@bellachu/xteambail 2.0.0

package/lib/Utils/messages-media.js

@@ -0,0 +1,914 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.encryptedStream = exports.encryptMediaRetryRequest = exports.encodeBase64EncodedStringForUpload = exports.downloadEncryptedContent = exports.downloadContentFromMessage = exports.decryptMediaRetryData = exports.decodeMediaRetryNode = exports.DEF_MEDIA_HOST = void 0;
+exports.extensionForMediaMessage = extensionForMediaMessage;
+exports.generateProfilePicture = exports.extractImageThumb = void 0;
+exports.generateThumbnail = generateThumbnail;
+exports.getAudioDuration = getAudioDuration;
+exports.getAudioWaveform = getAudioWaveform;
+exports.getHttpStream = void 0;
+exports.getMediaKeys = getMediaKeys;
+exports.uploadWithNodeHttp = exports.toReadable = exports.toBuffer = exports.mediaMessageSHA256B64 = exports.hkdfInfoKey = exports.getWAUploadToServer = exports.getUrlFromDirectPath = exports.getStream = exports.getStatusCodeForMediaRetry = exports.getRawMediaUploadData = void 0;
+var _boom = require("@hapi/boom");
+var _child_process = require("child_process");
+var Crypto = _interopRequireWildcard(require("crypto"));
+var _events = require("events");
+var _fs = require("fs");
+var _os = require("os");
+var _path = require("path");
+var _stream = require("stream");
+var _url = require("url");
+var _index = require("../../WAProto/index.js");
+var _index2 = require("../Defaults/index.js");
+var _index3 = require("../WABinary/index.js");
+var _crypto2 = require("./crypto.js");
+var _generics = require("./generics.js");
+function _interopRequireWildcard(e, t) { if ("function" == typeof WeakMap) var r = new WeakMap(), n = new WeakMap(); return (_interopRequireWildcard = function (e, t) { if (!t && e && e.__esModule) return e; var o, i, f = { __proto__: null, default: e }; if (null === e || "object" != typeof e && "function" != typeof e) return f; if (o = t ? n : r) { if (o.has(e)) return o.get(e); o.set(e, f); } for (const t in e) "default" !== t && {}.hasOwnProperty.call(e, t) && ((i = (o = Object.defineProperty) && Object.getOwnPropertyDescriptor(e, t)) && (i.get || i.set) ? o(f, t, i) : f[t] = e[t]); return f; })(e, t); }
+const getTmpFilesDirectory = () => (0, _os.tmpdir)();
+const getImageProcessingLibrary = async () => {
+  //@ts-ignore
+  const [jimp, sharp] = await Promise.all([import('jimp').catch(() => {}), import('sharp').catch(() => {})]);
+  if (sharp) {
+    return {
+      sharp
+    };
+  }
+  if (jimp) {
+    return {
+      jimp
+    };
+  }
+  throw new _boom.Boom('No image processing library available');
+};
+const hkdfInfoKey = type => {
+  const hkdfInfo = _index2.MEDIA_HKDF_KEY_MAPPING[type];
+  return `WhatsApp ${hkdfInfo} Keys`;
+};
+exports.hkdfInfoKey = hkdfInfoKey;
+const getRawMediaUploadData = async (media, mediaType, logger) => {
+  const {
+    stream
+  } = await getStream(media);
+  logger?.debug('got stream for raw upload');
+  const hasher = Crypto.createHash('sha256');
+  const filePath = (0, _path.join)((0, _os.tmpdir)(), mediaType + (0, _generics.generateMessageIDV2)());
+  const fileWriteStream = (0, _fs.createWriteStream)(filePath);
+  let fileLength = 0;
+  try {
+    for await (const data of stream) {
+      fileLength += data.length;
+      hasher.update(data);
+      if (!fileWriteStream.write(data)) {
+        await (0, _events.once)(fileWriteStream, 'drain');
+      }
+    }
+    fileWriteStream.end();
+    await (0, _events.once)(fileWriteStream, 'finish');
+    stream.destroy();
+    const fileSha256 = hasher.digest();
+    logger?.debug('hashed data for raw upload');
+    return {
+      filePath: filePath,
+      fileSha256,
+      fileLength
+    };
+  } catch (error) {
+    fileWriteStream.destroy();
+    stream.destroy();
+    try {
+      await _fs.promises.unlink(filePath);
+    } catch {
+      //
+    }
+    throw error;
+  }
+};
+/** generates all the keys required to encrypt/decrypt & sign a media message */
+exports.getRawMediaUploadData = getRawMediaUploadData;
