@interop/ed25519-signature 6.0.0

package/CHANGELOG.md

@@ -0,0 +1,133 @@
+# @interop/ed25519-signature Changelog
+
+## 6.0.0 - 2026-05-27
+### Changed
+- **BREAKING: Renamed** from `@digitalbazaar/ed25519-signature-2020` to
+  `@interop/ed25519-signature` (rename-in-place; preserves git history and the
+  committed spec test vectors).
+- **BREAKING: New architecture.** The package now provides all three Ed25519
+  proof flavors -- `Ed25519Signature2020`, `eddsa-rdfc-2022`, and
+  `eddsa-jcs-2022` -- unified on the `DataIntegrityProof` container model. The
+  legacy `Ed25519Signature2020` suite is now a thin subclass of
+  `DataIntegrityProof` (not a `LinkedDataSignature` subclass); its signed bytes
+  remain byte-identical to the legacy suite (pinned acceptance test).
+- **BREAKING: New API surface.** Per-suite subpath exports
+  (`./ed25519-signature-2020`, `./eddsa-rdfc-2022`, `./eddsa-jcs-2022`) plus a
+  root barrel; `sideEffects: false` for tree-shaking. The three suites expose
+  deliberately different shapes (class vs static cryptosuite vs sign/verify
+  factories), matching their specs.
+- **BREAKING: Ported to TypeScript** (`src/` to `dist/` via `tsc`); ESM-only,
+  Node.js 20+. New pnpm + Vitest + Playwright + ESLint + Prettier toolchain
+  (the karma/mocha/webpack stack was dropped).
+- Single key library: `@interop/ed25519-verification-key` (reads Multikey +
+  2020 + 2018 + JWK), replacing `@digitalbazaar/ed25519-multikey` and
+  `@digitalbazaar/ed25519-verification-key-2020`.
+- Uses `@interop/jsonld-signatures` as the `jsigs.sign` / `jsigs.verify` entry
+  point and `@interop/jsonld` for RDFC-1.0 canonicalization.
+
+### Added
+- `eddsa-rdfc-2022` cryptosuite (DataIntegrityProof, RDFC-1.0).
+- `eddsa-jcs-2022` sign/verify cryptosuite factories (DataIntegrityProof, JCS /
+  RFC 8785), including the spec context-prefix ordering check.
+- `createSigner` / `createVerifier` core helpers (inject the `algorithm`
+  property `DataIntegrityProof` requires; idempotent).
+- Mixed-proof-array verification test (one VC carrying all three proof types,
+  disambiguated by `matchProof`).
+
+### Fixed
+- `eddsa-jcs-2022` verify: the context-prefix check now compares `@context`
+  entries by value, not reference, so a VC carrying an inline `@context` object
+  verifies after a JSON round-trip (the realistic transport path). The previous
+  reference (`!==`) comparison, mirrored from the upstream spec reference impl,
+  wrongly rejected such VCs.
+
+## 5.4.0 - 2024-08-01
+
+### Changed
+- Use `jsonld-signature@11.3` to get `RDFC-1.0` implementation.
+
+## 5.3.0 - 2024-06-15
+
+### Added
+- Add support for `Multikey` verification methods.
+
+### Changed
+- Loosen restrictions on verification methods that do not have
+  contexts, allowing processing of well-known types in those cases.
+- Allow `publiKeyJwk` to be used to express key material.
+
+## 5.2.0 - 2023-02-13
+
+### Removed
+- Remove unused `expansionMap` from `matchProof()` as it was removed
+  from `jsonld-signatures@11` which is required since version `5.0`.
+
+## 5.1.0 - 2023-02-07
+
+### Added
+- Allow custom `canonizeOptions` to be passed in the construction of
+  a suite as a stop-gap until hard requirements for canonize options
+  are either set or advised to be certain values by a W3C working group.
+
+## 5.0.0 - 2022-08-23
+
+### Changed
+- **BREAKING**: Use `jsonld-signatures@11` to get better safe mode
+  protections when canonizing.
+
+## 4.0.1 - 2022-06-06
+
+### Changed
+- Update to jsonld-signatures@10.
+
+## 4.0.0 - 2022-06-06
+
+### Changed
+- **BREAKING**: Convert to module (ESM).
+- **BREAKING**: Require Node.js >=14.
+- Update dependencies.
+- Lint module.
+
+## 3.0.0 - 2021-06-19
+
+### Fixed
+
+- **BREAKING**: Update to use new Ed25519VerificationKey2020 multicodec
+  encoded key formats.
+
+## 2.2.0 - 2021-05-26
+
+### Added
+- It is now possible to verify `Ed25519Signature2020` proofs using using
+  2018 keys.
+
+### Changed
+- Replace `@transmute/jsonld-document-loader` with
+  `@digitalbazaar/security-document-loader` in test.
+
+## 2.1.0 - 2021-04-09
+
+### Added
+- Export the suite's context (and related objects such as context url,
+  documentLoader, etc), and also set them as a property of the suite class.
+- Set the `contextUrl` property on suite instance, to support context
+  enforcement during the `sign()` operation that was added to `jsonld-signatures`
+  `v9.0.1`.
+
+## 2.0.1 - 2021-04-09
+
+### Changed
+- Use `ed25519-verification-key-2020@2.1.1`. Signer now has an "id" property.
+
+## 2.0.0 - 2021-04-06
+
+### Changed
+- **BREAKING**: Update to use `jsonld-signatures` v9.0 (removes
+  `verificationMethod` suite constructor param, makes key and signer validation
+  stricter).
+- Fix initializing signer and verifier object by passing it to superclass.
+
+## 1.0.0 - 2021-03-19
+
+### Added
+- Initial files.

package/LICENSE

@@ -0,0 +1,29 @@
+BSD 3-Clause License
+
+Copyright (c) 2021, Digital Bazaar, Inc.
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are met:
+
+1. Redistributions of source code must retain the above copyright notice, this
+   list of conditions and the following disclaimer.
+
+2. Redistributions in binary form must reproduce the above copyright notice,
+   this list of conditions and the following disclaimer in the documentation
+   and/or other materials provided with the distribution.
+
+3. Neither the name of the copyright holder nor the names of its
+   contributors may be used to endorse or promote products derived from
+   this software without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
+AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
+FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
+SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
+CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
+OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

