npm - @nexustechpro/baileys - Versions diffs - 2.0.2 → 2.0.5 - Mend

@nexustechpro/baileys 2.0.2 → 2.0.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (102) hide show

package/LICENSE +1 -1
package/README.md +924 -1299
package/lib/Defaults/baileys-version.json +6 -2
package/lib/Defaults/index.js +172 -172
package/lib/Signal/libsignal.js +380 -292
package/lib/Signal/lid-mapping.js +264 -171
package/lib/Socket/Client/index.js +2 -2
package/lib/Socket/Client/types.js +10 -10
package/lib/Socket/Client/websocket.js +45 -310
package/lib/Socket/business.js +375 -375
package/lib/Socket/chats.js +909 -963
package/lib/Socket/communities.js +430 -430
package/lib/Socket/groups.js +342 -342
package/lib/Socket/index.js +22 -22
package/lib/Socket/messages-recv.js +777 -743
package/lib/Socket/messages-send.js +295 -305
package/lib/Socket/mex.js +50 -50
package/lib/Socket/newsletter.js +148 -148
package/lib/Socket/nexus-handler.js +75 -261
package/lib/Socket/socket.js +709 -1201
package/lib/Store/index.js +5 -5
package/lib/Store/make-cache-manager-store.js +81 -81
package/lib/Store/make-in-memory-store.js +416 -416
package/lib/Store/make-ordered-dictionary.js +81 -81
package/lib/Store/object-repository.js +30 -30
package/lib/Types/Auth.js +1 -1
package/lib/Types/Bussines.js +1 -1
package/lib/Types/Call.js +1 -1
package/lib/Types/Chat.js +7 -7
package/lib/Types/Contact.js +1 -1
package/lib/Types/Events.js +1 -1
package/lib/Types/GroupMetadata.js +1 -1
package/lib/Types/Label.js +24 -24
package/lib/Types/LabelAssociation.js +6 -6
package/lib/Types/Message.js +10 -10
package/lib/Types/Newsletter.js +28 -28
package/lib/Types/Product.js +1 -1
package/lib/Types/Signal.js +1 -1
package/lib/Types/Socket.js +2 -2
package/lib/Types/State.js +12 -12
package/lib/Types/USync.js +1 -1
package/lib/Types/index.js +25 -25
package/lib/Utils/auth-utils.js +264 -256
package/lib/Utils/baileys-event-stream.js +55 -55
package/lib/Utils/browser-utils.js +27 -27
package/lib/Utils/business.js +228 -230
package/lib/Utils/chat-utils.js +694 -764
package/lib/Utils/crypto.js +109 -135
package/lib/Utils/decode-wa-message.js +310 -314
package/lib/Utils/event-buffer.js +547 -547
package/lib/Utils/generics.js +297 -297
package/lib/Utils/history.js +91 -83
package/lib/Utils/index.js +21 -20
package/lib/Utils/key-store.js +17 -0
package/lib/Utils/link-preview.js +97 -98
package/lib/Utils/logger.js +2 -2
package/lib/Utils/lt-hash.js +47 -47
package/lib/Utils/make-mutex.js +39 -39
package/lib/Utils/message-retry-manager.js +148 -148
package/lib/Utils/messages-media.js +534 -534
package/lib/Utils/messages.js +705 -705
package/lib/Utils/noise-handler.js +255 -255
package/lib/Utils/pre-key-manager.js +105 -105
package/lib/Utils/process-message.js +412 -412
package/lib/Utils/signal.js +160 -158
package/lib/Utils/use-multi-file-auth-state.js +120 -120
package/lib/Utils/validate-connection.js +194 -194
package/lib/WABinary/constants.js +1300 -1300
package/lib/WABinary/decode.js +237 -237
package/lib/WABinary/encode.js +232 -232
package/lib/WABinary/generic-utils.js +252 -211
package/lib/WABinary/index.js +5 -5
package/lib/WABinary/jid-utils.js +279 -95
package/lib/WABinary/types.js +1 -1
package/lib/WAM/BinaryInfo.js +9 -9
package/lib/WAM/constants.js +22852 -22852
package/lib/WAM/encode.js +149 -149
package/lib/WAM/index.js +3 -3
package/lib/WAUSync/Protocols/USyncContactProtocol.js +28 -28
package/lib/WAUSync/Protocols/USyncDeviceProtocol.js +53 -53
package/lib/WAUSync/Protocols/USyncDisappearingModeProtocol.js +26 -26
package/lib/WAUSync/Protocols/USyncStatusProtocol.js +37 -37
package/lib/WAUSync/Protocols/UsyncBotProfileProtocol.js +50 -50
package/lib/WAUSync/Protocols/UsyncLIDProtocol.js +28 -28
package/lib/WAUSync/Protocols/index.js +4 -4
package/lib/WAUSync/USyncQuery.js +93 -93
package/lib/WAUSync/USyncUser.js +22 -22
package/lib/WAUSync/index.js +3 -3
package/lib/index.js +66 -66
package/package.json +171 -144
package/lib/Signal/Group/ciphertext-message.js +0 -12
package/lib/Signal/Group/group-session-builder.js +0 -30
package/lib/Signal/Group/group_cipher.js +0 -100
package/lib/Signal/Group/index.js +0 -12
package/lib/Signal/Group/keyhelper.js +0 -18
package/lib/Signal/Group/sender-chain-key.js +0 -26
package/lib/Signal/Group/sender-key-distribution-message.js +0 -63
package/lib/Signal/Group/sender-key-message.js +0 -66
package/lib/Signal/Group/sender-key-name.js +0 -48
package/lib/Signal/Group/sender-key-record.js +0 -41
package/lib/Signal/Group/sender-key-state.js +0 -84
package/lib/Signal/Group/sender-message-key.js +0 -26

package/lib/Socket/socket.js CHANGED Viewed

@@ -1,1202 +1,710 @@
-import { Boom } from "@hapi/boom"
-import { randomBytes } from "crypto"
-import { URL } from "url"
-import { promisify } from "util"
-import { proto } from "../../WAProto/index.js"
-import {
-  DEF_CALLBACK_PREFIX, DEF_TAG_PREFIX, INITIAL_PREKEY_COUNT, MIN_PREKEY_COUNT,
-  MIN_UPLOAD_INTERVAL, NOISE_WA_HEADER, UPLOAD_TIMEOUT, BATCH_SIZE
-} from "../Defaults/index.js"
-import { DisconnectReason } from "../Types/index.js"
-import {
-  addTransactionCapability, aesEncryptCTR, bindWaitForConnectionUpdate, bytesToCrockford,
-  configureSuccessfulPairing, Curve, derivePairingCodeKey, generateLoginNode, generateMdTagPrefix,
-  generateRegistrationNode, getCodeFromWSError, getErrorCodeFromStreamError, getNextPreKeysNode,
-  makeEventBuffer, makeNoiseHandler, promiseTimeout
-} from "../Utils/index.js"
-import { getPlatformId } from "../Utils/browser-utils.js"
-import {
-  assertNodeErrorFree, binaryNodeToString, encodeBinaryNode, getBinaryNodeChild,
-  getBinaryNodeChildren, isLidUser, jidDecode, jidEncode, S_WHATSAPP_NET
-} from "../WABinary/index.js"
-import { BinaryInfo } from "../WAM/BinaryInfo.js"
-import { USyncQuery, USyncUser } from "../WAUSync/index.js"
-import { WebSocketClient } from "./Client/index.js"
-// ==================== CONSTANTS ====================
-const CONSTANTS = {
-  MAX_RECONNECT: 5,
-  MAX_FAILED_PINGS: 6,
-  PREKEY_CHECK_INTERVAL: 30 * 60 * 1000,    // 30 minutes
-  PREKEY_MIN_INTERVAL: 5 * 60 * 1000,        // 5 minutes
-  PREKEY_CRITICAL: 3,
-  SESSION_CLEANUP_INTERVAL: 10 * 60 * 1000,  // 10 minutes
-  SESSION_MAX_SIZE: 1000,
-  HEALTH_CHECK_MULTIPLIER: 4
-}
-const PRIORITY_MAP = {
-  "signal-error": "critical",
-  "bad-mac": "critical",
-  "session-corruption": "critical",
-  "auth-failure": "critical",
-  "connection-established": "high",
-  "connection-restored": "high",
-  "device-paired": "high",
-  "message-send-error": "normal",
-  "message-received": "normal",
-  "scheduled": "low",
-  "keep-alive": "low"
-}
-// ==================== MAIN SOCKET FACTORY ====================
-export const makeSocket = (config) => {
-  const {
-    waWebSocketUrl, connectTimeoutMs, logger, keepAliveIntervalMs, browser,
-    auth: authState, printQRInTerminal, defaultQueryTimeoutMs, transactionOpts,
-    qrTimeout, makeSignalRepository
-  } = config
-  if (printQRInTerminal) {
-    logger?.warn("printQRInTerminal deprecated")
-  }
-  // ==================== SETUP ====================
-  // WebSocket URL configuration
-  const url = typeof waWebSocketUrl === "string" ? new URL(waWebSocketUrl) : waWebSocketUrl
-  if (config.mobile || url.protocol === "tcp:") {
-    throw new Boom("Mobile API not supported", { statusCode: DisconnectReason.loggedOut })
-  }
-  if (url.protocol === "wss:" && authState?.creds?.routingInfo) {
-    url.searchParams.append("ED", authState.creds.routingInfo.toString("base64url"))
-  }
-  // Initialize encryption & WebSocket
-  const ephemeralKeyPair = Curve.generateKeyPair()
-  const noise = makeNoiseHandler({
-    keyPair: ephemeralKeyPair,
-    NOISE_HEADER: NOISE_WA_HEADER,
-    logger,
-    routingInfo: authState?.creds?.routingInfo
-  })
-  const ws = new WebSocketClient(url, config)
-  logger.info({ url: url.toString() }, "Initiating WebSocket connection")
-  ws.connect()
-  // State initialization
-  const ev = makeEventBuffer(logger)
-  const { creds } = authState
-  const keys = addTransactionCapability(authState.keys, logger, transactionOpts)
-  const signalRepository = makeSignalRepository({ creds, keys }, logger, pnFromLIDUSync)
-  const publicWAMBuffer = new BinaryInfo()
-  const uqTagId = generateMdTagPrefix()
-  const sendPromise = promisify(ws.send)
-  // ==================== STATE VARIABLES ====================
-  let epoch = 1
-  let lastDateRecv
-  let lastMessageTime = Date.now()
-  let lastPreKeyCheck = 0
-  let lastUploadTime = 0
-  let reconnectAttempts = 0
-  let consecutiveFailedPings = 0
-  let closed = false
-  let isUploadingPreKeys = false
-  let uploadPreKeysPromise = null
-  let preKeyCheckQueue = []
-  // Timers
-  let keepAliveReq
-  let qrTimer
-  let sessionHealthCheck
-  let preKeyMonitorInterval
-  let sessionCleanupInterval
-  // ==================== HELPER FUNCTIONS ====================
-  const generateMessageTag = () => `${uqTagId}${epoch++}`
-  const mapWebSocketError = (handler) => {
-    return (error) => handler(new Boom(`WebSocket Error (${error?.message})`, {
-      statusCode: getCodeFromWSError(error),
-      data: error
-    }))
-  }
-  // ==================== CORE MESSAGING ====================
-  const sendRawMessage = async (data) => {
-    if (!ws.isOpen) {
-      throw new Boom("Connection Closed", { statusCode: DisconnectReason.connectionClosed })
-    }
-    const bytes = noise.encodeFrame(data)
-    await promiseTimeout(connectTimeoutMs, async (resolve, reject) => {
-      try {
-        await sendPromise.call(ws, bytes)
-        resolve()
-      } catch (error) {
