Comparing version 2.5.0 to 2.6.0
27
index.js
var Buffer = require('safe-buffer').Buffer | ||
var createHash = require('create-hash') | ||
var pbkdf2 = require('pbkdf2').pbkdf2Sync | ||
var _pbkdf2 = require('pbkdf2') | ||
var pbkdf2 = _pbkdf2.pbkdf2Sync | ||
var pbkdf2Async = _pbkdf2.pbkdf2 | ||
var randomBytes = require('randombytes') | ||
@@ -61,2 +63,23 @@ | ||
function mnemonicToSeedAsync (mnemonic, password) { | ||
return new Promise(function (resolve, reject) { | ||
try { | ||
var mnemonicBuffer = Buffer.from(unorm.nfkd(mnemonic), 'utf8') | ||
var saltBuffer = Buffer.from(salt(unorm.nfkd(password)), 'utf8') | ||
} catch (error) { | ||
return reject(error) | ||
} | ||
pbkdf2Async(mnemonicBuffer, saltBuffer, 2048, 64, 'sha512', function (err, data) { | ||
if (err) return reject(err) | ||
else return resolve(data) | ||
}) | ||
}) | ||
} | ||
function mnemonicToSeedHexAsync (mnemonic, password) { | ||
return mnemonicToSeedAsync(mnemonic, password) | ||
.then(function (buf) { return buf.toString('hex') }) | ||
} | ||
function mnemonicToEntropy (mnemonic, wordlist) { | ||
@@ -136,3 +159,5 @@ wordlist = wordlist || DEFAULT_WORDLIST | ||
mnemonicToSeed: mnemonicToSeed, | ||
mnemonicToSeedAsync: mnemonicToSeedAsync, | ||
mnemonicToSeedHex: mnemonicToSeedHex, | ||
mnemonicToSeedHexAsync: mnemonicToSeedHexAsync, | ||
mnemonicToEntropy: mnemonicToEntropy, | ||
@@ -139,0 +164,0 @@ entropyToMnemonic: entropyToMnemonic, |
{ | ||
"name": "bip39", | ||
"version": "2.5.0", | ||
"version": "2.6.0", | ||
"description": "Bitcoin BIP39: Mnemonic code for generating deterministic keys", | ||
"main": "index.js", | ||
"files": [ | ||
"wordlists" | ||
], | ||
"scripts": { | ||
@@ -35,3 +38,3 @@ "coverage": "nyc --branches 100 --functions 100 --check-coverage npm run unit", | ||
"node-fetch": "^1.6.3", | ||
"nyc": "^8.3.0", | ||
"nyc": "^13.1.0", | ||
"proxyquire": "^1.7.10", | ||
@@ -38,0 +41,0 @@ "standard": "^10.0.2", |
@@ -19,2 +19,6 @@ # BIP39 | ||
## Installation | ||
``` bash | ||
npm install bip39 | ||
``` | ||
@@ -24,3 +28,3 @@ ## Examples | ||
// Generate a random mnemonic (uses crypto.randomBytes under the hood), defaults to 128-bits of entropy | ||
var mnemonic = bip39.generateMnemonic() | ||
const mnemonic = bip39.generateMnemonic() | ||
// => 'seed sock milk update focus rotate barely fade car face mechanic mercy' | ||
@@ -34,2 +38,13 @@ | ||
// mnemonicToSeed and mnemonicToSeedHex have async versions | ||
// mnemonicToSeedAsync mnemonicToSeedHexAsync are more performance oriented | ||
bip39.mnemonicToSeedAsync('basket actual').then(console.log) | ||
// => <Buffer 5c f2 d4 a8 b0 35 5e 90 29 5b df c5 65 a0 22 a4 09 af 06 3d 53 65 bb 57 bf 74 d9 52 8f 49 4b fa 44 00 f5 3d 83 49 b8 0f da e4 40 82 d7 f9 54 1e 1d ba 2b ...> | ||
bip39.mnemonicToSeedHexAsync('basket actual').then(console.log) | ||
// => '5cf2d4a8b0355e90295bdfc565a022a409af063d5365bb57bf74d9528f494bfa4400f53d8349b80fdae44082d7f9541e1dba2b003bcfec9d0d53781ca676651f' | ||
bip39.mnemonicToSeed('basket actual', 'a password') | ||
// => <Buffer 46 16 a4 4f 2c 90 b9 69 02 14 b8 fd 43 5b b4 14 62 43 de 10 7b 30 87 59 0a 3b b8 d3 1b 2f 3a ef ab 1d 4b 52 6d 21 e5 0a 04 02 3d 7a d0 66 43 ea 68 3b ... > | ||
bip39.validateMnemonic(mnemonic) | ||
@@ -36,0 +51,0 @@ // => true |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
67
0
233043
12
16544