@unwanted/matrix-sdk-mini 34.12.0-2 → 34.12.0-4

package/lib/crypto/CrossSigning.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"CrossSigning.js","names":["pkSign","pkVerify","logger","IndexedDBCryptoStore","DeviceVerificationStatus","UserVerificationStatus","UserTrustLevel","decodeBase64","encodeBase64","encryptAESSecretStorageItem","decryptAESSecretStorageItem","KEY_REQUEST_TIMEOUT_MS","publicKeyFromKeyInfo","keyInfo","Object","values","keys","CrossSigningInfo","constructor","userId","callbacks","arguments","length","undefined","cacheCallbacks","_defineProperty","fromStorage","obj","res","prop","hasOwnProperty","toStorage","firstUse","crossSigningVerifiedBefore","getCrossSigningKey","type","expectedPubkey","_this","_asyncToGenerator","shouldCache","indexOf","Error","getId","validateKey","key","signing","globalThis","Olm","PkSigning","gotPubkey","init_with_seed","free","privkey","getCrossSigningKeyCache","cacheresult","result","storeCrossSigningKeyCache","isStoredInSecretStorage","secretStorage","stored","isStored","intersect","s","k","concat","storeInSecretStorage","privateKey","encodedKey","store","getFromSecretStorage","get","isStoredInKeyCache","_this2","types","t","_cacheCallbacks$getCr","call","getCrossSigningKeysFromCache","_this3","Map","_cacheCallbacks$getCr2","privKey","set","resetKeys","level","_this4","saveCrossSigningKeys","CrossSigningLevel","MASTER","master","USER_SIGNING","SELF_SIGNING","privateKeys","masterSigning","masterPub","generate_seed","user_id","usage","sskSigning","self_signing","sskPub","uskSigning","user_signing","uskPub","assign","clearKeys","setKeys","signingKeys","error","masterKey","e","updateCrossSigningVerifiedBefore","isCrossSigningVerified","signObject","data","_this5","pubkey","signUser","_this6","info","signDevice","device","_this7","algorithms","device_id","deviceId","checkUserTrust","userCrossSigning","userTrusted","userMaster","uskId","_unused","checkDeviceTrust","localTrust","trustCrossSignedDevices","userTrust","userSSK","DeviceTrustLevel","deviceObj","deviceToObject","fromUserTrustLevel","_unused2","getCacheCallbacks","signatures","crossSigningVerified","tofu","localVerified","signedByOwner","userTrustLevel","isTofu","isLocallyVerified","createCryptoStoreCacheCallbacks","olmDevice","_getCrossSigningKeyCache","_expectedPublicKey","Promise","resolve","doTxn","STORE_ACCOUNT","txn","getSecretStorePrivateKey","ciphertext","pickleKey","Buffer","from","decrypted","_x","_x2","apply","_storeCrossSigningKeyCache","Uint8Array","encryptedKey","storeSecretStorePrivateKey","_x3","_x4","requestKeysDuringVerification","_x5","_x6","_x7","_requestKeysDuringVerification","baseApis","getUserId","log","reject","client","original","crypto","crossSigningInfo","crossSigning","_getCrossSigningKey","debug","promise","requestSecret","decoded","_x8","timeout","setTimeout","backupKeyPromise","cachedKey","getSessionBackupPrivateKey","secretReq","base64Key","decodedKey","storeSessionBackupPrivateKey","backupInfo","getKeyBackupVersion","restoreKeyBackupWithCache","then","race","all","catch","warn"],"sources":["../../src/crypto/CrossSigning.ts"],"sourcesContent":["/*\nCopyright 2019 - 2021 The Matrix.org Foundation C.I.C.\n\nLicensed under the Apache License, Version 2.0 (the \"License\");\nyou may not use this file except in compliance with the License.\nYou may obtain a copy of the License at\n\n    http://www.apache.org/licenses/LICENSE-2.0\n\nUnless required by applicable law or agreed to in writing, software\ndistributed under the License is distributed on an \"AS IS\" BASIS,\nWITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\nSee the License for the specific language governing permissions and\nlimitations under the License.\n*/\n\n/**\n * Cross signing methods\n */\n\nimport type { PkSigning } from \"@matrix-org/olm\";\nimport { IObject, pkSign, pkVerify } from \"./olmlib.ts\";\nimport { logger } from \"../logger.ts\";\nimport { IndexedDBCryptoStore } from \"../crypto/store/indexeddb-crypto-store.ts\";\nimport { DeviceInfo } from \"./deviceinfo.ts\";\nimport { ISignedKey, MatrixClient } from \"../client.ts\";\nimport { OlmDevice } from \"./OlmDevice.ts\";\nimport { ICryptoCallbacks } from \"./index.ts\";\nimport { ISignatures } from \"../@types/signed.ts\";\nimport { CryptoStore, SecretStorePrivateKeys } from \"./store/base.ts\";\nimport { ServerSideSecretStorage, SecretStorageKeyDescription } from \"../secret-storage.ts\";\nimport {\n    CrossSigningKeyInfo,\n    DeviceVerificationStatus,\n    UserVerificationStatus as UserTrustLevel,\n} from \"../crypto-api/index.ts\";\nimport { decodeBase64, encodeBase64 } from \"../base64.ts\";\nimport encryptAESSecretStorageItem from \"../utils/encryptAESSecretStorageItem.ts\";\nimport decryptAESSecretStorageItem from \"../utils/decryptAESSecretStorageItem.ts\";\n\n// backwards-compatibility re-exports\nexport { UserTrustLevel };\n\nconst KEY_REQUEST_TIMEOUT_MS = 1000 * 60;\n\nfunction publicKeyFromKeyInfo(keyInfo: CrossSigningKeyInfo): string {\n    // `keys` is an object with { [`ed25519:${pubKey}`]: pubKey }\n    // We assume only a single key, and we want the bare form without type\n    // prefix, so we select the values.\n    return Object.values(keyInfo.keys)[0];\n}\n\nexport interface ICacheCallbacks {\n    getCrossSigningKeyCache?(type: string, expectedPublicKey?: string): Promise<Uint8Array | null>;\n    storeCrossSigningKeyCache?(type: string, key?: Uint8Array): Promise<void>;\n}\n\nexport interface ICrossSigningInfo {\n    keys: Record<string, CrossSigningKeyInfo>;\n    firstUse: boolean;\n    crossSigningVerifiedBefore: boolean;\n}\n\nexport class CrossSigningInfo {\n    public keys: Record<string, CrossSigningKeyInfo> = {};\n    public firstUse = true;\n    // This tracks whether we've ever verified this user with any identity.\n    // When you verify a user, any devices online at the time that receive\n    // the verifying signature via the homeserver will latch this to true\n    // and can use it in the future to detect cases where the user has\n    // become unverified later for any reason.\n    private crossSigningVerifiedBefore = false;\n\n    /**\n     * Information about a user's cross-signing keys\n     *\n     * @param userId - the user that the information is about\n     * @param callbacks - Callbacks used to interact with the app\n     *     Requires getCrossSigningKey and saveCrossSigningKeys\n     * @param cacheCallbacks - Callbacks used to interact with the cache\n     */\n    public constructor(\n        public readonly userId: string,\n        private callbacks: ICryptoCallbacks = {},\n        private cacheCallbacks: ICacheCallbacks = {},\n    ) {}\n\n    public static fromStorage(obj: ICrossSigningInfo, userId: string): CrossSigningInfo {\n        const res = new CrossSigningInfo(userId);\n        for (const prop in obj) {\n            if (obj.hasOwnProperty(prop)) {\n                // @ts-ignore - ts doesn't like this and nor should we\n                res[prop] = obj[prop];\n            }\n        }\n        return res;\n    }\n\n    public toStorage(): ICrossSigningInfo {\n        return {\n            keys: this.keys,\n            firstUse: this.firstUse,\n            crossSigningVerifiedBefore: this.crossSigningVerifiedBefore,\n        };\n    }\n\n    /**\n     * Calls the app callback to ask for a private key\n     *\n     * @param type - The key type (\"master\", \"self_signing\", or \"user_signing\")\n     * @param expectedPubkey - The matching public key or undefined to use\n     *     the stored public key for the given key type.