@sempdev/semp 0.5.2 → 0.5.5

package/dist/discovery/configuration.js.map

@@ -1 +1 @@
-{"version":3,"file":"configuration.js","sourceRoot":"","sources":["../../src/discovery/configuration.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;GAsBG;AAEH,+DAA+D;AAC/D,MAAM,CAAC,MAAM,aAAa,GAAG,iCAAiC,CAAC;AAE/D,qCAAqC;AACrC,MAAM,CAAC,MAAM,iBAAiB,GAAG,oBAAoB,CAAC;AAEtD;;;;;GAKG;AACH,MAAM,CAAC,MAAM,iBAAiB,GAAG,EAAE,GAAG,IAAI,CAAC;AAsD3C;;;;;;;;GAQG;AACH,MAAM,UAAU,kBAAkB,CAAC,KAAc;IAC/C,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;QACrB,MAAM,IAAI,KAAK,CAAC,kCAAkC,CAAC,CAAC;IACtD,CAAC;IACD,IAAI,KAAK,CAAC,IAAI,KAAK,iBAAiB,EAAE,CAAC;QACrC,MAAM,IAAI,KAAK,CACb,uBAAuB,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,IAAI,CAAC,UAAU,iBAAiB,EAAE,CAC/E,CAAC;IACJ,CAAC;IACD,aAAa,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;IAChC,aAAa,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;IAC/B,UAAU,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC;IAC9B,UAAU,CAAC,KAAK,EAAE,aAAa,CAAC,CAAC;IAEjC,MAAM,SAAS,GAAG,aAAa,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;IACpD,MAAM,MAAM,GAAG,mBAAmB,CAAC,SAAS,EAAE,kBAAkB,CAAC,CAAC;IAClE,MAAM,UAAU,GAAG,mBAAmB,CAAC,SAAS,EAAE,sBAAsB,CAAC,CAAC;IAC1E,IAAI,OAAO,MAAM,CAAC,EAAE,KAAK,QAAQ,IAAI,MAAM,CAAC,EAAE,KAAK,EAAE,EAAE,CAAC;QACtD,MAAM,IAAI,KAAK,CAAC,iEAAiE,CAAC,CAAC;IACrF,CAAC;IACD,IAAI,OAAO,UAAU,CAAC,EAAE,KAAK,QAAQ,IAAI,UAAU,CAAC,EAAE,KAAK,EAAE,EAAE,CAAC;QAC9D,MAAM,IAAI,KAAK,CAAC,qEAAqE,CAAC,CAAC;IACzF,CAAC;IACD,aAAa,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;IACrC,aAAa,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;IACjC,aAAa,CAAC,SAAS,EAAE,aAAa,CAAC,CAAC;IAExC,MAAM,MAAM,GAAG,kBAAkB,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;IACnD,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,0BAA0B,CAAC,EAAE,CAAC;QACjD,MAAM,IAAI,KAAK,CACb,6EAA6E,CAC9E,CAAC;IACJ,CAAC;IAED,MAAM,MAAM,GAAG,aAAa,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;IAC9C,UAAU,CAAC,MAAM,EAAE,mBAAmB,CAAC,CAAC;IAExC,kCAAkC;IAClC,IAAI,KAAK,CAAC,UAAU,KAAK,SAAS,EAAE,CAAC;QACnC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,EAAE,CAAC;YACrC,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;QAC7D,CAAC;QACD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACjD,MAAM,GAAG,GAAG,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC;YAChC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;gBACnB,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,kBAAkB,CAAC,CAAC;YACpE,CAAC;YACD,IAAI,OAAO,GAAG,CAAC,EAAE,KAAK,QAAQ,IAAI,GAAG,CAAC,EAAE,KAAK,EAAE,EAAE,CAAC;gBAChD,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,cAAc,CAAC,CAAC;YAChE,CAAC;YACD,IAAI,OAAO,GAAG,CAAC,QAAQ,KAAK,SAAS,EAAE,CAAC;gBACtC,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,4BAA4B,CAAC,CAAC;YAC9E,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,KAAiC,CAAC;AAC3C,CAAC;AAED,8EAA8E;AAC9E,0DAA0D;AAE1D,MAAM,UAAU,QAAQ,CAAC,CAAU;IACjC,OAAO,OAAO,CAAC,KAAK,QAAQ,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;AAClE,CAAC;AAED,MAAM,UAAU,aAAa,CAAC,GAA4B,EAAE,GAAW;IACrE,MAAM,CAAC,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC;IACnB,IAAI,OAAO,CAAC,KAAK,QAAQ,IAAI,CAAC,KAAK,EAAE,EAAE,CAAC;QACtC,MAAM,IAAI,KAAK,CAAC,kBAAkB,GAAG,qCAAqC,CAAC,CAAC;IAC9E,CAAC;IACD,OAAO,CAAC,CAAC;AACX,CAAC;AAED,MAAM,UAAU,UAAU,CAAC,GAA4B,EAAE,GAAW;IAClE,MAAM,CAAC,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC;IACnB,IAAI,OAAO,CAAC,KAAK,QAAQ,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC;QAClD,MAAM,IAAI,KAAK,CAAC,kBAAkB,GAAG,6BAA6B,CAAC,CAAC;IACtE,CAAC;IACD,OAAO,CAAC,CAAC;AACX,CAAC;AAED,MAAM,UAAU,aAAa,CAC3B,GAA4B,EAC5B,GAAW;IAEX,MAAM,CAAC,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC;IACnB,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,kBAAkB,GAAG,4BAA4B,CAAC,CAAC;IACrE,CAAC;IACD,OAAO,CAAC,CAAC;AACX,CAAC;AAED,MAAM,UAAU,kBAAkB,CAChC,GAA4B,EAC5B,GAAW;IAEX,MAAM,CAAC,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC;IACnB,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,CAAC;QACtB,MAAM,IAAI,KAAK,CAAC,kBAAkB,GAAG,2BAA2B,CAAC,CAAC;IACpE,CAAC;IACD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAClC,IAAI,OAAO,CAAC,CAAC,CAAC,CAAC,KAAK,QAAQ,EAAE,CAAC;YAC7B,MAAM,IAAI,KAAK,CAAC,kBAAkB,GAAG,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAC/D,CAAC;IACH,CAAC;IACD,OAAO,CAAa,CAAC;AACvB,CAAC;AAED,SAAS,mBAAmB,CAC1B,GAA4B,EAC5B,GAAW;IAEX,gEAAgE;IAChE,qCAAqC;IACrC,MAAM,IAAI,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,IAAI,GAAG,CAAC;IACzC,MAAM,CAAC,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC;IACpB,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,kBAAkB,GAAG,4BAA4B,CAAC,CAAC;IACrE,CAAC;IACD,KAAK,MAAM,CAAC,CAAC,EAAE,GAAG,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,CAAC;QACzC,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,KAAK,EAAE,EAAE,CAAC;YAC1C,MAAM,IAAI,KAAK,CAAC,kBAAkB,GAAG,IAAI,CAAC,0BAA0B,CAAC,CAAC;QACxE,CAAC;IACH,CAAC;IACD,OAAO,CAAuB,CAAC;AACjC,CAAC"}
+{"version":3,"file":"configuration.js","sourceRoot":"","sources":["../../src/discovery/configuration.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;GAsBG;AAEH,+DAA+D;AAC/D,MAAM,CAAC,MAAM,aAAa,GAAG,iCAAiC,CAAC;AAE/D,qCAAqC;AACrC,MAAM,CAAC,MAAM,iBAAiB,GAAG,oBAAoB,CAAC;AAEtD;;;;;GAKG;AACH,MAAM,CAAC,MAAM,iBAAiB,GAAG,EAAE,GAAG,IAAI,CAAC;AA2E3C;;;;;;;;GAQG;AACH,MAAM,UAAU,kBAAkB,CAAC,KAAc;IAC/C,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;QACrB,MAAM,IAAI,KAAK,CAAC,kCAAkC,CAAC,CAAC;IACtD,CAAC;IACD,IAAI,KAAK,CAAC,IAAI,KAAK,iBAAiB,EAAE,CAAC;QACrC,MAAM,IAAI,KAAK,CACb,uBAAuB,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,IAAI,CAAC,UAAU,iBAAiB,EAAE,CAC/E,CAAC;IACJ,CAAC;IACD,aAAa,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;IAChC,aAAa,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;IAC/B,UAAU,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC;IAC9B,UAAU,CAAC,KAAK,EAAE,aAAa,CAAC,CAAC;IAEjC,MAAM,SAAS,GAAG,aAAa,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;IACpD,MAAM,MAAM,GAAG,mBAAmB,CAAC,SAAS,EAAE,kBAAkB,CAAC,CAAC;IAClE,MAAM,UAAU,GAAG,mBAAmB,CAAC,SAAS,EAAE,sBAAsB,CAAC,CAAC;IAC1E,IAAI,OAAO,MAAM,CAAC,EAAE,KAAK,QAAQ,IAAI,MAAM,CAAC,EAAE,KAAK,EAAE,EAAE,CAAC;QACtD,MAAM,IAAI,KAAK,CAAC,iEAAiE,CAAC,CAAC;IACrF,CAAC;IACD,IAAI,OAAO,UAAU,CAAC,EAAE,KAAK,QAAQ,IAAI,UAAU,CAAC,EAAE,KAAK,EAAE,EAAE,CAAC;QAC9D,MAAM,IAAI,KAAK,CAAC,qEAAqE,CAAC,CAAC;IACzF,CAAC;IACD,aAAa,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;IACrC,aAAa,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;IACjC,aAAa,CAAC,SAAS,EAAE,aAAa,CAAC,CAAC;IAExC,MAAM,MAAM,GAAG,kBAAkB,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;IACnD,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,0BAA0B,CAAC,EAAE,CAAC;QACjD,MAAM,IAAI,KAAK,CACb,6EAA6E,CAC9E,CAAC;IACJ,CAAC;IAED,MAAM,MAAM,GAAG,aAAa,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;IAC9C,UAAU,CAAC,MAAM,EAAE,mBAAmB,CAAC,CAAC;IAExC,kCAAkC;IAClC,IAAI,KAAK,CAAC,UAAU,KAAK,SAAS,EAAE,CAAC;QACnC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,EAAE,CAAC;YACrC,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;QAC7D,CAAC;QACD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACjD,MAAM,GAAG,GAAG,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC;YAChC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;gBACnB,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,kBAAkB,CAAC,CAAC;YACpE,CAAC;YACD,IAAI,OAAO,GAAG,CAAC,EAAE,KAAK,QAAQ,IAAI,GAAG,CAAC,EAAE,KAAK,EAAE,EAAE,CAAC;gBAChD,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,cAAc,CAAC,CAAC;YAChE,CAAC;YACD,IAAI,OAAO,GAAG,CAAC,QAAQ,KAAK,SAAS,EAAE,CAAC;gBACtC,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,4BAA4B,CAAC,CAAC;YAC9E,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,KAAiC,CAAC;AAC3C,CAAC;AAED,8EAA8E;AAC9E,0DAA0D;AAE1D,MAAM,UAAU,QAAQ,CAAC,CAAU;IACjC,OAAO,OAAO,CAAC,KAAK,QAAQ,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;AAClE,CAAC;AAED,MAAM,UAAU,aAAa,CAAC,GAA4B,EAAE,GAAW;IACrE,MAAM,CAAC,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC;IACnB,IAAI,OAAO,CAAC,KAAK,QAAQ,IAAI,CAAC,KAAK,EAAE,EAAE,CAAC;QACtC,MAAM,IAAI,KAAK,CAAC,kBAAkB,GAAG,qCAAqC,CAAC,CAAC;IAC9E,CAAC;IACD,OAAO,CAAC,CAAC;AACX,CAAC;AAED,MAAM,UAAU,UAAU,CAAC,GAA4B,EAAE,GAAW;IAClE,MAAM,CAAC,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC;IACnB,IAAI,OAAO,CAAC,KAAK,QAAQ,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC;QAClD,MAAM,IAAI,KAAK,CAAC,kBAAkB,GAAG,6BAA6B,CAAC,CAAC;IACtE,CAAC;IACD,OAAO,CAAC,CAAC;AACX,CAAC;AAED,MAAM,UAAU,aAAa,CAC3B,GAA4B,EAC5B,GAAW;IAEX,MAAM,CAAC,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC;IACnB,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,kBAAkB,GAAG,4BAA4B,CAAC,CAAC;IACrE,CAAC;IACD,OAAO,CAAC,CAAC;AACX,CAAC;AAED,MAAM,UAAU,kBAAkB,CAChC,GAA4B,EAC5B,GAAW;IAEX,MAAM,CAAC,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC;IACnB,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,CAAC;QACtB,MAAM,IAAI,KAAK,CAAC,kBAAkB,GAAG,2BAA2B,CAAC,CAAC;IACpE,CAAC;IACD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAClC,IAAI,OAAO,CAAC,CAAC,CAAC,CAAC,KAAK,QAAQ,EAAE,CAAC;YAC7B,MAAM,IAAI,KAAK,CAAC,kBAAkB,GAAG,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAC/D,CAAC;IACH,CAAC;IACD,OAAO,CAAa,CAAC;AACvB,CAAC;AAED,SAAS,mBAAmB,CAC1B,GAA4B,EAC5B,GAAW;IAEX,gEAAgE;IAChE,qCAAqC;IACrC,MAAM,IAAI,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,IAAI,GAAG,CAAC;IACzC,MAAM,CAAC,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC;IACpB,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,kBAAkB,GAAG,4BAA4B,CAAC,CAAC;IACrE,CAAC;IACD,KAAK,MAAM,CAAC,CAAC,EAAE,GAAG,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,CAAC;QACzC,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,KAAK,EAAE,EAAE,CAAC;YAC1C,MAAM,IAAI,KAAK,CAAC,kBAAkB,GAAG,IAAI,CAAC,0BAA0B,CAAC,CAAC;QACxE,CAAC;IACH,CAAC;IACD,OAAO,CAAuB,CAAC;AACjC,CAAC"}

