npm - @haneullabs/seal - Versions diffs - 0.1.0 - Mend

@haneullabs/seal 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (109) hide show

package/CHANGELOG.md +459 -0
package/README.md +4 -0
package/dist/cjs/bcs.d.ts +71 -0
package/dist/cjs/bcs.js +74 -0
package/dist/cjs/bcs.js.map +7 -0
package/dist/cjs/bls12381.d.ts +44 -0
package/dist/cjs/bls12381.js +151 -0
package/dist/cjs/bls12381.js.map +7 -0
package/dist/cjs/client.d.ts +84 -0
package/dist/cjs/client.js +414 -0
package/dist/cjs/client.js.map +7 -0
package/dist/cjs/decrypt.d.ts +22 -0
package/dist/cjs/decrypt.js +109 -0
package/dist/cjs/decrypt.js.map +7 -0
package/dist/cjs/dem.d.ts +38 -0
package/dist/cjs/dem.js +185 -0
package/dist/cjs/dem.js.map +7 -0
package/dist/cjs/elgamal.d.ts +13 -0
package/dist/cjs/elgamal.js +46 -0
package/dist/cjs/elgamal.js.map +7 -0
package/dist/cjs/encrypt.d.ts +32 -0
package/dist/cjs/encrypt.js +104 -0
package/dist/cjs/encrypt.js.map +7 -0
package/dist/cjs/error.d.ts +86 -0
package/dist/cjs/error.js +239 -0
package/dist/cjs/error.js.map +7 -0
package/dist/cjs/ibe.d.ts +98 -0
package/dist/cjs/ibe.js +167 -0
package/dist/cjs/ibe.js.map +7 -0
package/dist/cjs/index.d.ts +6 -0
package/dist/cjs/index.js +33 -0
package/dist/cjs/index.js.map +7 -0
package/dist/cjs/kdf.d.ts +30 -0
package/dist/cjs/kdf.js +97 -0
package/dist/cjs/kdf.js.map +7 -0
package/dist/cjs/key-server.d.ts +98 -0
package/dist/cjs/key-server.js +171 -0
package/dist/cjs/key-server.js.map +7 -0
package/dist/cjs/package.json +5 -0
package/dist/cjs/session-key.d.ts +74 -0
package/dist/cjs/session-key.js +245 -0
package/dist/cjs/session-key.js.map +7 -0
package/dist/cjs/shamir.d.ts +91 -0
package/dist/cjs/shamir.js +770 -0
package/dist/cjs/shamir.js.map +7 -0
package/dist/cjs/types.d.ts +83 -0
package/dist/cjs/types.js +17 -0
package/dist/cjs/types.js.map +7 -0
package/dist/cjs/utils.d.ts +47 -0
package/dist/cjs/utils.js +106 -0
package/dist/cjs/utils.js.map +7 -0
package/dist/cjs/version.d.ts +1 -0
package/dist/cjs/version.js +25 -0
package/dist/cjs/version.js.map +7 -0
package/dist/esm/bcs.d.ts +71 -0
package/dist/esm/bcs.js +54 -0
package/dist/esm/bcs.js.map +7 -0
package/dist/esm/bls12381.d.ts +44 -0
package/dist/esm/bls12381.js +131 -0
package/dist/esm/bls12381.js.map +7 -0
package/dist/esm/client.d.ts +84 -0
package/dist/esm/client.js +407 -0
package/dist/esm/client.js.map +7 -0
package/dist/esm/decrypt.d.ts +22 -0
package/dist/esm/decrypt.js +94 -0
package/dist/esm/decrypt.js.map +7 -0
package/dist/esm/dem.d.ts +38 -0
package/dist/esm/dem.js +165 -0
package/dist/esm/dem.js.map +7 -0
package/dist/esm/elgamal.d.ts +13 -0
package/dist/esm/elgamal.js +26 -0
package/dist/esm/elgamal.js.map +7 -0
package/dist/esm/encrypt.d.ts +32 -0
package/dist/esm/encrypt.js +84 -0
package/dist/esm/encrypt.js.map +7 -0
package/dist/esm/error.d.ts +86 -0
package/dist/esm/error.js +219 -0
package/dist/esm/error.js.map +7 -0
package/dist/esm/ibe.d.ts +98 -0
package/dist/esm/ibe.js +147 -0
package/dist/esm/ibe.js.map +7 -0
package/dist/esm/index.d.ts +6 -0
package/dist/esm/index.js +12 -0
package/dist/esm/index.js.map +7 -0
package/dist/esm/kdf.d.ts +30 -0
package/dist/esm/kdf.js +83 -0
package/dist/esm/kdf.js.map +7 -0
package/dist/esm/key-server.d.ts +98 -0
package/dist/esm/key-server.js +151 -0
package/dist/esm/key-server.js.map +7 -0
package/dist/esm/package.json +5 -0
package/dist/esm/session-key.d.ts +74 -0
package/dist/esm/session-key.js +230 -0
package/dist/esm/session-key.js.map +7 -0
package/dist/esm/shamir.d.ts +91 -0
package/dist/esm/shamir.js +750 -0
package/dist/esm/shamir.js.map +7 -0
package/dist/esm/types.d.ts +83 -0
package/dist/esm/types.js +1 -0
package/dist/esm/types.js.map +7 -0
package/dist/esm/utils.d.ts +47 -0
