MyCrypto/common/libs/signing.ts

import EthTx from 'ethereumjs-tx';
import {
  addHexPrefix,
  ecsign,
  ecrecover,
  sha3,
  hashPersonalMessage,
  toBuffer,
  pubToAddress
} from 'ethereumjs-util';
import { RawTransaction } from 'libs/transaction';
import { isValidRawTx } from 'libs/validators';
import { stripHexPrefixAndLower } from 'libs/values';

export function signRawTxWithPrivKey(
  privKey: Buffer,
  rawTx: RawTransaction
): string {
  if (!isValidRawTx(rawTx)) {
    throw new Error('Invalid raw transaction');
  }

  const eTx = new EthTx(rawTx);
  eTx.sign(privKey);
  return '0x' + eTx.serialize().toString('hex');
}

// adapted from:
// https://github.com/kvhnuke/etherwallet/blob/2a5bc0db1c65906b14d8c33ce9101788c70d3774/app/scripts/controllers/signMsgCtrl.js#L95
export function signMessageWithPrivKeyV2(privKey: Buffer, msg: string): string {
  const hash = hashPersonalMessage(toBuffer(msg));
  const signed = ecsign(hash, privKey);
  const combined = Buffer.concat([
    Buffer.from(signed.r),
    Buffer.from(signed.s),
    Buffer.from([signed.v])
  ]);
  const combinedHex = combined.toString('hex');

  return addHexPrefix(combinedHex);
}

export interface ISignedMessage {
  address: string;
  message: string;
  signature: string;
  version: string;
}

// adapted from:
// https://github.com/kvhnuke/etherwallet/blob/2a5bc0db1c65906b14d8c33ce9101788c70d3774/app/scripts/controllers/signMsgCtrl.js#L118
export function verifySignedMessage({
  address,
  message,
  signature,
  version
}: ISignedMessage) {
  const sig = new Buffer(stripHexPrefixAndLower(signature), 'hex');
  if (sig.length !== 65) {
    return false;
  }
  //TODO: explain what's going on here
  sig[64] = sig[64] === 0 || sig[64] === 1 ? sig[64] + 27 : sig[64];
  const hash =
    version === '2' ? hashPersonalMessage(toBuffer(message)) : sha3(message);
  const pubKey = ecrecover(hash, sig[64], sig.slice(0, 32), sig.slice(32, 64));

