@agentunion/fastaun 0.2.13

package/dist/crypto.js

@@ -0,0 +1,85 @@
+/**
+ * AUN SDK 密码学工具
+ *
+ * 使用 Node.js 内置 crypto 模块，与 Python SDK 的 CryptoProvider 对齐。
+ */
+import { generateKeyPairSync, createSign, createHash, randomBytes, X509Certificate } from 'node:crypto';
+/**
+ * 密码学操作提供者。
+ */
+export class CryptoProvider {
+    curveName = 'P-256';
+    /**
+     * 生成 ECDSA P-256 密钥对。
+     * 返回 PEM 私钥 + DER 公钥（base64）+ 曲线名称。
+     */
+    generateIdentity() {
+        const { privateKey, publicKey } = generateKeyPairSync('ec', {
+            namedCurve: 'prime256v1',
+        });
+        const privateKeyPem = privateKey
+            .export({ type: 'pkcs8', format: 'pem' })
+            .toString();
+        const publicKeyDer = publicKey.export({ type: 'spki', format: 'der' });
+        return {
+            private_key_pem: privateKeyPem,
+            public_key_der_b64: publicKeyDer.toString('base64'),
+            curve: this.curveName,
+        };
+    }
+    /**
+     * 使用私钥签名登录 nonce。
+     * 签名数据格式："nonce:timestamp"
+     *
+     * @returns [signature_b64, timestamp]
+     */
+    signLoginNonce(privateKeyPem, nonce, clientTime) {
+        const usedTime = clientTime ?? String(Math.floor(Date.now() / 1000));
+        const signData = `${nonce}:${usedTime}`;
+        // Python 的 cryptography 库默认输出 DER 编码签名，
+        // Node.js createSign 默认也输出 DER 编码，保持一致。
+        const signer = createSign('SHA256');
+        signer.update(signData);
+        signer.end();
+        const signature = signer.sign(privateKeyPem);
+        return [signature.toString('base64'), usedTime];
+    }
+    /**
+     * 生成客户端 nonce（12 字节随机数的 base64 编码）。
+     */
+    newClientNonce() {
+        return randomBytes(12).toString('base64');
+    }
+}
+/**
+ * 统一的证书 SHA-256 指纹计算（对齐 Python certificate_sha256_fingerprint）。
+ * 返回 "sha256:{hex}" 格式的指纹。
+ * e2ee.ts 与 keystore/file.ts 共用此函数，避免两套实现不一致。
+ */
+export function certificateSha256Fingerprint(certPem) {
+    const raw = Buffer.isBuffer(certPem) ? certPem : Buffer.from(certPem, 'utf-8');
+    const text = raw.toString('utf-8');
+    let der;
+    if (text.includes('-----BEGIN CERTIFICATE-----')) {
+        // PEM → DER 解码
+        const body = text
+            .replace(/-----BEGIN CERTIFICATE-----/g, '')
+            .replace(/-----END CERTIFICATE-----/g, '')
+            .replace(/\s+/g, '');
+        if (!body)
+            return '';
+        der = Buffer.from(body, 'base64');
+    }
+    else {
+        // 尝试通过 X509Certificate 获取 DER
+        try {
+            der = new X509Certificate(raw).raw;
+        }
+        catch {
+            der = raw;
+        }
+    }
+    const hash = createHash('sha256').update(der).digest('hex');
+    return `sha256:${hash}`;
+}
+//# sourceMappingURL=crypto.js.map

package/dist/crypto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"crypto.js","sourceRoot":"","sources":["../src/crypto.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,mBAAmB,EAAE,UAAU,EAAE,UAAU,EAAE,WAAW,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAWxG;;GAEG;AACH,MAAM,OAAO,cAAc;IAChB,SAAS,GAAG,OAAO,CAAC;IAE7B;;;OAGG;IACH,gBAAgB;QACd,MAAM,EAAE,UAAU,EAAE,SAAS,EAAE,GAAG,mBAAmB,CAAC,IAAI,EAAE;YAC1D,UAAU,EAAE,YAAY;SACzB,CAAC,CAAC;QAEH,MAAM,aAAa,GAAG,UAAU;aAC7B,MAAM,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC;aACxC,QAAQ,EAAE,CAAC;QACd,MAAM,YAAY,GAAG,SAAS,CAAC,MAAM,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;QAEvE,OAAO;YACL,eAAe,EAAE,aAAa;YAC9B,kBAAkB,EAAE,YAAY,CAAC,QAAQ,CAAC,QAAQ,CAAC;YACnD,KAAK,EAAE,IAAI,CAAC,SAAS;SACtB,CAAC;IACJ,CAAC;IAED;;;;;OAKG;IACH,cAAc,CACZ,aAAqB,EACrB,KAAa,EACb,UAAmB;QAEnB,MAAM,QAAQ,GAAG,UAAU,IAAI,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,CAAC;QACrE,MAAM,QAAQ,GAAG,GAAG,KAAK,IAAI,QAAQ,EAAE,CAAC;QAExC,wCAAwC;QACxC,wCAAwC;QACxC,MAAM,MAAM,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC;QACpC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QACxB,MAAM,CAAC,GAAG,EAAE,CAAC;QACb,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QAE7C,OAAO,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,QAAQ,CAAC,CAAC;IAClD,CAAC;IAED;;OAEG;IACH,cAAc;QACZ,OAAO,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IAC5C,CAAC;CACF;AAED;;;;GAIG;AACH,MAAM,UAAU,4BAA4B,CAAC,OAAwB;IACnE,MAAM,GAAG,GAAG,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;IAC/E,MAAM,IAAI,GAAG,GAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IACnC,IAAI,GAAW,CAAC;IAChB,IAAI,IAAI,CAAC,QAAQ,CAAC,6BAA6B,CAAC,EAAE,CAAC;QACjD,eAAe;QACf,MAAM,IAAI,GAAG,IAAI;aACd,OAAO,CAAC,8BAA8B,EAAE,EAAE,CAAC;aAC3C,OAAO,CAAC,4BAA4B,EAAE,EAAE,CAAC;aACzC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;QACvB,IAAI,CAAC,IAAI;YAAE,OAAO,EAAE,CAAC;QACrB,GAAG,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;IACpC,CAAC;SAAM,CAAC;QACN,8BAA8B;QAC9B,IAAI,CAAC;YACH,GAAG,GAAG,IAAI,eAAe,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC;QACrC,CAAC;QAAC,MAAM,CAAC;YACP,GAAG,GAAG,GAAG,CAAC;QACZ,CAAC;IACH,CAAC;IACD,MAAM,IAAI,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAC5D,OAAO,UAAU,IAAI,EAAE,CAAC;AAC1B,CAAC"}

package/dist/discovery.d.ts

@@ -0,0 +1,22 @@
+export declare class GatewayDiscovery {
+    private _verifySsl;
+    private _lastHealthy;
+    constructor(opts?: {
+        verifySsl?: boolean;
+    });
+    /** 最近一次 health check 结果，null 表示尚未检查 */
+    get lastHealthy(): boolean | null;
+    /**
+     * 向 gatewayUrl 对应的 /health 端点发送 GET 请求，检查网关可用性。
+     * 结果缓存到 lastHealthy，同时返回检查结果。
+     */
+    checkHealth(gatewayUrl: string, timeout?: number): Promise<boolean>;
+    /**
+     * 从 well-known URL 发现 Gateway。
+     *
+     * @param wellKnownUrl - well-known 发现端点（如 https://alice.aid.com/.well-known/aun-gateway）
+     * @param timeout - 请求超时（毫秒，默认 5000）
+     * @returns Gateway WebSocket URL
+     */
+    discover(wellKnownUrl: string, timeout?: number): Promise<string>;
+}

package/dist/discovery.js

@@ -0,0 +1,110 @@
+import * as http from 'node:http';
+import * as https from 'node:https';
+import { ConnectionError, ValidationError } from './errors.js';
+import { isJsonObject } from './types.js';
+function _httpGetJson(url, verifySsl, timeout) {
+    return new Promise((resolve, reject) => {
+        const parsed = new URL(url);
+        const mod = parsed.protocol === 'https:' ? https : http;
+        const options = { timeout };
+        if (!verifySsl) {
+            options.rejectUnauthorized = false;
+        }
+        const req = mod.get(url, options, (res) => {
+            if (res.statusCode && (res.statusCode < 200 || res.statusCode >= 300)) {
+                reject(new Error(`HTTP ${res.statusCode}`));
+                res.resume();
+                return;
+            }
+            const chunks = [];
+            res.on('data', (chunk) => chunks.push(chunk));
+            res.on('end', () => {
+                try {
+                    resolve(JSON.parse(Buffer.concat(chunks).toString('utf-8')));
+                }
