@tgoliveira/vault-core 0.1.0

package/dist/envelopes/passkey-prf.js

@@ -0,0 +1,78 @@
+import { PasskeyPrfRequiredError, PasskeyUnlockError } from "../errors/vault-errors.js";
+import { encryptField, decryptField, exportAesKey, importAesKey } from "../crypto/aes-gcm.js";
+import { bytesToBase64Url, base64UrlToBytes, toBufferSource } from "../crypto/encoding.js";
+export function isPasskeySupported() {
+    return typeof globalThis !== "undefined" &&
+        typeof globalThis.PublicKeyCredential !== "undefined";
+}
+export function isPrfExtensionSupported() {
+    if (!isPasskeySupported())
+        return false;
+    return typeof PublicKeyCredential !== "undefined" &&
+        "getClientExtensionResults" in PublicKeyCredential.prototype;
+}
+export function extractPasskeyPrfOutput(clientExtensionResults) {
+    const prf = clientExtensionResults.prf;
+    const first = prf?.results?.first;
+    if (!first || first.byteLength < 32)
+        return null;
+    return new Uint8Array(first);
+}
+async function importPrfAsAesKey(prfOutput) {
+    const keyBytes = prfOutput.byteLength === 32 ? prfOutput : prfOutput.slice(0, 32);
+    return crypto.subtle.importKey("raw", toBufferSource(keyBytes), { name: "AES-GCM", length: 256 }, false, ["encrypt", "decrypt"]);
+}
+export async function createPasskeyPrfEnvelope(vaultKey, prfOutput, scope, profile, publicMetadata) {
+    if (prfOutput.byteLength < 32) {
+        throw new Error("PRF output must be at least 32 bytes");
+    }
+    const prfKey = await importPrfAsAesKey(prfOutput);
+    const encryptedVaultKey = await encryptField(bytesToBase64Url(await exportAesKey(vaultKey)), prfKey, {
+        userId: scope.userId,
+        resourceId: scope.resourceId,
+        field: "vault_key",
+    }, profile);
+    return {
+        method: "passkey_prf",
+        encryptedVaultKey,
+        kdfMetadata: null,
+        publicMetadata,
+    };
+}
+export async function unwrapVaultKeyFromPasskey(encryptedVaultKey, prfOutput) {
+    if (prfOutput.byteLength < 32) {
+        throw new Error("PRF output must be at least 32 bytes");
+    }
+    const prfKey = await importPrfAsAesKey(prfOutput);
+    const keyBytes = base64UrlToBytes(await decryptField(encryptedVaultKey, prfKey));
+    return importAesKey(keyBytes);
+}
+export async function unlockWithPasskeyPrfEnvelope(envelope, prfOutput, options) {
+    const prfRequired = options?.prfRequired ?? true;
+    if (prfRequired && !prfOutput) {
+        throw new PasskeyPrfRequiredError("This passkey requires browser PRF support to unlock your vault. Use your vault password or recovery phrase.");
+    }
+    if (!prfOutput) {
+        throw new PasskeyUnlockError("Could not unlock your vault with this passkey. Use your vault password or recovery phrase.");
+    }
+    try {
+        return await unwrapVaultKeyFromPasskey(envelope.encryptedVaultKey, prfOutput);
+    }
+    catch {
+        throw new PasskeyUnlockError("Could not decrypt your vault with this passkey. Use your vault password or recovery phrase.");
+    }
+}
+/** @deprecated Use unlockWithPasskeyPrfEnvelope */
+export async function unlockVaultFromPasskeyEnvelope(encryptedVaultKeyOrEnvelope, prfOutput, options) {
+    const envelope = "method" in encryptedVaultKeyOrEnvelope
+        ? encryptedVaultKeyOrEnvelope
+        : { encryptedVaultKey: encryptedVaultKeyOrEnvelope, method: "passkey_prf", kdfMetadata: null };
+    return unlockWithPasskeyPrfEnvelope(envelope, prfOutput, options);
+}
+/** @deprecated Use createPasskeyPrfEnvelope */
+export async function wrapVaultKeyForPasskey(vaultKey, prfOutput, userId, resourceId, profile, publicMetadata) {
+    const envelope = await createPasskeyPrfEnvelope(vaultKey, prfOutput, { userId, resourceId }, profile, publicMetadata);
+    return envelope.encryptedVaultKey;
+}
+export { PasskeyPrfRequiredError, PasskeyUnlockError } from "../errors/vault-errors.js";
+//# sourceMappingURL=passkey-prf.js.map

package/dist/envelopes/passkey-prf.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"passkey-prf.js","sourceRoot":"","sources":["../../src/envelopes/passkey-prf.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,uBAAuB,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AACxF,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AAC9F,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAU3F,MAAM,UAAU,kBAAkB;IAChC,OAAO,OAAO,UAAU,KAAK,WAAW;QACtC,OAAO,UAAU,CAAC,mBAAmB,KAAK,WAAW,CAAC;AAC1D,CAAC;AAED,MAAM,UAAU,uBAAuB;IACrC,IAAI,CAAC,kBAAkB,EAAE;QAAE,OAAO,KAAK,CAAC;IACxC,OAAO,OAAO,mBAAmB,KAAK,WAAW;QAC/C,2BAA2B,IAAI,mBAAmB,CAAC,SAAS,CAAC;AACjE,CAAC;AAED,MAAM,UAAU,uBAAuB,CACrC,sBAA+C;IAE/C,MAAM,GAAG,GAAI,sBAAoD,CAAC,GAAG,CAAC;IACtE,MAAM,KAAK,GAAG,GAAG,EAAE,OAAO,EAAE,KAAK,CAAC;IAClC,IAAI,CAAC,KAAK,IAAI,KAAK,CAAC,UAAU,GAAG,EAAE;QAAE,OAAO,IAAI,CAAC;IACjD,OAAO,IAAI,UAAU,CAAC,KAAK,CAAC,CAAC;AAC/B,CAAC;AAED,KAAK,UAAU,iBAAiB,CAAC,SAAqB;IACpD,MAAM,QAAQ,GAAG,SAAS,CAAC,UAAU,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IAClF,OAAO,MAAM,CAAC,MAAM,CAAC,SAAS,CAC5B,KAAK,EACL,cAAc,CAAC,QAAQ,CAAC,EACxB,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,GAAG,EAAE,EAChC,KAAK,EACL,CAAC,SAAS,EAAE,SAAS,CAAC,CACvB,CAAC;AACJ,CAAC;AAID,MAAM,CAAC,KAAK,UAAU,wBAAwB,CAC5C,QAAmB,EACnB,SAAqB,EACrB,KAAgB,EAChB,OAA2B,EAC3B,cAAwC;IAExC,IAAI,SAAS,CAAC,UAAU,GAAG,EAAE,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;IAC1D,CAAC;IACD,MAAM,MAAM,GAAG,MAAM,iBAAiB,CAAC,SAAS,CAAC,CAAC;IAClD,MAAM,iBAAiB,GAAG,MAAM,YAAY,CAC1C,gBAAgB,CAAC,MAAM,YAAY,CAAC,QAAQ,CAAC,CAAC,EAC9C,MAAM,EACN;QACE,MAAM,EAAE,KAAK,CAAC,MAAM;QACpB,UAAU,EAAE,KAAK,CAAC,UAAU;QAC5B,KAAK,EAAE,WAAW;KACnB,EACD,OAAO,CACR,CAAC;IACF,OAAO;QACL,MAAM,EAAE,aAAa;QACrB,iBAAiB;QACjB,WAAW,EAAE,IAAI;QACjB,cAAc;KACf,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,yBAAyB,CAC7C,iBAAwC,EACxC,SAAqB;IAErB,IAAI,SAAS,CAAC,UAAU,GAAG,EAAE,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;IAC1D,CAAC;IACD,MAAM,MAAM,GAAG,MAAM,iBAAiB,CAAC,SAAS,CAAC,CAAC;IAClD,MAAM,QAAQ,GAAG,gBAAgB,CAAC,MAAM,YAAY,CAAC,iBAAiB,EAAE,MAAM,CAAC,CAAC,CAAC;IACjF,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC;AAChC,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,4BAA4B,CAChD,QAA2E,EAC3E,SAA4B,EAC5B,OAAmC;IAEnC,MAAM,WAAW,GAAG,OAAO,EAAE,WAAW,IAAI,IAAI,CAAC;IAEjD,IAAI,WAAW,IAAI,CAAC,SAAS,EAAE,CAAC;QAC9B,MAAM,IAAI,uBAAuB,CAC/B,6GAA6G,CAC9G,CAAC;IACJ,CAAC;IAED,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,IAAI,kBAAkB,CAC1B,4FAA4F,CAC7F,CAAC;IACJ,CAAC;IAED,IAAI,CAAC;QACH,OAAO,MAAM,yBAAyB,CAAC,QAAQ,CAAC,iBAAiB,EAAE,SAAS,CAAC,CAAC;IAChF,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,kBAAkB,CAC1B,6FAA6F,CAC9F,CAAC;IACJ,CAAC;AACH,CAAC;AAED,mDAAmD;AACnD,MAAM,CAAC,KAAK,UAAU,8BAA8B,CAClD,2BAAuE,EACvE,SAA4B,EAC5B,OAAmC;IAEnC,MAAM,QAAQ,GACZ,QAAQ,IAAI,2BAA2B;QACrC,CAAC,CAAC,2BAA2B;QAC7B,CAAC,CAAC,EAAE,iBAAiB,EAAE,2BAA2B,EAAE,MAAM,EAAE,aAAsB,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC;IAC5G,OAAO,4BAA4B,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC,CAAC;AACpE,CAAC;AAED,+CAA+C;AAC/C,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,QAAmB,EACnB,SAAqB,EACrB,MAAc,EACd,UAAkB,EAClB,OAA2B,EAC3B,cAAwC;IAExC,MAAM,QAAQ,GAAG,MAAM,wBAAwB,CAC7C,QAAQ,EACR,SAAS,EACT,EAAE,MAAM,EAAE,UAAU,EAAE,EACtB,OAAO,EACP,cAAc,CACf,CAAC;IACF,OAAO,QAAQ,CAAC,iBAAiB,CAAC;AACpC,CAAC;AAED,OAAO,EAAE,uBAAuB,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC"}

