@motebit/crypto-tpm 1.0.0

package/LICENSE

@@ -0,0 +1,206 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for describing the origin of the Work and
+      reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright 2026 Motebit, Inc.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+
+"Motebit" is a trademark of Motebit, Inc. The Apache License grants rights to
+this software, not to any Motebit trademarks, logos, or branding. You may not
+use Motebit branding in a way that suggests endorsement or affiliation without
+written permission.

package/NOTICE

@@ -0,0 +1,19 @@
+Motebit
+Copyright 2026 Motebit, Inc.
+
+This product includes software developed at Motebit, Inc. (https://motebit.com).
+
+The permissive-floor packages (the protocol, SDK, cryptographic primitives,
+platform-attestation verifier leaves, scaffolding CLI, and GitHub Action) are
+licensed under the Apache License, Version 2.0. See LICENSE files in each
+`packages/*/` subdirectory and in `spec/` for the full license text.
+
+The remaining packages, apps, and services are licensed under the Business
+Source License 1.1 and convert to the Apache License, Version 2.0 four years
+after each version's first public release. See `LICENSE` at the repository
+root and `LICENSING.md` for the full license boundary.
+
+"Motebit" is a trademark of Motebit, Inc. The licenses granted here cover
+this software only, not Motebit trademarks, logos, or branding. Use of
+Motebit branding in a way that suggests endorsement or affiliation requires
+written permission.

package/README.md

@@ -0,0 +1,49 @@
+# @motebit/crypto-tpm
+
+Offline Apache-2.0 verifier for TPM 2.0 Endorsement-Key hardware-attestation credentials.
+
+```bash
+npm i @motebit/crypto-tpm
+```
+
+Plugs into [`@motebit/crypto`](https://www.npmjs.com/package/@motebit/crypto)'s `HardwareAttestationVerifiers` dispatcher as the `tpm` verifier — called when a credential declares `platform: "tpm"` (Windows 11 hosts, Linux-on-x86 with `/dev/tpm0`, Mac-with-T2 exposing a TPM interface).
+
+## Usage
+
+```ts
+import { verify } from "@motebit/crypto";
+import { tpmVerifier } from "@motebit/crypto-tpm";
+
+const result = await verify(credential, {
+  hardwareAttestation: { tpm: tpmVerifier() },
+});
+```
+
+## What it verifies
+
+1. The TPM-marshaled `TPMS_ATTEST` structure (magic `0xff544347`, type `TPM_ST_ATTEST_QUOTE = 0x8018`, qualified_signer, extraData, clock_info, firmware_version, attested quote body) — hand-rolled binary parser in `src/tpm-parse.ts`.
+2. The TPM Attestation Key signature over `SHA-256(TPMS_ATTEST)`.
+3. The AK certificate chain against the **pinned vendor EK roots** — Infineon, Nuvoton, STMicroelectronics, Intel PTT. Every non-leaf must carry `basicConstraints.cA === true`, terminal cert DER byte-equal to one of the pinned roots.
+4. **Identity binding.** The quote's `extraData` must byte-equal `SHA-256(canonicalJson({ attested_at, device_id, identity_public_key, motebit_id, platform: "tpm", version: "1" }))` — the same body the desktop mint path composes. A malicious client that substitutes any other body fails here.
+
+## Why pinned
+
+A verifier that dynamically fetched vendor CAs has no sovereign story. The pinned vendor roots are the self-attesting contract — third parties audit `DEFAULT_PINNED_TPM_ROOTS` and know which EK CAs this library accepts. Adding a vendor is additive (one PEM constant + one accept-set entry), not a policy rewrite.
+
+## Why a hand-rolled parser
+
+TPM 2.0's `TPMS_ATTEST` structure is ~100 lines of big-endian length-prefixed marshaling. Pulling a full TPM library for that would cross a larger surface area than the struct we actually parse. Scoped to exactly what verification needs.
+
+## Related
+
+- [`@motebit/crypto`](https://www.npmjs.com/package/@motebit/crypto) — dispatcher (pure permissive-floor; zero deps)
+- [`@motebit/crypto-appattest`](https://www.npmjs.com/package/@motebit/crypto-appattest) — iOS sibling
+- [`@motebit/crypto-play-integrity`](https://www.npmjs.com/package/@motebit/crypto-play-integrity) — Android sibling
+- [`@motebit/crypto-webauthn`](https://www.npmjs.com/package/@motebit/crypto-webauthn) — browser sibling
+- [`@motebit/verify`](https://www.npmjs.com/package/@motebit/verify) — canonical CLI bundling all four leaves with motebit defaults
+
+## License
+
+Apache-2.0 — see [LICENSE](./LICENSE) and [NOTICE](./NOTICE).
+
+"Motebit" is a trademark. The Apache License grants rights to this software, not to any Motebit trademarks, logos, or branding. You may not use Motebit branding in a way that suggests endorsement or affiliation without written permission.

