@digitaldefiance/ecies-lib 1.0.24 → 1.0.25

package/README.md

@@ -207,6 +207,50 @@ const result = await customPbkdf2Service.deriveKeyFromPasswordWithProfileAsync(
 
 This design allows for dependency injection of PBKDF2 profiles while maintaining backward compatibility with the default configurations.
 
+## Runtime configuration registry
+
+Many applications need different cryptographic trade-offs for different surfaces—e.g., a login form that prioritizes speed versus an administrative workflow that prefers extreme iteration counts. The library ships a registry that lets you register, retrieve, and extend immutable configuration profiles without mutating the global defaults.
+
+```ts
+import {
+  DefaultsRegistry,
+  registerRuntimeConfiguration,
+  getRuntimeConfiguration,
+  ECIESService,
+  Pbkdf2Service,
+} from '@digitaldefiance/ecies-lib';
+
+// 1. Register two named profiles
+registerRuntimeConfiguration('security-first', {
+  PBKDF2: {
+    ITERATIONS_PER_SECOND: 3_000_000,
+  },
+});
+
+registerRuntimeConfiguration(
+  'performance-first',
+  {
+    PBKDF2: {
+      ITERATIONS_PER_SECOND: 250_000,
+    },
+  },
+  { baseKey: DefaultsRegistry.DEFAULT_KEY },
+);
+
+// 2. Spin up services that honor those profiles
+const secureDefaults = getRuntimeConfiguration('security-first');
+const secureEcies = new ECIESService(undefined, secureDefaults.ECIES);
+const securePbkdf2 = new Pbkdf2Service(engine, secureDefaults.PBKDF2_PROFILES, secureDefaults.ECIES, secureDefaults.PBKDF2);
+
+const perfDefaults = getRuntimeConfiguration('performance-first');
+const perfEcies = new ECIESService(undefined, perfDefaults.ECIES);
+
+// 3. Optional: create throwaway profiles without registering them
+const temporaryDefaults = DefaultsRegistry.create({ BcryptRounds: 8 });
+```
+
+Every profile returned by the registry is deeply frozen and validated so the low-level invariants (public key sizes, checksum parameters, etc.) stay consistent. Use `clearRuntimeConfigurations()` in tests to reset to the library defaults.
+
 ## Secure primitives & value objects
 
 - `SecureString` / `SecureBuffer`: auto-zero, opt-in disposal, and helper methods for dealing with sensitive material.
@@ -235,7 +279,7 @@ try {
 
 ## Project structure
 
-```
+```text
 packages/digitaldefiance-ecies-lib/
 ├─ src/
 │  ├─ services/          # ECIES, AES-GCM, PBKDF2, password login
@@ -301,6 +345,11 @@ MIT © Digital Defiance
 
 ## ChangeLog
 
+### v1.0.25: Rework configuration system again
+
+- Sun Oct 12 2025 21:02:00 GMT-0700 (Pacific Daylight Time)
+  - Rework various services to support user-provided configurations
+
 ### v1.0.24: Rework pbdkf2 services, and other things and provide ways of overriding constants
 
 - Sun Oct 12 2025 18:25:00 GMT-0700 (Pacific Daylight Time)

package/dist/constants.d.ts

@@ -1,8 +1,4 @@
-import { IChecksumConsts } from './interfaces';
 import { IConstants } from './interfaces/constants';
-import { IECIESConstants } from './interfaces/ecies-consts';
-import { IPBkdf2Consts } from './interfaces/pbkdf2-consts';
-import { Pbkdf2Profiles } from './pbkdf2-profiles';
 export declare const UINT8_SIZE: number;
 export declare const UINT16_SIZE: number;
 export declare const UINT16_MAX: number;
@@ -14,14 +10,5 @@ export declare const UINT64_MAX: bigint;
  * Standard size of a UUID v4 in bytes.
  */
 export declare const GUID_SIZE: number;
-/**
- * Constants for checksum operations
- * These values are critical for data integrity and MUST NOT be changed
- * in an already established system as it will break all existing checksums.
- */
-export declare const CHECKSUM: IChecksumConsts;
-export declare const PBKDF2: IPBkdf2Consts;
-export declare const PBKDF2_PROFILES: Pbkdf2Profiles;
-export declare const ECIES: IECIESConstants;
 export declare const Constants: IConstants;
 //# sourceMappingURL=constants.d.ts.map

package/dist/constants.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../src/constants.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC;AAC/C,OAAO,EAAE,UAAU,EAAE,MAAM,wBAAwB,CAAC;AACpD,OAAO,EAAE,eAAe,EAAE,MAAM,2BAA2B,CAAC;AAC5D,OAAO,EAAE,aAAa,EAAE,MAAM,4BAA4B,CAAC;AAC3D,OAAO,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AAEnD,eAAO,MAAM,UAAU,EAAE,MAAmB,CAAC;AAC7C,eAAO,MAAM,WAAW,EAAE,MAAmB,CAAC;AAC9C,eAAO,MAAM,UAAU,EAAE,MAAuB,CAAC;AACjD,eAAO,MAAM,WAAW,EAAE,MAAmB,CAAC;AAC9C,eAAO,MAAM,UAAU,EAAE,MAA4B,CAAC;AACtD,eAAO,MAAM,WAAW,EAAE,MAAmB,CAAC;AAC9C,eAAO,MAAM,UAAU,EAAE,MAAuC,CAAC;AACjE;;GAEG;AACH,eAAO,MAAM,SAAS,EAAE,MAAoB,CAAC;AAE7C;;;;GAIG;AACH,eAAO,MAAM,QAAQ,EAAE,eAYZ,CAAC;AAEZ,eAAO,MAAM,MAAM,EAAE,aAQV,CAAC;AAEZ,eAAO,MAAM,eAAe,EAAE,cAmBnB,CAAC;AAyBZ,eAAO,MAAM,KAAK,EAAE,eAoElB,CAAC;AAGH,eAAO,MAAM,SAAS,EAAE,UA8Cb,CAAC"}
+{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../src/constants.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,UAAU,EAAE,MAAM,wBAAwB,CAAC;AAEpD,eAAO,MAAM,UAAU,EAAE,MAAmB,CAAC;AAC7C,eAAO,MAAM,WAAW,EAAE,MAAmB,CAAC;AAC9C,eAAO,MAAM,UAAU,EAAE,MAAuB,CAAC;AACjD,eAAO,MAAM,WAAW,EAAE,MAAmB,CAAC;AAC9C,eAAO,MAAM,UAAU,EAAE,MAA4B,CAAC;AACtD,eAAO,MAAM,WAAW,EAAE,MAAmB,CAAC;AAC9C,eAAO,MAAM,UAAU,EAAE,MAAuC,CAAC;AACjE;;GAEG;AACH,eAAO,MAAM,SAAS,EAAE,MAAoB,CAAC;AAI7C,eAAO,MAAM,SAAS,EAAE,UAiBb,CAAC"}