package/README.md

@@ -0,0 +1,256 @@
+# @interop/ed25519-signature
+
+[![Node.js CI](https://github.com/interop-alliance/ed25519-signature/workflows/CI/badge.svg)](https://github.com/interop-alliance/ed25519-signature/actions?query=workflow%3A%22CI%22)
+[![NPM Version](https://img.shields.io/npm/v/@interop/ed25519-signature.svg)](https://npm.im/@interop/ed25519-signature)
+
+> Ed25519 Linked Data / Data Integrity signature suites for use with
+> [`jsonld-signatures`](https://github.com/digitalbazaar/jsonld-signatures),
+> in TypeScript.
+
+One package providing all three Ed25519 Verifiable Credential proof flavors,
+unified on the `DataIntegrityProof` container model:
+
+| Suite                  | `proof.type`           | `proof.cryptosuite` | Canonicalization |
+|------------------------|------------------------|---------------------|------------------|
+| `Ed25519Signature2020` | `Ed25519Signature2020` | (absent)            | RDFC-1.0         |
+| `eddsa-rdfc-2022`      | `DataIntegrityProof`   | `eddsa-rdfc-2022`   | RDFC-1.0         |
+| `eddsa-jcs-2022`       | `DataIntegrityProof`   | `eddsa-jcs-2022`    | JCS (RFC 8785)   |
+
+This is a TypeScript rewrite and rename-in-place of
+`@digitalbazaar/ed25519-signature-2020` (v6). The full design and migration
+history live in [`refactor-plan.md`](./refactor-plan.md); contributor-facing
+architecture notes are in [`CLAUDE.md`](./CLAUDE.md).
+
+## Table of Contents
+
+- [Background](#background)
+- [Install](#install)
+- [Subpath imports](#subpath-imports)
+- [Usage](#usage)
+  - [`Ed25519Signature2020`](#ed25519signature2020)
+  - [`eddsa-rdfc-2022`](#eddsa-rdfc-2022)
+  - [`eddsa-jcs-2022`](#eddsa-jcs-2022)
+  - [Verifying a mixed proof set](#verifying-a-mixed-proof-set)
+- [API asymmetry across suites](#api-asymmetry-across-suites)
+- [The `createSigner` requirement](#the-createsigner-requirement)
+- [Contribute](#contribute)
+- [License](#license)
+
+## Background
+
+Lets a downstream consumer issue and verify all three Ed25519 proof types -- as
+they appear mixed in VC `proof` arrays and DID documents -- through one package,
+one container concept (`DataIntegrityProof`), one key library
+([`@interop/ed25519-verification-key`](https://github.com/interop-alliance/ed25519-verification-key),
+which reads Multikey + 2020 + 2018 + JWK), and one toolchain.
+
+The legacy `Ed25519Signature2020` suite is implemented as a thin subclass of
+`DataIntegrityProof` rather than a `LinkedDataSignature` subclass, so the
+container, key library, and signing payload are shared with the
+data-integrity suites. Its signed bytes are byte-identical to the legacy
+`@digitalbazaar/ed25519-signature-2020` suite (a pinned acceptance test).
+
+Related spec: [Verifiable Credential Data Integrity / EdDSA Cryptosuites](https://w3c.github.io/vc-di-eddsa/).
+
+## Install
+
+Node.js 20+ and modern browsers are supported. This package is ESM-only.
+
+```
+npm install @interop/ed25519-signature
+```
+
+`@interop/jsonld-signatures` is an optional peer dependency -- install it
+alongside if you use the `jsigs.sign` / `jsigs.verify` entry points shown below.
+
+## Subpath imports
+
+Each suite has its own subpath export, so a JCS-only consumer is not forced to
+pull in the heavy `jsonld` / `rdf-canonize` machinery that only the RDFC suites
+need (the package is `sideEffects: false` for tree-shaking). Prefer the
+leaf-scoped import for the suite you actually use:
+
+```js
+import { Ed25519Signature2020 } from '@interop/ed25519-signature/ed25519-signature-2020'
+import { eddsaRdfc2022 } from '@interop/ed25519-signature/eddsa-rdfc-2022'
+import {
+  createSignCryptosuite,
+  createVerifyCryptosuite
+} from '@interop/ed25519-signature/eddsa-jcs-2022'
+```
+
+A convenience root barrel re-exports everything (plus `createSigner` /
+`createVerifier`) for when bundle size is not a concern:
+
+```js
+import { Ed25519Signature2020, eddsaRdfc2022, createSigner } from '@interop/ed25519-signature'
+```
+
+## Usage
+
+The examples share this setup:
+
+```js
+import jsigs from '@interop/jsonld-signatures'
+import { Ed25519VerificationKey } from '@interop/ed25519-verification-key'
+
+const { purposes: { AssertionProofPurpose } } = jsigs
+
+const controller = 'https://example.edu/issuers/565049'
+const keyPair = await Ed25519VerificationKey.from({
+  type: 'Ed25519VerificationKey2020',
+  controller,
+  id: controller + '#z6MknCCLeeHBUaHu4aHSVLDCYQW9gjVJ7a63FpMvtuVMy53T',
+  publicKeyMultibase: 'z6MknCCLeeHBUaHu4aHSVLDCYQW9gjVJ7a63FpMvtuVMy53T',
+  privateKeyMultibase:
+    'zrv2EET2WWZ8T1Jbg4fEH5cQxhbUS22XxdweypUbjWVzv1YD6VqYuW6LH7heQCNYQCuoKaDwvv2qCWz3uBzG2xesqmf'
+})
+
+// Provide a documentLoader that resolves the VC contexts, the key, and its
+// controller. See test/node/documentLoader.ts for a securityLoader()-based one.
+```
+
+### `Ed25519Signature2020`
+
+A class extending `DataIntegrityProof`. Pass `keyPair.signer()` directly -- the
+constructor injects the required `algorithm` for you.
+
+```js
+import { Ed25519Signature2020 } from '@interop/ed25519-signature/ed25519-signature-2020'
+
+const credential = {
+  '@context': [
+    'https://www.w3.org/2018/credentials/v1',
+    { AlumniCredential: 'https://schema.org#AlumniCredential', alumniOf: 'https://schema.org#alumniOf' },
+    'https://w3id.org/security/suites/ed25519-2020/v1'
+  ],
+  id: 'http://example.edu/credentials/1872',
+  type: ['VerifiableCredential', 'AlumniCredential'],
+  issuer: controller,
+  issuanceDate: '2010-01-01T19:23:24Z',
+  credentialSubject: { id: 'https://example.edu/students/alice', alumniOf: 'Example University' }
+}
+
+const signed = await jsigs.sign({ ...credential }, {
+  suite: new Ed25519Signature2020({ signer: keyPair.signer() }),
+  purpose: new AssertionProofPurpose(),
+  documentLoader
+})
+// signed.proof.type === 'Ed25519Signature2020'  (no `cryptosuite` field)
+
+const result = await jsigs.verify(signed, {
+  suite: new Ed25519Signature2020(),
+  purpose: new AssertionProofPurpose(),
+  documentLoader
+})
+// result.verified === true
+```
+
+### `eddsa-rdfc-2022`
+
+A static cryptosuite object used with a bare `DataIntegrityProof`. On the sign
+side, wrap the key with `createSigner` (see
+[below](#the-createsigner-requirement)).
+
+```js
+import { DataIntegrityProof } from '@digitalbazaar/data-integrity'
+import { eddsaRdfc2022 } from '@interop/ed25519-signature/eddsa-rdfc-2022'
+import { createSigner } from '@interop/ed25519-signature'
+
+// The VC @context must include 'https://w3id.org/security/data-integrity/v2'.
+const signed = await jsigs.sign({ ...diCredential }, {
+  suite: new DataIntegrityProof({ cryptosuite: eddsaRdfc2022, signer: createSigner(keyPair) }),
+  purpose: new AssertionProofPurpose(),
+  documentLoader
+})
+// signed.proof.type === 'DataIntegrityProof', signed.proof.cryptosuite === 'eddsa-rdfc-2022'
+
+const result = await jsigs.verify(signed, {
+  suite: new DataIntegrityProof({ cryptosuite: eddsaRdfc2022 }),
+  purpose: new AssertionProofPurpose(),
+  documentLoader
+})
+```
+
+### `eddsa-jcs-2022`
+
+Split sign / verify factories (not a single object). The sign cryptosuite's
+`createVerifier` throws, as a sign-only guard.
+
+```js
+import { DataIntegrityProof } from '@digitalbazaar/data-integrity'
+import { createSignCryptosuite, createVerifyCryptosuite } from '@interop/ed25519-signature/eddsa-jcs-2022'
+import { createSigner } from '@interop/ed25519-signature'
+
+const signed = await jsigs.sign({ ...diCredential }, {
+  suite: new DataIntegrityProof({ cryptosuite: createSignCryptosuite(), signer: createSigner(keyPair) }),
+  purpose: new AssertionProofPurpose(),
+  documentLoader
+})
+// signed.proof.cryptosuite === 'eddsa-jcs-2022'
+
+const result = await jsigs.verify(signed, {
+  suite: new DataIntegrityProof({ cryptosuite: createVerifyCryptosuite() }),
+  purpose: new AssertionProofPurpose(),
+  documentLoader
+})
+```
+
+JCS verification enforces the spec's context-prefix ordering check: the
+document's `@context` must start with the proof's `@context`, in order.
+
+### Verifying a mixed proof set
+
+A single VC can carry one of each proof type in its `proof` array; pass all the
+matching suites to one `jsigs.verify` call and they are disambiguated by
+`matchProof`:
+
+```js
+const result = await jsigs.verify(signed, {
+  suite: [
+    new Ed25519Signature2020(),
+    new DataIntegrityProof({ cryptosuite: eddsaRdfc2022 }),
+    new DataIntegrityProof({ cryptosuite: createVerifyCryptosuite() })
+  ],
+  purpose: new AssertionProofPurpose(),
+  documentLoader
+})
+```
+
+Note the proof-set semantics of `jsonld-signatures`: `result.verified` is `true`
+if **any** matched proof verifies. Inspect `result.results` for the per-proof
+outcome.
+
+## API asymmetry across suites
+
+The three suites expose deliberately different shapes, because the specs do --
+a class (`Ed25519Signature2020`), a static cryptosuite object
+(`eddsa-rdfc-2022`), and sign/verify factories (`eddsa-jcs-2022`). This is
+intentional; don't try to abstract over it.
+
+## The `createSigner` requirement
+
+`DataIntegrityProof` asserts `signer.algorithm === 'Ed25519'` at construction.
+In the Digital Bazaar ecosystem the key library supplies that property;
+`@interop/ed25519-verification-key` does not (yet), so when using a **bare**
+`DataIntegrityProof` (the rdfc / jcs suites) wrap the key with `createSigner`:
+
+```js
+import { createSigner } from '@interop/ed25519-signature'
+new DataIntegrityProof({ cryptosuite: eddsaRdfc2022, signer: createSigner(keyPair) })
+```
+
+The `Ed25519Signature2020` class does this for you, so there you can pass
+`keyPair.signer()` directly. `createSigner` is idempotent
+(`algorithm ?? 'Ed25519'`), so it becomes a no-op once the key library sets
+`algorithm` itself.
+
+## Contribute
+
+PRs accepted. See [`CLAUDE.md`](./CLAUDE.md) for toolchain, project layout, and
+the testing rules (notably: never hand-roll JSON-LD `@context` documents in
+tests).
+
+## License
+
+[New BSD License (3-clause)](LICENSE)