package/dist/index.d.ts

@@ -0,0 +1,94 @@
+/**
+ * @motebit/crypto-tpm — TPM 2.0 quote chain-verification adapter for
+ * motebit hardware-attestation claims.
+ *
+ * The metabolic leaf `@motebit/crypto` delegates to when a
+ * `HardwareAttestationClaim` declares `platform: "tpm"`. Dep-thin
+ * `@motebit/crypto` stays permissive-floor-pure; this package, also on
+ * the permissive floor (Apache-2.0), metabolizes `@peculiar/x509` plus
+ * a minimal hand-rolled TPM parser to judge whether a vendor-published
+ * Endorsement-Key CA rooted the Attestation Key that signed the caller's
+ * TPM2_Quote.
+ *
+ * Wiring from a consumer:
+ *
+ * ```ts
+ * import { verify } from "@motebit/crypto";
+ * import { tpmVerifier } from "@motebit/crypto-tpm";
+ *
+ * const result = await verify(credential, {
+ *   hardwareAttestation: { tpm: tpmVerifier() },
+ * });
+ * ```
+ *
+ * This package exports no global state, no side-effect registrations;
+ * the injection is call-site only. Pinned vendor roots live in
+ * `./tpm-roots.ts` and are the self-attesting audit surface.
+ */
+import type { HardwareAttestationClaim } from "@motebit/protocol";
+import type { TpmVerifyResult } from "./verify.js";
+export { verifyTpmQuote } from "./verify.js";
+export type { TpmVerifyOptions, TpmVerifyResult, TpmVerifyError } from "./verify.js";
+export { parseTpmsAttest, composeTpmsAttestForTest, TPM_GENERATED_VALUE, TPM_ST_ATTEST_QUOTE, type TpmsAttest, } from "./tpm-parse.js";
+export { DEFAULT_PINNED_TPM_ROOTS, INFINEON_TPM_EK_ROOT_PEM, NUVOTON_TPM_EK_ROOT_PEM, STMICRO_TPM_EK_ROOT_PEM, INTEL_PTT_EK_ROOT_PEM, TPM_PLATFORM, } from "./tpm-roots.js";
+/**
+ * Shape the optional verifier injected into `@motebit/crypto`'s
+ * `HardwareAttestationVerifiers.tpm` slot carries — mirrors the
+ * sync-or-async return shape the dispatcher supports.
+ */
+export interface TpmVerifierResult {
+    readonly valid: boolean;
+    readonly platform: "tpm";
+    readonly errors: ReadonlyArray<{
+        readonly message: string;
+    }>;
+    readonly attestation_detail?: TpmVerifyResult;
+}
+/**
+ * VC-subject fields that participate in the JCS body the TPM's
+ * extraData binds. motebit_id / device_id / attested_at participate
+ * alongside identity_public_key; without them the verifier cannot tie
+ * the quote to the caller's Ed25519 identity.
+ *
+ * All fields optional: a caller that omits one loses the
+ * identity-binding channel but still gets chain / signature / shape
+ * results — the verifier reports the missing channel explicitly
+ * rather than silently passing.
+ *
+ * The canonical path threads these per-credential through the
+ * `@motebit/crypto::verify` dispatcher: the dispatcher lifts them from
+ * `credentialSubject` and passes them as the third argument to the
+ * `tpm` verifier slot. Consumers wiring `tpmVerifier()` into
+ * `hardwareAttestation.tpm` get identity binding for free. An
