Merge pull request #1 from Convex-Dev/remove-crypto-key-composer

Remove crypto key composer

Author: billbsing

package-lock.json

@@ -51,8 +51,8 @@
   "dependencies": {
     "@noble/ed25519": "^1.6.0",
     "cross-fetch": "^3.1.5",
-    "crypto-key-composer": "^0.1.3",
-    "sha3": "^2.1.4",
+    "crypto-js": "^4.1.1",
+    "js-sha3": "^0.8.0",
     "url-join": "^4.0.1"
   },
   "devDependencies": {

package.json

@@ -6,9 +6,9 @@
 */
 
 import * as ed25519 from '@noble/ed25519'
-import { composePrivateKey, decomposePrivateKey } from 'crypto-key-composer'
+import cryptojs from 'crypto-js'
 
-import { toPublicKeyChecksum, remove0xPrefix } from './Utils'
+import { toPublicKeyChecksum, remove0xPrefix, byteArrayToWordArray, wordArrayToByteArray } from './Utils'
 
 export class KeyPair {
     readonly privateKey: Uint8Array // private key data
@@ -31,10 +31,13 @@ export class KeyPair {
      */
     public static async create(): Promise<KeyPair> {
         const privateKey = ed25519.utils.randomPrivateKey()
+        return await KeyPair.createFromPrivateKey(privateKey)
+    }
+
+    public static async createFromPrivateKey(privateKey: Uint8Array): Promise<KeyPair> {
         const publicKey = await ed25519.getPublicKey(privateKey)
         return new KeyPair(publicKey, privateKey)
     }
-
     /**
      * Imports a keypair from a PKCS8 fromated text string. You need to pass the correct password, to decrypt
      * the private key stored in the text string.
@@ -47,17 +50,10 @@ export class KeyPair {
      * @returns an KeyPair object with the private and public key pairs.
      *
      */
-    public static async importFromString(text: string, password: string, publicKeyText?: string): Promise<KeyPair> {
-        const privateKeyData = decomposePrivateKey(text, {
-            format: 'pkcs8-pem',
-            password: password,
-        })
-        const privateKey = privateKeyData.keyData.seed
-        let publicKey = await ed25519.getPublicKey(privateKey)
-        if (publicKeyText) {
-            publicKey = await ed25519.getPublicKey(privateKey)
-        }
-        return new KeyPair(publicKey, privateKey)
+    public static async importFromString(text: string, password: string): Promise<KeyPair> {
+        const privateKeyWords = cryptojs.AES.decrypt(text, password, { format: cryptojs.format.OpenSSL })
+        const privateKey = wordArrayToByteArray(privateKeyWords)
+        return await KeyPair.createFromPrivateKey(privateKey)
     }
 
     /**
@@ -87,21 +83,8 @@ export class KeyPair {
      *
      */
     public exportToString(password: string): string {
-        return composePrivateKey(
-            {
-                format: 'pkcs8-pem',
-                keyAlgorithm: {
-                    id: 'ed25519',
-                },
-                keyData: {
-                    seed: this.privateKey,
-                },
-            },
-            {
-                format: 'pkcs8-pem',
-                password: password,
-            }
-        )
+        const data = cryptojs.AES.encrypt(byteArrayToWordArray(this.privateKey), password, { format: cryptojs.format.OpenSSL })
+        return data.toString()
     }
 
     /**

src/KeyPair.ts

@@ -4,9 +4,30 @@
  *
  */
 
-import { SHA3 } from 'sha3'
+import cryptojs from 'crypto-js'
+import { sha3_256 } from 'js-sha3'
 import { Account } from './Account'
 