package/dist/envelopes/password.d.ts

@@ -0,0 +1,20 @@
+import type { Argon2idKdfMetadata, EncryptedVaultPayload, KdfMetadata, PasswordEnvelope } from "../validation/schemas.js";
+import type { VaultCryptoProfile, VaultAadScope } from "../profile.js";
+type WrapScope = Pick<VaultAadScope, "userId" | "resourceId">;
+export declare function createPasswordEnvelope(vaultKey: CryptoKey, vaultPassword: string, scope: WrapScope, profile: VaultCryptoProfile, salt?: Uint8Array): Promise<{
+    envelope: PasswordEnvelope;
+    kdfMetadata: Argon2idKdfMetadata;
+}>;
+export declare function unlockWithPasswordEnvelope(vaultPassword: string, envelope: PasswordEnvelope | {
+    encryptedVaultKey: EncryptedVaultPayload;
+    kdfMetadata: KdfMetadata;
+}): Promise<CryptoKey>;
+/** @deprecated Use createPasswordEnvelope */
+export declare function wrapVaultKeyForPassword(vaultKey: CryptoKey, vaultPassword: string, scope: WrapScope, profile: VaultCryptoProfile, salt?: Uint8Array): Promise<{
+    encryptedVaultKey: EncryptedVaultPayload;
+    kdfMetadata: Argon2idKdfMetadata;
+}>;
+/** @deprecated Use unlockWithPasswordEnvelope */
+export declare const unwrapVaultKeyFromPassword: typeof unlockWithPasswordEnvelope;
+export {};
+//# sourceMappingURL=password.d.ts.map

package/dist/envelopes/password.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"password.d.ts","sourceRoot":"","sources":["../../src/envelopes/password.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,mBAAmB,EACnB,qBAAqB,EACrB,WAAW,EACX,gBAAgB,EACjB,MAAM,0BAA0B,CAAC;AAClC,OAAO,KAAK,EAAE,kBAAkB,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAQvE,KAAK,SAAS,GAAG,IAAI,CAAC,aAAa,EAAE,QAAQ,GAAG,YAAY,CAAC,CAAC;AAuB9D,wBAAsB,sBAAsB,CAC1C,QAAQ,EAAE,SAAS,EACnB,aAAa,EAAE,MAAM,EACrB,KAAK,EAAE,SAAS,EAChB,OAAO,EAAE,kBAAkB,EAC3B,IAAI,CAAC,EAAE,UAAU,GAChB,OAAO,CAAC;IAAE,QAAQ,EAAE,gBAAgB,CAAC;IAAC,WAAW,EAAE,mBAAmB,CAAA;CAAE,CAAC,CAW3E;AAED,wBAAsB,0BAA0B,CAC9C,aAAa,EAAE,MAAM,EACrB,QAAQ,EAAE,gBAAgB,GAAG;IAAE,iBAAiB,EAAE,qBAAqB,CAAC;IAAC,WAAW,EAAE,WAAW,CAAA;CAAE,GAClG,OAAO,CAAC,SAAS,CAAC,CAMpB;AAED,6CAA6C;AAC7C,wBAAsB,uBAAuB,CAC3C,QAAQ,EAAE,SAAS,EACnB,aAAa,EAAE,MAAM,EACrB,KAAK,EAAE,SAAS,EAChB,OAAO,EAAE,kBAAkB,EAC3B,IAAI,CAAC,EAAE,UAAU,GAChB,OAAO,CAAC;IAAE,iBAAiB,EAAE,qBAAqB,CAAC;IAAC,WAAW,EAAE,mBAAmB,CAAA;CAAE,CAAC,CASzF;AAED,iDAAiD;AACjD,eAAO,MAAM,0BAA0B,mCAA6B,CAAC"}

package/dist/envelopes/password.js

@@ -0,0 +1,41 @@
+import { encryptField, decryptField, exportAesKey, importAesKey } from "../crypto/aes-gcm.js";
+import { bytesToBase64Url, base64UrlToBytes } from "../crypto/encoding.js";
+import { deriveVaultPasswordKey, deriveVaultPasswordKeyFromMetadata, } from "../kdf/argon2id.js";
+async function wrapVaultKeyWithDerivedKey(vaultKey, derivedKey, scope, profile) {
+    return encryptField(bytesToBase64Url(await exportAesKey(vaultKey)), derivedKey, {
+        userId: scope.userId,
+        resourceId: scope.resourceId,
+        field: "vault_key",
+    }, profile);
+}
+async function unwrapVaultKeyWithDerivedKey(encryptedVaultKey, derivedKey) {
+    const keyBytes = base64UrlToBytes(await decryptField(encryptedVaultKey, derivedKey));
+    return importAesKey(keyBytes);
+}
+export async function createPasswordEnvelope(vaultKey, vaultPassword, scope, profile, salt) {
+    const { key: derivedKey, metadata } = await deriveVaultPasswordKey(vaultPassword, salt);
+    const encryptedVaultKey = await wrapVaultKeyWithDerivedKey(vaultKey, derivedKey, scope, profile);
+    return {
+        envelope: {
+            method: "password",
+            encryptedVaultKey,
+            kdfMetadata: metadata,
+        },
+        kdfMetadata: metadata,
+    };
+}
+export async function unlockWithPasswordEnvelope(vaultPassword, envelope) {
+    if (envelope.kdfMetadata?.kdf !== "argon2id") {
+        throw new Error("Vault password envelope requires Argon2id metadata");
+    }
+    const derivedKey = await deriveVaultPasswordKeyFromMetadata(vaultPassword, envelope.kdfMetadata);
+    return unwrapVaultKeyWithDerivedKey(envelope.encryptedVaultKey, derivedKey);
+}
+/** @deprecated Use createPasswordEnvelope */
+export async function wrapVaultKeyForPassword(vaultKey, vaultPassword, scope, profile, salt) {
+    const { envelope, kdfMetadata } = await createPasswordEnvelope(vaultKey, vaultPassword, scope, profile, salt);
+    return { encryptedVaultKey: envelope.encryptedVaultKey, kdfMetadata };
+}
+/** @deprecated Use unlockWithPasswordEnvelope */
+export const unwrapVaultKeyFromPassword = unlockWithPasswordEnvelope;
+//# sourceMappingURL=password.js.map