\n     * @returns An array with [ public key, Olm.PkSigning ]\n     */\n    public async getCrossSigningKey(type: string, expectedPubkey?: string): Promise<[string, PkSigning]> {\n        const shouldCache = [\"master\", \"self_signing\", \"user_signing\"].indexOf(type) >= 0;\n\n        if (!this.callbacks.getCrossSigningKey) {\n            throw new Error(\"No getCrossSigningKey callback supplied\");\n        }\n\n        if (expectedPubkey === undefined) {\n            expectedPubkey = this.getId(type)!;\n        }\n\n        function validateKey(key: Uint8Array | null): [string, PkSigning] | undefined {\n            if (!key) return;\n            const signing = new globalThis.Olm.PkSigning();\n            const gotPubkey = signing.init_with_seed(key);\n            if (gotPubkey === expectedPubkey) {\n                return [gotPubkey, signing];\n            }\n            signing.free();\n        }\n\n        let privkey: Uint8Array | null = null;\n        if (this.cacheCallbacks.getCrossSigningKeyCache && shouldCache) {\n            privkey = await this.cacheCallbacks.getCrossSigningKeyCache(type, expectedPubkey);\n        }\n\n        const cacheresult = validateKey(privkey);\n        if (cacheresult) {\n            return cacheresult;\n        }\n\n        privkey = await this.callbacks.getCrossSigningKey(type, expectedPubkey);\n        const result = validateKey(privkey);\n        if (result) {\n            if (this.cacheCallbacks.storeCrossSigningKeyCache && shouldCache) {\n                await this.cacheCallbacks.storeCrossSigningKeyCache(type, privkey!);\n            }\n            return result;\n        }\n\n        /* No keysource even returned a key */\n        if (!privkey) {\n            throw new Error(\"getCrossSigningKey callback for \" + type + \" returned falsey\");\n        }\n\n        /* We got some keys from the keysource, but none of them were valid */\n        throw new Error(\"Key type \" + type + \" from getCrossSigningKey callback did not match\");\n    }\n\n    /**\n     * Check whether the private keys exist in secret storage.\n     * XXX: This could be static, be we often seem to have an instance when we\n     * want to know this anyway...\n     *\n     * @param secretStorage - The secret store using account data\n     * @returns map of key name to key info the secret is encrypted\n     *     with, or null if it is not present or not encrypted with a trusted\n     *     key\n     */\n    public async isStoredInSecretStorage(\n        secretStorage: ServerSideSecretStorage,\n    ): Promise<Record<string, object> | null> {\n        // check what SSSS keys have encrypted the master key (if any)\n        const stored = (await secretStorage.isStored(\"m.cross_signing.master\")) || {};\n        // then check which of those SSSS keys have also encrypted the SSK and USK\n        function intersect(s: Record<string, SecretStorageKeyDescription>): void {\n            for (const k of Object.keys(stored)) {\n                if (!s[k]) {\n                    delete stored[k];\n                }\n            }\n        }\n        for (const type of [\"self_signing\", \"user_signing\"]) {\n            intersect((await secretStorage.isStored(`m.cross_signing.${type}`)) || {});\n        }\n        return Object.keys(stored).length ? stored : null;\n    }\n\n    /**\n     * Store private keys in secret storage for use by other devices. This is\n     * typically called in conjunction with the creation of new cross-signing\n     * keys.\n     *\n     * @param keys - The keys to store\n     * @param secretStorage - The secret store using account data\n     */\n    public static async storeInSecretStorage(\n        keys: Map<string, Uint8Array>,\n        secretStorage: ServerSideSecretStorage,\n    ): Promise<void> {\n        for (const [type, privateKey] of keys) {\n            const encodedKey = encodeBase64(privateKey);\n            await secretStorage.store(`m.cross_signing.${type}`, encodedKey);\n        }\n    }\n\n    /**\n     * Get private keys from secret storage created by some other device. This\n     * also passes the private keys to the app-specific callback.\n     *\n     * @param type - The type of key to get.  One of \"master\",\n     * \"self_signing\", or \"user_signing\".\n     * @param secretStorage - The secret store using account data\n     * @returns The private key\n     */\n    public static async getFromSecretStorage(\n        type: string,\n        secretStorage: ServerSideSecretStorage,\n    ): Promise<Uint8Array | null> {\n        const encodedKey = await secretStorage.get(`m.cross_signing.${type}`);\n        if (!encodedKey) {\n            return null;\n        }\n        return decodeBase64(encodedKey);\n    }\n\n    /**\n     * Check whether the private keys exist in the local key cache.\n     *\n     * @param type - The type of key to get. One of \"master\",\n     * \"self_signing\", or \"user_signing\". Optional, will check all by default.\n     * @returns True if all keys are stored in the local cache.\n     */\n    public async isStoredInKeyCache(type?: string): Promise<boolean> {\n        const cacheCallbacks = this.cacheCallbacks;\n        if (!cacheCallbacks) return false;\n        const types = type ? [type] : [\"master\", \"self_signing\", \"user_signing\"];\n        for (const t of types) {\n            if (!(await cacheCallbacks.getCrossSigningKeyCache?.(t))) {\n                return false;\n            }\n        }\n        return true;\n    }\n\n    /**\n     * Get cross-signing private keys from the local cache.\n     *\n     * @returns A map from key type (string) to private key (Uint8Array)\n     */\n    public async getCrossSigningKeysFromCache(): Promise<Map<string, Uint8Array>> {\n        const keys = new Map<string, Uint8Array>();\n        const cacheCallbacks = this.cacheCallbacks;\n        if (!cacheCallbacks) return keys;\n        for (const type of [\"master\", \"self_signing\", \"user_signing\"]) {\n            const privKey = await cacheCallbacks.getCrossSigningKeyCache?.(type);\n            if (!privKey) {\n                continue;\n            }\n            keys.set(type, privKey);\n        }\n        return keys;\n    }\n\n    /**\n     * Get the ID used to identify the user. This can also be used to test for\n     * the existence of a given key type.\n     *\n     * @param type - The type of key to get the ID of.  One of \"master\",\n     * \"self_signing\", or \"user_signing\".  Defaults to \"master\".\n     *\n     * @returns the ID\n     */\n    public getId(type = \"master\"): string | null {\n        if (!this.keys[type]) return null;\n        const keyInfo = this.keys[type];\n        return publicKeyFromKeyInfo(keyInfo);\n    }\n\n    /**\n     * Create new cross-signing keys for the given key types. The public keys\n     * will be held in this class, while the private keys are passed off to the\n     * `saveCrossSigningKeys` application callback.