@arcium-hq/client 0.9.2 → 0.9.4

package/build/types/callback.d.ts

@@ -0,0 +1,21 @@
+import { PublicKey, Finality } from '@solana/web3.js';
+import { AnchorProvider, BN } from '@coral-xyz/anchor';
+/**
+ * Wait for a computation to finalize by polling the computation account
+ * status via HTTP RPC. Does not use WebSocket subscriptions.
+ *
+ * Polls every 500ms (same as Agave's send_and_confirm_transaction_with_config).
+ * Return the most recent transaction signature on the computation account
+ * once finalization is detected.
+ *
+ * @param provider - Anchor provider.
+ * @param computationOffset - Computation offset to wait for.
+ * @param mxeProgramId - MXE program public key.
+ * @param commitment - Commitment level for RPC calls (default: 'confirmed').
+ * @param timeoutMs - Maximum wait time in milliseconds (default: 120000).
+ * @returns Transaction signature from the finalization.
+ * @throws Error if the MXE account has no cluster assigned.
+ * @throws Error if the computation does not finalize within timeoutMs.
+ */
+export declare function awaitComputationFinalization(provider: AnchorProvider, computationOffset: BN, mxeProgramId: PublicKey, commitment?: Finality, timeoutMs?: number): Promise<string>;
+//# sourceMappingURL=callback.d.ts.map

package/build/types/callback.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"callback.d.ts","sourceRoot":"","sources":["../../src/callback.ts"],"names":[],"mappings":"AAAA,OAAO,EACH,SAAS,EACT,QAAQ,EACX,MAAM,iBAAiB,CAAC;AACzB,OAAO,EACH,cAAc,EAAE,EAAE,EACrB,MAAM,mBAAmB,CAAC;AAM3B;;;;;;;;;;;;;;;;GAgBG;AACH,wBAAsB,4BAA4B,CAC9C,QAAQ,EAAE,cAAc,EACxB,iBAAiB,EAAE,EAAE,EACrB,YAAY,EAAE,SAAS,EACvB,UAAU,GAAE,QAAsB,EAClC,SAAS,GAAE,MAAgB,GAC5B,OAAO,CAAC,MAAM,CAAC,CAiEjB"}

package/build/types/constants.d.ts

@@ -0,0 +1,101 @@
+/**
+ * Seed for ClockAccount PDA.
+ * @constant {string}
+ */
+export declare const CLOCK_ACC_SEED = "ClockAccount";
+/**
+ * Seed for FeePool PDA.
+ * @constant {string}
+ */
+export declare const POOL_ACC_SEED = "FeePool";
+/**
+ * Seed for ComputationAccount PDA.
+ * @constant {string}
+ */
+export declare const COMPUTATION_ACC_SEED = "ComputationAccount";
+/**
+ * Seed for Mempool PDA.
+ * @constant {string}
+ */
+export declare const MEMPOOL_ACC_SEED = "Mempool";
+/**
+ * Seed for ExecutingPoolAccount PDA.
+ * @constant {string}
+ */
+export declare const EXEC_POOL_ACC_SEED = "Execpool";
+/**
+ * Seed for ClusterAccount PDA.
+ * @constant {string}
+ */
+export declare const CLUSTER_ACC_SEED = "Cluster";
+/**
+ * Seed for ArxNodeAccount PDA.
+ * @constant {string}
+ */
+export declare const ARX_NODE_ACC_SEED = "ArxNode";
+/**
+ * Seed for MXE Account PDA.
+ * @constant {string}
+ */
+export declare const MXE_ACCOUNT_SEED = "MXEAccount";
+/**
+ * Seed for CompDefAccount PDA.
+ * @constant {string}
+ */
+export declare const COMP_DEF_ACC_SEED = "ComputationDefinitionAccount";
+/**
+ * Seed for RecoveryClusterAccount PDA.
+ * @constant {string}
+ */
+export declare const RECOVERY_CLUSTER_ACC_SEED = "RecoveryClusterAccount";
+/**
+ * Seed for MxeRecoveryAccount PDA.
+ * @constant {string}
+ */
+export declare const MXE_RECOVERY_ACC_SEED = "MxeRecoveryAccount";
+/**
+ * Seed for ComputationDefinitionRaw PDA.
+ * @constant {string}
+ */
+export declare const RAW_CIRCUIT_ACC_SEED = "ComputationDefinitionRaw";
+/**
+ * Maximum number of bytes that can be reallocated per instruction.
+ * @constant {number}
+ */
+export declare const MAX_REALLOC_PER_IX = 10240;
+/**
+ * Maximum number of bytes that can be uploaded in a single transaction with the upload instruction.
+ * @constant {number}
+ */
+export declare const MAX_UPLOAD_PER_TX_BYTES = 814;
+/**
+ * Maximum size of an account in bytes (10MB = 10 * 1024 * 1024).
+ * @constant {number}
+ */
+export declare const MAX_ACCOUNT_SIZE = 10485760;
+/**
+ * Maximum number of Arcium embiggen instructions allowed in a single transaction (due to compute unit limits).
+ * @constant {number}
+ */
+export declare const MAX_EMBIGGEN_IX_PER_TX = 18;
+/**
+ * Size of account discriminator in bytes.
+ * @constant {number}
+ */
+export declare const DISCRIMINATOR_SIZE = 8;
+/**
+ * Size of offset buffer in bytes (u32).
+ * @constant {number}
+ */
+export declare const OFFSET_BUFFER_SIZE = 4;
+/**
+ * Size of computation definition offset slice in bytes.
+ * @constant {number}
+ */
+export declare const COMP_DEF_OFFSET_SIZE = 4;
+/**
+ * Size of a uint128 in bytes.
+ * @constant {number}
+ */
+export declare const UINT128_BYTE_SIZE = 16;
+//# sourceMappingURL=constants.d.ts.map

