@ledgerhq/ledger-key-ring-protocol 0.5.1-nightly.0

package/lib-es/qrcode/cipher.js

@@ -0,0 +1,61 @@
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+import Base64 from "base64-js";
+import { crypto } from "@ledgerhq/hw-ledger-key-ring-protocol";
+import { InvalidEncryptionKeyError } from "../errors";
+export function makeCipher(sessionEncryptionKey) {
+    function encrypt(obj) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const plaintext = JSON.stringify(obj);
+            const data = new TextEncoder().encode(plaintext);
+            const nonce = yield crypto.randomBytes(16);
+            const ciphertext = yield crypto.encrypt(sessionEncryptionKey, nonce, data);
+            const blob = new Uint8Array(nonce.length + ciphertext.length);
+            blob.set(nonce);
+            blob.set(ciphertext, nonce.length);
+            return Base64.fromByteArray(blob);
+        });
+    }
+    function decrypt(data) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const blob = Base64.toByteArray(data);
+            const nonce = blob.slice(0, 16);
+            const ciphertext = blob.slice(16);
+            try {
+                const plaintext = yield crypto.decrypt(sessionEncryptionKey, nonce, ciphertext);
+                const text = new TextDecoder().decode(plaintext);
+                return JSON.parse(text);
+            }
+            catch (e) {
+                throw new InvalidEncryptionKeyError("data can't be decrypted");
+            }
+        });
+    }
+    return { encrypt, decrypt };
+}
+export function makeMessageCipher(cipher) {
+    function encryptMessagePayload(payload) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const encrypted = yield cipher.encrypt(payload);
+            return { encrypted };
+        });
+    }
+    function decryptMessage(message) {
+        return __awaiter(this, void 0, void 0, function* () {
+            if (message.message === "InitiateHandshake" || message.message === "Failure") {
+                throw new Error(message.message + " is not encrypted");
+            }
+            const decrypted = (yield cipher.decrypt(message.payload.encrypted));
+            return decrypted;
+        });
+    }
+    return { encryptMessagePayload, decryptMessage };
+}
+//# sourceMappingURL=cipher.js.map

package/lib-es/qrcode/cipher.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cipher.js","sourceRoot":"","sources":["../../src/qrcode/cipher.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,MAAM,MAAM,WAAW,CAAC;AAC/B,OAAO,EAAE,MAAM,EAAE,MAAM,uCAAuC,CAAC;AAE/D,OAAO,EAAE,yBAAyB,EAAE,MAAM,WAAW,CAAC;AActD,MAAM,UAAU,UAAU,CAAC,oBAAgC;IACzD,SAAe,OAAO,CAAC,GAAW;;YAChC,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;YACtC,MAAM,IAAI,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;YACjD,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC;YAC3C,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,oBAAoB,EAAE,KAAK,EAAE,IAAI,CAAC,CAAC;YAC3E,MAAM,IAAI,GAAG,IAAI,UAAU,CAAC,KAAK,CAAC,MAAM,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC;YAC9D,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;YAChB,IAAI,CAAC,GAAG,CAAC,UAAU,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC;YACnC,OAAO,MAAM,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC;QACpC,CAAC;KAAA;IAED,SAAe,OAAO,CAAC,IAAY;;YACjC,MAAM,IAAI,GAAG,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;YACtC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAChC,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YAClC,IAAI,CAAC;gBACH,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,oBAAoB,EAAE,KAAK,EAAE,UAAU,CAAC,CAAC;gBAChF,MAAM,IAAI,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;gBACjD,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YAC1B,CAAC;YAAC,OAAO,CAAC,EAAE,CAAC;gBACX,MAAM,IAAI,yBAAyB,CAAC,yBAAyB,CAAC,CAAC;YACjE,CAAC;QACH,CAAC;KAAA;IAED,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,CAAC;AAC9B,CAAC;AAED,MAAM,UAAU,iBAAiB,CAAC,MAAc;IAC9C,SAAe,qBAAqB,CAClC,OAAU;;YAEV,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;YAChD,OAAO,EAAE,SAAS,EAAE,CAAC;QACvB,CAAC;KAAA;IAED,SAAe,cAAc,CAAoB,OAAU;;YACzD,IAAI,OAAO,CAAC,OAAO,KAAK,mBAAmB,IAAI,OAAO,CAAC,OAAO,KAAK,SAAS,EAAE,CAAC;gBAC7E,MAAM,IAAI,KAAK,CAAC,OAAO,CAAC,OAAO,GAAG,mBAAmB,CAAC,CAAC;YACzD,CAAC;YACD,MAAM,SAAS,GAAG,CAAC,MAAM,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,SAAS,CAAC,CAAwB,CAAC;YAC3F,OAAO,SAAS,CAAC;QACnB,CAAC;KAAA;IAED,OAAO,EAAE,qBAAqB,EAAE,cAAc,EAAE,CAAC;AACnD,CAAC"}

package/lib-es/qrcode/cipher.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=cipher.test.d.ts.map

package/lib-es/qrcode/cipher.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cipher.test.d.ts","sourceRoot":"","sources":["../../src/qrcode/cipher.test.ts"],"names":[],"mappings":""}

package/lib-es/qrcode/cipher.test.js

@@ -0,0 +1,38 @@
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+import { crypto } from "@ledgerhq/hw-ledger-key-ring-protocol";
+import { makeCipher } from "./cipher";
+import { InvalidEncryptionKeyError } from "../errors";
+describe("makeCipher", () => {
+    it("should encrypt and decrypt correctly", () => __awaiter(void 0, void 0, void 0, function* () {
+        const ephemeralKey = yield crypto.randomKeypair();
+        const candidate = yield crypto.randomKeypair();
+        const sessionEncryptionKey = yield crypto.ecdh(ephemeralKey, candidate.publicKey);
+        const cipher = makeCipher(sessionEncryptionKey);
+        const plaintext = { message: "Hello, World!" };
+        const encrypted = yield cipher.encrypt(plaintext);
+        expect(typeof encrypted).toBe("string");
+        const decrypted = yield cipher.decrypt(encrypted);
+        expect(decrypted).toEqual(plaintext);
+    }));
+    it("should throw InvalidEncryptionKeyError if key changes", () => __awaiter(void 0, void 0, void 0, function* () {
+        const ephemeralKey = yield crypto.randomKeypair();
+        const candidate = yield crypto.randomKeypair();
+        const sessionEncryptionKey = yield crypto.ecdh(ephemeralKey, candidate.publicKey);
+        const cipher = makeCipher(sessionEncryptionKey);
+        const plaintext = { message: "Hello, World!" };
+        const encrypted = yield cipher.encrypt(plaintext);
+        const ephemeralKey2 = yield crypto.randomKeypair();
+        const otherSessionEncryptionKey = yield crypto.ecdh(ephemeralKey2, candidate.publicKey);
+        const cipher2 = makeCipher(otherSessionEncryptionKey);
+        expect(cipher2.decrypt(encrypted)).rejects.toThrow(InvalidEncryptionKeyError);
+    }));
+});
+//# sourceMappingURL=cipher.test.js.map

