@digitaldefiance/ecies-lib 1.0.0

package/dist/services/ecies/service.js

@@ -0,0 +1,186 @@
+import { ECIES } from '../../constants';
+import { EciesEncryptionTypeEnum, } from '../../enumerations/ecies-encryption-type';
+import { EciesCryptoCore } from './crypto-core';
+import { EciesSignature } from './signature';
+import { EciesSingleRecipient } from './single-recipient';
+/**
+ * Browser-compatible ECIES service that mirrors the server-side functionality
+ * Uses Web Crypto API and @scure/@noble libraries for browser compatibility
+ */
+export class ECIESService {
+    _config;
+    cryptoCore;
+    signature;
+    singleRecipient;
+    constructor(config) {
+        this._config = {
+            curveName: ECIES.CURVE_NAME,
+            primaryKeyDerivationPath: ECIES.PRIMARY_KEY_DERIVATION_PATH,
+            mnemonicStrength: ECIES.MNEMONIC_STRENGTH,
+            symmetricAlgorithm: ECIES.SYMMETRIC.ALGORITHM,
+            symmetricKeyBits: ECIES.SYMMETRIC.KEY_BITS,
+            symmetricKeyMode: ECIES.SYMMETRIC.MODE,
+            ...config,
+        };
+        // Initialize components
+        this.cryptoCore = new EciesCryptoCore(this._config);
+        this.signature = new EciesSignature(this.cryptoCore);
+        this.singleRecipient = new EciesSingleRecipient(this._config);
+    }
+    get core() {
+        return this.cryptoCore;
+    }
+    get config() {
+        return this._config;
+    }
+    get curveName() {
+        return this._config.curveName;
+    }
+    // === Key Management Methods ===
+    /**
+     * Generate a new mnemonic
+     */
+    generateNewMnemonic() {
+        return this.cryptoCore.generateNewMnemonic();
+    }
+    /**
+     * Generate wallet and seed from mnemonic
+     */
+    walletAndSeedFromMnemonic(mnemonic) {
+        return this.cryptoCore.walletAndSeedFromMnemonic(mnemonic);
+    }
+    /**
+     * Create simple key pair from seed
+     */
+    seedToSimpleKeyPair(seed) {
+        return this.cryptoCore.seedToSimpleKeyPair(seed);
+    }
+    /**
+     * Create simple key pair from mnemonic
+     */
+    mnemonicToSimpleKeyPair(mnemonic) {
+        return this.cryptoCore.mnemonicToSimpleKeyPair(mnemonic);
+    }
+    /**
+     * Get public key from private key
+     */
+    getPublicKey(privateKey) {
+        return this.cryptoCore.getPublicKey(privateKey);
+    }
+    // === Core Encryption/Decryption Methods ===
+    /**
+     * Encrypt for single recipient (simple or single mode)
+     */
+    async encryptSimpleOrSingle(encryptSimple, receiverPublicKey, message, preamble = new Uint8Array(0)) {
+        return this.singleRecipient.encrypt(encryptSimple, receiverPublicKey, message, preamble);
+    }
+    /**
+     * Parse single encrypted header
+     */
+    parseSingleEncryptedHeader(encryptionType, data, preambleSize = 0, options) {
+        const { header } = this.singleRecipient.parseEncryptedMessage(encryptionType, data, preambleSize, options);
+        return header;
+    }
+    /**
+     * Decrypt with header
+     */
+    async decryptSimpleOrSingleWithHeader(decryptSimple, privateKey, encryptedData, preambleSize = 0, options) {
+        return await this.singleRecipient.decryptWithHeader(decryptSimple
+            ? EciesEncryptionTypeEnum.Simple
+            : EciesEncryptionTypeEnum.Single, privateKey, encryptedData, preambleSize, options);
+    }
+    /**
+     * Extended decrypt with header
+     */
+    async decryptSimpleOrSingleWithHeaderEx(encryptionType, privateKey, encryptedData, preambleSize = 0, options) {
+        return this.singleRecipient.decryptWithHeaderEx(encryptionType, privateKey, encryptedData, preambleSize, options);
+    }
+    /**
+     * Decrypt with individual components
+     */
+    async decryptSingleWithComponents(privateKey, ephemeralPublicKey, iv, authTag, encrypted) {
+        const decrypted = await this.singleRecipient.decryptWithComponents(privateKey, ephemeralPublicKey, iv, authTag, encrypted);
+        return { decrypted, ciphertextLength: encrypted.length };
+    }
+    // === Signature Methods ===
+    /**
+     * Sign a message
+     */
+    signMessage(privateKey, data) {
+        return this.signature.signMessage(privateKey, data);
+    }
+    /**
+     * Verify a message signature
+     */
+    verifyMessage(publicKey, data, signature) {
+        return this.signature.verifyMessage(publicKey, data, signature);
+    }
+    /**
+     * Convert signature string to buffer
+     */
+    signatureStringToSignatureUint8Array(signatureString) {
+        return this.signature.signatureStringToSignatureUint8Array(signatureString);
+    }
+    /**
+     * Convert signature buffer to string
+     */
+    signatureUint8ArrayToSignatureString(signatureArray) {
+        return this.signature.signatureUint8ArrayToSignatureString(signatureArray);
+    }
+    // === Utility Methods ===
+    /**
+     * Compute encrypted length from data length
+     */
+    computeEncryptedLengthFromDataLength(dataLength, encryptionMode, recipientCount) {
+        if (dataLength < 0) {
+            throw new Error('Invalid data length');
+        }
+        switch (encryptionMode) {
+            case 'simple':
+                return dataLength + ECIES.SIMPLE.FIXED_OVERHEAD_SIZE;
+            case 'single':
+                return dataLength + ECIES.SINGLE.FIXED_OVERHEAD_SIZE;
+            case 'multiple':
+                // Basic calculation for multiple recipients
+                return (dataLength +
+                    ECIES.MULTIPLE.FIXED_OVERHEAD_SIZE +
+                    (recipientCount ?? 1) * ECIES.MULTIPLE.ENCRYPTED_KEY_SIZE);
+            default:
+                throw new Error('Invalid encryption type');
+        }
+    }
+    /**
+     * Compute decrypted length from encrypted data length
+     */
+    computeDecryptedLengthFromEncryptedDataLength(encryptedDataLength, padding) {
+        if (encryptedDataLength < 0) {
+            throw new Error('Invalid encrypted data length');
+        }
+        const overhead = ECIES.SINGLE.FIXED_OVERHEAD_SIZE;
+        const actualPadding = padding !== undefined ? padding : 0;
+        const decryptedLength = encryptedDataLength - overhead - actualPadding;
+        if (decryptedLength < 0) {
+            throw new Error('Computed decrypted length is negative');
+        }
+        return decryptedLength;
+    }
+    /**
+     * Generic encrypt method
+     */
+    async encrypt(encryptionType, recipients, message, preamble) {
+        if ((encryptionType === EciesEncryptionTypeEnum.Simple ||
+            EciesEncryptionTypeEnum.Single) &&
+            recipients.length === 1) {
+            return this.singleRecipient.encrypt(encryptionType === EciesEncryptionTypeEnum.Simple, recipients[0].publicKey, message, preamble);
+        }
+        else if (encryptionType === EciesEncryptionTypeEnum.Multiple &&
+            recipients.length > 1) {
+            // TODO: Implement multi-recipient encryption
+            throw new Error('Multi-recipient encryption not yet implemented');
+        }
+        else {
+            throw new Error(`Invalid encryption type or number of recipients: ${encryptionType}, ${recipients.length}`);
+        }
+    }
+}
+//# sourceMappingURL=service.js.map

