@shhhum/xftp-web 0.1.0

package/dist/client.js

@@ -0,0 +1,353 @@
+// XFTP HTTP/2 client -- Simplex.FileTransfer.Client
+//
+// Connects to XFTP server via HTTP/2, performs web handshake,
+// sends authenticated commands, receives responses.
+//
+// Uses node:http2 in Node.js (tests), fetch() in browsers.
+import { encodeAuthTransmission, encodeTransmission, decodeTransmission, XFTP_BLOCK_SIZE, initialXFTPVersion, currentXFTPVersion } from "./protocol/transmission.js";
+import { encodeClientHello, encodeClientHandshake, decodeServerHandshake, compatibleVRange } from "./protocol/handshake.js";
+import { verifyIdentityProof } from "./crypto/identity.js";
+import { generateX25519KeyPair, encodePubKeyX25519, dh } from "./crypto/keys.js";
+import { encodeFNEW, encodeFADD, encodeFPUT, encodeFGET, encodeFDEL, encodePING, decodeResponse } from "./protocol/commands.js";
+import { decryptReceivedChunk } from "./download.js";
+import { formatXFTPServer } from "./protocol/address.js";
+import { concatBytes } from "./protocol/encoding.js";
+import { blockUnpad } from "./protocol/transmission.js";
+// -- Error types
+export class XFTPRetriableError extends Error {
+    errorType;
+    constructor(errorType) {
+        super(humanReadableMessage(errorType));
+        this.errorType = errorType;
+        this.name = "XFTPRetriableError";
+    }
+}
+export class XFTPPermanentError extends Error {
+    errorType;
+    constructor(errorType, message) {
+        super(message);
+        this.errorType = errorType;
+        this.name = "XFTPPermanentError";
+    }
+}
+export function isRetriable(e) {
+    if (e instanceof XFTPRetriableError)
+        return true;
+    if (e instanceof XFTPPermanentError)
+        return false;
+    if (e instanceof TypeError)
+        return true; // fetch network error
+    if (e instanceof Error && e.name === "AbortError")
+        return true; // timeout
+    return false;
+}
+export function categorizeError(e) {
+    if (e instanceof XFTPRetriableError || e instanceof XFTPPermanentError)
+        return e;
+    if (e instanceof TypeError)
+        return new XFTPRetriableError("NETWORK");
+    if (e instanceof Error && e.name === "AbortError")
+        return new XFTPRetriableError("TIMEOUT");
+    return e instanceof Error ? e : new Error(String(e));
+}
+export function humanReadableMessage(errorType) {
+    const t = typeof errorType === "string" ? errorType : errorType.type;
+    switch (t) {
+        case "SESSION": return "Session expired, reconnecting...";
+        case "HANDSHAKE": return "Connection interrupted, reconnecting...";
+        case "NETWORK": return "Network error, retrying...";
+        case "TIMEOUT": return "Server timeout, retrying...";
+        case "AUTH": return "File is invalid, expired, or has been removed";
+        case "NO_FILE": return "File not found — it may have expired";
+        case "SIZE": return "File size exceeds server limit";
+        case "QUOTA": return "Server storage quota exceeded";
+        case "BLOCKED": return "File has been blocked by server";
+        case "DIGEST": return "File integrity check failed";
+        case "INTERNAL": return "Server internal error";
+        case "CMD": return "Protocol error";
+        default: return "Server error: " + t;
+    }
+}
+const DEFAULT_TRANSPORT_CONFIG = { timeoutMs: 30000 };
+// -- Transport implementations
+const isNode = typeof globalThis.process !== "undefined" && globalThis.process.versions?.node;
+async function createTransport(baseUrl, config) {
+    if (isNode) {
+        return createNodeTransport(baseUrl, config);
+    }
+    else {
+        return createBrowserTransport(baseUrl, config);
+    }
+}
+async function createNodeTransport(baseUrl, config) {
+    const http2 = await import("node:http2");
+    const session = http2.connect(baseUrl, { rejectUnauthorized: false });
+    return {
+        async post(body, headers) {
+            return new Promise((resolve, reject) => {
+                const req = session.request({ ":method": "POST", ":path": "/", ...headers });
+                req.setTimeout(config.timeoutMs, () => {
+                    req.close();
+                    reject(Object.assign(new Error("Request timeout"), { name: "AbortError" }));
+                });
+                const chunks = [];
+                req.on("data", (chunk) => chunks.push(chunk));
+                req.on("end", () => resolve(new Uint8Array(Buffer.concat(chunks))));
+                req.on("error", reject);
+                req.end(Buffer.from(body));
+            });
+        },
+        close() {
+            session.close();
+        }
+    };
+}
+function createBrowserTransport(baseUrl, config) {
+    // In dev mode, route through /xftp-proxy to avoid self-signed cert rejection
+    // __XFTP_PROXY_PORT__ is 'proxy' in dev mode (uses relative path), null in production
+    const effectiveUrl = typeof __XFTP_PROXY_PORT__ !== 'undefined' && __XFTP_PROXY_PORT__
+        ? '/xftp-proxy'
+        : baseUrl;
+    return {
+        async post(body, headers) {
+            const controller = new AbortController();
+            const timer = setTimeout(() => controller.abort(), config.timeoutMs);
+            try {
+                const resp = await fetch(effectiveUrl, {
+                    method: "POST",
+                    headers,
+                    body,
+                    signal: controller.signal
+                });
+                if (!resp.ok) {
+                    console.error('[XFTP] fetch %s failed: %d %s', effectiveUrl, resp.status, resp.statusText);
+                    throw new Error(`Server request failed: ${resp.status} ${resp.statusText}`);
+                }
+                return new Uint8Array(await resp.arrayBuffer());
+            }
+            finally {
+                clearTimeout(timer);
+            }
+        },
+        close() { }
+    };
+}
+export function newXFTPAgent() {
+    return { connections: new Map(), _connectFn: connectXFTP };
+}
+export function getXFTPServerClient(agent, server) {
+    const key = formatXFTPServer(server);
+    let conn = agent.connections.get(key);
+    if (!conn) {
+        const p = agent._connectFn(server);
+        conn = { client: p, queue: Promise.resolve() };
+        agent.connections.set(key, conn);
+        p.catch(() => {
+            const cur = agent.connections.get(key);
+            if (cur && cur.client === p)
+                agent.connections.delete(key);
+        });
+    }
+    return conn.client;
+}
+export function reconnectClient(agent, server) {
+    const key = formatXFTPServer(server);
+    const old = agent.connections.get(key);
+    old?.client.then(c => c.transport.close(), () => { });
+    const p = agent._connectFn(server);
+    const conn = { client: p, queue: old?.queue ?? Promise.resolve() };
+    agent.connections.set(key, conn);
+    p.catch(() => {
+        const cur = agent.connections.get(key);
+        if (cur && cur.client === p)
+            agent.connections.delete(key);
+    });
+    return p;
+}
+export function removeStaleConnection(agent, server, failedP) {
+    const key = formatXFTPServer(server);
+    const conn = agent.connections.get(key);
+    if (conn && conn.client === failedP) {
+        agent.connections.delete(key);
+        failedP.then(c => c.transport.close(), () => { });
+    }
+}
+export function closeXFTPServerClient(agent, server) {
+    const key = formatXFTPServer(server);
+    const conn = agent.connections.get(key);
+    if (conn) {
+        agent.connections.delete(key);
+        conn.client.then(c => c.transport.close(), () => { });
+    }
+}
+export function closeXFTPAgent(agent) {
+    for (const conn of agent.connections.values()) {
+        conn.client.then(c => c.transport.close(), () => { });
+    }
+    agent.connections.clear();
+}
+// -- Connect + handshake
+export async function connectXFTP(server, config) {
+    const cfg = { ...DEFAULT_TRANSPORT_CONFIG, ...config };
+    const baseUrl = "https://" + server.host + ":" + server.port;
+    const transport = await createTransport(baseUrl, cfg);
+    try {
