@lindorm/ec 0.1.8 → 0.2.1

package/CHANGELOG.md

@@ -3,6 +3,22 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [0.2.1](https://github.com/lindorm-io/monorepo/compare/@lindorm/ec@0.2.0...@lindorm/ec@0.2.1) (2025-07-02)
+
+**Note:** Version bump only for package @lindorm/ec
+
+# [0.2.0](https://github.com/lindorm-io/monorepo/compare/@lindorm/ec@0.1.8...@lindorm/ec@0.2.0) (2025-06-17)
+
+### Bug Fixes
+
+- add and implement keykit interface ([70762aa](https://github.com/lindorm-io/monorepo/commit/70762aaca51c9fe904121b69b4bc072cdd89c8a2))
+- align with kryptos changes ([206eb38](https://github.com/lindorm-io/monorepo/commit/206eb38ae2a03b14973e706035c87a953cc753af))
+
+### Features
+
+- add dsa encoding ([a893601](https://github.com/lindorm-io/monorepo/commit/a8936015a9408733445cdbda8d8b70d633a2330a))
+- upgrade key kits ([198956c](https://github.com/lindorm-io/monorepo/commit/198956c5fa276ae192af22cb204b3c2158c74339))
+
 ## [0.1.8](https://github.com/lindorm-io/monorepo/compare/@lindorm/ec@0.1.7...@lindorm/ec@0.1.8) (2025-01-28)
 
