@opendatalabs/vana-sdk 2.2.1 → 2.2.3

package/dist/platform/node.cjs

@@ -36,7 +36,6 @@ var import_pgp_utils = require("./shared/pgp-utils");
 var import_error_utils = require("./shared/error-utils");
 var import_stream_utils = require("./shared/stream-utils");
 var import_lazy_import = require("../utils/lazy-import");
-var import_features = require("../config/features");
 var import_WalletKeyEncryptionService = require("../crypto/services/WalletKeyEncryptionService");
 var import_crypto_utils = require("../utils/crypto-utils");
 var import_node = require("../crypto/ecies/node");
@@ -44,12 +43,10 @@ var import_interface = require("../crypto/ecies/interface");
 var import_crypto = require("crypto");
 var import_secp256k1 = __toESM(require("secp256k1"), 1);
 const getOpenPGP = (0, import_lazy_import.lazyImport)(() => import("openpgp"));
-const getEccryptoJS = (0, import_lazy_import.lazyImport)(() => import("eccrypto-js"));
 class NodeCryptoAdapter {
-  // Initialize both providers - only one will be used based on feature flag
-  customEciesProvider = new import_node.NodeECIESUint8Provider();
-  customWalletService = new import_WalletKeyEncryptionService.WalletKeyEncryptionService({
-    eciesProvider: this.customEciesProvider
+  eciesProvider = new import_node.NodeECIESUint8Provider();
+  walletService = new import_WalletKeyEncryptionService.WalletKeyEncryptionService({
+    eciesProvider: this.eciesProvider
   });
   /**
    * Encrypts data using ECIES with a public key.
@@ -64,39 +61,19 @@ class NodeCryptoAdapter {
    */
   async encryptWithPublicKey(data, publicKeyHex) {
     try {
-      if (import_features.features.useCustomECIES) {
-        const publicKey = Buffer.from(publicKeyHex, "hex");
-        const message = Buffer.from(data, "utf8");
-        const encrypted = await this.customEciesProvider.encrypt(
-          publicKey,
-          message
-        );
-        const result = Buffer.concat([
-          encrypted.iv,
-          encrypted.ephemPublicKey,
-          encrypted.ciphertext,
-          encrypted.mac
-        ]);
-        return result.toString("hex");
-      } else {
-        const eccryptojs = await getEccryptoJS();
-        const publicKeyBytes = Buffer.from(publicKeyHex, "hex");
-        const uncompressed = this.customEciesProvider.normalizeToUncompressed(
-          new Uint8Array(publicKeyBytes)
-        );
-        const publicKey = Buffer.from(uncompressed);
-        const message = Buffer.from(data, "utf8");
-        const encrypted = await eccryptojs.encrypt(publicKey, message);
-        const result = Buffer.concat([
-          encrypted.iv,
-          encrypted.ephemPublicKey,
-          encrypted.ciphertext,
-          encrypted.mac
-        ]);
-        return result.toString("hex");
-      }
+      const publicKeyBytes = (0, import_crypto_utils.processWalletPublicKey)(publicKeyHex);
+      const publicKey = Buffer.from(publicKeyBytes);
+      const message = Buffer.from(data, "utf8");
+      const encrypted = await this.eciesProvider.encrypt(publicKey, message);
+      const result = Buffer.concat([
+        encrypted.iv,
+        encrypted.ephemPublicKey,
+        encrypted.ciphertext,
+        encrypted.mac
+      ]);
+      return result.toString("hex");
     } catch (error) {
-      if (import_features.features.useCustomECIES && error instanceof import_interface.ECIESError) {
+      if (error instanceof import_interface.ECIESError) {
         throw error;
       }
       throw new Error(
@@ -118,36 +95,23 @@ class NodeCryptoAdapter {
    */
   async decryptWithPrivateKey(encryptedData, privateKeyHex) {
     try {
-      if (import_features.features.useCustomECIES) {
-        const privateKeyBuffer = (0, import_crypto_utils.processWalletPrivateKey)(privateKeyHex);
-        const encryptedBuffer = Buffer.from(encryptedData, "hex");
-        const { iv, ephemPublicKey, ciphertext, mac } = (0, import_crypto_utils.parseEncryptedDataBuffer)(encryptedBuffer);
-        const encryptedObj = {
-          iv,
-          ephemPublicKey,
-          ciphertext,
-          mac
-        };
-        const decrypted = await this.customEciesProvider.decrypt(
-          privateKeyBuffer,
-          encryptedObj
-        );
-        return new TextDecoder().decode(decrypted);
-      } else {
-        const eccryptojs = await getEccryptoJS();
-        const privateKey = Buffer.from(privateKeyHex, "hex");
-        const encryptedBuffer = Buffer.from(encryptedData, "hex");
-        const { iv, ephemPublicKey, ciphertext, mac } = (0, import_crypto_utils.parseEncryptedDataBuffer)(encryptedBuffer);
-        const decrypted = await eccryptojs.decrypt(privateKey, {
-          iv: Buffer.from(iv),
-          ephemPublicKey: Buffer.from(ephemPublicKey),
-          ciphertext: Buffer.from(ciphertext),
-          mac: Buffer.from(mac)
-        });
-        return decrypted.toString("utf8");
-      }
+      const privateKeyBuffer = (0, import_crypto_utils.processWalletPrivateKey)(privateKeyHex);
+      const encryptedHex = encryptedData.startsWith("0x") ? encryptedData.slice(2) : encryptedData;
+      const encryptedBuffer = Buffer.from(encryptedHex, "hex");
+      const { iv, ephemPublicKey, ciphertext, mac } = (0, import_crypto_utils.parseEncryptedDataBuffer)(encryptedBuffer);
+      const encryptedObj = {
+        iv,
+        ephemPublicKey,
+        ciphertext,
+        mac
+      };
+      const decrypted = await this.eciesProvider.decrypt(
+        privateKeyBuffer,
+        encryptedObj
+      );
+      return new TextDecoder().decode(decrypted);
     } catch (error) {
-      if (import_features.features.useCustomECIES && error instanceof import_interface.ECIESError) {
+      if (error instanceof import_interface.ECIESError) {
         throw error;
       }
       throw new Error(
@@ -166,28 +130,18 @@ class NodeCryptoAdapter {
    */
   async generateKeyPair() {
     try {
-      if (import_features.features.useCustomECIES) {
-        const secp256k1 = import_secp256k1.default;
-        let privateKey;
-        do {
-          privateKey = (0, import_crypto.randomBytes)(32);
-        } while (!secp256k1.privateKeyVerify(privateKey));
-        const publicKey = Buffer.from(
-          secp256k1.publicKeyCreate(privateKey, true)
-        );
-        return {
-          privateKey: privateKey.toString("hex"),
-          publicKey: publicKey.toString("hex")
-        };
-      } else {
-        const eccryptojs = await getEccryptoJS();
-        const privateKey = eccryptojs.generatePrivate();
-        const publicKey = eccryptojs.getPublic(privateKey);
-        return {
-          privateKey: privateKey.toString("hex"),
-          publicKey: publicKey.toString("hex")
-        };
-      }
+      const secp256k1 = import_secp256k1.default;
+      let privateKey;
+      do {
+        privateKey = (0, import_crypto.randomBytes)(32);
+      } while (!secp256k1.privateKeyVerify(privateKey));
+      const publicKey = Buffer.from(
+        secp256k1.publicKeyCreate(privateKey, true)
+      );
+      return {
+        privateKey: privateKey.toString("hex"),
+        publicKey: publicKey.toString("hex")
+      };
     } catch (error) {
       throw (0, import_error_utils.wrapCryptoError)("key generation", error);
     }
@@ -205,26 +159,10 @@ class NodeCryptoAdapter {
    */
   async encryptWithWalletPublicKey(data, publicKey) {
     try {
-      if (import_features.features.useCustomECIES) {
-        return await this.customWalletService.encryptWithWalletPublicKey(
-          data,
-          publicKey
-        );
-      } else {
-        const eccryptojs = await getEccryptoJS();
-        const publicKeyBytes = (0, import_crypto_utils.processWalletPublicKey)(publicKey);
-        const uncompressed = this.customEciesProvider.normalizeToUncompressed(publicKeyBytes);
-        const publicKeyBuffer = Buffer.from(uncompressed);
-        const message = Buffer.from(data, "utf8");
-        const encrypted = await eccryptojs.encrypt(publicKeyBuffer, message);
-        const result = Buffer.concat([
-          encrypted.iv,
-          encrypted.ephemPublicKey,
-          encrypted.ciphertext,
-          encrypted.mac
-        ]);
-        return result.toString("hex");
-      }
+      return await this.walletService.encryptWithWalletPublicKey(
+        data,
+        publicKey
+      );
     } catch (error) {
       throw (0, import_error_utils.wrapCryptoError)("encrypt with wallet public key", error);
     }
@@ -242,26 +180,10 @@ class NodeCryptoAdapter {
    */
   async decryptWithWalletPrivateKey(encryptedData, privateKey) {
     try {
-      if (import_features.features.useCustomECIES) {
-        return await this.customWalletService.decryptWithWalletPrivateKey(
-          encryptedData,
-          privateKey
-        );
-      } else {
-        const eccryptojs = await getEccryptoJS();
-        const privateKeyBuffer = Buffer.from(
-          (0, import_crypto_utils.processWalletPrivateKey)(privateKey)
-        );
-        const encryptedBuffer = Buffer.from(encryptedData, "hex");
-        const { iv, ephemPublicKey, ciphertext, mac } = (0, import_crypto_utils.parseEncryptedDataBuffer)(encryptedBuffer);
-        const decrypted = await eccryptojs.decrypt(privateKeyBuffer, {
-          iv: Buffer.from(iv),
-          ephemPublicKey: Buffer.from(ephemPublicKey),
-          ciphertext: Buffer.from(ciphertext),
-          mac: Buffer.from(mac)
-        });
-        return decrypted.toString("utf8");
-      }
+      return await this.walletService.decryptWithWalletPrivateKey(