+                catch (error) {
+                    reject(error);
+                }
+            });
+            res.on('error', reject);
+        });
+        req.on('error', reject);
+        req.on('timeout', () => {
+            req.destroy();
+            reject(new Error(`timeout fetching ${url}`));
+        });
+    });
+}
+function _httpGetOk(url, verifySsl, timeout) {
+    return new Promise((resolve) => {
+        const parsed = new URL(url);
+        const mod = parsed.protocol === 'https:' ? https : http;
+        const options = { method: 'GET', timeout };
+        if (!verifySsl)
+            options.rejectUnauthorized = false;
+        const req = mod.request(url, options, (res) => {
+            res.resume();
+            resolve(res.statusCode === 200);
+        });
+        req.on('error', () => resolve(false));
+        req.on('timeout', () => { req.destroy(); resolve(false); });
+        req.end();
+    });
+}
+export class GatewayDiscovery {
+    _verifySsl;
+    _lastHealthy = null;
+    constructor(opts) {
+        this._verifySsl = opts?.verifySsl ?? true;
+    }
+    /** 最近一次 health check 结果，null 表示尚未检查 */
+    get lastHealthy() { return this._lastHealthy; }
+    /**
+     * 向 gatewayUrl 对应的 /health 端点发送 GET 请求，检查网关可用性。
+     * 结果缓存到 lastHealthy，同时返回检查结果。
+     */
+    async checkHealth(gatewayUrl, timeout = 5_000) {
+        const parsed = new URL(gatewayUrl);
+        parsed.protocol = parsed.protocol === 'wss:' ? 'https:' : 'http:';
+        parsed.pathname = '/health';
+        parsed.search = '';
+        parsed.hash = '';
+        const healthUrl = parsed.toString();
+        this._lastHealthy = await _httpGetOk(healthUrl, this._verifySsl, timeout);
+        return this._lastHealthy;
+    }
+    /**
+     * 从 well-known URL 发现 Gateway。
+     *
+     * @param wellKnownUrl - well-known 发现端点（如 https://alice.aid.com/.well-known/aun-gateway）
+     * @param timeout - 请求超时（毫秒，默认 5000）
+     * @returns Gateway WebSocket URL
+     */
+    async discover(wellKnownUrl, timeout = 5_000) {
+        let payload;
+        try {
+            const rawPayload = await _httpGetJson(wellKnownUrl, this._verifySsl, timeout);
+            if (!isJsonObject(rawPayload)) {
+                throw new ValidationError('well-known returned invalid payload');
+            }
+            payload = rawPayload;
+        }
+        catch (err) {
+            throw new ConnectionError(`gateway discovery failed for ${wellKnownUrl}: ${err instanceof Error ? err.message : String(err)}`, { retryable: true });
+        }
+        const gateways = payload.gateways;
+        if (!Array.isArray(gateways) || gateways.length === 0) {
+            throw new ValidationError('well-known returned empty gateways');
+        }
+        // 按 priority 排序（数值越小优先级越高）
+        const sorted = [...gateways].sort((a, b) => (Number(a.priority ?? 999)) - (Number(b.priority ?? 999)));
+        const url = sorted[0]?.url;
+        if (!url || typeof url !== 'string') {
+            throw new ValidationError('well-known missing gateway url');
+        }
+        // 发现后自动检查网关可用性（不阻塞，失败不影响返回）
+        this.checkHealth(url, timeout).catch(() => { });
+        return url;
+    }
+}
+//# sourceMappingURL=discovery.js.map

