBAAkB,CAAA,MAAA;AAAA,KACnC,CAAA,CAAA;AAAA,GACL;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAM,MAAA,IAAIH,mBAAYI,wDAAmD,EAAA;AAAA,MACrE,YAAc,EAAA,QAAA;AAAA,KACjB,CAAA,CAAA;AAAA,GACL;AACJ,CAAA;AAEO,SAAS,YAAY,iBAA2D,EAAA;AACnF,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgBF,8BAAiB,EAAA,CAAA;AAGrD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AACA,EAAO,OAAA,IAAA,CAAA;AACX,CAAA;AAEA,eAAsB,SAAA,CAAU,KAAgB,IAAmD,EAAA;AAC/F,EAAmCG,6CAAA,EAAA,CAAA;AACnC,EAAA,MAAM,aAAa,MAAM,MAAA,CAAO,OAAO,IAAK,CAAA,SAAA,EAAW,KAAK,IAAI,CAAA,CAAA;AAChE,EAAO,OAAA,IAAI,WAAW,UAAU,CAAA,CAAA;AACpC,CAAA;AAEO,SAAS,UAAU,iBAAsC,EAAA;AAC5D,EAAA,iBAAA,CAAkB,iBAAiB,CAAA,CAAA;AACnC,EAAO,OAAA,iBAAA,CAAA;AACX,CAAA;AAEA,eAAsB,eAAA,CAClB,GACAC,EAAAA,UAAAA,EACA,IACgB,EAAA;AAChB,EAAwCC,kDAAA,EAAA,CAAA;AACxC,EAAA,OAAO,MAAM,MAAO,CAAA,MAAA,CAAO,OAAO,SAAW,EAAA,GAAA,EAAKD,YAAW,IAAI,CAAA,CAAA;AACrE,CAAA;;;ACjEA,eAAsB,eAA0C,GAAA;AAC5D,EAAA,MAAME,yCAA+B,EAAA,CAAA;AACrC,EAAM,MAAA,OAAA,GAAU,MAAM,MAAA,CAAO,MAAO,CAAA,WAAA;AAAA;AAAA,IAChB,SAAA;AAAA;AAAA;AAAA,IACE,KAAA;AAAA;AAAA;AAAA,IACC,CAAC,QAAQ,QAAQ,CAAA;AAAA,GACxC,CAAA;AACA,EAAO,OAAA,OAAA,CAAA;AACX,CAAA;AAEA,eAAsB,sBAAA,CAAuB,OAA2B,WAA+C,EAAA;AACnH,EAAsBC,gCAAA,EAAA,CAAA;AAEtB,EAAI,IAAA,KAAA,CAAM,eAAe,EAAI,EAAA;AACzB,IAAA,MAAM,IAAIT,kBAAY,CAAAU,uDAAA,EAAkD,EAAE,UAAY,EAAA,KAAA,CAAM,YAAY,CAAA,CAAA;AAAA,GAC5G;AACA,EAAA,MAAM,CAAC,SAAW,EAAA,UAAU,CAAI,GAAA,MAAM,QAAQ,GAAI,CAAA;AAAA,IAC9C,OAAO,MAAO,CAAA,SAAA;AAAA,MAAU,KAAA;AAAA,MAAO,KAAA,CAAM,MAAM,EAAE,CAAA;AAAA,MAAG,SAAA;AAAA;AAAA,MAA6B,IAAA;AAAA,MAAM,CAAC,QAAQ,CAAA;AAAA,KAAC;AAAA,IAC7F,0BAA0B,KAAM,CAAA,KAAA,CAAM,CAAG,EAAA,EAAE,GAAG,WAAW,CAAA;AAAA,GAC5D,CAAA,CAAA;AAGD,EAAM,MAAA,WAAA,GAAc,IAAI,UAAA,CAAW,EAAE,CAAA,CAAA;AACrC,EAAA,MAAA,CAAO,gBAAgB,WAAW,CAAA,CAAA;AAClC,EAAA,MAAM,UAAa,GAAA,MAAM,SAAU,CAAA,UAAA,EAAY,WAAW,CAAA,CAAA;AAC1D,EAAA,MAAM,OAAU,GAAA,MAAM,eAAgB,CAAA,SAAA,EAAW,YAAY,WAAW,CAAA,CAAA;AACxE,EAAA,IAAI,CAAC,OAAS,EAAA;AACV,IAAM,MAAA,IAAIV,mBAAYW,4DAAqD,CAAA,CAAA;AAAA,GAC/E;AAEA,EAAO,OAAA,EAAE,YAAY,SAAU,EAAA,CAAA;AACnC","file":"index.node.cjs","sourcesContent":["import { ReadonlyUint8Array } from '@solana/codecs-core';\nimport { SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, SolanaError } from '@solana/errors';\n\nfunction addPkcs8Header(bytes: ReadonlyUint8Array): ReadonlyUint8Array {\n // prettier-ignore\n return new Uint8Array([\n /**\n * PKCS#8 header\n */\n 0x30, // ASN.1 sequence tag\n 0x2e, // Length of sequence (46 more bytes)\n\n 0x02, // ASN.1 integer tag\n 0x01, // Length of integer\n 0x00, // Version number\n\n 0x30, // ASN.1 sequence tag\n 0x05, // Length of sequence\n 0x06, // ASN.1 object identifier tag\n 0x03, // Length of object identifier\n // Edwards curve algorithms identifier https://oid-rep.orange-labs.fr/get/1.3.101.112\n 0x2b, // iso(1) / identified-organization(3) (The first node is multiplied by the decimal 40 and the result is added to the value of the second node)\n 0x65, // thawte(101)\n // Ed25519 identifier\n 0x70, // id-Ed25519(112)\n\n /**\n * Private key payload\n */\n 0x04, // ASN.1 octet string tag\n 0x22, // String length (34 more bytes)\n\n // Private key bytes as octet string\n 0x04, // ASN.1 octet string tag\n 0x20, // String length (32 bytes)\n\n ...bytes\n ]);\n}\n\nexport async function createPrivateKeyFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKey> {\n const actualLength = bytes.byteLength;\n if (actualLength !== 32) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, {\n actualLength,\n });\n }\n const privateKeyBytesPkcs8 = addPkcs8Header(bytes);\n return await crypto.subtle.importKey('pkcs8', privateKeyBytesPkcs8, 'Ed25519', extractable ?? false, ['sign']);\n}\n","import { assertSigningCapabilityIsAvailable, assertVerificationCapabilityIsAvailable } from '@solana/assertions';\nimport { Encoder, ReadonlyUint8Array } from '@solana/codecs-core';\nimport { getBase58Encoder } from '@solana/codecs-strings';\nimport {\n SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE,\n SolanaError,\n} from '@solana/errors';\n\nexport type Signature = string & { readonly __brand: unique symbol };\nexport type SignatureBytes = Uint8Array & { readonly __brand: unique symbol };\n\nlet base58Encoder: Encoder<string> | undefined;\n\nexport function assertIsSignature(putativeSignature: string): asserts putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n throw new SolanaError(SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE, {\n actualLength: putativeSignature.length,\n });\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH, {\n actualLength: numBytes,\n });\n }\n}\n\nexport function isSignature(putativeSignature: string): putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n return false;\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n return false;\n }\n return true;\n}\n\nexport async function signBytes(key: CryptoKey, data: ReadonlyUint8Array): Promise<SignatureBytes> {\n assertSigningCapabilityIsAvailable();\n const signedData = await crypto.subtle.sign('Ed25519', key, data);\n return new Uint8Array(signedData) as SignatureBytes;\n}\n\nexport function signature(putativeSignature: string): Signature {\n assertIsSignature(putativeSignature);\n return putativeSignature;\n}\n\nexport async function verifySignature(\n key: CryptoKey,\n signature: SignatureBytes,\n data: ReadonlyUint8Array,\n): Promise<boolean> {\n assertVerificationCapabilityIsAvailable();\n return await crypto.subtle.verify('Ed25519', key, signature, data);\n}\n","import { assertKeyGenerationIsAvailable, assertPRNGIsAvailable } from '@solana/assertions';\nimport { ReadonlyUint8Array } from '@solana/codecs-core';\nimport {\n SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY,\n SolanaError,\n} from '@solana/errors';\n\nimport { createPrivateKeyFromBytes } from './private-key';\nimport { signBytes, verifySignature } from './signatures';\n\nexport async function generateKeyPair(): Promise<CryptoKeyPair> {\n await assertKeyGenerationIsAvailable();\n const keyPair = await crypto.subtle.generateKey(\n /* algorithm */ 'Ed25519', // Native implementation status: https://github.com/WICG/webcrypto-secure-curves/issues/20\n /* extractable */ false, // Prevents the bytes of the private key from being visible to JS.