+        encryptedData,
+        privateKey
+      );
     } catch (error) {
       throw (0, import_error_utils.wrapCryptoError)("decrypt with wallet private key", error);
     }

package/dist/platform/node.cjs.map

@@ -1 +1 @@
-{"version":3,"sources":["../../src/platform/node.ts"],"sourcesContent":["/**\n * Provides Node.js-specific implementations of platform abstraction interfaces.\n *\n * @remarks\n * This module implements all platform-specific operations for Node.js environments,\n * including cryptography, PGP operations, HTTP requests, and caching. It dynamically\n * imports dependencies to avoid Turbopack TDZ issues and supports both standard\n * eccrypto and custom ECIES implementations based on feature flags.\n *\n * WARNING: Dependencies that access globals during init MUST be dynamically imported\n * to support Turbopack. See: https://github.com/vercel/next.js/issues/82632\n *\n * @example\n * ```typescript\n * // Use the Node.js platform adapter\n * import { nodePlatformAdapter } from '@vana-sdk/platform/node';\n *\n * // Encrypt data with public key\n * const encrypted = await nodePlatformAdapter.crypto.encryptWithPublicKey(\n *   'sensitive data',\n *   '0x04...' // Public key hex\n * );\n *\n * // Generate PGP key pair\n * const { publicKey, privateKey } = await nodePlatformAdapter.pgp.generateKeyPair({\n *   name: 'Data Owner',\n *   email: 'owner@example.com'\n * });\n * ```\n *\n * @category Platform\n * @module platform/node\n */\n\nimport type {\n  VanaPlatformAdapter,\n  VanaCryptoAdapter,\n  VanaPGPAdapter,\n  VanaHttpAdapter,\n  VanaCacheAdapter,\n} from \"./interface\";\nimport { getPGPKeyGenParams } from \"./shared/pgp-utils\";\nimport { wrapCryptoError } from \"./shared/error-utils\";\nimport { streamToUint8Array } from \"./shared/stream-utils\";\nimport { lazyImport } from \"../utils/lazy-import\";\nimport { features } from \"../config/features\";\nimport { WalletKeyEncryptionService } from \"../crypto/services/WalletKeyEncryptionService\";\nimport {\n  processWalletPrivateKey,\n  parseEncryptedDataBuffer,\n  processWalletPublicKey,\n} from \"../utils/crypto-utils\";\n\n// Lazy-loaded dependencies to avoid Turbopack TDZ issues\nconst getOpenPGP = lazyImport(() => import(\"openpgp\"));\nconst getEccryptoJS = lazyImport(() => import(\"eccrypto-js\"));\n\n// Import both ECIES implementations statically\nimport { NodeECIESUint8Provider } from \"../crypto/ecies/node\";\nimport { ECIESError } from \"../crypto/ecies/interface\";\nimport type { ECIESEncrypted } from \"../crypto/ecies\";\nimport { randomBytes } from \"crypto\";\nimport secp256k1Import from \"secp256k1\";\n\n// Type definition for secp256k1 module\ninterface Secp256k1Module {\n  privateKeyVerify(privateKey: Buffer): boolean;\n  publicKeyCreate(privateKey: Buffer, compressed: boolean): Buffer;\n  publicKeyVerify(publicKey: Buffer): boolean;\n  publicKeyConvert(publicKey: Buffer, compressed: boolean): Buffer;\n  ecdh(\n    publicKey: Buffer,\n    privateKey: Buffer,\n    options: {\n      hashfn: (x: Uint8Array, y: Uint8Array, output?: Uint8Array) => Uint8Array;\n    },\n    output: Buffer,\n  ): Buffer;\n}\n\n/**\n * Implements cryptographic operations for Node.js environments.\n *\n * @remarks\n * Provides ECIES encryption/decryption, key generation, and password-based\n * encryption using either eccrypto-js or a custom ECIES implementation.\n * The implementation choice is controlled by the `useCustomECIES` feature flag.\n *\n * @internal\n */\nclass NodeCryptoAdapter implements VanaCryptoAdapter {\n  // Initialize both providers - only one will be used based on feature flag\n  private customEciesProvider = new NodeECIESUint8Provider();\n  private customWalletService = new WalletKeyEncryptionService({\n    eciesProvider: this.customEciesProvider,\n  });\n\n  /**\n   * Encrypts data using ECIES with a public key.\n   *\n   * @param data - The plaintext string to encrypt.\n   *   Typically user data or sensitive information.\n   * @param publicKeyHex - The recipient's public key in hex format.\n   *   Obtain from key generation or user profile.\n   * @returns Encrypted data as a hex string containing IV, ephemeral key, ciphertext, and MAC\n   *\n   * @throws {Error} If encryption fails or public key is invalid\n   */\n  async encryptWithPublicKey(\n    data: string,\n    publicKeyHex: string,\n  ): Promise<string> {\n    try {\n      if (features.useCustomECIES) {\n        // Use custom ECIES implementation\n        const publicKey = Buffer.from(publicKeyHex, \"hex\");\n        const message = Buffer.from(data, \"utf8\");\n\n        const encrypted = await this.customEciesProvider.encrypt(\n          publicKey,\n          message,\n        );\n\n        // Concatenate all components and return as hex string for API consistency\n        const result = Buffer.concat([\n          encrypted.iv,\n          encrypted.ephemPublicKey,\n          encrypted.ciphertext,\n          encrypted.mac,\n        ]);\n\n        return result.toString(\"hex\");\n      } else {\n        // Use eccrypto-js (default)\n        const eccryptojs = await getEccryptoJS();\n        const publicKeyBytes = Buffer.from(publicKeyHex, \"hex\");\n\n        // Normalize to uncompressed format using the ECIES provider\n        // This handles both compressed (33 bytes) and uncompressed (65 bytes) keys\n        const uncompressed = this.customEciesProvider.normalizeToUncompressed(\n          new Uint8Array(publicKeyBytes),\n        );\n        const publicKey = Buffer.from(uncompressed);\n\n        const message = Buffer.from(data, \"utf8\");\n\n        const encrypted = await eccryptojs.encrypt(publicKey, message);\n\n        // Concatenate all components and return as hex string for API consistency\n        const result = Buffer.concat([\n          encrypted.iv,\n          encrypted.ephemPublicKey,\n          encrypted.ciphertext,\n          encrypted.mac,\n        ]);\n\n        return result.toString(\"hex\");\n      }\n    } catch (error) {\n      if (features.useCustomECIES && error instanceof ECIESError) {\n        throw error;\n      }\n      throw new Error(\n        `Encryption failed: ${error instanceof Error ? error.message : String(error)}`,\n      );\n    }\n  }\n\n  /**\n   * Decrypts ECIES-encrypted data using a private key.\n   *\n   * @param encryptedData - Hex string containing encrypted data.\n   *   Must include IV, ephemeral public key, ciphertext, and MAC.\n   * @param privateKeyHex - The private key in hex format.\n   *   Must correspond to the public key used for encryption.\n   * @returns The decrypted plaintext string\n   *\n   * @throws {Error} If decryption fails or MAC verification fails\n   * @throws {ECIESError} If using custom ECIES and specific error occurs\n   */\n  async decryptWithPrivateKey(\n    encryptedData: string,\n    privateKeyHex: string,\n  ): Promise<string> {\n    try {\n      if (features.useCustomECIES) {\n        // Use custom ECIES implementation\n        const privateKeyBuffer = processWalletPrivateKey(privateKeyHex);\n        const encryptedBuffer = Buffer.from(encryptedData, \"hex\");\n        const { iv, ephemPublicKey, ciphertext, mac } =\n          parseEncryptedDataBuffer(encryptedBuffer);\n\n        // Reconstruct the encrypted data structure\n        const encryptedObj: ECIESEncrypted = {\n          iv,\n          ephemPublicKey,\n          ciphertext,\n          mac,\n        };\n\n        const decrypted = await this.customEciesProvider.decrypt(\n          privateKeyBuffer,\n          encryptedObj,\n        );\n        return new TextDecoder().decode(decrypted);\n      } else {\n        // Use eccrypto-js (default)\n        const eccryptojs = await getEccryptoJS();\n        const privateKey = Buffer.from(privateKeyHex, \"hex\");\n        const encryptedBuffer = Buffer.from(encryptedData, \"hex\");\n\n        // Parse the encrypted data\n        const { iv, ephemPublicKey, ciphertext, mac } =\n          parseEncryptedDataBuffer(encryptedBuffer);\n\n        const decrypted = await eccryptojs.decrypt(privateKey, {\n          iv: Buffer.from(iv),\n          ephemPublicKey: Buffer.from(ephemPublicKey),\n          ciphertext: Buffer.from(ciphertext),\n          mac: Buffer.from(mac),\n        });\n\n        return decrypted.toString(\"utf8\");\n      }\n    } catch (error) {\n      if (features.useCustomECIES && error instanceof ECIESError) {\n        throw error;\n      }\n      throw new Error(\n        `Decryption failed: ${error instanceof Error ? error.message : String(error)}`,\n      );\n    }\n  }\n\n  /**\n   * Generates a new secp256k1 key pair for ECIES operations.\n   *\n   * @returns Object containing hex-encoded public and private keys\n   * @returns returns.publicKey - Compressed public key in hex format\n   * @returns returns.privateKey - Private key in hex format\n   *\n   * @throws {Error} If key generation fails\n   */\n  async generateKeyPair(): Promise<{ publicKey: string; privateKey: string }> {\n    try {\n      if (features.useCustomECIES) {\n        // Use custom implementation with secp256k1\n        const secp256k1 = secp256k1Import as unknown as Secp256k1Module;\n\n        // Generate private key\n        let privateKey: Buffer;\n        do {\n          privateKey = randomBytes(32);\n        } while (!secp256k1.privateKeyVerify(privateKey));\n\n        // Get compressed public key\n        const publicKey = Buffer.from(\n          secp256k1.publicKeyCreate(privateKey, true),\n        );\n\n        return {\n          privateKey: privateKey.toString(\"hex\"),\n          publicKey: publicKey.toString(\"hex\"),\n        };\n      } else {\n        // Use eccrypto-js (default)\n        const eccryptojs = await getEccryptoJS();\n        const privateKey = eccryptojs.generatePrivate();\n        const publicKey = eccryptojs.getPublic(privateKey);\n\n        return {\n          privateKey: privateKey.toString(\"hex\"),\n          publicKey: publicKey.toString(\"hex\"),\n        };\n      }\n    } catch (error) {\n      throw wrapCryptoError(\"key generation\", error);\n    }\n  }\n\n  /**\n   * Encrypts data using a wallet's public key.