cut out the first byte of pubkeys.

eslint and minor fixes.
use tiny-secp256k1, updated nip06 and other utils.
2025-12-08 16:28:49 +00:00 · 2021-12-29 15:15:53 -03:00 · 2021-12-29 14:35:28 -03:00 · 2021-12-29 14:29:43 -03:00 · 2021-12-28 20:44:35 -03:00 · 2021-12-18 20:30:58 -03:00
12 changed files with 144 additions and 68 deletions
--- a/.eslintrc.json
+++ b/.eslintrc.json
@@ -1,4 +1,5 @@
 {
+  "root": true,
  "parserOptions": {
    "ecmaVersion": 9,
    "ecmaFeatures": {
--- a/README.md
+++ b/README.md
@@ -67,4 +67,6 @@ pool.addRelay('<url>')
 // will automatically subscribe to the all the events called with .sub above
 ```

+All functions expect bytearrays as hex strings and output bytearrays as hex strings.
+
 For other utils please read the source (for now).
--- a/event.js
+++ b/event.js
@@ -1,7 +1,6 @@
 import {Buffer} from 'buffer'
-import * as secp256k1 from '@noble/secp256k1'
-
-import {sha256} from './utils'
+import createHash from 'create-hash'
+import {signSchnorr, verifySchnorr} from 'tiny-secp256k1'

 export function getBlankEvent() {
  return {
@@ -24,20 +23,24 @@ export function serializeEvent(evt) {
  ])
 }

-export async function getEventHash(event) {
-  let eventHash = await sha256(Buffer.from(serializeEvent(event)))
+export function getEventHash(event) {
+  let eventHash = createHash('sha256')
+    .update(Buffer.from(serializeEvent(event)))
+    .digest()
  return Buffer.from(eventHash).toString('hex')
 }

-export async function verifySignature(event) {
-  return await secp256k1.schnorr.verify(
-    event.sig,
-    await getEventHash(event),
-    event.pubkey
+export function verifySignature(event) {
+  if (event.id !== getEventHash(event)) return false
+  return verifySchnorr(
+    Buffer.from(event.id, 'hex'),
+    Buffer.from(event.pubkey, 'hex'),
+    Buffer.from(event.sig, 'hex')
  )
 }

-export async function signEvent(event, key) {
-  let eventHash = await getEventHash(event)
-  return await secp256k1.schnorr.sign(eventHash, key)
+export function signEvent(event, key) {
+  let eventHash = Buffer.from(getEventHash(event), 'hex')
+  let keyB = Buffer.from(key, 'hex')
+  return Buffer.from(signSchnorr(eventHash, keyB)).toString('hex')
 }
--- a/filter.js
+++ b/filter.js
@@ -0,0 +1,27 @@
+export function matchFilter(filter, event) {
+  if (filter.id && event.id !== filter.id) return false
+  if (filter.kind && event.kind !== filter.kind) return false
+  if (filter.author && event.pubkey !== filter.author) return false
+  if (filter.authors && filter.authors.indexOf(event.pubkey) === -1)
+    return false
+  if (
+    filter['#e'] &&
+    !event.tags.find(([t, v]) => t === 'e' && v === filter['#e'])
+  )
+    return false
+  if (
+    filter['#p'] &&
+    !event.tags.find(([t, v]) => t === 'p' && v === filter['#p'])
+  )
+    return false
+  if (filter.since && event.created_at <= filter.since) return false
+
+  return true
+}
+
+export function matchFilters(filters, event) {
+  for (let i = 0; i < filters.length; i++) {
+    if (matchFilter(filters[i], event)) return true
+  }
+  return false
+}
--- a/index.js
+++ b/index.js
@@ -1,3 +1,4 @@
+import {generatePrivateKey, getPublicKey} from './keys'
 import {relayConnect} from './relay'
 import {relayPool} from './pool'
 import {
@@ -7,17 +8,18 @@ import {
  serializeEvent,
  getEventHash
 } from './event'
-import {makeRandom32, sha256, getPublicKey} from './utils'
+import {matchFilter, matchFilters} from './filter'

 export {
+  generatePrivateKey,
  relayConnect,
  relayPool,
  signEvent,
  verifySignature,
  serializeEvent,
  getEventHash,
-  makeRandom32,
-  sha256,
  getPublicKey,
-  getBlankEvent
+  getBlankEvent,
+  matchFilter,
+  matchFilters
 }
--- a/keys.js
+++ b/keys.js
@@ -0,0 +1,19 @@
+import randomBytes from 'randombytes'
+import {isPrivate, pointFromScalar} from 'tiny-secp256k1'
+
+export function generatePrivateKey() {
+  let i = 8
+  while (i--) {
+    let r32 = Buffer.from(randomBytes(32))
+    if (isPrivate(r32)) return r32.toString('hex')
+  }
