nip04 string key is actually x and y, so we must get only 32 bytes of x.

fix previous commit because noble is returning different values depending on [unknown], sometimes uint8array, sometimes hex.
encrypt uint8array to hex.
2025-12-08 16:28:49 +00:00 · 2022-01-25 16:25:10 -03:00 · 2022-01-25 15:41:49 -03:00 · 2022-01-24 21:00:51 -03:00 · 2022-01-24 20:21:26 -03:00 · 2022-01-17 17:12:48 -03:00
3 changed files with 18 additions and 9 deletions
--- a/nip04.js
+++ b/nip04.js
@@ -5,7 +5,7 @@ import * as secp256k1 from '@noble/secp256k1'
 export function encrypt(privkey, pubkey, text) {
  const key = secp256k1.getSharedSecret(privkey, '02' + pubkey)
-  const normalizedKey = getOnlyXFromFullSharedSecret(key)
+  const normalizedKey = getNormalizedX(key)
  let iv = Uint8Array.from(randomBytes(16))
  var cipher = aes.createCipheriv(
@@ -16,24 +16,27 @@ export function encrypt(privkey, pubkey, text) {
  let encryptedMessage = cipher.update(text, 'utf8', 'base64')
  encryptedMessage += cipher.final('base64')
-  return [encryptedMessage, Buffer.from(iv.buffer).toString('base64')]
+  return `${encryptedMessage}?iv=${Buffer.from(iv.buffer).toString('base64')}`
 }
-export function decrypt(privkey, pubkey, ciphertext, iv) {
+export function decrypt(privkey, pubkey, ciphertext) {
-  const key = secp256k1.getSharedSecret(privkey, '02' + pubkey)
+  let [cip, iv] = ciphertext.split('?iv=')
-  const normalizedKey = getOnlyXFromFullSharedSecret(key)
+  let key = secp256k1.getSharedSecret(privkey, '02' + pubkey)
  let normalizedKey = getNormalizedX(key)
  var decipher = aes.createDecipheriv(
    'aes-256-cbc',
    Buffer.from(normalizedKey, 'hex'),
    Buffer.from(iv, 'base64')
  )
-  let decryptedMessage = decipher.update(ciphertext, 'base64')
+  let decryptedMessage = decipher.update(cip, 'base64')
  decryptedMessage += decipher.final('utf8')
  return decryptedMessage
 }
-function getOnlyXFromFullSharedSecret(fullSharedSecretCoordinates) {
+function getNormalizedX(key) {
-  return fullSharedSecretCoordinates.substr(2, 64)
+  return typeof key === 'string'
    ? key.substr(2, 64)
    : Buffer.from(key.slice(1)).toString('hex')
 }
--- a/nip05.js
+++ b/nip05.js
@@ -15,6 +15,12 @@ export async function searchDomain(domain, query = '') {
 export async function queryName(fullname) {
  try {
    let [name, domain] = fullname.split('@')
    if (!domain) {
      domain = name
      name = '_'
    }
    let res = await (
      await fetch(`https://${domain}/.well-known/nostr.json?name=${name}`)
    ).json()
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
  "name": "nostr-tools",
-  "version": "0.20.0",
+  "version": "0.21.3",
  "description": "Tools for making a Nostr client.",
  "repository": {
    "type": "git",
Author	SHA1	Message	Date
fiatjaf	0396db5ed6	nip04 string key is actually x and y, so we must get only 32 bytes of x.	2022-01-25 16:25:10 -03:00
fiatjaf	0c8e7a74f5	fix previous commit because noble is returning different values depending on [unknown], sometimes uint8array, sometimes hex.	2022-01-25 15:41:49 -03:00
fiatjaf	c66a2acda1	encrypt uint8array to hex.	2022-01-24 21:00:51 -03:00
fiatjaf	6f07c756e5	change nip04 functions interfaces.	2022-01-24 20:21:26 -03:00
fiatjaf	f6bcda8d8d	support _ names in nip05.	2022-01-17 17:12:48 -03:00