package/dist/services/ecies/service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"service.js","sourceRoot":"","sources":["../../../src/services/ecies/service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,iBAAiB,CAAC;AACxC,OAAO,EAEL,uBAAuB,GACxB,MAAM,0CAA0C,CAAC;AAIlD,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAEhD,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAC7C,OAAO,EAAE,oBAAoB,EAAE,MAAM,oBAAoB,CAAC;AAE1D;;;GAGG;AACH,MAAM,OAAO,YAAY;IACN,OAAO,CAAe;IACtB,UAAU,CAAkB;IAC5B,SAAS,CAAiB;IAC1B,eAAe,CAAuB;IAEvD,YAAY,MAA8B;QACxC,IAAI,CAAC,OAAO,GAAG;YACb,SAAS,EAAE,KAAK,CAAC,UAAU;YAC3B,wBAAwB,EAAE,KAAK,CAAC,2BAA2B;YAC3D,gBAAgB,EAAE,KAAK,CAAC,iBAAiB;YACzC,kBAAkB,EAAE,KAAK,CAAC,SAAS,CAAC,SAAS;YAC7C,gBAAgB,EAAE,KAAK,CAAC,SAAS,CAAC,QAAQ;YAC1C,gBAAgB,EAAE,KAAK,CAAC,SAAS,CAAC,IAAI;YACtC,GAAG,MAAM;SACV,CAAC;QAEF,wBAAwB;QACxB,IAAI,CAAC,UAAU,GAAG,IAAI,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACpD,IAAI,CAAC,SAAS,GAAG,IAAI,cAAc,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QACrD,IAAI,CAAC,eAAe,GAAG,IAAI,oBAAoB,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IAChE,CAAC;IAED,IAAW,IAAI;QACb,OAAO,IAAI,CAAC,UAAU,CAAC;IACzB,CAAC;IAED,IAAW,MAAM;QACf,OAAO,IAAI,CAAC,OAAO,CAAC;IACtB,CAAC;IAED,IAAW,SAAS;QAClB,OAAO,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC;IAChC,CAAC;IAED,iCAAiC;IAEjC;;OAEG;IACI,mBAAmB;QACxB,OAAO,IAAI,CAAC,UAAU,CAAC,mBAAmB,EAAE,CAAC;IAC/C,CAAC;IAED;;OAEG;IACI,yBAAyB,CAAC,QAAsB;QACrD,OAAO,IAAI,CAAC,UAAU,CAAC,yBAAyB,CAAC,QAAQ,CAAC,CAAC;IAC7D,CAAC;IAED;;OAEG;IACI,mBAAmB,CAAC,IAAgB;QACzC,OAAO,IAAI,CAAC,UAAU,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC;IACnD,CAAC;IAED;;OAEG;IACI,uBAAuB,CAAC,QAAsB;QACnD,OAAO,IAAI,CAAC,UAAU,CAAC,uBAAuB,CAAC,QAAQ,CAAC,CAAC;IAC3D,CAAC;IAED;;OAEG;IACI,YAAY,CAAC,UAAsB;QACxC,OAAO,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,UAAU,CAAC,CAAC;IAClD,CAAC;IAED,6CAA6C;IAE7C;;OAEG;IACI,KAAK,CAAC,qBAAqB,CAChC,aAAsB,EACtB,iBAA6B,EAC7B,OAAmB,EACnB,WAAuB,IAAI,UAAU,CAAC,CAAC,CAAC;QAExC,OAAO,IAAI,CAAC,eAAe,CAAC,OAAO,CACjC,aAAa,EACb,iBAAiB,EACjB,OAAO,EACP,QAAQ,CACT,CAAC;IACJ,CAAC;IAED;;OAEG;IACI,0BAA0B,CAC/B,cAAuC,EACvC,IAAgB,EAChB,eAAuB,CAAC,EACxB,OAAiC;QAEjC,MAAM,EAAE,MAAM,EAAE,GAAG,IAAI,CAAC,eAAe,CAAC,qBAAqB,CAC3D,cAAc,EACd,IAAI,EACJ,YAAY,EACZ,OAAO,CACR,CAAC;QACF,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,+BAA+B,CAC1C,aAAsB,EACtB,UAAsB,EACtB,aAAyB,EACzB,eAAuB,CAAC,EACxB,OAAiC;QAEjC,OAAO,MAAM,IAAI,CAAC,eAAe,CAAC,iBAAiB,CACjD,aAAa;YACX,CAAC,CAAC,uBAAuB,CAAC,MAAM;YAChC,CAAC,CAAC,uBAAuB,CAAC,MAAM,EAClC,UAAU,EACV,aAAa,EACb,YAAY,EACZ,OAAO,CACR,CAAC;IACJ,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,iCAAiC,CAC5C,cAAuC,EACvC,UAAsB,EACtB,aAAyB,EACzB,eAAuB,CAAC,EACxB,OAAiC;QAEjC,OAAO,IAAI,CAAC,eAAe,CAAC,mBAAmB,CAC7C,cAAc,EACd,UAAU,EACV,aAAa,EACb,YAAY,EACZ,OAAO,CACR,CAAC;IACJ,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,2BAA2B,CACtC,UAAsB,EACtB,kBAA8B,EAC9B,EAAc,EACd,OAAmB,EACnB,SAAqB;QAErB,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,qBAAqB,CAChE,UAAU,EACV,kBAAkB,EAClB,EAAE,EACF,OAAO,EACP,SAAS,CACV,CAAC;QAEF,OAAO,EAAE,SAAS,EAAE,gBAAgB,EAAE,SAAS,CAAC,MAAM,EAAE,CAAC;IAC3D,CAAC;IAED,4BAA4B;IAE5B;;OAEG;IACI,WAAW,CAChB,UAAsB,EACtB,IAAgB;QAEhB,OAAO,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,UAAU,EAAE,IAAI,CAAC,CAAC;IACtD,CAAC;IAED;;OAEG;IACI,aAAa,CAClB,SAAqB,EACrB,IAAgB,EAChB,SAA8B;QAE9B,OAAO,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,SAAS,EAAE,IAAI,EAAE,SAAS,CAAC,CAAC;IAClE,CAAC;IAED;;OAEG;IACI,oCAAoC,CACzC,eAAgC;QAEhC,OAAO,IAAI,CAAC,SAAS,CAAC,oCAAoC,CAAC,eAAe,CAAC,CAAC;IAC9E,CAAC;IAED;;OAEG;IACI,oCAAoC,CACzC,cAAmC;QAEnC,OAAO,IAAI,CAAC,SAAS,CAAC,oCAAoC,CAAC,cAAc,CAAC,CAAC;IAC7E,CAAC;IAED,0BAA0B;IAE1B;;OAEG;IACI,oCAAoC,CACzC,UAAkB,EAClB,cAAmC,EACnC,cAAuB;QAEvB,IAAI,UAAU,GAAG,CAAC,EAAE,CAAC;YACnB,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QACzC,CAAC;QAED,QAAQ,cAAc,EAAE,CAAC;YACvB,KAAK,QAAQ;gBACX,OAAO,UAAU,GAAG,KAAK,CAAC,MAAM,CAAC,mBAAmB,CAAC;YACvD,KAAK,QAAQ;gBACX,OAAO,UAAU,GAAG,KAAK,CAAC,MAAM,CAAC,mBAAmB,CAAC;YACvD,KAAK,UAAU;gBACb,4CAA4C;gBAC5C,OAAO,CACL,UAAU;oBACV,KAAK,CAAC,QAAQ,CAAC,mBAAmB;oBAClC,CAAC,cAAc,IAAI,CAAC,CAAC,GAAG,KAAK,CAAC,QAAQ,CAAC,kBAAkB,CAC1D,CAAC;YACJ;gBACE,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAC/C,CAAC;IACH,CAAC;IAED;;OAEG;IACI,6CAA6C,CAClD,mBAA2B,EAC3B,OAAgB;QAEhB,IAAI,mBAAmB,GAAG,CAAC,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC;QACnD,CAAC;QAED,MAAM,QAAQ,GAAG,KAAK,CAAC,MAAM,CAAC,mBAAmB,CAAC;QAClD,MAAM,aAAa,GAAG,OAAO,KAAK,SAAS,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;QAC1D,MAAM,eAAe,GAAG,mBAAmB,GAAG,QAAQ,GAAG,aAAa,CAAC;QAEvE,IAAI,eAAe,GAAG,CAAC,EAAE,CAAC;YACxB,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;QAC3D,CAAC;QAED,OAAO,eAAe,CAAC;IACzB,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,OAAO,CAClB,cAAuC,EACvC,UAA4C,EAC5C,OAAmB,EACnB,QAAqB;QAErB,IACE,CAAC,cAAc,KAAK,uBAAuB,CAAC,MAAM;YAChD,uBAAuB,CAAC,MAAM,CAAC;YACjC,UAAU,CAAC,MAAM,KAAK,CAAC,EACvB,CAAC;YACD,OAAO,IAAI,CAAC,eAAe,CAAC,OAAO,CACjC,cAAc,KAAK,uBAAuB,CAAC,MAAM,EACjD,UAAU,CAAC,CAAC,CAAC,CAAC,SAAS,EACvB,OAAO,EACP,QAAQ,CACT,CAAC;QACJ,CAAC;aAAM,IACL,cAAc,KAAK,uBAAuB,CAAC,QAAQ;YACnD,UAAU,CAAC,MAAM,GAAG,CAAC,EACrB,CAAC;YACD,6CAA6C;YAC7C,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;QACpE,CAAC;aAAM,CAAC;YACN,MAAM,IAAI,KAAK,CACb,oDAAoD,cAAc,KAAK,UAAU,CAAC,MAAM,EAAE,CAC3F,CAAC;QACJ,CAAC;IACH,CAAC;CACF"}