+interface IWordArray {
+    words: Uint32Array
+    sigBytes: number
+}
+export function hexToBytes(hex: string): Uint8Array {
+    if (typeof hex !== 'string') {
+        throw new TypeError('hexToBytes: expected string, got ' + typeof hex)
+    }
+    if (hex.length % 2) throw new Error('hexToBytes: received invalid unpadded hex')
+    const array = new Uint8Array(hex.length / 2)
+    for (let i = 0; i < array.length; i++) {
+        const j = i * 2
+        const hexByte = hex.slice(j, j + 2)
+        const byte = Number.parseInt(hexByte, 16)
+        if (Number.isNaN(byte) || byte < 0) throw new Error('Invalid byte sequence')
+        array[i] = byte
+    }
+    return array
+}
+
 /**
  * Return true if the number or string is an address value. This does not check the network for a valid
  * address, but just checks to see if it is a number
@@ -104,9 +125,7 @@ export function remove0xPrefix(value: string): string {
 export function toPublicKeyChecksum(publicKey: string): string {
     const publicKeyClean = remove0xPrefix(publicKey).toLowerCase()
     let result = '0x'
-    const hash = new SHA3(256)
-    hash.update(Buffer.from(publicKeyClean, 'hex'))
-    const hashData = hash.digest('hex')
+    const hashData = sha3_256(hexToBytes(publicKeyClean))
     for (let index = 0; index < hashData.length && index < publicKeyClean.length; index++) {
         if (parseInt(hashData.charAt(index), 16) > 7) {
             result = result.concat(publicKeyClean.charAt(index).toUpperCase())
@@ -143,3 +162,28 @@ export function isPublicKey(publicKey: string): boolean {
 export function isPublicKeyChecksum(publicKey: string): boolean {
     return remove0xPrefix(publicKey) && remove0xPrefix(publicKey) == remove0xPrefix(toPublicKeyChecksum(publicKey))
 }
+
+/*
+ * Code originally copied from crypto-js for conversion Latin1 to and from WordArray
+ *
+ */
+export function wordArrayToByteArray(wordArray: IWordArray): Uint8Array {
+    const words = wordArray.words
+    const sigBytes = wordArray.sigBytes
+    // Convert from WordArray object to Uint8Array
+    const result = new Uint8Array(sigBytes)
+    for (let i = 0; i < sigBytes; i++) {
+        const value = (words[i >>> 2] >>> (24 - (i % 4) * 8)) & 0xff
+        result[i] = value
+    }
+    return result
+}
+
+export function byteArrayToWordArray(data: Uint8Array): IWordArray {
+    // Convert Uint8Array to a word array object
+    const words = []
+    for (let i = 0; i < data.length; i++) {
+        words[i >>> 2] |= (data[i] & 0xff) << (24 - (i % 4) * 8)
+    }
+    return new cryptojs.lib.WordArray.init(words)
+}

src/Utils.ts

@@ -12,14 +12,8 @@ import { randomBytes } from 'crypto'
 import { API, KeyPair, Account } from '../../src'
 import { isAddress, toAddress } from '../../src/Utils'
 
-const PRIVATE_TEST_KEY_TEXT = `
------BEGIN ENCRYPTED PRIVATE KEY-----
-MIGbMFcGCSqGSIb3DQEFDTBKMCkGCSqGSIb3DQEFDDAcBAi3qm1zgjCO5gICCAAw
-DAYIKoZIhvcNAgkFADAdBglghkgBZQMEASoEENjvj1nzc0Qy22L+Zi+n7yIEQMLW
-o++Jzwlcg3PbW1Y2PxicdFHM3dBOgTWmGsvfZiLhSxTluXTNRCZ8ZLL5pi7JWtCl
-JAr4iFzPLkM18YEP2ZE=
------END ENCRYPTED PRIVATE KEY-----
-`
+
+const PRIVATE_ENCRYPTED_KEY = 'U2FsdGVkX1+zZPlLL1zR8ac9kCp+lHWGsjpUwBINwhpnTJWlu4TctG/Zha/8Mx0ZXjMbb73KZN+N/pBawfTmmw=='
 
 const PRIVATE_TEST_KEY_PASSWORD = 'secret'
 
@@ -29,6 +23,7 @@ const TOPUP_AMOUNT = 10000000
 describe('API Class', () => {
     describe('requestFunds', async () => {
         it('should request funds from a new account', async () => {
+
             const convex = API.create(CONVEX_URL)
             const keyPair = await KeyPair.create()
             const account = await convex.createAccount(keyPair)
@@ -39,7 +34,7 @@ describe('API Class', () => {
 
         it('should request funds from the test account', async () => {
             const convex = API.create(CONVEX_URL)
-            const importKeyPair = await KeyPair.importFromString(PRIVATE_TEST_KEY_TEXT, PRIVATE_TEST_KEY_PASSWORD)
+            const importKeyPair = await KeyPair.importFromString(PRIVATE_ENCRYPTED_KEY, PRIVATE_TEST_KEY_PASSWORD)
             const account = await convex.createAccount(importKeyPair)
             const amount = 1000000
             const result = await convex.requestFunds(amount, account)
@@ -58,7 +53,7 @@ describe('API Class', () => {
 
