npm - @mysten/signers - Versions diffs - 0.1.13 → 0.1.15 - Mend

@mysten/signers 0.1.13 → 0.1.15

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

package/CHANGELOG.md +14 -0
package/dist/cjs/webcrypto/index.d.ts +12 -0
package/dist/cjs/webcrypto/index.js +33 -4
package/dist/cjs/webcrypto/index.js.map +2 -2
package/dist/esm/webcrypto/index.d.ts +12 -0
package/dist/esm/webcrypto/index.js +33 -4
package/dist/esm/webcrypto/index.js.map +2 -2
package/dist/tsconfig.esm.tsbuildinfo +1 -1
package/dist/tsconfig.tsbuildinfo +1 -1
package/package.json +1 -1
package/src/webcrypto/index.ts +43 -4

package/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,19 @@
 # @mysten/signers
+## 0.1.15
+### Patch Changes
+- 850369a: Prevent exported webcrypto keys from being serialized.
+## 0.1.14
+### Patch Changes
+- 5217cab: Fix signature not having lowS enforced
+- a08ead6: Add webcrypto to the files allowlist
+- b34f523: Fix re-constructing signers from exported bytes, and introduce import / export methods
 ## 0.1.13
 ### Patch Changes

package/dist/cjs/webcrypto/index.d.ts CHANGED Viewed

@@ -1,14 +1,26 @@
 import type { SignatureScheme } from '@mysten/sui/cryptography';
 import { Signer } from '@mysten/sui/cryptography';
 import { Secp256r1PublicKey } from '@mysten/sui/keypairs/secp256r1';
+export interface ExportedWebCryptoKeypair {
+    privateKey: CryptoKey;
+    publicKey: Uint8Array;
+}
 export declare class WebCryptoSigner extends Signer {
     #private;
     privateKey: CryptoKey;
     static generate({ extractable }?: {
         extractable?: boolean;
     }): Promise<WebCryptoSigner>;
+    /**
+     * Imports a keypair using the value returned by `export()`.
+     */
+    static import(data: ExportedWebCryptoKeypair): WebCryptoSigner;
     getKeyScheme(): SignatureScheme;
     constructor(privateKey: CryptoKey, publicKey: Uint8Array);
+    /**
+     * Exports the keypair so that it can be stored in IndexedDB.
+     */
+    export(): ExportedWebCryptoKeypair;
     getPublicKey(): Secp256r1PublicKey;
     sign(bytes: Uint8Array): Promise<Uint8Array>;
 }

package/dist/cjs/webcrypto/index.js CHANGED Viewed

@@ -30,6 +30,7 @@ __export(webcrypto_exports, {
 module.exports = __toCommonJS(webcrypto_exports);
 var import_cryptography = require("@mysten/sui/cryptography");
 var import_secp256r1 = require("@mysten/sui/keypairs/secp256r1");
+var import_p256 = require("@noble/curves/p256");
 var _publicKey;
 function getCompressedPublicKey(publicKey) {
   const rawBytes = new Uint8Array(publicKey);
@@ -46,7 +47,7 @@ const _WebCryptoSigner = class _WebCryptoSigner extends import_cryptography.Sign
     super();
     __privateAdd(this, _publicKey);
     this.privateKey = privateKey;
-    __privateSet(this, _publicKey, new import_secp256r1.Secp256r1PublicKey(getCompressedPublicKey(publicKey)));
+    __privateSet(this, _publicKey, new import_secp256r1.Secp256r1PublicKey(publicKey));
   }
   static async generate({ extractable = false } = {}) {
     const keypair = await globalThis.crypto.subtle.generateKey(
@@ -58,16 +59,43 @@ const _WebCryptoSigner = class _WebCryptoSigner extends import_cryptography.Sign
       ["sign", "verify"]
     );
     const publicKey = await globalThis.crypto.subtle.exportKey("raw", keypair.publicKey);
-    return new _WebCryptoSigner(keypair.privateKey, new Uint8Array(publicKey));
+    return new _WebCryptoSigner(
+      keypair.privateKey,
+      getCompressedPublicKey(new Uint8Array(publicKey))
+    );
+  }
+  /**
+   * Imports a keypair using the value returned by `export()`.
+   */
+  static import(data) {
+    return new _WebCryptoSigner(data.privateKey, data.publicKey);
   }
   getKeyScheme() {
     return "Secp256r1";
   }
+  /**
+   * Exports the keypair so that it can be stored in IndexedDB.