package/lib-es/qrcode/cipher.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cipher.test.js","sourceRoot":"","sources":["../../src/qrcode/cipher.test.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,uCAAuC,CAAC;AAC/D,OAAO,EAAE,UAAU,EAAE,MAAM,UAAU,CAAC;AACtC,OAAO,EAAE,yBAAyB,EAAE,MAAM,WAAW,CAAC;AAEtD,QAAQ,CAAC,YAAY,EAAE,GAAG,EAAE;IAC1B,EAAE,CAAC,sCAAsC,EAAE,GAAS,EAAE;QACpD,MAAM,YAAY,GAAG,MAAM,MAAM,CAAC,aAAa,EAAE,CAAC;QAClD,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,aAAa,EAAE,CAAC;QAC/C,MAAM,oBAAoB,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,YAAY,EAAE,SAAS,CAAC,SAAS,CAAC,CAAC;QAClF,MAAM,MAAM,GAAG,UAAU,CAAC,oBAAoB,CAAC,CAAC;QAChD,MAAM,SAAS,GAAG,EAAE,OAAO,EAAE,eAAe,EAAE,CAAC;QAC/C,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QAClD,MAAM,CAAC,OAAO,SAAS,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACxC,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QAClD,MAAM,CAAC,SAAS,CAAC,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IACvC,CAAC,CAAA,CAAC,CAAC;IAEH,EAAE,CAAC,uDAAuD,EAAE,GAAS,EAAE;QACrE,MAAM,YAAY,GAAG,MAAM,MAAM,CAAC,aAAa,EAAE,CAAC;QAClD,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,aAAa,EAAE,CAAC;QAC/C,MAAM,oBAAoB,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,YAAY,EAAE,SAAS,CAAC,SAAS,CAAC,CAAC;QAClF,MAAM,MAAM,GAAG,UAAU,CAAC,oBAAoB,CAAC,CAAC;QAChD,MAAM,SAAS,GAAG,EAAE,OAAO,EAAE,eAAe,EAAE,CAAC;QAC/C,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QAClD,MAAM,aAAa,GAAG,MAAM,MAAM,CAAC,aAAa,EAAE,CAAC;QACnD,MAAM,yBAAyB,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,aAAa,EAAE,SAAS,CAAC,SAAS,CAAC,CAAC;QACxF,MAAM,OAAO,GAAG,UAAU,CAAC,yBAAyB,CAAC,CAAC;QACtD,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,yBAAyB,CAAC,CAAC;IAChF,CAAC,CAAA,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/lib-es/qrcode/index.d.ts

@@ -0,0 +1,70 @@
+import { MemberCredentials, Trustchain, TrustchainMember } from "../types";
+/**
+ * establish a channel to be able to add a member to the trustchain after displaying the QR Code
+ * @returns a promise that resolves when this is done
+ */
+export declare function createQRCodeHostInstance({ trustchainApiBaseUrl, onDisplayQRCode, onDisplayDigits, addMember, memberCredentials, memberName, initialTrustchainId, }: {
+    /**
+     * the base URL of the trustchain API
+     */
+    trustchainApiBaseUrl: string;
+    /**
+     * this function will need to display a UI to show the QR Code
+     */
+    onDisplayQRCode: (url: string) => void;
+    /**
+     * this function will need to display a UI to show the digits
+     */
+    onDisplayDigits: (digits: string) => void;
+    /**
+     * this function will need to using the TrustchainSDK (and use sdk.addMember)
+     */
+    addMember: (member: TrustchainMember) => Promise<Trustchain>;
+    /**
+     * the client credentials of the instance (given by TrustchainSDK)
+     */
+    memberCredentials: MemberCredentials;
+    /**
+     * the name of the member
+     */
+    memberName: string;
+    /**
+     * if the member already has a trustchain, this will be defined
+     */
+    initialTrustchainId?: string;
+}): Promise<Trustchain | void>;
+/**
+ * establish a channel to be able to add myself to the trustchain after scanning the QR Code
+ * @returns a promise that resolves a Trustchain when this is done
+ */
+export declare function createQRCodeCandidateInstance({ memberCredentials, memberName, addMember, initialTrustchainId, scannedUrl, onRequestQRCodeInput, }: {
+    /**
+     * the client credentials of the instance (given by TrustchainSDK)
+     */
+    memberCredentials: MemberCredentials;
+    /**
+     * the name of the member
+     */
+    memberName: string;
+    /**
+     * if the member already has a trustchain, this will be defined
+     */
+    initialTrustchainId?: string;
+    /**
+     * this function will need to using the TrustchainSDK (and use sdk.addMember)
+     */
+    addMember: (member: TrustchainMember) => Promise<Trustchain>;
+    /**
+     * the scanned URL that contains the host public key
+     */
+    scannedUrl: string;
+    /**
+     * this function will need to display a UI to ask the user to input the digits
+     * and then call the callback with the digits
+     */
+    onRequestQRCodeInput: (config: {
+        digits: number;
+        connected: boolean;
+    }, callback: (digits: string) => void) => void;
+}): Promise<Trustchain | void>;
+//# sourceMappingURL=index.d.ts.map

