bitauth/lib/bitauth.js

var elliptic  = require('elliptic');
var ecdsa     = new elliptic.ec(elliptic.curves.secp256k1);
var hashjs    = require('hash.js');
var bs58      = require('bs58');

var BitAuth = {};

/**
 * Will return a key pair and identity
 *
 * @example
 * var keys = BitAuth.generateSin();
 *
 * @returns {Object} An object with keys: created, priv, pub and sin
 */
BitAuth.generateSin = function() {

  var keys = ecdsa.genKeyPair();

  var privateKey = keys.getPrivate('hex');
  var publicKey = this.getPublicKeyFromPrivateKey(privateKey);
  var sin = this.getSinFromPublicKey(publicKey);

  var sinObj = {
    created: new Date().getTime(),
    priv: privateKey,
    pub: publicKey,
    sin: sin
  };

  return sinObj;
};


/**
 * Will return an public key from a private key
 *
 * @param {String} A private key in hex
 * @returns {String} A compressed public key in hex
 */
BitAuth.getPublicKeyFromPrivateKey = function(privkey) {

  var keys = ecdsa.keyPair(privkey, 'hex');

  // compressed public key
  var pubKey = keys.getPublic();
  var xbuf = new Buffer(pubKey.x.toString('hex', 64), 'hex');
  var ybuf = new Buffer(pubKey.y.toString('hex', 64), 'hex');
  var pub;

  if (ybuf[ybuf.length-1] % 2) { //odd
    pub = Buffer.concat([new Buffer([3]), xbuf]);
  } else { //even
    pub = Buffer.concat([new Buffer([2]), xbuf]);
  }

  var hexPubKey = pub.toString('hex');

  return hexPubKey;

};

/**
 * Will return a SIN from a compressed public key
 *
 * @param {String} A public key in hex
 * @returns {String} A SIN identity
 */
BitAuth.getSinFromPublicKey = function(pubkey) {

  // sha256 hash the pubkey
  var pubHash = (new hashjs.sha256()).update(pubkey, 'hex').digest('hex');

  // get the ripemd160 hash of the pubkey
  var pubRipe = (new hashjs.ripemd160()).update(pubHash, 'hex').digest('hex');

  // add the version
  var pubPrefixed = '0f02'+pubRipe;

  // two rounds of hashing to generate the checksum
  var hash1 = (new hashjs.sha256()).update(pubPrefixed, 'hex').digest('hex');
  var checksumTotal = (new hashjs.sha256()).update(hash1, 'hex').digest('hex');

  // slice the hash to arrive at the checksum
  var checksum = checksumTotal.slice(0,8);

  // add the checksum to the ripemd160 pubkey
  var pubWithChecksum = pubPrefixed + checksum;

  // encode into base58
  var sin = bs58.encode(new Buffer(pubWithChecksum, 'hex'));

  return sin;

};

/**
 * Will return a signature from a private key
 *
 * @param {String} data - A string of data to be signed
 * @param {String} privkey - A private key in hex
 * @returns {String} signature - A DER signature in hex
 */
BitAuth.sign = function(data, privkey) {
  var hash = (new hashjs.sha256()).update(data).digest('hex');
  var signature = ecdsa.sign(hash, privkey);
  var hexsignature = signature.toDER('hex');
  return hexsignature;
};

/**
 * Will verify a signature
 *
 * @param {String} data - A string of data that has been signed
 * @param {String} pubkey - The public identity that has signed the data
 * @param {String} hexsignature - A DER signature in hex
 * @returns {Function|Boolean} - If the signature is valid
 */
BitAuth.verifySignature = function(data, pubkey, hexsignature, callback) {
  var hash = (new hashjs.sha256()).update(data).digest('hex');
  var signature = new Buffer(hexsignature, 'hex');
  var valid = ecdsa.verify(hash, signature, pubkey);
  if ( callback )
    return callback(null, valid);
  return valid;
};


/**
 * Will verify that a SIN is valid
 *
 * @param {String} sin - A SIN identity
 * @returns {Function|Boolean} - If the SIN identity is valid
 */
BitAuth.validateSin = function(sin, callback) {

  var pubWithChecksum;

  // check for non-base58 characters
  try {
    pubWithChecksum = new Buffer(bs58.decode(sin), 'hex').toString('hex');
  } catch( err ) {
    if ( callback )
      return callback( err );
    return false;
  }

  // check the version
  if ( pubWithChecksum.slice(0, 4) != '0f02' ) {
    if ( callback )
      return callback(new Error('Invalid prefix or SIN version'));
    return false;
  }

  // get the checksum
  var checksum = pubWithChecksum.slice(pubWithChecksum.length-8,
                                       pubWithChecksum.length);
  var pubPrefixed = pubWithChecksum.slice(0, pubWithChecksum.length-8);

  // two rounds of hashing to generate the checksum
  var hash1 = (new hashjs.sha256()).update(pubPrefixed, 'hex').digest('hex');
  var checksumTotal = (new hashjs.sha256()).update(hash1, 'hex').digest('hex');

