npm - @signalapp/libsignal-client - Versions diffs - 0.32.1 → 0.34.0 - Mend

@signalapp/libsignal-client 0.32.1 → 0.34.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (30) hide show

package/Native.d.ts +57 -1
package/dist/Errors.d.ts +6 -1
package/dist/Errors.js +1 -0
package/dist/WebpSanitizer.d.ts +11 -0
package/dist/WebpSanitizer.js +31 -0
package/dist/index.d.ts +2 -0
package/dist/index.js +4 -2
package/dist/net.d.ts +29 -0
package/dist/net.js +45 -0
package/dist/usernames.d.ts +1 -1
package/dist/usernames.js +2 -2
package/dist/zkgroup/backups/BackupAuthCredential.d.ts +11 -0
package/dist/zkgroup/backups/BackupAuthCredential.js +28 -0
package/dist/zkgroup/backups/BackupAuthCredentialPresentation.d.ts +8 -0
package/dist/zkgroup/backups/BackupAuthCredentialPresentation.js +18 -0
package/dist/zkgroup/backups/BackupAuthCredentialRequest.d.ts +10 -0
package/dist/zkgroup/backups/BackupAuthCredentialRequest.js +26 -0
package/dist/zkgroup/backups/BackupAuthCredentialRequestContext.d.ts +14 -0
package/dist/zkgroup/backups/BackupAuthCredentialRequestContext.js +28 -0
package/dist/zkgroup/backups/BackupAuthCredentialResponse.d.ts +6 -0
package/dist/zkgroup/backups/BackupAuthCredentialResponse.js +15 -0
package/dist/zkgroup/index.d.ts +5 -0
package/dist/zkgroup/index.js +13 -1
package/package.json +4 -3
package/prebuilds/darwin-arm64/node.napi.node +0 -0
package/prebuilds/darwin-x64/node.napi.node +0 -0
package/prebuilds/linux-arm64/node.napi.node +0 -0
package/prebuilds/linux-x64/node.napi.node +0 -0
package/prebuilds/win32-arm64/node.napi.node +0 -0
package/prebuilds/win32-x64/node.napi.node +0 -0