\n     *\n     * @param level - The key types to reset\n     */\n    public async resetKeys(level?: CrossSigningLevel): Promise<void> {\n        if (!this.callbacks.saveCrossSigningKeys) {\n            throw new Error(\"No saveCrossSigningKeys callback supplied\");\n        }\n\n        // If we're resetting the master key, we reset all keys\n        if (level === undefined || level & CrossSigningLevel.MASTER || !this.keys.master) {\n            level = CrossSigningLevel.MASTER | CrossSigningLevel.USER_SIGNING | CrossSigningLevel.SELF_SIGNING;\n        } else if (level === (0 as CrossSigningLevel)) {\n            return;\n        }\n\n        const privateKeys: Record<string, Uint8Array> = {};\n        const keys: Record<string, CrossSigningKeyInfo> = {};\n        let masterSigning: PkSigning | undefined;\n        let masterPub: string | undefined;\n\n        try {\n            if (level & CrossSigningLevel.MASTER) {\n                masterSigning = new globalThis.Olm.PkSigning();\n                privateKeys.master = masterSigning.generate_seed();\n                masterPub = masterSigning.init_with_seed(privateKeys.master);\n                keys.master = {\n                    user_id: this.userId,\n                    usage: [\"master\"],\n                    keys: {\n                        [\"ed25519:\" + masterPub]: masterPub,\n                    },\n                };\n            } else {\n                [masterPub, masterSigning] = await this.getCrossSigningKey(\"master\");\n            }\n\n            if (level & CrossSigningLevel.SELF_SIGNING) {\n                const sskSigning = new globalThis.Olm.PkSigning();\n                try {\n                    privateKeys.self_signing = sskSigning.generate_seed();\n                    const sskPub = sskSigning.init_with_seed(privateKeys.self_signing);\n                    keys.self_signing = {\n                        user_id: this.userId,\n                        usage: [\"self_signing\"],\n                        keys: {\n                            [\"ed25519:\" + sskPub]: sskPub,\n                        },\n                    };\n                    pkSign(keys.self_signing, masterSigning, this.userId, masterPub);\n                } finally {\n                    sskSigning.free();\n                }\n            }\n\n            if (level & CrossSigningLevel.USER_SIGNING) {\n                const uskSigning = new globalThis.Olm.PkSigning();\n                try {\n                    privateKeys.user_signing = uskSigning.generate_seed();\n                    const uskPub = uskSigning.init_with_seed(privateKeys.user_signing);\n                    keys.user_signing = {\n                        user_id: this.userId,\n                        usage: [\"user_signing\"],\n                        keys: {\n                            [\"ed25519:\" + uskPub]: uskPub,\n                        },\n                    };\n                    pkSign(keys.user_signing, masterSigning, this.userId, masterPub);\n                } finally {\n                    uskSigning.free();\n                }\n            }\n\n            Object.assign(this.keys, keys);\n            this.callbacks.saveCrossSigningKeys(privateKeys);\n        } finally {\n            if (masterSigning) {\n                masterSigning.free();\n            }\n        }\n    }\n\n    /**\n     * unsets the keys, used when another session has reset the keys, to disable cross-signing\n     */\n    public clearKeys(): void {\n        this.keys = {};\n    }\n\n    public setKeys(keys: Record<string, CrossSigningKeyInfo>): void {\n        const signingKeys: Record<string, CrossSigningKeyInfo> = {};\n        if (keys.master) {\n            if (keys.master.user_id !== this.userId) {\n                const error = \"Mismatched user ID \" + keys.master.user_id + \" in master key from \" + this.userId;\n                logger.error(error);\n                throw new Error(error);\n            }\n            if (!this.keys.master) {\n                // this is the first key we've seen, so first-use is true\n                this.firstUse = true;\n            } else if (publicKeyFromKeyInfo(keys.master) !== this.getId()) {\n                // this is a different key, so first-use is false\n                this.firstUse = false;\n            } // otherwise, same key, so no change\n            signingKeys.master = keys.master;\n        } else if (this.keys.master) {\n            signingKeys.master = this.keys.master;\n        } else {\n            throw new Error(\"Tried to set cross-signing keys without a master key\");\n        }\n        const masterKey = publicKeyFromKeyInfo(signingKeys.master);\n\n        // verify signatures\n        if (keys.user_signing) {\n            if (keys.user_signing.user_id !== this.userId) {\n                const error = \"Mismatched user ID \" + keys.master.user_id + \" in user_signing key from \" + this.userId;\n                logger.error(error);\n                throw new Error(error);\n            }\n            try {\n                pkVerify(keys.user_signing, masterKey, this.userId);\n            } catch (e) {\n                logger.error(\"invalid signature on user-signing key\");\n                // FIXME: what do we want to do here?\n                throw e;\n            }\n        }\n        if (keys.self_signing) {\n            if (keys.self_signing.user_id !== this.userId) {\n                const error = \"Mismatched user ID \" + keys.master.user_id + \" in self_signing key from \" + this.userId;\n                logger.error(error);\n                throw new Error(error);\n            }\n            try {\n                pkVerify(keys.self_signing, masterKey, this.userId);\n            } catch (e) {\n                logger.error(\"invalid signature on self-signing key\");\n                // FIXME: what do we want to do here?\n                throw e;\n            }\n        }\n\n        // if everything checks out, then save the keys\n        if (keys.master) {\n            this.keys.master = keys.master;\n            // if the master key is set, then the old self-signing and user-signing keys are obsolete\n            delete this.keys[\"self_signing\"];\n            delete this.keys[\"user_signing\"];\n        }\n        if (keys.self_signing) {\n            this.keys.self_signing = keys.self_signing;\n        }\n        if (keys.user_signing) {\n            this.keys.user_signing = keys.user_signing;\n        }\n    }\n\n    public updateCrossSigningVerifiedBefore(isCrossSigningVerified: boolean): void {\n        // It is critical that this value latches forward from false to true but\n        // never back to false to avoid a downgrade attack.\n        if (!this.crossSigningVerifiedBefore && isCrossSigningVerified) {\n            this.crossSigningVerifiedBefore = true;\n        }\n    }\n\n    public async signObject<T extends object>(data: T, type: string): Promise<T & { signatures: ISignatures }> {\n        if (!this.keys[type]) {\n            throw new Error(\"Attempted to sign with \" + type + \" key but no such key present\");\n        }\n        const [pubkey, signing] = await this.getCrossSigningKey(type);\n        try {\n            pkSign(data, signing, this.userId, pubkey);\n            return data as T & { signatures: ISignatures };\n        } finally {\n            signing.free();\n        }\n    }\n\n    public async signUser(key: CrossSigningInfo): Promise<CrossSigningKeyInfo | undefined> {\n        if (!this.keys.user_signing) {\n            logger.info(\"No user signing key: not signing user\");\n            return;\n        }\n        return this.signObject(key.keys.master, \"user_signing\");\n    }\n\n    public async signDevice(userId: string, device: DeviceInfo): Promise<ISignedKey | undefined> {\n        if (userId !== this.userId) {\n            throw new Error(`Trying to sign ${userId}'s device; can only sign our own device`);\n        }\n        if (!this.keys.self_signing) {\n            logger.info(\"No self signing key: not signing device\");\n            return;\n        }\n        return this.signObject<Omit<ISignedKey, \"signatures\">>(\n            {\n                algorithms: device.algorithms,\n                keys: device.keys,\n                device_id: device.deviceId,\n                user_id: userId,\n            },\n            \"self_signing\",\n        );\n    }\n\n    /**\n     * Check whether a given user is trusted.\n     *\n     * @param userCrossSigning - Cross signing info for user\n     *\n     * @returns\n     */\n    public checkUserTrust(userCrossSigning: CrossSigningInfo): UserTrustLevel {\n        // if we're checking our own key, then it's trusted if the master key\n        // and self-signing key match\n        if (\n            this.userId === userCrossSigning.userId &&\n            this.getId() &&\n            this.getId() === userCrossSigning.getId() &&\n            this.getId(\"self_signing\") &&\n            this.getId(\"self_signing\") === userCrossSigning.getId(\"self_signing\")\n        ) {\n            return new UserTrustLevel(true, true, this.firstUse);\n        }\n\n        if (!this.keys.user_signing) {\n            // If there's no user signing key, they can't possibly be verified.