+async function getMediaKeys(buffer, mediaType) {
+  if (!buffer) {
+    throw new _boom.Boom('Cannot derive from empty media key');
+  }
+  if (typeof buffer === 'string') {
+    buffer = Buffer.from(buffer.replace('data:;base64,', ''), 'base64');
+  }
+  // expand using HKDF to 112 bytes, also pass in the relevant app info
+  const expandedMediaKey = (0, _crypto2.hkdf)(buffer, 112, {
+    info: hkdfInfoKey(mediaType)
+  });
+  return {
+    iv: expandedMediaKey.slice(0, 16),
+    cipherKey: expandedMediaKey.slice(16, 48),
+    macKey: expandedMediaKey.slice(48, 80)
+  };
+}
+/** Extracts video thumb using FFMPEG */
+const extractVideoThumb = async (path, destPath, time, size) => new Promise((resolve, reject) => {
+  const cmd = `ffmpeg -ss ${time} -i ${path} -y -vf scale=${size.width}:-1 -vframes 1 -f image2 ${destPath}`;
+  (0, _child_process.exec)(cmd, err => {
+    if (err) {
+      reject(err);
+    } else {
+      resolve();
+    }
+  });
+});
+const extractImageThumb = async (bufferOrFilePath, width = 32) => {
+  // TODO: Move entirely to sharp, removing jimp as it supports readable streams
+  // This will have positive speed and performance impacts as well as minimizing RAM usage.
+  if (bufferOrFilePath instanceof _stream.Readable) {
+    bufferOrFilePath = await toBuffer(bufferOrFilePath);
+  }
+  const lib = await getImageProcessingLibrary();
+  if ('sharp' in lib && typeof lib.sharp?.default === 'function') {
+    const img = lib.sharp.default(bufferOrFilePath);
+    const dimensions = await img.metadata();
+    const buffer = await img.resize(width).jpeg({
+      quality: 50
+    }).toBuffer();
+    return {
+      buffer,
+      original: {
+        width: dimensions.width,
+        height: dimensions.height
+      }
+    };
+  } else if ('jimp' in lib && typeof lib.jimp?.Jimp === 'object') {
+    const jimp = await lib.jimp.Jimp.read(bufferOrFilePath);
+    const dimensions = {
+      width: jimp.width,
+      height: jimp.height
+    };
+    const buffer = await jimp.resize({
+      w: width,
+      mode: lib.jimp.ResizeStrategy.BILINEAR
+    }).getBuffer('image/jpeg', {
+      quality: 50
+    });
+    return {
+      buffer,
+      original: dimensions
+    };
+  } else {
+    throw new _boom.Boom('No image processing library available');
+  }
+};
+exports.extractImageThumb = extractImageThumb;
+const encodeBase64EncodedStringForUpload = b64 => encodeURIComponent(b64.replace(/\+/g, '-').replace(/\//g, '_').replace(/\=+$/, ''));
+exports.encodeBase64EncodedStringForUpload = encodeBase64EncodedStringForUpload;
+const generateProfilePicture = async (mediaUpload, dimensions) => {
+  let buffer;
+  const {
+    width: w = 640,
+    height: h = 640
+  } = dimensions || {};
+  if (Buffer.isBuffer(mediaUpload)) {
+    buffer = mediaUpload;
+  } else {
+    // Use getStream to handle all WAMediaUpload types (Buffer, Stream, URL)
+    const {
+      stream
+    } = await getStream(mediaUpload);
+    // Convert the resulting stream to a buffer
+    buffer = await toBuffer(stream);
+  }
+  const lib = await getImageProcessingLibrary();
+  let img;
+  if ('sharp' in lib && typeof lib.sharp?.default === 'function') {
+    img = lib.sharp.default(buffer).resize(w, h).jpeg({
+      quality: 50
+    }).toBuffer();
+  } else if ('jimp' in lib && typeof lib.jimp?.Jimp === 'function') {
+    const jimp = await lib.jimp.Jimp.read(buffer);
+    const min = Math.min(jimp.width, jimp.height);
+    const cropped = jimp.crop({
+      x: 0,
+      y: 0,
+      w: min,
+      h: min
+    });
+    img = cropped.resize({
+      w,
+      h,
+      mode: lib.jimp.ResizeStrategy.BILINEAR
+    }).getBuffer('image/jpeg', {
+      quality: 50
+    });
+  } else {
+    throw new _boom.Boom('No image processing library available');
+  }
+  return {
+    img: await img
+  };
+};
+/** gets the SHA256 of the given media message */
+exports.generateProfilePicture = generateProfilePicture;
+const mediaMessageSHA256B64 = message => {
+  const media = Object.values(message)[0];
