@noble/curves 2.0.1 → 2.2.0

package/abstract/weierstrass.d.ts

@@ -1,6 +1,7 @@
-import { type CHash } from '../utils.ts';
+import { type CHash, type HmacFn, type TArg, type TRet } from '../utils.ts';
 import { type AffinePoint, type CurveLengths, type CurvePoint, type CurvePointCons } from './curve.ts';
 import { type IField } from './modular.ts';
+/** Shared affine point shape used by Weierstrass helpers. */
 export type { AffinePoint };
 type EndoBasis = [[bigint, bigint], [bigint, bigint]];
 /**
@@ -24,11 +25,17 @@ type EndoBasis = [[bigint, bigint], [bigint, bigint]];
  *   Gauss lattice reduction calculates them from initial basis vectors `(n, 0), (-λ, 0)`
  *
  * Check out `test/misc/endomorphism.js` and
- * [gist](https://gist.github.com/paulmillr/eb670806793e84df628a7c434a873066).
+ * {@link https://gist.github.com/paulmillr/eb670806793e84df628a7c434a873066 | this endomorphism gist}.
  */
 export type EndomorphismOpts = {
+    /** Cube root of unity used by the GLV endomorphism. */
     beta: bigint;
+    /** Reduced lattice basis used for scalar splitting. */
     basises?: EndoBasis;
+    /**
+     * Optional custom scalar-splitting helper.
+     * Receives one scalar and returns two half-sized scalar components.
+     */
     splitScalar?: (k: bigint) => {
         k1neg: boolean;
         k1: bigint;
@@ -36,15 +43,18 @@ export type EndomorphismOpts = {
         k2: bigint;
     };
 };
+/** Two half-sized scalar components returned by endomorphism splitting. */
 export type ScalarEndoParts = {
+    /** Whether the first split scalar should be negated. */
     k1neg: boolean;
+    /** Absolute value of the first split scalar. */
     k1: bigint;
+    /** Whether the second split scalar should be negated. */
     k2neg: boolean;
+    /** Absolute value of the second split scalar. */
     k2: bigint;
 };
-/**
- * Splits scalar for GLV endomorphism.
- */
+/** Splits scalar for GLV endomorphism. */
 export declare function _splitEndoScalar(k: bigint, basis: EndoBasis, n: bigint): ScalarEndoParts;
 /**
  * Option to enable hedged signatures with improved security.
@@ -60,7 +70,7 @@ export declare function _splitEndoScalar(k: bigint, basis: EndoBasis, n: bigint)
  * * `false` means "disable extra entropy, use purely deterministic k"
  * * `Uint8Array` passed means "incorporate following data into k generation"
  *
- * https://paulmillr.com/posts/deterministic-signatures/
+ * See {@link https://paulmillr.com/posts/deterministic-signatures/ | deterministic signatures}.
  */
 export type ECDSAExtraEntropy = boolean | Uint8Array;
 /**
@@ -74,39 +84,48 @@ export type ECDSASignatureFormat = 'compact' | 'recovered' | 'der';
  *   When a custom hash is used, it must be set to `false`.
  */
 export type ECDSARecoverOpts = {
+    /** Whether to hash the message before signature recovery. */
     prehash?: boolean;
 };
 /**
  * - `prehash`: (default: true) indicates whether to do sha256(message).
  *   When a custom hash is used, it must be set to `false`.
- * - `lowS`: (default: true) prohibits signatures which have (sig.s >= CURVE.n/2n).
+ * - `lowS`: (default: true) prohibits signatures with `sig.s >= CURVE.n/2n`.
  *   Compatible with BTC/ETH. Setting `lowS: false` allows to create malleable signatures,
  *   which is default openssl behavior.
  *   Non-malleable signatures can still be successfully verified in openssl.
  * - `format`: (default: 'compact') 'compact' or 'recovered' with recovery byte
  */
 export type ECDSAVerifyOpts = {
+    /** Whether to hash the message before verification. */
     prehash?: boolean;
+    /** Whether to reject high-S signatures. */
     lowS?: boolean;
+    /** Signature encoding to accept. */
     format?: ECDSASignatureFormat;
 };
 /**
  * - `prehash`: (default: true) indicates whether to do sha256(message).
  *   When a custom hash is used, it must be set to `false`.
- * - `lowS`: (default: true) prohibits signatures which have (sig.s >= CURVE.n/2n).
+ * - `lowS`: (default: true) prohibits signatures with `sig.s >= CURVE.n/2n`.
  *   Compatible with BTC/ETH. Setting `lowS: false` allows to create malleable signatures,
  *   which is default openssl behavior.
  *   Non-malleable signatures can still be successfully verified in openssl.
  * - `format`: (default: 'compact') 'compact' or 'recovered' with recovery byte
- * - `extraEntropy`: (default: false) creates sigs with increased security, see {@link ECDSAExtraEntropy}
+ * - `extraEntropy`: (default: false) creates signatures with increased
+ *   security, see {@link ECDSAExtraEntropy}
  */
 export type ECDSASignOpts = {
+    /** Whether to hash the message before signing. */
     prehash?: boolean;
+    /** Whether to normalize signatures into the low-S half-order. */
     lowS?: boolean;
+    /** Signature encoding to produce. */
     format?: ECDSASignatureFormat;
+    /** Optional hedging input for deterministic k generation. */
     extraEntropy?: ECDSAExtraEntropy;
 };
-/** Instance methods for 3D XYZ projective points. */
+/** Projective XYZ point used by short Weierstrass curves. */
 export interface WeierstrassPoint<T> extends CurvePoint<T, WeierstrassPoint<T>> {
     /** projective X coordinate. Different from affine x. */
     readonly X: T;
@@ -118,14 +137,27 @@ export interface WeierstrassPoint<T> extends CurvePoint<T, WeierstrassPoint<T>>
     get x(): T;
     /** affine y coordinate. Different from projective Y. */
     get y(): T;
-    /** Encodes point using IEEE P1363 (DER) encoding. First byte is 2/3/4. Default = isCompressed. */
-    toBytes(isCompressed?: boolean): Uint8Array;
+    /**
+     * Encode the point into compressed or uncompressed SEC1 bytes.
+     * @param isCompressed - Whether to use the compressed form.
+     * @returns Encoded point bytes.
+     */
+    toBytes(isCompressed?: boolean): TRet<Uint8Array>;
+    /**
+     * Encode the point into compressed or uncompressed SEC1 hex.
+     * @param isCompressed - Whether to use the compressed form.
+     * @returns Encoded point hex.
+     */
     toHex(isCompressed?: boolean): string;
 }
-/** Static methods for 3D XYZ projective points. */
+/** Constructor and metadata helpers for Weierstrass points. */
 export interface WeierstrassPointCons<T> extends CurvePointCons<WeierstrassPoint<T>> {
     /** Does NOT validate if the point is valid. Use `.assertValidity()`. */
     new (X: T, Y: T, Z: T): WeierstrassPoint<T>;
+    /**
+     * Return the curve parameters captured by this point constructor.
+     * @returns Curve parameters.
+     */
     CURVE(): WeierstrassOpts<T>;
 }
 /**
@@ -140,56 +172,108 @@ export interface WeierstrassPointCons<T> extends CurvePointCons<WeierstrassPoint
  * * Gy: y coordinate of generator point
  */
 export type WeierstrassOpts<T> = Readonly<{
+    /** Base-field modulus. */
     p: bigint;
+    /** Prime subgroup order. */
     n: bigint;
+    /** Curve cofactor. */
     h: bigint;
+    /** Weierstrass curve parameter `a`. */
     a: T;
+    /** Weierstrass curve parameter `b`. */
     b: T;
+    /** Generator x coordinate. */
     Gx: T;
+    /** Generator y coordinate. */
     Gy: T;
 }>;
+/**
+ * Optional helpers and overrides for a Weierstrass point constructor.