package/build/types/constants.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../../src/constants.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,eAAO,MAAM,cAAc,iBAAiB,CAAC;AAC7C;;;GAGG;AACH,eAAO,MAAM,aAAa,YAAY,CAAC;AACvC;;;GAGG;AACH,eAAO,MAAM,oBAAoB,uBAAuB,CAAC;AACzD;;;GAGG;AACH,eAAO,MAAM,gBAAgB,YAAY,CAAC;AAC1C;;;GAGG;AACH,eAAO,MAAM,kBAAkB,aAAa,CAAC;AAC7C;;;GAGG;AACH,eAAO,MAAM,gBAAgB,YAAY,CAAC;AAC1C;;;GAGG;AACH,eAAO,MAAM,iBAAiB,YAAY,CAAC;AAC3C;;;GAGG;AACH,eAAO,MAAM,gBAAgB,eAAe,CAAC;AAC7C;;;GAGG;AACH,eAAO,MAAM,iBAAiB,iCAAiC,CAAC;AAChE;;;GAGG;AACH,eAAO,MAAM,yBAAyB,2BAA2B,CAAC;AAClE;;;GAGG;AACH,eAAO,MAAM,qBAAqB,uBAAuB,CAAC;AAC1D;;;GAGG;AACH,eAAO,MAAM,oBAAoB,6BAA6B,CAAC;AAC/D;;;GAGG;AACH,eAAO,MAAM,kBAAkB,QAAQ,CAAC;AACxC;;;GAGG;AACH,eAAO,MAAM,uBAAuB,MAAM,CAAC;AAC3C;;;GAGG;AACH,eAAO,MAAM,gBAAgB,WAAW,CAAC;AACzC;;;GAGG;AACH,eAAO,MAAM,sBAAsB,KAAK,CAAC;AAEzC;;;GAGG;AACH,eAAO,MAAM,kBAAkB,IAAI,CAAC;AAEpC;;;GAGG;AACH,eAAO,MAAM,kBAAkB,IAAI,CAAC;AAEpC;;;GAGG;AACH,eAAO,MAAM,oBAAoB,IAAI,CAAC;AAEtC;;;GAGG;AACH,eAAO,MAAM,iBAAiB,KAAK,CAAC"}

package/build/types/cryptography/aes128Cipher.d.ts

@@ -0,0 +1,14 @@
+import { AesCtrCipher } from './aesCtrCipher.js';
+/**
+ * AES-128 cipher in Counter (CTR) mode, using SHA3-256 to derive the key from a shared secret.
+ * See: https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf (Section 6.5) for details on CTR mode.
+ */
+export declare class Aes128Cipher extends AesCtrCipher {
+    /**
+     * Construct an AES-128 cipher instance using a shared secret.
+     * The key is derived using SHA3-256.
+     * @param sharedSecret - Shared secret to derive the AES key from.
+     */
+    constructor(sharedSecret: Uint8Array);
+}
+//# sourceMappingURL=aes128Cipher.d.ts.map

package/build/types/cryptography/aes128Cipher.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"aes128Cipher.d.ts","sourceRoot":"","sources":["../../../src/cryptography/aes128Cipher.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAEjD;;;GAGG;AACH,qBAAa,YAAa,SAAQ,YAAY;IAC1C;;;;OAIG;gBACS,YAAY,EAAE,UAAU;CAGvC"}

package/build/types/cryptography/aes192Cipher.d.ts

@@ -0,0 +1,14 @@
+import { AesCtrCipher } from './aesCtrCipher.js';
+/**
+ * AES-192 cipher in Counter (CTR) mode, using SHA3-256 to derive the key from a shared secret.
+ * See: https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf (Section 6.5) for details on CTR mode.
+ */
+export declare class Aes192Cipher extends AesCtrCipher {
+    /**
+     * Construct an AES-192 cipher instance using a shared secret.
+     * The key is derived using SHA3-256.
+     * @param sharedSecret - Shared secret to derive the AES key from.
+     */
+    constructor(sharedSecret: Uint8Array);
+}
+//# sourceMappingURL=aes192Cipher.d.ts.map

package/build/types/cryptography/aes192Cipher.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"aes192Cipher.d.ts","sourceRoot":"","sources":["../../../src/cryptography/aes192Cipher.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAEjD;;;GAGG;AACH,qBAAa,YAAa,SAAQ,YAAY;IAC1C;;;;OAIG;gBACS,YAAY,EAAE,UAAU;CAGvC"}