package/dist/constants.js

@@ -1,8 +1,5 @@
 import { ObjectId } from 'bson';
-import { ECIESErrorTypeEnum } from './enumerations';
-import { Pbkdf2ProfileEnum } from './enumerations/pbkdf2-profile';
-import { ECIESError } from './errors/ecies';
-import { getCompatibleEciesEngine } from './i18n-setup';
+import { MNEMONIC_REGEX, PASSWORD_REGEX } from './regexes';
 export const UINT8_SIZE = 1;
 export const UINT16_SIZE = 2;
 export const UINT16_MAX = 65535;
@@ -14,122 +11,6 @@ export const UINT64_MAX = 18446744073709551615n;
  * Standard size of a UUID v4 in bytes.
  */
 export const GUID_SIZE = 16;
-/**
- * Constants for checksum operations
- * These values are critical for data integrity and MUST NOT be changed
- * in an already established system as it will break all existing checksums.
- */
-export const CHECKSUM = Object.freeze({
-    /** Default hash bits for SHA3 */
-    SHA3_DEFAULT_HASH_BITS: 512,
-    /** Length of a SHA3 checksum buffer in bytes */
-    SHA3_BUFFER_LENGTH: 64,
-    /** algorithm to use for checksum */
-    ALGORITHM: 'sha3-512',
-    /** encoding to use for checksum */
-    ENCODING: 'hex',
-});
-export const PBKDF2 = Object.freeze({
-    ALGORITHM: 'SHA-256',
-    SALT_BYTES: 32,
-    /**
-     * Number of pbkdf2 iterations per second when hashing a password.
-     * This is the high-security default for user login operations.
-     */
-    ITERATIONS_PER_SECOND: 1304000,
-});
-export const PBKDF2_PROFILES = Object.freeze({
-    [Pbkdf2ProfileEnum.BROWSER_PASSWORD]: Object.freeze({
-        hashBytes: 32,
-        saltBytes: 64,
-        iterations: 2000000,
-        algorithm: 'SHA-512',
-    }),
-    [Pbkdf2ProfileEnum.HIGH_SECURITY]: Object.freeze({
-        hashBytes: 64,
-        saltBytes: 32,
-        iterations: 5000000,
-        algorithm: 'SHA-256',
-    }),
-    [Pbkdf2ProfileEnum.TEST_FAST]: Object.freeze({
-        hashBytes: 32,
-        saltBytes: 64,
-        iterations: 1000,
-        algorithm: 'SHA-512',
-    }),
-});
-const ECIES_SYMMETRIC_KEY_SIZE = 32;
-const ECIES_PUBLIC_KEY_LENGTH = 65;
-const ECIES_RAW_PUBLIC_KEY_LENGTH = 64;
-const ECIES_IV_SIZE = 16;
-const ECIES_AUTH_TAG_SIZE = 16;
-const ECIES_MULTIPLE_RECIPIENT_ID_SIZE = 16;
-// Define the expected value for SIMPLE.FIXED_OVERHEAD_SIZE
-const expectedSimpleOverhead = UINT8_SIZE + ECIES_PUBLIC_KEY_LENGTH + ECIES_IV_SIZE + ECIES_AUTH_TAG_SIZE;
-// Define the expected value for MULTIPLE.FIXED_OVERHEAD_SIZE
-// Includes: type (1) + IV (16) + auth tag (16) = 33 (no CRC, AES-GCM provides authentication)
-const expectedMultipleOverhead = UINT8_SIZE + ECIES_IV_SIZE + ECIES_AUTH_TAG_SIZE;
-// Update ENCRYPTED_KEY_SIZE to match Simple encryption (no CRC)
-const expectedMultipleEncryptedKeySize = ECIES_PUBLIC_KEY_LENGTH +
-    ECIES_IV_SIZE +
-    ECIES_AUTH_TAG_SIZE +
-    ECIES_SYMMETRIC_KEY_SIZE;
-export const ECIES = Object.freeze({
-    /** The elliptic curve to use for all ECDSA operations */
-    CURVE_NAME: 'secp256k1',
-    /** The primary key derivation path for HD wallets */
-    PRIMARY_KEY_DERIVATION_PATH: "m/44'/60'/0'/0/0",
-    SYMMETRIC_ALGORITHM_CONFIGURATION: 'aes-256-gcm',
-    /** Length of ECDSA signatures in bytes */
-    SIGNATURE_SIZE: 64,
-    /** Length of raw public keys in bytes (without 0x04 prefix) */
-    RAW_PUBLIC_KEY_LENGTH: ECIES_RAW_PUBLIC_KEY_LENGTH,
-    /** Length of public keys in bytes (with 0x04 prefix) */
-    PUBLIC_KEY_LENGTH: ECIES_PUBLIC_KEY_LENGTH,
-    PUBLIC_KEY_MAGIC: 0x04,
-    /** Mnemonic strength in bits. This will produce a 32-bit key for ECDSA */
-    MNEMONIC_STRENGTH: 256,
-    /** Symmetric encryption algorithm configuration */
-    SYMMETRIC: Object.freeze({
-        ALGORITHM: 'aes',
-        MODE: 'gcm',
-        KEY_BITS: 256,
-        KEY_SIZE: ECIES_SYMMETRIC_KEY_SIZE, // KEY_BITS / 8
-    }),
-    IV_SIZE: ECIES_IV_SIZE,
-    AUTH_TAG_SIZE: ECIES_AUTH_TAG_SIZE,
-    MAX_RAW_DATA_SIZE: 9007199254740991, // 2^53 - 1 (max safe integer for JS)
-    /**
-     * Message encrypts without data length or crc
-     */
-    SIMPLE: Object.freeze({
-        FIXED_OVERHEAD_SIZE: expectedSimpleOverhead, // type (1) + public key (65) + IV (16) + auth tag (16)
-        DATA_LENGTH_SIZE: 0,
-    }),
-    /**
-     * Message encrypts with data length but no CRC (AES-GCM provides authentication)
-     */
-    SINGLE: Object.freeze({
-        FIXED_OVERHEAD_SIZE: 106, // type (1) + public key (65) + IV (16) + auth tag (16) + data length (8)
-        DATA_LENGTH_SIZE: 8,
-    }),
-    /**
-     * Message encrypts for multiple recipients
-     */
-    MULTIPLE: Object.freeze({
-        FIXED_OVERHEAD_SIZE: expectedMultipleOverhead, // type (1) + IV (16) + auth tag (16), no CRC
-        ENCRYPTED_KEY_SIZE: expectedMultipleEncryptedKeySize, // 129
-        MAX_RECIPIENTS: 65535,
-        RECIPIENT_ID_SIZE: ECIES_MULTIPLE_RECIPIENT_ID_SIZE,
-        RECIPIENT_COUNT_SIZE: 2,
-        DATA_LENGTH_SIZE: 8,
-    }),
-    ENCRYPTION_TYPE: Object.freeze({
-        SIMPLE: 33,
-        SINGLE: 66,
-        MULTIPLE: 99,
-    }),
-});
 const objectIdLength = new ObjectId().toHexString().length / 2;
 export const Constants = Object.freeze({
     /**
@@ -145,52 +26,10 @@ export const Constants = Object.freeze({
     UINT64_MAX: UINT64_MAX,
     HEX_RADIX: 16,
     GUID_SIZE: GUID_SIZE,
-    CHECKSUM: CHECKSUM,
-    ECIES: ECIES,
-    PBKDF2: PBKDF2,
-    PBKDF2_PROFILES: PBKDF2_PROFILES,
-    /**
-     * Number of rounds for bcrypt hashing. Higher values increase security but also consume more CPU resources.
-     */
-    BcryptRounds: 10,
-    /**
-     * Minimum password length
-     */
-    PasswordMinLength: 8,
-    /**
-     * The regular expression for valid passwords.
-     */
-    PasswordRegex: /^(?=.*[A-Za-z])(?=.*\d)(?=.*[!@#$%^&*()_+\-=[\]{};':"\\|,.<>/?])[A-Za-z\d!@#$%^&*()_+\-=[\]{};':"\\|,.<>/?]{8,}$/,
-    /**
-     * The regular expression for valid mnemonic phrases.
-     * BIP39 - supports 12, 15, 18, 21, or 24 word mnemonics
-     */
-    MnemonicRegex: /^(?:\w+\s){11}\w+$|^(?:\w+\s){14}\w+$|^(?:\w+\s){17}\w+$|^(?:\w+\s){20}\w+$|^(?:\w+\s){23}\w+$/i,
-    /**
-     * Matches a 64-character hexadecimal string (SHA-256).
-     */
-    HmacRegex: /^[a-f0-9]{64}$/,
+    PasswordRegex: PASSWORD_REGEX,
+    MnemonicRegex: MNEMONIC_REGEX,
 });
-if (CHECKSUM.SHA3_BUFFER_LENGTH !== CHECKSUM.SHA3_DEFAULT_HASH_BITS / 8 ||
-    CHECKSUM.SHA3_BUFFER_LENGTH !== CHECKSUM.SHA3_DEFAULT_HASH_BITS / 8) {
-    throw new Error('Invalid checksum constants');
-}
 if (objectIdLength !== 12) {
     console.warn('ObjectID length may have changed, breaking encryption', objectIdLength);
 }
-if (ECIES.MULTIPLE.ENCRYPTED_KEY_SIZE !== 129) {
-    throw new ECIESError(ECIESErrorTypeEnum.InvalidECIESMultipleEncryptedKeySize, getCompatibleEciesEngine());
-}
-if (ECIES.PUBLIC_KEY_LENGTH !== ECIES.RAW_PUBLIC_KEY_LENGTH + 1) {
-    throw new ECIESError(ECIESErrorTypeEnum.InvalidECIESPublicKeyLength, getCompatibleEciesEngine());
-}
-if (ECIES.MULTIPLE.RECIPIENT_COUNT_SIZE !== UINT16_SIZE) {
-    throw new ECIESError(ECIESErrorTypeEnum.InvalidECIESMultipleRecipientCountSize, getCompatibleEciesEngine());
-}
-if (ECIES.MULTIPLE.DATA_LENGTH_SIZE !== UINT64_SIZE) {
-    throw new ECIESError(ECIESErrorTypeEnum.InvalidECIESMultipleDataLengthSize, getCompatibleEciesEngine());
-}
-if (ECIES.MULTIPLE.RECIPIENT_ID_SIZE !== GUID_SIZE) {
-    throw new ECIESError(ECIESErrorTypeEnum.InvalidECIESMultipleRecipientIdSize, getCompatibleEciesEngine());
-}
 //# sourceMappingURL=constants.js.map

