evm-kms-signer 1.0.0 → 1.1.0

package/dist/gcp/signer.d.ts

@@ -0,0 +1,212 @@
+import type { TypedData } from 'abitype';
+import type { Address, Hex, SerializeTransactionFn, TransactionSerializable, TypedDataDefinition } from 'viem';
+import type { GcpKmsConfig } from '../types';
+/**
+ * GcpSigner provides Ethereum signing capabilities using GCP KMS.
+ *
+ * This class manages the interaction with GCP KMS for cryptographic operations
+ * required by Ethereum accounts:
+ * - Public key retrieval and caching
+ * - Ethereum address derivation from KMS public key
+ * - Message and transaction signing
+ *
+ * The signer caches expensive operations (public key retrieval, address derivation)
+ * to avoid unnecessary KMS API calls.
+ *
+ * @example
+ * ```typescript
+ * const signer = new GcpSigner({
+ *   projectId: 'my-project',
+ *   locationId: 'global',
+ *   keyRingId: 'my-keyring',
+ *   keyId: 'my-key',
+ *   keyVersion: '1'
+ * })
+ *
+ * const address = await signer.getAddress()
+ * console.log('Ethereum address:', address)
+ * ```
+ */
+export declare class GcpSigner {
+    private gcpClient;
+    private cachedAddress?;
+    private cachedPublicKey?;
+    /**
+     * Creates a new GCP KMS signer instance.
+     *
+     * @param config - GCP KMS configuration including project, location, key ring, key, and version
+     *
+     * @remarks
+     * The constructor initializes the GCP KMS client but does not make any API calls.
+     * Public key retrieval and address derivation happen lazily on first use.
+     */
+    constructor(config: GcpKmsConfig);
+    /**
+     * Retrieves the uncompressed secp256k1 public key from GCP KMS.
+     *
+     * The public key is retrieved from KMS and extracted from the DER-encoded
+     * SubjectPublicKeyInfo format. The result is cached to avoid redundant KMS calls.
+     *
+     * @returns 65-byte uncompressed public key (0x04 + x coordinate + y coordinate)
+     * @throws {KmsClientError} If KMS API call fails
+     * @throws {DerParsingError} If public key format is invalid
+     *
+     * @remarks
+     * The public key format is:
+     * - Byte 0: 0x04 (uncompressed point indicator)
+     * - Bytes 1-32: x coordinate of the public key
+     * - Bytes 33-64: y coordinate of the public key
+     */
+    getPublicKey(): Promise<Uint8Array>;
+    /**
+     * Derives the Ethereum address from the GCP KMS public key.
+     *
+     * The address is calculated by:
+     * 1. Retrieving the public key from KMS (cached if available)
+     * 2. Hashing the public key coordinates with keccak256
+     * 3. Taking the last 20 bytes as the address
+     *
+     * The result is cached to avoid redundant derivation.
+     *
+     * @returns Ethereum address (0x-prefixed, 40 hex characters)
+     * @throws {KmsClientError} If KMS API call fails
+     * @throws {DerParsingError} If public key format is invalid
+     *
+     * @remarks
+     * The returned address follows EIP-55 checksum encoding.
+     */
+    getAddress(): Promise<Address>;
+    /**
+     * Signs a hash using the GCP KMS private key (internal helper method).
+     *
+     * This method is used internally by signMessage, signTransaction, and signTypedData.
+     * It converts the hash to bytes, signs with KMS, parses the DER signature,
+     * and normalizes the s value according to EIP-2.
+     *
+     * @param hash - The hash to sign (32 bytes, hex-encoded)
+     * @returns Object containing r and s as bigints
+     * @throws {KmsClientError} If KMS API call fails
+     * @throws {DerParsingError} If signature format is invalid
+     * @throws {SignatureNormalizationError} If s value is out of valid range
+     *
+     * @remarks
+     * The s value is automatically normalized to the lower half of the curve order (EIP-2)
+     * to prevent signature malleability attacks.
+     */
+    private signHash;
+    /**
+     * Signs a message using EIP-191 personal_sign standard.
+     *
+     * This method:
+     * 1. Hashes the message with EIP-191 prefix: "\x19Ethereum Signed Message:\n" + len(message) + message
+     * 2. Signs the hash with GCP KMS
+     * 3. Calculates the recovery ID to enable public key recovery
+     * 4. Returns the signature in the standard format: r (32 bytes) + s (32 bytes) + v (1 byte)
+     *
+     * @param params - Object containing the message string
+     * @returns The signature as a hex string (0x-prefixed, 130 characters)
+     * @throws {KmsClientError} If KMS API call fails
+     * @throws {DerParsingError} If signature format is invalid
+     * @throws {RecoveryIdCalculationError} If recovery ID calculation fails
+     *
+     * @example
+     * ```typescript
+     * const signer = new GcpSigner({
+     *   projectId: 'my-project',
+     *   locationId: 'global',
+     *   keyRingId: 'my-keyring',
+     *   keyId: 'my-key',
+     *   keyVersion: '1'
+     * })
+     * const signature = await signer.signMessage({ message: 'Hello, world!' })
+     * // signature: '0x...' (130 characters: 0x + 64 hex chars for r + 64 for s + 2 for v)
+     * ```
+     */
+    signMessage({ message }: {
+        message: string;
+    }): Promise<Hex>;
+    /**
+     * Signs an Ethereum transaction.
+     *
+     * This method:
+     * 1. Serializes the transaction without signature fields (r, s, v)
+     * 2. Hashes the serialized transaction with keccak256
+     * 3. Signs the hash with GCP KMS
+     * 4. Calculates the recovery ID
+     * 5. Computes the v value (EIP-155 if chainId present, legacy otherwise)
+     * 6. Returns the fully serialized transaction with signature
+     *
+     * @param transaction - The transaction to sign
+     * @param options - Optional serializer function (defaults to viem's serializeTransaction)
+     * @returns The serialized signed transaction as a hex string
+     * @throws {KmsClientError} If KMS API call fails
+     * @throws {DerParsingError} If signature format is invalid
+     * @throws {RecoveryIdCalculationError} If recovery ID calculation fails
+     *
+     * @example
+     * ```typescript
+     * const signer = new GcpSigner({
+     *   projectId: 'my-project',
+     *   locationId: 'global',
+     *   keyRingId: 'my-keyring',
+     *   keyId: 'my-key',
+     *   keyVersion: '1'
+     * })
+     * const signedTx = await signer.signTransaction({
+     *   to: '0x...',
+     *   value: parseEther('1'),
+     *   chainId: 1
+     * })
+     * ```
+     */
+    signTransaction(transaction: TransactionSerializable, { serializer, }?: {
+        serializer?: SerializeTransactionFn;
+    }): Promise<Hex>;
+    /**
+     * Signs typed data according to EIP-712.
+     *
+     * This method:
+     * 1. Hashes the typed data using EIP-712 (domain separator + type hash)
+     * 2. Signs the hash with GCP KMS
+     * 3. Calculates the recovery ID
+     * 4. Returns the signature in the standard format: r (32 bytes) + s (32 bytes) + v (1 byte)
+     *
+     * @param typedData - The EIP-712 typed data to sign
+     * @returns The signature as a hex string (0x-prefixed, 130 characters)
+     * @throws {KmsClientError} If KMS API call fails
+     * @throws {DerParsingError} If signature format is invalid
+     * @throws {RecoveryIdCalculationError} If recovery ID calculation fails
+     *
+     * @example
+     * ```typescript
+     * const signer = new GcpSigner({
+     *   projectId: 'my-project',
+     *   locationId: 'global',
+     *   keyRingId: 'my-keyring',
+     *   keyId: 'my-key',
+     *   keyVersion: '1'
+     * })
+     * const signature = await signer.signTypedData({
+     *   domain: {
+     *     name: 'MyApp',
+     *     version: '1',
+     *     chainId: 1,
+     *     verifyingContract: '0x...'
+     *   },
+     *   types: {
+     *     Person: [
+     *       { name: 'name', type: 'string' },
+     *       { name: 'wallet', type: 'address' }
+     *     ]
+     *   },
+     *   primaryType: 'Person',
+     *   message: {
+     *     name: 'Alice',
+     *     wallet: '0x...'
+     *   }
+     * })
+     * ```
+     */
+    signTypedData<const TTypedData extends TypedData | Record<string, unknown>, TPrimaryType extends keyof TTypedData | 'EIP712Domain' = keyof TTypedData>(typedData: TypedDataDefinition<TTypedData, TPrimaryType>): Promise<Hex>;
+}
+//# sourceMappingURL=signer.d.ts.map

