@agentunion/fastaun 0.2.20 → 0.3.0

package/dist/v2/e2ee/metadata-auth.js

@@ -0,0 +1,50 @@
+/**
+ * AUN E2EE V2: protected_headers / context HMAC 签名
+ *
+ * 与 Python `aun_core.v2.e2ee.encrypt_p2p._with_metadata_auth` 对齐。
+ * 用 master_key 派生 HMAC key，对 metadata body 做签名，生成 `_auth` 字段。
+ */
+import { createHmac } from 'node:crypto';
+import { canonicalJson } from '../crypto/canonical.js';
+export const METADATA_KEY_DOMAIN = Buffer.from('aun-envelope-metadata-key-v1', 'utf-8');
+export const PROTECTED_HEADERS_DOMAIN = Buffer.from('aun-protected-headers-v1', 'utf-8');
+export const PROTECTED_CONTEXT_DOMAIN = Buffer.from('aun-protected-context-v1', 'utf-8');
+/**
+ * 计算 metadata HMAC 签名 tag。
+ *
+ * metadata_key = HMAC-SHA256(key, METADATA_KEY_DOMAIN)
+ * sign_input = domain + "\0" + canonical_json(body)
+ * tag = HMAC-SHA256(metadata_key, sign_input)
+ */
+function metadataAuthTag(key, domain, body) {
+    const metadataKey = createHmac('sha256', key).update(METADATA_KEY_DOMAIN).digest();
+    const bodyBytes = canonicalJson(body);
+    return createHmac('sha256', metadataKey)
+        .update(domain)
+        .update(Buffer.from([0]))
+        .update(Buffer.from(bodyBytes))
+        .digest();
+}
+/**
+ * 为 metadata 对象添加 HMAC 签名（_auth 字段）。
+ *
+ * 如果 body（去除 _auth 后）为空，返回空对象。
+ */
+export function withMetadataAuth(metadata, key, domain) {
+    const body = {};
+    for (const [k, v] of Object.entries(metadata)) {
+        if (k !== '_auth')
+            body[k] = v;
+    }
+    if (Object.keys(body).length === 0)
+        return {};
+    const tag = metadataAuthTag(key, domain, body);
+    return {
+        ...body,
+        _auth: {
+            alg: 'HMAC-SHA256',
+            tag: tag.toString('base64'),
+        },
+    };
+}
+//# sourceMappingURL=metadata-auth.js.map

package/dist/v2/e2ee/metadata-auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"metadata-auth.js","sourceRoot":"","sources":["../../../src/v2/e2ee/metadata-auth.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EAAE,aAAa,EAAE,MAAM,wBAAwB,CAAC;AAEvD,MAAM,CAAC,MAAM,mBAAmB,GAAG,MAAM,CAAC,IAAI,CAAC,8BAA8B,EAAE,OAAO,CAAC,CAAC;AACxF,MAAM,CAAC,MAAM,wBAAwB,GAAG,MAAM,CAAC,IAAI,CAAC,0BAA0B,EAAE,OAAO,CAAC,CAAC;AACzF,MAAM,CAAC,MAAM,wBAAwB,GAAG,MAAM,CAAC,IAAI,CAAC,0BAA0B,EAAE,OAAO,CAAC,CAAC;AAEzF;;;;;;GAMG;AACH,SAAS,eAAe,CAAC,GAAe,EAAE,MAAc,EAAE,IAA6B;IACrF,MAAM,WAAW,GAAG,UAAU,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAC,MAAM,CAAC,mBAAmB,CAAC,CAAC,MAAM,EAAE,CAAC;IACnF,MAAM,SAAS,GAAG,aAAa,CAAC,IAAI,CAAC,CAAC;IACtC,OAAO,UAAU,CAAC,QAAQ,EAAE,WAAW,CAAC;SACrC,MAAM,CAAC,MAAM,CAAC;SACd,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;SACxB,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;SAC9B,MAAM,EAAE,CAAC;AACd,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,gBAAgB,CAC9B,QAAiC,EACjC,GAAe,EACf,MAAc;IAEd,MAAM,IAAI,GAA4B,EAAE,CAAC;IACzC,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC9C,IAAI,CAAC,KAAK,OAAO;YAAE,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;IACjC,CAAC;IACD,IAAI,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC;IAC9C,MAAM,GAAG,GAAG,eAAe,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,CAAC,CAAC;IAC/C,OAAO;QACL,GAAG,IAAI;QACP,KAAK,EAAE;YACL,GAAG,EAAE,aAAa;YAClB,GAAG,EAAE,GAAG,CAAC,QAAQ,CAAC,QAAQ,CAAC;SAC5B;KACF,CAAC;AACJ,CAAC"}

package/dist/v2/e2ee/types.d.ts

@@ -0,0 +1,57 @@
+/**
+ * AUN E2EE V2: 加解密引擎类型定义
+ *
+ * 与 Python `aun_core.v2.e2ee.encrypt_p2p` / `encrypt_group` / `decrypt` 对齐。
+ */
+import type { ProtectedHeadersInput } from '../../protected-headers.js';
+export declare const SUITE_NAME: "P256_HKDF_SHA256_AES_256_GCM";
+/** 发送方身份。 */
+export interface Sender {
+    /** 发送方 AID。 */
+    aid: string;
+    /** 发送方 device_id。 */
+    deviceId: string;
+    /** 32 字节 P-256 私钥标量（AID 主私钥）。 */
+    ikPriv: Uint8Array;
+    /** SPKI DER 编码的公钥（用于签名指纹计算）。 */
+    ikPubDer: Uint8Array;
+}
+/** 接收方目标设备。 */
+export interface Target {
+    aid: string;
+    deviceId: string;
+    /** "peer" | "member" | "self_sync" | "audit" 等。 */
+    role: string;
+    /** "peer_device_prekey" | "group_device_prekey" | "aid_master"。 */
+    keySource: string;
+    /** 接收方 IK 公钥（DER SPKI）。 */
+    ikPkDer: Uint8Array;
+    /** 接收方 SPK 公钥（DER SPKI）；undefined 表示走 1DH 路径。 */
+    spkPkDer?: Uint8Array;
+    /** SPK 标识；3DH 时为非空字符串，1DH 时为空串/未定义。 */
+    spkId?: string;
+}
+/** 接收方集合（P2P）。 */
+export interface TargetSet {
+    /** 普通接收设备。 */
+    targets: Target[];
+    /** 监管方设备（可选）。 */
+    auditRecipients?: Target[];
+}
+/** 加密可选参数。 */
+export interface EncryptOptions {
+    /** 消息 ID；不传则自动生成 `m-{uuid4 hex}`。 */
+    messageId?: string;
+    /** 时间戳（毫秒）；不传则用 Date.now()。 */
+    timestamp?: number;
+    /** 端到端保护的信封元数据（HMAC 签名，不进 AAD）。 */
+    protectedHeaders?: ProtectedHeadersInput;
+    /** 端到端保护的上下文元数据（HMAC 签名，不进 AAD）。 */
+    context?: Record<string, unknown>;
+}
+/** Group AAD 中的 state_commitment 子结构。 */
+export interface StateCommitmentAAD {
+    state_version: number;
+    state_hash: string;
+    state_chain: string;
+}