+  return media?.fileSha256 && Buffer.from(media.fileSha256).toString('base64');
+};
+exports.mediaMessageSHA256B64 = mediaMessageSHA256B64;
+async function getAudioDuration(buffer) {
+  const musicMetadata = await import('music-metadata');
+  let metadata;
+  const options = {
+    duration: true
+  };
+  if (Buffer.isBuffer(buffer)) {
+    metadata = await musicMetadata.parseBuffer(buffer, undefined, options);
+  } else if (typeof buffer === 'string') {
+    metadata = await musicMetadata.parseFile(buffer, options);
+  } else {
+    metadata = await musicMetadata.parseStream(buffer, undefined, options);
+  }
+  return metadata.format.duration;
+}
+/**
+  referenced from and modifying https://github.com/wppconnect-team/wa-js/blob/main/src/chat/functions/prepareAudioWaveform.ts
+ */
+async function getAudioWaveform(buffer, logger) {
+  try {
+    // @ts-ignore
+    const {
+      default: decoder
+    } = await import('audio-decode');
+    let audioData;
+    if (Buffer.isBuffer(buffer)) {
+      audioData = buffer;
+    } else if (typeof buffer === 'string') {
+      const rStream = (0, _fs.createReadStream)(buffer);
+      audioData = await toBuffer(rStream);
+    } else {
+      audioData = await toBuffer(buffer);
+    }
+    const audioBuffer = await decoder(audioData);
+    const rawData = audioBuffer.getChannelData(0); // We only need to work with one channel of data
+    const samples = 64; // Number of samples we want to have in our final data set
+    const blockSize = Math.floor(rawData.length / samples); // the number of samples in each subdivision
+    const filteredData = [];
+    for (let i = 0; i < samples; i++) {
+      const blockStart = blockSize * i; // the location of the first sample in the block
+      let sum = 0;
+      for (let j = 0; j < blockSize; j++) {
+        sum = sum + Math.abs(rawData[blockStart + j]); // find the sum of all the samples in the block
+      }
+      filteredData.push(sum / blockSize); // divide the sum by the block size to get the average
+    }
+    // This guarantees that the largest data point will be set to 1, and the rest of the data will scale proportionally.
+    const multiplier = Math.pow(Math.max(...filteredData), -1);
+    const normalizedData = filteredData.map(n => n * multiplier);
+    // Generate waveform like WhatsApp
+    const waveform = new Uint8Array(normalizedData.map(n => Math.floor(100 * n)));
+    return waveform;
+  } catch (e) {
+    logger?.debug('Failed to generate waveform: ' + e);
+  }
+}
+const toReadable = buffer => {
+  const readable = new _stream.Readable({
+    read: () => {}
+  });
+  readable.push(buffer);
+  readable.push(null);
+  return readable;
+};
+exports.toReadable = toReadable;
+const toBuffer = async stream => {
+  const chunks = [];
+  for await (const chunk of stream) {
+    chunks.push(chunk);
+  }
+  stream.destroy();
+  return Buffer.concat(chunks);
+};
+exports.toBuffer = toBuffer;
+const getStream = async (item, opts) => {
+  if (Buffer.isBuffer(item)) {
+    return {
+      stream: toReadable(item),
+      type: 'buffer'
+    };
+  }
+  if ('stream' in item) {
+    return {
+      stream: item.stream,
+      type: 'readable'
+    };
+  }
+  const urlStr = item.url.toString();
+  if (urlStr.startsWith('data:')) {
+    const buffer = Buffer.from(urlStr.split(',')[1], 'base64');
+    return {
+      stream: toReadable(buffer),
+      type: 'buffer'
+    };
+  }
+  if (urlStr.startsWith('http://') || urlStr.startsWith('https://')) {
+    return {
+      stream: await getHttpStream(item.url, opts),
+      type: 'remote'
+    };
+  }
+  return {
+    stream: (0, _fs.createReadStream)(item.url),
+    type: 'file'
+  };
+};
+/** generates a thumbnail for a given media, if required */
+exports.getStream = getStream;
+async function generateThumbnail(file, mediaType, options) {
+  let thumbnail;
+  let originalImageDimensions;
+  if (mediaType === 'image') {
+    const {
+      buffer,
+      original
+    } = await extractImageThumb(file);
+    thumbnail = buffer.toString('base64');