+        // Step 1: send client hello with web challenge
+        const challenge = new Uint8Array(32);
+        crypto.getRandomValues(challenge);
+        const clientHelloBytes = encodeClientHello({ webChallenge: challenge });
+        const shsBody = await transport.post(clientHelloBytes, { "xftp-web-hello": "1" });
+        // Step 2: decode + verify server handshake
+        const hs = decodeServerHandshake(shsBody);
+        if (!hs.webIdentityProof) {
+            console.error('[XFTP] Server did not provide web identity proof');
+            throw new Error("Server did not provide web identity proof");
+        }
+        const idOk = verifyIdentityProof({
+            certChainDer: hs.certChainDer,
+            signedKeyDer: hs.signedKeyDer,
+            sigBytes: hs.webIdentityProof,
+            challenge,
+            sessionId: hs.sessionId,
+            keyHash: server.keyHash
+        });
+        if (!idOk) {
+            console.error('[XFTP] Server identity verification failed');
+            throw new Error("Server identity verification failed");
+        }
+        // Step 3: version negotiation
+        const vr = compatibleVRange(hs.xftpVersionRange, { minVersion: initialXFTPVersion, maxVersion: currentXFTPVersion });
+        if (!vr) {
+            console.error('[XFTP] Incompatible server version: %o', hs.xftpVersionRange);
+            throw new Error("Incompatible server version");
+        }
+        const xftpVersion = vr.maxVersion;
+        // Step 4: send client handshake
+        const ack = await transport.post(encodeClientHandshake({ xftpVersion, keyHash: server.keyHash }), { "xftp-handshake": "1" });
+        if (ack.length !== 0) {
+            console.error('[XFTP] Non-empty handshake ack (%d bytes)', ack.length);
+            throw new Error("Server handshake failed");
+        }
+        return { baseUrl, sessionId: hs.sessionId, xftpVersion, transport };
+    }
+    catch (e) {
+        console.error('[XFTP] Connection to %s failed:', baseUrl, e);
+        transport.close();
+        throw e;
+    }
+}
+// -- Send command (single attempt, no retry)
+async function sendXFTPCommandOnce(client, privateKey, entityId, cmdBytes, chunkData) {
+    const corrId = new Uint8Array(0);
+    const block = encodeAuthTransmission(client.sessionId, corrId, entityId, cmdBytes, privateKey);
+    const reqBody = chunkData ? concatBytes(block, chunkData) : block;
+    const fullResp = await client.transport.post(reqBody);
+    console.log(`[XFTP-DBG] sendOnce: fullResp.length=${fullResp.length} entityId=${_hex(entityId)} cmdTag=${cmdBytes[0]}`);
+    if (fullResp.length < XFTP_BLOCK_SIZE) {
+        console.error('[XFTP] Response too short: %d bytes (expected >= %d)', fullResp.length, XFTP_BLOCK_SIZE);
+        throw new Error("Server response too short");
+    }
+    const respBlock = fullResp.subarray(0, XFTP_BLOCK_SIZE);
+    const body = fullResp.subarray(XFTP_BLOCK_SIZE);
+    console.log(`[XFTP-DBG] sendOnce: body.length=${body.length} body.byteOffset=${body.byteOffset} body.buffer.byteLength=${body.buffer.byteLength}`);
+    // Detect padded error strings (HANDSHAKE, SESSION) before decodeTransmission
+    const raw = blockUnpad(respBlock);
+    if (raw.length < 20) {
+        const text = new TextDecoder().decode(raw);
+        if (/^[A-Z_]+$/.test(text)) {
+            throw new XFTPRetriableError(text);
+        }
+    }
+    const { command } = decodeTransmission(client.sessionId, respBlock);
+    const response = decodeResponse(command);
+    if (response.type === "FRErr") {
+        const err = response.err;
+        if (err.type === "SESSION" || err.type === "HANDSHAKE") {
+            throw new XFTPRetriableError(err.type);
+        }
+        throw new XFTPPermanentError(err.type, humanReadableMessage(err));
+    }
+    return { response, body };
+}
+function _hex(b, n = 8) {
+    return Array.from(b.slice(0, n)).map(x => x.toString(16).padStart(2, '0')).join('');
+}
+// -- Send command (with retry + reconnect)
+export async function sendXFTPCommand(agent, server, privateKey, entityId, cmdBytes, chunkData, maxRetries = 3) {
+    let clientP = getXFTPServerClient(agent, server);
+    let client = await clientP;
+    for (let attempt = 1; attempt <= maxRetries; attempt++) {
+        try {
+            if (attempt > 1)
+                console.log(`[XFTP-DBG] sendCmd: retry attempt=${attempt}/${maxRetries}`);
+            return await sendXFTPCommandOnce(client, privateKey, entityId, cmdBytes, chunkData);
+        }
+        catch (e) {
+            console.log(`[XFTP-DBG] sendCmd: attempt=${attempt} failed: ${e instanceof Error ? e.message : String(e)} retriable=${isRetriable(e)}`);
+            if (!isRetriable(e)) {
+                throw categorizeError(e);
+            }
+            if (attempt === maxRetries) {
+                removeStaleConnection(agent, server, clientP);
+                throw categorizeError(e);
+            }
+            clientP = reconnectClient(agent, server);
+            client = await clientP;
+        }
+    }
+    throw new Error("unreachable");
+}
+// -- Command wrappers
+export async function createXFTPChunk(agent, server, spKey, file, rcvKeys, auth = null) {
+    const { response } = await sendXFTPCommand(agent, server, spKey, new Uint8Array(0), encodeFNEW(file, rcvKeys, auth));
+    if (response.type !== "FRSndIds")
+        throw new Error("unexpected response: " + response.type);
+    return { senderId: response.senderId, recipientIds: response.recipientIds };
+}
+export async function addXFTPRecipients(agent, server, spKey, fId, rcvKeys) {
+    const { response } = await sendXFTPCommand(agent, server, spKey, fId, encodeFADD(rcvKeys));
+    if (response.type !== "FRRcvIds")
+        throw new Error("unexpected response: " + response.type);
+    return response.recipientIds;
+}
+export async function uploadXFTPChunk(agent, server, spKey, fId, chunkData) {
+    const { response } = await sendXFTPCommand(agent, server, spKey, fId, encodeFPUT(), chunkData);
+    if (response.type !== "FROk")
+        throw new Error("unexpected response: " + response.type);
+}
+export async function downloadXFTPChunkRaw(agent, server, rpKey, fId) {
+    const { publicKey, privateKey } = generateX25519KeyPair();
+    const cmd = encodeFGET(encodePubKeyX25519(publicKey));
+    const { response, body } = await sendXFTPCommand(agent, server, rpKey, fId, cmd);
+    if (response.type !== "FRFile")
+        throw new Error("unexpected response: " + response.type);
+    const dhSecret = dh(response.rcvDhKey, privateKey);
+    console.log(`[XFTP-DBG] dlChunkRaw: body.length=${body.length} nonce=${_hex(response.nonce, 24)} dhSecret=${_hex(dhSecret)} body[0..8]=${_hex(body)} body[-8..]=${_hex(body.slice(-8))}`);
+    return { dhSecret, nonce: response.nonce, body };
+}
+export async function downloadXFTPChunk(agent, server, rpKey, fId, digest) {
+    const { dhSecret, nonce, body } = await downloadXFTPChunkRaw(agent, server, rpKey, fId);
+    return decryptReceivedChunk(dhSecret, nonce, body, digest ?? null);
+}
+export async function deleteXFTPChunk(agent, server, spKey, sId) {
+    const { response } = await sendXFTPCommand(agent, server, spKey, sId, encodeFDEL());
+    if (response.type !== "FROk")
+        throw new Error("unexpected response: " + response.type);
+}
+export async function pingXFTP(agent, server) {
+    const client = await getXFTPServerClient(agent, server);
+    const corrId = new Uint8Array(0);
+    const block = encodeTransmission(client.sessionId, corrId, new Uint8Array(0), encodePING());
+    const fullResp = await client.transport.post(block);
+    if (fullResp.length < XFTP_BLOCK_SIZE)
+        throw new Error("pingXFTP: response too short");
+    const { command } = decodeTransmission(client.sessionId, fullResp.subarray(0, XFTP_BLOCK_SIZE));
+    const response = decodeResponse(command);
+    if (response.type !== "FRPong")
+        throw new Error("unexpected response: " + response.type);
+}
+// -- Close
+export function closeXFTP(c) {
+    c.transport.close();
+}
+//# sourceMappingURL=client.js.map

