keejef
/
session-desktop
mirror of https://github.com/oxen-io/session-desktop
2
0
Fork 0
Code Issues 8 Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
unstable
feature/update-crowdin-translations
master
audit2
show
audit
v1.9.1
v1.9.0
v1.8.6
v1.8.5
v1.8.4
v1.8.3
v1.8.2
v1.8.1
v1.8.0
v1.7.9
v1.7.8
v1.7.7
v1.7.6
v1.7.5
v1.7.4
v1.7.3
v1.7.2
v1.7.1
v1.7.0
v1.6.9
v1.6.8
v1.6.7
v1.6.6
v1.6.5
v1.6.4
v1.6.3
v1.6.2
v1.6.11
v1.6.10
v1.6.1
v1.6.0
v1.5.5
v1.5.4
v1.5.3
v1.5.2
v1.5.1
v1.5.0
v1.4.9
v1.4.8
v1.4.7
v1.4.6
v1.4.5
v1.4.4
v1.4.3
v1.4.2
v1.4.11
v1.4.10
v1.4.1
v1.4.0
v1.3.1
v1.3.0
v1.2.1
v1.2.0
v1.14.3
v1.14.2
v1.14.1
v1.14.0
v1.13.2
v1.13.1
v1.13.0
v1.12.5
v1.12.4
v1.12.3
v1.12.2
v1.12.1
v1.12.0
v1.11.5
v1.11.4
v1.11.3
v1.11.2
v1.11.1
v1.11.0
v1.10.8
v1.10.7
v1.10.6
v1.10.5
v1.10.4
v1.10.3
v1.10.2
v1.10.1
v1.10.0
v1.1.2
v1.1.1
v1.0.9
v1.0.8
v1.0.7
v1.0.6
v1.0.5
v1.0.4
v1.0.3
v1.0.2
v1.0.1
v1.0.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '07097b029d'
${ noResults }
session-desktop/ts/session/utils/SodiumUtils.ts

64 lines
2.1 KiB
TypeScript
Raw Normal View History Unescape Escape

Id blinding + onionv4 + new endpoints for sogs and fileserver (#2347) * Added Onionv4 support to file server, sogs and pn server * Added blinded message support * Updated endpoints for sogs and file server to remove legacy ones
3 years ago
import { from_hex } from 'libsodium-wrappers-sumo';
import { concatUInt8Array, LibSodiumWrappers } from '../crypto';
export function generateBlindingFactor(serverPk: string, sodium: LibSodiumWrappers) {
const hexServerPk = from_hex(serverPk);
const serverPkHash = sodium.crypto_generichash(64, hexServerPk);
if (!serverPkHash.length) {
throw new Error('generateBlindingFactor: crypto_generichash failed');
}
// Reduce the server public key into an ed25519 scalar (`k`)
const k = sodium.crypto_core_ed25519_scalar_reduce(serverPkHash);
return k;
}
export function combineKeys(
lhsKeyBytes: Uint8Array,
rhsKeyBytes: Uint8Array,
sodium: LibSodiumWrappers
) {
return sodium.crypto_scalarmult_ed25519_noclamp(lhsKeyBytes, rhsKeyBytes);
}
// Calculate a shared secret for a message from A to B:
//
// BLAKE2b(a kB || kA || kB)
//
Fix typos via codespell
3 years ago
// The receiver can calculate the same value via:
Id blinding + onionv4 + new endpoints for sogs and fileserver (#2347) * Added Onionv4 support to file server, sogs and pn server * Added blinded message support * Updated endpoints for sogs and file server to remove legacy ones
3 years ago
//
// BLAKE2b(b kA || kA || kB)
export function sharedBlindedEncryptionKey({
fromBlindedPublicKey,
otherBlindedPublicKey,
secretKey,
sodium,
toBlindedPublicKey,
}: {
secretKey: Uint8Array;
otherBlindedPublicKey: Uint8Array;
fromBlindedPublicKey: Uint8Array;
toBlindedPublicKey: Uint8Array;
sodium: LibSodiumWrappers;
}) {
const aBytes = generatePrivateKeyScalar(secretKey, sodium);
const combinedKeyBytes = combineKeys(aBytes, otherBlindedPublicKey, sodium);
return sodium.crypto_generichash(
32,
concatUInt8Array(combinedKeyBytes, fromBlindedPublicKey, toBlindedPublicKey)
);
}
// Calculate k*a. To get 'a' (the Ed25519 private key scalar) we call the sodium function to
// convert to an *x* secret key, which seems wrong--but isn't because converted keys use the
// same secret scalar secret (and so this is just the most convenient way to get 'a' out of
// a sodium Ed25519 secret key)
export function generatePrivateKeyScalar(secretKey: Uint8Array, sodium: LibSodiumWrappers) {
return sodium.crypto_sign_ed25519_sk_to_curve25519(secretKey);
}
export function toX25519(ed25519PublicKey: Uint8Array, sodium: LibSodiumWrappers) {
return sodium.crypto_sign_ed25519_pk_to_curve25519(ed25519PublicKey);
}