         it('should return a valid checksum address from a query', async () => {
             const convex = API.create(CONVEX_URL)
-            const importKeyPair = await KeyPair.importFromString(PRIVATE_TEST_KEY_TEXT, PRIVATE_TEST_KEY_PASSWORD)
+            const importKeyPair = await KeyPair.importFromString(PRIVATE_ENCRYPTED_KEY, PRIVATE_TEST_KEY_PASSWORD)
             const account = await convex.createAccount(importKeyPair)
             const address = account.address
             const result = await convex.query(`(address #${address})`, account)
@@ -103,7 +98,7 @@ describe('API Class', () => {
         let account
         before( async () => {
             convex = API.create(CONVEX_URL)
-            const importKeyPair = await KeyPair.importFromString(PRIVATE_TEST_KEY_TEXT, PRIVATE_TEST_KEY_PASSWORD)
+            const importKeyPair = await KeyPair.importFromString(PRIVATE_ENCRYPTED_KEY, PRIVATE_TEST_KEY_PASSWORD)
             account = await convex.createAccount(importKeyPair)
             await convex.topupAccount(account)
         })
@@ -151,7 +146,7 @@ describe('API Class', () => {
         let functionAddress
         before( async () => {
             convex = API.create(CONVEX_URL)
-            const importKeyPair = await KeyPair.importFromString(PRIVATE_TEST_KEY_TEXT, PRIVATE_TEST_KEY_PASSWORD)
+            const importKeyPair = await KeyPair.importFromString(PRIVATE_ENCRYPTED_KEY, PRIVATE_TEST_KEY_PASSWORD)
             account = await convex.createAccount(importKeyPair)
             await convex.topupAccount(account)
             functionName = 'test-storage'
@@ -204,7 +199,7 @@ describe('API Class', () => {
         let accountName
         before( async () => {
             convex = API.create(CONVEX_URL)
-            importKeyPair = await KeyPair.importFromString(PRIVATE_TEST_KEY_TEXT, PRIVATE_TEST_KEY_PASSWORD)
+            importKeyPair = await KeyPair.importFromString(PRIVATE_ENCRYPTED_KEY, PRIVATE_TEST_KEY_PASSWORD)
             accountName = 'test.convex-api.' + randomBytes(4).toString('hex')
         })
         it('should fail to reslove a new named account',  async() => {
@@ -224,7 +219,7 @@ describe('API Class', () => {
         let newAccount: Account
         before( async () => {
             convex = API.create(CONVEX_URL)
-            importKeyPair = await KeyPair.importFromString(PRIVATE_TEST_KEY_TEXT, PRIVATE_TEST_KEY_PASSWORD)
+            importKeyPair = await KeyPair.importFromString(PRIVATE_ENCRYPTED_KEY, PRIVATE_TEST_KEY_PASSWORD)
             accountName = 'test.convex-api.' + randomBytes(4).toString('hex')
         })
         it('should setup and setup/create a new named account',  async() => {
@@ -278,7 +273,7 @@ describe('API Class', () => {
         let account
         before( async () => {
             convex = API.create(CONVEX_URL)
-            const importKeyPair = await KeyPair.importFromString(PRIVATE_TEST_KEY_TEXT, PRIVATE_TEST_KEY_PASSWORD)
+            const importKeyPair = await KeyPair.importFromString(PRIVATE_ENCRYPTED_KEY, PRIVATE_TEST_KEY_PASSWORD)
             account = await convex.createAccount(importKeyPair)
             await convex.requestFunds(TOPUP_AMOUNT, account)
         })
@@ -300,7 +295,7 @@ describe('API Class', () => {
         let accountFrom
         before( async () => {
             convex = API.create(CONVEX_URL)
-            const importKeyPair = await KeyPair.importFromString(PRIVATE_TEST_KEY_TEXT, PRIVATE_TEST_KEY_PASSWORD)
+            const importKeyPair = await KeyPair.importFromString(PRIVATE_ENCRYPTED_KEY, PRIVATE_TEST_KEY_PASSWORD)
             accountFrom = await convex.createAccount(importKeyPair)
             await convex.topupAccount(accountFrom)
         })
@@ -322,7 +317,7 @@ describe('API Class', () => {
         let account
         before( async () => {
             convex = API.create(CONVEX_URL)
-            const importKeyPair = await KeyPair.importFromString(PRIVATE_TEST_KEY_TEXT, PRIVATE_TEST_KEY_PASSWORD)
+            const importKeyPair = await KeyPair.importFromString(PRIVATE_ENCRYPTED_KEY, PRIVATE_TEST_KEY_PASSWORD)
             account = await convex.createAccount(importKeyPair)
             await convex.topupAccount(account)
         })
@@ -348,7 +343,7 @@ describe('API Class', () => {
         let importKeyPair
         before( async () => {
             convex = API.create(CONVEX_URL)
-            importKeyPair = await KeyPair.importFromString(PRIVATE_TEST_KEY_TEXT, PRIVATE_TEST_KEY_PASSWORD)
+            importKeyPair = await KeyPair.importFromString(PRIVATE_ENCRYPTED_KEY, PRIVATE_TEST_KEY_PASSWORD)
         })
         it('should run multiple createAccount test', async () => {
             const requestCount = 20