package/dist/services/ecies/signature.d.ts

@@ -0,0 +1,27 @@
+import { SignatureString, SignatureUint8Array } from '../../types';
+import { EciesCryptoCore } from './crypto-core';
+/**
+ * Browser-compatible ECDSA signature operations
+ */
+export declare class EciesSignature {
+    private readonly cryptoCore;
+    constructor(cryptoCore: EciesCryptoCore);
+    /**
+     * Sign arbitrary binary data with a secp256k1 private key.
+     * Returns 64 bytes: [r(32) | s(32)]
+     */
+    signMessage(privateKey: Uint8Array, data: Uint8Array): SignatureUint8Array;
+    /**
+     * Verify signature (64 bytes: [r|s]) over arbitrary binary data against a public key.
+     */
+    verifyMessage(publicKey: Uint8Array, data: Uint8Array, signature: SignatureUint8Array): boolean;
+    /**
+     * Convert signature string to signature Uint8Array
+     */
+    signatureStringToSignatureUint8Array(signatureString: SignatureString): SignatureUint8Array;
+    /**
+     * Convert signature buffer to signature string
+     */
+    signatureUint8ArrayToSignatureString(signatureArray: SignatureUint8Array): SignatureString;
+}
+//# sourceMappingURL=signature.d.ts.map

package/dist/services/ecies/signature.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"signature.d.ts","sourceRoot":"","sources":["../../../src/services/ecies/signature.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,eAAe,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAC;AAEnE,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAEhD;;GAEG;AACH,qBAAa,cAAc;IACzB,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAkB;gBAEjC,UAAU,EAAE,eAAe;IAIvC;;;OAGG;IACI,WAAW,CAChB,UAAU,EAAE,UAAU,EACtB,IAAI,EAAE,UAAU,GACf,mBAAmB;IAUtB;;OAEG;IACI,aAAa,CAClB,SAAS,EAAE,UAAU,EACrB,IAAI,EAAE,UAAU,EAChB,SAAS,EAAE,mBAAmB,GAC7B,OAAO;IA8BV;;OAEG;IACI,oCAAoC,CACzC,eAAe,EAAE,eAAe,GAC/B,mBAAmB;IAStB;;OAEG;IACI,oCAAoC,CACzC,cAAc,EAAE,mBAAmB,GAClC,eAAe;CAGnB"}

package/dist/services/ecies/signature.js

@@ -0,0 +1,72 @@
+import { secp256k1 } from '@noble/curves/secp256k1.js';
+import { sha256 } from '@noble/hashes/sha2.js';
+import { uint8ArrayToHex } from '../../utils';
+/**
+ * Browser-compatible ECDSA signature operations
+ */
+export class EciesSignature {
+    cryptoCore;
+    constructor(cryptoCore) {
+        this.cryptoCore = cryptoCore;
+    }
+    /**
+     * Sign arbitrary binary data with a secp256k1 private key.
+     * Returns 64 bytes: [r(32) | s(32)]
+     */
+    signMessage(privateKey, data) {
+        const hash = sha256(data);
+        // Use deterministic signatures (RFC 6979) for consistency
+        const signature = secp256k1.sign(hash, privateKey, {
+            format: 'compact',
+            extraEntropy: false,
+        });
+        return signature;
+    }
+    /**
+     * Verify signature (64 bytes: [r|s]) over arbitrary binary data against a public key.
+     */
+    verifyMessage(publicKey, data, signature) {
+        try {
+            if (!signature || signature.length !== 64)
+                return false;
+            const hash = sha256(data);
+            const normalizedPublicKey = this.cryptoCore.normalizePublicKey(publicKey);
+            // Try direct verification first
+            try {
+                const directResult = secp256k1.verify(signature, hash, normalizedPublicKey);
+                if (directResult)
+                    return true;
+            }
+            catch {
+                // Continue to alternative verification methods
+            }
+            // If direct verification fails, the signature might be from a different library
+            // that uses different nonce generation. Since we can't make @noble/curves
+            // verify signatures from ethereumjs-util directly, we'll return false here.
+            // The calling code should handle cross-platform verification at a higher level.
+            return false;
+        }
+        catch (err) {
+            console.error('Signature verification failed:', err);
+            return false;
+        }
+    }
+    /**
+     * Convert signature string to signature Uint8Array
+     */
+    signatureStringToSignatureUint8Array(signatureString) {
+        const cleanHex = signatureString.replace(/^0x/, '');
+        const result = new Uint8Array(cleanHex.length / 2);
+        for (let i = 0; i < cleanHex.length; i += 2) {
+            result[i / 2] = parseInt(cleanHex.substring(i, i + 2), 16);
+        }
+        return result;
+    }
+    /**
+     * Convert signature buffer to signature string
+     */
+    signatureUint8ArrayToSignatureString(signatureArray) {
+        return uint8ArrayToHex(signatureArray);
+    }
+}
+//# sourceMappingURL=signature.js.map

