npm - cipher-kit - Versions diffs - 2.0.0-beta.1 → 2.0.0-beta.3 - Mend

cipher-kit 2.0.0-beta.1 → 2.0.0-beta.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (40) hide show

package/dist/chunk-6GBH7YTP.js +468 -0
package/dist/chunk-6GBH7YTP.js.map +1 -0
package/dist/{chunk-SRGSVNQ2.js → chunk-BNQERV4S.js} +195 -101
package/dist/chunk-BNQERV4S.js.map +1 -0
package/dist/chunk-NKLNWTQA.cjs +607 -0
package/dist/chunk-NKLNWTQA.cjs.map +1 -0
package/dist/chunk-UHP3PPXP.cjs +499 -0
package/dist/chunk-UHP3PPXP.cjs.map +1 -0
package/dist/{chunk-6HNTSQAP.js → chunk-YPYDYYV2.js} +28 -36
package/dist/chunk-YPYDYYV2.js.map +1 -0
package/dist/{chunk-ZIVTPFKN.cjs → chunk-ZJ32WGAA.cjs} +29 -37
package/dist/chunk-ZJ32WGAA.cjs.map +1 -0
package/dist/{export-DEWwhS-S.d.ts → export--ndIQ3j3.d.cts} +49 -42
package/dist/{export-DzNR1ht3.d.ts → export-C2M5UPLX.d.cts} +49 -42
package/dist/{export-oVEmcDLI.d.cts → export-CPUbAFZA.d.ts} +49 -42
package/dist/{export-C2vQXrZa.d.cts → export-v9ULdDL0.d.ts} +49 -42
package/dist/index.cjs +12 -104
package/dist/index.d.cts +3 -3
package/dist/index.d.ts +3 -3
package/dist/index.js +3 -3
package/dist/node.cjs +42 -34
package/dist/node.d.cts +2 -2
package/dist/node.d.ts +2 -2
package/dist/node.js +2 -2
package/dist/{validate-TRx4DDtg.d.cts → validate-CULVlPck.d.cts} +42 -8
package/dist/{validate-TRx4DDtg.d.ts → validate-CULVlPck.d.ts} +42 -8
package/dist/web-api.cjs +42 -34
package/dist/web-api.d.cts +2 -2
package/dist/web-api.d.ts +2 -2
package/dist/web-api.js +2 -2
package/package.json +1 -1
package/dist/chunk-6HNTSQAP.js.map +0 -1
package/dist/chunk-DZLEO2JD.cjs +0 -511
package/dist/chunk-DZLEO2JD.cjs.map +0 -1
package/dist/chunk-I25C3WUZ.js +0 -382
package/dist/chunk-I25C3WUZ.js.map +0 -1
package/dist/chunk-SRGSVNQ2.js.map +0 -1
package/dist/chunk-UR5HPMNF.cjs +0 -411
package/dist/chunk-UR5HPMNF.cjs.map +0 -1
package/dist/chunk-ZIVTPFKN.cjs.map +0 -1

package/dist/chunk-6GBH7YTP.js ADDED Viewed

@@ -0,0 +1,468 @@
+import { __export, $fmtResultErr, $ok, $err, $fmtError, $isStr, ENCRYPTION_ALGORITHMS, DIGEST_ALGORITHMS, ENCODINGS, $isSecretKey, matchPattern, $stringifyObj, $parseToObj } from './chunk-YPYDYYV2.js';
+import { Buffer } from 'buffer';
+import nodeCrypto from 'crypto';
+// src/node/kit.ts
+var kit_exports = {};
+__export(kit_exports, {
+  convertBytesToStr: () => convertBytesToStr,
+  convertEncoding: () => convertEncoding,
+  convertStrToBytes: () => convertStrToBytes,
+  createSecretKey: () => createSecretKey,
+  decrypt: () => decrypt,
+  decryptObj: () => decryptObj,
+  encrypt: () => encrypt,
+  encryptObj: () => encryptObj,
+  generateUuid: () => generateUuid,
+  hash: () => hash,
+  hashObj: () => hashObj,
+  hashPassword: () => hashPassword,
+  tryConvertBytesToStr: () => tryConvertBytesToStr,
+  tryConvertEncoding: () => tryConvertEncoding,
+  tryConvertStrToBytes: () => tryConvertStrToBytes,
+  tryCreateSecretKey: () => tryCreateSecretKey,
+  tryDecrypt: () => tryDecrypt,
+  tryDecryptObj: () => tryDecryptObj,
+  tryEncrypt: () => tryEncrypt,
+  tryEncryptObj: () => tryEncryptObj,
+  tryGenerateUuid: () => tryGenerateUuid,
+  tryHash: () => tryHash,
+  tryHashObj: () => tryHashObj,
+  tryHashPassword: () => tryHashPassword,
+  verifyPassword: () => verifyPassword
+});
+function $convertStrToBytes(data, inputEncoding = "utf8") {
+  if (!$isStr(data)) {
+    return $err({
+      msg: "Crypto NodeJS API - String to Bytes: Empty data",
+      desc: "Data must be a non-empty string"
+    });
+  }
+  if (!ENCODINGS.includes(inputEncoding)) {
+    return $err({
+      msg: `Crypto NodeJS API - String to Bytes: Unsupported encoding: ${inputEncoding}`,
+      desc: "Use base64, base64url, hex, utf8, or latin1"
+    });
+  }
+  try {
+    return $ok({ result: Buffer.from(data, inputEncoding) });
+  } catch (error) {
+    return $err({ msg: "Crypto NodeJS API - String to Bytes: Failed to convert data", desc: $fmtError(error) });
+  }
+}
+function $convertBytesToStr(data, outputEncoding = "utf8") {
+  if (!(data instanceof Buffer)) {
+    return $err({
+      msg: "Crypto NodeJS API - Bytes to String: Invalid data type",
+      desc: "Data must be a Buffer"
+    });
+  }
+  if (!ENCODINGS.includes(outputEncoding)) {
+    return $err({
+      msg: `Crypto NodeJS API - Bytes to String: Unsupported encoding: ${outputEncoding}`,
+      desc: "Use base64, base64url, hex, utf8, or latin1"
+    });
+  }
+  try {
+    return $ok(Buffer.from(data).toString(outputEncoding));
+  } catch (error) {
+    return $err({ msg: "Crypto NodeJS API - Bytes to String: Failed to convert data", desc: $fmtError(error) });
+  }
+}
+function $convertEncoding(data, from, to) {
+  if (!$isStr(data)) {
+    return $err({
+      msg: "Crypto NodeJS API - Convert Format: Empty data",
+      desc: "Data must be a non-empty string"
+    });
+  }
+  if (!ENCODINGS.includes(from) || !ENCODINGS.includes(to)) {
+    return $err({
+      msg: `Crypto NodeJS API - Convert Format: Unsupported encoding: from ${from} to ${to}`,
+      desc: "Use base64, base64url, hex, utf8, or latin1"
+    });
+  }
+  const bytes = $convertStrToBytes(data, from);
+  if (bytes.error) return $err({ msg: bytes.error.message, desc: bytes.error.description });
+  const str = $convertBytesToStr(bytes.result, to);
+  if (str.error) return $err({ msg: str.error.message, desc: str.error.description });
+  return $ok({ result: str.result });
+}
+function $generateUuid() {
+  try {
+    return $ok(nodeCrypto.randomUUID());
+  } catch (error) {
+    return $err({ msg: "Crypto NodeJS API - UUID Generation: Failed to generate UUID", desc: $fmtError(error) });
+  }
+}
+function $createSecretKey(secret, options = {}) {
+  if (!$isStr(secret)) {
+    return $err({ msg: "Crypto NodeJS API - Key Generation: Empty Secret", desc: "Secret must be a non-empty string" });
+  }
+  const algorithm = options.algorithm ?? "aes256gcm";
+  if (!(algorithm in ENCRYPTION_ALGORITHMS)) {
+    return $err({
+      msg: `Crypto NodeJS API - Key Generation: Unsupported algorithm: ${algorithm}`,
+      desc: `Supported algorithms are: ${Object.keys(ENCRYPTION_ALGORITHMS).join(", ")}`
+    });
+  }
+  const digest = options.digest ?? "sha256";
+  if (!(digest in DIGEST_ALGORITHMS)) {
+    return $err({
+      msg: `Crypto NodeJS API - Key Generation: Unsupported digest: ${digest}`,
+      desc: `Supported digests are: ${Object.keys(DIGEST_ALGORITHMS).join(", ")}`
+    });
+  }
+  const salt = options.salt ?? "cipher-kit-salt";
+  if (!$isStr(salt, 8)) {
+    return $err({
+      msg: "Crypto NodeJS API - Key Generation: Weak salt",
+      desc: "Salt must be a non-empty string with at least 8 characters"
+    });
+  }
+  const info = options.info ?? "cipher-kit";
+  if (!$isStr(info)) {
+    return $err({
+      msg: "Crypto NodeJS API - Key Generation: Invalid info",
+      desc: "Info must be a non-empty string"
+    });
+  }
+  const encryptAlgo = ENCRYPTION_ALGORITHMS[algorithm];
+  const digestAlgo = DIGEST_ALGORITHMS[digest];
+  try {
+    const derivedKey = nodeCrypto.hkdfSync(
+      digestAlgo.node,
+      secret.normalize("NFKC"),
+      salt.normalize("NFKC"),
+      info.normalize("NFKC"),
+      encryptAlgo.keyBytes
+    );
+    const key = nodeCrypto.createSecretKey(Buffer.from(derivedKey));
+    const secretKey = Object.freeze({
+      platform: "node",
+      digest,
+      algorithm,
+      key
+    });
+    return $ok({ result: secretKey });
+  } catch (error) {
+    return $err({ msg: "Crypto NodeJS API - Key Generation: Failed to create secret key", desc: $fmtError(error) });
+  }
+}
+function $encrypt(data, secretKey, options = {}) {
+  if (!$isStr(data)) {
+    return $err({
+      msg: "Crypto NodeJS API - Encryption: Empty data for encryption",
+      desc: "Data must be a non-empty string"
+    });
+  }
+  const inputEncoding = options.inputEncoding ?? "utf8";
+  const outputEncoding = options.outputEncoding ?? "base64url";
+  if (!ENCODINGS.includes(inputEncoding) || !ENCODINGS.includes(outputEncoding)) {
+    return $err({
+      msg: `Crypto NodeJS API - Encryption: Unsupported input encoding: ${inputEncoding} or output encoding: ${outputEncoding}`,
+      desc: "Use base64, base64url, hex, utf8, or latin1"
+    });
+  }
+  const injectedKey = $isSecretKey(secretKey, "node");
+  if (!injectedKey) {
+    return $err({
+      msg: "Crypto NodeJS API - Encryption: Invalid Secret Key",
+      desc: "Expected a Node SecretKey"
+    });
+  }
+  const { result, error } = $convertStrToBytes(data, inputEncoding);
+  if (error) return $err(error);
+  try {
+    const iv = nodeCrypto.randomBytes(injectedKey.injected.ivLength);
+    const cipher = nodeCrypto.createCipheriv(injectedKey.injected.node, injectedKey.key, iv);
+    const encrypted = Buffer.concat([cipher.update(result), cipher.final()]);
+    const tag = cipher.getAuthTag();
+    const ivStr = $convertBytesToStr(iv, outputEncoding);
+    const cipherStr = $convertBytesToStr(encrypted, outputEncoding);
+    const tagStr = $convertBytesToStr(tag, outputEncoding);
+    if (ivStr.error || cipherStr.error || tagStr.error) {
+      return $err({
+        msg: "Crypto NodeJS API - Encryption: Failed to convert IV or encrypted data or tag",
+        desc: `Conversion error: ${ivStr.error || cipherStr.error || tagStr.error}`
+      });
+    }
+    return $ok(`${ivStr.result}.${cipherStr.result}.${tagStr.result}.`);
+  } catch (error2) {
+    return $err({ msg: "Crypto NodeJS API - Encryption: Failed to encrypt data", desc: $fmtError(error2) });
+  }
+}
+function $decrypt(encrypted, secretKey, options = {}) {
+  if (matchPattern(encrypted, "node") === false) {
+    return $err({
+      msg: "Crypto NodeJS API - Decryption: Invalid encrypted data format",
+      desc: 'Encrypted data must be in the format "iv.cipher.tag."'