package/dist/v2/e2ee/types.js

@@ -0,0 +1,7 @@
+/**
+ * AUN E2EE V2: 加解密引擎类型定义
+ *
+ * 与 Python `aun_core.v2.e2ee.encrypt_p2p` / `encrypt_group` / `decrypt` 对齐。
+ */
+export const SUITE_NAME = 'P256_HKDF_SHA256_AES_256_GCM';
+//# sourceMappingURL=types.js.map

package/dist/v2/e2ee/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../src/v2/e2ee/types.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAIH,MAAM,CAAC,MAAM,UAAU,GAAG,8BAAuC,CAAC"}

package/dist/v2/session/index.d.ts

@@ -0,0 +1,4 @@
+export { V2KeyStore, V2_DEVICE_KEYS_DDL } from './keystore.js';
+export type { SqliteLike } from './keystore.js';
+export { V2Session, PEER_KEY_CACHE_TTL_MS, DESTROY_DELAY_MS, RECENT_GENERATIONS, } from './session.js';
+export type { CallFn, SenderIdentity } from './session.js';

package/dist/v2/session/index.js

@@ -0,0 +1,3 @@
+export { V2KeyStore, V2_DEVICE_KEYS_DDL } from './keystore.js';
+export { V2Session, PEER_KEY_CACHE_TTL_MS, DESTROY_DELAY_MS, RECENT_GENERATIONS, } from './session.js';
+//# sourceMappingURL=index.js.map

package/dist/v2/session/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/v2/session/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC;AAE/D,OAAO,EACL,SAAS,EACT,qBAAqB,EACrB,gBAAgB,EAChB,kBAAkB,GACnB,MAAM,cAAc,CAAC"}

package/dist/v2/session/keystore.d.ts

@@ -0,0 +1,41 @@
+/**
+ * V2 E2EE 设备密钥存储。
+ *
+ * 每个 (aid, device_id) 持有一对 IK 和若干 SPK（按 spk_id 索引）。
+ * 表结构与 Python / Go SDK 完全一致（v2_device_keys）。
+ *
+ * 实现说明：
+ * - TS SDK 统一使用 Node 22+ 内置的 `node:sqlite`（与 `keystore/aid-db.ts` 保持一致）
+ * - 接受任意 sqlite-like 句柄（exec / prepare），便于复用 AIDDatabase 的连接
+ * - BLOB 字段返回 Uint8Array（node:sqlite 默认行为）
+ */
+interface SqliteStatement {
+    run(...params: unknown[]): unknown;
+    get(...params: unknown[]): unknown;
+    all(...params: unknown[]): unknown;
+}
+export interface SqliteLike {
+    exec(sql: string): unknown;
+    prepare(sql: string): SqliteStatement;
+}
+export declare const V2_DEVICE_KEYS_DDL = "\nCREATE TABLE IF NOT EXISTS v2_device_keys (\n    device_id TEXT NOT NULL,\n    key_type TEXT NOT NULL,\n    key_id TEXT NOT NULL DEFAULT '',\n    private_key BLOB NOT NULL,\n    public_key BLOB NOT NULL,\n    created_at INTEGER NOT NULL,\n    PRIMARY KEY (device_id, key_type, key_id)\n)";
+export declare class V2KeyStore {
+    private db;
+    constructor(db: SqliteLike);
+    saveIK(deviceId: string, priv: Uint8Array, pubDer: Uint8Array): void;
+    loadIK(deviceId: string): {
+        priv: Uint8Array;
+        pubDer: Uint8Array;
+    } | null;
+    saveSPK(deviceId: string, spkId: string, priv: Uint8Array, pubDer: Uint8Array): void;
+    loadSPK(deviceId: string, spkId: string): Uint8Array | null;
+    loadCurrentSPK(deviceId: string): {
+        spkId: string;
+        priv: Uint8Array;
+        pubDer: Uint8Array;
+    } | null;
+    deleteSPK(deviceId: string, spkId: string): void;
+    listRecentSPKIds(deviceId: string, n: number): string[];
+    listExpiredSPKIds(deviceId: string, maxAgeMs: number): string[];
+}
+export {};

