e2ee

Signed-off-by: Michael Lodder <[email protected]>

Author: mikelodder7

packages/core/src/lib/lit-core.ts

@@ -50,12 +50,14 @@ import {
   RejectedNodePromises,
   SessionSigsMap,
   SuccessNodePromises,
+  WalletEncryptedPayload,
 } from '@lit-protocol/types';
 
 import { composeLitUrl } from './endpoint-version';
 import {
   CoreNodeConfig,
   EpochCache,
+  GenericResponse,
   HandshakeWithNode,
   Listener,
   NodeCommandServerKeysResponse,
@@ -545,13 +547,30 @@ export class LitCore {
       requestId
     );
 
+    if (!handshakeResult.ok) {
+      const error = handshakeResult.error ?? "";
+      const errorObject = handshakeResult.errorObject ?? "";
+
+      logErrorWithRequestId(
+        requestId,
+        `Error handshaking with the node ${url}: ${error} - ${errorObject}`
+      );
+      throw new Error(`${error} - ${errorObject}`);
+    }
+
+    if (!handshakeResult.data) {
+      throw new Error('Handshake response data is empty');
+    }
+    const handshakeResponse = handshakeResult.data;
+
     const keys: JsonHandshakeResponse = {
-      serverPubKey: handshakeResult.serverPublicKey,
-      subnetPubKey: handshakeResult.subnetPublicKey,
-      networkPubKey: handshakeResult.networkPublicKey,
-      networkPubKeySet: handshakeResult.networkPublicKeySet,
-      hdRootPubkeys: handshakeResult.hdRootPubkeys,
-      latestBlockhash: handshakeResult.latestBlockhash,
+      serverPubKey: handshakeResponse.serverPublicKey,
+      subnetPubKey: handshakeResponse.subnetPublicKey,
+      networkPubKey: handshakeResponse.networkPublicKey,
+      networkPubKeySet: handshakeResponse.networkPublicKeySet,
+      hdRootPubkeys: handshakeResponse.hdRootPubkeys,
+      latestBlockhash: handshakeResponse.latestBlockhash,
+      nodeIdentityKey: handshakeResponse.nodeIdentityKey,
     };
 
     // Nodes that have just bootstrapped will not have negotiated their keys, yet
@@ -587,7 +606,7 @@ export class LitCore {
       this.config.checkNodeAttestation ||
       NETWORKS_REQUIRING_SEV.includes(this.config.litNetwork)
     ) {
-      const attestation = handshakeResult.attestation;
+      const attestation = handshakeResponse.attestation;
 
       if (!attestation) {
         throw new InvalidNodeAttestation(
@@ -887,7 +906,7 @@ export class LitCore {
   protected _handshakeWithNode = async (
     params: HandshakeWithNode,
     requestId: string
-  ): Promise<NodeCommandServerKeysResponse> => {
+  ): Promise<GenericResponse<NodeCommandServerKeysResponse>> => {
     // -- get properties from params
     const { url } = params;
 
@@ -1029,9 +1048,9 @@ export class LitCore {
   protected _getNodePromises = (
     nodeUrls: string[],
     // eslint-disable-next-line @typescript-eslint/no-explicit-any
-    callback: (url: string) => Promise<any>
+    callback: (url: string) => { url: string, promise: Promise<any>},
     // eslint-disable-next-line @typescript-eslint/no-explicit-any
-  ): Promise<any>[] => {
+  ): { url: string, promise: Promise<any> }[] => {
     // FIXME: Replace <any> usage with explicit, strongly typed handlers
 
     const nodePromises = [];
@@ -1090,25 +1109,25 @@ export class LitCore {
    * @returns { Promise<SuccessNodePromises<T> | RejectedNodePromises> }
    */
   protected _handleNodePromises = async <T>(
-    nodePromises: Promise<T>[],
+    nodePromises: { url: string, promise: Promise<T> }[],
     requestId: string,
     minNodeCount: number
-  ): Promise<SuccessNodePromises<T> | RejectedNodePromises> => {
+  ): Promise<SuccessNodePromises<WalletEncryptedPayload> | RejectedNodePromises> => {
     async function waitForNSuccessesWithErrors<T>(
-      promises: Promise<T>[],
+      promises: { url: string, promise: Promise<T> }[],
       n: number
       // eslint-disable-next-line @typescript-eslint/no-explicit-any
-    ): Promise<{ successes: T[]; errors: any[] }> {
+    ): Promise<{ successes: { url: string, result: T }[]; errors: any[] }> {
       let responses = 0;
-      const successes: T[] = [];
+      const successes: { url: string, result: T }[] = [];
       // eslint-disable-next-line @typescript-eslint/no-explicit-any
       const errors: any[] = [];
 
       return new Promise((resolve) => {
-        promises.forEach((promise) => {
+        promises.forEach(({ url, promise }) => {
           promise
             .then((result) => {
-              successes.push(result);
+              successes.push({ url, result });
               if (successes.length >= n) {
                 // If we've got enough successful responses to continue, resolve immediately even if some are pending
                 resolve({ successes, errors });