+ *
+ * When a cofactor != 1, there can be effective methods to:
+ * 1. Determine whether a point is torsion-free
+ * 2. Clear torsion component
+ */
 export type WeierstrassExtraOpts<T> = Partial<{
+    /** Optional base-field override. */
     Fp: IField<T>;
+    /** Optional scalar-field override. */
     Fn: IField<bigint>;
+    /** Whether the point constructor accepts infinity points. */
     allowInfinityPoint: boolean;
+    /** Optional GLV endomorphism data. */
     endo: EndomorphismOpts;
+    /** Optional torsion-check override. */
     isTorsionFree: (c: WeierstrassPointCons<T>, point: WeierstrassPoint<T>) => boolean;
+    /** Optional cofactor-clearing override. */
     clearCofactor: (c: WeierstrassPointCons<T>, point: WeierstrassPoint<T>) => WeierstrassPoint<T>;
-    fromBytes: (bytes: Uint8Array) => AffinePoint<T>;
-    toBytes: (c: WeierstrassPointCons<T>, point: WeierstrassPoint<T>, isCompressed: boolean) => Uint8Array;
+    /** Optional custom point decoder. */
+    fromBytes: (bytes: TArg<Uint8Array>) => AffinePoint<T>;
+    /** Optional custom point encoder. */
+    toBytes: (c: WeierstrassPointCons<T>, point: WeierstrassPoint<T>, isCompressed: boolean) => TRet<Uint8Array>;
 }>;
 /**
  * Options for ECDSA signatures over a Weierstrass curve.
  *
- * * lowS: (default: true) whether produced / verified signatures occupy low half of ecdsaOpts.p. Prevents malleability.
+ * * lowS: (default: true) whether produced or verified signatures occupy the
+ *   low half of `ecdsaOpts.n`. Prevents malleability.
  * * hmac: (default: noble-hashes hmac) function, would be used to init hmac-drbg for k generation.
  * * randomBytes: (default: webcrypto os-level CSPRNG) custom method for fetching secure randomness.
- * * bits2int, bits2int_modN: used in sigs, sometimes overridden by curves
+ * * bits2int, bits2int_modN: used in sigs, sometimes overridden by curves. Custom hooks are
+ *   treated as pure functions over validated bytes and MUST NOT mutate caller-owned buffers or
+ *   closure-captured option bags. `bits2int_modN` must also return a canonical scalar in
+ *   `[0..Point.Fn.ORDER-1]`.
  */
 export type ECDSAOpts = Partial<{
+    /** Default low-S policy for this ECDSA instance. */
     lowS: boolean;
-    hmac: (key: Uint8Array, message: Uint8Array) => Uint8Array;
-    randomBytes: (bytesLength?: number) => Uint8Array;
-    bits2int: (bytes: Uint8Array) => bigint;
-    bits2int_modN: (bytes: Uint8Array) => bigint;
+    /** HMAC implementation used by RFC6979 DRBG. */
+    hmac: HmacFn;
+    /** RNG override used by helper constructors. */
+    randomBytes: (bytesLength?: number) => TRet<Uint8Array>;
+    /** Hash-to-integer conversion override. */
+    bits2int: (bytes: TArg<Uint8Array>) => bigint;
+    /** Hash-to-integer-mod-n conversion override. Returns a canonical scalar in `[0..Fn.ORDER-1]`. */
+    bits2int_modN: (bytes: TArg<Uint8Array>) => bigint;
 }>;
-/**
- * Elliptic Curve Diffie-Hellman interface.
- * Provides keygen, secret-to-public conversion, calculating shared secrets.
- */
+/** Elliptic Curve Diffie-Hellman helper namespace. */
 export interface ECDH {
-    keygen: (seed?: Uint8Array) => {
-        secretKey: Uint8Array;
-        publicKey: Uint8Array;
+    /**
+     * Generate a secret/public key pair.
+     * @param seed - Optional seed material.
+     * @returns Secret/public key pair.
+     */
+    keygen: (seed?: TArg<Uint8Array>) => {
+        secretKey: TRet<Uint8Array>;
+        publicKey: TRet<Uint8Array>;
     };
-    getPublicKey: (secretKey: Uint8Array, isCompressed?: boolean) => Uint8Array;
-    getSharedSecret: (secretKeyA: Uint8Array, publicKeyB: Uint8Array, isCompressed?: boolean) => Uint8Array;
+    /**
+     * Derive the public key from a secret key.
+     * @param secretKey - Secret key bytes.
+     * @param isCompressed - Whether to emit compressed SEC1 bytes.
+     * @returns Encoded public key.
+     */
+    getPublicKey: (secretKey: TArg<Uint8Array>, isCompressed?: boolean) => TRet<Uint8Array>;
+    /**
+     * Compute the shared secret point from a secret key and peer public key.
+     * @param secretKeyA - Local secret key bytes.
+     * @param publicKeyB - Peer public key bytes.
+     * @param isCompressed - Whether to emit compressed SEC1 bytes.
+     * @returns Encoded shared point.
+     */
+    getSharedSecret: (secretKeyA: TArg<Uint8Array>, publicKeyB: TArg<Uint8Array>, isCompressed?: boolean) => TRet<Uint8Array>;
+    /** Point constructor used by this ECDH instance. */
     Point: WeierstrassPointCons<bigint>;
+    /** Validation and random-key helpers. */
     utils: {
-        isValidSecretKey: (secretKey: Uint8Array) => boolean;
-        isValidPublicKey: (publicKey: Uint8Array, isCompressed?: boolean) => boolean;
-        randomSecretKey: (seed?: Uint8Array) => Uint8Array;
+        /** Check whether a secret key has the expected encoding. */
+        isValidSecretKey: (secretKey: TArg<Uint8Array>) => boolean;
+        /** Check whether a public key decodes to a valid point. */
+        isValidPublicKey: (publicKey: TArg<Uint8Array>, isCompressed?: boolean) => boolean;
+        /** Generate a valid random secret key. */
+        randomSecretKey: (seed?: TArg<Uint8Array>) => TRet<Uint8Array>;
     };
+    /** Byte lengths for keys and signatures exposed by this curve. */
     lengths: CurveLengths;
 }
 /**
@@ -197,31 +281,103 @@ export interface ECDH {
  * Only supported for prime fields, not Fp2 (extension fields).
  */
 export interface ECDSA extends ECDH {
-    sign: (message: Uint8Array, secretKey: Uint8Array, opts?: ECDSASignOpts) => Uint8Array;
-    verify: (signature: Uint8Array, message: Uint8Array, publicKey: Uint8Array, opts?: ECDSAVerifyOpts) => boolean;
-    recoverPublicKey(signature: Uint8Array, message: Uint8Array, opts?: ECDSARecoverOpts): Uint8Array;
+    /**
+     * Sign a message with the given secret key.
+     * @param message - Message bytes.
+     * @param secretKey - Secret key bytes.
+     * @param opts - Optional signing tweaks. See {@link ECDSASignOpts}.
+     * @returns Encoded signature bytes.
+     */
+    sign: (message: TArg<Uint8Array>, secretKey: TArg<Uint8Array>, opts?: TArg<ECDSASignOpts>) => TRet<Uint8Array>;
+    /**
+     * Verify a signature against a message and public key.
+     * @param signature - Encoded signature bytes.
+     * @param message - Message bytes.
+     * @param publicKey - Encoded public key.
+     * @param opts - Optional verification tweaks. See {@link ECDSAVerifyOpts}.