package/dist/esm/utils.js +86 -0
package/dist/esm/utils.js.map +7 -0
package/dist/esm/version.d.ts +1 -0
package/dist/esm/version.js +5 -0
package/dist/esm/version.js.map +7 -0
package/dist/tsconfig.esm.tsbuildinfo +1 -0
package/dist/tsconfig.tsbuildinfo +1 -0
package/package.json +58 -0

package/dist/esm/session-key.js ADDED Viewed

@@ -0,0 +1,230 @@
+var __typeError = (msg) => {
+  throw TypeError(msg);
+};
+var __accessCheck = (obj, member, msg) => member.has(obj) || __typeError("Cannot " + msg);
+var __privateGet = (obj, member, getter) => (__accessCheck(obj, member, "read from private field"), getter ? getter.call(obj) : member.get(obj));
+var __privateAdd = (obj, member, value) => member.has(obj) ? __typeError("Cannot add the same private member more than once") : member instanceof WeakSet ? member.add(obj) : member.set(obj, value);
+var __privateSet = (obj, member, value, setter) => (__accessCheck(obj, member, "write to private field"), setter ? setter.call(obj, value) : member.set(obj, value), value);
+var _address, _packageId, _mvrName, _creationTimeMs, _ttlMin, _sessionKey, _personalMessageSignature, _signer, _haneulClient;
+import { toBase64 } from "@haneullabs/bcs";
+import { bcs } from "@haneullabs/haneul/bcs";
+import { Ed25519Keypair } from "@haneullabs/haneul/keypairs/ed25519";
+import { isValidNamedPackage, isValidHaneulAddress, isValidHaneulObjectId } from "@haneullabs/haneul/utils";
+import { verifyPersonalMessageSignature } from "@haneullabs/haneul/verify";
+import { generateSecretKey, toPublicKey, toVerificationKey } from "./elgamal.js";
+import {
+  ExpiredSessionKeyError,
+  InvalidPackageError,
+  InvalidPersonalMessageSignatureError,
+  UserError
+} from "./error.js";
+const RequestFormat = bcs.struct("RequestFormat", {
+  ptb: bcs.byteVector(),
+  encKey: bcs.byteVector(),
+  encVerificationKey: bcs.byteVector()
+});
+const _SessionKey = class _SessionKey {
+  constructor({
+    address,
+    packageId,
+    mvrName,
+    ttlMin,
+    signer,
+    haneulClient
+  }) {
+    __privateAdd(this, _address);
+    __privateAdd(this, _packageId);
+    __privateAdd(this, _mvrName);
+    __privateAdd(this, _creationTimeMs);
+    __privateAdd(this, _ttlMin);
+    __privateAdd(this, _sessionKey);
+    __privateAdd(this, _personalMessageSignature);
+    __privateAdd(this, _signer);
+    __privateAdd(this, _haneulClient);
+    if (mvrName && !isValidNamedPackage(mvrName)) {
+      throw new UserError(`Invalid package name ${mvrName}`);
+    }
+    if (!isValidHaneulObjectId(packageId) || !isValidHaneulAddress(address)) {
+      throw new UserError(`Invalid package ID ${packageId} or address ${address}`);
+    }
+    if (ttlMin > 30 || ttlMin < 1) {
+      throw new UserError(`Invalid TTL ${ttlMin}, must be between 1 and 30`);
+    }
+    if (signer && signer.getPublicKey().toHaneulAddress() !== address) {
+      throw new UserError("Signer address does not match session key address");
+    }
+    __privateSet(this, _address, address);
+    __privateSet(this, _packageId, packageId);
+    __privateSet(this, _mvrName, mvrName);
+    __privateSet(this, _creationTimeMs, Date.now());
+    __privateSet(this, _ttlMin, ttlMin);
+    __privateSet(this, _sessionKey, Ed25519Keypair.generate());
+    __privateSet(this, _signer, signer);
+    __privateSet(this, _haneulClient, haneulClient);
+  }
+  /**
+   * Create a new SessionKey instance.
+   * @param address - The address of the user.
+   * @param packageId - The ID of the package.
+   * @param mvrName - Optional. The name of the MVR, if there is one.
+   * @param ttlMin - The TTL in minutes.
+   * @param signer - Optional. The signer instance, e.g. EnokiSigner.
+   * @param haneulClient - The Haneul client.