package/dist/client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AAAA,oDAAoD;AACpD,EAAE;AACF,8DAA8D;AAC9D,oDAAoD;AACpD,EAAE;AACF,2DAA2D;AAE3D,OAAO,EACL,sBAAsB,EAAE,kBAAkB,EAAE,kBAAkB,EAC9D,eAAe,EAAE,kBAAkB,EAAE,kBAAkB,EACxD,MAAM,4BAA4B,CAAA;AACnC,OAAO,EACL,iBAAiB,EAAE,qBAAqB,EAAE,qBAAqB,EAC/D,gBAAgB,EACjB,MAAM,yBAAyB,CAAA;AAChC,OAAO,EAAC,mBAAmB,EAAC,MAAM,sBAAsB,CAAA;AACxD,OAAO,EAAC,qBAAqB,EAAE,kBAAkB,EAAE,EAAE,EAAC,MAAM,kBAAkB,CAAA;AAC9E,OAAO,EACL,UAAU,EAAE,UAAU,EAAE,UAAU,EAAE,UAAU,EAAE,UAAU,EAAE,UAAU,EACtE,cAAc,EACf,MAAM,wBAAwB,CAAA;AAC/B,OAAO,EAAC,oBAAoB,EAAC,MAAM,eAAe,CAAA;AAElD,OAAO,EAAC,gBAAgB,EAAC,MAAM,uBAAuB,CAAA;AACtD,OAAO,EAAC,WAAW,EAAC,MAAM,wBAAwB,CAAA;AAClD,OAAO,EAAC,UAAU,EAAC,MAAM,4BAA4B,CAAA;AAErD,iBAAiB;AAEjB,MAAM,OAAO,kBAAmB,SAAQ,KAAK;IACf;IAA5B,YAA4B,SAAiB;QAC3C,KAAK,CAAC,oBAAoB,CAAC,SAAS,CAAC,CAAC,CAAA;QADZ,cAAS,GAAT,SAAS,CAAQ;QAE3C,IAAI,CAAC,IAAI,GAAG,oBAAoB,CAAA;IAClC,CAAC;CACF;AAED,MAAM,OAAO,kBAAmB,SAAQ,KAAK;IACf;IAA5B,YAA4B,SAAiB,EAAE,OAAe;QAC5D,KAAK,CAAC,OAAO,CAAC,CAAA;QADY,cAAS,GAAT,SAAS,CAAQ;QAE3C,IAAI,CAAC,IAAI,GAAG,oBAAoB,CAAA;IAClC,CAAC;CACF;AAED,MAAM,UAAU,WAAW,CAAC,CAAU;IACpC,IAAI,CAAC,YAAY,kBAAkB;QAAE,OAAO,IAAI,CAAA;IAChD,IAAI,CAAC,YAAY,kBAAkB;QAAE,OAAO,KAAK,CAAA;IACjD,IAAI,CAAC,YAAY,SAAS;QAAE,OAAO,IAAI,CAAA,CAAE,sBAAsB;IAC/D,IAAI,CAAC,YAAY,KAAK,IAAI,CAAC,CAAC,IAAI,KAAK,YAAY;QAAE,OAAO,IAAI,CAAA,CAAE,UAAU;IAC1E,OAAO,KAAK,CAAA;AACd,CAAC;AAED,MAAM,UAAU,eAAe,CAAC,CAAU;IACxC,IAAI,CAAC,YAAY,kBAAkB,IAAI,CAAC,YAAY,kBAAkB;QAAE,OAAO,CAAC,CAAA;IAChF,IAAI,CAAC,YAAY,SAAS;QAAE,OAAO,IAAI,kBAAkB,CAAC,SAAS,CAAC,CAAA;IACpE,IAAI,CAAC,YAAY,KAAK,IAAI,CAAC,CAAC,IAAI,KAAK,YAAY;QAAE,OAAO,IAAI,kBAAkB,CAAC,SAAS,CAAC,CAAA;IAC3F,OAAO,CAAC,YAAY,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAA;AACtD,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,SAAiC;IACpE,MAAM,CAAC,GAAG,OAAO,SAAS,KAAK,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,IAAI,CAAA;IACpE,QAAQ,CAAC,EAAE,CAAC;QACV,KAAK,SAAS,CAAC,CAAC,OAAO,kCAAkC,CAAA;QACzD,KAAK,WAAW,CAAC,CAAC,OAAO,yCAAyC,CAAA;QAClE,KAAK,SAAS,CAAC,CAAC,OAAO,4BAA4B,CAAA;QACnD,KAAK,SAAS,CAAC,CAAC,OAAO,6BAA6B,CAAA;QACpD,KAAK,MAAM,CAAC,CAAC,OAAO,+CAA+C,CAAA;QACnE,KAAK,SAAS,CAAC,CAAC,OAAO,sCAAsC,CAAA;QAC7D,KAAK,MAAM,CAAC,CAAC,OAAO,gCAAgC,CAAA;QACpD,KAAK,OAAO,CAAC,CAAC,OAAO,+BAA+B,CAAA;QACpD,KAAK,SAAS,CAAC,CAAC,OAAO,iCAAiC,CAAA;QACxD,KAAK,QAAQ,CAAC,CAAC,OAAO,6BAA6B,CAAA;QACnD,KAAK,UAAU,CAAC,CAAC,OAAO,uBAAuB,CAAA;QAC/C,KAAK,KAAK,CAAC,CAAC,OAAO,gBAAgB,CAAA;QACnC,OAAO,CAAC,CAAC,OAAO,gBAAgB,GAAG,CAAC,CAAA;IACtC,CAAC;AACH,CAAC;AAeD,MAAM,wBAAwB,GAAoB,EAAC,SAAS,EAAE,KAAK,EAAC,CAAA;AAOpE,+BAA+B;AAE/B,MAAM,MAAM,GAAG,OAAO,UAAU,CAAC,OAAO,KAAK,WAAW,IAAI,UAAU,CAAC,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAA;AAM7F,KAAK,UAAU,eAAe,CAAC,OAAe,EAAE,MAAuB;IACrE,IAAI,MAAM,EAAE,CAAC;QACX,OAAO,mBAAmB,CAAC,OAAO,EAAE,MAAM,CAAC,CAAA;IAC7C,CAAC;SAAM,CAAC;QACN,OAAO,sBAAsB,CAAC,OAAO,EAAE,MAAM,CAAC,CAAA;IAChD,CAAC;AACH,CAAC;AAED,KAAK,UAAU,mBAAmB,CAAC,OAAe,EAAE,MAAuB;IACzE,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,YAAY,CAAC,CAAA;IACxC,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,OAAO,EAAE,EAAC,kBAAkB,EAAE,KAAK,EAAC,CAAC,CAAA;IACnE,OAAO;QACL,KAAK,CAAC,IAAI,CAAC,IAAgB,EAAE,OAAgC;YAC3D,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;gBACrC,MAAM,GAAG,GAAG,OAAO,CAAC,OAAO,CAAC,EAAC,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,GAAG,EAAE,GAAG,OAAO,EAAC,CAAC,CAAA;gBAC1E,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,SAAS,EAAE,GAAG,EAAE;oBACpC,GAAG,CAAC,KAAK,EAAE,CAAA;oBACX,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,iBAAiB,CAAC,EAAE,EAAC,IAAI,EAAE,YAAY,EAAC,CAAC,CAAC,CAAA;gBAC3E,CAAC,CAAC,CAAA;gBACF,MAAM,MAAM,GAAa,EAAE,CAAA;gBAC3B,GAAG,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAa,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAA;gBACrD,GAAG,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,IAAI,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAA;gBACnE,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC,CAAA;gBACvB,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAA;YAC5B,CAAC,CAAC,CAAA;QACJ,CAAC;QACD,KAAK;YACH,OAAO,CAAC,KAAK,EAAE,CAAA;QACjB,CAAC;KACF,CAAA;AACH,CAAC;AAED,SAAS,sBAAsB,CAAC,OAAe,EAAE,MAAuB;IACtE,6EAA6E;IAC7E,sFAAsF;IACtF,MAAM,YAAY,GAAG,OAAO,mBAAmB,KAAK,WAAW,IAAI,mBAAmB;QACpF,CAAC,CAAC,aAAa;QACf,CAAC,CAAC,OAAO,CAAA;IACX,OAAO;QACL,KAAK,CAAC,IAAI,CAAC,IAAgB,EAAE,OAAgC;YAC3D,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAA;YACxC,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,MAAM,CAAC,SAAS,CAAC,CAAA;YACpE,IAAI,CAAC;gBACH,MAAM,IAAI,GAAG,MAAM,KAAK,CAAC,YAAY,EAAE;oBACrC,MAAM,EAAE,MAAM;oBACd,OAAO;oBACP,IAAI;oBACJ,MAAM,EAAE,UAAU,CAAC,MAAM;iBAC1B,CAAC,CAAA;gBACF,IAAI,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC;oBACb,OAAO,CAAC,KAAK,CAAC,+BAA+B,EAAE,YAAY,EAAE,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,UAAU,CAAC,CAAA;oBAC1F,MAAM,IAAI,KAAK,CAAC,0BAA0B,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC,CAAA;gBAC7E,CAAC;gBACD,OAAO,IAAI,UAAU,CAAC,MAAM,IAAI,CAAC,WAAW,EAAE,CAAC,CAAA;YACjD,CAAC;oBAAS,CAAC;gBACT,YAAY,CAAC,KAAK,CAAC,CAAA;YACrB,CAAC;QACH,CAAC;QACD,KAAK,KAAI,CAAC;KACX,CAAA;AACH,CAAC;AAeD,MAAM,UAAU,YAAY;IAC1B,OAAO,EAAC,WAAW,EAAE,IAAI,GAAG,EAAE,EAAE,UAAU,EAAE,WAAW,EAAC,CAAA;AAC1D,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,KAAsB,EAAE,MAAkB;IAC5E,MAAM,GAAG,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAA;IACpC,IAAI,IAAI,GAAG,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC,CAAA;IACrC,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,MAAM,CAAC,GAAG,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC,CAAA;QAClC,IAAI,GAAG,EAAC,MAAM,EAAE,CAAC,EAAE,KAAK,EAAE,OAAO,CAAC,OAAO,EAAE,EAAC,CAAA;QAC5C,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