+   */
+  export() {
+    const exportedKeypair = {
+      privateKey: this.privateKey,
+      publicKey: __privateGet(this, _publicKey).toRawBytes()
+    };
+    Object.defineProperty(exportedKeypair, "toJSON", {
+      enumerable: false,
+      value: () => {
+        throw new Error(
+          "The exported keypair must not be serialized. It must be stored in IndexedDB directly."
+        );
+      }
+    });
+    return exportedKeypair;
+  }
   getPublicKey() {
     return __privateGet(this, _publicKey);
   }
   async sign(bytes) {
-    const signature = await globalThis.crypto.subtle.sign(
+    const rawSignature = await globalThis.crypto.subtle.sign(
       {
         name: "ECDSA",
         hash: "SHA-256"
@@ -75,7 +103,8 @@ const _WebCryptoSigner = class _WebCryptoSigner extends import_cryptography.Sign
       this.privateKey,
       bytes
     );
-    return new Uint8Array(signature);
+    const signature = import_p256.secp256r1.Signature.fromCompact(new Uint8Array(rawSignature));
+    return signature.normalizeS().toCompactRawBytes();
   }
 };
 _publicKey = new WeakMap();

package/dist/cjs/webcrypto/index.js.map CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../../../src/webcrypto/index.ts"],
-  "sourcesContent": ["// Copyright (c) Mysten Labs, Inc.\n// SPDX-License-Identifier: Apache-2.0\n\nimport type { SignatureScheme } from '@mysten/sui/cryptography';\nimport { Signer } from '@mysten/sui/cryptography';\nimport { Secp256r1PublicKey } from '@mysten/sui/keypairs/secp256r1';\n\n// Convert from uncompressed (65 bytes) to compressed (33 bytes) format\nfunction getCompressedPublicKey(publicKey: Uint8Array) {\n\tconst rawBytes = new Uint8Array(publicKey);\n\tconst x = rawBytes.slice(1, 33);\n\tconst y = rawBytes.slice(33, 65);\n\n\tconst prefix = (y[31] & 1) === 0 ? 0x02 : 0x03;\n\n\tconst compressed = new Uint8Array(Secp256r1PublicKey.SIZE);\n\tcompressed[0] = prefix;\n\tcompressed.set(x, 1);\n\n\treturn compressed;\n}\n\nexport class WebCryptoSigner extends Signer {\n\tprivateKey: CryptoKey;\n\n\t#publicKey: Secp256r1PublicKey;\n\n\tstatic async generate({ extractable = false }: { extractable?: boolean } = {}) {\n\t\tconst keypair = await globalThis.crypto.subtle.generateKey(\n\t\t\t{\n\t\t\t\tname: 'ECDSA',\n\t\t\t\tnamedCurve: 'P-256',\n\t\t\t},\n\t\t\textractable,\n\t\t\t['sign', 'verify'],\n\t\t);\n\n\t\tconst publicKey = await globalThis.crypto.subtle.exportKey('raw', keypair.publicKey);\n\n\t\treturn new WebCryptoSigner(keypair.privateKey, new Uint8Array(publicKey));\n\t}\n\n\tgetKeyScheme(): SignatureScheme {\n\t\treturn 'Secp256r1';\n\t}\n\n\tconstructor(privateKey: CryptoKey, publicKey: Uint8Array) {\n\t\tsuper();\n\t\tthis.privateKey = privateKey;\n\t\tthis.#publicKey = new Secp256r1PublicKey(getCompressedPublicKey(publicKey));\n\t}\n\n\tgetPublicKey() {\n\t\treturn this.#publicKey;\n\t}\n\n\tasync sign(bytes: Uint8Array): Promise<Uint8Array> {\n\t\tconst signature = await globalThis.crypto.subtle.sign(\n\t\t\t{\n\t\t\t\tname: 'ECDSA',\n\t\t\t\thash: 'SHA-256',\n\t\t\t},\n\t\t\tthis.privateKey,\n\t\t\tbytes,\n\t\t);\n\n\t\treturn new Uint8Array(signature);\n\t}\n}\n"],