+   * @returns A new SessionKey instance.
+   */
+  static async create({
+    address,
+    packageId,
+    mvrName,
+    ttlMin,
+    signer,
+    haneulClient
+  }) {
+    const packageObj = await haneulClient.core.getObject({ objectId: packageId });
+    if (String(packageObj.object.version) !== "1") {
+      throw new InvalidPackageError(`Package ${packageId} is not the first version`);
+    }
+    return new _SessionKey({
+      address,
+      packageId,
+      mvrName,
+      ttlMin,
+      signer,
+      haneulClient
+    });
+  }
+  isExpired() {
+    return __privateGet(this, _creationTimeMs) + __privateGet(this, _ttlMin) * 60 * 1e3 - 1e4 < Date.now();
+  }
+  getAddress() {
+    return __privateGet(this, _address);
+  }
+  getPackageName() {
+    if (__privateGet(this, _mvrName)) {
+      return __privateGet(this, _mvrName);
+    }
+    return __privateGet(this, _packageId);
+  }
+  getPackageId() {
+    return __privateGet(this, _packageId);
+  }
+  getPersonalMessage() {
+    const creationTimeUtc = new Date(__privateGet(this, _creationTimeMs)).toISOString().slice(0, 19).replace("T", " ") + " UTC";
+    const message = `Accessing keys of package ${this.getPackageName()} for ${__privateGet(this, _ttlMin)} mins from ${creationTimeUtc}, session key ${toBase64(__privateGet(this, _sessionKey).getPublicKey().toRawBytes())}`;
+    return new TextEncoder().encode(message);
+  }
+  async setPersonalMessageSignature(personalMessageSignature) {
+    if (!__privateGet(this, _personalMessageSignature)) {
+      try {
+        await verifyPersonalMessageSignature(this.getPersonalMessage(), personalMessageSignature, {
+          address: __privateGet(this, _address),
+          client: __privateGet(this, _haneulClient)
+        });
+        __privateSet(this, _personalMessageSignature, personalMessageSignature);
+      } catch {
+        throw new InvalidPersonalMessageSignatureError("Not valid");
+      }
+    }
+  }
+  async getCertificate() {
+    if (!__privateGet(this, _personalMessageSignature)) {
+      if (__privateGet(this, _signer)) {
+        const { signature } = await __privateGet(this, _signer).signPersonalMessage(this.getPersonalMessage());
+        __privateSet(this, _personalMessageSignature, signature);
+      } else {
+        throw new InvalidPersonalMessageSignatureError("Personal message signature is not set");
+      }
+    }
+    return {
+      user: __privateGet(this, _address),
+      session_vk: toBase64(__privateGet(this, _sessionKey).getPublicKey().toRawBytes()),
+      creation_time: __privateGet(this, _creationTimeMs),
+      ttl_min: __privateGet(this, _ttlMin),
+      signature: __privateGet(this, _personalMessageSignature),
+      mvr_name: __privateGet(this, _mvrName)
+    };
+  }
+  /**
+   * Create request params for the given transaction bytes.
+   * @param txBytes - The transaction bytes.
+   * @returns The request params containing the ephemeral secret key,
+   * its public key and its verification key.
+   */
+  async createRequestParams(txBytes) {
+    if (this.isExpired()) {
+      throw new ExpiredSessionKeyError();
+    }
+    const encKey = generateSecretKey();
+    const encKeyPk = toPublicKey(encKey);
+    const encVerificationKey = toVerificationKey(encKey);
+    const msgToSign = RequestFormat.serialize({
+      ptb: txBytes.slice(1),
+      encKey: encKeyPk,
+      encVerificationKey
+    }).toBytes();
+    return {
+      encKey,
+      encKeyPk,
+      encVerificationKey,
+      requestSignature: toBase64(await __privateGet(this, _sessionKey).sign(msgToSign))
+    };
+  }
+  /**
+   * Export the Session Key object from the instance. Store the object in IndexedDB to persist.
+   */
+  export() {
+    const obj = {
+      address: __privateGet(this, _address),
+      packageId: __privateGet(this, _packageId),
+      mvrName: __privateGet(this, _mvrName),
+      creationTimeMs: __privateGet(this, _creationTimeMs),
+      ttlMin: __privateGet(this, _ttlMin),
+      personalMessageSignature: __privateGet(this, _personalMessageSignature),
+      sessionKey: __privateGet(this, _sessionKey).getSecretKey()
+      // bech32 encoded string
+    };
+    Object.defineProperty(obj, "toJSON", {
+      enumerable: false,
+      value: () => {
+        throw new Error("This object is not serializable");
+      }
+    });
+    return obj;
+  }
+  /**
+   * Restore a SessionKey instance for the given object.