package/dist/discovery/dns.d.ts

@@ -12,7 +12,12 @@
  * @module
  */
 import { type TXTCapabilities } from "./txt.js";
-/** A parsed _semp._tcp.<domain> SRV record per §2.1. */
+/**
+ * A parsed SEMP SRV record per §2.1. Returned by both
+ * {@link lookupSRV} (the standard `_semp._tcp.<domain>` record) and
+ * {@link lookupSRVUDP} (the optional `_semp._udp.<domain>` record
+ * that operators MAY publish to advertise a distinct QUIC target).
+ */
 export interface SRVRecord {
     priority: number;
     weight: number;
@@ -45,6 +50,27 @@ export declare function defaultDNSLookup(): Promise<DNSLookup>;
  * selection per RFC 2782 sort within a priority group themselves).
  */
 export declare function lookupSRV(domain: string, lookup?: DNSLookup): Promise<SRVRecord[]>;
+/**
+ * Look up the optional `_semp._udp.<domain>` SRV records per §2.1.
+ * Operators MAY publish this record when they want to advertise a
+ * distinct UDP target for QUIC (different host/port than the TCP
+ * target). Clients selecting QUIC MUST prefer it over the
+ * `_semp._tcp` target when present. When absent the QUIC endpoint
+ * defaults to the `_semp._tcp` target's host:port, which is the
+ * common case.
+ *
+ * Returns an empty array when no `_udp` record is published.
+ */
+export declare function lookupSRVUDP(domain: string, lookup?: DNSLookup): Promise<SRVRecord[]>;
+/**
+ * Resolve the SRV record a QUIC-capable client should use for
+ * `domain`. Prefers the optional `_semp._udp` record when present
+ * (operator-specified distinct UDP target). Otherwise falls back to
+ * the `_semp._tcp` target's host:port per DISCOVERY.md §2.1.
+ *
+ * Returns null when neither record exists.
+ */
+export declare function quicTarget(domain: string, lookup?: DNSLookup): Promise<SRVRecord | null>;
 /**
  * Look up `_semp._tcp.<domain>` TXT records and return the first
  * one whose `v=` parameter is `semp1`. Returns null when no SEMP