package/dist/core/createSigner.d.ts

@@ -0,0 +1,17 @@
+import type { SignerLike } from '@digitalbazaar/data-integrity';
+type SignerSource = Omit<SignerLike, 'algorithm'> & {
+    algorithm?: string;
+};
+/**
+ * Produces a signer that carries `algorithm`, which `DataIntegrityProof`
+ * requires (it asserts `signer.algorithm === requiredAlgorithm` at
+ * construction). `@interop/ed25519-verification-key`'s `signer()` does not set
+ * `algorithm`; this injects it. Idempotent: an `algorithm` already present
+ * (e.g. once the key library sets it) is preserved.
+ */
+export declare function createSigner(keyPair: {
+    signer(): SignerSource;
+}): SignerLike;
+export declare function ensureSignerAlgorithm(signer: SignerSource): SignerLike;
+export {};
+//# sourceMappingURL=createSigner.d.ts.map

package/dist/core/createSigner.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"createSigner.d.ts","sourceRoot":"","sources":["../../src/core/createSigner.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,+BAA+B,CAAA;AAG/D,KAAK,YAAY,GAAG,IAAI,CAAC,UAAU,EAAE,WAAW,CAAC,GAAG;IAAE,SAAS,CAAC,EAAE,MAAM,CAAA;CAAE,CAAA;AAE1E;;;;;;GAMG;AACH,wBAAgB,YAAY,CAAC,OAAO,EAAE;IAAE,MAAM,IAAI,YAAY,CAAA;CAAE,GAAG,UAAU,CAE5E;AAED,wBAAgB,qBAAqB,CAAC,MAAM,EAAE,YAAY,GAAG,UAAU,CAEtE"}

package/dist/core/createSigner.js

@@ -0,0 +1,15 @@
+import { requiredAlgorithm } from './requiredAlgorithm.js';
+/**
+ * Produces a signer that carries `algorithm`, which `DataIntegrityProof`
+ * requires (it asserts `signer.algorithm === requiredAlgorithm` at
+ * construction). `@interop/ed25519-verification-key`'s `signer()` does not set
+ * `algorithm`; this injects it. Idempotent: an `algorithm` already present
+ * (e.g. once the key library sets it) is preserved.
+ */
+export function createSigner(keyPair) {
+    return ensureSignerAlgorithm(keyPair.signer());
+}
+export function ensureSignerAlgorithm(signer) {
+    return { ...signer, algorithm: signer.algorithm ?? requiredAlgorithm };
+}
+//# sourceMappingURL=createSigner.js.map

package/dist/core/createSigner.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"createSigner.js","sourceRoot":"","sources":["../../src/core/createSigner.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,iBAAiB,EAAE,MAAM,wBAAwB,CAAA;AAI1D;;;;;;GAMG;AACH,MAAM,UAAU,YAAY,CAAC,OAAmC;IAC9D,OAAO,qBAAqB,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC,CAAA;AAChD,CAAC;AAED,MAAM,UAAU,qBAAqB,CAAC,MAAoB;IACxD,OAAO,EAAE,GAAG,MAAM,EAAE,SAAS,EAAE,MAAM,CAAC,SAAS,IAAI,iBAAiB,EAAE,CAAA;AACxE,CAAC"}

package/dist/core/createVerifier.d.ts

@@ -0,0 +1,10 @@
+export declare function createVerifier({ verificationMethod }: {
+    verificationMethod: unknown;
+}): Promise<{
+    verify(opts: {
+        data: Uint8Array;
+        signature: Uint8Array;
+    }): Promise<boolean>;
+    algorithm: string;
+}>;
+//# sourceMappingURL=createVerifier.d.ts.map

package/dist/core/createVerifier.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"createVerifier.d.ts","sourceRoot":"","sources":["../../src/core/createVerifier.ts"],"names":[],"mappings":"AAGA,wBAAsB,cAAc,CAAC,EACnC,kBAAkB,EACnB,EAAE;IACD,kBAAkB,EAAE,OAAO,CAAA;CAC5B,GAAG,OAAO,CAAC;IAAE,MAAM,CAAC,IAAI,EAAE;QAAE,IAAI,EAAE,UAAU,CAAC;QAAC,SAAS,EAAE,UAAU,CAAA;KAAE,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IAAC,SAAS,EAAE,MAAM,CAAA;CAAE,CAAC,CAU9G"}

package/dist/core/createVerifier.js

@@ -0,0 +1,14 @@
+import { Ed25519VerificationKey } from '@interop/ed25519-verification-key';
+import { requiredAlgorithm } from './requiredAlgorithm.js';
+export async function createVerifier({ verificationMethod }) {
+    // verificationMethod is one of: Multikey, Ed25519VerificationKey2020,
+    // Ed25519VerificationKey2018, or JsonWebKey2020
+    const key = await Ed25519VerificationKey.from(verificationMethod);
+    const verifier = key.verifier();
+    // DataIntegrityProof checks verifier.algorithm against requiredAlgorithm;
+    // the verification-key library does not set algorithm on the returned object.
+    // Idempotent: preserve an algorithm already set (e.g. once the key library
+    // sets it).
+    return { ...verifier, algorithm: verifier.algorithm ?? requiredAlgorithm };
+}
+//# sourceMappingURL=createVerifier.js.map