+   * @returns A new SessionKey instance with restored state
+   */
+  static import(data, haneulClient, signer) {
+    const instance = new _SessionKey({
+      address: data.address,
+      packageId: data.packageId,
+      mvrName: data.mvrName,
+      ttlMin: data.ttlMin,
+      signer,
+      haneulClient
+    });
+    __privateSet(instance, _creationTimeMs, data.creationTimeMs);
+    __privateSet(instance, _sessionKey, Ed25519Keypair.fromSecretKey(data.sessionKey));
+    __privateSet(instance, _personalMessageSignature, data.personalMessageSignature);
+    if (instance.isExpired()) {
+      throw new ExpiredSessionKeyError();
+    }
+    return instance;
+  }
+};
+_address = new WeakMap();
+_packageId = new WeakMap();
+_mvrName = new WeakMap();
+_creationTimeMs = new WeakMap();
+_ttlMin = new WeakMap();
+_sessionKey = new WeakMap();
+_personalMessageSignature = new WeakMap();
+_signer = new WeakMap();
+_haneulClient = new WeakMap();
+let SessionKey = _SessionKey;
+export {
+  RequestFormat,
+  SessionKey
+};
+//# sourceMappingURL=session-key.js.map

package/dist/esm/session-key.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../src/session-key.ts"],
+  "sourcesContent": ["// Copyright (c) Mysten Labs, Inc.\n// SPDX-License-Identifier: Apache-2.0\n\nimport { toBase64 } from '@haneullabs/bcs';\nimport { bcs } from '@haneullabs/haneul/bcs';\nimport type { Signer } from '@haneullabs/haneul/cryptography';\nimport { Ed25519Keypair } from '@haneullabs/haneul/keypairs/ed25519';\nimport { isValidNamedPackage, isValidHaneulAddress, isValidHaneulObjectId } from '@haneullabs/haneul/utils';\nimport { verifyPersonalMessageSignature } from '@haneullabs/haneul/verify';\nimport { generateSecretKey, toPublicKey, toVerificationKey } from './elgamal.js';\nimport {\n\tExpiredSessionKeyError,\n\tInvalidPackageError,\n\tInvalidPersonalMessageSignatureError,\n\tUserError,\n} from './error.js';\nimport type { SealCompatibleClient } from './types.js';\n\nexport const RequestFormat = bcs.struct('RequestFormat', {\n\tptb: bcs.byteVector(),\n\tencKey: bcs.byteVector(),\n\tencVerificationKey: bcs.byteVector(),\n});\n\nexport type Certificate = {\n\tuser: string;\n\tsession_vk: string;\n\tcreation_time: number;\n\tttl_min: number;\n\tsignature: string;\n\tmvr_name?: string;\n};\n\nexport type ExportedSessionKey = {\n\taddress: string;\n\tpackageId: string;\n\tmvrName?: string;\n\tcreationTimeMs: number;\n\tttlMin: number;\n\tpersonalMessageSignature?: string;\n\tsessionKey: string;\n};\n\nexport class SessionKey {\n\t#address: string;\n\t#packageId: string;\n\t#mvrName?: string;\n\t#creationTimeMs: number;\n\t#ttlMin: number;\n\t#sessionKey: Ed25519Keypair;\n\t#personalMessageSignature?: string;\n\t#signer?: Signer;\n\t#haneulClient: SealCompatibleClient;\n\n\tprivate constructor({\n\t\taddress,\n\t\tpackageId,\n\t\tmvrName,\n\t\tttlMin,\n\t\tsigner,\n\t\thaneulClient,\n\t}: {\n\t\taddress: string;\n\t\tpackageId: string;\n\t\tmvrName?: string;\n\t\tttlMin: number;\n\t\tsigner?: Signer;\n\t\thaneulClient: SealCompatibleClient;\n\t}) {\n\t\tif (mvrName && !isValidNamedPackage(mvrName)) {\n\t\t\tthrow new UserError(`Invalid package name ${mvrName}`);\n\t\t}\n\t\tif (!isValidHaneulObjectId(packageId) || !isValidHaneulAddress(address)) {\n\t\t\tthrow new UserError(`Invalid package ID ${packageId} or address ${address}`);\n\t\t}\n\t\tif (ttlMin > 30 || ttlMin < 1) {\n\t\t\tthrow new UserError(`Invalid TTL ${ttlMin}, must be between 1 and 30`);\n\t\t}\n\t\tif (signer && signer.getPublicKey().toHaneulAddress() !