npm - @protontech/openpgp - Versions diffs - 6.1.1-patch.1 → 6.1.1-patch.2 - Mend

@protontech/openpgp 6.1.1-patch.1 → 6.1.1-patch.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (31) hide show

package/dist/lightweight/argon2id.min.mjs +1 -1
package/dist/lightweight/argon2id.mjs +1 -1
package/dist/lightweight/legacy_ciphers.min.mjs +1 -1
package/dist/lightweight/legacy_ciphers.mjs +1 -1
package/dist/lightweight/noble_curves.min.mjs +1 -1
package/dist/lightweight/noble_curves.mjs +1 -1
package/dist/lightweight/noble_hashes.min.mjs +1 -1
package/dist/lightweight/noble_hashes.mjs +1 -1
package/dist/lightweight/noble_post_quantum.min.mjs +1 -1
package/dist/lightweight/noble_post_quantum.mjs +1 -1
package/dist/lightweight/openpgp.min.mjs +2 -2
package/dist/lightweight/openpgp.mjs +2 -2
package/dist/lightweight/seek-bzip.min.mjs +1 -1
package/dist/lightweight/seek-bzip.mjs +1 -1
package/dist/lightweight/sha3.min.mjs +1 -1
package/dist/lightweight/sha3.mjs +1 -1
package/dist/lightweight/sha512.min.mjs +1 -1
package/dist/lightweight/sha512.mjs +1 -1
package/dist/node/openpgp.cjs +2 -2
package/dist/node/openpgp.min.cjs +2 -2
package/dist/node/openpgp.min.mjs +2 -2
package/dist/node/openpgp.mjs +2 -2
package/dist/openpgp.js +2 -2
package/dist/openpgp.min.js +2 -2
package/dist/openpgp.min.mjs +2 -2
package/dist/openpgp.mjs +2 -2
package/openpgp.d.ts +1 -1
package/package.json +3 -2
package/src/config/config.d.ts +68 -0
package/src/config/index.d.ts +13 -0
package/src/enums.d.ts +195 -0

package/dist/openpgp.min.mjs CHANGED Viewed

@@ -1,5 +1,5 @@
-/*! OpenPGP.js v6.1.1-patch.1 - 2025-05-14 - this is LGPL licensed code, see LICENSE/our website https://openpgpjs.org/ for more information. */
-const e="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self?self:{};function t(e,t){return t.forEach((function(t){t&&"string"!=typeof t&&!Array.isArray(t)&&Object.keys(t).forEach((function(r){if("default"!==r&&!(r in e)){var n=Object.getOwnPropertyDescriptor(t,r);Object.defineProperty(e,r,n.get?n:{enumerable:!0,get:function(){return t[r]}})}}))})),Object.freeze(e)}const r=Symbol("doneWritingPromise"),n=Symbol("doneWritingResolve"),i=Symbol("doneWritingReject"),s=Symbol("readingIndex");class ArrayStream extends Array{constructor(){super(),Object.setPrototypeOf(this,ArrayStream.prototype),this[r]=new Promise(((e,t)=>{this[n]=e,this[i]=t})),this[r].catch((()=>{}))}}function a(e){return e&&e.getReader&&Array.isArray(e)}function o(e){if(!a(e)){const t=e.getWriter(),r=t.releaseLock;return t.releaseLock=()=>{t.closed.catch((function(){})),r.call(t)},t}this.stream=e}function c(t){if(a(t))return"array";if(e.ReadableStream&&e.ReadableStream.prototype.isPrototypeOf(t))return"web";if(t&&!(e.ReadableStream&&t instanceof e.ReadableStream)&&"function"==typeof t._read&&"object"==typeof t._readableState)throw Error("Native Node streams are no longer supported: please manually convert the stream to a WebStream, using e.g. `stream.Readable.toWeb`");return!(!t||!t.getReader)&&"web-like"}function u(e){return Uint8Array.prototype.isPrototypeOf(e)}function h(e){if(1===e.length)return e[0];let t=0;for(let r=0;r<e.length;r++){if(!u(e[r]))throw Error("concatUint8Array: Data must be in the form of a Uint8Array");t+=e[r].length}const r=new Uint8Array(t);let n=0;return e.forEach((function(e){r.set(e,n),n+=e.length})),r}ArrayStream.prototype.getReader=function(){return void 0===this[s]&&(this[s]=0),{read:async()=>(await this[r],this[s]===this.length?{value:void 0,done:!0}:{value:this[this[s]++],done:!1})}},ArrayStream.prototype.readToEnd=async function(e){await this[r];const t=e(this.slice(this[s]));return this.length=0,t},ArrayStream.prototype.clone=function(){const e=new ArrayStream;return e[r]=this[r].then((()=>{e.push(...this)})),e},o.prototype.write=async function(e){this.stream.push(e)},o.prototype.close=async function(){this.stream[n]()},o.prototype.abort=async function(e){return this.stream[i](e),e},o.prototype.releaseLock=function(){},"object"==typeof e.process&&e.process.versions;const l=new WeakSet,y=Symbol("externalBuffer");function f(e){if(this.stream=e,e[y]&&(this[y]=e[y].slice()),a(e)){const t=e.getReader();return this._read=t.read.bind(t),this._releaseLock=()=>{},void(this._cancel=()=>{})}if(c(e)){const t=e.getReader();return this._read=t.read.bind(t),this._releaseLock=()=>{t.closed.catch((function(){})),t.releaseLock()},void(this._cancel=t.cancel.bind(t))}let t=!1;this._read=async()=>t||l.has(e)?{value:void 0,done:!0}:(t=!0,{value:e,done:!1}),this._releaseLock=()=>{if(t)try{l.add(e)}catch(e){}}}function g(e){return c(e)?e:new ReadableStream({start(t){t.enqueue(e),t.close()}})}function p(e){if(c(e))return e;const t=new ArrayStream;return(async()=>{const r=D(t);await r.write(e),await r.close()})(),t}function d(e){return e.some((e=>c(e)&&!a(e)))?function(e){e=e.map(g);const t=m((async function(e){await Promise.all(n.map((t=>C(t,e))))}));let r=Promise.resolve();const n=e.map(((n,i)=>k(n,((n,s)=>(r=r.then((()=>A(n,t.writable,{preventClose:i!==e.length-1}))),r)))));return t.readable}(e):e.some((e=>a(e)))?function(e){const t=new ArrayStream;let r=Promise.resolve();return e.forEach(((n,i)=>(r=r.then((()=>A(n,t,{preventClose:i!==e.length-1}))),r))),t}(e):"string"==typeof e[0]?e.join(""):h(e)}async function A(e,t,{preventClose:r=!1,preventAbort:n=!1,preventCancel:i=!1}={}){if(c(e)&&!a(e)){e=g(e);try{if(e[y]){const r=D(t);for(let t=0;t<e[y].length;t++)await r.ready,await r.write(e[y][t]);r.releaseLock()}await e.pipeTo(t,{preventClose:r,preventAbort:n,preventCancel:i})}catch(e){}return}const s=P(e=p(e)),o=D(t);try{for(;;){await o.ready;const{done:e,value:t}=await s.read();if(e){r||await o.close();break}await o.write(t)}}catch(e){n||await o.abort(e)}finally{s.releaseLock(),o.releaseLock()}}function w(e,t){const r=new TransformStream(t);return A(e,r.writable),r.readable}function m(e){let t,r,n,i=!1,s=!1;return{readable:new ReadableStream({start(e){n=e},pull(){t?t():i=!0},async cancel(t){s=!0,e&&await e(t),r&&r(t)}},{highWaterMark:0}),writable:new WritableStream({write:async function(e){if(s)throw Error("Stream is cancelled");n.enqueue(e),i?i=!1:(await new Promise(((e,n)=>{t=e,r=n})),t=null,r=null)},close:n.close.bind(n),abort:n.error.bind(n)})}}function b(e,t=()=>{},r=()=>{}){if(a(e)){const n=new ArrayStream;return(async()=>{const i=D(n);try{const n=await K(e),s=t(n),a=r();let o;o=void 0!==s&&void 0!==a?d([s,a]):void 0!==s?s:a,await i.write(o),await i.close()}catch(e){await i.abort(e)}})(),n}if(c(e))return w(e,{async transform(e,r){try{const n=await t(e);void 0!==n&&r.enqueue(n)}catch(e){r.error(e)}},async flush(e){try{const t=await r();void 0!==t&&e.enqueue(t)}catch(t){e.error(t)}}});const n=t(e),i=r();return void 0!==n&&void 0!==i?d([n,i]):void 0!==n?n:i}function k(e,t){if(c(e)&&!a(e)){let r;const n=new TransformStream({start(e){r=e}}),i=A(e,n.writable),s=m((async function(e){r.error(e),await i,await new Promise(setTimeout)}));return t(n.readable,s.writable),s.readable}e=p(e);const r=new ArrayStream;return t(e,r),r}function E(e,t){let r;const n=k(e,((e,i)=>{const s=P(e);s.remainder=()=>(s.releaseLock(),A(e,i),n),r=t(s)}));return r}function v(e){if(a(e))return e.clone();if(c(e)){const t=function(e){if(a(e))throw Error("ArrayStream cannot be tee()d, use clone() instead");if(c(e)){const t=g(e).tee();return t[0][y]=t[1][y]=e[y],t}return[I(e),I(e)]}(e);return S(e,t[0]),t[1]}return I(e)}function B(e){return a(e)?v(e):c(e)?new ReadableStream({start(t){const r=k(e,(async(e,r)=>{const n=P(e),i=D(r);try{for(;;){await i.ready;const{done:e,value:r}=await n.read();if(e){try{t.close()}catch(e){}return void await i.close()}try{t.enqueue(r)}catch(e){}await i.write(r)}}catch(e){t.error(e),await i.abort(e)}}));S(e,r)}}):I(e)}function S(e,t){Object.entries(Object.getOwnPropertyDescriptors(e.constructor.prototype)).forEach((([r,n])=>{"constructor"!==r&&(n.value?n.value=n.value.bind(t):n.get=n.get.bind(t),Object.defineProperty(e,r,n))}))}function I(e,t=0,r=1/0){if(a(e))throw Error("Not implemented");if(c(e)){if(t>=0&&r>=0){let n=0;return w(e,{transform(e,i){n<r?(n+e.length>=t&&i.enqueue(I(e,Math.max(t-n,0),r-n)),n+=e.length):i.terminate()}})}if(t<0&&(r<0||r===1/0)){let n=[];return b(e,(e=>{e.length>=-t?n=[e]:n.push(e)}),(()=>I(d(n),t,r)))}if(0===t&&r<0){let n;return b(e,(e=>{const i=n?d([n,e]):e;if(i.length>=-r)return n=I(i,r),I(i,t,r);n=i}))}return console.warn(`stream.slice(input, ${t}, ${r}) not implemented efficiently.`),U((async()=>I(await K(e),t,r)))}return e[y]&&(e=d(e[y].concat([e]))),u(e)?e.subarray(t,r===1/0?e.length:r):e.slice(t,r)}async function K(e,t=d){return a(e)?e.readToEnd(t):c(e)?P(e).readToEnd(t):e}async function C(e,t){if(c(e)){if(e.cancel){const r=await e.cancel(t);return await new Promise(setTimeout),r}if(e.destroy)return e.destroy(t),await new Promise(setTimeout),t}}function U(e){const t=new ArrayStream;return(async()=>{const r=D(t);try{await r.write(await e()),await r.close()}catch(e){await r.abort(e)}})(),t}function P(e){return new f(e)}function D(e){return new o(e)}f.prototype.read=async function(){if(this[y]&&this[y].length){return{done:!1,value:this[y].shift()}}return this._read()},f.prototype.releaseLock=function(){this[y]&&(this.stream[y]=this[y]),this._releaseLock()},f.prototype.cancel=function(e){return this._cancel(e)},f.prototype.readLine=async function(){let e,t=[];for(;!e;){let{done:r,value:n}=await this.read();if(n+="",r)return t.length?d(t):void 0;const i=n.indexOf("\n")+1;i&&(e=d(t.concat(n.substr(0,i))),t=[]),i!==n.length&&t.push(n.substr(i))}return this.unshift(...t),e},f.prototype.readByte=async function(){const{done:e,value:t}=await this.read();if(e)return;const r=t[0];return this.unshift(I(t,1)),r},f.prototype.readBytes=async function(e){const t=[];let r=0;for(;;){const{done:n,value:i}=await this.read();if(n)return t.length?d(t):void 0;if(t.push(i),r+=i.length,r>=e){const r=d(t);return this.unshift(I(r,e)),I(r,0,e)}}},f.prototype.peekBytes=async function(e){const t=await this.readBytes(e);return this.unshift(t),t},f.prototype.unshift=function(...e){this[y]||(this[y]=[]),1===e.length&&u(e[0])&&this[y].length&&e[0].length&&this[y][0].byteOffset>=e[0].length?this[y][0]=new Uint8Array(this[y][0].buffer,this[y][0].byteOffset-e[0].length,this[y][0].byteLength+e[0].length):this[y].unshift(...e.filter((e=>e&&e.length)))},f.prototype.readToEnd=async function(e=d){const t=[];for(;;){const{done:e,value:r}=await this.read();if(e)break;t.push(r)}return e(t)};const x=Symbol("byValue");var Q={curve:{nistP256:"nistP256",p256:"nistP256",nistP384:"nistP384",p384:"nistP384",nistP521:"nistP521",p521:"nistP521",secp256k1:"secp256k1",ed25519Legacy:"ed25519Legacy",ed25519:"ed25519Legacy",curve25519Legacy:"curve25519Legacy",curve25519:"curve25519Legacy",brainpoolP256r1:"brainpoolP256r1",brainpoolP384r1:"brainpoolP384r1",brainpoolP512r1:"brainpoolP512r1"},kdfFlags:{replace_fingerprint:1,replace_kdf_params:2},s2k:{simple:0,salted:1,iterated:3,argon2:4,gnu:101},publicKey:{rsaEncryptSign:1,rsaEncrypt:2,rsaSign:3,elgamal:16,dsa:17,ecdh:18,ecdsa:19,eddsaLegacy:22,aedh:23,aedsa:24,x25519:25,x448:26,ed25519:27,ed448:28,pqc_mlkem_x25519:105,pqc_mldsa_ed25519:107,aead:100,hmac:101},symmetric:{idea:1,tripledes:2,cast5:3,blowfish:4,aes128:7,aes192:8,aes256:9,twofish:10},compression:{uncompressed:0,zip:1,zlib:2,bzip2:3},hash:{md5:1,sha1:2,ripemd:3,sha256:8,sha384:9,sha512:10,sha224:11,sha3_256:12,sha3_512:14},webHash:{"SHA-1":2,"SHA-256":8,"SHA-384":9,"SHA-512":10},aead:{eax:1,ocb:2,gcm:3,experimentalGCM:100},packet:{publicKeyEncryptedSessionKey:1,signature:2,symEncryptedSessionKey:3,onePassSignature:4,secretKey:5,publicKey:6,secretSubkey:7,compressedData:8,symmetricallyEncryptedData:9,marker:10,literalData:11,trust:12,userID:13,publicSubkey:14,userAttribute:17,symEncryptedIntegrityProtectedData:18,modificationDetectionCode:19,aeadEncryptedData:20,padding:21},literal:{binary:98,text:116,utf8:117,mime:109},signature:{binary:0,text:1,standalone:2,certGeneric:16,certPersona:17,certCasual:18,certPositive:19,certRevocation:48,subkeyBinding:24,keyBinding:25,key:31,keyRevocation:32,subkeyRevocation:40,timestamp:64,thirdParty:80},signatureSubpacket:{signatureCreationTime:2,signatureExpirationTime:3,exportableCertification:4,trustSignature:5,regularExpression:6,revocable:7,keyExpirationTime:9,placeholderBackwardsCompatibility:10,preferredSymmetricAlgorithms:11,revocationKey:12,issuerKeyID:16,notationData:20,preferredHashAlgorithms:21,preferredCompressionAlgorithms:22,keyServerPreferences:23,preferredKeyServer:24,primaryUserID:25,policyURI:26,keyFlags:27,signersUserID:28,reasonForRevocation:29,features:30,signatureTarget:31,embeddedSignature:32,issuerFingerprint:33,preferredAEADAlgorithms:34,preferredCipherSuites:39},keyFlags:{certifyKeys:1,signData:2,encryptCommunication:4,encryptStorage:8,splitPrivateKey:16,authentication:32,forwardedCommunication:64,sharedPrivateKey:128},armor:{multipartSection:0,multipartLast:1,signed:2,message:3,publicKey:4,privateKey:5,signature:6},reasonForRevocation:{noReason:0,keySuperseded:1,keyCompromised:2,keyRetired:3,userIDInvalid:32},features:{modificationDetection:1,aead:2,v5Keys:4,seipdv2:8},write:function(e,t){if("number"==typeof t&&(t=this.read(e,t)),void 0!==e[t])return e[t];throw Error("Invalid enum value.")},read:function(e,t){if(e[x]||(e[x]=[],Object.entries(e).forEach((([t,r])=>{e[x][r]=t}))),void 0!==e[x][t])return e[x][t];throw Error("Invalid enum value.")}},R={preferredHashAlgorithm:Q.hash.sha512,preferredSymmetricAlgorithm:Q.symmetric.aes256,preferredCompressionAlgorithm:Q.compression.uncompressed,aeadProtect:!1,ignoreSEIPDv2FeatureFlag:!1,parseAEADEncryptedV4KeysAsLegacy:!1,preferredAEADAlgorithm:Q.aead.gcm,aeadChunkSizeByte:12,v6Keys:!1,enableParsingV5Entities:!1,s2kType:Q.s2k.iterated,s2kIterationCountByte:224,s2kArgon2Params:{passes:3,parallelism:4,memoryExponent:16},allowUnauthenticatedMessages:!1,allowUnauthenticatedStream:!1,allowForwardedMessages:!1,minRSABits:2047,passwordCollisionCheck:!1,allowInsecureDecryptionWithSigningKeys:!1,allowInsecureVerificationWithReformattedKeys:!1,allowMissingKeyFlags:!1,constantTimePKCS1Decryption:!1,constantTimePKCS1DecryptionSupportedSymmetricAlgorithms:new Set([Q.symmetric.aes128,Q.symmetric.aes192,Q.symmetric.aes256]),ignoreUnsupportedPackets:!0,ignoreMalformedPackets:!1,enforceGrammar:!0,pluggableGrammarErrorReporter:null,additionalAllowedPackets:[],showVersion:!1,showComment:!1,versionString:"OpenPGP.js 6.1.1-patch.1",commentString:"https://openpgpjs.org",maxUserIDLength:5120,knownNotations:[],nonDeterministicSignaturesViaNotation:!0,useEllipticFallback:!0,rejectHashAlgorithms:new Set([Q.hash.md5,Q.hash.ripemd]),rejectMessageHashAlgorithms:new Set([Q.hash.md5,Q.hash.ripemd,Q.hash.sha1]),rejectPublicKeyAlgorithms:new Set([Q.publicKey.elgamal,Q.publicKey.dsa]),rejectCurves:new Set([Q.curve.secp256k1])};const T=(()=>{try{return"development"===process.env.NODE_ENV}catch(e){}return!1})(),M={isString:function(e){return"string"==typeof e||e instanceof String},nodeRequire:()=>{},isArray:function(e){return e instanceof Array},isUint8Array:u,isStream:c,getNobleCurve:async(e,t)=>{if(!R.useEllipticFallback)throw Error("This curve is only supported in the full build of OpenPGP.js");const{nobleCurves:r}=await Promise.resolve().then((function(){return $y}));switch(e){case Q.publicKey.ecdh:case Q.publicKey.ecdsa:{const e=r.get(t);if(!e)throw Error("Unsupported curve");return e}case Q.publicKey.x448:return r.get("x448");case Q.publicKey.ed448:return r.get("ed448");default:throw Error("Unsupported curve")}},readNumber:function(e){let t=0;for(let r=0;r<e.length;r++)t+=256**r*e[e.length-1-r];return t},writeNumber:function(e,t){const r=new Uint8Array(t);for(let n=0;n<t;n++)r[n]=e>>8*(t-n-1)&255;return r},readDate:function(e){const t=M.readNumber(e);return new Date(1e3*t)},writeDate:function(e){const t=Math.floor(e.getTime()/1e3);return M.writeNumber(t,4)},normalizeDate:function(e=Date.now()){return null===e||e===1/0?e:new Date(1e3*Math.floor(+e/1e3))},readMPI:function(e){const t=(e[0]<<8|e[1])+7>>>3;return M.readExactSubarray(e,2,2+t)},readExactSubarray:function(e,t,r){if(e.length<r-t)throw Error("Input array too short");return e.subarray(t,r)},leftPad(e,t){if(e.length>t)throw Error("Input array too long");const r=new Uint8Array(t),n=t-e.length;return r.set(e,n),r},uint8ArrayToMPI:function(e){const t=M.uint8ArrayBitLength(e);if(0===t)throw Error("Zero MPI");const r=e.subarray(e.length-Math.ceil(t/8)),n=new Uint8Array([(65280&t)>>8,255&t]);return M.concatUint8Array([n,r])},uint8ArrayBitLength:function(e){let t;for(t=0;t<e.length&&0===e[t];t++);if(t===e.length)return 0;const r=e.subarray(t);return 8*(r.length-1)+M.nbits(r[0])},hexToUint8Array:function(e){const t=new Uint8Array(e.length>>1);for(let r=0;r<e.length>>1;r++)t[r]=parseInt(e.substr(r<<1,2),16);return t},uint8ArrayToHex:function(e){const t="0123456789abcdef";let r="";return e.forEach((e=>{r+=t[e>>4]+t[15&e]})),r},stringToUint8Array:function(e){return b(e,(e=>{if(!M.isString(e))throw Error("stringToUint8Array: Data must be in the form of a string");const t=new Uint8Array(e.length);for(let r=0;r<e.length;r++)t[r]=e.charCodeAt(r);return t}))},uint8ArrayToString:function(e){const t=[],r=16384,n=(e=new Uint8Array(e)).length;for(let i=0;i<n;i+=r)t.push(String.fromCharCode.apply(String,e.subarray(i,i+r<n?i+r:n)));return t.join("")},encodeUTF8:function(e){const t=new TextEncoder("utf-8");function r(e,r=!1){return t.encode(e,{stream:!r})}return b(e,r,(()=>r("",!0)))},decodeUTF8:function(e){const t=new TextDecoder("utf-8");function r(e,r=!1){return t.decode(e,{stream:!r})}return b(e,r,(()=>r(new Uint8Array,!0)))},concat:d,concatUint8Array:h,equalsUint8Array:function(e,t){if(!M.isUint8Array(e)||!M.isUint8Array(t))throw Error("Data must be in the form of a Uint8Array");if(e.length!==t.length)return!1;for(let r=0;r<e.length;r++)if(e[r]!==t[r])return!1;return!0},findLastIndex:function(e,t){for(let r=e.length;r>=0;r--)if(t(e[r],r,e))return r;return-1},writeChecksum:function(e){let t=0;for(let r=0;r<e.length;r++)t=t+e[r]&65535;return M.writeNumber(t,2)},printDebug:function(e){T&&console.log("[OpenPGP.js debug]",e)},printDebugError:function(e){T&&console.error("[OpenPGP.js debug]",e)},nbits:function(e){let t=1,r=e>>>16;return 0!==r&&(e=r,t+=16),r=e>>8,0!==r&&(e=r,t+=8),r=e>>4,0!==r&&(e=r,t+=4),r=e>>2,0!==r&&(e=r,t+=2),r=e>>1,0!==r&&(e=r,t+=1),t},double:function(e){const t=new Uint8Array(e.length),r=e.length-1;for(let n=0;n<r;n++)t[n]=e[n]<<1^e[n+1]>>7;return t[r]=e[r]<<1^135*(e[0]>>7),t},shiftRight:function(e,t){if(t)for(let r=e.length-1;r>=0;r--)e[r]>>=t,r>0&&(e[r]|=e[r-1]<<8-t);return e},getWebCrypto:function(){const t=void 0!==e&&e.crypto&&e.crypto.subtle||this.getNodeCrypto()?.webcrypto.subtle;if(!t)throw Error("The WebCrypto API is not available");return t},getNodeCrypto:function(){return this.nodeRequire("crypto")},getNodeZlib:function(){return this.nodeRequire("zlib")},getNodeBuffer:function(){return(this.nodeRequire("buffer")||{}).Buffer},getHardwareConcurrency:function(){if("undefined"!=typeof navigator)return navigator.hardwareConcurrency||1;return this.nodeRequire("os").cpus().length},isEmailAddress:function(e){if(!M.isString(e))return!1;return/^[^\p{C}\p{Z}@<>\\]+@[^\p{C}\p{Z}@<>\\]+[^\p{C}\p{Z}\p{P}]$/u.test(e)},canonicalizeEOL:function(e){let t=!1;return b(e,(e=>{let r;t&&(e=M.concatUint8Array([new Uint8Array([13]),e])),13===e[e.length-1]?(t=!0,e=e.subarray(0,-1)):t=!1;const n=[];for(let t=0;r=e.indexOf(10,t)+1,r;t=r)13!==e[r-2]&&n.push(r);if(!n.length)return e;const i=new Uint8Array(e.length+n.length);let s=0;for(let t=0;t<n.length;t++){const r=e.subarray(n[t-1]||0,n[t]);i.set(r,s),s+=r.length,i[s-1]=13,i[s]=10,s++}return i.set(e.subarray(n[n.length-1]||0),s),i}),(()=>t?new Uint8Array([13]):void 0))},nativeEOL:function(e){let t=!1;return b(e,(e=>{let r;13===(e=t&&10!==e[0]?M.concatUint8Array([new Uint8Array([13]),e]):new Uint8Array(e))[e.length-1]?(t=!0,e=e.subarray(0,-1)):t=!1;let n=0;for(let t=0;t!==e.length;t=r){r=e.indexOf(13,t)+1,r||(r=e.length);const i=r-(10===e[r]?1:0);t&&e.copyWithin(n,t,i),n+=i-t}return e.subarray(0,n)}),(()=>t?new Uint8Array([13]):void 0))},removeTrailingSpaces:function(e){return e.split("\n").map((e=>{let t=e.length-1;for(;t>=0&&(" "===e[t]||"\t"===e[t]||"\r"===e[t]);t--);return e.substr(0,t+1)})).join("\n")},wrapError:function(e,t){if(!t)return Error(e);try{t.message=e+": "+t.message}catch(e){}return t},constructAllowedPackets:function(e){const t={};return e.forEach((e=>{if(!e.tag)throw Error("Invalid input: expected a packet class");t[e.tag]=e})),t},anyPromise:function(e){return new Promise((async(t,r)=>{let n;await Promise.all(e.map((async e=>{try{t(await e)}catch(e){n=e}}))),r(n)}))},selectUint8Array:function(e,t,r){const n=Math.max(t.length,r.length),i=new Uint8Array(n);let s=0;for(let n=0;n<i.length;n++)i[n]=t[n]&256-e|r[n]&255+e,s+=e&n<t.length|1-e&n<r.length;return i.subarray(0,s)},selectUint8:function(e,t,r){return t&256-e|r&255+e},isAES:function(e){return e===Q.symmetric.aes128||e===Q.symmetric.aes192||e===Q.symmetric.aes256}},L=M.getNodeBuffer();let F,N;function O(e){let t=new Uint8Array;return b(e,(e=>{t=M.concatUint8Array([t,e]);const r=[],n=Math.floor(t.length/45),i=45*n,s=F(t.subarray(0,i));for(let e=0;e<n;e++)r.push(s.substr(60*e,60)),r.push("\n");return t=t.subarray(i),r.join("")}),(()=>t.length?F(t)+"\n":""))}function _(e){let t="";return b(e,(e=>{t+=e;let r=0;const n=[" ","\t","\r","\n"];for(let e=0;e<n.length;e++){const i=n[e];for(let e=t.indexOf(i);-1!==e;e=t.indexOf(i,e+1))r++}let i=t.length;for(;i>0&&(i-r)%4!=0;i--)n.includes(t[i])&&r--;const s=N(t.substr(0,i));return t=t.substr(i),s}),(()=>N(t)))}function H(e){return _(e.replace(/-/g,"+").replace(/_/g,"/"))}function z(e,t){let r=O(e).replace(/[\r\n]/g,"");return r=r.replace(/[+]/g,"-").replace(/[/]/g,"_").replace(/[=]/g,""),r}function G(e){const t=e.match(/^-----BEGIN PGP (MESSAGE, PART \d+\/\d+|MESSAGE, PART \d+|SIGNED MESSAGE|MESSAGE|PUBLIC KEY BLOCK|PRIVATE KEY BLOCK|SIGNATURE)-----$/m);if(!t)throw Error("Unknown ASCII armor type");return/MESSAGE, PART \d+\/\d+/.test(t[1])?Q.armor.multipartSection:/MESSAGE, PART \d+/.test(t[1])?Q.armor.multipartLast:/SIGNED MESSAGE/.test(t[1])?Q.armor.signed:/MESSAGE/.test(t[1])?Q.armor.message:/PUBLIC KEY BLOCK/.test(t[1])?Q.armor.publicKey:/PRIVATE KEY BLOCK/.test(t[1])?Q.armor.privateKey:/SIGNATURE/.test(t[1])?Q.armor.signature:void 0}function q(e,t){let r="";return t.showVersion&&(r+="Version: "+t.versionString+"\n"),t.showComment&&(r+="Comment: "+t.commentString+"\n"),e&&(r+="Comment: "+e+"\n"),r+="\n",r}function j(e){const t=function(e){let t=13501623;return b(e,(e=>{const r=Y?Math.floor(e.length/4):0,n=new Uint32Array(e.buffer,e.byteOffset,r);for(let e=0;e<r;e++)t^=n[e],t=V[0][t>>24&255]^V[1][t>>16&255]^V[2][t>>8&255]^V[3][255&t];for(let n=4*r;n<e.length;n++)t=t>>8^V[0][255&t^e[n]]}),(()=>new Uint8Array([t,t>>8,t>>16])))}(e);return O(t)}L?(F=e=>L.from(e).toString("base64"),N=e=>{const t=L.from(e,"base64");return new Uint8Array(t.buffer,t.byteOffset,t.byteLength)}):(F=e=>btoa(M.uint8ArrayToString(e)),N=e=>M.stringToUint8Array(atob(e)));const V=[Array(255),Array(255),Array(255),Array(255)];for(let e=0;e<=255;e++){let t=e<<16;for(let e=0;e<8;e++)t=t<<1^(8388608&t?8801531:0);V[0][e]=(16711680&t)>>16|65280&t|(255&t)<<16}for(let e=0;e<=255;e++)V[1][e]=V[0][e]>>8^V[0][255&V[0][e]];for(let e=0;e<=255;e++)V[2][e]=V[1][e]>>8^V[0][255&V[1][e]];for(let e=0;e<=255;e++)V[3][e]=V[2][e]>>8^V[0][255&V[2][e]];const Y=function(){const e=new ArrayBuffer(2);return new DataView(e).setInt16(0,255,!0),255===new Int16Array(e)[0]}();function Z(e){for(let t=0;t<e.length;t++)/^([^\s:]|[^\s:][^:]*[^\s:]): .+$/.test(e[t])||M.printDebugError(Error("Improperly formatted armor header: "+e[t])),/^(Version|Comment|MessageID|Hash|Charset): .+$/.test(e[t])||M.printDebugError(Error("Unknown header: "+e[t]))}function W(e){let t=e;const r=e.lastIndexOf("=");return r>=0&&r!==e.length-1&&(t=e.slice(0,r)),t}function J(e){return new Promise((async(t,r)=>{try{const n=/^-----[^-]+-----$/m,i=/^[ \f\r\t\u00a0\u2000-\u200a\u202f\u205f\u3000]*$/;let s;const a=[];let o,c,u=a,h=[];const l=_(k(e,(async(e,y)=>{const f=P(e);try{for(;;){let e=await f.readLine();if(void 0===e)throw Error("Misformed armored text");if(e=M.removeTrailingSpaces(e.replace(/[\r\n]/g,"")),s)if(o)c||s!==Q.armor.signed||(n.test(e)?(h=h.join("\r\n"),c=!0,Z(u),u=[],o=!1):h.push(e.replace(/^- /,"")));else if(n.test(e)&&r(Error("Mandatory blank line missing between armor headers and armor data")),i.test(e)){if(Z(u),o=!0,c||s!==Q.armor.signed){t({text:h,data:l,headers:a,type:s});break}}else u.push(e);else n.test(e)&&(s=G(e))}}catch(e){return void r(e)}const g=D(y);try{for(;;){await g.ready;const{done:e,value:t}=await f.read();if(e)throw Error("Misformed armored text");const r=t+"";if(-1!==r.indexOf("=")||-1!==r.indexOf("-")){let e=await f.readToEnd();e.length||(e=""),e=r+e,e=M.removeTrailingSpaces(e.replace(/\r/g,""));const t=e.split(n);if(1===t.length)throw Error("Misformed armored text");const i=W(t[0].slice(0,-1));await g.write(i);break}await g.write(r)}await g.ready,await g.close()}catch(e){await g.abort(e)}})))}catch(e){r(e)}})).then((async e=>(a(e.data)&&(e.data=await K(e.data)),e)))}function X(e,t,r,n,i,s=!1,a=R){let o,c;e===Q.armor.signed&&(o=t.text,c=t.hash,t=t.data);const u=s&&B(t),h=[];switch(e){case Q.armor.multipartSection:h.push("-----BEGIN PGP MESSAGE, PART "+r+"/"+n+"-----\n"),h.push(q(i,a)),h.push(O(t)),u&&h.push("=",j(u)),h.push("-----END PGP MESSAGE, PART "+r+"/"+n+"-----\n");break;case Q.armor.multipartLast:h.push("-----BEGIN PGP MESSAGE, PART "+r+"-----\n"),h.push(q(i,a)),h.push(O(t)),u&&h.push("=",j(u)),h.push("-----END PGP MESSAGE, PART "+r+"-----\n");break;case Q.armor.signed:h.push("-----BEGIN PGP SIGNED MESSAGE-----\n"),h.push(c?`Hash: ${c}\n\n`:"\n"),h.push(o.replace(/^-/gm,"- -")),h.push("\n-----BEGIN PGP SIGNATURE-----\n"),h.push(q(i,a)),h.push(O(t)),u&&h.push("=",j(u)),h.push("-----END PGP SIGNATURE-----\n");break;case Q.armor.message:h.push("-----BEGIN PGP MESSAGE-----\n"),h.push(q(i,a)),h.push(O(t)),u&&h.push("=",j(u)),h.push("-----END PGP MESSAGE-----\n");break;case Q.armor.publicKey:h.push("-----BEGIN PGP PUBLIC KEY BLOCK-----\n"),h.push(q(i,a)),h.push(O(t)),u&&h.push("=",j(u)),h.push("-----END PGP PUBLIC KEY BLOCK-----\n");break;case Q.armor.privateKey:h.push("-----BEGIN PGP PRIVATE KEY BLOCK-----\n"),h.push(q(i,a)),h.push(O(t)),u&&h.push("=",j(u)),h.push("-----END PGP PRIVATE KEY BLOCK-----\n");break;case Q.armor.signature:h.push("-----BEGIN PGP SIGNATURE-----\n"),h.push(q(i,a)),h.push(O(t)),u&&h.push("=",j(u)),h.push("-----END PGP SIGNATURE-----\n")}return M.concat(h)}const $=BigInt(0),ee=BigInt(1);function te(e){const t="0123456789ABCDEF";let r="";return e.forEach((e=>{r+=t[e>>4]+t[15&e]})),BigInt("0x0"+r)}function re(e,t){const r=e%t;return r<$?r+t:r}function ne(e,t,r){if(r===$)throw Error("Modulo cannot be zero");if(r===ee)return BigInt(0);if(t<$)throw Error("Unsopported negative exponent");let n=t,i=e;i%=r;let s=BigInt(1);for(;n>$;){const e=n&ee;n>>=ee;s=e?s*i%r:s,i=i*i%r}return s}function ie(e){return e>=$?e:-e}function se(e,t){const{gcd:r,x:n}=function(e,t){let r=BigInt(0),n=BigInt(1),i=BigInt(1),s=BigInt(0),a=ie(e),o=ie(t);const c=e<$,u=t<$;for(;o!==$;){const e=a/o;let t=r;r=i-e*r,i=t,t=n,n=s-e*n,s=t,t=o,o=a%o,a=t}return{x:c?-i:i,y:u?-s:s,gcd:a}}(e,t);if(r!==ee)throw Error("Inverse does not exist");return re(n+t,t)}function ae(e){const t=Number(e);if(t>Number.MAX_SAFE_INTEGER)throw Error("Number can only safely store up to 53 bits");return t}function oe(e,t){return(e>>BigInt(t)&ee)===$?0:1}function ce(e){const t=e<$?BigInt(-1):$;let r=1,n=e;for(;(n>>=ee)!==t;)r++;return r}function ue(e){const t=e<$?BigInt(-1):$,r=BigInt(8);let n=1,i=e;for(;(i>>=r)!==t;)n++;return n}function he(e,t="be",r){let n=e.toString(16);n.length%2==1&&(n="0"+n);const i=n.length/2,s=new Uint8Array(r||i),a=r?r-i:0;let o=0;for(;o<i;)s[o+a]=parseInt(n.slice(2*o,2*o+2),16),o++;return"be"!==t&&s.reverse(),s}const le=M.getNodeCrypto();function ye(e){const t="undefined"!=typeof crypto?crypto:le?.webcrypto;if(t?.getRandomValues){const r=new Uint8Array(e);return t.getRandomValues(r)}throw Error("No secure random number generator available.")}function fe(e,t){if(t<e)throw Error("Illegal parameter value: max <= min");const r=t-e;return re(te(ye(ue(r)+8)),r)+e}const ge=BigInt(1);function pe(e,t,r){const n=BigInt(30),i=ge<<BigInt(e-1),s=[1,6,5,4,3,2,1,4,3,2,1,2,1,4,3,2,1,2,1,4,3,2,1,6,5,4,3,2,1,2];let a=fe(i,i<<ge),o=ae(re(a,n));do{a+=BigInt(s[o]),o=(o+s[o])%s.length,ce(a)>e&&(a=re(a,i<<ge),a+=i,o=ae(re(a,n)))}while(!de(a,t,r));return a}function de(e,t,r){return(!t||function(e,t){let r=e,n=t;for(;n!==$;){const e=n;n=r%n,r=e}return r}(e-ge,t)===ge)&&(!!function(e){const t=BigInt(0);return Ae.every((r=>re(e,r)!==t))}(e)&&(!!function(e,t=BigInt(2)){return ne(t,e-ge,e)===ge}(e)&&!!function(e,t){const r=ce(e);t||(t=Math.max(1,r/48|0));const n=e-ge;let i=0;for(;!oe(n,i);)i++;const s=e>>BigInt(i);for(;t>0;t--){let t,r=ne(fe(BigInt(2),n),s,e);if(r!==ge&&r!==n){for(t=1;t<i;t++){if(r=re(r*r,e),r===ge)return!1;if(r===n)break}if(t===i)return!1}}return!0}(e,r)))}const Ae=[7,11,13,17,19,23,29,31,37,41,43,47,53,59,61,67,71,73,79,83,89,97,101,103,107,109,113,127,131,137,139,149,151,157,163,167,173,179,181,191,193,197,199,211,223,227,229,233,239,241,251,257,263,269,271,277,281,283,293,307,311,313,317,331,337,347,349,353,359,367,373,379,383,389,397,401,409,419,421,431,433,439,443,449,457,461,463,467,479,487,491,499,503,509,521,523,541,547,557,563,569,571,577,587,593,599,601,607,613,617,619,631,641,643,647,653,659,661,673,677,683,691,701,709,719,727,733,739,743,751,757,761,769,773,787,797,809,811,821,823,827,829,839,853,857,859,863,877,881,883,887,907,911,919,929,937,941,947,953,967,971,977,983,991,997,1009,1013,1019,1021,1031,1033,1039,1049,1051,1061,1063,1069,1087,1091,1093,1097,1103,1109,1117,1123,1129,1151,1153,1163,1171,1181,1187,1193,1201,1213,1217,1223,1229,1231,1237,1249,1259,1277,1279,1283,1289,1291,1297,1301,1303,1307,1319,1321,1327,1361,1367,1373,1381,1399,1409,1423,1427,1429,1433,1439,1447,1451,1453,1459,1471,1481,1483,1487,1489,1493,1499,1511,1523,1531,1543,1549,1553,1559,1567,1571,1579,1583,1597,1601,1607,1609,1613,1619,1621,1627,1637,1657,1663,1667,1669,1693,1697,1699,1709,1721,1723,1733,1741,1747,1753,1759,1777,1783,1787,1789,1801,1811,1823,1831,1847,1861,1867,1871,1873,1877,1879,1889,1901,1907,1913,1931,1933,1949,1951,1973,1979,1987,1993,1997,1999,2003,2011,2017,2027,2029,2039,2053,2063,2069,2081,2083,2087,2089,2099,2111,2113,2129,2131,2137,2141,2143,2153,2161,2179,2203,2207,2213,2221,2237,2239,2243,2251,2267,2269,2273,2281,2287,2293,2297,2309,2311,2333,2339,2341,2347,2351,2357,2371,2377,2381,2383,2389,2393,2399,2411,2417,2423,2437,2441,2447,2459,2467,2473,2477,2503,2521,2531,2539,2543,2549,2551,2557,2579,2591,2593,2609,2617,2621,2633,2647,2657,2659,2663,2671,2677,2683,2687,2689,2693,2699,2707,2711,2713,2719,2729,2731,2741,2749,2753,2767,2777,2789,2791,2797,2801,2803,2819,2833,2837,2843,2851,2857,2861,2879,2887,2897,2903,2909,2917,2927,2939,2953,2957,2963,2969,2971,2999,3001,3011,3019,3023,3037,3041,3049,3061,3067,3079,3083,3089,3109,3119,3121,3137,3163,3167,3169,3181,3187,3191,3203,3209,3217,3221,3229,3251,3253,3257,3259,3271,3299,3301,3307,3313,3319,3323,3329,3331,3343,3347,3359,3361,3371,3373,3389,3391,3407,3413,3433,3449,3457,3461,3463,3467,3469,3491,3499,3511,3517,3527,3529,3533,3539,3541,3547,3557,3559,3571,3581,3583,3593,3607,3613,3617,3623,3631,3637,3643,3659,3671,3673,3677,3691,3697,3701,3709,3719,3727,3733,3739,3761,3767,3769,3779,3793,3797,3803,3821,3823,3833,3847,3851,3853,3863,3877,3881,3889,3907,3911,3917,3919,3923,3929,3931,3943,3947,3967,3989,4001,4003,4007,4013,4019,4021,4027,4049,4051,4057,4073,4079,4091,4093,4099,4111,4127,4129,4133,4139,4153,4157,4159,4177,4201,4211,4217,4219,4229,4231,4241,4243,4253,4259,4261,4271,4273,4283,4289,4297,4327,4337,4339,4349,4357,4363,4373,4391,4397,4409,4421,4423,4441,4447,4451,4457,4463,4481,4483,4493,4507,4513,4517,4519,4523,4547,4549,4561,4567,4583,4591,4597,4603,4621,4637,4639,4643,4649,4651,4657,4663,4673,4679,4691,4703,4721,4723,4729,4733,4751,4759,4783,4787,4789,4793,4799,4801,4813,4817,4831,4861,4871,4877,4889,4903,4909,4919,4931,4933,4937,4943,4951,4957,4967,4969,4973,4987,4993,4999].map((e=>BigInt(e)));const we=M.getWebCrypto(),me=M.getNodeCrypto(),be=me&&me.getHashes();function ke(e){if(me&&be.includes(e))return async function(t){const r=me.createHash(e);return b(t,(e=>{r.update(e)}),(()=>new Uint8Array(r.digest())))}}function Ee(e,t){const r=async()=>{const{nobleHashes:t}=await Promise.resolve().then((function(){return Sf})),r=t.get(e);if(!r)throw Error("Unsupported hash");return r};return async function(e){if(a(e)&&(e=await K(e)),M.isStream(e)){const t=(await r()).create();return b(e,(e=>{t.update(e)}),(()=>t.digest()))}if(we&&t)return new Uint8Array(await we.digest(t,e));return(await r())(e)}}const ve=ke("md5")||Ee("md5"),Be=ke("sha1")||Ee("sha1","SHA-1"),Se=ke("sha224")||Ee("sha224"),Ie=ke("sha256")||Ee("sha256","SHA-256"),Ke=ke("sha384")||Ee("sha384","SHA-384"),Ce=ke("sha512")||Ee("sha512","SHA-512"),Ue=ke("ripemd160")||Ee("ripemd160"),Pe=ke("sha3-256")||Ee("sha3_256"),De=ke("sha3-512")||Ee("sha3_512");function xe(e,t){switch(e){case Q.hash.md5:return ve(t);case Q.hash.sha1:return Be(t);case Q.hash.ripemd:return Ue(t);case Q.hash.sha256:return Ie(t);case Q.hash.sha384:return Ke(t);case Q.hash.sha512:return Ce(t);case Q.hash.sha224:return Se(t);case Q.hash.sha3_256:return Pe(t);case Q.hash.sha3_512:return De(t);default:throw Error("Unsupported hash function")}}function Qe(e){switch(e){case Q.hash.md5:return 16;case Q.hash.sha1:case Q.hash.ripemd:return 20;case Q.hash.sha256:return 32;case Q.hash.sha384:return 48;case Q.hash.sha512:return 64;case Q.hash.sha224:return 28;case Q.hash.sha3_256:return 32;case Q.hash.sha3_512:return 64;default:throw Error("Invalid hash algorithm.")}}const Re=[];function Te(e,t){const r=e.length;if(r>t-11)throw Error("Message too long");const n=function(e){const t=new Uint8Array(e);let r=0;for(;r<e;){const n=ye(e-r);for(let e=0;e<n.length;e++)0!==n[e]&&(t[r++]=n[e])}return t}(t-r-3),i=new Uint8Array(t);return i[1]=2,i.set(n,2),i.set(e,t-r),i}function Me(e,t){let r=2,n=1;for(let t=r;t<e.length;t++)n&=0!==e[t],r+=n;const i=r-2,s=e.subarray(r+1),a=0===e[0]&2===e[1]&i>=8&!n;if(t)return M.selectUint8Array(a,s,t);if(a)return s;throw Error("Decryption error")}function Le(e,t,r){let n;if(t.length!==Qe(e))throw Error("Invalid hash length");const i=new Uint8Array(Re[e].length);for(n=0;n<Re[e].length;n++)i[n]=Re[e][n];const s=i.length+t.length;if(r<s+11)throw Error("Intended encoded message length too short");const a=new Uint8Array(r-s-3).fill(255),o=new Uint8Array(r);return o[1]=1,o.set(a,2),o.set(i,r-s),o.set(t,r-t.length),o}Re[1]=[48,32,48,12,6,8,42,134,72,134,247,13,2,5,5,0,4,16],Re[2]=[48,33,48,9,6,5,43,14,3,2,26,5,0,4,20],Re[3]=[48,33,48,9,6,5,43,36,3,2,1,5,0,4,20],Re[8]=[48,49,48,13,6,9,96,134,72,1,101,3,4,2,1,5,0,4,32],Re[9]=[48,65,48,13,6,9,96,134,72,1,101,3,4,2,2,5,0,4,48],Re[10]=[48,81,48,13,6,9,96,134,72,1,101,3,4,2,3,5,0,4,64],Re[11]=[48,45,48,13,6,9,96,134,72,1,101,3,4,2,4,5,0,4,28];const Fe=M.getWebCrypto(),Ne=M.getNodeCrypto(),Oe=BigInt(1);async function _e(e,t,r,n,i,s,a,o,c){if(Qe(e)>=r.length)throw Error("Digest size cannot exceed key modulus size");if(t&&!M.isStream(t))if(M.getWebCrypto())try{return await async function(e,t,r,n,i,s,a,o){const c=await qe(r,n,i,s,a,o),u={name:"RSASSA-PKCS1-v1_5",hash:{name:e}},h=await Fe.importKey("jwk",c,u,!1,["sign"]);return new Uint8Array(await Fe.sign("RSASSA-PKCS1-v1_5",h,t))}(Q.read(Q.webHash,e),t,r,n,i,s,a,o)}catch(e){M.printDebugError(e)}else if(M.getNodeCrypto())return async function(e,t,r,n,i,s,a,o){const c=Ne.createSign(Q.read(Q.hash,e));c.write(t),c.end();const u=await qe(r,n,i,s,a,o);return new Uint8Array(c.sign({key:u,format:"jwk",type:"pkcs1"}))}(e,t,r,n,i,s,a,o);return async function(e,t,r,n){t=te(t);const i=te(Le(e,n,ue(t)));return r=te(r),he(ne(i,r,t),"be",ue(t))}(e,r,i,c)}async function He(e,t,r,n,i,s){if(t&&!M.isStream(t))if(M.getWebCrypto())try{return await async function(e,t,r,n,i){const s=je(n,i),a=await Fe.importKey("jwk",s,{name:"RSASSA-PKCS1-v1_5",hash:{name:e}},!1,["verify"]);return Fe.verify("RSASSA-PKCS1-v1_5",a,r,t)}(Q.read(Q.webHash,e),t,r,n,i)}catch(e){M.printDebugError(e)}else if(M.getNodeCrypto())return async function(e,t,r,n,i){const s=je(n,i),a={key:s,format:"jwk",type:"pkcs1"},o=Ne.createVerify(Q.read(Q.hash,e));o.write(t),o.end();try{return o.verify(a,r)}catch(e){return!1}}(e,t,r,n,i);return async function(e,t,r,n,i){if(r=te(r),t=te(t),n=te(n),t>=r)throw Error("Signature size cannot exceed modulus size");const s=he(ne(t,n,r),"be",ue(r)),a=Le(e,i,ue(r));return M.equalsUint8Array(s,a)}(e,r,n,i,s)}async function ze(e,t,r){return M.getNodeCrypto()?async function(e,t,r){const n=je(t,r),i={key:n,format:"jwk",type:"pkcs1",padding:Ne.constants.RSA_PKCS1_PADDING};return new Uint8Array(Ne.publicEncrypt(i,e))}(e,t,r):async function(e,t,r){if(t=te(t),e=te(Te(e,ue(t))),r=te(r),e>=t)throw Error("Message size cannot exceed modulus size");return he(ne(e,r,t),"be",ue(t))}(e,t,r)}async function Ge(e,t,r,n,i,s,a,o){if(M.getNodeCrypto()&&!o)try{return await async function(e,t,r,n,i,s,a){const o=await qe(t,r,n,i,s,a),c={key:o,format:"jwk",type:"pkcs1",padding:Ne.constants.RSA_PKCS1_PADDING};try{return new Uint8Array(Ne.privateDecrypt(c,e))}catch(e){throw Error("Decryption error")}}(e,t,r,n,i,s,a)}catch(e){M.printDebugError(e)}return async function(e,t,r,n,i,s,a,o){if(e=te(e),t=te(t),r=te(r),n=te(n),i=te(i),s=te(s),a=te(a),e>=t)throw Error("Data too large.");const c=re(n,s-Oe),u=re(n,i-Oe),h=fe(BigInt(2),t),l=ne(se(h,t),r,t);e=re(e*l,t);const y=ne(e,u,i),f=ne(e,c,s),g=re(a*(f-y),s);let p=g*i+y;return p=re(p*h,t),Me(he(p,"be",ue(t)),o)}(e,t,r,n,i,s,a,o)}async function qe(e,t,r,n,i,s){const a=te(n),o=te(i),c=te(r);let u=re(c,o-Oe),h=re(c,a-Oe);return h=he(h),u=he(u),{kty:"RSA",n:z(e),e:z(t),d:z(r),p:z(i),q:z(n),dp:z(u),dq:z(h),qi:z(s),ext:!0}}function je(e,t){return{kty:"RSA",n:z(e),e:z(t),ext:!0}}function Ve(e,t){return{n:H(e.n),e:he(t),d:H(e.d),p:H(e.q),q:H(e.p),u:H(e.qi)}}const Ye=BigInt(1);const Ze="object"==typeof e&&"crypto"in e?e.crypto:void 0,We={};var Je=function(e){var t,r=new Float64Array(16);if(e)for(t=0;t<e.length;t++)r[t]=e[t];return r},Xe=function(){throw Error("no PRNG")},$e=new Uint8Array(32);$e[0]=9;var et=Je(),tt=Je([1]),rt=Je([56129,1]),nt=Je([30883,4953,19914,30187,55467,16705,2637,112,59544,30585,16505,36039,65139,11119,27886,20995]),it=Je([61785,9906,39828,60374,45398,33411,5274,224,53552,61171,33010,6542,64743,22239,55772,9222]),st=Je([54554,36645,11616,51542,42930,38181,51040,26924,56412,64982,57905,49316,21502,52590,14035,8553]),at=Je([26200,26214,26214,26214,26214,26214,26214,26214,26214,26214,26214,26214,26214,26214,26214,26214]),ot=Je([41136,18958,6951,50414,58488,44335,6150,12099,55207,15867,153,11085,57099,20417,9344,11139]);function ct(e,t,r,n){e[t]=r>>24&255,e[t+1]=r>>16&255,e[t+2]=r>>8&255,e[t+3]=255&r,e[t+4]=n>>24&255,e[t+5]=n>>16&255,e[t+6]=n>>8&255,e[t+7]=255&n}function ut(e,t,r,n){return function(e,t,r,n,i){var s,a=0;for(s=0;s<i;s++)a|=e[t+s]^r[n+s];return(1&a-1>>>8)-1}(e,t,r,n,32)}function ht(e,t){var r;for(r=0;r<16;r++)e[r]=0|t[r]}function lt(e){var t,r,n=1;for(t=0;t<16;t++)r=e[t]+n+65535,n=Math.floor(r/65536),e[t]=r-65536*n;e[0]+=n-1+37*(n-1)}function yt(e,t,r){for(var n,i=~(r-1),s=0;s<16;s++)n=i&(e[s]^t[s]),e[s]^=n,t[s]^=n}function ft(e,t){var r,n,i,s=Je(),a=Je();for(r=0;r<16;r++)a[r]=t[r];for(lt(a),lt(a),lt(a),n=0;n<2;n++){for(s[0]=a[0]-65517,r=1;r<15;r++)s[r]=a[r]-65535-(s[r-1]>>16&1),s[r-1]&=65535;s[15]=a[15]-32767-(s[14]>>16&1),i=s[15]>>16&1,s[14]&=65535,yt(a,s,1-i)}for(r=0;r<16;r++)e[2*r]=255&a[r],e[2*r+1]=a[r]>>8}function gt(e,t){var r=new Uint8Array(32),n=new Uint8Array(32);return ft(r,e),ft(n,t),ut(r,0,n,0)}function pt(e){var t=new Uint8Array(32);return ft(t,e),1&t[0]}function dt(e,t){var r;for(r=0;r<16;r++)e[r]=t[2*r]+(t[2*r+1]<<8);e[15]&=32767}function At(e,t,r){for(var n=0;n<16;n++)e[n]=t[n]+r[n]}function wt(e,t,r){for(var n=0;n<16;n++)e[n]=t[n]-r[n]}function mt(e,t,r){var n,i,s=0,a=0,o=0,c=0,u=0,h=0,l=0,y=0,f=0,g=0,p=0,d=0,A=0,w=0,m=0,b=0,k=0,E=0,v=0,B=0,S=0,I=0,K=0,C=0,U=0,P=0,D=0,x=0,Q=0,R=0,T=0,M=r[0],L=r[1],F=r[2],N=r[3],O=r[4],_=r[5],H=r[6],z=r[7],G=r[8],q=r[9],j=r[10],V=r[11],Y=r[12],Z=r[13],W=r[14],J=r[15];s+=(n=t[0])*M,a+=n*L,o+=n*F,c+=n*N,u+=n*O,h+=n*_,l+=n*H,y+=n*z,f+=n*G,g+=n*q,p+=n*j,d+=n*V,A+=n*Y,w+=n*Z,m+=n*W,b+=n*J,a+=(n=t[1])*M,o+=n*L,c+=n*F,u+=n*N,h+=n*O,l+=n*_,y+=n*H,f+=n*z,g+=n*G,p+=n*q,d+=n*j,A+=n*V,w+=n*Y,m+=n*Z,b+=n*W,k+=n*J,o+=(n=t[2])*M,c+=n*L,u+=n*F,h+=n*N,l+=n*O,y+=n*_,f+=n*H,g+=n*z,p+=n*G,d+=n*q,A+=n*j,w+=n*V,m+=n*Y,b+=n*Z,k+=n*W,E+=n*J,c+=(n=t[3])*M,u+=n*L,h+=n*F,l+=n*N,y+=n*O,f+=n*_,g+=n*H,p+=n*z,d+=n*G,A+=n*q,w+=n*j,m+=n*V,b+=n*Y,k+=n*Z,E+=n*W,v+=n*J,u+=(n=t[4])*M,h+=n*L,l+=n*F,y+=n*N,f+=n*O,g+=n*_,p+=n*H,d+=n*z,A+=n*G,w+=n*q,m+=n*j,b+=n*V,k+=n*Y,E+=n*Z,v+=n*W,B+=n*J,h+=(n=t[5])*M,l+=n*L,y+=n*F,f+=n*N,g+=n*O,p+=n*_,d+=n*H,A+=n*z,w+=n*G,m+=n*q,b+=n*j,k+=n*V,E+=n*Y,v+=n*Z,B+=n*W,S+=n*J,l+=(n=t[6])*M,y+=n*L,f+=n*F,g+=n*N,p+=n*O,d+=n*_,A+=n*H,w+=n*z,m+=n*G,b+=n*q,k+=n*j,E+=n*V,v+=n*Y,B+=n*Z,S+=n*W,I+=n*J,y+=(n=t[7])*M,f+=n*L,g+=n*F,p+=n*N,d+=n*O,A+=n*_,w+=n*H,m+=n*z,b+=n*G,k+=n*q,E+=n*j,v+=n*V,B+=n*Y,S+=n*Z,I+=n*W,K+=n*J,f+=(n=t[8])*M,g+=n*L,p+=n*F,d+=n*N,A+=n*O,w+=n*_,m+=n*H,b+=n*z,k+=n*G,E+=n*q,v+=n*j,B+=n*V,S+=n*Y,I+=n*Z,K+=n*W,C+=n*J,g+=(n=t[9])*M,p+=n*L,d+=n*F,A+=n*N,w+=n*O,m+=n*_,b+=n*H,k+=n*z,E+=n*G,v+=n*q,B+=n*j,S+=n*V,I+=n*Y,K+=n*Z,C+=n*W,U+=n*J,p+=(n=t[10])*M,d+=n*L,A+=n*F,w+=n*N,m+=n*O,b+=n*_,k+=n*H,E+=n*z,v+=n*G,B+=n*q,S+=n*j,I+=n*V,K+=n*Y,C+=n*Z,U+=n*W,P+=n*J,d+=(n=t[11])*M,A+=n*L,w+=n*F,m+=n*N,b+=n*O,k+=n*_,E+=n*H,v+=n*z,B+=n*G,S+=n*q,I+=n*j,K+=n*V,C+=n*Y,U+=n*Z,P+=n*W,D+=n*J,A+=(n=t[12])*M,w+=n*L,m+=n*F,b+=n*N,k+=n*O,E+=n*_,v+=n*H,B+=n*z,S+=n*G,I+=n*q,K+=n*j,C+=n*V,U+=n*Y,P+=n*Z,D+=n*W,x+=n*J,w+=(n=t[13])*M,m+=n*L,b+=n*F,k+=n*N,E+=n*O,v+=n*_,B+=n*H,S+=n*z,I+=n*G,K+=n*q,C+=n*j,U+=n*V,P+=n*Y,D+=n*Z,x+=n*W,Q+=n*J,m+=(n=t[14])*M,b+=n*L,k+=n*F,E+=n*N,v+=n*O,B+=n*_,S+=n*H,I+=n*z,K+=n*G,C+=n*q,U+=n*j,P+=n*V,D+=n*Y,x+=n*Z,Q+=n*W,R+=n*J,b+=(n=t[15])*M,a+=38*(E+=n*F),o+=38*(v+=n*N),c+=38*(B+=n*O),u+=38*(S+=n*_),h+=38*(I+=n*H),l+=38*(K+=n*z),y+=38*(C+=n*G),f+=38*(U+=n*q),g+=38*(P+=n*j),p+=38*(D+=n*V),d+=38*(x+=n*Y),A+=38*(Q+=n*Z),w+=38*(R+=n*W),m+=38*(T+=n*J),s=(n=(s+=38*(k+=n*L))+(i=1)+65535)-65536*(i=Math.floor(n/65536)),a=(n=a+i+65535)-65536*(i=Math.floor(n/65536)),o=(n=o+i+65535)-65536*(i=Math.floor(n/65536)),c=(n=c+i+65535)-65536*(i=Math.floor(n/65536)),u=(n=u+i+65535)-65536*(i=Math.floor(n/65536)),h=(n=h+i+65535)-65536*(i=Math.floor(n/65536)),l=(n=l+i+65535)-65536*(i=Math.floor(n/65536)),y=(n=y+i+65535)-65536*(i=Math.floor(n/65536)),f=(n=f+i+65535)-65536*(i=Math.floor(n/65536)),g=(n=g+i+65535)-65536*(i=Math.floor(n/65536)),p=(n=p+i+65535)-65536*(i=Math.floor(n/65536)),d=(n=d+i+65535)-65536*(i=Math.floor(n/65536)),A=(n=A+i+65535)-65536*(i=Math.floor(n/65536)),w=(n=w+i+65535)-65536*(i=Math.floor(n/65536)),m=(n=m+i+65535)-65536*(i=Math.floor(n/65536)),b=(n=b+i+65535)-65536*(i=Math.floor(n/65536)),s=(n=(s+=i-1+37*(i-1))+(i=1)+65535)-65536*(i=Math.floor(n/65536)),a=(n=a+i+65535)-65536*(i=Math.floor(n/65536)),o=(n=o+i+65535)-65536*(i=Math.floor(n/65536)),c=(n=c+i+65535)-65536*(i=Math.floor(n/65536)),u=(n=u+i+65535)-65536*(i=Math.floor(n/65536)),h=(n=h+i+65535)-65536*(i=Math.floor(n/65536)),l=(n=l+i+65535)-65536*(i=Math.floor(n/65536)),y=(n=y+i+65535)-65536*(i=Math.floor(n/65536)),f=(n=f+i+65535)-65536*(i=Math.floor(n/65536)),g=(n=g+i+65535)-65536*(i=Math.floor(n/65536)),p=(n=p+i+65535)-65536*(i=Math.floor(n/65536)),d=(n=d+i+65535)-65536*(i=Math.floor(n/65536)),A=(n=A+i+65535)-65536*(i=Math.floor(n/65536)),w=(n=w+i+65535)-65536*(i=Math.floor(n/65536)),m=(n=m+i+65535)-65536*(i=Math.floor(n/65536)),b=(n=b+i+65535)-65536*(i=Math.floor(n/65536)),s+=i-1+37*(i-1),e[0]=s,e[1]=a,e[2]=o,e[3]=c,e[4]=u,e[5]=h,e[6]=l,e[7]=y,e[8]=f,e[9]=g,e[10]=p,e[11]=d,e[12]=A,e[13]=w,e[14]=m,e[15]=b}function bt(e,t){mt(e,t,t)}function kt(e,t){var r,n=Je();for(r=0;r<16;r++)n[r]=t[r];for(r=253;r>=0;r--)bt(n,n),2!