package/dist/v2/session/keystore.js

@@ -0,0 +1,103 @@
+/**
+ * V2 E2EE 设备密钥存储。
+ *
+ * 每个 (aid, device_id) 持有一对 IK 和若干 SPK（按 spk_id 索引）。
+ * 表结构与 Python / Go SDK 完全一致（v2_device_keys）。
+ *
+ * 实现说明：
+ * - TS SDK 统一使用 Node 22+ 内置的 `node:sqlite`（与 `keystore/aid-db.ts` 保持一致）
+ * - 接受任意 sqlite-like 句柄（exec / prepare），便于复用 AIDDatabase 的连接
+ * - BLOB 字段返回 Uint8Array（node:sqlite 默认行为）
+ */
+export const V2_DEVICE_KEYS_DDL = `
+CREATE TABLE IF NOT EXISTS v2_device_keys (
+    device_id TEXT NOT NULL,
+    key_type TEXT NOT NULL,
+    key_id TEXT NOT NULL DEFAULT '',
+    private_key BLOB NOT NULL,
+    public_key BLOB NOT NULL,
+    created_at INTEGER NOT NULL,
+    PRIMARY KEY (device_id, key_type, key_id)
+)`;
+function asBuffer(value) {
+    if (value instanceof Uint8Array)
+        return value;
+    if (Buffer.isBuffer(value))
+        return new Uint8Array(value.buffer, value.byteOffset, value.byteLength);
+    if (Array.isArray(value))
+        return new Uint8Array(value);
+    throw new Error(`unexpected blob type: ${typeof value}`);
+}
+/** node:sqlite 不接受裸 Uint8Array，需要 Buffer 包装才会绑定为 BLOB。 */
+function toSqliteBlob(value) {
+    return Buffer.isBuffer(value) ? value : Buffer.from(value.buffer, value.byteOffset, value.byteLength);
+}
+export class V2KeyStore {
+    db;
+    constructor(db) {
+        this.db = db;
+        this.db.exec(V2_DEVICE_KEYS_DDL);
+    }
+    saveIK(deviceId, priv, pubDer) {
+        this.db
+            .prepare(`INSERT OR REPLACE INTO v2_device_keys (device_id, key_type, key_id, private_key, public_key, created_at)
+         VALUES (?, 'ik', '', ?, ?, ?)`)
+            .run(deviceId, toSqliteBlob(priv), toSqliteBlob(pubDer), Date.now());
+    }
+    loadIK(deviceId) {
+        const row = this.db
+            .prepare(`SELECT private_key, public_key FROM v2_device_keys WHERE device_id=? AND key_type='ik' AND key_id=''`)
+            .get(deviceId);
+        if (!row)
+            return null;
+        return { priv: asBuffer(row.private_key), pubDer: asBuffer(row.public_key) };
+    }
+    saveSPK(deviceId, spkId, priv, pubDer) {
+        this.db
+            .prepare(`INSERT OR REPLACE INTO v2_device_keys (device_id, key_type, key_id, private_key, public_key, created_at)
+         VALUES (?, 'spk', ?, ?, ?, ?)`)
+            .run(deviceId, spkId, toSqliteBlob(priv), toSqliteBlob(pubDer), Date.now());
+    }
+    loadSPK(deviceId, spkId) {
+        const row = this.db
+            .prepare(`SELECT private_key FROM v2_device_keys WHERE device_id=? AND key_type='spk' AND key_id=?`)
+            .get(deviceId, spkId);
+        return row ? asBuffer(row.private_key) : null;
+    }
+    loadCurrentSPK(deviceId) {
+        const row = this.db
+            .prepare(`SELECT key_id, private_key, public_key FROM v2_device_keys
+         WHERE device_id=? AND key_type='spk' ORDER BY created_at DESC, key_id DESC LIMIT 1`)
+            .get(deviceId);
+        if (!row)
+            return null;
+        return {
+            spkId: row.key_id,
+            priv: asBuffer(row.private_key),
+            pubDer: asBuffer(row.public_key),
+        };
+    }
+    deleteSPK(deviceId, spkId) {
+        this.db
+            .prepare(`DELETE FROM v2_device_keys WHERE device_id=? AND key_type='spk' AND key_id=?`)
+            .run(deviceId, spkId);
+    }
+    listRecentSPKIds(deviceId, n) {
+        if (n <= 0)
+            return [];
+        const rows = this.db
+            .prepare(`SELECT key_id FROM v2_device_keys
+         WHERE device_id=? AND key_type='spk' ORDER BY created_at DESC, key_id DESC LIMIT ?`)
+            .all(deviceId, n);
+        return rows.map((r) => r.key_id);
+    }
+    listExpiredSPKIds(deviceId, maxAgeMs) {
+        const cutoff = Date.now() / 1000 - maxAgeMs / 1000;
+        const rows = this.db
+            .prepare(`SELECT key_id FROM v2_device_keys
+         WHERE device_id=? AND key_type='spk' AND created_at < ?`)
+            .all(deviceId, cutoff);
+        return rows.map((r) => r.key_id);
+    }
+}
+//# sourceMappingURL=keystore.js.map