-  "mappings": ";;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAIA,0BAAuB;AACvB,uBAAmC;AALnC;AAQA,SAAS,uBAAuB,WAAuB;AACtD,QAAM,WAAW,IAAI,WAAW,SAAS;AACzC,QAAM,IAAI,SAAS,MAAM,GAAG,EAAE;AAC9B,QAAM,IAAI,SAAS,MAAM,IAAI,EAAE;AAE/B,QAAM,UAAU,EAAE,EAAE,IAAI,OAAO,IAAI,IAAO;AAE1C,QAAM,aAAa,IAAI,WAAW,oCAAmB,IAAI;AACzD,aAAW,CAAC,IAAI;AAChB,aAAW,IAAI,GAAG,CAAC;AAEnB,SAAO;AACR;AAEO,MAAM,mBAAN,MAAM,yBAAwB,2BAAO;AAAA,EAwB3C,YAAY,YAAuB,WAAuB;AACzD,UAAM;AAtBP;AAuBC,SAAK,aAAa;AAClB,uBAAK,YAAa,IAAI,oCAAmB,uBAAuB,SAAS,CAAC;AAAA,EAC3E;AAAA,EAvBA,aAAa,SAAS,EAAE,cAAc,MAAM,IAA+B,CAAC,GAAG;AAC9E,UAAM,UAAU,MAAM,WAAW,OAAO,OAAO;AAAA,MAC9C;AAAA,QACC,MAAM;AAAA,QACN,YAAY;AAAA,MACb;AAAA,MACA;AAAA,MACA,CAAC,QAAQ,QAAQ;AAAA,IAClB;AAEA,UAAM,YAAY,MAAM,WAAW,OAAO,OAAO,UAAU,OAAO,QAAQ,SAAS;AAEnF,WAAO,IAAI,iBAAgB,QAAQ,YAAY,IAAI,WAAW,SAAS,CAAC;AAAA,EACzE;AAAA,EAEA,eAAgC;AAC/B,WAAO;AAAA,EACR;AAAA,EAQA,eAAe;AACd,WAAO,mBAAK;AAAA,EACb;AAAA,EAEA,MAAM,KAAK,OAAwC;AAClD,UAAM,YAAY,MAAM,WAAW,OAAO,OAAO;AAAA,MAChD;AAAA,QACC,MAAM;AAAA,QACN,MAAM;AAAA,MACP;AAAA,MACA,KAAK;AAAA,MACL;AAAA,IACD;AAEA,WAAO,IAAI,WAAW,SAAS;AAAA,EAChC;AACD;AA3CC;AAHM,IAAM,kBAAN;",
+  "sourcesContent": ["// Copyright (c) Mysten Labs, Inc.\n// SPDX-License-Identifier: Apache-2.0\n\nimport type { SignatureScheme } from '@mysten/sui/cryptography';\nimport { Signer } from '@mysten/sui/cryptography';\nimport { Secp256r1PublicKey } from '@mysten/sui/keypairs/secp256r1';\nimport { secp256r1 } from '@noble/curves/p256';\n\n// Convert from uncompressed (65 bytes) to compressed (33 bytes) format\nfunction getCompressedPublicKey(publicKey: Uint8Array) {\n\tconst rawBytes = new Uint8Array(publicKey);\n\tconst x = rawBytes.slice(1, 33);\n\tconst y = rawBytes.slice(33, 65);\n\n\tconst prefix = (y[31] & 1) === 0 ? 0x02 : 0x03;\n\n\tconst compressed = new Uint8Array(Secp256r1PublicKey.SIZE);\n\tcompressed[0] = prefix;\n\tcompressed.set(x, 1);\n\n\treturn compressed;\n}\n\nexport interface ExportedWebCryptoKeypair {\n\tprivateKey: CryptoKey;\n\tpublicKey: Uint8Array;\n}\n\nexport class WebCryptoSigner extends Signer {\n\tprivateKey: CryptoKey;\n\n\t#publicKey: Secp256r1PublicKey;\n\n\tstatic async generate({ extractable = false }: { extractable?: boolean } = {}) {\n\t\tconst keypair = await globalThis.crypto.subtle.generateKey(\n\t\t\t{\n\t\t\t\tname: 'ECDSA',\n\t\t\t\tnamedCurve: 'P-256',\n\t\t\t},\n\t\t\textractable,\n\t\t\t['sign', 'verify'],\n\t\t);\n\n\t\tconst publicKey = await globalThis.crypto.subtle.exportKey('raw', keypair.publicKey);\n\n\t\treturn new WebCryptoSigner(\n\t\t\tkeypair.privateKey,\n\t\t\tgetCompressedPublicKey(new Uint8Array(publicKey)),\n\t\t);\n\t}\n\n\t/**\n\t * Imports a keypair using the value returned by `export()`.\n\t */\n\tstatic import(data: ExportedWebCryptoKeypair) {\n\t\treturn new WebCryptoSigner(data.privateKey, data.publicKey);\n\t}\n\n\tgetKeyScheme(): SignatureScheme {\n\t\treturn 'Secp256r1';\n\t}\n\n\tconstructor(privateKey: CryptoKey, publicKey: Uint8Array) {\n\t\tsuper();\n\t\tthis.privateKey = privateKey;\n\t\tthis.#publicKey = new Secp256r1PublicKey(publicKey);\n\t}\n\n\t/**\n\t * Exports the keypair so that it can be stored in IndexedDB.