package/dist/discovery/dns.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"dns.d.ts","sourceRoot":"","sources":["../../src/discovery/dns.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EAAE,KAAK,eAAe,EAAwB,MAAM,UAAU,CAAC;AAEtE,wDAAwD;AACxD,MAAM,WAAW,SAAS;IACxB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,mCAAmC;AACnC,MAAM,WAAW,QAAQ;IACvB,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED;;;;GAIG;AACH,MAAM,WAAW,SAAS;IACxB,SAAS,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC;IAChD,SAAS,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;IAC7C,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,EAAE,CAAC,CAAC;CAC/C;AAED;;;GAGG;AACH,wBAAsB,gBAAgB,IAAI,OAAO,CAAC,SAAS,CAAC,CAqD3D;AAoBD;;;;GAIG;AACH,wBAAsB,SAAS,CAC7B,MAAM,EAAE,MAAM,EACd,MAAM,CAAC,EAAE,SAAS,GACjB,OAAO,CAAC,SAAS,EAAE,CAAC,CAKtB;AAED;;;;GAIG;AACH,wBAAsB,SAAS,CAC7B,MAAM,EAAE,MAAM,EACd,MAAM,CAAC,EAAE,SAAS,GACjB,OAAO,CAAC,eAAe,GAAG,IAAI,CAAC,CAWjC;AAED,uEAAuE;AACvE,wBAAsB,QAAQ,CAC5B,MAAM,EAAE,MAAM,EACd,MAAM,CAAC,EAAE,SAAS,GACjB,OAAO,CAAC,QAAQ,EAAE,CAAC,CAGrB"}
+{"version":3,"file":"dns.d.ts","sourceRoot":"","sources":["../../src/discovery/dns.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EAAE,KAAK,eAAe,EAAwB,MAAM,UAAU,CAAC;AAEtE;;;;;GAKG;AACH,MAAM,WAAW,SAAS;IACxB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,mCAAmC;AACnC,MAAM,WAAW,QAAQ;IACvB,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED;;;;GAIG;AACH,MAAM,WAAW,SAAS;IACxB,SAAS,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC;IAChD,SAAS,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;IAC7C,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,EAAE,CAAC,CAAC;CAC/C;AAED;;;GAGG;AACH,wBAAsB,gBAAgB,IAAI,OAAO,CAAC,SAAS,CAAC,CAqD3D;AAoBD;;;;GAIG;AACH,wBAAsB,SAAS,CAC7B,MAAM,EAAE,MAAM,EACd,MAAM,CAAC,EAAE,SAAS,GACjB,OAAO,CAAC,SAAS,EAAE,CAAC,CAKtB;AAED;;;;;;;;;;GAUG;AACH,wBAAsB,YAAY,CAChC,MAAM,EAAE,MAAM,EACd,MAAM,CAAC,EAAE,SAAS,GACjB,OAAO,CAAC,SAAS,EAAE,CAAC,CAKtB;AAED;;;;;;;GAOG;AACH,wBAAsB,UAAU,CAC9B,MAAM,EAAE,MAAM,EACd,MAAM,CAAC,EAAE,SAAS,GACjB,OAAO,CAAC,SAAS,GAAG,IAAI,CAAC,CAW3B;AAED;;;;GAIG;AACH,wBAAsB,SAAS,CAC7B,MAAM,EAAE,MAAM,EACd,MAAM,CAAC,EAAE,SAAS,GACjB,OAAO,CAAC,eAAe,GAAG,IAAI,CAAC,CAWjC;AAED,uEAAuE;AACvE,wBAAsB,QAAQ,CAC5B,MAAM,EAAE,MAAM,EACd,MAAM,CAAC,EAAE,SAAS,GACjB,OAAO,CAAC,QAAQ,EAAE,CAAC,CAGrB"}

package/dist/discovery/dns.js

@@ -95,6 +95,43 @@ export async function lookupSRV(domain, lookup) {
     const recs = await dns.lookupSRV(name);
     return [...recs].sort((a, b) => a.priority - b.priority);
 }
+/**
+ * Look up the optional `_semp._udp.<domain>` SRV records per §2.1.
+ * Operators MAY publish this record when they want to advertise a
+ * distinct UDP target for QUIC (different host/port than the TCP
+ * target). Clients selecting QUIC MUST prefer it over the
+ * `_semp._tcp` target when present. When absent the QUIC endpoint
+ * defaults to the `_semp._tcp` target's host:port, which is the
+ * common case.
+ *
+ * Returns an empty array when no `_udp` record is published.
+ */
+export async function lookupSRVUDP(domain, lookup) {
+    const dns = lookup ?? (await defaultDNSLookup());
+    const name = `_semp._udp.${domain}`;
+    const recs = await dns.lookupSRV(name);
+    return [...recs].sort((a, b) => a.priority - b.priority);
+}
+/**
+ * Resolve the SRV record a QUIC-capable client should use for
+ * `domain`. Prefers the optional `_semp._udp` record when present
+ * (operator-specified distinct UDP target). Otherwise falls back to
+ * the `_semp._tcp` target's host:port per DISCOVERY.md §2.1.
+ *
+ * Returns null when neither record exists.
+ */
+export async function quicTarget(domain, lookup) {
+    const dns = lookup ?? (await defaultDNSLookup());
+    const udp = await lookupSRVUDP(domain, dns);
+    if (udp.length > 0) {
+        return udp[0] ?? null;
+    }
+    const tcp = await lookupSRV(domain, dns);
+    if (tcp.length > 0) {
+        return tcp[0] ?? null;
+    }
+    return null;
+}
 /**
  * Look up `_semp._tcp.<domain>` TXT records and return the first
  * one whose `v=` parameter is `semp1`. Returns null when no SEMP