package/dist/envelopes/password.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"password.js","sourceRoot":"","sources":["../../src/envelopes/password.ts"],"names":[],"mappings":"AAOA,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AAC9F,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,uBAAuB,CAAC;AAC3E,OAAO,EACL,sBAAsB,EACtB,kCAAkC,GACnC,MAAM,oBAAoB,CAAC;AAI5B,KAAK,UAAU,0BAA0B,CACvC,QAAmB,EACnB,UAAqB,EACrB,KAAgB,EAChB,OAA2B;IAE3B,OAAO,YAAY,CAAC,gBAAgB,CAAC,MAAM,YAAY,CAAC,QAAQ,CAAC,CAAC,EAAE,UAAU,EAAE;QAC9E,MAAM,EAAE,KAAK,CAAC,MAAM;QACpB,UAAU,EAAE,KAAK,CAAC,UAAU;QAC5B,KAAK,EAAE,WAAW;KACnB,EAAE,OAAO,CAAC,CAAC;AACd,CAAC;AAED,KAAK,UAAU,4BAA4B,CACzC,iBAAwC,EACxC,UAAqB;IAErB,MAAM,QAAQ,GAAG,gBAAgB,CAAC,MAAM,YAAY,CAAC,iBAAiB,EAAE,UAAU,CAAC,CAAC,CAAC;IACrF,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC;AAChC,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,QAAmB,EACnB,aAAqB,EACrB,KAAgB,EAChB,OAA2B,EAC3B,IAAiB;IAEjB,MAAM,EAAE,GAAG,EAAE,UAAU,EAAE,QAAQ,EAAE,GAAG,MAAM,sBAAsB,CAAC,aAAa,EAAE,IAAI,CAAC,CAAC;IACxF,MAAM,iBAAiB,GAAG,MAAM,0BAA0B,CAAC,QAAQ,EAAE,UAAU,EAAE,KAAK,EAAE,OAAO,CAAC,CAAC;IACjG,OAAO;QACL,QAAQ,EAAE;YACR,MAAM,EAAE,UAAU;YAClB,iBAAiB;YACjB,WAAW,EAAE,QAAQ;SACtB;QACD,WAAW,EAAE,QAAQ;KACtB,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,0BAA0B,CAC9C,aAAqB,EACrB,QAAmG;IAEnG,IAAI,QAAQ,CAAC,WAAW,EAAE,GAAG,KAAK,UAAU,EAAE,CAAC;QAC7C,MAAM,IAAI,KAAK,CAAC,oDAAoD,CAAC,CAAC;IACxE,CAAC;IACD,MAAM,UAAU,GAAG,MAAM,kCAAkC,CAAC,aAAa,EAAE,QAAQ,CAAC,WAAW,CAAC,CAAC;IACjG,OAAO,4BAA4B,CAAC,QAAQ,CAAC,iBAAiB,EAAE,UAAU,CAAC,CAAC;AAC9E,CAAC;AAED,6CAA6C;AAC7C,MAAM,CAAC,KAAK,UAAU,uBAAuB,CAC3C,QAAmB,EACnB,aAAqB,EACrB,KAAgB,EAChB,OAA2B,EAC3B,IAAiB;IAEjB,MAAM,EAAE,QAAQ,EAAE,WAAW,EAAE,GAAG,MAAM,sBAAsB,CAC5D,QAAQ,EACR,aAAa,EACb,KAAK,EACL,OAAO,EACP,IAAI,CACL,CAAC;IACF,OAAO,EAAE,iBAAiB,EAAE,QAAQ,CAAC,iBAAiB,EAAE,WAAW,EAAE,CAAC;AACxE,CAAC;AAED,iDAAiD;AACjD,MAAM,CAAC,MAAM,0BAA0B,GAAG,0BAA0B,CAAC"}

package/dist/envelopes/recovery.d.ts

@@ -0,0 +1,46 @@
+import type { Argon2idKdfMetadata, EncryptedVaultPayload, KdfMetadata, RecoveryPhraseEnvelope } from "../validation/schemas.js";
+import type { RecoveryPhraseWordCount } from "../profile.js";
+import type { VaultCryptoProfile, VaultAadScope } from "../profile.js";
+export declare const RECOVERY_PHRASE_WORDLIST_SOURCE: "BIP39 English (BIP-0039)";
+export declare const DEFAULT_RECOVERY_PHRASE_WORD_COUNT: RecoveryPhraseWordCount;
+type WrapScope = Pick<VaultAadScope, "userId" | "resourceId">;
+export declare function createRecoveryPhrase(options: {
+    wordCount: RecoveryPhraseWordCount;
+}): string;
+/** @deprecated Use createRecoveryPhrase */
+export declare const generateRecoveryPhrase: typeof createRecoveryPhrase;
+export declare function getRecoveryPhraseWordCount(phrase: string): RecoveryPhraseWordCount | null;
+export declare function getRecoveryConfirmationPromptCount(wordCount: RecoveryPhraseWordCount): number;
+export declare function parseRecoveryPhraseWordCount(publicMetadata?: Record<string, unknown> | null): RecoveryPhraseWordCount | null;
+export declare function assertRecoveryPhraseUnlockInput(phrase: string, expectedWordCount?: RecoveryPhraseWordCount | null): void;
+export declare function normalizeRecoveryPhrase(phrase: string): string;
+export declare function validateRecoveryPhraseFormat(phrase: string): boolean;
+export declare function assertRecoveryPhraseConfirmation(originalPhrase: string, confirmationPhrase: string): void;
+export declare function pickRecoveryConfirmationIndices(wordCount: number, count?: number): number[];
+export declare function assertRecoveryPhraseWordConfirmation(originalPhrase: string, answers: Record<number, string>): void;
+export declare function deriveRecoveryPhraseKey(phrase: string, salt?: Uint8Array): Promise<{
+    key: CryptoKey;
+    metadata: Argon2idKdfMetadata;
+}>;
+export declare function deriveRecoveryPhraseKeyFromMetadata(phrase: string, metadata: Argon2idKdfMetadata): Promise<CryptoKey>;
+export declare function createRecoveryEnvelope(vaultKey: CryptoKey, recoveryPhrase: string, scope: WrapScope, profile: VaultCryptoProfile, publicMetadata?: {
+    phraseLength: RecoveryPhraseWordCount;
+}, salt?: Uint8Array): Promise<{
+    envelope: RecoveryPhraseEnvelope;
+    kdfMetadata: Argon2idKdfMetadata;
+}>;
+export declare function unlockWithRecoveryEnvelope(recoveryPhrase: string, envelope: RecoveryPhraseEnvelope | {
+    encryptedVaultKey: EncryptedVaultPayload;
+    kdfMetadata: KdfMetadata;
+}, options?: {
+    expectedWordCount?: RecoveryPhraseWordCount | null;
+}): Promise<CryptoKey>;
+/** @deprecated Use createRecoveryEnvelope */
+export declare function wrapVaultKeyForRecoveryPhrase(vaultKey: CryptoKey, recoveryPhrase: string, scope: WrapScope, profile: VaultCryptoProfile, salt?: Uint8Array): Promise<{
+    encryptedVaultKey: EncryptedVaultPayload;
+    kdfMetadata: Argon2idKdfMetadata;
+}>;
+/** @deprecated Use unlockWithRecoveryEnvelope */
+export declare const unwrapVaultKeyFromRecoveryPhrase: typeof unlockWithRecoveryEnvelope;
+export {};
+//# sourceMappingURL=recovery.d.ts.map

package/dist/envelopes/recovery.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"recovery.d.ts","sourceRoot":"","sources":["../../src/envelopes/recovery.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EACV,mBAAmB,EACnB,qBAAqB,EACrB,WAAW,EACX,sBAAsB,EACvB,MAAM,0BAA0B,CAAC;AAClC,OAAO,KAAK,EAAE,uBAAuB,EAAE,MAAM,eAAe,CAAC;AAC7D,OAAO,KAAK,EAAE,kBAAkB,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAWvE,eAAO,MAAM,+BAA+B,EAAG,0BAAmC,CAAC;AACnF,eAAO,MAAM,kCAAkC,EAAE,uBAA4B,CAAC;AAO9E,KAAK,SAAS,GAAG,IAAI,CAAC,aAAa,EAAE,QAAQ,GAAG,YAAY,CAAC,CAAC;AAE9D,wBAAgB,oBAAoB,CAAC,OAAO,EAAE;IAC5C,SAAS,EAAE,uBAAuB,CAAC;CACpC,GAAG,MAAM,CAMT;AAED,2CAA2C;AAC3C,eAAO,MAAM,sBAAsB,6BAAuB,CAAC;AAE3D,wBAAgB,0BAA0B,CAAC,MAAM,EAAE,MAAM,GAAG,uBAAuB,GAAG,IAAI,CAKzF;AAED,wBAAgB,kCAAkC,CAChD,SAAS,EAAE,uBAAuB,GACjC,MAAM,CAER;AAED,wBAAgB,4BAA4B,CAC1C,cAAc,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,GAC9C,uBAAuB,GAAG,IAAI,CAIhC;AAED,wBAAgB,+BAA+B,CAC7C,MAAM,EAAE,MAAM,EACd,iBAAiB,CAAC,EAAE,uBAAuB,GAAG,IAAI,GACjD,IAAI,CAYN;AAED,wBAAgB,uBAAuB,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAO9D;AAED,wBAAgB,4BAA4B,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAMpE;AAED,wBAAgB,gCAAgC,CAC9C,cAAc,EAAE,MAAM,EACtB,kBAAkB,EAAE,MAAM,GACzB,IAAI,CASN;AAED,wBAAgB,+BAA+B,CAC7C,SAAS,EAAE,MAAM,EACjB,KAAK,SAAI,GACR,MAAM,EAAE,CAcV;AAED,wBAAgB,oCAAoC,CAClD,cAAc,EAAE,MAAM,EACtB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAC9B,IAAI,CAgBN;AAED,wBAAsB,uBAAuB,CAC3C,MAAM,EAAE,MAAM,EACd,IAAI,CAAC,EAAE,UAAU,GAChB,OAAO,CAAC;IAAE,GAAG,EAAE,SAAS,CAAC;IAAC,QAAQ,EAAE,mBAAmB,CAAA;CAAE,CAAC,CAe5D;AAED,wBAAsB,mCAAmC,CACvD,MAAM,EAAE,MAAM,EACd,QAAQ,EAAE,mBAAmB,GAC5B,OAAO,CAAC,SAAS,CAAC,CAMpB;AAuBD,wBAAsB,sBAAsB,CAC1C,QAAQ,EAAE,SAAS,EACnB,cAAc,EAAE,MAAM,EACtB,KAAK,EAAE,SAAS,EAChB,OAAO,EAAE,kBAAkB,EAC3B,cAAc,CAAC,EAAE;IAAE,YAAY,EAAE,uBAAuB,CAAA;CAAE,EAC1D,IAAI,CAAC,EAAE,UAAU,GAChB,OAAO,CAAC;IAAE,QAAQ,EAAE,sBAAsB,CAAC;IAAC,WAAW,EAAE,mBAAmB,CAAA;CAAE,CAAC,CAYjF;AAED,wBAAsB,0BAA0B,CAC9C,cAAc,EAAE,MAAM,EACtB,QAAQ,EAAE,sBAAsB,GAAG;IAAE,iBAAiB,EAAE,qBAAqB,CAAC;IAAC,WAAW,EAAE,WAAW,CAAA;CAAE,EACzG,OAAO,CAAC,EAAE;IAAE,iBAAiB,CAAC,EAAE,uBAAuB,GAAG,IAAI,CAAA;CAAE,GAC/D,OAAO,CAAC,SAAS,CAAC,CASpB;AAED,6CAA6C;AAC7C,wBAAsB,6BAA6B,CACjD,QAAQ,EAAE,SAAS,EACnB,cAAc,EAAE,MAAM,EACtB,KAAK,EAAE,SAAS,EAChB,OAAO,EAAE,kBAAkB,EAC3B,IAAI,CAAC,EAAE,UAAU,GAChB,OAAO,CAAC;IAAE,iBAAiB,EAAE,qBAAqB,CAAC;IAAC,WAAW,EAAE,mBAAmB,CAAA;CAAE,CAAC,CAUzF;AAED,iDAAiD;AACjD,eAAO,MAAM,gCAAgC,mCAA6B,CAAC"}

