npm - @bcts/frost-hubert - Versions diffs - 1.0.0-alpha.23 → 1.0.0-beta.1 - Mend

@bcts/frost-hubert 1.0.0-alpha.23 → 1.0.0-beta.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (165) hide show

package/README.md +1 -1
package/dist/bin/frost.cjs +344 -72
package/dist/bin/frost.cjs.map +1 -1
package/dist/bin/frost.mjs +344 -71
package/dist/bin/frost.mjs.map +1 -1
package/dist/busy-B_h0bNAJ.cjs +38 -0
package/dist/busy-B_h0bNAJ.cjs.map +1 -0
package/dist/busy-BlU8_pS2.mjs +27 -0
package/dist/busy-BlU8_pS2.mjs.map +1 -0
package/dist/cmd/index.cjs +27 -22
package/dist/cmd/index.d.cts +2 -2
package/dist/cmd/index.d.mts +2 -2
package/dist/cmd/index.mjs +6 -3
package/dist/cmd-CCVhHzG7.cjs +129 -0
package/dist/cmd-CCVhHzG7.cjs.map +1 -0
package/dist/cmd-DNsHd19v.mjs +112 -0
package/dist/cmd-DNsHd19v.mjs.map +1 -0
package/dist/common-7-BOgaTt.cjs +113 -0
package/dist/common-7-BOgaTt.cjs.map +1 -0
package/dist/common-Cf1UvJaP.mjs +282 -0
package/dist/common-Cf1UvJaP.mjs.map +1 -0
package/dist/common-CnvAUC2b.cjs +372 -0
package/dist/common-CnvAUC2b.cjs.map +1 -0
package/dist/common-DNrD_-EI.mjs +96 -0
package/dist/common-DNrD_-EI.mjs.map +1 -0
package/dist/dkg/index.cjs +6 -103
package/dist/dkg/index.cjs.map +1 -1
package/dist/dkg/index.d.cts +2 -2
package/dist/dkg/index.d.mts +2 -2
package/dist/dkg/index.mjs +4 -101
package/dist/dkg/index.mjs.map +1 -1
package/dist/finalize-BpC0rz93.mjs +389 -0
package/dist/finalize-BpC0rz93.mjs.map +1 -0
package/dist/finalize-Cb0obTSo.cjs +402 -0
package/dist/finalize-Cb0obTSo.cjs.map +1 -0
package/dist/finalize-DHEnKobp.cjs +303 -0
package/dist/finalize-DHEnKobp.cjs.map +1 -0
package/dist/finalize-DQ0VGUHO.cjs +265 -0
package/dist/finalize-DQ0VGUHO.cjs.map +1 -0
package/dist/finalize-DtRxHZ7H.mjs +290 -0
package/dist/finalize-DtRxHZ7H.mjs.map +1 -0
package/dist/finalize-T83Ko8nG.mjs +252 -0
package/dist/finalize-T83Ko8nG.mjs.map +1 -0
package/dist/frost/index.cjs +1 -1
package/dist/frost/index.cjs.map +1 -1
package/dist/frost/index.d.cts.map +1 -1
package/dist/frost/index.d.mts.map +1 -1
package/dist/frost/index.mjs +1 -1
package/dist/frost/index.mjs.map +1 -1
package/dist/{index-BJlwbPYu.d.cts → index-BErX9AZF.d.cts} +101 -79
package/dist/index-BErX9AZF.d.cts.map +1 -0
package/dist/{index-BkqLimZT.d.mts → index-BaUVw4b1.d.mts} +25 -2
package/dist/index-BaUVw4b1.d.mts.map +1 -0
package/dist/{index-BMbPgH0W.d.cts → index-CD50Qtgw.d.cts} +46 -2
package/dist/index-CD50Qtgw.d.cts.map +1 -0
package/dist/{index-DoV5HFvV.d.mts → index-CD50Qtgw.d.mts} +46 -2
package/dist/index-CD50Qtgw.d.mts.map +1 -0
package/dist/{index-Dzm1v4_4.d.mts → index-Drklne-Y.d.mts} +101 -79
package/dist/index-Drklne-Y.d.mts.map +1 -0
package/dist/{index-DmxfT59Y.d.cts → index-gkmZzEuD.d.cts} +25 -2
package/dist/index-gkmZzEuD.d.cts.map +1 -0
package/dist/index.cjs +30 -23
package/dist/index.cjs.map +1 -1
package/dist/index.d.cts +4 -4
package/dist/index.d.cts.map +1 -1
package/dist/index.d.mts +4 -4
package/dist/index.d.mts.map +1 -1
package/dist/index.mjs +8 -4
package/dist/index.mjs.map +1 -1
package/dist/invite-1tzg0B0P.cjs +274 -0
package/dist/invite-1tzg0B0P.cjs.map +1 -0
package/dist/invite-BLwtexAu.cjs +109 -0
package/dist/invite-BLwtexAu.cjs.map +1 -0
package/dist/invite-Be2v2SVc.mjs +96 -0
package/dist/invite-Be2v2SVc.mjs.map +1 -0
package/dist/invite-D8mQSnFz.mjs +219 -0
package/dist/invite-D8mQSnFz.mjs.map +1 -0
package/dist/parallel-PZiwHZT8.mjs +235 -0
package/dist/parallel-PZiwHZT8.mjs.map +1 -0
package/dist/parallel-szwYx-bi.cjs +318 -0
package/dist/parallel-szwYx-bi.cjs.map +1 -0
package/dist/proposed-participant-BvHNnpcZ.cjs +140 -0
package/dist/proposed-participant-BvHNnpcZ.cjs.map +1 -0
package/dist/proposed-participant-Detb823_.mjs +129 -0
package/dist/proposed-participant-Detb823_.mjs.map +1 -0
package/dist/receive-BR-knnGv.cjs +213 -0
package/dist/receive-BR-knnGv.cjs.map +1 -0
package/dist/receive-D_r4Mryr.cjs +190 -0
package/dist/receive-D_r4Mryr.cjs.map +1 -0
package/dist/receive-dkSCSGpl.mjs +188 -0
package/dist/receive-dkSCSGpl.mjs.map +1 -0
package/dist/receive-g8EhZF2Y.mjs +177 -0
package/dist/receive-g8EhZF2Y.mjs.map +1 -0
package/dist/registry/index.cjs +86 -11
package/dist/registry/index.cjs.map +1 -1
package/dist/registry/index.d.cts +1 -1
package/dist/registry/index.d.mts +1 -1
package/dist/registry/index.mjs +85 -10
package/dist/registry/index.mjs.map +1 -1
package/dist/{registry-loI1_Mh1.cjs → registry-CkIbA7nt.cjs} +79 -2
package/dist/registry-CkIbA7nt.cjs.map +1 -0
package/dist/{registry-CgrCZ4En.mjs → registry-DGjs4qDK.mjs} +74 -3
package/dist/registry-DGjs4qDK.mjs.map +1 -0
package/dist/round1-9FAqFvL5.cjs +465 -0
package/dist/round1-9FAqFvL5.cjs.map +1 -0
package/dist/round1-B8haiMM8.mjs +208 -0
package/dist/round1-B8haiMM8.mjs.map +1 -0
package/dist/round1-BOIE1E4O.mjs +452 -0
package/dist/round1-BOIE1E4O.mjs.map +1 -0
package/dist/round1-Bq0vweyQ.cjs +422 -0
package/dist/round1-Bq0vweyQ.cjs.map +1 -0
package/dist/round1-CXkXoVQU.cjs +208 -0
package/dist/round1-CXkXoVQU.cjs.map +1 -0
package/dist/round1-D8t7EzIo.mjs +373 -0
package/dist/round1-D8t7EzIo.mjs.map +1 -0
package/dist/round1-DriPu15x.cjs +221 -0
package/dist/round1-DriPu15x.cjs.map +1 -0
package/dist/round1-Y2kcVwnR.mjs +195 -0
package/dist/round1-Y2kcVwnR.mjs.map +1 -0
package/dist/round2-AMDYMUIg.cjs +305 -0
package/dist/round2-AMDYMUIg.cjs.map +1 -0
package/dist/round2-BHQKVJFo.cjs +410 -0
package/dist/round2-BHQKVJFo.cjs.map +1 -0
package/dist/round2-BfetYacV.mjs +450 -0
package/dist/round2-BfetYacV.mjs.map +1 -0
package/dist/round2-Cf5CJc_8.mjs +397 -0
package/dist/round2-Cf5CJc_8.mjs.map +1 -0
package/dist/round2-CvrmylN1.cjs +293 -0
package/dist/round2-CvrmylN1.cjs.map +1 -0
package/dist/round2-Dk_w97nl.cjs +499 -0
package/dist/round2-Dk_w97nl.cjs.map +1 -0
package/dist/round2-Z2JhMwxc.mjs +292 -0
package/dist/round2-Z2JhMwxc.mjs.map +1 -0
package/dist/round2-mF6UlkT-.mjs +280 -0
package/dist/round2-mF6UlkT-.mjs.map +1 -0
package/package.json +14 -14
package/src/bin/frost.ts +849 -128
package/src/cmd/common.ts +19 -1
package/src/cmd/dkg/common.ts +97 -10
package/src/cmd/dkg/coordinator/invite.ts +5 -2
package/src/cmd/dkg/participant/finalize.ts +51 -17
package/src/cmd/dkg/participant/round1.ts +39 -38
package/src/cmd/dkg/participant/round2.ts +60 -26
package/src/cmd/sign/coordinator/round2.ts +5 -1
package/src/cmd/sign/participant/finalize.ts +6 -2
package/src/cmd/sign/participant/receive.ts +5 -2
package/src/dkg/group-invite.ts +12 -2
package/src/dkg/proposed-participant.ts +32 -3
package/src/registry/owner-record.ts +12 -0
package/src/registry/participant-record.ts +35 -2
package/src/registry/registry-impl.ts +74 -18
package/dist/cmd-5yLeC_QL.mjs +0 -4708
package/dist/cmd-5yLeC_QL.mjs.map +0 -1
package/dist/cmd-BfZjC3Uh.cjs +0 -4847
package/dist/cmd-BfZjC3Uh.cjs.map +0 -1
package/dist/index-BJlwbPYu.d.cts.map +0 -1
package/dist/index-BMbPgH0W.d.cts.map +0 -1
package/dist/index-BkqLimZT.d.mts.map +0 -1
package/dist/index-DmxfT59Y.d.cts.map +0 -1
package/dist/index-DoV5HFvV.d.mts.map +0 -1
package/dist/index-Dzm1v4_4.d.mts.map +0 -1
package/dist/registry-CgrCZ4En.mjs.map +0 -1
package/dist/registry-loI1_Mh1.cjs.map +0 -1
/package/dist/{chunk-CZWwpsFl.cjs → chunk-DakpK96I.cjs} +0 -0
/package/dist/{chunk-CjcI7cDX.mjs → chunk-z9aeyW2b.mjs} +0 -0

package/dist/round2-Z2JhMwxc.mjs ADDED Viewed

@@ -0,0 +1,292 @@
+import { n as __require, t as __exportAll } from "./chunk-z9aeyW2b.mjs";
+import { Registry, resolveRegistryPath } from "./registry/index.mjs";
+import { c as parseAridUr } from "./common-Cf1UvJaP.mjs";
+import { n as putWithIndicator, t as getWithIndicator } from "./busy-BlU8_pS2.mjs";
+import { createSigningPackage, deserializeKeyPackage, deserializeSigningCommitments, identifierFromU16, serializeSignatureShare, serializeSigningCommitments, signingRound2 } from "./frost/index.mjs";
+import { n as signingStateDir } from "./common-DNrD_-EI.mjs";
+import { ARID, JSON as JSON$1, XID } from "@bcts/components";
+import { CborDate } from "@bcts/dcbor";
+import { Envelope, Function } from "@bcts/envelope";
+import * as fs from "node:fs";
+import * as path from "node:path";
+import { Ed25519Sha512, serde } from "@frosts/ed25519";
+import { Nonce, SigningNonces } from "@frosts/core";
+//#region src/cmd/sign/participant/round2.ts
+/**
+* Copyright © 2023-2026 Blockchain Commons, LLC
+* Copyright © 2025-2026 Parity Technologies
+*
+*
+* Sign participant round 2 command.
