@matterbridge/core 3.5.3

package/dist/crypto/declarationDecoder.js

@@ -0,0 +1,241 @@
+/* eslint-disable no-console */
+/* eslint-disable @typescript-eslint/no-explicit-any */
+/* eslint-disable @typescript-eslint/no-unused-vars */
+/**
+ * This file contains the Certification Declaration functions.
+ *
+ * @file certificate.ts
+ * @author Luca Liguori
+ * created 2025-05-08
+ * version 1.0.0
+ *
+ * Copyright 2025, 2026, 2027 Luca Liguori.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License. *
+ */
+const tlvFields = [
+    'format_version',
+    'vendor_id',
+    'product_id_array',
+    'device_type_id',
+    'certificate_id',
+    'security_level',
+    'security_information',
+    'version_number',
+    'certification_type',
+    'dac_origin_vendor_id',
+    'dac_origin_product_id',
+    'authorized_paa_list',
+];
+const certification_types = ['test', 'provisional', 'production'];
+/* ──────────────────────────────────────────────────────────────── */
+/* 1.  BER helpers                                                  */
+/* ──────────────────────────────────────────────────────────────── */
+const OID_DATA = Buffer.from('06092a864886f70d010701', 'hex'); // 1.2.840.113549.1.7.1
+const OID_CHIP_CD = Buffer.from('060b2b0601040182a22c0103', 'hex'); // 1.3.6.1.4.1.37244.1.3
+/**
+ * Read DER length octets at `pos`, return [len, bytesConsumed].
+ *
+ * @param {Buffer} buf   Buffer containing the DER-encoded data
+ * @param {number} pos   Position in the buffer to start reading
+ * @returns {[number, number]}  Tuple containing the length and the number of bytes consumed
+ */
+function readLen(buf, pos) {
+    const first = buf[pos];
+    if ((first & 0x80) === 0)
+        return [first, 1];
+    const n = first & 0x7f;
+    let len = 0;
+    for (let i = 1; i <= n; i++)
+        len = (len << 8) | buf[pos + i];
+    return [len, 1 + n];
+}
+/**
+ * Find the encapsulated OCTET-STRING that contains the Matter-TLV.
+ * Accepts both the legacy `data` OID and the modern `chip-cd` OID.
+ *
+ * @param {Buffer} der   DER-encoded CMS SignedData blob
+ * @param {boolean} debug   Enable debug output
+ * @returns {Buffer}  The extracted TLV payload
+ */
+function findTlvPayload(der, debug = false) {
+    /* locate the OID bytes anywhere in the blob */
+    let idx = der.indexOf(OID_CHIP_CD);
+    if (idx === -1)
+        idx = der.indexOf(OID_DATA);
+    if (idx === -1)
+        throw new Error('content-type OID not found');
+    /* skip over the OID TLV */
+    const [oidLen, oidLenBytes] = readLen(der, idx + 1);
+    let p = idx + 1 + oidLenBytes + oidLen;
+    /* scan forward for the first [0] EXPLICIT wrapper that
+       immediately encloses an OCTET-STRING (0x04) */
+    for (; p < der.length; p++) {
+        if (der[p] !== 0xa0)
+            continue; // not context-specific[0]
+        const [len0, ll0] = readLen(der, p + 1);
+        const octPos = p + 1 + ll0;
+        if (der[octPos] !== 0x04)
+            continue; // not OCTET-STRING
+        const [octLen, octLl] = readLen(der, octPos + 1);
+        return der.subarray(octPos + 1 + octLl, octPos + 1 + octLl + octLen);
+    }
+    throw new Error('encapContentInfo not found');
+}
+/* ──────────────────────────────────────────────────────────────── */
+/* 2.  Public API                                                   */
+/* ──────────────────────────────────────────────────────────────── */
+/**
+ * Parse the Matter-TLV payload according to spec §6.3.
+ *
+ * @param {Buffer} tlv - The TLV payload to decode.
+ * @param {boolean} [debug] - Enable debug output.
+ * @returns {CertificationDeclaration} The decoded Certification Declaration.
+ */
+export function decodeCdTlv(tlv, debug = false) {
+    const cd = {};
+    // Skip start marker (0x15) and remove end marker (0x18 at end)
+    if (tlv[0] !== 0x15)
+        throw new Error('TLV start marker not found');
+    if (tlv[tlv.length - 1] !== 0x18)
+        throw new Error('TLV end marker not found');
+    const data = tlv.subarray(1, tlv.length - 1);
+    let idx = 0;
+    while (idx < data.length) {
+        const tag = data[idx++];
+        const field = data[idx++];
+        if (debug)
+            console.log(`Tag: 0x${tag.toString(16)} Field: ${field.toString(10)}-${tlvFields[field]}`);
+        let val;
+        let arrVal = [];
+        let arrLen = 0;
+        switch (tag) {
+            case 0x24: // 24: 1-byte unsigned
+                val = data.subarray(idx, idx + 1);
+                if (debug)
+                    console.log(`  ${tlvFields[field]} = 0x${val.toString('hex')} (${val.readUInt8(0)}) ${field === 8 ? `${certification_types[val.readUInt8(0)]}` : ''}`);
+                idx += 1;