-        reject(error)
-      }
-    })
-  }
-  const sendNode = (frame) => {
-    if (logger.level === "trace") {
-      logger.trace({ xml: binaryNodeToString(frame), msg: "xml send" })
-    }
-    return sendRawMessage(encodeBinaryNode(frame))
-  }
-  const waitForMessage = async (msgId, timeoutMs = defaultQueryTimeoutMs) => {
-    let onRecv, onErr
-    try {
-      return await promiseTimeout(timeoutMs, (resolve, reject) => {
-        onRecv = (data) => resolve(data)
-        onErr = (err) => reject(err || new Boom("Connection Closed", {
-          statusCode: DisconnectReason.connectionClosed
-        }))
-        ws.on(`TAG:${msgId}`, onRecv)
-        ws.on("close", onErr)
-        ws.on("error", onErr)
-        return () => reject(new Boom("Query Cancelled"))
-      })
-    } catch (error) {
-      if (error instanceof Boom && error.output?.statusCode === DisconnectReason.timedOut) {
-        logger?.warn?.({ msgId }, "Timed out waiting for message")
-        return undefined
-      }
-      throw error
-    } finally {
-      if (onRecv) ws.off(`TAG:${msgId}`, onRecv)
-      if (onErr) {
-        ws.off("close", onErr)
-        ws.off("error", onErr)
-      }
-    }
-  }
-  const query = async (node, timeoutMs) => {
-    if (!node.attrs.id) node.attrs.id = generateMessageTag()
-    const msgId = node.attrs.id
-    // Retry logic for rate limiting
-    for (let i = 0; i < 20; i++) {
-      try {
-        const result = await promiseTimeout(timeoutMs, async (resolve, reject) => {
-          const result = waitForMessage(msgId, timeoutMs).catch(reject)
-          sendNode(node).then(async () => resolve(await result)).catch(reject)
-        })
-        if (result && "tag" in result) {
-          assertNodeErrorFree(result)
-        }
-        return result
-      } catch (error) {
-        if (error?.data === 429 || error?.isRateLimit) {
-          await new Promise(r => setTimeout(r, 300 + Math.random() * 700))
-          continue
-        }
-        throw error
-      }
-    }
-  }
-  // ==================== USYNC QUERIES ====================
-  const executeUSyncQuery = async (usyncQuery) => {
-    if (usyncQuery.protocols.length === 0) {
-      throw new Boom("USyncQuery must have at least one protocol")
-    }
-    const userNodes = usyncQuery.users.map((user) => ({
-      tag: "user",
-      attrs: { jid: !user.phone ? user.id : undefined },
-      content: usyncQuery.protocols.map((a) => a.getUserElement(user)).filter((a) => a !== null)
-    }))
-    const iq = {
-      tag: "iq",
-      attrs: { to: S_WHATSAPP_NET, type: "get", xmlns: "usync" },
-      content: [{
-        tag: "usync",
-        attrs: {
-          context: usyncQuery.context,
-          mode: usyncQuery.mode,
-          sid: generateMessageTag(),
-          last: "true",
-          index: "0"
-        },
-        content: [
-          { tag: "query", attrs: {}, content: usyncQuery.protocols.map((a) => a.getQueryElement()) },
-          { tag: "list", attrs: {}, content: userNodes }
-        ]
-      }]
-    }
-    return usyncQuery.parseUSyncQueryResult(await query(iq))
-  }
-  const onWhatsApp = async (...phoneNumber) => {
-    let usyncQuery = new USyncQuery()
-    let contactEnabled = false
-    for (const jid of phoneNumber) {
-      if (isLidUser(jid)) {
-        logger?.warn("LIDs not supported with onWhatsApp")
-        continue
-      }
-      if (!contactEnabled) {
-        contactEnabled = true
-        usyncQuery = usyncQuery.withContactProtocol()
-      }
-      const phone = `+${jid.replace("+", "").split("@")[0]?.split(":")[0]}`
-      usyncQuery.withUser(new USyncUser().withPhone(phone))
-    }
-    if (usyncQuery.users.length === 0) return []
-    const results = await executeUSyncQuery(usyncQuery)
-    return results ? results.list
-      .filter((a) => !!a.contact)
-      .map(({ contact, id }) => ({ jid: id, exists: contact })) : []
-  }
-  async function pnFromLIDUSync(jids) {
-    const usyncQuery = new USyncQuery().withLIDProtocol().withContext("background")
-    for (const jid of jids) {
-      if (!isLidUser(jid)) {
-        usyncQuery.withUser(new USyncUser().withId(jid))
-      } else {
-        logger?.warn("LID user found in LID fetch call")
-      }
-    }
-    if (usyncQuery.users.length === 0) return []
-    const results = await executeUSyncQuery(usyncQuery)
-    return results ? results.list
-      .filter((a) => !!a.lid)
-      .map(({ lid, id }) => ({ pn: id, lid })) : []
-  }
-  // ==================== ERROR HANDLING ====================
-  const onUnexpectedError = (err, msg) => {
-    logger.error({ err }, `Unexpected error in '${msg}'`)
-    const message = (err && ((err.stack || err.message) || String(err))).toLowerCase()
-    // Detect MAC errors
-    if (message.includes('bad mac') || (message.includes('mac') && message.includes('invalid'))) {
-      logger.warn("Bad MAC error detected - triggering pre-key check")
-      triggerPreKeyCheck("bad-mac", "critical")
-    }
-    // Detect session corruption
-    if (message.includes('session') && message.includes('corrupt')) {
-      logger.warn("Session corruption detected - triggering pre-key check")
-      triggerPreKeyCheck("session-corruption", "critical")
-    }
-  }
-  // ==================== AUTH STATE VALIDATION ====================
-  const validateAuthStateIntegrity = async () => {
-    try {
-      logger.info("Validating auth state integrity...")
-      const deviceListData = await keys.get("device-list", ["_index"])
-      const hasDeviceList = !!deviceListData?.['_index']
-      const sessionData = await keys.get("session", ["_index"])
-      const hasSessions = !!sessionData?.['_index']
-      const currentPreKeyId = creds.nextPreKeyId - 1
-      const expectedPreKeys = Math.max(0, currentPreKeyId)
-      const preKeyThreshold = 20
-      logger.info({
-        hasDeviceList,
-        hasSessions,
-        expectedPreKeys,
-        currentPreKeyId
-      }, "Auth state integrity check complete")
-      if (!hasDeviceList) {
-        logger.warn("⚠️  Device-list is empty - will rebuild from first messages")
-      }
-      if (!hasSessions) {
-        logger.warn("⚠️  Sessions are empty - will establish as contacts message")
-      }
-    } catch (error) {
-      logger.error({ error }, "Auth state integrity check failed")
-    }
-  }
-  // ==================== CONNECTION VALIDATION ====================
-  const validateConnection = async () => {
-    await validateAuthStateIntegrity()
-    let helloMsg = { clientHello: { ephemeral: ephemeralKeyPair.public } }
-    helloMsg = proto.HandshakeMessage.fromObject(helloMsg)
-    logger.info({ browser, helloMsg }, "Connected to WhatsApp")
-    const init = proto.HandshakeMessage.encode(helloMsg).finish()
-    const result = await awaitNextMessage(init)
-    const handshake = proto.HandshakeMessage.decode(result)
-    logger.trace({ handshake }, "Handshake received from WhatsApp")
-    const keyEnc = await noise.processHandshake(handshake, creds.noiseKey)
-    const node = !creds.me
-      ? generateRegistrationNode(creds, config)
-      : generateLoginNode(creds.me.id, config)
-    logger.info({ node }, !creds.me ? "Attempting registration..." : "Logging in...")
-    const payloadEnc = noise.encrypt(proto.ClientPayload.encode(node).finish())
-    await sendRawMessage(
-      proto.HandshakeMessage.encode({
-        clientFinish: { static: keyEnc, payload: payloadEnc }
-      }).finish()
-    )
-    noise.finishInit()
-    startKeepAliveRequest()
-  }
-  const awaitNextMessage = async (sendMsg) => {
-    if (!ws.isOpen) {
-      throw new Boom("Connection Closed", { statusCode: DisconnectReason.connectionClosed })
-    }
-    let onOpen, onClose
-    const result = promiseTimeout(connectTimeoutMs, (resolve, reject) => {
-      onOpen = resolve
-      onClose = mapWebSocketError(reject)
-      ws.on("frame", onOpen)
-      ws.on("close", onClose)
-      ws.on("error", onClose)
-    }).finally(() => {
-      ws.off("frame", onOpen)
-      ws.off("close", onClose)
-      ws.off("error", onClose)
-    })
-    if (sendMsg) sendRawMessage(sendMsg).catch(onClose)
-    return result
-  }
-  const waitForSocketOpen = async () => {
-    if (ws.isOpen) return
-    if (ws.isClosed || ws.isClosing) {
-      throw new Boom("Connection Closed", { statusCode: DisconnectReason.connectionClosed })
-    }
-    let onOpen, onClose
-    await new Promise((resolve, reject) => {
-      onOpen = () => resolve(undefined)
-      onClose = mapWebSocketError(reject)
-      ws.on("open", onOpen)
-      ws.on("close", onClose)
-      ws.on("error", onClose)
-    }).finally(() => {
-      ws.off("open", onOpen)
-      ws.off("close", onClose)
-      ws.off("error", onClose)
-    })
-  }
-  // ==================== PRE-KEY MANAGEMENT ====================
-  const getAvailablePreKeysOnServer = async () => {
-    const result = await query({
-      tag: "iq",
-      attrs: { id: generateMessageTag(), xmlns: "encrypt", type: "get", to: S_WHATSAPP_NET },
-      content: [{ tag: "count", attrs: {} }]
-    })
-    return +getBinaryNodeChild(result, "count").attrs.value
-  }
-  const uploadPreKeys = async (count = MIN_PREKEY_COUNT, retryCount = 0) => {
-    // Rate limiting
-    if (retryCount === 0 && Date.now() - lastUploadTime < MIN_UPLOAD_INTERVAL) {
-      logger.debug(`Skipping upload, only ${Date.now() - lastUploadTime}ms since last`)
-      return
-    }
-    // Prevent concurrent uploads
-    if (uploadPreKeysPromise) {
-      logger.debug("Pre-key upload in progress, waiting...")