package/dist/gcp/signer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"signer.d.ts","sourceRoot":"","sources":["../../src/gcp/signer.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC;AACzC,OAAO,KAAK,EACX,OAAO,EACP,GAAG,EACH,sBAAsB,EACtB,uBAAuB,EACvB,mBAAmB,EACnB,MAAM,MAAM,CAAC;AAUd,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAU7C;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,qBAAa,SAAS;IACrB,OAAO,CAAC,SAAS,CAAY;IAC7B,OAAO,CAAC,aAAa,CAAC,CAAU;IAChC,OAAO,CAAC,eAAe,CAAC,CAAa;IAErC;;;;;;;;OAQG;gBACS,MAAM,EAAE,YAAY;IAIhC;;;;;;;;;;;;;;;OAeG;IACG,YAAY,IAAI,OAAO,CAAC,UAAU,CAAC;IAWzC;;;;;;;;;;;;;;;;OAgBG;IACG,UAAU,IAAI,OAAO,CAAC,OAAO,CAAC;IAWpC;;;;;;;;;;;;;;;;OAgBG;YACW,QAAQ;IAoBtB;;;;;;;;;;;;;;;;;;;;;;;;;;;OA2BG;IACG,WAAW,CAAC,EAAE,OAAO,EAAE,EAAE;QAAE,OAAO,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,GAAG,CAAC;IA2BjE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAiCG;IACG,eAAe,CACpB,WAAW,EAAE,uBAAuB,EACpC,EACC,UAAiC,GACjC,GAAE;QAAE,UAAU,CAAC,EAAE,sBAAsB,CAAA;KAAO,GAC7C,OAAO,CAAC,GAAG,CAAC;IAqCf;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OA4CG;IACG,aAAa,CAClB,KAAK,CAAC,UAAU,SAAS,SAAS,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC5D,YAAY,SAAS,MAAM,UAAU,GAAG,cAAc,GAAG,MAAM,UAAU,EACxE,SAAS,EAAE,mBAAmB,CAAC,UAAU,EAAE,YAAY,CAAC,GAAG,OAAO,CAAC,GAAG,CAAC;CA0BzE"}

