@matter/protocol 0.15.0-alpha.0-20250616-4b3754906 → 0.15.0-alpha.0-20250619-df2264f15

package/dist/cjs/certificate/AttestationCertificateManager.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"AttestationCertificateManager.d.ts","sourceRoot":"","sources":["../../../src/certificate/AttestationCertificateManager.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAS,MAAM,EAAE,UAAU,EAAe,MAAM,UAAU,CAAC;AAClE,OAAO,EAAE,QAAQ,EAAE,MAAM,QAAQ,CAAC;AAuBlC,qBAAa,6BAA6B;;IACtC,OAAO,CAAC,SAAS,CAAa;gBAgBlB,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,QAAQ,EAAE,UAAU,EAAE,UAAU,EAAE,gBAAgB,EAAE,UAAU;WAQvF,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,QAAQ;IAMtD,UAAU;IAIJ,SAAS,CAAC,SAAS,EAAE,MAAM;;;;IAWjC,OAAO,CAAC,eAAe;IAkCvB,OAAO,CAAC,eAAe;IAkCjB,cAAc,CAAC,SAAS,EAAE,UAAU,EAAE,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,MAAM;CAiCpF"}
+{"version":3,"file":"AttestationCertificateManager.d.ts","sourceRoot":"","sources":["../../../src/certificate/AttestationCertificateManager.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAS,MAAM,EAAE,UAAU,EAAe,MAAM,UAAU,CAAC;AAClE,OAAO,EAAE,QAAQ,EAAE,MAAM,QAAQ,CAAC;AAwBlC,qBAAa,6BAA6B;;IACtC,OAAO,CAAC,SAAS,CAAa;gBAgBlB,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,QAAQ,EAAE,UAAU,EAAE,UAAU,EAAE,gBAAgB,EAAE,UAAU;WAQvF,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,QAAQ;IAMtD,UAAU;IAIJ,SAAS,CAAC,SAAS,EAAE,MAAM;;;;YAWnB,eAAe;YAmCf,eAAe;IAmCvB,cAAc,CAAC,SAAS,EAAE,UAAU,EAAE,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,MAAM;CAkCpF"}

package/dist/cjs/certificate/AttestationCertificateManager.js

@@ -22,8 +22,9 @@ __export(AttestationCertificateManager_exports, {
 });
 module.exports = __toCommonJS(AttestationCertificateManager_exports);
 var import_general = require("#general");
-var import_CertificateManager = require("./CertificateManager.js");
 var import_ChipPAAuthorities = require("./ChipPAAuthorities.js");
+var import_AttestationCertificates = require("./kinds/AttestationCertificates.js");
+var import_asn = require("./kinds/definitions/asn.js");
 /**
  * @license
  * Copyright 2022-2025 Matter.js Authors
@@ -45,7 +46,7 @@ class AttestationCertificateManager {
   #paaKeyPair = (0, import_general.PrivateKey)(import_ChipPAAuthorities.TestCert_PAA_NoVID_PrivateKey, {
     publicKey: import_ChipPAAuthorities.TestCert_PAA_NoVID_PublicKey
   });
-  #certs;
+  #crypto;
   #vendorId;
   #paiKeyPair;
   #paiKeyIdentifier;
@@ -54,7 +55,7 @@ class AttestationCertificateManager {
   #paiCertBytes;
   #nextCertificateId = 2;
   constructor(crypto, vendorId, paiKeyPair, paiKeyIdentifier) {
-    this.#certs = new import_CertificateManager.CertificateManager(crypto);
+    this.#crypto = crypto;
     this.#vendorId = vendorId;
     this.#paiKeyPair = paiKeyPair;
     this.#paiKeyIdentifier = paiKeyIdentifier;
@@ -69,7 +70,7 @@ class AttestationCertificateManager {
     return this.#paiCertBytes;
   }
   async getDACert(productId) {
-    const dacKeyPair = await this.#certs.crypto.createKeyPair();
+    const dacKeyPair = await this.#crypto.createKeyPair();
     return {
       keyPair: dacKeyPair,
       dac: await this.generateDaCert(dacKeyPair.publicKey, this.#vendorId, productId)
@@ -78,9 +79,9 @@ class AttestationCertificateManager {
   // Method unused for now because we use the official Matter Test PAA, but is functional
   // eslint-disable-next-line @typescript-eslint/ban-ts-comment
   // @ts-ignore
-  generatePAACert(vendorId) {
+  async generatePAACert(vendorId) {
     const now = import_general.Time.get().now();
-    const unsignedCertificate = {
+    const cert = new import_AttestationCertificates.Paa({
       serialNumber: import_general.Bytes.fromHex((0, import_general.toHex)(this.paaCertId)),
       signatureAlgorithm: 1,
       publicKeyAlgorithm: 1,
@@ -89,8 +90,8 @@ class AttestationCertificateManager {
         commonName: getPaaCommonName(),
         vendorId
       },
-      notBefore: (0, import_CertificateManager.jsToMatterDate)(now, -1),
-      notAfter: (0, import_CertificateManager.jsToMatterDate)(now, 10),
+      notBefore: (0, import_asn.jsToMatterDate)(now, -1),
+      notAfter: (0, import_asn.jsToMatterDate)(now, 10),
       subject: {
         commonName: getPaaCommonName(),
         vendorId
@@ -108,12 +109,13 @@ class AttestationCertificateManager {
         subjectKeyIdentifier: this.#paaKeyIdentifier,
         authorityKeyIdentifier: this.#paaKeyIdentifier
       }
-    };
-    return this.#certs.productAttestationAuthorityCertToAsn1(unsignedCertificate, this.#paaKeyPair);
+    });
+    await cert.sign(this.#crypto, this.#paaKeyPair);
+    return cert.asSignedAsn1();
   }
-  generatePAICert(vendorId, productId) {
+  async generatePAICert(vendorId, productId) {
     const now = import_general.Time.get().now();
-    const unsignedCertificate = {
+    const cert = new import_AttestationCertificates.Pai({
       serialNumber: import_general.Bytes.fromHex((0, import_general.toHex)(this.#paiCertId)),
       signatureAlgorithm: 1,
       publicKeyAlgorithm: 1,
@@ -121,8 +123,8 @@ class AttestationCertificateManager {
       issuer: {
         commonName: getPaaCommonName()
       },
-      notBefore: (0, import_CertificateManager.jsToMatterDate)(now, -1),
-      notAfter: (0, import_CertificateManager.jsToMatterDate)(now, 10),
+      notBefore: (0, import_asn.jsToMatterDate)(now, -1),
+      notAfter: (0, import_asn.jsToMatterDate)(now, 10),
       subject: {
         commonName: getPaiCommonName(vendorId, productId),
         vendorId,
@@ -141,19 +143,20 @@ class AttestationCertificateManager {
         subjectKeyIdentifier: this.#paiKeyIdentifier,
         authorityKeyIdentifier: this.#paaKeyIdentifier
       }
-    };
-    return this.#certs.productAttestationIntermediateCertToAsn1(unsignedCertificate, this.#paaKeyPair);
+    });
+    await cert.sign(this.#crypto, this.#paaKeyPair);
+    return cert.asSignedAsn1();
   }
   async generateDaCert(publicKey, vendorId, productId) {
     const now = import_general.Time.get().now();
     const certId = this.#nextCertificateId++;
-    const unsignedCertificate = {
+    const cert = new import_AttestationCertificates.Dac({
       serialNumber: import_general.Bytes.fromHex((0, import_general.toHex)(certId)),
       signatureAlgorithm: 1,
       publicKeyAlgorithm: 1,
       ellipticCurveIdentifier: 1,
-      notBefore: (0, import_CertificateManager.jsToMatterDate)(now, -1),
-      notAfter: (0, import_CertificateManager.jsToMatterDate)(now, 10),
+      notBefore: (0, import_asn.jsToMatterDate)(now, -1),
+      notAfter: (0, import_asn.jsToMatterDate)(now, 10),
       issuer: {
         commonName: getPaiCommonName(vendorId),
         vendorId
@@ -171,11 +174,12 @@ class AttestationCertificateManager {
         keyUsage: {
           digitalSignature: true
         },
-        subjectKeyIdentifier: (await this.#certs.crypto.computeSha256(publicKey)).slice(0, 20),
+        subjectKeyIdentifier: (await this.#crypto.computeSha256(publicKey)).slice(0, 20),
         authorityKeyIdentifier: this.#paiKeyIdentifier
       }
-    };
-    return this.#certs.deviceAttestationCertToAsn1(unsignedCertificate, this.#paiKeyPair);
+    });
+    await cert.sign(this.#crypto, this.#paiKeyPair);
+    return cert.asSignedAsn1();
   }
 }
 //# sourceMappingURL=AttestationCertificateManager.js.map