package/lib-es/qrcode/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/qrcode/index.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,iBAAiB,EAAE,UAAU,EAAE,gBAAgB,EAAE,MAAM,UAAU,CAAC;AA8F3E;;;GAGG;AACH,wBAAsB,wBAAwB,CAAC,EAC7C,oBAAoB,EACpB,eAAe,EACf,eAAe,EACf,SAAS,EACT,iBAAiB,EACjB,UAAU,EACV,mBAAmB,GACpB,EAAE;IACD;;OAEG;IACH,oBAAoB,EAAE,MAAM,CAAC;IAC7B;;OAEG;IACH,eAAe,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,IAAI,CAAC;IACvC;;OAEG;IACH,eAAe,EAAE,CAAC,MAAM,EAAE,MAAM,KAAK,IAAI,CAAC;IAC1C;;OAEG;IACH,SAAS,EAAE,CAAC,MAAM,EAAE,gBAAgB,KAAK,OAAO,CAAC,UAAU,CAAC,CAAC;IAC7D;;OAEG;IACH,iBAAiB,EAAE,iBAAiB,CAAC;IACrC;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;IACnB;;OAEG;IACH,mBAAmB,CAAC,EAAE,MAAM,CAAC;CAC9B,GAAG,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC,CAsF7B;AAED;;;GAGG;AACH,wBAAsB,6BAA6B,CAAC,EAClD,iBAAiB,EACjB,UAAU,EACV,SAAS,EACT,mBAAmB,EACnB,UAAU,EACV,oBAAoB,GACrB,EAAE;IACD;;OAEG;IACH,iBAAiB,EAAE,iBAAiB,CAAC;IACrC;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;IACnB;;OAEG;IACH,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B;;OAEG;IACH,SAAS,EAAE,CAAC,MAAM,EAAE,gBAAgB,KAAK,OAAO,CAAC,UAAU,CAAC,CAAC;IAC7D;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;IACnB;;;OAGG;IACH,oBAAoB,EAAE,CACpB,MAAM,EAAE;QACN,MAAM,EAAE,MAAM,CAAC;QACf,SAAS,EAAE,OAAO,CAAC;KACpB,EACD,QAAQ,EAAE,CAAC,MAAM,EAAE,MAAM,KAAK,IAAI,KAC/B,IAAI,CAAC;CACX,GAAG,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC,CA8E7B"}