+                break;
+            case 0x25: // 25: 2-byte unsigned
+                val = data.subarray(idx, idx + 2);
+                if (debug)
+                    console.log(`  ${tlvFields[field]} = 0x${val.readUInt16LE(0).toString(16)} (${val.readUInt16LE(0)})`);
+                idx += 2;
+                break;
+            case 0x36: // 36: array of 2-byte values, next byte is 0x05 for UInt16 0x10 for 0x14 20 bytes of PAA SKIs, ends with 0x18
+                arrVal = [];
+                if (field === 0x0b) {
+                    const subType = data[idx++];
+                    const subTypeLen = data[idx++];
+                    val = data.subarray(idx, idx + subTypeLen);
+                    idx += subTypeLen;
+                    const subTypeEnd = data[idx++];
+                    break;
+                }
+                while (data[idx] !== 0x18) {
+                    arrLen = data[idx++];
+                    val = data.subarray(idx, idx + 2);
+                    arrVal.push(val.readUInt16LE(0));
+                    idx += 2;
+                }
+                idx++; // skip 0x18
+                if (debug)
+                    console.log(`  ${tlvFields[field]} = [${arrVal.map((v) => `0x${v.toString(16).padStart(4, '0')} (${v})`).join(', ')}]`);
+                break;
+            case 0x2c: // 2C: string, next byte is length
+                arrLen = data[idx++];
+                val = data.subarray(idx, idx + arrLen);
+                if (debug)
+                    console.log(`  ${tlvFields[field]} = "${val.toString('utf8')}"`);
+                idx += arrLen;
+                break;
+            default:
+                if (debug)
+                    console.log(`  Unknown tag 0x${tag.toString(16)}, stopping.`);
+                idx = data.length;
+                continue;
+        }
+        // Assign the value to the corresponding field in the CD object
+        if (!val) {
+            if (debug)
+                console.log(`  No value found for field ${field}, stopping.`);
+            idx = data.length;
+            continue;
+        }
+        switch (field) {
+            case 0:
+                cd.formatVersion = val.readUInt8(0);
+                break;
+            case 1:
+                cd.vendorId = val.readUInt16LE(0);
+                break;
+            case 2:
+                cd.productIds = arrVal;
+                break;
+            case 3:
+                cd.deviceTypeId = val.length === 2 ? val.readUInt16LE(0) : val.readUInt8(0);
+                break;
+            case 4:
+                cd.certificateId = val.toString('utf8');
+                break;
+            case 5:
+                cd.securityLevel = val.readUInt8(0);
+                break;
+            case 6:
+                cd.securityInformation = val.readUInt8(0);
+                break;
+            case 7:
+                cd.versionNumber = val.length === 2 ? val.readUInt16LE(0) : val.readUInt8(0);
+                break;
+            case 8:
+                cd.certificationType = val.readUInt8(0);
+                break;
+            case 9:
+                cd.dacOriginVid = val.readUInt16LE(0);
+                break;
+            case 10:
+                cd.dacOriginPid = val.readUInt16LE(0);
+                break;
+            case 11:
+                cd.authorizedPaaList = [];
+                cd.authorizedPaaList.push(val.toString('hex'));
+                break;
+            default:
+                if (debug)
+                    console.log(`  Unknown field ${field}, stopping.`);
+                idx = data.length;
+                continue;
+        }
+        if (debug)
+            console.log(`  remaining hex=${data.slice(idx).toString('hex')}`);
+    }
+    return cd;
+}
+/**
+ * Decode a Matter Certification-Declaration.
+ *
+ * @param {Buffer | Uint8Array | string} src - The source data to decode.
+ * @param {boolean} [debug] - Enable debug output.
+ * @returns {CertificationDeclaration} The decoded Certification Declaration.
+ */
+export function decodeCertificationDeclaration(src, debug = false) {
+    const der = typeof src === 'string' ? Buffer.from(src.replace(/[^0-9A-Za-z+/=]/g, ''), /^[0-9A-F]+$/i.test(src) && src.length % 2 === 0 ? 'hex' : 'base64') : Buffer.from(src);
+    const tlv = findTlvPayload(der, debug);
+    if (debug)
+        console.log('Decoded tlv from findTlvPayload:\n', '>>' + Buffer.from(tlv).toString('hex') + '<<');
+    const decoded = decodeCdTlv(tlv, debug);
+    if (debug)
+        console.log('Decoded CD from decodeCdTlv:\n', decoded);
+    return decoded;
+}
+//# sourceMappingURL=declarationDecoder.js.map