+    });
+  }
+  const inputEncoding = options.inputEncoding ?? "base64url";
+  const outputEncoding = options.outputEncoding ?? "utf8";
+  if (!ENCODINGS.includes(inputEncoding) || !ENCODINGS.includes(outputEncoding)) {
+    return $err({
+      msg: `Crypto NodeJS API - Decryption: Unsupported input encoding: ${inputEncoding} or output encoding: ${outputEncoding}`,
+      desc: "Use base64, base64url, hex, utf8, or latin1"
+    });
+  }
+  const [iv, cipher, tag] = encrypted.split(".", 4);
+  if (!$isStr(iv) || !$isStr(cipher) || !$isStr(tag)) {
+    return $err({
+      msg: "Crypto NodeJS API - Decryption: Invalid encrypted data",
+      desc: "Encrypted data must contain valid IV, encrypted data, and tag components"
+    });
+  }
+  const injectedKey = $isSecretKey(secretKey, "node");
+  if (!injectedKey) {
+    return $err({
+      msg: "Crypto NodeJS API - Decryption: Invalid Secret Key",
+      desc: "Expected a Node SecretKey"
+    });
+  }
+  const ivBytes = $convertStrToBytes(iv, inputEncoding);
+  const cipherBytes = $convertStrToBytes(cipher, inputEncoding);
+  const tagBytes = $convertStrToBytes(tag, inputEncoding);
+  if (ivBytes.error || cipherBytes.error || tagBytes.error) {
+    return $err({
+      msg: "Crypto NodeJS API - Decryption: Failed to convert IV or encrypted data or tag",
+      desc: `Conversion error: ${ivBytes.error || cipherBytes.error || tagBytes.error}`
+    });
+  }
+  try {
+    const decipher = nodeCrypto.createDecipheriv(injectedKey.injected.node, injectedKey.key, ivBytes.result);
+    decipher.setAuthTag(tagBytes.result);
+    const decrypted = Buffer.concat([decipher.update(cipherBytes.result), decipher.final()]);
+    return $convertBytesToStr(decrypted, outputEncoding);
+  } catch (error) {
+    return $err({ msg: "Crypto NodeJS API - Decryption: Failed to decrypt data", desc: $fmtError(error) });
+  }
+}
+function $encryptObj(data, secretKey, options = {}) {
+  const { result, error } = $stringifyObj(data);
+  if (error) return $err(error);
+  return $encrypt(result, secretKey, options);
+}
+function $decryptObj(encrypted, secretKey, options = {}) {
+  const { result, error } = $decrypt(encrypted, secretKey, options);
+  if (error) return $err(error);
+  return $parseToObj(result);
+}
+function $hash(data, options = {}) {
+  if (!$isStr(data)) {
+    return $err({
+      msg: "Crypto NodeJS API - Hashing: Empty data for hashing",
+      desc: "Data must be a non-empty string"
+    });
+  }
+  const inputEncoding = options.inputEncoding ?? "utf8";
+  const outputEncoding = options.outputEncoding ?? "base64url";
+  if (!ENCODINGS.includes(inputEncoding) || !ENCODINGS.includes(outputEncoding)) {
+    return $err({
+      msg: `Crypto NodeJS API - Hashing: Unsupported encoding: ${inputEncoding} or ${outputEncoding}`,
+      desc: "Use base64, base64url, hex, utf8, or latin1"
+    });
+  }
+  const digest = options.digest ?? "sha256";
+  if (!(digest in DIGEST_ALGORITHMS)) {
+    return $err({
+      msg: `Crypto NodeJS API - Hashing: Unsupported digest: ${digest}`,
+      desc: `Supported digests are: ${Object.keys(DIGEST_ALGORITHMS).join(", ")}`
+    });
+  }
+  const digestAlgo = DIGEST_ALGORITHMS[digest];
+  const { result, error } = $convertStrToBytes(data, inputEncoding);
+  if (error) return $err(error);
+  try {
+    const hashed = nodeCrypto.createHash(digestAlgo.node).update(result).digest();
+    return $convertBytesToStr(hashed, outputEncoding);
+  } catch (error2) {
+    return $err({ msg: "Crypto NodeJS API - Hashing: Failed to hash data with Crypto NodeJS", desc: $fmtError(error2) });
+  }
+}
+function $hashObj(data, options = {}) {
+  const { result, error } = $stringifyObj(data);
+  if (error) return $err(error);
+  return $hash(result, options);
+}
+function $hashPassword(password, options = {}) {
+  if (!$isStr(password)) {
+    return $err({
+      msg: "Crypto NodeJS API - Password Hashing: Empty password for hashing",
+      desc: "Password must be a non-empty string"
+    });
+  }
+  const digest = options.digest ?? "sha512";
+  if (!(digest in DIGEST_ALGORITHMS)) {
+    return $err({
+      msg: `Crypto NodeJS API - Password Hashing: Unsupported digest: ${digest}`,
+      desc: `Supported digests are: ${Object.keys(DIGEST_ALGORITHMS).join(", ")}`
+    });
+  }
+  const digestAlgo = DIGEST_ALGORITHMS[digest];
+  const outputEncoding = options.outputEncoding ?? "base64url";
+  if (!ENCODINGS.includes(outputEncoding)) {
+    return $err({
+      msg: `Crypto NodeJS API - Password Hashing: Unsupported encoding: ${outputEncoding}`,
+      desc: "Use base64, base64url, hex, utf8, or latin1"
+    });
+  }
+  const saltLength = options.saltLength ?? 16;
+  if (typeof saltLength !== "number" || saltLength < 8) {
+    return $err({
+      msg: "Crypto NodeJS API - Password Hashing: Weak salt length",
+      desc: "Salt length must be a number and at least 8 bytes (recommended 16 or more)"
+    });
+  }
+  const iterations = options.iterations ?? 32e4;
+  if (typeof iterations !== "number" || iterations < 1e3) {
+    return $err({
+      msg: "Crypto NodeJS API - Password Hashing: Weak iterations count",
+      desc: "Iterations must be a number and at least 1000 (recommended 320,000 or more)"
+    });
+  }
+  const keyLength = options.keyLength ?? 64;
+  if (typeof keyLength !== "number" || keyLength < 16) {
+    return $err({
+      msg: "Crypto NodeJS API - Password Hashing: Invalid key length",
+      desc: "Key length must be a number and at least 16 bytes (recommended 64 or more)"
+    });
+  }
+  try {
+    const salt = nodeCrypto.randomBytes(saltLength);
+    const hash2 = nodeCrypto.pbkdf2Sync(password.normalize("NFKC"), salt, iterations, keyLength, digestAlgo.node);
+    return $ok({ salt: salt.toString(outputEncoding), hash: hash2.toString(outputEncoding) });
+  } catch (error) {
+    return $err({ msg: "Crypto NodeJS API - Password Hashing: Failed to hash password", desc: $fmtError(error) });
+  }
+}
+function $verifyPassword(password, hashedPassword, salt, options = {}) {
+  if (!$isStr(password) || !$isStr(hashedPassword) || !$isStr(salt)) return false;
+  const digest = options.digest ?? "sha512";
+  if (!(digest in DIGEST_ALGORITHMS)) return false;
+  const digestAlgo = DIGEST_ALGORITHMS[digest];
+  const inputEncoding = options.inputEncoding ?? "base64url";
+  if (!ENCODINGS.includes(inputEncoding)) return false;
+  const iterations = options.iterations ?? 32e4;
+  if (typeof iterations !== "number" || iterations < 1e3) return false;
+  const keyLength = options.keyLength ?? 64;
+  if (typeof keyLength !== "number" || keyLength < 16) return false;
+  const saltBytes = $convertStrToBytes(salt, inputEncoding);
+  if (saltBytes.error) return false;
+  const hashedPasswordBytes = $convertStrToBytes(hashedPassword, inputEncoding);
+  if (hashedPasswordBytes.error) return false;
+  try {
+    return nodeCrypto.timingSafeEqual(
+      nodeCrypto.pbkdf2Sync(password.normalize("NFKC"), saltBytes.result, iterations, keyLength, digestAlgo.node),
+      hashedPasswordBytes.result
+    );
+  } catch {
+    return false;
+  }
+}
+// src/node/kit.ts
+function tryGenerateUuid() {
+  return $generateUuid();
+}
+function generateUuid() {
+  const { result, error } = $generateUuid();
+  if (error) throw new Error($fmtResultErr(error));
+  return result;
+}
+function tryCreateSecretKey(secret, options = {}) {
+  return $createSecretKey(secret, options);
+}
+function createSecretKey(secret, options = {}) {
+  const { result, error } = $createSecretKey(secret, options);
+  if (error) throw new Error($fmtResultErr(error));
+  return result;
+}
+function tryEncrypt(data, secretKey, options = {}) {
+  return $encrypt(data, secretKey, options);
+}
+function encrypt(data, secretKey, options = {}) {
+  const { result, error } = $encrypt(data, secretKey, options);
+  if (error) throw new Error($fmtResultErr(error));
+  return result;
+}
+function tryDecrypt(encrypted, secretKey, options = {}) {
+  return $decrypt(encrypted, secretKey, options);
+}
+function decrypt(encrypted, secretKey, options = {}) {
+  const { result, error } = $decrypt(encrypted, secretKey, options);
+  if (error) throw new Error($fmtResultErr(error));
+  return result;
+}
+function tryEncryptObj(data, secretKey, options = {}) {
+  return $encryptObj(data, secretKey, options);
+}
+function encryptObj(data, secretKey, options = {}) {
+  const { result, error } = $encryptObj(data, secretKey, options);
+  if (error) throw new Error($fmtResultErr(error));
+  return result;
+}
+function tryDecryptObj(encrypted, secretKey, options = {}) {
+  return $decryptObj(encrypted, secretKey, options);
+}