package/build/types/cryptography/aes256Cipher.d.ts

@@ -0,0 +1,14 @@
+import { AesCtrCipher } from './aesCtrCipher.js';
+/**
+ * AES-256 cipher in Counter (CTR) mode, using SHA3-256 to derive the key from a shared secret.
+ * See: https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf (Section 6.5) for details on CTR mode.
+ */
+export declare class Aes256Cipher extends AesCtrCipher {
+    /**
+     * Construct an AES-256 cipher instance using a shared secret.
+     * The key is derived using SHA3-256.
+     * @param sharedSecret - Shared secret to derive the AES key from.
+     */
+    constructor(sharedSecret: Uint8Array);
+}
+//# sourceMappingURL=aes256Cipher.d.ts.map

package/build/types/cryptography/aes256Cipher.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"aes256Cipher.d.ts","sourceRoot":"","sources":["../../../src/cryptography/aes256Cipher.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAEjD;;;GAGG;AACH,qBAAa,YAAa,SAAQ,YAAY;IAC1C;;;;OAIG;gBACS,YAAY,EAAE,UAAU;CAGvC"}

package/build/types/cryptography/aesCtrCipher.d.ts

@@ -0,0 +1,36 @@
+/**
+ * Supported AES key sizes in bits.
+ */
+export type AesKeyBits = 128 | 192 | 256;
+/**
+ * Generic AES cipher in Counter (CTR) mode, using SHA3-256 to derive the key from a shared secret.
+ * See: https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38a.pdf (Section 6.5) for details on CTR mode.
+ */
+export declare class AesCtrCipher {
+    protected key: Uint8Array;
+    private readonly keyBits;
+    /**
+     * Construct an AES cipher instance using a shared secret.
+     * The key is derived using SHA3-256.
+     * @param sharedSecret - Shared secret to derive the AES key from.
+     * @param keyBits - AES key size in bits (128, 192, or 256).
+     */
+    constructor(sharedSecret: Uint8Array, keyBits: AesKeyBits);
+    /**
+     * Encrypt the plaintext array in Counter (CTR) mode.
+     * @param plaintext - Data to encrypt.
+     * @param nonce - 8-byte nonce for CTR mode.
+     * @returns Encrypted ciphertext as a Uint8Array.
+     * @throws Error if the nonce is not 8 bytes long.
+     */
+    encrypt(plaintext: Uint8Array, nonce: Uint8Array): Uint8Array;
+    /**
+     * Decrypt the ciphertext array in Counter (CTR) mode.
+     * @param ciphertext - Data to decrypt.
+     * @param nonce - 8-byte nonce for CTR mode.
+     * @returns Decrypted plaintext as a Uint8Array.
+     * @throws Error if the nonce is not 8 bytes long.
+     */
+    decrypt(ciphertext: Uint8Array, nonce: Uint8Array): Uint8Array;
+}
+//# sourceMappingURL=aesCtrCipher.d.ts.map

package/build/types/cryptography/aesCtrCipher.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"aesCtrCipher.d.ts","sourceRoot":"","sources":["../../../src/cryptography/aesCtrCipher.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,MAAM,MAAM,UAAU,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,CAAC;AAOzC;;;GAGG;AACH,qBAAa,YAAY;IACrB,SAAS,CAAC,GAAG,EAAE,UAAU,CAAC;IAC1B,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAa;IAErC;;;;;OAKG;gBACS,YAAY,EAAE,UAAU,EAAE,OAAO,EAAE,UAAU;IAwBzD;;;;;;OAMG;IACH,OAAO,CAAC,SAAS,EAAE,UAAU,EAAE,KAAK,EAAE,UAAU,GAAG,UAAU;IAU7D;;;;;;OAMG;IACH,OAAO,CAAC,UAAU,EAAE,UAAU,EAAE,KAAK,EAAE,UAAU,GAAG,UAAU;CASjE"}

package/build/types/cryptography/arcisEd25519.d.ts

@@ -0,0 +1,8 @@
+import { CurveFn } from '@noble/curves/abstract/edwards';
+/**
+ * Ed25519 curve instance using SHA3-512 for hashing, suitable for MPC (ArcisEd25519 signature scheme).
+ * This is essentially Ed25519 but with SHA3-512 instead of SHA-512 for lower multiplicative depth.
+ * See: https://datatracker.ietf.org/doc/html/rfc8032#section-5.1
+ */
+export declare const arcisEd25519: CurveFn;
+//# sourceMappingURL=arcisEd25519.d.ts.map

package/build/types/cryptography/arcisEd25519.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"arcisEd25519.d.ts","sourceRoot":"","sources":["../../../src/cryptography/arcisEd25519.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,OAAO,EAAkB,MAAM,gCAAgC,CAAC;AAyBzE;;;;GAIG;AACH,eAAO,MAAM,YAAY,EAAE,OAAwD,CAAC"}