package/dist/cjs/certificate/AttestationCertificateManager.js.map

@@ -1,6 +1,6 @@
 {
   "version": 3,
   "sources": ["../../../src/certificate/AttestationCertificateManager.ts"],
-  "mappings": ";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAMA,qBAAuD;AAEvD,gCAAmD;AACnD,+BAIO;AAbP;AAAA;AAAA;AAAA;AAAA;AAeA,SAAS,iBAAiB,UAAoB,WAAoB;AAC9D,SAAO,yBAAyB,SAAS,SAAS,EAAE,EAAE,YAAY,CAAC,IAC/D,cAAc,SAAY,WAAW,KAAK,UAAU,SAAS,EAAE,EAAE,YAAY,CAAC,EAClF;AACJ;AAEA,SAAS,iBAAiB,UAAoB,WAAmB;AAC7D,SAAO,yBAAyB,SAAS,SAAS,EAAE,EAAE,YAAY,CAAC,MAAM,UAAU,SAAS,EAAE,EAAE,YAAY,CAAC;AACjH;AAEA,SAAS,mBAAmB;AAExB,SAAO;AACX;AAEO,MAAM,8BAA8B;AAAA,EAC/B,YAAY,OAAO,CAAC;AAAA;AAAA;AAAA,EAInB,kBAAc,2BAAW,wDAA+B;AAAA,IAC7D,WAAW;AAAA,EACf,CAAC;AAAA,EACQ;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA,oBAAoB;AAAA,EACpB,aAAa,OAAO,CAAC;AAAA,EACrB;AAAA,EACT,qBAAqB;AAAA,EAErB,YAAY,QAAgB,UAAoB,YAAwB,kBAA8B;AAClG,SAAK,SAAS,IAAI,6CAAmB,MAAM;AAC3C,SAAK,YAAY;AACjB,SAAK,cAAc;AACnB,SAAK,oBAAoB;AACzB,SAAK,gBAAgB,KAAK,gBAAgB,QAAQ;AAAA,EACtD;AAAA,EAEA,aAAa,OAAO,QAAgB,UAAoB;AACpD,UAAM,MAAM,MAAM,OAAO,cAAc;AACvC,UAAM,aAAa,MAAM,OAAO,cAAc,IAAI,SAAS;AAC3D,WAAO,IAAI,8BAA8B,QAAQ,UAAU,KAAK,WAAW,MAAM,GAAG,EAAE,CAAC;AAAA,EAC3F;AAAA,EAEA,aAAa;AACT,WAAO,KAAK;AAAA,EAChB;AAAA,EAEA,MAAM,UAAU,WAAmB;AAC/B,UAAM,aAAa,MAAM,KAAK,OAAO,OAAO,cAAc;AAC1D,WAAO;AAAA,MACH,SAAS;AAAA,MACT,KAAK,MAAM,KAAK,eAAe,WAAW,WAAW,KAAK,WAAW,SAAS;AAAA,IAClF;AAAA,EACJ;AAAA;AAAA;AAAA;AAAA,EAKQ,gBAAgB,UAAqB;AACzC,UAAM,MAAM,oBAAK,IAAI,EAAE,IAAI;AAC3B,UAAM,sBAAsB;AAAA,MACxB,cAAc,qBAAM,YAAQ,sBAAM,KAAK,SAAS,CAAC;AAAA,MACjD,oBAAoB;AAAA,MACpB,oBAAoB;AAAA,MACpB,yBAAyB;AAAA,MACzB,QAAQ;AAAA,QACJ,YAAY,iBAAiB;AAAA,QAC7B;AAAA,MACJ;AAAA,MACA,eAAW,0CAAe,KAAK,EAAE;AAAA,MACjC,cAAU,0CAAe,KAAK,EAAE;AAAA,MAChC,SAAS;AAAA,QACL,YAAY,iBAAiB;AAAA,QAC7B;AAAA,MACJ;AAAA,MACA,wBAAwB,KAAK,YAAY;AAAA,MACzC,YAAY;AAAA,QACR,kBAAkB;AAAA,UACd,MAAM;AAAA,UACN,SAAS;AAAA,QACb;AAAA,QACA,UAAU;AAAA,UACN,aAAa;AAAA,UACb,SAAS;AAAA,QACb;AAAA,QACA,sBAAsB,KAAK;AAAA,QAC3B,wBAAwB,KAAK;AAAA,MACjC;AAAA,IACJ;AACA,WAAO,KAAK,OAAO,sCAAsC,qBAAqB,KAAK,WAAW;AAAA,EAClG;AAAA,EAEQ,gBAAgB,UAAoB,WAAoB;AAC5D,UAAM,MAAM,oBAAK,IAAI,EAAE,IAAI;AAC3B,UAAM,sBAAsB;AAAA,MACxB,cAAc,qBAAM,YAAQ,sBAAM,KAAK,UAAU,CAAC;AAAA,MAClD,oBAAoB;AAAA,MACpB,oBAAoB;AAAA,MACpB,yBAAyB;AAAA,MACzB,QAAQ;AAAA,QACJ,YAAY,iBAAiB;AAAA,MACjC;AAAA,MACA,eAAW,0CAAe,KAAK,EAAE;AAAA,MACjC,cAAU,0CAAe,KAAK,EAAE;AAAA,MAChC,SAAS;AAAA,QACL,YAAY,iBAAiB,UAAU,SAAS;AAAA,QAChD;AAAA,QACA;AAAA,MACJ;AAAA,MACA,wBAAwB,KAAK,YAAY;AAAA,MACzC,YAAY;AAAA,QACR,kBAAkB;AAAA,UACd,MAAM;AAAA,UACN,SAAS;AAAA,QACb;AAAA,QACA,UAAU;AAAA,UACN,aAAa;AAAA,UACb,SAAS;AAAA,QACb;AAAA,QACA,sBAAsB,KAAK;AAAA,QAC3B,wBAAwB,KAAK;AAAA,MACjC;AAAA,IACJ;AACA,WAAO,KAAK,OAAO,yCAAyC,qBAAqB,KAAK,WAAW;AAAA,EACrG;AAAA,EAEA,MAAM,eAAe,WAAuB,UAAoB,WAAmB;AAC/E,UAAM,MAAM,oBAAK,IAAI,EAAE,IAAI;AAC3B,UAAM,SAAS,KAAK;AACpB,UAAM,sBAAsB;AAAA,MACxB,cAAc,qBAAM,YAAQ,sBAAM,MAAM,CAAC;AAAA,MACzC,oBAAoB;AAAA,MACpB,oBAAoB;AAAA,MACpB,yBAAyB;AAAA,MACzB,eAAW,0CAAe,KAAK,EAAE;AAAA,MACjC,cAAU,0CAAe,KAAK,EAAE;AAAA,MAChC,QAAQ;AAAA,QACJ,YAAY,iBAAiB,QAAQ;AAAA,QACrC;AAAA,MACJ;AAAA,MACA,SAAS;AAAA,QACL,YAAY,iBAAiB,UAAU,SAAS;AAAA,QAChD;AAAA,QACA;AAAA,MACJ;AAAA,MACA,wBAAwB;AAAA,MACxB,YAAY;AAAA,QACR,kBAAkB;AAAA,UACd,MAAM;AAAA,QACV;AAAA,QACA,UAAU;AAAA,UACN,kBAAkB;AAAA,QACtB;AAAA,QACA,uBAAuB,MAAM,KAAK,OAAO,OAAO,cAAc,SAAS,GAAG,MAAM,GAAG,EAAE;AAAA,QACrF,wBAAwB,KAAK;AAAA,MACjC;AAAA,IACJ;AACA,WAAO,KAAK,OAAO,4BAA4B,qBAAqB,KAAK,WAAW;AAAA,EACxF;AACJ;",
+  "mappings": ";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAMA,qBAAuD;AAEvD,+BAIO;AACP,qCAA8B;AAC9B,iBAA+B;AAd/B;AAAA;AAAA;AAAA;AAAA;AAgBA,SAAS,iBAAiB,UAAoB,WAAoB;AAC9D,SAAO,yBAAyB,SAAS,SAAS,EAAE,EAAE,YAAY,CAAC,IAC/D,cAAc,SAAY,WAAW,KAAK,UAAU,SAAS,EAAE,EAAE,YAAY,CAAC,EAClF;AACJ;AAEA,SAAS,iBAAiB,UAAoB,WAAmB;AAC7D,SAAO,yBAAyB,SAAS,SAAS,EAAE,EAAE,YAAY,CAAC,MAAM,UAAU,SAAS,EAAE,EAAE,YAAY,CAAC;AACjH;AAEA,SAAS,mBAAmB;AAExB,SAAO;AACX;AAEO,MAAM,8BAA8B;AAAA,EAC/B,YAAY,OAAO,CAAC;AAAA;AAAA;AAAA,EAInB,kBAAc,2BAAW,wDAA+B;AAAA,IAC7D,WAAW;AAAA,EACf,CAAC;AAAA,EACQ;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA,oBAAoB;AAAA,EACpB,aAAa,OAAO,CAAC;AAAA,EACrB;AAAA,EACT,qBAAqB;AAAA,EAErB,YAAY,QAAgB,UAAoB,YAAwB,kBAA8B;AAClG,SAAK,UAAU;AACf,SAAK,YAAY;AACjB,SAAK,cAAc;AACnB,SAAK,oBAAoB;AACzB,SAAK,gBAAgB,KAAK,gBAAgB,QAAQ;AAAA,EACtD;AAAA,EAEA,aAAa,OAAO,QAAgB,UAAoB;AACpD,UAAM,MAAM,MAAM,OAAO,cAAc;AACvC,UAAM,aAAa,MAAM,OAAO,cAAc,IAAI,SAAS;AAC3D,WAAO,IAAI,8BAA8B,QAAQ,UAAU,KAAK,WAAW,MAAM,GAAG,EAAE,CAAC;AAAA,EAC3F;AAAA,EAEA,aAAa;AACT,WAAO,KAAK;AAAA,EAChB;AAAA,EAEA,MAAM,UAAU,WAAmB;AAC/B,UAAM,aAAa,MAAM,KAAK,QAAQ,cAAc;AACpD,WAAO;AAAA,MACH,SAAS;AAAA,MACT,KAAK,MAAM,KAAK,eAAe,WAAW,WAAW,KAAK,WAAW,SAAS;AAAA,IAClF;AAAA,EACJ;AAAA;AAAA;AAAA;AAAA,EAKA,MAAc,gBAAgB,UAAqB;AAC/C,UAAM,MAAM,oBAAK,IAAI,EAAE,IAAI;AAC3B,UAAM,OAAO,IAAI,mCAAI;AAAA,MACjB,cAAc,qBAAM,YAAQ,sBAAM,KAAK,SAAS,CAAC;AAAA,MACjD,oBAAoB;AAAA,MACpB,oBAAoB;AAAA,MACpB,yBAAyB;AAAA,MACzB,QAAQ;AAAA,QACJ,YAAY,iBAAiB;AAAA,QAC7B;AAAA,MACJ;AAAA,MACA,eAAW,2BAAe,KAAK,EAAE;AAAA,MACjC,cAAU,2BAAe,KAAK,EAAE;AAAA,MAChC,SAAS;AAAA,QACL,YAAY,iBAAiB;AAAA,QAC7B;AAAA,MACJ;AAAA,MACA,wBAAwB,KAAK,YAAY;AAAA,MACzC,YAAY;AAAA,QACR,kBAAkB;AAAA,UACd,MAAM;AAAA,UACN,SAAS;AAAA,QACb;AAAA,QACA,UAAU;AAAA,UACN,aAAa;AAAA,UACb,SAAS;AAAA,QACb;AAAA,QACA,sBAAsB,KAAK;AAAA,QAC3B,wBAAwB,KAAK;AAAA,MACjC;AAAA,IACJ,CAAC;AACD,UAAM,KAAK,KAAK,KAAK,SAAS,KAAK,WAAW;AAC9C,WAAO,KAAK,aAAa;AAAA,EAC7B;AAAA,EAEA,MAAc,gBAAgB,UAAoB,WAAoB;AAClE,UAAM,MAAM,oBAAK,IAAI,EAAE,IAAI;AAC3B,UAAM,OAAO,IAAI,mCAAI;AAAA,MACjB,cAAc,qBAAM,YAAQ,sBAAM,KAAK,UAAU,CAAC;AAAA,MAClD,oBAAoB;AAAA,MACpB,oBAAoB;AAAA,MACpB,yBAAyB;AAAA,MACzB,QAAQ;AAAA,QACJ,YAAY,iBAAiB;AAAA,MACjC;AAAA,MACA,eAAW,2BAAe,KAAK,EAAE;AAAA,MACjC,cAAU,2BAAe,KAAK,EAAE;AAAA,MAChC,SAAS;AAAA,QACL,YAAY,iBAAiB,UAAU,SAAS;AAAA,QAChD;AAAA,QACA;AAAA,MACJ;AAAA,MACA,wBAAwB,KAAK,YAAY;AAAA,MACzC,YAAY;AAAA,QACR,kBAAkB;AAAA,UACd,MAAM;AAAA,UACN,SAAS;AAAA,QACb;AAAA,QACA,UAAU;AAAA,UACN,aAAa;AAAA,UACb,SAAS;AAAA,QACb;AAAA,QACA,sBAAsB,KAAK;AAAA,QAC3B,wBAAwB,KAAK;AAAA,MACjC;AAAA,IACJ,CAAC;AACD,UAAM,KAAK,KAAK,KAAK,SAAS,KAAK,WAAW;AAC9C,WAAO,KAAK,aAAa;AAAA,EAC7B;AAAA,EAEA,MAAM,eAAe,WAAuB,UAAoB,WAAmB;AAC/E,UAAM,MAAM,oBAAK,IAAI,EAAE,IAAI;AAC3B,UAAM,SAAS,KAAK;AACpB,UAAM,OAAO,IAAI,mCAAI;AAAA,MACjB,cAAc,qBAAM,YAAQ,sBAAM,MAAM,CAAC;AAAA,MACzC,oBAAoB;AAAA,MACpB,oBAAoB;AAAA,MACpB,yBAAyB;AAAA,MACzB,eAAW,2BAAe,KAAK,EAAE;AAAA,MACjC,cAAU,2BAAe,KAAK,EAAE;AAAA,MAChC,QAAQ;AAAA,QACJ,YAAY,iBAAiB,QAAQ;AAAA,QACrC;AAAA,MACJ;AAAA,MACA,SAAS;AAAA,QACL,YAAY,iBAAiB,UAAU,SAAS;AAAA,QAChD;AAAA,QACA;AAAA,MACJ;AAAA,MACA,wBAAwB;AAAA,MACxB,YAAY;AAAA,QACR,kBAAkB;AAAA,UACd,MAAM;AAAA,QACV;AAAA,QACA,UAAU;AAAA,UACN,kBAAkB;AAAA,QACtB;AAAA,QACA,uBAAuB,MAAM,KAAK,QAAQ,cAAc,SAAS,GAAG,MAAM,GAAG,EAAE;AAAA,QAC/E,wBAAwB,KAAK;AAAA,MACjC;AAAA,IACJ,CAAC;AACD,UAAM,KAAK,KAAK,KAAK,SAAS,KAAK,WAAW;AAC9C,WAAO,KAAK,aAAa;AAAA,EAC7B;AACJ;",
   "names": []
 }

