@agora-sdk/secure-chat-crypto 0.4.0 → 0.5.0

package/dist/cjs/index.d.ts

@@ -1 +1,2 @@
-export type { SecureChatCrypto, DeviceIdentity, KeyPackageBundle, GroupHandle, TargetedWelcome, CommitResult, PassphraseBackup, } from "./interface.js";
+export type { SecureChatCrypto, DeviceIdentity, KeyPackageBundle, GroupHandle, GroupMemberIdentity, TargetedWelcome, CommitResult, PassphraseBackup, SecureDecryptFailureReason, } from "./interface.js";
+export { SecureChatDecryptError } from "./interface.js";

package/dist/cjs/index.js

@@ -1,3 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
+exports.SecureChatDecryptError = void 0;
+// Value export (a real Error subclass) so callers can `instanceof` it to fail closed on a rejected message.
+var interface_js_1 = require("./interface.js");
+Object.defineProperty(exports, "SecureChatDecryptError", { enumerable: true, get: function () { return interface_js_1.SecureChatDecryptError; } });
 //# sourceMappingURL=index.js.map

package/dist/cjs/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":""}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":";;;AAiBA,4GAA4G;AAC5G,+CAAwD;AAA/C,sHAAA,sBAAsB,OAAA"}

package/dist/cjs/interface.d.ts

@@ -18,6 +18,14 @@ export interface GroupHandle {
     mlsGroupId: Uint8Array;
     epoch: bigint;
 }
+/** One member of a group, as seen in the local MLS roster: a device id + its signature public key.
+ *  The public key is what a safety number / key-verification fingerprint is derived from. */
+export interface GroupMemberIdentity {
+    /** The member device's stable id (the MLS credential identity). */
+    deviceId: string;
+    /** The member device's MLS signature PUBLIC key (safe to expose; never the private half). */
+    signaturePublicKey: Uint8Array;
+}
 /** A Welcome destined for exactly one new-member device (the one whose KeyPackage was used). */
 export interface TargetedWelcome {
     targetDeviceId: string;
@@ -39,6 +47,34 @@ export interface PassphraseBackup {
     nonce: Uint8Array;
     version: number;
 }
+/**
+ * Why an inbound message could not be decrypted/authenticated. Drives fail-closed handling at the
+ * caller: a `"replay"` / `"gap-too-large"` / `"unauthenticated"` / `"malformed"` / `"epoch-too-old"`
+ * message is a terminal rejection (drop it), whereas a future-epoch message the client hasn't reached
+ * yet is NOT one of these — the caller decides that by epoch, not by reason.
+ *
+ * - `replay` — the sender generation was already consumed (a replayed/duplicated message).
+ * - `gap-too-large` — the generation jumped further ahead than the ratchet will skip (possible drop/DoS).
+ * - `epoch-too-old` — the message's epoch is older than the retained history; its keys are gone.
+ * - `unauthenticated` — signature/authentication failed (forged or corrupted).
+ * - `malformed` — the bytes didn't decode as a valid MLS message.
+ * - `unknown` — any other decrypt failure.
+ */
+export type SecureDecryptFailureReason = "replay" | "gap-too-large" | "epoch-too-old" | "unauthenticated" | "malformed" | "unknown";
+/**
+ * Thrown by {@link SecureChatCrypto.decryptMessage} when a message fails to decrypt/authenticate. The
+ * MLS core (its secret-tree ratchet) is the single point that enforces replay/gap rejection; this
+ * error simply classifies that failure so the caller can fail closed and surface it. Carries no
+ * plaintext or key material.
+ */
+export declare class SecureChatDecryptError extends Error {
+    readonly reason: SecureDecryptFailureReason;
+    /**
+     * @param reason - The {@link SecureDecryptFailureReason} classification.
+     * @param message - A non-sensitive, human-readable description (never includes plaintext/keys).
+     */
+    constructor(reason: SecureDecryptFailureReason, message: string);
+}
 export interface SecureChatCrypto {
     generateDeviceIdentity(opts: {
         deviceId: string;
@@ -67,11 +103,33 @@ export interface SecureChatCrypto {
         ciphertext: Uint8Array;
         epoch: bigint;
     }>;
+    /**
+     * Decrypt + authenticate one inbound MLS application message. The MLS core's secret-tree ratchet is
+     * the single point that enforces replay/gap rejection (a consumed generation can't be re-derived; a
+     * generation too far ahead is refused) — implementations do not hand-roll a parallel counter. Always
+     * fails closed: on any failure it throws and returns no plaintext.
+     *
+     * @param group - The local group handle.
+     * @param ciphertext - The MLS PrivateMessage bytes (base64-decoded at the wire boundary).
+     * @returns The plaintext, the best-effort sender device id, and the message epoch.
+     * @throws {SecureChatDecryptError} On replay, an over-limit generation gap, a too-old epoch, a failed
+     *   authentication, malformed bytes, or any other decrypt failure (see {@link SecureDecryptFailureReason}).
+     */
     decryptMessage(group: GroupHandle, ciphertext: Uint8Array): Promise<{
         plaintext: Uint8Array;
         senderDeviceId: string;
         epoch: bigint;
     }>;
+    /**
+     * List the members of a joined group as `{ deviceId, signaturePublicKey }`, read from the local MLS
+     * roster. The public keys feed an out-of-band safety-number / key-verification fingerprint (TOFU
+     * hardening against a blind server swapping a KeyPackage). Returns public material only.
+     *
+     * @param group - The local group handle.
+     * @returns The group's members (order is implementation-defined; callers that need stability sort).
+     * @throws {Error} When the group is unknown (not joined / evicted).
+     */
+    exportGroupIdentities(group: GroupHandle): Promise<GroupMemberIdentity[]>;
     processWelcome(welcome: Uint8Array): Promise<GroupHandle>;
     processCommit(group: GroupHandle, commit: Uint8Array): Promise<GroupHandle>;
     processProposal(group: GroupHandle, proposal: Uint8Array): Promise<void>;
@@ -81,6 +139,24 @@ export interface SecureChatCrypto {
     exportDeviceState(): Promise<Uint8Array>;
     /** Restore device identity + private state from {@link exportDeviceState} output. */
     importDeviceState(state: Uint8Array): Promise<DeviceIdentity>;
+    /**
+     * Seal all local key material (device identity + private keys + every joined group's state) into a
+     * passphrase-encrypted blob for upload to the blind server. The real cores use a memory-hard KDF
+     * (argon2id) + an AEAD; the server stores the ciphertext verbatim and can never decrypt it.
+     *
+     * @param passphrase - The user's backup passphrase (never sent to the server).
+     * @returns The encrypted backup envelope (base64-encode `blob`/`nonce` at the wire boundary).
+     */
     exportBackup(passphrase: string): Promise<PassphraseBackup>;
-    importBackup(passphrase: string, backup: PassphraseBackup): Promise<void>;
+    /**
+     * Restore local key material from a {@link exportBackup} envelope, repopulating this instance's
+     * device identity and group states. Symmetric with {@link importDeviceState}, it returns the
+     * restored identity so a caller can re-assert the device server-side (idempotently) and rehydrate UI.
+     *
+     * @param passphrase - The user's backup passphrase.
+     * @param backup - The encrypted envelope fetched from the server.
+     * @returns The restored device identity.
+     * @throws {Error} On a wrong passphrase or a corrupt/tampered backup (fails closed — no partial restore).
+     */
+    importBackup(passphrase: string, backup: PassphraseBackup): Promise<DeviceIdentity>;
 }

package/dist/cjs/interface.js

@@ -11,4 +11,23 @@
 // its owner. Binary is `Uint8Array` IN MEMORY; the network layer base64-encodes at the wire
 // boundary. MLS epochs are u64 → `bigint`.
 Object.defineProperty(exports, "__esModule", { value: true });
+exports.SecureChatDecryptError = void 0;
+/**
+ * Thrown by {@link SecureChatCrypto.decryptMessage} when a message fails to decrypt/authenticate. The
+ * MLS core (its secret-tree ratchet) is the single point that enforces replay/gap rejection; this
+ * error simply classifies that failure so the caller can fail closed and surface it. Carries no
+ * plaintext or key material.
+ */
+class SecureChatDecryptError extends Error {
+    /**
+     * @param reason - The {@link SecureDecryptFailureReason} classification.
+     * @param message - A non-sensitive, human-readable description (never includes plaintext/keys).
+     */
+    constructor(reason, message) {
+        super(message);
+        this.reason = reason;
+        this.name = "SecureChatDecryptError";
+    }
+}
+exports.SecureChatDecryptError = SecureChatDecryptError;
 //# sourceMappingURL=interface.js.map