==r&&4!==r&&mt(n,n,t);for(r=0;r<16;r++)e[r]=n[r]}function Et(e,t,r){var n,i,s=new Uint8Array(32),a=new Float64Array(80),o=Je(),c=Je(),u=Je(),h=Je(),l=Je(),y=Je();for(i=0;i<31;i++)s[i]=t[i];for(s[31]=127&t[31]|64,s[0]&=248,dt(a,r),i=0;i<16;i++)c[i]=a[i],h[i]=o[i]=u[i]=0;for(o[0]=h[0]=1,i=254;i>=0;--i)yt(o,c,n=s[i>>>3]>>>(7&i)&1),yt(u,h,n),At(l,o,u),wt(o,o,u),At(u,c,h),wt(c,c,h),bt(h,l),bt(y,o),mt(o,u,o),mt(u,c,l),At(l,o,u),wt(o,o,u),bt(c,o),wt(u,h,y),mt(o,u,rt),At(o,o,h),mt(u,u,o),mt(o,h,y),mt(h,c,a),bt(c,l),yt(o,c,n),yt(u,h,n);for(i=0;i<16;i++)a[i+16]=o[i],a[i+32]=u[i],a[i+48]=c[i],a[i+64]=h[i];var f=a.subarray(32),g=a.subarray(16);return kt(f,f),mt(g,g,f),ft(e,g),0}function vt(e,t){return Et(e,t,$e)}var Bt=[1116352408,3609767458,1899447441,602891725,3049323471,3964484399,3921009573,2173295548,961987163,4081628472,1508970993,3053834265,2453635748,2937671579,2870763221,3664609560,3624381080,2734883394,310598401,1164996542,607225278,1323610764,1426881987,3590304994,1925078388,4068182383,2162078206,991336113,2614888103,633803317,3248222580,3479774868,3835390401,2666613458,4022224774,944711139,264347078,2341262773,604807628,2007800933,770255983,1495990901,1249150122,1856431235,1555081692,3175218132,1996064986,2198950837,2554220882,3999719339,2821834349,766784016,2952996808,2566594879,3210313671,3203337956,3336571891,1034457026,3584528711,2466948901,113926993,3758326383,338241895,168717936,666307205,1188179964,773529912,1546045734,1294757372,1522805485,1396182291,2643833823,1695183700,2343527390,1986661051,1014477480,2177026350,1206759142,2456956037,344077627,2730485921,1290863460,2820302411,3158454273,3259730800,3505952657,3345764771,106217008,3516065817,3606008344,3600352804,1432725776,4094571909,1467031594,275423344,851169720,430227734,3100823752,506948616,1363258195,659060556,3750685593,883997877,3785050280,958139571,3318307427,1322822218,3812723403,1537002063,2003034995,1747873779,3602036899,1955562222,1575990012,2024104815,1125592928,2227730452,2716904306,2361852424,442776044,2428436474,593698344,2756734187,3733110249,3204031479,2999351573,3329325298,3815920427,3391569614,3928383900,3515267271,566280711,3940187606,3454069534,4118630271,4000239992,116418474,1914138554,174292421,2731055270,289380356,3203993006,460393269,320620315,685471733,587496836,852142971,1086792851,1017036298,365543100,1126000580,2618297676,1288033470,3409855158,1501505948,4234509866,1607167915,987167468,1816402316,1246189591];function St(e,t,r,n){for(var i,s,a,o,c,u,h,l,y,f,g,p,d,A,w,m,b,k,E,v,B,S,I,K,C,U,P=new Int32Array(16),D=new Int32Array(16),x=e[0],Q=e[1],R=e[2],T=e[3],M=e[4],L=e[5],F=e[6],N=e[7],O=t[0],_=t[1],H=t[2],z=t[3],G=t[4],q=t[5],j=t[6],V=t[7],Y=0;n>=128;){for(E=0;E<16;E++)v=8*E+Y,P[E]=r[v+0]<<24|r[v+1]<<16|r[v+2]<<8|r[v+3],D[E]=r[v+4]<<24|r[v+5]<<16|r[v+6]<<8|r[v+7];for(E=0;E<80;E++)if(i=x,s=Q,a=R,o=T,c=M,u=L,h=F,N,y=O,f=_,g=H,p=z,d=G,A=q,w=j,V,I=65535&(S=V),K=S>>>16,C=65535&(B=N),U=B>>>16,I+=65535&(S=(G>>>14|M<<18)^(G>>>18|M<<14)^(M>>>9|G<<23)),K+=S>>>16,C+=65535&(B=(M>>>14|G<<18)^(M>>>18|G<<14)^(G>>>9|M<<23)),U+=B>>>16,I+=65535&(S=G&q^~G&j),K+=S>>>16,C+=65535&(B=M&L^~M&F),U+=B>>>16,B=Bt[2*E],I+=65535&(S=Bt[2*E+1]),K+=S>>>16,C+=65535&B,U+=B>>>16,B=P[E%16],K+=(S=D[E%16])>>>16,C+=65535&B,U+=B>>>16,C+=(K+=(I+=65535&S)>>>16)>>>16,I=65535&(S=k=65535&I|K<<16),K=S>>>16,C=65535&(B=b=65535&C|(U+=C>>>16)<<16),U=B>>>16,I+=65535&(S=(O>>>28|x<<4)^(x>>>2|O<<30)^(x>>>7|O<<25)),K+=S>>>16,C+=65535&(B=(x>>>28|O<<4)^(O>>>2|x<<30)^(O>>>7|x<<25)),U+=B>>>16,K+=(S=O&_^O&H^_&H)>>>16,C+=65535&(B=x&Q^x&R^Q&R),U+=B>>>16,l=65535&(C+=(K+=(I+=65535&S)>>>16)>>>16)|(U+=C>>>16)<<16,m=65535&I|K<<16,I=65535&(S=p),K=S>>>16,C=65535&(B=o),U=B>>>16,K+=(S=k)>>>16,C+=65535&(B=b),U+=B>>>16,Q=i,R=s,T=a,M=o=65535&(C+=(K+=(I+=65535&S)>>>16)>>>16)|(U+=C>>>16)<<16,L=c,F=u,N=h,x=l,_=y,H=f,z=g,G=p=65535&I|K<<16,q=d,j=A,V=w,O=m,E%16==15)for(v=0;v<16;v++)B=P[v],I=65535&(S=D[v]),K=S>>>16,C=65535&B,U=B>>>16,B=P[(v+9)%16],I+=65535&(S=D[(v+9)%16]),K+=S>>>16,C+=65535&B,U+=B>>>16,b=P[(v+1)%16],I+=65535&(S=((k=D[(v+1)%16])>>>1|b<<31)^(k>>>8|b<<24)^(k>>>7|b<<25)),K+=S>>>16,C+=65535&(B=(b>>>1|k<<31)^(b>>>8|k<<24)^b>>>7),U+=B>>>16,b=P[(v+14)%16],K+=(S=((k=D[(v+14)%16])>>>19|b<<13)^(b>>>29|k<<3)^(k>>>6|b<<26))>>>16,C+=65535&(B=(b>>>19|k<<13)^(k>>>29|b<<3)^b>>>6),U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,P[v]=65535&C|U<<16,D[v]=65535&I|K<<16;I=65535&(S=O),K=S>>>16,C=65535&(B=x),U=B>>>16,B=e[0],K+=(S=t[0])>>>16,C+=65535&B,U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,e[0]=x=65535&C|U<<16,t[0]=O=65535&I|K<<16,I=65535&(S=_),K=S>>>16,C=65535&(B=Q),U=B>>>16,B=e[1],K+=(S=t[1])>>>16,C+=65535&B,U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,e[1]=Q=65535&C|U<<16,t[1]=_=65535&I|K<<16,I=65535&(S=H),K=S>>>16,C=65535&(B=R),U=B>>>16,B=e[2],K+=(S=t[2])>>>16,C+=65535&B,U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,e[2]=R=65535&C|U<<16,t[2]=H=65535&I|K<<16,I=65535&(S=z),K=S>>>16,C=65535&(B=T),U=B>>>16,B=e[3],K+=(S=t[3])>>>16,C+=65535&B,U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,e[3]=T=65535&C|U<<16,t[3]=z=65535&I|K<<16,I=65535&(S=G),K=S>>>16,C=65535&(B=M),U=B>>>16,B=e[4],K+=(S=t[4])>>>16,C+=65535&B,U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,e[4]=M=65535&C|U<<16,t[4]=G=65535&I|K<<16,I=65535&(S=q),K=S>>>16,C=65535&(B=L),U=B>>>16,B=e[5],K+=(S=t[5])>>>16,C+=65535&B,U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,e[5]=L=65535&C|U<<16,t[5]=q=65535&I|K<<16,I=65535&(S=j),K=S>>>16,C=65535&(B=F),U=B>>>16,B=e[6],K+=(S=t[6])>>>16,C+=65535&B,U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,e[6]=F=65535&C|U<<16,t[6]=j=65535&I|K<<16,I=65535&(S=V),K=S>>>16,C=65535&(B=N),U=B>>>16,B=e[7],K+=(S=t[7])>>>16,C+=65535&B,U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,e[7]=N=65535&C|U<<16,t[7]=V=65535&I|K<<16,Y+=128,n-=128}return n}function It(e,t,r){var n,i=new Int32Array(8),s=new Int32Array(8),a=new Uint8Array(256),o=r;for(i[0]=1779033703,i[1]=3144134277,i[2]=1013904242,i[3]=2773480762,i[4]=1359893119,i[5]=2600822924,i[6]=528734635,i[7]=1541459225,s[0]=4089235720,s[1]=2227873595,s[2]=4271175723,s[3]=1595750129,s[4]=2917565137,s[5]=725511199,s[6]=4215389547,s[7]=327033209,St(i,s,t,r),r%=128,n=0;n<r;n++)a[n]=t[o-r+n];for(a[r]=128,a[(r=256-128*(r<112?1:0))-9]=0,ct(a,r-8,o/536870912|0,o<<3),St(i,s,a,r),n=0;n<8;n++)ct(e,8*n,i[n],s[n]);return 0}function Kt(e,t){var r=Je(),n=Je(),i=Je(),s=Je(),a=Je(),o=Je(),c=Je(),u=Je(),h=Je();wt(r,e[1],e[0]),wt(h,t[1],t[0]),mt(r,r,h),At(n,e[0],e[1]),At(h,t[0],t[1]),mt(n,n,h),mt(i,e[3],t[3]),mt(i,i,it),mt(s,e[2],t[2]),At(s,s,s),wt(a,n,r),wt(o,s,i),At(c,s,i),At(u,n,r),mt(e[0],a,o),mt(e[1],u,c),mt(e[2],c,o),mt(e[3],a,u)}function Ct(e,t,r){var n;for(n=0;n<4;n++)yt(e[n],t[n],r)}function Ut(e,t){var r=Je(),n=Je(),i=Je();kt(i,t[2]),mt(r,t[0],i),mt(n,t[1],i),ft(e,n),e[31]^=pt(r)<<7}function Pt(e,t,r){var n,i;for(ht(e[0],et),ht(e[1],tt),ht(e[2],tt),ht(e[3],et),i=255;i>=0;--i)Ct(e,t,n=r[i/8|0]>>(7&i)&1),Kt(t,e),Kt(e,e),Ct(e,t,n)}function Dt(e,t){var r=[Je(),Je(),Je(),Je()];ht(r[0],st),ht(r[1],at),ht(r[2],tt),mt(r[3],st,at),Pt(e,r,t)}function xt(e,t,r){var n,i=new Uint8Array(64),s=[Je(),Je(),Je(),Je()];for(r||Xe(t,32),It(i,t,32),i[0]&=248,i[31]&=127,i[31]|=64,Dt(s,i),Ut(e,s),n=0;n<32;n++)t[n+32]=e[n];return 0}var Qt=new Float64Array([237,211,245,92,26,99,18,88,214,156,247,162,222,249,222,20,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,16]);function Rt(e,t){var r,n,i,s;for(n=63;n>=32;--n){for(r=0,i=n-32,s=n-12;i<s;++i)t[i]+=r-16*t[n]*Qt[i-(n-32)],r=Math.floor((t[i]+128)/256),t[i]-=256*r;t[i]+=r,t[n]=0}for(r=0,i=0;i<32;i++)t[i]+=r-(t[31]>>4)*Qt[i],r=t[i]>>8,t[i]&=255;for(i=0;i<32;i++)t[i]-=r*Qt[i];for(n=0;n<32;n++)t[n+1]+=t[n]>>8,e[n]=255&t[n]}function Tt(e){var t,r=new Float64Array(64);for(t=0;t<64;t++)r[t]=e[t];for(t=0;t<64;t++)e[t]=0;Rt(e,r)}function Mt(e,t){var r=Je(),n=Je(),i=Je(),s=Je(),a=Je(),o=Je(),c=Je();return ht(e[2],tt),dt(e[1],t),bt(i,e[1]),mt(s,i,nt),wt(i,i,e[2]),At(s,e[2],s),bt(a,s),bt(o,a),mt(c,o,a),mt(r,c,i),mt(r,r,s),function(e,t){var r,n=Je();for(r=0;r<16;r++)n[r]=t[r];for(r=250;r>=0;r--)bt(n,n),1!==r&&mt(n,n,t);for(r=0;r<16;r++)e[r]=n[r]}(r,r),mt(r,r,i),mt(r,r,s),mt(r,r,s),mt(e[0],r,s),bt(n,e[0]),mt(n,n,s),gt(n,i)&&mt(e[0],e[0],ot),bt(n,e[0]),mt(n,n,s),gt(n,i)?-1:(pt(e[0])===t[31]>>7&&wt(e[0],et,e[0]),mt(e[3],e[0],e[1]),0)}var Lt=64;function Ft(){for(var e=0;e<arguments.length;e++)if(!(arguments[e]instanceof Uint8Array))throw new TypeError("unexpected type, use Uint8Array")}We.scalarMult=function(e,t){if(Ft(e,t),32!==e.length)throw Error("bad n size");if(32!==t.length)throw Error("bad p size");var r=new Uint8Array(32);return Et(r,e,t),r},We.box={},We.box.keyPair=function(){var e=new Uint8Array(32),t=new Uint8Array(32);return function(e,t){Xe(t,32),vt(e,t)}(e,t),{publicKey:e,secretKey:t}},We.box.keyPair.fromSecretKey=function(e){if(Ft(e),32!==e.length)throw Error("bad secret key size");var t=new Uint8Array(32);return vt(t,e),{publicKey:t,secretKey:new Uint8Array(e)}},We.sign=function(e,t){if(Ft(e,t),64!==t.length)throw Error("bad secret key size");var r=new Uint8Array(Lt+e.length);return function(e,t,r,n){var i,s,a=new Uint8Array(64),o=new Uint8Array(64),c=new Uint8Array(64),u=new Float64Array(64),h=[Je(),Je(),Je(),Je()];It(a,n,32),a[0]&=248,a[31]&=127,a[31]|=64;var l=r+64;for(i=0;i<r;i++)e[64+i]=t[i];for(i=0;i<32;i++)e[32+i]=a[32+i];for(It(c,e.subarray(32),r+32),Tt(c),Dt(h,c),Ut(e,h),i=32;i<64;i++)e[i]=n[i];for(It(o,e,r+64),Tt(o),i=0;i<64;i++)u[i]=0;for(i=0;i<32;i++)u[i]=c[i];for(i=0;i<32;i++)for(s=0;s<32;s++)u[i+s]+=o[i]*a[s];Rt(e.subarray(32),u)}(r,e,e.length,t),r},We.sign.detached=function(e,t){for(var r=We.sign(e,t),n=new Uint8Array(Lt),i=0;i<n.length;i++)n[i]=r[i];return n},We.sign.detached.verify=function(e,t,r){if(Ft(e,t,r),t.length!==Lt)throw Error("bad signature size");if(32!==r.length)throw Error("bad public key size");var n,i=new Uint8Array(Lt+e.length),s=new Uint8Array(Lt+e.length);for(n=0;n<Lt;n++)i[n]=t[n];for(n=0;n<e.length;n++)i[n+Lt]=e[n];return function(e,t,r,n){var i,s=new Uint8Array(32),a=new Uint8Array(64),o=[Je(),Je(),Je(),Je()],c=[Je(),Je(),Je(),Je()];if(r<64)return-1;if(Mt(c,n))return-1;for(i=0;i<r;i++)e[i]=t[i];for(i=0;i<32;i++)e[i+32]=n[i];if(It(a,e,r),Tt(a),Pt(o,c,a),Dt(c,t.subarray(32)),Kt(o,c),Ut(s,o),r-=64,ut(t,0,s,0)){for(i=0;i<r;i++)e[i]=0;return-1}for(i=0;i<r;i++)e[i]=t[i+64];return r}(s,i,i.length,r)>=0},We.sign.keyPair=function(){var e=new Uint8Array(32),t=new Uint8Array(64);return xt(e,t),{publicKey:e,secretKey:t}},We.sign.keyPair.fromSecretKey=function(e){if(Ft(e),64!==e.length)throw Error("bad secret key size");for(var t=new Uint8Array(32),r=0;r<t.length;r++)t[r]=e[32+r];return{publicKey:t,secretKey:new Uint8Array(e)}},We.sign.keyPair.fromSeed=function(e){if(Ft(e),32!==e.length)throw Error("bad seed size");for(var t=new Uint8Array(32),r=new Uint8Array(64),n=0;n<32;n++)r[n]=e[n];return xt(t,r,!0),{publicKey:t,secretKey:r}},We.setPRNG=function(e){Xe=e},function(){if(Ze&&Ze.getRandomValues){We.setPRNG((function(e,t){var r,n=new Uint8Array(t);for(r=0;r<t;r+=65536)Ze.getRandomValues(n.subarray(r,r+Math.min(t-r,65536)));for(r=0;r<t;r++)e[r]=n[r];!function(e){for(var t=0;t<e.length;t++)e[t]=0}(n)}))}}();const Nt={"2a8648ce3d030107":Q.curve.nistP256,"2b81040022":Q.curve.nistP384,"2b81040023":Q.curve.nistP521,"2b8104000a":Q.curve.secp256k1,"2b06010401da470f01":Q.curve.ed25519Legacy,"2b060104019755010501":Q.curve.curve25519Legacy,"2b2403030208010107":Q.curve.brainpoolP256r1,"2b240303020801010b":Q.curve.brainpoolP384r1,"2b240303020801010d":Q.curve.brainpoolP512r1};class Ot{constructor(e){if(e instanceof Ot)this.oid=e.oid;else if(M.isArray(e)||M.isUint8Array(e)){if(6===(e=new Uint8Array(e))[0]){if(e[1]!==e.length-2)throw Error("Length mismatch in DER encoded oid");e=e.subarray(2)}this.oid=e}else this.oid=""}read(e){if(e.length>=1){const t=e[0];if(e.length>=1+t)return this.oid=e.subarray(1,1+t),1+this.oid.length}throw Error("Invalid oid")}write(){return M.concatUint8Array([new Uint8Array([this.oid.length]),this.oid])}toHex(){return M.uint8ArrayToHex(this.oid)}getName(){const e=Nt[this.toHex()];if(!e)throw Error("Unknown curve object identifier.");return e}}function _t(e){let t,r=0;const n=e[0];return n<192?([r]=e,t=1):n<255?(r=(e[0]-192<<8)+e[1]+192,t=2):255===n&&(r=M.readNumber(e.subarray(1,5)),t=5),{len:r,offset:t}}function Ht(e){return e<192?new Uint8Array([e]):e>191&&e<8384?new Uint8Array([192+(e-192>>8),e-192&255]):M.concatUint8Array([new Uint8Array([255]),M.writeNumber(e,4)])}function zt(e){if(e<0||e>30)throw Error("Partial Length power must be between 1 and 30");return new Uint8Array([224+e])}function Gt(e){return new Uint8Array([192|e])}function qt(e,t){return M.concatUint8Array([Gt(e),Ht(t)])}function jt(e){return[Q.packet.literalData,Q.packet.compressedData,Q.packet.symmetricallyEncryptedData,Q.packet.symEncryptedIntegrityProtectedData,Q.packet.aeadEncryptedData].includes(e)}async function Vt(e,t){const r=P(e);let n,i;try{const s=await r.peekBytes(2);if(!s||s.length<2||!(128&s[0]))throw Error("Error during parsing. This message / key probably does not conform to a valid OpenPGP format.");const a=await r.readByte();let o,c,u=-1,h=-1;h=0,64&a&&(h=1),h?u=63&a:(u=(63&a)>>2,c=3&a);const l=jt(u);let y,f=null;if(l){if("array"===M.isStream(e)){const e=new ArrayStream;n=D(e),f=e}else{const e=new TransformStream;n=D(e.writable),f=e.readable}i=t({tag:u,packet:f})}else f=[];do{if(h){const e=await r.readByte();if(y=!1,e<192)o=e;else if(e>=192&&e<224)o=(e-192<<8)+await r.readByte()+192;else if(e>223&&e<255){if(o=1<<(31&e),y=!0,!l)throw new TypeError("This packet type does not support partial lengths.")}else o=await r.readByte()<<24|await r.readByte()<<16|await r.readByte()<<8|await r.readByte()}else switch(c){case 0:o=await r.readByte();break;case 1:o=await r.readByte()<<8|await r.readByte();break;case 2:o=await r.readByte()<<24|await r.readByte()<<16|await r.readByte()<<8|await r.readByte();break;default:o=1/0}if(o>0){let e=0;for(;;){n&&await n.ready;const{done:t,value:i}=await r.read();if(t){if(o===1/0)break;throw Error("Unexpected end of packet")}const s=o===1/0?i:i.subarray(0,o-e);if(n?await n.write(s):f.push(s),e+=i.length,e>=o){r.unshift(i.subarray(o-e+i.length));break}}}}while(y);const g=await r.peekBytes(l?1/0:2);return n?(await n.ready,await n.close()):(f=M.concatUint8Array(f),await t({tag:u,packet:f})),!g||!g.length}catch(e){if(n)return await n.abort(e),!0;throw e}finally{n&&await i,r.releaseLock()}}class Yt extends Error{constructor(...e){super(...e),Error.captureStackTrace&&Error.captureStackTrace(this,Yt),this.name="UnsupportedError"}}class Zt extends Yt{constructor(...e){super(...e),Error.captureStackTrace&&Error.captureStackTrace(this,Yt),this.name="UnknownPacketError"}}class Wt{constructor(e,t){this.tag=e,this.rawContent=t}write(){return this.rawContent}}
+/*! OpenPGP.js v6.1.1-patch.2 - 2025-05-14 - this is LGPL licensed code, see LICENSE/our website https://openpgpjs.org/ for more information. */
+const e="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self?self:{};function t(e,t){return t.forEach((function(t){t&&"string"!=typeof t&&!Array.isArray(t)&&Object.keys(t).forEach((function(r){if("default"!==r&&!(r in e)){var n=Object.getOwnPropertyDescriptor(t,r);Object.defineProperty(e,r,n.get?n:{enumerable:!0,get:function(){return t[r]}})}}))})),Object.freeze(e)}const r=Symbol("doneWritingPromise"),n=Symbol("doneWritingResolve"),i=Symbol("doneWritingReject"),s=Symbol("readingIndex");class ArrayStream extends Array{constructor(){super(),Object.setPrototypeOf(this,ArrayStream.prototype),this[r]=new Promise(((e,t)=>{this[n]=e,this[i]=t})),this[r].catch((()=>{}))}}function a(e){return e&&e.getReader&&Array.isArray(e)}function o(e){if(!a(e)){const t=e.getWriter(),r=t.releaseLock;return t.releaseLock=()=>{t.closed.catch((function(){})),r.call(t)},t}this.stream=e}function c(t){if(a(t))return"array";if(e.ReadableStream&&e.ReadableStream.prototype.isPrototypeOf(t))return"web";if(t&&!(e.ReadableStream&&t instanceof e.ReadableStream)&&"function"==typeof t._read&&"object"==typeof t._readableState)throw Error("Native Node streams are no longer supported: please manually convert the stream to a WebStream, using e.g. `stream.Readable.toWeb`");return!(!t||!t.getReader)&&"web-like"}function u(e){return Uint8Array.prototype.isPrototypeOf(e)}function h(e){if(1===e.length)return e[0];let t=0;for(let r=0;r<e.length;r++){if(!u(e[r]))throw Error("concatUint8Array: Data must be in the form of a Uint8Array");t+=e[r].length}const r=new Uint8Array(t);let n=0;return e.forEach((function(e){r.set(e,n),n+=e.length})),r}ArrayStream.prototype.getReader=function(){return void 0===this[s]&&(this[s]=0),{read:async()=>(await this[r],this[s]===this.length?{value:void 0,done:!0}:{value:this[this[s]++],done:!1})}},ArrayStream.prototype.readToEnd=async function(e){await this[r];const t=e(this.slice(this[s]));return this.length=0,t},ArrayStream.prototype.clone=function(){const e=new ArrayStream;return e[r]=this[r].then((()=>{e.push(...this)})),e},o.prototype.write=async function(e){this.stream.push(e)},o.prototype.close=async function(){this.stream[n]()},o.prototype.abort=async function(e){return this.stream[i](e),e},o.prototype.releaseLock=function(){},"object"==typeof e.process&&e.process.versions;const l=new WeakSet,y=Symbol("externalBuffer");function f(e){if(this.stream=e,e[y]&&(this[y]=e[y].slice()),a(e)){const t=e.getReader();return this._read=t.read.bind(t),this._releaseLock=()=>{},void(this._cancel=()=>{})}if(c(e)){const t=e.getReader();return this._read=t.read.bind(t),this._releaseLock=()=>{t.closed.catch((function(){})),t.releaseLock()},void(this._cancel=t.cancel.bind(t))}let t=!1;this._read=async()=>t||l.has(e)?{value:void 0,done:!0}:(t=!0,{value:e,done:!1}),this._releaseLock=()=>{if(t)try{l.add(e)}catch(e){}}}function g(e){return c(e)?e:new ReadableStream({start(t){t.enqueue(e),t.close()}})}function p(e){if(c(e))return e;const t=new ArrayStream;return(async()=>{const r=D(t);await r.write(e),await r.close()})(),t}function d(e){return e.some((e=>c(e)&&!a(e)))?function(e){e=e.map(g);const t=m((async function(e){await Promise.all(n.map((t=>C(t,e))))}));let r=Promise.resolve();const n=e.map(((n,i)=>k(n,((n,s)=>(r=r.then((()=>A(n,t.writable,{preventClose:i!==e.length-1}))),r)))));return t.readable}(e):e.some((e=>a(e)))?function(e){const t=new ArrayStream;let r=Promise.resolve();return e.forEach(((n,i)=>(r=r.then((()=>A(n,t,{preventClose:i!==e.length-1}))),r))),t}(e):"string"==typeof e[0]?e.join(""):h(e)}async function A(e,t,{preventClose:r=!1,preventAbort:n=!1,preventCancel:i=!1}={}){if(c(e)&&!a(e)){e=g(e);try{if(e[y]){const r=D(t);for(let t=0;t<e[y].length;t++)await r.ready,await r.write(e[y][t]);r.releaseLock()}await e.pipeTo(t,{preventClose:r,preventAbort:n,preventCancel:i})}catch(e){}return}const s=P(e=p(e)),o=D(t);try{for(;;){await o.ready;const{done:e,value:t}=await s.read();if(e){r||await o.close();break}await o.write(t)}}catch(e){n||await o.abort(e)}finally{s.releaseLock(),o.releaseLock()}}function w(e,t){const r=new TransformStream(t);return A(e,r.writable),r.readable}function m(e){let t,r,n,i=!1,s=!1;return{readable:new ReadableStream({start(e){n=e},pull(){t?t():i=!0},async cancel(t){s=!0,e&&await e(t),r&&r(t)}},{highWaterMark:0}),writable:new WritableStream({write:async function(e){if(s)throw Error("Stream is cancelled");n.enqueue(e),i?i=!1:(await new Promise(((e,n)=>{t=e,r=n})),t=null,r=null)},close:n.close.bind(n),abort:n.error.bind(n)})}}function b(e,t=()=>{},r=()=>{}){if(a(e)){const n=new ArrayStream;return(async()=>{const i=D(n);try{const n=await K(e),s=t(n),a=r();let o;o=void 0!==s&&void 0!==a?d([s,a]):void 0!==s?s:a,await i.write(o),await i.close()}catch(e){await i.abort(e)}})(),n}if(c(e))return w(e,{async transform(e,r){try{const n=await t(e);void 0!==n&&r.enqueue(n)}catch(e){r.error(e)}},async flush(e){try{const t=await r();void 0!==t&&e.enqueue(t)}catch(t){e.error(t)}}});const n=t(e),i=r();return void 0!==n&&void 0!==i?d([n,i]):void 0!==n?n:i}function k(e,t){if(c(e)&&!a(e)){let r;const n=new TransformStream({start(e){r=e}}),i=A(e,n.writable),s=m((async function(e){r.error(e),await i,await new Promise(setTimeout)}));return t(n.readable,s.writable),s.readable}e=p(e);const r=new ArrayStream;return t(e,r),r}function E(e,t){let r;const n=k(e,((e,i)=>{const s=P(e);s.remainder=()=>(s.releaseLock(),A(e,i),n),r=t(s)}));return r}function v(e){if(a(e))return e.clone();if(c(e)){const t=function(e){if(a(e))throw Error("ArrayStream cannot be tee()d, use clone() instead");if(c(e)){const t=g(e).tee();return t[0][y]=t[1][y]=e[y],t}return[I(e),I(e)]}(e);return S(e,t[0]),t[1]}return I(e)}function B(e){return a(e)?v(e):c(e)?new ReadableStream({start(t){const r=k(e,(async(e,r)=>{const n=P(e),i=D(r);try{for(;;){await i.ready;const{done:e,value:r}=await n.read();if(e){try{t.close()}catch(e){}return void await i.close()}try{t.enqueue(r)}catch(e){}await i.write(r)}}catch(e){t.error(e),await i.abort(e)}}));S(e,r)}}):I(e)}function S(e,t){Object.entries(Object.getOwnPropertyDescriptors(e.constructor.prototype)).forEach((([r,n])=>{"constructor"!==r&&(n.value?n.value=n.value.bind(t):n.get=n.get.bind(t),Object.defineProperty(e,r,n))}))}function I(e,t=0,r=1/0){if(a(e))throw Error("Not implemented");if(c(e)){if(t>=0&&r>=0){let n=0;return w(e,{transform(e,i){n<r?(n+e.length>=t&&i.enqueue(I(e,Math.max(t-n,0),r-n)),n+=e.length):i.terminate()}})}if(t<0&&(r<0||r===1/0)){let n=[];return b(e,(e=>{e.length>=-t?n=[e]:n.push(e)}),(()=>I(d(n),t,r)))}if(0===t&&r<0){let n;return b(e,(e=>{const i=n?d([n,e]):e;if(i.length>=-r)return n=I(i,r),I(i,t,r);n=i}))}return console.warn(`stream.slice(input, ${t}, ${r}) not implemented efficiently.`),U((async()=>I(await K(e),t,r)))}return e[y]&&(e=d(e[y].concat([e]))),u(e)?e.subarray(t,r===1/0?e.length:r):e.slice(t,r)}async function K(e,t=d){return a(e)?e.readToEnd(t):c(e)?P(e).readToEnd(t):e}async function C(e,t){if(c(e)){if(e.cancel){const r=await e.cancel(t);return await new Promise(setTimeout),r}if(e.destroy)return e.destroy(t),await new Promise(setTimeout),t}}function U(e){const t=new ArrayStream;return(async()=>{const r=D(t);try{await r.write(await e()),await r.close()}catch(e){await r.abort(e)}})(),t}function P(e){return new f(e)}function D(e){return new o(e)}f.prototype.read=async function(){if(this[y]&&this[y].length){return{done:!1,value:this[y].shift()}}return this._read()},f.prototype.releaseLock=function(){this[y]&&(this.stream[y]=this[y]),this._releaseLock()},f.prototype.cancel=function(e){return this._cancel(e)},f.prototype.readLine=async function(){let e,t=[];for(;!e;){let{done:r,value:n}=await this.read();if(n+="",r)return t.length?d(t):void 0;const i=n.indexOf("\n")+1;i&&(e=d(t.concat(n.substr(0,i))),t=[]),i!==n.length&&t.push(n.substr(i))}return this.unshift(...t),e},f.prototype.readByte=async function(){const{done:e,value:t}=await this.read();if(e)return;const r=t[0];return this.unshift(I(t,1)),r},f.prototype.readBytes=async function(e){const t=[];let r=0;for(;;){const{done:n,value:i}=await this.read();if(n)return t.length?d(t):void 0;if(t.push(i),r+=i.length,r>=e){const r=d(t);return this.unshift(I(r,e)),I(r,0,e)}}},f.prototype.peekBytes=async function(e){const t=await this.readBytes(e);return this.unshift(t),t},f.prototype.unshift=function(...e){this[y]||(this[y]=[]),1===e.length&&u(e[0])&&this[y].length&&e[0].length&&this[y][0].byteOffset>=e[0].length?this[y][0]=new Uint8Array(this[y][0].buffer,this[y][0].byteOffset-e[0].length,this[y][0].byteLength+e[0].length):this[y].unshift(...e.filter((e=>e&&e.length)))},f.prototype.readToEnd=async function(e=d){const t=[];for(;;){const{done:e,value:r}=await this.read();if(e)break;t.push(r)}return e(t)};const x=Symbol("byValue");var Q={curve:{nistP256:"nistP256",p256:"nistP256",nistP384:"nistP384",p384:"nistP384",nistP521:"nistP521",p521:"nistP521",secp256k1:"secp256k1",ed25519Legacy:"ed25519Legacy",ed25519:"ed25519Legacy",curve25519Legacy:"curve25519Legacy",curve25519:"curve25519Legacy",brainpoolP256r1:"brainpoolP256r1",brainpoolP384r1:"brainpoolP384r1",brainpoolP512r1:"brainpoolP512r1"},kdfFlags:{replace_fingerprint:1,replace_kdf_params:2},s2k:{simple:0,salted:1,iterated:3,argon2:4,gnu:101},publicKey:{rsaEncryptSign:1,rsaEncrypt:2,rsaSign:3,elgamal:16,dsa:17,ecdh:18,ecdsa:19,eddsaLegacy:22,aedh:23,aedsa:24,x25519:25,x448:26,ed25519:27,ed448:28,pqc_mlkem_x25519:105,pqc_mldsa_ed25519:107,aead:100,hmac:101},symmetric:{idea:1,tripledes:2,cast5:3,blowfish:4,aes128:7,aes192:8,aes256:9,twofish:10},compression:{uncompressed:0,zip:1,zlib:2,bzip2:3},hash:{md5:1,sha1:2,ripemd:3,sha256:8,sha384:9,sha512:10,sha224:11,sha3_256:12,sha3_512:14},webHash:{"SHA-1":2,"SHA-256":8,"SHA-384":9,"SHA-512":10},aead:{eax:1,ocb:2,gcm:3,experimentalGCM:100},packet:{publicKeyEncryptedSessionKey:1,signature:2,symEncryptedSessionKey:3,onePassSignature:4,secretKey:5,publicKey:6,secretSubkey:7,compressedData:8,symmetricallyEncryptedData:9,marker:10,literalData:11,trust:12,userID:13,publicSubkey:14,userAttribute:17,symEncryptedIntegrityProtectedData:18,modificationDetectionCode:19,aeadEncryptedData:20,padding:21},literal:{binary:98,text:116,utf8:117,mime:109},signature:{binary:0,text:1,standalone:2,certGeneric:16,certPersona:17,certCasual:18,certPositive:19,certRevocation:48,subkeyBinding:24,keyBinding:25,key:31,keyRevocation:32,subkeyRevocation:40,timestamp:64,thirdParty:80},signatureSubpacket:{signatureCreationTime:2,signatureExpirationTime:3,exportableCertification:4,trustSignature:5,regularExpression:6,revocable:7,keyExpirationTime:9,placeholderBackwardsCompatibility:10,preferredSymmetricAlgorithms:11,revocationKey:12,issuerKeyID:16,notationData:20,preferredHashAlgorithms:21,preferredCompressionAlgorithms:22,keyServerPreferences:23,preferredKeyServer:24,primaryUserID:25,policyURI:26,keyFlags:27,signersUserID:28,reasonForRevocation:29,features:30,signatureTarget:31,embeddedSignature:32,issuerFingerprint:33,preferredAEADAlgorithms:34,preferredCipherSuites:39},keyFlags:{certifyKeys:1,signData:2,encryptCommunication:4,encryptStorage:8,splitPrivateKey:16,authentication:32,forwardedCommunication:64,sharedPrivateKey:128},armor:{multipartSection:0,multipartLast:1,signed:2,message:3,publicKey:4,privateKey:5,signature:6},reasonForRevocation:{noReason:0,keySuperseded:1,keyCompromised:2,keyRetired:3,userIDInvalid:32},features:{modificationDetection:1,aead:2,v5Keys:4,seipdv2:8},write:function(e,t){if("number"==typeof t&&(t=this.read(e,t)),void 0!==e[t])return e[t];throw Error("Invalid enum value.")},read:function(e,t){if(e[x]||(e[x]=[],Object.entries(e).forEach((([t,r])=>{e[x][r]=t}))),void 0!==e[x][t])return e[x][t];throw Error("Invalid enum value.")}},R={preferredHashAlgorithm:Q.hash.sha512,preferredSymmetricAlgorithm:Q.symmetric.aes256,preferredCompressionAlgorithm:Q.compression.uncompressed,aeadProtect:!1,ignoreSEIPDv2FeatureFlag:!1,parseAEADEncryptedV4KeysAsLegacy:!1,preferredAEADAlgorithm:Q.aead.gcm,aeadChunkSizeByte:12,v6Keys:!1,enableParsingV5Entities:!1,s2kType:Q.s2k.iterated,s2kIterationCountByte:224,s2kArgon2Params:{passes:3,parallelism:4,memoryExponent:16},allowUnauthenticatedMessages:!1,allowUnauthenticatedStream:!1,allowForwardedMessages:!1,minRSABits:2047,passwordCollisionCheck:!1,allowInsecureDecryptionWithSigningKeys:!1,allowInsecureVerificationWithReformattedKeys:!1,allowMissingKeyFlags:!1,constantTimePKCS1Decryption:!1,constantTimePKCS1DecryptionSupportedSymmetricAlgorithms:new Set([Q.symmetric.aes128,Q.symmetric.aes192,Q.symmetric.aes256]),ignoreUnsupportedPackets:!0,ignoreMalformedPackets:!1,enforceGrammar:!0,pluggableGrammarErrorReporter:null,additionalAllowedPackets:[],showVersion:!1,showComment:!1,versionString:"OpenPGP.js 6.1.1-patch.2",commentString:"https://openpgpjs.org",maxUserIDLength:5120,knownNotations:[],nonDeterministicSignaturesViaNotation:!0,useEllipticFallback:!0,rejectHashAlgorithms:new Set([Q.hash.md5,Q.hash.ripemd]),rejectMessageHashAlgorithms:new Set([Q.hash.md5,Q.hash.ripemd,Q.hash.sha1]),rejectPublicKeyAlgorithms:new Set([Q.publicKey.elgamal,Q.publicKey.dsa]),rejectCurves:new Set([Q.curve.secp256k1])};const T=(()=>{try{return"development"===process.env.NODE_ENV}catch(e){}return!1})(),M={isString:function(e){return"string"==typeof e||e instanceof String},nodeRequire:()=>{},isArray:function(e){return e instanceof Array},isUint8Array:u,isStream:c,getNobleCurve:async(e,t)=>{if(!R.useEllipticFallback)throw Error("This curve is only supported in the full build of OpenPGP.js");const{nobleCurves:r}=await Promise.resolve().then((function(){return $y}));switch(e){case Q.publicKey.ecdh:case Q.publicKey.ecdsa:{const e=r.get(t);if(!e)throw Error("Unsupported curve");return e}case Q.publicKey.x448:return r.get("x448");case Q.publicKey.ed448:return r.get("ed448");default:throw Error("Unsupported curve")}},readNumber:function(e){let t=0;for(let r=0;r<e.length;r++)t+=256**r*e[e.length-1-r];return t},writeNumber:function(e,t){const r=new Uint8Array(t);for(let n=0;n<t;n++)r[n]=e>>8*(t-n-1)&255;return r},readDate:function(e){const t=M.readNumber(e);return new Date(1e3*t)},writeDate:function(e){const t=Math.floor(e.getTime()/1e3);return M.writeNumber(t,4)},normalizeDate:function(e=Date.now()){return null===e||e===1/0?e:new Date(1e3*Math.floor(+e/1e3))},readMPI:function(e){const t=(e[0]<<8|e[1])+7>>>3;return M.readExactSubarray(e,2,2+t)},readExactSubarray:function(e,t,r){if(e.length<r-t)throw Error("Input array too short");return e.subarray(t,r)},leftPad(e,t){if(e.length>t)throw Error("Input array too long");const r=new Uint8Array(t),n=t-e.length;return r.set(e,n),r},uint8ArrayToMPI:function(e){const t=M.uint8ArrayBitLength(e);if(0===t)throw Error("Zero MPI");const r=e.subarray(e.length-Math.ceil(t/8)),n=new Uint8Array([(65280&t)>>8,255&t]);return M.concatUint8Array([n,r])},uint8ArrayBitLength:function(e){let t;for(t=0;t<e.length&&0===e[t];t++);if(t===e.length)return 0;const r=e.subarray(t);return 8*(r.length-1)+M.nbits(r[0])},hexToUint8Array:function(e){const t=new Uint8Array(e.length>>1);for(let r=0;r<e.length>>1;r++)t[r]=parseInt(e.substr(r<<1,2),16);return t},uint8ArrayToHex:function(e){const t="0123456789abcdef";let r="";return e.forEach((e=>{r+=t[e>>4]+t[15&e]})),r},stringToUint8Array:function(e){return b(e,(e=>{if(!M.isString(e))throw Error("stringToUint8Array: Data must be in the form of a string");const t=new Uint8Array(e.length);for(let r=0;r<e.length;r++)t[r]=e.charCodeAt(r);return t}))},uint8ArrayToString:function(e){const t=[],r=16384,n=(e=new Uint8Array(e)).length;for(let i=0;i<n;i+=r)t.push(String.fromCharCode.apply(String,e.subarray(i,i+r<n?i+r:n)));return t.join("")},encodeUTF8:function(e){const t=new TextEncoder("utf-8");function r(e,r=!1){return t.encode(e,{stream:!r})}return b(e,r,(()=>r("",!0)))},decodeUTF8:function(e){const t=new TextDecoder("utf-8");function r(e,r=!1){return t.decode(e,{stream:!r})}return b(e,r,(()=>r(new Uint8Array,!0)))},concat:d,concatUint8Array:h,equalsUint8Array:function(e,t){if(!M.isUint8Array(e)||!M.isUint8Array(t))throw Error("Data must be in the form of a Uint8Array");if(e.length!==t.length)return!1;for(let r=0;r<e.length;r++)if(e[r]!==t[r])return!1;return!0},findLastIndex:function(e,t){for(let r=e.length;r>=0;r--)if(t(e[r],r,e))return r;return-1},writeChecksum:function(e){let t=0;for(let r=0;r<e.length;r++)t=t+e[r]&65535;return M.writeNumber(t,2)},printDebug:function(e){T&&console.log("[OpenPGP.js debug]",e)},printDebugError:function(e){T&&console.error("[OpenPGP.js debug]",e)},nbits:function(e){let t=1,r=e>>>16;return 0!==r&&(e=r,t+=16),r=e>>8,0!==r&&(e=r,t+=8),r=e>>4,0!==r&&(e=r,t+=4),r=e>>2,0!==r&&(e=r,t+=2),r=e>>1,0!==r&&(e=r,t+=1),t},double:function(e){const t=new Uint8Array(e.length),r=e.length-1;for(let n=0;n<r;n++)t[n]=e[n]<<1^e[n+1]>>7;return t[r]=e[r]<<1^135*(e[0]>>7),t},shiftRight:function(e,t){if(t)for(let r=e.length-1;r>=0;r--)e[r]>>=t,r>0&&(e[r]|=e[r-1]<<8-t);return e},getWebCrypto:function(){const t=void 0!==e&&e.crypto&&e.crypto.subtle||this.getNodeCrypto()?.webcrypto.subtle;if(!t)throw Error("The WebCrypto API is not available");return t},getNodeCrypto:function(){return this.nodeRequire("crypto")},getNodeZlib:function(){return this.nodeRequire("zlib")},getNodeBuffer:function(){return(this.nodeRequire("buffer")||{}).Buffer},getHardwareConcurrency:function(){if("undefined"!=typeof navigator)return navigator.hardwareConcurrency||1;return this.nodeRequire("os").cpus().length},isEmailAddress:function(e){if(!M.isString(e))return!1;return/^[^\p{C}\p{Z}@<>\\]+@[^\p{C}\p{Z}@<>\\]+[^\p{C}\p{Z}\p{P}]$/u.test(e)},canonicalizeEOL:function(e){let t=!1;return b(e,(e=>{let r;t&&(e=M.concatUint8Array([new Uint8Array([13]),e])),13===e[e.length-1]?(t=!0,e=e.subarray(0,-1)):t=!1;const n=[];for(let t=0;r=e.indexOf(10,t)+1,r;t=r)13!==e[r-2]&&n.push(r);if(!n.length)return e;const i=new Uint8Array(e.length+n.length);let s=0;for(let t=0;t<n.length;t++){const r=e.subarray(n[t-1]||0,n[t]);i.set(r,s),s+=r.length,i[s-1]=13,i[s]=10,s++}return i.set(e.subarray(n[n.length-1]||0),s),i}),(()=>t?new Uint8Array([13]):void 0))},nativeEOL:function(e){let t=!1;return b(e,(e=>{let r;13===(e=t&&10!==e[0]?M.concatUint8Array([new Uint8Array([13]),e]):new Uint8Array(e))[e.length-1]?(t=!0,e=e.subarray(0,-1)):t=!1;let n=0;for(let t=0;t!==e.length;t=r){r=e.indexOf(13,t)+1,r||(r=e.length);const i=r-(10===e[r]?1:0);t&&e.copyWithin(n,t,i),n+=i-t}return e.subarray(0,n)}),(()=>t?new Uint8Array([13]):void 0))},removeTrailingSpaces:function(e){return e.split("\n").map((e=>{let t=e.length-1;for(;t>=0&&(" "===e[t]||"\t"===e[t]||"\r"===e[t]);t--);return e.substr(0,t+1)})).join("\n")},wrapError:function(e,t){if(!t)return Error(e);try{t.message=e+": "+t.message}catch(e){}return t},constructAllowedPackets:function(e){const t={};return e.forEach((e=>{if(!e.tag)throw Error("Invalid input: expected a packet class");t[e.tag]=e})),t},anyPromise:function(e){return new Promise((async(t,r)=>{let n;await Promise.all(e.map((async e=>{try{t(await e)}catch(e){n=e}}))),r(n)}))},selectUint8Array:function(e,t,r){const n=Math.max(t.length,r.length),i=new Uint8Array(n);let s=0;for(let n=0;n<i.length;n++)i[n]=t[n]&256-e|r[n]&255+e,s+=e&n<t.length|1-e&n<r.length;return i.subarray(0,s)},selectUint8:function(e,t,r){return t&256-e|r&255+e},isAES:function(e){return e===Q.symmetric.aes128||e===Q.symmetric.aes192||e===Q.symmetric.aes256}},L=M.getNodeBuffer();let F,N;function O(e){let t=new Uint8Array;return b(e,(e=>{t=M.concatUint8Array([t,e]);const r=[],n=Math.floor(t.length/45),i=45*n,s=F(t.subarray(0,i));for(let e=0;e<n;e++)r.push(s.substr(60*e,60)),r.push("\n");return t=t.subarray(i),r.join("")}),(()=>t.length?F(t)+"\n":""))}function _(e){let t="";return b(e,(e=>{t+=e;let r=0;const n=[" ","\t","\r","\n"];for(let e=0;e<n.length;e++){const i=n[e];for(let e=t.indexOf(i);-1!==e;e=t.indexOf(i,e+1))r++}let i=t.length;for(;i>0&&(i-r)%4!=0;i--)n.includes(t[i])&&r--;const s=N(t.substr(0,i));return t=t.substr(i),s}),(()=>N(t)))}function H(e){return _(e.replace(/-/g,"+").replace(/_/g,"/"))}function z(e,t){let r=O(e).replace(/[\r\n]/g,"");return r=r.replace(/[+]/g,"-").replace(/[/]/g,"_").replace(/[=]/g,""),r}function G(e){const t=e.match(/^-----BEGIN PGP (MESSAGE, PART \d+\/\d+|MESSAGE, PART \d+|SIGNED MESSAGE|MESSAGE|PUBLIC KEY BLOCK|PRIVATE KEY BLOCK|SIGNATURE)-----$/m);if(!t)throw Error("Unknown ASCII armor type");return/MESSAGE, PART \d+\/\d+/.test(t[1])?Q.armor.multipartSection:/MESSAGE, PART \d+/.test(t[1])?Q.armor.multipartLast:/SIGNED MESSAGE/.test(t[1])?Q.armor.signed:/MESSAGE/.test(t[1])?Q.armor.message:/PUBLIC KEY BLOCK/.test(t[1])?Q.armor.publicKey:/PRIVATE KEY BLOCK/.test(t[1])?Q.armor.privateKey:/SIGNATURE/.test(t[1])?Q.armor.signature:void 0}function q(e,t){let r="";return t.showVersion&&(r+="Version: "+t.versionString+"\n"),t.showComment&&(r+="Comment: "+t.commentString+"\n"),e&&(r+="Comment: "+e+"\n"),r+="\n",r}function j(e){const t=function(e){let t=13501623;return b(e,(e=>{const r=Y?Math.floor(e.length/4):0,n=new Uint32Array(e.buffer,e.byteOffset,r);for(let e=0;e<r;e++)t^=n[e],t=V[0][t>>24&255]^V[1][t>>16&255]^V[2][t>>8&255]^V[3][255&t];for(let n=4*r;n<e.length;n++)t=t>>8^V[0][255&t^e[n]]}),(()=>new Uint8Array([t,t>>8,t>>16])))}(e);return O(t)}L?(F=e=>L.from(e).toString("base64"),N=e=>{const t=L.from(e,"base64");return new Uint8Array(t.buffer,t.byteOffset,t.byteLength)}):(F=e=>btoa(M.uint8ArrayToString(e)),N=e=>M.stringToUint8Array(atob(e)));const V=[Array(255),Array(255),Array(255),Array(255)];for(let e=0;e<=255;e++){let t=e<<16;for(let e=0;e<8;e++)t=t<<1^(8388608&t?8801531:0);V[0][e]=(16711680&t)>>16|65280&t|(255&t)<<16}for(let e=0;e<=255;e++)V[1][e]=V[0][e]>>8^V[0][255&V[0][e]];for(let e=0;e<=255;e++)V[2][e]=V[1][e]>>8^V[0][255&V[1][e]];for(let e=0;e<=255;e++)V[3][e]=V[2][e]>>8^V[0][255&V[2][e]];const Y=function(){const e=new ArrayBuffer(2);return new DataView(e).setInt16(0,255,!0),255===new Int16Array(e)[0]}();function Z(e){for(let t=0;t<e.length;t++)/^([^\s:]|[^\s:][^:]*[^\s:]): .+$/.test(e[t])||M.printDebugError(Error("Improperly formatted armor header: "+e[t])),/^(Version|Comment|MessageID|Hash|Charset): .+$/.test(e[t])||M.printDebugError(Error("Unknown header: "+e[t]))}function W(e){let t=e;const r=e.lastIndexOf("=");return r>=0&&r!==e.length-1&&(t=e.slice(0,r)),t}function J(e){return new Promise((async(t,r)=>{try{const n=/^-----[^-]+-----$/m,i=/^[ \f\r\t\u00a0\u2000-\u200a\u202f\u205f\u3000]*$/;let s;const a=[];let o,c,u=a,h=[];const l=_(k(e,(async(e,y)=>{const f=P(e);try{for(;;){let e=await f.readLine();if(void 0===e)throw Error("Misformed armored text");if(e=M.removeTrailingSpaces(e.replace(/[\r\n]/g,"")),s)if(o)c||s!==Q.armor.signed||(n.test(e)?(h=h.join("\r\n"),c=!0,Z(u),u=[],o=!1):h.push(e.replace(/^- /,"")));else if(n.test(e)&&r(Error("Mandatory blank line missing between armor headers and armor data")),i.test(e)){if(Z(u),o=!0,c||s!==Q.armor.signed){t({text:h,data:l,headers:a,type:s});break}}else u.push(e);else n.test(e)&&(s=G(e))}}catch(e){return void r(e)}const g=D(y);try{for(;;){await g.ready;const{done:e,value:t}=await f.read();if(e)throw Error("Misformed armored text");const r=t+"";if(-1!==r.indexOf("=")||-1!==r.indexOf("-")){let e=await f.readToEnd();e.length||(e=""),e=r+e,e=M.removeTrailingSpaces(e.replace(/\r/g,""));const t=e.split(n);if(1===t.length)throw Error("Misformed armored text");const i=W(t[0].slice(0,-1));await g.write(i);break}await g.write(r)}await g.ready,await g.close()}catch(e){await g.abort(e)}})))}catch(e){r(e)}})).then((async e=>(a(e.data)&&(e.data=await K(e.data)),e)))}function X(e,t,r,n,i,s=!1,a=R){let o,c;e===Q.armor.signed&&(o=t.text,c=t.hash,t=t.data);const u=s&&B(t),h=[];switch(e){case Q.armor.multipartSection:h.push("-----BEGIN PGP MESSAGE, PART "+r+"/"+n+"-----\n"),h.push(q(i,a)),h.push(O(t)),u&&h.push("=",j(u)),h.push("-----END PGP MESSAGE, PART "+r+"/"+n+"-----\n");break;case Q.armor.multipartLast:h.push("-----BEGIN PGP MESSAGE, PART "+r+"-----\n"),h.push(q(i,a)),h.push(O(t)),u&&h.push("=",j(u)),h.push("-----END PGP MESSAGE, PART "+r+"-----\n");break;case Q.armor.signed:h.push("-----BEGIN PGP SIGNED MESSAGE-----\n"),h.push(c?