package/dist/envelopes/recovery.js

@@ -0,0 +1,167 @@
+import { generateMnemonic, mnemonicToEntropy, validateMnemonic } from "@scure/bip39";
+import { wordlist } from "@scure/bip39/wordlists/english.js";
+import { stringToBytes, bytesToBase64Url, base64UrlToBytes } from "../crypto/encoding.js";
+import { deriveArgon2idAesKey, deriveArgon2idAesKeyFromMetadata, serializeArgon2idMetadata, } from "../kdf/argon2id.js";
+import { DEFAULT_ARGON2ID_PARAMS } from "../kdf/params.js";
+import { RecoveryPhraseConfirmationError } from "../errors/vault-errors.js";
+import { encryptField, decryptField, exportAesKey, importAesKey } from "../crypto/aes-gcm.js";
+export const RECOVERY_PHRASE_WORDLIST_SOURCE = "BIP39 English (BIP-0039)";
+export const DEFAULT_RECOVERY_PHRASE_WORD_COUNT = 24;
+const STRENGTH_BITS = {
+    12: 128,
+    24: 256,
+};
+export function createRecoveryPhrase(options) {
+    const { wordCount } = options;
+    if (wordCount !== 12 && wordCount !== 24) {
+        throw new Error("Recovery phrase word count must be 12 or 24");
+    }
+    return generateMnemonic(wordlist, STRENGTH_BITS[wordCount]);
+}
+/** @deprecated Use createRecoveryPhrase */
+export const generateRecoveryPhrase = createRecoveryPhrase;
+export function getRecoveryPhraseWordCount(phrase) {
+    const normalized = normalizeRecoveryPhrase(phrase);
+    const count = normalized.split(" ").filter(Boolean).length;
+    if (count === 12 || count === 24)
+        return count;
+    return null;
+}
+export function getRecoveryConfirmationPromptCount(wordCount) {
+    return wordCount === 12 ? 3 : 4;
+}
+export function parseRecoveryPhraseWordCount(publicMetadata) {
+    const raw = publicMetadata?.phraseLength ?? publicMetadata?.wordCount;
+    if (raw === 12 || raw === 24)
+        return raw;
+    return null;
+}
+export function assertRecoveryPhraseUnlockInput(phrase, expectedWordCount) {
+    const normalized = normalizeRecoveryPhrase(phrase);
+    if (!validateRecoveryPhraseFormat(normalized)) {
+        throw new Error("Enter a valid 12- or 24-word BIP39 recovery phrase.");
+    }
+    const actualCount = getRecoveryPhraseWordCount(normalized);
+    if (expectedWordCount != null && actualCount !== expectedWordCount) {
+        throw new Error(`This vault uses a ${expectedWordCount}-word recovery phrase. You entered ${actualCount ?? "an invalid number of"} words.`);
+    }
+}
+export function normalizeRecoveryPhrase(phrase) {
+    return phrase
+        .trim()
+        .toLowerCase()
+        .split(/\s+/)
+        .filter(Boolean)
+        .join(" ");
+}
+export function validateRecoveryPhraseFormat(phrase) {
+    const normalized = normalizeRecoveryPhrase(phrase);
+    if (!normalized)
+        return false;
+    const words = normalized.split(" ");
+    if (words.length !== 12 && words.length !== 24)
+        return false;
+    return validateMnemonic(normalized, wordlist);
+}
+export function assertRecoveryPhraseConfirmation(originalPhrase, confirmationPhrase) {
+    const a = normalizeRecoveryPhrase(originalPhrase);
+    const b = normalizeRecoveryPhrase(confirmationPhrase);
+    if (a !== b) {
+        throw new RecoveryPhraseConfirmationError("Recovery phrase confirmation does not match");
+    }
+    if (!validateRecoveryPhraseFormat(a)) {
+        throw new RecoveryPhraseConfirmationError("Recovery phrase is not valid");
+    }
+}
+export function pickRecoveryConfirmationIndices(wordCount, count = 3) {
+    if (wordCount < count) {
+        throw new Error("Not enough words for confirmation");
+    }
+    const indices = [];
+    let seed = wordCount * 7919 + count * 104729;
+    while (indices.length < count) {
+        seed = (seed * 1103515245 + 12345) & 0x7fffffff;
+        const candidate = (seed % wordCount) + 1;
+        if (!indices.includes(candidate)) {
+            indices.push(candidate);
+        }
+    }
+    return indices.sort((a, b) => a - b);
+}
+export function assertRecoveryPhraseWordConfirmation(originalPhrase, answers) {
+    const words = normalizeRecoveryPhrase(originalPhrase).split(" ");
+    if (!validateRecoveryPhraseFormat(originalPhrase)) {
+        throw new RecoveryPhraseConfirmationError("Recovery phrase is not valid");
+    }
+    for (const [indexRaw, answer] of Object.entries(answers)) {
+        const index = Number.parseInt(indexRaw, 10);
+        const expected = words[index - 1];
+        const given = normalizeRecoveryPhrase(answer);
+        if (!expected || given !== expected) {
+            throw new RecoveryPhraseConfirmationError(`Word #${index} does not match your recovery phrase`);
+        }
+    }
+}
+export async function deriveRecoveryPhraseKey(phrase, salt) {
+    const normalized = normalizeRecoveryPhrase(phrase);
+    if (!validateRecoveryPhraseFormat(normalized)) {
+        throw new Error("Invalid recovery phrase");
+    }
+    mnemonicToEntropy(normalized, wordlist);
+    const saltBytes = salt ?? crypto.getRandomValues(new Uint8Array(DEFAULT_ARGON2ID_PARAMS.saltLength));
+    const passwordBytes = stringToBytes(normalized);
+    const key = await deriveArgon2idAesKey(passwordBytes, saltBytes);
+    return {
+        key,
+        metadata: serializeArgon2idMetadata(saltBytes),
+    };
+}
+export async function deriveRecoveryPhraseKeyFromMetadata(phrase, metadata) {
+    const normalized = normalizeRecoveryPhrase(phrase);
+    if (!validateRecoveryPhraseFormat(normalized)) {
+        throw new Error("Invalid recovery phrase");
+    }
+    return deriveArgon2idAesKeyFromMetadata(stringToBytes(normalized), metadata);
+}
+async function wrapVaultKeyWithDerivedKey(vaultKey, derivedKey, scope, profile) {
+    return encryptField(bytesToBase64Url(await exportAesKey(vaultKey)), derivedKey, {
+        userId: scope.userId,
+        resourceId: scope.resourceId,
+        field: "vault_key",
+    }, profile);
+}
+async function unwrapVaultKeyWithDerivedKey(encryptedVaultKey, derivedKey) {
+    const keyBytes = base64UrlToBytes(await decryptField(encryptedVaultKey, derivedKey));
+    return importAesKey(keyBytes);
+}
+export async function createRecoveryEnvelope(vaultKey, recoveryPhrase, scope, profile, publicMetadata, salt) {
+    const { key: derivedKey, metadata } = await deriveRecoveryPhraseKey(recoveryPhrase, salt);
+    const encryptedVaultKey = await wrapVaultKeyWithDerivedKey(vaultKey, derivedKey, scope, profile);
+    return {
+        envelope: {
+            method: "recovery_phrase",
+            encryptedVaultKey,
+            kdfMetadata: metadata,
+            publicMetadata,
+        },
+        kdfMetadata: metadata,
+    };
+}
+export async function unlockWithRecoveryEnvelope(recoveryPhrase, envelope, options) {
+    if (options?.expectedWordCount != null) {
+        assertRecoveryPhraseUnlockInput(recoveryPhrase, options.expectedWordCount);
+    }
+    if (envelope.kdfMetadata?.kdf !== "argon2id") {
+        throw new Error("Recovery phrase envelope requires Argon2id metadata");
+    }
+    const derivedKey = await deriveRecoveryPhraseKeyFromMetadata(recoveryPhrase, envelope.kdfMetadata);
+    return unwrapVaultKeyWithDerivedKey(envelope.encryptedVaultKey, derivedKey);
+}
+/** @deprecated Use createRecoveryEnvelope */
+export async function wrapVaultKeyForRecoveryPhrase(vaultKey, recoveryPhrase, scope, profile, salt) {
+    const { envelope, kdfMetadata } = await createRecoveryEnvelope(vaultKey, recoveryPhrase, scope, profile, undefined, salt);
+    return { encryptedVaultKey: envelope.encryptedVaultKey, kdfMetadata };
+}
+/** @deprecated Use unlockWithRecoveryEnvelope */
+export const unwrapVaultKeyFromRecoveryPhrase = unlockWithRecoveryEnvelope;
+//# sourceMappingURL=recovery.js.map