package/dist/cjs/interface.js.map

@@ -1 +1 @@
-{"version":3,"file":"interface.js","sourceRoot":"","sources":["../../src/interface.ts"],"names":[],"mappings":";AAAA,6FAA6F;AAC7F,EAAE;AACF,+FAA+F;AAC/F,6FAA6F;AAC7F,gGAAgG;AAChG,yFAAyF;AACzF,EAAE;AACF,0FAA0F;AAC1F,kGAAkG;AAClG,4FAA4F;AAC5F,2CAA2C"}
+{"version":3,"file":"interface.js","sourceRoot":"","sources":["../../src/interface.ts"],"names":[],"mappings":";AAAA,6FAA6F;AAC7F,EAAE;AACF,+FAA+F;AAC/F,6FAA6F;AAC7F,gGAAgG;AAChG,yFAAyF;AACzF,EAAE;AACF,0FAA0F;AAC1F,kGAAkG;AAClG,4FAA4F;AAC5F,2CAA2C;;;AA+E3C;;;;;GAKG;AACH,MAAa,sBAAuB,SAAQ,KAAK;IAC/C;;;OAGG;IACH,YACW,MAAkC,EAC3C,OAAe;QAEf,KAAK,CAAC,OAAO,CAAC,CAAC;QAHN,WAAM,GAAN,MAAM,CAA4B;QAI3C,IAAI,CAAC,IAAI,GAAG,wBAAwB,CAAC;IACvC,CAAC;CACF;AAZD,wDAYC"}

package/dist/cjs/mock-crypto.d.ts

@@ -1,4 +1,4 @@
-import type { SecureChatCrypto, DeviceIdentity, KeyPackageBundle, GroupHandle, CommitResult, PassphraseBackup, TargetedWelcome } from "./interface.js";
+import type { SecureChatCrypto, DeviceIdentity, KeyPackageBundle, GroupHandle, GroupMemberIdentity, CommitResult, PassphraseBackup, TargetedWelcome } from "./interface.js";
 export declare class MockSecureChatCrypto implements SecureChatCrypto {
     private identity?;
     private privateState?;
@@ -26,7 +26,7 @@ export declare class MockSecureChatCrypto implements SecureChatCrypto {
         deviceId: string;
         keyPackage: Uint8Array;
     }): Promise<CommitResult>;
-    removeMember(group: GroupHandle, _leafDeviceId: string): Promise<CommitResult>;
+    removeMember(group: GroupHandle, leafDeviceId: string): Promise<CommitResult>;
     encryptMessage(group: GroupHandle, plaintext: Uint8Array): Promise<{
         ciphertext: Uint8Array;
         epoch: bigint;
@@ -37,6 +37,7 @@ export declare class MockSecureChatCrypto implements SecureChatCrypto {
         epoch: bigint;
     }>;
     processWelcome(welcome: Uint8Array): Promise<GroupHandle>;
+    exportGroupIdentities(group: GroupHandle): Promise<GroupMemberIdentity[]>;
     processCommit(group: GroupHandle, commit: Uint8Array): Promise<GroupHandle>;
     processProposal(_group: GroupHandle, _proposal: Uint8Array): Promise<void>;
     exportDeviceState(): Promise<Uint8Array>;
@@ -44,5 +45,5 @@ export declare class MockSecureChatCrypto implements SecureChatCrypto {
     exportGroupState(group: GroupHandle): Promise<Uint8Array>;
     importGroupState(state: Uint8Array): Promise<GroupHandle>;
     exportBackup(passphrase: string): Promise<PassphraseBackup>;
-    importBackup(passphrase: string, backup: PassphraseBackup): Promise<void>;
+    importBackup(passphrase: string, backup: PassphraseBackup): Promise<DeviceIdentity>;
 }

package/dist/cjs/mock-crypto.js

@@ -1,6 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.MockSecureChatCrypto = void 0;
+const interface_js_1 = require("./interface.js");
 const enc = new TextEncoder();
 const dec = new TextDecoder();
 const BACKUP_MAGIC = "AGORA_MOCK_BACKUP_V1";
@@ -78,13 +79,15 @@ class MockSecureChatCrypto {
             bytesFrom(`grp:${did}:${opts.initialMembers.map((m) => m.deviceId).join(",")}`, 16);
         const idHex = toHex(mlsGroupId);
         const secret = bytesFrom(`secret:${idHex}:${did}`, 32);
-        this.groups.set(idHex, { secret, epoch: 0n });
+        const members = [did, ...opts.initialMembers.map((m) => m.deviceId)];
+        this.groups.set(idHex, { secret, epoch: 0n, members });
         const welcomes = opts.initialMembers.map((m) => ({
             targetDeviceId: m.deviceId,
             payload: jsonBytes({
                 groupId: idHex,
                 secret: toHex(secret),
                 epoch: "0",
+                members,
             }),
         }));
         return { group: { mlsGroupId, epoch: 0n }, welcomes };
@@ -96,6 +99,8 @@ class MockSecureChatCrypto {
             throw new Error("mock: unknown group");
         st.epoch += 1n;
         const epoch = st.epoch;
+        if (!st.members.includes(newDevice.deviceId))
+            st.members.push(newDevice.deviceId);
         return {
             commit: jsonBytes({ type: "commit", groupId: idHex, epoch: epoch.toString() }),
             welcomes: [
@@ -105,18 +110,20 @@ class MockSecureChatCrypto {
                         groupId: idHex,
                         secret: toHex(st.secret),
                         epoch: epoch.toString(),
+                        members: st.members,
                     }),
                 },
             ],
             epoch,
         };
     }
-    async removeMember(group, _leafDeviceId) {
+    async removeMember(group, leafDeviceId) {
         const idHex = toHex(group.mlsGroupId);
         const st = this.groups.get(idHex);
         if (!st)
             throw new Error("mock: unknown group");
         st.epoch += 1n;
+        st.members = st.members.filter((m) => m !== leafDeviceId);
         return {
             commit: jsonBytes({ type: "commit", groupId: idHex, epoch: st.epoch.toString() }),
             welcomes: [],
@@ -141,7 +148,7 @@ class MockSecureChatCrypto {
         const idHex = toHex(group.mlsGroupId);
         const st = this.groups.get(idHex);
         if (!st)
-            throw new Error("mock: unknown group");
+            throw new interface_js_1.SecureChatDecryptError("unknown", "mock: unknown group");
         // header = "<deviceId>|<epoch>|" — split on the SECOND pipe.
         let pipes = 0;
         let cut = -1;
@@ -155,7 +162,7 @@ class MockSecureChatCrypto {
             }
         }
         if (cut < 0)
-            throw new Error("mock: malformed ciphertext");
+            throw new interface_js_1.SecureChatDecryptError("malformed", "mock: malformed ciphertext");
         const [senderDeviceId, epochStr] = dec.decode(ciphertext.slice(0, cut - 1)).split("|");
         const body = ciphertext.slice(cut);
         const ks = keystream(st.secret, body.length);
@@ -167,9 +174,25 @@ class MockSecureChatCrypto {
     }
     async processWelcome(welcome) {
         const w = parseJson(welcome);
-        this.groups.set(w.groupId, { secret: fromHex(w.secret), epoch: BigInt(w.epoch) });
+        this.groups.set(w.groupId, {
+            secret: fromHex(w.secret),
+            epoch: BigInt(w.epoch),
+            members: w.members ?? [],
+        });
         return { mlsGroupId: fromHex(w.groupId), epoch: BigInt(w.epoch) };
     }
+    async exportGroupIdentities(group) {
+        const idHex = toHex(group.mlsGroupId);
+        const st = this.groups.get(idHex);
+        if (!st)
+            throw new Error("mock: unknown group");
+        // The mock derives each device's signature key deterministically from its id (see
+        // generateDeviceIdentity), so the roster of device ids is enough to reconstruct every member's key.
+        return st.members.map((deviceId) => ({
+            deviceId,
+            signaturePublicKey: bytesFrom(`sig:${deviceId}`, 32),
+        }));
+    }
     async processCommit(group, commit) {
         const c = parseJson(commit);
         const idHex = toHex(group.mlsGroupId);
@@ -210,11 +233,20 @@ class MockSecureChatCrypto {
         const st = this.groups.get(idHex);
         if (!st)
             throw new Error("mock: unknown group");
-        return jsonBytes({ groupId: idHex, secret: toHex(st.secret), epoch: st.epoch.toString() });
+        return jsonBytes({
+            groupId: idHex,
+            secret: toHex(st.secret),
+            epoch: st.epoch.toString(),
+            members: st.members,
+        });
     }
     async importGroupState(state) {
         const s = parseJson(state);
-        this.groups.set(s.groupId, { secret: fromHex(s.secret), epoch: BigInt(s.epoch) });
+        this.groups.set(s.groupId, {
+            secret: fromHex(s.secret),
+            epoch: BigInt(s.epoch),
+            members: s.members ?? [],
+        });
         return { mlsGroupId: fromHex(s.groupId), epoch: BigInt(s.epoch) };
     }
     async exportBackup(passphrase) {
@@ -222,11 +254,13 @@ class MockSecureChatCrypto {
             id,
             secret: toHex(st.secret),
             epoch: st.epoch.toString(),
+            members: st.members,
         }));
         const plain = jsonBytes({
             magic: BACKUP_MAGIC,
             identityPriv: this.privateState ? toHex(this.privateState) : null,
             deviceId: this.identity?.deviceId ?? null,
+            ciphersuite: this.identity?.ciphersuite ?? 1,
             groups,
         });
         const salt = bytesFrom(`salt:${passphrase}`, 16);
@@ -251,14 +285,25 @@ class MockSecureChatCrypto {
         catch {
             throw new Error("mock: backup decrypt failed (wrong passphrase?)");
         }
-        if (parsed.magic !== BACKUP_MAGIC) {
+        if (parsed.magic !== BACKUP_MAGIC || !parsed.deviceId) {
             throw new Error("mock: backup decrypt failed (wrong passphrase?)");
         }
         if (parsed.identityPriv)
             this.privateState = fromHex(parsed.identityPriv);
         for (const g of parsed.groups) {
-            this.groups.set(g.id, { secret: fromHex(g.secret), epoch: BigInt(g.epoch) });
+            this.groups.set(g.id, { secret: fromHex(g.secret), epoch: BigInt(g.epoch), members: g.members ?? [] });
         }
+        // Rebuild the (deterministic) identity so the restored mock is usable, and return it — symmetric
+        // with importDeviceState, so the restore flow can re-assert the device server-side.
+        const ciphersuite = parsed.ciphersuite ?? 1;
+        const identity = {
+            deviceId: parsed.deviceId,
+            signaturePublicKey: bytesFrom(`sig:${parsed.deviceId}`, 32),
+            credential: enc.encode(parsed.deviceId),
+            ciphersuite,
+        };
+        this.identity = identity;
+        return identity;
     }
 }
 exports.MockSecureChatCrypto = MockSecureChatCrypto;

