@noble/curves 1.6.0 → 1.8.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (194) hide show
  1. package/README.md +78 -30
  2. package/_shortw_utils.d.ts +8 -54
  3. package/_shortw_utils.d.ts.map +1 -1
  4. package/_shortw_utils.js +6 -2
  5. package/_shortw_utils.js.map +1 -1
  6. package/abstract/bls.d.ts +15 -11
  7. package/abstract/bls.d.ts.map +1 -1
  8. package/abstract/bls.js +26 -10
  9. package/abstract/bls.js.map +1 -1
  10. package/abstract/curve.d.ts +42 -24
  11. package/abstract/curve.d.ts.map +1 -1
  12. package/abstract/curve.js +203 -53
  13. package/abstract/curve.js.map +1 -1
  14. package/abstract/edwards.d.ts +14 -23
  15. package/abstract/edwards.d.ts.map +1 -1
  16. package/abstract/edwards.js +25 -10
  17. package/abstract/edwards.js.map +1 -1
  18. package/abstract/hash-to-curve.d.ts +28 -8
  19. package/abstract/hash-to-curve.d.ts.map +1 -1
  20. package/abstract/hash-to-curve.js +18 -14
  21. package/abstract/hash-to-curve.js.map +1 -1
  22. package/abstract/modular.d.ts +30 -5
  23. package/abstract/modular.d.ts.map +1 -1
  24. package/abstract/modular.js +68 -37
  25. package/abstract/modular.js.map +1 -1
  26. package/abstract/montgomery.d.ts.map +1 -1
  27. package/abstract/montgomery.js +11 -4
  28. package/abstract/montgomery.js.map +1 -1
  29. package/abstract/poseidon.d.ts +9 -0
  30. package/abstract/poseidon.d.ts.map +1 -1
  31. package/abstract/poseidon.js +31 -23
  32. package/abstract/poseidon.js.map +1 -1
  33. package/abstract/tower.d.ts +13 -1
  34. package/abstract/tower.d.ts.map +1 -1
  35. package/abstract/tower.js +20 -17
  36. package/abstract/tower.js.map +1 -1
  37. package/abstract/utils.d.ts +10 -5
  38. package/abstract/utils.d.ts.map +1 -1
  39. package/abstract/utils.js +26 -24
  40. package/abstract/utils.js.map +1 -1
  41. package/abstract/weierstrass.d.ts +47 -80
  42. package/abstract/weierstrass.d.ts.map +1 -1
  43. package/abstract/weierstrass.js +88 -43
  44. package/abstract/weierstrass.js.map +1 -1
  45. package/bls12-381.d.ts +11 -0
  46. package/bls12-381.d.ts.map +1 -1
  47. package/bls12-381.js +80 -67
  48. package/bls12-381.js.map +1 -1
  49. package/bn254.d.ts +5 -3
  50. package/bn254.d.ts.map +1 -1
  51. package/bn254.js +33 -27
  52. package/bn254.js.map +1 -1
  53. package/ed25519.d.ts +24 -4
  54. package/ed25519.d.ts.map +1 -1
  55. package/ed25519.js +30 -6
  56. package/ed25519.js.map +1 -1
  57. package/ed448.d.ts +23 -8
  58. package/ed448.d.ts.map +1 -1
  59. package/ed448.js +31 -9
  60. package/ed448.js.map +1 -1
  61. package/esm/_shortw_utils.d.ts +8 -54
  62. package/esm/_shortw_utils.d.ts.map +1 -1
  63. package/esm/_shortw_utils.js +6 -2
  64. package/esm/_shortw_utils.js.map +1 -1
  65. package/esm/abstract/bls.d.ts +15 -11
  66. package/esm/abstract/bls.d.ts.map +1 -1
  67. package/esm/abstract/bls.js +26 -10
  68. package/esm/abstract/bls.js.map +1 -1
  69. package/esm/abstract/curve.d.ts +42 -24
  70. package/esm/abstract/curve.d.ts.map +1 -1
  71. package/esm/abstract/curve.js +202 -53
  72. package/esm/abstract/curve.js.map +1 -1
  73. package/esm/abstract/edwards.d.ts +14 -23
  74. package/esm/abstract/edwards.d.ts.map +1 -1
  75. package/esm/abstract/edwards.js +25 -10
  76. package/esm/abstract/edwards.js.map +1 -1
  77. package/esm/abstract/hash-to-curve.d.ts +28 -8
  78. package/esm/abstract/hash-to-curve.d.ts.map +1 -1
  79. package/esm/abstract/hash-to-curve.js +18 -14
  80. package/esm/abstract/hash-to-curve.js.map +1 -1
  81. package/esm/abstract/modular.d.ts +30 -5
  82. package/esm/abstract/modular.d.ts.map +1 -1
  83. package/esm/abstract/modular.js +68 -37
  84. package/esm/abstract/modular.js.map +1 -1
  85. package/esm/abstract/montgomery.d.ts.map +1 -1
  86. package/esm/abstract/montgomery.js +11 -4
  87. package/esm/abstract/montgomery.js.map +1 -1
  88. package/esm/abstract/poseidon.d.ts +9 -0
  89. package/esm/abstract/poseidon.d.ts.map +1 -1
  90. package/esm/abstract/poseidon.js +31 -23
  91. package/esm/abstract/poseidon.js.map +1 -1
  92. package/esm/abstract/tower.d.ts +13 -1
  93. package/esm/abstract/tower.d.ts.map +1 -1
  94. package/esm/abstract/tower.js +20 -17
  95. package/esm/abstract/tower.js.map +1 -1
  96. package/esm/abstract/utils.d.ts +10 -5
  97. package/esm/abstract/utils.d.ts.map +1 -1
  98. package/esm/abstract/utils.js +25 -23
  99. package/esm/abstract/utils.js.map +1 -1
  100. package/esm/abstract/weierstrass.d.ts +47 -80
  101. package/esm/abstract/weierstrass.d.ts.map +1 -1
  102. package/esm/abstract/weierstrass.js +86 -42
  103. package/esm/abstract/weierstrass.js.map +1 -1
  104. package/esm/bls12-381.d.ts +11 -0
  105. package/esm/bls12-381.d.ts.map +1 -1
  106. package/esm/bls12-381.js +80 -67
  107. package/esm/bls12-381.js.map +1 -1
  108. package/esm/bn254.d.ts +5 -3
  109. package/esm/bn254.d.ts.map +1 -1
  110. package/esm/bn254.js +31 -26
  111. package/esm/bn254.js.map +1 -1
  112. package/esm/ed25519.d.ts +24 -4
  113. package/esm/ed25519.d.ts.map +1 -1
  114. package/esm/ed25519.js +31 -7
  115. package/esm/ed25519.js.map +1 -1
  116. package/esm/ed448.d.ts +23 -8
  117. package/esm/ed448.d.ts.map +1 -1
  118. package/esm/ed448.js +32 -10
  119. package/esm/ed448.js.map +1 -1
  120. package/esm/index.js +4 -0
  121. package/esm/index.js.map +1 -1
  122. package/esm/jubjub.d.ts +4 -8
  123. package/esm/jubjub.d.ts.map +1 -1