package/build/types/cryptography/cSplRescueCipher.d.ts

@@ -0,0 +1,29 @@
+import { RescueCipherCommon } from './rescueCipherCommon.js';
+/**
+ * The Rescue cipher over Curve25519's scalar field in Counter (CTR) mode, with a fixed block size m = 5.
+ * See: https://tosc.iacr.org/index.php/ToSC/article/view/8695/8287
+ */
+export declare class CSplRescueCipher {
+    cipher: RescueCipherCommon;
+    /**
+     * Construct a CSplRescueCipher instance using a shared secret.
+     * The key is derived using RescuePrimeHash and used to initialize the RescueDesc.
+     * @param sharedSecret - Shared secret to derive the cipher key from.
+     */
+    constructor(sharedSecret: Uint8Array);
+    /**
+     * Encrypt the plaintext vector in Counter (CTR) mode and serialize each block.
+     * @param plaintext - Array of plaintext bigints to encrypt.
+     * @param nonce - 16-byte nonce for CTR mode.
+     * @returns Ciphertext as an array of arrays of numbers (each 32 bytes).
+     */
+    encrypt(plaintext: bigint[], nonce: Uint8Array): number[][];
+    /**
+     * Deserialize and decrypt the ciphertext vector in Counter (CTR) mode.
+     * @param ciphertext - Array of arrays of numbers (each 32 bytes) to decrypt.
+     * @param nonce - 16-byte nonce for CTR mode.
+     * @returns Decrypted plaintext as an array of bigints.
+     */
+    decrypt(ciphertext: number[][], nonce: Uint8Array): bigint[];
+}
+//# sourceMappingURL=cSplRescueCipher.d.ts.map

package/build/types/cryptography/cSplRescueCipher.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cSplRescueCipher.d.ts","sourceRoot":"","sources":["../../../src/cryptography/cSplRescueCipher.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,kBAAkB,EAAE,MAAM,yBAAyB,CAAC;AAE7D;;;GAGG;AACH,qBAAa,gBAAgB;IACzB,MAAM,EAAE,kBAAkB,CAAC;IAE3B;;;;OAIG;gBACS,YAAY,EAAE,UAAU;IAIpC;;;;;OAKG;IACH,OAAO,CAAC,SAAS,EAAE,MAAM,EAAE,EAAE,KAAK,EAAE,UAAU,GAAG,MAAM,EAAE,EAAE;IAI3D;;;;;OAKG;IACH,OAAO,CAAC,UAAU,EAAE,MAAM,EAAE,EAAE,EAAE,KAAK,EAAE,UAAU,GAAG,MAAM,EAAE;CAG/D"}

package/build/types/cryptography/cryptography.d.ts

@@ -0,0 +1,38 @@
+/**
+ * Scalar field prime modulus for Curve25519: 2^252 + 27742317777372353535851937790883648493
+ */
+export declare const CURVE25519_SCALAR_FIELD_MODULUS: bigint;
+/**
+ * Generate a random value within the field bound by q.
+ * @param q - Upper bound (exclusive) for the random value.
+ * @returns Random bigint value between 0 and q-1.
+ */
+export declare function generateRandomFieldElem(q: bigint): bigint;
+/**
+ * Compute the positive modulo of a over m.
+ * @param a - Dividend.
+ * @param m - Modulus.
+ * @returns Positive remainder of a mod m.
+ */
+export declare function positiveModulo(a: bigint, m: bigint): bigint;
+/**
+ * Serialize a bigint to a little-endian Uint8Array of the specified length.
+ * @param val - Bigint value to serialize.
+ * @param lengthInBytes - Desired length of the output array.
+ * @returns Serialized value as a Uint8Array.
+ * @throws Error if the value is too large for the specified length.
+ */
+export declare function serializeLE(val: bigint, lengthInBytes: number): Uint8Array;
+/**
+ * Deserialize a little-endian Uint8Array to a bigint.
+ * @param bytes - Uint8Array to deserialize.
+ * @returns Deserialized bigint value.
+ */
+export declare function deserializeLE(bytes: Uint8Array): bigint;
+/**
+ * Compute the SHA-256 hash of an array of Uint8Arrays.
+ * @param byteArrays - Arrays to hash.
+ * @returns SHA-256 hash as a Buffer.
+ */
+export declare function sha256(byteArrays: Uint8Array[]): Buffer;
+//# sourceMappingURL=cryptography.d.ts.map

package/build/types/cryptography/cryptography.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cryptography.d.ts","sourceRoot":"","sources":["../../../src/cryptography/cryptography.ts"],"names":[],"mappings":"AAGA;;GAEG;AACH,eAAO,MAAM,+BAA+B,QAAkB,CAAC;AAE/D;;;;GAIG;AACH,wBAAgB,uBAAuB,CAAC,CAAC,EAAE,MAAM,GAAG,MAAM,CAQzD;AAED;;;;;GAKG;AACH,wBAAgB,cAAc,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,GAAG,MAAM,CAE3D;AAED;;;;;;GAMG;AACH,wBAAgB,WAAW,CAAC,GAAG,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,GAAG,UAAU,CAc1E;AAED;;;;GAIG;AACH,wBAAgB,aAAa,CAAC,KAAK,EAAE,UAAU,GAAG,MAAM,CAMvD;AAGD;;;;GAIG;AACH,wBAAgB,MAAM,CAAC,UAAU,EAAE,UAAU,EAAE,GAAG,MAAM,CAMvD"}