package/Native.d.ts CHANGED Viewed

@@ -11,6 +11,13 @@ type Uuid = Buffer;
 /// what's important is that it's an integer less than Number.MAX_SAFE_INTEGER.
 type Timestamp = number;
+type LookupResponse = Map<string, LookupResponseEntry>;
+interface LookupResponseEntry {
+  readonly aci: string | undefined;
+  readonly pni: string | undefined;
+}
 export abstract class IdentityKeyStore {
   _getIdentityKey(): Promise<PrivateKey>;
   _getLocalRegistrationId(): Promise<number>;
@@ -51,6 +58,9 @@ export abstract class InputStream {
   _skip(amount: number): Promise<void>;
 }
+export abstract class SyncInputStream extends Buffer {
+}
 interface Wrapper<T> {
   readonly _nativeHandle: T
 }
@@ -72,6 +82,18 @@ export function AuthCredentialResponse_CheckValidContents(buffer: Buffer): void;
 export function AuthCredentialWithPniResponse_CheckValidContents(buffer: Buffer): void;
 export function AuthCredentialWithPni_CheckValidContents(buffer: Buffer): void;
 export function AuthCredential_CheckValidContents(buffer: Buffer): void;
+export function BackupAuthCredentialPresentation_CheckValidContents(presentationBytes: Buffer): void;
+export function BackupAuthCredentialPresentation_Verify(presentationBytes: Buffer, now: Timestamp, serverParamsBytes: Buffer): void;
+export function BackupAuthCredentialRequestContext_CheckValidContents(contextBytes: Buffer): void;
+export function BackupAuthCredentialRequestContext_GetRequest(contextBytes: Buffer): Buffer;
+export function BackupAuthCredentialRequestContext_New(backupKey: Buffer, uuid: Uuid): Buffer;
+export function BackupAuthCredentialRequestContext_ReceiveResponse(contextBytes: Buffer, responseBytes: Buffer, paramsBytes: Buffer, expectedReceiptLevel: Buffer): Buffer;
+export function BackupAuthCredentialRequest_CheckValidContents(requestBytes: Buffer): void;
+export function BackupAuthCredentialRequest_IssueDeterministic(requestBytes: Buffer, redemptionTime: Timestamp, receiptLevel: Buffer, paramsBytes: Buffer, randomness: Buffer): Buffer;
+export function BackupAuthCredentialResponse_CheckValidContents(responseBytes: Buffer): void;
+export function BackupAuthCredential_CheckValidContents(paramsBytes: Buffer): void;
+export function BackupAuthCredential_GetBackupId(credentialBytes: Buffer): Buffer;
+export function BackupAuthCredential_PresentDeterministic(credentialBytes: Buffer, serverParamsBytes: Buffer, randomness: Buffer): Buffer;
 export function CallLinkAuthCredentialPresentation_CheckValidContents(presentationBytes: Buffer): void;
 export function CallLinkAuthCredentialPresentation_GetUserId(presentationBytes: Buffer): Serialized<UuidCiphertext>;
 export function CallLinkAuthCredentialPresentation_Verify(presentationBytes: Buffer, now: Timestamp, serverParamsBytes: Buffer, callLinkParamsBytes: Buffer): void;
@@ -86,9 +108,11 @@ export function CallLinkSecretParams_DecryptUserId(paramsBytes: Buffer, userId:
 export function CallLinkSecretParams_DeriveFromRootKey(rootKey: Buffer): Buffer;
 export function CallLinkSecretParams_GetPublicParams(paramsBytes: Buffer): Buffer;
 export function Cds2ClientState_New(mrenclave: Buffer, attestationMsg: Buffer, currentTimestamp: Timestamp): SgxClientState;
+export function CdsiLookup(asyncRuntime: Wrapper<TokioAsyncContext>, connectionManager: Wrapper<ConnectionManager>, username: string, password: string, request: Wrapper<LookupRequest>, timeoutMillis: number): Promise<LookupResponse>;
 export function CiphertextMessage_FromPlaintextContent(m: Wrapper<PlaintextContent>): CiphertextMessage;
 export function CiphertextMessage_Serialize(obj: Wrapper<CiphertextMessage>): Buffer;
 export function CiphertextMessage_Type(msg: Wrapper<CiphertextMessage>): number;
+export function ConnectionManager_new(environment: number): ConnectionManager;
 export function CreateCallLinkCredentialPresentation_CheckValidContents(presentationBytes: Buffer): void;
 export function CreateCallLinkCredentialPresentation_Verify(presentationBytes: Buffer, roomId: Buffer, now: Timestamp, serverParamsBytes: Buffer, callLinkParamsBytes: Buffer): void;
 export function CreateCallLinkCredentialRequestContext_CheckValidContents(contextBytes: Buffer): void;
@@ -164,6 +188,10 @@ export function KyberPublicKey_Equals(lhs: Wrapper<KyberPublicKey>, rhs: Wrapper
 export function KyberPublicKey_Serialize(obj: Wrapper<KyberPublicKey>): Buffer;
 export function KyberSecretKey_Deserialize(data: Buffer): KyberSecretKey;
 export function KyberSecretKey_Serialize(obj: Wrapper<KyberSecretKey>): Buffer;
+export function LookupRequest_addAciAndAccessKey(request: Wrapper<LookupRequest>, aci: Buffer, accessKey: Buffer): void;
+export function LookupRequest_addE164(request: Wrapper<LookupRequest>, e164: string): void;
+export function LookupRequest_new(): LookupRequest;
+export function LookupRequest_setReturnAcisWithoutUaks(request: Wrapper<LookupRequest>, returnAcisWithoutUaks: boolean): void;
 export function Mp4Sanitizer_Sanitize(input: InputStream, len: Buffer): Promise<SanitizedMetadata>;
 export function PlaintextContent_Deserialize(data: Buffer): PlaintextContent;
 export function PlaintextContent_FromDecryptionErrorMessage(m: Wrapper<DecryptionErrorMessage>): PlaintextContent;
@@ -344,6 +372,29 @@ export function SignedPreKeyRecord_GetSignature(obj: Wrapper<SignedPreKeyRecord>
 export function SignedPreKeyRecord_GetTimestamp(obj: Wrapper<SignedPreKeyRecord>): Timestamp;
 export function SignedPreKeyRecord_New(id: number, timestamp: Timestamp, pubKey: Wrapper<PublicKey>, privKey: Wrapper<PrivateKey>, signature: Buffer): SignedPreKeyRecord;
 export function SignedPreKeyRecord_Serialize(obj: Wrapper<SignedPreKeyRecord>): Buffer;
+export function TESTING_CdsiLookupResponseConvert(): LookupResponse;
+export function TESTING_ErrorOnBorrowAsync(_input: null): Promise<void>;
+export function TESTING_ErrorOnBorrowIo(asyncRuntime: Wrapper<NonSuspendingBackgroundThreadRuntime>, _input: null): Promise<void>;
+export function TESTING_ErrorOnBorrowSync(_input: null): void;
+export function TESTING_ErrorOnReturnAsync(_needsCleanup: null): Promise<null>;
+export function TESTING_ErrorOnReturnIo(asyncRuntime: Wrapper<NonSuspendingBackgroundThreadRuntime>, _needsCleanup: null): Promise<null>;
+export function TESTING_ErrorOnReturnSync(_needsCleanup: null): null;
+export function TESTING_FutureFailure(asyncRuntime: Wrapper<NonSuspendingBackgroundThreadRuntime>, _input: number): Promise<number>;
+export function TESTING_FutureSuccess(asyncRuntime: Wrapper<NonSuspendingBackgroundThreadRuntime>, input: number): Promise<number>;
+export function TESTING_NonSuspendingBackgroundThreadRuntime_New(): NonSuspendingBackgroundThreadRuntime;
+export function TESTING_PanicInBodyAsync(_input: null): Promise<void>;
+export function TESTING_PanicInBodyIo(asyncRuntime: Wrapper<NonSuspendingBackgroundThreadRuntime>, _input: null): Promise<void>;
+export function TESTING_PanicInBodySync(_input: null): void;
+export function TESTING_PanicOnBorrowAsync(_input: null): Promise<void>;
+export function TESTING_PanicOnBorrowIo(asyncRuntime: Wrapper<NonSuspendingBackgroundThreadRuntime>, _input: null): Promise<void>;
+export function TESTING_PanicOnBorrowSync(_input: null): void;
+export function TESTING_PanicOnLoadAsync(_needsCleanup: null, _input: null): Promise<void>;
+export function TESTING_PanicOnLoadIo(asyncRuntime: Wrapper<NonSuspendingBackgroundThreadRuntime>, _needsCleanup: null, _input: null): Promise<void>;
+export function TESTING_PanicOnLoadSync(_needsCleanup: null, _input: null): void;
+export function TESTING_PanicOnReturnAsync(_needsCleanup: null): Promise<null>;
+export function TESTING_PanicOnReturnIo(asyncRuntime: Wrapper<NonSuspendingBackgroundThreadRuntime>, _needsCleanup: null): Promise<null>;
+export function TESTING_PanicOnReturnSync(_needsCleanup: null): null;
+export function TokioAsyncContext_new(): TokioAsyncContext;
 export function UnidentifiedSenderMessageContent_Deserialize(data: Buffer): UnidentifiedSenderMessageContent;
 export function UnidentifiedSenderMessageContent_GetContentHint(m: Wrapper<UnidentifiedSenderMessageContent>): number;
 export function UnidentifiedSenderMessageContent_GetContents(obj: Wrapper<UnidentifiedSenderMessageContent>): Buffer;
@@ -352,7 +403,7 @@ export function UnidentifiedSenderMessageContent_GetMsgType(m: Wrapper<Unidentif
 export function UnidentifiedSenderMessageContent_GetSenderCert(m: Wrapper<UnidentifiedSenderMessageContent>): SenderCertificate;
 export function UnidentifiedSenderMessageContent_New(message: Wrapper<CiphertextMessage>, sender: Wrapper<SenderCertificate>, contentHint: number, groupId: Buffer | null): UnidentifiedSenderMessageContent;
 export function UnidentifiedSenderMessageContent_Serialize(obj: Wrapper<UnidentifiedSenderMessageContent>): Buffer;
-export function UsernameLink_Create(username: string): Buffer;
+export function UsernameLink_Create(username: string, entropy: Buffer | null): Buffer;
 export function UsernameLink_DecryptUsername(entropy: Buffer, encryptedUsername: Buffer): string;
 export function Username_CandidatesFrom(nickname: string, minLen: number, maxLen: number): string;
 export function Username_Hash(username: string): Buffer;
@@ -362,6 +413,7 @@ export function UuidCiphertext_CheckValidContents(buffer: Buffer): void;
 export function ValidatingMac_Finalize(mac: Wrapper<ValidatingMac>): number;
 export function ValidatingMac_Initialize(key: Buffer, chunkSize: number, digests: Buffer): ValidatingMac;
 export function ValidatingMac_Update(mac: Wrapper<ValidatingMac>, bytes: Buffer, offset: number, length: number): number;
+export function WebpSanitizer_Sanitize(input: SyncInputStream, len: Buffer): void;
 export function initLogger(maxLevel: LogLevel, callback: (level: LogLevel, target: string, file: string | null, line: number | null, message: string) => void): void
 interface Aes256GcmSiv { readonly __type: unique symbol; }
 interface AuthCredential { readonly __type: unique symbol; }
@@ -369,6 +421,7 @@ interface AuthCredentialResponse { readonly __type: unique symbol; }
 interface AuthCredentialWithPni { readonly __type: unique symbol; }
 interface AuthCredentialWithPniResponse { readonly __type: unique symbol; }
 interface CiphertextMessage { readonly __type: unique symbol; }
+interface ConnectionManager { readonly __type: unique symbol; }
 interface DecryptionErrorMessage { readonly __type: unique symbol; }
 interface ExpiringProfileKeyCredential { readonly __type: unique symbol; }
 interface ExpiringProfileKeyCredentialResponse { readonly __type: unique symbol; }
@@ -382,6 +435,8 @@ interface KyberKeyPair { readonly __type: unique symbol; }
 interface KyberPreKeyRecord { readonly __type: unique symbol; }
 interface KyberPublicKey { readonly __type: unique symbol; }
 interface KyberSecretKey { readonly __type: unique symbol; }
+interface LookupRequest { readonly __type: unique symbol; }
+interface NonSuspendingBackgroundThreadRuntime { readonly __type: unique symbol; }
 interface PlaintextContent { readonly __type: unique symbol; }
 interface PreKeyBundle { readonly __type: unique symbol; }
 interface PreKeyRecord { readonly __type: unique symbol; }
@@ -412,6 +467,7 @@ interface SessionRecord { readonly __type: unique symbol; }
 interface SgxClientState { readonly __type: unique symbol; }
 interface SignalMessage { readonly __type: unique symbol; }
 interface SignedPreKeyRecord { readonly __type: unique symbol; }
+interface TokioAsyncContext { readonly __type: unique symbol; }
 interface UnidentifiedSenderMessageContent { readonly __type: unique symbol; }
 interface UuidCiphertext { readonly __type: unique symbol; }
 interface ValidatingMac { readonly __type: unique symbol; }

