@digitaldefiance/node-ecies-lib 1.0.0

package/dist/services/ecies/file.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"file.d.ts","sourceRoot":"","sources":["../../../src/services/ecies/file.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AASzC,qBAAa,gBAAgB;IAKzB,OAAO,CAAC,YAAY;IACpB,OAAO,CAAC,cAAc;IALxB,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,UAAU,CAAe;IACjD,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAM;gBAG/B,YAAY,EAAE,YAAY,EAC1B,cAAc,EAAE,MAAM;IAGhC,WAAW,CAAC,aAAa,EAAE,MAAM,GAAG,MAAM;IAuB1C,mBAAmB,CAAC,QAAQ,EAAE,MAAM,EAAE,kBAAkB,EAAE,MAAM,GAAG,MAAM;IA4CzE,iBAAiB,CAAC,aAAa,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,GAAG,IAAI;IAwBlE,OAAO,CAAC,eAAe;IASvB,OAAO,CAAC,iBAAiB;IASzB,OAAO,CAAC,kBAAkB;CAoC3B"}

package/dist/services/ecies/file.js

@@ -0,0 +1,104 @@
+import * as fs from 'fs';
+export class EciesFileService {
+    eciesService;
+    userPrivateKey;
+    static CHUNK_SIZE = 1024 * 1024; // 1MB chunks
+    static HEADER_SIZE = 20;
+    constructor(eciesService, userPrivateKey) {
+        this.eciesService = eciesService;
+        this.userPrivateKey = userPrivateKey;
+    }
+    decryptFile(encryptedData) {
+        const { header, chunks } = this.parseEncryptedFile(encryptedData);
+        const decryptedChunks = [];
+        for (const chunk of chunks) {
+            const decrypted = this.eciesService.decryptSimpleOrSingleWithHeader(false, this.userPrivateKey, chunk);
+            decryptedChunks.push(decrypted);
+        }
+        const result = Buffer.alloc(header.originalSize);
+        let offset = 0;
+        for (const chunk of decryptedChunks) {
+            const copyLength = Math.min(chunk.length, header.originalSize - offset);
+            chunk.copy(result, offset, 0, copyLength);
+            offset += copyLength;
+        }
+        return result;
+    }
+    encryptFileFromPath(filePath, recipientPublicKey) {
+        const stats = fs.statSync(filePath);
+        const totalChunks = Math.ceil(stats.size / EciesFileService.CHUNK_SIZE);
+        const header = {
+            version: 1,
+            chunkSize: EciesFileService.CHUNK_SIZE,
+            totalChunks,
+            originalSize: stats.size,
+        };
+        const headerBytes = this.serializeHeader(header);
+        const encryptedHeader = this.eciesService.encryptSimpleOrSingle(false, recipientPublicKey, headerBytes);
+        const chunks = [encryptedHeader];
+        const fd = fs.openSync(filePath, 'r');
+        try {
+            for (let i = 0; i < totalChunks; i++) {
+                const offset = i * EciesFileService.CHUNK_SIZE;
+                const chunkSize = Math.min(EciesFileService.CHUNK_SIZE, stats.size - offset);
+                const chunkData = Buffer.alloc(chunkSize);
+                fs.readSync(fd, chunkData, 0, chunkSize, offset);
+                const encryptedChunk = this.eciesService.encryptSimpleOrSingle(false, recipientPublicKey, chunkData);
+                chunks.push(encryptedChunk);
+            }
+        }
+        finally {
+            fs.closeSync(fd);
+        }
+        return Buffer.concat(chunks);
+    }
+    decryptFileToPath(encryptedData, outputPath) {
+        const { header, chunks } = this.parseEncryptedFile(encryptedData);
+        const fd = fs.openSync(outputPath, 'w');
+        let offset = 0;
+        try {
+            for (const chunk of chunks) {
+                const decrypted = this.eciesService.decryptSimpleOrSingleWithHeader(false, this.userPrivateKey, chunk);
+                const writeLength = Math.min(decrypted.length, header.originalSize - offset);
+                fs.writeSync(fd, decrypted, 0, writeLength, offset);
+                offset += writeLength;
+            }
+        }
+        finally {
+            fs.closeSync(fd);
+        }
+    }
+    serializeHeader(header) {
+        const buffer = Buffer.alloc(EciesFileService.HEADER_SIZE);
+        buffer.writeUInt32BE(header.version, 0);
+        buffer.writeUInt32BE(header.chunkSize, 4);
+        buffer.writeUInt32BE(header.totalChunks, 8);
+        buffer.writeUInt32BE(header.originalSize, 12);
+        return buffer;
+    }
+    deserializeHeader(data) {
+        return {
+            version: data.readUInt32BE(0),
+            chunkSize: data.readUInt32BE(4),
+            totalChunks: data.readUInt32BE(8),
+            originalSize: data.readUInt32BE(12),
+        };
+    }
+    parseEncryptedFile(encryptedData) {
+        const headerLength = this.eciesService.computeEncryptedLengthFromDataLength(EciesFileService.HEADER_SIZE, 'single');
+        const encryptedHeader = encryptedData.subarray(0, headerLength);
+        const decryptedHeaderBytes = this.eciesService.decryptSimpleOrSingleWithHeader(false, this.userPrivateKey, encryptedHeader);
+        const header = this.deserializeHeader(decryptedHeaderBytes);
+        const chunks = [];
+        let offset = headerLength;
+        for (let i = 0; i < header.totalChunks; i++) {
+            const chunkLength = this.eciesService.computeEncryptedLengthFromDataLength(i === header.totalChunks - 1
+                ? header.originalSize % header.chunkSize || header.chunkSize
+                : header.chunkSize, 'single');
+            chunks.push(encryptedData.subarray(offset, offset + chunkLength));
+            offset += chunkLength;
+        }
+        return { header, chunks };
+    }
+}
+//# sourceMappingURL=file.js.map