-      await uploadPreKeysPromise
-      return
-    }
-    const uploadLogic = async () => {
-      logger.info({ count, retryCount }, "Uploading pre-keys")
-      const node = await keys.transaction(async () => {
-        const { update, node } = await getNextPreKeysNode({ creds, keys }, count)
-        ev.emit("creds.update", update)
-        return node
-      }, creds?.me?.id || "upload-pre-keys")
-      try {
-        await query(node)
-        logger.info({ count }, "✅ Pre-keys uploaded successfully")
-        lastUploadTime = Date.now()
-      } catch (uploadError) {
-        logger.error({ uploadError: uploadError.toString(), count }, "Failed to upload pre-keys")
-        if (retryCount < 3) {
-          const backoffDelay = Math.min(1000 * Math.pow(2, retryCount), 10000)
-          logger.info(`Retrying pre-key upload in ${backoffDelay}ms`)
-          await new Promise((resolve) => setTimeout(resolve, backoffDelay))
-          return uploadPreKeys(count, retryCount + 1)
-        }
-        throw uploadError
-      }
-    }
-    uploadPreKeysPromise = Promise.race([
-      uploadLogic(),
-      new Promise((_, reject) =>
-        setTimeout(() => reject(new Boom("Pre-key upload timeout", { statusCode: 408 })), UPLOAD_TIMEOUT)
-      )
-    ])
-    try {
-      await uploadPreKeysPromise
-    } finally {
-      uploadPreKeysPromise = null
-    }
-  }
-  const smartPreKeyMonitor = async (reason = "scheduled", priority = "normal") => {
-    const now = Date.now()
-    // Skip if checked too recently (unless critical)
-    if (priority !== "critical" && now - lastPreKeyCheck < CONSTANTS.PREKEY_MIN_INTERVAL) {
-      logger.debug({ reason }, "Skipping pre-key check - too recent")
-      return
-    }
-    // Queue critical checks if upload in progress
-    if (isUploadingPreKeys) {
-      logger.debug({ reason, priority }, "Pre-key upload in progress")
-      if (priority === "critical") {
-        preKeyCheckQueue.push({ reason, priority, timestamp: now })
-        logger.info("Critical pre-key check queued")
-      }
-      return
-    }
-    lastPreKeyCheck = now
-    try {
-      logger.debug({ reason, priority }, "Checking pre-key status")
-      const preKeyCount = await getAvailablePreKeysOnServer()
-      logger.info({ preKeyCount, reason, priority }, "Pre-key check result")
-      let shouldUpload = false
-      let uploadCount = 0
-      if (preKeyCount <= CONSTANTS.PREKEY_CRITICAL) {
-        logger.warn({ preKeyCount }, "🚨 CRITICAL: Very low pre-keys!")
-        shouldUpload = true
-        uploadCount = INITIAL_PREKEY_COUNT
-        priority = "critical"
-      } else if (preKeyCount < MIN_PREKEY_COUNT) {
-        logger.info({ preKeyCount }, "⚠️  Low pre-keys detected")
-        shouldUpload = true
-        uploadCount = Math.max(20, MIN_PREKEY_COUNT - preKeyCount + 5)
-      } else if (priority === "critical") {
-        logger.info({ preKeyCount }, "Uploading pre-keys for critical recovery")
-        shouldUpload = true
-        uploadCount = 20
-      } else {
-        logger.debug({ preKeyCount }, "✅ Pre-key count healthy")
-      }
-      if (shouldUpload) {
-        isUploadingPreKeys = true
-        await uploadPreKeys(uploadCount)
-        // Process queued checks
-        if (preKeyCheckQueue.length > 0) {
-          logger.info(`Processing ${preKeyCheckQueue.length} queued checks`)
-          preKeyCheckQueue = []
-        }
-      }
-    } catch (error) {
-      logger.error({ error, reason, priority }, "Pre-key check failed")
-      // Retry critical checks
-      if (priority === "critical") {
-        setTimeout(() => {
-          smartPreKeyMonitor(reason, "critical").catch(err =>
-            logger.error({ err }, "Critical pre-key retry failed")
-          )
-        }, 10000)
-      }
-    } finally {
-      isUploadingPreKeys = false
-    }
-  }
-  const triggerPreKeyCheck = (event, priority = "normal") => {
-    const effectivePriority = PRIORITY_MAP[event] || priority
-    logger.debug({ event, priority: effectivePriority }, "Pre-key check triggered")
-    smartPreKeyMonitor(event, effectivePriority).catch(err =>
-      logger.error({ err, event }, "Triggered pre-key check failed")
-    )
-  }
-  const startPreKeyBackgroundMonitor = () => {
-    if (preKeyMonitorInterval) clearInterval(preKeyMonitorInterval)
-    preKeyMonitorInterval = setInterval(() => {
-      triggerPreKeyCheck("scheduled", "low")
-    }, CONSTANTS.PREKEY_CHECK_INTERVAL)
-    logger.info(
-      { intervalMinutes: CONSTANTS.PREKEY_CHECK_INTERVAL / 60000 },
-      "Pre-key background monitor started"
-    )
-  }
-  const stopPreKeyBackgroundMonitor = () => {
-    if (preKeyMonitorInterval) {
-      clearInterval(preKeyMonitorInterval)
-      preKeyMonitorInterval = null
-      logger.debug("Pre-key background monitor stopped")
-    }
-  }
-  const uploadPreKeysToServerIfRequired = async () => {
-    try {
-      const preKeyCount = await getAvailablePreKeysOnServer()
-      const currentPreKeyId = creds.nextPreKeyId - 1
-      logger.info(
-        `Server: ${preKeyCount} pre-keys, Current ID: ${currentPreKeyId}`
-      )
-      // Only regenerate if server is low
-      if (preKeyCount < MIN_PREKEY_COUNT) {
-        const uploadCount = INITIAL_PREKEY_COUNT - preKeyCount
-        logger.info(
-          `Server pre-key count low (${preKeyCount}), uploading ${uploadCount} to reach ${INITIAL_PREKEY_COUNT}`
-        )
-        await uploadPreKeys(uploadCount)
-      } else {
-        logger.info(
-          `✅ PreKey validation passed - Server: ${preKeyCount} pre-keys`
-        )
-      }
-    } catch (error) {
-      logger.error({ error }, "Failed to check/upload pre-keys during init")
-    }
-  }
-  // ==================== SESSION CLEANUP ====================
-  const cleanupSessionFiles = async () => {
-    try {
-      logger.info("Starting session cleanup...")