`Hash: ${c}\n\n`:"\n"),h.push(o.replace(/^-/gm,"- -")),h.push("\n-----BEGIN PGP SIGNATURE-----\n"),h.push(q(i,a)),h.push(O(t)),u&&h.push("=",j(u)),h.push("-----END PGP SIGNATURE-----\n");break;case Q.armor.message:h.push("-----BEGIN PGP MESSAGE-----\n"),h.push(q(i,a)),h.push(O(t)),u&&h.push("=",j(u)),h.push("-----END PGP MESSAGE-----\n");break;case Q.armor.publicKey:h.push("-----BEGIN PGP PUBLIC KEY BLOCK-----\n"),h.push(q(i,a)),h.push(O(t)),u&&h.push("=",j(u)),h.push("-----END PGP PUBLIC KEY BLOCK-----\n");break;case Q.armor.privateKey:h.push("-----BEGIN PGP PRIVATE KEY BLOCK-----\n"),h.push(q(i,a)),h.push(O(t)),u&&h.push("=",j(u)),h.push("-----END PGP PRIVATE KEY BLOCK-----\n");break;case Q.armor.signature:h.push("-----BEGIN PGP SIGNATURE-----\n"),h.push(q(i,a)),h.push(O(t)),u&&h.push("=",j(u)),h.push("-----END PGP SIGNATURE-----\n")}return M.concat(h)}const $=BigInt(0),ee=BigInt(1);function te(e){const t="0123456789ABCDEF";let r="";return e.forEach((e=>{r+=t[e>>4]+t[15&e]})),BigInt("0x0"+r)}function re(e,t){const r=e%t;return r<$?r+t:r}function ne(e,t,r){if(r===$)throw Error("Modulo cannot be zero");if(r===ee)return BigInt(0);if(t<$)throw Error("Unsopported negative exponent");let n=t,i=e;i%=r;let s=BigInt(1);for(;n>$;){const e=n&ee;n>>=ee;s=e?s*i%r:s,i=i*i%r}return s}function ie(e){return e>=$?e:-e}function se(e,t){const{gcd:r,x:n}=function(e,t){let r=BigInt(0),n=BigInt(1),i=BigInt(1),s=BigInt(0),a=ie(e),o=ie(t);const c=e<$,u=t<$;for(;o!==$;){const e=a/o;let t=r;r=i-e*r,i=t,t=n,n=s-e*n,s=t,t=o,o=a%o,a=t}return{x:c?-i:i,y:u?-s:s,gcd:a}}(e,t);if(r!==ee)throw Error("Inverse does not exist");return re(n+t,t)}function ae(e){const t=Number(e);if(t>Number.MAX_SAFE_INTEGER)throw Error("Number can only safely store up to 53 bits");return t}function oe(e,t){return(e>>BigInt(t)&ee)===$?0:1}function ce(e){const t=e<$?BigInt(-1):$;let r=1,n=e;for(;(n>>=ee)!==t;)r++;return r}function ue(e){const t=e<$?BigInt(-1):$,r=BigInt(8);let n=1,i=e;for(;(i>>=r)!==t;)n++;return n}function he(e,t="be",r){let n=e.toString(16);n.length%2==1&&(n="0"+n);const i=n.length/2,s=new Uint8Array(r||i),a=r?r-i:0;let o=0;for(;o<i;)s[o+a]=parseInt(n.slice(2*o,2*o+2),16),o++;return"be"!==t&&s.reverse(),s}const le=M.getNodeCrypto();function ye(e){const t="undefined"!=typeof crypto?crypto:le?.webcrypto;if(t?.getRandomValues){const r=new Uint8Array(e);return t.getRandomValues(r)}throw Error("No secure random number generator available.")}function fe(e,t){if(t<e)throw Error("Illegal parameter value: max <= min");const r=t-e;return re(te(ye(ue(r)+8)),r)+e}const ge=BigInt(1);function pe(e,t,r){const n=BigInt(30),i=ge<<BigInt(e-1),s=[1,6,5,4,3,2,1,4,3,2,1,2,1,4,3,2,1,2,1,4,3,2,1,6,5,4,3,2,1,2];let a=fe(i,i<<ge),o=ae(re(a,n));do{a+=BigInt(s[o]),o=(o+s[o])%s.length,ce(a)>e&&(a=re(a,i<<ge),a+=i,o=ae(re(a,n)))}while(!de(a,t,r));return a}function de(e,t,r){return(!t||function(e,t){let r=e,n=t;for(;n!==$;){const e=n;n=r%n,r=e}return r}(e-ge,t)===ge)&&(!!function(e){const t=BigInt(0);return Ae.every((r=>re(e,r)!==t))}(e)&&(!!function(e,t=BigInt(2)){return ne(t,e-ge,e)===ge}(e)&&!!function(e,t){const r=ce(e);t||(t=Math.max(1,r/48|0));const n=e-ge;let i=0;for(;!oe(n,i);)i++;const s=e>>BigInt(i);for(;t>0;t--){let t,r=ne(fe(BigInt(2),n),s,e);if(r!==ge&&r!==n){for(t=1;t<i;t++){if(r=re(r*r,e),r===ge)return!1;if(r===n)break}if(t===i)return!1}}return!0}(e,r)))}const Ae=[7,11,13,17,19,23,29,31,37,41,43,47,53,59,61,67,71,73,79,83,89,97,101,103,107,109,113,127,131,137,139,149,151,157,163,167,173,179,181,191,193,197,199,211,223,227,229,233,239,241,251,257,263,269,271,277,281,283,293,307,311,313,317,331,337,347,349,353,359,367,373,379,383,389,397,401,409,419,421,431,433,439,443,449,457,461,463,467,479,487,491,499,503,509,521,523,541,547,557,563,569,571,577,587,593,599,601,607,613,617,619,631,641,643,647,653,659,661,673,677,683,691,701,709,719,727,733,739,743,751,757,761,769,773,787,797,809,811,821,823,827,829,839,853,857,859,863,877,881,883,887,907,911,919,929,937,941,947,953,967,971,977,983,991,997,1009,1013,1019,1021,1031,1033,1039,1049,1051,1061,1063,1069,1087,1091,1093,1097,1103,1109,1117,1123,1129,1151,1153,1163,1171,1181,1187,1193,1201,1213,1217,1223,1229,1231,1237,1249,1259,1277,1279,1283,1289,1291,1297,1301,1303,1307,1319,1321,1327,1361,1367,1373,1381,1399,1409,1423,1427,1429,1433,1439,1447,1451,1453,1459,1471,1481,1483,1487,1489,1493,1499,1511,1523,1531,1543,1549,1553,1559,1567,1571,1579,1583,1597,1601,1607,1609,1613,1619,1621,1627,1637,1657,1663,1667,1669,1693,1697,1699,1709,1721,1723,1733,1741,1747,1753,1759,1777,1783,1787,1789,1801,1811,1823,1831,1847,1861,1867,1871,1873,1877,1879,1889,1901,1907,1913,1931,1933,1949,1951,1973,1979,1987,1993,1997,1999,2003,2011,2017,2027,2029,2039,2053,2063,2069,2081,2083,2087,2089,2099,2111,2113,2129,2131,2137,2141,2143,2153,2161,2179,2203,2207,2213,2221,2237,2239,2243,2251,2267,2269,2273,2281,2287,2293,2297,2309,2311,2333,2339,2341,2347,2351,2357,2371,2377,2381,2383,2389,2393,2399,2411,2417,2423,2437,2441,2447,2459,2467,2473,2477,2503,2521,2531,2539,2543,2549,2551,2557,2579,2591,2593,2609,2617,2621,2633,2647,2657,2659,2663,2671,2677,2683,2687,2689,2693,2699,2707,2711,2713,2719,2729,2731,2741,2749,2753,2767,2777,2789,2791,2797,2801,2803,2819,2833,2837,2843,2851,2857,2861,2879,2887,2897,2903,2909,2917,2927,2939,2953,2957,2963,2969,2971,2999,3001,3011,3019,3023,3037,3041,3049,3061,3067,3079,3083,3089,3109,3119,3121,3137,3163,3167,3169,3181,3187,3191,3203,3209,3217,3221,3229,3251,3253,3257,3259,3271,3299,3301,3307,3313,3319,3323,3329,3331,3343,3347,3359,3361,3371,3373,3389,3391,3407,3413,3433,3449,3457,3461,3463,3467,3469,3491,3499,3511,3517,3527,3529,3533,3539,3541,3547,3557,3559,3571,3581,3583,3593,3607,3613,3617,3623,3631,3637,3643,3659,3671,3673,3677,3691,3697,3701,3709,3719,3727,3733,3739,3761,3767,3769,3779,3793,3797,3803,3821,3823,3833,3847,3851,3853,3863,3877,3881,3889,3907,3911,3917,3919,3923,3929,3931,3943,3947,3967,3989,4001,4003,4007,4013,4019,4021,4027,4049,4051,4057,4073,4079,4091,4093,4099,4111,4127,4129,4133,4139,4153,4157,4159,4177,4201,4211,4217,4219,4229,4231,4241,4243,4253,4259,4261,4271,4273,4283,4289,4297,4327,4337,4339,4349,4357,4363,4373,4391,4397,4409,4421,4423,4441,4447,4451,4457,4463,4481,4483,4493,4507,4513,4517,4519,4523,4547,4549,4561,4567,4583,4591,4597,4603,4621,4637,4639,4643,4649,4651,4657,4663,4673,4679,4691,4703,4721,4723,4729,4733,4751,4759,4783,4787,4789,4793,4799,4801,4813,4817,4831,4861,4871,4877,4889,4903,4909,4919,4931,4933,4937,4943,4951,4957,4967,4969,4973,4987,4993,4999].map((e=>BigInt(e)));const we=M.getWebCrypto(),me=M.getNodeCrypto(),be=me&&me.getHashes();function ke(e){if(me&&be.includes(e))return async function(t){const r=me.createHash(e);return b(t,(e=>{r.update(e)}),(()=>new Uint8Array(r.digest())))}}function Ee(e,t){const r=async()=>{const{nobleHashes:t}=await Promise.resolve().then((function(){return Sf})),r=t.get(e);if(!r)throw Error("Unsupported hash");return r};return async function(e){if(a(e)&&(e=await K(e)),M.isStream(e)){const t=(await r()).create();return b(e,(e=>{t.update(e)}),(()=>t.digest()))}if(we&&t)return new Uint8Array(await we.digest(t,e));return(await r())(e)}}const ve=ke("md5")||Ee("md5"),Be=ke("sha1")||Ee("sha1","SHA-1"),Se=ke("sha224")||Ee("sha224"),Ie=ke("sha256")||Ee("sha256","SHA-256"),Ke=ke("sha384")||Ee("sha384","SHA-384"),Ce=ke("sha512")||Ee("sha512","SHA-512"),Ue=ke("ripemd160")||Ee("ripemd160"),Pe=ke("sha3-256")||Ee("sha3_256"),De=ke("sha3-512")||Ee("sha3_512");function xe(e,t){switch(e){case Q.hash.md5:return ve(t);case Q.hash.sha1:return Be(t);case Q.hash.ripemd:return Ue(t);case Q.hash.sha256:return Ie(t);case Q.hash.sha384:return Ke(t);case Q.hash.sha512:return Ce(t);case Q.hash.sha224:return Se(t);case Q.hash.sha3_256:return Pe(t);case Q.hash.sha3_512:return De(t);default:throw Error("Unsupported hash function")}}function Qe(e){switch(e){case Q.hash.md5:return 16;case Q.hash.sha1:case Q.hash.ripemd:return 20;case Q.hash.sha256:return 32;case Q.hash.sha384:return 48;case Q.hash.sha512:return 64;case Q.hash.sha224:return 28;case Q.hash.sha3_256:return 32;case Q.hash.sha3_512:return 64;default:throw Error("Invalid hash algorithm.")}}const Re=[];function Te(e,t){const r=e.length;if(r>t-11)throw Error("Message too long");const n=function(e){const t=new Uint8Array(e);let r=0;for(;r<e;){const n=ye(e-r);for(let e=0;e<n.length;e++)0!==n[e]&&(t[r++]=n[e])}return t}(t-r-3),i=new Uint8Array(t);return i[1]=2,i.set(n,2),i.set(e,t-r),i}function Me(e,t){let r=2,n=1;for(let t=r;t<e.length;t++)n&=0!==e[t],r+=n;const i=r-2,s=e.subarray(r+1),a=0===e[0]&2===e[1]&i>=8&!n;if(t)return M.selectUint8Array(a,s,t);if(a)return s;throw Error("Decryption error")}function Le(e,t,r){let n;if(t.length!==Qe(e))throw Error("Invalid hash length");const i=new Uint8Array(Re[e].length);for(n=0;n<Re[e].length;n++)i[n]=Re[e][n];const s=i.length+t.length;if(r<s+11)throw Error("Intended encoded message length too short");const a=new Uint8Array(r-s-3).fill(255),o=new Uint8Array(r);return o[1]=1,o.set(a,2),o.set(i,r-s),o.set(t,r-t.length),o}Re[1]=[48,32,48,12,6,8,42,134,72,134,247,13,2,5,5,0,4,16],Re[2]=[48,33,48,9,6,5,43,14,3,2,26,5,0,4,20],Re[3]=[48,33,48,9,6,5,43,36,3,2,1,5,0,4,20],Re[8]=[48,49,48,13,6,9,96,134,72,1,101,3,4,2,1,5,0,4,32],Re[9]=[48,65,48,13,6,9,96,134,72,1,101,3,4,2,2,5,0,4,48],Re[10]=[48,81,48,13,6,9,96,134,72,1,101,3,4,2,3,5,0,4,64],Re[11]=[48,45,48,13,6,9,96,134,72,1,101,3,4,2,4,5,0,4,28];const Fe=M.getWebCrypto(),Ne=M.getNodeCrypto(),Oe=BigInt(1);async function _e(e,t,r,n,i,s,a,o,c){if(Qe(e)>=r.length)throw Error("Digest size cannot exceed key modulus size");if(t&&!M.isStream(t))if(M.getWebCrypto())try{return await async function(e,t,r,n,i,s,a,o){const c=await qe(r,n,i,s,a,o),u={name:"RSASSA-PKCS1-v1_5",hash:{name:e}},h=await Fe.importKey("jwk",c,u,!1,["sign"]);return new Uint8Array(await Fe.sign("RSASSA-PKCS1-v1_5",h,t))}(Q.read(Q.webHash,e),t,r,n,i,s,a,o)}catch(e){M.printDebugError(e)}else if(M.getNodeCrypto())return async function(e,t,r,n,i,s,a,o){const c=Ne.createSign(Q.read(Q.hash,e));c.write(t),c.end();const u=await qe(r,n,i,s,a,o);return new Uint8Array(c.sign({key:u,format:"jwk",type:"pkcs1"}))}(e,t,r,n,i,s,a,o);return async function(e,t,r,n){t=te(t);const i=te(Le(e,n,ue(t)));return r=te(r),he(ne(i,r,t),"be",ue(t))}(e,r,i,c)}async function He(e,t,r,n,i,s){if(t&&!M.isStream(t))if(M.getWebCrypto())try{return await async function(e,t,r,n,i){const s=je(n,i),a=await Fe.importKey("jwk",s,{name:"RSASSA-PKCS1-v1_5",hash:{name:e}},!1,["verify"]);return Fe.verify("RSASSA-PKCS1-v1_5",a,r,t)}(Q.read(Q.webHash,e),t,r,n,i)}catch(e){M.printDebugError(e)}else if(M.getNodeCrypto())return async function(e,t,r,n,i){const s=je(n,i),a={key:s,format:"jwk",type:"pkcs1"},o=Ne.createVerify(Q.read(Q.hash,e));o.write(t),o.end();try{return o.verify(a,r)}catch(e){return!1}}(e,t,r,n,i);return async function(e,t,r,n,i){if(r=te(r),t=te(t),n=te(n),t>=r)throw Error("Signature size cannot exceed modulus size");const s=he(ne(t,n,r),"be",ue(r)),a=Le(e,i,ue(r));return M.equalsUint8Array(s,a)}(e,r,n,i,s)}async function ze(e,t,r){return M.getNodeCrypto()?async function(e,t,r){const n=je(t,r),i={key:n,format:"jwk",type:"pkcs1",padding:Ne.constants.RSA_PKCS1_PADDING};return new Uint8Array(Ne.publicEncrypt(i,e))}(e,t,r):async function(e,t,r){if(t=te(t),e=te(Te(e,ue(t))),r=te(r),e>=t)throw Error("Message size cannot exceed modulus size");return he(ne(e,r,t),"be",ue(t))}(e,t,r)}async function Ge(e,t,r,n,i,s,a,o){if(M.getNodeCrypto()&&!o)try{return await async function(e,t,r,n,i,s,a){const o=await qe(t,r,n,i,s,a),c={key:o,format:"jwk",type:"pkcs1",padding:Ne.constants.RSA_PKCS1_PADDING};try{return new Uint8Array(Ne.privateDecrypt(c,e))}catch(e){throw Error("Decryption error")}}(e,t,r,n,i,s,a)}catch(e){M.printDebugError(e)}return async function(e,t,r,n,i,s,a,o){if(e=te(e),t=te(t),r=te(r),n=te(n),i=te(i),s=te(s),a=te(a),e>=t)throw Error("Data too large.");const c=re(n,s-Oe),u=re(n,i-Oe),h=fe(BigInt(2),t),l=ne(se(h,t),r,t);e=re(e*l,t);const y=ne(e,u,i),f=ne(e,c,s),g=re(a*(f-y),s);let p=g*i+y;return p=re(p*h,t),Me(he(p,"be",ue(t)),o)}(e,t,r,n,i,s,a,o)}async function qe(e,t,r,n,i,s){const a=te(n),o=te(i),c=te(r);let u=re(c,o-Oe),h=re(c,a-Oe);return h=he(h),u=he(u),{kty:"RSA",n:z(e),e:z(t),d:z(r),p:z(i),q:z(n),dp:z(u),dq:z(h),qi:z(s),ext:!0}}function je(e,t){return{kty:"RSA",n:z(e),e:z(t),ext:!0}}function Ve(e,t){return{n:H(e.n),e:he(t),d:H(e.d),p:H(e.q),q:H(e.p),u:H(e.qi)}}const Ye=BigInt(1);const Ze="object"==typeof e&&"crypto"in e?e.crypto:void 0,We={};var Je=function(e){var t,r=new Float64Array(16);if(e)for(t=0;t<e.length;t++)r[t]=e[t];return r},Xe=function(){throw Error("no PRNG")},$e=new Uint8Array(32);$e[0]=9;var et=Je(),tt=Je([1]),rt=Je([56129,1]),nt=Je([30883,4953,19914,30187,55467,16705,2637,112,59544,30585,16505,36039,65139,11119,27886,20995]),it=Je([61785,9906,39828,60374,45398,33411,5274,224,53552,61171,33010,6542,64743,22239,55772,9222]),st=Je([54554,36645,11616,51542,42930,38181,51040,26924,56412,64982,57905,49316,21502,52590,14035,8553]),at=Je([26200,26214,26214,26214,26214,26214,26214,26214,26214,26214,26214,26214,26214,26214,26214,26214]),ot=Je([41136,18958,6951,50414,58488,44335,6150,12099,55207,15867,153,11085,57099,20417,9344,11139]);function ct(e,t,r,n){e[t]=r>>24&255,e[t+1]=r>>16&255,e[t+2]=r>>8&255,e[t+3]=255&r,e[t+4]=n>>24&255,e[t+5]=n>>16&255,e[t+6]=n>>8&255,e[t+7]=255&n}function ut(e,t,r,n){return function(e,t,r,n,i){var s,a=0;for(s=0;s<i;s++)a|=e[t+s]^r[n+s];return(1&a-1>>>8)-1}(e,t,r,n,32)}function ht(e,t){var r;for(r=0;r<16;r++)e[r]=0|t[r]}function lt(e){var t,r,n=1;for(t=0;t<16;t++)r=e[t]+n+65535,n=Math.floor(r/65536),e[t]=r-65536*n;e[0]+=n-1+37*(n-1)}function yt(e,t,r){for(var n,i=~(r-1),s=0;s<16;s++)n=i&(e[s]^t[s]),e[s]^=n,t[s]^=n}function ft(e,t){var r,n,i,s=Je(),a=Je();for(r=0;r<16;r++)a[r]=t[r];for(lt(a),lt(a),lt(a),n=0;n<2;n++){for(s[0]=a[0]-65517,r=1;r<15;r++)s[r]=a[r]-65535-(s[r-1]>>16&1),s[r-1]&=65535;s[15]=a[15]-32767-(s[14]>>16&1),i=s[15]>>16&1,s[14]&=65535,yt(a,s,1-i)}for(r=0;r<16;r++)e[2*r]=255&a[r],e[2*r+1]=a[r]>>8}function gt(e,t){var r=new Uint8Array(32),n=new Uint8Array(32);return ft(r,e),ft(n,t),ut(r,0,n,0)}function pt(e){var t=new Uint8Array(32);return ft(t,e),1&t[0]}function dt(e,t){var r;for(r=0;r<16;r++)e[r]=t[2*r]+(t[2*r+1]<<8);e[15]&=32767}function At(e,t,r){for(var n=0;n<16;n++)e[n]=t[n]+r[n]}function wt(e,t,r){for(var n=0;n<16;n++)e[n]=t[n]-r[n]}function mt(e,t,r){var n,i,s=0,a=0,o=0,c=0,u=0,h=0,l=0,y=0,f=0,g=0,p=0,d=0,A=0,w=0,m=0,b=0,k=0,E=0,v=0,B=0,S=0,I=0,K=0,C=0,U=0,P=0,D=0,x=0,Q=0,R=0,T=0,M=r[0],L=r[1],F=r[2],N=r[3],O=r[4],_=r[5],H=r[6],z=r[7],G=r[8],q=r[9],j=r[10],V=r[11],Y=r[12],Z=r[13],W=r[14],J=r[15];s+=(n=t[0])*M,a+=n*L,o+=n*F,c+=n*N,u+=n*O,h+=n*_,l+=n*H,y+=n*z,f+=n*G,g+=n*q,p+=n*j,d+=n*V,A+=n*Y,w+=n*Z,m+=n*W,b+=n*J,a+=(n=t[1])*M,o+=n*L,c+=n*F,u+=n*N,h+=n*O,l+=n*_,y+=n*H,f+=n*z,g+=n*G,p+=n*q,d+=n*j,A+=n*V,w+=n*Y,m+=n*Z,b+=n*W,k+=n*J,o+=(n=t[2])*M,c+=n*L,u+=n*F,h+=n*N,l+=n*O,y+=n*_,f+=n*H,g+=n*z,p+=n*G,d+=n*q,A+=n*j,w+=n*V,m+=n*Y,b+=n*Z,k+=n*W,E+=n*J,c+=(n=t[3])*M,u+=n*L,h+=n*F,l+=n*N,y+=n*O,f+=n*_,g+=n*H,p+=n*z,d+=n*G,A+=n*q,w+=n*j,m+=n*V,b+=n*Y,k+=n*Z,E+=n*W,v+=n*J,u+=(n=t[4])*M,h+=n*L,l+=n*F,y+=n*N,f+=n*O,g+=n*_,p+=n*H,d+=n*z,A+=n*G,w+=n*q,m+=n*j,b+=n*V,k+=n*Y,E+=n*Z,v+=n*W,B+=n*J,h+=(n=t[5])*M,l+=n*L,y+=n*F,f+=n*N,g+=n*O,p+=n*_,d+=n*H,A+=n*z,w+=n*G,m+=n*q,b+=n*j,k+=n*V,E+=n*Y,v+=n*Z,B+=n*W,S+=n*J,l+=(n=t[6])*M,y+=n*L,f+=n*F,g+=n*N,p+=n*O,d+=n*_,A+=n*H,w+=n*z,m+=n*G,b+=n*q,k+=n*j,E+=n*V,v+=n*Y,B+=n*Z,S+=n*W,I+=n*J,y+=(n=t[7])*M,f+=n*L,g+=n*F,p+=n*N,d+=n*O,A+=n*_,w+=n*H,m+=n*z,b+=n*G,k+=n*q,E+=n*j,v+=n*V,B+=n*Y,S+=n*Z,I+=n*W,K+=n*J,f+=(n=t[8])*M,g+=n*L,p+=n*F,d+=n*N,A+=n*O,w+=n*_,m+=n*H,b+=n*z,k+=n*G,E+=n*q,v+=n*j,B+=n*V,S+=n*Y,I+=n*Z,K+=n*W,C+=n*J,g+=(n=t[9])*M,p+=n*L,d+=n*F,A+=n*N,w+=n*O,m+=n*_,b+=n*H,k+=n*z,E+=n*G,v+=n*q,B+=n*j,S+=n*V,I+=n*Y,K+=n*Z,C+=n*W,U+=n*J,p+=(n=t[10])*M,d+=n*L,A+=n*F,w+=n*N,m+=n*O,b+=n*_,k+=n*H,E+=n*z,v+=n*G,B+=n*q,S+=n*j,I+=n*V,K+=n*Y,C+=n*Z,U+=n*W,P+=n*J,d+=(n=t[11])*M,A+=n*L,w+=n*F,m+=n*N,b+=n*O,k+=n*_,E+=n*H,v+=n*z,B+=n*G,S+=n*q,I+=n*j,K+=n*V,C+=n*Y,U+=n*Z,P+=n*W,D+=n*J,A+=(n=t[12])*M,w+=n*L,m+=n*F,b+=n*N,k+=n*O,E+=n*_,v+=n*H,B+=n*z,S+=n*G,I+=n*q,K+=n*j,C+=n*V,U+=n*Y,P+=n*Z,D+=n*W,x+=n*J,w+=(n=t[13])*M,m+=n*L,b+=n*F,k+=n*N,E+=n*O,v+=n*_,B+=n*H,S+=n*z,I+=n*G,K+=n*q,C+=n*j,U+=n*V,P+=n*Y,D+=n*Z,x+=n*W,Q+=n*J,m+=(n=t[14])*M,b+=n*L,k+=n*F,E+=n*N,v+=n*O,B+=n*_,S+=n*H,I+=n*z,K+=n*G,C+=n*q,U+=n*j,P+=n*V,D+=n*Y,x+=n*Z,Q+=n*W,R+=n*J,b+=(n=t[15])*M,a+=38*(E+=n*F),o+=38*(v+=n*N),c+=38*(B+=n*O),u+=38*(S+=n*_),h+=38*(I+=n*H),l+=38*(K+=n*z),y+=38*(C+=n*G),f+=38*(U+=n*q),g+=38*(P+=n*j),p+=38*(D+=n*V),d+=38*(x+=n*Y),A+=38*(Q+=n*Z),w+=38*(R+=n*W),m+=38*(T+=n*J),s=(n=(s+=38*(k+=n*L))+(i=1)+65535)-65536*(i=Math.floor(n/65536)),a=(n=a+i+65535)-65536*(i=Math.floor(n/65536)),o=(n=o+i+65535)-65536*(i=Math.floor(n/65536)),c=(n=c+i+65535)-65536*(i=Math.floor(n/65536)),u=(n=u+i+65535)-65536*(i=Math.floor(n/65536)),h=(n=h+i+65535)-65536*(i=Math.floor(n/65536)),l=(n=l+i+65535)-65536*(i=Math.floor(n/65536)),y=(n=y+i+65535)-65536*(i=Math.floor(n/65536)),f=(n=f+i+65535)-65536*(i=Math.floor(n/65536)),g=(n=g+i+65535)-65536*(i=Math.floor(n/65536)),p=(n=p+i+65535)-65536*(i=Math.floor(n/65536)),d=(n=d+i+65535)-65536*(i=Math.floor(n/65536)),A=(n=A+i+65535)-65536*(i=Math.floor(n/65536)),w=(n=w+i+65535)-65536*(i=Math.floor(n/65536)),m=(n=m+i+65535)-65536*(i=Math.floor(n/65536)),b=(n=b+i+65535)-65536*(i=Math.floor(n/65536)),s=(n=(s+=i-1+37*(i-1))+(i=1)+65535)-65536*(i=Math.floor(n/65536)),a=(n=a+i+65535)-65536*(i=Math.floor(n/65536)),o=(n=o+i+65535)-65536*(i=Math.floor(n/65536)),c=(n=c+i+65535)-65536*(i=Math.floor(n/65536)),u=(n=u+i+65535)-65536*(i=Math.floor(n/65536)),h=(n=h+i+65535)-65536*(i=Math.floor(n/65536)),l=(n=l+i+65535)-65536*(i=Math.floor(n/65536)),y=(n=y+i+65535)-65536*(i=Math.floor(n/65536)),f=(n=f+i+65535)-65536*(i=Math.floor(n/65536)),g=(n=g+i+65535)-65536*(i=Math.floor(n/65536)),p=(n=p+i+65535)-65536*(i=Math.floor(n/65536)),d=(n=d+i+65535)-65536*(i=Math.floor(n/65536)),A=(n=A+i+65535)-65536*(i=Math.floor(n/65536)),w=(n=w+i+65535)-65536*(i=Math.floor(n/65536)),m=(n=m+i+65535)-65536*(i=Math.floor(n/65536)),b=(n=b+i+65535)-65536*(i=Math.floor(n/65536)),s+=i-1+37*(i-1),e[0]=s,e[1]=a,e[2]=o,e[3]=c,e[4]=u,e[5]=h,e[6]=l,e[7]=y,e[8]=f,e[9]=g,e[10]=p,e[11]=d,e[12]=A,e[13]=w,e[14]=m,e[15]=b}function bt(e,t){mt(e,t,t)}function kt(e,t){var r,n=Je();for(r=0;r<16;r++)n[r]=t[r];for(r=253;r>=0;r--)bt(n,n),2!==r&&4!==r&&mt(n,n,t);for(r=0;r<16;r++)e[r]=n[r]}function Et(e,t,r){var n,i,s=new Uint8Array(32),a=new Float64Array(80),o=Je(),c=Je(),u=Je(),h=Je(),l=Je(),y=Je();for(i=0;i<31;i++)s[i]=t[i];for(s[31]=127&t[31]|64,s[0]&=248,dt(a,r),i=0;i<16;i++)c[i]=a[i],h[i]=o[i]=u[i]=0;for(o[0]=h[0]=1,i=254;i>=0;--i)yt(o,c,n=s[i>>>3]>>>(7&i)&1),yt(u,h,n),At(l,o,u),wt(o,o,u),At(u,c,h),wt(c,c,h),bt(h,l),bt(y,o),mt(o,u,o),mt(u,c,l),At(l,o,u),wt(o,o,u),bt(c,o),wt(u,h,y),mt(o,u,rt),At(o,o,h),mt(u,u,o),mt(o,h,y),mt(h,c,a),bt(c,l),yt(o,c,n),yt(u,h,n);for(i=0;i<16;i++)a[i+16]=o[i],a[i+32]=u[i],a[i+48]=c[i],a[i+64]=h[i];var f=a.subarray(32),g=a.subarray(16);return kt(f,f),mt(g,g,f),ft(e,g),0}function vt(e,t){return Et(e,t,$e)}var Bt=[1116352408,3609767458,1899447441,602891725,3049323471,3964484399,3921009573,2173295548,961987163,4081628472,1508970993,3053834265,2453635748,2937671579,2870763221,3664609560,3624381080,2734883394,310598401,1164996542,607225278,1323610764,1426881987,3590304994,1925078388,4068182383,2162078206,991336113,2614888103,633803317,3248222580,3479774868,3835390401,2666613458,4022224774,944711139,264347078,2341262773,604807628,2007800933,770255983,1495990901,1249150122,1856431235,1555081692,3175218132,1996064986,2198950837,2554220882,3999719339,2821834349,766784016,2952996808,2566594879,3210313671,3203337956,3336571891,1034457026,3584528711,2466948901,113926993,3758326383,338241895,168717936,666307205,1188179964,773529912,1546045734,1294757372,1522805485,1396182291,2643833823,1695183700,2343527390,1986661051,1014477480,2177026350,1206759142,2456956037,344077627,2730485921,1290863460,2820302411,3158454273,3259730800,3505952657,3345764771,106217008,3516065817,3606008344,3600352804,1432725776,4094571909,1467031594,275423344,851169720,430227734,3100823752,506948616,1363258195,659060556,3750685593,883997877,3785050280,958139571,3318307427,1322822218,3812723403,1537002063,2003034995,1747873779,3602036899,1955562222,1575990012,2024104815,1125592928,2227730452,2716904306,2361852424,442776044,2428436474,593698344,2756734187,3733110249,3204031479,2999351573,3329325298,3815920427,3391569614,3928383900,3515267271,566280711,3940187606,3454069534,4118630271,4000239992,116418474,1914138554,174292421,2731055270,289380356,3203993006,460393269,320620315,685471733,587496836,852142971,1086792851,1017036298,365543100,1126000580,2618297676,1288033470,3409855158,1501505948,4234509866,1607167915,987167468,1816402316,1246189591];function St(e,t,r,n){for(var i,s,a,o,c,u,h,l,y,f,g,p,d,A,w,m,b,k,E,v,B,S,I,K,C,U,P=new Int32Array(16),D=new Int32Array(16),x=e[0],Q=e[1],R=e[2],T=e[3],M=e[4],L=e[5],F=e[6],N=e[7],O=t[0],_=t[1],H=t[2],z=t[3],G=t[4],q=t[5],j=t[6],V=t[7],Y=0;n>=128;){for(E=0;E<16;E++)v=8*E+Y,P[E]=r[v+0]<<24|r[v+1]<<16|r[v+2]<<8|r[v+3],D[E]=r[v+4]<<24|r[v+5]<<16|r[v+6]<<8|r[v+7];for(E=0;E<80;E++)if(i=x,s=Q,a=R,o=T,c=M,u=L,h=F,N,y=O,f=_,g=H,p=z,d=G,A=q,w=j,V,I=65535&(S=V),K=S>>>16,C=65535&(B=N),U=B>>>16,I+=65535&(S=(G>>>14|M<<18)^(G>>>18|M<<14)^(M>>>9|G<<23)),K+=S>>>16,C+=65535&(B=(M>>>14|G<<18)^(M>>>18|G<<14)^(G>>>9|M<<23)),U+=B>>>16,I+=65535&(S=G&q^~G&j),K+=S>>>16,C+=65535&(B=M&L^~M&F),U+=B>>>16,B=Bt[2*E],I+=65535&(S=Bt[2*E+1]),K+=S>>>16,C+=65535&B,U+=B>>>16,B=P[E%16],K+=(S=D[E%16])>>>16,C+=65535&B,U+=B>>>16,C+=(K+=(I+=65535&S)>>>16)>>>16,I=65535&(S=k=65535&I|K<<16),K=S>>>16,C=65535&(B=b=65535&C|(U+=C>>>16)<<16),U=B>>>16,I+=65535&(S=(O>>>28|x<<4)^(x>>>2|O<<30)^(x>>>7|O<<25)),K+=S>>>16,C+=65535&(B=(x>>>28|O<<4)^(O>>>2|x<<30)^(O>>>7|x<<25)),U+=B>>>16,K+=(S=O&_^O&H^_&H)>>>16,C+=65535&(B=x&Q^x&R^Q&R),U+=B>>>16,l=65535&(C+=(K+=(I+=65535&S)>>>16)>>>16)|(U+=C>>>16)<<16,m=65535&I|K<<16,I=65535&(S=p),K=S>>>16,C=65535&(B=o),U=B>>>16,K+=(S=k)>>>16,C+=65535&(B=b),U+=B>>>16,Q=i,R=s,T=a,M=o=65535&(C+=(K+=(I+=65535&S)>>>16)>>>16)|(U+=C>>>16)<<16,L=c,F=u,N=h,x=l,_=y,H=f,z=g,G=p=65535&I|K<<16,q=d,j=A,V=w,O=m,E%16==15)for(v=0;v<16;v++)B=P[v],I=65535&(S=D[v]),K=S>>>16,C=65535&B,U=B>>>16,B=P[(v+9)%16],I+=65535&(S=D[(v+9)%16]),K+=S>>>16,C+=65535&B,U+=B>>>16,b=P[(v+1)%16],I+=65535&(S=((k=D[(v+1)%16])>>>1|b<<31)^(k>>>8|b<<24)^(k>>>7|b<<25)),K+=S>>>16,C+=65535&(B=(b>>>1|k<<31)^(b>>>8|k<<24)^b>>>7),U+=B>>>16,b=P[(v+14)%16],K+=(S=((k=D[(v+14)%16])>>>19|b<<13)^(b>>>29|k<<3)^(k>>>6|b<<26))>>>16,C+=65535&(B=(b>>>19|k<<13)^(k>>>29|b<<3)^b>>>6),U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,P[v]=65535&C|U<<16,D[v]=65535&I|K<<16;I=65535&(S=O),K=S>>>16,C=65535&(B=x),U=B>>>16,B=e[0],K+=(S=t[0])>>>16,C+=65535&B,U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,e[0]=x=65535&C|U<<16,t[0]=O=65535&I|K<<16,I=65535&(S=_),K=S>>>16,C=65535&(B=Q),U=B>>>16,B=e[1],K+=(S=t[1])>>>16,C+=65535&B,U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,e[1]=Q=65535&C|U<<16,t[1]=_=65535&I|K<<16,I=65535&(S=H),K=S>>>16,C=65535&(B=R),U=B>>>16,B=e[2],K+=(S=t[2])>>>16,C+=65535&B,U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,e[2]=R=65535&C|U<<16,t[2]=H=65535&I|K<<16,I=65535&(S=z),K=S>>>16,C=65535&(B=T),U=B>>>16,B=e[3],K+=(S=t[3])>>>16,C+=65535&B,U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,e[3]=T=65535&C|U<<16,t[3]=z=65535&I|K<<16,I=65535&(S=G),K=S>>>16,C=65535&(B=M),U=B>>>16,B=e[4],K+=(S=t[4])>>>16,C+=65535&B,U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,e[4]=M=65535&C|U<<16,t[4]=G=65535&I|K<<16,I=65535&(S=q),K=S>>>16,C=65535&(B=L),U=B>>>16,B=e[5],K+=(S=t[5])>>>16,C+=65535&B,U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,e[5]=L=65535&C|U<<16,t[5]=q=65535&I|K<<16,I=65535&(S=j),K=S>>>16,C=65535&(B=F),U=B>>>16,B=e[6],K+=(S=t[6])>>>16,C+=65535&B,U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,e[6]=F=65535&C|U<<16,t[6]=j=65535&I|K<<16,I=65535&(S=V),K=S>>>16,C=65535&(B=N),U=B>>>16,B=e[7],K+=(S=t[7])>>>16,C+=65535&B,U+=B>>>16,U+=(C+=(K+=(I+=65535&S)>>>16)>>>16)>>>16,e[7]=N=65535&C|U<<16,t[7]=V=65535&I|K<<16,Y+=128,n-=128}return n}function It(e,t,r){var n,i=new Int32Array(8),s=new Int32Array(8),a=new Uint8Array(256),o=r;for(i[0]=1779033703,i[1]=3144134277,i[2]=1013904242,i[3]=2773480762,i[4]=1359893119,i[5]=2600822924,i[6]=528734635,i[7]=1541459225,s[0]=4089235720,s[1]=2227873595,s[2]=4271175723,s[3]=1595750129,s[4]=2917565137,s[5]=725511199,s[6]=4215389547,s[7]=327033209,St(i,s,t,r),r%=128,n=0;n<r;n++)a[n]=t[o-r+n];for(a[r]=128,a[(r=256-128*(r<112?1:0))-9]=0,ct(a,r-8,o/536870912|0,o<<3),St(i,s,a,r),n=0;n<8;n++)ct(e,8*n,i[n],s[n]);return 0}function Kt(e,t){var r=Je(),n=Je(),i=Je(),s=Je(),a=Je(),o=Je(),c=Je(),u=Je(),h=Je();wt(r,e[1],e[0]),wt(h,t[1],t[0]),mt(r,r,h),At(n,e[0],e[1]),At(h,t[0],t[1]),mt(n,n,h),mt(i,e[3],t[3]),mt(i,i,it),mt(s,e[2],t[2]),At(s,s,s),wt(a,n,r),wt(o,s,i),At(c,s,i),At(u,n,r),mt(e[0],a,o),mt(e[1],u,c),mt(e[2],c,o),mt(e[3],a,u)}function Ct(e,t,r){var n;for(n=0;n<4;n++)yt(e[n],t[n],r)}function Ut(e,t){var r=Je(),n=Je(),i=Je();kt(i,t[2]),mt(r,t[0],i),mt(n,t[1],i),ft(e,n),e[31]^=pt(r)<<7}function Pt(e,t,r){var n,i;for(ht(e[0],et),ht(e[1],tt),ht(e[2],tt),ht(e[3],et),i=255;i>=0;--i)Ct(e,t,n=r[i/8|0]>>(7&i)&1),Kt(t,e),Kt(e,e),Ct(e,t,n)}function Dt(e,t){var r=[Je(),Je(),Je(),Je()];ht(r[0],st),ht(r[1],at),ht(r[2],tt),mt(r[3],st,at),Pt(e,r,t)}function xt(e,t,r){var n,i=new Uint8Array(64),s=[Je(),Je(),Je(),Je()];for(r||Xe(t,32),It(i,t,32),i[0]&=248,i[31]&=127,i[31]|=64,Dt(s,i),Ut(e,s),n=0;n<32;n++)t[n+32]=e[n];return 0}var Qt=new Float64Array([237,211,245,92,26,99,18,88,214,156,247,162,222,249,222,20,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,16]);function Rt(e,t){var r,n,i,s;for(n=63;n>=32;--n){for(r=0,i=n-32,s=n-12;i<s;++i)t[i]+=r-16*t[n]*Qt[i-(n-32)],r=Math.floor((t[i]+128)/256),t[i]-=256*r;t[i]+=r,t[n]=0}for(r=0,i=0;i<32;i++)t[i]+=r-(t[31]>>4)*Qt[i],r=t[i]>>8,t[i]&=255;for(i=0;i<32;i++)t[i]-=r*Qt[i];for(n=0;n<32;n++)t[n+1]+=t[n]>>8,e[n]=255&t[n]}function Tt(e){var t,r=new Float64Array(64);for(t=0;t<64;t++)r[t]=e[t];for(t=0;t<64;t++)e[t]=0;Rt(e,r)}function Mt(e,t){var r=Je(),n=Je(),i=Je(),s=Je(),a=Je(),o=Je(),c=Je();return ht(e[2],tt),dt(e[1],t),bt(i,e[1]),mt(s,i,nt),wt(i,i,e[2]),At(s,e[2],s),bt(a,s),bt(o,a),mt(c,o,a),mt(r,c,i),mt(r,r,s),function(e,t){var r,n=Je();for(r=0;r<16;r++)n[r]=t[r];for(r=250;r>=0;r--)bt(n,n),1!==r&&mt(n,n,t);for(r=0;r<16;r++)e[r]=n[r]}(r,r),mt(r,r,i),mt(r,r,s),mt(r,r,s),mt(e[0],r,s),bt(n,e[0]),mt(n,n,s),gt(n,i)&&mt(e[0],e[0],ot),bt(n,e[0]),mt(n,n,s),gt(n,i)?-1:(pt(e[0])===t[31]>>7&&wt(e[0],et,e[0]),mt(e[3],e[0],e[1]),0)}var Lt=64;function Ft(){for(var e=0;e<arguments.length;e++)if(!(arguments[e]instanceof Uint8Array))throw new TypeError("unexpected type, use Uint8Array")}We.scalarMult=function(e,t){if(Ft(e,t),32!==e.length)throw Error("bad n size");if(32!==t.length)throw Error("bad p size");var r=new Uint8Array(32);return Et(r,e,t),r},We.box={},We.box.keyPair=function(){var e=new Uint8Array(32),t=new Uint8Array(32);return function(e,t){Xe(t,32),vt(e,t)}(e,t),{publicKey:e,secretKey:t}},We.box.keyPair.fromSecretKey=function(e){if(Ft(e),32!==e.length)throw Error("bad secret key size");var t=new Uint8Array(32);return vt(t,e),{publicKey:t,secretKey:new Uint8Array(e)}},We.sign=function(e,t){if(Ft(e,t),64!==t.length)throw Error("bad secret key size");var r=new Uint8Array(Lt+e.length);return function(e,t,r,n){var i,s,a=new Uint8Array(64),o=new Uint8Array(64),c=new Uint8Array(64),u=new Float64Array(64),h=[Je(),Je(),Je(),Je()];It(a,n,32),a[0]&=248,a[31]&=127,a[31]|=64;var l=r+64;for(i=0;i<r;i++)e[64+i]=t[i];for(i=0;i<32;i++)e[32+i]=a[32+i];for(It(c,e.subarray(32),r+32),Tt(c),Dt(h,c),Ut(e,h),i=32;i<64;i++)e[i]=n[i];for(It(o,e,r+64),Tt(o),i=0;i<64;i++)u[i]=0;for(i=0;i<32;i++)u[i]=c[i];for(i=0;i<32;i++)for(s=0;s<32;s++)u[i+s]+=o[i]*a[s];Rt(e.subarray(32),u)}(r,e,e.length,t),r},We.sign.detached=function(e,t){for(var r=We.sign(e,t),n=new Uint8Array(Lt),i=0;i<n.length;i++)n[i]=r[i];return n},We.sign.detached.verify=function(e,t,r){if(Ft(e,t,r),t.length!==Lt)throw Error("bad signature size");if(32!==r.length)throw Error("bad public key size");var n,i=new Uint8Array(Lt+e.length),s=new Uint8Array(Lt+e.length);for(n=0;n<Lt;n++)i[n]=t[n];for(n=0;n<e.length;n++)i[n+Lt]=e[n];return function(e,t,r,n){var i,s=new Uint8Array(32),a=new Uint8Array(64),o=[Je(),Je(),Je(),Je()],c=[Je(),Je(),Je(),Je()];if(r<64)return-1;if(Mt(c,n))return-1;for(i=0;i<r;i++)e[i]=t[i];for(i=0;i<32;i++)e[i+32]=n[i];if(It(a,e,r),Tt(a),Pt(o,c,a),Dt(c,t.subarray(32)),Kt(o,c),Ut(s,o),r-=64,ut(t,0,s,0)){for(i=0;i<r;i++)e[i]=0;return-1}for(i=0;i<r;i++)e[i]=t[i+64];return r}(s,i,i.length,r)>=0},We.sign.keyPair=function(){var e=new Uint8Array(32),t=new Uint8Array(64);return xt(e,t),{publicKey:e,secretKey:t}},We.sign.keyPair.fromSecretKey=function(e){if(Ft(e),64!==e.length)throw Error("bad secret key size");for(var t=new Uint8Array(32),r=0;r<t.length;r++)t[r]=e[32+r];return{publicKey:t,secretKey:new Uint8Array(e)}},We.sign.keyPair.fromSeed=function(e){if(Ft(e),32!==e.length)throw Error("bad seed size");for(var t=new Uint8Array(32),r=new Uint8Array(64),n=0;n<32;n++)r[n]=e[n];return xt(t,r,!0),{publicKey:t,secretKey:r}},We.setPRNG=function(e){Xe=e},function(){if(Ze&&Ze.getRandomValues){We.setPRNG((function(e,t){var r,n=new Uint8Array(t);for(r=0;r<t;r+=65536)Ze.getRandomValues(n.subarray(r,r+Math.min(t-r,65536)));for(r=0;r<t;r++)e[r]=n[r];!function(e){for(var t=0;t<e.length;t++)e[t]=0}(n)}))}}();const Nt={"2a8648ce3d030107":Q.curve.nistP256,"2b81040022":Q.curve.nistP384,"2b81040023":Q.curve.nistP521,"2b8104000a":Q.curve.secp256k1,"2b06010401da470f01":Q.curve.ed25519Legacy,"2b060104019755010501":Q.curve.curve25519Legacy,"2b2403030208010107":Q.curve.brainpoolP256r1,"2b240303020801010b":Q.curve.brainpoolP384r1,"2b240303020801010d":Q.curve.brainpoolP512r1};class Ot{constructor(e){if(e instanceof Ot)this.oid=e.oid;else if(M.isArray(e)||M.isUint8Array(e)){if(6===(e=new Uint8Array(e))[0]){if(e[1]!==e.length-2)throw Error("Length mismatch in DER encoded oid");e=e.subarray(2)}this.oid=e}else this.oid=""}read(e){if(e.length>=1){const t=e[0];if(e.length>=1+t)return this.oid=e.subarray(1,1+t),1+this.oid.length}throw Error("Invalid oid")}write(){return M.concatUint8Array([new Uint8Array([this.oid.length]),this.oid])}toHex(){return M.uint8ArrayToHex(this.oid)}getName(){const e=Nt[this.toHex()];if(!e)throw Error("Unknown curve object identifier.");return e}}function _t(e){let t,r=0;const n=e[0];return n<192?([r]=e,t=1):n<255?(r=(e[0]-192<<8)+e[1]+192,t=2):255===n&&(r=M.readNumber(e.subarray(1,5)),t=5),{len:r,offset:t}}function Ht(e){return e<192?new Uint8Array([e]):e>191&&e<8384?new Uint8Array([192+(e-192>>8),e-192&255]):M.concatUint8Array([new Uint8Array([255]),M.writeNumber(e,4)])}function zt(e){if(e<0||e>30)throw Error("Partial Length power must be between 1 and 30");return new Uint8Array([224+e])}function Gt(e){return new Uint8Array([192|e])}function qt(e,t){return M.concatUint8Array([Gt(e),Ht(t)])}function jt(e){return[Q.packet.literalData,Q.packet.compressedData,Q.packet.symmetricallyEncryptedData,Q.packet.symEncryptedIntegrityProtectedData,Q.packet.aeadEncryptedData].includes(e)}async function Vt(e,t){const r=P(e);let n,i;try{const s=await r.peekBytes(2);if(!s||s.length<2||!(128&s[0]))throw Error("Error during parsing. This message / key probably does not conform to a valid OpenPGP format.");const a=await r.readByte();let o,c,u=-1,h=-1;h=0,64&a&&(h=1),h?u=63&a:(u=(63&a)>>2,c=3&a);const l=jt(u);let y,f=null;if(l){if("array"===M.isStream(e)){const e=new ArrayStream;n=D(e),f=e}else{const e=new TransformStream;n=D(e.writable),f=e.readable}i=t({tag:u,packet:f})}else f=[];do{if(h){const e=await r.readByte();if(y=!1,e<192)o=e;else if(e>=192&&e<224)o=(e-192<<8)+await r.readByte()+192;else if(e>223&&e<255){if(o=1<<(31&e),y=!0,!l)throw new TypeError("This packet type does not support partial lengths.")}else o=await r.readByte()<<24|await r.readByte()<<16|await r.readByte()<<8|await r.readByte()}else switch(c){case 0:o=await r.readByte();break;case 1:o=await r.readByte()<<8|await r.readByte();break;case 2:o=await r.readByte()<<24|await r.readByte()<<16|await r.readByte()<<8|await r.readByte();break;default:o=1/0}if(o>0){let e=0;for(;;){n&&await n.ready;const{done:t,value:i}=await r.read();if(t){if(o===1/0)break;throw Error("Unexpected end of packet")}const s=o===1/0?i:i.subarray(0,o-e);if(n?await n.write(s):f.push(s),e+=i.length,e>=o){r.unshift(i.subarray(o-e+i.length));break}}}}while(y);const g=await r.peekBytes(l?1/0:2);return n?(await n.ready,await n.close()):(f=M.concatUint8Array(f),await t({tag:u,packet:f})),!g||!g.length}catch(e){if(n)return await n.abort(e),!0;throw e}finally{n&&await i,r.releaseLock()}}class Yt extends Error{constructor(...e){super(...e),Error.captureStackTrace&&Error.captureStackTrace(this,Yt),this.name="UnsupportedError"}}class Zt extends Yt{constructor(...e){super(...e),Error.captureStackTrace&&Error.captureStackTrace(this,Yt),this.name="UnknownPacketError"}}class Wt{constructor(e,t){this.tag=e,this.rawContent=t}write(){return this.rawContent}}
 /*! noble-ed25519 - MIT License (c) 2019 Paul Miller (paulmillr.com) */const Jt=BigInt(0),Xt=BigInt(1),$t=BigInt(2),er=BigInt(8),tr=BigInt("7237005577332262213973186563042994240857116359379907606001950938285454250989"),rr=Object.freeze({a:BigInt(-1),d:BigInt("37095705934669439343138083508754565189542113879843219016388785533085940283555"),P:BigInt("57896044618658097711785492504343953926634992332820282019728792003956564819949"),l:tr,n:tr,h:BigInt(8),Gx:BigInt("15112221349535400772501151409588531511454012693041857206046113283949847762202"),Gy:BigInt("46316835694926478169428394003475163141307993866256225615783033603165251855960")}),nr=BigInt("0x10000000000000000000000000000000000000000000000000000000000000000"),ir=BigInt("19681161376707505956807079304988542015446066515923890162744021073123829784752");BigInt("6853475219497561581579357271197624642482790079785650197046958215289687604742");const sr=BigInt("25063068953384623474111414158702152701244531502492656460079210482610430750235"),ar=BigInt("54469307008909316920995813868745141605393597292927456921205312896311721017578"),or=BigInt("1159843021668779879193775521855586647937357759715417654439879720876111806838"),cr=BigInt("40440834346308536858101042469323190826248399146238708352240133220865137265952");class ur{constructor(e,t,r,n){this.x=e,this.y=t,this.z=r,this.t=n}static fromAffine(e){if(!(e instanceof dr))throw new TypeError("ExtendedPoint#fromAffine: expected Point");return e.equals(dr.ZERO)?ur.ZERO:new ur(e.x,e.y,Xt,Cr(e.x*e.y))}static toAffineBatch(e){const t=function(e,t=rr.P){const r=Array(e.length),n=e.reduce(((e,n,i)=>n===Jt?e:(r[i]=e,Cr(e*n,t))),Xt),i=Ur(n,t);return e.reduceRight(((e,n,i)=>n===Jt?e:(r[i]=Cr(e*r[i],t),Cr(e*n,t))),i),r}(e.map((e=>e.z)));return e.map(((e,r)=>e.toAffine(t[r])))}static normalizeZ(e){return this.toAffineBatch(e).map(this.fromAffine)}equals(e){lr(e);const{x:t,y:r,z:n}=this,{x:i,y:s,z:a}=e,o=Cr(t*a),c=Cr(i*n),u=Cr(r*a),h=Cr(s*n);return o===c&&u===h}negate(){return new ur(Cr(-this.x),this.y,this.z,Cr(-this.t))}double(){const{x:e,y:t,z:r}=this,{a:n}=rr,i=Cr(e*e),s=Cr(t*t),a=Cr($t*Cr(r*r)),o=Cr(n*i),c=e+t,u=Cr(Cr(c*c)-i-s),h=o+s,l=h-a,y=o-s,f=Cr(u*l),g=Cr(h*y),p=Cr(u*y),d=Cr(l*h);return new ur(f,g,d,p)}add(e){lr(e);const{x:t,y:r,z:n,t:i}=this,{x:s,y:a,z:o,t:c}=e,u=Cr((r-t)*(a+s)),h=Cr((r+t)*(a-s)),l=Cr(h-u);if(l===Jt)return this.double();const y=Cr(n*$t*c),f=Cr(i*$t*o),g=f+y,p=h+u,d=f-y,A=Cr(g*l),w=Cr(p*d),m=Cr(g*d),b=Cr(l*p);return new ur(A,w,b,m)}subtract(e){return this.add(e.negate())}precomputeWindow(e){const t=1+256/e,r=[];let n=this,i=n;for(let s=0;s<t;s++){i=n,r.push(i);for(let t=1;t<2**(e-1);t++)i=i.add(n),r.push(i);n=i.double()}return r}wNAF(e,t){!t&&this.equals(ur.BASE)&&(t=dr.BASE);const r=t&&t._WINDOW_SIZE||1;if(256%r)throw Error("Point#wNAF: Invalid precomputation window, must be power of 2");let n=t&&pr.get(t);n||(n=this.precomputeWindow(r),t&&1!==r&&(n=ur.normalizeZ(n),pr.set(t,n)));let i=ur.ZERO,s=ur.BASE;const a=1+256/r,o=2**(r-1),c=BigInt(2**r-1),u=2**r,h=BigInt(r);for(let t=0;t<a;t++){const r=t*o;let a=Number(e&c);e>>=h,a>o&&(a-=u,e+=Xt);const l=r,y=r+Math.abs(a)-1,f=t%2!=0,g=a<0;0===a?s=s.add(hr(f,n[l])):i=i.add(hr(g,n[y]))}return ur.normalizeZ([i,s])[0]}multiply(e,t){return this.wNAF(Tr(e,rr.l),t)}multiplyUnsafe(e){let t=Tr(e,rr.l,!1);const r=ur.BASE,n=ur.ZERO;if(t===Jt)return n;if(this.equals(n)||t===Xt)return this;if(this.equals(r))return this.wNAF(t);let i=n,s=this;for(;t>Jt;)t&Xt&&(i=i.add(s)),s=s.double(),t>>=Xt;return i}isSmallOrder(){return this.multiplyUnsafe(rr.h).equals(ur.ZERO)}isTorsionFree(){let e=this.multiplyUnsafe(rr.l/$t).double();return rr.l%$t&&(e=e.add(this)),e.equals(ur.ZERO)}toAffine(e){const{x:t,y:r,z:n}=this,i=this.equals(ur.ZERO);null==e&&(e=i?er:Ur(n));const s=Cr(t*e),a=Cr(r*e),o=Cr(n*e);if(i)return dr.ZERO;if(o!==Xt)throw Error("invZ was invalid");return new dr(s,a)}fromRistrettoBytes(){fr()}toRistrettoBytes(){fr()}fromRistrettoHash(){fr()}}function hr(e,t){const r=t.negate();return e?r:t}function lr(e){if(!(e instanceof ur))throw new TypeError("ExtendedPoint expected")}function yr(e){if(!(e instanceof gr))throw new TypeError("RistrettoPoint expected")}function fr(){throw Error("Legacy method: switch to RistrettoPoint")}ur.BASE=new ur(rr.Gx,rr.Gy,Xt,Cr(rr.Gx*rr.Gy)),ur.ZERO=new ur(Jt,Xt,Xt,Jt);class gr{constructor(e){this.ep=e}static calcElligatorRistrettoMap(e){const{d:t}=rr,r=Cr(ir*e*e),n=Cr((r+Xt)*or);let i=BigInt(-1);const s=Cr((i-t*r)*Cr(r+t));let{isValid:a,value:o}=Dr(n,s),c=Cr(o*e);Br(c)||(c=Cr(-c)),a||(o=c),a||(i=r);const u=Cr(i*(r-Xt)*cr-s),h=o*o,l=Cr((o+o)*s),y=Cr(u*sr),f=Cr(Xt-h),g=Cr(Xt+h);return new ur(Cr(l*g),Cr(f*y),Cr(y*g),Cr(l*f))}static hashToCurve(e){const t=Kr((e=Rr(e,64)).slice(0,32)),r=this.calcElligatorRistrettoMap(t),n=Kr(e.slice(32,64)),i=this.calcElligatorRistrettoMap(n);return new gr(r.add(i))}static fromHex(e){e=Rr(e,32);const{a:t,d:r}=rr,n="RistrettoPoint.fromHex: the hex is not valid encoding of RistrettoPoint",i=Kr(e);if(!function(e,t){if(e.length!==t.length)return!1;for(let r=0;r<e.length;r++)if(e[r]!==t[r])return!1;return!0}(vr(i),e)||Br(i))throw Error(n);const s=Cr(i*i),a=Cr(Xt+t*s),o=Cr(Xt-t*s),c=Cr(a*a),u=Cr(o*o),h=Cr(t*r*c-u),{isValid:l,value:y}=xr(Cr(h*u)),f=Cr(y*o),g=Cr(y*f*h);let p=Cr((i+i)*f);Br(p)&&(p=Cr(-p));const d=Cr(a*g),A=Cr(p*d);if(!l||Br(A)||d===Jt)throw Error(n);return new gr(new ur(p,d,Xt,A))}toRawBytes(){let{x:e,y:t,z:r,t:n}=this.ep;const i=Cr(Cr(r+t)*Cr(r-t)),s=Cr(e*t),a=Cr(s*s),{value:o}=xr(Cr(i*a)),c=Cr(o*i),u=Cr(o*s),h=Cr(c*u*n);let l;if(Br(n*h)){let r=Cr(t*ir),n=Cr(e*ir);e=r,t=n,l=Cr(c*ar)}else l=u;Br(e*h)&&(t=Cr(-t));let y=Cr((r-t)*l);return Br(y)&&(y=Cr(-y)),vr(y)}toHex(){return br(this.toRawBytes())}toString(){return this.toHex()}equals(e){yr(e);const t=this.ep,r=e.ep,n=Cr(t.x*r.y)===Cr(t.y*r.x),i=Cr(t.y*r.y)===Cr(t.x*r.x);return n||i}add(e){return yr(e),new gr(this.ep.add(e.ep))}subtract(e){return yr(e),new gr(this.ep.subtract(e.ep))}multiply(e){return new gr(this.ep.multiply(e))}multiplyUnsafe(e){return new gr(this.ep.multiplyUnsafe(e))}}gr.BASE=new gr(ur.BASE),gr.ZERO=new gr(ur.ZERO);const pr=new WeakMap;class dr{constructor(e,t){this.x=e,this.y=t}_setWindowSize(e){this._WINDOW_SIZE=e,pr.delete(this)}static fromHex(e,t=!0){const{d:r,P:n}=rr,i=(e=Rr(e,32)).slice();i[31]=-129&e[31];const s=Sr(i);if(t&&s>=n)throw Error("Expected 0 < hex < P");if(!t&&s>=nr)throw Error("Expected 0 < hex < 2**256");const a=Cr(s*s),o=Cr(a-Xt),c=Cr(r*a+Xt);let{isValid:u,value:h}=Dr(o,c);if(!u)throw Error("Point.fromHex: invalid y coordinate");const l=(h&Xt)===Xt;return!!(128&e[31])!==l&&(h=Cr(-h)),new dr(h,s)}static async fromPrivateKey(e){return(await Lr(e)).point}toRawBytes(){const e=vr(this.y);return e[31]|=this.x&Xt?128:0,e}toHex(){return br(this.toRawBytes())}toX25519(){const{y:e}=this;return vr(Cr((Xt+e)*Ur(Xt-e)))}isTorsionFree(){return ur.fromAffine(this).isTorsionFree()}equals(e){return this.x===e.x&&this.y===e.y}negate(){return new dr(Cr(-this.x),this.y)}add(e){return ur.fromAffine(this).add(ur.fromAffine(e)).toAffine()}subtract(e){return this.add(e.negate())}multiply(e){return ur.fromAffine(this).multiply(e,this).toAffine()}}dr.BASE=new dr(rr.Gx,rr.Gy),dr.ZERO=new dr(Jt,Xt);let Ar=class e{constructor(e,t){this.r=e,this.s=t,this.assertValidity()}static fromHex(t){const r=Rr(t,64),n=dr.fromHex(r.slice(0,32),!1),i=Sr(r.slice(32,64));return new e(n,i)}assertValidity(){const{r:e,s:t}=this;if(!(e instanceof dr))throw Error("Expected Point instance");return Tr(t,rr.l,!1),this}toRawBytes(){const e=new Uint8Array(64);return e.set(this.r.toRawBytes()),e.set(vr(this.s),32),e}toHex(){return br(this.toRawBytes())}};function wr(...e){if(!e.every((e=>e instanceof Uint8Array)))throw Error("Expected Uint8Array list");if(1===e.length)return e[0];const t=e.reduce(((e,t)=>e+t.length),0),r=new Uint8Array(t);for(let t=0,n=0;t<e.length;t++){const i=e[t];r.set(i,n),n+=i.length}return r}const mr=Array.from({length:256},((e,t)=>t.toString(16).padStart(2,"0")));function br(e){if(!(e instanceof Uint8Array))throw Error("Uint8Array expected");let t="";for(let r=0;r<e.length;r++)t+=mr[e[r]];return t}function kr(e){if("string"!=typeof e)throw new TypeError("hexToBytes: expected string, got "+typeof e);if(e.length%2)throw Error("hexToBytes: received invalid unpadded hex");const t=new Uint8Array(e.length/2);for(let r=0;r<t.length;r++){const n=2*r,i=e.slice(n,n+2),s=Number.parseInt(i,16);if(Number.isNaN(s)||s<0)throw Error("Invalid byte sequence");t[r]=s}return t}function Er(e){return kr(e.toString(16).padStart(64,"0"))}function vr(e){return Er(e).reverse()}function Br(e){return(Cr(e)&Xt)===Xt}function Sr(e){if(!(e instanceof Uint8Array))throw Error("Expected Uint8Array");return BigInt("0x"+br(Uint8Array.from(e).reverse()))}const Ir=BigInt("0x7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff");function Kr(e){return Cr(Sr(e)&Ir)}function Cr(e,t=rr.P){const r=e%t;return r>=Jt?r:t+r}function Ur(e,t=rr.P){if(e===Jt||t<=Jt)throw Error(`invert: expected positive integers, got n=${e} mod=${t}`);let r=Cr(e,t),n=t,i=Jt,s=Xt;for(;r!==Jt;){const e=n%r,t=i-s*(n/r);n=r,r=e,i=s,s=t}if(n!