+*
+* Port of cmd/sign/participant/round2.rs from frost-hubert-rust.
+*
+* @module
+*/
+var round2_exports = /* @__PURE__ */ __exportAll({ round2: () => round2$1 });
+/**
+* Load receive state from sign_receive.json.
+*
+* Port of `load_receive_state()` from cmd/sign/participant/round2.rs.
+*/
+function loadReceiveState(registryPath, sessionId, groupHint) {
+	const base = path.dirname(registryPath);
+	const groupStateDir = path.join(base, "group-state");
+	let groupDirs;
+	if (groupHint) groupDirs = [[groupHint, path.join(groupStateDir, groupHint.hex())]];
+	else {
+		groupDirs = [];
+		if (fs.existsSync(groupStateDir)) {
+			for (const entry of fs.readdirSync(groupStateDir, { withFileTypes: true })) if (entry.isDirectory() && entry.name.length === 64 && /^[0-9a-f]+$/i.test(entry.name)) {
+				const groupId = ARID.fromHex(entry.name);
+				groupDirs.push([groupId, path.join(groupStateDir, entry.name)]);
+			}
+		}
+	}
+	const candidates = [];
+	for (const [groupId, groupDir] of groupDirs) {
+		const candidate = path.join(groupDir, "signing", sessionId.hex(), "sign_receive.json");
+		if (fs.existsSync(candidate)) candidates.push([groupId, candidate]);
+	}
+	if (candidates.length === 0) throw new Error("No sign_receive.json found for this session; run `frost sign participant receive` first");
+	if (candidates.length > 1) throw new Error("Multiple groups contain this session; use --group to disambiguate");
+	const [groupId, statePath] = candidates[0];
+	const raw = JSON.parse(fs.readFileSync(statePath, "utf-8"));
+	const getStr = (key) => {
+		const value = raw[key];
+		if (typeof value !== "string") throw new Error(`Missing or invalid ${key} in sign_receive.json`);
+		return value;
+	};
+	const sessionInState = parseAridUr(getStr("session"));
+	if (sessionInState.urString() !== sessionId.urString()) throw new Error(`Session ${sessionInState.urString()} in sign_receive.json does not match requested session ${sessionId.urString()}`);
+	const groupInState = parseAridUr(getStr("group"));
+	if (groupInState.urString() !== groupId.urString()) throw new Error(`Group ${groupInState.urString()} in sign_receive.json does not match directory group ${groupId.urString()}`);
+	const participantsVal = raw["participants"];
+	if (!participantsVal || !Array.isArray(participantsVal)) throw new Error("Missing participants in sign_receive.json");
+	const participants = [];
+	for (const entry of participantsVal) {
+		if (typeof entry !== "string") throw new Error("Invalid participant entry in sign_receive.json");
+		participants.push(XID.fromURString(entry));
+	}
+	const minSigners = raw["min_signers"];
+	if (typeof minSigners !== "number") throw new Error("Missing min_signers in sign_receive.json");
+	return {
+		groupId,
+		participants,
+		minSigners,
+		targetUr: getStr("target")
+	};
+}
+/**
+* Load commit state from commit.json (includes nonces).
+*
+* Port of `load_commit_state()` from cmd/sign/participant/round2.rs.
+*/
+function loadCommitState(registryPath, groupId, sessionId) {
+	const dir = signingStateDir(registryPath, groupId.hex(), sessionId.hex());
+	const statePath = path.join(dir, "commit.json");
+	if (!fs.existsSync(statePath)) throw new Error(`Commit state not found at ${statePath}. Run \`frost sign participant commit\` first.`);
+	const raw = JSON.parse(fs.readFileSync(statePath, "utf-8"));
+	const getStr = (key) => {
+		const value = raw[key];
+		if (typeof value !== "string") throw new Error(`Missing or invalid ${key} in commit.json`);
+		return value;
+	};
+	const sessionInState = parseAridUr(getStr("session"));
+	if (sessionInState.urString() !== sessionId.urString()) throw new Error(`Session ${sessionInState.urString()} in commit.json does not match requested session ${sessionId.urString()}`);
+	const nextShareArid = parseAridUr(getStr("next_share_arid"));
+	const targetUr = getStr("target");
+	const noncesRaw = raw["signing_nonces"];
+	if (!noncesRaw) throw new Error("Missing signing_nonces in commit.json");
+	const hidingNonce = Nonce.deserialize(Ed25519Sha512, serde.hexToBytes(noncesRaw["hiding"]));
+	const bindingNonce = Nonce.deserialize(Ed25519Sha512, serde.hexToBytes(noncesRaw["binding"]));
+	const signingNonces = SigningNonces.fromNonces(Ed25519Sha512, hidingNonce, bindingNonce);
+	const commitmentsRaw = raw["signing_commitments"];
+	if (!commitmentsRaw) throw new Error("Missing signing_commitments in commit.json");
+	return {
+		nextShareArid,
+		targetUr,
+		signingNonces,
+		signingCommitments: deserializeSigningCommitments(commitmentsRaw)
+	};
+}
+/**
+* Validate the incoming GSTP request.
+*
+* Port of request validation logic from cmd/sign/participant/round2.rs.
+*/
+function validateShareRequest(sealedRequest, sessionId, expectedCoordinator) {
+	const expectedFunction = Function.fromString("signRound2");
+	if (sealedRequest.function().equals(expectedFunction) !== true) throw new Error(`Unexpected request function: ${String(sealedRequest.function())}`);
+	if (sealedRequest.id().urString() !== sessionId.urString()) throw new Error(`Session ID mismatch (request ${sealedRequest.id().urString()}, expected ${sessionId.urString()})`);
+	if (sealedRequest.sender().xid().urString() !== expectedCoordinator.urString()) throw new Error(`Unexpected request sender: ${sealedRequest.sender().xid().urString()} (expected coordinator ${expectedCoordinator.urString()})`);
+}
+/**
+* Extract all commitments from the signRound2 request.
+*
+* Port of `parse_commitments()` from cmd/sign/participant/round2.rs.
+*/
+function extractCommitments(sealedRequest, receiveState) {
+	const commitments = /* @__PURE__ */ new Map();
+	const commitmentObjects = sealedRequest.objectsForParameter("commitment");
+	for (const entry of commitmentObjects) {
+		const xid = XID.fromTaggedCbor(entry.subject().tryLeaf());
+		const commitmentsObjects = entry.objectsForPredicate("commitments");
+		if (commitmentsObjects.length === 0) throw new Error(`Missing commitments for participant ${xid.urString()}`);
+		const commitmentsJson = JSON$1.fromTaggedCbor(commitmentsObjects[0].subject().tryLeaf());
+		const signingCommitments = deserializeSigningCommitments(JSON.parse(commitmentsJson.asStr()));
+		const xidUr = xid.urString();
+		if (commitments.has(xidUr)) throw new Error(`Duplicate commitments for participant ${xidUr}`);
+		commitments.set(xidUr, signingCommitments);
+	}
+	if (commitments.size === 0) throw new Error("signRound2 request contains no commitments");
+	const expectedSet = new Set(receiveState.participants.map((p) => p.urString()));
+	const actualSet = new Set(commitments.keys());
+	const missing = [];
+	const extra = [];
+	for (const xid of expectedSet) if (!actualSet.has(xid)) missing.push(xid);
+	for (const xid of actualSet) if (!expectedSet.has(xid)) extra.push(xid);
+	if (missing.length > 0 || extra.length > 0) throw new Error(`signRound2 commitments do not match session participants (missing: ${missing.join(", ")}; extra: ${extra.join(", ")})`);
+	return commitments;
+}
+/**
+* Build a map from XID to FROST identifier (sorted participant order).
+*
+* Port of `xid_identifier_map()` from cmd/sign/participant/round2.rs.
+*/
+function xidIdentifierMap(participants) {
+	const map = /* @__PURE__ */ new Map();
+	for (let i = 0; i < participants.length; i++) {
+		const identifier = identifierFromU16(i + 1);
+		map.set(participants[i].urString(), identifier);
+	}
+	return map;
+}
+/**
+* Build signing commitments with identifiers.
+*
+* Port of `commitments_with_identifiers()` from cmd/sign/participant/round2.rs.
+*/
+function commitmentsWithIdentifiers(commitments, xidToIdentifier) {
+	const mapped = /* @__PURE__ */ new Map();
+	for (const [xidUr, commits] of commitments) {
+		const identifier = xidToIdentifier.get(xidUr);
+		if (!identifier) throw new Error(`Unknown participant ${xidUr}`);
+		mapped.set(identifier, commits);
+	}
+	return mapped;
+}
+/**
+* Build the signRound2Response body envelope.
+*
+* Port of response body construction from cmd/sign/participant/round2.rs.
+*/
+function buildResponseBody(sessionId, signatureShare, finalizeArid) {
+	const shareHex = serializeSignatureShare(signatureShare);
+	const shareJson = JSON$1.fromString(JSON.stringify({ share: shareHex }));
+	return Envelope.unit().addType("signRound2Response").addAssertion("session", sessionId).addAssertion("signature_share", shareJson).addAssertion("response_arid", finalizeArid);
+}
+/**
+* Persist share state to share.json.
+*
+* Port of `persist_share_state()` from cmd/sign/participant/round2.rs.
+*/
+function persistShareState(registryPath, groupId, sessionId, responseArid, finalizeArid, signatureShare, commitments) {
+	const dir = signingStateDir(registryPath, groupId.hex(), sessionId.hex());
+	fs.mkdirSync(dir, { recursive: true });
+	const commitmentsJson = {};
+	for (const [xidUr, commits] of commitments) commitmentsJson[xidUr] = serializeSigningCommitments(commits);
+	const root = {
+		session: sessionId.urString(),
+		response_arid: responseArid.urString(),
+		finalize_arid: finalizeArid.urString(),
+		signature_share: { share: serializeSignatureShare(signatureShare) },
+		commitments: commitmentsJson
+	};
+	fs.writeFileSync(path.join(dir, "share.json"), JSON.stringify(root, null, 2));
+}
+/**
+* Execute the sign participant round 2 command.
+*
+* Receives round 2 request and sends signature share.
+*
+* Port of `CommandArgs::exec()` from cmd/sign/participant/round2.rs.