package/dist/cjs/certificate/CertificateAuthority.d.ts

@@ -5,14 +5,13 @@
  */
 import { BinaryKeyPair, Construction, Crypto, Environment, Environmental, StorageContext } from "#general";
 import { CaseAuthenticatedTag, FabricId, NodeId } from "#types";
-import { CertificateManager } from "./CertificateManager.js";
 /**
  * Manages the root key pair for a fabric owned by a local node.
  * TODO: Add support for (optional) ICACs
  */
 export declare class CertificateAuthority {
     #private;
-    get certs(): CertificateManager;
+    get crypto(): Crypto;
     get construction(): Construction<CertificateAuthority>;
     static create(crypto: Crypto, options?: StorageContext | CertificateAuthority.Configuration): Promise<CertificateAuthority>;
     constructor(crypto: Crypto, options?: StorageContext | CertificateAuthority.Configuration);

package/dist/cjs/certificate/CertificateAuthority.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"CertificateAuthority.d.ts","sourceRoot":"","sources":["../../../src/certificate/CertificateAuthority.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EACH,aAAa,EAEb,YAAY,EACZ,MAAM,EACN,WAAW,EACX,aAAa,EAIb,cAAc,EAKjB,MAAM,UAAU,CAAC;AAClB,OAAO,EAAE,oBAAoB,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAChE,OAAO,EACH,kBAAkB,EAOrB,MAAM,yBAAyB,CAAC;AAIjC;;;GAGG;AACH,qBAAa,oBAAoB;;IAS7B,IAAI,KAAK,uBAER;IAED,IAAI,YAAY,uCAEf;WAEY,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,oBAAoB,CAAC,aAAa;gBAIrF,MAAM,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,oBAAoB,CAAC,aAAa;IA2CzF,MAAM,CAAC,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,WAAW;IAO9C,IAAI,QAAQ,gCAEX;IAED,IAAI,MAAM,IAAI,oBAAoB,CAAC,aAAa,CAQ/C;IA+BK,WAAW,CACb,SAAS,EAAE,UAAU,EACrB,QAAQ,EAAE,QAAQ,EAClB,MAAM,EAAE,MAAM,EACd,qBAAqB,CAAC,EAAE,oBAAoB,EAAE;CA8CrD;AAED,yBAAiB,oBAAoB,CAAC;IAClC,KAAY,aAAa,GAAG;QACxB,UAAU,EAAE,MAAM,CAAC;QACnB,WAAW,EAAE,aAAa,CAAC;QAC3B,iBAAiB,EAAE,UAAU,CAAC;QAC9B,aAAa,EAAE,UAAU,CAAC;QAC1B,iBAAiB,EAAE,MAAM,CAAC;KAC7B,CAAC;CACL"}
+{"version":3,"file":"CertificateAuthority.d.ts","sourceRoot":"","sources":["../../../src/certificate/CertificateAuthority.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EACH,aAAa,EAEb,YAAY,EACZ,MAAM,EACN,WAAW,EACX,aAAa,EAIb,cAAc,EAKjB,MAAM,UAAU,CAAC;AAClB,OAAO,EAAE,oBAAoB,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAOhE;;;GAGG;AACH,qBAAa,oBAAoB;;IAS7B,IAAI,MAAM,WAET;IAED,IAAI,YAAY,uCAEf;WAEY,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,oBAAoB,CAAC,aAAa;gBAIrF,MAAM,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,oBAAoB,CAAC,aAAa;IAwCzF,MAAM,CAAC,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,WAAW;IAO9C,IAAI,QAAQ,gCAEX;IAED,IAAI,MAAM,IAAI,oBAAoB,CAAC,aAAa,CAQ/C;IA4BK,WAAW,CACb,SAAS,EAAE,UAAU,EACrB,QAAQ,EAAE,QAAQ,EAClB,MAAM,EAAE,MAAM,EACd,qBAAqB,CAAC,EAAE,oBAAoB,EAAE;CAyCrD;AAED,yBAAiB,oBAAoB,CAAC;IAClC,KAAY,aAAa,GAAG;QACxB,UAAU,EAAE,MAAM,CAAC;QACnB,WAAW,EAAE,aAAa,CAAC;QAC3B,iBAAiB,EAAE,UAAU,CAAC;QAC9B,aAAa,EAAE,UAAU,CAAC;QAC1B,iBAAiB,EAAE,MAAM,CAAC;KAC7B,CAAC;CACL"}