package/dist/crypto/declarationDecoder.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"declarationDecoder.js","sourceRoot":"","sources":["../../src/crypto/declarationDecoder.ts"],"names":[],"mappings":"AAAA,+BAA+B;AAC/B,uDAAuD;AACvD,sDAAsD;AACtD;;;;;;;;;;;;;;;;;;;;;GAqBG;AAgHH,MAAM,SAAS,GAAG;IAChB,gBAAgB;IAChB,WAAW;IACX,kBAAkB;IAClB,gBAAgB;IAChB,gBAAgB;IAChB,gBAAgB;IAChB,sBAAsB;IACtB,gBAAgB;IAChB,oBAAoB;IACpB,sBAAsB;IACtB,uBAAuB;IACvB,qBAAqB;CACtB,CAAC;AAEF,MAAM,mBAAmB,GAAG,CAAC,MAAM,EAAE,aAAa,EAAE,YAAY,CAAC,CAAC;AAElE,sEAAsE;AACtE,sEAAsE;AACtE,sEAAsE;AAEtE,MAAM,QAAQ,GAAG,MAAM,CAAC,IAAI,CAAC,wBAAwB,EAAE,KAAK,CAAC,CAAC,CAAC,uBAAuB;AACtF,MAAM,WAAW,GAAG,MAAM,CAAC,IAAI,CAAC,0BAA0B,EAAE,KAAK,CAAC,CAAC,CAAC,wBAAwB;AAE5F;;;;;;GAMG;AACH,SAAS,OAAO,CAAC,GAAW,EAAE,GAAW;IACvC,MAAM,KAAK,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC;IACvB,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC;QAAE,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;IAC5C,MAAM,CAAC,GAAG,KAAK,GAAG,IAAI,CAAC;IACvB,IAAI,GAAG,GAAG,CAAC,CAAC;IACZ,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE;QAAE,GAAG,GAAG,CAAC,GAAG,IAAI,CAAC,CAAC,GAAG,GAAG,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC;IAC7D,OAAO,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;AACtB,CAAC;AAED;;;;;;;GAOG;AACH,SAAS,cAAc,CAAC,GAAW,EAAE,KAAK,GAAG,KAAK;IAChD,+CAA+C;IAC/C,IAAI,GAAG,GAAG,GAAG,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;IACnC,IAAI,GAAG,KAAK,CAAC,CAAC;QAAE,GAAG,GAAG,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IAC5C,IAAI,GAAG,KAAK,CAAC,CAAC;QAAE,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;IAE9D,2BAA2B;IAC3B,MAAM,CAAC,MAAM,EAAE,WAAW,CAAC,GAAG,OAAO,CAAC,GAAG,EAAE,GAAG,GAAG,CAAC,CAAC,CAAC;IACpD,IAAI,CAAC,GAAG,GAAG,GAAG,CAAC,GAAG,WAAW,GAAG,MAAM,CAAC;IAEvC;qDACiD;IACjD,OAAO,CAAC,GAAG,GAAG,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAC3B,IAAI,GAAG,CAAC,CAAC,CAAC,KAAK,IAAI;YAAE,SAAS,CAAC,0BAA0B;QACzD,MAAM,CAAC,IAAI,EAAE,GAAG,CAAC,GAAG,OAAO,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;QACxC,MAAM,MAAM,GAAG,CAAC,GAAG,CAAC,GAAG,GAAG,CAAC;QAC3B,IAAI,GAAG,CAAC,MAAM,CAAC,KAAK,IAAI;YAAE,SAAS,CAAC,mBAAmB;QACvD,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,GAAG,OAAO,CAAC,GAAG,EAAE,MAAM,GAAG,CAAC,CAAC,CAAC;QACjD,OAAO,GAAG,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,GAAG,KAAK,EAAE,MAAM,GAAG,CAAC,GAAG,KAAK,GAAG,MAAM,CAAC,CAAC;IACvE,CAAC;IACD,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;AAChD,CAAC;AAED,sEAAsE;AACtE,sEAAsE;AACtE,sEAAsE;AAEtE;;;;;;GAMG;AACH,MAAM,UAAU,WAAW,CAAC,GAAW,EAAE,KAAK,GAAG,KAAK;IACpD,MAAM,EAAE,GAA6B,EAAS,CAAC;IAE/C,+DAA+D;IAC/D,IAAI,GAAG,CAAC,CAAC,CAAC,KAAK,IAAI;QAAE,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;IACnE,IAAI,GAAG,CAAC,GAAG,CAAC,MAAM,GAAG,CAAC,CAAC,KAAK,IAAI;QAAE,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAC;IAC9E,MAAM,IAAI,GAAG,GAAG,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;IAC7C,IAAI,GAAG,GAAG,CAAC,CAAC;IAEZ,OAAO,GAAG,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC;QACzB,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;QACxB,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;QAC1B,IAAI,KAAK;YAAE,OAAO,CAAC,GAAG,CAAC,UAAU,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC,WAAW,KAAK,CAAC,QAAQ,CAAC,EAAE,CAAC,IAAI,SAAS,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QACtG,IAAI,GAAG,CAAC;QACR,IAAI,MAAM,GAAa,EAAE,CAAC;QAC1B,IAAI,MAAM,GAAG,CAAC,CAAC;QACf,QAAQ,GAAG,EAAE,CAAC;YACZ,KAAK,IAAI,EAAE,sBAAsB;gBAC/B,GAAG,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,EAAE,GAAG,GAAG,CAAC,CAAC,CAAC;gBAClC,IAAI,KAAK;oBAAE,OAAO,CAAC,GAAG,CAAC,KAAK,SAAS,CAAC,KAAK,CAAC,QAAQ,GAAG,CAAC,QAAQ,CAAC,KAAK,CAAC,KAAK,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC,KAAK,KAAK,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,mBAAmB,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;gBAClK,GAAG,IAAI,CAAC,CAAC;gBACT,MAAM;YACR,KAAK,IAAI,EAAE,sBAAsB;gBAC/B,GAAG,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,EAAE,GAAG,GAAG,CAAC,CAAC,CAAC;gBAClC,IAAI,KAAK;oBAAE,OAAO,CAAC,GAAG,CAAC,KAAK,SAAS,CAAC,KAAK,CAAC,QAAQ,