package/dist/core/createVerifier.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"createVerifier.js","sourceRoot":"","sources":["../../src/core/createVerifier.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,sBAAsB,EAAE,MAAM,mCAAmC,CAAA;AAC1E,OAAO,EAAE,iBAAiB,EAAE,MAAM,wBAAwB,CAAA;AAE1D,MAAM,CAAC,KAAK,UAAU,cAAc,CAAC,EACnC,kBAAkB,EAGnB;IACC,sEAAsE;IACtE,gDAAgD;IAChD,MAAM,GAAG,GAAG,MAAM,sBAAsB,CAAC,IAAI,CAAC,kBAAyB,CAAC,CAAA;IACxE,MAAM,QAAQ,GAAG,GAAG,CAAC,QAAQ,EAAE,CAAA;IAC/B,0EAA0E;IAC1E,8EAA8E;IAC9E,2EAA2E;IAC3E,YAAY;IACZ,OAAO,EAAE,GAAG,QAAQ,EAAE,SAAS,EAAE,QAAQ,CAAC,SAAS,IAAI,iBAAiB,EAAE,CAAA;AAC5E,CAAC"}

package/dist/core/requiredAlgorithm.d.ts

@@ -0,0 +1,2 @@
+export declare const requiredAlgorithm = "Ed25519";
+//# sourceMappingURL=requiredAlgorithm.d.ts.map

package/dist/core/requiredAlgorithm.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"requiredAlgorithm.d.ts","sourceRoot":"","sources":["../../src/core/requiredAlgorithm.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,iBAAiB,YAAY,CAAA"}

package/dist/core/requiredAlgorithm.js

@@ -0,0 +1,2 @@
+export const requiredAlgorithm = 'Ed25519';
+//# sourceMappingURL=requiredAlgorithm.js.map

package/dist/core/requiredAlgorithm.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"requiredAlgorithm.js","sourceRoot":"","sources":["../../src/core/requiredAlgorithm.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,iBAAiB,GAAG,SAAS,CAAA"}

package/dist/core/sha256-browser.d.ts

@@ -0,0 +1,4 @@
+export declare function sha256({ string }: {
+    string: string;
+}): Promise<Uint8Array>;
+//# sourceMappingURL=sha256-browser.d.ts.map

package/dist/core/sha256-browser.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sha256-browser.d.ts","sourceRoot":"","sources":["../../src/core/sha256-browser.ts"],"names":[],"mappings":"AAAA,wBAAsB,MAAM,CAAC,EAAE,MAAM,EAAE,EAAE;IAAE,MAAM,EAAE,MAAM,CAAA;CAAE,GAAG,OAAO,CAAC,UAAU,CAAC,CAKhF"}

package/dist/core/sha256-browser.js

@@ -0,0 +1,5 @@
+export async function sha256({ string }) {
+    const bytes = new TextEncoder().encode(string);
+    return new Uint8Array(await crypto.subtle.digest('SHA-256', bytes));
+}
+//# sourceMappingURL=sha256-browser.js.map

package/dist/core/sha256-browser.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sha256-browser.js","sourceRoot":"","sources":["../../src/core/sha256-browser.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,KAAK,UAAU,MAAM,CAAC,EAAE,MAAM,EAAsB;IACzD,MAAM,KAAK,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,MAAM,CAAC,CAAA;IAC9C,OAAO,IAAI,UAAU,CACnB,MAAM,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,KAAK,CAAC,CAC7C,CAAA;AACH,CAAC"}

package/dist/core/sha256.d.ts

@@ -0,0 +1,4 @@
+export declare function sha256({ string }: {
+    string: string;
+}): Promise<Uint8Array>;
+//# sourceMappingURL=sha256.d.ts.map

package/dist/core/sha256.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sha256.d.ts","sourceRoot":"","sources":["../../src/core/sha256.ts"],"names":[],"mappings":"AAEA,wBAAsB,MAAM,CAAC,EAAE,MAAM,EAAE,EAAE;IAAE,MAAM,EAAE,MAAM,CAAA;CAAE,GAAG,OAAO,CAAC,UAAU,CAAC,CAEhF"}

package/dist/core/sha256.js

@@ -0,0 +1,5 @@
+import crypto from 'node:crypto';
+export async function sha256({ string }) {
+    return new Uint8Array(crypto.createHash('sha256').update(string).digest());
+}
+//# sourceMappingURL=sha256.js.map

package/dist/core/sha256.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sha256.js","sourceRoot":"","sources":["../../src/core/sha256.ts"],"names":[],"mappings":"AAAA,OAAO,MAAM,MAAM,aAAa,CAAA;AAEhC,MAAM,CAAC,KAAK,UAAU,MAAM,CAAC,EAAE,MAAM,EAAsB;IACzD,OAAO,IAAI,UAAU,CAAC,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,MAAM,EAAE,CAAC,CAAA;AAC5E,CAAC"}

package/dist/ed25519-signature-2020/cryptosuite.d.ts

@@ -0,0 +1,3 @@
+import type { CryptosuiteLike } from '@digitalbazaar/data-integrity';
+export declare const ed25519Sig2020Cryptosuite: CryptosuiteLike;
+//# sourceMappingURL=cryptosuite.d.ts.map

package/dist/ed25519-signature-2020/cryptosuite.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cryptosuite.d.ts","sourceRoot":"","sources":["../../src/ed25519-signature-2020/cryptosuite.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,+BAA+B,CAAA;AAKpE,eAAO,MAAM,yBAAyB,EAAE,eAIvC,CAAA"}

package/dist/ed25519-signature-2020/cryptosuite.js

@@ -0,0 +1,12 @@
+import { canonize } from '../eddsa-rdfc-2022/canonize.js';
+import { createVerifier } from '../core/createVerifier.js';
+import { requiredAlgorithm } from '../core/requiredAlgorithm.js';
+// Internal cryptosuite for Ed25519Signature2020 -- deliberately no `name`
+// so this.cryptosuite stays undefined on the proof (2020 proofs carry no
+// cryptosuite field).
+export const ed25519Sig2020Cryptosuite = {
+    canonize: canonize,
+    createVerifier: createVerifier,
+    requiredAlgorithm
+};
+//# sourceMappingURL=cryptosuite.js.map

package/dist/ed25519-signature-2020/cryptosuite.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cryptosuite.js","sourceRoot":"","sources":["../../src/ed25519-signature-2020/cryptosuite.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,gCAAgC,CAAA;AACzD,OAAO,EAAE,cAAc,EAAE,MAAM,2BAA2B,CAAA;AAC1D,OAAO,EAAE,iBAAiB,EAAE,MAAM,8BAA8B,CAAA;AAGhE,0EAA0E;AAC1E,yEAAyE;AACzE,sBAAsB;AACtB,MAAM,CAAC,MAAM,yBAAyB,GAAoB;IACxD,QAAQ,EAAE,QAAuC;IACjD,cAAc,EAAE,cAAmD;IACnE,iBAAiB;CAClB,CAAA"}

