npm - @opendatalabs/vana-sdk - Versions diffs - 2.3.0 → 3.0.1-canary.b068ac6 - Mend

@opendatalabs/vana-sdk 2.3.0 → 3.0.1-canary.b068ac6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (631) hide show

package/README.md +76 -92
package/dist/auth/errors.cjs +54 -0
package/dist/auth/errors.cjs.map +1 -0
package/dist/auth/errors.d.ts +26 -0
package/dist/auth/errors.js +28 -0
package/dist/auth/errors.js.map +1 -0
package/dist/auth/pkce.cjs +100 -0
package/dist/auth/pkce.cjs.map +1 -0
package/dist/auth/pkce.d.ts +55 -0
package/dist/auth/pkce.js +71 -0
package/dist/auth/pkce.js.map +1 -0
package/dist/auth/token-store.cjs +59 -0
package/dist/auth/token-store.cjs.map +1 -0
package/dist/auth/token-store.d.ts +61 -0
package/dist/auth/token-store.js +35 -0
package/dist/auth/token-store.js.map +1 -0
package/dist/auth/web3-signed-builder.cjs +70 -0
package/dist/auth/web3-signed-builder.cjs.map +1 -0
package/dist/auth/web3-signed-builder.d.ts +47 -0
package/dist/auth/web3-signed-builder.js +45 -0
package/dist/auth/web3-signed-builder.js.map +1 -0
package/dist/auth/web3-signed.cjs +150 -0
package/dist/auth/web3-signed.cjs.map +1 -0
package/dist/auth/web3-signed.d.ts +59 -0
package/dist/auth/web3-signed.js +129 -0
package/dist/auth/web3-signed.js.map +1 -0
package/dist/chains/definitions.cjs +2 -6
package/dist/chains/definitions.cjs.map +1 -1
package/dist/chains/definitions.d.ts +1 -7
package/dist/chains/definitions.js +2 -6
package/dist/chains/definitions.js.map +1 -1
package/dist/config/chains.d.ts +18 -0
package/dist/config/contracts.config.cjs +7 -95
package/dist/config/contracts.config.cjs.map +1 -1
package/dist/config/contracts.config.d.ts +0 -54
package/dist/config/contracts.config.js +6 -93
package/dist/config/contracts.config.js.map +1 -1
package/dist/config/default-services.cjs +0 -10
package/dist/config/default-services.cjs.map +1 -1
package/dist/config/default-services.d.ts +1 -20
package/dist/config/default-services.js +0 -9
package/dist/config/default-services.js.map +1 -1
package/dist/crypto/ecies/interface.cjs +2 -0
package/dist/crypto/ecies/interface.cjs.map +1 -1
package/dist/crypto/ecies/interface.js +2 -0
package/dist/crypto/ecies/interface.js.map +1 -1
package/dist/crypto/ecies/node.cjs +6 -6
package/dist/crypto/ecies/node.cjs.map +1 -1
package/dist/crypto/ecies/node.js +1 -1
package/dist/crypto/ecies/node.js.map +1 -1
package/dist/crypto/envelope/openpgp.cjs +59 -0
package/dist/crypto/envelope/openpgp.cjs.map +1 -0
package/dist/crypto/envelope/openpgp.d.ts +28 -0
package/dist/crypto/envelope/openpgp.js +24 -0
package/dist/crypto/envelope/openpgp.js.map +1 -0
package/dist/crypto/keys/derive.cjs +65 -0
package/dist/crypto/keys/derive.cjs.map +1 -0
package/dist/crypto/keys/derive.d.ts +45 -0
package/dist/crypto/keys/derive.js +38 -0
package/dist/crypto/keys/derive.js.map +1 -0
package/dist/errors.cjs +10 -0
package/dist/errors.cjs.map +1 -1
package/dist/errors.js +10 -0
package/dist/errors.js.map +1 -1
package/dist/generated/abi/index.cjs +2 -37
package/dist/generated/abi/index.cjs.map +1 -1
package/dist/generated/abi/index.d.ts +2683 -9296
package/dist/generated/abi/index.js +2 -29
package/dist/generated/abi/index.js.map +1 -1
package/dist/generated/addresses.cjs +5 -107
package/dist/generated/addresses.cjs.map +1 -1
package/dist/generated/addresses.d.ts +5 -99
package/dist/generated/addresses.js +5 -105
package/dist/generated/addresses.js.map +1 -1
package/dist/index.browser.d.ts +24 -140
package/dist/index.browser.js +32258 -114
package/dist/index.browser.js.map +7 -1
package/dist/index.node.cjs +32980 -160
package/dist/index.node.cjs.map +7 -1
package/dist/index.node.d.ts +23 -210
package/dist/index.node.js +32884 -133
package/dist/index.node.js.map +7 -1
package/dist/platform/node.cjs +2 -2
package/dist/platform/node.cjs.map +1 -1
package/dist/platform/node.js +1 -1
package/dist/platform/node.js.map +1 -1
package/dist/protocol/data-file.cjs +56 -0
package/dist/protocol/data-file.cjs.map +1 -0
package/dist/protocol/data-file.d.ts +20 -0
package/dist/protocol/data-file.js +30 -0
package/dist/protocol/data-file.js.map +1 -0
package/dist/protocol/eip712.cjs +123 -0
package/dist/protocol/eip712.cjs.map +1 -0
package/dist/protocol/eip712.d.ts +117 -0
package/dist/protocol/eip712.js +90 -0
package/dist/protocol/eip712.js.map +1 -0
package/dist/protocol/gateway.cjs +226 -0
package/dist/protocol/gateway.cjs.map +1 -0
package/dist/protocol/gateway.d.ts +120 -0
package/dist/protocol/gateway.js +202 -0
package/dist/protocol/gateway.js.map +1 -0
package/dist/protocol/grants.cjs +146 -0
package/dist/protocol/grants.cjs.map +1 -0
package/dist/protocol/grants.d.ts +31 -0
package/dist/protocol/grants.js +123 -0
package/dist/protocol/grants.js.map +1 -0
package/dist/protocol/scopes.cjs +78 -0
package/dist/protocol/scopes.cjs.map +1 -0
package/dist/protocol/scopes.d.ts +13 -0
package/dist/protocol/scopes.js +50 -0
package/dist/protocol/scopes.js.map +1 -0
package/dist/{types/atomicStore.cjs → storage/default.cjs} +9 -8
package/dist/storage/default.cjs.map +1 -0
package/dist/storage/default.d.ts +4 -0
package/dist/storage/default.js +8 -0
package/dist/storage/default.js.map +1 -0
package/dist/storage/index.cjs +11 -2
package/dist/storage/index.cjs.map +1 -1
package/dist/storage/index.d.ts +9 -0
package/dist/storage/index.js +7 -1
package/dist/storage/index.js.map +1 -1
package/dist/storage/providers/callback-storage.cjs +1 -0
package/dist/storage/providers/callback-storage.cjs.map +1 -1
package/dist/storage/providers/callback-storage.js +1 -0
package/dist/storage/providers/callback-storage.js.map +1 -1
package/dist/storage/providers/dropbox.cjs +1 -0
package/dist/storage/providers/dropbox.cjs.map +1 -1
package/dist/storage/providers/dropbox.js +1 -0
package/dist/storage/providers/dropbox.js.map +1 -1
package/dist/storage/providers/google-drive.cjs +1 -0
package/dist/storage/providers/google-drive.cjs.map +1 -1
package/dist/storage/providers/google-drive.js +1 -0
package/dist/storage/providers/google-drive.js.map +1 -1
package/dist/storage/providers/ipfs.cjs +1 -0
package/dist/storage/providers/ipfs.cjs.map +1 -1
package/dist/storage/providers/ipfs.js +1 -0
package/dist/storage/providers/ipfs.js.map +1 -1
package/dist/storage/providers/pinata.cjs +1 -0
package/dist/storage/providers/pinata.cjs.map +1 -1
package/dist/storage/providers/pinata.js +1 -0
package/dist/storage/providers/pinata.js.map +1 -1
package/dist/storage/providers/r2.cjs +376 -0
package/dist/storage/providers/r2.cjs.map +1 -0
package/dist/storage/providers/r2.d.ts +91 -0
package/dist/storage/providers/r2.js +354 -0
package/dist/storage/providers/r2.js.map +1 -0
package/dist/storage/providers/vana-storage.cjs +251 -0
package/dist/storage/providers/vana-storage.cjs.map +1 -0
package/dist/storage/providers/vana-storage.d.ts +100 -0
package/dist/storage/providers/vana-storage.js +231 -0
package/dist/storage/providers/vana-storage.js.map +1 -0
package/dist/types/config.cjs +0 -34
package/dist/types/config.cjs.map +1 -1
package/dist/types/config.d.ts +1 -607
package/dist/types/config.js +0 -22
package/dist/types/config.js.map +1 -1
package/dist/types/contracts.cjs.map +1 -1
package/dist/types/contracts.d.ts +1 -1
package/dist/types/index.cjs +2 -33
package/dist/types/index.cjs.map +1 -1
package/dist/types/index.d.ts +2 -33
package/dist/types/index.js +1 -35
package/dist/types/index.js.map +1 -1
package/dist/types/ps-errors.cjs +91 -0
package/dist/types/ps-errors.cjs.map +1 -0
package/dist/types/ps-errors.d.ts +26 -0
package/dist/types/ps-errors.js +66 -0
package/dist/types/ps-errors.js.map +1 -0
package/dist/types.cjs.map +1 -1
package/dist/types.d.ts +0 -29
package/dist/types.js.map +1 -1
package/package.json +8 -25
package/dist/client/enhancedResponse.cjs +0 -164
package/dist/client/enhancedResponse.cjs.map +0 -1
package/dist/client/enhancedResponse.d.ts +0 -120
package/dist/client/enhancedResponse.js +0 -138
package/dist/client/enhancedResponse.js.map +0 -1
package/dist/controllers/__tests__/data-consistency-integration.test.d.ts +0 -7
package/dist/controllers/base.cjs +0 -116
package/dist/controllers/base.cjs.map +0 -1
package/dist/controllers/base.d.ts +0 -94
package/dist/controllers/base.js +0 -92
package/dist/controllers/base.js.map +0 -1
package/dist/controllers/data.cjs +0 -2633
package/dist/controllers/data.cjs.map +0 -1
package/dist/controllers/data.d.ts +0 -1067
package/dist/controllers/data.js +0 -2626
package/dist/controllers/data.js.map +0 -1
package/dist/controllers/operations.cjs +0 -430
package/dist/controllers/operations.cjs.map +0 -1
package/dist/controllers/operations.d.ts +0 -229
package/dist/controllers/operations.js +0 -406
package/dist/controllers/operations.js.map +0 -1
package/dist/controllers/permissions.cjs +0 -4368
package/dist/controllers/permissions.cjs.map +0 -1
package/dist/controllers/permissions.d.ts +0 -1411
package/dist/controllers/permissions.js +0 -4344
package/dist/controllers/permissions.js.map +0 -1
package/dist/controllers/protocol.cjs +0 -183
package/dist/controllers/protocol.cjs.map +0 -1
package/dist/controllers/protocol.d.ts +0 -138
package/dist/controllers/protocol.js +0 -163
package/dist/controllers/protocol.js.map +0 -1
package/dist/controllers/schemas.cjs +0 -678
package/dist/controllers/schemas.cjs.map +0 -1
package/dist/controllers/schemas.d.ts +0 -293
package/dist/controllers/schemas.js +0 -654
package/dist/controllers/schemas.js.map +0 -1
package/dist/controllers/server.cjs +0 -643
package/dist/controllers/server.cjs.map +0 -1
package/dist/controllers/server.d.ts +0 -322
package/dist/controllers/server.js +0 -624
package/dist/controllers/server.js.map +0 -1
package/dist/controllers/staking.cjs +0 -626
package/dist/controllers/staking.cjs.map +0 -1
package/dist/controllers/staking.d.ts +0 -457
package/dist/controllers/staking.js +0 -602
package/dist/controllers/staking.js.map +0 -1
package/dist/core/__tests__/pollingManager.test.d.ts +0 -4
package/dist/core/apiClient.cjs +0 -378
package/dist/core/apiClient.cjs.map +0 -1
package/dist/core/apiClient.d.ts +0 -286
package/dist/core/apiClient.js +0 -359
package/dist/core/apiClient.js.map +0 -1
package/dist/core/generics.cjs +0 -417
package/dist/core/generics.cjs.map +0 -1
package/dist/core/generics.d.ts +0 -205
package/dist/core/generics.js +0 -386
package/dist/core/generics.js.map +0 -1
package/dist/core/health.cjs +0 -289
package/dist/core/health.cjs.map +0 -1
package/dist/core/health.d.ts +0 -143
package/dist/core/health.js +0 -265
package/dist/core/health.js.map +0 -1
package/dist/core/inMemoryNonceManager.cjs +0 -138
package/dist/core/inMemoryNonceManager.cjs.map +0 -1
package/dist/core/inMemoryNonceManager.d.ts +0 -69
package/dist/core/inMemoryNonceManager.js +0 -114
package/dist/core/inMemoryNonceManager.js.map +0 -1
package/dist/core/nonceManager.cjs +0 -304
package/dist/core/nonceManager.cjs.map +0 -1
package/dist/core/nonceManager.d.ts +0 -116
package/dist/core/nonceManager.js +0 -280
package/dist/core/nonceManager.js.map +0 -1
package/dist/core/pollingManager.cjs +0 -292
package/dist/core/pollingManager.cjs.map +0 -1
package/dist/core/pollingManager.d.ts +0 -120
package/dist/core/pollingManager.js +0 -268
package/dist/core/pollingManager.js.map +0 -1
package/dist/core.cjs +0 -781
package/dist/core.cjs.map +0 -1
package/dist/core.d.ts +0 -496
package/dist/core.js +0 -756
package/dist/core.js.map +0 -1
package/dist/diagnostics.cjs +0 -37
package/dist/diagnostics.cjs.map +0 -1
package/dist/diagnostics.d.ts +0 -24
package/dist/diagnostics.js +0 -13
package/dist/diagnostics.js.map +0 -1
package/dist/generated/abi/DLPPerformanceImplementation.cjs +0 -1202
package/dist/generated/abi/DLPPerformanceImplementation.cjs.map +0 -1
package/dist/generated/abi/DLPPerformanceImplementation.d.ts +0 -914
package/dist/generated/abi/DLPPerformanceImplementation.js +0 -1178
package/dist/generated/abi/DLPPerformanceImplementation.js.map +0 -1
package/dist/generated/abi/DLPRewardDeployerImplementation.cjs +0 -1112
package/dist/generated/abi/DLPRewardDeployerImplementation.cjs.map +0 -1
package/dist/generated/abi/DLPRewardDeployerImplementation.d.ts +0 -840
package/dist/generated/abi/DLPRewardDeployerImplementation.js +0 -1088
package/dist/generated/abi/DLPRewardDeployerImplementation.js.map +0 -1
package/dist/generated/abi/DLPRewardDeployerTreasuryImplementation.cjs +0 -612
package/dist/generated/abi/DLPRewardDeployerTreasuryImplementation.cjs.map +0 -1
package/dist/generated/abi/DLPRewardDeployerTreasuryImplementation.d.ts +0 -451
package/dist/generated/abi/DLPRewardDeployerTreasuryImplementation.js +0 -588
package/dist/generated/abi/DLPRewardDeployerTreasuryImplementation.js.map +0 -1
package/dist/generated/abi/DLPRewardSwapImplementation.cjs +0 -939
package/dist/generated/abi/DLPRewardSwapImplementation.cjs.map +0 -1
package/dist/generated/abi/DLPRewardSwapImplementation.d.ts +0 -705
package/dist/generated/abi/DLPRewardSwapImplementation.js +0 -915
package/dist/generated/abi/DLPRewardSwapImplementation.js.map +0 -1
package/dist/generated/abi/DLPRootImplementation.cjs +0 -1644
package/dist/generated/abi/DLPRootImplementation.cjs.map +0 -1
package/dist/generated/abi/DLPRootImplementation.d.ts +0 -1246
package/dist/generated/abi/DLPRootImplementation.js +0 -1620
package/dist/generated/abi/DLPRootImplementation.js.map +0 -1
package/dist/generated/abi/DataLiquidityPoolImplementation.cjs +0 -985
package/dist/generated/abi/DataLiquidityPoolImplementation.cjs.map +0 -1
package/dist/generated/abi/DataLiquidityPoolImplementation.d.ts +0 -735
package/dist/generated/abi/DataLiquidityPoolImplementation.js +0 -961
package/dist/generated/abi/DataLiquidityPoolImplementation.js.map +0 -1
package/dist/generated/abi/SwapHelperImplementation.cjs +0 -976
package/dist/generated/abi/SwapHelperImplementation.cjs.map +0 -1
package/dist/generated/abi/SwapHelperImplementation.d.ts +0 -728
package/dist/generated/abi/SwapHelperImplementation.js +0 -952
package/dist/generated/abi/SwapHelperImplementation.js.map +0 -1
package/dist/generated/abi/TeePoolImplementation.cjs +0 -1313
package/dist/generated/abi/TeePoolImplementation.cjs.map +0 -1
package/dist/generated/abi/TeePoolImplementation.d.ts +0 -992
package/dist/generated/abi/TeePoolImplementation.js +0 -1289
package/dist/generated/abi/TeePoolImplementation.js.map +0 -1
package/dist/generated/event-types.cjs +0 -17
package/dist/generated/event-types.cjs.map +0 -1
package/dist/generated/event-types.d.ts +0 -816
package/dist/generated/event-types.js +0 -1
package/dist/generated/event-types.js.map +0 -1
package/dist/generated/eventRegistry.cjs +0 -4512
package/dist/generated/eventRegistry.cjs.map +0 -1
package/dist/generated/eventRegistry.d.ts +0 -14
package/dist/generated/eventRegistry.js +0 -4487
package/dist/generated/eventRegistry.js.map +0 -1
package/dist/generated/server/server-exports.cjs +0 -45
package/dist/generated/server/server-exports.cjs.map +0 -1
package/dist/generated/server/server-exports.d.ts +0 -36
package/dist/generated/server/server-exports.js +0 -19
package/dist/generated/server/server-exports.js.map +0 -1
package/dist/generated/server/server.cjs +0 -17
package/dist/generated/server/server.cjs.map +0 -1
package/dist/generated/server/server.d.ts +0 -907
package/dist/generated/server/server.js +0 -1
package/dist/generated/server/server.js.map +0 -1
package/dist/generated/subgraph.cjs +0 -1440
package/dist/generated/subgraph.cjs.map +0 -1
package/dist/generated/subgraph.d.ts +0 -6113
package/dist/generated/subgraph.js +0 -1404
package/dist/generated/subgraph.js.map +0 -1
package/dist/lib/__tests__/redisAtomicStore.test.d.ts +0 -1
package/dist/lib/redisAtomicStore.cjs +0 -201
package/dist/lib/redisAtomicStore.cjs.map +0 -1
package/dist/lib/redisAtomicStore.d.ts +0 -120
package/dist/lib/redisAtomicStore.js +0 -177
package/dist/lib/redisAtomicStore.js.map +0 -1
package/dist/server/relayerHandler.cjs +0 -452
package/dist/server/relayerHandler.cjs.map +0 -1
package/dist/server/relayerHandler.d.ts +0 -69
package/dist/server/relayerHandler.js +0 -428
package/dist/server/relayerHandler.js.map +0 -1
package/dist/tests/abi.test.d.ts +0 -1
package/dist/tests/chains-definitions.test.d.ts +0 -1
package/dist/tests/core-encryption.test.d.ts +0 -1
package/dist/tests/core-extended.test.d.ts +0 -1
package/dist/tests/core-generics-coverage.test.d.ts +0 -1
package/dist/tests/coverage-boost.test.d.ts +0 -1
package/dist/tests/crypto-cross-platform-compatibility.test.d.ts +0 -1
package/dist/tests/data-addfile-permissions-schema.test.d.ts +0 -1
package/dist/tests/data-additional-methods.test.d.ts +0 -1
package/dist/tests/data-controller-edge-cases.test.d.ts +0 -1
package/dist/tests/data-ipfs-gateways.test.d.ts +0 -1
package/dist/tests/data-relayer.test.d.ts +0 -1
package/dist/tests/data-schema-validation.test.d.ts +0 -1
package/dist/tests/data-simple-methods.test.d.ts +0 -1
package/dist/tests/data-upload-owner-validation.test.d.ts +0 -1
package/dist/tests/data.test.d.ts +0 -1
package/dist/tests/demo-integration.test.d.ts +0 -1
package/dist/tests/demo-trusted-server-integration.test.d.ts +0 -1
package/dist/tests/download-relayer.test.d.ts +0 -1
package/dist/tests/dual-mode-permissions.test.d.ts +0 -1
package/dist/tests/dual-mode-trusted-servers.test.d.ts +0 -1
package/dist/tests/encryption-correct-implementation.test.d.ts +0 -1
package/dist/tests/encryption-coverage.test.d.ts +0 -1
package/dist/tests/encryption-edge-cases.test.d.ts +0 -1
package/dist/tests/encryption-utils-updated.test.d.ts +0 -1
package/dist/tests/errors-coverage.test.d.ts +0 -1
package/dist/tests/factories/mockFactory.d.ts +0 -316
package/dist/tests/fakes/FakeStorageManager.d.ts +0 -200
package/dist/tests/fakes/FakeStorageManager.test.d.ts +0 -1
package/dist/tests/fakes/FakeWaitForTransactionEvents.d.ts +0 -170
package/dist/tests/fakes/FakeWaitForTransactionEvents.test.d.ts +0 -1
package/dist/tests/fakes/fake-pgp-port.d.ts +0 -13
package/dist/tests/grantValidation-edge-cases.test.d.ts +0 -1
package/dist/tests/grantValidation-unreachable-branch.test.d.ts +0 -1
package/dist/tests/helper-methods.test.d.ts +0 -1
package/dist/tests/helpers/typedMocks.d.ts +0 -64
package/dist/tests/index-browser.test.d.ts +0 -1
package/dist/tests/index-node.test.d.ts +0 -1
package/dist/tests/index.test.d.ts +0 -1
package/dist/tests/mocks/platformAdapter.d.ts +0 -12
package/dist/tests/new-permissions-methods.test.d.ts +0 -1
package/dist/tests/no-buffer-browser.test.d.ts +0 -1
package/dist/tests/permissions-grantee.test.d.ts +0 -1
package/dist/tests/permissions-revoke-relayer.test.d.ts +0 -1
package/dist/tests/permissions-schema-validation.test.d.ts +0 -1
package/dist/tests/permissions-server-files.test.d.ts +0 -1
package/dist/tests/permissions-transaction-options.test.d.ts +0 -1
package/dist/tests/permissions-trust-servers.test.d.ts +0 -1
package/dist/tests/permissions.test.d.ts +0 -1
package/dist/tests/personal.test.d.ts +0 -1
package/dist/tests/platform-browser.test.d.ts +0 -1
package/dist/tests/platform-crypto-expanded.test.d.ts +0 -1
package/dist/tests/platform-crypto.test.d.ts +0 -1
package/dist/tests/platform-index.test.d.ts +0 -1
package/dist/tests/platform-node.test.d.ts +0 -1
package/dist/tests/platform-shared-utils.test.d.ts +0 -1
package/dist/tests/platform-updated.test.d.ts +0 -1
package/dist/tests/protocol-additional-methods.test.d.ts +0 -1
package/dist/tests/protocol.test.d.ts +0 -1
package/dist/tests/read-only-mode.test.d.ts +0 -1
package/dist/tests/relayer-integration.test.d.ts +0 -1
package/dist/tests/relayer-unified.test.d.ts +0 -1
package/dist/tests/schemas.test.d.ts +0 -1
package/dist/tests/server-relayer-handler.test.d.ts +0 -1
package/dist/tests/signatureFormatter.test.d.ts +0 -1
package/dist/tests/staking.test.d.ts +0 -1
package/dist/tests/trusted-server-queries.test.d.ts +0 -1
package/dist/tests/typedDataConverter.test.d.ts +0 -1
package/dist/tests/types-contracts.test.d.ts +0 -1
package/dist/tests/types-data.test.d.ts +0 -1
package/dist/tests/types-external-apis.test.d.ts +0 -1
package/dist/tests/types-generics.test.d.ts +0 -1
package/dist/tests/types-permissions.test.d.ts +0 -1
package/dist/tests/types-upload-params.test.d.ts +0 -1
package/dist/tests/types.test.d.ts +0 -1
package/dist/tests/utils-formatters.test.d.ts +0 -1
package/dist/tests/utils-grantFiles-edge-cases.test.d.ts +0 -1
package/dist/tests/utils-grantFiles-validation.test.d.ts +0 -1
package/dist/tests/utils-grantFiles.test.d.ts +0 -1
package/dist/tests/utils-grantValidation-consolidated.test.d.ts +0 -1
package/dist/tests/utils-grants.test.d.ts +0 -1
package/dist/tests/utils-ipfs-additional.test.d.ts +0 -1
package/dist/tests/utils-ipfs.test.d.ts +0 -4
package/dist/tests/utils-schemaValidation.test.d.ts +0 -1
package/dist/tests/vana.test.d.ts +0 -1
package/dist/tests/wallet-crypto-compatibility.test.d.ts +0 -1
package/dist/types/atomicStore.cjs.map +0 -1
package/dist/types/atomicStore.d.ts +0 -236
package/dist/types/atomicStore.js +0 -7
package/dist/types/atomicStore.js.map +0 -1
package/dist/types/blockchain.cjs +0 -17
package/dist/types/blockchain.cjs.map +0 -1
package/dist/types/blockchain.d.ts +0 -85
package/dist/types/blockchain.js +0 -1
package/dist/types/blockchain.js.map +0 -1
package/dist/types/controller-context.cjs +0 -17
package/dist/types/controller-context.cjs.map +0 -1
package/dist/types/controller-context.d.ts +0 -68
package/dist/types/controller-context.js +0 -1
package/dist/types/controller-context.js.map +0 -1
package/dist/types/data.cjs +0 -17
package/dist/types/data.cjs.map +0 -1
package/dist/types/data.d.ts +0 -763
package/dist/types/data.js +0 -1
package/dist/types/data.js.map +0 -1
package/dist/types/external-apis.cjs +0 -61
package/dist/types/external-apis.cjs.map +0 -1
package/dist/types/external-apis.d.ts +0 -184
package/dist/types/external-apis.js +0 -34
package/dist/types/external-apis.js.map +0 -1
package/dist/types/generics.cjs +0 -17
package/dist/types/generics.cjs.map +0 -1
package/dist/types/generics.d.ts +0 -518
package/dist/types/generics.js +0 -1
package/dist/types/generics.js.map +0 -1
package/dist/types/operationStore.cjs +0 -17
package/dist/types/operationStore.cjs.map +0 -1
package/dist/types/operationStore.d.ts +0 -171
package/dist/types/operationStore.js +0 -1
package/dist/types/operationStore.js.map +0 -1
package/dist/types/operations.cjs +0 -53
package/dist/types/operations.cjs.map +0 -1
package/dist/types/operations.d.ts +0 -204
package/dist/types/operations.js +0 -26
package/dist/types/operations.js.map +0 -1
package/dist/types/options.cjs +0 -17
package/dist/types/options.cjs.map +0 -1
package/dist/types/options.d.ts +0 -308
package/dist/types/options.js +0 -1
package/dist/types/options.js.map +0 -1
package/dist/types/permissions.cjs +0 -17
package/dist/types/permissions.cjs.map +0 -1
package/dist/types/permissions.d.ts +0 -955
package/dist/types/permissions.js +0 -1
package/dist/types/permissions.js.map +0 -1
package/dist/types/personal.cjs +0 -17
package/dist/types/personal.cjs.map +0 -1
package/dist/types/personal.d.ts +0 -174
package/dist/types/personal.js +0 -1
package/dist/types/personal.js.map +0 -1
package/dist/types/relayer.cjs +0 -17
package/dist/types/relayer.cjs.map +0 -1
package/dist/types/relayer.d.ts +0 -552
package/dist/types/relayer.js +0 -1
package/dist/types/relayer.js.map +0 -1
package/dist/types/transactionResults.cjs +0 -17
package/dist/types/transactionResults.cjs.map +0 -1
package/dist/types/transactionResults.d.ts +0 -193
package/dist/types/transactionResults.js +0 -1
package/dist/types/transactionResults.js.map +0 -1
package/dist/types/utils.cjs +0 -17
package/dist/types/utils.cjs.map +0 -1
package/dist/types/utils.d.ts +0 -771
package/dist/types/utils.js +0 -1
package/dist/types/utils.js.map +0 -1
package/dist/utils/__tests__/chainQuery.test.d.ts +0 -1
package/dist/utils/__tests__/parseTransaction.test.d.ts +0 -1
package/dist/utils/__tests__/pojo-serialization.test.d.ts +0 -1
package/dist/utils/__tests__/signatureCache.test.d.ts +0 -1
package/dist/utils/__tests__/subgraphConsistency.test.d.ts +0 -4
package/dist/utils/__tests__/subgraphPagination.test.d.ts +0 -4
package/dist/utils/__tests__/transaction-edge-cases.test.d.ts +0 -1
package/dist/utils/__tests__/transactionHelpers.test.d.ts +0 -1
package/dist/utils/__tests__/urlResolver.test.d.ts +0 -4
package/dist/utils/blockchain/registry.cjs +0 -81
package/dist/utils/blockchain/registry.cjs.map +0 -1
package/dist/utils/blockchain/registry.d.ts +0 -32
package/dist/utils/blockchain/registry.js +0 -56
package/dist/utils/blockchain/registry.js.map +0 -1
package/dist/utils/blockchain/registry.test.d.ts +0 -1
package/dist/utils/chainQuery.cjs +0 -107
package/dist/utils/chainQuery.cjs.map +0 -1
package/dist/utils/chainQuery.d.ts +0 -31
package/dist/utils/chainQuery.js +0 -82
package/dist/utils/chainQuery.js.map +0 -1
package/dist/utils/download.cjs +0 -69
package/dist/utils/download.cjs.map +0 -1
package/dist/utils/download.d.ts +0 -40
package/dist/utils/download.js +0 -45
package/dist/utils/download.js.map +0 -1
package/dist/utils/encryption.cjs +0 -176
package/dist/utils/encryption.cjs.map +0 -1
package/dist/utils/encryption.d.ts +0 -271
package/dist/utils/encryption.js +0 -142
package/dist/utils/encryption.js.map +0 -1
package/dist/utils/formatters.cjs +0 -55
package/dist/utils/formatters.cjs.map +0 -1
package/dist/utils/formatters.d.ts +0 -118
package/dist/utils/formatters.js +0 -28
package/dist/utils/formatters.js.map +0 -1
package/dist/utils/grantFiles.cjs +0 -181
package/dist/utils/grantFiles.cjs.map +0 -1
package/dist/utils/grantFiles.d.ts +0 -172
package/dist/utils/grantFiles.js +0 -143
package/dist/utils/grantFiles.js.map +0 -1
package/dist/utils/grantValidation.cjs +0 -243
package/dist/utils/grantValidation.cjs.map +0 -1
package/dist/utils/grantValidation.d.ts +0 -226
package/dist/utils/grantValidation.js +0 -201
package/dist/utils/grantValidation.js.map +0 -1
package/dist/utils/grants.cjs +0 -108
package/dist/utils/grants.cjs.map +0 -1
package/dist/utils/grants.d.ts +0 -148
package/dist/utils/grants.js +0 -82
package/dist/utils/grants.js.map +0 -1
package/dist/utils/ipfs.cjs +0 -128
package/dist/utils/ipfs.cjs.map +0 -1
package/dist/utils/ipfs.d.ts +0 -88
package/dist/utils/ipfs.js +0 -97
package/dist/utils/ipfs.js.map +0 -1
package/dist/utils/multicall.cjs +0 -233
package/dist/utils/multicall.cjs.map +0 -1
package/dist/utils/multicall.d.ts +0 -126
package/dist/utils/multicall.js +0 -208
package/dist/utils/multicall.js.map +0 -1
package/dist/utils/parseTransactionPojo.cjs +0 -87
package/dist/utils/parseTransactionPojo.cjs.map +0 -1
package/dist/utils/parseTransactionPojo.d.ts +0 -31
package/dist/utils/parseTransactionPojo.js +0 -63
package/dist/utils/parseTransactionPojo.js.map +0 -1
package/dist/utils/schemaValidation.cjs +0 -258
package/dist/utils/schemaValidation.cjs.map +0 -1
package/dist/utils/schemaValidation.d.ts +0 -168
package/dist/utils/schemaValidation.js +0 -219
package/dist/utils/schemaValidation.js.map +0 -1
package/dist/utils/signatureCache.cjs +0 -192
package/dist/utils/signatureCache.cjs.map +0 -1
package/dist/utils/signatureCache.d.ts +0 -172
package/dist/utils/signatureCache.js +0 -167
package/dist/utils/signatureCache.js.map +0 -1
package/dist/utils/signatureFormatter.cjs +0 -42
package/dist/utils/signatureFormatter.cjs.map +0 -1
package/dist/utils/signatureFormatter.d.ts +0 -36
package/dist/utils/signatureFormatter.js +0 -18
package/dist/utils/signatureFormatter.js.map +0 -1
package/dist/utils/subgraphConsistency.cjs +0 -184
package/dist/utils/subgraphConsistency.cjs.map +0 -1
package/dist/utils/subgraphConsistency.d.ts +0 -65
package/dist/utils/subgraphConsistency.js +0 -155
package/dist/utils/subgraphConsistency.js.map +0 -1
package/dist/utils/subgraphMetaCache.cjs +0 -101
package/dist/utils/subgraphMetaCache.cjs.map +0 -1
package/dist/utils/subgraphMetaCache.d.ts +0 -56
package/dist/utils/subgraphMetaCache.js +0 -76
package/dist/utils/subgraphMetaCache.js.map +0 -1
package/dist/utils/subgraphPagination.cjs +0 -104
package/dist/utils/subgraphPagination.cjs.map +0 -1
package/dist/utils/subgraphPagination.d.ts +0 -78
package/dist/utils/subgraphPagination.js +0 -78
package/dist/utils/subgraphPagination.js.map +0 -1
package/dist/utils/tests/multicall.test.d.ts +0 -1
package/dist/utils/transactionHelpers.cjs +0 -54
package/dist/utils/transactionHelpers.cjs.map +0 -1
package/dist/utils/transactionHelpers.d.ts +0 -80
package/dist/utils/transactionHelpers.js +0 -29
package/dist/utils/transactionHelpers.js.map +0 -1
package/dist/utils/typeGuards.cjs +0 -109
package/dist/utils/typeGuards.cjs.map +0 -1
package/dist/utils/typeGuards.d.ts +0 -138
package/dist/utils/typeGuards.js +0 -74
package/dist/utils/typeGuards.js.map +0 -1
package/dist/utils/typedDataConverter.cjs +0 -43
package/dist/utils/typedDataConverter.cjs.map +0 -1
package/dist/utils/typedDataConverter.d.ts +0 -46
package/dist/utils/typedDataConverter.js +0 -19
package/dist/utils/typedDataConverter.js.map +0 -1
package/dist/utils/urlResolver.cjs +0 -62
package/dist/utils/urlResolver.cjs.map +0 -1
package/dist/utils/urlResolver.d.ts +0 -56
package/dist/utils/urlResolver.js +0 -37
package/dist/utils/urlResolver.js.map +0 -1
package/dist/utils/wallet.cjs +0 -63
package/dist/utils/wallet.cjs.map +0 -1
package/dist/utils/wallet.d.ts +0 -94
package/dist/utils/wallet.js +0 -37
package/dist/utils/wallet.js.map +0 -1
package/dist/utils/withEvents.cjs +0 -44
package/dist/utils/withEvents.cjs.map +0 -1
package/dist/utils/withEvents.d.ts +0 -56
package/dist/utils/withEvents.js +0 -18
package/dist/utils/withEvents.js.map +0 -1
/package/dist/{__tests__/waitForTransactionEvents.test.d.ts → auth/pkce.test.d.ts} +0 -0
/package/dist/{client/__tests__/enhancedResponse.test.d.ts → auth/token-store.test.d.ts} +0 -0
/package/dist/{controllers/__tests__/operations.processQueue.test.d.ts → auth/web3-signed.test.d.ts} +0 -0
/package/dist/{controllers/__tests__/schemas-edge-cases.test.d.ts → crypto/envelope/openpgp.test.d.ts} +0 -0
/package/dist/{controllers/data-error-handling.test.d.ts → crypto/keys/derive.test.d.ts} +0 -0
/package/dist/{tests/errors.test.d.ts → errors.test.d.ts} +0 -0
/package/dist/{controllers/server-additional.test.d.ts → protocol/data-file.test.d.ts} +0 -0
/package/dist/{core/__tests__/health.test.d.ts → protocol/eip712.test.d.ts} +0 -0
/package/dist/{core/__tests__/inMemoryNonceManager.test.d.ts → protocol/gateway.test.d.ts} +0 -0
/package/dist/{core/__tests__/nonceManager.test.d.ts → protocol/grants.test.d.ts} +0 -0
/package/dist/{core/core.test.d.ts → protocol/scopes.test.d.ts} +0 -0
/package/dist/{core/tests/apiClient.test.d.ts → storage/tests/defaultStorage.test.d.ts} +0 -0
/package/dist/{core/tests/client.test.d.ts → storage/tests/r2Storage.test.d.ts} +0 -0
/package/dist/{core/tests/generics.test.d.ts → storage/tests/vanaStorage.test.d.ts} +0 -0
/package/dist/{diagnostics.test.d.ts → types/ps-errors.test.d.ts} +0 -0