package/dist/envelopes/recovery.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"recovery.js","sourceRoot":"","sources":["../../src/envelopes/recovery.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AACrF,OAAO,EAAE,QAAQ,EAAE,MAAM,mCAAmC,CAAC;AAS7D,OAAO,EAAE,aAAa,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,uBAAuB,CAAC;AAC1F,OAAO,EACL,oBAAoB,EACpB,gCAAgC,EAChC,yBAAyB,GAC1B,MAAM,oBAAoB,CAAC;AAC5B,OAAO,EAAE,uBAAuB,EAAE,MAAM,kBAAkB,CAAC;AAC3D,OAAO,EAAE,+BAA+B,EAAE,MAAM,2BAA2B,CAAC;AAC5E,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AAE9F,MAAM,CAAC,MAAM,+BAA+B,GAAG,0BAAmC,CAAC;AACnF,MAAM,CAAC,MAAM,kCAAkC,GAA4B,EAAE,CAAC;AAE9E,MAAM,aAAa,GAA+C;IAChE,EAAE,EAAE,GAAG;IACP,EAAE,EAAE,GAAG;CACR,CAAC;AAIF,MAAM,UAAU,oBAAoB,CAAC,OAEpC;IACC,MAAM,EAAE,SAAS,EAAE,GAAG,OAAO,CAAC;IAC9B,IAAI,SAAS,KAAK,EAAE,IAAI,SAAS,KAAK,EAAE,EAAE,CAAC;QACzC,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAC;IACjE,CAAC;IACD,OAAO,gBAAgB,CAAC,QAAQ,EAAE,aAAa,CAAC,SAAS,CAAC,CAAC,CAAC;AAC9D,CAAC;AAED,2CAA2C;AAC3C,MAAM,CAAC,MAAM,sBAAsB,GAAG,oBAAoB,CAAC;AAE3D,MAAM,UAAU,0BAA0B,CAAC,MAAc;IACvD,MAAM,UAAU,GAAG,uBAAuB,CAAC,MAAM,CAAC,CAAC;IACnD,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC;IAC3D,IAAI,KAAK,KAAK,EAAE,IAAI,KAAK,KAAK,EAAE;QAAE,OAAO,KAAK,CAAC;IAC/C,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,UAAU,kCAAkC,CAChD,SAAkC;IAElC,OAAO,SAAS,KAAK,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;AAClC,CAAC;AAED,MAAM,UAAU,4BAA4B,CAC1C,cAA+C;IAE/C,MAAM,GAAG,GAAG,cAAc,EAAE,YAAY,IAAI,cAAc,EAAE,SAAS,CAAC;IACtE,IAAI,GAAG,KAAK,EAAE,IAAI,GAAG,KAAK,EAAE;QAAE,OAAO,GAAG,CAAC;IACzC,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,UAAU,+BAA+B,CAC7C,MAAc,EACd,iBAAkD;IAElD,MAAM,UAAU,GAAG,uBAAuB,CAAC,MAAM,CAAC,CAAC;IACnD,IAAI,CAAC,4BAA4B,CAAC,UAAU,CAAC,EAAE,CAAC;QAC9C,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;IACzE,CAAC;IAED,MAAM,WAAW,GAAG,0BAA0B,CAAC,UAAU,CAAC,CAAC;IAC3D,IAAI,iBAAiB,IAAI,IAAI,IAAI,WAAW,KAAK,iBAAiB,EAAE,CAAC;QACnE,MAAM,IAAI,KAAK,CACb,qBAAqB,iBAAiB,sCAAsC,WAAW,IAAI,sBAAsB,SAAS,CAC3H,CAAC;IACJ,CAAC;AACH,CAAC;AAED,MAAM,UAAU,uBAAuB,CAAC,MAAc;IACpD,OAAO,MAAM;SACV,IAAI,EAAE;SACN,WAAW,EAAE;SACb,KAAK,CAAC,KAAK,CAAC;SACZ,MAAM,CAAC,OAAO,CAAC;SACf,IAAI,CAAC,GAAG,CAAC,CAAC;AACf,CAAC;AAED,MAAM,UAAU,4BAA4B,CAAC,MAAc;IACzD,MAAM,UAAU,GAAG,uBAAuB,CAAC,MAAM,CAAC,CAAC;IACnD,IAAI,CAAC,UAAU;QAAE,OAAO,KAAK,CAAC;IAC9B,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACpC,IAAI,KAAK,CAAC,MAAM,KAAK,EAAE,IAAI,KAAK,CAAC,MAAM,KAAK,EAAE;QAAE,OAAO,KAAK,CAAC;IAC7D,OAAO,gBAAgB,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;AAChD,CAAC;AAED,MAAM,UAAU,gCAAgC,CAC9C,cAAsB,EACtB,kBAA0B;IAE1B,MAAM,CAAC,GAAG,uBAAuB,CAAC,cAAc,CAAC,CAAC;IAClD,MAAM,CAAC,GAAG,uBAAuB,CAAC,kBAAkB,CAAC,CAAC;IACtD,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;QACZ,MAAM,IAAI,+BAA+B,CAAC,6CAA6C,CAAC,CAAC;IAC3F,CAAC;IACD,IAAI,CAAC,4BAA4B,CAAC,CAAC,CAAC,EAAE,CAAC;QACrC,MAAM,IAAI,+BAA+B,CAAC,8BAA8B,CAAC,CAAC;IAC5E,CAAC;AACH,CAAC;AAED,MAAM,UAAU,+BAA+B,CAC7C,SAAiB,EACjB,KAAK,GAAG,CAAC;IAET,IAAI,SAAS,GAAG,KAAK,EAAE,CAAC;QACtB,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;IACvD,CAAC;IACD,MAAM,OAAO,GAAa,EAAE,CAAC;IAC7B,IAAI,IAAI,GAAG,SAAS,GAAG,IAAI,GAAG,KAAK,GAAG,MAAM,CAAC;IAC7C,OAAO,OAAO,CAAC,MAAM,GAAG,KAAK,EAAE,CAAC;QAC9B,IAAI,GAAG,CAAC,IAAI,GAAG,UAAU,GAAG,KAAK,CAAC,GAAG,UAAU,CAAC;QAChD,MAAM,SAAS,GAAG,CAAC,IAAI,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC;QACzC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;YACjC,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAC1B,CAAC;IACH,CAAC;IACD,OAAO,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;AACvC,CAAC;AAED,MAAM,UAAU,oCAAoC,CAClD,cAAsB,EACtB,OAA+B;IAE/B,MAAM,KAAK,GAAG,uBAAuB,CAAC,cAAc,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACjE,IAAI,CAAC,4BAA4B,CAAC,cAAc,CAAC,EAAE,CAAC;QAClD,MAAM,IAAI,+BAA+B,CAAC,8BAA8B,CAAC,CAAC;IAC5E,CAAC;IAED,KAAK,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;QACzD,MAAM,KAAK,GAAG,MAAM,CAAC,QAAQ,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;QAC5C,MAAM,QAAQ,GAAG,KAAK,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC;QAClC,MAAM,KAAK,GAAG,uBAAuB,CAAC,MAAM,CAAC,CAAC;QAC9C,IAAI,CAAC,QAAQ,IAAI,KAAK,KAAK,QAAQ,EAAE,CAAC;YACpC,MAAM,IAAI,+BAA+B,CACvC,SAAS,KAAK,sCAAsC,CACrD,CAAC;QACJ,CAAC;IACH,CAAC;AACH,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,uBAAuB,CAC3C,MAAc,EACd,IAAiB;IAEjB,MAAM,UAAU,GAAG,uBAAuB,CAAC,MAAM,CAAC,CAAC;IACnD,IAAI,CAAC,4BAA4B,CAAC,UAAU,CAAC,EAAE,CAAC;QAC9C,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;IAC7C,CAAC;IACD,iBAAiB,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;IAExC,MAAM,SAAS,GACb,IAAI,IAAI,MAAM,CAAC,eAAe,CAAC,IAAI,UAAU,CAAC,uBAAuB,CAAC,UAAU,CAAC,CAAC,CAAC;IACrF,MAAM,aAAa,GAAG,aAAa,CAAC,UAAU,CAAC,CAAC;IAChD,MAAM,GAAG,GAAG,MAAM,oBAAoB,CAAC,aAAa,EAAE,SAAS,CAAC,CAAC;IACjE,OAAO;QACL,GAAG;QACH,QAAQ,EAAE,yBAAyB,CAAC,SAAS,CAAC;KAC/C,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,mCAAmC,CACvD,MAAc,EACd,QAA6B;IAE7B,MAAM,UAAU,GAAG,uBAAuB,CAAC,MAAM,CAAC,CAAC;IACnD,IAAI,CAAC,4BAA4B,CAAC,UAAU,CAAC,EAAE,CAAC;QAC9C,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;IAC7C,CAAC;IACD,OAAO,gCAAgC,CAAC,aAAa,CAAC,UAAU,CAAC,EAAE,QAAQ,CAAC,CAAC;AAC/E,CAAC;AAED,KAAK,UAAU,0BAA0B,CACvC,QAAmB,EACnB,UAAqB,EACrB,KAAgB,EAChB,OAA2B;IAE3B,OAAO,YAAY,CAAC,gBAAgB,CAAC,MAAM,YAAY,CAAC,QAAQ,CAAC,CAAC,EAAE,UAAU,EAAE;QAC9E,MAAM,EAAE,KAAK,CAAC,MAAM;QACpB,UAAU,EAAE,KAAK,CAAC,UAAU;QAC5B,KAAK,EAAE,WAAW;KACnB,EAAE,OAAO,CAAC,CAAC;AACd,CAAC;AAED,KAAK,UAAU,4BAA4B,CACzC,iBAAwC,EACxC,UAAqB;IAErB,MAAM,QAAQ,GAAG,gBAAgB,CAAC,MAAM,YAAY,CAAC,iBAAiB,EAAE,UAAU,CAAC,CAAC,CAAC;IACrF,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC;AAChC,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,QAAmB,EACnB,cAAsB,EACtB,KAAgB,EAChB,OAA2B,EAC3B,cAA0D,EAC1D,IAAiB;IAEjB,MAAM,EAAE,GAAG,EAAE,UAAU,EAAE,QAAQ,EAAE,GAAG,MAAM,uBAAuB,CAAC,cAAc,EAAE,IAAI,CAAC,CAAC;IAC1F,MAAM,iBAAiB,GAAG,MAAM,0BAA0B,CAAC,QAAQ,EAAE,UAAU,EAAE,KAAK,EAAE,OAAO,CAAC,CAAC;IACjG,OAAO;QACL,QAAQ,EAAE;YACR,MAAM,EAAE,iBAAiB;YACzB,iBAAiB;YACjB,WAAW,EAAE,QAAQ;YACrB,cAAc;SACf;QACD,WAAW,EAAE,QAAQ;KACtB,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,0BAA0B,CAC9C,cAAsB,EACtB,QAAyG,EACzG,OAAgE;IAEhE,IAAI,OAAO,EAAE,iBAAiB,IAAI,IAAI,EAAE,CAAC;QACvC,+BAA+B,CAAC,cAAc,EAAE,OAAO,CAAC,iBAAiB,CAAC,CAAC;IAC7E,CAAC;IACD,IAAI,QAAQ,CAAC,WAAW,EAAE,GAAG,KAAK,UAAU,EAAE,CAAC;QAC7C,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;IACzE,CAAC;IACD,MAAM,UAAU,GAAG,MAAM,mCAAmC,CAAC,cAAc,EAAE,QAAQ,CAAC,WAAW,CAAC,CAAC;IACnG,OAAO,4BAA4B,CAAC,QAAQ,CAAC,iBAAiB,EAAE,UAAU,CAAC,CAAC;AAC9E,CAAC;AAED,6CAA6C;AAC7C,MAAM,CAAC,KAAK,UAAU,6BAA6B,CACjD,QAAmB,EACnB,cAAsB,EACtB,KAAgB,EAChB,OAA2B,EAC3B,IAAiB;IAEjB,MAAM,EAAE,QAAQ,EAAE,WAAW,EAAE,GAAG,MAAM,sBAAsB,CAC5D,QAAQ,EACR,cAAc,EACd,KAAK,EACL,OAAO,EACP,SAAS,EACT,IAAI,CACL,CAAC;IACF,OAAO,EAAE,iBAAiB,EAAE,QAAQ,CAAC,iBAAiB,EAAE,WAAW,EAAE,CAAC;AACxE,CAAC;AAED,iDAAiD;AACjD,MAAM,CAAC,MAAM,gCAAgC,GAAG,0BAA0B,CAAC"}