package/dist/gcp/signer.js

@@ -0,0 +1,296 @@
+import { concat, fromHex, hashMessage, hashTypedData, keccak256, serializeTransaction, toHex, } from 'viem';
+import { extractPublicKeyFromDer, publicKeyToAddress } from '../utils/address';
+import { parseDerSignature } from '../utils/der';
+import { calculateRecoveryId, normalizeS, uint8ArrayToBigInt, } from '../utils/signature';
+import { GcpClient } from './client';
+/**
+ * GcpSigner provides Ethereum signing capabilities using GCP KMS.
+ *
+ * This class manages the interaction with GCP KMS for cryptographic operations
+ * required by Ethereum accounts:
+ * - Public key retrieval and caching
+ * - Ethereum address derivation from KMS public key
+ * - Message and transaction signing
+ *
+ * The signer caches expensive operations (public key retrieval, address derivation)
+ * to avoid unnecessary KMS API calls.
+ *
+ * @example
+ * ```typescript
+ * const signer = new GcpSigner({
+ *   projectId: 'my-project',
+ *   locationId: 'global',
+ *   keyRingId: 'my-keyring',
+ *   keyId: 'my-key',
+ *   keyVersion: '1'
+ * })
+ *
+ * const address = await signer.getAddress()
+ * console.log('Ethereum address:', address)
+ * ```
+ */
+export class GcpSigner {
+    /**
+     * Creates a new GCP KMS signer instance.
+     *
+     * @param config - GCP KMS configuration including project, location, key ring, key, and version
+     *
+     * @remarks
+     * The constructor initializes the GCP KMS client but does not make any API calls.
+     * Public key retrieval and address derivation happen lazily on first use.
+     */
+    constructor(config) {
+        this.gcpClient = new GcpClient(config);
+    }
+    /**
+     * Retrieves the uncompressed secp256k1 public key from GCP KMS.
+     *
+     * The public key is retrieved from KMS and extracted from the DER-encoded
+     * SubjectPublicKeyInfo format. The result is cached to avoid redundant KMS calls.
+     *
+     * @returns 65-byte uncompressed public key (0x04 + x coordinate + y coordinate)
+     * @throws {KmsClientError} If KMS API call fails
+     * @throws {DerParsingError} If public key format is invalid
+     *
+     * @remarks
+     * The public key format is:
+     * - Byte 0: 0x04 (uncompressed point indicator)
+     * - Bytes 1-32: x coordinate of the public key
+     * - Bytes 33-64: y coordinate of the public key
+     */
+    async getPublicKey() {
+        if (this.cachedPublicKey) {
+            return this.cachedPublicKey;
+        }
+        const derPublicKey = await this.gcpClient.getPublicKey();
+        const publicKey = extractPublicKeyFromDer(derPublicKey);
+        this.cachedPublicKey = publicKey;
+        return publicKey;
+    }
+    /**
+     * Derives the Ethereum address from the GCP KMS public key.
+     *
+     * The address is calculated by:
+     * 1. Retrieving the public key from KMS (cached if available)
+     * 2. Hashing the public key coordinates with keccak256
+     * 3. Taking the last 20 bytes as the address
+     *
+     * The result is cached to avoid redundant derivation.
+     *
+     * @returns Ethereum address (0x-prefixed, 40 hex characters)
+     * @throws {KmsClientError} If KMS API call fails
+     * @throws {DerParsingError} If public key format is invalid
+     *
+     * @remarks
+     * The returned address follows EIP-55 checksum encoding.
+     */
+    async getAddress() {
+        if (this.cachedAddress) {
+            return this.cachedAddress;
+        }
+        const publicKey = await this.getPublicKey();
+        const address = publicKeyToAddress(publicKey);
+        this.cachedAddress = address;
+        return address;
+    }
+    /**
+     * Signs a hash using the GCP KMS private key (internal helper method).
+     *
+     * This method is used internally by signMessage, signTransaction, and signTypedData.
+     * It converts the hash to bytes, signs with KMS, parses the DER signature,
+     * and normalizes the s value according to EIP-2.
+     *
+     * @param hash - The hash to sign (32 bytes, hex-encoded)
+     * @returns Object containing r and s as bigints
+     * @throws {KmsClientError} If KMS API call fails
+     * @throws {DerParsingError} If signature format is invalid
+     * @throws {SignatureNormalizationError} If s value is out of valid range
+     *
+     * @remarks
+     * The s value is automatically normalized to the lower half of the curve order (EIP-2)
+     * to prevent signature malleability attacks.
+     */
+    async signHash(hash) {
+        // Convert Hex to Uint8Array
+        const hashBytes = fromHex(hash, 'bytes');
+        // Sign with GCP KMS
+        const derSignature = await this.gcpClient.sign(hashBytes);
+        // Parse DER signature
+        const { r: rBytes, s: sBytes } = parseDerSignature(derSignature);
+        // Convert to bigint
+        const r = uint8ArrayToBigInt(rBytes);
+        let s = uint8ArrayToBigInt(sBytes);
+        // EIP-2 normalization
+        s = normalizeS(s);
+        return { r, s };
+    }
+    /**
+     * Signs a message using EIP-191 personal_sign standard.
+     *
+     * This method:
+     * 1. Hashes the message with EIP-191 prefix: "\x19Ethereum Signed Message:\n" + len(message) + message
+     * 2. Signs the hash with GCP KMS
+     * 3. Calculates the recovery ID to enable public key recovery
+     * 4. Returns the signature in the standard format: r (32 bytes) + s (32 bytes) + v (1 byte)
+     *
+     * @param params - Object containing the message string
+     * @returns The signature as a hex string (0x-prefixed, 130 characters)
+     * @throws {KmsClientError} If KMS API call fails
+     * @throws {DerParsingError} If signature format is invalid
+     * @throws {RecoveryIdCalculationError} If recovery ID calculation fails