-      const batchData = await keys.get("session", ["_index"])
-      const sessionBatch = batchData?.['_index'] || {}
-      const batchSize = Object.keys(sessionBatch).length
-      if (batchSize > CONSTANTS.SESSION_MAX_SIZE) {
-        logger.info(
-          `Session batch size is ${batchSize}, trimming to ${CONSTANTS.SESSION_MAX_SIZE} most recent`
-        )
-        const sessionKeys = Object.keys(sessionBatch).sort()
-        const recentSessions = sessionKeys.slice(-CONSTANTS.SESSION_MAX_SIZE)
-        const trimmedBatch = {}
-        recentSessions.forEach(key => {
-          trimmedBatch[key] = sessionBatch[key]
-        })
-        await keys.set({ "session": { "_index": trimmedBatch } })
-        const deleted = batchSize - Object.keys(trimmedBatch).length
-        logger.info(
-          `✅ Trimmed session batch: removed ${deleted} old entries (kept ${CONSTANTS.SESSION_MAX_SIZE})`
-        )
-      } else {
-        logger.debug(`Session batch size (${batchSize}) is healthy, no cleanup needed`)
-      }
-      logger.info("Session cleanup complete")
-    } catch (error) {
-      logger.error({ error }, "Session cleanup failed")
-    }
-  }
-  const startSessionCleanup = () => {
-    if (sessionCleanupInterval) clearInterval(sessionCleanupInterval)
-    sessionCleanupInterval = setInterval(() => {
-      cleanupSessionFiles().catch(err =>
-        logger.error({ err }, "Scheduled session cleanup failed")
-      )
-    }, CONSTANTS.SESSION_CLEANUP_INTERVAL)
-    logger.info("Session cleanup started (every 10 minutes)")
-  }
-  const stopSessionCleanup = () => {
-    if (sessionCleanupInterval) {
-      clearInterval(sessionCleanupInterval)
-      sessionCleanupInterval = null
-      logger.debug("Session cleanup stopped")
-    }
-  }
-  // ==================== MESSAGE HANDLING ====================
-  const onMessageReceived = (data) => {
-    noise.decodeFrame(data, (frame) => {
-      lastDateRecv = new Date()
-      lastMessageTime = Date.now()
-      reconnectAttempts = 0
-      let anyTriggered = ws.emit("frame", frame)
-      if (!(frame instanceof Uint8Array)) {
-        const msgId = frame.attrs.id
-        if (logger.level === "trace") {
-          logger.trace({ xml: binaryNodeToString(frame), msg: "recv xml" })
-        }
-        anyTriggered = ws.emit(`${DEF_TAG_PREFIX}${msgId}`, frame) || anyTriggered
-        const l0 = frame.tag
-        const l1 = frame.attrs || {}
-        const l2 = Array.isArray(frame.content) ? frame.content[0]?.tag : ""
-        for (const key of Object.keys(l1)) {
-          anyTriggered = ws.emit(`${DEF_CALLBACK_PREFIX}${l0},${key}:${l1[key]},${l2}`, frame) || anyTriggered
-          anyTriggered = ws.emit(`${DEF_CALLBACK_PREFIX}${l0},${key}:${l1[key]}`, frame) || anyTriggered
-          anyTriggered = ws.emit(`${DEF_CALLBACK_PREFIX}${l0},${key}`, frame) || anyTriggered
-        }
-        anyTriggered = ws.emit(`${DEF_CALLBACK_PREFIX}${l0},,${l2}`, frame) || anyTriggered
-        anyTriggered = ws.emit(`${DEF_CALLBACK_PREFIX}${l0}`, frame) || anyTriggered
-        if (!anyTriggered && logger.level === "debug") {
-          logger.debug({ unhandled: true, msgId, fromMe: false, frame }, "Unhandled communication received")
-        }
-      }
-    })
-  }
-  // ==================== CONNECTION LIFECYCLE ====================
-  const end = (error) => {
-    if (closed) {
-      logger.trace({ trace: error?.stack }, "Connection already closed")
-      return
-    }
-    closed = true
-    const shouldLogError = error && error.message !== "Connection Terminated"
-    if (shouldLogError) {
-      logger.info({ trace: error?.stack }, "Connection errored")
-    } else {
-      logger.debug("Connection closed gracefully")
-    }
-    // Cleanup timers
-    clearInterval(keepAliveReq)
-    clearInterval(sessionHealthCheck)
-    clearTimeout(qrTimer)
-    stopPreKeyBackgroundMonitor()
-    stopSessionCleanup()
-    // Cleanup listeners
-    ws.removeAllListeners("close")
-    ws.removeAllListeners("open")
-    ws.removeAllListeners("message")
-    // Close WebSocket
-    if (!ws.isClosed && !ws.isClosing) {
-      try {
-        ws.close()
-      } catch { }
-    }
-    // Emit connection update
-    if (shouldLogError || (error && error.output?.statusCode !== DisconnectReason.connectionClosed)) {
-      ev.emit("connection.update", {
-        connection: "close",
-        lastDisconnect: { error, date: new Date() }
-      })
-    }
-    ev.removeAllListeners("connection.update")
-  }
-  const attemptReconnection = async (reason = "unknown") => {
-    if (closed) {
-      logger.debug("Cannot reconnect - connection already closed")
-      return
-    }
-    if (reconnectAttempts >= CONSTANTS.MAX_RECONNECT) {
-      logger.error(
-        { attempts: reconnectAttempts, maxAttempts: CONSTANTS.MAX_RECONNECT },
-        "Max reconnection attempts reached"
-      )
-      end(new Boom("Connection Lost", { statusCode: DisconnectReason.connectionLost }))
-      return
-    }
-    reconnectAttempts++
-    // Longer delays for network issues
-    const isNetworkIssue = reason === "websocket-close"
-    const baseDelay = isNetworkIssue ? 2000 : 1000
-    const backoffDelay = Math.min(baseDelay * Math.pow(2, reconnectAttempts - 1), 30000)
-    logger.info({
-      attempt: reconnectAttempts,
-      maxAttempts: CONSTANTS.MAX_RECONNECT,
-      delay: backoffDelay,
-      reason,
-      isNetworkIssue
-    }, "Attempting WebSocket reconnection")
-    try {
-      await new Promise(resolve => setTimeout(resolve, backoffDelay))
-      logger.debug("Restarting WebSocket connection")
-      await ws.restart()
-      logger.info("✅ WebSocket reconnected successfully")
-      reconnectAttempts = 0
-    } catch (err) {
-      logger.error({ err, attempt: reconnectAttempts }, "Reconnection attempt failed")
-      if (reconnectAttempts < CONSTANTS.MAX_RECONNECT) {
-        return attemptReconnection(reason)
-      } else {
-        end(new Boom("Failed to reconnect", { statusCode: DisconnectReason.connectionLost }))
-      }
-    }
-  }
-  // ==================== KEEP-ALIVE & HEALTH ====================
-  const startKeepAliveRequest = () => {
-    keepAliveReq = setInterval(async () => {
-      if (!lastDateRecv) lastDateRecv = new Date()
-      if (ws.isOpen) {
-        try {
-          await query({
-            tag: "iq",
-            attrs: { id: generateMessageTag(), to: S_WHATSAPP_NET, type: "get", xmlns: "w:p" },
-            content: [{ tag: "ping", attrs: {} }]
-          })
-          consecutiveFailedPings = 0
-          logger.trace("Keep-alive ping successful")
-        } catch (err) {
-          consecutiveFailedPings++
-          logger.warn(
-            { consecutiveFailures: consecutiveFailedPings, maxAllowed: CONSTANTS.MAX_FAILED_PINGS },
-            "Keep-alive ping failed"
-          )
-          if (consecutiveFailedPings >= CONSTANTS.MAX_FAILED_PINGS) {
-            logger.error("Multiple consecutive ping failures - connection lost")
-            end(new Boom("Connection was lost", { statusCode: DisconnectReason.connectionLost }))
-          }
-        }
-      } else {
-        logger.warn("Keep-alive called when WebSocket not open - triggering reconnection")
-        if (!closed && ws.isClosed) {
-          ws.restart().catch(err => {
-            logger.error({ err }, "Failed to restart WebSocket from keep-alive")
-            end(new Boom("Connection Lost", { statusCode: DisconnectReason.connectionLost }))
-          })
-        }
-      }
-    }, keepAliveIntervalMs)
-  }
-  const startSessionHealthMonitor = () => {
-    sessionHealthCheck = setInterval(() => {
-      const timeSinceLastMsg = Date.now() - lastMessageTime
-      const healthCheckIntervalMs = keepAliveIntervalMs * CONSTANTS.HEALTH_CHECK_MULTIPLIER
-      if (timeSinceLastMsg > healthCheckIntervalMs) {
-        if (ws.isOpen) {
-          logger.warn(
-            { timeSinceLastMsg, threshold: healthCheckIntervalMs },
-            "Extended inactivity detected"
-          )
-        } else {
-          logger.error(
-            { timeSinceLastMsg },
-            "WebSocket closed during extended inactivity - reconnecting"
-          )
-          attemptReconnection("health-check-failed").catch(err =>
-            logger.error({ err }, "Health check reconnection failed")
-          )
-        }
-      }
-    }, keepAliveIntervalMs * CONSTANTS.HEALTH_CHECK_MULTIPLIER)
-  }
-  // ==================== UTILITY FUNCTIONS ====================
-  const sendPassiveIq = (tag) => query({
-    tag: "iq",
-    attrs: { to: S_WHATSAPP_NET, xmlns: "passive", type: "set" },
-    content: [{ tag, attrs: {} }]
-  })
-  const logout = async (msg) => {
-    const jid = authState.creds.me?.id
-    if (jid) {
-      await sendNode({
-        tag: "iq",
-        attrs: { to: S_WHATSAPP_NET, type: "set", id: generateMessageTag(), xmlns: "md" },
-        content: [{ tag: "remove-companion-device", attrs: { jid, reason: "user_initiated" } }]
-      })
-    }
-    end(new Boom(msg || "Intentional Logout", { statusCode: DisconnectReason.loggedOut }))
-  }
-  const requestPairingCode = async (phoneNumber, customPairingCode) => {
-    const pairingCode = customPairingCode ?? bytesToCrockford(randomBytes(5))
-    if (customPairingCode && customPairingCode?.length !== 8) {
-      throw new Error("Custom pairing code must be exactly 8 chars")
-    }
-    authState.creds.pairingCode = pairingCode
-    authState.creds.me = { id: jidEncode(phoneNumber, "s.whatsapp.net"), name: "~" }
-    ev.emit("creds.update", authState.creds)
-    await sendNode({
-      tag: "iq",
-      attrs: { to: S_WHATSAPP_NET, type: "set", id: generateMessageTag(), xmlns: "md" },
-      content: [{
-        tag: "link_code_companion_reg",
-        attrs: {
-          jid: authState.creds.me.id,
-          stage: "companion_hello",
-          should_show_push_notification: "true"
-        },
-        content: [
-          { tag: "link_code_pairing_wrapped_companion_ephemeral_pub", attrs: {}, content: await generatePairingKey() },
-          { tag: "companion_server_auth_key_pub", attrs: {}, content: authState.creds.noiseKey.public },
-          { tag: "companion_platform_id", attrs: {}, content: getPlatformId(browser[1]) },
-          { tag: "companion_platform_display", attrs: {}, content: `${browser[1]} (${browser[0]})` },
-          { tag: "link_code_pairing_nonce", attrs: {}, content: "0" }
-        ]
-      }]
-    })
-    return authState.creds.pairingCode
-  }
-  async function generatePairingKey() {
-    const salt = randomBytes(32)
-    const randomIv = randomBytes(16)
-    const key = await derivePairingCodeKey(authState.creds.pairingCode, salt)
-    const ciphered = aesEncryptCTR(authState.creds.pairingEphemeralKeyPair.public, key, randomIv)
-    return Buffer.concat([salt, randomIv, ciphered])
-  }
-  const sendWAMBuffer = (wamBuffer) => query({
-    tag: "iq",
-    attrs: { to: S_WHATSAPP_NET, id: generateMessageTag(), xmlns: "w:stats" },