package/dist/services/ecies/file.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"file.js","sourceRoot":"","sources":["../../../src/services/ecies/file.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AAUzB,MAAM,OAAO,gBAAgB;IAKjB;IACA;IALF,MAAM,CAAU,UAAU,GAAG,IAAI,GAAG,IAAI,CAAC,CAAC,aAAa;IACvD,MAAM,CAAU,WAAW,GAAG,EAAE,CAAC;IAEzC,YACU,YAA0B,EAC1B,cAAsB;QADtB,iBAAY,GAAZ,YAAY,CAAc;QAC1B,mBAAc,GAAd,cAAc,CAAQ;IAC7B,CAAC;IAEJ,WAAW,CAAC,aAAqB;QAC/B,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,IAAI,CAAC,kBAAkB,CAAC,aAAa,CAAC,CAAC;QAClE,MAAM,eAAe,GAAa,EAAE,CAAC;QAErC,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;YAC3B,MAAM,SAAS,GAAG,IAAI,CAAC,YAAY,CAAC,+BAA+B,CACjE,KAAK,EACL,IAAI,CAAC,cAAc,EACnB,KAAK,CACN,CAAC;YACF,eAAe,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAClC,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;QACjD,IAAI,MAAM,GAAG,CAAC,CAAC;QACf,KAAK,MAAM,KAAK,IAAI,eAAe,EAAE,CAAC;YACpC,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,CAAC,YAAY,GAAG,MAAM,CAAC,CAAC;YACxE,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,MAAM,EAAE,CAAC,EAAE,UAAU,CAAC,CAAC;YAC1C,MAAM,IAAI,UAAU,CAAC;QACvB,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,mBAAmB,CAAC,QAAgB,EAAE,kBAA0B;QAC9D,MAAM,KAAK,GAAG,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;QACpC,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,GAAG,gBAAgB,CAAC,UAAU,CAAC,CAAC;QACxE,MAAM,MAAM,GAAsB;YAChC,OAAO,EAAE,CAAC;YACV,SAAS,EAAE,gBAAgB,CAAC,UAAU;YACtC,WAAW;YACX,YAAY,EAAE,KAAK,CAAC,IAAI;SACzB,CAAC;QAEF,MAAM,WAAW,GAAG,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC;QACjD,MAAM,eAAe,GAAG,IAAI,CAAC,YAAY,CAAC,qBAAqB,CAC7D,KAAK,EACL,kBAAkB,EAClB,WAAW,CACZ,CAAC;QAEF,MAAM,MAAM,GAAa,CAAC,eAAe,CAAC,CAAC;QAC3C,MAAM,EAAE,GAAG,EAAE,CAAC,QAAQ,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAC;QAEtC,IAAI,CAAC;YACH,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,WAAW,EAAE,CAAC,EAAE,EAAE,CAAC;gBACrC,MAAM,MAAM,GAAG,CAAC,GAAG,gBAAgB,CAAC,UAAU,CAAC;gBAC/C,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CACxB,gBAAgB,CAAC,UAAU,EAC3B,KAAK,CAAC,IAAI,GAAG,MAAM,CACpB,CAAC;gBACF,MAAM,SAAS,GAAG,MAAM,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;gBAC1C,EAAE,CAAC,QAAQ,CAAC,EAAE,EAAE,SAAS,EAAE,CAAC,EAAE,SAAS,EAAE,MAAM,CAAC,CAAC;gBAEjD,MAAM,cAAc,GAAG,IAAI,CAAC,YAAY,CAAC,qBAAqB,CAC5D,KAAK,EACL,kBAAkB,EAClB,SAAS,CACV,CAAC;gBACF,MAAM,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;YAC9B,CAAC;QACH,CAAC;gBAAS,CAAC;YACT,EAAE,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;QACnB,CAAC;QAED,OAAO,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC/B,CAAC;IAED,iBAAiB,CAAC,aAAqB,EAAE,UAAkB;QACzD,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,IAAI,CAAC,kBAAkB,CAAC,aAAa,CAAC,CAAC;QAClE,MAAM,EAAE,GAAG,EAAE,CAAC,QAAQ,CAAC,UAAU,EAAE,GAAG,CAAC,CAAC;QACxC,IAAI,MAAM,GAAG,CAAC,CAAC;QAEf,IAAI,CAAC;YACH,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;gBAC3B,MAAM,SAAS,GAAG,IAAI,CAAC,YAAY,CAAC,+BAA+B,CACjE,KAAK,EACL,IAAI,CAAC,cAAc,EACnB,KAAK,CACN,CAAC;gBACF,MAAM,WAAW,GAAG,IAAI,CAAC,GAAG,CAC1B,SAAS,CAAC,MAAM,EAChB,MAAM,CAAC,YAAY,GAAG,MAAM,CAC7B,CAAC;gBACF,EAAE,CAAC,SAAS,CAAC,EAAE,EAAE,SAAS,EAAE,CAAC,EAAE,WAAW,EAAE,MAAM,CAAC,CAAC;gBACpD,MAAM,IAAI,WAAW,CAAC;YACxB,CAAC;QACH,CAAC;gBAAS,CAAC;YACT,EAAE,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;QACnB,CAAC;IACH,CAAC;IAEO,eAAe,CAAC,MAAyB;QAC/C,MAAM,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,gBAAgB,CAAC,WAAW,CAAC,CAAC;QAC1D,MAAM,CAAC,aAAa,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;QACxC,MAAM,CAAC,aAAa,CAAC,MAAM,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC;QAC1C,MAAM,CAAC,aAAa,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;QAC5C,MAAM,CAAC,aAAa,CAAC,MAAM,CAAC,YAAY,EAAE,EAAE,CAAC,CAAC;QAC9C,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,iBAAiB,CAAC,IAAY;QACpC,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC;YAC7B,SAAS,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC;YAC/B,WAAW,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC;YACjC,YAAY,EAAE,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;SACpC,CAAC;IACJ,CAAC;IAEO,kBAAkB,CAAC,aAAqB;QAI9C,MAAM,YAAY,GAAG,IAAI,CAAC,YAAY,CAAC,oCAAoC,CACzE,gBAAgB,CAAC,WAAW,EAC5B,QAAQ,CACT,CAAC;QAEF,MAAM,eAAe,GAAG,aAAa,CAAC,QAAQ,CAAC,CAAC,EAAE,YAAY,CAAC,CAAC;QAChE,MAAM,oBAAoB,GACxB,IAAI,CAAC,YAAY,CAAC,+BAA+B,CAC/C,KAAK,EACL,IAAI,CAAC,cAAc,EACnB,eAAe,CAChB,CAAC;QAEJ,MAAM,MAAM,GAAG,IAAI,CAAC,iBAAiB,CAAC,oBAAoB,CAAC,CAAC;QAC5D,MAAM,MAAM,GAAa,EAAE,CAAC;QAC5B,IAAI,MAAM,GAAG,YAAY,CAAC;QAE1B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC,WAAW,EAAE,CAAC,EAAE,EAAE,CAAC;YAC5C,MAAM,WAAW,GACf,IAAI,CAAC,YAAY,CAAC,oCAAoC,CACpD,CAAC,KAAK,MAAM,CAAC,WAAW,GAAG,CAAC;gBAC1B,CAAC,CAAC,MAAM,CAAC,YAAY,GAAG,MAAM,CAAC,SAAS,IAAI,MAAM,CAAC,SAAS;gBAC5D,CAAC,CAAC,MAAM,CAAC,SAAS,EACpB,QAAQ,CACT,CAAC;YAEJ,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,WAAW,CAAC,CAAC,CAAC;YAClE,MAAM,IAAI,WAAW,CAAC;QACxB,CAAC;QAED,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC;IAC5B,CAAC"}

package/dist/services/ecies/index.d.ts

@@ -0,0 +1,8 @@
+export * from './crypto-core';
+export * from './file';
+export * from './multi-recipient';
+export * from './service';
+export * from './signature';
+export * from './single-recipient';
+export * from './utilities';
+//# sourceMappingURL=index.d.ts.map

package/dist/services/ecies/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/services/ecies/index.ts"],"names":[],"mappings":"AAAA,cAAc,eAAe,CAAC;AAC9B,cAAc,QAAQ,CAAC;AACvB,cAAc,mBAAmB,CAAC;AAClC,cAAc,WAAW,CAAC;AAC1B,cAAc,aAAa,CAAC;AAC5B,cAAc,oBAAoB,CAAC;AACnC,cAAc,aAAa,CAAC"}

package/dist/services/ecies/index.js

@@ -0,0 +1,8 @@
+export * from './crypto-core';
+export * from './file';
+export * from './multi-recipient';
+export * from './service';
+export * from './signature';
+export * from './single-recipient';
+export * from './utilities';
+//# sourceMappingURL=index.js.map

package/dist/services/ecies/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/services/ecies/index.ts"],"names":[],"mappings":"AAAA,cAAc,eAAe,CAAC;AAC9B,cAAc,QAAQ,CAAC;AACvB,cAAc,mBAAmB,CAAC;AAClC,cAAc,WAAW,CAAC;AAC1B,cAAc,aAAa,CAAC;AAC5B,cAAc,oBAAoB,CAAC;AACnC,cAAc,aAAa,CAAC"}

