RanchiMall/fcoin
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
e52eebd652
fcoin/lib/wallet/masterkey.js
Christopher Jeffrey 4e7df6ef87
docs: get jsdoc compiling again.
2017-02-03 22:47:26 -08:00

621 lines
12 KiB
JavaScript
Raw Blame History

/*!
* masterkey.js - master bip32 key object for bcoin
* Copyright (c) 2014-2017, Christopher Jeffrey (MIT License).
* https://github.com/bcoin-org/bcoin
*/
'use strict';
var assert = require('assert');
var util = require('../utils/util');
var Lock = require('../utils/lock');
var co = require('../utils/co');
var crypto = require('../crypto/crypto');
var BufferReader = require('../utils/reader');
var StaticWriter = require('../utils/staticwriter');
var encoding = require('../utils/encoding');
var HD = require('../hd/hd');
/**
* Master BIP32 key which can exist
* in a timed out encrypted state.
* @alias module:wallet.MasterKey
* @constructor
* @param {Object} options
*/
function MasterKey(options) {
if (!(this instanceof MasterKey))
return new MasterKey(options);
this.encrypted = false;
this.iv = null;
this.ciphertext = null;
this.key = null;
this.alg = MasterKey.alg.PBKDF2;
this.N = 50000;
this.r = 0;
this.p = 0;
this.aesKey = null;
this.timer = null;
this.until = 0;
this._onTimeout = this.lock.bind(this);
this.locker = new Lock();
if (options)
this.fromOptions(options);
}
/**
* Key derivation salt.
* @const {Buffer}
* @default
*/
MasterKey.SALT = new Buffer('bcoin', 'ascii');
/**
* Key derivation algorithms.
* @enum {Number}
* @default
*/
MasterKey.alg = {
PBKDF2: 0,
SCRYPT: 1
};
/**
* Key derivation algorithms by value.
* @enum {String}
* @default
*/
MasterKey.algByVal = {
0: 'PBKDF2',
1: 'SCRYPT'
};
/**
* Inject properties from options object.
* @private
* @param {Object} options
*/
MasterKey.prototype.fromOptions = function fromOptions(options) {
assert(options);
if (options.encrypted != null) {
assert(typeof options.encrypted === 'boolean');
this.encrypted = options.encrypted;
}
if (options.iv) {
assert(Buffer.isBuffer(options.iv));
this.iv = options.iv;
}
if (options.ciphertext) {
assert(Buffer.isBuffer(options.ciphertext));
this.ciphertext = options.ciphertext;
}
if (options.key) {
assert(HD.isHD(options.key));
this.key = options.key;
}
if (options.alg != null) {
if (typeof options.alg === 'string') {
this.alg = MasterKey.alg[options.alg.toUpperCase()];
assert(this.alg != null, 'Unknown algorithm.');
} else {
assert(typeof options.alg === 'number');
assert(MasterKey.algByVal[options.alg]);
this.alg = options.alg;
}
}
if (options.rounds != null) {
assert(util.isNumber(options.rounds));
this.N = options.rounds;
}
if (options.N != null) {
assert(util.isNumber(options.N));
this.N = options.N;
}
if (options.r != null) {
assert(util.isNumber(options.r));
this.r = options.r;
}
if (options.p != null) {
assert(util.isNumber(options.p));
this.p = options.p;
}
assert(this.encrypted ? !this.key : this.key);
return this;
};
/**
* Instantiate master key from options.
* @returns {MasterKey}
*/
MasterKey.fromOptions = function fromOptions(options) {
return new MasterKey().fromOptions(options);
};
/**
* Decrypt the key and set a timeout to destroy decrypted data.
* @param {Buffer|String} passphrase - Zero this yourself.
* @param {Number} [timeout=60000] timeout in ms.
* @returns {Promise} - Returns {@link HDPrivateKey}.
*/
MasterKey.prototype.unlock = co(function* _unlock(passphrase, timeout) {
var unlock = yield this.locker.lock();
try {
return yield this._unlock(passphrase, timeout);
} finally {
unlock();
}
});
/**
* Decrypt the key without a lock.
* @private
* @param {Buffer|String} passphrase - Zero this yourself.
* @param {Number} [timeout=60000] timeout in ms.
* @returns {Promise} - Returns {@link HDPrivateKey}.