\n   *\n   * @param data - The plaintext string to encrypt.\n   *   Typically permission data or DLP metadata.\n   * @param publicKey - The wallet's public key (with or without 0x prefix).\n   *   Obtain from wallet connection or user profile.\n   * @returns Encrypted data as a hex string\n   *\n   * @throws {Error} If encryption fails or key processing fails\n   */\n  async encryptWithWalletPublicKey(\n    data: string,\n    publicKey: string,\n  ): Promise<string> {\n    try {\n      if (features.useCustomECIES) {\n        // Use custom ECIES implementation via WalletKeyEncryptionService\n        return await this.customWalletService.encryptWithWalletPublicKey(\n          data,\n          publicKey,\n        );\n      } else {\n        // Use eccrypto-js directly for wallet encryption\n        const eccryptojs = await getEccryptoJS();\n        const publicKeyBytes = processWalletPublicKey(publicKey);\n\n        // Normalize to uncompressed format using the ECIES provider\n        // This handles both compressed (33 bytes) and uncompressed (65 bytes) keys\n        const uncompressed =\n          this.customEciesProvider.normalizeToUncompressed(publicKeyBytes);\n        const publicKeyBuffer = Buffer.from(uncompressed);\n\n        const message = Buffer.from(data, \"utf8\");\n\n        const encrypted = await eccryptojs.encrypt(publicKeyBuffer, message);\n\n        // Concatenate all components and return as hex string\n        const result = Buffer.concat([\n          encrypted.iv,\n          encrypted.ephemPublicKey,\n          encrypted.ciphertext,\n          encrypted.mac,\n        ]);\n\n        return result.toString(\"hex\");\n      }\n    } catch (error) {\n      throw wrapCryptoError(\"encrypt with wallet public key\", error);\n    }\n  }\n\n  /**\n   * Decrypts data using a wallet's private key.\n   *\n   * @param encryptedData - Hex string containing encrypted data.\n   *   Must be encrypted with corresponding wallet public key.\n   * @param privateKey - The wallet's private key.\n   *   Obtain from wallet connection (handle with care).\n   * @returns The decrypted plaintext string\n   *\n   * @throws {Error} If decryption fails or key is invalid\n   */\n  async decryptWithWalletPrivateKey(\n    encryptedData: string,\n    privateKey: string,\n  ): Promise<string> {\n    try {\n      if (features.useCustomECIES) {\n        // Use custom ECIES implementation via WalletKeyEncryptionService\n        return await this.customWalletService.decryptWithWalletPrivateKey(\n          encryptedData,\n          privateKey,\n        );\n      } else {\n        // Use eccrypto-js directly for wallet decryption\n        const eccryptojs = await getEccryptoJS();\n        const privateKeyBuffer = Buffer.from(\n          processWalletPrivateKey(privateKey),\n        );\n        const encryptedBuffer = Buffer.from(encryptedData, \"hex\");\n\n        // Parse the encrypted data\n        const { iv, ephemPublicKey, ciphertext, mac } =\n          parseEncryptedDataBuffer(encryptedBuffer);\n\n        const decrypted = await eccryptojs.decrypt(privateKeyBuffer, {\n          iv: Buffer.from(iv),\n          ephemPublicKey: Buffer.from(ephemPublicKey),\n          ciphertext: Buffer.from(ciphertext),\n          mac: Buffer.from(mac),\n        });\n\n        return decrypted.toString(\"utf8\");\n      }\n    } catch (error) {\n      throw wrapCryptoError(\"decrypt with wallet private key\", error);\n    }\n  }\n\n  /**\n   * Encrypts binary data using password-based encryption.\n   *\n   * @param data - Binary data to encrypt.\n   *   Typically file contents or serialized objects.\n   * @param password - Password for encryption.\n   *   Often derived from wallet signatures.\n   * @returns Encrypted data as Uint8Array\n   *\n   * @remarks\n   * Uses OpenPGP for password-based encryption. Note that this is not\n   * deterministic due to OpenPGP's random salt generation.\n   *\n   * @throws {Error} If encryption fails\n   */\n  async encryptWithPassword(\n    data: Uint8Array,\n    password: string,\n  ): Promise<Uint8Array> {\n    try {\n      const openpgp = await getOpenPGP();\n      const message = await openpgp.createMessage({\n        binary: data,\n      });\n\n      // Use password-based encryption with wallet signature as password\n      // Note: For deterministic encryption, we would need to control the salt\n      // This implementation is secure but not deterministic due to OpenPGP's design\n      const encrypted = await openpgp.encrypt({\n        message,\n        passwords: [password],\n        format: \"binary\",\n      });\n\n      // In Node.js, the encrypted result is already a Uint8Array\n      if (encrypted instanceof Uint8Array) {\n        return encrypted;\n      }\n\n      // If it's a stream (should not happen with format: \"binary\"), read it\n      if (\n        encrypted &&\n        typeof encrypted === \"object\" &&\n        \"getReader\" in encrypted\n      ) {\n        return await streamToUint8Array(\n          encrypted as ReadableStream<Uint8Array>,\n        );\n      }\n\n      throw new Error(\"Unexpected encrypted data format\");\n    } catch (error) {\n      throw wrapCryptoError(\"encrypt with password\", error);\n    }\n  }\n\n  /**\n   * Decrypts password-encrypted binary data.\n   *\n   * @param encryptedData - Password-encrypted data as Uint8Array.\n   *   Must be encrypted with the same password.\n   * @param password - Password for decryption.\n   *   Must match the encryption password.\n   * @returns Decrypted data as Uint8Array\n   *\n   * @throws {Error} If decryption fails or password is incorrect\n   */\n  async decryptWithPassword(\n    encryptedData: Uint8Array,\n    password: string,\n  ): Promise<Uint8Array> {\n    try {\n      const openpgp = await getOpenPGP();\n      const message = await openpgp.readMessage({\n        binaryMessage: encryptedData,\n      });\n\n      // Use password-based decryption with wallet signature as password\n      const { data: decrypted } = await openpgp.decrypt({\n        message,\n        passwords: [password],\n        format: \"binary\",\n      });\n\n      // Convert decrypted data back to Uint8Array\n      return new Uint8Array(decrypted as ArrayBuffer);\n    } catch (error) {\n      throw wrapCryptoError(\"decrypt with password\", error);\n    }\n  }\n}\n\n/**\n * Implements PGP operations for Node.js environments.\n *\n * @remarks\n * Provides PGP encryption, decryption, and key generation using the OpenPGP.js\n * library with Node.js-specific optimizations like zlib compression.\n *\n * @internal\n */\nclass NodePGPAdapter implements VanaPGPAdapter {\n  /**\n   * Encrypts data using PGP public key encryption.\n   *\n   * @param data - The plaintext string to encrypt.\n   *   Typically messages or structured data.\n   * @param publicKeyArmored - ASCII-armored PGP public key.\n   *   Obtain from PGP key generation or key servers.\n   * @returns ASCII-armored encrypted message\n   *\n   * @throws {Error} If encryption fails or public key is invalid\n   */\n  async encrypt(data: string, publicKeyArmored: string): Promise<string> {\n    try {\n      const openpgp = await getOpenPGP();\n      const publicKey = await openpgp.readKey({ armoredKey: publicKeyArmored });\n\n      const encrypted = await openpgp.encrypt({\n        message: await openpgp.createMessage({ text: data }),\n        encryptionKeys: publicKey,\n        config: {\n          preferredCompressionAlgorithm: openpgp.enums.compression.zlib,\n        },\n      });\n\n      return encrypted as string;\n    } catch (error) {\n      throw wrapCryptoError(\"PGP encryption\", error);\n    }\n  }\n\n  /**\n   * Decrypts PGP-encrypted data using a private key.\n   *\n   * @param encryptedData - ASCII-armored encrypted message.\n   *   Must be encrypted with corresponding public key.\n   * @param privateKeyArmored - ASCII-armored PGP private key.\n   *   Must correspond to the public key used for encryption.\n   * @returns The decrypted plaintext string\n   *\n   * @throws {Error} If decryption fails or private key is invalid\n   */\n  async decrypt(\n    encryptedData: string,\n    privateKeyArmored: string,\n  ): Promise<string> {\n    try {\n      const openpgp = await getOpenPGP();\n      const privateKey = await openpgp.readPrivateKey({\n        armoredKey: privateKeyArmored,\n      });\n      const message = await openpgp.readMessage({\n        armoredMessage: encryptedData,\n      });\n\n      const { data: decrypted } = await openpgp.decrypt({\n        message,\n        decryptionKeys: privateKey,\n      });\n\n      return decrypted as string;\n    } catch (error) {\n      throw wrapCryptoError(\"PGP decryption\", error);\n    }\n  }\n\n  /**\n   * Generates a new PGP key pair.\n   *\n   * @param options - Key generation options\n   * @param options.name - Name for the key identity.\n   *   Defaults to 'Vana User'.