== address) {\n\t\t\tthrow new UserError('Signer address does not match session key address');\n\t\t}\n\n\t\tthis.#address = address;\n\t\tthis.#packageId = packageId;\n\t\tthis.#mvrName = mvrName;\n\t\tthis.#creationTimeMs = Date.now();\n\t\tthis.#ttlMin = ttlMin;\n\t\tthis.#sessionKey = Ed25519Keypair.generate();\n\t\tthis.#signer = signer;\n\t\tthis.#haneulClient = haneulClient;\n\t}\n\n\t/**\n\t * Create a new SessionKey instance.\n\t * @param address - The address of the user.\n\t * @param packageId - The ID of the package.\n\t * @param mvrName - Optional. The name of the MVR, if there is one.\n\t * @param ttlMin - The TTL in minutes.\n\t * @param signer - Optional. The signer instance, e.g. EnokiSigner.\n\t * @param haneulClient - The Haneul client.\n\t * @returns A new SessionKey instance.\n\t */\n\tstatic async create({\n\t\taddress,\n\t\tpackageId,\n\t\tmvrName,\n\t\tttlMin,\n\t\tsigner,\n\t\thaneulClient,\n\t}: {\n\t\taddress: string;\n\t\tpackageId: string;\n\t\tmvrName?: string;\n\t\tttlMin: number;\n\t\tsigner?: Signer;\n\t\thaneulClient: SealCompatibleClient;\n\t}): Promise<SessionKey> {\n\t\tconst packageObj = await haneulClient.core.getObject({ objectId: packageId });\n\t\tif (String(packageObj.object.version) !== '1') {\n\t\t\tthrow new InvalidPackageError(`Package ${packageId} is not the first version`);\n\t\t}\n\n\t\treturn new SessionKey({\n\t\t\taddress,\n\t\t\tpackageId,\n\t\t\tmvrName,\n\t\t\tttlMin,\n\t\t\tsigner,\n\t\t\thaneulClient,\n\t\t});\n\t}\n\tisExpired(): boolean {\n\t\t// Allow 10 seconds for clock skew\n\t\treturn this.#creationTimeMs + this.#ttlMin * 60 * 1000 - 10_000 < Date.now();\n\t}\n\n\tgetAddress(): string {\n\t\treturn this.#address;\n\t}\n\n\tgetPackageName(): string {\n\t\tif (this.#mvrName) {\n\t\t\treturn this.#mvrName;\n\t\t}\n\t\treturn this.#packageId;\n\t}\n\n\tgetPackageId(): string {\n\t\treturn this.#packageId;\n\t}\n\n\tgetPersonalMessage(): Uint8Array {\n\t\tconst creationTimeUtc =\n\t\t\tnew Date(this.#creationTimeMs).toISOString().slice(0, 19).replace('T', ' ') + ' UTC';\n\t\tconst message = `Accessing keys of package ${this.getPackageName()} for ${this.#ttlMin} mins from ${creationTimeUtc}, session key ${toBase64(this.#sessionKey.getPublicKey().toRawBytes())}`;\n\t\treturn new TextEncoder().encode(message);\n\t}\n\n\tasync setPersonalMessageSignature(personalMessageSignature: string) {\n\t\tif (!this.#personalMessageSignature) {\n\t\t\ttry {\n\t\t\t\tawait verifyPersonalMessageSignature(this.getPersonalMessage(), personalMessageSignature, {\n\t\t\t\t\taddress: this.#address,\n\t\t\t\t\tclient: this.#haneulClient,\n\t\t\t\t});\n\t\t\t\tthis.#personalMessageSignature = personalMessageSignature;\n\t\t\t} catch {\n\t\t\t\tthrow new InvalidPersonalMessageSignatureError('Not valid');\n\t\t\t}\n\t\t}\n\t}\n\n\tasync getCertificate(): Promise<Certificate> {\n\t\tif (!this.#personalMessageSignature) {\n\t\t\tif (this.#signer) {\n\t\t\t\tconst { signature } = await this.#signer.signPersonalMessage(this.getPersonalMessage());\n\t\t\t\tthis.