*/
MasterKey.prototype._unlock = co(function* _unlock(passphrase, timeout) {
var data, key;
if (this.key) {
if (this.encrypted) {
assert(this.timer != null);
this.start(timeout);
}
return this.key;
}
if (!passphrase)
throw new Error('No passphrase.');
assert(this.encrypted);
key = yield this.derive(passphrase);
data = crypto.decipher(this.ciphertext, key, this.iv);
this.key = HD.fromExtended(data);
this.start(timeout);
this.aesKey = key;
return this.key;
});
/**
* Start the destroy timer.
* @private
* @param {Number} [timeout=60000] timeout in ms.
*/
MasterKey.prototype.start = function start(timeout) {
if (!timeout)
timeout = 60;
this.stop();
if (timeout === -1)
return;
this.until = util.now() + timeout;
this.timer = setTimeout(this._onTimeout, timeout * 1000);
};
/**
* Stop the destroy timer.
* @private
*/
MasterKey.prototype.stop = function stop() {
if (this.timer != null) {
clearTimeout(this.timer);
this.timer = null;
this.until = 0;
}
};
/**
* Derive an aes key based on params.
* @param {String|Buffer} passphrase
* @returns {Promise}
*/
MasterKey.prototype.derive = co(function* derive(passwd) {
var salt = MasterKey.SALT;
var N = this.N;
var r = this.r;
var p = this.p;
if (typeof passwd === 'string')
passwd = new Buffer(passwd, 'utf8');
switch (this.alg) {
case MasterKey.alg.PBKDF2:
return yield crypto.pbkdf2Async(passwd, salt, N, 32, 'sha256');
case MasterKey.alg.SCRYPT:
return yield crypto.scryptAsync(passwd, salt, N, r, p, 32);
default:
throw new Error('Unknown algorithm: ' + this.alg);
}
});
/**
* Encrypt data with in-memory aes key.
* @param {Buffer} data
* @param {Buffer} iv
* @returns {Buffer}
*/
MasterKey.prototype.encipher = function encipher(data, iv) {
if (!this.aesKey)
return;
if (typeof iv === 'string')
iv = new Buffer(iv, 'hex');
return crypto.encipher(data, this.aesKey, iv.slice(0, 16));
};
/**
* Decrypt data with in-memory aes key.
* @param {Buffer} data
* @param {Buffer} iv
* @returns {Buffer}
*/
MasterKey.prototype.decipher = function decipher(data, iv) {
if (!this.aesKey)
return;
if (typeof iv === 'string')
iv = new Buffer(iv, 'hex');
return crypto.decipher(data, this.aesKey, iv.slice(0, 16));
};
/**
* Destroy the key by zeroing the
* privateKey and chainCode. Stop
* the timer if there is one.
* @returns {Promise}
*/
MasterKey.prototype.lock = co(function* _lock() {
var unlock = yield this.locker.lock();
try {
return yield this._lock();
} finally {
unlock();
}
});
/**
* Destroy the key by zeroing the
* privateKey and chainCode. Stop
* the timer if there is one.
*/
MasterKey.prototype._lock = function lock() {
if (!this.encrypted) {
assert(this.timer == null);
assert(this.key);
return;
}
this.stop();
if (this.key) {
this.key.destroy(true);
this.key = null;
}
if (this.aesKey) {
crypto.cleanse(this.aesKey);
this.aesKey = null;
}
};
/**
* Destroy the key permanently.
*/
MasterKey.prototype.destroy = co(function* destroy() {
yield this.lock();
this.locker.destroy();
});
/**
* Decrypt the key permanently.
* @param {Buffer|String} passphrase - Zero this yourself.
* @returns {Promise}
*/
MasterKey.prototype.decrypt = co(function* decrypt(passphrase, clean) {
var unlock = yield this.locker.lock();
try {
return yield this._decrypt(passphrase, clean);
} finally {
unlock();
}
});
/**
* Decrypt the key permanently without a lock.
* @private
* @param {Buffer|String} passphrase - Zero this yourself.
* @returns {Promise}
*/
MasterKey.prototype._decrypt = co(function* decrypt(passphrase, clean) {
var key, data;
if (!this.encrypted)
throw new Error('Master key is not encrypted.');
if (!passphrase)
throw new Error('No passphrase provided.');
this._lock();
key = yield this.derive(passphrase);
data = crypto.decipher(this.ciphertext, key, this.iv);
this.key = HD.fromExtended(data);
this.encrypted = false;
this.iv = null;
this.ciphertext = null;
if (!clean) {
crypto.cleanse(key);
return;
}
return key;
});
/**
* Encrypt the key permanently.
* @param {Buffer|String} passphrase - Zero this yourself.