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,KAAK,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;gBACjH,GAAG,IAAI,CAAC,CAAC;gBACT,MAAM;YACR,KAAK,IAAI,EAAE,8GAA8G;gBACvH,MAAM,GAAG,EAAE,CAAC;gBACZ,IAAI,KAAK,KAAK,IAAI,EAAE,CAAC;oBACnB,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;oBAC5B,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;oBAC/B,GAAG,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,EAAE,GAAG,GAAG,UAAU,CAAC,CAAC;oBAC3C,GAAG,IAAI,UAAU,CAAC;oBAClB,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;oBAC/B,MAAM;gBACR,CAAC;gBACD,OAAO,IAAI,CAAC,GAAG,CAAC,KAAK,IAAI,EAAE,CAAC;oBAC1B,MAAM,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;oBACrB,GAAG,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,EAAE,GAAG,GAAG,CAAC,CAAC,CAAC;oBAClC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC;oBACjC,GAAG,IAAI,CAAC,CAAC;gBACX,CAAC;gBACD,GAAG,EAAE,CAAC,CAAC,YAAY;gBACnB,IAAI,KAAK;oBAAE,OAAO,CAAC,GAAG,CAAC,KAAK,SAAS,CAAC,KAAK,CAAC,OAAO,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBACnI,MAAM;YACR,KAAK,IAAI,EAAE,kCAAkC;gBAC3C,MAAM,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;gBACrB,GAAG,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,EAAE,GAAG,GAAG,MAAM,CAAC,CAAC;gBACvC,IAAI,KAAK;oBAAE,OAAO,CAAC,GAAG,CAAC,KAAK,SAAS,CAAC,KAAK,CAAC,OAAO,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;gBAC5E,GAAG,IAAI,MAAM,CAAC;gBACd,MAAM;YACR;gBACE,IAAI,KAAK;oBAAE,OAAO,CAAC,GAAG,CAAC,mBAAmB,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC,aAAa,CAAC,CAAC;gBACzE,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC;gBAClB,SAAS;QACb,CAAC;QACD,+DAA+D;QAC/D,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,IAAI,KAAK;gBAAE,OAAO,CAAC,GAAG,CAAC,8BAA8B,KAAK,aAAa,CAAC,CAAC;YACzE,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC;YAClB,SAAS;QACX,CAAC;QACD,QAAQ,KAAK,EAAE,CAAC;YACd,KAAK,CAAC;gBACJ,EAAE,CAAC,aAAa,GAAG,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;gBACpC,MAAM;YACR,KAAK,CAAC;gBACJ,EAAE,CAAC,QAAQ,GAAG,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;gBAClC,MAAM;YACR,KAAK,CAAC;gBACJ,EAAE,CAAC,UAAU,GAAG,MAAM,CAAC;gBACvB,MAAM;YACR,KAAK,CAAC;gBACJ,EAAE,CAAC,YAAY,GAAG,GAAG,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;gBAC5E,MAAM;YACR,KAAK,CAAC;gBACJ,EAAE,CAAC,aAAa,GAAG,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;gBACxC,MAAM;YACR,KAAK,CAAC;gBACJ,EAAE,CAAC,aAAa,GAAG,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;gBACpC,MAAM;YACR,KAAK,CAAC;gBACJ,EAAE,CAAC,mBAAmB,GAAG,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;gBAC1C,MAAM;YACR,KAAK,CAAC;gBACJ,EAAE,CAAC,aAAa,GAAG,GAAG,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;gBAC7E,MAAM;YACR,KAAK,CAAC;gBACJ,EAAE,CAAC,iBAAiB,GAAG,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;gBACxC,MAAM;YACR,KAAK,CAAC;gBACJ,EAAE,CAAC,YAAY,GAAG,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;gBACtC,MAAM;YACR,KAAK,EAAE;gBACL,EAAE,CAAC,YAAY,GAAG,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;gBACtC,MAAM;YACR,KAAK,EAAE;gBACL,EAAE,CAAC,iBAAiB,GAAG,EAAE,CAAC;gBAC1B,EAAE,CAAC,iBAAiB,CAAC,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC;gBAC/C,MAAM;YACR;gBACE,IAAI,KAAK;oBAAE,OAAO,CAAC,GAAG,CAAC,mBAAmB,KAAK,aAAa,CAAC,CAAC;gBAC9D,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC;gBAClB,SAAS;QACb,CAAC;QACD,IAAI,KAAK;YAAE,OAAO,CAAC,GAAG,CAAC,mBAAmB,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IAC/E,CAAC;IACD,OAAO,EAAE,CAAC;AACZ,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,8BAA8B,CAAC,GAAiC,EAAE,KAAK,GAAG,KAAK;IAC7F,MAAM,GAAG,GACP,OAAO,GAAG,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,kBAAkB,EAAE,EAAE,CAAC,EAAE,cAAc,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAErK,MAAM,GAAG,GAAG,cAAc,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;IACvC,IAAI,KAAK;QAAE,OAAO,CAAC,GAAG,CAAC,oCAAoC,EAAE,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,GAAG,IAAI,CAAC,CAAC;IAE7G,MAAM,OAAO,GAAG,WAAW,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;IACxC,IAAI,KAAK;QAAE,OAAO,CAAC,GAAG,CAAC,gCAAgC,EAAE,OAAO,CAAC,CAAC;IAClE,OAAO,OAAO,CAAC;AACjB,CAAC"}