package/dist/services/ecies/multi-recipient.d.ts

@@ -0,0 +1,83 @@
+import { EciesStringKey } from '@digitaldefiance/ecies-lib';
+import { I18nEngine, Language } from '@digitaldefiance/i18n-lib';
+import { IMultiEncryptedMessage } from '../../interfaces/multi-encrypted-message';
+import { IMultiEncryptedParsedHeader } from '../../interfaces/multi-encrypted-parsed-header';
+import { Member } from '../../member';
+import { EciesCryptoCore } from './crypto-core';
+import { EciesSingleRecipientCore } from './single-recipient';
+/**
+ * Multiple recipient encryption/decryption functions for ECIES
+ */
+export declare class EciesMultiRecipient {
+    protected readonly cryptoCore: EciesCryptoCore;
+    protected readonly singleRecipientCore: EciesSingleRecipientCore;
+    protected readonly engine: I18nEngine<EciesStringKey, Language, any, any>;
+    constructor(cryptoCore: EciesCryptoCore, engine: I18nEngine<EciesStringKey, Language, any, any>);
+    /**
+     * Get the size of the header for a given encryption type
+     * @param encryptionType The encryption type (single, simple, etc.)
+     * @param options Optional encryption options
+     * @param options.recipientCount The number of recipients
+     * @returns
+     */
+    getHeaderSize(recipientCount: number): number;
+    /**
+     * Encrypt a message symmetric key with a public key
+     * @param receiverPublicKey The public key of the receiver
+     * @param messageSymmetricKey The message to encrypt
+     * @returns The encrypted message
+     */
+    encryptKey(receiverPublicKey: Buffer, messageSymmetricKey: Buffer): Buffer;
+    /**
+     * Decrypts symmetric key encrypted with ECIES using a header
+     * @param privateKey The private key to decrypt the data
+     * @param encryptedKey The data to decrypt
+     * @returns The decrypted data buffer
+     */
+    decryptKey(privateKey: Buffer, encryptedKey: Buffer): Buffer;
+    /**
+     * Encrypts a message for multiple recipients.
+     * @param recipients The recipients to encrypt the message for.
+     * @param message The message to encrypt.
+     * @param preamble Optional preamble to include in the encrypted message.
+     * @returns The encrypted message.
+     * @throws EciesError if the number of recipients is greater than 65535.
+     */
+    encryptMultiple(recipients: Member[], message: Buffer, preamble?: Buffer): IMultiEncryptedMessage;
+    /**
+     * Decrypts a message encrypted with multiple ECIE for a recipient.
+     * @param encryptedData The encrypted data.
+     * @param recipient The recipient.
+     * @returns The decrypted message.
+     */
+    decryptMultipleECIEForRecipient(encryptedData: IMultiEncryptedMessage, recipient: Member): Buffer;
+    /**
+     * Calculate the overhead for a message encrypted for multiple recipients
+     * @param recipientCount number of recipients
+     * @param includeMessageOverhead whether to include the overhead for the encrypted message
+     * @param encryptedKeys optional array of encrypted keys to calculate actual size
+     * @returns the overhead size in bytes
+     */
+    calculateECIESMultipleRecipientOverhead(recipientCount: number, includeMessageOverhead: boolean, encryptedKeys?: Buffer[]): number;
+    /**
+     * Builds the header for a message encrypted for multiple recipients
+     * @param data The encrypted message data including recipients and encrypted keys
+     * @returns The header buffer for the message
+     * @throws EciesError if the number of recipients is greater than the maximum allowed
+     * @throws EciesError if the number of encrypted keys does not match the number of recipients
+     */
+    buildECIESMultipleRecipientHeader(data: IMultiEncryptedMessage): Buffer;
+    /**
+     * Parses a multi-encrypted header.
+     * @param data - The data to parse.
+     * @returns The parsed header.
+     */
+    parseMultiEncryptedHeader(data: Buffer): IMultiEncryptedParsedHeader;
+    /**
+     * Parses a multi-encrypted buffer into its components.
+     * @param data - The multi-encrypted buffer to parse.
+     * @returns The parsed multi-encrypted buffer.
+     */
+    parseMultiEncryptedBuffer(data: Buffer): IMultiEncryptedMessage;
+}
+//# sourceMappingURL=multi-recipient.d.ts.map

package/dist/services/ecies/multi-recipient.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"multi-recipient.d.ts","sourceRoot":"","sources":["../../../src/services/ecies/multi-recipient.ts"],"names":[],"mappings":"AAAA,OAAO,EAML,cAAc,EACf,MAAM,4BAA4B,CAAC;AACpC,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,2BAA2B,CAAC;AAWjE,OAAO,EAAE,sBAAsB,EAAE,MAAM,0CAA0C,CAAC;AAClF,OAAO,EAAE,2BAA2B,EAAE,MAAM,gDAAgD,CAAC;AAC7F,OAAO,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AACtC,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAChD,OAAO,EAAE,wBAAwB,EAAE,MAAM,oBAAoB,CAAC;AAE9D;;GAEG;AACH,qBAAa,mBAAmB;IAC9B,SAAS,CAAC,QAAQ,CAAC,UAAU,EAAE,eAAe,CAAC;IAC/C,SAAS,CAAC,QAAQ,CAAC,mBAAmB,EAAE,wBAAwB,CAAC;IACjE,SAAS,CAAC,QAAQ,CAAC,MAAM,EAAE,UAAU,CAAC,cAAc,EAAE,QAAQ,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC;gBAGxE,UAAU,EAAE,eAAe,EAC3B,MAAM,EAAE,UAAU,CAAC,cAAc,EAAE,QAAQ,EAAE,GAAG,EAAE,GAAG,CAAC;IAUxD;;;;;;OAMG;IACI,aAAa,CAAC,cAAc,EAAE,MAAM,GAAG,MAAM;IAOpD;;;;;OAKG;IACI,UAAU,CACf,iBAAiB,EAAE,MAAM,EACzB,mBAAmB,EAAE,MAAM,GAC1B,MAAM;IAmFT;;;;;OAKG;IACI,UAAU,CAAC,UAAU,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,GAAG,MAAM;IA2DnE;;;;;;;OAOG;IACI,eAAe,CACpB,UAAU,EAAE,MAAM,EAAE,EACpB,OAAO,EAAE,MAAM,EACf,QAAQ,CAAC,EAAE,MAAM,GAChB,sBAAsB;IAkEzB;;;;;OAKG;IACI,+BAA+B,CACpC,aAAa,EAAE,sBAAsB,EACrC,SAAS,EAAE,MAAM,GAChB,MAAM;IAuDT;;;;;;OAMG;IACI,uCAAuC,CAC5C,cAAc,EAAE,MAAM,EACtB,sBAAsB,EAAE,OAAO,EAC/B,aAAa,CAAC,EAAE,MAAM,EAAE,GACvB,MAAM;IA+BT;;;;;;OAMG;IACI,iCAAiC,CACtC,IAAI,EAAE,sBAAsB,GAC3B,MAAM;IAuET;;;;OAIG;IACI,yBAAyB,CAAC,IAAI,EAAE,MAAM,GAAG,2BAA2B;IAkF3E;;;;OAIG;IACI,yBAAyB,CAAC,IAAI,EAAE,MAAM,GAAG,sBAAsB;CASvE"}