+     * @returns Whether the signature is valid.
+     */
+    verify: (signature: TArg<Uint8Array>, message: TArg<Uint8Array>, publicKey: TArg<Uint8Array>, opts?: TArg<ECDSAVerifyOpts>) => boolean;
+    /**
+     * Recover the public key encoded into a recoverable signature.
+     * @param signature - Recoverable signature bytes.
+     * @param message - Message bytes.
+     * @param opts - Optional recovery tweaks. See {@link ECDSARecoverOpts}.
+     * @returns Encoded recovered public key.
+     */
+    recoverPublicKey(signature: TArg<Uint8Array>, message: TArg<Uint8Array>, opts?: TArg<ECDSARecoverOpts>): TRet<Uint8Array>;
+    /** Signature constructor and parser helpers. */
     Signature: ECDSASignatureCons;
 }
+/**
+ * @param m - Error message.
+ * @example
+ * Throw a DER-specific error when signature parsing encounters invalid bytes.
+ *
+ * ```ts
+ * new DERErr('bad der');
+ * ```
+ */
 export declare class DERErr extends Error {
     constructor(m?: string);
 }
+/** DER helper namespace used by ECDSA signature parsing and encoding. */
 export type IDER = {
+    /**
+     * DER-specific error constructor.
+     * @param m - Error message.
+     * @returns DER-specific error instance.
+     */
     Err: typeof DERErr;
+    /** Low-level tag-length-value helpers used by DER encoders. */
     _tlv: {
+        /**
+         * Encode one TLV record.
+         * @param tag - ASN.1 tag byte.
+         * @param data - Hex-encoded value payload.
+         * @returns Encoded TLV string.
+         */
         encode: (tag: number, data: string) => string;
-        decode(tag: number, data: Uint8Array): {
+        /**
+         * Decode one TLV record and return the value plus leftover bytes.
+         * @param tag - Expected ASN.1 tag byte.
+         * @param data - Remaining DER bytes.
+         * @returns Parsed value plus leftover bytes.
+         */
+        decode(tag: number, data: TArg<Uint8Array>): TRet<{
             v: Uint8Array;
             l: Uint8Array;
-        };
+        }>;
     };
+    /** Positive-integer DER helpers used by ECDSA signature encoding. */
     _int: {
+        /**
+         * Encode one positive bigint as a DER INTEGER.
+         * @param num - Positive integer to encode.
+         * @returns Encoded DER INTEGER.
+         */
         encode(num: bigint): string;
-        decode(data: Uint8Array): bigint;
+        /**
+         * Decode one DER INTEGER into a bigint.
+         * @param data - DER INTEGER bytes.
+         * @returns Decoded bigint.
+         */
+        decode(data: TArg<Uint8Array>): bigint;
     };
-    toSig(hex: string | Uint8Array): {
+    /**
+     * Parse a DER signature into `{ r, s }`.
+     * @param bytes - DER signature bytes.
+     * @returns Parsed signature components.
+     */
+    toSig(bytes: TArg<Uint8Array>): {
         r: bigint;
         s: bigint;
     };
+    /**
+     * Encode `{ r, s }` as a DER signature.
+     * @param sig - Signature components.
+     * @returns DER-encoded signature hex.
+     */
     hexFromSig(sig: {
         r: bigint;
         s: bigint;
@@ -232,46 +388,99 @@ export type IDER = {
  *
  *     [0x30 (SEQUENCE), bytelength, 0x02 (INTEGER), intLength, R, 0x02 (INTEGER), intLength, S]
  *
- * Docs: https://letsencrypt.org/docs/a-warm-welcome-to-asn1-and-der/, https://luca.ntop.org/Teaching/Appunti/asn1.html
+ * Docs: {@link https://letsencrypt.org/docs/a-warm-welcome-to-asn1-and-der/ | Let's Encrypt ASN.1 guide} and
+ * {@link https://luca.ntop.org/Teaching/Appunti/asn1.html | Luca Deri's ASN.1 notes}.
+ * @example
+ * ASN.1 DER encoding utilities.
+ *
+ * ```ts
+ * const der = DER.hexFromSig({ r: 1n, s: 2n });
+ * ```
  */
 export declare const DER: IDER;
 /**
  * Creates weierstrass Point constructor, based on specified curve options.
  *
  * See {@link WeierstrassOpts}.
+ * @param params - Curve parameters. See {@link WeierstrassOpts}.
+ * @param extraOpts - Optional helpers and overrides. See {@link WeierstrassExtraOpts}.
+ * @returns Weierstrass point constructor.
+ * @throws If the curve parameters, overrides, or point codecs are invalid. {@link Error}
  *
  * @example
-```js
-const opts = {
-  p: 0xfffffffffffffffffffffffffffffffeffffac73n,
-  n: 0x100000000000000000001b8fa16dfab9aca16b6b3n,
-  h: 1n,
-  a: 0n,
-  b: 7n,
-  Gx: 0x3b4c382ce37aa192a4019e763036f4f5dd4d7ebbn,
-  Gy: 0x938cf935318fdced6bc28286531733c3f03c4feen,
-};
-const secp160k1_Point = weierstrass(opts);
-```
+ * Construct a point type from explicit Weierstrass curve parameters.
+ *
+ * ```js
+ * const opts = {
+ *   p: 0xfffffffffffffffffffffffffffffffeffffac73n,
+ *   n: 0x100000000000000000001b8fa16dfab9aca16b6b3n,
+ *   h: 1n,
+ *   a: 0n,
+ *   b: 7n,
+ *   Gx: 0x3b4c382ce37aa192a4019e763036f4f5dd4d7ebbn,
+ *   Gy: 0x938cf935318fdced6bc28286531733c3f03c4feen,
+ * };
+ * const secp160k1_Point = weierstrass(opts);
+ * ```
  */
 export declare function weierstrass<T>(params: WeierstrassOpts<T>, extraOpts?: WeierstrassExtraOpts<T>): WeierstrassPointCons<T>;
-/** Methods of ECDSA signature instance. */
+/** Parsed ECDSA signature with helpers for recovery and re-encoding. */
 export interface ECDSASignature {
+    /** Signature component `r`. */
     readonly r: bigint;
+    /** Signature component `s`. */
     readonly s: bigint;
+    /** Optional recovery bit for recoverable signatures. */
     readonly recovery?: number;
+    /**
+     * Return a copy of the signature with a recovery bit attached.
+     * @param recovery - Recovery bit to attach.
+     * @returns Signature with an attached recovery bit.
+     */
     addRecoveryBit(recovery: number): ECDSASignature & {
         readonly recovery: number;
     };
+    /**
+     * Check whether the signature uses the high-S half-order.
+     * @returns Whether the signature uses the high-S half-order.
+     */
     hasHighS(): boolean;
-    recoverPublicKey(messageHash: Uint8Array): WeierstrassPoint<bigint>;
-    toBytes(format?: string): Uint8Array;
+    /**
+     * Recover the public key from the hashed message and recovery bit.
+     * @param messageHash - Hashed message bytes.
+     * @returns Recovered public-key point.
+     */
+    recoverPublicKey(messageHash: TArg<Uint8Array>): WeierstrassPoint<bigint>;
+    /**
+     * Encode the signature into bytes.
+     * @param format - Signature encoding to produce.
+     * @returns Encoded signature bytes.
+     */
+    toBytes(format?: string): TRet<Uint8Array>;
+    /**
+     * Encode the signature into hex.
+     * @param format - Signature encoding to produce.
+     * @returns Encoded signature hex.