+*/
+async function round2$1(client, options, cwd) {
+	const registryPath = resolveRegistryPath(options.registryPath, cwd);
+	const registry = Registry.load(registryPath);
+	const owner = registry.owner();
+	if (!owner) throw new Error("Registry owner is required");
+	const ownerXidDocument = owner.xidDocument();
+	const sessionId = parseAridUr(options.sessionId);
+	const receiveState = loadReceiveState(registryPath, sessionId, options.groupId ? parseAridUr(options.groupId) : void 0);
+	const groupId = receiveState.groupId;
+	const groupRecord = registry.group(groupId);
+	if (!groupRecord) throw new Error("Group not found in registry");
+	if (groupRecord.minSigners() !== receiveState.minSigners) throw new Error(`Session min_signers ${receiveState.minSigners} does not match registry ${groupRecord.minSigners()}`);
+	const registryParticipants = new Set(groupRecord.participants().map((p) => p.xid().urString()));
+	const sessionParticipants = new Set(receiveState.participants.map((p) => p.urString()));
+	if (registryParticipants.size !== sessionParticipants.size || ![...registryParticipants].every((p) => sessionParticipants.has(p))) throw new Error("Session participants do not match registry group participants");
+	if (!sessionParticipants.has(owner.xid().urString())) throw new Error("This participant is not part of the signing session");
+	const listeningAtArid = groupRecord.listeningAtArid();
+	if (!listeningAtArid) throw new Error("No listening ARID for signRound2. Did you run `frost sign participant commit`?");
+	const commitState = loadCommitState(registryPath, groupId, sessionId);
+	if (commitState.nextShareArid.urString() !== listeningAtArid.urString()) throw new Error(`Listening ARID in registry (${listeningAtArid.urString()}) does not match persisted commit state (${commitState.nextShareArid.urString()})`);
+	if (commitState.targetUr !== receiveState.targetUr) throw new Error("Target envelope in commit state does not match persisted signInvite request");
+	const keyPackagePath = groupRecord.contributions().keyPackage;
+	if (!keyPackagePath) throw new Error("Key package path not found; did you finish DKG?");
+	const keyPackage = deserializeKeyPackage(JSON.parse(fs.readFileSync(keyPackagePath, "utf-8")).key_package);
+	const finalizeArid = ARID.new();
+	const targetDigest = Envelope.fromURString(receiveState.targetUr).subject().digest();
+	if (options.verbose === true) console.error("Fetching signRound2 request from Hubert...");
+	const requestEnvelope = await getWithIndicator(client, listeningAtArid, "signRound2 request", options.timeoutSeconds, options.verbose ?? false);
+	if (!requestEnvelope) throw new Error("signRound2 request not found in Hubert storage");
+	const signerPrivateKeys = ownerXidDocument.inceptionPrivateKeys();
+	if (!signerPrivateKeys) throw new Error("Owner XID document has no private keys");
+	const { SealedRequest: SealedRequestClass } = __require("@bcts/gstp");
+	const now = CborDate.now();
+	const sealedRequest = SealedRequestClass.tryFromEnvelope(requestEnvelope, void 0, now, signerPrivateKeys);
+	const expectedCoordinator = groupRecord.coordinator().xid();
+	validateShareRequest(sealedRequest, sessionId, expectedCoordinator);
+	const responseArid = sealedRequest.extractObjectForParameter("response_arid");
+	const commitmentsByXid = extractCommitments(sealedRequest, receiveState);
+	const myCommitments = commitmentsByXid.get(owner.xid().urString());
+	if (!myCommitments) throw new Error("signRound2 request missing commitments for this participant");
+	const myCommitmentsSerialized = serializeSigningCommitments(myCommitments);
+	const storedCommitmentsSerialized = serializeSigningCommitments(commitState.signingCommitments);
+	if (myCommitmentsSerialized.hiding !== storedCommitmentsSerialized.hiding || myCommitmentsSerialized.binding !== storedCommitmentsSerialized.binding) throw new Error("signRound2 request commitments do not match locally stored commitments");
+	const xidToIdentifier = xidIdentifierMap(receiveState.participants);
+	if (!xidToIdentifier.get(owner.xid().urString())) throw new Error("Identifier for participant not found");
+	if (keyPackage.minSigners !== receiveState.minSigners) throw new Error(`Key package min_signers ${keyPackage.minSigners} does not match session ${receiveState.minSigners}`);
+	if (commitmentsByXid.size < receiveState.minSigners) throw new Error(`signRound2 request contained ${commitmentsByXid.size} commitments but requires at least ${receiveState.minSigners} signers`);
+	const signatureShare = signingRound2(createSigningPackage(commitmentsWithIdentifiers(commitmentsByXid, xidToIdentifier), targetDigest.data()), commitState.signingNonces, keyPackage);
+	const responseBody = buildResponseBody(sessionId, signatureShare, finalizeArid);
+	const { SealedResponse: SealedResponseClass } = __require("@bcts/gstp");
+	const sealedResponse = SealedResponseClass.newSuccess(sealedRequest.id(), ownerXidDocument).withResult(responseBody);
+	if (options.preview === true) {
+		const unsealed = sealedResponse.toEnvelope(void 0, signerPrivateKeys, void 0);
+		console.log(unsealed.urString());
+		return { listeningArid: finalizeArid.urString() };
+	}
+	let coordinatorDoc;
+	if (expectedCoordinator.urString() === owner.xid().urString()) coordinatorDoc = ownerXidDocument;
+	else {
+		const coordinatorRecord = registry.participant(expectedCoordinator);
+		if (!coordinatorRecord) throw new Error(`Coordinator ${expectedCoordinator.urString()} not found in registry`);
+		coordinatorDoc = coordinatorRecord.xidDocument();
+	}
+	const expiry = CborDate.withDurationFromNow(3600);
+	await putWithIndicator(client, responseArid, sealedResponse.toEnvelope(expiry, signerPrivateKeys, coordinatorDoc), "Signature Share", options.verbose ?? false);
+	persistShareState(registryPath, groupId, sessionId, responseArid, finalizeArid, signatureShare, commitmentsByXid);
+	const groupRecordMutable = registry.group(groupId);
+	if (groupRecordMutable) {
+		groupRecordMutable.setListeningAtArid(finalizeArid);
+		registry.save(registryPath);
+	}
+	if (options.verbose === true) console.error(`Posted signature share to ${responseArid.urString()}`);
+	return { listeningArid: finalizeArid.urString() };
+}
+//#endregion
+export { round2_exports as n, round2$1 as t };
+//# sourceMappingURL=round2-Z2JhMwxc.mjs.map

package/dist/round2-Z2JhMwxc.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"round2-Z2JhMwxc.mjs","names":["ARIDClass","XIDClass","EnvelopeFunction","JSONComponent","round2"],"sources":["../src/cmd/sign/participant/round2.ts"],"sourcesContent":["/**\n * Copyright © 2023-2026 Blockchain Commons, LLC\n * Copyright © 2025-2026 Parity Technologies\n *\n *\n * Sign participant round 2 command.\n *\n * Port of cmd/sign/participant/round2.rs from frost-hubert-rust.\n *\n * @module\n */\n\n/* eslint-disable @typescript-eslint/no-unsafe-call */\n\nimport * as fs from \"node:fs\";\nimport * as path from \"node:path\";\n\nimport {\n type ARID,\n type XID,\n XID as XIDClass,\n ARID as ARIDClass,\n JSON as JSONComponent,\n type Digest,\n} from \"@bcts/components\";\nimport { CborDate } from \"@bcts/dcbor\";\nimport { Envelope, Function as EnvelopeFunction } from \"@bcts/envelope\";\nimport { type XIDDocument } from \"@bcts/xid\";\n\nimport { Registry, resolveRegistryPath } from \"../../../registry/index.js\";\nimport { getWithIndicator, putWithIndicator } from \"../../busy.js\";\nimport { type StorageClient } from \"../../storage.js\";\nimport { parseAridUr } from \"../../dkg/common.js\";\nimport { signingStateDir } from \"../common.js\";\nimport {\n signingRound2,\n createSigningPackage,\n deserializeKeyPackage,\n deserializeSigningCommitments,\n serializeSignatureShare,\n serializeSigningCommitments,\n identifierFromU16,\n type SerializedKeyPackage,\n type SerializedSigningCommitments,\n type FrostIdentifier,\n type FrostKeyPackage,\n type Ed25519SigningCommitments,\n type Ed25519SignatureShare,\n} from \"../../../frost/index.js\";\n\n// Import nonces from @frosts/core\nimport { Nonce, SigningNonces } from \"@frosts/core\";\nimport { Ed25519Sha512, serde } from \"@frosts/ed25519\";\n\n/**\n * Options for the sign round2 command.\n */\nexport interface SignRound2Options {\n registryPath?: string;\n sessionId: string;\n groupId?: string;\n timeoutSeconds?: number;\n preview?: boolean;\n verbose?: boolean;\n}\n\n/**\n * Result of the sign round2 command.\n */\nexport interface SignRound2Result {\n listeningArid: string;\n}\n\n/**\n * ReceiveState loaded from sign_receive.json.