package/dist/services/ecies/multi-recipient.js

@@ -0,0 +1,355 @@
+import { Constants as AppConstants, ECIES, EciesEncryptionTypeEnum, ECIESError, ECIESErrorTypeEnum, } from '@digitaldefiance/ecies-lib';
+import { createCipheriv, createDecipheriv, createECDH, randomBytes, } from 'crypto';
+import { ObjectId } from 'mongodb';
+import { Constants } from '../../constants';
+import { EciesSingleRecipientCore } from './single-recipient';
+/**
+ * Multiple recipient encryption/decryption functions for ECIES
+ */
+export class EciesMultiRecipient {
+    cryptoCore;
+    singleRecipientCore;
+    engine;
+    constructor(cryptoCore, engine) {
+        this.cryptoCore = cryptoCore;
+        this.singleRecipientCore = new EciesSingleRecipientCore(cryptoCore.config, engine);
+        this.engine = engine;
+    }
+    /**
+     * Get the size of the header for a given encryption type
+     * @param encryptionType The encryption type (single, simple, etc.)
+     * @param options Optional encryption options
+     * @param options.recipientCount The number of recipients
+     * @returns
+     */
+    getHeaderSize(recipientCount) {
+        return (ECIES.MULTIPLE.FIXED_OVERHEAD_SIZE +
+            recipientCount * ECIES.MULTIPLE.ENCRYPTED_KEY_SIZE);
+    }
+    /**
+     * Encrypt a message symmetric key with a public key
+     * @param receiverPublicKey The public key of the receiver
+     * @param messageSymmetricKey The message to encrypt
+     * @returns The encrypted message
+     */
+    encryptKey(receiverPublicKey, messageSymmetricKey) {
+        // Generate ephemeral ECDH key pair
+        const ecdh = createECDH(this.cryptoCore.config.curveName);
+        ecdh.generateKeys();
+        // Compute shared secret
+        let sharedSecret;
+        try {
+            // Make sure we normalize the receiver's public key
+            const normalizedReceiverPublicKey = this.cryptoCore.normalizePublicKey(receiverPublicKey);
+            // Ensure we're using the properly formatted public key (with 0x04 prefix)
+            // Our debugging shows only the full format with prefix works correctly
+            sharedSecret = ecdh.computeSecret(normalizedReceiverPublicKey);
+        }
+        catch (error) {
+            console.error('[ERROR][encrypt] Failed to compute shared secret:', error);
+            if (error instanceof Error) {
+                if ('code' in error &&
+                    error.code === 'ERR_CRYPTO_ECDH_INVALID_PUBLIC_KEY') {
+                    throw new ECIESError(ECIESErrorTypeEnum.InvalidRecipientPublicKey, this.engine, undefined, undefined, {
+                        nodeError: error.code,
+                    });
+                }
+                throw new ECIESError(ECIESErrorTypeEnum.SecretComputationFailed, this.engine, undefined, undefined, {
+                    error: error.message,
+                });
+            }
+            throw new ECIESError(ECIESErrorTypeEnum.SecretComputationFailed, this.engine);
+        }
+        // Get the ephemeral public key and ensure it has the 0x04 prefix
+        let ephemeralPublicKey = ecdh.getPublicKey();
+        if (ephemeralPublicKey.length === ECIES.RAW_PUBLIC_KEY_LENGTH) {
+            ephemeralPublicKey = Buffer.concat([
+                Buffer.from([ECIES.PUBLIC_KEY_MAGIC]),
+                ephemeralPublicKey,
+            ]);
+        }
+        // Get the key from the shared secret (always use first 32 bytes)
+        const symKey = sharedSecret.subarray(0, ECIES.SYMMETRIC.KEY_SIZE);
+        const iv = randomBytes(ECIES.IV_SIZE);
+        // Create cipher with the derived symmetric key
+        const cipher = createCipheriv(ECIES.SYMMETRIC_ALGORITHM_CONFIGURATION, symKey, iv);
+        // Ensure auto padding is enabled
+        cipher.setAutoPadding(true);
+        // Encrypt the message
+        let encrypted = cipher.update(messageSymmetricKey);
+        encrypted = Buffer.concat([encrypted, cipher.final()]);
+        // Get and explicitly set the authentication tag to max tag length for consistency
+        const authTag = cipher.getAuthTag();
+        // Format:ephemeralPublicKey (65) | iv (16) | authTag (16) | encryptedData (ECIES.SYMMETRIC.KEY_SIZE = 32)
+        return Buffer.concat([ephemeralPublicKey, iv, authTag, encrypted]);
+    }
+    /**
+     * Decrypts symmetric key encrypted with ECIES using a header
+     * @param privateKey The private key to decrypt the data
+     * @param encryptedKey The data to decrypt
+     * @returns The decrypted data buffer
+     */
+    decryptKey(privateKey, encryptedKey) {
+        if (encryptedKey.length !== ECIES.MULTIPLE.ENCRYPTED_KEY_SIZE) {
+            throw new ECIESError(ECIESErrorTypeEnum.InvalidEncryptedKeyLength, this.engine, undefined, undefined, {
+                expected: String(ECIES.MULTIPLE.ENCRYPTED_KEY_SIZE),
+                actual: String(encryptedKey.length),
+            });
+        }
+        const ephemeralPublicKey = encryptedKey.subarray(0, ECIES.PUBLIC_KEY_LENGTH);
+        const iv = encryptedKey.subarray(ECIES.PUBLIC_KEY_LENGTH, ECIES.PUBLIC_KEY_LENGTH + ECIES.IV_SIZE);
+        const authTag = encryptedKey.subarray(ECIES.PUBLIC_KEY_LENGTH + ECIES.IV_SIZE, ECIES.PUBLIC_KEY_LENGTH + ECIES.IV_SIZE + ECIES.AUTH_TAG_SIZE);
+        const encrypted = encryptedKey.subarray(ECIES.PUBLIC_KEY_LENGTH + ECIES.IV_SIZE + ECIES.AUTH_TAG_SIZE, ECIES.PUBLIC_KEY_LENGTH +
+            ECIES.IV_SIZE +
+            ECIES.AUTH_TAG_SIZE +
+            ECIES.SYMMETRIC.KEY_SIZE);
+        // Normalize the public key (ensuring 0x04 prefix)
+        const normalizedKey = this.cryptoCore.normalizePublicKey(ephemeralPublicKey);
+        // Decrypt using components with the normalized key
+        const decrypted = this.singleRecipientCore.decryptWithComponents(privateKey, normalizedKey, iv, authTag, encrypted);
+        if (decrypted.length !== ECIES.SYMMETRIC.KEY_SIZE) {
+            throw new ECIESError(ECIESErrorTypeEnum.InvalidDataLength, this.engine, undefined, undefined, {
+                expected: String(ECIES.SYMMETRIC.KEY_SIZE),
+                actual: String(decrypted.length),
+            });
+        }
+        return decrypted;
+    }
+    /**
+     * Encrypts a message for multiple recipients.
+     * @param recipients The recipients to encrypt the message for.
+     * @param message The message to encrypt.
+     * @param preamble Optional preamble to include in the encrypted message.
+     * @returns The encrypted message.
+     * @throws EciesError if the number of recipients is greater than 65535.
+     */
+    encryptMultiple(recipients, message, preamble) {
+        if (recipients.length > AppConstants.UINT16_MAX) {
+            throw new ECIESError(ECIESErrorTypeEnum.TooManyRecipients, this.engine);
+        }
+        const messageTypeBuffer = Buffer.alloc(1);
+        messageTypeBuffer.writeUint8(EciesEncryptionTypeEnum.Multiple);
+        // Generate a random symmetric key
+        const symmetricKey = randomBytes(ECIES.SYMMETRIC.KEY_SIZE);
+        const iv = randomBytes(ECIES.IV_SIZE);
+        // Encrypt the message with the symmetric key
+        const cipher = createCipheriv(ECIES.SYMMETRIC_ALGORITHM_CONFIGURATION, symmetricKey, iv);
+        const encrypted = cipher.update(message);
+        const final = cipher.final();
+        const authTag = cipher.getAuthTag();
+        const encryptedMessage = Buffer.concat([encrypted, final]);
+        const storedMessage = Buffer.concat([
+            preamble ?? Buffer.alloc(0),
+            iv,
+            authTag,
+            encryptedMessage,
+        ]);
+        const encryptionResults = recipients.map((member) => ({
+            id: member.id,
+            encryptedKey: this.encryptKey(member.publicKey, symmetricKey),
+        }));
+        const recipientIds = encryptionResults.map(({ id }) => id);
+        const recipientKeys = encryptionResults.map(({ encryptedKey }) => encryptedKey);
+        // Verify the encrypted message size (just the encrypted content)
+        if (encryptedMessage.length !== message.length) {
+            throw new ECIESError(ECIESErrorTypeEnum.MessageLengthMismatch, this.engine);
+        }
+        const headerSize = this.calculateECIESMultipleRecipientOverhead(recipients.length, false, recipientKeys);
+        return {
+            dataLength: message.length,
+            recipientCount: recipients.length,
+            recipientIds,
+            recipientKeys,
+            encryptedMessage: storedMessage,
+            headerSize,
+        };
+    }
+    /**
+     * Decrypts a message encrypted with multiple ECIE for a recipient.
+     * @param encryptedData The encrypted data.
+     * @param recipient The recipient.
+     * @returns The decrypted message.
+     */
+    decryptMultipleECIEForRecipient(encryptedData, recipient) {
+        if (recipient.privateKey === undefined) {
+            throw new ECIESError(ECIESErrorTypeEnum.PrivateKeyNotLoaded, this.engine);
+        }
+        // Find this recipient's encrypted key
