@waku/message-encryption 0.0.4 → 0.0.6

package/bundle/symmetric.js

@@ -0,0 +1 @@
+export { D as DecodedMessage, f as createDecoder, e as createEncoder, d as generateSymmetricKey } from './index-80756c1f.js';

package/dist/crypto/ecies.d.ts

@@ -0,0 +1,17 @@
+/**
+ * Encrypt message for given recipient's public key.
+ *
+ * @param  publicKeyTo Recipient's public key (65 bytes)
+ * @param  msg The message being encrypted
+ * @return A promise that resolves with the ECIES structure serialized
+ */
+export declare function encrypt(publicKeyTo: Uint8Array, msg: Uint8Array): Promise<Uint8Array>;
+/**
+ * Decrypt message using given private key.
+ *
+ * @param privateKey A 32-byte private key of recipient of the message
+ * @param encrypted ECIES serialized structure (result of ECIES encryption)
+ * @returns The clear text
+ * @throws Error If decryption fails
+ */
+export declare function decrypt(privateKey: Uint8Array, encrypted: Uint8Array): Promise<Uint8Array>;

package/dist/crypto/ecies.js

@@ -0,0 +1,126 @@
+import * as secp from "@noble/secp256k1";
+import { concat, hexToBytes } from "@waku/byte-utils";
+import { getSubtle, randomBytes, sha256 } from "./index.js";
+/**
+ * HKDF as implemented in go-ethereum.
+ */
+function kdf(secret, outputLength) {
+    let ctr = 1;
+    let written = 0;
+    let willBeResult = Promise.resolve(new Uint8Array());
+    while (written < outputLength) {
+        const counters = new Uint8Array([ctr >> 24, ctr >> 16, ctr >> 8, ctr]);
+        const countersSecret = concat([counters, secret], counters.length + secret.length);
+        const willBeHashResult = sha256(countersSecret);
+        willBeResult = willBeResult.then((result) => willBeHashResult.then((hashResult) => {
+            const _hashResult = new Uint8Array(hashResult);
+            return concat([result, _hashResult], result.length + _hashResult.length);
+        }));
+        written += 32;
+        ctr += 1;
+    }
+    return willBeResult;
+}
+function aesCtrEncrypt(counter, key, data) {
+    return getSubtle()
+        .importKey("raw", key, "AES-CTR", false, ["encrypt"])
+        .then((cryptoKey) => getSubtle().encrypt({ name: "AES-CTR", counter: counter, length: 128 }, cryptoKey, data))
+        .then((bytes) => new Uint8Array(bytes));
+}
+function aesCtrDecrypt(counter, key, data) {
+    return getSubtle()
+        .importKey("raw", key, "AES-CTR", false, ["decrypt"])
+        .then((cryptoKey) => getSubtle().decrypt({ name: "AES-CTR", counter: counter, length: 128 }, cryptoKey, data))
+        .then((bytes) => new Uint8Array(bytes));
+}
+function hmacSha256Sign(key, msg) {
+    const algorithm = { name: "HMAC", hash: { name: "SHA-256" } };
+    return getSubtle()
+        .importKey("raw", key, algorithm, false, ["sign"])
+        .then((cryptoKey) => getSubtle().sign(algorithm, cryptoKey, msg))
+        .then((bytes) => new Uint8Array(bytes));
+}
+function hmacSha256Verify(key, msg, sig) {
+    const algorithm = { name: "HMAC", hash: { name: "SHA-256" } };
+    const _key = getSubtle().importKey("raw", key, algorithm, false, ["verify"]);
+    return _key.then((cryptoKey) => getSubtle().verify(algorithm, cryptoKey, sig, msg));
+}
+/**
+ * Derive shared secret for given private and public keys.
+ *
+ * @param  privateKeyA Sender's private key (32 bytes)
+ * @param  publicKeyB Recipient's public key (65 bytes)
+ * @returns  A promise that resolves with the derived shared secret (Px, 32 bytes)
+ * @throws Error If arguments are invalid
+ */
+function derive(privateKeyA, publicKeyB) {
+    if (privateKeyA.length !== 32) {
+        throw new Error(`Bad private key, it should be 32 bytes but it's actually ${privateKeyA.length} bytes long`);
+    }
+    else if (publicKeyB.length !== 65) {
+        throw new Error(`Bad public key, it should be 65 bytes but it's actually ${publicKeyB.length} bytes long`);
+    }
+    else if (publicKeyB[0] !== 4) {
+        throw new Error("Bad public key, a valid public key would begin with 4");
+    }
+    else {
+        const px = secp.getSharedSecret(privateKeyA, publicKeyB, true);
+        // Remove the compression prefix
+        return new Uint8Array(hexToBytes(px).slice(1));
+    }
+}
+/**
+ * Encrypt message for given recipient's public key.
+ *
+ * @param  publicKeyTo Recipient's public key (65 bytes)
+ * @param  msg The message being encrypted
+ * @return A promise that resolves with the ECIES structure serialized
+ */
+export async function encrypt(publicKeyTo, msg) {
+    const ephemPrivateKey = randomBytes(32);
+    const sharedPx = await derive(ephemPrivateKey, publicKeyTo);
+    const hash = await kdf(sharedPx, 32);
+    const iv = randomBytes(16);
+    const encryptionKey = hash.slice(0, 16);
+    const cipherText = await aesCtrEncrypt(iv, encryptionKey, msg);
+    const ivCipherText = concat([iv, cipherText], iv.length + cipherText.length);
+    const macKey = await sha256(hash.slice(16));
+    const hmac = await hmacSha256Sign(macKey, ivCipherText);
+    const ephemPublicKey = secp.getPublicKey(ephemPrivateKey, false);
+    return concat([ephemPublicKey, ivCipherText, hmac], ephemPublicKey.length + ivCipherText.length + hmac.length);
+}
+const metaLength = 1 + 64 + 16 + 32;
+/**
+ * Decrypt message using given private key.
+ *
+ * @param privateKey A 32-byte private key of recipient of the message
+ * @param encrypted ECIES serialized structure (result of ECIES encryption)
+ * @returns The clear text
+ * @throws Error If decryption fails
+ */
+export async function decrypt(privateKey, encrypted) {
+    if (encrypted.length <= metaLength) {
+        throw new Error(`Invalid Ciphertext. Data is too small. It should ba at least ${metaLength} bytes`);
+    }
+    else if (encrypted[0] !== 4) {
+        throw new Error(`Not a valid ciphertext. It should begin with 4 but actually begin with ${encrypted[0]}`);
+    }
+    else {
+        // deserialize
+        const ephemPublicKey = encrypted.slice(0, 65);
+        const cipherTextLength = encrypted.length - metaLength;
+        const iv = encrypted.slice(65, 65 + 16);
+        const cipherAndIv = encrypted.slice(65, 65 + 16 + cipherTextLength);
+        const ciphertext = cipherAndIv.slice(16);
+        const msgMac = encrypted.slice(65 + 16 + cipherTextLength);
+        // check HMAC
+        const px = derive(privateKey, ephemPublicKey);
+        const hash = await kdf(px, 32);
+        const [encryptionKey, macKey] = await sha256(hash.slice(16)).then((macKey) => [hash.slice(0, 16), macKey]);
+        if (!(await hmacSha256Verify(macKey, cipherAndIv, msgMac))) {
+            throw new Error("Incorrect MAC");
+        }
+        return aesCtrDecrypt(iv, encryptionKey, ciphertext);
+    }
+}
+//# sourceMappingURL=ecies.js.map