package/dist/services/ecies/signature.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"signature.js","sourceRoot":"","sources":["../../../src/services/ecies/signature.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,4BAA4B,CAAC;AACvD,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAE/C,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAG9C;;GAEG;AACH,MAAM,OAAO,cAAc;IACR,UAAU,CAAkB;IAE7C,YAAY,UAA2B;QACrC,IAAI,CAAC,UAAU,GAAG,UAAU,CAAC;IAC/B,CAAC;IAED;;;OAGG;IACI,WAAW,CAChB,UAAsB,EACtB,IAAgB;QAEhB,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC;QAC1B,0DAA0D;QAC1D,MAAM,SAAS,GAAG,SAAS,CAAC,IAAI,CAAC,IAAI,EAAE,UAAU,EAAE;YACjD,MAAM,EAAE,SAAS;YACjB,YAAY,EAAE,KAAK;SACpB,CAAC,CAAC;QACH,OAAO,SAAgC,CAAC;IAC1C,CAAC;IAED;;OAEG;IACI,aAAa,CAClB,SAAqB,EACrB,IAAgB,EAChB,SAA8B;QAE9B,IAAI,CAAC;YACH,IAAI,CAAC,SAAS,IAAI,SAAS,CAAC,MAAM,KAAK,EAAE;gBAAE,OAAO,KAAK,CAAC;YACxD,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC;YAC1B,MAAM,mBAAmB,GAAG,IAAI,CAAC,UAAU,CAAC,kBAAkB,CAAC,SAAS,CAAC,CAAC;YAE1E,gCAAgC;YAChC,IAAI,CAAC;gBACH,MAAM,YAAY,GAAG,SAAS,CAAC,MAAM,CACnC,SAAS,EACT,IAAI,EACJ,mBAAmB,CACpB,CAAC;gBACF,IAAI,YAAY;oBAAE,OAAO,IAAI,CAAC;YAChC,CAAC;YAAC,MAAM,CAAC;gBACP,+CAA+C;YACjD,CAAC;YAED,gFAAgF;YAChF,0EAA0E;YAC1E,4EAA4E;YAC5E,gFAAgF;YAEhF,OAAO,KAAK,CAAC;QACf,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO,CAAC,KAAK,CAAC,gCAAgC,EAAE,GAAG,CAAC,CAAC;YACrD,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAED;;OAEG;IACI,oCAAoC,CACzC,eAAgC;QAEhC,MAAM,QAAQ,GAAG,eAAe,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QACpD,MAAM,MAAM,GAAG,IAAI,UAAU,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;QACnD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC;YAC5C,MAAM,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,QAAQ,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QAC7D,CAAC;QACD,OAAO,MAA6B,CAAC;IACvC,CAAC;IAED;;OAEG;IACI,oCAAoC,CACzC,cAAmC;QAEnC,OAAO,eAAe,CAAC,cAAc,CAAoB,CAAC;IAC5D,CAAC;CACF"}

package/dist/services/ecies/single-recipient.d.ts

@@ -0,0 +1,43 @@
+import { EciesEncryptionTypeEnum } from '../../enumerations/ecies-encryption-type';
+import { IECIESConfig } from '../../interfaces/ecies-config';
+import { IDecryptionResult, ISingleEncryptedParsedHeader } from './interfaces';
+/**
+ * Browser-compatible single recipient ECIES encryption/decryption
+ */
+export declare class EciesSingleRecipient {
+    private readonly cryptoCore;
+    private readonly config;
+    constructor(config: IECIESConfig);
+    /**
+     * Encrypt a message for a single recipient
+     */
+    encrypt(encryptSimple: boolean, receiverPublicKey: Uint8Array, message: Uint8Array, preamble?: Uint8Array): Promise<Uint8Array>;
+    /**
+     * Parse encrypted message header
+     */
+    parseEncryptedMessage(encryptionType: EciesEncryptionTypeEnum | undefined, data: Uint8Array, preambleSize?: number, options?: {
+        dataLength?: number;
+    }): {
+        header: ISingleEncryptedParsedHeader;
+        data: Uint8Array;
+        remainder: Uint8Array;
+    };
+    /**
+     * Decrypt with header
+     */
+    decryptWithHeader(encryptionType: EciesEncryptionTypeEnum | undefined, privateKey: Uint8Array, encryptedData: Uint8Array, preambleSize?: number, options?: {
+        dataLength?: number;
+    }): Promise<Uint8Array>;
+    /**
+     * Extended decrypt with header that returns additional info
+     */
+    decryptWithHeaderEx(encryptionType: EciesEncryptionTypeEnum | undefined, privateKey: Uint8Array, encryptedData: Uint8Array, preambleSize?: number, options?: {
+        dataLength?: number;
+    }): Promise<IDecryptionResult>;
+    /**
+     * Decrypt with individual components
+     */
+    decryptWithComponents(privateKey: Uint8Array, ephemeralPublicKey: Uint8Array, iv: Uint8Array, authTag: Uint8Array, encrypted: Uint8Array): Promise<Uint8Array>;
+    private arraysEqual;
+}
+//# sourceMappingURL=single-recipient.d.ts.map