+        const recipientIndex = encryptedData.recipientIds.findIndex((id) => id.equals(recipient.id));
+        if (recipientIndex === -1) {
+            throw new ECIESError(ECIESErrorTypeEnum.RecipientNotFound, this.engine);
+        }
+        const encryptedKey = encryptedData.recipientKeys[recipientIndex];
+        // Decrypt the symmetric key using the detected encryption type
+        const symmetricKey = this.decryptKey(Buffer.from(recipient.privateKey.value), encryptedKey);
+        // Extract the IV and auth tag from the encrypted message
+        const iv = encryptedData.encryptedMessage.subarray(0, ECIES.IV_SIZE);
+        const authTag = encryptedData.encryptedMessage.subarray(ECIES.IV_SIZE, ECIES.IV_SIZE + ECIES.AUTH_TAG_SIZE);
+        // Extract the encrypted content (no CRC, AES-GCM provides authentication)
+        const encrypted = encryptedData.encryptedMessage.subarray(ECIES.IV_SIZE + ECIES.AUTH_TAG_SIZE);
+        // Decrypt the content with the symmetric key
+        const decipher = createDecipheriv(ECIES.SYMMETRIC_ALGORITHM_CONFIGURATION, symmetricKey, iv);
+        decipher.setAuthTag(authTag);
+        const decrypted = decipher.update(encrypted);
+        const final = decipher.final();
+        const decryptedMessage = Buffer.concat([decrypted, final]);
+        // AES-GCM provides authentication via auth tag (no separate CRC needed)
+        // The decrypted message should match the original data length
+        if (decryptedMessage.length !== encryptedData.dataLength) {
+            throw new ECIESError(ECIESErrorTypeEnum.InvalidDataLength, this.engine);
+        }
+        return decryptedMessage;
+    }
+    /**
+     * Calculate the overhead for a message encrypted for multiple recipients
+     * @param recipientCount number of recipients
+     * @param includeMessageOverhead whether to include the overhead for the encrypted message
+     * @param encryptedKeys optional array of encrypted keys to calculate actual size
+     * @returns the overhead size in bytes
+     */
+    calculateECIESMultipleRecipientOverhead(recipientCount, includeMessageOverhead, encryptedKeys) {
+        if (recipientCount < 2) {
+            throw new ECIESError(ECIESErrorTypeEnum.InvalidRecipientCount, this.engine);
+        }
+        // Calculate encrypted keys size
+        let encryptedKeysSize;
+        if (encryptedKeys) {
+            encryptedKeysSize = encryptedKeys.reduce((total, key) => total + key.length, 0);
+        }
+        else {
+            // Default assumption: all keys use Simple encryption type (more efficient)
+            encryptedKeysSize = recipientCount * ECIES.MULTIPLE.ENCRYPTED_KEY_SIZE;
+        }
+        const baseOverhead = ECIES.MULTIPLE.DATA_LENGTH_SIZE +
+            ECIES.MULTIPLE.RECIPIENT_COUNT_SIZE +
+            recipientCount * Constants.OBJECT_ID_LENGTH + // recipient ids
+            encryptedKeysSize; // actual encrypted keys size
+        return includeMessageOverhead
+            ? baseOverhead + ECIES.MULTIPLE.FIXED_OVERHEAD_SIZE
+            : baseOverhead;
+    }
+    /**
+     * Builds the header for a message encrypted for multiple recipients
+     * @param data The encrypted message data including recipients and encrypted keys
+     * @returns The header buffer for the message
+     * @throws EciesError if the number of recipients is greater than the maximum allowed
+     * @throws EciesError if the number of encrypted keys does not match the number of recipients
+     */
+    buildECIESMultipleRecipientHeader(data) {
+        if (data.recipientIds.length > ECIES.MULTIPLE.MAX_RECIPIENTS) {
+            throw new ECIESError(ECIESErrorTypeEnum.TooManyRecipients, this.engine);
+        }
+        else if (data.recipientIds.length !== data.recipientKeys.length) {
+            throw new ECIESError(ECIESErrorTypeEnum.RecipientKeyCountMismatch, this.engine);
+        }
+        else if (data.dataLength < 0 ||
+            data.dataLength > ECIES.MAX_RAW_DATA_SIZE) {
+            throw new ECIESError(ECIESErrorTypeEnum.FileSizeTooLarge, this.engine);
+        }
+        // Create data length buffer
+        const dataLengthBuffer = Buffer.alloc(ECIES.MULTIPLE.DATA_LENGTH_SIZE);
+        dataLengthBuffer.writeBigUInt64BE(BigInt(data.dataLength));
+        // Create recipient count buffer
+        const recipientCountBuffer = Buffer.alloc(ECIES.MULTIPLE.RECIPIENT_COUNT_SIZE);
+        recipientCountBuffer.writeUInt16BE(data.recipientIds.length);
+        // Create recipients buffer
+        const recipientsBuffer = Buffer.alloc(data.recipientIds.length * Constants.OBJECT_ID_LENGTH);
+        data.recipientIds.forEach((recipientId, index) => {
+            recipientsBuffer.set(Buffer.from(recipientId.toHexString(), 'hex'), index * Constants.OBJECT_ID_LENGTH);
+        });
+        // Validate encrypted key lengths based on their encryption type
+        data.recipientKeys.forEach((encryptedKey) => {
+            if (encryptedKey.length === 0) {
+                throw new ECIESError(ECIESErrorTypeEnum.InvalidEncryptedKeyLength, this.engine);
+            }
+            if (encryptedKey.length !== ECIES.MULTIPLE.ENCRYPTED_KEY_SIZE) {
+                throw new ECIESError(ECIESErrorTypeEnum.InvalidEncryptedKeyLength, this.engine, undefined, undefined, {
+                    expected: String(ECIES.MULTIPLE.ENCRYPTED_KEY_SIZE),
+                    actual: String(encryptedKey.length),
+                });
+            }
+        });
+        // Create encrypted keys buffer with variable-length keys
+        const encryptedKeysBuffer = Buffer.concat(data.recipientKeys);
+        // Combine all buffers to form the header
+        return Buffer.concat([
+            dataLengthBuffer,
+            recipientCountBuffer,
+            recipientsBuffer,
+            encryptedKeysBuffer,
+        ]);
+    }
+    /**
+     * Parses a multi-encrypted header.
+     * @param data - The data to parse.
+     * @returns The parsed header.
+     */
+    parseMultiEncryptedHeader(data) {
+        // Ensure there's enough data to read headers
+        if (data.length < ECIES.MULTIPLE.FIXED_OVERHEAD_SIZE) {
+            throw new ECIESError(ECIESErrorTypeEnum.InvalidDataLength, this.engine);
+        }
+        let offset = 0;
+        // Read data length
+        const dataLength = Number(data.readBigUInt64BE(offset));
+        if (dataLength <= 0 || dataLength > ECIES.MAX_RAW_DATA_SIZE) {
+            throw new ECIESError(ECIESErrorTypeEnum.InvalidDataLength, this.engine);
+        }
+        offset += ECIES.MULTIPLE.DATA_LENGTH_SIZE; // 8 bytes
+        // Read recipient count
+        const recipientCount = data.readUInt16BE(offset);
+        if (recipientCount <= 0 || recipientCount > ECIES.MULTIPLE.MAX_RECIPIENTS) {
+            throw new ECIESError(ECIESErrorTypeEnum.InvalidRecipientCount, this.engine);
+        }
+        offset += ECIES.MULTIPLE.RECIPIENT_COUNT_SIZE; // 2 bytes
+        // Ensure there's enough data for all recipients
+        const requiredLength = this.calculateECIESMultipleRecipientOverhead(recipientCount, false);
+        if (data.length < requiredLength) {
+            throw new ECIESError(ECIESErrorTypeEnum.InvalidDataLength, this.engine);
+        }
+        // Read recipient IDs
+        const recipientIds = [];
+        for (let i = 0; i < recipientCount; i++) {
+            recipientIds.push(new ObjectId(data
+                .subarray(offset, offset + Constants.OBJECT_ID_LENGTH)
+                .toString('hex')));
+            offset += Constants.OBJECT_ID_LENGTH;
+        }
+        // Read encrypted keys with variable lengths based on encryption type
+        const recipientKeys = [];
+        for (let i = 0; i < recipientCount; i++) {
+            if (offset >= data.length) {
+                throw new ECIESError(ECIESErrorTypeEnum.InvalidDataLength, this.engine);
+            }
+            if (offset + ECIES.MULTIPLE.ENCRYPTED_KEY_SIZE > data.length) {
+                throw new ECIESError(ECIESErrorTypeEnum.InvalidDataLength, this.engine, undefined, undefined, {
+                    required: String(ECIES.MULTIPLE.ENCRYPTED_KEY_SIZE),
+                    available: String(data.length - offset),
+                });
+            }
+            recipientKeys.push(data.subarray(offset, offset + ECIES.MULTIPLE.ENCRYPTED_KEY_SIZE));
+            offset += ECIES.MULTIPLE.ENCRYPTED_KEY_SIZE;
+        }
+        return {
+            dataLength,
+            recipientCount,
+            recipientIds,
+            recipientKeys,
+            headerSize: offset,
+        };
+    }
+    /**
+     * Parses a multi-encrypted buffer into its components.
+     * @param data - The multi-encrypted buffer to parse.
+     * @returns The parsed multi-encrypted buffer.
+     */
+    parseMultiEncryptedBuffer(data) {
+        const header = this.parseMultiEncryptedHeader(data);
+        const encryptedMessage = data.subarray(header.headerSize);
+        return {
+            ...header,
+            encryptedMessage,
+        };
+    }
+}
+//# sourceMappingURL=multi-recipient.js.map