\n /* allowed uses */ ['sign', 'verify'],\n );\n return keyPair as CryptoKeyPair;\n}\n\nexport async function createKeyPairFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKeyPair> {\n assertPRNGIsAvailable();\n\n if (bytes.byteLength !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH, { byteLength: bytes.byteLength });\n }\n const [publicKey, privateKey] = await Promise.all([\n crypto.subtle.importKey('raw', bytes.slice(32), 'Ed25519', /* extractable */ true, ['verify']),\n createPrivateKeyFromBytes(bytes.slice(0, 32), extractable),\n ]);\n\n // Verify the key pair\n const randomBytes = new Uint8Array(32);\n crypto.getRandomValues(randomBytes);\n const signedData = await signBytes(privateKey, randomBytes);\n const isValid = await verifySignature(publicKey, signedData, randomBytes);\n if (!isValid) {\n throw new SolanaError(SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY);\n }\n\n return { privateKey, publicKey } as CryptoKeyPair;\n}\n"]}
|
|
1
|
+
{"version":3,"sources":["../src/private-key.ts","../src/public-key.ts","../src/signatures.ts","../src/key-pair.ts"],"names":["SolanaError","SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH","assertKeyExporterIsAvailable","SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY","getBase58Encoder","SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE","SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH","assertSigningCapabilityIsAvailable","signature","assertVerificationCapabilityIsAvailable","assertKeyGenerationIsAvailable","assertPRNGIsAvailable","SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH","SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY","privateKey"],"mappings":";;;;;;;AAGA,SAAS,eAAe,KAA+C,EAAA;AAEnE,EAAA,OAAO,IAAI,UAAW,CAAA;AAAA;AAAA;AAAA;AAAA,IAIlB,EAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IAEJ,EAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA;AAAA,IAEQ,EAAA;AAAA;AAAA,IACA,GAAA;AAAA;AAAA;AAAA,IAEA,GAAA;AAAA;AAAA;AAAA;AAAA;AAAA,IAKhB,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA;AAAA,IAGI,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEJ,GAAG,KAAA;AAAA,GACN,CAAA,CAAA;AACL,CAAA;AAEA,eAAsB,yBAAA,CAA0B,OAA2B,WAA2C,EAAA;AAClH,EAAA,MAAM,eAAe,KAAM,CAAA,UAAA,CAAA;AAC3B,EAAA,IAAI,iBAAiB,EAAI,EAAA;AACrB,IAAM,MAAA,IAAIA,mBAAYC,0DAAqD,EAAA;AAAA,MACvE,YAAA;AAAA,KACH,CAAA,CAAA;AAAA,GACL;AACA,EAAM,MAAA,oBAAA,GAAuB,eAAe,KAAK,CAAA,CAAA;AACjD,EAAO,OAAA,MAAM,MAAO,CAAA,MAAA,CAAO,SAAU,CAAA,OAAA,EAAS,oBAAsB,EAAA,SAAA,EAAW,WAAe,IAAA,KAAA,EAAO,CAAC,MAAM,CAAC,CAAA,CAAA;AACjH,CAAA;AC9CA,eAAsB,0BAAA,CAClB,UACA,EAAA,WAAA,GAAuB,KACL,EAAA;AAClB,EAA6BC,uCAAA,EAAA,CAAA;AAE7B,EAAI,IAAA,UAAA,CAAW,gBAAgB,KAAO,EAAA;AAClC,IAAA,MAAM,IAAIF,kBAAY,CAAAG,qEAAA,EAAgE,EAAE,GAAA,EAAK,YAAY,CAAA,CAAA;AAAA,GAC7G;AAGA,EAAA,MAAM,MAAM,MAAM,MAAA,CAAO,MAAO,CAAA,SAAA,CAAU,OAAO,UAAU,CAAA,CAAA;AAG3D,EAAO,OAAA,MAAM,OAAO,MAAO,CAAA,SAAA;AAAA,IACvB,KAAA;AAAA,IACA;AAAA,MACI,GAAiB,EAAA,SAAA;AAAA,MACjB,GAAuB,EAAA,WAAA;AAAA,MACvB,OAAA,EAA8B,CAAC,QAAQ,CAAA;AAAA,MACvC,GAAoB,EAAA,KAAA;AAAA,MACpB,GAAiC,GAAI,CAAA,CAAA;AAAA,KACzC;AAAA,IACA,SAAA;AAAA,IACA,WAAA;AAAA,IACA,CAAC,QAAQ,CAAA;AAAA,GACb,CAAA;AACJ,CAAA;AClBA,IAAI,aAAA,CAAA;AAEG,SAAS,kBAAkB,iBAAmE,EAAA;AACjG,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgBC,8BAAiB,EAAA,CAAA;AAErD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAM,MAAA,IAAIJ,mBAAYK,+DAA0D,EAAA;AAAA,MAC5E,cAAc,iBAAkB,CAAA,MAAA;AAAA,KACnC,CAAA,CAAA;AAAA,GACL;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAM,MAAA,IAAIL,mBAAYM,wDAAmD,EAAA;AAAA,MACrE,YAAc,EAAA,QAAA;AAAA,KACjB,CAAA,CAAA;AAAA,GACL;AACJ,CAAA;AAEO,SAAS,YAAY,iBAA2D,EAAA;AACnF,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgBF,8BAAiB,EAAA,CAAA;AAGrD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AACA,EAAO,OAAA,IAAA,CAAA;AACX,CAAA;AAEA,eAAsB,SAAA,CAAU,KAAgB,IAAmD,EAAA;AAC/F,EAAmCG,6CAAA,EAAA,CAAA;AACnC,EAAA,MAAM,aAAa,MAAM,MAAA,CAAO,OAAO,IAAK,CAAA,SAAA,EAAW,KAAK,IAAI,CAAA,CAAA;AAChE,EAAO,OAAA,IAAI,WAAW,UAAU,CAAA,CAAA;AACpC,CAAA;AAEO,SAAS,UAAU,iBAAsC,EAAA;AAC5D,EAAA,iBAAA,CAAkB,iBAAiB,CAAA,CAAA;AACnC,EAAO,OAAA,iBAAA,CAAA;AACX,CAAA;AAEA,eAAsB,eAAA,CAClB,GACAC,EAAAA,UAAAA,EACA,IACgB,EAAA;AAChB,EAAwCC,kDAAA,EAAA,CAAA;AACxC,EAAA,OAAO,MAAM,MAAO,CAAA,MAAA,CAAO,OAAO,SAAW,EAAA,GAAA,EAAKD,YAAW,IAAI,CAAA,CAAA;AACrE,CAAA;;;AChEA,eAAsB,eAA0C,GAAA;AAC5D,EAAA,MAAME,yCAA+B,EAAA,CAAA;AACrC,EAAM,MAAA,OAAA,GAAU,MAAM,MAAA,CAAO,MAAO,CAAA,WAAA;AAAA;AAAA,IAChB,SAAA;AAAA;AAAA;AAAA,IACE,KAAA;AAAA;AAAA;AAAA,IACC,CAAC,QAAQ,QAAQ,CAAA;AAAA,GACxC,CAAA;AACA,EAAO,OAAA,OAAA,CAAA;AACX,CAAA;AAEA,eAAsB,sBAAA,CAAuB,OAA2B,WAA+C,EAAA;AACnH,EAAsBC,gCAAA,EAAA,CAAA;AAEtB,EAAI,IAAA,KAAA,CAAM,eAAe,EAAI,EAAA;AACzB,IAAA,MAAM,IAAIX,kBAAY,CAAAY,uDAAA,EAAkD,EAAE,UAAY,EAAA,KAAA,CAAM,YAAY,CAAA,CAAA;AAAA,GAC5G;AACA,EAAA,MAAM,CAAC,SAAW,EAAA,UAAU,CAAI,GAAA,MAAM,QAAQ,GAAI,CAAA;AAAA,IAC9C,OAAO,MAAO,CAAA,SAAA;AAAA,MAAU,KAAA;AAAA,MAAO,KAAA,CAAM,MAAM,EAAE,CAAA;AAAA,MAAG,SAAA;AAAA;AAAA,MAA6B,IAAA;AAAA,MAAM,CAAC,QAAQ,CAAA;AAAA,KAAC;AAAA,IAC7F,0BAA0B,KAAM,CAAA,KAAA,CAAM,CAAG,EAAA,EAAE,GAAG,WAAW,CAAA;AAAA,GAC5D,CAAA,CAAA;AAGD,EAAM,MAAA,WAAA,GAAc,IAAI,UAAA,CAAW,EAAE,CAAA,CAAA;AACrC,EAAA,MAAA,CAAO,gBAAgB,WAAW,CAAA,CAAA;AAClC,EAAA,MAAM,UAAa,GAAA,MAAM,SAAU,CAAA,UAAA,EAAY,WAAW,CAAA,CAAA;AAC1D,EAAA,MAAM,OAAU,GAAA,MAAM,eAAgB,CAAA,SAAA,EAAW,YAAY,WAAW,CAAA,CAAA;AACxE,EAAA,IAAI,CAAC,OAAS,EAAA;AACV,IAAM,MAAA,IAAIZ,mBAAYa,4DAAqD,CAAA,CAAA;AAAA,GAC/E;AAEA,EAAO,OAAA,EAAE,YAAY,SAAU,EAAA,CAAA;AACnC,CAAA;AAEA,eAAsB,gCAAA,CAClB,KACA,EAAA,WAAA,GAAuB,KACD,EAAA;AACtB,EAAM,MAAA,iBAAA,GAAoB,yBAA0B,CAAA,KAAA,EAAO,WAAW,CAAA,CAAA;AAOtE,EAAA,MAAM,CAAC,SAAW,EAAA,UAAU,CAAI,GAAA,MAAM,QAAQ,GAAI,CAAA;AAAA;AAAA;AAAA;AAAA,IAAA,CAI7C,cAAc,iBAAoB,GAAA,yBAAA;AAAA,MAA0B,KAAA;AAAA,MAAO,IAAA;AAAA;AAAA,KAAyB,EAAA,IAAA;AAAA,MACzF,OAAMC,gBAAc,MAAM,0BAAA;AAAA,QAA2BA,WAAAA;AAAA,QAAY,IAAA;AAAA;AAAA,OAAsB;AAAA,KAC3F;AAAA,IACA,iBAAA;AAAA,GACH,CAAA,CAAA;AAED,EAAO,OAAA,EAAE,YAAY,SAAU,EAAA,CAAA;AACnC","file":"index.node.cjs","sourcesContent":["import { ReadonlyUint8Array } from '@solana/codecs-core';\nimport { SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, SolanaError } from '@solana/errors';\n\nfunction addPkcs8Header(bytes: ReadonlyUint8Array): ReadonlyUint8Array {\n // prettier-ignore\n return new Uint8Array([\n /**\n * PKCS#8 header\n */\n 0x30, // ASN.1 sequence tag\n 0x2e, // Length of sequence (46 more bytes)\n\n 0x02, // ASN.1 integer tag\n 0x01, // Length of integer\n 0x00, // Version number\n\n 0x30, // ASN.1 sequence tag\n 0x05, // Length of sequence\n 0x06, // ASN.1 object identifier tag\n 0x03, // Length of object identifier\n // Edwards curve algorithms identifier https://oid-rep.orange-labs.fr/get/1.3.101.112\n 0x2b, // iso(1) / identified-organization(3) (The first node is multiplied by the decimal 40 and the result is added to the value of the second node)\n 0x65, // thawte(101)\n // Ed25519 identifier\n 0x70, // id-Ed25519(112)\n\n /**\n * Private key payload\n */\n 0x04, // ASN.1 octet string tag\n 0x22, // String length (34 more bytes)\n\n // Private key bytes as octet string\n 0x04, // ASN.1 octet string tag\n 0x20, // String length (32 bytes)\n\n ...bytes\n ]);\n}\n\nexport async function createPrivateKeyFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKey> {\n const actualLength = bytes.byteLength;\n if (actualLength !== 32) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, {\n actualLength,\n });\n }\n const privateKeyBytesPkcs8 = addPkcs8Header(bytes);\n return await crypto.subtle.importKey('pkcs8', privateKeyBytesPkcs8, 'Ed25519', extractable ?? false, ['sign']);\n}\n","import { assertKeyExporterIsAvailable } from '@solana/assertions';\nimport { SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY, SolanaError } from '@solana/errors';\n\nexport async function getPublicKeyFromPrivateKey(\n privateKey: CryptoKey,\n extractable: boolean = false,\n): Promise<CryptoKey> {\n assertKeyExporterIsAvailable();\n\n if (privateKey.extractable === false) {\n throw new SolanaError(SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY, { key: privateKey });\n }\n\n // Export private key.\n const jwk = await crypto.subtle.exportKey('jwk', privateKey);\n\n // Import public key.\n return await crypto.subtle.importKey(\n 'jwk',\n {\n crv /* curve */: 'Ed25519',\n ext /* extractable */: extractable,\n key_ops /* key operations */: ['verify'],\n kty /* key type */: 'OKP' /* octet key pair */,\n x /* public key x-coordinate */: jwk.x,\n },\n 'Ed25519',\n extractable,\n ['verify'],\n );\n}\n","import { assertSigningCapabilityIsAvailable, assertVerificationCapabilityIsAvailable } from '@solana/assertions';\nimport { Encoder, ReadonlyUint8Array } from '@solana/codecs-core';\nimport { getBase58Encoder } from '@solana/codecs-strings';\nimport {\n SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE,\n SolanaError,\n} from '@solana/errors';\n\nexport type Signature = string & { readonly __brand: unique symbol };\nexport type SignatureBytes = Uint8Array & { readonly __brand: unique symbol };\n\nlet base58Encoder: Encoder<string> | undefined;\n\nexport function assertIsSignature(putativeSignature: string): asserts putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n throw new SolanaError(SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE, {\n actualLength: putativeSignature.length,\n });\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH, {\n actualLength: numBytes,\n });\n }\n}\n\nexport function isSignature(putativeSignature: string): putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n return false;\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n return false;\n }\n return true;\n}\n\nexport async function signBytes(key: CryptoKey, data: ReadonlyUint8Array): Promise<SignatureBytes> {\n assertSigningCapabilityIsAvailable();\n const signedData = await crypto.subtle.sign('Ed25519', key, data);\n return new Uint8Array(signedData) as SignatureBytes;\n}\n\nexport function signature(putativeSignature: string): Signature {\n assertIsSignature(putativeSignature);\n return putativeSignature;\n}\n\nexport async function verifySignature(\n key: CryptoKey,\n signature: SignatureBytes,\n data: ReadonlyUint8Array,\n): Promise<boolean> {\n assertVerificationCapabilityIsAvailable();\n return await crypto.subtle.verify('Ed25519', key, signature, data);\n}\n","import { assertKeyGenerationIsAvailable, assertPRNGIsAvailable } from '@solana/assertions';\nimport { ReadonlyUint8Array } from '@solana/codecs-core';\nimport {\n SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY,\n SolanaError,\n} from '@solana/errors';\n\nimport { createPrivateKeyFromBytes } from './private-key';\nimport { getPublicKeyFromPrivateKey } from './public-key';\nimport { signBytes, verifySignature } from './signatures';\n\nexport async function generateKeyPair(): Promise<CryptoKeyPair> {\n await assertKeyGenerationIsAvailable();\n const keyPair = await crypto.subtle.generateKey(\n /* algorithm */ 'Ed25519', // Native implementation status: https://github.com/WICG/webcrypto-secure-curves/issues/20\n /* extractable */ false, // Prevents the bytes of the private key from being visible to JS.