github/self
1
1
Fork 0
mirror of https://github.com/selfxyz/self.git synced 2026-01-15 01:28:18 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
7e0601acfc7b45650b2f33dad428b94de45559e7
self/sdk/utils/utils.ts
turnoffthiscomputer ef68691f88 add register vkeys to sdk
2024-09-09 20:37:23 +02:00

88 lines
3.4 KiB
TypeScript
Raw Blame History

import { ethers } from 'ethers';
import { getCurrentDateYYMMDD } from '../../common/src/utils/utils';
import { REGISTER_ABI, REGISTER_CONTRACT_ADDRESS } from '../../common/src/constants/constants';
import { derToBytes } from '../../common/src/utils/csca';
import forge from 'node-forge';
import { SKI_PEM, SKI_PEM_DEV } from './skiPem';
import {
vkey_prove_rsa_65537_sha1,
vkey_prove_rsa_65537_sha256,
vkey_prove_rsapss_65537_sha256,
vkey_register_rsa_65537_sha1,
vkey_register_rsa_65537_sha256,
vkey_register_rsapss_65537_sha256,
} from '../../common/src/constants/vkey';
import { getCircuitName } from '../../common/src/utils/handleCertificate';
export function getCurrentDateFormatted() {
return getCurrentDateYYMMDD().map((datePart) => BigInt(datePart).toString());
}
export function getVkey(circuit: string, signatureAlgorithm: string, hashFunction: string) {
const circuitName = getCircuitName(circuit, signatureAlgorithm, hashFunction);
switch (circuitName) {
case 'prove_rsa_65537_sha256':
return vkey_prove_rsa_65537_sha256;
case 'prove_rsa_65537_sha1':
return vkey_prove_rsa_65537_sha1;
case 'prove_rsapss_65537_sha256':
return vkey_prove_rsapss_65537_sha256;
case 'register_rsa_65537_sha256':
return vkey_register_rsa_65537_sha256;
case 'register_rsa_65537_sha1':
return vkey_register_rsa_65537_sha1;
case 'register_rsapss_65537_sha256':
return vkey_register_rsapss_65537_sha256;
default:
throw new Error('Invalid signature algorithm or hash function');
}
}
// OpenPassport2Step
export async function checkMerkleRoot(rpcUrl: string, merkleRoot: number) {
const provider = new ethers.JsonRpcProvider(rpcUrl);
const contract = new ethers.Contract(REGISTER_CONTRACT_ADDRESS, REGISTER_ABI, provider);
return await contract.checkRoot(merkleRoot);
}
// OpenPassport1Step
function getCSCAPem(formattedValueAdjusted: string, dev_mode: boolean): string {
const skiPem = dev_mode ? { ...SKI_PEM, ...SKI_PEM_DEV } : SKI_PEM;
const pem = skiPem[formattedValueAdjusted];
return pem;
}
export function verifyDSCValidity(dscCertificate: forge.pki.Certificate, dev_mode: boolean) {
const authorityKeyIdentifierExt = dscCertificate.extensions.find(
(ext) => ext.name === 'authorityKeyIdentifier'
);
const value = authorityKeyIdentifierExt.value;
const byteArray = derToBytes(value);
const formattedValue = byteArray.map((byte) => byte.toString(16).padStart(2, '0')).join('');
const formattedValueAdjusted = formattedValue.substring(8); // Remove the first '3016' from the formatted string
const csca_pem = getCSCAPem(formattedValueAdjusted, dev_mode);
if (csca_pem === null || csca_pem === undefined) {
console.error('Error: CSCA PEM not found');
throw new Error('CSCA PEM not found');
}
const csca_certificate = forge.pki.certificateFromPem(csca_pem);
try {
const caStore = forge.pki.createCaStore([csca_certificate]);
const verified = forge.pki.verifyCertificateChain(caStore, [dscCertificate]);
if (!verified) {
throw new Error('DSC certificate verification failed');
}
const currentDate = new Date();
if (
currentDate < dscCertificate.validity.notBefore ||
currentDate > dscCertificate.validity.notAfter
) {
throw new Error('DSC certificate is not within its validity period');
}
return true;
} catch (error) {
console.error('DSC certificate validation error:', error);
return false;
}
}
Reference in New Issue View Git Blame Copy Permalink