package/dist/cjs/certificate/CertificateAuthority.js

@@ -22,7 +22,9 @@ __export(CertificateAuthority_exports, {
 });
 module.exports = __toCommonJS(CertificateAuthority_exports);
 var import_general = require("#general");
-var import_CertificateManager = require("./CertificateManager.js");
+var import_asn = require("./kinds/definitions/asn.js");
+var import_Noc = require("./kinds/Noc.js");
+var import_Rcac = require("./kinds/Rcac.js");
 /**
  * @license
  * Copyright 2022-2025 Matter.js Authors
@@ -30,15 +32,15 @@ var import_CertificateManager = require("./CertificateManager.js");
  */
 const logger = import_general.Logger.get("CertificateAuthority");
 class CertificateAuthority {
-  #certs;
+  #crypto;
   #rootCertId = BigInt(0);
   #rootKeyPair;
   #rootKeyIdentifier;
   #rootCertBytes;
   #nextCertificateId = BigInt(1);
   #construction;
-  get certs() {
-    return this.#certs;
+  get crypto() {
+    return this.#crypto;
   }
   get construction() {
     return this.#construction;
@@ -47,14 +49,11 @@ class CertificateAuthority {
     return (0, import_general.asyncNew)(CertificateAuthority, crypto, options);
   }
   constructor(crypto, options) {
-    this.#certs = new import_CertificateManager.CertificateManager(crypto);
+    this.#crypto = crypto;
     this.#construction = (0, import_general.Construction)(this, async () => {
       const certValues = options instanceof import_general.StorageContext ? await options.values() : options ?? {};
-      this.#rootKeyPair = await this.#certs.crypto.createKeyPair();
-      this.#rootKeyIdentifier = (await this.#certs.crypto.computeSha256(this.#rootKeyPair.publicKey)).slice(
-        0,
-        20
-      );
+      this.#rootKeyPair = await this.#crypto.createKeyPair();
+      this.#rootKeyIdentifier = (await this.#crypto.computeSha256(this.#rootKeyPair.publicKey)).slice(0, 20);
       this.#rootCertBytes = await this.#generateRootCert();
       if ((typeof certValues.rootCertId === "number" || typeof certValues.rootCertId === "bigint") && (ArrayBuffer.isView(certValues.rootKeyPair) || typeof certValues.rootKeyPair === "object") && ArrayBuffer.isView(certValues.rootKeyIdentifier) && ArrayBuffer.isView(certValues.rootCertBytes) && (typeof certValues.nextCertificateId === "number" || typeof certValues.nextCertificateId === "bigint")) {
         this.#rootCertId = BigInt(certValues.rootCertId);
@@ -97,14 +96,14 @@ class CertificateAuthority {
   }
   async #generateRootCert() {
     const now = import_general.Time.get().now();
-    const unsignedCertificate = {
+    const cert = new import_Rcac.Rcac({
       serialNumber: import_general.Bytes.fromHex((0, import_general.toHex)(this.#rootCertId)),
       signatureAlgorithm: 1,
       publicKeyAlgorithm: 1,
       ellipticCurveIdentifier: 1,
       issuer: { rcacId: this.#rootCertId },
-      notBefore: (0, import_CertificateManager.jsToMatterDate)(now, -1),
-      notAfter: (0, import_CertificateManager.jsToMatterDate)(now, 10),
+      notBefore: (0, import_asn.jsToMatterDate)(now, -1),
+      notAfter: (0, import_asn.jsToMatterDate)(now, 10),
       subject: { rcacId: this.#rootCertId },
       ellipticCurvePublicKey: this.#initializedRootKeyPair.publicKey,
       extensions: {
@@ -116,24 +115,21 @@ class CertificateAuthority {
         subjectKeyIdentifier: this.#initializedRootKeyIdentifier,
         authorityKeyIdentifier: this.#initializedRootKeyIdentifier
       }
-    };
-    const signature = await this.#certs.crypto.signEcdsa(
-      this.#initializedRootKeyPair,
-      this.#certs.rootCertToAsn1(unsignedCertificate)
-    );
-    return import_CertificateManager.TlvRootCertificate.encode({ ...unsignedCertificate, signature });
+    });
+    await cert.sign(this.#crypto, this.#initializedRootKeyPair);
+    return cert.asSignedTlv();
   }
   async generateNoc(publicKey, fabricId, nodeId, caseAuthenticatedTags) {
     const now = import_general.Time.get().now();
     const certId = this.#nextCertificateId++;
-    const unsignedCertificate = {
+    const cert = new import_Noc.Noc({
       serialNumber: import_general.Bytes.fromHex((0, import_general.toHex)(certId)),
       signatureAlgorithm: 1,
       publicKeyAlgorithm: 1,
       ellipticCurveIdentifier: 1,
       issuer: { rcacId: this.#rootCertId },
-      notBefore: (0, import_CertificateManager.jsToMatterDate)(now, -1),
-      notAfter: (0, import_CertificateManager.jsToMatterDate)(now, 10),
+      notBefore: (0, import_asn.jsToMatterDate)(now, -1),
+      notAfter: (0, import_asn.jsToMatterDate)(now, 10),
       subject: { fabricId, nodeId, caseAuthenticatedTags },
       ellipticCurvePublicKey: publicKey,
       extensions: {
@@ -142,15 +138,12 @@ class CertificateAuthority {
           digitalSignature: true
         },
         extendedKeyUsage: [2, 1],
-        subjectKeyIdentifier: (await this.#certs.crypto.computeSha256(publicKey)).slice(0, 20),
+        subjectKeyIdentifier: (await this.#crypto.computeSha256(publicKey)).slice(0, 20),
         authorityKeyIdentifier: this.#initializedRootKeyIdentifier
       }
-    };
-    const signature = await this.#certs.crypto.signEcdsa(
-      this.#initializedRootKeyPair,
-      this.#certs.nodeOperationalCertToAsn1(unsignedCertificate)
-    );
-    return import_CertificateManager.TlvOperationalCertificate.encode({ ...unsignedCertificate, signature });
+    });
+    await cert.sign(this.#crypto, this.#initializedRootKeyPair);
+    return cert.asSignedTlv();
   }
   get #initializedRootKeyPair() {
     if (this.#rootKeyPair === void 0) {