\n /* allowed uses */ ['sign', 'verify'],\n );\n return keyPair as CryptoKeyPair;\n}\n\nexport async function createKeyPairFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKeyPair> {\n assertPRNGIsAvailable();\n\n if (bytes.byteLength !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH, { byteLength: bytes.byteLength });\n }\n const [publicKey, privateKey] = await Promise.all([\n crypto.subtle.importKey('raw', bytes.slice(32), 'Ed25519', /* extractable */ true, ['verify']),\n createPrivateKeyFromBytes(bytes.slice(0, 32), extractable),\n ]);\n\n // Verify the key pair\n const randomBytes = new Uint8Array(32);\n crypto.getRandomValues(randomBytes);\n const signedData = await signBytes(privateKey, randomBytes);\n const isValid = await verifySignature(publicKey, signedData, randomBytes);\n if (!isValid) {\n throw new SolanaError(SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY);\n }\n\n return { privateKey, publicKey } as CryptoKeyPair;\n}\n\nexport async function createKeyPairFromPrivateKeyBytes(\n bytes: ReadonlyUint8Array,\n extractable: boolean = false,\n): Promise<CryptoKeyPair> {\n const privateKeyPromise = createPrivateKeyFromBytes(bytes, extractable);\n\n // Here we need the private key to be extractable in order to export\n // it as a public key. Therefore, if the `extractable` parameter\n // is `false`, we need to create two private keys such that:\n // - The extractable one is used to create the public key and\n // - The non-extractable one is the one we will return.\n const [publicKey, privateKey] = await Promise.all([\n // This nested promise makes things efficient by\n // creating the public key in parallel with the\n // second private key creation, if it is needed.\n (extractable ? privateKeyPromise : createPrivateKeyFromBytes(bytes, true /* extractable */)).then(\n async privateKey => await getPublicKeyFromPrivateKey(privateKey, true /* extractable */),\n ),\n privateKeyPromise,\n ]);\n\n return { privateKey, publicKey };\n}\n"]}
|
package/dist/index.node.mjs
CHANGED
|
@@ -1,5 +1,5 @@
|
|
|
1
|
-
import { assertSigningCapabilityIsAvailable, assertVerificationCapabilityIsAvailable, assertKeyGenerationIsAvailable, assertPRNGIsAvailable } from '@solana/assertions';
|
|
2
|
-
import { SolanaError, SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE, SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH, SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH, SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY } from '@solana/errors';
|
|
1
|
+
import { assertSigningCapabilityIsAvailable, assertVerificationCapabilityIsAvailable, assertKeyGenerationIsAvailable, assertPRNGIsAvailable, assertKeyExporterIsAvailable } from '@solana/assertions';
|
|
2
|
+
import { SolanaError, SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE, SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH, SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH, SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY, SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY } from '@solana/errors';
|
|
3
3
|
import { getBase58Encoder } from '@solana/codecs-strings';
|
|
4
4
|
|
|
5
5
|
// src/key-pair.ts
|
|
@@ -59,6 +59,26 @@ async function createPrivateKeyFromBytes(bytes, extractable) {
|
|
|
59
59
|
const privateKeyBytesPkcs8 = addPkcs8Header(bytes);
|
|
60
60
|
return await crypto.subtle.importKey("pkcs8", privateKeyBytesPkcs8, "Ed25519", extractable ?? false, ["sign"]);
|
|
61
61
|
}
|
|
62
|
+
async function getPublicKeyFromPrivateKey(privateKey, extractable = false) {
|
|
63
|
+
assertKeyExporterIsAvailable();
|
|
64
|
+
if (privateKey.extractable === false) {
|
|
65
|
+
throw new SolanaError(SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY, { key: privateKey });
|
|
66
|
+
}
|
|
67
|
+
const jwk = await crypto.subtle.exportKey("jwk", privateKey);
|
|
68
|
+
return await crypto.subtle.importKey(
|
|
69
|
+
"jwk",
|
|
70
|
+
{
|
|
71
|
+
crv: "Ed25519",
|
|
72
|
+
ext: extractable,
|
|
73
|
+
key_ops: ["verify"],
|
|
74
|
+
kty: "OKP",
|
|
75
|
+
x: jwk.x
|
|
76
|
+
},
|
|
77
|
+
"Ed25519",
|
|
78
|
+
extractable,
|
|
79
|
+
["verify"]
|
|
80
|
+
);
|
|
81
|
+
}
|
|
62
82
|
var base58Encoder;
|
|
63
83
|
function assertIsSignature(putativeSignature) {
|
|
64
84
|
if (!base58Encoder) base58Encoder = getBase58Encoder();
|
|
@@ -149,7 +169,28 @@ async function createKeyPairFromBytes(bytes, extractable) {
|
|
|
149
169
|
}
|
|
150
170
|
return { privateKey, publicKey };
|
|
151
171
|
}
|
|
172
|
+
async function createKeyPairFromPrivateKeyBytes(bytes, extractable = false) {
|
|
173
|
+
const privateKeyPromise = createPrivateKeyFromBytes(bytes, extractable);
|
|
174
|
+
const [publicKey, privateKey] = await Promise.all([
|
|
175
|
+
// This nested promise makes things efficient by
|
|
176
|
+
// creating the public key in parallel with the
|
|
177
|
+
// second private key creation, if it is needed.
