@breeztech/breez-sdk-spark-react-native 0.15.0 → 0.16.1-dev1

package/lib/module/passkey-prf-provider.js

@@ -0,0 +1,293 @@
+"use strict";
+
+import { NativeModules, Platform } from 'react-native';
+import { PasskeyClient as SdkPasskeyClient, PasskeyProviderOptions } from "./generated/breez_sdk_spark.js";
+const {
+  BreezSdkSparkPasskey
+} = NativeModules;
+
+/**
+ * Diagnostic error for when the native passkey module isn't reachable. The
+ * common iOS cause is running below iOS 18, where the `@available(iOS 18.0, *)`
+ * Swift class cannot load; on Android a missing module means broken linking.
+ */
+function passkeyModuleUnavailableError(operation) {
+  if (Platform.OS === 'ios') {
+    const version = parseFloat(String(Platform.Version));
+    if (!Number.isNaN(version) && version < 18) {
+      return new Error(`Passkey PRF requires iOS 18.0 or later. ` + `This device is running iOS ${Platform.Version}, where ` + `ASAuthorizationPlatformPublicKeyCredentialPRFAssertionInput is not available. ` + `${operation} is unsupported on this device.`);
+    }
+    return new Error(`Passkey PRF native module (BreezSdkSparkPasskey) failed to load on iOS. ` + `This normally means the iOS deployment target is lower than 18.0 or ` + `the pod was not linked. ${operation} is unavailable.`);
+  }
+  if (Platform.OS === 'android') {
+    return new Error(`Passkey PRF native module (BreezSdkSparkPasskey) is not registered. ` + `Check that @breeztech/breez-sdk-spark-react-native is autolinked and ` + `that BreezSdkSparkPasskeyModule appears in BreezSdkSparkReactNativePackage. ` + `${operation} is unavailable.`);
+  }
+  return new Error(`Passkey PRF is only supported on iOS 18+ and Android 9+. ` + `${operation} is not available on ${Platform.OS}.`);
+}
+
+/**
+ * A passkey credential from a register or sign-in ceremony. `credentialId`
+ * is always set; the attestation fields are populated on registration and
+ * absent on sign-in (an assertion carries no attestation). Persist
+ * `credentialId` to drive `excludeCredentials` / `allowCredentials` on later
+ * calls. Treat `aaguid` as an unverified display hint, never a trust decision.
+ * `userId` is the user handle minted by the native plugin (never host-supplied).
+ */
+
+/**
+ * Result of {@link PasskeyProvider.checkDomainAssociation}. Switch on `kind`
+ * to handle each outcome.
+ */
+
+/**
+ * Error thrown when a passkey operation fails, with a structured `code` for
+ * programmatic handling: `userCancelled`, `userTimedOut`, `prfNotSupported`,
+ * `noCredential`, `configuration`, `credentialAlreadyExists`, `unknown`.
+ * `userTimedOut` is the OS biometric inactivity timeout (distinct from the
+ * user dismissing the prompt), so hosts may safely auto-retry it.
+ */
+export class PasskeyPrfException extends Error {
+  constructor(code, message) {
+    super(message);
+    this.name = 'PasskeyPrfException';
+    this.code = code;
+  }
+}
+
+/**
+ * Map a native bridge rejection (RN passes `{ code, message }` on the
+ * thrown error) into a typed [PasskeyPrfException].