package/dist/Errors.d.ts CHANGED Viewed

@@ -20,7 +20,8 @@ export declare enum ErrorCode {
     UnsupportedMediaInput = 16,
     InputDataTooLong = 17,
     InvalidEntropyDataLength = 18,
-    InvalidUsernameLinkEncryptedData = 19
+    InvalidUsernameLinkEncryptedData = 19,
+    RateLimitedError = 20
 }
 export declare class LibSignalErrorBase extends Error {
     readonly code: ErrorCode;
@@ -93,4 +94,8 @@ export type InvalidMediaInputError = LibSignalErrorCommon & {
 export type UnsupportedMediaInputError = LibSignalErrorCommon & {
     code: ErrorCode.UnsupportedMediaInput;
 };
+export type RateLimitedError = LibSignalErrorBase & {
+    code: ErrorCode.RateLimitedError;
+    readonly retryAfterSecs: number;
+};
 export type LibSignalError = GenericError | DuplicatedMessageError | SealedSenderSelfSendError | UntrustedIdentityError | InvalidRegistrationIdError | VerificationFailedError | InvalidSessionError | InvalidSenderKeySessionError | CannotBeEmptyError | CannotStartWithDigitError | MissingSeparatorError | BadNicknameCharacterError | NicknameTooShortError | NicknameTooLongError | InputDataTooLong | InvalidEntropyDataLength | InvalidUsernameLinkEncryptedData | IoError | InvalidMediaInputError | UnsupportedMediaInputError;

package/dist/Errors.js CHANGED Viewed

@@ -28,6 +28,7 @@ var ErrorCode;
     ErrorCode[ErrorCode["InputDataTooLong"] = 17] = "InputDataTooLong";
     ErrorCode[ErrorCode["InvalidEntropyDataLength"] = 18] = "InvalidEntropyDataLength";
     ErrorCode[ErrorCode["InvalidUsernameLinkEncryptedData"] = 19] = "InvalidUsernameLinkEncryptedData";
+    ErrorCode[ErrorCode["RateLimitedError"] = 20] = "RateLimitedError";
 })(ErrorCode = exports.ErrorCode || (exports.ErrorCode = {}));
 class LibSignalErrorBase extends Error {
     constructor(message, name, operation, extraProps) {