package/dist/crypto/ecies.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ecies.js","sourceRoot":"","sources":["../../src/crypto/ecies.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,IAAI,MAAM,kBAAkB,CAAC;AACzC,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAEtD,OAAO,EAAE,SAAS,EAAE,WAAW,EAAE,MAAM,EAAE,MAAM,YAAY,CAAC;AAC5D;;GAEG;AACH,SAAS,GAAG,CAAC,MAAkB,EAAE,YAAoB;IACnD,IAAI,GAAG,GAAG,CAAC,CAAC;IACZ,IAAI,OAAO,GAAG,CAAC,CAAC;IAChB,IAAI,YAAY,GAAG,OAAO,CAAC,OAAO,CAAC,IAAI,UAAU,EAAE,CAAC,CAAC;IACrD,OAAO,OAAO,GAAG,YAAY,EAAE;QAC7B,MAAM,QAAQ,GAAG,IAAI,UAAU,CAAC,CAAC,GAAG,IAAI,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,GAAG,IAAI,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC;QACvE,MAAM,cAAc,GAAG,MAAM,CAC3B,CAAC,QAAQ,EAAE,MAAM,CAAC,EAClB,QAAQ,CAAC,MAAM,GAAG,MAAM,CAAC,MAAM,CAChC,CAAC;QACF,MAAM,gBAAgB,GAAG,MAAM,CAAC,cAAc,CAAC,CAAC;QAChD,YAAY,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CAC1C,gBAAgB,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,EAAE;YACnC,MAAM,WAAW,GAAG,IAAI,UAAU,CAAC,UAAU,CAAC,CAAC;YAC/C,OAAO,MAAM,CACX,CAAC,MAAM,EAAE,WAAW,CAAC,EACrB,MAAM,CAAC,MAAM,GAAG,WAAW,CAAC,MAAM,CACnC,CAAC;QACJ,CAAC,CAAC,CACH,CAAC;QACF,OAAO,IAAI,EAAE,CAAC;QACd,GAAG,IAAI,CAAC,CAAC;KACV;IACD,OAAO,YAAY,CAAC;AACtB,CAAC;AAED,SAAS,aAAa,CACpB,OAAmB,EACnB,GAAoB,EACpB,IAAqB;IAErB,OAAO,SAAS,EAAE;SACf,SAAS,CAAC,KAAK,EAAE,GAAG,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,SAAS,CAAC,CAAC;SACpD,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE,CAClB,SAAS,EAAE,CAAC,OAAO,CACjB,EAAE,IAAI,EAAE,SAAS,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,EAClD,SAAS,EACT,IAAI,CACL,CACF;SACA,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,IAAI,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC;AAC5C,CAAC;AAED,SAAS,aAAa,CACpB,OAAmB,EACnB,GAAoB,EACpB,IAAqB;IAErB,OAAO,SAAS,EAAE;SACf,SAAS,CAAC,KAAK,EAAE,GAAG,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,SAAS,CAAC,CAAC;SACpD,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE,CAClB,SAAS,EAAE,CAAC,OAAO,CACjB,EAAE,IAAI,EAAE,SAAS,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,EAClD,SAAS,EACT,IAAI,CACL,CACF;SACA,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,IAAI,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC;AAC5C,CAAC;AAED,SAAS,cAAc,CACrB,GAAoB,EACpB,GAAoB;IAEpB,MAAM,SAAS,GAAG,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,EAAE,CAAC;IAC9D,OAAO,SAAS,EAAE;SACf,SAAS,CAAC,KAAK,EAAE,GAAG,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,MAAM,CAAC,CAAC;SACjD,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE,CAAC,SAAS,EAAE,CAAC,IAAI,CAAC,SAAS,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;SAChE,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,IAAI,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC;AAC5C,CAAC;AAED,SAAS,gBAAgB,CACvB,GAAoB,EACpB,GAAoB,EACpB,GAAoB;IAEpB,MAAM,SAAS,GAAG,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,EAAE,CAAC;IAC9D,MAAM,IAAI,GAAG,SAAS,EAAE,CAAC,SAAS,CAAC,KAAK,EAAE,GAAG,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,QAAQ,CAAC,CAAC,CAAC;IAC7E,OAAO,IAAI,CAAC,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE,CAC7B,SAAS,EAAE,CAAC,MAAM,CAAC,SAAS,EAAE,SAAS,EAAE,GAAG,EAAE,GAAG,CAAC,CACnD,CAAC;AACJ,CAAC;AAED;;;;;;;GAOG;AACH,SAAS,MAAM,CAAC,WAAuB,EAAE,UAAsB;IAC7D,IAAI,WAAW,CAAC,MAAM,KAAK,EAAE,EAAE;QAC7B,MAAM,IAAI,KAAK,CACb,4DAA4D,WAAW,CAAC,MAAM,aAAa,CAC5F,CAAC;KACH;SAAM,IAAI,UAAU,CAAC,MAAM,KAAK,EAAE,EAAE;QACnC,MAAM,IAAI,KAAK,CACb,2DAA2D,UAAU,CAAC,MAAM,aAAa,CAC1F,CAAC;KACH;SAAM,IAAI,UAAU,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE;QAC9B,MAAM,IAAI,KAAK,CAAC,uDAAuD,CAAC,CAAC;KAC1E;SAAM;QACL,MAAM,EAAE,GAAG,IAAI,CAAC,eAAe,CAAC,WAAW,EAAE,UAAU,EAAE,IAAI,CAAC,CAAC;QAC/D,gCAAgC;QAChC,OAAO,IAAI,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;KAChD;AACH,CAAC;AAED;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,OAAO,CAC3B,WAAuB,EACvB,GAAe;IAEf,MAAM,eAAe,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC;IAExC,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,eAAe,EAAE,WAAW,CAAC,CAAC;IAE5D,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;IAErC,MAAM,EAAE,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC;IAC3B,MAAM,aAAa,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACxC,MAAM,UAAU,GAAG,MAAM,aAAa,CAAC,EAAE,EAAE,aAAa,EAAE,GAAG,CAAC,CAAC;IAE/D,MAAM,YAAY,GAAG,MAAM,CAAC,CAAC,EAAE,EAAE,UAAU,CAAC,EAAE,EAAE,CAAC,MAAM,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC;IAE7E,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC;IAC5C,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC,MAAM,EAAE,YAAY,CAAC,CAAC;IACxD,MAAM,cAAc,GAAG,IAAI,CAAC,YAAY,CAAC,eAAe,EAAE,KAAK,CAAC,CAAC;IAEjE,OAAO,MAAM,CACX,CAAC,cAAc,EAAE,YAAY,EAAE,IAAI,CAAC,EACpC,cAAc,CAAC,MAAM,GAAG,YAAY,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAC1D,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC;AAEpC;;;;;;;GAOG;AACH,MAAM,CAAC,KAAK,UAAU,OAAO,CAC3B,UAAsB,EACtB,SAAqB;IAErB,IAAI,SAAS,CAAC,MAAM,IAAI,UAAU,EAAE;QAClC,MAAM,IAAI,KAAK,CACb,gEAAgE,UAAU,QAAQ,CACnF,CAAC;KACH;SAAM,IAAI,SAAS,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE;QAC7B,MAAM,IAAI,KAAK,CACb,0EAA0E,SAAS,CAAC,CAAC,CAAC,EAAE,CACzF,CAAC;KACH;SAAM;QACL,cAAc;QACd,MAAM,cAAc,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QAC9C,MAAM,gBAAgB,GAAG,SAAS,CAAC,MAAM,GAAG,UAAU,CAAC;QACvD,MAAM,EAAE,GAAG,SAAS,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,GAAG,EAAE,CAAC,CAAC;QACxC,MAAM,WAAW,GAAG,SAAS,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,GAAG,EAAE,GAAG,gBAAgB,CAAC,CAAC;QACpE,MAAM,UAAU,GAAG,WAAW,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QACzC,MAAM,MAAM,GAAG,SAAS,CAAC,KAAK,CAAC,EAAE,GAAG,EAAE,GAAG,gBAAgB,CAAC,CAAC;QAE3D,aAAa;QACb,MAAM,EAAE,GAAG,MAAM,CAAC,UAAU,EAAE,cAAc,CAAC,CAAC;QAC9C,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;QAC/B,MAAM,CAAC,aAAa,EAAE,MAAM,CAAC,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAC/D,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,MAAM,CAAC,CACxC,CAAC;QAEF,IAAI,CAAC,CAAC,MAAM,gBAAgB,CAAC,MAAM,EAAE,WAAW,EAAE,MAAM,CAAC,CAAC,EAAE;YAC1D,MAAM,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC;SAClC;QAED,OAAO,aAAa,CAAC,EAAE,EAAE,aAAa,EAAE,UAAU,CAAC,CAAC;KACrD;AACH,CAAC"}