package/dist/cjs/mock-crypto.js.map

@@ -1 +1 @@
-{"version":3,"file":"mock-crypto.js","sourceRoot":"","sources":["../../src/mock-crypto.ts"],"names":[],"mappings":";;;AA0BA,MAAM,GAAG,GAAG,IAAI,WAAW,EAAE,CAAC;AAC9B,MAAM,GAAG,GAAG,IAAI,WAAW,EAAE,CAAC;AAC9B,MAAM,YAAY,GAAG,sBAAsB,CAAC;AAE5C,SAAS,KAAK,CAAC,CAAa;IAC1B,IAAI,CAAC,GAAG,EAAE,CAAC;IACX,KAAK,MAAM,CAAC,IAAI,CAAC;QAAE,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;IACxD,OAAO,CAAC,CAAC;AACX,CAAC;AACD,SAAS,OAAO,CAAC,CAAS;IACxB,MAAM,GAAG,GAAG,IAAI,UAAU,CAAC,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;IACzC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,CAAC,MAAM,EAAE,CAAC,EAAE;QAAE,GAAG,CAAC,CAAC,CAAC,GAAG,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACtF,OAAO,GAAG,CAAC;AACb,CAAC;AAED,mGAAmG;AACnG,SAAS,SAAS,CAAC,IAAgB,EAAE,GAAW;IAC9C,IAAI,KAAK,GAAG,UAAU,KAAK,CAAC,CAAC;IAC7B,KAAK,MAAM,CAAC,IAAI,IAAI;QAAE,KAAK,GAAG,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC;IAC7D,MAAM,GAAG,GAAG,IAAI,UAAU,CAAC,GAAG,CAAC,CAAC;IAChC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC;QAC7B,KAAK,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,OAAO,CAAC,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC;QACvD,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,KAAK,EAAE,CAAC,GAAG,IAAI,CAAC;QAC/B,IAAI,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC;YAAE,GAAG,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;IAClC,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC;AACD,SAAS,SAAS,CAAC,CAAS,EAAE,GAAW;IACvC,OAAO,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;AACvC,CAAC;AACD,SAAS,GAAG,CAAC,IAAgB,EAAE,GAAe;IAC5C,MAAM,GAAG,GAAG,IAAI,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACxC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC,EAAE;QAAE,GAAG,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC,CAAE,GAAG,GAAG,CAAC,CAAC,GAAG,GAAG,CAAC,MAAM,CAAE,CAAC;IAC/E,OAAO,GAAG,CAAC;AACb,CAAC;AACD,SAAS,SAAS,CAAC,CAAU;IAC3B,OAAO,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC;AACvC,CAAC;AACD,SAAS,SAAS,CAAI,CAAa;IACjC,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,CAAM,CAAC;AACxC,CAAC;AAYD,MAAa,oBAAoB;IAAjC;QAGU,WAAM,GAAG,IAAI,GAAG,EAAsB,CAAC,CAAC,sBAAsB;QAC9D,cAAS,GAAG,CAAC,CAAC;IAmPxB,CAAC;IAjPC,KAAK,CAAC,sBAAsB,CAAC,IAAgD;QAC3E,MAAM,WAAW,GAAG,IAAI,CAAC,WAAW,IAAI,CAAC,CAAC;QAC1C,MAAM,QAAQ,GAAmB;YAC/B,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,kBAAkB,EAAE,SAAS,CAAC,OAAO,IAAI,CAAC,QAAQ,EAAE,EAAE,EAAE,CAAC;YACzD,UAAU,EAAE,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,kCAAkC;YACzE,WAAW;SACZ,CAAC;QACF,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,YAAY,GAAG,SAAS,CAAC,QAAQ,IAAI,CAAC,QAAQ,EAAE,EAAE,EAAE,CAAC,CAAC;QAC3D,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,IAAI,CAAC,YAAY,EAAE,CAAC;IACvD,CAAC;IAED,KAAK,CAAC,mBAAmB,CAAC,KAAa;QACrC,MAAM,GAAG,GAAG,IAAI,CAAC,QAAQ,EAAE,QAAQ,IAAI,SAAS,CAAC;QACjD,MAAM,EAAE,GAAG,IAAI,CAAC,QAAQ,EAAE,WAAW,IAAI,CAAC,CAAC;QAC3C,MAAM,GAAG,GAAuB,EAAE,CAAC;QACnC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,EAAE,CAAC,EAAE,EAAE,CAAC;YAC/B,MAAM,GAAG,GAAG,GAAG,GAAG,OAAO,IAAI,CAAC,SAAS,EAAE,EAAE,CAAC;YAC5C,GAAG,CAAC,IAAI,CAAC,EAAE,aAAa,EAAE,GAAG,EAAE,UAAU,EAAE,SAAS,CAAC,MAAM,GAAG,EAAE,EAAE,EAAE,CAAC,EAAE,WAAW,EAAE,EAAE,EAAE,CAAC,CAAC;QAC5F,CAAC;QACD,OAAO,GAAG,CAAC;IACb,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,IAGjB;QACC,MAAM,GAAG,GAAG,IAAI,CAAC,QAAQ,EAAE,QAAQ,IAAI,SAAS,CAAC;QACjD,MAAM,UAAU,GACd,IAAI,CAAC,UAAU;YACf,SAAS,CAAC,OAAO,GAAG,IAAI,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;QACtF,MAAM,KAAK,GAAG,KAAK,CAAC,UAAU,CAAC,CAAC;QAChC,MAAM,MAAM,GAAG,SAAS,CAAC,UAAU,KAAK,IAAI,GAAG,EAAE,EAAE,EAAE,CAAC,CAAC;QACvD,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC;QAC9C,MAAM,QAAQ,GAAG,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAC/C,cAAc,EAAE,CAAC,CAAC,QAAQ;YAC1B,OAAO,EAAE,SAAS,CAAC;gBACjB,OAAO,EAAE,KAAK;gBACd,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC;gBACrB,KAAK,EAAE,GAAG;aACc,CAAC;SAC5B,CAAC,CAAC,CAAC;QACJ,OAAO,EAAE,KAAK,EAAE,EAAE,UAAU,EAAE,KAAK,EAAE,EAAE,EAAE,EAAE,QAAQ,EAAE,CAAC;IACxD,CAAC;IAED,KAAK,CAAC,SAAS,CACb,KAAkB,EAClB,SAAuD;QAEvD,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACtC,MAAM,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAClC,IAAI,CAAC,EAAE;YAAE,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QAChD,EAAE,CAAC,KAAK,IAAI,EAAE,CAAC;QACf,MAAM,KAAK,GAAG,EAAE,CAAC,KAAK,CAAC;QACvB,OAAO;YACL,MAAM,EAAE,SAAS,CAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,QAAQ,EAAE,EAAE,CAAC;YAC9E,QAAQ,EAAE;gBACR;oBACE,cAAc,EAAE,SAAS,CAAC,QAAQ;oBAClC,OAAO,EAAE,SAAS,CAAC;wBACjB,OAAO,EAAE,KAAK;wBACd,MAAM,EAAE,KAAK,CAAC,EAAE,CAAC,MAAM,CAAC;wBACxB,KAAK,EAAE,KAAK,CAAC,QAAQ,EAAE;qBACC,CAAC;iBAC5B;aACF;YACD,KAAK;SACN,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,KAAkB,EAAE,aAAqB;QAC1D,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACtC,MAAM,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAClC,IAAI,CAAC,EAAE;YAAE,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QAChD,EAAE,CAAC,KAAK,IAAI,EAAE,CAAC;QACf,OAAO;YACL,MAAM,EAAE,SAAS,CAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,QAAQ,EAAE,EAAE,CAAC;YACjF,QAAQ,EAAE,EAAE;YACZ,KAAK,EAAE,EAAE,CAAC,KAAK;SAChB,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,cAAc,CAClB,KAAkB,EAClB,SAAqB;QAErB,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACtC,MAAM,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAClC,IAAI,CAAC,EAAE;YAAE,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QAChD,MAAM,MAAM,GAAG,IAAI,CAAC,QAAQ,EAAE,QAAQ,IAAI,SAAS,CAAC;QACpD,MAAM,EAAE,GAAG,SAAS,CAAC,EAAE,CAAC,MAAM,EAAE,SAAS,CAAC,MAAM,CAAC,CAAC;QAClD,MAAM,IAAI,GAAG,GAAG,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC;QAChC,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC,GAAG,MAAM,IAAI,EAAE,CAAC,KAAK,GAAG,CAAC,CAAC;QACpD,MAAM,UAAU,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC;QAC/D,UAAU,CAAC,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;QAC1B,UAAU,CAAC,GAAG,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC;QACpC,OAAO,EAAE,UAAU,EAAE,KAAK,EAAE,EAAE,CAAC,KAAK,EAAE,CAAC;IACzC,CAAC;IAED,KAAK,CAAC,cAAc,CAClB,KAAkB,EAClB,UAAsB;QAEtB,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACtC,MAAM,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAClC,IAAI,CAAC,EAAE;YAAE,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