edockit 0.2.4 → 0.4.0-dev.0

package/dist/certificate-fc0e06f7.js

@@ -0,0 +1,571 @@
+/*!
+ * MIT License
+ * Copyright (c) 2025 Edgars Jēkabsons, ZenomyTech SIA
+ */
+'use strict';
+
+var x509 = require('@peculiar/x509');
+
+/**
+ * Recursive DOM traversal to find elements with a given tag name
+ * (Fallback method when XPath is not available or fails)
+ *
+ * @param parent The parent element to search within
+ * @param selector CSS-like selector with namespace support (e.g., "ds:SignedInfo, SignedInfo")
+ * @returns Array of matching elements
+ */
+function findElementsByTagNameRecursive(parent, selector) {
+    const results = [];
+    const selectors = selector.split(",").map((s) => s.trim());
+    // Parse each selector part to extract namespace and local name
+    const parsedSelectors = [];
+    for (const sel of selectors) {
+        const parts = sel.split(/\\:|:/).filter(Boolean);
+        if (parts.length === 1) {
+            parsedSelectors.push({ name: parts[0] });
+        }
+        else if (parts.length === 2) {
+            parsedSelectors.push({ ns: parts[0], name: parts[1] });
+        }
+    }
+    // Recursive search function - keep the original node references
+    function searchNode(node) {
+        if (!node)
+            return;
+        if (node.nodeType === 1) {
+            // Element node - make sure we're working with an actual DOM Element
+            const element = node;
+            const nodeName = element.nodeName;
+            const localName = element.localName;
+            // Check if this element matches any of our selectors
+            for (const sel of parsedSelectors) {
+                // Match by full nodeName (which might include namespace prefix)
+                if (sel.ns && nodeName === `${sel.ns}:${sel.name}`) {
+                    results.push(element); // Store the actual DOM element reference
+                    break;
+                }
+                // Match by local name only
+                if (localName === sel.name || nodeName === sel.name) {
+                    results.push(element); // Store the actual DOM element reference
+                    break;
+                }
+                // Match by checking if nodeName ends with the local name
+                if (nodeName.endsWith(`:${sel.name}`)) {
+                    results.push(element); // Store the actual DOM element reference
+                    break;
+                }
+            }
+        }
+        // Search all child nodes
+        if (node.childNodes) {
+            for (let i = 0; i < node.childNodes.length; i++) {
+                searchNode(node.childNodes[i]);
+            }
+        }
+    }
+    searchNode(parent);
+    return results;
+}
+// Known XML namespaces used in XML Signatures and related standards
+const NAMESPACES = {
+    ds: "http://www.w3.org/2000/09/xmldsig#",
+    dsig11: "http://www.w3.org/2009/xmldsig11#",
+    dsig2: "http://www.w3.org/2010/xmldsig2#",
+    ec: "http://www.w3.org/2001/10/xml-exc-c14n#",
+    dsig_more: "http://www.w3.org/2001/04/xmldsig-more#",
+    xenc: "http://www.w3.org/2001/04/xmlenc#",
+    xenc11: "http://www.w3.org/2009/xmlenc11#",
+    xades: "http://uri.etsi.org/01903/v1.3.2#",
+    xades141: "http://uri.etsi.org/01903/v1.4.1#",
+    asic: "http://uri.etsi.org/02918/v1.2.1#",
+};
+/**
+ * Create an XML parser that works in both browser and Node environments
+ */
+function createXMLParser() {
+    // Check if we're in a browser environment with native DOM support
+    if (typeof window !== "undefined" && window.DOMParser) {
+        return new window.DOMParser();
+    }
+    // We're in Node.js, so use xmldom
+    try {
+        // Import dynamically to avoid bundling issues
+        const { DOMParser } = require("@xmldom/xmldom");
+        return new DOMParser();
+    }
+    catch (e) {
+        throw new Error("XML DOM parser not available. In Node.js environments, please install @xmldom/xmldom package.");
+    }
+}
+/**
+ * Uses XPath to find a single element in an XML document
+ *
+ * @param parent The parent element or document to search within
+ * @param xpathExpression The XPath expression to evaluate
+ * @param namespaces Optional namespace mapping (defaults to common XML signature namespaces)
+ * @returns The found element or null
+ */
+function queryByXPath(parent, xpathExpression, namespaces = NAMESPACES) {
+    try {
+        // Browser environment with native XPath
+        if (typeof document !== "undefined" && typeof document.evaluate === "function") {
+            // Use the document that owns the parent node, not the global document
+            const ownerDoc = "ownerDocument" in parent ? parent.ownerDocument : parent;
+            if (!ownerDoc || typeof ownerDoc.evaluate !== "function") {
+                // XMLDocuments from DOMParser don't have evaluate - silently return null
+                // (caller should use DOM traversal fallback)
+                return null;
+            }
+            const nsResolver = createNsResolverForBrowser(namespaces);
+            const result = ownerDoc.evaluate(xpathExpression, parent, nsResolver, XPathResult.FIRST_ORDERED_NODE_TYPE, null);
+            return result.singleNodeValue;
+        }
+        // Node.js environment with xpath module
+        else {
+            const xpath = require("xpath");
