bitcoinjs-lib - npm Package Compare versions

Comparing version 1.4.1 to 1.4.2

package.json

 {
   "name": "bitcoinjs-lib",
-  "version": "1.4.1",
+  "version": "1.4.2",
   "description": "Client-side Bitcoin JavaScript library",
@@ -5,0 +5,0 @@ "main": "./src/index.js",

src/crypto.js

@@ -25,2 +25,3 @@ var crypto = require('crypto')
 function HmacSHA256(buffer, secret) {
+  console.warn('Hmac* functions are deprecated for removal in 2.0.0, use node crypto instead')
   return crypto.createHmac('sha256', secret).update(buffer).digest()
@@ -30,2 +31,3 @@ }
 function HmacSHA512(buffer, secret) {
+  console.warn('Hmac* functions are deprecated for removal in 2.0.0, use node crypto instead')
   return crypto.createHmac('sha512', secret).update(buffer).digest()
@@ -32,0 +34,0 @@ }

src/ecdsa.js

 var assert = require('assert')
-var crypto = require('./crypto')
+var crypto = require('crypto')
 var enforceType = require('./types')
@@ -8,2 +8,5 @@
 
+var ZERO = new Buffer([0])
+var ONE = new Buffer([1])
+
 // https://tools.ietf.org/html/rfc6979#section-3.2
@@ -28,16 +31,26 @@ function deterministicGenerateK(curve, hash, d) {
   // Step D
-  k = crypto.HmacSHA256(Buffer.concat([v, new Buffer([0]), x, hash]), k)
+  k = crypto.createHmac('sha256', k)
+    .update(v)
+    .update(ZERO)
+    .update(x)
+    .update(hash)
+    .digest()
 
   // Step E
-  v = crypto.HmacSHA256(v, k)
+  v = crypto.createHmac('sha256', k).update(v).digest()
 
   // Step F
-  k = crypto.HmacSHA256(Buffer.concat([v, new Buffer([1]), x, hash]), k)
+  k = crypto.createHmac('sha256', k)
+    .update(v)
+    .update(ONE)
+    .update(x)
+    .update(hash)
+    .digest()
 
   // Step G
-  v = crypto.HmacSHA256(v, k)
+  v = crypto.createHmac('sha256', k).update(v).digest()
 
   // Step H1/H2a, ignored as tlen === qlen (256 bit)
   // Step H2b
-  v = crypto.HmacSHA256(v, k)
+  v = crypto.createHmac('sha256', k).update(v).digest()
 
@@ -48,5 +61,9 @@ var T = BigInteger.fromBuffer(v)
   while ((T.signum() <= 0) || (T.compareTo(curve.n) >= 0)) {
-    k = crypto.HmacSHA256(Buffer.concat([v, new Buffer([0])]), k)
-    v = crypto.HmacSHA256(v, k)
+    k = crypto.createHmac('sha256', k)
+      .update(v)
+      .update(ZERO)
+      .digest()
 
+    v = crypto.createHmac('sha256', k).update(v).digest()
+
     T = BigInteger.fromBuffer(v)
@@ -53,0 +70,0 @@ }

src/hdnode.js

 var assert = require('assert')
 var base58check = require('bs58check')
-var crypto = require('./crypto')
+var bcrypto = require('./crypto')
+var crypto = require('crypto')
 var enforceType = require('./types')
@@ -59,3 +60,3 @@ var networks = require('./networks')
 
-  var I = crypto.HmacSHA512(seed, HDNode.MASTER_SECRET)
+  var I = crypto.createHmac('sha512', HDNode.MASTER_SECRET).update(seed).digest()
   var IL = I.slice(0, 32)
@@ -149,3 +150,3 @@ var IR = I.slice(32)
 HDNode.prototype.getIdentifier = function() {
-  return crypto.hash160(this.pubKey.toBuffer())
+  return bcrypto.hash160(this.pubKey.toBuffer())
 }
@@ -260,3 +261,3 @@
 
-  var I = crypto.HmacSHA512(data, this.chainCode)
+  var I = crypto.createHmac('sha512', this.chainCode).update(data).digest()
   var IL = I.slice(0, 32)
@@ -263,0 +264,0 @@ var IR = I.slice(32)

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

629038

increased by0.09%

Lines of code

9381

increased by0.19%

No dependency changes