+ */
+function mapNativeError(err) {
+  const anyErr = err;
+  const message = anyErr?.message ?? 'Unknown passkey error';
+  switch (anyErr?.code) {
+    case 'ERR_USER_CANCELLED':
+      return new PasskeyPrfException('userCancelled', message);
+    case 'ERR_USER_TIMED_OUT':
+      return new PasskeyPrfException('userTimedOut', message);
+    case 'ERR_PRF_NOT_SUPPORTED':
+      return new PasskeyPrfException('prfNotSupported', message);
+    case 'ERR_NO_CREDENTIAL':
+      return new PasskeyPrfException('noCredential', message);
+    case 'ERR_CONFIGURATION':
+      return new PasskeyPrfException('configuration', message);
+    case 'ERR_CREDENTIAL_ALREADY_EXISTS':
+      return new PasskeyPrfException('credentialAlreadyExists', message);
+    case 'ERR_AUTHENTICATION_FAILED':
+      return new PasskeyPrfException('authenticationFailed', message);
+    case 'ERR_PRF_EVALUATION_FAILED':
+      return new PasskeyPrfException('prfEvaluationFailed', message);
+    default:
+      return new PasskeyPrfException('unknown', message);
+  }
+}
+
+/**
+ * Built-in React Native passkey PRF provider, backed by AuthenticationServices
+ * on iOS and Credential Manager on Android. The default {@link PrfProvider};
+ * inject a configured instance through {@link PasskeyClientBuilder}. Requires
+ * iOS 18+ or Android 14+ (API 34) plus the Associated Domains entitlement
+ * (iOS) or assetlinks.json (Android) for the RP domain.
+ */
+export class PasskeyProvider {
+  /**
+   * Breez's shared `keys.breez.technology` RP. Pass as `rpId` to opt in
+   * (only valid for apps registered with Breez); apps with their own RP
+   * domain pass their own string.
+   */
+  static BREEZ_RP_ID = 'keys.breez.technology';
+
+  /** Default `rpName` for the zero-config client when none is supplied. */
+  static DEFAULT_RP_NAME = 'Breez';
+  constructor(options) {
+    this.rpId = options.rpId ?? PasskeyProvider.BREEZ_RP_ID;
+    this.rpName = options.rpName ?? PasskeyProvider.DEFAULT_RP_NAME;
+    this.userName = options.userName ?? this.rpName;
+    this.userDisplayName = options.userDisplayName ?? this.userName;
+  }
+
+  /**
+   * Derive one 32-byte seed per salt from passkey PRF, in as few OS prompts
+   * as the platform supports. `allowCredentials` restricts the assertion to
+   * specific credential IDs (mainly for reauthentication) when non-empty;
+   * `preferImmediatelyAvailableCredentials` overrides the platform default
+   * when set. Returns the seeds plus the asserted credential ID.
+   */
+  async deriveSeeds(request) {
+    if (!BreezSdkSparkPasskey) {
+      throw passkeyModuleUnavailableError('deriveSeeds');
+    }
+    const allowBase64 = (request.allowCredentials ?? []).map(id => uint8ArrayToBase64(id));
+    const preferImmediate = request.preferImmediatelyAvailableCredentials ?? null;
+    let result;
+    try {
+      result = await BreezSdkSparkPasskey.deriveSeeds(request.salts, this.rpId, this.rpName, this.userName, this.userDisplayName, false, allowBase64, preferImmediate);
+      if (!result || !Array.isArray(result.seeds)) {
+        throw new PasskeyPrfException('unknown', 'deriveSeeds returned an unexpected shape');
+      }
+    } catch (err) {
+      if (err instanceof PasskeyPrfException) {
+        throw err;
+      }
+      throw mapNativeError(err);
+    }
+
+    // The native module returns the asserted credential ID alongside the
+    // seeds; surface it so the SDK can pin the next derive to this exact
+    // credential.
+    return {
+      seeds: result.seeds.map(b64 => base64ToUint8Array(b64)),
+      credentialId: result.credentialId ? base64ToUint8Array(result.credentialId) : undefined
+    };
+  }
+
+  /**
+   * Register a new PRF-capable passkey (one prompt, no seed derivation): use
+   * it to split credential creation from derivation in multi-step onboarding.
+   * `excludeCredentials` blocks re-registering a device that already holds a
+   * credential, surfaced as a `credentialAlreadyExists` failure. The returned
+   * user handle is minted fresh per call (never host-supplied).