 **Note:** Version bump only for package @lindorm/ec

package/README.md

@@ -1 +1,402 @@
 # @lindorm/ec
+
+Elliptic Curve cryptography utilities for digital signatures using ECDSA algorithms.
+
+## Installation
+
+```bash
+npm install @lindorm/ec
+```
+
+## Features
+
+- **ECDSA Digital Signatures**: Sign and verify data using elliptic curve algorithms
+- **Multiple Algorithms**: Support for ES256, ES384, and ES512
+- **Flexible Encoding**: Multiple encoding options (base64, base64url, hex)
+- **DSA Format Options**: Support for DER and IEEE-P1363 encoding
+- **Raw Signature Format**: Convert between DER and raw signature formats
+- **Type-Safe**: Full TypeScript support with strict typing
+- **Error Handling**: Comprehensive error messages for debugging
+
+## Quick Start
+
+```typescript
+import { EcKit } from "@lindorm/ec";
+import { KryptosEc } from "@lindorm/kryptos";
+
+// Create an EC key pair
+const kryptos = KryptosEc.fromB64({
+  algorithm: "ES256",
+  // ... your key data
+});
+
+// Initialize EcKit
+const ecKit = new EcKit({ kryptos });
+
+// Sign data
+const data = Buffer.from("Hello World");
+const signature = ecKit.sign(data);
+
+// Verify signature
+const isValid = ecKit.verify(data, signature); // true
+
+// Assert signature (throws if invalid)
+ecKit.assert(data, signature);
+```
+
+## API Reference
+
+### EcKit Class
+
+The main class for elliptic curve operations.
+
+#### Constructor Options
+
+```typescript
+interface EcKitOptions {
+  kryptos: IKryptosEc;          // EC key pair from @lindorm/kryptos
+  dsa?: "der" | "ieee-p1363";  // DSA encoding format (default: "der")
+  encoding?: BufferEncoding;     // Output encoding (default: "base64")
+  raw?: boolean;                // Use raw signature format (default: false)
+}
+```
+
+#### Methods
+
+##### `sign(data: KeyData): Buffer`
+Signs the provided data and returns the signature as a Buffer.
+
+```typescript
+const signature = ecKit.sign("data to sign");
+const signature2 = ecKit.sign(Buffer.from("data"));
+```
+
+##### `verify(data: KeyData, signature: KeyData): boolean`
+Verifies a signature against the provided data.
+
+```typescript
+const isValid = ecKit.verify("data", signature);
+console.log(isValid); // true or false
+```
+
+##### `assert(data: KeyData, signature: KeyData): void`
+Verifies a signature and throws an error if invalid.
+
+```typescript
+try {
+  ecKit.assert("data", signature);
+  // Signature is valid
+} catch (error) {
+  // Signature is invalid
+}
+```
+
+##### `format(data: Buffer): string`
+Formats a Buffer to string using the configured encoding.
+
+```typescript
+const formatted = ecKit.format(signature);
+// Returns base64/base64url/hex string based on configuration
+```
+
+## Supported Algorithms
+
+| Algorithm | Curve | Hash Function | Key Size |
+|-----------|-------|---------------|----------|
+| ES256 | P-256 | SHA-256 | 256 bits |
+| ES384 | P-384 | SHA-384 | 384 bits |
+| ES512 | P-521 | SHA-512 | 521 bits |
+
+## Encoding Options
+
+### DSA Encoding Formats
+
+- **DER** (Distinguished Encoding Rules): Standard format used in X.509 certificates
+- **IEEE-P1363**: Alternative format used in some cryptographic protocols
+
+```typescript
+// Using DER format (default)
+const ecKit = new EcKit({ 
+  kryptos,
+  dsa: "der"
+});
+
+// Using IEEE-P1363 format
+const ecKit2 = new EcKit({ 
+  kryptos,
+  dsa: "ieee-p1363"
+});
+```
+
+### Output Encoding
+
+```typescript
+// Base64 encoding (default)
+const ecKit = new EcKit({ 
+  kryptos,
+  encoding: "base64"
+});
+
+// Base64URL encoding (URL-safe)
+const ecKit2 = new EcKit({ 
+  kryptos,
+  encoding: "base64url"
+});
+
+// Hexadecimal encoding
+const ecKit3 = new EcKit({ 
+  kryptos,
+  encoding: "hex"
+});
+```
+
+### Raw Signature Format
+
+The raw format concatenates the r and s values directly, which is useful for JWT/JWS compatibility.
+
+```typescript
+// Standard DER format
+const ecKit = new EcKit({ 
+  kryptos,
+  raw: false // default
+});
+
+// Raw format (r || s concatenation)
+const ecKitRaw = new EcKit({ 
+  kryptos,
+  raw: true
+});
+```
+
+## Advanced Usage
+
+### Working with Different Data Types
+
+```typescript
+// String data with encoding
+const signature1 = ecKit.sign("Hello World");
+
+// Buffer data
+const buffer = Buffer.from("Hello World", "utf-8");
+const signature2 = ecKit.sign(buffer);
+
+// Base64 encoded data
+const base64Data = Buffer.from("Hello World").toString("base64");
+const signature3 = ecKit.sign(base64Data);
+```
+
+### JWT/JWS Integration
+
+```typescript
+// For JWT/JWS, use raw format with base64url encoding
+const jwtEcKit = new EcKit({
+  kryptos,
+  encoding: "base64url",
+  raw: true
+});
+
+// Sign JWT payload
+const payload = Buffer.from(JSON.stringify({ sub: "1234567890" }));
+const signature = jwtEcKit.sign(payload);
+const signatureString = jwtEcKit.format(signature);
+```
+
+### Signature Format Conversion
+
+```typescript
+// Convert between DER and raw formats
+const derEcKit = new EcKit({ kryptos, raw: false });
+const rawEcKit = new EcKit({ kryptos, raw: true });
+
+// Sign with DER format
+const derSignature = derEcKit.sign("data");
+
+// Verify with raw format (automatic conversion)
+const isValid = rawEcKit.verify("data", derSignature);
+```
+
+### Error Handling
+
+```typescript
+import { EcError } from "@lindorm/ec";
+
+try {
+  // Missing private key for signing
+  const verifyOnlyKryptos = KryptosEc.fromB64({ 
+    publicKey: "...",
+    algorithm: "ES256"
+  });
+  const ecKit = new EcKit({ kryptos: verifyOnlyKryptos });
+  ecKit.sign("data"); // Throws EcError
+} catch (error) {
+  if (error instanceof EcError) {
+    console.error("EC operation failed:", error.message);
+  }
+}
+```
+
+## Examples
+
+### Creating a Signing Service
+
+```typescript
+import { EcKit } from "@lindorm/ec";
+import { KryptosEc } from "@lindorm/kryptos";
+
+class SigningService {
+  private ecKit: EcKit;
+
+  constructor(privateKey: string, algorithm: "ES256" | "ES384" | "ES512") {
+    const kryptos = KryptosEc.fromB64({
+      privateKey,
+      algorithm
+    });
+    
+    this.ecKit = new EcKit({
+      kryptos,
+      encoding: "base64url",
+      raw: true // For JWT compatibility
+    });
+  }
+
+  signPayload(payload: object): string {
+    const data = Buffer.from(JSON.stringify(payload));
+    const signature = this.ecKit.sign(data);
+    return this.ecKit.format(signature);
+  }
+
+  verifyPayload(payload: object, signature: string): boolean {
+    const data = Buffer.from(JSON.stringify(payload));
+    return this.ecKit.verify(data, signature);
+  }
+}
+```
+
+### Verification Service with Public Key
+
+```typescript
+class VerificationService {
+  private ecKit: EcKit;
+
+  constructor(publicKey: string, algorithm: "ES256" | "ES384" | "ES512") {
+    const kryptos = KryptosEc.fromB64({
+      publicKey,
+      algorithm
+    });
+    
+    this.ecKit = new EcKit({
+      kryptos,
+      encoding: "base64url",
+      raw: true
+    });
+  }
+
+  verifySignature(data: string, signature: string): boolean {
+    try {
+      this.ecKit.assert(data, signature);
+      return true;
+    } catch {
+      return false;
+    }
+  }
+}
+```
+
+### Document Signing System
+
+```typescript
+interface SignedDocument {
+  content: string;
+  signature: string;
+  algorithm: string;
+  timestamp: number;
+}
+
+class DocumentSigner {
+  private ecKit: EcKit;
+  private algorithm: string;
+
+  constructor(kryptos: IKryptosEc) {
+    this.ecKit = new EcKit({ 
+      kryptos,
+      encoding: "base64"
+    });
+    this.algorithm = kryptos.algorithm;
+  }
+
+  signDocument(content: string): SignedDocument {
+    const timestamp = Date.now();
+    const dataToSign = `${content}|${timestamp}`;
+    const signature = this.ecKit.sign(dataToSign);
+    
+    return {
+      content,
+      signature: this.ecKit.format(signature),
+      algorithm: this.algorithm,
+      timestamp
+    };
+  }
+
+  verifyDocument(doc: SignedDocument): boolean {
+    const dataToVerify = `${doc.content}|${doc.timestamp}`;
+    return this.ecKit.verify(dataToVerify, doc.signature);
+  }
+}
+```
+
+## Type Definitions
+
+### KeyData Type
+
+Input data can be provided in multiple formats:
+
+```typescript
+type KeyData = Buffer | string;
+```
+
+### IKryptosEc Interface
+
+The EC key pair interface from `@lindorm/kryptos`:
+
+```typescript
+interface IKryptosEc {
+  algorithm: "ES256" | "ES384" | "ES512";
+  privateKey?: string;
+  publicKey?: string;
+  // ... other properties
+}
+```
+
+## Error Handling
+
+The package throws `EcError` for various error conditions:
+
+- Missing private key when attempting to sign
+- Missing public key when attempting to verify
+- Invalid signature during assertion
+- Unsupported EC algorithm
+- Invalid key format
+
+```typescript
+import { EcError } from "@lindorm/ec";
+
+try {
+  ecKit.assert(data, invalidSignature);
+} catch (error) {
+  if (error instanceof EcError) {
+    console.error("Signature verification failed:", error.message);
+  }
+}
+```
+
+## Security Considerations
+
+- Always use secure random number generation for key creation
+- Protect private keys appropriately
+- Use appropriate key sizes (ES256 minimum for most applications)
+- Verify signatures before trusting data
+- Consider using ES384 or ES512 for higher security requirements
+
+## License
+
+AGPL-3.0-or-later