==Xt)throw Error("invert: does not exist");return Cr(i,t)}function Pr(e,t){const{P:r}=rr;let n=e;for(;t-- >Jt;)n*=n,n%=r;return n}function Dr(e,t){const r=Cr(t*t*t),n=function(e){const{P:t}=rr,r=BigInt(5),n=BigInt(10),i=BigInt(20),s=BigInt(40),a=BigInt(80),o=e*e%t*e%t,c=Pr(o,$t)*o%t,u=Pr(c,Xt)*e%t,h=Pr(u,r)*u%t,l=Pr(h,n)*h%t,y=Pr(l,i)*l%t,f=Pr(y,s)*y%t,g=Pr(f,a)*f%t,p=Pr(g,a)*f%t,d=Pr(p,n)*h%t;return{pow_p_5_8:Pr(d,$t)*e%t,b2:o}}(e*Cr(r*r*t)).pow_p_5_8;let i=Cr(e*r*n);const s=Cr(t*i*i),a=i,o=Cr(i*ir),c=s===e,u=s===Cr(-e),h=s===Cr(-e*ir);return c&&(i=a),(u||h)&&(i=o),Br(i)&&(i=Cr(-i)),{isValid:c||u,value:i}}function xr(e){return Dr(Xt,e)}function Qr(e){return Cr(Sr(e),rr.l)}function Rr(e,t){const r=e instanceof Uint8Array?Uint8Array.from(e):kr(e);if("number"==typeof t&&r.length!==t)throw Error(`Expected ${t} bytes`);return r}function Tr(e,t,r=!0){if(!t)throw new TypeError("Specify max value");if("number"==typeof e&&Number.isSafeInteger(e)&&(e=BigInt(e)),"bigint"==typeof e&&e<t)if(r){if(Jt<e)return e}else if(Jt<=e)return e;throw new TypeError("Expected valid scalar: 0 < scalar < max")}let Mr;async function Lr(e){return function(e){const t=function(e){return e[0]&=248,e[31]&=127,e[31]|=64,e}(e.slice(0,32)),r=e.slice(32,64),n=Qr(t),i=dr.BASE.multiply(n),s=i.toRawBytes();return{head:t,prefix:r,scalar:n,point:i,pointBytes:s}}(await Or.sha512(function(e){if(32!==(e="bigint"==typeof e||"number"==typeof e?Er(Tr(e,nr)):Rr(e)).length)throw Error("Expected 32 bytes");return e}(e)))}async function Fr(e,t,r){const{r:n,SB:i,msg:s,pub:a}=function(e,t,r){t=Rr(t),r instanceof dr||(r=dr.fromHex(r,!1));const{r:n,s:i}=e instanceof Ar?e.assertValidity():Ar.fromHex(e);return{r:n,s:i,SB:ur.BASE.multiplyUnsafe(i),pub:r,msg:t}}(e,t,r),o=await Or.sha512(n.toRawBytes(),a.toRawBytes(),s);return function(e,t,r,n){const i=Qr(n),s=ur.fromAffine(e).multiplyUnsafe(i);return ur.fromAffine(t).add(s).subtract(r).multiplyUnsafe(rr.h).equals(ur.ZERO)}(a,n,i,o)}dr.BASE._setWindowSize(8);const Nr={node:null,web:"object"==typeof self&&"crypto"in self?self.crypto:void 0},Or={bytesToHex:br,hexToBytes:kr,concatBytes:wr,getExtendedPublicKey:Lr,mod:Cr,invert:Ur,TORSION_SUBGROUP:["0100000000000000000000000000000000000000000000000000000000000000","c7176a703d4dd84fba3c0b760d10670f2a2053fa2c39ccc64ec7fd7792ac037a","0000000000000000000000000000000000000000000000000000000000000080","26e8958fc2b227b045c3f489f2ef98f0d5dfac05d3c63339b13802886d53fc05","ecffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff7f","26e8958fc2b227b045c3f489f2ef98f0d5dfac05d3c63339b13802886d53fc85","0000000000000000000000000000000000000000000000000000000000000000","c7176a703d4dd84fba3c0b760d10670f2a2053fa2c39ccc64ec7fd7792ac03fa"],hashToPrivateScalar:e=>{if((e=Rr(e)).length<40||e.length>1024)throw Error("Expected 40-1024 bytes of private key as per FIPS 186");return Cr(Sr(e),rr.l-Xt)+Xt},randomBytes:(e=32)=>{if(Nr.web)return Nr.web.getRandomValues(new Uint8Array(e));throw Error("The environment doesn't have randomBytes function")},randomPrivateKey:()=>Or.randomBytes(32),sha512:async(...e)=>{const t=wr(...e);if(Nr.web){const e=await Nr.web.subtle.digest("SHA-512",t.buffer);return new Uint8Array(e)}throw Error("The environment doesn't have sha512 function")},precompute(e=8,t=dr.BASE){const r=t.equals(dr.BASE)?t:new dr(t.x,t.y);return r._setWindowSize(e),r.multiply($t),r},sha512Sync:void 0};async function _r(e){switch(e){case Q.publicKey.ed25519:try{const e=M.getWebCrypto(),t=await e.generateKey("Ed25519",!0,["sign","verify"]),r=await e.exportKey("jwk",t.privateKey),n=await e.exportKey("jwk",t.publicKey);return{A:new Uint8Array(H(n.x)),seed:H(r.d)}}catch(t){if("NotSupportedError"!==t.name&&"OperationError"!==t.name)throw t;const r=ye(qr(e)),{publicKey:n}=We.sign.keyPair.fromSeed(r);return{A:n,seed:r}}case Q.publicKey.ed448:{const e=await M.getNobleCurve(Q.publicKey.ed448),t=e.utils.randomPrivateKey();return{A:e.getPublicKey(t),seed:t}}default:throw Error("Unsupported EdDSA algorithm")}}async function Hr(e,t,r,n,i,s){if(Qe(t)<Qe(jr(e)))throw Error("Hash algorithm too weak for EdDSA.");switch(e){case Q.publicKey.ed25519:try{const t=M.getWebCrypto(),r=Yr(e,n,i),a=await t.importKey("jwk",r,"Ed25519",!1,["sign"]);return{RS:new Uint8Array(await t.sign("Ed25519",a,s))}}catch(e){if("NotSupportedError"!==e.name)throw e;const t=M.concatUint8Array([i,n]);return{RS:We.sign.detached(s,t)}}case Q.publicKey.ed448:return{RS:(await M.getNobleCurve(Q.publicKey.ed448)).sign(s,i)};default:throw Error("Unsupported EdDSA algorithm")}}async function zr(e,t,{RS:r},n,i,s){if(Qe(t)<Qe(jr(e)))throw Error("Hash algorithm too weak for EdDSA.");switch(e){case Q.publicKey.ed25519:try{const t=M.getWebCrypto(),n=Vr(e,i),a=await t.importKey("jwk",n,"Ed25519",!1,["verify"]);return await t.verify("Ed25519",a,r,s)}catch(e){if("NotSupportedError"!==e.name)throw e;return Fr(r,s,i)}case Q.publicKey.ed448:return(await M.getNobleCurve(Q.publicKey.ed448)).verify(r,s,i);default:throw Error("Unsupported EdDSA algorithm")}}async function Gr(e,t,r){switch(e){case Q.publicKey.ed25519:{const{publicKey:e}=We.sign.keyPair.fromSeed(r);return M.equalsUint8Array(t,e)}case Q.publicKey.ed448:{const e=(await M.getNobleCurve(Q.publicKey.ed448)).getPublicKey(r);return M.equalsUint8Array(t,e)}default:return!1}}function qr(e){switch(e){case Q.publicKey.ed25519:return 32;case Q.publicKey.ed448:return 57;default:throw Error("Unsupported EdDSA algorithm")}}function jr(e){switch(e){case Q.publicKey.ed25519:return Q.hash.sha256;case Q.publicKey.ed448:return Q.hash.sha512;default:throw Error("Unknown EdDSA algo")}}Object.defineProperties(Or,{sha512Sync:{configurable:!1,get:()=>Mr,set(e){Mr||(Mr=e)}}});const Vr=(e,t)=>{if(e===Q.publicKey.ed25519){return{kty:"OKP",crv:"Ed25519",x:z(t),ext:!0}}throw Error("Unsupported EdDSA algorithm")},Yr=(e,t,r)=>{if(e===Q.publicKey.ed25519){const n=Vr(e,t);return n.d=z(r),n}throw Error("Unsupported EdDSA algorithm")};var Zr=/*#__PURE__*/Object.freeze({__proto__:null,generate:_r,getPayloadSize:qr,getPreferredHashAlgo:jr,sign:Hr,validateParams:Gr,verify:zr});function Wr(e){return e instanceof Uint8Array||null!=e&&"object"==typeof e&&"Uint8Array"===e.constructor.name}function Jr(e,...t){if(!Wr(e))throw Error("Uint8Array expected");if(t.length>0&&!t.includes(e.length))throw Error(`Uint8Array expected of length ${t}, not of length=${e.length}`)}function Xr(e,t=!0){if(e.destroyed)throw Error("Hash instance has been destroyed");if(t&&e.finished)throw Error("Hash#digest() has already been called")}function $r(e,t){Jr(e);const r=t.outputLen;if(e.length<r)throw Error("digestInto() expects output buffer of length at least "+r)}
 /*! noble-ciphers - MIT License (c) 2023 Paul Miller (paulmillr.com) */const en=e=>new Uint8Array(e.buffer,e.byteOffset,e.byteLength),tn=e=>new Uint32Array(e.buffer,e.byteOffset,Math.floor(e.byteLength/4)),rn=e=>new DataView(e.buffer,e.byteOffset,e.byteLength);if(!(68===new Uint8Array(new Uint32Array([287454020]).buffer)[0]))throw Error("Non little-endian hardware is not supported");function nn(e){if("string"==typeof e)e=function(e){if("string"!=typeof e)throw Error("string expected, got "+typeof e);return new Uint8Array((new TextEncoder).encode(e))}(e);else{if(!Wr(e))throw Error("Uint8Array expected, got "+typeof e);e=un(e)}return e}function sn(e,t){if(e.length!==t.length)return!1;let r=0;for(let n=0;n<e.length;n++)r|=e[n]^t[n];return 0===r}const an=(e,t)=>(Object.assign(t,e),t);function on(e,t,r,n){if("function"==typeof e.setBigUint64)return e.setBigUint64(t,r,n);const i=BigInt(32),s=BigInt(4294967295),a=Number(r>>i&s),o=Number(r&s);e.setUint32(t+0,a,n),e.setUint32(t+4,o,n)}function cn(e){return e.byteOffset%4==0}function un(e){return Uint8Array.from(e)}function hn(...e){for(let t=0;t<e.length;t++)e[t].fill(0)}const ln=16,yn=/* @__PURE__ */new Uint8Array(16),fn=tn(yn),gn=e=>(e>>>0&255)<<24|(e>>>8&255)<<16|(e>>>16&255)<<8|e>>>24&255;class pn{constructor(e,t){this.blockLen=ln,this.outputLen=ln,this.s0=0,this.s1=0,this.s2=0,this.s3=0,this.finished=!1,Jr(e=nn(e),16);const r=rn(e);let n=r.getUint32(0,!1),i=r.getUint32(4,!1),s=r.getUint32(8,!1),a=r.getUint32(12,!1);const o=[];for(let e=0;e<128;e++)o.push({s0:gn(n),s1:gn(i),s2:gn(s),s3:gn(a)}),({s0:n,s1:i,s2:s,s3:a}={s3:(h=s)<<31|(l=a)>>>1,s2:(u=i)<<31|h>>>1,s1:(c=n)<<31|u>>>1,s0:c>>>1^225<<24&-(1&l)});var c,u,h,l;const y=(e=>e>65536?8:e>1024?4:2)(t||1024);if(![1,2,4,8].includes(y))throw Error(`ghash: wrong window size=${y}, should be 2, 4 or 8`);this.W=y;const f=128/y,g=this.windowSize=2**y,p=[];for(let e=0;e<f;e++)for(let t=0;t<g;t++){let r=0,n=0,i=0,s=0;for(let a=0;a<y;a++){if(!(t>>>y-a-1&1))continue;const{s0:c,s1:u,s2:h,s3:l}=o[y*e+a];r^=c,n^=u,i^=h,s^=l}p.push({s0:r,s1:n,s2:i,s3:s})}this.t=p}_updateBlock(e,t,r,n){e^=this.s0,t^=this.s1,r^=this.s2,n^=this.s3;const{W:i,t:s,windowSize:a}=this;let o=0,c=0,u=0,h=0;const l=(1<<i)-1;let y=0;for(const f of[e,t,r,n])for(let e=0;e<4;e++){const t=f>>>8*e&255;for(let e=8/i-1;e>=0;e--){const r=t>>>i*e&l,{s0:n,s1:f,s2:g,s3:p}=s[y*a+r];o^=n,c^=f,u^=g,h^=p,y+=1}}this.s0=o,this.s1=c,this.s2=u,this.s3=h}update(e){e=nn(e),Xr(this);const t=tn(e),r=Math.floor(e.length/ln),n=e.length%ln;for(let e=0;e<r;e++)this._updateBlock(t[4*e+0],t[4*e+1],t[4*e+2],t[4*e+3]);return n&&(yn.set(e.subarray(r*ln)),this._updateBlock(fn[0],fn[1],fn[2],fn[3]),hn(fn)),this}destroy(){const{t:e}=this;for(const t of e)t.s0=0,t.s1=0,t.s2=0,t.s3=0}digestInto(e){Xr(this),$r(e,this),this.finished=!0;const{s0:t,s1:r,s2:n,s3:i}=this,s=tn(e);return s[0]=t,s[1]=r,s[2]=n,s[3]=i,e}digest(){const e=new Uint8Array(ln);return this.digestInto(e),this.destroy(),e}}class dn extends pn{constructor(e,t){const r=function(e){e.reverse();const t=1&e[15];let r=0;for(let t=0;t<e.length;t++){const n=e[t];e[t]=n>>>1|r,r=(1&n)<<7}return e[0]^=225&-t,e}(un(e=nn(e)));super(r,t),hn(r)}update(e){e=nn(e),Xr(this);const t=tn(e),r=e.length%ln,n=Math.floor(e.length/ln);for(let e=0;e<n;e++)this._updateBlock(gn(t[4*e+3]),gn(t[4*e+2]),gn(t[4*e+1]),gn(t[4*e+0]));return r&&(yn.set(e.subarray(n*ln)),this._updateBlock(gn(fn[3]),gn(fn[2]),gn(fn[1]),gn(fn[0])),hn(fn)),this}digestInto(e){Xr(this),$r(e,this),this.finished=!0;const{s0:t,s1:r,s2:n,s3:i}=this,s=tn(e);return s[0]=t,s[1]=r,s[2]=n,s[3]=i,e.reverse()}}function An(e){const t=(t,r)=>e(r,t.length).update(nn(t)).digest(),r=e(new Uint8Array(16),0);return t.outputLen=r.outputLen,t.blockLen=r.blockLen,t.create=(t,r)=>e(t,r),t}const wn=An(((e,t)=>new pn(e,t)));An(((e,t)=>new dn(e,t)));const mn=16,bn=new Uint8Array(mn),kn=283;function En(e){return e<<1^kn&-(e>>7)}function vn(e,t){let r=0;for(;t>0;t>>=1)r^=e&-(1&t),e=En(e);return r}const Bn=/* @__PURE__ */(()=>{const e=new Uint8Array(256);for(let t=0,r=1;t<256;t++,r^=En(r))e[t]=r;const t=new Uint8Array(256);t[0]=99;for(let r=0;r<255;r++){let n=e[255-r];n|=n<<8,t[e[r]]=255&(n^n>>4^n>>5^n>>6^n>>7^99)}return hn(e),t})(),Sn=/* @__PURE__ */Bn.map(((e,t)=>Bn.indexOf(t))),In=e=>e<<24|e>>>8,Kn=e=>e<<8|e>>>24,Cn=e=>e<<24&4278190080|e<<8&16711680|e>>>8&65280|e>>>24&255;function Un(e,t){if(256!==e.length)throw Error("Wrong sbox length");const r=new Uint32Array(256).map(((r,n)=>t(e[n]))),n=r.map(Kn),i=n.map(Kn),s=i.map(Kn),a=new Uint32Array(65536),o=new Uint32Array(65536),c=new Uint16Array(65536);for(let t=0;t<256;t++)for(let u=0;u<256;u++){const h=256*t+u;a[h]=r[t]^n[u],o[h]=i[t]^s[u],c[h]=e[t]<<8|e[u]}return{sbox:e,sbox2:c,T0:r,T1:n,T2:i,T3:s,T01:a,T23:o}}const Pn=/* @__PURE__ */Un(Bn,(e=>vn(e,3)<<24|e<<16|e<<8|vn(e,2))),Dn=/* @__PURE__ */Un(Sn,(e=>vn(e,11)<<24|vn(e,13)<<16|vn(e,9)<<8|vn(e,14))),xn=/* @__PURE__ */(()=>{const e=new Uint8Array(16);for(let t=0,r=1;t<16;t++,r=En(r))e[t]=r;return e})();function Qn(e){Jr(e);const t=e.length;if(![16,24,32].includes(t))throw Error("aes: wrong key size: should be 16, 24 or 32, got: "+t);const{sbox2:r}=Pn,n=[];cn(e)||n.push(e=un(e));const i=tn(e),s=i.length,a=e=>Mn(r,e,e,e,e),o=new Uint32Array(t+28);o.set(i);for(let e=s;e<o.length;e++){let t=o[e-1];e%s==0?t=a(In(t))^xn[e/s-1]:s>6&&e%s==4&&(t=a(t)),o[e]=o[e-s]^t}return hn(...n),o}function Rn(e){const t=Qn(e),r=t.slice(),n=t.length,{sbox2:i}=Pn,{T0:s,T1:a,T2:o,T3:c}=Dn;for(let e=0;e<n;e+=4)for(let i=0;i<4;i++)r[e+i]=t[n-e-4+i];hn(t);for(let e=4;e<n-4;e++){const t=r[e],n=Mn(i,t,t,t,t);r[e]=s[255&n]^a[n>>>8&255]^o[n>>>16&255]^c[n>>>24]}return r}function Tn(e,t,r,n,i,s){return e[r<<8&65280|n>>>8&255]^t[i>>>8&65280|s>>>24&255]}function Mn(e,t,r,n,i){return e[255&t|65280&r]|e[n>>>16&255|i>>>16&65280]<<16}function Ln(e,t,r,n,i){const{sbox2:s,T01:a,T23:o}=Pn;let c=0;t^=e[c++],r^=e[c++],n^=e[c++],i^=e[c++];const u=e.length/4-2;for(let s=0;s<u;s++){const s=e[c++]^Tn(a,o,t,r,n,i),u=e[c++]^Tn(a,o,r,n,i,t),h=e[c++]^Tn(a,o,n,i,t,r),l=e[c++]^Tn(a,o,i,t,r,n);t=s,r=u,n=h,i=l}return{s0:e[c++]^Mn(s,t,r,n,i),s1:e[c++]^Mn(s,r,n,i,t),s2:e[c++]^Mn(s,n,i,t,r),s3:e[c++]^Mn(s,i,t,r,n)}}function Fn(e,t,r,n,i){const{sbox2:s,T01:a,T23:o}=Dn;let c=0;t^=e[c++],r^=e[c++],n^=e[c++],i^=e[c++];const u=e.length/4-2;for(let s=0;s<u;s++){const s=e[c++]^Tn(a,o,t,i,n,r),u=e[c++]^Tn(a,o,r,t,i,n),h=e[c++]^Tn(a,o,n,r,t,i),l=e[c++]^Tn(a,o,i,n,r,t);t=s,r=u,n=h,i=l}return{s0:e[c++]^Mn(s,t,i,n,r),s1:e[c++]^Mn(s,r,t,i,n),s2:e[c++]^Mn(s,n,r,t,i),s3:e[c++]^Mn(s,i,n,r,t)}}function Nn(e,t){if(void 0===t)return new Uint8Array(e);if(Jr(t),t.length<e)throw Error(`aes: wrong destination length, expected at least ${e}, got: ${t.length}`);if(!cn(t))throw Error("unaligned dst");return t}function On(e,t,r,n){Jr(t,mn),Jr(r);const i=r.length;n=Nn(i,n);const s=t,a=tn(s);let{s0:o,s1:c,s2:u,s3:h}=Ln(e,a[0],a[1],a[2],a[3]);const l=tn(r),y=tn(n);for(let t=0;t+4<=l.length;t+=4){y[t+0]=l[t+0]^o,y[t+1]=l[t+1]^c,y[t+2]=l[t+2]^u,y[t+3]=l[t+3]^h;let r=1;for(let e=s.length-1;e>=0;e--)r=r+(255&s[e])|0,s[e]=255&r,r>>>=8;({s0:o,s1:c,s2:u,s3:h}=Ln(e,a[0],a[1],a[2],a[3]))}const f=mn*Math.floor(l.length/4);if(f<i){const e=new Uint32Array([o,c,u,h]),t=en(e);for(let e=f,s=0;e<i;e++,s++)n[e]=r[e]^t[s];hn(e)}return n}function _n(e,t,r,n,i){Jr(r,mn),Jr(n),i=Nn(n.length,i);const s=r,a=tn(s),o=rn(s),c=tn(n),u=tn(i),h=t?0:12,l=n.length;let y=o.getUint32(h,t),{s0:f,s1:g,s2:p,s3:d}=Ln(e,a[0],a[1],a[2],a[3]);for(let r=0;r+4<=c.length;r+=4)u[r+0]=c[r+0]^f,u[r+1]=c[r+1]^g,u[r+2]=c[r+2]^p,u[r+3]=c[r+3]^d,y=y+1>>>0,o.setUint32(h,y,t),({s0:f,s1:g,s2:p,s3:d}=Ln(e,a[0],a[1],a[2],a[3]));const A=mn*Math.floor(c.length/4);if(A<l){const e=new Uint32Array([f,g,p,d]),t=en(e);for(let e=A,r=0;e<l;e++,r++)i[e]=n[e]^t[r];hn(e)}return i}const Hn=an({blockSize:16,nonceLength:16},(function(e,t){function r(r,n){if(Jr(r),void 0!==n&&(Jr(n),!cn(n)))throw Error("unaligned destination");const i=Qn(e),s=un(t),a=[i,s];cn(r)||a.push(r=un(r));const o=On(i,s,r,n);return hn(...a),o}return Jr(e),Jr(t,mn),{encrypt:(e,t)=>r(e,t),decrypt:(e,t)=>r(e,t)}}));const zn=an({blockSize:16,nonceLength:16},(function(e,t,r={}){Jr(e),Jr(t,16);const n=!r.disablePadding;return{encrypt(r,i){const s=Qn(e),{b:a,o,out:c}=function(e,t,r){Jr(e);let n=e.length;const i=n%mn;if(!t&&0!==i)throw Error("aec/(cbc-ecb): unpadded plaintext with disabled padding");cn(e)||(e=un(e));const s=tn(e);if(t){let e=mn-i;e||(e=mn),n+=e}const a=Nn(n,r);return{b:s,o:tn(a),out:a}}(r,n,i);let u=t;const h=[s];cn(u)||h.push(u=un(u));const l=tn(u);let y=l[0],f=l[1],g=l[2],p=l[3],d=0;for(;d+4<=a.length;)y^=a[d+0],f^=a[d+1],g^=a[d+2],p^=a[d+3],({s0:y,s1:f,s2:g,s3:p}=Ln(s,y,f,g,p)),o[d++]=y,o[d++]=f,o[d++]=g,o[d++]=p;if(n){const e=function(e){const t=new Uint8Array(16),r=tn(t);t.set(e);const n=mn-e.length;for(let e=mn-n;e<mn;e++)t[e]=n;return r}(r.subarray(4*d));y^=e[0],f^=e[1],g^=e[2],p^=e[3],({s0:y,s1:f,s2:g,s3:p}=Ln(s,y,f,g,p)),o[d++]=y,o[d++]=f,o[d++]=g,o[d++]=p}return hn(...h),c},decrypt(r,i){!function(e){if(Jr(e),e.length%mn!=0)throw Error("aes/(cbc-ecb).decrypt ciphertext should consist of blocks with size 16")}(r);const s=Rn(e);let a=t;const o=[s];cn(a)||o.push(a=un(a));const c=tn(a),u=Nn(r.length,i);cn(r)||o.push(r=un(r));const h=tn(r),l=tn(u);let y=c[0],f=c[1],g=c[2],p=c[3];for(let e=0;e+4<=h.length;){const t=y,r=f,n=g,i=p;y=h[e+0],f=h[e+1],g=h[e+2],p=h[e+3];const{s0:a,s1:o,s2:c,s3:u}=Fn(s,y,f,g,p);l[e++]=a^t,l[e++]=o^r,l[e++]=c^n,l[e++]=u^i}return hn(...o),function(e,t){if(!t)return e;const r=e.length;if(!r)throw Error("aes/pcks5: empty ciphertext not allowed");const n=e[r-1];if(n<=0||n>16)throw Error("aes/pcks5: wrong padding");const i=e.subarray(0,-n);for(let t=0;t<n;t++)if(e[r-t-1]!==n)throw Error("aes/pcks5: wrong padding");return i}(u,n)}}})),Gn=an({blockSize:16,nonceLength:16},(function(e,t){function r(r,n,i){Jr(r);const s=r.length;i=Nn(s,i);const a=Qn(e);let o=t;const c=[a];cn(o)||c.push(o=un(o)),cn(r)||c.push(r=un(r));const u=tn(r),h=tn(i),l=n?h:u,y=tn(o);let f=y[0],g=y[1],p=y[2],d=y[3];for(let e=0;e+4<=u.length;){const{s0:t,s1:r,s2:n,s3:i}=Ln(a,f,g,p,d);h[e+0]=u[e+0]^t,h[e+1]=u[e+1]^r,h[e+2]=u[e+2]^n,h[e+3]=u[e+3]^i,f=l[e++],g=l[e++],p=l[e++],d=l[e++]}const A=mn*Math.floor(u.length/4);if(A<s){({s0:f,s1:g,s2:p,s3:d}=Ln(a,f,g,p,d));const e=en(new Uint32Array([f,g,p,d]));for(let t=A,n=0;t<s;t++,n++)i[t]=r[t]^e[n];hn(e)}return hn(...c),i}return Jr(e),Jr(t,16),{encrypt:(e,t)=>r(e,!0,t),decrypt:(e,t)=>r(e,!1,t)}}));const qn=an({blockSize:16,nonceLength:12,tagLength:16},(function(e,t,r){if(Jr(e),Jr(t),void 0!==r&&Jr(r),t.length<8)throw Error("aes/gcm: invalid nonce length");const n=16;function i(e,t,n){const i=function(e,t,r,n,i){const s=null==i?0:i.length,a=e.create(r,n.length+s);i&&a.update(i),a.update(n);const o=new Uint8Array(16),c=rn(o);i&&on(c,0,BigInt(8*s),t),on(c,8,BigInt(8*n.length),t),a.update(o);const u=a.digest();return hn(o),u}(wn,!1,e,n,r);for(let e=0;e<t.length;e++)i[e]^=t[e];return i}function s(){const r=Qn(e),n=bn.slice(),i=bn.slice();if(_n(r,!1,i,i,n),12===t.length)i.set(t);else{const e=bn.slice();on(rn(e),8,BigInt(8*t.length),!1);const r=wn.create(n).update(t).update(e);r.digestInto(i),r.destroy()}return{xk:r,authKey:n,counter:i,tagMask:_n(r,!1,i,bn)}}return{encrypt(e){Jr(e);const{xk:t,authKey:r,counter:a,tagMask:o}=s(),c=new Uint8Array(e.length+n),u=[t,r,a,o];cn(e)||u.push(e=un(e)),_n(t,!1,a,e,c);const h=i(r,o,c.subarray(0,c.length-n));return u.push(h),c.set(h,e.length),hn(...u),c},decrypt(e){if(Jr(e),e.length<n)throw Error("aes/gcm: ciphertext less than tagLen (16)");const{xk:t,authKey:r,counter:a,tagMask:o}=s(),c=[t,r,o,a];cn(e)||c.push(e=un(e));const u=e.subarray(0,-16),h=e.subarray(-16),l=i(r,o,u);if(c.push(l),!sn(l,h))throw Error("aes/gcm: invalid ghash tag");const y=_n(t,!1,a,u);return hn(...c),y}}}));function jn(e){return null!=e&&"object"==typeof e&&(e instanceof Uint32Array||"Uint32Array"===e.constructor.name)}function Vn(e,t){if(Jr(t,16),!jn(e))throw Error("_encryptBlock accepts result of expandKeyLE");const r=tn(t);let{s0:n,s1:i,s2:s,s3:a}=Ln(e,r[0],r[1],r[2],r[3]);return r[0]=n,r[1]=i,r[2]=s,r[3]=a,t}function Yn(e,t){if(Jr(t,16),!jn(e))throw Error("_decryptBlock accepts result of expandKeyLE");const r=tn(t);let{s0:n,s1:i,s2:s,s3:a}=Fn(e,r[0],r[1],r[2],r[3]);return r[0]=n,r[1]=i,r[2]=s,r[3]=a,t}const Zn={encrypt(e,t){if(t.length>=2**32)throw Error("plaintext should be less than 4gb");const r=Qn(e);if(16===t.length)Vn(r,t);else{const e=tn(t);let n=e[0],i=e[1];for(let t=0,s=1;t<6;t++)for(let t=2;t<e.length;t+=2,s++){const{s0:a,s1:o,s2:c,s3:u}=Ln(r,n,i,e[t],e[t+1]);n=a,i=o^Cn(s),e[t]=c,e[t+1]=u}e[0]=n,e[1]=i}r.fill(0)},decrypt(e,t){if(t.length-8>=2**32)throw Error("ciphertext should be less than 4gb");const r=Rn(e),n=t.length/8-1;if(1===n)Yn(r,t);else{const e=tn(t);let i=e[0],s=e[1];for(let t=0,a=6*n;t<6;t++)for(let t=2*n;t>=1;t-=2,a--){s^=Cn(a);const{s0:n,s1:o,s2:c,s3:u}=Fn(r,i,s,e[t],e[t+1]);i=n,s=o,e[t]=c,e[t+1]=u}e[0]=i,e[1]=s}r.fill(0)}},Wn=new Uint8Array(8).fill(166),Jn=an({blockSize:8},(e=>({encrypt(t){if(Jr(t),!t.length||t.length%8!=0)throw Error("invalid plaintext length");if(8===t.length)throw Error("8-byte keys not allowed in AESKW, use AESKWP instead");const r=function(...e){let t=0;for(let r=0;r<e.length;r++){const n=e[r];Jr(n),t+=n.length}const r=new Uint8Array(t);for(let t=0,n=0;t<e.length;t++){const i=e[t];r.set(i,n),n+=i.length}return r}(Wn,t);return Zn.encrypt(e,r),r},decrypt(t){if(Jr(t),t.length%8!=0||t.length<24)throw Error("invalid ciphertext length");const r=un(t);if(Zn.decrypt(e,r),!sn(r.subarray(0,8),Wn))throw Error("integrity check failed");return r.subarray(0,8).fill(0),r.subarray(8)}}))),Xn={expandKeyLE:Qn,expandKeyDecLE:Rn,encrypt:Ln,decrypt:Fn,encryptBlock:Vn,decryptBlock:Yn,ctrCounter:On,ctr32:_n};async function $n(e){switch(e){case Q.symmetric.aes128:case Q.symmetric.aes192:case Q.symmetric.aes256:throw Error("Not a legacy cipher");case Q.symmetric.cast5:case Q.symmetric.blowfish:case Q.symmetric.twofish:case Q.symmetric.tripledes:{const{legacyCiphers:t}=await Promise.resolve().then((function(){return Of})),r=Q.read(Q.symmetric,e),n=t.get(r);if(!n)throw Error("Unsupported cipher algorithm");return n}default:throw Error("Unsupported cipher algorithm")}}function ei(e){switch(e){case Q.symmetric.aes128:case Q.symmetric.aes192:case Q.symmetric.aes256:case Q.symmetric.twofish:return 16;case Q.symmetric.blowfish:case Q.symmetric.cast5:case Q.symmetric.tripledes:return 8;default:throw Error("Unsupported cipher")}}function ti(e){switch(e){case Q.symmetric.aes128:case Q.symmetric.blowfish:case Q.symmetric.cast5:return 16;case Q.symmetric.aes192:case Q.symmetric.tripledes:return 24;case Q.symmetric.aes256:case Q.symmetric.twofish:return 32;default:throw Error("Unsupported cipher")}}function ri(e){return{keySize:ti(e),blockSize:ei(e)}}const ni=M.getWebCrypto();async function ii(e,t,r){const{keySize:n}=ri(e);if(!M.isAES(e)||t.length!==n)throw Error("Unexpected algorithm or key size");try{const e=await ni.importKey("raw",t,{name:"AES-KW"},!1,["wrapKey"]),n=await ni.importKey("raw",r,{name:"HMAC",hash:"SHA-256"},!0,["sign"]),i=await ni.wrapKey("raw",n,e,{name:"AES-KW"});return new Uint8Array(i)}catch(e){if("NotSupportedError"!==e.name&&(24!==t.length||"OperationError"!==e.name))throw e;M.printDebugError("Browser did not support operation: "+e.message)}return Jn(t).encrypt(r)}async function si(e,t,r){const{keySize:n}=ri(e);if(!M.isAES(e)||t.length!==n)throw Error("Unexpected algorithm or key size");let i;try{i=await ni.importKey("raw",t,{name:"AES-KW"},!1,["unwrapKey"])}catch(e){if("NotSupportedError"!==e.name&&(24!==t.length||"OperationError"!==e.name))throw e;return M.printDebugError("Browser did not support operation: "+e.message),Jn(t).decrypt(r)}try{const e=await ni.unwrapKey("raw",r,i,{name:"AES-KW"},{name:"HMAC",hash:"SHA-256"},!0,["sign"]);return new Uint8Array(await ni.exportKey("raw",e))}catch(e){if("OperationError"===e.name)throw Error("Key Data Integrity failed");throw e}}const ai=M.getWebCrypto();async function oi(e,t,r,n,i){const s=Q.read(Q.webHash,e);if(!s)throw Error("Hash algo not supported with HKDF");const a=await ai.importKey("raw",t,"HKDF",!1,["deriveBits"]),o=await ai.deriveBits({name:"HKDF",hash:s,salt:r,info:n},a,8*i);return new Uint8Array(o)}const ci={x25519:M.encodeUTF8("OpenPGP X25519"),x448:M.encodeUTF8("OpenPGP X448")};async function ui(e){switch(e){case Q.publicKey.x25519:{const e=ye(32),{publicKey:t}=We.box.keyPair.fromSecretKey(e);return{A:t,k:e}}case Q.publicKey.x448:{const e=await M.getNobleCurve(Q.publicKey.x448),t=e.utils.randomPrivateKey();return{A:e.getPublicKey(t),k:t}}default:throw Error("Unsupported ECDH algorithm")}}async function hi(e,t,r){switch(e){case Q.publicKey.x25519:{const{publicKey:e}=We.box.keyPair.fromSecretKey(r);return M.equalsUint8Array(t,e)}case Q.publicKey.x448:{const e=(await M.getNobleCurve(Q.publicKey.x448)).getPublicKey(r);return M.equalsUint8Array(t,e)}default:return!1}}async function li(e,t,r){const{ephemeralPublicKey:n,sharedSecret:i}=await gi(e,r),s=M.concatUint8Array([n,r,i]);switch(e){case Q.publicKey.x25519:{const e=Q.symmetric.aes128,{keySize:r}=ri(e),i=await oi(Q.hash.sha256,s,new Uint8Array,ci.x25519,r);return{ephemeralPublicKey:n,wrappedKey:await ii(e,i,t)}}case Q.publicKey.x448:{const e=Q.symmetric.aes256,{keySize:r}=ri(Q.symmetric.aes256),i=await oi(Q.hash.sha512,s,new Uint8Array,ci.x448,r);return{ephemeralPublicKey:n,wrappedKey:await ii(e,i,t)}}default:throw Error("Unsupported ECDH algorithm")}}async function yi(e,t,r,n,i){const s=await pi(e,t,n,i),a=M.concatUint8Array([t,n,s]);switch(e){case Q.publicKey.x25519:{const e=Q.symmetric.aes128,{keySize:t}=ri(e);return si(e,await oi(Q.hash.sha256,a,new Uint8Array,ci.x25519,t),r)}case Q.publicKey.x448:{const e=Q.symmetric.aes256,{keySize:t}=ri(Q.symmetric.aes256);return si(e,await oi(Q.hash.sha512,a,new Uint8Array,ci.x448,t),r)}default:throw Error("Unsupported ECDH algorithm")}}function fi(e){switch(e){case Q.publicKey.x25519:return 32;case Q.publicKey.x448:return 56;default:throw Error("Unsupported ECDH algorithm")}}async function gi(e,t){switch(e){case Q.publicKey.x25519:{const r=ye(fi(e)),n=We.scalarMult(r,t);di(n);const{publicKey:i}=We.box.keyPair.fromSecretKey(r);return{ephemeralPublicKey:i,sharedSecret:n}}case Q.publicKey.x448:{const e=await M.getNobleCurve(Q.publicKey.x448),r=e.utils.randomPrivateKey(),n=e.getSharedSecret(r,t);di(n);return{ephemeralPublicKey:e.getPublicKey(r),sharedSecret:n}}default:throw Error("Unsupported ECDH algorithm")}}async function pi(e,t,r,n){switch(e){case Q.publicKey.x25519:{const e=We.scalarMult(n,t);return di(e),e}case Q.publicKey.x448:{const e=(await M.getNobleCurve(Q.publicKey.x448)).getSharedSecret(n,t);return di(e),e}default:throw Error("Unsupported ECDH algorithm")}}function di(e){let t=0;for(let r=0;r<e.length;r++)t|=e[r];if(0===t)throw Error("Unexpected low order point")}var Ai=/*#__PURE__*/Object.freeze({__proto__:null,decrypt:yi,encrypt:li,generate:ui,generateEphemeralEncryptionMaterial:gi,getPayloadSize:fi,recomputeSharedSecret:pi,validateParams:hi});const wi=M.getWebCrypto(),mi=M.getNodeCrypto(),bi={[Q.curve.nistP256]:"P-256",[Q.curve.nistP384]:"P-384",[Q.curve.nistP521]:"P-521"},ki=mi?mi.getCurves():[],Ei=mi?{[Q.curve.secp256k1]:ki.includes("secp256k1")?"secp256k1":void 0,[Q.curve.nistP256]:ki.includes("prime256v1")?"prime256v1":void 0,[Q.curve.nistP384]:ki.includes("secp384r1")?"secp384r1":void 0,[Q.curve.nistP521]:ki.includes("secp521r1")?"secp521r1":void 0,[Q.curve.ed25519Legacy]:ki.includes("ED25519")?"ED25519":void 0,[Q.curve.curve25519Legacy]:ki.includes("X25519")?"X25519":void 0,[Q.curve.brainpoolP256r1]:ki.includes("brainpoolP256r1")?"brainpoolP256r1":void 0,[Q.curve.brainpoolP384r1]:ki.includes("brainpoolP384r1")?"brainpoolP384r1":void 0,[Q.curve.brainpoolP512r1]:ki.includes("brainpoolP512r1")?"brainpoolP512r1":void 0}:{},vi={[Q.curve.nistP256]:{oid:[6,8,42,134,72,206,61,3,1,7],keyType:Q.publicKey.ecdsa,hash:Q.hash.sha256,cipher:Q.symmetric.aes128,node:Ei[Q.curve.nistP256],web:bi[Q.curve.nistP256],payloadSize:32,sharedSize:256,wireFormatLeadingByte:4},[Q.curve.nistP384]:{oid:[6,5,43,129,4,0,34],keyType:Q.publicKey.ecdsa,hash:Q.hash.sha384,cipher:Q.symmetric.aes192,node:Ei[Q.curve.nistP384],web:bi[Q.curve.nistP384],payloadSize:48,sharedSize:384,wireFormatLeadingByte:4},[Q.curve.nistP521]:{oid:[6,5,43,129,4,0,35],keyType:Q.publicKey.ecdsa,hash:Q.hash.sha512,cipher:Q.symmetric.aes256,node:Ei[Q.curve.nistP521],web:bi[Q.curve.nistP521],payloadSize:66,sharedSize:528,wireFormatLeadingByte:4},[Q.curve.secp256k1]:{oid:[6,5,43,129,4,0,10],keyType:Q.publicKey.ecdsa,hash:Q.hash.sha256,cipher:Q.symmetric.aes128,node:Ei[Q.curve.secp256k1],payloadSize:32,wireFormatLeadingByte:4},[Q.curve.ed25519Legacy]:{oid:[6,9,43,6,1,4,1,218,71,15,1],keyType:Q.publicKey.eddsaLegacy,hash:Q.hash.sha512,node:!1,payloadSize:32,wireFormatLeadingByte:64},[Q.curve.curve25519Legacy]:{oid:[6,10,43,6,1,4,1,151,85,1,5,1],keyType:Q.publicKey.ecdh,hash:Q.hash.sha256,cipher:Q.symmetric.aes128,node:!1,payloadSize:32,wireFormatLeadingByte:64},[Q.curve.brainpoolP256r1]:{oid:[6,9,43,36,3,3,2,8,1,1,7],keyType:Q.publicKey.ecdsa,hash:Q.hash.sha256,cipher:Q.symmetric.aes128,node:Ei[Q.curve.brainpoolP256r1],payloadSize:32,wireFormatLeadingByte:4},[Q.curve.brainpoolP384r1]:{oid:[6,9,43,36,3,3,2,8,1,1,11],keyType:Q.publicKey.ecdsa,hash:Q.hash.sha384,cipher:Q.symmetric.aes192,node:Ei[Q.curve.brainpoolP384r1],payloadSize:48,wireFormatLeadingByte:4},[Q.curve.brainpoolP512r1]:{oid:[6,9,43,36,3,3,2,8,1,1,13],keyType:Q.publicKey.ecdsa,hash:Q.hash.sha512,cipher:Q.symmetric.aes256,node:Ei[Q.curve.brainpoolP512r1],payloadSize:64,wireFormatLeadingByte:4}};class Bi{constructor(e){try{this.name=e instanceof Ot?e.getName():Q.write(Q.curve,e)}catch(e){throw new Yt("Unknown curve")}const t=vi[this.name];this.keyType=t.keyType,this.oid=t.oid,this.hash=t.hash,this.cipher=t.cipher,this.node=t.node,this.web=t.web,this.payloadSize=t.payloadSize,this.sharedSize=t.sharedSize,this.wireFormatLeadingByte=t.wireFormatLeadingByte,this.web&&M.getWebCrypto()?this.type="web":this.node&&M.getNodeCrypto()?this.type="node":this.name===Q.curve.curve25519Legacy?this.type="curve25519Legacy":this.name===Q.curve.ed25519Legacy&&(this.type="ed25519Legacy")}async genKeyPair(){switch(this.type){case"web":try{return await async function(e,t){const r=await wi.generateKey({name:"ECDSA",namedCurve:bi[e]},!0,["sign","verify"]),n=await wi.exportKey("jwk",r.privateKey);return{publicKey:Pi(await wi.exportKey("jwk",r.publicKey),t),privateKey:H(n.d)}}(this.name,this.wireFormatLeadingByte)}catch(e){return M.printDebugError("Browser did not support generating ec key "+e.message),Ui(this.name)}case"node":return async function(e){const t=mi.createECDH(Ei[e]);return await t.generateKeys(),{publicKey:new Uint8Array(t.getPublicKey()),privateKey:new Uint8Array(t.getPrivateKey())}}(this.name);case"curve25519Legacy":{const{k:e,A:t}=await ui(Q.publicKey.x25519),r=e.slice().reverse();r[0]=127&r[0]|64,r[31]&=248;return{publicKey:M.concatUint8Array([new Uint8Array([this.wireFormatLeadingByte]),t]),privateKey:r}}case"ed25519Legacy":{const{seed:e,A:t}=await _r(Q.publicKey.ed25519);return{publicKey:M.concatUint8Array([new Uint8Array([this.wireFormatLeadingByte]),t]),privateKey:e}}default:return Ui(this.name)}}}async function Si(e){const t=new Bi(e),{oid:r,hash:n,cipher:i}=t,s=await t.genKeyPair();return{oid:r,Q:s.publicKey,secret:M.leftPad(s.privateKey,t.payloadSize),hash:n,cipher:i}}function Ii(e){return vi[e.getName()].hash}async function Ki(e,t,r,n){const i={[Q.curve.nistP256]:!0,[Q.curve.nistP384]:!0,[Q.curve.nistP521]:!0,[Q.curve.secp256k1]:!0,[Q.curve.curve25519Legacy]:e===Q.publicKey.ecdh,[Q.curve.brainpoolP256r1]:!0,[Q.curve.brainpoolP384r1]:!0,[Q.curve.brainpoolP512r1]:!0},s=t.getName();if(!i[s])return!1;if(s===Q.curve.curve25519Legacy){n=n.slice().reverse();const{publicKey:e}=We.box.keyPair.fromSecretKey(n);r=new Uint8Array(r);const t=new Uint8Array([64,...e]);return!!M.equalsUint8Array(t,r)}const a=(await M.getNobleCurve(Q.publicKey.ecdsa,s)).getPublicKey(n,!1);return!!M.equalsUint8Array(a,r)}function Ci(e,t){const{payloadSize:r,wireFormatLeadingByte:n,name:i}=e,s=i===Q.curve.curve25519Legacy||i===Q.curve.ed25519Legacy?r:2*r;if(t[0]!==n||t.length!==s+1)throw Error("Invalid point encoding")}async function Ui(e){const t=await M.getNobleCurve(Q.publicKey.ecdsa,e),r=t.utils.randomPrivateKey();return{publicKey:t.getPublicKey(r,!1),privateKey:r}}function Pi(e,t){const r=H(e.x),n=H(e.y),i=new Uint8Array(r.length+n.length+1);return i[0]=t,i.set(r,1),i.set(n,r.length+1),i}function Di(e,t,r){const n=e,i=r.slice(1,n+1),s=r.slice(n+1,2*n+1);return{kty:"EC",crv:t,x:z(i),y:z(s),ext:!0}}function xi(e,t,r,n){const i=Di(e,t,r);return i.d=z(n),i}const Qi=M.getWebCrypto(),Ri=M.getNodeCrypto();async function Ti(e,t,r,n,i,s){const a=new Bi(e);if(Ci(a,n),r&&!M.isStream(r)){const e={publicKey:n,privateKey:i};switch(a.type){case"web":try{return await async function(e,t,r,n){const i=e.payloadSize,s=xi(e.payloadSize,bi[e.name],n.publicKey,n.privateKey),a=await Qi.importKey("jwk",s,{name:"ECDSA",namedCurve:bi[e.name],hash:{name:Q.read(Q.webHash,e.hash)}},!1,["sign"]),o=new Uint8Array(await Qi.sign({name:"ECDSA",namedCurve:bi[e.name],hash:{name:Q.read(Q.webHash,t)}},a,r));return{r:o.slice(0,i),s:o.slice(i,i<<1)}}(a,t,r,e)}catch(e){if("nistP521"!==a.name&&("DataError"===e.name||"OperationError"===e.name))throw e;M.printDebugError("Browser did not support signing: "+e.message)}break;case"node":return async function(e,t,r,n){const i=M.nodeRequire("eckey-utils"),s=M.getNodeBuffer(),{privateKey:a}=i.generateDer({curveName:Ei[e.name],privateKey:s.from(n)}),o=Ri.createSign(Q.read(Q.hash,t));o.write(r),o.end();const c=new Uint8Array(o.sign({key:a,format:"der",type:"sec1",dsaEncoding:"ieee-p1363"})),u=e.payloadSize;return{r:c.subarray(0,u),s:c.subarray(u,u<<1)}}(a,t,r,i)}}const o=(await M.getNobleCurve(Q.publicKey.ecdsa,a.name)).sign(s,i,{lowS:!1});return{r:he(o.r,"be",a.payloadSize),s:he(o.s,"be",a.payloadSize)}}async function Mi(e,t,r,n,i,s){const a=new Bi(e);Ci(a,i);const o=async()=>0===s[0]&&Li(a,r,s.subarray(1),i);if(n&&!M.isStream(n))switch(a.type){case"web":try{const e=await async function(e,t,{r,s:n},i,s){const a=Di(e.payloadSize,bi[e.name],s),o=await Qi.importKey("jwk",a,{name:"ECDSA",namedCurve:bi[e.name],hash:{name:Q.read(Q.webHash,e.hash)}},!1,["verify"]),c=M.concatUint8Array([r,n]).buffer;return Qi.verify({name:"ECDSA",namedCurve:bi[e.name],hash:{name:Q.read(Q.webHash,t)}},o,c,i)}(a,t,r,n,i);return e||o()}catch(e){if("nistP521"!==a.name&&("DataError"===e.name||"OperationError"===e.name))throw e;M.printDebugError("Browser did not support verifying: "+e.message)}break;case"node":{const e=await async function(e,t,{r,s:n},i,s){const a=M.nodeRequire("eckey-utils"),o=M.getNodeBuffer(),{publicKey:c}=a.generateDer({curveName:Ei[e.name],publicKey:o.from(s)}),u=Ri.createVerify(Q.read(Q.hash,t));u.write(i),u.end();const h=M.concatUint8Array([r,n]);try{return u.verify({key:c,format:"der",type:"spki",dsaEncoding:"ieee-p1363"},h)}catch(e){return!1}}(a,t,r,n,i);return e||o()}}return await Li(a,r,s,i)||o()}async function Li(e,t,r,n){return(await M.getNobleCurve(Q.publicKey.ecdsa,e.name)).verify(M.concatUint8Array([t.r,t.s]),r,n,{lowS:!1})}var Fi=/*#__PURE__*/Object.freeze({__proto__:null,sign:Ti,validateParams:async function(e,t,r){const n=new Bi(e);if(n.keyType!==Q.publicKey.ecdsa)return!1;switch(n.type){case"web":case"node":{const n=ye(8),i=Q.hash.sha256,s=await xe(i,n);try{const a=await Ti(e,i,n,t,r,s);return await Mi(e,i,a,n,t,s)}catch(e){return!1}}default:return Ki(Q.publicKey.ecdsa,e,t,r)}},verify:Mi});async function Ni(e,t,r,n,i,s){if(Ci(new Bi(e),n),Qe(t)<Qe(Q.hash.sha256))throw Error("Hash algorithm too weak for EdDSA.");const{RS:a}=await Hr(Q.publicKey.ed25519,t,0,n.subarray(1),i,s);return{r:a.subarray(0,32),s:a.subarray(32)}}async function Oi(e,t,{r,s:n},i,s,a){if(Ci(new Bi(e),s),Qe(t)<Qe(Q.hash.sha256))throw Error("Hash algorithm too weak for EdDSA.");const o=M.concatUint8Array([r,n]);return zr(Q.publicKey.ed25519,t,{RS:o},0,s.subarray(1),a)}async function _i(e,t,r){if(e.getName()!==Q.curve.ed25519Legacy)return!1;const{publicKey:n}=We.sign.keyPair.fromSeed(r),i=new Uint8Array([64,...n]);return M.equalsUint8Array(t,i)}var Hi=/*#__PURE__*/Object.freeze({__proto__:null,sign:Ni,validateParams:_i,verify:Oi});function zi(e){const t=e.length;if(t>0){const r=e[t-1];if(r>=1){const n=e.subarray(t-r),i=new Uint8Array(r).fill(r);if(M.equalsUint8Array(n,i))return e.subarray(0,t-r)}}throw Error("Invalid padding")}const Gi=M.getWebCrypto(),qi=M.getNodeCrypto();function ji(e,t,r,n){return M.concatUint8Array([t.write(),new Uint8Array([e]),r.write(!0),M.stringToUint8Array("Anonymous Sender    "),r.replacementFingerprint||n])}async function Vi(e,t,r,n,i=!1,s=!1){let a;if(i){for(a=0;a<t.length&&0===t[a];a++);t=t.subarray(a)}if(s){for(a=t.length-1;a>=0&&0===t[a];a--);t=t.subarray(0,a+1)}return(await xe(e,M.concatUint8Array([new Uint8Array([0,0,0,1]),t,n]))).subarray(0,r)}async function Yi(e,t){switch(e.type){case"curve25519Legacy":{const{sharedSecret:r,ephemeralPublicKey:n}=await gi(Q.publicKey.x25519,t.subarray(1));return{publicKey:M.concatUint8Array([new Uint8Array([e.wireFormatLeadingByte]),n]),sharedKey:r}}case"web":if(e.web&&M.getWebCrypto())try{return await async function(e,t){const r=Di(e.payloadSize,e.web,t);let n=Gi.generateKey({name:"ECDH",namedCurve:e.web},!0,["deriveKey","deriveBits"]),i=Gi.importKey("jwk",r,{name:"ECDH",namedCurve:e.web},!1,[]);[n,i]=await Promise.all([n,i]);let s=Gi.deriveBits({name:"ECDH",namedCurve:e.web,public:i},n.privateKey,e.sharedSize),a=Gi.exportKey("jwk",n.publicKey);[s,a]=await Promise.all([s,a]);const o=new Uint8Array(s),c=new Uint8Array(Pi(a,e.wireFormatLeadingByte));return{publicKey:c,sharedKey:o}}(e,t)}catch(r){return M.printDebugError(r),$i(e,t)}break;case"node":return async function(e,t){const r=qi.createECDH(e.node);r.generateKeys();const n=new Uint8Array(r.computeSecret(t));return{publicKey:new Uint8Array(r.getPublicKey()),sharedKey:n}}(e,t);default:return $i(e,t)}}async function Zi(e,t,r,n,i){const s=function(e){const t=8-e.length%8,r=new Uint8Array(e.length+t).fill(t);return r.set(e),r}(r),a=new Bi(e);Ci(a,n);const{publicKey:o,sharedKey:c}=await Yi(a,n),u=ji(Q.publicKey.ecdh,e,t,i),{keySize:h}=ri(t.cipher),l=await Vi(t.hash,c,h,u);return{publicKey:o,wrappedKey:await ii(t.cipher,l,s)}}async function Wi(e,t,r,n){if(n.length!==e.payloadSize){const t=new Uint8Array(e.payloadSize);t.set(n,e.payloadSize-n.length),n=t}switch(e.type){case"curve25519Legacy":{const e=n.slice().reverse();return{secretKey:e,sharedKey:await pi(Q.publicKey.x25519,t.subarray(1),r.subarray(1),e)}}case"web":if(e.web&&M.getWebCrypto())try{return await async function(e,t,r,n){const i=xi(e.payloadSize,e.web,r,n);let s=Gi.importKey("jwk",i,{name:"ECDH",namedCurve:e.web},!0,["deriveKey","deriveBits"]);const a=Di(e.payloadSize,e.web,t);let o=Gi.importKey("jwk",a,{name:"ECDH",namedCurve:e.web},!0,[]);[s,o]=await Promise.all([s,o]);let c=Gi.deriveBits({name:"ECDH",namedCurve:e.web,public:o},s,e.sharedSize),u=Gi.exportKey("jwk",s);[c,u]=await Promise.all([c,u]);const h=new Uint8Array(c);return{secretKey:H(u.d),sharedKey:h}}(e,t,r,n)}catch(r){return M.printDebugError(r),Xi(e,t,n)}break;case"node":return async function(e,t,r){const n=qi.createECDH(e.node);n.setPrivateKey(r);const i=new Uint8Array(n.computeSecret(t));return{secretKey:new Uint8Array(n.getPrivateKey()),sharedKey:i}}(e,t,n);default:return Xi(e,t,n)}}async function Ji(e,t,r,n,i,s,a){const o=new Bi(e);Ci(o,i),Ci(o,r);const{sharedKey:c}=await Wi(o,r,i,s),u=ji(Q.publicKey.ecdh,e,t,a),{keySize:h}=ri(t.cipher);let l;for(let e=0;e<3;e++)try{const r=await Vi(t.hash,c,h,u,1===e,2===e);return zi(await si(t.cipher,r,n))}catch(e){l=e}throw l}async function Xi(e,t,r){return{secretKey:r,sharedKey:(await M.getNobleCurve(Q.publicKey.ecdh,e.name)).getSharedSecret(r,t).subarray(1)}}async function $i(e,t){const r=await M.getNobleCurve(Q.publicKey.ecdh,e.name),{publicKey:n,privateKey:i}=await e.genKeyPair();return{publicKey:n,sharedKey:r.getSharedSecret(i,t).subarray(1)}}var es=/*#__PURE__*/Object.freeze({__proto__:null,decrypt:Ji,encrypt:Zi,validateParams:async function(e,t,r){return Ki(Q.publicKey.ecdh,e,t,r)}}),ts=/*#__PURE__*/Object.freeze({__proto__:null,CurveWithOID:Bi,ecdh:es,ecdhX:Ai,ecdsa:Fi,eddsa:Zr,eddsaLegacy:Hi,generate:Si,getPreferredHashAlgo:Ii});const rs=BigInt(0),ns=BigInt(1);const is=new Set([Q.hash.sha1,Q.hash.sha256,Q.hash.sha512]),ss=M.getWebCrypto(),as=M.getNodeCrypto();async function os(e,t){if(e===Q.publicKey.pqc_mlkem_x25519){const{ml_kem768:e}=await Promise.resolve().then((function(){return Tg})),{publicKey:r,secretKey:n}=e.keygen(t);return{mlkemPublicKey:r,mlkemSecretKey:n}}throw Error("Unsupported KEM algorithm")}async function cs(e){const{eccPublicKey:t,eccSecretKey:r}=await async function(e){if(e===Q.publicKey.pqc_mlkem_x25519){const{A:e,k:t}=await ui(Q.publicKey.x25519);return{eccPublicKey:e,eccSecretKey:t}}throw Error("Unsupported KEM algorithm")}(e),{mlkemPublicKey:n,mlkemSeed:i,mlkemSecretKey:s}=await async function(e){if(e===Q.publicKey.pqc_mlkem_x25519){const t=ye(64),{mlkemSecretKey:r,mlkemPublicKey:n}=await os(e,t);return{mlkemSeed:t,mlkemSecretKey:r,mlkemPublicKey:n}}throw Error("Unsupported KEM algorithm")}(e);return{eccPublicKey:t,eccSecretKey:r,mlkemPublicKey:n,mlkemSeed:i,mlkemSecretKey:s}}async function us(e,t,r,n){const{eccKeyShare:i,eccCipherText:s}=await async function(e,t){if(e===Q.publicKey.pqc_mlkem_x25519){const{ephemeralPublicKey:e,sharedSecret:r}=await gi(Q.publicKey.x25519,t);return{eccCipherText:e,eccKeyShare:r}}throw Error("Unsupported KEM algorithm")}(e,t),{mlkemKeyShare:a,mlkemCipherText:o}=await async function(e,t){if(e===Q.publicKey.pqc_mlkem_x25519){const{ml_kem768:e}=await Promise.resolve().then((function(){return Tg})),{cipherText:r,sharedSecret:n}=e.encapsulate(t);return{mlkemCipherText:r,mlkemKeyShare:n}}throw Error("Unsupported KEM algorithm")}(e,r),c=await ls(e,i,s,t,a,o,r);return{eccCipherText:s,mlkemCipherText:o,wrappedKey:await ii(Q.symmetric.aes256,c,n)}}async function hs(e,t,r,n,i,s,a,o){const c=await async function(e,t,r){if(e===Q.publicKey.pqc_mlkem_x25519)return await pi(Q.publicKey.x25519,t,0,r);throw Error("Unsupported KEM algorithm")}(e,t,n),u=await async function(e,t,r){if(e===Q.publicKey.pqc_mlkem_x25519){const{ml_kem768:e}=await Promise.resolve().then((function(){return Tg}));return e.decapsulate(t,r)}throw Error("Unsupported KEM algorithm")}(e,r,s),h=await ls(e,c,t,i,u,r,a);return await si(Q.symmetric.aes256,h,o)}async function ls(e,t,r,n,i,s,a){const o=M.concatUint8Array([i,t,r,n,s,a,new Uint8Array([e]),M.encodeUTF8("OpenPGPCompositeKDFv1")]);return await xe(Q.hash.sha3_256,o)}async function ys(e,t,r,n,i){const s=async function(e,t,r){if(e===Q.publicKey.pqc_mlkem_x25519)return hi(Q.publicKey.x25519,t,r);throw Error("Unsupported KEM algorithm")}(e,t,r),a=async function(e,t,r){if(e===Q.publicKey.pqc_mlkem_x25519){const{mlkemPublicKey:n}=await os(e,r);return M.equalsUint8Array(t,n)}throw Error("Unsupported KEM algorithm")}(e,n,i);return await s&&await a}async function fs(e,t){if(e===Q.publicKey.pqc_mldsa_ed25519){const{ml_dsa65:e}=await Promise.resolve().then((function(){return Tg})),{secretKey:r,publicKey:n}=e.keygen(t);return{mldsaSecretKey:r,mldsaPublicKey:n}}throw Error("Unsupported signature algorithm")}async function gs(e){if(e===Q.publicKey.pqc_mldsa_ed25519){const{eccSecretKey:t,eccPublicKey:r}=await async function(e){if(e===Q.publicKey.pqc_mldsa_ed25519){const{A:e,seed:t}=await _r(Q.publicKey.ed25519);return{eccPublicKey:e,eccSecretKey:t}}throw Error("Unsupported signature algorithm")}(e),{mldsaSeed:n,mldsaSecretKey:i,mldsaPublicKey:s}=await async function(e){if(e===Q.publicKey.pqc_mldsa_ed25519){const t=ye(32),{mldsaSecretKey:r,mldsaPublicKey:n}=await fs(e,t);return{mldsaSeed:t,mldsaSecretKey:r,mldsaPublicKey:n}}throw Error("Unsupported signature algorithm")}(e);return{eccSecretKey:t,eccPublicKey:r,mldsaSeed:n,mldsaSecretKey:i,mldsaPublicKey:s}}throw Error("Unsupported signature algorithm")}async function ps(e,t,r,n,i,s){if(t!