+            const nsResolver = createNsResolverForNode(namespaces);
+            // Use a try-catch here to handle specific XPath issues
+            try {
+                const nodes = xpath.select(xpathExpression, parent, nsResolver);
+                return nodes.length > 0 ? nodes[0] : null;
+            }
+            catch (err) {
+                // If we get a namespace error, try a simpler XPath with just local-name()
+                if (typeof err === "object" &&
+                    err !== null &&
+                    "message" in err &&
+                    typeof err.message === "string" &&
+                    err.message.includes("Cannot resolve QName")) {
+                    // Extract the element name we're looking for from the XPath
+                    const match = xpathExpression.match(/local-name\(\)='([^']+)'/);
+                    if (match && match[1]) {
+                        const elementName = match[1];
+                        const simplifiedXPath = `.//*[local-name()='${elementName}']`;
+                        const nodes = xpath.select(simplifiedXPath, parent);
+                        return nodes.length > 0 ? nodes[0] : null;
+                    }
+                }
+                throw err; // Re-throw if we couldn't handle it
+            }
+        }
+    }
+    catch (e) {
+        console.error(`XPath evaluation failed for "${xpathExpression}":`, e);
+        return null;
+    }
+}
+/**
+ * Uses XPath to find all matching elements in an XML document
+ *
+ * @param parent The parent element or document to search within
+ * @param xpathExpression The XPath expression to evaluate
+ * @param namespaces Optional namespace mapping (defaults to common XML signature namespaces)
+ * @returns Array of matching elements
+ */
+function queryAllByXPath(parent, xpathExpression, namespaces = NAMESPACES) {
+    try {
+        // Browser environment with native XPath
+        if (typeof document !== "undefined" && typeof document.evaluate === "function") {
+            // Use the document that owns the parent node, not the global document
+            const ownerDoc = "ownerDocument" in parent ? parent.ownerDocument : parent;
+            if (!ownerDoc || typeof ownerDoc.evaluate !== "function") {
+                // XMLDocuments from DOMParser don't have evaluate - silently return empty
+                // (caller should use DOM traversal fallback)
+                return [];
+            }
+            const nsResolver = createNsResolverForBrowser(namespaces);
+            const result = ownerDoc.evaluate(xpathExpression, parent, nsResolver, XPathResult.ORDERED_NODE_SNAPSHOT_TYPE, null);
+            const elements = [];
+            for (let i = 0; i < result.snapshotLength; i++) {
+                elements.push(result.snapshotItem(i));
+            }
+            return elements;
+        }
+        // Node.js environment with xpath module
+        else {
+            const xpath = require("xpath");
+            const nsResolver = createNsResolverForNode(namespaces);
+            // Use a try-catch here to handle specific XPath issues
+            try {
+                const nodes = xpath.select(xpathExpression, parent, nsResolver);
+                return nodes;
+            }
+            catch (err) {
+                // If we get a namespace error, try a simpler XPath with just local-name()
+                if (typeof err === "object" &&
+                    err !== null &&
+                    "message" in err &&
+                    typeof err.message === "string" &&
+                    err.message.includes("Cannot resolve QName")) {
+                    // Extract the element name we're looking for from the XPath
+                    const match = xpathExpression.match(/local-name\(\)='([^']+)'/);
+                    if (match && match[1]) {
+                        const elementName = match[1];
+                        const simplifiedXPath = `.//*[local-name()='${elementName}']`;
+                        const nodes = xpath.select(simplifiedXPath, parent);
+                        return nodes;
+                    }
+                }
+                throw err; // Re-throw if we couldn't handle it
+            }
+        }
+    }
+    catch (e) {
+        console.error(`XPath evaluation failed for "${xpathExpression}":`, e);
+        return [];
+    }
+}
+/**
+ * Helper function to create a namespace resolver for browser environments
+ */
+function createNsResolverForBrowser(namespaces) {
+    return function (prefix) {
+        if (prefix === null)
+            return null;
+        return namespaces[prefix] || null;
+    };
+}
+/**
+ * Helper function to create a namespace resolver for Node.js environments
+ */
+function createNsResolverForNode(namespaces) {
+    return namespaces;
+}
+/**
+ * Converts a CSS-like selector (with namespace support) to an XPath expression
+ *
+ * @param selector CSS-like selector (e.g., "ds:SignedInfo, SignedInfo")
+ * @returns Equivalent XPath expression
+ */
+function selectorToXPath(selector) {
+    // Split by comma to handle alternative selectors
+    const parts = selector.split(",").map((s) => s.trim());
+    const xpathParts = [];
+    for (const part of parts) {
+        // Handle namespaced selectors (both prefix:name and prefix\\:name formats)
+        const segments = part.split(/\\:|:/).filter(Boolean);