package/dist/config/default-services.cjs CHANGED Viewed

@@ -18,22 +18,17 @@ var __copyProps = (to, from, except, desc) => {
 var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
 var default_services_exports = {};
 __export(default_services_exports, {
-  getDefaultPersonalServerUrl: () => getDefaultPersonalServerUrl,
   getServiceEndpoints: () => getServiceEndpoints,
   mainnetServices: () => mainnetServices,
   mokshaServices: () => mokshaServices
 });
 module.exports = __toCommonJS(default_services_exports);
 const mainnetServices = {
-  subgraphUrl: "https://vanagraph.io/v7",
   blockExplorerUrl: "https://vanascan.io",
-  personalServerUrl: "https://server.vana.com",
   rpcUrl: "https://rpc.vana.org"
 };
 const mokshaServices = {
-  subgraphUrl: "https://moksha.vanagraph.io/v7",
   blockExplorerUrl: "https://moksha.vanascan.io",
-  personalServerUrl: "https://test.server.vana.com",
   rpcUrl: "https://rpc.moksha.vana.org"
 };
 function getServiceEndpoints(chainId) {
@@ -46,13 +41,8 @@ function getServiceEndpoints(chainId) {
       return void 0;
   }
 }
-function getDefaultPersonalServerUrl(chainId) {
-  const services = getServiceEndpoints(chainId);
-  return services?.personalServerUrl;
-}
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
-  getDefaultPersonalServerUrl,
   getServiceEndpoints,
   mainnetServices,
   mokshaServices

package/dist/config/default-services.cjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../src/config/default-services.ts"],"sourcesContent":["/*\n Default service endpoints for Vana networks\n \n Centralizes ~~all~~ default service URLs for different Vana networks.\n * These can be overridden during SDK initialization.\n /\n\nexport interface ServiceEndpoints {\n /* Subgraph API endpoint for querying on-chain data /\n subgraphUrl: string;\n /* Block explorer URL for viewing transactions and addresses /\n blockExplorerUrl: string;\n /* Personal server URL for computation operations /\n personalServerUrl: string;\n /* RPC URL for blockchain interactions /\n rpcUrl: string;\n}\n\n/\n Default service endpoints for Vana Mainnet (chain ID: 1480)\n /\nexport const mainnetServices: ServiceEndpoints = {\n ~~subgraphUrl: \"https://vanagraph.io/v7\",\n~~ blockExplorerUrl: \"https://vanascan.io\",\n ~~personalServerUrl: \"https://server.vana.com\",\n~~ rpcUrl: \"https://rpc.vana.org\",\n} as const;\n\n/\n Default service endpoints for Moksha Testnet (chain ID: 14800)\n /\nexport const mokshaServices: ServiceEndpoints = {\n ~~subgraphUrl: \"https://moksha.vanagraph.io/v7\",\n~~ blockExplorerUrl: \"https://moksha.vanascan.io\",\n ~~personalServerUrl: \"https://test.server.vana.com\",\n~~ rpcUrl: \"https://rpc.moksha.vana.org\",\n} as const;\n\n/\n Retrieves the default service endpoints for a given chain ID\n \n @param chainId - The numeric chain ID\n * @returns Service endpoints for the chain, or undefined if not supported\n * @example\n * ```typescript\n * const services = getServiceEndpoints(1480);\n * if (services) {\n * console.log('Personal server:', services.personalServerUrl);\n * console.log('Subgraph:', services.subgraphUrl);\n * }\n * ```\n /\nexport function getServiceEndpoints(\n chainId: number,\n): ServiceEndpoints \| undefined {\n switch (chainId) {\n case 1480:\n return mainnetServices;\n case 14800:\n return mokshaServices;\n default:\n return undefined;\n }\n}\n\n/\n Gets the default personal server URL for a given chain ID\n \n @param chainId - The numeric chain ID\n * @returns The personal server URL for the chain, or undefined if not supported\n */\nexport function getDefaultPersonalServerUrl(\n chainId: number,\n): string \| undefined {\n const services = getServiceEndpoints(chainId);\n return services?.personalServerUrl;\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;~~AAAA;AAqBO~~,MAAM,kBAAoC;AAAA,EAC/C,~~aAAa;AAAA,EACb,~~kBAAkB;AAAA,EAClB,~~mBAAmB;AAAA,EACnB,~~QAAQ;AACV;AAKO,MAAM,iBAAmC;AAAA,EAC9C,~~aAAa;AAAA,EACb,~~kBAAkB;AAAA,EAClB,~~mBAAmB;AAAA,EACnB,~~QAAQ;AACV;~~AAgBO~~,SAAS,oBACd,SAC8B;AAC9B,UAAQ,SAAS;AAAA,IACf,KAAK;AACH,aAAO;AAAA,IACT,KAAK;AACH,aAAO;AAAA,IACT;AACE,aAAO;AAAA,EACX;AACF;~~AAQO,SAAS,4BACd,SACoB;AACpB,QAAM,WAAW,oBAAoB,OAAO;AAC5C,SAAO,UAAU;AACnB;~~","names":[]}
1	+ {"version":3,"sources":["../../src/config/default-services.ts"],"sourcesContent":["/*\n Default service endpoints for Vana networks\n \n Centralizes default service URLs for different Vana networks.\n * These can be overridden during SDK initialization.\n /\n\nexport interface ServiceEndpoints {\n /* Block explorer URL for viewing transactions and addresses /\n blockExplorerUrl: string;\n /* RPC URL for blockchain interactions /\n rpcUrl: string;\n}\n\n/\n Default service endpoints for Vana Mainnet (chain ID: 1480)\n /\nexport const mainnetServices: ServiceEndpoints = {\n blockExplorerUrl: \"https://vanascan.io\",\n rpcUrl: \"https://rpc.vana.org\",\n} as const;\n\n/\n Default service endpoints for Moksha Testnet (chain ID: 14800)\n /\nexport const mokshaServices: ServiceEndpoints = {\n blockExplorerUrl: \"https://moksha.vanascan.io\",\n rpcUrl: \"https://rpc.moksha.vana.org\",\n} as const;\n\n/\n Retrieves the default service endpoints for a given chain ID\n \n @param chainId - The numeric chain ID\n * @returns Service endpoints for the chain, or undefined if not supported\n */\nexport function getServiceEndpoints(\n chainId: number,\n): ServiceEndpoints \| undefined {\n switch (chainId) {\n case 1480:\n return mainnetServices;\n case 14800:\n return mokshaServices;\n default:\n return undefined;\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAiBO,MAAM,kBAAoC;AAAA,EAC/C,kBAAkB;AAAA,EAClB,QAAQ;AACV;AAKO,MAAM,iBAAmC;AAAA,EAC9C,kBAAkB;AAAA,EAClB,QAAQ;AACV;AAQO,SAAS,oBACd,SAC8B;AAC9B,UAAQ,SAAS;AAAA,IACf,KAAK;AACH,aAAO;AAAA,IACT,KAAK;AACH,aAAO;AAAA,IACT;AACE,aAAO;AAAA,EACX;AACF;","names":[]}