package/dist/services/ecies/multi-recipient.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"multi-recipient.js","sourceRoot":"","sources":["../../../src/services/ecies/multi-recipient.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,SAAS,IAAI,YAAY,EACzB,KAAK,EACL,uBAAuB,EACvB,UAAU,EACV,kBAAkB,GAEnB,MAAM,4BAA4B,CAAC;AAEpC,OAAO,EACL,cAAc,EACd,gBAAgB,EAChB,UAAU,EACV,WAAW,GACZ,MAAM,QAAQ,CAAC;AAChB,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAEnC,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAM5C,OAAO,EAAE,wBAAwB,EAAE,MAAM,oBAAoB,CAAC;AAE9D;;GAEG;AACH,MAAM,OAAO,mBAAmB;IACX,UAAU,CAAkB;IAC5B,mBAAmB,CAA2B;IAC9C,MAAM,CAAiD;IAE1E,YACE,UAA2B,EAC3B,MAAsD;QAEtD,IAAI,CAAC,UAAU,GAAG,UAAU,CAAC;QAC7B,IAAI,CAAC,mBAAmB,GAAG,IAAI,wBAAwB,CACrD,UAAU,CAAC,MAAM,EACjB,MAAM,CACP,CAAC;QACF,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;IAED;;;;;;OAMG;IACI,aAAa,CAAC,cAAsB;QACzC,OAAO,CACL,KAAK,CAAC,QAAQ,CAAC,mBAAmB;YAClC,cAAc,GAAG,KAAK,CAAC,QAAQ,CAAC,kBAAkB,CACnD,CAAC;IACJ,CAAC;IAED;;;;;OAKG;IACI,UAAU,CACf,iBAAyB,EACzB,mBAA2B;QAE3B,mCAAmC;QACnC,MAAM,IAAI,GAAG,UAAU,CAAC,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QAC1D,IAAI,CAAC,YAAY,EAAE,CAAC;QAEpB,wBAAwB;QACxB,IAAI,YAAoB,CAAC;QACzB,IAAI,CAAC;YACH,mDAAmD;YACnD,MAAM,2BAA2B,GAC/B,IAAI,CAAC,UAAU,CAAC,kBAAkB,CAAC,iBAAiB,CAAC,CAAC;YAExD,0EAA0E;YAC1E,uEAAuE;YACvE,YAAY,GAAG,IAAI,CAAC,aAAa,CAAC,2BAA2B,CAAC,CAAC;QACjE,CAAC;QAAC,OAAO,KAAc,EAAE,CAAC;YACxB,OAAO,CAAC,KAAK,CAAC,mDAAmD,EAAE,KAAK,CAAC,CAAC;YAC1E,IAAI,KAAK,YAAY,KAAK,EAAE,CAAC;gBAC3B,IACE,MAAM,IAAI,KAAK;oBACf,KAAK,CAAC,IAAI,KAAK,oCAAoC,EACnD,CAAC;oBACD,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,yBAAyB,EAC5C,IAAI,CAAC,MAAM,EACX,SAAS,EACT,SAAS,EACT;wBACE,SAAS,EAAE,KAAK,CAAC,IAAI;qBACtB,CACF,CAAC;gBACJ,CAAC;gBACD,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,uBAAuB,EAC1C,IAAI,CAAC,MAAM,EACX,SAAS,EACT,SAAS,EACT;oBACE,KAAK,EAAE,KAAK,CAAC,OAAO;iBACrB,CACF,CAAC;YACJ,CAAC;YACD,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,uBAAuB,EAC1C,IAAI,CAAC,MAAM,CACZ,CAAC;QACJ,CAAC;QAED,iEAAiE;QACjE,IAAI,kBAAkB,GAAG,IAAI,CAAC,YAAY,EAAE,CAAC;QAC7C,IAAI,kBAAkB,CAAC,MAAM,KAAK,KAAK,CAAC,qBAAqB,EAAE,CAAC;YAC9D,kBAAkB,GAAG,MAAM,CAAC,MAAM,CAAC;gBACjC,MAAM,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC;gBACrC,kBAAkB;aACnB,CAAC,CAAC;QACL,CAAC;QAED,iEAAiE;QACjE,MAAM,MAAM,GAAG,YAAY,CAAC,QAAQ,CAAC,CAAC,EAAE,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;QAElE,MAAM,EAAE,GAAG,WAAW,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAEtC,+CAA+C;QAC/C,MAAM,MAAM,GAAG,cAAc,CAC3B,KAAK,CAAC,iCAAiC,EACvC,MAAM,EACN,EAAE,CAC+B,CAAC;QAEpC,iCAAiC;QACjC,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC;QAE5B,sBAAsB;QACtB,IAAI,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,mBAAmB,CAAC,CAAC;QACnD,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAE,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;QAEvD,kFAAkF;QAClF,MAAM,OAAO,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;QAEpC,0GAA0G;QAC1G,OAAO,MAAM,CAAC,MAAM,CAAC,CAAC,kBAAkB,EAAE,EAAE,EAAE,OAAO,EAAE,SAAS,CAAC,CAAC,CAAC;IACrE,CAAC;IAED;;;;;OAKG;IACI,UAAU,CAAC,UAAkB,EAAE,YAAoB;QACxD,IAAI,YAAY,CAAC,MAAM,KAAK,KAAK,CAAC,QAAQ,CAAC,kBAAkB,EAAE,CAAC;YAC9D,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,yBAAyB,EAC5C,IAAI,CAAC,MAAM,EACX,SAAS,EACT,SAAS,EACT;gBACE,QAAQ,EAAE,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,kBAAkB,CAAC;gBACnD,MAAM,EAAE,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC;aACpC,CACF,CAAC;QACJ,CAAC;QACD,MAAM,kBAAkB,GAAG,YAAY,CAAC,QAAQ,CAC9C,CAAC,EACD,KAAK,CAAC,iBAAiB,CACxB,CAAC;QACF,MAAM,EAAE,GAAG,YAAY,CAAC,QAAQ,CAC9B,KAAK,CAAC,iBAAiB,EACvB,KAAK,CAAC,iBAAiB,GAAG,KAAK,CAAC,OAAO,CACxC,CAAC;QACF,MAAM,OAAO,GAAG,YAAY,CAAC,QAAQ,CACnC,KAAK,CAAC,iBAAiB,GAAG,KAAK,CAAC,OAAO,EACvC,KAAK,CAAC,iBAAiB,GAAG,KAAK,CAAC,OAAO,GAAG,KAAK,CAAC,aAAa,CAC9D,CAAC;QACF,MAAM,SAAS,GAAG,YAAY,CAAC,QAAQ,CACrC,KAAK,CAAC,iBAAiB,GAAG,KAAK,CAAC,OAAO,GAAG,KAAK,CAAC,aAAa,EAC7D,KAAK,CAAC,iBAAiB;YACrB,KAAK,CAAC,OAAO;YACb,KAAK,CAAC,aAAa;YACnB,KAAK,CAAC,SAAS,CAAC,QAAQ,CAC3B,CAAC;QACF,kDAAkD;QAClD,MAAM,aAAa,GACjB,IAAI,CAAC,UAAU,CAAC,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;QAEzD,mDAAmD;QACnD,MAAM,SAAS,GAAG,IAAI,CAAC,mBAAmB,CAAC,qBAAqB,CAC9D,UAAU,EACV,aAAa,EACb,EAAE,EACF,OAAO,EACP,SAAS,CACV,CAAC;QACF,IAAI,SAAS,CAAC,MAAM,KAAK,KAAK,CAAC,SAAS,CAAC,QAAQ,EAAE,CAAC;YAClD,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,iBAAiB,EACpC,IAAI,CAAC,MAAM,EACX,SAAS,EACT,SAAS,EACT;gBACE,QAAQ,EAAE,MAAM,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC;gBAC1C,MAAM,EAAE,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC;aACjC,CACF,CAAC;QACJ,CAAC;QACD,OAAO,SAAS,CAAC;IACnB,CAAC