\n   * @param options.email - Email for the key identity.\n   *   Defaults to 'user@vana.com'.\n   * @param options.passphrase - Passphrase to protect the private key.\n   *   If not provided, key is unprotected.\n   * @returns ASCII-armored public and private keys\n   *\n   * @throws {Error} If key generation fails\n   */\n  async generateKeyPair(options?: {\n    name?: string;\n    email?: string;\n    passphrase?: string;\n  }): Promise<{ publicKey: string; privateKey: string }> {\n    try {\n      const openpgp = await getOpenPGP();\n      // Use shared utility to get standardized parameters\n      const keyGenParams = getPGPKeyGenParams(options);\n\n      const { privateKey, publicKey } = await openpgp.generateKey(keyGenParams);\n\n      return { publicKey, privateKey };\n    } catch (error) {\n      throw wrapCryptoError(\"PGP key generation\", error);\n    }\n  }\n}\n\n/**\n * Implements HTTP operations for Node.js environments.\n *\n * @remarks\n * Provides fetch functionality using the global fetch if available,\n * suitable for Node.js 18+ or environments with fetch polyfills.\n *\n * @internal\n */\nclass NodeHttpAdapter implements VanaHttpAdapter {\n  /**\n   * Performs an HTTP request using fetch.\n   *\n   * @param url - The URL to fetch.\n   *   Must be a valid HTTP/HTTPS URL.\n   * @param options - Standard fetch options.\n   *   See MDN fetch documentation for details.\n   * @returns Standard fetch Response object\n   *\n   * @throws {Error} If fetch is not available in the environment\n   */\n  async fetch(url: string, options?: RequestInit): Promise<Response> {\n    if (typeof globalThis.fetch !== \"undefined\") {\n      return globalThis.fetch(url, options);\n    }\n\n    throw new Error(\"No fetch implementation available in Node.js environment\");\n  }\n}\n\n/**\n * Implements in-memory caching for Node.js environments.\n *\n * @remarks\n * Provides a simple TTL-based cache using a Map. Cached values expire\n * after 2 hours by default. This cache is not persistent and will be\n * cleared when the process exits.\n *\n * @internal\n */\nclass NodeCacheAdapter implements VanaCacheAdapter {\n  private cache = new Map<string, { value: string; expires: number }>();\n  private readonly defaultTtl = 2 * 60 * 60 * 1000; // 2 hours in milliseconds\n\n  /**\n   * Retrieves a cached value by key.\n   *\n   * @param key - The cache key to look up.\n   *   Typically derived from operation parameters.\n   * @returns The cached value or null if not found/expired\n   */\n  get(key: string): string | null {\n    const entry = this.cache.get(key);\n    if (!entry) {\n      return null;\n    }\n\n    // Check if expired\n    if (Date.now() > entry.expires) {\n      this.cache.delete(key);\n      return null;\n    }\n\n    return entry.value;\n  }\n\n  /**\n   * Stores a value in the cache with TTL.\n   *\n   * @param key - The cache key.\n   *   Should be unique per operation.\n   * @param value - The value to cache.\n   *   Typically serialized data or signatures.\n   */\n  set(key: string, value: string): void {\n    this.cache.set(key, {\n      value,\n      expires: Date.now() + this.defaultTtl,\n    });\n  }\n\n  /**\n   * Removes a specific key from the cache.\n   *\n   * @param key - The cache key to remove.\n   *   Use when cached data becomes invalid.\n   */\n  delete(key: string): void {\n    this.cache.delete(key);\n  }\n\n  /**\n   * Clears all cached values.\n   *\n   * @remarks\n   * Use with caution as this removes all cached signatures\n   * and other performance optimizations.\n   */\n  clear(): void {\n    this.cache.clear();\n  }\n}\n\n/**\n * Provides complete platform abstraction for Node.js environments.\n *\n * @remarks\n * This adapter aggregates all Node.js-specific implementations of platform\n * operations. It automatically selects appropriate cryptographic implementations\n * based on feature flags and provides consistent APIs across all operations.\n *\n * @example\n * ```typescript\n * // Create a custom Node.js adapter instance\n * const adapter = new NodePlatformAdapter();\n *\n * // Use for encryption\n * const encrypted = await adapter.crypto.encryptWithPublicKey(\n *   'secret data',\n *   publicKeyHex\n * );\n *\n * // Use for caching\n * adapter.cache.set('signature_key', signatureValue);\n * ```\n *\n * @category Platform\n */\nexport class NodePlatformAdapter implements VanaPlatformAdapter {\n  crypto: VanaCryptoAdapter;\n  pgp: VanaPGPAdapter;\n  http: VanaHttpAdapter;\n  cache: VanaCacheAdapter;\n  platform: \"node\" = \"node\" as const;\n\n  constructor() {\n    this.crypto = new NodeCryptoAdapter();\n    this.pgp = new NodePGPAdapter();\n    this.http = new NodeHttpAdapter();\n    this.cache = new NodeCacheAdapter();\n  }\n}\n\n/**\n * Pre-configured Node.js platform adapter instance.\n *\n * @remarks\n * This singleton instance is the default adapter used by the SDK when\n * running in Node.js environments. It's automatically selected based on\n * platform detection.\n *\n * @example\n * ```typescript\n * import { nodePlatformAdapter } from '@vana-sdk/platform/node';\n *\n * // Use directly for platform operations\n * const keys = await nodePlatformAdapter.crypto.generateKeyPair();\n * ```\n *\n * @category Platform\n */\nexport const nodePlatformAdapter: VanaPlatformAdapter =\n  new NodePlatformAdapter();\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAyCA,uBAAmC;AACnC,yBAAgC;AAChC,0BAAmC;AACnC,yBAA2B;AAC3B,sBAAyB;AACzB,wCAA2C;AAC3C,0BAIO;AAOP,kBAAuC;AACvC,uBAA2B;AAE3B,oBAA4B;AAC5B,uBAA4B;AAR5B,MAAM,iBAAa,+BAAW,MAAM,OAAO,SAAS,CAAC;AACrD,MAAM,oBAAgB,+BAAW,MAAM,OAAO,aAAa,CAAC;AAmC5D,MAAM,kBAA+C;AAAA;AAAA,EAE3C,sBAAsB,IAAI,mCAAuB;AAAA,EACjD,sBAAsB,IAAI,6DAA2B;AAAA,IAC3D,eAAe,KAAK;AAAA,EACtB,CAAC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaD,MAAM,qBACJ,MACA,cACiB;AACjB,QAAI;AACF,UAAI,yBAAS,gBAAgB;AAE3B,cAAM,YAAY,OAAO,KAAK,cAAc,KAAK;AACjD,cAAM,UAAU,OAAO,KAAK,MAAM,MAAM;AAExC,cAAM,YAAY,MAAM,KAAK,oBAAoB;AAAA,UAC/C;AAAA,UACA;AAAA,QACF;AAGA,cAAM,SAAS,OAAO,OAAO;AAAA,UAC3B,UAAU;AAAA,UACV,UAAU;AAAA,UACV,UAAU;AAAA,UACV,UAAU;AAAA,QACZ,CAAC;AAED,eAAO,OAAO,SAAS,KAAK;AAAA,MAC9B,OAAO;AAEL,cAAM,aAAa,MAAM,cAAc;AACvC,cAAM,iBAAiB,OAAO,KAAK,cAAc,KAAK;AAItD,cAAM,eAAe,KAAK,oBAAoB;AAAA,UAC5C,IAAI,WAAW,cAAc;AAAA,QAC/B;AACA,cAAM,YAAY,OAAO,KAAK,YAAY;AAE1C,cAAM,UAAU,OAAO,KAAK,MAAM,MAAM;AAExC,cAAM,YAAY,MAAM,WAAW,QAAQ,WAAW,OAAO;AAG7D,cAAM,SAAS,OAAO,OAAO;AAAA,UAC3B,UAAU;AAAA,UACV,UAAU;AAAA,UACV,UAAU;AAAA,UACV,UAAU;AAAA,QACZ,CAAC;AAED,eAAO,OAAO,SAAS,KAAK;AAAA,MAC9B;AAAA,IACF,SAAS,OAAO;AACd,UAAI,yBAAS,kBAAkB,iBAAiB,6BAAY;AAC1D,cAAM;AAAA,MACR;AACA,YAAM,IAAI;AAAA,QACR,sBAAsB,iBAAiB,QAAQ,MAAM,UAAU,OAAO,KAAK,CAAC;AAAA,MAC9E;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAcA,MAAM,sBACJ,eACA,eACiB;AACjB,QAAI;AACF,UAAI,yBAAS,gBAAgB;AAE3B,cAAM,uBAAmB,6CAAwB,aAAa;AAC9D,cAAM,kBAAkB,OAAO,KAAK,eAAe,KAAK;AACxD,cAAM,EAAE,IAAI,gBAAgB,YAAY,IAAI,QAC1C,8CAAyB,eAAe;AAG1C,cAAM,eAA+B;AAAA,UACnC;AAAA,UACA;AAAA,UACA;AAAA,UACA;AAAA,QACF;AAEA,cAAM,YAAY,MAAM,KAAK,oBAAoB;AAAA,UAC/C;AAAA,UACA;AAAA,QACF;AACA,eAAO,IAAI,YAAY,EAAE,OAAO,SAAS;AAAA,MAC3C,OAAO;AAEL,cAAM,aAAa,MAAM,cAAc;AACvC,cAAM,aAAa,OAAO,KAAK,eAAe,KAAK;AACnD,cAAM,kBAAkB,OAAO,KAAK,eAAe,KAAK;AAGxD,cAAM,EAAE,IAAI,gBAAgB,YAAY,IAAI,QAC1C,8CAAyB,eAAe;AAE1C,cAAM,YAAY,MAAM,WAAW,QAAQ,YAAY;AAAA,UACrD,IAAI,OAAO,KAAK,EAAE;AAAA,UAClB,gBAAgB,OAAO,KAAK,cAAc;AAAA,UAC1C,YAAY,OAAO,KAAK,UAAU;AAAA,UAClC,KAAK,OAAO,KAAK,GAAG;AAAA,QACtB,CAAC;AAED,eAAO,UAAU,SAAS,MAAM;AAAA,MAClC;AAAA,IACF,SAAS,OAAO;AACd,UAAI,yBAAS,kBAAkB,iBAAiB,6BAAY;AAC1D,cAAM;AAAA,MACR;AACA,YAAM,IAAI;AAAA,QACR,sBAAsB,iBAAiB,QAAQ,MAAM,UAAU,OAAO,KAAK,CAAC;AAAA,MAC9E;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWA,MAAM,kBAAsE;AAC1E,QAAI;AACF,UAAI,yBAAS,gBAAgB;AAE3B,cAAM,YAAY,iBAAAA;AAGlB,YAAI;AACJ,WAAG;AACD,2BAAa,2BAAY,EAAE;AAAA,QAC7B,SAAS,CAAC,UAAU,iBAAiB,UAAU;AAG/C,cAAM,YAAY,OAAO;AAAA,UACvB,UAAU,gBAAgB,YAAY,IAAI;AAAA,QAC5C;AAEA,eAAO;AAAA,UACL,YAAY,WAAW,SAAS,KAAK;AAAA,UACrC,WAAW,UAAU,SAAS,KAAK;AAAA,QACrC;AAAA,MACF,OAAO;AAEL,cAAM,aAAa,MAAM,cAAc;AACvC,cAAM,aAAa,WAAW,gBAAgB;AAC9C,cAAM,YAAY,WAAW,UAAU,UAAU;AAEjD,eAAO;AAAA,UACL,YAAY,WAAW,SAAS,KAAK;AAAA,UACrC,WAAW,UAAU,SAAS,KAAK;AAAA,QACrC;AAAA,MACF;AAAA,IACF,SAAS,OAAO;AACd,gBAAM,oCAAgB,kBAAkB,KAAK;AAAA,IAC/C;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,2BACJ,MACA,WACiB;AACjB,QAAI;AACF,UAAI,yBAAS,gBAAgB;AAE3B,eAAO,MAAM,KAAK,oBAAoB;AAAA,UACpC;AAAA,UACA;AAAA,QACF;AAAA,MACF,OAAO;AAEL,cAAM,aAAa,MAAM,cAAc;AACvC,cAAM,qBAAiB,4CAAuB,SAAS;AAIvD,cAAM,eACJ,KAAK,oBAAoB,wBAAwB,cAAc;AACjE,cAAM,kBAAkB,OAAO,KAAK,YAAY;AAEhD,cAAM,UAAU,OAAO,KAAK,MAAM,MAAM;AAExC,cAAM,YAAY,MAAM,WAAW,QAAQ,iBAAiB,OAAO;AAGnE,cAAM,SAAS,OAAO,OAAO;AAAA,UAC3B,UAAU;AAAA,UACV,UAAU;AAAA,UACV,UAAU;AAAA,UACV,UAAU;AAAA,QACZ,CAAC;AAED,eAAO,OAAO,SAAS,KAAK;AAAA,MAC9B;AAAA,IACF,SAAS,OAAO;AACd,gBAAM,oCAAgB,kCAAkC,KAAK;AAAA,IAC/D;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,4BACJ,eACA,YACiB;AACjB,QAAI;AACF,UAAI,yBAAS,gBAAgB;AAE3B,eAAO,MAAM,KAAK,oBAAoB;AAAA,UACpC;AAAA,UACA;AAAA,QACF;AAAA,MACF,OAAO;AAEL,cAAM,aAAa,MAAM,cAAc;AACvC,cAAM,mBAAmB,OAAO;AAAA,cAC9B,6CAAwB,UAAU;AAAA,QACpC;AACA,cAAM,kBAAkB,OAAO,KAAK,eAAe,KAAK;AAGxD,cAAM,EAAE,IAAI,gBAAgB,YAAY,IAAI,QAC1C,8CAAyB,eAAe;AAE1C,cAAM,YAAY,MAAM,WAAW,QAAQ,kBAAkB;AAAA,UAC3D,IAAI,OAAO,KAAK,EAAE;AAAA,UAClB,gBAAgB,OAAO,KAAK,cAAc;AAAA,UAC1C,YAAY,OAAO,KAAK,UAAU;AAAA,UAClC,KAAK,OAAO,KAAK,GAAG;AAAA,QACtB,CAAC;AAED,eAAO,UAAU,SAAS,MAAM;AAAA,MAClC;AAAA,IACF,SAAS,OAAO;AACd,gBAAM,oCAAgB,mCAAmC,KAAK;AAAA,IAChE;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAiBA,MAAM,oBACJ,MACA,UACqB;AACrB,QAAI;AACF,YAAM,UAAU,MAAM,WAAW;AACjC,YAAM,UAAU,MAAM,QAAQ,cAAc;AAAA,QAC1C,QAAQ;AAAA,MACV,CAAC;AAKD,YAAM,YAAY,MAAM,QAAQ,QAAQ;AAAA,QACtC;AAAA,QACA,WAAW,CAAC,QAAQ;AAAA,QACpB,QAAQ;AAAA,MACV,CAAC;AAGD,UAAI,qBAAqB,YAAY;AACnC,eAAO;AAAA,MACT;AAGA,UACE,aACA,OAAO,cAAc,YACrB,eAAe,WACf;AACA,eAAO,UAAM;AAAA,UACX;AAAA,QACF;AAAA,MACF;AAEA,YAAM,IAAI,MAAM,kCAAkC;AAAA,IACpD,SAAS,OAAO;AACd,gBAAM,oCAAgB,yBAAyB,KAAK;AAAA,IACtD;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,oBACJ,eACA,UACqB;AACrB,QAAI;AACF,YAAM,UAAU,MAAM,WAAW;AACjC,YAAM,UAAU,MAAM,QAAQ,YAAY;AAAA,QACxC,eAAe;AAAA,MACjB,CAAC;AAGD,YAAM,EAAE,MAAM,UAAU,IAAI,MAAM,QAAQ,QAAQ;AAAA,QAChD;AAAA,QACA,WAAW,CAAC,QAAQ;AAAA,QACpB,QAAQ;AAAA,MACV,CAAC;AAGD,aAAO,IAAI,WAAW,SAAwB;AAAA,IAChD,SAAS,OAAO;AACd,gBAAM,oCAAgB,yBAAyB,KAAK;AAAA,IACtD;AAAA,EACF;AACF;AAWA,MAAM,eAAyC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAY7C,MAAM,QAAQ,MAAc,kBAA2C;AACrE,QAAI;AACF,YAAM,UAAU,MAAM,WAAW;AACjC,YAAM,YAAY,MAAM,QAAQ,QAAQ,EAAE,YAAY,iBAAiB,CAAC;AAExE,YAAM,YAAY,MAAM,QAAQ,QAAQ;AAAA,QACtC,SAAS,MAAM,QAAQ,cAAc,EAAE,MAAM,KAAK,CAAC;AAAA,QACnD,gBAAgB;AAAA,QAChB,QAAQ;AAAA,UACN,+BAA+B,QAAQ,MAAM,YAAY;AAAA,QAC3D;AAAA,MACF,CAAC;AAED,aAAO;AAAA,IACT,SAAS,OAAO;AACd,gBAAM,oCAAgB,kBAAkB,KAAK;AAAA,IAC/C;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,QACJ,eACA,mBACiB;AACjB,QAAI;AACF,YAAM,UAAU,MAAM,WAAW;AACjC,YAAM,aAAa,MAAM,QAAQ,eAAe;AAAA,QAC9C,YAAY;AAAA,MACd,CAAC;AACD,YAAM,UAAU,MAAM,QAAQ,YAAY;AAAA,QACxC,gBAAgB;AAAA,MAClB,CAAC;AAED,YAAM,EAAE,MAAM,UAAU,IAAI,MAAM,QAAQ,QAAQ;AAAA,QAChD;AAAA,QACA,gBAAgB;AAAA,MAClB,CAAC;AAED,aAAO;AAAA,IACT,SAAS,OAAO;AACd,gBAAM,oCAAgB,kBAAkB,KAAK;AAAA,IAC/C;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAgBA,MAAM,gBAAgB,SAIiC;AACrD,QAAI;AACF,YAAM,UAAU,MAAM,WAAW;AAEjC,YAAM,mBAAe,qCAAmB,OAAO;AAE/C,YAAM,EAAE,YAAY,UAAU,IAAI,MAAM,QAAQ,YAAY,YAAY;AAExE,aAAO,EAAE,WAAW,WAAW;AAAA,IACjC,SAAS,OAAO;AACd,gBAAM,oCAAgB,sBAAsB,KAAK;AAAA,IACnD;AAAA,EACF;AACF;AAWA,MAAM,gBAA2C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAY/C,MAAM,MAAM,KAAa,SAA0C;AACjE,QAAI,OAAO,WAAW,UAAU,aAAa;AAC3C,aAAO,WAAW,MAAM,KAAK,OAAO;AAAA,IACtC;AAEA,UAAM,IAAI,MAAM,0DAA0D;AAAA,EAC5E;AACF;AAYA,MAAM,iBAA6C;AAAA,EACzC,QAAQ,oBAAI,IAAgD;AAAA,EACnD,aAAa,IAAI,KAAK,KAAK;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAS5C,IAAI,KAA4B;AAC9B,UAAM,QAAQ,KAAK,MAAM,IAAI,GAAG;AAChC,QAAI,CAAC,OAAO;AACV,aAAO;AAAA,IACT;AAGA,QAAI,KAAK,IAAI,IAAI,MAAM,SAAS;AAC9B,WAAK,MAAM,OAAO,GAAG;AACrB,aAAO;AAAA,IACT;AAEA,WAAO,MAAM;AAAA,EACf;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,IAAI,KAAa,OAAqB;AACpC,SAAK,MAAM,IAAI,KAAK;AAAA,MAClB;AAAA,MACA,SAAS,KAAK,IAAI,IAAI,KAAK;AAAA,IAC7B,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,OAAO,KAAmB;AACxB,SAAK,MAAM,OAAO,GAAG;AAAA,EACvB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,QAAc;AACZ,SAAK,MAAM,MAAM;AAAA,EACnB;AACF;AA2BO,MAAM,oBAAmD;AAAA,EAC9D;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA,WAAmB;AAAA,EAEnB,cAAc;AACZ,SAAK,SAAS,IAAI,kBAAkB;AACpC,SAAK,MAAM,IAAI,eAAe;AAC9B,SAAK,OAAO,IAAI,gBAAgB;AAChC,SAAK,QAAQ,IAAI,iBAAiB;AAAA,EACpC;AACF;AAoBO,MAAM,sBACX,IAAI,oBAAoB;","names":["secp256k1Import"]}
+{"version":3,"sources":["../../src/platform/node.ts"],"sourcesContent":["/**\n * Provides Node.js-specific implementations of platform abstraction interfaces.\n *\n * @remarks\n * This module implements all platform-specific operations for Node.js environments,\n * including cryptography, PGP operations, HTTP requests, and caching. It dynamically\n * imports dependencies to avoid Turbopack TDZ issues and uses a custom ECIES\n * implementation with native secp256k1 for optimal performance.\n *\n * WARNING: Dependencies that access globals during init MUST be dynamically imported\n * to support Turbopack. See: https://github.com/vercel/next.js/issues/82632\n *\n * @example\n * ```typescript\n * // Use the Node.js platform adapter\n * import { nodePlatformAdapter} from '@vana-sdk/platform/node';\n *\n * // Encrypt data with public key\n * const encrypted = await nodePlatformAdapter.crypto.encryptWithPublicKey(\n *   'sensitive data',\n *   '0x04...' // Public key hex\n * );\n *\n * // Generate PGP key pair\n * const { publicKey, privateKey } = await nodePlatformAdapter.pgp.generateKeyPair({\n *   name: 'Data Owner',\n *   email: 'owner@example.com'\n * });\n * ```\n *\n * @category Platform\n * @module platform/node\n */\n\nimport type {\n  VanaPlatformAdapter,\n  VanaCryptoAdapter,\n  VanaPGPAdapter,\n  VanaHttpAdapter,\n  VanaCacheAdapter,\n} from \"./interface\";\nimport { getPGPKeyGenParams } from \"./shared/pgp-utils\";\nimport { wrapCryptoError } from \"./shared/error-utils\";\nimport { streamToUint8Array } from \"./shared/stream-utils\";\nimport { lazyImport } from \"../utils/lazy-import\";\nimport { WalletKeyEncryptionService } from \"../crypto/services/WalletKeyEncryptionService\";\nimport {\n  processWalletPrivateKey,\n  parseEncryptedDataBuffer,\n  processWalletPublicKey,\n} from \"../utils/crypto-utils\";\n\n// Lazy-loaded dependencies to avoid Turbopack TDZ issues\nconst getOpenPGP = lazyImport(() => import(\"openpgp\"));\n\n// Import ECIES implementation\nimport { NodeECIESUint8Provider } from \"../crypto/ecies/node\";\nimport { ECIESError } from \"../crypto/ecies/interface\";\nimport type { ECIESEncrypted } from \"../crypto/ecies\";\nimport { randomBytes } from \"crypto\";\nimport secp256k1Import from \"secp256k1\";\n\n// Type definition for secp256k1 module\ninterface Secp256k1Module {\n  privateKeyVerify(privateKey: Buffer): boolean;\n  publicKeyCreate(privateKey: Buffer, compressed: boolean): Buffer;\n  publicKeyVerify(publicKey: Buffer): boolean;\n  publicKeyConvert(publicKey: Buffer, compressed: boolean): Buffer;\n  ecdh(\n    publicKey: Buffer,\n    privateKey: Buffer,\n    options: {\n      hashfn: (x: Uint8Array, y: Uint8Array, output?: Uint8Array) => Uint8Array;\n    },\n    output: Buffer,\n  ): Buffer;\n}\n\n/**\n * Implements cryptographic operations for Node.js environments.\n *\n * @remarks\n * Provides ECIES encryption/decryption, key generation, and password-based\n * encryption using a custom ECIES implementation with native secp256k1.\n *\n * @internal\n */\nclass NodeCryptoAdapter implements VanaCryptoAdapter {\n  private eciesProvider = new NodeECIESUint8Provider();\n  private walletService = new WalletKeyEncryptionService({\n    eciesProvider: this.eciesProvider,\n  });\n\n  /**\n   * Encrypts data using ECIES with a public key.\n   *\n   * @param data - The plaintext string to encrypt.\n   *   Typically user data or sensitive information.\n   * @param publicKeyHex - The recipient's public key in hex format.\n   *   Obtain from key generation or user profile.\n   * @returns Encrypted data as a hex string containing IV, ephemeral key, ciphertext, and MAC\n   *\n   * @throws {Error} If encryption fails or public key is invalid\n   */\n  async encryptWithPublicKey(\n    data: string,\n    publicKeyHex: string,\n  ): Promise<string> {\n    try {\n      // Process public key to handle 0x prefix and convert to Buffer\n      const publicKeyBytes = processWalletPublicKey(publicKeyHex);\n      const publicKey = Buffer.from(publicKeyBytes);\n      const message = Buffer.from(data, \"utf8\");\n\n      const encrypted = await this.eciesProvider.encrypt(publicKey, message);\n\n      // Concatenate all components and return as hex string for API consistency\n      const result = Buffer.concat([\n        encrypted.iv,\n        encrypted.ephemPublicKey,\n        encrypted.ciphertext,\n        encrypted.mac,\n      ]);\n\n      return result.toString(\"hex\");\n    } catch (error) {\n      if (error instanceof ECIESError) {\n        throw error;\n      }\n      throw new Error(\n        `Encryption failed: ${error instanceof Error ? error.message : String(error)}`,\n      );\n    }\n  }\n\n  /**\n   * Decrypts ECIES-encrypted data using a private key.\n   *\n   * @param encryptedData - Hex string containing encrypted data.\n   *   Must include IV, ephemeral public key, ciphertext, and MAC.\n   * @param privateKeyHex - The private key in hex format.\n   *   Must correspond to the public key used for encryption.\n   * @returns The decrypted plaintext string\n   *\n   * @throws {Error} If decryption fails or MAC verification fails\n   * @throws {ECIESError} If using custom ECIES and specific error occurs\n   */\n  async decryptWithPrivateKey(\n    encryptedData: string,\n    privateKeyHex: string,\n  ): Promise<string> {\n    try {\n      const privateKeyBuffer = processWalletPrivateKey(privateKeyHex);\n      // Handle 0x prefix in encrypted data (e.g., from viem's toHex)\n      const encryptedHex = encryptedData.startsWith(\"0x\")\n        ? encryptedData.slice(2)\n        : encryptedData;\n      const encryptedBuffer = Buffer.from(encryptedHex, \"hex\");\n      const { iv, ephemPublicKey, ciphertext, mac } =\n        parseEncryptedDataBuffer(encryptedBuffer);\n\n      // Reconstruct the encrypted data structure\n      const encryptedObj: ECIESEncrypted = {\n        iv,\n        ephemPublicKey,\n        ciphertext,\n        mac,\n      };\n\n      const decrypted = await this.eciesProvider.decrypt(\n        privateKeyBuffer,\n        encryptedObj,\n      );\n      return new TextDecoder().decode(decrypted);\n    } catch (error) {\n      if (error instanceof ECIESError) {\n        throw error;\n      }\n      throw new Error(\n        `Decryption failed: ${error instanceof Error ? error.message : String(error)}`,\n      );\n    }\n  }\n\n  /**\n   * Generates a new secp256k1 key pair for ECIES operations.