package/dist/{crypto.js → crypto/index.js}

@@ -2,7 +2,7 @@ import nodeCrypto from "crypto";
 import * as secp from "@noble/secp256k1";
 import { concat } from "@waku/byte-utils";
 import sha3 from "js-sha3";
-import { Asymmetric, Symmetric } from "./constants.js";
+import { Asymmetric, Symmetric } from "../constants.js";
 const crypto = {
     node: nodeCrypto,
     web: typeof self === "object" && "crypto" in self ? self.crypto : undefined,
@@ -57,4 +57,4 @@ export async function sign(message, privateKey) {
 export function keccak256(input) {
     return new Uint8Array(sha3.keccak256.arrayBuffer(input));
 }
-//# sourceMappingURL=crypto.js.map
+//# sourceMappingURL=index.js.map

package/dist/crypto/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/crypto/index.ts"],"names":[],"mappings":"AAAA,OAAO,UAAU,MAAM,QAAQ,CAAC;AAEhC,OAAO,KAAK,IAAI,MAAM,kBAAkB,CAAC;AACzC,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAC;AAC1C,OAAO,IAAI,MAAM,SAAS,CAAC;AAE3B,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAGxD,MAAM,MAAM,GAA8B;IACxC,IAAI,EAAE,UAAU;IAChB,GAAG,EAAE,OAAO,IAAI,KAAK,QAAQ,IAAI,QAAQ,IAAI,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS;CAC5E,CAAC;AAEF,MAAM,UAAU,SAAS;IACvB,IAAI,MAAM,CAAC,GAAG,EAAE;QACd,OAAO,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC;KAC1B;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE;QACtB,OAAO,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC;KACrC;SAAM;QACL,MAAM,IAAI,KAAK,CACb,yHAAyH,CAC1H,CAAC;KACH;AACH,CAAC;AAED,MAAM,CAAC,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC;AAClD,MAAM,CAAC,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC;AAExC;;;;GAIG;AACH,MAAM,UAAU,kBAAkB;IAChC,OAAO,WAAW,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC;AACzC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,oBAAoB;IAClC,OAAO,WAAW,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;AACxC,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,MAAM,YAAY,GAAG,IAAI,CAAC,YAAY,CAAC;AAE9C;;;;;;;GAOG;AACH,MAAM,CAAC,KAAK,UAAU,IAAI,CACxB,OAAmB,EACnB,UAAsB;IAEtB,MAAM,CAAC,SAAS,EAAE,UAAU,CAAC,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,UAAU,EAAE;QACnE,SAAS,EAAE,IAAI;QACf,GAAG,EAAE,KAAK;KACX,CAAC,CAAC;IACH,OAAO,MAAM,CACX,CAAC,SAAS,EAAE,IAAI,UAAU,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,EACzC,SAAS,CAAC,MAAM,GAAG,CAAC,CACrB,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,SAAS,CAAC,KAAiB;IACzC,OAAO,IAAI,UAAU,CAAC,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC,CAAC;AAC3D,CAAC"}

