Initial from bip32.github.io

js/electrum.js

@@ -0,0 +1,129 @@
+/*
+    electrum.js : Electrum deterministic wallet implementation (public domain)
+*/
+
+function electrum_extend_chain(pubKey, privKey, n, forChange, fromPrivKey) {
+    var curve = getSECCurveByName("secp256k1");
+    var mode = forChange ? 1 : 0;
+    var mpk = pubKey.slice(1);
+    var bytes = Crypto.charenc.UTF8.stringToBytes(n + ':' + mode + ':').concat(mpk);
+    var sequence = Crypto.SHA256(Crypto.SHA256(bytes, {asBytes: true}), {asBytes: true});
+    var secexp = null;
+    var pt = ECPointFp.decodeFrom(curve.getCurve(), pubKey);
+
+    var A;
+
+    if (fromPrivKey) {
+        A = BigInteger.fromByteArrayUnsigned(sequence);
+        var B = BigInteger.fromByteArrayUnsigned(privKey);
+        var C = curve.getN();
+        secexp = A.add(B).mod(C);
+        pt = pt.add(curve.getG().multiply(A));
+    } else {
+        A = BigInteger.fromByteArrayUnsigned(sequence);
+        pt = pt.add(curve.getG().multiply(A));
+    }
+
+    var newPriv = secexp ? secexp.toByteArrayUnsigned(): [];
+    for(;newPriv.length<32;) newPriv.unshift(0x00);
+    var newPub = pt.getEncoded();
+    var h160 = Bitcoin.Util.sha256ripe160(newPub);
+    var addr = new Bitcoin.Address(h160);
+    var sec = secexp ? new Bitcoin.Address(newPriv) : '';
+    if (secexp)
+        sec.version = 128;
+
+    return [addr.toString(), sec.toString(), newPub, newPriv];
+}
+
+function electrum_get_pubkey(privKey) {
+    var curve = getSECCurveByName("secp256k1");
+    var secexp = BigInteger.fromByteArrayUnsigned(privKey);
+    var pt = curve.getG().multiply(secexp);
+    return pt.getEncoded();
+}
+
+var Electrum = new function () {
+    var seedRounds = 100000;
+    var seed;
+    var oldseed;
+    var pubKey;
+    var privKey;
+    var rounds;
+    var range;
+    var counter;
+    var timeout;
+    var onUpdate;
+    var onSuccess;
+    var addChange;
+
+    function calcSeed() {
+        if (rounds < seedRounds) {
+            var portion = seedRounds / 100;
+            onUpdate(rounds * 100 / seedRounds, seed);
+            for (var i = 0; i < portion; i++)
+                seed = Crypto.SHA256(seed.concat(oldseed), {asBytes: true});
+            rounds += portion;
+            if (rounds < seedRounds) {
+                timeout = setTimeout(calcSeed, 0);
+            } else {
+                privKey = seed;
+                pubKey = electrum_get_pubkey(privKey);
+                onSuccess(privKey);
+            }
+        }
+    }
+
+    function calcAddr() {
+        var r = electrum_extend_chain(pubKey, privKey, counter % range, counter >= range, true);
+        onUpdate(r);
+        counter++;
+        if (counter >= range+addChange) {
+            if (onSuccess) 
+                onSuccess();
+        } else {
+            timeout = setTimeout(calcAddr, 0);
+        }
+    }
+
+    this.init = function(_seed, update, success) {
+        seed = Crypto.charenc.UTF8.stringToBytes(_seed);
+        oldseed = seed.slice(0);
+        rounds = 0;
+        onUpdate = update;
+        onSuccess = success;
+        clearTimeout(timeout);
+        calcSeed();
+    };
+
+    this.gen = function(_range, update, success, useChange) {
+        addChange = useChange;
+        range = _range;
+        counter = 0;
+        onUpdate = update;
+        onSuccess = success;
+        clearTimeout(timeout);
+        calcAddr();
+    };
+
+    this.stop = function () {
+        clearTimeout(timeout);
+    };
+
+    return this;
+};
+
+function electrum_test() {
+
+    Electrum.init('12345678', function(r) {console.log(r);},
+        function() {Electrum.gen(5, function(r) {console.log(r);});});
+
+    /*
+    1DLHQhEuLftmAMTiYhw4DvVWhFQ9hnbXio
+    1HvoaBYqebPqFaS7GEZzywTaiTrS8cSaCF
+    1KMtsVJdde66kjgaK5dcte3TiWfFBF2bC7
+    159zjjZB3TadPXE3oeei5MfxTCYu5bqDCd
+    1H4uQ5i3MWSiUdHLJiPop9HWw2fe96CrLR
+    1EkX2PAY21FuqsKVirZS6wkLkSwbbE4EFD
+    */
+}