\n   *\n   * @returns Object containing hex-encoded public and private keys\n   * @returns returns.publicKey - Compressed public key in hex format\n   * @returns returns.privateKey - Private key in hex format\n   *\n   * @throws {Error} If key generation fails\n   */\n  async generateKeyPair(): Promise<{ publicKey: string; privateKey: string }> {\n    try {\n      const secp256k1 = secp256k1Import as unknown as Secp256k1Module;\n\n      // Generate private key\n      let privateKey: Buffer;\n      do {\n        privateKey = randomBytes(32);\n      } while (!secp256k1.privateKeyVerify(privateKey));\n\n      // Get compressed public key\n      const publicKey = Buffer.from(\n        secp256k1.publicKeyCreate(privateKey, true),\n      );\n\n      return {\n        privateKey: privateKey.toString(\"hex\"),\n        publicKey: publicKey.toString(\"hex\"),\n      };\n    } catch (error) {\n      throw wrapCryptoError(\"key generation\", error);\n    }\n  }\n\n  /**\n   * Encrypts data using a wallet's public key.\n   *\n   * @param data - The plaintext string to encrypt.\n   *   Typically permission data or DLP metadata.\n   * @param publicKey - The wallet's public key (with or without 0x prefix).\n   *   Obtain from wallet connection or user profile.\n   * @returns Encrypted data as a hex string\n   *\n   * @throws {Error} If encryption fails or key processing fails\n   */\n  async encryptWithWalletPublicKey(\n    data: string,\n    publicKey: string,\n  ): Promise<string> {\n    try {\n      return await this.walletService.encryptWithWalletPublicKey(\n        data,\n        publicKey,\n      );\n    } catch (error) {\n      throw wrapCryptoError(\"encrypt with wallet public key\", error);\n    }\n  }\n\n  /**\n   * Decrypts data using a wallet's private key.\n   *\n   * @param encryptedData - Hex string containing encrypted data.\n   *   Must be encrypted with corresponding wallet public key.\n   * @param privateKey - The wallet's private key.\n   *   Obtain from wallet connection (handle with care).\n   * @returns The decrypted plaintext string\n   *\n   * @throws {Error} If decryption fails or key is invalid\n   */\n  async decryptWithWalletPrivateKey(\n    encryptedData: string,\n    privateKey: string,\n  ): Promise<string> {\n    try {\n      return await this.walletService.decryptWithWalletPrivateKey(\n        encryptedData,\n        privateKey,\n      );\n    } catch (error) {\n      throw wrapCryptoError(\"decrypt with wallet private key\", error);\n    }\n  }\n\n  /**\n   * Encrypts binary data using password-based encryption.\n   *\n   * @param data - Binary data to encrypt.\n   *   Typically file contents or serialized objects.\n   * @param password - Password for encryption.\n   *   Often derived from wallet signatures.\n   * @returns Encrypted data as Uint8Array\n   *\n   * @remarks\n   * Uses OpenPGP for password-based encryption. Note that this is not\n   * deterministic due to OpenPGP's random salt generation.\n   *\n   * @throws {Error} If encryption fails\n   */\n  async encryptWithPassword(\n    data: Uint8Array,\n    password: string,\n  ): Promise<Uint8Array> {\n    try {\n      const openpgp = await getOpenPGP();\n      const message = await openpgp.createMessage({\n        binary: data,\n      });\n\n      // Use password-based encryption with wallet signature as password\n      // Note: For deterministic encryption, we would need to control the salt\n      // This implementation is secure but not deterministic due to OpenPGP's design\n      const encrypted = await openpgp.encrypt({\n        message,\n        passwords: [password],\n        format: \"binary\",\n      });\n\n      // In Node.js, the encrypted result is already a Uint8Array\n      if (encrypted instanceof Uint8Array) {\n        return encrypted;\n      }\n\n      // If it's a stream (should not happen with format: \"binary\"), read it\n      if (\n        encrypted &&\n        typeof encrypted === \"object\" &&\n        \"getReader\" in encrypted\n      ) {\n        return await streamToUint8Array(\n          encrypted as ReadableStream<Uint8Array>,\n        );\n      }\n\n      throw new Error(\"Unexpected encrypted data format\");\n    } catch (error) {\n      throw wrapCryptoError(\"encrypt with password\", error);\n    }\n  }\n\n  /**\n   * Decrypts password-encrypted binary data.\n   *\n   * @param encryptedData - Password-encrypted data as Uint8Array.\n   *   Must be encrypted with the same password.\n   * @param password - Password for decryption.\n   *   Must match the encryption password.\n   * @returns Decrypted data as Uint8Array\n   *\n   * @throws {Error} If decryption fails or password is incorrect\n   */\n  async decryptWithPassword(\n    encryptedData: Uint8Array,\n    password: string,\n  ): Promise<Uint8Array> {\n    try {\n      const openpgp = await getOpenPGP();\n      const message = await openpgp.readMessage({\n        binaryMessage: encryptedData,\n      });\n\n      // Use password-based decryption with wallet signature as password\n      const { data: decrypted } = await openpgp.decrypt({\n        message,\n        passwords: [password],\n        format: \"binary\",\n      });\n\n      // Convert decrypted data back to Uint8Array\n      return new Uint8Array(decrypted as ArrayBuffer);\n    } catch (error) {\n      throw wrapCryptoError(\"decrypt with password\", error);\n    }\n  }\n}\n\n/**\n * Implements PGP operations for Node.js environments.\n *\n * @remarks\n * Provides PGP encryption, decryption, and key generation using the OpenPGP.js\n * library with Node.js-specific optimizations like zlib compression.\n *\n * @internal\n */\nclass NodePGPAdapter implements VanaPGPAdapter {\n  /**\n   * Encrypts data using PGP public key encryption.\n   *\n   * @param data - The plaintext string to encrypt.\n   *   Typically messages or structured data.\n   * @param publicKeyArmored - ASCII-armored PGP public key.\n   *   Obtain from PGP key generation or key servers.\n   * @returns ASCII-armored encrypted message\n   *\n   * @throws {Error} If encryption fails or public key is invalid\n   */\n  async encrypt(data: string, publicKeyArmored: string): Promise<string> {\n    try {\n      const openpgp = await getOpenPGP();\n      const publicKey = await openpgp.readKey({ armoredKey: publicKeyArmored });\n\n      const encrypted = await openpgp.encrypt({\n        message: await openpgp.createMessage({ text: data }),\n        encryptionKeys: publicKey,\n        config: {\n          preferredCompressionAlgorithm: openpgp.enums.compression.zlib,\n        },\n      });\n\n      return encrypted as string;\n    } catch (error) {\n      throw wrapCryptoError(\"PGP encryption\", error);\n    }\n  }\n\n  /**\n   * Decrypts PGP-encrypted data using a private key.\n   *\n   * @param encryptedData - ASCII-armored encrypted message.\n   *   Must be encrypted with corresponding public key.\n   * @param privateKeyArmored - ASCII-armored PGP private key.\n   *   Must correspond to the public key used for encryption.\n   * @returns The decrypted plaintext string\n   *\n   * @throws {Error} If decryption fails or private key is invalid\n   */\n  async decrypt(\n    encryptedData: string,\n    privateKeyArmored: string,\n  ): Promise<string> {\n    try {\n      const openpgp = await getOpenPGP();\n      const privateKey = await openpgp.readPrivateKey({\n        armoredKey: privateKeyArmored,\n      });\n      const message = await openpgp.readMessage({\n        armoredMessage: encryptedData,\n      });\n\n      const { data: decrypted } = await openpgp.decrypt({\n        message,\n        decryptionKeys: privateKey,\n      });\n\n      return decrypted as string;\n    } catch (error) {\n      throw wrapCryptoError(\"PGP decryption\", error);\n    }\n  }\n\n  /**\n   * Generates a new PGP key pair.\n   *\n   * @param options - Key generation options\n   * @param options.name - Name for the key identity.\n   *   Defaults to 'Vana User'.\n   * @param options.email - Email for the key identity.\n   *   Defaults to 'user@vana.com'.\n   * @param options.passphrase - Passphrase to protect the private key.\n   *   If not provided, key is unprotected.\n   * @returns ASCII-armored public and private keys\n   *\n   * @throws {Error} If key generation fails\n   */\n  async generateKeyPair(options?: {\n    name?: string;\n    email?: string;\n    passphrase?: string;\n  }): Promise<{ publicKey: string; privateKey: string }> {\n    try {\n      const openpgp = await getOpenPGP();\n      // Use shared utility to get standardized parameters\n      const keyGenParams = getPGPKeyGenParams(options);\n\n      const { privateKey, publicKey } = await openpgp.generateKey(keyGenParams);\n\n      return { publicKey, privateKey };\n    } catch (error) {\n      throw wrapCryptoError(\"PGP key generation\", error);\n    }\n  }\n}\n\n/**\n * Implements HTTP operations for Node.js environments.\n *\n * @remarks\n * Provides fetch functionality using the global fetch if available,\n * suitable for Node.js 18+ or environments with fetch polyfills.\n *\n * @internal\n */\nclass NodeHttpAdapter implements VanaHttpAdapter {\n  /**\n   * Performs an HTTP request using fetch.\n   *\n   * @param url - The URL to fetch.\n   *   Must be a valid HTTP/HTTPS URL.\n   * @param options - Standard fetch options.\n   *   See MDN fetch documentation for details.\n   * @returns Standard fetch Response object\n   *\n   * @throws {Error} If fetch is not available in the environment\n   */\n  async fetch(url: string, options?: RequestInit): Promise<Response> {\n    if (typeof globalThis.fetch !