+     *
+     * @example
+     * ```typescript
+     * const signer = new GcpSigner({
+     *   projectId: 'my-project',
+     *   locationId: 'global',
+     *   keyRingId: 'my-keyring',
+     *   keyId: 'my-key',
+     *   keyVersion: '1'
+     * })
+     * const signature = await signer.signMessage({ message: 'Hello, world!' })
+     * // signature: '0x...' (130 characters: 0x + 64 hex chars for r + 64 for s + 2 for v)
+     * ```
+     */
+    async signMessage({ message }) {
+        // EIP-191 hashing (viem handles automatically)
+        const messageHash = hashMessage(message);
+        // Sign with GCP KMS
+        const { r, s } = await this.signHash(messageHash);
+        // Calculate recovery ID
+        const address = await this.getAddress();
+        const recoveryId = await calculateRecoveryId(messageHash, toHex(r, { size: 32 }), toHex(s, { size: 32 }), address);
+        // Calculate v value (Legacy, no chain)
+        const v = 27 + recoveryId;
+        // Serialize signature
+        return concat([
+            toHex(r, { size: 32 }),
+            toHex(s, { size: 32 }),
+            toHex(v, { size: 1 }),
+        ]);
+    }
+    /**
+     * Signs an Ethereum transaction.
+     *
+     * This method:
+     * 1. Serializes the transaction without signature fields (r, s, v)
+     * 2. Hashes the serialized transaction with keccak256
+     * 3. Signs the hash with GCP KMS
+     * 4. Calculates the recovery ID
+     * 5. Computes the v value (EIP-155 if chainId present, legacy otherwise)
+     * 6. Returns the fully serialized transaction with signature
+     *
+     * @param transaction - The transaction to sign
+     * @param options - Optional serializer function (defaults to viem's serializeTransaction)
+     * @returns The serialized signed transaction as a hex string
+     * @throws {KmsClientError} If KMS API call fails
+     * @throws {DerParsingError} If signature format is invalid
+     * @throws {RecoveryIdCalculationError} If recovery ID calculation fails
+     *
+     * @example
+     * ```typescript
+     * const signer = new GcpSigner({
+     *   projectId: 'my-project',
+     *   locationId: 'global',
+     *   keyRingId: 'my-keyring',
+     *   keyId: 'my-key',
+     *   keyVersion: '1'
+     * })
+     * const signedTx = await signer.signTransaction({
+     *   to: '0x...',
+     *   value: parseEther('1'),
+     *   chainId: 1
+     * })
+     * ```
+     */
+    async signTransaction(transaction, { serializer = serializeTransaction, } = {}) {
+        // Serialize transaction for signing (without r, s, v)
+        const serializedTx = serializeTransaction({
+            ...transaction,
+            r: undefined,
+            s: undefined,
+            v: undefined,
+        });
+        const hash = keccak256(serializedTx);
+        // Sign with GCP KMS
+        const { r, s } = await this.signHash(hash);
+        // Calculate recovery ID
+        const address = await this.getAddress();
+        const recoveryId = await calculateRecoveryId(hash, toHex(r, { size: 32 }), toHex(s, { size: 32 }), address);
+        // Calculate v value
+        const chainId = transaction.chainId;
+        const v = chainId
+            ? BigInt(chainId * 2 + 35 + recoveryId) // EIP-155
+            : BigInt(27 + recoveryId); // Legacy
+        // Final serialization with signature
+        return serializer({
+            ...transaction,
+            r: toHex(r, { size: 32 }),
+            s: toHex(s, { size: 32 }),
+            v,
+        });
+    }
+    /**
+     * Signs typed data according to EIP-712.
+     *
+     * This method:
+     * 1. Hashes the typed data using EIP-712 (domain separator + type hash)
+     * 2. Signs the hash with GCP KMS
+     * 3. Calculates the recovery ID
+     * 4. Returns the signature in the standard format: r (32 bytes) + s (32 bytes) + v (1 byte)
+     *
+     * @param typedData - The EIP-712 typed data to sign
+     * @returns The signature as a hex string (0x-prefixed, 130 characters)
+     * @throws {KmsClientError} If KMS API call fails
+     * @throws {DerParsingError} If signature format is invalid
+     * @throws {RecoveryIdCalculationError} If recovery ID calculation fails
+     *
+     * @example
+     * ```typescript
+     * const signer = new GcpSigner({
+     *   projectId: 'my-project',
+     *   locationId: 'global',
+     *   keyRingId: 'my-keyring',
+     *   keyId: 'my-key',
+     *   keyVersion: '1'
+     * })
+     * const signature = await signer.signTypedData({
+     *   domain: {
+     *     name: 'MyApp',
+     *     version: '1',
+     *     chainId: 1,
+     *     verifyingContract: '0x...'
+     *   },
+     *   types: {
+     *     Person: [
+     *       { name: 'name', type: 'string' },
+     *       { name: 'wallet', type: 'address' }
+     *     ]
+     *   },
+     *   primaryType: 'Person',
+     *   message: {
+     *     name: 'Alice',
+     *     wallet: '0x...'
+     *   }
+     * })
+     * ```
+     */
+    async signTypedData(typedData) {
+        // EIP-712 hashing (viem handles domain separator and type hash)
+        const hash = hashTypedData(typedData);
+        // Sign with GCP KMS
+        const { r, s } = await this.signHash(hash);
+        // Calculate recovery ID
+        const address = await this.getAddress();
+        const recoveryId = await calculateRecoveryId(hash, toHex(r, { size: 32 }), toHex(s, { size: 32 }), address);
+        // Calculate v value (Legacy, no chain for typed data)
+        const v = 27 + recoveryId;
+        // Serialize signature
+        return concat([
+            toHex(r, { size: 32 }),
+            toHex(s, { size: 32 }),
+            toHex(v, { size: 1 }),
+        ]);
+    }
+}
+//# sourceMappingURL=signer.js.map