  124. package/esm/jubjub.js +6 -5
  125. package/esm/jubjub.js.map +1 -1
  126. package/esm/p256.d.ts +10 -104
  127. package/esm/p256.d.ts.map +1 -1
  128. package/esm/p256.js +15 -8
  129. package/esm/p256.js.map +1 -1
  130. package/esm/p384.d.ts +10 -104
  131. package/esm/p384.d.ts.map +1 -1
  132. package/esm/p384.js +15 -8
  133. package/esm/p384.js.map +1 -1
  134. package/esm/p521.d.ts +11 -104
  135. package/esm/p521.d.ts.map +1 -1
  136. package/esm/p521.js +18 -10
  137. package/esm/p521.js.map +1 -1
  138. package/esm/pasta.d.ts +5 -2
  139. package/esm/pasta.d.ts.map +1 -1
  140. package/esm/pasta.js +6 -2
  141. package/esm/pasta.js.map +1 -1
  142. package/esm/secp256k1.d.ts +29 -57
  143. package/esm/secp256k1.d.ts.map +1 -1
  144. package/esm/secp256k1.js +41 -15
  145. package/esm/secp256k1.js.map +1 -1
  146. package/index.js +4 -0
  147. package/index.js.map +1 -1
  148. package/jubjub.d.ts +4 -8
  149. package/jubjub.d.ts.map +1 -1
  150. package/jubjub.js +6 -5
  151. package/jubjub.js.map +1 -1
  152. package/p256.d.ts +10 -104
  153. package/p256.d.ts.map +1 -1
  154. package/p256.js +15 -8
  155. package/p256.js.map +1 -1
  156. package/p384.d.ts +10 -104
  157. package/p384.d.ts.map +1 -1
  158. package/p384.js +15 -8
  159. package/p384.js.map +1 -1
  160. package/p521.d.ts +11 -104
  161. package/p521.d.ts.map +1 -1
  162. package/p521.js +18 -10
  163. package/p521.js.map +1 -1
  164. package/package.json +11 -8
  165. package/pasta.d.ts +5 -2
  166. package/pasta.d.ts.map +1 -1
  167. package/pasta.js +6 -2
  168. package/pasta.js.map +1 -1
  169. package/secp256k1.d.ts +29 -57
  170. package/secp256k1.d.ts.map +1 -1
  171. package/secp256k1.js +41 -15
  172. package/secp256k1.js.map +1 -1
  173. package/src/_shortw_utils.ts +18 -8
  174. package/src/abstract/bls.ts +42 -30
  175. package/src/abstract/curve.ts +237 -55
  176. package/src/abstract/edwards.ts +36 -15
  177. package/src/abstract/hash-to-curve.ts +43 -21
  178. package/src/abstract/modular.ts +84 -46
  179. package/src/abstract/montgomery.ts +12 -4
  180. package/src/abstract/poseidon.ts +48 -30
  181. package/src/abstract/tower.ts +66 -20
  182. package/src/abstract/utils.ts +44 -43
  183. package/src/abstract/weierstrass.ts +125 -70
  184. package/src/bls12-381.ts +80 -68
  185. package/src/bn254.ts +47 -30
  186. package/src/ed25519.ts +50 -20
  187. package/src/ed448.ts +49 -22
  188. package/src/index.ts +4 -0
  189. package/src/jubjub.ts +10 -10
  190. package/src/p256.ts +21 -15
  191. package/src/p384.ts +21 -15
  192. package/src/p521.ts +24 -17
  193. package/src/pasta.ts +15 -7
  194. package/src/secp256k1.ts +63 -21
package/abstract/weierstrass.d.ts CHANGED
@@ -1,3 +1,29 @@
1
+ /**
2
+ * Short Weierstrass curve methods. The formula is: y² = x³ + ax + b.
3
+ *
4
+ * ### Design rationale for types
5
+ *
6
+ * * Interaction between classes from different curves should fail:
7
+ * `k256.Point.BASE.add(p256.Point.BASE)`
8
+ * * For this purpose we want to use `instanceof` operator, which is fast and works during runtime
9
+ * * Different calls of `curve()` would return different classes -
10
+ * `curve(params) !== curve(params)`: if somebody decided to monkey-patch their curve,
11
+ * it won't affect others
12
+ *
13
+ * TypeScript can't infer types for classes created inside a function. Classes is one instance
14
+ * of nominative types in TypeScript and interfaces only check for shape, so it's hard to create
15
+ * unique type for every function call.
16
+ *
17
+ * We can use generic types via some param, like curve opts, but that would:
18
+ * 1. Enable interaction between `curve(params)` and `curve(params)` (curves of same params)
19
+ * which is hard to debug.
20
+ * 2. Params can be generic and we can't enforce them to be constant value:
21
+ * if somebody creates curve from non-constant params,
22
+ * it would be allowed to interact with other curves with non-constant params
23
+ *
24
+ * @todo https://www.typescriptlang.org/docs/handbook/release-notes/typescript-2-7.html#unique-symbol
25
+ * @module
26
+ */
1
27
  /*! noble-curves - MIT License (c) 2022 Paul Miller (paulmillr.com) */
2
28
  import { AffinePoint, BasicCurve, Group, GroupConstructor } from './curve.js';
3
29
  import * as mod from './modular.js';
@@ -31,28 +57,8 @@ export type SignOpts = {
31
57
  export type VerOpts = {
32
58
  lowS?: boolean;
33
59
  prehash?: boolean;
60
+ format?: 'compact' | 'der' | undefined;
34
61
  };
35
- /**
36
- * ### Design rationale for types
37
- *
38
- * * Interaction between classes from different curves should fail:
39
- * `k256.Point.BASE.add(p256.Point.BASE)`
40
- * * For this purpose we want to use `instanceof` operator, which is fast and works during runtime
41
- * * Different calls of `curve()` would return different classes -
42
- * `curve(params) !== curve(params)`: if somebody decided to monkey-patch their curve,
43
- * it won't affect others
44
- *
45
- * TypeScript can't infer types for classes created inside a function. Classes is one instance of nominative types in TypeScript and interfaces only check for shape, so it's hard to create unique type for every function call.
46
- *
47
- * We can use generic types via some param, like curve opts, but that would:
48
- * 1. Enable interaction between `curve(params)` and `curve(params)` (curves of same params)
49
- * which is hard to debug.