package/dist/config/default-services.d.ts CHANGED Viewed

@@ -1,16 +1,12 @@
 /**
  * Default service endpoints for Vana networks
  *
- * Centralizes all default service URLs for different Vana networks.
+ * Centralizes default service URLs for different Vana networks.
  * These can be overridden during SDK initialization.
  */
 export interface ServiceEndpoints {
-    /** Subgraph API endpoint for querying on-chain data */
-    subgraphUrl: string;
     /** Block explorer URL for viewing transactions and addresses */
     blockExplorerUrl: string;
-    /** Personal server URL for computation operations */
-    personalServerUrl: string;
     /** RPC URL for blockchain interactions */
     rpcUrl: string;
 }
@@ -27,20 +23,5 @@ export declare const mokshaServices: ServiceEndpoints;
  *
  * @param chainId - The numeric chain ID
  * @returns Service endpoints for the chain, or undefined if not supported
- * @example
- * ```typescript
- * const services = getServiceEndpoints(1480);
- * if (services) {
- *   console.log('Personal server:', services.personalServerUrl);
- *   console.log('Subgraph:', services.subgraphUrl);
- * }
- * ```
  */
 export declare function getServiceEndpoints(chainId: number): ServiceEndpoints | undefined;
-/**
- * Gets the default personal server URL for a given chain ID
- *
- * @param chainId - The numeric chain ID
- * @returns The personal server URL for the chain, or undefined if not supported
- */
-export declare function getDefaultPersonalServerUrl(chainId: number): string | undefined;

package/dist/config/default-services.js CHANGED Viewed

@@ -1,13 +1,9 @@
 const mainnetServices = {
-  subgraphUrl: "https://vanagraph.io/v7",
   blockExplorerUrl: "https://vanascan.io",
-  personalServerUrl: "https://server.vana.com",
   rpcUrl: "https://rpc.vana.org"
 };
 const mokshaServices = {
-  subgraphUrl: "https://moksha.vanagraph.io/v7",
   blockExplorerUrl: "https://moksha.vanascan.io",
-  personalServerUrl: "https://test.server.vana.com",
   rpcUrl: "https://rpc.moksha.vana.org"
 };
 function getServiceEndpoints(chainId) {
@@ -20,12 +16,7 @@ function getServiceEndpoints(chainId) {
       return void 0;
   }
 }
-function getDefaultPersonalServerUrl(chainId) {
-  const services = getServiceEndpoints(chainId);
-  return services?.personalServerUrl;
-}
 export {
-  getDefaultPersonalServerUrl,
   getServiceEndpoints,
   mainnetServices,
   mokshaServices

package/dist/config/default-services.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../src/config/default-services.ts"],"sourcesContent":["/*\n Default service endpoints for Vana networks\n \n Centralizes ~~all~~ default service URLs for different Vana networks.\n * These can be overridden during SDK initialization.\n /\n\nexport interface ServiceEndpoints {\n /* Subgraph API endpoint for querying on-chain data /\n subgraphUrl: string;\n /* Block explorer URL for viewing transactions and addresses /\n blockExplorerUrl: string;\n /* Personal server URL for computation operations /\n personalServerUrl: string;\n /* RPC URL for blockchain interactions /\n rpcUrl: string;\n}\n\n/\n Default service endpoints for Vana Mainnet (chain ID: 1480)\n /\nexport const mainnetServices: ServiceEndpoints = {\n ~~subgraphUrl: \"https://vanagraph.io/v7\",\n~~ blockExplorerUrl: \"https://vanascan.io\",\n ~~personalServerUrl: \"https://server.vana.com\",\n~~ rpcUrl: \"https://rpc.vana.org\",\n} as const;\n\n/\n Default service endpoints for Moksha Testnet (chain ID: 14800)\n /\nexport const mokshaServices: ServiceEndpoints = {\n ~~subgraphUrl: \"https://moksha.vanagraph.io/v7\",\n~~ blockExplorerUrl: \"https://moksha.vanascan.io\",\n ~~personalServerUrl: \"https://test.server.vana.com\",\n~~ rpcUrl: \"https://rpc.moksha.vana.org\",\n} as const;\n\n/\n Retrieves the default service endpoints for a given chain ID\n \n @param chainId - The numeric chain ID\n * @returns Service endpoints for the chain, or undefined if not supported\n * @example\n * ```typescript\n * const services = getServiceEndpoints(1480);\n * if (services) {\n * console.log('Personal server:', services.personalServerUrl);\n * console.log('Subgraph:', services.subgraphUrl);\n * }\n * ```\n /\nexport function getServiceEndpoints(\n chainId: number,\n): ServiceEndpoints \| undefined {\n switch (chainId) {\n case 1480:\n return mainnetServices;\n case 14800:\n return mokshaServices;\n default:\n return undefined;\n }\n}\n\n/\n Gets the default personal server URL for a given chain ID\n \n @param chainId - The numeric chain ID\n * @returns The personal server URL for the chain, or undefined if not supported\n */\nexport function getDefaultPersonalServerUrl(\n chainId: number,\n): string \| undefined {\n const services = getServiceEndpoints(chainId);\n return services?.personalServerUrl;\n}\n"],"mappings":"~~AAqBO~~,MAAM,kBAAoC;AAAA,EAC/C,~~aAAa;AAAA,EACb,~~kBAAkB;AAAA,EAClB,~~mBAAmB;AAAA,EACnB,~~QAAQ;AACV;AAKO,MAAM,iBAAmC;AAAA,EAC9C,~~aAAa;AAAA,EACb,~~kBAAkB;AAAA,EAClB,~~mBAAmB;AAAA,EACnB,~~QAAQ;AACV;~~AAgBO~~,SAAS,oBACd,SAC8B;AAC9B,UAAQ,SAAS;AAAA,IACf,KAAK;AACH,aAAO;AAAA,IACT,KAAK;AACH,aAAO;AAAA,IACT;AACE,aAAO;AAAA,EACX;AACF;~~AAQO,SAAS,4BACd,SACoB;AACpB,QAAM,WAAW,oBAAoB,OAAO;AAC5C,SAAO,UAAU;AACnB;~~","names":[]}
1	+ {"version":3,"sources":["../../src/config/default-services.ts"],"sourcesContent":["/*\n Default service endpoints for Vana networks\n \n Centralizes default service URLs for different Vana networks.\n * These can be overridden during SDK initialization.\n /\n\nexport interface ServiceEndpoints {\n /* Block explorer URL for viewing transactions and addresses /\n blockExplorerUrl: string;\n /* RPC URL for blockchain interactions /\n rpcUrl: string;\n}\n\n/\n Default service endpoints for Vana Mainnet (chain ID: 1480)\n /\nexport const mainnetServices: ServiceEndpoints = {\n blockExplorerUrl: \"https://vanascan.io\",\n rpcUrl: \"https://rpc.vana.org\",\n} as const;\n\n/\n Default service endpoints for Moksha Testnet (chain ID: 14800)\n /\nexport const mokshaServices: ServiceEndpoints = {\n blockExplorerUrl: \"https://moksha.vanascan.io\",\n rpcUrl: \"https://rpc.moksha.vana.org\",\n} as const;\n\n/\n Retrieves the default service endpoints for a given chain ID\n \n @param chainId - The numeric chain ID\n * @returns Service endpoints for the chain, or undefined if not supported\n */\nexport function getServiceEndpoints(\n chainId: number,\n): ServiceEndpoints \| undefined {\n switch (chainId) {\n case 1480:\n return mainnetServices;\n case 14800:\n return mokshaServices;\n default:\n return undefined;\n }\n}\n"],"mappings":"AAiBO,MAAM,kBAAoC;AAAA,EAC/C,kBAAkB;AAAA,EAClB,QAAQ;AACV;AAKO,MAAM,iBAAmC;AAAA,EAC9C,kBAAkB;AAAA,EAClB,QAAQ;AACV;AAQO,SAAS,oBACd,SAC8B;AAC9B,UAAQ,SAAS;AAAA,IACf,KAAK;AACH,aAAO;AAAA,IACT,KAAK;AACH,aAAO;AAAA,IACT;AACE,aAAO;AAAA,EACX;AACF;","names":[]}

package/dist/crypto/ecies/interface.cjs CHANGED Viewed

@@ -33,6 +33,8 @@ class ECIESError extends Error {
     this.cause = cause;
     this.name = "ECIESError";
   }
+  code;
+  cause;
 }
 function isECIESEncrypted(obj) {
   if (!obj || typeof obj !== "object") return false;