\n            // They may be TOFU trusted though.\n            return new UserTrustLevel(false, false, userCrossSigning.firstUse);\n        }\n\n        let userTrusted: boolean;\n        const userMaster = userCrossSigning.keys.master;\n        const uskId = this.getId(\"user_signing\")!;\n        try {\n            pkVerify(userMaster, uskId, this.userId);\n            userTrusted = true;\n        } catch {\n            userTrusted = false;\n        }\n        return new UserTrustLevel(userTrusted, userCrossSigning.crossSigningVerifiedBefore, userCrossSigning.firstUse);\n    }\n\n    /**\n     * Check whether a given device is trusted.\n     *\n     * @param userCrossSigning - Cross signing info for user\n     * @param device - The device to check\n     * @param localTrust - Whether the device is trusted locally\n     * @param trustCrossSignedDevices - Whether we trust cross signed devices\n     *\n     * @returns\n     */\n    public checkDeviceTrust(\n        userCrossSigning: CrossSigningInfo,\n        device: DeviceInfo,\n        localTrust: boolean,\n        trustCrossSignedDevices: boolean,\n    ): DeviceTrustLevel {\n        const userTrust = this.checkUserTrust(userCrossSigning);\n\n        const userSSK = userCrossSigning.keys.self_signing;\n        if (!userSSK) {\n            // if the user has no self-signing key then we cannot make any\n            // trust assertions about this device from cross-signing\n            return new DeviceTrustLevel(false, false, localTrust, trustCrossSignedDevices);\n        }\n\n        const deviceObj = deviceToObject(device, userCrossSigning.userId);\n        try {\n            // if we can verify the user's SSK from their master key...\n            pkVerify(userSSK, userCrossSigning.getId()!, userCrossSigning.userId);\n            // ...and this device's key from their SSK...\n            pkVerify(deviceObj, publicKeyFromKeyInfo(userSSK), userCrossSigning.userId);\n            // ...then we trust this device as much as far as we trust the user\n            return DeviceTrustLevel.fromUserTrustLevel(userTrust, localTrust, trustCrossSignedDevices);\n        } catch {\n            return new DeviceTrustLevel(false, false, localTrust, trustCrossSignedDevices);\n        }\n    }\n\n    /**\n     * @returns Cache callbacks\n     */\n    public getCacheCallbacks(): ICacheCallbacks {\n        return this.cacheCallbacks;\n    }\n}\n\ninterface DeviceObject extends IObject {\n    algorithms: string[];\n    keys: Record<string, string>;\n    device_id: string;\n    user_id: string;\n}\n\nfunction deviceToObject(device: DeviceInfo, userId: string): DeviceObject {\n    return {\n        algorithms: device.algorithms,\n        keys: device.keys,\n        device_id: device.deviceId,\n        user_id: userId,\n        signatures: device.signatures,\n    };\n}\n\nexport enum CrossSigningLevel {\n    MASTER = 4,\n    USER_SIGNING = 2,\n    SELF_SIGNING = 1,\n}\n\n/**\n * Represents the ways in which we trust a device.\n *\n * @deprecated Use {@link DeviceVerificationStatus}.\n */\nexport class DeviceTrustLevel extends DeviceVerificationStatus {\n    public constructor(\n        crossSigningVerified: boolean,\n        tofu: boolean,\n        localVerified: boolean,\n        trustCrossSignedDevices: boolean,\n        signedByOwner = false,\n    ) {\n        super({ crossSigningVerified, tofu, localVerified, trustCrossSignedDevices, signedByOwner });\n    }\n\n    public static fromUserTrustLevel(\n        userTrustLevel: UserTrustLevel,\n        localVerified: boolean,\n        trustCrossSignedDevices: boolean,\n    ): DeviceTrustLevel {\n        return new DeviceTrustLevel(\n            userTrustLevel.isCrossSigningVerified(),\n            userTrustLevel.isTofu(),\n            localVerified,\n            trustCrossSignedDevices,\n            true,\n        );\n    }\n\n    /**\n     * @returns true if this device is verified via cross signing\n     */\n    public isCrossSigningVerified(): boolean {\n        return this.crossSigningVerified;\n    }\n\n    /**\n     * @returns true if this device is verified locally\n     */\n    public isLocallyVerified(): boolean {\n        return this.localVerified;\n    }\n\n    /**\n     * @returns true if this device is trusted from a user's key\n     * that is trusted on first use\n     */\n    public isTofu(): boolean {\n        return this.tofu;\n    }\n}\n\nexport function createCryptoStoreCacheCallbacks(store: CryptoStore, olmDevice: OlmDevice): ICacheCallbacks {\n    return {\n        getCrossSigningKeyCache: async function (\n            type: keyof SecretStorePrivateKeys,\n            _expectedPublicKey: string,\n        ): Promise<Uint8Array> {\n            const key = await new Promise<any>((resolve) => {\n                store.doTxn(\"readonly\", [IndexedDBCryptoStore.STORE_ACCOUNT], (txn) => {\n                    store.getSecretStorePrivateKey(txn, resolve, type);\n                });\n            });\n\n            if (key && key.ciphertext) {\n                const pickleKey = Buffer.from(olmDevice.pickleKey);\n                const decrypted = await decryptAESSecretStorageItem(key, pickleKey, type);\n                return decodeBase64(decrypted);\n            } else {\n                return key;\n            }\n        },\n        storeCrossSigningKeyCache: async function (\n            type: keyof SecretStorePrivateKeys,\n            key?: Uint8Array,\n        ): Promise<void> {\n            if (!(key instanceof Uint8Array)) {\n                throw new Error(`storeCrossSigningKeyCache expects Uint8Array, got ${key}`);\n            }\n            const pickleKey = Buffer.from(olmDevice.pickleKey);\n            const encryptedKey = await encryptAESSecretStorageItem(encodeBase64(key), pickleKey, type);\n            return store.doTxn(\"readwrite\", [IndexedDBCryptoStore.STORE_ACCOUNT], (txn) => {\n                store.storeSecretStorePrivateKey(txn, type, encryptedKey);\n            });\n        },\n    };\n}\n\nexport type KeysDuringVerification = [[string, PkSigning], [string, PkSigning], [string, PkSigning], void];\n\n/**\n * Request cross-signing keys from another device during verification.\n *\n * @param baseApis - base Matrix API interface\n * @param userId - The user ID being verified\n * @param deviceId - The device ID being verified\n */\nexport async function requestKeysDuringVerification(\n    baseApis: MatrixClient,\n    userId: string,\n    deviceId: string,\n): Promise<KeysDuringVerification | void> {\n    // If this is a self-verification, ask the other party for keys\n    if (baseApis.getUserId() !== userId) {\n        return;\n    }\n    logger.log(\"Cross-signing: Self-verification done; requesting keys\");\n    // This happens asynchronously, and we're not concerned about waiting for\n    // it. We return here in order to test.\n    return new Promise<KeysDuringVerification | void>((resolve, reject) => {\n        const client = baseApis;\n        const original = client.crypto!.crossSigningInfo;\n\n        // We already have all of the infrastructure we need to validate and\n        // cache cross-signing keys, so instead of replicating that, here we set\n        // up callbacks that request them from the other device and call\n        // CrossSigningInfo.getCrossSigningKey() to validate/cache\n        const crossSigning = new CrossSigningInfo(\n            original.userId,\n            {\n                getCrossSigningKey: async (type): Promise<Uint8Array> => {\n                    logger.debug(\"Cross-signing: requesting secret\", type, deviceId);\n                    const { promise } = client.requestSecret(`m.cross_signing.