@bcts/frost-hubert 1.0.0-alpha.22 → 1.0.0-beta.0

package/dist/round1-CMLKN2RR.mjs

@@ -0,0 +1,195 @@
+import { t as __exportAll } from "./chunk-CjcI7cDX.mjs";
+import { n as compareXidBytes } from "./proposed-participant-cWM7iUrO.mjs";
+import { ContributionPaths, GroupRecord, Registry, resolveRegistryPath } from "./registry/index.mjs";
+import { c as parseAridUr, i as buildGroupParticipants, l as parseEnvelopeUr, p as resolveSender, s as groupParticipantFromRegistry, t as groupStateDir } from "./common-CvH6dFvQ.mjs";
+import { n as putWithIndicator, t as getWithIndicator } from "./busy-DkM2jAIZ.mjs";
+import { t as createStorageClient } from "./storage-Bkkliz0K.mjs";
+import { t as decodeInviteDetails } from "./receive-D2Nn68L7.mjs";
+import { bytesToHex, createRng, dkgPart1, identifierFromU16 } from "./frost/index.mjs";
+import { ARID, JSON } from "@bcts/components";
+import { CborDate } from "@bcts/dcbor";
+import { Envelope } from "@bcts/envelope";
+import { SealedResponse } from "@bcts/gstp";
+import * as fs from "node:fs";
+import * as path from "node:path";
+import { Ed25519Sha512, serde } from "@frosts/ed25519";
+//#region src/cmd/dkg/participant/round1.ts
+/**
+* Copyright © 2023-2026 Blockchain Commons, LLC
+* Copyright © 2025-2026 Parity Technologies
+*
+*
+* DKG participant round 1 command.
+*
+* Port of cmd/dkg/participant/round1.rs from frost-hubert-rust.
+*
+* @module
+*/
+var round1_exports = /* @__PURE__ */ __exportAll({ round1: () => round1 });
+/**
+* Resolve an invite envelope from either storage (ARID) or direct UR.
+*
+* Port of `resolve_invite_envelope()` from cmd/dkg/participant/round1.rs lines 256-288.
+*/
+async function resolveInviteEnvelope(selection, invite, timeout) {
+	if (selection !== void 0) {
+		try {
+			const arid = parseAridUr(invite);
+			const envelope = await getWithIndicator(await createStorageClient(selection), arid, "Invite", timeout, false);
+			if (envelope === null || envelope === void 0) throw new Error("Invite not found in Hubert storage");
+			return envelope;
+		} catch (e) {
+			if (e instanceof Error && e.message.includes("Invite not found in Hubert storage")) throw e;
+		}
+		if (timeout !== void 0) throw new Error("--timeout is only valid when retrieving invites from Hubert");
+		return parseEnvelopeUr(invite);
+	}
+	try {
+		parseAridUr(invite);
+		throw new Error("Hubert storage parameters are required to retrieve invites by ARID");
+	} catch (e) {
+		if (e instanceof Error && e.message.includes("Hubert storage parameters are required")) throw e;
+	}
+	return parseEnvelopeUr(invite);
+}
+/**
+* Build the response body envelope.
+*
+* Port of `build_response_body()` from cmd/dkg/participant/round1.rs lines 290-308.
+*/
+function buildResponseBody(groupId, participant, responseArid, round1Package) {
+	let envelope = Envelope.unit().addType("dkgRound1Response").addAssertion("group", groupId).addAssertion("participant", participant).addAssertion("response_arid", responseArid);
+	if (round1Package !== void 0) {
+		const packageJson = serde.round1PackageToJson(round1Package);
+		const jsonStr = globalThis.JSON.stringify(packageJson);
+		const jsonBytes = new TextEncoder().encode(jsonStr);
+		const jsonWrapper = JSON.fromData(jsonBytes);
+		envelope = envelope.addAssertion("round1_package", jsonWrapper);
+	}
+	return envelope;
+}
+/**
+* Serialize round 1 secret package to JSON-compatible format.
+*
+* The @frosts/ed25519 serde module doesn't provide a serializer for SecretPackage,
+* so we manually serialize it here.
+*/
+function serializeRound1SecretPackage(secret) {
+	const serializedCoefficients = secret.coefficients().map((c) => bytesToHex(Ed25519Sha512.serializeScalar(c)));
+	const commitmentCoefficients = secret.commitment.serialize().map((c) => bytesToHex(c));
+	return {
+		identifier: bytesToHex(secret.identifier.serialize()),
+		coefficients: serializedCoefficients,
+		commitment: commitmentCoefficients,
+		min_signers: secret.minSigners,
+		max_signers: secret.maxSigners
+	};
+}
+/**
+* Persist round 1 state to disk.
+*
+* Port of `persist_round1_state()` from cmd/dkg/participant/round1.rs lines 310-337.
+*/
+function persistRound1State(registryPath, groupId, round1Secret, round1Package) {
+	const dir = groupStateDir(registryPath, groupId.hex());
+	fs.mkdirSync(dir, { recursive: true });
+	const secretPath = path.join(dir, "round1_secret.json");
+	const packagePath = path.join(dir, "round1_package.json");
+	const secretJson = serializeRound1SecretPackage(round1Secret);
+	const packageJson = serde.round1PackageToJson(round1Package);
+	fs.writeFileSync(secretPath, globalThis.JSON.stringify(secretJson, null, 2));
+	fs.writeFileSync(packagePath, globalThis.JSON.stringify(packageJson, null, 2));
+	return new ContributionPaths({
+		round1Secret: secretPath,
+		round1Package: packagePath,
+		round2Secret: void 0,
+		keyPackage: void 0
+	});
+}
+/**
+* Execute the DKG participant round 1 command.
+*
+* Responds to the DKG invite with commitment packages.
+*
+* Port of `CommandArgs::exec()` from cmd/dkg/participant/round1.rs lines 66-254.
+*/
+async function round1(_client, options, cwd) {
+	if (options.storageSelection === void 0 && options.timeoutSeconds !== void 0) throw new Error("--timeout requires Hubert storage parameters");
+	if (options.storageSelection !== void 0 && options.preview === true) throw new Error("--preview cannot be used with Hubert storage options");
+	const registryPath = resolveRegistryPath(options.registryPath, cwd);
+	const registry = Registry.load(registryPath);
+	const owner = registry.owner();
+	if (!owner) throw new Error("Registry owner with private keys is required");
+	let expectedSender;
+	if (options.sender !== void 0) expectedSender = resolveSender(registry, options.sender);
+	const nextResponseArid = options.responseArid !== void 0 ? parseAridUr(options.responseArid) : ARID.new();
+	const details = decodeInviteDetails(await resolveInviteEnvelope(options.storageSelection, options.invite, options.timeoutSeconds), CborDate.now().datetime(), registry, owner.xidDocument(), expectedSender);
+	const sortedParticipants = [...details.participants].sort((a, b) => compareXidBytes(a.xid().toData(), b.xid().toData()));
+	const ownerIndex = sortedParticipants.findIndex((doc) => doc.xid().urString() === owner.xid().urString());
+	if (ownerIndex === -1) throw new Error("Invite does not include the registry owner");
+	const identifierIndex = ownerIndex + 1;
+	if (identifierIndex > 65535) throw new Error("Too many participants for identifiers");
+	const identifier = identifierFromU16(identifierIndex);
+	const total = sortedParticipants.length;
+	if (total > 65535) throw new Error("Too many participants for FROST identifiers");
+	const minSigners = details.invitation.minSigners();
+	if (minSigners > 65535) throw new Error("min_signers does not fit into identifier space");
+	const groupParticipants = buildGroupParticipants(registry, owner, sortedParticipants);
+	const coordinator = groupParticipantFromRegistry(registry, owner, details.invitation.sender());
+	const isPosting = options.storageSelection !== void 0;
+	let responseBody;
+	let contributions;
+	if (options.rejectReason === void 0 && isPosting) {
+		const [round1Secret, round1Package] = dkgPart1(identifier, total, minSigners, createRng());
+		contributions = persistRound1State(registryPath, details.invitation.groupId(), round1Secret, round1Package);
+		responseBody = buildResponseBody(details.invitation.groupId(), owner.xid(), nextResponseArid, round1Package);
+		const groupRecord = new GroupRecord(details.invitation.charter(), details.invitation.minSigners(), coordinator, groupParticipants);
+		groupRecord.setContributions(contributions);
+		groupRecord.setListeningAtArid(nextResponseArid);
+		registry.recordGroup(details.invitation.groupId(), groupRecord);
+		registry.save(registryPath);
+	} else if (options.rejectReason === void 0) {
+		const [, round1Package] = dkgPart1(identifier, total, minSigners, createRng());