package/dist/v2/session/keystore.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"keystore.js","sourceRoot":"","sources":["../../../src/v2/session/keystore.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAaH,MAAM,CAAC,MAAM,kBAAkB,GAAG;;;;;;;;;EAShC,CAAC;AAEH,SAAS,QAAQ,CAAC,KAAc;IAC9B,IAAI,KAAK,YAAY,UAAU;QAAE,OAAO,KAAK,CAAC;IAC9C,IAAI,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC;QAAE,OAAO,IAAI,UAAU,CAAC,KAAK,CAAC,MAAM,EAAE,KAAK,CAAC,UAAU,EAAE,KAAK,CAAC,UAAU,CAAC,CAAC;IACpG,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC;QAAE,OAAO,IAAI,UAAU,CAAC,KAAiB,CAAC,CAAC;IACnE,MAAM,IAAI,KAAK,CAAC,yBAAyB,OAAO,KAAK,EAAE,CAAC,CAAC;AAC3D,CAAC;AAED,0DAA0D;AAC1D,SAAS,YAAY,CAAC,KAAiB;IACrC,OAAO,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,KAAK,CAAC,UAAU,EAAE,KAAK,CAAC,UAAU,CAAC,CAAC;AACxG,CAAC;AAED,MAAM,OAAO,UAAU;IACb,EAAE,CAAa;IAEvB,YAAY,EAAc;QACxB,IAAI,CAAC,EAAE,GAAG,EAAE,CAAC;QACb,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;IACnC,CAAC;IAED,MAAM,CAAC,QAAgB,EAAE,IAAgB,EAAE,MAAkB;QAC3D,IAAI,CAAC,EAAE;aACJ,OAAO,CACN;uCAC+B,CAChC;aACA,GAAG,CAAC,QAAQ,EAAE,YAAY,CAAC,IAAI,CAAC,EAAE,YAAY,CAAC,MAAM,CAAC,EAAE,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;IACzE,CAAC;IAED,MAAM,CAAC,QAAgB;QACrB,MAAM,GAAG,GAAG,IAAI,CAAC,EAAE;aAChB,OAAO,CACN,sGAAsG,CACvG;aACA,GAAG,CAAC,QAAQ,CAA8D,CAAC;QAC9E,IAAI,CAAC,GAAG;YAAE,OAAO,IAAI,CAAC;QACtB,OAAO,EAAE,IAAI,EAAE,QAAQ,CAAC,GAAG,CAAC,WAAW,CAAC,EAAE,MAAM,EAAE,QAAQ,CAAC,GAAG,CAAC,UAAU,CAAC,EAAE,CAAC;IAC/E,CAAC;IAED,OAAO,CAAC,QAAgB,EAAE,KAAa,EAAE,IAAgB,EAAE,MAAkB;QAC3E,IAAI,CAAC,EAAE;aACJ,OAAO,CACN;uCAC+B,CAChC;aACA,GAAG,CAAC,QAAQ,EAAE,KAAK,EAAE,YAAY,CAAC,IAAI,CAAC,EAAE,YAAY,CAAC,MAAM,CAAC,EAAE,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;IAChF,CAAC;IAED,OAAO,CAAC,QAAgB,EAAE,KAAa;QACrC,MAAM,GAAG,GAAG,IAAI,CAAC,EAAE;aAChB,OAAO,CACN,0FAA0F,CAC3F;aACA,GAAG,CAAC,QAAQ,EAAE,KAAK,CAAyC,CAAC;QAChE,OAAO,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAChD,CAAC;IAED,cAAc,CAAC,QAAgB;QAC7B,MAAM,GAAG,GAAG,IAAI,CAAC,EAAE;aAChB,OAAO,CACN;4FACoF,CACrF;aACA,GAAG,CAAC,QAAQ,CAA8E,CAAC;QAC9F,IAAI,CAAC,GAAG;YAAE,OAAO,IAAI,CAAC;QACtB,OAAO;YACL,KAAK,EAAE,GAAG,CAAC,MAAM;YACjB,IAAI,EAAE,QAAQ,CAAC,GAAG,CAAC,WAAW,CAAC;YAC/B,MAAM,EAAE,QAAQ,CAAC,GAAG,CAAC,UAAU,CAAC;SACjC,CAAC;IACJ,CAAC;IAED,SAAS,CAAC,QAAgB,EAAE,KAAa;QACvC,IAAI,CAAC,EAAE;aACJ,OAAO,CAAC,8EAA8E,CAAC;aACvF,GAAG,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;IAC1B,CAAC;IAED,gBAAgB,CAAC,QAAgB,EAAE,CAAS;QAC1C,IAAI,CAAC,IAAI,CAAC;YAAE,OAAO,EAAE,CAAC;QACtB,MAAM,IAAI,GAAG,IAAI,CAAC,EAAE;aACjB,OAAO,CACN;4FACoF,CACrF;aACA,GAAG,CAAC,QAAQ,EAAE,CAAC,CAA8B,CAAC;QACjD,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;IACnC,CAAC;IAED,iBAAiB,CAAC,QAAgB,EAAE,QAAgB;QAClD,MAAM,MAAM,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,GAAG,QAAQ,GAAG,IAAI,CAAC;QACnD,MAAM,IAAI,GAAG,IAAI,CAAC,EAAE;aACjB,OAAO,CACN;iEACyD,CAC1D;aACA,GAAG,CAAC,QAAQ,EAAE,MAAM,CAA8B,CAAC;QACtD,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;IACnC,CAAC;CACF"}

