From c1d03cf00bc2a30761e00db5cc768a3d986bd40d Mon Sep 17 00:00:00 2001 From: fiatjaf Date: Sun, 27 Oct 2024 14:59:24 -0300 Subject: [PATCH] nip46: only encrypt with nip44 (breaking). --- jsr.json | 2 +- nip46.ts | 16 +++++++++------- package.json | 2 +- 3 files changed, 11 insertions(+), 9 deletions(-) diff --git a/jsr.json b/jsr.json index 1b5ab04..9a0dbc2 100644 --- a/jsr.json +++ b/jsr.json @@ -1,6 +1,6 @@ { "name": "@nostr/tools", - "version": "2.9.4", + "version": "2.10.0", "exports": { ".": "./index.ts", "./core": "./core.ts", diff --git a/nip46.ts b/nip46.ts index df1897b..2e7e657 100644 --- a/nip46.ts +++ b/nip46.ts @@ -1,8 +1,8 @@ import { NostrEvent, UnsignedEvent, VerifiedEvent } from './core.ts' import { generateSecretKey, finalizeEvent, getPublicKey, verifyEvent } from './pure.ts' import { AbstractSimplePool, SubCloser } from './abstract-pool.ts' -import { decrypt, encrypt } from './nip04.ts' -import { getConversationKey, decrypt as nip44decrypt } from './nip44.ts' +import { decrypt as legacyDecrypt } from './nip04.ts' +import { getConversationKey, decrypt, encrypt } from './nip44.ts' import { NIP05_REGEX } from './nip05.ts' import { SimplePool } from './pool.ts' import { Handlerinformation, NostrConnect } from './kinds.ts' @@ -86,6 +86,7 @@ export class BunkerSigner { } private waitingForAuth: { [id: string]: boolean } private secretKey: Uint8Array + private conversationKey: Uint8Array public bp: BunkerPointer private cachedPubKey: string | undefined @@ -103,6 +104,7 @@ export class BunkerSigner { this.pool = params.pool || new SimplePool() this.secretKey = clientSecretKey + this.conversationKey = getConversationKey(clientSecretKey, bp.pubkey) this.bp = bp this.isOpen = false this.idPrefix = Math.random().toString(36).substring(7) @@ -112,18 +114,18 @@ export class BunkerSigner { const listeners = this.listeners const waitingForAuth = this.waitingForAuth - const skBytes = this.secretKey + const convKey = this.conversationKey this.subCloser = this.pool.subscribeMany( this.bp.relays, - [{ kinds: [NostrConnect], '#p': [getPublicKey(this.secretKey)] }], + [{ kinds: [NostrConnect], authors: [bp.pubkey], '#p': [getPublicKey(this.secretKey)] }], { async onevent(event: NostrEvent) { let o try { - o = JSON.parse(await decrypt(clientSecretKey, event.pubkey, event.content)) + o = JSON.parse(decrypt(event.content, convKey)) } catch (err) { - o = JSON.parse(nip44decrypt(event.content, getConversationKey(skBytes, event.pubkey))) + o = JSON.parse(await legacyDecrypt(event.content, event.pubkey, event.content)) } const { id, result, error } = o @@ -166,7 +168,7 @@ export class BunkerSigner { this.serial++ const id = `${this.idPrefix}-${this.serial}` - const encryptedContent = await encrypt(this.secretKey, this.bp.pubkey, JSON.stringify({ id, method, params })) + const encryptedContent = encrypt(JSON.stringify({ id, method, params }), this.conversationKey) // the request event const verifiedEvent: VerifiedEvent = finalizeEvent( diff --git a/package.json b/package.json index b427c32..d21e33c 100644 --- a/package.json +++ b/package.json @@ -1,7 +1,7 @@ { "type": "module", "name": "nostr-tools", - "version": "2.9.4", + "version": "2.10.0", "description": "Tools for making a Nostr client.", "repository": { "type": "git",