\n\t */\n\texport(): ExportedWebCryptoKeypair {\n\t\tconst exportedKeypair = {\n\t\t\tprivateKey: this.privateKey,\n\t\t\tpublicKey: this.#publicKey.toRawBytes(),\n\t\t};\n\n\t\tObject.defineProperty(exportedKeypair, 'toJSON', {\n\t\t\tenumerable: false,\n\t\t\tvalue: () => {\n\t\t\t\tthrow new Error(\n\t\t\t\t\t'The exported keypair must not be serialized. It must be stored in IndexedDB directly.',\n\t\t\t\t);\n\t\t\t},\n\t\t});\n\n\t\treturn exportedKeypair;\n\t}\n\n\tgetPublicKey() {\n\t\treturn this.#publicKey;\n\t}\n\n\tasync sign(bytes: Uint8Array): Promise<Uint8Array> {\n\t\tconst rawSignature = await globalThis.crypto.subtle.sign(\n\t\t\t{\n\t\t\t\tname: 'ECDSA',\n\t\t\t\thash: 'SHA-256',\n\t\t\t},\n\t\t\tthis.privateKey,\n\t\t\tbytes,\n\t\t);\n\n\t\tconst signature = secp256r1.Signature.fromCompact(new Uint8Array(rawSignature));\n\n\t\treturn signature.normalizeS().toCompactRawBytes();\n\t}\n}\n"],
+  "mappings": ";;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAIA,0BAAuB;AACvB,uBAAmC;AACnC,kBAA0B;AAN1B;AASA,SAAS,uBAAuB,WAAuB;AACtD,QAAM,WAAW,IAAI,WAAW,SAAS;AACzC,QAAM,IAAI,SAAS,MAAM,GAAG,EAAE;AAC9B,QAAM,IAAI,SAAS,MAAM,IAAI,EAAE;AAE/B,QAAM,UAAU,EAAE,EAAE,IAAI,OAAO,IAAI,IAAO;AAE1C,QAAM,aAAa,IAAI,WAAW,oCAAmB,IAAI;AACzD,aAAW,CAAC,IAAI;AAChB,aAAW,IAAI,GAAG,CAAC;AAEnB,SAAO;AACR;AAOO,MAAM,mBAAN,MAAM,yBAAwB,2BAAO;AAAA,EAkC3C,YAAY,YAAuB,WAAuB;AACzD,UAAM;AAhCP;AAiCC,SAAK,aAAa;AAClB,uBAAK,YAAa,IAAI,oCAAmB,SAAS;AAAA,EACnD;AAAA,EAjCA,aAAa,SAAS,EAAE,cAAc,MAAM,IAA+B,CAAC,GAAG;AAC9E,UAAM,UAAU,MAAM,WAAW,OAAO,OAAO;AAAA,MAC9C;AAAA,QACC,MAAM;AAAA,QACN,YAAY;AAAA,MACb;AAAA,MACA;AAAA,MACA,CAAC,QAAQ,QAAQ;AAAA,IAClB;AAEA,UAAM,YAAY,MAAM,WAAW,OAAO,OAAO,UAAU,OAAO,QAAQ,SAAS;AAEnF,WAAO,IAAI;AAAA,MACV,QAAQ;AAAA,MACR,uBAAuB,IAAI,WAAW,SAAS,CAAC;AAAA,IACjD;AAAA,EACD;AAAA;AAAA;AAAA;AAAA,EAKA,OAAO,OAAO,MAAgC;AAC7C,WAAO,IAAI,iBAAgB,KAAK,YAAY,KAAK,SAAS;AAAA,EAC3D;AAAA,EAEA,eAAgC;AAC/B,WAAO;AAAA,EACR;AAAA;AAAA;AAAA;AAAA,EAWA,SAAmC;AAClC,UAAM,kBAAkB;AAAA,MACvB,YAAY,KAAK;AAAA,MACjB,WAAW,mBAAK,YAAW,WAAW;AAAA,IACvC;AAEA,WAAO,eAAe,iBAAiB,UAAU;AAAA,MAChD,YAAY;AAAA,MACZ,OAAO,MAAM;AACZ,cAAM,IAAI;AAAA,UACT;AAAA,QACD;AAAA,MACD;AAAA,IACD,CAAC;AAED,WAAO;AAAA,EACR;AAAA,EAEA,eAAe;AACd,WAAO,mBAAK;AAAA,EACb;AAAA,EAEA,MAAM,KAAK,OAAwC;AAClD,UAAM,eAAe,MAAM,WAAW,OAAO,OAAO;AAAA,MACnD;AAAA,QACC,MAAM;AAAA,QACN,MAAM;AAAA,MACP;AAAA,MACA,KAAK;AAAA,MACL;AAAA,IACD;AAEA,UAAM,YAAY,sBAAU,UAAU,YAAY,IAAI,WAAW,YAAY,CAAC;AAE9E,WAAO,UAAU,WAAW,EAAE,kBAAkB;AAAA,EACjD;AACD;AA5EC;AAHM,IAAM,kBAAN;",
   "names": []
 }

package/dist/esm/webcrypto/index.d.ts CHANGED Viewed

@@ -1,14 +1,26 @@
 import type { SignatureScheme } from '@mysten/sui/cryptography';
 import { Signer } from '@mysten/sui/cryptography';
 import { Secp256r1PublicKey } from '@mysten/sui/keypairs/secp256r1';
+export interface ExportedWebCryptoKeypair {
+    privateKey: CryptoKey;
+    publicKey: Uint8Array;
+}
 export declare class WebCryptoSigner extends Signer {
     #private;
     privateKey: CryptoKey;
     static generate({ extractable }?: {
         extractable?: boolean;
     }): Promise<WebCryptoSigner>;
+    /**
+     * Imports a keypair using the value returned by `export()`.