package/dist/v2/session/session.d.ts

@@ -0,0 +1,97 @@
+/**
+ * V2 E2EE Session Manager。
+ *
+ * 管理本设备的 IK/SPK 生命周期、服务端注册、加解密密钥获取。
+ *
+ * 设计要点：
+ * - IK = AID 长期密钥（多设备共享 AID 身份），不独立生成
+ * - SPK 设备级 P-256 密钥对，IK 签名背书
+ * - SPK 销毁三重条件：
+ *   - contig_seq >= 该 SPK 引用的最大 seq
+ *   - 自最后一次见到该 spk_id >= 7 小时
+ *   - 不在最近 7 代保留窗口内
+ * - 对端 IK 公钥缓存 TTL 1 小时
+ * - SPK 注册：调 callFn("message.v2.put_peer_pk", ...)
+ */
+import { V2KeyStore } from './keystore.js';
+/** 对端 IK 公钥缓存 TTL（毫秒）。 */
+export declare const PEER_KEY_CACHE_TTL_MS: number;
+/** SPK 销毁安全窗口（毫秒）。 */
+export declare const DESTROY_DELAY_MS: number;
+/** SPK 销毁时保留的最近代数。 */
+export declare const RECENT_GENERATIONS = 7;
+export declare const HARD_LIMIT_MS: number;
+/** 服务端 RPC 调用函数签名（与 Python `call_fn` 等价）。 */
+export type CallFn = (method: string, params: Record<string, unknown>) => Promise<Record<string, unknown> | unknown>;
+/** 加密所需的发送方身份。 */
+export interface SenderIdentity {
+    aid: string;
+    deviceId: string;
+    ikPriv: Uint8Array;
+    ikPubDer: Uint8Array;
+}
+export declare class V2Session {
+    private readonly _store;
+    private readonly _deviceId;
+    private readonly _aid;
+    private readonly _ikPriv;
+    private readonly _ikPubDer;
+    private _spkId;
+    private _spkPriv?;
+    private _spkPubDer?;
+    private _registered;
+    private _peerIKCache;
+    private _verifiedSPKs;
+    private _oldSPKMaxSeq;
+    private _nowFn;
+    constructor(store: V2KeyStore, deviceId: string, aid: string, ikPriv: Uint8Array, ikPubDer: Uint8Array);
+    /** 测试用：注入虚拟时钟。 */
+    _setNowFn(fn: () => number): void;
+    get deviceId(): string;
+    get aid(): string;
+    get currentSpkId(): string;
+    get currentIkPubDer(): Uint8Array;
+    /** 暴露 store 便于测试（与 Python 同等私有约定）。 */
+    get _storeForTest(): V2KeyStore;
+    /** 加载或生成当前 SPK；IK 由构造函数注入，无需加载。 */
+    ensureKeys(): void;
+    private _generateNewSPK;
+    /** 注册本设备 SPK 到服务端。IK = AID 长期密钥，无需注册。 */
+    ensureRegistered(callFn: CallFn): Promise<void>;
+    /** SPK 由 AID 私钥（IK）签名背书，并上报到 message.v2.put_peer_pk。 */
+    private _registerSPK;
+    /** 返回加密所需的 sender 结构。 */
+    getSenderIdentity(): SenderIdentity;
+    /**
+     * 返回解密所需的私钥。
+     * - spkId 空：1DH（仅 IK）
+     * - spkId == 当前 SPK：当前 spkPriv
+     * - 否则：从 store 加载旧 SPK 私钥（可能为 null = 已销毁）
+     */
+    getDecryptKeys(spkId: string | null | undefined): {
+        ikPriv: Uint8Array;
+        spkPriv?: Uint8Array;
+    };
+    /** 判断 spkId 是否命中当前活跃 SPK。 */
+    isCurrentSPK(spkId: string | null | undefined): boolean;
+    /** 跟踪每个旧 SPK 引用的最大 seq（用于销毁判定）。 */
+    trackOldSPKMaxSeq(spkId: string, seq: number): void;
+    /**
+     * contig_seq 已覆盖、超过 7h 安全窗口、且不在最近 7 代保留窗口内时销毁。
+     *
+     * 销毁条件（全部满足才销毁）：
+     * - contig_seq >= 该 SPK 引用的最大 seq（接收方已消费完所有引用此 SPK 的消息）
+     * - 自最后一次见到该 spk_id 引用 >= 7 小时
+     * - 不在最近 7 代 SPK 保留窗口内
+     *
+     * 7h + 7 代双兜底：低频群即便 contig_seq 已覆盖也至少留 7 代或 7h，
+     * 避免发送方陈旧 bootstrap 缓存导致新消息加密失败。
+     */
+    maybeDestroyOldSPKs(contigSeq: number): string[];
+    /** 轮换 SPK：生成新 SPK 并上报到服务端。旧 SPK 保留本地用于解密。 */
+    rotateSPK(callFn: CallFn): Promise<void>;
+    cachePeerIK(peerAid: string, deviceId: string, ikPubDer: Uint8Array): void;
+    getPeerIK(peerAid: string, deviceId: string): Uint8Array | null;
+    isPeerSPKVerified(peerAid: string, deviceId: string, spkId: string): boolean;
+    markPeerSPKVerified(peerAid: string, deviceId: string, spkId: string): void;
+}