+ * alternative path — baking a context into the factory via
+ * `TpmVerifierConfig.context` — is retained for direct callers and
+ * tests; the dispatcher-supplied context wins when both are present.
+ */
+export interface TpmVerifierContext {
+    readonly expectedMotebitId?: string;
+    readonly expectedDeviceId?: string;
+    readonly expectedAttestedAt?: number;
+}
+export interface TpmVerifierConfig {
+    /** Optional: override the pinned vendor roots (tests fabricate their own). */
+    readonly rootPems?: readonly string[];
+    /** Optional: inject a fixed clock for deterministic chain-validity checks. */
+    readonly now?: () => number;
+    /**
+     * Optional: VC-subject context pre-baked at wiring time. See
+     * `TpmVerifierContext`. Useful for direct callers of the returned
+     * function that skip the `@motebit/crypto::verify` dispatcher. When
+     * the dispatcher passes a per-credential context, its fields take
+     * precedence over the pre-baked ones — per-credential always wins.
+     */
+    readonly context?: TpmVerifierContext;
+}
+/**
+ * Factory — build a `tpm` verifier bound to an optional test-root /
+ * clock / context override. The returned function matches the
+ * `HardwareAttestationVerifiers.tpm` three-arg signature the
+ * `@motebit/crypto` dispatcher calls — `(claim, expectedIdentityHex,
+ * context?)`.
+ */
+export declare function tpmVerifier(config?: TpmVerifierConfig): (claim: HardwareAttestationClaim, expectedIdentityHex: string, context?: TpmVerifierContext) => Promise<TpmVerifierResult>;
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;GA0BG;AAEH,OAAO,KAAK,EAAE,wBAAwB,EAAE,MAAM,mBAAmB,CAAC;AAGlE,OAAO,KAAK,EAAoB,eAAe,EAAE,MAAM,aAAa,CAAC;AAErE,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAC7C,YAAY,EAAE,gBAAgB,EAAE,eAAe,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AACrF,OAAO,EACL,eAAe,EACf,wBAAwB,EACxB,mBAAmB,EACnB,mBAAmB,EACnB,KAAK,UAAU,GAChB,MAAM,gBAAgB,CAAC;AACxB,OAAO,EACL,wBAAwB,EACxB,wBAAwB,EACxB,uBAAuB,EACvB,uBAAuB,EACvB,qBAAqB,EACrB,YAAY,GACb,MAAM,gBAAgB,CAAC;AAExB;;;;GAIG;AACH,MAAM,WAAW,iBAAiB;IAChC,QAAQ,CAAC,KAAK,EAAE,OAAO,CAAC;IACxB,QAAQ,CAAC,QAAQ,EAAE,KAAK,CAAC;IACzB,QAAQ,CAAC,MAAM,EAAE,aAAa,CAAC;QAAE,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAC7D,QAAQ,CAAC,kBAAkB,CAAC,EAAE,eAAe,CAAC;CAC/C;AAED;;;;;;;;;;;;;;;;;;;GAmBG;AACH,MAAM,WAAW,kBAAkB;IACjC,QAAQ,CAAC,iBAAiB,CAAC,EAAE,MAAM,CAAC;IACpC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,MAAM,CAAC;IACnC,QAAQ,CAAC,kBAAkB,CAAC,EAAE,MAAM,CAAC;CACtC;AAED,MAAM,WAAW,iBAAiB;IAChC,8EAA8E;IAC9E,QAAQ,CAAC,QAAQ,CAAC,EAAE,SAAS,MAAM,EAAE,CAAC;IACtC,8EAA8E;IAC9E,QAAQ,CAAC,GAAG,CAAC,EAAE,MAAM,MAAM,CAAC;IAC5B;;;;;;OAMG;IACH,QAAQ,CAAC,OAAO,CAAC,EAAE,kBAAkB,CAAC;CACvC;AAED;;;;;;GAMG;AACH,wBAAgB,WAAW,CACzB,MAAM,CAAC,EAAE,iBAAiB,GACzB,CACD,KAAK,EAAE,wBAAwB,EAC/B,mBAAmB,EAAE,MAAM,EAC3B,OAAO,CAAC,EAAE,kBAAkB,KACzB,OAAO,CAAC,iBAAiB,CAAC,CAwB9B"}