package/dist/crypto/ecies/interface.cjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/crypto/ecies/interface.ts"],"sourcesContent":["/*\n ECIES (Elliptic Curve Integrated Encryption Scheme) Interface\n \n @remarks\n * Defines the contract for platform-specific ECIES implementations.\n * All implementations maintain compatibility with the eccrypto format to ensure\n * backward compatibility with existing encrypted data.\n \n Format specification:\n * `[iv (16 bytes)][ephemPublicKey (65 bytes)][ciphertext (variable)][mac (32 bytes)]`\n \n @category Cryptography\n /\n\nimport { CIPHER, CURVE, MAC, FORMAT } from \"./constants\";\nimport { fromHex, toHex } from \"viem\";\n\n/\n Represents ECIES encrypted data in eccrypto-compatible format.\n \n @remarks\n * This structure maintains backward compatibility with data encrypted using\n * the legacy eccrypto library.\n /\nexport interface ECIESEncrypted {\n /* Initialization vector (16 bytes) /\n iv: Uint8Array;\n /* Ephemeral public key (65 bytes uncompressed) /\n ephemPublicKey: Uint8Array;\n /* Encrypted data /\n ciphertext: Uint8Array;\n /* Message authentication code (32 bytes) /\n mac: Uint8Array;\n}\n\n/\n Provides ECIES encryption and decryption operations.\n \n @remarks\n * Platform-specific implementations handle the underlying cryptographic primitives\n * while maintaining consistent data format across environments.\n \n @category Cryptography\n /\nexport interface ECIESProvider {\n /\n Encrypts data using ECIES with secp256k1.\n \n @param publicKey - Recipient's public key (65 bytes uncompressed or 33 bytes compressed).\n * Obtain via `vana.server.getIdentity(userAddress).public_key`.\n * @param message - Data to encrypt.\n * @returns Encrypted data structure compatible with eccrypto format.\n * @throws {ECIESError} When public key is invalid.\n * Verify key format matches secp256k1 requirements.\n \n @example\n * ```typescript\n * const encrypted = await provider.encrypt(\n * fromHex(publicKey, 'bytes'),\n * new TextEncoder().encode('sensitive data')\n * );\n * ```\n /\n encrypt(publicKey: Uint8Array, message: Uint8Array): Promise<ECIESEncrypted>;\n\n /\n Decrypts ECIES encrypted data.\n \n @param privateKey - Recipient's private key (32 bytes).\n * @param encrypted - Encrypted data structure from `encrypt()` or legacy eccrypto.\n * @returns Decrypted message as Uint8Array.\n * @throws {ECIESError} When MAC verification fails.\n * Ensure the private key matches the public key used for encryption.\n \n @example\n * ```typescript\n * const decrypted = await provider.decrypt(\n * fromHex(privateKey, 'bytes'),\n * encrypted\n * );\n * const message = new TextDecoder().decode(decrypted);\n * ```\n /\n decrypt(\n privateKey: Uint8Array,\n encrypted: ECIESEncrypted,\n ): Promise<Uint8Array>;\n\n /\n Normalizes a public key to uncompressed format (65 bytes with 0x04 prefix).\n \n @remarks\n * Strict policy: Only accepts properly formatted compressed (33 bytes) or\n * uncompressed (65 bytes) public keys. Does not accept 64-byte raw coordinates\n * to ensure data integrity and prevent masking of malformed inputs.\n \n @param publicKey - Public key in compressed or uncompressed format\n * @returns Normalized uncompressed public key (65 bytes with 0x04 prefix)\n * @throws {Error} When public key format is invalid, including raw coordinates (64 bytes)\n * @throws {Error} When decompression of compressed key fails\n \n @example\n * ```typescript\n * // Compressed key (33 bytes)\n * const compressed = new Uint8Array(33);\n * compressed[0] = 0x02;\n * const uncompressed = provider.normalizeToUncompressed(compressed);\n * console.log(uncompressed.length); // 65\n * console.log(uncompressed[0]); // 0x04\n \n // Already uncompressed (65 bytes)\n * const already = provider.normalizeToUncompressed(uncompressedKey);\n * console.log(already === uncompressedKey); // true (returns same reference)\n \n // Raw coordinates rejected (64 bytes)\n * const raw = new Uint8Array(64);\n * provider.normalizeToUncompressed(raw); // Throws error\n * ```\n /\n normalizeToUncompressed(publicKey: Uint8Array): Uint8Array;\n}\n\n/\n Configures ECIES operation behavior.\n /\nexport interface ECIESOptions {\n /* Use compressed public keys (33 bytes) instead of uncompressed (65 bytes) /\n useCompressed?: boolean;\n}\n\n/\n Represents failures in ECIES cryptographic operations.\n \n @remarks\n * Provides specific error codes to help identify and recover from\n * different failure scenarios.\n \n @category Errors\n /\nexport class ECIESError extends Error {\n constructor(\n message: string,\n public readonly code:\n \| \"INVALID_KEY\"\n \| \"ENCRYPTION_FAILED\"\n \| \"DECRYPTION_FAILED\"\n \| \"MAC_MISMATCH\"\n \| \"ECDH_FAILED\",\n public override readonly cause?: Error,\n ) {\n super(message);\n this.name = \"ECIESError\";\n }\n}\n\n/\n Validates if an object conforms to the ECIESEncrypted structure.\n \n @param obj - Object to validate.\n * @returns `true` if object is a valid ECIESEncrypted structure.\n \n @example\n * ```typescript\n * if (isECIESEncrypted(data)) {\n * const decrypted = await provider.decrypt(privateKey, data);\n * }\n * ```\n /\nexport function isECIESEncrypted(obj: unknown): obj is ECIESEncrypted {\n if (!obj \|\| typeof obj !== \"object\") return false;\n const enc = obj as Record<string, unknown>;\n\n const isUint8Array = (value: unknown): value is Uint8Array => {\n return (\n value instanceof Uint8Array \|\|\n (typeof Buffer !== \"undefined\" && Buffer.isBuffer(value))\n );\n };\n\n return (\n isUint8Array(enc.iv) &&\n enc.iv.length === CIPHER.IV_LENGTH &&\n isUint8Array(enc.ephemPublicKey) &&\n (enc.ephemPublicKey.length === CURVE.UNCOMPRESSED_PUBLIC_KEY_LENGTH \|\|\n enc.ephemPublicKey.length === CURVE.COMPRESSED_PUBLIC_KEY_LENGTH) &&\n isUint8Array(enc.ciphertext) &&\n enc.ciphertext.length > 0 &&\n isUint8Array(enc.mac) &&\n enc.mac.length === MAC.LENGTH\n );\n}\n\n/\n Serializes ECIESEncrypted to hex string for storage or transmission.\n \n @param encrypted - Encrypted data structure from `encrypt()`.\n * @returns Hex string representation.\n \n @example\n * ```typescript\n * const hexString = serializeECIES(encrypted);\n * // Store hexString in database or send over network\n * ```\n /\nexport function serializeECIES(encrypted: ECIESEncrypted): string {\n const combined = new Uint8Array(\n encrypted.iv.length +\n encrypted.ephemPublicKey.length +\n encrypted.ciphertext.length +\n encrypted.mac.length,\n );\n\n let offset = 0;\n combined.set(encrypted.iv, offset);\n offset += encrypted.iv.length;\n combined.set(encrypted.ephemPublicKey, offset);\n offset += encrypted.ephemPublicKey.length;\n combined.set(encrypted.ciphertext, offset);\n offset += encrypted.ciphertext.length;\n combined.set(encrypted.mac, offset);\n\n return toHex(combined).slice(2);\n}\n\n/\n Deserializes hex string to ECIESEncrypted structure.\n \n @param hex - Hex string from `serializeECIES()` or storage.\n * @returns ECIESEncrypted structure ready for decryption.\n * @throws {ECIESError} When hex string format is invalid.\n * Verify the hex string is complete and uncorrupted.\n \n @example\n * ```typescript\n * const encrypted = deserializeECIES(hexString);\n * const decrypted = await provider.decrypt(privateKey, encrypted);\n * ```\n */\nexport function deserializeECIES(hex: string): ECIESEncrypted {\n const hexWithPrefix = hex.startsWith(\"0x\") ? hex : `0x${hex}`;\n const bytes = fromHex(hexWithPrefix as `0x${string}`, \"bytes\");\n\n // Check minimum length before accessing prefix byte\n // Need at least: IV (16 bytes) + 1 byte for prefix check + MAC (32 bytes) + 1 byte ciphertext\n const absoluteMinLength = FORMAT.IV_LENGTH + 1 + MAC.LENGTH + 1;\n if (bytes.length < absoluteMinLength) {\n throw new ECIESError(\n `Invalid ECIES data: too short (${bytes.length} bytes, minimum ${absoluteMinLength} bytes required)`,\n \"DECRYPTION_FAILED\",\n );\n }\n\n // Validate ephemeral public key prefix (must be uncompressed for eccrypto compatibility)\n const prefix = bytes[FORMAT.EPHEMERAL_KEY_OFFSET];\n\n if (prefix !== CURVE.PREFIX.UNCOMPRESSED) {\n throw new ECIESError(\n `Invalid ephemeral public key: must be uncompressed format (0x04 prefix), got 0x${prefix.toString(16).padStart(2, \"0\")}`,\n \"DECRYPTION_FAILED\",\n );\n }\n\n const ephemKeySize = CURVE.UNCOMPRESSED_PUBLIC_KEY_LENGTH;\n\n const minLength = FORMAT.IV_LENGTH + ephemKeySize + MAC.LENGTH + 1; // +1 for at least 1 byte of ciphertext\n if (bytes.length < minLength) {\n throw new ECIESError(\n `Invalid ECIES data: too short (${bytes.length} bytes, minimum ${minLength} bytes required)`,\n \"DECRYPTION_FAILED\",\n );\n }\n\n return {\n iv: bytes.subarray(FORMAT.IV_OFFSET, FORMAT.IV_OFFSET + FORMAT.IV_LENGTH),\n ephemPublicKey: bytes.subarray(\n FORMAT.EPHEMERAL_KEY_OFFSET,\n FORMAT.EPHEMERAL_KEY_OFFSET + ephemKeySize,\n ),\n ciphertext: bytes.subarray(\n FORMAT.EPHEMERAL_KEY_OFFSET + ephemKeySize,\n bytes.length - MAC.LENGTH,\n ),\n mac: bytes.subarray(bytes.length - MAC.LENGTH),\n };\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAcA,uBAA2C;AAC3C,kBAA+B;AA4HxB,MAAM,mBAAmB,MAAM;AAAA,EACpC,YACE,SACgB,MAMS,OACzB;AACA,UAAM,OAAO;AARG;AAMS;AAGzB,SAAK,OAAO;AAAA,EACd;AACF;AAeO,SAAS,iBAAiB,KAAqC;AACpE,MAAI,CAAC,OAAO,OAAO,QAAQ,SAAU,QAAO;AAC5C,QAAM,MAAM;AAEZ,QAAM,eAAe,CAAC,UAAwC;AAC5D,WACE,iBAAiB,cAChB,OAAO,WAAW,eAAe,OAAO,SAAS,KAAK;AAAA,EAE3D;AAEA,SACE,aAAa,IAAI,EAAE,KACnB,IAAI,GAAG,WAAW,wBAAO,aACzB,aAAa,IAAI,cAAc,MAC9B,IAAI,eAAe,WAAW,uBAAM,kCACnC,IAAI,eAAe,WAAW,uBAAM,iCACtC,aAAa,IAAI,UAAU,KAC3B,IAAI,WAAW,SAAS,KACxB,aAAa,IAAI,GAAG,KACpB,IAAI,IAAI,WAAW,qBAAI;AAE3B;AAcO,SAAS,eAAe,WAAmC;AAChE,QAAM,WAAW,IAAI;AAAA,IACnB,UAAU,GAAG,SACX,UAAU,eAAe,SACzB,UAAU,WAAW,SACrB,UAAU,IAAI;AAAA,EAClB;AAEA,MAAI,SAAS;AACb,WAAS,IAAI,UAAU,IAAI,MAAM;AACjC,YAAU,UAAU,GAAG;AACvB,WAAS,IAAI,UAAU,gBAAgB,MAAM;AAC7C,YAAU,UAAU,eAAe;AACnC,WAAS,IAAI,UAAU,YAAY,MAAM;AACzC,YAAU,UAAU,WAAW;AAC/B,WAAS,IAAI,UAAU,KAAK,MAAM;AAElC,aAAO,mBAAM,QAAQ,EAAE,MAAM,CAAC;AAChC;AAgBO,SAAS,iBAAiB,KAA6B;AAC5D,QAAM,gBAAgB,IAAI,WAAW,IAAI,IAAI,MAAM,KAAK,GAAG;AAC3D,QAAM,YAAQ,qBAAQ,eAAgC,OAAO;AAI7D,QAAM,oBAAoB,wBAAO,YAAY,IAAI,qBAAI,SAAS;AAC9D,MAAI,MAAM,SAAS,mBAAmB;AACpC,UAAM,IAAI;AAAA,MACR,kCAAkC,MAAM,MAAM,mBAAmB,iBAAiB;AAAA,MAClF;AAAA,IACF;AAAA,EACF;AAGA,QAAM,SAAS,MAAM,wBAAO,oBAAoB;AAEhD,MAAI,WAAW,uBAAM,OAAO,cAAc;AACxC,UAAM,IAAI;AAAA,MACR,kFAAkF,OAAO,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC;AAAA,MACtH;AAAA,IACF;AAAA,EACF;AAEA,QAAM,eAAe,uBAAM;AAE3B,QAAM,YAAY,wBAAO,YAAY,eAAe,qBAAI,SAAS;AACjE,MAAI,MAAM,SAAS,WAAW;AAC5B,UAAM,IAAI;AAAA,MACR,kCAAkC,MAAM,MAAM,mBAAmB,SAAS;AAAA,MAC1E;AAAA,IACF;AAAA,EACF;AAEA,SAAO;AAAA,IACL,IAAI,MAAM,SAAS,wBAAO,WAAW,wBAAO,YAAY,wBAAO,SAAS;AAAA,IACxE,gBAAgB,MAAM;AAAA,MACpB,wBAAO;AAAA,MACP,wBAAO,uBAAuB;AAAA,IAChC;AAAA,IACA,YAAY,MAAM;AAAA,MAChB,wBAAO,uBAAuB;AAAA,MAC9B,MAAM,SAAS,qBAAI;AAAA,IACrB;AAAA,IACA,KAAK,MAAM,SAAS,MAAM,SAAS,qBAAI,MAAM;AAAA,EAC/C;AACF;","names":[]}
1	+ {"version":3,"sources":["../../../src/crypto/ecies/interface.ts"],"sourcesContent":["/*\n ECIES (Elliptic Curve Integrated Encryption Scheme) Interface\n \n @remarks\n * Defines the contract for platform-specific ECIES implementations.\n * All implementations maintain compatibility with the eccrypto format to ensure\n * backward compatibility with existing encrypted data.\n \n Format specification:\n * `[iv (16 bytes)][ephemPublicKey (65 bytes)][ciphertext (variable)][mac (32 bytes)]`\n \n @category Cryptography\n /\n\nimport { CIPHER, CURVE, MAC, FORMAT } from \"./constants\";\nimport { fromHex, toHex } from \"viem\";\n\n/\n Represents ECIES encrypted data in eccrypto-compatible format.\n \n @remarks\n * This structure maintains backward compatibility with data encrypted using\n * the legacy eccrypto library.\n /\nexport interface ECIESEncrypted {\n /* Initialization vector (16 bytes) /\n iv: Uint8Array;\n /* Ephemeral public key (65 bytes uncompressed) /\n ephemPublicKey: Uint8Array;\n /* Encrypted data /\n ciphertext: Uint8Array;\n /* Message authentication code (32 bytes) /\n mac: Uint8Array;\n}\n\n/\n Provides ECIES encryption and decryption operations.\n \n @remarks\n * Platform-specific implementations handle the underlying cryptographic primitives\n * while maintaining consistent data format across environments.\n \n @category Cryptography\n /\nexport interface ECIESProvider {\n /\n Encrypts data using ECIES with secp256k1.\n \n @param publicKey - Recipient's public key (65 bytes uncompressed or 33 bytes compressed).\n * Obtain via `vana.server.getIdentity(userAddress).public_key`.\n * @param message - Data to encrypt.\n * @returns Encrypted data structure compatible with eccrypto format.\n * @throws {ECIESError} When public key is invalid.\n * Verify key format matches secp256k1 requirements.\n \n @example\n * ```typescript\n * const encrypted = await provider.encrypt(\n * fromHex(publicKey, 'bytes'),\n * new TextEncoder().encode('sensitive data')\n * );\n * ```\n /\n encrypt(publicKey: Uint8Array, message: Uint8Array): Promise<ECIESEncrypted>;\n\n /\n Decrypts ECIES encrypted data.\n \n @param privateKey - Recipient's private key (32 bytes).\n * @param encrypted - Encrypted data structure from `encrypt()` or legacy eccrypto.\n * @returns Decrypted message as Uint8Array.\n * @throws {ECIESError} When MAC verification fails.\n * Ensure the private key matches the public key used for encryption.\n \n @example\n * ```typescript\n * const decrypted = await provider.decrypt(\n * fromHex(privateKey, 'bytes'),\n * encrypted\n * );\n * const message = new TextDecoder().decode(decrypted);\n * ```\n /\n decrypt(\n privateKey: Uint8Array,\n encrypted: ECIESEncrypted,\n ): Promise<Uint8Array>;\n\n /\n Normalizes a public key to uncompressed format (65 bytes with 0x04 prefix).\n \n @remarks\n * Strict policy: Only accepts properly formatted compressed (33 bytes) or\n * uncompressed (65 bytes) public keys. Does not accept 64-byte raw coordinates\n * to ensure data integrity and prevent masking of malformed inputs.\n \n @param publicKey - Public key in compressed or uncompressed format\n * @returns Normalized uncompressed public key (65 bytes with 0x04 prefix)\n * @throws {Error} When public key format is invalid, including raw coordinates (64 bytes)\n * @throws {Error} When decompression of compressed key fails\n \n @example\n * ```typescript\n * // Compressed key (33 bytes)\n * const compressed = new Uint8Array(33);\n * compressed[0] = 0x02;\n * const uncompressed = provider.normalizeToUncompressed(compressed);\n * console.log(uncompressed.length); // 65\n * console.log(uncompressed[0]); // 0x04\n \n // Already uncompressed (65 bytes)\n * const already = provider.normalizeToUncompressed(uncompressedKey);\n * console.log(already === uncompressedKey); // true (returns same reference)\n \n // Raw coordinates rejected (64 bytes)\n * const raw = new Uint8Array(64);\n * provider.normalizeToUncompressed(raw); // Throws error\n * ```\n /\n normalizeToUncompressed(publicKey: Uint8Array): Uint8Array;\n}\n\n/\n Configures ECIES operation behavior.\n /\nexport interface ECIESOptions {\n /* Use compressed public keys (33 bytes) instead of uncompressed (65 bytes) /\n useCompressed?: boolean;\n}\n\n/\n Represents failures in ECIES cryptographic operations.\n \n @remarks\n * Provides specific error codes to help identify and recover from\n * different failure scenarios.\n \n @category Errors\n /\nexport class ECIESError extends Error {\n constructor(\n message: string,\n public readonly code:\n \| \"INVALID_KEY\"\n \| \"ENCRYPTION_FAILED\"\n \| \"DECRYPTION_FAILED\"\n \| \"MAC_MISMATCH\"\n \| \"ECDH_FAILED\",\n public override readonly cause?: Error,\n ) {\n super(message);\n this.name = \"ECIESError\";\n }\n}\n\n/\n Validates if an object conforms to the ECIESEncrypted structure.\n \n @param obj - Object to validate.\n * @returns `true` if object is a valid ECIESEncrypted structure.\n \n @example\n * ```typescript\n * if (isECIESEncrypted(data)) {\n * const decrypted = await provider.decrypt(privateKey, data);\n * }\n * ```\n /\nexport function isECIESEncrypted(obj: unknown): obj is ECIESEncrypted {\n if (!obj \|\| typeof obj !== \"object\") return false;\n const enc = obj as Record<string, unknown>;\n\n const isUint8Array = (value: unknown): value is Uint8Array => {\n return (\n value instanceof Uint8Array \|\|\n (typeof Buffer !== \"undefined\" && Buffer.isBuffer(value))\n );\n };\n\n return (\n isUint8Array(enc.iv) &&\n enc.iv.length === CIPHER.IV_LENGTH &&\n isUint8Array(enc.ephemPublicKey) &&\n (enc.ephemPublicKey.length === CURVE.UNCOMPRESSED_PUBLIC_KEY_LENGTH \|\|\n enc.ephemPublicKey.length === CURVE.COMPRESSED_PUBLIC_KEY_LENGTH) &&\n isUint8Array(enc.ciphertext) &&\n enc.ciphertext.length > 0 &&\n isUint8Array(enc.mac) &&\n enc.mac.length === MAC.LENGTH\n );\n}\n\n/\n Serializes ECIESEncrypted to hex string for storage or transmission.\n \n @param encrypted - Encrypted data structure from `encrypt()`.\n * @returns Hex string representation.\n \n @example\n * ```typescript\n * const hexString = serializeECIES(encrypted);\n * // Store hexString in database or send over network\n * ```\n /\nexport function serializeECIES(encrypted: ECIESEncrypted): string {\n const combined = new Uint8Array(\n encrypted.iv.length +\n encrypted.ephemPublicKey.length +\n encrypted.ciphertext.length +\n encrypted.mac.length,\n );\n\n let offset = 0;\n combined.set(encrypted.iv, offset);\n offset += encrypted.iv.length;\n combined.set(encrypted.ephemPublicKey, offset);\n offset += encrypted.ephemPublicKey.length;\n combined.set(encrypted.ciphertext, offset);\n offset += encrypted.ciphertext.length;\n combined.set(encrypted.mac, offset);\n\n return toHex(combined).slice(2);\n}\n\n/\n Deserializes hex string to ECIESEncrypted structure.\n \n @param hex - Hex string from `serializeECIES()` or storage.\n * @returns ECIESEncrypted structure ready for decryption.\n * @throws {ECIESError} When hex string format is invalid.\n * Verify the hex string is complete and uncorrupted.\n \n @example\n * ```typescript\n * const encrypted = deserializeECIES(hexString);\n * const decrypted = await provider.decrypt(privateKey, encrypted);\n * ```\n */\nexport function deserializeECIES(hex: string): ECIESEncrypted {\n const hexWithPrefix = hex.startsWith(\"0x\") ? hex : `0x${hex}`;\n const bytes = fromHex(hexWithPrefix as `0x${string}`, \"bytes\");\n\n // Check minimum length before accessing prefix byte\n // Need at least: IV (16 bytes) + 1 byte for prefix check + MAC (32 bytes) + 1 byte ciphertext\n const absoluteMinLength = FORMAT.IV_LENGTH + 1 + MAC.LENGTH + 1;\n if (bytes.length < absoluteMinLength) {\n throw new ECIESError(\n `Invalid ECIES data: too short (${bytes.length} bytes, minimum ${absoluteMinLength} bytes required)`,\n \"DECRYPTION_FAILED\",\n );\n }\n\n // Validate ephemeral public key prefix (must be uncompressed for eccrypto compatibility)\n const prefix = bytes[FORMAT.EPHEMERAL_KEY_OFFSET];\n\n if (prefix !== CURVE.PREFIX.UNCOMPRESSED) {\n throw new ECIESError(\n `Invalid ephemeral public key: must be uncompressed format (0x04 prefix), got 0x${prefix.toString(16).padStart(2, \"0\")}`,\n \"DECRYPTION_FAILED\",\n );\n }\n\n const ephemKeySize = CURVE.UNCOMPRESSED_PUBLIC_KEY_LENGTH;\n\n const minLength = FORMAT.IV_LENGTH + ephemKeySize + MAC.LENGTH + 1; // +1 for at least 1 byte of ciphertext\n if (bytes.length < minLength) {\n throw new ECIESError(\n `Invalid ECIES data: too short (${bytes.length} bytes, minimum ${minLength} bytes required)`,\n \"DECRYPTION_FAILED\",\n );\n }\n\n return {\n iv: bytes.subarray(FORMAT.IV_OFFSET, FORMAT.IV_OFFSET + FORMAT.IV_LENGTH),\n ephemPublicKey: bytes.subarray(\n FORMAT.EPHEMERAL_KEY_OFFSET,\n FORMAT.EPHEMERAL_KEY_OFFSET + ephemKeySize,\n ),\n ciphertext: bytes.subarray(\n FORMAT.EPHEMERAL_KEY_OFFSET + ephemKeySize,\n bytes.length - MAC.LENGTH,\n ),\n mac: bytes.subarray(bytes.length - MAC.LENGTH),\n };\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAcA,uBAA2C;AAC3C,kBAA+B;AA4HxB,MAAM,mBAAmB,MAAM;AAAA,EACpC,YACE,SACgB,MAMS,OACzB;AACA,UAAM,OAAO;AARG;AAMS;AAGzB,SAAK,OAAO;AAAA,EACd;AAAA,EAVkB;AAAA,EAMS;AAK7B;AAeO,SAAS,iBAAiB,KAAqC;AACpE,MAAI,CAAC,OAAO,OAAO,QAAQ,SAAU,QAAO;AAC5C,QAAM,MAAM;AAEZ,QAAM,eAAe,CAAC,UAAwC;AAC5D,WACE,iBAAiB,cAChB,OAAO,WAAW,eAAe,OAAO,SAAS,KAAK;AAAA,EAE3D;AAEA,SACE,aAAa,IAAI,EAAE,KACnB,IAAI,GAAG,WAAW,wBAAO,aACzB,aAAa,IAAI,cAAc,MAC9B,IAAI,eAAe,WAAW,uBAAM,kCACnC,IAAI,eAAe,WAAW,uBAAM,iCACtC,aAAa,IAAI,UAAU,KAC3B,IAAI,WAAW,SAAS,KACxB,aAAa,IAAI,GAAG,KACpB,IAAI,IAAI,WAAW,qBAAI;AAE3B;AAcO,SAAS,eAAe,WAAmC;AAChE,QAAM,WAAW,IAAI;AAAA,IACnB,UAAU,GAAG,SACX,UAAU,eAAe,SACzB,UAAU,WAAW,SACrB,UAAU,IAAI;AAAA,EAClB;AAEA,MAAI,SAAS;AACb,WAAS,IAAI,UAAU,IAAI,MAAM;AACjC,YAAU,UAAU,GAAG;AACvB,WAAS,IAAI,UAAU,gBAAgB,MAAM;AAC7C,YAAU,UAAU,eAAe;AACnC,WAAS,IAAI,UAAU,YAAY,MAAM;AACzC,YAAU,UAAU,WAAW;AAC/B,WAAS,IAAI,UAAU,KAAK,MAAM;AAElC,aAAO,mBAAM,QAAQ,EAAE,MAAM,CAAC;AAChC;AAgBO,SAAS,iBAAiB,KAA6B;AAC5D,QAAM,gBAAgB,IAAI,WAAW,IAAI,IAAI,MAAM,KAAK,GAAG;AAC3D,QAAM,YAAQ,qBAAQ,eAAgC,OAAO;AAI7D,QAAM,oBAAoB,wBAAO,YAAY,IAAI,qBAAI,SAAS;AAC9D,MAAI,MAAM,SAAS,mBAAmB;AACpC,UAAM,IAAI;AAAA,MACR,kCAAkC,MAAM,MAAM,mBAAmB,iBAAiB;AAAA,MAClF;AAAA,IACF;AAAA,EACF;AAGA,QAAM,SAAS,MAAM,wBAAO,oBAAoB;AAEhD,MAAI,WAAW,uBAAM,OAAO,cAAc;AACxC,UAAM,IAAI;AAAA,MACR,kFAAkF,OAAO,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC;AAAA,MACtH;AAAA,IACF;AAAA,EACF;AAEA,QAAM,eAAe,uBAAM;AAE3B,QAAM,YAAY,wBAAO,YAAY,eAAe,qBAAI,SAAS;AACjE,MAAI,MAAM,SAAS,WAAW;AAC5B,UAAM,IAAI;AAAA,MACR,kCAAkC,MAAM,MAAM,mBAAmB,SAAS;AAAA,MAC1E;AAAA,IACF;AAAA,EACF;AAEA,SAAO;AAAA,IACL,IAAI,MAAM,SAAS,wBAAO,WAAW,wBAAO,YAAY,wBAAO,SAAS;AAAA,IACxE,gBAAgB,MAAM;AAAA,MACpB,wBAAO;AAAA,MACP,wBAAO,uBAAuB;AAAA,IAChC;AAAA,IACA,YAAY,MAAM;AAAA,MAChB,wBAAO,uBAAuB;AAAA,MAC9B,MAAM,SAAS,qBAAI;AAAA,IACrB;AAAA,IACA,KAAK,MAAM,SAAS,MAAM,SAAS,qBAAI,MAAM;AAAA,EAC/C;AACF;","names":[]}

package/dist/crypto/ecies/interface.js CHANGED Viewed

@@ -7,6 +7,8 @@ class ECIESError extends Error {
     this.cause = cause;
     this.name = "ECIESError";
   }
+  code;
+  cause;
 }
 function isECIESEncrypted(obj) {
   if (!obj || typeof obj !== "object") return false;