,EAAE,IAAI,CAAC,CAAA;QAChC,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE;YACX,MAAM,GAAG,GAAG,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC,CAAA;YACtC,IAAI,GAAG,IAAI,GAAG,CAAC,MAAM,KAAK,CAAC;gBAAE,KAAK,CAAC,WAAW,CAAC,MAAM,CAAC,GAAG,CAAC,CAAA;QAC5D,CAAC,CAAC,CAAA;IACJ,CAAC;IACD,OAAO,IAAI,CAAC,MAAM,CAAA;AACpB,CAAC;AAED,MAAM,UAAU,eAAe,CAAC,KAAsB,EAAE,MAAkB;IACxE,MAAM,GAAG,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAA;IACpC,MAAM,GAAG,GAAG,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC,CAAA;IACtC,GAAG,EAAE,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,KAAK,EAAE,EAAE,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;IACpD,MAAM,CAAC,GAAG,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC,CAAA;IAClC,MAAM,IAAI,GAAqB,EAAC,MAAM,EAAE,CAAC,EAAE,KAAK,EAAE,GAAG,EAAE,KAAK,IAAI,OAAO,CAAC,OAAO,EAAE,EAAC,CAAA;IAClF,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,EAAE,IAAI,CAAC,CAAA;IAChC,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE;QACX,MAAM,GAAG,GAAG,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC,CAAA;QACtC,IAAI,GAAG,IAAI,GAAG,CAAC,MAAM,KAAK,CAAC;YAAE,KAAK,CAAC,WAAW,CAAC,MAAM,CAAC,GAAG,CAAC,CAAA;IAC5D,CAAC,CAAC,CAAA;IACF,OAAO,CAAC,CAAA;AACV,CAAC;AAED,MAAM,UAAU,qBAAqB,CACnC,KAAsB,EAAE,MAAkB,EAAE,OAA4B;IAExE,MAAM,GAAG,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAA;IACpC,MAAM,IAAI,GAAG,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC,CAAA;IACvC,IAAI,IAAI,IAAI,IAAI,CAAC,MAAM,KAAK,OAAO,EAAE,CAAC;QACpC,KAAK,CAAC,WAAW,CAAC,MAAM,CAAC,GAAG,CAAC,CAAA;QAC7B,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,KAAK,EAAE,EAAE,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;IAClD,CAAC;AACH,CAAC;AAED,MAAM,UAAU,qBAAqB,CAAC,KAAsB,EAAE,MAAkB;IAC9E,MAAM,GAAG,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAA;IACpC,MAAM,IAAI,GAAG,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC,CAAA;IACvC,IAAI,IAAI,EAAE,CAAC;QACT,KAAK,CAAC,WAAW,CAAC,MAAM,CAAC,GAAG,CAAC,CAAA;QAC7B,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,KAAK,EAAE,EAAE,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;IACtD,CAAC;AACH,CAAC;AAED,MAAM,UAAU,cAAc,CAAC,KAAsB;IACnD,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,WAAW,CAAC,MAAM,EAAE,EAAE,CAAC;QAC9C,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,KAAK,EAAE,EAAE,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;IACtD,CAAC;IACD,KAAK,CAAC,WAAW,CAAC,KAAK,EAAE,CAAA;AAC3B,CAAC;AAED,yBAAyB;AAEzB,MAAM,CAAC,KAAK,UAAU,WAAW,CAAC,MAAkB,EAAE,MAAiC;IACrF,MAAM,GAAG,GAAoB,EAAC,GAAG,wBAAwB,EAAE,GAAG,MAAM,EAAC,CAAA;IACrE,MAAM,OAAO,GAAG,UAAU,GAAG,MAAM,CAAC,IAAI,GAAG,GAAG,GAAG,MAAM,CAAC,IAAI,CAAA;IAC5D,MAAM,SAAS,GAAG,MAAM,eAAe,CAAC,OAAO,EAAE,GAAG,CAAC,CAAA;IAErD,IAAI,CAAC;QACH,+CAA+C;QAC/C,MAAM,SAAS,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAA;QACpC,MAAM,CAAC,eAAe,CAAC,SAAS,CAAC,CAAA;QACjC,MAAM,gBAAgB,GAAG,iBAAiB,CAAC,EAAC,YAAY,EAAE,SAAS,EAAC,CAAC,CAAA;QACrE,MAAM,OAAO,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,gBAAgB,EAAE,EAAC,gBAAgB,EAAE,GAAG,EAAC,CAAC,CAAA;QAE/E,2CAA2C;QAC3C,MAAM,EAAE,GAAG,qBAAqB,CAAC,OAAO,CAAC,CAAA;QACzC,IAAI,CAAC,EAAE,CAAC,gBAAgB,EAAE,CAAC;YACzB,OAAO,CAAC,KAAK,CAAC,kDAAkD,CAAC,CAAA;YACjE,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAA;QAC9D,CAAC;QACD,MAAM,IAAI,GAAG,mBAAmB,CAAC;YAC/B,YAAY,EAAE,EAAE,CAAC,YAAY;YAC7B,YAAY,EAAE,EAAE,CAAC,YAAY;YAC7B,QAAQ,EAAE,EAAE,CAAC,gBAAgB;YAC7B,SAAS;YACT,SAAS,EAAE,EAAE,CAAC,SAAS;YACvB,OAAO,EAAE,MAAM,CAAC,OAAO;SACxB,CAAC,CAAA;QACF,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,CAAC,KAAK,CAAC,4CAA4C,CAAC,CAAA;YAC3D,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAA;QACxD,CAAC;QAED,8BAA8B;QAC9B,MAAM,EAAE,GAAG,gBAAgB,CAAC,EAAE,CAAC,gBAAgB,EAAE,EAAC,UAAU,EAAE,kBAAkB,EAAE,UAAU,EAAE,kBAAkB,EAAC,CAAC,CAAA;QAClH,IAAI,CAAC,EAAE,EAAE,CAAC;YACR,OAAO,CAAC,KAAK,CAAC,wCAAwC,EAAE,EAAE,CAAC,gBAAgB,CAAC,CAAA;YAC5E,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAA;QAChD,CAAC;QACD,MAAM,WAAW,GAAG,EAAE,CAAC,UAAU,CAAA;QAEjC,gCAAgC;QAChC,MAAM,GAAG,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,qBAAqB,CAAC,EAAC,WAAW,EAAE,OAAO,EAAE,MAAM,CAAC,OAAO,EAAC,CAAC,EAAE,EAAC,gBAAgB,EAAE,GAAG,EAAC,CAAC,CAAA;QACxH,IAAI,GAAG,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACrB,OAAO,CAAC,KAAK,CAAC,2CAA2C,EAAE,GAAG,CAAC,MAAM,CAAC,CAAA;YACtE,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAA;QAC5C,CAAC;QAED,OAAO,EAAC,OAAO,EAAE,SAAS,EAAE,EAAE,CAAC,SAAS,EAAE,WAAW,EAAE,SAAS,EAAC,CAAA;IACnE,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,OAAO,CAAC,KAAK,CAAC,iCAAiC,EAAE,OAAO,EAAE,CAAC,CAAC,CAAA;QAC5D,SAAS,CAAC,KAAK,EAAE,CAAA;QACjB,MAAM,CAAC,CAAA;IACT,CAAC;AACH,CAAC;AAED,6CAA6C;AAE7C,KAAK,UAAU,mBAAmB,CAChC,MAAkB,EAClB,UAAsB,EACtB,QAAoB,EACpB,QAAoB,EACpB,SAAsB;IAEtB,MAAM,MAAM,GAAG,IAAI,UAAU,CAAC,CAAC,CAAC,CAAA;IAChC,MAAM,KAAK,GAAG,sBAAsB,CAAC,MAAM,CAAC,SAAS,EAAE,MAAM,EAAE,QAAQ,EAAE,QAAQ,EAAE,UAAU,CAAC,CAAA;IAC9F,MAAM,OAAO,GAAG,SAAS,CAAC,CAAC,CAAC,WAAW,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC,CAAC,CAAC,KAAK,CAAA;IACjE,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;IACrD,OAAO,CAAC,GAAG,CAAC,wCAAwC,QAAQ,CAAC,MAAM,aAAa,IAAI,CAAC,QAAQ,CAAC,WAAW,QAAQ,CAAC,CAAC,CAAC,EAAE,CAAC,CAAA;IACvH,IAAI,QAAQ,CAAC,MAAM,GAAG,eAAe,EAAE,CAAC;QACtC,OAAO,CAAC,KAAK,CAAC,sDAAsD,EAAE,QAAQ,CAAC,MAAM,EAAE,eAAe,CAAC,CAAA;QACvG,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAA;IAC9C,CAAC;IACD,MAAM,SAAS,GAAG,QAAQ,CAAC,QAAQ,CAAC,CAAC,EAAE,eAAe,CAAC,CAAA;IACvD,MAAM,IAAI,GAAG,QAAQ,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAA;IAC/C,OAAO,CAAC,GAAG,CAAC,oCAAoC,IAAI,CAAC,MAAM,oBAAoB,IAAI,CAAC,UAAU,2BAA2B,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC,CAAA;IAClJ,6EAA6E;IAC7E,MAAM,GAAG,GAAG,UAAU,CAAC,SAAS,CAAC,CAAA;IACjC,IAAI,GAAG,