50
- * 2. Params can be generic and we can't enforce them to be constant value:
51
- * if somebody creates curve from non-constant params,
52
- * it would be allowed to interact with other curves with non-constant params
53
- *
54
- * TODO: https://www.typescriptlang.org/docs/handbook/release-notes/typescript-2-7.html#unique-symbol
55
- */
56
62
  export interface ProjPointType<T> extends Group<ProjPointType<T>> {
57
63
  readonly px: T;
58
64
  readonly py: T;
@@ -83,27 +89,11 @@ export type CurvePointsType<T> = BasicWCurve<T> & {
83
89
  fromBytes?: (bytes: Uint8Array) => AffinePoint<T>;
84
90
  toBytes?: (c: ProjConstructor<T>, point: ProjPointType<T>, isCompressed: boolean) => Uint8Array;
85
91
  };
86
- declare function validatePointOpts<T>(curve: CurvePointsType<T>): Readonly<{
87
- readonly nBitLength: number;
88
- readonly nByteLength: number;
89
- readonly Fp: mod.IField<T>;
90
- readonly n: bigint;
91
- readonly h: bigint;
92
- readonly hEff?: bigint;
93
- readonly Gx: T;
94
- readonly Gy: T;
95
- readonly allowInfinityPoint?: boolean;
96
- readonly a: T;
97
- readonly b: T;
98
- readonly allowedPrivateKeyLengths?: readonly number[];
99
- readonly wrapPrivateKey?: boolean;
100
- readonly endo?: EndomorphismOpts;
101
- readonly isTorsionFree?: ((c: ProjConstructor<T>, point: ProjPointType<T>) => boolean) | undefined;
102
- readonly clearCofactor?: ((c: ProjConstructor<T>, point: ProjPointType<T>) => ProjPointType<T>) | undefined;
103
- readonly fromBytes?: ((bytes: Uint8Array) => AffinePoint<T>) | undefined;
104
- readonly toBytes?: ((c: ProjConstructor<T>, point: ProjPointType<T>, isCompressed: boolean) => Uint8Array) | undefined;
105
- readonly p: bigint;
92
+ export type CurvePointsTypeWithLength<T> = Readonly<CurvePointsType<T> & {
93
+ nByteLength: number;
94
+ nBitLength: number;
106
95
  }>;
96
+ declare function validatePointOpts<T>(curve: CurvePointsType<T>): CurvePointsTypeWithLength<T>;
107
97
  export type CurvePointsRes<T> = {
108
98
  CURVE: ReturnType<typeof validatePointOpts<T>>;
109
99
  ProjectivePoint: ProjConstructor<T>;
@@ -111,21 +101,11 @@ export type CurvePointsRes<T> = {
111
101
  weierstrassEquation: (x: T) => T;
112
102
  isWithinCurveOrder: (num: bigint) => boolean;
113
103
  };
114
- /**
115
- * ASN.1 DER encoding utilities. ASN is very complex & fragile. Format:
116
- *
117
- * [0x30 (SEQUENCE), bytelength, 0x02 (INTEGER), intLength, R, 0x02 (INTEGER), intLength, S]
118
- *
119
- * Docs: https://letsencrypt.org/docs/a-warm-welcome-to-asn1-and-der/, https://luca.ntop.org/Teaching/Appunti/asn1.html
120
- */
121
- export declare const DER: {
122
- Err: {
123
- new (m?: string): {
124
- name: string;
125
- message: string;
126
- stack?: string;
127
- };
128
- };
104
+ export declare class DERErr extends Error {
105
+ constructor(m?: string);
106
+ }
107
+ export type IDER = {
108
+ Err: typeof DERErr;
129
109
  _tlv: {
130
110
  encode: (tag: number, data: string) => string;
131
111
  decode(tag: number, data: Uint8Array): {
@@ -146,6 +126,14 @@ export declare const DER: {
146
126
  s: bigint;
147
127
  }): string;
148
128
  };
129
+ /**
130
+ * ASN.1 DER encoding utilities. ASN is very complex & fragile. Format:
131
+ *
132
+ * [0x30 (SEQUENCE), bytelength, 0x02 (INTEGER), intLength, R, 0x02 (INTEGER), intLength, S]
133
+ *
134
+ * Docs: https://letsencrypt.org/docs/a-warm-welcome-to-asn1-and-der/, https://luca.ntop.org/Teaching/Appunti/asn1.html
135
+ */
136
+ export declare const DER: IDER;
149
137
  export declare function weierstrassPoints<T>(opts: CurvePointsType<T>): CurvePointsRes<T>;
150
138
  export interface SignatureType {
151
139
  readonly r: bigint;
@@ -182,30 +170,9 @@ export type CurveType = BasicWCurve<bigint> & {
182
170
  bits2int?: (bytes: Uint8Array) => bigint;
183
171
  bits2int_modN?: (bytes: Uint8Array) => bigint;
184
172
  };
185
- declare function validateOpts(curve: CurveType): Readonly<{
186
- readonly nBitLength: number;
187
- readonly nByteLength: number;
188
- readonly Fp: mod.IField<bigint>;
189
- readonly n: bigint;
190
- readonly h: bigint;
191
- readonly hEff?: bigint;
192
- readonly Gx: bigint;
193
- readonly Gy: bigint;
194
- readonly allowInfinityPoint?: boolean;
195
- readonly a: bigint;
196
- readonly b: bigint;
197
- readonly allowedPrivateKeyLengths?: readonly number[];
198
- readonly wrapPrivateKey?: boolean;
199
- readonly endo?: EndomorphismOpts;
200
- readonly isTorsionFree?: ((c: ProjConstructor<bigint>, point: ProjPointType<bigint>) => boolean) | undefined;
201
- readonly clearCofactor?: ((c: ProjConstructor<bigint>, point: ProjPointType<bigint>) => ProjPointType<bigint>) | undefined;
202
- readonly hash: CHash;
203
- readonly hmac: HmacFnSync;
204
- readonly randomBytes: (bytesLength?: number) => Uint8Array;
205
- lowS: boolean;
206
- readonly bits2int?: (bytes: Uint8Array) => bigint;
207
- readonly bits2int_modN?: (bytes: Uint8Array) => bigint;
208
- readonly p: bigint;
173
+ declare function validateOpts(curve: CurveType): Readonly<CurveType & {
174
+ nByteLength: number;
175
+ nBitLength: number;
209
176
  }>;
210
177
  export type CurveFn = {
211
178
  CURVE: ReturnType<typeof validateOpts>;