  // check the checksum
  if ( checksumTotal.slice(0,8) == checksum ) {
    if ( callback )
      return callback(null);
    return true;
  } else {
    if ( callback )
      return callback(new Error('Checksum does not match'));
    return false;
  }

};

module.exports = BitAuth;
fixed formatting and docs 2014-11-03 10:44:03 -08:00			`var elliptic = require('elliptic');`
			`var ecdsa = new elliptic.ec(elliptic.curves.secp256k1);`
			`var hashjs = require('hash.js');`
			`var bs58 = require('bs58');`
initial commit 2014-05-27 09:04:57 -07:00
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`var BitAuth = {};`
initial commit 2014-05-27 09:04:57 -07:00
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`/**`
			`* Will return a key pair and identity`
			`*`
			`* @example`
			`* var keys = BitAuth.generateSin();`
			`*`
			`* @returns {Object} An object with keys: created, priv, pub and sin`
			`*/`
initial commit 2014-05-27 09:04:57 -07:00			`BitAuth.generateSin = function() {`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00
			`var keys = ecdsa.genKeyPair();`

updated to use the new version of elliptic that includes hex padding 2014-11-02 13:14:23 -08:00			`var privateKey = keys.getPrivate('hex');`
add padding of leading zeros 2014-10-29 16:09:53 -07:00			`var publicKey = this.getPublicKeyFromPrivateKey(privateKey);`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`var sin = this.getSinFromPublicKey(publicKey);`

			`var sinObj = {`
			`created: new Date().getTime(),`
add padding of leading zeros 2014-10-29 16:09:53 -07:00			`priv: privateKey,`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`pub: publicKey,`
			`sin: sin`
fixed formatting and docs 2014-11-03 10:44:03 -08:00			`};`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00
			`return sinObj;`
initial commit 2014-05-27 09:04:57 -07:00			`};`

replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00
			`/**`
			`* Will return an public key from a private key`
			`*`
			`* @param {String} A private key in hex`
			`* @returns {String} A compressed public key in hex`
			`*/`
initial commit 2014-05-27 09:04:57 -07:00			`BitAuth.getPublicKeyFromPrivateKey = function(privkey) {`
added browser support for bitauth 2014-06-25 10:56:24 -07:00
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`var keys = ecdsa.keyPair(privkey, 'hex');`
added browser support for bitauth 2014-06-25 10:56:24 -07:00
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`// compressed public key`
			`var pubKey = keys.getPublic();`
fixed an issue with verifying a signature with a public key with leading zeros 2014-11-03 09:05:33 -08:00			`var xbuf = new Buffer(pubKey.x.toString('hex', 64), 'hex');`
			`var ybuf = new Buffer(pubKey.y.toString('hex', 64), 'hex');`
fixed formatting and docs 2014-11-03 10:44:03 -08:00			`var pub;`
add padding of leading zeros 2014-10-29 16:09:53 -07:00
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`if (ybuf[ybuf.length-1] % 2) { //odd`
fixed formatting and docs 2014-11-03 10:44:03 -08:00			`pub = Buffer.concat([new Buffer([3]), xbuf]);`
			`} else { //even`
			`pub = Buffer.concat([new Buffer([2]), xbuf]);`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`}`

			`var hexPubKey = pub.toString('hex');`

			`return hexPubKey;`

initial commit 2014-05-27 09:04:57 -07:00			`};`

replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`/**`
fixed formatting and docs 2014-11-03 10:44:03 -08:00			`* Will return a SIN from a compressed public key`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`*`
			`* @param {String} A public key in hex`
			`* @returns {String} A SIN identity`
			`*/`
initial commit 2014-05-27 09:04:57 -07:00			`BitAuth.getSinFromPublicKey = function(pubkey) {`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00
			`// sha256 hash the pubkey`
remove unnecessary buffers, handle non-base58 chars in validateSin, and add postinstall 2014-11-03 10:30:11 -08:00			`var pubHash = (new hashjs.sha256()).update(pubkey, 'hex').digest('hex');`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00
			`// get the ripemd160 hash of the pubkey`
remove unnecessary buffers, handle non-base58 chars in validateSin, and add postinstall 2014-11-03 10:30:11 -08:00			`var pubRipe = (new hashjs.ripemd160()).update(pubHash, 'hex').digest('hex');`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00
			`// add the version`
			`var pubPrefixed = '0f02'+pubRipe;`

			`// two rounds of hashing to generate the checksum`
remove unnecessary buffers, handle non-base58 chars in validateSin, and add postinstall 2014-11-03 10:30:11 -08:00			`var hash1 = (new hashjs.sha256()).update(pubPrefixed, 'hex').digest('hex');`
			`var checksumTotal = (new hashjs.sha256()).update(hash1, 'hex').digest('hex');`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00
			`// slice the hash to arrive at the checksum`
			`var checksum = checksumTotal.slice(0,8);`

			`// add the checksum to the ripemd160 pubkey`
			`var pubWithChecksum = pubPrefixed + checksum;`

			`// encode into base58`
			`var sin = bs58.encode(new Buffer(pubWithChecksum, 'hex'));`