==As(e))throw Error("Unexpected hash algorithm for PQC signature");if(e===Q.publicKey.pqc_mldsa_ed25519){const{eccSignature:a}=await async function(e,t,r,n,i){if(e===Q.publicKey.pqc_mldsa_ed25519){const{RS:e}=await Hr(Q.publicKey.ed25519,t,0,n,r,i);return{eccSignature:e}}throw Error("Unsupported signature algorithm")}(e,t,r,n,s),{mldsaSignature:o}=await async function(e,t,r){if(e===Q.publicKey.pqc_mldsa_ed25519){const{ml_dsa65:e}=await Promise.resolve().then((function(){return Tg}));return{mldsaSignature:e.sign(t,r)}}throw Error("Unsupported signature algorithm")}(e,i,s);return{eccSignature:a,mldsaSignature:o}}throw Error("Unsupported signature algorithm")}async function ds(e,t,r,n,i,{eccSignature:s,mldsaSignature:a}){if(t!==As(e))throw Error("Unexpected hash algorithm for PQC signature");if(e===Q.publicKey.pqc_mldsa_ed25519){const o=async function(e,t,r,n,i){if(e===Q.publicKey.pqc_mldsa_ed25519)return zr(Q.publicKey.ed25519,t,{RS:i},0,r,n);throw Error("Unsupported signature algorithm")}(e,t,r,i,s),c=async function(e,t,r,n){if(e===Q.publicKey.pqc_mldsa_ed25519){const{ml_dsa65:e}=await Promise.resolve().then((function(){return Tg}));return e.verify(t,r,n)}throw Error("Unsupported signature algorithm")}(e,n,i,a);return await o&&await c}throw Error("Unsupported signature algorithm")}function As(e){if(e===Q.publicKey.pqc_mldsa_ed25519)return Q.hash.sha3_256;throw Error("Unsupported signature algorithm")}async function ws(e,t,r,n,i){const s=async function(e,t,r){if(e===Q.publicKey.pqc_mldsa_ed25519)return Gr(Q.publicKey.ed25519,t,r);throw Error("Unsupported signature algorithm")}(e,t,r),a=async function(e,t,r){if(e===Q.publicKey.pqc_mldsa_ed25519){const{mldsaPublicKey:n}=await fs(e,r);return M.equalsUint8Array(t,n)}throw Error("Unsupported signature algorithm")}(e,n,i);return await s&&await a}class ms{constructor(e){e&&(this.data=e)}read(e){if(e.length>=1){const t=e[0];if(e.length>=1+t)return this.data=e.subarray(1,1+t),1+this.data.length}throw Error("Invalid symmetric key")}write(){return M.concatUint8Array([new Uint8Array([this.data.length]),this.data])}}class bs{constructor(e){if(void 0===e&&(e=new Uint8Array([])),!M.isUint8Array(e))throw Error("data must be in the form of a Uint8Array");this.data=e,this.length=this.data.byteLength}write(){return M.concatUint8Array([new Uint8Array([this.length]),this.data])}read(e){if(e.length>=1){const t=e[0];if(e.length>=t+1)return this.data=e.subarray(1,1+t),this.length=t,1+t}throw Error("Invalid octet string")}}class ks{constructor(e){if(e){const{version:t,hash:r,cipher:n,replacementFingerprint:i}=e;this.version=t||1,this.hash=r,this.cipher=n,this.replacementFingerprint=i}else this.version=null,this.hash=null,this.cipher=null,this.replacementFingerprint=null}read(e){if(e.length<4||1!==e[1]&&255!==e[1])throw new Yt("Cannot read KDFParams");const t=e[0];this.version=e[1],this.hash=e[2],this.cipher=e[3];let r=4;if(255===this.version){const n=t-r+1;this.replacementFingerprint=e.slice(r,r+n),r+=n}return r}write(e){if(!this.version||1===this.version||e)return new Uint8Array([3,1,this.hash,this.cipher]);return M.concatUint8Array([new Uint8Array([3+this.replacementFingerprint.length,this.version,this.hash,this.cipher]),this.replacementFingerprint])}}const Es=e=>class{constructor(e){this.data=void 0===e?null:e}read(t){const r=t[0];return this.data=Q.write(e,r),1}write(){return new Uint8Array([this.data])}getName(){return Q.read(e,this.data)}getValue(){return this.data}},vs=Es(Q.aead),Bs=Es(Q.symmetric),Ss=Es(Q.hash);class Is{static fromObject({wrappedKey:e,algorithm:t}){const r=new Is;return r.wrappedKey=e,r.algorithm=t,r}read(e){let t=0,r=e[t++];this.algorithm=r%2?e[t++]:null,r-=r%2,this.wrappedKey=M.readExactSubarray(e,t,t+r),t+=r}write(){return M.concatUint8Array([this.algorithm?new Uint8Array([this.wrappedKey.length+1,this.algorithm]):new Uint8Array([this.wrappedKey.length]),this.wrappedKey])}}const Ks=M.getWebCrypto(),Cs=M.getNodeCrypto(),Us=Cs?Cs.getCiphers():[],Ps={idea:Us.includes("idea-cfb")?"idea-cfb":void 0,tripledes:Us.includes("des-ede3-cfb")?"des-ede3-cfb":void 0,cast5:Us.includes("cast5-cfb")?"cast5-cfb":void 0,blowfish:Us.includes("bf-cfb")?"bf-cfb":void 0,aes128:Us.includes("aes-128-cfb")?"aes-128-cfb":void 0,aes192:Us.includes("aes-192-cfb")?"aes-192-cfb":void 0,aes256:Us.includes("aes-256-cfb")?"aes-256-cfb":void 0};async function Ds(e){const{blockSize:t}=ri(e),r=await ye(t),n=new Uint8Array([r[r.length-2],r[r.length-1]]);return M.concat([r,n])}async function xs(e,t,r,n,i){const s=Q.read(Q.symmetric,e);if(M.getNodeCrypto()&&Ps[s])return function(e,t,r,n){const i=Q.read(Q.symmetric,e),s=new Cs.createCipheriv(Ps[i],t,n);return b(r,(e=>new Uint8Array(s.update(e))))}(e,t,r,n);if(M.isAES(e))return async function(e,t,r,n){if(Ks&&await Rs.isSupported(e)){const i=new Rs(e,t,n);return M.isStream(r)?b(r,(e=>i.encryptChunk(e)),(()=>i.finish())):i.encrypt(r)}if(M.isStream(r)){const i=new Ts(!0,e,t,n);return b(r,(e=>i.processChunk(e)),(()=>i.finish()))}return Gn(t,n).encrypt(r)}(e,t,r,n);const a=new(await $n(e))(t),o=a.blockSize,c=n.slice();let u=new Uint8Array;const h=e=>{e&&(u=M.concatUint8Array([u,e]));const t=new Uint8Array(u.length);let r,n=0;for(;e?u.length>=o:u.length;){const e=a.encrypt(c);for(r=0;r<o;r++)c[r]=u[r]^e[r],t[n++]=c[r];u=u.subarray(o)}return t.subarray(0,n)};return b(r,h,h)}async function Qs(e,t,r,n){const i=Q.read(Q.symmetric,e);if(Cs&&Ps[i])return function(e,t,r,n){const i=Q.read(Q.symmetric,e),s=new Cs.createDecipheriv(Ps[i],t,n);return b(r,(e=>new Uint8Array(s.update(e))))}(e,t,r,n);if(M.isAES(e))return async function(e,t,r,n){if(M.isStream(r)){const i=new Ts(!1,e,t,n);return b(r,(e=>i.processChunk(e)),(()=>i.finish()))}return Gn(t,n).decrypt(r)}(e,t,r,n);const s=new(await $n(e))(t),a=s.blockSize;let o=n,c=new Uint8Array;const u=e=>{e&&(c=M.concatUint8Array([c,e]));const t=new Uint8Array(c.length);let r,n=0;for(;e?c.length>=a:c.length;){const e=s.encrypt(o);for(o=c.subarray(0,a),r=0;r<a;r++)t[n++]=o[r]^e[r];c=c.subarray(a)}return t.subarray(0,n)};return b(r,u,u)}class Rs{constructor(e,t,r){const{blockSize:n}=ri(e);this.key=t,this.prevBlock=r,this.nextBlock=new Uint8Array(n),this.i=0,this.blockSize=n,this.zeroBlock=new Uint8Array(this.blockSize)}static async isSupported(e){const{keySize:t}=ri(e);return Ks.importKey("raw",new Uint8Array(t),"aes-cbc",!1,["encrypt"]).then((()=>!0),(()=>!1))}async _runCBC(e,t){const r="AES-CBC";this.keyRef=this.keyRef||await Ks.importKey("raw",this.key,r,!1,["encrypt"]);const n=await Ks.encrypt({name:r,iv:t||this.zeroBlock},this.keyRef,e);return new Uint8Array(n).subarray(0,e.length)}async encryptChunk(e){const t=this.nextBlock.length-this.i,r=e.subarray(0,t);if(this.nextBlock.set(r,this.i),this.i+e.length>=2*this.blockSize){const r=(e.length-t)%this.blockSize,n=M.concatUint8Array([this.nextBlock,e.subarray(t,e.length-r)]),i=M.concatUint8Array([this.prevBlock,n.subarray(0,n.length-this.blockSize)]),s=await this._runCBC(i);return Ms(s,n),this.prevBlock=s.slice(-this.blockSize),r>0&&this.nextBlock.set(e.subarray(-r)),this.i=r,s}let n;if(this.i+=r.length,this.i===this.nextBlock.length){const t=this.nextBlock;n=await this._runCBC(this.prevBlock),Ms(n,t),this.prevBlock=n.slice(),this.i=0;const i=e.subarray(r.length);this.nextBlock.set(i,this.i),this.i+=i.length}else n=new Uint8Array;return n}async finish(){let e;if(0===this.i)e=new Uint8Array;else{this.nextBlock=this.nextBlock.subarray(0,this.i);const t=this.nextBlock,r=await this._runCBC(this.prevBlock);Ms(r,t),e=r.subarray(0,t.length)}return this.clearSensitiveData(),e}clearSensitiveData(){this.nextBlock.fill(0),this.prevBlock.fill(0),this.keyRef=null,this.key=null}async encrypt(e){const t=(await this._runCBC(M.concatUint8Array([new Uint8Array(this.blockSize),e]),this.iv)).subarray(0,e.length);return Ms(t,e),this.clearSensitiveData(),t}}class Ts{constructor(e,t,r,n){this.forEncryption=e;const{blockSize:i}=ri(t);this.key=Xn.expandKeyLE(r),n.byteOffset%4!=0&&(n=n.slice()),this.prevBlock=Ls(n),this.nextBlock=new Uint8Array(i),this.i=0,this.blockSize=i}_runCFB(e){const t=Ls(e),r=new Uint8Array(e.length),n=Ls(r);for(let e=0;e+4<=n.length;e+=4){const{s0:r,s1:i,s2:s,s3:a}=Xn.encrypt(this.key,this.prevBlock[0],this.prevBlock[1],this.prevBlock[2],this.prevBlock[3]);n[e+0]=t[e+0]^r,n[e+1]=t[e+1]^i,n[e+2]=t[e+2]^s,n[e+3]=t[e+3]^a,this.prevBlock=(this.forEncryption?n:t).slice(e,e+4)}return r}async processChunk(e){const t=this.nextBlock.length-this.i,r=e.subarray(0,t);if(this.nextBlock.set(r,this.i),this.i+e.length>=2*this.blockSize){const r=(e.length-t)%this.blockSize,n=M.concatUint8Array([this.nextBlock,e.subarray(t,e.length-r)]),i=this._runCFB(n);return r>0&&this.nextBlock.set(e.subarray(-r)),this.i=r,i}let n;if(this.i+=r.length,this.i===this.nextBlock.length){n=this._runCFB(this.nextBlock),this.i=0;const t=e.subarray(r.length);this.nextBlock.set(t,this.i),this.i+=t.length}else n=new Uint8Array;return n}async finish(){let e;if(0===this.i)e=new Uint8Array;else{e=this._runCFB(this.nextBlock).subarray(0,this.i)}return this.clearSensitiveData(),e}clearSensitiveData(){this.nextBlock.fill(0),this.prevBlock.fill(0),this.key.fill(0)}}function Ms(e,t){const r=Math.min(e.length,t.length);for(let n=0;n<r;n++)e[n]=e[n]^t[n]}const Ls=e=>new Uint32Array(e.buffer,e.byteOffset,Math.floor(e.byteLength/4));const Fs=M.getWebCrypto(),Ns=M.getNodeCrypto(),Os=16;function _s(e,t){const r=e.length-Os;for(let n=0;n<Os;n++)e[n+r]^=t[n];return e}const Hs=new Uint8Array(Os);async function zs(e){const t=await Gs(e),r=M.double(await t(Hs)),n=M.double(r);return async function(e){return(await t(function(e,t,r){if(e.length&&e.length%Os==0)return _s(e,t);const n=new Uint8Array(e.length+(Os-e.length%Os));return n.set(e),n[e.length]=128,_s(n,r)}(e,r,n))).subarray(-Os)}}async function Gs(e){if(M.getNodeCrypto())return async function(t){const r=new Ns.createCipheriv("aes-"+8*e.length+"-cbc",e,Hs).update(t);return new Uint8Array(r)};if(M.getWebCrypto())try{return e=await Fs.importKey("raw",e,{name:"AES-CBC",length:8*e.length},!1,["encrypt"]),async function(t){const r=await Fs.encrypt({name:"AES-CBC",iv:Hs,length:8*Os},e,t);return new Uint8Array(r).subarray(0,r.byteLength-Os)}}catch(t){if("NotSupportedError"!==t.name&&(24!==e.length||"OperationError"!==t.name))throw t;M.printDebugError("Browser did not support operation: "+t.message)}return async function(t){return zn(e,Hs,{disablePadding:!0}).encrypt(t)}}const qs=M.getWebCrypto(),js=M.getNodeCrypto(),Vs=M.getNodeBuffer(),Ys=16,Zs=Ys,Ws=Ys,Js=new Uint8Array(Ys),Xs=new Uint8Array(Ys);Xs[Ys-1]=1;const $s=new Uint8Array(Ys);async function ea(e){const t=await zs(e);return function(e,r){return t(M.concatUint8Array([e,r]))}}async function ta(e){if(M.getNodeCrypto())return async function(t,r){const n=new js.createCipheriv("aes-"+8*e.length+"-ctr",e,r),i=Vs.concat([n.update(t),n.final()]);return new Uint8Array(i)};if(M.getWebCrypto())try{const t=await qs.importKey("raw",e,{name:"AES-CTR",length:8*e.length},!1,["encrypt"]);return async function(e,r){const n=await qs.encrypt({name:"AES-CTR",counter:r,length:8*Ys},t,e);return new Uint8Array(n)}}catch(t){if("NotSupportedError"!==t.name&&(24!==e.length||"OperationError"!==t.name))throw t;M.printDebugError("Browser did not support operation: "+t.message)}return async function(t,r){return Hn(e,r).encrypt(t)}}async function ra(e,t){if(e!==Q.symmetric.aes128&&e!==Q.symmetric.aes192&&e!==Q.symmetric.aes256)throw Error("EAX mode supports only AES cipher");const[r,n]=await Promise.all([ea(t),ta(t)]);return{encrypt:async function(e,t,i){const[s,a]=await Promise.all([r(Js,t),r(Xs,i)]),o=await n(e,s),c=await r($s,o);for(let e=0;e<Ws;e++)c[e]^=a[e]^s[e];return M.concatUint8Array([o,c])},decrypt:async function(e,t,i){if(e.length<Ws)throw Error("Invalid EAX ciphertext");const s=e.subarray(0,-Ws),a=e.subarray(-Ws),[o,c,u]=await Promise.all([r(Js,t),r(Xs,i),r($s,s)]),h=u;for(let e=0;e<Ws;e++)h[e]^=c[e]^o[e];if(!M.equalsUint8Array(a,h))throw Error("Authentication tag mismatch");return await n(s,o)}}}$s[Ys-1]=2,ra.getNonce=function(e,t){const r=e.slice();for(let e=0;e<t.length;e++)r[8+e]^=t[e];return r},ra.blockLength=Ys,ra.ivLength=Zs,ra.tagLength=Ws;const na=16,ia=15,sa=16;function aa(e){let t=0;for(let r=1;!(e&r);r<<=1)t++;return t}function oa(e,t){for(let r=0;r<e.length;r++)e[r]^=t[r];return e}function ca(e,t){return oa(e.slice(),t)}const ua=new Uint8Array(na),ha=new Uint8Array([1]);async function la(e,t){const{keySize:r}=ri(e);if(!M.isAES(e)||t.length!==r)throw Error("Unexpected algorithm or key size");let n=0;const i=zn(t,ua,{disablePadding:!0}),s=e=>i.encrypt(e),a=e=>i.decrypt(e);let o;function c(e,t,r,i){const a=t.length/na|0;!function(e,t){const r=M.nbits(Math.max(e.length,t.length)/na|0)-1;for(let e=n+1;e<=r;e++)o[e]=M.double(o[e-1]);n=r}(t,i);const c=M.concatUint8Array([ua.subarray(0,ia-r.length),ha,r]),u=63&c[na-1];c[na-1]&=192;const h=s(c),l=M.concatUint8Array([h,ca(h.subarray(0,8),h.subarray(1,9))]),y=M.shiftRight(l.subarray(0+(u>>3),17+(u>>3)),8-(7&u)).subarray(1),f=new Uint8Array(na),g=new Uint8Array(t.length+sa);let p,d=0;for(p=0;p<a;p++)oa(y,o[aa(p+1)]),g.set(oa(e(ca(y,t)),y),d),oa(f,e===s?t:g.subarray(d)),t=t.subarray(na),d+=na;if(t.length){oa(y,o.x);const r=s(y);g.set(ca(t,r),d);const n=new Uint8Array(na);n.set(e===s?t:g.subarray(d,-sa),0),n[t.length]=128,oa(f,n),d+=t.length}const A=oa(s(oa(oa(f,y),o.$)),function(e){if(!e.length)return ua;const t=e.length/na|0,r=new Uint8Array(na),n=new Uint8Array(na);for(let i=0;i<t;i++)oa(r,o[aa(i+1)]),oa(n,s(ca(r,e))),e=e.subarray(na);if(e.length){oa(r,o.x);const t=new Uint8Array(na);t.set(e,0),t[e.length]=128,oa(t,r),oa(n,s(t))}return n}(i));return g.set(A,d),g}return function(){const e=s(ua),t=M.double(e);o=[],o[0]=M.double(t),o.x=e,o.$=t}(),{encrypt:async function(e,t,r){return c(s,e,t,r)},decrypt:async function(e,t,r){if(e.length<sa)throw Error("Invalid OCB ciphertext");const n=e.subarray(-sa);e=e.subarray(0,-sa);const i=c(a,e,t,r);if(M.equalsUint8Array(n,i.subarray(-sa)))return i.subarray(0,-sa);throw Error("Authentication tag mismatch")}}}la.getNonce=function(e,t){const r=e.slice();for(let e=0;e<t.length;e++)r[7+e]^=t[e];return r},la.blockLength=na,la.ivLength=ia,la.tagLength=sa;const ya=M.getWebCrypto(),fa=M.getNodeCrypto(),ga=M.getNodeBuffer(),pa=16,da="AES-GCM";async function Aa(e,t){if(e!==Q.symmetric.aes128&&e!==Q.symmetric.aes192&&e!==Q.symmetric.aes256)throw Error("GCM mode supports only AES cipher");if(M.getNodeCrypto())return{encrypt:async function(e,r,n=new Uint8Array){const i=new fa.createCipheriv("aes-"+8*t.length+"-gcm",t,r);i.setAAD(n);const s=ga.concat([i.update(e),i.final(),i.getAuthTag()]);return new Uint8Array(s)},decrypt:async function(e,r,n=new Uint8Array){const i=new fa.createDecipheriv("aes-"+8*t.length+"-gcm",t,r);i.setAAD(n),i.setAuthTag(e.slice(e.length-pa,e.length));const s=ga.concat([i.update(e.slice(0,e.length-pa)),i.final()]);return new Uint8Array(s)}};if(M.getWebCrypto())try{const e=await ya.importKey("raw",t,{name:da},!1,["encrypt","decrypt"]),r=navigator.userAgent.match(/Version\/13\.\d(\.\d)* Safari/)||navigator.userAgent.match(/Version\/(13|14)\.\d(\.\d)* Mobile\/\S* Safari/);return{encrypt:async function(n,i,s=new Uint8Array){if(r&&!n.length)return qn(t,i,s).encrypt(n);const a=await ya.encrypt({name:da,iv:i,additionalData:s,tagLength:8*pa},e,n);return new Uint8Array(a)},decrypt:async function(n,i,s=new Uint8Array){if(r&&n.length===pa)return qn(t,i,s).decrypt(n);try{const t=await ya.decrypt({name:da,iv:i,additionalData:s,tagLength:8*pa},e,n);return new Uint8Array(t)}catch(e){if("OperationError"===e.name)throw Error("Authentication tag mismatch")}}}}catch(e){if("NotSupportedError"!==e.name&&(24!==t.length||"OperationError"!==e.name))throw e;M.printDebugError("Browser did not support operation: "+e.message)}return{encrypt:async function(e,r,n){return qn(t,r,n).encrypt(e)},decrypt:async function(e,r,n){return qn(t,r,n).decrypt(e)}}}function wa(e,t=!1){switch(e){case Q.aead.eax:return ra;case Q.aead.ocb:return la;case Q.aead.gcm:return Aa;case Q.aead.experimentalGCM:if(!t)throw Error("Unexpected non-standard `experimentalGCM` AEAD algorithm provided in `config.preferredAEADAlgorithm`: use `gcm` instead");return Aa;default:throw Error("Unsupported AEAD mode")}}async function ma(e,t,r,n,i,s){switch(e){case Q.publicKey.rsaEncrypt:case Q.publicKey.rsaEncryptSign:{const{n:e,e:t}=r;return{c:await ze(i,e,t)}}case Q.publicKey.elgamal:{const{p:e,g:t,y:n}=r;return async function(e,t,r,n){t=te(t),r=te(r),n=te(n);const i=te(Te(e,ue(t))),s=fe(Ye,t-Ye);return{c1:he(ne(r,s,t)),c2:he(re(ne(n,s,t)*i,t))}}(i,e,t,n)}case Q.publicKey.ecdh:{const{oid:e,Q:t,kdfParams:n}=r,{publicKey:a,wrappedKey:o}=await Zi(e,n,i,t,s);return{V:a,C:new ms(o)}}case Q.publicKey.x25519:case Q.publicKey.x448:{if(t&&!M.isAES(t))throw Error("X25519 and X448 keys can only encrypt AES session keys");const{A:n}=r,{ephemeralPublicKey:s,wrappedKey:a}=await li(e,i,n);return{ephemeralPublicKey:s,C:Is.fromObject({algorithm:t,wrappedKey:a})}}case Q.publicKey.aead:{if(!n)throw Error("Cannot encrypt with symmetric key missing private parameters");const{cipher:e}=r,t=e.getValue(),{keyMaterial:s}=n,a=R.preferredAEADAlgorithm,o=wa(R.preferredAEADAlgorithm),{ivLength:c}=o,u=ye(c),h=await o(t,s),l=await h.encrypt(i,u,new Uint8Array);return{aeadMode:new vs(a),iv:u,c:new bs(l)}}case Q.publicKey.pqc_mlkem_x25519:{const{eccPublicKey:n,mlkemPublicKey:s}=r,{eccCipherText:a,mlkemCipherText:o,wrappedKey:c}=await us(e,n,s,i);return{eccCipherText:a,mlkemCipherText:o,C:Is.fromObject({algorithm:t,wrappedKey:c})}}default:return[]}}async function ba(e,t,r,n,i,s){switch(e){case Q.publicKey.rsaEncryptSign:case Q.publicKey.rsaEncrypt:{const{c:e}=n,{n:i,e:a}=t,{d:o,p:c,q:u,u:h}=r;return Ge(e,i,a,o,c,u,h,s)}case Q.publicKey.elgamal:{const{c1:e,c2:i}=n;return async function(e,t,r,n,i){return e=te(e),t=te(t),r=te(r),Me(he(re(se(ne(e,n=te(n),r),r)*t,r),"be",ue(r)),i)}(e,i,t.p,r.x,s)}case Q.publicKey.ecdh:{const{oid:e,Q:s,kdfParams:a}=t,{d:o}=r,{V:c,C:u}=n;return Ji(e,a,c,u.data,s,o,i)}case Q.publicKey.x25519:case Q.publicKey.x448:{const{A:i}=t,{k:s}=r,{ephemeralPublicKey:a,C:o}=n;if(null!==o.algorithm&&!M.isAES(o.algorithm))throw Error("AES session key expected");return yi(e,a,o.wrappedKey,i,s)}case Q.publicKey.aead:{const{cipher:e}=t,i=e.getValue(),{keyMaterial:s}=r,{aeadMode:a,iv:o,c}=n,u=wa(a.getValue());return(await u(i,s)).decrypt(c.data,o,new Uint8Array)}case Q.publicKey.pqc_mlkem_x25519:{const{eccSecretKey:i,mlkemSecretKey:s}=r,{eccPublicKey:a,mlkemPublicKey:o}=t,{eccCipherText:c,mlkemCipherText:u,C:h}=n;return hs(e,c,u,i,a,s,o,h.wrappedKey)}default:throw Error("Unknown public key encryption algorithm.")}}async function ka(e,t,r){let n=0;switch(e){case Q.publicKey.rsaEncrypt:case Q.publicKey.rsaEncryptSign:case Q.publicKey.rsaSign:{const e=M.readMPI(t.subarray(n));n+=e.length+2;const r=M.readMPI(t.subarray(n));n+=r.length+2;const i=M.readMPI(t.subarray(n));n+=i.length+2;const s=M.readMPI(t.subarray(n));return n+=s.length+2,{read:n,privateParams:{d:e,p:r,q:i,u:s}}}case Q.publicKey.dsa:case Q.publicKey.elgamal:{const e=M.readMPI(t.subarray(n));return n+=e.length+2,{read:n,privateParams:{x:e}}}case Q.publicKey.ecdsa:case Q.publicKey.ecdh:{const i=Ca(e,r.oid);let s=M.readMPI(t.subarray(n));return n+=s.length+2,s=M.leftPad(s,i),{read:n,privateParams:{d:s}}}case Q.publicKey.eddsaLegacy:{const i=Ca(e,r.oid);if(r.oid.getName()!==Q.curve.ed25519Legacy)throw Error("Unexpected OID for eddsaLegacy");let s=M.readMPI(t.subarray(n));return n+=s.length+2,s=M.leftPad(s,i),{read:n,privateParams:{seed:s}}}case Q.publicKey.ed25519:case Q.publicKey.ed448:{const r=Ca(e),i=M.readExactSubarray(t,n,n+r);return n+=i.length,{read:n,privateParams:{seed:i}}}case Q.publicKey.x25519:case Q.publicKey.x448:{const r=Ca(e),i=M.readExactSubarray(t,n,n+r);return n+=i.length,{read:n,privateParams:{k:i}}}case Q.publicKey.hmac:{const{cipher:e}=r,i=Qe(e.getValue()),s=t.subarray(n,n+32);n+=32;const a=t.subarray(n,n+i);return n+=i,{read:n,privateParams:{hashSeed:s,keyMaterial:a}}}case Q.publicKey.aead:{const{cipher:e}=r,i=t.subarray(n,n+32);n+=32;const{keySize:s}=ri(e.getValue()),a=t.subarray(n,n+s);return n+=s,{read:n,privateParams:{hashSeed:i,keyMaterial:a}}}case Q.publicKey.pqc_mlkem_x25519:{const r=M.readExactSubarray(t,n,n+Ca(Q.publicKey.x25519));n+=r.length;const i=M.readExactSubarray(t,n,n+64);n+=i.length;const{mlkemSecretKey:s}=await os(e,i);return{read:n,privateParams:{eccSecretKey:r,mlkemSecretKey:s,mlkemSeed:i}}}case Q.publicKey.pqc_mldsa_ed25519:{const r=M.readExactSubarray(t,n,n+Ca(Q.publicKey.ed25519));n+=r.length;const i=M.readExactSubarray(t,n,n+32);n+=i.length;const{mldsaSecretKey:s}=await fs(e,i);return{read:n,privateParams:{eccSecretKey:r,mldsaSecretKey:s,mldsaSeed:i}}}default:throw new Yt("Unknown public key encryption algorithm.")}}function Ea(e,t){const r=new Set([Q.publicKey.ed25519,Q.publicKey.x25519,Q.publicKey.ed448,Q.publicKey.x448,Q.publicKey.aead,Q.publicKey.hmac,Q.publicKey.pqc_mlkem_x25519,Q.publicKey.pqc_mldsa_ed25519]),n={[Q.publicKey.pqc_mlkem_x25519]:new Set(["mlkemSecretKey"]),[Q.publicKey.pqc_mldsa_ed25519]:new Set(["mldsaSecretKey"])},i=Object.keys(t).map((i=>{if(n[e]?.has(i))return new Uint8Array;const s=t[i];return M.isUint8Array(s)?r.has(e)?s:M.uint8ArrayToMPI(s):s.write()}));return M.concatUint8Array(i)}async function va(e,t,r,n){switch(e){case Q.publicKey.rsaEncrypt:case Q.publicKey.rsaEncryptSign:case Q.publicKey.rsaSign:return async function(e,t){if(t=BigInt(t),M.getWebCrypto()){const r={name:"RSASSA-PKCS1-v1_5",modulusLength:e,publicExponent:he(t),hash:{name:"SHA-1"}},n=await Fe.generateKey(r,!0,["sign","verify"]);return Ve(await Fe.exportKey("jwk",n.privateKey),t)}if(M.getNodeCrypto()){const r={modulusLength:e,publicExponent:ae(t),publicKeyEncoding:{type:"pkcs1",format:"jwk"},privateKeyEncoding:{type:"pkcs1",format:"jwk"}},n=await new Promise(((e,t)=>{Ne.generateKeyPair("rsa",r,((r,n,i)=>{r?t(r):e(i)}))}));return Ve(n,t)}let r,n,i;do{n=pe(e-(e>>1),t,40),r=pe(e>>1,t,40),i=r*n}while(ce(i)!==e);const s=(r-Oe)*(n-Oe);return n<r&&([r,n]=[n,r]),{n:he(i),e:he(t),d:he(se(t,s)),p:he(r),q:he(n),u:he(se(r,n))}}(t,65537).then((({n:e,e:t,d:r,p:n,q:i,u:s})=>({privateParams:{d:r,p:n,q:i,u:s},publicParams:{n:e,e:t}})));case Q.publicKey.ecdsa:return Si(r).then((({oid:e,Q:t,secret:r})=>({privateParams:{d:r},publicParams:{oid:new Ot(e),Q:t}})));case Q.publicKey.eddsaLegacy:return Si(r).then((({oid:e,Q:t,secret:r})=>({privateParams:{seed:r},publicParams:{oid:new Ot(e),Q:t}})));case Q.publicKey.ecdh:return Si(r).then((({oid:e,Q:t,secret:r,hash:n,cipher:i})=>({privateParams:{d:r},publicParams:{oid:new Ot(e),Q:t,kdfParams:new ks({hash:n,cipher:i})}})));case Q.publicKey.ed25519:case Q.publicKey.ed448:return _r(e).then((({A:e,seed:t})=>({privateParams:{seed:t},publicParams:{A:e}})));case Q.publicKey.x25519:case Q.publicKey.x448:return ui(e).then((({A:e,k:t})=>({privateParams:{k:t},publicParams:{A:e}})));case Q.publicKey.hmac:return Ba(await async function(e){if(!is.has(e))throw Error("Unsupported hash algorithm.");const t=Q.read(Q.webHash,e),r=ss||as.webcrypto.subtle,n=await r.generateKey({name:"HMAC",hash:{name:t}},!0,["sign","verify"]),i=await r.exportKey("raw",n);return new Uint8Array(i)}(n),new Ss(n));case Q.publicKey.aead:return Ba(Ia(n),new Bs(n));case Q.publicKey.pqc_mlkem_x25519:return cs(e).then((({eccSecretKey:e,eccPublicKey:t,mlkemSeed:r,mlkemSecretKey:n,mlkemPublicKey:i})=>({privateParams:{eccSecretKey:e,mlkemSeed:r,mlkemSecretKey:n},publicParams:{eccPublicKey:t,mlkemPublicKey:i}})));case Q.publicKey.pqc_mldsa_ed25519:return gs(e).then((({eccSecretKey:e,eccPublicKey:t,mldsaSeed:r,mldsaSecretKey:n,mldsaPublicKey:i})=>({privateParams:{eccSecretKey:e,mldsaSeed:r,mldsaSecretKey:n},publicParams:{eccPublicKey:t,mldsaPublicKey:i}})));case Q.publicKey.dsa:case Q.publicKey.elgamal:throw Error("Unsupported algorithm for key generation.");default:throw Error("Unknown public key algorithm.")}}async function Ba(e,t){const r=ye(32);return{privateParams:{hashSeed:r,keyMaterial:e},publicParams:{cipher:t,digest:await xe(Q.hash.sha256,r)}}}async function Sa(e,t,r){if(!t||!r)throw Error("Missing key parameters");switch(e){case Q.publicKey.rsaEncrypt:case Q.publicKey.rsaEncryptSign:case Q.publicKey.rsaSign:{const{n:e,e:n}=t,{d:i,p:s,q:a,u:o}=r;return async function(e,t,r,n,i,s){if(e=te(e),(n=te(n))*(i=te(i))!==e)return!1;const a=BigInt(2);if(re(n*(s=te(s)),i)!==BigInt(1))return!1;t=te(t),r=te(r);const o=fe(a,a<<BigInt(Math.floor(ce(e)/3))),c=o*r*t;return!(re(c,n-Oe)!==o||re(c,i-Oe)!==o)}(e,n,i,s,a,o)}case Q.publicKey.dsa:{const{p:e,q:n,g:i,y:s}=t,{x:a}=r;return async function(e,t,r,n,i){if(e=te(e),t=te(t),r=te(r),n=te(n),r<=ns||r>=e)return!1;if(re(e-ns,t)!==rs)return!1;if(ne(r,t,e)!==ns)return!1;const s=BigInt(ce(t));if(s<BigInt(150)||!de(t,null,32))return!1;i=te(i);const a=BigInt(2);return n===ne(r,t*fe(a<<s-ns,a<<s)+i,e)}(e,n,i,s,a)}case Q.publicKey.elgamal:{const{p:e,g:n,y:i}=t,{x:s}=r;return async function(e,t,r,n){if(e=te(e),t=te(t),r=te(r),t<=Ye||t>=e)return!1;const i=BigInt(ce(e));if(i<BigInt(1023))return!1;if(ne(t,e-Ye,e)!==Ye)return!1;let s=t,a=BigInt(1);const o=BigInt(2),c=o<<BigInt(17);for(;a<c;){if(s=re(s*t,e),s===Ye)return!1;a++}n=te(n);const u=fe(o<<i-Ye,o<<i);return r===ne(t,(e-Ye)*u+n,e)}(e,n,i,s)}case Q.publicKey.ecdsa:case Q.publicKey.ecdh:{const n=ts[Q.read(Q.publicKey,e)],{oid:i,Q:s}=t,{d:a}=r;return n.validateParams(i,s,a)}case Q.publicKey.eddsaLegacy:{const{Q:e,oid:n}=t,{seed:i}=r;return _i(n,e,i)}case Q.publicKey.ed25519:case Q.publicKey.ed448:{const{A:n}=t,{seed:i}=r;return Gr(e,n,i)}case Q.publicKey.x25519:case Q.publicKey.x448:{const{A:n}=t,{k:i}=r;return hi(e,n,i)}case Q.publicKey.hmac:{const{cipher:e,digest:n}=t,{hashSeed:i,keyMaterial:s}=r;return Qe(e.getValue())===s.length&&M.equalsUint8Array(n,await xe(Q.hash.sha256,i))}case Q.publicKey.aead:{const{cipher:e,digest:n}=t,{hashSeed:i,keyMaterial:s}=r,{keySize:a}=ri(e.getValue());return a===s.length&&M.equalsUint8Array(n,await xe(Q.hash.sha256,i))}case Q.publicKey.pqc_mlkem_x25519:{const{eccSecretKey:n,mlkemSeed:i}=r,{eccPublicKey:s,mlkemPublicKey:a}=t;return ys(e,s,n,a,i)}case Q.publicKey.pqc_mldsa_ed25519:{const{eccSecretKey:n,mldsaSeed:i}=r,{eccPublicKey:s,mldsaPublicKey:a}=t;return ws(e,s,n,a,i)}default:throw Error("Unknown public key algorithm.")}}function Ia(e){const{keySize:t}=ri(e);return ye(t)}function Ka(e){try{e.getName()}catch(e){throw new Yt("Unknown curve OID")}}function Ca(e,t){switch(e){case Q.publicKey.ecdsa:case Q.publicKey.ecdh:case Q.publicKey.eddsaLegacy:return new Bi(t).payloadSize;case Q.publicKey.ed25519:case Q.publicKey.ed448:return qr(e);case Q.publicKey.x25519:case Q.publicKey.x448:return fi(e);default:throw Error("Unknown elliptic algo")}}async function Ua(e,t,r,n,i,s,a){switch(e){case Q.publicKey.rsaEncryptSign:case Q.publicKey.rsaEncrypt:case Q.publicKey.rsaSign:{const{n:e,e:i}=n;return He(t,s,M.leftPad(r.s,e.length),e,i,a)}case Q.publicKey.dsa:{const{g:e,p:t,q:i,y:s}=n,{r:o,s:c}=r;return async function(e,t,r,n,i,s,a,o){if(t=te(t),r=te(r),s=te(s),a=te(a),i=te(i),o=te(o),t<=rs||t>=a||r<=rs||r>=a)return M.printDebug("invalid DSA Signature"),!1;const c=re(te(n.subarray(0,ue(a))),a),u=se(r,a);if(u===rs)return M.printDebug("invalid DSA Signature"),!1;i=re(i,s),o=re(o,s);const h=re(c*u,a),l=re(t*u,a);return re(re(ne(i,h,s)*ne(o,l,s),s),a)===t}(0,o,c,a,e,t,i,s)}case Q.publicKey.ecdsa:{const{oid:e,Q:i}=n,o=new Bi(e).payloadSize;return Mi(e,t,{r:M.leftPad(r.r,o),s:M.leftPad(r.s,o)},s,i,a)}case Q.publicKey.eddsaLegacy:{const{oid:e,Q:i}=n,s=new Bi(e).payloadSize;return Oi(e,t,{r:M.leftPad(r.r,s),s:M.leftPad(r.s,s)},0,i,a)}case Q.publicKey.ed25519:case Q.publicKey.ed448:{const{A:i}=n;return zr(e,t,r,0,i,a)}case Q.publicKey.hmac:{if(!i)throw Error("Cannot verify HMAC signature with symmetric key missing private parameters");const{cipher:e}=n,{keyMaterial:t}=i;return async function(e,t,r,n){if(!is.has(e))throw Error("Unsupported hash algorithm.");const i=Q.read(Q.webHash,e),s=ss||as.webcrypto.subtle,a=await s.importKey("raw",t,{name:"HMAC",hash:{name:i}},!1,["verify"]);return s.verify("HMAC",a,r,n)}(e.getValue(),t,r.mac.data,a)}case Q.publicKey.pqc_mldsa_ed25519:{const{eccPublicKey:i,mldsaPublicKey:s}=n;return ds(e,t,i,s,a,r)}default:throw Error("Unknown signature algorithm.")}}async function Pa(e,t,r,n,i,s){if(!r||!n)throw Error("Missing key parameters");switch(e){case Q.publicKey.rsaEncryptSign:case Q.publicKey.rsaEncrypt:case Q.publicKey.rsaSign:{const{n:e,e:a}=r,{d:o,p:c,q:u,u:h}=n;return{s:await _e(t,i,e,a,o,c,u,h,s)}}case Q.publicKey.dsa:{const{g:e,p:t,q:i}=r,{x:a}=n;return async function(e,t,r,n,i,s){const a=BigInt(0);let o,c,u,h;n=te(n),i=te(i),r=te(r),s=te(s),r=re(r,n),s=re(s,i);const l=re(te(t.subarray(0,ue(i))),i);for(;;){if(o=fe(ns,i),c=re(ne(r,o,n),i),c===a)continue;const e=re(s*c,i);if(h=re(l+e,i),u=re(se(o,i)*h,i),u!==a)break}return{r:he(c,"be",ue(n)),s:he(u,"be",ue(n))}}(0,s,e,t,i,a)}case Q.publicKey.elgamal:throw Error("Signing with Elgamal is not defined in the OpenPGP standard.");case Q.publicKey.ecdsa:{const{oid:e,Q:a}=r,{d:o}=n;return Ti(e,t,i,a,o,s)}case Q.publicKey.eddsaLegacy:{const{oid:e,Q:i}=r,{seed:a}=n;return Ni(e,t,0,i,a,s)}case Q.publicKey.ed25519:case Q.publicKey.ed448:{const{A:i}=r,{seed:a}=n;return Hr(e,t,0,i,a,s)}case Q.publicKey.hmac:{const{cipher:e}=r,{keyMaterial:t}=n,i=await async function(e,t,r){if(!is.has(e))throw Error("Unsupported hash algorithm.");const n=Q.read(Q.webHash,e),i=ss||as.webcrypto.subtle,s=await i.importKey("raw",t,{name:"HMAC",hash:{name:n}},!1,["sign"]),a=await i.sign("HMAC",s,r);return new Uint8Array(a)}(e.getValue(),t,s);return{mac:new bs(i)}}case Q.publicKey.pqc_mldsa_ed25519:{const{eccPublicKey:i}=r,{eccSecretKey:a,mldsaSecretKey:o}=n;return ps(e,t,a,i,o,s)}default:throw Error("Unknown signature algorithm.")}}Aa.getNonce=function(e,t){const r=e.slice();for(let e=0;e<t.length;e++)r[4+e]^=t[e];return r},Aa.blockLength=16,Aa.ivLength=12,Aa.tagLength=pa;class Da extends Error{constructor(...e){super(...e),Error.captureStackTrace&&Error.captureStackTrace(this,Da),this.name="Argon2OutOfMemoryError"}}let xa,Qa,Ra=2<<19;class Ta{static get ARGON2_WASM_MEMORY_THRESHOLD_RELOAD(){return Ra}static set ARGON2_WASM_MEMORY_THRESHOLD_RELOAD(e){Ra=e}static reloadWasmModule(){xa&&(Qa=xa(),Qa.catch((()=>{})))}constructor(e=R){const{passes:t,parallelism:r,memoryExponent:n}=e.s2kArgon2Params;this.type="argon2",this.salt=null,this.t=t,this.p=r,this.encodedM=n}generateSalt(){this.salt=ye(16)}read(e){let t=0;return this.salt=e.subarray(t,t+16),t+=16,this.t=e[t++],this.p=e[t++],this.encodedM=e[t++],t}write(){const e=[new Uint8Array([Q.write(Q.s2k,this.type)]),this.salt,new Uint8Array([this.t,this.p,this.encodedM])];return M.concatUint8Array(e)}async produceKey(e,t){const r=2<<this.encodedM-1;try{xa=xa||(await Promise.resolve().then((function(){return mp}))).default,Qa=Qa||xa();const n=await Qa,i=n({version:19,type:2,password:M.encodeUTF8(e),salt:this.salt,tagLength:t,memorySize:r,parallelism:this.p,passes:this.t});return r>Ta.ARGON2_WASM_MEMORY_THRESHOLD_RELOAD&&Ta.reloadWasmModule(),i}catch(e){throw e.message&&(e.message.includes("Unable to grow instance memory")||e.message.includes("failed to grow memory")||e.message.includes("WebAssembly.Memory.grow")||e.message.includes("Out of memory"))?new Da("Could not allocate required memory for Argon2"):e}}}class Ma{constructor(e,t=R){this.algorithm=Q.hash.sha256,this.type=Q.read(Q.s2k,e),this.c=t.s2kIterationCountByte,this.salt=null}generateSalt(){switch(this.type){case"salted":case"iterated":this.salt=ye(8)}}getCount(){return 16+(15&this.c)<<6+(this.c>>4)}read(e){let t=0;switch(this.algorithm=e[t++],this.type){case"simple":break;case"salted":this.salt=e.subarray(t,t+8),t+=8;break;case"iterated":this.salt=e.subarray(t,t+8),t+=8,this.c=e[t++];break;case"gnu":if("GNU"!==M.uint8ArrayToString(e.subarray(t,t+3)))throw new Yt("Unknown s2k type.");t+=3;if(1001!==1e3+e[t++])throw new Yt("Unknown s2k gnu protection mode.");this.type="gnu-dummy";break;default:throw new Yt("Unknown s2k type.")}return t}write(){if("gnu-dummy"===this.type)return new Uint8Array([101,0,...M.stringToUint8Array("GNU"),1]);const e=[new Uint8Array([Q.write(Q.s2k,this.type),this.algorithm])];switch(this.type){case"simple":break;case"salted":e.push(this.salt);break;case"iterated":e.push(this.salt),e.push(new Uint8Array([this.c]));break;case"gnu":throw Error("GNU s2k type not supported.");default:throw Error("Unknown s2k type.")}return M.concatUint8Array(e)}async produceKey(e,t){e=M.encodeUTF8(e);const r=[];let n=0,i=0;for(;n<t;){let t;switch(this.type){case"simple":t=M.concatUint8Array([new Uint8Array(i),e]);break;case"salted":t=M.concatUint8Array([new Uint8Array(i),this.salt,e]);break;case"iterated":{const r=M.concatUint8Array([this.salt,e]);let n=r.length;const s=Math.max(this.getCount(),n);t=new Uint8Array(i+s),t.set(r,i);for(let e=i+n;e<s;e+=n,n*=2)t.copyWithin(e,i,e);break}case"gnu":throw Error("GNU s2k type not supported.");default:throw Error("Unknown s2k type.")}const s=await xe(this.algorithm,t);r.push(s),n+=s.length,i++}return M.concatUint8Array(r).subarray(0,t)}}const La=new Set([Q.s2k.argon2,Q.s2k.iterated]);function Fa(e,t=R){switch(e){case Q.s2k.argon2:return new Ta(t);case Q.s2k.iterated:case Q.s2k.gnu:case Q.s2k.salted:case Q.s2k.simple:return new Ma(e,t);default:throw new Yt("Unsupported S2K type")}}function Na(e){const{s2kType:t}=e;if(!La.has(t))throw Error("The provided `config.s2kType` value is not allowed");return Fa(t,e)}var Oa=Uint8Array,_a=Uint16Array,Ha=Uint32Array,za=new Oa([0,0,0,0,0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3,4,4,4,4,5,5,5,5,0,0,0,0]),Ga=new Oa([0,0,0,0,1,1,2,2,3,3,4,4,5,5,6,6,7,7,8,8,9,9,10,10,11,11,12,12,13,13,0,0]),qa=new Oa([16,17,18,0,8,7,9,6,10,5,11,4,12,3,13,2,14,1,15]),ja=function(e,t){for(var r=new _a(31),n=0;n<31;++n)r[n]=t+=1<<e[n-1];var i=new Ha(r[30]);for(n=1;n<30;++n)for(var s=r[n];s<r[n+1];++s)i[s]=s-r[n]<<5|n;return[r,i]},Va=ja(za,2),Ya=Va[0],Za=Va[1];Ya[28]=258,Za[258]=28;for(var Wa=ja(Ga,0),Ja=Wa[0],Xa=Wa[1],$a=new _a(32768),eo=0;eo<32768;++eo){var to=(43690&eo)>>>1|(21845&eo)<<1;to=(61680&(to=(52428&to)>>>2|(13107&to)<<2))>>>4|(3855&to)<<4,$a[eo]=((65280&to)>>>8|(255&to)<<8)>>>1}var ro=function(e,t,r){for(var n=e.length,i=0,s=new _a(t);i<n;++i)e[i]&&++s[e[i]-1];var a,o=new _a(t);for(i=0;i<t;++i)o[i]=o[i-1]+s[i-1]<<1;if(r){a=new _a(1<<t);var c=15-t;for(i=0;i<n;++i)if(e[i])for(var u=i<<4|e[i],h=t-e[i],l=o[e[i]-1]++<<h,y=l|(1<<h)-1;l<=y;++l)a[$a[l]>>>c]=u}else for(a=new _a(n),i=0;i<n;++i)e[i]&&(a[i]=$a[o[e[i]-1]++]>>>15-e[i]);return a},no=new Oa(288);for(eo=0;eo<144;++eo)no[eo]=8;for(eo=144;eo<256;++eo)no[eo]=9;for(eo=256;eo<280;++eo)no[eo]=7;for(eo=280;eo<288;++eo)no[eo]=8;var io=new Oa(32);for(eo=0;eo<32;++eo)io[eo]=5;var so=/*#__PURE__*/ro(no,9,0),ao=/*#__PURE__*/ro(no,9,1),oo=/*#__PURE__*/ro(io,5,0),co=/*#__PURE__*/ro(io,5,1),uo=function(e){for(var t=e[0],r=1;r<e.length;++r)e[r]>t&&(t=e[r]);return t},ho=function(e,t,r){var n=t/8|0;return(e[n]|e[n+1]<<8)>>(7&t)&r},lo=function(e,t){var r=t/8|0;return(e[r]|e[r+1]<<8|e[r+2]<<16)>>(7&t)},yo=function(e){return(e+7)/8|0},fo=function(e,t,r){(null==t||t<0)&&(t=0),(null==r||r>e.length)&&(r=e.length);var n=new(2==e.BYTES_PER_ELEMENT?_a:4==e.BYTES_PER_ELEMENT?Ha:Oa)(r-t);return n.set(e.subarray(t,r)),n},go=["unexpected EOF","invalid block type","invalid length/literal","invalid distance","stream finished","no stream handler",,"no callback","invalid UTF-8 data","extra field too long","date not in range 1980-2099","filename too long","stream finishing","invalid zip data"],po=function(e,t,r){var n=Error(t||go[e]);if(n.code=e,Error.captureStackTrace&&Error.captureStackTrace(n,po),!r)throw n;return n},Ao=function(e,t,r){r<<=7&t;var n=t/8|0;e[n]|=r,e[n+1]|=r>>>8},wo=function(e,t,r){r<<=7&t;var n=t/8|0;e[n]|=r,e[n+1]|=r>>>8,e[n+2]|=r>>>16},mo=function(e,t){for(var r=[],n=0;n<e.length;++n)e[n]&&r.push({s:n,f:e[n]});var i=r.length,s=r.slice();if(!i)return[Io,0];if(1==i){var a=new Oa(r[0].s+1);return a[r[0].s]=1,[a,1]}r.sort((function(e,t){return e.f-t.f})),r.push({s:-1,f:25001});var o=r[0],c=r[1],u=0,h=1,l=2;for(r[0]={s:-1,f:o.f+c.f,l:o,r:c};h!=i-1;)o=r[r[u].f<r[l].f?u++:l++],c=r[u!=h&&r[u].f<r[l].f?u++:l++],r[h++]={s:-1,f:o.f+c.f,l:o,r:c};var y=s[0].s;for(n=1;n<i;++n)s[n].s>y&&(y=s[n].s);var f=new _a(y+1),g=bo(r[h-1],f,0);if(g>t){n=0;var p=0,d=g-t,A=1<<d;for(s.sort((function(e,t){return f[t.s]-f[e.s]||e.f-t.f}));n<i;++n){var w=s[n].s;if(!(f[w]>t))break;p+=A-(1<<g-f[w]),f[w]=t}for(p>>>=d;p>0;){var m=s[n].s;f[m]<t?p-=1<<t-f[m]++-1:++n}for(;n>=0&&p;--n){var b=s[n].s;f[b]==t&&(--f[b],++p)}g=t}return[new Oa(f),g]},bo=function(e,t,r){return-1==e.s?Math.max(bo(e.l,t,r+1),bo(e.r,t,r+1)):t[e.s]=r},ko=function(e){for(var t=e.length;t&&!e[--t];);for(var r=new _a(++t),n=0,i=e[0],s=1,a=function(e){r[n++]=e},o=1;o<=t;++o)if(e[o]==i&&o!=t)++s;else{if(!i&&s>2){for(;s>138;s-=138)a(32754);s>2&&(a(s>10?s-11<<5|28690:s-3<<5|12305),s=0)}else if(s>3){for(a(i),--s;s>6;s-=6)a(8304);s>2&&(a(s-3<<5|8208),s=0)}for(;s--;)a(i);s=1,i=e[o]}return[r.subarray(0,n),t]},Eo=function(e,t){for(var r=0,n=0;n<t.length;++n)r+=e[n]*t[n];return r},vo=function(e,t,r){var n=r.length,i=yo(t+2);e[i]=255&n,e[i+1]=n>>>8,e[i+2]=255^e[i],e[i+3]=255^e[i+1];for(var s=0;s<n;++s)e[i+s+4]=r[s];return 8*(i+4+n)},Bo=function(e,t,r,n,i,s,a,o,c,u,h){Ao(t,h++,r),++i[256];for(var l=mo(i,15),y=l[0],f=l[1],g=mo(s,15),p=g[0],d=g[1],A=ko(y),w=A[0],m=A[1],b=ko(p),k=b[0],E=b[1],v=new _a(19),B=0;B<w.length;++B)v[31&w[B]]++;for(B=0;B<k.length;++B)v[31&k[B]]++;for(var S=mo(v,7),I=S[0],K=S[1],C=19;C>4&&!I[qa[C-1]];--C);var U,P,D,x,Q=u+5<<3,R=Eo(i,no)+Eo(s,io)+a,T=Eo(i,y)+Eo(s,p)+a+14+3*C+Eo(v,I)+(2*v[16]+3*v[17]+7*v[18]);if(Q<=R&&Q<=T)return vo(t,h,e.subarray(c,c+u));if(Ao(t,h,1+(T<R)),h+=2,T<R){U=ro(y,f,0),P=y,D=ro(p,d,0),x=p;var M=ro(I,K,0);Ao(t,h,m-257),Ao(t,h+5,E-1),Ao(t,h+10,C-4),h+=14;for(B=0;B<C;++B)Ao(t,h+3*B,I[qa[B]]);h+=3*C;for(var L=[w,k],F=0;F<2;++F){var N=L[F];for(B=0;B<N.length;++B){var O=31&N[B];Ao(t,h,M[O]),h+=I[O],O>15&&(Ao(t,h,N[B]>>>5&127),h+=N[B]>>>12)}}}else U=so,P=no,D=oo,x=io;for(B=0;B<o;++B)if(n[B]>255){O=n[B]>>>18&31;wo(t,h,U[O+257]),h+=P[O+257],O>7&&(Ao(t,h,n[B]>>>23&31),h+=za[O]);var _=31&n[B];wo(t,h,D[_]),h+=x[_],_>3&&(wo(t,h,n[B]>>>5&8191),h+=Ga[_])}else wo(t,h,U[n[B]]),h+=P[n[B]];return wo(t,h,U[256]),h+P[256]},So=/*#__PURE__*/new Ha([65540,131080,131088,131104,262176,1048704,1048832,2114560,2117632]),Io=/*#__PURE__*/new Oa(0),Ko=function(e,t,r,n,i){return function(e,t,r,n,i,s){var a=e.length,o=new Oa(n+a+5*(1+Math.ceil(a/7e3))+i),c=o.subarray(n,o.length-i),u=0;if(!t||a<8)for(var h=0;h<=a;h+=65535){var l=h+65535;l>=a&&(c[u>>3]=s),u=vo(c,u+1,e.subarray(h,l))}else{for(var y=So[t-1],f=y>>>13,g=8191&y,p=(1<<r)-1,d=new _a(32768),A=new _a(p+1),w=Math.ceil(r/3),m=2*w,b=function(t){return(e[t]^e[t+1]<<w^e[t+2]<<m)&p},k=new Ha(25e3),E=new _a(288),v=new _a(32),B=0,S=0,I=(h=0,0),K=0,C=0;h<a;++h){var U=b(h),P=32767&h,D=A[U];if(d[P]=D,A[U]=P,K<=h){var x=a-h;if((B>7e3||I>24576)&&x>423){u=Bo(e,c,0,k,E,v,S,I,C,h-C,u),I=B=S=0,C=h;for(var Q=0;Q<286;++Q)E[Q]=0;for(Q=0;Q<30;++Q)v[Q]=0}var R=2,T=0,M=g,L=P-D&32767;if(x>2&&U==b(h-L))for(var F=Math.min(f,x)-1,N=Math.min(32767,h),O=Math.min(258,x);L<=N&&--M&&P!=D;){if(e[h+R]==e[h+R-L]){for(var _=0;_<O&&e[h+_]==e[h+_-L];++_);if(_>R){if(R=_,T=L,_>F)break;var H=Math.min(L,_-2),z=0;for(Q=0;Q<H;++Q){var G=h-L+Q+32768&32767,q=G-d[G]+32768&32767;q>z&&(z=q,D=G)}}}L+=(P=D)-(D=d[P])+32768&32767}if(T){k[I++]=268435456|Za[R]<<18|Xa[T];var j=31&Za[R],V=31&Xa[T];S+=za[j]+Ga[V],++E[257+j],++v[V],K=h+R,++B}else k[I++]=e[h],++E[e[h]]}}u=Bo(e,c,s,k,E,v,S,I,C,h-C,u),!s&&7&u&&(u=vo(c,u+1,Io))}return fo(o,0,n+yo(u)+i)}(e,null==t.level?6:t.level,null==t.mem?Math.ceil(1.5*Math.max(8,Math.min(13,Math.log(e.length)))):12+t.mem,r,n,!i)},Co=/*#__PURE__*/function(){function e(e,t){t||"function"!=typeof e||(t=e,e={}),this.ondata=t,this.o=e||{}}return e.prototype.p=function(e,t){this.ondata(Ko(e,this.o,0,0,!t),t)},e.prototype.push=function(e,t){this.ondata||po(5),this.d&&po(4),this.d=t,this.p(e,t||!1)},e}(),Uo=/*#__PURE__*/function(){function e(e){this.s={},this.p=new Oa(0),this.ondata=e}return e.prototype.e=function(e){this.ondata||po(5),this.d&&po(4);var t=this.p.length,r=new Oa(t+e.length);r.set(this.p),r.set(e,t),this.p=r},e.prototype.c=function(e){this.d=this.s.i=e||!1;var t=this.s.b,r=function(e,t,r){var n=e.length;if(!n||r&&r.f&&!r.l)return t||new Oa(0);var i=!t||r,s=!r||r.i;r||(r={}),t||(t=new Oa(3*n));var a=function(e){var r=t.length;if(e>r){var n=new Oa(Math.max(2*r,e));n.set(t),t=n}},o=r.f||0,c=r.p||0,u=r.b||0,h=r.l,l=r.d,y=r.m,f=r.n,g=8*n;do{if(!h){o=ho(e,c,1);var p=ho(e,c+1,3);if(c+=3,!p){var d=e[(K=yo(c)+4)-4]|e[K-3]<<8,A=K+d;if(A>n){s&&po(0);break}i&&a(u+d),t.set(e.subarray(K,A),u),r.b=u+=d,r.p=c=8*A,r.f=o;continue}if(1==p)h=ao,l=co,y=9,f=5;else if(2==p){var w=ho(e,c,31)+257,m=ho(e,c+10,15)+4,b=w+ho(e,c+5,31)+1;c+=14;for(var k=new Oa(b),E=new Oa(19),v=0;v<m;++v)E[qa[v]]=ho(e,c+3*v,7);c+=3*m;var B=uo(E),S=(1<<B)-1,I=ro(E,B,1);for(v=0;v<b;){var K,C=I[ho(e,c,S)];if(c+=15&C,(K=C>>>4)<16)k[v++]=K;else{var U=0,P=0;for(16==K?(P=3+ho(e,c,3),c+=2,U=k[v-1]):17==K?