package/dist/classes/EcKit.d.ts

@@ -1,10 +1,14 @@
+import { IKeyKit, KeyData } from "@lindorm/types";
 import { EcKitOptions } from "../types";
-export declare class EcKit {
-    private readonly format;
+export declare class EcKit implements IKeyKit {
+    private readonly dsa;
+    private readonly encoding;
     private readonly kryptos;
+    private readonly raw;
     constructor(options: EcKitOptions);
-    sign(data: string): string;
-    verify(data: string, signature: string): boolean;
-    assert(data: string, signature: string): void;
+    sign(data: KeyData): Buffer;
+    verify(data: KeyData, signature: KeyData): boolean;
+    assert(data: KeyData, signature: KeyData): void;
+    format(data: Buffer): string;
 }
 //# sourceMappingURL=EcKit.d.ts.map

package/dist/classes/EcKit.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"EcKit.d.ts","sourceRoot":"","sources":["../../src/classes/EcKit.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,YAAY,EAAqB,MAAM,UAAU,CAAC;AAO3D,qBAAa,KAAK;IAChB,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAoB;IAC3C,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAa;gBAElB,OAAO,EAAE,YAAY;IAUjC,IAAI,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM;IAQ1B,MAAM,CAAC,IAAI,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,OAAO;IAShD,MAAM,CAAC,IAAI,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,IAAI;CAQrD"}
+{"version":3,"file":"EcKit.d.ts","sourceRoot":"","sources":["../../src/classes/EcKit.ts"],"names":[],"mappings":"AACA,OAAO,EAAe,OAAO,EAAE,OAAO,EAAE,MAAM,gBAAgB,CAAC;AAE/D,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAOxC,qBAAa,KAAM,YAAW,OAAO;IACnC,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAc;IAClC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAiB;IAC1C,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAa;IACrC,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAU;gBAEX,OAAO,EAAE,YAAY;IAYjC,IAAI,CAAC,IAAI,EAAE,OAAO,GAAG,MAAM;IAS3B,MAAM,CAAC,IAAI,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,GAAG,OAAO;IAWlD,MAAM,CAAC,IAAI,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,GAAG,IAAI;IAW/C,MAAM,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM;CAGpC"}

package/dist/classes/EcKit.js

@@ -5,11 +5,15 @@ const kryptos_1 = require("@lindorm/kryptos");
 const errors_1 = require("../errors");
 const private_1 = require("../utils/private");
 class EcKit {
-    format;
+    dsa;
+    encoding;
     kryptos;
+    raw;
     constructor(options) {
-        this.format = options.format ?? "base64";
-        if (!kryptos_1.Kryptos.isEc(options.kryptos)) {
+        this.dsa = options.dsa ?? "der";
+        this.encoding = options.encoding ?? "base64";
+        this.raw = options.raw ?? false;
+        if (!kryptos_1.KryptosKit.isEc(options.kryptos)) {
             throw new errors_1.EcError("Invalid Kryptos instance");
         }
         this.kryptos = options.kryptos;
@@ -17,26 +21,34 @@ class EcKit {
     sign(data) {
         return (0, private_1.createEcSignature)({
             data,
-            format: this.format,
+            dsaEncoding: this.dsa,
             kryptos: this.kryptos,
+            raw: this.raw,
         });
     }
     verify(data, signature) {
         return (0, private_1.verifyEcSignature)({
             data,
-            format: this.format,
+            dsaEncoding: this.dsa,
+            encoding: this.encoding,
             kryptos: this.kryptos,
+            raw: this.raw,
             signature,
         });
     }
     assert(data, signature) {
         return (0, private_1.assertEcSignature)({
             data,
-            format: this.format,
+            dsaEncoding: this.dsa,
+            encoding: this.encoding,
             kryptos: this.kryptos,
+            raw: this.raw,
             signature,
         });
     }
+    format(data) {
+        return data.toString(this.encoding);
+    }
 }
 exports.EcKit = EcKit;
 //# sourceMappingURL=EcKit.js.map

