@substrate-system/crypto-stream 0.0.34 → 0.1.0

package/README.md

@@ -18,10 +18,11 @@ This uses the [Web Crypto API](https://developer.mozilla.org/en-US/docs/Web/API/
 
 <!-- toc -->
 
-- [install](#install)
-- [fork](#fork)
-- [example](#example)
-  * [example with blobs](#example-with-blobs)
+- [Install](#install)
+- [Fork](#fork)
+- [Example](#example)
+  * [Example With Blobs](#example-with-blobs)
+- [Seek](#seek)
 - [API](#api)
   * [`new Keychain([key, [salt]])`](#new-keychainkey-salt)
   * [`keychain.key`](#keychainkey)
@@ -32,7 +33,10 @@ This uses the [Web Crypto API](https://developer.mozilla.org/en-US/docs/Web/API/
   * [`keychain.authTokenB64()`](#keychainauthtokenb64)
   * [`keychain.authHeader()`](#keychainauthheader)
   * [`keychain.setAuthToken(authToken)`](#keychainsetauthtokenauthtoken)
-  * [`keychain.encryptStream(stream)`](#keychainencryptstreamstream)
+  * [`keychain.encryptStream(stream[, opts])`](#keychainencryptstreamstream-opts)
+  * [`keychain.contentDigest(content)`](#keychaincontentdigestcontent)
+  * [`keychain.header(opts)`](#keychainheaderopts)
+  * [`keychain.encryptRecord(seq, plaintext, opts)`](#keychainencryptrecordseq-plaintext-opts)
   * [`keychain.decryptStream(encryptedStream)`](#keychaindecryptstreamencryptedstream)
   * [`keychain.decryptStreamRange(offset, length, totalEncryptedLength)`](#keychaindecryptstreamrangeoffset-length-totalencryptedlength)
   * [`keychain.encryptMeta(meta)`](#keychainencryptmetameta)
@@ -41,21 +45,29 @@ This uses the [Web Crypto API](https://developer.mozilla.org/en-US/docs/Web/API/
   * [`keychain.decryptBytes(bytes)`](#keychaindecryptbytesbytes)
   * [`plaintextSize(encryptedSize)`](#plaintextsizeencryptedsize)
   * [`encryptedSize(plaintextSize)`](#encryptedsizeplaintextsize)
+- [Reproducible & record-addressable encryption](#reproducible--record-addressable-encryption)
+  * [Two-pass flow: hash, then encrypt](#two-pass-flow-hash-then-encrypt)
+  * [Low-level ECE building blocks](#low-level-ece-building-blocks)
 - [credits](#credits)
 
 <!-- tocstop -->
 
 </details>
 
-## install
+## Install
+
 ```sh
 npm i -S @substrate-system/crypto-stream
 ```
 
-## fork
-This is a fork of [SocketDev/wormhole-crypto](https://github.com/SocketDev/wormhole-crypto). Thanks [@SocketDev](https://github.com/SocketDev) team for working in open source.
+## Fork
+
+This is a fork of
+[SocketDev/wormhole-crypto](https://github.com/SocketDev/wormhole-crypto).
+Thanks [@SocketDev](https://github.com/SocketDev) team for working in the
+world of open source.
 
-## example
+## Example
 
 ```js
 import { Keychain } from '@substrate-system/crypto-stream'
@@ -78,7 +90,7 @@ const plaintextStream = await keychain.decryptStream(encryptedStream)
 // to if you had used `stream`.
 ```
 
-### example with blobs
+### Example With Blobs
 
 See [./example](./example/index.ts) for a version that uses blobs + a
 local `vite` server.
@@ -98,6 +110,65 @@ function Component () {
 }
 ```
 
+## Seek
+
+`crypto-stream` can seek on both sides of the cipher.
+
+Reads use
+[`decryptStreamRange`](#keychaindecryptstreamrangeoffset-length-totalencryptedlength),
+which decrypts an arbitrary byte range without reading the whole
+ciphertext.
+
+Writes use *reproducible, record-addressable* encryption. The same plaintext
+always encrypts to identical bytes, and you can regenerate any single record
+on demand without re-encrypting the rest. That is what lets a peer seed a
+large file (for example, over WebRTC) without buffering the whole ciphertext.
+Hash the content once, then hand out individual records as they are requested.
+
+```js
+import { Keychain } from '@substrate-system/crypto-stream'
+import {
+    recordPlaintextSize,
+    recordCount
+} from '@substrate-system/crypto-stream/src/ece'
+
+const keychain = new Keychain()
+const data = new TextEncoder().encode('the quick brown fox')
+const rs = 1024  // record size; transport chunks line up with records
+
+// 1. Hash pass. The salt is derived from this digest, so it is bound
+//    to exactly this content (no AES-GCM nonce reuse).
+const digest = await keychain.contentDigest(data)
+
+// 2. Reproducible whole-stream encrypt. Re-encrypting `data` with the
+//    same digest yields byte-identical output.
+const encrypted = await keychain.encryptStream(new Response(data).body, {
+    contentDigest: digest,
+    recordSize: rs
+})
+
+// 3. Record-addressable: rebuild any single record on demand. The full
+//    ciphertext is `header || rec0 || rec1 || ... || recLast`.
+const head = await keychain.header({ contentDigest: digest, recordSize: rs })
+
+const max = recordPlaintextSize(rs)  // plaintext bytes per record
+const count = recordCount(data.length, rs)  // number of data records
+
+const i = 0
+const slice = data.subarray(i * max, (i + 1) * max)
+const record = await keychain.encryptRecord(i, slice, {
+    isLast: i === count - 1,
+    contentDigest: digest,
+    recordSize: rs
+})
+// `head || record` equals the first record of `encrypted`, byte for byte.
+```
+
+See
+[Reproducible & record-addressable encryption](#reproducible--record-addressable-encryption)
+for the safety model (why the salt is derived from the content) and the
+low-level building blocks.
+
 ## API
 
 ### `new Keychain([key, [salt]])`
@@ -221,10 +292,13 @@ The authentication token. This should be 16 bytes in length. If a `string` is
 given, then it should be a base64-encoded string. If this argument is `null`,
 then an authentication token will be automatically generated.
 
-### `keychain.encryptStream(stream)`
+### `keychain.encryptStream(stream[, opts])`
 
 ```ts
-encryptStream (stream:ReadableStream):Promise<ReadableStream>
+encryptStream (
+    stream:ReadableStream,
+    opts?:{ contentDigest?, recordSize? }
+):Promise<ReadableStream>
 ```
 
 Type: `Function`
@@ -235,12 +309,157 @@ Returns a `Promise` that resolves to a `ReadableStream` encryption stream that
 consumes the data in `stream` and returns an encrypted version. Data is
 encrypted with [Encrypted Content-Encoding for HTTP (RFC 8188)](https://tools.ietf.org/html/rfc8188).
 
+If `opts.contentDigest` is provided, the salt is derived from the digest,
+making the output reproducible — the same plaintext always produces
+identical ciphertext. Without options, a fresh random salt is used
+(default behavior; not reproducible).
+
 #### `stream`
 
 Type: `ReadableStream`
 
 A WHATWG readable stream used as a data source for the encrypted stream.
 
+#### `opts`
+
+Type: `{ contentDigest?, recordSize? }`
+
+Optional encryption options.
+
+##### `contentDigest`
+
+Type: `Uint8Array`
+
+SHA-256 digest of the plaintext (from `keychain.contentDigest()`).
+When provided, enables reproducible encryption by deriving the salt
+from the digest internally.
+
+##### `recordSize`
+
+Type: `number`
+
+ECE record size in bytes (default `RECORD_SIZE` = 65536). Record size
+affects output size and encryption granularity.
+
+### `keychain.contentDigest(content)`
+
+```ts
+contentDigest (
+    content:ReadableStream<Uint8Array>|Uint8Array|Blob
+):Promise<Uint8Array>
+```
+
+Type: `Function`
+
+Returns: `Promise<Uint8Array>`
+
+Returns a 32-byte SHA-256 digest of the plaintext. Use this digest as
+the input to `encryptStream`, `header`, and `encryptRecord` to enable
+reproducible encryption. Accepts a stream, byte array, or Blob; streams
+and Blobs are drained into memory before hashing.
+
+#### `content`
+
+Type: `ReadableStream<Uint8Array> | Uint8Array | Blob`
+
+The plaintext to hash.
+
+### `keychain.header(opts)`
+
+```ts
+header (opts:{ contentDigest, recordSize? }):Promise<Uint8Array>
+```
+
+Type: `Function`
+
+Returns: `Promise<Uint8Array>`
+
+Returns the 21-byte ECE header for content identified by the digest.
+The salt is derived internally from the content digest, so this never
+exposes a raw salt. The header is byte-identical to the header that
+`encryptStream` with the same options emits.
+
+#### `opts`
+
+Type: `{ contentDigest, recordSize? }`
+
+Required options.
+
+##### `contentDigest`
+
+Type: `Uint8Array`
+
+SHA-256 digest of the plaintext (from `keychain.contentDigest()`).
+
+##### `recordSize`
+
+Type: `number`
+
+ECE record size in bytes (default `RECORD_SIZE` = 65536).
+
+### `keychain.encryptRecord(seq, plaintext, opts)`
+
+```ts
+encryptRecord (
+    seq:number,
+    plaintext:Uint8Array,
+    opts:{
+        isLast:boolean,
+        contentDigest:Uint8Array,
+        recordSize?:number
+    }
+):Promise<Uint8Array>
+```
+
+Type: `Function`
+
+Returns: `Promise<Uint8Array>`
+
+Encrypts a single ECE record by index. The result is byte-identical to
+record `seq` of `encryptStream` with the same content and options. The
+salt is derived from the content digest internally.
+
+Non-final records must be exactly `recordPlaintextSize(recordSize)` bytes;
+the final record must be less than or equal to that. The low-level ECE
+functions throw if violated.
+
+#### `seq`
+
+Type: `number`
+
+Zero-based record index (0, 1, 2, ...).
+
+#### `plaintext`
+
+Type: `Uint8Array`
+
+The record's plaintext data.
+
+#### `opts`
+
+Type: `{ isLast, contentDigest, recordSize? }`
+
+Required options.
+
+##### `isLast`
+
+Type: `boolean`
+
+Whether this is the final record of the content.
+
+##### `contentDigest`
+
+Type: `Uint8Array`
+
+SHA-256 digest of the entire plaintext (from `keychain.contentDigest()`).
+
+##### `recordSize`
+
+Type: `number`
+
+ECE record size in bytes (default `RECORD_SIZE` = 65536). Must match
+the record size used for the header and other records.
+
 ### `keychain.decryptStream(encryptedStream)`
 
 Type: `Function`
@@ -361,6 +580,70 @@ function encryptedSize (
 
 Given a plaintext size, return the corresponding encrypted size.
 
+## Reproducible & record-addressable encryption
+
+By default, `encryptStream` uses a fresh random salt for each call.
+This provides strong privacy (identical plaintexts don't leak through
+repeated ciphertext), but the same input encrypted twice produces
+different output.
+
+For use cases like deduplication and content-addressed storage, you
+need reproducible encryption: the same plaintext always produces
+identical ciphertext. This is safe only if the salt is bound to the
+plaintext, preventing a single salt from encrypting two different
+contents (which would break AES-GCM).
+
+The Keychain API enforces this binding automatically. The salt is
+never chosen by the caller; it's derived from a content digest
+(SHA-256 hash of the plaintext) via HKDF. This guarantees: a fixed
+salt pairs with exactly one plaintext.
+
+### Two-pass flow: hash, then encrypt
+
+To encrypt reproducibly, first compute the content digest, then
+pass it to the encrypt functions:
+
+```js
+// 1. Hash pass
+const digest = await keychain.contentDigest(file.stream())
+
+// 2. Encrypt pass — reproducible: same input -> identical ciphertext
+const encrypted = await keychain.encryptStream(file.stream(), {
+    contentDigest: digest,
+    recordSize: rs
+})
+
+// On demand: regenerate record i byte-identically
+const rec = await keychain.encryptRecord(i, sliceI, {
+    isLast,
+    contentDigest: digest,
+    recordSize: rs
+})
+// Full ciphertext = header(21) || rec0 || rec1 || ... || recLast
+const head = await keychain.header({
+    contentDigest: digest,
+    recordSize: rs
+})
+```
+
+Note that `encryptStream` with no options keeps the original random-salt
+behavior and is a single pass.
+
+### Low-level ECE building blocks
+
+The package exports low-level ECE functions at
+`@substrate-system/crypto-stream/src/ece`. These include `RECORD_SIZE`,
+`HEADER_LENGTH`, `recordPlaintextSize`, `recordCount`, `header`,
+`deriveContentSalt`, and `encryptRecord`. They take a raw salt directly
+and are footgun-prone: passing the same raw salt with two different
+plaintexts breaks AES-GCM (nonce-reuse catastrophe). Prefer the
+Keychain API, which derives the salt from the content digest and is
+nonce-reuse-safe by construction.
+
 ## credits
 
-Thank you [Feross](https://github.com/feross) and [SocketDev](https://github.com/SocketDev) team for writing and publishing this.
+Thank you
+[Feross](https://github.com/feross) and
+[SocketDev](https://github.com/SocketDev)
+team for writing and publishing the original,
+[wormhole-crypto](https://github.com/SocketDev/wormhole-crypto).

package/dist/ece.cjs

@@ -19,13 +19,20 @@ var __copyProps = (to, from, except, desc) => {
 var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
 var ece_exports = {};
 __export(ece_exports, {
+  HEADER_LENGTH: () => HEADER_LENGTH,
   KEY_LENGTH: () => KEY_LENGTH,
+  RECORD_SIZE: () => RECORD_SIZE,
   TAG_LENGTH: () => TAG_LENGTH,
   decryptStream: () => decryptStream,
   decryptStreamRange: () => decryptStreamRange,
+  deriveContentSalt: () => deriveContentSalt,
+  encryptRecord: () => encryptRecord,
   encryptStream: () => encryptStream,
   encryptedSize: () => encryptedSize,
-  plaintextSize: () => plaintextSize
+  header: () => header,
+  plaintextSize: () => plaintextSize,
+  recordCount: () => recordCount,
+  recordPlaintextSize: () => recordPlaintextSize
 });
 module.exports = __toCommonJS(ece_exports);
 var import_concat_streams = require("./concat-streams.js");
@@ -42,6 +49,7 @@ const NONCE_LENGTH = 12;
 const RECORD_SIZE = 64 * 1024;
 const HEADER_LENGTH = KEY_LENGTH + 4 + 1;
 const encoder = new TextEncoder();
+const SALT_INFO = encoder.encode("Content-Encoding: salt\0");
 class ECETransformer {
   static {
     __name(this, "ECETransformer");
@@ -151,25 +159,21 @@ class ECETransformer {
   }
   createHeader() {
     if (!this.salt) throw new Error("Not salt");
-    const header = new Uint8Array(HEADER_LENGTH);
-    header.set(this.salt);
-    const dv = new DataView(header.buffer, header.byteOffset, header.byteLength);
-    dv.setUint32(KEY_LENGTH, this.rs);
-    return header;
+    return header(this.salt, this.rs);
   }
   readHeader(buffer) {
     if (buffer.byteLength !== HEADER_LENGTH) {
       throw new Error("chunk is not expected header length");
     }
-    const header = { salt: null, rs: null };
+    const header2 = { salt: null, rs: null };
     const dv = new DataView(buffer.buffer, buffer.byteOffset, buffer.byteLength);
-    header.salt = buffer.slice(0, KEY_LENGTH);
-    header.rs = dv.getUint32(KEY_LENGTH);
+    header2.salt = buffer.slice(0, KEY_LENGTH);
+    header2.rs = dv.getUint32(KEY_LENGTH);
     const idlen = dv.getUint8(KEY_LENGTH + 4);
     if (idlen !== 0) {
       throw new Error("Implementation does not support non-zero idlen");
     }
-    return header;
+    return header2;
   }
   async encryptRecord(record, seq, isLast) {
     const nonce = this.generateNonce(seq);
@@ -218,14 +222,14 @@ class ECETransformer {
     } else {
       if (this.seq === -1) {
         if (!this.prevChunk) throw new Error("not this.prevChunk");
-        const header = this.readHeader(this.prevChunk);
-        this.salt = (0, import_util.asBufferSource)(header.salt);
-        if (this.rs !== null && this.rs !== header.rs) {
+        const header2 = this.readHeader(this.prevChunk);
+        this.salt = (0, import_util.asBufferSource)(header2.salt);
+        if (this.rs !== null && this.rs !== header2.rs) {
           throw new Error(
             "Record size declared in constructor does not match record size in encrypted stream"
           );
         }
-        this.rs = header.rs;
+        this.rs = header2.rs;
         this.key = await this.generateKey();
         this.nonceBase = await this.generateNonceBase();
         const startSeq = this.seekOpts.startSeq;
@@ -287,6 +291,75 @@ function plaintextSize(encryptedSize2, rs = RECORD_SIZE) {
   return encryptedRecordsSize - chunkMetaLength * Math.ceil(encryptedRecordsSize / rs);
 }
 __name(plaintextSize, "plaintextSize");
+function recordPlaintextSize(rs = RECORD_SIZE) {
+  if (!Number.isInteger(rs)) {
+    throw new TypeError("rs");
+  }
+  return rs - TAG_LENGTH - 1;
+}
+__name(recordPlaintextSize, "recordPlaintextSize");
+function recordCount(plaintextSize2, rs = RECORD_SIZE) {
+  if (!Number.isInteger(plaintextSize2)) {
+    throw new TypeError("plaintextSize");
+  }
+  if (!Number.isInteger(rs)) {
+    throw new TypeError("rs");
+  }
+  return Math.ceil(plaintextSize2 / recordPlaintextSize(rs));
+}
+__name(recordCount, "recordCount");
+function header(salt, rs = RECORD_SIZE) {
+  if (salt.byteLength !== KEY_LENGTH) {
+    throw new Error("Invalid salt length");
+  }
+  if (!Number.isInteger(rs)) {
+    throw new TypeError("rs");
+  }
+  const buf = new Uint8Array(HEADER_LENGTH);
+  buf.set(salt);
+  const dv = new DataView(buf.buffer, buf.byteOffset, buf.byteLength);
+  dv.setUint32(KEY_LENGTH, rs);
+  return buf;
+}
+__name(header, "header");
+async function deriveContentSalt(secretKey, contentDigest) {
+  if (contentDigest.byteLength === 0) {
+    throw new Error("empty content digest");
+  }
+  const infoLen = SALT_INFO.byteLength + contentDigest.byteLength;
+  const info = new Uint8Array(infoLen);
+  info.set(SALT_INFO, 0);
+  info.set(contentDigest, SALT_INFO.byteLength);
+  const bits = await import_one_webcrypto.webcrypto.subtle.deriveBits(
+    {
+      name: "HKDF",
+      hash: "SHA-256",
+      salt: new Uint8Array(0),
+      info
+    },
+    secretKey,
+    KEY_LENGTH * 8
+  );
+  return new Uint8Array(bits);
+}
+__name(deriveContentSalt, "deriveContentSalt");
+async function encryptRecord(secretKey, seq, plaintext, isLast, salt, rs = RECORD_SIZE) {
+  const transformer = new ECETransformer(MODE_ENCRYPT, secretKey, rs, salt);
+  const max = recordPlaintextSize(rs);
+  if (isLast) {
+    if (plaintext.byteLength > max) {
+      throw new Error("final record exceeds recordPlaintextSize");
+    }
+  } else {
+    if (plaintext.byteLength !== max) {
+      throw new Error("non-final record must equal recordPlaintextSize");
+    }
+  }
+  transformer.key = await transformer.generateKey();
+  transformer.nonceBase = await transformer.generateNonceBase();
+  return transformer.encryptRecord(plaintext, seq, isLast);
+}
+__name(encryptRecord, "encryptRecord");
 function encryptStream(input, secretKey, rs = RECORD_SIZE, salt = (0, import_util.generateSalt)(KEY_LENGTH)) {
   const stream = (0, import_transform_stream.transformStream)(
     input,

package/dist/keychain.cjs

@@ -162,17 +162,114 @@ class Keychain {
   setAuthToken(authToken) {
     this.authTokenPromise = Promise.resolve(decodeBits(authToken));
   }
+  /**
+   * SHA-256 digest of the plaintext, used as the input to content-bound
+   * salt derivation. Accepts a stream, a byte array, or a Blob;
+   * equivalent content yields the same digest.