+		responseBody = buildResponseBody(details.invitation.groupId(), owner.xid(), nextResponseArid, round1Package);
+	} else responseBody = buildResponseBody(details.invitation.groupId(), owner.xid(), nextResponseArid, void 0);
+	const signerPrivateKeys = owner.xidDocument().inceptionPrivateKeys();
+	if (signerPrivateKeys === void 0) throw new Error("Owner XID document has no signing keys");
+	let sealed;
+	if (options.rejectReason !== void 0) {
+		const errorBody = Envelope.new("dkgInviteReject").addAssertion("group", details.invitation.groupId()).addAssertion("response_arid", nextResponseArid).addAssertion("reason", options.rejectReason);
+		sealed = SealedResponse.newFailure(details.invitation.requestId(), owner.xidDocument()).withError(errorBody).withState(nextResponseArid);
+	} else sealed = SealedResponse.newSuccess(details.invitation.requestId(), owner.xidDocument()).withResult(responseBody).withState(nextResponseArid);
+	const peerContinuation = details.invitation.peerContinuation();
+	if (peerContinuation !== void 0) sealed = sealed.withPeerContinuation(peerContinuation);
+	if (options.storageSelection !== void 0) {
+		const responseEnvelope = sealed.toEnvelope(details.invitation.validUntil(), signerPrivateKeys, details.invitation.sender());
+		const responseTarget = details.invitation.responseArid();
+		await putWithIndicator(await createStorageClient(options.storageSelection), responseTarget, responseEnvelope, "Round 1 Response", options.verbose ?? false);
+		if (options.verbose === true) {
+			console.log(`Sent round 1 response`);
+			console.log(`Listening at: ${nextResponseArid.urString()}`);
+		}
+		return {
+			accepted: options.rejectReason === void 0,
+			listeningArid: nextResponseArid.urString()
+		};
+	} else if (options.preview === true) {
+		const envelopeUr = sealed.toEnvelope(void 0, signerPrivateKeys, void 0).urString();
+		console.log(envelopeUr);
+		return {
+			accepted: options.rejectReason === void 0,
+			envelopeUr
+		};
+	} else {
+		const envelopeUr = sealed.toEnvelope(details.invitation.validUntil(), signerPrivateKeys, details.invitation.sender()).urString();
+		console.log(envelopeUr);
+		return {
+			accepted: options.rejectReason === void 0,
+			envelopeUr
+		};
+	}
+}
+//#endregion
+export { round1_exports as n, round1 as t };
+
+//# sourceMappingURL=round1-CMLKN2RR.mjs.map

package/dist/round1-CMLKN2RR.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"round1-CMLKN2RR.mjs","names":["JSONWrapper"],"sources":["../src/cmd/dkg/participant/round1.ts"],"sourcesContent":["/**\n * Copyright © 2023-2026 Blockchain Commons, LLC\n * Copyright © 2025-2026 Parity Technologies\n *\n *\n * DKG participant round 1 command.\n *\n * Port of cmd/dkg/participant/round1.rs from frost-hubert-rust.\n *\n * @module\n */\n\nimport * as fs from \"node:fs\";\nimport * as path from \"node:path\";\n\nimport { ARID, JSON as JSONWrapper, type XID } from \"@bcts/components\";\nimport { compareXidBytes } from \"../../../dkg/proposed-participant.js\";\nimport { Envelope } from \"@bcts/envelope\";\nimport { SealedResponse } from \"@bcts/gstp\";\nimport type { XIDDocument } from \"@bcts/xid\";\n\nimport {\n  ContributionPaths,\n  GroupRecord,\n  Registry,\n  resolveRegistryPath,\n} from \"../../../registry/index.js\";\nimport { getWithIndicator, putWithIndicator } from \"../../busy.js\";\nimport { createStorageClient, type StorageClient, type StorageSelection } from \"../../storage.js\";\nimport { groupStateDir } from \"../../common.js\";\nimport {\n  buildGroupParticipants,\n  groupParticipantFromRegistry,\n  parseAridUr,\n  parseEnvelopeUr,\n  resolveSender,\n} from \"../common.js\";\nimport {\n  dkgPart1,\n  identifierFromU16,\n  createRng,\n  bytesToHex,\n  type DkgRound1Package,\n  type DkgRound1SecretPackage,\n} from \"../../../frost/index.js\";\nimport { Ed25519Sha512, serde } from \"@frosts/ed25519\";\nimport { decodeInviteDetails } from \"./receive.js\";\nimport { CborDate } from \"@bcts/dcbor\";\n\n/**\n * Options for the DKG round1 command.\n */\nexport interface DkgRound1Options {\n  registryPath?: string;\n  timeoutSeconds?: number;\n  responseArid?: string;\n  preview?: boolean;\n  rejectReason?: string;\n  sender?: string;\n  invite: string;\n  storageSelection?: StorageSelection;\n  verbose?: boolean;\n}\n\n/**\n * Result of the DKG round1 command.\n */\nexport interface DkgRound1Result {\n  accepted: boolean;\n  listeningArid?: string;\n  envelopeUr?: string;\n}\n\n/**\n * Resolve an invite envelope from either storage (ARID) or direct UR.\n *\n * Port of `resolve_invite_envelope()` from cmd/dkg/participant/round1.rs lines 256-288.\n */\nasync function resolveInviteEnvelope(\n  selection: StorageSelection | undefined,\n  invite: string,\n  timeout?: number,\n): Promise<Envelope> {\n  if (selection !== undefined) {\n    // Try to parse as ARID\n    try {\n      const arid = parseAridUr(invite);\n      const client = await createStorageClient(selection);\n      const envelope = await getWithIndicator(client, arid, \"Invite\", timeout, false);\n      if (envelope === null || envelope === undefined) {\n        throw new Error(\"Invite not found in Hubert storage\");\n      }\n      return envelope;\n    } catch (e) {\n      // Not an ARID, fall through to envelope parsing\n      if (e instanceof Error && e.message.includes(\"Invite not found in Hubert storage\")) {\n        throw e;\n      }\n    }\n\n    if (timeout !== undefined) {\n      throw new Error(\"--timeout is only valid when retrieving invites from Hubert\");\n    }\n\n    return parseEnvelopeUr(invite);\n  }\n\n  // No storage selection\n  try {\n    parseAridUr(invite);\n    throw new Error(\"Hubert storage parameters are required to retrieve invites by ARID\");\n  } catch (e) {\n    // Not an ARID, parse as envelope\n    if (e instanceof Error && e.message.includes(\"Hubert storage parameters are required\")) {\n      throw e;\n    }\n  }\n\n  return parseEnvelopeUr(invite);\n}\n\n/**\n * Build the response body envelope.\n *\n * Port of `build_response_body()` from cmd/dkg/participant/round1.rs lines 290-308.\n */\nfunction buildResponseBody(\n  groupId: ARID,\n  participant: XID,\n  responseArid: ARID,\n  round1Package: DkgRound1Package | undefined,\n): Envelope {\n  let envelope = Envelope.unit()\n    .addType(\"dkgRound1Response\")\n    .addAssertion(\"group\", groupId)\n    .addAssertion(\"participant\", participant)\n    .addAssertion(\"response_arid\", responseArid);\n\n  if (round1Package !== undefined) {\n    // Serialize the package to JSON and wrap as CBOR JSON\n    const packageJson = serde.round1PackageToJson(round1Package);\n    const jsonStr = globalThis.JSON.stringify(packageJson);\n    const jsonBytes = new TextEncoder().encode(jsonStr);\n    const jsonWrapper = JSONWrapper.fromData(jsonBytes);\n    // Pass the JSONWrapper directly - it implements CborTaggedEncodable\n    envelope = envelope.addAssertion(\"round1_package\", jsonWrapper);\n  }\n\n  return envelope;\n}\n\n/**\n * Serialize round 1 secret package to JSON-compatible format.\n *\n * The @frosts/ed25519 serde module doesn't provide a serializer for SecretPackage,\n * so we manually serialize it here.\n */\nfunction serializeRound1SecretPackage(secret: DkgRound1SecretPackage): Record<string, unknown> {\n  // Mirrors the on-disk shape produced by Rust\n  // `serde_json::to_vec_pretty(&frost::keys::dkg::round1::SecretPackage)`\n  // (see `frost-rust/frost-core/src/keys/dkg.rs:120-139`):\n  //\n  //   {\n  //     \"identifier\": \"<lowercase hex scalar>\",\n  //     \"coefficients\": [\"<hex>\", \"<hex>\", ...],\n  //     \"commitment\": [\"<hex>\", \"<hex>\", ...],\n  //     \"min_signers\": <u16>,\n  //     \"max_signers\": <u16>\n  //   }\n  //\n  // `frost::keys::dkg::round1::SecretPackage` is `#[serde(deny_unknown_fields)]`\n  // and has no `header` field (the secret package is private to the\n  // participant). The earlier port emitted a top-level `header` which\n  // would fail `deny_unknown_fields` validation if Rust ever loaded\n  // the file.