package/dist/classes/EcKit.js.map

@@ -1 +1 @@
-{"version":3,"file":"EcKit.js","sourceRoot":"","sources":["../../src/classes/EcKit.ts"],"names":[],"mappings":";;;AAAA,8CAAuD;AACvD,sCAAoC;AAEpC,8CAI0B;AAE1B,MAAa,KAAK;IACC,MAAM,CAAoB;IAC1B,OAAO,CAAa;IAErC,YAAmB,OAAqB;QACtC,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,QAAQ,CAAC;QAEzC,IAAI,CAAC,iBAAO,CAAC,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;YACnC,MAAM,IAAI,gBAAO,CAAC,0BAA0B,CAAC,CAAC;QAChD,CAAC;QAED,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;IACjC,CAAC;IAEM,IAAI,CAAC,IAAY;QACtB,OAAO,IAAA,2BAAiB,EAAC;YACvB,IAAI;YACJ,MAAM,EAAE,IAAI,CAAC,MAAM;YACnB,OAAO,EAAE,IAAI,CAAC,OAAO;SACtB,CAAC,CAAC;IACL,CAAC;IAEM,MAAM,CAAC,IAAY,EAAE,SAAiB;QAC3C,OAAO,IAAA,2BAAiB,EAAC;YACvB,IAAI;YACJ,MAAM,EAAE,IAAI,CAAC,MAAM;YACnB,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,SAAS;SACV,CAAC,CAAC;IACL,CAAC;IAEM,MAAM,CAAC,IAAY,EAAE,SAAiB;QAC3C,OAAO,IAAA,2BAAiB,EAAC;YACvB,IAAI;YACJ,MAAM,EAAE,IAAI,CAAC,MAAM;YACnB,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,SAAS;SACV,CAAC,CAAC;IACL,CAAC;CACF;AAvCD,sBAuCC"}
+{"version":3,"file":"EcKit.js","sourceRoot":"","sources":["../../src/classes/EcKit.ts"],"names":[],"mappings":";;;AAAA,8CAA0D;AAE1D,sCAAoC;AAEpC,8CAI0B;AAE1B,MAAa,KAAK;IACC,GAAG,CAAc;IACjB,QAAQ,CAAiB;IACzB,OAAO,CAAa;IACpB,GAAG,CAAU;IAE9B,YAAmB,OAAqB;QACtC,IAAI,CAAC,GAAG,GAAG,OAAO,CAAC,GAAG,IAAI,KAAK,CAAC;QAChC,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,QAAQ,CAAC;QAC7C,IAAI,CAAC,GAAG,GAAG,OAAO,CAAC,GAAG,IAAI,KAAK,CAAC;QAEhC,IAAI,CAAC,oBAAU,CAAC,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;YACtC,MAAM,IAAI,gBAAO,CAAC,0BAA0B,CAAC,CAAC;QAChD,CAAC;QAED,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;IACjC,CAAC;IAEM,IAAI,CAAC,IAAa;QACvB,OAAO,IAAA,2BAAiB,EAAC;YACvB,IAAI;YACJ,WAAW,EAAE,IAAI,CAAC,GAAG;YACrB,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,GAAG,EAAE,IAAI,CAAC,GAAG;SACd,CAAC,CAAC;IACL,CAAC;IAEM,MAAM,CAAC,IAAa,EAAE,SAAkB;QAC7C,OAAO,IAAA,2BAAiB,EAAC;YACvB,IAAI;YACJ,WAAW,EAAE,IAAI,CAAC,GAAG;YACrB,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,GAAG,EAAE,IAAI,CAAC,GAAG;YACb,SAAS;SACV,CAAC,CAAC;IACL,CAAC;IAEM,MAAM,CAAC,IAAa,EAAE,SAAkB;QAC7C,OAAO,IAAA,2BAAiB,EAAC;YACvB,IAAI;YACJ,WAAW,EAAE,IAAI,CAAC,GAAG;YACrB,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,GAAG,EAAE,IAAI,CAAC,GAAG;YACb,SAAS;SACV,CAAC,CAAC;IACL,CAAC;IAEM,MAAM,CAAC,IAAY;QACxB,OAAO,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACtC,CAAC;CACF;AApDD,sBAoDC"}

package/dist/types/ec-kit.d.ts

@@ -1,19 +1,23 @@
 import { IKryptos, IKryptosEc } from "@lindorm/kryptos";
-import { BufferFormat } from "@lindorm/types";
-export type EcSignatureFormat = BufferFormat | "raw";
+import { DsaEncoding, KeyData } from "@lindorm/types";
 export type CreateEcSignatureOptions = {
-    data: string;
-    format: EcSignatureFormat;
+    data: KeyData;
+    dsaEncoding: DsaEncoding;
     kryptos: IKryptosEc;
+    raw: boolean;
 };
 export type VerifyEcSignatureOptions = {
-    data: string;
-    format: EcSignatureFormat;
+    data: KeyData;
+    dsaEncoding: DsaEncoding;
+    encoding: BufferEncoding;
     kryptos: IKryptosEc;
-    signature: string;
+    raw: boolean;
+    signature: KeyData;
 };
 export type EcKitOptions = {
-    format?: EcSignatureFormat;
+    dsa?: DsaEncoding;
+    encoding?: BufferEncoding;
     kryptos: IKryptos;
+    raw?: boolean;
 };
 //# sourceMappingURL=ec-kit.d.ts.map