packages/core/src/lib/types.ts

@@ -8,6 +8,13 @@ export interface SendNodeCommand {
   requestId: string;
 }
 
+export interface GenericResponse<T> {
+  ok: boolean;
+  error?: string;
+  errorObject?: string;
+  data?: T;
+}
+
 export interface NodeCommandServerKeysResponse {
   serverPublicKey: string;
   subnetPublicKey: string;
@@ -16,6 +23,7 @@ export interface NodeCommandServerKeysResponse {
   hdRootPubkeys: string[];
   attestation?: NodeAttestation;
   latestBlockhash?: string;
+  nodeIdentityKey: string;
 }
 
 export interface HandshakeWithNode {

packages/crypto/src/lib/crypto.ts

@@ -353,14 +353,11 @@ async function getAmdCert(url: string): Promise<Uint8Array> {
   }
 }
 
-export const walletEncrypt = async (
+export const walletEncrypt = (
   myWalletSecretKey: Uint8Array,
   theirWalletPublicKey: Uint8Array,
-  sessionSig: AuthSig,
   message: Uint8Array
-): Promise<WalletEncryptedPayload> => {
-  const uint8SessionSig = Buffer.from(JSON.stringify(sessionSig));
-
+): WalletEncryptedPayload => {
   const random = new Uint8Array(16);
   crypto.getRandomValues(random);
   const dateNow = Date.now();
@@ -372,12 +369,10 @@ export const walletEncrypt = async (
   nacl.lowlevel.crypto_scalarmult_base(myWalletPublicKey, myWalletSecretKey);
 
   // Construct AAD (Additional Authenticated Data) - data that is authenticated but not encrypted
-  const sessionSignature = uint8SessionSig; // Replace with actual session signature
   const theirPublicKey = Buffer.from(theirWalletPublicKey); // Replace with their public key
   const myPublicKey = Buffer.from(myWalletPublicKey); // Replace with your wallet public key
 
   const aad = Buffer.concat([
-    sessionSignature,
     random,
     timestamp,
     theirPublicKey,
@@ -398,17 +393,16 @@ export const walletEncrypt = async (
     V1: {
       verification_key: uint8ArrayToHex(myWalletPublicKey),
       ciphertext_and_tag: uint8ArrayToHex(ciphertext),
-      session_signature: uint8ArrayToHex(sessionSignature),
       random: uint8ArrayToHex(random),
       created_at: new Date(dateNow).toISOString(),
     },
   };
 };
 
-export const walletDecrypt = async (
+export const walletDecrypt = (
   myWalletSecretKey: Uint8Array,
   payload: WalletEncryptedPayload
-): Promise<Uint8Array> => {
+): Uint8Array => {
   const dateSent = new Date(payload.V1.created_at);
   const createdAt = Math.floor(dateSent.getTime() / 1000);
   const timestamp = Buffer.alloc(8);
@@ -419,15 +413,11 @@ export const walletDecrypt = async (
 
   // Construct AAD
   const random = Buffer.from(hexToUint8Array(payload.V1.random));
-  const sessionSignature = Buffer.from(
-    hexToUint8Array(payload.V1.session_signature)
-  ); // Replace with actual session signature
   const theirPublicKey = hexToUint8Array(payload.V1.verification_key);
   const theirPublicKeyBuffer = Buffer.from(theirPublicKey); // Replace with their public key
   const myPublicKey = Buffer.from(myWalletPublicKey); // Replace with your wallet public key
 
   const aad = Buffer.concat([
-    sessionSignature,
     random,
     timestamp,
     theirPublicKeyBuffer,

packages/lit-node-client-nodejs/src/lib/lit-node-client-nodejs.ts

@@ -51,6 +51,8 @@ import {
   hashLitMessage,
   verifyAndDecryptWithSignatureShares,
   verifySignature,
+  walletDecrypt,
+  walletEncrypt,
 } from '@lit-protocol/crypto';
 import {
   defaultMintClaimCallback,
@@ -127,10 +129,12 @@ import type {
   JsonPkpSignSdkParams,
   JsonSignSessionKeyRequestV1,
   JsonSignSessionKeyRequestV2,
+  JsonSignSessionKeyResponse,
   LitNodeClientConfig,
   NodeBlsSigningShare,
   NodeCommandResponse,
   NodeSet,
+  PKPSignEndpointResponse,
   RejectedNodePromises,
   SessionKeyPair,
   SessionSigningTemplate,
@@ -139,7 +143,10 @@ import type {
   SignSessionKeyProp,
   SignSessionKeyResponse,
   SuccessNodePromises,
+  WalletEncryptedPayload,
 } from '@lit-protocol/types';
+import { json } from 'node:stream/consumers';
+import { GenericResponse } from 'packages/core/src/lib/types';
 