|
|
178
|
+
(extractable ? privateKeyPromise : createPrivateKeyFromBytes(
|
|
179
|
+
bytes,
|
|
180
|
+
true
|
|
181
|
+
/* extractable */
|
|
182
|
+
)).then(
|
|
183
|
+
async (privateKey2) => await getPublicKeyFromPrivateKey(
|
|
184
|
+
privateKey2,
|
|
185
|
+
true
|
|
186
|
+
/* extractable */
|
|
187
|
+
)
|
|
188
|
+
),
|
|
189
|
+
privateKeyPromise
|
|
190
|
+
]);
|
|
191
|
+
return { privateKey, publicKey };
|
|
192
|
+
}
|
|
152
193
|
|
|
153
|
-
export { assertIsSignature, createKeyPairFromBytes, createPrivateKeyFromBytes, generateKeyPair, isSignature, signBytes, signature, verifySignature };
|
|
194
|
+
export { assertIsSignature, createKeyPairFromBytes, createKeyPairFromPrivateKeyBytes, createPrivateKeyFromBytes, generateKeyPair, isSignature, signBytes, signature, verifySignature };
|
|
154
195
|
//# sourceMappingURL=index.node.mjs.map
|
|
155
196
|
//# sourceMappingURL=index.node.mjs.map
|
package/dist/index.node.mjs.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"sources":["../src/private-key.ts","../src/signatures.ts","../src/key-pair.ts"],"names":["SolanaError","signature"],"mappings":";;;;;AAGA,SAAS,eAAe,KAA+C,EAAA;AAEnE,EAAA,OAAO,IAAI,UAAW,CAAA;AAAA;AAAA;AAAA;AAAA,IAIlB,EAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IAEJ,EAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA;AAAA,IAEQ,EAAA;AAAA;AAAA,IACA,GAAA;AAAA;AAAA;AAAA,IAEA,GAAA;AAAA;AAAA;AAAA;AAAA;AAAA,IAKhB,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA;AAAA,IAGI,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEJ,GAAG,KAAA;AAAA,GACN,CAAA,CAAA;AACL,CAAA;AAEA,eAAsB,yBAAA,CAA0B,OAA2B,WAA2C,EAAA;AAClH,EAAA,MAAM,eAAe,KAAM,CAAA,UAAA,CAAA;AAC3B,EAAA,IAAI,iBAAiB,EAAI,EAAA;AACrB,IAAM,MAAA,IAAI,YAAY,mDAAqD,EAAA;AAAA,MACvE,YAAA;AAAA,KACH,CAAA,CAAA;AAAA,GACL;AACA,EAAM,MAAA,oBAAA,GAAuB,eAAe,KAAK,CAAA,CAAA;AACjD,EAAO,OAAA,MAAM,MAAO,CAAA,MAAA,CAAO,SAAU,CAAA,OAAA,EAAS,oBAAsB,EAAA,SAAA,EAAW,WAAe,IAAA,KAAA,EAAO,CAAC,MAAM,CAAC,CAAA,CAAA;AACjH,CAAA;ACrCA,IAAI,aAAA,CAAA;AAEG,SAAS,kBAAkB,iBAAmE,EAAA;AACjG,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgB,gBAAiB,EAAA,CAAA;AAErD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAM,MAAA,IAAIA,YAAY,wDAA0D,EAAA;AAAA,MAC5E,cAAc,iBAAkB,CAAA,MAAA;AAAA,KACnC,CAAA,CAAA;AAAA,GACL;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAM,MAAA,IAAIA,YAAY,iDAAmD,EAAA;AAAA,MACrE,YAAc,EAAA,QAAA;AAAA,KACjB,CAAA,CAAA;AAAA,GACL;AACJ,CAAA;AAEO,SAAS,YAAY,iBAA2D,EAAA;AACnF,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgB,gBAAiB,EAAA,CAAA;AAGrD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AACA,EAAO,OAAA,IAAA,CAAA;AACX,CAAA;AAEA,eAAsB,SAAA,CAAU,KAAgB,IAAmD,EAAA;AAC/F,EAAmC,kCAAA,EAAA,CAAA;AACnC,EAAA,MAAM,aAAa,MAAM,MAAA,CAAO,OAAO,IAAK,CAAA,SAAA,EAAW,KAAK,IAAI,CAAA,CAAA;AAChE,EAAO,OAAA,IAAI,WAAW,UAAU,CAAA,CAAA;AACpC,CAAA;AAEO,SAAS,UAAU,iBAAsC,EAAA;AAC5D,EAAA,iBAAA,CAAkB,iBAAiB,CAAA,CAAA;AACnC,EAAO,OAAA,iBAAA,CAAA;AACX,CAAA;AAEA,eAAsB,eAAA,CAClB,GACAC,EAAAA,UAAAA,EACA,IACgB,EAAA;AAChB,EAAwC,uCAAA,EAAA,CAAA;AACxC,EAAA,OAAO,MAAM,MAAO,CAAA,MAAA,CAAO,OAAO,SAAW,EAAA,GAAA,EAAKA,YAAW,IAAI,CAAA,CAAA;AACrE,CAAA;;;ACjEA,eAAsB,eAA0C,GAAA;AAC5D,EAAA,MAAM,8BAA+B,EAAA,CAAA;AACrC,EAAM,MAAA,OAAA,GAAU,MAAM,MAAA,CAAO,MAAO,CAAA,WAAA;AAAA;AAAA,IAChB,SAAA;AAAA;AAAA;AAAA,IACE,KAAA;AAAA;AAAA;AAAA,IACC,CAAC,QAAQ,QAAQ,CAAA;AAAA,GACxC,CAAA;AACA,EAAO,OAAA,OAAA,CAAA;AACX,CAAA;AAEA,eAAsB,sBAAA,CAAuB,OAA2B,WAA+C,EAAA;AACnH,EAAsB,qBAAA,EAAA,CAAA;AAEtB,EAAI,IAAA,KAAA,CAAM,eAAe,EAAI,EAAA;AACzB,IAAA,MAAM,IAAID,WAAY,CAAA,gDAAA,EAAkD,EAAE,UAAY,EAAA,KAAA,CAAM,YAAY,CAAA,CAAA;AAAA,GAC5G;AACA,EAAA,MAAM,CAAC,SAAW,EAAA,UAAU,CAAI,GAAA,MAAM,QAAQ,GAAI,CAAA;AAAA,IAC9C,OAAO,MAAO,CAAA,SAAA;AAAA,MAAU,KAAA;AAAA,MAAO,KAAA,CAAM,MAAM,EAAE,CAAA;AAAA,MAAG,SAAA;AAAA;AAAA,MAA6B,IAAA;AAAA,MAAM,CAAC,QAAQ,CAAA;AAAA,KAAC;AAAA,IAC7F,0BAA0B,KAAM,CAAA,KAAA,CAAM,CAAG,EAAA,EAAE,GAAG,WAAW,CAAA;AAAA,GAC5D,CAAA,CAAA;AAGD,EAAM,MAAA,WAAA,GAAc,IAAI,UAAA,CAAW,EAAE,CAAA,CAAA;AACrC,EAAA,MAAA,CAAO,gBAAgB,WAAW,CAAA,CAAA;AAClC,EAAA,MAAM,UAAa,GAAA,MAAM,SAAU,CAAA,UAAA,EAAY,WAAW,CAAA,CAAA;AAC1D,EAAA,MAAM,OAAU,GAAA,MAAM,eAAgB,CAAA,SAAA,EAAW,YAAY,WAAW,CAAA,CAAA;AACxE,EAAA,IAAI,CAAC,OAAS,EAAA;AACV,IAAM,MAAA,IAAIA,YAAY,qDAAqD,CAAA,CAAA;AAAA,GAC/E;AAEA,EAAO,OAAA,EAAE,YAAY,SAAU,EAAA,CAAA;AACnC","file":"index.node.mjs","sourcesContent":["import { ReadonlyUint8Array } from '@solana/codecs-core';\nimport { SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, SolanaError } from '@solana/errors';\n\nfunction addPkcs8Header(bytes: ReadonlyUint8Array): ReadonlyUint8Array {\n // prettier-ignore\n return new Uint8Array([\n /**\n * PKCS#8 header\n */\n 0x30, // ASN.1 sequence tag\n 0x2e, // Length of sequence (46 more bytes)\n\n 0x02, // ASN.1 integer tag\n 0x01, // Length of integer\n 0x00, // Version number\n\n 0x30, // ASN.1 sequence tag\n 0x05, // Length of sequence\n 0x06, // ASN.1 object identifier tag\n 0x03, // Length of object identifier\n // Edwards curve algorithms identifier https://oid-rep.orange-labs.fr/get/1.3.101.112\n 0x2b, // iso(1) / identified-organization(3) (The first node is multiplied by the decimal 40 and the result is added to the value of the second node)\n 0x65, // thawte(101)\n // Ed25519 identifier\n 0x70, // id-Ed25519(112)\n\n /**\n * Private key payload\n */\n 0x04, // ASN.1 octet string tag\n 0x22, // String length (34 more bytes)\n\n // Private key bytes as octet string\n 0x04, // ASN.1 octet string tag\n 0x20, // String length (32 bytes)\n\n ...bytes\n ]);\n}\n\nexport async function createPrivateKeyFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKey> {\n const actualLength = bytes.byteLength;\n if (actualLength !