+   */
+  async createPasskey(excludeCredentials = []) {
+    if (!BreezSdkSparkPasskey) {
+      throw passkeyModuleUnavailableError('createPasskey');
+    }
+    const excludeBase64 = excludeCredentials.map(id => uint8ArrayToBase64(id));
+    try {
+      const result = await BreezSdkSparkPasskey.createPasskey(this.rpId, this.rpName, this.userName, this.userDisplayName, excludeBase64);
+      return {
+        credentialId: base64ToUint8Array(result.credentialId),
+        userId: base64ToUint8Array(result.userId),
+        aaguid: result.aaguid ? base64ToUint8Array(result.aaguid) : null,
+        backupEligible: result.backupEligible
+      };
+    } catch (err) {
+      throw mapNativeError(err);
+    }
+  }
+
+  /** Whether this device supports passkeys with the PRF extension. */
+  async isSupported() {
+    if (!BreezSdkSparkPasskey) {
+      return false;
+    }
+    return await BreezSdkSparkPasskey.isSupported();
+  }
+
+  /**
+   * Verify the app is associated with the configured `rpId` for WebAuthn.
+   * Android always returns `Skipped` rather than `NotAssociated`: Credential
+   * Manager runs its own check internally against fresher data.
+   */
+  async checkDomainAssociation() {
+    if (!BreezSdkSparkPasskey) {
+      return {
+        kind: 'Skipped',
+        reason: 'Native passkey module unavailable on this platform'
+      };
+    }
+    try {
+      const result = await BreezSdkSparkPasskey.checkDomainAssociation(this.rpId);
+      const kind = result?.kind;
+      if (kind === 'Associated') {
+        return {
+          kind: 'Associated'
+        };
+      }
+      if (kind === 'NotAssociated') {
+        return {
+          kind: 'NotAssociated',
+          source: result?.source ?? 'unknown',
+          reason: result?.reason ?? ''
+        };
+      }
+      return {
+        kind: 'Skipped',
+        reason: result?.reason ?? ''
+      };
+    } catch (err) {
+      const anyErr = err;
+      return {
+        kind: 'Skipped',
+        reason: anyErr?.message ?? 'Domain association probe failed'
+      };
+    }
+  }
+}
+
+/** Decode a base64 string to Uint8Array. */
+function base64ToUint8Array(base64) {
+  const binaryString = atob(base64);
+  const bytes = new Uint8Array(binaryString.length);
+  for (let i = 0; i < binaryString.length; i++) {
+    bytes[i] = binaryString.charCodeAt(i);
+  }
+  return bytes;
+}
+
+/** Encode a Uint8Array to base64 string. */
+function uint8ArrayToBase64(bytes) {
+  let binary = '';
+  for (const byte of bytes) {
+    binary += String.fromCharCode(byte);
+  }
+  return btoa(binary);
+}
+
+/**
+ * Builds a `PasskeyClient` backed by a caller-supplied provider. Use this
+ * for a custom PRF backend; omit the provider for the zero-config Breez-RP
+ * default and set `providerOptions` on the config to use your own RP.
+ */
+export class PasskeyClientBuilder {
+  /**
+   * @param breezApiKey Breez relay key for authenticated (NIP-42) label
+   *   storage. Omit for public relays only.
+   * @param config Passkey client config. `providerOptions` configures the
+   *   default provider (ignored when a provider is injected via
+   *   {@link withPrfProvider}, which owns its RP); `defaultLabel` is the
+   *   label-store default.
+   */
+  constructor(breezApiKey, config) {
+    this.breezApiKey = breezApiKey;
+    this.config = config;
+  }
+
+  /**
+   * Inject the provider the client derives seeds through: the built-in
+   * {@link PasskeyProvider} or any custom `PrfProvider` implementation.
+   * Supersedes the config's `providerOptions` (the injected provider owns
+   * its RP).
+   */
+  withPrfProvider(provider) {
+    this.provider = provider;
+    return this;
+  }
+
+  /**
+   * Construct the client. Falls back to a default {@link PasskeyProvider}
+   * on the config's `providerOptions` (default: the Breez RP) when no
+   * provider was injected.
+   */
+  build() {
+    // The hand-written PasskeyProvider conforms structurally to the
+    // generated PrfProvider foreign interface.