package/dist/discovery/dns.js.map

@@ -1 +1 @@
-{"version":3,"file":"dns.js","sourceRoot":"","sources":["../../src/discovery/dns.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EAAwB,oBAAoB,EAAE,MAAM,UAAU,CAAC;AA2BtE;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB;IACpC,IAAI,GAAuC,CAAC;IAC5C,IAAI,CAAC;QACH,GAAG,GAAG,MAAM,MAAM,CAAC,mBAAmB,CAAC,CAAC;IAC1C,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,KAAK,CACb,gGAAgG,CACjG,CAAC;IACJ,CAAC;IACD,OAAO;QACL,KAAK,CAAC,SAAS,CAAC,MAAc;YAC5B,IAAI,CAAC;gBACH,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;gBAC1C,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;oBACtB,QAAQ,EAAE,CAAC,CAAC,QAAQ;oBACpB,MAAM,EAAE,CAAC,CAAC,MAAM;oBAChB,IAAI,EAAE,CAAC,CAAC,IAAI;oBACZ,MAAM,EAAE,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC;iBAClC,CAAC,CAAC,CAAC;YACN,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,IAAI,QAAQ,CAAC,GAAG,CAAC,IAAI,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;oBACrC,OAAO,EAAE,CAAC;gBACZ,CAAC;gBACD,MAAM,GAAG,CAAC;YACZ,CAAC;QACH,CAAC;QACD,KAAK,CAAC,SAAS,CAAC,MAAc;YAC5B,IAAI,CAAC;gBACH,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;gBAC1C,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC;YAC7C,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,IAAI,QAAQ,CAAC,GAAG,CAAC,IAAI,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;oBACrC,OAAO,EAAE,CAAC;gBACZ,CAAC;gBACD,MAAM,GAAG,CAAC;YACZ,CAAC;QACH,CAAC;QACD,KAAK,CAAC,QAAQ,CAAC,MAAc;YAC3B,IAAI,CAAC;gBACH,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;gBACzC,MAAM,MAAM,GAAG,CAAC,GAAG,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,QAAQ,CAAC,CAAC;gBACjE,OAAO,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;oBACxB,UAAU,EAAE,CAAC,CAAC,QAAQ;oBACtB,QAAQ,EAAE,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC;iBACxC,CAAC,CAAC,CAAC;YACN,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,IAAI,QAAQ,CAAC,GAAG,CAAC,IAAI,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;oBACrC,OAAO,EAAE,CAAC;gBACZ,CAAC;gBACD,MAAM,GAAG,CAAC;YACZ,CAAC;QACH,CAAC;KACF,CAAC;AACJ,CAAC;AAED,SAAS,QAAQ,CAAC,GAAY;IAC5B,OAAO,CACL,GAAG,KAAK,IAAI;QACZ,OAAO,GAAG,KAAK,QAAQ;QACvB,MAAM,IAAI,GAAG;QACZ,GAAwB,CAAC,IAAI,KAAK,SAAS,CAC7C,CAAC;AACJ,CAAC;AAED,SAAS,UAAU,CAAC,GAAY;IAC9B,OAAO,CACL,GAAG,KAAK,IAAI;QACZ,OAAO,GAAG,KAAK,QAAQ;QACvB,MAAM,IAAI,GAAG;QACZ,GAAwB,CAAC,IAAI,KAAK,WAAW,CAC/C,CAAC;AACJ,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,MAAc,EACd,MAAkB;IAElB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,gBAAgB,EAAE,CAAC,CAAC;IACjD,MAAM,IAAI,GAAG,cAAc,MAAM,EAAE,CAAC;IACpC,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;IACvC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,QAAQ,CAAC,CAAC;AAC3D,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,MAAc,EACd,MAAkB;IAElB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,gBAAgB,EAAE,CAAC,CAAC;IACjD,MAAM,IAAI,GAAG,cAAc,MAAM,EAAE,CAAC;IACpC,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;IACvC,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,MAAM,GAAG,GAAG,oBAAoB,CAAC,GAAG,CAAC,CAAC;QACtC,IAAI,GAAG,CAAC,CAAC,KAAK,OAAO,EAAE,CAAC;YACtB,OAAO,GAAG,CAAC;QACb,CAAC;IACH,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,uEAAuE;AACvE,MAAM,CAAC,KAAK,UAAU,QAAQ,CAC5B,MAAc,EACd,MAAkB;IAElB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,gBAAgB,EAAE,CAAC,CAAC;IACjD,OAAO,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;AAC9B,CAAC"}
+{"version":3,"file":"dns.js","sourceRoot":"","sources":["../../src/discovery/dns.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EAAwB,oBAAoB,EAAE,MAAM,UAAU,CAAC;AAgCtE;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB;IACpC,IAAI,GAAuC,CAAC;IAC5C,IAAI,CAAC;QACH,GAAG,GAAG,MAAM,MAAM,CAAC,mBAAmB,CAAC,CAAC;IAC1C,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,KAAK,CACb,gGAAgG,CACjG,CAAC;IACJ,CAAC;IACD,OAAO;QACL,KAAK,CAAC,SAAS,CAAC,MAAc;YAC5B,IAAI,CAAC;gBACH,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;gBAC1C,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;oBACtB,QAAQ,EAAE,CAAC,CAAC,QAAQ;oBACpB,MAAM,EAAE,CAAC,CAAC,MAAM;oBAChB,IAAI,EAAE,CAAC,CAAC,IAAI;oBACZ,MAAM,EAAE,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC;iBAClC,CAAC,CAAC,CAAC;YACN,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,IAAI,QAAQ,CAAC,GAAG,CAAC,IAAI,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;oBACrC,OAAO,EAAE,CAAC;gBACZ,CAAC;gBACD,MAAM,GAAG,CAAC;YACZ,CAAC;QACH,CAAC;QACD,KAAK,CAAC,SAAS,CAAC,MAAc;YAC5B,IAAI,CAAC;gBACH,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;gBAC1C,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC;YAC7C,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,IAAI,QAAQ,CAAC,GAAG,CAAC,IAAI,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;oBACrC,OAAO,EAAE,CAAC;gBACZ,CAAC;gBACD,MAAM,GAAG,CAAC;YACZ,CAAC;QACH,CAAC;QACD,KAAK,CAAC,QAAQ,CAAC,MAAc;YAC3B,IAAI,CAAC;gBACH,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;gBACzC,MAAM,MAAM,GAAG,CAAC,GAAG,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,QAAQ,CAAC,CAAC;gBACjE,OAAO,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;oBACxB,UAAU,EAAE,CAAC,CAAC,QAAQ;oBACtB,QAAQ,EAAE,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC;iBACxC,CAAC,CAAC,CAAC;YACN,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,IAAI,QAAQ,CAAC,GAAG,CAAC,IAAI,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;oBACrC,OAAO,EAAE,CAAC;gBACZ,CAAC;gBACD,MAAM,GAAG,CAAC;YACZ,CAAC;QACH,CAAC;KACF,CAAC;AACJ,CAAC;AAED,SAAS,QAAQ,CAAC,GAAY;IAC5B,OAAO,CACL,GAAG,KAAK,IAAI;QACZ,OAAO,GAAG,KAAK,QAAQ;QACvB,MAAM,IAAI,GAAG;QACZ,GAAwB,CAAC,IAAI,KAAK,SAAS,CAC7C,CAAC;AACJ,CAAC;AAED,SAAS,UAAU,CAAC,GAAY;IAC9B,OAAO,CACL,GAAG,KAAK,IAAI;QACZ,OAAO,GAAG,KAAK,QAAQ;QACvB,MAAM,IAAI,GAAG;QACZ,GAAwB,CAAC,IAAI,KAAK,WAAW,CAC/C,CAAC;AACJ,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,MAAc,EACd,MAAkB;IAElB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,gBAAgB,EAAE,CAAC,CAAC;IACjD,MAAM,IAAI,GAAG,cAAc,MAAM,EAAE,CAAC;IACpC,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;IACvC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,QAAQ,CAAC,CAAC;AAC3D,CAAC;AAED;;;;;;;;;;GAUG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAChC,MAAc,EACd,MAAkB;IAElB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,gBAAgB,EAAE,CAAC,CAAC;IACjD,MAAM,IAAI,GAAG,cAAc,MAAM,EAAE,CAAC;IACpC,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;IACvC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,QAAQ,CAAC,CAAC;AAC3D,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,CAAC,KAAK,UAAU,UAAU,CAC9B,MAAc,EACd,MAAkB;IAElB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,gBAAgB,EAAE,CAAC,CAAC;IACjD,MAAM,GAAG,GAAG,MAAM,YAAY,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;IAC5C,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACnB,OAAO,GAAG,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC;IACxB,CAAC;IACD,MAAM,GAAG,GAAG,MAAM,SAAS,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;IACzC,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACnB,OAAO,GAAG,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC;IACxB,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,MAAc,EACd,MAAkB;IAElB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,gBAAgB,EAAE,CAAC,CAAC;IACjD,MAAM,IAAI,GAAG,cAAc,MAAM,EAAE,CAAC;IACpC,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;IACvC,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,MAAM,GAAG,GAAG,oBAAoB,CAAC,GAAG,CAAC,CAAC;QACtC,IAAI,GAAG,CAAC,CAAC,KAAK,OAAO,EAAE,CAAC;YACtB,OAAO,GAAG,CAAC;QACb,CAAC;IACH,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,uEAAuE;AACvE,MAAM,CAAC,KAAK,UAAU,QAAQ,CAC5B,MAAc,EACd,MAAkB;IAElB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,gBAAgB,EAAE,CAAC,CAAC;IACjD,OAAO,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;AAC9B,CAAC"}

package/dist/discovery/index.d.ts

@@ -8,10 +8,10 @@
  * @module
  */
 export { parseTXTCapabilities, type TXTCapabilities } from "./txt.js";
-export { type ConfigEndpoints, type ConfigExtension, type ConfigLimits, type Configuration, type TransportEndpoints, ConfigurationType, WellKnownMaxBytes, WellKnownPath, parseConfiguration, } from "./configuration.js";
+export { type ConfigEndpoints, type ConfigExtension, type ConfigLimits, type Configuration, type ReciprocityMode, type ReciprocityPolicy, type TransportEndpoints, ConfigurationType, WellKnownMaxBytes, WellKnownPath, parseConfiguration, } from "./configuration.js";
 export { type DomainKeys, type KeyBlock, DomainKeysMaxBytes, DomainKeysType, decodeKeyBlockPublic, parseDomainKeys, verifyDomainKeyFingerprint, } from "./domain_keys.js";
 export { type FetchLike, type FetchOptions, type ResolveServerOptions, type ResolvedServer, fetchConfiguration, fetchDomainKeys, resolveServer, wellKnownUrl, } from "./resolver.js";
-export { type DNSLookup, type MXRecord, type SRVRecord, defaultDNSLookup, lookupMX, lookupSRV, lookupTXT, } from "./dns.js";
+export { type DNSLookup, type MXRecord, type SRVRecord, defaultDNSLookup, lookupMX, lookupSRV, lookupSRVUDP, lookupTXT, quicTarget, } from "./dns.js";
 export { type DiscoveryCache, DefaultTTLLegacyMs, DefaultTTLNotFoundMs, DefaultTTLSEMPMs, InMemoryDiscoveryCache, } from "./cache.js";
 export { type DiscoveryRequest, type DiscoveryResponse, type DiscoveryResult, type DiscoverySignature, type DiscoveryStatus, DiscoveryMessageType, DiscoveryRecordVersion, DiscoverySignaturePrefix, DiscoveryStepRequest, DiscoveryStepResponse, signDiscoveryResponse, validateDiscoveryRequest, validateDiscoveryResponse, verifyDiscoveryResponse, } from "./lookup.js";
 export { OnionSuffix, OnionV3LabelLength, isOnionDomain, validateOnionDomain, } from "./onion.js";