package/abstract/weierstrass.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"weierstrass.d.ts","sourceRoot":"","sources":["../src/abstract/weierstrass.ts"],"names":[],"mappings":"AAAA,sEAAsE;AAEtE,OAAO,EACL,WAAW,EACX,UAAU,EACV,KAAK,EACL,gBAAgB,EAIjB,MAAM,YAAY,CAAC;AACpB,OAAO,KAAK,GAAG,MAAM,cAAc,CAAC;AAEpC,OAAO,EAAE,KAAK,EAAE,GAAG,EAAE,OAAO,EAAgC,MAAM,YAAY,CAAC;AAE/E,YAAY,EAAE,WAAW,EAAE,CAAC;AAC5B,KAAK,UAAU,GAAG,CAAC,GAAG,EAAE,UAAU,EAAE,GAAG,QAAQ,EAAE,UAAU,EAAE,KAAK,UAAU,CAAC;AAC7E,KAAK,gBAAgB,GAAG;IACtB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,CAAC,CAAC,EAAE,MAAM,KAAK;QAAE,KAAK,EAAE,OAAO,CAAC;QAAC,EAAE,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,OAAO,CAAC;QAAC,EAAE,EAAE,MAAM,CAAA;KAAE,CAAC;CACxF,CAAC;AACF,MAAM,MAAM,WAAW,CAAC,CAAC,IAAI,UAAU,CAAC,CAAC,CAAC,GAAG;IAE3C,CAAC,EAAE,CAAC,CAAC;IACL,CAAC,EAAE,CAAC,CAAC;IAGL,wBAAwB,CAAC,EAAE,SAAS,MAAM,EAAE,CAAC;IAC7C,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,IAAI,CAAC,EAAE,gBAAgB,CAAC;IAGxB,aAAa,CAAC,EAAE,CAAC,CAAC,EAAE,eAAe,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,aAAa,CAAC,CAAC,CAAC,KAAK,OAAO,CAAC;IAE5E,aAAa,CAAC,EAAE,CAAC,CAAC,EAAE,eAAe,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,aAAa,CAAC,CAAC,CAAC,KAAK,aAAa,CAAC,CAAC,CAAC,CAAC;CACtF,CAAC;AAEF,KAAK,OAAO,GAAG,GAAG,GAAG,OAAO,CAAC;AAC7B,MAAM,MAAM,QAAQ,GAAG;IAAE,IAAI,CAAC,EAAE,OAAO,CAAC;IAAC,YAAY,CAAC,EAAE,OAAO,CAAC;IAAC,OAAO,CAAC,EAAE,OAAO,CAAA;CAAE,CAAC;AACrF,MAAM,MAAM,OAAO,GAAG;IAAE,IAAI,CAAC,EAAE,OAAO,CAAC;IAAC,OAAO,CAAC,EAAE,OAAO,CAAA;CAAE,CAAC;AAO5D;;;;;;;;;;;;;;;;;;;;GAoBG;AAGH,MAAM,WAAW,aAAa,CAAC,CAAC,CAAE,SAAQ,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC;IAC/D,QAAQ,CAAC,EAAE,EAAE,CAAC,CAAC;IACf,QAAQ,CAAC,EAAE,EAAE,CAAC,CAAC;IACf,QAAQ,CAAC,EAAE,EAAE,CAAC,CAAC;IACf,IAAI,CAAC,IAAI,CAAC,CAAC;IACX,IAAI,CAAC,IAAI,CAAC,CAAC;IACX,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IAC3C,QAAQ,CAAC,EAAE,CAAC,EAAE,CAAC,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC;IACjC,aAAa,IAAI,OAAO,CAAC;IACzB,aAAa,IAAI,aAAa,CAAC,CAAC,CAAC,CAAC;IAClC,cAAc,IAAI,IAAI,CAAC;IACvB,QAAQ,IAAI,OAAO,CAAC;IACpB,UAAU,CAAC,YAAY,CAAC,EAAE,OAAO,GAAG,UAAU,CAAC;IAC/C,KAAK,CAAC,YAAY,CAAC,EAAE,OAAO,GAAG,MAAM,CAAC;IAEtC,cAAc,CAAC,MAAM,EAAE,MAAM,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACjD,oBAAoB,CAAC,CAAC,EAAE,aAAa,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,GAAG,aAAa,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC;IAC9F,cAAc,CAAC,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;CAC1C;AAED,MAAM,WAAW,eAAe,CAAC,CAAC,CAAE,SAAQ,gBAAgB,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC;IAC5E,KAAK,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACzC,UAAU,CAAC,CAAC,EAAE,WAAW,CAAC,CAAC,CAAC,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IAChD,OAAO,CAAC,GAAG,EAAE,GAAG,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACpC,cAAc,CAAC,UAAU,EAAE,OAAO,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACtD,UAAU,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC,CAAC,EAAE,GAAG,aAAa,CAAC,CAAC,CAAC,EAAE,CAAC;IAC3D,GAAG,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC,CAAC,EAAE,EAAE,OAAO,EAAE,MAAM,EAAE,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;CACtE;AAED,MAAM,MAAM,eAAe,CAAC,CAAC,IAAI,WAAW,CAAC,CAAC,CAAC,GAAG;IAEhD,SAAS,CAAC,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,WAAW,CAAC,CAAC,CAAC,CAAC;IAClD,OAAO,CAAC,EAAE,CAAC,CAAC,EAAE,eAAe,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,aAAa,CAAC,CAAC,CAAC,EAAE,YAAY,EAAE,OAAO,KAAK,UAAU,CAAC;CACjG,CAAC;AAEF,iBAAS,iBAAiB,CAAC,CAAC,EAAE,KAAK,EAAE,eAAe,CAAC,CAAC,CAAC;;;;;;;;;;;;wCA7E1B,SAAS,MAAM,EAAE;8BAC3B,OAAO;oBACjB,gBAAgB;kFAG6C,OAAO;kFAEP,aAAa,GAAG;kCAkEhE,UAAU,KAAK,WAAW,GAAG;uFACwB,OAAO,KAAK,UAAU;;GAmChG;AAED,MAAM,MAAM,cAAc,CAAC,CAAC,IAAI;IAC9B,KAAK,EAAE,UAAU,CAAC,OAAO,iBAAiB,CAAC,CAAC,CAAC,CAAC,CAAC;IAC/C,eAAe,EAAE,eAAe,CAAC,CAAC,CAAC,CAAC;IACpC,sBAAsB,EAAE,CAAC,GAAG,EAAE,OAAO,KAAK,MAAM,CAAC;IACjD,mBAAmB,EAAE,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,CAAC;IACjC,kBAAkB,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,OAAO,CAAC;CAC9C,CAAC;AAIF;;;;;;GAMG;AACH,eAAO,MAAM,GAAG;;;;;;;;;sBASE,MAAM,QAAQ,MAAM;oBAYtB,MAAM,QAAQ,UAAU,GAAG;YAAE,CAAC,EAAE,UAAU,CAAC;YAAC,CAAC,EAAE,UAAU,CAAA;SAAE;;;oBA+B3D,MAAM;qBASL,UAAU,GAAG,MAAM;;eAQvB,MAAM,GAAG,UAAU,GAAG;QAAE,CAAC,EAAE,MAAM,CAAC;QAAC,CAAC,EAAE,MAAM,CAAA;KAAE;oBAYzC;QAAE,CAAC,EAAE,MAAM,CAAC;QAAC,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,MAAM;CAKlD,CAAC;AAMF,wBAAgB,iBAAiB,CAAC,CAAC,EAAE,IAAI,EAAE,eAAe,CAAC,CAAC,CAAC,GAAG,cAAc,CAAC,CAAC,CAAC,CA2bhF;AAGD,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAC3B,cAAc,IAAI,IAAI,CAAC;IACvB,cAAc,CAAC,QAAQ,EAAE,MAAM,GAAG,sBAAsB,CAAC;IACzD,QAAQ,IAAI,OAAO,CAAC;IACpB,UAAU,IAAI,aAAa,CAAC;IAC5B,gBAAgB,CAAC,OAAO,EAAE,GAAG,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC;IACtD,iBAAiB,IAAI,UAAU,CAAC;IAChC,YAAY,IAAI,MAAM,CAAC;IAEvB,aAAa,CAAC,YAAY,CAAC,EAAE,OAAO,GAAG,UAAU,CAAC;IAClD,QAAQ,CAAC,YAAY,CAAC,EAAE,OAAO,GAAG,MAAM,CAAC;CAC1C;AACD,MAAM,MAAM,sBAAsB,GAAG,aAAa,GAAG;IACnD,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAC;CAC3B,CAAC;AAEF,MAAM,MAAM,oBAAoB,GAAG;IACjC,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,GAAG,aAAa,CAAC;IAC1C,WAAW,CAAC,GAAG,EAAE,GAAG,GAAG,aAAa,CAAC;IACrC,OAAO,CAAC,GAAG,EAAE,GAAG,GAAG,aAAa,CAAC;CAClC,CAAC;AACF,KAAK,aAAa,GAAG;IAAE,CAAC,EAAE,MAAM,CAAC;IAAC,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC;AAE9C,MAAM,MAAM,MAAM,GAAG,GAAG,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC;AAEjD,MAAM,MAAM,SAAS,GAAG,WAAW,CAAC,MAAM,CAAC,GAAG;IAC5C,IAAI,EAAE,KAAK,CAAC;IACZ,IAAI,EAAE,UAAU,CAAC;IACjB,WAAW,EAAE,CAAC,WAAW,CAAC,EAAE,MAAM,KAAK,UAAU,CAAC;IAClD,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,QAAQ,CAAC,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,MAAM,CAAC;IACzC,aAAa,CAAC,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,MAAM,CAAC;CAC/C,CAAC;AAEF,iBAAS,YAAY,CAAC,KAAK,EAAE,SAAS;;;;;;;;;;;;wCA/rBT,SAAS,MAAM,EAAE;8BAC3B,OAAO;oBACjB,gBAAgB;4FAG6C,OAAO;4FAEP,aAAa,QAAG;mBAgrB9E,KAAK;mBACL,UAAU;0BACH,CAAC,WAAW,CAAC,EAAE,MAAM,KAAK,UAAU;UAC1C,OAAO;wBACH,CAAC,KAAK,EAAE,UAAU,KAAK,MAAM;6BACxB,CAAC,KAAK,EAAE,UAAU,KAAK,MAAM;;GAmB9C;AAED,MAAM,MAAM,OAAO,GAAG;IACpB,KAAK,EAAE,UAAU,CAAC,OAAO,YAAY,CAAC,CAAC;IACvC,YAAY,EAAE,CAAC,UAAU,EAAE,OAAO,EAAE,YAAY,CAAC,EAAE,OAAO,KAAK,UAAU,CAAC;IAC1E,eAAe,EAAE,CAAC,QAAQ,EAAE,OAAO,EAAE,OAAO,EAAE,GAAG,EAAE,YAAY,CAAC,EAAE,OAAO,KAAK,UAAU,CAAC;IACzF,IAAI,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,QAAQ,KAAK,sBAAsB,CAAC;IAClF,MAAM,EAAE,CAAC,SAAS,EAAE,GAAG,GAAG,aAAa,EAAE,OAAO,EAAE,GAAG,EAAE,SAAS,EAAE,GAAG,EAAE,IAAI,CAAC,EAAE,OAAO,KAAK,OAAO,CAAC;IAClG,eAAe,EAAE,eAAe,CAAC,MAAM,CAAC,CAAC;IACzC,SAAS,EAAE,oBAAoB,CAAC;IAChC,KAAK,EAAE;QACL,sBAAsB,EAAE,CAAC,GAAG,EAAE,OAAO,KAAK,MAAM,CAAC;QACjD,iBAAiB,CAAC,UAAU,EAAE,OAAO,GAAG,OAAO,CAAC;QAChD,gBAAgB,EAAE,MAAM,UAAU,CAAC;QACnC,UAAU,EAAE,CAAC,UAAU,CAAC,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,aAAa,CAAC,MAAM,CAAC,KAAK,aAAa,CAAC,MAAM,CAAC,CAAC;KAC3F,CAAC;CACH,CAAC;AAEF;;;;;;GAMG;AACH,wBAAgB,WAAW,CAAC,QAAQ,EAAE,SAAS,GAAG,OAAO,CA4ZxD;AAED;;;;;;;;GAQG;AACH,wBAAgB,cAAc,CAAC,CAAC,EAAE,EAAE,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,OAgBnC,CAAC,KAAK,CAAC,KAAG;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,KAAK,EAAE,CAAC,CAAA;CAAE,CAmD7D;AACD;;;GAGG;AACH,wBAAgB,mBAAmB,CAAC,CAAC,EACnC,EAAE,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,EACjB,IAAI,EAAE;IACJ,CAAC,EAAE,CAAC,CAAC;IACL,CAAC,EAAE,CAAC,CAAC;IACL,CAAC,EAAE,CAAC,CAAC;CACN,OASU,CAAC,KAAG;IAAE,CAAC,EAAE,CAAC,CAAC;IAAC,CAAC,EAAE,CAAC,CAAA;CAAE,CA8B9B"}
1
+ {"version":3,"file":"weierstrass.d.ts","sourceRoot":"","sources":["../src/abstract/weierstrass.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,sEAAsE;AACtE,OAAO,EACL,WAAW,EACX,UAAU,EACV,KAAK,EACL,gBAAgB,EAIjB,MAAM,YAAY,CAAC;AACpB,OAAO,KAAK,GAAG,MAAM,cAAc,CAAC;AAEpC,OAAO,EAAE,KAAK,EAAE,GAAG,EAAE,OAAO,EAAgC,MAAM,YAAY,CAAC;AAE/E,YAAY,EAAE,WAAW,EAAE,CAAC;AAC5B,KAAK,UAAU,GAAG,CAAC,GAAG,EAAE,UAAU,EAAE,GAAG,QAAQ,EAAE,UAAU,EAAE,KAAK,UAAU,CAAC;AAC7E,KAAK,gBAAgB,GAAG;IACtB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,CAAC,CAAC,EAAE,MAAM,KAAK;QAAE,KAAK,EAAE,OAAO,CAAC;QAAC,EAAE,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,OAAO,CAAC;QAAC,EAAE,EAAE,MAAM,CAAA;KAAE,CAAC;CACxF,CAAC;AACF,MAAM,MAAM,WAAW,CAAC,CAAC,IAAI,UAAU,CAAC,CAAC,CAAC,GAAG;IAE3C,CAAC,EAAE,CAAC,CAAC;IACL,CAAC,EAAE,CAAC,CAAC;IAGL,wBAAwB,CAAC,EAAE,SAAS,MAAM,EAAE,CAAC;IAC7C,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,IAAI,CAAC,EAAE,gBAAgB,CAAC;IAGxB,aAAa,CAAC,EAAE,CAAC,CAAC,EAAE,eAAe,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,aAAa,CAAC,CAAC,CAAC,KAAK,OAAO,CAAC;IAE5E,aAAa,CAAC,EAAE,CAAC,CAAC,EAAE,eAAe,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,aAAa,CAAC,CAAC,CAAC,KAAK,aAAa,CAAC,CAAC,CAAC,CAAC;CACtF,CAAC;AAEF,KAAK,OAAO,GAAG,GAAG,GAAG,OAAO,CAAC;AAC7B,MAAM,MAAM,QAAQ,GAAG;IAAE,IAAI,CAAC,EAAE,OAAO,CAAC;IAAC,YAAY,CAAC,EAAE,OAAO,CAAC;IAAC,OAAO,CAAC,EAAE,OAAO,CAAA;CAAE,CAAC;AACrF,MAAM,MAAM,OAAO,GAAG;IAAE,IAAI,CAAC,EAAE,OAAO,CAAC;IAAC,OAAO,CAAC,EAAE,OAAO,CAAC;IAAC,MAAM,CAAC,EAAE,SAAS,GAAG,KAAK,GAAG,SAAS,CAAA;CAAE,CAAC;AAQpG,MAAM,WAAW,aAAa,CAAC,CAAC,CAAE,SAAQ,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC;IAC/D,QAAQ,CAAC,EAAE,EAAE,CAAC,CAAC;IACf,QAAQ,CAAC,EAAE,EAAE,CAAC,CAAC;IACf,QAAQ,CAAC,EAAE,EAAE,CAAC,CAAC;IACf,IAAI,CAAC,IAAI,CAAC,CAAC;IACX,IAAI,CAAC,IAAI,CAAC,CAAC;IACX,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IAC3C,QAAQ,CAAC,EAAE,CAAC,EAAE,CAAC,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC;IACjC,aAAa,IAAI,OAAO,CAAC;IACzB,aAAa,IAAI,aAAa,CAAC,CAAC,CAAC,CAAC;IAClC,cAAc,IAAI,IAAI,CAAC;IACvB,QAAQ,IAAI,OAAO,CAAC;IACpB,UAAU,CAAC,YAAY,CAAC,EAAE,OAAO,GAAG,UAAU,CAAC;IAC/C,KAAK,CAAC,YAAY,CAAC,EAAE,OAAO,GAAG,MAAM,CAAC;IAEtC,cAAc,CAAC,MAAM,EAAE,MAAM,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACjD,oBAAoB,CAAC,CAAC,EAAE,aAAa,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,GAAG,aAAa,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC;IAC9F,cAAc,CAAC,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;CAC1C;AAED,MAAM,WAAW,eAAe,CAAC,CAAC,CAAE,SAAQ,gBAAgB,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC;IAC5E,KAAK,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACzC,UAAU,CAAC,CAAC,EAAE,WAAW,CAAC,CAAC,CAAC,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IAChD,OAAO,CAAC,GAAG,EAAE,GAAG,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACpC,cAAc,CAAC,UAAU,EAAE,OAAO,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACtD,UAAU,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC,CAAC,EAAE,GAAG,aAAa,CAAC,CAAC,CAAC,EAAE,CAAC;IAC3D,GAAG,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC,CAAC,EAAE,EAAE,OAAO,EAAE,MAAM,EAAE,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;CACtE;AAED,MAAM,MAAM,eAAe,CAAC,CAAC,IAAI,WAAW,CAAC,CAAC,CAAC,GAAG;IAEhD,SAAS,CAAC,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,WAAW,CAAC,CAAC,CAAC,CAAC;IAClD,OAAO,CAAC,EAAE,CAAC,CAAC,EAAE,eAAe,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,aAAa,CAAC,CAAC,CAAC,EAAE,YAAY,EAAE,OAAO,KAAK,UAAU,CAAC;CACjG,CAAC;AAEF,MAAM,MAAM,yBAAyB,CAAC,CAAC,IAAI,QAAQ,CACjD,eAAe,CAAC,CAAC,CAAC,GAAG;IAAE,WAAW,EAAE,MAAM,CAAC;IAAC,UAAU,EAAE,MAAM,CAAA;CAAE,CACjE,CAAC;AAEF,iBAAS,iBAAiB,CAAC,CAAC,EAAE,KAAK,EAAE,eAAe,CAAC,CAAC,CAAC,GAAG,yBAAyB,CAAC,CAAC,CAAC,CAgCrF;AAED,MAAM,MAAM,cAAc,CAAC,CAAC,IAAI;IAC9B,KAAK,EAAE,UAAU,CAAC,OAAO,iBAAiB,CAAC,CAAC,CAAC,CAAC,CAAC;IAC/C,eAAe,EAAE,eAAe,CAAC,CAAC,CAAC,CAAC;IACpC,sBAAsB,EAAE,CAAC,GAAG,EAAE,OAAO,KAAK,MAAM,CAAC;IACjD,mBAAmB,EAAE,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,CAAC;IACjC,kBAAkB,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,OAAO,CAAC;CAC9C,CAAC;AAIF,qBAAa,MAAO,SAAQ,KAAK;gBACnB,CAAC,SAAK;CAGnB;AACD,MAAM,MAAM,IAAI,GAAG;IAEjB,GAAG,EAAE,OAAO,MAAM,CAAC;IAEnB,IAAI,EAAE;QACJ,MAAM,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,KAAK,MAAM,CAAC;QAE9C,MAAM,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,UAAU,GAAG;YAAE,CAAC,EAAE,UAAU,CAAC;YAAC,CAAC,EAAE,UAAU,CAAA;SAAE,CAAC;KACzE,CAAC;IAKF,IAAI,EAAE;QACJ,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAC;QAC5B,MAAM,CAAC,IAAI,EAAE,UAAU,GAAG,MAAM,CAAC;KAClC,CAAC;IACF,KAAK,CAAC,GAAG,EAAE,MAAM,GAAG,UAAU,GAAG;QAAE,CAAC,EAAE,MAAM,CAAC;QAAC,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAC1D,UAAU,CAAC,GAAG,EAAE;QAAE,CAAC,EAAE,MAAM,CAAC;QAAC,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,MAAM,CAAC;CACnD,CAAC;AACF;;;;;;GAMG;AACH,eAAO,MAAM,GAAG,EAAE,IAqFjB,CAAC;AAMF,wBAAgB,iBAAiB,CAAC,CAAC,EAAE,IAAI,EAAE,eAAe,CAAC,CAAC,CAAC,GAAG,cAAc,CAAC,CAAC,CAAC,CAichF;AAGD,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAC3B,cAAc,IAAI,IAAI,CAAC;IACvB,cAAc,CAAC,QAAQ,EAAE,MAAM,GAAG,sBAAsB,CAAC;IACzD,QAAQ,IAAI,OAAO,CAAC;IACpB,UAAU,IAAI,aAAa,CAAC;IAC5B,gBAAgB,CAAC,OAAO,EAAE,GAAG,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC;IACtD,iBAAiB,IAAI,UAAU,CAAC;IAChC,YAAY,IAAI,MAAM,CAAC;IAEvB,aAAa,CAAC,YAAY,CAAC,EAAE,OAAO,GAAG,UAAU,CAAC;IAClD,QAAQ,CAAC,YAAY,CAAC,EAAE,OAAO,GAAG,MAAM,CAAC;CAC1C;AACD,MAAM,MAAM,sBAAsB,GAAG,aAAa,GAAG;IACnD,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAC;CAC3B,CAAC;AAEF,MAAM,MAAM,oBAAoB,GAAG;IACjC,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,GAAG,aAAa,CAAC;IAC1C,WAAW,CAAC,GAAG,EAAE,GAAG,GAAG,aAAa,CAAC;IACrC,OAAO,CAAC,GAAG,EAAE,GAAG,GAAG,aAAa,CAAC;CAClC,CAAC;AACF,KAAK,aAAa,GAAG;IAAE,CAAC,EAAE,MAAM,CAAC;IAAC,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC;AAE9C,MAAM,MAAM,MAAM,GAAG,GAAG,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC;AAEjD,MAAM,MAAM,SAAS,GAAG,WAAW,CAAC,MAAM,CAAC,GAAG;IAC5C,IAAI,EAAE,KAAK,CAAC;IACZ,IAAI,EAAE,UAAU,CAAC;IACjB,WAAW,EAAE,CAAC,WAAW,CAAC,EAAE,MAAM,KAAK,UAAU,CAAC;IAClD,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,QAAQ,CAAC,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,MAAM,CAAC;IACzC,aAAa,CAAC,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,MAAM,CAAC;CAC/C,CAAC;AAEF,iBAAS,YAAY,CACnB,KAAK,EAAE,SAAS,GACf,QAAQ,CAAC,SAAS,GAAG;IAAE,WAAW,EAAE,MAAM,CAAC;IAAC,UAAU,EAAE,MAAM,CAAA;CAAE,CAAC,CAgBnE;AAED,MAAM,MAAM,OAAO,GAAG;IACpB,KAAK,EAAE,UAAU,CAAC,OAAO,YAAY,CAAC,CAAC;IACvC,YAAY,EAAE,CAAC,UAAU,EAAE,OAAO,EAAE,YAAY,CAAC,EAAE,OAAO,KAAK,UAAU,CAAC;IAC1E,eAAe,EAAE,CAAC,QAAQ,EAAE,OAAO,EAAE,OAAO,EAAE,GAAG,EAAE,YAAY,CAAC,EAAE,OAAO,KAAK,UAAU,CAAC;IACzF,IAAI,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,QAAQ,KAAK,sBAAsB,CAAC;IAClF,MAAM,EAAE,CAAC,SAAS,EAAE,GAAG,GAAG,aAAa,EAAE,OAAO,EAAE,GAAG,EAAE,SAAS,EAAE,GAAG,EAAE,IAAI,CAAC,EAAE,OAAO,KAAK,OAAO,CAAC;IAClG,eAAe,EAAE,eAAe,CAAC,MAAM,CAAC,CAAC;IACzC,SAAS,EAAE,oBAAoB,CAAC;IAChC,KAAK,EAAE;QACL,sBAAsB,EAAE,CAAC,GAAG,EAAE,OAAO,KAAK,MAAM,CAAC;QACjD,iBAAiB,CAAC,UAAU,EAAE,OAAO,GAAG,OAAO,CAAC;QAChD,gBAAgB,EAAE,MAAM,UAAU,CAAC;QACnC,UAAU,EAAE,CAAC,UAAU,CAAC,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,aAAa,CAAC,MAAM,CAAC,KAAK,aAAa,CAAC,MAAM,CAAC,CAAC;KAC3F,CAAC;CACH,CAAC;AAEF;;;;;;GAMG;AACH,wBAAgB,WAAW,CAAC,QAAQ,EAAE,SAAS,GAAG,OAAO,CAyaxD;AAED;;;;;;;;GAQG;AACH,wBAAgB,cAAc,CAAC,CAAC,EAC9B,EAAE,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,EACjB,CAAC,EAAE,CAAC,GACH,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,KAAK;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,KAAK,EAAE,CAAC,CAAA;CAAE,CAmEhD;AACD;;;GAGG;AACH,wBAAgB,mBAAmB,CAAC,CAAC,EACnC,EAAE,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,EACjB,IAAI,EAAE;IACJ,CAAC,EAAE,CAAC,CAAC;IACL,CAAC,EAAE,CAAC,CAAC;IACL,CAAC,EAAE,CAAC,CAAC;CACN,GACA,CAAC,CAAC,EAAE,CAAC,KAAK;IAAE,CAAC,EAAE,CAAC,CAAC;IAAC,CAAC,EAAE,CAAC,CAAA;CAAE,CAsC1B"}
package/abstract/weierstrass.js CHANGED
@@ -1,12 +1,37 @@
1
1
  "use strict";
2
2
  Object.defineProperty(exports, "__esModule", { value: true });
3
- exports.DER = void 0;
3
+ exports.DER = exports.DERErr = void 0;
4
4
  exports.weierstrassPoints = weierstrassPoints;
5
5
  exports.weierstrass = weierstrass;
6
6
  exports.SWUFpSqrtRatio = SWUFpSqrtRatio;
7
7
  exports.mapToCurveSimpleSWU = mapToCurveSimpleSWU;
8
+ /**
9
+ * Short Weierstrass curve methods. The formula is: y² = x³ + ax + b.