+   *
+   * Pass the result to `encryptStream`/`header`/`encryptRecord` as
+   * `contentDigest`. The salt is derived from this digest internally,
+   * so the Keychain API never exposes a raw salt — a fixed salt can
+   * never pair with two different plaintexts.
+   *
+   * NOTE: WebCrypto has no incremental hash, so a stream/Blob is
+   * drained into memory before hashing.
+   *
+   * @param content Plaintext as a ReadableStream, Uint8Array, or Blob.
+   * @returns 32-byte SHA-256 digest.
+   */
+  async contentDigest(content) {
+    let bytes;
+    if (content instanceof Uint8Array) {
+      bytes = content;
+    } else if (content instanceof ReadableStream) {
+      bytes = new Uint8Array(await new Response(content).arrayBuffer());
+    } else if (typeof Blob !== "undefined" && content instanceof Blob) {
+      bytes = new Uint8Array(await content.arrayBuffer());
+    } else {
+      throw new TypeError(
+        "content must be a ReadableStream, Uint8Array, or Blob"
+      );
+    }
+    const digest = await import_one_webcrypto.webcrypto.subtle.digest(
+      "SHA-256",
+      (0, import_util.asBufferSource)(bytes)
+    );
+    return new Uint8Array(digest);
+  }
   /**
    * Take a stream, return an encrypted stream.
-   * @param stream Input stream
-   * @returns {Promise<ReadableStream>}
+   *
+   * With `opts.contentDigest`, the ECE salt is derived from the digest
+   * internally (`deriveContentSalt`), so two calls over identical input
+   * produce byte-identical ciphertext (reproducible encryption). With no
+   * opts, a fresh random salt is used (today's behavior).
+   *
+   * The salt is never accepted directly: because it is bound to the
+   * content digest, a fixed salt can never encrypt two different
+   * plaintexts (AES-GCM nonce-reuse is structurally unreachable from
+   * this API).
+   *
+   * @param stream Input plaintext stream.
+   * @param opts Optional `{ contentDigest?, recordSize? }`.
+   * @returns Encrypted stream.
    */
-  async encryptStream(stream) {
+  async encryptStream(stream, opts) {
     if (!(stream instanceof ReadableStream)) {
       throw new TypeError("This is not a readable stream");
     }
     const mainKey = await this.mainKeyPromise;
-    return (0, import_ece.encryptStream)(stream, mainKey);
+    const rs = opts?.recordSize ?? import_ece.RECORD_SIZE;
+    if (opts?.contentDigest) {
+      const salt = await (0, import_ece.deriveContentSalt)(mainKey, opts.contentDigest);
+      return (0, import_ece.encryptStream)(stream, mainKey, rs, salt);
+    }
+    return (0, import_ece.encryptStream)(stream, mainKey, rs);
+  }
+  /**
+   * Build the 21-byte ECE header for content identified by
+   * `contentDigest`. The salt is derived internally from the digest,
+   * so this never exposes a raw salt. The header is byte-identical to
+   * the header that `encryptStream({ contentDigest, recordSize })`
+   * emits for the same input.
+   *
+   * @param opts `{ contentDigest, recordSize? }`.
+   * @returns The 21-byte header.
+   */
+  async header(opts) {
+    const mainKey = await this.mainKeyPromise;
+    const salt = await (0, import_ece.deriveContentSalt)(mainKey, opts.contentDigest);
+    return (0, import_ece.header)(salt, opts.recordSize ?? import_ece.RECORD_SIZE);
+  }
+  /**
+   * Encrypt a single ECE record by index, byte-identical to record
+   * `seq` of `encryptStream({ contentDigest, recordSize })`. The salt
+   * is derived from `contentDigest` internally; no raw salt is
+   * accepted.
+   *
+   * Non-final records must be exactly `recordPlaintextSize(recordSize)`
+   * bytes; the final record must be `<=` that. The low-level function
+   * throws otherwise.
+   *
+   * @param seq Zero-based record index.
+   * @param plaintext The record's plaintext slice.
+   * @param opts `{ isLast, contentDigest, recordSize? }`.
+   * @returns The encrypted record bytes.
+   */
+  async encryptRecord(seq, plaintext, opts) {
+    const mainKey = await this.mainKeyPromise;
+    const salt = await (0, import_ece.deriveContentSalt)(
+      mainKey,
+      opts.contentDigest
+    );
+    return (0, import_ece.encryptRecord)(
+      mainKey,
+      seq,
+      plaintext,
+      opts.isLast,
+      salt,
+      opts.recordSize ?? import_ece.RECORD_SIZE
+    );
   }
   /**
    * Encrypt and return some data; don't stream.

package/dist/src/ece.d.ts

@@ -4,6 +4,8 @@
  */
 export declare const KEY_LENGTH = 16;
 export declare const TAG_LENGTH = 16;
+export declare const RECORD_SIZE: number;
+export declare const HEADER_LENGTH: number;
 /**
  * Given a plaintext size, return the corresponding encrypted size.
  *
@@ -18,6 +20,80 @@ export declare function encryptedSize(plaintextSize: number, rs?: number): numbe
  * rs:            int containing record size, optional
  */
 export declare function plaintextSize(encryptedSize: number, rs?: number): number;
+/**
+ * Plaintext bytes that fit in one ECE record for the given record size.
+ * Equals `rs - TAG_LENGTH - 1` (the 16-byte AES-GCM tag plus the 1-byte
+ * padding delimiter).
+ *
+ * @param rs Record size in bytes (default RECORD_SIZE).
+ * @returns Plaintext bytes per record.
+ */
+export declare function recordPlaintextSize(rs?: number): number;
+/**
+ * Number of ECE data records needed to hold `plaintextSize` bytes. Returns 0
+ * for empty input — an empty stream encrypts to a header with no
+ * data records.
+ *
+ * @param plaintextSize Total plaintext length in bytes.
+ * @param rs Record size in bytes (default RECORD_SIZE).
+ * @returns Record count (0 when plaintextSize is 0).
+ */
+export declare function recordCount(plaintextSize: number, rs?: number): number;
+/**
+ * Build the canonical 21-byte ECE header:
+ * `salt(16) || recordSize(uint32 BE) || idlen(0)`.
+ *
+ * This is the single source of truth for the header; the streaming encoder
+ * delegates to it, so a standalone header is byte-identical to the stream's
+ * header.
+ *
+ * SAFETY: a fixed salt must never encrypt two different plaintexts under the
+ * same key (AES-GCM nonce reuse). Prefer deriving the salt from the content
+ * (see `deriveContentSalt`) over choosing it directly. This is a low-level
+ * building block; the Keychain API does not accept a raw salt.
+ *
+ * @param salt 16-byte content salt.
+ * @param rs Record size in bytes (default RECORD_SIZE).
+ * @returns The 21-byte header.
+ */
+export declare function header(salt: Uint8Array<ArrayBuffer>, rs?: number): Uint8Array<ArrayBuffer>;
+/**
+ * Derive a deterministic 16-byte content salt from the secret key and a
+ * content digest, via HKDF-SHA256 with info
+ * `"Content-Encoding: salt\0" || contentDigest`.
+ *
+ * Because the digest is collision-resistant over the plaintext, a salt is
+ * cryptographically bound to exactly one content — so a fixed salt can never
+ * pair with two different plaintexts. This is what makes reproducible
+ * encryption safe under AES-GCM (no nonce reuse across distinct plaintexts).
+ *
+ * @param secretKey HKDF CryptoKey (the main secret key).
+ * @param contentDigest Digest of the plaintext (e.g. 32-byte SHA-256).
+ * @returns 16-byte content salt.
+ */
+export declare function deriveContentSalt(secretKey: CryptoKey, contentDigest: Uint8Array): Promise<Uint8Array<ArrayBuffer>>;
+/**
+ * Encrypt a single ECE record in isolation, byte-identical to record `seq` of
+ * the corresponding `encryptStream` output. Drives an `ECETransformer` through
+ * its existing key/nonce/record methods, so no new crypto is introduced.
+ *
+ * Non-final records must be exactly `recordPlaintextSize(rs)` bytes; the final
+ * record must be `<= recordPlaintextSize(rs)` bytes.
+ *
+ * SAFETY: the same `(secretKey, salt)` must never encrypt two different
+ * plaintexts (AES-GCM nonce reuse). This low-level function takes a raw salt;
+ * derive it from the content via `deriveContentSalt`, or use the Keychain API,
+ * which never exposes a raw salt.
+ *
+ * @param secretKey HKDF CryptoKey (the main secret key).
+ * @param seq Zero-based record index.
+ * @param plaintext The record's plaintext slice.
+ * @param isLast Whether this is the final record.
+ * @param salt 16-byte content salt (same salt as the stream's header).
+ * @param rs Record size in bytes (default RECORD_SIZE).
+ * @returns The encrypted record bytes.
+ */
+export declare function encryptRecord(secretKey: CryptoKey, seq: number, plaintext: Uint8Array, isLast: boolean, salt: Uint8Array<ArrayBuffer>, rs?: number): Promise<Uint8Array>;
 /**
  * Given a plaintext stream `input`, return an encrypted stream.
  *

package/dist/src/ece.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"ece.d.ts","sourceRoot":"","sources":["../../src/ece.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAWH,eAAO,MAAM,UAAU,KAAK,CAAA;AAC5B,eAAO,MAAM,UAAU,KAAK,CAAA;AAmS5B;;;;;GAKG;AACH,wBAAgB,aAAa,CACzB,aAAa,EAAC,MAAM,EACpB,EAAE,GAAC,MAAoB,GACzB,MAAM,CAcP;AAED;;;;;GAKG;AACH,wBAAgB,aAAa,CACzB,aAAa,EAAC,MAAM,EACpB,EAAE,GAAC,MAAoB,GACzB,MAAM,CAeP;AAED;;;;;;;GAOG;AACH,wBAAgB,aAAa,CACzB,KAAK,EAAC,cAAc,EACpB,SAAS,EAAC,SAAS,EACnB,EAAE,GAAC,MAAoB,EACvB,IAAI,GAAC,UAAU,CAAC,WAAW,CAA4B,GACzD,cAAc,CAUf;AAED;;;;;;GAMG;AACH,wBAAgB,aAAa,CACzB,KAAK,EAAC,cAAc,EACpB,SAAS,EAAC,SAAS,EACnB,EAAE,SAAc,GAClB,cAAc,CAUf;AAED;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,wBAAgB,kBAAkB,CAC9B,SAAS,EAAC,SAAS,EACnB,MAAM,EAAC,MAAM,EACb,MAAM,EAAC,MAAM,EACb,oBAAoB,EAAC,MAAM,EAC3B,EAAE,GAAC,MAAoB,GACzB;IACE,MAAM,EAAC;QAAE,MAAM,EAAC,MAAM,CAAC;QAAC,MAAM,EAAC,MAAM,CAAA;KAAE,EAAE,CAAC;IAC1C,OAAO,EAAC,CAAC,OAAO,EAAC,cAAc,EAAE,KAAG,cAAc,CAAA;CACrD,CAiEA"}
+{"version":3,"file":"ece.d.ts","sourceRoot":"","sources":["../../src/ece.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAWH,eAAO,MAAM,UAAU,KAAK,CAAA;AAC5B,eAAO,MAAM,UAAU,KAAK,CAAA;AAE5B,eAAO,MAAM,WAAW,QAAY,CAAA;AACpC,eAAO,MAAM,aAAa,QAAqB,CAAA;AA6R/C;;;;;GAKG;AACH,wBAAgB,aAAa,CACzB,aAAa,EAAC,MAAM,EACpB,EAAE,GAAC,MAAoB,GACzB,MAAM,CAcP;AAED;;;;;GAKG;AACH,wBAAgB,aAAa,CACzB,aAAa,EAAC,MAAM,EACpB,EAAE,GAAC,MAAoB,GACzB,MAAM,CAeP;AAED;;;;;;;GAOG;AACH,wBAAgB,mBAAmB,CAAE,EAAE,GAAC,MAAoB,GAAE,MAAM,CAKnE;AAED;;;;;;;;GAQG;AACH,wBAAgB,WAAW,CACvB,aAAa,EAAC,MAAM,EACpB,EAAE,GAAC,MAAoB,GACzB,MAAM,CAQP;AAED;;;;;;;;;;;;;;;;GAgBG;AACH,wBAAgB,MAAM,CAClB,IAAI,EAAC,UAAU,CAAC,WAAW,CAAC,EAC5B,EAAE,GAAC,MAAoB,GACzB,UAAU,CAAC,WAAW,CAAC,CAYxB;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAsB,iBAAiB,CACnC,SAAS,EAAC,SAAS,EACnB,aAAa,EAAC,UAAU,GAC1B,OAAO,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC,CAsBjC;AAED;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,wBAAsB,aAAa,CAC/B,SAAS,EAAC,SAAS,EACnB,GAAG,EAAC,MAAM,EACV,SAAS,EAAC,UAAU,EACpB,MAAM,EAAC,OAAO,EACd,IAAI,EAAC,UAAU,CAAC,WAAW,CAAC,EAC5B,EAAE,GAAC,MAAoB,GACzB,OAAO,CAAC,UAAU,CAAC,CAmBpB;AAED;;;;;;;GAOG;AACH,wBAAgB,aAAa,CACzB,KAAK,EAAC,cAAc,EACpB,SAAS,EAAC,SAAS,EACnB,EAAE,GAAC,MAAoB,EACvB,IAAI,GAAC,UAAU,CAAC,WAAW,CAA4B,GACzD,cAAc,CAUf;AAED;;;;;;GAMG;AACH,wBAAgB,aAAa,CACzB,KAAK,EAAC,cAAc,EACpB,SAAS,EAAC,SAAS,EACnB,EAAE,SAAc,GAClB,cAAc,CAUf;AAED;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,wBAAgB,kBAAkB,CAC9B,SAAS,EAAC,SAAS,EACnB,MAAM,EAAC,MAAM,EACb,MAAM,EAAC,MAAM,EACb,oBAAoB,EAAC,MAAM,EAC3B,EAAE,GAAC,MAAoB,GACzB;IACE,MAAM,EAAC;QAAE,MAAM,EAAC,MAAM,CAAC;QAAC,MAAM,EAAC,MAAM,CAAA;KAAE,EAAE,CAAC;IAC1C,OAAO,EAAC,CAAC,OAAO,EAAC,cAAc,EAAE,KAAG,cAAc,CAAA;CACrD,CAiEA"}

package/dist/src/ece.js

@@ -13,9 +13,10 @@ const MODE_DECRYPT = 'decrypt';
 export const KEY_LENGTH = 16;
 export const TAG_LENGTH = 16;
 const NONCE_LENGTH = 12;
-const RECORD_SIZE = 64 * 1024;
-const HEADER_LENGTH = KEY_LENGTH + 4 + 1; // salt + record size + idlen
+export const RECORD_SIZE = 64 * 1024;
+export const HEADER_LENGTH = KEY_LENGTH + 4 + 1; // salt + record size + idlen
 const encoder = new TextEncoder();
+const SALT_INFO = encoder.encode('Content-Encoding: salt\0');
 class ECETransformer {
     mode;
     secretKey;
@@ -121,11 +122,7 @@ class ECETransformer {
     createHeader() {
         if (!this.salt)
             throw new Error('Not salt');
-        const header = new Uint8Array(HEADER_LENGTH);
-        header.set(this.salt);
-        const dv = new DataView(header.buffer, header.byteOffset, header.byteLength);
-        dv.setUint32(KEY_LENGTH, this.rs);
-        return header;
+        return header(this.salt, this.rs);
     }
     readHeader(buffer) {
         if (buffer.byteLength !== HEADER_LENGTH) {
@@ -264,6 +261,137 @@ export function plaintextSize(encryptedSize, rs = RECORD_SIZE) {
         chunkMetaLength *
             Math.ceil(encryptedRecordsSize / rs));
 }
+/**
+ * Plaintext bytes that fit in one ECE record for the given record size.