* @returns {Promise}
*/
MasterKey.prototype.encrypt = co(function* encrypt(passphrase, clean) {
var unlock = yield this.locker.lock();
try {
return yield this._encrypt(passphrase, clean);
} finally {
unlock();
}
});
/**
* Encrypt the key permanently without a lock.
* @private
* @param {Buffer|String} passphrase - Zero this yourself.
* @returns {Promise}
*/
MasterKey.prototype._encrypt = co(function* encrypt(passphrase, clean) {
var key, data, iv;
if (this.encrypted)
throw new Error('Master key is already encrypted.');
if (!passphrase)
throw new Error('No passphrase provided.');
data = this.key.toExtended();
iv = crypto.randomBytes(16);
this.stop();
key = yield this.derive(passphrase);
data = crypto.encipher(data, key, iv);
this.key = null;
this.encrypted = true;
this.iv = iv;
this.ciphertext = data;
if (!clean) {
crypto.cleanse(key);
return;
}
return key;
});
/**
* Calculate serialization size.
* @returns {Number}
*/
MasterKey.prototype.getSize = function getSize() {
var size = 0;
if (this.encrypted) {
size += 1;
size += encoding.sizeVarBytes(this.iv);
size += encoding.sizeVarBytes(this.ciphertext);
size += 13;
return size;
}
size += 1;
size += encoding.sizeVarlen(this.key.getExtendedSize());
return size;
};
/**
* Serialize the key in the form of:
* `[enc-flag][iv?][ciphertext?][extended-key?]`
* @returns {Buffer}
*/
MasterKey.prototype.toRaw = function toRaw() {
var size = this.getSize();
var bw = new StaticWriter(size);
if (this.encrypted) {
bw.writeU8(1);
bw.writeVarBytes(this.iv);
bw.writeVarBytes(this.ciphertext);
bw.writeU8(this.alg);
bw.writeU32(this.N);
bw.writeU32(this.r);
bw.writeU32(this.p);
return bw.render();
}
bw.writeU8(0);
bw.writeVarBytes(this.key.toExtended());
return bw.render();
};
/**
* Inject properties from serialized data.
* @private
* @param {Buffer} raw
*/
MasterKey.prototype.fromRaw = function fromRaw(raw) {
var br = new BufferReader(raw);
this.encrypted = br.readU8() === 1;
if (this.encrypted) {
this.iv = br.readVarBytes();
this.ciphertext = br.readVarBytes();
this.alg = br.readU8();
assert(MasterKey.algByVal[this.alg]);
this.N = br.readU32();
this.r = br.readU32();
this.p = br.readU32();
return this;
}
this.key = HD.fromExtended(br.readVarBytes());
return this;
};
/**
* Instantiate master key from serialized data.
* @returns {MasterKey}
*/
MasterKey.fromRaw = function fromRaw(raw) {
return new MasterKey().fromRaw(raw);
};
/**
* Inject properties from an HDPrivateKey.
* @private
* @param {HDPrivateKey} key
*/
MasterKey.prototype.fromKey = function fromKey(key) {
this.encrypted = false;
this.iv = null;
this.ciphertext = null;
this.key = key;
return this;
};
/**
* Instantiate master key from an HDPrivateKey.
* @param {HDPrivateKey} key
* @returns {MasterKey}
*/
MasterKey.fromKey = function fromKey(key) {
return new MasterKey().fromKey(key);
};
/**
* Convert master key to a jsonifiable object.
* @param {Boolean?} unsafe - Whether to include
* the key data in the JSON.
* @returns {Object}
*/
MasterKey.prototype.toJSON = function toJSON(unsafe) {
if (this.encrypted) {
return {
encrypted: true,
until: this.until,
iv: this.iv.toString('hex'),
ciphertext: unsafe ? this.ciphertext.toString('hex') : undefined,
algorithm: MasterKey.algByVal[this.alg].toLowerCase(),
N: this.N,
r: this.r,
p: this.p
};
}
return {
encrypted: false,
key: unsafe ? this.key.toJSON() : undefined
};
};
/**
* Inspect the key.
* @returns {Object}
*/
MasterKey.prototype.inspect = function inspect() {
var json = this.toJSON(true);
if (this.key)
json.key = this.key.toJSON();
return json;
};
/**
* Test whether an object is a MasterKey.
* @param {Object} obj
* @returns {Boolean}
*/
MasterKey.isMasterKey = function isMasterKey(obj) {
return obj
&& typeof obj.encrypted === 'boolean'
&& typeof obj.decrypt === 'function';
};
/*
* Expose
*/
module.exports = MasterKey;
Reference in New Issue View Git Blame Copy Permalink