package/build/types/cryptography/hkdf.d.ts

@@ -0,0 +1,37 @@
+import { HMACRescuePrime } from './hmac.js';
+import { FpField } from './rescueDesc.js';
+/**
+ * HKDF (HMAC-based Extract-and-Expand Key Derivation Function) using the Rescue-Prime hash function.
+ * Follows RFC 5869. Only supports L = HashLen.
+ */
+export declare class HKDFRescuePrime {
+    hmac: HMACRescuePrime;
+    /**
+     * Construct a new HKDFRescuePrime instance.
+     */
+    constructor(field: FpField);
+    /**
+     * HKDF-Extract step: derive a pseudorandom key (PRK) from the input keying material (IKM) and salt.
+     * @param salt - Salt value as an array of bigints.
+     * @param ikm - Input keying material as an array of bigints.
+     * @returns Pseudorandom key (PRK) as an array of bigints.
+     */
+    extract(salt: bigint[], ikm: bigint[]): bigint[];
+    /**
+     * HKDF-Expand step: expand the pseudorandom key (PRK) with info to produce output keying material (OKM).
+     * Only supports L = HashLen = 5, i.e. N = 1.
+     * @param prk - Pseudorandom key as an array of bigints.
+     * @param info - Context and application specific information as an array of bigints.
+     * @returns Output keying material (OKM) as an array of bigints.
+     */
+    expand(prk: bigint[], info: bigint[]): bigint[];
+    /**
+     * Perform the full HKDF (extract and expand) to derive output keying material (OKM).
+     * @param salt - Salt value as an array of bigints.
+     * @param ikm - Input keying material as an array of bigints.
+     * @param info - Context and application specific information as an array of bigints.
+     * @returns Output keying material (OKM) as an array of bigints.
+     */
+    okm(salt: bigint[], ikm: bigint[], info: bigint[]): bigint[];
+}
+//# sourceMappingURL=hkdf.d.ts.map

package/build/types/cryptography/hkdf.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"hkdf.d.ts","sourceRoot":"","sources":["../../../src/cryptography/hkdf.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,WAAW,CAAC;AAC5C,OAAO,EAAE,OAAO,EAAE,MAAM,iBAAiB,CAAC;AAE1C;;;GAGG;AACH,qBAAa,eAAe;IACxB,IAAI,EAAE,eAAe,CAAC;IAEtB;;OAEG;gBACS,KAAK,EAAE,OAAO;IAI1B;;;;;OAKG;IACH,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,GAAG,EAAE,MAAM,EAAE,GAAG,MAAM,EAAE;IAQhD;;;;;;OAMG;IACH,MAAM,CAAC,GAAG,EAAE,MAAM,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,EAAE;IAQ/C;;;;;;OAMG;IACH,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,GAAG,EAAE,MAAM,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,EAAE;CAI/D"}

package/build/types/cryptography/hmac.d.ts

@@ -0,0 +1,22 @@
+import { FpField } from './rescueDesc.js';
+import { RescuePrimeHash } from './rescuePrimeHash.js';
+/**
+ * HMACRescuePrime provides a message authentication code (MAC) using the Rescue-Prime hash function.
+ * We refer to https://datatracker.ietf.org/doc/html/rfc2104 for more details.
+ */
+export declare class HMACRescuePrime {
+    hasher: RescuePrimeHash;
+    /**
+     * Construct a new HMACRescuePrime instance.
+     */
+    constructor(field: FpField);
+    /**
+     * Compute the HMAC digest of a message with a given key using Rescue-Prime.
+     * @param key - Key as an array of bigints.
+     * @param message - Message as an array of bigints.
+     * @returns HMAC digest as an array of bigints.
+     * @throws Error if the key is shorter than the hash function's digest length or longer than the hash function's rate.
+     */
+    digest(key: bigint[], message: bigint[]): bigint[];
+}
+//# sourceMappingURL=hmac.d.ts.map

package/build/types/cryptography/hmac.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"hmac.d.ts","sourceRoot":"","sources":["../../../src/cryptography/hmac.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,OAAO,EAAE,MAAM,iBAAiB,CAAC;AAC1C,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AAgBvD;;;GAGG;AACH,qBAAa,eAAe;IACxB,MAAM,EAAE,eAAe,CAAC;IAExB;;OAEG;gBACS,KAAK,EAAE,OAAO;IAI1B;;;;;;OAMG;IACH,MAAM,CAAC,GAAG,EAAE,MAAM,EAAE,EAAE,OAAO,EAAE,MAAM,EAAE,GAAG,MAAM,EAAE;CA0BrD"}

package/build/types/cryptography/rescueCipher.d.ts

@@ -0,0 +1,29 @@
+import { RescueCipherCommon } from './rescueCipherCommon.js';
+/**
+ * The Rescue cipher over Curve25519's base field in Counter (CTR) mode, with a fixed block size m = 5.
+ * See: https://tosc.iacr.org/index.php/ToSC/article/view/8695/8287
+ */
+export declare class RescueCipher {
+    cipher: RescueCipherCommon;
+    /**
+     * Construct a RescueCipher instance using a shared secret.
+     * The key is derived using RescuePrimeHash and used to initialize the RescueDesc.
+     * @param sharedSecret - Shared secret to derive the cipher key from.
+     */
+    constructor(sharedSecret: Uint8Array);
+    /**
+     * Encrypt the plaintext vector in Counter (CTR) mode and serialize each block.
+     * @param plaintext - Array of plaintext bigints to encrypt.
+     * @param nonce - 16-byte nonce for CTR mode.
+     * @returns Ciphertext as an array of arrays of numbers (each 32 bytes).
+     */
+    encrypt(plaintext: bigint[], nonce: Uint8Array): number[][];
+    /**
+     * Deserialize and decrypt the ciphertext vector in Counter (CTR) mode.
+     * @param ciphertext - Array of arrays of numbers (each 32 bytes) to decrypt.
+     * @param nonce - 16-byte nonce for CTR mode.
+     * @returns Decrypted plaintext as an array of bigints.
+     */
+    decrypt(ciphertext: number[][], nonce: Uint8Array): bigint[];
+}
+//# sourceMappingURL=rescueCipher.d.ts.map