package/dist/constants.js.map

@@ -1 +1 @@
-{"version":3,"file":"constants.js","sourceRoot":"","sources":["../src/constants.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,MAAM,CAAC;AAChC,OAAO,EAAE,kBAAkB,EAAE,MAAM,gBAAgB,CAAC;AACpD,OAAO,EAAE,iBAAiB,EAAE,MAAM,+BAA+B,CAAC;AAClE,OAAO,EAAE,UAAU,EAAE,MAAM,gBAAgB,CAAC;AAC5C,OAAO,EAAE,wBAAwB,EAAE,MAAM,cAAc,CAAC;AAOxD,MAAM,CAAC,MAAM,UAAU,GAAW,CAAU,CAAC;AAC7C,MAAM,CAAC,MAAM,WAAW,GAAW,CAAU,CAAC;AAC9C,MAAM,CAAC,MAAM,UAAU,GAAW,KAAc,CAAC;AACjD,MAAM,CAAC,MAAM,WAAW,GAAW,CAAU,CAAC;AAC9C,MAAM,CAAC,MAAM,UAAU,GAAW,UAAmB,CAAC;AACtD,MAAM,CAAC,MAAM,WAAW,GAAW,CAAU,CAAC;AAC9C,MAAM,CAAC,MAAM,UAAU,GAAW,qBAA8B,CAAC;AACjE;;GAEG;AACH,MAAM,CAAC,MAAM,SAAS,GAAW,EAAW,CAAC;AAE7C;;;;GAIG;AACH,MAAM,CAAC,MAAM,QAAQ,GAAoB,MAAM,CAAC,MAAM,CAAC;IACrD,iCAAiC;IACjC,sBAAsB,EAAE,GAAY;IAEpC,gDAAgD;IAChD,kBAAkB,EAAE,EAAW;IAE/B,oCAAoC;IACpC,SAAS,EAAE,UAAmB;IAE9B,mCAAmC;IACnC,QAAQ,EAAE,KAAc;CAChB,CAAC,CAAC;AAEZ,MAAM,CAAC,MAAM,MAAM,GAAkB,MAAM,CAAC,MAAM,CAAC;IACjD,SAAS,EAAE,SAAkB;IAC7B,UAAU,EAAE,EAAW;IACvB;;;OAGG;IACH,qBAAqB,EAAE,OAAgB;CAC/B,CAAC,CAAC;AAEZ,MAAM,CAAC,MAAM,eAAe,GAAmB,MAAM,CAAC,MAAM,CAAC;IAC3D,CAAC,iBAAiB,CAAC,gBAAgB,CAAC,EAAE,MAAM,CAAC,MAAM,CAAC;QAClD,SAAS,EAAE,EAAW;QACtB,SAAS,EAAE,EAAW;QACtB,UAAU,EAAE,OAAgB;QAC5B,SAAS,EAAE,SAAkB;KACrB,CAAC;IACX,CAAC,iBAAiB,CAAC,aAAa,CAAC,EAAE,MAAM,CAAC,MAAM,CAAC;QAC/C,SAAS,EAAE,EAAW;QACtB,SAAS,EAAE,EAAW;QACtB,UAAU,EAAE,OAAgB;QAC5B,SAAS,EAAE,SAAkB;KACrB,CAAC;IACX,CAAC,iBAAiB,CAAC,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,CAAC;QAC3C,SAAS,EAAE,EAAW;QACtB,SAAS,EAAE,EAAW;QACtB,UAAU,EAAE,IAAa;QACzB,SAAS,EAAE,SAAkB;KACrB,CAAC;CACH,CAAC,CAAC;AAEZ,MAAM,wBAAwB,GAAG,EAAW,CAAC;AAC7C,MAAM,uBAAuB,GAAG,EAAW,CAAC;AAC5C,MAAM,2BAA2B,GAAG,EAAW,CAAC;AAChD,MAAM,aAAa,GAAG,EAAW,CAAC;AAClC,MAAM,mBAAmB,GAAG,EAAW,CAAC;AACxC,MAAM,gCAAgC,GAAG,EAAW,CAAC;AAErD,2DAA2D;AAC3D,MAAM,sBAAsB,GAC1B,UAAU,GAAG,uBAAuB,GAAG,aAAa,GAAG,mBAAmB,CAAC;AAE7E,6DAA6D;AAC7D,8FAA8F;AAC9F,MAAM,wBAAwB,GAC5B,UAAU,GAAG,aAAa,GAAG,mBAAmB,CAAC;AAEnD,gEAAgE;AAChE,MAAM,gCAAgC,GACpC,uBAAuB;IACvB,aAAa;IACb,mBAAmB;IACnB,wBAAwB,CAAC;AAE3B,MAAM,CAAC,MAAM,KAAK,GAAoB,MAAM,CAAC,MAAM,CAAC;IAClD,yDAAyD;IACzD,UAAU,EAAE,WAAoB;IAEhC,qDAAqD;IACrD,2BAA2B,EAAE,kBAA2B;IAExD,iCAAiC,EAAE,aAAsB;IAEzD,0CAA0C;IAC1C,cAAc,EAAE,EAAW;IAE3B,+DAA+D;IAC/D,qBAAqB,EAAE,2BAA2B;IAElD,wDAAwD;IACxD,iBAAiB,EAAE,uBAAuB;IAE1C,gBAAgB,EAAE,IAAa;IAE/B,0EAA0E;IAC1E,iBAAiB,EAAE,GAAY;IAE/B,mDAAmD;IACnD,SAAS,EAAE,MAAM,CAAC,MAAM,CAAC;QACvB,SAAS,EAAE,KAAc;QACzB,IAAI,EAAE,KAAc;QACpB,QAAQ,EAAE,GAAY;QACtB,QAAQ,EAAE,wBAAwB,EAAE,eAAe;KAC3C,CAAC;IAEX,OAAO,EAAE,aAAa;IACtB,aAAa,EAAE,mBAAmB;IAClC,iBAAiB,EAAE,gBAAyB,EAAE,qCAAqC;IAEnF;;OAEG;IACH,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC;QACpB,mBAAmB,EAAE,sBAAsB,EAAE,uDAAuD;QACpG,gBAAgB,EAAE,CAAU;KACpB,CAAC;IAEX;;OAEG;IACH,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC;QACpB,mBAAmB,EAAE,GAAY,EAAE,yEAAyE;QAC5G,gBAAgB,EAAE,CAAC;KACX,CAAC;IAEX;;OAEG;IACH,QAAQ,EAAE,MAAM,CAAC,MAAM,CAAC;QACtB,mBAAmB,EAAE,wBAAwB,EAAE,6CAA6C;QAC5F,kBAAkB,EAAE,gCAAgC,EAAE,MAAM;QAC5D,