package/lib-es/qrcode/index.js

@@ -0,0 +1,304 @@
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+import { Permissions, crypto } from "@ledgerhq/hw-ledger-key-ring-protocol";
+import WebSocket from "isomorphic-ws";
+import { makeCipher, makeMessageCipher } from "./cipher";
+import { InvalidDigitsError, NoTrustchainInitialized, QRCodeWSClosed, ScannedInvalidQrCode, ScannedOldImportQrCode, TrustchainAlreadyInitialized, } from "../errors";
+import { log } from "@ledgerhq/logs";
+const version = 1;
+const CLOSE_TIMEOUT = 100; // just enough time for the onerror to appear before onclose
+const commonSwitch = (_a) => __awaiter(void 0, [_a], void 0, function* ({ data, cipher, addMember, send, publisher, resolve, memberCredentials, memberName, reject, ws, setFinished, initialTrustchainId, }) {
+    switch (data.message) {
+        case "TrustchainShareCredential": {
+            if (!initialTrustchainId) {
+                const payload = {
+                    type: "UNEXPECTED_SHARE_CREDENTIAL",
+                    message: "unexpected share credential",
+                };
+                send({ version, publisher, message: "Failure", payload });
+                throw new NoTrustchainInitialized("unexpected share credential");
+            }
+            setFinished(true);
+            if (!cipher) {
+                throw new Error("sessionEncryptionKey not set");
+            }
+            const { id, name } = yield cipher.decryptMessage(data);
+            const trustchain = yield addMember({ id, name, permissions: Permissions.OWNER });
+            const payload = yield cipher.encryptMessagePayload({ trustchain });
+            send({ version, publisher, message: "TrustchainAddedMember", payload });
+            resolve();
+            break;
+        }
+        case "TrustchainRequestCredential": {
+            if (initialTrustchainId) {
+                const payload = {
+                    type: "UNEXPECTED_REQUEST_CREDENTIAL",
+                    message: initialTrustchainId,
+                };
+                send({ version, publisher, message: "Failure", payload });
+                throw new TrustchainAlreadyInitialized(initialTrustchainId);
+            }
+            const payload = yield cipher.encryptMessagePayload({
+                id: memberCredentials.pubkey,
+                name: memberName,
+            });
+            send({ version, publisher, message: "TrustchainShareCredential", payload });
+            break;
+        }
+        case "TrustchainAddedMember": {
+            setFinished(true);
+            const { trustchain } = yield cipher.decryptMessage(data);
+            resolve(trustchain);
+            ws.close();
+            break;
+        }
+        case "Failure": {
+            setFinished(true);
+            log("trustchain/qrcode", "Failure", { data });
+            const error = fromErrorMessage(data.payload);
+            reject(error);
+            ws.close();
+            break;
+        }
+        case "HandshakeChallenge":
+        case "HandshakeCompletionSucceeded":
+        case "InitiateHandshake":
+        case "CompleteHandshakeChallenge":
+            break;
+        default:
+            throw new Error("unexpected message");
+    }
+});
+/**
+ * establish a channel to be able to add a member to the trustchain after displaying the QR Code
+ * @returns a promise that resolves when this is done
+ */
+export function createQRCodeHostInstance(_a) {
+    return __awaiter(this, arguments, void 0, function* ({ trustchainApiBaseUrl, onDisplayQRCode, onDisplayDigits, addMember, memberCredentials, memberName, initialTrustchainId, }) {
+        const ephemeralKey = yield crypto.randomKeypair();
+        const publisher = crypto.to_hex(ephemeralKey.publicKey);
+        const url = `${trustchainApiBaseUrl.replace("http", "ws")}/v1/qr?host=${publisher}`;
+        const ws = new WebSocket(url);
+        function send(message) {
+            ws.send(JSON.stringify(message));
+        }
+        let sessionEncryptionKey;
+        let cipher;
+        let expectedDigits;
+        let finished = false;
+        const setFinished = newValue => (finished = newValue);
+        onDisplayQRCode(url);
+        return new Promise((resolve, reject) => {
+            const startedAt = Date.now();
+            ws.addEventListener("error", reject);
+            ws.addEventListener("close", () => {
+                if (finished)
+                    return;
+                // this error would reflect a protocol error. because otherwise, we would get the "error" event.
+                const time = Date.now() - startedAt;
+                reject(new QRCodeWSClosed("qrcode websocket prematurely closed", { time }));
+            });
+            ws.addEventListener("message", (e) => __awaiter(this, void 0, void 0, function* () {
+                try {
+                    const data = parseMessage(e.data);
+                    switch (data.message) {
+                        case "InitiateHandshake": {
+                            const candidatePublicKey = crypto.from_hex(data.payload.ephemeral_public_key);
+                            sessionEncryptionKey = yield crypto.ecdh(ephemeralKey, candidatePublicKey);
+                            cipher = makeMessageCipher(makeCipher(sessionEncryptionKey));
+                            // --- end of handshake first phase ---
+                            const digitsCount = 3;
+                            const digits = yield randomDigits(digitsCount);
+                            expectedDigits = digits;
+                            onDisplayDigits(digits);
+                            const payload = yield cipher.encryptMessagePayload({
+                                digits: digitsCount,
+                                connected: false,
+                            });
+                            send({ version, publisher, message: "HandshakeChallenge", payload });
+                            break;
+                        }
+                        case "CompleteHandshakeChallenge": {
+                            if (!cipher) {
+                                throw new Error("sessionEncryptionKey not set");
+                            }
+                            const { digits } = yield cipher.decryptMessage(data);
+                            if (digits !== expectedDigits) {
+                                console.warn("User invalid digits", { digits, expectedDigits });
+                                const payload = {
+                                    type: "HANDSHAKE_COMPLETION_FAILED",
+                                    message: "invalid digits",
+                                };
+                                send({ version, publisher, message: "Failure", payload });
+                                throw new InvalidDigitsError("invalid digits");
+                            }