;IAED;;;;;;;OAOG;IACI,eAAe,CACpB,UAAoB,EACpB,OAAe,EACf,QAAiB;QAEjB,IAAI,UAAU,CAAC,MAAM,GAAG,YAAY,CAAC,UAAU,EAAE,CAAC;YAChD,MAAM,IAAI,UAAU,CAAC,kBAAkB,CAAC,iBAAiB,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QAC1E,CAAC;QAED,MAAM,iBAAiB,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QAC1C,iBAAiB,CAAC,UAAU,CAAC,uBAAuB,CAAC,QAAkB,CAAC,CAAC;QAEzE,kCAAkC;QAClC,MAAM,YAAY,GAAG,WAAW,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;QAC3D,MAAM,EAAE,GAAG,WAAW,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAEtC,6CAA6C;QAC7C,MAAM,MAAM,GAAG,cAAc,CAC3B,KAAK,CAAC,iCAAiC,EACvC,YAAY,EACZ,EAAE,CACH,CAAC;QAEF,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QACzC,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,EAAE,CAAC;QAC7B,MAAM,OAAO,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;QAEpC,MAAM,gBAAgB,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC,CAAC;QAE3D,MAAM,aAAa,GAAG,MAAM,CAAC,MAAM,CAAC;YAClC,QAAQ,IAAI,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;YAC3B,EAAE;YACF,OAAO;YACP,gBAAgB;SACjB,CAAC,CAAC;QAEH,MAAM,iBAAiB,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;YACpD,EAAE,EAAE,MAAM,CAAC,EAAE;YACb,YAAY,EAAE,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,SAAS,EAAE,YAAY,CAAC;SAC9D,CAAC,CAAC,CAAC;QAEJ,MAAM,YAAY,GAAG,iBAAiB,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,CAAC;QAC3D,MAAM,aAAa,GAAG,iBAAiB,CAAC,GAAG,CACzC,CAAC,EAAE,YAAY,EAAE,EAAE,EAAE,CAAC,YAAY,CACnC,CAAC;QAEF,iEAAiE;QACjE,IAAI,gBAAgB,CAAC,MAAM,KAAK,OAAO,CAAC,MAAM,EAAE,CAAC;YAC/C,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,qBAAqB,EACxC,IAAI,CAAC,MAAM,CACZ,CAAC;QACJ,CAAC;QAED,MAAM,UAAU,GAAG,IAAI,CAAC,uCAAuC,CAC7D,UAAU,CAAC,MAAM,EACjB,KAAK,EACL,aAAa,CACd,CAAC;QAEF,OAAO;YACL,UAAU,EAAE,OAAO,CAAC,MAAM;YAC1B,cAAc,EAAE,UAAU,CAAC,MAAM;YACjC,YAAY;YACZ,aAAa;YACb,gBAAgB,EAAE,aAAa;YAC/B,UAAU;SACX,CAAC;IACJ,CAAC;IAED;;;;;OAKG;IACI,+BAA+B,CACpC,aAAqC,EACrC,SAAiB;QAEjB,IAAI,SAAS,CAAC,UAAU,KAAK,SAAS,EAAE,CAAC;YACvC,MAAM,IAAI,UAAU,CAAC,kBAAkB,CAAC,mBAAmB,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QAC5E,CAAC;QAED,sCAAsC;QACtC,MAAM,cAAc,GAAW,aAAa,CAAC,YAAY,CAAC,SAAS,CACjE,CAAC,EAAkB,EAAW,EAAE,CAAC,EAAE,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,CACzD,CAAC;QACF,IAAI,cAAc,KAAK,CAAC,CAAC,EAAE,CAAC;YAC1B,MAAM,IAAI,UAAU,CAAC,kBAAkB,CAAC,iBAAiB,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QAC1E,CAAC;QAED,MAAM,YAAY,GAAG,aAAa,CAAC,aAAa,CAAC,cAAc,CAAC,CAAC;QAEjE,+DAA+D;QAC/D,MAAM,YAAY,GAAG,IAAI,CAAC,UAAU,CAClC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,KAAK,CAAC,EACvC,YAAY,CACb,CAAC;QAEF,yDAAyD;QACzD,MAAM,EAAE,GAAG,aAAa,CAAC,gBAAgB,CAAC,QAAQ,CAAC,CAAC,EAAE,KAAK,CAAC,OAAO,CAAC,CAAC;QACrE,MAAM,OAAO,GAAG,aAAa,CAAC,gBAAgB,CAAC,QAAQ,CACrD,KAAK,CAAC,OAAO,EACb,KAAK,CAAC,OAAO,GAAG,KAAK,CAAC,aAAa,CACpC,CAAC;QAEF,0EAA0E;QAC1E,MAAM,SAAS,GAAG,aAAa,CAAC,gBAAgB,CAAC,QAAQ,CACvD,KAAK,CAAC,OAAO,GAAG,KAAK,CAAC,aAAa,CACpC,CAAC;QAEF,6CAA6C;QAC7C,MAAM,QAAQ,GAAG,gBAAgB,CAC/B,KAAK,CAAC,iCAAiC,EACvC,YAAY,EACZ,EAAE,CACH,CAAC;QACF,QAAQ,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC;QAE7B,MAAM,SAAS,GAAG,QAAQ,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QAC7C,MAAM,KAAK,GAAG,QAAQ,CAAC,KAAK,EAAE,CAAC;QAC/B,MAAM,gBAAgB,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC,CAAC;QAE3D,wEAAwE;QAExE,8DAA8D;QAC9D,IAAI,gBAAgB,CAAC,MAAM,KAAK,aAAa,CAAC,UAAU,EAAE,CAAC;YACzD,MAAM,IAAI,UAAU,CAAC,kBAAkB,CAAC,iBAAiB,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QAC1E,CAAC;QAED,OAAO,gBAAgB,CAAC;IAC1B,CAAC;IAED;;;;;;OAMG;IACI,uCAAuC,CAC5C,cAAsB,EACtB,sBAA+B,EAC/B,aAAwB;QAExB,IAAI,cAAc,GAAG,CAAC,EAAE,CAAC;YACvB,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,qBAAqB,EACxC,IAAI,CAAC,MAAM,CACZ,CAAC;QACJ,CAAC;QAED,gCAAgC;QAChC,IAAI,iBAAyB,CAAC;QAC9B,IAAI,aAAa,EAAE,CAAC;YAClB,iBAAiB,GAAG,aAAa,CAAC,MAAM,CACtC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE,CAAC,KAAK,GAAG,GAAG,CAAC,MAAM,EAClC,CAAC,CACF,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,2EAA2E;YAC3E,iBAAiB,GAAG,cAAc,GAAG,KAAK,CAAC,QAAQ,CAAC,kBAAkB,CAAC;QACzE,CAAC;QAED,MAAM,YAAY,GAChB,KAAK,CAAC,QAAQ,CAAC,gBAAgB;YAC/B,KAAK,CAAC,QAAQ,CAAC,oBAAoB;YACnC,cAAc,GAAG,SAAS,CAAC,gBAAgB,GAAG,gBAAgB;YAC9D,iBAAiB,CAAC,CAAC,6BAA6B;QAElD,OAAO,sBAAsB;YAC3B,CAAC,CAAC,YAAY,GAAG,KAAK,CAAC,QAAQ,CAAC,mBAAmB;YACnD,CAAC,CAAC,YAAY,CAAC;IACnB,CAAC;IAED;;;;;;OAMG;IACI,iCAAiC,CACtC,IAA4B;QAE5B,IAAI,IAAI,CAAC,YAAY,CAAC,MAAM,GAAG,KAAK,CAAC,QAAQ,CAAC,cAAc,EAAE,CAAC;YAC7D,MAAM,IAAI,UAAU,CAAC,kBAAkB,CAAC,iBAAiB,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QAC1E,CAAC;aAAM,IAAI,IAAI,CAAC,YAAY,CAAC,MAAM,KAAK,IAAI,CAAC,aAAa,CAAC,MAAM,EAAE,CAAC;YAClE,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