cAAc,EAAE,KAAK;QACrB,iBAAiB,EAAE,gCAAgC;QACnD,oBAAoB,EAAE,CAAC;QACvB,gBAAgB,EAAE,CAAC;KACX,CAAC;IAEX,eAAe,EAAE,MAAM,CAAC,MAAM,CAAC;QAC7B,MAAM,EAAE,EAAW;QACnB,MAAM,EAAE,EAAW;QACnB,QAAQ,EAAE,EAAW;KACb,CAAC;CACZ,CAAC,CAAC;AACH,MAAM,cAAc,GAAG,IAAI,QAAQ,EAAE,CAAC,WAAW,EAAE,CAAC,MAAM,GAAG,CAAC,CAAC;AAE/D,MAAM,CAAC,MAAM,SAAS,GAAe,MAAM,CAAC,MAAM,CAAC;IACjD;;OAEG;IACH,gBAAgB,EAAE,cAAc;IAEhC,UAAU,EAAE,UAAU;IACtB,WAAW,EAAE,WAAW;IACxB,UAAU,EAAE,UAAU;IACtB,WAAW,EAAE,WAAW;IACxB,UAAU,EAAE,UAAU;IACtB,WAAW,EAAE,WAAW;IACxB,UAAU,EAAE,UAAU;IACtB,SAAS,EAAE,EAAW;IACtB,SAAS,EAAE,SAAS;IAEpB,QAAQ,EAAE,QAAQ;IAElB,KAAK,EAAE,KAAK;IAEZ,MAAM,EAAE,MAAM;IACd,eAAe,EAAE,eAAe;IAEhC;;OAEG;IACH,YAAY,EAAE,EAAW;IACzB;;OAEG;IACH,iBAAiB,EAAE,CAAU;IAC7B;;OAEG;IACH,aAAa,EACX,kHAAkH;IACpH;;;OAGG;IACH,aAAa,EACX,iGAAiG;IACnG;;OAEG;IACH,SAAS,EAAE,gBAAgB;CACnB,CAAC,CAAC;AAEZ,IACE,QAAQ,CAAC,kBAAkB,KAAK,QAAQ,CAAC,sBAAsB,GAAG,CAAC;IACnE,QAAQ,CAAC,kBAAkB,KAAK,QAAQ,CAAC,sBAAsB,GAAG,CAAC,EACnE,CAAC;IACD,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;AAChD,CAAC;AAED,IAAI,cAAc,KAAK,EAAE,EAAE,CAAC;IAC1B,OAAO,CAAC,IAAI,CACV,uDAAuD,EACvD,cAAc,CACf,CAAC;AACJ,CAAC;AAED,IAAI,KAAK,CAAC,QAAQ,CAAC,kBAAkB,KAAK,GAAG,EAAE,CAAC;IAC9C,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,oCAAoC,EACvD,wBAAwB,EAAS,CAClC,CAAC;AACJ,CAAC;AAED,IAAI,KAAK,CAAC,iBAAiB,KAAK,KAAK,CAAC,qBAAqB,GAAG,CAAC,EAAE,CAAC;IAChE,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,2BAA2B,EAC9C,wBAAwB,EAAS,CAClC,CAAC;AACJ,CAAC;AAED,IAAI,KAAK,CAAC,QAAQ,CAAC,oBAAoB,KAAK,WAAW,EAAE,CAAC;IACxD,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,sCAAsC,EACzD,wBAAwB,EAAS,CAClC,CAAC;AACJ,CAAC;AAED,IAAI,KAAK,CAAC,QAAQ,CAAC,gBAAgB,KAAK,WAAW,EAAE,CAAC;IACpD,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,kCAAkC,EACrD,wBAAwB,EAAS,CAClC,CAAC;AACJ,CAAC;AAED,IAAI,KAAK,CAAC,QAAQ,CAAC,iBAAiB,KAAK,SAAS,EAAE,CAAC;IACnD,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,mCAAmC,EACtD,wBAAwB,EAAS,CAClC,CAAC;AACJ,CAAC"}
+{"version":3,"file":"constants.js","sourceRoot":"","sources":["../src/constants.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,MAAM,CAAC;AAChC,OAAO,EAAE,cAAc,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC;AAG3D,MAAM,CAAC,MAAM,UAAU,GAAW,CAAU,CAAC;AAC7C,MAAM,CAAC,MAAM,WAAW,GAAW,CAAU,CAAC;AAC9C,MAAM,CAAC,MAAM,UAAU,GAAW,KAAc,CAAC;AACjD,MAAM,CAAC,MAAM,WAAW,GAAW,CAAU,CAAC;AAC9C,MAAM,CAAC,MAAM,UAAU,GAAW,UAAmB,CAAC;AACtD,MAAM,CAAC,MAAM,WAAW,GAAW,CAAU,CAAC;AAC9C,MAAM,CAAC,MAAM,UAAU,GAAW,qBAA8B,CAAC;AACjE;;GAEG;AACH,MAAM,CAAC,MAAM,SAAS,GAAW,EAAW,CAAC;AAE7C,MAAM,cAAc,GAAG,IAAI,QAAQ,EAAE,CAAC,WAAW,EAAE,CAAC,MAAM,GAAG,CAAC,CAAC;AAE/D,MAAM,CAAC,MAAM,SAAS,GAAe,MAAM,CAAC,MAAM,CAAC;IACjD;;OAEG;IACH,gBAAgB,EAAE,cAAc;IAEhC,UAAU,EAAE,UAAU;IACtB,WAAW,EAAE,WAAW;IACxB,UAAU,EAAE,UAAU;IACtB,WAAW,EAAE,WAAW;IACxB,UAAU,EAAE,UAAU;IACtB,WAAW,EAAE,WAAW;IACxB,UAAU,EAAE,UAAU;IACtB,SAAS,EAAE,EAAW;IACtB,SAAS,EAAE,SAAS;IACpB,aAAa,EAAE,cAAc;IAC7B,aAAa,EAAE,cAAc;CACrB,CAAC,CAAC;AAEZ,IAAI,cAAc,KAAK,EAAE,EAAE,CAAC;IAC1B,OAAO,CAAC,IAAI,CACV,uDAAuD,EACvD,cAAc,CACf,CAAC;AACJ,CAAC"}