package/dist/discovery.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"discovery.js","sourceRoot":"","sources":["../src/discovery.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,IAAI,MAAM,WAAW,CAAC;AAClC,OAAO,KAAK,KAAK,MAAM,YAAY,CAAC;AACpC,OAAO,EAAE,eAAe,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAC/D,OAAO,EAAE,YAAY,EAAoE,MAAM,YAAY,CAAC;AAE5G,SAAS,YAAY,CAAC,GAAW,EAAE,SAAkB,EAAE,OAAe;IACpE,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;QAC5B,MAAM,GAAG,GAAG,MAAM,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC;QACxD,MAAM,OAAO,GAAyB,EAAE,OAAO,EAAE,CAAC;QAClD,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,OAAO,CAAC,kBAAkB,GAAG,KAAK,CAAC;QACrC,CAAC;QAED,MAAM,GAAG,GAAG,GAAG,CAAC,GAAG,CAAC,GAAG,EAAE,OAAO,EAAE,CAAC,GAAyB,EAAE,EAAE;YAC9D,IAAI,GAAG,CAAC,UAAU,IAAI,CAAC,GAAG,CAAC,UAAU,GAAG,GAAG,IAAI,GAAG,CAAC,UAAU,IAAI,GAAG,CAAC,EAAE,CAAC;gBACtE,MAAM,CAAC,IAAI,KAAK,CAAC,QAAQ,GAAG,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC;gBAC5C,GAAG,CAAC,MAAM,EAAE,CAAC;gBACb,OAAO;YACT,CAAC;YACD,MAAM,MAAM,GAAa,EAAE,CAAC;YAC5B,GAAG,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAa,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC;YACtD,GAAG,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE;gBACjB,IAAI,CAAC;oBACH,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAc,CAAC,CAAC;gBAC5E,CAAC;gBAAC,OAAO,KAAK,EAAE,CAAC;oBACf,MAAM,CAAC,KAAK,CAAC,CAAC;gBAChB,CAAC;YACH,CAAC,CAAC,CAAC;YACH,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;QAC1B,CAAC,CAAC,CAAC;QAEH,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;QACxB,GAAG,CAAC,EAAE,CAAC,SAAS,EAAE,GAAG,EAAE;YACrB,GAAG,CAAC,OAAO,EAAE,CAAC;YACd,MAAM,CAAC,IAAI,KAAK,CAAC,oBAAoB,GAAG,EAAE,CAAC,CAAC,CAAC;QAC/C,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,UAAU,CAAC,GAAW,EAAE,SAAkB,EAAE,OAAe;IAClE,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;QAC7B,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;QAC5B,MAAM,GAAG,GAAG,MAAM,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC;QACxD,MAAM,OAAO,GAAyB,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,EAAE,CAAC;QACjE,IAAI,CAAC,SAAS;YAAE,OAAO,CAAC,kBAAkB,GAAG,KAAK,CAAC;QACnD,MAAM,GAAG,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,EAAE,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;YAC5C,GAAG,CAAC,MAAM,EAAE,CAAC;YACb,OAAO,CAAC,GAAG,CAAC,UAAU,KAAK,GAAG,CAAC,CAAC;QAClC,CAAC,CAAC,CAAC;QACH,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC;QACtC,GAAG,CAAC,EAAE,CAAC,SAAS,EAAE,GAAG,EAAE,GAAG,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAC5D,GAAG,CAAC,GAAG,EAAE,CAAC;IACZ,CAAC,CAAC,CAAC;AACL,CAAC;AAED,MAAM,OAAO,gBAAgB;IACnB,UAAU,CAAU;IACpB,YAAY,GAAmB,IAAI,CAAC;IAE5C,YAAY,IAA8B;QACxC,IAAI,CAAC,UAAU,GAAG,IAAI,EAAE,SAAS,IAAI,IAAI,CAAC;IAC5C,CAAC;IAED,uCAAuC;IACvC,IAAI,WAAW,KAAqB,OAAO,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC;IAE/D;;;OAGG;IACH,KAAK,CAAC,WAAW,CAAC,UAAkB,EAAE,OAAO,GAAG,KAAK;QACnD,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,UAAU,CAAC,CAAC;QACnC,MAAM,CAAC,QAAQ,GAAG,MAAM,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC;QAClE,MAAM,CAAC,QAAQ,GAAG,SAAS,CAAC;QAC5B,MAAM,CAAC,MAAM,GAAG,EAAE,CAAC;QACnB,MAAM,CAAC,IAAI,GAAG,EAAE,CAAC;QACjB,MAAM,SAAS,GAAG,MAAM,CAAC,QAAQ,EAAE,CAAC;QACpC,IAAI,CAAC,YAAY,GAAG,MAAM,UAAU,CAAC,SAAS,EAAE,IAAI,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;QAC1E,OAAO,IAAI,CAAC,YAAY,CAAC;IAC3B,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,QAAQ,CAAC,YAAoB,EAAE,OAAO,GAAG,KAAK;QAClD,IAAI,OAAiC,CAAC;QACtC,IAAI,CAAC;YACH,MAAM,UAAU,GAAG,MAAM,YAAY,CAAC,YAAY,EAAE,IAAI,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;YAC9E,IAAI,CAAC,YAAY,CAAC,UAAU,CAAC,EAAE,CAAC;gBAC9B,MAAM,IAAI,eAAe,CAAC,qCAAqC,CAAC,CAAC;YACnE,CAAC;YACD,OAAO,GAAG,UAAsC,CAAC;QACnD,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,IAAI,eAAe,CACvB,gCAAgC,YAAY,KAAK,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,EACnG,EAAE,SAAS,EAAE,IAAI,EAAE,CACpB,CAAC;QACJ,CAAC;QAED,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC;QAClC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACtD,MAAM,IAAI,eAAe,CAAC,oCAAoC,CAAC,CAAC;QAClE,CAAC;QAED,2BAA2B;QAC3B,MAAM,MAAM,GAAG,CAAC,GAAG,QAAQ,CAAC,CAAC,IAAI,CAC/B,CAAC,CAAe,EAAE,CAAe,EAAE,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ,IAAI,GAAG,CAAC,CAAC,CAChG,CAAC;QAEF,MAAM,GAAG,GAAG,MAAM,CAAC,CAAC,CAAC,EAAE,GAAG,CAAC;QAC3B,IAAI,CAAC,GAAG,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;YACpC,MAAM,IAAI,eAAe,CAAC,gCAAgC,CAAC,CAAC;QAC9D,CAAC;QAED,4BAA4B;QAC5B,IAAI,CAAC,WAAW,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAC;QAE/C,OAAO,GAAG,CAAC;IACb,CAAC;CACF"}

package/dist/e2ee-group.d.ts

@@ -0,0 +1,192 @@
+/**
+ * GroupE2EEManager — 群组端到端加密管理器 + 纯函数
+ *
+ * 与 E2EEManager 平行：所有网络操作（P2P 发送、RPC 调用）由调用方负责。
+ * 内置防重放、epoch 降级防护、密钥请求频率限制。
+ */
+import type { KeyStore } from './keystore/index.js';
+import { type IdentityRecord, type JsonObject, type Message } from './types.js';
+export interface LoadedGroupSecret {
+    epoch: number;
+    secret: Buffer;
+    commitment: string;
+    member_aids: string[];
+    epoch_chain?: string;
+    pending_rotation_id?: string;
+    epoch_chain_unverified?: boolean;
+    epoch_chain_unverified_reason?: string;
+}
+/**
+ * 计算 Epoch Transcript Chain。
+ * genesis（prev_chain=null）使用固定前缀；后续 epoch 使用上一个 chain 的字节。
+ */
+export declare function computeEpochChain(prevChain: string | null, epoch: number, commitment: string, rotatorAid: string): string;
+/**
+ * 验证 Epoch Transcript Chain（常量时间比较）。
+ */
+export declare function verifyEpochChain(epochChain: string, prevChain: string | null, epoch: number, commitment: string, rotatorAid: string): boolean;
+export declare function signGroupKeyResponse(payload: JsonObject, privateKeyPem: string): JsonObject;
+export declare function verifyGroupKeyResponseSignature(payload: JsonObject, responderCertPem: string): boolean;
+/**
+ * 加密群组消息，返回 e2ee.group_encrypted 信封。
+ * senderPrivateKeyPem: 可选，传入时为密文附加发送方 ECDSA 签名。
+ */
+export declare function encryptGroupMessage(groupId: string, epoch: number, groupSecret: Buffer, payload: JsonObject, opts: {
+    fromAid: string;
+    messageId: string;
+    timestamp: number;
+    senderPrivateKeyPem?: string | null;
+    senderCertPem?: string | null;
+}): JsonObject;
+/**
+ * 解密群组消息。
+ * groupSecrets: {epoch: groupSecretBytes} 映射。
+ * requireSignature: 为 true 时（默认），若消息含签名但无证书可验证，或缺少签名，则拒绝。
+ */
+export declare function decryptGroupMessage(message: Message, groupSecrets: Map<number, Buffer>, senderCertPem?: string | null, opts?: {
+    requireSignature?: boolean;
+}): Message | null;
+/**
+ * 计算 Membership Commitment。
+ * commitment = SHA-256(sort(aids).join("|") + "|" + epoch + "|" + groupId + "|" + SHA256(groupSecret).hex())
+ */
+export declare function computeMembershipCommitment(memberAids: string[], epoch: number, groupId: string, groupSecret: Buffer): string;
+/**
+ * 验证 Membership Commitment。
+ * 1. 重算 commitment 是否匹配
+ * 2. 检查 myAid 是否在 memberAids 中
+ */
+export declare function verifyMembershipCommitment(commitment: string, memberAids: string[], epoch: number, groupId: string, myAid: string, groupSecret: Buffer): boolean;