package/dist/index.js

@@ -0,0 +1,64 @@
+/**
+ * @motebit/crypto-tpm — TPM 2.0 quote chain-verification adapter for
+ * motebit hardware-attestation claims.
+ *
+ * The metabolic leaf `@motebit/crypto` delegates to when a
+ * `HardwareAttestationClaim` declares `platform: "tpm"`. Dep-thin
+ * `@motebit/crypto` stays permissive-floor-pure; this package, also on
+ * the permissive floor (Apache-2.0), metabolizes `@peculiar/x509` plus
+ * a minimal hand-rolled TPM parser to judge whether a vendor-published
+ * Endorsement-Key CA rooted the Attestation Key that signed the caller's
+ * TPM2_Quote.
+ *
+ * Wiring from a consumer:
+ *
+ * ```ts
+ * import { verify } from "@motebit/crypto";
+ * import { tpmVerifier } from "@motebit/crypto-tpm";
+ *
+ * const result = await verify(credential, {
+ *   hardwareAttestation: { tpm: tpmVerifier() },
+ * });
+ * ```
+ *
+ * This package exports no global state, no side-effect registrations;
+ * the injection is call-site only. Pinned vendor roots live in
+ * `./tpm-roots.ts` and are the self-attesting audit surface.
+ */
+import { verifyTpmQuote } from "./verify.js";
+export { verifyTpmQuote } from "./verify.js";
+export { parseTpmsAttest, composeTpmsAttestForTest, TPM_GENERATED_VALUE, TPM_ST_ATTEST_QUOTE, } from "./tpm-parse.js";
+export { DEFAULT_PINNED_TPM_ROOTS, INFINEON_TPM_EK_ROOT_PEM, NUVOTON_TPM_EK_ROOT_PEM, STMICRO_TPM_EK_ROOT_PEM, INTEL_PTT_EK_ROOT_PEM, TPM_PLATFORM, } from "./tpm-roots.js";
+/**
+ * Factory — build a `tpm` verifier bound to an optional test-root /
+ * clock / context override. The returned function matches the
+ * `HardwareAttestationVerifiers.tpm` three-arg signature the
+ * `@motebit/crypto` dispatcher calls — `(claim, expectedIdentityHex,
+ * context?)`.
+ */
+export function tpmVerifier(config) {
+    return async (claim, expectedIdentityHex, context) => {
+        // Per-call context (from the dispatcher) wins over factory-time
+        // context. Either can be omitted; the verifier reports the missing
+        // fields in `errors` rather than passing silently.
+        const motebitId = context?.expectedMotebitId ?? config?.context?.expectedMotebitId;
+        const deviceId = context?.expectedDeviceId ?? config?.context?.expectedDeviceId;
+        const attestedAt = context?.expectedAttestedAt ?? config?.context?.expectedAttestedAt;
+        const opts = {
+            expectedIdentityPublicKeyHex: expectedIdentityHex,
+            ...(config?.rootPems !== undefined ? { rootPems: config.rootPems } : {}),
+            ...(config?.now !== undefined ? { now: config.now } : {}),
+            ...(motebitId !== undefined ? { expectedMotebitId: motebitId } : {}),
+            ...(deviceId !== undefined ? { expectedDeviceId: deviceId } : {}),
+            ...(attestedAt !== undefined ? { expectedAttestedAt: attestedAt } : {}),
+        };
+        const detail = await verifyTpmQuote(claim, opts);
+        return {
+            valid: detail.valid,
+            platform: "tpm",
+            errors: detail.errors,
+            attestation_detail: detail,
+        };
+    };
+}
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;GA0BG;AAIH,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAG7C,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAE7C,OAAO,EACL,eAAe,EACf,wBAAwB,EACxB,mBAAmB,EACnB,mBAAmB,GAEpB,MAAM,gBAAgB,CAAC;AACxB,OAAO,EACL,wBAAwB,EACxB,wBAAwB,EACxB,uBAAuB,EACvB,uBAAuB,EACvB,qBAAqB,EACrB,YAAY,GACb,MAAM,gBAAgB,CAAC;AAuDxB;;;;;;GAMG;AACH,MAAM,UAAU,WAAW,CACzB,MAA0B;IAM1B,OAAO,KAAK,EAAE,KAAK,EAAE,mBAAmB,EAAE,OAAO,EAAE,EAAE;QACnD,gEAAgE;QAChE,mEAAmE;QACnE,mDAAmD;QACnD,MAAM,SAAS,GAAG,OAAO,EAAE,iBAAiB,IAAI,MAAM,EAAE,OAAO,EAAE,iBAAiB,CAAC;QACnF,MAAM,QAAQ,GAAG,OAAO,EAAE,gBAAgB,IAAI,MAAM,EAAE,OAAO,EAAE,gBAAgB,CAAC;QAChF,MAAM,UAAU,GAAG,OAAO,EAAE,kBAAkB,IAAI,MAAM,EAAE,OAAO,EAAE,kBAAkB,CAAC;QACtF,MAAM,IAAI,GAAqB;YAC7B,4BAA4B,EAAE,mBAAmB;YACjD,GAAG,CAAC,MAAM,EAAE,QAAQ,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YACxE,GAAG,CAAC,MAAM,EAAE,GAAG,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,GAAG,EAAE,MAAM,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YACzD,GAAG,CAAC,SAAS,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,iBAAiB,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YACpE,GAAG,CAAC,QAAQ,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,gBAAgB,EAAE,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YACjE,GAAG,CAAC,UAAU,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,kBAAkB,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;SACxE,CAAC;QACF,MAAM,MAAM,GAAG,MAAM,cAAc,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QACjD,OAAO;YACL,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,QAAQ,EAAE,KAAK;YACf,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,kBAAkB,EAAE,MAAM;SAC3B,CAAC;IACJ,CAAC,CAAC;AACJ,CAAC"}