package/dist/defaults.d.ts

@@ -0,0 +1,37 @@
+import { IChecksumConsts } from './interfaces';
+import { IDefaults, IDefaultsOverrides } from './interfaces/defaults';
+import { IECIESConstants } from './interfaces/ecies-consts';
+import { IPBkdf2Consts } from './interfaces/pbkdf2-consts';
+import { Pbkdf2Profiles } from './pbkdf2-profiles';
+/**
+ * Constants for checksum operations
+ * These values are critical for data integrity and MUST NOT be changed
+ * in an already established system as it will break all existing checksums.
+ */
+export declare const CHECKSUM: IChecksumConsts;
+export declare const PBKDF2: IPBkdf2Consts;
+export declare const PBKDF2_PROFILES: Pbkdf2Profiles;
+export declare const ECIES: IECIESConstants;
+export declare const Defaults: IDefaults;
+export type ConfigurationKey = string | symbol;
+export declare function createRuntimeConfiguration(overrides?: IDefaultsOverrides, base?: IDefaults): IDefaults;
+export declare class DefaultsRegistry {
+    static readonly DEFAULT_KEY: ConfigurationKey;
+    static listKeys(): ConfigurationKey[];
+    static has(key: ConfigurationKey): boolean;
+    static get(key?: ConfigurationKey): IDefaults;
+    static create(overrides?: IDefaultsOverrides, baseKey?: ConfigurationKey): IDefaults;
+    static register(key: ConfigurationKey, configOrOverrides?: IDefaultsOverrides | IDefaults, options?: {
+        baseKey?: ConfigurationKey;
+    }): IDefaults;
+    static unregister(key: ConfigurationKey): boolean;
+    static clear(): void;
+}
+export declare function getRuntimeConfiguration(key?: ConfigurationKey): IDefaults;
+export declare function registerRuntimeConfiguration(key: ConfigurationKey, configOrOverrides?: IDefaultsOverrides | IDefaults, options?: {
+    baseKey?: ConfigurationKey;
+}): IDefaults;
+export declare function unregisterRuntimeConfiguration(key: ConfigurationKey): boolean;
+export declare function clearRuntimeConfigurations(): void;
+export { PASSWORD_REGEX, MNEMONIC_REGEX } from './regexes';
+//# sourceMappingURL=defaults.d.ts.map