\n  //\n  // `Identifier`/`SerializableScalar` serialize via\n  // `serdect::array::serialize_hex_lower_or_bin` → lowercase hex for\n  // JSON, which `bytesToHex` produces.\n  const coefficients = secret.coefficients();\n  const serializedCoefficients = coefficients.map((c: unknown) =>\n    bytesToHex(\n      Ed25519Sha512.serializeScalar(c as Parameters<typeof Ed25519Sha512.serializeScalar>[0]),\n    ),\n  );\n\n  const commitment = secret.commitment;\n  const commitmentCoefficients = commitment.serialize().map((c: Uint8Array) => bytesToHex(c));\n\n  return {\n    identifier: bytesToHex(secret.identifier.serialize()),\n    coefficients: serializedCoefficients,\n    commitment: commitmentCoefficients,\n    min_signers: secret.minSigners,\n    max_signers: secret.maxSigners,\n  };\n}\n\n/**\n * Persist round 1 state to disk.\n *\n * Port of `persist_round1_state()` from cmd/dkg/participant/round1.rs lines 310-337.\n */\nfunction persistRound1State(\n  registryPath: string,\n  groupId: ARID,\n  round1Secret: DkgRound1SecretPackage,\n  round1Package: DkgRound1Package,\n): ContributionPaths {\n  const dir = groupStateDir(registryPath, groupId.hex());\n  fs.mkdirSync(dir, { recursive: true });\n\n  const secretPath = path.join(dir, \"round1_secret.json\");\n  const packagePath = path.join(dir, \"round1_package.json\");\n\n  // Serialize the secret package manually since serde doesn't provide it\n  const secretJson = serializeRound1SecretPackage(round1Secret);\n  // Serialize the public package using the standard serde function\n  const packageJson = serde.round1PackageToJson(round1Package);\n\n  fs.writeFileSync(secretPath, globalThis.JSON.stringify(secretJson, null, 2));\n  fs.writeFileSync(packagePath, globalThis.JSON.stringify(packageJson, null, 2));\n\n  return new ContributionPaths({\n    round1Secret: secretPath,\n    round1Package: packagePath,\n    round2Secret: undefined,\n    keyPackage: undefined,\n  });\n}\n\n/**\n * Execute the DKG participant round 1 command.\n *\n * Responds to the DKG invite with commitment packages.\n *\n * Port of `CommandArgs::exec()` from cmd/dkg/participant/round1.rs lines 66-254.\n */\nexport async function round1(\n  _client: StorageClient | undefined,\n  options: DkgRound1Options,\n  cwd: string,\n): Promise<DkgRound1Result> {\n  // Validate options\n  if (options.storageSelection === undefined && options.timeoutSeconds !== undefined) {\n    throw new Error(\"--timeout requires Hubert storage parameters\");\n  }\n  if (options.storageSelection !== undefined && options.preview === true) {\n    throw new Error(\"--preview cannot be used with Hubert storage options\");\n  }\n\n  const registryPath = resolveRegistryPath(options.registryPath, cwd);\n  const registry = Registry.load(registryPath);\n\n  const owner = registry.owner();\n  if (!owner) {\n    throw new Error(\"Registry owner with private keys is required\");\n  }\n\n  // Resolve expected sender if provided. Uses the shared helper from\n  // `cmd/dkg/common.ts` (mirrors Rust `resolve_sender`); the\n  // duplicated inline implementation that this previously called has\n  // been removed.\n  let expectedSender: XIDDocument | undefined;\n  if (options.sender !== undefined) {\n    expectedSender = resolveSender(registry, options.sender);\n  }\n\n  const nextResponseArid =\n    options.responseArid !== undefined ? parseAridUr(options.responseArid) : ARID.new();\n\n  // Resolve the invite envelope\n  const inviteEnvelope = await resolveInviteEnvelope(\n    options.storageSelection,\n    options.invite,\n    options.timeoutSeconds,\n  );\n\n  // Decode the invite details\n  const now = CborDate.now().datetime();\n  const details = decodeInviteDetails(\n    inviteEnvelope,\n    now,\n    registry,\n    owner.xidDocument(),\n    expectedSender,\n  );\n\n  // Sort participants by XID byte order (mirrors Rust `XID::cmp` —\n  // raw 32-byte lex compare). The earlier port used\n  // `xid.urString().localeCompare(...)`, which differs from byte\n  // order when bytes ≥ 0x80 are present and is locale-aware,\n  // producing different FROST identifier assignments and therefore\n  // different secret shares than Rust.\n  const sortedParticipants = [...details.participants].sort((a, b) =>\n    compareXidBytes(a.xid().toData(), b.xid().toData()),\n  );\n\n  const ownerIndex = sortedParticipants.findIndex(\n    (doc) => doc.xid().urString() === owner.xid().urString(),\n  );\n  if (ownerIndex === -1) {\n    throw new Error(\"Invite does not include the registry owner\");\n  }\n\n  const identifierIndex = ownerIndex + 1; // FROST uses 1-indexed identifiers\n  if (identifierIndex > 65535) {\n    throw new Error(\"Too many participants for identifiers\");\n  }\n  const identifier = identifierFromU16(identifierIndex);\n\n  const total = sortedParticipants.length;\n  if (total > 65535) {\n    throw new Error(\"Too many participants for FROST identifiers\");\n  }\n\n  const minSigners = details.invitation.minSigners();\n  if (minSigners > 65535) {\n    throw new Error(\"min_signers does not fit into identifier space\");\n  }\n\n  // Build group participants for the registry\n  const groupParticipants = buildGroupParticipants(registry, owner, sortedParticipants);\n  const coordinator = groupParticipantFromRegistry(registry, owner, details.invitation.sender());\n\n  // Check if we're posting to storage\n  const isPosting = options.storageSelection !== undefined;\n\n  // Build the response body\n  let responseBody: Envelope;\n  let contributions: ContributionPaths | undefined;\n\n  if (options.rejectReason === undefined && isPosting) {\n    // Actually posting - generate and persist round1 state\n    const [round1Secret, round1Package] = dkgPart1(identifier, total, minSigners, createRng());\n\n    contributions = persistRound1State(\n      registryPath,\n      details.invitation.groupId(),\n      round1Secret,\n      round1Package,\n    );\n\n    responseBody = buildResponseBody(\n      details.invitation.groupId(),\n      owner.xid(),\n      nextResponseArid,\n      round1Package,\n    );\n\n    // Create and save group record\n    const groupRecord = new GroupRecord(\n      details.invitation.charter(),\n      details.invitation.minSigners(),\n      coordinator,\n      groupParticipants,\n    );\n    groupRecord.setContributions(contributions);\n    groupRecord.setListeningAtArid(nextResponseArid);\n\n    registry.recordGroup(details.invitation.groupId(), groupRecord);\n    registry.save(registryPath);\n  } else if (options.rejectReason === undefined) {\n    // Preview mode - generate dummy round1 for envelope structure only\n    const [, round1Package] = dkgPart1(identifier, total, minSigners, createRng());\n\n    responseBody = buildResponseBody(\n      details.invitation.groupId(),\n      owner.xid(),\n      nextResponseArid,\n      round1Package,\n    );\n  } else {\n    // Rejecting - no round1 needed\n    responseBody = buildResponseBody(\n      details.invitation.groupId(),\n      owner.xid(),\n      nextResponseArid,\n      undefined,\n    );\n  }\n\n  // Build the sealed response\n  const signerPrivateKeys = owner.xidDocument().inceptionPrivateKeys();\n  if (signerPrivateKeys === undefined) {\n    throw new Error(\"Owner XID document has no signing keys\");\n  }\n\n  let sealed: SealedResponse;\n  if (options.rejectReason !== undefined) {\n    // Build rejection error body\n    const errorBody = Envelope.new(\"dkgInviteReject\")\n      .addAssertion(\"group\", details.invitation.groupId())\n      .addAssertion(\"response_arid\", nextResponseArid)\n      .addAssertion(\"reason\", options.rejectReason);\n\n    sealed = SealedResponse.newFailure(details.invitation.requestId(), owner.xidDocument())\n      .withError(errorBody)\n      .withState(nextResponseArid);\n  } else {\n    sealed = SealedResponse.newSuccess(details.invitation.requestId(), owner.xidDocument())\n      .withResult(responseBody)\n      .withState(nextResponseArid);\n  }\n\n  // Add peer continuation if present\n  const peerContinuation = details.invitation.peerContinuation();\n  if (peerContinuation !