package/dist/WebpSanitizer.d.ts ADDED Viewed

@@ -0,0 +1,11 @@
+/// <reference types="node" />
+/**
+ * Sanitize a WebP input.
+ *
+ * @param input A WebP format input stream.
+ * @param length The exact length of the input stream.
+ * @throws IoError If an IO error on the input occurs.
+ * @throws InvalidMediaInputError If the input could not be parsed because it was invalid.
+ * @throws UnsupportedMediaInputError If the input could not be parsed because it's unsupported in some way.
+ */
+export declare function sanitize(input: Buffer): void;

package/dist/WebpSanitizer.js ADDED Viewed

@@ -0,0 +1,31 @@
+"use strict";
+//
+// Copyright 2023 Signal Messenger, LLC.
+// SPDX-License-Identifier: AGPL-3.0-only
+//
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.sanitize = void 0;
+/**
+ * A WebP format “sanitizer”.
+ *
+ * The sanitizer currently simply checks the validity of a WebP file input, so that passing a malformed file to an
+ * unsafe parser can be avoided.
+ *
+ * @module WebpSanitizer
+ */
+const Native = require("../Native");
+const BigIntUtil_1 = require("./zkgroup/internal/BigIntUtil");
+/**
+ * Sanitize a WebP input.
+ *
+ * @param input A WebP format input stream.
+ * @param length The exact length of the input stream.
+ * @throws IoError If an IO error on the input occurs.
+ * @throws InvalidMediaInputError If the input could not be parsed because it was invalid.
+ * @throws UnsupportedMediaInputError If the input could not be parsed because it's unsupported in some way.
+ */
+function sanitize(input) {
+    Native.WebpSanitizer_Sanitize(input, (0, BigIntUtil_1.bufferFromBigUInt64BE)(BigInt(input.length)));
+}
+exports.sanitize = sanitize;
+//# sourceMappingURL=WebpSanitizer.js.map

package/dist/index.d.ts CHANGED Viewed

@@ -4,7 +4,9 @@ import { Aci, ProtocolAddress } from './Address';
 export * from './Address';
 export * as usernames from './usernames';
 export * as io from './io';
+export * as Net from './net';
 export * as Mp4Sanitizer from './Mp4Sanitizer';
+export * as WebpSanitizer from './WebpSanitizer';
 import * as Native from '../Native';
 export declare enum CiphertextMessageType {
     Whisper = 2,

package/dist/index.js CHANGED Viewed

@@ -27,8 +27,8 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
     });
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.sealedSenderEncrypt = exports.sealedSenderEncryptMessage = exports.signalDecryptPreKey = exports.signalDecrypt = exports.signalEncrypt = exports.processPreKeyBundle = exports.DecryptionErrorMessage = exports.PlaintextContent = exports.CiphertextMessage = exports.SealedSenderDecryptionResult = exports.groupDecrypt = exports.groupEncrypt = exports.SenderKeyStore = exports.KyberPreKeyStore = exports.SignedPreKeyStore = exports.PreKeyStore = exports.IdentityKeyStore = exports.SessionStore = exports.UnidentifiedSenderMessageContent = exports.SenderKeyMessage = exports.processSenderKeyDistributionMessage = exports.SenderKeyDistributionMessage = exports.SenderCertificate = exports.SenderKeyRecord = exports.ServerCertificate = exports.SessionRecord = exports.PreKeySignalMessage = exports.SignalMessage = exports.KyberPreKeyRecord = exports.SignedPreKeyRecord = exports.PreKeyRecord = exports.PreKeyBundle = exports.IdentityKeyPair = exports.KEMKeyPair = exports.KEMSecretKey = exports.KEMPublicKey = exports.PrivateKey = exports.PublicKey = exports.Aes256GcmSiv = exports.Fingerprint = exports.DisplayableFingerprint = exports.ScannableFingerprint = exports.hkdf = exports.HKDF = exports.ContentHint = exports.Direction = exports.CiphertextMessageType = exports.Mp4Sanitizer = exports.io = exports.usernames = void 0;
-exports.initLogger = exports.LogLevel = exports.HsmEnclaveClient = exports.Cds2Client = exports.sealedSenderDecryptToUsmc = exports.sealedSenderDecryptMessage = exports.sealedSenderMultiRecipientMessageForSingleRecipient = exports.sealedSenderMultiRecipientEncrypt = void 0;
+exports.signalDecryptPreKey = exports.signalDecrypt = exports.signalEncrypt = exports.processPreKeyBundle = exports.DecryptionErrorMessage = exports.PlaintextContent = exports.CiphertextMessage = exports.SealedSenderDecryptionResult = exports.groupDecrypt = exports.groupEncrypt = exports.SenderKeyStore = exports.KyberPreKeyStore = exports.SignedPreKeyStore = exports.PreKeyStore = exports.IdentityKeyStore = exports.SessionStore = exports.UnidentifiedSenderMessageContent = exports.SenderKeyMessage = exports.processSenderKeyDistributionMessage = exports.SenderKeyDistributionMessage = exports.SenderCertificate = exports.SenderKeyRecord = exports.ServerCertificate = exports.SessionRecord = exports.PreKeySignalMessage = exports.SignalMessage = exports.KyberPreKeyRecord = exports.SignedPreKeyRecord = exports.PreKeyRecord = exports.PreKeyBundle = exports.IdentityKeyPair = exports.KEMKeyPair = exports.KEMSecretKey = exports.KEMPublicKey = exports.PrivateKey = exports.PublicKey = exports.Aes256GcmSiv = exports.Fingerprint = exports.DisplayableFingerprint = exports.ScannableFingerprint = exports.hkdf = exports.HKDF = exports.ContentHint = exports.Direction = exports.CiphertextMessageType = exports.WebpSanitizer = exports.Mp4Sanitizer = exports.Net = exports.io = exports.usernames = void 0;
+exports.initLogger = exports.LogLevel = exports.HsmEnclaveClient = exports.Cds2Client = exports.sealedSenderDecryptToUsmc = exports.sealedSenderDecryptMessage = exports.sealedSenderMultiRecipientMessageForSingleRecipient = exports.sealedSenderMultiRecipientEncrypt = exports.sealedSenderEncrypt = exports.sealedSenderEncryptMessage = void 0;
 const uuid = require("uuid");
 const Errors = require("./Errors");
 __exportStar(require("./Errors"), exports);
@@ -36,7 +36,9 @@ const Address_1 = require("./Address");
 __exportStar(require("./Address"), exports);
 exports.usernames = require("./usernames");
 exports.io = require("./io");
+exports.Net = require("./net");
 exports.Mp4Sanitizer = require("./Mp4Sanitizer");
+exports.WebpSanitizer = require("./WebpSanitizer");
 const Native = require("../Native");
 Native.registerErrors(Errors);
 // These enums must be kept in sync with their Rust counterparts.