+     */
     toHex(format?: string): string;
 }
-/** Methods of ECDSA signature constructor. */
+/** Constructor and decoding helpers for ECDSA signatures. */
 export type ECDSASignatureCons = {
+    /** Create a signature from `r`, `s`, and an optional recovery bit. */
     new (r: bigint, s: bigint, recovery?: number): ECDSASignature;
-    fromBytes(bytes: Uint8Array, format?: ECDSASignatureFormat): ECDSASignature;
+    /**
+     * Decode a signature from bytes.
+     * @param bytes - Encoded signature bytes.
+     * @param format - Signature encoding to parse.
+     * @returns Parsed signature.
+     */
+    fromBytes(bytes: TArg<Uint8Array>, format?: ECDSASignatureFormat): ECDSASignature;
+    /**
+     * Decode a signature from hex.
+     * @param hex - Encoded signature hex.
+     * @param format - Signature encoding to parse.
+     * @returns Parsed signature.
+     */
     fromHex(hex: string, format?: ECDSASignatureFormat): ECDSASignature;
 };
 /**
@@ -279,19 +488,47 @@ export type ECDSASignatureCons = {
  * TODO: check if there is a way to merge this with uvRatio in Edwards; move to modular.
  * b = True and y = sqrt(u / v) if (u / v) is square in F, and
  * b = False and y = sqrt(Z * (u / v)) otherwise.
- * @param Fp
- * @param Z
- * @returns
+ * RFC 9380 expects callers to provide `v != 0`; this helper does not enforce it.
+ * @param Fp - Field implementation.
+ * @param Z - Simplified SWU map parameter.
+ * @returns Square-root ratio helper.
+ * @example
+ * Build the square-root ratio helper used by SWU map implementations.
+ *
+ * ```ts
+ * import { SWUFpSqrtRatio } from '@noble/curves/abstract/weierstrass.js';
+ * import { Field } from '@noble/curves/abstract/modular.js';
+ * const Fp = Field(17n);
+ * const sqrtRatio = SWUFpSqrtRatio(Fp, 3n);
+ * const out = sqrtRatio(4n, 1n);
+ * ```
  */
-export declare function SWUFpSqrtRatio<T>(Fp: IField<T>, Z: T): (u: T, v: T) => {
+export declare function SWUFpSqrtRatio<T>(Fp: TArg<IField<T>>, Z: T): (u: T, v: T) => {
     isValid: boolean;
     value: T;
 };
 /**
  * Simplified Shallue-van de Woestijne-Ulas Method
- * https://www.rfc-editor.org/rfc/rfc9380#section-6.6.2
+ * See {@link https://www.rfc-editor.org/rfc/rfc9380#section-6.6.2 | RFC 9380 section 6.6.2}.
+ * @param Fp - Field implementation.
+ * @param opts - SWU parameters:
+ *   - `A`: Curve parameter `A`.
+ *   - `B`: Curve parameter `B`.
+ *   - `Z`: Simplified SWU map parameter.
+ * @returns Deterministic map-to-curve function.
+ * @throws If the SWU parameters are invalid or the field lacks the required helpers. {@link Error}
+ * @example
+ * Map one field element to a Weierstrass curve point with the SWU recipe.
+ *
+ * ```ts
+ * import { mapToCurveSimpleSWU } from '@noble/curves/abstract/weierstrass.js';
+ * import { Field } from '@noble/curves/abstract/modular.js';
+ * const Fp = Field(17n);
+ * const map = mapToCurveSimpleSWU(Fp, { A: 1n, B: 2n, Z: 3n });
+ * const point = map(5n);
+ * ```
  */
-export declare function mapToCurveSimpleSWU<T>(Fp: IField<T>, opts: {
+export declare function mapToCurveSimpleSWU<T>(Fp: TArg<IField<T>>, opts: {
     A: T;
     B: T;
     Z: T;
@@ -302,24 +539,50 @@ export declare function mapToCurveSimpleSWU<T>(Fp: IField<T>, opts: {
 /**
  * Sometimes users only need getPublicKey, getSharedSecret, and secret key handling.
  * This helper ensures no signature functionality is present. Less code, smaller bundle size.
+ * @param Point - Weierstrass point constructor.
+ * @param ecdhOpts - Optional randomness helpers:
+ *   - `randomBytes` (optional): Optional RNG override.
+ * @returns ECDH helper namespace.
+ * @example
+ * Sometimes users only need getPublicKey, getSharedSecret, and secret key handling.
+ *
+ * ```ts
+ * import { ecdh } from '@noble/curves/abstract/weierstrass.js';
+ * import { p256 } from '@noble/curves/nist.js';
+ * const dh = ecdh(p256.Point);
+ * const alice = dh.keygen();
+ * const shared = dh.getSharedSecret(alice.secretKey, alice.publicKey);
+ * ```
  */
-export declare function ecdh(Point: WeierstrassPointCons<bigint>, ecdhOpts?: {
-    randomBytes?: (bytesLength?: number) => Uint8Array;
-}): ECDH;
+export declare function ecdh(Point: WeierstrassPointCons<bigint>, ecdhOpts?: TArg<{
+    randomBytes?: (bytesLength?: number) => TRet<Uint8Array>;
+}>): ECDH;
 /**
  * Creates ECDSA signing interface for given elliptic curve `Point` and `hash` function.
  *
- * @param Point created using {@link weierstrass} function
- * @param hash used for 1) message prehash-ing 2) k generation in `sign`, using hmac_drbg(hash)
- * @param ecdsaOpts rarely needed, see {@link ECDSAOpts}
+ * @param Point - created using {@link weierstrass} function
+ * @param hash - used for 1) message prehash-ing 2) k generation in `sign`, using hmac_drbg(hash)
+ * @param ecdsaOpts - rarely needed, see {@link ECDSAOpts}:
+ *   - `lowS`: Default low-S policy.
+ *   - `hmac`: HMAC implementation used by RFC6979 DRBG.
+ *   - `randomBytes`: Optional RNG override.
+ *   - `bits2int`: Optional hash-to-int conversion override.
+ *   - `bits2int_modN`: Optional hash-to-int-mod-n conversion override.
  *
+ * @returns ECDSA helper namespace.
  * @example
- * ```js
- * const p256_Point = weierstrass(...);
- * const p256_sha256 = ecdsa(p256_Point, sha256);
- * const p256_sha224 = ecdsa(p256_Point, sha224);
- * const p256_sha224_r = ecdsa(p256_Point, sha224, { randomBytes: (length) => { ... } });
+ * Create an ECDSA signer/verifier bundle for one curve implementation.
