keejef
/
session-desktop
mirror of https://github.com/oxen-io/session-desktop
2
0
Fork 0
Code Issues 8 Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
unstable
feature/update-crowdin-translations
master
audit2
show
audit
v1.9.1
v1.9.0
v1.8.6
v1.8.5
v1.8.4
v1.8.3
v1.8.2
v1.8.1
v1.8.0
v1.7.9
v1.7.8
v1.7.7
v1.7.6
v1.7.5
v1.7.4
v1.7.3
v1.7.2
v1.7.1
v1.7.0
v1.6.9
v1.6.8
v1.6.7
v1.6.6
v1.6.5
v1.6.4
v1.6.3
v1.6.2
v1.6.11
v1.6.10
v1.6.1
v1.6.0
v1.5.5
v1.5.4
v1.5.3
v1.5.2
v1.5.1
v1.5.0
v1.4.9
v1.4.8
v1.4.7
v1.4.6
v1.4.5
v1.4.4
v1.4.3
v1.4.2
v1.4.11
v1.4.10
v1.4.1
v1.4.0
v1.3.1
v1.3.0
v1.2.1
v1.2.0
v1.14.3
v1.14.2
v1.14.1
v1.14.0
v1.13.2
v1.13.1
v1.13.0
v1.12.5
v1.12.4
v1.12.3
v1.12.2
v1.12.1
v1.12.0
v1.11.5
v1.11.4
v1.11.3
v1.11.2
v1.11.1
v1.11.0
v1.10.8
v1.10.7
v1.10.6
v1.10.5
v1.10.4
v1.10.3
v1.10.2
v1.10.1
v1.10.0
v1.1.2
v1.1.1
v1.0.9
v1.0.8
v1.0.7
v1.0.6
v1.0.5
v1.0.4
v1.0.3
v1.0.2
v1.0.1
v1.0.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '8fa9b80fad'
${ noResults }
session-desktop/ts/session/utils/SodiumUtils.ts

64 lines
2.1 KiB
TypeScript
Raw Blame History

import { from_hex } from 'libsodium-wrappers-sumo';
import { concatUInt8Array, LibSodiumWrappers } from '../crypto';
export function generateBlindingFactor(serverPk: string, sodium: LibSodiumWrappers) {
const hexServerPk = from_hex(serverPk);
const serverPkHash = sodium.crypto_generichash(64, hexServerPk);
if (!serverPkHash.length) {
throw new Error('generateBlindingFactor: crypto_generichash failed');
}
// Reduce the server public key into an ed25519 scalar (`k`)
const k = sodium.crypto_core_ed25519_scalar_reduce(serverPkHash);
return k;
}
export function combineKeys(
lhsKeyBytes: Uint8Array,
rhsKeyBytes: Uint8Array,
sodium: LibSodiumWrappers
) {
return sodium.crypto_scalarmult_ed25519_noclamp(lhsKeyBytes, rhsKeyBytes);
}
// Calculate a shared secret for a message from A to B:
//
// BLAKE2b(a kB || kA || kB)
//
// The receiver can calculate the same value via:
//
// BLAKE2b(b kA || kA || kB)
export function sharedBlindedEncryptionKey({
fromBlindedPublicKey,
otherBlindedPublicKey,
secretKey,
sodium,
toBlindedPublicKey,
}: {
secretKey: Uint8Array;
otherBlindedPublicKey: Uint8Array;
fromBlindedPublicKey: Uint8Array;
toBlindedPublicKey: Uint8Array;
sodium: LibSodiumWrappers;
}) {
const aBytes = generatePrivateKeyScalar(secretKey, sodium);
const combinedKeyBytes = combineKeys(aBytes, otherBlindedPublicKey, sodium);
return sodium.crypto_generichash(
32,
concatUInt8Array(combinedKeyBytes, fromBlindedPublicKey, toBlindedPublicKey)
);
}
// Calculate k*a. To get 'a' (the Ed25519 private key scalar) we call the sodium function to
// convert to an *x* secret key, which seems wrong--but isn't because converted keys use the
// same secret scalar secret (and so this is just the most convenient way to get 'a' out of
// a sodium Ed25519 secret key)
export function generatePrivateKeyScalar(secretKey: Uint8Array, sodium: LibSodiumWrappers) {
return sodium.crypto_sign_ed25519_sk_to_curve25519(secretKey);
}
export function toX25519(ed25519PublicKey: Uint8Array, sodium: LibSodiumWrappers) {
return sodium.crypto_sign_ed25519_pk_to_curve25519(ed25519PublicKey);
}
Reference in New Issue View Git Blame Copy Permalink