package/dist/crypto/ecies/interface.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/crypto/ecies/interface.ts"],"sourcesContent":["/*\n ECIES (Elliptic Curve Integrated Encryption Scheme) Interface\n \n @remarks\n * Defines the contract for platform-specific ECIES implementations.\n * All implementations maintain compatibility with the eccrypto format to ensure\n * backward compatibility with existing encrypted data.\n \n Format specification:\n * `[iv (16 bytes)][ephemPublicKey (65 bytes)][ciphertext (variable)][mac (32 bytes)]`\n \n @category Cryptography\n /\n\nimport { CIPHER, CURVE, MAC, FORMAT } from \"./constants\";\nimport { fromHex, toHex } from \"viem\";\n\n/\n Represents ECIES encrypted data in eccrypto-compatible format.\n \n @remarks\n * This structure maintains backward compatibility with data encrypted using\n * the legacy eccrypto library.\n /\nexport interface ECIESEncrypted {\n /* Initialization vector (16 bytes) /\n iv: Uint8Array;\n /* Ephemeral public key (65 bytes uncompressed) /\n ephemPublicKey: Uint8Array;\n /* Encrypted data /\n ciphertext: Uint8Array;\n /* Message authentication code (32 bytes) /\n mac: Uint8Array;\n}\n\n/\n Provides ECIES encryption and decryption operations.\n \n @remarks\n * Platform-specific implementations handle the underlying cryptographic primitives\n * while maintaining consistent data format across environments.\n \n @category Cryptography\n /\nexport interface ECIESProvider {\n /\n Encrypts data using ECIES with secp256k1.\n \n @param publicKey - Recipient's public key (65 bytes uncompressed or 33 bytes compressed).\n * Obtain via `vana.server.getIdentity(userAddress).public_key`.\n * @param message - Data to encrypt.\n * @returns Encrypted data structure compatible with eccrypto format.\n * @throws {ECIESError} When public key is invalid.\n * Verify key format matches secp256k1 requirements.\n \n @example\n * ```typescript\n * const encrypted = await provider.encrypt(\n * fromHex(publicKey, 'bytes'),\n * new TextEncoder().encode('sensitive data')\n * );\n * ```\n /\n encrypt(publicKey: Uint8Array, message: Uint8Array): Promise<ECIESEncrypted>;\n\n /\n Decrypts ECIES encrypted data.\n \n @param privateKey - Recipient's private key (32 bytes).\n * @param encrypted - Encrypted data structure from `encrypt()` or legacy eccrypto.\n * @returns Decrypted message as Uint8Array.\n * @throws {ECIESError} When MAC verification fails.\n * Ensure the private key matches the public key used for encryption.\n \n @example\n * ```typescript\n * const decrypted = await provider.decrypt(\n * fromHex(privateKey, 'bytes'),\n * encrypted\n * );\n * const message = new TextDecoder().decode(decrypted);\n * ```\n /\n decrypt(\n privateKey: Uint8Array,\n encrypted: ECIESEncrypted,\n ): Promise<Uint8Array>;\n\n /\n Normalizes a public key to uncompressed format (65 bytes with 0x04 prefix).\n \n @remarks\n * Strict policy: Only accepts properly formatted compressed (33 bytes) or\n * uncompressed (65 bytes) public keys. Does not accept 64-byte raw coordinates\n * to ensure data integrity and prevent masking of malformed inputs.\n \n @param publicKey - Public key in compressed or uncompressed format\n * @returns Normalized uncompressed public key (65 bytes with 0x04 prefix)\n * @throws {Error} When public key format is invalid, including raw coordinates (64 bytes)\n * @throws {Error} When decompression of compressed key fails\n \n @example\n * ```typescript\n * // Compressed key (33 bytes)\n * const compressed = new Uint8Array(33);\n * compressed[0] = 0x02;\n * const uncompressed = provider.normalizeToUncompressed(compressed);\n * console.log(uncompressed.length); // 65\n * console.log(uncompressed[0]); // 0x04\n \n // Already uncompressed (65 bytes)\n * const already = provider.normalizeToUncompressed(uncompressedKey);\n * console.log(already === uncompressedKey); // true (returns same reference)\n \n // Raw coordinates rejected (64 bytes)\n * const raw = new Uint8Array(64);\n * provider.normalizeToUncompressed(raw); // Throws error\n * ```\n /\n normalizeToUncompressed(publicKey: Uint8Array): Uint8Array;\n}\n\n/\n Configures ECIES operation behavior.\n /\nexport interface ECIESOptions {\n /* Use compressed public keys (33 bytes) instead of uncompressed (65 bytes) /\n useCompressed?: boolean;\n}\n\n/\n Represents failures in ECIES cryptographic operations.\n \n @remarks\n * Provides specific error codes to help identify and recover from\n * different failure scenarios.\n \n @category Errors\n /\nexport class ECIESError extends Error {\n constructor(\n message: string,\n public readonly code:\n \| \"INVALID_KEY\"\n \| \"ENCRYPTION_FAILED\"\n \| \"DECRYPTION_FAILED\"\n \| \"MAC_MISMATCH\"\n \| \"ECDH_FAILED\",\n public override readonly cause?: Error,\n ) {\n super(message);\n this.name = \"ECIESError\";\n }\n}\n\n/\n Validates if an object conforms to the ECIESEncrypted structure.\n \n @param obj - Object to validate.\n * @returns `true` if object is a valid ECIESEncrypted structure.\n \n @example\n * ```typescript\n * if (isECIESEncrypted(data)) {\n * const decrypted = await provider.decrypt(privateKey, data);\n * }\n * ```\n /\nexport function isECIESEncrypted(obj: unknown): obj is ECIESEncrypted {\n if (!obj \|\| typeof obj !== \"object\") return false;\n const enc = obj as Record<string, unknown>;\n\n const isUint8Array = (value: unknown): value is Uint8Array => {\n return (\n value instanceof Uint8Array \|\|\n (typeof Buffer !== \"undefined\" && Buffer.isBuffer(value))\n );\n };\n\n return (\n isUint8Array(enc.iv) &&\n enc.iv.length === CIPHER.IV_LENGTH &&\n isUint8Array(enc.ephemPublicKey) &&\n (enc.ephemPublicKey.length === CURVE.UNCOMPRESSED_PUBLIC_KEY_LENGTH \|\|\n enc.ephemPublicKey.length === CURVE.COMPRESSED_PUBLIC_KEY_LENGTH) &&\n isUint8Array(enc.ciphertext) &&\n enc.ciphertext.length > 0 &&\n isUint8Array(enc.mac) &&\n enc.mac.length === MAC.LENGTH\n );\n}\n\n/\n Serializes ECIESEncrypted to hex string for storage or transmission.\n \n @param encrypted - Encrypted data structure from `encrypt()`.\n * @returns Hex string representation.\n \n @example\n * ```typescript\n * const hexString = serializeECIES(encrypted);\n * // Store hexString in database or send over network\n * ```\n /\nexport function serializeECIES(encrypted: ECIESEncrypted): string {\n const combined = new Uint8Array(\n encrypted.iv.length +\n encrypted.ephemPublicKey.length +\n encrypted.ciphertext.length +\n encrypted.mac.length,\n );\n\n let offset = 0;\n combined.set(encrypted.iv, offset);\n offset += encrypted.iv.length;\n combined.set(encrypted.ephemPublicKey, offset);\n offset += encrypted.ephemPublicKey.length;\n combined.set(encrypted.ciphertext, offset);\n offset += encrypted.ciphertext.length;\n combined.set(encrypted.mac, offset);\n\n return toHex(combined).slice(2);\n}\n\n/\n Deserializes hex string to ECIESEncrypted structure.\n \n @param hex - Hex string from `serializeECIES()` or storage.\n * @returns ECIESEncrypted structure ready for decryption.\n * @throws {ECIESError} When hex string format is invalid.\n * Verify the hex string is complete and uncorrupted.\n \n @example\n * ```typescript\n * const encrypted = deserializeECIES(hexString);\n * const decrypted = await provider.decrypt(privateKey, encrypted);\n * ```\n */\nexport function deserializeECIES(hex: string): ECIESEncrypted {\n const hexWithPrefix = hex.startsWith(\"0x\") ? hex : `0x${hex}`;\n const bytes = fromHex(hexWithPrefix as `0x${string}`, \"bytes\");\n\n // Check minimum length before accessing prefix byte\n // Need at least: IV (16 bytes) + 1 byte for prefix check + MAC (32 bytes) + 1 byte ciphertext\n const absoluteMinLength = FORMAT.IV_LENGTH + 1 + MAC.LENGTH + 1;\n if (bytes.length < absoluteMinLength) {\n throw new ECIESError(\n `Invalid ECIES data: too short (${bytes.length} bytes, minimum ${absoluteMinLength} bytes required)`,\n \"DECRYPTION_FAILED\",\n );\n }\n\n // Validate ephemeral public key prefix (must be uncompressed for eccrypto compatibility)\n const prefix = bytes[FORMAT.EPHEMERAL_KEY_OFFSET];\n\n if (prefix !== CURVE.PREFIX.UNCOMPRESSED) {\n throw new ECIESError(\n `Invalid ephemeral public key: must be uncompressed format (0x04 prefix), got 0x${prefix.toString(16).padStart(2, \"0\")}`,\n \"DECRYPTION_FAILED\",\n );\n }\n\n const ephemKeySize = CURVE.UNCOMPRESSED_PUBLIC_KEY_LENGTH;\n\n const minLength = FORMAT.IV_LENGTH + ephemKeySize + MAC.LENGTH + 1; // +1 for at least 1 byte of ciphertext\n if (bytes.length < minLength) {\n throw new ECIESError(\n `Invalid ECIES data: too short (${bytes.length} bytes, minimum ${minLength} bytes required)`,\n \"DECRYPTION_FAILED\",\n );\n }\n\n return {\n iv: bytes.subarray(FORMAT.IV_OFFSET, FORMAT.IV_OFFSET + FORMAT.IV_LENGTH),\n ephemPublicKey: bytes.subarray(\n FORMAT.EPHEMERAL_KEY_OFFSET,\n FORMAT.EPHEMERAL_KEY_OFFSET + ephemKeySize,\n ),\n ciphertext: bytes.subarray(\n FORMAT.EPHEMERAL_KEY_OFFSET + ephemKeySize,\n bytes.length - MAC.LENGTH,\n ),\n mac: bytes.subarray(bytes.length - MAC.LENGTH),\n };\n}\n"],"mappings":"AAcA,SAAS,QAAQ,OAAO,KAAK,cAAc;AAC3C,SAAS,SAAS,aAAa;AA4HxB,MAAM,mBAAmB,MAAM;AAAA,EACpC,YACE,SACgB,MAMS,OACzB;AACA,UAAM,OAAO;AARG;AAMS;AAGzB,SAAK,OAAO;AAAA,EACd;AACF;AAeO,SAAS,iBAAiB,KAAqC;AACpE,MAAI,CAAC,OAAO,OAAO,QAAQ,SAAU,QAAO;AAC5C,QAAM,MAAM;AAEZ,QAAM,eAAe,CAAC,UAAwC;AAC5D,WACE,iBAAiB,cAChB,OAAO,WAAW,eAAe,OAAO,SAAS,KAAK;AAAA,EAE3D;AAEA,SACE,aAAa,IAAI,EAAE,KACnB,IAAI,GAAG,WAAW,OAAO,aACzB,aAAa,IAAI,cAAc,MAC9B,IAAI,eAAe,WAAW,MAAM,kCACnC,IAAI,eAAe,WAAW,MAAM,iCACtC,aAAa,IAAI,UAAU,KAC3B,IAAI,WAAW,SAAS,KACxB,aAAa,IAAI,GAAG,KACpB,IAAI,IAAI,WAAW,IAAI;AAE3B;AAcO,SAAS,eAAe,WAAmC;AAChE,QAAM,WAAW,IAAI;AAAA,IACnB,UAAU,GAAG,SACX,UAAU,eAAe,SACzB,UAAU,WAAW,SACrB,UAAU,IAAI;AAAA,EAClB;AAEA,MAAI,SAAS;AACb,WAAS,IAAI,UAAU,IAAI,MAAM;AACjC,YAAU,UAAU,GAAG;AACvB,WAAS,IAAI,UAAU,gBAAgB,MAAM;AAC7C,YAAU,UAAU,eAAe;AACnC,WAAS,IAAI,UAAU,YAAY,MAAM;AACzC,YAAU,UAAU,WAAW;AAC/B,WAAS,IAAI,UAAU,KAAK,MAAM;AAElC,SAAO,MAAM,QAAQ,EAAE,MAAM,CAAC;AAChC;AAgBO,SAAS,iBAAiB,KAA6B;AAC5D,QAAM,gBAAgB,IAAI,WAAW,IAAI,IAAI,MAAM,KAAK,GAAG;AAC3D,QAAM,QAAQ,QAAQ,eAAgC,OAAO;AAI7D,QAAM,oBAAoB,OAAO,YAAY,IAAI,IAAI,SAAS;AAC9D,MAAI,MAAM,SAAS,mBAAmB;AACpC,UAAM,IAAI;AAAA,MACR,kCAAkC,MAAM,MAAM,mBAAmB,iBAAiB;AAAA,MAClF;AAAA,IACF;AAAA,EACF;AAGA,QAAM,SAAS,MAAM,OAAO,oBAAoB;AAEhD,MAAI,WAAW,MAAM,OAAO,cAAc;AACxC,UAAM,IAAI;AAAA,MACR,kFAAkF,OAAO,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC;AAAA,MACtH;AAAA,IACF;AAAA,EACF;AAEA,QAAM,eAAe,MAAM;AAE3B,QAAM,YAAY,OAAO,YAAY,eAAe,IAAI,SAAS;AACjE,MAAI,MAAM,SAAS,WAAW;AAC5B,UAAM,IAAI;AAAA,MACR,kCAAkC,MAAM,MAAM,mBAAmB,SAAS;AAAA,MAC1E;AAAA,IACF;AAAA,EACF;AAEA,SAAO;AAAA,IACL,IAAI,MAAM,SAAS,OAAO,WAAW,OAAO,YAAY,OAAO,SAAS;AAAA,IACxE,gBAAgB,MAAM;AAAA,MACpB,OAAO;AAAA,MACP,OAAO,uBAAuB;AAAA,IAChC;AAAA,IACA,YAAY,MAAM;AAAA,MAChB,OAAO,uBAAuB;AAAA,MAC9B,MAAM,SAAS,IAAI;AAAA,IACrB;AAAA,IACA,KAAK,MAAM,SAAS,MAAM,SAAS,IAAI,MAAM;AAAA,EAC/C;AACF;","names":[]}
1	+ {"version":3,"sources":["../../../src/crypto/ecies/interface.ts"],"sourcesContent":["/*\n ECIES (Elliptic Curve Integrated Encryption Scheme) Interface\n \n @remarks\n * Defines the contract for platform-specific ECIES implementations.\n * All implementations maintain compatibility with the eccrypto format to ensure\n * backward compatibility with existing encrypted data.\n \n Format specification:\n * `[iv (16 bytes)][ephemPublicKey (65 bytes)][ciphertext (variable)][mac (32 bytes)]`\n \n @category Cryptography\n /\n\nimport { CIPHER, CURVE, MAC, FORMAT } from \"./constants\";\nimport { fromHex, toHex } from \"viem\";\n\n/\n Represents ECIES encrypted data in eccrypto-compatible format.\n \n @remarks\n * This structure maintains backward compatibility with data encrypted using\n * the legacy eccrypto library.\n /\nexport interface ECIESEncrypted {\n /* Initialization vector (16 bytes) /\n iv: Uint8Array;\n /* Ephemeral public key (65 bytes uncompressed) /\n ephemPublicKey: Uint8Array;\n /* Encrypted data /\n ciphertext: Uint8Array;\n /* Message authentication code (32 bytes) /\n mac: Uint8Array;\n}\n\n/\n Provides ECIES encryption and decryption operations.\n \n @remarks\n * Platform-specific implementations handle the underlying cryptographic primitives\n * while maintaining consistent data format across environments.\n \n @category Cryptography\n /\nexport interface ECIESProvider {\n /\n Encrypts data using ECIES with secp256k1.\n \n @param publicKey - Recipient's public key (65 bytes uncompressed or 33 bytes compressed).\n * Obtain via `vana.server.getIdentity(userAddress).public_key`.\n * @param message - Data to encrypt.\n * @returns Encrypted data structure compatible with eccrypto format.\n * @throws {ECIESError} When public key is invalid.\n * Verify key format matches secp256k1 requirements.\n \n @example\n * ```typescript\n * const encrypted = await provider.encrypt(\n * fromHex(publicKey, 'bytes'),\n * new TextEncoder().encode('sensitive data')\n * );\n * ```\n /\n encrypt(publicKey: Uint8Array, message: Uint8Array): Promise<ECIESEncrypted>;\n\n /\n Decrypts ECIES encrypted data.\n \n @param privateKey - Recipient's private key (32 bytes).\n * @param encrypted - Encrypted data structure from `encrypt()` or legacy eccrypto.\n * @returns Decrypted message as Uint8Array.\n * @throws {ECIESError} When MAC verification fails.\n * Ensure the private key matches the public key used for encryption.\n \n @example\n * ```typescript\n * const decrypted = await provider.decrypt(\n * fromHex(privateKey, 'bytes'),\n * encrypted\n * );\n * const message = new TextDecoder().decode(decrypted);\n * ```\n /\n decrypt(\n privateKey: Uint8Array,\n encrypted: ECIESEncrypted,\n ): Promise<Uint8Array>;\n\n /\n Normalizes a public key to uncompressed format (65 bytes with 0x04 prefix).\n \n @remarks\n * Strict policy: Only accepts properly formatted compressed (33 bytes) or\n * uncompressed (65 bytes) public keys. Does not accept 64-byte raw coordinates\n * to ensure data integrity and prevent masking of malformed inputs.\n \n @param publicKey - Public key in compressed or uncompressed format\n * @returns Normalized uncompressed public key (65 bytes with 0x04 prefix)\n * @throws {Error} When public key format is invalid, including raw coordinates (64 bytes)\n * @throws {Error} When decompression of compressed key fails\n \n @example\n * ```typescript\n * // Compressed key (33 bytes)\n * const compressed = new Uint8Array(33);\n * compressed[0] = 0x02;\n * const uncompressed = provider.normalizeToUncompressed(compressed);\n * console.log(uncompressed.length); // 65\n * console.log(uncompressed[0]); // 0x04\n \n // Already uncompressed (65 bytes)\n * const already = provider.normalizeToUncompressed(uncompressedKey);\n * console.log(already === uncompressedKey); // true (returns same reference)\n \n // Raw coordinates rejected (64 bytes)\n * const raw = new Uint8Array(64);\n * provider.normalizeToUncompressed(raw); // Throws error\n * ```\n /\n normalizeToUncompressed(publicKey: Uint8Array): Uint8Array;\n}\n\n/\n Configures ECIES operation behavior.\n /\nexport interface ECIESOptions {\n /* Use compressed public keys (33 bytes) instead of uncompressed (65 bytes) /\n useCompressed?: boolean;\n}\n\n/\n Represents failures in ECIES cryptographic operations.\n \n @remarks\n * Provides specific error codes to help identify and recover from\n * different failure scenarios.\n \n @category Errors\n /\nexport class ECIESError extends Error {\n constructor(\n message: string,\n public readonly code:\n \| \"INVALID_KEY\"\n \| \"ENCRYPTION_FAILED\"\n \| \"DECRYPTION_FAILED\"\n \| \"MAC_MISMATCH\"\n \| \"ECDH_FAILED\",\n public override readonly cause?: Error,\n ) {\n super(message);\n this.name = \"ECIESError\";\n }\n}\n\n/\n Validates if an object conforms to the ECIESEncrypted structure.\n \n @param obj - Object to validate.\n * @returns `true` if object is a valid ECIESEncrypted structure.\n \n @example\n * ```typescript\n * if (isECIESEncrypted(data)) {\n * const decrypted = await provider.decrypt(privateKey, data);\n * }\n * ```\n /\nexport function isECIESEncrypted(obj: unknown): obj is ECIESEncrypted {\n if (!obj \|\| typeof obj !== \"object\") return false;\n const enc = obj as Record<string, unknown>;\n\n const isUint8Array = (value: unknown): value is Uint8Array => {\n return (\n value instanceof Uint8Array \|\|\n (typeof Buffer !== \"undefined\" && Buffer.isBuffer(value))\n );\n };\n\n return (\n isUint8Array(enc.iv) &&\n enc.iv.length === CIPHER.IV_LENGTH &&\n isUint8Array(enc.ephemPublicKey) &&\n (enc.ephemPublicKey.length === CURVE.UNCOMPRESSED_PUBLIC_KEY_LENGTH \|\|\n enc.ephemPublicKey.length === CURVE.COMPRESSED_PUBLIC_KEY_LENGTH) &&\n isUint8Array(enc.ciphertext) &&\n enc.ciphertext.length > 0 &&\n isUint8Array(enc.mac) &&\n enc.mac.length === MAC.LENGTH\n );\n}\n\n/\n Serializes ECIESEncrypted to hex string for storage or transmission.\n \n @param encrypted - Encrypted data structure from `encrypt()`.\n * @returns Hex string representation.\n \n @example\n * ```typescript\n * const hexString = serializeECIES(encrypted);\n * // Store hexString in database or send over network\n * ```\n /\nexport function serializeECIES(encrypted: ECIESEncrypted): string {\n const combined = new Uint8Array(\n encrypted.iv.length +\n encrypted.ephemPublicKey.length +\n encrypted.ciphertext.length +\n encrypted.mac.length,\n );\n\n let offset = 0;\n combined.set(encrypted.iv, offset);\n offset += encrypted.iv.length;\n combined.set(encrypted.ephemPublicKey, offset);\n offset += encrypted.ephemPublicKey.length;\n combined.set(encrypted.ciphertext, offset);\n offset += encrypted.ciphertext.length;\n combined.set(encrypted.mac, offset);\n\n return toHex(combined).slice(2);\n}\n\n/\n Deserializes hex string to ECIESEncrypted structure.\n \n @param hex - Hex string from `serializeECIES()` or storage.\n * @returns ECIESEncrypted structure ready for decryption.\n * @throws {ECIESError} When hex string format is invalid.\n * Verify the hex string is complete and uncorrupted.\n \n @example\n * ```typescript\n * const encrypted = deserializeECIES(hexString);\n * const decrypted = await provider.decrypt(privateKey, encrypted);\n * ```\n */\nexport function deserializeECIES(hex: string): ECIESEncrypted {\n const hexWithPrefix = hex.startsWith(\"0x\") ? hex : `0x${hex}`;\n const bytes = fromHex(hexWithPrefix as `0x${string}`, \"bytes\");\n\n // Check minimum length before accessing prefix byte\n // Need at least: IV (16 bytes) + 1 byte for prefix check + MAC (32 bytes) + 1 byte ciphertext\n const absoluteMinLength = FORMAT.IV_LENGTH + 1 + MAC.LENGTH + 1;\n if (bytes.length < absoluteMinLength) {\n throw new ECIESError(\n `Invalid ECIES data: too short (${bytes.length} bytes, minimum ${absoluteMinLength} bytes required)`,\n \"DECRYPTION_FAILED\",\n );\n }\n\n // Validate ephemeral public key prefix (must be uncompressed for eccrypto compatibility)\n const prefix = bytes[FORMAT.EPHEMERAL_KEY_OFFSET];\n\n if (prefix !== CURVE.PREFIX.UNCOMPRESSED) {\n throw new ECIESError(\n `Invalid ephemeral public key: must be uncompressed format (0x04 prefix), got 0x${prefix.toString(16).padStart(2, \"0\")}`,\n \"DECRYPTION_FAILED\",\n );\n }\n\n const ephemKeySize = CURVE.UNCOMPRESSED_PUBLIC_KEY_LENGTH;\n\n const minLength = FORMAT.IV_LENGTH + ephemKeySize + MAC.LENGTH + 1; // +1 for at least 1 byte of ciphertext\n if (bytes.length < minLength) {\n throw new ECIESError(\n `Invalid ECIES data: too short (${bytes.length} bytes, minimum ${minLength} bytes required)`,\n \"DECRYPTION_FAILED\",\n );\n }\n\n return {\n iv: bytes.subarray(FORMAT.IV_OFFSET, FORMAT.IV_OFFSET + FORMAT.IV_LENGTH),\n ephemPublicKey: bytes.subarray(\n FORMAT.EPHEMERAL_KEY_OFFSET,\n FORMAT.EPHEMERAL_KEY_OFFSET + ephemKeySize,\n ),\n ciphertext: bytes.subarray(\n FORMAT.EPHEMERAL_KEY_OFFSET + ephemKeySize,\n bytes.length - MAC.LENGTH,\n ),\n mac: bytes.subarray(bytes.length - MAC.LENGTH),\n };\n}\n"],"mappings":"AAcA,SAAS,QAAQ,OAAO,KAAK,cAAc;AAC3C,SAAS,SAAS,aAAa;AA4HxB,MAAM,mBAAmB,MAAM;AAAA,EACpC,YACE,SACgB,MAMS,OACzB;AACA,UAAM,OAAO;AARG;AAMS;AAGzB,SAAK,OAAO;AAAA,EACd;AAAA,EAVkB;AAAA,EAMS;AAK7B;AAeO,SAAS,iBAAiB,KAAqC;AACpE,MAAI,CAAC,OAAO,OAAO,QAAQ,SAAU,QAAO;AAC5C,QAAM,MAAM;AAEZ,QAAM,eAAe,CAAC,UAAwC;AAC5D,WACE,iBAAiB,cAChB,OAAO,WAAW,eAAe,OAAO,SAAS,KAAK;AAAA,EAE3D;AAEA,SACE,aAAa,IAAI,EAAE,KACnB,IAAI,GAAG,WAAW,OAAO,aACzB,aAAa,IAAI,cAAc,MAC9B,IAAI,eAAe,WAAW,MAAM,kCACnC,IAAI,eAAe,WAAW,MAAM,iCACtC,aAAa,IAAI,UAAU,KAC3B,IAAI,WAAW,SAAS,KACxB,aAAa,IAAI,GAAG,KACpB,IAAI,IAAI,WAAW,IAAI;AAE3B;AAcO,SAAS,eAAe,WAAmC;AAChE,QAAM,WAAW,IAAI;AAAA,IACnB,UAAU,GAAG,SACX,UAAU,eAAe,SACzB,UAAU,WAAW,SACrB,UAAU,IAAI;AAAA,EAClB;AAEA,MAAI,SAAS;AACb,WAAS,IAAI,UAAU,IAAI,MAAM;AACjC,YAAU,UAAU,GAAG;AACvB,WAAS,IAAI,UAAU,gBAAgB,MAAM;AAC7C,YAAU,UAAU,eAAe;AACnC,WAAS,IAAI,UAAU,YAAY,MAAM;AACzC,YAAU,UAAU,WAAW;AAC/B,WAAS,IAAI,UAAU,KAAK,MAAM;AAElC,SAAO,MAAM,QAAQ,EAAE,MAAM,CAAC;AAChC;AAgBO,SAAS,iBAAiB,KAA6B;AAC5D,QAAM,gBAAgB,IAAI,WAAW,IAAI,IAAI,MAAM,KAAK,GAAG;AAC3D,QAAM,QAAQ,QAAQ,eAAgC,OAAO;AAI7D,QAAM,oBAAoB,OAAO,YAAY,IAAI,IAAI,SAAS;AAC9D,MAAI,MAAM,SAAS,mBAAmB;AACpC,UAAM,IAAI;AAAA,MACR,kCAAkC,MAAM,MAAM,mBAAmB,iBAAiB;AAAA,MAClF;AAAA,IACF;AAAA,EACF;AAGA,QAAM,SAAS,MAAM,OAAO,oBAAoB;AAEhD,MAAI,WAAW,MAAM,OAAO,cAAc;AACxC,UAAM,IAAI;AAAA,MACR,kFAAkF,OAAO,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC;AAAA,MACtH;AAAA,IACF;AAAA,EACF;AAEA,QAAM,eAAe,MAAM;AAE3B,QAAM,YAAY,OAAO,YAAY,eAAe,IAAI,SAAS;AACjE,MAAI,MAAM,SAAS,WAAW;AAC5B,UAAM,IAAI;AAAA,MACR,kCAAkC,MAAM,MAAM,mBAAmB,SAAS;AAAA,MAC1E;AAAA,IACF;AAAA,EACF;AAEA,SAAO;AAAA,IACL,IAAI,MAAM,SAAS,OAAO,WAAW,OAAO,YAAY,OAAO,SAAS;AAAA,IACxE,gBAAgB,MAAM;AAAA,MACpB,OAAO;AAAA,MACP,OAAO,uBAAuB;AAAA,IAChC;AAAA,IACA,YAAY,MAAM;AAAA,MAChB,OAAO,uBAAuB;AAAA,MAC9B,MAAM,SAAS,IAAI;AAAA,IACrB;AAAA,IACA,KAAK,MAAM,SAAS,MAAM,SAAS,IAAI,MAAM;AAAA,EAC/C;AACF;","names":[]}