+    const provider = this.provider ?? new PasskeyProvider(this.config?.providerOptions ?? PasskeyProviderOptions.create({}));
+    return new SdkPasskeyClient(provider, this.breezApiKey, this.config);
+  }
+}
+
+/** @internal Builds the zero-config client; exposed via {@link PasskeyClient}. */
+function buildPasskeyClient(breezApiKey, config) {
+  return new PasskeyClientBuilder(breezApiKey, config).build();
+}
+
+/**
+ * Zero-config passkey client on the Breez shared RP (`keys.breez.technology`),
+ * so a Breez-registered app needs only its relay key; set `providerOptions` on
+ * the config to use your own RP. For a custom PRF backend, build the provider
+ * and inject it via {@link PasskeyClientBuilder}.
+ */
+export const PasskeyClient = buildPasskeyClient;
+//# sourceMappingURL=passkey-prf-provider.js.map

package/lib/module/passkey-prf-provider.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["NativeModules","Platform","PasskeyClient","SdkPasskeyClient","PasskeyProviderOptions","BreezSdkSparkPasskey","passkeyModuleUnavailableError","operation","OS","version","parseFloat","String","Version","Number","isNaN","Error","PasskeyPrfException","constructor","code","message","name","mapNativeError","err","anyErr","PasskeyProvider","BREEZ_RP_ID","DEFAULT_RP_NAME","options","rpId","rpName","userName","userDisplayName","deriveSeeds","request","allowBase64","allowCredentials","map","id","uint8ArrayToBase64","preferImmediate","preferImmediatelyAvailableCredentials","result","salts","Array","isArray","seeds","b64","base64ToUint8Array","credentialId","undefined","createPasskey","excludeCredentials","excludeBase64","userId","aaguid","backupEligible","isSupported","checkDomainAssociation","kind","reason","source","base64","binaryString","atob","bytes","Uint8Array","length","i","charCodeAt","binary","byte","fromCharCode","btoa","PasskeyClientBuilder","breezApiKey","config","withPrfProvider","provider","build","providerOptions","create","buildPasskeyClient"],"sourceRoot":"../../src","sources":["passkey-prf-provider.ts"],"mappings":";;AAAA,SAASA,aAAa,EAAEC,QAAQ,QAAQ,cAAc;AACtD