(P=3+ho(e,c,7),c+=3):18==K&&(P=11+ho(e,c,127),c+=7);P--;)k[v++]=U}}var D=k.subarray(0,w),x=k.subarray(w);y=uo(D),f=uo(x),h=ro(D,y,1),l=ro(x,f,1)}else po(1);if(c>g){s&&po(0);break}}i&&a(u+131072);for(var Q=(1<<y)-1,R=(1<<f)-1,T=c;;T=c){var M=(U=h[lo(e,c)&Q])>>>4;if((c+=15&U)>g){s&&po(0);break}if(U||po(2),M<256)t[u++]=M;else{if(256==M){T=c,h=null;break}var L=M-254;if(M>264){var F=za[v=M-257];L=ho(e,c,(1<<F)-1)+Ya[v],c+=F}var N=l[lo(e,c)&R],O=N>>>4;if(N||po(3),c+=15&N,x=Ja[O],O>3&&(F=Ga[O],x+=lo(e,c)&(1<<F)-1,c+=F),c>g){s&&po(0);break}i&&a(u+131072);for(var _=u+L;u<_;u+=4)t[u]=t[u-x],t[u+1]=t[u+1-x],t[u+2]=t[u+2-x],t[u+3]=t[u+3-x];u=_}}r.l=h,r.p=T,r.b=u,r.f=o,h&&(o=1,r.m=y,r.d=l,r.n=f)}while(!o);return u==t.length?t:fo(t,0,u)}(this.p,this.o,this.s);this.ondata(fo(r,t,this.s.b),this.d),this.o=fo(r,this.s.b-32768),this.s.b=this.o.length,this.p=fo(this.p,this.s.p/8|0),this.s.p&=7},e.prototype.push=function(e,t){this.e(e),this.c(t)},e}(),Po=/*#__PURE__*/function(){function e(e,t){var r,n;this.c=(r=1,n=0,{p:function(e){for(var t=r,i=n,s=0|e.length,a=0;a!=s;){for(var o=Math.min(a+2655,s);a<o;++a)i+=t+=e[a];t=(65535&t)+15*(t>>16),i=(65535&i)+15*(i>>16)}r=t,n=i},d:function(){return(255&(r%=65521))<<24|r>>>8<<16|(255&(n%=65521))<<8|n>>>8}}),this.v=1,Co.call(this,e,t)}return e.prototype.push=function(e,t){Co.prototype.push.call(this,e,t)},e.prototype.p=function(e,t){this.c.p(e);var r=Ko(e,this.o,this.v&&2,t&&4,!t);this.v&&(function(e,t){var r=t.level,n=0==r?0:r<6?1:9==r?3:2;e[0]=120,e[1]=n<<6|(n?32-2*n:1)}(r,this.o),this.v=0),t&&function(e,t,r){for(;r;++t)e[t]=r,r>>>=8}(r,r.length-4,this.c.d()),this.ondata(r,t)},e}(),Do=/*#__PURE__*/function(){function e(e){this.v=1,Uo.call(this,e)}return e.prototype.push=function(e,t){if(Uo.prototype.e.call(this,e),this.v){if(this.p.length<2&&!t)return;this.p=this.p.subarray(2),this.v=0}t&&(this.p.length<4&&po(6,"invalid zlib data"),this.p=this.p.subarray(0,-4)),Uo.prototype.c.call(this,t)},e}(),xo="undefined"!=typeof TextDecoder&&/*#__PURE__*/new TextDecoder;try{xo.decode(Io,{stream:!0}),1}catch(e){}class Qo{static get tag(){return Q.packet.literalData}constructor(e=new Date){this.format=Q.literal.utf8,this.date=M.normalizeDate(e),this.text=null,this.data=null,this.filename=""}setText(e,t=Q.literal.utf8){this.format=t,this.text=e,this.data=null}getText(e=!1){return(null===this.text||M.isStream(this.text))&&(this.text=M.decodeUTF8(M.nativeEOL(this.getBytes(e)))),this.text}setBytes(e,t){this.format=t,this.data=e,this.text=null}getBytes(e=!1){return null===this.data&&(this.data=M.canonicalizeEOL(M.encodeUTF8(this.text))),e?B(this.data):this.data}setFilename(e){this.filename=e}getFilename(){return this.filename}async read(e){await E(e,(async e=>{const t=await e.readByte(),r=await e.readByte();this.filename=M.decodeUTF8(await e.readBytes(r)),this.date=M.readDate(await e.readBytes(4));let n=e.remainder();a(n)&&(n=await K(n)),this.setBytes(n,t)}))}writeHeader(){const e=M.encodeUTF8(this.filename),t=new Uint8Array([e.length]),r=new Uint8Array([this.format]),n=M.writeDate(this.date);return M.concatUint8Array([r,t,e,n])}write(){const e=this.writeHeader(),t=this.getBytes();return M.concat([e,t])}}class Ro{constructor(){this.bytes=""}read(e){return this.bytes=M.uint8ArrayToString(e.subarray(0,8)),this.bytes.length}write(){return M.stringToUint8Array(this.bytes)}toHex(){return M.uint8ArrayToHex(M.stringToUint8Array(this.bytes))}equals(e,t=!1){return t&&(e.isWildcard()||this.isWildcard())||this.bytes===e.bytes}isNull(){return""===this.bytes}isWildcard(){return/^0+$/.test(this.toHex())}static mapToHex(e){return e.toHex()}static fromID(e){const t=new Ro;return t.read(M.hexToUint8Array(e)),t}static wildcard(){const e=new Ro;return e.read(new Uint8Array(8)),e}}const To=Symbol("verified"),Mo="salt@notations.openpgpjs.org",Lo=new Set([Q.signatureSubpacket.issuerKeyID,Q.signatureSubpacket.issuerFingerprint,Q.signatureSubpacket.embeddedSignature]);class Fo{static get tag(){return Q.packet.signature}constructor(){this.version=null,this.signatureType=null,this.hashAlgorithm=null,this.publicKeyAlgorithm=null,this.signatureData=null,this.unhashedSubpackets=[],this.unknownSubpackets=[],this.signedHashValue=null,this.salt=null,this.created=null,this.signatureExpirationTime=null,this.signatureNeverExpires=!0,this.exportable=null,this.trustLevel=null,this.trustAmount=null,this.regularExpression=null,this.revocable=null,this.keyExpirationTime=null,this.keyNeverExpires=null,this.preferredSymmetricAlgorithms=null,this.revocationKeyClass=null,this.revocationKeyAlgorithm=null,this.revocationKeyFingerprint=null,this.issuerKeyID=new Ro,this.rawNotations=[],this.notations={},this.preferredHashAlgorithms=null,this.preferredCompressionAlgorithms=null,this.keyServerPreferences=null,this.preferredKeyServer=null,this.isPrimaryUserID=null,this.policyURI=null,this.keyFlags=null,this.signersUserID=null,this.reasonForRevocationFlag=null,this.reasonForRevocationString=null,this.features=null,this.signatureTargetPublicKeyAlgorithm=null,this.signatureTargetHashAlgorithm=null,this.signatureTargetHash=null,this.embeddedSignature=null,this.issuerKeyVersion=null,this.issuerFingerprint=null,this.preferredAEADAlgorithms=null,this.preferredCipherSuites=null,this.revoked=null,this[To]=null}read(e,t=R){let r=0;if(this.version=e[r++],5===this.version&&!t.enableParsingV5Entities)throw new Yt("Support for v5 entities is disabled; turn on `config.enableParsingV5Entities` if needed");if(4!==this.version&&5!==this.version&&6!==this.version)throw new Yt(`Version ${this.version} of the signature packet is unsupported.`);if(this.signatureType=e[r++],this.publicKeyAlgorithm=e[r++],this.hashAlgorithm=e[r++],r+=this.readSubPackets(e.subarray(r,e.length),!0),!this.created)throw Error("Missing signature creation time subpacket.");if(this.signatureData=e.subarray(0,r),r+=this.readSubPackets(e.subarray(r,e.length),!1),this.signedHashValue=e.subarray(r,r+2),r+=2,6===this.version){const t=e[r++];this.salt=e.subarray(r,r+t),r+=t}const n=e.subarray(r,e.length),{read:i,signatureParams:s}=function(e,t){let r=0;switch(e){case Q.publicKey.rsaEncryptSign:case Q.publicKey.rsaEncrypt:case Q.publicKey.rsaSign:{const e=M.readMPI(t.subarray(r));return r+=e.length+2,{read:r,signatureParams:{s:e}}}case Q.publicKey.dsa:case Q.publicKey.ecdsa:{const e=M.readMPI(t.subarray(r));r+=e.length+2;const n=M.readMPI(t.subarray(r));return r+=n.length+2,{read:r,signatureParams:{r:e,s:n}}}case Q.publicKey.eddsaLegacy:{const e=M.readMPI(t.subarray(r));r+=e.length+2;const n=M.readMPI(t.subarray(r));return r+=n.length+2,{read:r,signatureParams:{r:e,s:n}}}case Q.publicKey.ed25519:case Q.publicKey.ed448:{const n=2*qr(e),i=M.readExactSubarray(t,r,r+n);return r+=i.length,{read:r,signatureParams:{RS:i}}}case Q.publicKey.hmac:{const e=new bs;return r+=e.read(t.subarray(r)),{read:r,signatureParams:{mac:e}}}case Q.publicKey.pqc_mldsa_ed25519:{const e=2*qr(Q.publicKey.ed25519),n=M.readExactSubarray(t,r,r+e);r+=n.length;const i=M.readExactSubarray(t,r,r+3309);return r+=i.length,{read:r,signatureParams:{eccSignature:n,mldsaSignature:i}}}default:throw new Yt("Unknown signature algorithm.")}}(this.publicKeyAlgorithm,n);if(i<n.length)throw Error("Error reading MPIs");this.params=s}writeParams(){return this.params instanceof Promise?U((async()=>Ea(this.publicKeyAlgorithm,await this.params))):Ea(this.publicKeyAlgorithm,this.params)}write(){const e=[];return e.push(this.signatureData),e.push(this.writeUnhashedSubPackets()),e.push(this.signedHashValue),6===this.version&&(e.push(new Uint8Array([this.salt.length])),e.push(this.salt)),e.push(this.writeParams()),M.concat(e)}async sign(e,t,r=new Date,n=!1,i){this.version=e.version,this.created=M.normalizeDate(r),this.issuerKeyVersion=e.version,this.issuerFingerprint=e.getFingerprintBytes(),this.issuerKeyID=e.getKeyID();const s=[new Uint8Array([this.version,this.signatureType,this.publicKeyAlgorithm,this.hashAlgorithm])];if(6===this.version){const e=Oo(this.hashAlgorithm);if(null===this.salt)this.salt=ye(e);else if(e!==this.salt.length)throw Error("Provided salt does not have the required length")}else if(i.nonDeterministicSignaturesViaNotation){if(0!==this.rawNotations.filter((({name:e})=>e===Mo)).length)throw Error("Unexpected existing salt notation");{const e=ye(Oo(this.hashAlgorithm));this.rawNotations.push({name:Mo,value:e,humanReadable:!1,critical:!1})}}s.push(this.writeHashedSubPackets()),this.unhashedSubpackets=[],this.signatureData=M.concat(s);const a=this.toHash(this.signatureType,t,n),o=await this.hash(this.signatureType,t,a,n);this.signedHashValue=I(v(o),0,2);const c=async()=>Pa(this.publicKeyAlgorithm,this.hashAlgorithm,e.publicParams,e.privateParams,a,await K(o));M.isStream(o)?this.params=c():(this.params=await c(),this[To]=!0)}writeHashedSubPackets(){const e=Q.signatureSubpacket,t=[];let r;if(null===this.created)throw Error("Missing signature creation time");t.push(No(e.signatureCreationTime,!0,M.writeDate(this.created))),null!==this.signatureExpirationTime&&t.push(No(e.signatureExpirationTime,!0,M.writeNumber(this.signatureExpirationTime,4))),null!==this.exportable&&t.push(No(e.exportableCertification,!0,new Uint8Array([this.exportable?1:0]))),null!==this.trustLevel&&(r=new Uint8Array([this.trustLevel,this.trustAmount]),t.push(No(e.trustSignature,!0,r))),null!==this.regularExpression&&t.push(No(e.regularExpression,!0,this.regularExpression)),null!==this.revocable&&t.push(No(e.revocable,!0,new Uint8Array([this.revocable?1:0]))),null!==this.keyExpirationTime&&t.push(No(e.keyExpirationTime,!0,M.writeNumber(this.keyExpirationTime,4))),null!==this.preferredSymmetricAlgorithms&&(r=M.stringToUint8Array(M.uint8ArrayToString(this.preferredSymmetricAlgorithms)),t.push(No(e.preferredSymmetricAlgorithms,!1,r))),null!==this.revocationKeyClass&&(r=new Uint8Array([this.revocationKeyClass,this.revocationKeyAlgorithm]),r=M.concat([r,this.revocationKeyFingerprint]),t.push(No(e.revocationKey,!1,r))),!this.issuerKeyID.isNull()&&this.issuerKeyVersion<5&&t.push(No(e.issuerKeyID,!0,this.issuerKeyID.write())),this.rawNotations.forEach((({name:n,value:i,humanReadable:s,critical:a})=>{r=[new Uint8Array([s?128:0,0,0,0])];const o=M.encodeUTF8(n);r.push(M.writeNumber(o.length,2)),r.push(M.writeNumber(i.length,2)),r.push(o),r.push(i),r=M.concat(r),t.push(No(e.notationData,a,r))})),null!==this.preferredHashAlgorithms&&(r=M.stringToUint8Array(M.uint8ArrayToString(this.preferredHashAlgorithms)),t.push(No(e.preferredHashAlgorithms,!1,r))),null!==this.preferredCompressionAlgorithms&&(r=M.stringToUint8Array(M.uint8ArrayToString(this.preferredCompressionAlgorithms)),t.push(No(e.preferredCompressionAlgorithms,!1,r))),null!==this.keyServerPreferences&&(r=M.stringToUint8Array(M.uint8ArrayToString(this.keyServerPreferences)),t.push(No(e.keyServerPreferences,!1,r))),null!==this.preferredKeyServer&&t.push(No(e.preferredKeyServer,!1,M.encodeUTF8(this.preferredKeyServer))),null!==this.isPrimaryUserID&&t.push(No(e.primaryUserID,!1,new Uint8Array([this.isPrimaryUserID?1:0]))),null!==this.policyURI&&t.push(No(e.policyURI,!1,M.encodeUTF8(this.policyURI))),null!==this.keyFlags&&(r=M.stringToUint8Array(M.uint8ArrayToString(this.keyFlags)),t.push(No(e.keyFlags,!0,r))),null!==this.signersUserID&&t.push(No(e.signersUserID,!1,M.encodeUTF8(this.signersUserID))),null!==this.reasonForRevocationFlag&&(r=M.stringToUint8Array(String.fromCharCode(this.reasonForRevocationFlag)+this.reasonForRevocationString),t.push(No(e.reasonForRevocation,!0,r))),null!==this.features&&(r=M.stringToUint8Array(M.uint8ArrayToString(this.features)),t.push(No(e.features,!1,r))),null!==this.signatureTargetPublicKeyAlgorithm&&(r=[new Uint8Array([this.signatureTargetPublicKeyAlgorithm,this.signatureTargetHashAlgorithm])],r.push(M.stringToUint8Array(this.signatureTargetHash)),r=M.concat(r),t.push(No(e.signatureTarget,!0,r))),null!==this.embeddedSignature&&t.push(No(e.embeddedSignature,!0,this.embeddedSignature.write())),null!==this.issuerFingerprint&&(r=[new Uint8Array([this.issuerKeyVersion]),this.issuerFingerprint],r=M.concat(r),t.push(No(e.issuerFingerprint,this.version>=5,r))),null!==this.preferredAEADAlgorithms&&(r=M.stringToUint8Array(M.uint8ArrayToString(this.preferredAEADAlgorithms)),t.push(No(e.preferredAEADAlgorithms,!1,r))),null!==this.preferredCipherSuites&&(r=new Uint8Array([].concat(...this.preferredCipherSuites)),t.push(No(e.preferredCipherSuites,!1,r)));const n=M.concat(t),i=M.writeNumber(n.length,6===this.version?4:2);return M.concat([i,n])}writeUnhashedSubPackets(){const e=this.unhashedSubpackets.map((({type:e,critical:t,body:r})=>No(e,t,r))),t=M.concat(e),r=M.writeNumber(t.length,6===this.version?4:2);return M.concat([r,t])}readSubPacket(e,t=!0){let r=0;const n=!!(128&e[r]),i=127&e[r];if(r++,t||(this.unhashedSubpackets.push({type:i,critical:n,body:e.subarray(r,e.length)}),Lo.has(i)))switch(i){case Q.signatureSubpacket.signatureCreationTime:this.created=M.readDate(e.subarray(r,e.length));break;case Q.signatureSubpacket.signatureExpirationTime:{const t=M.readNumber(e.subarray(r,e.length));this.signatureNeverExpires=0===t,this.signatureExpirationTime=t;break}case Q.signatureSubpacket.exportableCertification:this.exportable=1===e[r++];break;case Q.signatureSubpacket.trustSignature:this.trustLevel=e[r++],this.trustAmount=e[r++];break;case Q.signatureSubpacket.regularExpression:this.regularExpression=e[r];break;case Q.signatureSubpacket.revocable:this.revocable=1===e[r++];break;case Q.signatureSubpacket.keyExpirationTime:{const t=M.readNumber(e.subarray(r,e.length));this.keyExpirationTime=t,this.keyNeverExpires=0===t;break}case Q.signatureSubpacket.preferredSymmetricAlgorithms:this.preferredSymmetricAlgorithms=[...e.subarray(r,e.length)];break;case Q.signatureSubpacket.revocationKey:this.revocationKeyClass=e[r++],this.revocationKeyAlgorithm=e[r++],this.revocationKeyFingerprint=e.subarray(r,r+20);break;case Q.signatureSubpacket.issuerKeyID:if(4===this.version)this.issuerKeyID.read(e.subarray(r,e.length));else if(t)throw Error("Unexpected Issuer Key ID subpacket");break;case Q.signatureSubpacket.notationData:{const t=!!(128&e[r]);r+=4;const i=M.readNumber(e.subarray(r,r+2));r+=2;const s=M.readNumber(e.subarray(r,r+2));r+=2;const a=M.decodeUTF8(e.subarray(r,r+i)),o=e.subarray(r+i,r+i+s);this.rawNotations.push({name:a,humanReadable:t,value:o,critical:n}),t&&(this.notations[a]=M.decodeUTF8(o));break}case Q.signatureSubpacket.preferredHashAlgorithms:this.preferredHashAlgorithms=[...e.subarray(r,e.length)];break;case Q.signatureSubpacket.preferredCompressionAlgorithms:this.preferredCompressionAlgorithms=[...e.subarray(r,e.length)];break;case Q.signatureSubpacket.keyServerPreferences:this.keyServerPreferences=[...e.subarray(r,e.length)];break;case Q.signatureSubpacket.preferredKeyServer:this.preferredKeyServer=M.decodeUTF8(e.subarray(r,e.length));break;case Q.signatureSubpacket.primaryUserID:this.isPrimaryUserID=0!==e[r++];break;case Q.signatureSubpacket.policyURI:this.policyURI=M.decodeUTF8(e.subarray(r,e.length));break;case Q.signatureSubpacket.keyFlags:this.keyFlags=[...e.subarray(r,e.length)];break;case Q.signatureSubpacket.signersUserID:this.signersUserID=M.decodeUTF8(e.subarray(r,e.length));break;case Q.signatureSubpacket.reasonForRevocation:this.reasonForRevocationFlag=e[r++],this.reasonForRevocationString=M.decodeUTF8(e.subarray(r,e.length));break;case Q.signatureSubpacket.features:this.features=[...e.subarray(r,e.length)];break;case Q.signatureSubpacket.signatureTarget:{this.signatureTargetPublicKeyAlgorithm=e[r++],this.signatureTargetHashAlgorithm=e[r++];const t=Qe(this.signatureTargetHashAlgorithm);this.signatureTargetHash=M.uint8ArrayToString(e.subarray(r,r+t));break}case Q.signatureSubpacket.embeddedSignature:this.embeddedSignature=new Fo,this.embeddedSignature.read(e.subarray(r,e.length));break;case Q.signatureSubpacket.issuerFingerprint:this.issuerKeyVersion=e[r++],this.issuerFingerprint=e.subarray(r,e.length),this.issuerKeyVersion>=5?this.issuerKeyID.read(this.issuerFingerprint):this.issuerKeyID.read(this.issuerFingerprint.subarray(-8));break;case Q.signatureSubpacket.preferredAEADAlgorithms:this.preferredAEADAlgorithms=[...e.subarray(r,e.length)];break;case Q.signatureSubpacket.preferredCipherSuites:this.preferredCipherSuites=[];for(let t=r;t<e.length;t+=2)this.preferredCipherSuites.push([e[t],e[t+1]]);break;default:this.unknownSubpackets.push({type:i,critical:n,body:e.subarray(r,e.length)})}}readSubPackets(e,t=!0,r){const n=6===this.version?4:2,i=M.readNumber(e.subarray(0,n));let s=n;for(;s<2+i;){const n=_t(e.subarray(s,e.length));s+=n.offset,this.readSubPacket(e.subarray(s,s+n.len),t,r),s+=n.len}return s}toSign(e,t){const r=Q.signature;switch(e){case r.binary:return null!==t.text?M.encodeUTF8(t.getText(!0)):t.getBytes(!0);case r.text:{const e=t.getBytes(!0);return M.canonicalizeEOL(e)}case r.standalone:return new Uint8Array(0);case r.certGeneric:case r.certPersona:case r.certCasual:case r.certPositive:case r.certRevocation:{let e,n;if(t.userID)n=180,e=t.userID;else{if(!t.userAttribute)throw Error("Either a userID or userAttribute packet needs to be supplied for certification.");n=209,e=t.userAttribute}const i=e.write();return M.concat([this.toSign(r.key,t),new Uint8Array([n]),M.writeNumber(i.length,4),i])}case r.subkeyBinding:case r.subkeyRevocation:case r.keyBinding:return M.concat([this.toSign(r.key,t),this.toSign(r.key,{key:t.bind})]);case r.key:if(void 0===t.key)throw Error("Key packet is required for this signature.");return t.key.writeForHash(this.version);case r.keyRevocation:return this.toSign(r.key,t);case r.timestamp:return new Uint8Array(0);case r.thirdParty:throw Error("Not implemented");default:throw Error("Unknown signature type.")}}calculateTrailer(e,t){let r=0;return b(v(this.signatureData),(e=>{r+=e.length}),(()=>{const n=[];return 5!==this.version||this.signatureType!==Q.signature.binary&&this.signatureType!==Q.signature.text||(t?n.push(new Uint8Array(6)):n.push(e.writeHeader())),n.push(new Uint8Array([this.version,255])),5===this.version&&n.push(new Uint8Array(4)),n.push(M.writeNumber(r,4)),M.concat(n)}))}toHash(e,t,r=!1){const n=this.toSign(e,t);return M.concat([this.salt||new Uint8Array,n,this.signatureData,this.calculateTrailer(t,r)])}async hash(e,t,r,n=!1){if(6===this.version&&this.salt.length!==Oo(this.hashAlgorithm))throw Error("Signature salt does not have the expected length");return r||(r=this.toHash(e,t,n)),xe(this.hashAlgorithm,r)}async verify(e,t,r,n=new Date,i=!1,s=R){if(!this.issuerKeyID.equals(e.getKeyID()))throw Error("Signature was not issued by the given public key");if(this.publicKeyAlgorithm!==e.algorithm)throw Error("Public key algorithm used to sign signature does not match issuer key algorithm.");const a=t===Q.signature.binary||t===Q.signature.text;if(!(this[To]&&!a)){let n,s;if(this.hashed?s=await this.hashed:(n=this.toHash(t,r,i),s=await this.hash(t,r,n)),s=await K(s),this.signedHashValue[0]!==s[0]||this.signedHashValue[1]!==s[1])throw Error("Signed digest did not match");this.params=await this.params;const a=this.publicKeyAlgorithm===Q.publicKey.hmac?e.privateParams:null;if(this[To]=await Ua(this.publicKeyAlgorithm,this.hashAlgorithm,this.params,e.publicParams,a,n,s),!this[To])throw Error("Signature verification failed")}const o=M.normalizeDate(n);if(o&&this.created>o)throw Error("Signature creation time is in the future");if(o&&o>=this.getExpirationTime())throw Error("Signature is expired");if(s.rejectHashAlgorithms.has(this.hashAlgorithm))throw Error("Insecure hash algorithm: "+Q.read(Q.hash,this.hashAlgorithm).toUpperCase());if(s.rejectMessageHashAlgorithms.has(this.hashAlgorithm)&&[Q.signature.binary,Q.signature.text].includes(this.signatureType))throw Error("Insecure message hash algorithm: "+Q.read(Q.hash,this.hashAlgorithm).toUpperCase());if(this.unknownSubpackets.forEach((({type:e,critical:t})=>{if(t)throw Error("Unknown critical signature subpacket type "+e)})),this.rawNotations.forEach((({name:e,critical:t})=>{if(t&&s.knownNotations.indexOf(e)<0)throw Error("Unknown critical notation: "+e)})),null!==this.revocationKeyClass)throw Error("This key is intended to be revoked with an authorized key, which OpenPGP.js does not support.")}isExpired(e=new Date){const t=M.normalizeDate(e);return null!==t&&!(this.created<=t&&t<this.getExpirationTime())}getExpirationTime(){return this.signatureNeverExpires?1/0:new Date(this.created.getTime()+1e3*this.signatureExpirationTime)}}function No(e,t,r){const n=[];return n.push(Ht(r.length+1)),n.push(new Uint8Array([(t?128:0)|e])),n.push(r),M.concat(n)}function Oo(e){switch(e){case Q.hash.sha256:return 16;case Q.hash.sha384:return 24;case Q.hash.sha512:return 32;case Q.hash.sha224:case Q.hash.sha3_256:return 16;case Q.hash.sha3_512:return 32;default:throw Error("Unsupported hash function")}}class _o{static get tag(){return Q.packet.onePassSignature}static fromSignaturePacket(e,t){const r=new _o;return r.version=6===e.version?6:3,r.signatureType=e.signatureType,r.hashAlgorithm=e.hashAlgorithm,r.publicKeyAlgorithm=e.publicKeyAlgorithm,r.issuerKeyID=e.issuerKeyID,r.salt=e.salt,r.issuerFingerprint=e.issuerFingerprint,r.flags=t?1:0,r}constructor(){this.version=null,this.signatureType=null,this.hashAlgorithm=null,this.publicKeyAlgorithm=null,this.salt=null,this.issuerKeyID=null,this.issuerFingerprint=null,this.flags=null}read(e){let t=0;if(this.version=e[t++],3!==this.version&&6!==this.version)throw new Yt(`Version ${this.version} of the one-pass signature packet is unsupported.`);if(this.signatureType=e[t++],this.hashAlgorithm=e[t++],this.publicKeyAlgorithm=e[t++],6===this.version){const r=e[t++];this.salt=e.subarray(t,t+r),t+=r,this.issuerFingerprint=e.subarray(t,t+32),t+=32,this.issuerKeyID=new Ro,this.issuerKeyID.read(this.issuerFingerprint)}else this.issuerKeyID=new Ro,this.issuerKeyID.read(e.subarray(t,t+8)),t+=8;return this.flags=e[t++],this}write(){const e=[new Uint8Array([this.version,this.signatureType,this.hashAlgorithm,this.publicKeyAlgorithm])];return 6===this.version?e.push(new Uint8Array([this.salt.length]),this.salt,this.issuerFingerprint):e.push(this.issuerKeyID.write()),e.push(new Uint8Array([this.flags])),M.concatUint8Array(e)}calculateTrailer(...e){return U((async()=>Fo.prototype.calculateTrailer.apply(await this.correspondingSig,e)))}async verify(){const e=await this.correspondingSig;if(!e||e.constructor.tag!==Q.packet.signature)throw Error("Corresponding signature packet missing");if(e.signatureType!==this.signatureType||e.hashAlgorithm!==this.hashAlgorithm||e.publicKeyAlgorithm!==this.publicKeyAlgorithm||!e.issuerKeyID.equals(this.issuerKeyID)||3===this.version&&6===e.version||6===this.version&&6!==e.version||6===this.version&&!M.equalsUint8Array(e.issuerFingerprint,this.issuerFingerprint)||6===this.version&&!M.equalsUint8Array(e.salt,this.salt))throw Error("Corresponding signature packet does not match one-pass signature packet");return e.hashed=this.hashed,e.verify.apply(e,arguments)}}_o.prototype.hash=Fo.prototype.hash,_o.prototype.toHash=Fo.prototype.toHash,_o.prototype.toSign=Fo.prototype.toSign;class Ho extends Error{constructor(...e){super(...e),Error.captureStackTrace&&Error.captureStackTrace(this,Ho),this.name="GrammarError"}}const zo=(e,t)=>{const r=e.filter((e=>e!==Q.packet.marker&&e!==Q.packet.padding&&!(e=>{try{return Q.read(Q.packet,e),!1}catch(e){return!0}})(e)));return 1===(n=r).length&&n[0]===Q.packet.literalData||(e=>1===e.length&&e[0]===Q.packet.compressedData)(r)||(e=>{const t=(e,t)=>e.every((e=>new Set([Q.packet.publicKeyEncryptedSessionKey,Q.packet.symEncryptedSessionKey]).has(e))),r=e.findIndex((e=>new Set([Q.packet.aeadEncryptedData,Q.packet.symmetricallyEncryptedData,Q.packet.symEncryptedIntegrityProtectedData]).has(e)));return r<0?t(e):r===e.length-1&&t(e.slice(0,r))})(r)||((e,t)=>{if(0===e.findIndex((e=>e===Q.packet.signature)))return zo(e.slice(1),t);if(0===e.findIndex((e=>e===Q.packet.onePassSignature))){const r=M.findLastIndex(e,(e=>e===Q.packet.signature));return!(r!==e.length-1&&!t)&&zo(e.slice(1,r<0?void 0:r),t)}return!1})(r,t);var n},Go=({delayReporting:e})=>{let t=!1;return(r,n,i)=>{if(e&&n)return null;if(!zo(r,n)){const e=new Ho(`Data does not respect OpenPGP grammar [${r}]`);if(t||(i.pluggableGrammarErrorReporter?.(e.message),M.printDebugError(e),t=!0),i.enforceGrammar)throw e;return!0}return!0}};function qo(e,t){if(!t[e]){let t;try{t=Q.read(Q.packet,e)}catch(t){throw new Zt("Unknown packet type with tag: "+e)}throw Error("Packet not allowed in this context: "+t)}return new t[e]}class jo extends Array{static async fromBinary(e,t,r=R,n=null){const i=new jo;return await i.read(e,t,r,n),i}async read(e,t,r=R,n=null){r.additionalAllowedPackets.length&&(t={...t,...M.constructAllowedPackets(r.additionalAllowedPackets)}),this.stream=k(e,(async(e,i)=>{const s=D(i),a=[];try{for(;;){await s.ready;if(await Vt(e,(async e=>{try{if(e.tag===Q.packet.marker||e.tag===Q.packet.trust||e.tag===Q.packet.padding)return;const i=qo(e.tag,t);i.packets=new jo,i.fromStream=M.isStream(e.packet),await i.read(e.packet,r),await s.write(i),a.push(e.tag),n?.(a,!0,r)}catch(t){if(t instanceof Zt){if(!(e.tag<=39))return;await s.abort(t)}const i=!r.ignoreUnsupportedPackets&&t instanceof Yt,o=!(r.ignoreMalformedPackets||t instanceof Yt);if(i||o||t instanceof Ho||jt(e.tag))await s.abort(t);else{const t=new Wt(e.tag,e.packet);await s.write(t),a.push(e.tag),n?.(a,!0,r)}M.printDebugError(t)}})))return n?.(a,!1,r),await s.ready,void await s.close()}}catch(e){await s.abort(e)}}));const i=P(this.stream);for(;;){const{done:e,value:t}=await i.read();if(e?this.stream=null:this.push(t),e||jt(t.constructor.tag))break}i.releaseLock()}write(){const e=[];for(let t=0;t<this.length;t++){const r=this[t]instanceof Wt?this[t].tag:this[t].constructor.tag,n=this[t].write();if(M.isStream(n)&&jt(this[t].constructor.tag)){let t=[],i=0;const s=512;e.push(Gt(r)),e.push(b(n,(e=>{if(t.push(e),i+=e.length,i>=s){const e=Math.min(Math.log(i)/Math.LN2|0,30),r=2**e,n=M.concat([zt(e)].concat(t));return t=[n.subarray(1+r)],i=t[0].length,n.subarray(0,1+r)}}),(()=>M.concat([Ht(i)].concat(t)))))}else{if(M.isStream(n)){let t=0;e.push(b(v(n),(e=>{t+=e.length}),(()=>qt(r,t))))}else e.push(qt(r,n.length));e.push(n)}}return M.concat(e)}filterByTag(...e){const t=new jo,r=e=>t=>e===t;for(let n=0;n<this.length;n++)e.some(r(this[n].constructor.tag))&&t.push(this[n]);return t}findPacket(e){return this.find((t=>t.constructor.tag===e))}indexOfTag(...e){const t=[],r=this,n=e=>t=>e===t;for(let i=0;i<this.length;i++)e.some(n(r[i].constructor.tag))&&t.push(i);return t}}const Vo=/*#__PURE__*/M.constructAllowedPackets([Qo,_o,Fo]);class Yo{static get tag(){return Q.packet.compressedData}constructor(e=R){this.packets=null,this.algorithm=e.preferredCompressionAlgorithm,this.compressed=null}async read(e,t=R){await E(e,(async e=>{this.algorithm=await e.readByte(),this.compressed=e.remainder(),await this.decompress(t)}))}write(){return null===this.compressed&&this.compress(),M.concat([new Uint8Array([this.algorithm]),this.compressed])}async decompress(e=R){const t=Q.read(Q.compression,this.algorithm),r=$o[t];if(!r)throw Error(t+" decompression not supported");this.packets=await jo.fromBinary(await r(this.compressed),Vo,e,Go({enforceDelay:!1}))}compress(){const e=Q.read(Q.compression,this.algorithm),t=Xo[e];if(!t)throw Error(e+" compression not supported");this.compressed=t(this.packets.write())}}function Zo(e,t){return r=>{if(!M.isStream(r)||a(r))return U((()=>K(r).then((e=>new Promise(((r,n)=>{const i=new t;i.ondata=e=>{r(e)};try{i.push(e,!0)}catch(e){n(e)}}))))));if(e)try{const t=e();return r.pipeThrough(t)}catch(e){if("TypeError"!==e.name)throw e}const n=r.getReader(),i=new t;return new ReadableStream({async start(e){for(i.ondata=async(t,r)=>{e.enqueue(t),r&&e.close()};;){const{done:e,value:t}=await n.read();if(e)return void i.push(new Uint8Array,!0);t.length&&i.push(t)}}})}}function Wo(){return async function(e){const{decode:t}=await Promise.resolve().then((function(){return Fp}));return U((async()=>t(await K(e))))}}const Jo=e=>({compressor:"undefined"!=typeof CompressionStream&&(()=>new CompressionStream(e)),decompressor:"undefined"!=typeof DecompressionStream&&(()=>new DecompressionStream(e))}),Xo={zip:/*#__PURE__*/Zo(Jo("deflate-raw").compressor,Co),zlib:/*#__PURE__*/Zo(Jo("deflate").compressor,Po)},$o={uncompressed:e=>e,zip:/*#__PURE__*/Zo(Jo("deflate-raw").decompressor,Uo),zlib:/*#__PURE__*/Zo(Jo("deflate").decompressor,Do),bzip2:/*#__PURE__*/Wo()},ec=/*#__PURE__*/M.constructAllowedPackets([Qo,Yo,_o,Fo]);class tc{static get tag(){return Q.packet.symEncryptedIntegrityProtectedData}static fromObject({version:e,aeadAlgorithm:t}){if(1!==e&&2!==e)throw Error("Unsupported SEIPD version");const r=new tc;return r.version=e,2===e&&(r.aeadAlgorithm=t),r}constructor(){this.version=null,this.cipherAlgorithm=null,this.aeadAlgorithm=null,this.chunkSizeByte=null,this.salt=null,this.encrypted=null,this.packets=null}async read(e){await E(e,(async e=>{if(this.version=await e.readByte(),1!==this.version&&2!==this.version)throw new Yt(`Version ${this.version} of the SEIP packet is unsupported.`);2===this.version&&(this.cipherAlgorithm=await e.readByte(),this.aeadAlgorithm=await e.readByte(),this.chunkSizeByte=await e.readByte(),this.salt=await e.readBytes(32)),this.encrypted=e.remainder()}))}write(){return 2===this.version?M.concat([new Uint8Array([this.version,this.cipherAlgorithm,this.aeadAlgorithm,this.chunkSizeByte]),this.salt,this.encrypted]):M.concat([new Uint8Array([this.version]),this.encrypted])}async encrypt(e,t,r=R){const{blockSize:n,keySize:i}=ri(e);if(t.length!==i)throw Error("Unexpected session key size");let s=this.packets.write();if(a(s)&&(s=await K(s)),2===this.version)this.cipherAlgorithm=e,this.salt=ye(32),this.chunkSizeByte=r.aeadChunkSizeByte,this.encrypted=await rc(this,"encrypt",t,s);else{const r=await Ds(e),i=new Uint8Array([211,20]),a=M.concat([r,s,i]),o=await xe(Q.hash.sha1,B(a)),c=M.concat([a,o]);this.encrypted=await xs(e,t,c,new Uint8Array(n))}return!0}async decrypt(e,t,r=R){if(t.length!==ri(e).keySize)throw Error("Unexpected session key size");let n,i,s=v(this.encrypted);if(a(s)&&(s=await K(s)),2===this.version){if(this.cipherAlgorithm!==e)throw Error("Unexpected session key algorithm");n=await rc(this,"decrypt",t,s),i=Go({delayReporting:!1})}else{const{blockSize:a}=ri(e),o=await Qs(e,t,s,new Uint8Array(a)),c=M.isStream(s)&&r.allowUnauthenticatedStream;i=Go({delayReporting:c});const u=I(B(o),-20),h=I(o,0,-20),l=Promise.all([K(await xe(Q.hash.sha1,B(h))),K(u)]).then((([e,t])=>{if(!M.equalsUint8Array(e,t))throw Error("Modification detected.");return new Uint8Array})),y=I(h,a+2);n=I(y,0,-2),n=d([n,U((()=>l))]),c||(n=await K(n))}return this.packets=await jo.fromBinary(n,ec,r,i),!0}}async function rc(e,t,r,n){const i=e instanceof tc&&2===e.version,s=!i&&e.constructor.tag===Q.packet.aeadEncryptedData;if(!i&&!s)throw Error("Unexpected packet type");const a=wa(e.aeadAlgorithm,s),o="decrypt"===t?a.tagLength:0,c="encrypt"===t?a.tagLength:0,u=2**(e.chunkSizeByte+6)+o,h=s?8:0,l=new ArrayBuffer(13+h),y=new Uint8Array(l,0,5+h),f=new Uint8Array(l),g=new DataView(l),p=new Uint8Array(l,5,8);y.set([192|e.constructor.tag,e.version,e.cipherAlgorithm,e.aeadAlgorithm,e.chunkSizeByte],0);let d,w,m=0,b=Promise.resolve(),E=0,v=0;if(i){const{keySize:t}=ri(e.cipherAlgorithm),{ivLength:n}=a,i=new Uint8Array(l,0,5),s=await oi(Q.hash.sha256,r,e.salt,i,t+n);r=s.subarray(0,t),d=s.subarray(t),d.fill(0,d.length-8),w=new DataView(d.buffer,d.byteOffset,d.byteLength)}else d=e.iv;const B=await a(e.cipherAlgorithm,r);return k(n,(async(r,n)=>{if("array"!==M.isStream(r)){const t=new TransformStream({},{highWaterMark:M.getHardwareConcurrency()*2**(e.chunkSizeByte+6),size:e=>e.length});A(t.readable,n),n=t.writable}const s=P(r),a=D(n);try{for(;;){let e=await s.readBytes(u+o)||new Uint8Array;const r=e.subarray(e.length-o);let n,l,A;if(e=e.subarray(0,e.length-o),i)A=d;else{A=d.slice();for(let e=0;e<8;e++)A[d.length-8+e]^=p[e]}if(!m||e.length?(s.unshift(r),n=B[t](e,A,y),n.catch((()=>{})),v+=e.length-o+c):(g.setInt32(5+h+4,E),n=B[t](r,A,f),n.catch((()=>{})),v+=c,l=!0),E+=e.length-o,b=b.then((()=>n)).then((async e=>{await a.ready,await a.write(e),v-=e.length})).catch((e=>a.abort(e))),(l||v>a.desiredSize)&&await b,l){await a.close();break}i?w.setInt32(d.length-4,++m):g.setInt32(9,++m)}}catch(e){await a.ready.catch((()=>{})),await a.abort(e)}}))}const nc=/*#__PURE__*/M.constructAllowedPackets([Qo,Yo,_o,Fo]);class ic{static get tag(){return Q.packet.aeadEncryptedData}constructor(){this.version=1,this.cipherAlgorithm=null,this.aeadAlgorithm=Q.aead.eax,this.chunkSizeByte=null,this.iv=null,this.encrypted=null,this.packets=null}async read(e){await E(e,(async e=>{const t=await e.readByte();if(1!==t)throw new Yt(`Version ${t} of the AEAD-encrypted data packet is not supported.`);this.cipherAlgorithm=await e.readByte(),this.aeadAlgorithm=await e.readByte(),this.chunkSizeByte=await e.readByte();const r=wa(this.aeadAlgorithm,!0);this.iv=await e.readBytes(r.ivLength),this.encrypted=e.remainder()}))}write(){return M.concat([new Uint8Array([this.version,this.cipherAlgorithm,this.aeadAlgorithm,this.chunkSizeByte]),this.iv,this.encrypted])}async decrypt(e,t,r=R){this.packets=await jo.fromBinary(await rc(this,"decrypt",t,v(this.encrypted)),nc,r,Go({enforceDelay:!1}))}async encrypt(e,t,r=R){this.cipherAlgorithm=e;const{ivLength:n}=wa(this.aeadAlgorithm,!0);this.iv=ye(n),this.chunkSizeByte=r.aeadChunkSizeByte;const i=this.packets.write();this.encrypted=await rc(this,"encrypt",t,i)}}const sc=new Set([Q.publicKey.x25519,Q.publicKey.x448,Q.publicKey.pqc_mlkem_x25519]);class ac{static get tag(){return Q.packet.publicKeyEncryptedSessionKey}constructor(){this.version=null,this.publicKeyID=new Ro,this.publicKeyVersion=null,this.publicKeyFingerprint=null,this.publicKeyAlgorithm=null,this.sessionKey=null,this.sessionKeyAlgorithm=null,this.encrypted={}}static fromObject({version:e,encryptionKeyPacket:t,anonymousRecipient:r,sessionKey:n,sessionKeyAlgorithm:i}){const s=new ac;if(3!==e&&6!==e)throw Error("Unsupported PKESK version");return s.version=e,6===e&&(s.publicKeyVersion=r?null:t.version,s.publicKeyFingerprint=r?null:t.getFingerprintBytes()),s.publicKeyID=r?Ro.wildcard():t.getKeyID(),s.publicKeyAlgorithm=t.algorithm,s.sessionKey=n,s.sessionKeyAlgorithm=i,s}read(e){let t=0;if(this.version=e[t++],3!==this.version&&6!==this.version)throw new Yt(`Version ${this.version} of the PKESK packet is unsupported.`);if(6===this.version){const r=e[t++];if(r){this.publicKeyVersion=e[t++];const n=r-1;this.publicKeyFingerprint=e.subarray(t,t+n),t+=n,this.publicKeyVersion>=5?this.publicKeyID.read(this.publicKeyFingerprint):this.publicKeyID.read(this.publicKeyFingerprint.subarray(-8))}else this.publicKeyID=Ro.wildcard()}else t+=this.publicKeyID.read(e.subarray(t,t+8));if(this.publicKeyAlgorithm=e[t++],this.encrypted=function(e,t){let r=0;switch(e){case Q.publicKey.rsaEncrypt:case Q.publicKey.rsaEncryptSign:return{c:M.readMPI(t.subarray(r))};case Q.publicKey.elgamal:{const e=M.readMPI(t.subarray(r));return r+=e.length+2,{c1:e,c2:M.readMPI(t.subarray(r))}}case Q.publicKey.ecdh:{const e=M.readMPI(t.subarray(r));r+=e.length+2;const n=new ms;return n.read(t.subarray(r)),{V:e,C:n}}case Q.publicKey.x25519:case Q.publicKey.x448:{const n=Ca(e),i=M.readExactSubarray(t,r,r+n);r+=i.length;const s=new Is;return s.read(t.subarray(r)),{ephemeralPublicKey:i,C:s}}case Q.publicKey.aead:{const e=new vs;r+=e.read(t.subarray(r));const{ivLength:n}=wa(e.getValue()),i=t.subarray(r,r+n);r+=n;const s=new bs;return r+=s.read(t.subarray(r)),{aeadMode:e,iv:i,c:s}}case Q.publicKey.pqc_mlkem_x25519:{const e=M.readExactSubarray(t,r,r+Ca(Q.publicKey.x25519));r+=e.length;const n=M.readExactSubarray(t,r,r+1088);r+=n.length;const i=new Is;return i.read(t.subarray(r)),{eccCipherText:e,mlkemCipherText:n,C:i}}default:throw new Yt("Unknown public key encryption algorithm.")}}(this.publicKeyAlgorithm,e.subarray(t)),sc.has(this.publicKeyAlgorithm))if(3===this.version)this.sessionKeyAlgorithm=Q.write(Q.symmetric,this.encrypted.C.algorithm);else if(null!==this.encrypted.C.algorithm)throw Error("Unexpected cleartext symmetric algorithm")}write(){const e=[new Uint8Array([this.version])];return 6===this.version?null!==this.publicKeyFingerprint?(e.push(new Uint8Array([this.publicKeyFingerprint.length+1,this.publicKeyVersion])),e.push(this.publicKeyFingerprint)):e.push(new Uint8Array([0])):e.push(this.publicKeyID.write()),e.push(new Uint8Array([this.publicKeyAlgorithm]),Ea(this.publicKeyAlgorithm,this.encrypted)),M.concatUint8Array(e)}async encrypt(e){const t=Q.write(Q.publicKey,this.publicKeyAlgorithm),r=3===this.version?this.sessionKeyAlgorithm:null,n=5===e.version?e.getFingerprintBytes().subarray(0,20):e.getFingerprintBytes(),i=oc(this.version,t,r,this.sessionKey),s=t===Q.publicKey.aead?e.privateParams:null;this.encrypted=await ma(t,r,e.publicParams,s,i,n)}async decrypt(e,t){if(this.publicKeyAlgorithm!==e.algorithm)throw Error("Decryption error");const r=t?oc(this.version,this.publicKeyAlgorithm,t.sessionKeyAlgorithm,t.sessionKey):null,n=5===e.version?e.getFingerprintBytes().subarray(0,20):e.getFingerprintBytes(),i=await ba(this.publicKeyAlgorithm,e.publicParams,e.privateParams,this.encrypted,n,r),{sessionKey:s,sessionKeyAlgorithm:a}=function(e,t,r,n){switch(t){case Q.publicKey.rsaEncrypt:case Q.publicKey.rsaEncryptSign:case Q.publicKey.elgamal:case Q.publicKey.ecdh:case Q.publicKey.aead:{const t=r.subarray(0,r.length-2),i=r.subarray(r.length-2),s=M.writeChecksum(t.subarray(t.length%8)),a=s[0]===i[0]&s[1]===i[1],o=6===e?{sessionKeyAlgorithm:null,sessionKey:t}:{sessionKeyAlgorithm:t[0],sessionKey:t.subarray(1)};if(n){const t=a&o.sessionKeyAlgorithm===n.sessionKeyAlgorithm&o.sessionKey.length===n.sessionKey.length;return{sessionKey:M.selectUint8Array(t,o.sessionKey,n.sessionKey),sessionKeyAlgorithm:6===e?null:M.selectUint8(t,o.sessionKeyAlgorithm,n.sessionKeyAlgorithm)}}if(a&&(6===e||Q.read(Q.symmetric,o.sessionKeyAlgorithm)))return o;throw Error("Decryption error")}case Q.publicKey.x25519:case Q.publicKey.x448:case Q.publicKey.pqc_mlkem_x25519:return{sessionKeyAlgorithm:null,sessionKey:r};default:throw Error("Unsupported public key algorithm")}}(this.version,this.publicKeyAlgorithm,i,t);if(3===this.version){const e=!sc.has(this.publicKeyAlgorithm);if(this.sessionKeyAlgorithm=e?a:this.sessionKeyAlgorithm,s.length!==ri(this.sessionKeyAlgorithm).keySize)throw Error("Unexpected session key size")}this.sessionKey=s}}function oc(e,t,r,n){switch(t){case Q.publicKey.rsaEncrypt:case Q.publicKey.rsaEncryptSign:case Q.publicKey.elgamal:case Q.publicKey.ecdh:case Q.publicKey.aead:return M.concatUint8Array([new Uint8Array(6===e?[]:[r]),n,M.writeChecksum(n.subarray(n.length%8))]);case Q.publicKey.x25519:case Q.publicKey.x448:case Q.publicKey.pqc_mlkem_x25519:return n;default:throw Error("Unsupported public key algorithm")}}class cc{static get tag(){return Q.packet.symEncryptedSessionKey}constructor(e=R){this.version=e.aeadProtect?6:4,this.sessionKey=null,this.sessionKeyEncryptionAlgorithm=null,this.sessionKeyAlgorithm=null,this.aeadAlgorithm=Q.write(Q.aead,e.preferredAEADAlgorithm),this.encrypted=null,this.s2k=null,this.iv=null}read(e){let t=0;if(this.version=e[t++],4!==this.version&&5!==this.version&&6!==this.version)throw new Yt(`Version ${this.version} of the SKESK packet is unsupported.`);6===this.version&&t++;const r=e[t++];this.version>=5&&(this.aeadAlgorithm=e[t++],6===this.version&&t++);const n=e[t++];if(this.s2k=Fa(n),t+=this.s2k.read(e.subarray(t,e.length)),this.version>=5){const r=wa(this.aeadAlgorithm,!0);this.iv=e.subarray(t,t+=r.ivLength)}this.version>=5||t<e.length?(this.encrypted=e.subarray(t,e.length),this.sessionKeyEncryptionAlgorithm=r):this.sessionKeyAlgorithm=r}write(){const e=null===this.encrypted?this.sessionKeyAlgorithm:this.sessionKeyEncryptionAlgorithm;let t;const r=this.s2k.write();if(6===this.version){const n=r.length,i=3+n+this.iv.length;t=M.concatUint8Array([new Uint8Array([this.version,i,e,this.aeadAlgorithm,n]),r,this.iv,this.encrypted])}else 5===this.version?t=M.concatUint8Array([new Uint8Array([this.version,e,this.aeadAlgorithm]),r,this.iv,this.encrypted]):(t=M.concatUint8Array([new Uint8Array([this.version,e]),r]),null!==this.encrypted&&(t=M.concatUint8Array([t,this.encrypted])));return t}async decrypt(e){const t=null!==this.sessionKeyEncryptionAlgorithm?this.sessionKeyEncryptionAlgorithm:this.sessionKeyAlgorithm,{blockSize:r,keySize:n}=ri(t),i=await this.s2k.produceKey(e,n);if(this.version>=5){const e=wa(this.aeadAlgorithm,!0),r=new Uint8Array([192|cc.tag,this.version,this.sessionKeyEncryptionAlgorithm,this.aeadAlgorithm]),s=6===this.version?await oi(Q.hash.sha256,i,new Uint8Array,r,n):i,a=await e(t,s);this.sessionKey=await a.decrypt(this.encrypted,this.iv,r)}else if(null!==this.encrypted){const e=await Qs(t,i,this.encrypted,new Uint8Array(r));if(this.sessionKeyAlgorithm=Q.write(Q.symmetric,e[0]),this.sessionKey=e.subarray(1,e.length),this.sessionKey.length!==ri(this.sessionKeyAlgorithm).keySize)throw Error("Unexpected session key size")}else this.sessionKey=i}async encrypt(e,t=R){const r=null!