  return (
    stripHexPrefixAndLower(address) === pubToAddress(pubKey).toString('hex')
  );
}
Add Promises & Signing to Wallet Classes (#105) * add validation for raw tx * add node module, add signing lib * add tx & message signing, promise everything * remove unnecessary returns * move isValidRawTx to for loop * add & use new type RawTx * implement cleaner promises, reject instead of throw 2017-08-07 20:25:23 -07:00			`import EthTx from 'ethereumjs-tx';`
Sign & Verify Message (#315) * add route and nav tab for new module * add new module to tabs index * add signMessage to wallet interface * add signed message verification, normalize pkey sign * init Sign & Verify Message tab * reorder imports * mock out Trezor * cast to bool instead of length check * normalize ledger sign message * fix broken this context * add commented message signing to trezor wallet * correct var to start on sign tab * remove unused state var * clean up SignMessage classes * clean up VerifyMessage classes, remove unnecessary log * correct event variable types * remove unnecessary exports * remove empty classname * use implicit return * shorten signMessage method * remove unnecessary disable * tweak variable name * make better use of destructuring, remove console log * use destructured var * flatten if statement * add signMessage method to wallet reducer test 2017-10-30 12:10:25 -07:00			`import {`
			`addHexPrefix,`
			`ecsign,`
			`ecrecover,`
			`sha3,`
			`hashPersonalMessage,`
			`toBuffer,`
			`pubToAddress`
			`} from 'ethereumjs-util';`
Migrate to Typescript (#224) * Refactor babel/types * Refactor entry point * Refactor actions * Refactor api * Full project refactor -- Broad type fixing sweep * - completely fix merge conflicts - handle various type errors * Add tslint to package.json * Dependency cleanup * Fix module resolution * Work on type definitions for untyped libs * progress commit * Add more definition typing * various type additions * Add unit types * Fix sagaiterator + unit types * various types added * additional type additions * Fix typing on Sagas * remove flowfixmes; swap translate for translateRaw * Get rid of contracts - awaiting Henry's contract PR * Remove contracts from routing * Fix most of actions/reducers * refactor actions directory structure * fix reducer action type imports * Fix most of type errors pre-actions refactor * fix action creator imports in containers * Refactor more * Refactor index of actions * fix action imports; use module level index export * package-lock.json updated * Use action types in props * Type up action creators * Fix most of connect errors * Typefixing progress * More types * Fix run-time errors * Caching improvements for webpack * Remove path resolve from webpack * Update non-breaking packages to latest version * Fix token typing * Remove unused color code * Fix wallet decrypt dispatch * Set redux-form related props/functions to ANY, since we're stripping it out later on * Revert BigNumber.js package changes * Extend window to custom object for Perf * Format Navigation * Typecase keystore errors as any (since we shouldnt touch this) * Push wallet context fix * - find/replace value->payload in swap - properly type swap state properties - extract inline reducer into reducer function * - type local storage retrieved items as generic * - bind all RPCClient methods with fat arrow * - reformat * Change to enums for constants * Change state into any * Fix swap errors * ensure that seconds are passed into state as integers * Fix rest of errors * use parseInt explicitly instead of type coercion * Fix derivation-checker, remove flow command, add tslint command, add tslint-react, tell travis to use tslint instead of flow. * Whoops, remove those tests. * Remove unsupported (yet) config option. * Fix precommit to target ts and tsx files. * Fix some errors, ignore some silly rules. * Revert jest to v19, use ts-jest and make all tests typescript. Fixes all but one. * Get rid of saga tests * Fix tslint errors 2017-09-24 19:06:28 -07:00			`import { RawTransaction } from 'libs/transaction';`
Add Promises & Signing to Wallet Classes (#105) * add validation for raw tx * add node module, add signing lib * add tx & message signing, promise everything * remove unnecessary returns * move isValidRawTx to for loop * add & use new type RawTx * implement cleaner promises, reject instead of throw 2017-08-07 20:25:23 -07:00			`import { isValidRawTx } from 'libs/validators';`
Sign & Verify Message (#315) * add route and nav tab for new module * add new module to tabs index * add signMessage to wallet interface * add signed message verification, normalize pkey sign * init Sign & Verify Message tab * reorder imports * mock out Trezor * cast to bool instead of length check * normalize ledger sign message * fix broken this context * add commented message signing to trezor wallet * correct var to start on sign tab * remove unused state var * clean up SignMessage classes * clean up VerifyMessage classes, remove unnecessary log * correct event variable types * remove unnecessary exports * remove empty classname * use implicit return * shorten signMessage method * remove unnecessary disable * tweak variable name * make better use of destructuring, remove console log * use destructured var * flatten if statement * add signMessage method to wallet reducer test 2017-10-30 12:10:25 -07:00			`import { stripHexPrefixAndLower } from 'libs/values';`
Add Promises & Signing to Wallet Classes (#105) * add validation for raw tx * add node module, add signing lib * add tx & message signing, promise everything * remove unnecessary returns * move isValidRawTx to for loop * add & use new type RawTx * implement cleaner promises, reject instead of throw 2017-08-07 20:25:23 -07:00
WIP: Generating transaction on Send tab (Pt 1) (#100) * Generating transaction ,placing into read only textareas. * Fix async wallet getAddress cases. * Chain id from network * remove leftover console log * Check balance before generating transaction. * Translate error msgs, check for invalid address. * Errors for gas limit and gas price issues. 2017-08-11 14:54:10 -07:00			`export function signRawTxWithPrivKey(`
			`privKey: Buffer,`
			`rawTx: RawTransaction`
			`): string {`
Add Promises & Signing to Wallet Classes (#105) * add validation for raw tx * add node module, add signing lib * add tx & message signing, promise everything * remove unnecessary returns * move isValidRawTx to for loop * add & use new type RawTx * implement cleaner promises, reject instead of throw 2017-08-07 20:25:23 -07:00			`if (!isValidRawTx(rawTx)) {`
			`throw new Error('Invalid raw transaction');`
			`}`