+                            const payload = yield cipher.encryptMessagePayload({});
+                            send({ version, publisher, message: "HandshakeCompletionSucceeded", payload });
+                            break;
+                        }
+                    }
+                    yield commonSwitch({
+                        data,
+                        cipher,
+                        addMember,
+                        send,
+                        publisher,
+                        resolve,
+                        memberCredentials,
+                        memberName,
+                        reject,
+                        ws,
+                        setFinished,
+                        initialTrustchainId,
+                    });
+                }
+                catch (e) {
+                    console.error("socket error", e);
+                    ws.close();
+                    reject(e);
+                }
+            }));
+        });
+    });
+}
+/**
+ * establish a channel to be able to add myself to the trustchain after scanning the QR Code
+ * @returns a promise that resolves a Trustchain when this is done
+ */
+export function createQRCodeCandidateInstance(_a) {
+    return __awaiter(this, arguments, void 0, function* ({ memberCredentials, memberName, addMember, initialTrustchainId, scannedUrl, onRequestQRCodeInput, }) {
+        const m = scannedUrl.match(/host=([0-9A-Fa-f]+)/);
+        if (!m) {
+            if (isFromOldAccountsImport(scannedUrl))
+                throw new ScannedOldImportQrCode();
+            throw new ScannedInvalidQrCode();
+        }
+        const hostPublicKey = crypto.from_hex(m[1]);
+        const ephemeralKey = yield crypto.randomKeypair();
+        const publisher = crypto.to_hex(ephemeralKey.publicKey);
+        const sessionEncryptionKey = yield crypto.ecdh(ephemeralKey, hostPublicKey);
+        const cipher = makeMessageCipher(makeCipher(sessionEncryptionKey));
+        const ws = new WebSocket(scannedUrl);
+        function send(message) {
+            ws.send(JSON.stringify(message));
+        }
+        let finished = false;
+        const setFinished = newValue => (finished = newValue);
+        return new Promise((resolve, reject) => {
+            ws.addEventListener("close", () => {
+                if (finished)
+                    return;
+                // this error would reflect a protocol error. because otherwise, we would get the "error" event. it shouldn't be visible to user, but we use it to ensure the promise ends.
+                setTimeout(() => reject(new Error("qrcode websocket prematurely closed")), CLOSE_TIMEOUT);
+            });
+            ws.addEventListener("message", (e) => __awaiter(this, void 0, void 0, function* () {
+                try {
+                    const data = parseMessage(e.data);
+                    switch (data.message) {
+                        case "HandshakeChallenge": {
+                            const config = yield cipher.decryptMessage(data);
+                            onRequestQRCodeInput(config, digits => {
+                                cipher.encryptMessagePayload({ digits }).then(payload => {
+                                    send({ version, publisher, message: "CompleteHandshakeChallenge", payload });
+                                });
+                            });
+                            break;
+                        }
+                        case "HandshakeCompletionSucceeded": {
+                            if (initialTrustchainId) {
+                                const payload = yield cipher.encryptMessagePayload({});
+                                send({ version, publisher, message: "TrustchainRequestCredential", payload });
+                            }
+                            else {
+                                const payload = yield cipher.encryptMessagePayload({
+                                    id: memberCredentials.pubkey,
+                                    name: memberName,
+                                });
+                                send({ version, publisher, message: "TrustchainShareCredential", payload });
+                            }
+                            break;
+                        }
+                    }
+                    yield commonSwitch({
+                        data,
+                        cipher,
+                        addMember,
+                        send,
+                        publisher,
+                        resolve,
+                        memberCredentials,
+                        memberName,
+                        reject,
+                        ws,
+                        setFinished,
+                        initialTrustchainId,
+                    });
+                }
+                catch (e) {
+                    console.error("socket error", e);
+                    ws.close();
+                    reject(e);
+                }
+            }));
+            ws.addEventListener("error", reject);
+            ws.addEventListener("open", () => {
+                const payload = { ephemeral_public_key: crypto.to_hex(ephemeralKey.publicKey) };
+                send({ version, publisher, message: "InitiateHandshake", payload });
+            });
+        });
+    });
+}
+function randomDigits(count) {
+    return __awaiter(this, void 0, void 0, function* () {
+        const bytes = yield crypto.randomBytes(count);
+        let digits = "";
+        for (let i = 0; i < count; i++) {
+            digits += (bytes[i] % 10).toString();
+        }
+        return digits;
+    });
+}
+function parseMessage(e) {
+    const message = JSON.parse(e.toString());
+    if (!message || typeof message !== "object") {
+        throw new Error("invalid message");
+    }
+    if (message.version !== 1) {
+        throw new Error("invalid version");
+    }
+    if (typeof message.publisher !== "string") {
+        throw new Error("invalid publisher");
+    }
+    if (typeof message.message !== "string") {
+        throw new Error("invalid message");
+    }
+    if (typeof message.payload !== "object") {
+        throw new Error("invalid payload");
+    }
+    return message;
+}
+function fromErrorMessage(payload) {
+    if (payload.type === "HANDSHAKE_COMPLETION_FAILED") {
+        throw new InvalidDigitsError(payload.message);
+    }
+    if (payload.type === "UNEXPECTED_SHARE_CREDENTIAL") {
+        throw new NoTrustchainInitialized(payload.message);
+    }
+    if (payload.type === "UNEXPECTED_REQUEST_CREDENTIAL") {
+        throw new TrustchainAlreadyInitialized(payload.message);
+    }
+    const error = new Error(payload.message);
+    error.name = "TrustchainQRCode-" + payload.type;
+    return error;
+}
+function isFromOldAccountsImport(scannedUrl) {
+    return !!scannedUrl.match(/^[A-Za-z0-9+/=]*$/);
+}
+//# sourceMappingURL=index.js.map

