Add mnemonicToEntropy function

MetaMask · Nov 25, 2024 · 9d1a634 · 9d1a634
1 parent 3f37609
commit 9d1a634
Show file tree

Hide file tree

Showing 3 changed files with 121 additions and 17 deletions.
diff --git a/src/derivers/bip39.test.ts b/src/derivers/bip39.test.ts
@@ -1,6 +1,7 @@
 import {
   assert,
   bigIntToBytes,
+  bytesToHex,
   concatBytes,
   hexToBytes,
 } from '@metamask/utils';
@@ -14,6 +15,7 @@ import {
   createBip39KeyFromSeed,
   deriveChildKey,
   mnemonicToSeed,
+  mnemonicToEntropy,
 } from './bip39';
 
 const TEST_MNEMONIC_PHRASE =
@@ -83,6 +85,13 @@ describe('mnemonicToSeed', () => {
   });
 });
 
+describe('mnemonicToEntropy', () => {
+  it('converts a mnemonic phrase to entropy', async () => {
+    const entropy = await mnemonicToEntropy(TEST_MNEMONIC_PHRASE);
+    expect(bytesToHex(entropy)).toBe('0xa4cbb132b7875ee9ae52ffc31b0e2c56');
+  });
+});
+
 describe('createBip39KeyFromSeed', () => {
   const RANDOM_SEED = hexToBytes(
     '0xea82e6ee9d319c083007d0b011a37b0e480ae02417a988ac90355abd53cd04fc',

diff --git a/src/derivers/bip39.ts b/src/derivers/bip39.ts
@@ -1,12 +1,11 @@
-import { mnemonicToEntropy } from '@metamask/scure-bip39';
 import { wordlist as englishWordlist } from '@metamask/scure-bip39/dist/wordlists/english';
 import { assert, stringToBytes } from '@metamask/utils';
 
 import type { DeriveChildKeyArgs } from '.';
 import type { BIP39StringNode } from '../constants';
 import { BYTES_KEY_LENGTH } from '../constants';
 import type { CryptographicFunctions } from '../cryptography';
-import { hmacSha512, pbkdf2Sha512 } from '../cryptography';
+import { sha256, hmacSha512, pbkdf2Sha512 } from '../cryptography';
 import type { Curve } from '../curves';
 import { SLIP10Node } from '../SLIP10Node';
 import { getFingerprint } from '../utils';
@@ -37,29 +36,30 @@ function validateMnemonicPhrase(mnemonicPhrase: string) {
 }
 
 /**
- * Encode a BIP-39 mnemonic phrase to a `Uint8Array` for use in seed generation.
- * If the mnemonic is already a `Uint8Array`, it is assumed to contain the
- * indices of the words in the wordlist.
+ * Get the mnemonic phrase from a mnemonic phrase or a `Uint8Array` of indices.
+ * If the mnemonic is a `Uint8Array`, it is assumed to contain the indices of
+ * the words in the wordlist.
  *
- * @param mnemonic - The mnemonic phrase to encode.
+ * @param mnemonic - The mnemonic phrase or indices.
  * @param wordlist - The wordlist to use.
- * @returns The encoded mnemonic phrase.
+ * @returns The mnemonic phrase.
  */
-function encodeMnemonicPhrase(
+function getMnemonicPhrase(
   mnemonic: string | Uint8Array,
   wordlist: string[],
-) {
+): string {
   if (typeof mnemonic === 'string') {
     validateMnemonicPhrase(mnemonic);
-    return stringToBytes(mnemonic.normalize('NFKD'));
+    return mnemonic;
   }
 
   const mnemonicString = Array.from(new Uint16Array(mnemonic.buffer))
     .map((i) => wordlist[i])
     .join(' ');
 
   validateMnemonicPhrase(mnemonicString);
-  return stringToBytes(mnemonicString);
+
+  return mnemonicString;
 }
 
 /**
@@ -78,15 +78,111 @@ export async function mnemonicToSeed(
   cryptographicFunctions?: CryptographicFunctions,
 ) {
   const salt = `mnemonic${passphrase}`.normalize('NFKD');
+  const mnemonicString = getMnemonicPhrase(mnemonic, englishWordlist);
+
   return await pbkdf2Sha512(
-    encodeMnemonicPhrase(mnemonic, englishWordlist),
+    stringToBytes(mnemonicString),
     stringToBytes(salt),
     2048,
     64,
     cryptographicFunctions,
   );
 }
 