package/dist/cjs/certificate/CertificateAuthority.js.map

@@ -1,6 +1,6 @@
 {
   "version": 3,
   "sources": ["../../../src/certificate/CertificateAuthority.ts"],
-  "mappings": ";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAMA,qBAeO;AAEP,gCAQO;AA/BP;AAAA;AAAA;AAAA;AAAA;AAiCA,MAAM,SAAS,sBAAO,IAAI,sBAAsB;AAMzC,MAAM,qBAAqB;AAAA,EAC9B;AAAA,EACA,cAAc,OAAO,CAAC;AAAA,EACtB;AAAA,EACA;AAAA,EACA;AAAA,EACA,qBAAqB,OAAO,CAAC;AAAA,EAC7B;AAAA,EAEA,IAAI,QAAQ;AACR,WAAO,KAAK;AAAA,EAChB;AAAA,EAEA,IAAI,eAAe;AACf,WAAO,KAAK;AAAA,EAChB;AAAA,EAEA,aAAa,OAAO,QAAgB,SAA+D;AAC/F,eAAO,yBAAS,sBAAsB,QAAQ,OAAO;AAAA,EACzD;AAAA,EAEA,YAAY,QAAgB,SAA+D;AACvF,SAAK,SAAS,IAAI,6CAAmB,MAAM;AAC3C,SAAK,oBAAgB,6BAAa,MAAM,YAAY;AAEhD,YAAM,aAAa,mBAAmB,gCAAiB,MAAM,QAAQ,OAAO,IAAK,WAAW,CAAC;AAE7F,WAAK,eAAe,MAAM,KAAK,OAAO,OAAO,cAAc;AAC3D,WAAK,sBAAsB,MAAM,KAAK,OAAO,OAAO,cAAc,KAAK,aAAa,SAAS,GAAG;AAAA,QAC5F;AAAA,QACA;AAAA,MACJ;AACA,WAAK,iBAAiB,MAAM,KAAK,kBAAkB;AAEnD,WACK,OAAO,WAAW,eAAe,YAAY,OAAO,WAAW,eAAe,cAC9E,YAAY,OAAO,WAAW,WAAW,KAAK,OAAO,WAAW,gBAAgB,aACjF,YAAY,OAAO,WAAW,iBAAiB,KAC/C,YAAY,OAAO,WAAW,aAAa,MAC1C,OAAO,WAAW,sBAAsB,YAAY,OAAO,WAAW,sBAAsB,WAC/F;AACE,aAAK,cAAc,OAAO,WAAW,UAAU;AAC/C,aAAK,mBAAe,2BAAW,WAAW,WAA4B;AACtE,aAAK,qBAAqB,WAAW;AACrC,aAAK,iBAAiB,WAAW;AACjC,aAAK,qBAAqB,OAAO,WAAW,iBAAiB;AAC7D,eAAO,KAAK,qCAAqC,KAAK,WAAW,EAAE;AACnE;AAAA,MACJ;AAEA,aAAO,KAAK,mCAAmC,KAAK,WAAW,EAAE;AAEjE,UAAI,mBAAmB,+BAAgB;AACnC,cAAM,QAAQ,IAAI;AAAA,UACd,YAAY,KAAK;AAAA,UACjB,aAAa,KAAK,aAAa;AAAA,UAC/B,mBAAmB,KAAK;AAAA,UACxB,eAAe,KAAK;AAAA,UACpB,mBAAmB,KAAK;AAAA,QAC5B,CAAC;AAAA,MACL;AAAA,IACJ,CAAC;AAAA,EACL;AAAA,EAEA,QAAQ,6BAAc,MAAM,EAAE,KAAkB;AAC5C,UAAM,UAAU,IAAI,IAAI,6BAAc,EAAE,cAAc,cAAc;AACpE,UAAM,WAAW,IAAI,qBAAqB,IAAI,IAAI,qBAAM,GAAG,OAAO;AAClE,QAAI,IAAI,sBAAsB,QAAQ;AACtC,WAAO;AAAA,EACX;AAAA,EAEA,IAAI,WAAW;AACX,WAAO,KAAK,cAAc,OAAO,aAAa,KAAK,cAAc;AAAA,EACrE;AAAA,EAEA,IAAI,SAA6C;AAC7C,WAAO;AAAA,MACH,YAAY,KAAK;AAAA,MACjB,aAAa,KAAK,aAAa,OAAO,iBAAiB,KAAK,YAAY,EAAE;AAAA,MAC1E,mBAAmB,KAAK,aAAa,OAAO,uBAAuB,KAAK,kBAAkB;AAAA,MAC1F,eAAe,KAAK,aAAa,OAAO,mBAAmB,KAAK,cAAc;AAAA,MAC9E,mBAAmB,KAAK;AAAA,IAC5B;AAAA,EACJ;AAAA,EAEA,MAAM,oBAAoB;AACtB,UAAM,MAAM,oBAAK,IAAI,EAAE,IAAI;AAC3B,UAAM,sBAAiD;AAAA,MACnD,cAAc,qBAAM,YAAQ,sBAAM,KAAK,WAAW,CAAC;AAAA,MACnD,oBAAoB;AAAA,MACpB,oBAAoB;AAAA,MACpB,yBAAyB;AAAA,MACzB,QAAQ,EAAE,QAAQ,KAAK,YAAY;AAAA,MACnC,eAAW,0CAAe,KAAK,EAAE;AAAA,MACjC,cAAU,0CAAe,KAAK,EAAE;AAAA,MAChC,SAAS,EAAE,QAAQ,KAAK,YAAY;AAAA,MACpC,wBAAwB,KAAK,wBAAwB;AAAA,MACrD,YAAY;AAAA,QACR,kBAAkB,EAAE,MAAM,KAAK;AAAA,QAC/B,UAAU;AAAA,UACN,aAAa;AAAA,UACb,SAAS;AAAA,QACb;AAAA,QACA,sBAAsB,KAAK;AAAA,QAC3B,wBAAwB,KAAK;AAAA,MACjC;AAAA,IACJ;AACA,UAAM,YAAY,MAAM,KAAK,OAAO,OAAO;AAAA,MACvC,KAAK;AAAA,MACL,KAAK,OAAO,eAAe,mBAAmB;AAAA,IAClD;AACA,WAAO,6CAAmB,OAAO,EAAE,GAAG,qBAAqB,UAAU,CAAC;AAAA,EAC1E;AAAA,EAEA,MAAM,YACF,WACA,UACA,QACA,uBACF;AACE,UAAM,MAAM,oBAAK,IAAI,EAAE,IAAI;AAC3B,UAAM,SAAS,KAAK;AACpB,UAAM,sBAAwD;AAAA,MAC1D,cAAc,qBAAM,YAAQ,sBAAM,MAAM,CAAC;AAAA,MACzC,oBAAoB;AAAA,MACpB,oBAAoB;AAAA,MACpB,yBAAyB;AAAA,MACzB,QAAQ,EAAE,QAAQ,KAAK,YAAY;AAAA,MACnC,eAAW,0CAAe,KAAK,EAAE;AAAA,MACjC,cAAU,0CAAe,KAAK,EAAE;AAAA,MAChC,SAAS,EAAE,UAAU,QAAQ,sBAAsB;AAAA,MACnD,wBAAwB;AAAA,MACxB,YAAY;AAAA,QACR,kBAAkB,EAAE,MAAM,MAAM;AAAA,QAChC,UAAU;AAAA,UACN,kBAAkB;AAAA,QACtB;AAAA,QACA,kBAAkB,CAAC,GAAG,CAAC;AAAA,QACvB,uBAAuB,MAAM,KAAK,OAAO,OAAO,cAAc,SAAS,GAAG,MAAM,GAAG,EAAE;AAAA,QACrF,wBAAwB,KAAK;AAAA,MACjC;AAAA,IACJ;AAEA,UAAM,YAAY,MAAM,KAAK,OAAO,OAAO;AAAA,MACvC,KAAK;AAAA,MACL,KAAK,OAAO,0BAA0B,mBAAmB;AAAA,IAC7D;AAEA,WAAO,oDAA0B,OAAO,EAAE,GAAG,qBAAqB,UAAU,CAAC;AAAA,EACjF;AAAA,EAEA,IAAI,0BAA0B;AAC1B,QAAI,KAAK,iBAAiB,QAAW;AACjC,YAAM,IAAI,6BAAc,iCAAiC;AAAA,IAC7D;AACA,WAAO,KAAK;AAAA,EAChB;AAAA,EAEA,IAAI,gCAAgC;AAChC,QAAI,KAAK,uBAAuB,QAAW;AACvC,YAAM,IAAI,6BAAc,oCAAoC;AAAA,IAChE;AACA,WAAO,KAAK;AAAA,EAChB;AACJ;",
+  "mappings": ";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAMA,qBAeO;AAEP,iBAA+B;AAC/B,iBAAoB;AACpB,kBAAqB;AAzBrB;AAAA;AAAA;AAAA;AAAA;AA2BA,MAAM,SAAS,sBAAO,IAAI,sBAAsB;AAMzC,MAAM,qBAAqB;AAAA,EAC9B;AAAA,EACA,cAAc,OAAO,CAAC;AAAA,EACtB;AAAA,EACA;AAAA,EACA;AAAA,EACA,qBAAqB,OAAO,CAAC;AAAA,EAC7B;AAAA,EAEA,IAAI,SAAS;AACT,WAAO,KAAK;AAAA,EAChB;AAAA,EAEA,IAAI,eAAe;AACf,WAAO,KAAK;AAAA,EAChB;AAAA,EAEA,aAAa,OAAO,QAAgB,SAA+D;AAC/F,eAAO,yBAAS,sBAAsB,QAAQ,OAAO;AAAA,EACzD;AAAA,EAEA,YAAY,QAAgB,SAA+D;AACvF,SAAK,UAAU;AACf,SAAK,oBAAgB,6BAAa,MAAM,YAAY;AAEhD,YAAM,aAAa,mBAAmB,gCAAiB,MAAM,QAAQ,OAAO,IAAK,WAAW,CAAC;AAE7F,WAAK,eAAe,MAAM,KAAK,QAAQ,cAAc;AACrD,WAAK,sBAAsB,MAAM,KAAK,QAAQ,cAAc,KAAK,aAAa,SAAS,GAAG,MAAM,GAAG,EAAE;AACrG,WAAK,iBAAiB,MAAM,KAAK,kBAAkB;AAEnD,WACK,OAAO,WAAW,eAAe,YAAY,OAAO,WAAW,eAAe,cAC9E,YAAY,OAAO,WAAW,WAAW,KAAK,OAAO,WAAW,gBAAgB,aACjF,YAAY,OAAO,WAAW,iBAAiB,KAC/C,YAAY,OAAO,WAAW,aAAa,MAC1C,OAAO,WAAW,sBAAsB,YAAY,OAAO,WAAW,sBAAsB,WAC/F;AACE,aAAK,cAAc,OAAO,WAAW,UAAU;AAC/C,aAAK,mBAAe,2BAAW,WAAW,WAA4B;AACtE,aAAK,qBAAqB,WAAW;AACrC,aAAK,iBAAiB,WAAW;AACjC,aAAK,qBAAqB,OAAO,WAAW,iBAAiB;AAC7D,eAAO,KAAK,qCAAqC,KAAK,WAAW,EAAE;AACnE;AAAA,MACJ;AAEA,aAAO,KAAK,mCAAmC,KAAK,WAAW,EAAE;AAEjE,UAAI,mBAAmB,+BAAgB;AACnC,cAAM,QAAQ,IAAI;AAAA,UACd,YAAY,KAAK;AAAA,UACjB,aAAa,KAAK,aAAa;AAAA,UAC/B,mBAAmB,KAAK;AAAA,UACxB,eAAe,KAAK;AAAA,UACpB,mBAAmB,KAAK;AAAA,QAC5B,CAAC;AAAA,MACL;AAAA,IACJ,CAAC;AAAA,EACL;AAAA,EAEA,QAAQ,6BAAc,MAAM,EAAE,KAAkB;AAC5C,UAAM,UAAU,IAAI,IAAI,6BAAc,EAAE,cAAc,cAAc;AACpE,UAAM,WAAW,IAAI,qBAAqB,IAAI,IAAI,qBAAM,GAAG,OAAO;AAClE,QAAI,IAAI,sBAAsB,QAAQ;AACtC,WAAO;AAAA,EACX;AAAA,EAEA,IAAI,WAAW;AACX,WAAO,KAAK,cAAc,OAAO,aAAa,KAAK,cAAc;AAAA,EACrE;AAAA,EAEA,IAAI,SAA6C;AAC7C,WAAO;AAAA,MACH,YAAY,KAAK;AAAA,MACjB,aAAa,KAAK,aAAa,OAAO,iBAAiB,KAAK,YAAY,EAAE;AAAA,MAC1E,mBAAmB,KAAK,aAAa,OAAO,uBAAuB,KAAK,kBAAkB;AAAA,MAC1F,eAAe,KAAK,aAAa,OAAO,mBAAmB,KAAK,cAAc;AAAA,MAC9E,mBAAmB,KAAK;AAAA,IAC5B;AAAA,EACJ;AAAA,EAEA,MAAM,oBAAoB;AACtB,UAAM,MAAM,oBAAK,IAAI,EAAE,IAAI;AAC3B,UAAM,OAAO,IAAI,iBAAK;AAAA,MAClB,cAAc,qBAAM,YAAQ,sBAAM,KAAK,WAAW,CAAC;AAAA,MACnD,oBAAoB;AAAA,MACpB,oBAAoB;AAAA,MACpB,yBAAyB;AAAA,MACzB,QAAQ,EAAE,QAAQ,KAAK,YAAY;AAAA,MACnC,eAAW,2BAAe,KAAK,EAAE;AAAA,MACjC,cAAU,2BAAe,KAAK,EAAE;AAAA,MAChC,SAAS,EAAE,QAAQ,KAAK,YAAY;AAAA,MACpC,wBAAwB,KAAK,wBAAwB;AAAA,MACrD,YAAY;AAAA,QACR,kBAAkB,EAAE,MAAM,KAAK;AAAA,QAC/B,UAAU;AAAA,UACN,aAAa;AAAA,UACb,SAAS;AAAA,QACb;AAAA,QACA,sBAAsB,KAAK;AAAA,QAC3B,wBAAwB,KAAK;AAAA,MACjC;AAAA,IACJ,CAAC;AACD,UAAM,KAAK,KAAK,KAAK,SAAS,KAAK,uBAAuB;AAC1D,WAAO,KAAK,YAAY;AAAA,EAC5B;AAAA,EAEA,MAAM,YACF,WACA,UACA,QACA,uBACF;AACE,UAAM,MAAM,oBAAK,IAAI,EAAE,IAAI;AAC3B,UAAM,SAAS,KAAK;AACpB,UAAM,OAAO,IAAI,eAAI;AAAA,MACjB,cAAc,qBAAM,YAAQ,sBAAM,MAAM,CAAC;AAAA,MACzC,oBAAoB;AAAA,MACpB,oBAAoB;AAAA,MACpB,yBAAyB;AAAA,MACzB,QAAQ,EAAE,QAAQ,KAAK,YAAY;AAAA,MACnC,eAAW,2BAAe,KAAK,EAAE;AAAA,MACjC,cAAU,2BAAe,KAAK,EAAE;AAAA,MAChC,SAAS,EAAE,UAAU,QAAQ,sBAAsB;AAAA,MACnD,wBAAwB;AAAA,MACxB,YAAY;AAAA,QACR,kBAAkB,EAAE,MAAM,MAAM;AAAA,QAChC,UAAU;AAAA,UACN,kBAAkB;AAAA,QACtB;AAAA,QACA,kBAAkB,CAAC,GAAG,CAAC;AAAA,QACvB,uBAAuB,MAAM,KAAK,QAAQ,cAAc,SAAS,GAAG,MAAM,GAAG,EAAE;AAAA,QAC/E,wBAAwB,KAAK;AAAA,MACjC;AAAA,IACJ,CAAC;AACD,UAAM,KAAK,KAAK,KAAK,SAAS,KAAK,uBAAuB;AAC1D,WAAO,KAAK,YAAY;AAAA,EAC5B;AAAA,EAEA,IAAI,0BAA0B;AAC1B,QAAI,KAAK,iBAAiB,QAAW;AACjC,YAAM,IAAI,6BAAc,iCAAiC;AAAA,IAC7D;AACA,WAAO,KAAK;AAAA,EAChB;AAAA,EAEA,IAAI,gCAAgC;AAChC,QAAI,KAAK,uBAAuB,QAAW;AACvC,YAAM,IAAI,6BAAc,oCAAoC;AAAA,IAChE;AACA,WAAO,KAAK;AAAA,EAChB;AACJ;",
   "names": []
 }