package/dist/net.d.ts ADDED Viewed

@@ -0,0 +1,29 @@
+import type { ReadonlyDeep } from 'type-fest';
+export declare enum Environment {
+    Staging = 0,
+    Production = 1
+}
+export type CDSAuthType = {
+    username: string;
+    password: string;
+};
+export type CDSRequestOptionsType = {
+    e164s: Array<string>;
+    acisAndAccessKeys: Array<{
+        aci: string;
+        accessKey: string;
+    }>;
+    timeout: number;
+    returnAcisWithoutUaks: boolean;
+};
+export type CDSResponseEntryType<Aci, Pni> = {
+    aci: Aci | undefined;
+    pni: Pni | undefined;
+};
+export type CDSResponseType<Aci, Pni> = Map<string, CDSResponseEntryType<Aci, Pni>>;
+export declare class Net {
+    private readonly _asyncContext;
+    private readonly _connectionManager;
+    constructor(env: Environment);
+    cdsiLookup({ username, password }: Readonly<CDSAuthType>, { e164s, acisAndAccessKeys, timeout, returnAcisWithoutUaks, }: ReadonlyDeep<CDSRequestOptionsType>): Promise<CDSResponseType<string, string>>;
+}

package/dist/net.js ADDED Viewed

@@ -0,0 +1,45 @@
+"use strict";
+//
+// Copyright 2023 Signal Messenger, LLC.
+// SPDX-License-Identifier: AGPL-3.0-only
+//
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Net = exports.Environment = void 0;
+const Native = require("../Native");
+const Address_1 = require("./Address");
+// This must match the libsignal-bridge Rust enum of the same name.
+var Environment;
+(function (Environment) {
+    Environment[Environment["Staging"] = 0] = "Staging";
+    Environment[Environment["Production"] = 1] = "Production";
+})(Environment = exports.Environment || (exports.Environment = {}));
+class Net {
+    constructor(env) {
+        this._asyncContext = Native.TokioAsyncContext_new();
+        this._connectionManager = Native.ConnectionManager_new(env);
+    }
+    cdsiLookup({ username, password }, { e164s, acisAndAccessKeys, timeout, returnAcisWithoutUaks, }) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const request = { _nativeHandle: Native.LookupRequest_new() };
+            e164s.forEach((e164) => {
+                Native.LookupRequest_addE164(request, e164);
+            });
+            acisAndAccessKeys.forEach(({ aci: aciStr, accessKey: accessKeyStr }) => {
+                Native.LookupRequest_addAciAndAccessKey(request, Address_1.Aci.parseFromServiceIdString(aciStr).getServiceIdFixedWidthBinary(), Buffer.from(accessKeyStr, 'base64'));
+            });
+            Native.LookupRequest_setReturnAcisWithoutUaks(request, returnAcisWithoutUaks);
+            return yield Native.CdsiLookup({ _nativeHandle: this._asyncContext }, { _nativeHandle: this._connectionManager }, username, password, request, timeout);
+        });
+    }
+}
+exports.Net = Net;
+//# sourceMappingURL=net.js.map

package/dist/usernames.d.ts CHANGED Viewed

@@ -8,5 +8,5 @@ export declare function hash(username: string): Buffer;
 export declare function generateProof(username: string): Buffer;
 export declare function generateProofWithRandom(username: string, random: Buffer): Buffer;
 export declare function decryptUsernameLink(usernameLink: UsernameLink): string;
-export declare function createUsernameLink(username: string): UsernameLink;
+export declare function createUsernameLink(username: string, previousEntropy?: Buffer): UsernameLink;
 export declare function verifyProof(proof: Buffer, hash: Buffer): void;

package/dist/usernames.js CHANGED Viewed

@@ -30,8 +30,8 @@ function decryptUsernameLink(usernameLink) {
     return Native.UsernameLink_DecryptUsername(usernameLink.entropy, usernameLink.encryptedUsername);
 }
 exports.decryptUsernameLink = decryptUsernameLink;
-function createUsernameLink(username) {
-    const usernameLinkData = Native.UsernameLink_Create(username);
+function createUsernameLink(username, previousEntropy) {
+    const usernameLinkData = Native.UsernameLink_Create(username, previousEntropy !== null && previousEntropy !== void 0 ? previousEntropy : null);
     const entropy = usernameLinkData.slice(0, 32);
     const encryptedUsername = usernameLinkData.slice(32);
     return { entropy, encryptedUsername };

package/dist/zkgroup/backups/BackupAuthCredential.d.ts ADDED Viewed

@@ -0,0 +1,11 @@
+/// <reference types="node" />
+import ByteArray from '../internal/ByteArray';
+import GenericServerPublicParams from '../GenericServerPublicParams';
+import BackupAuthCredentialPresentation from './BackupAuthCredentialPresentation';
+export default class BackupAuthCredential extends ByteArray {
+    private readonly __type?;
+    constructor(contents: Buffer);
+    present(serverParams: GenericServerPublicParams): BackupAuthCredentialPresentation;
+    presentWithRandom(serverParams: GenericServerPublicParams, random: Buffer): BackupAuthCredentialPresentation;
+    getBackupId(): Buffer;
+}