package/dist/gcp/signer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"signer.js","sourceRoot":"","sources":["../../src/gcp/signer.ts"],"names":[],"mappings":"AAQA,OAAO,EACN,MAAM,EACN,OAAO,EACP,WAAW,EACX,aAAa,EACb,SAAS,EACT,oBAAoB,EACpB,KAAK,GACL,MAAM,MAAM,CAAC;AAEd,OAAO,EAAE,uBAAuB,EAAE,kBAAkB,EAAE,MAAM,kBAAkB,CAAC;AAC/E,OAAO,EAAE,iBAAiB,EAAE,MAAM,cAAc,CAAC;AACjD,OAAO,EACN,mBAAmB,EACnB,UAAU,EACV,kBAAkB,GAClB,MAAM,oBAAoB,CAAC;AAC5B,OAAO,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAErC;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,MAAM,OAAO,SAAS;IAKrB;;;;;;;;OAQG;IACH,YAAY,MAAoB;QAC/B,IAAI,CAAC,SAAS,GAAG,IAAI,SAAS,CAAC,MAAM,CAAC,CAAC;IACxC,CAAC;IAED;;;;;;;;;;;;;;;OAeG;IACH,KAAK,CAAC,YAAY;QACjB,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;YAC1B,OAAO,IAAI,CAAC,eAAe,CAAC;QAC7B,CAAC;QAED,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,YAAY,EAAE,CAAC;QACzD,MAAM,SAAS,GAAG,uBAAuB,CAAC,YAAY,CAAC,CAAC;QACxD,IAAI,CAAC,eAAe,GAAG,SAAS,CAAC;QACjC,OAAO,SAAS,CAAC;IAClB,CAAC;IAED;;;;;;;;;;;;;;;;OAgBG;IACH,KAAK,CAAC,UAAU;QACf,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;YACxB,OAAO,IAAI,CAAC,aAAa,CAAC;QAC3B,CAAC;QAED,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,YAAY,EAAE,CAAC;QAC5C,MAAM,OAAO,GAAG,kBAAkB,CAAC,SAAS,CAAC,CAAC;QAC9C,IAAI,CAAC,aAAa,GAAG,OAAO,CAAC;QAC7B,OAAO,OAAO,CAAC;IAChB,CAAC;IAED;;;;;;;;;;;;;;;;OAgBG;IACK,KAAK,CAAC,QAAQ,CAAC,IAAS;QAC/B,4BAA4B;QAC5B,MAAM,SAAS,GAAG,OAAO,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;QAEzC,oBAAoB;QACpB,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAE1D,sBAAsB;QACtB,MAAM,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,EAAE,GAAG,iBAAiB,CAAC,YAAY,CAAC,CAAC;QAEjE,oBAAoB;QACpB,MAAM,CAAC,GAAG,kBAAkB,CAAC,MAAM,CAAC,CAAC;QACrC,IAAI,CAAC,GAAG,kBAAkB,CAAC,MAAM,CAAC,CAAC;QAEnC,sBAAsB;QACtB,CAAC,GAAG,UAAU,CAAC,CAAC,CAAC,CAAC;QAElB,OAAO,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC;IACjB,CAAC;IAED;;;;;;;;;;;;;;;;;;;;;;;;;;;OA2BG;IACH,KAAK,CAAC,WAAW,CAAC,EAAE,OAAO,EAAuB;QACjD,+CAA+C;QAC/C,MAAM,WAAW,GAAG,WAAW,CAAC,OAAO,CAAC,CAAC;QAEzC,oBAAoB;QACpB,MAAM,EAAE,CAAC,EAAE,CAAC,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QAElD,wBAAwB;QACxB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,EAAE,CAAC;QACxC,MAAM,UAAU,GAAG,MAAM,mBAAmB,CAC3C,WAAW,EACX,KAAK,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC,EACtB,KAAK,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC,EACtB,OAAO,CACP,CAAC;QAEF,uCAAuC;QACvC,MAAM,CAAC,GAAG,EAAE,GAAG,UAAU,CAAC;QAE1B,sBAAsB;QACtB,OAAO,MAAM,CAAC;YACb,KAAK,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;YACtB,KAAK,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;YACtB,KAAK,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC;SACrB,CAAQ,CAAC;IACX,CAAC;IAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAiCG;IACH,KAAK,CAAC,eAAe,CACpB,WAAoC,EACpC,EACC,UAAU,GAAG,oBAAoB,MACW,EAAE;QAE/C,sDAAsD;QACtD,MAAM,YAAY,GAAG,oBAAoB,CAAC;YACzC,GAAG,WAAW;YACd,CAAC,EAAE,SAAS;YACZ,CAAC,EAAE,SAAS;YACZ,CAAC,EAAE,SAAS;SACZ,CAAC,CAAC;QACH,MAAM,IAAI,GAAG,SAAS,CAAC,YAAY,CAAC,CAAC;QAErC,oBAAoB;QACpB,MAAM,EAAE,CAAC,EAAE,CAAC,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QAE3C,wBAAwB;QACxB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,EAAE,CAAC;QACxC,MAAM,UAAU,GAAG,MAAM,mBAAmB,CAC3C,IAAI,EACJ,KAAK,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC,EACtB,KAAK,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC,EACtB,OAAO,CACP,CAAC;QAEF,oBAAoB;QACpB,MAAM,OAAO,GAAG,WAAW,CAAC,OAAO,CAAC;QACpC,MAAM,CAAC,GAAG,OAAO;YAChB,CAAC,CAAC,MAAM,CAAC,OAAO,GAAG,CAAC,GAAG,EAAE,GAAG,UAAU,CAAC,CAAC,UAAU;YAClD,CAAC,CAAC,MAAM,CAAC,EAAE,GAAG,UAAU,CAAC,CAAC,CAAC,SAAS;QAErC,qCAAqC;QACrC,OAAO,UAAU,CAAC;YACjB,GAAG,WAAW;YACd,CAAC,EAAE,KAAK,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;YACzB,CAAC,EAAE,KAAK,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;YACzB,CAAC;SACD,CAAC,CAAC;IACJ,CAAC;IAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OA4CG;IACH,KAAK,CAAC,aAAa,CAGjB,SAAwD;QACzD,gEAAgE;QAChE,MAAM,IAAI,GAAG,aAAa,CAAC,SAAS,CAAC,CAAC;QAEtC,oBAAoB;QACpB,MAAM,EAAE,CAAC,EAAE,CAAC,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QAE3C,wBAAwB;QACxB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,EAAE,CAAC;QACxC,MAAM,UAAU,GAAG,MAAM,mBAAmB,CAC3C,IAAI,EACJ,KAAK,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC,EACtB,KAAK,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC,EACtB,OAAO,CACP,CAAC;QAEF,sDAAsD;QACtD,MAAM,CAAC,GAAG,EAAE,GAAG,UAAU,CAAC;QAE1B,sBAAsB;QACtB,OAAO,MAAM,CAAC;YACb,KAAK,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;YACtB,KAAK,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;YACtB,KAAK,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC;SACrB,CAAQ,CAAC;IACX,CAAC;CACD"}