==this.sessionKeyEncryptionAlgorithm?this.sessionKeyEncryptionAlgorithm:this.sessionKeyAlgorithm;this.sessionKeyEncryptionAlgorithm=r,this.s2k=Na(t),this.s2k.generateSalt();const{blockSize:n,keySize:i}=ri(r),s=await this.s2k.produceKey(e,i);if(null===this.sessionKey&&(this.sessionKey=Ia(this.sessionKeyAlgorithm)),this.version>=5){const e=wa(this.aeadAlgorithm);this.iv=ye(e.ivLength);const t=new Uint8Array([192|cc.tag,this.version,this.sessionKeyEncryptionAlgorithm,this.aeadAlgorithm]),n=6===this.version?await oi(Q.hash.sha256,s,new Uint8Array,t,i):s,a=await e(r,n);this.encrypted=await a.encrypt(this.sessionKey,this.iv,t)}else{const e=M.concatUint8Array([new Uint8Array([this.sessionKeyAlgorithm]),this.sessionKey]);this.encrypted=await xs(r,s,e,new Uint8Array(n))}}}class uc{static get tag(){return Q.packet.publicKey}constructor(e=new Date,t=R){this.version=t.v6Keys?6:4,this.created=M.normalizeDate(e),this.algorithm=null,this.publicParams=null,this.expirationTimeV3=0,this.fingerprint=null,this.keyID=null}static fromSecretKeyPacket(e){const t=new uc,{version:r,created:n,algorithm:i,publicParams:s,keyID:a,fingerprint:o}=e;return t.version=r,t.created=n,t.algorithm=i,t.publicParams=s,t.keyID=a,t.fingerprint=o,t}async read(e,t=R){let r=0;if(this.version=e[r++],5===this.version&&!t.enableParsingV5Entities)throw new Yt("Support for parsing v5 entities is disabled; turn on `config.enableParsingV5Entities` if needed");if(4===this.version||5===this.version||6===this.version){this.created=M.readDate(e.subarray(r,r+4)),r+=4,this.algorithm=e[r++],this.version>=5&&(r+=4);const{read:t,publicParams:n}=function(e,t){let r=0;switch(e){case Q.publicKey.rsaEncrypt:case Q.publicKey.rsaEncryptSign:case Q.publicKey.rsaSign:{const e=M.readMPI(t.subarray(r));r+=e.length+2;const n=M.readMPI(t.subarray(r));return r+=n.length+2,{read:r,publicParams:{n:e,e:n}}}case Q.publicKey.dsa:{const e=M.readMPI(t.subarray(r));r+=e.length+2;const n=M.readMPI(t.subarray(r));r+=n.length+2;const i=M.readMPI(t.subarray(r));r+=i.length+2;const s=M.readMPI(t.subarray(r));return r+=s.length+2,{read:r,publicParams:{p:e,q:n,g:i,y:s}}}case Q.publicKey.elgamal:{const e=M.readMPI(t.subarray(r));r+=e.length+2;const n=M.readMPI(t.subarray(r));r+=n.length+2;const i=M.readMPI(t.subarray(r));return r+=i.length+2,{read:r,publicParams:{p:e,g:n,y:i}}}case Q.publicKey.ecdsa:{const e=new Ot;r+=e.read(t),Ka(e);const n=M.readMPI(t.subarray(r));return r+=n.length+2,{read:r,publicParams:{oid:e,Q:n}}}case Q.publicKey.eddsaLegacy:{const e=new Ot;if(r+=e.read(t),Ka(e),e.getName()!==Q.curve.ed25519Legacy)throw Error("Unexpected OID for eddsaLegacy");let n=M.readMPI(t.subarray(r));return r+=n.length+2,n=M.leftPad(n,33),{read:r,publicParams:{oid:e,Q:n}}}case Q.publicKey.ecdh:{const e=new Ot;r+=e.read(t),Ka(e);const n=M.readMPI(t.subarray(r));r+=n.length+2;const i=new ks;return r+=i.read(t.subarray(r)),{read:r,publicParams:{oid:e,Q:n,kdfParams:i}}}case Q.publicKey.ed25519:case Q.publicKey.ed448:case Q.publicKey.x25519:case Q.publicKey.x448:{const n=M.readExactSubarray(t,r,r+Ca(e));return r+=n.length,{read:r,publicParams:{A:n}}}case Q.publicKey.hmac:case Q.publicKey.aead:{const e=new Bs;r+=e.read(t);const n=Qe(Q.hash.sha256),i=t.subarray(r,r+n);return r+=n,{read:r,publicParams:{cipher:e,digest:i}}}case Q.publicKey.pqc_mlkem_x25519:{const e=M.readExactSubarray(t,r,r+Ca(Q.publicKey.x25519));r+=e.length;const n=M.readExactSubarray(t,r,r+1184);return r+=n.length,{read:r,publicParams:{eccPublicKey:e,mlkemPublicKey:n}}}case Q.publicKey.pqc_mldsa_ed25519:{const e=M.readExactSubarray(t,r,r+Ca(Q.publicKey.ed25519));r+=e.length;const n=M.readExactSubarray(t,r,r+1952);return r+=n.length,{read:r,publicParams:{eccPublicKey:e,mldsaPublicKey:n}}}default:throw new Yt("Unknown public key encryption algorithm.")}}(this.algorithm,e.subarray(r));if(6===this.version&&n.oid&&(n.oid.getName()===Q.curve.curve25519Legacy||n.oid.getName()===Q.curve.ed25519Legacy))throw Error("Legacy curve25519 cannot be used with v6 keys");if(6!==this.version&&(this.algorithm===Q.publicKey.pqc_mldsa_ed25519||this.algorithm===Q.publicKey.pqc_mlkem_x25519))throw Error("Unexpected key version: ML-DSA and ML-KEM algorithms can only be used with v6 keys");return this.publicParams=n,r+=t,await this.computeFingerprintAndKeyID(),r}throw new Yt(`Version ${this.version} of the key packet is unsupported.`)}write(){const e=[];e.push(new Uint8Array([this.version])),e.push(M.writeDate(this.created)),e.push(new Uint8Array([this.algorithm]));const t=Ea(this.algorithm,this.publicParams);return this.version>=5&&e.push(M.writeNumber(t.length,4)),e.push(t),M.concatUint8Array(e)}writeForHash(e){const t=this.writePublicKey(),r=149+e,n=e>=5?4:2;return M.concatUint8Array([new Uint8Array([r]),M.writeNumber(t.length,n),t])}isDecrypted(){return null}getCreationTime(){return this.created}getKeyID(){return this.keyID}async computeFingerprintAndKeyID(){if(await this.computeFingerprint(),this.keyID=new Ro,this.version>=5)this.keyID.read(this.fingerprint.subarray(0,8));else{if(4!==this.version)throw Error("Unsupported key version");this.keyID.read(this.fingerprint.subarray(12,20))}}async computeFingerprint(){const e=this.writeForHash(this.version);if(this.version>=5)this.fingerprint=await xe(Q.hash.sha256,e);else{if(4!==this.version)throw Error("Unsupported key version");this.fingerprint=await xe(Q.hash.sha1,e)}}getFingerprintBytes(){return this.fingerprint}getFingerprint(){return M.uint8ArrayToHex(this.getFingerprintBytes())}hasSameFingerprintAs(e){return this.version===e.version&&M.equalsUint8Array(this.writePublicKey(),e.writePublicKey())}getAlgorithmInfo(){const e={};e.algorithm=Q.read(Q.publicKey,this.algorithm);const t=this.publicParams.n||this.publicParams.p;return t?e.bits=M.uint8ArrayBitLength(t):this.publicParams.oid?e.curve=this.publicParams.oid.getName():this.publicParams.cipher&&(e.symmetric=this.publicParams.cipher.getName()),e}}uc.prototype.readPublicKey=uc.prototype.read,uc.prototype.writePublicKey=uc.prototype.write;const hc=/*#__PURE__*/M.constructAllowedPackets([Qo,Yo,_o,Fo]);class lc{static get tag(){return Q.packet.symmetricallyEncryptedData}constructor(){this.encrypted=null,this.packets=null}read(e){this.encrypted=e}write(){return this.encrypted}async decrypt(e,t,r=R){if(!r.allowUnauthenticatedMessages)throw Error("Message is not authenticated.");const{blockSize:n}=ri(e),i=await K(v(this.encrypted)),s=await Qs(e,t,i.subarray(n+2),i.subarray(2,n+2));this.packets=await jo.fromBinary(s,hc,r)}async encrypt(e,t,r=R){const n=this.packets.write(),{blockSize:i}=ri(e),s=await Ds(e),a=await xs(e,t,s,new Uint8Array(i)),o=await xs(e,t,n,a.subarray(2));this.encrypted=M.concat([a,o])}}class yc{static get tag(){return Q.packet.marker}read(e){return 80===e[0]&&71===e[1]&&80===e[2]}write(){return new Uint8Array([80,71,80])}}class fc extends uc{static get tag(){return Q.packet.publicSubkey}constructor(e,t){super(e,t)}static fromSecretSubkeyPacket(e){const t=new fc,{version:r,created:n,algorithm:i,publicParams:s,keyID:a,fingerprint:o}=e;return t.version=r,t.created=n,t.algorithm=i,t.publicParams=s,t.keyID=a,t.fingerprint=o,t}}class gc{static get tag(){return Q.packet.userAttribute}constructor(){this.attributes=[]}read(e){let t=0;for(;t<e.length;){const r=_t(e.subarray(t,e.length));t+=r.offset,this.attributes.push(M.uint8ArrayToString(e.subarray(t,t+r.len))),t+=r.len}}write(){const e=[];for(let t=0;t<this.attributes.length;t++)e.push(Ht(this.attributes[t].length)),e.push(M.stringToUint8Array(this.attributes[t]));return M.concatUint8Array(e)}equals(e){return!!(e&&e instanceof gc)&&this.attributes.every((function(t,r){return t===e.attributes[r]}))}}class pc extends uc{static get tag(){return Q.packet.secretKey}constructor(e=new Date,t=R){super(e,t),this.keyMaterial=null,this.isEncrypted=null,this.s2kUsage=0,this.s2k=null,this.symmetric=null,this.aead=null,this.isLegacyAEAD=null,this.privateParams=null,this.usedModernAEAD=null}async read(e,t=R){let r=await this.readPublicKey(e,t);const n=r;this.s2kUsage=e[r++],5===this.version&&r++,6===this.version&&this.s2kUsage&&r++;try{if(255===this.s2kUsage||254===this.s2kUsage||253===this.s2kUsage){this.symmetric=e[r++],253===this.s2kUsage&&(this.aead=e[r++]),6===this.version&&r++;const t=e[r++];if(this.s2k=Fa(t),r+=this.s2k.read(e.subarray(r,e.length)),"gnu-dummy"===this.s2k.type)return}else this.s2kUsage&&(this.symmetric=this.s2kUsage);this.s2kUsage&&(this.isLegacyAEAD=253===this.s2kUsage&&(5===this.version||4===this.version&&t.parseAEADEncryptedV4KeysAsLegacy),253!==this.s2kUsage||this.isLegacyAEAD?(this.iv=e.subarray(r,r+ri(this.symmetric).blockSize),this.usedModernAEAD=!1):(this.iv=e.subarray(r,r+wa(this.aead).ivLength),this.usedModernAEAD=!0),r+=this.iv.length)}catch(t){if(!this.s2kUsage)throw t;this.unparseableKeyMaterial=e.subarray(n),this.isEncrypted=!0}if(5===this.version&&(r+=4),this.keyMaterial=e.subarray(r),this.isEncrypted=!!this.s2kUsage,!this.isEncrypted){let e;if(6===this.version)e=this.keyMaterial;else if(e=this.keyMaterial.subarray(0,-2),!M.equalsUint8Array(M.writeChecksum(e),this.keyMaterial.subarray(-2)))throw Error("Key checksum mismatch");try{const{read:t,privateParams:r}=await ka(this.algorithm,e,this.publicParams);if(t<e.length)throw Error("Error reading MPIs");this.privateParams=r}catch(e){if(e instanceof Yt)throw e;throw Error("Error reading MPIs")}}}write(){const e=this.writePublicKey();if(this.unparseableKeyMaterial)return M.concatUint8Array([e,this.unparseableKeyMaterial]);const t=[e];t.push(new Uint8Array([this.s2kUsage]));const r=[];if(255===this.s2kUsage||254===this.s2kUsage||253===this.s2kUsage){r.push(this.symmetric),253===this.s2kUsage&&r.push(this.aead);const e=this.s2k.write();6===this.version&&r.push(e.length),r.push(...e)}return this.s2kUsage&&"gnu-dummy"!==this.s2k.type&&r.push(...this.iv),(5===this.version||6===this.version&&this.s2kUsage)&&t.push(new Uint8Array([r.length])),t.push(new Uint8Array(r)),this.isDummy()||(this.s2kUsage||(this.keyMaterial=Ea(this.algorithm,this.privateParams)),5===this.version&&t.push(M.writeNumber(this.keyMaterial.length,4)),t.push(this.keyMaterial),this.s2kUsage||6===this.version||t.push(M.writeChecksum(this.keyMaterial))),M.concatUint8Array(t)}isDecrypted(){return!1===this.isEncrypted}isMissingSecretKeyMaterial(){return void 0!==this.unparseableKeyMaterial||this.isDummy()}isDummy(){return!(!this.s2k||"gnu-dummy"!==this.s2k.type)}makeDummy(e=R){this.isDummy()||(this.isDecrypted()&&this.clearPrivateParams(),delete this.unparseableKeyMaterial,this.isEncrypted=null,this.keyMaterial=null,this.s2k=Fa(Q.s2k.gnu,e),this.s2k.algorithm=0,this.s2k.c=0,this.s2k.type="gnu-dummy",this.s2kUsage=254,this.symmetric=Q.symmetric.aes256,this.isLegacyAEAD=null,this.usedModernAEAD=null)}async encrypt(e,t=R){if(this.isDummy())return;if(!this.isDecrypted())throw Error("Key packet is already encrypted");if(!e)throw Error("A non-empty passphrase is required for key encryption.");this.s2k=Na(t),this.s2k.generateSalt();const r=Ea(this.algorithm,this.privateParams);this.symmetric=Q.symmetric.aes256;const{blockSize:n}=ri(this.symmetric);if(t.aeadProtect){this.s2kUsage=253,this.aead=t.preferredAEADAlgorithm;const i=wa(this.aead);this.isLegacyAEAD=5===this.version,this.usedModernAEAD=!this.isLegacyAEAD;const s=Gt(this.constructor.tag),a=await dc(this.version,this.s2k,e,this.symmetric,this.aead,s,this.isLegacyAEAD),o=await i(this.symmetric,a);this.iv=this.isLegacyAEAD?ye(n):ye(i.ivLength);const c=this.isLegacyAEAD?new Uint8Array:M.concatUint8Array([s,this.writePublicKey()]);this.keyMaterial=await o.encrypt(r,this.iv.subarray(0,i.ivLength),c)}else{this.s2kUsage=254,this.usedModernAEAD=!1;const t=await dc(this.version,this.s2k,e,this.symmetric);this.iv=ye(n),this.keyMaterial=await xs(this.symmetric,t,M.concatUint8Array([r,await xe(Q.hash.sha1,r)]),this.iv)}}async decrypt(e){if(this.isDummy())return!1;if(this.unparseableKeyMaterial)throw Error("Key packet cannot be decrypted: unsupported S2K or cipher algo");if(this.isDecrypted())throw Error("Key packet is already decrypted.");let t;const r=Gt(this.constructor.tag);if(254!==this.s2kUsage&&253!==this.s2kUsage)throw 255===this.s2kUsage?Error("Encrypted private key is authenticated using an insecure two-byte hash"):Error("Private key is encrypted using an insecure S2K function: unsalted MD5");let n;if(t=await dc(this.version,this.s2k,e,this.symmetric,this.aead,r,this.isLegacyAEAD),253===this.s2kUsage){const e=wa(this.aead,!0),i=await e(this.symmetric,t);try{const t=this.isLegacyAEAD?new Uint8Array:M.concatUint8Array([r,this.writePublicKey()]);n=await i.decrypt(this.keyMaterial,this.iv.subarray(0,e.ivLength),t)}catch(e){if("Authentication tag mismatch"===e.message)throw Error("Incorrect key passphrase: "+e.message);throw e}}else{const e=await Qs(this.symmetric,t,this.keyMaterial,this.iv);n=e.subarray(0,-20);const r=await xe(Q.hash.sha1,n);if(!M.equalsUint8Array(r,e.subarray(-20)))throw Error("Incorrect key passphrase")}try{const{privateParams:e}=await ka(this.algorithm,n,this.publicParams);this.privateParams=e}catch(e){throw Error("Error reading MPIs")}this.isEncrypted=!1,this.keyMaterial=null,this.s2kUsage=0,this.aead=null,this.symmetric=null,this.isLegacyAEAD=null}async validate(){if(this.isDummy())return;if(!this.isDecrypted())throw Error("Key is not decrypted");if(this.usedModernAEAD)return;let e;try{e=await Sa(this.algorithm,this.publicParams,this.privateParams)}catch(t){e=!1}if(!e)throw Error("Key is invalid")}async generate(e,t,r){if(6===this.version&&(this.algorithm===Q.publicKey.ecdh&&t===Q.curve.curve25519Legacy||this.algorithm===Q.publicKey.eddsaLegacy))throw Error(`Cannot generate v6 keys of type 'ecc' with curve ${t}. Generate a key of type 'curve25519' instead`);if(6!==this.version&&(this.algorithm===Q.publicKey.pqc_mldsa_ed25519||this.algorithm===Q.publicKey.pqc_mlkem_x25519))throw Error(`Cannot generate v${this.version} keys of type 'pqc'. Generate a v6 key instead`);const{privateParams:n,publicParams:i}=await va(this.algorithm,e,t,r);this.privateParams=n,this.publicParams=i,this.isEncrypted=!1}clearPrivateParams(){this.isMissingSecretKeyMaterial()||(Object.keys(this.privateParams).forEach((e=>{this.privateParams[e].fill(0),delete this.privateParams[e]})),this.privateParams=null,this.isEncrypted=!0)}}async function dc(e,t,r,n,i,s,a){if("argon2"===t.type&&!i)throw Error("Using Argon2 S2K without AEAD is not allowed");if("simple"===t.type&&6===e)throw Error("Using Simple S2K with version 6 keys is not allowed");const{keySize:o}=ri(n),c=await t.produceKey(r,o);if(!i||5===e||a)return c;const u=M.concatUint8Array([s,new Uint8Array([e,n,i])]);return oi(Q.hash.sha256,c,new Uint8Array,u,o)}class Ac{static get tag(){return Q.packet.userID}constructor(){this.userID="",this.name="",this.email="",this.comment=""}static fromObject(e){if(M.isString(e)||e.name&&!M.isString(e.name)||e.email&&!M.isEmailAddress(e.email)||e.comment&&!M.isString(e.comment))throw Error("Invalid user ID format");const t=new Ac;Object.assign(t,e);const r=[];return t.name&&r.push(t.name),t.comment&&r.push(`(${t.comment})`),t.email&&r.push(`<${t.email}>`),t.userID=r.join(" "),t}read(e,t=R){const r=M.decodeUTF8(e);if(r.length>t.maxUserIDLength)throw Error("User ID string is too long");const n=/^(?<name>[^()]+\s+)?(?<comment>\([^()]+\)\s+)?(?<email><\S+@\S+>)$/.exec(r);if(null!==n){const{name:e,comment:t,email:r}=n.groups;this.comment=t?.replace(/^\(|\)|\s$/g,"").trim()||"",this.name=e?.trim()||"",this.email=r.substring(1,r.length-1)}else/^[^\s@]+@[^\s@]+$/.test(r)&&(this.email=r);this.userID=r}write(){return M.encodeUTF8(this.userID)}equals(e){return e&&e.userID===this.userID}}class wc extends pc{static get tag(){return Q.packet.secretSubkey}constructor(e=new Date,t=R){super(e,t)}}class mc{static get tag(){return Q.packet.trust}read(){throw new Yt("Trust packets are not supported")}write(){throw new Yt("Trust packets are not supported")}}class bc{static get tag(){return Q.packet.padding}constructor(){this.padding=null}read(e){}write(){return this.padding}async createPadding(e){this.padding=await ye(e)}}const kc=/*#__PURE__*/M.constructAllowedPackets([Fo]);class Ec{constructor(e){this.packets=e||new jo}write(){return this.packets.write()}armor(e=R){const t=this.packets.some((e=>e.constructor.tag===Fo.tag&&6!==e.version));return X(Q.armor.signature,this.write(),void 0,void 0,void 0,t,e)}getSigningKeyIDs(){return this.packets.map((e=>e.issuerKeyID))}}async function vc({armoredSignature:e,binarySignature:t,config:r,...n}){r={...R,...r};let i=e||t;if(!i)throw Error("readSignature: must pass options object containing `armoredSignature` or `binarySignature`");if(e&&!M.isString(e))throw Error("readSignature: options.armoredSignature must be a string");if(t&&!M.isUint8Array(t))throw Error("readSignature: options.binarySignature must be a Uint8Array");const s=Object.keys(n);if(s.length>0)throw Error("Unknown option: "+s.join(", "));if(e){const{type:e,data:t}=await J(i);if(e!==Q.armor.signature)throw Error("Armored text not of type signature");i=t}const a=await jo.fromBinary(i,kc,r);return new Ec(a)}async function Bc(e,t){const r=new wc(e.date,t);return r.packets=null,r.algorithm=Q.write(Q.publicKey,e.algorithm),await r.generate(e.rsaBits,e.curve,e.symmetric),await r.computeFingerprintAndKeyID(),r}async function Sc(e,t){const r=new pc(e.date,t);return r.packets=null,r.algorithm=Q.write(Q.publicKey,e.algorithm),await r.generate(e.rsaBits,e.curve,e.symmetric),await r.computeFingerprintAndKeyID(),r}async function Ic(e,t,r,n,i=new Date,s){let a,o;for(let c=e.length-1;c>=0;c--)try{(!a||e[c].created>=a.created)&&(await e[c].verify(t,r,n,i,void 0,s),a=e[c])}catch(e){o=e}if(!a)throw M.wrapError(`Could not find valid ${Q.read(Q.signature,r)} signature in key ${t.getKeyID().toHex()}`.replace("certGeneric ","self-").replace(/([a-z])([A-Z])/g,((e,t,r)=>t+" "+r.toLowerCase())),o);return a}function Kc(e,t,r=new Date){const n=M.normalizeDate(r);if(null!==n){const r=Qc(e,t);return!(e.created<=n&&n<r)}return!1}async function Cc(e,t,r,n){const i={};i.key=t,i.bind=e;const s={signatureType:Q.signature.subkeyBinding};r.sign?(s.keyFlags=[Q.keyFlags.signData],s.embeddedSignature=await Pc(i,[],e,{signatureType:Q.signature.keyBinding},r.date,void 0,void 0,void 0,n)):s.keyFlags=r.forwarding?[Q.keyFlags.forwardedCommunication]:[Q.keyFlags.encryptCommunication|Q.keyFlags.encryptStorage],r.keyExpirationTime>0&&(s.keyExpirationTime=r.keyExpirationTime,s.keyNeverExpires=!1);return await Pc(i,[],t,s,r.date,void 0,void 0,void 0,n)}async function Uc(e,t,r=new Date,n=[],i){if(t.algorithm===Q.publicKey.pqc_mldsa_ed25519)return As(t.algorithm);const s=Q.hash.sha256,a=i.preferredHashAlgorithm,o=await Promise.all(e.map((async(e,t)=>(await e.getPrimarySelfSignature(r,n[t],i)).preferredHashAlgorithms||[]))),c=new Map;for(const e of o)for(const t of e)try{const e=Q.write(Q.hash,t);c.set(e,c.has(e)?c.get(e)+1:1)}catch{}const u=t=>0===e.length||c.get(t)===e.length||t===s,h=()=>{if(0===c.size)return s;const e=Array.from(c.keys()).filter((e=>u(e))).sort(((e,t)=>Qe(e)-Qe(t)))[0];return Qe(e)>=Qe(s)?e:s};if(new Set([Q.publicKey.ecdsa,Q.publicKey.eddsaLegacy,Q.publicKey.ed25519,Q.publicKey.ed448]).has(t.algorithm)){const e=function(e,t){switch(e){case Q.publicKey.ecdsa:case Q.publicKey.eddsaLegacy:return Ii(t);case Q.publicKey.ed25519:case Q.publicKey.ed448:return jr(e);default:throw Error("Unknown elliptic signing algo")}}(t.algorithm,t.publicParams.oid),r=u(a),n=Qe(a)>=Qe(e);if(r&&n)return a;{const t=h();return Qe(t)>=Qe(e)?t:e}}return u(a)?a:h()}async function Pc(e,t,r,n,i,s,a=[],o=!1,c){if(r.isDummy())throw Error("Cannot sign with a gnu-dummy key.");if(!r.isDecrypted())throw Error("Signing key is not decrypted.");const u=new Fo;return Object.assign(u,n),u.publicKeyAlgorithm=r.algorithm,u.hashAlgorithm=await Uc(t,r,i,s,c),u.rawNotations=[...a],await u.sign(r,e,i,o,c),u}async function Dc(e,t,r,n=new Date,i){(e=e[r])&&(t[r].length?await Promise.all(e.map((async function(e){e.isExpired(n)||i&&!await i(e)||t[r].some((function(t){return M.equalsUint8Array(t.writeParams(),e.writeParams())}))||t[r].push(e)}))):t[r]=e)}async function xc(e,t,r,n,i,s,a=new Date,o){s=s||e;const c=[];return await Promise.all(n.map((async function(e){try{if(!i||e.issuerKeyID.equals(i.issuerKeyID)){const n=![Q.reasonForRevocation.keyRetired,Q.reasonForRevocation.keySuperseded,Q.reasonForRevocation.userIDInvalid].includes(e.reasonForRevocationFlag);await e.verify(s,t,r,n?null:a,!1,o),c.push(e.issuerKeyID)}}catch(e){}}))),i?(i.revoked=!!c.some((e=>e.equals(i.issuerKeyID)))||(i.revoked||!1),i.revoked):c.length>0}function Qc(e,t){let r;return!1===t.keyNeverExpires&&(r=e.created.getTime()+1e3*t.keyExpirationTime),r?new Date(r):1/0}function Rc(e,t={}){if(e.type=e.type||t.type,e.curve=e.curve||t.curve,e.rsaBits=e.rsaBits||t.rsaBits,e.symmetricHash=e.symmetricHash||t.symmetricHash,e.symmetricCipher=e.symmetricCipher||t.symmetricCipher,e.keyExpirationTime=void 0!==e.keyExpirationTime?e.keyExpirationTime:t.keyExpirationTime,e.passphrase=M.isString(e.passphrase)?e.passphrase:t.passphrase,e.date=e.date||t.date,e.sign=e.sign||!1,e.forwarding=e.forwarding||!1,e.sign&&e.forwarding)throw Error('Incompatible options: "sign" and "forwarding" cannot be set together');switch(e.type){case"pqc":e.sign?e.algorithm=Q.publicKey.pqc_mldsa_ed25519:e.algorithm=Q.publicKey.pqc_mlkem_x25519;break;case"ecc":try{e.curve=Q.write(Q.curve,e.curve)}catch(e){throw Error("Unknown curve")}e.curve!==Q.curve.ed25519Legacy&&e.curve!==Q.curve.curve25519Legacy&&"ed25519"!==e.curve&&"curve25519"!==e.curve||(e.curve=e.sign?Q.curve.ed25519Legacy:Q.curve.curve25519Legacy),e.sign?e.algorithm=e.curve===Q.curve.ed25519Legacy?Q.publicKey.eddsaLegacy:Q.publicKey.ecdsa:e.algorithm=Q.publicKey.ecdh;break;case"curve25519":e.algorithm=e.sign?Q.publicKey.ed25519:Q.publicKey.x25519;break;case"curve448":e.algorithm=e.sign?Q.publicKey.ed448:Q.publicKey.x448;break;case"rsa":e.algorithm=Q.publicKey.rsaEncryptSign;break;case"symmetric":if(e.sign){e.algorithm=Q.publicKey.hmac;try{e.symmetric=Q.write(Q.hash,e.symmetricHash)}catch(e){throw Error("Unknown hash algorithm")}}else{e.algorithm=Q.publicKey.aead;try{e.symmetric=Q.write(Q.symmetric,e.symmetricCipher)}catch(e){throw Error("Unknown symmetric algorithm")}}break;default:throw Error("Unsupported key type "+e.type)}return e}function Tc(e,t,r){switch(e.algorithm){case Q.publicKey.rsaEncryptSign:case Q.publicKey.rsaSign:case Q.publicKey.dsa:case Q.publicKey.ecdsa:case Q.publicKey.eddsaLegacy:case Q.publicKey.ed25519:case Q.publicKey.ed448:case Q.publicKey.hmac:case Q.publicKey.pqc_mldsa_ed25519:if(!t.keyFlags&&!r.allowMissingKeyFlags)throw Error("None of the key flags is set: consider passing `config.allowMissingKeyFlags`");return!t.keyFlags||!!(t.keyFlags[0]&Q.keyFlags.signData);default:return!1}}function Mc(e,t,r){switch(e.algorithm){case Q.publicKey.rsaEncryptSign:case Q.publicKey.rsaEncrypt:case Q.publicKey.elgamal:case Q.publicKey.ecdh:case Q.publicKey.x25519:case Q.publicKey.x448:case Q.publicKey.aead:case Q.publicKey.pqc_mlkem_x25519:if(!t.keyFlags&&!r.allowMissingKeyFlags)throw Error("None of the key flags is set: consider passing `config.allowMissingKeyFlags`");return!t.keyFlags||!!(t.keyFlags[0]&Q.keyFlags.encryptCommunication)||!!(t.keyFlags[0]&Q.keyFlags.encryptStorage);default:return!1}}function Lc(e,t,r){if(!t.keyFlags&&!r.allowMissingKeyFlags)throw Error("None of the key flags is set: consider passing `config.allowMissingKeyFlags`");switch(e.algorithm){case Q.publicKey.rsaEncryptSign:case Q.publicKey.rsaEncrypt:case Q.publicKey.elgamal:case Q.publicKey.ecdh:case Q.publicKey.x25519:case Q.publicKey.x448:case Q.publicKey.pqc_mlkem_x25519:return!(!(!t.keyFlags||!!(t.keyFlags[0]&Q.keyFlags.signData))||!r.allowInsecureDecryptionWithSigningKeys)||(!t.keyFlags||!!(t.keyFlags[0]&Q.keyFlags.encryptCommunication)||!!(t.keyFlags[0]&Q.keyFlags.encryptStorage)||r.allowForwardedMessages&&!!(t.keyFlags[0]&Q.keyFlags.forwardedCommunication));default:return!1}}function Fc(e,t){const r=Q.write(Q.publicKey,e.algorithm),n=e.getAlgorithmInfo();if(t.rejectPublicKeyAlgorithms.has(r))throw Error(n.algorithm+" keys are considered too weak.");switch(r){case Q.publicKey.rsaEncryptSign:case Q.publicKey.rsaSign:case Q.publicKey.rsaEncrypt:if(n.bits<t.minRSABits)throw Error(`RSA keys shorter than ${t.minRSABits} bits are considered too weak.`);break;case Q.publicKey.ecdsa:case Q.publicKey.eddsaLegacy:case Q.publicKey.ecdh:if(t.rejectCurves.has(n.curve))throw Error(`Support for ${n.algorithm} keys using curve ${n.curve} is disabled.`)}}class Nc{constructor(e,t){this.userID=e.constructor.tag===Q.packet.userID?e:null,this.userAttribute=e.constructor.tag===Q.packet.userAttribute?e:null,this.selfCertifications=[],this.otherCertifications=[],this.revocationSignatures=[],this.mainKey=t}toPacketList(){const e=new jo;return e.push(this.userID||this.userAttribute),e.push(...this.revocationSignatures),e.push(...this.selfCertifications),e.push(...this.otherCertifications),e}clone(){const e=new Nc(this.userID||this.userAttribute,this.mainKey);return e.selfCertifications=[...this.selfCertifications],e.otherCertifications=[...this.otherCertifications],e.revocationSignatures=[...this.revocationSignatures],e}async certify(e,t,r){const n=this.mainKey.keyPacket,i={userID:this.userID,userAttribute:this.userAttribute,key:n},s=new Nc(i.userID||i.userAttribute,this.mainKey);return s.otherCertifications=await Promise.all(e.map((async function(e){if(!e.isPrivate())throw Error("Need private key for signing");if(e.hasSameFingerprintAs(n))throw Error("The user's own key can only be used for self-certifications");const s=await e.getSigningKey(void 0,t,void 0,r);return Pc(i,[e],s.keyPacket,{signatureType:Q.signature.certGeneric,keyFlags:[Q.keyFlags.certifyKeys|Q.keyFlags.signData]},t,void 0,void 0,void 0,r)}))),await s.update(this,t,r),s}async isRevoked(e,t,r=new Date,n=R){const i=this.mainKey.keyPacket;return xc(i,Q.signature.certRevocation,{key:i,userID:this.userID,userAttribute:this.userAttribute},this.revocationSignatures,e,t,r,n)}async verifyCertificate(e,t,r=new Date,n){const i=this,s=this.mainKey.keyPacket,a={userID:this.userID,userAttribute:this.userAttribute,key:s},{issuerKeyID:o}=e,c=t.filter((e=>e.getKeys(o).length>0));return 0===c.length?null:(await Promise.all(c.map((async t=>{const s=await t.getSigningKey(o,e.created,void 0,n);if(e.revoked||await i.isRevoked(e,s.keyPacket,r,n))throw Error("User certificate is revoked");try{await e.verify(s.keyPacket,Q.signature.certGeneric,a,r,void 0,n)}catch(e){throw M.wrapError("User certificate is invalid",e)}}))),!0)}async verifyAllCertifications(e,t=new Date,r){const n=this,i=this.selfCertifications.concat(this.otherCertifications);return Promise.all(i.map((async i=>({keyID:i.issuerKeyID,valid:await n.verifyCertificate(i,e,t,r).catch((()=>!1))}))))}async verify(e=new Date,t){if(!this.selfCertifications.length)throw Error("No self-certifications found");const r=this,n=this.mainKey.keyPacket,i={userID:this.userID,userAttribute:this.userAttribute,key:n};let s;for(let a=this.selfCertifications.length-1;a>=0;a--)try{const s=this.selfCertifications[a];if(s.revoked||await r.isRevoked(s,void 0,e,t))throw Error("Self-certification is revoked");try{await s.verify(n,Q.signature.certGeneric,i,e,void 0,t)}catch(e){throw M.wrapError("Self-certification is invalid",e)}return!0}catch(e){s=e}throw s}async update(e,t,r){const n=this.mainKey.keyPacket,i={userID:this.userID,userAttribute:this.userAttribute,key:n};await Dc(e,this,"selfCertifications",t,(async function(e){try{return await e.verify(n,Q.signature.certGeneric,i,t,!1,r),!0}catch(e){return!1}})),await Dc(e,this,"otherCertifications",t),await Dc(e,this,"revocationSignatures",t,(function(e){return xc(n,Q.signature.certRevocation,i,[e],void 0,void 0,t,r)}))}async revoke(e,{flag:t=Q.reasonForRevocation.noReason,string:r=""}={},n=new Date,i=R){const s={userID:this.userID,userAttribute:this.userAttribute,key:e},a=new Nc(s.userID||s.userAttribute,this.mainKey);return a.revocationSignatures.push(await Pc(s,[],e,{signatureType:Q.signature.certRevocation,reasonForRevocationFlag:Q.write(Q.reasonForRevocation,t),reasonForRevocationString:r},n,void 0,void 0,!1,i)),await a.update(this),a}}class Oc{constructor(e,t){this.keyPacket=e,this.bindingSignatures=[],this.revocationSignatures=[],this.mainKey=t}toPacketList(){const e=new jo;return e.push(this.keyPacket),e.push(...this.revocationSignatures),e.push(...this.bindingSignatures),e}clone(){const e=new Oc(this.keyPacket,this.mainKey);return e.bindingSignatures=[...this.bindingSignatures],e.revocationSignatures=[...this.revocationSignatures],e}async isRevoked(e,t,r=new Date,n=R){const i=this.mainKey.keyPacket;return xc(i,Q.signature.subkeyRevocation,{key:i,bind:this.keyPacket},this.revocationSignatures,e,t,r,n)}async verify(e=new Date,t=R){const r=this.mainKey.keyPacket,n={key:r,bind:this.keyPacket},i=await Ic(this.bindingSignatures,r,Q.signature.subkeyBinding,n,e,t);if(i.revoked||await this.isRevoked(i,null,e,t))throw Error("Subkey is revoked");if(Kc(this.keyPacket,i,e))throw Error("Subkey is expired");return i}async getExpirationTime(e=new Date,t=R){const r=this.mainKey.keyPacket,n={key:r,bind:this.keyPacket};let i;try{i=await Ic(this.bindingSignatures,r,Q.signature.subkeyBinding,n,e,t)}catch(e){return null}const s=Qc(this.keyPacket,i),a=i.getExpirationTime();return s<a?s:a}async update(e,t=new Date,r=R){const n=this.mainKey.keyPacket;if(!this.hasSameFingerprintAs(e))throw Error("Subkey update method: fingerprints of subkeys not equal");this.keyPacket.constructor.tag===Q.packet.publicSubkey&&e.keyPacket.constructor.tag===Q.packet.secretSubkey&&(this.keyPacket=e.keyPacket);const i=this,s={key:n,bind:i.keyPacket};await Dc(e,this,"bindingSignatures",t,(async function(e){for(let t=0;t<i.bindingSignatures.length;t++)if(i.bindingSignatures[t].issuerKeyID.equals(e.issuerKeyID))return e.created>i.bindingSignatures[t].created&&(i.bindingSignatures[t]=e),!1;try{return await e.verify(n,Q.signature.subkeyBinding,s,t,void 0,r),!0}catch(e){return!1}})),await Dc(e,this,"revocationSignatures",t,(function(e){return xc(n,Q.signature.subkeyRevocation,s,[e],void 0,void 0,t,r)}))}async revoke(e,{flag:t=Q.reasonForRevocation.noReason,string:r=""}={},n=new Date,i=R){const s={key:e,bind:this.keyPacket},a=new Oc(this.keyPacket,this.mainKey);return a.revocationSignatures.push(await Pc(s,[],e,{signatureType:Q.signature.subkeyRevocation,reasonForRevocationFlag:Q.write(Q.reasonForRevocation,t),reasonForRevocationString:r},n,void 0,void 0,!1,i)),await a.update(this),a}hasSameFingerprintAs(e){return this.keyPacket.hasSameFingerprintAs(e.keyPacket||e)}}["getKeyID","getFingerprint","getAlgorithmInfo","getCreationTime","isDecrypted"].forEach((e=>{Oc.prototype[e]=function(){return this.keyPacket[e]()}}));const _c=/*#__PURE__*/M.constructAllowedPackets([Fo]),Hc=new Set([Q.packet.publicKey,Q.packet.privateKey]),zc=new Set([Q.packet.publicKey,Q.packet.privateKey,Q.packet.publicSubkey,Q.packet.privateSubkey]);class Gc{packetListToStructure(e,t=new Set){let r,n,i,s;for(const a of e){if(a instanceof Wt){zc.has(a.tag)&&!s&&(s=Hc.has(a.tag)?Hc:zc);continue}const e=a.constructor.tag;if(s){if(!s.has(e))continue;s=null}if(t.has(e))throw Error("Unexpected packet type: "+e);switch(e){case Q.packet.publicKey:case Q.packet.secretKey:if(this.keyPacket)throw Error("Key block contains multiple keys");if(this.keyPacket=a,n=this.getKeyID(),!n)throw Error("Missing Key ID");break;case Q.packet.userID:case Q.packet.userAttribute:r=new Nc(a,this),this.users.push(r);break;case Q.packet.publicSubkey:case Q.packet.secretSubkey:r=null,i=new Oc(a,this),this.subkeys.push(i);break;case Q.packet.signature:switch(a.signatureType){case Q.signature.certGeneric:case Q.signature.certPersona:case Q.signature.certCasual:case Q.signature.certPositive:if(!r){M.printDebug("Dropping certification signatures without preceding user packet");continue}a.issuerKeyID.equals(n)?r.selfCertifications.push(a):r.otherCertifications.push(a);break;case Q.signature.certRevocation:r?r.revocationSignatures.push(a):this.directSignatures.push(a);break;case Q.signature.key:this.directSignatures.push(a);break;case Q.signature.subkeyBinding:if(!i){M.printDebug("Dropping subkey binding signature without preceding subkey packet");continue}i.bindingSignatures.push(a);break;case Q.signature.keyRevocation:this.revocationSignatures.push(a);break;case Q.signature.subkeyRevocation:if(!i){M.printDebug("Dropping subkey revocation signature without preceding subkey packet");continue}i.revocationSignatures.push(a)}}}}toPacketList(){const e=new jo;return e.push(this.keyPacket),e.push(...this.revocationSignatures),e.push(...this.directSignatures),this.users.map((t=>e.push(...t.toPacketList()))),this.subkeys.map((t=>e.push(...t.toPacketList()))),e}clone(e=!1){const t=new this.constructor(this.toPacketList());return e&&t.getKeys().forEach((e=>{if(e.keyPacket=Object.create(Object.getPrototypeOf(e.keyPacket),Object.getOwnPropertyDescriptors(e.keyPacket)),!e.keyPacket.isDecrypted())return;const t={};Object.keys(e.keyPacket.privateParams).forEach((r=>{t[r]=new Uint8Array(e.keyPacket.privateParams[r])})),e.keyPacket.privateParams=t})),t}getSubkeys(e=null){return this.subkeys.filter((t=>!e||t.getKeyID().equals(e,!0)))}getKeys(e=null){const t=[];return e&&!this.getKeyID().equals(e,!0)||t.push(this),t.concat(this.getSubkeys(e))}getKeyIDs(){return this.getKeys().map((e=>e.getKeyID()))}getUserIDs(){return this.users.map((e=>e.userID?e.userID.userID:null)).filter((e=>null!==e))}write(){return this.toPacketList().write()}async getSigningKey(e=null,t=new Date,r={},n=R){await this.verifyPrimaryKey(t,r,n);const i=this.keyPacket;try{Fc(i,n)}catch(e){throw M.wrapError("Could not verify primary key",e)}const s=this.subkeys.slice().sort(((e,t)=>t.keyPacket.created-e.keyPacket.created));let a;for(const r of s)if(!e||r.getKeyID().equals(e))try{await r.verify(t,n);const e={key:i,bind:r.keyPacket},s=await Ic(r.bindingSignatures,i,Q.signature.subkeyBinding,e,t,n);if(!Tc(r.keyPacket,s,n))continue;if(!s.embeddedSignature)throw Error("Missing embedded signature");return await Ic([s.embeddedSignature],r.keyPacket,Q.signature.keyBinding,e,t,n),Fc(r.keyPacket,n),r}catch(e){a=e}try{const s=await this.getPrimarySelfSignature(t,r,n);if((!e||i.getKeyID().equals(e))&&Tc(i,s,n))return Fc(i,n),this}catch(e){a=e}throw M.wrapError("Could not find valid signing key packet in key "+this.getKeyID().toHex(),a)}async getEncryptionKey(e,t=new Date,r={},n=R){await this.verifyPrimaryKey(t,r,n);const i=this.keyPacket;try{Fc(i,n)}catch(e){throw M.wrapError("Could not verify primary key",e)}const s=this.subkeys.slice().sort(((e,t)=>t.keyPacket.created-e.keyPacket.created));let a;for(const r of s)if(!e||r.getKeyID().equals(e))try{await r.verify(t,n);const e={key:i,bind:r.keyPacket},s=await Ic(r.bindingSignatures,i,Q.signature.subkeyBinding,e,t,n);if(Mc(r.keyPacket,s,n))return Fc(r.keyPacket,n),r}catch(e){a=e}try{const s=await this.getPrimarySelfSignature(t,r,n);if((!e||i.getKeyID().equals(e))&&Mc(i,s,n))return Fc(i,n),this}catch(e){a=e}throw M.wrapError("Could not find valid encryption key packet in key "+this.getKeyID().toHex(),a)}async isRevoked(e,t,r=new Date,n=R){return xc(this.keyPacket,Q.signature.keyRevocation,{key:this.keyPacket},this.revocationSignatures,e,t,r,n)}async verifyPrimaryKey(e=new Date,t={},r=R){const n=this.keyPacket;if(await this.isRevoked(null,null,e,r))throw Error("Primary key is revoked");if(Kc(n,await this.getPrimarySelfSignature(e,t,r),e))throw Error("Primary key is expired");if(6!==n.version){const t=await Ic(this.directSignatures,n,Q.signature.key,{key:n},e,r).catch((()=>{}));if(t&&Kc(n,t,e))throw Error("Primary key is expired")}}async getExpirationTime(e,t=R){let r;try{const n=await this.getPrimarySelfSignature(null,e,t),i=Qc(this.keyPacket,n),s=n.getExpirationTime(),a=6!==this.keyPacket.version&&await Ic(this.directSignatures,this.keyPacket,Q.signature.key,{key:this.keyPacket},null,t).catch((()=>{}));if(a){const e=Qc(this.keyPacket,a);r=Math.min(i,s,e)}else r=i<s?i:s}catch(e){r=null}return M.normalizeDate(r)}async getPrimarySelfSignature(e=new Date,t={},r=R){const n=this.keyPacket;if(6===n.version)return Ic(this.directSignatures,n,Q.signature.key,{key:n},e,r);const{selfCertification:i}=await this.getPrimaryUser(e,t,r);return i}async getPrimaryUser(e=new Date,t={},r=R){const n=this.keyPacket,i=[];let s;for(let a=0;a<this.users.length;a++)try{const s=this.users[a];if(!s.userID)continue;if(void 0!==t.name&&s.userID.name!==t.name||void 0!==t.email&&s.userID.email!==t.email||void 0!==t.comment&&s.userID.comment!==t.comment)throw Error("Could not find user that matches that user ID");const o={userID:s.userID,key:n},c=await Ic(s.selfCertifications,n,Q.signature.certGeneric,o,e,r);i.push({index:a,user:s,selfCertification:c})}catch(e){s=e}if(!i.length)throw s||Error("Could not find primary user");await Promise.all(i.map((async function(t){return t.selfCertification.revoked||t.user.isRevoked(t.selfCertification,null,e,r)})));const a=i.sort((function(e,t){const r=e.selfCertification,n=t.selfCertification;return n.revoked-r.revoked||r.isPrimaryUserID-n.isPrimaryUserID||r.created-n.created})).pop(),{user:o,selfCertification:c}=a;if(c.revoked||await o.isRevoked(c,null,e,r))throw Error("Primary user is revoked");return a}async update(e,t=new Date,r=R){if(!this.hasSameFingerprintAs(e))throw Error("Primary key fingerprints must be equal to update the key");if(!this.isPrivate()&&e.isPrivate()){if(!(this.subkeys.length===e.subkeys.length&&this.subkeys.every((t=>e.subkeys.some((e=>t.hasSameFingerprintAs(e)))))))throw Error("Cannot update public key with private key if subkeys mismatch");return e.update(this,r)}const n=this.clone();return await Dc(e,n,"revocationSignatures",t,(i=>xc(n.keyPacket,Q.signature.keyRevocation,n,[i],null,e.keyPacket,t,r))),await Dc(e,n,"directSignatures",t),await Promise.all(e.users.map((async e=>{const i=n.users.filter((t=>e.userID&&e.userID.equals(t.userID)||e.userAttribute&&e.userAttribute.equals(t.userAttribute)));if(i.length>0)await Promise.all(i.map((n=>n.update(e,t,r))));else{const t=e.clone();t.mainKey=n,n.users.push(t)}}))),await Promise.all(e.subkeys.map((async e=>{const i=n.subkeys.filter((t=>t.hasSameFingerprintAs(e)));if(i.length>0)await Promise.all(i.map((n=>n.update(e,t,r))));else{const t=e.clone();t.mainKey=n,n.subkeys.push(t)}}))),n}async getRevocationCertificate(e=new Date,t=R){const r={key:this.keyPacket},n=await Ic(this.revocationSignatures,this.keyPacket,Q.signature.keyRevocation,r,e,t),i=new jo;i.push(n);const s=6!==this.keyPacket.version;return X(Q.armor.publicKey,i.write(),null,null,"This is a revocation certificate",s,t)}async applyRevocationCertificate(e,t=new Date,r=R){const n=await J(e),i=(await jo.fromBinary(n.data,_c,r)).findPacket(Q.packet.signature);if(!i||i.signatureType!==Q.signature.keyRevocation)throw Error("Could not find revocation signature packet");if(!i.issuerKeyID.equals(this.getKeyID()))throw Error("Revocation signature does not match key");try{await i.verify(this.keyPacket,Q.signature.keyRevocation,{key:this.keyPacket},t,void 0,r)}catch(e){throw M.wrapError("Could not verify revocation signature",e)}const s=this.clone();return s.revocationSignatures.push(i),s}async signPrimaryUser(e,t,r,n=R){const{index:i,user:s}=await this.getPrimaryUser(t,r,n),a=await s.certify(e,t,n),o=this.clone();return o.users[i]=a,o}async signAllUsers(e,t=new Date,r=R){const n=this.clone();return n.users=await Promise.all(this.users.map((function(n){return n.certify(e,t,r)}))),n}async verifyPrimaryUser(e,t=new Date,r,n=R){const i=this.keyPacket,{user:s}=await this.getPrimaryUser(t,r,n);return e?await s.verifyAllCertifications(e,t,n):[{keyID:i.getKeyID(),valid:await s.verify(t,n).catch((()=>!1))}]}async verifyAllUsers(e,t=new Date,r=R){const n=this.keyPacket,i=[];return await Promise.all(this.users.map((async s=>{const a=e?await s.verifyAllCertifications(e,t,r):[{keyID:n.getKeyID(),valid:await s.verify(t,r).catch((()=>!1))}];i.push(...a.map((e=>({userID:s.userID?s.userID.userID:null,userAttribute:s.userAttribute,keyID:e.keyID,valid:e.valid}))))}))),i}}["getKeyID","getFingerprint","getAlgorithmInfo","getCreationTime","hasSameFingerprintAs"].forEach((e=>{Gc.prototype[e]=Oc.prototype[e]}));class qc extends Gc{constructor(e){if(super(),this.keyPacket=null,this.revocationSignatures=[],this.directSignatures=[],this.users=[],this.subkeys=[],e&&(this.packetListToStructure(e,new Set([Q.packet.secretKey,Q.packet.secretSubkey])),!this.keyPacket))throw Error("Invalid key: missing public-key packet")}isPrivate(){return!1}toPublic(){return this}armor(e=R){const t=6!==this.keyPacket.version;return X(Q.armor.publicKey,this.toPacketList().write(),void 0,void 0,void 0,t,e)}}class jc extends qc{constructor(e){if(super(),this.packetListToStructure(e,new Set([Q.packet.publicKey,Q.packet.publicSubkey])),!this.keyPacket)throw Error("Invalid key: missing private-key packet")}isPrivate(){return!0}toPublic(){const e=new jo,t=this.toPacketList();let r=!1;for(const n of t)if(!r||n.constructor.tag!==Q.packet.Signature)switch(r&&(r=!1),n.constructor.tag){case Q.packet.secretKey:{if(n.algorithm===Q.publicKey.aead||n.algorithm===Q.publicKey.hmac)throw Error("Cannot create public key from symmetric private");const t=uc.fromSecretKeyPacket(n);e.push(t);break}case Q.packet.secretSubkey:{if(n.algorithm===Q.publicKey.aead||n.algorithm===Q.publicKey.hmac){r=!0;break}const t=fc.fromSecretSubkeyPacket(n);e.push(t);break}default:e.push(n)}return new qc(e)}armor(e=R){const t=6!