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;QACpB,MAAM,IAAI,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,GAAG,CAAC,CAAA;QAC1C,IAAI,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAC3B,MAAM,IAAI,kBAAkB,CAAC,IAAI,CAAC,CAAA;QACpC,CAAC;IACH,CAAC;IACD,MAAM,EAAC,OAAO,EAAC,GAAG,kBAAkB,CAAC,MAAM,CAAC,SAAS,EAAE,SAAS,CAAC,CAAA;IACjE,MAAM,QAAQ,GAAG,cAAc,CAAC,OAAO,CAAC,CAAA;IACxC,IAAI,QAAQ,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;QAC9B,MAAM,GAAG,GAAG,QAAQ,CAAC,GAAG,CAAA;QACxB,IAAI,GAAG,CAAC,IAAI,KAAK,SAAS,IAAI,GAAG,CAAC,IAAI,KAAK,WAAW,EAAE,CAAC;YACvD,MAAM,IAAI,kBAAkB,CAAC,GAAG,CAAC,IAAI,CAAC,CAAA;QACxC,CAAC;QACD,MAAM,IAAI,kBAAkB,CAAC,GAAG,CAAC,IAAI,EAAE,oBAAoB,CAAC,GAAG,CAAC,CAAC,CAAA;IACnE,CAAC;IACD,OAAO,EAAC,QAAQ,EAAE,IAAI,EAAC,CAAA;AACzB,CAAC;AAED,SAAS,IAAI,CAAC,CAAa,EAAE,CAAC,GAAG,CAAC;IAChC,OAAO,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAA;AACrF,CAAC;AAED,2CAA2C;AAE3C,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,KAAsB,EACtB,MAAkB,EAClB,UAAsB,EACtB,QAAoB,EACpB,QAAoB,EACpB,SAAsB,EACtB,aAAqB,CAAC;IAEtB,IAAI,OAAO,GAAG,mBAAmB,CAAC,KAAK,EAAE,MAAM,CAAC,CAAA;IAChD,IAAI,MAAM,GAAG,MAAM,OAAO,CAAA;IAC1B,KAAK,IAAI,OAAO,GAAG,CAAC,EAAE,OAAO,IAAI,UAAU,EAAE,OAAO,EAAE,EAAE,CAAC;QACvD,IAAI,CAAC;YACH,IAAI,OAAO,GAAG,CAAC;gBAAE,OAAO,CAAC,GAAG,CAAC,qCAAqC,OAAO,IAAI,UAAU,EAAE,CAAC,CAAA;YAC1F,OAAO,MAAM,mBAAmB,CAAC,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,QAAQ,EAAE,SAAS,CAAC,CAAA;QACrF,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,OAAO,CAAC,GAAG,CAAC,+BAA+B,OAAO,YAAY,CAAC,YAAY,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,cAAc,WAAW,CAAC,CAAC,CAAC,EAAE,CAAC,CAAA;YACvI,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,CAAC;gBACpB,MAAM,eAAe,CAAC,CAAC,CAAC,CAAA;YAC1B,CAAC;YACD,IAAI,OAAO,KAAK,UAAU,EAAE,CAAC;gBAC3B,qBAAqB,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,CAAA;gBAC7C,MAAM,eAAe,CAAC,CAAC,CAAC,CAAA;YAC1B,CAAC;YACD,OAAO,GAAG,eAAe,CAAC,KAAK,EAAE,MAAM,CAAC,CAAA;YACxC,MAAM,GAAG,MAAM,OAAO,CAAA;QACxB,CAAC;IACH,CAAC;IACD,MAAM,IAAI,KAAK,CAAC,aAAa,CAAC,CAAA;AAChC,CAAC;AAED,sBAAsB;AAEtB,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,KAAsB,EAAE,MAAkB,EAAE,KAAiB,EAAE,IAAc,EAC7E,OAAqB,EAAE,OAA0B,IAAI;IAErD,MAAM,EAAC,QAAQ,EAAC,GAAG,MAAM,eAAe,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,UAAU,CAAC,CAAC,CAAC,EAAE,UAAU,CAAC,IAAI,EAAE,OAAO,EAAE,IAAI,CAAC,CAAC,CAAA;IAClH,IAAI,QAAQ,CAAC,IAAI,KAAK,UAAU;QAAE,MAAM,IAAI,KAAK,CAAC,uBAAuB,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAA;IAC1F,OAAO,EAAC,QAAQ,EAAE,QAAQ,CAAC,QAAQ,EAAE,YAAY,EAAE,QAAQ,CAAC,YAAY,EAAC,CAAA;AAC3E,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,KAAsB,EAAE,MAAkB,EAAE,KAAiB,EAAE,GAAe,EAAE,OAAqB;IAErG,MAAM,EAAC,QAAQ,EAAC,GAAG,MAAM,eAAe,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,GAAG,EAAE,UAAU,CAAC,OAAO,CAAC,CAAC,CAAA;IACxF,IAAI,QAAQ,CAAC,IAAI,KAAK,UAAU;QAAE,MAAM,IAAI,KAAK,CAAC,uBAAuB,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAA;IAC1F,OAAO,QAAQ,CAAC,YAAY,CAAA;AAC9B,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,KAAsB,EAAE,MAAkB,EAAE,KAAiB,EAAE,GAAe,EAAE,SAAqB;IAErG,MAAM,EAAC,QAAQ,EAAC,GAAG,MAAM,eAAe,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,GAAG,EAAE,UAAU,EAAE,EAAE,SAAS,CAAC,CAAA;IAC5F,IAAI,QAAQ,CAAC,IAAI,KAAK,MAAM;QAAE,MAAM,IAAI,KAAK,CAAC,uBAAuB,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAA;AACxF,CAAC;AAQD,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACxC,KAAsB,EAAE,MAAkB,EAAE,KAAiB,EAAE,GAAe;IAE9E,MAAM,EAAC,SAAS,EAAE,UAAU,EAAC,GAAG,qBAAqB,EAAE,CAAA;IACvD,MAAM,GAAG,GAAG,UAAU,CAAC,kBAAkB,CAAC,SAAS,CAAC,CAAC,CAAA;IACrD,MAAM,EAAC,QAAQ,EAAE,IAAI,EAAC,GAAG,MAAM,eAAe,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,CAAC,CAAA;IAC9E,IAAI,QAAQ,CAAC,IAAI,KAAK,QAAQ;QAAE,MAAM,IAAI,KAAK,CAAC,uBAAuB,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAA;IACxF,MAAM,QAAQ,GAAG,EAAE,CAAC,QAAQ,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAA;IAClD,OAAO,CAAC,GAAG,CAAC,sCAAsC,IAAI,CAAC,MAAM,UAAU,IAAI,CAAC,QAAQ,CAAC,KAAK,EAAE,EAAE,CAAC,aAAa,IAAI,CAAC,QAAQ,CAAC,eAAe,IAAI,CAAC,IAAI,CAAC,eAAe,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAA;IACzL,OAAO,EAAC,QAAQ,EAAE,KAAK,EAAE,QAAQ,CAAC,KAAK,EAAE,IAAI,EAAC,CAAA;AAChD,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,KAAsB,EAAE,MAAkB,EAAE,KAAiB,EAAE,GAAe,EAAE,MAAmB;IAEnG,MAAM,EAAC,QAAQ,EAAE,KAAK,EAAE,IAAI,EAAC,GAAG,MAAM,oBAAoB,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,GAAG,CAAC,CAAA;IACrF,OAAO,oBAAoB,CAAC,QAAQ,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,IAAI,IAAI,CAAC,CAAA;AACpE,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,KAAsB,EAAE,MAAkB,EAAE,KAAiB,EAAE,GAAe;IAE9E,MAAM,EAAC,QAAQ,EAAC,GAAG,MAAM,eAAe,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,GAAG,EAAE,UAAU,EAAE,CAAC,CAAA;IACjF,IAAI,QAAQ,CAAC,IAAI,KAAK,MAAM;QAAE,MAAM,IAAI,KAAK,CAAC,uBAAuB,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAA;AACxF,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,QAAQ,CAAC,KAAsB,EAAE,MAAkB;IACvE,MAAM,MAAM,GAAG,MAAM,mBAAmB,CAAC,KAAK,EAAE,MAAM,CAAC,CAAA;IACvD,MAAM,MAAM,GAAG,IAAI,UAAU,CAAC,CAAC,CAAC,CAAA;IAChC,MAAM,KAAK,GAAG,kBAAkB,CAAC,MAAM,CAAC,SAAS,EAAE,MAAM,EAAE,IAAI,UAAU,CAAC,CAAC,CAAC,EAAE,UAAU,EAAE,CAAC,CAAA;IAC3F,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;IACnD,IAAI,QAAQ,CAAC,MAAM,GAAG,eAAe;QAAE,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAA;IACtF,MAAM,EAAC,OAAO,EAAC,GAAG,kBAAkB,CAAC,MAAM,CAAC,SAAS,EAAE,QAAQ,CAAC,QAAQ,CAAC,CAAC,EAAE,eAAe,CAAC,CAAC,CAAA;IAC7F,MAAM,QAAQ,GAAG,cAAc,CAAC,OAAO,CAAC,CAAA;IACxC,IAAI,QAAQ,CAAC,IAAI,KAAK,QAAQ;QAAE,MAAM,IAAI,KAAK,CAAC,uBAAuB,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAA;AAC1F,CAAC;AAED,WAAW;AAEX,MAAM,UAAU,SAAS,CAAC,CAAa;IACrC,CAAC,CAAC,SAAS,CAAC,KAAK,EAAE,CAAA;AACrB,CAAC"}