package/dist/crypto/symmetric.d.ts

@@ -0,0 +1,3 @@
+export declare function encrypt(iv: Uint8Array, key: Uint8Array, clearText: Uint8Array): Promise<Uint8Array>;
+export declare function decrypt(iv: Uint8Array, key: Uint8Array, cipherText: Uint8Array): Promise<Uint8Array>;
+export declare function generateIv(): Uint8Array;

package/dist/crypto/symmetric.js

@@ -0,0 +1,18 @@
+import { Symmetric } from "../constants.js";
+import { getSubtle, randomBytes } from "./index.js";
+export async function encrypt(iv, key, clearText) {
+    return getSubtle()
+        .importKey("raw", key, Symmetric.algorithm, false, ["encrypt"])
+        .then((cryptoKey) => getSubtle().encrypt({ iv, ...Symmetric.algorithm }, cryptoKey, clearText))
+        .then((cipher) => new Uint8Array(cipher));
+}
+export async function decrypt(iv, key, cipherText) {
+    return getSubtle()
+        .importKey("raw", key, Symmetric.algorithm, false, ["decrypt"])
+        .then((cryptoKey) => getSubtle().decrypt({ iv, ...Symmetric.algorithm }, cryptoKey, cipherText))
+        .then((clear) => new Uint8Array(clear));
+}
+export function generateIv() {
+    return randomBytes(Symmetric.ivSize);
+}
+//# sourceMappingURL=symmetric.js.map

package/dist/crypto/symmetric.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"symmetric.js","sourceRoot":"","sources":["../../src/crypto/symmetric.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAE5C,OAAO,EAAE,SAAS,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAEpD,MAAM,CAAC,KAAK,UAAU,OAAO,CAC3B,EAAc,EACd,GAAe,EACf,SAAqB;IAErB,OAAO,SAAS,EAAE;SACf,SAAS,CAAC,KAAK,EAAE,GAAG,EAAE,SAAS,CAAC,SAAS,EAAE,KAAK,EAAE,CAAC,SAAS,CAAC,CAAC;SAC9D,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE,CAClB,SAAS,EAAE,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,GAAG,SAAS,CAAC,SAAS,EAAE,EAAE,SAAS,EAAE,SAAS,CAAC,CAC1E;SACA,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,IAAI,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC;AAC9C,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,OAAO,CAC3B,EAAc,EACd,GAAe,EACf,UAAsB;IAEtB,OAAO,SAAS,EAAE;SACf,SAAS,CAAC,KAAK,EAAE,GAAG,EAAE,SAAS,CAAC,SAAS,EAAE,KAAK,EAAE,CAAC,SAAS,CAAC,CAAC;SAC9D,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE,CAClB,SAAS,EAAE,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,GAAG,SAAS,CAAC,SAAS,EAAE,EAAE,SAAS,EAAE,UAAU,CAAC,CAC3E;SACA,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,IAAI,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC;AAC5C,CAAC;AAED,MAAM,UAAU,UAAU;IACxB,OAAO,WAAW,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;AACvC,CAAC"}

package/dist/ecies.d.ts

@@ -1,17 +1,51 @@
+import { Decoder as DecoderV0 } from "@waku/core/lib/message/version_0";
+import type { IDecoder, IEncoder, IMessage, IProtoMessage } from "@waku/interfaces";
+import { DecodedMessage, generatePrivateKey, getPublicKey } from "./index.js";
+export { DecodedMessage, generatePrivateKey, getPublicKey };
+declare class Encoder implements IEncoder {
+    contentTopic: string;
+    private publicKey;
+    private sigPrivKey?;
+    ephemeral: boolean;
+    constructor(contentTopic: string, publicKey: Uint8Array, sigPrivKey?: Uint8Array | undefined, ephemeral?: boolean);
+    toWire(message: IMessage): Promise<Uint8Array | undefined>;
+    toProtoObj(message: IMessage): Promise<IProtoMessage | undefined>;
+}
 /**
- * Encrypt message for given recipient's public key.
+ * Creates an encoder that encrypts messages using ECIES for the given public,
+ * as defined in [26/WAKU2-PAYLOAD](https://rfc.vac.dev/spec/26/).
  *
- * @param  publicKeyTo Recipient's public key (65 bytes)
- * @param  msg The message being encrypted
- * @return A promise that resolves with the ECIES structure serialized
+ * An encoder is used to encode messages in the [`14/WAKU2-MESSAGE](https://rfc.vac.dev/spec/14/)
+ * format to be sent over the Waku network. The resulting encoder can then be
+ * pass to { @link @waku/interfaces.LightPush.push } or
+ * { @link @waku/interfaces.Relay.send } to automatically encrypt
+ * and encode outgoing messages.
+ *
+ * The payload can optionally be signed with the given private key as defined
+ * in [26/WAKU2-PAYLOAD](https://rfc.vac.dev/spec/26/).
+ *
+ * @param contentTopic The content topic to set on outgoing messages.
+ * @param publicKey The public key to encrypt the payload for.
+ * @param sigPrivKey An optional private key to used to sign the payload before encryption.
+ * @param ephemeral An optional flag to mark message as ephemeral, ie, not to be stored by Waku Store nodes.
  */
-export declare function encrypt(publicKeyTo: Uint8Array, msg: Uint8Array): Promise<Uint8Array>;
+export declare function createEncoder(contentTopic: string, publicKey: Uint8Array, sigPrivKey?: Uint8Array, ephemeral?: boolean): Encoder;
+declare class Decoder extends DecoderV0 implements IDecoder<DecodedMessage> {
+    private privateKey;
+    constructor(contentTopic: string, privateKey: Uint8Array);
+    fromProtoObj(protoMessage: IProtoMessage): Promise<DecodedMessage | undefined>;
+}
 /**
- * Decrypt message using given private key.
+ * Creates a decoder that decrypts messages using ECIES, using the given private
+ * key as defined in [26/WAKU2-PAYLOAD](https://rfc.vac.dev/spec/26/).
+ *
+ * A decoder is used to decode messages from the [14/WAKU2-MESSAGE](https://rfc.vac.dev/spec/14/)
+ * format when received from the Waku network. The resulting decoder can then be
+ * pass to { @link @waku/interfaces.Filter.subscribe } or
+ * { @link @waku/interfaces.Relay.subscribe } to automatically decrypt and
+ * decode incoming messages.
  *
- * @param privateKey A 32-byte private key of recipient of the message
- * @param encrypted ECIES serialized structure (result of ECIES encryption)
- * @returns The clear text
- * @throws Error If decryption fails
+ * @param contentTopic The resulting decoder will only decode messages with this content topic.
+ * @param privateKey The private key used to decrypt the message.
  */
-export declare function decrypt(privateKey: Uint8Array, encrypted: Uint8Array): Promise<Uint8Array>;
+export declare function createDecoder(contentTopic: string, privateKey: Uint8Array): Decoder;