== undefined) {\n    sealed = sealed.withPeerContinuation(peerContinuation);\n  }\n\n  // Handle output based on storage selection\n  if (options.storageSelection !== undefined) {\n    const responseEnvelope = sealed.toEnvelope(\n      details.invitation.validUntil(),\n      signerPrivateKeys,\n      details.invitation.sender(),\n    );\n\n    const responseTarget = details.invitation.responseArid();\n    const client = await createStorageClient(options.storageSelection);\n\n    await putWithIndicator(\n      client,\n      responseTarget,\n      responseEnvelope,\n      \"Round 1 Response\",\n      options.verbose ?? false,\n    );\n\n    if (options.verbose === true) {\n      console.log(`Sent round 1 response`);\n      console.log(`Listening at: ${nextResponseArid.urString()}`);\n    }\n\n    return {\n      accepted: options.rejectReason === undefined,\n      listeningArid: nextResponseArid.urString(),\n    };\n  } else if (options.preview === true) {\n    // Show the GSTP response structure without encryption\n    const unsealedEnvelope = sealed.toEnvelope(undefined, signerPrivateKeys, undefined);\n    const envelopeUr = unsealedEnvelope.urString();\n    console.log(envelopeUr);\n\n    return {\n      accepted: options.rejectReason === undefined,\n      envelopeUr,\n    };\n  } else {\n    // Print the sealed envelope\n    const responseEnvelope = sealed.toEnvelope(\n      details.invitation.validUntil(),\n      signerPrivateKeys,\n      details.invitation.sender(),\n    );\n    const envelopeUr = responseEnvelope.urString();\n    console.log(envelopeUr);\n\n    return {\n      accepted: options.rejectReason === undefined,\n      envelopeUr,\n    };\n  }\n}\n\n// `resolveSenderXidDocument` removed — it was an inline duplicate of\n// Rust `resolve_sender(registry, input)`. The shared helper now lives\n// in `cmd/dkg/common.ts` and is imported above.\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA8EA,eAAe,sBACb,WACA,QACA,SACmB;AACnB,KAAI,cAAc,KAAA,GAAW;AAE3B,MAAI;GACF,MAAM,OAAO,YAAY,OAAO;GAEhC,MAAM,WAAW,MAAM,iBAAiB,MADnB,oBAAoB,UAAU,EACH,MAAM,UAAU,SAAS,MAAM;AAC/E,OAAI,aAAa,QAAQ,aAAa,KAAA,EACpC,OAAM,IAAI,MAAM,qCAAqC;AAEvD,UAAO;WACA,GAAG;AAEV,OAAI,aAAa,SAAS,EAAE,QAAQ,SAAS,qCAAqC,CAChF,OAAM;;AAIV,MAAI,YAAY,KAAA,EACd,OAAM,IAAI,MAAM,8DAA8D;AAGhF,SAAO,gBAAgB,OAAO;;AAIhC,KAAI;AACF,cAAY,OAAO;AACnB,QAAM,IAAI,MAAM,qEAAqE;UAC9E,GAAG;AAEV,MAAI,aAAa,SAAS,EAAE,QAAQ,SAAS,yCAAyC,CACpF,OAAM;;AAIV,QAAO,gBAAgB,OAAO;;;;;;;AAQhC,SAAS,kBACP,SACA,aACA,cACA,eACU;CACV,IAAI,WAAW,SAAS,MAAM,CAC3B,QAAQ,oBAAoB,CAC5B,aAAa,SAAS,QAAQ,CAC9B,aAAa,eAAe,YAAY,CACxC,aAAa,iBAAiB,aAAa;AAE9C,KAAI,kBAAkB,KAAA,GAAW;EAE/B,MAAM,cAAc,MAAM,oBAAoB,cAAc;EAC5D,MAAM,UAAU,WAAW,KAAK,UAAU,YAAY;EACtD,MAAM,YAAY,IAAI,aAAa,CAAC,OAAO,QAAQ;EACnD,MAAM,cAAcA,KAAY,SAAS,UAAU;AAEnD,aAAW,SAAS,aAAa,kBAAkB,YAAY;;AAGjE,QAAO;;;;;;;;AAST,SAAS,6BAA6B,QAAyD;CAuB7F,MAAM,yBADe,OAAO,cACe,CAAC,KAAK,MAC/C,WACE,cAAc,gBAAgB,EAAyD,CACxF,CACF;CAGD,MAAM,yBADa,OAAO,WACgB,WAAW,CAAC,KAAK,MAAkB,WAAW,EAAE,CAAC;AAE3F,QAAO;EACL,YAAY,WAAW,OAAO,WAAW,WAAW,CAAC;EACrD,cAAc;EACd,YAAY;EACZ,aAAa,OAAO;EACpB,aAAa,OAAO;EACrB;;;;;;;AAQH,SAAS,mBACP,cACA,SACA,cACA,eACmB;CACnB,MAAM,MAAM,cAAc,cAAc,QAAQ,KAAK,CAAC;AACtD,IAAG,UAAU,KAAK,EAAE,WAAW,MAAM,CAAC;CAEtC,MAAM,aAAa,KAAK,KAAK,KAAK,qBAAqB;CACvD,MAAM,cAAc,KAAK,KAAK,KAAK,sBAAsB;CAGzD,MAAM,aAAa,6BAA6B,aAAa;CAE7D,MAAM,cAAc,MAAM,oBAAoB,cAAc;AAE5D,IAAG,cAAc,YAAY,WAAW,KAAK,UAAU,YAAY,MAAM,EAAE,CAAC;AAC5E,IAAG,cAAc,aAAa,WAAW,KAAK,UAAU,aAAa,MAAM,EAAE,CAAC;AAE9E,QAAO,IAAI,kBAAkB;EAC3B,cAAc;EACd,eAAe;EACf,cAAc,KAAA;EACd,YAAY,KAAA;EACb,CAAC;;;;;;;;;AAUJ,eAAsB,OACpB,SACA,SACA,KAC0B;AAE1B,KAAI,QAAQ,qBAAqB,KAAA,KAAa,QAAQ,mBAAmB,KAAA,EACvE,OAAM,IAAI,MAAM,+CAA+C;AAEjE,KAAI,QAAQ,qBAAqB,KAAA,KAAa,QAAQ,YAAY,KAChE,OAAM,IAAI,MAAM,uDAAuD;CAGzE,MAAM,eAAe,oBAAoB,QAAQ,cAAc,IAAI;CACnE,MAAM,WAAW,SAAS,KAAK,aAAa;CAE5C,MAAM,QAAQ,SAAS,OAAO;AAC9B,KAAI,CAAC,MACH,OAAM,IAAI,MAAM,+CAA+C;CAOjE,IAAI;AACJ,KAAI,QAAQ,WAAW,KAAA,EACrB,kBAAiB,cAAc,UAAU,QAAQ,OAAO;CAG1D,MAAM,mBACJ,QAAQ,iBAAiB,KAAA,IAAY,YAAY,QAAQ,aAAa,GAAG,KAAK,KAAK;CAWrF,MAAM,UAAU,oBACd,MAT2B,sBAC3B,QAAQ,kBACR,QAAQ,QACR,QAAQ,eACT,EAGW,SAAS,KAAK,CAAC,UAGtB,EACH,UACA,MAAM,aAAa,EACnB,eACD;CAQD,MAAM,qBAAqB,CAAC,GAAG,QAAQ,aAAa,CAAC,MAAM,GAAG,MAC5D,gBAAgB,EAAE,KAAK,CAAC,QAAQ,EAAE,EAAE,KAAK,CAAC,QAAQ,CAAC,CACpD;CAED,MAAM,aAAa,mBAAmB,WACnC,QAAQ,IAAI,KAAK,CAAC,UAAU,KAAK,MAAM,KAAK,CAAC,UAAU,CACzD;AACD,KAAI,eAAe,GACjB,OAAM,IAAI,MAAM,6CAA6C;CAG/D,MAAM,kBAAkB,aAAa;AACrC,KAAI,kBAAkB,MACpB,OAAM,IAAI,MAAM,wCAAwC;CAE1D,MAAM,aAAa,kBAAkB,gBAAgB;CAErD,MAAM,QAAQ,mBAAmB;AACjC,KAAI,QAAQ,MACV,OAAM,IAAI,MAAM,8CAA8C;CAGhE,MAAM,aAAa,QAAQ,WAAW,YAAY;AAClD,KAAI,aAAa,MACf,OAAM,IAAI,MAAM,iDAAiD;CAInE,MAAM,oBAAoB,uBAAuB,UAAU,OAAO,mBAAmB;CACrF,MAAM,cAAc,6BAA6B,UAAU,OAAO,QAAQ,WAAW,QAAQ,CAAC;CAG9F,MAAM,YAAY,QAAQ,qBAAqB,KAAA;CAG/C,IAAI;CACJ,IAAI;AAEJ,KAAI,QAAQ,iBAAiB,KAAA,KAAa,WAAW;EAEnD,MAAM,CAAC,cAAc,iBAAiB,SAAS,YAAY,OAAO,YAAY,WAAW,CAAC;AAE1F,kBAAgB,mBACd,cACA,QAAQ,WAAW,SAAS,EAC5B,cACA,cACD;AAED,iBAAe,kBACb,QAAQ,WAAW,SAAS,EAC5B,MAAM,KAAK,EACX,kBACA,cACD;EAGD,MAAM,cAAc,IAAI,YACtB,QAAQ,WAAW,SAAS,EAC5B,QAAQ,WAAW,YAAY,EAC/B,aACA,kBACD;AACD,cAAY,iBAAiB,cAAc;AAC3C,cAAY,mBAAmB,iBAAiB;AAEhD,WAAS,YAAY,QAAQ,WAAW,SAAS,EAAE,YAAY;AAC/D,WAAS,KAAK,aAAa;YAClB,QAAQ,iBAAiB,KAAA,GAAW;EAE7C,MAAM,GAAG,iBAAiB,SAAS,YAAY,OAAO,YAAY,WAAW,CAAC;AAE9E,iBAAe,kBACb,QAAQ,WAAW,SAAS,EAC5B,MAAM,KAAK,EACX,kBACA,cACD;OAGD,gBAAe,kBACb,QAAQ,WAAW,SAAS,EAC5B,MAAM,KAAK,EACX,kBACA,KAAA,EACD;CAIH,MAAM,oBAAoB,MAAM,aAAa,CAAC,sBAAsB;AACpE,KAAI,sBAAsB,KAAA,EACxB,OAAM,IAAI,MAAM,yCAAyC;CAG3D,IAAI;AACJ,KAAI,QAAQ,iBAAiB,KAAA,GAAW;EAEtC,MAAM,YAAY,SAAS,IAAI,kBAAkB,CAC9C,aAAa,SAAS,QAAQ,WAAW,SAAS,CAAC,CACnD,aAAa,iBAAiB,iBAAiB,CAC/C,aAAa,UAAU,QAAQ,aAAa;AAE/C,WAAS,eAAe,WAAW,QAAQ,WAAW,WAAW,EAAE,MAAM,aAAa,CAAC,CACpF,UAAU,UAAU,CACpB,UAAU,iBAAiB;OAE9B,UAAS,eAAe,WAAW,QAAQ,WAAW,WAAW,EAAE,MAAM,aAAa,CAAC,CACpF,WAAW,aAAa,CACxB,UAAU,iBAAiB;CAIhC,MAAM,mBAAmB,QAAQ,WAAW,kBAAkB;AAC9D,KAAI,qBAAqB,KAAA,EACvB,UAAS,OAAO,qBAAqB,iBAAiB;AAIxD,KAAI,QAAQ,qBAAqB,KAAA,GAAW;EAC1C,MAAM,mBAAmB,OAAO,WAC9B,QAAQ,WAAW,YAAY,EAC/B,mBACA,QAAQ,WAAW,QAAQ,CAC5B;EAED,MAAM,iBAAiB,QAAQ,WAAW,cAAc;AAGxD,QAAM,iBACJ,MAHmB,oBAAoB,QAAQ,iBAAiB,EAIhE,gBACA,kBACA,oBACA,QAAQ,WAAW,MACpB;AAED,MAAI,QAAQ,YAAY,MAAM;AAC5B,WAAQ,IAAI,wBAAwB;AACpC,WAAQ,IAAI,iBAAiB,iBAAiB,UAAU,GAAG;;AAG7D,SAAO;GACL,UAAU,QAAQ,iBAAiB,KAAA;GACnC,eAAe,iBAAiB,UAAU;GAC3C;YACQ,QAAQ,YAAY,MAAM;EAGnC,MAAM,aADmB,OAAO,WAAW,KAAA,GAAW,mBAAmB,KAAA,EACtC,CAAC,UAAU;AAC9C,UAAQ,IAAI,WAAW;AAEvB,SAAO;GACL,UAAU,QAAQ,iBAAiB,KAAA;GACnC;GACD;QACI;EAOL,MAAM,aALmB,OAAO,WAC9B,QAAQ,WAAW,YAAY,EAC/B,mBACA,QAAQ,WAAW,QAAQ,CAEM,CAAC,UAAU;AAC9C,UAAQ,IAAI,WAAW;AAEvB,SAAO;GACL,UAAU,QAAQ,iBAAiB,KAAA;GACnC;GACD"}

package/dist/round1-CWSXZx5R.cjs

@@ -0,0 +1,208 @@
+const require_chunk = require("./chunk-CZWwpsFl.cjs");
+const require_proposed_participant = require("./proposed-participant-Dm1Eq6mX.cjs");
+const require_registry_index = require("./registry/index.cjs");
+const require_common = require("./common-lKP5EzHy.cjs");
+const require_busy = require("./busy-EZU7EKr6.cjs");
+const require_storage = require("./storage-B-Gu68-O.cjs");
+const require_receive = require("./receive-CAI-x4II.cjs");
+const require_frost_index = require("./frost/index.cjs");
+let _bcts_components = require("@bcts/components");
+let _bcts_dcbor = require("@bcts/dcbor");
+let _bcts_envelope = require("@bcts/envelope");
+let _bcts_gstp = require("@bcts/gstp");
+let node_fs = require("node:fs");
+node_fs = require_chunk.__toESM(node_fs, 1);
+let node_path = require("node:path");
+node_path = require_chunk.__toESM(node_path, 1);
+let _frosts_ed25519 = require("@frosts/ed25519");
+//#region src/cmd/dkg/participant/round1.ts
+/**
+* Copyright © 2023-2026 Blockchain Commons, LLC
+* Copyright © 2025-2026 Parity Technologies
+*
+*
+* DKG participant round 1 command.