package/dist/ed25519-signature-2020/index.d.ts

@@ -0,0 +1,19 @@
+import { DataIntegrityProof } from '@digitalbazaar/data-integrity';
+import type { ProofLike, SignerLike } from '@digitalbazaar/data-integrity';
+import suiteContext2020 from 'ed25519-signature-2020-context';
+export declare class Ed25519Signature2020 extends DataIntegrityProof {
+    static CONTEXT_URL: string;
+    static CONTEXT: unknown;
+    constructor({ signer, date }?: {
+        signer?: Omit<SignerLike, 'algorithm'> & {
+            algorithm?: string;
+        };
+        date?: string | Date | number | null;
+    });
+    updateProof({ proof }: {
+        proof: ProofLike;
+        [key: string]: unknown;
+    }): Promise<ProofLike>;
+}
+export { suiteContext2020 as suiteContext };
+//# sourceMappingURL=index.d.ts.map

package/dist/ed25519-signature-2020/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/ed25519-signature-2020/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAA;AAClE,OAAO,KAAK,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,+BAA+B,CAAA;AAG1E,OAAO,gBAAgB,MAAM,gCAAgC,CAAA;AAI7D,qBAAa,oBAAqB,SAAQ,kBAAkB;IAC1D,MAAM,CAAC,WAAW,SAAoB;IACtC,MAAM,CAAC,OAAO,UAAmD;gBAErD,EACV,MAAM,EACN,IAAI,EACL,GAAE;QACD,MAAM,CAAC,EAAE,IAAI,CAAC,UAAU,EAAE,WAAW,CAAC,GAAG;YAAE,SAAS,CAAC,EAAE,MAAM,CAAA;SAAE,CAAA;QAC/D,IAAI,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,MAAM,GAAG,IAAI,CAAA;KAChC;IAgBS,WAAW,CAAC,EACzB,KAAK,EACN,EAAE;QACD,KAAK,EAAE,SAAS,CAAA;QAChB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAA;KACvB,GAAG,OAAO,CAAC,SAAS,CAAC;CAIvB;AAED,OAAO,EAAE,gBAAgB,IAAI,YAAY,EAAE,CAAA"}

package/dist/ed25519-signature-2020/index.js

@@ -0,0 +1,30 @@
+import { DataIntegrityProof } from '@digitalbazaar/data-integrity';
+import { ed25519Sig2020Cryptosuite } from './cryptosuite.js';
+import { ensureSignerAlgorithm } from '../core/createSigner.js';
+import suiteContext2020 from 'ed25519-signature-2020-context';
+const SUITE_CONTEXT_URL = suiteContext2020.constants.CONTEXT_URL;
+export class Ed25519Signature2020 extends DataIntegrityProof {
+    static CONTEXT_URL = SUITE_CONTEXT_URL;
+    static CONTEXT = suiteContext2020.contexts.get(SUITE_CONTEXT_URL);
+    constructor({ signer, date } = {}) {
+        // Cryptosuite has no `name`, so this.cryptosuite stays undefined --
+        // matching the absent cryptosuite field on legacy 2020 proofs.
+        // DataIntegrityProof validates signer.algorithm; ensure it is set
+        // (the @interop/ed25519-verification-key signer doesn't set algorithm).
+        const wrappedSigner = signer
+            ? ensureSignerAlgorithm(signer)
+            : undefined;
+        super({ signer: wrappedSigner, date, cryptosuite: ed25519Sig2020Cryptosuite });
+        this.type = 'Ed25519Signature2020';
+        this.contextUrl = SUITE_CONTEXT_URL;
+    }
+    // Called by DataIntegrityProof.createProof() before hashing proof options.
+    // Removes the cryptosuite field that the base class writes (2020 proofs
+    // carry no cryptosuite field).
+    async updateProof({ proof }) {
+        delete proof.cryptosuite;
+        return proof;
+    }
+}
+export { suiteContext2020 as suiteContext };
+//# sourceMappingURL=index.js.map

package/dist/ed25519-signature-2020/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/ed25519-signature-2020/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAA;AAElE,OAAO,EAAE,yBAAyB,EAAE,MAAM,kBAAkB,CAAA;AAC5D,OAAO,EAAE,qBAAqB,EAAE,MAAM,yBAAyB,CAAA;AAC/D,OAAO,gBAAgB,MAAM,gCAAgC,CAAA;AAE7D,MAAM,iBAAiB,GAAG,gBAAgB,CAAC,SAAS,CAAC,WAAW,CAAA;AAEhE,MAAM,OAAO,oBAAqB,SAAQ,kBAAkB;IAC1D,MAAM,CAAC,WAAW,GAAG,iBAAiB,CAAA;IACtC,MAAM,CAAC,OAAO,GAAG,gBAAgB,CAAC,QAAQ,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAA;IAEjE,YAAY,EACV,MAAM,EACN,IAAI,KAIF,EAAE;QACJ,oEAAoE;QACpE,+DAA+D;QAC/D,kEAAkE;QAClE,wEAAwE;QACxE,MAAM,aAAa,GAA2B,MAAM;YAClD,CAAC,CAAC,qBAAqB,CAAC,MAAM,CAAC;YAC/B,CAAC,CAAC,SAAS,CAAA;QACb,KAAK,CAAC,EAAE,MAAM,EAAE,aAAa,EAAE,IAAI,EAAE,WAAW,EAAE,yBAAyB,EAAE,CAAC,CAAA;QAC9E,IAAI,CAAC,IAAI,GAAG,sBAAsB,CAAA;QAClC,IAAI,CAAC,UAAU,GAAG,iBAAiB,CAAA;IACrC,CAAC;IAED,2EAA2E;IAC3E,wEAAwE;IACxE,+BAA+B;IACtB,KAAK,CAAC,WAAW,CAAC,EACzB,KAAK,EAIN;QACC,OAAO,KAAK,CAAC,WAAW,CAAA;QACxB,OAAO,KAAK,CAAA;IACd,CAAC;;AAGH,OAAO,EAAE,gBAAgB,IAAI,YAAY,EAAE,CAAA"}

package/dist/eddsa-jcs-2022/canonize.d.ts

@@ -0,0 +1,2 @@
+export declare function canonize(input: unknown): Promise<string>;
+//# sourceMappingURL=canonize.d.ts.map

package/dist/eddsa-jcs-2022/canonize.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"canonize.d.ts","sourceRoot":"","sources":["../../src/eddsa-jcs-2022/canonize.ts"],"names":[],"mappings":"AAEA,wBAAsB,QAAQ,CAAC,KAAK,EAAE,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,CAM9D"}

package/dist/eddsa-jcs-2022/canonize.js

@@ -0,0 +1,9 @@
+import canonicalize from 'canonicalize';
+export async function canonize(input) {
+    const result = canonicalize(input);
+    if (result === undefined) {
+        throw new TypeError('JCS canonicalize returned undefined for input');
+    }
+    return result;
+}
+//# sourceMappingURL=canonize.js.map

package/dist/eddsa-jcs-2022/canonize.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"canonize.js","sourceRoot":"","sources":["../../src/eddsa-jcs-2022/canonize.ts"],"names":[],"mappings":"AAAA,OAAO,YAAY,MAAM,cAAc,CAAA;AAEvC,MAAM,CAAC,KAAK,UAAU,QAAQ,CAAC,KAAc;IAC3C,MAAM,MAAM,GAAG,YAAY,CAAC,KAAK,CAAC,CAAA;IAClC,IAAI,MAAM,KAAK,SAAS,EAAE,CAAC;QACzB,MAAM,IAAI,SAAS,CAAC,+CAA+C,CAAC,CAAA;IACtE,CAAC;IACD,OAAO,MAAM,CAAA;AACf,CAAC"}