package/dist/services/ecies/single-recipient.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"single-recipient.d.ts","sourceRoot":"","sources":["../../../src/services/ecies/single-recipient.ts"],"names":[],"mappings":"AACA,OAAO,EAEL,uBAAuB,EACxB,MAAM,0CAA0C,CAAC;AAClD,OAAO,EAAE,YAAY,EAAE,MAAM,+BAA+B,CAAC;AAI7D,OAAO,EAAE,iBAAiB,EAAE,4BAA4B,EAAE,MAAM,cAAc,CAAC;AAE/E;;GAEG;AACH,qBAAa,oBAAoB;IAC/B,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAkB;IAC7C,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAe;gBAE1B,MAAM,EAAE,YAAY;IAKhC;;OAEG;IACU,OAAO,CAClB,aAAa,EAAE,OAAO,EACtB,iBAAiB,EAAE,UAAU,EAC7B,OAAO,EAAE,UAAU,EACnB,QAAQ,GAAE,UAA8B,GACvC,OAAO,CAAC,UAAU,CAAC;IA+EtB;;OAEG;IACI,qBAAqB,CAC1B,cAAc,EAAE,uBAAuB,GAAG,SAAS,EACnD,IAAI,EAAE,UAAU,EAChB,YAAY,GAAE,MAAU,EACxB,OAAO,CAAC,EAAE;QAAE,UAAU,CAAC,EAAE,MAAM,CAAA;KAAE,GAChC;QACD,MAAM,EAAE,4BAA4B,CAAC;QACrC,IAAI,EAAE,UAAU,CAAC;QACjB,SAAS,EAAE,UAAU,CAAC;KACvB;IAsHD;;OAEG;IACU,iBAAiB,CAC5B,cAAc,EAAE,uBAAuB,GAAG,SAAS,EACnD,UAAU,EAAE,UAAU,EACtB,aAAa,EAAE,UAAU,EACzB,YAAY,GAAE,MAAU,EACxB,OAAO,CAAC,EAAE;QAAE,UAAU,CAAC,EAAE,MAAM,CAAA;KAAE,GAChC,OAAO,CAAC,UAAU,CAAC;IAWtB;;OAEG;IACU,mBAAmB,CAC9B,cAAc,EAAE,uBAAuB,GAAG,SAAS,EACnD,UAAU,EAAE,UAAU,EACtB,aAAa,EAAE,UAAU,EACzB,YAAY,GAAE,MAAU,EACxB,OAAO,CAAC,EAAE;QAAE,UAAU,CAAC,EAAE,MAAM,CAAA;KAAE,GAChC,OAAO,CAAC,iBAAiB,CAAC;IAsB7B;;OAEG;IACU,qBAAqB,CAChC,UAAU,EAAE,UAAU,EACtB,kBAAkB,EAAE,UAAU,EAC9B,EAAE,EAAE,UAAU,EACd,OAAO,EAAE,UAAU,EACnB,SAAS,EAAE,UAAU,GACpB,OAAO,CAAC,UAAU,CAAC;IAwBtB,OAAO,CAAC,WAAW;CAOpB"}

package/dist/services/ecies/single-recipient.js

@@ -0,0 +1,196 @@
+import { ECIES } from '../../constants';
+import { EciesEncryptionTypeEnum, } from '../../enumerations/ecies-encryption-type';
+import { AESGCMService } from '../aes-gcm';
+import { EciesCryptoCore } from './crypto-core';
+/**
+ * Browser-compatible single recipient ECIES encryption/decryption
+ */
+export class EciesSingleRecipient {
+    cryptoCore;
+    config;
+    constructor(config) {
+        this.config = config;
+        this.cryptoCore = new EciesCryptoCore(config);
+    }
+    /**
+     * Encrypt a message for a single recipient
+     */
+    async encrypt(encryptSimple, receiverPublicKey, message, preamble = new Uint8Array(0)) {
+        const encryptionType = encryptSimple
+            ? 'simple'
+            : 'single';
+        const encryptionTypeArray = new Uint8Array([
+            encryptionType === 'simple'
+                ? ECIES.ENCRYPTION_TYPE.SIMPLE
+                : ECIES.ENCRYPTION_TYPE.SINGLE,
+        ]);
+        if (message.length > ECIES.MAX_RAW_DATA_SIZE) {
+            throw new Error(`Message length exceeds maximum allowed size: ${message.length}`);
+        }
+        // Generate ephemeral key pair
+        const ephemeralPrivateKey = this.cryptoCore.generatePrivateKey();
+        const ephemeralPublicKey = this.cryptoCore.getPublicKey(ephemeralPrivateKey);
+        // Compute shared secret
+        const normalizedReceiverPublicKey = this.cryptoCore.normalizePublicKey(receiverPublicKey);
+        const sharedSecret = this.cryptoCore.computeSharedSecret(ephemeralPrivateKey, normalizedReceiverPublicKey);
+        // Use first 32 bytes as symmetric key
+        const symKey = sharedSecret.slice(0, ECIES.SYMMETRIC.KEY_SIZE);
+        // Encrypt using AES-GCM
+        const encryptResult = await AESGCMService.encrypt(message, symKey, true);
+        const { encrypted, iv } = encryptResult;
+        const authTag = encryptResult.tag;
+        if (!authTag) {
+            throw new Error('Authentication tag is required for ECIES encryption');
+        }
+        // Add length prefix for single mode
+        const lengthArray = encryptionType === 'simple' ? new Uint8Array(0) : new Uint8Array(8);
+        if (encryptionType === 'single') {
+            const view = new DataView(lengthArray.buffer);
+            view.setBigUint64(0, BigInt(message.length), false); // big-endian
+        }
+        // Format: [preamble] | type (1) | ephemeralPublicKey (65) | iv (16) | authTag (16) | length (8) | encryptedData
+        const result = new Uint8Array(preamble.length +
+            encryptionTypeArray.length +
+            ephemeralPublicKey.length +
+            iv.length +
+            authTag.length +
+            lengthArray.length +
+            encrypted.length);
+        let offset = 0;
+        result.set(preamble, offset);
+        offset += preamble.length;
+        result.set(encryptionTypeArray, offset);
+        offset += encryptionTypeArray.length;
+        result.set(ephemeralPublicKey, offset);
+        offset += ephemeralPublicKey.length;
+        result.set(iv, offset);
+        offset += iv.length;
+        result.set(authTag, offset);
+        offset += authTag.length;
+        result.set(lengthArray, offset);
+        offset += lengthArray.length;
+        result.set(encrypted, offset);
+        return result;
+    }
+    /**
+     * Parse encrypted message header
+     */
+    parseEncryptedMessage(encryptionType, data, preambleSize = 0, options) {
+        // Read encryption type from first byte after preamble
+        const actualEncryptionTypeByte = data[preambleSize];
+        let actualEncryptionType;
+        switch (actualEncryptionTypeByte) {
+            case ECIES.ENCRYPTION_TYPE.SIMPLE:
+                actualEncryptionType = EciesEncryptionTypeEnum.Simple;
+                break;
+            case ECIES.ENCRYPTION_TYPE.SINGLE:
+                actualEncryptionType = EciesEncryptionTypeEnum.Single;
+                break;
+            case ECIES.ENCRYPTION_TYPE.MULTIPLE:
+                throw new Error('Multiple encryption type not supported in single recipient mode');
+            default:
+                throw new Error(`Invalid encryption type: ${actualEncryptionTypeByte}`);
+        }
+        if (encryptionType !== undefined &&
+            actualEncryptionType !== encryptionType) {
+            throw new Error(`Encryption type mismatch: expected ${encryptionType}, got ${actualEncryptionType}`);
+        }
+        const includeLengthAndCrc = actualEncryptionType === EciesEncryptionTypeEnum.Single;
+        const requiredSize = includeLengthAndCrc
+            ? ECIES.SINGLE.FIXED_OVERHEAD_SIZE
+            : ECIES.SIMPLE.FIXED_OVERHEAD_SIZE;
+        if (data.length < requiredSize) {
+            throw new Error(`Data too short: required ${requiredSize}, got ${data.length}`);
+        }
+        let offset = preambleSize;
+        const preamble = data.slice(0, preambleSize);
+        // Skip encryption type byte
+        offset += 1;
+        // Extract header components
+        const ephemeralPublicKey = data.slice(offset, offset + ECIES.PUBLIC_KEY_LENGTH);
+        offset += ECIES.PUBLIC_KEY_LENGTH;
+        const normalizedKey = this.cryptoCore.normalizePublicKey(ephemeralPublicKey);
+        const iv = data.slice(offset, offset + ECIES.IV_SIZE);
+        offset += ECIES.IV_SIZE;
+        const authTag = data.slice(offset, offset + ECIES.AUTH_TAG_SIZE);
+        offset += ECIES.AUTH_TAG_SIZE;
+        // Extract length for single mode
+        const dataLengthArray = includeLengthAndCrc
+            ? data.slice(offset, offset + ECIES.SINGLE.DATA_LENGTH_SIZE)
+            : new Uint8Array(0);
+        if (includeLengthAndCrc) {
+            offset += ECIES.SINGLE.DATA_LENGTH_SIZE;
+        }
+        const dataLength = includeLengthAndCrc
+            ? Number(new DataView(dataLengthArray.buffer, dataLengthArray.byteOffset, dataLengthArray.byteLength).getBigUint64(0, false))
+            : options?.dataLength ?? -1;
+        if (includeLengthAndCrc &&
+            options?.dataLength !== undefined &&
+            dataLength !== options.dataLength) {
+            throw new Error(`Data length mismatch: expected ${dataLength}, got ${options.dataLength}`);
+        }
+        // No CRC in Single encryption (AES-GCM provides authentication)
+        // For single mode, read all remaining data as encrypted data
+        // The dataLength represents the original message length, not encrypted length
+        const encryptedData = data.slice(offset);
+        const remainder = new Uint8Array(0);
+        // No CRC validation needed (AES-GCM provides authentication)
+        return {
+            header: {
+                encryptionType: actualEncryptionType,
+                ephemeralPublicKey: normalizedKey,
+                iv,
+                authTag,
+                dataLength,
+                headerSize: includeLengthAndCrc
+                    ? ECIES.SINGLE.FIXED_OVERHEAD_SIZE
+                    : ECIES.SIMPLE.FIXED_OVERHEAD_SIZE,
+            },
+            data: encryptedData,
+            remainder,
+        };
+    }
+    /**
+     * Decrypt with header
+     */
+    async decryptWithHeader(encryptionType, privateKey, encryptedData, preambleSize = 0, options) {
+        const result = await this.decryptWithHeaderEx(encryptionType, privateKey, encryptedData, preambleSize, options);
+        return result.decrypted;
+    }
+    /**
+     * Extended decrypt with header that returns additional info
+     */
+    async decryptWithHeaderEx(encryptionType, privateKey, encryptedData, preambleSize = 0, options) {
+        const { data, header } = this.parseEncryptedMessage(encryptionType, encryptedData, preambleSize, options);
+        const decrypted = await this.decryptWithComponents(privateKey, header.ephemeralPublicKey, header.iv, header.authTag, data);
+        return {
+            decrypted,
+            consumedBytes: preambleSize + header.headerSize + data.length,
+        };
+    }
+    /**
+     * Decrypt with individual components
+     */
+    async decryptWithComponents(privateKey, ephemeralPublicKey, iv, authTag, encrypted) {
+        // Normalize ephemeral public key
+        const normalizedEphemeralKey = this.cryptoCore.normalizePublicKey(ephemeralPublicKey);
+        // Compute shared secret
+        const sharedSecret = this.cryptoCore.computeSharedSecret(privateKey, normalizedEphemeralKey);
+        // Use first 32 bytes as symmetric key
+        const symKey = sharedSecret.slice(0, ECIES.SYMMETRIC.KEY_SIZE);
+        // Combine encrypted data with auth tag for AES-GCM
+        const encryptedWithTag = AESGCMService.combineEncryptedDataAndTag(encrypted, authTag);
+        // Decrypt
+        return await AESGCMService.decrypt(iv, encryptedWithTag, symKey, true);
+    }
+    arraysEqual(a, b) {
+        if (a.length !== b.length)
+            return false;
+        for (let i = 0; i < a.length; i++) {
+            if (a[i] !== b[i])
+                return false;
+        }
+        return true;
+    }
+}
+//# sourceMappingURL=single-recipient.js.map