Migrate to Typescript (#224) * Refactor babel/types * Refactor entry point * Refactor actions * Refactor api * Full project refactor -- Broad type fixing sweep * - completely fix merge conflicts - handle various type errors * Add tslint to package.json * Dependency cleanup * Fix module resolution * Work on type definitions for untyped libs * progress commit * Add more definition typing * various type additions * Add unit types * Fix sagaiterator + unit types * various types added * additional type additions * Fix typing on Sagas * remove flowfixmes; swap translate for translateRaw * Get rid of contracts - awaiting Henry's contract PR * Remove contracts from routing * Fix most of actions/reducers * refactor actions directory structure * fix reducer action type imports * Fix most of type errors pre-actions refactor * fix action creator imports in containers * Refactor more * Refactor index of actions * fix action imports; use module level index export * package-lock.json updated * Use action types in props * Type up action creators * Fix most of connect errors * Typefixing progress * More types * Fix run-time errors * Caching improvements for webpack * Remove path resolve from webpack * Update non-breaking packages to latest version * Fix token typing * Remove unused color code * Fix wallet decrypt dispatch * Set redux-form related props/functions to ANY, since we're stripping it out later on * Revert BigNumber.js package changes * Extend window to custom object for Perf * Format Navigation * Typecase keystore errors as any (since we shouldnt touch this) * Push wallet context fix * - find/replace value->payload in swap - properly type swap state properties - extract inline reducer into reducer function * - type local storage retrieved items as generic * - bind all RPCClient methods with fat arrow * - reformat * Change to enums for constants * Change state into any * Fix swap errors * ensure that seconds are passed into state as integers * Fix rest of errors * use parseInt explicitly instead of type coercion * Fix derivation-checker, remove flow command, add tslint command, add tslint-react, tell travis to use tslint instead of flow. * Whoops, remove those tests. * Remove unsupported (yet) config option. * Fix precommit to target ts and tsx files. * Fix some errors, ignore some silly rules. * Revert jest to v19, use ts-jest and make all tests typescript. Fixes all but one. * Get rid of saga tests * Fix tslint errors 2017-09-24 19:06:28 -07:00			`const eTx = new EthTx(rawTx);`
Add Promises & Signing to Wallet Classes (#105) * add validation for raw tx * add node module, add signing lib * add tx & message signing, promise everything * remove unnecessary returns * move isValidRawTx to for loop * add & use new type RawTx * implement cleaner promises, reject instead of throw 2017-08-07 20:25:23 -07:00			`eTx.sign(privKey);`
			`return '0x' + eTx.serialize().toString('hex');`
			`}`