+ * Equals `rs - TAG_LENGTH - 1` (the 16-byte AES-GCM tag plus the 1-byte
+ * padding delimiter).
+ *
+ * @param rs Record size in bytes (default RECORD_SIZE).
+ * @returns Plaintext bytes per record.
+ */
+export function recordPlaintextSize(rs = RECORD_SIZE) {
+    if (!Number.isInteger(rs)) {
+        throw new TypeError('rs');
+    }
+    return rs - TAG_LENGTH - 1;
+}
+/**
+ * Number of ECE data records needed to hold `plaintextSize` bytes. Returns 0
+ * for empty input — an empty stream encrypts to a header with no
+ * data records.
+ *
+ * @param plaintextSize Total plaintext length in bytes.
+ * @param rs Record size in bytes (default RECORD_SIZE).
+ * @returns Record count (0 when plaintextSize is 0).
+ */
+export function recordCount(plaintextSize, rs = RECORD_SIZE) {
+    if (!Number.isInteger(plaintextSize)) {
+        throw new TypeError('plaintextSize');
+    }
+    if (!Number.isInteger(rs)) {
+        throw new TypeError('rs');
+    }
+    return Math.ceil(plaintextSize / recordPlaintextSize(rs));
+}
+/**
+ * Build the canonical 21-byte ECE header:
+ * `salt(16) || recordSize(uint32 BE) || idlen(0)`.
+ *
+ * This is the single source of truth for the header; the streaming encoder
+ * delegates to it, so a standalone header is byte-identical to the stream's
+ * header.
+ *
+ * SAFETY: a fixed salt must never encrypt two different plaintexts under the
+ * same key (AES-GCM nonce reuse). Prefer deriving the salt from the content
+ * (see `deriveContentSalt`) over choosing it directly. This is a low-level
+ * building block; the Keychain API does not accept a raw salt.
+ *
+ * @param salt 16-byte content salt.
+ * @param rs Record size in bytes (default RECORD_SIZE).
+ * @returns The 21-byte header.
+ */
+export function header(salt, rs = RECORD_SIZE) {
+    if (salt.byteLength !== KEY_LENGTH) {
+        throw new Error('Invalid salt length');
+    }
+    if (!Number.isInteger(rs)) {
+        throw new TypeError('rs');
+    }
+    const buf = new Uint8Array(HEADER_LENGTH);
+    buf.set(salt);
+    const dv = new DataView(buf.buffer, buf.byteOffset, buf.byteLength);
+    dv.setUint32(KEY_LENGTH, rs);
+    return buf;
+}
+/**
+ * Derive a deterministic 16-byte content salt from the secret key and a
+ * content digest, via HKDF-SHA256 with info
+ * `"Content-Encoding: salt\0" || contentDigest`.
+ *
+ * Because the digest is collision-resistant over the plaintext, a salt is
+ * cryptographically bound to exactly one content — so a fixed salt can never
+ * pair with two different plaintexts. This is what makes reproducible
+ * encryption safe under AES-GCM (no nonce reuse across distinct plaintexts).
+ *
+ * @param secretKey HKDF CryptoKey (the main secret key).
+ * @param contentDigest Digest of the plaintext (e.g. 32-byte SHA-256).
+ * @returns 16-byte content salt.
+ */
+export async function deriveContentSalt(secretKey, contentDigest) {
+    if (contentDigest.byteLength === 0) {
+        throw new Error('empty content digest');
+    }
+    const infoLen = SALT_INFO.byteLength + contentDigest.byteLength;
+    const info = new Uint8Array(infoLen);
+    info.set(SALT_INFO, 0);
+    info.set(contentDigest, SALT_INFO.byteLength);
+    const bits = await webcrypto.subtle.deriveBits({
+        name: 'HKDF',
+        hash: 'SHA-256',
+        salt: new Uint8Array(0),
+        info
+    }, secretKey, KEY_LENGTH * 8);
+    return new Uint8Array(bits);
+}
+/**
+ * Encrypt a single ECE record in isolation, byte-identical to record `seq` of
+ * the corresponding `encryptStream` output. Drives an `ECETransformer` through
+ * its existing key/nonce/record methods, so no new crypto is introduced.
+ *
+ * Non-final records must be exactly `recordPlaintextSize(rs)` bytes; the final
+ * record must be `<= recordPlaintextSize(rs)` bytes.
+ *
+ * SAFETY: the same `(secretKey, salt)` must never encrypt two different
+ * plaintexts (AES-GCM nonce reuse). This low-level function takes a raw salt;
+ * derive it from the content via `deriveContentSalt`, or use the Keychain API,
+ * which never exposes a raw salt.
+ *
+ * @param secretKey HKDF CryptoKey (the main secret key).
+ * @param seq Zero-based record index.
+ * @param plaintext The record's plaintext slice.
+ * @param isLast Whether this is the final record.
+ * @param salt 16-byte content salt (same salt as the stream's header).
+ * @param rs Record size in bytes (default RECORD_SIZE).
+ * @returns The encrypted record bytes.
+ */
+export async function encryptRecord(secretKey, seq, plaintext, isLast, salt, rs = RECORD_SIZE) {
+    // Validates the key and the salt length (throws 'Invalid salt length').
+    const transformer = new ECETransformer(MODE_ENCRYPT, secretKey, rs, salt);
+    const max = recordPlaintextSize(rs);
+    if (isLast) {
+        if (plaintext.byteLength > max) {
+            throw new Error('final record exceeds recordPlaintextSize');
+        }
+    }
+    else {
+        if (plaintext.byteLength !== max) {
+            throw new Error('non-final record must equal recordPlaintextSize');
+        }
+    }
+    transformer.key = await transformer.generateKey();
+    transformer.nonceBase = await transformer.generateNonceBase();
+    return transformer.encryptRecord(plaintext, seq, isLast);
+}
 /**
  * Given a plaintext stream `input`, return an encrypted stream.
  *

package/dist/src/ece.js.map

@@ -1 +1 @@
-{"version":3,"file":"ece.js","sourceRoot":"","sources":["../../src/ece.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAA;AACnD,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAA;AACvD,OAAO,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAA;AACzD,OAAO,EAAE,SAAS,EAAE,MAAM,iCAAiC,CAAA;AAC3D,OAAO,EAAE,kBAAkB,EAAE,MAAM,0BAA0B,CAAA;AAC7D,OAAO,EAAE,YAAY,EAAE,cAAc,EAAE,MAAM,WAAW,CAAA;AAExD,MAAM,YAAY,GAAG,SAAS,CAAA;AAC9B,MAAM,YAAY,GAAG,SAAS,CAAA;AAC9B,MAAM,CAAC,MAAM,UAAU,GAAG,EAAE,CAAA;AAC5B,MAAM,CAAC,MAAM,UAAU,GAAG,EAAE,CAAA;AAC5B,MAAM,YAAY,GAAG,EAAE,CAAA;AACvB,MAAM,WAAW,GAAG,EAAE,GAAG,IAAI,CAAA;AAC7B,MAAM,aAAa,GAAG,UAAU,GAAG,CAAC,GAAG,CAAC,CAAA,CAAC,6BAA6B;AAEtE,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAA;AAEjC,MAAM,cAAc;IAChB,IAAI,CAAoB;IACxB,SAAS,CAAU;IACnB,EAAE,CAAO;IACT,IAAI,CAA6B;IACjC,QAAQ,CAA+C;IACvD,GAAG,CAAO;IACV,SAAS,CAAgB;IACzB,SAAS,CAAgB;IACzB,GAAG,CAAe;IAElB,YACI,IAAwB,EACxB,SAAmB,EACnB,EAAS,EACT,IAAiC,EACjC,QAAQ,GAAG,EAAE;QAEb,IAAI,IAAI,KAAK,YAAY,IAAI,IAAI,KAAK,YAAY,EAAE,CAAC;YACjD,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAA;QACjE,CAAC;QAED,cAAc,CAAC,SAAS,CAAC,CAAA;QAEzB,IAAI,IAAI,IAAI,IAAI,IAAI,IAAI,CAAC,UAAU,KAAK,UAAU,EAAE,CAAC;YACjD,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAA;QAC1C,CAAC;QAED,IAAI,CAAC,IAAI,GAAG,IAAI,CAAA;QAChB,IAAI,CAAC,SAAS,GAAG,SAAS,CAAA;QAC1B,IAAI,CAAC,EAAE,GAAG,EAAE,CAAA;QACZ,IAAI,CAAC,IAAI,GAAG,IAAI,CAAA;QAEhB,8CAA8C;QAC9C,yCAAyC;QACzC,sDAAsD;QACtD,yEAAyE;QACzE,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAA;QAExB,+DAA+D;QAC/D,IAAI,CAAC,GAAG,GAAG,CAAC,CAAC,CAAA;QACb,IAAI,CAAC,SAAS,GAAG,IAAI,CAAA;QACrB,IAAI,CAAC,SAAS,GAAG,IAAI,CAAA;QACrB,IAAI,CAAC,GAAG,GAAG,IAAI,CAAA;IACnB,CAAC;IAED,KAAK,CAAC,WAAW;QACb,OAAO,SAAS,CAAC,MAAM,CAAC,SAAS,CAC7B;YACI,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,IAAI,CAAC,IAAK;YAChB,IAAI,EAAE,OAAO,CAAC,MAAM,CAAC,+BAA+B,CAAC;SACxD,EACD,IAAI,CAAC,SAAS,EACd;YACI,IAAI,EAAE,SAAS;YACf,MAAM,EAAE,UAAU,GAAG,CAAC;SACzB,EACD,KAAK,EACL,CAAC,SAAS,EAAE,SAAS,CAAC,CACzB,CAAA;IACL,CAAC;IAED,KAAK,CAAC,iBAAiB;QACnB,MAAM,YAAY,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,UAAU,CAClD;YACI,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,IAAI,CAAC,IAAK;YAChB,IAAI,EAAE,OAAO,CAAC,MAAM,CAAC,2BAA2B,CAAC;SACpD,EACD,IAAI,CAAC,SAAS,EACd,YAAY,GAAG,CAAC,CACnB,CAAA;QACD,OAAO,IAAI,UAAU,CAAC,YAAY,CAAC,CAAA;IACvC,CAAC;IAED,aAAa,CAAE,GAAU;QACrB,IAAI,GAAG,GAAG,UAAU,EAAE,CAAC;YACnB,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAA;QAC3D,CAAC;QACD,IAAI,CAAC,IAAI,CAAC,SAAS;YAAE,MAAM,IAAI,KAAK,CAAC,gBAAgB,CAAC,CAAA;QAEtD,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,CAAA;QACpC,MAAM,EAAE,GAAG,IAAI,QAAQ,CAAC,KAAK,CAAC,MAAM,EAAE,KAAK,CAAC,UAAU,EAAE,KAAK,CAAC,UAAU,CAAC,CAAA;QACzE,MAAM,CAAC,GAAG,EAAE,CAAC,SAAS,CAAC,KAAK,CAAC,UAAU,GAAG,CAAC,CAAC,CAAA;QAC5C,MAAM,GAAG,GAAG,CAAC,CAAC,GAAG,GAAG,CAAC,KAAK,CAAC,CAAA,CAAC,0BAA0B;QACtD,EAAE,CAAC,SAAS,CAAC,KAAK,CAAC,UAAU,GAAG,CAAC,EAAE,GAAG,CAAC,CAAA;QACvC,OAAO,KAAK,CAAA;IAChB,CAAC;IAED,GAAG,CAAE,IAAe,EAAE,MAAc;QAChC,MAAM,GAAG,GAAG,IAAI,CAAC,UAAU,CAAA;QAC3B,IAAI,GAAG,GAAG,UAAU,IAAI,IAAI,CAAC,EAAE,EAAE,CAAC;YAC9B,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAA;QACrD,CAAC;QAED,IAAI,OAAO,CAAA;QACX,IAAI,MAAM,EAAE,CAAC;YACT,OAAO,GAAG,UAAU,CAAC,EAAE,CAAC,CAAC,CAAC,CAAA;QAC9B,CAAC;aAAM,CAAC;YACJ,OAAO,GAAG,IAAI,UAAU,CAAC,IAAI,CAAC,EAAE,GAAG,GAAG,GAAG,UAAU,CAAC,CAAA;YACpD,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAA;QAClB,CAAC;QAED,MAAM,MAAM,GAAG,IAAI,UAAU,CAAC,IAAI,CAAC,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC,CAAA;QACnE,MAAM,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,CAAC,CAAA;QACnB,MAAM,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAC,UAAU,CAAC,CAAA;QACpC,OAAO,MAAM,CAAA;IACjB,CAAC;IAED,KAAK,CAAE,IAAe,EAAE,MAAc;QAClC,KAAK,IAAI,CAAC,GAAG,IAAI,CAAC,UAAU,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC;YAC/C,IAAI,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC;gBAChB,IAAI,MAAM,EAAE,CAAC;oBACT,IAAI,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC;wBAChB,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAA;oBACzD,CAAC;gBACL,CAAC;qBAAM,CAAC;oBACJ,IAAI,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC;wBAChB,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAA;oBAC7D,CAAC;gBACL,CAAC;gBAED,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAA;YAC3B,CAAC;QACL,CAAC;QACD,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAA;IACzC,CAAC;IAED,YAAY;QACR,IAAI,CAAC,IAAI,CAAC,IAAI;YAAE,MAAM,IAAI,KAAK,CAAC,UAAU,CAAC,CAAA;QAC3C,MAAM,MAAM,GAAG,IAAI,UAAU,CAAC,aAAa,CAAC,CAAA;QAC5C,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QACrB,MAAM,EAAE,GAAG,IAAI,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,UAAU,EAAE,MAAM,CAAC,UAAU,CAAC,CAAA;QAC5E,EAAE,CAAC,SAAS,CAAC,UAAU,EAAE,IAAI,CAAC,EAAE,CAAC,CAAA;QACjC,OAAO,MAAM,CAAA;IACjB,CAAC;IAED,UAAU,CAAE,MAAiB;QACzB,IAAI,MAAM,CAAC,UAAU,KAAK,aAAa,EAAE,CAAC;YACtC,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAA;QAC1D,CAAC;QACD,MAAM,MAAM,GAAgB,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE,IAAI,EAAE,CAAA;QACpD,MAAM,EAAE,GAAG,IAAI,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,UAAU,EAAE,MAAM,CAAC,UAAU,CAAC,CAAA;QAC5E,MAAM,CAAC,IAAI,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,UAAU,CAAC,CAAA;QACzC,MAAM,CAAC,EAAE,GAAG,EAAE,CAAC,SAAS,CAAC,UAAU,CAAC,CAAA;QACpC,MAAM,KAAK,GAAG,EAAE,CAAC,QAAQ,CAAC,UAAU,GAAG,CAAC,CAAC,CAAA;QACzC,IAAI,KAAK,KAAK,CAAC,EAAE,CAAC;YACd,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAA;QACrE,CAAC;QACD,OAAO,MAAM,CAAA;IACjB,CAAC;IAED,KAAK,CAAC,aAAa,CACf,MAAiB,EACjB,GAAU,EACV,MAAc;QAEd,MAAM,KAAK,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,CAAA;QACrC,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;QAE7C,IAAI,CAAC,IAAI,CAAC,GAAG;YAAE,MAAM,IAAI,KAAK,CAAC,SAAS,CAAC,CAAA,CAAE,SAAS;QAEpD,MAAM,kBAAkB,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,OAAO,CACrD;YACI,IAAI,EAAE,SAAS;YACf,EAAE,EAAE,KAAK;YACT,SAAS,EAAE,UAAU,GAAG,CAAC;SAC5B,EACD,IAAI,CAAC,GAAG,EACR,YAAY,CACf,CAAA;QAED,OAAO,IAAI,UAAU,CAAC,kBAAkB,CAAC,CAAA;IAC7C,CAAC;IAED,KAAK,CAAC,aAAa,CACf,eAA0B,EAC1B,GAAU,EACV,MAAc;QAEd,IAAI,CAAC,IAAI,CAAC,GAAG;YAAE,MAAM,IAAI,KAAK,CAAC,SAAS,CAAC,CAAA,CAAE,SAAS;QAEpD,MAAM,KAAK,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,CAAA;QACrC,MAAM,eAAe,GAAe,MAAM,SAAS,CAAC,MAAM,CAAC,OAAO,CAC9D;YACI,IAAI,EAAE,SAAS;YACf,EAAE,EAAE,KAAK;YACT,SAAS,EAAE,UAAU,GAAG,CAAC;SAC5B,EACD,IAAI,CAAC,GAAG,EACR,cAAc,CAAC,eAAe,CAAC,CAClC,CAAA;QACD,MAAM,YAAY,GAAG,IAAI,UAAU,CAAC,eAAe,CAAC,CAAA;QACpD,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,EAAE,MAAM,CAAC,CAAA;IAC3C,CAAC;IAED,KAAK,CAAC,KAAK,CAAE,UAA2C;QACpD,IAAI,IAAI,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;YAC7B,IAAI,CAAC,GAAG,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;YACnC,IAAI,CAAC,SAAS,GAAG,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAA;YAC/C,UAAU,CAAC,OAAO,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC,CAAA;YACvC,IAAI,CAAC,GAAG,IAAI,CAAC,CAAA;QACjB,CAAC;IACL,CAAC;IAED,KAAK,CAAC,kBAAkB,CACpB,MAAc,EACd,UAA2C;QAE3C,IAAI,CAAC,IAAI,CAAC,SAAS;YAAE,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAA;QAE1D,IAAI,IAAI,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;YAC7B,UAAU,CAAC,OAAO,CACd,MAAM,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,MAAM,CAAC,CAC7D,CAAA;QACL,CAAC;aAAM,CAAC;YACJ,IAAI,IAAI,CAAC,GAAG,KAAK,CAAC,CAAC,EAAE,CAAC;gBAClB,IAAI,CAAC,IAAI,CAAC,SAAS;oBAAE,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAA;gBAE1D,6DAA6D;gBAC7D,MAAM,MAAM,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,SAAS,CAAC,CAAA;gBAC9C,IAAI,CAAC,IAAI,GAAG,cAAc,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA;gBACvC,IAAI,IAAI,CAAC,EAAE,KAAK,IAAI,IAAI,IAAI,CAAC,EAAE,KAAK,MAAM,CAAC,EAAE,EAAE,CAAC;oBAC5C,MAAM,IAAI,KAAK,CACX,oFAAoF,CACvF,CAAA;gBACL,CAAC;gBACD,IAAI,CAAC,EAAE,GAAG,MAAM,CAAC,EAAE,CAAA;gBAEnB,IAAI,CAAC,GAAG,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;gBACnC,IAAI,CAAC,SAAS,GAAG,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAA;gBAE/C,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAA;gBACvC,IAAI,QAAQ,IAAI,IAAI,IAAI,QAAQ,GAAG,CAAC,EAAE,CAAC;oBACnC,yDAAyD;oBACzD,aAAa;oBACb,IAAI,CAAC,GAAG,IAAI,QAAQ,CAAA;gBACxB,CAAC;YACL,CAAC;iBAAM,CAAC;gBACJ,IAAI,gBAAgB,GAAG,KAAK,CAAA;gBAC5B,IAAI,MAAM,EAAE,CAAC;oBACT,mDAAmD;oBACnD,MAAM,MAAM,GAAG,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAA;oBACnC,IAAI,MAAM,IAAI,IAAI,IAAI,MAAM,KAAK,IAAI,CAAC,GAAG,GAAG,CAAC,EAAE,CAAC;wBAC5C,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAA;oBACxD,CAAC;oBAED,gEAAgE;oBAChE,gBAAgB,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAA;gBACrD,CAAC;gBAED,UAAU,CAAC,OAAO,CACd,MAAM,IAAI,CAAC,aAAa,CACpB,IAAI,CAAC,SAAS,EACd,IAAI,CAAC,GAAG,EACR,gBAAgB,CACnB,CACJ,CAAA;YACL,CAAC;QACL,CAAC;QAED,IAAI,CAAC,GAAG,IAAI,CAAC,CAAA;IACjB,CAAC;IAED,KAAK,CAAC,SAAS,CACX,KAAgB,EAChB,UAA2C;QAE3C,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACjB,MAAM,IAAI,CAAC,kBAAkB,CAAC,KAAK,EAAE,UAAU,CAAC,CAAA;QACpD,CAAC;QACD,IAAI,CAAC,SAAS,GAAG,KAAK,CAAA;IAC1B,CAAC;IAED,KAAK,CAAC,KAAK,CAAE,UAA2C;QACpD,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACjB,MAAM,IAAI,CAAC,kBAAkB,CAAC,IAAI,EAAE,UAAU,CAAC,CAAA;QACnD,CAAC;IACL,CAAC;CACJ;AAED;;;;;GAKG;AACH,MAAM,UAAU,aAAa,CACzB,aAAoB,EACpB,KAAY,WAAW;IAEvB,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,aAAa,CAAC,EAAE,CAAC;QACnC,MAAM,IAAI,SAAS,CAAC,eAAe,CAAC,CAAA;IACxC,CAAC;IACD,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,EAAE,CAAC;QACxB,MAAM,IAAI,SAAS,CAAC,IAAI,CAAC,CAAA;IAC7B,CAAC;IAED,MAAM,eAAe,GAAG,UAAU,GAAG,CAAC,CAAA,CAAG,oCAAoC;IAC7E,OAAO,CACH,aAAa;QACb,aAAa;QACb,eAAe,GAAG,IAAI,CAAC,IAAI,CAAC,aAAa,GAAG,CAAC,EAAE,GAAG,eAAe,CAAC,CAAC,CACtE,CAAA;AACL,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,aAAa,CACzB,aAAoB,EACpB,KAAY,WAAW;IAEvB,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,aAAa,CAAC,EAAE,CAAC;QACnC,MAAM,IAAI,SAAS,CAAC,eAAe,CAAC,CAAA;IACxC,CAAC;IACD,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,EAAE,CAAC;QACxB,MAAM,IAAI,SAAS,CAAC,IAAI,CAAC,CAAA;IAC7B,CAAC;IAED,MAAM,eAAe,GAAG,UAAU,GAAG,CAAC,CAAA,CAAG,oCAAoC;IAC7E,MAAM,oBAAoB,GAAG,aAAa,GAAG,aAAa,CAAA;IAC1D,OAAO,CACH,oBAAoB;QACpB,eAAe;YACf,IAAI,CAAC,IAAI,CAAC,oBAAoB,GAAG,EAAE,CAAC,CACvC,CAAA;AACL,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,aAAa,CACzB,KAAoB,EACpB,SAAmB,EACnB,KAAY,WAAW,EACvB,OAA+B,YAAY,CAAC,UAAU,CAAC;IAEvD,MAAM,MAAM,GAAG,eAAe,CAC1B,KAAK,EACL,IAAI,gBAAgB,CAAC,EAAE,GAAG,UAAU,GAAG,CAAC,CAAC,CAC5C,CAAC,QAAQ,CAAA;IAEV,OAAO,eAAe,CAClB,MAAM,EACN,IAAI,cAAc,CAAC,YAAY,EAAE,SAAS,EAAE,EAAE,EAAE,IAAI,CAAC,CACxD,CAAC,QAAQ,CAAA;AACd,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,aAAa,CACzB,KAAoB,EACpB,SAAmB,EACnB,EAAE,GAAG,WAAW;IAEhB,MAAM,MAAM,GAAG,eAAe,CAC1B,KAAK,EACL,IAAI,gBAAgB,CAAC,aAAa,EAAE,EAAE,CAAC,CAC1C,CAAC,QAAQ,CAAA;IAEV,OAAO,eAAe,CAClB,MAAM,EACN,IAAI,cAAc,CAAC,YAAY,EAAE,SAAS,EAAE,EAAE,EAAE,IAAI,CAAC,CACxD,CAAC,QAAQ,CAAA;AACd,CAAC;AAED;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,MAAM,UAAU,kBAAkB,CAC9B,SAAmB,EACnB,MAAa,EACb,MAAa,EACb,oBAA2B,EAC3B,KAAY,WAAW;IAKvB,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,EAAE,CAAC;QACxB,MAAM,IAAI,SAAS,CAAC,0BAA0B,CAAC,CAAA;IACnD,CAAC;IAED,oCAAoC;IACpC,MAAM,eAAe,GAAG,UAAU,GAAG,CAAC,CAAA;IAEtC,2CAA2C;IAC3C,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,GAAG,eAAe,CAAC,CAAC,CAAA;IAC/D,MAAM,mBAAmB,GAAG,MAAM,GAAG,CAAC,EAAE,GAAG,eAAe,CAAC,CAAA;IAE3D,2DAA2D;IAC3D,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,MAAM,GAAG,MAAM,CAAC,GAAG,CAAC,EAAE,GAAG,eAAe,CAAC,CAAC,CAAA;IAEvE,4CAA4C;IAC5C,MAAM,UAAU,GAAG,aAAa,GAAG,WAAW,GAAG,EAAE,CAAA;IACnD,IAAI,OAAO,GAAG,aAAa,GAAG,SAAS,GAAG,EAAE,CAAA,CAAC,YAAY;IAEzD,iEAAiE;IACjE,2EAA2E;IAC3E,MAAM,eAAe,GAAG,OAAO,GAAG,oBAAoB,CAAA;IACtD,IAAI,CAAC,eAAe,EAAE,CAAC;QACnB,OAAO,GAAG,oBAAoB,CAAA;IAClC,CAAC;IAED,OAAO;QACH,MAAM,EAAE;YACJ;gBACI,MAAM,EAAE,CAAC;gBACT,MAAM,EAAE,aAAa;aACxB,EAAE;gBACC,MAAM,EAAE,UAAU;gBAClB,MAAM,EAAE,OAAO,GAAG,UAAU;aAC/B;SACJ;QAED,OAAO,EAAE,CAAC,OAAO,EAAE,EAAE;YACjB,IAAI,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,YAAY,cAAc,CAAC,CAAC,EAAE,CAAC;gBAC/D,MAAM,IAAI,SAAS,CAAC,gCAAgC,CAAC,CAAA;YACzD,CAAC;YAED,0DAA0D;YAC1D,yBAAyB;YACzB,MAAM,eAAe,GAAG,eAAe,CACnC,aAAa,CAAC,OAAO,CAAC,EAAE,IAAI,gBAAgB,CAAC,aAAa,EAAE,EAAE,CAAC,CAClE,CAAC,QAAQ,CAAA;YAEV,qCAAqC;YACrC,MAAM,eAAe,GAAG,eAAe,CACnC,eAAe,EACf,IAAI,cAAc,CAAC,YAAY,EAAE,SAAS,EAAE,EAAE,EAAE,IAAI,EAAE;gBAClD,QAAQ,EAAE,WAAW;gBACrB,MAAM,EAAE,SAAS;gBACjB,eAAe;aAClB,CAAC,CACL,CAAC,QAAQ,CAAA;YAEV,2DAA2D;YAC3D,OAAO,eAAe,CAClB,eAAe,EACf,IAAI,kBAAkB,CAAC,mBAAmB,EAAE,MAAM,CAAC,CACtD,CAAC,QAAQ,CAAA;QACd,CAAC;KACJ,CAAA;AACL,CAAC;AAED,SAAS,cAAc,CAAE,SAAmB;IACxC,IAAI,SAAS,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAA;IACzD,CAAC;IACD,IAAI,SAAS,CAAC,SAAS,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;QACtC,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAA;IAC1D,CAAC;IACD,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;QAC1C,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAA;IACjE,CAAC;IACD,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QAC3C,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAA;IAClE,CAAC;AACL,CAAC"}
+{"version":3,"file":"ece.js","sourceRoot":"","sources":["../../src/ece.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAA;AACnD,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAA;AACvD,OAAO,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAA;AACzD,OAAO,EAAE,SAAS,EAAE,MAAM,iCAAiC,CAAA;AAC3D,OAAO,EAAE,kBAAkB,EAAE,MAAM,0BAA0B,CAAA;AAC7D,OAAO,EAAE,YAAY,EAAE,cAAc,EAAE,MAAM,WAAW,CAAA;AAExD,MAAM,YAAY,GAAG,SAAS,CAAA;AAC9B,MAAM,YAAY,GAAG,SAAS,CAAA;AAC9B,MAAM,CAAC,MAAM,UAAU,GAAG,EAAE,CAAA;AAC5B,MAAM,CAAC,MAAM,UAAU,GAAG,EAAE,CAAA;AAC5B,MAAM,YAAY,GAAG,EAAE,CAAA;AACvB,MAAM,CAAC,MAAM,WAAW,GAAG,EAAE,GAAG,IAAI,CAAA;AACpC,MAAM,CAAC,MAAM,aAAa,GAAG,UAAU,GAAG,CAAC,GAAG,CAAC,CAAA,CAAC,6BAA6B;AAE7E,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAA;AACjC,MAAM,SAAS,GAAG,OAAO,CAAC,MAAM,CAAC,0BAA0B,CAAC,CAAA;AAE5D,MAAM,cAAc;IAChB,IAAI,CAAoB;IACxB,SAAS,CAAU;IACnB,EAAE,CAAO;IACT,IAAI,CAA6B;IACjC,QAAQ,CAA+C;IACvD,GAAG,CAAO;IACV,SAAS,CAAgB;IACzB,SAAS,CAAgB;IACzB,GAAG,CAAe;IAElB,YACI,IAAwB,EACxB,SAAmB,EACnB,EAAS,EACT,IAAiC,EACjC,QAAQ,GAAG,EAAE;QAEb,IAAI,IAAI,KAAK,YAAY,IAAI,IAAI,KAAK,YAAY,EAAE,CAAC;YACjD,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAA;QACjE,CAAC;QAED,cAAc,CAAC,SAAS,CAAC,CAAA;QAEzB,IAAI,IAAI,IAAI,IAAI,IAAI,IAAI,CAAC,UAAU,KAAK,UAAU,EAAE,CAAC;YACjD,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAA;QAC1C,CAAC;QAED,IAAI,CAAC,IAAI,GAAG,IAAI,CAAA;QAChB,IAAI,CAAC,SAAS,GAAG,SAAS,CAAA;QAC1B,IAAI,CAAC,EAAE,GAAG,EAAE,CAAA;QACZ,IAAI,CAAC,IAAI,GAAG,IAAI,CAAA;QAEhB,8CAA8C;QAC9C,yCAAyC;QACzC,sDAAsD;QACtD,yEAAyE;QACzE,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAA;QAExB,+DAA+D;QAC/D,IAAI,CAAC,GAAG,GAAG,CAAC,CAAC,CAAA;QACb,IAAI,CAAC,SAAS,GAAG,IAAI,CAAA;QACrB,IAAI,CAAC,SAAS,GAAG,IAAI,CAAA;QACrB,IAAI,CAAC,GAAG,GAAG,IAAI,CAAA;IACnB,CAAC;IAED,KAAK,CAAC,WAAW;QACb,OAAO,SAAS,CAAC,MAAM,CAAC,SAAS,CAC7B;YACI,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,IAAI,CAAC,IAAK;YAChB,IAAI,EAAE,OAAO,CAAC,MAAM,CAAC,+BAA+B,CAAC;SACxD,EACD,IAAI,CAAC,SAAS,EACd;YACI,IAAI,EAAE,SAAS;YACf,MAAM,EAAE,UAAU,GAAG,CAAC;SACzB,EACD,KAAK,EACL,CAAC,SAAS,EAAE,SAAS,CAAC,CACzB,CAAA;IACL,CAAC;IAED,KAAK,CAAC,iBAAiB;QACnB,MAAM,YAAY,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,UAAU,CAClD;YACI,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,IAAI,CAAC,IAAK;YAChB,IAAI,EAAE,OAAO,CAAC,MAAM,CAAC,2BAA2B,CAAC;SACpD,EACD,IAAI,CAAC,SAAS,EACd,YAAY,GAAG,CAAC,CACnB,CAAA;QACD,OAAO,IAAI,UAAU,CAAC,YAAY,CAAC,CAAA;IACvC,CAAC;IAED,aAAa,CAAE,GAAU;QACrB,IAAI,GAAG,GAAG,UAAU,EAAE,CAAC;YACnB,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAA;QAC3D,CAAC;QACD,IAAI,CAAC,IAAI,CAAC,SAAS;YAAE,MAAM,IAAI,KAAK,CAAC,gBAAgB,CAAC,CAAA;QAEtD,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,CAAA;QACpC,MAAM,EAAE,GAAG,IAAI,QAAQ,CAAC,KAAK,CAAC,MAAM,EAAE,KAAK,CAAC,UAAU,EAAE,KAAK,CAAC,UAAU,CAAC,CAAA;QACzE,MAAM,CAAC,GAAG,EAAE,CAAC,SAAS,CAAC,KAAK,CAAC,UAAU,GAAG,CAAC,CAAC,CAAA;QAC5C,MAAM,GAAG,GAAG,CAAC,CAAC,GAAG,GAAG,CAAC,KAAK,CAAC,CAAA,CAAC,0BAA0B;QACtD,EAAE,CAAC,SAAS,CAAC,KAAK,CAAC,UAAU,GAAG,CAAC,EAAE,GAAG,CAAC,CAAA;QACvC,OAAO,KAAK,CAAA;IAChB,CAAC;IAED,GAAG,CAAE,IAAe,EAAE,MAAc;QAChC,MAAM,GAAG,GAAG,IAAI,CAAC,UAAU,CAAA;QAC3B,IAAI,GAAG,GAAG,UAAU,IAAI,IAAI,CAAC,EAAE,EAAE,CAAC;YAC9B,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAA;QACrD,CAAC;QAED,IAAI,OAAO,CAAA;QACX,IAAI,MAAM,EAAE,CAAC;YACT,OAAO,GAAG,UAAU,CAAC,EAAE,CAAC,CAAC,CAAC,CAAA;QAC9B,CAAC;aAAM,CAAC;YACJ,OAAO,GAAG,IAAI,UAAU,CAAC,IAAI,CAAC,EAAE,GAAG,GAAG,GAAG,UAAU,CAAC,CAAA;YACpD,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAA;QAClB,CAAC;QAED,MAAM,MAAM,GAAG,IAAI,UAAU,CAAC,IAAI,CAAC,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC,CAAA;QACnE,MAAM,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,CAAC,CAAA;QACnB,MAAM,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAC,UAAU,CAAC,CAAA;QACpC,OAAO,MAAM,CAAA;IACjB,CAAC;IAED,KAAK,CAAE,IAAe,EAAE,MAAc;QAClC,KAAK,IAAI,CAAC,GAAG,IAAI,CAAC,UAAU,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC;YAC/C,IAAI,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC;gBAChB,IAAI,MAAM,EAAE,CAAC;oBACT,IAAI,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC;wBAChB,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAA;oBACzD,CAAC;gBACL,CAAC;qBAAM,CAAC;oBACJ,IAAI,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC;wBAChB,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAA;oBAC7D,CAAC;gBACL,CAAC;gBAED,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAA;YAC3B,CAAC;QACL,CAAC;QACD,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAA;IACzC,CAAC;IAED,YAAY;QACR,IAAI,CAAC,IAAI,CAAC,IAAI;YAAE,MAAM,IAAI,KAAK,CAAC,UAAU,CAAC,CAAA;QAC3C,OAAO,MAAM,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,EAAE,CAAC,CAAA;IACrC,CAAC;IAED,UAAU,CAAE,MAAiB;QACzB,IAAI,MAAM,CAAC,UAAU,KAAK,aAAa,EAAE,CAAC;YACtC,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAA;QAC1D,CAAC;QACD,MAAM,MAAM,GAAgB,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE,IAAI,EAAE,CAAA;QACpD,MAAM,EAAE,GAAG,IAAI,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,UAAU,EAAE,MAAM,CAAC,UAAU,CAAC,CAAA;QAC5E,MAAM,CAAC,IAAI,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,UAAU,CAAC,CAAA;QACzC,MAAM,CAAC,EAAE,GAAG,EAAE,CAAC,SAAS,CAAC,UAAU,CAAC,CAAA;QACpC,MAAM,KAAK,GAAG,EAAE,CAAC,QAAQ,CAAC,UAAU,GAAG,CAAC,CAAC,CAAA;QACzC,IAAI,KAAK,KAAK,CAAC,EAAE,CAAC;YACd,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAA;QACrE,CAAC;QACD,OAAO,MAAM,CAAA;IACjB,CAAC;IAED,KAAK,CAAC,aAAa,CACf,MAAiB,EACjB,GAAU,EACV,MAAc;QAEd,MAAM,KAAK,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,CAAA;QACrC,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;QAE7C,IAAI,CAAC,IAAI,CAAC,GAAG;YAAE,MAAM,IAAI,KAAK,CAAC,SAAS,CAAC,CAAA,CAAE,SAAS;QAEpD,MAAM,kBAAkB,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,OAAO,CACrD;YACI,IAAI,EAAE,SAAS;YACf,EAAE,EAAE,KAAK;YACT,SAAS,EAAE,UAAU,GAAG,CAAC;SAC5B,EACD,IAAI,CAAC,GAAG,EACR,YAAY,CACf,CAAA;QAED,OAAO,IAAI,UAAU,CAAC,kBAAkB,CAAC,CAAA;IAC7C,CAAC;IAED,KAAK,CAAC,aAAa,CACf,eAA0B,EAC1B,GAAU,EACV,MAAc;QAEd,IAAI,CAAC,IAAI,CAAC,GAAG;YAAE,MAAM,IAAI,KAAK,CAAC,SAAS,CAAC,CAAA,CAAE,SAAS;QAEpD,MAAM,KAAK,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,CAAA;QACrC,MAAM,eAAe,GAAe,MAAM,SAAS,CAAC,MAAM,CAAC,OAAO,CAC9D;YACI,IAAI,EAAE,SAAS;YACf,EAAE,EAAE,KAAK;YACT,SAAS,EAAE,UAAU,GAAG,CAAC;SAC5B,EACD,IAAI,CAAC,GAAG,EACR,cAAc,CAAC,eAAe,CAAC,CAClC,CAAA;QACD,MAAM,YAAY,GAAG,IAAI,UAAU,CAAC,eAAe,CAAC,CAAA;QACpD,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,EAAE,MAAM,CAAC,CAAA;IAC3C,CAAC;IAED,KAAK,CAAC,KAAK,CAAE,UAA2C;QACpD,IAAI,IAAI,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;YAC7B,IAAI,CAAC,GAAG,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;YACnC,IAAI,CAAC,SAAS,GAAG,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAA;YAC/C,UAAU,CAAC,OAAO,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC,CAAA;YACvC,IAAI,CAAC,GAAG,IAAI,CAAC,CAAA;QACjB,CAAC;IACL,CAAC;IAED,KAAK,CAAC,kBAAkB,CACpB,MAAc,EACd,UAA2C;QAE3C,IAAI,CAAC,IAAI,CAAC,SAAS;YAAE,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAA;QAE1D,IAAI,IAAI,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;YAC7B,UAAU,CAAC,OAAO,CACd,MAAM,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,MAAM,CAAC,CAC7D,CAAA;QACL,CAAC;aAAM,CAAC;YACJ,IAAI,IAAI,CAAC,GAAG,KAAK,CAAC,CAAC,EAAE,CAAC;gBAClB,IAAI,CAAC,IAAI,CAAC,SAAS;oBAAE,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAA;gBAE1D,6DAA6D;gBAC7D,MAAM,MAAM,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,SAAS,CAAC,CAAA;gBAC9C,IAAI,CAAC,IAAI,GAAG,cAAc,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA;gBACvC,IAAI,IAAI,CAAC,EAAE,KAAK,IAAI,IAAI,IAAI,CAAC,EAAE,KAAK,MAAM,CAAC,EAAE,EAAE,CAAC;oBAC5C,MAAM,IAAI,KAAK,CACX,oFAAoF,CACvF,CAAA;gBACL,CAAC;gBACD,IAAI,CAAC,EAAE,GAAG,MAAM,CAAC,EAAE,CAAA;gBAEnB,IAAI,CAAC,GAAG,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;gBACnC,IAAI,CAAC,SAAS,GAAG,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAA;gBAE/C,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAA;gBACvC,IAAI,QAAQ,IAAI,IAAI,IAAI,QAAQ,GAAG,CAAC,EAAE,CAAC;oBACnC,yDAAyD;oBACzD,aAAa;oBACb,IAAI,CAAC,GAAG,IAAI,QAAQ,CAAA;gBACxB,CAAC;YACL,CAAC;iBAAM,CAAC;gBACJ,IAAI,gBAAgB,GAAG,KAAK,CAAA;gBAC5B,IAAI,MAAM,EAAE,CAAC;oBACT,mDAAmD;oBACnD,MAAM,MAAM,GAAG,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAA;oBACnC,IAAI,MAAM,IAAI,IAAI,IAAI,MAAM,KAAK,IAAI,CAAC,GAAG,GAAG,CAAC,EAAE,CAAC;wBAC5C,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAA;oBACxD,CAAC;oBAED,gEAAgE;oBAChE,gBAAgB,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAA;gBACrD,CAAC;gBAED,UAAU,CAAC,OAAO,CACd,MAAM,IAAI,CAAC,aAAa,CACpB,IAAI,CAAC,SAAS,EACd,IAAI,CAAC,GAAG,EACR,gBAAgB,CACnB,CACJ,CAAA;YACL,CAAC;QACL,CAAC;QAED,IAAI,CAAC,GAAG,IAAI,CAAC,CAAA;IACjB,CAAC;IAED,KAAK,CAAC,SAAS,CACX,KAAgB,EAChB,UAA2C;QAE3C,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACjB,MAAM,IAAI,CAAC,kBAAkB,CAAC,KAAK,EAAE,UAAU,CAAC,CAAA;QACpD,CAAC;QACD,IAAI,CAAC,SAAS,GAAG,KAAK,CAAA;IAC1B,CAAC;IAED,KAAK,CAAC,KAAK,CAAE,UAA2C;QACpD,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACjB,MAAM,IAAI,CAAC,kBAAkB,CAAC,IAAI,EAAE,UAAU,CAAC,CAAA;QACnD,CAAC;IACL,CAAC;CACJ;AAED;;;;;GAKG;AACH,MAAM,UAAU,aAAa,CACzB,aAAoB,EACpB,KAAY,WAAW;IAEvB,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,aAAa,CAAC,EAAE,CAAC;QACnC,MAAM,IAAI,SAAS,CAAC,eAAe,CAAC,CAAA;IACxC,CAAC;IACD,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,EAAE,CAAC;QACxB,MAAM,IAAI,SAAS,CAAC,IAAI,CAAC,CAAA;IAC7B,CAAC;IAED,MAAM,eAAe,GAAG,UAAU,GAAG,CAAC,CAAA,CAAG,oCAAoC;IAC7E,OAAO,CACH,aAAa;QACb,aAAa;QACb,eAAe,GAAG,IAAI,CAAC,IAAI,CAAC,aAAa,GAAG,CAAC,EAAE,GAAG,eAAe,CAAC,CAAC,CACtE,CAAA;AACL,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,aAAa,CACzB,aAAoB,EACpB,KAAY,WAAW;IAEvB,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,aAAa,CAAC,EAAE,CAAC;QACnC,MAAM,IAAI,SAAS,CAAC,eAAe,CAAC,CAAA;IACxC,CAAC;IACD,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,EAAE,CAAC;QACxB,MAAM,IAAI,SAAS,CAAC,IAAI,CAAC,CAAA;IAC7B,CAAC;IAED,MAAM,eAAe,GAAG,UAAU,GAAG,CAAC,CAAA,CAAG,oCAAoC;IAC7E,MAAM,oBAAoB,GAAG,aAAa,GAAG,aAAa,CAAA;IAC1D,OAAO,CACH,oBAAoB;QACpB,eAAe;YACf,IAAI,CAAC,IAAI,CAAC,oBAAoB,GAAG,EAAE,CAAC,CACvC,CAAA;AACL,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,mBAAmB,CAAE,KAAY,WAAW;IACxD,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,EAAE,CAAC;QACxB,MAAM,IAAI,SAAS,CAAC,IAAI,CAAC,CAAA;IAC7B,CAAC;IACD,OAAO,EAAE,GAAG,UAAU,GAAG,CAAC,CAAA;AAC9B,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,WAAW,CACvB,aAAoB,EACpB,KAAY,WAAW;IAEvB,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,aAAa,CAAC,EAAE,CAAC;QACnC,MAAM,IAAI,SAAS,CAAC,eAAe,CAAC,CAAA;IACxC,CAAC;IACD,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,EAAE,CAAC;QACxB,MAAM,IAAI,SAAS,CAAC,IAAI,CAAC,CAAA;IAC7B,CAAC;IACD,OAAO,IAAI,CAAC,IAAI,CAAC,aAAa,GAAG,mBAAmB,CAAC,EAAE,CAAC,CAAC,CAAA;AAC7D,CAAC;AAED;;;;;;;;;;;;;;;;GAgBG;AACH,MAAM,UAAU,MAAM,CAClB,IAA4B,EAC5B,KAAY,WAAW;IAEvB,IAAI,IAAI,CAAC,UAAU,KAAK,UAAU,EAAE,CAAC;QACjC,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAA;IAC1C,CAAC;IACD,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,EAAE,CAAC;QACxB,MAAM,IAAI,SAAS,CAAC,IAAI,CAAC,CAAA;IAC7B,CAAC;IACD,MAAM,GAAG,GAAG,IAAI,UAAU,CAAC,aAAa,CAAC,CAAA;IACzC,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,CAAA;IACb,MAAM,EAAE,GAAG,IAAI,QAAQ,CAAC,GAAG,CAAC,MAAM,EAAE,GAAG,CAAC,UAAU,EAAE,GAAG,CAAC,UAAU,CAAC,CAAA;IACnE,EAAE,CAAC,SAAS,CAAC,UAAU,EAAE,EAAE,CAAC,CAAA;IAC5B,OAAO,GAAG,CAAA;AACd,CAAC;AAED;;;;;;;;;;;;;GAaG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACnC,SAAmB,EACnB,aAAwB;IAExB,IAAI,aAAa,CAAC,UAAU,KAAK,CAAC,EAAE,CAAC;QACjC,MAAM,IAAI,KAAK,CAAC,sBAAsB,CAAC,CAAA;IAC3C,CAAC;IAED,MAAM,OAAO,GAAG,SAAS,CAAC,UAAU,GAAG,aAAa,CAAC,UAAU,CAAA;IAC/D,MAAM,IAAI,GAAG,IAAI,UAAU,CAAC,OAAO,CAAC,CAAA;IACpC,IAAI,CAAC,GAAG,CAAC,SAAS,EAAE,CAAC,CAAC,CAAA;IACtB,IAAI,CAAC,GAAG,CAAC,aAAa,EAAE,SAAS,CAAC,UAAU,CAAC,CAAA;IAE7C,MAAM,IAAI,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,UAAU,CAC1C;QACI,IAAI,EAAE,MAAM;QACZ,IAAI,EAAE,SAAS;QACf,IAAI,EAAE,IAAI,UAAU,CAAC,CAAC,CAAC;QACvB,IAAI;KACP,EACD,SAAS,EACT,UAAU,GAAG,CAAC,CACjB,CAAA;IAED,OAAO,IAAI,UAAU,CAAC,IAAI,CAAC,CAAA;AAC/B,CAAC;AAED;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CAC/B,SAAmB,EACnB,GAAU,EACV,SAAoB,EACpB,MAAc,EACd,IAA4B,EAC5B,KAAY,WAAW;IAEvB,wEAAwE;IACxE,MAAM,WAAW,GAAG,IAAI,cAAc,CAAC,YAAY,EAAE,SAAS,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAEzE,MAAM,GAAG,GAAG,mBAAmB,CAAC,EAAE,CAAC,CAAA;IACnC,IAAI,MAAM,EAAE,CAAC;QACT,IAAI,SAAS,CAAC,UAAU,GAAG,GAAG,EAAE,CAAC;YAC7B,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAA;QAC/D,CAAC;IACL,CAAC;SAAM,CAAC;QACJ,IAAI,SAAS,CAAC,UAAU,KAAK,GAAG,EAAE,CAAC;YAC/B,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAA;QACtE,CAAC;IACL,CAAC;IAED,WAAW,CAAC,GAAG,GAAG,MAAM,WAAW,CAAC,WAAW,EAAE,CAAA;IACjD,WAAW,CAAC,SAAS,GAAG,MAAM,WAAW,CAAC,iBAAiB,EAAE,CAAA;IAE7D,OAAO,WAAW,CAAC,aAAa,CAAC,SAAS,EAAE,GAAG,EAAE,MAAM,CAAC,CAAA;AAC5D,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,aAAa,CACzB,KAAoB,EACpB,SAAmB,EACnB,KAAY,WAAW,EACvB,OAA+B,YAAY,CAAC,UAAU,CAAC;IAEvD,MAAM,MAAM,GAAG,eAAe,CAC1B,KAAK,EACL,IAAI,gBAAgB,CAAC,EAAE,GAAG,UAAU,GAAG,CAAC,CAAC,CAC5C,CAAC,QAAQ,CAAA;IAEV,OAAO,eAAe,CAClB,MAAM,EACN,IAAI,cAAc,CAAC,YAAY,EAAE,SAAS,EAAE,EAAE,EAAE,IAAI,CAAC,CACxD,CAAC,QAAQ,CAAA;AACd,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,aAAa,CACzB,KAAoB,EACpB,SAAmB,EACnB,EAAE,GAAG,WAAW;IAEhB,MAAM,MAAM,GAAG,eAAe,CAC1B,KAAK,EACL,IAAI,gBAAgB,CAAC,aAAa,EAAE,EAAE,CAAC,CAC1C,CAAC,QAAQ,CAAA;IAEV,OAAO,eAAe,CAClB,MAAM,EACN,IAAI,cAAc,CAAC,YAAY,EAAE,SAAS,EAAE,EAAE,EAAE,IAAI,CAAC,CACxD,CAAC,QAAQ,CAAA;AACd,CAAC;AAED;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,MAAM,UAAU,kBAAkB,CAC9B,SAAmB,EACnB,MAAa,EACb,MAAa,EACb,oBAA2B,EAC3B,KAAY,WAAW;IAKvB,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,EAAE,CAAC;QACxB,MAAM,IAAI,SAAS,CAAC,0BAA0B,CAAC,CAAA;IACnD,CAAC;IAED,oCAAoC;IACpC,MAAM,eAAe,GAAG,UAAU,GAAG,CAAC,CAAA;IAEtC,2CAA2C;IAC3C,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,GAAG,eAAe,CAAC,CAAC,CAAA;IAC/D,MAAM,mBAAmB,GAAG,MAAM,GAAG,CAAC,EAAE,GAAG,eAAe,CAAC,CAAA;IAE3D,2DAA2D;IAC3D,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,MAAM,GAAG,MAAM,CAAC,GAAG,CAAC,EAAE,GAAG,eAAe,CAAC,CAAC,CAAA;IAEvE,4CAA4C;IAC5C,MAAM,UAAU,GAAG,aAAa,GAAG,WAAW,GAAG,EAAE,CAAA;IACnD,IAAI,OAAO,GAAG,aAAa,GAAG,SAAS,GAAG,EAAE,CAAA,CAAC,YAAY;IAEzD,iEAAiE;IACjE,2EAA2E;IAC3E,MAAM,eAAe,GAAG,OAAO,GAAG,oBAAoB,CAAA;IACtD,IAAI,CAAC,eAAe,EAAE,CAAC;QACnB,OAAO,GAAG,oBAAoB,CAAA;IAClC,CAAC;IAED,OAAO;QACH,MAAM,EAAE;YACJ;gBACI,MAAM,EAAE,CAAC;gBACT,MAAM,EAAE,aAAa;aACxB,EAAE;gBACC,MAAM,EAAE,UAAU;gBAClB,MAAM,EAAE,OAAO,GAAG,UAAU;aAC/B;SACJ;QAED,OAAO,EAAE,CAAC,OAAO,EAAE,EAAE;YACjB,IAAI,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,YAAY,cAAc,CAAC,CAAC,EAAE,CAAC;gBAC/D,MAAM,IAAI,SAAS,CAAC,gCAAgC,CAAC,CAAA;YACzD,CAAC;YAED,0DAA0D;YAC1D,yBAAyB;YACzB,MAAM,eAAe,GAAG,eAAe,CACnC,aAAa,CAAC,OAAO,CAAC,EAAE,IAAI,gBAAgB,CAAC,aAAa,EAAE,EAAE,CAAC,CAClE,CAAC,QAAQ,CAAA;YAEV,qCAAqC;YACrC,MAAM,eAAe,GAAG,eAAe,CACnC,eAAe,EACf,IAAI,cAAc,CAAC,YAAY,EAAE,SAAS,EAAE,EAAE,EAAE,IAAI,EAAE;gBAClD,QAAQ,EAAE,WAAW;gBACrB,MAAM,EAAE,SAAS;gBACjB,eAAe;aAClB,CAAC,CACL,CAAC,QAAQ,CAAA;YAEV,2DAA2D;YAC3D,OAAO,eAAe,CAClB,eAAe,EACf,IAAI,kBAAkB,CAAC,mBAAmB,EAAE,MAAM,CAAC,CACtD,CAAC,QAAQ,CAAA;QACd,CAAC;KACJ,CAAA;AACL,CAAC;AAED,SAAS,cAAc,CAAE,SAAmB;IACxC,IAAI,SAAS,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAA;IACzD,CAAC;IACD,IAAI,SAAS,CAAC,SAAS,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;QACtC,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAA;IAC1D,CAAC;IACD,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;QAC1C,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAA;IACjE,CAAC;IACD,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QAC3C,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAA;IAClE,CAAC;AACL,CAAC"}

package/dist/src/keychain.d.ts

@@ -39,12 +39,78 @@ export declare class Keychain {
      * @param authToken The new token
      */
     setAuthToken(authToken?: string | Uint8Array): void;
+    /**
+     * SHA-256 digest of the plaintext, used as the input to content-bound
+     * salt derivation. Accepts a stream, a byte array, or a Blob;
+     * equivalent content yields the same digest.