package/dist/types/ec-kit.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"ec-kit.d.ts","sourceRoot":"","sources":["../../src/types/ec-kit.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AACxD,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAE9C,MAAM,MAAM,iBAAiB,GAAG,YAAY,GAAG,KAAK,CAAC;AAErD,MAAM,MAAM,wBAAwB,GAAG;IACrC,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,iBAAiB,CAAC;IAC1B,OAAO,EAAE,UAAU,CAAC;CACrB,CAAC;AAEF,MAAM,MAAM,wBAAwB,GAAG;IACrC,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,iBAAiB,CAAC;IAC1B,OAAO,EAAE,UAAU,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;CACnB,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG;IACzB,MAAM,CAAC,EAAE,iBAAiB,CAAC;IAC3B,OAAO,EAAE,QAAQ,CAAC;CACnB,CAAC"}
+{"version":3,"file":"ec-kit.d.ts","sourceRoot":"","sources":["../../src/types/ec-kit.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AACxD,OAAO,EAAE,WAAW,EAAE,OAAO,EAAE,MAAM,gBAAgB,CAAC;AAEtD,MAAM,MAAM,wBAAwB,GAAG;IACrC,IAAI,EAAE,OAAO,CAAC;IACd,WAAW,EAAE,WAAW,CAAC;IACzB,OAAO,EAAE,UAAU,CAAC;IACpB,GAAG,EAAE,OAAO,CAAC;CACd,CAAC;AAEF,MAAM,MAAM,wBAAwB,GAAG;IACrC,IAAI,EAAE,OAAO,CAAC;IACd,WAAW,EAAE,WAAW,CAAC;IACzB,QAAQ,EAAE,cAAc,CAAC;IACzB,OAAO,EAAE,UAAU,CAAC;IACpB,GAAG,EAAE,OAAO,CAAC;IACb,SAAS,EAAE,OAAO,CAAC;CACpB,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG;IACzB,GAAG,CAAC,EAAE,WAAW,CAAC;IAClB,QAAQ,CAAC,EAAE,cAAc,CAAC;IAC1B,OAAO,EAAE,QAAQ,CAAC;IAClB,GAAG,CAAC,EAAE,OAAO,CAAC;CACf,CAAC"}

package/dist/utils/private/ec-signature.d.ts

@@ -1,5 +1,5 @@
 import { CreateEcSignatureOptions, VerifyEcSignatureOptions } from "../../types/ec-kit";
-export declare const createEcSignature: ({ data, format, kryptos, }: CreateEcSignatureOptions) => string;
-export declare const verifyEcSignature: ({ data, format, kryptos, signature, }: VerifyEcSignatureOptions) => boolean;
-export declare const assertEcSignature: ({ data, format, kryptos, signature, }: VerifyEcSignatureOptions) => void;
+export declare const createEcSignature: ({ data, dsaEncoding, kryptos, raw, }: CreateEcSignatureOptions) => Buffer;
+export declare const verifyEcSignature: ({ data, dsaEncoding, encoding, kryptos, raw, signature, }: VerifyEcSignatureOptions) => boolean;
+export declare const assertEcSignature: ({ data, dsaEncoding, encoding, kryptos, raw, signature, }: VerifyEcSignatureOptions) => void;
 //# sourceMappingURL=ec-signature.d.ts.map

package/dist/utils/private/ec-signature.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"ec-signature.d.ts","sourceRoot":"","sources":["../../../src/utils/private/ec-signature.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,wBAAwB,EAAE,wBAAwB,EAAE,MAAM,oBAAoB,CAAC;AAKxF,eAAO,MAAM,iBAAiB,+BAI3B,wBAAwB,KAAG,MAW7B,CAAC;AAEF,eAAO,MAAM,iBAAiB,0CAK3B,wBAAwB,KAAG,OAa7B,CAAC;AAEF,eAAO,MAAM,iBAAiB,0CAK3B,wBAAwB,KAAG,IAG7B,CAAC"}
+{"version":3,"file":"ec-signature.d.ts","sourceRoot":"","sources":["../../../src/utils/private/ec-signature.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,wBAAwB,EAAE,wBAAwB,EAAE,MAAM,oBAAoB,CAAC;AAKxF,eAAO,MAAM,iBAAiB,GAAI,sCAK/B,wBAAwB,KAAG,MAW7B,CAAC;AAEF,eAAO,MAAM,iBAAiB,GAAI,2DAO/B,wBAAwB,KAAG,OAkB7B,CAAC;AAEF,eAAO,MAAM,iBAAiB,GAAI,2DAO/B,wBAAwB,KAAG,IAG7B,CAAC"}