package/dist/index.d.ts

@@ -1,6 +1,7 @@
-export { KmsSigner } from './kms/signer';
-export { toKmsAccount } from './account';
-export type { KmsConfig, DerSignature, SignatureData } from './types';
-export { KmsSignerError, DerParsingError, KmsClientError, SignatureNormalizationError, RecoveryIdCalculationError } from './errors';
 export type { Address, Hex } from 'viem';
+export { toGcpKmsAccount, toKmsAccount } from './account';
+export { DerParsingError, KmsClientError, KmsSignerError, RecoveryIdCalculationError, SignatureNormalizationError, } from './errors';
+export { GcpSigner } from './gcp/signer';
+export { KmsSigner } from './kms/signer';
+export type { DerSignature, GcpKmsConfig, KmsConfig, SignatureData, } from './types';
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAA;AACxC,OAAO,EAAE,YAAY,EAAE,MAAM,WAAW,CAAA;AAGxC,YAAY,EAAE,SAAS,EAAE,YAAY,EAAE,aAAa,EAAE,MAAM,SAAS,CAAA;AAGrE,OAAO,EACL,cAAc,EACd,eAAe,EACf,cAAc,EACd,2BAA2B,EAC3B,0BAA0B,EAC3B,MAAM,UAAU,CAAA;AAGjB,YAAY,EAAE,OAAO,EAAE,GAAG,EAAE,MAAM,MAAM,CAAA"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAGA,YAAY,EAAE,OAAO,EAAE,GAAG,EAAE,MAAM,MAAM,CAAC;AACzC,OAAO,EAAE,eAAe,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AAE1D,OAAO,EACN,eAAe,EACf,cAAc,EACd,cAAc,EACd,0BAA0B,EAC1B,2BAA2B,GAC3B,MAAM,UAAU,CAAC;AAClB,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AACzC,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAEzC,YAAY,EACX,YAAY,EACZ,YAAY,EACZ,SAAS,EACT,aAAa,GACb,MAAM,SAAS,CAAC"}

package/dist/index.js

@@ -1,6 +1,7 @@
 // Main classes and functions
-export { KmsSigner } from './kms/signer';
-export { toKmsAccount } from './account';
+export { toGcpKmsAccount, toKmsAccount } from './account';
 // Errors
-export { KmsSignerError, DerParsingError, KmsClientError, SignatureNormalizationError, RecoveryIdCalculationError } from './errors';
+export { DerParsingError, KmsClientError, KmsSignerError, RecoveryIdCalculationError, SignatureNormalizationError, } from './errors';
+export { GcpSigner } from './gcp/signer';
+export { KmsSigner } from './kms/signer';
 //# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,6BAA6B;AAC7B,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAA;AACxC,OAAO,EAAE,YAAY,EAAE,MAAM,WAAW,CAAA;AAKxC,SAAS;AACT,OAAO,EACL,cAAc,EACd,eAAe,EACf,cAAc,EACd,2BAA2B,EAC3B,0BAA0B,EAC3B,MAAM,UAAU,CAAA"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,6BAA6B;AAI7B,OAAO,EAAE,eAAe,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AAC1D,SAAS;AACT,OAAO,EACN,eAAe,EACf,cAAc,EACd,cAAc,EACd,0BAA0B,EAC1B,2BAA2B,GAC3B,MAAM,UAAU,CAAC;AAClB,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AACzC,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC"}

package/dist/kms/client.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../src/kms/client.ts"],"names":[],"mappings":"AAOA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,UAAU,CAAA;AAGzC;;;;;;;;;;;;;;;;;GAiBG;AACH,qBAAa,SAAS;IACpB,OAAO,CAAC,MAAM,CAAW;IACzB,OAAO,CAAC,KAAK,CAAQ;IAErB;;;;;;;;;;OAUG;gBACS,MAAM,EAAE,SAAS;IAQ7B;;;;;;;;;OASG;IACG,YAAY,IAAI,OAAO,CAAC,UAAU,CAAC;IAmBzC;;;;;;;;;;;OAWG;IACG,IAAI,CAAC,WAAW,EAAE,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC;CAuBzD"}
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../src/kms/client.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAE1C;;;;;;;;;;;;;;;;;GAiBG;AACH,qBAAa,SAAS;IACrB,OAAO,CAAC,MAAM,CAAY;IAC1B,OAAO,CAAC,KAAK,CAAS;IAEtB;;;;;;;;;;OAUG;gBACS,MAAM,EAAE,SAAS;IAQ7B;;;;;;;;;OASG;IACG,YAAY,IAAI,OAAO,CAAC,UAAU,CAAC;IAmBzC;;;;;;;;;;;OAWG;IACG,IAAI,CAAC,WAAW,EAAE,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC;CAuBxD"}

package/dist/kms/client.js

@@ -1,4 +1,4 @@
-import { KMSClient, GetPublicKeyCommand, SignCommand, MessageType, SigningAlgorithmSpec, } from '@aws-sdk/client-kms';
+import { GetPublicKeyCommand, KMSClient, MessageType, SignCommand, SigningAlgorithmSpec, } from '@aws-sdk/client-kms';
 import { KmsClientError } from '../errors';
 /**
  * KmsClient wraps AWS KMS SDK operations for key management and signing.