,SACEC,aAAa,IAAIC,gBAAgB,EACjCC,sBAAsB,QAGjB,gCAA6B;AAEpC,MAAM;EAAEC;AAAqB,CAAC,GAAGL,aAAa;;AAE9C;AACA;AACA;AACA;AACA;AACA,SAASM,6BAA6BA,CAACC,SAAiB,EAAS;EAC/D,IAAIN,QAAQ,CAACO,EAAE,KAAK,KAAK,EAAE;IACzB,MAAMC,OAAO,GAAGC,UAAU,CAACC,MAAM,CAACV,QAAQ,CAACW,OAAO,CAAC,CAAC;IACpD,IAAI,CAACC,MAAM,CAACC,KAAK,CAACL,OAAO,CAAC,IAAIA,OAAO,GAAG,EAAE,EAAE;MAC1C,OAAO,IAAIM,KAAK,CACd,0CAA0C,GACxC,8BAA8Bd,QAAQ,CAACW,OAAO,UAAU,GACxD,gFAAgF,GAChF,GAAGL,SAAS,iCAChB,CAAC;IACH;IACA,OAAO,IAAIQ,KAAK,CACd,0EAA0E,GACxE,sEAAsE,GACtE,2BAA2BR,SAAS,kBACxC,CAAC;EACH;EACA,IAAIN,QAAQ,CAACO,EAAE,KAAK,SAAS,EAAE;IAC7B,OAAO,IAAIO,KAAK,CACd,sEAAsE,GACpE,uEAAuE,GACvE,8EAA8E,GAC9E,GAAGR,SAAS,kBAChB,CAAC;EACH;EACA,OAAO,IAAIQ,KAAK,CACd,2DAA2D,GACzD,GAAGR,SAAS,wBAAwBN,QAAQ,CAACO,EAAE,GACnD,CAAC;AACH;;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAQA;AACA;AACA;AACA;;AAMA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMQ,mBAAmB,SAASD,KAAK,CAAC;EAG7CE,WAAWA,CAACC,IAAY,EAAEC,OAAe,EAAE;IACzC,KAAK,CAACA,OAAO,CAAC;IACd,IAAI,CAACC,IAAI,GAAG,qBAAqB;IACjC,IAAI,CAACF,IAAI,GAAGA,IAAI;EAClB;AACF;;AAEA;AACA;AACA;AACA;AACA,SAASG,cAAcA,CAACC,GAAY,EAAuB;EACzD,MAAMC,MAAM,GAAGD,GAA0C;EACzD,MAAMH,OAAO,GAAGI,MAAM,EAAEJ,OAAO,IAAI,uBAAuB;EAC1D,QAAQI,MAAM,EAAEL,IAAI;IAClB,KAAK,oBAAoB;MACvB,OAAO,IAAIF,mBAAmB,CAAC,eAAe,EAAEG,OAAO,CAAC;IAC1D,KAAK,oBAAoB;MACvB,OAAO,IAAIH,mBAAmB,CAAC,cAAc,EAAEG,OAAO,CAAC;IACzD,KAAK,uBAAuB;MAC1B,OAAO,IAAIH,mBAAmB,CAAC,iBAAiB,EAAEG,OAAO,CAAC;IAC5D,KAAK,mBAAmB;MACtB,OAAO,IAAIH,mBAAmB,CAAC,cAAc,EAAEG,OAAO,CAAC;IACzD,KAAK,mBAAmB;MACtB,OAAO,IAAIH,mBAAmB,CAAC,eAAe,EAAEG,OAAO,CAAC;IAC1D,KAAK,+BAA+B;MAClC,OAAO,IAAIH,mBAAmB,CAAC,yBAAyB,EAAEG,OAAO,CAAC;IACpE,KAAK,2BAA2B;MAC9B,OAAO,IAAIH,mBAAmB,CAAC,sBAAsB,EAAEG,OAAO,CAAC;IACjE,KAAK,2BAA2B;MAC9B,OAAO,IAAIH,mBAAmB,CAAC,qBAAqB,EAAEG,OAAO,CAAC;IAChE;MACE,OAAO,IAAIH,mBAAmB,CAAC,SAAS,EAAEG,OAAO,CAAC;EACtD;AACF;;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMK,eAAe,CAAC;EAC3B;AACF;AACA;AACA;AACA;EACE,OAAgBC,WAAW,GAAW,uBAAuB;;EAE7D;EACA,OAAgBC,eAAe,GAAW,OAAO;EAOjDT,WAAWA,CAACU,OAA+B,EAAE;IAC3C,IAAI,CAACC,IAAI,GAAGD,OAAO,CAACC,IAAI,IAAIJ,eAAe,CAACC,WAAW;IACvD,IAAI,CAACI,MAAM,GAAGF,OAAO,CAACE,MAAM,IAAIL,eAAe,CAACE,eAAe;IAC/D,IAAI,CAACI,QAAQ,GAAGH,OAAO,CAACG,QAAQ,IAAI,IAAI,CAACD,MAAM;IAC/C,IAAI,CAACE,eAAe,GAAGJ,OAAO,CAACI,eAAe,IAAI,IAAI,CAACD,QAAQ;EACjE;;EAEA;AACF;AACA;AACA;AACA;AACA;AACA;EACE,MAAME,WAAWA,CAACC,OAIjB,EAA+D;IAC9D,IAAI,CAAC5B,oBAAoB,EAAE;MACzB,MAAMC,6BAA6B,CAAC,aAAa,CAAC;IACpD;IAEA,MAAM4B,WAAW,GAAG,CAACD,OAAO,CAACE,gBAAgB,IAAI,EAAE,EAAEC,GAAG,CAACC,EAAE,IACzDC,kBAAkB,CAACD,EAAE,CACvB,CAAC;IACD,MAAME,eAAe,GAAGN,OAAO,CAACO,qCAAqC,IAAI,IAAI;IAE7E,IAAIC,MAAyD;IAC7D,IAAI;MACFA,MAAM,GAAG,MAAMpC,oBAAoB,CAAC2B,WAAW,CAC7CC,OAAO,CAACS,KAAK,EACb,IAAI,CAACd,IAAI,EACT,IAAI,CAACC,MAAM,EACX,IAAI,CAACC,QAAQ,EACb,IAAI,CAACC,eAAe,EACpB,KAAK,EACLG,WAAW,EACXK,eACF,CAAC;MACD,IAAI,CAACE,MAAM,IAAI,CAACE,KAAK,CAACC,OAAO,CAACH,MAAM,CAACI,KAAK,CAAC,EAAE;QAC3C,MAAM,IAAI7B,mBAAmB,CAAC,SAAS,EAAE,0CAA0C,CAAC;MACtF;IACF,CAAC,CAAC,OAAOM,GAAG,EAAE;MACZ,IAAIA,GAAG,YAAYN,mBAAmB,EAAE;QACtC,MAAMM,GAAG;MACX;MACA,MAAMD,cAAc,CAACC,GAAG,CAAC;IAC3B;;IAEA;IACA;IACA;IACA,OAAO;MACLuB,KAAK,EAAEJ,MAAM,CAACI,KAAK,CAACT,GAAG,CAACU,GAAG,IAAIC,kBAAkB,CAACD,GAAG,CAAC,CAAC;MACvDE,YAAY,EAAEP,MAAM,CAACO,YAAY,GAC7BD,kBAAkB,CAACN,MAAM,CAACO,YAAY,CAAC,GACvCC;IACN,CAAC;EACH;;EAEA;AACF;AACA;AACA;AACA;AACA;AACA;EACE,MAAMC,aAAaA,CAACC,kBAAgC,GAAG,EAAE,EAA8B;IACrF,IAAI,CAAC9C,oBAAoB,EAAE;MACzB,MAAMC,6BAA6B,CAAC,eAAe,CAAC;IACtD;IAEA,MAAM8C,aAAa,GAAGD,kBAAkB,CAACf,GAAG,CAACC,EAAE,IAAIC,kBAAkB,CAACD,EAAE,CAAC,CAAC;IAE1E,IAAI;MACF,MAAMI,MAKL,GAAG,MAAMpC,oBAAoB,CAAC6C,aAAa,CAC1C,IAAI,CAACtB,IAAI,EACT,IAAI,CAACC,MAAM,EACX,IAAI,CAACC,QAAQ,EACb,IAAI,CAACC,eAAe,EACpBqB,aACF,CAAC;MAED,OAAO;QACLJ,YAAY,EAAED,kBAAkB,CAACN,MAAM,CAACO,YAAY,CAAC;QACrDK,MAAM,EAAEN,kBAAkB,CAACN,MAAM,CAACY,MAAM,CAAC;QACzCC,MAAM,EAAEb,MAAM,CAACa,MAAM,GAAGP,kBAAkB,CAACN,MAAM,CAACa,MAAM,CAAC,GAAG,IAAI;QAChEC,cAAc,EAAEd,MAAM,CAACc;MACzB,CAAC;IACH,CAAC,CAAC,OAAOjC,GAAG,EAAE;MACZ,MAAMD,cAAc,CAACC,GAAG,CAAC;IAC3B;EACF;;EAEA;EACA,MAAMkC,WAAWA,CAAA,EAAqB;IACpC,IAAI,CAACnD,oBAAoB,EAAE;MACzB,OAAO,KAAK;IACd;IAEA,OAAO,MAAMA,oBAAoB,CAACmD,WAAW,CAAC,CAAC;EACjD;;EAEA;AACF;AACA;AACA;AACA;EACE,MAAMC,sBAAsBA,CAAA,EAA+B;IACzD,IAAI,CAACpD,oBAAoB,EAAE;MACzB,OAAO;QACLqD,IAAI,EAAE,SAAS;QACfC,MAAM,EAAE;MACV,CAAC;IACH;IACA,IAAI;MACF,MAAMlB,MAAM,GAAG,MAAMpC,oBAAoB,CAACoD,sBAAsB,CAAC,IAAI,CAAC7B,IAAI,CAAC;MAC3E,MAAM8B,IAAI,GAAGjB,MAAM,EAAEiB,IAAI;MACzB,IAAIA,IAAI,KAAK,YAAY,EAAE;QACzB,OAAO;UAAEA,IAAI,EAAE;QAAa,CAAC;MAC/B;MACA,IAAIA,IAAI,KAAK,eAAe,EAAE;QAC5B,OAAO;UACLA,IAAI,EAAE,eAAe;UACrBE,MAAM,EAAEnB,MAAM,EAAEmB,MAAM,IAAI,SAAS;UACnCD,MAAM,EAAElB,MAAM,EAAEkB,MAAM,IAAI;QAC5B,CAAC;MACH;MACA,OAAO;QAAED,IAAI,EAAE,SAAS;QAAEC,MAAM,EAAElB,MAAM,EAAEkB,MAAM,IAAI;MAAG,CAAC;IAC1D,CAAC,CAAC,OAAOrC,GAAG,EAAE;MACZ,MAAMC,MAAM,GAAGD,GAA2B;MAC1C,OAAO;QACLoC,IAAI,EAAE,SAAS;QACfC,MAAM,EAAEpC,MAAM,EAAEJ,OAAO,IAAI;MAC7B,CAAC;IACH;EACF;AACF;;AAEA;AACA,SAAS4B,kBAAkBA,CAACc,MAAc,EAAc;EACtD,MAAMC,YAAY,GAAGC,IAAI,CAACF,MAAM,CAAC;EACjC,MAAMG,KAAK,GAAG,IAAIC,UAAU,CAACH,YAAY,CAACI,MAAM,CAAC;EACjD,KAAK,IAAIC,CAAC,GAAG,CAAC,EAAEA,CAAC,GAAGL,YAAY,CAACI,MAAM,EAAEC,CAAC,EAAE,EAAE;IAC5CH,KAAK,CAACG,CAAC,CAAC,GAAGL,YAAY,CAACM,UAAU,CAACD,CAAC,CAAC;EACvC;EACA,OAAOH,KAAK;AACd;;AAEA;AACA,SAAS1B,kBAAkBA,CAAC0B,KAAiB,EAAU;EACrD,IAAIK,MAAM,GAAG,EAAE;EACf,KAAK,MAAMC,IAAI,IAAIN,KAAK,EAAE;IACxBK,MAAM,IAAI1D,MAAM,CAAC4D,YAAY,CAACD,IAAI,CAAC;EACrC;EACA,OAAOE,IAAI,CAACH,MAAM,CAAC;AACrB;;AAEA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMI,oBAAoB,CAAC;EAGhC;AACF;AACA;AACA;AACA;AACA;AACA;AACA;EACExD,WAAWA,CACQyD,WAAoB,EACpBC,MAAsB,EACvC;IAAA,KAFiBD,WAAoB,GAApBA,WAAoB;IAAA,KACpBC,MAAsB,GAAtBA,MAAsB;EACtC;;EAEH;AACF;AACA;AACA;AACA;AACA;EACEC,eAAeA,CAACC,QAAqB,EAAQ;IAC3C,IAAI,CAACA,QAAQ,GAAGA,QAAQ;IACxB,OAAO,IAAI;EACb;;EAEA;AACF;AACA;AACA;AACA;EACEC,KAAKA,CAAA,EAAqB;IACxB;IACA;IACA,MAAMD,QAAqB,GACzB,IAAI,CAACA,QAAQ,IACZ,IAAIrD,eAAe,CAClB,IAAI,CAACmD,MAAM,EAAEI,eAAe,IAAI3E,sBAAsB,CAAC4E,MAAM,CAAC,CAAC,CAAC,CAClE,CAA4B;IAC9B,OAAO,IAAI7E,gBAAgB,CAAC0E,QAAQ,EAAE,IAAI,CAACH,WAAW,EAAE,IAAI,CAACC,MAAM,CAAC;EACtE;AACF;;AAEA;AACA,SAASM,kBAAkBA,CACzBP,WAAoB,EACpBC,MAAsB,EACJ;EAClB,OAAO,IAAIF,oBAAoB,CAACC,WAAW,EAAEC,MAAM,CAAC,CAACG,KAAK,CAAC,CAAC;AAC9D;;AAEA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAM5E,aAEZ,GAAG+E,kBAEH","ignoreList":[]}