+  throw new Error(
+    'Valid private key was not found in 8 iterations. PRNG is broken'
+  )
+}
+
+export function getPublicKey(privateKey) {
+  return Buffer.from(pointFromScalar(Buffer.from(privateKey, 'hex'), true))
+    .toString('hex')
+    .slice(2)
+}
--- a/nip04.js
+++ b/nip04.js
@@ -1,3 +1,4 @@
+import aes from 'browserify-cipher'
 import {Buffer} from 'buffer'
 import randomBytes from 'randombytes'
 import * as secp256k1 from '@noble/secp256k1'
@@ -7,7 +8,7 @@ export function encrypt(privkey, pubkey, text) {
  const normalizedKey = getOnlyXFromFullSharedSecret(key)

  let iv = Uint8Array.from(randomBytes(16))
-  var cipher = crypto.createCipheriv(
+  var cipher = aes.createCipheriv(
    'aes-256-cbc',
    Buffer.from(normalizedKey, 'hex'),
    iv
@@ -22,7 +23,7 @@ export function decrypt(privkey, pubkey, ciphertext, iv) {
  const key = secp256k1.getSharedSecret(privkey, '02' + pubkey)
  const normalizedKey = getOnlyXFromFullSharedSecret(key)

-  var decipher = crypto.createDecipheriv(
+  var decipher = aes.createDecipheriv(
    'aes-256-cbc',
    Buffer.from(normalizedKey, 'hex'),
    Buffer.from(iv, 'base64')
--- a/nip06.js
+++ b/nip06.js
@@ -1,17 +1,27 @@
-import createHmac from 'create-hmac'
-import randomBytes from 'randombytes'
-import * as bip39 from 'bip39'
+import {wordlist} from 'micro-bip39/wordlists/english'
+import {
+  generateMnemonic,
+  mnemonicToSeedSync,
+  validateMnemonic
+} from 'micro-bip39'
+import BIP32Factory from 'bip32'
+import * as ecc from 'tiny-secp256k1'
+
+const bip32 = BIP32Factory(ecc)

 export function privateKeyFromSeed(seed) {
-  let hmac = createHmac('sha512', Buffer.from('Nostr seed', 'utf8'))
-  hmac.update(seed)
-  return hmac.digest().slice(0, 32).toString('hex')
+  let root = bip32.fromSeed(Buffer.from(seed, 'hex'))
+  return root.derivePath(`m/44'/1237'/0'/0'`).privateKey.toString('hex')
 }

 export function seedFromWords(mnemonic) {
-  return bip39.mnemonicToSeedSync(mnemonic)
+  return Buffer.from(mnemonicToSeedSync(mnemonic, wordlist)).toString('hex')
 }

 export function generateSeedWords() {
-  return bip39.entropyToMnemonic(randomBytes(16).toString('hex'))
+  return generateMnemonic(wordlist)
+}
+
+export function validateWords(words) {
+  return validateMnemonic(words, wordlist)
 }
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
  "name": "nostr-tools",
-  "version": "0.9.1",
+  "version": "0.12.3",
  "description": "Tools for making a Nostr client.",
  "repository": {
    "type": "git",
@@ -8,11 +8,14 @@
  },
  "dependencies": {
    "@noble/secp256k1": "^1.3.0",
-    "bip39": "^3.0.4",
-    "buffer": "^6.0.3",
-    "create-hmac": "^1.1.7",
+    "bip32": "^3.0.1",
+    "browserify-cipher": ">=1",
+    "buffer": ">=5",
+    "create-hash": "^1.2.0",
    "dns-packet": "^5.2.4",
-    "randombytes": "^2.1.0",
+    "micro-bip39": "^0.1.3",
+    "randombytes": ">=2",
+    "tiny-secp256k1": "^2.1.2",
    "websocket-polyfill": "^0.0.3"
  },
  "keywords": [
@@ -26,5 +29,9 @@
    "censorship",
    "censorship-resistance",
    "client"
-  ]
+  ],
+  "devDependencies": {
+    "eslint": "^8.5.0",
+    "eslint-plugin-babel": "^5.3.1"
+  }
 }
--- a/pool.js
+++ b/pool.js
@@ -3,7 +3,6 @@ import {relayConnect, normalizeRelayURL} from './relay'

 export function relayPool(globalPrivateKey) {
  const relays = {}
-  const globalSub = []
  const noticeCallbacks = []

  function propagateNotice(notice, relayURL) {
@@ -28,29 +27,34 @@ export function relayPool(globalPrivateKey) {
    const activeCallback = cb
    const activeFilters = filter

-    activeSubscriptions[id] = {
-      sub: ({cb = activeCallback, filter = activeFilters}) => {
-        Object.entries(subControllers).map(([relayURL, sub]) => [
-          relayURL,
-          sub.sub({cb, filter}, id)
-        ])
-        return activeSubscriptions[id]
-      },
-      addRelay: relay => {
-        subControllers[relay.url] = relay.sub({cb, filter}, id)
-        return activeSubscriptions[id]
-      },
-      removeRelay: relayURL => {