package/build/types/cryptography/rescueCipher.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rescueCipher.d.ts","sourceRoot":"","sources":["../../../src/cryptography/rescueCipher.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,kBAAkB,EAAE,MAAM,yBAAyB,CAAC;AAE7D;;;GAGG;AACH,qBAAa,YAAY;IACrB,MAAM,EAAE,kBAAkB,CAAC;IAE3B;;;;OAIG;gBACS,YAAY,EAAE,UAAU;IAIpC;;;;;OAKG;IACH,OAAO,CAAC,SAAS,EAAE,MAAM,EAAE,EAAE,KAAK,EAAE,UAAU,GAAG,MAAM,EAAE,EAAE;IAI3D;;;;;OAKG;IACH,OAAO,CAAC,UAAU,EAAE,MAAM,EAAE,EAAE,EAAE,KAAK,EAAE,UAAU,GAAG,MAAM,EAAE;CAG/D"}

package/build/types/cryptography/rescueCipherCommon.d.ts

@@ -0,0 +1,45 @@
+import { RescueDesc, FpField } from './rescueDesc.js';
+/**
+ * The Rescue cipher in Counter (CTR) mode, with a fixed block size m = 5.
+ * See: https://tosc.iacr.org/index.php/ToSC/article/view/8695/8287
+ */
+export declare class RescueCipherCommon {
+    desc: RescueDesc;
+    /**
+     * Construct a RescueCipherCommon instance using a shared secret.
+     * The key is derived using RescuePrimeHash and used to initialize the RescueDesc.
+     * @param sharedSecret - Shared secret to derive the cipher key from.
+     */
+    constructor(sharedSecret: Uint8Array, field: FpField);
+    /**
+     * Encrypt the plaintext vector in Counter (CTR) mode (raw, returns bigints).
+     * @param plaintext - Array of plaintext bigints to encrypt.
+     * @param nonce - 16-byte nonce for CTR mode.
+     * @returns Ciphertext as an array of bigints.
+     * @throws Error if the nonce is not 16 bytes long.
+     */
+    encrypt_raw(plaintext: bigint[], nonce: Uint8Array): bigint[];
+    /**
+     * Encrypt the plaintext vector in Counter (CTR) mode and serialize each block.
+     * @param plaintext - Array of plaintext bigints to encrypt.
+     * @param nonce - 16-byte nonce for CTR mode.
+     * @returns Ciphertext as an array of arrays of numbers (each 32 bytes).
+     */
+    encrypt(plaintext: bigint[], nonce: Uint8Array): number[][];
+    /**
+     * Decrypt the ciphertext vector in Counter (CTR) mode (raw, expects bigints).
+     * @param ciphertext - Array of ciphertext bigints to decrypt.
+     * @param nonce - 16-byte nonce for CTR mode.
+     * @returns Decrypted plaintext as an array of bigints.
+     * @throws Error if the nonce is not 16 bytes long.
+     */
+    decrypt_raw(ciphertext: bigint[], nonce: Uint8Array): bigint[];
+    /**
+     * Deserialize and decrypt the ciphertext vector in Counter (CTR) mode.
+     * @param ciphertext - Array of arrays of numbers (each 32 bytes) to decrypt.
+     * @param nonce - 16-byte nonce for CTR mode.
+     * @returns Decrypted plaintext as an array of bigints.
+     */
+    decrypt(ciphertext: number[][], nonce: Uint8Array): bigint[];
+}
+//# sourceMappingURL=rescueCipherCommon.d.ts.map

package/build/types/cryptography/rescueCipherCommon.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rescueCipherCommon.d.ts","sourceRoot":"","sources":["../../../src/cryptography/rescueCipherCommon.ts"],"names":[],"mappings":"AAAA,OAAO,EACH,UAAU,EAEV,OAAO,EAEV,MAAM,iBAAiB,CAAC;AAoBzB;;;GAGG;AACH,qBAAa,kBAAkB;IAC3B,IAAI,EAAE,UAAU,CAAC;IAEjB;;;;OAIG;gBACS,YAAY,EAAE,UAAU,EAAE,KAAK,EAAE,OAAO;IAuCpD;;;;;;OAMG;IACH,WAAW,CAAC,SAAS,EAAE,MAAM,EAAE,EAAE,KAAK,EAAE,UAAU,GAAG,MAAM,EAAE;IAwC7D;;;;;OAKG;IACH,OAAO,CAAC,SAAS,EAAE,MAAM,EAAE,EAAE,KAAK,EAAE,UAAU,GAAG,MAAM,EAAE,EAAE;IAI3D;;;;;;OAMG;IACH,WAAW,CAAC,UAAU,EAAE,MAAM,EAAE,EAAE,KAAK,EAAE,UAAU,GAAG,MAAM,EAAE;IAqC9D;;;;;OAKG;IACH,OAAO,CAAC,UAAU,EAAE,MAAM,EAAE,EAAE,EAAE,KAAK,EAAE,UAAU,GAAG,MAAM,EAAE;CAQ/D"}