+    if (original.width && original.height) {
+      originalImageDimensions = {
+        width: original.width,
+        height: original.height
+      };
+    }
+  } else if (mediaType === 'video') {
+    const imgFilename = (0, _path.join)(getTmpFilesDirectory(), (0, _generics.generateMessageIDV2)() + '.jpg');
+    try {
+      await extractVideoThumb(file, imgFilename, '00:00:00', {
+        width: 32,
+        height: 32
+      });
+      const buff = await _fs.promises.readFile(imgFilename);
+      thumbnail = buff.toString('base64');
+      await _fs.promises.unlink(imgFilename);
+    } catch (err) {
+      options.logger?.debug('could not generate video thumb: ' + err);
+    }
+  }
+  return {
+    thumbnail,
+    originalImageDimensions
+  };
+}
+const getHttpStream = async (url, options = {}) => {
+  const response = await fetch(url.toString(), {
+    dispatcher: options.dispatcher,
+    method: 'GET',
+    headers: options.headers
+  });
+  if (!response.ok) {
+    throw new _boom.Boom(`Failed to fetch stream from ${url}`, {
+      statusCode: response.status,
+      data: {
+        url
+      }
+    });
+  }
+  // @ts-ignore Node18+ Readable.fromWeb exists
+  return response.body instanceof _stream.Readable ? response.body : _stream.Readable.fromWeb(response.body);
+};
+exports.getHttpStream = getHttpStream;
+const encryptedStream = async (media, mediaType, {
+  logger,
+  saveOriginalFileIfRequired,
+  opts
+} = {}) => {
+  const {
+    stream,
+    type
+  } = await getStream(media, opts);
+  logger?.debug('fetched media stream');
+  const mediaKey = Crypto.randomBytes(32);
+  const {
+    cipherKey,
+    iv,
+    macKey
+  } = await getMediaKeys(mediaKey, mediaType);
+  const encFilePath = (0, _path.join)(getTmpFilesDirectory(), mediaType + (0, _generics.generateMessageIDV2)() + '-enc');
+  const encFileWriteStream = (0, _fs.createWriteStream)(encFilePath);
+  let originalFileStream;
+  let originalFilePath;
+  if (saveOriginalFileIfRequired) {
+    originalFilePath = (0, _path.join)(getTmpFilesDirectory(), mediaType + (0, _generics.generateMessageIDV2)() + '-original');
+    originalFileStream = (0, _fs.createWriteStream)(originalFilePath);
+  }
+  let fileLength = 0;
+  const aes = Crypto.createCipheriv('aes-256-cbc', cipherKey, iv);
+  const hmac = Crypto.createHmac('sha256', macKey).update(iv);
+  const sha256Plain = Crypto.createHash('sha256');
+  const sha256Enc = Crypto.createHash('sha256');
+  const onChunk = async buff => {
+    sha256Enc.update(buff);
+    hmac.update(buff);
+    // Handle backpressure: if write returns false, wait for drain
+    if (!encFileWriteStream.write(buff)) {
+      await (0, _events.once)(encFileWriteStream, 'drain');
+    }
+  };
+  try {
+    for await (const data of stream) {
+      fileLength += data.length;
+      if (type === 'remote' && opts?.maxContentLength && fileLength + data.length > opts.maxContentLength) {
+        throw new _boom.Boom(`content length exceeded when encrypting "${type}"`, {
+          data: {
+            media,
+            type
+          }
+        });
+      }
+      if (originalFileStream) {
+        if (!originalFileStream.write(data)) {
+          await (0, _events.once)(originalFileStream, 'drain');
+        }
+      }
+      sha256Plain.update(data);
+      await onChunk(aes.update(data));
+    }
+    await onChunk(aes.final());
+    const mac = hmac.digest().slice(0, 10);
+    sha256Enc.update(mac);
+    const fileSha256 = sha256Plain.digest();
+    const fileEncSha256 = sha256Enc.digest();
+    encFileWriteStream.write(mac);
+    const encFinishPromise = (0, _events.once)(encFileWriteStream, 'finish');
+    const originalFinishPromise = originalFileStream ? (0, _events.once)(originalFileStream, 'finish') : Promise.resolve();
+    encFileWriteStream.end();
+    originalFileStream?.end?.();
+    stream.destroy();
+    // Wait for write streams to fully flush to disk
+    // This helps reduce memory pressure by allowing OS to release buffers
+    await encFinishPromise;
+    await originalFinishPromise;