package/dist/discovery/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/discovery/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,oBAAoB,EAAE,KAAK,eAAe,EAAE,MAAM,UAAU,CAAC;AAEtE,OAAO,EACL,KAAK,eAAe,EACpB,KAAK,eAAe,EACpB,KAAK,YAAY,EACjB,KAAK,aAAa,EAClB,KAAK,kBAAkB,EACvB,iBAAiB,EACjB,iBAAiB,EACjB,aAAa,EACb,kBAAkB,GACnB,MAAM,oBAAoB,CAAC;AAE5B,OAAO,EACL,KAAK,UAAU,EACf,KAAK,QAAQ,EACb,kBAAkB,EAClB,cAAc,EACd,oBAAoB,EACpB,eAAe,EACf,0BAA0B,GAC3B,MAAM,kBAAkB,CAAC;AAE1B,OAAO,EACL,KAAK,SAAS,EACd,KAAK,YAAY,EACjB,KAAK,oBAAoB,EACzB,KAAK,cAAc,EACnB,kBAAkB,EAClB,eAAe,EACf,aAAa,EACb,YAAY,GACb,MAAM,eAAe,CAAC;AAEvB,OAAO,EACL,KAAK,SAAS,EACd,KAAK,QAAQ,EACb,KAAK,SAAS,EACd,gBAAgB,EAChB,QAAQ,EACR,SAAS,EACT,SAAS,GACV,MAAM,UAAU,CAAC;AAElB,OAAO,EACL,KAAK,cAAc,EACnB,kBAAkB,EAClB,oBAAoB,EACpB,gBAAgB,EAChB,sBAAsB,GACvB,MAAM,YAAY,CAAC;AAEpB,OAAO,EACL,KAAK,gBAAgB,EACrB,KAAK,iBAAiB,EACtB,KAAK,eAAe,EACpB,KAAK,kBAAkB,EACvB,KAAK,eAAe,EACpB,oBAAoB,EACpB,sBAAsB,EACtB,wBAAwB,EACxB,oBAAoB,EACpB,qBAAqB,EACrB,qBAAqB,EACrB,wBAAwB,EACxB,yBAAyB,EACzB,uBAAuB,GACxB,MAAM,aAAa,CAAC;AAErB,OAAO,EACL,WAAW,EACX,kBAAkB,EAClB,aAAa,EACb,mBAAmB,GACpB,MAAM,YAAY,CAAC;AAEpB,OAAO,EACL,KAAK,UAAU,EACf,KAAK,eAAe,EACpB,KAAK,mBAAmB,EACxB,KAAK,uBAAuB,EAC5B,KAAK,iBAAiB,EACtB,kBAAkB,EAClB,iBAAiB,EACjB,gBAAgB,GACjB,MAAM,gBAAgB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/discovery/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,oBAAoB,EAAE,KAAK,eAAe,EAAE,MAAM,UAAU,CAAC;AAEtE,OAAO,EACL,KAAK,eAAe,EACpB,KAAK,eAAe,EACpB,KAAK,YAAY,EACjB,KAAK,aAAa,EAClB,KAAK,eAAe,EACpB,KAAK,iBAAiB,EACtB,KAAK,kBAAkB,EACvB,iBAAiB,EACjB,iBAAiB,EACjB,aAAa,EACb,kBAAkB,GACnB,MAAM,oBAAoB,CAAC;AAE5B,OAAO,EACL,KAAK,UAAU,EACf,KAAK,QAAQ,EACb,kBAAkB,EAClB,cAAc,EACd,oBAAoB,EACpB,eAAe,EACf,0BAA0B,GAC3B,MAAM,kBAAkB,CAAC;AAE1B,OAAO,EACL,KAAK,SAAS,EACd,KAAK,YAAY,EACjB,KAAK,oBAAoB,EACzB,KAAK,cAAc,EACnB,kBAAkB,EAClB,eAAe,EACf,aAAa,EACb,YAAY,GACb,MAAM,eAAe,CAAC;AAEvB,OAAO,EACL,KAAK,SAAS,EACd,KAAK,QAAQ,EACb,KAAK,SAAS,EACd,gBAAgB,EAChB,QAAQ,EACR,SAAS,EACT,YAAY,EACZ,SAAS,EACT,UAAU,GACX,MAAM,UAAU,CAAC;AAElB,OAAO,EACL,KAAK,cAAc,EACnB,kBAAkB,EAClB,oBAAoB,EACpB,gBAAgB,EAChB,sBAAsB,GACvB,MAAM,YAAY,CAAC;AAEpB,OAAO,EACL,KAAK,gBAAgB,EACrB,KAAK,iBAAiB,EACtB,KAAK,eAAe,EACpB,KAAK,kBAAkB,EACvB,KAAK,eAAe,EACpB,oBAAoB,EACpB,sBAAsB,EACtB,wBAAwB,EACxB,oBAAoB,EACpB,qBAAqB,EACrB,qBAAqB,EACrB,wBAAwB,EACxB,yBAAyB,EACzB,uBAAuB,GACxB,MAAM,aAAa,CAAC;AAErB,OAAO,EACL,WAAW,EACX,kBAAkB,EAClB,aAAa,EACb,mBAAmB,GACpB,MAAM,YAAY,CAAC;AAEpB,OAAO,EACL,KAAK,UAAU,EACf,KAAK,eAAe,EACpB,KAAK,mBAAmB,EACxB,KAAK,uBAAuB,EAC5B,KAAK,iBAAiB,EACtB,kBAAkB,EAClB,iBAAiB,EACjB,gBAAgB,GACjB,MAAM,gBAAgB,CAAC"}

package/dist/discovery/index.js

@@ -11,7 +11,7 @@ export { parseTXTCapabilities } from "./txt.js";
 export { ConfigurationType, WellKnownMaxBytes, WellKnownPath, parseConfiguration, } from "./configuration.js";
 export { DomainKeysMaxBytes, DomainKeysType, decodeKeyBlockPublic, parseDomainKeys, verifyDomainKeyFingerprint, } from "./domain_keys.js";
 export { fetchConfiguration, fetchDomainKeys, resolveServer, wellKnownUrl, } from "./resolver.js";
-export { defaultDNSLookup, lookupMX, lookupSRV, lookupTXT, } from "./dns.js";
+export { defaultDNSLookup, lookupMX, lookupSRV, lookupSRVUDP, lookupTXT, quicTarget, } from "./dns.js";
 export { DefaultTTLLegacyMs, DefaultTTLNotFoundMs, DefaultTTLSEMPMs, InMemoryDiscoveryCache, } from "./cache.js";
 export { DiscoveryMessageType, DiscoveryRecordVersion, DiscoverySignaturePrefix, DiscoveryStepRequest, DiscoveryStepResponse, signDiscoveryResponse, validateDiscoveryRequest, validateDiscoveryResponse, verifyDiscoveryResponse, } from "./lookup.js";
 export { OnionSuffix, OnionV3LabelLength, isOnionDomain, validateOnionDomain, } from "./onion.js";