package/dist/crypto/digest.d.ts

@@ -0,0 +1,3 @@
+export declare function sha256(data: Uint8Array): Uint8Array;
+export declare function sha512(data: Uint8Array): Uint8Array;
+export declare function sha512Streaming(chunks: Iterable<Uint8Array>): Uint8Array;

package/dist/crypto/digest.js

@@ -0,0 +1,23 @@
+// Cryptographic hash functions matching Simplex.Messaging.Crypto (sha256Hash, sha512Hash).
+import sodium from "libsodium-wrappers-sumo";
+// SHA-256 digest (32 bytes) -- Crypto.hs:1006
+export function sha256(data) {
+    return sodium.crypto_hash_sha256(data);
+}
+// SHA-512 digest (64 bytes) -- Crypto.hs:1011
+export function sha512(data) {
+    return sodium.crypto_hash_sha512(data);
+}
+// Streaming SHA-512 over multiple chunks -- avoids copying large data into WASM memory at once.
+// Internally segments chunks larger than 4MB to limit peak WASM memory usage.
+export function sha512Streaming(chunks) {
+    const SEG = 4 * 1024 * 1024;
+    const state = sodium.crypto_hash_sha512_init();
+    for (const chunk of chunks) {
+        for (let off = 0; off < chunk.length; off += SEG) {
+            sodium.crypto_hash_sha512_update(state, chunk.subarray(off, Math.min(off + SEG, chunk.length)));
+        }
+    }
+    return sodium.crypto_hash_sha512_final(state);
+}
+//# sourceMappingURL=digest.js.map

package/dist/crypto/digest.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"digest.js","sourceRoot":"","sources":["../../src/crypto/digest.ts"],"names":[],"mappings":"AAAA,2FAA2F;AAE3F,OAAO,MAA2B,MAAM,yBAAyB,CAAA;AAEjE,8CAA8C;AAC9C,MAAM,UAAU,MAAM,CAAC,IAAgB;IACrC,OAAO,MAAM,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAA;AACxC,CAAC;AAED,8CAA8C;AAC9C,MAAM,UAAU,MAAM,CAAC,IAAgB;IACrC,OAAO,MAAM,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAA;AACxC,CAAC;AAED,gGAAgG;AAChG,8EAA8E;AAC9E,MAAM,UAAU,eAAe,CAAC,MAA4B;IAC1D,MAAM,GAAG,GAAG,CAAC,GAAG,IAAI,GAAG,IAAI,CAAA;IAC3B,MAAM,KAAK,GAAG,MAAM,CAAC,uBAAuB,EAA6B,CAAA;IACzE,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QAC3B,KAAK,IAAI,GAAG,GAAG,CAAC,EAAE,GAAG,GAAG,KAAK,CAAC,MAAM,EAAE,GAAG,IAAI,GAAG,EAAE,CAAC;YACjD,MAAM,CAAC,yBAAyB,CAAC,KAAK,EAAE,KAAK,CAAC,QAAQ,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,GAAG,GAAG,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAA;QACjG,CAAC;IACH,CAAC;IACD,OAAO,MAAM,CAAC,wBAAwB,CAAC,KAAK,CAAC,CAAA;AAC/C,CAAC"}

package/dist/crypto/file.d.ts

@@ -0,0 +1,14 @@
+export interface FileHeader {
+    fileName: string;
+    fileExtra: string | null;
+}
+export declare function encodeFileHeader(hdr: FileHeader): Uint8Array;
+export declare function parseFileHeader(data: Uint8Array): {
+    header: FileHeader;
+    rest: Uint8Array;
+};
+export declare function encryptFile(source: Uint8Array, fileHdr: Uint8Array, key: Uint8Array, nonce: Uint8Array, fileSize: bigint, encSize: bigint): Uint8Array;
+export declare function decryptChunks(encSize: bigint, chunks: Uint8Array[], key: Uint8Array, nonce: Uint8Array): {
+    header: FileHeader;
+    content: Uint8Array;
+};

package/dist/crypto/file.js

@@ -0,0 +1,68 @@
+// File-level encryption/decryption matching Simplex.FileTransfer.Crypto.
+// Operates on in-memory Uint8Array (no file I/O needed for browser).
+import { Decoder, concatBytes, encodeInt64, encodeString, decodeString, encodeMaybe, decodeMaybe } from "../protocol/encoding.js";
+import { sbInit, sbEncryptChunk, sbDecryptTailTag, sbAuth } from "./secretbox.js";
+const AUTH_TAG_SIZE = 16n;
+// Encoding matches Haskell: smpEncode (fileName, fileExtra)
+//   = smpEncode fileName <> smpEncode fileExtra
+//   = encodeString(fileName) + encodeMaybe(encodeString, fileExtra)
+export function encodeFileHeader(hdr) {
+    return concatBytes(encodeString(hdr.fileName), encodeMaybe(encodeString, hdr.fileExtra));
+}
+// Parse FileHeader from decrypted content (first 1024 bytes examined).
+// Returns the parsed header and remaining bytes (file content).
+export function parseFileHeader(data) {
+    const hdrLen = Math.min(1024, data.length);
+    const d = new Decoder(data.subarray(0, hdrLen));
+    const fileName = decodeString(d);
+    const fileExtra = decodeMaybe(decodeString, d);
+    const consumed = d.offset();
+    return {
+        header: { fileName, fileExtra },
+        rest: data.subarray(consumed)
+    };
+}
+// -- Encryption (FileTransfer.Crypto:encryptFile)
+// Encrypt file content with streaming XSalsa20-Poly1305.
+// Output format: encrypted(Int64 fileSize | fileHdr | source | '#' padding) | 16-byte auth tag
+//
+//   source   -- raw file content
+//   fileHdr  -- pre-encoded FileHeader bytes (from encodeFileHeader)
+//   key      -- 32-byte symmetric key
+//   nonce    -- 24-byte nonce
+//   fileSize -- BigInt(fileHdr.length + source.length)
+//   encSize  -- total output size (including 16-byte auth tag)
+export function encryptFile(source, fileHdr, key, nonce, fileSize, encSize) {
+    const state = sbInit(key, nonce);
+    const lenStr = encodeInt64(fileSize);
+    const padLen = Number(encSize - AUTH_TAG_SIZE - fileSize - 8n);
+    if (padLen < 0)
+        throw new Error("encryptFile: encSize too small");
+    const hdr = sbEncryptChunk(state, concatBytes(lenStr, fileHdr));
+    const encSource = sbEncryptChunk(state, source);
+    const padding = new Uint8Array(padLen);
+    padding.fill(0x23); // '#'
+    const encPad = sbEncryptChunk(state, padding);
+    const tag = sbAuth(state);
+    return concatBytes(hdr, encSource, encPad, tag);
+}
+// -- Decryption (FileTransfer.Crypto:decryptChunks)
+// Decrypt one or more XFTP chunks into a FileHeader and file content.
+// Chunks are concatenated, then decrypted as a single stream.
+//
+//   encSize -- total encrypted size (including 16-byte auth tag)
+//   chunks  -- downloaded XFTP chunk data (concatenated = full encrypted file)
+//   key     -- 32-byte symmetric key
+//   nonce   -- 24-byte nonce
+export function decryptChunks(encSize, chunks, key, nonce) {
+    if (chunks.length === 0)
+        throw new Error("decryptChunks: empty chunks");
+    const paddedLen = encSize - AUTH_TAG_SIZE;
+    const data = chunks.length === 1 ? chunks[0] : concatBytes(...chunks);
+    const { valid, content } = sbDecryptTailTag(key, nonce, paddedLen, data);
+    if (!valid)
+        throw new Error("decryptChunks: invalid auth tag");
+    const { header, rest } = parseFileHeader(content);
+    return { header, content: rest };
+}
+//# sourceMappingURL=file.js.map