-    content: [{ tag: "add", attrs: { t: Math.round(Date.now() / 1000) + "" }, content: wamBuffer }]
-  })
-  // ==================== WEBSOCKET EVENT HANDLERS ====================
-  ws.on("message", onMessageReceived)
-  ws.on("open", async () => {
-    try {
-      await validateConnection()
-    } catch (err) {
-      logger.error({ err }, "Error in validating connection")
-      end(err)
-    }
-  })
-  ws.on("error", (err) => {
-    const isNetworkTimeout = err?.code === "ETIMEDOUT" || err?.code === "ECONNREFUSED"
-    const isNetworkError = err?.code === "ENOTFOUND" || err?.code === "ECONNRESET" || isNetworkTimeout
-    const errorDetails = {
-      message: err?.message || "Unknown error",
-      code: err?.code,
-      isNetworkError,
-      stack: err?.stack
-    }
-    if (isNetworkTimeout) {
-      logger.warn(errorDetails, "WebSocket connection timeout - network may be unreachable")
-    } else if (isNetworkError) {
-      logger.warn(errorDetails, "WebSocket network error - will attempt reconnection")
-    } else {
-      logger.warn(errorDetails, "WebSocket error occurred")
-    }
-    // Trigger reconnection on critical errors
-    if (isNetworkError && !closed) {
-      attemptReconnection("websocket-error").catch(err => {
-        logger.error({ err }, "Reconnection attempt failed after WebSocket error")
-      })
-    }
-  })
-  ws.on("close", (code, reason) => {
-    const closeReason = reason?.toString() || "Unknown"
-    logger.debug({ code, reason: closeReason }, "WebSocket closed")
-    if (!closed) {
-      const delayMs = code === 1000 ? 1000 : 2000
-      setTimeout(() => {
-        attemptReconnection("websocket-close").catch(err => {
-          logger.error({ err, code, reason: closeReason }, "Reconnection failed")
-          end(new Boom("Connection Terminated", { statusCode: DisconnectReason.connectionClosed }))
-        })
-      }, delayMs)
-    }
-  })
-  ws.on("CB:xmlstreamend", () => {
-    logger.info("Stream ended by server")
-    if (!closed) {
-      end(new Boom("Connection Terminated by Server", { statusCode: DisconnectReason.connectionClosed }))
-    }
-  })
-  // ==================== PAIRING HANDLERS ====================
-  ws.on("CB:iq,type:set,pair-device", async (stanza) => {
-    await sendNode({
-      tag: "iq",
-      attrs: { to: S_WHATSAPP_NET, type: "result", id: stanza.attrs.id }
-    })
-    const pairDeviceNode = getBinaryNodeChild(stanza, "pair-device")
-    const refNodes = getBinaryNodeChildren(pairDeviceNode, "ref")
-    const noiseKeyB64 = Buffer.from(creds.noiseKey.public).toString("base64")
-    const identityKeyB64 = Buffer.from(creds.signedIdentityKey.public).toString("base64")
-    const advB64 = creds.advSecretKey
-    let qrMs = qrTimeout || 60000
-    const genPairQR = () => {
-      if (!ws.isOpen) return
-      const refNode = refNodes.shift()
-      if (!refNode) {
-        end(new Boom("QR refs attempts ended", { statusCode: DisconnectReason.timedOut }))
-        return
-      }
-      const ref = refNode.content.toString("utf-8")
-      const qr = [ref, noiseKeyB64, identityKeyB64, advB64].join(",")
-      ev.emit("connection.update", { qr })
-      qrTimer = setTimeout(genPairQR, qrMs)
-      qrMs = qrTimeout || 20000
-    }
-    genPairQR()
-  })
-  ws.on("CB:iq,,pair-success", async (stanza) => {
-    logger.debug("Pair success received")
-    try {
-      const { reply, creds: updatedCreds } = configureSuccessfulPairing(stanza, creds)
-      logger.info(
-        { me: updatedCreds.me, platform: updatedCreds.platform },
-        "Pairing configured successfully"
-      )
-      ev.emit("creds.update", updatedCreds)
-      ev.emit("connection.update", { isNewLogin: true, qr: undefined })
-      triggerPreKeyCheck("device-paired", "high")
-      await sendNode(reply)
-    } catch (error) {
-      logger.info({ trace: error.stack }, "Error in pairing")
-      end(error)
-    }
-  })
-  // ==================== CONNECTION SUCCESS ====================
-  ws.on("CB:success", async (node) => {
-    try {
-      await uploadPreKeysToServerIfRequired()
-      await sendPassiveIq("active")
-    } catch (err) {
-      logger.warn({ err }, "Failed to send initial passive IQ")
-    }
-    logger.info("✅ Opened connection to WhatsApp")
-    clearTimeout(qrTimer)
-    triggerPreKeyCheck("connection-established", "high")
-    startPreKeyBackgroundMonitor()
-    startSessionCleanup()
-    ev.emit("creds.update", { me: { ...authState.creds.me, lid: node.attrs.lid } })
-    ev.emit("connection.update", { connection: "open" })
-    startSessionHealthMonitor()
-    reconnectAttempts = 0
-    // Handle LID session creation
-    if (node.attrs.lid && authState.creds.me?.id) {
-      const myLID = node.attrs.lid
-      process.nextTick(async () => {
-        try {
-          const myPN = authState.creds.me.id
-          await signalRepository.lidMapping.storeLIDPNMappings([{ lid: myLID, pn: myPN }])
-          const { user, device } = jidDecode(myPN)
-          const existingData = await authState.keys.get("device-list", ["_index"])
-          const currentBatch = existingData?.['_index'] || {}
-          currentBatch[user] = [device?.toString() || "0"]
-          // Enforce batch size limit
-          const deviceKeys = Object.keys(currentBatch).filter(k => k !== '_index')
-          if (deviceKeys.length > BATCH_SIZE) {
-            deviceKeys.sort()
-            const toRemove = deviceKeys.slice(0, deviceKeys.length - BATCH_SIZE)
-            toRemove.forEach(k => delete currentBatch[k])
-            logger.debug(`Cleaned up ${toRemove.length} old device-list entries (kept ${BATCH_SIZE})`)
-          }
-          await authState.keys.set({ "device-list": { "_index": currentBatch } })
-          await signalRepository.migrateSession(myPN, myLID)
-          logger.info({ myPN, myLID }, "Own LID session created successfully")
-        } catch (error) {
-          logger.error({ error, lid: myLID }, "Failed to create own LID session")
-        }
-      })
-    }
-  })
-  // ==================== ERROR HANDLERS ====================
-  ws.on('CB:stream:error', (node) => {
-    logger.error({ node }, 'Stream errored out')
-    const { reason, statusCode } = getErrorCodeFromStreamError(node)
-    end(new Boom(`Stream Errored (${reason})`, { statusCode, data: node }))
-    if (statusCode === 500 || statusCode === 440) {
-      logger.debug("Triggering background pre-key check after stream error")
-      triggerPreKeyCheck("stream-error-recovery", "normal")
-    }
-  })
-  ws.on("CB:failure", (node) => {
-    const reason = +(node.attrs.reason || 500)
-    end(new Boom("Connection Failure", { statusCode: reason, data: node.attrs }))
-  })
-  ws.on("CB:ib,,downgrade_webclient", () => {
-    end(new Boom("Multi-device beta not joined", { statusCode: DisconnectReason.multideviceMismatch }))
-  })
-  ws.on("CB:ib,,offline_preview", (node) => {
-    logger.info("Offline preview received", JSON.stringify(node))
-    sendNode({
-      tag: "ib",
-      attrs: {},
-      content: [{ tag: "offline_batch", attrs: { count: "100" } }]
-    })
-  })
-  ws.on("CB:ib,,edge_routing", (node) => {
-    const edgeRoutingNode = getBinaryNodeChild(node, "edge_routing")
-    const routingInfo = getBinaryNodeChild(edgeRoutingNode, "routing_info")
-    if (routingInfo?.content) {
-      authState.creds.routingInfo = Buffer.from(routingInfo?.content)
-      ev.emit("creds.update", authState.creds)
-    }
-  })
-  // ==================== OFFLINE NOTIFICATIONS ====================
-  let didStartBuffer = false
-  process.nextTick(() => {
-    if (creds.me?.id) {
-      ev.buffer()
-      didStartBuffer = true
-    }
-    ev.emit("connection.update", {
-      connection: "connecting",
-      receivedPendingNotifications: false,
-      qr: undefined
-    })
-  })
-  ws.on("CB:ib,,offline", (node) => {
-    const child = getBinaryNodeChild(node, "offline")
-    const offlineNotifs = +(child?.attrs.count || 0)
-    logger.info(`Handled ${offlineNotifs} offline messages/notifications`)
-    if (didStartBuffer) {
-      ev.flush()
-      logger.trace("Flushed events for initial buffer")
-    }
-    ev.emit("connection.update", { receivedPendingNotifications: true })
-  })
-  // ==================== CREDENTIALS UPDATE ====================
-  ev.on("creds.update", (update) => {
-    const name = update.me?.name
-    if (creds.me?.name !== name) {
-      logger.debug({ name }, "Updated pushName")
-      sendNode({ tag: "presence", attrs: { name } }).catch((err) =>
-        logger.warn({ trace: err.stack }, "Error in sending presence update on name change")
-      )
-    }
-    Object.assign(creds, update)
-  })
-// ==================== RETURN SOCKET API ====================
-  return {
-    type: "md",
-    ws,
-    ev,
-    authState: { creds, keys },
-    signalRepository,
-    get user() {
-      return authState.creds.me
-    },
-    generateMessageTag,
-    query,
-    waitForMessage,
-    waitForSocketOpen,
-    sendRawMessage,
-    sendNode,
-    logout,
-    end,
-    onUnexpectedError,
-    uploadPreKeys,
-    uploadPreKeysToServerIfRequired,
-    requestPairingCode,
-    wamBuffer: publicWAMBuffer,
-    waitForConnectionUpdate: bindWaitForConnectionUpdate(ev),
-    sendWAMBuffer,
-    executeUSyncQuery,
-    onWhatsApp,
-    listener: (eventName) => {
-      if (typeof ev.listenerCount === "function") return ev.listenerCount(eventName)
-      if (typeof ev.listener === "function") return ev.listener(eventName)?.length || 0
-      return 0
-    }
-  }
+import { Boom } from "@hapi/boom"
+import { randomBytes } from "crypto"
+import { URL } from "url"
+import { promisify } from "util"
+import { proto } from "../../WAProto/index.js"
+import { DEF_CALLBACK_PREFIX, DEF_TAG_PREFIX, INITIAL_PREKEY_COUNT, MIN_PREKEY_COUNT, MIN_UPLOAD_INTERVAL, NOISE_WA_HEADER, UPLOAD_TIMEOUT, BATCH_SIZE, TimeMs } from "../Defaults/index.js"
+import { DisconnectReason } from "../Types/index.js"
+import { addTransactionCapability, aesEncryptCTR, bindWaitForConnectionUpdate, bytesToCrockford, configureSuccessfulPairing, Curve, derivePairingCodeKey, generateLoginNode, generateMdTagPrefix, generateRegistrationNode, getCodeFromWSError, getErrorCodeFromStreamError, getNextPreKeysNode, makeEventBuffer, makeNoiseHandler, promiseTimeout, signedKeyPair, xmppSignedPreKey } from "../Utils/index.js"
+import { getPlatformId, migrateIndexKey } from "../Utils/index.js"
+import { assertNodeErrorFree, binaryNodeToString, encodeBinaryNode, getBinaryNodeChild, getBinaryNodeChildren, isLidUser, jidDecode, jidEncode, S_WHATSAPP_NET } from "../WABinary/index.js"
+import { BinaryInfo } from "../WAM/BinaryInfo.js"
+import { USyncQuery, USyncUser } from "../WAUSync/index.js"
+import { WebSocketClient } from "./Client/index.js"
+// ─── Module-scope helpers ──────────────────────────────────────────────────────
+/**
+ * Map a raw WebSocket error into a Boom so callers
+ * can inspect the statusCode / DisconnectReason.
