Updated to latest elliptic library to fix audit warnings.

Author: ricmoo

package-lock.json

@@ -93,7 +93,7 @@
     "aes-js": "3.0.0",
     "bech32": "1.1.4",
     "bn.js": "^5.2.1",
-    "elliptic": "6.5.4",
+    "elliptic": "6.6.1",
     "hash.js": "1.1.7",
     "js-sha3": "0.8.0",
     "scrypt-js": "3.0.1",

package.json

@@ -11503,12 +11503,15 @@ utils.encode = utils_1.encode;
 // Represent num in a w-NAF form
 function getNAF(num, w, bits) {
   var naf = new Array(Math.max(num.bitLength(), bits) + 1);
-  naf.fill(0);
+  var i;
+  for (i = 0; i < naf.length; i += 1) {
+    naf[i] = 0;
+  }
 
   var ws = 1 << (w + 1);
   var k = num.clone();
 
-  for (var i = 0; i < naf.length; i++) {
+  for (i = 0; i < naf.length; i++) {
     var z;
     var mod = k.andln(ws - 1);
     if (k.isOdd()) {
@@ -13405,8 +13408,8 @@ KeyPair.prototype.sign = function sign(msg, enc, options) {
   return this.ec.sign(msg, this, enc, options);
 };
 
-KeyPair.prototype.verify = function verify(msg, signature) {
-  return this.ec.verify(msg, signature, this);
+KeyPair.prototype.verify = function verify(msg, signature, options) {
+  return this.ec.verify(msg, signature, this, undefined, options);
 };
 
 KeyPair.prototype.inspect = function inspect() {
@@ -13454,6 +13457,10 @@ function getLength(buf, p) {
     return false;
   }
 
+  if(buf[p.place] === 0x00) {
+    return false;
+  }
+
   var val = 0;
   for (var i = 0, off = p.place; i < octetLen; i++, off++) {
     val <<= 8;
@@ -13502,6 +13509,9 @@ Signature.prototype._importDER = function _importDER(data, enc) {
   if (rlen === false) {
     return false;
   }
+  if ((data[p.place] & 128) !== 0) {
+    return false;
+  }
   var r = data.slice(p.place, rlen + p.place);
   p.place += rlen;
   if (data[p.place++] !== 0x02) {
@@ -13514,6 +13524,9 @@ Signature.prototype._importDER = function _importDER(data, enc) {
   if (data.length !== slen + p.place) {
     return false;
   }
+  if ((data[p.place] & 128) !== 0) {
+    return false;
+  }
   var s = data.slice(p.place, slen + p.place);
   if (r[0] === 0) {
     if (r[1] & 0x80) {
@@ -13661,8 +13674,27 @@ EC.prototype.genKeyPair = function genKeyPair(options) {
   }
 };
 
-EC.prototype._truncateToN = function _truncateToN(msg, truncOnly) {
-  var delta = msg.byteLength() * 8 - this.n.bitLength();
+EC.prototype._truncateToN = function _truncateToN(msg, truncOnly, bitLength) {
+  var byteLength;
+  if (bn.isBN(msg) || typeof msg === 'number') {
+    msg = new bn(msg, 16);
+    byteLength = msg.byteLength();
+  } else if (typeof msg === 'object') {
+    // BN assumes an array-like input and asserts length
+    byteLength = msg.length;
+    msg = new bn(msg, 16);
+  } else {
+    // BN converts the value to string
+    var str = msg.toString();
+    // HEX encoding
+    byteLength = (str.length + 1) >>> 1;
+    msg = new bn(str, 16);
+  }
+  // Allow overriding
+  if (typeof bitLength !== 'number') {
+    bitLength = byteLength * 8;
+  }
+  var delta = bitLength - this.n.bitLength();
   if (delta > 0)
     msg = msg.ushrn(delta);
   if (!truncOnly && msg.cmp(this.n) >= 0)
@@ -13679,8 +13711,18 @@ EC.prototype.sign = function sign(msg, key, enc, options) {
   if (!options)
     options = {};
 