+*
+* Port of cmd/dkg/participant/round1.rs from frost-hubert-rust.
+*
+* @module
+*/
+var round1_exports = /* @__PURE__ */ require_chunk.__exportAll({ round1: () => round1 });
+/**
+* Resolve an invite envelope from either storage (ARID) or direct UR.
+*
+* Port of `resolve_invite_envelope()` from cmd/dkg/participant/round1.rs lines 256-288.
+*/
+async function resolveInviteEnvelope(selection, invite, timeout) {
+	if (selection !== void 0) {
+		try {
+			const arid = require_common.parseAridUr(invite);
+			const envelope = await require_busy.getWithIndicator(await require_storage.createStorageClient(selection), arid, "Invite", timeout, false);
+			if (envelope === null || envelope === void 0) throw new Error("Invite not found in Hubert storage");
+			return envelope;
+		} catch (e) {
+			if (e instanceof Error && e.message.includes("Invite not found in Hubert storage")) throw e;
+		}
+		if (timeout !== void 0) throw new Error("--timeout is only valid when retrieving invites from Hubert");
+		return require_common.parseEnvelopeUr(invite);
+	}
+	try {
+		require_common.parseAridUr(invite);
+		throw new Error("Hubert storage parameters are required to retrieve invites by ARID");
+	} catch (e) {
+		if (e instanceof Error && e.message.includes("Hubert storage parameters are required")) throw e;
+	}
+	return require_common.parseEnvelopeUr(invite);
+}
+/**
+* Build the response body envelope.
+*
+* Port of `build_response_body()` from cmd/dkg/participant/round1.rs lines 290-308.
+*/
+function buildResponseBody(groupId, participant, responseArid, round1Package) {
+	let envelope = _bcts_envelope.Envelope.unit().addType("dkgRound1Response").addAssertion("group", groupId).addAssertion("participant", participant).addAssertion("response_arid", responseArid);
+	if (round1Package !== void 0) {
+		const packageJson = _frosts_ed25519.serde.round1PackageToJson(round1Package);
+		const jsonStr = globalThis.JSON.stringify(packageJson);
+		const jsonBytes = new TextEncoder().encode(jsonStr);
+		const jsonWrapper = _bcts_components.JSON.fromData(jsonBytes);
+		envelope = envelope.addAssertion("round1_package", jsonWrapper);
+	}
+	return envelope;
+}
+/**
+* Serialize round 1 secret package to JSON-compatible format.
+*
+* The @frosts/ed25519 serde module doesn't provide a serializer for SecretPackage,
+* so we manually serialize it here.
+*/
+function serializeRound1SecretPackage(secret) {
+	const serializedCoefficients = secret.coefficients().map((c) => require_frost_index.bytesToHex(_frosts_ed25519.Ed25519Sha512.serializeScalar(c)));
+	const commitmentCoefficients = secret.commitment.serialize().map((c) => require_frost_index.bytesToHex(c));
+	return {
+		identifier: require_frost_index.bytesToHex(secret.identifier.serialize()),
+		coefficients: serializedCoefficients,
+		commitment: commitmentCoefficients,
+		min_signers: secret.minSigners,
+		max_signers: secret.maxSigners
+	};
+}
+/**
+* Persist round 1 state to disk.
+*
+* Port of `persist_round1_state()` from cmd/dkg/participant/round1.rs lines 310-337.
+*/
+function persistRound1State(registryPath, groupId, round1Secret, round1Package) {
+	const dir = require_common.groupStateDir(registryPath, groupId.hex());
+	node_fs.mkdirSync(dir, { recursive: true });
+	const secretPath = node_path.join(dir, "round1_secret.json");
+	const packagePath = node_path.join(dir, "round1_package.json");
+	const secretJson = serializeRound1SecretPackage(round1Secret);
+	const packageJson = _frosts_ed25519.serde.round1PackageToJson(round1Package);
+	node_fs.writeFileSync(secretPath, globalThis.JSON.stringify(secretJson, null, 2));
+	node_fs.writeFileSync(packagePath, globalThis.JSON.stringify(packageJson, null, 2));
+	return new require_registry_index.ContributionPaths({
+		round1Secret: secretPath,
+		round1Package: packagePath,
+		round2Secret: void 0,
+		keyPackage: void 0
+	});
+}
+/**
+* Execute the DKG participant round 1 command.
+*
+* Responds to the DKG invite with commitment packages.
+*
+* Port of `CommandArgs::exec()` from cmd/dkg/participant/round1.rs lines 66-254.
+*/
+async function round1(_client, options, cwd) {
+	if (options.storageSelection === void 0 && options.timeoutSeconds !== void 0) throw new Error("--timeout requires Hubert storage parameters");
+	if (options.storageSelection !== void 0 && options.preview === true) throw new Error("--preview cannot be used with Hubert storage options");
+	const registryPath = require_registry_index.resolveRegistryPath(options.registryPath, cwd);
+	const registry = require_registry_index.Registry.load(registryPath);
+	const owner = registry.owner();
+	if (!owner) throw new Error("Registry owner with private keys is required");
+	let expectedSender;
+	if (options.sender !== void 0) expectedSender = require_common.resolveSender(registry, options.sender);
+	const nextResponseArid = options.responseArid !== void 0 ? require_common.parseAridUr(options.responseArid) : _bcts_components.ARID.new();
+	const details = require_receive.decodeInviteDetails(await resolveInviteEnvelope(options.storageSelection, options.invite, options.timeoutSeconds), _bcts_dcbor.CborDate.now().datetime(), registry, owner.xidDocument(), expectedSender);
+	const sortedParticipants = [...details.participants].sort((a, b) => require_proposed_participant.compareXidBytes(a.xid().toData(), b.xid().toData()));
+	const ownerIndex = sortedParticipants.findIndex((doc) => doc.xid().urString() === owner.xid().urString());
+	if (ownerIndex === -1) throw new Error("Invite does not include the registry owner");
+	const identifierIndex = ownerIndex + 1;
+	if (identifierIndex > 65535) throw new Error("Too many participants for identifiers");
+	const identifier = require_frost_index.identifierFromU16(identifierIndex);
+	const total = sortedParticipants.length;
+	if (total > 65535) throw new Error("Too many participants for FROST identifiers");
+	const minSigners = details.invitation.minSigners();
+	if (minSigners > 65535) throw new Error("min_signers does not fit into identifier space");
+	const groupParticipants = require_common.buildGroupParticipants(registry, owner, sortedParticipants);
+	const coordinator = require_common.groupParticipantFromRegistry(registry, owner, details.invitation.sender());
+	const isPosting = options.storageSelection !== void 0;
+	let responseBody;
+	let contributions;
+	if (options.rejectReason === void 0 && isPosting) {
+		const [round1Secret, round1Package] = require_frost_index.dkgPart1(identifier, total, minSigners, require_frost_index.createRng());
+		contributions = persistRound1State(registryPath, details.invitation.groupId(), round1Secret, round1Package);
+		responseBody = buildResponseBody(details.invitation.groupId(), owner.xid(), nextResponseArid, round1Package);
+		const groupRecord = new require_registry_index.GroupRecord(details.invitation.charter(), details.invitation.minSigners(), coordinator, groupParticipants);
+		groupRecord.setContributions(contributions);
+		groupRecord.setListeningAtArid(nextResponseArid);
+		registry.recordGroup(details.invitation.groupId(), groupRecord);
+		registry.save(registryPath);
+	} else if (options.rejectReason === void 0) {
+		const [, round1Package] = require_frost_index.dkgPart1(identifier, total, minSigners, require_frost_index.createRng());
+		responseBody = buildResponseBody(details.invitation.groupId(), owner.xid(), nextResponseArid, round1Package);
+	} else responseBody = buildResponseBody(details.invitation.groupId(), owner.xid(), nextResponseArid, void 0);
+	const signerPrivateKeys = owner.xidDocument().inceptionPrivateKeys();
+	if (signerPrivateKeys === void 0) throw new Error("Owner XID document has no signing keys");
+	let sealed;
+	if (options.rejectReason !== void 0) {