+     *
+     * Pass the result to `encryptStream`/`header`/`encryptRecord` as
+     * `contentDigest`. The salt is derived from this digest internally,
+     * so the Keychain API never exposes a raw salt — a fixed salt can
+     * never pair with two different plaintexts.
+     *
+     * NOTE: WebCrypto has no incremental hash, so a stream/Blob is
+     * drained into memory before hashing.
+     *
+     * @param content Plaintext as a ReadableStream, Uint8Array, or Blob.
+     * @returns 32-byte SHA-256 digest.
+     */
+    contentDigest(content: ReadableStream<Uint8Array> | Uint8Array | Blob): Promise<Uint8Array<ArrayBuffer>>;
     /**
      * Take a stream, return an encrypted stream.
-     * @param stream Input stream
-     * @returns {Promise<ReadableStream>}
+     *
+     * With `opts.contentDigest`, the ECE salt is derived from the digest
+     * internally (`deriveContentSalt`), so two calls over identical input
+     * produce byte-identical ciphertext (reproducible encryption). With no
+     * opts, a fresh random salt is used (today's behavior).
+     *
+     * The salt is never accepted directly: because it is bound to the
+     * content digest, a fixed salt can never encrypt two different
+     * plaintexts (AES-GCM nonce-reuse is structurally unreachable from
+     * this API).
+     *
+     * @param stream Input plaintext stream.
+     * @param opts Optional `{ contentDigest?, recordSize? }`.
+     * @returns Encrypted stream.
      */
-    encryptStream(stream: ReadableStream<Uint8Array>): Promise<ReadableStream<Uint8Array>>;
+    encryptStream(stream: ReadableStream<Uint8Array>, opts?: {
+        contentDigest?: Uint8Array;
+        recordSize?: number;
+    }): Promise<ReadableStream<Uint8Array>>;
+    /**
+     * Build the 21-byte ECE header for content identified by
+     * `contentDigest`. The salt is derived internally from the digest,
+     * so this never exposes a raw salt. The header is byte-identical to
+     * the header that `encryptStream({ contentDigest, recordSize })`
+     * emits for the same input.
+     *
+     * @param opts `{ contentDigest, recordSize? }`.
+     * @returns The 21-byte header.
+     */
+    header(opts: {
+        contentDigest: Uint8Array;
+        recordSize?: number;
+    }): Promise<Uint8Array<ArrayBuffer>>;
+    /**
+     * Encrypt a single ECE record by index, byte-identical to record
+     * `seq` of `encryptStream({ contentDigest, recordSize })`. The salt
+     * is derived from `contentDigest` internally; no raw salt is
+     * accepted.
+     *
+     * Non-final records must be exactly `recordPlaintextSize(recordSize)`
+     * bytes; the final record must be `<=` that. The low-level function
+     * throws otherwise.
+     *
+     * @param seq Zero-based record index.
+     * @param plaintext The record's plaintext slice.
+     * @param opts `{ isLast, contentDigest, recordSize? }`.
+     * @returns The encrypted record bytes.
+     */
+    encryptRecord(seq: number, plaintext: Uint8Array, opts: {
+        isLast: boolean;
+        contentDigest: Uint8Array;
+        recordSize?: number;
+    }): Promise<Uint8Array>;
     /**
      * Encrypt and return some data; don't stream.
      *

package/dist/src/keychain.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"keychain.d.ts","sourceRoot":"","sources":["../../src/keychain.ts"],"names":[],"mappings":"AAUA,OAAO,EAAE,aAAa,EAAE,aAAa,EAAE,MAAM,UAAU,CAAA;AAKvD,qBAAa,QAAQ;IACjB,GAAG,EAAC,UAAU,CAAC,WAAW,CAAC,CAAA;IAC3B,IAAI,EAAC,UAAU,CAAC,WAAW,CAAC,CAAA;IAC5B,cAAc,EAAC,OAAO,CAAC,SAAS,CAAC,CAAA;IACjC,cAAc,EAAC,OAAO,CAAC,SAAS,CAAC,CAAA;IACjC,gBAAgB,EAAC,OAAO,CAAC,UAAU,CAAC,CAAA;gBAEvB,GAAG,CAAC,EAAC,MAAM,GAAC,UAAU,EAAE,IAAI,CAAC,EAAC,MAAM,GAAC,UAAU;IA+C5D;;OAEG;WACU,UAAU,CAAE,SAAS,EAAC,MAAM,EAAE,IAAI,EAAC,MAAM,GAAC,UAAU;IAwBjE,MAAM,CAAC,MAAM,CAAE,UAAU,EAAC,MAAM;IAIhC;;OAEG;IACH,IAAI,MAAM,IAAI,MAAM,CAEnB;IAED;;OAEG;IACH,IAAI,OAAO,IAAI,MAAM,CAEpB;IAED;;;OAGG;IACG,SAAS,IAAI,OAAO,CAAC,UAAU,CAAC;IAItC;;OAEG;IACG,YAAY,IAAI,OAAO,CAAC,MAAM,CAAC;IAKrC;;;;OAIG;IACG,UAAU,CAAE,WAAW,CAAC,EAAC,MAAM,GAAE,OAAO,CAAC,MAAM,CAAC;IAQtD;;;OAGG;IACH,YAAY,CAAE,SAAS,CAAC,EAAC,MAAM,GAAC,UAAU,GAAE,IAAI;IAIhD;;;;OAIG;IACG,aAAa,CACf,MAAM,EAAC,cAAc,CAAC,UAAU,CAAC,GACnC,OAAO,CAAC,cAAc,CAAC,UAAU,CAAC,CAAC;IAQrC;;;;;;;;;;;OAWG;IACG,YAAY,CACd,KAAK,EAAC,WAAW,GAAC,UAAU,EAC5B,IAAI,CAAC,EAAC;QAAE,EAAE,CAAC,EAAC,UAAU,CAAC;QAAC,IAAI,CAAC,EAAC,MAAM,CAAA;KAAE,GACxC,OAAO,CAAC,UAAU,CAAC;IAcrB;;OAEG;IACG,YAAY,CACd,KAAK,EAAC,UAAU,GAClB,OAAO,CAAC,WAAW,CAAC;IAatB;;;;;;OAMG;IACG,WAAW,CAAE,SAAS,CAAC,EAAC,MAAM,GAAE,OAAO,CAAC,SAAS,CAAC;IAoBxD;;;;OAIG;IACG,aAAa,CACf,eAAe,EAAC,cAAc,CAAC,UAAU,CAAC,GAC5C,OAAO,CAAC,cAAc,CAAC,UAAU,CAAC,CAAC;IAQrC;;;;;;;;;;OAUG;IACG,kBAAkB,CACpB,MAAM,EAAC,MAAM,EACb,MAAM,EAAC,MAAM,EACb,oBAAoB,EAAC,MAAM,GAC7B,OAAO,CAAC;QACN,MAAM,EAAC;YAAE,MAAM,EAAC,MAAM,CAAC;YAAC,MAAM,EAAC,MAAM,CAAA;SAAE,EAAE,CAAC;QAC1C,OAAO,EAAC,CAAC,OAAO,EAAC,cAAc,EAAE,KAAG,cAAc,CAAA;KACrD,CAAC;IAeI,WAAW,CAAE,IAAI,EAAC,UAAU,GAAE,OAAO,CAAC,UAAU,CAAC;IA2BjD,WAAW,CAAE,eAAe,EAAC,UAAU,GAAE,OAAO,CAAC,UAAU,CAAC;CAqBrE"}
+{"version":3,"file":"keychain.d.ts","sourceRoot":"","sources":["../../src/keychain.ts"],"names":[],"mappings":"AAcA,OAAO,EAAE,aAAa,EAAE,aAAa,EAAE,MAAM,UAAU,CAAA;AAKvD,qBAAa,QAAQ;IACjB,GAAG,EAAC,UAAU,CAAC,WAAW,CAAC,CAAA;IAC3B,IAAI,EAAC,UAAU,CAAC,WAAW,CAAC,CAAA;IAC5B,cAAc,EAAC,OAAO,CAAC,SAAS,CAAC,CAAA;IACjC,cAAc,EAAC,OAAO,CAAC,SAAS,CAAC,CAAA;IACjC,gBAAgB,EAAC,OAAO,CAAC,UAAU,CAAC,CAAA;gBAEvB,GAAG,CAAC,EAAC,MAAM,GAAC,UAAU,EAAE,IAAI,CAAC,EAAC,MAAM,GAAC,UAAU;IA+C5D;;OAEG;WACU,UAAU,CAAE,SAAS,EAAC,MAAM,EAAE,IAAI,EAAC,MAAM,GAAC,UAAU;IAwBjE,MAAM,CAAC,MAAM,CAAE,UAAU,EAAC,MAAM;IAIhC;;OAEG;IACH,IAAI,MAAM,IAAI,MAAM,CAEnB;IAED;;OAEG;IACH,IAAI,OAAO,IAAI,MAAM,CAEpB;IAED;;;OAGG;IACG,SAAS,IAAI,OAAO,CAAC,UAAU,CAAC;IAItC;;OAEG;IACG,YAAY,IAAI,OAAO,CAAC,MAAM,CAAC;IAKrC;;;;OAIG;IACG,UAAU,CAAE,WAAW,CAAC,EAAC,MAAM,GAAE,OAAO,CAAC,MAAM,CAAC;IAQtD;;;OAGG;IACH,YAAY,CAAE,SAAS,CAAC,EAAC,MAAM,GAAC,UAAU,GAAE,IAAI;IAIhD;;;;;;;;;;;;;;;OAeG;IACG,aAAa,CACf,OAAO,EAAC,cAAc,CAAC,UAAU,CAAC,GAAC,UAAU,GAAC,IAAI,GACpD,OAAO,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;IAqBlC;;;;;;;;;;;;;;;;OAgBG;IACG,aAAa,CACf,MAAM,EAAC,cAAc,CAAC,UAAU,CAAC,EACjC,IAAI,CAAC,EAAC;QACF,aAAa,CAAC,EAAC,UAAU,CAAC;QAC1B,UAAU,CAAC,EAAC,MAAM,CAAA;KACrB,GACH,OAAO,CAAC,cAAc,CAAC,UAAU,CAAC,CAAC;IAerC;;;;;;;;;OASG;IACG,MAAM,CACR,IAAI,EAAC;QAAC,aAAa,EAAC,UAAU,CAAC;QAAC,UAAU,CAAC,EAAC,MAAM,CAAA;KAAC,GACrD,OAAO,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;IAMlC;;;;;;;;;;;;;;OAcG;IACG,aAAa,CACf,GAAG,EAAC,MAAM,EACV,SAAS,EAAC,UAAU,EACpB,IAAI,EAAC;QACD,MAAM,EAAC,OAAO,CAAC;QACf,aAAa,EAAC,UAAU,CAAC;QACzB,UAAU,CAAC,EAAC,MAAM,CAAA;KACrB,GACH,OAAO,CAAC,UAAU,CAAC;IAgBrB;;;;;;;;;;;OAWG;IACG,YAAY,CACd,KAAK,EAAC,WAAW,GAAC,UAAU,EAC5B,IAAI,CAAC,EAAC;QAAE,EAAE,CAAC,EAAC,UAAU,CAAC;QAAC,IAAI,CAAC,EAAC,MAAM,CAAA;KAAE,GACxC,OAAO,CAAC,UAAU,CAAC;IAcrB;;OAEG;IACG,YAAY,CACd,KAAK,EAAC,UAAU,GAClB,OAAO,CAAC,WAAW,CAAC;IAatB;;;;;;OAMG;IACG,WAAW,CAAE,SAAS,CAAC,EAAC,MAAM,GAAE,OAAO,CAAC,SAAS,CAAC;IAoBxD;;;;OAIG;IACG,aAAa,CACf,eAAe,EAAC,cAAc,CAAC,UAAU,CAAC,GAC5C,OAAO,CAAC,cAAc,CAAC,UAAU,CAAC,CAAC;IAQrC;;;;;;;;;;OAUG;IACG,kBAAkB,CACpB,MAAM,EAAC,MAAM,EACb,MAAM,EAAC,MAAM,EACb,oBAAoB,EAAC,MAAM,GAC7B,OAAO,CAAC;QACN,MAAM,EAAC;YAAE,MAAM,EAAC,MAAM,CAAC;YAAC,MAAM,EAAC,MAAM,CAAA;SAAE,EAAE,CAAC;QAC1C,OAAO,EAAC,CAAC,OAAO,EAAC,cAAc,EAAE,KAAG,cAAc,CAAA;KACrD,CAAC;IAeI,WAAW,CAAE,IAAI,EAAC,UAAU,GAAE,OAAO,CAAC,UAAU,CAAC;IA2BjD,WAAW,CAAE,eAAe,EAAC,UAAU,GAAE,OAAO,CAAC,UAAU,CAAC;CAqBrE"}

package/dist/src/keychain.js

@@ -1,6 +1,6 @@
 import { webcrypto } from '@substrate-system/one-webcrypto';
 import * as u from 'uint8arrays';
-import { decryptStream, decryptStreamRange, encryptStream, KEY_LENGTH, } from './ece.js';
+import { decryptStream, decryptStreamRange, deriveContentSalt, encryptStream, header as eceHeader, encryptRecord as eceEncryptRecord, KEY_LENGTH, RECORD_SIZE, } from './ece.js';
 import { randomBuf, joinBufs, asBufferSource } from './util.js';
 export { encryptedSize, plaintextSize } from './ece.js';
 const IV_LENGTH = 12;
@@ -96,17 +96,102 @@ export class Keychain {
     setAuthToken(authToken) {
         this.authTokenPromise = Promise.resolve(decodeBits(authToken));
     }
+    /**
+     * SHA-256 digest of the plaintext, used as the input to content-bound
+     * salt derivation. Accepts a stream, a byte array, or a Blob;
+     * equivalent content yields the same digest.