+     */
+    static import(data: ExportedWebCryptoKeypair): WebCryptoSigner;
     getKeyScheme(): SignatureScheme;
     constructor(privateKey: CryptoKey, publicKey: Uint8Array);
+    /**
+     * Exports the keypair so that it can be stored in IndexedDB.
+     */
+    export(): ExportedWebCryptoKeypair;
     getPublicKey(): Secp256r1PublicKey;
     sign(bytes: Uint8Array): Promise<Uint8Array>;
 }

package/dist/esm/webcrypto/index.js CHANGED Viewed

@@ -8,6 +8,7 @@ var __privateSet = (obj, member, value, setter) => (__accessCheck(obj, member, "
 var _publicKey;
 import { Signer } from "@mysten/sui/cryptography";
 import { Secp256r1PublicKey } from "@mysten/sui/keypairs/secp256r1";
+import { secp256r1 } from "@noble/curves/p256";
 function getCompressedPublicKey(publicKey) {
   const rawBytes = new Uint8Array(publicKey);
   const x = rawBytes.slice(1, 33);
@@ -23,7 +24,7 @@ const _WebCryptoSigner = class _WebCryptoSigner extends Signer {
     super();
     __privateAdd(this, _publicKey);
     this.privateKey = privateKey;
-    __privateSet(this, _publicKey, new Secp256r1PublicKey(getCompressedPublicKey(publicKey)));
+    __privateSet(this, _publicKey, new Secp256r1PublicKey(publicKey));
   }
   static async generate({ extractable = false } = {}) {
     const keypair = await globalThis.crypto.subtle.generateKey(
@@ -35,16 +36,43 @@ const _WebCryptoSigner = class _WebCryptoSigner extends Signer {
       ["sign", "verify"]
     );
     const publicKey = await globalThis.crypto.subtle.exportKey("raw", keypair.publicKey);
-    return new _WebCryptoSigner(keypair.privateKey, new Uint8Array(publicKey));
+    return new _WebCryptoSigner(
+      keypair.privateKey,
+      getCompressedPublicKey(new Uint8Array(publicKey))
+    );
+  }
+  /**
+   * Imports a keypair using the value returned by `export()`.
+   */
+  static import(data) {
+    return new _WebCryptoSigner(data.privateKey, data.publicKey);
   }
   getKeyScheme() {
     return "Secp256r1";
   }
+  /**
+   * Exports the keypair so that it can be stored in IndexedDB.
+   */
+  export() {
+    const exportedKeypair = {
+      privateKey: this.privateKey,
+      publicKey: __privateGet(this, _publicKey).toRawBytes()
+    };
+    Object.defineProperty(exportedKeypair, "toJSON", {
+      enumerable: false,
+      value: () => {
+        throw new Error(
+          "The exported keypair must not be serialized. It must be stored in IndexedDB directly."