package/dist/zkgroup/backups/BackupAuthCredential.js ADDED Viewed

@@ -0,0 +1,28 @@
+"use strict";
+//
+// Copyright 2023 Signal Messenger, LLC.
+// SPDX-License-Identifier: AGPL-3.0-only
+//
+Object.defineProperty(exports, "__esModule", { value: true });
+const crypto_1 = require("crypto");
+const Native = require("../../../Native");
+const ByteArray_1 = require("../internal/ByteArray");
+const Constants_1 = require("../internal/Constants");
+const BackupAuthCredentialPresentation_1 = require("./BackupAuthCredentialPresentation");
+class BackupAuthCredential extends ByteArray_1.default {
+    constructor(contents) {
+        super(contents, Native.BackupAuthCredential_CheckValidContents);
+    }
+    present(serverParams) {
+        const random = (0, crypto_1.randomBytes)(Constants_1.RANDOM_LENGTH);
+        return this.presentWithRandom(serverParams, random);
+    }
+    presentWithRandom(serverParams, random) {
+        return new BackupAuthCredentialPresentation_1.default(Native.BackupAuthCredential_PresentDeterministic(this.contents, serverParams.contents, random));
+    }
+    getBackupId() {
+        return Native.BackupAuthCredential_GetBackupId(this.contents);
+    }
+}
+exports.default = BackupAuthCredential;
+//# sourceMappingURL=BackupAuthCredential.js.map

package/dist/zkgroup/backups/BackupAuthCredentialPresentation.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+/// <reference types="node" />
+import ByteArray from '../internal/ByteArray';
+import GenericServerSecretParams from '../GenericServerSecretParams';
+export default class BackupAuthCredentialPresentation extends ByteArray {
+    private readonly __type?;
+    constructor(contents: Buffer);
+    verify(serverParams: GenericServerSecretParams, now?: Date): void;
+}

package/dist/zkgroup/backups/BackupAuthCredentialPresentation.js ADDED Viewed

@@ -0,0 +1,18 @@
+"use strict";
+//
+// Copyright 2023 Signal Messenger, LLC.
+// SPDX-License-Identifier: AGPL-3.0-only
+//
+Object.defineProperty(exports, "__esModule", { value: true });
+const ByteArray_1 = require("../internal/ByteArray");
+const Native = require("../../../Native");
+class BackupAuthCredentialPresentation extends ByteArray_1.default {
+    constructor(contents) {
+        super(contents, Native.BackupAuthCredentialPresentation_CheckValidContents);
+    }
+    verify(serverParams, now = new Date()) {
+        Native.BackupAuthCredentialPresentation_Verify(this.contents, Math.floor(now.getTime() / 1000), serverParams.contents);
+    }
+}
+exports.default = BackupAuthCredentialPresentation;
+//# sourceMappingURL=BackupAuthCredentialPresentation.js.map

package/dist/zkgroup/backups/BackupAuthCredentialRequest.d.ts ADDED Viewed

@@ -0,0 +1,10 @@
+/// <reference types="node" />
+import ByteArray from '../internal/ByteArray';
+import GenericServerSecretParams from '../GenericServerSecretParams';
+import BackupAuthCredentialResponse from './BackupAuthCredentialResponse';
+export default class BackupAuthCredentialRequest extends ByteArray {
+    private readonly __type?;
+    constructor(contents: Buffer);
+    issueCredential(timestamp: number, receiptLevel: bigint, params: GenericServerSecretParams): BackupAuthCredentialResponse;
+    issueCredentialWithRandom(timestamp: number, receiptLevel: bigint, params: GenericServerSecretParams, random: Buffer): BackupAuthCredentialResponse;
+}

package/dist/zkgroup/backups/BackupAuthCredentialRequest.js ADDED Viewed

@@ -0,0 +1,26 @@
+"use strict";
+//
+// Copyright 2023 Signal Messenger, LLC.
+// SPDX-License-Identifier: AGPL-3.0-only
+//
+Object.defineProperty(exports, "__esModule", { value: true });
+const crypto_1 = require("crypto");
+const Native = require("../../../Native");
+const ByteArray_1 = require("../internal/ByteArray");
+const Constants_1 = require("../internal/Constants");
+const BackupAuthCredentialResponse_1 = require("./BackupAuthCredentialResponse");
+const BigIntUtil_1 = require("../internal/BigIntUtil");
+class BackupAuthCredentialRequest extends ByteArray_1.default {
+    constructor(contents) {
+        super(contents, Native.BackupAuthCredentialRequest_CheckValidContents);
+    }
+    issueCredential(timestamp, receiptLevel, params) {
+        const random = (0, crypto_1.randomBytes)(Constants_1.RANDOM_LENGTH);
+        return this.issueCredentialWithRandom(timestamp, receiptLevel, params, random);
+    }
+    issueCredentialWithRandom(timestamp, receiptLevel, params, random) {
+        return new BackupAuthCredentialResponse_1.default(Native.BackupAuthCredentialRequest_IssueDeterministic(this.contents, timestamp, (0, BigIntUtil_1.bufferFromBigUInt64BE)(receiptLevel), params.contents, random));
+    }
+}
+exports.default = BackupAuthCredentialRequest;
+//# sourceMappingURL=BackupAuthCredentialRequest.js.map

package/dist/zkgroup/backups/BackupAuthCredentialRequestContext.d.ts ADDED Viewed