package/dist/cjs/certificate/DeviceCertification.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"DeviceCertification.d.ts","sourceRoot":"","sources":["../../../src/certificate/DeviceCertification.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,YAAY,EAAE,MAAM,EAAsC,UAAU,EAAE,MAAM,UAAU,CAAC;AAChG,OAAO,EAAE,WAAW,EAAE,MAAM,yBAAyB,CAAC;AACtD,OAAO,EAAE,kBAAkB,EAAE,MAAM,QAAQ,CAAC;AAI5C;;GAEG;AACH,qBAAa,mBAAmB;;IAQ5B,IAAI,YAAY,sCAEf;IAED,IAAI,WAAW,gCAEd;IAED,IAAI,uBAAuB,gCAE1B;IAED,IAAI,WAAW,gCAEd;gBAEW,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,mBAAmB,CAAC,UAAU,EAAE,OAAO,CAAC,EAAE,kBAAkB;IAwC3F,IAAI,CAAC,OAAO,EAAE,WAAW,EAAE,IAAI,EAAE,UAAU;CA6BpD;AAED,yBAAiB,mBAAmB,CAAC;IACjC,UAAiB,aAAa;QAC1B,UAAU,EAAE,UAAU,GAAG,UAAU,CAAC;QACpC,WAAW,EAAE,UAAU,CAAC;QACxB,uBAAuB,EAAE,UAAU,CAAC;QACpC,WAAW,EAAE,UAAU,CAAC;KAC3B;IAED,KAAY,UAAU,GAAG,aAAa,GAAG,CAAC,MAAM,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC;CAC3E"}
+{"version":3,"file":"DeviceCertification.d.ts","sourceRoot":"","sources":["../../../src/certificate/DeviceCertification.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,OAAO,EAAE,YAAY,EAAE,MAAM,EAAsC,UAAU,EAAE,MAAM,UAAU,CAAC;AAChG,OAAO,EAAE,WAAW,EAAE,MAAM,yBAAyB,CAAC;AACtD,OAAO,EAAE,kBAAkB,EAAE,MAAM,QAAQ,CAAC;AAG5C;;GAEG;AACH,qBAAa,mBAAmB;;IAQ5B,IAAI,YAAY,sCAEf;IAED,IAAI,WAAW,gCAEd;IAED,IAAI,uBAAuB,gCAE1B;IAED,IAAI,WAAW,gCAEd;gBAEW,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,mBAAmB,CAAC,UAAU,EAAE,OAAO,CAAC,EAAE,kBAAkB;IAoC3F,IAAI,CAAC,OAAO,EAAE,WAAW,EAAE,IAAI,EAAE,UAAU;CA6BpD;AAED,yBAAiB,mBAAmB,CAAC;IACjC,UAAiB,aAAa;QAC1B,UAAU,EAAE,UAAU,GAAG,UAAU,CAAC;QACpC,WAAW,EAAE,UAAU,CAAC;QACxB,uBAAuB,EAAE,UAAU,CAAC;QACpC,WAAW,EAAE,UAAU,CAAC;KAC3B;IAED,KAAY,UAAU,GAAG,aAAa,GAAG,CAAC,MAAM,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC;CAC3E"}

package/dist/cjs/certificate/DeviceCertification.js

@@ -21,9 +21,9 @@ __export(DeviceCertification_exports, {
   DeviceCertification: () => DeviceCertification
 });
 module.exports = __toCommonJS(DeviceCertification_exports);
+var import_CertificationDeclaration = require("#certificate/kinds/CertificationDeclaration.js");
 var import_general = require("#general");
 var import_AttestationCertificateManager = require("./AttestationCertificateManager.js");
-var import_CertificationDeclarationManager = require("./CertificationDeclarationManager.js");
 /**
  * @license
  * Copyright 2022-2025 Matter.js Authors
@@ -66,11 +66,7 @@ class DeviceCertification {
           privateKey: (0, import_general.PrivateKey)(dacKeyPair.privateKey),
           certificate: dac,
           intermediateCertificate: await paa.getPAICert(),
-          declaration: await import_CertificationDeclarationManager.CertificationDeclarationManager.generate(
-            crypto,
-            product.vendorId,
-            product.productId
-          )
+          declaration: await import_CertificationDeclaration.CertificationDeclaration.generate(crypto, product.vendorId, product.productId)
         };
       };
     }