package/dist/crypto/file.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"file.js","sourceRoot":"","sources":["../../src/crypto/file.ts"],"names":[],"mappings":"AAAA,yEAAyE;AACzE,qEAAqE;AAErE,OAAO,EAAC,OAAO,EAAE,WAAW,EAAE,WAAW,EAAE,YAAY,EAAE,YAAY,EAAE,WAAW,EAAE,WAAW,EAAC,MAAM,yBAAyB,CAAA;AAC/H,OAAO,EAAC,MAAM,EAAE,cAAc,EAAE,gBAAgB,EAAE,MAAM,EAAC,MAAM,gBAAgB,CAAA;AAE/E,MAAM,aAAa,GAAG,GAAG,CAAA;AASzB,4DAA4D;AAC5D,gDAAgD;AAChD,oEAAoE;AACpE,MAAM,UAAU,gBAAgB,CAAC,GAAe;IAC9C,OAAO,WAAW,CAChB,YAAY,CAAC,GAAG,CAAC,QAAQ,CAAC,EAC1B,WAAW,CAAC,YAAY,EAAE,GAAG,CAAC,SAAS,CAAC,CACzC,CAAA;AACH,CAAC;AAED,uEAAuE;AACvE,gEAAgE;AAChE,MAAM,UAAU,eAAe,CAAC,IAAgB;IAC9C,MAAM,MAAM,GAAG,IAAI,CAAC,GAAG,CAAC,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,CAAA;IAC1C,MAAM,CAAC,GAAG,IAAI,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC,CAAA;IAC/C,MAAM,QAAQ,GAAG,YAAY,CAAC,CAAC,CAAC,CAAA;IAChC,MAAM,SAAS,GAAG,WAAW,CAAC,YAAY,EAAE,CAAC,CAAC,CAAA;IAC9C,MAAM,QAAQ,GAAG,CAAC,CAAC,MAAM,EAAE,CAAA;IAC3B,OAAO;QACL,MAAM,EAAE,EAAC,QAAQ,EAAE,SAAS,EAAC;QAC7B,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC;KAC9B,CAAA;AACH,CAAC;AAED,kDAAkD;AAElD,yDAAyD;AACzD,+FAA+F;AAC/F,EAAE;AACF,iCAAiC;AACjC,qEAAqE;AACrE,sCAAsC;AACtC,8BAA8B;AAC9B,uDAAuD;AACvD,+DAA+D;AAC/D,MAAM,UAAU,WAAW,CACzB,MAAkB,EAClB,OAAmB,EACnB,GAAe,EACf,KAAiB,EACjB,QAAgB,EAChB,OAAe;IAEf,MAAM,KAAK,GAAG,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,CAAA;IAChC,MAAM,MAAM,GAAG,WAAW,CAAC,QAAQ,CAAC,CAAA;IACpC,MAAM,MAAM,GAAG,MAAM,CAAC,OAAO,GAAG,aAAa,GAAG,QAAQ,GAAG,EAAE,CAAC,CAAA;IAC9D,IAAI,MAAM,GAAG,CAAC;QAAE,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAA;IACjE,MAAM,GAAG,GAAG,cAAc,CAAC,KAAK,EAAE,WAAW,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAA;IAC/D,MAAM,SAAS,GAAG,cAAc,CAAC,KAAK,EAAE,MAAM,CAAC,CAAA;IAC/C,MAAM,OAAO,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,CAAA;IACtC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA,CAAC,MAAM;IACzB,MAAM,MAAM,GAAG,cAAc,CAAC,KAAK,EAAE,OAAO,CAAC,CAAA;IAC7C,MAAM,GAAG,GAAG,MAAM,CAAC,KAAK,CAAC,CAAA;IACzB,OAAO,WAAW,CAAC,GAAG,EAAE,SAAS,EAAE,MAAM,EAAE,GAAG,CAAC,CAAA;AACjD,CAAC;AAED,oDAAoD;AAEpD,sEAAsE;AACtE,8DAA8D;AAC9D,EAAE;AACF,iEAAiE;AACjE,+EAA+E;AAC/E,qCAAqC;AACrC,6BAA6B;AAC7B,MAAM,UAAU,aAAa,CAC3B,OAAe,EACf,MAAoB,EACpB,GAAe,EACf,KAAiB;IAEjB,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC;QAAE,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAA;IACvE,MAAM,SAAS,GAAG,OAAO,GAAG,aAAa,CAAA;IACzC,MAAM,IAAI,GAAG,MAAM,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,GAAG,MAAM,CAAC,CAAA;IACrE,MAAM,EAAC,KAAK,EAAE,OAAO,EAAC,GAAG,gBAAgB,CAAC,GAAG,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,CAAC,CAAA;IACtE,IAAI,CAAC,KAAK;QAAE,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAA;IAC9D,MAAM,EAAC,MAAM,EAAE,IAAI,EAAC,GAAG,eAAe,CAAC,OAAO,CAAC,CAAA;IAC/C,OAAO,EAAC,MAAM,EAAE,OAAO,EAAE,IAAI,EAAC,CAAA;AAChC,CAAC"}

package/dist/crypto/identity.d.ts

@@ -0,0 +1,10 @@
+export declare function extractCertPublicKeyInfo(certDer: Uint8Array): Uint8Array;
+export interface IdentityVerification {
+    certChainDer: Uint8Array[];
+    signedKeyDer: Uint8Array;
+    sigBytes: Uint8Array;
+    challenge: Uint8Array;
+    sessionId: Uint8Array;
+    keyHash: Uint8Array;
+}
+export declare function verifyIdentityProof(v: IdentityVerification): boolean;

package/dist/crypto/identity.js

@@ -0,0 +1,98 @@
+// Web handshake identity proof verification.
+//
+// Verifies server identity in the XFTP web handshake using the certificate
+// chain from the protocol handshake (independent of TLS certificates).
+// Ed25519 via libsodium, Ed448 via @noble/curves.
+import { Decoder, concatBytes } from "../protocol/encoding.js";
+import { sha256 } from "./digest.js";
+import { verify, decodePubKeyEd25519, verifyEd448, decodePubKeyEd448 } from "./keys.js";
+import { chainIdCaCerts, extractSignedKey } from "../protocol/handshake.js";
+// -- ASN.1 DER helpers (minimal, for X.509 parsing)
+function derLen(d) {
+    const first = d.anyByte();
+    if (first < 0x80)
+        return first;
+    const n = first & 0x7f;
+    if (n === 0 || n > 4)
+        throw new Error("DER: unsupported length encoding");
+    let len = 0;
+    for (let i = 0; i < n; i++)
+        len = (len << 8) | d.anyByte();
+    return len;
+}
+function derSkip(d) {
+    d.anyByte();
+    d.take(derLen(d));
+}
+function derReadElement(d) {
+    const start = d.offset();
+    d.anyByte();
+    d.take(derLen(d));
+    return d.buf.subarray(start, d.offset());
+}
+// -- X.509 certificate public key extraction
+// Extract SubjectPublicKeyInfo DER from a full X.509 certificate DER.
+// Navigates: Certificate -> TBSCertificate -> skip version, serialNumber,
+//   signatureAlg, issuer, validity, subject -> SubjectPublicKeyInfo.
+export function extractCertPublicKeyInfo(certDer) {
+    const d = new Decoder(certDer);
+    if (d.anyByte() !== 0x30)
+        throw new Error("X.509: expected Certificate SEQUENCE");
+    derLen(d);
+    if (d.anyByte() !== 0x30)
+        throw new Error("X.509: expected TBSCertificate SEQUENCE");
+    derLen(d);
+    if (d.buf[d.offset()] === 0xa0)
+        derSkip(d); // version [0] EXPLICIT (optional)
+    derSkip(d); // serialNumber
+    derSkip(d); // signature AlgorithmIdentifier
+    derSkip(d); // issuer
+    derSkip(d); // validity
+    derSkip(d); // subject
+    return derReadElement(d); // SubjectPublicKeyInfo
+}
+function detectKeyAlgorithm(spki) {
+    if (spki.length === 44 && spki[8] === 0x70)
+        return 'ed25519';
+    if (spki.length === 69 && spki[8] === 0x71)
+        return 'ed448';
+    throw new Error("unsupported certificate key algorithm");
+}
+// Extract raw public key from SPKI DER, auto-detecting Ed25519 or Ed448.
+function extractCertRawKey(spki) {
+    const alg = detectKeyAlgorithm(spki);
+    const key = alg === 'ed25519' ? decodePubKeyEd25519(spki) : decodePubKeyEd448(spki);
+    return { key, alg };
+}
+// Verify signature using the appropriate algorithm.
+function verifySig(alg, key, sig, msg) {
+    return alg === 'ed25519' ? verify(key, sig, msg) : verifyEd448(key, sig, msg);
+}
+// Verify server identity proof from XFTP web handshake.
+//   1. Certificate chain has valid structure (2-4 certs)
+//   2. SHA-256(idCert) matches expected keyHash
+//   3. Challenge signature valid: verify(leafKey, sigBytes, challenge || sessionId)
+//   4. DH key signature valid: verify(leafKey, signedKey.signature, signedKey.objectDer)
+export function verifyIdentityProof(v) {
+    const cc = chainIdCaCerts(v.certChainDer);
+    if (cc.type !== 'valid')
+        return false;
+    const fp = sha256(cc.idCert);
+    if (!constantTimeEqual(fp, v.keyHash))
+        return false;
+    const spki = extractCertPublicKeyInfo(cc.leafCert);
+    const { key, alg } = extractCertRawKey(spki);
+    if (!verifySig(alg, key, v.sigBytes, concatBytes(v.challenge, v.sessionId)))
+        return false;
+    const sk = extractSignedKey(v.signedKeyDer);
+    return verifySig(alg, key, sk.signature, sk.objectDer);
+}
+function constantTimeEqual(a, b) {
+    if (a.length !== b.length)
+        return false;
+    let diff = 0;
+    for (let i = 0; i < a.length; i++)
+        diff |= a[i] ^ b[i];
+    return diff === 0;
+}
+//# sourceMappingURL=identity.js.map