package/dist/defaults.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"defaults.d.ts","sourceRoot":"","sources":["../src/defaults.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC;AAC/C,OAAO,EAAE,SAAS,EAAE,kBAAkB,EAAE,MAAM,uBAAuB,CAAC;AAEtE,OAAO,EAAE,eAAe,EAAE,MAAM,2BAA2B,CAAC;AAC5D,OAAO,EAAE,aAAa,EAAE,MAAM,4BAA4B,CAAC;AAC3D,OAAO,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AAGnD;;;;GAIG;AACH,eAAO,MAAM,QAAQ,EAAE,eAYZ,CAAC;AAEZ,eAAO,MAAM,MAAM,EAAE,aAQV,CAAC;AAEZ,eAAO,MAAM,eAAe,EAAE,cAmBnB,CAAC;AAyBZ,eAAO,MAAM,KAAK,EAAE,eAoElB,CAAC;AAEH,eAAO,MAAM,QAAQ,EAAE,SA0BZ,CAAC;AAEZ,MAAM,MAAM,gBAAgB,GAAG,MAAM,GAAG,MAAM,CAAC;AAsK/C,wBAAgB,0BAA0B,CACxC,SAAS,CAAC,EAAE,kBAAkB,EAC9B,IAAI,GAAE,SAAoB,GACzB,SAAS,CAKX;AAED,qBAAa,gBAAgB;IAC3B,gBAAuB,WAAW,mBAA6B;WAEjD,QAAQ,IAAI,gBAAgB,EAAE;WAI9B,GAAG,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO;WAInC,GAAG,CAAC,GAAG,GAAE,gBAA4C,GAAG,SAAS;WAOjE,MAAM,CAClB,SAAS,CAAC,EAAE,kBAAkB,EAC9B,OAAO,GAAE,gBAA4C,GACpD,SAAS;WAKE,QAAQ,CACpB,GAAG,EAAE,gBAAgB,EACrB,iBAAiB,CAAC,EAAE,kBAAkB,GAAG,SAAS,EAClD,OAAO,CAAC,EAAE;QAAE,OAAO,CAAC,EAAE,gBAAgB,CAAA;KAAE,GACvC,SAAS;WAgBE,UAAU,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO;WAO1C,KAAK,IAAI,IAAI;CAI5B;AAED,wBAAgB,uBAAuB,CACrC,GAAG,GAAE,gBAA4C,GAChD,SAAS,CAEX;AAED,wBAAgB,4BAA4B,CAC1C,GAAG,EAAE,gBAAgB,EACrB,iBAAiB,CAAC,EAAE,kBAAkB,GAAG,SAAS,EAClD,OAAO,CAAC,EAAE;IAAE,OAAO,CAAC,EAAE,gBAAgB,CAAA;CAAE,GACvC,SAAS,CAEX;AAED,wBAAgB,8BAA8B,CAC5C,GAAG,EAAE,gBAAgB,GACpB,OAAO,CAET;AAED,wBAAgB,0BAA0B,IAAI,IAAI,CAEjD;AAED,OAAO,EAAE,cAAc,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC"}

