How to use the sodium-native.crypto_sign_SECRETKEYBYTES function in sodium-native
To help you get started, we’ve selected a few sodium-native examples, based on popular ways it is used in public projects.
Secure your code as it's written. Use Snyk Code to scan source code in minutes - no build needed - and fix issues immediately.
chm-diederichs / minisign / test / extract-secret-key.js View on Github 
fs.readFile('./test/fixtures/no-string.pub', function (err, PK) {
t.error(err)
var publicKeyID = minisign.parsePubKey(PK).keyID
t.equal(SKdetails.secretKey.byteLength, sodium.crypto_sign_SECRETKEYBYTES)
t.deepEqual(SKdetails.keyID, publicKeyID)
t.equal(SKdetails.signatureAlgorithm, 'Ed')
t.end()
})
})fs.readFile('./test/fixtures/emoji-string.pub', function (err, PK) {
t.error(err)
var publicKeyID = minisign.parsePubKey(PK).keyID
t.equal(SKdetails.secretKey.byteLength, sodium.crypto_sign_SECRETKEYBYTES)
t.deepEqual(SKdetails.keyID, publicKeyID)
t.equal(SKdetails.signatureAlgorithm, 'Ed')
t.end()
})
})assert(remoteKey.byteLength === sodium.crypto_kx_PUBLICKEYBYTES)
assert(message.byteLength <= 1000)
var self = this
var rendevousPoint = Buffer.allocUnsafe(sodium.crypto_kx_SESSIONKEYBYTES)
sodium.crypto_kx_server_session_keys(
rendevousPoint,
null,
self.keypair.publicKey,
self.keypair.secretKey,
remoteKey
)
var discoveryPk = Buffer.alloc(sodium.crypto_sign_PUBLICKEYBYTES)
var discoverySk = sodium.sodium_malloc(sodium.crypto_sign_SECRETKEYBYTES)
sodium.crypto_sign_seed_keypair(discoveryPk, discoverySk, rendevousPoint)
self.dht.put({
v: message,
k: discoveryPk,
seq: 0,
sign: function (buf) {
var sig = Buffer.alloc(sodium.crypto_sign_BYTES)
sodium.crypto_sign_detached(sig, buf, discoverySk)
return sig
}
}, cb)
}function extractSecretKey (pwd, parsedSK) {
var kdfOutput = Buffer.alloc(104)
var keynumInfo
var sumCheck = Buffer.alloc(sodium.crypto_generichash_BYTES)
var opsLimit = parsedSK.kdfOpsLimit
var memLimit = parsedSK.kdfMemLimit
var salt = parsedSK.kdfSalt
sodium.sodium_mprotect_readwrite(pwd)
sodium.crypto_pwhash_scryptsalsa208sha256(kdfOutput, pwd, salt, opsLimit, memLimit)
sodium.sodium_memzero(pwd)
sodium.sodium_mprotect_noaccess(pwd)
const secretKey = sodium.sodium_malloc(sodium.crypto_sign_SECRETKEYBYTES)
keynumInfo = xor(kdfOutput, parsedSK.keynumSK)
const keyID = keynumInfo.subarray(0, 8)
secretKey.fill(keynumInfo.subarray(8, 72))
const checkSum = keynumInfo.subarray(72)
const signatureAlgorithm = parsedSK.signatureAlgorithm.toString()
var sumCheckData = Buffer.concat([parsedSK.signatureAlgorithm, keyID, secretKey])
sodium.sodium_mprotect_noaccess(secretKey)
sodium.crypto_generichash(sumCheck, sumCheckData)
assert(sumCheck.equals(checkSum), 'invalid check sum')
return {
keyID,
secretKey,
sumCheck,exports.keyPair = function (seed) {
var publicKey = new Buffer(sodium.crypto_sign_PUBLICKEYBYTES)
var secretKey = new Buffer(sodium.crypto_sign_SECRETKEYBYTES)