package/dist/utils/private/ec-signature.js

@@ -1,38 +1,42 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.assertEcSignature = exports.verifyEcSignature = exports.createEcSignature = void 0;
+const is_1 = require("@lindorm/is");
 const crypto_1 = require("crypto");
 const errors_1 = require("../../errors");
 const get_key_1 = require("./get-key");
 const map_algorithm_1 = require("./map-algorithm");
 const raw_1 = require("./raw");
-const createEcSignature = ({ data, format, kryptos, }) => {
-    const der = (0, crypto_1.createSign)((0, map_algorithm_1.mapEcAlgorithm)(kryptos))
+const createEcSignature = ({ data, dsaEncoding, kryptos, raw, }) => {
+    const signature = (0, crypto_1.createSign)((0, map_algorithm_1.mapEcAlgorithm)(kryptos))
         .update(data)
         .end()
-        .sign((0, get_key_1.getSignKey)(kryptos));
-    if (format === "raw") {
-        return (0, raw_1.derToRaw)(kryptos, der).toString("base64url");
+        .sign({ key: (0, get_key_1.getSignKey)(kryptos), dsaEncoding });
+    if (raw) {
+        return (0, raw_1.derToRaw)(kryptos, signature);
     }
-    return der.toString(format);
+    return signature;
 };
 exports.createEcSignature = createEcSignature;
-const verifyEcSignature = ({ data, format, kryptos, signature, }) => {
-    let der;
-    if (format === "raw") {
-        der = (0, raw_1.rawToDer)(kryptos, Buffer.from(signature, "base64url"));
+const verifyEcSignature = ({ data, dsaEncoding, encoding, kryptos, raw, signature, }) => {
+    let buffer;
+    if (raw) {
+        buffer = (0, raw_1.rawToDer)(kryptos, (0, is_1.isBuffer)(signature) ? signature : Buffer.from(signature, encoding));
+    }
+    else if ((0, is_1.isString)(signature)) {
+        buffer = Buffer.from(signature, encoding);
     }
     else {
-        der = Buffer.from(signature, format);
+        buffer = signature;
     }
     return (0, crypto_1.createVerify)((0, map_algorithm_1.mapEcAlgorithm)(kryptos))
         .update(data)
         .end()
-        .verify((0, get_key_1.getVerifyKey)(kryptos), der);
+        .verify({ key: (0, get_key_1.getVerifyKey)(kryptos), dsaEncoding }, buffer);
 };
 exports.verifyEcSignature = verifyEcSignature;
-const assertEcSignature = ({ data, format, kryptos, signature, }) => {
-    if ((0, exports.verifyEcSignature)({ data, format, kryptos, signature }))
+const assertEcSignature = ({ data, dsaEncoding, encoding, kryptos, raw, signature, }) => {
+    if ((0, exports.verifyEcSignature)({ data, dsaEncoding, encoding, kryptos, raw, signature }))
         return;
     throw new errors_1.EcError("Invalid signature");
 };