package/dist/discovery/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/discovery/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,oBAAoB,EAAwB,MAAM,UAAU,CAAC;AAEtE,OAAO,EAML,iBAAiB,EACjB,iBAAiB,EACjB,aAAa,EACb,kBAAkB,GACnB,MAAM,oBAAoB,CAAC;AAE5B,OAAO,EAGL,kBAAkB,EAClB,cAAc,EACd,oBAAoB,EACpB,eAAe,EACf,0BAA0B,GAC3B,MAAM,kBAAkB,CAAC;AAE1B,OAAO,EAKL,kBAAkB,EAClB,eAAe,EACf,aAAa,EACb,YAAY,GACb,MAAM,eAAe,CAAC;AAEvB,OAAO,EAIL,gBAAgB,EAChB,QAAQ,EACR,SAAS,EACT,SAAS,GACV,MAAM,UAAU,CAAC;AAElB,OAAO,EAEL,kBAAkB,EAClB,oBAAoB,EACpB,gBAAgB,EAChB,sBAAsB,GACvB,MAAM,YAAY,CAAC;AAEpB,OAAO,EAML,oBAAoB,EACpB,sBAAsB,EACtB,wBAAwB,EACxB,oBAAoB,EACpB,qBAAqB,EACrB,qBAAqB,EACrB,wBAAwB,EACxB,yBAAyB,EACzB,uBAAuB,GACxB,MAAM,aAAa,CAAC;AAErB,OAAO,EACL,WAAW,EACX,kBAAkB,EAClB,aAAa,EACb,mBAAmB,GACpB,MAAM,YAAY,CAAC;AAEpB,OAAO,EAML,kBAAkB,EAClB,iBAAiB,EACjB,gBAAgB,GACjB,MAAM,gBAAgB,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/discovery/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,oBAAoB,EAAwB,MAAM,UAAU,CAAC;AAEtE,OAAO,EAQL,iBAAiB,EACjB,iBAAiB,EACjB,aAAa,EACb,kBAAkB,GACnB,MAAM,oBAAoB,CAAC;AAE5B,OAAO,EAGL,kBAAkB,EAClB,cAAc,EACd,oBAAoB,EACpB,eAAe,EACf,0BAA0B,GAC3B,MAAM,kBAAkB,CAAC;AAE1B,OAAO,EAKL,kBAAkB,EAClB,eAAe,EACf,aAAa,EACb,YAAY,GACb,MAAM,eAAe,CAAC;AAEvB,OAAO,EAIL,gBAAgB,EAChB,QAAQ,EACR,SAAS,EACT,YAAY,EACZ,SAAS,EACT,UAAU,GACX,MAAM,UAAU,CAAC;AAElB,OAAO,EAEL,kBAAkB,EAClB,oBAAoB,EACpB,gBAAgB,EAChB,sBAAsB,GACvB,MAAM,YAAY,CAAC;AAEpB,OAAO,EAML,oBAAoB,EACpB,sBAAsB,EACtB,wBAAwB,EACxB,oBAAoB,EACpB,qBAAqB,EACrB,qBAAqB,EACrB,wBAAwB,EACxB,yBAAyB,EACzB,uBAAuB,GACxB,MAAM,aAAa,CAAC;AAErB,OAAO,EACL,WAAW,EACX,kBAAkB,EAClB,aAAa,EACb,mBAAmB,GACpB,MAAM,YAAY,CAAC;AAEpB,OAAO,EAML,kBAAkB,EAClB,iBAAiB,EACjB,gBAAgB,GACjB,MAAM,gBAAgB,CAAC"}

package/dist/discovery/partition.d.ts

@@ -50,7 +50,7 @@ export declare function defaultAlphaRanges(servers: number): AlphaRange[];
  * lookup server (published at `_semp-partition-lookup.<domain>` SRV)
  * and returns the hostname of the delivery server that handles
  * `address`. The discovery package does not prescribe the wire
- * format of the lookup query — DISCOVERY.md §2.4 says "the
+ * format of the lookup query - DISCOVERY.md §2.4 says "the
  * partition server address is published as a separate SRV record"
  * and leaves the query protocol to the implementation.
  */

package/dist/discovery/partition.js

@@ -231,7 +231,7 @@ export function parsePartitionTXT(domain, txt) {
                 cfg.algorithm = val;
                 break;
             default:
-                // unknown key — skip (forward compat).
+                // unknown key - skip (forward compat).
                 break;
         }
     }

package/dist/discovery/resolver.d.ts

@@ -1,5 +1,5 @@
 /**
- * Discovery resolver — well-known URI fetch + parse, plus the
+ * Discovery resolver - well-known URI fetch + parse, plus the
  * higher-level "resolve a server" orchestrator that produces the
  * `serverDomainPub` a {@link "../handshake/driver".runClient} call
  * needs.
@@ -9,7 +9,7 @@
  * the resolver uses Node 22+'s global `fetch`.
  *
  * The DNS SRV / TXT lookup leg of §5.1 is intentionally not
- * implemented in this module — it requires `node:dns/promises` and
+ * implemented in this module - it requires `node:dns/promises` and
  * does not cleanly tree-shake into a browser bundle. Callers that
  * need DNS-first discovery wire it in front of {@link resolveServer}
  * and pass an explicit `host` / well-known URL.
@@ -42,7 +42,7 @@ export interface FetchOptions {
     /** Optional cancellation signal. */
     signal?: AbortSignal;
     /**
-     * Per-request timeout in milliseconds. Defaults to 10 seconds —
+     * Per-request timeout in milliseconds. Defaults to 10 seconds -
      * matches semp-go's `FetchConfiguration` default.
      */
     timeoutMs?: number;
@@ -54,7 +54,7 @@ export declare function wellKnownUrl(host: string): string;
  * Throws on transport failure, non-200 status, oversized body, or
  * structural parse failure.
  *
- * The URL's scheme is NOT enforced — production callers must pass an
+ * The URL's scheme is NOT enforced - production callers must pass an
  * `https://` URL, but tests need to point at a local httptest-style
  * server so this layer stays permissive.
  */
@@ -64,7 +64,7 @@ export declare function fetchConfiguration(url: string, opts?: FetchOptions): Pr
  * `endpoints.domain_keys` in a server's configuration. Returns the
  * parsed document and the cross-checked signing-key public bytes.
  *
- * Throws if the fingerprint cross-check fails — a peer that trusts
+ * Throws if the fingerprint cross-check fails - a peer that trusts
  * the publication channel still MUST confirm `key_id` is the SHA-256
  * fingerprint of `public_key`, otherwise a misconfiguration could
  * swap in a key whose fingerprint doesn't match the one the peer

package/dist/discovery/resolver.js

@@ -1,5 +1,5 @@
 /**
- * Discovery resolver — well-known URI fetch + parse, plus the
+ * Discovery resolver - well-known URI fetch + parse, plus the
  * higher-level "resolve a server" orchestrator that produces the
  * `serverDomainPub` a {@link "../handshake/driver".runClient} call
  * needs.
@@ -9,7 +9,7 @@
  * the resolver uses Node 22+'s global `fetch`.
  *
  * The DNS SRV / TXT lookup leg of §5.1 is intentionally not
- * implemented in this module — it requires `node:dns/promises` and
+ * implemented in this module - it requires `node:dns/promises` and
  * does not cleanly tree-shake into a browser bundle. Callers that
  * need DNS-first discovery wire it in front of {@link resolveServer}
  * and pass an explicit `host` / well-known URL.
@@ -30,7 +30,7 @@ export function wellKnownUrl(host) {
  * Throws on transport failure, non-200 status, oversized body, or
  * structural parse failure.
  *
- * The URL's scheme is NOT enforced — production callers must pass an
+ * The URL's scheme is NOT enforced - production callers must pass an
  * `https://` URL, but tests need to point at a local httptest-style
  * server so this layer stays permissive.
  */
@@ -50,7 +50,7 @@ export async function fetchConfiguration(url, opts = {}) {
  * `endpoints.domain_keys` in a server's configuration. Returns the
  * parsed document and the cross-checked signing-key public bytes.
  *
- * Throws if the fingerprint cross-check fails — a peer that trusts
+ * Throws if the fingerprint cross-check fails - a peer that trusts
  * the publication channel still MUST confirm `key_id` is the SHA-256
  * fingerprint of `public_key`, otherwise a misconfiguration could
  * swap in a key whose fingerprint doesn't match the one the peer
@@ -144,7 +144,7 @@ async function fetchTextBounded(url, maxBytes, opts) {
     if (!resp.ok) {
         throw new Error(`discovery: GET ${url} returned ${resp.status}`);
     }
-    // Permissive content-type check — some servers return
+    // Permissive content-type check - some servers return
     // application/octet-stream for .json paths. We require JSON in the
     // body parse, not in the header.
     const ct = resp.headers.get("content-type") ?? "";

package/dist/discovery/txt.d.ts

@@ -14,7 +14,7 @@
  *   - `c`  list    comma-separated transport identifiers
  *   - `f`  list    comma-separated optional features
  *
- * Unknown keys MUST be ignored, not rejected — DNS TXT records are
+ * Unknown keys MUST be ignored, not rejected - DNS TXT records are
  * a public surface and an upgrading peer might add new keys before
  * a downgrading peer learns about them.
  *

package/dist/discovery/txt.js

@@ -14,7 +14,7 @@
  *   - `c`  list    comma-separated transport identifiers
  *   - `f`  list    comma-separated optional features
  *
- * Unknown keys MUST be ignored, not rejected — DNS TXT records are
+ * Unknown keys MUST be ignored, not rejected - DNS TXT records are
  * a public surface and an upgrading peer might add new keys before
  * a downgrading peer learns about them.
  *

package/dist/enclosure/forwarding.d.ts

@@ -9,7 +9,7 @@
  *      Signed scope: the `original_enclosure_plaintext` subtree.
  *
  *   2. The FORWARDER's `forwarder_attestation` over the
- *      `forwarded_from` block — the inner sender_signature is
+ *      `forwarded_from` block - the inner sender_signature is
  *      already populated by step 1, so this signs over canonical
  *      bytes that include it. Prefix: `SEMP-FORWARDER-ATTESTATION:`.
  *      Signed scope: the entire `forwarded_from` subtree.