if (seed) sodium.crypto_sign_seed_keypair(publicKey, secretKey, seed)
else sodium.crypto_sign_keypair(publicKey, secretKey)
return {
publicKey: publicKey,
secretKey: secretKey
}
}public makeKeyPair(hash: Buffer): IKeyPair {
const keyPair: IKeyPair = {
publicKey: Buffer.alloc(sodium.crypto_sign_PUBLICKEYBYTES),
privateKey: Buffer.alloc(sodium.crypto_sign_SECRETKEYBYTES)
};
sodium.crypto_sign_seed_keypair(keyPair.publicKey, keyPair.privateKey, hash);
return keyPair;
}function keypairGen (comment, pwd, sigAlgorithm = 'Ed', kdfAlgorithm = 'Sc', cksumAlgorithm = 'B2') {
var keyID = Buffer.alloc(8)
var kdfSalt = Buffer.alloc(32)
var kdfOutput = Buffer.alloc(104)
var publicKey = Buffer.alloc(sodium.crypto_sign_PUBLICKEYBYTES)
var secretKey = Buffer.alloc(sodium.crypto_sign_SECRETKEYBYTES)
var checkSum = Buffer.alloc(sodium.crypto_generichash_BYTES)
var fullComment = Buffer.from('untrusted comment: ' + comment + '\n')
const kdfOpsLimit = sodium.crypto_pwhash_scryptsalsa208sha256_OPSLIMIT_SENSITIVE
const kdfMemLimit = sodium.crypto_pwhash_scryptsalsa208sha256_MEMLIMIT_SENSITIVE
sodium.randombytes_buf(keyID)
sodium.randombytes_buf(kdfSalt)
sodium.crypto_sign_keypair(publicKey, secretKey)
var checksumData = Buffer.concat([Buffer.from(sigAlgorithm), keyID, secretKey])
sodium.crypto_generichash(checkSum, checksumData)
var keynumData = Buffer.concat([keyID, secretKey, checkSum])
sodium.crypto_pwhash_scryptsalsa208sha256(kdfOutput, Buffer.from(pwd), kdfSalt, kdfOpsLimit, kdfMemLimit)export function signingKeyPair(): sodium.SigningKeyPair {
const publicKey = Buffer.alloc(sodium.crypto_sign_PUBLICKEYBYTES) as sodium.PublicSigningKey
const secretKey = Buffer.alloc(sodium.crypto_sign_SECRETKEYBYTES) as sodium.SecretSigningKey
sodium.crypto_sign_keypair(publicKey, secretKey)
return { publicKey, secretKey }
}ed.makeKeypair = function(hash) {
const publicKey = Buffer.alloc(sodium.crypto_sign_PUBLICKEYBYTES);
const privateKey = Buffer.alloc(sodium.crypto_sign_SECRETKEYBYTES);
sodium.crypto_sign_seed_keypair(publicKey, privateKey, hash);
return {
publicKey,
privateKey,
};
};
Popular sodium-native functions
- sodium-native.crypto_box_SEALBYTES
- sodium-native.crypto_generichash
- sodium-native.crypto_hash_sha256
- sodium-native.crypto_pwhash_async
- sodium-native.crypto_pwhash_SALTBYTES
- sodium-native.crypto_secretbox_easy
- sodium-native.crypto_secretbox_KEYBYTES
- sodium-native.crypto_secretbox_MACBYTES
- sodium-native.crypto_secretbox_NONCEBYTES
- sodium-native.crypto_secretbox_open_easy
- sodium-native.crypto_sign_BYTES
- sodium-native.crypto_sign_detached
- sodium-native.crypto_sign_keypair
- sodium-native.crypto_sign_PUBLICKEYBYTES
- sodium-native.crypto_sign_SECRETKEYBYTES
- sodium-native.crypto_sign_seed_keypair
- sodium-native.crypto_sign_verify_detached
- sodium-native.randombytes_buf
- sodium-native.sodium_malloc
- sodium-native.sodium_mprotect_noaccess