package/dist/utils/private/ec-signature.js.map

@@ -1 +1 @@
-{"version":3,"file":"ec-signature.js","sourceRoot":"","sources":["../../../src/utils/private/ec-signature.ts"],"names":[],"mappings":";;;AAAA,mCAAkD;AAClD,yCAAuC;AAEvC,uCAAqD;AACrD,mDAAiD;AACjD,+BAA2C;AAEpC,MAAM,iBAAiB,GAAG,CAAC,EAChC,IAAI,EACJ,MAAM,EACN,OAAO,GACkB,EAAU,EAAE;IACrC,MAAM,GAAG,GAAG,IAAA,mBAAU,EAAC,IAAA,8BAAc,EAAC,OAAO,CAAC,CAAC;SAC5C,MAAM,CAAC,IAAI,CAAC;SACZ,GAAG,EAAE;SACL,IAAI,CAAC,IAAA,oBAAU,EAAC,OAAO,CAAC,CAAC,CAAC;IAE7B,IAAI,MAAM,KAAK,KAAK,EAAE,CAAC;QACrB,OAAO,IAAA,cAAQ,EAAC,OAAO,EAAE,GAAG,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IACtD,CAAC;IAED,OAAO,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;AAC9B,CAAC,CAAC;AAfW,QAAA,iBAAiB,qBAe5B;AAEK,MAAM,iBAAiB,GAAG,CAAC,EAChC,IAAI,EACJ,MAAM,EACN,OAAO,EACP,SAAS,GACgB,EAAW,EAAE;IACtC,IAAI,GAAW,CAAC;IAEhB,IAAI,MAAM,KAAK,KAAK,EAAE,CAAC;QACrB,GAAG,GAAG,IAAA,cAAQ,EAAC,OAAO,EAAE,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,WAAW,CAAC,CAAC,CAAC;IAC/D,CAAC;SAAM,CAAC;QACN,GAAG,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;IACvC,CAAC;IAED,OAAO,IAAA,qBAAY,EAAC,IAAA,8BAAc,EAAC,OAAO,CAAC,CAAC;SACzC,MAAM,CAAC,IAAI,CAAC;SACZ,GAAG,EAAE;SACL,MAAM,CAAC,IAAA,sBAAY,EAAC,OAAO,CAAC,EAAE,GAAG,CAAC,CAAC;AACxC,CAAC,CAAC;AAlBW,QAAA,iBAAiB,qBAkB5B;AAEK,MAAM,iBAAiB,GAAG,CAAC,EAChC,IAAI,EACJ,MAAM,EACN,OAAO,EACP,SAAS,GACgB,EAAQ,EAAE;IACnC,IAAI,IAAA,yBAAiB,EAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,CAAC;QAAE,OAAO;IACpE,MAAM,IAAI,gBAAO,CAAC,mBAAmB,CAAC,CAAC;AACzC,CAAC,CAAC;AARW,QAAA,iBAAiB,qBAQ5B"}
+{"version":3,"file":"ec-signature.js","sourceRoot":"","sources":["../../../src/utils/private/ec-signature.ts"],"names":[],"mappings":";;;AAAA,oCAAiD;AACjD,mCAAkD;AAClD,yCAAuC;AAEvC,uCAAqD;AACrD,mDAAiD;AACjD,+BAA2C;AAEpC,MAAM,iBAAiB,GAAG,CAAC,EAChC,IAAI,EACJ,WAAW,EACX,OAAO,EACP,GAAG,GACsB,EAAU,EAAE;IACrC,MAAM,SAAS,GAAG,IAAA,mBAAU,EAAC,IAAA,8BAAc,EAAC,OAAO,CAAC,CAAC;SAClD,MAAM,CAAC,IAAI,CAAC;SACZ,GAAG,EAAE;SACL,IAAI,CAAC,EAAE,GAAG,EAAE,IAAA,oBAAU,EAAC,OAAO,CAAC,EAAE,WAAW,EAAE,CAAC,CAAC;IAEnD,IAAI,GAAG,EAAE,CAAC;QACR,OAAO,IAAA,cAAQ,EAAC,OAAO,EAAE,SAAS,CAAC,CAAC;IACtC,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC,CAAC;AAhBW,QAAA,iBAAiB,qBAgB5B;AAEK,MAAM,iBAAiB,GAAG,CAAC,EAChC,IAAI,EACJ,WAAW,EACX,QAAQ,EACR,OAAO,EACP,GAAG,EACH,SAAS,GACgB,EAAW,EAAE;IACtC,IAAI,MAAc,CAAC;IAEnB,IAAI,GAAG,EAAE,CAAC;QACR,MAAM,GAAG,IAAA,cAAQ,EACf,OAAO,EACP,IAAA,aAAQ,EAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,QAAQ,CAAC,CACnE,CAAC;IACJ,CAAC;SAAM,IAAI,IAAA,aAAQ,EAAC,SAAS,CAAC,EAAE,CAAC;QAC/B,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;IAC5C,CAAC;SAAM,CAAC;QACN,MAAM,GAAG,SAAS,CAAC;IACrB,CAAC;IAED,OAAO,IAAA,qBAAY,EAAC,IAAA,8BAAc,EAAC,OAAO,CAAC,CAAC;SACzC,MAAM,CAAC,IAAI,CAAC;SACZ,GAAG,EAAE;SACL,MAAM,CAAC,EAAE,GAAG,EAAE,IAAA,sBAAY,EAAC,OAAO,CAAC,EAAE,WAAW,EAAE,EAAE,MAAM,CAAC,CAAC;AACjE,CAAC,CAAC;AAzBW,QAAA,iBAAiB,qBAyB5B;AAEK,MAAM,iBAAiB,GAAG,CAAC,EAChC,IAAI,EACJ,WAAW,EACX,QAAQ,EACR,OAAO,EACP,GAAG,EACH,SAAS,GACgB,EAAQ,EAAE;IACnC,IAAI,IAAA,yBAAiB,EAAC,EAAE,IAAI,EAAE,WAAW,EAAE,QAAQ,EAAE,OAAO,EAAE,GAAG,EAAE,SAAS,EAAE,CAAC;QAAE,OAAO;IACxF,MAAM,IAAI,gBAAO,CAAC,mBAAmB,CAAC,CAAC;AACzC,CAAC,CAAC;AAVW,QAAA,iBAAiB,qBAU5B"}

package/dist/utils/private/get-key.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"get-key.d.ts","sourceRoot":"","sources":["../../../src/utils/private/get-key.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAG9C,eAAO,MAAM,UAAU,YAAa,UAAU,KAAG,MAQhD,CAAC;AAEF,eAAO,MAAM,YAAY,YAAa,UAAU,KAAG,MAQlD,CAAC"}
+{"version":3,"file":"get-key.d.ts","sourceRoot":"","sources":["../../../src/utils/private/get-key.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAG9C,eAAO,MAAM,UAAU,GAAI,SAAS,UAAU,KAAG,MAQhD,CAAC;AAEF,eAAO,MAAM,YAAY,GAAI,SAAS,UAAU,KAAG,MAQlD,CAAC"}

package/dist/utils/private/map-algorithm.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"map-algorithm.d.ts","sourceRoot":"","sources":["../../../src/utils/private/map-algorithm.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAW,MAAM,kBAAkB,CAAC;AACvD,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAG9C,eAAO,MAAM,cAAc,YAAa,UAAU,KAAG,YAUpD,CAAC"}
+{"version":3,"file":"map-algorithm.d.ts","sourceRoot":"","sources":["../../../src/utils/private/map-algorithm.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAc,MAAM,kBAAkB,CAAC;AAC1D,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAG9C,eAAO,MAAM,cAAc,GAAI,SAAS,UAAU,KAAG,YAUpD,CAAC"}