#personalMessageSignature = signature;\n\t\t\t} else {\n\t\t\t\tthrow new InvalidPersonalMessageSignatureError('Personal message signature is not set');\n\t\t\t}\n\t\t}\n\t\treturn {\n\t\t\tuser: this.#address,\n\t\t\tsession_vk: toBase64(this.#sessionKey.getPublicKey().toRawBytes()),\n\t\t\tcreation_time: this.#creationTimeMs,\n\t\t\tttl_min: this.#ttlMin,\n\t\t\tsignature: this.#personalMessageSignature,\n\t\t\tmvr_name: this.#mvrName,\n\t\t};\n\t}\n\n\t/**\n\t * Create request params for the given transaction bytes.\n\t * @param txBytes - The transaction bytes.\n\t * @returns The request params containing the ephemeral secret key,\n\t * its public key and its verification key.\n\t */\n\tasync createRequestParams(txBytes: Uint8Array): Promise<{\n\t\tencKey: Uint8Array<ArrayBuffer>;\n\t\tencKeyPk: Uint8Array<ArrayBuffer>;\n\t\tencVerificationKey: Uint8Array<ArrayBuffer>;\n\t\trequestSignature: string;\n\t}> {\n\t\tif (this.isExpired()) {\n\t\t\tthrow new ExpiredSessionKeyError();\n\t\t}\n\t\tconst encKey = generateSecretKey();\n\t\tconst encKeyPk = toPublicKey(encKey);\n\t\tconst encVerificationKey = toVerificationKey(encKey);\n\n\t\tconst msgToSign = RequestFormat.serialize({\n\t\t\tptb: txBytes.slice(1),\n\t\t\tencKey: encKeyPk,\n\t\t\tencVerificationKey,\n\t\t}).toBytes();\n\t\treturn {\n\t\t\tencKey,\n\t\t\tencKeyPk,\n\t\t\tencVerificationKey,\n\t\t\trequestSignature: toBase64(await this.#sessionKey.sign(msgToSign)),\n\t\t};\n\t}\n\n\t/**\n\t * Export the Session Key object from the instance. Store the object in IndexedDB to persist.\n\t */\n\texport(): ExportedSessionKey {\n\t\tconst obj = {\n\t\t\taddress: this.#address,\n\t\t\tpackageId: this.#packageId,\n\t\t\tmvrName: this.#mvrName,\n\t\t\tcreationTimeMs: this.#creationTimeMs,\n\t\t\tttlMin: this.#ttlMin,\n\t\t\tpersonalMessageSignature: this.#personalMessageSignature,\n\t\t\tsessionKey: this.#sessionKey.getSecretKey(), // bech32 encoded string\n\t\t};\n\n\t\tObject.defineProperty(obj, 'toJSON', {\n\t\t\tenumerable: false,\n\t\t\tvalue: () => {\n\t\t\t\tthrow new Error('This object is not serializable');\n\t\t\t},\n\t\t});\n\t\treturn obj;\n\t}\n\n\t/**\n\t * Restore a SessionKey instance for the given object.\n\t * @returns A new SessionKey instance with restored state\n\t */\n\tstatic import(\n\t\tdata: ExportedSessionKey,\n\t\thaneulClient: SealCompatibleClient,\n\t\tsigner?: Signer,\n\t): SessionKey {\n\t\tconst instance = new SessionKey({\n\t\t\taddress: data.address,\n\t\t\tpackageId: data.packageId,\n\t\t\tmvrName: data.mvrName,\n\t\t\tttlMin: data.ttlMin,\n\t\t\tsigner,\n\t\t\thaneulClient,\n\t\t});\n\n\t\tinstance.#creationTimeMs = data.creationTimeMs;\n\t\tinstance.#sessionKey = Ed25519Keypair.fromSecretKey(data.sessionKey);\n\t\tinstance.#personalMessageSignature = data.personalMessageSignature;\n\n\t\tif (instance.isExpired()) {\n\t\t\tthrow new ExpiredSessionKeyError();\n\t\t}\n\t\treturn instance;\n\t}\n}\n"],