10
+ *
11
+ * ### Design rationale for types
12
+ *
13
+ * * Interaction between classes from different curves should fail:
14
+ * `k256.Point.BASE.add(p256.Point.BASE)`
15
+ * * For this purpose we want to use `instanceof` operator, which is fast and works during runtime
16
+ * * Different calls of `curve()` would return different classes -
17
+ * `curve(params) !== curve(params)`: if somebody decided to monkey-patch their curve,
18
+ * it won't affect others
19
+ *
20
+ * TypeScript can't infer types for classes created inside a function. Classes is one instance
21
+ * of nominative types in TypeScript and interfaces only check for shape, so it's hard to create
22
+ * unique type for every function call.
23
+ *
24
+ * We can use generic types via some param, like curve opts, but that would:
25
+ * 1. Enable interaction between `curve(params)` and `curve(params)` (curves of same params)
26
+ * which is hard to debug.
27
+ * 2. Params can be generic and we can't enforce them to be constant value:
28
+ * if somebody creates curve from non-constant params,
29
+ * it would be allowed to interact with other curves with non-constant params
30
+ *
31
+ * @todo https://www.typescriptlang.org/docs/handbook/release-notes/typescript-2-7.html#unique-symbol
32
+ * @module
33
+ */
8
34
  /*! noble-curves - MIT License (c) 2022 Paul Miller (paulmillr.com) */
9
- // Short Weierstrass curve. The formula is: y² = x³ + ax + b
10
35
  const curve_js_1 = require("./curve.js");
11
36
  const mod = require("./modular.js");
12
37
  const ut = require("./utils.js");
@@ -34,17 +59,23 @@ function validatePointOpts(curve) {
34
59
  const { endo, Fp, a } = opts;
35
60
  if (endo) {
36
61
  if (!Fp.eql(a, Fp.ZERO)) {
37
- throw new Error('Endomorphism can only be defined for Koblitz curves that have a=0');
62
+ throw new Error('invalid endomorphism, can only be defined for Koblitz curves that have a=0');
38
63
  }
39
64
  if (typeof endo !== 'object' ||
40
65
  typeof endo.beta !== 'bigint' ||
41
66
  typeof endo.splitScalar !== 'function') {
42
- throw new Error('Expected endomorphism with beta: bigint and splitScalar: function');
67
+ throw new Error('invalid endomorphism, expected beta: bigint and splitScalar: function');
43
68
  }
44
69
  }
45
70
  return Object.freeze({ ...opts });
46
71
  }
47
72
  const { bytesToNumberBE: b2n, hexToBytes: h2b } = ut;
73
+ class DERErr extends Error {
74
+ constructor(m = '') {
75
+ super(m);
76
+ }
77
+ }
78
+ exports.DERErr = DERErr;
48
79
  /**
49
80
  * ASN.1 DER encoding utilities. ASN is very complex & fragile. Format:
50
81
  *
@@ -54,11 +85,7 @@ const { bytesToNumberBE: b2n, hexToBytes: h2b } = ut;
54
85
  */
55
86
  exports.DER = {
56
87
  // asn.1 DER encoding utils
57
- Err: class DERErr extends Error {
58
- constructor(m = '') {
59
- super(m);
60
- }
61
- },
88
+ Err: DERErr,
62
89
  // Basic building block is TLV (Tag-Length-Value)
63
90
  _tlv: {
64
91
  encode: (tag, data) => {
@@ -73,7 +100,8 @@ exports.DER = {
73
100
  throw new E('tlv.encode: long form length too big');
74
101
  // length of length with long form flag
75
102
  const lenLen = dataLen > 127 ? ut.numberToHexUnpadded((len.length / 2) | 128) : '';
76
- return `${ut.numberToHexUnpadded(tag)}${lenLen}${len}${data}`;
103
+ const t = ut.numberToHexUnpadded(tag);
104
+ return t + lenLen + len + data;
77
105
  },
78
106
  // v - value, l - left bytes (unparsed)
79
107
  decode(tag, data) {
@@ -126,15 +154,15 @@ exports.DER = {
126
154
  if (Number.parseInt(hex[0], 16) & 0b1000)
127
155
  hex = '00' + hex;
128
156
  if (hex.length & 1)
129
- throw new E('unexpected assertion');
157
+ throw new E('unexpected DER parsing assertion: unpadded hex');
130
158
  return hex;
131
159
  },
132
160
  decode(data) {
133
161
  const { Err: E } = exports.DER;
134
162
  if (data[0] & 128)
135
- throw new E('Invalid signature integer: negative');
163
+ throw new E('invalid signature integer: negative');
136
164
  if (data[0] === 0x00 && !(data[1] & 128))
137
- throw new E('Invalid signature integer: unnecessary leading zero');
165
+ throw new E('invalid signature integer: unnecessary leading zero');
138
166
  return b2n(data);
139
167
  },
140
168
  },
@@ -145,16 +173,18 @@ exports.DER = {
145
173
  ut.abytes(data);
146
174
  const { v: seqBytes, l: seqLeftBytes } = tlv.decode(0x30, data);
147
175
  if (seqLeftBytes.length)
148
- throw new E('Invalid signature: left bytes after parsing');
176
+ throw new E('invalid signature: left bytes after parsing');
149
177
  const { v: rBytes, l: rLeftBytes } = tlv.decode(0x02, seqBytes);
150
178
  const { v: sBytes, l: sLeftBytes } = tlv.decode(0x02, rLeftBytes);
151
179
  if (sLeftBytes.length)
152
- throw new E('Invalid signature: left bytes after parsing');
180
+ throw new E('invalid signature: left bytes after parsing');
153
181
  return { r: int.decode(rBytes), s: int.decode(sBytes) };
154
182
  },
155
183
  hexFromSig(sig) {
156
184
  const { _tlv: tlv, _int: int } = exports.DER;
157
- const seq = `${tlv.encode(0x02, int.encode(sig.r))}${tlv.encode(0x02, int.encode(sig.s))}`;
185
+ const rs = tlv.encode(0x02, int.encode(sig.r));
186
+ const ss = tlv.encode(0x02, int.encode(sig.s));
187
+ const seq = rs + ss;
158
188
  return tlv.encode(0x30, seq);
159
189
  },
160
190
  };
@@ -208,7 +238,7 @@ function weierstrassPoints(opts) {
208
238
  key = ut.bytesToHex(key);
209
239
  // Normalize to hex string, pad. E.g. P521 would norm 130-132 char hex to 132-char bytes
210
240
  if (typeof key !== 'string' || !lengths.includes(key.length))
211
- throw new Error('Invalid key');
241
+ throw new Error('invalid private key');
212
242
  key = key.padStart(nByteLength * 2, '0');
213
243
  }
214
244
  let num;
@@ -219,7 +249,7 @@ function weierstrassPoints(opts) {
219
249
  : ut.bytesToNumberBE((0, utils_js_1.ensureBytes)('private key', key, nByteLength));
220
250
  }
221
251
  catch (error) {
222
- throw new Error(`private key must be ${nByteLength} bytes, hex or bigint, not ${typeof key}`);
252
+ throw new Error('invalid private key, expected hex or ' + nByteLength + ' bytes, got ' + typeof key);
223
253
  }
224
254
  if (wrapPrivateKey)
225
255
  num = mod.mod(num, N); // disabled by default, enabled for BLS
@@ -259,7 +289,7 @@ function weierstrassPoints(opts) {
259
289
  if (p.is0()) {
260
290
  // (0, 1, 0) aka ZERO is invalid in most contexts.