+     *
+     * Pass the result to `encryptStream`/`header`/`encryptRecord` as
+     * `contentDigest`. The salt is derived from this digest internally,
+     * so the Keychain API never exposes a raw salt — a fixed salt can
+     * never pair with two different plaintexts.
+     *
+     * NOTE: WebCrypto has no incremental hash, so a stream/Blob is
+     * drained into memory before hashing.
+     *
+     * @param content Plaintext as a ReadableStream, Uint8Array, or Blob.
+     * @returns 32-byte SHA-256 digest.
+     */
+    async contentDigest(content) {
+        let bytes;
+        if (content instanceof Uint8Array) {
+            bytes = content;
+        }
+        else if (content instanceof ReadableStream) {
+            bytes = new Uint8Array(await new Response(content).arrayBuffer());
+        }
+        else if (typeof Blob !== 'undefined' && content instanceof Blob) {
+            bytes = new Uint8Array(await content.arrayBuffer());
+        }
+        else {
+            throw new TypeError('content must be a ReadableStream, Uint8Array, or Blob');
+        }
+        const digest = await webcrypto.subtle.digest('SHA-256', asBufferSource(bytes));
+        return new Uint8Array(digest);
+    }
     /**
      * Take a stream, return an encrypted stream.
-     * @param stream Input stream
-     * @returns {Promise<ReadableStream>}
+     *
+     * With `opts.contentDigest`, the ECE salt is derived from the digest
+     * internally (`deriveContentSalt`), so two calls over identical input
+     * produce byte-identical ciphertext (reproducible encryption). With no
+     * opts, a fresh random salt is used (today's behavior).
+     *
+     * The salt is never accepted directly: because it is bound to the
+     * content digest, a fixed salt can never encrypt two different
+     * plaintexts (AES-GCM nonce-reuse is structurally unreachable from
+     * this API).
+     *
+     * @param stream Input plaintext stream.
+     * @param opts Optional `{ contentDigest?, recordSize? }`.
+     * @returns Encrypted stream.
      */
-    async encryptStream(stream) {
+    async encryptStream(stream, opts) {
         if (!(stream instanceof ReadableStream)) {
             throw new TypeError('This is not a readable stream');
         }
         const mainKey = await this.mainKeyPromise;
-        return encryptStream(stream, mainKey);
+        const rs = opts?.recordSize ?? RECORD_SIZE;
+        if (opts?.contentDigest) {
+            const salt = await deriveContentSalt(mainKey, opts.contentDigest);
+            return encryptStream(stream, mainKey, rs, salt);
+        }
+        return encryptStream(stream, mainKey, rs);
+    }
+    /**
+     * Build the 21-byte ECE header for content identified by
+     * `contentDigest`. The salt is derived internally from the digest,
+     * so this never exposes a raw salt. The header is byte-identical to
+     * the header that `encryptStream({ contentDigest, recordSize })`
+     * emits for the same input.
+     *
+     * @param opts `{ contentDigest, recordSize? }`.
+     * @returns The 21-byte header.
+     */
+    async header(opts) {
+        const mainKey = await this.mainKeyPromise;
+        const salt = await deriveContentSalt(mainKey, opts.contentDigest);
+        return eceHeader(salt, opts.recordSize ?? RECORD_SIZE);
+    }
+    /**
+     * Encrypt a single ECE record by index, byte-identical to record
+     * `seq` of `encryptStream({ contentDigest, recordSize })`. The salt
+     * is derived from `contentDigest` internally; no raw salt is
+     * accepted.
+     *
+     * Non-final records must be exactly `recordPlaintextSize(recordSize)`
+     * bytes; the final record must be `<=` that. The low-level function
+     * throws otherwise.
+     *
+     * @param seq Zero-based record index.
+     * @param plaintext The record's plaintext slice.
+     * @param opts `{ isLast, contentDigest, recordSize? }`.
+     * @returns The encrypted record bytes.
+     */
+    async encryptRecord(seq, plaintext, opts) {
+        const mainKey = await this.mainKeyPromise;
+        const salt = await deriveContentSalt(mainKey, opts.contentDigest);
+        return eceEncryptRecord(mainKey, seq, plaintext, opts.isLast, salt, opts.recordSize ?? RECORD_SIZE);
     }
     /**
      * Encrypt and return some data; don't stream.

package/dist/src/keychain.js.map

@@ -1 +1 @@
-{"version":3,"file":"keychain.js","sourceRoot":"","sources":["../../src/keychain.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,iCAAiC,CAAA;AAC3D,OAAO,KAAK,CAAC,MAAM,aAAa,CAAA;AAChC,OAAO,EACH,aAAa,EACb,kBAAkB,EAClB,aAAa,EACb,UAAU,GACb,MAAM,UAAU,CAAA;AACjB,OAAO,EAAE,SAAS,EAAE,QAAQ,EAAE,cAAc,EAAE,MAAM,WAAW,CAAA;AAE/D,OAAO,EAAE,aAAa,EAAE,aAAa,EAAE,MAAM,UAAU,CAAA;AAEvD,MAAM,SAAS,GAAG,EAAE,CAAA;AACpB,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAA;AAEjC,MAAM,OAAO,QAAQ;IACjB,GAAG,CAAwB;IAC3B,IAAI,CAAwB;IAC5B,cAAc,CAAmB;IACjC,cAAc,CAAmB;IACjC,gBAAgB,CAAoB;IAEpC,YAAa,GAAsB,EAAE,IAAuB;QACxD,IAAI,CAAC,GAAG,GAAG,UAAU,CAAC,GAAG,CAAC,CAAA;QAC1B,IAAI,CAAC,IAAI,GAAG,UAAU,CAAC,IAAI,CAAC,CAAA;QAE5B,IAAI,CAAC,cAAc,GAAG,SAAS,CAAC,MAAM,CAAC,SAAS,CAC5C,KAAK,EACL,IAAI,CAAC,GAAG,EACR,MAAM,EACN,KAAK,EACL,CAAC,YAAY,EAAE,WAAW,CAAC,CAC9B,CAAA;QAED,IAAI,CAAC,cAAc,GAAG,IAAI,CAAC,cAAc;aACpC,IAAI,CAAC,OAAO,CAAC,EAAE,CACZ,SAAS,CAAC,MAAM,CAAC,SAAS,CACtB;YACI,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,IAAI,EAAE,OAAO,CAAC,MAAM,CAAC,UAAU,CAAC;SACnC,EACD,OAAO,EACP;YACI,IAAI,EAAE,SAAS;YACf,MAAM,EAAE,GAAG;SACd,EACD,KAAK,EACL,CAAC,SAAS,EAAE,SAAS,CAAC,CACzB,CACJ,CAAA;QAEL,IAAI,CAAC,gBAAgB,GAAG,IAAI,CAAC,cAAc;aACtC,IAAI,CAAC,OAAO,CAAC,EAAE,CACZ,SAAS,CAAC,MAAM,CAAC,UAAU,CACvB;YACI,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,IAAI,EAAE,OAAO,CAAC,MAAM,CAAC,gBAAgB,CAAC;SACzC,EACD,OAAO,EACP,GAAG,CACN,CACJ;aACA,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC,IAAI,UAAU,CAAC,YAAY,CAAC,CAAC,CAAA;IAC3D,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,KAAK,CAAC,UAAU,CAAE,SAAgB,EAAE,IAAsB;QAC7D,MAAM,GAAG,GAAG,UAAU,CAAC,SAAS,CAAC,CAAA;QACjC,MAAM,OAAO,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,SAAS,CAC5C,KAAK,EACL,GAAG,EACH,MAAM,EACN,KAAK,EACL,CAAC,YAAY,EAAE,WAAW,CAAC,CAC9B,CAAA;QAED,MAAM,KAAK,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,UAAU,CAC3C;YACI,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,UAAU,CAAC,IAAI,CAAC;YACtB,IAAI,EAAE,OAAO,CAAC,MAAM,CAAC,gBAAgB,CAAC;SACzC,EACD,OAAO,EACP,GAAG,CACN,CAAA;QAED,OAAO,QAAQ,CAAC,MAAM,CAAC,UAAU,CAAC,IAAI,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAA;IAC7D,CAAC;IAED,MAAM,CAAC,MAAM,CAAE,UAAiB;QAC5B,OAAO,kBAAkB,UAAU,EAAE,CAAA;IACzC,CAAC;IAED;;OAEG;IACH,IAAI,MAAM;QACN,OAAO,aAAa,CAAC,IAAI,CAAC,GAAG,CAAC,CAAA;IAClC,CAAC;IAED;;OAEG;IACH,IAAI,OAAO;QACP,OAAO,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAChC,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,SAAS;QACX,OAAO,MAAM,IAAI,CAAC,gBAAgB,CAAA;IACtC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,YAAY;QACd,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAA;QACxC,OAAO,UAAU,CAAC,SAAS,CAAC,CAAA;IAChC,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,UAAU,CAAE,WAAmB;QACjC,IAAI,WAAW,EAAE,CAAC;YACd,OAAO,kBAAkB,WAAW,EAAE,CAAA;QAC1C,CAAC;QACD,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,YAAY,EAAE,CAAA;QAC9C,OAAO,kBAAkB,YAAY,EAAE,CAAA;IAC3C,CAAC;IAED;;;OAGG;IACH,YAAY,CAAE,SAA4B;QACtC,IAAI,CAAC,gBAAgB,GAAG,OAAO,CAAC,OAAO,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC,CAAA;IAClE,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,aAAa,CACf,MAAiC;QAEjC,IAAI,CAAC,CAAC,MAAM,YAAY,cAAc,CAAC,EAAE,CAAC;YACtC,MAAM,IAAI,SAAS,CAAC,+BAA+B,CAAC,CAAA;QACxD,CAAC;QACD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,cAAc,CAAA;QACzC,OAAO,aAAa,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;IACzC,CAAC;IAED;;;;;;;;;;;OAWG;IACH,KAAK,CAAC,YAAY,CACd,KAA4B,EAC5B,IAAsC;QAEtC,MAAM,EAAE,GAAG,IAAI,EAAE,EAAE,IAAI,SAAS,CAAC,EAAE,CAAC,CAAA;QACpC,MAAM,kBAAkB,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,OAAO,CACrD;YACI,IAAI,EAAE,SAAS;YACf,EAAE,EAAE,cAAc,CAAC,EAAE,CAAC;SACzB,EACD,MAAM,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,IAAI,CAAC,EAClC,cAAc,CAAC,KAAK,CAAC,CACxB,CAAA;QAED,OAAO,QAAQ,CAAC,EAAE,EAAE,kBAAkB,CAAC,CAAA;IAC3C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,YAAY,CACd,KAAgB;QAEhB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACpC,0CAA0C;QAC1C,MAAM,EAAE,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAA;QAC7B,MAAM,WAAW,GAAG,KAAK,CAAC,KAAK,CAAC,EAAE,CAAC,CAAA;QACnC,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,OAAO,CAAC;YAC1C,IAAI,EAAE,SAAS;YACf,EAAE;SACL,EAAE,GAAG,EAAE,WAAW,CAAC,CAAA;QAEpB,OAAO,MAAM,CAAA;IACjB,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,WAAW,CAAE,SAAiB;QAChC,MAAM,OAAO,GAAG,CAAC,SAAS,IAAI,UAAU,CAAC,GAAG,CAAC,CAAA;QAE7C,OAAO,SAAS,CAAC,MAAM,CAAC,SAAS,CAC7B;YACI,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,IAAI,CAAC,IAAK;YAChB,IAAI,EAAE,OAAO,CAAC,MAAM,CAAC,+BAA+B,CAAC;SACxD,EACD,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,EAC3B;YACI,IAAI,EAAE,SAAS;YACf,MAAM,EAAE,OAAO;SAClB,EACD,KAAK,EACL,CAAC,SAAS,EAAE,SAAS,CAAC,CACzB,CAAA;IACL,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,aAAa,CACf,eAA0C;QAE1C,IAAI,CAAC,CAAC,eAAe,YAAY,cAAc,CAAC,EAAE,CAAC;YAC/C,MAAM,IAAI,SAAS,CAAC,yCAAyC,CAAC,CAAA;QAClE,CAAC;QACD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,cAAc,CAAA;QACzC,OAAO,aAAa,CAAC,eAAe,EAAE,OAAO,CAAC,CAAA;IAClD,CAAC;IAED;;;;;;;;;;OAUG;IACH,KAAK,CAAC,kBAAkB,CACpB,MAAa,EACb,MAAa,EACb,oBAA2B;QAK3B,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC;YAC5B,MAAM,IAAI,SAAS,CAAC,QAAQ,CAAC,CAAA;QACjC,CAAC;QACD,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC;YAC5B,MAAM,IAAI,SAAS,CAAC,QAAQ,CAAC,CAAA;QACjC,CAAC;QACD,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,oBAAoB,CAAC,EAAE,CAAC;YAC1C,MAAM,IAAI,SAAS,CAAC,sBAAsB,CAAC,CAAA;QAC/C,CAAC;QAED,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,cAAc,CAAA;QACzC,OAAO,kBAAkB,CAAC,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,oBAAoB,CAAC,CAAA;IAC5E,CAAC;IAED,KAAK,CAAC,WAAW,CAAE,IAAe;QAC9B,IAAI,CAAC,CAAC,IAAI,YAAY,UAAU,CAAC,EAAE,CAAC;YAChC,MAAM,IAAI,SAAS,CAAC,6BAA6B,CAAC,CAAA;QACtD,CAAC;QAED,MAAM,EAAE,GAAG,SAAS,CAAC,eAAe,CAAC,IAAI,UAAU,CAAC,SAAS,CAAC,CAAC,CAAA;QAC/D,MAAM,OAAO,GAAa,MAAM,IAAI,CAAC,cAAc,CAAA;QAEnD,MAAM,gBAAgB,GAAe,MAAM,SAAS,CAAC,MAAM,CAAC,OAAO,CAC/D;YACI,IAAI,EAAE,SAAS;YACf,EAAE;YACF,SAAS,EAAE,GAAG;SACjB,EACD,OAAO,EACP,cAAc,CAAC,IAAI,CAAC,CACvB,CAAA;QAED,MAAM,aAAa,GAAG,IAAI,UAAU,CAAC,gBAAgB,CAAC,CAAA;QAEtD,MAAM,eAAe,GAAG,IAAI,UAAU,CAAC,SAAS,GAAG,aAAa,CAAC,UAAU,CAAC,CAAA;QAC5E,eAAe,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC,CAAC,CAAA;QAC1B,eAAe,CAAC,GAAG,CAAC,aAAa,EAAE,SAAS,CAAC,CAAA;QAE7C,OAAO,eAAe,CAAA;IAC1B,CAAC;IAED,KAAK,CAAC,WAAW,CAAE,eAA0B;QACzC,IAAI,CAAC,CAAC,eAAe,YAAY,UAAU,CAAC,EAAE,CAAC;YAC3C,MAAM,IAAI,KAAK,CAAC,iBAAiB,CAAC,CAAA;QACtC,CAAC;QAED,MAAM,EAAE,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC,EAAE,SAAS,CAAC,CAAA;QAC9C,MAAM,aAAa,GAAG,eAAe,CAAC,KAAK,CAAC,SAAS,CAAC,CAAA;QAEtD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,cAAc,CAAA;QACzC,MAAM,OAAO,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,OAAO,CAC1C;YACI,IAAI,EAAE,SAAS;YACf,EAAE;YACF,SAAS,EAAE,GAAG;SACjB,EACD,OAAO,EACP,aAAa,CAChB,CAAA;QACD,MAAM,IAAI,GAAG,IAAI,UAAU,CAAC,OAAO,CAAC,CAAA;QACpC,OAAO,IAAI,CAAA;IACf,CAAC;CACJ;AAED,SAAS,UAAU,CAAE,KAAgB;IACjC,OAAO,CAAC,CAAC,QAAQ,CAAC,KAAK,EAAE,WAAW,CAAC,CAAA;AACzC,CAAC;AAED;;;;GAIG;AACH,SAAS,aAAa,CAAE,KAAgB;IACpC,OAAO,CAAC,CAAC,QAAQ,CAAC,KAAK,EAAE,WAAW,CAAC,CAAA;AACzC,CAAC;AAED,SAAS,UAAU,CAAE,GAAU;IAC3B,wEAAwE;IACxE,OAAO,CAAC,CAAC,UAAU,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,EAAE,QAAQ,CAAC,CAAA;AAC5E,CAAC;AAED,SAAS,UAAU,CACf,OAA+B;IAE/B,IAAI,MAAM,CAAA;IACV,IAAI,OAAO,YAAY,UAAU,EAAE,CAAC;QAChC,MAAM,GAAG,cAAc,CAAC,OAAO,CAAC,CAAA;IACpC,CAAC;SAAM,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;QACrC,MAAM,GAAG,UAAU,CAAC,OAAO,CAAC,CAAA;IAChC,CAAC;SAAM,IAAI,OAAO,IAAI,IAAI,EAAE,CAAC;QACzB,MAAM,GAAG,SAAS,CAAC,eAAe,CAAC,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC,CAAA;IAC1D,CAAC;SAAM,CAAC;QACJ,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAA;IAC7D,CAAC;IAED,IAAI,MAAM,CAAC,UAAU,KAAK,EAAE,EAAE,CAAC;QAC3B,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAA;IAC3D,CAAC;IAED,OAAO,MAAM,CAAA;AACjB,CAAC"}