+function decryptObj(encrypted, secretKey, options = {}) {
+  const { result, error } = $decryptObj(encrypted, secretKey, options);
+  if (error) throw new Error($fmtResultErr(error));
+  return result;
+}
+function tryHash(data, options = {}) {
+  return $hash(data, options);
+}
+function hash(data, options = {}) {
+  const { result, error } = $hash(data, options);
+  if (error) throw new Error($fmtResultErr(error));
+  return result;
+}
+function tryHashObj(data, options = {}) {
+  return $hashObj(data, options);
+}
+function hashObj(data, options = {}) {
+  const { result, error } = $hashObj(data, options);
+  if (error) throw new Error($fmtResultErr(error));
+  return result;
+}
+function tryHashPassword(password, options = {}) {
+  return $hashPassword(password, options);
+}
+function hashPassword(password, options = {}) {
+  const { hash: hash2, salt, error } = $hashPassword(password, options);
+  if (error) throw new Error($fmtResultErr(error));
+  return { hash: hash2, salt };
+}
+function verifyPassword(password, hashedPassword, salt, options = {}) {
+  return $verifyPassword(password, hashedPassword, salt, options);
+}
+function tryConvertStrToBytes(data, inputEncoding = "utf8") {
+  return $convertStrToBytes(data, inputEncoding);
+}
+function convertStrToBytes(data, inputEncoding = "utf8") {
+  const { result, error } = $convertStrToBytes(data, inputEncoding);
+  if (error) throw new Error($fmtResultErr(error));
+  return result;
+}
+function tryConvertBytesToStr(data, outputEncoding = "utf8") {
+  return $convertBytesToStr(data, outputEncoding);
+}
+function convertBytesToStr(data, outputEncoding = "utf8") {
+  const { result, error } = $convertBytesToStr(data, outputEncoding);
+  if (error) throw new Error($fmtResultErr(error));
+  return result;
+}
+function tryConvertEncoding(data, from, to) {
+  return $convertEncoding(data, from, to);
+}
+function convertEncoding(data, from, to) {
+  const { result, error } = $convertEncoding(data, from, to);
+  if (error) throw new Error($fmtResultErr(error));
+  return result;
+}
+export { convertBytesToStr, convertEncoding, convertStrToBytes, createSecretKey, decrypt, decryptObj, encrypt, encryptObj, generateUuid, hash, hashObj, hashPassword, kit_exports, tryConvertBytesToStr, tryConvertEncoding, tryConvertStrToBytes, tryCreateSecretKey, tryDecrypt, tryDecryptObj, tryEncrypt, tryEncryptObj, tryGenerateUuid, tryHash, tryHashObj, tryHashPassword, verifyPassword };
+//# sourceMappingURL=chunk-6GBH7YTP.js.map
+//# sourceMappingURL=chunk-6GBH7YTP.js.map

package/dist/chunk-6GBH7YTP.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/node/kit.ts","../src/node/node-encode.ts","../src/node/node-encrypt.ts"],"names":["Buffer","error","hash"],"mappings":";;;;;AAAA,IAAA,WAAA,GAAA;AAAA,QAAA,CAAA,WAAA,EAAA;AAAA,EAAA,iBAAA,EAAA,MAAA,iBAAA;AAAA,EAAA,eAAA,EAAA,MAAA,eAAA;AAAA,EAAA,iBAAA,EAAA,MAAA,iBAAA;AAAA,EAAA,eAAA,EAAA,MAAA,eAAA;AAAA,EAAA,OAAA,EAAA,MAAA,OAAA;AAAA,EAAA,UAAA,EAAA,MAAA,UAAA;AAAA,EAAA,OAAA,EAAA,MAAA,OAAA;AAAA,EAAA,UAAA,EAAA,MAAA,UAAA;AAAA,EAAA,YAAA,EAAA,MAAA,YAAA;AAAA,EAAA,IAAA,EAAA,MAAA,IAAA;AAAA,EAAA,OAAA,EAAA,MAAA,OAAA;AAAA,EAAA,YAAA,EAAA,MAAA,YAAA;AAAA,EAAA,oBAAA,EAAA,MAAA,oBAAA;AAAA,EAAA,kBAAA,EAAA,MAAA,kBAAA;AAAA,EAAA,oBAAA,EAAA,MAAA,oBAAA;AAAA,EAAA,kBAAA,EAAA,MAAA,kBAAA;AAAA,EAAA,UAAA,EAAA,MAAA,UAAA;AAAA,EAAA,aAAA,EAAA,MAAA,aAAA;AAAA,EAAA,UAAA,EAAA,MAAA,UAAA;AAAA,EAAA,aAAA,EAAA,MAAA,aAAA;AAAA,EAAA,eAAA,EAAA,MAAA,eAAA;AAAA,EAAA,OAAA,EAAA,MAAA,OAAA;AAAA,EAAA,UAAA,EAAA,MAAA,UAAA;AAAA,EAAA,eAAA,EAAA,MAAA,eAAA;AAAA,EAAA,cAAA,EAAA,MAAA;AAAA,CAAA,CAAA;ACMO,SAAS,kBAAA,CAAmB,IAAA,EAAc,aAAA,GAA0B,MAAA,EAAoC;AAC7G,EAAA,IAAI,CAAC,MAAA,CAAO,IAAI,CAAA,EAAG;AACjB,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,iDAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AACA,EAAA,IAAI,CAAC,SAAA,CAAU,QAAA,CAAS,aAAa,CAAA,EAAG;AACtC,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,8DAA8D,aAAa,CAAA,CAAA;AAAA,MAChF,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AACA,EAAA,IAAI;AACF,IAAA,OAAO,GAAA,CAAI,EAAE,MAAA,EAAQ,MAAA,CAAO,KAAK,IAAA,EAAM,aAAa,GAAG,CAAA;AAAA,EACzD,SAAS,KAAA,EAAO;AACd,IAAA,OAAO,IAAA,CAAK,EAAE,GAAA,EAAK,6DAAA,EAA+D,MAAM,SAAA,CAAU,KAAK,GAAG,CAAA;AAAA,EAC5G;AACF;AAEO,SAAS,kBAAA,CAAmB,IAAA,EAAc,cAAA,GAA2B,MAAA,EAAwB;AAClG,EAAA,IAAI,EAAE,gBAAgB,MAAA,CAAA,EAAS;AAC7B,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,wDAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AACA,EAAA,IAAI,CAAC,SAAA,CAAU,QAAA,CAAS,cAAc,CAAA,EAAG;AACvC,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,8DAA8D,cAAc,CAAA,CAAA;AAAA,MACjF,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AACA,EAAA,IAAI;AACF,IAAA,OAAO,IAAI,MAAA,CAAO,IAAA,CAAK,IAAI,CAAA,CAAE,QAAA,CAAS,cAAc,CAAC,CAAA;AAAA,EACvD,SAAS,KAAA,EAAO;AACd,IAAA,OAAO,IAAA,CAAK,EAAE,GAAA,EAAK,6DAAA,EAA+D,MAAM,SAAA,CAAU,KAAK,GAAG,CAAA;AAAA,EAC5G;AACF;AAEO,SAAS,gBAAA,CAAiB,IAAA,EAAc,IAAA,EAAgB,EAAA,EAA0C;AACvG,EAAA,IAAI,CAAC,MAAA,CAAO,IAAI,CAAA,EAAG;AACjB,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,gDAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,IAAI,CAAC,UAAU,QAAA,CAAS,IAAI,KAAK,CAAC,SAAA,CAAU,QAAA,CAAS,EAAE,CAAA,EAAG;AACxD,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,+DAAA,EAAkE,IAAI,CAAA,IAAA,EAAO,EAAE,CAAA,CAAA;AAAA,MACpF,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,KAAA,GAAQ,kBAAA,CAAmB,IAAA,EAAM,IAAI,CAAA;AAC3C,EAAA,IAAI,KAAA,CAAM,KAAA,EAAO,OAAO,IAAA,CAAK,EAAE,GAAA,EAAK,KAAA,CAAM,KAAA,CAAM,OAAA,EAAS,IAAA,EAAM,KAAA,CAAM,KAAA,CAAM,aAAa,CAAA;AAExF,EAAA,MAAM,GAAA,GAAM,kBAAA,CAAmB,KAAA,CAAM,MAAA,EAAQ,EAAE,CAAA;AAC/C,EAAA,IAAI,GAAA,CAAI,KAAA,EAAO,OAAO,IAAA,CAAK,EAAE,GAAA,EAAK,GAAA,CAAI,KAAA,CAAM,OAAA,EAAS,IAAA,EAAM,GAAA,CAAI,KAAA,CAAM,aAAa,CAAA;AAElF,EAAA,OAAO,GAAA,CAAI,EAAE,MAAA,EAAQ,GAAA,CAAI,QAAQ,CAAA;AACnC;ACnDO,SAAS,aAAA,GAAgC;AAC9C,EAAA,IAAI;AACF,IAAA,OAAO,GAAA,CAAI,UAAA,CAAW,UAAA,EAAY,CAAA;AAAA,EACpC,SAAS,KAAA,EAAO;AACd,IAAA,OAAO,IAAA,CAAK,EAAE,GAAA,EAAK,8DAAA,EAAgE,MAAM,SAAA,CAAU,KAAK,GAAG,CAAA;AAAA,EAC7G;AACF;AAEO,SAAS,gBAAA,CACd,MAAA,EACA,OAAA,GAAkC,EAAC,EACI;AACvC,EAAA,IAAI,CAAC,MAAA,CAAO,MAAM,CAAA,EAAG;AACnB,IAAA,OAAO,KAAK,EAAE,GAAA,EAAK,kDAAA,EAAoD,IAAA,EAAM,qCAAqC,CAAA;AAAA,EACpH;AAEA,EAAA,MAAM,SAAA,GAAY,QAAQ,SAAA,IAAa,WAAA;AACvC,EAAA,IAAI,EAAE,aAAa,qBAAA,CAAA,EAAwB;AACzC,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,8DAA8D,SAAS,CAAA,CAAA;AAAA,MAC5E,IAAA,EAAM,6BAA6B,MAAA,CAAO,IAAA,CAAK,qBAAqB,CAAA,CAAE,IAAA,CAAK,IAAI,CAAC,CAAA;AAAA,KACjF,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,MAAA,GAAS,QAAQ,MAAA,IAAU,QAAA;AACjC,EAAA,IAAI,EAAE,UAAU,iBAAA,CAAA,EAAoB;AAClC,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,2DAA2D,MAAM,CAAA,CAAA;AAAA,MACtE,IAAA,EAAM,0BAA0B,MAAA,CAAO,IAAA,CAAK,iBAAiB,CAAA,CAAE,IAAA,CAAK,IAAI,CAAC,CAAA;AAAA,KAC1E,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,IAAA,GAAO,QAAQ,IAAA,IAAQ,iBAAA;AAC7B,EAAA,IAAI,CAAC,MAAA,CAAO,IAAA,EAAM,CAAC,CAAA,EAAG;AACpB,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,+CAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,IAAA,GAAO,QAAQ,IAAA,IAAQ,YAAA;AAC7B,EAAA,IAAI,CAAC,MAAA,CAAO,IAAI,CAAA,EAAG;AACjB,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,kDAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,WAAA,GAAc,sBAAsB,SAAS,CAAA;AACnD,EAAA,MAAM,UAAA,GAAa,kBAAkB,MAAM,CAAA;AAE3C,EAAA,IAAI;AACF,IAAA,MAAM,aAAa,UAAA,CAAW,QAAA;AAAA,MAC5B,UAAA,CAAW,IAAA;AAAA,MACX,MAAA,CAAO,UAAU,MAAM,CAAA;AAAA,MACvB,IAAA,CAAK,UAAU,MAAM,CAAA;AAAA,MACrB,IAAA,CAAK,UAAU,MAAM,CAAA;AAAA,MACrB,WAAA,CAAY;AAAA,KACd;AACA,IAAA,MAAM,MAAM,UAAA,CAAW,eAAA,CAAgBA,MAAAA,CAAO,IAAA,CAAK,UAAU,CAAC,CAAA;AAC9D,IAAA,MAAM,SAAA,GAAY,OAAO,MAAA,CAAO;AAAA,MAC9B,QAAA,EAAU,MAAA;AAAA,MACV,MAAA;AAAA,MACA,SAAA;AAAA,MACA;AAAA,KACD,CAAA;AAED,IAAA,OAAO,GAAA,CAAI,EAAE,MAAA,EAAQ,SAAA,EAAW,CAAA;AAAA,EAClC,SAAS,KAAA,EAAO;AACd,IAAA,OAAO,IAAA,CAAK,EAAE,GAAA,EAAK,iEAAA,EAAmE,MAAM,SAAA,CAAU,KAAK,GAAG,CAAA;AAAA,EAChH;AACF;AAEO,SAAS,QAAA,CAAS,IAAA,EAAc,SAAA,EAA8B,OAAA,GAA0B,EAAC,EAAmB;AACjH,EAAA,IAAI,CAAC,MAAA,CAAO,IAAI,CAAA,EAAG;AACjB,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,2DAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,aAAA,GAAgB,QAAQ,aAAA,IAAiB,MAAA;AAC/C,EAAA,MAAM,cAAA,GAAiB,QAAQ,cAAA,IAAkB,WAAA;AACjD,EAAA,IAAI,CAAC,UAAU,QAAA,CAAS,aAAa,KAAK,CAAC,SAAA,CAAU,QAAA,CAAS,cAAc,CAAA,EAAG;AAC7E,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,4DAAA,EAA+D,aAAa,CAAA,qBAAA,EAAwB,cAAc,CAAA,CAAA;AAAA,MACvH,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,WAAA,GAAc,YAAA,CAAa,SAAA,EAAW,MAAM,CAAA;AAClD,EAAA,IAAI,CAAC,WAAA,EAAa;AAChB,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,oDAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,kBAAA,CAAmB,MAAM,aAAa,CAAA;AAChE,EAAA,IAAI,KAAA,EAAO,OAAO,IAAA,CAAK,KAAK,CAAA;AAE5B,EAAA,IAAI;AACF,IAAA,MAAM,EAAA,GAAK,UAAA,CAAW,WAAA,CAAY,WAAA,CAAY,SAAS,QAAQ,CAAA;AAC/D,IAAA,MAAM,MAAA,GAAS,WAAW,cAAA,CAAe,WAAA,CAAY,SAAS,IAAA,EAAM,WAAA,CAAY,KAAK,EAAE,CAAA;AACvF,IAAA,MAAM,SAAA,GAAYA,MAAAA,CAAO,MAAA,CAAO,CAAC,MAAA,CAAO,MAAA,CAAO,MAAM,CAAA,EAAG,MAAA,CAAO,KAAA,EAAO,CAAC,CAAA;AACvE,IAAA,MAAM,GAAA,GAAM,OAAO,UAAA,EAAW;AAE9B,IAAA,MAAM,KAAA,GAAQ,kBAAA,CAAmB,EAAA,EAAI,cAAc,CAAA;AACnD,IAAA,MAAM,SAAA,GAAY,kBAAA,CAAmB,SAAA,EAAW,cAAc,CAAA;AAC9D,IAAA,MAAM,MAAA,GAAS,kBAAA,CAAmB,GAAA,EAAK,cAAc,CAAA;AAErD,IAAA,IAAI,KAAA,CAAM,KAAA,IAAS,SAAA,CAAU,KAAA,IAAS,OAAO,KAAA,EAAO;AAClD,MAAA,OAAO,IAAA,CAAK;AAAA,QACV,GAAA,EAAK,+EAAA;AAAA,QACL,MAAM,CAAA,kBAAA,EAAqB,KAAA,CAAM,SAAS,SAAA,CAAU,KAAA,IAAS,OAAO,KAAK,CAAA;AAAA,OAC1E,CAAA;AAAA,IACH;AAEA,IAAA,OAAO,GAAA,CAAI,CAAA,EAAG,KAAA,CAAM,MAAM,CAAA,CAAA,EAAI,UAAU,MAAM,CAAA,CAAA,EAAI,MAAA,CAAO,MAAM,CAAA,CAAA,CAAG,CAAA;AAAA,EACpE,SAASC,MAAAA,EAAO;AACd,IAAA,OAAO,IAAA,CAAK,EAAE,GAAA,EAAK,wDAAA,EAA0D,MAAM,SAAA,CAAUA,MAAK,GAAG,CAAA;AAAA,EACvG;AACF;AAEO,SAAS,QAAA,CACd,SAAA,EACA,SAAA,EACA,OAAA,GAA0B,EAAC,EACX;AAChB,EAAA,IAAI,YAAA,CAAa,SAAA,EAAW,MAAM,CAAA,KAAM,KAAA,EAAO;AAC7C,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,+DAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,aAAA,GAAgB,QAAQ,aAAA,IAAiB,WAAA;AAC/C,EAAA,MAAM,cAAA,GAAiB,QAAQ,cAAA,IAAkB,MAAA;AACjD,EAAA,IAAI,CAAC,UAAU,QAAA,CAAS,aAAa,KAAK,CAAC,SAAA,CAAU,QAAA,CAAS,cAAc,CAAA,EAAG;AAC7E,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,4DAAA,EAA+D,aAAa,CAAA,qBAAA,EAAwB,cAAc,CAAA,CAAA;AAAA,MACvH,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,CAAC,IAAI,MAAA,EAAQ,GAAG,IAAI,SAAA,CAAU,KAAA,CAAM,KAAK,CAAC,CAAA;AAChD,EAAA,IAAI,CAAC,MAAA,CAAO,EAAE,CAAA,IAAK,CAAC,MAAA,CAAO,MAAM,CAAA,IAAK,CAAC,MAAA,CAAO,GAAG,CAAA,EAAG;AAClD,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,wDAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,WAAA,GAAc,YAAA,CAAa,SAAA,EAAW,MAAM,CAAA;AAClD,EAAA,IAAI,CAAC,WAAA,EAAa;AAChB,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,oDAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,OAAA,GAAU,kBAAA,CAAmB,EAAA,EAAI,aAAa,CAAA;AACpD,EAAA,MAAM,WAAA,GAAc,kBAAA,CAAmB,MAAA,EAAQ,aAAa,CAAA;AAC5D,EAAA,MAAM,QAAA,GAAW,kBAAA,CAAmB,GAAA,EAAK,aAAa,CAAA;AAEtD,EAAA,IAAI,OAAA,CAAQ,KAAA,IAAS,WAAA,CAAY,KAAA,IAAS,SAAS,KAAA,EAAO;AACxD,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,+EAAA;AAAA,MACL,MAAM,CAAA,kBAAA,EAAqB,OAAA,CAAQ,SAAS,WAAA,CAAY,KAAA,IAAS,SAAS,KAAK,CAAA;AAAA,KAChF,CAAA;AAAA,EACH;AAEA,EAAA,IAAI;AACF,IAAA,MAAM,QAAA,GAAW,WAAW,gBAAA,CAAiB,WAAA,CAAY,SAAS,IAAA,EAAM,WAAA,CAAY,GAAA,EAAK,OAAA,CAAQ,MAAM,CAAA;AACvG,IAAA,QAAA,CAAS,UAAA,CAAW,SAAS,MAAM,CAAA;AACnC,IAAA,MAAM,SAAA,GAAYD,MAAAA,CAAO,MAAA,CAAO,CAAC,QAAA,CAAS,MAAA,CAAO,WAAA,CAAY,MAAM,CAAA,EAAG,QAAA,CAAS,KAAA,EAAO,CAAC,CAAA;AAEvF,IAAA,OAAO,kBAAA,CAAmB,WAAW,cAAc,CAAA;AAAA,EACrD,SAAS,KAAA,EAAO;AACd,IAAA,OAAO,IAAA,CAAK,EAAE,GAAA,EAAK,wDAAA,EAA0D,MAAM,SAAA,CAAU,KAAK,GAAG,CAAA;AAAA,EACvG;AACF;AACO,SAAS,WAAA,CACd,IAAA,EACA,SAAA,EACA,OAAA,GAA0B,EAAC,EACX;AAChB,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,cAAc,IAAI,CAAA;AAC5C,EAAA,IAAI,KAAA,EAAO,OAAO,IAAA,CAAK,KAAK,CAAA;AAC5B,EAAA,OAAO,QAAA,CAAS,MAAA,EAAQ,SAAA,EAAW,OAAO,CAAA;AAC5C;AAEO,SAAS,WAAA,CACd,SAAA,EACA,SAAA,EACA,OAAA,GAA0B,EAAC,EACJ;AACvB,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,KAAU,QAAA,CAAS,SAAA,EAAW,WAAW,OAAO,CAAA;AAChE,EAAA,IAAI,KAAA,EAAO,OAAO,IAAA,CAAK,KAAK,CAAA;AAC5B,EAAA,OAAO,YAAe,MAAM,CAAA;AAC9B;AAEO,SAAS,KAAA,CAAM,IAAA,EAAc,OAAA,GAAuB,EAAC,EAAmB;AAC7E,EAAA,IAAI,CAAC,MAAA,CAAO,IAAI,CAAA,EAAG;AACjB,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,qDAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,aAAA,GAAgB,QAAQ,aAAA,IAAiB,MAAA;AAC/C,EAAA,MAAM,cAAA,GAAiB,QAAQ,cAAA,IAAkB,WAAA;AACjD,EAAA,IAAI,CAAC,UAAU,QAAA,CAAS,aAAa,KAAK,CAAC,SAAA,CAAU,QAAA,CAAS,cAAc,CAAA,EAAG;AAC7E,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,mDAAA,EAAsD,aAAa,CAAA,IAAA,EAAO,cAAc,CAAA,CAAA;AAAA,MAC7F,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,MAAA,GAAS,QAAQ,MAAA,IAAU,QAAA;AACjC,EAAA,IAAI,EAAE,UAAU,iBAAA,CAAA,EAAoB;AAClC,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,oDAAoD,MAAM,CAAA,CAAA;AAAA,MAC/D,IAAA,EAAM,0BAA0B,MAAA,CAAO,IAAA,CAAK,iBAAiB,CAAA,CAAE,IAAA,CAAK,IAAI,CAAC,CAAA;AAAA,KAC1E,CAAA;AAAA,EACH;AACA,EAAA,MAAM,UAAA,GAAa,kBAAkB,MAAM,CAAA;AAE3C,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,kBAAA,CAAmB,MAAM,aAAa,CAAA;AAChE,EAAA,IAAI,KAAA,EAAO,OAAO,IAAA,CAAK,KAAK,CAAA;AAE5B,EAAA,IAAI;AACF,IAAA,MAAM,MAAA,GAAS,WAAW,UAAA,CAAW,UAAA,CAAW,IAAI,CAAA,CAAE,MAAA,CAAO,MAAM,CAAA,CAAE,MAAA,EAAO;AAC5E,IAAA,OAAO,kBAAA,CAAmB,QAAQ,cAAc,CAAA;AAAA,EAClD,SAASC,MAAAA,EAAO;AACd,IAAA,OAAO,IAAA,CAAK,EAAE,GAAA,EAAK,qEAAA,EAAuE,MAAM,SAAA,CAAUA,MAAK,GAAG,CAAA;AAAA,EACpH;AACF;AAEO,SAAS,QAAA,CACd,IAAA,EACA,OAAA,GAAuB,EAAC,EACR;AAChB,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,cAAc,IAAI,CAAA;AAC5C,EAAA,IAAI,KAAA,EAAO,OAAO,IAAA,CAAK,KAAK,CAAA;AAC5B,EAAA,OAAO,KAAA,CAAM,QAAQ,OAAO,CAAA;AAC9B;AAEO,SAAS,aAAA,CACd,QAAA,EACA,OAAA,GAA+B,EAAC,EACQ;AACxC,EAAA,IAAI,CAAC,MAAA,CAAO,QAAQ,CAAA,EAAG;AACrB,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,kEAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,MAAA,GAAS,QAAQ,MAAA,IAAU,QAAA;AACjC,EAAA,IAAI,EAAE,UAAU,iBAAA,CAAA,EAAoB;AAClC,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,6DAA6D,MAAM,CAAA,CAAA;AAAA,MACxE,IAAA,EAAM,0BAA0B,MAAA,CAAO,IAAA,CAAK,iBAAiB,CAAA,CAAE,IAAA,CAAK,IAAI,CAAC,CAAA;AAAA,KAC1E,CAAA;AAAA,EACH;AACA,EAAA,MAAM,UAAA,GAAa,kBAAkB,MAAM,CAAA;AAE3C,EAAA,MAAM,cAAA,GAAiB,QAAQ,cAAA,IAAkB,WAAA;AACjD,EAAA,IAAI,CAAC,SAAA,CAAU,QAAA,CAAS,cAAc,CAAA,EAAG;AACvC,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,+DAA+D,cAAc,CAAA,CAAA;AAAA,MAClF,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,UAAA,GAAa,QAAQ,UAAA,IAAc,EAAA;AACzC,EAAA,IAAI,OAAO,UAAA,KAAe,QAAA,IAAY,UAAA,GAAa,CAAA,EAAG;AACpD,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,wDAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,UAAA,GAAa,QAAQ,UAAA,IAAc,IAAA;AACzC,EAAA,IAAI,OAAO,UAAA,KAAe,QAAA,IAAY,UAAA,GAAa,GAAA,EAAM;AACvD,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,6DAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,SAAA,GAAY,QAAQ,SAAA,IAAa,EAAA;AACvC,EAAA,IAAI,OAAO,SAAA,KAAc,QAAA,IAAY,SAAA,GAAY,EAAA,EAAI;AACnD,IAAA,OAAO,IAAA,CAAK;AAAA,MACV,GAAA,EAAK,0DAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,IAAI;AACF,IAAA,MAAM,IAAA,GAAO,UAAA,CAAW,WAAA,CAAY,UAAU,CAAA;AAC9C,IAAA,MAAMC,KAAAA,GAAO,UAAA,CAAW,UAAA,CAAW,QAAA,CAAS,SAAA,CAAU,MAAM,CAAA,EAAG,IAAA,EAAM,UAAA,EAAY,SAAA,EAAW,UAAA,CAAW,IAAI,CAAA;AAE3G,IAAA,OAAO,GAAA,CAAI,EAAE,IAAA,EAAM,IAAA,CAAK,QAAA,CAAS,cAAc,CAAA,EAAG,IAAA,EAAMA,KAAAA,CAAK,QAAA,CAAS,cAAc,CAAA,EAAG,CAAA;AAAA,EACzF,SAAS,KAAA,EAAO;AACd,IAAA,OAAO,IAAA,CAAK,EAAE,GAAA,EAAK,+DAAA,EAAiE,MAAM,SAAA,CAAU,KAAK,GAAG,CAAA;AAAA,EAC9G;AACF;AAEO,SAAS,gBACd,QAAA,EACA,cAAA,EACA,IAAA,EACA,OAAA,GAAiC,EAAC,EACzB;AACT,EAAA,IAAI,CAAC,MAAA,CAAO,QAAQ,CAAA,IAAK,CAAC,MAAA,CAAO,cAAc,CAAA,IAAK,CAAC,MAAA,CAAO,IAAI,CAAA,EAAG,OAAO,KAAA;AAE1E,EAAA,MAAM,MAAA,GAAS,QAAQ,MAAA,IAAU,QAAA;AACjC,EAAA,IAAI,EAAE,MAAA,IAAU,iBAAA,CAAA,EAAoB,OAAO,KAAA;AAC3C,EAAA,MAAM,UAAA,GAAa,kBAAkB,MAAM,CAAA;AAE3C,EAAA,MAAM,aAAA,GAAgB,QAAQ,aAAA,IAAiB,WAAA;AAC/C,EAAA,IAAI,CAAC,SAAA,CAAU,QAAA,CAAS,aAAa,GAAG,OAAO,KAAA;AAE/C,EAAA,MAAM,UAAA,GAAa,QAAQ,UAAA,IAAc,IAAA;AACzC,EAAA,IAAI,OAAO,UAAA,KAAe,QAAA,IAAY,UAAA,GAAa,KAAM,OAAO,KAAA;AAEhE,EAAA,MAAM,SAAA,GAAY,QAAQ,SAAA,IAAa,EAAA;AACvC,EAAA,IAAI,OAAO,SAAA,KAAc,QAAA,IAAY,SAAA,GAAY,IAAI,OAAO,KAAA;AAE5D,EAAA,MAAM,SAAA,GAAY,kBAAA,CAAmB,IAAA,EAAM,aAAa,CAAA;AACxD,EAAA,IAAI,SAAA,CAAU,OAAO,OAAO,KAAA;AAE5B,EAAA,MAAM,mBAAA,GAAsB,kBAAA,CAAmB,cAAA,EAAgB,aAAa,CAAA;AAC5E,EAAA,IAAI,mBAAA,CAAoB,OAAO,OAAO,KAAA;AAEtC,EAAA,IAAI;AACF,IAAA,OAAO,UAAA,CAAW,eAAA;AAAA,MAChB,UAAA,CAAW,UAAA,CAAW,QAAA,CAAS,SAAA,CAAU,MAAM,CAAA,EAAG,SAAA,CAAU,MAAA,EAAQ,UAAA,EAAY,SAAA,EAAW,UAAA,CAAW,IAAI,CAAA;AAAA,MAC1G,mBAAA,CAAoB;AAAA,KACtB;AAAA,EACF,CAAA,CAAA,MAAQ;AACN,IAAA,OAAO,KAAA;AAAA,EACT;AACF;;;AF3UO,SAAS,eAAA,GAAkC;AAChD,EAAA,OAAO,aAAA,EAAc;AACvB;AAQO,SAAS,YAAA,GAAuB;AACrC,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,aAAA,EAAc;AACxC,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAM,aAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AASO,SAAS,kBAAA,CACd,MAAA,EACA,OAAA,GAAkC,EAAC,EACI;AACvC,EAAA,OAAO,gBAAA,CAAiB,QAAQ,OAAO,CAAA;AACzC;AAUO,SAAS,eAAA,CAAgB,MAAA,EAAgB,OAAA,GAAkC,EAAC,EAAsB;AACvG,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,gBAAA,CAAiB,QAAQ,OAAO,CAAA;AAC1D,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAM,aAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AAUO,SAAS,UAAA,CAAW,IAAA,EAAc,SAAA,EAA8B,OAAA,GAA0B,EAAC,EAAmB;AACnH,EAAA,OAAO,QAAA,CAAS,IAAA,EAAM,SAAA,EAAW,OAAO,CAAA;AAC1C;AAWO,SAAS,OAAA,CAAQ,IAAA,EAAc,SAAA,EAA8B,OAAA,GAA0B,EAAC,EAAW;AACxG,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,KAAU,QAAA,CAAS,IAAA,EAAM,WAAW,OAAO,CAAA;AAC3D,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAM,aAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AAUO,SAAS,UAAA,CACd,SAAA,EACA,SAAA,EACA,OAAA,GAA0B,EAAC,EACX;AAChB,EAAA,OAAO,QAAA,CAAS,SAAA,EAAW,SAAA,EAAW,OAAO,CAAA;AAC/C;AAWO,SAAS,OAAA,CAAQ,SAAA,EAAmB,SAAA,EAA8B,OAAA,GAA0B,EAAC,EAAW;AAC7G,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,KAAU,QAAA,CAAS,SAAA,EAAW,WAAW,OAAO,CAAA;AAChE,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAM,aAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AAWO,SAAS,aAAA,CACd,IAAA,EACA,SAAA,EACA,OAAA,GAA0B,EAAC,EACX;AAChB,EAAA,OAAO,WAAA,CAAY,IAAA,EAAM,SAAA,EAAW,OAAO,CAAA;AAC7C;AAYO,SAAS,UAAA,CACd,IAAA,EACA,SAAA,EACA,OAAA,GAA0B,EAAC,EACnB;AACR,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,KAAU,WAAA,CAAY,IAAA,EAAM,WAAW,OAAO,CAAA;AAC9D,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAM,aAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AAWO,SAAS,aAAA,CACd,SAAA,EACA,SAAA,EACA,OAAA,GAA0B,EAAC,EACJ;AACvB,EAAA,OAAO,WAAA,CAAe,SAAA,EAAW,SAAA,EAAW,OAAO,CAAA;AACrD;AAYO,SAAS,UAAA,CACd,SAAA,EACA,SAAA,EACA,OAAA,GAA0B,EAAC,EACxB;AACH,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,KAAU,WAAA,CAAe,SAAA,EAAW,WAAW,OAAO,CAAA;AACtE,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAM,aAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AAQO,SAAS,OAAA,CAAQ,IAAA,EAAc,OAAA,GAAuB,EAAC,EAAmB;AAC/E,EAAA,OAAO,KAAA,CAAM,MAAM,OAAO,CAAA;AAC5B;AASO,SAAS,IAAA,CAAK,IAAA,EAAc,OAAA,GAAuB,EAAC,EAAW;AACpE,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,KAAA,CAAM,MAAM,OAAO,CAAA;AAC7C,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAM,aAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AASO,SAAS,UAAA,CACd,IAAA,EACA,OAAA,GAAuB,EAAC,EACR;AAChB,EAAA,OAAO,QAAA,CAAS,MAAM,OAAO,CAAA;AAC/B;AAUO,SAAS,OAAA,CAAoD,IAAA,EAAS,OAAA,GAAuB,EAAC,EAAW;AAC9G,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,QAAA,CAAS,MAAM,OAAO,CAAA;AAChD,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAM,aAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AAQO,SAAS,eAAA,CACd,QAAA,EACA,OAAA,GAA+B,EAAC,EACQ;AACxC,EAAA,OAAO,aAAA,CAAc,UAAU,OAAO,CAAA;AACxC;AASO,SAAS,YAAA,CAAa,QAAA,EAAkB,OAAA,GAA+B,EAAC,EAAmC;AAChH,EAAA,MAAM,EAAE,MAAAA,KAAAA,EAAM,IAAA,EAAM,OAAM,GAAI,aAAA,CAAc,UAAU,OAAO,CAAA;AAC7D,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAM,aAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,EAAE,IAAA,EAAAA,KAAAA,EAAM,IAAA,EAAK;AACtB;AAUO,SAAS,eACd,QAAA,EACA,cAAA,EACA,IAAA,EACA,OAAA,GAAiC,EAAC,EACzB;AACT,EAAA,OAAO,eAAA,CAAgB,QAAA,EAAU,cAAA,EAAgB,IAAA,EAAM,OAAO,CAAA;AAChE;AAUO,SAAS,oBAAA,CAAqB,IAAA,EAAc,aAAA,GAA0B,MAAA,EAAoC;AAC/G,EAAA,OAAO,kBAAA,CAAmB,MAAM,aAAa,CAAA;AAC/C;AAWO,SAAS,iBAAA,CAAkB,IAAA,EAAc,aAAA,GAA0B,MAAA,EAAgB;AACxF,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,kBAAA,CAAmB,MAAM,aAAa,CAAA;AAChE,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAM,aAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AAUO,SAAS,oBAAA,CAAqB,IAAA,EAAc,cAAA,GAA2B,MAAA,EAAwB;AACpG,EAAA,OAAO,kBAAA,CAAmB,MAAM,cAAc,CAAA;AAChD;AAWO,SAAS,iBAAA,CAAkB,IAAA,EAAc,cAAA,GAA2B,MAAA,EAAgB;AACzF,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,kBAAA,CAAmB,MAAM,cAAc,CAAA;AACjE,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAM,aAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AAUO,SAAS,kBAAA,CAAmB,IAAA,EAAc,IAAA,EAAgB,EAAA,EAA0C;AACzG,EAAA,OAAO,gBAAA,CAAiB,IAAA,EAAM,IAAA,EAAM,EAAE,CAAA;AACxC;AAWO,SAAS,eAAA,CAAgB,IAAA,EAAc,IAAA,EAAgB,EAAA,EAAsB;AAClF,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,KAAU,gBAAA,CAAiB,IAAA,EAAM,MAAM,EAAE,CAAA;AACzD,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAM,aAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT","file":"chunk-6GBH7YTP.js","sourcesContent":["import type { Buffer } from 'node:buffer';\r\nimport { $fmtResultErr, type Result } from '~/helpers/error';\r\nimport type {\r\n CreateSecretKeyOptions,\r\n DecryptOptions,\r\n Encoding,\r\n EncryptOptions,\r\n HashOptions,\r\n HashPasswordOptions,\r\n SecretKey,\r\n VerifyPasswordOptions,\r\n} from '~/helpers/types';\r\nimport { $convertBytesToStr, $convertEncoding, $convertStrToBytes } from './node-encode';\r\nimport {\r\n $createSecretKey,\r\n $decrypt,\r\n $decryptObj,\r\n $encrypt,\r\n $encryptObj,\r\n $generateUuid,\r\n $hash,\r\n $hashObj,\r\n $hashPassword,\r\n $verifyPassword,\r\n} from './node-encrypt';\r\n\r\n/**\r\n * Generates a UUID (v4).\r\n *\r\n * @returns A Result containing a string representing the generated UUID or an error.\r\n */\r\nexport function tryGenerateUuid(): Result<string> {\r\n return $generateUuid();\r\n}\r\n\r\n/**\r\n * Generates a UUID (v4).\r\n *\r\n * @returns A string representing the generated UUID.\r\n * @throws {Error} If UUID generation fails.\r\n */\r\nexport function generateUuid(): string {\r\n const { result, error } = $generateUuid();\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Derives a secret key from the provided string for encryption/decryption.\r\n * Internally, the key is hashed using SHA-256 to ensure it meets the required length.\r\n *\r\n * @param secret - The input string to derive the secret key from.\r\n * @returns A Result containing a SecretKey object representing the derived secret key or an error.\r\n */\r\nexport function tryCreateSecretKey(\r\n secret: string,\r\n options: CreateSecretKeyOptions = {},\r\n): Result<{ result: SecretKey<'node'> }> {\r\n return $createSecretKey(secret, options);\r\n}\r\n\r\n/**\r\n * Derives a secret key from the provided string for encryption/decryption.\r\n * Internally, the key is hashed using SHA-256 to ensure it meets the required length.\r\n *\r\n * @param secret - The input string to derive the secret key from.\r\n * @returns A SecretKey object representing the derived secret key.\r\n * @throws {Error} If the input key is invalid or key generation fails.\r\n */\r\nexport function createSecretKey(secret: string, options: CreateSecretKeyOptions = {}): SecretKey<'node'> {\r\n const { result, error } = $createSecretKey(secret, options);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Encrypts the input string using the provided secret key.\r\n * The output is a string in the format \"iv.cipher.tag.\" where each component is base64url encoded.\r\n *\r\n * @param data - The input string to encrypt.\r\n * @param secretKey - The SecretKey object used for encryption.\r\n * @returns A Result containing a string representing the encrypted data in the specified format or an error.\r\n */\r\nexport function tryEncrypt(data: string, secretKey: SecretKey<'node'>, options: EncryptOptions = {}): Result<string> {\r\n return $encrypt(data, secretKey, options);\r\n}\r\n\r\n/**\r\n * Encrypts the input string using the provided secret key.\r\n * The output is a string in the format \"iv.cipher.tag.\" where each component is base64url encoded.\r\n *\r\n * @param data - The input string to encrypt.\r\n * @param secretKey - The SecretKey object used for encryption.\r\n * @returns A string representing the encrypted data in the specified format.\r\n * @throws {Error} If the input data or key is invalid, or if encryption fails.\r\n */\r\nexport function encrypt(data: string, secretKey: SecretKey<'node'>, options: EncryptOptions = {}): string {\r\n const { result, error } = $encrypt(data, secretKey, options);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Decrypts the input string using the provided secret key.\r\n * The input must be in the format \"iv.cipher.tag.\" where each component is base64url encoded.\r\n *\r\n * @param encrypted - The input string to decrypt.\r\n * @param secretKey - The SecretKey object used for decryption.\r\n * @returns A Result containing a string representing the decrypted data or an error.\r\n */\r\nexport function tryDecrypt(\r\n encrypted: string,\r\n secretKey: SecretKey<'node'>,\r\n options: DecryptOptions = {},\r\n): Result<string> {\r\n return $decrypt(encrypted, secretKey, options);\r\n}\r\n\r\n/**\r\n * Decrypts the input string using the provided secret key.\r\n * The input must be in the format \"iv.cipher.tag.\" where each component is base64url encoded.\r\n *\r\n * @param encrypted - The input string to decrypt.\r\n * @param secretKey - The SecretKey object used for decryption.\r\n * @returns A string representing the decrypted data.\r\n * @throws {Error} If the input data or key is invalid, or if decryption fails.\r\n */\r\nexport function decrypt(encrypted: string, secretKey: SecretKey<'node'>, options: DecryptOptions = {}): string {\r\n const { result, error } = $decrypt(encrypted, secretKey, options);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Encrypts the input object using the provided secret key.