package/dist/crypto/extract/342/200/220cert/342/200/220extensions.d.ts

@@ -0,0 +1,9 @@
+/**
+ * Parses the extensions from a DER-encoded X.509 certificate.
+ *
+ * @param {Buffer} der - The DER-encoded certificate buffer.
+ *
+ * @returns {Record<string, any>} An object containing the parsed extensions.
+ */
+export declare function parseExtensions(der: Buffer): Record<string, any>;
+//# sourceMappingURL=extract%E2%80%90cert%E2%80%90extensions.d.ts.map

package/dist/crypto/extract/342/200/220cert/342/200/220extensions.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"extract‐cert‐extensions.d.ts","sourceRoot":"","sources":["../../src/crypto/extract‐cert‐extensions.ts"],"names":[],"mappings":"AA2CA;;;;;;GAMG;AACH,wBAAgB,eAAe,CAAC,GAAG,EAAE,MAAM,uBA4D1C"}

package/dist/crypto/extract/342/200/220cert/342/200/220extensions.js

@@ -0,0 +1,120 @@
+/* eslint-disable jsdoc/reject-any-type */
+/* eslint-disable @typescript-eslint/no-explicit-any */
+/* eslint-disable no-console */
+// extract-cert-extensions.ts
+import { X509Certificate } from 'node:crypto';
+/**
+ *  Reads a TLV (Tag-Length-Value) structure from a buffer.
+ *
+ *  @param {Buffer} buf - The buffer containing the TLV data.
+ *  @param {number} offset - The offset in the buffer where the TLV data starts.
+ *  @returns {object} An object containing the tag, length, value, and next offset.
+ */
+function readTLV(buf, offset) {
+    const tag = buf[offset++];
+    let len = buf[offset++];
+    if (len & 0x80) {
+        const count = len & 0x7f;
+        len = buf.readUIntBE(offset, count);
+        offset += count;
+    }
+    const value = buf.subarray(offset, offset + len);
+    return { tag, len, value, next: offset + len };
+}
+/**
+ * Walks through a buffer containing TLV structures and extracts them into an array.
+ *
+ * @param {Buffer} buf - The buffer containing the TLV data.
+ * @returns {Array} An array of objects, each containing the tag, length, and value of a TLV structure.
+ */
+function walk(buf) {
+    const nodes = [];
+    let off = 0;
+    while (off < buf.length) {
+        const { tag, len, value, next } = readTLV(buf, off);
+        nodes.push({ tag, len, value });
+        off = next;
+    }
+    return nodes;
+}
+/**
+ * Parses the extensions from a DER-encoded X.509 certificate.
+ *
+ * @param {Buffer} der - The DER-encoded certificate buffer.
+ *
+ * @returns {Record<string, any>} An object containing the parsed extensions.
+ */
+export function parseExtensions(der) {
+    const cert = new X509Certificate(der);
+    console.log('Parsing certificate:');
+    console.log('  Subject:', cert.subject);
+    console.log('  Issuer: ', cert.issuer);
+    const raw = cert.raw;
+    const tbsCertificateStart = raw.indexOf(0x30); // Look for a SEQUENCE start
+    const tbsTLV = readTLV(raw, tbsCertificateStart);
+    const tbsKids = walk(tbsTLV.value);
+    // Find the extensions container, usually context-specific tag [3] (0xa3)
+    const extNode = tbsKids.find((node) => node.tag === 0xa3 || node.tag === 3);
+    if (!extNode) {
+        console.error('No extensions ([3]) found in certificate');
+        return {};
+    }
+    let extPayload = extNode.value;
+    const offset = 0;
+    if (extPayload[0] !== 0x30) {
+        extPayload = readTLV(extPayload, offset).value;
+    }
+    const extensions = {};
+    const extList = walk(extPayload);
+    extList.forEach((entryNode) => {
+        const entryContent = walk(entryNode.value);
+        const oidValue = entryContent[0]?.value?.toString('hex');
+        const isCritical = entryContent[1] && entryContent[1].value?.length > 0 ? entryContent[1].value[0] !== 0 : false;
+        const valueNodeIndex = entryContent.length > 2 ? 2 : 1;
+        const extensionValue = entryContent[valueNodeIndex]?.value;
+        console.log(`Found extension OID ${oidValue} (critical=${isCritical}): ${extensionValue?.toString('hex')}`);
+        switch (oidValue) {
+            case '551d0e':
+                extensions.SubjectKeyIdentifier = extensionValue.toString('hex');
+                break;
+            case '551d0f':
+                extensions.KeyUsage = extensionValue.toString('hex');
+                break;
+            case '551d13':
+                extensions.BasicConstraints = extensionValue.toString('hex');
+                break;
+            case '551d23':
+                extensions.AuthorityKeyIdentifier = extensionValue.toString('hex');
+                break;
+            default:
+                console.warn(`Unknown extension OID ${oidValue}: ${extensionValue?.toString('hex')}`);
+        }
+    });
+    console.log('Final parsed extensions:', extensions);
+    return extensions;
+}
+const certDAC = `-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----`;
+// Reads a PEM file from the command line
+// const pem = readFileSync(process.argv[2], 'utf8');
+// Extract the first CERTIFICATE block we find
+const der = Buffer.from(certDAC
+    .replace(/-----BEGIN CERTIFICATE-----/, '')
+    .replace(/-----END CERTIFICATE-----/, '')
+    .replace(/\s+/g, ''), 'base64');
+console.log('DER:\n', '>>' + Buffer.from(der).toString('hex') + '<<');
+const exts = parseExtensions(der);
+console.log('Extracted extensions:');
+console.dir(exts, { depth: null });
+//# sourceMappingURL=extract%E2%80%90cert%E2%80%90extensions.js.map