${type}`, [deviceId]);\n                    const result = await promise;\n                    const decoded = decodeBase64(result);\n                    return Uint8Array.from(decoded);\n                },\n            },\n            original.getCacheCallbacks(),\n        );\n        crossSigning.keys = original.keys;\n\n        // XXX: get all keys out if we get one key out\n        // https://github.com/vector-im/element-web/issues/12604\n        // then change here to reject on the timeout\n        // Requests can be ignored, so don't wait around forever\n        const timeout = new Promise<void>((resolve) => {\n            setTimeout(resolve, KEY_REQUEST_TIMEOUT_MS, new Error(\"Timeout\"));\n        });\n\n        // also request and cache the key backup key\n        const backupKeyPromise = (async (): Promise<void> => {\n            const cachedKey = await client.crypto!.getSessionBackupPrivateKey();\n            if (!cachedKey) {\n                logger.info(\"No cached backup key found. Requesting...\");\n                const secretReq = client.requestSecret(\"m.megolm_backup.v1\", [deviceId]);\n                const base64Key = await secretReq.promise;\n                logger.info(\"Got key backup key, decoding...\");\n                const decodedKey = decodeBase64(base64Key);\n                logger.info(\"Decoded backup key, storing...\");\n                await client.crypto!.storeSessionBackupPrivateKey(Uint8Array.from(decodedKey));\n                logger.info(\"Backup key stored. Starting backup restore...\");\n                const backupInfo = await client.getKeyBackupVersion();\n                // no need to await for this - just let it go in the bg\n                client.restoreKeyBackupWithCache(undefined, undefined, backupInfo!).then(() => {\n                    logger.info(\"Backup restored.\");\n                });\n            }\n        })();\n\n        // We call getCrossSigningKey() for its side-effects\n        Promise.race<KeysDuringVerification | void>([\n            Promise.all([\n                crossSigning.getCrossSigningKey(\"master\"),\n                crossSigning.getCrossSigningKey(\"self_signing\"),\n                crossSigning.getCrossSigningKey(\"user_signing\"),\n                backupKeyPromise,\n            ]) as Promise<KeysDuringVerification>,\n            timeout,\n        ]).then(resolve, reject);\n    }).catch((e) => {\n        logger.warn(\"Cross-signing: failure while requesting keys:\", e);\n    });\n}\n"],"mappings":";;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAEA;AACA;AACA;;AAGA,SAAkBA,MAAM,EAAEC,QAAQ,QAAQ,aAAa;AACvD,SAASC,MAAM,QAAQ,cAAc;AACrC,SAASC,oBAAoB,QAAQ,2CAA2C;AAQhF,SAEIC,wBAAwB,EACxBC,sBAAsB,IAAIC,cAAc,QACrC,wBAAwB;AAC/B,SAASC,YAAY,EAAEC,YAAY,QAAQ,cAAc;AACzD,OAAOC,2BAA2B,MAAM,yCAAyC;AACjF,OAAOC,2BAA2B,MAAM,yCAAyC;;AAEjF;AACA,SAASJ,cAAc;AAEvB,IAAMK,sBAAsB,GAAG,IAAI,GAAG,EAAE;AAExC,SAASC,oBAAoBA,CAACC,OAA4B,EAAU;EAChE;EACA;EACA;EACA,OAAOC,MAAM,CAACC,MAAM,CAACF,OAAO,CAACG,IAAI,CAAC,CAAC,CAAC,CAAC;AACzC;AAaA,OAAO,MAAMC,gBAAgB,CAAC;EAU1B;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;EACWC,WAAWA,CACEC,MAAc,EAGhC;IAAA,IAFUC,SAA2B,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;IAAA,IAChCG,cAA+B,GAAAH,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;IAAA,KAF5BF,MAAc,GAAdA,MAAc;IAAA,KACtBC,SAA2B,GAA3BA,SAA2B;IAAA,KAC3BI,cAA+B,GAA/BA,cAA+B;IAAAC,eAAA,eApBQ,CAAC,CAAC;IAAAA,eAAA,mBACnC,IAAI;IACtB;IACA;IACA;IACA;IACA;IAAAA,eAAA,qCACqC,KAAK;EAcvC;EAEH,OAAcC,WAAWA,CAACC,GAAsB,EAAER,MAAc,EAAoB;IAChF,IAAMS,GAAG,GAAG,IAAIX,gBAAgB,CAACE,MAAM,CAAC;IACxC,KAAK,IAAMU,IAAI,IAAIF,GAAG,EAAE;MACpB,IAAIA,GAAG,CAACG,cAAc,CAACD,IAAI,CAAC,EAAE;QAC1B;QACAD,GAAG,CAACC,IAAI,CAAC,GAAGF,GAAG,CAACE,IAAI,CAAC;MACzB;IACJ;IACA,OAAOD,GAAG;EACd;EAEOG,SAASA,CAAA,EAAsB;IAClC,OAAO;MACHf,IAAI,EAAE,IAAI,CAACA,IAAI;MACfgB,QAAQ,EAAE,IAAI,CAACA,QAAQ;MACvBC,0BAA0B,EAAE,IAAI,CAACA;IACrC,CAAC;EACL;;EAEA;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;EACiBC,kBAAkBA,CAACC,IAAY,EAAEC,cAAuB,EAAgC;IAAA,IAAAC,KAAA;IAAA,OAAAC,iBAAA;MACjG,IAAMC,WAAW,GAAG,CAAC,QAAQ,EAAE,cAAc,EAAE,cAAc,CAAC,CAACC,OAAO,CAACL,IAAI,CAAC,IAAI,CAAC;MAEjF,IAAI,CAACE,KAAI,CAACjB,SAAS,CAACc,kBAAkB,EAAE;QACpC,MAAM,IAAIO,KAAK,CAAC,yCAAyC,CAAC;MAC9D;MAEA,IAAIL,cAAc,KAAKb,SAAS,EAAE;QAC9Ba,cAAc,GAAGC,KAAI,CAACK,KAAK,CAACP,IAAI,CAAE;MACtC;MAEA,SAASQ,WAAWA,CAACC,GAAsB,EAAmC;QAC1E,IAAI,CAACA,GAAG,EAAE;QACV,IAAMC,OAAO,GAAG,IAAIC,UAAU,CAACC,GAAG,CAACC,SAAS,CAAC,CAAC;QAC9C,IAAMC,SAAS,GAAGJ,OAAO,CAACK,cAAc,CAACN,GAAG,CAAC;QAC7C,IAAIK,SAAS,KAAKb,cAAc,EAAE;UAC9B,OAAO,CAACa,SAAS,EAAEJ,OAAO,CAAC;QAC/B;QACAA,OAAO,CAACM,IAAI,CAAC,CAAC;MAClB;MAEA,IAAIC,OAA0B,GAAG,IAAI;MACrC,IAAIf,KAAI,CAACb,cAAc,CAAC6B,uBAAuB,IAAId,WAAW,EAAE;QAC5Da,OAAO,SAASf,KAAI,CAACb,cAAc,CAAC6B,uBAAuB,CAAClB,IAAI,EAAEC,cAAc,CAAC;MACrF;MAEA,IAAMkB,WAAW,GAAGX,WAAW,CAACS,OAAO,CAAC;MACxC,IAAIE,WAAW,EAAE;QACb,OAAOA,WAAW;MACtB;MAEAF,OAAO,SAASf,KAAI,CAACjB,SAAS,CAACc,kBAAkB,CAACC,IAAI,EAAEC,cAAc,CAAC;MACvE,IAAMmB,MAAM,GAAGZ,WAAW,CAACS,OAAO,CAAC;MACnC,IAAIG,MAAM,EAAE;QACR,IAAIlB,KAAI,CAACb,cAAc,CAACgC,yBAAyB,IAAIjB,WAAW,EAAE;UAC9D,MAAMF,KAAI,CAACb,cAAc,CAACgC,yBAAyB,CAACrB,IAAI,EAAEiB,OAAQ,CAAC;QACvE;QACA,OAAOG,MAAM;MACjB;;MAEA;MACA,IAAI,CAACH,OAAO,EAAE;QACV,MAAM,IAAIX,KAAK,CAAC,kCAAkC,GAAGN,IAAI,GAAG,kBAAkB,CAAC;MACnF;;MAEA;MACA,MAAM,IAAIM,KAAK,CAAC,WAAW,GAAGN,IAAI,GAAG,iDAAiD,CAAC;IAAC;EAC5F;;EAEA;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;EACiBsB,uBAAuBA,CAChCC,aAAsC,EACA;IAAA,OAAApB,iBAAA;MACtC;MACA,IAAMqB,MAAM,GAAG,OAAOD,aAAa,CAACE,QAAQ,CAAC,wBAAwB,CAAC,KAAK,CAAC,CAAC;MAC7E;MACA,SAASC,SAASA,CAACC,CAA8C,EAAQ;QACrE,KAAK,IAAMC,CAAC,IAAIjD,MAAM,CAACE,IAAI,CAAC2C,MAAM,CAAC,EAAE;UACjC,IAAI,CAACG,CAAC,CAACC,CAAC,CAAC,EAAE;YACP,OAAOJ,MAAM,CAACI,CAAC,CAAC;UACpB;QACJ;MACJ;MACA,KAAK,IAAM5B,KAAI,IAAI,CAAC,cAAc,EAAE,cAAc,CAAC,EAAE;QACjD0B,SAAS,CAAC,OAAOH,aAAa,CAACE,QAAQ,oBAAAI,MAAA,CAAoB7B,KAAI,CAAE,CAAC,KAAK,CAAC,CAAC,CAAC;MAC9E;MACA,OAAOrB,MAAM,CAACE,IAAI,CAAC2C,MAAM,CAAC,CAACrC,MAAM,GAAGqC,MAAM,GAAG,IAAI;IAAC;EACtD;;EAEA;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;EACI,OAAoBM,oBAAoBA,CACpCjD,IAA6B,EAC7B0C,aAAsC,EACzB;IAAA,OAAApB,iBAAA;MACb,KAAK,IAAM,CAACH,MAAI,EAAE+B,UAAU,CAAC,IAAIlD,IAAI,EAAE;QACnC,IAAMmD,UAAU,GAAG3D,YAAY,CAAC0D,UAAU,CAAC;QAC3C,MAAMR,aAAa,CAACU,KAAK,oBAAAJ,MAAA,CAAoB7B,MAAI,GAAIgC,UAAU,CAAC;MACpE;IAAC;EACL;;EAEA;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;EACI,OAAoBE,oBAAoBA,CACpClC,IAAY,EACZuB,aAAsC,EACZ;IAAA,OAAApB,iBAAA;MAC1B,IAAM6B,UAAU,SAAST,aAAa,CAACY,GAAG,oBAAAN,MAAA,CAAoB7B,IAAI,CAAE,CAAC;MACrE,IAAI,CAACgC,UAAU,EAAE;QACb,OAAO,IAAI;MACf;MACA,OAAO5D,YAAY,CAAC4D,UAAU,CAAC;IAAC;EACpC;;EAEA;AACJ;AACA;AACA;AACA;AACA;AACA;EACiBI,kBAAkBA,CAACpC,IAAa,EAAoB;IAAA,IAAAqC,MAAA;IAAA,OAAAlC,iBAAA;MAC7D,IAAMd,cAAc,GAAGgD,MAAI,CAAChD,cAAc;MAC1C,IAAI,CAACA,cAAc,EAAE,OAAO,KAAK;MACjC,IAAMiD,KAAK,GAAGtC,IAAI,GAAG,CAACA,IAAI,CAAC,GAAG,CAAC,QAAQ,EAAE,cAAc,EAAE,cAAc,CAAC;MACxE,KAAK,IAAMuC,CAAC,IAAID,KAAK,EAAE;QAAA,IAAAE,qBAAA;QACnB,IAAI,SAAAA,qBAAA,GAAQnD,cAAc,CAAC6B,uBAAuB,cAAAsB,qBAAA,uBAAtCA,qBAAA,CAAAC,IAAA,CAAApD,cAAc,EAA2BkD,CAAC,CAAC,CAAC,EAAE;UACtD,OAAO,KAAK;QAChB;MACJ;MACA,OAAO,IAAI;IAAC;EAChB;;EAEA;AACJ;AACA;AACA;AACA;EACiBG,4BAA4BA,CAAA,EAAqC;IAAA,IAAAC,MAAA;IAAA,OAAAxC,iBAAA;MAC1E,IAAMtB,IAAI,GAAG,IAAI+D,GAAG,CAAqB,CAAC;MAC1C,IAAMvD,cAAc,GAAGsD,MAAI,CAACtD,cAAc;MAC1C,IAAI,CAACA,cAAc,EAAE,OAAOR,IAAI;MAChC,KAAK,IAAMmB,MAAI,IAAI,CAAC,QAAQ,EAAE,cAAc,EAAE,cAAc,CAAC,EAAE;QAAA,IAAA6C,sBAAA;QAC3D,IAAMC,OAAO,UAAAD,sBAAA,GAASxD,cAAc,CAAC6B,uBAAuB,cAAA2B,sBAAA,uBAAtCA,sBAAA,CAAAJ,IAAA,CAAApD,cAAc,EAA2BW,MAAI,CAAC;QACpE,IAAI,CAAC8C,OAAO,EAAE;UACV;QACJ;QACAjE,IAAI,CAACkE,GAAG,CAAC/C,MAAI,EAAE8C,OAAO,CAAC;MAC3B;MACA,OAAOjE,IAAI;IAAC;EAChB;;EAEA;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;EACW0B,KAAKA,CAAA,EAAiC;IAAA,IAAhCP,IAAI,GAAAd,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,QAAQ;IACxB,IAAI,CAAC,IAAI,CAACL,IAAI,CAACmB,IAAI,CAAC,EAAE,OAAO,IAAI;IACjC,IAAMtB,OAAO,GAAG,IAAI,CAACG,IAAI,CAACmB,IAAI,CAAC;IAC/B,OAAOvB,oBAAoB,CAACC,OAAO,CAAC;EACxC;;EAEA;AACJ;AACA;AACA;AACA;AACA;AACA;EACiBsE,SAASA,CAACC,KAAyB,EAAiB;IAAA,IAAAC,MAAA;IAAA,OAAA/C,iBAAA;MAC7D,IAAI,CAAC+C,MAAI,CAACjE,SAAS,CAACkE,oBAAoB,EAAE;QACtC,MAAM,IAAI7C,KAAK,CAAC,2CAA2C,CAAC;MAChE;;MAEA;MACA,IAAI2C,KAAK,KAAK7D,SAAS,IAAI6D,KAAK,GAAGG,iBAAiB,CAACC,MAAM,IAAI,CAACH,MAAI,CAACrE,IAAI,CAACyE,MAAM,EAAE;QAC9EL,KAAK,GAAGG,iBAAiB,CAACC,MAAM,GAAGD,iBAAiB,CAACG,YAAY,GAAGH,iBAAiB,CAACI,YAAY;MACtG,CAAC,MAAM,IAAIP,KAAK,KAAM,CAAuB,EAAE;QAC3C;MACJ;MAEA,IAAMQ,WAAuC,GAAG,CAAC,CAAC;MAClD,IAAM5E,IAAyC,GAAG,CAAC,CAAC;MACpD,IAAI6E,aAAoC;MACxC,IAAIC,SAA6B;MAEjC,IAAI;QACA,IAAIV,KAAK,GAAGG,iBAAiB,CAACC,MAAM,EAAE;UAClCK,aAAa,GAAG,IAAI/C,UAAU,CAACC,GAAG,CAACC,SAAS,CAAC,CAAC;UAC9C4C,WAAW,CAACH,MAAM,GAAGI,aAAa,CAACE,aAAa,CAAC,CAAC;UAClDD,SAAS,GAAGD,aAAa,CAAC3C,cAAc,CAAC0C,WAAW,CAACH,MAAM,CAAC;UAC5DzE,IAAI,CAACyE,MAAM,GAAG;YACVO,OAAO,EAAEX,MAAI,CAAClE,MAAM;YACpB8E,KAAK,EAAE,CAAC,QAAQ,CAAC;YACjBjF,IAAI,EAAE;cACF,CAAC,UAAU,GAAG8E,SAAS,GAAGA;YAC9B;UACJ,CAAC;QACL,CAAC,MAAM;UACH,CAACA,SAAS,EAAED,aAAa,CAAC,SAASR,MAAI,CAACnD,kBAAkB,CAAC,QAAQ,CAAC;QACxE;QAEA,IAAIkD,KAAK,GAAGG,iBAAiB,CAACI,YAAY,EAAE;UACxC,IAAMO,UAAU,GAAG,IAAIpD,UAAU,CAACC,GAAG,CAACC,SAAS,CAAC,CAAC;UACjD,IAAI;YACA4C,WAAW,CAACO,YAAY,GAAGD,UAAU,CAACH,aAAa,CAAC,CAAC;YACrD,IAAMK,MAAM,GAAGF,UAAU,CAAChD,cAAc,CAAC0C,WAAW,CAACO,YAAY,CAAC;YAClEnF,IAAI,CAACmF,YAAY,GAAG;cAChBH,OAAO,EAAEX,MAAI,CAAClE,MAAM;cACpB8E,KAAK,EAAE,CAAC,cAAc,CAAC;cACvBjF,IAAI,EAAE;gBACF,CAAC,UAAU,GAAGoF,MAAM,GAAGA;cAC3B;YACJ,CAAC;YACDpG,MAAM,CAACgB,IAAI,CAACmF,YAAY,EAAEN,aAAa,EAAER,MAAI,CAAClE,MAAM,EAAE2E,SAAS,CAAC;UACpE,CAAC,SAAS;YACNI,UAAU,CAAC/C,IAAI,CAAC,CAAC;UACrB;QACJ;QAEA,IAAIiC,KAAK,GAAGG,iBAAiB,CAACG,YAAY,EAAE;UACxC,IAAMW,UAAU,GAAG,IAAIvD,UAAU,CAACC,GAAG,CAACC,SAAS,CAAC,CAAC;UACjD,IAAI;YACA4C,WAAW,CAACU,YAAY,GAAGD,UAAU,CAACN,aAAa,CAAC,CAAC;YACrD,IAAMQ,MAAM,GAAGF,UAAU,CAACnD,cAAc,CAAC0C,WAAW,CAACU,YAAY,CAAC;YAClEtF,IAAI,CAACsF,YAAY,GAAG;cAChBN,OAAO,EAAEX,MAAI,CAAClE,MAAM;cACpB8E,KAAK,EAAE,CAAC,cAAc,CAAC;cACvBjF,IAAI,EAAE;gBACF,CAAC,UAAU,GAAGuF,MAAM,GAAGA;cAC3B;YACJ,CAAC;YACDvG,MAAM,CAACgB,IAAI,CAACsF,YAAY,EAAET,aAAa,EAAER,MAAI,CAAClE,MAAM,EAAE2E,SAAS,CAAC;UACpE,CAAC,SAAS;YACNO,UAAU,CAAClD,IAAI,CAAC,CAAC;UACrB;QACJ;QAEArC,MAAM,CAAC0F,MAAM,CAACnB,MAAI,CAACrE,IAAI,EAAEA,IAAI,CAAC;QAC9BqE,MAAI,CAACjE,SAAS,CAACkE,oBAAoB,CAACM,WAAW,CAAC;MACpD,CAAC,SAAS;QACN,IAAIC,aAAa,EAAE;UACfA,aAAa,CAAC1C,IAAI,CAAC,CAAC;QACxB;MACJ;IAAC;EACL;;EAEA;AACJ;AACA;EACWsD,SAASA,CAAA,EAAS;IACrB,IAAI,CAACzF,IAAI,GAAG,CAAC,CAAC;EAClB;EAEO0F,OAAOA,CAAC1F,IAAyC,EAAQ;IAC5D,IAAM2F,WAAgD,GAAG,CAAC,CAAC;IAC3D,IAAI3F,IAAI,CAACyE,MAAM,EAAE;MACb,IAAIzE,IAAI,CAACyE,MAAM,CAACO,OAAO,KAAK,IAAI,CAAC7E,MAAM,EAAE;QACrC,IAAMyF,KAAK,GAAG,qBAAqB,GAAG5F,IAAI,CAACyE,MAAM,CAACO,OAAO,GAAG,sBAAsB,GAAG,IAAI,CAAC7E,MAAM;QAChGjB,MAAM,CAAC0G,KAAK,CAACA,KAAK,CAAC;QACnB,MAAM,IAAInE,KAAK,CAACmE,KAAK,CAAC;MAC1B;MACA,IAAI,CAAC,IAAI,CAAC5F,IAAI,CAACyE,MAAM,EAAE;QACnB;QACA,IAAI,CAACzD,QAAQ,GAAG,IAAI;MACxB,CAAC,MAAM,IAAIpB,oBAAoB,CAACI,IAAI,CAACyE,MAAM,CAAC,KAAK,IAAI,CAAC/C,KAAK,CAAC,CAAC,EAAE;QAC3D;QACA,IAAI,CAACV,QAAQ,GAAG,KAAK;MACzB,CAAC,CAAC;MACF2E,WAAW,CAAClB,MAAM,GAAGzE,IAAI,CAACyE,MAAM;IACpC,CAAC,MAAM,IAAI,IAAI,CAACzE,IAAI,CAACyE,MAAM,EAAE;MACzBkB,WAAW,CAAClB,MAAM,GAAG,IAAI,CAACzE,IAAI,CAACyE,MAAM;IACzC,CAAC,MAAM;MACH,MAAM,IAAIhD,KAAK,CAAC,sDAAsD,CAAC;IAC3E;IACA,IAAMoE,SAAS,GAAGjG,oBAAoB,CAAC+F,WAAW,CAAClB,MAAM,CAAC;;IAE1D;IACA,IAAIzE,IAAI,CAACsF,YAAY,EAAE;MACnB,IAAItF,IAAI,CAACsF,YAAY,CAACN,OAAO,KAAK,IAAI,CAAC7E,MAAM,EAAE;QAC3C,IAAMyF,MAAK,GAAG,qBAAqB,GAAG5F,IAAI,CAACyE,MAAM,CAACO,OAAO,GAAG,4BAA4B,GAAG,IAAI,CAAC7E,MAAM;QACtGjB,MAAM,CAAC0G,KAAK,CAACA,MAAK,CAAC;QACnB,MAAM,IAAInE,KAAK,CAACmE,MAAK,CAAC;MAC1B;MACA,IAAI;QACA3G,QAAQ,CAACe,IAAI,CAACsF,YAAY,EAAEO,SAAS,EAAE,IAAI,CAAC1F,MAAM,CAAC;MACvD,CAAC,CAAC,OAAO2F,CAAC,EAAE;QACR5G,MAAM,CAAC0G,KAAK,CAAC,uCAAuC,CAAC;QACrD;QACA,MAAME,CAAC;MACX;IACJ;IACA,IAAI9F,IAAI,CAACmF,YAAY,EAAE;MACnB,IAAInF,IAAI,CAACmF,YAAY,CAACH,OAAO,KAAK,IAAI,CAAC7E,MAAM,EAAE;QAC3C,IAAMyF,OAAK,GAAG,qBAAqB,GAAG5F,IAAI,CAACyE,MAAM,CAACO,OAAO,GAAG,4BAA4B,GAAG,IAAI,CAAC7E,MAAM;QACtGjB,MAAM,CAAC0G,KAAK,CAACA,OAAK,CAAC;QACnB,MAAM,IAAInE,KAAK,CAACmE,OAAK,CAAC;MAC1B;MACA,IAAI;QACA3G,QAAQ,CAACe,IAAI,CAACmF,YAAY,EAAEU,SAAS,EAAE,IAAI,CAAC1F,MAAM,CAAC;MACvD,CAAC,CAAC,OAAO2F,CAAC,EAAE;QACR5G,MAAM,CAAC0G,KAAK,CAAC,uCAAuC,CAAC;QACrD;QACA,MAAME,CAAC;MACX;IACJ;;IAEA;IACA,IAAI9F,IAAI,CAACyE,MAAM,EAAE;MACb,IAAI,CAACzE,IAAI,CAACyE,MAAM,GAAGzE,IAAI,CAACyE,MAAM;MAC9B;MACA,OAAO,IAAI,CAACzE,IAAI,CAAC,cAAc,CAAC;MAChC,OAAO,IAAI,CAACA,IAAI,CAAC,cAAc,CAAC;IACpC;IACA,IAAIA,IAAI,CAACmF,YAAY,EAAE;MACnB,IAAI,CAACnF,IAAI,CAACmF,YAAY,GAAGnF,IAAI,CAACmF,YAAY;IAC9C;IACA,IAAInF,IAAI,CAACsF,YAAY,EAAE;MACnB,IAAI,CAACtF,IAAI,CAACsF,YAAY,GAAGtF,IAAI,CAACsF,YAAY;IAC9C;EACJ;EAEOS,gCAAgCA,CAACC,sBAA+B,EAAQ;IAC3E;IACA;IACA,IAAI,CAAC,IAAI,CAAC/E,0BAA0B,IAAI+E,sBAAsB,EAAE;MAC5D,IAAI,CAAC/E,0BAA0B,GAAG,IAAI;IAC1C;EACJ;EAEagF,UAAUA,CAAmBC,IAAO,EAAE/E,IAAY,EAA4C;IAAA,IAAAgF,MAAA;IAAA,OAAA7E,iBAAA;MACvG,IAAI,CAAC6E,MAAI,CAACnG,IAAI,CAACmB,IAAI,CAAC,EAAE;QAClB,MAAM,IAAIM,KAAK,CAAC,yBAAyB,GAAGN,IAAI,GAAG,8BAA8B,CAAC;MACtF;MACA,IAAM,CAACiF,MAAM,EAAEvE,OAAO,CAAC,SAASsE,MAAI,CAACjF,kBAAkB,CAACC,IAAI,CAAC;MAC7D,IAAI;QACAnC,MAAM,CAACkH,IAAI,EAAErE,OAAO,EAAEsE,MAAI,CAAChG,MAAM,EAAEiG,MAAM,CAAC;QAC1C,OAAOF,IAAI;MACf,CAAC,SAAS;QACNrE,OAAO,CAACM,IAAI,CAAC,CAAC;MAClB;IAAC;EACL;EAEakE,QAAQA,CAACzE,GAAqB,EAA4C;IAAA,IAAA0E,MAAA;IAAA,OAAAhF,iBAAA;MACnF,IAAI,CAACgF,MAAI,CAACtG,IAAI,CAACsF,YAAY,EAAE;QACzBpG,MAAM,CAACqH,IAAI,CAAC,uCAAuC,CAAC;QACpD;MACJ;MACA,OAAOD,MAAI,CAACL,UAAU,CAACrE,GAAG,CAAC5B,IAAI,CAACyE,MAAM,EAAE,cAAc,CAAC;IAAC;EAC5D;EAEa+B,UAAUA,CAACrG,MAAc,EAAEsG,MAAkB,EAAmC;IAAA,IAAAC,MAAA;IAAA,OAAApF,iBAAA;MACzF,IAAInB,MAAM,KAAKuG,MAAI,CAACvG,MAAM,EAAE;QACxB,MAAM,IAAIsB,KAAK,mBAAAuB,MAAA,CAAmB7C,MAAM,4CAAyC,CAAC;MACtF;MACA,IAAI,CAACuG,MAAI,CAAC1G,IAAI,CAACmF,YAAY,EAAE;QACzBjG,MAAM,CAACqH,IAAI,CAAC,yCAAyC,CAAC;QACtD;MACJ;MACA,OAAOG,MAAI,CAACT,UAAU,CAClB;QACIU,UAAU,EAAEF,MAAM,CAACE,UAAU;QAC7B3G,IAAI,EAAEyG,MAAM,CAACzG,IAAI;QACjB4G,SAAS,EAAEH,MAAM,CAACI,QAAQ;QAC1B7B,OAAO,EAAE7E;MACb,CAAC,EACD,cACJ,CAAC;IAAC;EACN;;EAEA;AACJ;AACA;AACA;AACA;AACA;AACA;EACW2G,cAAcA,CAACC,gBAAkC,EAAkB;IACtE;IACA;IACA,IACI,IAAI,CAAC5G,MAAM,KAAK4G,gBAAgB,CAAC5G,MAAM,IACvC,IAAI,CAACuB,KAAK,CAAC,CAAC,IACZ,IAAI,CAACA,KAAK,CAAC,CAAC,KAAKqF,gBAAgB,CAACrF,KAAK,CAAC,CAAC,IACzC,IAAI,CAACA,KAAK,CAAC,cAAc,CAAC,IAC1B,IAAI,CAACA,KAAK,CAAC,cAAc,CAAC,KAAKqF,gBAAgB,CAACrF,KAAK,CAAC,cAAc,CAAC,EACvE;MACE,OAAO,IAAIpC,cAAc,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC0B,QAAQ,CAAC;IACxD;IAEA,IAAI,CAAC,IAAI,CAAChB,IAAI,CAACsF,YAAY,EAAE;MACzB;MACA;MACA,OAAO,IAAIhG,cAAc,CAAC,KAAK,EAAE,KAAK,EAAEyH,gBAAgB,CAAC/F,QAAQ,CAAC;IACtE;IAEA,IAAIgG,WAAoB;IACxB,IAAMC,UAAU,GAAGF,gBAAgB,CAAC/G,IAAI,CAACyE,MAAM;IAC/C,IAAMyC,KAAK,GAAG,IAAI,CAACxF,KAAK,CAAC,cAAc,CAAE;IACzC,IAAI;MACAzC,QAAQ,CAACgI,UAAU,EAAEC,KAAK,EAAE,IAAI,CAAC/G,MAAM,CAAC;MACxC6G,WAAW,GAAG,IAAI;IACtB,CAAC,CAAC,OAAAG,OAAA,EAAM;MACJH,WAAW,GAAG,KAAK;IACvB;IACA,OAAO,IAAI1H,cAAc,CAAC0H,WAAW,EAAED,gBAAgB,CAAC9F,0BAA0B,EAAE8F,gBAAgB,CAAC/F,QAAQ,CAAC;EAClH;;EAEA;AACJ;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;EACWoG,gBAAgBA,CACnBL,gBAAkC,EAClCN,MAAkB,EAClBY,UAAmB,EACnBC,uBAAgC,EAChB;IAChB,IAAMC,SAAS,GAAG,IAAI,CAACT,cAAc,CAACC,gBAAgB,CAAC;IAEvD,IAAMS,OAAO,GAAGT,gBAAgB,CAAC/G,IAAI,CAACmF,YAAY;IAClD,IAAI,CAACqC,OAAO,EAAE;MACV;MACA;MACA,OAAO,IAAIC,gBAAgB,CAAC,KAAK,EAAE,KAAK,EAAEJ,UAAU,EAAEC,uBAAuB,CAAC;IAClF;IAEA,IAAMI,SAAS,GAAGC,cAAc,CAAClB,MAAM,EAAEM,gBAAgB,CAAC5G,MAAM,CAAC;IACjE,IAAI;MACA;MACAlB,QAAQ,CAACuI,OAAO,EAAET,gBAAgB,CAACrF,KAAK,CAAC,CAAC,EAAGqF,gBAAgB,CAAC5G,MAAM,CAAC;MACrE;MACAlB,QAAQ,CAACyI,SAAS,EAAE9H,oBAAoB,CAAC4H,OAAO,CAAC,EAAET,gBAAgB,CAAC5G,MAAM,CAAC;MAC3E;MACA,OAAOsH,gBAAgB,CAACG,kBAAkB,CAACL,SAAS,EAAEF,UAAU,EAAEC,uBAAuB,CAAC;IAC9F,CAAC,CAAC,OAAAO,QAAA,EAAM;MACJ,OAAO,IAAIJ,gBAAgB,CAAC,KAAK,EAAE,KAAK,EAAEJ,UAAU,EAAEC,uBAAuB,CAAC;IAClF;EACJ;;EAEA;AACJ;AACA;EACWQ,iBAAiBA,CAAA,EAAoB;IACxC,OAAO,IAAI,CAACtH,cAAc;EAC9B;AACJ;AASA,SAASmH,cAAcA,CAAClB,MAAkB,EAAEtG,MAAc,EAAgB;EACtE,OAAO;IACHwG,UAAU,EAAEF,MAAM,CAACE,UAAU;IAC7B3G,IAAI,EAAEyG,MAAM,CAACzG,IAAI;IACjB4G,SAAS,EAAEH,MAAM,CAACI,QAAQ;IAC1B7B,OAAO,EAAE7E,MAAM;IACf4H,UAAU,EAAEtB,MAAM,CAACsB;EACvB,CAAC;AACL;AAEA,WAAYxD,iBAAiB,0BAAjBA,iBAAiB;EAAjBA,iBAAiB,CAAjBA,iBAAiB;EAAjBA,iBAAiB,CAAjBA,iBAAiB;EAAjBA,iBAAiB,CAAjBA,iBAAiB;EAAA,OAAjBA,iBAAiB;AAAA;;AAM7B;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMkD,gBAAgB,SAASrI,wBAAwB,CAAC;EACpDc,WAAWA,CACd8H,oBAA6B,EAC7BC,IAAa,EACbC,aAAsB,EACtBZ,uBAAgC,EAElC;IAAA,IADEa,aAAa,GAAA9H,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,KAAK;IAErB,KAAK,CAAC;MAAE2H,oBAAoB;MAAEC,IAAI;MAAEC,aAAa;MAAEZ,uBAAuB;MAAEa;IAAc,CAAC,CAAC;EAChG;EAEA,OAAcP,kBAAkBA,CAC5BQ,cAA8B,EAC9BF,aAAsB,EACtBZ,uBAAgC,EAChB;IAChB,OAAO,IAAIG,gBAAgB,CACvBW,cAAc,CAACpC,sBAAsB,CAAC,CAAC,EACvCoC,cAAc,CAACC,MAAM,CAAC,CAAC,EACvBH,aAAa,EACbZ,uBAAuB,EACvB,IACJ,CAAC;EACL;;EAEA;AACJ;AACA;EACWtB,sBAAsBA,CAAA,EAAY;IACrC,OAAO,IAAI,CAACgC,oBAAoB;EACpC;;EAEA;AACJ;AACA;EACWM,iBAAiBA,CAAA,EAAY;IAChC,OAAO,IAAI,CAACJ,aAAa;EAC7B;;EAEA;AACJ;AACA;AACA;EACWG,MAAMA,CAAA,EAAY;IACrB,OAAO,IAAI,CAACJ,IAAI;EACpB;AACJ;AAEA,OAAO,SAASM,+BAA+BA,CAACnF,KAAkB,EAAEoF,SAAoB,EAAmB;EACvG,OAAO;IACHnG,uBAAuB;MAAA,IAAAoG,wBAAA,GAAAnH,iBAAA,CAAE,WACrBH,IAAkC,EAClCuH,kBAA0B,EACP;QACnB,IAAM9G,GAAG,SAAS,IAAI+G,OAAO,CAAOC,OAAO,IAAK;UAC5CxF,KAAK,CAACyF,KAAK,CAAC,UAAU,EAAE,CAAC1J,oBAAoB,CAAC2J,aAAa,CAAC,EAAGC,GAAG,IAAK;YACnE3F,KAAK,CAAC4F,wBAAwB,CAACD,GAAG,EAAEH,OAAO,EAAEzH,IAAI,CAAC;UACtD,CAAC,CAAC;QACN,CAAC,CAAC;QAEF,IAAIS,GAAG,IAAIA,GAAG,CAACqH,UAAU,EAAE;UACvB,IAAMC,SAAS,GAAGC,MAAM,CAACC,IAAI,CAACZ,SAAS,CAACU,SAAS,CAAC;UAClD,IAAMG,SAAS,SAAS3J,2BAA2B,CAACkC,GAAG,EAAEsH,SAAS,EAAE/H,IAAI,CAAC;UACzE,OAAO5B,YAAY,CAAC8J,SAAS,CAAC;QAClC,CAAC,MAAM;UACH,OAAOzH,GAAG;QACd;MACJ,CAAC;MAAA,SAjBDS,uBAAuBA,CAAAiH,EAAA,EAAAC,GAAA;QAAA,OAAAd,wBAAA,CAAAe,KAAA,OAAAnJ,SAAA;MAAA;MAAA,OAAvBgC,uBAAuB;IAAA,GAiBtB;IACDG,yBAAyB;MAAA,IAAAiH,0BAAA,GAAAnI,iBAAA,CAAE,WACvBH,IAAkC,EAClCS,GAAgB,EACH;QACb,IAAI,EAAEA,GAAG,YAAY8H,UAAU,CAAC,EAAE;UAC9B,MAAM,IAAIjI,KAAK,sDAAAuB,MAAA,CAAsDpB,GAAG,CAAE,CAAC;QAC/E;QACA,IAAMsH,SAAS,GAAGC,MAAM,CAACC,IAAI,CAACZ,SAAS,CAACU,SAAS,CAAC;QAClD,IAAMS,YAAY,SAASlK,2BAA2B,CAACD,YAAY,CAACoC,GAAG,CAAC,EAAEsH,SAAS,EAAE/H,IAAI,CAAC;QAC1F,OAAOiC,KAAK,CAACyF,KAAK,CAAC,WAAW,EAAE,CAAC1J,oBAAoB,CAAC2J,aAAa,CAAC,EAAGC,GAAG,IAAK;UAC3E3F,KAAK,CAACwG,0BAA0B,CAACb,GAAG,EAAE5H,IAAI,EAAEwI,YAAY,CAAC;QAC7D,CAAC,CAAC;MACN,CAAC;MAAA,SAZDnH,yBAAyBA,CAAAqH,GAAA,EAAAC,GAAA;QAAA,OAAAL,0BAAA,CAAAD,KAAA,OAAAnJ,SAAA;MAAA;MAAA,OAAzBmC,yBAAyB;IAAA;EAa7B,CAAC;AACL;AAIA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,gBAAsBuH,6BAA6BA,CAAAC,GAAA,EAAAC,GAAA,EAAAC,GAAA;EAAA,OAAAC,8BAAA,CAAAX,KAAA,OAAAnJ,SAAA;AAAA;AA4ElD,SAAA8J,+BAAA;EAAAA,8BAAA,GAAA7I,iBAAA,CA5EM,WACH8I,QAAsB,EACtBjK,MAAc,EACd0G,QAAgB,EACsB;IACtC;IACA,IAAIuD,QAAQ,CAACC,SAAS,CAAC,CAAC,KAAKlK,MAAM,EAAE;MACjC;IACJ;IACAjB,MAAM,CAACoL,GAAG,CAAC,wDAAwD,CAAC;IACpE;IACA;IACA,OAAO,IAAI3B,OAAO,CAAgC,CAACC,OAAO,EAAE2B,MAAM,KAAK;MACnE,IAAMC,MAAM,GAAGJ,QAAQ;MACvB,IAAMK,QAAQ,GAAGD,MAAM,CAACE,MAAM,CAAEC,gBAAgB;;MAEhD;MACA;MACA;MACA;MACA,IAAMC,YAAY,GAAG,IAAI3K,gBAAgB,CACrCwK,QAAQ,CAACtK,MAAM,EACf;QACIe,kBAAkB;UAAA,IAAA2J,mBAAA,GAAAvJ,iBAAA,CAAE,WAAOH,IAAI,EAA0B;YACrDjC,MAAM,CAAC4L,KAAK,CAAC,kCAAkC,EAAE3J,IAAI,EAAE0F,QAAQ,CAAC;YAChE,IAAM;cAAEkE;YAAQ,CAAC,GAAGP,MAAM,CAACQ,aAAa,oBAAAhI,MAAA,CAAoB7B,IAAI,GAAI,CAAC0F,QAAQ,CAAC,CAAC;YAC/E,IAAMtE,MAAM,SAASwI,OAAO;YAC5B,IAAME,OAAO,GAAG1L,YAAY,CAACgD,MAAM,CAAC;YACpC,OAAOmH,UAAU,CAACN,IAAI,CAAC6B,OAAO,CAAC;UACnC,CAAC;UAAA,SAND/J,kBAAkBA,CAAAgK,GAAA;YAAA,OAAAL,mBAAA,CAAArB,KAAA,OAAAnJ,SAAA;UAAA;UAAA,OAAlBa,kBAAkB;QAAA;MAOtB,CAAC,EACDuJ,QAAQ,CAAC3C,iBAAiB,CAAC,CAC/B,CAAC;MACD8C,YAAY,CAAC5K,IAAI,GAAGyK,QAAQ,CAACzK,IAAI;;MAEjC;MACA;MACA;MACA;MACA,IAAMmL,OAAO,GAAG,IAAIxC,OAAO,CAAQC,OAAO,IAAK;QAC3CwC,UAAU,CAACxC,OAAO,EAAEjJ,sBAAsB,EAAE,IAAI8B,KAAK,CAAC,SAAS,CAAC,CAAC;MACrE,CAAC,CAAC;;MAEF;MACA,IAAM4J,gBAAgB,GAAG/J,iBAAA,CAAC,aAA2B;QACjD,IAAMgK,SAAS,SAASd,MAAM,CAACE,MAAM,CAAEa,0BAA0B,CAAC,CAAC;QACnE,IAAI,CAACD,SAAS,EAAE;UACZpM,MAAM,CAACqH,IAAI,CAAC,2CAA2C,CAAC;UACxD,IAAMiF,SAAS,GAAGhB,MAAM,CAACQ,aAAa,CAAC,oBAAoB,EAAE,CAACnE,QAAQ,CAAC,CAAC;UACxE,IAAM4E,SAAS,SAASD,SAAS,CAACT,OAAO;UACzC7L,MAAM,CAACqH,IAAI,CAAC,iCAAiC,CAAC;UAC9C,IAAMmF,UAAU,GAAGnM,YAAY,CAACkM,SAAS,CAAC;UAC1CvM,MAAM,CAACqH,IAAI,CAAC,gCAAgC,CAAC;UAC7C,MAAMiE,MAAM,CAACE,MAAM,CAAEiB,4BAA4B,CAACjC,UAAU,CAACN,IAAI,CAACsC,UAAU,CAAC,CAAC;UAC9ExM,MAAM,CAACqH,IAAI,CAAC,+CAA+C,CAAC;UAC5D,IAAMqF,UAAU,SAASpB,MAAM,CAACqB,mBAAmB,CAAC,CAAC;UACrD;UACArB,MAAM,CAACsB,yBAAyB,CAACvL,SAAS,EAAEA,SAAS,EAAEqL,UAAW,CAAC,CAACG,IAAI,CAAC,MAAM;YAC3E7M,MAAM,CAACqH,IAAI,CAAC,kBAAkB,CAAC;UACnC,CAAC,CAAC;QACN;MACJ,CAAC,EAAE,CAAC;;MAEJ;MACAoC,OAAO,CAACqD,IAAI,CAAgC,CACxCrD,OAAO,CAACsD,GAAG,CAAC,CACRrB,YAAY,CAAC1J,kBAAkB,CAAC,QAAQ,CAAC,EACzC0J,YAAY,CAAC1J,kBAAkB,CAAC,cAAc,CAAC,EAC/C0J,YAAY,CAAC1J,kBAAkB,CAAC,cAAc,CAAC,EAC/CmK,gBAAgB,CACnB,CAAC,EACFF,OAAO,CACV,CAAC,CAACY,IAAI,CAACnD,OAAO,EAAE2B,MAAM,CAAC;IAC5B,CAAC,CAAC,CAAC2B,KAAK,CAAEpG,CAAC,IAAK;MACZ5G,MAAM,CAACiN,IAAI,CAAC,+CAA+C,EAAErG,CAAC,CAAC;IACnE,CAAC,CAAC;EACN,CAAC;EAAA,OAAAqE,8BAAA,CAAAX,KAAA,OAAAnJ,SAAA;AAAA","ignoreList":[]}

package/lib/crypto/DeviceList.d.ts

@@ -1,216 +0,0 @@
-import { DeviceInfo, IDevice } from "./deviceinfo.ts";
-import { CrossSigningInfo, ICrossSigningInfo } from "./CrossSigning.ts";
-import { MatrixClient } from "../client.ts";
-import { OlmDevice } from "./OlmDevice.ts";
-import { CryptoStore } from "./store/base.ts";
-import { TypedEventEmitter } from "../models/typed-event-emitter.ts";
-import { CryptoEvent, CryptoEventHandlerMap } from "./index.ts";
-export declare enum TrackingStatus {
-    NotTracked = 0,
-    PendingDownload = 1,
-    DownloadInProgress = 2,
-    UpToDate = 3
-}
-export type DeviceInfoMap = Map<string, Map<string, DeviceInfo>>;
-type EmittedEvents = CryptoEvent.WillUpdateDevices | CryptoEvent.DevicesUpdated | CryptoEvent.UserCrossSigningUpdated;
-export declare class DeviceList extends TypedEventEmitter<EmittedEvents, CryptoEventHandlerMap> {
-    private readonly cryptoStore;
-    readonly keyDownloadChunkSize: number;
-    private devices;
-    crossSigningInfo: {
-        [userId: string]: ICrossSigningInfo;
-    };
-    private userByIdentityKey;
-    private deviceTrackingStatus;
-    private syncToken;
-    private keyDownloadsInProgressByUser;
-    private dirty;
-    private savePromise;
-    private resolveSavePromise;
-    private savePromiseTime;
-    private saveTimer;
-    private hasFetched;
-    private readonly serialiser;
-    constructor(baseApis: MatrixClient, cryptoStore: CryptoStore, olmDevice: OlmDevice, keyDownloadChunkSize?: number);
-    /**
-     * Load the device tracking state from storage
-     */
-    load(): Promise<void>;
-    stop(): void;
-    /**
-     * Save the device tracking state to storage, if any changes are
-     * pending other than updating the sync token
-     *
-     * The actual save will be delayed by a short amount of time to
-     * aggregate multiple writes to the database.
-     *
-     * @param delay - Time in ms before which the save actually happens.
-     *     By default, the save is delayed for a short period in order to batch
-     *     multiple writes, but this behaviour can be disabled by passing 0.