+    logger?.debug('encrypted data successfully');
+    return {
+      mediaKey,
+      originalFilePath,
+      encFilePath,
+      mac,
+      fileEncSha256,
+      fileSha256,
+      fileLength
+    };
+  } catch (error) {
+    // destroy all streams with error
+    encFileWriteStream.destroy();
+    originalFileStream?.destroy?.();
+    aes.destroy();
+    hmac.destroy();
+    sha256Plain.destroy();
+    sha256Enc.destroy();
+    stream.destroy();
+    try {
+      await _fs.promises.unlink(encFilePath);
+      if (originalFilePath) {
+        await _fs.promises.unlink(originalFilePath);
+      }
+    } catch (err) {
+      logger?.error({
+        err
+      }, 'failed deleting tmp files');
+    }
+    throw error;
+  }
+};
+exports.encryptedStream = encryptedStream;
+const DEF_MEDIA_HOST = exports.DEF_MEDIA_HOST = 'mmg.whatsapp.net';
+const AES_CHUNK_SIZE = 16;
+const toSmallestChunkSize = num => {
+  return Math.floor(num / AES_CHUNK_SIZE) * AES_CHUNK_SIZE;
+};
+const getUrlFromDirectPath = (directPath, host = DEF_MEDIA_HOST) => `https://${host}${directPath}`;
+exports.getUrlFromDirectPath = getUrlFromDirectPath;
+const extractHost = url => {
+  if (!url) return undefined;
+  try {
+    return new _url.URL(url).host;
+  } catch {
+    return undefined;
+  }
+};
+const downloadContentFromMessage = async ({
+  mediaKey,
+  directPath,
+  url
+}, type, opts = {}) => {
+  // Fallback host: explicit opt > host parsed from `url` > DEF_MEDIA_HOST.
+  // Lets us honor a non-default host carried by the proto without forcing callers to thread it through.
+  const fallbackHost = opts.host ?? extractHost(url);
+  const downloadUrl = directPath ? getUrlFromDirectPath(directPath, fallbackHost) : url;
+  if (!downloadUrl) {
+    throw new _boom.Boom('No valid media URL or directPath present in message', {
+      statusCode: 400
+    });
+  }
+  const keys = await getMediaKeys(mediaKey, type);
+  return downloadEncryptedContent(downloadUrl, keys, opts);
+};
+/**
+ * Decrypts and downloads an AES256-CBC encrypted file given the keys.
+ * Assumes the SHA256 of the plaintext is appended to the end of the ciphertext
+ * */
+exports.downloadContentFromMessage = downloadContentFromMessage;
+const downloadEncryptedContent = async (downloadUrl, {
+  cipherKey,
+  iv
+}, {
+  startByte,
+  endByte,
+  options
+} = {}) => {
+  let bytesFetched = 0;
+  let startChunk = 0;
+  let firstBlockIsIV = false;
+  // if a start byte is specified -- then we need to fetch the previous chunk as that will form the IV
+  if (startByte) {
+    const chunk = toSmallestChunkSize(startByte || 0);
+    if (chunk) {
+      startChunk = chunk - AES_CHUNK_SIZE;
+      bytesFetched = chunk;
+      firstBlockIsIV = true;
+    }
+  }
+  const endChunk = endByte ? toSmallestChunkSize(endByte || 0) + AES_CHUNK_SIZE : undefined;
+  const headersInit = options?.headers ? options.headers : undefined;
+  const headers = {
+    ...(headersInit ? Array.isArray(headersInit) ? Object.fromEntries(headersInit) : headersInit : {}),
+    Origin: _index2.DEFAULT_ORIGIN
+  };
+  if (startChunk || endChunk) {
+    headers.Range = `bytes=${startChunk}-`;
+    if (endChunk) {
+      headers.Range += endChunk;
+    }
+  }
+  // download the message
+  const fetched = await getHttpStream(downloadUrl, {
+    ...(options || {}),
+    headers
+  });
+  let remainingBytes = Buffer.from([]);
+  let aes;
+  const pushBytes = (bytes, push) => {
+    if (startByte || endByte) {
+      const start = bytesFetched >= startByte ? undefined : Math.max(startByte - bytesFetched, 0);
+      const end = bytesFetched + bytes.length < endByte ? undefined : Math.max(endByte - bytesFetched, 0);
+      push(bytes.slice(start, end));
+      bytesFetched += bytes.length;
+    } else {
+      push(bytes);
+    }
+  };
+  const output = new _stream.Transform({
+    transform(chunk, _, callback) {
+      let data = remainingBytes.length ? Buffer.concat([remainingBytes, chunk]) : chunk;
+      const decryptLength = toSmallestChunkSize(data.length);