+        if (segments.length === 1) {
+            // Simple element name without namespace
+            // Match any element with the right local name
+            xpathParts.push(`.//*[local-name()='${segments[0]}']`);
+        }
+        else if (segments.length === 2) {
+            // Element with namespace prefix - only use local-name() or specific namespace prefix
+            // that we know is registered, avoiding the generic 'ns:' prefix
+            xpathParts.push(`.//${segments[0]}:${segments[1]} | .//*[local-name()='${segments[1]}']`);
+        }
+    }
+    // Join with | operator (XPath's OR)
+    return xpathParts.join(" | ");
+}
+/**
+ * Enhanced querySelector that uses XPath for better namespace handling
+ * (Drop-in replacement for the original querySelector function)
+ *
+ * @param parent The parent element or document to search within
+ * @param selector A CSS-like selector (with namespace handling)
+ * @returns The found element or null
+ */
+function querySelector(parent, selector) {
+    // First try native querySelector if we're in a browser
+    if (typeof parent.querySelector === "function") {
+        try {
+            const result = parent.querySelector(selector);
+            if (result)
+                return result;
+        }
+        catch (e) {
+            // Fallback to XPath if querySelector fails (e.g., due to namespace issues)
+        }
+    }
+    // First try with our enhanced DOM traversal methods (more reliable in some cases)
+    const elements = findElementsByTagNameRecursive(parent, selector);
+    if (elements.length > 0) {
+        return elements[0];
+    }
+    // Then try XPath as a fallback
+    try {
+        const xpath = selectorToXPath(selector);
+        return queryByXPath(parent, xpath);
+    }
+    catch (e) {
+        console.warn("XPath query failed, using direct DOM traversal as fallback");
+        return null;
+    }
+}
+/**
+ * Enhanced querySelectorAll that uses XPath for better namespace handling
+ * (Drop-in replacement for the original querySelectorAll function)
+ *
+ * @param parent The parent element or document to search within
+ * @param selector A CSS-like selector (with namespace handling)
+ * @returns Array of matching elements
+ */
+function querySelectorAll(parent, selector) {
+    // First try native querySelectorAll if we're in a browser
+    if (typeof parent.querySelectorAll === "function") {
+        try {
+            const results = parent.querySelectorAll(selector);
+            if (results.length > 0) {
+                const elements = [];
+                for (let i = 0; i < results.length; i++) {
+                    elements.push(results[i]);
+                }
+                return elements;
+            }
+        }
+        catch (e) {
+            // Fallback to XPath if querySelectorAll fails (e.g., due to namespace issues)
+        }
+    }
+    // First try with our enhanced DOM traversal methods (more reliable in some cases)
+    const elements = findElementsByTagNameRecursive(parent, selector);
+    if (elements.length > 0) {
+        return elements;
+    }
+    // Then try XPath as a fallback
+    try {
+        const xpath = selectorToXPath(selector);
+        return queryAllByXPath(parent, xpath);
+    }
+    catch (e) {
+        console.warn("XPath query failed, using direct DOM traversal as fallback");
+        return [];
+    }
+}
+/**
+ * Serialize a DOM node to XML string
+ */
+function serializeToXML(node) {
+    // Check if we're in a browser environment with native XMLSerializer
+    if (typeof window !== "undefined" && window.XMLSerializer) {
+        return new window.XMLSerializer().serializeToString(node);
+    }
+    // If we're using xmldom
+    try {
+        const { XMLSerializer } = require("@xmldom/xmldom");
+        return new XMLSerializer().serializeToString(node);
+    }
+    catch (e) {
+        throw new Error("XML Serializer not available. In Node.js environments, please install @xmldom/xmldom package.");
+    }
+}
+
+/**
+ * Format a certificate string as a proper PEM certificate
+ * @param certBase64 Base64-encoded certificate
+ * @returns Formatted PEM certificate
+ */
+function formatPEM(certBase64) {
+    if (!certBase64)
+        return "";
+    // Remove any whitespace from the base64 string
+    const cleanBase64 = certBase64.replace(/\s+/g, "");
+    // Split the base64 into lines of 64 characters
+    const lines = [];
+    for (let i = 0; i < cleanBase64.length; i += 64) {
+        lines.push(cleanBase64.substring(i, i + 64));
+    }
+    // Format as PEM certificate
+    return `-----BEGIN CERTIFICATE-----\n${lines.join("\n")}\n-----END CERTIFICATE-----`;
+}
+/**
+ * Extract subject information from an X.509 certificate
+ * @param certificate X509Certificate instance
+ * @returns Signer information object
+ */
+function extractSignerInfo(certificate) {
+    const result = {
+        validFrom: certificate.notBefore,
+        validTo: certificate.notAfter,
+        issuer: {},
+    };
+    // Try to extract fields using various approaches
+    // Approach 1: Try direct access to typed subject properties
+    try {
+        if (typeof certificate.subject === "object" && certificate.subject !== null) {
+            // Handle subject properties
+            const subject = certificate.subject;
+            result.commonName = subject.commonName;