package/build/types/cryptography/rescueDesc.d.ts

@@ -0,0 +1,80 @@
+import { IField } from '@noble/curves/abstract/modular';
+import { Matrix } from '../matrix.js';
+/**
+ * Represents the operational mode for the Rescue cryptographic primitive.
+ * Can be either a block cipher mode with a key, or a hash function mode with parameters.
+ */
+type RescueMode = BlockCipher | HashFunction;
+/**
+ * Block cipher mode configuration for Rescue.
+ * Use a key for encryption/decryption operations.
+ */
+type BlockCipher = {
+    kind: 'cipher';
+    key: bigint[];
+};
+/**
+ * Hash function mode configuration for Rescue.
+ * @param m - Rate (number of field elements absorbed per round).
+ * @param capacity - Capacity (number of field elements in the state that are not directly accessible).
+ */
+type HashFunction = {
+    kind: 'hash';
+    m: number;
+    capacity: number;
+};
+/**
+ * Field type.
+ */
+export type FpField = IField<bigint>;
+/**
+ * Curve25519 base field as an IField instance.
+ */
+export declare const CURVE25519_BASE_FIELD: FpField;
+/**
+ * Curve25519 scalar field as an IField instance.
+ */
+export declare const CURVE25519_SCALAR_FIELD: FpField;
+/**
+ * Description and parameters for the Rescue cipher or hash function, including round constants, MDS matrix, and key schedule.
+ * See: https://tosc.iacr.org/index.php/ToSC/article/view/8695/8287
+ */
+export declare class RescueDesc {
+    mode: RescueMode;
+    field: FpField;
+    alpha: bigint;
+    alphaInverse: bigint;
+    nRounds: number;
+    m: number;
+    mdsMat: Matrix;
+    mdsMatInverse: Matrix;
+    roundKeys: Matrix[];
+    /**
+     * Construct a RescueDesc for a given field and mode (cipher or hash).
+     * Initialize round constants, MDS matrix, and key schedule.
+     * @param field - Field to use (e.g., CURVE25519_BASE_FIELD).
+     * @param mode - Mode: block cipher or hash function.
+     */
+    constructor(field: FpField, mode: RescueMode);
+    /**
+     * Sample round constants for the Rescue permutation, using SHAKE256.
+     * @param nRounds - Number of rounds.
+     * @returns Array of round constant matrices.
+     */
+    sampleConstants(nRounds: number): Matrix[];
+    /**
+     * Apply the Rescue permutation to a state matrix.
+     * @param state - Input state matrix.
+     * @returns Permuted state matrix.
+     */
+    permute(state: Matrix): Matrix;
+    /**
+     * Apply the inverse Rescue permutation to a state matrix.
+     * @param state - Input state matrix.
+     * @returns Inverse-permuted state matrix.
+     */
+    permuteInverse(state: Matrix): Matrix;
+}
+export declare function toVec(data: bigint[]): bigint[][];
+export {};
+//# sourceMappingURL=rescueDesc.d.ts.map

package/build/types/cryptography/rescueDesc.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rescueDesc.d.ts","sourceRoot":"","sources":["../../../src/cryptography/rescueDesc.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,MAAM,EAAU,MAAM,gCAAgC,CAAC;AAChE,OAAO,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AAGtC;;;GAGG;AACH,KAAK,UAAU,GAAG,WAAW,GAAG,YAAY,CAAC;AAE7C;;;GAGG;AACH,KAAK,WAAW,GAAG;IAAE,IAAI,EAAE,QAAQ,CAAC;IAAC,GAAG,EAAE,MAAM,EAAE,CAAA;CAAE,CAAC;AAErD;;;;GAIG;AACH,KAAK,YAAY,GAAG;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,CAAC,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAA;CAAE,CAAC;AAElE;;GAEG;AACH,MAAM,MAAM,OAAO,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC;AAErC;;GAEG;AACH,eAAO,MAAM,qBAAqB,EAAE,OAA0B,CAAC;AAE/D;;GAEG;AACH,eAAO,MAAM,uBAAuB,EAAE,OAA0B,CAAC;AASjE;;;GAGG;AACH,qBAAa,UAAU;IACnB,IAAI,EAAE,UAAU,CAAC;IAEjB,KAAK,EAAE,OAAO,CAAC;IAGf,KAAK,EAAE,MAAM,CAAC;IAGd,YAAY,EAAE,MAAM,CAAC;IAErB,OAAO,EAAE,MAAM,CAAC;IAEhB,CAAC,EAAE,MAAM,CAAC;IAGV,MAAM,EAAE,MAAM,CAAC;IAGf,aAAa,EAAE,MAAM,CAAC;IAGtB,SAAS,EAAE,MAAM,EAAE,CAAC;IAEpB;;;;;OAKG;gBACS,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,UAAU;IAuD5C;;;;OAIG;IACH,eAAe,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,EAAE;IAoF1C;;;;OAIG;IACH,OAAO,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM;IAW9B;;;;OAIG;IACH,cAAc,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM;CAUxC;AAqOD,wBAAgB,KAAK,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,EAAE,EAAE,CAMhD"}