+      remainingBytes = data.slice(decryptLength);
+      data = data.slice(0, decryptLength);
+      if (!aes) {
+        let ivValue = iv;
+        if (firstBlockIsIV) {
+          ivValue = data.slice(0, AES_CHUNK_SIZE);
+          data = data.slice(AES_CHUNK_SIZE);
+        }
+        aes = Crypto.createDecipheriv('aes-256-cbc', cipherKey, ivValue);
+        // if an end byte that is not EOF is specified
+        // stop auto padding (PKCS7) -- otherwise throws an error for decryption
+        if (endByte) {
+          aes.setAutoPadding(false);
+        }
+      }
+      try {
+        pushBytes(aes.update(data), b => this.push(b));
+        callback();
+      } catch (error) {
+        callback(error);
+      }
+    },
+    final(callback) {
+      try {
+        pushBytes(aes.final(), b => this.push(b));
+        callback();
+      } catch (error) {
+        callback(error);
+      }
+    }
+  });
+  return fetched.pipe(output, {
+    end: true
+  });
+};
+exports.downloadEncryptedContent = downloadEncryptedContent;
+function extensionForMediaMessage(message) {
+  const getExtension = mimetype => mimetype.split(';')[0]?.split('/')[1];
+  const type = Object.keys(message)[0];
+  let extension;
+  if (type === 'locationMessage' || type === 'liveLocationMessage' || type === 'productMessage') {
+    extension = '.jpeg';
+  } else {
+    const messageContent = message[type];
+    extension = getExtension(messageContent.mimetype);
+  }
+  return extension;
+}
+const isNodeRuntime = () => {
+  return typeof process !== 'undefined' && process.versions?.node !== null && typeof process.versions.bun === 'undefined' && typeof globalThis.Deno === 'undefined';
+};
+const uploadWithNodeHttp = async ({
+  url,
+  filePath,
+  headers,
+  timeoutMs,
+  agent
+}, redirectCount = 0) => {
+  if (redirectCount > 5) {
+    throw new Error('Too many redirects');
+  }
+  const parsedUrl = new _url.URL(url);
+  const httpModule = parsedUrl.protocol === 'https:' ? await import('https') : await import('http');
+  // Get file size for Content-Length header (required for Node.js streaming)
+  const fileStats = await _fs.promises.stat(filePath);
+  const fileSize = fileStats.size;
+  return new Promise((resolve, reject) => {
+    const req = httpModule.request({
+      hostname: parsedUrl.hostname,
+      port: parsedUrl.port || (parsedUrl.protocol === 'https:' ? 443 : 80),
+      path: parsedUrl.pathname + parsedUrl.search,
+      method: 'POST',
+      headers: {
+        ...headers,
+        'Content-Length': fileSize
+      },
+      agent,
+      timeout: timeoutMs
+    }, res => {
+      // Handle redirects (3xx)
+      if (res.statusCode && res.statusCode >= 300 && res.statusCode < 400 && res.headers.location) {
+        res.resume(); // Consume response to free resources
+        const newUrl = new _url.URL(res.headers.location, url).toString();
+        resolve(uploadWithNodeHttp({
+          url: newUrl,
+          filePath,
+          headers,
+          timeoutMs,
+          agent
+        }, redirectCount + 1));
+        return;
+      }
+      let body = '';
+      res.on('data', chunk => body += chunk);
+      res.on('end', () => {
+        try {
+          resolve(JSON.parse(body));
+        } catch {
+          resolve(undefined);
+        }
+      });
+    });
+    req.on('error', reject);
+    req.on('timeout', () => {
+      req.destroy();
+      reject(new Error('Upload timeout'));
+    });
+    const stream = (0, _fs.createReadStream)(filePath);
+    stream.pipe(req);
+    stream.on('error', err => {
+      req.destroy();
+      reject(err);
+    });
+  });
+};
+exports.uploadWithNodeHttp = uploadWithNodeHttp;
+const uploadWithFetch = async ({
+  url,
+  filePath,
+  headers,
+  timeoutMs,
+  agent
+}) => {
+  // Convert Node.js Readable to Web ReadableStream
+  const nodeStream = (0, _fs.createReadStream)(filePath);
+  const webStream = _stream.Readable.toWeb(nodeStream);
+  // Native fetch only accepts Undici-style dispatchers, not generic https Agents.