package/dist/defaults.js

@@ -0,0 +1,323 @@
+import { GUID_SIZE, UINT16_SIZE, UINT64_SIZE, UINT8_SIZE } from './constants';
+import { ECIESErrorTypeEnum } from './enumerations';
+import { Pbkdf2ProfileEnum } from './enumerations/pbkdf2-profile';
+import { ECIESError } from './errors/ecies';
+import { getCompatibleEciesEngine } from './i18n-setup';
+import { MNEMONIC_REGEX, PASSWORD_REGEX } from './regexes';
+/**
+ * Constants for checksum operations
+ * These values are critical for data integrity and MUST NOT be changed
+ * in an already established system as it will break all existing checksums.
+ */
+export const CHECKSUM = Object.freeze({
+    /** Default hash bits for SHA3 */
+    SHA3_DEFAULT_HASH_BITS: 512,
+    /** Length of a SHA3 checksum buffer in bytes */
+    SHA3_BUFFER_LENGTH: 64,
+    /** algorithm to use for checksum */
+    ALGORITHM: 'sha3-512',
+    /** encoding to use for checksum */
+    ENCODING: 'hex',
+});
+export const PBKDF2 = Object.freeze({
+    ALGORITHM: 'SHA-256',
+    SALT_BYTES: 32,
+    /**
+     * Number of pbkdf2 iterations per second when hashing a password.
+     * This is the high-security default for user login operations.
+     */
+    ITERATIONS_PER_SECOND: 1304000,
+});
+export const PBKDF2_PROFILES = Object.freeze({
+    [Pbkdf2ProfileEnum.BROWSER_PASSWORD]: Object.freeze({
+        hashBytes: 32,
+        saltBytes: 64,
+        iterations: 2000000,
+        algorithm: 'SHA-512',
+    }),
+    [Pbkdf2ProfileEnum.HIGH_SECURITY]: Object.freeze({
+        hashBytes: 64,
+        saltBytes: 32,
+        iterations: 5000000,
+        algorithm: 'SHA-256',
+    }),
+    [Pbkdf2ProfileEnum.TEST_FAST]: Object.freeze({
+        hashBytes: 32,
+        saltBytes: 64,
+        iterations: 1000,
+        algorithm: 'SHA-512',
+    }),
+});
+const ECIES_SYMMETRIC_KEY_SIZE = 32;
+const ECIES_PUBLIC_KEY_LENGTH = 65;
+const ECIES_RAW_PUBLIC_KEY_LENGTH = 64;
+const ECIES_IV_SIZE = 16;
+const ECIES_AUTH_TAG_SIZE = 16;
+const ECIES_MULTIPLE_RECIPIENT_ID_SIZE = 16;
+// Define the expected value for SIMPLE.FIXED_OVERHEAD_SIZE
+const expectedSimpleOverhead = UINT8_SIZE + ECIES_PUBLIC_KEY_LENGTH + ECIES_IV_SIZE + ECIES_AUTH_TAG_SIZE;
+// Define the expected value for MULTIPLE.FIXED_OVERHEAD_SIZE
+// Includes: type (1) + IV (16) + auth tag (16) = 33 (no CRC, AES-GCM provides authentication)
+const expectedMultipleOverhead = UINT8_SIZE + ECIES_IV_SIZE + ECIES_AUTH_TAG_SIZE;
+// Update ENCRYPTED_KEY_SIZE to match Simple encryption (no CRC)
+const expectedMultipleEncryptedKeySize = ECIES_PUBLIC_KEY_LENGTH +
+    ECIES_IV_SIZE +
+    ECIES_AUTH_TAG_SIZE +
+    ECIES_SYMMETRIC_KEY_SIZE;
+export const ECIES = Object.freeze({
+    /** The elliptic curve to use for all ECDSA operations */
+    CURVE_NAME: 'secp256k1',
+    /** The primary key derivation path for HD wallets */
+    PRIMARY_KEY_DERIVATION_PATH: "m/44'/60'/0'/0/0",
+    SYMMETRIC_ALGORITHM_CONFIGURATION: 'aes-256-gcm',
+    /** Length of ECDSA signatures in bytes */
+    SIGNATURE_SIZE: 64,
+    /** Length of raw public keys in bytes (without 0x04 prefix) */
+    RAW_PUBLIC_KEY_LENGTH: ECIES_RAW_PUBLIC_KEY_LENGTH,
+    /** Length of public keys in bytes (with 0x04 prefix) */
+    PUBLIC_KEY_LENGTH: ECIES_PUBLIC_KEY_LENGTH,
+    PUBLIC_KEY_MAGIC: 0x04,
+    /** Mnemonic strength in bits. This will produce a 32-bit key for ECDSA */
+    MNEMONIC_STRENGTH: 256,
+    /** Symmetric encryption algorithm configuration */
+    SYMMETRIC: Object.freeze({
+        ALGORITHM: 'aes',
+        MODE: 'gcm',
+        KEY_BITS: 256,
+        KEY_SIZE: ECIES_SYMMETRIC_KEY_SIZE, // KEY_BITS / 8
+    }),
+    IV_SIZE: ECIES_IV_SIZE,
+    AUTH_TAG_SIZE: ECIES_AUTH_TAG_SIZE,
+    MAX_RAW_DATA_SIZE: 9007199254740991, // 2^53 - 1 (max safe integer for JS)
+    /**
+     * Message encrypts without data length or crc
+     */
+    SIMPLE: Object.freeze({
+        FIXED_OVERHEAD_SIZE: expectedSimpleOverhead, // type (1) + public key (65) + IV (16) + auth tag (16)
+        DATA_LENGTH_SIZE: 0,
+    }),
+    /**
+     * Message encrypts with data length but no CRC (AES-GCM provides authentication)
+     */
+    SINGLE: Object.freeze({
+        FIXED_OVERHEAD_SIZE: 106, // type (1) + public key (65) + IV (16) + auth tag (16) + data length (8)
+        DATA_LENGTH_SIZE: 8,
+    }),
+    /**
+     * Message encrypts for multiple recipients
+     */
+    MULTIPLE: Object.freeze({
+        FIXED_OVERHEAD_SIZE: expectedMultipleOverhead, // type (1) + IV (16) + auth tag (16), no CRC
+        ENCRYPTED_KEY_SIZE: expectedMultipleEncryptedKeySize, // 129
+        MAX_RECIPIENTS: 65535,
+        RECIPIENT_ID_SIZE: ECIES_MULTIPLE_RECIPIENT_ID_SIZE,
+        RECIPIENT_COUNT_SIZE: 2,
+        DATA_LENGTH_SIZE: 8,
+    }),
+    ENCRYPTION_TYPE: Object.freeze({
+        SIMPLE: 33,
+        SINGLE: 66,
+        MULTIPLE: 99,
+    }),
+});
+export const Defaults = Object.freeze({
+    CHECKSUM: CHECKSUM,
+    ECIES: ECIES,
+    PBKDF2: PBKDF2,
+    PBKDF2_PROFILES: PBKDF2_PROFILES,
+    /**
+     * Number of rounds for bcrypt hashing. Higher values increase security but also consume more CPU resources.
+     */
+    BcryptRounds: 10,
+    /**
+     * Minimum password length
+     */
+    PasswordMinLength: 8,
+    /**
+     * The regular expression for valid passwords.
+     */
+    PasswordRegex: PASSWORD_REGEX,
+    /**
+     * The regular expression for valid mnemonic phrases.
+     * BIP39 - supports 12, 15, 18, 21, or 24 word mnemonics
+     */
+    MnemonicRegex: MNEMONIC_REGEX,
+    /**
+     * Matches a 64-character hexadecimal string (SHA-256).
+     */
+    HmacRegex: /^[a-f0-9]{64}$/,
+});
+const DEFAULT_CONFIGURATION_KEY = Symbol.for('digitaldefiance.ecies.defaults.default');
+function isPlainObject(value) {
+    if (value === null) {
+        return false;
+    }
+    if (typeof value !== 'object') {
+        return false;
+    }
+    if (Array.isArray(value)) {
+        return false;
+    }
+    if (value instanceof RegExp || value instanceof Date) {
+        return false;
+    }