package/dist/eddsa-jcs-2022/createVerifyData.d.ts

@@ -0,0 +1,3 @@
+export type CreateVerifyDataFn = (opts: unknown) => Promise<Uint8Array>;
+export declare function createVerifyDataFn(mode: 'sign' | 'verify'): CreateVerifyDataFn;
+//# sourceMappingURL=createVerifyData.d.ts.map

package/dist/eddsa-jcs-2022/createVerifyData.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"createVerifyData.d.ts","sourceRoot":"","sources":["../../src/eddsa-jcs-2022/createVerifyData.ts"],"names":[],"mappings":"AAwEA,MAAM,MAAM,kBAAkB,GAAG,CAAC,IAAI,EAAE,OAAO,KAAK,OAAO,CAAC,UAAU,CAAC,CAAA;AAEvE,wBAAgB,kBAAkB,CAAC,IAAI,EAAE,MAAM,GAAG,QAAQ,GAAG,kBAAkB,CA0B9E"}

package/dist/eddsa-jcs-2022/createVerifyData.js

@@ -0,0 +1,67 @@
+import { sha256 } from '../core/sha256.js';
+const NAME = 'eddsa-jcs-2022';
+function concat(b1, b2) {
+    const out = new Uint8Array(b1.length + b2.length);
+    out.set(b1, 0);
+    out.set(b2, b1.length);
+    return out;
+}
+async function canonizeProof(proofOptions, canonize) {
+    const proof = { ...proofOptions };
+    delete proof.proofValue;
+    return canonize(proof);
+}
+// On sign: copy document.@context onto proof so verifiers can reconstruct it.
+function modifyForSign({ proof, document }) {
+    if (document['@context']) {
+        proof['@context'] = document['@context'];
+    }
+}
+// On verify: assert document.@context starts with proof.@context in order.
+// This ordering check is security-sensitive per the JCS spec.
+//
+// Entries are compared by VALUE, not reference: an inline @context object (e.g.
+// {AlumniCredential: ...}) becomes a distinct instance once the VC is
+// serialized and re-parsed, so a reference (`!==`) compare wrongly rejects every
+// transmitted VC that carries one. JSON.stringify gives the value compare the
+// spec asks for; it is key-order sensitive, but both @context trees originate
+// from the same issuer-side object so order is preserved (and any mismatch just
+// throws -- fail-closed).
+function modifyForVerify({ proof, document }) {
+    if (!proof['@context']) {
+        return;
+    }
+    const proofContext = Array.isArray(proof['@context'])
+        ? proof['@context']
+        : [proof['@context']];
+    const docContext = Array.isArray(document['@context'])
+        ? document['@context']
+        : [document['@context']];
+    for (let i = 0; i < proofContext.length; i++) {
+        if (JSON.stringify(proofContext[i]) !== JSON.stringify(docContext[i])) {
+            throw new Error('document.@context does not start with proof.@context');
+        }
+    }
+    // Adopt proof @context for canonicalization
+    document['@context'] = proof['@context'];
+}
+export function createVerifyDataFn(mode) {
+    return async function (opts) {
+        const { cryptosuite, document, proof } = opts;
+        if (cryptosuite?.name !== NAME) {
+            throw new TypeError(`"cryptosuite.name" must be "${NAME}".`);
+        }
+        if (mode === 'sign') {
+            modifyForSign({ proof, document });
+        }
+        else {
+            modifyForVerify({ proof, document });
+        }
+        const [proofHash, docHash] = await Promise.all([
+            canonizeProof(proof, cryptosuite.canonize.bind(cryptosuite)).then(jcs => sha256({ string: jcs })),
+            cryptosuite.canonize(document).then(jcs => sha256({ string: jcs }))
+        ]);
+        return concat(proofHash, docHash);
+    };
+}
+//# sourceMappingURL=createVerifyData.js.map

package/dist/eddsa-jcs-2022/createVerifyData.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"createVerifyData.js","sourceRoot":"","sources":["../../src/eddsa-jcs-2022/createVerifyData.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,mBAAmB,CAAA;AAG1C,MAAM,IAAI,GAAG,gBAAgB,CAAA;AAE7B,SAAS,MAAM,CAAC,EAAc,EAAE,EAAc;IAC5C,MAAM,GAAG,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,MAAM,GAAG,EAAE,CAAC,MAAM,CAAC,CAAA;IACjD,GAAG,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC,CAAC,CAAA;IACd,GAAG,CAAC,GAAG,CAAC,EAAE,EAAE,EAAE,CAAC,MAAM,CAAC,CAAA;IACtB,OAAO,GAAG,CAAA;AACZ,CAAC;AAED,KAAK,UAAU,aAAa,CAC1B,YAAuB,EACvB,QAA6C;IAE7C,MAAM,KAAK,GAAG,EAAE,GAAG,YAAY,EAAE,CAAA;IACjC,OAAO,KAAK,CAAC,UAAU,CAAA;IACvB,OAAO,QAAQ,CAAC,KAAK,CAAC,CAAA;AACxB,CAAC;AAED,8EAA8E;AAC9E,SAAS,aAAa,CAAC,EACrB,KAAK,EACL,QAAQ,EAIT;IACC,IAAI,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;QACzB,KAAK,CAAC,UAAU,CAAC,GAAG,QAAQ,CAAC,UAAU,CAAC,CAAA;IAC1C,CAAC;AACH,CAAC;AAED,2EAA2E;AAC3E,8DAA8D;AAC9D,EAAE;AACF,gFAAgF;AAChF,sEAAsE;AACtE,iFAAiF;AACjF,8EAA8E;AAC9E,8EAA8E;AAC9E,gFAAgF;AAChF,0BAA0B;AAC1B,SAAS,eAAe,CAAC,EACvB,KAAK,EACL,QAAQ,EAIT;IACC,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,EAAE,CAAC;QACvB,OAAM;IACR,CAAC;IACD,MAAM,YAAY,GAAG,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACnD,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC;QACnB,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAA;IACvB,MAAM,UAAU,GAAG,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;QACpD,CAAC,CAAC,QAAQ,CAAC,UAAU,CAAC;QACtB,CAAC,CAAC,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAA;IAE1B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,YAAY,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAC7C,IAAI,IAAI,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,KAAK,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YACtE,MAAM,IAAI,KAAK,CACb,sDAAsD,CACvD,CAAA;QACH,CAAC;IACH,CAAC;IACD,4CAA4C;IAC5C,QAAQ,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,UAAU,CAAC,CAAA;AAC1C,CAAC;AAID,MAAM,UAAU,kBAAkB,CAAC,IAAuB;IACxD,OAAO,KAAK,WAAW,IAAa;QAClC,MAAM,EAAE,WAAW,EAAE,QAAQ,EAAE,KAAK,EAAE,GAAG,IAIxC,CAAA;QACD,IAAI,WAAW,EAAE,IAAI,KAAK,IAAI,EAAE,CAAC;YAC/B,MAAM,IAAI,SAAS,CAAC,+BAA+B,IAAI,IAAI,CAAC,CAAA;QAC9D,CAAC;QAED,IAAI,IAAI,KAAK,MAAM,EAAE,CAAC;YACpB,aAAa,CAAC,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAA;QACpC,CAAC;aAAM,CAAC;YACN,eAAe,CAAC,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAA;QACtC,CAAC;QAED,MAAM,CAAC,SAAS,EAAE,OAAO,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;YAC7C,aAAa,CAAC,KAAK,EAAE,WAAW,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CACtE,MAAM,CAAC,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CACxB;YACD,WAAW,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,MAAM,CAAC,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;SACpE,CAAC,CAAA;QAEF,OAAO,MAAM,CAAC,SAAS,EAAE,OAAO,CAAC,CAAA;IACnC,CAAC,CAAA;AACH,CAAC"}