+ */
+const mapWebSocketError = (handler) => (error) =>
+  handler(
+    new Boom(`WebSocket Error (${error?.message})`, {
+      statusCode: getCodeFromWSError(error),
+      data: error
+    })
+  )
+// ─── Factory ──────────────────────────────────────────────────────────────────
+export const makeSocket = (config) => {
+  const {
+    waWebSocketUrl,
+    connectTimeoutMs,
+    logger,
+    keepAliveIntervalMs,
+    browser,
+    auth: authState,
+    printQRInTerminal,
+    defaultQueryTimeoutMs,
+    transactionOpts,
+    qrTimeout,
+    makeSignalRepository
+  } = config
+  if (printQRInTerminal) logger?.warn("printQRInTerminal deprecated")
+  const url = typeof waWebSocketUrl === 'string' ? new URL(waWebSocketUrl) : waWebSocketUrl
+  if (config.mobile || url.protocol === 'tcp:')
+    throw new Boom('Mobile API not supported', { statusCode: DisconnectReason.loggedOut })
+  if (url.protocol === 'wss:' && authState?.creds?.routingInfo)
+    url.searchParams.append('ED', authState.creds.routingInfo.toString('base64url'))
+  const ephemeralKeyPair = Curve.generateKeyPair()
+  const noise = makeNoiseHandler({
+    keyPair: ephemeralKeyPair,
+    NOISE_HEADER: NOISE_WA_HEADER,
+    logger,
+    routingInfo: authState?.creds?.routingInfo
+  })
+  const ws = new WebSocketClient(url, config)
+  logger.info({ url: url.toString() }, 'Initiating WebSocket connection')
+  ws.connect()
+  const ev = makeEventBuffer(logger)
+  const { creds } = authState
+  const keys = addTransactionCapability(authState.keys, logger, transactionOpts)
+  const signalRepository = makeSignalRepository({ creds, keys }, logger, pnFromLIDUSync)
+  const publicWAMBuffer = new BinaryInfo()
+  const uqTagId = generateMdTagPrefix()
+  const sendPromise = promisify(ws.send)
+  let epoch = 1
+  let lastDateRecv
+  let lastUploadTime = 0
+  let uploadPreKeysPromise = null
+  let closed = false
+  let keepAliveReq
+  let qrTimer
+  let serverTimeOffsetMs = 0
+  const generateMessageTag = () => `${uqTagId}${epoch++}`
+  // ─── Transport ──────────────────────────────────────────────────────────────
+  const sendRawMessage = async (data) => {
+    if (!ws.isOpen)
+      throw new Boom('Connection Closed', { statusCode: DisconnectReason.connectionClosed })
+    const bytes = noise.encodeFrame(data)
+    await promiseTimeout(connectTimeoutMs, async (resolve, reject) => {
+      try { await sendPromise.call(ws, bytes); resolve() }
+      catch (error) { reject(error) }
+    })
+  }
+  const sendNode = (frame) => {
+    if (logger.level === 'trace') logger.trace({ xml: binaryNodeToString(frame), msg: 'xml send' })
+    return sendRawMessage(encodeBinaryNode(frame))
+  }
+  // ─── Query / messaging ──────────────────────────────────────────────────────
+  const waitForMessage = async (msgId, timeoutMs = defaultQueryTimeoutMs) => {
+    let onRecv, onErr
+    try {
+      return await promiseTimeout(timeoutMs, (resolve, reject) => {
+        onRecv = (data) => resolve(data)
+        onErr = (err) =>
+          reject(err || new Boom('Connection Closed', { statusCode: DisconnectReason.connectionClosed }))
+        ws.on(`TAG:${msgId}`, onRecv)
+        ws.on('close', onErr)
+        ws.on('error', onErr)
+        return () => reject(new Boom('Query Cancelled'))
+      })
+    } catch (error) {
+      if (error instanceof Boom && error.output?.statusCode === DisconnectReason.timedOut) {
+        logger?.warn?.({ msgId }, 'timed out waiting for message')
+        return undefined
+      }
+      throw error
+    } finally {
+      if (onRecv) ws.off(`TAG:${msgId}`, onRecv)
+      if (onErr) { ws.off('close', onErr); ws.off('error', onErr) }
+    }
+  }
+  const query = async (node, timeoutMs) => {
+    if (!node.attrs.id) node.attrs.id = generateMessageTag()
+    const msgId = node.attrs.id
+    const result = await promiseTimeout(timeoutMs, async (resolve, reject) => {
+      const result = waitForMessage(msgId, timeoutMs).catch(reject)
+      sendNode(node).then(async () => resolve(await result)).catch(reject)
+    })
+    if (result && 'tag' in result) assertNodeErrorFree(result)
+    return result
+  }
+  // ─── USync ──────────────────────────────────────────────────────────────────
+  const executeUSyncQuery = async (usyncQuery) => {
+    if (usyncQuery.protocols.length === 0)
+      throw new Boom('USyncQuery must have at least one protocol')
+    const userNodes = usyncQuery.users.map((user) => ({
+      tag: 'user',
+      attrs: { jid: !user.phone ? user.id : undefined },
+      content: usyncQuery.protocols.map((a) => a.getUserElement(user)).filter((a) => a !== null)
+    }))
+    const iq = {
+      tag: 'iq',
+      attrs: { to: S_WHATSAPP_NET, type: 'get', xmlns: 'usync' },
+      content: [{
+        tag: 'usync',
+        attrs: { context: usyncQuery.context, mode: usyncQuery.mode, sid: generateMessageTag(), last: 'true', index: '0' },
+        content: [
+          { tag: 'query', attrs: {}, content: usyncQuery.protocols.map((a) => a.getQueryElement()) },
+          { tag: 'list', attrs: {}, content: userNodes }
+        ]
+      }]
+    }
+    return usyncQuery.parseUSyncQueryResult(await query(iq))
+  }
+  async function pnFromLIDUSync(jids) {
+    const usyncQuery = new USyncQuery().withLIDProtocol().withContext('background')
+    for (const jid of jids) {
+      if (!isLidUser(jid)) usyncQuery.withUser(new USyncUser().withId(jid))
+      else logger?.warn('LID user found in LID fetch call')
+    }
+    if (usyncQuery.users.length === 0) return []
+    const results = await executeUSyncQuery(usyncQuery)
+    return results ? results.list.filter((a) => !!a.lid).map(({ lid, id }) => ({ pn: id, lid })) : []
+  }
+  // ─── Pre-keys ───────────────────────────────────────────────────────────────
+  const getAvailablePreKeysOnServer = async () => {
+    const result = await query({
+      tag: 'iq',
+      attrs: { id: generateMessageTag(), xmlns: 'encrypt', type: 'get', to: S_WHATSAPP_NET },
+      content: [{ tag: 'count', attrs: {} }]
+    })
+    return +getBinaryNodeChild(result, 'count').attrs.value
+  }
+  const uploadPreKeys = async (count = MIN_PREKEY_COUNT, retryCount = 0) => {
+    if (retryCount === 0 && Date.now() - lastUploadTime < MIN_UPLOAD_INTERVAL) {
+      logger.debug(`Skipping upload, only ${Date.now() - lastUploadTime}ms since last`)
+      return
+    }
+    if (uploadPreKeysPromise) {
+      logger.debug('Pre-key upload in progress, waiting...')
+      await uploadPreKeysPromise
+      return
+    }
+    const uploadLogic = async () => {
+      logger.info({ count, retryCount }, 'Uploading pre-keys')
+      const node = await keys.transaction(async () => {
+        const { update, node } = await getNextPreKeysNode({ creds, keys }, count)
+        ev.emit('creds.update', update)
+        return node
+      }, creds?.me?.id || 'upload-pre-keys')
+      try {
+        await query(node)
+        logger.info({ count }, '✅ Pre-keys uploaded successfully')
+        lastUploadTime = Date.now()
+      } catch (uploadError) {
+        logger.error({ uploadError: uploadError.toString(), count }, 'Failed to upload pre-keys')
+        if (retryCount < 3) {
+          const backoffDelay = Math.min(1000 * Math.pow(2, retryCount), 10000)
+          logger.info(`Retrying pre-key upload in ${backoffDelay}ms`)
+          await new Promise((resolve) => setTimeout(resolve, backoffDelay))
+          return uploadPreKeys(count, retryCount + 1)
+        }
+        throw uploadError
+      }
+    }
+    uploadPreKeysPromise = Promise.race([
+      uploadLogic(),
+      new Promise((_, reject) =>
+        setTimeout(() => reject(new Boom('Pre-key upload timeout', { statusCode: 408 })), UPLOAD_TIMEOUT)
+      )
+    ])
+    try { await uploadPreKeysPromise } finally { uploadPreKeysPromise = null }
+  }
+  const uploadPreKeysToServerIfRequired = async () => {
+    try {
+      const preKeyCount = await getAvailablePreKeysOnServer()
+      logger.info(`${preKeyCount} pre-keys found on server`)
+      if (preKeyCount < MIN_PREKEY_COUNT) {
+        const uploadCount = INITIAL_PREKEY_COUNT - preKeyCount
+        logger.info(`Server pre-key count low (${preKeyCount}), uploading ${uploadCount}`)
+        await uploadPreKeys(uploadCount)
+      } else {
+        logger.info(`✅ PreKey validation passed - Server: ${preKeyCount} pre-keys`)
+      }
+    } catch (error) {
+      logger.error({ error }, 'Failed to check/upload pre-keys during init')
+    }
+  }
+  // ─── Key-bundle digest & signed pre-key rotation ────────────────────────────
+  /**
+   * Validate our current key-bundle against the server.