261
291
  // In BLS, ZERO can be serialized, so we allow it.
262
- // (0, 0, 0) is wrong representation of ZERO and is always invalid.
292
+ // (0, 0, 0) is invalid representation of ZERO.
263
293
  if (CURVE.allowInfinityPoint && !Fp.is0(p.py))
264
294
  return;
265
295
  throw new Error('bad point: ZERO');
@@ -483,16 +513,17 @@ function weierstrassPoints(opts) {
483
513
  * an exposed private key e.g. sig verification, which works over *public* keys.
484
514
  */
485
515
  multiplyUnsafe(sc) {
486
- ut.aInRange('scalar', sc, _0n, CURVE.n);
516
+ const { endo, n: N } = CURVE;
517
+ ut.aInRange('scalar', sc, _0n, N);
487
518
  const I = Point.ZERO;
488
519
  if (sc === _0n)
489
520
  return I;
490
- if (sc === _1n)
521
+ if (this.is0() || sc === _1n)
491
522
  return this;
492
- const { endo } = CURVE;
493
- if (!endo)
494
- return wnaf.unsafeLadder(this, sc);
495
- // Apply endomorphism
523
+ // Case a: no endomorphism. Case b: has precomputes.
524
+ if (!endo || wnaf.hasPrecomputes(this))
525
+ return wnaf.wNAFCachedUnsafe(this, sc, Point.normalizeZ);
526
+ // Case c: endomorphism
496
527
  let { k1neg, k1, k2neg, k2 } = endo.splitScalar(sc);
497
528
  let k1p = I;
498
529
  let k2p = I;
@@ -678,7 +709,9 @@ function weierstrass(curveDef) {
678
709
  return { x, y };
679
710
  }
680
711
  else {
681
- throw new Error(`Point of length ${len} was invalid. Expected ${compressedLen} compressed bytes or ${uncompressedLen} uncompressed bytes`);
712
+ const cl = compressedLen;
713
+ const ul = uncompressedLen;
714
+ throw new Error('invalid Point, expected length of ' + cl + ', or uncompressed ' + ul + ', got ' + len);
682
715
  }
683
716
  },
684
717
  });
@@ -843,6 +876,9 @@ function weierstrass(curveDef) {
843
876
  // int2octets can't be used; pads small msgs with 0: unacceptatble for trunc as per RFC vectors
844
877
  const bits2int = CURVE.bits2int ||
845
878
  function (bytes) {
879
+ // Our custom check "just in case"
880
+ if (bytes.length > 8192)
881
+ throw new Error('input is too large');
846
882
  // For curves with nBitLength % 8 !== 0: bits2octets(bits2octets(m)) !== bits2octets(m)
847
883
  // for some cases, since bytes.length * 8 is not actual bitLength.
848
884
  const num = ut.bytesToNumberBE(bytes); // check for == u8 done here
@@ -859,15 +895,15 @@ function weierstrass(curveDef) {
859
895
  * Converts to bytes. Checks if num in `[0..ORDER_MASK-1]` e.g.: `[0..2^256-1]`.
860
896
  */
861
897
  function int2octets(num) {
862
- ut.aInRange(`num < 2^${CURVE.nBitLength}`, num, _0n, ORDER_MASK);
898
+ ut.aInRange('num < 2^' + CURVE.nBitLength, num, _0n, ORDER_MASK);
863
899
  // works with order, can have different size than numToField!
864
900
  return ut.numberToBytesBE(num, CURVE.nByteLength);
865
901
  }
866
902
  // Steps A, D of RFC6979 3.2
867
903
  // Creates RFC6979 seed; converts msg/privKey to numbers.
868
904
  // Used only in sign, not in verify.
869
- // NOTE: we cannot assume here that msgHash has same amount of bytes as curve order, this will be wrong at least for P521.
870
- // Also it can be bigger for P224 + SHA256
905
+ // NOTE: we cannot assume here that msgHash has same amount of bytes as curve order,
906
+ // this will be invalid at least for P521. Also it can be bigger for P224 + SHA256
871
907
  function prepSig(msgHash, privateKey, opts = defaultSigOpts) {
872
908
  if (['recovered', 'canonical'].some((k) => k in opts))
873
909
  throw new Error('sign() legacy options not supported');
@@ -961,39 +997,48 @@ function weierstrass(curveDef) {
961
997
  const sg = signature;
962
998
  msgHash = (0, utils_js_1.ensureBytes)('msgHash', msgHash);
963
999
  publicKey = (0, utils_js_1.ensureBytes)('publicKey', publicKey);
1000
+ const { lowS, prehash, format } = opts;
1001
+ // Verify opts, deduce signature format
1002
+ validateSigVerOpts(opts);
964
1003
  if ('strict' in opts)
965
1004
  throw new Error('options.strict was renamed to lowS');
966
- validateSigVerOpts(opts);
967
- const { lowS, prehash } = opts;
1005
+ if (format !== undefined && format !== 'compact' && format !== 'der')
1006
+ throw new Error('format must be compact or der');
1007
+ const isHex = typeof sg === 'string' || ut.isBytes(sg);
1008
+ const isObj = !isHex &&
1009
+ !format &&
1010
+ typeof sg === 'object' &&
1011
+ sg !== null &&
1012
+ typeof sg.r === 'bigint' &&
1013
+ typeof sg.s === 'bigint';
1014
+ if (!isHex && !isObj)
1015
+ throw new Error('invalid signature, expected Uint8Array, hex string or Signature instance');
968
1016
  let _sig = undefined;
969
1017
  let P;
970
1018
  try {
971
- if (typeof sg === 'string' || ut.isBytes(sg)) {
1019
+ if (isObj)
1020
+ _sig = new Signature(sg.r, sg.s);
1021
+ if (isHex) {
972
1022
  // Signature can be represented in 2 ways: compact (2*nByteLength) & DER (variable-length).
973
1023
  // Since DER can also be 2*nByteLength bytes, we check for it first.
974
1024
  try {
975
- _sig = Signature.fromDER(sg);
1025
+ if (format !== 'compact')
1026
+ _sig = Signature.fromDER(sg);
976
1027
  }
977
1028
  catch (derError) {
978
1029
  if (!(derError instanceof exports.DER.Err))
979
1030
  throw derError;
980
- _sig = Signature.fromCompact(sg);
981
1031
  }
982
- }
983
- else if (typeof sg === 'object' && typeof sg.r === 'bigint' && typeof sg.s === 'bigint') {
984
- const { r, s } = sg;
985
- _sig = new Signature(r, s);
986
- }
987
- else {
988
- throw new Error('PARSE');
1032
+ if (!_sig && format !== 'der')
1033
+ _sig = Signature.fromCompact(sg);
989
1034
  }
990
1035
  P = Point.fromHex(publicKey);
991
1036
  }
992
1037
  catch (error) {
993
- if (error.message === 'PARSE')
994
- throw new Error(`signature must be Signature instance, Uint8Array or hex string`);
995
1038
  return false;
996
1039
  }
1040
+ if (!_sig)
1041
+ return false;
997
1042
  if (lowS && _sig.hasHighS())
998
1043
  return false;
999
1044
  if (prehash)