+        );
+      }
+    });
+    return exportedKeypair;
+  }
   getPublicKey() {
     return __privateGet(this, _publicKey);
   }
   async sign(bytes) {
-    const signature = await globalThis.crypto.subtle.sign(
+    const rawSignature = await globalThis.crypto.subtle.sign(
       {
         name: "ECDSA",
         hash: "SHA-256"
@@ -52,7 +80,8 @@ const _WebCryptoSigner = class _WebCryptoSigner extends Signer {
       this.privateKey,
       bytes
     );
-    return new Uint8Array(signature);
+    const signature = secp256r1.Signature.fromCompact(new Uint8Array(rawSignature));
+    return signature.normalizeS().toCompactRawBytes();
   }
 };
 _publicKey = new WeakMap();

package/dist/esm/webcrypto/index.js.map CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../../../src/webcrypto/index.ts"],
-  "sourcesContent": ["// Copyright (c) Mysten Labs, Inc.\n// SPDX-License-Identifier: Apache-2.0\n\nimport type { SignatureScheme } from '@mysten/sui/cryptography';\nimport { Signer } from '@mysten/sui/cryptography';\nimport { Secp256r1PublicKey } from '@mysten/sui/keypairs/secp256r1';\n\n// Convert from uncompressed (65 bytes) to compressed (33 bytes) format\nfunction getCompressedPublicKey(publicKey: Uint8Array) {\n\tconst rawBytes = new Uint8Array(publicKey);\n\tconst x = rawBytes.slice(1, 33);\n\tconst y = rawBytes.slice(33, 65);\n\n\tconst prefix = (y[31] & 1) === 0 ? 0x02 : 0x03;\n\n\tconst compressed = new Uint8Array(Secp256r1PublicKey.SIZE);\n\tcompressed[0] = prefix;\n\tcompressed.set(x, 1);\n\n\treturn compressed;\n}\n\nexport class WebCryptoSigner extends Signer {\n\tprivateKey: CryptoKey;\n\n\t#publicKey: Secp256r1PublicKey;\n\n\tstatic async generate({ extractable = false }: { extractable?: boolean } = {}) {\n\t\tconst keypair = await globalThis.crypto.subtle.generateKey(\n\t\t\t{\n\t\t\t\tname: 'ECDSA',\n\t\t\t\tnamedCurve: 'P-256',\n\t\t\t},\n\t\t\textractable,\n\t\t\t['sign', 'verify'],\n\t\t);\n\n\t\tconst publicKey = await globalThis.crypto.subtle.exportKey('raw', keypair.publicKey);\n\n\t\treturn new WebCryptoSigner(keypair.privateKey, new Uint8Array(publicKey));\n\t}\n\n\tgetKeyScheme(): SignatureScheme {\n\t\treturn 'Secp256r1';\n\t}\n\n\tconstructor(privateKey: CryptoKey, publicKey: Uint8Array) {\n\t\tsuper();\n\t\tthis.privateKey = privateKey;\n\t\tthis.#publicKey = new Secp256r1PublicKey(getCompressedPublicKey(publicKey));\n\t}\n\n\tgetPublicKey() {\n\t\treturn this.#publicKey;\n\t}\n\n\tasync sign(bytes: Uint8Array): Promise<Uint8Array> {\n\t\tconst signature = await globalThis.crypto.subtle.sign(\n\t\t\t{\n\t\t\t\tname: 'ECDSA',\n\t\t\t\thash: 'SHA-256',\n\t\t\t},\n\t\t\tthis.privateKey,\n\t\t\tbytes,\n\t\t);\n\n\t\treturn new Uint8Array(signature);\n\t}\n}\n"],