+  if (typeof msg !== 'string' && typeof msg !== 'number' && !bn.isBN(msg)) {
+    assert$5(typeof msg === 'object' && msg && typeof msg.length === 'number',
+      'Expected message to be an array-like, a hex string, or a BN instance');
+    assert$5((msg.length >>> 0) === msg.length); // non-negative 32-bit integer
+    for (var i = 0; i < msg.length; i++) assert$5((msg[i] & 255) === msg[i]);
+  }
+
   key = this.keyFromPrivate(key, enc);
-  msg = this._truncateToN(new bn(msg, 16));
+  msg = this._truncateToN(msg, false, options.msgBitLength);
+
+  // Would fail further checks, but let's make the error message clear
+  assert$5(!msg.isNeg(), 'Can not sign a negative message');
 
   // Zero-extend key to provide enough entropy
   var bytes = this.n.byteLength();
@@ -13689,6 +13731,9 @@ EC.prototype.sign = function sign(msg, key, enc, options) {
   // Zero-extend nonce to have the same byte size as N
   var nonce = msg.toArray('be', bytes);
 
+  // Recheck nonce to be bijective to msg
+  assert$5((new bn(nonce)).eq(msg), 'Can not sign message');
+
   // Instantiate Hmac_DRBG
   var drbg = new hmacDrbg({
     hash: this.hash,
@@ -13736,8 +13781,11 @@ EC.prototype.sign = function sign(msg, key, enc, options) {
   }
 };
 
-EC.prototype.verify = function verify(msg, signature$1, key, enc) {
-  msg = this._truncateToN(new bn(msg, 16));
+EC.prototype.verify = function verify(msg, signature$1, key, enc, options) {
+  if (!options)
+    options = {};
+
+  msg = this._truncateToN(msg, false, options.msgBitLength);
   key = this.keyFromPublic(key, enc);
   signature$1 = new signature(signature$1, 'hex');
 
@@ -13830,7 +13878,7 @@ var elliptic_1 = createCommonjsModule$1(function (module, exports) {
 
 var elliptic = exports;
 
-elliptic.version = /*RicMoo:ethers*/{ version: "6.5.4" }.version;
+elliptic.version = /*RicMoo:ethers*/{ version: "6.6.1" }.version;
 elliptic.utils = utils_1$1;
 elliptic.rand = /*RicMoo:ethers:require(brorand)*/(function() { throw new Error('unsupported'); });
 elliptic.curve = curve_1;

packages/ethers/dist/ethers.esm.js

@@ -14904,12 +14904,15 @@
 	// Represent num in a w-NAF form
 	function getNAF(num, w, bits) {
 	  var naf = new Array(Math.max(num.bitLength(), bits) + 1);
-	  naf.fill(0);
+	  var i;
+	  for (i = 0; i < naf.length; i += 1) {
+	    naf[i] = 0;
+	  }
 
 	  var ws = 1 << (w + 1);
 	  var k = num.clone();
 
-	  for (var i = 0; i < naf.length; i++) {
+	  for (i = 0; i < naf.length; i++) {
 	    var z;
 	    var mod = k.andln(ws - 1);
 	    if (k.isOdd()) {
@@ -18083,8 +18086,8 @@
 	  return this.ec.sign(msg, this, enc, options);
 	};
 
-	KeyPair.prototype.verify = function verify(msg, signature) {
-	  return this.ec.verify(msg, signature, this);
+	KeyPair.prototype.verify = function verify(msg, signature, options) {
+	  return this.ec.verify(msg, signature, this, undefined, options);
 	};
 
 	KeyPair.prototype.inspect = function inspect() {
@@ -18132,6 +18135,10 @@
 	    return false;
 	  }
 
+	  if(buf[p.place] === 0x00) {
+	    return false;
+	  }
+
 	  var val = 0;
 	  for (var i = 0, off = p.place; i < octetLen; i++, off++) {
 	    val <<= 8;
@@ -18180,6 +18187,9 @@
 	  if (rlen === false) {
 	    return false;
 	  }
+	  if ((data[p.place] & 128) !== 0) {
+	    return false;
+	  }
 	  var r = data.slice(p.place, rlen + p.place);
 	  p.place += rlen;
 	  if (data[p.place++] !== 0x02) {
@@ -18192,6 +18202,9 @@
 	  if (data.length !== slen + p.place) {
 	    return false;
 	  }
+	  if ((data[p.place] & 128) !== 0) {
+	    return false;
+	  }
 	  var s = data.slice(p.place, slen + p.place);
 	  if (r[0] === 0) {
 	    if (r[1] & 0x80) {
@@ -18339,8 +18352,27 @@
 	  }
 	};
 