+   * If the server returns no digest node our keys are out of sync —
+   * force a pre-key upload and surface the error so the caller can decide.
+   */
+  const digestKeyBundle = async () => {
+    const res = await query({
+      tag: 'iq',
+      attrs: { to: S_WHATSAPP_NET, type: 'get', xmlns: 'encrypt' },
+      content: [{ tag: 'digest', attrs: {} }]
+    })
+    const digestNode = getBinaryNodeChild(res, 'digest')
+    if (!digestNode) {
+      await uploadPreKeys()
+      throw new Error('encrypt/get digest returned no digest node')
+    }
+  }
+  /**
+   * Rotate our signed pre-key on the server.
+   * Should be called periodically (e.g. every 7 days) to keep sessions healthy.
+   */
+  const rotateSignedPreKey = async () => {
+    const newId = (creds.signedPreKey.keyId || 0) + 1
+    const skey = await signedKeyPair(creds.signedIdentityKey, newId)
+    await query({
+      tag: 'iq',
+      attrs: { to: S_WHATSAPP_NET, type: 'set', xmlns: 'encrypt' },
+      content: [{ tag: 'rotate', attrs: {}, content: [xmppSignedPreKey(skey)] }]
+    })
+    ev.emit('creds.update', { signedPreKey: skey })
+  }
+  // ─── Server time offset ─────────────────────────────────────────────────────
+  const updateServerTimeOffset = ({ attrs }) => {
+    const tValue = attrs?.t
+    if (!tValue) return
+    const parsed = Number(tValue)
+    if (Number.isNaN(parsed) || parsed <= 0) return
+    serverTimeOffsetMs = parsed * 1000 - Date.now()
+    logger.debug({ offset: serverTimeOffsetMs }, 'calculated server time offset')
+  }
+  // ─── Unified session telemetry ───────────────────────────────────────────────
+  const getUnifiedSessionId = () => {
+    const offsetMs = 3 * TimeMs.Day
+    const now = Date.now() + serverTimeOffsetMs
+    return ((now + offsetMs) % TimeMs.Week).toString()
+  }
+  const sendUnifiedSession = async () => {
+    if (!ws.isOpen) return
+    try {
+      await sendNode({
+        tag: 'ib',
+        attrs: {},
+        content: [{ tag: 'unified_session', attrs: { id: getUnifiedSessionId() } }]
+      })
+    } catch (error) {
+      logger.debug({ error }, 'failed to send unified_session telemetry')
+    }
+  }
+  // ─── Connection lifecycle ────────────────────────────────────────────────────
+  const onUnexpectedError = (err, msg) => {
+    logger.error({ err }, `unexpected error in '${msg}'`)
+  }
+  const awaitNextMessage = async (sendMsg) => {
+    if (!ws.isOpen)
+      throw new Boom('Connection Closed', { statusCode: DisconnectReason.connectionClosed })
+    let onOpen, onClose
+    const result = promiseTimeout(connectTimeoutMs, (resolve, reject) => {
+      onOpen = resolve
+      onClose = mapWebSocketError(reject)
+      ws.on('frame', onOpen)
+      ws.on('close', onClose)
+      ws.on('error', onClose)
+    }).finally(() => {
+      ws.off('frame', onOpen)
+      ws.off('close', onClose)
+      ws.off('error', onClose)
+    })
+    if (sendMsg) sendRawMessage(sendMsg).catch(onClose)
+    return result
+  }
+  const validateConnection = async () => {
+    let helloMsg = proto.HandshakeMessage.fromObject({ clientHello: { ephemeral: ephemeralKeyPair.public } })
+    logger.info({ browser, helloMsg }, 'Connected to WhatsApp')
+    const init = proto.HandshakeMessage.encode(helloMsg).finish()
+    const result = await awaitNextMessage(init)
+    const handshake = proto.HandshakeMessage.decode(result)
+    logger.trace({ handshake }, 'Handshake received from WhatsApp')
+    const keyEnc = await noise.processHandshake(handshake, creds.noiseKey)
+    const node = !creds.me ? generateRegistrationNode(creds, config) : generateLoginNode(creds.me.id, config)
+    logger.info({ node }, !creds.me ? 'Attempting registration...' : 'Logging in...')
+    const payloadEnc = noise.encrypt(proto.ClientPayload.encode(node).finish())
+    await sendRawMessage(
+      proto.HandshakeMessage.encode({
+        clientFinish: { static: keyEnc, payload: payloadEnc }
+      }).finish()
+    )
+    await noise.finishInit()
+    startKeepAliveRequest()
+  }
+  const waitForSocketOpen = async () => {
+    if (ws.isOpen) return
+    if (ws.isClosed || ws.isClosing)
+      throw new Boom('Connection Closed', { statusCode: DisconnectReason.connectionClosed })
+    let onOpen, onClose
+    await new Promise((resolve, reject) => {
+      onOpen = () => resolve(undefined)
+      onClose = mapWebSocketError(reject)
+      ws.on('open', onOpen)
+      ws.on('close', onClose)
+      ws.on('error', onClose)
+    }).finally(() => {
+      ws.off('open', onOpen)
+      ws.off('close', onClose)
+      ws.off('error', onClose)
+    })
+  }
+  /**
+   * Keep-alive: ping WA every keepAliveIntervalMs.
+   * If the server stops responding (diff > interval + 5s) the connection
+   * is considered lost and we call end() — the consumer handles reconnection.
+   * No internal reconnect loop — clean separation of concerns.
+   */
+  const startKeepAliveRequest = () => {
+    keepAliveReq = setInterval(() => {
+      if (!lastDateRecv) lastDateRecv = new Date()
+      const diff = Date.now() - lastDateRecv.getTime()
+      if (diff > keepAliveIntervalMs + 5000) {
+        end(new Boom('Connection was lost', { statusCode: DisconnectReason.connectionLost }))
+      } else if (ws.isOpen) {
+        query({
+          tag: 'iq',
+          attrs: { id: generateMessageTag(), to: S_WHATSAPP_NET, type: 'get', xmlns: 'w:p' },
+          content: [{ tag: 'ping', attrs: {} }]
+        }).catch((err) => logger.error({ trace: err.stack }, 'error in sending keep alive'))
+      } else {
+        logger.warn('keep alive called when WS not open')
+      }
+    }, keepAliveIntervalMs)
+  }
+  const end = (error) => {
+    if (closed) { logger.trace({ trace: error?.stack }, 'Connection already closed'); return }
+    closed = true
+    logger.info({ trace: error?.stack }, error ? 'connection errored' : 'connection closed')
+    clearInterval(keepAliveReq)
+    clearTimeout(qrTimer)
+    ws.removeAllListeners('close')
+    ws.removeAllListeners('open')
+    ws.removeAllListeners('message')
+    if (!ws.isClosed && !ws.isClosing) { try { ws.close() } catch { } }
+    ev.emit('connection.update', { connection: 'close', lastDisconnect: { error, date: new Date() } })
+    ev.removeAllListeners('connection.update')
+  }
+  const sendPassiveIq = (tag) =>
+    query({
+      tag: 'iq',
+      attrs: { to: S_WHATSAPP_NET, xmlns: 'passive', type: 'set' },
+      content: [{ tag, attrs: {} }]
+    })
+  const logout = async (msg) => {
+    const jid = authState.creds.me?.id
+    if (jid) {
+      await sendNode({
+        tag: 'iq',
+        attrs: { to: S_WHATSAPP_NET, type: 'set', id: generateMessageTag(), xmlns: 'md' },
+        content: [{ tag: 'remove-companion-device', attrs: { jid, reason: 'user_initiated' } }]
+      })
+    }
+    end(new Boom(msg || 'Intentional Logout', { statusCode: DisconnectReason.loggedOut }))
+  }
+  // ─── Pairing ─────────────────────────────────────────────────────────────────
+  const requestPairingCode = async (phoneNumber, customPairingCode) => {
+    await waitForSocketOpen()
+    await new Promise(resolve => setTimeout(resolve, 500))
+    const pairingCode = customPairingCode ?? bytesToCrockford(randomBytes(5))
+    if (customPairingCode && customPairingCode?.length !== 8)
+      throw new Error('Custom pairing code must be exactly 8 chars')
+    authState.creds.pairingCode = pairingCode
+    authState.creds.me = { id: jidEncode(phoneNumber, 's.whatsapp.net'), name: '~' }
+    ev.emit('creds.update', authState.creds)
+    await sendNode({
+      tag: 'iq',
+      attrs: { to: S_WHATSAPP_NET, type: 'set', id: generateMessageTag(), xmlns: 'md' },
+      content: [{
+        tag: 'link_code_companion_reg',
+        attrs: { jid: authState.creds.me.id, stage: 'companion_hello', should_show_push_notification: 'true' },
+        content: [
+          { tag: 'link_code_pairing_wrapped_companion_ephemeral_pub', attrs: {}, content: await generatePairingKey() },
+          { tag: 'companion_server_auth_key_pub', attrs: {}, content: authState.creds.noiseKey.public },
+          { tag: 'companion_platform_id', attrs: {}, content: getPlatformId(browser[1]) },
+          { tag: 'companion_platform_display', attrs: {}, content: `${browser[1]} (${browser[0]})` },
+          { tag: 'link_code_pairing_nonce', attrs: {}, content: '0' }
+        ]
+      }]
+    })
+    return authState.creds.pairingCode
+  }
+  async function generatePairingKey() {
+    const salt = randomBytes(32)
+    const randomIv = randomBytes(16)
+    const key = await derivePairingCodeKey(authState.creds.pairingCode, salt)
+    const ciphered = aesEncryptCTR(authState.creds.pairingEphemeralKeyPair.public, key, randomIv)
+    return Buffer.concat([salt, randomIv, ciphered])
+  }
+  // ─── Incoming message processing ────────────────────────────────────────────
+  const onMessageReceived = (data) => {
+    noise.decodeFrame(data, (frame) => {
+      lastDateRecv = new Date()
+      let anyTriggered = ws.emit('frame', frame)
+      if (!(frame instanceof Uint8Array)) {
+        const msgId = frame.attrs.id
+        if (logger.level === 'trace') logger.trace({ xml: binaryNodeToString(frame), msg: 'recv xml' })
+        anyTriggered = ws.emit(`${DEF_TAG_PREFIX}${msgId}`, frame) || anyTriggered