+/**
+ * Convert a `Uint8Array` of bytes to an array of bits.
+ *
+ * @param bytes - The `Uint8Array` to convert.
+ * @returns The array of bits.
+ */
+function bytesToBits(bytes: Uint8Array): number[] {
+  const bits: number[] = [];
+  for (const byte of bytes) {
+    for (let i = 7; i >= 0; i--) {
+      // eslint-disable-next-line no-bitwise
+      bits.push((byte >> i) & 1);
+    }
+  }
+
+  return bits;
+}
+
+/**
+ * Convert an array of bits to a `Uint8Array`.
+ *
+ * @param bits - The array of bits.
+ * @returns The `Uint8Array`.
+ */
+export function bitsToBytes(bits: number[]): Uint8Array {
+  if (bits.length % 8 !== 0) {
+    throw new Error('The number of bits must be a multiple of 8.');
+  }
+
+  const bytes = new Uint8Array(bits.length / 8);
+
+  for (let i = 0; i < bits.length; i += 8) {
+    let byte = 0;
+    for (let j = 0; j < 8; j++) {
+      const value = bits[i + j];
+      assert(value === 0 || value === 1, 'Invalid bit value.');
+
+      // eslint-disable-next-line no-bitwise
+      byte |= value << (7 - j);
+    }
+    bytes[i / 8] = byte;
+  }
+
+  return bytes;
+}
+
+/**
+ * Get the checksum for the entropy.
+ *
+ * @param entropy - The entropy.
+ * @returns The checksum as an array of bits.
+ */
+function getChecksum(entropy: Uint8Array): number[] {
+  const hash = sha256(entropy);
+  return bytesToBits(hash).slice(0, entropy.length / 4);
+}
+
+/**
+ * Convert a BIP-39 mnemonic phrase to entropy.
+ *
+ * @param mnemonic - The BIP-39 mnemonic phrase to convert.
+ * @returns The entropy.
+ */
+export async function mnemonicToEntropy(
+  mnemonic: string | Uint8Array,
+): Promise<Uint8Array> {
+  const words = getMnemonicPhrase(mnemonic, englishWordlist).split(' ');
+  const bits = words.flatMap((word) => {
+    const index = englishWordlist.indexOf(word);
+    const binaryBits = [];
+
+    for (let i = 10; i >= 0; i--) {
+      // eslint-disable-next-line no-bitwise
+      binaryBits.push((index >> i) & 1);
+    }
+
+    return binaryBits;
+  });
+
+  const checksumLength = bits.length % 32;
+  const entropy = bits.slice(0, -checksumLength);
+  const checksum = bits.slice(-checksumLength);
+
+  const newChecksum = getChecksum(bitsToBytes(entropy));
+
+  assert(
+    checksum.length === newChecksum.length &&
+      checksum.every((bit, index) => bit === newChecksum[index]),
+    'Invalid checksum: The checksum does not match the entropy.',
+  );
+
+  return bitsToBytes(entropy);
+}
+
 /**
  * Convert a BIP-39 mnemonic phrase to a multi path.
  *
@@ -120,7 +216,7 @@ export async function deriveChildKey(
       );
     case 'cip3':
       return entropyToCip3MasterNode(
-        mnemonicToEntropy(path, englishWordlist),
+        await mnemonicToEntropy(path),
         curve,
         cryptographicFunctions,
       );

diff --git a/src/utils.test.ts b/src/utils.test.ts
@@ -1,9 +1,8 @@
-import { mnemonicToSeed } from '@metamask/scure-bip39';
-import { wordlist } from '@metamask/scure-bip39/dist/wordlists/english';
 import { hexToBytes, stringToBytes } from '@metamask/utils';
 
 import fixtures from '../test/fixtures';
 import { BIP44Node } from './BIP44Node';
+import { mnemonicToSeed } from './derivers';
 import {
   getBIP32NodeToken,
   getBIP44ChangePathString,
@@ -425,8 +424,8 @@ describe('mnemonicPhraseToBytes', () => {
     'converts a mnemonic phrase to a Uint8Array',
     async (mnemonicPhrase) => {
       const array = mnemonicPhraseToBytes(mnemonicPhrase);
-      expect(await mnemonicToSeed(array, wordlist)).toStrictEqual(
-        await mnemonicToSeed(mnemonicPhrase, wordlist),
+      expect(await mnemonicToSeed(array)).toStrictEqual(
+        await mnemonicToSeed(mnemonicPhrase),
       );
     },
   );