package/dist/crypto/extract/342/200/220cert/342/200/220extensions.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"extract‐cert‐extensions.js","sourceRoot":"","sources":["../../src/crypto/extract‐cert‐extensions.ts"],"names":[],"mappings":"AAAA,0CAA0C;AAC1C,uDAAuD;AACvD,+BAA+B;AAE/B,6BAA6B;AAC7B,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAE9C;;;;;;GAMG;AACH,SAAS,OAAO,CAAC,GAAW,EAAE,MAAc;IAC1C,MAAM,GAAG,GAAG,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC;IAC1B,IAAI,GAAG,GAAG,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC;IACxB,IAAI,GAAG,GAAG,IAAI,EAAE,CAAC;QACf,MAAM,KAAK,GAAG,GAAG,GAAG,IAAI,CAAC;QACzB,GAAG,GAAG,GAAG,CAAC,UAAU,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC;IAClB,CAAC;IACD,MAAM,KAAK,GAAG,GAAG,CAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,GAAG,CAAC,CAAC;IACjD,OAAO,EAAE,GAAG,EAAE,GAAG,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,GAAG,GAAG,EAAE,CAAC;AACjD,CAAC;AAED;;;;;GAKG;AACH,SAAS,IAAI,CAAC,GAAW;IACvB,MAAM,KAAK,GAAkD,EAAE,CAAC;IAChE,IAAI,GAAG,GAAG,CAAC,CAAC;IACZ,OAAO,GAAG,GAAG,GAAG,CAAC,MAAM,EAAE,CAAC;QACxB,MAAM,EAAE,GAAG,EAAE,GAAG,EAAE,KAAK,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QACpD,KAAK,CAAC,IAAI,CAAC,EAAE,GAAG,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC,CAAC;QAChC,GAAG,GAAG,IAAI,CAAC;IACb,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,eAAe,CAAC,GAAW;IACzC,MAAM,IAAI,GAAG,IAAI,eAAe,CAAC,GAAG,CAAC,CAAC;IACtC,OAAO,CAAC,GAAG,CAAC,sBAAsB,CAAC,CAAC;IACpC,OAAO,CAAC,GAAG,CAAC,YAAY,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;IACxC,OAAO,CAAC,GAAG,CAAC,YAAY,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;IAEvC,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC;IAErB,MAAM,mBAAmB,GAAG,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,4BAA4B;IAC3E,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,EAAE,mBAAmB,CAAC,CAAC;IACjD,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAEnC,yEAAyE;IACzE,MAAM,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,GAAG,KAAK,IAAI,IAAI,IAAI,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC;IAE5E,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO,CAAC,KAAK,CAAC,0CAA0C,CAAC,CAAC;QAC1D,OAAO,EAAE,CAAC;IACZ,CAAC;IAED,IAAI,UAAU,GAAG,OAAO,CAAC,KAAK,CAAC;IAC/B,MAAM,MAAM,GAAG,CAAC,CAAC;IAEjB,IAAI,UAAU,CAAC,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;QAC3B,UAAU,GAAG,OAAO,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,KAAK,CAAC;IACjD,CAAC;IAED,MAAM,UAAU,GAAwB,EAAE,CAAC;IAE3C,MAAM,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC,CAAC;IACjC,OAAO,CAAC,OAAO,CAAC,CAAC,SAAS,EAAE,EAAE;QAC5B,MAAM,YAAY,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;QAE3C,MAAM,QAAQ,GAAG,YAAY,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,QAAQ,CAAC,KAAK,CAAC,CAAC;QACzD,MAAM,UAAU,GAAG,YAAY,CAAC,CAAC,CAAC,IAAI,YAAY,CAAC,CAAC,CAAC,CAAC,KAAK,EAAE,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC;QACjH,MAAM,cAAc,GAAG,YAAY,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QACvD,MAAM,cAAc,GAAG,YAAY,CAAC,cAAc,CAAC,EAAE,KAAK,CAAC;QAE3D,OAAO,CAAC,GAAG,CAAC,uBAAuB,QAAQ,cAAc,UAAU,MAAM,cAAc,EAAE,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAE5G,QAAQ,QAAQ,EAAE,CAAC;YACjB,KAAK,QAAQ;gBACX,UAAU,CAAC,oBAAoB,GAAG,cAAc,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;gBACjE,MAAM;YACR,KAAK,QAAQ;gBACX,UAAU,CAAC,QAAQ,GAAG,cAAc,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;gBACrD,MAAM;YACR,KAAK,QAAQ;gBACX,UAAU,CAAC,gBAAgB,GAAG,cAAc,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;gBAC7D,MAAM;YACR,KAAK,QAAQ;gBACX,UAAU,CAAC,sBAAsB,GAAG,cAAc,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;gBACnE,MAAM;YACR;gBACE,OAAO,CAAC,IAAI,CAAC,yBAAyB,QAAQ,KAAK,cAAc,EAAE,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAC1F,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,OAAO,CAAC,GAAG,CAAC,0BAA0B,EAAE,UAAU,CAAC,CAAC;IACpD,OAAO,UAAU,CAAC;AACpB,CAAC;AAED,MAAM,OAAO,GAAG;;;;;;;;;;;;0BAYU,CAAC;AAE3B,yCAAyC;AACzC,qDAAqD;AAErD,8CAA8C;AAC9C,MAAM,GAAG,GAAG,MAAM,CAAC,IAAI,CACrB,OAAO;KACJ,OAAO,CAAC,6BAA6B,EAAE,EAAE,CAAC;KAC1C,OAAO,CAAC,2BAA2B,EAAE,EAAE,CAAC;KACxC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,EACtB,QAAQ,CACT,CAAC;AACF,OAAO,CAAC,GAAG,CAAC,QAAQ,EAAE,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,GAAG,IAAI,CAAC,CAAC;AACtE,MAAM,IAAI,GAAG,eAAe,CAAC,GAAG,CAAC,CAAC;AAClC,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;AACrC,OAAO,CAAC,GAAG,CAAC,IAAI,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC"}

package/dist/crypto/read-extensions.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=read-extensions.d.ts.map

package/dist/crypto/read-extensions.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"read-extensions.d.ts","sourceRoot":"","sources":["../../src/crypto/read-extensions.ts"],"names":[],"mappings":""}

package/dist/crypto/read-extensions.js

@@ -0,0 +1,81 @@
+/* eslint-disable no-console */
+/* eslint-disable @typescript-eslint/no-unused-vars */
+/**
+ * Reads the length of a DER-encoded value from a buffer.
+ *
+ * @param {Buffer} buffer - The buffer containing the DER-encoded data.
+ * @param {number} offset - The offset in the buffer where the length starts.
+ * @returns {{ length: number; offset: number }} An object containing the length and the new offset.
+ */
+function readLength(buffer, offset) {
+    let length = buffer[offset++];
+    if (length & 0x80) {
+        const numOfBytes = length & 0x7f;
+        length = 0;
+        for (let i = 0; i < numOfBytes; i++) {
+            length = (length << 8) | buffer[offset++];
+        }
+    }
+    return { length, offset };
+}
+/**
+ * Parses the extensions from a DER-encoded X.509 certificate.
+ *
+ * @param {Buffer} derBuffer - The DER-encoded certificate buffer.
+ * @returns {Extension[]} An array of parsed extensions.
+ */
+function parseExtensions(derBuffer) {
+    let offset = 0;
+    // Skip the initial sequence header
+    ({ offset } = readLength(derBuffer, offset + 2));
+    // Move past TBSCertificate section until we reach extensions
+    let currentTag;
+    while ((currentTag = derBuffer[offset++]) !== 0xa3) {
+        console.log(`Skipping non-extension tag: ${currentTag.toString(16)}`);
+    }
+    let result = readLength(derBuffer, offset);
+    const extensionsLength = result.length;
+    offset = result.offset;
+    const extensionsEndOffset = offset + extensionsLength;
+    const extensions = [];
+    while (offset < extensionsEndOffset) {
+        console.log(`Reading extension at offset: ${offset}`);
+        if (derBuffer[offset++] !== 0x30) {
+            throw new Error('Expected sequence');
+        }
+        result = readLength(derBuffer, offset);
+        const seqLength = result.length;
+        offset = result.offset;
+        const extnID = [];
+        if (derBuffer[offset++] === 0x06) {
+            result = readLength(derBuffer, offset);
+            const oidLength = result.length;
+            offset = result.offset;
+            for (let i = 0; i < oidLength; i++) {
+                extnID.push(derBuffer[offset++]);
+            }
+        }
+        const critical = derBuffer[offset] === 0x01 && derBuffer[offset + 1] === 0x01 ? !!derBuffer[offset + 2] : false;
+        if (critical)
+            offset += 3;
+        if (derBuffer[offset++] !== 0x04) {
+            throw new Error(`Expected octet string at offset ${offset - 1}, found ${derBuffer[offset - 1].toString(16)}`);
+        }
+        result = readLength(derBuffer, offset);
+        const extnValueLength = result.length;
+        offset = result.offset;
+        const extnValue = derBuffer.slice(offset, offset + extnValueLength);
+        offset += extnValueLength;
+        extensions.push({
+            extnID,
+            critical,
+            extnValue,
+        });
+    }
+    return extensions;
+}
+// Example usage:
+const exampleDER = Buffer.from('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', 'hex');
+parseExtensions(exampleDER);
+export {};
+//# sourceMappingURL=read-extensions.js.map