,yBAAyB,EAC5C,IAAI,CAAC,MAAM,CACZ,CAAC;QACJ,CAAC;aAAM,IACL,IAAI,CAAC,UAAU,GAAG,CAAC;YACnB,IAAI,CAAC,UAAU,GAAG,KAAK,CAAC,iBAAiB,EACzC,CAAC;YACD,MAAM,IAAI,UAAU,CAAC,kBAAkB,CAAC,gBAAgB,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QACzE,CAAC;QAED,4BAA4B;QAC5B,MAAM,gBAAgB,GAAG,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAC;QACvE,gBAAgB,CAAC,gBAAgB,CAAC,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC;QAE3D,gCAAgC;QAChC,MAAM,oBAAoB,GAAG,MAAM,CAAC,KAAK,CACvC,KAAK,CAAC,QAAQ,CAAC,oBAAoB,CACpC,CAAC;QACF,oBAAoB,CAAC,aAAa,CAAC,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QAE7D,2BAA2B;QAC3B,MAAM,gBAAgB,GAAG,MAAM,CAAC,KAAK,CACnC,IAAI,CAAC,YAAY,CAAC,MAAM,GAAG,SAAS,CAAC,gBAAgB,CACtD,CAAC;QACF,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC,WAA2B,EAAE,KAAa,EAAE,EAAE;YACvE,gBAAgB,CAAC,GAAG,CAClB,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,WAAW,EAAE,EAAE,KAAK,CAAC,EAC7C,KAAK,GAAG,SAAS,CAAC,gBAAgB,CACnC,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,gEAAgE;QAChE,IAAI,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC,YAAoB,EAAE,EAAE;YAClD,IAAI,YAAY,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC9B,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,yBAAyB,EAC5C,IAAI,CAAC,MAAM,CACZ,CAAC;YACJ,CAAC;YAED,IAAI,YAAY,CAAC,MAAM,KAAK,KAAK,CAAC,QAAQ,CAAC,kBAAkB,EAAE,CAAC;gBAC9D,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,yBAAyB,EAC5C,IAAI,CAAC,MAAM,EACX,SAAS,EACT,SAAS,EACT;oBACE,QAAQ,EAAE,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,kBAAkB,CAAC;oBACnD,MAAM,EAAE,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC;iBACpC,CACF,CAAC;YACJ,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,yDAAyD;QACzD,MAAM,mBAAmB,GAAG,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QAE9D,yCAAyC;QACzC,OAAO,MAAM,CAAC,MAAM,CAAC;YACnB,gBAAgB;YAChB,oBAAoB;YACpB,gBAAgB;YAChB,mBAAmB;SACpB,CAAC,CAAC;IACL,CAAC;IAED;;;;OAIG;IACI,yBAAyB,CAAC,IAAY;QAC3C,6CAA6C;QAC7C,IAAI,IAAI,CAAC,MAAM,GAAG,KAAK,CAAC,QAAQ,CAAC,mBAAmB,EAAE,CAAC;YACrD,MAAM,IAAI,UAAU,CAAC,kBAAkB,CAAC,iBAAiB,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QAC1E,CAAC;QAED,IAAI,MAAM,GAAG,CAAC,CAAC;QAEf,mBAAmB;QACnB,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC;QACxD,IAAI,UAAU,IAAI,CAAC,IAAI,UAAU,GAAG,KAAK,CAAC,iBAAiB,EAAE,CAAC;YAC5D,MAAM,IAAI,UAAU,CAAC,kBAAkB,CAAC,iBAAiB,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QAC1E,CAAC;QACD,MAAM,IAAI,KAAK,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAC,UAAU;QAErD,uBAAuB;QACvB,MAAM,cAAc,GAAG,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QACjD,IAAI,cAAc,IAAI,CAAC,IAAI,cAAc,GAAG,KAAK,CAAC,QAAQ,CAAC,cAAc,EAAE,CAAC;YAC1E,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,qBAAqB,EACxC,IAAI,CAAC,MAAM,CACZ,CAAC;QACJ,CAAC;QACD,MAAM,IAAI,KAAK,CAAC,QAAQ,CAAC,oBAAoB,CAAC,CAAC,UAAU;QAEzD,gDAAgD;QAChD,MAAM,cAAc,GAAG,IAAI,CAAC,uCAAuC,CACjE,cAAc,EACd,KAAK,CACN,CAAC;QACF,IAAI,IAAI,CAAC,MAAM,GAAG,cAAc,EAAE,CAAC;YACjC,MAAM,IAAI,UAAU,CAAC,kBAAkB,CAAC,iBAAiB,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QAC1E,CAAC;QAED,qBAAqB;QACrB,MAAM,YAAY,GAAqB,EAAE,CAAC;QAC1C,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,cAAc,EAAE,CAAC,EAAE,EAAE,CAAC;YACxC,YAAY,CAAC,IAAI,CACf,IAAI,QAAQ,CACV,IAAI;iBACD,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,SAAS,CAAC,gBAAgB,CAAC;iBACrD,QAAQ,CAAC,KAAK,CAAC,CACnB,CACF,CAAC;YACF,MAAM,IAAI,SAAS,CAAC,gBAAgB,CAAC;QACvC,CAAC;QAED,qEAAqE;QACrE,MAAM,aAAa,GAAa,EAAE,CAAC;QACnC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,cAAc,EAAE,CAAC,EAAE,EAAE,CAAC;YACxC,IAAI,MAAM,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;gBAC1B,MAAM,IAAI,UAAU,CAAC,kBAAkB,CAAC,iBAAiB,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;YAC1E,CAAC;YAED,IAAI,MAAM,GAAG,KAAK,CAAC,QAAQ,CAAC,kBAAkB,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC;gBAC7D,MAAM,IAAI,UAAU,CAClB,kBAAkB,CAAC,iBAAiB,EACpC,IAAI,CAAC,MAAM,EACX,SAAS,EACT,SAAS,EACT;oBACE,QAAQ,EAAE,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,kBAAkB,CAAC;oBACnD,SAAS,EAAE,MAAM,CAAC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;iBACxC,CACF,CAAC;YACJ,CAAC;YAED,aAAa,CAAC,IAAI,CAChB,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,KAAK,CAAC,QAAQ,CAAC,kBAAkB,CAAC,CAClE,CAAC;YACF,MAAM,IAAI,KAAK,CAAC,QAAQ,CAAC,kBAAkB,CAAC;QAC9C,CAAC;QAED,OAAO;YACL,UAAU;YACV,cAAc;YACd,YAAY;YACZ,aAAa;YACb,UAAU,EAAE,MAAM;SACnB,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACI,yBAAyB,CAAC,IAAY;QAC3C,MAAM,MAAM,GAAG,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,CAAC;QACpD,MAAM,gBAAgB,GAAG,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;QAE1D,OAAO;YACL,GAAG,MAAM;YACT,gBAAgB;SACjB,CAAC;IACJ,CAAC;CACF"}