package/build/types/cryptography/rescuePrimeHash.d.ts

@@ -0,0 +1,23 @@
+import { RescueDesc, FpField } from './rescueDesc.js';
+/**
+ * The Rescue-Prime hash function, as described in https://eprint.iacr.org/2020/1143.pdf, offering 256 bits
+ * of security against collision, preimage and second-preimage attacks for any field of size at least 102 bits.
+ * We use the sponge construction with fixed rate = 7 and capacity = 5 (i.e., m = 12), and truncate the
+ * output to 5 field elements.
+ */
+export declare class RescuePrimeHash {
+    desc: RescueDesc;
+    rate: number;
+    digestLength: number;
+    /**
+     * Construct a RescuePrimeHash instance with rate = 7 and capacity = 5.
+     */
+    constructor(field: FpField);
+    /**
+     * Compute the Rescue-Prime hash of a message, with padding as described in Algorithm 2 of the paper.
+     * @param message - Input message as an array of bigints.
+     * @returns Hash output as an array of bigints (length = digestLength).
+     */
+    digest(message: bigint[]): bigint[];
+}
+//# sourceMappingURL=rescuePrimeHash.d.ts.map

package/build/types/cryptography/rescuePrimeHash.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rescuePrimeHash.d.ts","sourceRoot":"","sources":["../../../src/cryptography/rescuePrimeHash.ts"],"names":[],"mappings":"AAAA,OAAO,EACH,UAAU,EACV,OAAO,EACV,MAAM,iBAAiB,CAAC;AAGzB;;;;;GAKG;AACH,qBAAa,eAAe;IACxB,IAAI,EAAE,UAAU,CAAC;IAEjB,IAAI,EAAE,MAAM,CAAC;IAEb,YAAY,EAAE,MAAM,CAAC;IAErB;;OAEG;gBACS,KAAK,EAAE,OAAO;IAgB1B;;;;OAIG;IACH,MAAM,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,MAAM,EAAE;CA4BtC"}

package/build/types/ctUtils.d.ts

@@ -0,0 +1,50 @@
+/**
+ * Constant-time addition of two bigints, using 2's complement representation.
+ * @param x - First operand.
+ * @param y - Second operand.
+ * @param binSize - Number of bits to use in the operation.
+ * @returns Sum as a bigint.
+ */
+export declare function ctAdd(x: bigint, y: bigint, binSize: bigint): bigint;
+/**
+ * Constant-time subtraction of two bigints, using 2's complement representation.
+ * @param x - First operand.
+ * @param y - Second operand.
+ * @param binSize - Number of bits to use in the operation.
+ * @returns Difference as a bigint.
+ */
+export declare function ctSub(x: bigint, y: bigint, binSize: bigint): bigint;
+/**
+ * Return the sign bit of a bigint in constant time.
+ * @param x - Bigint to check.
+ * @param binSize - Bit position to check (typically the highest bit).
+ * @returns True if the sign bit is set, false otherwise.
+ */
+export declare function ctSignBit(x: bigint, binSize: bigint): boolean;
+/**
+ * Constant-time less-than comparison for two bigints.
+ * @param x - First operand.
+ * @param y - Second operand.
+ * @param binSize - Number of bits to use in the operation.
+ * @returns True if x < y, false otherwise.
+ */
+export declare function ctLt(x: bigint, y: bigint, binSize: bigint): boolean;
+/**
+ * Constant-time select between two bigints based on a boolean condition.
+ * @param b - Condition; if true, select x, otherwise select y.
+ * @param x - Value to select if b is true.
+ * @param y - Value to select if b is false.
+ * @param binSize - Number of bits to use in the operation.
+ * @returns Selected bigint.
+ */
+export declare function ctSelect(b: boolean, x: bigint, y: bigint, binSize: bigint): bigint;
+/**
+ * Check if a bigint fits in the range -2^binSize <= x < 2^binSize.
+ * Not constant-time for arbitrary x, but is constant-time for all inputs for which the function returns true.
+ * If you assert your inputs satisfy verifyBinSize(x, binSize), you need not care about the non constant-timeness of this function.
+ * @param x - Bigint to check.
+ * @param binSize - Number of bits to use in the check.
+ * @returns True if x fits in the range, false otherwise.
+ */
+export declare function verifyBinSize(x: bigint, binSize: bigint): boolean;
+//# sourceMappingURL=ctUtils.d.ts.map

package/build/types/ctUtils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ctUtils.d.ts","sourceRoot":"","sources":["../../src/ctUtils.ts"],"names":[],"mappings":"AAkDA;;;;;;GAMG;AACH,wBAAgB,KAAK,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,MAAM,CAGnE;AAED;;;;;;GAMG;AACH,wBAAgB,KAAK,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,MAAM,CAQnE;AAED;;;;;GAKG;AACH,wBAAgB,SAAS,CAAC,CAAC,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAE7D;AAED;;;;;;GAMG;AACH,wBAAgB,IAAI,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAEnE;AAED;;;;;;;GAOG;AACH,wBAAgB,QAAQ,CAAC,CAAC,EAAE,OAAO,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,MAAM,CAElF;AAED;;;;;;;GAOG;AACH,wBAAgB,aAAa,CAAC,CAAC,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAGjE"}