package/dist/ecies.js

@@ -1,126 +1,111 @@
-import * as secp from "@noble/secp256k1";
-import { concat, hexToBytes } from "@waku/byte-utils";
-import { getSubtle, randomBytes, sha256 } from "./crypto.js";
-/**
- * HKDF as implemented in go-ethereum.
- */
-function kdf(secret, outputLength) {
-    let ctr = 1;
-    let written = 0;
-    let willBeResult = Promise.resolve(new Uint8Array());
-    while (written < outputLength) {
-        const counters = new Uint8Array([ctr >> 24, ctr >> 16, ctr >> 8, ctr]);
-        const countersSecret = concat([counters, secret], counters.length + secret.length);
-        const willBeHashResult = sha256(countersSecret);
-        willBeResult = willBeResult.then((result) => willBeHashResult.then((hashResult) => {
-            const _hashResult = new Uint8Array(hashResult);
-            return concat([result, _hashResult], result.length + _hashResult.length);
-        }));
-        written += 32;
-        ctr += 1;
+import { Decoder as DecoderV0, proto } from "@waku/core/lib/message/version_0";
+import debug from "debug";
+import { decryptAsymmetric, encryptAsymmetric, postCipher, preCipher, } from "./waku_payload.js";
+import { DecodedMessage, generatePrivateKey, getPublicKey, OneMillion, Version, } from "./index.js";
+export { DecodedMessage, generatePrivateKey, getPublicKey };
+const log = debug("waku:message-encryption:ecies");
+class Encoder {
+    constructor(contentTopic, publicKey, sigPrivKey, ephemeral = false) {
+        this.contentTopic = contentTopic;
+        this.publicKey = publicKey;
+        this.sigPrivKey = sigPrivKey;
+        this.ephemeral = ephemeral;
+    }
+    async toWire(message) {
+        const protoMessage = await this.toProtoObj(message);
+        if (!protoMessage)
+            return;
+        return proto.WakuMessage.encode(protoMessage);
+    }
+    async toProtoObj(message) {
+        const timestamp = message.timestamp ?? new Date();
+        if (!message.payload) {
+            log("No payload to encrypt, skipping: ", message);
+            return;
+        }
+        const preparedPayload = await preCipher(message.payload, this.sigPrivKey);
+        const payload = await encryptAsymmetric(preparedPayload, this.publicKey);
+        return {
+            payload,
+            version: Version,
+            contentTopic: this.contentTopic,
+            timestamp: BigInt(timestamp.valueOf()) * OneMillion,
+            rateLimitProof: message.rateLimitProof,
+            ephemeral: this.ephemeral,
+        };
     }
-    return willBeResult;
-}
-function aesCtrEncrypt(counter, key, data) {
-    return getSubtle()
-        .importKey("raw", key, "AES-CTR", false, ["encrypt"])
-        .then((cryptoKey) => getSubtle().encrypt({ name: "AES-CTR", counter: counter, length: 128 }, cryptoKey, data))
-        .then((bytes) => new Uint8Array(bytes));
-}
-function aesCtrDecrypt(counter, key, data) {
-    return getSubtle()
-        .importKey("raw", key, "AES-CTR", false, ["decrypt"])
-        .then((cryptoKey) => getSubtle().decrypt({ name: "AES-CTR", counter: counter, length: 128 }, cryptoKey, data))
-        .then((bytes) => new Uint8Array(bytes));
-}
-function hmacSha256Sign(key, msg) {
-    const algorithm = { name: "HMAC", hash: { name: "SHA-256" } };
-    return getSubtle()
-        .importKey("raw", key, algorithm, false, ["sign"])
-        .then((cryptoKey) => getSubtle().sign(algorithm, cryptoKey, msg))
-        .then((bytes) => new Uint8Array(bytes));
-}
-function hmacSha256Verify(key, msg, sig) {
-    const algorithm = { name: "HMAC", hash: { name: "SHA-256" } };
-    const _key = getSubtle().importKey("raw", key, algorithm, false, ["verify"]);
-    return _key.then((cryptoKey) => getSubtle().verify(algorithm, cryptoKey, sig, msg));
 }
 /**
- * Derive shared secret for given private and public keys.
+ * Creates an encoder that encrypts messages using ECIES for the given public,
+ * as defined in [26/WAKU2-PAYLOAD](https://rfc.vac.dev/spec/26/).
+ *
+ * An encoder is used to encode messages in the [`14/WAKU2-MESSAGE](https://rfc.vac.dev/spec/14/)
+ * format to be sent over the Waku network. The resulting encoder can then be
+ * pass to { @link @waku/interfaces.LightPush.push } or
+ * { @link @waku/interfaces.Relay.send } to automatically encrypt
+ * and encode outgoing messages.
+ *
+ * The payload can optionally be signed with the given private key as defined
+ * in [26/WAKU2-PAYLOAD](https://rfc.vac.dev/spec/26/).
  *
- * @param  privateKeyA Sender's private key (32 bytes)
- * @param  publicKeyB Recipient's public key (65 bytes)
- * @returns  A promise that resolves with the derived shared secret (Px, 32 bytes)
- * @throws Error If arguments are invalid
+ * @param contentTopic The content topic to set on outgoing messages.
+ * @param publicKey The public key to encrypt the payload for.
+ * @param sigPrivKey An optional private key to used to sign the payload before encryption.
+ * @param ephemeral An optional flag to mark message as ephemeral, ie, not to be stored by Waku Store nodes.
  */
-function derive(privateKeyA, publicKeyB) {
-    if (privateKeyA.length !== 32) {
-        throw new Error(`Bad private key, it should be 32 bytes but it's actually ${privateKeyA.length} bytes long`);
-    }
-    else if (publicKeyB.length !== 65) {