+  "mappings": ";;;;;;;AAAA;AAGA,SAAS,gBAAgB;AACzB,SAAS,WAAW;AAEpB,SAAS,sBAAsB;AAC/B,SAAS,qBAAqB,sBAAsB,6BAA6B;AACjF,SAAS,sCAAsC;AAC/C,SAAS,mBAAmB,aAAa,yBAAyB;AAClE;AAAA,EACC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACM;AAGA,MAAM,gBAAgB,IAAI,OAAO,iBAAiB;AAAA,EACxD,KAAK,IAAI,WAAW;AAAA,EACpB,QAAQ,IAAI,WAAW;AAAA,EACvB,oBAAoB,IAAI,WAAW;AACpC,CAAC;AAqBM,MAAM,cAAN,MAAM,YAAW;AAAA,EAWf,YAAY;AAAA,IACnB;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACD,GAOG;AAxBH;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAiBC,QAAI,WAAW,CAAC,oBAAoB,OAAO,GAAG;AAC7C,YAAM,IAAI,UAAU,wBAAwB,OAAO,EAAE;AAAA,IACtD;AACA,QAAI,CAAC,sBAAsB,SAAS,KAAK,CAAC,qBAAqB,OAAO,GAAG;AACxE,YAAM,IAAI,UAAU,sBAAsB,SAAS,eAAe,OAAO,EAAE;AAAA,IAC5E;AACA,QAAI,SAAS,MAAM,SAAS,GAAG;AAC9B,YAAM,IAAI,UAAU,eAAe,MAAM,4BAA4B;AAAA,IACtE;AACA,QAAI,UAAU,OAAO,aAAa,EAAE,gBAAgB,MAAM,SAAS;AAClE,YAAM,IAAI,UAAU,mDAAmD;AAAA,IACxE;AAEA,uBAAK,UAAW;AAChB,uBAAK,YAAa;AAClB,uBAAK,UAAW;AAChB,uBAAK,iBAAkB,KAAK,IAAI;AAChC,uBAAK,SAAU;AACf,uBAAK,aAAc,eAAe,SAAS;AAC3C,uBAAK,SAAU;AACf,uBAAK,eAAgB;AAAA,EACtB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,aAAa,OAAO;AAAA,IACnB;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACD,GAOwB;AACvB,UAAM,aAAa,MAAM,aAAa,KAAK,UAAU,EAAE,UAAU,UAAU,CAAC;AAC5E,QAAI,OAAO,WAAW,OAAO,OAAO,MAAM,KAAK;AAC9C,YAAM,IAAI,oBAAoB,WAAW,SAAS,2BAA2B;AAAA,IAC9E;AAEA,WAAO,IAAI,YAAW;AAAA,MACrB;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,IACD,CAAC;AAAA,EACF;AAAA,EACA,YAAqB;AAEpB,WAAO,mBAAK,mBAAkB,mBAAK,WAAU,KAAK,MAAO,MAAS,KAAK,IAAI;AAAA,EAC5E;AAAA,EAEA,aAAqB;AACpB,WAAO,mBAAK;AAAA,EACb;AAAA,EAEA,iBAAyB;AACxB,QAAI,mBAAK,WAAU;AAClB,aAAO,mBAAK;AAAA,IACb;AACA,WAAO,mBAAK;AAAA,EACb;AAAA,EAEA,eAAuB;AACtB,WAAO,mBAAK;AAAA,EACb;AAAA,EAEA,qBAAiC;AAChC,UAAM,kBACL,IAAI,KAAK,mBAAK,gBAAe,EAAE,YAAY,EAAE,MAAM,GAAG,EAAE,EAAE,QAAQ,KAAK,GAAG,IAAI;AAC/E,UAAM,UAAU,6BAA6B,KAAK,eAAe,CAAC,QAAQ,mBAAK,QAAO,cAAc,eAAe,iBAAiB,SAAS,mBAAK,aAAY,aAAa,EAAE,WAAW,CAAC,CAAC;AAC1L,WAAO,IAAI,YAAY,EAAE,OAAO,OAAO;AAAA,EACxC;AAAA,EAEA,MAAM,4BAA4B,0BAAkC;AACnE,QAAI,CAAC,mBAAK,4BAA2B;AACpC,UAAI;AACH,cAAM,+BAA+B,KAAK,mBAAmB,GAAG,0BAA0B;AAAA,UACzF,SAAS,mBAAK;AAAA,UACd,QAAQ,mBAAK;AAAA,QACd,CAAC;AACD,2BAAK,2BAA4B;AAAA,MAClC,QAAQ;AACP,cAAM,IAAI,qCAAqC,WAAW;AAAA,MAC3D;AAAA,IACD;AAAA,EACD;AAAA,EAEA,MAAM,iBAAuC;AAC5C,QAAI,CAAC,mBAAK,4BAA2B;AACpC,UAAI,mBAAK,UAAS;AACjB,cAAM,EAAE,UAAU,IAAI,MAAM,mBAAK,SAAQ,oBAAoB,KAAK,mBAAmB,CAAC;AACtF,2BAAK,2BAA4B;AAAA,MAClC,OAAO;AACN,cAAM,IAAI,qCAAqC,uCAAuC;AAAA,MACvF;AAAA,IACD;AACA,WAAO;AAAA,MACN,MAAM,mBAAK;AAAA,MACX,YAAY,SAAS,mBAAK,aAAY,aAAa,EAAE,WAAW,CAAC;AAAA,MACjE,eAAe,mBAAK;AAAA,MACpB,SAAS,mBAAK;AAAA,MACd,WAAW,mBAAK;AAAA,MAChB,UAAU,mBAAK;AAAA,IAChB;AAAA,EACD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,oBAAoB,SAKvB;AACF,QAAI,KAAK,UAAU,GAAG;AACrB,YAAM,IAAI,uBAAuB;AAAA,IAClC;AACA,UAAM,SAAS,kBAAkB;AACjC,UAAM,WAAW,YAAY,MAAM;AACnC,UAAM,qBAAqB,kBAAkB,MAAM;AAEnD,UAAM,YAAY,cAAc,UAAU;AAAA,MACzC,KAAK,QAAQ,MAAM,CAAC;AAAA,MACpB,QAAQ;AAAA,MACR;AAAA,IACD,CAAC,EAAE,QAAQ;AACX,WAAO;AAAA,MACN;AAAA,MACA;AAAA,MACA;AAAA,MACA,kBAAkB,SAAS,MAAM,mBAAK,aAAY,KAAK,SAAS,CAAC;AAAA,IAClE;AAAA,EACD;AAAA;AAAA;AAAA;AAAA,EAKA,SAA6B;AAC5B,UAAM,MAAM;AAAA,MACX,SAAS,mBAAK;AAAA,MACd,WAAW,mBAAK;AAAA,MAChB,SAAS,mBAAK;AAAA,MACd,gBAAgB,mBAAK;AAAA,MACrB,QAAQ,mBAAK;AAAA,MACb,0BAA0B,mBAAK;AAAA,MAC/B,YAAY,mBAAK,aAAY,aAAa;AAAA;AAAA,IAC3C;AAEA,WAAO,eAAe,KAAK,UAAU;AAAA,MACpC,YAAY;AAAA,MACZ,OAAO,MAAM;AACZ,cAAM,IAAI,MAAM,iCAAiC;AAAA,MAClD;AAAA,IACD,CAAC;AACD,WAAO;AAAA,EACR;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,OAAO,OACN,MACA,cACA,QACa;AACb,UAAM,WAAW,IAAI,YAAW;AAAA,MAC/B,SAAS,KAAK;AAAA,MACd,WAAW,KAAK;AAAA,MAChB,SAAS,KAAK;AAAA,MACd,QAAQ,KAAK;AAAA,MACb;AAAA,MACA;AAAA,IACD,CAAC;AAED,2BAAS,iBAAkB,KAAK;AAChC,2BAAS,aAAc,eAAe,cAAc,KAAK,UAAU;AACnE,2BAAS,2BAA4B,KAAK;AAE1C,QAAI,SAAS,UAAU,GAAG;AACzB,YAAM,IAAI,uBAAuB;AAAA,IAClC;AACA,WAAO;AAAA,EACR;AACD;AArOC;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AATM,IAAM,aAAN;",