package/dist/cjs/certificate/DeviceCertification.js.map

@@ -1,6 +1,6 @@
 {
   "version": 3,
   "sources": ["../../../src/certificate/DeviceCertification.ts"],
-  "mappings": ";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAMA,qBAAqF;AAGrF,2CAA8C;AAC9C,6CAAgD;AAVhD;AAAA;AAAA;AAAA;AAAA;AAeO,MAAM,oBAAoB;AAAA,EAC7B;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACS;AAAA,EAET,IAAI,eAAe;AACf,WAAO,KAAK;AAAA,EAChB;AAAA,EAEA,IAAI,cAAc;AACd,WAAO,KAAK,mBAAmB,EAAE;AAAA,EACrC;AAAA,EAEA,IAAI,0BAA0B;AAC1B,WAAO,KAAK,mBAAmB,EAAE;AAAA,EACrC;AAAA,EAEA,IAAI,cAAc;AACd,WAAO,KAAK,mBAAmB,EAAE;AAAA,EACrC;AAAA,EAEA,YAAY,QAAgB,QAAyC,SAA8B;AAC/F,SAAK,UAAU;AACf,QAAI;AACJ,QAAI,OAAO,WAAW,YAAY;AAC9B,uBAAiB;AAAA,IACrB,WAAW,QAAQ;AACf,uBAAiB,MAAM;AAAA,IAC3B,OAAO;AACH,uBAAiB,YAAY;AACzB,YAAI,YAAY,QAAW;AACvB,gBAAM,IAAI,mCAAoB,kEAAkE;AAAA,QACpG;AAEA,cAAM,MAAM,MAAM,mEAA8B,OAAO,QAAQ,QAAQ,QAAQ;AAC/E,cAAM,EAAE,SAAS,YAAY,IAAI,IAAI,MAAM,IAAI,UAAU,QAAQ,SAAS;AAE1E,eAAO;AAAA,UACH,gBAAY,2BAAW,WAAW,UAAU;AAAA,UAC5C,aAAa;AAAA,UACb,yBAAyB,MAAM,IAAI,WAAW;AAAA,UAC9C,aAAa,MAAM,uEAAgC;AAAA,YAC/C;AAAA,YACA,QAAQ;AAAA,YACR,QAAQ;AAAA,UACZ;AAAA,QACJ;AAAA,MACJ;AAAA,IACJ;AAEA,SAAK,oBAAgB,6BAAa,MAAM,YAAY;AAChD,YAAMA,UAAS,MAAM,eAAe;AAEpC,WAAK,cACDA,QAAO,sBAAsB,iBAAa,2BAAWA,QAAO,UAAU,IAAIA,QAAO;AACrF,WAAK,eAAeA,QAAO;AAC3B,WAAK,2BAA2BA,QAAO;AACvC,WAAK,eAAeA,QAAO;AAAA,IAC/B,CAAC;AAAA,EACL;AAAA,EAEA,MAAM,KAAK,SAAsB,MAAkB;AAC/C,UAAM,EAAE,WAAW,IAAI,KAAK,mBAAmB;AAC/C,UAAM,YAAY,MAAM,KAAK,QAAQ,UAAU,YAAY,CAAC,MAAM,QAAQ,uBAAuB,CAAC;AAClG,WAAO;AAAA,EACX;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,qBAAqB;AACjB,SAAK,cAAc,OAAO;AAC1B,QACI,KAAK,iBAAiB,UACtB,KAAK,6BAA6B,UAClC,KAAK,iBAAiB,UACtB,KAAK,gBAAgB,QACvB;AACE,YAAM,IAAI;AAAA,QACN;AAAA,MACJ;AAAA,IACJ;AACA,WAAO;AAAA,MACH,aAAa,KAAK;AAAA,MAClB,yBAAyB,KAAK;AAAA,MAC9B,aAAa,KAAK;AAAA,MAClB,YAAY,KAAK;AAAA,IACrB;AAAA,EACJ;AACJ;",
+  "mappings": ";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAMA,sCAAyC;AACzC,qBAAqF;AAGrF,2CAA8C;AAV9C;AAAA;AAAA;AAAA;AAAA;AAeO,MAAM,oBAAoB;AAAA,EAC7B;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACS;AAAA,EAET,IAAI,eAAe;AACf,WAAO,KAAK;AAAA,EAChB;AAAA,EAEA,IAAI,cAAc;AACd,WAAO,KAAK,mBAAmB,EAAE;AAAA,EACrC;AAAA,EAEA,IAAI,0BAA0B;AAC1B,WAAO,KAAK,mBAAmB,EAAE;AAAA,EACrC;AAAA,EAEA,IAAI,cAAc;AACd,WAAO,KAAK,mBAAmB,EAAE;AAAA,EACrC;AAAA,EAEA,YAAY,QAAgB,QAAyC,SAA8B;AAC/F,SAAK,UAAU;AACf,QAAI;AACJ,QAAI,OAAO,WAAW,YAAY;AAC9B,uBAAiB;AAAA,IACrB,WAAW,QAAQ;AACf,uBAAiB,MAAM;AAAA,IAC3B,OAAO;AACH,uBAAiB,YAAY;AACzB,YAAI,YAAY,QAAW;AACvB,gBAAM,IAAI,mCAAoB,kEAAkE;AAAA,QACpG;AAEA,cAAM,MAAM,MAAM,mEAA8B,OAAO,QAAQ,QAAQ,QAAQ;AAC/E,cAAM,EAAE,SAAS,YAAY,IAAI,IAAI,MAAM,IAAI,UAAU,QAAQ,SAAS;AAE1E,eAAO;AAAA,UACH,gBAAY,2BAAW,WAAW,UAAU;AAAA,UAC5C,aAAa;AAAA,UACb,yBAAyB,MAAM,IAAI,WAAW;AAAA,UAC9C,aAAa,MAAM,yDAAyB,SAAS,QAAQ,QAAQ,UAAU,QAAQ,SAAS;AAAA,QACpG;AAAA,MACJ;AAAA,IACJ;AAEA,SAAK,oBAAgB,6BAAa,MAAM,YAAY;AAChD,YAAMA,UAAS,MAAM,eAAe;AAEpC,WAAK,cACDA,QAAO,sBAAsB,iBAAa,2BAAWA,QAAO,UAAU,IAAIA,QAAO;AACrF,WAAK,eAAeA,QAAO;AAC3B,WAAK,2BAA2BA,QAAO;AACvC,WAAK,eAAeA,QAAO;AAAA,IAC/B,CAAC;AAAA,EACL;AAAA,EAEA,MAAM,KAAK,SAAsB,MAAkB;AAC/C,UAAM,EAAE,WAAW,IAAI,KAAK,mBAAmB;AAC/C,UAAM,YAAY,MAAM,KAAK,QAAQ,UAAU,YAAY,CAAC,MAAM,QAAQ,uBAAuB,CAAC;AAClG,WAAO;AAAA,EACX;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,qBAAqB;AACjB,SAAK,cAAc,OAAO;AAC1B,QACI,KAAK,iBAAiB,UACtB,KAAK,6BAA6B,UAClC,KAAK,iBAAiB,UACtB,KAAK,gBAAgB,QACvB;AACE,YAAM,IAAI;AAAA,QACN;AAAA,MACJ;AAAA,IACJ;AACA,WAAO;AAAA,MACH,aAAa,KAAK;AAAA,MAClB,yBAAyB,KAAK;AAAA,MAC9B,aAAa,KAAK;AAAA,MAClB,YAAY,KAAK;AAAA,IACrB;AAAA,EACJ;AACJ;",
   "names": ["config"]
 }

package/dist/cjs/certificate/index.d.ts

@@ -5,8 +5,13 @@
  */
 export * from "./AttestationCertificateManager.js";
 export * from "./CertificateAuthority.js";
-export * from "./CertificateManager.js";
-export * from "./CertificationDeclarationManager.js";
 export * from "./ChipPAAuthorities.js";
 export * from "./DeviceCertification.js";
+export * from "./kinds/AttestationCertificates.js";
+export * from "./kinds/CertificationDeclaration.js";
+export { CertificateError } from "./kinds/common.js";
+export * from "./kinds/Icac.js";
+export * from "./kinds/Noc.js";
+export * from "./kinds/Rcac.js";
+export * from "./kinds/X509Base.js";
 //# sourceMappingURL=index.d.ts.map

package/dist/cjs/certificate/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/certificate/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,cAAc,oCAAoC,CAAC;AACnD,cAAc,2BAA2B,CAAC;AAC1C,cAAc,yBAAyB,CAAC;AACxC,cAAc,sCAAsC,CAAC;AACrD,cAAc,wBAAwB,CAAC;AACvC,cAAc,0BAA0B,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/certificate/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,cAAc,oCAAoC,CAAC;AACnD,cAAc,2BAA2B,CAAC;AAC1C,cAAc,wBAAwB,CAAC;AACvC,cAAc,0BAA0B,CAAC;AACzC,cAAc,oCAAoC,CAAC;AACnD,cAAc,qCAAqC,CAAC;AACpD,OAAO,EAAE,gBAAgB,EAAE,MAAM,mBAAmB,CAAC;AACrD,cAAc,iBAAiB,CAAC;AAChC,cAAc,gBAAgB,CAAC;AAC/B,cAAc,iBAAiB,CAAC;AAChC,cAAc,qBAAqB,CAAC"}

package/dist/cjs/certificate/index.js

@@ -3,6 +3,10 @@ var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
 var __getOwnPropNames = Object.getOwnPropertyNames;
 var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
 var __copyProps = (to, from, except, desc) => {
   if (from && typeof from === "object" || typeof from === "function") {
     for (let key of __getOwnPropNames(from))
@@ -14,13 +18,21 @@ var __copyProps = (to, from, except, desc) => {
 var __reExport = (target, mod, secondTarget) => (__copyProps(target, mod, "default"), secondTarget && __copyProps(secondTarget, mod, "default"));
 var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
 var certificate_exports = {};
+__export(certificate_exports, {
+  CertificateError: () => import_common.CertificateError
+});
 module.exports = __toCommonJS(certificate_exports);
 __reExport(certificate_exports, require("./AttestationCertificateManager.js"), module.exports);
 __reExport(certificate_exports, require("./CertificateAuthority.js"), module.exports);
-__reExport(certificate_exports, require("./CertificateManager.js"), module.exports);
-__reExport(certificate_exports, require("./CertificationDeclarationManager.js"), module.exports);
 __reExport(certificate_exports, require("./ChipPAAuthorities.js"), module.exports);
 __reExport(certificate_exports, require("./DeviceCertification.js"), module.exports);
+__reExport(certificate_exports, require("./kinds/AttestationCertificates.js"), module.exports);
+__reExport(certificate_exports, require("./kinds/CertificationDeclaration.js"), module.exports);
+var import_common = require("./kinds/common.js");
+__reExport(certificate_exports, require("./kinds/Icac.js"), module.exports);
+__reExport(certificate_exports, require("./kinds/Noc.js"), module.exports);
+__reExport(certificate_exports, require("./kinds/Rcac.js"), module.exports);
+__reExport(certificate_exports, require("./kinds/X509Base.js"), module.exports);
 /**
  * @license
  * Copyright 2022-2025 Matter.js Authors

