taler/wallet-core
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Activity

use EdDSA public key as nonce, store private key in DB

Browse Source
This commit is contained in:
Florian Dold 2017-02-13 09:53:34 +01:00
parent e2738c5823
commit 3a074443b7
No known key found for this signature in database
GPG Key ID: D2E4F00F29D02A4B
3 changed files with 41 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
src/content_scripts/notify.ts
View File

@ -173,6 +173,17 @@ namespace TalerNotify {
(detail: any, sendResponse: (msg: any) => void): void; (detail: any, sendResponse: (msg: any) => void): void;
} }
function generateNonce(): Promise<string> {
const walletMsg = {
type: "generate-nonce",
};
return new Promise((resolve, reject) => {
chrome.runtime.sendMessage(walletMsg, (resp: any) => {
resolve(resp);
});
});
}
function downloadContract(url: string, nonce: string): Promise<any> { function downloadContract(url: string, nonce: string): Promise<any> {
let parsed_url = URI(url); let parsed_url = URI(url);
url = parsed_url.setQuery({nonce}).href(); url = parsed_url.setQuery({nonce}).href();
@ -358,7 +369,7 @@ namespace TalerNotify {
return; return;
} }
if (msg.contract_url) { if (msg.contract_url) {
let nonce = Math.round(Math.random() * 0xFFFF).toString() let nonce = await generateNonce();
let proposal = await downloadContract(msg.contract_url, nonce); let proposal = await downloadContract(msg.contract_url, nonce);
if (proposal.data.nonce != nonce) { if (proposal.data.nonce != nonce) {
console.error("stale contract"); console.error("stale contract");

25
src/wallet.ts
View File

@ -198,6 +198,11 @@ export interface Badge {
stopBusy(): void; stopBusy(): void;
} }
export interface NonceRecord {
priv: string;
pub: string;
}
function setTimeout(f: any, t: number) { function setTimeout(f: any, t: number) {
return chrome.extension.getBackgroundPage().setTimeout(f, t); return chrome.extension.getBackgroundPage().setTimeout(f, t);
@ -305,6 +310,12 @@ export namespace Stores {
pubKeyIndex = new Index<string,ExchangeRecord>(this, "pubKey", "masterPublicKey"); pubKeyIndex = new Index<string,ExchangeRecord>(this, "pubKey", "masterPublicKey");
} }
class NonceStore extends Store<NonceRecord> {
constructor() {
super("nonces", {keyPath: "pub"});
}
}
class CoinsStore extends Store<CoinRecord> { class CoinsStore extends Store<CoinRecord> {
constructor() { constructor() {
super("coins", {keyPath: "coinPub"}); super("coins", {keyPath: "coinPub"});
@ -358,6 +369,7 @@ export namespace Stores {
} }
export const exchanges: ExchangeStore = new ExchangeStore(); export const exchanges: ExchangeStore = new ExchangeStore();
export const nonces: NonceStore = new NonceStore();
export const transactions: TransactionsStore = new TransactionsStore(); export const transactions: TransactionsStore = new TransactionsStore();
export const reserves: Store<ReserveRecord> = new Store<ReserveRecord>("reserves", {keyPath: "reserve_pub"}); export const reserves: Store<ReserveRecord> = new Store<ReserveRecord>("reserves", {keyPath: "reserve_pub"});
export const coins: CoinsStore = new CoinsStore(); export const coins: CoinsStore = new CoinsStore();
@ -1708,6 +1720,19 @@ export class Wallet {
} }
/**
* Generate a nonce in form of an EdDSA public key.
* Store the private key in our DB, so we can prove ownership.
*/
async generateNonce(): Promise<string> {
let {priv, pub} = await this.cryptoApi.createEddsaKeypair();
await this.q()
.put(Stores.nonces, {priv, pub})
.finish();
return pub;
}
async paymentSucceeded(contractHash: string): Promise<any> { async paymentSucceeded(contractHash: string): Promise<any> {
const doPaymentSucceeded = async() => { const doPaymentSucceeded = async() => {
let t = await this.q().get<TransactionRecord>(Stores.transactions, let t = await this.q().get<TransactionRecord>(Stores.transactions,

5
src/wxBackend.ts
View File

@ -35,7 +35,7 @@ import * as logging from "./logging";
"use strict"; "use strict";
const DB_NAME = "taler"; const DB_NAME = "taler";
const DB_VERSION = 12; const DB_VERSION = 14;
import {Stores} from "./wallet"; import {Stores} from "./wallet";
import {Store, Index} from "./query"; import {Store, Index} from "./query";
@ -102,6 +102,9 @@ function makeHandlers(db: IDBDatabase,
const req = ConfirmReserveRequest.checked(d); const req = ConfirmReserveRequest.checked(d);
return wallet.confirmReserve(req); return wallet.confirmReserve(req);
}, },
["generate-nonce"]: function (detail, sender) {
return wallet.generateNonce();
},
["confirm-pay"]: function (detail, sender) { ["confirm-pay"]: function (detail, sender) {
let offer: OfferRecord; let offer: OfferRecord;
try { try {