ccxt · carlosmiei · Apr 2, 2025 · Apr 1, 2025 · Apr 1, 2025 · Apr 1, 2025
diff --git a/package.json b/package.json
@@ -11,6 +11,8 @@
     }
   },
   "dependencies": {
+    "@noble/curves": "^1.8.1",
+    "@scure/base": "^1.2.4",
     "https-proxy-agent": "^7.0.0",
     "json-bigint": "^1.0.0",
     "lodash.zipobject": "^4.1.3",

diff --git a/src/node-binance-api.ts b/src/node-binance-api.ts
@@ -1,7 +1,7 @@
 
 import WebSocket from 'ws';
 // import request from 'request';
-import crypto from 'crypto';
+import crypto, { createSign } from 'crypto';
 import file from 'fs';
 import url from 'url';
 import JSONbig from 'json-bigint';
@@ -11,6 +11,11 @@ import { HttpsProxyAgent } from 'https-proxy-agent';
 import { SocksProxyAgent } from 'socks-proxy-agent';
 // @ts-ignore
 import nodeFetch from 'node-fetch';
+// @ts-ignore
+import { ed25519 } from '@noble/curves/ed25519';
+// @ts-ignore
+import { base64 } from '@scure/base';
+
 // @ts-ignore
 import zip from 'lodash.zipobject';
 import stringHash from 'string-hash';
@@ -503,7 +508,7 @@ export default class Binance {
                 data.timestamp += this.timeOffset;
             }
             query = this.makeQueryString(data);
-            data.signature = crypto.createHmac('sha256', this.APISECRET).update(query).digest('hex'); // HMAC hash header
+            data.signature = this.generateSignature(query);
             opt.url = `${url}?${query}&signature=${data.signature}`;
         }
         (opt as any).qs = data;
@@ -615,7 +620,9 @@ export default class Binance {
 
         if (!data.recvWindow) data.recvWindow = this.Options.recvWindow;
         const query = method === 'POST' && noDataInSignature ? '' : this.makeQueryString(data);
-        const signature = crypto.createHmac('sha256', this.Options.APISECRET).update(query).digest('hex'); // set the HMAC hash header
+
+        const signature = this.generateSignature(query);
+
         if (method === 'POST') {
             const opt = this.reqObjPOST(
                 url,
@@ -638,6 +645,42 @@ export default class Binance {
         }
     }
 
+    unarmorKey(a:string):number[] {
+        // eslint-disable-next-line no-useless-escape
+        const m = /-----BEGIN [^-]+-----\n([A-Za-z0-9+\/=\s]+)\n-----END [^-]+-----|begin-base64[^\n]+\n([A-Za-z0-9+\/=\s]+)====/.exec(a);
+        if (m) {
+            if (m[1]) {
+                a = m[1];
+            } else if (m[2]) {
+                a = m[2];
+            } else {
+                throw new Error("RegExp out of sync");
+            }
+        }
+        return base64.decode(a);
+    }
+
+    generateSignature(query: string) {
+        const APISECRET = this.Options.APISECRET || this.APISECRET;
+        let signature = '';
+        if (APISECRET.includes ('PRIVATE KEY')) {
+            // if less than the below length, then it can't be RSA key
+            if (APISECRET.length < 500) {
+                const privateKey = new Uint8Array (this.unarmorKey (APISECRET).slice (16));
+                const encodedQuery = new TextEncoder().encode(query);
+                const signatureInit = ed25519.sign (encodedQuery, privateKey);
+                signature = base64.encode (signatureInit);
+            } else {
+                const signed = createSign('RSA-SHA256').update(query);
+                signature = signed.sign(APISECRET, 'base64');
+                signature = encodeURIComponent (signature);
+            }
+        } else {
+            signature = crypto.createHmac('sha256', this.Options.APISECRET).update(query).digest('hex'); // set the HMAC hash header
+        }
+        return signature;
+    }
+
     // --- ENDPOINTS --- //
 
     /**