@@ -0,0 +1,14 @@
+/// <reference types="node" />
+import ByteArray from '../internal/ByteArray';
+import BackupAuthCredentialRequest from './BackupAuthCredentialRequest';
+import BackupAuthCredentialResponse from './BackupAuthCredentialResponse';
+import BackupAuthCredential from './BackupAuthCredential';
+import GenericServerPublicParams from '../GenericServerPublicParams';
+import { Uuid } from '../..';
+export default class BackupAuthCredentialRequestContext extends ByteArray {
+    private readonly __type?;
+    constructor(contents: Buffer);
+    static create(backupKey: Buffer, aci: Uuid): BackupAuthCredentialRequestContext;
+    getRequest(): BackupAuthCredentialRequest;
+    receive(response: BackupAuthCredentialResponse, params: GenericServerPublicParams, expectedReceiptLevel: bigint): BackupAuthCredential;
+}

package/dist/zkgroup/backups/BackupAuthCredentialRequestContext.js ADDED Viewed

@@ -0,0 +1,28 @@
+"use strict";
+//
+// Copyright 2023 Signal Messenger, LLC.
+// SPDX-License-Identifier: AGPL-3.0-only
+//
+Object.defineProperty(exports, "__esModule", { value: true });
+const uuid = require("uuid");
+const ByteArray_1 = require("../internal/ByteArray");
+const Native = require("../../../Native");
+const BackupAuthCredentialRequest_1 = require("./BackupAuthCredentialRequest");
+const BackupAuthCredential_1 = require("./BackupAuthCredential");
+const BigIntUtil_1 = require("../internal/BigIntUtil");
+class BackupAuthCredentialRequestContext extends ByteArray_1.default {
+    constructor(contents) {
+        super(contents, Native.BackupAuthCredentialRequestContext_CheckValidContents);
+    }
+    static create(backupKey, aci) {
+        return new BackupAuthCredentialRequestContext(Native.BackupAuthCredentialRequestContext_New(backupKey, Buffer.from(uuid.parse(aci))));
+    }
+    getRequest() {
+        return new BackupAuthCredentialRequest_1.default(Native.BackupAuthCredentialRequestContext_GetRequest(this.contents));
+    }
+    receive(response, params, expectedReceiptLevel) {
+        return new BackupAuthCredential_1.default(Native.BackupAuthCredentialRequestContext_ReceiveResponse(this.contents, response.contents, params.contents, (0, BigIntUtil_1.bufferFromBigUInt64BE)(expectedReceiptLevel)));
+    }
+}
+exports.default = BackupAuthCredentialRequestContext;
+//# sourceMappingURL=BackupAuthCredentialRequestContext.js.map

package/dist/zkgroup/backups/BackupAuthCredentialResponse.d.ts ADDED Viewed

@@ -0,0 +1,6 @@
+/// <reference types="node" />
+import ByteArray from '../internal/ByteArray';
+export default class BackupAuthCredentialResponse extends ByteArray {
+    private readonly __type?;
+    constructor(contents: Buffer);
+}

package/dist/zkgroup/backups/BackupAuthCredentialResponse.js ADDED Viewed

@@ -0,0 +1,15 @@
+"use strict";
+//
+// Copyright 2023 Signal Messenger, LLC.
+// SPDX-License-Identifier: AGPL-3.0-only
+//
+Object.defineProperty(exports, "__esModule", { value: true });
+const ByteArray_1 = require("../internal/ByteArray");
+const Native = require("../../../Native");
+class BackupAuthCredentialResponse extends ByteArray_1.default {
+    constructor(contents) {
+        super(contents, Native.BackupAuthCredentialResponse_CheckValidContents);
+    }
+}
+exports.default = BackupAuthCredentialResponse;
+//# sourceMappingURL=BackupAuthCredentialResponse.js.map

package/dist/zkgroup/index.d.ts CHANGED Viewed

@@ -45,3 +45,8 @@ export { default as CreateCallLinkCredentialPresentation } from './calllinks/Cre
 export { default as CreateCallLinkCredentialRequest } from './calllinks/CreateCallLinkCredentialRequest';
 export { default as CreateCallLinkCredentialRequestContext } from './calllinks/CreateCallLinkCredentialRequestContext';
 export { default as CreateCallLinkCredentialResponse } from './calllinks/CreateCallLinkCredentialResponse';
+export { default as BackupAuthCredential } from './backups/BackupAuthCredential';
+export { default as BackupAuthCredentialPresentation } from './backups/BackupAuthCredentialPresentation';
+export { default as BackupAuthCredentialRequest } from './backups/BackupAuthCredentialRequest';
+export { default as BackupAuthCredentialRequestContext } from './backups/BackupAuthCredentialRequestContext';
+export { default as BackupAuthCredentialResponse } from './backups/BackupAuthCredentialResponse';