== 32) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, {\n actualLength,\n });\n }\n const privateKeyBytesPkcs8 = addPkcs8Header(bytes);\n return await crypto.subtle.importKey('pkcs8', privateKeyBytesPkcs8, 'Ed25519', extractable ?? false, ['sign']);\n}\n","import { assertSigningCapabilityIsAvailable, assertVerificationCapabilityIsAvailable } from '@solana/assertions';\nimport { Encoder, ReadonlyUint8Array } from '@solana/codecs-core';\nimport { getBase58Encoder } from '@solana/codecs-strings';\nimport {\n SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE,\n SolanaError,\n} from '@solana/errors';\n\nexport type Signature = string & { readonly __brand: unique symbol };\nexport type SignatureBytes = Uint8Array & { readonly __brand: unique symbol };\n\nlet base58Encoder: Encoder<string> | undefined;\n\nexport function assertIsSignature(putativeSignature: string): asserts putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n throw new SolanaError(SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE, {\n actualLength: putativeSignature.length,\n });\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH, {\n actualLength: numBytes,\n });\n }\n}\n\nexport function isSignature(putativeSignature: string): putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n return false;\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n return false;\n }\n return true;\n}\n\nexport async function signBytes(key: CryptoKey, data: ReadonlyUint8Array): Promise<SignatureBytes> {\n assertSigningCapabilityIsAvailable();\n const signedData = await crypto.subtle.sign('Ed25519', key, data);\n return new Uint8Array(signedData) as SignatureBytes;\n}\n\nexport function signature(putativeSignature: string): Signature {\n assertIsSignature(putativeSignature);\n return putativeSignature;\n}\n\nexport async function verifySignature(\n key: CryptoKey,\n signature: SignatureBytes,\n data: ReadonlyUint8Array,\n): Promise<boolean> {\n assertVerificationCapabilityIsAvailable();\n return await crypto.subtle.verify('Ed25519', key, signature, data);\n}\n","import { assertKeyGenerationIsAvailable, assertPRNGIsAvailable } from '@solana/assertions';\nimport { ReadonlyUint8Array } from '@solana/codecs-core';\nimport {\n SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY,\n SolanaError,\n} from '@solana/errors';\n\nimport { createPrivateKeyFromBytes } from './private-key';\nimport { signBytes, verifySignature } from './signatures';\n\nexport async function generateKeyPair(): Promise<CryptoKeyPair> {\n await assertKeyGenerationIsAvailable();\n const keyPair = await crypto.subtle.generateKey(\n /* algorithm */ 'Ed25519', // Native implementation status: https://github.com/WICG/webcrypto-secure-curves/issues/20\n /* extractable */ false, // Prevents the bytes of the private key from being visible to JS.\n /* allowed uses */ ['sign', 'verify'],\n );\n return keyPair as CryptoKeyPair;\n}\n\nexport async function createKeyPairFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKeyPair> {\n assertPRNGIsAvailable();\n\n if (bytes.byteLength !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH, { byteLength: bytes.byteLength });\n }\n const [publicKey, privateKey] = await Promise.all([\n crypto.subtle.importKey('raw', bytes.slice(32), 'Ed25519', /* extractable */ true, ['verify']),\n createPrivateKeyFromBytes(bytes.slice(0, 32), extractable),\n ]);\n\n // Verify the key pair\n const randomBytes = new Uint8Array(32);\n crypto.getRandomValues(randomBytes);\n const signedData = await signBytes(privateKey, randomBytes);\n const isValid = await verifySignature(publicKey, signedData, randomBytes);\n if (!isValid) {\n throw new SolanaError(SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY);\n }\n\n return { privateKey, publicKey } as CryptoKeyPair;\n}\n"]}
|
|
1
|
+
{"version":3,"sources":["../src/private-key.ts","../src/public-key.ts","../src/signatures.ts","../src/key-pair.ts"],"names":["SolanaError","signature","privateKey"],"mappings":";;;;;AAGA,SAAS,eAAe,KAA+C,EAAA;AAEnE,EAAA,OAAO,IAAI,UAAW,CAAA;AAAA;AAAA;AAAA;AAAA,IAIlB,EAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IAEJ,EAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA,IACI,CAAA;AAAA;AAAA,IACA,CAAA;AAAA;AAAA;AAAA,IAEQ,EAAA;AAAA;AAAA,IACA,GAAA;AAAA;AAAA;AAAA,IAEA,GAAA;AAAA;AAAA;AAAA;AAAA;AAAA,IAKhB,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA;AAAA,IAGI,CAAA;AAAA;AAAA,IACA,EAAA;AAAA;AAAA,IAEJ,GAAG,KAAA;AAAA,GACN,CAAA,CAAA;AACL,CAAA;AAEA,eAAsB,yBAAA,CAA0B,OAA2B,WAA2C,EAAA;AAClH,EAAA,MAAM,eAAe,KAAM,CAAA,UAAA,CAAA;AAC3B,EAAA,IAAI,iBAAiB,EAAI,EAAA;AACrB,IAAM,MAAA,IAAI,YAAY,mDAAqD,EAAA;AAAA,MACvE,YAAA;AAAA,KACH,CAAA,CAAA;AAAA,GACL;AACA,EAAM,MAAA,oBAAA,GAAuB,eAAe,KAAK,CAAA,CAAA;AACjD,EAAO,OAAA,MAAM,MAAO,CAAA,MAAA,CAAO,SAAU,CAAA,OAAA,EAAS,oBAAsB,EAAA,SAAA,EAAW,WAAe,IAAA,KAAA,EAAO,CAAC,MAAM,CAAC,CAAA,CAAA;AACjH,CAAA;AC9CA,eAAsB,0BAAA,CAClB,UACA,EAAA,WAAA,GAAuB,KACL,EAAA;AAClB,EAA6B,4BAAA,EAAA,CAAA;AAE7B,EAAI,IAAA,UAAA,CAAW,gBAAgB,KAAO,EAAA;AAClC,IAAA,MAAM,IAAIA,WAAY,CAAA,8DAAA,EAAgE,EAAE,GAAA,EAAK,YAAY,CAAA,CAAA;AAAA,GAC7G;AAGA,EAAA,MAAM,MAAM,MAAM,MAAA,CAAO,MAAO,CAAA,SAAA,CAAU,OAAO,UAAU,CAAA,CAAA;AAG3D,EAAO,OAAA,MAAM,OAAO,MAAO,CAAA,SAAA;AAAA,IACvB,KAAA;AAAA,IACA;AAAA,MACI,GAAiB,EAAA,SAAA;AAAA,MACjB,GAAuB,EAAA,WAAA;AAAA,MACvB,OAAA,EAA8B,CAAC,QAAQ,CAAA;AAAA,MACvC,GAAoB,EAAA,KAAA;AAAA,MACpB,GAAiC,GAAI,CAAA,CAAA;AAAA,KACzC;AAAA,IACA,SAAA;AAAA,IACA,WAAA;AAAA,IACA,CAAC,QAAQ,CAAA;AAAA,GACb,CAAA;AACJ,CAAA;AClBA,IAAI,aAAA,CAAA;AAEG,SAAS,kBAAkB,iBAAmE,EAAA;AACjG,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgB,gBAAiB,EAAA,CAAA;AAErD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAM,MAAA,IAAIA,YAAY,wDAA0D,EAAA;AAAA,MAC5E,cAAc,iBAAkB,CAAA,MAAA;AAAA,KACnC,CAAA,CAAA;AAAA,GACL;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAM,MAAA,IAAIA,YAAY,iDAAmD,EAAA;AAAA,MACrE,YAAc,EAAA,QAAA;AAAA,KACjB,CAAA,CAAA;AAAA,GACL;AACJ,CAAA;AAEO,SAAS,YAAY,iBAA2D,EAAA;AACnF,EAAI,IAAA,CAAC,aAAe,EAAA,aAAA,GAAgB,gBAAiB,EAAA,CAAA;AAGrD,EAAA;AAAA;AAAA,IAEI,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAE3B,kBAAkB,MAAS,GAAA,EAAA;AAAA,IAC7B;AACE,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AAEA,EAAM,MAAA,KAAA,GAAQ,aAAc,CAAA,MAAA,CAAO,iBAAiB,CAAA,CAAA;AACpD,EAAA,MAAM,WAAW,KAAM,CAAA,UAAA,CAAA;AACvB,EAAA,IAAI,aAAa,EAAI,EAAA;AACjB,IAAO,OAAA,KAAA,CAAA;AAAA,GACX;AACA,EAAO,OAAA,IAAA,CAAA;AACX,CAAA;AAEA,eAAsB,SAAA,CAAU,KAAgB,IAAmD,EAAA;AAC/F,EAAmC,kCAAA,EAAA,CAAA;AACnC,EAAA,MAAM,aAAa,MAAM,MAAA,CAAO,OAAO,IAAK,CAAA,SAAA,EAAW,KAAK,IAAI,CAAA,CAAA;AAChE,EAAO,OAAA,IAAI,WAAW,UAAU,CAAA,CAAA;AACpC,CAAA;AAEO,SAAS,UAAU,iBAAsC,EAAA;AAC5D,EAAA,iBAAA,CAAkB,iBAAiB,CAAA,CAAA;AACnC,EAAO,OAAA,iBAAA,CAAA;AACX,CAAA;AAEA,eAAsB,eAAA,CAClB,GACAC,EAAAA,UAAAA,EACA,IACgB,EAAA;AAChB,EAAwC,uCAAA,EAAA,CAAA;AACxC,EAAA,OAAO,MAAM,MAAO,CAAA,MAAA,CAAO,OAAO,SAAW,EAAA,GAAA,EAAKA,YAAW,IAAI,CAAA,CAAA;AACrE,CAAA;;;AChEA,eAAsB,eAA0C,GAAA;AAC5D,EAAA,MAAM,8BAA+B,EAAA,CAAA;AACrC,EAAM,MAAA,OAAA,GAAU,MAAM,MAAA,CAAO,MAAO,CAAA,WAAA;AAAA;AAAA,IAChB,SAAA;AAAA;AAAA;AAAA,IACE,KAAA;AAAA;AAAA;AAAA,IACC,CAAC,QAAQ,QAAQ,CAAA;AAAA,GACxC,CAAA;AACA,EAAO,OAAA,OAAA,CAAA;AACX,CAAA;AAEA,eAAsB,sBAAA,CAAuB,OAA2B,WAA+C,EAAA;AACnH,EAAsB,qBAAA,EAAA,CAAA;AAEtB,EAAI,IAAA,KAAA,CAAM,eAAe,EAAI,EAAA;AACzB,IAAA,MAAM,IAAID,WAAY,CAAA,gDAAA,EAAkD,EAAE,UAAY,EAAA,KAAA,CAAM,YAAY,CAAA,CAAA;AAAA,GAC5G;AACA,EAAA,MAAM,CAAC,SAAW,EAAA,UAAU,CAAI,GAAA,MAAM,QAAQ,GAAI,CAAA;AAAA,IAC9C,OAAO,MAAO,CAAA,SAAA;AAAA,MAAU,KAAA;AAAA,MAAO,KAAA,CAAM,MAAM,EAAE,CAAA;AAAA,MAAG,SAAA;AAAA;AAAA,MAA6B,IAAA;AAAA,MAAM,CAAC,QAAQ,CAAA;AAAA,KAAC;AAAA,IAC7F,0BAA0B,KAAM,CAAA,KAAA,CAAM,CAAG,EAAA,EAAE,GAAG,WAAW,CAAA;AAAA,GAC5D,CAAA,CAAA;AAGD,EAAM,MAAA,WAAA,GAAc,IAAI,UAAA,CAAW,EAAE,CAAA,CAAA;AACrC,EAAA,MAAA,CAAO,gBAAgB,WAAW,CAAA,CAAA;AAClC,EAAA,MAAM,UAAa,GAAA,MAAM,SAAU,CAAA,UAAA,EAAY,WAAW,CAAA,CAAA;AAC1D,EAAA,MAAM,OAAU,GAAA,MAAM,eAAgB,CAAA,SAAA,EAAW,YAAY,WAAW,CAAA,CAAA;AACxE,EAAA,IAAI,CAAC,OAAS,EAAA;AACV,IAAM,MAAA,IAAIA,YAAY,qDAAqD,CAAA,CAAA;AAAA,GAC/E;AAEA,EAAO,OAAA,EAAE,YAAY,SAAU,EAAA,CAAA;AACnC,CAAA;AAEA,eAAsB,gCAAA,CAClB,KACA,EAAA,WAAA,GAAuB,KACD,EAAA;AACtB,EAAM,MAAA,iBAAA,GAAoB,yBAA0B,CAAA,KAAA,EAAO,WAAW,CAAA,CAAA;AAOtE,EAAA,MAAM,CAAC,SAAW,EAAA,UAAU,CAAI,GAAA,MAAM,QAAQ,GAAI,CAAA;AAAA;AAAA;AAAA;AAAA,IAAA,CAI7C,cAAc,iBAAoB,GAAA,yBAAA;AAAA,MAA0B,KAAA;AAAA,MAAO,IAAA;AAAA;AAAA,KAAyB,EAAA,IAAA;AAAA,MACzF,OAAME,gBAAc,MAAM,0BAAA;AAAA,QAA2BA,WAAAA;AAAA,QAAY,IAAA;AAAA;AAAA,OAAsB;AAAA,KAC3F;AAAA,IACA,iBAAA;AAAA,GACH,CAAA,CAAA;AAED,EAAO,OAAA,EAAE,YAAY,SAAU,EAAA,CAAA;AACnC","file":"index.node.mjs","sourcesContent":["import { ReadonlyUint8Array } from '@solana/codecs-core';\nimport { SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, SolanaError } from '@solana/errors';\n\nfunction addPkcs8Header(bytes: ReadonlyUint8Array): ReadonlyUint8Array {\n // prettier-ignore\n return new Uint8Array([\n /**\n * PKCS#8 header\n */\n 0x30, // ASN.1 sequence tag\n 0x2e, // Length of sequence (46 more bytes)\n\n 0x02, // ASN.1 integer tag\n 0x01, // Length of integer\n 0x00, // Version number\n\n 0x30, // ASN.1 sequence tag\n 0x05, // Length of sequence\n 0x06, // ASN.1 object identifier tag\n 0x03, // Length of object identifier\n // Edwards curve algorithms identifier https://oid-rep.orange-labs.fr/get/1.3.101.112\n 0x2b, // iso(1) / identified-organization(3) (The first node is multiplied by the decimal 40 and the result is added to the value of the second node)\n 0x65, // thawte(101)\n // Ed25519 identifier\n 0x70, // id-Ed25519(112)\n\n /**\n * Private key payload\n */\n 0x04, // ASN.1 octet string tag\n 0x22, // String length (34 more bytes)\n\n // Private key bytes as octet string\n 0x04, // ASN.1 octet string tag\n 0x20, // String length (32 bytes)\n\n ...bytes\n ]);\n}\n\nexport async function createPrivateKeyFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKey> {\n const actualLength = bytes.byteLength;\n if (actualLength !== 32) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_PRIVATE_KEY_BYTE_LENGTH, {\n actualLength,\n });\n }\n const privateKeyBytesPkcs8 = addPkcs8Header(bytes);\n return await crypto.subtle.importKey('pkcs8', privateKeyBytesPkcs8, 'Ed25519', extractable ?? false, ['sign']);\n}\n","import { assertKeyExporterIsAvailable } from '@solana/assertions';\nimport { SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY, SolanaError } from '@solana/errors';\n\nexport async function getPublicKeyFromPrivateKey(\n privateKey: CryptoKey,\n extractable: boolean = false,\n): Promise<CryptoKey> {\n assertKeyExporterIsAvailable();\n\n if (privateKey.extractable === false) {\n throw new SolanaError(SOLANA_ERROR__SUBTLE_CRYPTO__CANNOT_EXPORT_NON_EXTRACTABLE_KEY, { key: privateKey });\n }\n\n // Export private key.\n const jwk = await crypto.subtle.exportKey('jwk', privateKey);\n\n // Import public key.\n return await crypto.subtle.importKey(\n 'jwk',\n {\n crv /* curve */: 'Ed25519',\n ext /* extractable */: extractable,\n key_ops /* key operations */: ['verify'],\n kty /* key type */: 'OKP' /* octet key pair */,\n x /* public key x-coordinate */: jwk.x,\n },\n 'Ed25519',\n extractable,\n ['verify'],\n );\n}\n","import { assertSigningCapabilityIsAvailable, assertVerificationCapabilityIsAvailable } from '@solana/assertions';\nimport { Encoder, ReadonlyUint8Array } from '@solana/codecs-core';\nimport { getBase58Encoder } from '@solana/codecs-strings';\nimport {\n SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE,\n SolanaError,\n} from '@solana/errors';\n\nexport type Signature = string & { readonly __brand: unique symbol };\nexport type SignatureBytes = Uint8Array & { readonly __brand: unique symbol };\n\nlet base58Encoder: Encoder<string> | undefined;\n\nexport function assertIsSignature(putativeSignature: string): asserts putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n throw new SolanaError(SOLANA_ERROR__KEYS__SIGNATURE_STRING_LENGTH_OUT_OF_RANGE, {\n actualLength: putativeSignature.length,\n });\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_SIGNATURE_BYTE_LENGTH, {\n actualLength: numBytes,\n });\n }\n}\n\nexport function isSignature(putativeSignature: string): putativeSignature is Signature {\n if (!base58Encoder) base58Encoder = getBase58Encoder();\n\n // Fast-path; see if the input string is of an acceptable length.