package/dist/services/ecies/single-recipient.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"single-recipient.js","sourceRoot":"","sources":["../../../src/services/ecies/single-recipient.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,iBAAiB,CAAC;AACxC,OAAO,EAEL,uBAAuB,GACxB,MAAM,0CAA0C,CAAC;AAElD,OAAO,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAE3C,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAGhD;;GAEG;AACH,MAAM,OAAO,oBAAoB;IACd,UAAU,CAAkB;IAC5B,MAAM,CAAe;IAEtC,YAAY,MAAoB;QAC9B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,UAAU,GAAG,IAAI,eAAe,CAAC,MAAM,CAAC,CAAC;IAChD,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,OAAO,CAClB,aAAsB,EACtB,iBAA6B,EAC7B,OAAmB,EACnB,WAAuB,IAAI,UAAU,CAAC,CAAC,CAAC;QAExC,MAAM,cAAc,GAAwB,aAAa;YACvD,CAAC,CAAC,QAAQ;YACV,CAAC,CAAC,QAAQ,CAAC;QACb,MAAM,mBAAmB,GAAG,IAAI,UAAU,CAAC;YACzC,cAAc,KAAK,QAAQ;gBACzB,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,MAAM;gBAC9B,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,MAAM;SACjC,CAAC,CAAC;QAEH,IAAI,OAAO,CAAC,MAAM,GAAG,KAAK,CAAC,iBAAiB,EAAE,CAAC;YAC7C,MAAM,IAAI,KAAK,CACb,gDAAgD,OAAO,CAAC,MAAM,EAAE,CACjE,CAAC;QACJ,CAAC;QAED,8BAA8B;QAC9B,MAAM,mBAAmB,GAAG,IAAI,CAAC,UAAU,CAAC,kBAAkB,EAAE,CAAC;QACjE,MAAM,kBAAkB,GACtB,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,mBAAmB,CAAC,CAAC;QAEpD,wBAAwB;QACxB,MAAM,2BAA2B,GAC/B,IAAI,CAAC,UAAU,CAAC,kBAAkB,CAAC,iBAAiB,CAAC,CAAC;QACxD,MAAM,YAAY,GAAG,IAAI,CAAC,UAAU,CAAC,mBAAmB,CACtD,mBAAmB,EACnB,2BAA2B,CAC5B,CAAC;QAEF,sCAAsC;QACtC,MAAM,MAAM,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;QAE/D,wBAAwB;QACxB,MAAM,aAAa,GAAG,MAAM,aAAa,CAAC,OAAO,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,CAAC;QACzE,MAAM,EAAE,SAAS,EAAE,EAAE,EAAE,GAAG,aAAa,CAAC;QACxC,MAAM,OAAO,GAAG,aAAa,CAAC,GAAG,CAAC;QAElC,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;QACzE,CAAC;QAED,oCAAoC;QACpC,MAAM,WAAW,GACf,cAAc,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,UAAU,CAAC,CAAC,CAAC,CAAC;QAEtE,IAAI,cAAc,KAAK,QAAQ,EAAE,CAAC;YAChC,MAAM,IAAI,GAAG,IAAI,QAAQ,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;YAC9C,IAAI,CAAC,YAAY,CAAC,CAAC,EAAE,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,KAAK,CAAC,CAAC,CAAC,aAAa;QACpE,CAAC;QAED,gHAAgH;QAChH,MAAM,MAAM,GAAG,IAAI,UAAU,CAC3B,QAAQ,CAAC,MAAM;YACb,mBAAmB,CAAC,MAAM;YAC1B,kBAAkB,CAAC,MAAM;YACzB,EAAE,CAAC,MAAM;YACT,OAAO,CAAC,MAAM;YACd,WAAW,CAAC,MAAM;YAClB,SAAS,CAAC,MAAM,CACnB,CAAC;QAEF,IAAI,MAAM,GAAG,CAAC,CAAC;QACf,MAAM,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QAC7B,MAAM,IAAI,QAAQ,CAAC,MAAM,CAAC;QAC1B,MAAM,CAAC,GAAG,CAAC,mBAAmB,EAAE,MAAM,CAAC,CAAC;QACxC,MAAM,IAAI,mBAAmB,CAAC,MAAM,CAAC;QACrC,MAAM,CAAC,GAAG,CAAC,kBAAkB,EAAE,MAAM,CAAC,CAAC;QACvC,MAAM,IAAI,kBAAkB,CAAC,MAAM,CAAC;QACpC,MAAM,CAAC,GAAG,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;QACvB,MAAM,IAAI,EAAE,CAAC,MAAM,CAAC;QACpB,MAAM,CAAC,GAAG,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;QAC5B,MAAM,IAAI,OAAO,CAAC,MAAM,CAAC;QACzB,MAAM,CAAC,GAAG,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;QAChC,MAAM,IAAI,WAAW,CAAC,MAAM,CAAC;QAC7B,MAAM,CAAC,GAAG,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;QAE9B,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACI,qBAAqB,CAC1B,cAAmD,EACnD,IAAgB,EAChB,eAAuB,CAAC,EACxB,OAAiC;QAMjC,sDAAsD;QACtD,MAAM,wBAAwB,GAAG,IAAI,CAAC,YAAY,CAAC,CAAC;QACpD,IAAI,oBAA6C,CAAC;QAElD,QAAQ,wBAAwB,EAAE,CAAC;YACjC,KAAK,KAAK,CAAC,eAAe,CAAC,MAAM;gBAC/B,oBAAoB,GAAG,uBAAuB,CAAC,MAAM,CAAC;gBACtD,MAAM;YACR,KAAK,KAAK,CAAC,eAAe,CAAC,MAAM;gBAC/B,oBAAoB,GAAG,uBAAuB,CAAC,MAAM,CAAC;gBACtD,MAAM;YACR,KAAK,KAAK,CAAC,eAAe,CAAC,QAAQ;gBACjC,MAAM,IAAI,KAAK,CACb,iEAAiE,CAClE,CAAC;YACJ;gBACE,MAAM,IAAI,KAAK,CAAC,4BAA4B,wBAAwB,EAAE,CAAC,CAAC;QAC5E,CAAC;QAED,IACE,cAAc,KAAK,SAAS;YAC5B,oBAAoB,KAAK,cAAc,EACvC,CAAC;YACD,MAAM,IAAI,KAAK,CACb,sCAAsC,cAAc,SAAS,oBAAoB,EAAE,CACpF,CAAC;QACJ,CAAC;QAED,MAAM,mBAAmB,GACvB,oBAAoB,KAAK,uBAAuB,CAAC,MAAM,CAAC;QAC1D,MAAM,YAAY,GAAG,mBAAmB;YACtC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,mBAAmB;YAClC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,mBAAmB,CAAC;QAErC,IAAI,IAAI,CAAC,MAAM,GAAG,YAAY,EAAE,CAAC;YAC/B,MAAM,IAAI,KAAK,CACb,4BAA4B,YAAY,SAAS,IAAI,CAAC,MAAM,EAAE,CAC/D,CAAC;QACJ,CAAC;QAED,IAAI,MAAM,GAAG,YAAY,CAAC;QAC1B,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,YAAY,CAAC,CAAC;QAE7C,4BAA4B;QAC5B,MAAM,IAAI,CAAC,CAAC;QAEZ,4BAA4B;QAC5B,MAAM,kBAAkB,GAAG,IAAI,CAAC,KAAK,CACnC,MAAM,EACN,MAAM,GAAG,KAAK,CAAC,iBAAiB,CACjC,CAAC;QACF,MAAM,IAAI,KAAK,CAAC,iBAAiB,CAAC;QAElC,MAAM,aAAa,GACjB,IAAI,CAAC,UAAU,CAAC,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;QAEzD,MAAM,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,GAAG,KAAK,CAAC,OAAO,CAAC,CAAC;QACtD,MAAM,IAAI,KAAK,CAAC,OAAO,CAAC;QAExB,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,GAAG,KAAK,CAAC,aAAa,CAAC,CAAC;QACjE,MAAM,IAAI,KAAK,CAAC,aAAa,CAAC;QAE9B,iCAAiC;QACjC,MAAM,eAAe,GAAG,mBAAmB;YACzC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,gBAAgB,CAAC;YAC5D,CAAC,CAAC,IAAI,UAAU,CAAC,CAAC,CAAC,CAAC;QAEtB,IAAI,mBAAmB,EAAE,CAAC;YACxB,MAAM,IAAI,KAAK,CAAC,MAAM,CAAC,gBAAgB,CAAC;QAC1C,CAAC;QAED,MAAM,UAAU,GAAG,mBAAmB;YACpC,CAAC,CAAC,MAAM,CACJ,IAAI,QAAQ,CACV,eAAe,CAAC,MAAM,EACtB,eAAe,CAAC,UAAU,EAC1B,eAAe,CAAC,UAAU,CAC3B,CAAC,YAAY,CAAC,CAAC,EAAE,KAAK,CAAC,CACzB;YACH,CAAC,CAAC,OAAO,EAAE,UAAU,IAAI,CAAC,CAAC,CAAC;QAE9B,IACE,mBAAmB;YACnB,OAAO,EAAE,UAAU,KAAK,SAAS;YACjC,UAAU,KAAK,OAAO,CAAC,UAAU,EACjC,CAAC;YACD,MAAM,IAAI,KAAK,CACb,kCAAkC,UAAU,SAAS,OAAO,CAAC,UAAU,EAAE,CAC1E,CAAC;QACJ,CAAC;QAED,gEAAgE;QAEhE,6DAA6D;QAC7D,8EAA8E;QAC9E,MAAM,aAAa,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QAEzC,MAAM,SAAS,GAAG,IAAI,UAAU,CAAC,CAAC,CAAC,CAAC;QAEpC,6DAA6D;QAE7D,OAAO;YACL,MAAM,EAAE;gBACN,cAAc,EAAE,oBAAoB;gBACpC,kBAAkB,EAAE,aAAa;gBACjC,EAAE;gBACF,OAAO;gBACP,UAAU;gBACV,UAAU,EAAE,mBAAmB;oBAC7B,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,mBAAmB;oBAClC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,mBAAmB;aACrC;YACD,IAAI,EAAE,aAAa;YACnB,SAAS;SACV,CAAC;IACJ,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,iBAAiB,CAC5B,cAAmD,EACnD,UAAsB,EACtB,aAAyB,EACzB,eAAuB,CAAC,EACxB,OAAiC;QAEjC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,mBAAmB,CAC3C,cAAc,EACd,UAAU,EACV,aAAa,EACb,YAAY,EACZ,OAAO,CACR,CAAC;QACF,OAAO,MAAM,CAAC,SAAS,CAAC;IAC1B,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,mBAAmB,CAC9B,cAAmD,EACnD,UAAsB,EACtB,aAAyB,EACzB,eAAuB,CAAC,EACxB,OAAiC;QAEjC,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CAAC,qBAAqB,CACjD,cAAc,EACd,aAAa,EACb,YAAY,EACZ,OAAO,CACR,CAAC;QAEF,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,qBAAqB,CAChD,UAAU,EACV,MAAM,CAAC,kBAAkB,EACzB,MAAM,CAAC,EAAE,EACT,MAAM,CAAC,OAAO,EACd,IAAI,CACL,CAAC;QAEF,OAAO;YACL,SAAS;YACT,aAAa,EAAE,YAAY,GAAG,MAAM,CAAC,UAAU,GAAG,IAAI,CAAC,MAAM;SAC9D,CAAC;IACJ,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,qBAAqB,CAChC,UAAsB,EACtB,kBAA8B,EAC9B,EAAc,EACd,OAAmB,EACnB,SAAqB;QAErB,iCAAiC;QACjC,MAAM,sBAAsB,GAC1B,IAAI,CAAC,UAAU,CAAC,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;QAEzD,wBAAwB;QACxB,MAAM,YAAY,GAAG,IAAI,CAAC,UAAU,CAAC,mBAAmB,CACtD,UAAU,EACV,sBAAsB,CACvB,CAAC;QAEF,sCAAsC;QACtC,MAAM,MAAM,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;QAE/D,mDAAmD;QACnD,MAAM,gBAAgB,GAAG,aAAa,CAAC,0BAA0B,CAC/D,SAAS,EACT,OAAO,CACR,CAAC;QAEF,UAAU;QACV,OAAO,MAAM,aAAa,CAAC,OAAO,CAAC,EAAE,EAAE,gBAAgB,EAAE,MAAM,EAAE,IAAI,CAAC,CAAC;IACzE,CAAC;IAEO,WAAW,CAAC,CAAa,EAAE,CAAa;QAC9C,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM;YAAE,OAAO,KAAK,CAAC;QACxC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAClC,IAAI,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBAAE,OAAO,KAAK,CAAC;QAClC,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;CACF"}

