forkoff 1.0.7 → 1.0.9

package/dist/crypto/e2eeManager.js

@@ -0,0 +1,270 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.E2EEManager = void 0;
+const axios_1 = __importDefault(require("axios"));
+const keyGeneration_1 = require("./keyGeneration");
+const keyStorage_1 = require("./keyStorage");
+const keyExchange_1 = require("./keyExchange");
+const encryption_1 = require("./encryption");
+const sessionPersistence_1 = require("./sessionPersistence");
+/**
+ * E2EE Manager for CLI
+ * Orchestrates all end-to-end encryption operations
+ */
+class E2EEManager {
+    constructor(deviceId, apiUrl, authToken) {
+        this.keyPair = null;
+        this.initialized = false;
+        // Track ephemeral keys for pending key exchanges
+        this.pendingKeyExchanges = new Map(); // deviceId -> ephemeralPrivateKey
+        // Track message counters for replay protection
+        this.outgoingCounters = new Map(); // deviceId -> counter
+        this.incomingCounters = new Map(); // deviceId -> last seen counter
+        this.deviceId = deviceId;
+        this.apiUrl = apiUrl;
+        this.authToken = authToken;
+        this.axiosInstance = axios_1.default.create({
+            headers: {
+                Authorization: `Bearer ${authToken}`,
+            },
+        });
+    }
+    /**
+     * Initializes E2EE manager
+     * - Loads or generates key pair
+     * - Uploads public key to backend
+     */
+    async initialize() {
+        // Try to load existing key pair
+        const existingPrivateKey = await (0, keyStorage_1.getPrivateKey)(this.deviceId);
+        if (existingPrivateKey) {
+            // Derive public key from existing private key
+            const publicKey = this.derivePublicKeyFromPrivateKey(existingPrivateKey);
+            this.keyPair = {
+                publicKey,
+                privateKey: existingPrivateKey,
+            };
+        }
+        else {
+            // Generate new key pair
+            this.keyPair = (0, keyGeneration_1.generateKeyPair)();
+            await (0, keyStorage_1.storePrivateKey)(this.deviceId, this.keyPair.privateKey);
+        }
+        // Upload public key to backend
+        await this.uploadPublicKey();
+        this.initialized = true;
+    }
+    /**
+     * Derives X25519 public key from private key
+     */
+    derivePublicKeyFromPrivateKey(privateKey) {
+        const crypto = require('crypto');
+        const privateKeyBytes = Buffer.from(privateKey, 'base64');
+        // Create private key object
+        const privateKeyObject = crypto.createPrivateKey({
+            key: Buffer.concat([
+                Buffer.from([
+                    0x30, 0x2e, 0x02, 0x01, 0x00, 0x30, 0x05, 0x06, 0x03, 0x2b, 0x65,
+                    0x6e, 0x04, 0x22, 0x04, 0x20,
+                ]),
+                privateKeyBytes,
+            ]),
+            format: 'der',
+            type: 'pkcs8',
+        });
+        // Derive public key
+        const publicKeyObject = crypto.createPublicKey(privateKeyObject);
+        const publicKeyDER = publicKeyObject.export({
+            type: 'spki',
+            format: 'der',
+        });
+        // Extract raw 32-byte public key
+        const rawPublicKey = publicKeyDER.slice(-32);
+        return rawPublicKey.toString('base64');
+    }
+    /**
+     * Uploads public key to backend
+     */
+    async uploadPublicKey() {
+        if (!this.keyPair) {
+            throw new Error('Key pair not initialized');
+        }
+        await this.axiosInstance.put(`${this.apiUrl}/devices/${this.deviceId}/public-key`, { publicKey: this.keyPair.publicKey });
+    }
+    /**
+     * Initiates key exchange with target device
+     * Returns payload to send via WebSocket
+     */
+    async initiateKeyExchange(targetDeviceId) {
+        if (!this.keyPair) {
+            throw new Error('E2EE Manager not initialized');
+        }
+        // Generate ephemeral key pair for this exchange
+        const ephemeralKeyPair = (0, keyGeneration_1.generateKeyPair)();
+        // Store ephemeral private key for when we receive ack
+        this.pendingKeyExchanges.set(targetDeviceId, ephemeralKeyPair.privateKey);