QAChD,6DAA6D;QAC7D,IAAI,KAAK,GAAG,CAAC,CAAC;QACd,IAAI,GAAG,GAAG,CAAC,CAAC,CAAC;QACb,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,UAAU,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAC3C,IAAI,UAAU,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC,OAAO,EAAE,CAAC;gBACnC,KAAK,EAAE,CAAC;gBACR,IAAI,KAAK,KAAK,CAAC,EAAE,CAAC;oBAChB,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC;oBACZ,MAAM;gBACR,CAAC;YACH,CAAC;QACH,CAAC;QACD,IAAI,GAAG,GAAG,CAAC;YAAE,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;QAC3D,MAAM,CAAC,cAAc,EAAE,QAAQ,CAAC,GAAG,GAAG,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,GAAG,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACvF,MAAM,IAAI,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACnC,MAAM,EAAE,GAAG,SAAS,CAAC,EAAE,CAAC,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QAC7C,OAAO;YACL,SAAS,EAAE,GAAG,CAAC,IAAI,EAAE,EAAE,CAAC;YACxB,cAAc,EAAE,cAAc,IAAI,EAAE;YACpC,KAAK,EAAE,MAAM,CAAC,QAAQ,IAAI,GAAG,CAAC;SAC/B,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,OAAmB;QACtC,MAAM,CAAC,GAAG,SAAS,CAAiB,OAAO,CAAC,CAAC;QAC7C,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,OAAO,EAAE,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAClF,OAAO,EAAE,UAAU,EAAE,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC;IACpE,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,KAAkB,EAAE,MAAkB;QACxD,MAAM,CAAC,GAAG,SAAS,CAAoB,MAAM,CAAC,CAAC;QAC/C,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACtC,MAAM,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAClC,IAAI,EAAE;YAAE,EAAE,CAAC,KAAK,GAAG,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;QACnC,OAAO,EAAE,UAAU,EAAE,KAAK,CAAC,UAAU,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC;IAClE,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,MAAmB,EAAE,SAAqB;QAC9D,2DAA2D;IAC7D,CAAC;IAED,KAAK,CAAC,iBAAiB;QACrB,IAAI,CAAC,IAAI,CAAC,QAAQ,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC;YACzC,MAAM,IAAI,KAAK,CAAC,wEAAwE,CAAC,CAAC;QAC5F,CAAC;QACD,OAAO,SAAS,CAAC;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ,CAAC,QAAQ;YAChC,WAAW,EAAE,IAAI,CAAC,QAAQ,CAAC,WAAW;YACtC,kBAAkB,EAAE,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,kBAAkB,CAAC;YAC3D,UAAU,EAAE,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC;YAC3C,YAAY,EAAE,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC;SACvC,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,iBAAiB,CAAC,KAAiB;QACvC,MAAM,CAAC,GAAG,SAAS,CAMhB,KAAK,CAAC,CAAC;QACV,MAAM,QAAQ,GAAmB;YAC/B,QAAQ,EAAE,CAAC,CAAC,QAAQ;YACpB,WAAW,EAAE,CAAC,CAAC,WAAW;YAC1B,kBAAkB,EAAE,OAAO,CAAC,CAAC,CAAC,kBAAkB,CAAC;YACjD,UAAU,EAAE,OAAO,CAAC,CAAC,CAAC,UAAU,CAAC;SAClC,CAAC;QACF,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,YAAY,GAAG,OAAO,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC;QAC5C,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,KAAK,CAAC,gBAAgB,CAAC,KAAkB;QACvC,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACtC,MAAM,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAClC,IAAI,CAAC,EAAE;YAAE,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QAChD,OAAO,SAAS,CAAC,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,CAAC,MAAM,CAAC,EAAE,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;IAC7F,CAAC;IAED,KAAK,CAAC,gBAAgB,CAAC,KAAiB;QACtC,MAAM,CAAC,GAAG,SAAS,CAAqD,KAAK,CAAC,CAAC;QAC/E,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,OAAO,EAAE,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAClF,OAAO,EAAE,UAAU,EAAE,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC;IACpE,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,UAAkB;QACnC,MAAM,MAAM,GAAG,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC;YAC3D,EAAE;YACF,MAAM,EAAE,KAAK,CAAC,EAAE,CAAC,MAAM,CAAC;YACxB,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,QAAQ,EAAE;SAC3B,CAAC,CAAC,CAAC;QACJ,MAAM,KAAK,GAAG,SAAS,CAAC;YACtB,KAAK,EAAE,YAAY;YACnB,YAAY,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,IAAI;YACjE,QAAQ,EAAE,IAAI,CAAC,QAAQ,EAAE,QAAQ,IAAI,IAAI;YACzC,MAAM;SACP,CAAC,CAAC;QACH,MAAM,IAAI,GAAG,SAAS,CAAC,QAAQ,UAAU,EAAE,EAAE,EAAE,CAAC,CAAC;QACjD,MAAM,GAAG,GAAG,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,GAAG,UAAU,IAAI,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC;QAChF,OAAO;YACL,IAAI,EAAE,GAAG,CAAC,KAAK,EAAE,GAAG,CAAC;YACrB,GAAG,EAAE,UAAU;YACf,SAAS,EAAE,EAAE,IAAI,EAAE,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE;YACtD,MAAM,EAAE,mBAAmB;YAC3B,KAAK,EAAE,SAAS,CAAC,SAAS,UAAU,EAAE,EAAE,EAAE,CAAC;YAC3C,OAAO,EAAE,CAAC;SACX,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,UAAkB,EAAE,MAAwB;QAC7D,MAAM,IAAI,GACP,MAAM,CAAC,SAA+B,CAAC,IAAI,IAAI,KAAK,CAAC,SAAS,CAAC,QAAQ,UAAU,EAAE,EAAE,EAAE,CAAC,CAAC,CAAC;QAC7F,MAAM,GAAG,GAAG,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,GAAG,UAAU,IAAI,IAAI,EAAE,CAAC,EAAE,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC/E,MAAM,KAAK,GAAG,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;QACpC,IAAI,MAKH,CAAC;QACF,IAAI,CAAC;YACH,MAAM,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC;QAC5B,CAAC;QAAC,MAAM,CAAC;YACP,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;QACrE,CAAC;QACD,IAAI,MAAM,CAAC,KAAK,KAAK,YAAY,EAAE,CAAC;YAClC,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;QACrE,CAAC;QACD,IAAI,MAAM,CAAC,YAAY;YAAE,IAAI,CAAC,YAAY,GAAG,OAAO,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;QAC1E,KAAK,MAAM,CAAC,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;YAC9B,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAC/E,CAAC;IACH,CAAC;CACF;AAvPD,oDAuPC"}