package/dist/errors/vault-errors.d.ts

@@ -0,0 +1,20 @@
+export declare class VaultPlaintextRejectionError extends Error {
+    constructor(message: string);
+}
+export declare class VaultConflictError extends Error {
+    constructor(message: string);
+}
+export declare class VaultNotFoundError extends Error {
+    constructor(message: string);
+}
+export declare class PasskeyPrfRequiredError extends Error {
+    constructor(message: string);
+}
+export declare class PasskeyUnlockError extends Error {
+    constructor(message: string);
+}
+export declare class RecoveryPhraseConfirmationError extends Error {
+    constructor(message: string);
+}
+export type VaultCoreError = VaultPlaintextRejectionError | VaultConflictError | VaultNotFoundError | PasskeyPrfRequiredError | PasskeyUnlockError | RecoveryPhraseConfirmationError;
+//# sourceMappingURL=vault-errors.d.ts.map

package/dist/errors/vault-errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"vault-errors.d.ts","sourceRoot":"","sources":["../../src/errors/vault-errors.ts"],"names":[],"mappings":"AAAA,qBAAa,4BAA6B,SAAQ,KAAK;gBACzC,OAAO,EAAE,MAAM;CAI5B;AAED,qBAAa,kBAAmB,SAAQ,KAAK;gBAC/B,OAAO,EAAE,MAAM;CAI5B;AAED,qBAAa,kBAAmB,SAAQ,KAAK;gBAC/B,OAAO,EAAE,MAAM;CAI5B;AAED,qBAAa,uBAAwB,SAAQ,KAAK;gBACpC,OAAO,EAAE,MAAM;CAI5B;AAED,qBAAa,kBAAmB,SAAQ,KAAK;gBAC/B,OAAO,EAAE,MAAM;CAI5B;AAED,qBAAa,+BAAgC,SAAQ,KAAK;gBAC5C,OAAO,EAAE,MAAM;CAI5B;AAED,MAAM,MAAM,cAAc,GACtB,4BAA4B,GAC5B,kBAAkB,GAClB,kBAAkB,GAClB,uBAAuB,GACvB,kBAAkB,GAClB,+BAA+B,CAAC"}

package/dist/errors/vault-errors.js

@@ -0,0 +1,37 @@
+export class VaultPlaintextRejectionError extends Error {
+    constructor(message) {
+        super(message);
+        this.name = "VaultPlaintextRejectionError";
+    }
+}
+export class VaultConflictError extends Error {
+    constructor(message) {
+        super(message);
+        this.name = "VaultConflictError";
+    }
+}
+export class VaultNotFoundError extends Error {
+    constructor(message) {
+        super(message);
+        this.name = "VaultNotFoundError";
+    }
+}
+export class PasskeyPrfRequiredError extends Error {
+    constructor(message) {
+        super(message);
+        this.name = "PasskeyPrfRequiredError";
+    }
+}
+export class PasskeyUnlockError extends Error {
+    constructor(message) {
+        super(message);
+        this.name = "PasskeyUnlockError";
+    }
+}
+export class RecoveryPhraseConfirmationError extends Error {
+    constructor(message) {
+        super(message);
+        this.name = "RecoveryPhraseConfirmationError";
+    }
+}
+//# sourceMappingURL=vault-errors.js.map

package/dist/errors/vault-errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"vault-errors.js","sourceRoot":"","sources":["../../src/errors/vault-errors.ts"],"names":[],"mappings":"AAAA,MAAM,OAAO,4BAA6B,SAAQ,KAAK;IACrD,YAAY,OAAe;QACzB,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,8BAA8B,CAAC;IAC7C,CAAC;CACF;AAED,MAAM,OAAO,kBAAmB,SAAQ,KAAK;IAC3C,YAAY,OAAe;QACzB,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,oBAAoB,CAAC;IACnC,CAAC;CACF;AAED,MAAM,OAAO,kBAAmB,SAAQ,KAAK;IAC3C,YAAY,OAAe;QACzB,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,oBAAoB,CAAC;IACnC,CAAC;CACF;AAED,MAAM,OAAO,uBAAwB,SAAQ,KAAK;IAChD,YAAY,OAAe;QACzB,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,yBAAyB,CAAC;IACxC,CAAC;CACF;AAED,MAAM,OAAO,kBAAmB,SAAQ,KAAK;IAC3C,YAAY,OAAe;QACzB,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,oBAAoB,CAAC;IACnC,CAAC;CACF;AAED,MAAM,OAAO,+BAAgC,SAAQ,KAAK;IACxD,YAAY,OAAe;QACzB,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,iCAAiC,CAAC;IAChD,CAAC;CACF"}