package/dist/eddsa-jcs-2022/index.d.ts

@@ -0,0 +1,21 @@
+import { canonize } from './canonize.js';
+import { createVerifier } from '../core/createVerifier.js';
+import { type CreateVerifyDataFn } from './createVerifyData.js';
+import type { CryptosuiteLike } from '@digitalbazaar/data-integrity';
+export interface JcsSignCryptosuite extends CryptosuiteLike {
+    name: string;
+    canonize: typeof canonize;
+    requiredAlgorithm: string;
+    createVerifier: () => never;
+    createVerifyData: CreateVerifyDataFn;
+}
+export interface JcsVerifyCryptosuite extends CryptosuiteLike {
+    name: string;
+    canonize: typeof canonize;
+    requiredAlgorithm: string;
+    createVerifier: typeof createVerifier;
+    createVerifyData: CreateVerifyDataFn;
+}
+export declare function createSignCryptosuite(): JcsSignCryptosuite;
+export declare function createVerifyCryptosuite(): JcsVerifyCryptosuite;
+//# sourceMappingURL=index.d.ts.map

package/dist/eddsa-jcs-2022/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/eddsa-jcs-2022/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAA;AACxC,OAAO,EAAE,cAAc,EAAE,MAAM,2BAA2B,CAAA;AAE1D,OAAO,EAAsB,KAAK,kBAAkB,EAAE,MAAM,uBAAuB,CAAA;AACnF,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,+BAA+B,CAAA;AAWpE,MAAM,WAAW,kBAAmB,SAAQ,eAAe;IACzD,IAAI,EAAE,MAAM,CAAA;IACZ,QAAQ,EAAE,OAAO,QAAQ,CAAA;IACzB,iBAAiB,EAAE,MAAM,CAAA;IACzB,cAAc,EAAE,MAAM,KAAK,CAAA;IAC3B,gBAAgB,EAAE,kBAAkB,CAAA;CACrC;AAED,MAAM,WAAW,oBAAqB,SAAQ,eAAe;IAC3D,IAAI,EAAE,MAAM,CAAA;IACZ,QAAQ,EAAE,OAAO,QAAQ,CAAA;IACzB,iBAAiB,EAAE,MAAM,CAAA;IACzB,cAAc,EAAE,OAAO,cAAc,CAAA;IACrC,gBAAgB,EAAE,kBAAkB,CAAA;CACrC;AAED,wBAAgB,qBAAqB,IAAI,kBAAkB,CAQ1D;AAED,wBAAgB,uBAAuB,IAAI,oBAAoB,CAQ9D"}

package/dist/eddsa-jcs-2022/index.js

@@ -0,0 +1,28 @@
+import { canonize } from './canonize.js';
+import { createVerifier } from '../core/createVerifier.js';
+import { requiredAlgorithm } from '../core/requiredAlgorithm.js';
+import { createVerifyDataFn } from './createVerifyData.js';
+const NAME = 'eddsa-jcs-2022';
+function throwSignUsageError() {
+    throw new Error('This cryptosuite must only be used with "sign". ' +
+        'Use createVerifyCryptosuite() for verification.');
+}
+export function createSignCryptosuite() {
+    return {
+        name: NAME,
+        canonize,
+        requiredAlgorithm,
+        createVerifier: throwSignUsageError,
+        createVerifyData: createVerifyDataFn('sign')
+    };
+}
+export function createVerifyCryptosuite() {
+    return {
+        name: NAME,
+        canonize,
+        requiredAlgorithm,
+        createVerifier,
+        createVerifyData: createVerifyDataFn('verify')
+    };
+}
+//# sourceMappingURL=index.js.map

package/dist/eddsa-jcs-2022/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/eddsa-jcs-2022/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAA;AACxC,OAAO,EAAE,cAAc,EAAE,MAAM,2BAA2B,CAAA;AAC1D,OAAO,EAAE,iBAAiB,EAAE,MAAM,8BAA8B,CAAA;AAChE,OAAO,EAAE,kBAAkB,EAA2B,MAAM,uBAAuB,CAAA;AAGnF,MAAM,IAAI,GAAG,gBAAgB,CAAA;AAE7B,SAAS,mBAAmB;IAC1B,MAAM,IAAI,KAAK,CACb,kDAAkD;QAChD,iDAAiD,CACpD,CAAA;AACH,CAAC;AAkBD,MAAM,UAAU,qBAAqB;IACnC,OAAO;QACL,IAAI,EAAE,IAAI;QACV,QAAQ;QACR,iBAAiB;QACjB,cAAc,EAAE,mBAAmB;QACnC,gBAAgB,EAAE,kBAAkB,CAAC,MAAM,CAAC;KAC7C,CAAA;AACH,CAAC;AAED,MAAM,UAAU,uBAAuB;IACrC,OAAO;QACL,IAAI,EAAE,IAAI;QACV,QAAQ;QACR,iBAAiB;QACjB,cAAc;QACd,gBAAgB,EAAE,kBAAkB,CAAC,QAAQ,CAAC;KAC/C,CAAA;AACH,CAAC"}

package/dist/eddsa-rdfc-2022/canonize.d.ts

@@ -0,0 +1,2 @@
+export declare function canonize(input: unknown, options?: unknown): Promise<string>;
+//# sourceMappingURL=canonize.d.ts.map

package/dist/eddsa-rdfc-2022/canonize.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"canonize.d.ts","sourceRoot":"","sources":["../../src/eddsa-rdfc-2022/canonize.ts"],"names":[],"mappings":"AAGA,wBAAsB,QAAQ,CAC5B,KAAK,EAAE,OAAO,EACd,OAAO,CAAC,EAAE,OAAO,GAChB,OAAO,CAAC,MAAM,CAAC,CAajB"}

package/dist/eddsa-rdfc-2022/canonize.js

@@ -0,0 +1,17 @@
+import * as rdfCanonize from 'rdf-canonize';
+import jsonld from '@interop/jsonld';
+export async function canonize(input, options) {
+    const opts = {
+        algorithm: 'RDFC-1.0',
+        format: 'application/n-quads',
+        base: null,
+        safe: true,
+        ...options,
+        rdfDirection: 'i18n-datatype',
+        produceGeneralizedRdf: false
+    };
+    const { format, ...rdfOpts } = opts;
+    const dataset = await jsonld.toRDF(input, rdfOpts);
+    return rdfCanonize.canonize(dataset, { algorithm: 'RDFC-1.0', format });
+}
+//# sourceMappingURL=canonize.js.map

package/dist/eddsa-rdfc-2022/canonize.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"canonize.js","sourceRoot":"","sources":["../../src/eddsa-rdfc-2022/canonize.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,WAAW,MAAM,cAAc,CAAA;AAC3C,OAAO,MAAM,MAAM,iBAAiB,CAAA;AAEpC,MAAM,CAAC,KAAK,UAAU,QAAQ,CAC5B,KAAc,EACd,OAAiB;IAEjB,MAAM,IAAI,GAA4B;QACpC,SAAS,EAAE,UAAU;QACrB,MAAM,EAAE,qBAAqB;QAC7B,IAAI,EAAE,IAAI;QACV,IAAI,EAAE,IAAI;QACV,GAAI,OAA+C;QACnD,YAAY,EAAE,eAAe;QAC7B,qBAAqB,EAAE,KAAK;KAC7B,CAAA;IACD,MAAM,EAAE,MAAM,EAAE,GAAG,OAAO,EAAE,GAAG,IAAI,CAAA;IACnC,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,KAAK,CAAC,KAAK,EAAE,OAAO,CAAC,CAAA;IAClD,OAAO,WAAW,CAAC,QAAQ,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,EAAE,CAAC,CAAA;AACzE,CAAC"}