\r\n * The object is first serialized to a JSON string before encryption.\r\n * The output is a string in the format \"iv.cipher.tag.\" where each component is base64url encoded.\r\n *\r\n * @param data - The input object to encrypt.\r\n * @param secretKey - The SecretKey object used for encryption.\r\n * @returns A Result containing a string representing the encrypted object in the specified format or an error.\r\n */\r\nexport function tryEncryptObj<T extends object = Record<string, unknown>>(\r\n data: T,\r\n secretKey: SecretKey<'node'>,\r\n options: EncryptOptions = {},\r\n): Result<string> {\r\n return $encryptObj(data, secretKey, options);\r\n}\r\n\r\n/**\r\n * Encrypts the input object using the provided secret key.\r\n * The object is first serialized to a JSON string before encryption.\r\n * The output is a string in the format \"iv.cipher.tag.\" where each component is base64url encoded.\r\n *\r\n * @param data - The input object to encrypt.\r\n * @param secretKey - The SecretKey object used for encryption.\r\n * @returns A string representing the encrypted object in the specified format.\r\n * @throws {Error} If the input data or key is invalid, or if encryption fails.\r\n */\r\nexport function encryptObj<T extends object = Record<string, unknown>>(\r\n data: T,\r\n secretKey: SecretKey<'node'>,\r\n options: EncryptOptions = {},\r\n): string {\r\n const { result, error } = $encryptObj(data, secretKey, options);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Decrypts the input string to an object using the provided secret key.\r\n * The input must be in the format \"iv.cipher.tag.\" where each component is base64url encoded.\r\n * The decrypted string is parsed as JSON to reconstruct the original object.\r\n *\r\n * @param encrypted - The input string to decrypt.\r\n * @param secretKey - The SecretKey object used for decryption.\r\n * @returns A Result containing an object representing the decrypted data or an error.\r\n */\r\nexport function tryDecryptObj<T extends object = Record<string, unknown>>(\r\n encrypted: string,\r\n secretKey: SecretKey<'node'>,\r\n options: DecryptOptions = {},\r\n): Result<{ result: T }> {\r\n return $decryptObj<T>(encrypted, secretKey, options);\r\n}\r\n\r\n/**\r\n * Decrypts the input string to an object using the provided secret key.\r\n * The input must be in the format \"iv.cipher.tag.\" where each component is base64url encoded.\r\n * The decrypted string is parsed as JSON to reconstruct the original object.\r\n *\r\n * @param encrypted - The input string to decrypt.\r\n * @param secretKey - The SecretKey object used for decryption.\r\n * @returns An object representing the decrypted data.\r\n * @throws {Error} If the input data or key is invalid, or if decryption fails.\r\n */\r\nexport function decryptObj<T extends object = Record<string, unknown>>(\r\n encrypted: string,\r\n secretKey: SecretKey<'node'>,\r\n options: DecryptOptions = {},\r\n): T {\r\n const { result, error } = $decryptObj<T>(encrypted, secretKey, options);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Hashes the input string using SHA-256 and returns the hash in base64url format.\r\n *\r\n * @param data - The input string to hash.\r\n * @returns A Result containing a string representing the SHA-256 hash in base64url format or an error.\r\n */\r\nexport function tryHash(data: string, options: HashOptions = {}): Result<string> {\r\n return $hash(data, options);\r\n}\r\n\r\n/**\r\n * Hashes the input string using SHA-256 and returns the hash in base64url format.\r\n *\r\n * @param data - The input string to hash.\r\n * @returns A string representing the SHA-256 hash in base64url format.\r\n * @throws {Error} If the input data is invalid or hashing fails.\r\n */\r\nexport function hash(data: string, options: HashOptions = {}): string {\r\n const { result, error } = $hash(data, options);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Hashes the input object by first serializing it to a JSON string using stable key ordering,\r\n * then hashing the string using SHA-256 and returning the hash in base64url format.\r\n *\r\n * @param data - The input object to hash.\r\n * @returns A Result containing a string representing the SHA-256 hash of the serialized object in base64url format or an error.\r\n * */\r\nexport function tryHashObj<T extends object = Record<string, unknown>>(\r\n data: T,\r\n options: HashOptions = {},\r\n): Result<string> {\r\n return $hashObj(data, options);\r\n}\r\n\r\n/**\r\n * Hashes the input object by first serializing it to a JSON string using stable key ordering,\r\n * then hashing the string using SHA-256 and returning the hash in base64url format.\r\n *\r\n * @param data - The input object to hash.\r\n * @returns A string representing the SHA-256 hash of the serialized object in base64url format.\r\n * @throws {Error} If the input data is invalid or hashing fails.\r\n */\r\nexport function hashObj<T extends object = Record<string, unknown>>(data: T, options: HashOptions = {}): string {\r\n const { result, error } = $hashObj(data, options);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Hashes a password using PBKDF2 with SHA-512.\r\n *\r\n * @param password - The password to hash.\r\n * @returns A Result containing an object with the hash and salt, or an error.\r\n */\r\nexport function tryHashPassword(\r\n password: string,\r\n options: HashPasswordOptions = {},\r\n): Result<{ hash: string; salt: string }> {\r\n return $hashPassword(password, options);\r\n}\r\n\r\n/**\r\n * Hashes a password using PBKDF2 with SHA-512.\r\n *\r\n * @param password - The password to hash.\r\n * @returns An object with the hash and salt.\r\n * @throws {Error} If the input password is invalid or hashing fails.\r\n */\r\nexport function hashPassword(password: string, options: HashPasswordOptions = {}): { hash: string; salt: string } {\r\n const { hash, salt, error } = $hashPassword(password, options);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return { hash, salt };\r\n}\r\n\r\n/**\r\n * Verifies a password against a hashed password and salt.\r\n *\r\n * @param password - The password to verify.\r\n * @param hashedPassword - The hashed password to compare against (in base64url format).\r\n * @param salt - The salt used during hashing (in base64url format).\r\n * @returns A boolean indicating whether the password matches the hashed password.\r\n */\r\nexport function verifyPassword(\r\n password: string,\r\n hashedPassword: string,\r\n salt: string,\r\n options: VerifyPasswordOptions = {},\r\n): boolean {\r\n return $verifyPassword(password, hashedPassword, salt, options);\r\n}\r\n\r\n/**\r\n * Converts a string to a Buffer (byte array) using the specified encoding format.\r\n * Supported formats: 'base64', 'base64url', 'hex', 'utf8', 'latin1'.\r\n *\r\n * @param data - The input string to convert.\r\n * @param inputEncoding - The encoding format to use (default is 'utf8').\r\n * @returns A Result containing a Node.js Buffer with the encoded data or an error.\r\n */\r\nexport function tryConvertStrToBytes(data: string, inputEncoding: Encoding = 'utf8'): Result<{ result: Buffer }> {\r\n return $convertStrToBytes(data, inputEncoding);\r\n}\r\n\r\n/**\r\n * Converts a string to a Buffer (byte array) using the specified encoding format.\r\n * Supported formats: 'base64', 'base64url', 'hex', 'utf8', 'latin1'.\r\n *\r\n * @param data - The input string to convert.\r\n * @param inputEncoding - The encoding format to use (default is 'utf8').\r\n * @returns A Node.js Buffer containing the encoded data.\r\n * @throws {Error} If the input data is invalid or conversion fails.\r\n */\r\nexport function convertStrToBytes(data: string, inputEncoding: Encoding = 'utf8'): Buffer {\r\n const { result, error } = $convertStrToBytes(data, inputEncoding);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Converts a Buffer (byte array) to a string using the specified encoding format.\r\n * Supported formats: 'base64', 'base64url', 'hex', 'utf8', 'latin1'.\r\n *\r\n * @param data - The input Buffer to convert.\r\n * @param outputEncoding - The encoding format to use (default is 'utf8').\r\n * @returns A Result containing the string representation of the Buffer or an error.\r\n */\r\nexport function tryConvertBytesToStr(data: Buffer, outputEncoding: Encoding = 'utf8'): Result<string> {\r\n return $convertBytesToStr(data, outputEncoding);\r\n}\r\n\r\n/**\r\n * Converts a Buffer (byte array) to a string using the specified encoding format.\r\n * Supported formats: 'base64', 'base64url', 'hex', 'utf8', 'latin1'.