\n *\n * Port of `struct ReceiveState` from cmd/sign/participant/round2.rs.\n */\ninterface ReceiveState {\n groupId: ARID;\n participants: XID[];\n minSigners: number;\n targetUr: string;\n}\n\n/**\n * CommitState loaded from commit.json.\n *\n * Port of `struct CommitState` from cmd/sign/participant/round2.rs.\n */\ninterface CommitState {\n nextShareArid: ARID;\n targetUr: string;\n signingNonces: SigningNonces<typeof Ed25519Sha512>;\n signingCommitments: Ed25519SigningCommitments;\n}\n\n/**\n * Sealed request interface for GSTP.\n */\ninterface SealedRequestInstance {\n function: () => unknown;\n id: () => ARID;\n sender: () => { xid: () => XID };\n extractObjectForParameter: <T>(name: string) => T;\n objectsForParameter: (name: string) => Envelope[];\n}\n\n/**\n * Load receive state from sign_receive.json.\n *\n * Port of `load_receive_state()` from cmd/sign/participant/round2.rs.\n */\nfunction loadReceiveState(registryPath: string, sessionId: ARID, groupHint?: ARID): ReceiveState {\n const base = path.dirname(registryPath);\n const groupStateDir = path.join(base, \"group-state\");\n\n // Find candidate paths\n let groupDirs: [ARID, string][];\n\n if (groupHint) {\n groupDirs = [[groupHint, path.join(groupStateDir, groupHint.hex())]];\n } else {\n groupDirs = [];\n if (fs.existsSync(groupStateDir)) {\n for (const entry of fs.readdirSync(groupStateDir, { withFileTypes: true })) {\n if (entry.isDirectory() && entry.name.length === 64 && /^[0-9a-f]+$/i.test(entry.name)) {\n const groupId = ARIDClass.fromHex(entry.name);\n groupDirs.push([groupId, path.join(groupStateDir, entry.name)]);\n }\n }\n }\n }\n\n const candidates: [ARID, string][] = [];\n for (const [groupId, groupDir] of groupDirs) {\n const candidate = path.join(groupDir, \"signing\", sessionId.hex(), \"sign_receive.json\");\n if (fs.existsSync(candidate)) {\n candidates.push([groupId, candidate]);\n }\n }\n\n if (candidates.length === 0) {\n throw new Error(\n \"No sign_receive.json found for this session; run `frost sign participant receive` first\",\n );\n }\n if (candidates.length > 1) {\n throw new Error(\"Multiple groups contain this session; use --group to disambiguate\");\n }\n\n const [groupId, statePath] = candidates[0];\n const raw = JSON.parse(fs.readFileSync(statePath, \"utf-8\")) as Record<string, unknown>;\n\n const getStr = (key: string): string => {\n const value = raw[key];\n if (typeof value !== \"string\") {\n throw new Error(`Missing or invalid ${key} in sign_receive.json`);\n }\n return value;\n };\n\n // Validate session matches\n const sessionInState = parseAridUr(getStr(\"session\"));\n if (sessionInState.urString() !== sessionId.urString()) {\n throw new Error(\n `Session ${sessionInState.urString()} in sign_receive.json does not match requested session ${sessionId.urString()}`,\n );\n }\n\n // Validate group matches\n const groupInState = parseAridUr(getStr(\"group\"));\n if (groupInState.urString() !== groupId.urString()) {\n throw new Error(\n `Group ${groupInState.urString()} in sign_receive.json does not match directory group ${groupId.urString()}`,\n );\n }\n\n // Parse participants\n const participantsVal = raw[\"participants\"] as string[] | undefined;\n if (!participantsVal || !Array.isArray(participantsVal)) {\n throw new Error(\"Missing participants in sign_receive.json\");\n }\n\n const participants: XID[] = [];\n for (const entry of participantsVal) {\n if (typeof entry !== \"string\") {\n throw new Error(\"Invalid participant entry in sign_receive.json\");\n }\n participants.push(XIDClass.fromURString(entry));\n }\n\n // Parse min_signers\n const minSigners = raw[\"min_signers\"];\n if (typeof minSigners !== \"number\") {\n throw new Error(\"Missing min_signers in sign_receive.json\");\n }\n\n const targetUr = getStr(\"target\");\n\n return {\n groupId,\n participants,\n minSigners,\n targetUr,\n };\n}\n\n/**\n * Load commit state from commit.json (includes nonces).\n *\n * Port of `load_commit_state()` from cmd/sign/participant/round2.rs.\n */\nfunction loadCommitState(registryPath: string, groupId: ARID, sessionId: ARID): CommitState {\n const dir = signingStateDir(registryPath, groupId.hex(), sessionId.hex());\n const statePath = path.join(dir, \"commit.json\");\n\n if (!fs.existsSync(statePath)) {\n throw new Error(\n `Commit state not found at ${statePath}. Run \\`frost sign participant commit\\` first.`,\n );\n }\n\n const raw = JSON.parse(fs.readFileSync(statePath, \"utf-8\")) as Record<string, unknown>;\n\n const getStr = (key: string): string => {\n const value = raw[key];\n if (typeof value !== \"string\") {\n throw new Error(`Missing or invalid ${key} in commit.json`);\n }\n return value;\n };\n\n // Validate session matches\n const sessionInState = parseAridUr(getStr(\"session\"));\n if (sessionInState.urString() !== sessionId.urString()) {\n throw new Error(\n `Session ${sessionInState.urString()} in commit.json does not match requested session ${sessionId.urString()}`,\n );\n }\n\n const nextShareArid = parseAridUr(getStr(\"next_share_arid\"));\n const targetUr = getStr(\"target\");\n\n // Deserialize signing nonces\n const noncesRaw = raw[\"signing_nonces\"] as Record<string, string> | undefined;\n if (!noncesRaw) {\n throw new Error(\"Missing signing_nonces in commit.json\");\n }\n\n const hidingNonce = Nonce.deserialize(Ed25519Sha512, serde.hexToBytes(noncesRaw[\"hiding\"]));\n const bindingNonce = Nonce.deserialize(Ed25519Sha512, serde.hexToBytes(noncesRaw[\"binding\"]));\n const signingNonces = SigningNonces.fromNonces(Ed25519Sha512, hidingNonce, bindingNonce);\n\n // Deserialize signing commitments\n const commitmentsRaw = raw[\"signing_commitments\"] as SerializedSigningCommitments | undefined;\n if (!commitmentsRaw) {\n throw new Error(\"Missing signing_commitments in commit.json\");\n }\n const signingCommitments = deserializeSigningCommitments(commitmentsRaw);\n\n return {\n nextShareArid,\n targetUr,\n signingNonces,\n signingCommitments,\n };\n}\n\n/**\n * Validate the incoming GSTP request.\n *\n * Port of request validation logic from cmd/sign/participant/round2.rs.\n */\nfunction validateShareRequest(\n sealedRequest: SealedRequestInstance,\n sessionId: ARID,\n expectedCoordinator: XID,\n): void {\n // Check function\n const expectedFunction = EnvelopeFunction.fromString(\"signRound2\");\n const actualFunction = sealedRequest.function();\n // @ts-expect-error - function() returns unknown, but it should have .equals()\n if (actualFunction.equals(expectedFunction) !== true) {\n throw new Error(`Unexpected request function: ${String(sealedRequest.function())}`);\n }\n\n // Check session ID\n if (sealedRequest.id().urString() !== sessionId.urString()) {\n throw new Error(\n `Session ID mismatch (request ${sealedRequest.id().urString()}, expected ${sessionId.urString()})`,\n );\n }\n\n // Check sender (coordinator)\n if (sealedRequest.sender().xid().urString() !== expectedCoordinator.urString()) {\n throw new Error(\n `Unexpected request sender: ${sealedRequest.sender().xid().urString()} (expected coordinator ${expectedCoordinator.urString()})`,\n );\n }\n}\n\n/**\n * Extract all commitments from the signRound2 request.\n *\n * Port of `parse_commitments()` from cmd/sign/participant/round2.rs.\n */\nfunction extractCommitments(\n sealedRequest: SealedRequestInstance,\n receiveState: ReceiveState,\n): Map<string, Ed25519SigningCommitments> {\n const commitments = new Map<string, Ed25519SigningCommitments>();\n\n const commitmentObjects = sealedRequest.objectsForParameter(\"commitment\");\n\n for (const entry of commitmentObjects) {\n // Extract XID subject\n const xid = XIDClass.fromTaggedCbor(entry.subject().tryLeaf());\n\n // Extract commitments from the \"commitments\" predicate\n const commitmentsObjects = entry.objectsForPredicate(\"commitments\");\n if (commitmentsObjects.length === 0) {\n throw new Error(`Missing commitments for participant ${xid.urString()}`);\n }\n\n const commitmentsJson = JSONComponent.fromTaggedCbor(commitmentsObjects[0].subject().tryLeaf());\n const serializedCommitments = JSON.parse(\n commitmentsJson.asStr(),\n ) as SerializedSigningCommitments;\n const signingCommitments = deserializeSigningCommitments(serializedCommitments);\n\n const xidUr = xid.urString();\n if (commitments.has(xidUr)) {\n throw new Error(`Duplicate commitments for participant ${xidUr}`);\n }\n commitments.set(xidUr, signingCommitments);\n }\n\n if (commitments.size === 0) {\n throw new Error(\"signRound2 request contains no commitments\");\n }\n\n // Validate expected participant set\n const expectedSet = new Set(receiveState.participants.map((p) => p.urString()));\n const actualSet = new Set(commitments.keys());\n\n const missing: string[] = [];\n const extra: string[] = [];\n\n for (const xid of expectedSet) {\n if (!actualSet.has(xid)) {\n missing.push(xid);\n }\n }\n for (const xid of actualSet) {\n if (!expectedSet.has(xid)) {\n extra.push(xid);\n }\n }\n\n if (missing.length > 0 || extra.length > 0) {\n throw new Error(\n `signRound2 commitments do not match session participants (missing: ${missing.join(\", \")}; extra: ${extra.join(\", \")})`,\n );\n }\n\n return commitments;\n}\n\n/**\n * Build a map from XID to FROST identifier (sorted participant order).