package/dist/index.d.ts

@@ -0,0 +1,21 @@
+export * from "./constants.js";
+export * from "./profile.js";
+export * from "./errors/vault-errors.js";
+export * from "./crypto/aes-gcm.js";
+export * from "./crypto/aad.js";
+export * from "./crypto/encoding.js";
+export * from "./crypto/random.js";
+export * from "./crypto/serialization.js";
+export * from "./kdf/argon2id.js";
+export * from "./kdf/params.js";
+export * from "./keys/user-vault-key.js";
+export * from "./validation/schemas.js";
+export * from "./validation/aad-assert.js";
+export { assertNoVaultPlaintextFields, rejectVaultPlaintextFields, validateNoPlaintextLeak, scanForSentinels, containsSentinel, PLAINTEXT_FORBIDDEN_VAULT_FIELDS, ALL_SENTINELS, SENTINEL_VAULT_PASSWORD, SENTINEL_RECOVERY_PHRASE, SENTINEL_12_WORD_RECOVERY_PHRASE, SENTINEL_24_WORD_RECOVERY_PHRASE, SENTINEL_PRIVATE_LABEL, SENTINEL_STRATEGY_NOTE, SENTINEL_SUBSCRIPTION_TOKEN, SENTINEL_MANAGEMENT_TOKEN, SENTINEL_PRIVATE_NOTE, SENTINEL_USER_VAULT_KEY, SENTINEL_PRF_OUTPUT, } from "./validation/plaintext-reject.js";
+export * from "./payload/encrypted-payload.js";
+export * from "./envelopes/password.js";
+export * from "./envelopes/recovery.js";
+export * from "./envelopes/passkey-prf.js";
+export * from "./recovery/kit.js";
+export type { VaultUnlockResult } from "./profile.js";
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,gBAAgB,CAAC;AAC/B,cAAc,cAAc,CAAC;AAC7B,cAAc,0BAA0B,CAAC;AAEzC,cAAc,qBAAqB,CAAC;AACpC,cAAc,iBAAiB,CAAC;AAChC,cAAc,sBAAsB,CAAC;AACrC,cAAc,oBAAoB,CAAC;AACnC,cAAc,2BAA2B,CAAC;AAE1C,cAAc,mBAAmB,CAAC;AAClC,cAAc,iBAAiB,CAAC;AAEhC,cAAc,0BAA0B,CAAC;AAEzC,cAAc,yBAAyB,CAAC;AACxC,cAAc,4BAA4B,CAAC;AAC3C,OAAO,EACL,4BAA4B,EAC5B,0BAA0B,EAC1B,uBAAuB,EACvB,gBAAgB,EAChB,gBAAgB,EAChB,gCAAgC,EAChC,aAAa,EACb,uBAAuB,EACvB,wBAAwB,EACxB,gCAAgC,EAChC,gCAAgC,EAChC,sBAAsB,EACtB,sBAAsB,EACtB,2BAA2B,EAC3B,yBAAyB,EACzB,qBAAqB,EACrB,uBAAuB,EACvB,mBAAmB,GACpB,MAAM,kCAAkC,CAAC;AAE1C,cAAc,gCAAgC,CAAC;AAE/C,cAAc,yBAAyB,CAAC;AACxC,cAAc,yBAAyB,CAAC;AACxC,cAAc,4BAA4B,CAAC;AAE3C,cAAc,mBAAmB,CAAC;AAElC,YAAY,EAAE,iBAAiB,EAAE,MAAM,cAAc,CAAC"}

package/dist/index.js

@@ -0,0 +1,20 @@
+export * from "./constants.js";
+export * from "./profile.js";
+export * from "./errors/vault-errors.js";
+export * from "./crypto/aes-gcm.js";
+export * from "./crypto/aad.js";
+export * from "./crypto/encoding.js";
+export * from "./crypto/random.js";
+export * from "./crypto/serialization.js";
+export * from "./kdf/argon2id.js";
+export * from "./kdf/params.js";
+export * from "./keys/user-vault-key.js";
+export * from "./validation/schemas.js";
+export * from "./validation/aad-assert.js";
+export { assertNoVaultPlaintextFields, rejectVaultPlaintextFields, validateNoPlaintextLeak, scanForSentinels, containsSentinel, PLAINTEXT_FORBIDDEN_VAULT_FIELDS, ALL_SENTINELS, SENTINEL_VAULT_PASSWORD, SENTINEL_RECOVERY_PHRASE, SENTINEL_12_WORD_RECOVERY_PHRASE, SENTINEL_24_WORD_RECOVERY_PHRASE, SENTINEL_PRIVATE_LABEL, SENTINEL_STRATEGY_NOTE, SENTINEL_SUBSCRIPTION_TOKEN, SENTINEL_MANAGEMENT_TOKEN, SENTINEL_PRIVATE_NOTE, SENTINEL_USER_VAULT_KEY, SENTINEL_PRF_OUTPUT, } from "./validation/plaintext-reject.js";
+export * from "./payload/encrypted-payload.js";
+export * from "./envelopes/password.js";
+export * from "./envelopes/recovery.js";
+export * from "./envelopes/passkey-prf.js";
+export * from "./recovery/kit.js";
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,gBAAgB,CAAC;AAC/B,cAAc,cAAc,CAAC;AAC7B,cAAc,0BAA0B,CAAC;AAEzC,cAAc,qBAAqB,CAAC;AACpC,cAAc,iBAAiB,CAAC;AAChC,cAAc,sBAAsB,CAAC;AACrC,cAAc,oBAAoB,CAAC;AACnC,cAAc,2BAA2B,CAAC;AAE1C,cAAc,mBAAmB,CAAC;AAClC,cAAc,iBAAiB,CAAC;AAEhC,cAAc,0BAA0B,CAAC;AAEzC,cAAc,yBAAyB,CAAC;AACxC,cAAc,4BAA4B,CAAC;AAC3C,OAAO,EACL,4BAA4B,EAC5B,0BAA0B,EAC1B,uBAAuB,EACvB,gBAAgB,EAChB,gBAAgB,EAChB,gCAAgC,EAChC,aAAa,EACb,uBAAuB,EACvB,wBAAwB,EACxB,gCAAgC,EAChC,gCAAgC,EAChC,sBAAsB,EACtB,sBAAsB,EACtB,2BAA2B,EAC3B,yBAAyB,EACzB,qBAAqB,EACrB,uBAAuB,EACvB,mBAAmB,GACpB,MAAM,kCAAkC,CAAC;AAE1C,cAAc,gCAAgC,CAAC;AAE/C,cAAc,yBAAyB,CAAC;AACxC,cAAc,yBAAyB,CAAC;AACxC,cAAc,4BAA4B,CAAC;AAE3C,cAAc,mBAAmB,CAAC"}

package/dist/kdf/argon2id.d.ts

@@ -0,0 +1,24 @@
+import type { Argon2idKdfMetadata } from "../validation/schemas.js";
+import { DEFAULT_ARGON2ID_PARAMS } from "./params.js";
+export { DEFAULT_ARGON2ID_PARAMS, type Argon2idParams } from "./params.js";
+export type { Argon2idKdfMetadata };
+export declare function serializeArgon2idMetadata(salt: Uint8Array, params?: Pick<typeof DEFAULT_ARGON2ID_PARAMS, "memory" | "iterations" | "parallelism">): Argon2idKdfMetadata;
+export declare function parseArgon2idMetadata(metadata: Argon2idKdfMetadata): {
+    salt: Uint8Array;
+    memory: number;
+    iterations: number;
+    parallelism: number;
+};
+export declare function deriveArgon2idAesKey(passwordBytes: Uint8Array, salt: Uint8Array, params?: {
+    memory: number;
+    iterations: number;
+    parallelism: number;
+    hashLength?: number;
+}): Promise<CryptoKey>;
+export declare function deriveArgon2idAesKeyFromMetadata(passwordBytes: Uint8Array, metadata: Argon2idKdfMetadata): Promise<CryptoKey>;
+export declare function deriveVaultPasswordKey(vaultPassword: string, salt?: Uint8Array): Promise<{
+    key: CryptoKey;
+    metadata: Argon2idKdfMetadata;
+}>;
+export declare function deriveVaultPasswordKeyFromMetadata(vaultPassword: string, metadata: Argon2idKdfMetadata): Promise<CryptoKey>;
+//# sourceMappingURL=argon2id.d.ts.map