package/dist/utils/private/map-algorithm.js

@@ -4,7 +4,7 @@ exports.mapEcAlgorithm = void 0;
 const kryptos_1 = require("@lindorm/kryptos");
 const errors_1 = require("../../errors");
 const mapEcAlgorithm = (kryptos) => {
-    if (!kryptos_1.Kryptos.isEc(kryptos)) {
+    if (!kryptos_1.KryptosKit.isEc(kryptos)) {
         throw new errors_1.EcError("Invalid kryptos type", { debug: { kryptos } });
     }
     if (kryptos.algorithm.endsWith("256"))

package/dist/utils/private/map-algorithm.js.map

@@ -1 +1 @@
-{"version":3,"file":"map-algorithm.js","sourceRoot":"","sources":["../../../src/utils/private/map-algorithm.ts"],"names":[],"mappings":";;;AAAA,8CAAuD;AAEvD,yCAAuC;AAEhC,MAAM,cAAc,GAAG,CAAC,OAAmB,EAAgB,EAAE;IAClE,IAAI,CAAC,iBAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QAC3B,MAAM,IAAI,gBAAO,CAAC,sBAAsB,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,EAAE,CAAC,CAAC;IACpE,CAAC;IAED,IAAI,OAAO,CAAC,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC;QAAE,OAAO,QAAQ,CAAC;IACvD,IAAI,OAAO,CAAC,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC;QAAE,OAAO,QAAQ,CAAC;IACvD,IAAI,OAAO,CAAC,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC;QAAE,OAAO,QAAQ,CAAC;IAEvD,MAAM,IAAI,gBAAO,CAAC,0BAA0B,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,EAAE,CAAC,CAAC;AACxE,CAAC,CAAC;AAVW,QAAA,cAAc,kBAUzB"}
+{"version":3,"file":"map-algorithm.js","sourceRoot":"","sources":["../../../src/utils/private/map-algorithm.ts"],"names":[],"mappings":";;;AAAA,8CAA0D;AAE1D,yCAAuC;AAEhC,MAAM,cAAc,GAAG,CAAC,OAAmB,EAAgB,EAAE;IAClE,IAAI,CAAC,oBAAU,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QAC9B,MAAM,IAAI,gBAAO,CAAC,sBAAsB,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,EAAE,CAAC,CAAC;IACpE,CAAC;IAED,IAAI,OAAO,CAAC,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC;QAAE,OAAO,QAAQ,CAAC;IACvD,IAAI,OAAO,CAAC,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC;QAAE,OAAO,QAAQ,CAAC;IACvD,IAAI,OAAO,CAAC,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC;QAAE,OAAO,QAAQ,CAAC;IAEvD,MAAM,IAAI,gBAAO,CAAC,0BAA0B,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,EAAE,CAAC,CAAC;AACxE,CAAC,CAAC;AAVW,QAAA,cAAc,kBAUzB"}

package/dist/utils/private/raw.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"raw.d.ts","sourceRoot":"","sources":["../../../src/utils/private/raw.ts"],"names":[],"mappings":"AAAA,OAAO,EAAW,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAQvD,eAAO,MAAM,QAAQ,YAAa,UAAU,gBAAgB,MAAM,KAAG,MA2CpE,CAAC;AAEF,eAAO,MAAM,QAAQ,YAAa,UAAU,gBAAgB,MAAM,KAAG,MA8BpE,CAAC"}
+{"version":3,"file":"raw.d.ts","sourceRoot":"","sources":["../../../src/utils/private/raw.ts"],"names":[],"mappings":"AAAA,OAAO,EAAW,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAQvD,eAAO,MAAM,QAAQ,GAAI,SAAS,UAAU,EAAE,cAAc,MAAM,KAAG,MA2CpE,CAAC;AAEF,eAAO,MAAM,QAAQ,GAAI,SAAS,UAAU,EAAE,cAAc,MAAM,KAAG,MA8BpE,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@lindorm/ec",
-  "version": "0.1.8",
+  "version": "0.2.1",
   "license": "AGPL-3.0-or-later",
   "author": "Jonn Nilsson",
   "repository": {
@@ -18,20 +18,23 @@
     "example": "ts-node example",
     "integration": "compd --file docker-compose.yml jest --config jest.config.integration.js --watch",
     "integration:focus": "compd --file docker-compose.yml jest --config jest.config.integration.js --watch $1",
+    "prettier": "prettier --write ./src/*",
     "test": "jest --watch --",
     "test:ci": "npm run test:unit",
     "test:integration": "jest --config jest.config.integration.js --",
     "test:unit": "jest --config jest.config.js --",
     "typecheck": "tsc --watch",
     "typecheck:ci": "tsc",
-    "update": "ncu -u"
+    "update": "ncu -i",
+    "update:auto": "ncu -u"
   },
   "dependencies": {
-    "@lindorm/errors": "^0.1.7",
-    "@lindorm/kryptos": "^0.3.7"
+    "@lindorm/errors": "^0.1.9",
+    "@lindorm/is": "^0.1.8",
+    "@lindorm/kryptos": "^0.4.1"
   },
   "devDependencies": {
-    "@lindorm/types": "^0.2.1"
+    "@lindorm/types": "^0.3.0"
   },
-  "gitHead": "c3a0944569f1344aea5fa3431de8b36e4468a115"
+  "gitHead": "e66150efb6d7a4688bcece59481ab98d54865af3"
 }