package/dist/crypto/read-extensions.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"read-extensions.js","sourceRoot":"","sources":["../../src/crypto/read-extensions.ts"],"names":[],"mappings":"AAAA,+BAA+B;AAC/B,sDAAsD;AAUtD;;;;;;GAMG;AACH,SAAS,UAAU,CAAC,MAAc,EAAE,MAAc;IAChD,IAAI,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;IAC9B,IAAI,MAAM,GAAG,IAAI,EAAE,CAAC;QAClB,MAAM,UAAU,GAAG,MAAM,GAAG,IAAI,CAAC;QACjC,MAAM,GAAG,CAAC,CAAC;QACX,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,UAAU,EAAE,CAAC,EAAE,EAAE,CAAC;YACpC,MAAM,GAAG,CAAC,MAAM,IAAI,CAAC,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;QAC5C,CAAC;IACH,CAAC;IACD,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC;AAC5B,CAAC;AAED;;;;;GAKG;AACH,SAAS,eAAe,CAAC,SAAiB;IACxC,IAAI,MAAM,GAAG,CAAC,CAAC;IAEf,mCAAmC;IACnC,CAAC,EAAE,MAAM,EAAE,GAAG,UAAU,CAAC,SAAS,EAAE,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC;IAEjD,6DAA6D;IAC7D,IAAI,UAAkB,CAAC;IACvB,OAAO,CAAC,UAAU,GAAG,SAAS,CAAC,MAAM,EAAE,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC,+BAA+B,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;IACxE,CAAC;IAED,IAAI,MAAM,GAAG,UAAU,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;IAC3C,MAAM,gBAAgB,GAAG,MAAM,CAAC,MAAM,CAAC;IACvC,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC;IACvB,MAAM,mBAAmB,GAAG,MAAM,GAAG,gBAAgB,CAAC;IACtD,MAAM,UAAU,GAAgB,EAAE,CAAC;IAEnC,OAAO,MAAM,GAAG,mBAAmB,EAAE,CAAC;QACpC,OAAO,CAAC,GAAG,CAAC,gCAAgC,MAAM,EAAE,CAAC,CAAC;QAEtD,IAAI,SAAS,CAAC,MAAM,EAAE,CAAC,KAAK,IAAI,EAAE,CAAC;YACjC,MAAM,IAAI,KAAK,CAAC,mBAAmB,CAAC,CAAC;QACvC,CAAC;QAED,MAAM,GAAG,UAAU,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;QACvC,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC;QAChC,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC;QAEvB,MAAM,MAAM,GAAa,EAAE,CAAC;QAC5B,IAAI,SAAS,CAAC,MAAM,EAAE,CAAC,KAAK,IAAI,EAAE,CAAC;YACjC,MAAM,GAAG,UAAU,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;YACvC,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC;YAChC,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC;YAEvB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,SAAS,EAAE,CAAC,EAAE,EAAE,CAAC;gBACnC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;YACnC,CAAC;QACH,CAAC;QAED,MAAM,QAAQ,GAAG,SAAS,CAAC,MAAM,CAAC,KAAK,IAAI,IAAI,SAAS,CAAC,MAAM,GAAG,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC;QAChH,IAAI,QAAQ;YAAE,MAAM,IAAI,CAAC,CAAC;QAE1B,IAAI,SAAS,CAAC,MAAM,EAAE,CAAC,KAAK,IAAI,EAAE,CAAC;YACjC,MAAM,IAAI,KAAK,CAAC,mCAAmC,MAAM,GAAG,CAAC,WAAW,SAAS,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;QAChH,CAAC;QAED,MAAM,GAAG,UAAU,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;QACvC,MAAM,eAAe,GAAG,MAAM,CAAC,MAAM,CAAC;QACtC,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC;QAEvB,MAAM,SAAS,GAAG,SAAS,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,GAAG,eAAe,CAAC,CAAC;QACpE,MAAM,IAAI,eAAe,CAAC;QAE1B,UAAU,CAAC,IAAI,CAAC;YACd,MAAM;YACN,QAAQ;YACR,SAAS;SACV,CAAC,CAAC;IACL,CAAC;IAED,OAAO,UAAU,CAAC;AACpB,CAAC;AAED,iBAAiB;AACjB,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAC5B,49BAA49B,EAC59B,KAAK,CACN,CAAC;AACF,eAAe,CAAC,UAAU,CAAC,CAAC"}

