Add the noble-ecc-wrapper

- Migrate to using only @noble for secp256k1.

angular/src/app/services/wallet-manager.ts

@@ -22,9 +22,7 @@ import { UnspentOutputService } from './unspent-output.service';
 import { AccountStateStore } from 'src/shared/store/account-state-store';
 import { CryptoService } from './';
 import { StandardTokenStore } from '../../shared/store/standard-token-store';
-import * as ecc from 'tiny-secp256k1';
-import ECPairFactory from 'ecpair';
-const ECPair = ECPairFactory(ecc);
+import { ECPair, bip32 } from '../../shared/noble-ecc-wrapper';
 
 let coinselect = require('coinselect');
 let coinsplit = require('coinselect/split');
@@ -333,9 +331,8 @@ export class WalletManager {
       }
 
       try {
-        // TODO: Implement an HDSigner by using @noble and remove last dependency on these EC libraries.
-        const ecPair2 = ECPair.fromPrivateKey(Buffer.from(addressNode.privateKey), { network: network });
-        tx.signInput(i, ecPair2);
+        const ecPair = ECPair.fromPrivateKey(Buffer.from(addressNode.privateKey), { network: network });
+        tx.signInput(i, ecPair);
       } catch (error) {
         this.logger.error(error);
         throw Error('Unable to sign the transaction. Unable to continue.');

angular/src/shared/noble-ecc-wrapper.ts

@@ -0,0 +1,160 @@
+import * as necc from '@noble/secp256k1';
+import { BIP32API, BIP32Factory, BIP32Interface } from 'bip32';
+import createHash from 'create-hash';
+import createHmac from 'create-hmac';
+import { ECPairAPI, ECPairFactory, ECPairInterface } from 'ecpair';
+
+necc.utils.sha256Sync = (...messages: Uint8Array[]): Uint8Array => {
+  const sha256 = createHash('sha256');
+  for (const message of messages) sha256.update(message);
+  return sha256.digest();
+};
+
+necc.utils.hmacSha256Sync = (key: Uint8Array, ...messages: Uint8Array[]): Uint8Array => {
+  const hash = createHmac('sha256', Buffer.from(key));
+  messages.forEach((m) => hash.update(m));
+  return Uint8Array.from(hash.digest());
+};
+
+const normalizePrivateKey = necc.utils._normalizePrivateKey;
+
+const defaultTrue = (param?: boolean): boolean => param !== false;
+
+function throwToNull<Type>(fn: () => Type): Type | null {
+  try {
+    return fn();
+  } catch (e) {
+    return null;
+  }
+}
+
+function isPoint(p: Uint8Array, xOnly: boolean): boolean {
+  if ((p.length === 32) !== xOnly) return false;
+  try {
+    return !!necc.Point.fromHex(p);
+  } catch (e) {
+    return false;
+  }
+}
+
+function hexToNumber(hex) {
+  if (typeof hex !== 'string') {
+    throw new TypeError('hexToNumber: expected string, got ' + typeof hex);
+  }
+  return BigInt(`0x${hex}`);
+}
+
+function bytesToNumber(bytes) {
+  return hexToNumber(necc.utils.bytesToHex(bytes));
+}
+
+function normalizeScalar(scalar) {
+  let num;
+  if (typeof scalar === 'bigint') {
+    num = scalar;
+  } else if (typeof scalar === 'number' && Number.isSafeInteger(scalar) && scalar >= 0) {
+    num = BigInt(scalar);
+  } else if (typeof scalar === 'string') {
+    if (scalar.length !== 64) throw new Error('Expected 32 bytes of private scalar');
+    num = hexToNumber(scalar);
+  } else if (scalar instanceof Uint8Array) {
+    if (scalar.length !== 32) throw new Error('Expected 32 bytes of private scalar');
+    num = bytesToNumber(scalar);
+  } else {
+    throw new TypeError('Expected valid private scalar');
+  }
+  if (num < 0) throw new Error('Expected private scalar >= 0');
+  return num;
+}
+
+function pointAddScalar(p, tweak, isCompressed) {
+  const P = necc.Point.fromHex(p);
+  const t = normalizeScalar(tweak);
+  const Q = necc.Point.BASE.multiplyAndAddUnsafe(P, t, BigInt(1));
+  if (!Q) throw new Error('Tweaked point at infinity');
+  return Q.toRawBytes(isCompressed);
+}
+
+function pointMultiply(p, tweak, isCompressed) {
+  const P = necc.Point.fromHex(p);
+  const h = typeof tweak === 'string' ? tweak : necc.utils.bytesToHex(tweak);
+  const t = BigInt(`0x${h}`);
+  return P.multiply(t).toRawBytes(isCompressed);
+}
+
+function privateAdd(privateKey, tweak) {
+  const p = normalizePrivateKey(privateKey);
+  const t = normalizeScalar(tweak);
+  const add = necc.utils._bigintTo32Bytes(necc.utils.mod(p + t, necc.CURVE.n));
+  if (necc.utils.isValidPrivateKey(add)) return add;
+  else return null;
+}
+
+function privateNegate(privateKey) {
+  const p = normalizePrivateKey(privateKey);
+  const not = necc.utils._bigintTo32Bytes(necc.CURVE.n - p);
+  if (necc.utils.isValidPrivateKey(not)) return not;
+  else return null;
+}
+
+const ecc = {
+  isPoint: (p: Uint8Array): boolean => isPoint(p, false),
+  isPrivate: (d: Uint8Array): boolean => necc.utils.isValidPrivateKey(d),
+  isXOnlyPoint: (p: Uint8Array): boolean => isPoint(p, true),
+
+  xOnlyPointAddTweak: (p: Uint8Array, tweak: Uint8Array): { parity: 0 | 1; xOnlyPubkey: Uint8Array } | null =>
+    throwToNull(() => {
+      const P = pointAddScalar(p, tweak, true);
+      const parity = P[0] % 2 === 1 ? 1 : 0;
+      return { parity, xOnlyPubkey: P.slice(1) };
+    }),
+
+  pointFromScalar: (sk: Uint8Array, compressed?: boolean): Uint8Array | null => throwToNull(() => necc.getPublicKey(sk, defaultTrue(compressed))),
+
+  pointCompress: (p: Uint8Array, compressed?: boolean): Uint8Array => {
+    return necc.Point.fromHex(p).toRawBytes(defaultTrue(compressed));
+  },
+
+  pointMultiply: (a: Uint8Array, tweak: Uint8Array, compressed?: boolean) => throwToNull(() => pointMultiply(a, tweak, defaultTrue(compressed))),
+
+  pointAdd: (a: Uint8Array, b: Uint8Array, compressed?: boolean): Uint8Array | null =>
+    throwToNull(() => {
+      const A = necc.Point.fromHex(a);
+      const B = necc.Point.fromHex(b);
+      return A.add(B).toRawBytes(defaultTrue(compressed));
+    }),
+
+  pointAddScalar: (p: Uint8Array, tweak: Uint8Array, compressed?: boolean) => throwToNull(() => pointAddScalar(p, tweak, defaultTrue(compressed))),
+
+  privateAdd: (d: Uint8Array, tweak: Uint8Array): Uint8Array | null =>
+    throwToNull(() => {
+      const res = privateAdd(d, tweak);
+      // tiny-secp256k1 returns null rather than allowing a 0 private key to be returned
+      // ECPair.testEcc() requires that behavior.
+      if (res?.every((i) => i === 0)) return null;
+      return res;
+    }),
+
+  privateNegate: (d: Uint8Array): Uint8Array => privateNegate(d),
+
+  sign: (h: Uint8Array, d: Uint8Array, e?: Uint8Array): Uint8Array => {
+    return necc.signSync(h, d, { der: false, extraEntropy: e });
+  },
+
+  signSchnorr: (h: Uint8Array, d: Uint8Array, e: Uint8Array = Buffer.alloc(32, 0x00)): Uint8Array => {
+    return necc.schnorr.signSync(h, d, e);
+  },
+
+  verify: (h: Uint8Array, Q: Uint8Array, signature: Uint8Array, strict?: boolean): boolean => {
+    return necc.verify(signature, h, Q, { strict });
+  },
+
+  verifySchnorr: (h: Uint8Array, Q: Uint8Array, signature: Uint8Array): boolean => {
+    return necc.schnorr.verifySync(signature, h, Q);
+  },
+};
+
+const ECPair: ECPairAPI = ECPairFactory(ecc);
+const bip32: BIP32API = BIP32Factory(ecc);
+
+export { ecc, ECPair, ECPairAPI, ECPairInterface, bip32, BIP32API, BIP32Interface };