+        const l0 = frame.tag
+        const l1 = frame.attrs || {}
+        const l2 = Array.isArray(frame.content) ? frame.content[0]?.tag : ''
+        for (const key of Object.keys(l1)) {
+          anyTriggered = ws.emit(`${DEF_CALLBACK_PREFIX}${l0},${key}:${l1[key]},${l2}`, frame) || anyTriggered
+          anyTriggered = ws.emit(`${DEF_CALLBACK_PREFIX}${l0},${key}:${l1[key]}`, frame) || anyTriggered
+          anyTriggered = ws.emit(`${DEF_CALLBACK_PREFIX}${l0},${key}`, frame) || anyTriggered
+        }
+        anyTriggered = ws.emit(`${DEF_CALLBACK_PREFIX}${l0},,${l2}`, frame) || anyTriggered
+        anyTriggered = ws.emit(`${DEF_CALLBACK_PREFIX}${l0}`, frame) || anyTriggered
+        if (!anyTriggered && logger.level === 'debug')
+          logger.debug({ unhandled: true, msgId, fromMe: false, frame }, 'Unhandled communication received')
+      }
+    })
+  }
+  const sendWAMBuffer = (wamBuffer) =>
+    query({
+      tag: 'iq',
+      attrs: { to: S_WHATSAPP_NET, id: generateMessageTag(), xmlns: 'w:stats' },
+      content: [{ tag: 'add', attrs: { t: Math.round(Date.now() / 1000) + '' }, content: wamBuffer }]
+    })
+  // ─── WebSocket event bindings ────────────────────────────────────────────────
+  ws.on('message', onMessageReceived)
+  ws.on('open', async () => {
+    try { await validateConnection() }
+    catch (err) { logger.error({ err }, 'error in validating connection'); end(err) }
+  })
+  // Let mapWebSocketError convert the raw error then call end()
+  ws.on('error', mapWebSocketError(end))
+  // Any close → end(), consumer decides whether to reconnect
+  ws.on('close', () => end(new Boom('Connection Terminated', { statusCode: DisconnectReason.connectionClosed })))
+  ws.on('CB:xmlstreamend', () => {
+    logger.info('Stream ended by server')
+    if (!closed) end(new Boom('Connection Terminated by Server', { statusCode: DisconnectReason.connectionClosed }))
+  })
+  // ─── QR pairing ─────────────────────────────────────────────────────────────
+  ws.on('CB:iq,type:set,pair-device', async (stanza) => {
+    await sendNode({ tag: 'iq', attrs: { to: S_WHATSAPP_NET, type: 'result', id: stanza.attrs.id } })
+    const pairDeviceNode = getBinaryNodeChild(stanza, 'pair-device')
+    const refNodes = getBinaryNodeChildren(pairDeviceNode, 'ref')
+    const noiseKeyB64 = Buffer.from(creds.noiseKey.public).toString('base64')
+    const identityKeyB64 = Buffer.from(creds.signedIdentityKey.public).toString('base64')
+    const advB64 = creds.advSecretKey
+    let qrMs = qrTimeout || 60000
+    const genPairQR = () => {
+      if (!ws.isOpen) return
+      const refNode = refNodes.shift()
+      if (!refNode) { end(new Boom('QR refs attempts ended', { statusCode: DisconnectReason.timedOut })); return }
+      const ref = refNode.content.toString('utf-8')
+      const qr = [ref, noiseKeyB64, identityKeyB64, advB64].join(',')
+      ev.emit('connection.update', { qr })
+      qrTimer = setTimeout(genPairQR, qrMs)
+      qrMs = qrTimeout || 20000
+    }
+    genPairQR()
+  })
+  ws.on('CB:iq,,pair-success', async (stanza) => {
+    logger.debug('Pair success received')
+    try {
+      updateServerTimeOffset(stanza)
+      const { reply, creds: updatedCreds } = configureSuccessfulPairing(stanza, creds)
+      logger.info({ me: updatedCreds.me, platform: updatedCreds.platform }, 'Pairing configured successfully')
+      ev.emit('creds.update', updatedCreds)
+      ev.emit('connection.update', { isNewLogin: true, qr: undefined })
+      await sendNode(reply)
+      void sendUnifiedSession()
+    } catch (error) {
+      logger.info({ trace: error.stack }, 'Error in pairing')
+      end(error)
+    }
+  })
+  // ─── Login complete ──────────────────────────────────────────────────────────
+  ws.on('CB:success', async (node) => {
+    try {
+      updateServerTimeOffset(node)
+      await uploadPreKeysToServerIfRequired()
+      await sendPassiveIq('active')
+      try {
+        await digestKeyBundle()
+      } catch (e) {
+        logger.warn({ e }, 'failed to run digest after login')
+      }
+    } catch (err) {
+      logger.warn({ err }, 'Failed to send initial passive IQ')
+    }
+    logger.info('✅ Opened connection to WhatsApp')
+    clearTimeout(qrTimer)
+    ev.emit('creds.update', { me: { ...authState.creds.me, lid: node.attrs.lid } })
+    ev.emit('connection.update', { connection: 'open' })
+    void sendUnifiedSession()
+    if (node.attrs.lid && authState.creds.me?.id) {
+      const myLID = node.attrs.lid
+      process.nextTick(async () => {
+        try {
+          const myPN = authState.creds.me.id
+          await signalRepository.lidMapping.storeLIDPNMappings([{ lid: myLID, pn: myPN }])
+          const { user, device } = jidDecode(myPN)
+          const currentBatch = await migrateIndexKey(authState.keys, 'device-list')
+          currentBatch[user] = [device?.toString() || '0']
+          const deviceKeys = Object.keys(currentBatch)
+          if (deviceKeys.length > BATCH_SIZE) {
+            deviceKeys.sort()
+            deviceKeys.slice(0, deviceKeys.length - BATCH_SIZE).forEach(k => delete currentBatch[k])
+          }
+          await authState.keys.set({ 'device-list': { 'index': currentBatch } })
+          await signalRepository.migrateSession(myPN, myLID)
+          logger.info({ myPN, myLID }, 'Own LID session created successfully')
+          if (signalRepository.migrateAllPNSessionsToLID) {
+            try {
+              const migrated = await signalRepository.migrateAllPNSessionsToLID()
+              if (migrated > 0) logger.info({ migrated }, 'Batch-migrated PN sessions to LID on connect')
+            } catch (migErr) {
+              logger.warn({ error: migErr }, 'Failed to batch-migrate PN sessions to LID')
+            }
+          }
+        } catch (error) {
+          logger.error({ error, lid: myLID }, 'Failed to create own LID session')
+        }
+      })
+    }
+  })
+  // ─── Stream / connection error handlers ─────────────────────────────────────
+  ws.on('CB:stream:error', (node) => {
+    logger.error({ node }, 'Stream errored out')
+    const { reason, statusCode } = getErrorCodeFromStreamError(node)
+    end(new Boom(`Stream Errored (${reason})`, { statusCode, data: node }))
+  })
+  ws.on('CB:failure', (node) => {
+    const reason = +(node.attrs.reason || 500)
+    end(new Boom('Connection Failure', { statusCode: reason, data: node.attrs }))
+  })
+  ws.on('CB:ib,,downgrade_webclient', () =>
+    end(new Boom('Multi-device beta not joined', { statusCode: DisconnectReason.multideviceMismatch }))
+  )
+  ws.on('CB:ib,,offline_preview', (node) => {
+    logger.info('Offline preview received', JSON.stringify(node))
+    sendNode({ tag: 'ib', attrs: {}, content: [{ tag: 'offline_batch', attrs: { count: '100' } }] })
+  })
+  ws.on('CB:ib,,edge_routing', (node) => {
+    const edgeRoutingNode = getBinaryNodeChild(node, 'edge_routing')
+    const routingInfo = getBinaryNodeChild(edgeRoutingNode, 'routing_info')
+    if (routingInfo?.content) {
+      authState.creds.routingInfo = Buffer.from(routingInfo?.content)
+      ev.emit('creds.update', authState.creds)
+    }
+  })
+  // ─── Buffering & offline notifications ──────────────────────────────────────
+  let didStartBuffer = false
+  process.nextTick(() => {
+    if (creds.me?.id) { ev.buffer(); didStartBuffer = true }
+    ev.emit('connection.update', { connection: 'connecting', receivedPendingNotifications: false, qr: undefined })
+  })
+  ws.on('CB:ib,,offline', (node) => {
+    const child = getBinaryNodeChild(node, 'offline')
+    const offlineNotifs = +(child?.attrs.count || 0)
+    logger.info(`Handled ${offlineNotifs} offline messages/notifications`)
+    if (didStartBuffer) { ev.flush(); logger.trace('Flushed events for initial buffer') }
+    ev.emit('connection.update', { receivedPendingNotifications: true })
+  })
+  // ─── Creds sync ──────────────────────────────────────────────────────────────
+  ev.on('creds.update', (update) => {
+    const name = update.me?.name
+    if (creds.me?.name !== name) {
+      logger.debug({ name }, 'Updated pushName')
+      sendNode({ tag: 'presence', attrs: { name } }).catch((err) =>
+        logger.warn({ trace: err.stack }, 'Error in sending presence update on name change')
+      )
+    }
+    Object.assign(creds, update)
+  })
+  // ─── Public API ──────────────────────────────────────────────────────────────
+  return {
+    type: 'md',
+    ws,
+    ev,
+    authState: { creds, keys },
+    signalRepository,
+    get user() { return authState.creds.me },
+    generateMessageTag,
+    query,
+    waitForMessage,
+    waitForSocketOpen,
+    sendRawMessage,
+    sendNode,
+    logout,
+    end,
+    onUnexpectedError,
+    uploadPreKeys,
+    uploadPreKeysToServerIfRequired,
+    digestKeyBundle,
+    rotateSignedPreKey,
+    updateServerTimeOffset,
+    sendUnifiedSession,
+    requestPairingCode,
+    wamBuffer: publicWAMBuffer,
+    waitForConnectionUpdate: bindWaitForConnectionUpdate(ev),
+    sendWAMBuffer,
+    executeUSyncQuery,
+    listener: (eventName) => {
+      if (typeof ev.listenerCount === 'function') return ev.listenerCount(eventName)
+      if (typeof ev.listener === 'function') return ev.listener(eventName)?.length || 0
+      return 0
+    }
+  }
 }