+  const dispatcher = typeof agent?.dispatch === 'function' ? agent : undefined;
+  const response = await fetch(url, {
+    ...(dispatcher ? {
+      dispatcher
+    } : {}),
+    method: 'POST',
+    body: webStream,
+    headers,
+    duplex: 'half',
+    signal: timeoutMs ? AbortSignal.timeout(timeoutMs) : undefined
+  });
+  try {
+    return await response.json();
+  } catch {
+    return undefined;
+  }
+};
+/**
+ * Uploads media to WhatsApp servers.
+ *
+ * ## Why we have two upload implementations:
+ *
+ * Node.js's native `fetch` (powered by undici) has a known bug where it buffers
+ * the entire request body in memory before sending, even when using streams.
+ * This causes memory issues with large files (e.g., 1GB file = 1GB+ memory usage).
+ * See: https://github.com/nodejs/undici/issues/4058
+ *
+ * Other runtimes (Bun, Deno, browsers) correctly stream the request body without
+ * buffering, so we can use the web-standard Fetch API there.
+ *
+ * ## Future considerations:
+ * Once the undici bug is fixed, we can simplify this to use only the Fetch API
+ * across all runtimes. Monitor the GitHub issue for updates.
+ */
+const uploadMedia = async (params, logger) => {
+  if (isNodeRuntime()) {
+    logger?.debug('Using Node.js https module for upload (avoids undici buffering bug)');
+    return uploadWithNodeHttp(params);
+  } else {
+    logger?.debug('Using web-standard Fetch API for upload');
+    return uploadWithFetch(params);
+  }
+};
+const getWAUploadToServer = ({
+  customUploadHosts,
+  fetchAgent,
+  logger,
+  options
+}, refreshMediaConn) => {
+  return async (filePath, {
+    mediaType,
+    fileEncSha256B64,
+    timeoutMs
+  }) => {
+    // send a query JSON to obtain the url & auth token to upload our media
+    let uploadInfo = await refreshMediaConn(false);
+    let urls;
+    const hosts = [...customUploadHosts, ...uploadInfo.hosts];
+    fileEncSha256B64 = encodeBase64EncodedStringForUpload(fileEncSha256B64);
+    // Prepare common headers
+    const customHeaders = (() => {
+      const hdrs = options?.headers;
+      if (!hdrs) return {};
+      return Array.isArray(hdrs) ? Object.fromEntries(hdrs) : hdrs;
+    })();
+    const headers = {
+      ...customHeaders,
+      'Content-Type': 'application/octet-stream',
+      Origin: _index2.DEFAULT_ORIGIN
+    };
+    for (const {
+      hostname
+    } of hosts) {
+      logger.debug(`uploading to "${hostname}"`);
+      const auth = encodeURIComponent(uploadInfo.auth);
+      const url = `https://${hostname}${_index2.MEDIA_PATH_MAP[mediaType]}/${fileEncSha256B64}?auth=${auth}&token=${fileEncSha256B64}`;
+      let result;
+      try {
+        result = await uploadMedia({
+          url,
+          filePath,
+          headers,
+          timeoutMs,
+          agent: fetchAgent
+        }, logger);
+        if (result?.url || result?.direct_path) {
+          urls = {
+            mediaUrl: result.url,
+            directPath: result.direct_path,
+            meta_hmac: result.meta_hmac,
+            fbid: result.fbid,
+            ts: result.ts
+          };
+          break;
+        } else {
+          uploadInfo = await refreshMediaConn(true);
+          throw new Error(`upload failed, reason: ${JSON.stringify(result)}`);
+        }
+      } catch (error) {
+        const isLast = hostname === hosts[uploadInfo.hosts.length - 1]?.hostname;
+        logger.warn({
+          trace: error?.stack,
+          uploadResult: result
+        }, `Error in uploading to ${hostname} ${isLast ? '' : ', retrying...'}`);
+      }
+    }
+    if (!urls) {
+      throw new _boom.Boom('Media upload failed on all hosts', {