package/dist/crypto/ecies/node.cjs CHANGED Viewed

@@ -31,7 +31,7 @@ __export(node_exports, {
   NodeECIESUint8Provider: () => NodeECIESUint8Provider
 });
 module.exports = __toCommonJS(node_exports);
-var import_crypto = require("crypto");
+var import_node_crypto = require("node:crypto");
 var import_secp256k1 = __toESM(require("secp256k1"), 1);
 var import_base = require("./base");
 var import_viem = require("viem");
@@ -47,7 +47,7 @@ class NodeECIESUint8Provider extends import_base.BaseECIESUint8 {
     return x;
   };
   generateRandomBytes(length) {
-    return new Uint8Array((0, import_crypto.randomBytes)(length));
+    return new Uint8Array((0, import_node_crypto.randomBytes)(length));
   }
   verifyPrivateKey(privateKey) {
     return secp256k1.privateKeyVerify(Buffer.from(privateKey)) === true;
@@ -91,16 +91,16 @@ class NodeECIESUint8Provider extends import_base.BaseECIESUint8 {
   }
   sha512(data) {
     return new Uint8Array(
-      (0, import_crypto.createHash)("sha512").update(Buffer.from(data)).digest()
+      (0, import_node_crypto.createHash)("sha512").update(Buffer.from(data)).digest()
     );
   }
   hmacSha256(key, data) {
     return new Uint8Array(
-      (0, import_crypto.createHmac)("sha256", Buffer.from(key)).update(Buffer.from(data)).digest()
+      (0, import_node_crypto.createHmac)("sha256", Buffer.from(key)).update(Buffer.from(data)).digest()
     );
   }
   async aesEncrypt(key, iv, plaintext) {
-    const cipher = (0, import_crypto.createCipheriv)(
+    const cipher = (0, import_node_crypto.createCipheriv)(
       "aes-256-cbc",
       Buffer.from(key),
       Buffer.from(iv)
@@ -112,7 +112,7 @@ class NodeECIESUint8Provider extends import_base.BaseECIESUint8 {
     return new Uint8Array(encrypted);
   }
   async aesDecrypt(key, iv, ciphertext) {
-    const decipher = (0, import_crypto.createDecipheriv)(
+    const decipher = (0, import_node_crypto.createDecipheriv)(
       "aes-256-cbc",
       Buffer.from(key),
       Buffer.from(iv)

package/dist/crypto/ecies/node.cjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/crypto/ecies/node.ts"],"sourcesContent":["/*\n Node.js implementation of ECIES using native secp256k1 for performance\n \n @remarks\n * Uses native secp256k1 bindings for all elliptic curve operations.\n * Uses Node.js crypto module for hashing and AES operations.\n * Provides Uint8Array-only interface with no Buffer exposure.\n /\n\nimport {\n randomBytes,\n createHash,\n createHmac,\n createCipheriv,\n createDecipheriv,\n} from \"crypto\";\nimport secp256k1Import from \"secp256k1\";\nimport { BaseECIESUint8 } from \"./base\";\nimport { toHex } from \"viem\";\n\n// Type definition for secp256k1 module\ninterface Secp256k1Module {\n privateKeyVerify(privateKey: Buffer): boolean;\n publicKeyCreate(privateKey: Buffer, compressed: boolean): Buffer;\n publicKeyVerify(publicKey: Buffer): boolean;\n publicKeyConvert(publicKey: Buffer, compressed: boolean): Buffer;\n ecdh(\n publicKey: Buffer,\n privateKey: Buffer,\n options: {\n hashfn: (x: Uint8Array, y: Uint8Array, output?: Uint8Array) => Uint8Array;\n },\n output: Buffer,\n ): Buffer;\n}\n\n// Use the imported secp256k1 module\nconst secp256k1 = secp256k1Import as unknown as Secp256k1Module;\n\n/\n Node.js-specific ECIES provider using native secp256k1\n \n @remarks\n * This implementation:\n * - Uses native secp256k1 for all EC operations (optimal performance)\n * - Uses Node.js crypto for SHA-512, HMAC, and AES operations\n * - Internally works with Uint8Array\n * - Only uses Buffer at crypto API boundaries\n /\nexport class NodeECIESUint8Provider extends BaseECIESUint8 {\n // Identity hash function for ECDH - returns raw X coordinate\n // CRITICAL: Must handle (x, y, output) signature correctly\n private readonly identityHashFn = (\n x: Uint8Array,\n _y: Uint8Array,\n output?: Uint8Array,\n ): Uint8Array => {\n // Copy x into output buffer if provided (prevents allocations)\n if (output && output.length >= 32) {\n output.set(x);\n return output;\n }\n return x;\n };\n protected generateRandomBytes(length: number): Uint8Array {\n return new Uint8Array(randomBytes(length));\n }\n\n protected verifyPrivateKey(privateKey: Uint8Array): boolean {\n // Native secp256k1 returns true for valid, false for invalid\n return secp256k1.privateKeyVerify(Buffer.from(privateKey)) === true;\n }\n\n protected createPublicKey(\n privateKey: Uint8Array,\n compressed: boolean,\n ): Uint8Array \| null {\n try {\n return new Uint8Array(\n secp256k1.publicKeyCreate(Buffer.from(privateKey), compressed),\n );\n } catch {\n return null;\n }\n }\n\n protected validatePublicKey(publicKey: Uint8Array): boolean {\n // Native secp256k1 returns true for valid, false for invalid\n return secp256k1.publicKeyVerify(Buffer.from(publicKey)) === true;\n }\n\n protected decompressPublicKey(publicKey: Uint8Array): Uint8Array \| null {\n try {\n // Convert to uncompressed format (65 bytes)\n return new Uint8Array(\n secp256k1.publicKeyConvert(Buffer.from(publicKey), false),\n );\n } catch {\n return null;\n }\n }\n\n protected performECDH(\n publicKey: Uint8Array,\n privateKey: Uint8Array,\n ): Uint8Array {\n try {\n // Use pre-allocated buffer for output (32 bytes)\n const output = Buffer.alloc(32);\n\n // CRITICAL: Use identity hash to get raw X coordinate\n // Default would apply SHA256 and break compatibility\n secp256k1.ecdh(\n Buffer.from(publicKey),\n Buffer.from(privateKey),\n { hashfn: this.identityHashFn },\n output,\n );\n\n return new Uint8Array(output);\n } catch (error) {\n throw new Error(\n `ECDH failed: ${error instanceof Error ? error.message : \"Unknown error\"}`,\n );\n }\n }\n\n protected sha512(data: Uint8Array): Uint8Array {\n // Use Node.js crypto for native performance\n return new Uint8Array(\n createHash(\"sha512\").update(Buffer.from(data)).digest(),\n );\n }\n\n protected hmacSha256(key: Uint8Array, data: Uint8Array): Uint8Array {\n // Use Node.js crypto for native performance\n return new Uint8Array(\n createHmac(\"sha256\", Buffer.from(key)).update(Buffer.from(data)).digest(),\n );\n }\n\n protected async aesEncrypt(\n key: Uint8Array,\n iv: Uint8Array,\n plaintext: Uint8Array,\n ): Promise<Uint8Array> {\n const cipher = createCipheriv(\n \"aes-256-cbc\",\n Buffer.from(key),\n Buffer.from(iv),\n );\n const encrypted = Buffer.concat([\n cipher.update(Buffer.from(plaintext)),\n cipher.final(),\n ]);\n return new Uint8Array(encrypted);\n }\n\n protected async aesDecrypt(\n key: Uint8Array,\n iv: Uint8Array,\n ciphertext: Uint8Array,\n ): Promise<Uint8Array> {\n const decipher = createDecipheriv(\n \"aes-256-cbc\",\n Buffer.from(key),\n Buffer.from(iv),\n );\n const decrypted = Buffer.concat([\n decipher.update(Buffer.from(ciphertext)),\n decipher.final(),\n ]);\n return new Uint8Array(decrypted);\n }\n\n // No Buffer compatibility methods - Uint8Array only public API\n\n /\n Normalizes a public key to uncompressed format (65 bytes with 0x04 prefix).\n * Handles compressed (33 bytes) and uncompressed (65 bytes) formats only.\n \n @remarks\n * Strict policy: Does not accept 64-byte raw coordinates to avoid masking\n * malformed data. Callers must provide properly formatted keys.\n \n @param publicKey - The public key to normalize (33 or 65 bytes)\n * @returns The normalized uncompressed public key (65 bytes)\n * @throws {Error} When public key format is invalid or decompression fails\n */\n normalizeToUncompressed(publicKey: Uint8Array): Uint8Array {\n const len = publicKey.length;\n\n // Already uncompressed\n if (len === 65 && publicKey[0] === 0x04) {\n return publicKey;\n }\n\n // Compressed - decompress using secp256k1\n if (len === 33 && (publicKey[0] === 0x02 \|\| publicKey[0] === 0x03)) {\n const decompressed = this.decompressPublicKey(publicKey);\n if (!decompressed) {\n throw new Error(\n `Failed to decompress public key with prefix ${toHex(publicKey[0])}`,\n );\n }\n return decompressed;\n }\n\n // Reject raw coordinates (64 bytes) - require proper formatting\n if (len === 64) {\n throw new Error(\n \"Raw public key coordinates (64 bytes) are not accepted. \" +\n \"Please provide a properly formatted compressed (33 bytes) or uncompressed (65 bytes) public key.\",\n );\n }\n\n throw new Error(\n `Invalid public key format: expected compressed (33 bytes) or uncompressed (65 bytes), got ${len} bytes`,\n );\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AASA,~~oBAMO~~;AACP,uBAA4B;AAC5B,kBAA+B;AAC/B,kBAAsB;AAmBtB,MAAM,YAAY,iBAAAA;AAYX,MAAM,+BAA+B,2BAAe;AAAA;AAAA;AAAA,EAGxC,iBAAiB,CAChC,GACA,IACA,WACe;AAEf,QAAI,UAAU,OAAO,UAAU,IAAI;AACjC,aAAO,IAAI,CAAC;AACZ,aAAO;AAAA,IACT;AACA,WAAO;AAAA,EACT;AAAA,EACU,oBAAoB,QAA4B;AACxD,WAAO,IAAI,eAAW,~~2BAAY~~,MAAM,CAAC;AAAA,EAC3C;AAAA,EAEU,iBAAiB,YAAiC;AAE1D,WAAO,UAAU,iBAAiB,OAAO,KAAK,UAAU,CAAC,MAAM;AAAA,EACjE;AAAA,EAEU,gBACR,YACA,YACmB;AACnB,QAAI;AACF,aAAO,IAAI;AAAA,QACT,UAAU,gBAAgB,OAAO,KAAK,UAAU,GAAG,UAAU;AAAA,MAC/D;AAAA,IACF,QAAQ;AACN,aAAO;AAAA,IACT;AAAA,EACF;AAAA,EAEU,kBAAkB,WAAgC;AAE1D,WAAO,UAAU,gBAAgB,OAAO,KAAK,SAAS,CAAC,MAAM;AAAA,EAC/D;AAAA,EAEU,oBAAoB,WAA0C;AACtE,QAAI;AAEF,aAAO,IAAI;AAAA,QACT,UAAU,iBAAiB,OAAO,KAAK,SAAS,GAAG,KAAK;AAAA,MAC1D;AAAA,IACF,QAAQ;AACN,aAAO;AAAA,IACT;AAAA,EACF;AAAA,EAEU,YACR,WACA,YACY;AACZ,QAAI;AAEF,YAAM,SAAS,OAAO,MAAM,EAAE;AAI9B,gBAAU;AAAA,QACR,OAAO,KAAK,SAAS;AAAA,QACrB,OAAO,KAAK,UAAU;AAAA,QACtB,EAAE,QAAQ,KAAK,eAAe;AAAA,QAC9B;AAAA,MACF;AAEA,aAAO,IAAI,WAAW,MAAM;AAAA,IAC9B,SAAS,OAAO;AACd,YAAM,IAAI;AAAA,QACR,gBAAgB,iBAAiB,QAAQ,MAAM,UAAU,eAAe;AAAA,MAC1E;AAAA,IACF;AAAA,EACF;AAAA,EAEU,OAAO,MAA8B;AAE7C,WAAO,IAAI;AAAA,UACT,~~0BAAW,~~QAAQ,EAAE,OAAO,OAAO,KAAK,IAAI,CAAC,EAAE,OAAO;AAAA,IACxD;AAAA,EACF;AAAA,EAEU,WAAW,KAAiB,MAA8B;AAElE,WAAO,IAAI;AAAA,UACT,~~0BAAW,~~UAAU,OAAO,KAAK,GAAG,CAAC,EAAE,OAAO,OAAO,KAAK,IAAI,CAAC,EAAE,OAAO;AAAA,IAC1E;AAAA,EACF;AAAA,EAEA,MAAgB,WACd,KACA,IACA,WACqB;AACrB,UAAM,aAAS;AAAA,MACb;AAAA,MACA,OAAO,KAAK,GAAG;AAAA,MACf,OAAO,KAAK,EAAE;AAAA,IAChB;AACA,UAAM,YAAY,OAAO,OAAO;AAAA,MAC9B,OAAO,OAAO,OAAO,KAAK,SAAS,CAAC;AAAA,MACpC,OAAO,MAAM;AAAA,IACf,CAAC;AACD,WAAO,IAAI,WAAW,SAAS;AAAA,EACjC;AAAA,EAEA,MAAgB,WACd,KACA,IACA,YACqB;AACrB,UAAM,eAAW;AAAA,MACf;AAAA,MACA,OAAO,KAAK,GAAG;AAAA,MACf,OAAO,KAAK,EAAE;AAAA,IAChB;AACA,UAAM,YAAY,OAAO,OAAO;AAAA,MAC9B,SAAS,OAAO,OAAO,KAAK,UAAU,CAAC;AAAA,MACvC,SAAS,MAAM;AAAA,IACjB,CAAC;AACD,WAAO,IAAI,WAAW,SAAS;AAAA,EACjC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAgBA,wBAAwB,WAAmC;AACzD,UAAM,MAAM,UAAU;AAGtB,QAAI,QAAQ,MAAM,UAAU,CAAC,MAAM,GAAM;AACvC,aAAO;AAAA,IACT;AAGA,QAAI,QAAQ,OAAO,UAAU,CAAC,MAAM,KAAQ,UAAU,CAAC,MAAM,IAAO;AAClE,YAAM,eAAe,KAAK,oBAAoB,SAAS;AACvD,UAAI,CAAC,cAAc;AACjB,cAAM,IAAI;AAAA,UACR,mDAA+C,mBAAM,UAAU,CAAC,CAAC,CAAC;AAAA,QACpE;AAAA,MACF;AACA,aAAO;AAAA,IACT;AAGA,QAAI,QAAQ,IAAI;AACd,YAAM,IAAI;AAAA,QACR;AAAA,MAEF;AAAA,IACF;AAEA,UAAM,IAAI;AAAA,MACR,6FAA6F,GAAG;AAAA,IAClG;AAAA,EACF;AACF;","names":["secp256k1Import"]}
1	+ {"version":3,"sources":["../../../src/crypto/ecies/node.ts"],"sourcesContent":["/*\n Node.js implementation of ECIES using native secp256k1 for performance\n \n @remarks\n * Uses native secp256k1 bindings for all elliptic curve operations.\n * Uses Node.js crypto module for hashing and AES operations.\n * Provides Uint8Array-only interface with no Buffer exposure.\n /\n\nimport {\n randomBytes,\n createHash,\n createHmac,\n createCipheriv,\n createDecipheriv,\n} from \"node:crypto\";\nimport secp256k1Import from \"secp256k1\";\nimport { BaseECIESUint8 } from \"./base\";\nimport { toHex } from \"viem\";\n\n// Type definition for secp256k1 module\ninterface Secp256k1Module {\n privateKeyVerify(privateKey: Buffer): boolean;\n publicKeyCreate(privateKey: Buffer, compressed: boolean): Buffer;\n publicKeyVerify(publicKey: Buffer): boolean;\n publicKeyConvert(publicKey: Buffer, compressed: boolean): Buffer;\n ecdh(\n publicKey: Buffer,\n privateKey: Buffer,\n options: {\n hashfn: (x: Uint8Array, y: Uint8Array, output?: Uint8Array) => Uint8Array;\n },\n output: Buffer,\n ): Buffer;\n}\n\n// Use the imported secp256k1 module\nconst secp256k1 = secp256k1Import as unknown as Secp256k1Module;\n\n/\n Node.js-specific ECIES provider using native secp256k1\n \n @remarks\n * This implementation:\n * - Uses native secp256k1 for all EC operations (optimal performance)\n * - Uses Node.js crypto for SHA-512, HMAC, and AES operations\n * - Internally works with Uint8Array\n * - Only uses Buffer at crypto API boundaries\n /\nexport class NodeECIESUint8Provider extends BaseECIESUint8 {\n // Identity hash function for ECDH - returns raw X coordinate\n // CRITICAL: Must handle (x, y, output) signature correctly\n private readonly identityHashFn = (\n x: Uint8Array,\n _y: Uint8Array,\n output?: Uint8Array,\n ): Uint8Array => {\n // Copy x into output buffer if provided (prevents allocations)\n if (output && output.length >= 32) {\n output.set(x);\n return output;\n }\n return x;\n };\n protected generateRandomBytes(length: number): Uint8Array {\n return new Uint8Array(randomBytes(length));\n }\n\n protected verifyPrivateKey(privateKey: Uint8Array): boolean {\n // Native secp256k1 returns true for valid, false for invalid\n return secp256k1.privateKeyVerify(Buffer.from(privateKey)) === true;\n }\n\n protected createPublicKey(\n privateKey: Uint8Array,\n compressed: boolean,\n ): Uint8Array \| null {\n try {\n return new Uint8Array(\n secp256k1.publicKeyCreate(Buffer.from(privateKey), compressed),\n );\n } catch {\n return null;\n }\n }\n\n protected validatePublicKey(publicKey: Uint8Array): boolean {\n // Native secp256k1 returns true for valid, false for invalid\n return secp256k1.publicKeyVerify(Buffer.from(publicKey)) === true;\n }\n\n protected decompressPublicKey(publicKey: Uint8Array): Uint8Array \| null {\n try {\n // Convert to uncompressed format (65 bytes)\n return new Uint8Array(\n secp256k1.publicKeyConvert(Buffer.from(publicKey), false),\n );\n } catch {\n return null;\n }\n }\n\n protected performECDH(\n publicKey: Uint8Array,\n privateKey: Uint8Array,\n ): Uint8Array {\n try {\n // Use pre-allocated buffer for output (32 bytes)\n const output = Buffer.alloc(32);\n\n // CRITICAL: Use identity hash to get raw X coordinate\n // Default would apply SHA256 and break compatibility\n secp256k1.ecdh(\n Buffer.from(publicKey),\n Buffer.from(privateKey),\n { hashfn: this.identityHashFn },\n output,\n );\n\n return new Uint8Array(output);\n } catch (error) {\n throw new Error(\n `ECDH failed: ${error instanceof Error ? error.message : \"Unknown error\"}`,\n );\n }\n }\n\n protected sha512(data: Uint8Array): Uint8Array {\n // Use Node.js crypto for native performance\n return new Uint8Array(\n createHash(\"sha512\").update(Buffer.from(data)).digest(),\n );\n }\n\n protected hmacSha256(key: Uint8Array, data: Uint8Array): Uint8Array {\n // Use Node.js crypto for native performance\n return new Uint8Array(\n createHmac(\"sha256\", Buffer.from(key)).update(Buffer.from(data)).digest(),\n );\n }\n\n protected async aesEncrypt(\n key: Uint8Array,\n iv: Uint8Array,\n plaintext: Uint8Array,\n ): Promise<Uint8Array> {\n const cipher = createCipheriv(\n \"aes-256-cbc\",\n Buffer.from(key),\n Buffer.from(iv),\n );\n const encrypted = Buffer.concat([\n cipher.update(Buffer.from(plaintext)),\n cipher.final(),\n ]);\n return new Uint8Array(encrypted);\n }\n\n protected async aesDecrypt(\n key: Uint8Array,\n iv: Uint8Array,\n ciphertext: Uint8Array,\n ): Promise<Uint8Array> {\n const decipher = createDecipheriv(\n \"aes-256-cbc\",\n Buffer.from(key),\n Buffer.from(iv),\n );\n const decrypted = Buffer.concat([\n decipher.update(Buffer.from(ciphertext)),\n decipher.final(),\n ]);\n return new Uint8Array(decrypted);\n }\n\n // No Buffer compatibility methods - Uint8Array only public API\n\n /\n Normalizes a public key to uncompressed format (65 bytes with 0x04 prefix).\n * Handles compressed (33 bytes) and uncompressed (65 bytes) formats only.\n \n @remarks\n * Strict policy: Does not accept 64-byte raw coordinates to avoid masking\n * malformed data. Callers must provide properly formatted keys.\n \n @param publicKey - The public key to normalize (33 or 65 bytes)\n * @returns The normalized uncompressed public key (65 bytes)\n * @throws {Error} When public key format is invalid or decompression fails\n */\n normalizeToUncompressed(publicKey: Uint8Array): Uint8Array {\n const len = publicKey.length;\n\n // Already uncompressed\n if (len === 65 && publicKey[0] === 0x04) {\n return publicKey;\n }\n\n // Compressed - decompress using secp256k1\n if (len === 33 && (publicKey[0] === 0x02 \|\| publicKey[0] === 0x03)) {\n const decompressed = this.decompressPublicKey(publicKey);\n if (!decompressed) {\n throw new Error(\n `Failed to decompress public key with prefix ${toHex(publicKey[0])}`,\n );\n }\n return decompressed;\n }\n\n // Reject raw coordinates (64 bytes) - require proper formatting\n if (len === 64) {\n throw new Error(\n \"Raw public key coordinates (64 bytes) are not accepted. \" +\n \"Please provide a properly formatted compressed (33 bytes) or uncompressed (65 bytes) public key.\",\n );\n }\n\n throw new Error(\n `Invalid public key format: expected compressed (33 bytes) or uncompressed (65 bytes), got ${len} bytes`,\n );\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AASA,yBAMO;AACP,uBAA4B;AAC5B,kBAA+B;AAC/B,kBAAsB;AAmBtB,MAAM,YAAY,iBAAAA;AAYX,MAAM,+BAA+B,2BAAe;AAAA;AAAA;AAAA,EAGxC,iBAAiB,CAChC,GACA,IACA,WACe;AAEf,QAAI,UAAU,OAAO,UAAU,IAAI;AACjC,aAAO,IAAI,CAAC;AACZ,aAAO;AAAA,IACT;AACA,WAAO;AAAA,EACT;AAAA,EACU,oBAAoB,QAA4B;AACxD,WAAO,IAAI,eAAW,gCAAY,MAAM,CAAC;AAAA,EAC3C;AAAA,EAEU,iBAAiB,YAAiC;AAE1D,WAAO,UAAU,iBAAiB,OAAO,KAAK,UAAU,CAAC,MAAM;AAAA,EACjE;AAAA,EAEU,gBACR,YACA,YACmB;AACnB,QAAI;AACF,aAAO,IAAI;AAAA,QACT,UAAU,gBAAgB,OAAO,KAAK,UAAU,GAAG,UAAU;AAAA,MAC/D;AAAA,IACF,QAAQ;AACN,aAAO;AAAA,IACT;AAAA,EACF;AAAA,EAEU,kBAAkB,WAAgC;AAE1D,WAAO,UAAU,gBAAgB,OAAO,KAAK,SAAS,CAAC,MAAM;AAAA,EAC/D;AAAA,EAEU,oBAAoB,WAA0C;AACtE,QAAI;AAEF,aAAO,IAAI;AAAA,QACT,UAAU,iBAAiB,OAAO,KAAK,SAAS,GAAG,KAAK;AAAA,MAC1D;AAAA,IACF,QAAQ;AACN,aAAO;AAAA,IACT;AAAA,EACF;AAAA,EAEU,YACR,WACA,YACY;AACZ,QAAI;AAEF,YAAM,SAAS,OAAO,MAAM,EAAE;AAI9B,gBAAU;AAAA,QACR,OAAO,KAAK,SAAS;AAAA,QACrB,OAAO,KAAK,UAAU;AAAA,QACtB,EAAE,QAAQ,KAAK,eAAe;AAAA,QAC9B;AAAA,MACF;AAEA,aAAO,IAAI,WAAW,MAAM;AAAA,IAC9B,SAAS,OAAO;AACd,YAAM,IAAI;AAAA,QACR,gBAAgB,iBAAiB,QAAQ,MAAM,UAAU,eAAe;AAAA,MAC1E;AAAA,IACF;AAAA,EACF;AAAA,EAEU,OAAO,MAA8B;AAE7C,WAAO,IAAI;AAAA,UACT,+BAAW,QAAQ,EAAE,OAAO,OAAO,KAAK,IAAI,CAAC,EAAE,OAAO;AAAA,IACxD;AAAA,EACF;AAAA,EAEU,WAAW,KAAiB,MAA8B;AAElE,WAAO,IAAI;AAAA,UACT,+BAAW,UAAU,OAAO,KAAK,GAAG,CAAC,EAAE,OAAO,OAAO,KAAK,IAAI,CAAC,EAAE,OAAO;AAAA,IAC1E;AAAA,EACF;AAAA,EAEA,MAAgB,WACd,KACA,IACA,WACqB;AACrB,UAAM,aAAS;AAAA,MACb;AAAA,MACA,OAAO,KAAK,GAAG;AAAA,MACf,OAAO,KAAK,EAAE;AAAA,IAChB;AACA,UAAM,YAAY,OAAO,OAAO;AAAA,MAC9B,OAAO,OAAO,OAAO,KAAK,SAAS,CAAC;AAAA,MACpC,OAAO,MAAM;AAAA,IACf,CAAC;AACD,WAAO,IAAI,WAAW,SAAS;AAAA,EACjC;AAAA,EAEA,MAAgB,WACd,KACA,IACA,YACqB;AACrB,UAAM,eAAW;AAAA,MACf;AAAA,MACA,OAAO,KAAK,GAAG;AAAA,MACf,OAAO,KAAK,EAAE;AAAA,IAChB;AACA,UAAM,YAAY,OAAO,OAAO;AAAA,MAC9B,SAAS,OAAO,OAAO,KAAK,UAAU,CAAC;AAAA,MACvC,SAAS,MAAM;AAAA,IACjB,CAAC;AACD,WAAO,IAAI,WAAW,SAAS;AAAA,EACjC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAgBA,wBAAwB,WAAmC;AACzD,UAAM,MAAM,UAAU;AAGtB,QAAI,QAAQ,MAAM,UAAU,CAAC,MAAM,GAAM;AACvC,aAAO;AAAA,IACT;AAGA,QAAI,QAAQ,OAAO,UAAU,CAAC,MAAM,KAAQ,UAAU,CAAC,MAAM,IAAO;AAClE,YAAM,eAAe,KAAK,oBAAoB,SAAS;AACvD,UAAI,CAAC,cAAc;AACjB,cAAM,IAAI;AAAA,UACR,mDAA+C,mBAAM,UAAU,CAAC,CAAC,CAAC;AAAA,QACpE;AAAA,MACF;AACA,aAAO;AAAA,IACT;AAGA,QAAI,QAAQ,IAAI;AACd,YAAM,IAAI;AAAA,QACR;AAAA,MAEF;AAAA,IACF;AAEA,UAAM,IAAI;AAAA,MACR,6FAA6F,GAAG;AAAA,IAClG;AAAA,EACF;AACF;","names":["secp256k1Import"]}