+/** 构建 Membership Manifest（未签名） */
+export declare function buildMembershipManifest(groupId: string, epoch: number, prevEpoch: number | null, memberAids: string[], opts?: {
+    added?: string[];
+    removed?: string[];
+    initiatorAid?: string;
+}): JsonObject;
+/** 对 Membership Manifest 签名，返回带 signature 字段的新 manifest */
+export declare function signMembershipManifest(manifest: JsonObject, privateKeyPem: string): JsonObject;
+/** 验证 Membership Manifest 签名 */
+export declare function verifyMembershipManifest(manifest: JsonObject, initiatorCertPem: string): boolean;
+/** 存储 group_secret 到 keystore metadata */
+export declare function storeGroupSecret(keystore: KeyStore, aid: string, groupId: string, epoch: number, groupSecret: Buffer, commitment: string, memberAids: string[], epochChain?: string, pendingRotationId?: string, epochChainUnverified?: boolean | null, epochChainUnverifiedReason?: string | null): boolean;
+/** 保存指定 epoch key；低于 current 时写入 old epoch，不覆盖 current。 */
+export declare function storeGroupSecretEpoch(keystore: KeyStore, aid: string, groupId: string, epoch: number, groupSecret: Buffer, commitment: string, memberAids: string[], epochChain?: string, pendingRotationId?: string, epochChainUnverified?: boolean | null, epochChainUnverifiedReason?: string | null): boolean;
+/** 读取 group_secret */
+export declare function loadGroupSecret(keystore: KeyStore, aid: string, groupId: string, epoch?: number | null): LoadedGroupSecret | null;
+/** 加载某群组所有 epoch 的 group_secret */
+export declare function loadAllGroupSecrets(keystore: KeyStore, aid: string, groupId: string): Map<number, Buffer>;
+/** 清理过期的旧 epoch 记录。返回清理数量。 */
+export declare function cleanupOldEpochs(keystore: KeyStore, aid: string, groupId: string, retentionSeconds?: number): number;
+/** 仅回滚指定 rotation 写入的本地 pending epoch key。 */
+export declare function discardPendingGroupSecret(keystore: KeyStore, aid: string, groupId: string, epoch: number, rotationId: string): boolean;
+/** 删除群组的所有密钥数据（群组解散时使用） */
+export declare function deleteGroupSecret(keystore: KeyStore, aid: string, groupId: string): void;
+/** 群组消息防重放守卫 */
+export declare class GroupReplayGuard {
+    private _seen;
+    private _maxSize;
+    constructor(maxSize?: number);
+    /** 检查并记录。返回 true 表示首次（通过），false 表示重放（拒绝）。 */
+    checkAndRecord(groupId: string, senderAid: string, messageId: string): boolean;
+    /** 仅检查是否已记录 */
+    isSeen(groupId: string, senderAid: string, messageId: string): boolean;
+    /** 仅记录，不检查 */
+    record(groupId: string, senderAid: string, messageId: string): void;
+    /** LRU 裁剪（供外部调用） */
+    trim(): void;
+    get size(): number;
+}
+/** 群组密钥请求/响应频率限制 */
+export declare class GroupKeyRequestThrottle {
+    private _last;
+    private _cooldown;
+    constructor(cooldown?: number);
+    /** 检查是否允许操作 */
+    allow(key: string): boolean;
+    reset(key: string): void;
+}
+/** 生成 32 字节随机 group_secret */
+export declare function generateGroupSecret(): Buffer;
+/** 构建 group key 分发消息 payload */
+export declare function buildKeyDistribution(groupId: string, epoch: number, groupSecret: Buffer, memberAids: string[], distributedBy: string, manifest?: JsonObject | null, epochChain?: string): JsonObject;
+/** 处理收到的 group key 分发消息 */
+export declare function handleKeyDistribution(message: Message | JsonObject, keystore: KeyStore, aid: string, initiatorCertPem?: string | null): boolean;
+/** 构建密钥请求 payload */