package/lib-es/qrcode/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/qrcode/index.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,EAAE,MAAM,uCAAuC,CAAC;AAC5E,OAAO,SAAS,MAAM,eAAe,CAAC;AAEtC,OAAO,EAAE,UAAU,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAC;AAEzD,OAAO,EACL,kBAAkB,EAClB,uBAAuB,EACvB,cAAc,EACd,oBAAoB,EACpB,sBAAsB,EACtB,4BAA4B,GAC7B,MAAM,WAAW,CAAC;AACnB,OAAO,EAAE,GAAG,EAAE,MAAM,gBAAgB,CAAC;AAErC,MAAM,OAAO,GAAG,CAAC,CAAC;AAElB,MAAM,aAAa,GAAG,GAAG,CAAC,CAAC,4DAA4D;AAEvF,MAAM,YAAY,GAAG,KAalB,EAAE,4CAbuB,EAC1B,IAAI,EACJ,MAAM,EACN,SAAS,EACT,IAAI,EACJ,SAAS,EACT,OAAO,EACP,iBAAiB,EACjB,UAAU,EACV,MAAM,EACN,EAAE,EACF,WAAW,EACX,mBAAmB,GACpB;IACC,QAAQ,IAAI,CAAC,OAAO,EAAE,CAAC;QACrB,KAAK,2BAA2B,CAAC,CAAC,CAAC;YACjC,IAAI,CAAC,mBAAmB,EAAE,CAAC;gBACzB,MAAM,OAAO,GAAG;oBACd,IAAI,EAAE,6BAA6B;oBACnC,OAAO,EAAE,6BAA6B;iBACvC,CAAC;gBACF,IAAI,CAAC,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,CAAC,CAAC;gBAC1D,MAAM,IAAI,uBAAuB,CAAC,6BAA6B,CAAC,CAAC;YACnE,CAAC;YACD,WAAW,CAAC,IAAI,CAAC,CAAC;YAClB,IAAI,CAAC,MAAM,EAAE,CAAC;gBACZ,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;YAClD,CAAC;YACD,MAAM,EAAE,EAAE,EAAE,IAAI,EAAE,GAAG,MAAM,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC;YACvD,MAAM,UAAU,GAAG,MAAM,SAAS,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,WAAW,EAAE,WAAW,CAAC,KAAK,EAAE,CAAC,CAAC;YACjF,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,qBAAqB,CAAC,EAAE,UAAU,EAAE,CAAC,CAAC;YACnE,IAAI,CAAC,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,uBAAuB,EAAE,OAAO,EAAE,CAAC,CAAC;YACxE,OAAO,EAAE,CAAC;YACV,MAAM;QACR,CAAC;QAED,KAAK,6BAA6B,CAAC,CAAC,CAAC;YACnC,IAAI,mBAAmB,EAAE,CAAC;gBACxB,MAAM,OAAO,GAAG;oBACd,IAAI,EAAE,+BAA+B;oBACrC,OAAO,EAAE,mBAAmB;iBAC7B,CAAC;gBACF,IAAI,CAAC,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,CAAC,CAAC;gBAC1D,MAAM,IAAI,4BAA4B,CAAC,mBAAmB,CAAC,CAAC;YAC9D,CAAC;YACD,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,qBAAqB,CAAC;gBACjD,EAAE,EAAE,iBAAiB,CAAC,MAAM;gBAC5B,IAAI,EAAE,UAAU;aACjB,CAAC,CAAC;YACH,IAAI,CAAC,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,2BAA2B,EAAE,OAAO,EAAE,CAAC,CAAC;YAC5E,MAAM;QACR,CAAC;QACD,KAAK,uBAAuB,CAAC,CAAC,CAAC;YAC7B,WAAW,CAAC,IAAI,CAAC,CAAC;YAClB,MAAM,EAAE,UAAU,EAAE,GAAG,MAAM,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC;YACzD,OAAO,CAAC,UAAU,CAAC,CAAC;YACpB,EAAE,CAAC,KAAK,EAAE,CAAC;YACX,MAAM;QACR,CAAC;QACD,KAAK,SAAS,CAAC,CAAC,CAAC;YACf,WAAW,CAAC,IAAI,CAAC,CAAC;YAClB,GAAG,CAAC,mBAAmB,EAAE,SAAS,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC;YAC9C,MAAM,KAAK,GAAG,gBAAgB,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAC7C,MAAM,CAAC,KAAK,CAAC,CAAC;YACd,EAAE,CAAC,KAAK,EAAE,CAAC;YACX,MAAM;QACR,CAAC;QACD,KAAK,oBAAoB,CAAC;QAC1B,KAAK,8BAA8B,CAAC;QACpC,KAAK,mBAAmB,CAAC;QACzB,KAAK,4BAA4B;YAC/B,MAAM;QACR;YACE,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAC;IAC1C,CAAC;AACH,CAAC,CAAA,CAAC;AAEF;;;GAGG;AACH,MAAM,UAAgB,wBAAwB;yDAAC,EAC7C,oBAAoB,EACpB,eAAe,EACf,eAAe,EACf,SAAS,EACT,iBAAiB,EACjB,UAAU,EACV,mBAAmB,GA8BpB;QACC,MAAM,YAAY,GAAG,MAAM,MAAM,CAAC,aAAa,EAAE,CAAC;QAClD,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,CAAC;QACxD,MAAM,GAAG,GAAG,GAAG,oBAAoB,CAAC,OAAO,CAAC,MAAM,EAAE,IAAI,CAAC,eAAe,SAAS,EAAE,CAAC;QACpF,MAAM,EAAE,GAAG,IAAI,SAAS,CAAC,GAAG,CAAC,CAAC;QAC9B,SAAS,IAAI,CAAC,OAAgB;YAC5B,EAAE,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC;QACnC,CAAC;QAED,IAAI,oBAA4C,CAAC;QACjD,IAAI,MAAwD,CAAC;QAC7D,IAAI,cAAkC,CAAC;QACvC,IAAI,QAAQ,GAAG,KAAK,CAAC;QACrB,MAAM,WAAW,GAAG,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,GAAG,QAAQ,CAAC,CAAC;QAEtD,eAAe,CAAC,GAAG,CAAC,CAAC;QACrB,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YAE7B,EAAE,CAAC,gBAAgB,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;YACrC,EAAE,CAAC,gBAAgB,CAAC,OAAO,EAAE,GAAG,EAAE;gBAChC,IAAI,QAAQ;oBAAE,OAAO;gBACrB,gGAAgG;gBAChG,MAAM,IAAI,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;gBACpC,MAAM,CAAC,IAAI,cAAc,CAAC,qCAAqC,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;YAC9E,CAAC,CAAC,CAAC;YACH,EAAE,CAAC,gBAAgB,CAAC,SAAS,EAAE,CAAM,CAAC,EAAC,EAAE;gBACvC,IAAI,CAAC;oBACH,MAAM,IAAI,GAAG,YAAY,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;oBAClC,QAAQ,IAAI,CAAC,OAAO,EAAE,CAAC;wBACrB,KAAK,mBAAmB,CAAC,CAAC,CAAC;4BACzB,MAAM,kBAAkB,GAAG,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,oBAAoB,CAAC,CAAC;4BAC9E,oBAAoB,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,YAAY,EAAE,kBAAkB,CAAC,CAAC;4BAC3E,MAAM,GAAG,iBAAiB,CAAC,UAAU,CAAC,oBAAoB,CAAC,CAAC,CAAC;4BAC7D,uCAAuC;4BACvC,MAAM,WAAW,GAAG,CAAC,CAAC;4BACtB,MAAM,MAAM,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,CAAC;4BAC/C,cAAc,GAAG,MAAM,CAAC;4BACxB,eAAe,CAAC,MAAM,CAAC,CAAC;4BACxB,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,qBAAqB,CAAC;gCACjD,MAAM,EAAE,WAAW;gCACnB,SAAS,EAAE,KAAK;6BACjB,CAAC,CAAC;4BACH,IAAI,CAAC,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,oBAAoB,EAAE,OAAO,EAAE,CAAC,CAAC;4BACrE,MAAM;wBACR,CAAC;wBACD,KAAK,4BAA4B,CAAC,CAAC,CAAC;4BAClC,IAAI,CAAC,MAAM,EAAE,CAAC;gCACZ,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;4BAClD,CAAC;4BACD,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC;4BACrD,IAAI,MAAM,KAAK,cAAc,EAAE,CAAC;gCAC9B,OAAO,CAAC,IAAI,CAAC,qBAAqB,EAAE,EAAE,MAAM,EAAE,cAAc,EAAE,CAAC,CAAC;gCAChE,MAAM,OAAO,GAAG;oCACd,IAAI,EAAE,6BAA6B;oCACnC,OAAO,EAAE,gBAAgB;iCAC1B,CAAC;gCACF,IAAI,CAAC,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,CAAC,CAAC;gCAC1D,MAAM,IAAI,kBAAkB,CAAC,gBAAgB,CAAC,CAAC;4BACjD,CAAC;4BACD,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,qBAAqB,CAAC,EAAE,CAAC,CAAC;4BACvD,IAAI,CAAC,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,8BAA8B,EAAE,OAAO,EAAE,CAAC,CAAC;4BAC/E,MAAM;wBACR,CAAC;oBACH,CAAC;oBACD,MAAM,YAAY,CAAC;wBACjB,IAAI;wBACJ,MAAM;wBACN,SAAS;wBACT,IAAI;wBACJ,SAAS;wBACT,OAAO;wBACP,iBAAiB;wBACjB,UAAU;wBACV,MAAM;wBACN,EAAE;wBACF,WAAW;wBACX,mBAAmB;qBACpB,CAAC,CAAC;gBACL,CAAC;gBAAC,OAAO,CAAC,EAAE,CAAC;oBACX,OAAO,CAAC,KAAK,CAAC,cAAc,EAAE,CAAC,CAAC,CAAC;oBACjC,EAAE,CAAC,KAAK,EAAE,CAAC;oBACX,MAAM,CAAC,CAAC,CAAC,CAAC;gBACZ,CAAC;YACH,CAAC,CAAA,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC;CAAA;AAED;;;GAGG;AACH,MAAM,UAAgB,6BAA6B;yDAAC,EAClD,iBAAiB,EACjB,UAAU,EACV,SAAS,EACT,mBAAmB,EACnB,UAAU,EACV,oBAAoB,GAiCrB;QACC,MAAM,CAAC,GAAG,UAAU,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;QAClD,IAAI,CAAC,CAAC,EAAE,CAAC;YACP,IAAI,uBAAuB,CAAC,UAAU,CAAC;gBAAE,MAAM,IAAI,sBAAsB,EAAE,CAAC;YAC5E,MAAM,IAAI,oBAAoB,EAAE,CAAC;QACnC,CAAC;QACD,MAAM,aAAa,GAAG,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAC5C,MAAM,YAAY,GAAG,MAAM,MAAM,CAAC,aAAa,EAAE,CAAC;QAClD,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,CAAC;QACxD,MAAM,oBAAoB,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,YAAY,EAAE,aAAa,CAAC,CAAC;QAC5E,MAAM,MAAM,GAAG,iBAAiB,CAAC,UAAU,CAAC,oBAAoB,CAAC,CAAC,CAAC;QACnE,MAAM,EAAE,GAAG,IAAI,SAAS,CAAC,UAAU,CAAC,CAAC;QACrC,SAAS,IAAI,CAAC,OAAgB;YAC5B,EAAE,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC;QACnC,CAAC;QACD,IAAI,QAAQ,GAAG,KAAK,CAAC;QACrB,MAAM,WAAW,GAAG,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,GAAG,QAAQ,CAAC,CAAC;QAEtD,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,EAAE,CAAC,gBAAgB,CAAC,OAAO,EAAE,GAAG,EAAE;gBAChC,IAAI,QAAQ;oBAAE,OAAO;gBACrB,2KAA2K;gBAC3K,UAAU,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC,EAAE,aAAa,CAAC,CAAC;YAC5F,CAAC,CAAC,CAAC;YAEH,EAAE,CAAC,gBAAgB,CAAC,SAAS,EAAE,CAAM,CAAC,EAAC,EAAE;gBACvC,IAAI,CAAC;oBACH,MAAM,IAAI,GAAG,YAAY,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;oBAClC,QAAQ,IAAI,CAAC,OAAO,EAAE,CAAC;wBACrB,KAAK,oBAAoB,CAAC,CAAC,CAAC;4BAC1B,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC;4BACjD,oBAAoB,CAAC,MAAM,EAAE,MAAM,CAAC,EAAE;gCACpC,MAAM,CAAC,qBAAqB,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE;oCACtD,IAAI,CAAC,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,4BAA4B,EAAE,OAAO,EAAE,CAAC,CAAC;gCAC/E,CAAC,CAAC,CAAC;4BACL,CAAC,CAAC,CAAC;4BACH,MAAM;wBACR,CAAC;wBACD,KAAK,8BAA8B,CAAC,CAAC,CAAC;4BACpC,IAAI,mBAAmB,EAAE,CAAC;gCACxB,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,qBAAqB,CAAC,EAAE,CAAC,CAAC;gCACvD,IAAI,CAAC,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,6BAA6B,EAAE,OAAO,EAAE,CAAC,CAAC;4BAChF,CAAC;iCAAM,CAAC;gCACN,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,qBAAqB,CAAC;oCACjD,EAAE,EAAE,iBAAiB,CAAC,MAAM;oCAC5B,IAAI,EAAE,UAAU;iCACjB,CAAC,CAAC;gCACH,IAAI,CAAC,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,2BAA2B,EAAE,OAAO,EAAE,CAAC,CAAC;4BAC9E,CAAC;4BACD,MAAM;wBACR,CAAC;oBACH,CAAC;oBACD,MAAM,YAAY,CAAC;wBACjB,IAAI;wBACJ,MAAM;wBACN,SAAS;wBACT,IAAI;wBACJ,SAAS;wBACT,OAAO;wBACP,iBAAiB;wBACjB,UAAU;wBACV,MAAM;wBACN,EAAE;wBACF,WAAW;wBACX,mBAAmB;qBACpB,CAAC,CAAC;gBACL,CAAC;gBAAC,OAAO,CAAC,EAAE,CAAC;oBACX,OAAO,CAAC,KAAK,CAAC,cAAc,EAAE,CAAC,CAAC,CAAC;oBACjC,EAAE,CAAC,KAAK,EAAE,CAAC;oBACX,MAAM,CAAC,CAAC,CAAC,CAAC;gBACZ,CAAC;YACH,CAAC,CAAA,CAAC,CAAC;YACH,EAAE,CAAC,gBAAgB,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;YACrC,EAAE,CAAC,gBAAgB,CAAC,MAAM,EAAE,GAAG,EAAE;gBAC/B,MAAM,OAAO,GAAG,EAAE,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,EAAE,CAAC;gBAChF,IAAI,CAAC,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,mBAAmB,EAAE,OAAO,EAAE,CAAC,CAAC;YACtE,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC;CAAA;AAED,SAAe,YAAY,CAAC,KAAa;;QACvC,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;QAC9C,IAAI,MAAM,GAAG,EAAE,CAAC;QAChB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,EAAE,CAAC,EAAE,EAAE,CAAC;YAC/B,MAAM,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC,QAAQ,EAAE,CAAC;QACvC,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;CAAA;AAED,SAAS,YAAY,CAAC,CAAC;IACrB,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC;IACzC,IAAI,CAAC,OAAO,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;QAC5C,MAAM,IAAI,KAAK,CAAC,iBAAiB,CAAC,CAAC;IACrC,CAAC;IACD,IAAI,OAAO,CAAC,OAAO,KAAK,CAAC,EAAE,CAAC;QAC1B,MAAM,IAAI,KAAK,CAAC,iBAAiB,CAAC,CAAC;IACrC,CAAC;IACD,IAAI,OAAO,OAAO,CAAC,SAAS,KAAK,QAAQ,EAAE,CAAC;QAC1C,MAAM,IAAI,KAAK,CAAC,mBAAmB,CAAC,CAAC;IACvC,CAAC;IACD,IAAI,OAAO,OAAO,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;QACxC,MAAM,IAAI,KAAK,CAAC,iBAAiB,CAAC,CAAC;IACrC,CAAC;IACD,IAAI,OAAO,OAAO,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;QACxC,MAAM,IAAI,KAAK,CAAC,iBAAiB,CAAC,CAAC;IACrC,CAAC;IACD,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,SAAS,gBAAgB,CAAC,OAA0C;IAClE,IAAI,OAAO,CAAC,IAAI,KAAK,6BAA6B,EAAE,CAAC;QACnD,MAAM,IAAI,kBAAkB,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;IAChD,CAAC;IACD,IAAI,OAAO,CAAC,IAAI,KAAK,6BAA6B,EAAE,CAAC;QACnD,MAAM,IAAI,uBAAuB,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;IACrD,CAAC;IACD,IAAI,OAAO,CAAC,IAAI,KAAK,+BAA+B,EAAE,CAAC;QACrD,MAAM,IAAI,4BAA4B,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;IAC1D,CAAC;IACD,MAAM,KAAK,GAAG,IAAI,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;IACzC,KAAK,CAAC,IAAI,GAAG,mBAAmB,GAAG,OAAO,CAAC,IAAI,CAAC;IAChD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,uBAAuB,CAAC,UAAkB;IACjD,OAAO,CAAC,CAAC,UAAU,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC;AACjD,CAAC"}