package/dist/crypto/ecies/node.js CHANGED Viewed

@@ -4,7 +4,7 @@ import {
   createHmac,
   createCipheriv,
   createDecipheriv
-} from "crypto";
+} from "node:crypto";
 import secp256k1Import from "secp256k1";
 import { BaseECIESUint8 } from "./base";
 import { toHex } from "viem";

package/dist/crypto/ecies/node.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/crypto/ecies/node.ts"],"sourcesContent":["/*\n Node.js implementation of ECIES using native secp256k1 for performance\n \n @remarks\n * Uses native secp256k1 bindings for all elliptic curve operations.\n * Uses Node.js crypto module for hashing and AES operations.\n * Provides Uint8Array-only interface with no Buffer exposure.\n /\n\nimport {\n randomBytes,\n createHash,\n createHmac,\n createCipheriv,\n createDecipheriv,\n} from \"crypto\";\nimport secp256k1Import from \"secp256k1\";\nimport { BaseECIESUint8 } from \"./base\";\nimport { toHex } from \"viem\";\n\n// Type definition for secp256k1 module\ninterface Secp256k1Module {\n privateKeyVerify(privateKey: Buffer): boolean;\n publicKeyCreate(privateKey: Buffer, compressed: boolean): Buffer;\n publicKeyVerify(publicKey: Buffer): boolean;\n publicKeyConvert(publicKey: Buffer, compressed: boolean): Buffer;\n ecdh(\n publicKey: Buffer,\n privateKey: Buffer,\n options: {\n hashfn: (x: Uint8Array, y: Uint8Array, output?: Uint8Array) => Uint8Array;\n },\n output: Buffer,\n ): Buffer;\n}\n\n// Use the imported secp256k1 module\nconst secp256k1 = secp256k1Import as unknown as Secp256k1Module;\n\n/\n Node.js-specific ECIES provider using native secp256k1\n \n @remarks\n * This implementation:\n * - Uses native secp256k1 for all EC operations (optimal performance)\n * - Uses Node.js crypto for SHA-512, HMAC, and AES operations\n * - Internally works with Uint8Array\n * - Only uses Buffer at crypto API boundaries\n /\nexport class NodeECIESUint8Provider extends BaseECIESUint8 {\n // Identity hash function for ECDH - returns raw X coordinate\n // CRITICAL: Must handle (x, y, output) signature correctly\n private readonly identityHashFn = (\n x: Uint8Array,\n _y: Uint8Array,\n output?: Uint8Array,\n ): Uint8Array => {\n // Copy x into output buffer if provided (prevents allocations)\n if (output && output.length >= 32) {\n output.set(x);\n return output;\n }\n return x;\n };\n protected generateRandomBytes(length: number): Uint8Array {\n return new Uint8Array(randomBytes(length));\n }\n\n protected verifyPrivateKey(privateKey: Uint8Array): boolean {\n // Native secp256k1 returns true for valid, false for invalid\n return secp256k1.privateKeyVerify(Buffer.from(privateKey)) === true;\n }\n\n protected createPublicKey(\n privateKey: Uint8Array,\n compressed: boolean,\n ): Uint8Array \| null {\n try {\n return new Uint8Array(\n secp256k1.publicKeyCreate(Buffer.from(privateKey), compressed),\n );\n } catch {\n return null;\n }\n }\n\n protected validatePublicKey(publicKey: Uint8Array): boolean {\n // Native secp256k1 returns true for valid, false for invalid\n return secp256k1.publicKeyVerify(Buffer.from(publicKey)) === true;\n }\n\n protected decompressPublicKey(publicKey: Uint8Array): Uint8Array \| null {\n try {\n // Convert to uncompressed format (65 bytes)\n return new Uint8Array(\n secp256k1.publicKeyConvert(Buffer.from(publicKey), false),\n );\n } catch {\n return null;\n }\n }\n\n protected performECDH(\n publicKey: Uint8Array,\n privateKey: Uint8Array,\n ): Uint8Array {\n try {\n // Use pre-allocated buffer for output (32 bytes)\n const output = Buffer.alloc(32);\n\n // CRITICAL: Use identity hash to get raw X coordinate\n // Default would apply SHA256 and break compatibility\n secp256k1.ecdh(\n Buffer.from(publicKey),\n Buffer.from(privateKey),\n { hashfn: this.identityHashFn },\n output,\n );\n\n return new Uint8Array(output);\n } catch (error) {\n throw new Error(\n `ECDH failed: ${error instanceof Error ? error.message : \"Unknown error\"}`,\n );\n }\n }\n\n protected sha512(data: Uint8Array): Uint8Array {\n // Use Node.js crypto for native performance\n return new Uint8Array(\n createHash(\"sha512\").update(Buffer.from(data)).digest(),\n );\n }\n\n protected hmacSha256(key: Uint8Array, data: Uint8Array): Uint8Array {\n // Use Node.js crypto for native performance\n return new Uint8Array(\n createHmac(\"sha256\", Buffer.from(key)).update(Buffer.from(data)).digest(),\n );\n }\n\n protected async aesEncrypt(\n key: Uint8Array,\n iv: Uint8Array,\n plaintext: Uint8Array,\n ): Promise<Uint8Array> {\n const cipher = createCipheriv(\n \"aes-256-cbc\",\n Buffer.from(key),\n Buffer.from(iv),\n );\n const encrypted = Buffer.concat([\n cipher.update(Buffer.from(plaintext)),\n cipher.final(),\n ]);\n return new Uint8Array(encrypted);\n }\n\n protected async aesDecrypt(\n key: Uint8Array,\n iv: Uint8Array,\n ciphertext: Uint8Array,\n ): Promise<Uint8Array> {\n const decipher = createDecipheriv(\n \"aes-256-cbc\",\n Buffer.from(key),\n Buffer.from(iv),\n );\n const decrypted = Buffer.concat([\n decipher.update(Buffer.from(ciphertext)),\n decipher.final(),\n ]);\n return new Uint8Array(decrypted);\n }\n\n // No Buffer compatibility methods - Uint8Array only public API\n\n /\n Normalizes a public key to uncompressed format (65 bytes with 0x04 prefix).\n * Handles compressed (33 bytes) and uncompressed (65 bytes) formats only.\n \n @remarks\n * Strict policy: Does not accept 64-byte raw coordinates to avoid masking\n * malformed data. Callers must provide properly formatted keys.\n \n @param publicKey - The public key to normalize (33 or 65 bytes)\n * @returns The normalized uncompressed public key (65 bytes)\n * @throws {Error} When public key format is invalid or decompression fails\n */\n normalizeToUncompressed(publicKey: Uint8Array): Uint8Array {\n const len = publicKey.length;\n\n // Already uncompressed\n if (len === 65 && publicKey[0] === 0x04) {\n return publicKey;\n }\n\n // Compressed - decompress using secp256k1\n if (len === 33 && (publicKey[0] === 0x02 \|\| publicKey[0] === 0x03)) {\n const decompressed = this.decompressPublicKey(publicKey);\n if (!decompressed) {\n throw new Error(\n `Failed to decompress public key with prefix ${toHex(publicKey[0])}`,\n );\n }\n return decompressed;\n }\n\n // Reject raw coordinates (64 bytes) - require proper formatting\n if (len === 64) {\n throw new Error(\n \"Raw public key coordinates (64 bytes) are not accepted. \" +\n \"Please provide a properly formatted compressed (33 bytes) or uncompressed (65 bytes) public key.\",\n );\n }\n\n throw new Error(\n `Invalid public key format: expected compressed (33 bytes) or uncompressed (65 bytes), got ${len} bytes`,\n );\n }\n}\n"],"mappings":"AASA;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AACP,OAAO,qBAAqB;AAC5B,SAAS,sBAAsB;AAC/B,SAAS,aAAa;AAmBtB,MAAM,YAAY;AAYX,MAAM,+BAA+B,eAAe;AAAA;AAAA;AAAA,EAGxC,iBAAiB,CAChC,GACA,IACA,WACe;AAEf,QAAI,UAAU,OAAO,UAAU,IAAI;AACjC,aAAO,IAAI,CAAC;AACZ,aAAO;AAAA,IACT;AACA,WAAO;AAAA,EACT;AAAA,EACU,oBAAoB,QAA4B;AACxD,WAAO,IAAI,WAAW,YAAY,MAAM,CAAC;AAAA,EAC3C;AAAA,EAEU,iBAAiB,YAAiC;AAE1D,WAAO,UAAU,iBAAiB,OAAO,KAAK,UAAU,CAAC,MAAM;AAAA,EACjE;AAAA,EAEU,gBACR,YACA,YACmB;AACnB,QAAI;AACF,aAAO,IAAI;AAAA,QACT,UAAU,gBAAgB,OAAO,KAAK,UAAU,GAAG,UAAU;AAAA,MAC/D;AAAA,IACF,QAAQ;AACN,aAAO;AAAA,IACT;AAAA,EACF;AAAA,EAEU,kBAAkB,WAAgC;AAE1D,WAAO,UAAU,gBAAgB,OAAO,KAAK,SAAS,CAAC,MAAM;AAAA,EAC/D;AAAA,EAEU,oBAAoB,WAA0C;AACtE,QAAI;AAEF,aAAO,IAAI;AAAA,QACT,UAAU,iBAAiB,OAAO,KAAK,SAAS,GAAG,KAAK;AAAA,MAC1D;AAAA,IACF,QAAQ;AACN,aAAO;AAAA,IACT;AAAA,EACF;AAAA,EAEU,YACR,WACA,YACY;AACZ,QAAI;AAEF,YAAM,SAAS,OAAO,MAAM,EAAE;AAI9B,gBAAU;AAAA,QACR,OAAO,KAAK,SAAS;AAAA,QACrB,OAAO,KAAK,UAAU;AAAA,QACtB,EAAE,QAAQ,KAAK,eAAe;AAAA,QAC9B;AAAA,MACF;AAEA,aAAO,IAAI,WAAW,MAAM;AAAA,IAC9B,SAAS,OAAO;AACd,YAAM,IAAI;AAAA,QACR,gBAAgB,iBAAiB,QAAQ,MAAM,UAAU,eAAe;AAAA,MAC1E;AAAA,IACF;AAAA,EACF;AAAA,EAEU,OAAO,MAA8B;AAE7C,WAAO,IAAI;AAAA,MACT,WAAW,QAAQ,EAAE,OAAO,OAAO,KAAK,IAAI,CAAC,EAAE,OAAO;AAAA,IACxD;AAAA,EACF;AAAA,EAEU,WAAW,KAAiB,MAA8B;AAElE,WAAO,IAAI;AAAA,MACT,WAAW,UAAU,OAAO,KAAK,GAAG,CAAC,EAAE,OAAO,OAAO,KAAK,IAAI,CAAC,EAAE,OAAO;AAAA,IAC1E;AAAA,EACF;AAAA,EAEA,MAAgB,WACd,KACA,IACA,WACqB;AACrB,UAAM,SAAS;AAAA,MACb;AAAA,MACA,OAAO,KAAK,GAAG;AAAA,MACf,OAAO,KAAK,EAAE;AAAA,IAChB;AACA,UAAM,YAAY,OAAO,OAAO;AAAA,MAC9B,OAAO,OAAO,OAAO,KAAK,SAAS,CAAC;AAAA,MACpC,OAAO,MAAM;AAAA,IACf,CAAC;AACD,WAAO,IAAI,WAAW,SAAS;AAAA,EACjC;AAAA,EAEA,MAAgB,WACd,KACA,IACA,YACqB;AACrB,UAAM,WAAW;AAAA,MACf;AAAA,MACA,OAAO,KAAK,GAAG;AAAA,MACf,OAAO,KAAK,EAAE;AAAA,IAChB;AACA,UAAM,YAAY,OAAO,OAAO;AAAA,MAC9B,SAAS,OAAO,OAAO,KAAK,UAAU,CAAC;AAAA,MACvC,SAAS,MAAM;AAAA,IACjB,CAAC;AACD,WAAO,IAAI,WAAW,SAAS;AAAA,EACjC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAgBA,wBAAwB,WAAmC;AACzD,UAAM,MAAM,UAAU;AAGtB,QAAI,QAAQ,MAAM,UAAU,CAAC,MAAM,GAAM;AACvC,aAAO;AAAA,IACT;AAGA,QAAI,QAAQ,OAAO,UAAU,CAAC,MAAM,KAAQ,UAAU,CAAC,MAAM,IAAO;AAClE,YAAM,eAAe,KAAK,oBAAoB,SAAS;AACvD,UAAI,CAAC,cAAc;AACjB,cAAM,IAAI;AAAA,UACR,+CAA+C,MAAM,UAAU,CAAC,CAAC,CAAC;AAAA,QACpE;AAAA,MACF;AACA,aAAO;AAAA,IACT;AAGA,QAAI,QAAQ,IAAI;AACd,YAAM,IAAI;AAAA,QACR;AAAA,MAEF;AAAA,IACF;AAEA,UAAM,IAAI;AAAA,MACR,6FAA6F,GAAG;AAAA,IAClG;AAAA,EACF;AACF;","names":[]}
1	+ {"version":3,"sources":["../../../src/crypto/ecies/node.ts"],"sourcesContent":["/*\n Node.js implementation of ECIES using native secp256k1 for performance\n \n @remarks\n * Uses native secp256k1 bindings for all elliptic curve operations.\n * Uses Node.js crypto module for hashing and AES operations.\n * Provides Uint8Array-only interface with no Buffer exposure.\n /\n\nimport {\n randomBytes,\n createHash,\n createHmac,\n createCipheriv,\n createDecipheriv,\n} from \"node:crypto\";\nimport secp256k1Import from \"secp256k1\";\nimport { BaseECIESUint8 } from \"./base\";\nimport { toHex } from \"viem\";\n\n// Type definition for secp256k1 module\ninterface Secp256k1Module {\n privateKeyVerify(privateKey: Buffer): boolean;\n publicKeyCreate(privateKey: Buffer, compressed: boolean): Buffer;\n publicKeyVerify(publicKey: Buffer): boolean;\n publicKeyConvert(publicKey: Buffer, compressed: boolean): Buffer;\n ecdh(\n publicKey: Buffer,\n privateKey: Buffer,\n options: {\n hashfn: (x: Uint8Array, y: Uint8Array, output?: Uint8Array) => Uint8Array;\n },\n output: Buffer,\n ): Buffer;\n}\n\n// Use the imported secp256k1 module\nconst secp256k1 = secp256k1Import as unknown as Secp256k1Module;\n\n/\n Node.js-specific ECIES provider using native secp256k1\n \n @remarks\n * This implementation:\n * - Uses native secp256k1 for all EC operations (optimal performance)\n * - Uses Node.js crypto for SHA-512, HMAC, and AES operations\n * - Internally works with Uint8Array\n * - Only uses Buffer at crypto API boundaries\n /\nexport class NodeECIESUint8Provider extends BaseECIESUint8 {\n // Identity hash function for ECDH - returns raw X coordinate\n // CRITICAL: Must handle (x, y, output) signature correctly\n private readonly identityHashFn = (\n x: Uint8Array,\n _y: Uint8Array,\n output?: Uint8Array,\n ): Uint8Array => {\n // Copy x into output buffer if provided (prevents allocations)\n if (output && output.length >= 32) {\n output.set(x);\n return output;\n }\n return x;\n };\n protected generateRandomBytes(length: number): Uint8Array {\n return new Uint8Array(randomBytes(length));\n }\n\n protected verifyPrivateKey(privateKey: Uint8Array): boolean {\n // Native secp256k1 returns true for valid, false for invalid\n return secp256k1.privateKeyVerify(Buffer.from(privateKey)) === true;\n }\n\n protected createPublicKey(\n privateKey: Uint8Array,\n compressed: boolean,\n ): Uint8Array \| null {\n try {\n return new Uint8Array(\n secp256k1.publicKeyCreate(Buffer.from(privateKey), compressed),\n );\n } catch {\n return null;\n }\n }\n\n protected validatePublicKey(publicKey: Uint8Array): boolean {\n // Native secp256k1 returns true for valid, false for invalid\n return secp256k1.publicKeyVerify(Buffer.from(publicKey)) === true;\n }\n\n protected decompressPublicKey(publicKey: Uint8Array): Uint8Array \| null {\n try {\n // Convert to uncompressed format (65 bytes)\n return new Uint8Array(\n secp256k1.publicKeyConvert(Buffer.from(publicKey), false),\n );\n } catch {\n return null;\n }\n }\n\n protected performECDH(\n publicKey: Uint8Array,\n privateKey: Uint8Array,\n ): Uint8Array {\n try {\n // Use pre-allocated buffer for output (32 bytes)\n const output = Buffer.alloc(32);\n\n // CRITICAL: Use identity hash to get raw X coordinate\n // Default would apply SHA256 and break compatibility\n secp256k1.ecdh(\n Buffer.from(publicKey),\n Buffer.from(privateKey),\n { hashfn: this.identityHashFn },\n output,\n );\n\n return new Uint8Array(output);\n } catch (error) {\n throw new Error(\n `ECDH failed: ${error instanceof Error ? error.message : \"Unknown error\"}`,\n );\n }\n }\n\n protected sha512(data: Uint8Array): Uint8Array {\n // Use Node.js crypto for native performance\n return new Uint8Array(\n createHash(\"sha512\").update(Buffer.from(data)).digest(),\n );\n }\n\n protected hmacSha256(key: Uint8Array, data: Uint8Array): Uint8Array {\n // Use Node.js crypto for native performance\n return new Uint8Array(\n createHmac(\"sha256\", Buffer.from(key)).update(Buffer.from(data)).digest(),\n );\n }\n\n protected async aesEncrypt(\n key: Uint8Array,\n iv: Uint8Array,\n plaintext: Uint8Array,\n ): Promise<Uint8Array> {\n const cipher = createCipheriv(\n \"aes-256-cbc\",\n Buffer.from(key),\n Buffer.from(iv),\n );\n const encrypted = Buffer.concat([\n cipher.update(Buffer.from(plaintext)),\n cipher.final(),\n ]);\n return new Uint8Array(encrypted);\n }\n\n protected async aesDecrypt(\n key: Uint8Array,\n iv: Uint8Array,\n ciphertext: Uint8Array,\n ): Promise<Uint8Array> {\n const decipher = createDecipheriv(\n \"aes-256-cbc\",\n Buffer.from(key),\n Buffer.from(iv),\n );\n const decrypted = Buffer.concat([\n decipher.update(Buffer.from(ciphertext)),\n decipher.final(),\n ]);\n return new Uint8Array(decrypted);\n }\n\n // No Buffer compatibility methods - Uint8Array only public API\n\n /\n Normalizes a public key to uncompressed format (65 bytes with 0x04 prefix).\n * Handles compressed (33 bytes) and uncompressed (65 bytes) formats only.\n \n @remarks\n * Strict policy: Does not accept 64-byte raw coordinates to avoid masking\n * malformed data. Callers must provide properly formatted keys.\n \n @param publicKey - The public key to normalize (33 or 65 bytes)\n * @returns The normalized uncompressed public key (65 bytes)\n * @throws {Error} When public key format is invalid or decompression fails\n */\n normalizeToUncompressed(publicKey: Uint8Array): Uint8Array {\n const len = publicKey.length;\n\n // Already uncompressed\n if (len === 65 && publicKey[0] === 0x04) {\n return publicKey;\n }\n\n // Compressed - decompress using secp256k1\n if (len === 33 && (publicKey[0] === 0x02 \|\| publicKey[0] === 0x03)) {\n const decompressed = this.decompressPublicKey(publicKey);\n if (!decompressed) {\n throw new Error(\n `Failed to decompress public key with prefix ${toHex(publicKey[0])}`,\n );\n }\n return decompressed;\n }\n\n // Reject raw coordinates (64 bytes) - require proper formatting\n if (len === 64) {\n throw new Error(\n \"Raw public key coordinates (64 bytes) are not accepted. \" +\n \"Please provide a properly formatted compressed (33 bytes) or uncompressed (65 bytes) public key.\",\n );\n }\n\n throw new Error(\n `Invalid public key format: expected compressed (33 bytes) or uncompressed (65 bytes), got ${len} bytes`,\n );\n }\n}\n"],"mappings":"AASA;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AACP,OAAO,qBAAqB;AAC5B,SAAS,sBAAsB;AAC/B,SAAS,aAAa;AAmBtB,MAAM,YAAY;AAYX,MAAM,+BAA+B,eAAe;AAAA;AAAA;AAAA,EAGxC,iBAAiB,CAChC,GACA,IACA,WACe;AAEf,QAAI,UAAU,OAAO,UAAU,IAAI;AACjC,aAAO,IAAI,CAAC;AACZ,aAAO;AAAA,IACT;AACA,WAAO;AAAA,EACT;AAAA,EACU,oBAAoB,QAA4B;AACxD,WAAO,IAAI,WAAW,YAAY,MAAM,CAAC;AAAA,EAC3C;AAAA,EAEU,iBAAiB,YAAiC;AAE1D,WAAO,UAAU,iBAAiB,OAAO,KAAK,UAAU,CAAC,MAAM;AAAA,EACjE;AAAA,EAEU,gBACR,YACA,YACmB;AACnB,QAAI;AACF,aAAO,IAAI;AAAA,QACT,UAAU,gBAAgB,OAAO,KAAK,UAAU,GAAG,UAAU;AAAA,MAC/D;AAAA,IACF,QAAQ;AACN,aAAO;AAAA,IACT;AAAA,EACF;AAAA,EAEU,kBAAkB,WAAgC;AAE1D,WAAO,UAAU,gBAAgB,OAAO,KAAK,SAAS,CAAC,MAAM;AAAA,EAC/D;AAAA,EAEU,oBAAoB,WAA0C;AACtE,QAAI;AAEF,aAAO,IAAI;AAAA,QACT,UAAU,iBAAiB,OAAO,KAAK,SAAS,GAAG,KAAK;AAAA,MAC1D;AAAA,IACF,QAAQ;AACN,aAAO;AAAA,IACT;AAAA,EACF;AAAA,EAEU,YACR,WACA,YACY;AACZ,QAAI;AAEF,YAAM,SAAS,OAAO,MAAM,EAAE;AAI9B,gBAAU;AAAA,QACR,OAAO,KAAK,SAAS;AAAA,QACrB,OAAO,KAAK,UAAU;AAAA,QACtB,EAAE,QAAQ,KAAK,eAAe;AAAA,QAC9B;AAAA,MACF;AAEA,aAAO,IAAI,WAAW,MAAM;AAAA,IAC9B,SAAS,OAAO;AACd,YAAM,IAAI;AAAA,QACR,gBAAgB,iBAAiB,QAAQ,MAAM,UAAU,eAAe;AAAA,MAC1E;AAAA,IACF;AAAA,EACF;AAAA,EAEU,OAAO,MAA8B;AAE7C,WAAO,IAAI;AAAA,MACT,WAAW,QAAQ,EAAE,OAAO,OAAO,KAAK,IAAI,CAAC,EAAE,OAAO;AAAA,IACxD;AAAA,EACF;AAAA,EAEU,WAAW,KAAiB,MAA8B;AAElE,WAAO,IAAI;AAAA,MACT,WAAW,UAAU,OAAO,KAAK,GAAG,CAAC,EAAE,OAAO,OAAO,KAAK,IAAI,CAAC,EAAE,OAAO;AAAA,IAC1E;AAAA,EACF;AAAA,EAEA,MAAgB,WACd,KACA,IACA,WACqB;AACrB,UAAM,SAAS;AAAA,MACb;AAAA,MACA,OAAO,KAAK,GAAG;AAAA,MACf,OAAO,KAAK,EAAE;AAAA,IAChB;AACA,UAAM,YAAY,OAAO,OAAO;AAAA,MAC9B,OAAO,OAAO,OAAO,KAAK,SAAS,CAAC;AAAA,MACpC,OAAO,MAAM;AAAA,IACf,CAAC;AACD,WAAO,IAAI,WAAW,SAAS;AAAA,EACjC;AAAA,EAEA,MAAgB,WACd,KACA,IACA,YACqB;AACrB,UAAM,WAAW;AAAA,MACf;AAAA,MACA,OAAO,KAAK,GAAG;AAAA,MACf,OAAO,KAAK,EAAE;AAAA,IAChB;AACA,UAAM,YAAY,OAAO,OAAO;AAAA,MAC9B,SAAS,OAAO,OAAO,KAAK,UAAU,CAAC;AAAA,MACvC,SAAS,MAAM;AAAA,IACjB,CAAC;AACD,WAAO,IAAI,WAAW,SAAS;AAAA,EACjC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAgBA,wBAAwB,WAAmC;AACzD,UAAM,MAAM,UAAU;AAGtB,QAAI,QAAQ,MAAM,UAAU,CAAC,MAAM,GAAM;AACvC,aAAO;AAAA,IACT;AAGA,QAAI,QAAQ,OAAO,UAAU,CAAC,MAAM,KAAQ,UAAU,CAAC,MAAM,IAAO;AAClE,YAAM,eAAe,KAAK,oBAAoB,SAAS;AACvD,UAAI,CAAC,cAAc;AACjB,cAAM,IAAI;AAAA,UACR,+CAA+C,MAAM,UAAU,CAAC,CAAC,CAAC;AAAA,QACpE;AAAA,MACF;AACA,aAAO;AAAA,IACT;AAGA,QAAI,QAAQ,IAAI;AACd,YAAM,IAAI;AAAA,QACR;AAAA,MAEF;AAAA,IACF;AAEA,UAAM,IAAI;AAAA,MACR,6FAA6F,GAAG;AAAA,IAClG;AAAA,EACF;AACF;","names":[]}