			`return sin;`

fixed formatting and docs 2014-11-03 10:44:03 -08:00			`};`
initial commit 2014-05-27 09:04:57 -07:00
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`/**`
			`* Will return a signature from a private key`
			`*`
			`* @param {String} data - A string of data to be signed`
fixed formatting and docs 2014-11-03 10:44:03 -08:00			`* @param {String} privkey - A private key in hex`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`* @returns {String} signature - A DER signature in hex`
			`*/`
initial commit 2014-05-27 09:04:57 -07:00			`BitAuth.sign = function(data, privkey) {`
remove unnecessary buffers, handle non-base58 chars in validateSin, and add postinstall 2014-11-03 10:30:11 -08:00			`var hash = (new hashjs.sha256()).update(data).digest('hex');`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`var signature = ecdsa.sign(hash, privkey);`
			`var hexsignature = signature.toDER('hex');`
			`return hexsignature;`
initial commit 2014-05-27 09:04:57 -07:00			`};`

replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`/**`
			`* Will verify a signature`
			`*`
			`* @param {String} data - A string of data that has been signed`
			`* @param {String} pubkey - The public identity that has signed the data`
			`* @param {String} hexsignature - A DER signature in hex`
			`* @returns {Function\|Boolean} - If the signature is valid`
			`*/`
			`BitAuth.verifySignature = function(data, pubkey, hexsignature, callback) {`
remove unnecessary buffers, handle non-base58 chars in validateSin, and add postinstall 2014-11-03 10:30:11 -08:00			`var hash = (new hashjs.sha256()).update(data).digest('hex');`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`var signature = new Buffer(hexsignature, 'hex');`
			`var valid = ecdsa.verify(hash, signature, pubkey);`
fixed formatting and docs 2014-11-03 10:44:03 -08:00			`if ( callback )`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`return callback(null, valid);`
fixed formatting and docs 2014-11-03 10:44:03 -08:00			`return valid;`
initial commit 2014-05-27 09:04:57 -07:00			`};`

replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00
			`/**`
			`* Will verify that a SIN is valid`
			`*`
			`* @param {String} sin - A SIN identity`
			`* @returns {Function\|Boolean} - If the SIN identity is valid`
			`*/`
Added feature to validate a SIN 2014-07-16 10:46:49 -07:00			`BitAuth.validateSin = function(sin, callback) {`

fixed formatting and docs 2014-11-03 10:44:03 -08:00			`var pubWithChecksum;`

			`// check for non-base58 characters`
remove unnecessary buffers, handle non-base58 chars in validateSin, and add postinstall 2014-11-03 10:30:11 -08:00			`try {`
fixed formatting and docs 2014-11-03 10:44:03 -08:00			`pubWithChecksum = new Buffer(bs58.decode(sin), 'hex').toString('hex');`
remove unnecessary buffers, handle non-base58 chars in validateSin, and add postinstall 2014-11-03 10:30:11 -08:00			`} catch( err ) {`
fixed formatting and docs 2014-11-03 10:44:03 -08:00			`if ( callback )`
remove unnecessary buffers, handle non-base58 chars in validateSin, and add postinstall 2014-11-03 10:30:11 -08:00			`return callback( err );`
fixed formatting and docs 2014-11-03 10:44:03 -08:00			`return false;`
remove unnecessary buffers, handle non-base58 chars in validateSin, and add postinstall 2014-11-03 10:30:11 -08:00			`}`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00
			`// check the version`
			`if ( pubWithChecksum.slice(0, 4) != '0f02' ) {`
fixed formatting and docs 2014-11-03 10:44:03 -08:00			`if ( callback )`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`return callback(new Error('Invalid prefix or SIN version'));`
Added feature to validate a SIN 2014-07-16 10:46:49 -07:00			`return false;`
			`}`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00
			`// get the checksum`
fixed formatting and docs 2014-11-03 10:44:03 -08:00			`var checksum = pubWithChecksum.slice(pubWithChecksum.length-8,`
			`pubWithChecksum.length);`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`var pubPrefixed = pubWithChecksum.slice(0, pubWithChecksum.length-8);`

			`// two rounds of hashing to generate the checksum`
remove unnecessary buffers, handle non-base58 chars in validateSin, and add postinstall 2014-11-03 10:30:11 -08:00			`var hash1 = (new hashjs.sha256()).update(pubPrefixed, 'hex').digest('hex');`
			`var checksumTotal = (new hashjs.sha256()).update(hash1, 'hex').digest('hex');`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00
			`// check the checksum`
			`if ( checksumTotal.slice(0,8) == checksum ) {`
fixed formatting and docs 2014-11-03 10:44:03 -08:00			`if ( callback )`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`return callback(null);`
fixed formatting and docs 2014-11-03 10:44:03 -08:00			`return true;`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`} else {`
fixed formatting and docs 2014-11-03 10:44:03 -08:00			`if ( callback )`
replace bitcore with elliptic, hashjs and bs58 to produce a smaller browser build 2014-10-28 13:19:02 -07:00			`return callback(new Error('Checksum does not match'));`
			`return false;`
			`}`

Added feature to validate a SIN 2014-07-16 10:46:49 -07:00			`};`

initial commit 2014-05-27 09:04:57 -07:00			`module.exports = BitAuth;`