-  "mappings": ";;;;;;;AAAA;AAIA,SAAS,cAAc;AACvB,SAAS,0BAA0B;AAGnC,SAAS,uBAAuB,WAAuB;AACtD,QAAM,WAAW,IAAI,WAAW,SAAS;AACzC,QAAM,IAAI,SAAS,MAAM,GAAG,EAAE;AAC9B,QAAM,IAAI,SAAS,MAAM,IAAI,EAAE;AAE/B,QAAM,UAAU,EAAE,EAAE,IAAI,OAAO,IAAI,IAAO;AAE1C,QAAM,aAAa,IAAI,WAAW,mBAAmB,IAAI;AACzD,aAAW,CAAC,IAAI;AAChB,aAAW,IAAI,GAAG,CAAC;AAEnB,SAAO;AACR;AAEO,MAAM,mBAAN,MAAM,yBAAwB,OAAO;AAAA,EAwB3C,YAAY,YAAuB,WAAuB;AACzD,UAAM;AAtBP;AAuBC,SAAK,aAAa;AAClB,uBAAK,YAAa,IAAI,mBAAmB,uBAAuB,SAAS,CAAC;AAAA,EAC3E;AAAA,EAvBA,aAAa,SAAS,EAAE,cAAc,MAAM,IAA+B,CAAC,GAAG;AAC9E,UAAM,UAAU,MAAM,WAAW,OAAO,OAAO;AAAA,MAC9C;AAAA,QACC,MAAM;AAAA,QACN,YAAY;AAAA,MACb;AAAA,MACA;AAAA,MACA,CAAC,QAAQ,QAAQ;AAAA,IAClB;AAEA,UAAM,YAAY,MAAM,WAAW,OAAO,OAAO,UAAU,OAAO,QAAQ,SAAS;AAEnF,WAAO,IAAI,iBAAgB,QAAQ,YAAY,IAAI,WAAW,SAAS,CAAC;AAAA,EACzE;AAAA,EAEA,eAAgC;AAC/B,WAAO;AAAA,EACR;AAAA,EAQA,eAAe;AACd,WAAO,mBAAK;AAAA,EACb;AAAA,EAEA,MAAM,KAAK,OAAwC;AAClD,UAAM,YAAY,MAAM,WAAW,OAAO,OAAO;AAAA,MAChD;AAAA,QACC,MAAM;AAAA,QACN,MAAM;AAAA,MACP;AAAA,MACA,KAAK;AAAA,MACL;AAAA,IACD;AAEA,WAAO,IAAI,WAAW,SAAS;AAAA,EAChC;AACD;AA3CC;AAHM,IAAM,kBAAN;",
+  "sourcesContent": ["// Copyright (c) Mysten Labs, Inc.\n// SPDX-License-Identifier: Apache-2.0\n\nimport type { SignatureScheme } from '@mysten/sui/cryptography';\nimport { Signer } from '@mysten/sui/cryptography';\nimport { Secp256r1PublicKey } from '@mysten/sui/keypairs/secp256r1';\nimport { secp256r1 } from '@noble/curves/p256';\n\n// Convert from uncompressed (65 bytes) to compressed (33 bytes) format\nfunction getCompressedPublicKey(publicKey: Uint8Array) {\n\tconst rawBytes = new Uint8Array(publicKey);\n\tconst x = rawBytes.slice(1, 33);\n\tconst y = rawBytes.slice(33, 65);\n\n\tconst prefix = (y[31] & 1) === 0 ? 0x02 : 0x03;\n\n\tconst compressed = new Uint8Array(Secp256r1PublicKey.SIZE);\n\tcompressed[0] = prefix;\n\tcompressed.set(x, 1);\n\n\treturn compressed;\n}\n\nexport interface ExportedWebCryptoKeypair {\n\tprivateKey: CryptoKey;\n\tpublicKey: Uint8Array;\n}\n\nexport class WebCryptoSigner extends Signer {\n\tprivateKey: CryptoKey;\n\n\t#publicKey: Secp256r1PublicKey;\n\n\tstatic async generate({ extractable = false }: { extractable?: boolean } = {}) {\n\t\tconst keypair = await globalThis.crypto.subtle.generateKey(\n\t\t\t{\n\t\t\t\tname: 'ECDSA',\n\t\t\t\tnamedCurve: 'P-256',\n\t\t\t},\n\t\t\textractable,\n\t\t\t['sign', 'verify'],\n\t\t);\n\n\t\tconst publicKey = await globalThis.crypto.subtle.exportKey('raw', keypair.publicKey);\n\n\t\treturn new WebCryptoSigner(\n\t\t\tkeypair.privateKey,\n\t\t\tgetCompressedPublicKey(new Uint8Array(publicKey)),\n\t\t);\n\t}\n\n\t/**\n\t * Imports a keypair using the value returned by `export()`.