+{"version":3,"file":"mock-crypto.js","sourceRoot":"","sources":["../../src/mock-crypto.ts"],"names":[],"mappings":";;;AA0BA,iDAAwD;AAExD,MAAM,GAAG,GAAG,IAAI,WAAW,EAAE,CAAC;AAC9B,MAAM,GAAG,GAAG,IAAI,WAAW,EAAE,CAAC;AAC9B,MAAM,YAAY,GAAG,sBAAsB,CAAC;AAE5C,SAAS,KAAK,CAAC,CAAa;IAC1B,IAAI,CAAC,GAAG,EAAE,CAAC;IACX,KAAK,MAAM,CAAC,IAAI,CAAC;QAAE,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;IACxD,OAAO,CAAC,CAAC;AACX,CAAC;AACD,SAAS,OAAO,CAAC,CAAS;IACxB,MAAM,GAAG,GAAG,IAAI,UAAU,CAAC,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;IACzC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,CAAC,MAAM,EAAE,CAAC,EAAE;QAAE,GAAG,CAAC,CAAC,CAAC,GAAG,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACtF,OAAO,GAAG,CAAC;AACb,CAAC;AAED,mGAAmG;AACnG,SAAS,SAAS,CAAC,IAAgB,EAAE,GAAW;IAC9C,IAAI,KAAK,GAAG,UAAU,KAAK,CAAC,CAAC;IAC7B,KAAK,MAAM,CAAC,IAAI,IAAI;QAAE,KAAK,GAAG,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC;IAC7D,MAAM,GAAG,GAAG,IAAI,UAAU,CAAC,GAAG,CAAC,CAAC;IAChC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC;QAC7B,KAAK,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,OAAO,CAAC,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC;QACvD,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,KAAK,EAAE,CAAC,GAAG,IAAI,CAAC;QAC/B,IAAI,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC;YAAE,GAAG,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;IAClC,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC;AACD,SAAS,SAAS,CAAC,CAAS,EAAE,GAAW;IACvC,OAAO,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;AACvC,CAAC;AACD,SAAS,GAAG,CAAC,IAAgB,EAAE,GAAe;IAC5C,MAAM,GAAG,GAAG,IAAI,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACxC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC,EAAE;QAAE,GAAG,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC,CAAE,GAAG,GAAG,CAAC,CAAC,GAAG,GAAG,CAAC,MAAM,CAAE,CAAC;IAC/E,OAAO,GAAG,CAAC;AACb,CAAC;AACD,SAAS,SAAS,CAAC,CAAU;IAC3B,OAAO,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC;AACvC,CAAC;AACD,SAAS,SAAS,CAAI,CAAa;IACjC,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,CAAM,CAAC;AACxC,CAAC;AAcD,MAAa,oBAAoB;IAAjC;QAGU,WAAM,GAAG,IAAI,GAAG,EAAsB,CAAC,CAAC,sBAAsB;QAC9D,cAAS,GAAG,CAAC,CAAC;IA+RxB,CAAC;IA7RC,KAAK,CAAC,sBAAsB,CAAC,IAAgD;QAC3E,MAAM,WAAW,GAAG,IAAI,CAAC,WAAW,IAAI,CAAC,CAAC;QAC1C,MAAM,QAAQ,GAAmB;YAC/B,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,kBAAkB,EAAE,SAAS,CAAC,OAAO,IAAI,CAAC,QAAQ,EAAE,EAAE,EAAE,CAAC;YACzD,UAAU,EAAE,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,kCAAkC;YACzE,WAAW;SACZ,CAAC;QACF,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,YAAY,GAAG,SAAS,CAAC,QAAQ,IAAI,CAAC,QAAQ,EAAE,EAAE,EAAE,CAAC,CAAC;QAC3D,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,IAAI,CAAC,YAAY,EAAE,CAAC;IACvD,CAAC;IAED,KAAK,CAAC,mBAAmB,CAAC,KAAa;QACrC,MAAM,GAAG,GAAG,IAAI,CAAC,QAAQ,EAAE,QAAQ,IAAI,SAAS,CAAC;QACjD,MAAM,EAAE,GAAG,IAAI,CAAC,QAAQ,EAAE,WAAW,IAAI,CAAC,CAAC;QAC3C,MAAM,GAAG,GAAuB,EAAE,CAAC;QACnC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,EAAE,CAAC,EAAE,EAAE,CAAC;YAC/B,MAAM,GAAG,GAAG,GAAG,GAAG,OAAO,IAAI,CAAC,SAAS,EAAE,EAAE,CAAC;YAC5C,GAAG,CAAC,IAAI,CAAC,EAAE,aAAa,EAAE,GAAG,EAAE,UAAU,EAAE,SAAS,CAAC,MAAM,GAAG,EAAE,EAAE,EAAE,CAAC,EAAE,WAAW,EAAE,EAAE,EAAE,CAAC,CAAC;QAC5F,CAAC;QACD,OAAO,GAAG,CAAC;IACb,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,IAGjB;QACC,MAAM,GAAG,GAAG,IAAI,CAAC,QAAQ,EAAE,QAAQ,IAAI,SAAS,CAAC;QACjD,MAAM,UAAU,GACd,IAAI,CAAC,UAAU;YACf,SAAS,CAAC,OAAO,GAAG,IAAI,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;QACtF,MAAM,KAAK,GAAG,KAAK,CAAC,UAAU,CAAC,CAAC;QAChC,MAAM,MAAM,GAAG,SAAS,CAAC,UAAU,KAAK,IAAI,GAAG,EAAE,EAAE,EAAE,CAAC,CAAC;QACvD,MAAM,OAAO,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC;QACrE,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;QACvD,MAAM,QAAQ,GAAG,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAC/C,cAAc,EAAE,CAAC,CAAC,QAAQ;YAC1B,OAAO,EAAE,SAAS,CAAC;gBACjB,OAAO,EAAE,KAAK;gBACd,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC;gBACrB,KAAK,EAAE,GAAG;gBACV,OAAO;aACiB,CAAC;SAC5B,CAAC,CAAC,CAAC;QACJ,OAAO,EAAE,KAAK,EAAE,EAAE,UAAU,EAAE,KAAK,EAAE,EAAE,EAAE,EAAE,QAAQ,EAAE,CAAC;IACxD,CAAC;IAED,KAAK,CAAC,SAAS,CACb,KAAkB,EAClB,SAAuD;QAEvD,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACtC,MAAM,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAClC,IAAI,CAAC,EAAE;YAAE,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QAChD,EAAE,CAAC,KAAK,IAAI,EAAE,CAAC;QACf,MAAM,KAAK,GAAG,EAAE,CAAC,KAAK,CAAC;QACvB,IAAI,CAAC,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAC,QAAQ,CAAC;YAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;QAClF,OAAO;YACL,MAAM,EAAE,SAAS,CAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,QAAQ,EAAE,EAAE,CAAC;YAC9E,QAAQ,EAAE;gBACR;oBACE,cAAc,EAAE,SAAS,CAAC,QAAQ;oBAClC,OAAO,EAAE,SAAS,CAAC;wBACjB,OAAO,EAAE,KAAK;wBACd,MAAM,EAAE,KAAK,CAAC,EAAE,CAAC,MAAM,CAAC;wBACxB,KAAK,EAAE,KAAK,CAAC,QAAQ,EAAE;wBACvB,OAAO,EAAE,EAAE,CAAC,OAAO;qBACK,CAAC;iBAC5B;aACF;YACD,KAAK;SACN,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,KAAkB,EAAE,YAAoB;QACzD,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACtC,MAAM,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAClC,IAAI,CAAC,EAAE;YAAE,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QAChD,EAAE,CAAC,KAAK,IAAI,EAAE,CAAC;QACf,EAAE,CAAC,OAAO,GAAG,EAAE,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,YAAY,CAAC,CAAC;QAC1D,OAAO;YACL,MAAM,EAAE,SAAS,CAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,QAAQ,EAAE,EAAE,CAAC;YACjF,QAAQ,EAAE,EAAE;YACZ,KAAK,EAAE,EAAE,CAAC,KAAK;SAChB,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,cAAc,CAClB,KAAkB,EAClB,SAAqB;QAErB,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACtC,MAAM,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAClC,IAAI,CAAC,EAAE;YAAE,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QAChD,MAAM,MAAM,GAAG,IAAI,CAAC,QAAQ,EAAE,QAAQ,IAAI,SAAS,CAAC;QACpD,MAAM,EAAE,GAAG,SAAS,CAAC,EAAE,CAAC,MAAM,EAAE,SAAS,CAAC,MAAM,CAAC,CAAC;QAClD,MAAM,IAAI,GAAG,GAAG,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC;QAChC,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC,GAAG,MAAM,IAAI,EAAE,CAAC,KAAK,GAAG,CAAC,CAAC;QACpD,MAAM,UAAU,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC;QAC/D,UAAU,CAAC,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;QAC1B,UAAU,CAAC,GAAG,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC;QACpC,OAAO,EAAE,UAAU,EAAE,KAAK,EAAE,EAAE,CAAC,KAAK,EAAE,CAAC;IACzC,CAAC;IAED,KAAK,CAAC,cAAc,CAClB,KAAkB,EAClB,UAAsB;QAEtB,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACtC,MAAM,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAClC,IAAI,CAAC,EAAE;YAAE,MAAM,IAAI,qCAAsB,CAAC,SAAS,EAAE,qBAAqB,CAAC,CAAC;QAC5E,6DAA6D;QAC7D,IAAI,KAAK,GAAG,CAAC,CAAC;QACd,IAAI,GAAG,GAAG,CAAC,CAAC,CAAC;QACb,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,UAAU,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAC3C,IAAI,UAAU,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC,OAAO,EAAE,CAAC;gBACnC,KAAK,EAAE,CAAC;gBACR,IAAI,KAAK,KAAK,CAAC,EAAE,CAAC;oBAChB,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC;oBACZ,MAAM;gBACR,CAAC;YACH,CAAC;QACH,CAAC;QACD,IAAI,GAAG,GAAG,CAAC;YAAE,MAAM,IAAI,qCAAsB,CAAC,WAAW,EAAE,4BAA4B,CAAC,CAAC;QACzF,MAAM,CAAC,cAAc,EAAE,QAAQ,CAAC,GAAG,GAAG,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,GAAG,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACvF,MAAM,IAAI,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACnC,MAAM,EAAE,GAAG,SAAS,CAAC,EAAE,CAAC,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QAC7C,OAAO;YACL,SAAS,EAAE,GAAG,CAAC,IAAI,EAAE,EAAE,CAAC;YACxB,cAAc,EAAE,cAAc,IAAI,EAAE;YACpC,KAAK,EAAE,MAAM,CAAC,QAAQ,IAAI,GAAG,CAAC;SAC/B,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,OAAmB;QACtC,MAAM,CAAC,GAAG,SAAS,CAAiB,OAAO,CAAC,CAAC;QAC7C,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,OAAO,EAAE;YACzB,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC;YACzB,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC;YACtB,OAAO,EAAE,CAAC,CAAC,OAAO,IAAI,EAAE;SACzB,CAAC,CAAC;QACH,OAAO,EAAE,UAAU,EAAE,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC;IACpE,CAAC;IAED,KAAK,CAAC,qBAAqB,CAAC,KAAkB;QAC5C,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACtC,MAAM,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAClC,IAAI,CAAC,EAAE;YAAE,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QAChD,kFAAkF;QAClF,oGAAoG;QACpG,OAAO,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;YACnC,QAAQ;YACR,kBAAkB,EAAE,SAAS,CAAC,OAAO,QAAQ,EAAE,EAAE,EAAE,CAAC;SACrD,CAAC,CAAC,CAAC;IACN,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,KAAkB,EAAE,MAAkB;QACxD,MAAM,CAAC,GAAG,SAAS,CAAoB,MAAM,CAAC,CAAC;QAC/C,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACtC,MAAM,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAClC,IAAI,EAAE;YAAE,EAAE,CAAC,KAAK,GAAG,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;QACnC,OAAO,EAAE,UAAU,EAAE,KAAK,CAAC,UAAU,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC;IAClE,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,MAAmB,EAAE,SAAqB;QAC9D,2DAA2D;IAC7D,CAAC;IAED,KAAK,CAAC,iBAAiB;QACrB,IAAI,CAAC,IAAI,CAAC,QAAQ,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC;YACzC,MAAM,IAAI,KAAK,CAAC,wEAAwE,CAAC,CAAC;QAC5F,CAAC;QACD,OAAO,SAAS,CAAC;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ,CAAC,QAAQ;YAChC,WAAW,EAAE,IAAI,CAAC,QAAQ,CAAC,WAAW;YACtC,kBAAkB,EAAE,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,kBAAkB,CAAC;YAC3D,UAAU,EAAE,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC;YAC3C,YAAY,EAAE,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC;SACvC,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,iBAAiB,CAAC,KAAiB;QACvC,MAAM,CAAC,GAAG,SAAS,CAMhB,KAAK,CAAC,CAAC;QACV,MAAM,QAAQ,GAAmB;YAC/B,QAAQ,EAAE,CAAC,CAAC,QAAQ;YACpB,WAAW,EAAE,CAAC,CAAC,WAAW;YAC1B,kBAAkB,EAAE,OAAO,CAAC,CAAC,CAAC,kBAAkB,CAAC;YACjD,UAAU,EAAE,OAAO,CAAC,CAAC,CAAC,UAAU,CAAC;SAClC,CAAC;QACF,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,YAAY,GAAG,OAAO,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC;QAC5C,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,KAAK,CAAC,gBAAgB,CAAC,KAAkB;QACvC,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACtC,MAAM,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAClC,IAAI,CAAC,EAAE;YAAE,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QAChD,OAAO,SAAS,CAAC;YACf,OAAO,EAAE,KAAK;YACd,MAAM,EAAE,KAAK,CAAC,EAAE,CAAC,MAAM,CAAC;YACxB,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,QAAQ,EAAE;YAC1B,OAAO,EAAE,EAAE,CAAC,OAAO;SACpB,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,gBAAgB,CAAC,KAAiB;QACtC,MAAM,CAAC,GAAG,SAAS,CAAyE,KAAK,CAAC,CAAC;QACnG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,OAAO,EAAE;YACzB,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC;YACzB,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC;YACtB,OAAO,EAAE,CAAC,CAAC,OAAO,IAAI,EAAE;SACzB,CAAC,CAAC;QACH,OAAO,EAAE,UAAU,EAAE,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC;IACpE,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,UAAkB;QACnC,MAAM,MAAM,GAAG,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC;YAC3D,EAAE;YACF,MAAM,EAAE,KAAK,CAAC,EAAE,CAAC,MAAM,CAAC;YACxB,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,QAAQ,EAAE;YAC1B,OAAO,EAAE,EAAE,CAAC,OAAO;SACpB,CAAC,CAAC,CAAC;QACJ,MAAM,KAAK,GAAG,SAAS,CAAC;YACtB,KAAK,EAAE,YAAY;YACnB,YAAY,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,IAAI;YACjE,QAAQ,EAAE,IAAI,CAAC,QAAQ,EAAE,QAAQ,IAAI,IAAI;YACzC,WAAW,EAAE,IAAI,CAAC,QAAQ,EAAE,WAAW,IAAI,CAAC;YAC5C,MAAM;SACP,CAAC,CAAC;QACH,MAAM,IAAI,GAAG,SAAS,CAAC,QAAQ,UAAU,EAAE,EAAE,EAAE,CAAC,CAAC;QACjD,MAAM,GAAG,GAAG,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,GAAG,UAAU,IAAI,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC;QAChF,OAAO;YACL,IAAI,EAAE,GAAG,CAAC,KAAK,EAAE,GAAG,CAAC;YACrB,GAAG,EAAE,UAAU;YACf,SAAS,EAAE,EAAE,IAAI,EAAE,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE;YACtD,MAAM,EAAE,mBAAmB;YAC3B,KAAK,EAAE,SAAS,CAAC,SAAS,UAAU,EAAE,EAAE,EAAE,CAAC;YAC3C,OAAO,EAAE,CAAC;SACX,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,UAAkB,EAAE,MAAwB;QAC7D,MAAM,IAAI,GACP,MAAM,CAAC,SAA+B,CAAC,IAAI,IAAI,KAAK,CAAC,SAAS,CAAC,QAAQ,UAAU,EAAE,EAAE,EAAE,CAAC,CAAC,CAAC;QAC7F,MAAM,GAAG,GAAG,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,GAAG,UAAU,IAAI,IAAI,EAAE,CAAC,EAAE,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC/E,MAAM,KAAK,GAAG,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;QACpC,IAAI,MAMH,CAAC;QACF,IAAI,CAAC;YACH,MAAM,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC;QAC5B,CAAC;QAAC,MAAM,CAAC;YACP,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;QACrE,CAAC;QACD,IAAI,MAAM,CAAC,KAAK,KAAK,YAAY,IAAI,CAAC,MAAM,CAAC,QAAQ,EAAE,CAAC;YACtD,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;QACrE,CAAC;QACD,IAAI,MAAM,CAAC,YAAY;YAAE,IAAI,CAAC,YAAY,GAAG,OAAO,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;QAC1E,KAAK,MAAM,CAAC,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;YAC9B,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,OAAO,EAAE,CAAC,CAAC,OAAO,IAAI,EAAE,EAAE,CAAC,CAAC;QACzG,CAAC;QACD,iGAAiG;QACjG,oFAAoF;QACpF,MAAM,WAAW,GAAG,MAAM,CAAC,WAAW,IAAI,CAAC,CAAC;QAC5C,MAAM,QAAQ,GAAmB;YAC/B,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,kBAAkB,EAAE,SAAS,CAAC,OAAO,MAAM,CAAC,QAAQ,EAAE,EAAE,EAAE,CAAC;YAC3D,UAAU,EAAE,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC;YACvC,WAAW;SACZ,CAAC;QACF,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,OAAO,QAAQ,CAAC;IAClB,CAAC;CACF;AAnSD,oDAmSC"}