package/dist/enclosure/forwarding.js

@@ -9,7 +9,7 @@
  *      Signed scope: the `original_enclosure_plaintext` subtree.
  *
  *   2. The FORWARDER's `forwarder_attestation` over the
- *      `forwarded_from` block — the inner sender_signature is
+ *      `forwarded_from` block - the inner sender_signature is
  *      already populated by step 1, so this signs over canonical
  *      bytes that include it. Prefix: `SEMP-FORWARDER-ATTESTATION:`.
  *      Signed scope: the entire `forwarded_from` subtree.

package/dist/envelope/buckets.d.ts

@@ -20,7 +20,7 @@ export declare const DefaultMaxEnvelopeSize: number;
  * Select the size bucket for an unpadded envelope of the given byte
  * size per the default power-of-two curve (4096, 8192, 16384, ...).
  *
- * Throws on negative input or input that exceeds the ceiling — over-
+ * Throws on negative input or input that exceeds the ceiling - over-
  * limit envelopes MUST be recomposed; padding is not a remedy for
  * over-limit content.
  */
@@ -31,7 +31,7 @@ export declare function selectSizeBucket(unpaddedSize: number, maxEnvelopeSize?:
  * in which case the floor relaxes to 1 (a single-domain non-group
  * send reveals only the obvious cardinality and gains no
  * obfuscation from padding to 2). Real counts above 1024 force
- * recomposition into multiple envelopes — the runner returns a
+ * recomposition into multiple envelopes - the runner returns a
  * sentinel of -1 in that case so callers can detect it.
  */
 export declare function selectRecipientCountBucket(realRecipients: number, singleDomainNotGroup: boolean): number;

package/dist/envelope/buckets.js

@@ -20,7 +20,7 @@ export const DefaultMaxEnvelopeSize = 25 * 1024 * 1024;
  * Select the size bucket for an unpadded envelope of the given byte
  * size per the default power-of-two curve (4096, 8192, 16384, ...).
  *
- * Throws on negative input or input that exceeds the ceiling — over-
+ * Throws on negative input or input that exceeds the ceiling - over-
  * limit envelopes MUST be recomposed; padding is not a remedy for
  * over-limit content.
  */
@@ -51,7 +51,7 @@ export function selectSizeBucket(unpaddedSize, maxEnvelopeSize) {
  * in which case the floor relaxes to 1 (a single-domain non-group
  * send reveals only the obvious cardinality and gains no
  * obfuscation from padding to 2). Real counts above 1024 force
- * recomposition into multiple envelopes — the runner returns a
+ * recomposition into multiple envelopes - the runner returns a
  * sentinel of -1 in that case so callers can detect it.
  */
 export function selectRecipientCountBucket(realRecipients, singleDomainNotGroup) {

package/dist/envelope/compose.d.ts

@@ -130,7 +130,7 @@ export interface Envelope {
  */
 export declare function compose(input: ComposeInput): Envelope;
 /**
- * Compute the §4.3 canonical envelope bytes — signature and
+ * Compute the §4.3 canonical envelope bytes - signature and
  * session_mac blanked, hop_count and padding omitted.
  */
 export declare function canonicalEnvelopeFor(envelope: unknown): Uint8Array;
@@ -162,7 +162,7 @@ export interface OpenedEnvelope {
  * returns the parsed plaintexts. Throws if the recipient slot is
  * absent or the AEAD tag does not verify.
  *
- * Does NOT verify seal.signature or seal.session_mac — those are
+ * Does NOT verify seal.signature or seal.session_mac - those are
  * the routing-server / receiving-server checks per §7.2 and live
  * on the server side. {@link verifySealSignature} and
  * {@link verifySessionMAC} are the corresponding verifier helpers.

package/dist/envelope/compose.js

@@ -89,10 +89,10 @@ export function compose(input) {
     //
     // Wire-shape rules:
     //   postmark.extensions and seal.extensions DEFAULT to {} when
-    //     the caller doesn't pass them — these slots are always
+    //     the caller doesn't pass them - these slots are always
     //     present on the wire (some routers depend on the keys
     //     existing as a marker even when empty).
-    //   Top-level extensions DEFAULTS to absent — the spec treats
+    //   Top-level extensions DEFAULTS to absent - the spec treats
     //     it as truly optional.
     const postmark = {
         ...input.postmark,
@@ -131,7 +131,7 @@ export function compose(input) {
     return env;
 }
 /**
- * Compute the §4.3 canonical envelope bytes — signature and
+ * Compute the §4.3 canonical envelope bytes - signature and
  * session_mac blanked, hop_count and padding omitted.
  */
 export function canonicalEnvelopeFor(envelope) {
@@ -161,7 +161,7 @@ export function canonicalEnvelopeFor(envelope) {
  * returns the parsed plaintexts. Throws if the recipient slot is
  * absent or the AEAD tag does not verify.
  *
- * Does NOT verify seal.signature or seal.session_mac — those are
+ * Does NOT verify seal.signature or seal.session_mac - those are
  * the routing-server / receiving-server checks per §7.2 and live
  * on the server side. {@link verifySealSignature} and
  * {@link verifySessionMAC} are the corresponding verifier helpers.

package/dist/envelope/encode.d.ts

@@ -6,7 +6,7 @@
  * (`Content-Type: application/semp-envelope`) and for storage as a
  * `.semp` file.
  *
- * `encodeEnvelope` does NOT produce the canonical form — use
+ * `encodeEnvelope` does NOT produce the canonical form - use
  * {@link "./canonical".canonicalEnvelopeBytes} for the byte stream
  * consumed by signature and MAC computation.
  *
@@ -19,7 +19,7 @@ export declare const EnvelopeMIMEType = "application/semp-envelope";
 export declare const EnvelopeFileExtension = ".semp";
 /**
  * Wire JSON serialization of `env`. UTF-8, no BOM, no trailing
- * newline — the byte sequence is suitable for transport bodies and
+ * newline - the byte sequence is suitable for transport bodies and
  * for direct `.semp` file content.
  */
 export declare function encodeEnvelope(env: Envelope): Uint8Array;

package/dist/envelope/encode.js

@@ -6,7 +6,7 @@
  * (`Content-Type: application/semp-envelope`) and for storage as a
  * `.semp` file.
  *
- * `encodeEnvelope` does NOT produce the canonical form — use
+ * `encodeEnvelope` does NOT produce the canonical form - use
  * {@link "./canonical".canonicalEnvelopeBytes} for the byte stream
  * consumed by signature and MAC computation.
  *
@@ -18,11 +18,11 @@ export const EnvelopeMIMEType = "application/semp-envelope";
 export const EnvelopeFileExtension = ".semp";
 /**
  * Wire JSON serialization of `env`. UTF-8, no BOM, no trailing
- * newline — the byte sequence is suitable for transport bodies and
+ * newline - the byte sequence is suitable for transport bodies and
  * for direct `.semp` file content.
  */
 export function encodeEnvelope(env) {
-    // Plain JSON — NOT canonical. Used for transport, not signing.
+    // Plain JSON - NOT canonical. Used for transport, not signing.
     return new TextEncoder().encode(JSON.stringify(env));
 }
 /**

package/dist/envelope/open_verified.d.ts

@@ -10,7 +10,7 @@
  *   3. Walk the supplied recipient candidates and open the brief +
  *      enclosure for the first matching device key.
  *
- * `openAndVerify` does NOT run `seal.session_mac` — that is the
+ * `openAndVerify` does NOT run `seal.session_mac` - that is the
  * routing-server / receiving-server check between adjacent SEMP
  * peers; the recipient client uses {@link "./verify".verifySessionMAC}
  * separately when it has access to the K_env_mac.

package/dist/envelope/open_verified.js

@@ -10,7 +10,7 @@
  *   3. Walk the supplied recipient candidates and open the brief +
  *      enclosure for the first matching device key.
  *
- * `openAndVerify` does NOT run `seal.session_mac` — that is the
+ * `openAndVerify` does NOT run `seal.session_mac` - that is the
  * routing-server / receiving-server check between adjacent SEMP
  * peers; the recipient client uses {@link "./verify".verifySessionMAC}
  * separately when it has access to the K_env_mac.