+    return Object.getPrototypeOf(value) === Object.prototype;
+}
+function deepClone(input) {
+    if (input === null) {
+        return input;
+    }
+    if (Array.isArray(input)) {
+        return input.map((item) => deepClone(item));
+    }
+    if (input instanceof RegExp) {
+        return new RegExp(input.source, input.flags);
+    }
+    if (input instanceof Date) {
+        return new Date(input.getTime());
+    }
+    if (isPlainObject(input)) {
+        const result = {};
+        for (const [key, value] of Object.entries(input)) {
+            result[key] = deepClone(value);
+        }
+        return result;
+    }
+    return input;
+}
+function applyOverrides(target, overrides) {
+    if (!overrides) {
+        return target;
+    }
+    for (const [key, overrideValue] of Object.entries(overrides)) {
+        const typedKey = key;
+        if (overrideValue === undefined) {
+            continue;
+        }
+        const currentValue = target[typedKey];
+        if (isPlainObject(currentValue) && isPlainObject(overrideValue)) {
+            target[typedKey] = applyOverrides(currentValue, overrideValue);
+        }
+        else {
+            target[typedKey] = deepClone(overrideValue);
+        }
+    }
+    return target;
+}
+function deepFreeze(value) {
+    if (value === null || typeof value !== 'object') {
+        return value;
+    }
+    if (Object.isFrozen(value)) {
+        return value;
+    }
+    Object.freeze(value);
+    for (const property of Object.getOwnPropertyNames(value)) {
+        // eslint-disable-next-line @typescript-eslint/no-explicit-any
+        const nestedValue = value[property];
+        deepFreeze(nestedValue);
+    }
+    return value;
+}
+function computeMultipleEncryptedKeySize(ecies) {
+    return (ecies.PUBLIC_KEY_LENGTH +
+        ecies.IV_SIZE +
+        ecies.AUTH_TAG_SIZE +
+        ecies.SYMMETRIC.KEY_SIZE);
+}
+function validateDefaults(config) {
+    const checksum = config.CHECKSUM;
+    const ecies = config.ECIES;
+    if (checksum.SHA3_BUFFER_LENGTH !== checksum.SHA3_DEFAULT_HASH_BITS / 8 ||
+        checksum.SHA3_BUFFER_LENGTH !== checksum.SHA3_DEFAULT_HASH_BITS / 8) {
+        throw new Error('Invalid checksum constants');
+    }
+    const expectedEncryptedKeySize = computeMultipleEncryptedKeySize(ecies);
+    if (ecies.MULTIPLE.ENCRYPTED_KEY_SIZE !== expectedEncryptedKeySize) {
+        throw new ECIESError(ECIESErrorTypeEnum.InvalidECIESMultipleEncryptedKeySize, getCompatibleEciesEngine());
+    }
+    if (ecies.PUBLIC_KEY_LENGTH !== ecies.RAW_PUBLIC_KEY_LENGTH + 1) {
+        throw new ECIESError(ECIESErrorTypeEnum.InvalidECIESPublicKeyLength, getCompatibleEciesEngine());
+    }
+    if (ecies.MULTIPLE.RECIPIENT_COUNT_SIZE !== UINT16_SIZE) {
+        throw new ECIESError(ECIESErrorTypeEnum.InvalidECIESMultipleRecipientCountSize, getCompatibleEciesEngine());
+    }
+    if (ecies.MULTIPLE.DATA_LENGTH_SIZE !== UINT64_SIZE) {
+        throw new ECIESError(ECIESErrorTypeEnum.InvalidECIESMultipleDataLengthSize, getCompatibleEciesEngine());
+    }
+    if (ecies.MULTIPLE.RECIPIENT_ID_SIZE !== GUID_SIZE) {
+        throw new ECIESError(ECIESErrorTypeEnum.InvalidECIESMultipleRecipientIdSize, getCompatibleEciesEngine());
+    }
+}
+validateDefaults(Defaults);
+const configurationRegistry = new Map();
+configurationRegistry.set(DEFAULT_CONFIGURATION_KEY, Defaults);
+function isFullDefaultsConfig(value) {
+    if (!isPlainObject(value)) {
+        return false;
+    }
+    const candidate = value;
+    return (candidate.CHECKSUM !== undefined &&
+        candidate.ECIES !== undefined &&
+        candidate.PBKDF2 !== undefined &&
+        candidate.PBKDF2_PROFILES !== undefined);
+}
+export function createRuntimeConfiguration(overrides, base = Defaults) {
+    const merged = deepClone(base);
+    applyOverrides(merged, overrides);
+    validateDefaults(merged);
+    return deepFreeze(merged);
+}
+export class DefaultsRegistry {
+    static DEFAULT_KEY = DEFAULT_CONFIGURATION_KEY;
+    static listKeys() {
+        return Array.from(configurationRegistry.keys());
+    }
+    static has(key) {
+        return configurationRegistry.has(key);
+    }
+    static get(key = DEFAULT_CONFIGURATION_KEY) {
+        return (configurationRegistry.get(key) ??
+            configurationRegistry.get(DEFAULT_CONFIGURATION_KEY));
+    }
+    static create(overrides, baseKey = DEFAULT_CONFIGURATION_KEY) {
+        const baseConfig = DefaultsRegistry.get(baseKey);
+        return createRuntimeConfiguration(overrides, baseConfig);
+    }
+    static register(key, configOrOverrides, options) {
+        if (key === DEFAULT_CONFIGURATION_KEY) {
+            throw new Error('Cannot overwrite the default configuration');
+        }
+        const baseKey = options?.baseKey ?? DEFAULT_CONFIGURATION_KEY;
+        const baseConfig = DefaultsRegistry.get(baseKey);
+        const configuration = isFullDefaultsConfig(configOrOverrides)
+            ? createRuntimeConfiguration(undefined, configOrOverrides)
+            : createRuntimeConfiguration(configOrOverrides, baseConfig);
+        configurationRegistry.set(key, configuration);
+        return configuration;
+    }
+    static unregister(key) {
+        if (key === DEFAULT_CONFIGURATION_KEY) {
+            return false;
+        }
+        return configurationRegistry.delete(key);
+    }
+    static clear() {
+        configurationRegistry.clear();
+        configurationRegistry.set(DEFAULT_CONFIGURATION_KEY, Defaults);
+    }
+}
+export function getRuntimeConfiguration(key = DEFAULT_CONFIGURATION_KEY) {
+    return DefaultsRegistry.get(key);
+}
+export function registerRuntimeConfiguration(key, configOrOverrides, options) {
+    return DefaultsRegistry.register(key, configOrOverrides, options);
+}
+export function unregisterRuntimeConfiguration(key) {
+    return DefaultsRegistry.unregister(key);
+}
+export function clearRuntimeConfigurations() {
+    DefaultsRegistry.clear();
+}
+export { PASSWORD_REGEX, MNEMONIC_REGEX } from './regexes';
+//# sourceMappingURL=defaults.js.map