package/dist/esm/index.d.ts

@@ -1 +1,2 @@
-export type { SecureChatCrypto, DeviceIdentity, KeyPackageBundle, GroupHandle, TargetedWelcome, CommitResult, PassphraseBackup, } from "./interface.js";
+export type { SecureChatCrypto, DeviceIdentity, KeyPackageBundle, GroupHandle, GroupMemberIdentity, TargetedWelcome, CommitResult, PassphraseBackup, SecureDecryptFailureReason, } from "./interface.js";
+export { SecureChatDecryptError } from "./interface.js";

package/dist/esm/index.js

@@ -1,2 +1,3 @@
-export {};
+// Value export (a real Error subclass) so callers can `instanceof` it to fail closed on a rejected message.
+export { SecureChatDecryptError } from "./interface.js";
 //# sourceMappingURL=index.js.map

package/dist/esm/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":""}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAiBA,4GAA4G;AAC5G,OAAO,EAAE,sBAAsB,EAAE,MAAM,gBAAgB,CAAC"}

package/dist/esm/interface.d.ts

@@ -18,6 +18,14 @@ export interface GroupHandle {
     mlsGroupId: Uint8Array;
     epoch: bigint;
 }
+/** One member of a group, as seen in the local MLS roster: a device id + its signature public key.
+ *  The public key is what a safety number / key-verification fingerprint is derived from. */
+export interface GroupMemberIdentity {
+    /** The member device's stable id (the MLS credential identity). */
+    deviceId: string;
+    /** The member device's MLS signature PUBLIC key (safe to expose; never the private half). */
+    signaturePublicKey: Uint8Array;
+}
 /** A Welcome destined for exactly one new-member device (the one whose KeyPackage was used). */
 export interface TargetedWelcome {
     targetDeviceId: string;
@@ -39,6 +47,34 @@ export interface PassphraseBackup {
     nonce: Uint8Array;
     version: number;
 }
+/**
+ * Why an inbound message could not be decrypted/authenticated. Drives fail-closed handling at the
+ * caller: a `"replay"` / `"gap-too-large"` / `"unauthenticated"` / `"malformed"` / `"epoch-too-old"`
+ * message is a terminal rejection (drop it), whereas a future-epoch message the client hasn't reached
+ * yet is NOT one of these — the caller decides that by epoch, not by reason.
+ *
+ * - `replay` — the sender generation was already consumed (a replayed/duplicated message).
+ * - `gap-too-large` — the generation jumped further ahead than the ratchet will skip (possible drop/DoS).
+ * - `epoch-too-old` — the message's epoch is older than the retained history; its keys are gone.
+ * - `unauthenticated` — signature/authentication failed (forged or corrupted).
+ * - `malformed` — the bytes didn't decode as a valid MLS message.
+ * - `unknown` — any other decrypt failure.
+ */
+export type SecureDecryptFailureReason = "replay" | "gap-too-large" | "epoch-too-old" | "unauthenticated" | "malformed" | "unknown";
+/**
+ * Thrown by {@link SecureChatCrypto.decryptMessage} when a message fails to decrypt/authenticate. The
+ * MLS core (its secret-tree ratchet) is the single point that enforces replay/gap rejection; this
+ * error simply classifies that failure so the caller can fail closed and surface it. Carries no
+ * plaintext or key material.
+ */
+export declare class SecureChatDecryptError extends Error {
+    readonly reason: SecureDecryptFailureReason;
+    /**
+     * @param reason - The {@link SecureDecryptFailureReason} classification.
+     * @param message - A non-sensitive, human-readable description (never includes plaintext/keys).
+     */
+    constructor(reason: SecureDecryptFailureReason, message: string);
+}
 export interface SecureChatCrypto {
     generateDeviceIdentity(opts: {
         deviceId: string;
@@ -67,11 +103,33 @@ export interface SecureChatCrypto {
         ciphertext: Uint8Array;
         epoch: bigint;
     }>;
+    /**
+     * Decrypt + authenticate one inbound MLS application message. The MLS core's secret-tree ratchet is
+     * the single point that enforces replay/gap rejection (a consumed generation can't be re-derived; a
+     * generation too far ahead is refused) — implementations do not hand-roll a parallel counter. Always
+     * fails closed: on any failure it throws and returns no plaintext.
+     *
+     * @param group - The local group handle.
+     * @param ciphertext - The MLS PrivateMessage bytes (base64-decoded at the wire boundary).
+     * @returns The plaintext, the best-effort sender device id, and the message epoch.
+     * @throws {SecureChatDecryptError} On replay, an over-limit generation gap, a too-old epoch, a failed
+     *   authentication, malformed bytes, or any other decrypt failure (see {@link SecureDecryptFailureReason}).
+     */
     decryptMessage(group: GroupHandle, ciphertext: Uint8Array): Promise<{
         plaintext: Uint8Array;
         senderDeviceId: string;
         epoch: bigint;
     }>;
+    /**
+     * List the members of a joined group as `{ deviceId, signaturePublicKey }`, read from the local MLS
+     * roster. The public keys feed an out-of-band safety-number / key-verification fingerprint (TOFU
+     * hardening against a blind server swapping a KeyPackage). Returns public material only.
+     *
+     * @param group - The local group handle.
+     * @returns The group's members (order is implementation-defined; callers that need stability sort).
+     * @throws {Error} When the group is unknown (not joined / evicted).
+     */
+    exportGroupIdentities(group: GroupHandle): Promise<GroupMemberIdentity[]>;
     processWelcome(welcome: Uint8Array): Promise<GroupHandle>;