package/dist/envelope/padding.d.ts

@@ -35,7 +35,7 @@ export interface PadConfig {
 /**
  * Populate `env.padding` so that `JSON.stringify(env)` lands on
  * exactly the size of the chosen bucket. Safe to call before OR
- * after `compose` populates `seal.signature` / `seal.session_mac` —
+ * after `compose` populates `seal.signature` / `seal.session_mac` -
  * if either is empty, fillPadding temporarily substitutes a
  * fixed-length placeholder for measurement so the post-sign size
  * is correct either way.
@@ -47,7 +47,7 @@ export declare function fillPadding(env: Envelope, cfg?: PadConfig): number;
 /**
  * Build a string of exactly `targetLen` base64-alphabet characters,
  * drawn from a CSPRNG. The bulk is a base64 encoding of CSPRNG
- * bytes; the final 1–3 characters (when targetLen is not reachable
+ * bytes; the final 1-3 characters (when targetLen is not reachable
  * by `btoa` 4-character chunks) are CSPRNG-seeded alphabet
  * characters appended for length alignment per §2.4.2.
  */

package/dist/envelope/padding.js

@@ -28,7 +28,7 @@ const Base64AlphabetFillers = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvw
 /**
  * Populate `env.padding` so that `JSON.stringify(env)` lands on
  * exactly the size of the chosen bucket. Safe to call before OR
- * after `compose` populates `seal.signature` / `seal.session_mac` —
+ * after `compose` populates `seal.signature` / `seal.session_mac` -
  * if either is empty, fillPadding temporarily substitutes a
  * fixed-length placeholder for measurement so the post-sign size
  * is correct either way.
@@ -83,7 +83,7 @@ export function fillPadding(env, cfg = {}) {
 /**
  * Build a string of exactly `targetLen` base64-alphabet characters,
  * drawn from a CSPRNG. The bulk is a base64 encoding of CSPRNG
- * bytes; the final 1–3 characters (when targetLen is not reachable
+ * bytes; the final 1-3 characters (when targetLen is not reachable
  * by `btoa` 4-character chunks) are CSPRNG-seeded alphabet
  * characters appended for length alignment per §2.4.2.
  */
@@ -96,7 +96,7 @@ export function buildPaddingValue(targetLen, rand = defaultRand) {
     }
     // base64 emits 4 chars per 3 input bytes. Pick the largest
     // multiple of 4 ≤ targetLen as the base64-encoded portion; the
-    // remainder (0–3 chars) is filled from the alphabet pool.
+    // remainder (0-3 chars) is filled from the alphabet pool.
     const baseChars = targetLen - (targetLen % 4);
     const inputBytes = (baseChars / 4) * 3;
     const out = [];

package/dist/envelope/verify.d.ts

@@ -15,7 +15,7 @@ import { type Envelope } from "./compose.js";
  * true when the Ed25519 signature over the canonical envelope bytes
  * (prefixed with `SEMP-ENVELOPE:`) verifies. Does NOT cross-check
  * that the supplied public key actually belongs to the
- * `postmark.from_domain` — that lookup is the caller's responsibility.
+ * `postmark.from_domain` - that lookup is the caller's responsibility.
  */
 export declare function verifySealSignature(env: Envelope, senderDomainPub: Uint8Array): boolean;
 /**

package/dist/envelope/verify.js

@@ -19,7 +19,7 @@ const EnvelopePrefix = "SEMP-ENVELOPE:";
  * true when the Ed25519 signature over the canonical envelope bytes
  * (prefixed with `SEMP-ENVELOPE:`) verifies. Does NOT cross-check
  * that the supplied public key actually belongs to the
- * `postmark.from_domain` — that lookup is the caller's responsibility.
+ * `postmark.from_domain` - that lookup is the caller's responsibility.
  */
 export function verifySealSignature(env, senderDomainPub) {
     if (env.seal?.signature === undefined || env.seal.signature === "") {

package/dist/extensions/index.d.ts

@@ -4,4 +4,5 @@
  * @module
  */
 export { type Entry, type Layer, type Map, type RegistryEntry, KeyError, MaxKeyLength, NamespacePrefixCore, Registry, SizeError, UnsupportedError, maxBytesFor, validate, validateKey, validateSize, } from "./limits.js";
+export { type ValidationFailureCode, type ValidationFailureItem, type ValidationFailureRejection, DefinitionPathPrefix, newValidationFailureRejection, } from "./validation_failure.js";
 //# sourceMappingURL=index.d.ts.map

package/dist/extensions/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/extensions/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EACL,KAAK,KAAK,EACV,KAAK,KAAK,EACV,KAAK,GAAG,EACR,KAAK,aAAa,EAClB,QAAQ,EACR,YAAY,EACZ,mBAAmB,EACnB,QAAQ,EACR,SAAS,EACT,gBAAgB,EAChB,WAAW,EACX,QAAQ,EACR,WAAW,EACX,YAAY,GACb,MAAM,aAAa,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/extensions/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EACL,KAAK,KAAK,EACV,KAAK,KAAK,EACV,KAAK,GAAG,EACR,KAAK,aAAa,EAClB,QAAQ,EACR,YAAY,EACZ,mBAAmB,EACnB,QAAQ,EACR,SAAS,EACT,gBAAgB,EAChB,WAAW,EACX,QAAQ,EACR,WAAW,EACX,YAAY,GACb,MAAM,aAAa,CAAC;AAErB,OAAO,EACL,KAAK,qBAAqB,EAC1B,KAAK,qBAAqB,EAC1B,KAAK,0BAA0B,EAC/B,oBAAoB,EACpB,6BAA6B,GAC9B,MAAM,yBAAyB,CAAC"}

package/dist/extensions/index.js

@@ -4,4 +4,5 @@
  * @module
  */
 export { KeyError, MaxKeyLength, NamespacePrefixCore, Registry, SizeError, UnsupportedError, maxBytesFor, validate, validateKey, validateSize, } from "./limits.js";
+export { DefinitionPathPrefix, newValidationFailureRejection, } from "./validation_failure.js";
 //# sourceMappingURL=index.js.map

package/dist/extensions/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/extensions/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAKL,QAAQ,EACR,YAAY,EACZ,mBAAmB,EACnB,QAAQ,EACR,SAAS,EACT,gBAAgB,EAChB,WAAW,EACX,QAAQ,EACR,WAAW,EACX,YAAY,GACb,MAAM,aAAa,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/extensions/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAKL,QAAQ,EACR,YAAY,EACZ,mBAAmB,EACnB,QAAQ,EACR,SAAS,EACT,gBAAgB,EAChB,WAAW,EACX,QAAQ,EACR,WAAW,EACX,YAAY,GACb,MAAM,aAAa,CAAC;AAErB,OAAO,EAIL,oBAAoB,EACpB,6BAA6B,GAC9B,MAAM,yBAAyB,CAAC"}

package/dist/extensions/limits.d.ts

@@ -8,7 +8,7 @@
  * ```
  *
  * Per-layer byte-size ceilings (§4) are enforced before signature
- * verification — an over-large `extensions` map MUST be rejected
+ * verification - an over-large `extensions` map MUST be rejected
  * outright, regardless of any signature it might carry.
  *
  * Required extensions a recipient does not understand MUST be
@@ -90,7 +90,7 @@ export declare function validateKey(key: string): Error | null;
  *     ({@link SizeError})
  *
  * Non-required (`required: false`) extensions are passed through
- * unconditionally — the receiver is free to ignore them.
+ * unconditionally - the receiver is free to ignore them.
  */
 export declare function validate(registry: Registry | null, layer: Layer, m: Map | null | undefined): Error | null;
 /**

package/dist/extensions/limits.js

@@ -8,7 +8,7 @@
  * ```
  *
  * Per-layer byte-size ceilings (§4) are enforced before signature
- * verification — an over-large `extensions` map MUST be rejected
+ * verification - an over-large `extensions` map MUST be rejected
  * outright, regardless of any signature it might carry.
  *
  * Required extensions a recipient does not understand MUST be
@@ -121,7 +121,7 @@ export function validateKey(key) {
  *     ({@link SizeError})
  *
  * Non-required (`required: false`) extensions are passed through
- * unconditionally — the receiver is free to ignore them.
+ * unconditionally - the receiver is free to ignore them.
  */
 export function validate(registry, layer, m) {
     if (m === null || m === undefined || Object.keys(m).length === 0) {