== \"undefined\") {\n      return globalThis.fetch(url, options);\n    }\n\n    throw new Error(\"No fetch implementation available in Node.js environment\");\n  }\n}\n\n/**\n * Implements in-memory caching for Node.js environments.\n *\n * @remarks\n * Provides a simple TTL-based cache using a Map. Cached values expire\n * after 2 hours by default. This cache is not persistent and will be\n * cleared when the process exits.\n *\n * @internal\n */\nclass NodeCacheAdapter implements VanaCacheAdapter {\n  private cache = new Map<string, { value: string; expires: number }>();\n  private readonly defaultTtl = 2 * 60 * 60 * 1000; // 2 hours in milliseconds\n\n  /**\n   * Retrieves a cached value by key.\n   *\n   * @param key - The cache key to look up.\n   *   Typically derived from operation parameters.\n   * @returns The cached value or null if not found/expired\n   */\n  get(key: string): string | null {\n    const entry = this.cache.get(key);\n    if (!entry) {\n      return null;\n    }\n\n    // Check if expired\n    if (Date.now() > entry.expires) {\n      this.cache.delete(key);\n      return null;\n    }\n\n    return entry.value;\n  }\n\n  /**\n   * Stores a value in the cache with TTL.\n   *\n   * @param key - The cache key.\n   *   Should be unique per operation.\n   * @param value - The value to cache.\n   *   Typically serialized data or signatures.\n   */\n  set(key: string, value: string): void {\n    this.cache.set(key, {\n      value,\n      expires: Date.now() + this.defaultTtl,\n    });\n  }\n\n  /**\n   * Removes a specific key from the cache.\n   *\n   * @param key - The cache key to remove.\n   *   Use when cached data becomes invalid.\n   */\n  delete(key: string): void {\n    this.cache.delete(key);\n  }\n\n  /**\n   * Clears all cached values.\n   *\n   * @remarks\n   * Use with caution as this removes all cached signatures\n   * and other performance optimizations.\n   */\n  clear(): void {\n    this.cache.clear();\n  }\n}\n\n/**\n * Provides complete platform abstraction for Node.js environments.\n *\n * @remarks\n * This adapter aggregates all Node.js-specific implementations of platform\n * operations using a custom ECIES implementation with native secp256k1 for\n * optimal performance and provides consistent APIs across all operations.\n *\n * @example\n * ```typescript\n * // Create a custom Node.js adapter instance\n * const adapter = new NodePlatformAdapter();\n *\n * // Use for encryption\n * const encrypted = await adapter.crypto.encryptWithPublicKey(\n *   'secret data',\n *   publicKeyHex\n * );\n *\n * // Use for caching\n * adapter.cache.set('signature_key', signatureValue);\n * ```\n *\n * @category Platform\n */\nexport class NodePlatformAdapter implements VanaPlatformAdapter {\n  crypto: VanaCryptoAdapter;\n  pgp: VanaPGPAdapter;\n  http: VanaHttpAdapter;\n  cache: VanaCacheAdapter;\n  platform: \"node\" = \"node\" as const;\n\n  constructor() {\n    this.crypto = new NodeCryptoAdapter();\n    this.pgp = new NodePGPAdapter();\n    this.http = new NodeHttpAdapter();\n    this.cache = new NodeCacheAdapter();\n  }\n}\n\n/**\n * Pre-configured Node.js platform adapter instance.\n *\n * @remarks\n * This singleton instance is the default adapter used by the SDK when\n * running in Node.js environments. It's automatically selected based on\n * platform detection.\n *\n * @example\n * ```typescript\n * import { nodePlatformAdapter } from '@vana-sdk/platform/node';\n *\n * // Use directly for platform operations\n * const keys = await nodePlatformAdapter.crypto.generateKeyPair();\n * ```\n *\n * @category Platform\n */\nexport const nodePlatformAdapter: VanaPlatformAdapter =\n  new NodePlatformAdapter();\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAyCA,uBAAmC;AACnC,yBAAgC;AAChC,0BAAmC;AACnC,yBAA2B;AAC3B,wCAA2C;AAC3C,0BAIO;AAMP,kBAAuC;AACvC,uBAA2B;AAE3B,oBAA4B;AAC5B,uBAA4B;AAP5B,MAAM,iBAAa,+BAAW,MAAM,OAAO,SAAS,CAAC;AAkCrD,MAAM,kBAA+C;AAAA,EAC3C,gBAAgB,IAAI,mCAAuB;AAAA,EAC3C,gBAAgB,IAAI,6DAA2B;AAAA,IACrD,eAAe,KAAK;AAAA,EACtB,CAAC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaD,MAAM,qBACJ,MACA,cACiB;AACjB,QAAI;AAEF,YAAM,qBAAiB,4CAAuB,YAAY;AAC1D,YAAM,YAAY,OAAO,KAAK,cAAc;AAC5C,YAAM,UAAU,OAAO,KAAK,MAAM,MAAM;AAExC,YAAM,YAAY,MAAM,KAAK,cAAc,QAAQ,WAAW,OAAO;AAGrE,YAAM,SAAS,OAAO,OAAO;AAAA,QAC3B,UAAU;AAAA,QACV,UAAU;AAAA,QACV,UAAU;AAAA,QACV,UAAU;AAAA,MACZ,CAAC;AAED,aAAO,OAAO,SAAS,KAAK;AAAA,IAC9B,SAAS,OAAO;AACd,UAAI,iBAAiB,6BAAY;AAC/B,cAAM;AAAA,MACR;AACA,YAAM,IAAI;AAAA,QACR,sBAAsB,iBAAiB,QAAQ,MAAM,UAAU,OAAO,KAAK,CAAC;AAAA,MAC9E;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAcA,MAAM,sBACJ,eACA,eACiB;AACjB,QAAI;AACF,YAAM,uBAAmB,6CAAwB,aAAa;AAE9D,YAAM,eAAe,cAAc,WAAW,IAAI,IAC9C,cAAc,MAAM,CAAC,IACrB;AACJ,YAAM,kBAAkB,OAAO,KAAK,cAAc,KAAK;AACvD,YAAM,EAAE,IAAI,gBAAgB,YAAY,IAAI,QAC1C,8CAAyB,eAAe;AAG1C,YAAM,eAA+B;AAAA,QACnC;AAAA,QACA;AAAA,QACA;AAAA,QACA;AAAA,MACF;AAEA,YAAM,YAAY,MAAM,KAAK,cAAc;AAAA,QACzC;AAAA,QACA;AAAA,MACF;AACA,aAAO,IAAI,YAAY,EAAE,OAAO,SAAS;AAAA,IAC3C,SAAS,OAAO;AACd,UAAI,iBAAiB,6BAAY;AAC/B,cAAM;AAAA,MACR;AACA,YAAM,IAAI;AAAA,QACR,sBAAsB,iBAAiB,QAAQ,MAAM,UAAU,OAAO,KAAK,CAAC;AAAA,MAC9E;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWA,MAAM,kBAAsE;AAC1E,QAAI;AACF,YAAM,YAAY,iBAAAA;AAGlB,UAAI;AACJ,SAAG;AACD,yBAAa,2BAAY,EAAE;AAAA,MAC7B,SAAS,CAAC,UAAU,iBAAiB,UAAU;AAG/C,YAAM,YAAY,OAAO;AAAA,QACvB,UAAU,gBAAgB,YAAY,IAAI;AAAA,MAC5C;AAEA,aAAO;AAAA,QACL,YAAY,WAAW,SAAS,KAAK;AAAA,QACrC,WAAW,UAAU,SAAS,KAAK;AAAA,MACrC;AAAA,IACF,SAAS,OAAO;AACd,gBAAM,oCAAgB,kBAAkB,KAAK;AAAA,IAC/C;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,2BACJ,MACA,WACiB;AACjB,QAAI;AACF,aAAO,MAAM,KAAK,cAAc;AAAA,QAC9B;AAAA,QACA;AAAA,MACF;AAAA,IACF,SAAS,OAAO;AACd,gBAAM,oCAAgB,kCAAkC,KAAK;AAAA,IAC/D;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,4BACJ,eACA,YACiB;AACjB,QAAI;AACF,aAAO,MAAM,KAAK,cAAc;AAAA,QAC9B;AAAA,QACA;AAAA,MACF;AAAA,IACF,SAAS,OAAO;AACd,gBAAM,oCAAgB,mCAAmC,KAAK;AAAA,IAChE;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAiBA,MAAM,oBACJ,MACA,UACqB;AACrB,QAAI;AACF,YAAM,UAAU,MAAM,WAAW;AACjC,YAAM,UAAU,MAAM,QAAQ,cAAc;AAAA,QAC1C,QAAQ;AAAA,MACV,CAAC;AAKD,YAAM,YAAY,MAAM,QAAQ,QAAQ;AAAA,QACtC;AAAA,QACA,WAAW,CAAC,QAAQ;AAAA,QACpB,QAAQ;AAAA,MACV,CAAC;AAGD,UAAI,qBAAqB,YAAY;AACnC,eAAO;AAAA,MACT;AAGA,UACE,aACA,OAAO,cAAc,YACrB,eAAe,WACf;AACA,eAAO,UAAM;AAAA,UACX;AAAA,QACF;AAAA,MACF;AAEA,YAAM,IAAI,MAAM,kCAAkC;AAAA,IACpD,SAAS,OAAO;AACd,gBAAM,oCAAgB,yBAAyB,KAAK;AAAA,IACtD;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,oBACJ,eACA,UACqB;AACrB,QAAI;AACF,YAAM,UAAU,MAAM,WAAW;AACjC,YAAM,UAAU,MAAM,QAAQ,YAAY;AAAA,QACxC,eAAe;AAAA,MACjB,CAAC;AAGD,YAAM,EAAE,MAAM,UAAU,IAAI,MAAM,QAAQ,QAAQ;AAAA,QAChD;AAAA,QACA,WAAW,CAAC,QAAQ;AAAA,QACpB,QAAQ;AAAA,MACV,CAAC;AAGD,aAAO,IAAI,WAAW,SAAwB;AAAA,IAChD,SAAS,OAAO;AACd,gBAAM,oCAAgB,yBAAyB,KAAK;AAAA,IACtD;AAAA,EACF;AACF;AAWA,MAAM,eAAyC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAY7C,MAAM,QAAQ,MAAc,kBAA2C;AACrE,QAAI;AACF,YAAM,UAAU,MAAM,WAAW;AACjC,YAAM,YAAY,MAAM,QAAQ,QAAQ,EAAE,YAAY,iBAAiB,CAAC;AAExE,YAAM,YAAY,MAAM,QAAQ,QAAQ;AAAA,QACtC,SAAS,MAAM,QAAQ,cAAc,EAAE,MAAM,KAAK,CAAC;AAAA,QACnD,gBAAgB;AAAA,QAChB,QAAQ;AAAA,UACN,+BAA+B,QAAQ,MAAM,YAAY;AAAA,QAC3D;AAAA,MACF,CAAC;AAED,aAAO;AAAA,IACT,SAAS,OAAO;AACd,gBAAM,oCAAgB,kBAAkB,KAAK;AAAA,IAC/C;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,QACJ,eACA,mBACiB;AACjB,QAAI;AACF,YAAM,UAAU,MAAM,WAAW;AACjC,YAAM,aAAa,MAAM,QAAQ,eAAe;AAAA,QAC9C,YAAY;AAAA,MACd,CAAC;AACD,YAAM,UAAU,MAAM,QAAQ,YAAY;AAAA,QACxC,gBAAgB;AAAA,MAClB,CAAC;AAED,YAAM,EAAE,MAAM,UAAU,IAAI,MAAM,QAAQ,QAAQ;AAAA,QAChD;AAAA,QACA,gBAAgB;AAAA,MAClB,CAAC;AAED,aAAO;AAAA,IACT,SAAS,OAAO;AACd,gBAAM,oCAAgB,kBAAkB,KAAK;AAAA,IAC/C;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAgBA,MAAM,gBAAgB,SAIiC;AACrD,QAAI;AACF,YAAM,UAAU,MAAM,WAAW;AAEjC,YAAM,mBAAe,qCAAmB,OAAO;AAE/C,YAAM,EAAE,YAAY,UAAU,IAAI,MAAM,QAAQ,YAAY,YAAY;AAExE,aAAO,EAAE,WAAW,WAAW;AAAA,IACjC,SAAS,OAAO;AACd,gBAAM,oCAAgB,sBAAsB,KAAK;AAAA,IACnD;AAAA,EACF;AACF;AAWA,MAAM,gBAA2C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAY/C,MAAM,MAAM,KAAa,SAA0C;AACjE,QAAI,OAAO,WAAW,UAAU,aAAa;AAC3C,aAAO,WAAW,MAAM,KAAK,OAAO;AAAA,IACtC;AAEA,UAAM,IAAI,MAAM,0DAA0D;AAAA,EAC5E;AACF;AAYA,MAAM,iBAA6C;AAAA,EACzC,QAAQ,oBAAI,IAAgD;AAAA,EACnD,aAAa,IAAI,KAAK,KAAK;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAS5C,IAAI,KAA4B;AAC9B,UAAM,QAAQ,KAAK,MAAM,IAAI,GAAG;AAChC,QAAI,CAAC,OAAO;AACV,aAAO;AAAA,IACT;AAGA,QAAI,KAAK,IAAI,IAAI,MAAM,SAAS;AAC9B,WAAK,MAAM,OAAO,GAAG;AACrB,aAAO;AAAA,IACT;AAEA,WAAO,MAAM;AAAA,EACf;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,IAAI,KAAa,OAAqB;AACpC,SAAK,MAAM,IAAI,KAAK;AAAA,MAClB;AAAA,MACA,SAAS,KAAK,IAAI,IAAI,KAAK;AAAA,IAC7B,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,OAAO,KAAmB;AACxB,SAAK,MAAM,OAAO,GAAG;AAAA,EACvB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,QAAc;AACZ,SAAK,MAAM,MAAM;AAAA,EACnB;AACF;AA2BO,MAAM,oBAAmD;AAAA,EAC9D;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA,WAAmB;AAAA,EAEnB,cAAc;AACZ,SAAK,SAAS,IAAI,kBAAkB;AACpC,SAAK,MAAM,IAAI,eAAe;AAC9B,SAAK,OAAO,IAAI,gBAAgB;AAChC,SAAK,QAAQ,IAAI,iBAAiB;AAAA,EACpC;AACF;AAoBO,MAAM,sBACX,IAAI,oBAAoB;","names":["secp256k1Import"]}

package/dist/platform/node.d.ts

@@ -4,8 +4,8 @@
  * @remarks
  * This module implements all platform-specific operations for Node.js environments,
  * including cryptography, PGP operations, HTTP requests, and caching. It dynamically
- * imports dependencies to avoid Turbopack TDZ issues and supports both standard
- * eccrypto and custom ECIES implementations based on feature flags.