-	EC.prototype._truncateToN = function _truncateToN(msg, truncOnly) {
-	  var delta = msg.byteLength() * 8 - this.n.bitLength();
+	EC.prototype._truncateToN = function _truncateToN(msg, truncOnly, bitLength) {
+	  var byteLength;
+	  if (bn$1.isBN(msg) || typeof msg === 'number') {
+	    msg = new bn$1(msg, 16);
+	    byteLength = msg.byteLength();
+	  } else if (typeof msg === 'object') {
+	    // BN assumes an array-like input and asserts length
+	    byteLength = msg.length;
+	    msg = new bn$1(msg, 16);
+	  } else {
+	    // BN converts the value to string
+	    var str = msg.toString();
+	    // HEX encoding
+	    byteLength = (str.length + 1) >>> 1;
+	    msg = new bn$1(str, 16);
+	  }
+	  // Allow overriding
+	  if (typeof bitLength !== 'number') {
+	    bitLength = byteLength * 8;
+	  }
+	  var delta = bitLength - this.n.bitLength();
 	  if (delta > 0)
 	    msg = msg.ushrn(delta);
 	  if (!truncOnly && msg.cmp(this.n) >= 0)
@@ -18357,8 +18389,18 @@
 	  if (!options)
 	    options = {};
 
+	  if (typeof msg !== 'string' && typeof msg !== 'number' && !bn$1.isBN(msg)) {
+	    assert$5(typeof msg === 'object' && msg && typeof msg.length === 'number',
+	      'Expected message to be an array-like, a hex string, or a BN instance');
+	    assert$5((msg.length >>> 0) === msg.length); // non-negative 32-bit integer
+	    for (var i = 0; i < msg.length; i++) assert$5((msg[i] & 255) === msg[i]);
+	  }
+
 	  key = this.keyFromPrivate(key, enc);
-	  msg = this._truncateToN(new bn$1(msg, 16));
+	  msg = this._truncateToN(msg, false, options.msgBitLength);
+
+	  // Would fail further checks, but let's make the error message clear
+	  assert$5(!msg.isNeg(), 'Can not sign a negative message');
 
 	  // Zero-extend key to provide enough entropy
 	  var bytes = this.n.byteLength();
@@ -18367,6 +18409,9 @@
 	  // Zero-extend nonce to have the same byte size as N
 	  var nonce = msg.toArray('be', bytes);
 
+	  // Recheck nonce to be bijective to msg
+	  assert$5((new bn$1(nonce)).eq(msg), 'Can not sign message');
+
 	  // Instantiate Hmac_DRBG
 	  var drbg = new hmacDrbg({
 	    hash: this.hash,
@@ -18414,8 +18459,11 @@
 	  }
 	};
 
-	EC.prototype.verify = function verify(msg, signature$1, key, enc) {
-	  msg = this._truncateToN(new bn$1(msg, 16));
+	EC.prototype.verify = function verify(msg, signature$1, key, enc, options) {
+	  if (!options)
+	    options = {};
+
+	  msg = this._truncateToN(msg, false, options.msgBitLength);
 	  key = this.keyFromPublic(key, enc);
 	  signature$1 = new signature(signature$1, 'hex');
 
@@ -18508,7 +18556,7 @@
 
 	var elliptic = exports;
 
-	elliptic.version = /*RicMoo:ethers*/{ version: "6.5.4" }.version;
+	elliptic.version = /*RicMoo:ethers*/{ version: "6.6.1" }.version;
 	elliptic.utils = utils_1$1;
 	elliptic.rand = /*RicMoo:ethers:require(brorand)*/(function() { throw new Error('unsupported'); });
 	elliptic.curve = curve_1;

packages/ethers/dist/ethers.esm.js.map

@@ -52,6 +52,9 @@
   "license": "MIT",
   "main": "./lib/index.js",
   "module": "./lib.esm/index.js",
+  "publishConfig": {
+    "tag": "legacy-v5"
+  },
   "name": "ethers",
   "repository": {
     "directory": "packages/ethers",