\r\n *\r\n * @param data - The input Buffer to convert.\r\n * @param outputEncoding - The encoding format to use (default is 'utf8').\r\n * @returns A string representation of the Buffer in the specified format.\r\n * @throws {Error} If the input data is invalid or conversion fails.\r\n */\r\nexport function convertBytesToStr(data: Buffer, outputEncoding: Encoding = 'utf8'): string {\r\n const { result, error } = $convertBytesToStr(data, outputEncoding);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Convert data from one encoding format to another.\r\n *\r\n * @param data - The input data to convert.\r\n * @param from - The encoding format to convert from.\r\n * @param to - The encoding format to convert to.\r\n * @returns A Result containing the converted string or an error.\r\n */\r\nexport function tryConvertEncoding(data: string, from: Encoding, to: Encoding): Result<{ result: string }> {\r\n return $convertEncoding(data, from, to);\r\n}\r\n\r\n/**\r\n * Convert data from one encoding format to another.\r\n *\r\n * @param data - The input data to convert.\r\n * @param from - The encoding format to convert from.\r\n * @param to - The encoding format to convert to.\r\n * @returns A converted string.\r\n * @throws {Error} If the input data is invalid or conversion fails.\r\n */\r\nexport function convertEncoding(data: string, from: Encoding, to: Encoding): string {\r\n const { result, error } = $convertEncoding(data, from, to);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n","import { Buffer } from 'node:buffer';\r\nimport { ENCODINGS } from '~/helpers/consts';\r\nimport { $err, $fmtError, $ok, type Result } from '~/helpers/error';\r\nimport type { Encoding } from '~/helpers/types';\r\nimport { $isStr } from '~/helpers/validate';\r\n\r\nexport function $convertStrToBytes(data: string, inputEncoding: Encoding = 'utf8'): Result<{ result: Buffer }> {\r\n if (!$isStr(data)) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - String to Bytes: Empty data',\r\n desc: 'Data must be a non-empty string',\r\n });\r\n }\r\n if (!ENCODINGS.includes(inputEncoding)) {\r\n return $err({\r\n msg: `Crypto NodeJS API - String to Bytes: Unsupported encoding: ${inputEncoding}`,\r\n desc: 'Use base64, base64url, hex, utf8, or latin1',\r\n });\r\n }\r\n try {\r\n return $ok({ result: Buffer.from(data, inputEncoding) });\r\n } catch (error) {\r\n return $err({ msg: 'Crypto NodeJS API - String to Bytes: Failed to convert data', desc: $fmtError(error) });\r\n }\r\n}\r\n\r\nexport function $convertBytesToStr(data: Buffer, outputEncoding: Encoding = 'utf8'): Result<string> {\r\n if (!(data instanceof Buffer)) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - Bytes to String: Invalid data type',\r\n desc: 'Data must be a Buffer',\r\n });\r\n }\r\n if (!ENCODINGS.includes(outputEncoding)) {\r\n return $err({\r\n msg: `Crypto NodeJS API - Bytes to String: Unsupported encoding: ${outputEncoding}`,\r\n desc: 'Use base64, base64url, hex, utf8, or latin1',\r\n });\r\n }\r\n try {\r\n return $ok(Buffer.from(data).toString(outputEncoding));\r\n } catch (error) {\r\n return $err({ msg: 'Crypto NodeJS API - Bytes to String: Failed to convert data', desc: $fmtError(error) });\r\n }\r\n}\r\n\r\nexport function $convertEncoding(data: string, from: Encoding, to: Encoding): Result<{ result: string }> {\r\n if (!$isStr(data)) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - Convert Format: Empty data',\r\n desc: 'Data must be a non-empty string',\r\n });\r\n }\r\n\r\n if (!ENCODINGS.includes(from) || !ENCODINGS.includes(to)) {\r\n return $err({\r\n msg: `Crypto NodeJS API - Convert Format: Unsupported encoding: from ${from} to ${to}`,\r\n desc: 'Use base64, base64url, hex, utf8, or latin1',\r\n });\r\n }\r\n\r\n const bytes = $convertStrToBytes(data, from);\r\n if (bytes.error) return $err({ msg: bytes.error.message, desc: bytes.error.description });\r\n\r\n const str = $convertBytesToStr(bytes.result, to);\r\n if (str.error) return $err({ msg: str.error.message, desc: str.error.description });\r\n\r\n return $ok({ result: str.result });\r\n}\r\n","import { Buffer } from 'node:buffer';\r\nimport nodeCrypto from 'node:crypto';\r\nimport { DIGEST_ALGORITHMS, ENCODINGS, ENCRYPTION_ALGORITHMS } from '~/helpers/consts';\r\nimport { $err, $fmtError, $ok, type Result } from '~/helpers/error';\r\nimport { $parseToObj, $stringifyObj } from '~/helpers/object';\r\nimport type {\r\n CreateSecretKeyOptions,\r\n DecryptOptions,\r\n EncryptOptions,\r\n HashOptions,\r\n HashPasswordOptions,\r\n SecretKey,\r\n VerifyPasswordOptions,\r\n} from '~/helpers/types';\r\nimport { $isSecretKey, $isStr, matchPattern } from '~/helpers/validate';\r\nimport { $convertBytesToStr, $convertStrToBytes } from './node-encode';\r\n\r\nexport function $generateUuid(): Result<string> {\r\n try {\r\n return $ok(nodeCrypto.randomUUID());\r\n } catch (error) {\r\n return $err({ msg: 'Crypto NodeJS API - UUID Generation: Failed to generate UUID', desc: $fmtError(error) });\r\n }\r\n}\r\n\r\nexport function $createSecretKey(\r\n secret: string,\r\n options: CreateSecretKeyOptions = {},\r\n): Result<{ result: SecretKey<'node'> }> {\r\n if (!$isStr(secret)) {\r\n return $err({ msg: 'Crypto NodeJS API - Key Generation: Empty Secret', desc: 'Secret must be a non-empty string' });\r\n }\r\n\r\n const algorithm = options.algorithm ?? 'aes256gcm';\r\n if (!(algorithm in ENCRYPTION_ALGORITHMS)) {\r\n return $err({\r\n msg: `Crypto NodeJS API - Key Generation: Unsupported algorithm: ${algorithm}`,\r\n desc: `Supported algorithms are: ${Object.keys(ENCRYPTION_ALGORITHMS).join(', ')}`,\r\n });\r\n }\r\n\r\n const digest = options.digest ?? 'sha256';\r\n if (!(digest in DIGEST_ALGORITHMS)) {\r\n return $err({\r\n msg: `Crypto NodeJS API - Key Generation: Unsupported digest: ${digest}`,\r\n desc: `Supported digests are: ${Object.keys(DIGEST_ALGORITHMS).join(', ')}`,\r\n });\r\n }\r\n\r\n const salt = options.salt ?? 'cipher-kit-salt';\r\n if (!$isStr(salt, 8)) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - Key Generation: Weak salt',\r\n desc: 'Salt must be a non-empty string with at least 8 characters',\r\n });\r\n }\r\n\r\n const info = options.info ?? 'cipher-kit';\r\n if (!$isStr(info)) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - Key Generation: Invalid info',\r\n desc: 'Info must be a non-empty string',\r\n });\r\n }\r\n\r\n const encryptAlgo = ENCRYPTION_ALGORITHMS[algorithm];\r\n const digestAlgo = DIGEST_ALGORITHMS[digest];\r\n\r\n try {\r\n const derivedKey = nodeCrypto.hkdfSync(\r\n digestAlgo.node,\r\n secret.normalize('NFKC'),\r\n salt.normalize('NFKC'),\r\n info.normalize('NFKC'),\r\n encryptAlgo.keyBytes,\r\n );\r\n const key = nodeCrypto.createSecretKey(Buffer.from(derivedKey));\r\n const secretKey = Object.freeze({\r\n platform: 'node',\r\n digest: digest,\r\n algorithm: algorithm,\r\n key: key,\r\n }) as SecretKey<'node'>;\r\n\r\n return $ok({ result: secretKey });\r\n } catch (error) {\r\n return $err({ msg: 'Crypto NodeJS API - Key Generation: Failed to create secret key', desc: $fmtError(error) });\r\n }\r\n}\r\n\r\nexport function $encrypt(data: string, secretKey: SecretKey<'node'>, options: EncryptOptions = {}): Result<string> {\r\n if (!$isStr(data)) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - Encryption: Empty data for encryption',\r\n desc: 'Data must be a non-empty string',\r\n });\r\n }\r\n\r\n const inputEncoding = options.inputEncoding ?? 'utf8';\r\n const outputEncoding = options.outputEncoding ?? 'base64url';\r\n if (!ENCODINGS.includes(inputEncoding) || !ENCODINGS.includes(outputEncoding)) {\r\n return $err({\r\n msg: `Crypto NodeJS API - Encryption: Unsupported input encoding: ${inputEncoding} or output encoding: ${outputEncoding}`,\r\n desc: 'Use base64, base64url, hex, utf8, or latin1',\r\n });\r\n }\r\n\r\n const injectedKey = $isSecretKey(secretKey, 'node');\r\n if (!injectedKey) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - Encryption: Invalid Secret Key',\r\n desc: 'Expected a Node SecretKey',\r\n });\r\n }\r\n\r\n const { result, error } = $convertStrToBytes(data, inputEncoding);\r\n if (error) return $err(error);\r\n\r\n try {\r\n const iv = nodeCrypto.randomBytes(injectedKey.injected.ivLength);\r\n const cipher = nodeCrypto.createCipheriv(injectedKey.injected.node, injectedKey.key, iv);\r\n const encrypted = Buffer.concat([cipher.update(result), cipher.final()]);\r\n const tag = cipher.getAuthTag();\r\n\r\n const ivStr = $convertBytesToStr(iv, outputEncoding);\r\n const cipherStr = $convertBytesToStr(encrypted, outputEncoding);\r\n const tagStr = $convertBytesToStr(tag, outputEncoding);\r\n\r\n if (ivStr.error || cipherStr.error || tagStr.error) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - Encryption: Failed to convert IV or encrypted data or tag',\r\n desc: `Conversion error: ${ivStr.error || cipherStr.error || tagStr.error}`,\r\n });\r\n }\r\n\r\n return $ok(`${ivStr.result}.