     processCommit(group: GroupHandle, commit: Uint8Array): Promise<GroupHandle>;
     processProposal(group: GroupHandle, proposal: Uint8Array): Promise<void>;
@@ -81,6 +139,24 @@ export interface SecureChatCrypto {
     exportDeviceState(): Promise<Uint8Array>;
     /** Restore device identity + private state from {@link exportDeviceState} output. */
     importDeviceState(state: Uint8Array): Promise<DeviceIdentity>;
+    /**
+     * Seal all local key material (device identity + private keys + every joined group's state) into a
+     * passphrase-encrypted blob for upload to the blind server. The real cores use a memory-hard KDF
+     * (argon2id) + an AEAD; the server stores the ciphertext verbatim and can never decrypt it.
+     *
+     * @param passphrase - The user's backup passphrase (never sent to the server).
+     * @returns The encrypted backup envelope (base64-encode `blob`/`nonce` at the wire boundary).
+     */
     exportBackup(passphrase: string): Promise<PassphraseBackup>;
-    importBackup(passphrase: string, backup: PassphraseBackup): Promise<void>;
+    /**
+     * Restore local key material from a {@link exportBackup} envelope, repopulating this instance's
+     * device identity and group states. Symmetric with {@link importDeviceState}, it returns the
+     * restored identity so a caller can re-assert the device server-side (idempotently) and rehydrate UI.
+     *
+     * @param passphrase - The user's backup passphrase.
+     * @param backup - The encrypted envelope fetched from the server.
+     * @returns The restored device identity.
+     * @throws {Error} On a wrong passphrase or a corrupt/tampered backup (fails closed — no partial restore).
+     */
+    importBackup(passphrase: string, backup: PassphraseBackup): Promise<DeviceIdentity>;
 }

package/dist/esm/interface.js

@@ -9,5 +9,21 @@
 // (dev)dependency for its integration tests — the server is a CONSUMER of this client crypto, not
 // its owner. Binary is `Uint8Array` IN MEMORY; the network layer base64-encodes at the wire
 // boundary. MLS epochs are u64 → `bigint`.
-export {};
+/**
+ * Thrown by {@link SecureChatCrypto.decryptMessage} when a message fails to decrypt/authenticate. The
+ * MLS core (its secret-tree ratchet) is the single point that enforces replay/gap rejection; this
+ * error simply classifies that failure so the caller can fail closed and surface it. Carries no
+ * plaintext or key material.
+ */
+export class SecureChatDecryptError extends Error {
+    /**
+     * @param reason - The {@link SecureDecryptFailureReason} classification.
+     * @param message - A non-sensitive, human-readable description (never includes plaintext/keys).
+     */
+    constructor(reason, message) {
+        super(message);
+        this.reason = reason;
+        this.name = "SecureChatDecryptError";
+    }
+}
 //# sourceMappingURL=interface.js.map

package/dist/esm/interface.js.map

@@ -1 +1 @@
-{"version":3,"file":"interface.js","sourceRoot":"","sources":["../../src/interface.ts"],"names":[],"mappings":"AAAA,6FAA6F;AAC7F,EAAE;AACF,+FAA+F;AAC/F,6FAA6F;AAC7F,gGAAgG;AAChG,yFAAyF;AACzF,EAAE;AACF,0FAA0F;AAC1F,kGAAkG;AAClG,4FAA4F;AAC5F,2CAA2C"}
+{"version":3,"file":"interface.js","sourceRoot":"","sources":["../../src/interface.ts"],"names":[],"mappings":"AAAA,6FAA6F;AAC7F,EAAE;AACF,+FAA+F;AAC/F,6FAA6F;AAC7F,gGAAgG;AAChG,yFAAyF;AACzF,EAAE;AACF,0FAA0F;AAC1F,kGAAkG;AAClG,4FAA4F;AAC5F,2CAA2C;AA+E3C;;;;;GAKG;AACH,MAAM,OAAO,sBAAuB,SAAQ,KAAK;IAC/C;;;OAGG;IACH,YACW,MAAkC,EAC3C,OAAe;QAEf,KAAK,CAAC,OAAO,CAAC,CAAC;QAHN,WAAM,GAAN,MAAM,CAA4B;QAI3C,IAAI,CAAC,IAAI,GAAG,wBAAwB,CAAC;IACvC,CAAC;CACF"}

package/dist/esm/mock-crypto.d.ts

@@ -1,4 +1,4 @@
-import type { SecureChatCrypto, DeviceIdentity, KeyPackageBundle, GroupHandle, CommitResult, PassphraseBackup, TargetedWelcome } from "./interface.js";
+import type { SecureChatCrypto, DeviceIdentity, KeyPackageBundle, GroupHandle, GroupMemberIdentity, CommitResult, PassphraseBackup, TargetedWelcome } from "./interface.js";
 export declare class MockSecureChatCrypto implements SecureChatCrypto {
     private identity?;
     private privateState?;
@@ -26,7 +26,7 @@ export declare class MockSecureChatCrypto implements SecureChatCrypto {
         deviceId: string;
         keyPackage: Uint8Array;
     }): Promise<CommitResult>;
-    removeMember(group: GroupHandle, _leafDeviceId: string): Promise<CommitResult>;
+    removeMember(group: GroupHandle, leafDeviceId: string): Promise<CommitResult>;
     encryptMessage(group: GroupHandle, plaintext: Uint8Array): Promise<{
         ciphertext: Uint8Array;
         epoch: bigint;
@@ -37,6 +37,7 @@ export declare class MockSecureChatCrypto implements SecureChatCrypto {
         epoch: bigint;
     }>;
     processWelcome(welcome: Uint8Array): Promise<GroupHandle>;
+    exportGroupIdentities(group: GroupHandle): Promise<GroupMemberIdentity[]>;
     processCommit(group: GroupHandle, commit: Uint8Array): Promise<GroupHandle>;
     processProposal(_group: GroupHandle, _proposal: Uint8Array): Promise<void>;
     exportDeviceState(): Promise<Uint8Array>;
@@ -44,5 +45,5 @@ export declare class MockSecureChatCrypto implements SecureChatCrypto {
     exportGroupState(group: GroupHandle): Promise<Uint8Array>;
     importGroupState(state: Uint8Array): Promise<GroupHandle>;
     exportBackup(passphrase: string): Promise<PassphraseBackup>;
-    importBackup(passphrase: string, backup: PassphraseBackup): Promise<void>;
+    importBackup(passphrase: string, backup: PassphraseBackup): Promise<DeviceIdentity>;
 }