+            result.organization = subject.organizationName;
+            result.country = subject.countryName;
+        }
+        // Handle issuer properties
+        if (typeof certificate.issuer === "object" && certificate.issuer !== null) {
+            const issuer = certificate.issuer;
+            result.issuer.commonName = issuer.commonName;
+            result.issuer.organization = issuer.organizationName;
+            result.issuer.country = issuer.countryName;
+        }
+    }
+    catch (e) {
+        console.warn("Could not extract subject/issuer as objects:", e);
+    }
+    // Approach 2: Parse subject/issuer as strings if they are strings
+    try {
+        if (typeof certificate.subject === "string") {
+            const subjectStr = certificate.subject;
+            // Parse the string format (usually CN=name,O=org,C=country)
+            const subjectParts = subjectStr.split(",");
+            for (const part of subjectParts) {
+                const [key, value] = part.trim().split("=");
+                if (key === "CN")
+                    result.commonName = result.commonName || value;
+                if (key === "O")
+                    result.organization = result.organization || value;
+                if (key === "C")
+                    result.country = result.country || value;
+                if (key === "SN")
+                    result.surname = value;
+                if (key === "G" || key === "GN")
+                    result.givenName = value;
+                if (key === "SERIALNUMBER" || key === "2.5.4.5")
+                    result.serialNumber = value?.replace("PNOLV-", "");
+            }
+        }
+        if (typeof certificate.issuer === "string") {
+            const issuerStr = certificate.issuer;
+            // Parse the string format
+            const issuerParts = issuerStr.split(",");
+            for (const part of issuerParts) {
+                const [key, value] = part.trim().split("=");
+                if (key === "CN")
+                    result.issuer.commonName = result.issuer.commonName || value;
+                if (key === "O")
+                    result.issuer.organization = result.issuer.organization || value;
+                if (key === "C")
+                    result.issuer.country = result.issuer.country || value;
+            }
+        }
+    }
+    catch (e) {
+        console.warn("Could not extract subject/issuer as strings:", e);
+    }
+    // Approach 3: Try to use getField method if available
+    try {
+        if ("subjectName" in certificate && certificate.subjectName?.getField) {
+            const subjectName = certificate.subjectName;
+            // Only set if not already set from previous approaches
+            result.commonName = result.commonName || subjectName.getField("CN")?.[0];
+            result.surname = result.surname || subjectName.getField("SN")?.[0];
+            result.givenName = result.givenName || subjectName.getField("G")?.[0];
+            result.serialNumber =
+                result.serialNumber || subjectName.getField("2.5.4.5")?.[0]?.replace("PNOLV-", "");
+            result.country = result.country || subjectName.getField("C")?.[0];
+            result.organization = result.organization || subjectName.getField("O")?.[0];
+        }
+    }
+    catch (e) {
+        console.warn("Could not extract fields using getField method:", e);
+    }
+    // Get the serial number from the certificate if not found in subject
+    if (!result.serialNumber && certificate.serialNumber) {
+        result.serialNumber = certificate.serialNumber;
+    }
+    return result;
+}
+/**
+ * Parse a certificate from base64 data
+ * @param certData Base64-encoded certificate data
+ * @returns Parsed certificate information
+ */
+async function parseCertificate(certData) {
+    try {
+        let pemCert = certData;
+        // Check if it's already in PEM format, if not, convert it
+        if (!certData.includes("-----BEGIN CERTIFICATE-----")) {
+            // Only clean non-PEM format data before conversion
+            const cleanedCertData = certData.replace(/[\r\n\s]/g, "");
+            pemCert = formatPEM(cleanedCertData);
+        }
+        const cert = new x509.X509Certificate(pemCert);
+        const signerInfo = extractSignerInfo(cert);
+        return {
+            subject: {
+                commonName: signerInfo.commonName,
+                organization: signerInfo.organization,
+                country: signerInfo.country,
+                surname: signerInfo.surname,
+                givenName: signerInfo.givenName,
+                serialNumber: signerInfo.serialNumber,
+            },
+            validFrom: signerInfo.validFrom,
+            validTo: signerInfo.validTo,
+            issuer: signerInfo.issuer,
+            serialNumber: cert.serialNumber,
+        };
+    }
+    catch (error) {
+        console.error("Certificate parsing error:", error);
+        throw new Error("Failed to parse certificate: " + (error instanceof Error ? error.message : String(error)));
+    }
+}
+/**
+ * Check if a certificate was valid at a specific time
+ * @param cert Certificate object or info
+ * @param checkTime The time to check validity against (defaults to current time)
+ * @returns Validity check result
+ */
+function checkCertificateValidity(cert, checkTime = new Date()) {