package/dist/crypto/identity.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"identity.js","sourceRoot":"","sources":["../../src/crypto/identity.ts"],"names":[],"mappings":"AAAA,6CAA6C;AAC7C,EAAE;AACF,2EAA2E;AAC3E,uEAAuE;AACvE,kDAAkD;AAElD,OAAO,EAAC,OAAO,EAAE,WAAW,EAAC,MAAM,yBAAyB,CAAA;AAC5D,OAAO,EAAC,MAAM,EAAC,MAAM,aAAa,CAAA;AAClC,OAAO,EAAC,MAAM,EAAE,mBAAmB,EAAE,WAAW,EAAE,iBAAiB,EAAC,MAAM,WAAW,CAAA;AACrF,OAAO,EAAC,cAAc,EAAE,gBAAgB,EAAC,MAAM,0BAA0B,CAAA;AAEzE,oDAAoD;AAEpD,SAAS,MAAM,CAAC,CAAU;IACxB,MAAM,KAAK,GAAG,CAAC,CAAC,OAAO,EAAE,CAAA;IACzB,IAAI,KAAK,GAAG,IAAI;QAAE,OAAO,KAAK,CAAA;IAC9B,MAAM,CAAC,GAAG,KAAK,GAAG,IAAI,CAAA;IACtB,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC;QAAE,MAAM,IAAI,KAAK,CAAC,kCAAkC,CAAC,CAAA;IACzE,IAAI,GAAG,GAAG,CAAC,CAAA;IACX,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE;QAAE,GAAG,GAAG,CAAC,GAAG,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,CAAA;IAC1D,OAAO,GAAG,CAAA;AACZ,CAAC;AAED,SAAS,OAAO,CAAC,CAAU;IACzB,CAAC,CAAC,OAAO,EAAE,CAAA;IACX,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAA;AACnB,CAAC;AAED,SAAS,cAAc,CAAC,CAAU;IAChC,MAAM,KAAK,GAAG,CAAC,CAAC,MAAM,EAAE,CAAA;IACxB,CAAC,CAAC,OAAO,EAAE,CAAA;IACX,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAA;IACjB,OAAO,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,CAAA;AAC1C,CAAC;AAED,6CAA6C;AAE7C,sEAAsE;AACtE,0EAA0E;AAC1E,qEAAqE;AACrE,MAAM,UAAU,wBAAwB,CAAC,OAAmB;IAC1D,MAAM,CAAC,GAAG,IAAI,OAAO,CAAC,OAAO,CAAC,CAAA;IAC9B,IAAI,CAAC,CAAC,OAAO,EAAE,KAAK,IAAI;QAAE,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAA;IACjF,MAAM,CAAC,CAAC,CAAC,CAAA;IACT,IAAI,CAAC,CAAC,OAAO,EAAE,KAAK,IAAI;QAAE,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAA;IACpF,MAAM,CAAC,CAAC,CAAC,CAAA;IACT,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,IAAI;QAAE,OAAO,CAAC,CAAC,CAAC,CAAA,CAAC,kCAAkC;IAC7E,OAAO,CAAC,CAAC,CAAC,CAAA,CAAC,eAAe;IAC1B,OAAO,CAAC,CAAC,CAAC,CAAA,CAAC,gCAAgC;IAC3C,OAAO,CAAC,CAAC,CAAC,CAAA,CAAC,SAAS;IACpB,OAAO,CAAC,CAAC,CAAC,CAAA,CAAC,WAAW;IACtB,OAAO,CAAC,CAAC,CAAC,CAAA,CAAC,UAAU;IACrB,OAAO,cAAc,CAAC,CAAC,CAAC,CAAA,CAAC,uBAAuB;AAClD,CAAC;AAOD,SAAS,kBAAkB,CAAC,IAAgB;IAC1C,IAAI,IAAI,CAAC,MAAM,KAAK,EAAE,IAAI,IAAI,CAAC,CAAC,CAAC,KAAK,IAAI;QAAE,OAAO,SAAS,CAAA;IAC5D,IAAI,IAAI,CAAC,MAAM,KAAK,EAAE,IAAI,IAAI,CAAC,CAAC,CAAC,KAAK,IAAI;QAAE,OAAO,OAAO,CAAA;IAC1D,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAA;AAC1D,CAAC;AAED,yEAAyE;AACzE,SAAS,iBAAiB,CAAC,IAAgB;IACzC,MAAM,GAAG,GAAG,kBAAkB,CAAC,IAAI,CAAC,CAAA;IACpC,MAAM,GAAG,GAAG,GAAG,KAAK,SAAS,CAAC,CAAC,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAA;IACnF,OAAO,EAAC,GAAG,EAAE,GAAG,EAAC,CAAA;AACnB,CAAC;AAED,oDAAoD;AACpD,SAAS,SAAS,CAAC,GAAqB,EAAE,GAAe,EAAE,GAAe,EAAE,GAAe;IACzF,OAAO,GAAG,KAAK,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAA;AAC/E,CAAC;AAaD,wDAAwD;AACxD,yDAAyD;AACzD,gDAAgD;AAChD,oFAAoF;AACpF,yFAAyF;AACzF,MAAM,UAAU,mBAAmB,CAAC,CAAuB;IACzD,MAAM,EAAE,GAAG,cAAc,CAAC,CAAC,CAAC,YAAY,CAAC,CAAA;IACzC,IAAI,EAAE,CAAC,IAAI,KAAK,OAAO;QAAE,OAAO,KAAK,CAAA;IACrC,MAAM,EAAE,GAAG,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,CAAA;IAC5B,IAAI,CAAC,iBAAiB,CAAC,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC;QAAE,OAAO,KAAK,CAAA;IACnD,MAAM,IAAI,GAAG,wBAAwB,CAAC,EAAE,CAAC,QAAQ,CAAC,CAAA;IAClD,MAAM,EAAC,GAAG,EAAE,GAAG,EAAC,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAA;IAC1C,IAAI,CAAC,SAAS,CAAC,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC,QAAQ,EAAE,WAAW,CAAC,CAAC,CAAC,SAAS,EAAE,CAAC,CAAC,SAAS,CAAC,CAAC;QAAE,OAAO,KAAK,CAAA;IACzF,MAAM,EAAE,GAAG,gBAAgB,CAAC,CAAC,CAAC,YAAY,CAAC,CAAA;IAC3C,OAAO,SAAS,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE,CAAC,SAAS,EAAE,EAAE,CAAC,SAAS,CAAC,CAAA;AACxD,CAAC;AAED,SAAS,iBAAiB,CAAC,CAAa,EAAE,CAAa;IACrD,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM;QAAE,OAAO,KAAK,CAAA;IACvC,IAAI,IAAI,GAAG,CAAC,CAAA;IACZ,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE;QAAE,IAAI,IAAI,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAA;IACtD,OAAO,IAAI,KAAK,CAAC,CAAA;AACnB,CAAC"}