-        throw new Error(`Bad public key, it should be 65 bytes but it's actually ${publicKeyB.length} bytes long`);
-    }
-    else if (publicKeyB[0] !== 4) {
-        throw new Error("Bad public key, a valid public key would begin with 4");
+export function createEncoder(contentTopic, publicKey, sigPrivKey, ephemeral = false) {
+    return new Encoder(contentTopic, publicKey, sigPrivKey, ephemeral);
+}
+class Decoder extends DecoderV0 {
+    constructor(contentTopic, privateKey) {
+        super(contentTopic);
+        this.privateKey = privateKey;
     }
-    else {
-        const px = secp.getSharedSecret(privateKeyA, publicKeyB, true);
-        // Remove the compression prefix
-        return new Uint8Array(hexToBytes(px).slice(1));
+    async fromProtoObj(protoMessage) {
+        const cipherPayload = protoMessage.payload;
+        if (protoMessage.version !== Version) {
+            log("Failed to decrypt due to incorrect version, expected:", Version, ", actual:", protoMessage.version);
+            return;
+        }
+        let payload;
+        if (!cipherPayload) {
+            log(`No payload to decrypt for contentTopic ${this.contentTopic}`);
+            return;
+        }
+        try {
+            payload = await decryptAsymmetric(cipherPayload, this.privateKey);
+        }
+        catch (e) {
+            log(`Failed to decrypt message using asymmetric decryption for contentTopic: ${this.contentTopic}`, e);
+            return;
+        }
+        if (!payload) {
+            log(`Failed to decrypt payload for contentTopic ${this.contentTopic}`);
+            return;
+        }
+        const res = await postCipher(payload);
+        if (!res) {
+            log(`Failed to decode payload for contentTopic ${this.contentTopic}`);
+            return;
+        }
+        log("Message decrypted", protoMessage);
+        return new DecodedMessage(protoMessage, res.payload, res.sig?.signature, res.sig?.publicKey);
     }
 }
 /**
- * Encrypt message for given recipient's public key.
+ * Creates a decoder that decrypts messages using ECIES, using the given private
+ * key as defined in [26/WAKU2-PAYLOAD](https://rfc.vac.dev/spec/26/).
  *
- * @param  publicKeyTo Recipient's public key (65 bytes)
- * @param  msg The message being encrypted
- * @return A promise that resolves with the ECIES structure serialized
- */
-export async function encrypt(publicKeyTo, msg) {
-    const ephemPrivateKey = randomBytes(32);
-    const sharedPx = await derive(ephemPrivateKey, publicKeyTo);
-    const hash = await kdf(sharedPx, 32);
-    const iv = randomBytes(16);
-    const encryptionKey = hash.slice(0, 16);
-    const cipherText = await aesCtrEncrypt(iv, encryptionKey, msg);
-    const ivCipherText = concat([iv, cipherText], iv.length + cipherText.length);
-    const macKey = await sha256(hash.slice(16));
-    const hmac = await hmacSha256Sign(macKey, ivCipherText);
-    const ephemPublicKey = secp.getPublicKey(ephemPrivateKey, false);
-    return concat([ephemPublicKey, ivCipherText, hmac], ephemPublicKey.length + ivCipherText.length + hmac.length);
-}
-const metaLength = 1 + 64 + 16 + 32;
-/**
- * Decrypt message using given private key.
+ * A decoder is used to decode messages from the [14/WAKU2-MESSAGE](https://rfc.vac.dev/spec/14/)
+ * format when received from the Waku network. The resulting decoder can then be
+ * pass to { @link @waku/interfaces.Filter.subscribe } or
+ * { @link @waku/interfaces.Relay.subscribe } to automatically decrypt and
+ * decode incoming messages.
  *
- * @param privateKey A 32-byte private key of recipient of the message
- * @param encrypted ECIES serialized structure (result of ECIES encryption)
- * @returns The clear text
- * @throws Error If decryption fails
+ * @param contentTopic The resulting decoder will only decode messages with this content topic.
+ * @param privateKey The private key used to decrypt the message.
  */
-export async function decrypt(privateKey, encrypted) {
-    if (encrypted.length <= metaLength) {
-        throw new Error(`Invalid Ciphertext. Data is too small. It should ba at least ${metaLength} bytes`);
-    }
-    else if (encrypted[0] !== 4) {
-        throw new Error(`Not a valid ciphertext. It should begin with 4 but actually begin with ${encrypted[0]}`);
-    }
-    else {
-        // deserialize
-        const ephemPublicKey = encrypted.slice(0, 65);
-        const cipherTextLength = encrypted.length - metaLength;
-        const iv = encrypted.slice(65, 65 + 16);
-        const cipherAndIv = encrypted.slice(65, 65 + 16 + cipherTextLength);
-        const ciphertext = cipherAndIv.slice(16);
-        const msgMac = encrypted.slice(65 + 16 + cipherTextLength);
-        // check HMAC
-        const px = derive(privateKey, ephemPublicKey);
-        const hash = await kdf(px, 32);
-        const [encryptionKey, macKey] = await sha256(hash.slice(16)).then((macKey) => [hash.slice(0, 16), macKey]);
-        if (!(await hmacSha256Verify(macKey, cipherAndIv, msgMac))) {
-            throw new Error("Incorrect MAC");
-        }
-        return aesCtrDecrypt(iv, encryptionKey, ciphertext);
-    }
+export function createDecoder(contentTopic, privateKey) {
+    return new Decoder(contentTopic, privateKey);
 }
 //# sourceMappingURL=ecies.js.map