package/dist/cjs/certificate/index.js.map

@@ -1,6 +1,6 @@
 {
   "version": 3,
   "sources": ["../../../src/certificate/index.ts"],
-  "mappings": ";;;;;;;;;;;;;;;AAAA;AAAA;AAMA,gCAAc,+CANd;AAOA,gCAAc,sCAPd;AAQA,gCAAc,oCARd;AASA,gCAAc,iDATd;AAUA,gCAAc,mCAVd;AAWA,gCAAc,qCAXd;AAAA;AAAA;AAAA;AAAA;AAAA;",
+  "mappings": ";;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAMA,gCAAc,+CANd;AAOA,gCAAc,sCAPd;AAQA,gCAAc,mCARd;AASA,gCAAc,qCATd;AAUA,gCAAc,+CAVd;AAWA,gCAAc,gDAXd;AAYA,oBAAiC;AACjC,gCAAc,4BAbd;AAcA,gCAAc,2BAdd;AAeA,gCAAc,4BAfd;AAgBA,gCAAc,gCAhBd;AAAA;AAAA;AAAA;AAAA;AAAA;",
   "names": []
 }

package/dist/cjs/certificate/kinds/AttestationCertificates.d.ts

@@ -0,0 +1,34 @@
+/**
+ * @license
+ * Copyright 2022-2025 Matter.js Authors
+ * SPDX-License-Identifier: Apache-2.0
+ */
+import { Crypto } from "#general";
+import { AttestationCertificate } from "./definitions/attestation.js";
+import { X509Certificate } from "./definitions/base.js";
+import { X509Base } from "./X509Base.js";
+/**
+ * Base class for Attestation Certificates (PAA, PAI, DAC).
+ */
+export declare abstract class AttestationBaseCertificate<CT extends X509Certificate> extends X509Base<CT> {
+    /**
+     * Sign the certificate using the provided crypto and key.
+     * If the certificate is already signed, it throws a CertificateError.
+     */
+    sign(crypto: Crypto, key: JsonWebKey): Promise<void>;
+    /**
+     * Returns the signed certificate in ASN.1 DER format.
+     * If the certificate is not signed, it throws a CertificateError.
+     */
+    asSignedAsn1(): Uint8Array<ArrayBufferLike>;
+}
+/** PAA (Product Attestation Authority) Certificate. */
+export declare class Paa extends AttestationBaseCertificate<AttestationCertificate.Paa> {
+}
+/** PAI (Product Attestation Intermediate) Certificate. */
+export declare class Pai extends AttestationBaseCertificate<AttestationCertificate.Pai> {
+}
+/** DAC (Device Attestation Certificate) Certificate. */
+export declare class Dac extends AttestationBaseCertificate<AttestationCertificate.Dac> {
+}
+//# sourceMappingURL=AttestationCertificates.d.ts.map

package/dist/cjs/certificate/kinds/AttestationCertificates.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"AttestationCertificates.d.ts","sourceRoot":"","sources":["../../../../src/certificate/kinds/AttestationCertificates.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,MAAM,EAAgC,MAAM,UAAU,CAAC;AAEhE,OAAO,EAAE,sBAAsB,EAAE,MAAM,8BAA8B,CAAC;AACtE,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AACxD,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AAEzC;;GAEG;AACH,8BAAsB,0BAA0B,CAAC,EAAE,SAAS,eAAe,CAAE,SAAQ,QAAQ,CAAC,EAAE,CAAC;IAC7F;;;OAGG;IACY,IAAI,CAAC,MAAM,EAAE,MAAM,EAAE,GAAG,EAAE,UAAU;IAInD;;;OAGG;IACH,YAAY,IAAI,UAAU,CAAC,eAAe,CAAC;CAU9C;AAED,uDAAuD;AACvD,qBAAa,GAAI,SAAQ,0BAA0B,CAAC,sBAAsB,CAAC,GAAG,CAAC;CAAG;AAElF,0DAA0D;AAC1D,qBAAa,GAAI,SAAQ,0BAA0B,CAAC,sBAAsB,CAAC,GAAG,CAAC;CAAG;AAElF,wDAAwD;AACxD,qBAAa,GAAI,SAAQ,0BAA0B,CAAC,sBAAsB,CAAC,GAAG,CAAC;CAAG"}

package/dist/cjs/certificate/kinds/AttestationCertificates.js

@@ -0,0 +1,64 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var AttestationCertificates_exports = {};
+__export(AttestationCertificates_exports, {
+  AttestationBaseCertificate: () => AttestationBaseCertificate,
+  Dac: () => Dac,
+  Paa: () => Paa,
+  Pai: () => Pai
+});
+module.exports = __toCommonJS(AttestationCertificates_exports);
+var import_general = require("#general");
+var import_common = require("./common.js");
+var import_X509Base = require("./X509Base.js");
+/**
+ * @license
+ * Copyright 2022-2025 Matter.js Authors
+ * SPDX-License-Identifier: Apache-2.0
+ */
+class AttestationBaseCertificate extends import_X509Base.X509Base {
+  /**
+   * Sign the certificate using the provided crypto and key.
+   * If the certificate is already signed, it throws a CertificateError.
+   */
+  async sign(crypto, key) {
+    this.signature = await crypto.signEcdsa(key, this.asUnsignedAsn1(), "der");
+  }
+  /**
+   * Returns the signed certificate in ASN.1 DER format.
+   * If the certificate is not signed, it throws a CertificateError.
+   */
+  asSignedAsn1() {
+    const certificate = this.genericBuildAsn1Structure(this.cert);
+    const certBytes = import_general.DerCodec.encode({
+      certificate,
+      signAlgorithm: import_general.X962.EcdsaWithSHA256,
+      signature: (0, import_general.DerBitString)(this.signature)
+    });
+    (0, import_common.assertCertificateDerSize)(certBytes);
+    return certBytes;
+  }
+}
+class Paa extends AttestationBaseCertificate {
+}
+class Pai extends AttestationBaseCertificate {
+}
+class Dac extends AttestationBaseCertificate {
+}
+//# sourceMappingURL=AttestationCertificates.js.map

package/dist/cjs/certificate/kinds/AttestationCertificates.js.map

@@ -0,0 +1,6 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/certificate/kinds/AttestationCertificates.ts"],
+  "mappings": ";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAMA,qBAAqD;AACrD,oBAAyC;AAGzC,sBAAyB;AAVzB;AAAA;AAAA;AAAA;AAAA;AAeO,MAAe,mCAA+D,yBAAa;AAAA;AAAA;AAAA;AAAA;AAAA,EAK9F,MAAe,KAAK,QAAgB,KAAiB;AACjD,SAAK,YAAY,MAAM,OAAO,UAAU,KAAK,KAAK,eAAe,GAAG,KAAK;AAAA,EAC7E;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,eAA4C;AACxC,UAAM,cAAc,KAAK,0BAA0B,KAAK,IAAI;AAC5D,UAAM,YAAY,wBAAS,OAAO;AAAA,MAC9B;AAAA,MACA,eAAe,oBAAK;AAAA,MACpB,eAAW,6BAAa,KAAK,SAAS;AAAA,IAC1C,CAAC;AACD,gDAAyB,SAAS;AAClC,WAAO;AAAA,EACX;AACJ;AAGO,MAAM,YAAY,2BAAuD;AAAC;AAG1E,MAAM,YAAY,2BAAuD;AAAC;AAG1E,MAAM,YAAY,2BAAuD;AAAC;",
+  "names": []
+}

package/dist/cjs/certificate/kinds/CertificationDeclaration.d.ts

@@ -0,0 +1,23 @@
+/**
+ * @license
+ * Copyright 2022-2025 Matter.js Authors
+ * SPDX-License-Identifier: Apache-2.0
+ */
+import { Crypto } from "#general";
+import { TypeFromBitmapSchema, VendorId } from "#types";
+import { CertificationDeclaration as CertificationDeclarationDef } from "./definitions/certification-declaration.js";
+/** A Matter Certification Declaration */
+export declare class CertificationDeclaration {
+    #private;
+    /**
+     * Generator which is the main usage for the class from outside.
+     * It constructs the class with the relevant details and returns a signed ASN.1 DER version of the CD.
+     */
+    static generate(crypto: Crypto, vendorId: VendorId, productId: number, provisional?: boolean): Promise<Uint8Array<ArrayBufferLike>>;
+    constructor(content: TypeFromBitmapSchema<typeof CertificationDeclarationDef.TlvDc>, subjectKeyIdentifier: Uint8Array);
+    /**
+     * Returns the signed certificate in ASN.1 DER format.
+     */
+    asSignedAsn1(crypto: Crypto, privateKey: JsonWebKey): Promise<Uint8Array<ArrayBufferLike>>;
+}
+//# sourceMappingURL=CertificationDeclaration.d.ts.map

package/dist/cjs/certificate/kinds/CertificationDeclaration.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"CertificationDeclaration.d.ts","sourceRoot":"","sources":["../../../../src/certificate/kinds/CertificationDeclaration.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,OAAO,EAA6B,MAAM,EAAiD,MAAM,UAAU,CAAC;AAC5G,OAAO,EAAE,oBAAoB,EAAE,QAAQ,EAAE,MAAM,QAAQ,CAAC;AAExD,OAAO,EAAE,wBAAwB,IAAI,2BAA2B,EAAE,MAAM,4CAA4C,CAAC;AAwBrH,yCAAyC;AACzC,qBAAa,wBAAwB;;IAIjC;;;OAGG;IACH,MAAM,CAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,MAAM,EAAE,WAAW,UAAQ;gBAoBtF,OAAO,EAAE,oBAAoB,CAAC,OAAO,2BAA2B,CAAC,KAAK,CAAC,EACvE,oBAAoB,EAAE,UAAU;IAMpC;;OAEG;IACG,YAAY,CAAC,MAAM,EAAE,MAAM,EAAE,UAAU,EAAE,UAAU;CAmB5D"}