Sign & Verify Message (#315) * add route and nav tab for new module * add new module to tabs index * add signMessage to wallet interface * add signed message verification, normalize pkey sign * init Sign & Verify Message tab * reorder imports * mock out Trezor * cast to bool instead of length check * normalize ledger sign message * fix broken this context * add commented message signing to trezor wallet * correct var to start on sign tab * remove unused state var * clean up SignMessage classes * clean up VerifyMessage classes, remove unnecessary log * correct event variable types * remove unnecessary exports * remove empty classname * use implicit return * shorten signMessage method * remove unnecessary disable * tweak variable name * make better use of destructuring, remove console log * use destructured var * flatten if statement * add signMessage method to wallet reducer test 2017-10-30 12:10:25 -07:00			`// adapted from:`
			`// https://github.com/kvhnuke/etherwallet/blob/2a5bc0db1c65906b14d8c33ce9101788c70d3774/app/scripts/controllers/signMsgCtrl.js#L95`
			`export function signMessageWithPrivKeyV2(privKey: Buffer, msg: string): string {`
			`const hash = hashPersonalMessage(toBuffer(msg));`
Migrate to Typescript (#224) * Refactor babel/types * Refactor entry point * Refactor actions * Refactor api * Full project refactor -- Broad type fixing sweep * - completely fix merge conflicts - handle various type errors * Add tslint to package.json * Dependency cleanup * Fix module resolution * Work on type definitions for untyped libs * progress commit * Add more definition typing * various type additions * Add unit types * Fix sagaiterator + unit types * various types added * additional type additions * Fix typing on Sagas * remove flowfixmes; swap translate for translateRaw * Get rid of contracts - awaiting Henry's contract PR * Remove contracts from routing * Fix most of actions/reducers * refactor actions directory structure * fix reducer action type imports * Fix most of type errors pre-actions refactor * fix action creator imports in containers * Refactor more * Refactor index of actions * fix action imports; use module level index export * package-lock.json updated * Use action types in props * Type up action creators * Fix most of connect errors * Typefixing progress * More types * Fix run-time errors * Caching improvements for webpack * Remove path resolve from webpack * Update non-breaking packages to latest version * Fix token typing * Remove unused color code * Fix wallet decrypt dispatch * Set redux-form related props/functions to ANY, since we're stripping it out later on * Revert BigNumber.js package changes * Extend window to custom object for Perf * Format Navigation * Typecase keystore errors as any (since we shouldnt touch this) * Push wallet context fix * - find/replace value->payload in swap - properly type swap state properties - extract inline reducer into reducer function * - type local storage retrieved items as generic * - bind all RPCClient methods with fat arrow * - reformat * Change to enums for constants * Change state into any * Fix swap errors * ensure that seconds are passed into state as integers * Fix rest of errors * use parseInt explicitly instead of type coercion * Fix derivation-checker, remove flow command, add tslint command, add tslint-react, tell travis to use tslint instead of flow. * Whoops, remove those tests. * Remove unsupported (yet) config option. * Fix precommit to target ts and tsx files. * Fix some errors, ignore some silly rules. * Revert jest to v19, use ts-jest and make all tests typescript. Fixes all but one. * Get rid of saga tests * Fix tslint errors 2017-09-24 19:06:28 -07:00			`const signed = ecsign(hash, privKey);`
			`const combined = Buffer.concat([`
Add Promises & Signing to Wallet Classes (#105) * add validation for raw tx * add node module, add signing lib * add tx & message signing, promise everything * remove unnecessary returns * move isValidRawTx to for loop * add & use new type RawTx * implement cleaner promises, reject instead of throw 2017-08-07 20:25:23 -07:00			`Buffer.from(signed.r),`
			`Buffer.from(signed.s),`
			`Buffer.from([signed.v])`
			`]);`
Migrate to Typescript (#224) * Refactor babel/types * Refactor entry point * Refactor actions * Refactor api * Full project refactor -- Broad type fixing sweep * - completely fix merge conflicts - handle various type errors * Add tslint to package.json * Dependency cleanup * Fix module resolution * Work on type definitions for untyped libs * progress commit * Add more definition typing * various type additions * Add unit types * Fix sagaiterator + unit types * various types added * additional type additions * Fix typing on Sagas * remove flowfixmes; swap translate for translateRaw * Get rid of contracts - awaiting Henry's contract PR * Remove contracts from routing * Fix most of actions/reducers * refactor actions directory structure * fix reducer action type imports * Fix most of type errors pre-actions refactor * fix action creator imports in containers * Refactor more * Refactor index of actions * fix action imports; use module level index export * package-lock.json updated * Use action types in props * Type up action creators * Fix most of connect errors * Typefixing progress * More types * Fix run-time errors * Caching improvements for webpack * Remove path resolve from webpack * Update non-breaking packages to latest version * Fix token typing * Remove unused color code * Fix wallet decrypt dispatch * Set redux-form related props/functions to ANY, since we're stripping it out later on * Revert BigNumber.js package changes * Extend window to custom object for Perf * Format Navigation * Typecase keystore errors as any (since we shouldnt touch this) * Push wallet context fix * - find/replace value->payload in swap - properly type swap state properties - extract inline reducer into reducer function * - type local storage retrieved items as generic * - bind all RPCClient methods with fat arrow * - reformat * Change to enums for constants * Change state into any * Fix swap errors * ensure that seconds are passed into state as integers * Fix rest of errors * use parseInt explicitly instead of type coercion * Fix derivation-checker, remove flow command, add tslint command, add tslint-react, tell travis to use tslint instead of flow. * Whoops, remove those tests. * Remove unsupported (yet) config option. * Fix precommit to target ts and tsx files. * Fix some errors, ignore some silly rules. * Revert jest to v19, use ts-jest and make all tests typescript. Fixes all but one. * Get rid of saga tests * Fix tslint errors 2017-09-24 19:06:28 -07:00			`const combinedHex = combined.toString('hex');`
Add Promises & Signing to Wallet Classes (#105) * add validation for raw tx * add node module, add signing lib * add tx & message signing, promise everything * remove unnecessary returns * move isValidRawTx to for loop * add & use new type RawTx * implement cleaner promises, reject instead of throw 2017-08-07 20:25:23 -07:00
Sign & Verify Message (#315) * add route and nav tab for new module * add new module to tabs index * add signMessage to wallet interface * add signed message verification, normalize pkey sign * init Sign & Verify Message tab * reorder imports * mock out Trezor * cast to bool instead of length check * normalize ledger sign message * fix broken this context * add commented message signing to trezor wallet * correct var to start on sign tab * remove unused state var * clean up SignMessage classes * clean up VerifyMessage classes, remove unnecessary log * correct event variable types * remove unnecessary exports * remove empty classname * use implicit return * shorten signMessage method * remove unnecessary disable * tweak variable name * make better use of destructuring, remove console log * use destructured var * flatten if statement * add signMessage method to wallet reducer test 2017-10-30 12:10:25 -07:00			`return addHexPrefix(combinedHex);`
			`}`