package/dist/v2/session/session.js

@@ -0,0 +1,242 @@
+/**
+ * V2 E2EE Session Manager。
+ *
+ * 管理本设备的 IK/SPK 生命周期、服务端注册、加解密密钥获取。
+ *
+ * 设计要点：
+ * - IK = AID 长期密钥（多设备共享 AID 身份），不独立生成
+ * - SPK 设备级 P-256 密钥对，IK 签名背书
+ * - SPK 销毁三重条件：
+ *   - contig_seq >= 该 SPK 引用的最大 seq
+ *   - 自最后一次见到该 spk_id >= 7 小时
+ *   - 不在最近 7 代保留窗口内
+ * - 对端 IK 公钥缓存 TTL 1 小时
+ * - SPK 注册：调 callFn("message.v2.put_peer_pk", ...)
+ */
+import { createHash } from 'node:crypto';
+import { generateP256Keypair } from '../crypto/ecdh.js';
+import { ecdsaSignRaw } from '../crypto/ecdsa.js';
+/** 对端 IK 公钥缓存 TTL（毫秒）。 */
+export const PEER_KEY_CACHE_TTL_MS = 60 * 60 * 1000; // 1h
+/** SPK 销毁安全窗口（毫秒）。 */
+export const DESTROY_DELAY_MS = 7 * 60 * 60 * 1000; // 7h
+/** SPK 销毁时保留的最近代数。 */
+export const RECENT_GENERATIONS = 7;
+export const HARD_LIMIT_MS = 180 * 24 * 60 * 60 * 1000; // 180 天
+export class V2Session {
+    _store;
+    _deviceId;
+    _aid;
+    _ikPriv;
+    _ikPubDer;
+    _spkId = '';
+    _spkPriv;
+    _spkPubDer;
+    _registered = false;
+    _peerIKCache = new Map();
+    _verifiedSPKs = new Set();
+    _oldSPKMaxSeq = new Map();
+    _nowFn = () => Date.now();
+    constructor(store, deviceId, aid, ikPriv, ikPubDer) {
+        if (!ikPriv || !ikPubDer) {
+            throw new Error('V2Session requires AID priv/pub keys (IK = AID identity)');
+        }
+        this._store = store;
+        this._deviceId = deviceId;
+        this._aid = aid;
+        this._ikPriv = ikPriv;
+        this._ikPubDer = ikPubDer;
+    }
+    /** 测试用：注入虚拟时钟。 */
+    _setNowFn(fn) {
+        this._nowFn = fn;
+    }
+    get deviceId() {
+        return this._deviceId;
+    }
+    get aid() {
+        return this._aid;
+    }
+    get currentSpkId() {
+        return this._spkId;
+    }
+    get currentIkPubDer() {
+        return this._ikPubDer;
+    }
+    /** 暴露 store 便于测试（与 Python 同等私有约定）。 */
+    get _storeForTest() {
+        return this._store;
+    }
+    /** 加载或生成当前 SPK；IK 由构造函数注入，无需加载。 */
+    ensureKeys() {
+        if (this._spkPriv)
+            return;
+        const cur = this._store.loadCurrentSPK(this._deviceId);
+        if (cur) {
+            this._spkId = cur.spkId;
+            this._spkPriv = cur.priv;
+            this._spkPubDer = cur.pubDer;
+            return;
+        }
+        this._generateNewSPK();
+    }
+    _generateNewSPK() {
+        const [priv, pubDer] = generateP256Keypair();
+        const hashHex = createHash('sha256').update(pubDer).digest('hex');
+        const spkId = `sha256:${hashHex.substring(0, 16)}`;
+        this._store.saveSPK(this._deviceId, spkId, priv, pubDer);
+        this._spkId = spkId;
+        this._spkPriv = priv;
+        this._spkPubDer = pubDer;
+    }
+    /** 注册本设备 SPK 到服务端。IK = AID 长期密钥，无需注册。 */
+    async ensureRegistered(callFn) {
+        if (this._registered)
+            return;
+        this.ensureKeys();
+        await this._registerSPK(callFn);
+        this._registered = true;
+    }
+    /** SPK 由 AID 私钥（IK）签名背书，并上报到 message.v2.put_peer_pk。 */
+    async _registerSPK(callFn) {
+        const spkTimestamp = Math.floor(this._nowFn() / 1000);
+        const signData = Buffer.concat([
+            Buffer.from(this._spkPubDer),
+            Buffer.from(this._spkId, 'utf-8'),
+            Buffer.from(String(spkTimestamp), 'utf-8'),
+        ]);
+        const signature = ecdsaSignRaw(this._ikPriv, signData);
+        await callFn('message.v2.put_peer_pk', {
+            peer_aid: this._aid,
+            key_source: 'peer_device_prekey',
+            spk_id: this._spkId,
+            spk_pk: Buffer.from(this._spkPubDer).toString('base64'),
+            spk_signature: Buffer.from(signature).toString('base64'),
+            spk_timestamp: spkTimestamp,
+        });
+    }
+    /** 返回加密所需的 sender 结构。 */
+    getSenderIdentity() {
+        this.ensureKeys();
+        return {
+            aid: this._aid,
+            deviceId: this._deviceId,
+            ikPriv: this._ikPriv,
+            ikPubDer: this._ikPubDer,
+        };
+    }
+    /**
+     * 返回解密所需的私钥。
+     * - spkId 空：1DH（仅 IK）
+     * - spkId == 当前 SPK：当前 spkPriv
+     * - 否则：从 store 加载旧 SPK 私钥（可能为 null = 已销毁）
+     */
+    getDecryptKeys(spkId) {
+        this.ensureKeys();
+        if (!spkId)
+            return { ikPriv: this._ikPriv };
+        if (spkId === this._spkId)
+            return { ikPriv: this._ikPriv, spkPriv: this._spkPriv };
+        const oldSPK = this._store.loadSPK(this._deviceId, spkId);
+        if (!oldSPK)
+            return { ikPriv: this._ikPriv };
+        return { ikPriv: this._ikPriv, spkPriv: oldSPK };
+    }
+    /** 判断 spkId 是否命中当前活跃 SPK。 */
+    isCurrentSPK(spkId) {
+        return Boolean(spkId) && spkId === this._spkId;
+    }
+    /** 跟踪每个旧 SPK 引用的最大 seq（用于销毁判定）。 */
+    trackOldSPKMaxSeq(spkId, seq) {
+        if (!spkId || spkId === this._spkId)
+            return;
+        const cur = this._oldSPKMaxSeq.get(spkId);
+        const curSeq = cur ? cur.seq : 0;
+        if (seq > curSeq) {
+            this._oldSPKMaxSeq.set(spkId, { seq, lastSeenAt: this._nowFn() });
+        }
+    }
+    /**
+     * contig_seq 已覆盖、超过 7h 安全窗口、且不在最近 7 代保留窗口内时销毁。
+     *
+     * 销毁条件（全部满足才销毁）：
+     * - contig_seq >= 该 SPK 引用的最大 seq（接收方已消费完所有引用此 SPK 的消息）
+     * - 自最后一次见到该 spk_id 引用 >= 7 小时
+     * - 不在最近 7 代 SPK 保留窗口内
+     *
+     * 7h + 7 代双兜底：低频群即便 contig_seq 已覆盖也至少留 7 代或 7h，
+     * 避免发送方陈旧 bootstrap 缓存导致新消息加密失败。
+     */
+    maybeDestroyOldSPKs(contigSeq) {
+        const destroyed = [];
+        const now = this._nowFn();
+        let recentKeep;
+        try {
+            recentKeep = new Set(this._store.listRecentSPKIds(this._deviceId, RECENT_GENERATIONS));
+        }
+        catch {
+            recentKeep = new Set();
+        }
+        for (const [spkId, info] of Array.from(this._oldSPKMaxSeq.entries())) {
+            if (spkId === this._spkId)
+                continue;
+            if (contigSeq < info.seq)
+                continue;
+            if (now - info.lastSeenAt < DESTROY_DELAY_MS)
+                continue;
+            if (recentKeep.has(spkId))
+                continue;
+            try {
+                this._store.deleteSPK(this._deviceId, spkId);
+            }
+            catch {
+                // 忽略 delete 失败，但 _oldSPKMaxSeq 仍清理避免重复尝试
+            }
+            this._oldSPKMaxSeq.delete(spkId);
+            destroyed.push(spkId);
+        }
+        // 180 天硬上限：无论是否被引用，超龄 SPK 强制销毁
+        try {
+            const expired = this._store.listExpiredSPKIds(this._deviceId, HARD_LIMIT_MS);
+            for (const spkId of expired) {
+                if (spkId === this._spkId)
+                    continue;
+                try {
+                    this._store.deleteSPK(this._deviceId, spkId);
+                }
+                catch { /* ignore */ }
+                this._oldSPKMaxSeq.delete(spkId);
+                if (!destroyed.includes(spkId))
+                    destroyed.push(spkId);
+            }
+        }
+        catch { /* ignore */ }
+        return destroyed;
+    }
+    /** 轮换 SPK：生成新 SPK 并上报到服务端。旧 SPK 保留本地用于解密。 */
+    async rotateSPK(callFn) {
+        this._generateNewSPK();
+        await this._registerSPK(callFn);
+    }
+    cachePeerIK(peerAid, deviceId, ikPubDer) {
+        this._peerIKCache.set(`${peerAid}#${deviceId}`, { pubDer: ikPubDer, cachedAt: this._nowFn() });
+    }
+    getPeerIK(peerAid, deviceId) {
+        const key = `${peerAid}#${deviceId}`;
+        const entry = this._peerIKCache.get(key);
+        if (!entry)
+            return null;
+        if (this._nowFn() - entry.cachedAt >= PEER_KEY_CACHE_TTL_MS) {
+            this._peerIKCache.delete(key);
+            return null;
+        }
+        return entry.pubDer;
+    }
+    isPeerSPKVerified(peerAid, deviceId, spkId) {
+        return this._verifiedSPKs.has(`${peerAid}#${deviceId}#${spkId}`);
+    }
+    markPeerSPKVerified(peerAid, deviceId, spkId) {
+        this._verifiedSPKs.add(`${peerAid}#${deviceId}#${spkId}`);
+    }
+}
+//# sourceMappingURL=session.js.map