+    // Extract validity dates based on input type
+    const validFrom = "notBefore" in cert ? cert.notBefore : cert.validFrom;
+    const validTo = "notAfter" in cert ? cert.notAfter : cert.validTo;
+    // Check if certificate is valid at the specified time
+    if (checkTime < validFrom) {
+        return {
+            isValid: false,
+            reason: `Certificate not yet valid. Valid from ${validFrom.toISOString()}`,
+        };
+    }
+    if (checkTime > validTo) {
+        return {
+            isValid: false,
+            reason: `Certificate expired. Valid until ${validTo.toISOString()}`,
+        };
+    }
+    return { isValid: true };
+}
+/**
+ * Helper function to get signer display name from certificate
+ * @param certInfo Certificate information
+ * @returns Formatted display name
+ */
+function getSignerDisplayName(certInfo) {
+    const { subject } = certInfo;
+    if (subject.givenName && subject.surname) {
+        return `${subject.givenName} ${subject.surname}`;
+    }
+    if (subject.commonName) {
+        return subject.commonName;
+    }
+    // Fallback to serial number if available
+    return subject.serialNumber || "Unknown Signer";
+}
+/**
+ * Helper function to format certificate validity period in a human-readable format
+ * @param certInfo Certificate information
+ * @returns Formatted validity period
+ */
+function formatValidityPeriod(certInfo) {
+    const { validFrom, validTo } = certInfo;
+    const formatDate = (date) => {
+        return date.toLocaleDateString(undefined, {
+            year: "numeric",
+            month: "long",
+            day: "numeric",
+        });
+    };
+    return `${formatDate(validFrom)} to ${formatDate(validTo)}`;
+}
+
+exports.checkCertificateValidity = checkCertificateValidity;
+exports.createXMLParser = createXMLParser;
+exports.extractSignerInfo = extractSignerInfo;
+exports.formatPEM = formatPEM;
+exports.formatValidityPeriod = formatValidityPeriod;
+exports.getSignerDisplayName = getSignerDisplayName;
+exports.parseCertificate = parseCertificate;
+exports.querySelector = querySelector;
+exports.querySelectorAll = querySelectorAll;
+exports.serializeToXML = serializeToXML;
+//# sourceMappingURL=certificate-fc0e06f7.js.map

package/dist/certificate-fc0e06f7.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"certificate-fc0e06f7.js","sources":["../src/utils/xmlParser.ts","../src/core/certificate.ts"],"sourcesContent":[null,null],"names":["X509Certificate"],"mappings":";;;;;;;;AAAA;;;;;;;AAOG;AACa,SAAA,8BAA8B,CAAC,MAAY,EAAE,QAAgB,EAAA;IAC3E,MAAM,OAAO,GAAc,EAAE,CAAC;IAC9B,MAAM,SAAS,GAAG,QAAQ,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;;IAG3D,MAAM,eAAe,GAAyC,EAAE,CAAC;AACjE,IAAA,KAAK,MAAM,GAAG,IAAI,SAAS,EAAE;AAC3B,QAAA,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;AACjD,QAAA,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE;AACtB,YAAA,eAAe,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;SAC1C;AAAM,aAAA,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE;AAC7B,YAAA,eAAe,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,KAAK,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;SACxD;KACF;;IAGD,SAAS,UAAU,CAAC,IAAU,EAAA;AAC5B,QAAA,IAAI,CAAC,IAAI;YAAE,OAAO;AAElB,QAAA,IAAI,IAAI,CAAC,QAAQ,KAAK,CAAC,EAAE;;YAEvB,MAAM,OAAO,GAAG,IAAe,CAAC;AAChC,YAAA,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC;AAClC,YAAA,MAAM,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;;AAGpC,YAAA,KAAK,MAAM,GAAG,IAAI,eAAe,EAAE;;AAEjC,gBAAA,IAAI,GAAG,CAAC,EAAE,IAAI,QAAQ,KAAK,CAAG,EAAA,GAAG,CAAC,EAAE,IAAI,GAAG,CAAC,IAAI,CAAA,CAAE,EAAE;AAClD,oBAAA,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;oBACtB,MAAM;iBACP;;AAED,gBAAA,IAAI,SAAS,KAAK,GAAG,CAAC,IAAI,IAAI,QAAQ,KAAK,GAAG,CAAC,IAAI,EAAE;AACnD,oBAAA,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;oBACtB,MAAM;iBACP;;gBAED,IAAI,QAAQ,CAAC,QAAQ,CAAC,CAAA,CAAA,EAAI,GAAG,CAAC,IAAI,CAAA,CAAE,CAAC,EAAE;AACrC,oBAAA,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;oBACtB,MAAM;iBACP;aACF;SACF;;AAGD,QAAA,IAAI,IAAI,CAAC,UAAU,EAAE;AACnB,YAAA,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE;gBAC/C,UAAU,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC;aAChC;SACF;KACF;IAED,UAAU,CAAC,MAAM,CAAC,CAAC;AACnB,IAAA,OAAO,OAAO,CAAC;AACjB,CAAC;AAcD;AACO,MAAM,UAAU,GAAiB;AACtC,IAAA,EAAE,EAAE,oCAAoC;AACxC,IAAA,MAAM,EAAE,mCAAmC;AAC3C,IAAA,KAAK,EAAE,kCAAkC;AACzC,IAAA,EAAE,EAAE,yCAAyC;AAC7C,IAAA,SAAS,EAAE,yCAAyC;AACpD,IAAA,IAAI,EAAE,mCAAmC;AACzC,IAAA,MAAM,EAAE,kCAAkC;AAC1C,IAAA,KAAK,EAAE,mCAAmC;AAC1C,IAAA,QAAQ,EAAE,mCAAmC;AAC7C,IAAA,IAAI,EAAE,mCAAmC;CAC1C,CAAC;AAEF;;AAEG;SACa,eAAe,GAAA;;IAE7B,IAAI,OAAO,MAAM,KAAK,WAAW,IAAI,MAAM,CAAC,SAAS,EAAE;AACrD,QAAA,OAAO,IAAI,MAAM,CAAC,SAAS,EAAE,CAAC;KAC/B;;AAGD,IAAA,IAAI;;QAEF,MAAM,EAAE,SAAS,EAAE,GAAG,OAAO,CAAC,gBAAgB,CAAC,CAAC;QAChD,OAAO,IAAI,SAAS,EAAE,CAAC;KACxB;IAAC,OAAO,CAAC,EAAE;AACV,QAAA,MAAM,IAAI,KAAK,CACb,+FAA+F,CAChG,CAAC;KACH;AACH,CAAC;AAED;;;;;;;AAOG;AACG,SAAU,YAAY,CAC1B,MAA0B,EAC1B,eAAuB,EACvB,aAA2B,UAAU,EAAA;AAErC,IAAA,IAAI;;AAEF,QAAA,IAAI,OAAO,QAAQ,KAAK,WAAW,IAAI,OAAO,QAAQ,CAAC,QAAQ,KAAK,UAAU,EAAE;;AAE9E,YAAA,MAAM,QAAQ,GAAG,eAAe,IAAI,MAAM,GAAG,MAAM,CAAC,aAAa,GAAG,MAAM,CAAC;YAC3E,IAAI,CAAC,QAAQ,IAAI,OAAO,QAAQ,CAAC,QAAQ,KAAK,UAAU,EAAE;;;AAGxD,gBAAA,OAAO,IAAI,CAAC;aACb;AACD,YAAA,MAAM,UAAU,GAAG,0BAA0B,CAAC,UAAU,CAAC,CAAC;AAC1D,YAAA,MAAM,MAAM,GAAG,QAAQ,CAAC,QAAQ,CAC9B,eAAe,EACf,MAAM,EACN