+ *
+ * ```ts
+ * import { ecdsa } from '@noble/curves/abstract/weierstrass.js';
+ * import { p256 } from '@noble/curves/nist.js';
+ * import { sha256 } from '@noble/hashes/sha2.js';
+ * const p256ecdsa = ecdsa(p256.Point, sha256);
+ * const { secretKey, publicKey } = p256ecdsa.keygen();
+ * const msg = new TextEncoder().encode('hello noble');
+ * const sig = p256ecdsa.sign(msg, secretKey);
+ * const isValid = p256ecdsa.verify(sig, msg, publicKey);
  * ```
  */
-export declare function ecdsa(Point: WeierstrassPointCons<bigint>, hash: CHash, ecdsaOpts?: ECDSAOpts): ECDSA;
+export declare function ecdsa(Point: WeierstrassPointCons<bigint>, hash: TArg<CHash>, ecdsaOpts?: TArg<ECDSAOpts>): ECDSA;
 //# sourceMappingURL=weierstrass.d.ts.map

package/abstract/weierstrass.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"weierstrass.d.ts","sourceRoot":"","sources":["../src/abstract/weierstrass.ts"],"names":[],"mappings":"AA6BA,OAAO,EAgBL,KAAK,KAAK,EAEX,MAAM,aAAa,CAAC;AACrB,OAAO,EAOL,KAAK,WAAW,EAChB,KAAK,YAAY,EACjB,KAAK,UAAU,EACf,KAAK,cAAc,EACpB,MAAM,YAAY,CAAC;AACpB,OAAO,EAKL,KAAK,MAAM,EACZ,MAAM,cAAc,CAAC;AAEtB,YAAY,EAAE,WAAW,EAAE,CAAC;AAE5B,KAAK,SAAS,GAAG,CAAC,CAAC,MAAM,EAAE,MAAM,CAAC,EAAE,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC;AACtD;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,MAAM,MAAM,gBAAgB,GAAG;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,CAAC,EAAE,SAAS,CAAC;IACpB,WAAW,CAAC,EAAE,CAAC,CAAC,EAAE,MAAM,KAAK;QAAE,KAAK,EAAE,OAAO,CAAC;QAAC,EAAE,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,OAAO,CAAC;QAAC,EAAE,EAAE,MAAM,CAAA;KAAE,CAAC;CACzF,CAAC;AAIF,MAAM,MAAM,eAAe,GAAG;IAAE,KAAK,EAAE,OAAO,CAAC;IAAC,EAAE,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,OAAO,CAAC;IAAC,EAAE,EAAE,MAAM,CAAA;CAAE,CAAC;AAEzF;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,EAAE,MAAM,GAAG,eAAe,CAsBxF;AAED;;;;;;;;;;;;;;;GAeG;AACH,MAAM,MAAM,iBAAiB,GAAG,OAAO,GAAG,UAAU,CAAC;AACrD;;;;GAIG;AACH,MAAM,MAAM,oBAAoB,GAAG,SAAS,GAAG,WAAW,GAAG,KAAK,CAAC;AACnE;;;GAGG;AACH,MAAM,MAAM,gBAAgB,GAAG;IAC7B,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB,CAAC;AACF;;;;;;;;GAQG;AACH,MAAM,MAAM,eAAe,GAAG;IAC5B,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,MAAM,CAAC,EAAE,oBAAoB,CAAC;CAC/B,CAAC;AACF;;;;;;;;;GASG;AACH,MAAM,MAAM,aAAa,GAAG;IAC1B,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,MAAM,CAAC,EAAE,oBAAoB,CAAC;IAC9B,YAAY,CAAC,EAAE,iBAAiB,CAAC;CAClC,CAAC;AAuBF,qDAAqD;AACrD,MAAM,WAAW,gBAAgB,CAAC,CAAC,CAAE,SAAQ,UAAU,CAAC,CAAC,EAAE,gBAAgB,CAAC,CAAC,CAAC,CAAC;IAC7E,wDAAwD;IACxD,QAAQ,CAAC,CAAC,EAAE,CAAC,CAAC;IACd,wDAAwD;IACxD,QAAQ,CAAC,CAAC,EAAE,CAAC,CAAC;IACd,8BAA8B;IAC9B,QAAQ,CAAC,CAAC,EAAE,CAAC,CAAC;IACd,wDAAwD;IACxD,IAAI,CAAC,IAAI,CAAC,CAAC;IACX,wDAAwD;IACxD,IAAI,CAAC,IAAI,CAAC,CAAC;IACX,kGAAkG;IAClG,OAAO,CAAC,YAAY,CAAC,EAAE,OAAO,GAAG,UAAU,CAAC;IAC5C,KAAK,CAAC,YAAY,CAAC,EAAE,OAAO,GAAG,MAAM,CAAC;CACvC;AAED,mDAAmD;AACnD,MAAM,WAAW,oBAAoB,CAAC,CAAC,CAAE,SAAQ,cAAc,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC;IAClF,wEAAwE;IACxE,KAAK,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,GAAG,gBAAgB,CAAC,CAAC,CAAC,CAAC;IAC5C,KAAK,IAAI,eAAe,CAAC,CAAC,CAAC,CAAC;CAC7B;AAED;;;;;;;;;;GAUG;AACH,MAAM,MAAM,eAAe,CAAC,CAAC,IAAI,QAAQ,CAAC;IACxC,CAAC,EAAE,MAAM,CAAC;IACV,CAAC,EAAE,MAAM,CAAC;IACV,CAAC,EAAE,MAAM,CAAC;IACV,CAAC,EAAE,CAAC,CAAC;IACL,CAAC,EAAE,CAAC,CAAC;IACL,EAAE,EAAE,CAAC,CAAC;IACN,EAAE,EAAE,CAAC,CAAC;CACP,CAAC,CAAC;AAKH,MAAM,MAAM,oBAAoB,CAAC,CAAC,IAAI,OAAO,CAAC;IAC5C,EAAE,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC;IACd,EAAE,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC;IACnB,kBAAkB,EAAE,OAAO,CAAC;IAC5B,IAAI,EAAE,gBAAgB,CAAC;IACvB,aAAa,EAAE,CAAC,CAAC,EAAE,oBAAoB,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,gBAAgB,CAAC,CAAC,CAAC,KAAK,OAAO,CAAC;IACnF,aAAa,EAAE,CAAC,CAAC,EAAE,oBAAoB,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,gBAAgB,CAAC,CAAC,CAAC,KAAK,gBAAgB,CAAC,CAAC,CAAC,CAAC;IAC/F,SAAS,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,WAAW,CAAC,CAAC,CAAC,CAAC;IACjD,OAAO,EAAE,CACP,CAAC,EAAE,oBAAoB,CAAC,CAAC,CAAC,EAC1B,KAAK,EAAE,gBAAgB,CAAC,CAAC,CAAC,EAC1B,YAAY,EAAE,OAAO,KAClB,UAAU,CAAC;CACjB,CAAC,CAAC;AAEH;;;;;;;GAOG;AACH,MAAM,MAAM,SAAS,GAAG,OAAO,CAAC;IAC9B,IAAI,EAAE,OAAO,CAAC;IACd,IAAI,EAAE,CAAC,GAAG,EAAE,UAAU,EAAE,OAAO,EAAE,UAAU,KAAK,UAAU,CAAC;IAC3D,WAAW,EAAE,CAAC,WAAW,CAAC,EAAE,MAAM,KAAK,UAAU,CAAC;IAClD,QAAQ,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,MAAM,CAAC;IACxC,aAAa,EAAE,CAAC,KAAK,EAAE,UAAU,KAAK,MAAM,CAAC;CAC9C,CAAC,CAAC;AAEH;;;GAGG;AACH,MAAM,WAAW,IAAI;IACnB,MAAM,EAAE,CAAC,IAAI,CAAC,EAAE,UAAU,KAAK;QAAE,SAAS,EAAE,UAAU,CAAC;QAAC,SAAS,EAAE,UAAU,CAAA;KAAE,CAAC;IAChF,YAAY,EAAE,CAAC,SAAS,EAAE,UAAU,EAAE,YAAY,CAAC,EAAE,OAAO,KAAK,UAAU,CAAC;IAC5E,eAAe,EAAE,CACf,UAAU,EAAE,UAAU,EACtB,UAAU,EAAE,UAAU,EACtB,YAAY,CAAC,EAAE,OAAO,KACnB,UAAU,CAAC;IAChB,KAAK,EAAE,oBAAoB,CAAC,MAAM,CAAC,CAAC;IACpC,KAAK,EAAE;QACL,gBAAgB,EAAE,CAAC,SAAS,EAAE,UAAU,KAAK,OAAO,CAAC;QACrD,gBAAgB,EAAE,CAAC,SAAS,EAAE,UAAU,EAAE,YAAY,CAAC,EAAE,OAAO,KAAK,OAAO,CAAC;QAC7E,eAAe,EAAE,CAAC,IAAI,CAAC,EAAE,UAAU,KAAK,UAAU,CAAC;KACpD,CAAC;IACF,OAAO,EAAE,YAAY,CAAC;CACvB;AAED;;;GAGG;AACH,MAAM,WAAW,KAAM,SAAQ,IAAI;IACjC,IAAI,EAAE,CAAC,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,UAAU,EAAE,IAAI,CAAC,EAAE,aAAa,KAAK,UAAU,CAAC;IACvF,MAAM,EAAE,CACN,SAAS,EAAE,UAAU,EACrB,OAAO,EAAE,UAAU,EACnB,SAAS,EAAE,UAAU,EACrB,IAAI,CAAC,EAAE,eAAe,KACnB,OAAO,CAAC;IACb,gBAAgB,CAAC,SAAS,EAAE,UAAU,EAAE,OAAO,EAAE,UAAU,EAAE,IAAI,CAAC,EAAE,gBAAgB,GAAG,UAAU,CAAC;IAClG,SAAS,EAAE,kBAAkB,CAAC;CAC/B;AACD,qBAAa,MAAO,SAAQ,KAAK;gBACnB,CAAC,SAAK;CAGnB;AACD,MAAM,MAAM,IAAI,GAAG;IAEjB,GAAG,EAAE,OAAO,MAAM,CAAC;IAEnB,IAAI,EAAE;QACJ,MAAM,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,KAAK,MAAM,CAAC;QAE9C,MAAM,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,UAAU,GAAG;YAAE,CAAC,EAAE,UAAU,CAAC;YAAC,CAAC,EAAE,UAAU,CAAA;SAAE,CAAC;KACzE,CAAC;IAKF,IAAI,EAAE;QACJ,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAC;QAC5B,MAAM,CAAC,IAAI,EAAE,UAAU,GAAG,MAAM,CAAC;KAClC,CAAC;IACF,KAAK,CAAC,GAAG,EAAE,MAAM,GAAG,UAAU,GAAG;QAAE,CAAC,EAAE,MAAM,CAAC;QAAC,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAC1D,UAAU,CAAC,GAAG,EAAE;QAAE,CAAC,EAAE,MAAM,CAAC;QAAC,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,MAAM,CAAC;CACnD,CAAC;AACF;;;;;;GAMG;AACH,eAAO,MAAM,GAAG,EAAE,IAoFjB,CAAC;AAMF;;;;;;;;;;;;;;;;;;GAkBG;AACH,wBAAgB,WAAW,CAAC,CAAC,EAC3B,MAAM,EAAE,eAAe,CAAC,CAAC,CAAC,EAC1B,SAAS,GAAE,oBAAoB,CAAC,CAAC,CAAM,GACtC,oBAAoB,CAAC,CAAC,CAAC,CAkezB;AAED,2CAA2C;AAC3C,MAAM,WAAW,cAAc;IAC7B,QAAQ,CAAC,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAC3B,cAAc,CAAC,QAAQ,EAAE,MAAM,GAAG,cAAc,GAAG;QAAE,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAA;KAAE,CAAC;IACjF,QAAQ,IAAI,OAAO,CAAC;IACpB,gBAAgB,CAAC,WAAW,EAAE,UAAU,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAC;IACpE,OAAO,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,UAAU,CAAC;IACrC,KAAK,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;CAChC;AACD,8CAA8C;AAC9C,MAAM,MAAM,kBAAkB,GAAG;IAC/B,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,cAAc,CAAC;IAC9D,SAAS,CAAC,KAAK,EAAE,UAAU,EAAE,MAAM,CAAC,EAAE,oBAAoB,GAAG,cAAc,CAAC;IAC5E,OAAO,CAAC,GAAG,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,oBAAoB,GAAG,cAAc,CAAC;CACrE,CAAC;AAOF;;;;;;;;GAQG;AACH,wBAAgB,cAAc,CAAC,CAAC,EAC9B,EAAE,EAAE,MAAM,CAAC,CAAC,CAAC,EACb,CAAC,EAAE,CAAC,GACH,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,KAAK;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,KAAK,EAAE,CAAC,CAAA;CAAE,CAmEhD;AACD;;;GAGG;AACH,wBAAgB,mBAAmB,CAAC,CAAC,EACnC,EAAE,EAAE,MAAM,CAAC,CAAC,CAAC,EACb,IAAI,EAAE;IACJ,CAAC,EAAE,CAAC,CAAC;IACL,CAAC,EAAE,CAAC,CAAC;IACL,CAAC,EAAE,CAAC,CAAC;CACN,GACA,CAAC,CAAC,EAAE,CAAC,KAAK;IAAE,CAAC,EAAE,CAAC,CAAC;IAAC,CAAC,EAAE,CAAC,CAAA;CAAE,CAwC1B;AAYD;;;GAGG;AACH,wBAAgB,IAAI,CAClB,KAAK,EAAE,oBAAoB,CAAC,MAAM,CAAC,EACnC,QAAQ,GAAE;IAAE,WAAW,CAAC,EAAE,CAAC,WAAW,CAAC,EAAE,MAAM,KAAK,UAAU,CAAA;CAAO,GACpE,IAAI,CAkFN;AAED;;;;;;;;;;;;;;GAcG;AACH,wBAAgB,KAAK,CACnB,KAAK,EAAE,oBAAoB,CAAC,MAAM,CAAC,EACnC,IAAI,EAAE,KAAK,EACX,SAAS,GAAE,SAAc,GACxB,KAAK,CAyUP"}