package/dist/kms/client.js.map

@@ -1 +1 @@
-{"version":3,"file":"client.js","sourceRoot":"","sources":["../../src/kms/client.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,SAAS,EACT,mBAAmB,EACnB,WAAW,EACX,WAAW,EACX,oBAAoB,GACrB,MAAM,qBAAqB,CAAA;AAE5B,OAAO,EAAE,cAAc,EAAE,MAAM,WAAW,CAAA;AAE1C;;;;;;;;;;;;;;;;;GAiBG;AACH,MAAM,OAAO,SAAS;IAIpB;;;;;;;;;;OAUG;IACH,YAAY,MAAiB;QAC3B,IAAI,CAAC,MAAM,GAAG,IAAI,SAAS,CAAC;YAC1B,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,GAAG,CAAC,MAAM,CAAC,WAAW,IAAI,EAAE,WAAW,EAAE,MAAM,CAAC,WAAW,EAAE,CAAC;SAC/D,CAAC,CAAA;QACF,IAAI,CAAC,KAAK,GAAG,MAAM,CAAC,KAAK,CAAA;IAC3B,CAAC;IAED;;;;;;;;;OASG;IACH,KAAK,CAAC,YAAY;QAChB,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,IAAI,mBAAmB,CAAC,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE,CAAC,CAAA;YAC9D,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;YAEhD,IAAI,CAAC,QAAQ,CAAC,SAAS,EAAE,CAAC;gBACxB,MAAM,IAAI,cAAc,CAAC,iCAAiC,CAAC,CAAA;YAC7D,CAAC;YAED,OAAO,IAAI,UAAU,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAA;QAC3C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,cAAc;gBAAE,MAAM,KAAK,CAAA;YAChD,MAAM,IAAI,cAAc,CACtB,sCAAsC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE,EAChG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAC3C,CAAA;QACH,CAAC;IACH,CAAC;IAED;;;;;;;;;;;OAWG;IACH,KAAK,CAAC,IAAI,CAAC,WAAuB;QAChC,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,IAAI,WAAW,CAAC;gBAC9B,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,OAAO,EAAE,WAAW;gBACpB,WAAW,EAAE,WAAW,CAAC,MAAM;gBAC/B,gBAAgB,EAAE,oBAAoB,CAAC,aAAa;aACrD,CAAC,CAAA;YACF,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;YAEhD,IAAI,CAAC,QAAQ,CAAC,SAAS,EAAE,CAAC;gBACxB,MAAM,IAAI,cAAc,CAAC,gCAAgC,CAAC,CAAA;YAC5D,CAAC;YAED,OAAO,IAAI,UAAU,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAA;QAC3C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,cAAc;gBAAE,MAAM,KAAK,CAAA;YAChD,MAAM,IAAI,cAAc,CACtB,4BAA4B,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE,EACtF,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAC3C,CAAA;QACH,CAAC;IACH,CAAC;CACF"}
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../../src/kms/client.ts"],"names":[],"mappings":"AAAA,OAAO,EACN,mBAAmB,EACnB,SAAS,EACT,WAAW,EACX,WAAW,EACX,oBAAoB,GACpB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC;AAG3C;;;;;;;;;;;;;;;;;GAiBG;AACH,MAAM,OAAO,SAAS;IAIrB;;;;;;;;;;OAUG;IACH,YAAY,MAAiB;QAC5B,IAAI,CAAC,MAAM,GAAG,IAAI,SAAS,CAAC;YAC3B,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,GAAG,CAAC,MAAM,CAAC,WAAW,IAAI,EAAE,WAAW,EAAE,MAAM,CAAC,WAAW,EAAE,CAAC;SAC9D,CAAC,CAAC;QACH,IAAI,CAAC,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC;IAC3B,CAAC;IAED;;;;;;;;;OASG;IACH,KAAK,CAAC,YAAY;QACjB,IAAI,CAAC;YACJ,MAAM,OAAO,GAAG,IAAI,mBAAmB,CAAC,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC;YAC/D,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAEjD,IAAI,CAAC,QAAQ,CAAC,SAAS,EAAE,CAAC;gBACzB,MAAM,IAAI,cAAc,CAAC,iCAAiC,CAAC,CAAC;YAC7D,CAAC;YAED,OAAO,IAAI,UAAU,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;QAC3C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAChB,IAAI,KAAK,YAAY,cAAc;gBAAE,MAAM,KAAK,CAAC;YACjD,MAAM,IAAI,cAAc,CACvB,sCAAsC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE,EAChG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAC1C,CAAC;QACH,CAAC;IACF,CAAC;IAED;;;;;;;;;;;OAWG;IACH,KAAK,CAAC,IAAI,CAAC,WAAuB;QACjC,IAAI,CAAC;YACJ,MAAM,OAAO,GAAG,IAAI,WAAW,CAAC;gBAC/B,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,OAAO,EAAE,WAAW;gBACpB,WAAW,EAAE,WAAW,CAAC,MAAM;gBAC/B,gBAAgB,EAAE,oBAAoB,CAAC,aAAa;aACpD,CAAC,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAEjD,IAAI,CAAC,QAAQ,CAAC,SAAS,EAAE,CAAC;gBACzB,MAAM,IAAI,cAAc,CAAC,gCAAgC,CAAC,CAAC;YAC5D,CAAC;YAED,OAAO,IAAI,UAAU,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;QAC3C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAChB,IAAI,KAAK,YAAY,cAAc;gBAAE,MAAM,KAAK,CAAC;YACjD,MAAM,IAAI,cAAc,CACvB,4BAA4B,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE,EACtF,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAC1C,CAAC;QACH,CAAC;IACF,CAAC;CACD"}