+ * imports dependencies to avoid Turbopack TDZ issues and uses a custom ECIES
+ * implementation with native secp256k1 for optimal performance.
  *
  * WARNING: Dependencies that access globals during init MUST be dynamically imported
  * to support Turbopack. See: https://github.com/vercel/next.js/issues/82632
@@ -13,7 +13,7 @@
  * @example
  * ```typescript
  * // Use the Node.js platform adapter
- * import { nodePlatformAdapter } from '@vana-sdk/platform/node';
+ * import { nodePlatformAdapter} from '@vana-sdk/platform/node';
  *
  * // Encrypt data with public key
  * const encrypted = await nodePlatformAdapter.crypto.encryptWithPublicKey(
@@ -37,8 +37,8 @@ import type { VanaPlatformAdapter, VanaCryptoAdapter, VanaPGPAdapter, VanaHttpAd
  *
  * @remarks
  * This adapter aggregates all Node.js-specific implementations of platform
- * operations. It automatically selects appropriate cryptographic implementations
- * based on feature flags and provides consistent APIs across all operations.
+ * operations using a custom ECIES implementation with native secp256k1 for
+ * optimal performance and provides consistent APIs across all operations.
  *
  * @example
  * ```typescript

package/dist/platform/node.js

@@ -2,7 +2,6 @@ import { getPGPKeyGenParams } from "./shared/pgp-utils";
 import { wrapCryptoError } from "./shared/error-utils";
 import { streamToUint8Array } from "./shared/stream-utils";
 import { lazyImport } from "../utils/lazy-import";
-import { features } from "../config/features";
 import { WalletKeyEncryptionService } from "../crypto/services/WalletKeyEncryptionService";
 import {
   processWalletPrivateKey,
@@ -10,16 +9,14 @@ import {
   processWalletPublicKey
 } from "../utils/crypto-utils";
 const getOpenPGP = lazyImport(() => import("openpgp"));
-const getEccryptoJS = lazyImport(() => import("eccrypto-js"));
 import { NodeECIESUint8Provider } from "../crypto/ecies/node";
 import { ECIESError } from "../crypto/ecies/interface";
 import { randomBytes } from "crypto";
 import secp256k1Import from "secp256k1";
 class NodeCryptoAdapter {
-  // Initialize both providers - only one will be used based on feature flag
-  customEciesProvider = new NodeECIESUint8Provider();
-  customWalletService = new WalletKeyEncryptionService({
-    eciesProvider: this.customEciesProvider
+  eciesProvider = new NodeECIESUint8Provider();
+  walletService = new WalletKeyEncryptionService({
+    eciesProvider: this.eciesProvider
   });
   /**
    * Encrypts data using ECIES with a public key.
@@ -34,39 +31,19 @@ class NodeCryptoAdapter {
    */
   async encryptWithPublicKey(data, publicKeyHex) {
     try {
-      if (features.useCustomECIES) {
-        const publicKey = Buffer.from(publicKeyHex, "hex");
-        const message = Buffer.from(data, "utf8");
-        const encrypted = await this.customEciesProvider.encrypt(
-          publicKey,
-          message
-        );
-        const result = Buffer.concat([
-          encrypted.iv,
-          encrypted.ephemPublicKey,
-          encrypted.ciphertext,
-          encrypted.mac
-        ]);
-        return result.toString("hex");
-      } else {
-        const eccryptojs = await getEccryptoJS();
-        const publicKeyBytes = Buffer.from(publicKeyHex, "hex");
-        const uncompressed = this.customEciesProvider.normalizeToUncompressed(
-          new Uint8Array(publicKeyBytes)
-        );
-        const publicKey = Buffer.from(uncompressed);
-        const message = Buffer.from(data, "utf8");
-        const encrypted = await eccryptojs.encrypt(publicKey, message);
-        const result = Buffer.concat([
-          encrypted.iv,
-          encrypted.ephemPublicKey,
-          encrypted.ciphertext,
-          encrypted.mac
-        ]);
-        return result.toString("hex");
-      }
+      const publicKeyBytes = processWalletPublicKey(publicKeyHex);
+      const publicKey = Buffer.from(publicKeyBytes);
+      const message = Buffer.from(data, "utf8");
+      const encrypted = await this.eciesProvider.encrypt(publicKey, message);
+      const result = Buffer.concat([
+        encrypted.iv,
+        encrypted.ephemPublicKey,
+        encrypted.ciphertext,
+        encrypted.mac
+      ]);
+      return result.toString("hex");
     } catch (error) {
-      if (features.useCustomECIES && error instanceof ECIESError) {
+      if (error instanceof ECIESError) {
         throw error;
       }
       throw new Error(
@@ -88,36 +65,23 @@ class NodeCryptoAdapter {
    */
   async decryptWithPrivateKey(encryptedData, privateKeyHex) {
     try {
-      if (features.useCustomECIES) {
-        const privateKeyBuffer = processWalletPrivateKey(privateKeyHex);
-        const encryptedBuffer = Buffer.from(encryptedData, "hex");
-        const { iv, ephemPublicKey, ciphertext, mac } = parseEncryptedDataBuffer(encryptedBuffer);
-        const encryptedObj = {
-          iv,
-          ephemPublicKey,
-          ciphertext,
-          mac
-        };
-        const decrypted = await this.customEciesProvider.decrypt(
-          privateKeyBuffer,
-          encryptedObj
-        );
-        return new TextDecoder().decode(decrypted);
-      } else {
-        const eccryptojs = await getEccryptoJS();
-        const privateKey = Buffer.from(privateKeyHex, "hex");
-        const encryptedBuffer = Buffer.from(encryptedData, "hex");
-        const { iv, ephemPublicKey, ciphertext, mac } = parseEncryptedDataBuffer(encryptedBuffer);
-        const decrypted = await eccryptojs.decrypt(privateKey, {
-          iv: Buffer.from(iv),
-          ephemPublicKey: Buffer.from(ephemPublicKey),
-          ciphertext: Buffer.from(ciphertext),
-          mac: Buffer.from(mac)
-        });
-        return decrypted.toString("utf8");
-      }
+      const privateKeyBuffer = processWalletPrivateKey(privateKeyHex);
+      const encryptedHex = encryptedData.startsWith("0x") ? encryptedData.slice(2) : encryptedData;
+      const encryptedBuffer = Buffer.from(encryptedHex, "hex");
+      const { iv, ephemPublicKey, ciphertext, mac } = parseEncryptedDataBuffer(encryptedBuffer);
+      const encryptedObj = {
+        iv,
+        ephemPublicKey,
+        ciphertext,
+        mac
+      };
+      const decrypted = await this.eciesProvider.decrypt(
+        privateKeyBuffer,
+        encryptedObj
+      );
+      return new TextDecoder().decode(decrypted);
     } catch (error) {
-      if (features.useCustomECIES && error instanceof ECIESError) {
+      if (error instanceof ECIESError) {
         throw error;
       }
       throw new Error(
@@ -136,28 +100,18 @@ class NodeCryptoAdapter {
    */
   async generateKeyPair() {
     try {
-      if (features.useCustomECIES) {
-        const secp256k1 = secp256k1Import;
-        let privateKey;
-        do {
-          privateKey = randomBytes(32);
-        } while (!secp256k1.privateKeyVerify(privateKey));
-        const publicKey = Buffer.from(
-          secp256k1.publicKeyCreate(privateKey, true)
-        );
-        return {
-          privateKey: privateKey.toString("hex"),
-          publicKey: publicKey.toString("hex")
-        };
-      } else {
-        const eccryptojs = await getEccryptoJS();
-        const privateKey = eccryptojs.generatePrivate();
-        const publicKey = eccryptojs.getPublic(privateKey);
-        return {
-          privateKey: privateKey.toString("hex"),
-          publicKey: publicKey.toString("hex")
-        };
-      }
+      const secp256k1 = secp256k1Import;
+      let privateKey;
+      do {
+        privateKey = randomBytes(32);
+      } while (!secp256k1.privateKeyVerify(privateKey));
+      const publicKey = Buffer.from(
+        secp256k1.publicKeyCreate(privateKey, true)
+      );
+      return {
+        privateKey: privateKey.toString("hex"),
+        publicKey: publicKey.toString("hex")
+      };
     } catch (error) {
       throw wrapCryptoError("key generation", error);
     }
@@ -175,26 +129,10 @@ class NodeCryptoAdapter {
    */
   async encryptWithWalletPublicKey(data, publicKey) {
     try {
-      if (features.useCustomECIES) {
-        return await this.customWalletService.encryptWithWalletPublicKey(
-          data,
-          publicKey
-        );
-      } else {
-        const eccryptojs = await getEccryptoJS();
-        const publicKeyBytes = processWalletPublicKey(publicKey);
-        const uncompressed = this.customEciesProvider.normalizeToUncompressed(publicKeyBytes);
-        const publicKeyBuffer = Buffer.from(uncompressed);
-        const message = Buffer.from(data, "utf8");
-        const encrypted = await eccryptojs.encrypt(publicKeyBuffer, message);
-        const result = Buffer.concat([
-          encrypted.iv,
-          encrypted.ephemPublicKey,
-          encrypted.ciphertext,
-          encrypted.mac
-        ]);
-        return result.toString("hex");
-      }
+      return await this.walletService.encryptWithWalletPublicKey(
+        data,
+        publicKey
+      );
     } catch (error) {
       throw wrapCryptoError("encrypt with wallet public key", error);
     }
@@ -212,26 +150,10 @@ class NodeCryptoAdapter {
    */
   async decryptWithWalletPrivateKey(encryptedData, privateKey) {
     try {
-      if (features.useCustomECIES) {
-        return await this.customWalletService.decryptWithWalletPrivateKey(
-          encryptedData,
-          privateKey
-        );
-      } else {
-        const eccryptojs = await getEccryptoJS();
-        const privateKeyBuffer = Buffer.from(
-          processWalletPrivateKey(privateKey)
-        );
-        const encryptedBuffer = Buffer.from(encryptedData, "hex");
-        const { iv, ephemPublicKey, ciphertext, mac } = parseEncryptedDataBuffer(encryptedBuffer);
-        const decrypted = await eccryptojs.decrypt(privateKeyBuffer, {
-          iv: Buffer.from(iv),
-          ephemPublicKey: Buffer.from(ephemPublicKey),
-          ciphertext: Buffer.from(ciphertext),
-          mac: Buffer.from(mac)
-        });
-        return decrypted.toString("utf8");
-      }
+      return await this.walletService.decryptWithWalletPrivateKey(
+        encryptedData,
+        privateKey
+      );
     } catch (error) {
       throw wrapCryptoError("decrypt with wallet private key", error);
     }