\n *\n * Port of `xid_identifier_map()` from cmd/sign/participant/round2.rs.\n */\nfunction xidIdentifierMap(participants: XID[]): Map<string, FrostIdentifier> {\n const map = new Map<string, FrostIdentifier>();\n for (let i = 0; i < participants.length; i++) {\n const identifier = identifierFromU16(i + 1);\n map.set(participants[i].urString(), identifier);\n }\n return map;\n}\n\n/**\n * Build signing commitments with identifiers.\n *\n * Port of `commitments_with_identifiers()` from cmd/sign/participant/round2.rs.\n */\nfunction commitmentsWithIdentifiers(\n commitments: Map<string, Ed25519SigningCommitments>,\n xidToIdentifier: Map<string, FrostIdentifier>,\n): Map<FrostIdentifier, Ed25519SigningCommitments> {\n const mapped = new Map<FrostIdentifier, Ed25519SigningCommitments>();\n for (const [xidUr, commits] of commitments) {\n const identifier = xidToIdentifier.get(xidUr);\n if (!identifier) {\n throw new Error(`Unknown participant ${xidUr}`);\n }\n mapped.set(identifier, commits);\n }\n return mapped;\n}\n\n/**\n * Build the signRound2Response body envelope.\n *\n * Port of response body construction from cmd/sign/participant/round2.rs.\n */\nfunction buildResponseBody(\n sessionId: ARID,\n signatureShare: Ed25519SignatureShare,\n finalizeArid: ARID,\n): Envelope {\n const shareHex = serializeSignatureShare(signatureShare);\n const shareJson = JSONComponent.fromString(JSON.stringify({ share: shareHex }));\n\n return Envelope.unit()\n .addType(\"signRound2Response\")\n .addAssertion(\"session\", sessionId)\n .addAssertion(\"signature_share\", shareJson)\n .addAssertion(\"response_arid\", finalizeArid);\n}\n\n/**\n * Persist share state to share.json.\n *\n * Port of `persist_share_state()` from cmd/sign/participant/round2.rs.\n */\nfunction persistShareState(\n registryPath: string,\n groupId: ARID,\n sessionId: ARID,\n responseArid: ARID,\n finalizeArid: ARID,\n signatureShare: Ed25519SignatureShare,\n commitments: Map<string, Ed25519SigningCommitments>,\n): void {\n const dir = signingStateDir(registryPath, groupId.hex(), sessionId.hex());\n fs.mkdirSync(dir, { recursive: true });\n\n // Build commitments JSON object\n const commitmentsJson: Record<string, SerializedSigningCommitments> = {};\n for (const [xidUr, commits] of commitments) {\n commitmentsJson[xidUr] = serializeSigningCommitments(commits);\n }\n\n // Build root JSON object\n const root = {\n session: sessionId.urString(),\n response_arid: responseArid.urString(),\n finalize_arid: finalizeArid.urString(),\n signature_share: { share: serializeSignatureShare(signatureShare) },\n commitments: commitmentsJson,\n };\n\n fs.writeFileSync(path.join(dir, \"share.json\"), JSON.stringify(root, null, 2));\n}\n\n/**\n * Execute the sign participant round 2 command.\n *\n * Receives round 2 request and sends signature share.\n *\n * Port of `CommandArgs::exec()` from cmd/sign/participant/round2.rs.\n */\nexport async function round2(\n client: StorageClient,\n options: SignRound2Options,\n cwd: string,\n): Promise<SignRound2Result> {\n const registryPath = resolveRegistryPath(options.registryPath, cwd);\n const registry = Registry.load(registryPath);\n\n const owner = registry.owner();\n if (!owner) {\n throw new Error(\"Registry owner is required\");\n }\n const ownerXidDocument = owner.xidDocument();\n\n const sessionId = parseAridUr(options.sessionId);\n const groupHint = options.groupId ? parseAridUr(options.groupId) : undefined;\n\n // Load receive state (finds group automatically if not specified)\n const receiveState = loadReceiveState(registryPath, sessionId, groupHint);\n const groupId = receiveState.groupId;\n\n const groupRecord = registry.group(groupId);\n if (!groupRecord) {\n throw new Error(\"Group not found in registry\");\n }\n\n // Validate min_signers matches\n if (groupRecord.minSigners() !== receiveState.minSigners) {\n throw new Error(\n `Session min_signers ${receiveState.minSigners} does not match registry ${groupRecord.minSigners()}`,\n );\n }\n\n // Validate participants match\n const registryParticipants = new Set(groupRecord.participants().map((p) => p.xid().urString()));\n const sessionParticipants = new Set(receiveState.participants.map((p) => p.urString()));\n\n if (\n registryParticipants.size !== sessionParticipants.size ||\n ![...registryParticipants].every((p) => sessionParticipants.has(p))\n ) {\n throw new Error(\"Session participants do not match registry group participants\");\n }\n\n // Validate owner participates in this session\n if (!sessionParticipants.has(owner.xid().urString())) {\n throw new Error(\"This participant is not part of the signing session\");\n }\n\n // Get listening ARID from registry\n const listeningAtArid = groupRecord.listeningAtArid();\n if (!listeningAtArid) {\n throw new Error(\n \"No listening ARID for signRound2. Did you run `frost sign participant commit`?\",\n );\n }\n\n // Load commit state and validate\n const commitState = loadCommitState(registryPath, groupId, sessionId);\n\n if (commitState.nextShareArid.urString() !== listeningAtArid.urString()) {\n throw new Error(\n `Listening ARID in registry (${listeningAtArid.urString()}) does not match persisted commit state (${commitState.nextShareArid.urString()})`,\n );\n }\n\n if (commitState.targetUr !== receiveState.targetUr) {\n throw new Error(\"Target envelope in commit state does not match persisted signInvite request\");\n }\n\n // Load key package\n const keyPackagePath = groupRecord.contributions().keyPackage;\n if (!keyPackagePath) {\n throw new Error(\"Key package path not found; did you finish DKG?\");\n }\n\n interface KeyPackageFile {\n group?: string;\n key_package: SerializedKeyPackage;\n }\n\n const keyPackageFile = JSON.parse(fs.readFileSync(keyPackagePath, \"utf-8\")) as KeyPackageFile;\n const keyPackage: FrostKeyPackage = deserializeKeyPackage(keyPackageFile.key_package);\n\n // Create finalize ARID\n const finalizeArid = ARIDClass.new();\n\n // Compute target digest from persisted target envelope\n const targetEnvelope = Envelope.fromURString(receiveState.targetUr);\n const targetDigest: Digest = targetEnvelope.subject().digest();\n\n if (options.verbose === true) {\n console.error(\"Fetching signRound2 request from Hubert...\");\n }\n\n // Fetch request from storage\n const requestEnvelope = await getWithIndicator(\n client,\n listeningAtArid,\n \"signRound2 request\",\n options.timeoutSeconds,\n options.verbose ?? false,\n );\n\n if (!requestEnvelope) {\n throw new Error(\"signRound2 request not found in Hubert storage\");\n }\n\n // Parse sealed request\n const signerPrivateKeys = ownerXidDocument.inceptionPrivateKeys();\n if (!signerPrivateKeys) {\n throw new Error(\"Owner XID document has no private keys\");\n }\n\n // eslint-disable-next-line @typescript-eslint/no-require-imports, no-undef\n const { SealedRequest: SealedRequestClass } = require(\"@bcts/gstp\") as {\n SealedRequest: {\n tryFromEnvelope: (\n envelope: Envelope,\n expectedSender: XID | undefined,\n now: CborDate,\n recipientPrivateKeys: unknown,\n ) => SealedRequestInstance;\n };\n };\n\n const now = CborDate.now();\n const sealedRequest = SealedRequestClass.tryFromEnvelope(\n requestEnvelope,\n undefined,\n now,\n signerPrivateKeys,\n );\n\n // Validate request\n const expectedCoordinator = groupRecord.coordinator().xid();\n validateShareRequest(sealedRequest, sessionId, expectedCoordinator);\n\n // Extract response ARID from request\n const responseArid: ARID = sealedRequest.extractObjectForParameter(\"response_arid\");\n\n // Extract and validate commitments\n const commitmentsByXid = extractCommitments(sealedRequest, receiveState);\n\n // Verify our commitments match\n const myCommitments = commitmentsByXid.get(owner.xid().urString());\n if (!myCommitments) {\n throw new Error(\"signRound2 request missing commitments for this participant\");\n }\n\n // Compare commitments using serialized form\n const myCommitmentsSerialized = serializeSigningCommitments(myCommitments);\n const storedCommitmentsSerialized = serializeSigningCommitments(commitState.signingCommitments);\n\n if (\n myCommitmentsSerialized.hiding !