package/dist/crypto/envelope/openpgp.cjs ADDED Viewed

@@ -0,0 +1,59 @@
+"use strict";
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
+  // If the importer is in node compatibility mode or this is not an ESM
+  // file that has been converted to a CommonJS file using a Babel-
+  // compatible transform (i.e. "__esModule" has not been set), then set
+  // "default" to the CommonJS "module.exports" for node compatibility.
+  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
+  mod
+));
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var openpgp_exports = {};
+__export(openpgp_exports, {
+  decryptWithPassword: () => decryptWithPassword,
+  encryptWithPassword: () => encryptWithPassword
+});
+module.exports = __toCommonJS(openpgp_exports);
+var openpgp = __toESM(require("openpgp"), 1);
+async function encryptWithPassword(plaintext, password) {
+  const message = await openpgp.createMessage({ binary: plaintext });
+  const encrypted = await openpgp.encrypt({
+    message,
+    passwords: [password],
+    format: "binary"
+  });
+  return encrypted;
+}
+async function decryptWithPassword(encrypted, password) {
+  const message = await openpgp.readMessage({ binaryMessage: encrypted });
+  const { data } = await openpgp.decrypt({
+    message,
+    passwords: [password],
+    format: "binary"
+  });
+  return data;
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  decryptWithPassword,
+  encryptWithPassword
+});
+//# sourceMappingURL=openpgp.cjs.map

package/dist/crypto/envelope/openpgp.cjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../../../src/crypto/envelope/openpgp.ts"],"sourcesContent":["/**\n * Password-based file encryption using OpenPGP, the locked DPv1 envelope.\n *\n * @remarks\n * Ported from `personal-server-ts`\n * (`packages/core/src/storage/encryption/{encrypt,decrypt}.ts`).\n * The binary format must remain byte-compatible with PS — a vana-sdk encrypt +\n * a personal-server-ts decrypt (and vice versa) must round-trip cleanly.\n *\n * @category Cryptography\n */\n\nimport * as openpgp from \"openpgp\";\n\n/**\n * Encrypt plaintext using OpenPGP password-based encryption.\n *\n * @param plaintext - Bytes to encrypt (e.g. `JSON.stringify` of an envelope).\n * @param password - Hex-encoded scope key (typically from `deriveScopeKey`).\n * @returns OpenPGP-encrypted binary data.\n */\nexport async function encryptWithPassword(\n plaintext: Uint8Array,\n password: string,\n): Promise<Uint8Array> {\n const message = await openpgp.createMessage({ binary: plaintext });\n const encrypted = await openpgp.encrypt({\n message,\n passwords: [password],\n format: \"binary\",\n });\n return encrypted as Uint8Array;\n}\n\n/**\n * Decrypt an OpenPGP password-encrypted binary.\n *\n * @param encrypted - OpenPGP-encrypted binary data.\n * @param password - Hex-encoded scope key.\n * @returns Decrypted plaintext bytes.\n * @throws If the password is wrong or the data is corrupted.\n */\nexport async function decryptWithPassword(\n encrypted: Uint8Array,\n password: string,\n): Promise<Uint8Array> {\n const message = await openpgp.readMessage({ binaryMessage: encrypted });\n const { data } = await openpgp.decrypt({\n message,\n passwords: [password],\n format: \"binary\",\n });\n return data as Uint8Array;\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAYA,cAAyB;AASzB,eAAsB,oBACpB,WACA,UACqB;AACrB,QAAM,UAAU,MAAM,QAAQ,cAAc,EAAE,QAAQ,UAAU,CAAC;AACjE,QAAM,YAAY,MAAM,QAAQ,QAAQ;AAAA,IACtC;AAAA,IACA,WAAW,CAAC,QAAQ;AAAA,IACpB,QAAQ;AAAA,EACV,CAAC;AACD,SAAO;AACT;AAUA,eAAsB,oBACpB,WACA,UACqB;AACrB,QAAM,UAAU,MAAM,QAAQ,YAAY,EAAE,eAAe,UAAU,CAAC;AACtE,QAAM,EAAE,KAAK,IAAI,MAAM,QAAQ,QAAQ;AAAA,IACrC;AAAA,IACA,WAAW,CAAC,QAAQ;AAAA,IACpB,QAAQ;AAAA,EACV,CAAC;AACD,SAAO;AACT;","names":[]}

package/dist/crypto/envelope/openpgp.d.ts ADDED Viewed

@@ -0,0 +1,28 @@
+/**
+ * Password-based file encryption using OpenPGP, the locked DPv1 envelope.
+ *
+ * @remarks
+ * Ported from `personal-server-ts`
+ * (`packages/core/src/storage/encryption/{encrypt,decrypt}.ts`).
+ * The binary format must remain byte-compatible with PS — a vana-sdk encrypt +
+ * a personal-server-ts decrypt (and vice versa) must round-trip cleanly.
+ *
+ * @category Cryptography
+ */
+/**
+ * Encrypt plaintext using OpenPGP password-based encryption.
+ *
+ * @param plaintext - Bytes to encrypt (e.g. `JSON.stringify` of an envelope).
+ * @param password - Hex-encoded scope key (typically from `deriveScopeKey`).
+ * @returns OpenPGP-encrypted binary data.
+ */
+export declare function encryptWithPassword(plaintext: Uint8Array, password: string): Promise<Uint8Array>;
+/**
+ * Decrypt an OpenPGP password-encrypted binary.
+ *
+ * @param encrypted - OpenPGP-encrypted binary data.
+ * @param password - Hex-encoded scope key.
+ * @returns Decrypted plaintext bytes.
+ * @throws If the password is wrong or the data is corrupted.
+ */
+export declare function decryptWithPassword(encrypted: Uint8Array, password: string): Promise<Uint8Array>;

package/dist/crypto/envelope/openpgp.js ADDED Viewed

@@ -0,0 +1,24 @@
+import * as openpgp from "openpgp";
+async function encryptWithPassword(plaintext, password) {
+  const message = await openpgp.createMessage({ binary: plaintext });
+  const encrypted = await openpgp.encrypt({
+    message,
+    passwords: [password],
+    format: "binary"
+  });
+  return encrypted;
+}
+async function decryptWithPassword(encrypted, password) {
+  const message = await openpgp.readMessage({ binaryMessage: encrypted });
+  const { data } = await openpgp.decrypt({
+    message,
+    passwords: [password],
+    format: "binary"
+  });
+  return data;
+}
+export {
+  decryptWithPassword,
+  encryptWithPassword
+};
+//# sourceMappingURL=openpgp.js.map

package/dist/crypto/envelope/openpgp.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../../../src/crypto/envelope/openpgp.ts"],"sourcesContent":["/**\n * Password-based file encryption using OpenPGP, the locked DPv1 envelope.\n *\n * @remarks\n * Ported from `personal-server-ts`\n * (`packages/core/src/storage/encryption/{encrypt,decrypt}.ts`).\n * The binary format must remain byte-compatible with PS — a vana-sdk encrypt +\n * a personal-server-ts decrypt (and vice versa) must round-trip cleanly.\n *\n * @category Cryptography\n */\n\nimport * as openpgp from \"openpgp\";\n\n/**\n * Encrypt plaintext using OpenPGP password-based encryption.\n *\n * @param plaintext - Bytes to encrypt (e.g. `JSON.stringify` of an envelope).\n * @param password - Hex-encoded scope key (typically from `deriveScopeKey`).\n * @returns OpenPGP-encrypted binary data.\n */\nexport async function encryptWithPassword(\n plaintext: Uint8Array,\n password: string,\n): Promise<Uint8Array> {\n const message = await openpgp.createMessage({ binary: plaintext });\n const encrypted = await openpgp.encrypt({\n message,\n passwords: [password],\n format: \"binary\",\n });\n return encrypted as Uint8Array;\n}\n\n/**\n * Decrypt an OpenPGP password-encrypted binary.\n *\n * @param encrypted - OpenPGP-encrypted binary data.\n * @param password - Hex-encoded scope key.\n * @returns Decrypted plaintext bytes.\n * @throws If the password is wrong or the data is corrupted.\n */\nexport async function decryptWithPassword(\n encrypted: Uint8Array,\n password: string,\n): Promise<Uint8Array> {\n const message = await openpgp.readMessage({ binaryMessage: encrypted });\n const { data } = await openpgp.decrypt({\n message,\n passwords: [password],\n format: \"binary\",\n });\n return data as Uint8Array;\n}\n"],"mappings":"AAYA,YAAY,aAAa;AASzB,eAAsB,oBACpB,WACA,UACqB;AACrB,QAAM,UAAU,MAAM,QAAQ,cAAc,EAAE,QAAQ,UAAU,CAAC;AACjE,QAAM,YAAY,MAAM,QAAQ,QAAQ;AAAA,IACtC;AAAA,IACA,WAAW,CAAC,QAAQ;AAAA,IACpB,QAAQ;AAAA,EACV,CAAC;AACD,SAAO;AACT;AAUA,eAAsB,oBACpB,WACA,UACqB;AACrB,QAAM,UAAU,MAAM,QAAQ,YAAY,EAAE,eAAe,UAAU,CAAC;AACtE,QAAM,EAAE,KAAK,IAAI,MAAM,QAAQ,QAAQ;AAAA,IACrC;AAAA,IACA,WAAW,CAAC,QAAQ;AAAA,IACpB,QAAQ;AAAA,EACV,CAAC;AACD,SAAO;AACT;","names":[]}

package/dist/crypto/keys/derive.cjs ADDED Viewed

@@ -0,0 +1,65 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var derive_exports = {};
+__export(derive_exports, {
+  MASTER_KEY_MESSAGE: () => MASTER_KEY_MESSAGE,
+  deriveMasterKey: () => deriveMasterKey,
+  deriveScopeKey: () => deriveScopeKey,
+  recoverServerOwner: () => recoverServerOwner
+});
+module.exports = __toCommonJS(derive_exports);
+var import_hkdf = require("@noble/hashes/hkdf");
+var import_sha2 = require("@noble/hashes/sha2");
+var import_viem = require("viem");
+const MASTER_KEY_MESSAGE = "vana-master-key-v1";
+function deriveMasterKey(signature) {
+  const hex = signature.slice(2);
+  if (hex.length !== 130) {
+    throw new Error(
+      `Invalid signature length: expected 130 hex chars (65 bytes), got ${hex.length}`
+    );
+  }
+  if (!/^[0-9a-fA-F]+$/.test(hex)) {
+    throw new Error("Invalid signature: contains non-hex characters");
+  }
+  const bytes = new Uint8Array(65);
+  for (let i = 0; i < 65; i++) {
+    bytes[i] = parseInt(hex.slice(i * 2, i * 2 + 2), 16);
+  }
+  return bytes;
+}
+async function recoverServerOwner(masterKeySignature) {
+  return (0, import_viem.recoverMessageAddress)({
+    message: MASTER_KEY_MESSAGE,
+    signature: masterKeySignature
+  });
+}
+function deriveScopeKey(masterKey, scope) {
+  const salt = new TextEncoder().encode("vana");
+  const info = new TextEncoder().encode(`scope:${scope}`);
+  return (0, import_hkdf.hkdf)(import_sha2.sha256, masterKey, salt, info, 32);
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  MASTER_KEY_MESSAGE,
+  deriveMasterKey,
+  deriveScopeKey,
+  recoverServerOwner
+});
+//# sourceMappingURL=derive.cjs.map