\n if (\n // Lowest value (64 bytes of zeroes)\n putativeSignature.length < 64 ||\n // Highest value (64 bytes of 255)\n putativeSignature.length > 88\n ) {\n return false;\n }\n // Slow-path; actually attempt to decode the input string.\n const bytes = base58Encoder.encode(putativeSignature);\n const numBytes = bytes.byteLength;\n if (numBytes !== 64) {\n return false;\n }\n return true;\n}\n\nexport async function signBytes(key: CryptoKey, data: ReadonlyUint8Array): Promise<SignatureBytes> {\n assertSigningCapabilityIsAvailable();\n const signedData = await crypto.subtle.sign('Ed25519', key, data);\n return new Uint8Array(signedData) as SignatureBytes;\n}\n\nexport function signature(putativeSignature: string): Signature {\n assertIsSignature(putativeSignature);\n return putativeSignature;\n}\n\nexport async function verifySignature(\n key: CryptoKey,\n signature: SignatureBytes,\n data: ReadonlyUint8Array,\n): Promise<boolean> {\n assertVerificationCapabilityIsAvailable();\n return await crypto.subtle.verify('Ed25519', key, signature, data);\n}\n","import { assertKeyGenerationIsAvailable, assertPRNGIsAvailable } from '@solana/assertions';\nimport { ReadonlyUint8Array } from '@solana/codecs-core';\nimport {\n SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH,\n SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY,\n SolanaError,\n} from '@solana/errors';\n\nimport { createPrivateKeyFromBytes } from './private-key';\nimport { getPublicKeyFromPrivateKey } from './public-key';\nimport { signBytes, verifySignature } from './signatures';\n\nexport async function generateKeyPair(): Promise<CryptoKeyPair> {\n await assertKeyGenerationIsAvailable();\n const keyPair = await crypto.subtle.generateKey(\n /* algorithm */ 'Ed25519', // Native implementation status: https://github.com/WICG/webcrypto-secure-curves/issues/20\n /* extractable */ false, // Prevents the bytes of the private key from being visible to JS.\n /* allowed uses */ ['sign', 'verify'],\n );\n return keyPair as CryptoKeyPair;\n}\n\nexport async function createKeyPairFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKeyPair> {\n assertPRNGIsAvailable();\n\n if (bytes.byteLength !== 64) {\n throw new SolanaError(SOLANA_ERROR__KEYS__INVALID_KEY_PAIR_BYTE_LENGTH, { byteLength: bytes.byteLength });\n }\n const [publicKey, privateKey] = await Promise.all([\n crypto.subtle.importKey('raw', bytes.slice(32), 'Ed25519', /* extractable */ true, ['verify']),\n createPrivateKeyFromBytes(bytes.slice(0, 32), extractable),\n ]);\n\n // Verify the key pair\n const randomBytes = new Uint8Array(32);\n crypto.getRandomValues(randomBytes);\n const signedData = await signBytes(privateKey, randomBytes);\n const isValid = await verifySignature(publicKey, signedData, randomBytes);\n if (!isValid) {\n throw new SolanaError(SOLANA_ERROR__KEYS__PUBLIC_KEY_MUST_MATCH_PRIVATE_KEY);\n }\n\n return { privateKey, publicKey } as CryptoKeyPair;\n}\n\nexport async function createKeyPairFromPrivateKeyBytes(\n bytes: ReadonlyUint8Array,\n extractable: boolean = false,\n): Promise<CryptoKeyPair> {\n const privateKeyPromise = createPrivateKeyFromBytes(bytes, extractable);\n\n // Here we need the private key to be extractable in order to export\n // it as a public key. Therefore, if the `extractable` parameter\n // is `false`, we need to create two private keys such that:\n // - The extractable one is used to create the public key and\n // - The non-extractable one is the one we will return.\n const [publicKey, privateKey] = await Promise.all([\n // This nested promise makes things efficient by\n // creating the public key in parallel with the\n // second private key creation, if it is needed.\n (extractable ? privateKeyPromise : createPrivateKeyFromBytes(bytes, true /* extractable */)).then(\n async privateKey => await getPublicKeyFromPrivateKey(privateKey, true /* extractable */),\n ),\n privateKeyPromise,\n ]);\n\n return { privateKey, publicKey };\n}\n"]}
|
package/dist/types/key-pair.d.ts
CHANGED
|
@@ -1,4 +1,5 @@
|
|
|
1
1
|
import { ReadonlyUint8Array } from '@solana/codecs-core';
|
|
2
2
|
export declare function generateKeyPair(): Promise<CryptoKeyPair>;
|
|
3
3
|
export declare function createKeyPairFromBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKeyPair>;
|
|
4
|
+
export declare function createKeyPairFromPrivateKeyBytes(bytes: ReadonlyUint8Array, extractable?: boolean): Promise<CryptoKeyPair>;
|
|
4
5
|
//# sourceMappingURL=key-pair.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"key-pair.d.ts","sourceRoot":"","sources":["../../src/key-pair.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;
|
|
1
|
+
{"version":3,"file":"key-pair.d.ts","sourceRoot":"","sources":["../../src/key-pair.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AAWzD,wBAAsB,eAAe,IAAI,OAAO,CAAC,aAAa,CAAC,CAQ9D;AAED,wBAAsB,sBAAsB,CAAC,KAAK,EAAE,kBAAkB,EAAE,WAAW,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,aAAa,CAAC,CAqBrH;AAED,wBAAsB,gCAAgC,CAClD,KAAK,EAAE,kBAAkB,EACzB,WAAW,GAAE,OAAe,GAC7B,OAAO,CAAC,aAAa,CAAC,CAmBxB"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"public-key.d.ts","sourceRoot":"","sources":["../../src/public-key.ts"],"names":[],"mappings":"AAGA,wBAAsB,0BAA0B,CAC5C,UAAU,EAAE,SAAS,EACrB,WAAW,GAAE,OAAe,GAC7B,OAAO,CAAC,SAAS,CAAC,CAwBpB"}
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@solana/keys",
|
|
3
|
-
"version": "2.0.0-rc.
|
|
3
|
+
"version": "2.0.0-rc.1",
|
|
4
4
|
"description": "Helpers for generating and transforming key material",
|
|
5
5
|
"exports": {
|
|
6
6
|
"browser": {
|
|
@@ -49,10 +49,10 @@
|
|
|
49
49
|
"node": ">=17.4"
|
|
50
50
|
},
|
|
51
51
|
"dependencies": {
|
|
52
|
-
"@solana/
|
|
53
|
-
"@solana/
|
|
54
|
-
"@solana/
|
|
55
|
-
"@solana/
|
|
52
|
+
"@solana/codecs-core": "2.0.0-rc.1",
|
|
53
|
+
"@solana/assertions": "2.0.0-rc.1",
|
|
54
|
+
"@solana/errors": "2.0.0-rc.1",
|
|
55
|
+
"@solana/codecs-strings": "2.0.0-rc.1"
|
|
56
56
|
},
|
|
57
57
|
"peerDependencies": {
|
|
58
58
|
"typescript": ">=5"
|