package/dist/tpm-parse.d.ts

@@ -0,0 +1,92 @@
+/**
+ * Minimal TPM 2.0 binary-format parser.
+ *
+ * The TPM marshals structured data as big-endian size-prefixed bytes —
+ * distinct from CBOR / DER / JSON and wholly specific to the TCG's TPM
+ * Structures specification. Verification of a TPM quote requires
+ * extracting exactly three fields from the `TPMS_ATTEST` structure:
+ *
+ *   - `magic`           — 4-byte constant, must equal `TPM_GENERATED_VALUE`.
+ *   - `type`            — 2-byte constant, `TPM_ST_ATTEST_QUOTE` for quotes.
+ *   - `qualifiedSigner` — length-prefixed `TPM2B_NAME`, identifies the AK.
+ *   - `extraData`       — length-prefixed `TPM2B_DATA`, this is where
+ *                         motebit threads the identity binding.
+ *
+ * We deliberately skip the remainder (clockInfo, firmwareVersion, the
+ * attested quote body containing PCR digests) — motebit's claim is
+ * about identity binding, not platform-state attestation. The body's
+ * signature (produced by TPM2_Quote using the AK) covers the entire
+ * serialized `TPMS_ATTEST`; any byte drift would invalidate it.
+ *
+ * Hand-rolled over `node-tpm2-pts`: the parser is ~80 LOC and covers
+ * exactly our needs. Pulling a dep for that would cross a larger
+ * attack surface than the struct we parse.
+ *
+ * References:
+ *   - TCG TPM 2.0 Library, Part 2: Structures — §10.12 `TPMS_ATTEST`.
+ *   - TCG TPM 2.0 Library, Part 1: Architecture — §36.1 `TPM2B_*` types.
+ */
+/** Constant magic value every TPM-signed attest carries. */
+export declare const TPM_GENERATED_VALUE = 4283712327;
+/** `TPM_ST_ATTEST_QUOTE` — the structure-tag identifying a quote attestation. */
+export declare const TPM_ST_ATTEST_QUOTE = 32792;
+/**
+ * Parsed view of a `TPMS_ATTEST` structure's header + identity-binding
+ * fields. Callers verify signature bytes against the full structure;
+ * this view exposes only the fields participating in motebit's
+ * verification rules.
+ */
+export interface TpmsAttest {
+    /** Must equal `TPM_GENERATED_VALUE` (`0xff544347`). */
+    readonly magic: number;
+    /** Structure tag, e.g. `TPM_ST_ATTEST_QUOTE`. */
+    readonly type: number;
+    /** Qualified signer name — `TPM2B_NAME` bytes (hash-alg + digest). */
+    readonly qualifiedSigner: Uint8Array;
+    /** Caller-supplied extra-data — `TPM2B_DATA` bytes. Identity binding lives here. */
+    readonly extraData: Uint8Array;
+    /** The rest of the serialized body, kept so callers can re-verify the signature. */
+    readonly trailer: Uint8Array;
+}
+/**
+ * Parse a TPM 2.0 `TPMS_ATTEST` structure. Throws on malformed input;
+ * the outer `verify.ts` catches and converts to the fail-closed result
+ * shape.