== storedCommitmentsSerialized.hiding ||\n myCommitmentsSerialized.binding !== storedCommitmentsSerialized.binding\n ) {\n throw new Error(\"signRound2 request commitments do not match locally stored commitments\");\n }\n\n // Build XID to identifier map (sorted participant order)\n const xidToIdentifier = xidIdentifierMap(receiveState.participants);\n\n // Verify our identifier matches key package\n const myIdentifier = xidToIdentifier.get(owner.xid().urString());\n if (!myIdentifier) {\n throw new Error(\"Identifier for participant not found\");\n }\n\n // Verify key package min_signers matches\n if (keyPackage.minSigners !== receiveState.minSigners) {\n throw new Error(\n `Key package min_signers ${keyPackage.minSigners} does not match session ${receiveState.minSigners}`,\n );\n }\n\n // Verify enough commitments\n if (commitmentsByXid.size < receiveState.minSigners) {\n throw new Error(\n `signRound2 request contained ${commitmentsByXid.size} commitments but requires at least ${receiveState.minSigners} signers`,\n );\n }\n\n // Build signing commitments with identifiers\n const signingCommitments = commitmentsWithIdentifiers(commitmentsByXid, xidToIdentifier);\n\n // Create signing package\n const signingPackage = createSigningPackage(signingCommitments, targetDigest.data());\n\n // Generate signature share using FROST round 2\n const signatureShare = signingRound2(signingPackage, commitState.signingNonces, keyPackage);\n\n // Build response body\n const responseBody = buildResponseBody(sessionId, signatureShare, finalizeArid);\n\n // Build sealed response\n // eslint-disable-next-line @typescript-eslint/no-require-imports, no-undef\n const { SealedResponse: SealedResponseClass } = require(\"@bcts/gstp\") as {\n SealedResponse: {\n newSuccess: (\n requestId: ARID,\n sender: XIDDocument,\n ) => {\n withResult: (result: Envelope) => {\n withPeerContinuation: (continuation: unknown) => {\n toEnvelope: (\n expiry: CborDate | undefined,\n signerPrivateKeys: unknown,\n recipient: XIDDocument | undefined,\n ) => Envelope;\n };\n toEnvelope: (\n expiry: CborDate | undefined,\n signerPrivateKeys: unknown,\n recipient: XIDDocument | undefined,\n ) => Envelope;\n };\n };\n };\n };\n\n const sealedResponse = SealedResponseClass.newSuccess(\n sealedRequest.id(),\n ownerXidDocument,\n ).withResult(responseBody);\n\n // Preview mode - print unsealed response\n if (options.preview === true) {\n const unsealed = sealedResponse.toEnvelope(undefined, signerPrivateKeys, undefined);\n console.log(unsealed.urString());\n return {\n listeningArid: finalizeArid.urString(),\n };\n }\n\n // Get coordinator XID document for encryption\n let coordinatorDoc: XIDDocument;\n if (expectedCoordinator.urString() === owner.xid().urString()) {\n coordinatorDoc = ownerXidDocument;\n } else {\n const coordinatorRecord = registry.participant(expectedCoordinator);\n if (!coordinatorRecord) {\n throw new Error(`Coordinator ${expectedCoordinator.urString()} not found in registry`);\n }\n coordinatorDoc = coordinatorRecord.xidDocument();\n }\n\n // Create response envelope with expiry\n const expiry = CborDate.withDurationFromNow(60 * 60); // 1 hour\n const responseEnvelope = sealedResponse.toEnvelope(expiry, signerPrivateKeys, coordinatorDoc);\n\n // Send response\n await putWithIndicator(\n client,\n responseArid,\n responseEnvelope,\n \"Signature Share\",\n options.verbose ?? false,\n );\n\n // Persist share state\n persistShareState(\n registryPath,\n groupId,\n sessionId,\n responseArid,\n finalizeArid,\n signatureShare,\n commitmentsByXid,\n );\n\n // Update registry with finalize listening ARID\n const groupRecordMutable = registry.group(groupId);\n if (groupRecordMutable) {\n groupRecordMutable.setListeningAtArid(finalizeArid);\n registry.save(registryPath);\n }\n\n if (options.verbose === true) {\n console.error(`Posted signature share to ${responseArid.urString()}`);\n }\n\n return {\n listeningArid: finalizeArid.urString(),\n };\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAiHA,SAAS,iBAAiB,cAAsB,WAAiB,WAAgC;CAC/F,MAAM,OAAO,KAAK,QAAQ,YAAY;CACtC,MAAM,gBAAgB,KAAK,KAAK,MAAM,aAAa;CAGnD,IAAI;CAEJ,IAAI,WACF,YAAY,CAAC,CAAC,WAAW,KAAK,KAAK,eAAe,UAAU,IAAI,CAAC,CAAC,CAAC;MAC9D;EACL,YAAY,CAAC;EACb,IAAI,GAAG,WAAW,aAAa;QACxB,MAAM,SAAS,GAAG,YAAY,eAAe,EAAE,eAAe,KAAK,CAAC,GACvE,IAAI,MAAM,YAAY,KAAK,MAAM,KAAK,WAAW,MAAM,eAAe,KAAK,MAAM,IAAI,GAAG;IACtF,MAAM,UAAUA,KAAU,QAAQ,MAAM,IAAI;IAC5C,UAAU,KAAK,CAAC,SAAS,KAAK,KAAK,eAAe,MAAM,IAAI,CAAC,CAAC;GAChE;;CAGN;CAEA,MAAM,aAA+B,CAAC;CACtC,KAAK,MAAM,CAAC,SAAS,aAAa,WAAW;EAC3C,MAAM,YAAY,KAAK,KAAK,UAAU,WAAW,UAAU,IAAI,GAAG,mBAAmB;EACrF,IAAI,GAAG,WAAW,SAAS,GACzB,WAAW,KAAK,CAAC,SAAS,SAAS,CAAC;CAExC;CAEA,IAAI,WAAW,WAAW,GACxB,MAAM,IAAI,MACR,yFACF;CAEF,IAAI,WAAW,SAAS,GACtB,MAAM,IAAI,MAAM,mEAAmE;CAGrF,MAAM,CAAC,SAAS,aAAa,WAAW;CACxC,MAAM,MAAM,KAAK,MAAM,GAAG,aAAa,WAAW,OAAO,CAAC;CAE1D,MAAM,UAAU,QAAwB;EACtC,MAAM,QAAQ,IAAI;EAClB,IAAI,OAAO,UAAU,UACnB,MAAM,IAAI,MAAM,sBAAsB,IAAI,sBAAsB;EAElE,OAAO;CACT;CAGA,MAAM,iBAAiB,YAAY,OAAO,SAAS,CAAC;CACpD,IAAI,eAAe,SAAS,MAAM,UAAU,SAAS,GACnD,MAAM,IAAI,MACR,WAAW,eAAe,SAAS,EAAE,yDAAyD,UAAU,SAAS,GACnH;CAIF,MAAM,eAAe,YAAY,OAAO,OAAO,CAAC;CAChD,IAAI,aAAa,SAAS,MAAM,QAAQ,SAAS,GAC/C,MAAM,IAAI,MACR,SAAS,aAAa,SAAS,EAAE,uDAAuD,QAAQ,SAAS,GAC3G;CAIF,MAAM,kBAAkB,IAAI;CAC5B,IAAI,CAAC,mBAAmB,CAAC,MAAM,QAAQ,eAAe,GACpD,MAAM,IAAI,MAAM,2CAA2C;CAG7D,MAAM,eAAsB,CAAC;CAC7B,KAAK,MAAM,SAAS,iBAAiB;EACnC,IAAI,OAAO,UAAU,UACnB,MAAM,IAAI,MAAM,gDAAgD;EAElE,aAAa,KAAKC,IAAS,aAAa,KAAK,CAAC;CAChD;CAGA,MAAM,aAAa,IAAI;CACvB,IAAI,OAAO,eAAe,UACxB,MAAM,IAAI,MAAM,0CAA0C;CAK5D,OAAO;EACL;EACA;EACA;EACA,UANe,OAAO,QAMf;CACT;AACF;;;;;;AAOA,SAAS,gBAAgB,cAAsB,SAAe,WAA8B;CAC1F,MAAM,MAAM,gBAAgB,cAAc,QAAQ,IAAI,GAAG,UAAU,IAAI,CAAC;CACxE,MAAM,YAAY,KAAK,KAAK,KAAK,aAAa;CAE9C,IAAI,CAAC,GAAG,WAAW,SAAS,GAC1B,MAAM,IAAI,MACR,6BAA6B,UAAU,+CACzC;CAGF,MAAM,MAAM,KAAK,MAAM,GAAG,aAAa,WAAW,OAAO,CAAC;CAE1D,MAAM,UAAU,QAAwB;EACtC,MAAM,QAAQ,IAAI;EAClB,IAAI,OAAO,UAAU,UACnB,MAAM,IAAI,MAAM,sBAAsB,IAAI,gBAAgB;EAE5D,OAAO;CACT;CAGA,MAAM,iBAAiB,YAAY,OAAO,SAAS,CAAC;CACpD,IAAI,eAAe,SAAS,MAAM,UAAU,SAAS,GACnD,MAAM,IAAI,MACR,WAAW,eAAe,SAAS,EAAE,mDAAmD,UAAU,SAAS,GAC7G;CAGF,MAAM,gBAAgB,YAAY,OAAO,iBAAiB,CAAC;CAC3D,MAAM,WAAW,OAAO,QAAQ;CAGhC,MAAM,YAAY,IAAI;CACtB,IAAI,CAAC,WACH,MAAM,IAAI,MAAM,uCAAuC;CAGzD,MAAM,cAAc,MAAM,YAAY,eAAe,MAAM,WAAW,UAAU,SAAS,CAAC;CAC1F,MAAM,eAAe,MAAM,YAAY,eAAe,MAAM,WAAW,UAAU,UAAU,CAAC;CAC5F,MAAM,gBAAgB,cAAc,WAAW,eAAe,aAAa,YAAY;CAGvF,MAAM,iBAAiB,IAAI;CAC3B,IAAI,CAAC,gBACH,MAAM,IAAI,MAAM,4CAA4C;CAI9D,OAAO;EACL;EACA;EACA;EACA,oBANyB,8BAA8B,cAMtC;CACnB;AACF;;;;;;AAOA,SAAS,qBACP,eACA,WACA,qBACM;CAEN,MAAM,mBAAmBC,SAAiB,WAAW,YAAY;CAGjE,IAFuB,cAAc,SAEpB,EAAE,OAAO,gBAAgB,MAAM,MAC9C,MAAM,IAAI,MAAM,gCAAgC,OAAO,cAAc,SAAS,CAAC,GAAG;CAIpF,IAAI,cAAc,GAAG,EAAE,SAAS,MAAM,UAAU,SAAS,GACvD,MAAM,IAAI,MACR,gCAAgC,cAAc,GAAG,EAAE,SAAS,EAAE,aAAa,UAAU,SAAS,EAAE,EAClG;CAIF,IAAI,cAAc,OAAO,EAAE,IAAI,EAAE,SAAS,MAAM,oBAAoB,SAAS,GAC3E,MAAM,IAAI,MACR,8BAA8B,cAAc,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,yBAAyB,oBAAoB,SAAS,EAAE,EAChI;AAEJ;;;;;;AAOA,SAAS,mBACP,eACA,cACwC;CACxC,MAAM,8BAAc,IAAI,IAAuC;CAE/D,MAAM,oBAAoB,cAAc,oBAAoB,YAAY;CAExE,KAAK,MAAM,SAAS,mBAAmB;EAErC,MAAM,MAAMD,IAAS,eAAe,MAAM,QAAQ,EAAE,QAAQ,CAAC;EAG7D,MAAM,qBAAqB,MAAM,oBAAoB,aAAa;EAClE,IAAI,mBAAmB,WAAW,GAChC,MAAM,IAAI,MAAM,uCAAuC,IAAI,SAAS,GAAG;EAGzE,MAAM,kBAAkBE,OAAc,eAAe,mBAAmB,GAAG,QAAQ,EAAE,QAAQ,CAAC;EAI9F,MAAM,qBAAqB,8BAHG,KAAK,MACjC,gBAAgB,MAAM,CAEqD,CAAC;EAE9E,MAAM,QAAQ,IAAI,SAAS;EAC3B,IAAI,YAAY,IAAI,KAAK,GACvB,MAAM,IAAI,MAAM,yCAAyC,OAAO;EAElE,YAAY,IAAI,OAAO,kBAAkB;CAC3C;CAEA,IAAI,YAAY,SAAS,GACvB,MAAM,IAAI,MAAM,4CAA4C;CAI9D,MAAM,cAAc,IAAI,IAAI,aAAa,aAAa,KAAK,MAAM,EAAE,SAAS,CAAC,CAAC;CAC9E,MAAM,YAAY,IAAI,IAAI,YAAY,KAAK,CAAC;CAE5C,MAAM,UAAoB,CAAC;CAC3B,MAAM,QAAkB,CAAC;CAEzB,KAAK,MAAM,OAAO,aAChB,IAAI,CAAC,UAAU,IAAI,GAAG,GACpB,QAAQ,KAAK,GAAG;CAGpB,KAAK,MAAM,OAAO,WAChB,IAAI,CAAC,YAAY,IAAI,GAAG,GACtB,MAAM,KAAK,GAAG;CAIlB,IAAI,QAAQ,SAAS,KAAK,MAAM,SAAS,GACvC,MAAM,IAAI,MACR,sEAAsE,QAAQ,KAAK,IAAI,EAAE,WAAW,MAAM,KAAK,IAAI,EAAE,EACvH;CAGF,OAAO;AACT;;;;;;AAOA,SAAS,iBAAiB,cAAmD;CAC3E,MAAM,sBAAM,IAAI,IAA6B;CAC7C,KAAK,IAAI,IAAI,GAAG,IAAI,aAAa,QAAQ,KAAK;EAC5C,MAAM,aAAa,kBAAkB,IAAI,CAAC;EAC1C,IAAI,IAAI,aAAa,GAAG,SAAS,GAAG,UAAU;CAChD;CACA,OAAO;AACT;;;;;;AAOA,SAAS,2BACP,aACA,iBACiD;CACjD,MAAM,yBAAS,IAAI,IAAgD;CACnE,KAAK,MAAM,CAAC,OAAO,YAAY,aAAa;EAC1C,MAAM,aAAa,gBAAgB,IAAI,KAAK;EAC5C,IAAI,CAAC,YACH,MAAM,IAAI,MAAM,uBAAuB,OAAO;EAEhD,OAAO,IAAI,YAAY,OAAO;CAChC;CACA,OAAO;AACT;;;;;;AAOA,SAAS,kBACP,WACA,gBACA,cACU;CACV,MAAM,WAAW,wBAAwB,cAAc;CACvD,MAAM,YAAYA,OAAc,WAAW,KAAK,UAAU,EAAE,OAAO,SAAS,CAAC,CAAC;CAE9E,OAAO,SAAS,KAAK,EAClB,QAAQ,oBAAoB,EAC5B,aAAa,WAAW,SAAS,EACjC,aAAa,mBAAmB,SAAS,EACzC,aAAa,iBAAiB,YAAY;AAC/C;;;;;;AAOA,SAAS,kBACP,cACA,SACA,WACA,cACA,cACA,gBACA,aACM;CACN,MAAM,MAAM,gBAAgB,cAAc,QAAQ,IAAI,GAAG,UAAU,IAAI,CAAC;CACxE,GAAG,UAAU,KAAK,EAAE,WAAW,KAAK,CAAC;CAGrC,MAAM,kBAAgE,CAAC;CACvE,KAAK,MAAM,CAAC,OAAO,YAAY,aAC7B,gBAAgB,SAAS,4BAA4B,OAAO;CAI9D,MAAM,OAAO;EACX,SAAS,UAAU,SAAS;EAC5B,eAAe,aAAa,SAAS;EACrC,eAAe,aAAa,SAAS;EACrC,iBAAiB,EAAE,OAAO,wBAAwB,cAAc,EAAE;EAClE,aAAa;CACf;CAEA,GAAG,cAAc,KAAK,KAAK,KAAK,YAAY,GAAG,KAAK,UAAU,MAAM,MAAM,CAAC,CAAC;AAC9E;;;;;;;;AASA,eAAsBC,SACpB,QACA,SACA,KAC2B;CAC3B,MAAM,eAAe,oBAAoB,QAAQ,cAAc,GAAG;CAClE,MAAM,WAAW,SAAS,KAAK,YAAY;CAE3C,MAAM,QAAQ,SAAS,MAAM;CAC7B,IAAI,CAAC,OACH,MAAM,IAAI,MAAM,4BAA4B;CAE9C,MAAM,mBAAmB,MAAM,YAAY;CAE3C,MAAM,YAAY,YAAY,QAAQ,SAAS;CAI/C,MAAM,eAAe,iBAAiB,cAAc,WAHlC,QAAQ,UAAU,YAAY,QAAQ,OAAO,IAAI,KAAA,CAGK;CACxE,MAAM,UAAU,aAAa;CAE7B,MAAM,cAAc,SAAS,MAAM,OAAO;CAC1C,IAAI,CAAC,aACH,MAAM,IAAI,MAAM,6BAA6B;CAI/C,IAAI,YAAY,WAAW,MAAM,aAAa,YAC5C,MAAM,IAAI,MACR,uBAAuB,aAAa,WAAW,2BAA2B,YAAY,WAAW,GACnG;CAIF,MAAM,uBAAuB,IAAI,IAAI,YAAY,aAAa,EAAE,KAAK,MAAM,EAAE,IAAI,EAAE,SAAS,CAAC,CAAC;CAC9F,MAAM,sBAAsB,IAAI,IAAI,aAAa,aAAa,KAAK,MAAM,EAAE,SAAS,CAAC,CAAC;CAEtF,IACE,qBAAqB,SAAS,oBAAoB,QAClD,CAAC,CAAC,GAAG,oBAAoB,EAAE,OAAO,MAAM,oBAAoB,IAAI,CAAC,CAAC,GAElE,MAAM,IAAI,MAAM,+DAA+D;CAIjF,IAAI,CAAC,oBAAoB,IAAI,MAAM,IAAI,EAAE,SAAS,CAAC,GACjD,MAAM,IAAI,MAAM,qDAAqD;CAIvE,MAAM,kBAAkB,YAAY,gBAAgB;CACpD,IAAI,CAAC,iBACH,MAAM,IAAI,MACR,gFACF;CAIF,MAAM,cAAc,gBAAgB,cAAc,SAAS,SAAS;CAEpE,IAAI,YAAY,cAAc,SAAS,MAAM,gBAAgB,SAAS,GACpE,MAAM,IAAI,MACR,+BAA+B,gBAAgB,SAAS,EAAE,2CAA2C,YAAY,cAAc,SAAS,EAAE,EAC5I;CAGF,IAAI,YAAY,aAAa,aAAa,UACxC,MAAM,IAAI,MAAM,6EAA6E;CAI/F,MAAM,iBAAiB,YAAY,cAAc,EAAE;CACnD,IAAI,CAAC,gBACH,MAAM,IAAI,MAAM,iDAAiD;CASnE,MAAM,aAA8B,sBADb,KAAK,MAAM,GAAG,aAAa,gBAAgB,OAAO,CACF,EAAE,WAAW;CAGpF,MAAM,eAAeJ,KAAU,IAAI;CAInC,MAAM,eADiB,SAAS,aAAa,aAAa,QAChB,EAAE,QAAQ,EAAE,OAAO;CAE7D,IAAI,QAAQ,YAAY,MACtB,QAAQ,MAAM,4CAA4C;CAI5D,MAAM,kBAAkB,MAAM,iBAC5B,QACA,iBACA,sBACA,QAAQ,gBACR,QAAQ,WAAW,KACrB;CAEA,IAAI,CAAC,iBACH,MAAM,IAAI,MAAM,gDAAgD;CAIlE,MAAM,oBAAoB,iBAAiB,qBAAqB;CAChE,IAAI,CAAC,mBACH,MAAM,IAAI,MAAM,wCAAwC;CAI1D,MAAM,EAAE,eAAe,uBAAA,UAA+B,YAAY;CAWlE,MAAM,MAAM,SAAS,IAAI;CACzB,MAAM,gBAAgB,mBAAmB,gBACvC,iBACA,KAAA,GACA,KACA,iBACF;CAGA,MAAM,sBAAsB,YAAY,YAAY,EAAE,IAAI;CAC1D,qBAAqB,eAAe,WAAW,mBAAmB;CAGlE,MAAM,eAAqB,cAAc,0BAA0B,eAAe;CAGlF,MAAM,mBAAmB,mBAAmB,eAAe,YAAY;CAGvE,MAAM,gBAAgB,iBAAiB,IAAI,MAAM,IAAI,EAAE,SAAS,CAAC;CACjE,IAAI,CAAC,eACH,MAAM,IAAI,MAAM,6DAA6D;CAI/E,MAAM,0BAA0B,4BAA4B,aAAa;CACzE,MAAM,8BAA8B,4BAA4B,YAAY,kBAAkB;CAE9F,IACE,wBAAwB,WAAW,4BAA4B,UAC/D,wBAAwB,YAAY,4BAA4B,SAEhE,MAAM,IAAI,MAAM,wEAAwE;CAI1F,MAAM,kBAAkB,iBAAiB,aAAa,YAAY;CAIlE,IAAI,CADiB,gBAAgB,IAAI,MAAM,IAAI,EAAE,SAAS,CAC9C,GACd,MAAM,IAAI,MAAM,sCAAsC;CAIxD,IAAI,WAAW,eAAe,aAAa,YACzC,MAAM,IAAI,MACR,2BAA2B,WAAW,WAAW,0BAA0B,aAAa,YAC1F;CAIF,IAAI,iBAAiB,OAAO,aAAa,YACvC,MAAM,IAAI,MACR,gCAAgC,iBAAiB,KAAK,qCAAqC,aAAa,WAAW,SACrH;CAUF,MAAM,iBAAiB,cAHA,qBAHI,2BAA2B,kBAAkB,eAGX,GAAG,aAAa,KAAK,CAGhC,GAAG,YAAY,eAAe,UAAU;CAG1F,MAAM,eAAe,kBAAkB,WAAW,gBAAgB,YAAY;CAI9E,MAAM,EAAE,gBAAgB,wBAAA,UAAgC,YAAY;CAwBpE,MAAM,iBAAiB,oBAAoB,WACzC,cAAc,GAAG,GACjB,gBACF,EAAE,WAAW,YAAY;CAGzB,IAAI,QAAQ,YAAY,MAAM;EAC5B,MAAM,WAAW,eAAe,WAAW,KAAA,GAAW,mBAAmB,KAAA,CAAS;EAClF,QAAQ,IAAI,SAAS,SAAS,CAAC;EAC/B,OAAO,EACL,eAAe,aAAa,SAAS,EACvC;CACF;CAGA,IAAI;CACJ,IAAI,oBAAoB,SAAS,MAAM,MAAM,IAAI,EAAE,SAAS,GAC1D,iBAAiB;MACZ;EACL,MAAM,oBAAoB,SAAS,YAAY,mBAAmB;EAClE,IAAI,CAAC,mBACH,MAAM,IAAI,MAAM,eAAe,oBAAoB,SAAS,EAAE,uBAAuB;EAEvF,iBAAiB,kBAAkB,YAAY;CACjD;CAGA,MAAM,SAAS,SAAS,oBAAoB,IAAO;CAInD,MAAM,iBACJ,QACA,cALuB,eAAe,WAAW,QAAQ,mBAAmB,cAM7D,GACf,mBACA,QAAQ,WAAW,KACrB;CAGA,kBACE,cACA,SACA,WACA,cACA,cACA,gBACA,gBACF;CAGA,MAAM,qBAAqB,SAAS,MAAM,OAAO;CACjD,IAAI,oBAAoB;EACtB,mBAAmB,mBAAmB,YAAY;EAClD,SAAS,KAAK,YAAY;CAC5B;CAEA,IAAI,QAAQ,YAAY,MACtB,QAAQ,MAAM,6BAA6B,aAAa,SAAS,GAAG;CAGtE,OAAO,EACL,eAAe,aAAa,SAAS,EACvC;AACF"}

package/dist/round2-mF6UlkT-.mjs ADDED Viewed

@@ -0,0 +1,280 @@
+import { t as __exportAll } from "./chunk-z9aeyW2b.mjs";
+import { n as compareXidBytes } from "./proposed-participant-Detb823_.mjs";
+import { Registry, resolveRegistryPath } from "./registry/index.mjs";
+import { c as parseAridUr, n as isVerbose, t as groupStateDir } from "./common-Cf1UvJaP.mjs";
+import { n as putWithIndicator, t as getWithIndicator } from "./busy-BlU8_pS2.mjs";
+import { i as createStorageClient } from "./registry-DGjs4qDK.mjs";
+import { bytesToHex, dkgPart2, hexToBytes, identifierFromU16, identifierToHex, serializeDkgRound2Package } from "./frost/index.mjs";
+import { ARID, JSON as JSON$1, XID } from "@bcts/components";
+import { CborDate } from "@bcts/dcbor";
+import { Envelope, Function } from "@bcts/envelope";
+import { SealedRequest, SealedResponse } from "@bcts/gstp";
+import * as fs from "node:fs";
+import * as path from "node:path";
+import { Ed25519Sha512, serde } from "@frosts/ed25519";
+import { CoefficientCommitment, VerifiableSecretSharingCommitment, round1 } from "@frosts/core";
+//#region src/cmd/dkg/participant/round2.ts
+/**
+* Copyright © 2023-2026 Blockchain Commons, LLC
+* Copyright © 2025-2026 Parity Technologies
+*
+*
+* DKG participant round 2 command.
+*
+* Port of cmd/dkg/participant/round2.rs from frost-hubert-rust.
+*
+* @module
+*/
+var round2_exports = /* @__PURE__ */ __exportAll({ round2: () => round2$1 });
+/**
+* Load persisted round 1 state from disk.
+*
+* Port of round1_secret loading from cmd/dkg/participant/round2.rs lines 86-97.
+*/
+function loadRound1State(registryPath, groupId) {
+	const packagesDir = groupStateDir(registryPath, groupId.hex());
+	const round1SecretPath = path.join(packagesDir, "round1_secret.json");
+	if (!fs.existsSync(round1SecretPath)) throw new Error(`Round 1 secret not found at ${round1SecretPath}. Did you respond to the invite?`);
+	const secretJson = JSON.parse(fs.readFileSync(round1SecretPath, "utf-8"));
+	const coefficients = secretJson.coefficients.map((hex) => Ed25519Sha512.deserializeScalar(hexToBytes(hex)));
+	const commitment = new VerifiableSecretSharingCommitment(Ed25519Sha512, secretJson.commitment.map((hex) => CoefficientCommitment.deserialize(Ed25519Sha512, hexToBytes(hex))));
+	const idBytes = hexToBytes(secretJson.identifier);
+	let identifierU16 = 1;
+	if (idBytes.length >= 2) identifierU16 = idBytes[0] | idBytes[1] << 8;
+	if (identifierU16 === 0) identifierU16 = 1;
+	const parsedIdentifier = identifierFromU16(identifierU16);
+	const secretPackage = new round1.SecretPackage(Ed25519Sha512, parsedIdentifier, coefficients, commitment, secretJson.min_signers, secretJson.max_signers);
+	const round1PackagePath = path.join(packagesDir, "round1_package.json");
+	const packageJson = JSON.parse(fs.readFileSync(round1PackagePath, "utf-8"));
+	return {
+		secretPackage,
+		ourRound1Package: serde.round1PackageFromJson(packageJson)
+	};
+}
+/**
+* Validate the round 2 request from the coordinator.
+*
+* Port of request validation from cmd/dkg/participant/round2.rs lines 118-158.
+*/
+function validateRound2Request(sealedRequest, groupId, expectedCoordinator) {
+	if (!sealedRequest.function().equals(Function.fromString("dkgRound2"))) throw new Error(`Unexpected request function: ${sealedRequest.function().toString()}`);
+	if (sealedRequest.sender().xid().urString() !== expectedCoordinator.urString()) throw new Error(`Unexpected request sender: ${sealedRequest.sender().xid().urString()} (expected coordinator ${expectedCoordinator.urString()})`);
+	const requestGroupIdEnvelope = sealedRequest.objectForParameter("group");
+	if (requestGroupIdEnvelope === void 0) throw new Error("Request missing group parameter");
+	const requestGroupId = requestGroupIdEnvelope.extractSubject((cbor) => ARID.fromTaggedCbor(cbor));
+	if (requestGroupId.urString() !== groupId.urString()) throw new Error(`Request group ID ${requestGroupId.urString()} does not match expected ${groupId.urString()}`);
+	const responseAridEnvelope = sealedRequest.objectForParameter("responseArid");
+	if (responseAridEnvelope === void 0) throw new Error("Request missing responseArid parameter");
+	return responseAridEnvelope.extractSubject((cbor) => ARID.fromTaggedCbor(cbor));
+}
+/**
+* Extract round 1 packages from the request and convert to Map<Identifier, Package>.
+*
+* Port of `extract_round1_packages()` from cmd/dkg/participant/round2.rs lines 291-366.