-        if (relayURL in subControllers) {
-          subControllers[relayURL].unsub()
-          if (Object.keys(subControllers).length === 0) unsub()
-        }
-        return activeSubscriptions[id]
-      },
-      unsub: () => {
-        Object.values(subControllers).forEach(sub => sub.unsub())
-        delete activeSubscriptions[id]
+    const unsub = () => {
+      Object.values(subControllers).forEach(sub => sub.unsub())
+      delete activeSubscriptions[id]
+    }
+    const sub = ({cb = activeCallback, filter = activeFilters}) => {
+      Object.entries(subControllers).map(([relayURL, sub]) => [
+        relayURL,
+        sub.sub({cb, filter}, id)
+      ])
+      return activeSubscriptions[id]
+    }
+    const addRelay = relay => {
+      subControllers[relay.url] = relay.sub({cb, filter}, id)
+      return activeSubscriptions[id]
+    }
+    const removeRelay = relayURL => {
+      if (relayURL in subControllers) {
+        subControllers[relayURL].unsub()
+        if (Object.keys(subControllers).length === 0) unsub()
      }
+      return activeSubscriptions[id]
+    }
+
+    activeSubscriptions[id] = {
+      sub,
+      unsub,
+      addRelay,
+      removeRelay
    }

    return activeSubscriptions[id]
@@ -95,11 +99,12 @@ export function relayPool(globalPrivateKey) {
      if (index !== -1) noticeCallbacks.splice(index, 1)
    },
    async publish(event, statusCallback = (status, relayURL) => {}) {
+      event.id = await getEventHash(event)
+
      if (!event.sig) {
        event.tags = event.tags || []

        if (globalPrivateKey) {
-          event.id = await getEventHash(event)
          event.sig = await signEvent(event, globalPrivateKey)
        } else {
          throw new Error(
--- a/relay.js
+++ b/relay.js
@@ -1,6 +1,9 @@
+/* global WebSocket */
+
 import 'websocket-polyfill'

 import {verifySignature} from './event'
+import {matchFilters} from './filter'

 export function normalizeRelayURL(url) {
  let [host, ...qs] = url.split('?')
@@ -88,10 +91,12 @@ export function relayConnect(url, onNotice) {
          let channel = data[1]
          let event = data[2]

-          if (await verifySignature(event)) {
-            if (channels[channel]) {
-              channels[channel](event)
-            }
+          if (
+            (await verifySignature(event)) &&
+            channels[channel] &&
+            matchFilters(openSubs[channel], event)
+          ) {
+            channels[channel](event)
          }
          return
        }
@@ -145,7 +150,7 @@ export function relayConnect(url, onNotice) {
      try {
        await trySend(['EVENT', event])
        statusCallback(0)
-        let {unsub} = relay.sub(
+        let {unsub} = sub(
          {
            cb: () => {
              statusCallback(1)
--- a/utils.js
+++ b/utils.js
@@ -1,6 +0,0 @@
-import * as secp256k1 from '@noble/secp256k1'
-
-export const makeRandom32 = () => secp256k1.utils.randomPrivateKey()
-export const sha256 = m => secp256k1.utils.sha256(Uint8Array.from(m))
-export const getPublicKey = privateKey =>
-  secp256k1.schnorr.getPublicKey(privateKey)
Author	SHA1	Message	Date
fiatjaf	800beb37f1	cut out the first byte of pubkeys.	2021-12-29 15:15:53 -03:00
fiatjaf	6d4916e6f7	eslint and minor fixes.	2021-12-29 14:35:28 -03:00
fiatjaf	60fc0d7940	use tiny-secp256k1, updated nip06 and other utils.	2021-12-29 14:29:43 -03:00
fiatjaf	faa308049f	always add event.id	2021-12-28 20:44:35 -03:00
fiatjaf	7b0220c1b8	use browserify-cipher for aes. it seems everybody was including this by default before, but now webpack and others are not.	2021-12-18 20:30:58 -03:00
fiatjaf	d8eee25e3a	another typo: null != undefined.	2021-12-14 22:06:31 -03:00
fiatjaf	d5e93e0c30	fix a typo in matchFilter function.	2021-12-14 22:02:56 -03:00
fiatjaf	fff31b5ff4	automatically run received events through the filters they should pass (double-check the work made by the relay).	2021-12-14 22:00:42 -03:00
fiatjaf	cd7ffb8911	add local event filter functions.	2021-12-14 21:56:07 -03:00