 export class LitNodeClientNodeJs extends LitCore implements ILitNodeClient {
   /** Tracks the total max price a user is willing to pay for each supported product type
@@ -604,7 +611,7 @@ export class LitNodeClientNodeJs extends LitCore implements ILitNodeClient {
     url: string,
     formattedParams: JsonExecutionSdkParams & { sessionSigs: SessionSigsMap },
     requestId: string,
-    nodeSet: NodeSet[]
+    nodeSet: { node: NodeSet, nodeIdentityKey: string }[]
   ) {
     // -- choose the right signature
     const sessionSig = this._getSessionSigByUrl({
@@ -615,7 +622,7 @@ export class LitNodeClientNodeJs extends LitCore implements ILitNodeClient {
     const reqBody: JsonExecutionRequest = {
       ...formattedParams,
       authSig: sessionSig,
-      nodeSet,
+      nodeSet: nodeSet,
     };
 
     const urlWithPath = composeLitUrl({
@@ -889,6 +896,17 @@ export class LitNodeClientNodeJs extends LitCore implements ILitNodeClient {
     // Handle promises for commands sent to Lit nodes
 
     const targetNodeUrls = targetNodePrices.map(({ url }) => url);
+    let keySets: Record<string, { theirPublicKey: Uint8Array, secretKey: Uint8Array }> = {};
+    targetNodeUrls.forEach((url) => {
+      const theirPublicKey = uint8arrayFromString(this.serverKeys[url].nodeIdentityKey);
+      const keyPair = nacl.box.keyPair.generate();
+      const secretKey = keyPair.secretKey;
+
+      keySets[url] = {
+        theirPublicKey,
+        secretKey,
+      };
+    });
     const nodePromises = this._getNodePromises(
       targetNodeUrls,
       (url: string) => {
@@ -906,6 +924,8 @@ export class LitNodeClientNodeJs extends LitCore implements ILitNodeClient {
                 params.messageToSign!
               );
 
+        const { theirPublicKey, secretKey } = keySets[url];
+
         const reqBody: JsonPkpSignRequest = {
           toSign: normalizeArray(toSign),
           signingScheme: params.signingScheme,
@@ -929,7 +949,13 @@ export class LitNodeClientNodeJs extends LitCore implements ILitNodeClient {
           endpoint: LIT_ENDPOINT.PKP_SIGN,
         });
 
-        return this.generatePromise(urlWithPath, reqBody, requestId);
+        const encrypted = walletEncrypt(
+          theirPublicKey,
+          secretKey,
+          uint8arrayFromString(JSON.stringify(reqBody))
+        );
+
+        return { url, promise: this.generatePromise(urlWithPath, encrypted, requestId) };
       }
     );
 
@@ -944,7 +970,29 @@ export class LitNodeClientNodeJs extends LitCore implements ILitNodeClient {
       return this._throwNodeError(res, requestId);
     }
 
-    const responseData = res.values;
+    const responseData = res.values.map((values) => {
+      const secretKey = keySets[values.url].secretKey;
+
+      const decrypted = walletDecrypt(
+        secretKey,
+        values.result,
+      );
+
+      const response: GenericResponse<PKPSignEndpointResponse> = JSON.parse(uint8arrayToString(decrypted, 'utf8'));
+
+      if (!response.ok) {
+        const error = response.error ?? "";
+        const errorObject = response.errorObject ?? {};
+
+        throw new Error(`${error} - ${errorObject}`);
+      }
+
+      if (!response.data) {
+        throw new Error('No data returned from pkp sign');
+      }
+
+      return response.data;
+    });
 
     logWithRequestId(
       requestId,
@@ -1521,6 +1569,7 @@ export class LitNodeClientNodeJs extends LitCore implements ILitNodeClient {
   };
 
   getSignSessionKeyShares = async (
+    nodeIdentityKey: string,
     url: string,
     params: {
       body: {
@@ -1538,11 +1587,34 @@ export class LitNodeClientNodeJs extends LitCore implements ILitNodeClient {
       url,
       endpoint: LIT_ENDPOINT.SIGN_SESSION_KEY,
     });
-    return await this._sendCommandToNode({
+
+    const theirPublicKey = uint8arrayFromString(nodeIdentityKey, 'base16');
+    const keyPair = nacl.box.keyPair();
+    const secretKey = keyPair.secretKey;
+
+    const encrypted = await walletEncrypt(
+      secretKey,
+      theirPublicKey,
+      uint8arrayFromString(JSON.stringify(params.body), 'utf8')
+    );
+
+    const response: WalletEncryptedPayload = await this._sendCommandToNode({
       url: urlWithPath,
-      data: params.body,
+      data: encrypted,
       requestId,
     });
+
+    const decrypted = await walletDecrypt(
+      secretKey,
+      response,
+    );
+
+    const outerResponse: GenericResponse<JsonSignSessionKeyResponse> = JSON.parse(uint8arrayToString(decrypted, 'utf8'));
+    if (!outerResponse.ok) {
+      throw new Error(`${outerResponse.error} - ${outerResponse.errorObject}`);
+    }
+
+    return outerResponse.data;
   };
 
   getMaxPricesForNodeProduct = async ({