package/dist/ecies.js.map

@@ -1 +1 @@
-{"version":3,"file":"ecies.js","sourceRoot":"","sources":["../src/ecies.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,IAAI,MAAM,kBAAkB,CAAC;AACzC,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAEtD,OAAO,EAAE,SAAS,EAAE,WAAW,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AAC7D;;GAEG;AACH,SAAS,GAAG,CAAC,MAAkB,EAAE,YAAoB;IACnD,IAAI,GAAG,GAAG,CAAC,CAAC;IACZ,IAAI,OAAO,GAAG,CAAC,CAAC;IAChB,IAAI,YAAY,GAAG,OAAO,CAAC,OAAO,CAAC,IAAI,UAAU,EAAE,CAAC,CAAC;IACrD,OAAO,OAAO,GAAG,YAAY,EAAE;QAC7B,MAAM,QAAQ,GAAG,IAAI,UAAU,CAAC,CAAC,GAAG,IAAI,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,GAAG,IAAI,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC;QACvE,MAAM,cAAc,GAAG,MAAM,CAC3B,CAAC,QAAQ,EAAE,MAAM,CAAC,EAClB,QAAQ,CAAC,MAAM,GAAG,MAAM,CAAC,MAAM,CAChC,CAAC;QACF,MAAM,gBAAgB,GAAG,MAAM,CAAC,cAAc,CAAC,CAAC;QAChD,YAAY,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CAC1C,gBAAgB,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,EAAE;YACnC,MAAM,WAAW,GAAG,IAAI,UAAU,CAAC,UAAU,CAAC,CAAC;YAC/C,OAAO,MAAM,CACX,CAAC,MAAM,EAAE,WAAW,CAAC,EACrB,MAAM,CAAC,MAAM,GAAG,WAAW,CAAC,MAAM,CACnC,CAAC;QACJ,CAAC,CAAC,CACH,CAAC;QACF,OAAO,IAAI,EAAE,CAAC;QACd,GAAG,IAAI,CAAC,CAAC;KACV;IACD,OAAO,YAAY,CAAC;AACtB,CAAC;AAED,SAAS,aAAa,CACpB,OAAmB,EACnB,GAAoB,EACpB,IAAqB;IAErB,OAAO,SAAS,EAAE;SACf,SAAS,CAAC,KAAK,EAAE,GAAG,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,SAAS,CAAC,CAAC;SACpD,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE,CAClB,SAAS,EAAE,CAAC,OAAO,CACjB,EAAE,IAAI,EAAE,SAAS,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,EAClD,SAAS,EACT,IAAI,CACL,CACF;SACA,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,IAAI,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC;AAC5C,CAAC;AAED,SAAS,aAAa,CACpB,OAAmB,EACnB,GAAoB,EACpB,IAAqB;IAErB,OAAO,SAAS,EAAE;SACf,SAAS,CAAC,KAAK,EAAE,GAAG,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,SAAS,CAAC,CAAC;SACpD,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE,CAClB,SAAS,EAAE,CAAC,OAAO,CACjB,EAAE,IAAI,EAAE,SAAS,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,EAClD,SAAS,EACT,IAAI,CACL,CACF;SACA,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,IAAI,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC;AAC5C,CAAC;AAED,SAAS,cAAc,CACrB,GAAoB,EACpB,GAAoB;IAEpB,MAAM,SAAS,GAAG,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,EAAE,CAAC;IAC9D,OAAO,SAAS,EAAE;SACf,SAAS,CAAC,KAAK,EAAE,GAAG,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,MAAM,CAAC,CAAC;SACjD,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE,CAAC,SAAS,EAAE,CAAC,IAAI,CAAC,SAAS,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;SAChE,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,IAAI,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC;AAC5C,CAAC;AAED,SAAS,gBAAgB,CACvB,GAAoB,EACpB,GAAoB,EACpB,GAAoB;IAEpB,MAAM,SAAS,GAAG,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,EAAE,CAAC;IAC9D,MAAM,IAAI,GAAG,SAAS,EAAE,CAAC,SAAS,CAAC,KAAK,EAAE,GAAG,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,QAAQ,CAAC,CAAC,CAAC;IAC7E,OAAO,IAAI,CAAC,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE,CAC7B,SAAS,EAAE,CAAC,MAAM,CAAC,SAAS,EAAE,SAAS,EAAE,GAAG,EAAE,GAAG,CAAC,CACnD,CAAC;AACJ,CAAC;AAED;;;;;;;GAOG;AACH,SAAS,MAAM,CAAC,WAAuB,EAAE,UAAsB;IAC7D,IAAI,WAAW,CAAC,MAAM,KAAK,EAAE,EAAE;QAC7B,MAAM,IAAI,KAAK,CACb,4DAA4D,WAAW,CAAC,MAAM,aAAa,CAC5F,CAAC;KACH;SAAM,IAAI,UAAU,CAAC,MAAM,KAAK,EAAE,EAAE;QACnC,MAAM,IAAI,KAAK,CACb,2DAA2D,UAAU,CAAC,MAAM,aAAa,CAC1F,CAAC;KACH;SAAM,IAAI,UAAU,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE;QAC9B,MAAM,IAAI,KAAK,CAAC,uDAAuD,CAAC,CAAC;KAC1E;SAAM;QACL,MAAM,EAAE,GAAG,IAAI,CAAC,eAAe,CAAC,WAAW,EAAE,UAAU,EAAE,IAAI,CAAC,CAAC;QAC/D,gCAAgC;QAChC,OAAO,IAAI,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;KAChD;AACH,CAAC;AAED;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,OAAO,CAC3B,WAAuB,EACvB,GAAe;IAEf,MAAM,eAAe,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC;IAExC,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,eAAe,EAAE,WAAW,CAAC,CAAC;IAE5D,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;IAErC,MAAM,EAAE,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC;IAC3B,MAAM,aAAa,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACxC,MAAM,UAAU,GAAG,MAAM,aAAa,CAAC,EAAE,EAAE,aAAa,EAAE,GAAG,CAAC,CAAC;IAE/D,MAAM,YAAY,GAAG,MAAM,CAAC,CAAC,EAAE,EAAE,UAAU,CAAC,EAAE,EAAE,CAAC,MAAM,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC;IAE7E,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC;IAC5C,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC,MAAM,EAAE,YAAY,CAAC,CAAC;IACxD,MAAM,cAAc,GAAG,IAAI,CAAC,YAAY,CAAC,eAAe,EAAE,KAAK,CAAC,CAAC;IAEjE,OAAO,MAAM,CACX,CAAC,cAAc,EAAE,YAAY,EAAE,IAAI,CAAC,EACpC,cAAc,CAAC,MAAM,GAAG,YAAY,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAC1D,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC;AAEpC;;;;;;;GAOG;AACH,MAAM,CAAC,KAAK,UAAU,OAAO,CAC3B,UAAsB,EACtB,SAAqB;IAErB,IAAI,SAAS,CAAC,MAAM,IAAI,UAAU,EAAE;QAClC,MAAM,IAAI,KAAK,CACb,gEAAgE,UAAU,QAAQ,CACnF,CAAC;KACH;SAAM,IAAI,SAAS,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE;QAC7B,MAAM,IAAI,KAAK,CACb,0EAA0E,SAAS,CAAC,CAAC,CAAC,EAAE,CACzF,CAAC;KACH;SAAM;QACL,cAAc;QACd,MAAM,cAAc,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QAC9C,MAAM,gBAAgB,GAAG,SAAS,CAAC,MAAM,GAAG,UAAU,CAAC;QACvD,MAAM,EAAE,GAAG,SAAS,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,GAAG,EAAE,CAAC,CAAC;QACxC,MAAM,WAAW,GAAG,SAAS,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,GAAG,EAAE,GAAG,gBAAgB,CAAC,CAAC;QACpE,MAAM,UAAU,GAAG,WAAW,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QACzC,MAAM,MAAM,GAAG,SAAS,CAAC,KAAK,CAAC,EAAE,GAAG,EAAE,GAAG,gBAAgB,CAAC,CAAC;QAE3D,aAAa;QACb,MAAM,EAAE,GAAG,MAAM,CAAC,UAAU,EAAE,cAAc,CAAC,CAAC;QAC9C,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;QAC/B,MAAM,CAAC,aAAa,EAAE,MAAM,CAAC,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAC/D,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,MAAM,CAAC,CACxC,CAAC;QAEF,IAAI,CAAC,CAAC,MAAM,gBAAgB,CAAC,MAAM,EAAE,WAAW,EAAE,MAAM,CAAC,CAAC,EAAE;YAC1D,MAAM,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC;SAClC;QAED,OAAO,aAAa,CAAC,EAAE,EAAE,aAAa,EAAE,UAAU,CAAC,CAAC;KACrD;AACH,CAAC"}
+{"version":3,"file":"ecies.js","sourceRoot":"","sources":["../src/ecies.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,IAAI,SAAS,EAAE,KAAK,EAAE,MAAM,kCAAkC,CAAC;AAO/E,OAAO,KAAK,MAAM,OAAO,CAAC;AAE1B,OAAO,EACL,iBAAiB,EACjB,iBAAiB,EACjB,UAAU,EACV,SAAS,GACV,MAAM,mBAAmB,CAAC;AAE3B,OAAO,EACL,cAAc,EACd,kBAAkB,EAClB,YAAY,EACZ,UAAU,EACV,OAAO,GACR,MAAM,YAAY,CAAC;AAEpB,OAAO,EAAE,cAAc,EAAE,kBAAkB,EAAE,YAAY,EAAE,CAAC;AAE5D,MAAM,GAAG,GAAG,KAAK,CAAC,+BAA+B,CAAC,CAAC;AAEnD,MAAM,OAAO;IACX,YACS,YAAoB,EACnB,SAAqB,EACrB,UAAuB,EACxB,YAAqB,KAAK;QAH1B,iBAAY,GAAZ,YAAY,CAAQ;QACnB,cAAS,GAAT,SAAS,CAAY;QACrB,eAAU,GAAV,UAAU,CAAa;QACxB,cAAS,GAAT,SAAS,CAAiB;IAChC,CAAC;IAEJ,KAAK,CAAC,MAAM,CAAC,OAAiB;QAC5B,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC;QACpD,IAAI,CAAC,YAAY;YAAE,OAAO;QAE1B,OAAO,KAAK,CAAC,WAAW,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;IAChD,CAAC;IAED,KAAK,CAAC,UAAU,CAAC,OAAiB;QAChC,MAAM,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,IAAI,IAAI,EAAE,CAAC;QAClD,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE;YACpB,GAAG,CAAC,mCAAmC,EAAE,OAAO,CAAC,CAAC;YAClD,OAAO;SACR;QACD,MAAM,eAAe,GAAG,MAAM,SAAS,CAAC,OAAO,CAAC,OAAO,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC;QAE1E,MAAM,OAAO,GAAG,MAAM,iBAAiB,CAAC,eAAe,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC;QAEzE,OAAO;YACL,OAAO;YACP,OAAO,EAAE,OAAO;YAChB,YAAY,EAAE,IAAI,CAAC,YAAY;YAC/B,SAAS,EAAE,MAAM,CAAC,SAAS,CAAC,OAAO,EAAE,CAAC,GAAG,UAAU;YACnD,cAAc,EAAE,OAAO,CAAC,cAAc;YACtC,SAAS,EAAE,IAAI,CAAC,SAAS;SAC1B,CAAC;IACJ,CAAC;CACF;AAED;;;;;;;;;;;;;;;;;GAiBG;AACH,MAAM,UAAU,aAAa,CAC3B,YAAoB,EACpB,SAAqB,EACrB,UAAuB,EACvB,SAAS,GAAG,KAAK;IAEjB,OAAO,IAAI,OAAO,CAAC,YAAY,EAAE,SAAS,EAAE,UAAU,EAAE,SAAS,CAAC,CAAC;AACrE,CAAC;AAED,MAAM,OAAQ,SAAQ,SAAS;IAC7B,YAAY,YAAoB,EAAU,UAAsB;QAC9D,KAAK,CAAC,YAAY,CAAC,CAAC;QADoB,eAAU,GAAV,UAAU,CAAY;IAEhE,CAAC;IAED,KAAK,CAAC,YAAY,CAChB,YAA2B;QAE3B,MAAM,aAAa,GAAG,YAAY,CAAC,OAAO,CAAC;QAE3C,IAAI,YAAY,CAAC,OAAO,KAAK,OAAO,EAAE;YACpC,GAAG,CACD,uDAAuD,EACvD,OAAO,EACP,WAAW,EACX,YAAY,CAAC,OAAO,CACrB,CAAC;YACF,OAAO;SACR;QAED,IAAI,OAAO,CAAC;QACZ,IAAI,CAAC,aAAa,EAAE;YAClB,GAAG,CAAC,0CAA0C,IAAI,CAAC,YAAY,EAAE,CAAC,CAAC;YACnE,OAAO;SACR;QAED,IAAI;YACF,OAAO,GAAG,MAAM,iBAAiB,CAAC,aAAa,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC;SACnE;QAAC,OAAO,CAAC,EAAE;YACV,GAAG,CACD,2EAA2E,IAAI,CAAC,YAAY,EAAE,EAC9F,CAAC,CACF,CAAC;YACF,OAAO;SACR;QAED,IAAI,CAAC,OAAO,EAAE;YACZ,GAAG,CAAC,8CAA8C,IAAI,CAAC,YAAY,EAAE,CAAC,CAAC;YACvE,OAAO;SACR;QAED,MAAM,GAAG,GAAG,MAAM,UAAU,CAAC,OAAO,CAAC,CAAC;QAEtC,IAAI,CAAC,GAAG,EAAE;YACR,GAAG,CAAC,6CAA6C,IAAI,CAAC,YAAY,EAAE,CAAC,CAAC;YACtE,OAAO;SACR;QAED,GAAG,CAAC,mBAAmB,EAAE,YAAY,CAAC,CAAC;QACvC,OAAO,IAAI,cAAc,CACvB,YAAY,EACZ,GAAG,CAAC,OAAO,EACX,GAAG,CAAC,GAAG,EAAE,SAAS,EAClB,GAAG,CAAC,GAAG,EAAE,SAAS,CACnB,CAAC;IACJ,CAAC;CACF;AAED;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,aAAa,CAC3B,YAAoB,EACpB,UAAsB;IAEtB,OAAO,IAAI,OAAO,CAAC,YAAY,EAAE,UAAU,CAAC,CAAC;AAC/C,CAAC"}