\n\t */\n\tstatic import(data: ExportedWebCryptoKeypair) {\n\t\treturn new WebCryptoSigner(data.privateKey, data.publicKey);\n\t}\n\n\tgetKeyScheme(): SignatureScheme {\n\t\treturn 'Secp256r1';\n\t}\n\n\tconstructor(privateKey: CryptoKey, publicKey: Uint8Array) {\n\t\tsuper();\n\t\tthis.privateKey = privateKey;\n\t\tthis.#publicKey = new Secp256r1PublicKey(publicKey);\n\t}\n\n\t/**\n\t * Exports the keypair so that it can be stored in IndexedDB.\n\t */\n\texport(): ExportedWebCryptoKeypair {\n\t\tconst exportedKeypair = {\n\t\t\tprivateKey: this.privateKey,\n\t\t\tpublicKey: this.#publicKey.toRawBytes(),\n\t\t};\n\n\t\tObject.defineProperty(exportedKeypair, 'toJSON', {\n\t\t\tenumerable: false,\n\t\t\tvalue: () => {\n\t\t\t\tthrow new Error(\n\t\t\t\t\t'The exported keypair must not be serialized. It must be stored in IndexedDB directly.',\n\t\t\t\t);\n\t\t\t},\n\t\t});\n\n\t\treturn exportedKeypair;\n\t}\n\n\tgetPublicKey() {\n\t\treturn this.#publicKey;\n\t}\n\n\tasync sign(bytes: Uint8Array): Promise<Uint8Array> {\n\t\tconst rawSignature = await globalThis.crypto.subtle.sign(\n\t\t\t{\n\t\t\t\tname: 'ECDSA',\n\t\t\t\thash: 'SHA-256',\n\t\t\t},\n\t\t\tthis.privateKey,\n\t\t\tbytes,\n\t\t);\n\n\t\tconst signature = secp256r1.Signature.fromCompact(new Uint8Array(rawSignature));\n\n\t\treturn signature.normalizeS().toCompactRawBytes();\n\t}\n}\n"],
+  "mappings": ";;;;;;;AAAA;AAIA,SAAS,cAAc;AACvB,SAAS,0BAA0B;AACnC,SAAS,iBAAiB;AAG1B,SAAS,uBAAuB,WAAuB;AACtD,QAAM,WAAW,IAAI,WAAW,SAAS;AACzC,QAAM,IAAI,SAAS,MAAM,GAAG,EAAE;AAC9B,QAAM,IAAI,SAAS,MAAM,IAAI,EAAE;AAE/B,QAAM,UAAU,EAAE,EAAE,IAAI,OAAO,IAAI,IAAO;AAE1C,QAAM,aAAa,IAAI,WAAW,mBAAmB,IAAI;AACzD,aAAW,CAAC,IAAI;AAChB,aAAW,IAAI,GAAG,CAAC;AAEnB,SAAO;AACR;AAOO,MAAM,mBAAN,MAAM,yBAAwB,OAAO;AAAA,EAkC3C,YAAY,YAAuB,WAAuB;AACzD,UAAM;AAhCP;AAiCC,SAAK,aAAa;AAClB,uBAAK,YAAa,IAAI,mBAAmB,SAAS;AAAA,EACnD;AAAA,EAjCA,aAAa,SAAS,EAAE,cAAc,MAAM,IAA+B,CAAC,GAAG;AAC9E,UAAM,UAAU,MAAM,WAAW,OAAO,OAAO;AAAA,MAC9C;AAAA,QACC,MAAM;AAAA,QACN,YAAY;AAAA,MACb;AAAA,MACA;AAAA,MACA,CAAC,QAAQ,QAAQ;AAAA,IAClB;AAEA,UAAM,YAAY,MAAM,WAAW,OAAO,OAAO,UAAU,OAAO,QAAQ,SAAS;AAEnF,WAAO,IAAI;AAAA,MACV,QAAQ;AAAA,MACR,uBAAuB,IAAI,WAAW,SAAS,CAAC;AAAA,IACjD;AAAA,EACD;AAAA;AAAA;AAAA;AAAA,EAKA,OAAO,OAAO,MAAgC;AAC7C,WAAO,IAAI,iBAAgB,KAAK,YAAY,KAAK,SAAS;AAAA,EAC3D;AAAA,EAEA,eAAgC;AAC/B,WAAO;AAAA,EACR;AAAA;AAAA;AAAA;AAAA,EAWA,SAAmC;AAClC,UAAM,kBAAkB;AAAA,MACvB,YAAY,KAAK;AAAA,MACjB,WAAW,mBAAK,YAAW,WAAW;AAAA,IACvC;AAEA,WAAO,eAAe,iBAAiB,UAAU;AAAA,MAChD,YAAY;AAAA,MACZ,OAAO,MAAM;AACZ,cAAM,IAAI;AAAA,UACT;AAAA,QACD;AAAA,MACD;AAAA,IACD,CAAC;AAED,WAAO;AAAA,EACR;AAAA,EAEA,eAAe;AACd,WAAO,mBAAK;AAAA,EACb;AAAA,EAEA,MAAM,KAAK,OAAwC;AAClD,UAAM,eAAe,MAAM,WAAW,OAAO,OAAO;AAAA,MACnD;AAAA,QACC,MAAM;AAAA,QACN,MAAM;AAAA,MACP;AAAA,MACA,KAAK;AAAA,MACL;AAAA,IACD;AAEA,UAAM,YAAY,UAAU,UAAU,YAAY,IAAI,WAAW,YAAY,CAAC;AAE9E,WAAO,UAAU,WAAW,EAAE,kBAAkB;AAAA,EACjD;AACD;AA5EC;AAHM,IAAM,kBAAN;",
   "names": []
 }