-     *
-     * @returns true if the data was saved, false if
-     *     it was not (eg. because no changes were pending). The promise
-     *     will only resolve once the data is saved, so may take some time
-     *     to resolve.
-     */
-    saveIfDirty(delay?: number): Promise<boolean>;
-    /**
-     * Gets the sync token last set with setSyncToken
-     *
-     * @returns The sync token
-     */
-    getSyncToken(): string | null;
-    /**
-     * Sets the sync token that the app will pass as the 'since' to the /sync
-     * endpoint next time it syncs.
-     * The sync token must always be set after any changes made as a result of
-     * data in that sync since setting the sync token to a newer one will mean
-     * those changed will not be synced from the server if a new client starts
-     * up with that data.
-     *
-     * @param st - The sync token
-     */
-    setSyncToken(st: string | null): void;
-    /**
-     * Ensures up to date keys for a list of users are stored in the session store,
-     * downloading and storing them if they're not (or if forceDownload is
-     * true).
-     * @param userIds - The users to fetch.
-     * @param forceDownload - Always download the keys even if cached.
-     *
-     * @returns A promise which resolves to a map userId-\>deviceId-\>{@link DeviceInfo}.
-     */
-    downloadKeys(userIds: string[], forceDownload: boolean): Promise<DeviceInfoMap>;
-    /**
-     * Get the stored device keys for a list of user ids
-     *
-     * @param userIds - the list of users to list keys for.
-     *
-     * @returns userId-\>deviceId-\>{@link DeviceInfo}.
-     */
-    private getDevicesFromStore;
-    /**
-     * Returns a list of all user IDs the DeviceList knows about
-     *
-     * @returns All known user IDs
-     */
-    getKnownUserIds(): string[];
-    /**
-     * Get the stored device keys for a user id
-     *
-     * @param userId - the user to list keys for.
-     *
-     * @returns list of devices, or null if we haven't
-     * managed to get a list of devices for this user yet.
-     */
-    getStoredDevicesForUser(userId: string): DeviceInfo[] | null;
-    /**
-     * Get the stored device data for a user, in raw object form
-     *
-     * @param userId - the user to get data for
-     *
-     * @returns `deviceId->{object}` devices, or undefined if
-     * there is no data for this user.
-     */
-    getRawStoredDevicesForUser(userId: string): Record<string, IDevice>;
-    getStoredCrossSigningForUser(userId: string): CrossSigningInfo | null;
-    storeCrossSigningForUser(userId: string, info: ICrossSigningInfo): void;
-    /**
-     * Get the stored keys for a single device
-     *
-     *
-     * @returns device, or undefined
-     * if we don't know about this device
-     */
-    getStoredDevice(userId: string, deviceId: string): DeviceInfo | undefined;
-    /**
-     * Get a user ID by one of their device's curve25519 identity key
-     *
-     * @param algorithm -  encryption algorithm
-     * @param senderKey -  curve25519 key to match
-     *
-     * @returns user ID
-     */
-    getUserByIdentityKey(algorithm: string, senderKey: string): string | null;
-    /**
-     * Find a device by curve25519 identity key
-     *
-     * @param algorithm -  encryption algorithm
-     * @param senderKey -  curve25519 key to match
-     */
-    getDeviceByIdentityKey(algorithm: string, senderKey: string): DeviceInfo | null;
-    /**
-     * Replaces the list of devices for a user with the given device list
-     *
-     * @param userId - The user ID
-     * @param devices - New device info for user
-     */
-    storeDevicesForUser(userId: string, devices: Record<string, IDevice>): void;
-    /**
-     * flag the given user for device-list tracking, if they are not already.
-     *
-     * This will mean that a subsequent call to refreshOutdatedDeviceLists()
-     * will download the device list for the user, and that subsequent calls to
-     * invalidateUserDeviceList will trigger more updates.
-     *
-     */
-    startTrackingDeviceList(userId: string): void;
-    /**
-     * Mark the given user as no longer being tracked for device-list updates.
-     *
-     * This won't affect any in-progress downloads, which will still go on to
-     * complete; it will just mean that we don't think that we have an up-to-date
-     * list for future calls to downloadKeys.
-     *
-     */
-    stopTrackingDeviceList(userId: string): void;
-    /**
-     * Set all users we're currently tracking to untracked
-     *
-     * This will flag each user whose devices we are tracking as in need of an
-     * update.
-     */
-    stopTrackingAllDeviceLists(): void;
-    /**
-     * Mark the cached device list for the given user outdated.
-     *
-     * If we are not tracking this user's devices, we'll do nothing. Otherwise
-     * we flag the user as needing an update.
-     *
-     * This doesn't actually set off an update, so that several users can be
-     * batched together. Call refreshOutdatedDeviceLists() for that.
-     *
-     */
-    invalidateUserDeviceList(userId: string): void;
-    /**
-     * If we have users who have outdated device lists, start key downloads for them
-     *
-     * @returns which completes when the download completes; normally there
-     *    is no need to wait for this (it's mostly for the unit tests).
-     */
-    refreshOutdatedDeviceLists(): Promise<void>;
-    /**
-     * Set the stored device data for a user, in raw object form
-     * Used only by internal class DeviceListUpdateSerialiser
-     *
-     * @param userId - the user to get data for
-     *
-     * @param devices - `deviceId->{object}` the new devices
-     */
-    setRawStoredDevicesForUser(userId: string, devices: Record<string, IDevice>): void;
-    setRawStoredCrossSigningForUser(userId: string, info: ICrossSigningInfo): void;
-    /**
-     * Fire off download update requests for the given users, and update the
-     * device list tracking status for them, and the
-     * keyDownloadsInProgressByUser map for them.
-     *
-     * @param users -  list of userIds
-     *
-     * @returns resolves when all the users listed have
-     *     been updated. rejects if there was a problem updating any of the
-     *     users.
-     */
-    private doKeyDownload;
-}
-export {};
-//# sourceMappingURL=DeviceList.d.ts.map

package/lib/crypto/DeviceList.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"DeviceList.d.ts","sourceRoot":"","sources":["../../src/crypto/DeviceList.ts"],"names":[],"mappings":"AAqBA,OAAO,EAAE,UAAU,EAAE,OAAO,EAAE,MAAM,iBAAiB,CAAC;AACtD,OAAO,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,MAAM,mBAAmB,CAAC;AAIxE,OAAO,EAAwC,YAAY,EAAe,MAAM,cAAc,CAAC;AAC/F,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAC;AAC3C,OAAO,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAC9C,OAAO,EAAE,iBAAiB,EAAE,MAAM,kCAAkC,CAAC;AACrE,OAAO,EAAE,WAAW,EAAE,qBAAqB,EAAE,MAAM,YAAY,CAAC;AAuBhE,oBAAY,cAAc;IACtB,UAAU,IAAA;IACV,eAAe,IAAA;IACf,kBAAkB,IAAA;IAClB,QAAQ,IAAA;CACX;AAGD,MAAM,MAAM,aAAa,GAAG,GAAG,CAAC,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC,CAAC;AAEjE,KAAK,aAAa,GAAG,WAAW,CAAC,iBAAiB,GAAG,WAAW,CAAC,cAAc,GAAG,WAAW,CAAC,uBAAuB,CAAC;AAEtH,qBAAa,UAAW,SAAQ,iBAAiB,CAAC,aAAa,EAAE,qBAAqB,CAAC;IAqC/E,OAAO,CAAC,QAAQ,CAAC,WAAW;aAGZ,oBAAoB;IAvCxC,OAAO,CAAC,OAAO,CAA6D;IAErE,gBAAgB,EAAE;QAAE,CAAC,MAAM,EAAE,MAAM,GAAG,iBAAiB,CAAA;KAAE,CAAM;IAGtE,OAAO,CAAC,iBAAiB,CAA8B;IAGvD,OAAO,CAAC,oBAAoB,CAA4C;IAKxE,OAAO,CAAC,SAAS,CAAuB;IAExC,OAAO,CAAC,4BAA4B,CAAoC;IAGxE,OAAO,CAAC,KAAK,CAAS;IAGtB,OAAO,CAAC,WAAW,CAAiC;IAEpD,OAAO,CAAC,kBAAkB,CAA2C;IAErE,OAAO,CAAC,eAAe,CAAuB;IAE9C,OAAO,CAAC,SAAS,CAA8C;IAG/D,OAAO,CAAC,UAAU,CAAwB;IAE1C,OAAO,CAAC,QAAQ,CAAC,UAAU,CAA6B;gBAGpD,QAAQ,EAAE,YAAY,EACL,WAAW,EAAE,WAAW,EACzC,SAAS,EAAE,SAAS,EAEJ,oBAAoB,SAAM;IAO9C;;OAEG;IACU,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IA6B3B,IAAI,IAAI,IAAI;IAMnB;;;;;;;;;;;;;;;OAeG;IACU,WAAW,CAAC,KAAK,SAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAmEvD;;;;OAIG;IACI,YAAY,IAAI,MAAM,GAAG,IAAI;IAIpC;;;;;;;;;OASG;IACI,YAAY,CAAC,EAAE,EAAE,MAAM,GAAG,IAAI,GAAG,IAAI;IAI5C;;;;;;;;OAQG;IACI,YAAY,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE,aAAa,EAAE,OAAO,GAAG,OAAO,CAAC,aAAa,CAAC;IA+BtF;;;;;;OAMG;IACH,OAAO,CAAC,mBAAmB;IAY3B;;;;OAIG;IACI,eAAe,IAAI,MAAM,EAAE;IAIlC;;;;;;;OAOG;IACI,uBAAuB,CAAC,MAAM,EAAE,MAAM,GAAG,UAAU,EAAE,GAAG,IAAI;IAcnE;;;;;;;OAOG;IACI,0BAA0B,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;IAInE,4BAA4B,CAAC,MAAM,EAAE,MAAM,GAAG,gBAAgB,GAAG,IAAI;IAMrE,wBAAwB,CAAC,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,iBAAiB,GAAG,IAAI;IAK9E;;;;;;OAMG;IACI,eAAe,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,UAAU,GAAG,SAAS;IAQhF;;;;;;;OAOG;IACI,oBAAoB,CAAC,SAAS,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI;IAShF;;;;;OAKG;IACI,sBAAsB,CAAC,SAAS,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,UAAU,GAAG,IAAI;IAmCtF;;;;;OAKG;IACI,mBAAmB,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI;IAKlF;;;;;;;OAOG;IACI,uBAAuB,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI;IAoBpD;;;;;;;OAOG;IACI,sBAAsB,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI;IAWnD;;;;;OAKG;IACI,0BAA0B,IAAI,IAAI;IAOzC;;;;;;;;;OASG;IACI,wBAAwB,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI;IAWrD;;;;;OAKG;IACI,0BAA0B,IAAI,OAAO,CAAC,IAAI,CAAC;IAclD;;;;;;;OAOG;IACI,0BAA0B,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI;IAoBlF,+BAA+B,CAAC,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,iBAAiB,GAAG,IAAI;IAIrF;;;;;;;;;;OAUG;IACH,OAAO,CAAC,aAAa;CAyDxB"}