package/dist/eddsa-rdfc-2022/index.d.ts

@@ -0,0 +1,9 @@
+import { canonize } from './canonize.js';
+import { createVerifier } from '../core/createVerifier.js';
+export declare const eddsaRdfc2022: {
+    canonize: typeof canonize;
+    createVerifier: typeof createVerifier;
+    name: string;
+    requiredAlgorithm: string;
+};
+//# sourceMappingURL=index.d.ts.map

package/dist/eddsa-rdfc-2022/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/eddsa-rdfc-2022/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAA;AACxC,OAAO,EAAE,cAAc,EAAE,MAAM,2BAA2B,CAAA;AAG1D,eAAO,MAAM,aAAa;;;;;CAKzB,CAAA"}

package/dist/eddsa-rdfc-2022/index.js

@@ -0,0 +1,10 @@
+import { canonize } from './canonize.js';
+import { createVerifier } from '../core/createVerifier.js';
+import { requiredAlgorithm } from '../core/requiredAlgorithm.js';
+export const eddsaRdfc2022 = {
+    canonize,
+    createVerifier,
+    name: 'eddsa-rdfc-2022',
+    requiredAlgorithm
+};
+//# sourceMappingURL=index.js.map

package/dist/eddsa-rdfc-2022/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/eddsa-rdfc-2022/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAA;AACxC,OAAO,EAAE,cAAc,EAAE,MAAM,2BAA2B,CAAA;AAC1D,OAAO,EAAE,iBAAiB,EAAE,MAAM,8BAA8B,CAAA;AAEhE,MAAM,CAAC,MAAM,aAAa,GAAG;IAC3B,QAAQ;IACR,cAAc;IACd,IAAI,EAAE,iBAAiB;IACvB,iBAAiB;CAClB,CAAA"}

package/dist/index.d.ts

@@ -0,0 +1,6 @@
+export { Ed25519Signature2020, suiteContext } from './ed25519-signature-2020/index.js';
+export { eddsaRdfc2022 } from './eddsa-rdfc-2022/index.js';
+export { createSignCryptosuite, createVerifyCryptosuite } from './eddsa-jcs-2022/index.js';
+export { createSigner, ensureSignerAlgorithm } from './core/createSigner.js';
+export { createVerifier } from './core/createVerifier.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,oBAAoB,EAAE,YAAY,EAAE,MAAM,mCAAmC,CAAA;AACtF,OAAO,EAAE,aAAa,EAAE,MAAM,4BAA4B,CAAA;AAC1D,OAAO,EAAE,qBAAqB,EAAE,uBAAuB,EAAE,MAAM,2BAA2B,CAAA;AAC1F,OAAO,EAAE,YAAY,EAAE,qBAAqB,EAAE,MAAM,wBAAwB,CAAA;AAC5E,OAAO,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAA"}

package/dist/index.js

@@ -0,0 +1,6 @@
+export { Ed25519Signature2020, suiteContext } from './ed25519-signature-2020/index.js';
+export { eddsaRdfc2022 } from './eddsa-rdfc-2022/index.js';
+export { createSignCryptosuite, createVerifyCryptosuite } from './eddsa-jcs-2022/index.js';
+export { createSigner, ensureSignerAlgorithm } from './core/createSigner.js';
+export { createVerifier } from './core/createVerifier.js';
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,oBAAoB,EAAE,YAAY,EAAE,MAAM,mCAAmC,CAAA;AACtF,OAAO,EAAE,aAAa,EAAE,MAAM,4BAA4B,CAAA;AAC1D,OAAO,EAAE,qBAAqB,EAAE,uBAAuB,EAAE,MAAM,2BAA2B,CAAA;AAC1F,OAAO,EAAE,YAAY,EAAE,qBAAqB,EAAE,MAAM,wBAAwB,CAAA;AAC5E,OAAO,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAA"}

package/package.json

@@ -0,0 +1,97 @@
+{
+  "name": "@interop/ed25519-signature",
+  "version": "6.0.0",
+  "description": "Ed25519 Linked Data / Data Integrity signature suites (Ed25519Signature2020, eddsa-rdfc-2022, eddsa-jcs-2022) in TypeScript.",
+  "type": "module",
+  "sideEffects": false,
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "default": "./dist/index.js"
+    },
+    "./ed25519-signature-2020": {
+      "types": "./dist/ed25519-signature-2020/index.d.ts",
+      "default": "./dist/ed25519-signature-2020/index.js"
+    },
+    "./eddsa-rdfc-2022": {
+      "types": "./dist/eddsa-rdfc-2022/index.d.ts",
+      "default": "./dist/eddsa-rdfc-2022/index.js"
+    },
+    "./eddsa-jcs-2022": {
+      "types": "./dist/eddsa-jcs-2022/index.d.ts",
+      "default": "./dist/eddsa-jcs-2022/index.js"
+    }
+  },
+  "browser": {
+    "./dist/core/sha256.js": "./dist/core/sha256-browser.js"
+  },
+  "module": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "files": [
+    "dist",
+    "CHANGELOG.md",
+    "README.md",
+    "LICENSE"
+  ],
+  "scripts": {
+    "build": "pnpm run clear && tsc",
+    "clear": "rimraf dist/*",
+    "dev": "vite",
+    "fix": "eslint --fix src test && pnpm run format",
+    "format": "prettier --write \"src/**/*.ts\" \"test/**/*.ts\"",
+    "lint": "eslint src test",
+    "typecheck": "tsc -p tsconfig.dev.json --noEmit",
+    "prepare": "pnpm run build",
+    "rebuild": "pnpm run clear && pnpm run build",
+    "test": "pnpm run lint && pnpm run typecheck && pnpm run test-node",
+    "test-browser": "playwright test",
+    "test-node": "vitest run",
+    "test-coverage": "vitest run --coverage"
+  },
+  "homepage": "https://github.com/interop-alliance/ed25519-signature",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/interop-alliance/ed25519-signature.git"
+  },
+  "license": "BSD-3-Clause",
+  "dependencies": {
+    "@digitalbazaar/data-integrity": "^2.5.0",
+    "@interop/ed25519-verification-key": "^6.2.0",
+    "@interop/jsonld": "^9.0.2",
+    "canonicalize": "^2.0.0",
+    "ed25519-signature-2020-context": "^1.1.0",
+    "rdf-canonize": "^5.0.0"
+  },
+  "peerDependencies": {
+    "@interop/jsonld-signatures": "^11.6.2"
+  },
+  "peerDependenciesMeta": {
+    "@interop/jsonld-signatures": {
+      "optional": true
+    }
+  },
+  "devDependencies": {
+    "@interop/security-document-loader": "^9.0.0",
+    "@eslint/js": "^10.0.1",
+    "@interop/jsonld-signatures": "^11.6.2",
+    "@playwright/test": "^1.60.0",
+    "@types/node": "^25.9.1",
+    "@vitest/coverage-v8": "^4.1.7",
+    "eslint": "^10.4.0",
+    "eslint-config-prettier": "^10.1.8",
+    "globals": "^17.6.0",
+    "prettier": "^3.8.3",
+    "rimraf": "^6.1.3",
+    "typescript": "^5.5.0",
+    "typescript-eslint": "^8.59.4",
+    "vite": "^8.0.14",
+    "vitest": "^4.1.7"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "packageManager": "pnpm@11.3.0",
+  "engines": {
+    "node": ">=24.0"
+  }
+}