==this.keyPacket.version;return X(Q.armor.privateKey,this.toPacketList().write(),void 0,void 0,void 0,t,e)}async getDecryptionKeys(e,t=new Date,r={},n=R){const i=this.keyPacket,s=[];let a=null;for(let r=0;r<this.subkeys.length;r++)if(!e||this.subkeys[r].getKeyID().equals(e,!0)){if(this.subkeys[r].keyPacket.isDummy()){a=a||Error("Gnu-dummy key packets cannot be used for decryption");continue}try{const e={key:i,bind:this.subkeys[r].keyPacket},a=await Ic(this.subkeys[r].bindingSignatures,i,Q.signature.subkeyBinding,e,t,n);Lc(this.subkeys[r].keyPacket,a,n)&&s.push(this.subkeys[r])}catch(e){a=e}}const o=await this.getPrimarySelfSignature(t,r,n);if(e&&!i.getKeyID().equals(e,!0)||!Lc(i,o,n)||(i.isDummy()?a=a||Error("Gnu-dummy key packets cannot be used for decryption"):s.push(this)),0===s.length)throw a||Error("No decryption key packets found");return s}isDecrypted(){return this.getKeys().some((({keyPacket:e})=>e.isDecrypted()))}async validate(e=R){if(!this.isPrivate())throw Error("Cannot validate a public key");let t;if(this.keyPacket.isDummy()){const r=await this.getSigningKey(null,null,void 0,{...e,rejectPublicKeyAlgorithms:new Set,minRSABits:0});r&&!r.keyPacket.isDummy()&&(t=r.keyPacket)}else t=this.keyPacket;if(t)return t.validate();{const e=this.getKeys();if(e.map((e=>e.keyPacket.isDummy())).every(Boolean))throw Error("Cannot validate an all-gnu-dummy key");return Promise.all(e.map((async e=>e.keyPacket.validate())))}}clearPrivateParams(){this.getKeys().forEach((({keyPacket:e})=>{e.isDecrypted()&&e.clearPrivateParams()}))}async revoke({flag:e=Q.reasonForRevocation.noReason,string:t=""}={},r=new Date,n=R){if(!this.isPrivate())throw Error("Need private key for revoking");const i={key:this.keyPacket},s=this.clone();return s.revocationSignatures.push(await Pc(i,[],this.keyPacket,{signatureType:Q.signature.keyRevocation,reasonForRevocationFlag:Q.write(Q.reasonForRevocation,e),reasonForRevocationString:t},r,void 0,void 0,void 0,n)),s}async addSubkey(e={}){const t={...R,...e.config};if(e.passphrase)throw Error("Subkey could not be encrypted here, please encrypt whole key");if(e.rsaBits<t.minRSABits)throw Error(`rsaBits should be at least ${t.minRSABits}, got: ${e.rsaBits}`);const r=this.keyPacket;if(r.isDummy())throw Error("Cannot add subkey to gnu-dummy primary key");if(!r.isDecrypted())throw Error("Key is not decrypted");const n=r.getAlgorithmInfo();n.type=function(e){switch(Q.write(Q.publicKey,e)){case Q.publicKey.rsaEncrypt:case Q.publicKey.rsaEncryptSign:case Q.publicKey.rsaSign:case Q.publicKey.dsa:return"rsa";case Q.publicKey.ecdsa:case Q.publicKey.eddsaLegacy:return"ecc";case Q.publicKey.ed25519:return"curve25519";case Q.publicKey.ed448:return"curve448";default:throw Error("Unsupported algorithm")}}(n.algorithm),n.rsaBits=n.bits||4096,n.curve=n.curve||"curve25519Legacy",e=Rc(e,n);const i=await Bc(e,{...t,v6Keys:6===this.keyPacket.version});Fc(i,t);const s=await Cc(i,r,e,t),a=this.toPacketList();return a.push(i,s),new jc(a)}}const Vc=/*#__PURE__*/M.constructAllowedPackets([uc,fc,pc,wc,Ac,gc,Fo]);function Yc(e){for(const t of e)switch(t.constructor.tag){case Q.packet.secretKey:return new jc(e);case Q.packet.publicKey:return new qc(e)}throw Error("No key packet found")}async function Zc(e,t,r,n){r.passphrase&&await e.encrypt(r.passphrase,n),await Promise.all(t.map((async function(e,t){const i=r.subkeys[t].passphrase;i&&await e.encrypt(i,n)})));const i=new jo;function s(e,t){return[t,...e.filter((e=>e!==t))]}function a(){const t={};t.keyFlags=[Q.keyFlags.certifyKeys|Q.keyFlags.signData];const i=s([Q.symmetric.aes256,Q.symmetric.aes128],n.preferredSymmetricAlgorithm);if(t.preferredSymmetricAlgorithms=i,n.aeadProtect){const e=s([Q.aead.gcm,Q.aead.eax,Q.aead.ocb],n.preferredAEADAlgorithm);t.preferredCipherSuites=e.flatMap((e=>i.map((t=>[t,e]))))}return t.preferredHashAlgorithms=s([Q.hash.sha512,Q.hash.sha256,...6===e.version?[Q.hash.sha3_512,Q.hash.sha3_256]:[]],n.preferredHashAlgorithm),t.preferredCompressionAlgorithms=s([Q.compression.uncompressed,Q.compression.zlib,Q.compression.zip],n.preferredCompressionAlgorithm),t.features=[0],t.features[0]|=Q.features.modificationDetection,n.aeadProtect&&(t.features[0]|=Q.features.seipdv2),r.keyExpirationTime>0&&(t.keyExpirationTime=r.keyExpirationTime,t.keyNeverExpires=!1),t}if(i.push(e),6===e.version){const t={key:e},s=a();s.signatureType=Q.signature.key;const o=await Pc(t,[],e,s,r.date,void 0,void 0,void 0,n);i.push(o)}await Promise.all(r.userIDs.map((async function(t,i){const s=Ac.fromObject(t),o={userID:s,key:e},c=6!==e.version?a():{};c.signatureType=Q.signature.certPositive,0===i&&(c.isPrimaryUserID=!0);return{userIDPacket:s,signaturePacket:await Pc(o,[],e,c,r.date,void 0,void 0,void 0,n)}}))).then((e=>{e.forEach((({userIDPacket:e,signaturePacket:t})=>{i.push(e),i.push(t)}))})),await Promise.all(t.map((async function(t,i){const s=r.subkeys[i];return{secretSubkeyPacket:t,subkeySignaturePacket:await Cc(t,e,s,n)}}))).then((e=>{e.forEach((({secretSubkeyPacket:e,subkeySignaturePacket:t})=>{i.push(e),i.push(t)}))}));const o={key:e};return i.push(await Pc(o,[],e,{signatureType:Q.signature.keyRevocation,reasonForRevocationFlag:Q.reasonForRevocation.noReason,reasonForRevocationString:""},r.date,void 0,void 0,void 0,n)),r.passphrase&&e.clearPrivateParams(),await Promise.all(t.map((async function(e,t){r.subkeys[t].passphrase&&e.clearPrivateParams()}))),new jc(i)}async function Wc({armoredKey:e,binaryKey:t,config:r,...n}){if(r={...R,...r},!e&&!t)throw Error("readKey: must pass options object containing `armoredKey` or `binaryKey`");if(e&&!M.isString(e))throw Error("readKey: options.armoredKey must be a string");if(t&&!M.isUint8Array(t))throw Error("readKey: options.binaryKey must be a Uint8Array");const i=Object.keys(n);if(i.length>0)throw Error("Unknown option: "+i.join(", "));let s;if(e){const{type:t,data:r}=await J(e);if(t!==Q.armor.publicKey&&t!==Q.armor.privateKey)throw Error("Armored text not of type key");s=r}else s=t;const a=await jo.fromBinary(s,Vc,r),o=a.indexOfTag(Q.packet.publicKey,Q.packet.secretKey);if(0===o.length)throw Error("No key packet found");return Yc(a.slice(o[0],o[1]))}async function Jc({armoredKey:e,binaryKey:t,config:r,...n}){if(r={...R,...r},!e&&!t)throw Error("readPrivateKey: must pass options object containing `armoredKey` or `binaryKey`");if(e&&!M.isString(e))throw Error("readPrivateKey: options.armoredKey must be a string");if(t&&!M.isUint8Array(t))throw Error("readPrivateKey: options.binaryKey must be a Uint8Array");const i=Object.keys(n);if(i.length>0)throw Error("Unknown option: "+i.join(", "));let s;if(e){const{type:t,data:r}=await J(e);if(t!==Q.armor.privateKey)throw Error("Armored text not of type private key");s=r}else s=t;const a=await jo.fromBinary(s,Vc,r),o=a.indexOfTag(Q.packet.publicKey,Q.packet.secretKey);for(let e=0;e<o.length;e++){if(a[o[e]].constructor.tag===Q.packet.publicKey)continue;const t=a.slice(o[e],o[e+1]);return new jc(t)}throw Error("No secret key packet found")}async function Xc({armoredKeys:e,binaryKeys:t,config:r,...n}){r={...R,...r};let i=e||t;if(!i)throw Error("readKeys: must pass options object containing `armoredKeys` or `binaryKeys`");if(e&&!M.isString(e))throw Error("readKeys: options.armoredKeys must be a string");if(t&&!M.isUint8Array(t))throw Error("readKeys: options.binaryKeys must be a Uint8Array");const s=Object.keys(n);if(s.length>0)throw Error("Unknown option: "+s.join(", "));if(e){const{type:t,data:r}=await J(e);if(t!==Q.armor.publicKey&&t!==Q.armor.privateKey)throw Error("Armored text not of type key");i=r}const a=[],o=await jo.fromBinary(i,Vc,r),c=o.indexOfTag(Q.packet.publicKey,Q.packet.secretKey);if(0===c.length)throw Error("No key packet found");for(let e=0;e<c.length;e++){const t=Yc(o.slice(c[e],c[e+1]));a.push(t)}return a}async function $c({armoredKeys:e,binaryKeys:t,config:r}){r={...R,...r};let n=e||t;if(!n)throw Error("readPrivateKeys: must pass options object containing `armoredKeys` or `binaryKeys`");if(e&&!M.isString(e))throw Error("readPrivateKeys: options.armoredKeys must be a string");if(t&&!M.isUint8Array(t))throw Error("readPrivateKeys: options.binaryKeys must be a Uint8Array");if(e){const{type:t,data:r}=await J(e);if(t!==Q.armor.privateKey)throw Error("Armored text not of type private key");n=r}const i=[],s=await jo.fromBinary(n,Vc,r),a=s.indexOfTag(Q.packet.publicKey,Q.packet.secretKey);for(let e=0;e<a.length;e++){if(s[a[e]].constructor.tag===Q.packet.publicKey)continue;const t=s.slice(a[e],a[e+1]),r=new jc(t);i.push(r)}if(0===i.length)throw Error("No secret key packet found");return i}const eu=/*#__PURE__*/M.constructAllowedPackets([Qo,Yo,ic,tc,lc,ac,cc,_o,Fo]),tu=/*#__PURE__*/M.constructAllowedPackets([cc]),ru=/*#__PURE__*/M.constructAllowedPackets([Fo]);class nu{constructor(e){this.packets=e||new jo}getEncryptionKeyIDs(){const e=[];return this.packets.filterByTag(Q.packet.publicKeyEncryptedSessionKey).forEach((function(t){e.push(t.publicKeyID)})),e}getSigningKeyIDs(){const e=this.unwrapCompressed(),t=e.packets.filterByTag(Q.packet.onePassSignature);if(t.length>0)return t.map((e=>e.issuerKeyID));return e.packets.filterByTag(Q.packet.signature).map((e=>e.issuerKeyID))}async decrypt(e,t,r,n=new Date,i=R){const s=this.packets.filterByTag(Q.packet.symmetricallyEncryptedData,Q.packet.symEncryptedIntegrityProtectedData,Q.packet.aeadEncryptedData);if(0===s.length)throw Error("No encrypted data found");const a=s[0],o=a.cipherAlgorithm,c=r||await this.decryptSessionKeys(e,t,o,n,i);let u=null;const h=Promise.all(c.map((async({algorithm:e,data:t})=>{if(!M.isUint8Array(t)||!a.cipherAlgorithm&&!M.isString(e))throw Error("Invalid session key for decryption.");try{const r=a.cipherAlgorithm||Q.write(Q.symmetric,e);await a.decrypt(r,t,i)}catch(e){M.printDebugError(e),u=e}})));if(C(a.encrypted),a.encrypted=null,await h,!a.packets||!a.packets.length)throw u||Error("Decryption failed.");const l=new nu(a.packets);return a.packets=new jo,l}async decryptSessionKeys(e,t,r,n=new Date,i=R){let s,a=[];if(t){const e=this.packets.filterByTag(Q.packet.symEncryptedSessionKey);if(0===e.length)throw Error("No symmetrically encrypted session key packet found.");await Promise.all(t.map((async function(t,r){let n;n=r?await jo.fromBinary(e.write(),tu,i):e,await Promise.all(n.map((async function(e){try{await e.decrypt(t),a.push(e)}catch(e){M.printDebugError(e),e instanceof Da&&(s=e)}})))})))}else{if(!e)throw Error("No key or password specified.");{const t=this.packets.filterByTag(Q.packet.publicKeyEncryptedSessionKey);if(0===t.length)throw Error("No public key encrypted session key packet found.");await Promise.all(t.map((async function(t){await Promise.all(e.map((async function(e){let o;try{o=(await e.getDecryptionKeys(t.publicKeyID,null,void 0,i)).map((e=>e.keyPacket))}catch(e){return void(s=e)}let c=[Q.symmetric.aes256,Q.symmetric.aes128,Q.symmetric.tripledes,Q.symmetric.cast5];try{const t=await e.getPrimarySelfSignature(n,void 0,i);t.preferredSymmetricAlgorithms&&(c=c.concat(t.preferredSymmetricAlgorithms))}catch(e){}await Promise.all(o.map((async function(e){if(!e.isDecrypted())throw Error("Decryption key is not decrypted.");if(i.constantTimePKCS1Decryption&&(t.publicKeyAlgorithm===Q.publicKey.rsaEncrypt||t.publicKeyAlgorithm===Q.publicKey.rsaEncryptSign||t.publicKeyAlgorithm===Q.publicKey.rsaSign||t.publicKeyAlgorithm===Q.publicKey.elgamal)){const n=t.write();await Promise.all((r?[r]:Array.from(i.constantTimePKCS1DecryptionSupportedSymmetricAlgorithms)).map((async t=>{const r=new ac;r.read(n);const i={sessionKeyAlgorithm:t,sessionKey:Ia(t)};try{await r.decrypt(e,i),a.push(r)}catch(e){M.printDebugError(e),s=e}})))}else try{await t.decrypt(e);const n=r||t.sessionKeyAlgorithm;if(n&&!c.includes(Q.write(Q.symmetric,n)))throw Error("A non-preferred symmetric algorithm was used.");a.push(t)}catch(e){M.printDebugError(e),s=e}})))}))),C(t.encrypted),t.encrypted=null})))}}if(a.length>0){if(a.length>1){const e=new Set;a=a.filter((t=>{const r=t.sessionKeyAlgorithm+M.uint8ArrayToString(t.sessionKey);return!e.has(r)&&(e.add(r),!0)}))}return a.map((e=>({data:e.sessionKey,algorithm:e.sessionKeyAlgorithm&&Q.read(Q.symmetric,e.sessionKeyAlgorithm)})))}throw s||Error("Session key decryption failed.")}getLiteralData(){const e=this.unwrapCompressed().packets.findPacket(Q.packet.literalData);return e&&e.getBytes()||null}getFilename(){const e=this.unwrapCompressed().packets.findPacket(Q.packet.literalData);return e&&e.getFilename()||null}getText(){const e=this.unwrapCompressed().packets.findPacket(Q.packet.literalData);return e?e.getText():null}static async generateSessionKey(e=[],t=new Date,r=[],n=R){const{symmetricAlgo:i,aeadAlgo:s}=await async function(e=[],t=new Date,r=[],n=R){const i=await Promise.all(e.map(((e,i)=>e.getPrimarySelfSignature(t,r[i],n))));if(e.length?!n.ignoreSEIPDv2FeatureFlag&&i.every((e=>e.features&&e.features[0]&Q.features.seipdv2)):n.aeadProtect){const e={symmetricAlgo:Q.symmetric.aes128,aeadAlgo:Q.aead.ocb},t=[{symmetricAlgo:n.preferredSymmetricAlgorithm,aeadAlgo:n.preferredAEADAlgorithm},{symmetricAlgo:n.preferredSymmetricAlgorithm,aeadAlgo:Q.aead.ocb},{symmetricAlgo:Q.symmetric.aes128,aeadAlgo:n.preferredAEADAlgorithm}];for(const e of t)if(i.every((t=>t.preferredCipherSuites&&t.preferredCipherSuites.some((t=>t[0]===e.symmetricAlgo&&t[1]===e.aeadAlgo)))))return e;return e}const s=Q.symmetric.aes128,a=n.preferredSymmetricAlgorithm;return{symmetricAlgo:i.every((e=>e.preferredSymmetricAlgorithms&&e.preferredSymmetricAlgorithms.includes(a)))?a:s,aeadAlgo:void 0}}(e,t,r,n),a=Q.read(Q.symmetric,i),o=s?Q.read(Q.aead,s):void 0;await Promise.all(e.map((e=>e.getEncryptionKey().catch((()=>null)).then((e=>{if(e&&(e.keyPacket.algorithm===Q.publicKey.x25519||e.keyPacket.algorithm===Q.publicKey.x448)&&!o&&!M.isAES(i))throw Error("Could not generate a session key compatible with the given `encryptionKeys`: X22519 and X448 keys can only be used to encrypt AES session keys; change `config.preferredSymmetricAlgorithm` accordingly.")})))));return{data:Ia(i),algorithm:a,aeadAlgorithm:o}}async encrypt(e,t,r,n=!1,i=[],s=new Date,a=[],o=R){if(r){if(!M.isUint8Array(r.data)||!M.isString(r.algorithm))throw Error("Invalid session key for encryption.")}else if(e&&e.length)r=await nu.generateSessionKey(e,s,a,o);else{if(!t||!t.length)throw Error("No keys, passwords, or session key provided.");r=await nu.generateSessionKey(void 0,void 0,void 0,o)}const{data:c,algorithm:u,aeadAlgorithm:h}=r,l=await nu.encryptSessionKey(c,u,h,e,t,n,i,s,a,o),y=tc.fromObject({version:h?2:1,aeadAlgorithm:h?Q.write(Q.aead,h):null});y.packets=this.packets;const f=Q.write(Q.symmetric,u);return await y.encrypt(f,c,o),l.packets.push(y),y.packets=new jo,l}static async encryptSessionKey(e,t,r,n,i,s=!1,a=[],o=new Date,c=[],u=R){const h=new jo,l=Q.write(Q.symmetric,t),y=r&&Q.write(Q.aead,r);if(n){const t=await Promise.all(n.map((async function(t,r){const n=await t.getEncryptionKey(a[r],o,c,u),i=ac.fromObject({version:y?6:3,encryptionKeyPacket:n.keyPacket,anonymousRecipient:s,sessionKey:e,sessionKeyAlgorithm:l});return await i.encrypt(n.keyPacket),delete i.sessionKey,i})));h.push(...t)}if(i){const t=async function(e,t){try{return await e.decrypt(t),1}catch(e){return 0}},r=(e,t)=>e+t,n=async function(e,s,a,o){const c=new cc(u);if(c.sessionKey=e,c.sessionKeyAlgorithm=s,a&&(c.aeadAlgorithm=a),await c.encrypt(o,u),u.passwordCollisionCheck){if(1!==(await Promise.all(i.map((e=>t(c,e))))).reduce(r))return n(e,s,o)}return delete c.sessionKey,c},s=await Promise.all(i.map((t=>n(e,l,y,t))));h.push(...s)}return new nu(h)}async sign(e=[],t=[],r=null,n=[],i=new Date,s=[],a=[],o=[],c=R){const u=new jo,h=this.packets.findPacket(Q.packet.literalData);if(!h)throw Error("No literal data packet to sign.");const l=await iu(h,e,t,r,n,i,s,a,o,!1,c),y=l.map(((e,t)=>_o.fromSignaturePacket(e,0===t))).reverse();return u.push(...y),u.push(h),u.push(...l),new nu(u)}compress(e,t=R){if(e===Q.compression.uncompressed)return this;const r=new Yo(t);r.algorithm=e,r.packets=this.packets;const n=new jo;return n.push(r),new nu(n)}async signDetached(e=[],t=[],r=null,n=[],i=[],s=new Date,a=[],o=[],c=R){const u=this.packets.findPacket(Q.packet.literalData);if(!u)throw Error("No literal data packet to sign.");return new Ec(await iu(u,e,t,r,n,i,s,a,o,!0,c))}async verify(e,t=new Date,r=R){const n=this.unwrapCompressed(),i=n.packets.filterByTag(Q.packet.literalData);if(1!==i.length)throw Error("Can only verify message with one literal data packet.");a(n.packets.stream)&&n.packets.push(...await K(n.packets.stream,(e=>e||[])));const s=n.packets.filterByTag(Q.packet.onePassSignature).reverse(),o=n.packets.filterByTag(Q.packet.signature);return s.length&&!o.length&&M.isStream(n.packets.stream)&&!a(n.packets.stream)?(await Promise.all(s.map((async e=>{e.correspondingSig=new Promise(((t,r)=>{e.correspondingSigResolve=t,e.correspondingSigReject=r})),e.signatureData=U((async()=>(await e.correspondingSig).signatureData)),e.hashed=K(await e.hash(e.signatureType,i[0],void 0,!1)),e.hashed.catch((()=>{}))}))),n.packets.stream=k(n.packets.stream,(async(e,t)=>{const r=P(e),n=D(t);try{for(let e=0;e<s.length;e++){const{value:t}=await r.read();s[e].correspondingSigResolve(t)}await r.readToEnd(),await n.ready,await n.close()}catch(e){s.forEach((t=>{t.correspondingSigReject(e)})),await n.abort(e)}})),su(s,i,e,t,!1,r)):su(o,i,e,t,!1,r)}verifyDetached(e,t,r=new Date,n=R){const i=this.unwrapCompressed().packets.filterByTag(Q.packet.literalData);if(1!==i.length)throw Error("Can only verify message with one literal data packet.");return su(e.packets.filterByTag(Q.packet.signature),i,t,r,!0,n)}unwrapCompressed(){const e=this.packets.filterByTag(Q.packet.compressedData);return e.length?new nu(e[0].packets):this}async appendSignature(e,t=R){await this.packets.read(M.isUint8Array(e)?e:(await J(e)).data,ru,t)}write(){return this.packets.write()}armor(e=R){const t=this.packets[this.packets.length-1],r=t.constructor.tag===tc.tag?2!==t.version:this.packets.some((e=>e.constructor.tag===Fo.tag&&6!==e.version));return X(Q.armor.message,this.write(),null,null,null,r,e)}}async function iu(e,t,r=[],n=null,i=[],s=new Date,a=[],o=[],c=[],u=!1,h=R){const l=new jo,y=null===e.text?Q.signature.binary:Q.signature.text;if(await Promise.all(t.map((async(t,n)=>{const l=a[n];if(!t.isPrivate())throw Error("Need private key for signing");const f=await t.getSigningKey(i[n],s,l,h);return Pc(e,r.length?r:[t],f.keyPacket,{signatureType:y},s,o,c,u,h)}))).then((e=>{l.push(...e)})),n){const e=n.packets.filterByTag(Q.packet.signature);l.push(...e)}return l}async function su(e,t,r,n=new Date,i=!1,s=R){return Promise.all(e.filter((function(e){return["text","binary"].includes(Q.read(Q.signature,e.signatureType))})).map((async function(e){return async function(e,t,r,n=new Date,i=!1,s=R){let a,o;for(const t of r){const r=t.getKeys(e.issuerKeyID);if(r.length>0){a=t,o=r[0];break}}const c=e instanceof _o?e.correspondingSig:e,u={keyID:e.issuerKeyID,verified:(async()=>{if(!o)throw Error("Could not find signing key with key ID "+e.issuerKeyID.toHex());await e.verify(o.keyPacket,e.signatureType,t[0],n,i,s);const r=await c;if(o.getCreationTime()>r.created)throw Error("Key is newer than the signature");try{await a.getSigningKey(o.getKeyID(),r.created,void 0,s)}catch(e){if(!s.allowInsecureVerificationWithReformattedKeys||!e.message.match(/Signature creation time is in the future/))throw e;await a.getSigningKey(o.getKeyID(),n,void 0,s)}return!0})(),signature:(async()=>{const e=await c,t=new jo;return e&&t.push(e),new Ec(t)})()};return u.signature.catch((()=>{})),u.verified.catch((()=>{})),u}(e,t,r,n,i,s)})))}async function au({armoredMessage:e,binaryMessage:t,config:r,...n}){r={...R,...r};let i=e||t;if(!i)throw Error("readMessage: must pass options object containing `armoredMessage` or `binaryMessage`");if(e&&!M.isString(e)&&!M.isStream(e))throw Error("readMessage: options.armoredMessage must be a string or stream");if(t&&!M.isUint8Array(t)&&!M.isStream(t))throw Error("readMessage: options.binaryMessage must be a Uint8Array or stream");const s=Object.keys(n);if(s.length>0)throw Error("Unknown option: "+s.join(", "));const a=M.isStream(i);if(e){const{type:e,data:t}=await J(i);if(e!==Q.armor.message)throw Error("Armored text not of type message");i=t}const o=await jo.fromBinary(i,eu,r,Go({delayReporting:!1})),c=new nu(o);return c.fromStream=a,c}async function ou({text:e,binary:t,filename:r,date:n=new Date,format:i=(void 0!==e?"utf8":"binary"),...s}){const a=void 0!==e?e:t;if(void 0===a)throw Error("createMessage: must pass options object containing `text` or `binary`");if(e&&!M.isString(e)&&!M.isStream(e))throw Error("createMessage: options.text must be a string or stream");if(t&&!M.isUint8Array(t)&&!M.isStream(t))throw Error("createMessage: options.binary must be a Uint8Array or stream");const o=Object.keys(s);if(o.length>0)throw Error("Unknown option: "+o.join(", "));const c=M.isStream(a),u=new Qo(n);void 0!==e?u.setText(a,Q.write(Q.literal,i)):u.setBytes(a,Q.write(Q.literal,i)),void 0!==r&&u.setFilename(r);const h=new jo;h.push(u);const l=new nu(h);return l.fromStream=c,l}const cu=/*#__PURE__*/M.constructAllowedPackets([Fo]);class uu{constructor(e,t){if(this.text=M.removeTrailingSpaces(e).replace(/\r?\n/g,"\r\n"),t&&!(t instanceof Ec))throw Error("Invalid signature input");this.signature=t||new Ec(new jo)}getSigningKeyIDs(){const e=[];return this.signature.packets.forEach((function(t){e.push(t.issuerKeyID)})),e}async sign(e,t=[],r=null,n=[],i=new Date,s=[],a=[],o=[],c=R){const u=new Qo;u.setText(this.text);const h=new Ec(await iu(u,e,t,r,n,i,s,a,o,!0,c));return new uu(this.text,h)}verify(e,t=new Date,r=R){const n=this.signature.packets.filterByTag(Q.packet.signature),i=new Qo;return i.setText(this.text),su(n,[i],e,t,!0,r)}getText(){return this.text.replace(/\r\n/g,"\n")}armor(e=R){const t=this.signature.packets.some((e=>6!==e.version)),r={hash:t?Array.from(new Set(this.signature.packets.map((e=>Q.read(Q.hash,e.hashAlgorithm).toUpperCase())))).join():null,text:this.text,data:this.signature.packets.write()};return X(Q.armor.signed,r,void 0,void 0,void 0,t,e)}}async function hu({cleartextMessage:e,config:t,...r}){if(t={...R,...t},!e)throw Error("readCleartextMessage: must pass options object containing `cleartextMessage`");if(!M.isString(e))throw Error("readCleartextMessage: options.cleartextMessage must be a string");const n=Object.keys(r);if(n.length>0)throw Error("Unknown option: "+n.join(", "));const i=await J(e);if(i.type!==Q.armor.signed)throw Error("No cleartext signed message.");const s=await jo.fromBinary(i.data,cu,t);!function(e,t){const r=function(e){const r=e=>t=>e.hashAlgorithm===t;for(let n=0;n<t.length;n++)if(t[n].constructor.tag===Q.packet.signature&&!e.some(r(t[n])))return!1;return!0},n=[];if(e.forEach((e=>{const t=e.match(/^Hash: (.+)$/);if(!t)throw Error('Only "Hash" header allowed in cleartext signed message');{const e=t[1].replace(/\s/g,"").split(",").map((e=>{try{return Q.write(Q.hash,e.toLowerCase())}catch(t){throw Error("Unknown hash algorithm in armor header: "+e.toLowerCase())}}));n.push(...e)}})),n.length&&!r(n))throw Error("Hash algorithm mismatch in armor header and signature")}(i.headers,s);const a=new Ec(s);return new uu(i.text,a)}async function lu({text:e,...t}){if(!e)throw Error("createCleartextMessage: must pass options object containing `text`");if(!M.isString(e))throw Error("createCleartextMessage: options.text must be a string");const r=Object.keys(t);if(r.length>0)throw Error("Unknown option: "+r.join(", "));return new uu(e)}async function yu({userIDs:e=[],passphrase:t,type:r,curve:n,rsaBits:i=4096,symmetricHash:s="sha256",symmetricCipher:a="aes256",keyExpirationTime:o=0,date:c=new Date,subkeys:u=[{}],format:h="armored",config:l,...y}){Cu(l={...R,...l}),r||n?(r=r||"ecc",n=n||"curve25519Legacy"):(r=l.v6Keys?"curve25519":"ecc",n="curve25519Legacy"),e=Uu(e);const f=Object.keys(y);if(f.length>0)throw Error("Unknown option: "+f.join(", "));if(0===e.length&&!l.v6Keys)throw Error("UserIDs are required for V4 keys");if("rsa"===r&&i<l.minRSABits)throw Error(`rsaBits should be at least ${l.minRSABits}, got: ${i}`);const g={userIDs:e,passphrase:t,type:r,rsaBits:i,curve:n,keyExpirationTime:o,date:c,subkeys:u,symmetricHash:s,symmetricCipher:a};try{const{key:e,revocationCertificate:t}=await async function(e,t){e.sign=!0,(e=Rc(e)).subkeys=e.subkeys.map(((t,r)=>Rc(e.subkeys[r],e)));let r=[Sc(e,t)];r=r.concat(e.subkeys.map((e=>Bc(e,t))));const n=await Promise.all(r),i=await Zc(n[0],n.slice(1),e,t),s=await i.getRevocationCertificate(e.date,t);return i.revocationSignatures=[],{key:i,revocationCertificate:s}}(g,l);return e.getKeys().forEach((({keyPacket:e})=>Fc(e,l))),{privateKey:xu(e,h,l),publicKey:"symmetric"!==r?xu(e.toPublic(),h,l):null,revocationCertificate:t}}catch(e){throw M.wrapError("Error generating keypair",e)}}async function fu({privateKey:e,userIDs:t=[],passphrase:r,keyExpirationTime:n=0,date:i,format:s="armored",config:a,...o}){Cu(a={...R,...a}),t=Uu(t);const c=Object.keys(o);if(c.length>0)throw Error("Unknown option: "+c.join(", "));if(0===t.length&&6!==e.keyPacket.version)throw Error("UserIDs are required for V4 keys");const u={privateKey:e,userIDs:t,passphrase:r,keyExpirationTime:n,date:i};try{const{key:e,revocationCertificate:t}=await async function(e,t){e=o(e);const{privateKey:r}=e;if(!r.isPrivate())throw Error("Cannot reformat a public key");if(r.keyPacket.isDummy())throw Error("Cannot reformat a gnu-dummy primary key");if(!r.getKeys().every((({keyPacket:e})=>e.isDecrypted())))throw Error("Key is not decrypted");const n=r.keyPacket;e.subkeys||(e.subkeys=await Promise.all(r.subkeys.map((async e=>{const r=e.keyPacket,i={key:n,bind:r},s=await Ic(e.bindingSignatures,n,Q.signature.subkeyBinding,i,null,t).catch((()=>({})));return{sign:s.keyFlags&&s.keyFlags[0]&Q.keyFlags.signData,forwarding:s.keyFlags&&s.keyFlags[0]&Q.keyFlags.forwardedCommunication}}))));const i=r.subkeys.map((e=>e.keyPacket));if(e.subkeys.length!==i.length)throw Error("Number of subkey options does not match number of subkeys");e.subkeys=e.subkeys.map((t=>o(t,e)));const s=await Zc(n,i,e,t),a=await s.getRevocationCertificate(e.date,t);return s.revocationSignatures=[],{key:s,revocationCertificate:a};function o(e,t={}){return e.keyExpirationTime=e.keyExpirationTime||t.keyExpirationTime,e.passphrase=M.isString(e.passphrase)?e.passphrase:t.passphrase,e.date=e.date||t.date,e}}(u,a);return{privateKey:xu(e,s,a),publicKey:xu(e.toPublic(),s,a),revocationCertificate:t}}catch(e){throw M.wrapError("Error reformatting keypair",e)}}async function gu({key:e,revocationCertificate:t,reasonForRevocation:r,date:n=new Date,format:i="armored",config:s,...a}){Cu(s={...R,...s});const o=Object.keys(a);if(o.length>0)throw Error("Unknown option: "+o.join(", "));try{const a=t?await e.applyRevocationCertificate(t,n,s):await e.revoke(r,n,s);return a.isPrivate()?{privateKey:xu(a,i,s),publicKey:xu(a.toPublic(),i,s)}:{privateKey:null,publicKey:xu(a,i,s)}}catch(e){throw M.wrapError("Error revoking key",e)}}async function pu({privateKey:e,passphrase:t,config:r,...n}){Cu(r={...R,...r});const i=Object.keys(n);if(i.length>0)throw Error("Unknown option: "+i.join(", "));if(!e.isPrivate())throw Error("Cannot decrypt a public key");const s=e.clone(!0),a=M.isArray(t)?t:[t];try{return await Promise.all(s.getKeys().map((e=>M.anyPromise(a.map((t=>e.keyPacket.decrypt(t))))))),await s.validate(r),s}catch(e){throw s.clearPrivateParams(),M.wrapError("Error decrypting private key",e)}}async function du({privateKey:e,passphrase:t,config:r,...n}){Cu(r={...R,...r});const i=Object.keys(n);if(i.length>0)throw Error("Unknown option: "+i.join(", "));if(!e.isPrivate())throw Error("Cannot encrypt a public key");const s=e.clone(!0),a=s.getKeys(),o=M.isArray(t)?t:Array(a.length).fill(t);if(o.length!==a.length)throw Error("Invalid number of passphrases given for key encryption");try{return await Promise.all(a.map((async(e,t)=>{const{keyPacket:n}=e;await n.encrypt(o[t],r),n.clearPrivateParams()}))),s}catch(e){throw s.clearPrivateParams(),M.wrapError("Error encrypting private key",e)}}async function Au({message:e,encryptionKeys:t,signingKeys:r,passwords:n,sessionKey:i,format:s="armored",signature:a=null,wildcard:o=!1,signingKeyIDs:c=[],encryptionKeyIDs:u=[],date:h=new Date,signingUserIDs:l=[],encryptionUserIDs:y=[],signatureNotations:f=[],config:g,...p}){if(Cu(g={...R,...g}),Bu(e),Iu(s),t=Uu(t),r=Uu(r),n=Uu(n),c=Uu(c),u=Uu(u),l=Uu(l),y=Uu(y),f=Uu(f),p.detached)throw Error("The `detached` option has been removed from openpgp.encrypt, separately call openpgp.sign instead. Don't forget to remove the `privateKeys` option as well.");if(p.publicKeys)throw Error("The `publicKeys` option has been removed from openpgp.encrypt, pass `encryptionKeys` instead");if(p.privateKeys)throw Error("The `privateKeys` option has been removed from openpgp.encrypt, pass `signingKeys` instead");if(void 0!==p.armor)throw Error("The `armor` option has been removed from openpgp.encrypt, pass `format` instead.");const d=Object.keys(p);if(d.length>0)throw Error("Unknown option: "+d.join(", "));r||(r=[]);try{if((r.length||a)&&(e=await e.sign(r,t,a,c,h,l,u,f,g)),e=e.compress(await async function(e=[],t=new Date,r=[],n=R){const i=Q.compression.uncompressed,s=n.preferredCompressionAlgorithm,a=await Promise.all(e.map((async function(e,i){const a=(await e.getPrimarySelfSignature(t,r[i],n)).preferredCompressionAlgorithms;return!!a&&a.indexOf(s)>=0})));return a.every(Boolean)?s:i}(t,h,y,g),g),e=await e.encrypt(t,n,i,o,u,h,y,g),"object"===s)return e;const p="armored"===s?e.armor(g):e.write();return await Pu(p)}catch(e){throw M.wrapError("Error encrypting message",e)}}async function wu({message:e,decryptionKeys:t,passwords:r,sessionKeys:n,verificationKeys:i,expectSigned:s=!1,format:a="utf8",signature:o=null,date:c=new Date,config:u,...h}){if(Cu(u={...R,...u}),Bu(e),i=Uu(i),t=Uu(t),r=Uu(r),n=Uu(n),h.privateKeys)throw Error("The `privateKeys` option has been removed from openpgp.decrypt, pass `decryptionKeys` instead");if(h.publicKeys)throw Error("The `publicKeys` option has been removed from openpgp.decrypt, pass `verificationKeys` instead");const l=Object.keys(h);if(l.length>0)throw Error("Unknown option: "+l.join(", "));try{const h=await e.decrypt(t,r,n,c,u);i||(i=[]);const l={};if(l.signatures=o?await h.verifyDetached(o,i,c,u):await h.verify(i,c,u),l.data="binary"===a?h.getLiteralData():h.getText(),l.filename=h.getFilename(),Du(l,e,...new Set([h,h.unwrapCompressed()])),s){if(0===i.length)throw Error("Verification keys are required to verify message signatures");if(0===l.signatures.length)throw Error("Message is not signed");l.data=d([l.data,U((async()=>(await M.anyPromise(l.signatures.map((e=>e.verified))),"binary"===a?new Uint8Array:"")))])}return l.data=await Pu(l.data),l}catch(e){throw M.wrapError("Error decrypting message",e)}}async function mu({message:e,signingKeys:t,recipientKeys:r=[],format:n="armored",detached:i=!1,signingKeyIDs:s=[],date:a=new Date,signingUserIDs:o=[],recipientUserIDs:c=[],signatureNotations:u=[],config:h,...l}){if(Cu(h={...R,...h}),Su(e),Iu(n),t=Uu(t),s=Uu(s),o=Uu(o),r=Uu(r),c=Uu(c),u=Uu(u),l.privateKeys)throw Error("The `privateKeys` option has been removed from openpgp.sign, pass `signingKeys` instead");if(void 0!==l.armor)throw Error("The `armor` option has been removed from openpgp.sign, pass `format` instead.");const y=Object.keys(l);if(y.length>0)throw Error("Unknown option: "+y.join(", "));if(e instanceof uu&&"binary"===n)throw Error("Cannot return signed cleartext message in binary format");if(e instanceof uu&&i)throw Error("Cannot detach-sign a cleartext message");if(!t||0===t.length)throw Error("No signing keys provided");try{let l;if(l=i?await e.signDetached(t,r,void 0,s,a,o,c,u,h):await e.sign(t,r,void 0,s,a,o,c,u,h),"object"===n)return l;return l="armored"===n?l.armor(h):l.write(),i&&(l=k(e.packets.write(),(async(e,t)=>{await Promise.all([A(l,t),K(e).catch((()=>{}))])}))),await Pu(l)}catch(e){throw M.wrapError("Error signing message",e)}}async function bu({message:e,verificationKeys:t,expectSigned:r=!1,format:n="utf8",signature:i=null,date:s=new Date,config:a,...o}){if(Cu(a={...R,...a}),Su(e),t=Uu(t),o.publicKeys)throw Error("The `publicKeys` option has been removed from openpgp.verify, pass `verificationKeys` instead");const c=Object.keys(o);if(c.length>0)throw Error("Unknown option: "+c.join(", "));if(e instanceof uu&&"binary"===n)throw Error("Can't return cleartext message data as binary");if(e instanceof uu&&i)throw Error("Can't verify detached cleartext signature");try{const o={};if(o.signatures=i?await e.verifyDetached(i,t,s,a):await e.verify(t,s,a),o.data="binary"===n?e.getLiteralData():e.getText(),e.fromStream&&!i&&Du(o,...new Set([e,e.unwrapCompressed()])),r){if(0===o.signatures.length)throw Error("Message is not signed");o.data=d([o.data,U((async()=>(await M.anyPromise(o.signatures.map((e=>e.verified))),"binary"===n?new Uint8Array:"")))])}return o.data=await Pu(o.data),o}catch(e){throw M.wrapError("Error verifying signed message",e)}}async function ku({encryptionKeys:e,date:t=new Date,encryptionUserIDs:r=[],config:n,...i}){if(Cu(n={...R,...n}),e=Uu(e),r=Uu(r),i.publicKeys)throw Error("The `publicKeys` option has been removed from openpgp.generateSessionKey, pass `encryptionKeys` instead");const s=Object.keys(i);if(s.length>0)throw Error("Unknown option: "+s.join(", "));try{return await nu.generateSessionKey(e,t,r,n)}catch(e){throw M.wrapError("Error generating session key",e)}}async function Eu({data:e,algorithm:t,aeadAlgorithm:r,encryptionKeys:n,passwords:i,format:s="armored",wildcard:a=!1,encryptionKeyIDs:o=[],date:c=new Date,encryptionUserIDs:u=[],config:h,...l}){if(Cu(h={...R,...h}),function(e){if(!M.isUint8Array(e))throw Error("Parameter [data] must be of type Uint8Array")}(e),function(e,t){if(!M.isString(e))throw Error("Parameter ["+t+"] must be of type String")}(t,"algorithm"),Iu(s),n=Uu(n),i=Uu(i),o=Uu(o),u=Uu(u),l.publicKeys)throw Error("The `publicKeys` option has been removed from openpgp.encryptSessionKey, pass `encryptionKeys` instead");const y=Object.keys(l);if(y.length>0)throw Error("Unknown option: "+y.join(", "));if(!(n&&0!==n.length||i&&0!==i.length))throw Error("No encryption keys or passwords provided.");try{return xu(await nu.encryptSessionKey(e,t,r,n,i,a,o,c,u,h),s,h)}catch(e){throw M.wrapError("Error encrypting session key",e)}}async function vu({message:e,decryptionKeys:t,passwords:r,date:n=new Date,config:i,...s}){if(Cu(i={...R,...i}),Bu(e),t=Uu(t),r=Uu(r),s.privateKeys)throw Error("The `privateKeys` option has been removed from openpgp.decryptSessionKeys, pass `decryptionKeys` instead");const a=Object.keys(s);if(a.length>0)throw Error("Unknown option: "+a.join(", "));try{return await e.decryptSessionKeys(t,r,void 0,n,i)}catch(e){throw M.wrapError("Error decrypting session keys",e)}}function Bu(e){if(!(e instanceof nu))throw Error("Parameter [message] needs to be of type Message")}function Su(e){if(!(e instanceof uu||e instanceof nu))throw Error("Parameter [message] needs to be of type Message or CleartextMessage")}function Iu(e){if("armored"!==e&&"binary"!==e&&"object"!==e)throw Error("Unsupported format "+e)}const Ku=Object.keys(R).length;function Cu(e){const t=Object.keys(e);if(t.length!==Ku)for(const e of t)if(void 0===R[e])throw Error("Unknown config property: "+e)}function Uu(e){return e&&!M.isArray(e)&&(e=[e]),e}async function Pu(e){return"array"===M.isStream(e)?K(e):e}function Du(e,t,...r){e.data=k(t.packets.stream,(async(t,n)=>{await A(e.data,n,{preventClose:!0});const i=D(n);try{await K(t,(e=>e)),await Promise.all(r.map((e=>K(e.packets.stream,(e=>e))))),await i.close()}catch(e){await i.abort(e)}}))}function xu(e,t,r){switch(t){case"object":return e;case"armored":return e.armor(r);case"binary":return e.write();default:throw Error("Unsupported format "+t)}}function Qu(e){if(!Number.isSafeInteger(e)||e<0)throw Error("positive integer expected, got "+e)}function Ru(e,...t){if(!((r=e)instanceof Uint8Array||ArrayBuffer.isView(r)&&"Uint8Array"===r.constructor.name))throw Error("Uint8Array expected");var r;if(t.length>0&&!t.includes(e.length))throw Error("Uint8Array expected of length "+t+", got length="+e.length)}function Tu(e,t=!0){if(e.destroyed)throw Error("Hash instance has been destroyed");if(t&&e.finished)throw Error("Hash#digest() has already been called")}function Mu(e,t){Ru(e);const r=t.outputLen;if(e.length<r)throw Error("digestInto() expects output buffer of length at least "+r)}const Lu="object"==typeof e&&"crypto"in e?e.crypto:void 0,Fu=e=>new Uint32Array(e.buffer,e.byteOffset,Math.floor(e.byteLength/4)),Nu=e=>new DataView(e.buffer,e.byteOffset,e.byteLength),Ou=(e,t)=>e<<32-t|e>>>t,_u=(e,t)=>e<<t|e>>>32-t>>>0,Hu=/* @__PURE__ */(()=>68===new Uint8Array(new Uint32Array([287454020]).buffer)[0])();
 /*! noble-hashes - MIT License (c) 2022 Paul Miller (paulmillr.com) */function zu(e){for(let r=0;r<e.length;r++)e[r]=(t=e[r])<<24&4278190080|t<<8&16711680|t>>>8&65280|t>>>24&255;var t}function Gu(e){if("string"!=typeof e)throw Error("utf8ToBytes expected string, got "+typeof e);return new Uint8Array((new TextEncoder).encode(e))}function qu(e){return"string"==typeof e&&(e=Gu(e)),Ru(e),e}function ju(...e){let t=0;for(let r=0;r<e.length;r++){const n=e[r];Ru(n),t+=n.length}const r=new Uint8Array(t);for(let t=0,n=0;t<e.length;t++){const i=e[t];r.set(i,n),n+=i.length}return r}class Vu{clone(){return this._cloneInto()}}function Yu(e){const t=t=>e().update(qu(t)).digest(),r=e();return t.outputLen=r.outputLen,t.blockLen=r.blockLen,t.create=()=>e(),t}function Zu(e=32){if(Lu&&"function"==typeof Lu.getRandomValues)return Lu.getRandomValues(new Uint8Array(e));if(Lu&&"function"==typeof Lu.randomBytes)return Lu.randomBytes(e);throw Error("crypto.getRandomValues must be defined")}const Wu=(e,t,r)=>e&t^~e&r,Ju=(e,t,r)=>e&t^e&r^t&r;class Xu extends Vu{constructor(e,t,r,n){super(),this.blockLen=e,this.outputLen=t,this.padOffset=r,this.isLE=n,this.finished=!1,this.length=0,this.pos=0,this.destroyed=!1,this.buffer=new Uint8Array(e),this.view=Nu(this.buffer)}update(e){Tu(this);const{view:t,buffer:r,blockLen:n}=this,i=(e=qu(e)).length;for(let s=0;s<i;){const a=Math.min(n-this.pos,i-s);if(a!==n)r.set(e.subarray(s,s+a),this.pos),this.pos+=a,s+=a,this.pos===n&&(this.process(t,0),this.pos=0);else{const t=Nu(e);for(;n<=i-s;s+=n)this.process(t,s)}}return this.length+=e.length,this.roundClean(),this}digestInto(e){Tu(this),Mu(e,this),this.finished=!0;const{buffer:t,view:r,blockLen:n,isLE:i}=this;let{pos:s}=this;t[s++]=128,this.buffer.subarray(s).fill(0),this.padOffset>n-s&&(this.process(r,0),s=0);for(let e=s;e<n;e++)t[e]=0;!function(e,t,r,n){if("function"==typeof e.setBigUint64)return e.setBigUint64(t,r,n);const i=BigInt(32),s=BigInt(4294967295),a=Number(r>>i&s),o=Number(r&s),c=n?4:0,u=n?0:4;e.setUint32(t+c,a,n),e.setUint32(t+u,o,n)}(r,n-8,BigInt(8*this.length),i),this.process(r,0);const a=Nu(e),o=this.outputLen;if(o%4)throw Error("_sha2: outputLen should be aligned to 32bit");const c=o/4,u=this.get();if(c>u.length)throw Error("_sha2: outputLen bigger than state");for(let e=0;e<c;e++)a.setUint32(4*e,u[e],i)}digest(){const{buffer:e,outputLen:t}=this;this.digestInto(e);const r=e.slice(0,t);return this.destroy(),r}_cloneInto(e){e||(e=new this.constructor),e.set(...this.get());const{blockLen:t,buffer:r,length:n,finished:i,destroyed:s,pos:a}=this;return e.length=n,e.pos=a,e.finished=i,e.destroyed=s,n%t&&e.buffer.set(r),e}}const $u=/* @__PURE__ */new Uint32Array([1116352408,1899447441,3049323471,3921009573,961987163,1508970993,2453635748,2870763221,3624381080,310598401,607225278,1426881987,1925078388,2162078206,2614888103,3248222580,3835390401,4022224774,264347078,604807628,770255983,1249150122,1555081692,1996064986,2554220882,2821834349,2952996808,3210313671,3336571891,3584528711,113926993,338241895,666307205,773529912,1294757372,1396182291,1695183700,1986661051,2177026350,2456956037,2730485921,2820302411,3259730800,3345764771,3516065817,3600352804,4094571909,275423344,430227734,506948616,659060556,883997877,958139571,1322822218,1537002063,1747873779,1955562222,2024104815,2227730452,2361852424,2428436474,2756734187,3204031479,3329325298]),eh=/* @__PURE__ */new Uint32Array([1779033703,3144134277,1013904242,2773480762,1359893119,2600822924,528734635,1541459225]),th=/* @__PURE__ */new Uint32Array(64);class rh extends Xu{constructor(){super(64,32,8,!1),this.A=0|eh[0],this.B=0|eh[1],this.C=0|eh[2],this.D=0|eh[3],this.E=0|eh[4],this.F=0|eh[5],this.G=0|eh[6],this.H=0|eh[7]}get(){const{A:e,B:t,C:r,D:n,E:i,F:s,G:a,H:o}=this;return[e,t,r,n,i,s,a,o]}set(e,t,r,n,i,s,a,o){this.A=0|e,this.B=0|t,this.C=0|r,this.D=0|n,this.E=0|i,this.F=0|s,this.G=0|a,this.H=0|o}process(e,t){for(let r=0;r<16;r++,t+=4)th[r]=e.getUint32(t,!1);for(let e=16;e<64;e++){const t=th[e-15],r=th[e-2],n=Ou(t,7)^Ou(t,18)^t>>>3,i=Ou(r,17)^Ou(r,19)^r>>>10;th[e]=i+th[e-7]+n+th[e-16]|0}let{A:r,B:n,C:i,D:s,E:a,F:o,G:c,H:u}=this;for(let e=0;e<64;e++){const t=u+(Ou(a,6)^Ou(a,11)^Ou(a,25))+Wu(a,o,c)+$u[e]+th[e]|0,h=(Ou(r,2)^Ou(r,13)^Ou(r,22))+Ju(r,n,i)|0;u=c,c=o,o=a,a=s+t|0,s=i,i=n,n=r,r=t+h|0}r=r+this.A|0,n=n+this.B|0,i=i+this.C|0,s=s+this.D|0,a=a+this.E|0,o=o+this.F|0,c=c+this.G|0,u=u+this.H|0,this.set(r,n,i,s,a,o,c,u)}roundClean(){th.fill(0)}destroy(){this.set(0,0,0,0,0,0,0,0),this.buffer.fill(0)}}class nh extends rh{constructor(){super(),this.A=-1056596264,this.B=914150663,this.C=812702999,this.D=-150054599,this.E=-4191439,this.F=1750603025,this.G=1694076839,this.H=-1090891868,this.outputLen=28}}const ih=/* @__PURE__ */Yu((()=>new rh)),sh=/* @__PURE__ */Yu((()=>new nh));class ah extends Vu{constructor(e,t){super(),this.finished=!1,this.destroyed=!1,function(e){if("function"!=typeof e||"function"!=typeof e.create)throw Error("Hash should be wrapped by utils.wrapConstructor");Qu(e.outputLen),Qu(e.blockLen)}(e);const r=qu(t);if(this.iHash=e.create(),"function"!=typeof this.iHash.update)throw Error("Expected instance of class which extends utils.Hash");this.blockLen=this.iHash.blockLen,this.outputLen=this.iHash.outputLen;const n=this.blockLen,i=new Uint8Array(n);i.set(r.length>n?e.create().update(r).digest():r);for(let e=0;e<i.length;e++)i[e]^=54;this.iHash.update(i),this.oHash=e.create();for(let e=0;e<i.length;e++)i[e]^=106;this.oHash.update(i),i.fill(0)}update(e){return Tu(this),this.iHash.update(e),this}digestInto(e){Tu(this),Ru(e,this.outputLen),this.finished=!0,this.iHash.digestInto(e),this.oHash.update(e),this.oHash.digestInto(e),this.destroy()}digest(){const e=new Uint8Array(this.oHash.outputLen);return this.digestInto(e),e}_cloneInto(e){e||(e=Object.create(Object.getPrototypeOf(this),{}));const{oHash:t,iHash:r,finished:n,destroyed:i,blockLen:s,outputLen:a}=this;return e.finished=n,e.destroyed=i,e.blockLen=s,e.outputLen=a,e.oHash=t._cloneInto(e.oHash),e.iHash=r._cloneInto(e.iHash),e}destroy(){this.destroyed=!0,this.oHash.destroy(),this.iHash.destroy()}}const oh=(e,t,r)=>new ah(e,t).update(r).digest();oh.create=(e,t)=>new ah(e,t)