package/dist/services/index.d.ts

@@ -0,0 +1,5 @@
+export * from './aes-gcm';
+export * from './ecies';
+export * from './password-login';
+export * from './pbkdf2';
+//# sourceMappingURL=index.d.ts.map

package/dist/services/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/services/index.ts"],"names":[],"mappings":"AAAA,cAAc,WAAW,CAAC;AAC1B,cAAc,SAAS,CAAC;AACxB,cAAc,kBAAkB,CAAC;AACjC,cAAc,UAAU,CAAC"}

package/dist/services/index.js

@@ -0,0 +1,5 @@
+export * from './aes-gcm';
+export * from './ecies';
+export * from './password-login';
+export * from './pbkdf2';
+//# sourceMappingURL=index.js.map

package/dist/services/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/services/index.ts"],"names":[],"mappings":"AAAA,cAAc,WAAW,CAAC;AAC1B,cAAc,SAAS,CAAC;AACxB,cAAc,kBAAkB,CAAC;AACjC,cAAc,UAAU,CAAC"}

package/dist/services/password-login.d.ts

@@ -0,0 +1,41 @@
+import { Wallet } from '@ethereumjs/wallet';
+import { SecureString } from '../secure-string';
+import { ECIESService } from './ecies/service';
+export declare class PasswordLoginService {
+    private readonly eciesService;
+    static readonly privateKeyStorageKey = "encryptedPrivateKey";
+    static readonly saltStorageKey = "passwordLoginSalt";
+    static readonly encryptedMnemonicStorageKey = "encryptedMnemonic";
+    constructor(eciesService: ECIESService);
+    createPasswordLoginBundle(mnemonic: SecureString, password: SecureString): Promise<{
+        salt: Uint8Array;
+        encryptedPrivateKey: Uint8Array;
+        encryptedMnemonic: Uint8Array;
+        wallet: Wallet;
+    }>;
+    /**
+     * Set up password login by deriving a key from the password and using it to encrypt
+     * @param mnemonic The user's mnemonic
+     * @param password The user's password
+     */
+    setupPasswordLoginLocalStorageBundle(mnemonic: SecureString, password: SecureString): Promise<Wallet>;
+    getWalletAndMnemonicFromEncryptedPasswordBundle(salt: Uint8Array, encryptedPrivateKey: Uint8Array, encryptedMnemonic: Uint8Array, password: SecureString): Promise<{
+        wallet: Wallet;
+        mnemonic: SecureString;
+    }>;
+    /**
+     * Recover wallet and mnemonic from password
+     * @param password The user's password
+     * @returns The user's wallet and mnemonic
+     */
+    getWalletAndMnemonicFromLocalStorageBundle(password: SecureString): Promise<{
+        wallet: Wallet;
+        mnemonic: SecureString;
+    }>;
+    /**
+     *
+     * @returns True if password login is set up (i.e. salt and encrypted private key are in local storage)
+     */
+    static isPasswordLoginSetup(): boolean;
+}
+//# sourceMappingURL=password-login.d.ts.map

package/dist/services/password-login.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"password-login.d.ts","sourceRoot":"","sources":["../../src/services/password-login.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AAG5C,OAAO,EAAE,YAAY,EAAE,MAAM,kBAAkB,CAAC;AAGhD,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAG/C,qBAAa,oBAAoB;IAC/B,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAe;IAC5C,gBAAuB,oBAAoB,yBAAyB;IACpE,gBAAuB,cAAc,uBAAuB;IAC5D,gBAAuB,2BAA2B,uBAAuB;gBAE7D,YAAY,EAAE,YAAY;IAIzB,yBAAyB,CACpC,QAAQ,EAAE,YAAY,EACtB,QAAQ,EAAE,YAAY,GACrB,OAAO,CAAC;QACT,IAAI,EAAE,UAAU,CAAC;QACjB,mBAAmB,EAAE,UAAU,CAAC;QAChC,iBAAiB,EAAE,UAAU,CAAC;QAC9B,MAAM,EAAE,MAAM,CAAC;KAChB,CAAC;IAqCF;;;;OAIG;IACU,oCAAoC,CAC/C,QAAQ,EAAE,YAAY,EACtB,QAAQ,EAAE,YAAY,GACrB,OAAO,CAAC,MAAM,CAAC;IAoBL,+CAA+C,CAC1D,IAAI,EAAE,UAAU,EAChB,mBAAmB,EAAE,UAAU,EAC/B,iBAAiB,EAAE,UAAU,EAC7B,QAAQ,EAAE,YAAY,GACrB,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,YAAY,CAAA;KAAE,CAAC;IAqCtD;;;;OAIG;IACU,0CAA0C,CACrD,QAAQ,EAAE,YAAY,GACrB,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,YAAY,CAAA;KAAE,CAAC;IAgCtD;;;OAGG;WACW,oBAAoB,IAAI,OAAO;CAkB9C"}