package/dist/kms/signer.d.ts

@@ -1,5 +1,5 @@
-import type { Address, Hex, TransactionSerializable, SerializeTransactionFn, TypedDataDefinition } from 'viem';
 import type { TypedData } from 'abitype';
+import type { Address, Hex, SerializeTransactionFn, TransactionSerializable, TypedDataDefinition } from 'viem';
 import type { KmsConfig } from '../types';
 /**
  * KmsSigner provides Ethereum signing capabilities using AWS KMS.
@@ -145,7 +145,7 @@ export declare class KmsSigner {
      * })
      * ```
      */
-    signTransaction(transaction: TransactionSerializable, { serializer }?: {
+    signTransaction(transaction: TransactionSerializable, { serializer, }?: {
         serializer?: SerializeTransactionFn;
     }): Promise<Hex>;
     /**

package/dist/kms/signer.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"signer.d.ts","sourceRoot":"","sources":["../../src/kms/signer.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,GAAG,EAAE,uBAAuB,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,MAAM,MAAM,CAAA;AAC9G,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,SAAS,CAAA;AAMxC,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,UAAU,CAAA;AAEzC;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,qBAAa,SAAS;IACpB,OAAO,CAAC,SAAS,CAAW;IAC5B,OAAO,CAAC,KAAK,CAAQ;IACrB,OAAO,CAAC,aAAa,CAAC,CAAS;IAC/B,OAAO,CAAC,eAAe,CAAC,CAAY;IAEpC;;;;;;;;OAQG;gBACS,MAAM,EAAE,SAAS;IAK7B;;;;;;;;;;;;;;;OAeG;IACG,YAAY,IAAI,OAAO,CAAC,UAAU,CAAC;IAWzC;;;;;;;;;;;;;;;;OAgBG;IACG,UAAU,IAAI,OAAO,CAAC,OAAO,CAAC;IAWpC;;;;;;;;;;;;;;;;OAgBG;YACW,QAAQ;IAoBtB;;;;;;;;;;;;;;;;;;;;;OAqBG;IACG,WAAW,CAAC,EAAE,OAAO,EAAE,EAAE;QAAE,OAAO,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,GAAG,CAAC;IA2BjE;;;;;;;;;;;;;;;;;;;;;;;;;;;OA2BG;IACG,eAAe,CACnB,WAAW,EAAE,uBAAuB,EACpC,EAAE,UAAiC,EAAE,GAAE;QAAE,UAAU,CAAC,EAAE,sBAAsB,CAAA;KAAO,GAClF,OAAO,CAAC,GAAG,CAAC;IAgCf;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAsCG;IACG,aAAa,CACjB,KAAK,CAAC,UAAU,SAAS,SAAS,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC5D,YAAY,SAAS,MAAM,UAAU,GAAG,cAAc,GAAG,MAAM,UAAU,EACzE,SAAS,EAAE,mBAAmB,CAAC,UAAU,EAAE,YAAY,CAAC,GAAG,OAAO,CAAC,GAAG,CAAC;CA0B1E"}
+{"version":3,"file":"signer.d.ts","sourceRoot":"","sources":["../../src/kms/signer.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC;AACzC,OAAO,KAAK,EACX,OAAO,EACP,GAAG,EACH,sBAAsB,EACtB,uBAAuB,EACvB,mBAAmB,EACnB,MAAM,MAAM,CAAC;AAUd,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAU1C;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,qBAAa,SAAS;IACrB,OAAO,CAAC,SAAS,CAAY;IAC7B,OAAO,CAAC,KAAK,CAAS;IACtB,OAAO,CAAC,aAAa,CAAC,CAAU;IAChC,OAAO,CAAC,eAAe,CAAC,CAAa;IAErC;;;;;;;;OAQG;gBACS,MAAM,EAAE,SAAS;IAK7B;;;;;;;;;;;;;;;OAeG;IACG,YAAY,IAAI,OAAO,CAAC,UAAU,CAAC;IAWzC;;;;;;;;;;;;;;;;OAgBG;IACG,UAAU,IAAI,OAAO,CAAC,OAAO,CAAC;IAWpC;;;;;;;;;;;;;;;;OAgBG;YACW,QAAQ;IAoBtB;;;;;;;;;;;;;;;;;;;;;OAqBG;IACG,WAAW,CAAC,EAAE,OAAO,EAAE,EAAE;QAAE,OAAO,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,GAAG,CAAC;IA2BjE;;;;;;;;;;;;;;;;;;;;;;;;;;;OA2BG;IACG,eAAe,CACpB,WAAW,EAAE,uBAAuB,EACpC,EACC,UAAiC,GACjC,GAAE;QAAE,UAAU,CAAC,EAAE,sBAAsB,CAAA;KAAO,GAC7C,OAAO,CAAC,GAAG,CAAC;IAqCf;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAsCG;IACG,aAAa,CAClB,KAAK,CAAC,UAAU,SAAS,SAAS,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC5D,YAAY,SAAS,MAAM,UAAU,GAAG,cAAc,GAAG,MAAM,UAAU,EACxE,SAAS,EAAE,mBAAmB,CAAC,UAAU,EAAE,YAAY,CAAC,GAAG,OAAO,CAAC,GAAG,CAAC;CA0BzE"}