package/dist/zkgroup/index.js CHANGED Viewed

@@ -4,7 +4,8 @@
 // SPDX-License-Identifier: AGPL-3.0-only
 //
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.CreateCallLinkCredentialResponse = exports.CreateCallLinkCredentialRequestContext = exports.CreateCallLinkCredentialRequest = exports.CreateCallLinkCredentialPresentation = exports.CreateCallLinkCredential = exports.CallLinkAuthCredentialResponse = exports.CallLinkAuthCredentialPresentation = exports.CallLinkAuthCredential = exports.CallLinkSecretParams = exports.CallLinkPublicParams = exports.ReceiptSerial = exports.ReceiptCredentialResponse = exports.ReceiptCredentialRequestContext = exports.ReceiptCredentialRequest = exports.ReceiptCredentialPresentation = exports.ReceiptCredential = exports.ServerZkReceiptOperations = exports.ClientZkReceiptOperations = exports.ExpiringProfileKeyCredentialResponse = exports.ExpiringProfileKeyCredential = exports.ProfileKeyVersion = exports.ProfileKeyCredentialRequestContext = exports.ProfileKeyCredentialRequest = exports.ProfileKeyCredentialPresentation = exports.ProfileKeyCommitment = exports.ProfileKey = exports.ServerZkProfileOperations = exports.ClientZkProfileOperations = exports.UuidCiphertext = exports.ProfileKeyCiphertext = exports.GroupSecretParams = exports.GroupPublicParams = exports.GroupMasterKey = exports.GroupIdentifier = exports.ClientZkGroupCipher = exports.AuthCredentialWithPniResponse = exports.AuthCredentialWithPni = exports.AuthCredentialPresentation = exports.AuthCredentialResponse = exports.AuthCredential = exports.ServerZkAuthOperations = exports.ClientZkAuthOperations = exports.NotarySignature = exports.GenericServerSecretParams = exports.GenericServerPublicParams = exports.ServerSecretParams = exports.ServerPublicParams = void 0;
+exports.BackupAuthCredentialRequest = exports.BackupAuthCredentialPresentation = exports.BackupAuthCredential = exports.CreateCallLinkCredentialResponse = exports.CreateCallLinkCredentialRequestContext = exports.CreateCallLinkCredentialRequest = exports.CreateCallLinkCredentialPresentation = exports.CreateCallLinkCredential = exports.CallLinkAuthCredentialResponse = exports.CallLinkAuthCredentialPresentation = exports.CallLinkAuthCredential = exports.CallLinkSecretParams = exports.CallLinkPublicParams = exports.ReceiptSerial = exports.ReceiptCredentialResponse = exports.ReceiptCredentialRequestContext = exports.ReceiptCredentialRequest = exports.ReceiptCredentialPresentation = exports.ReceiptCredential = exports.ServerZkReceiptOperations = exports.ClientZkReceiptOperations = exports.ExpiringProfileKeyCredentialResponse = exports.ExpiringProfileKeyCredential = exports.ProfileKeyVersion = exports.ProfileKeyCredentialRequestContext = exports.ProfileKeyCredentialRequest = exports.ProfileKeyCredentialPresentation = exports.ProfileKeyCommitment = exports.ProfileKey = exports.ServerZkProfileOperations = exports.ClientZkProfileOperations = exports.UuidCiphertext = exports.ProfileKeyCiphertext = exports.GroupSecretParams = exports.GroupPublicParams = exports.GroupMasterKey = exports.GroupIdentifier = exports.ClientZkGroupCipher = exports.AuthCredentialWithPniResponse = exports.AuthCredentialWithPni = exports.AuthCredentialPresentation = exports.AuthCredentialResponse = exports.AuthCredential = exports.ServerZkAuthOperations = exports.ClientZkAuthOperations = exports.NotarySignature = exports.GenericServerSecretParams = exports.GenericServerPublicParams = exports.ServerSecretParams = exports.ServerPublicParams = void 0;
+exports.BackupAuthCredentialResponse = exports.BackupAuthCredentialRequestContext = void 0;
 // Root
 var ServerPublicParams_1 = require("./ServerPublicParams");
 Object.defineProperty(exports, "ServerPublicParams", { enumerable: true, get: function () { return ServerPublicParams_1.default; } });
@@ -105,4 +106,15 @@ var CreateCallLinkCredentialRequestContext_1 = require("./calllinks/CreateCallLi
 Object.defineProperty(exports, "CreateCallLinkCredentialRequestContext", { enumerable: true, get: function () { return CreateCallLinkCredentialRequestContext_1.default; } });
 var CreateCallLinkCredentialResponse_1 = require("./calllinks/CreateCallLinkCredentialResponse");
 Object.defineProperty(exports, "CreateCallLinkCredentialResponse", { enumerable: true, get: function () { return CreateCallLinkCredentialResponse_1.default; } });
+// Backup Auth
+var BackupAuthCredential_1 = require("./backups/BackupAuthCredential");
+Object.defineProperty(exports, "BackupAuthCredential", { enumerable: true, get: function () { return BackupAuthCredential_1.default; } });
+var BackupAuthCredentialPresentation_1 = require("./backups/BackupAuthCredentialPresentation");
+Object.defineProperty(exports, "BackupAuthCredentialPresentation", { enumerable: true, get: function () { return BackupAuthCredentialPresentation_1.default; } });
+var BackupAuthCredentialRequest_1 = require("./backups/BackupAuthCredentialRequest");
+Object.defineProperty(exports, "BackupAuthCredentialRequest", { enumerable: true, get: function () { return BackupAuthCredentialRequest_1.default; } });
+var BackupAuthCredentialRequestContext_1 = require("./backups/BackupAuthCredentialRequestContext");
+Object.defineProperty(exports, "BackupAuthCredentialRequestContext", { enumerable: true, get: function () { return BackupAuthCredentialRequestContext_1.default; } });
+var BackupAuthCredentialResponse_1 = require("./backups/BackupAuthCredentialResponse");
+Object.defineProperty(exports, "BackupAuthCredentialResponse", { enumerable: true, get: function () { return BackupAuthCredentialResponse_1.default; } });
 //# sourceMappingURL=index.js.map

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@signalapp/libsignal-client",
-  "version": "0.32.1",
+  "version": "0.34.0",
   "license": "AGPL-3.0-only",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -26,6 +26,7 @@
   },
   "dependencies": {
     "node-gyp-build": "^4.2.3",
+    "type-fest": "^3.5.0",
     "uuid": "^8.3.0"
   },
   "devDependencies": {
@@ -34,7 +35,7 @@
     "@types/chai-as-promised": "^7.1.3",
     "@types/chance": "^1.1.3",
     "@types/mocha": "^5.2.7",
-    "@types/node": "16.18.3",
+    "@types/node": "~18.15.0",
     "@types/uuid": "^8.3.0",
     "@typescript-eslint/eslint-plugin": "^5.47.0",
     "@typescript-eslint/parser": "^5.47.0",
@@ -48,7 +49,7 @@
     "eslint-plugin-mocha": "^10.1.0",
     "eslint-plugin-more": "^1.0.0",
     "mocha": "^9",
-    "node-gyp": "^8.4.1",
+    "node-gyp": "^10.0.0",
     "prettier": "^2.7.1",
     "rimraf": "^3.0.1",
     "source-map-support": "^0.5.19",

package/prebuilds/darwin-arm64/node.napi.node CHANGED Viewed

Binary file

package/prebuilds/darwin-x64/node.napi.node CHANGED Viewed

Binary file

package/prebuilds/linux-arm64/node.napi.node CHANGED Viewed

Binary file

package/prebuilds/linux-x64/node.napi.node CHANGED Viewed

Binary file

package/prebuilds/win32-arm64/node.napi.node CHANGED Viewed

Binary file

package/prebuilds/win32-x64/node.napi.node CHANGED Viewed

Binary file