,UAAU,EACV,WAAW,CAAC,uBAAuB,EACnC,IAAI,CACL,CAAC;YACF,OAAO,MAAM,CAAC,eAA0B,CAAC;SAC1C;;aAEI;AACH,YAAA,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;AAC/B,YAAA,MAAM,UAAU,GAAG,uBAAuB,CAAC,UAAU,CAAC,CAAC;;AAGvD,YAAA,IAAI;AACF,gBAAA,MAAM,KAAK,GAAG,KAAK,CAAC,MAAM,CAAC,eAAe,EAAE,MAAM,EAAE,UAAU,CAAC,CAAC;AAChE,gBAAA,OAAO,KAAK,CAAC,MAAM,GAAG,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;aAC3C;YAAC,OAAO,GAAY,EAAE;;gBAErB,IACE,OAAO,GAAG,KAAK,QAAQ;AACvB,oBAAA,GAAG,KAAK,IAAI;AACZ,oBAAA,SAAS,IAAI,GAAG;AAChB,oBAAA,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ;oBAC/B,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,sBAAsB,CAAC,EAC5C;;oBAEA,MAAM,KAAK,GAAG,eAAe,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC;AAChE,oBAAA,IAAI,KAAK,IAAI,KAAK,CAAC,CAAC,CAAC,EAAE;AACrB,wBAAA,MAAM,WAAW,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;AAC7B,wBAAA,MAAM,eAAe,GAAG,CAAsB,mBAAA,EAAA,WAAW,IAAI,CAAC;wBAC9D,MAAM,KAAK,GAAG,KAAK,CAAC,MAAM,CAAC,eAAe,EAAE,MAAM,CAAC,CAAC;AACpD,wBAAA,OAAO,KAAK,CAAC,MAAM,GAAG,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;qBAC3C;iBACF;gBACD,MAAM,GAAG,CAAC;aACX;SACF;KACF;IAAC,OAAO,CAAC,EAAE;QACV,OAAO,CAAC,KAAK,CAAC,CAAA,6BAAA,EAAgC,eAAe,CAAI,EAAA,CAAA,EAAE,CAAC,CAAC,CAAC;AACtE,QAAA,OAAO,IAAI,CAAC;KACb;AACH,CAAC;AAED;;;;;;;AAOG;AACG,SAAU,eAAe,CAC7B,MAA0B,EAC1B,eAAuB,EACvB,aAA2B,UAAU,EAAA;AAErC,IAAA,IAAI;;AAEF,QAAA,IAAI,OAAO,QAAQ,KAAK,WAAW,IAAI,OAAO,QAAQ,CAAC,QAAQ,KAAK,UAAU,EAAE;;AAE9E,YAAA,MAAM,QAAQ,GAAG,eAAe,IAAI,MAAM,GAAG,MAAM,CAAC,aAAa,GAAG,MAAM,CAAC;YAC3E,IAAI,CAAC,QAAQ,IAAI,OAAO,QAAQ,CAAC,QAAQ,KAAK,UAAU,EAAE;;;AAGxD,gBAAA,OAAO,EAAE,CAAC;aACX;AACD,YAAA,MAAM,UAAU,GAAG,0BAA0B,CAAC,UAAU,CAAC,CAAC;AAC1D,YAAA,MAAM,MAAM,GAAG,QAAQ,CAAC,QAAQ,CAC9B,eAAe,EACf,MAAM,EACN,UAAU,EACV,WAAW,CAAC,0BAA0B,EACtC,IAAI,CACL,CAAC;YAEF,MAAM,QAAQ,GAAc,EAAE,CAAC;AAC/B,YAAA,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC,cAAc,EAAE,CAAC,EAAE,EAAE;gBAC9C,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,CAAY,CAAC,CAAC;aAClD;AACD,YAAA,OAAO,QAAQ,CAAC;SACjB;;aAEI;AACH,YAAA,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;AAC/B,YAAA,MAAM,UAAU,GAAG,uBAAuB,CAAC,UAAU,CAAC,CAAC;;AAGvD,YAAA,IAAI;AACF,gBAAA,MAAM,KAAK,GAAG,KAAK,CAAC,MAAM,CAAC,eAAe,EAAE,MAAM,EAAE,UAAU,CAAC,CAAC;AAChE,gBAAA,OAAO,KAAkB,CAAC;aAC3B;YAAC,OAAO,GAAY,EAAE;;gBAErB,IACE,OAAO,GAAG,KAAK,QAAQ;AACvB,oBAAA,GAAG,KAAK,IAAI;AACZ,oBAAA,SAAS,IAAI,GAAG;AAChB,oBAAA,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ;oBAC/B,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,sBAAsB,CAAC,EAC5C;;oBAEA,MAAM,KAAK,GAAG,eAAe,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC;AAChE,oBAAA,IAAI,KAAK,IAAI,KAAK,CAAC,CAAC,CAAC,EAAE;AACrB,wBAAA,MAAM,WAAW,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;AAC7B,wBAAA,MAAM,eAAe,GAAG,CAAsB,mBAAA,EAAA,WAAW,IAAI,CAAC;wBAC9D,MAAM,KAAK,GAAG,KAAK,CAAC,MAAM,CAAC,eAAe,EAAE,MAAM,CAAC,CAAC;AACpD,wBAAA,OAAO,KAAkB,CAAC;qBAC3B;iBACF;gBACD,MAAM,GAAG,CAAC;aACX;SACF;KACF;IAAC,OAAO,CAAC,EAAE;QACV,OAAO,CAAC,KAAK,CAAC,CAAA,6BAAA,EAAgC,eAAe,CAAI,EAAA,CAAA,EAAE,CAAC,CAAC,CAAC;AACtE,QAAA,OAAO,EAAE,CAAC;KACX;AACH,CAAC;AAED;;AAEG;AACH,SAAS,0BAA0B,CAAC,UAAwB,EAAA;AAC1D,IAAA,OAAO,UAAU,MAAqB,EAAA;QACpC,IAAI,MAAM,KAAK,IAAI;AAAE,YAAA,OAAO,IAAI,CAAC;AACjC,QAAA,OAAO,UAAU,CAAC,MAAM,CAAC,IAAI,IAAI,CAAC;AACpC,KAAC,CAAC;AACJ,CAAC;AAED;;AAEG;AACH,SAAS,uBAAuB,CAAC,UAAwB,EAAA;AACvD,IAAA,OAAO,UAAU,CAAC;AACpB,CAAC;AAED;;;;;AAKG;AACG,SAAU,eAAe,CAAC,QAAgB,EAAA;;IAE9C,MAAM,KAAK,GAAG,QAAQ,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;IACvD,MAAM,UAAU,GAAa,EAAE,CAAC;AAEhC,IAAA,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE;;AAExB,QAAA,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;AAErD,QAAA,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE;;;YAGzB,UAAU,CAAC,IAAI,CAAC,CAAsB,mBAAA,EAAA,QAAQ,CAAC,CAAC,CAAC,CAAI,EAAA,CAAA,CAAC,CAAC;SACxD;AAAM,aAAA,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE;;;YAGhC,UAAU,CAAC,IAAI,CAAC,CAAA,GAAA,EAAM,QAAQ,CAAC,CAAC,CAAC,CAAI,CAAA,EAAA,QAAQ,CAAC,CAAC,CAAC,yBAAyB,QAAQ,CAAC,CAAC,CAAC,CAAA,EAAA,CAAI,CAAC,CAAC;SAC3F;KACF;;AAGD,IAAA,OAAO,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;AAChC,CAAC;AAED;;;;;;;AAOG;AACa,SAAA,aAAa,CAAC,MAA0B,EAAE,QAAgB,EAAA;;AAExE,IAAA,IAAI,OAAO,MAAM,CAAC,aAAa,KAAK,UAAU,EAAE;AAC9C,QAAA,IAAI;YACF,MAAM,MAAM,GAAG,MAAM,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC;AAC9C,YAAA,IAAI,MAAM;AAAE,gBAAA,OAAO,MAAM,CAAC;SAC3B;QAAC,OAAO,CAAC,EAAE;;SAEX;KACF;;IAGD,MAAM,QAAQ,GAAG,8BAA8B,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;AAClE,IAAA,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE;AACvB,QAAA,OAAO,QAAQ,CAAC,CAAC,CAAC,CAAC;KACpB;;AAGD,IAAA,IAAI;AACF,QAAA,MAAM,KAAK,GAAG,eAAe,CAAC,QAAQ,CAAC,CAAC;AACxC,QAAA,OAAO,YAAY,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;KACpC;IAAC,OAAO,CAAC,EAAE;AACV,QAAA,OAAO,CAAC,IAAI,CAAC,4DAA4D,CAAC,CAAC;AAC3E,QAAA,OAAO,IAAI,CAAC;KACb;AACH,CAAC;AAED;;;;;;;AAOG;AACa,SAAA,gBAAgB,CAAC,MAA0B,EAAE,QAAgB,EAAA;;AAE3E,IAAA,IAAI,OAAO,MAAM,CAAC,gBAAgB,KAAK,UAAU,EAAE;AACjD,QAAA,IAAI;YACF,MAAM,OAAO,GAAG,MAAM,CAAC,gBAAgB,CAAC,QAAQ,CAAC,CAAC;AAClD,YAAA,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE;gBACtB,MAAM,QAAQ,GAAc,EAAE,CAAC;AAC/B,gBAAA,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE;oBACvC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAY,CAAC,CAAC;iBACtC;AACD,gBAAA,OAAO,QAAQ,CAAC;aACjB;SACF;QAAC,OAAO,CAAC,EAAE;;SAEX;KACF;;IAGD,MAAM,QAAQ,GAAG,8BAA8B,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;AAClE,IAAA,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE;AACvB,QAAA,OAAO,QAAQ,CAAC;KACjB;;AAGD,IAAA,IAAI;AACF,QAAA,MAAM,KAAK,GAAG,eAAe,CAAC,QAAQ,CAAC,CAAC;AACxC,QAAA,OAAO,eAAe,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;KACvC;IAAC,OAAO,CAAC,EAAE;AACV,QAAA,OAAO,CAAC,IAAI,CAAC,4DAA4D,CAAC,CAAC;AAC3E,QAAA,OAAO,EAAE,CAAC;KACX;AACH,CAAC;AAED;;AAEG;AACG,SAAU,cAAc,CAAC,IAAU,EAAA;;IAEvC,IAAI,OAAO,MAAM,KAAK,WAAW,IAAI,MAAM,CAAC,aAAa,EAAE;QACzD,OAAO,IAAI,MAAM,CAAC,aAAa,EAAE,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC;KAC3D;;AAGD,IAAA,IAAI;QACF,MAAM,EAAE,aAAa,EAAE,GAAG,OAAO,CAAC,gBAAgB,CAAC,CAAC;QACpD,OAAO,IAAI,aAAa,EAAE,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC;KACpD;IAAC,OAAO,CAAC,EAAE;AACV,QAAA,MAAM,IAAI,KAAK,CACb,+FAA+F,CAChG,CAAC;KACH;AACH;;ACjWA;;;;AAIG;AACG,SAAU,SAAS,CAAC,UAAmB,EAAA;AAC3C,IAAA,IAAI,CAAC,UAAU;AAAE,QAAA,OAAO,EAAE,CAAC;;IAG3B,MAAM,WAAW,GAAG,UAAU,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;;IAGnD,MAAM,KAAK,GAAG,EAAE,CAAC;AACjB,IAAA,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,WAAW,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE;AAC/C,QAAA,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;KAC9C;;IAGD,OAAO,CAAA,6BAAA,EAAgC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,6BAA6B,CAAC;AACvF,CAAC;AAED;;;;AAIG;AACG,SAAU,iBAAiB,CAAC,WAA4B,EAAA;AAe5D,IAAA,MAAM,MAAM,GAAQ;QAClB,SAAS,EAAE,WAAW,CAAC,SAAS;QAChC,OAAO,EAAE,WAAW,CAAC,QAAQ;AAC7B,QAAA,MAAM,EAAE,EAAE;KACX,CAAC;;;AAKF,IAAA,IAAI;AACF,QAAA,IAAI,OAAO,WAAW,CAAC,OAAO,KAAK,QAAQ,IAAI,WAAW,CAAC,OAAO,KAAK,IAAI,EAAE;;AAE3E,YAAA,MAAM,OAAO,GAAG,WAAW,CAAC,OAAc,CAAC;AAC3C,YAAA,MAAM,CAAC,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC;AACvC,YAAA,MAAM,CAAC,YAAY,GAAG,OAAO,CAAC,gBAAgB,CAAC;AAC/C,YAAA,MAAM,CAAC,OAAO,GAAG,OAAO,CAAC,WAAW,CAAC;SACtC;;AAGD,QAAA,IAAI,OAAO,WAAW,CAAC,MAAM,KAAK,QAAQ,IAAI,WAAW,CAAC,MAAM,KAAK,IAAI,EAAE;AACzE,YAAA,MAAM,MAAM,GAAG,WAAW,CAAC,MAAa,CAAC;YACzC,MAAM,CAAC,MAAM,CAAC,UAAU,GAAG,MAAM,CAAC,UAAU,CAAC;YAC7C,MAAM,CAAC,MAAM,CAAC,YAAY,GAAG,MAAM,CAAC,gBAAgB,CAAC;YACrD,MAAM,CAAC,MAAM,CAAC,OAAO,GAAG,MAAM,CAAC,WAAW,CAAC;SAC5C;KACF;IAAC,OAAO,CAAC,EAAE;AACV,QAAA,OAAO,CAAC,IAAI,CAAC,8CAA8C,EAAE,CAAC,CAAC,CAAC;KACjE;;AAGD,IAAA,IAAI;AACF,QAAA,IAAI,OAAO,WAAW,CAAC,OAAO,KAAK,QAAQ,EAAE;AAC3C,YAAA,MAAM,UAAU,GAAG,WAAW,CAAC,OAAiB,CAAC;;YAGjD,MAAM,YAAY,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;AAC3C,YAAA,KAAK,MAAM,IAAI,IAAI,YAAY,EAAE;AAC/B,gBAAA,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;gBAC5C,IAAI,GAAG,KAAK,IAAI;oBAAE,MAAM,CAAC,UAAU,GAAG,MAAM,CAAC,UAAU,IAAI,KAAK,CAAC;gBACjE,IAAI,GAAG,KAAK,GAAG;oBAAE,MAAM,CAAC,YAAY,GAAG,MAAM,CAAC,YAAY,IAAI,KAAK,CAAC;gBACpE,IAAI,GAAG,KAAK,GAAG;oBAAE,MAAM,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,IAAI,KAAK,CAAC;gBAC1D,IAAI,GAAG,KAAK,IAAI;AAAE,oBAAA,MAAM,CAAC,OAAO,GAAG,KAAK,CAAC;AACzC,gBAAA,IAAI,GAAG,KAAK,GAAG,IAAI,GAAG,KAAK,IAAI;AAAE,oBAAA,MAAM,CAAC,SAAS,GAAG,KAAK,CAAC;AAC1D,gBAAA,IAAI,GAAG,KAAK,cAAc,IAAI,GAAG,KAAK,SAAS;oBAC7C,MAAM,CAAC,YAAY,GAAG,KAAK,EAAE,OAAO,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;aACtD;SACF;AAED,QAAA,IAAI,OAAO,WAAW,CAAC,MAAM,KAAK,QAAQ,EAAE;AAC1C,YAAA,MAAM,SAAS,GAAG,WAAW,CAAC,MAAgB,CAAC;;YAG/C,MAAM,WAAW,GAAG,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;AACzC,YAAA,KAAK,MAAM,IAAI,IAAI,WAAW,EAAE;AAC9B,gBAAA,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;gBAC5C,IAAI,GAAG,KAAK,IAAI;AAAE,oBAAA,MAAM,CAAC,MAAM,CAAC,UAAU,GAAG,MAAM,CAAC,MAAM,CAAC,UAAU,IAAI,KAAK,CAAC;gBAC/E,IAAI,GAAG,KAAK,GAAG;AAAE,oBAAA,MAAM,CAAC,MAAM,CAAC,YAAY,GAAG,MAAM,CAAC,MAAM,CAAC,YAAY,IAAI,KAAK,CAAC;gBAClF,IAAI,GAAG,KAAK,GAAG;AAAE,oBAAA,MAAM,CAAC,MAAM,CAAC,OAAO,GAAG,MAAM,CAAC,MAAM,CAAC,OAAO,IAAI,KAAK,CAAC;aACzE;SACF;KACF;IAAC,OAAO,CAAC,EAAE;AACV,QAAA,OAAO,CAAC,IAAI,CAAC,8CAA8C,EAAE,CAAC,CAAC,CAAC;KACjE;;AAGD,IAAA,IAAI;QACF,IAAI,aAAa,IAAI,WAAW,IAAK,WAAmB,CAAC,WAAW,EAAE,QAAQ,EAAE;AAC9E,YAAA,MAAM,WAAW,GAAI,WAAmB,CAAC,WAAW,CAAC;;AAErD,YAAA,MAAM,CAAC,UAAU,GAAG,MAAM,CAAC,UAAU,IAAI,WAAW,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;AACzE,YAAA,MAAM,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,IAAI,WAAW,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;AACnE,YAAA,MAAM,CAAC,SAAS,GAAG,MAAM,CAAC,SAAS,IAAI,WAAW,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC;AACtE,YAAA,MAAM,CAAC,YAAY;gBACjB,MAAM,CAAC,YAAY,IAAI,WAAW,CAAC,QAAQ,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,EAAE,OAAO,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;AACrF,YAAA,MAAM,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,IAAI,WAAW,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC;AAClE,YAAA,MAAM,CAAC,YAAY,GAAG,MAAM,CAAC,YAAY,IAAI,WAAW,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC;SAC7E;KACF;IAAC,OAAO,CAAC,EAAE;AACV,QAAA,OAAO,CAAC,IAAI,CAAC,iDAAiD,EAAE,CAAC,CAAC,CAAC;KACpE;;IAGD,IAAI,CAAC,MAAM,CAAC,YAAY,IAAI,WAAW,CAAC,YAAY,EAAE;AACpD,QAAA,MAAM,CAAC,YAAY,GAAG,WAAW,CAAC,YAAY,CAAC;KAChD;AAED,IAAA,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;;AAIG;AACI,eAAe,gBAAgB,CAAC,QAAgB,EAAA;AACrD,IAAA,IAAI;QACF,IAAI,OAAO,GAAG,QAAQ,CAAC;;QAGvB,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,6BAA6B,CAAC,EAAE;;YAErD,MAAM,eAAe,GAAG,QAAQ,CAAC,OAAO,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;AAC1D,YAAA,OAAO,GAAG,SAAS,CAAC,eAAe,CAAC,CAAC;SACtC;AACD,QAAA,MAAM,IAAI,GAAG,IAAIA,oBAAe,CAAC,OAAO,CAAC,CAAC;AAC1C,QAAA,MAAM,UAAU,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAC;QAE3C,OAAO;AACL,YAAA,OAAO,EAAE;gBACP,UAAU,EAAE,UAAU,CAAC,UAAU;gBACjC,YAAY,EAAE,UAAU,CAAC,YAAY;gBACrC,OAAO,EAAE,UAAU,CAAC,OAAO;gBAC3B,OAAO,EAAE,UAAU,CAAC,OAAO;gBAC3B,SAAS,EAAE,UAAU,CAAC,SAAS;gBAC/B,YAAY,EAAE,UAAU,CAAC,YAAY;AACtC,aAAA;YACD,SAAS,EAAE,UAAU,CAAC,SAAS;YAC/B,OAAO,EAAE,UAAU,CAAC,OAAO;YAC3B,MAAM,EAAE,UAAU,CAAC,MAAM;YACzB,YAAY,EAAE,IAAI,CAAC,YAAY;SAChC,CAAC;KACH;IAAC,OAAO,KAAK,EAAE;AACd,QAAA,OAAO,CAAC,KAAK,CAAC,4BAA4B,EAAE,KAAK,CAAC,CAAC;QACnD,MAAM,IAAI,KAAK,CACb,+BAA+B,IAAI,KAAK,YAAY,KAAK,GAAG,KAAK,CAAC,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,CAC3F,CAAC;KACH;AACH,CAAC;AAED;;;;;AAKG;AACG,SAAU,wBAAwB,CACtC,IAAuC,EACvC,SAAkB,GAAA,IAAI,IAAI,EAAE,EAAA;;AAG5B,IAAA,MAAM,SAAS,GAAG,WAAW,IAAI,IAAI,GAAG,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC;AACxE,IAAA,MAAM,OAAO,GAAG,UAAU,IAAI,IAAI,GAAG,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC;;AAGlE,IAAA,IAAI,SAAS,GAAG,SAAS,EAAE;QACzB,OAAO;AACL,YAAA,OAAO,EAAE,KAAK;AACd,YAAA,MAAM,EAAE,CAAyC,sCAAA,EAAA,SAAS,CAAC,WAAW,EAAE,CAAE,CAAA;SAC3E,CAAC;KACH;AAED,IAAA,IAAI,SAAS,GAAG,OAAO,EAAE;QACvB,OAAO;AACL,YAAA,OAAO,EAAE,KAAK;AACd,YAAA,MAAM,EAAE,CAAoC,iCAAA,EAAA,OAAO,CAAC,WAAW,EAAE,CAAE,CAAA;SACpE,CAAC;KACH;AAED,IAAA,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;AAC3B,CAAC;AAyBD;;;;AAIG;AACG,SAAU,oBAAoB,CAAC,QAAyB,EAAA;AAC5D,IAAA,MAAM,EAAE,OAAO,EAAE,GAAG,QAAQ,CAAC;IAE7B,IAAI,OAAO,CAAC,SAAS,IAAI,OAAO,CAAC,OAAO,EAAE;QACxC,OAAO,CAAA,EAAG,OAAO,CAAC,SAAS,IAAI,OAAO,CAAC,OAAO,CAAA,CAAE,CAAC;KAClD;AAED,IAAA,IAAI,OAAO,CAAC,UAAU,EAAE;QACtB,OAAO,OAAO,CAAC,UAAU,CAAC;KAC3B;;AAGD,IAAA,OAAO,OAAO,CAAC,YAAY,IAAI,gBAAgB,CAAC;AAClD,CAAC;AAED;;;;AAIG;AACG,SAAU,oBAAoB,CAAC,QAAyB,EAAA;AAC5D,IAAA,MAAM,EAAE,SAAS,EAAE,OAAO,EAAE,GAAG,QAAQ,CAAC;AAExC,IAAA,MAAM,UAAU,GAAG,CAAC,IAAU,KAAI;AAChC,QAAA,OAAO,IAAI,CAAC,kBAAkB,CAAC,SAAS,EAAE;AACxC,YAAA,IAAI,EAAE,SAAS;AACf,YAAA,KAAK,EAAE,MAAM;AACb,YAAA,GAAG,EAAE,SAAS;AACf,SAAA,CAAC,CAAC;AACL,KAAC,CAAC;IAEF,OAAO,CAAA,EAAG,UAAU,CAAC,SAAS,CAAC,CAAO,IAAA,EAAA,UAAU,CAAC,OAAO,CAAC,CAAA,CAAE,CAAC;AAC9D;;;;;;;;;;;;;"}

package/dist/core/canonicalization/XMLCanonicalizer.d.ts

@@ -8,8 +8,11 @@ interface CanonMethod {
 declare const CANONICALIZATION_METHODS: {
     default: string;
     "http://www.w3.org/TR/2001/REC-xml-c14n-20010315": string;
+    "http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments": string;
     "http://www.w3.org/2006/12/xml-c14n11": string;
+    "http://www.w3.org/2006/12/xml-c14n11#WithComments": string;
     "http://www.w3.org/2001/10/xml-exc-c14n#": string;
+    "http://www.w3.org/2001/10/xml-exc-c14n#WithComments": string;
 };
 declare const NODE_TYPES: {
     ELEMENT_NODE: number;
@@ -19,6 +22,10 @@ interface ExcC14NOptions {
     inclusiveNamespacePrefixList?: string[];
     isStartingNode?: boolean;
 }
+interface CanonicalizeOptions {
+    inclusiveNamespacePrefixList?: string[];
+    isStartingNode?: boolean;
+}
 interface WhitespaceInfo {
     hasMixedContent?: boolean;
     hasExistingLinebreaks?: boolean;
@@ -39,9 +46,8 @@ declare class XMLCanonicalizer {
     static collectUsedNamespaces(node: Node, allVisibleNamespaces?: Map<string, string>, inclusivePrefixList?: string[]): Map<string, string>;
     static isBase64Element(node: Node): boolean;
     static analyzeWhitespace(node: Node): void;
-    canonicalize(node: NodeWithWhitespace, visibleNamespaces?: Map<string, string>, options?: {
-        isStartingNode: boolean;
-    }): string;
+    canonicalize(node: NodeWithWhitespace, visibleNamespaces?: Map<string, string>, options?: CanonicalizeOptions): string;
+    private canonicalizeStandard;
     canonicalizeExclusive(node: NodeWithWhitespace, visibleNamespaces?: Map<string, string>, options?: ExcC14NOptions): string;
     static c14n(node: Node): string;
     static c14n11(node: Node): string;

package/dist/core/rsa-digestinfo-workaround.d.ts

@@ -0,0 +1,29 @@
+/**
+ * RSA DigestInfo Workaround
+ *
+ * Some older signing tools (particularly pre-Java 8) produced RSA signatures with
+ * non-standard DigestInfo format - missing the NULL parameter in AlgorithmIdentifier.
+ *
+ * Standard DigestInfo for SHA-1:  30 21 30 09 06 05 2b0e03021a 05 00 04 14 [hash]
+ * Non-standard (missing NULL):    30 1f 30 07 06 05 2b0e03021a       04 14 [hash]
+ *
+ * Web Crypto API's subtle.verify() is strict and rejects the non-standard format.
+ * This module provides a fallback that manually performs RSA verification using
+ * BigInt math, which works in both browser and Node.js environments.
+ */
+/**
+ * Verify RSA signature with non-standard DigestInfo format.
+ *
+ * This function performs RSA signature verification that tolerates
+ * non-standard DigestInfo formats (missing NULL in AlgorithmIdentifier).
+ *
+ * - Node.js: Uses native crypto.publicDecrypt() for speed
+ * - Browser: Uses BigInt math (Web Crypto doesn't expose raw RSA)
+ *
+ * @param publicKeyData SPKI-formatted public key
+ * @param signatureBytes Raw signature bytes
+ * @param dataToVerify The data that was signed
+ * @param hashAlgorithm Hash algorithm name (e.g., "SHA-1", "SHA-256")
+ * @returns true if signature is valid, false otherwise
+ */
+export declare function verifyRsaWithNonStandardDigestInfo(publicKeyData: ArrayBuffer, signatureBytes: Uint8Array, dataToVerify: Uint8Array, hashAlgorithm: string): Promise<boolean>;