package/dist/crypto/testData.d.ts

@@ -0,0 +1,31 @@
+export declare const certDAC = "-----BEGIN CERTIFICATE-----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\nkjGWRV5EDWgl2WEDZA==\n-----END CERTIFICATE-----";
+export declare const keyDAC = "-----BEGIN EC PRIVATE KEY-----\nMHcCAQEEIHtcWp+0aVVH+DAQ38iXpphqmT7LfMnMD4V/kIqszwfuoAoGCCqGSM49\nAwEHoUQDQgAEwiWDIsfccnN8M77tcHM3qiSFvEZ5Pk1ayada10NSZskKAo7sryZQ\n/nAJ7/yuy+rR8sPRJDXewurT2ZKVv87Www==\n-----END EC PRIVATE KEY-----";
+export declare const certPAI = "-----BEGIN CERTIFICATE-----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\ni+oDPOUDAiAlVJQ75X1T1sR199I+v8/CA2zSm6Y5PsfvrYcUq3GCGQ==\n-----END CERTIFICATE-----";
+export declare const keyPAI = "-----BEGIN EC PRIVATE KEY-----\nMHcCAQEEIEZ7LYpps1z+a9sPw2qBp9jj5F0GLffNuCJY88hAHcMYoAoGCCqGSM49\nAwEHoUQDQgAEgN3xGyKPPjH2O89XmNoUYjrrvegu83jurb+xj+GrzjHQjtSyBgS2\nzMbZtfq2Tn3hDLdL4BfJ7BUWBW1w8s0LIg==\n-----END EC PRIVATE KEY-----";
+export declare const certPAA = "-----BEGIN CERTIFICATE-----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\nmUkpxyqvChVI1A0DTVFLJd4=\n-----END CERTIFICATE-----";
+export declare const keyPAA = "-----BEGIN EC PRIVATE KEY-----\nMHcCAQEEIGUSyuyuz8VD1gYjFhWXFi8BRoTFZaEpti/SjCerHMxQoAoGCCqGSM49\nAwEHoUQDQgAEtstjcoh/KSj1usgaqdk64kMcranXniQvZRd++c7ZMqKOzQO6r2qP\nyhhKGlA1QpYNRT8wPx8ZQh11Ho+PGpqbdQ==\n-----END EC PRIVATE KEY-----";
+export declare const matterbridgePairing: {
+    passcode: string;
+    discriminator: string;
+    privateKey: {
+        kty: string;
+        d: string;
+        crv: string;
+        x: string;
+        y: string;
+    };
+    certificate: string;
+    intermediateCertificate: string;
+    declaration: string;
+};
+export declare const Shelly1Gen4: {
+    DeviceAttestation: string;
+    ProductAttestation: string;
+    AttestationElements: string;
+    AttestationSignature: string;
+};
+export declare const AttestationElements = "15310111013082010d06092a864886f70d010702a081ff3081fc020103310d300b0609608648016503040201306906092a864886f70d010701a05c045a152400012501f2ff360205018005028018250334122c04135a494732303134325a423333303030322d323424050024060024070124080094262408002509f1ff250a0080360b1014785ce705b86b8f4e6fc793aa60cb43ea696882d51818317d307b020103801462fa823359acfaa9963e1cfa140addf504f37160300b0609608648016503040201300a06082a8648ce3d0403020447304502204ae9c9b7f8aa68610add84e41291fc8f4dc533fca29dc1fff2253c09cd32f7750221009c0a5fdef9e008d1cc8bb7c3959cdb65c46125cb7295081e47b5c131e4d1f48c300220e0421b91c6fdcdb40e2a4d2cf31db2b4e18b411b1d3ad4d12a9d90aa8e52fae22603fdc65b28d0f1ff3e0001001773616d706c655f76656e646f725f726573657276656431d0f1ff3e0003001876656e646f725f7265736572766564335f6578616d706c6518";
+export declare const AttestationSignature = "7982535d24cfe14a71ab0424cf0bacf1e345487ed50f1ac0bc259eccfb39081ed7a752188d9f76f9063703eb240f9cd14b0a43e741fe60ef2a81635aea5b484d";
+export declare const elinDAC = "-----BEGIN CERTIFICATE-----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\ncaek7vzNSQIhAJ17pDLEJ6sFKlWXL+hjBAJsvYgd2JFXGNpYfBje8Zwn\n-----END CERTIFICATE-----";
+export declare const elinDAK = "-----BEGIN PRIVATE KEY-----\nMIGTAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBHkwdwIBAQQgqAZKSqiyqsIOpIgM\njqr4mAYOuNuS662zigoF47Lwr3mgCgYIKoZIzj0DAQehRANCAARZd/rQHveVnDOG\nPCqspcqjNas8cDywk8xdCTaVwDgMeBKR995iklUhJWuDYPV9DU8P8AmJ7OH2JSQ0\nACJLQ0Ds\n-----END PRIVATE KEY-----";
+//# sourceMappingURL=testData.d.ts.map

package/dist/crypto/testData.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"testData.d.ts","sourceRoot":"","sources":["../../src/crypto/testData.ts"],"names":[],"mappings":"AAEA,eAAO,MAAM,OAAO,quBAYM,CAAC;AAE3B,eAAO,MAAM,MAAM,2OAIU,CAAC;AAE9B,eAAO,MAAM,OAAO,usBAWM,CAAC;AAE3B,eAAO,MAAM,MAAM,2OAIU,CAAC;AAE9B,eAAO,MAAM,OAAO,uqBAWM,CAAC;AAE3B,eAAO,MAAM,MAAM,2OAIU,CAAC;AAI9B,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;CAgB/B,CAAC;AAEF,eAAO,MAAM,WAAW;;;;;CAQvB,CAAC;AAqCF,eAAO,MAAM,mBAAmB,2wBAC0uB,CAAC;AAE3wB,eAAO,MAAM,oBAAoB,qIAAqI,CAAC;AAEvK,eAAO,MAAM,OAAO,ywBAYM,CAAC;AAE3B,eAAO,MAAM,OAAO,2QAKM,CAAC"}