+{"version":3,"file":"keychain.js","sourceRoot":"","sources":["../../src/keychain.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,iCAAiC,CAAA;AAC3D,OAAO,KAAK,CAAC,MAAM,aAAa,CAAA;AAChC,OAAO,EACH,aAAa,EACb,kBAAkB,EAClB,iBAAiB,EACjB,aAAa,EACb,MAAM,IAAI,SAAS,EACnB,aAAa,IAAI,gBAAgB,EACjC,UAAU,EACV,WAAW,GACd,MAAM,UAAU,CAAA;AACjB,OAAO,EAAE,SAAS,EAAE,QAAQ,EAAE,cAAc,EAAE,MAAM,WAAW,CAAA;AAE/D,OAAO,EAAE,aAAa,EAAE,aAAa,EAAE,MAAM,UAAU,CAAA;AAEvD,MAAM,SAAS,GAAG,EAAE,CAAA;AACpB,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAA;AAEjC,MAAM,OAAO,QAAQ;IACjB,GAAG,CAAwB;IAC3B,IAAI,CAAwB;IAC5B,cAAc,CAAmB;IACjC,cAAc,CAAmB;IACjC,gBAAgB,CAAoB;IAEpC,YAAa,GAAsB,EAAE,IAAuB;QACxD,IAAI,CAAC,GAAG,GAAG,UAAU,CAAC,GAAG,CAAC,CAAA;QAC1B,IAAI,CAAC,IAAI,GAAG,UAAU,CAAC,IAAI,CAAC,CAAA;QAE5B,IAAI,CAAC,cAAc,GAAG,SAAS,CAAC,MAAM,CAAC,SAAS,CAC5C,KAAK,EACL,IAAI,CAAC,GAAG,EACR,MAAM,EACN,KAAK,EACL,CAAC,YAAY,EAAE,WAAW,CAAC,CAC9B,CAAA;QAED,IAAI,CAAC,cAAc,GAAG,IAAI,CAAC,cAAc;aACpC,IAAI,CAAC,OAAO,CAAC,EAAE,CACZ,SAAS,CAAC,MAAM,CAAC,SAAS,CACtB;YACI,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,IAAI,EAAE,OAAO,CAAC,MAAM,CAAC,UAAU,CAAC;SACnC,EACD,OAAO,EACP;YACI,IAAI,EAAE,SAAS;YACf,MAAM,EAAE,GAAG;SACd,EACD,KAAK,EACL,CAAC,SAAS,EAAE,SAAS,CAAC,CACzB,CACJ,CAAA;QAEL,IAAI,CAAC,gBAAgB,GAAG,IAAI,CAAC,cAAc;aACtC,IAAI,CAAC,OAAO,CAAC,EAAE,CACZ,SAAS,CAAC,MAAM,CAAC,UAAU,CACvB;YACI,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,IAAI,EAAE,OAAO,CAAC,MAAM,CAAC,gBAAgB,CAAC;SACzC,EACD,OAAO,EACP,GAAG,CACN,CACJ;aACA,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC,IAAI,UAAU,CAAC,YAAY,CAAC,CAAC,CAAA;IAC3D,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,KAAK,CAAC,UAAU,CAAE,SAAgB,EAAE,IAAsB;QAC7D,MAAM,GAAG,GAAG,UAAU,CAAC,SAAS,CAAC,CAAA;QACjC,MAAM,OAAO,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,SAAS,CAC5C,KAAK,EACL,GAAG,EACH,MAAM,EACN,KAAK,EACL,CAAC,YAAY,EAAE,WAAW,CAAC,CAC9B,CAAA;QAED,MAAM,KAAK,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,UAAU,CAC3C;YACI,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,UAAU,CAAC,IAAI,CAAC;YACtB,IAAI,EAAE,OAAO,CAAC,MAAM,CAAC,gBAAgB,CAAC;SACzC,EACD,OAAO,EACP,GAAG,CACN,CAAA;QAED,OAAO,QAAQ,CAAC,MAAM,CAAC,UAAU,CAAC,IAAI,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAA;IAC7D,CAAC;IAED,MAAM,CAAC,MAAM,CAAE,UAAiB;QAC5B,OAAO,kBAAkB,UAAU,EAAE,CAAA;IACzC,CAAC;IAED;;OAEG;IACH,IAAI,MAAM;QACN,OAAO,aAAa,CAAC,IAAI,CAAC,GAAG,CAAC,CAAA;IAClC,CAAC;IAED;;OAEG;IACH,IAAI,OAAO;QACP,OAAO,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAChC,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,SAAS;QACX,OAAO,MAAM,IAAI,CAAC,gBAAgB,CAAA;IACtC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,YAAY;QACd,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAA;QACxC,OAAO,UAAU,CAAC,SAAS,CAAC,CAAA;IAChC,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,UAAU,CAAE,WAAmB;QACjC,IAAI,WAAW,EAAE,CAAC;YACd,OAAO,kBAAkB,WAAW,EAAE,CAAA;QAC1C,CAAC;QACD,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,YAAY,EAAE,CAAA;QAC9C,OAAO,kBAAkB,YAAY,EAAE,CAAA;IAC3C,CAAC;IAED;;;OAGG;IACH,YAAY,CAAE,SAA4B;QACtC,IAAI,CAAC,gBAAgB,GAAG,OAAO,CAAC,OAAO,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC,CAAA;IAClE,CAAC;IAED;;;;;;;;;;;;;;;OAeG;IACH,KAAK,CAAC,aAAa,CACf,OAAkD;QAElD,IAAI,KAAgB,CAAA;QACpB,IAAI,OAAO,YAAY,UAAU,EAAE,CAAC;YAChC,KAAK,GAAG,OAAO,CAAA;QACnB,CAAC;aAAM,IAAI,OAAO,YAAY,cAAc,EAAE,CAAC;YAC3C,KAAK,GAAG,IAAI,UAAU,CAAC,MAAM,IAAI,QAAQ,CAAC,OAAO,CAAC,CAAC,WAAW,EAAE,CAAC,CAAA;QACrE,CAAC;aAAM,IAAI,OAAO,IAAI,KAAK,WAAW,IAAI,OAAO,YAAY,IAAI,EAAE,CAAC;YAChE,KAAK,GAAG,IAAI,UAAU,CAAC,MAAM,OAAO,CAAC,WAAW,EAAE,CAAC,CAAA;QACvD,CAAC;aAAM,CAAC;YACJ,MAAM,IAAI,SAAS,CACf,uDAAuD,CAC1D,CAAA;QACL,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,MAAM,CACxC,SAAS,EACT,cAAc,CAAC,KAAK,CAAC,CACxB,CAAA;QACD,OAAO,IAAI,UAAU,CAAC,MAAM,CAAC,CAAA;IACjC,CAAC;IAED;;;;;;;;;;;;;;;;OAgBG;IACH,KAAK,CAAC,aAAa,CACf,MAAiC,EACjC,IAGC;QAED,IAAI,CAAC,CAAC,MAAM,YAAY,cAAc,CAAC,EAAE,CAAC;YACtC,MAAM,IAAI,SAAS,CAAC,+BAA+B,CAAC,CAAA;QACxD,CAAC;QACD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,cAAc,CAAA;QACzC,MAAM,EAAE,GAAG,IAAI,EAAE,UAAU,IAAI,WAAW,CAAA;QAE1C,IAAI,IAAI,EAAE,aAAa,EAAE,CAAC;YACtB,MAAM,IAAI,GAAG,MAAM,iBAAiB,CAAC,OAAO,EAAE,IAAI,CAAC,aAAa,CAAC,CAAA;YACjE,OAAO,aAAa,CAAC,MAAM,EAAE,OAAO,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;QACnD,CAAC;QAED,OAAO,aAAa,CAAC,MAAM,EAAE,OAAO,EAAE,EAAE,CAAC,CAAA;IAC7C,CAAC;IAED;;;;;;;;;OASG;IACH,KAAK,CAAC,MAAM,CACR,IAAmD;QAEnD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,cAAc,CAAA;QACzC,MAAM,IAAI,GAAG,MAAM,iBAAiB,CAAC,OAAO,EAAE,IAAI,CAAC,aAAa,CAAC,CAAA;QACjE,OAAO,SAAS,CAAC,IAAI,EAAE,IAAI,CAAC,UAAU,IAAI,WAAW,CAAC,CAAA;IAC1D,CAAC;IAED;;;;;;;;;;;;;;OAcG;IACH,KAAK,CAAC,aAAa,CACf,GAAU,EACV,SAAoB,EACpB,IAIC;QAED,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,cAAc,CAAA;QACzC,MAAM,IAAI,GAAG,MAAM,iBAAiB,CAChC,OAAO,EACP,IAAI,CAAC,aAAa,CACrB,CAAA;QACD,OAAO,gBAAgB,CACnB,OAAO,EACP,GAAG,EACH,SAAS,EACT,IAAI,CAAC,MAAM,EACX,IAAI,EACJ,IAAI,CAAC,UAAU,IAAI,WAAW,CACjC,CAAA;IACL,CAAC;IAED;;;;;;;;;;;OAWG;IACH,KAAK,CAAC,YAAY,CACd,KAA4B,EAC5B,IAAsC;QAEtC,MAAM,EAAE,GAAG,IAAI,EAAE,EAAE,IAAI,SAAS,CAAC,EAAE,CAAC,CAAA;QACpC,MAAM,kBAAkB,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,OAAO,CACrD;YACI,IAAI,EAAE,SAAS;YACf,EAAE,EAAE,cAAc,CAAC,EAAE,CAAC;SACzB,EACD,MAAM,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,IAAI,CAAC,EAClC,cAAc,CAAC,KAAK,CAAC,CACxB,CAAA;QAED,OAAO,QAAQ,CAAC,EAAE,EAAE,kBAAkB,CAAC,CAAA;IAC3C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,YAAY,CACd,KAAgB;QAEhB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACpC,0CAA0C;QAC1C,MAAM,EAAE,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAA;QAC7B,MAAM,WAAW,GAAG,KAAK,CAAC,KAAK,CAAC,EAAE,CAAC,CAAA;QACnC,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,OAAO,CAAC;YAC1C,IAAI,EAAE,SAAS;YACf,EAAE;SACL,EAAE,GAAG,EAAE,WAAW,CAAC,CAAA;QAEpB,OAAO,MAAM,CAAA;IACjB,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,WAAW,CAAE,SAAiB;QAChC,MAAM,OAAO,GAAG,CAAC,SAAS,IAAI,UAAU,CAAC,GAAG,CAAC,CAAA;QAE7C,OAAO,SAAS,CAAC,MAAM,CAAC,SAAS,CAC7B;YACI,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,IAAI,CAAC,IAAK;YAChB,IAAI,EAAE,OAAO,CAAC,MAAM,CAAC,+BAA+B,CAAC;SACxD,EACD,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,EAC3B;YACI,IAAI,EAAE,SAAS;YACf,MAAM,EAAE,OAAO;SAClB,EACD,KAAK,EACL,CAAC,SAAS,EAAE,SAAS,CAAC,CACzB,CAAA;IACL,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,aAAa,CACf,eAA0C;QAE1C,IAAI,CAAC,CAAC,eAAe,YAAY,cAAc,CAAC,EAAE,CAAC;YAC/C,MAAM,IAAI,SAAS,CAAC,yCAAyC,CAAC,CAAA;QAClE,CAAC;QACD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,cAAc,CAAA;QACzC,OAAO,aAAa,CAAC,eAAe,EAAE,OAAO,CAAC,CAAA;IAClD,CAAC;IAED;;;;;;;;;;OAUG;IACH,KAAK,CAAC,kBAAkB,CACpB,MAAa,EACb,MAAa,EACb,oBAA2B;QAK3B,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC;YAC5B,MAAM,IAAI,SAAS,CAAC,QAAQ,CAAC,CAAA;QACjC,CAAC;QACD,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC;YAC5B,MAAM,IAAI,SAAS,CAAC,QAAQ,CAAC,CAAA;QACjC,CAAC;QACD,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,oBAAoB,CAAC,EAAE,CAAC;YAC1C,MAAM,IAAI,SAAS,CAAC,sBAAsB,CAAC,CAAA;QAC/C,CAAC;QAED,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,cAAc,CAAA;QACzC,OAAO,kBAAkB,CAAC,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,oBAAoB,CAAC,CAAA;IAC5E,CAAC;IAED,KAAK,CAAC,WAAW,CAAE,IAAe;QAC9B,IAAI,CAAC,CAAC,IAAI,YAAY,UAAU,CAAC,EAAE,CAAC;YAChC,MAAM,IAAI,SAAS,CAAC,6BAA6B,CAAC,CAAA;QACtD,CAAC;QAED,MAAM,EAAE,GAAG,SAAS,CAAC,eAAe,CAAC,IAAI,UAAU,CAAC,SAAS,CAAC,CAAC,CAAA;QAC/D,MAAM,OAAO,GAAa,MAAM,IAAI,CAAC,cAAc,CAAA;QAEnD,MAAM,gBAAgB,GAAe,MAAM,SAAS,CAAC,MAAM,CAAC,OAAO,CAC/D;YACI,IAAI,EAAE,SAAS;YACf,EAAE;YACF,SAAS,EAAE,GAAG;SACjB,EACD,OAAO,EACP,cAAc,CAAC,IAAI,CAAC,CACvB,CAAA;QAED,MAAM,aAAa,GAAG,IAAI,UAAU,CAAC,gBAAgB,CAAC,CAAA;QAEtD,MAAM,eAAe,GAAG,IAAI,UAAU,CAAC,SAAS,GAAG,aAAa,CAAC,UAAU,CAAC,CAAA;QAC5E,eAAe,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC,CAAC,CAAA;QAC1B,eAAe,CAAC,GAAG,CAAC,aAAa,EAAE,SAAS,CAAC,CAAA;QAE7C,OAAO,eAAe,CAAA;IAC1B,CAAC;IAED,KAAK,CAAC,WAAW,CAAE,eAA0B;QACzC,IAAI,CAAC,CAAC,eAAe,YAAY,UAAU,CAAC,EAAE,CAAC;YAC3C,MAAM,IAAI,KAAK,CAAC,iBAAiB,CAAC,CAAA;QACtC,CAAC;QAED,MAAM,EAAE,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC,EAAE,SAAS,CAAC,CAAA;QAC9C,MAAM,aAAa,GAAG,eAAe,CAAC,KAAK,CAAC,SAAS,CAAC,CAAA;QAEtD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,cAAc,CAAA;QACzC,MAAM,OAAO,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,OAAO,CAC1C;YACI,IAAI,EAAE,SAAS;YACf,EAAE;YACF,SAAS,EAAE,GAAG;SACjB,EACD,OAAO,EACP,aAAa,CAChB,CAAA;QACD,MAAM,IAAI,GAAG,IAAI,UAAU,CAAC,OAAO,CAAC,CAAA;QACpC,OAAO,IAAI,CAAA;IACf,CAAC;CACJ;AAED,SAAS,UAAU,CAAE,KAAgB;IACjC,OAAO,CAAC,CAAC,QAAQ,CAAC,KAAK,EAAE,WAAW,CAAC,CAAA;AACzC,CAAC;AAED;;;;GAIG;AACH,SAAS,aAAa,CAAE,KAAgB;IACpC,OAAO,CAAC,CAAC,QAAQ,CAAC,KAAK,EAAE,WAAW,CAAC,CAAA;AACzC,CAAC;AAED,SAAS,UAAU,CAAE,GAAU;IAC3B,wEAAwE;IACxE,OAAO,CAAC,CAAC,UAAU,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,EAAE,QAAQ,CAAC,CAAA;AAC5E,CAAC;AAED,SAAS,UAAU,CACf,OAA+B;IAE/B,IAAI,MAAM,CAAA;IACV,IAAI,OAAO,YAAY,UAAU,EAAE,CAAC;QAChC,MAAM,GAAG,cAAc,CAAC,OAAO,CAAC,CAAA;IACpC,CAAC;SAAM,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;QACrC,MAAM,GAAG,UAAU,CAAC,OAAO,CAAC,CAAA;IAChC,CAAC;SAAM,IAAI,OAAO,IAAI,IAAI,EAAE,CAAC;QACzB,MAAM,GAAG,SAAS,CAAC,eAAe,CAAC,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC,CAAA;IAC1D,CAAC;SAAM,CAAC;QACJ,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAA;IAC7D,CAAC;IAED,IAAI,MAAM,CAAC,UAAU,KAAK,EAAE,EAAE,CAAC;QAC3B,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAA;IAC3D,CAAC;IAED,OAAO,MAAM,CAAA;AACjB,CAAC"}

package/package.json

@@ -2,7 +2,7 @@
   "name": "@substrate-system/crypto-stream",
   "description": "Streaming encryption for the browser",
   "type": "module",
-  "version": "0.0.34",
+  "version": "0.1.0",
   "main": "dist/index.js",
   "files": [
     "./dist/*"