+ *
+ * Wire layout:
+ *   uint32 magic                     ; 4 bytes
+ *   uint16 type                      ; 2 bytes
+ *   TPM2B_NAME qualifiedSigner       ; uint16 size || bytes
+ *   TPM2B_DATA extraData             ; uint16 size || bytes
+ *   TPMS_CLOCK_INFO clockInfo        ; 17 bytes (fixed)
+ *   uint64 firmwareVersion           ; 8 bytes
+ *   TPMU_ATTEST attested             ; variable, tag-specific
+ *
+ * We extract magic / type / qualifiedSigner / extraData and stash the
+ * rest in `trailer` so the caller can reconstruct the full signed
+ * bytes when verifying the AK signature. The caller retains the
+ * original buffer; this view points into it via length-accurate
+ * subarray copies.
+ */
+export declare function parseTpmsAttest(bytes: Uint8Array): TpmsAttest;
+/**
+ * Build a minimal `TPMS_ATTEST` byte sequence for tests.
+ *
+ * Tests fabricate a valid-shape attest so the verifier's parsing +
+ * extraData-binding code paths exercise without a real TPM. Production
+ * minting lives in the Rust bridge — never call `composeTpmsAttest`
+ * outside `__tests__/` or you'll drift from what a real TPM would sign.
+ *
+ * `trailer` defaults to a deterministic 17-byte clockInfo + 8-byte
+ * firmwareVersion filler + 4-byte quote filler so the resulting bytes
+ * pass the minimum-length check during parsing; tests that need the
+ * real trailing fields can override.
+ */
+export declare function composeTpmsAttestForTest(input: {
+    readonly magic?: number;
+    readonly type?: number;
+    readonly qualifiedSigner: Uint8Array;
+    readonly extraData: Uint8Array;
+    readonly trailer?: Uint8Array;
+}): Uint8Array;
+//# sourceMappingURL=tpm-parse.d.ts.map

package/dist/tpm-parse.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tpm-parse.d.ts","sourceRoot":"","sources":["../src/tpm-parse.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AAEH,4DAA4D;AAC5D,eAAO,MAAM,mBAAmB,aAAa,CAAC;AAE9C,iFAAiF;AACjF,eAAO,MAAM,mBAAmB,QAAS,CAAC;AAE1C;;;;;GAKG;AACH,MAAM,WAAW,UAAU;IACzB,uDAAuD;IACvD,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;IACvB,iDAAiD;IACjD,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,sEAAsE;IACtE,QAAQ,CAAC,eAAe,EAAE,UAAU,CAAC;IACrC,oFAAoF;IACpF,QAAQ,CAAC,SAAS,EAAE,UAAU,CAAC;IAC/B,oFAAoF;IACpF,QAAQ,CAAC,OAAO,EAAE,UAAU,CAAC;CAC9B;AAED;;;;;;;;;;;;;;;;;;;GAmBG;AACH,wBAAgB,eAAe,CAAC,KAAK,EAAE,UAAU,GAAG,UAAU,CAe7D;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,wBAAwB,CAAC,KAAK,EAAE;IAC9C,QAAQ,CAAC,KAAK,CAAC,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,IAAI,CAAC,EAAE,MAAM,CAAC;IACvB,QAAQ,CAAC,eAAe,EAAE,UAAU,CAAC;IACrC,QAAQ,CAAC,SAAS,EAAE,UAAU,CAAC;IAC/B,QAAQ,CAAC,OAAO,CAAC,EAAE,UAAU,CAAC;CAC/B,GAAG,UAAU,CAYb"}