package/dist/v2/session/session.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"session.js","sourceRoot":"","sources":["../../../src/v2/session/session.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EAAE,mBAAmB,EAAE,MAAM,mBAAmB,CAAC;AACxD,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAGlD,0BAA0B;AAC1B,MAAM,CAAC,MAAM,qBAAqB,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,KAAK;AAC1D,sBAAsB;AACtB,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,KAAK;AACzD,sBAAsB;AACtB,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,CAAC;AACpC,MAAM,CAAC,MAAM,aAAa,GAAG,GAAG,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,QAAQ;AAgBhE,MAAM,OAAO,SAAS;IACH,MAAM,CAAa;IACnB,SAAS,CAAS;IAClB,IAAI,CAAS;IACb,OAAO,CAAa;IACpB,SAAS,CAAa;IAE/B,MAAM,GAAG,EAAE,CAAC;IACZ,QAAQ,CAAc;IACtB,UAAU,CAAc;IACxB,WAAW,GAAG,KAAK,CAAC;IAEpB,YAAY,GAAG,IAAI,GAAG,EAAoD,CAAC;IAC3E,aAAa,GAAG,IAAI,GAAG,EAAU,CAAC;IAClC,aAAa,GAAG,IAAI,GAAG,EAA+C,CAAC;IACvE,MAAM,GAAiB,GAAG,EAAE,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC;IAEhD,YACE,KAAiB,EACjB,QAAgB,EAChB,GAAW,EACX,MAAkB,EAClB,QAAoB;QAEpB,IAAI,CAAC,MAAM,IAAI,CAAC,QAAQ,EAAE,CAAC;YACzB,MAAM,IAAI,KAAK,CAAC,0DAA0D,CAAC,CAAC;QAC9E,CAAC;QACD,IAAI,CAAC,MAAM,GAAG,KAAK,CAAC;QACpB,IAAI,CAAC,SAAS,GAAG,QAAQ,CAAC;QAC1B,IAAI,CAAC,IAAI,GAAG,GAAG,CAAC;QAChB,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC;QACtB,IAAI,CAAC,SAAS,GAAG,QAAQ,CAAC;IAC5B,CAAC;IAED,kBAAkB;IAClB,SAAS,CAAC,EAAgB;QACxB,IAAI,CAAC,MAAM,GAAG,EAAE,CAAC;IACnB,CAAC;IAED,IAAI,QAAQ;QACV,OAAO,IAAI,CAAC,SAAS,CAAC;IACxB,CAAC;IAED,IAAI,GAAG;QACL,OAAO,IAAI,CAAC,IAAI,CAAC;IACnB,CAAC;IAED,IAAI,YAAY;QACd,OAAO,IAAI,CAAC,MAAM,CAAC;IACrB,CAAC;IAED,IAAI,eAAe;QACjB,OAAO,IAAI,CAAC,SAAS,CAAC;IACxB,CAAC;IAED,sCAAsC;IACtC,IAAI,aAAa;QACf,OAAO,IAAI,CAAC,MAAM,CAAC;IACrB,CAAC;IAED,mCAAmC;IACnC,UAAU;QACR,IAAI,IAAI,CAAC,QAAQ;YAAE,OAAO;QAC1B,MAAM,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACvD,IAAI,GAAG,EAAE,CAAC;YACR,IAAI,CAAC,MAAM,GAAG,GAAG,CAAC,KAAK,CAAC;YACxB,IAAI,CAAC,QAAQ,GAAG,GAAG,CAAC,IAAI,CAAC;YACzB,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC,MAAM,CAAC;YAC7B,OAAO;QACT,CAAC;QACD,IAAI,CAAC,eAAe,EAAE,CAAC;IACzB,CAAC;IAEO,eAAe;QACrB,MAAM,CAAC,IAAI,EAAE,MAAM,CAAC,GAAG,mBAAmB,EAAE,CAAC;QAC7C,MAAM,OAAO,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAClE,MAAM,KAAK,GAAG,UAAU,OAAO,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;QACnD,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;QACzD,IAAI,CAAC,MAAM,GAAG,KAAK,CAAC;QACpB,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC;QACrB,IAAI,CAAC,UAAU,GAAG,MAAM,CAAC;IAC3B,CAAC;IAED,yCAAyC;IACzC,KAAK,CAAC,gBAAgB,CAAC,MAAc;QACnC,IAAI,IAAI,CAAC,WAAW;YAAE,OAAO;QAC7B,IAAI,CAAC,UAAU,EAAE,CAAC;QAClB,MAAM,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QAChC,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;IAC1B,CAAC;IAED,wDAAwD;IAChD,KAAK,CAAC,YAAY,CAAC,MAAc;QACvC,MAAM,YAAY,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,IAAI,CAAC,CAAC;QACtD,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC;YAC7B,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,UAAW,CAAC;YAC7B,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,OAAO,CAAC;YACjC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC,EAAE,OAAO,CAAC;SAC3C,CAAC,CAAC;QACH,MAAM,SAAS,GAAG,YAAY,CAAC,IAAI,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;QACvD,MAAM,MAAM,CAAC,wBAAwB,EAAE;YACrC,QAAQ,EAAE,IAAI,CAAC,IAAI;YACnB,UAAU,EAAE,oBAAoB;YAChC,MAAM,EAAE,IAAI,CAAC,MAAM;YACnB,MAAM,EAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,UAAW,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC;YACxD,aAAa,EAAE,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC;YACxD,aAAa,EAAE,YAAY;SAC5B,CAAC,CAAC;IACL,CAAC;IAED,yBAAyB;IACzB,iBAAiB;QACf,IAAI,CAAC,UAAU,EAAE,CAAC;QAClB,OAAO;YACL,GAAG,EAAE,IAAI,CAAC,IAAI;YACd,QAAQ,EAAE,IAAI,CAAC,SAAS;YACxB,MAAM,EAAE,IAAI,CAAC,OAAO;YACpB,QAAQ,EAAE,IAAI,CAAC,SAAS;SACzB,CAAC;IACJ,CAAC;IAED;;;;;OAKG;IACH,cAAc,CAAC,KAAgC;QAC7C,IAAI,CAAC,UAAU,EAAE,CAAC;QAClB,IAAI,CAAC,KAAK;YAAE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,OAAO,EAAE,CAAC;QAC5C,IAAI,KAAK,KAAK,IAAI,CAAC,MAAM;YAAE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,QAAQ,EAAE,CAAC;QACnF,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;QAC1D,IAAI,CAAC,MAAM;YAAE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,OAAO,EAAE,CAAC;QAC7C,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC;IACnD,CAAC;IAED,6BAA6B;IAC7B,YAAY,CAAC,KAAgC;QAC3C,OAAO,OAAO,CAAC,KAAK,CAAC,IAAI,KAAK,KAAK,IAAI,CAAC,MAAM,CAAC;IACjD,CAAC;IAED,mCAAmC;IACnC,iBAAiB,CAAC,KAAa,EAAE,GAAW;QAC1C,IAAI,CAAC,KAAK,IAAI,KAAK,KAAK,IAAI,CAAC,MAAM;YAAE,OAAO;QAC5C,MAAM,GAAG,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAC1C,MAAM,MAAM,GAAG,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QACjC,IAAI,GAAG,GAAG,MAAM,EAAE,CAAC;YACjB,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,KAAK,EAAE,EAAE,GAAG,EAAE,UAAU,EAAE,IAAI,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;QACpE,CAAC;IACH,CAAC;IAED;;;;;;;;;;OAUG;IACH,mBAAmB,CAAC,SAAiB;QACnC,MAAM,SAAS,GAAa,EAAE,CAAC;QAC/B,MAAM,GAAG,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC;QAC1B,IAAI,UAAuB,CAAC;QAC5B,IAAI,CAAC;YACH,UAAU,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,gBAAgB,CAAC,IAAI,CAAC,SAAS,EAAE,kBAAkB,CAAC,CAAC,CAAC;QACzF,CAAC;QAAC,MAAM,CAAC;YACP,UAAU,GAAG,IAAI,GAAG,EAAE,CAAC;QACzB,CAAC;QACD,KAAK,MAAM,CAAC,KAAK,EAAE,IAAI,CAAC,IAAI,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,OAAO,EAAE,CAAC,EAAE,CAAC;YACrE,IAAI,KAAK,KAAK,IAAI,CAAC,MAAM;gBAAE,SAAS;YACpC,IAAI,SAAS,GAAG,IAAI,CAAC,GAAG;gBAAE,SAAS;YACnC,IAAI,GAAG,GAAG,IAAI,CAAC,UAAU,GAAG,gBAAgB;gBAAE,SAAS;YACvD,IAAI,UAAU,CAAC,GAAG,CAAC,KAAK,CAAC;gBAAE,SAAS;YACpC,IAAI,CAAC;gBACH,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;YAC/C,CAAC;YAAC,MAAM,CAAC;gBACP,yCAAyC;YAC3C,CAAC;YACD,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YACjC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACxB,CAAC;QAED,+BAA+B;QAC/B,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,CAAC,iBAAiB,CAAC,IAAI,CAAC,SAAS,EAAE,aAAa,CAAC,CAAC;YAC7E,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;gBAC5B,IAAI,KAAK,KAAK,IAAI,CAAC,MAAM;oBAAE,SAAS;gBACpC,IAAI,CAAC;oBAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;gBAAC,CAAC;gBAAC,MAAM,CAAC,CAAC,YAAY,CAAC,CAAC;gBAC5E,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;gBACjC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC;oBAAE,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YACxD,CAAC;QACH,CAAC;QAAC,MAAM,CAAC,CAAC,YAAY,CAAC,CAAC;QAExB,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,6CAA6C;IAC7C,KAAK,CAAC,SAAS,CAAC,MAAc;QAC5B,IAAI,CAAC,eAAe,EAAE,CAAC;QACvB,MAAM,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;IAClC,CAAC;IAED,WAAW,CAAC,OAAe,EAAE,QAAgB,EAAE,QAAoB;QACjE,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,GAAG,OAAO,IAAI,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,QAAQ,EAAE,IAAI,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;IACjG,CAAC;IAED,SAAS,CAAC,OAAe,EAAE,QAAgB;QACzC,MAAM,GAAG,GAAG,GAAG,OAAO,IAAI,QAAQ,EAAE,CAAC;QACrC,MAAM,KAAK,GAAG,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACzC,IAAI,CAAC,KAAK;YAAE,OAAO,IAAI,CAAC;QACxB,IAAI,IAAI,CAAC,MAAM,EAAE,GAAG,KAAK,CAAC,QAAQ,IAAI,qBAAqB,EAAE,CAAC;YAC5D,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YAC9B,OAAO,IAAI,CAAC;QACd,CAAC;QACD,OAAO,KAAK,CAAC,MAAM,CAAC;IACtB,CAAC;IAED,iBAAiB,CAAC,OAAe,EAAE,QAAgB,EAAE,KAAa;QAChE,OAAO,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,GAAG,OAAO,IAAI,QAAQ,IAAI,KAAK,EAAE,CAAC,CAAC;IACnE,CAAC;IAED,mBAAmB,CAAC,OAAe,EAAE,QAAgB,EAAE,KAAa;QAClE,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,GAAG,OAAO,IAAI,QAAQ,IAAI,KAAK,EAAE,CAAC,CAAC;IAC5D,CAAC;CACF"}