package.json

@@ -56,7 +56,7 @@
     "@ngx-translate/http-loader": "^7.0.0",
     "@noble/secp256k1": "^1.7.0",
     "@scure/base": "^1.1.1",
-    "@scure/bip32": "^1.1.0",
+    "@scure/bip32": "^1.1.1",
     "@scure/bip39": "^1.1.0",
     "@tbd54566975/dwn-sdk-js": "^0.0.12",
     "@types/qs": "^6.9.7",
@@ -70,11 +70,13 @@
     "buffer": "^6.0.3",
     "cbor": "^8.1.0",
     "coinselect": "^3.1.13",
+    "create-hash": "^1.2.0",
+    "create-hmac": "^1.1.7",
     "crypto-browserify": "^3.12.0",
     "did-jwt": "6.9.0",
     "did-jwt-vc": "3.1.0",
-    "did-resolver": "^4.0.1",
-    "ecpair": "^2.0.1",
+    "did-resolver": "4.0.1",
+    "ecpair": "2.1.0",
     "hammerjs": "^2.0.8",
     "html5-qrcode": "2.2.8",
     "ipfs-unixfs-importer": "^11.0.1",
@@ -87,7 +89,6 @@
     "rxjs": "7.5.6",
     "satcomma": "^1.1.1",
     "stream-browserify": "^3.0.0",
-    "tiny-secp256k1": "^2.2.1",
     "tslib": "2.4.0",
     "uuid": "^9.0.0",
     "webextension-polyfill": "^0.10.0",