+export declare function buildKeyRequest(groupId: string, epoch: number, requesterAid: string, requestId?: string): JsonObject;
+/** 处理收到的密钥请求 */
+export declare function handleKeyRequest(request: Message | JsonObject, keystore: KeyStore, aid: string, currentMembers: string[], privateKeyPem?: string | null): JsonObject | null;
+/** 处理收到的密钥响应 */
+export declare function handleKeyResponse(response: Message | JsonObject, keystore: KeyStore, aid: string, opts?: {
+    expectedRequest?: JsonObject | null;
+    responderCertPem?: string | null;
+    currentMembers?: string[];
+    strict?: boolean;
+}): boolean;
+export declare class GroupE2EEManager {
+    private _identityFn;
+    private _keystore;
+    private _replayGuard;
+    private _requestThrottle;
+    private _responseThrottle;
+    private _senderCertResolver;
+    private _initiatorCertResolver;
+    private _pendingKeyRequests;
+    constructor(opts: {
+        identityFn: () => IdentityRecord;
+        keystore: KeyStore;
+        requestCooldown?: number;
+        responseCooldown?: number;
+        senderCertResolver?: (aid: string) => string | null;
+        initiatorCertResolver?: (aid: string) => string | null;
+    });
+    /** 用当前身份私钥签名 manifest */
+    private _signManifest;
+    /** 创建首个 epoch。返回 {epoch, commitment, distributions: [{to, payload}]} */
+    createEpoch(groupId: string, memberAids: string[]): JsonObject;
+    /** 轮换 epoch（踢人/退出后调用） */
+    rotateEpoch(groupId: string, memberAids: string[]): JsonObject;
+    /** 指定目标 epoch 号轮换（配合服务端 CAS 使用） */
+    rotateEpochTo(groupId: string, newEpoch: number, memberAids: string[], opts?: {
+        rotationId?: string;
+    }): JsonObject;
+    discardPendingSecret(groupId: string, epoch: number, rotationId: string): boolean;
+    /** 加密群消息（含发送方签名）。无密钥时抛 E2EEGroupSecretMissingError。 */
+    encrypt(groupId: string, payload: JsonObject): JsonObject;
+    /** 使用指定 epoch 加密群消息。 */
+    encryptWithEpoch(groupId: string, epoch: number, payload: JsonObject): JsonObject;
+    /** 解密单条群消息。内置防重放 + 发送方验签。 */
+    decrypt(message: Message, opts?: {
+        skipReplay?: boolean;
+    }): Message | null;
+    /** 批量解密 */
+    decryptBatch(messages: Message[], opts?: {
+        skipReplay?: boolean;
+    }): Message[];
+    /**
+     * 处理已解密的 P2P 密钥消息。
+     * 返回 "distribution"/"request"/"response" 表示已成功处理。
+     * 返回 "distribution_rejected"/"response_rejected" 表示被拒绝。
+     * 返回 null 表示不是密钥消息。
+     */
+    handleIncoming(payload: JsonObject): string | null;
+    /** 构建恢复请求。返回 {to, payload} 或 null（限流/无目标）。 */
+    buildRecoveryRequest(groupId: string, epoch: number, senderAid?: string): JsonObject | null;
+    rememberKeyRequest(payload: JsonObject, expectedResponderAid?: string | null): void;
+    /** 处理密钥请求。返回响应 payload（受频率限制 + 成员资格验证）。 */
+    handleKeyRequestMsg(requestPayload: JsonObject, members: string[]): JsonObject | null;
+    /** 检查是否有群组密钥 */
+    hasSecret(groupId: string): boolean;
+    /** 获取当前 epoch */
+    currentEpoch(groupId: string): number | null;
+    /** 获取群组成员 AID 列表 */
+    getMemberAids(groupId: string): string[];
+    /** 加载群组密钥数据 */
+    loadSecret(groupId: string, epoch?: number | null): LoadedGroupSecret | null;
+    /** 清理过期的旧 epoch */
+    cleanup(groupId: string, retentionSeconds?: number): void;
+    /** 清理过期缓存（replay guard 等），供外部定时调用 */
+    cleanExpiredCaches(): void;
+    /** 删除群组的所有本地状态（群组解散时使用） */
+    removeGroup(groupId: string): void;
+    private _currentAid;
+}