package/dist/kdf/argon2id.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"argon2id.d.ts","sourceRoot":"","sources":["../../src/kdf/argon2id.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAC;AAOpE,OAAO,EAAE,uBAAuB,EAAE,MAAM,aAAa,CAAC;AAEtD,OAAO,EAAE,uBAAuB,EAAE,KAAK,cAAc,EAAE,MAAM,aAAa,CAAC;AAE3E,YAAY,EAAE,mBAAmB,EAAE,CAAC;AAEpC,wBAAgB,yBAAyB,CACvC,IAAI,EAAE,UAAU,EAChB,MAAM,GAAE,IAAI,CAAC,OAAO,uBAAuB,EAAE,QAAQ,GAAG,YAAY,GAAG,aAAa,CAA2B,GAC9G,mBAAmB,CASrB;AAED,wBAAgB,qBAAqB,CAAC,QAAQ,EAAE,mBAAmB,GAAG;IACpE,IAAI,EAAE,UAAU,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,EAAE,MAAM,CAAC;CACrB,CAOA;AAED,wBAAsB,oBAAoB,CACxC,aAAa,EAAE,UAAU,EACzB,IAAI,EAAE,UAAU,EAChB,MAAM,GAAE;IACN,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,CAAC,EAAE,MAAM,CAAC;CACK,GAC1B,OAAO,CAAC,SAAS,CAAC,CAmBpB;AAED,wBAAsB,gCAAgC,CACpD,aAAa,EAAE,UAAU,EACzB,QAAQ,EAAE,mBAAmB,GAC5B,OAAO,CAAC,SAAS,CAAC,CAQpB;AAED,wBAAsB,sBAAsB,CAC1C,aAAa,EAAE,MAAM,EACrB,IAAI,CAAC,EAAE,UAAU,GAChB,OAAO,CAAC;IAAE,GAAG,EAAE,SAAS,CAAC;IAAC,QAAQ,EAAE,mBAAmB,CAAA;CAAE,CAAC,CAS5D;AAED,wBAAsB,kCAAkC,CACtD,aAAa,EAAE,MAAM,EACrB,QAAQ,EAAE,mBAAmB,GAC5B,OAAO,CAAC,SAAS,CAAC,CAKpB"}

package/dist/kdf/argon2id.js

@@ -0,0 +1,57 @@
+import { argon2id } from "hash-wasm";
+import { bytesToBase64Url, base64UrlToBytes, toBufferSource, stringToBytes, } from "../crypto/encoding.js";
+import { DEFAULT_ARGON2ID_PARAMS } from "./params.js";
+export { DEFAULT_ARGON2ID_PARAMS } from "./params.js";
+export function serializeArgon2idMetadata(salt, params = DEFAULT_ARGON2ID_PARAMS) {
+    return {
+        kdf: "argon2id",
+        version: "kdf-v1",
+        salt: bytesToBase64Url(salt),
+        memory: params.memory,
+        iterations: params.iterations,
+        parallelism: params.parallelism,
+    };
+}
+export function parseArgon2idMetadata(metadata) {
+    return {
+        salt: base64UrlToBytes(metadata.salt),
+        memory: metadata.memory,
+        iterations: metadata.iterations,
+        parallelism: metadata.parallelism,
+    };
+}
+export async function deriveArgon2idAesKey(passwordBytes, salt, params = DEFAULT_ARGON2ID_PARAMS) {
+    const hashLength = params.hashLength ?? DEFAULT_ARGON2ID_PARAMS.hashLength;
+    const hash = await argon2id({
+        password: passwordBytes,
+        salt,
+        parallelism: params.parallelism,
+        iterations: params.iterations,
+        memorySize: params.memory,
+        hashLength,
+        outputType: "binary",
+    });
+    return crypto.subtle.importKey("raw", toBufferSource(new Uint8Array(hash)), { name: "AES-GCM", length: 256 }, false, ["encrypt", "decrypt"]);
+}
+export async function deriveArgon2idAesKeyFromMetadata(passwordBytes, metadata) {
+    const { salt, memory, iterations, parallelism } = parseArgon2idMetadata(metadata);
+    return deriveArgon2idAesKey(passwordBytes, salt, {
+        memory,
+        iterations,
+        parallelism,
+        hashLength: DEFAULT_ARGON2ID_PARAMS.hashLength,
+    });
+}
+export async function deriveVaultPasswordKey(vaultPassword, salt) {
+    const saltBytes = salt ?? crypto.getRandomValues(new Uint8Array(DEFAULT_ARGON2ID_PARAMS.saltLength));
+    const passwordBytes = stringToBytes(vaultPassword.normalize("NFKC"));
+    const key = await deriveArgon2idAesKey(passwordBytes, saltBytes);
+    return {
+        key,
+        metadata: serializeArgon2idMetadata(saltBytes),
+    };
+}
+export async function deriveVaultPasswordKeyFromMetadata(vaultPassword, metadata) {
+    return deriveArgon2idAesKeyFromMetadata(stringToBytes(vaultPassword.normalize("NFKC")), metadata);
+}
+//# sourceMappingURL=argon2id.js.map

package/dist/kdf/argon2id.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"argon2id.js","sourceRoot":"","sources":["../../src/kdf/argon2id.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,WAAW,CAAC;AAErC,OAAO,EACL,gBAAgB,EAChB,gBAAgB,EAChB,cAAc,EACd,aAAa,GACd,MAAM,uBAAuB,CAAC;AAC/B,OAAO,EAAE,uBAAuB,EAAE,MAAM,aAAa,CAAC;AAEtD,OAAO,EAAE,uBAAuB,EAAuB,MAAM,aAAa,CAAC;AAI3E,MAAM,UAAU,yBAAyB,CACvC,IAAgB,EAChB,SAAwF,uBAAuB;IAE/G,OAAO;QACL,GAAG,EAAE,UAAU;QACf,OAAO,EAAE,QAAQ;QACjB,IAAI,EAAE,gBAAgB,CAAC,IAAI,CAAC;QAC5B,MAAM,EAAE,MAAM,CAAC,MAAM;QACrB,UAAU,EAAE,MAAM,CAAC,UAAU;QAC7B,WAAW,EAAE,MAAM,CAAC,WAAW;KAChC,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,qBAAqB,CAAC,QAA6B;IAMjE,OAAO;QACL,IAAI,EAAE,gBAAgB,CAAC,QAAQ,CAAC,IAAI,CAAC;QACrC,MAAM,EAAE,QAAQ,CAAC,MAAM;QACvB,UAAU,EAAE,QAAQ,CAAC,UAAU;QAC/B,WAAW,EAAE,QAAQ,CAAC,WAAW;KAClC,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACxC,aAAyB,EACzB,IAAgB,EAChB,SAKI,uBAAuB;IAE3B,MAAM,UAAU,GAAG,MAAM,CAAC,UAAU,IAAI,uBAAuB,CAAC,UAAU,CAAC;IAC3E,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC;QAC1B,QAAQ,EAAE,aAAa;QACvB,IAAI;QACJ,WAAW,EAAE,MAAM,CAAC,WAAW;QAC/B,UAAU,EAAE,MAAM,CAAC,UAAU;QAC7B,UAAU,EAAE,MAAM,CAAC,MAAM;QACzB,UAAU;QACV,UAAU,EAAE,QAAQ;KACrB,CAAC,CAAC;IAEH,OAAO,MAAM,CAAC,MAAM,CAAC,SAAS,CAC5B,KAAK,EACL,cAAc,CAAC,IAAI,UAAU,CAAC,IAAI,CAAC,CAAC,EACpC,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,GAAG,EAAE,EAChC,KAAK,EACL,CAAC,SAAS,EAAE,SAAS,CAAC,CACvB,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,gCAAgC,CACpD,aAAyB,EACzB,QAA6B;IAE7B,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE,WAAW,EAAE,GAAG,qBAAqB,CAAC,QAAQ,CAAC,CAAC;IAClF,OAAO,oBAAoB,CAAC,aAAa,EAAE,IAAI,EAAE;QAC/C,MAAM;QACN,UAAU;QACV,WAAW;QACX,UAAU,EAAE,uBAAuB,CAAC,UAAU;KAC/C,CAAC,CAAC;AACL,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,aAAqB,EACrB,IAAiB;IAEjB,MAAM,SAAS,GACb,IAAI,IAAI,MAAM,CAAC,eAAe,CAAC,IAAI,UAAU,CAAC,uBAAuB,CAAC,UAAU,CAAC,CAAC,CAAC;IACrF,MAAM,aAAa,GAAG,aAAa,CAAC,aAAa,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC;IACrE,MAAM,GAAG,GAAG,MAAM,oBAAoB,CAAC,aAAa,EAAE,SAAS,CAAC,CAAC;IACjE,OAAO;QACL,GAAG;QACH,QAAQ,EAAE,yBAAyB,CAAC,SAAS,CAAC;KAC/C,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,kCAAkC,CACtD,aAAqB,EACrB,QAA6B;IAE7B,OAAO,gCAAgC,CACrC,aAAa,CAAC,aAAa,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,EAC9C,QAAQ,CACT,CAAC;AACJ,CAAC"}

package/dist/kdf/params.d.ts

@@ -0,0 +1,9 @@
+export declare const DEFAULT_ARGON2ID_PARAMS: {
+    readonly memory: 65536;
+    readonly iterations: 3;
+    readonly parallelism: 1;
+    readonly hashLength: 32;
+    readonly saltLength: 16;
+};
+export type Argon2idParams = typeof DEFAULT_ARGON2ID_PARAMS;
+//# sourceMappingURL=params.d.ts.map

package/dist/kdf/params.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"params.d.ts","sourceRoot":"","sources":["../../src/kdf/params.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,uBAAuB;;;;;;CAM1B,CAAC;AAEX,MAAM,MAAM,cAAc,GAAG,OAAO,uBAAuB,CAAC"}