+		const errorBody = _bcts_envelope.Envelope.new("dkgInviteReject").addAssertion("group", details.invitation.groupId()).addAssertion("response_arid", nextResponseArid).addAssertion("reason", options.rejectReason);
+		sealed = _bcts_gstp.SealedResponse.newFailure(details.invitation.requestId(), owner.xidDocument()).withError(errorBody).withState(nextResponseArid);
+	} else sealed = _bcts_gstp.SealedResponse.newSuccess(details.invitation.requestId(), owner.xidDocument()).withResult(responseBody).withState(nextResponseArid);
+	const peerContinuation = details.invitation.peerContinuation();
+	if (peerContinuation !== void 0) sealed = sealed.withPeerContinuation(peerContinuation);
+	if (options.storageSelection !== void 0) {
+		const responseEnvelope = sealed.toEnvelope(details.invitation.validUntil(), signerPrivateKeys, details.invitation.sender());
+		const responseTarget = details.invitation.responseArid();
+		await require_busy.putWithIndicator(await require_storage.createStorageClient(options.storageSelection), responseTarget, responseEnvelope, "Round 1 Response", options.verbose ?? false);
+		if (options.verbose === true) {
+			console.log(`Sent round 1 response`);
+			console.log(`Listening at: ${nextResponseArid.urString()}`);
+		}
+		return {
+			accepted: options.rejectReason === void 0,
+			listeningArid: nextResponseArid.urString()
+		};
+	} else if (options.preview === true) {
+		const envelopeUr = sealed.toEnvelope(void 0, signerPrivateKeys, void 0).urString();
+		console.log(envelopeUr);
+		return {
+			accepted: options.rejectReason === void 0,
+			envelopeUr
+		};
+	} else {
+		const envelopeUr = sealed.toEnvelope(details.invitation.validUntil(), signerPrivateKeys, details.invitation.sender()).urString();
+		console.log(envelopeUr);
+		return {
+			accepted: options.rejectReason === void 0,
+			envelopeUr
+		};
+	}
+}
+//#endregion
+Object.defineProperty(exports, "round1", {
+	enumerable: true,
+	get: function() {
+		return round1;
+	}
+});
+Object.defineProperty(exports, "round1_exports", {
+	enumerable: true,
+	get: function() {
+		return round1_exports;
+	}
+});
+
+//# sourceMappingURL=round1-CWSXZx5R.cjs.map

package/dist/round1-CWSXZx5R.cjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"round1-CWSXZx5R.cjs","names":["parseAridUr","getWithIndicator","createStorageClient","parseEnvelopeUr","Envelope","serde","JSONWrapper","bytesToHex","Ed25519Sha512","groupStateDir","path","ContributionPaths","resolveRegistryPath","Registry","resolveSender","ARID","decodeInviteDetails","CborDate","compareXidBytes","identifierFromU16","buildGroupParticipants","groupParticipantFromRegistry","dkgPart1","createRng","GroupRecord","SealedResponse","putWithIndicator"],"sources":["../src/cmd/dkg/participant/round1.ts"],"sourcesContent":["/**\n * Copyright © 2023-2026 Blockchain Commons, LLC\n * Copyright © 2025-2026 Parity Technologies\n *\n *\n * DKG participant round 1 command.\n *\n * Port of cmd/dkg/participant/round1.rs from frost-hubert-rust.\n *\n * @module\n */\n\nimport * as fs from \"node:fs\";\nimport * as path from \"node:path\";\n\nimport { ARID, JSON as JSONWrapper, type XID } from \"@bcts/components\";\nimport { compareXidBytes } from \"../../../dkg/proposed-participant.js\";\nimport { Envelope } from \"@bcts/envelope\";\nimport { SealedResponse } from \"@bcts/gstp\";\nimport type { XIDDocument } from \"@bcts/xid\";\n\nimport {\n  ContributionPaths,\n  GroupRecord,\n  Registry,\n  resolveRegistryPath,\n} from \"../../../registry/index.js\";\nimport { getWithIndicator, putWithIndicator } from \"../../busy.js\";\nimport { createStorageClient, type StorageClient, type StorageSelection } from \"../../storage.js\";\nimport { groupStateDir } from \"../../common.js\";\nimport {\n  buildGroupParticipants,\n  groupParticipantFromRegistry,\n  parseAridUr,\n  parseEnvelopeUr,\n  resolveSender,\n} from \"../common.js\";\nimport {\n  dkgPart1,\n  identifierFromU16,\n  createRng,\n  bytesToHex,\n  type DkgRound1Package,\n  type DkgRound1SecretPackage,\n} from \"../../../frost/index.js\";\nimport { Ed25519Sha512, serde } from \"@frosts/ed25519\";\nimport { decodeInviteDetails } from \"./receive.js\";\nimport { CborDate } from \"@bcts/dcbor\";\n\n/**\n * Options for the DKG round1 command.\n */\nexport interface DkgRound1Options {\n  registryPath?: string;\n  timeoutSeconds?: number;\n  responseArid?: string;\n  preview?: boolean;\n  rejectReason?: string;\n  sender?: string;\n  invite: string;\n  storageSelection?: StorageSelection;\n  verbose?: boolean;\n}\n\n/**\n * Result of the DKG round1 command.\n */\nexport interface DkgRound1Result {\n  accepted: boolean;\n  listeningArid?: string;\n  envelopeUr?: string;\n}\n\n/**\n * Resolve an invite envelope from either storage (ARID) or direct UR.\n *\n * Port of `resolve_invite_envelope()` from cmd/dkg/participant/round1.rs lines 256-288.\n */\nasync function resolveInviteEnvelope(\n  selection: StorageSelection | undefined,\n  invite: string,\n  timeout?: number,\n): Promise<Envelope> {\n  if (selection !== undefined) {\n    // Try to parse as ARID\n    try {\n      const arid = parseAridUr(invite);\n      const client = await createStorageClient(selection);\n      const envelope = await getWithIndicator(client, arid, \"Invite\", timeout, false);\n      if (envelope === null || envelope === undefined) {\n        throw new Error(\"Invite not found in Hubert storage\");\n      }\n      return envelope;\n    } catch (e) {\n      // Not an ARID, fall through to envelope parsing\n      if (e instanceof Error && e.message.includes(\"Invite not found in Hubert storage\")) {\n        throw e;\n      }\n    }\n\n    if (timeout !== undefined) {\n      throw new Error(\"--timeout is only valid when retrieving invites from Hubert\");\n    }\n\n    return parseEnvelopeUr(invite);\n  }\n\n  // No storage selection\n  try {\n    parseAridUr(invite);\n    throw new Error(\"Hubert storage parameters are required to retrieve invites by ARID\");\n  } catch (e) {\n    // Not an ARID, parse as envelope\n    if (e instanceof Error && e.message.includes(\"Hubert storage parameters are required\")) {\n      throw e;\n    }\n  }\n\n  return parseEnvelopeUr(invite);\n}\n\n/**\n * Build the response body envelope.\n *\n * Port of `build_response_body()` from cmd/dkg/participant/round1.rs lines 290-308.\n */\nfunction buildResponseBody(\n  groupId: ARID,\n  participant: XID,\n  responseArid: ARID,\n  round1Package: DkgRound1Package | undefined,\n): Envelope {\n  let envelope = Envelope.unit()\n    .addType(\"dkgRound1Response\")\n    .addAssertion(\"group\", groupId)\n    .addAssertion(\"participant\", participant)\n    .addAssertion(\"response_arid\", responseArid);\n\n  if (round1Package !== undefined) {\n    // Serialize the package to JSON and wrap as CBOR JSON\n    const packageJson = serde.round1PackageToJson(round1Package);\n    const jsonStr = globalThis.JSON.stringify(packageJson);\n    const jsonBytes = new TextEncoder().encode(jsonStr);\n    const jsonWrapper = JSONWrapper.fromData(jsonBytes);\n    // Pass the JSONWrapper directly - it implements CborTaggedEncodable\n    envelope = envelope.addAssertion(\"round1_package\", jsonWrapper);\n  }\n\n  return envelope;\n}\n\n/**\n * Serialize round 1 secret package to JSON-compatible format.\n *\n * The @frosts/ed25519 serde module doesn't provide a serializer for SecretPackage,\n * so we manually serialize it here.