+  "names": []
+}

package/dist/esm/shamir.d.ts ADDED Viewed

@@ -0,0 +1,91 @@
+/**
+ * A field element in the Rijndael finite field GF(2⁸) with a fixed generator g = 0x03.
+ */
+export declare class GF256 {
+    value: number;
+    constructor(value: number);
+    log(): number;
+    static exp(x: number): GF256;
+    add(other: GF256): GF256;
+    sub(other: GF256): GF256;
+    neg(): GF256;
+    mul(other: GF256): GF256;
+    div(other: GF256): GF256;
+    equals(other: GF256): boolean;
+    static zero(): GF256;
+    static one(): GF256;
+}
+/**
+ * A polynomial over the field GF(2⁸).
+ */
+export declare class Polynomial {
+    coefficients: GF256[];
+    /**
+     * Construct a new Polynomial over [GF256] from the given coefficients.
+     * The first coefficient is the constant term.
+     */
+    constructor(coefficients: GF256[]);
+    /**
+     * Construct a polynomial from the given bytes.
+     * Each byte is a coefficient of the polynomial starting from the constant term.
+     */
+    static fromBytes(bytes: Uint8Array): Polynomial;
+    degree(): number;
+    /** Get the coefficient of the polynomial at the given index. */
+    getCoefficient(index: number): GF256;
+    /** Add two polynomials. */
+    add(other: Polynomial): Polynomial;
+    /** Multiply two polynomials. */
+    mul(other: Polynomial): Polynomial;
+    /** The polynomial s * this. */
+    scale(s: GF256): Polynomial;
+    /** The polynomial (1 / s) * this. */
+    div(s: GF256): Polynomial;
+    /** The polynomial x + c. */
+    static monic_linear(c: GF256): Polynomial;
+    /** The zero polynomial. */
+    static zero(): Polynomial;
+    /** The polynomial 1. */
+    static one(): Polynomial;
+    /** Given a set of coordinates, interpolate a polynomial. */
+    static interpolate(coordinates: {
+        x: GF256;
+        y: GF256;
+    }[]): Polynomial;
+    /** Given a set of coordinates, interpolate a polynomial and evaluate it at x = 0. */
+    static combine(coordinates: {
+        x: GF256;
+        y: GF256;
+    }[]): GF256;
+    /** Evaluate the polynomial at x. */
+    evaluate(x: GF256): GF256;
+}
+/** Representation of a share of a secret. The index is a number between 1 and 255. */
+export type Share = {
+    index: number;
+    share: Uint8Array<ArrayBuffer>;
+};
+/**
+ * Split a secret into shares.
+ *
+ * @param secret The secret to split.
+ * @param threshold The minimum number of shares required to reconstruct the secret.
+ * @param total The total number of shares to generate.
+ * @returns The shares.
+ */
+export declare function split(secret: Uint8Array, threshold: number, total: number): Share[];
+/**
+ * Combine shares into a secret. If fewer than the threshold number of shares are provided,
+ * the result will be indistinguishable from random.
+ *
+ * @param shares The shares to combine.
+ * @returns The secret.
+ */
+export declare function combine(shares: Share[]): Uint8Array<ArrayBuffer>;
+/**
+ * Interpolate a polynomial from the given shares.
+ *
+ * @param shares The shares to interpolate from.
+ * @returns A function that evaluates the polynomial at a given x.
+ */
+export declare function interpolate(shares: Share[]): (x: number) => Uint8Array;