package/lib-es/qrcode/index.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=index.test.d.ts.map

package/lib-es/qrcode/index.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.test.d.ts","sourceRoot":"","sources":["../../src/qrcode/index.test.ts"],"names":[],"mappings":""}

package/lib-es/qrcode/index.test.js

@@ -0,0 +1,126 @@
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+import { createQRCodeHostInstance, createQRCodeCandidateInstance } from ".";
+import WebSocket from "ws";
+import { convertKeyPairToLiveCredentials } from "../sdk";
+import { crypto } from "@ledgerhq/hw-ledger-key-ring-protocol";
+import { ScannedInvalidQrCode, ScannedOldImportQrCode } from "../errors";
+describe("Trustchain QR Code", () => {
+    let server;
+    let a;
+    let b;
+    beforeAll(() => {
+        server = new WebSocket.Server({ port: 1234 });
+        server.on("connection", ws => {
+            if (!a) {
+                a = ws;
+            }
+            else if (!b) {
+                b = ws;
+            }
+            ws.on("message", message => {
+                if (ws === a && b) {
+                    b.send(message);
+                }
+                else if (ws === b && a) {
+                    a.send(message);
+                }
+            });
+        });
+    });
+    afterAll(() => {
+        server.close();
+    });
+    test("digits matching scenario", () => __awaiter(void 0, void 0, void 0, function* () {
+        const onDisplayDigits = jest.fn();
+        const trustchain = {
+            rootId: "test-root-id",
+            walletSyncEncryptionKey: "test-wallet-sync-encryption-key",
+            applicationPath: "m/0'/16'/0'",
+        };
+        const addMember = jest.fn(() => Promise.resolve(trustchain));
+        const memberCredentials = convertKeyPairToLiveCredentials(yield crypto.randomKeypair());
+        const memberName = "foo";
+        let scannedUrlResolve;
+        const scannedUrlPromise = new Promise(resolve => {
+            scannedUrlResolve = resolve;
+        });
+        const onDisplayQRCode = (url) => {
+            scannedUrlResolve(url);
+        };
+        const onRequestQRCodeInput = jest.fn((config, callback) => callback(onDisplayDigits.mock.calls[0][0]));
+        const hostP = createQRCodeHostInstance({
+            trustchainApiBaseUrl: "ws://localhost:1234",
+            onDisplayQRCode,
+            onDisplayDigits,
+            addMember,
+            memberCredentials,
+            memberName,
+            initialTrustchainId: trustchain.rootId,
+        });
+        const scannedUrl = yield scannedUrlPromise;
+        const candidateP = createQRCodeCandidateInstance({
+            memberCredentials,
+            memberName,
+            initialTrustchainId: undefined,
+            addMember,
+            scannedUrl,
+            onRequestQRCodeInput,
+        });
+        const [_, res] = yield Promise.all([hostP, candidateP]);
+        expect(onDisplayDigits).toHaveBeenCalledWith(expect.any(String));
+        expect(addMember).toHaveBeenCalled();
+        expect(onRequestQRCodeInput).toHaveBeenCalledWith({ digits: 3, connected: false }, expect.any(Function));
+        expect(res).toEqual(trustchain);
+    }));
+    test("invalid qr code scanned", () => __awaiter(void 0, void 0, void 0, function* () {
+        const trustchain = {
+            rootId: "test-root-id",
+            walletSyncEncryptionKey: "test-wallet-sync-encryption-key",
+            applicationPath: "m/0'/16'/0'",
+        };
+        const addMember = jest.fn(() => Promise.resolve(trustchain));
+        const memberCredentials = convertKeyPairToLiveCredentials(yield crypto.randomKeypair());
+        const memberName = "foo";
+        const onRequestQRCodeInput = jest.fn();
+        const scannedUrl = "https://example.com";
+        const candidateP = createQRCodeCandidateInstance({
+            memberCredentials,
+            memberName,
+            initialTrustchainId: undefined,
+            addMember,
+            scannedUrl,
+            onRequestQRCodeInput,
+        });
+        yield expect(candidateP).rejects.toThrow(new ScannedInvalidQrCode());
+    }));
+    test("old accounts export qr code scanned", () => __awaiter(void 0, void 0, void 0, function* () {
+        const trustchain = {
+            rootId: "test-root-id",
+            walletSyncEncryptionKey: "test-wallet-sync-encryption-key",
+            applicationPath: "m/0'/16'/0'",
+        };
+        const addMember = jest.fn(() => Promise.resolve(trustchain));
+        const memberCredentials = convertKeyPairToLiveCredentials(yield crypto.randomKeypair());
+        const memberName = "foo";
+        const onRequestQRCodeInput = jest.fn();
+        const scannedUrl = "ZAADAAIAAAAEd2JXMpuoYdzvkNzFTlmQLPcGf2LSjDOgqaB3nQoZqlimcCX6HNkescWKyT1DCGuwO7IesD7oYg+fdZPkiIfFL3V9swfZRePkaNN09IjXsWLsim9hK/qi/RC1/ofX3hYNKUxUAgYVVG82WKXIk47siWfUlRZsCYSAARQ6ASpUgidPjMHaOMK6w53wTZplwo7Zjv1HrIyKwr3Ci8OmrFye5g==";
+        const candidateP = createQRCodeCandidateInstance({
+            memberCredentials,
+            memberName,
+            initialTrustchainId: undefined,
+            addMember,
+            scannedUrl,
+            onRequestQRCodeInput,
+        });
+        yield expect(candidateP).rejects.toThrow(new ScannedOldImportQrCode());
+    }));
+});
+//# sourceMappingURL=index.test.js.map