\n */\nfunction serializeRound1SecretPackage(secret: DkgRound1SecretPackage): Record<string, unknown> {\n  // Mirrors the on-disk shape produced by Rust\n  // `serde_json::to_vec_pretty(&frost::keys::dkg::round1::SecretPackage)`\n  // (see `frost-rust/frost-core/src/keys/dkg.rs:120-139`):\n  //\n  //   {\n  //     \"identifier\": \"<lowercase hex scalar>\",\n  //     \"coefficients\": [\"<hex>\", \"<hex>\", ...],\n  //     \"commitment\": [\"<hex>\", \"<hex>\", ...],\n  //     \"min_signers\": <u16>,\n  //     \"max_signers\": <u16>\n  //   }\n  //\n  // `frost::keys::dkg::round1::SecretPackage` is `#[serde(deny_unknown_fields)]`\n  // and has no `header` field (the secret package is private to the\n  // participant). The earlier port emitted a top-level `header` which\n  // would fail `deny_unknown_fields` validation if Rust ever loaded\n  // the file.\n  //\n  // `Identifier`/`SerializableScalar` serialize via\n  // `serdect::array::serialize_hex_lower_or_bin` → lowercase hex for\n  // JSON, which `bytesToHex` produces.\n  const coefficients = secret.coefficients();\n  const serializedCoefficients = coefficients.map((c: unknown) =>\n    bytesToHex(\n      Ed25519Sha512.serializeScalar(c as Parameters<typeof Ed25519Sha512.serializeScalar>[0]),\n    ),\n  );\n\n  const commitment = secret.commitment;\n  const commitmentCoefficients = commitment.serialize().map((c: Uint8Array) => bytesToHex(c));\n\n  return {\n    identifier: bytesToHex(secret.identifier.serialize()),\n    coefficients: serializedCoefficients,\n    commitment: commitmentCoefficients,\n    min_signers: secret.minSigners,\n    max_signers: secret.maxSigners,\n  };\n}\n\n/**\n * Persist round 1 state to disk.\n *\n * Port of `persist_round1_state()` from cmd/dkg/participant/round1.rs lines 310-337.\n */\nfunction persistRound1State(\n  registryPath: string,\n  groupId: ARID,\n  round1Secret: DkgRound1SecretPackage,\n  round1Package: DkgRound1Package,\n): ContributionPaths {\n  const dir = groupStateDir(registryPath, groupId.hex());\n  fs.mkdirSync(dir, { recursive: true });\n\n  const secretPath = path.join(dir, \"round1_secret.json\");\n  const packagePath = path.join(dir, \"round1_package.json\");\n\n  // Serialize the secret package manually since serde doesn't provide it\n  const secretJson = serializeRound1SecretPackage(round1Secret);\n  // Serialize the public package using the standard serde function\n  const packageJson = serde.round1PackageToJson(round1Package);\n\n  fs.writeFileSync(secretPath, globalThis.JSON.stringify(secretJson, null, 2));\n  fs.writeFileSync(packagePath, globalThis.JSON.stringify(packageJson, null, 2));\n\n  return new ContributionPaths({\n    round1Secret: secretPath,\n    round1Package: packagePath,\n    round2Secret: undefined,\n    keyPackage: undefined,\n  });\n}\n\n/**\n * Execute the DKG participant round 1 command.\n *\n * Responds to the DKG invite with commitment packages.\n *\n * Port of `CommandArgs::exec()` from cmd/dkg/participant/round1.rs lines 66-254.\n */\nexport async function round1(\n  _client: StorageClient | undefined,\n  options: DkgRound1Options,\n  cwd: string,\n): Promise<DkgRound1Result> {\n  // Validate options\n  if (options.storageSelection === undefined && options.timeoutSeconds !== undefined) {\n    throw new Error(\"--timeout requires Hubert storage parameters\");\n  }\n  if (options.storageSelection !== undefined && options.preview === true) {\n    throw new Error(\"--preview cannot be used with Hubert storage options\");\n  }\n\n  const registryPath = resolveRegistryPath(options.registryPath, cwd);\n  const registry = Registry.load(registryPath);\n\n  const owner = registry.owner();\n  if (!owner) {\n    throw new Error(\"Registry owner with private keys is required\");\n  }\n\n  // Resolve expected sender if provided. Uses the shared helper from\n  // `cmd/dkg/common.ts` (mirrors Rust `resolve_sender`); the\n  // duplicated inline implementation that this previously called has\n  // been removed.\n  let expectedSender: XIDDocument | undefined;\n  if (options.sender !== undefined) {\n    expectedSender = resolveSender(registry, options.sender);\n  }\n\n  const nextResponseArid =\n    options.responseArid !== undefined ? parseAridUr(options.responseArid) : ARID.new();\n\n  // Resolve the invite envelope\n  const inviteEnvelope = await resolveInviteEnvelope(\n    options.storageSelection,\n    options.invite,\n    options.timeoutSeconds,\n  );\n\n  // Decode the invite details\n  const now = CborDate.now().datetime();\n  const details = decodeInviteDetails(\n    inviteEnvelope,\n    now,\n    registry,\n    owner.xidDocument(),\n    expectedSender,\n  );\n\n  // Sort participants by XID byte order (mirrors Rust `XID::cmp` —\n  // raw 32-byte lex compare). The earlier port used\n  // `xid.urString().localeCompare(...)`, which differs from byte\n  // order when bytes ≥ 0x80 are present and is locale-aware,\n  // producing different FROST identifier assignments and therefore\n  // different secret shares than Rust.\n  const sortedParticipants = [...details.participants].sort((a, b) =>\n    compareXidBytes(a.xid().toData(), b.xid().toData()),\n  );\n\n  const ownerIndex = sortedParticipants.findIndex(\n    (doc) => doc.xid().urString() === owner.xid().urString(),\n  );\n  if (ownerIndex === -1) {\n    throw new Error(\"Invite does not include the registry owner\");\n  }\n\n  const identifierIndex = ownerIndex + 1; // FROST uses 1-indexed identifiers\n  if (identifierIndex > 65535) {\n    throw new Error(\"Too many participants for identifiers\");\n  }\n  const identifier = identifierFromU16(identifierIndex);\n\n  const total = sortedParticipants.length;\n  if (total > 65535) {\n    throw new Error(\"Too many participants for FROST identifiers\");\n  }\n\n  const minSigners = details.invitation.minSigners();\n  if (minSigners > 65535) {\n    throw new Error(\"min_signers does not fit into identifier space\");\n  }\n\n  // Build group participants for the registry\n  const groupParticipants = buildGroupParticipants(registry, owner, sortedParticipants);\n  const coordinator = groupParticipantFromRegistry(registry, owner, details.invitation.sender());\n\n  // Check if we're posting to storage\n  const isPosting = options.storageSelection !== undefined;\n\n  // Build the response body\n  let responseBody: Envelope;\n  let contributions: ContributionPaths | undefined;\n\n  if (options.rejectReason === undefined && isPosting) {\n    // Actually posting - generate and persist round1 state\n    const [round1Secret, round1Package] = dkgPart1(identifier, total, minSigners, createRng());\n\n    contributions = persistRound1State(\n      registryPath,\n      details.invitation.groupId(),\n      round1Secret,\n      round1Package,\n    );\n\n    responseBody = buildResponseBody(\n      details.invitation.groupId(),\n      owner.xid(),\n      nextResponseArid,\n      round1Package,\n    );\n\n    // Create and save group record\n    const groupRecord = new GroupRecord(\n      details.invitation.charter(),\n      details.invitation.minSigners(),\n      coordinator,\n      groupParticipants,\n    );\n    groupRecord.setContributions(contributions);\n    groupRecord.setListeningAtArid(nextResponseArid);\n\n    registry.recordGroup(details.invitation.groupId(), groupRecord);\n    registry.save(registryPath);\n  } else if (options.rejectReason === undefined) {\n    // Preview mode - generate dummy round1 for envelope structure only\n    const [, round1Package] = dkgPart1(identifier, total, minSigners, createRng());\n\n    responseBody = buildResponseBody(\n      details.invitation.groupId(),\n      owner.xid(),\n      nextResponseArid,\n      round1Package,\n    );\n  } else {\n    // Rejecting - no round1 needed\n    responseBody = buildResponseBody(\n      details.invitation.groupId(),\n      owner.xid(),\n      nextResponseArid,\n      undefined,\n    );\n  }\n\n  // Build the sealed response\n  const signerPrivateKeys = owner.xidDocument().inceptionPrivateKeys();\n  if (signerPrivateKeys === undefined) {\n    throw new Error(\"Owner XID document has no signing keys\");\n  }\n\n  let sealed: SealedResponse;\n  if (options.rejectReason !