			`export interface ISignedMessage {`
			`address: string;`
			`message: string;`
			`signature: string;`
			`version: string;`
			`}`

			`// adapted from:`
			`// https://github.com/kvhnuke/etherwallet/blob/2a5bc0db1c65906b14d8c33ce9101788c70d3774/app/scripts/controllers/signMsgCtrl.js#L118`
			`export function verifySignedMessage({`
			`address,`
			`message,`
			`signature,`
			`version`
			`}: ISignedMessage) {`
			`const sig = new Buffer(stripHexPrefixAndLower(signature), 'hex');`
			`if (sig.length !== 65) {`
			`return false;`
			`}`
			`//TODO: explain what's going on here`
			`sig[64] = sig[64] === 0 \|\| sig[64] === 1 ? sig[64] + 27 : sig[64];`
			`const hash =`
			`version === '2' ? hashPersonalMessage(toBuffer(message)) : sha3(message);`
			`const pubKey = ecrecover(hash, sig[64], sig.slice(0, 32), sig.slice(32, 64));`

			`return (`
			`stripHexPrefixAndLower(address) === pubToAddress(pubKey).toString('hex')`
			`);`
Add Promises & Signing to Wallet Classes (#105) * add validation for raw tx * add node module, add signing lib * add tx & message signing, promise everything * remove unnecessary returns * move isValidRawTx to for loop * add & use new type RawTx * implement cleaner promises, reject instead of throw 2017-08-07 20:25:23 -07:00			`}`