${cipherStr.result}.${tagStr.result}.`);\r\n } catch (error) {\r\n return $err({ msg: 'Crypto NodeJS API - Encryption: Failed to encrypt data', desc: $fmtError(error) });\r\n }\r\n}\r\n\r\nexport function $decrypt(\r\n encrypted: string,\r\n secretKey: SecretKey<'node'>,\r\n options: DecryptOptions = {},\r\n): Result<string> {\r\n if (matchPattern(encrypted, 'node') === false) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - Decryption: Invalid encrypted data format',\r\n desc: 'Encrypted data must be in the format \"iv.cipher.tag.\"',\r\n });\r\n }\r\n\r\n const inputEncoding = options.inputEncoding ?? 'base64url';\r\n const outputEncoding = options.outputEncoding ?? 'utf8';\r\n if (!ENCODINGS.includes(inputEncoding) || !ENCODINGS.includes(outputEncoding)) {\r\n return $err({\r\n msg: `Crypto NodeJS API - Decryption: Unsupported input encoding: ${inputEncoding} or output encoding: ${outputEncoding}`,\r\n desc: 'Use base64, base64url, hex, utf8, or latin1',\r\n });\r\n }\r\n\r\n const [iv, cipher, tag] = encrypted.split('.', 4);\r\n if (!$isStr(iv) || !$isStr(cipher) || !$isStr(tag)) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - Decryption: Invalid encrypted data',\r\n desc: 'Encrypted data must contain valid IV, encrypted data, and tag components',\r\n });\r\n }\r\n\r\n const injectedKey = $isSecretKey(secretKey, 'node');\r\n if (!injectedKey) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - Decryption: Invalid Secret Key',\r\n desc: 'Expected a Node SecretKey',\r\n });\r\n }\r\n\r\n const ivBytes = $convertStrToBytes(iv, inputEncoding);\r\n const cipherBytes = $convertStrToBytes(cipher, inputEncoding);\r\n const tagBytes = $convertStrToBytes(tag, inputEncoding);\r\n\r\n if (ivBytes.error || cipherBytes.error || tagBytes.error) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - Decryption: Failed to convert IV or encrypted data or tag',\r\n desc: `Conversion error: ${ivBytes.error || cipherBytes.error || tagBytes.error}`,\r\n });\r\n }\r\n\r\n try {\r\n const decipher = nodeCrypto.createDecipheriv(injectedKey.injected.node, injectedKey.key, ivBytes.result);\r\n decipher.setAuthTag(tagBytes.result);\r\n const decrypted = Buffer.concat([decipher.update(cipherBytes.result), decipher.final()]);\r\n\r\n return $convertBytesToStr(decrypted, outputEncoding);\r\n } catch (error) {\r\n return $err({ msg: 'Crypto NodeJS API - Decryption: Failed to decrypt data', desc: $fmtError(error) });\r\n }\r\n}\r\nexport function $encryptObj<T extends object = Record<string, unknown>>(\r\n data: T,\r\n secretKey: SecretKey<'node'>,\r\n options: EncryptOptions = {},\r\n): Result<string> {\r\n const { result, error } = $stringifyObj(data);\r\n if (error) return $err(error);\r\n return $encrypt(result, secretKey, options);\r\n}\r\n\r\nexport function $decryptObj<T extends object = Record<string, unknown>>(\r\n encrypted: string,\r\n secretKey: SecretKey<'node'>,\r\n options: DecryptOptions = {},\r\n): Result<{ result: T }> {\r\n const { result, error } = $decrypt(encrypted, secretKey, options);\r\n if (error) return $err(error);\r\n return $parseToObj<T>(result);\r\n}\r\n\r\nexport function $hash(data: string, options: HashOptions = {}): Result<string> {\r\n if (!$isStr(data)) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - Hashing: Empty data for hashing',\r\n desc: 'Data must be a non-empty string',\r\n });\r\n }\r\n\r\n const inputEncoding = options.inputEncoding ?? 'utf8';\r\n const outputEncoding = options.outputEncoding ?? 'base64url';\r\n if (!ENCODINGS.includes(inputEncoding) || !ENCODINGS.includes(outputEncoding)) {\r\n return $err({\r\n msg: `Crypto NodeJS API - Hashing: Unsupported encoding: ${inputEncoding} or ${outputEncoding}`,\r\n desc: 'Use base64, base64url, hex, utf8, or latin1',\r\n });\r\n }\r\n\r\n const digest = options.digest ?? 'sha256';\r\n if (!(digest in DIGEST_ALGORITHMS)) {\r\n return $err({\r\n msg: `Crypto NodeJS API - Hashing: Unsupported digest: ${digest}`,\r\n desc: `Supported digests are: ${Object.keys(DIGEST_ALGORITHMS).join(', ')}`,\r\n });\r\n }\r\n const digestAlgo = DIGEST_ALGORITHMS[digest];\r\n\r\n const { result, error } = $convertStrToBytes(data, inputEncoding);\r\n if (error) return $err(error);\r\n\r\n try {\r\n const hashed = nodeCrypto.createHash(digestAlgo.node).update(result).digest();\r\n return $convertBytesToStr(hashed, outputEncoding);\r\n } catch (error) {\r\n return $err({ msg: 'Crypto NodeJS API - Hashing: Failed to hash data with Crypto NodeJS', desc: $fmtError(error) });\r\n }\r\n}\r\n\r\nexport function $hashObj<T extends object = Record<string, unknown>>(\r\n data: T,\r\n options: HashOptions = {},\r\n): Result<string> {\r\n const { result, error } = $stringifyObj(data);\r\n if (error) return $err(error);\r\n return $hash(result, options);\r\n}\r\n\r\nexport function $hashPassword(\r\n password: string,\r\n options: HashPasswordOptions = {},\r\n): Result<{ hash: string; salt: string }> {\r\n if (!$isStr(password)) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - Password Hashing: Empty password for hashing',\r\n desc: 'Password must be a non-empty string',\r\n });\r\n }\r\n\r\n const digest = options.digest ?? 'sha512';\r\n if (!(digest in DIGEST_ALGORITHMS)) {\r\n return $err({\r\n msg: `Crypto NodeJS API - Password Hashing: Unsupported digest: ${digest}`,\r\n desc: `Supported digests are: ${Object.keys(DIGEST_ALGORITHMS).join(', ')}`,\r\n });\r\n }\r\n const digestAlgo = DIGEST_ALGORITHMS[digest];\r\n\r\n const outputEncoding = options.outputEncoding ?? 'base64url';\r\n if (!ENCODINGS.includes(outputEncoding)) {\r\n return $err({\r\n msg: `Crypto NodeJS API - Password Hashing: Unsupported encoding: ${outputEncoding}`,\r\n desc: 'Use base64, base64url, hex, utf8, or latin1',\r\n });\r\n }\r\n\r\n const saltLength = options.saltLength ?? 16;\r\n if (typeof saltLength !== 'number' || saltLength < 8) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - Password Hashing: Weak salt length',\r\n desc: 'Salt length must be a number and at least 8 bytes (recommended 16 or more)',\r\n });\r\n }\r\n\r\n const iterations = options.iterations ?? 320_000;\r\n if (typeof iterations !== 'number' || iterations < 1000) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - Password Hashing: Weak iterations count',\r\n desc: 'Iterations must be a number and at least 1000 (recommended 320,000 or more)',\r\n });\r\n }\r\n\r\n const keyLength = options.keyLength ?? 64;\r\n if (typeof keyLength !== 'number' || keyLength < 16) {\r\n return $err({\r\n msg: 'Crypto NodeJS API - Password Hashing: Invalid key length',\r\n desc: 'Key length must be a number and at least 16 bytes (recommended 64 or more)',\r\n });\r\n }\r\n\r\n try {\r\n const salt = nodeCrypto.randomBytes(saltLength);\r\n const hash = nodeCrypto.pbkdf2Sync(password.normalize('NFKC'), salt, iterations, keyLength, digestAlgo.node);\r\n\r\n return $ok({ salt: salt.toString(outputEncoding), hash: hash.toString(outputEncoding) });\r\n } catch (error) {\r\n return $err({ msg: 'Crypto NodeJS API - Password Hashing: Failed to hash password', desc: $fmtError(error) });\r\n }\r\n}\r\n\r\nexport function $verifyPassword(\r\n password: string,\r\n hashedPassword: string,\r\n salt: string,\r\n options: VerifyPasswordOptions = {},\r\n): boolean {\r\n if (!$isStr(password) || !$isStr(hashedPassword) || !$isStr(salt)) return false;\r\n\r\n const digest = options.digest ?? 'sha512';\r\n if (!(digest in DIGEST_ALGORITHMS)) return false;\r\n const digestAlgo = DIGEST_ALGORITHMS[digest];\r\n\r\n const inputEncoding = options.inputEncoding ?? 'base64url';\r\n if (!ENCODINGS.includes(inputEncoding)) return false;\r\n\r\n const iterations = options.iterations ?? 320_000;\r\n if (typeof iterations !== 'number' || iterations < 1000) return false;\r\n\r\n const keyLength = options.keyLength ?? 64;\r\n if (typeof keyLength !== 'number' || keyLength < 16) return false;\r\n\r\n const saltBytes = $convertStrToBytes(salt, inputEncoding);\r\n if (saltBytes.error) return false;\r\n\r\n const hashedPasswordBytes = $convertStrToBytes(hashedPassword, inputEncoding);\r\n if (hashedPasswordBytes.error) return false;\r\n\r\n try {\r\n return nodeCrypto.timingSafeEqual(\r\n nodeCrypto.pbkdf2Sync(password.normalize('NFKC'), saltBytes.result, iterations, keyLength, digestAlgo.node),\r\n hashedPasswordBytes.result,\r\n );\r\n } catch {\r\n return false;\r\n }\r\n}\r\n"]}