== undefined) {\n    // Build rejection error body\n    const errorBody = Envelope.new(\"dkgInviteReject\")\n      .addAssertion(\"group\", details.invitation.groupId())\n      .addAssertion(\"response_arid\", nextResponseArid)\n      .addAssertion(\"reason\", options.rejectReason);\n\n    sealed = SealedResponse.newFailure(details.invitation.requestId(), owner.xidDocument())\n      .withError(errorBody)\n      .withState(nextResponseArid);\n  } else {\n    sealed = SealedResponse.newSuccess(details.invitation.requestId(), owner.xidDocument())\n      .withResult(responseBody)\n      .withState(nextResponseArid);\n  }\n\n  // Add peer continuation if present\n  const peerContinuation = details.invitation.peerContinuation();\n  if (peerContinuation !== undefined) {\n    sealed = sealed.withPeerContinuation(peerContinuation);\n  }\n\n  // Handle output based on storage selection\n  if (options.storageSelection !== undefined) {\n    const responseEnvelope = sealed.toEnvelope(\n      details.invitation.validUntil(),\n      signerPrivateKeys,\n      details.invitation.sender(),\n    );\n\n    const responseTarget = details.invitation.responseArid();\n    const client = await createStorageClient(options.storageSelection);\n\n    await putWithIndicator(\n      client,\n      responseTarget,\n      responseEnvelope,\n      \"Round 1 Response\",\n      options.verbose ?? false,\n    );\n\n    if (options.verbose === true) {\n      console.log(`Sent round 1 response`);\n      console.log(`Listening at: ${nextResponseArid.urString()}`);\n    }\n\n    return {\n      accepted: options.rejectReason === undefined,\n      listeningArid: nextResponseArid.urString(),\n    };\n  } else if (options.preview === true) {\n    // Show the GSTP response structure without encryption\n    const unsealedEnvelope = sealed.toEnvelope(undefined, signerPrivateKeys, undefined);\n    const envelopeUr = unsealedEnvelope.urString();\n    console.log(envelopeUr);\n\n    return {\n      accepted: options.rejectReason === undefined,\n      envelopeUr,\n    };\n  } else {\n    // Print the sealed envelope\n    const responseEnvelope = sealed.toEnvelope(\n      details.invitation.validUntil(),\n      signerPrivateKeys,\n      details.invitation.sender(),\n    );\n    const envelopeUr = responseEnvelope.urString();\n    console.log(envelopeUr);\n\n    return {\n      accepted: options.rejectReason === undefined,\n      envelopeUr,\n    };\n  }\n}\n\n// `resolveSenderXidDocument` removed — it was an inline duplicate of\n// Rust `resolve_sender(registry, input)`. The shared helper now lives\n// in `cmd/dkg/common.ts` and is imported above.\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA8EA,eAAe,sBACb,WACA,QACA,SACmB;AACnB,KAAI,cAAc,KAAA,GAAW;AAE3B,MAAI;GACF,MAAM,OAAOA,eAAAA,YAAY,OAAO;GAEhC,MAAM,WAAW,MAAMC,aAAAA,iBAAiB,MADnBC,gBAAAA,oBAAoB,UAAU,EACH,MAAM,UAAU,SAAS,MAAM;AAC/E,OAAI,aAAa,QAAQ,aAAa,KAAA,EACpC,OAAM,IAAI,MAAM,qCAAqC;AAEvD,UAAO;WACA,GAAG;AAEV,OAAI,aAAa,SAAS,EAAE,QAAQ,SAAS,qCAAqC,CAChF,OAAM;;AAIV,MAAI,YAAY,KAAA,EACd,OAAM,IAAI,MAAM,8DAA8D;AAGhF,SAAOC,eAAAA,gBAAgB,OAAO;;AAIhC,KAAI;AACF,iBAAA,YAAY,OAAO;AACnB,QAAM,IAAI,MAAM,qEAAqE;UAC9E,GAAG;AAEV,MAAI,aAAa,SAAS,EAAE,QAAQ,SAAS,yCAAyC,CACpF,OAAM;;AAIV,QAAOA,eAAAA,gBAAgB,OAAO;;;;;;;AAQhC,SAAS,kBACP,SACA,aACA,cACA,eACU;CACV,IAAI,WAAWC,eAAAA,SAAS,MAAM,CAC3B,QAAQ,oBAAoB,CAC5B,aAAa,SAAS,QAAQ,CAC9B,aAAa,eAAe,YAAY,CACxC,aAAa,iBAAiB,aAAa;AAE9C,KAAI,kBAAkB,KAAA,GAAW;EAE/B,MAAM,cAAcC,gBAAAA,MAAM,oBAAoB,cAAc;EAC5D,MAAM,UAAU,WAAW,KAAK,UAAU,YAAY;EACtD,MAAM,YAAY,IAAI,aAAa,CAAC,OAAO,QAAQ;EACnD,MAAM,cAAcC,iBAAAA,KAAY,SAAS,UAAU;AAEnD,aAAW,SAAS,aAAa,kBAAkB,YAAY;;AAGjE,QAAO;;;;;;;;AAST,SAAS,6BAA6B,QAAyD;CAuB7F,MAAM,yBADe,OAAO,cACe,CAAC,KAAK,MAC/CC,oBAAAA,WACEC,gBAAAA,cAAc,gBAAgB,EAAyD,CACxF,CACF;CAGD,MAAM,yBADa,OAAO,WACgB,WAAW,CAAC,KAAK,MAAkBD,oBAAAA,WAAW,EAAE,CAAC;AAE3F,QAAO;EACL,YAAYA,oBAAAA,WAAW,OAAO,WAAW,WAAW,CAAC;EACrD,cAAc;EACd,YAAY;EACZ,aAAa,OAAO;EACpB,aAAa,OAAO;EACrB;;;;;;;AAQH,SAAS,mBACP,cACA,SACA,cACA,eACmB;CACnB,MAAM,MAAME,eAAAA,cAAc,cAAc,QAAQ,KAAK,CAAC;AACtD,SAAG,UAAU,KAAK,EAAE,WAAW,MAAM,CAAC;CAEtC,MAAM,aAAaC,UAAK,KAAK,KAAK,qBAAqB;CACvD,MAAM,cAAcA,UAAK,KAAK,KAAK,sBAAsB;CAGzD,MAAM,aAAa,6BAA6B,aAAa;CAE7D,MAAM,cAAcL,gBAAAA,MAAM,oBAAoB,cAAc;AAE5D,SAAG,cAAc,YAAY,WAAW,KAAK,UAAU,YAAY,MAAM,EAAE,CAAC;AAC5E,SAAG,cAAc,aAAa,WAAW,KAAK,UAAU,aAAa,MAAM,EAAE,CAAC;AAE9E,QAAO,IAAIM,uBAAAA,kBAAkB;EAC3B,cAAc;EACd,eAAe;EACf,cAAc,KAAA;EACd,YAAY,KAAA;EACb,CAAC;;;;;;;;;AAUJ,eAAsB,OACpB,SACA,SACA,KAC0B;AAE1B,KAAI,QAAQ,qBAAqB,KAAA,KAAa,QAAQ,mBAAmB,KAAA,EACvE,OAAM,IAAI,MAAM,+CAA+C;AAEjE,KAAI,QAAQ,qBAAqB,KAAA,KAAa,QAAQ,YAAY,KAChE,OAAM,IAAI,MAAM,uDAAuD;CAGzE,MAAM,eAAeC,uBAAAA,oBAAoB,QAAQ,cAAc,IAAI;CACnE,MAAM,WAAWC,uBAAAA,SAAS,KAAK,aAAa;CAE5C,MAAM,QAAQ,SAAS,OAAO;AAC9B,KAAI,CAAC,MACH,OAAM,IAAI,MAAM,+CAA+C;CAOjE,IAAI;AACJ,KAAI,QAAQ,WAAW,KAAA,EACrB,kBAAiBC,eAAAA,cAAc,UAAU,QAAQ,OAAO;CAG1D,MAAM,mBACJ,QAAQ,iBAAiB,KAAA,IAAYd,eAAAA,YAAY,QAAQ,aAAa,GAAGe,iBAAAA,KAAK,KAAK;CAWrF,MAAM,UAAUC,gBAAAA,oBACd,MAT2B,sBAC3B,QAAQ,kBACR,QAAQ,QACR,QAAQ,eACT,EAGWC,YAAAA,SAAS,KAAK,CAAC,UAGtB,EACH,UACA,MAAM,aAAa,EACnB,eACD;CAQD,MAAM,qBAAqB,CAAC,GAAG,QAAQ,aAAa,CAAC,MAAM,GAAG,MAC5DC,6BAAAA,gBAAgB,EAAE,KAAK,CAAC,QAAQ,EAAE,EAAE,KAAK,CAAC,QAAQ,CAAC,CACpD;CAED,MAAM,aAAa,mBAAmB,WACnC,QAAQ,IAAI,KAAK,CAAC,UAAU,KAAK,MAAM,KAAK,CAAC,UAAU,CACzD;AACD,KAAI,eAAe,GACjB,OAAM,IAAI,MAAM,6CAA6C;CAG/D,MAAM,kBAAkB,aAAa;AACrC,KAAI,kBAAkB,MACpB,OAAM,IAAI,MAAM,wCAAwC;CAE1D,MAAM,aAAaC,oBAAAA,kBAAkB,gBAAgB;CAErD,MAAM,QAAQ,mBAAmB;AACjC,KAAI,QAAQ,MACV,OAAM,IAAI,MAAM,8CAA8C;CAGhE,MAAM,aAAa,QAAQ,WAAW,YAAY;AAClD,KAAI,aAAa,MACf,OAAM,IAAI,MAAM,iDAAiD;CAInE,MAAM,oBAAoBC,eAAAA,uBAAuB,UAAU,OAAO,mBAAmB;CACrF,MAAM,cAAcC,eAAAA,6BAA6B,UAAU,OAAO,QAAQ,WAAW,QAAQ,CAAC;CAG9F,MAAM,YAAY,QAAQ,qBAAqB,KAAA;CAG/C,IAAI;CACJ,IAAI;AAEJ,KAAI,QAAQ,iBAAiB,KAAA,KAAa,WAAW;EAEnD,MAAM,CAAC,cAAc,iBAAiBC,oBAAAA,SAAS,YAAY,OAAO,YAAYC,oBAAAA,WAAW,CAAC;AAE1F,kBAAgB,mBACd,cACA,QAAQ,WAAW,SAAS,EAC5B,cACA,cACD;AAED,iBAAe,kBACb,QAAQ,WAAW,SAAS,EAC5B,MAAM,KAAK,EACX,kBACA,cACD;EAGD,MAAM,cAAc,IAAIC,uBAAAA,YACtB,QAAQ,WAAW,SAAS,EAC5B,QAAQ,WAAW,YAAY,EAC/B,aACA,kBACD;AACD,cAAY,iBAAiB,cAAc;AAC3C,cAAY,mBAAmB,iBAAiB;AAEhD,WAAS,YAAY,QAAQ,WAAW,SAAS,EAAE,YAAY;AAC/D,WAAS,KAAK,aAAa;YAClB,QAAQ,iBAAiB,KAAA,GAAW;EAE7C,MAAM,GAAG,iBAAiBF,oBAAAA,SAAS,YAAY,OAAO,YAAYC,oBAAAA,WAAW,CAAC;AAE9E,iBAAe,kBACb,QAAQ,WAAW,SAAS,EAC5B,MAAM,KAAK,EACX,kBACA,cACD;OAGD,gBAAe,kBACb,QAAQ,WAAW,SAAS,EAC5B,MAAM,KAAK,EACX,kBACA,KAAA,EACD;CAIH,MAAM,oBAAoB,MAAM,aAAa,CAAC,sBAAsB;AACpE,KAAI,sBAAsB,KAAA,EACxB,OAAM,IAAI,MAAM,yCAAyC;CAG3D,IAAI;AACJ,KAAI,QAAQ,iBAAiB,KAAA,GAAW;EAEtC,MAAM,YAAYnB,eAAAA,SAAS,IAAI,kBAAkB,CAC9C,aAAa,SAAS,QAAQ,WAAW,SAAS,CAAC,CACnD,aAAa,iBAAiB,iBAAiB,CAC/C,aAAa,UAAU,QAAQ,aAAa;AAE/C,WAASqB,WAAAA,eAAe,WAAW,QAAQ,WAAW,WAAW,EAAE,MAAM,aAAa,CAAC,CACpF,UAAU,UAAU,CACpB,UAAU,iBAAiB;OAE9B,UAASA,WAAAA,eAAe,WAAW,QAAQ,WAAW,WAAW,EAAE,MAAM,aAAa,CAAC,CACpF,WAAW,aAAa,CACxB,UAAU,iBAAiB;CAIhC,MAAM,mBAAmB,QAAQ,WAAW,kBAAkB;AAC9D,KAAI,qBAAqB,KAAA,EACvB,UAAS,OAAO,qBAAqB,iBAAiB;AAIxD,KAAI,QAAQ,qBAAqB,KAAA,GAAW;EAC1C,MAAM,mBAAmB,OAAO,WAC9B,QAAQ,WAAW,YAAY,EAC/B,mBACA,QAAQ,WAAW,QAAQ,CAC5B;EAED,MAAM,iBAAiB,QAAQ,WAAW,cAAc;AAGxD,QAAMC,aAAAA,iBACJ,MAHmBxB,gBAAAA,oBAAoB,QAAQ,iBAAiB,EAIhE,gBACA,kBACA,oBACA,QAAQ,WAAW,MACpB;AAED,MAAI,QAAQ,YAAY,MAAM;AAC5B,WAAQ,IAAI,wBAAwB;AACpC,WAAQ,IAAI,iBAAiB,iBAAiB,UAAU,GAAG;;AAG7D,SAAO;GACL,UAAU,QAAQ,iBAAiB,KAAA;GACnC,eAAe,iBAAiB,UAAU;GAC3C;YACQ,QAAQ,YAAY,MAAM;EAGnC,MAAM,aADmB,OAAO,WAAW,KAAA,GAAW,mBAAmB,KAAA,EACtC,CAAC,UAAU;AAC9C,UAAQ,IAAI,WAAW;AAEvB,SAAO;GACL,UAAU,QAAQ,iBAAiB,KAAA;GACnC;GACD;QACI;EAOL,MAAM,aALmB,OAAO,WAC9B,QAAQ,WAAW,YAAY,EAC/B,mBACA,QAAQ,WAAW,QAAQ,CAEM,CAAC,UAAU;AAC9C,UAAQ,IAAI,WAAW;AAEvB,SAAO;GACL,UAAU,QAAQ,iBAAiB,KAAA;GACnC;GACD"}