+*/
+function extractRound1Packages(request, groupRecord, ownerXid) {
+	const sortedXids = groupRecord.participants().map((p) => p.xid());
+	const ownerUrString = ownerXid.urString();
+	if (!sortedXids.some((xid) => xid.urString() === ownerUrString)) sortedXids.push(ownerXid);
+	sortedXids.sort((a, b) => compareXidBytes(a.toData(), b.toData()));
+	const deduped = [];
+	for (const xid of sortedXids) if (deduped.length === 0 || deduped[deduped.length - 1].urString() !== xid.urString()) deduped.push(xid);
+	const xidToIdentifier = /* @__PURE__ */ new Map();
+	for (let i = 0; i < deduped.length; i++) {
+		const identifier = identifierFromU16(i + 1);
+		xidToIdentifier.set(deduped[i].urString(), identifier);
+	}
+	const myXidStr = ownerXid.urString();
+	const packages = /* @__PURE__ */ new Map();
+	const packagesByXid = [];
+	const packageEnvelopes = request.objectsForParameter("round1Package");
+	for (const packageEnvelope of packageEnvelopes) {
+		const participantEnvelope = packageEnvelope.objectForPredicate("participant");
+		if (participantEnvelope === void 0) throw new Error("round1Package missing participant predicate");
+		const participantXid = participantEnvelope.extractSubject((cbor) => XID.fromTaggedCbor(cbor));
+		if (participantXid.urString() === myXidStr) continue;
+		const packageJson = packageEnvelope.extractSubject((cbor) => JSON$1.fromTaggedCbor(cbor));
+		const packageData = JSON.parse(new TextDecoder().decode(packageJson.toData()));
+		const pkg = serde.round1PackageFromJson(packageData);
+		const identifier = xidToIdentifier.get(participantXid.urString());
+		if (identifier === void 0) throw new Error(`Unknown participant XID in round1Package: ${participantXid.urString()}`);
+		packages.set(identifier, pkg);
+		packagesByXid.push([participantXid, pkg]);
+	}
+	const expectedPackages = xidToIdentifier.size - 1;
+	if (packages.size !== expectedPackages) throw new Error(`Expected ${expectedPackages} Round 1 packages, found ${packages.size}`);
+	return [packages, packagesByXid];
+}
+/**
+* Build the response body containing Round 2 packages.
+*
+* Port of `build_response_body()` from cmd/dkg/participant/round2.rs lines 373-425.
+*/
+function buildResponseBody(groupId, participantXid, responseArid, round2Packages, groupRecord) {
+	const sortedXids = groupRecord.participants().map((p) => p.xid());
+	const participantUrString = participantXid.urString();
+	if (!sortedXids.some((xid) => xid.urString() === participantUrString)) sortedXids.push(participantXid);
+	sortedXids.sort((a, b) => compareXidBytes(a.toData(), b.toData()));
+	const deduped = [];
+	for (const xid of sortedXids) if (deduped.length === 0 || deduped[deduped.length - 1].urString() !== xid.urString()) deduped.push(xid);
+	const identifierToXid = /* @__PURE__ */ new Map();
+	for (let i = 0; i < deduped.length; i++) {
+		const identifier = identifierFromU16(i + 1);
+		identifierToXid.set(identifierToHex(identifier), deduped[i]);
+	}
+	let envelope = Envelope.unit().addType("dkgRound2Response").addAssertion("group", groupId).addAssertion("participant", participantXid).addAssertion("response_arid", responseArid);
+	for (const [identifier, pkg] of round2Packages) {
+		const idHex = identifierToHex(identifier);
+		const recipientXid = identifierToXid.get(idHex);
+		if (recipientXid === void 0) throw new Error("Unknown identifier in round2_packages");
+		const serialized = serializeDkgRound2Package(pkg);
+		const jsonStr = JSON.stringify(serialized);
+		const jsonBytes = new TextEncoder().encode(jsonStr);
+		const jsonWrapper = JSON$1.fromData(jsonBytes);
+		const packageEnvelope = Envelope.new(jsonWrapper).addAssertion("recipient", recipientXid);
+		envelope = envelope.addAssertion("round2Package", packageEnvelope);
+	}
+	return envelope;
+}
+/**
+* Serialize round 2 secret package to JSON format for persistence.
+*
+* Mirrors the on-disk shape produced by Rust
+* `serde_json::to_vec_pretty(&frost::keys::dkg::round2::SecretPackage)`
+* (see `frost-rust/frost-core/src/keys/dkg.rs:269-287`):
+*
+* ```json
+* {
+*   "identifier": "<lowercase hex scalar>",
+*   "commitment": ["<hex>", "<hex>", ...],
+*   "secret_share": "<hex>",
+*   "min_signers": <u16>,
+*   "max_signers": <u16>
+* }
+* ```
+*
+* `frost::keys::dkg::round2::SecretPackage` is
+* `#[serde(deny_unknown_fields)]`. The earlier port emitted
+* camelCase keys (`secretShare`, `minSigners`, `maxSigners`), a
+* nested `commitment.coefficients` shape, and a numeric
+* `identifier` — all of which Rust's standard derive would
+* reject and which had no chance of round-tripping with Rust.
+*
+* `participantIndex` is unused now that the identifier comes
+* directly from `secret.identifier.serialize()`; we keep it in the
+* signature for source-level parity with the call sites.
+*/
+function serializeRound2SecretPackage(secret, _participantIndex) {
+	const commitmentCoefficients = secret.commitment.serialize().map((c) => bytesToHex(c));
+	const secretShare = bytesToHex(Ed25519Sha512.serializeScalar(secret.secretShare()));
+	return {
+		identifier: bytesToHex(secret.identifier.serialize()),
+		commitment: commitmentCoefficients,
+		secret_share: secretShare,
+		min_signers: secret.minSigners,
+		max_signers: secret.maxSigners
+	};
+}
+/**
+* Persist round 2 state to disk.
+*
+* Port of round 2 secret persistence from cmd/dkg/participant/round2.rs lines 229-251.
+*/
+function persistRound2State(registryPath, groupId, round2Secret, round1PackagesByXid, participantIndex) {
+	const packagesDir = groupStateDir(registryPath, groupId.hex());
+	fs.mkdirSync(packagesDir, { recursive: true });
+	const round2SecretPath = path.join(packagesDir, "round2_secret.json");
+	const round2SecretJson = serializeRound2SecretPackage(round2Secret, participantIndex);
+	fs.writeFileSync(round2SecretPath, JSON.stringify(round2SecretJson, null, 2));
+	const round1PackagesPath = path.join(packagesDir, "collected_round1.json");
+	const round1Json = {};
+	for (const [xid, pkg] of round1PackagesByXid) {
+		const packageJson = serde.round1PackageToJson(pkg);
+		round1Json[xid.urString()] = packageJson;
+	}
+	fs.writeFileSync(round1PackagesPath, JSON.stringify(round1Json, null, 2));
+	return round2SecretPath;
+}
+/**
+* Execute the DKG participant round 2 command.
+*
+* Responds to the Round 2 request from the coordinator, runs FROST DKG part2
+* to generate Round 2 packages, and posts the response back.
+*
+* Port of `CommandArgs::exec()` from cmd/dkg/participant/round2.rs lines 55-288.
+*/
+async function round2$1(_client, options, cwd) {
+	if (options.storageSelection === void 0) throw new Error("Hubert storage is required for round2");
+	const registryPath = resolveRegistryPath(options.registryPath, cwd);
+	const registry = Registry.load(registryPath);
+	const owner = registry.owner();
+	if (owner === void 0) throw new Error("Registry owner is required");
+	const groupId = parseAridUr(options.groupId);
+	const groupRecord = registry.group(groupId);
+	if (groupRecord === void 0) throw new Error("Group not found in registry");
+	const listeningAtArid = groupRecord.listeningAtArid();
+	if (listeningAtArid === void 0) throw new Error("No listening ARID for this group. Did you respond to the invite?");
+	const round1State = loadRound1State(registryPath, groupId);
+	if (isVerbose() || options.verbose === true) console.error("Fetching Round 2 request from Hubert...");
+	const client = await createStorageClient(options.storageSelection);
+	const requestEnvelope = await getWithIndicator(client, listeningAtArid, "Round 2 request", options.timeoutSeconds, options.verbose ?? false);
+	if (requestEnvelope === null || requestEnvelope === void 0) throw new Error("Round 2 request not found in Hubert storage");
+	const ownerPrivateKeys = owner.xidDocument().inceptionPrivateKeys();
+	if (ownerPrivateKeys === void 0) throw new Error("Owner XID document has no private keys");
+	const now = CborDate.now().datetime();
+	const sealedRequest = SealedRequest.tryFromEnvelope(requestEnvelope, void 0, now, ownerPrivateKeys);
+	const responseArid = validateRound2Request(sealedRequest, groupId, groupRecord.coordinator().xid());
+	const [round1Packages, round1PackagesByXid] = extractRound1Packages(sealedRequest, groupRecord, owner.xid());
+	if (isVerbose() || options.verbose === true) console.error(`Received ${round1Packages.size} Round 1 packages. Running DKG part2...`);
+	const nextResponseArid = ARID.new();
+	const round1PackagesHex = /* @__PURE__ */ new Map();
+	for (const [id, pkg] of round1Packages) round1PackagesHex.set(identifierToHex(id), pkg);
+	const [round2Secret, round2Packages] = dkgPart2(round1State.secretPackage, round1PackagesHex);
+	if (isVerbose() || options.verbose === true) console.error(`Generated ${round2Packages.size} Round 2 packages.`);
+	const round2PackagesById = /* @__PURE__ */ new Map();
+	for (const [idHex, pkg] of round2Packages) for (const [id] of round1Packages) if (identifierToHex(id) === idHex) {
+		round2PackagesById.set(id, pkg);
+		break;
+	}
+	const responseBody = buildResponseBody(groupId, owner.xid(), nextResponseArid, round2PackagesById, groupRecord);
+	const signerPrivateKeys = owner.xidDocument().inceptionPrivateKeys();
+	if (signerPrivateKeys === void 0) throw new Error("Owner XID document has no signing keys");
+	const coordinatorXid = groupRecord.coordinator().xid();
+	const coordinatorRecord = registry.participant(coordinatorXid);
+	let coordinatorDoc;
+	if (coordinatorRecord !== void 0) coordinatorDoc = coordinatorRecord.xidDocument();
+	else if (owner.xid().urString() === coordinatorXid.urString()) coordinatorDoc = owner.xidDocument();
+	else throw new Error(`Coordinator ${coordinatorXid.urString()} not found in registry`);
+	const peerContinuation = sealedRequest.peerContinuation();
+	let sealed = SealedResponse.newSuccess(sealedRequest.id(), owner.xidDocument()).withResult(responseBody);
+	if (peerContinuation !== void 0) sealed = sealed.withPeerContinuation(peerContinuation);
+	if (options.preview === true) {
+		const envelopeUr = sealed.toEnvelope(void 0, signerPrivateKeys, void 0).urString();
+		console.log(envelopeUr);
+		return {
+			listeningArid: nextResponseArid.urString(),
+			envelopeUr
+		};
+	}
+	const sortedParticipantXids = groupRecord.participants().map((p) => p.xid());
+	const ownerXid = owner.xid();
+	const ownerXidStr = ownerXid.urString();
+	if (!sortedParticipantXids.some((x) => x.urString() === ownerXidStr)) sortedParticipantXids.push(ownerXid);
+	sortedParticipantXids.sort((a, b) => compareXidBytes(a.toData(), b.toData()));
+	const round2SecretPath = persistRound2State(registryPath, groupId, round2Secret, round1PackagesByXid, sortedParticipantXids.findIndex((x) => x.urString() === ownerXidStr) + 1);
+	await putWithIndicator(client, responseArid, sealed.toEnvelope(void 0, signerPrivateKeys, coordinatorDoc), "Round 2 Response", options.verbose ?? false);
+	const updatedGroupRecord = registry.group(groupId);
+	if (updatedGroupRecord !== void 0) {
+		const contributions = updatedGroupRecord.contributions();
+		contributions.round2Secret = round2SecretPath;
+		updatedGroupRecord.setContributions(contributions);
+		updatedGroupRecord.setListeningAtArid(nextResponseArid);
+		registry.save(registryPath);
+	}
+	if (isVerbose() || options.verbose === true) console.error(`Posted Round 2 response to ${responseArid.urString()}`);
+	return { listeningArid: nextResponseArid.urString() };
+}
+//#endregion
+export { round2_exports as n, round2$1 as t };
+//# sourceMappingURL=round2-mF6UlkT-.mjs.map