+{"version":3,"file":"weierstrass.d.ts","sourceRoot":"","sources":["../src/abstract/weierstrass.ts"],"names":[],"mappings":"AA6BA,OAAO,EAiBL,KAAK,KAAK,EACV,KAAK,MAAM,EAEX,KAAK,IAAI,EACT,KAAK,IAAI,EACV,MAAM,aAAa,CAAC;AACrB,OAAO,EAOL,KAAK,WAAW,EAChB,KAAK,YAAY,EACjB,KAAK,UAAU,EACf,KAAK,cAAc,EACpB,MAAM,YAAY,CAAC;AACpB,OAAO,EAML,KAAK,MAAM,EACZ,MAAM,cAAc,CAAC;AAEtB,6DAA6D;AAC7D,YAAY,EAAE,WAAW,EAAE,CAAC;AAE5B,KAAK,SAAS,GAAG,CAAC,CAAC,MAAM,EAAE,MAAM,CAAC,EAAE,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC;AACtD;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,MAAM,MAAM,gBAAgB,GAAG;IAC7B,uDAAuD;IACvD,IAAI,EAAE,MAAM,CAAC;IACb,uDAAuD;IACvD,OAAO,CAAC,EAAE,SAAS,CAAC;IACpB;;;OAGG;IACH,WAAW,CAAC,EAAE,CAAC,CAAC,EAAE,MAAM,KAAK;QAAE,KAAK,EAAE,OAAO,CAAC;QAAC,EAAE,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,OAAO,CAAC;QAAC,EAAE,EAAE,MAAM,CAAA;KAAE,CAAC;CACzF,CAAC;AAOF,2EAA2E;AAC3E,MAAM,MAAM,eAAe,GAAG;IAC5B,wDAAwD;IACxD,KAAK,EAAE,OAAO,CAAC;IACf,gDAAgD;IAChD,EAAE,EAAE,MAAM,CAAC;IACX,yDAAyD;IACzD,KAAK,EAAE,OAAO,CAAC;IACf,iDAAiD;IACjD,EAAE,EAAE,MAAM,CAAC;CACZ,CAAC;AAEF,0CAA0C;AAC1C,wBAAgB,gBAAgB,CAAC,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,EAAE,MAAM,GAAG,eAAe,CA2BxF;AAED;;;;;;;;;;;;;;;GAeG;AACH,MAAM,MAAM,iBAAiB,GAAG,OAAO,GAAG,UAAU,CAAC;AACrD;;;;GAIG;AACH,MAAM,MAAM,oBAAoB,GAAG,SAAS,GAAG,WAAW,GAAG,KAAK,CAAC;AACnE;;;GAGG;AACH,MAAM,MAAM,gBAAgB,GAAG;IAC7B,6DAA6D;IAC7D,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB,CAAC;AACF;;;;;;;;GAQG;AACH,MAAM,MAAM,eAAe,GAAG;IAC5B,uDAAuD;IACvD,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,2CAA2C;IAC3C,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,oCAAoC;IACpC,MAAM,CAAC,EAAE,oBAAoB,CAAC;CAC/B,CAAC;AACF;;;;;;;;;;GAUG;AACH,MAAM,MAAM,aAAa,GAAG;IAC1B,kDAAkD;IAClD,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,iEAAiE;IACjE,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,qCAAqC;IACrC,MAAM,CAAC,EAAE,oBAAoB,CAAC;IAC9B,6DAA6D;IAC7D,YAAY,CAAC,EAAE,iBAAiB,CAAC;CAClC,CAAC;AA2BF,6DAA6D;AAC7D,MAAM,WAAW,gBAAgB,CAAC,CAAC,CAAE,SAAQ,UAAU,CAAC,CAAC,EAAE,gBAAgB,CAAC,CAAC,CAAC,CAAC;IAC7E,wDAAwD;IACxD,QAAQ,CAAC,CAAC,EAAE,CAAC,CAAC;IACd,wDAAwD;IACxD,QAAQ,CAAC,CAAC,EAAE,CAAC,CAAC;IACd,8BAA8B;IAC9B,QAAQ,CAAC,CAAC,EAAE,CAAC,CAAC;IACd,wDAAwD;IACxD,IAAI,CAAC,IAAI,CAAC,CAAC;IACX,wDAAwD;IACxD,IAAI,CAAC,IAAI,CAAC,CAAC;IACX;;;;OAIG;IACH,OAAO,CAAC,YAAY,CAAC,EAAE,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC,CAAC;IAClD;;;;OAIG;IACH,KAAK,CAAC,YAAY,CAAC,EAAE,OAAO,GAAG,MAAM,CAAC;CACvC;AAED,+DAA+D;AAC/D,MAAM,WAAW,oBAAoB,CAAC,CAAC,CAAE,SAAQ,cAAc,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC;IAClF,wEAAwE;IACxE,KAAK,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,GAAG,gBAAgB,CAAC,CAAC,CAAC,CAAC;IAC5C;;;OAGG;IACH,KAAK,IAAI,eAAe,CAAC,CAAC,CAAC,CAAC;CAC7B;AAED;;;;;;;;;;GAUG;AACH,MAAM,MAAM,eAAe,CAAC,CAAC,IAAI,QAAQ,CAAC;IACxC,0BAA0B;IAC1B,CAAC,EAAE,MAAM,CAAC;IACV,4BAA4B;IAC5B,CAAC,EAAE,MAAM,CAAC;IACV,sBAAsB;IACtB,CAAC,EAAE,MAAM,CAAC;IACV,uCAAuC;IACvC,CAAC,EAAE,CAAC,CAAC;IACL,uCAAuC;IACvC,CAAC,EAAE,CAAC,CAAC;IACL,8BAA8B;IAC9B,EAAE,EAAE,CAAC,CAAC;IACN,8BAA8B;IAC9B,EAAE,EAAE,CAAC,CAAC;CACP,CAAC,CAAC;AAEH;;;;;;GAMG;AACH,MAAM,MAAM,oBAAoB,CAAC,CAAC,IAAI,OAAO,CAAC;IAC5C,oCAAoC;IACpC,EAAE,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC;IACd,sCAAsC;IACtC,EAAE,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC;IACnB,6DAA6D;IAC7D,kBAAkB,EAAE,OAAO,CAAC;IAC5B,sCAAsC;IACtC,IAAI,EAAE,gBAAgB,CAAC;IACvB,uCAAuC;IACvC,aAAa,EAAE,CAAC,CAAC,EAAE,oBAAoB,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,gBAAgB,CAAC,CAAC,CAAC,KAAK,OAAO,CAAC;IACnF,2CAA2C;IAC3C,aAAa,EAAE,CAAC,CAAC,EAAE,oBAAoB,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,gBAAgB,CAAC,CAAC,CAAC,KAAK,gBAAgB,CAAC,CAAC,CAAC,CAAC;IAC/F,qCAAqC;IACrC,SAAS,EAAE,CAAC,KAAK,EAAE,IAAI,CAAC,UAAU,CAAC,KAAK,WAAW,CAAC,CAAC,CAAC,CAAC;IACvD,qCAAqC;IACrC,OAAO,EAAE,CACP,CAAC,EAAE,oBAAoB,CAAC,CAAC,CAAC,EAC1B,KAAK,EAAE,gBAAgB,CAAC,CAAC,CAAC,EAC1B,YAAY,EAAE,OAAO,KAClB,IAAI,CAAC,UAAU,CAAC,CAAC;CACvB,CAAC,CAAC;AAEH;;;;;;;;;;;GAWG;AACH,MAAM,MAAM,SAAS,GAAG,OAAO,CAAC;IAC9B,oDAAoD;IACpD,IAAI,EAAE,OAAO,CAAC;IACd,gDAAgD;IAChD,IAAI,EAAE,MAAM,CAAC;IACb,gDAAgD;IAChD,WAAW,EAAE,CAAC,WAAW,CAAC,EAAE,MAAM,KAAK,IAAI,CAAC,UAAU,CAAC,CAAC;IACxD,2CAA2C;IAC3C,QAAQ,EAAE,CAAC,KAAK,EAAE,IAAI,CAAC,UAAU,CAAC,KAAK,MAAM,CAAC;IAC9C,kGAAkG;IAClG,aAAa,EAAE,CAAC,KAAK,EAAE,IAAI,CAAC,UAAU,CAAC,KAAK,MAAM,CAAC;CACpD,CAAC,CAAC;AAEH,sDAAsD;AACtD,MAAM,WAAW,IAAI;IACnB;;;;OAIG;IACH,MAAM,EAAE,CAAC,IAAI,CAAC,EAAE,IAAI,CAAC,UAAU,CAAC,KAAK;QAAE,SAAS,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC;QAAC,SAAS,EAAE,IAAI,CAAC,UAAU,CAAC,CAAA;KAAE,CAAC;IAClG;;;;;OAKG;IACH,YAAY,EAAE,CAAC,SAAS,EAAE,IAAI,CAAC,UAAU,CAAC,EAAE,YAAY,CAAC,EAAE,OAAO,KAAK,IAAI,CAAC,UAAU,CAAC,CAAC;IACxF;;;;;;OAMG;IACH,eAAe,EAAE,CACf,UAAU,EAAE,IAAI,CAAC,UAAU,CAAC,EAC5B,UAAU,EAAE,IAAI,CAAC,UAAU,CAAC,EAC5B,YAAY,CAAC,EAAE,OAAO,KACnB,IAAI,CAAC,UAAU,CAAC,CAAC;IACtB,oDAAoD;IACpD,KAAK,EAAE,oBAAoB,CAAC,MAAM,CAAC,CAAC;IACpC,yCAAyC;IACzC,KAAK,EAAE;QACL,4DAA4D;QAC5D,gBAAgB,EAAE,CAAC,SAAS,EAAE,IAAI,CAAC,UAAU,CAAC,KAAK,OAAO,CAAC;QAC3D,2DAA2D;QAC3D,gBAAgB,EAAE,CAAC,SAAS,EAAE,IAAI,CAAC,UAAU,CAAC,EAAE,YAAY,CAAC,EAAE,OAAO,KAAK,OAAO,CAAC;QACnF,0CAA0C;QAC1C,eAAe,EAAE,CAAC,IAAI,CAAC,EAAE,IAAI,CAAC,UAAU,CAAC,KAAK,IAAI,CAAC,UAAU,CAAC,CAAC;KAChE,CAAC;IACF,kEAAkE;IAClE,OAAO,EAAE,YAAY,CAAC;CACvB;AAED;;;GAGG;AACH,MAAM,WAAW,KAAM,SAAQ,IAAI;IACjC;;;;;;OAMG;IACH,IAAI,EAAE,CACJ,OAAO,EAAE,IAAI,CAAC,UAAU,CAAC,EACzB,SAAS,EAAE,IAAI,CAAC,UAAU,CAAC,EAC3B,IAAI,CAAC,EAAE,IAAI,CAAC,aAAa,CAAC,KACvB,IAAI,CAAC,UAAU,CAAC,CAAC;IACtB;;;;;;;OAOG;IACH,MAAM,EAAE,CACN,SAAS,EAAE,IAAI,CAAC,UAAU,CAAC,EAC3B,OAAO,EAAE,IAAI,CAAC,UAAU,CAAC,EACzB,SAAS,EAAE,IAAI,CAAC,UAAU,CAAC,EAC3B,IAAI,CAAC,EAAE,IAAI,CAAC,eAAe,CAAC,KACzB,OAAO,CAAC;IACb;;;;;;OAMG;IACH,gBAAgB,CACd,SAAS,EAAE,IAAI,CAAC,UAAU,CAAC,EAC3B,OAAO,EAAE,IAAI,CAAC,UAAU,CAAC,EACzB,IAAI,CAAC,EAAE,IAAI,CAAC,gBAAgB,CAAC,GAC5B,IAAI,CAAC,UAAU,CAAC,CAAC;IACpB,gDAAgD;IAChD,SAAS,EAAE,kBAAkB,CAAC;CAC/B;AACD;;;;;;;;GAQG;AACH,qBAAa,MAAO,SAAQ,KAAK;gBACnB,CAAC,SAAK;CAGnB;AACD,yEAAyE;AACzE,MAAM,MAAM,IAAI,GAAG;IAEjB;;;;OAIG;IACH,GAAG,EAAE,OAAO,MAAM,CAAC;IAEnB,+DAA+D;IAC/D,IAAI,EAAE;QACJ;;;;;WAKG;QACH,MAAM,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,KAAK,MAAM,CAAC;QAE9C;;;;;WAKG;QACH,MAAM,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC;YAAE,CAAC,EAAE,UAAU,CAAC;YAAC,CAAC,EAAE,UAAU,CAAA;SAAE,CAAC,CAAC;KACrF,CAAC;IAKF,qEAAqE;IACrE,IAAI,EAAE;QACJ;;;;WAIG;QACH,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAC;QAC5B;;;;WAIG;QACH,MAAM,CAAC,IAAI,EAAE,IAAI,CAAC,UAAU,CAAC,GAAG,MAAM,CAAC;KACxC,CAAC;IACF;;;;OAIG;IACH,KAAK,CAAC,KAAK,EAAE,IAAI,CAAC,UAAU,CAAC,GAAG;QAAE,CAAC,EAAE,MAAM,CAAC;QAAC,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IACzD;;;;OAIG;IACH,UAAU,CAAC,GAAG,EAAE;QAAE,CAAC,EAAE,MAAM,CAAC;QAAC,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,MAAM,CAAC;CACnD,CAAC;AACF;;;;;;;;;;;;;GAaG;AACH,eAAO,MAAM,GAAG,EAAE,IA+FjB,CAAC;AASF;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,wBAAgB,WAAW,CAAC,CAAC,EAC3B,MAAM,EAAE,eAAe,CAAC,CAAC,CAAC,EAC1B,SAAS,GAAE,oBAAoB,CAAC,CAAC,CAAM,GACtC,oBAAoB,CAAC,CAAC,CAAC,CA2fzB;AAED,wEAAwE;AACxE,MAAM,WAAW,cAAc;IAC7B,+BAA+B;IAC/B,QAAQ,CAAC,CAAC,EAAE,MAAM,CAAC;IACnB,+BAA+B;IAC/B,QAAQ,CAAC,CAAC,EAAE,MAAM,CAAC;IACnB,wDAAwD;IACxD,QAAQ,CAAC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAC3B;;;;OAIG;IACH,cAAc,CAAC,QAAQ,EAAE,MAAM,GAAG,cAAc,GAAG;QAAE,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAA;KAAE,CAAC;IACjF;;;OAGG;IACH,QAAQ,IAAI,OAAO,CAAC;IACpB;;;;OAIG;IACH,gBAAgB,CAAC,WAAW,EAAE,IAAI,CAAC,UAAU,CAAC,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAC;IAC1E;;;;OAIG;IACH,OAAO,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC,UAAU,CAAC,CAAC;IAC3C;;;;OAIG;IACH,KAAK,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;CAChC;AACD,6DAA6D;AAC7D,MAAM,MAAM,kBAAkB,GAAG;IAC/B,sEAAsE;IACtE,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,cAAc,CAAC;IAC9D;;;;;OAKG;IACH,SAAS,CAAC,KAAK,EAAE,IAAI,CAAC,UAAU,CAAC,EAAE,MAAM,CAAC,EAAE,oBAAoB,GAAG,cAAc,CAAC;IAClF;;;;;OAKG;IACH,OAAO,CAAC,GAAG,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,oBAAoB,GAAG,cAAc,CAAC;CACrE,CAAC;AAOF;;;;;;;;;;;;;;;;;;;GAmBG;AACH,wBAAgB,cAAc,CAAC,CAAC,EAC9B,EAAE,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,EACnB,CAAC,EAAE,CAAC,GACH,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,KAAK;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,KAAK,EAAE,CAAC,CAAA;CAAE,CA2EhD;AACD;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,wBAAgB,mBAAmB,CAAC,CAAC,EACnC,EAAE,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,EACnB,IAAI,EAAE;IACJ,CAAC,EAAE,CAAC,CAAC;IACL,CAAC,EAAE,CAAC,CAAC;IACL,CAAC,EAAE,CAAC,CAAC;CACN,GACA,CAAC,CAAC,EAAE,CAAC,KAAK;IAAE,CAAC,EAAE,CAAC,CAAC;IAAC,CAAC,EAAE,CAAC,CAAA;CAAE,CAyD1B;AAcD;;;;;;;;;;;;;;;;;GAiBG;AACH,wBAAgB,IAAI,CAClB,KAAK,EAAE,oBAAoB,CAAC,MAAM,CAAC,EACnC,QAAQ,GAAE,IAAI,CAAC;IAAE,WAAW,CAAC,EAAE,CAAC,WAAW,CAAC,EAAE,MAAM,KAAK,IAAI,CAAC,UAAU,CAAC,CAAA;CAAE,CAAM,GAChF,IAAI,CAiGN;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;GA0BG;AACH,wBAAgB,KAAK,CACnB,KAAK,EAAE,oBAAoB,CAAC,MAAM,CAAC,EACnC,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,EACjB,SAAS,GAAE,IAAI,CAAC,SAAS,CAAM,GAC9B,KAAK,CAoWP"}