+        statusCode: 500
+      });
+    }
+    return urls;
+  };
+};
+exports.getWAUploadToServer = getWAUploadToServer;
+const getMediaRetryKey = mediaKey => {
+  return (0, _crypto2.hkdf)(mediaKey, 32, {
+    info: 'WhatsApp Media Retry Notification'
+  });
+};
+/**
+ * Generate a binary node that will request the phone to re-upload the media & return the newly uploaded URL
+ */
+const encryptMediaRetryRequest = (key, mediaKey, meId) => {
+  const recp = {
+    stanzaId: key.id
+  };
+  const recpBuffer = _index.proto.ServerErrorReceipt.encode(recp).finish();
+  const iv = Crypto.randomBytes(12);
+  const retryKey = getMediaRetryKey(mediaKey);
+  const ciphertext = (0, _crypto2.aesEncryptGCM)(recpBuffer, retryKey, iv, Buffer.from(key.id));
+  const req = {
+    tag: 'receipt',
+    attrs: {
+      id: key.id,
+      to: (0, _index3.jidNormalizedUser)(meId),
+      type: 'server-error'
+    },
+    content: [
+    // this encrypt node is actually pretty useless
+    // the media is returned even without this node
+    // keeping it here to maintain parity with WA Web
+    {
+      tag: 'encrypt',
+      attrs: {},
+      content: [{
+        tag: 'enc_p',
+        attrs: {},
+        content: ciphertext
+      }, {
+        tag: 'enc_iv',
+        attrs: {},
+        content: iv
+      }]
+    }, {
+      tag: 'rmr',
+      attrs: {
+        jid: key.remoteJid,
+        from_me: (!!key.fromMe).toString(),
+        // @ts-ignore
+        participant: key.participant || undefined
+      }
+    }]
+  };
+  return req;
+};
+exports.encryptMediaRetryRequest = encryptMediaRetryRequest;
+const decodeMediaRetryNode = node => {
+  const rmrNode = (0, _index3.getBinaryNodeChild)(node, 'rmr');
+  const event = {
+    key: {
+      id: node.attrs.id,
+      remoteJid: rmrNode.attrs.jid,
+      fromMe: rmrNode.attrs.from_me === 'true',
+      participant: rmrNode.attrs.participant
+    }
+  };
+  const errorNode = (0, _index3.getBinaryNodeChild)(node, 'error');
+  if (errorNode) {
+    const errorCode = +errorNode.attrs.code;
+    event.error = new _boom.Boom(`Failed to re-upload media (${errorCode})`, {
+      data: errorNode.attrs,
+      statusCode: getStatusCodeForMediaRetry(errorCode)
+    });
+  } else {
+    const encryptedInfoNode = (0, _index3.getBinaryNodeChild)(node, 'encrypt');
+    const ciphertext = (0, _index3.getBinaryNodeChildBuffer)(encryptedInfoNode, 'enc_p');
+    const iv = (0, _index3.getBinaryNodeChildBuffer)(encryptedInfoNode, 'enc_iv');
+    if (ciphertext && iv) {
+      event.media = {
+        ciphertext,
+        iv
+      };
+    } else {
+      event.error = new _boom.Boom('Failed to re-upload media (missing ciphertext)', {
+        statusCode: 404
+      });
+    }
+  }
+  return event;
+};
+exports.decodeMediaRetryNode = decodeMediaRetryNode;
+const decryptMediaRetryData = ({
+  ciphertext,
+  iv
+}, mediaKey, msgId) => {
+  const retryKey = getMediaRetryKey(mediaKey);
+  const plaintext = (0, _crypto2.aesDecryptGCM)(ciphertext, retryKey, iv, Buffer.from(msgId));
+  return _index.proto.MediaRetryNotification.decode(plaintext);
+};
+exports.decryptMediaRetryData = decryptMediaRetryData;
+const getStatusCodeForMediaRetry = code => MEDIA_RETRY_STATUS_MAP[code];
+exports.getStatusCodeForMediaRetry = getStatusCodeForMediaRetry;
+const MEDIA_RETRY_STATUS_MAP = {
+  [_index.proto.MediaRetryNotification.ResultType.SUCCESS]: 200,
+  [_index.proto.MediaRetryNotification.ResultType.DECRYPTION_ERROR]: 412,
+  [_index.proto.MediaRetryNotification.ResultType.NOT_FOUND]: 404,
+  [_index.proto.MediaRetryNotification.ResultType.GENERAL_ERROR]: 418
+};
+//# sourceMappingURL=messages-media.js.map