+        // Fetch target device's public key
+        const response = await this.axiosInstance.get(`${this.apiUrl}/devices/${targetDeviceId}/public-key`);
+        const targetPublicKey = response.data.publicKey;
+        // Compute session key using our ephemeral private key and their public key
+        const sessionKey = (0, keyExchange_1.performKeyExchange)(ephemeralKeyPair.privateKey, targetPublicKey);
+        // Store session key (in memory and on disk for reconnection resilience)
+        const sessionId = `session-${this.deviceId}-${targetDeviceId}-${Date.now()}`;
+        const sessionKeys = { encryptionKey: sessionKey, sessionId };
+        (0, keyStorage_1.storeSessionKey)(targetDeviceId, sessionKey, sessionId);
+        (0, sessionPersistence_1.persistSessionKey)(this.deviceId, targetDeviceId, sessionKeys); // Persist to disk
+        // Initialize counters
+        this.outgoingCounters.set(targetDeviceId, 0);
+        this.incomingCounters.set(targetDeviceId, -1); // Start at -1 so first message (counter: 0) is accepted
+        return {
+            senderDeviceId: this.deviceId,
+            ephemeralPublicKey: ephemeralKeyPair.publicKey,
+        };
+    }
+    /**
+     * Handles incoming key exchange init from sender
+     * Returns ack payload to send back via WebSocket
+     */
+    async handleKeyExchangeInit(senderDeviceId, senderEphemeralPublicKey) {
+        if (!this.keyPair) {
+            throw new Error('E2EE Manager not initialized');
+        }
+        // Generate our ephemeral key pair
+        const ephemeralKeyPair = (0, keyGeneration_1.generateKeyPair)();
+        // Compute session key using our ephemeral private key and their ephemeral public key
+        const sessionKey = (0, keyExchange_1.performKeyExchange)(ephemeralKeyPair.privateKey, senderEphemeralPublicKey);
+        // Store session key (in memory and on disk for reconnection resilience)
+        const sessionId = `session-${senderDeviceId}-${this.deviceId}-${Date.now()}`;
+        const sessionKeys = { encryptionKey: sessionKey, sessionId };
+        (0, keyStorage_1.storeSessionKey)(senderDeviceId, sessionKey, sessionId);
+        (0, sessionPersistence_1.persistSessionKey)(this.deviceId, senderDeviceId, sessionKeys); // Persist to disk
+        // Initialize counters
+        this.outgoingCounters.set(senderDeviceId, 0);
+        this.incomingCounters.set(senderDeviceId, -1); // Start at -1 so first message (counter: 0) is accepted
+        return {
+            recipientDeviceId: this.deviceId,
+            ephemeralPublicKey: ephemeralKeyPair.publicKey,
+        };
+    }
+    /**
+     * Handles incoming key exchange ack from recipient
+     * Completes the key exchange by deriving the final session key
+     */
+    async handleKeyExchangeAck(recipientDeviceId, recipientEphemeralPublicKey) {
+        const ephemeralPrivateKey = this.pendingKeyExchanges.get(recipientDeviceId);
+        if (!ephemeralPrivateKey) {
+            throw new Error('No pending key exchange for this device. Must call initiateKeyExchange first.');
+        }
+        // Compute session key using our ephemeral private key and their ephemeral public key
+        const sessionKey = (0, keyExchange_1.performKeyExchange)(ephemeralPrivateKey, recipientEphemeralPublicKey);
+        // Store session key (overwrites the one from init, in memory and on disk)
+        const sessionId = `session-${this.deviceId}-${recipientDeviceId}-${Date.now()}`;
+        const sessionKeys = { encryptionKey: sessionKey, sessionId };
+        (0, keyStorage_1.storeSessionKey)(recipientDeviceId, sessionKey, sessionId);
+        (0, sessionPersistence_1.persistSessionKey)(this.deviceId, recipientDeviceId, sessionKeys); // Persist to disk
+        // Clean up pending exchange
+        this.pendingKeyExchanges.delete(recipientDeviceId);
+    }
+    /**
+     * Attempts to restore a persisted session after reconnection
+     * Useful when IP changes cause WebSocket disconnection
+     */
+    async restorePersistedSession(targetDeviceId) {
+        const persistedKeys = (0, sessionPersistence_1.loadPersistedSessionKey)(this.deviceId, targetDeviceId);
+        if (!persistedKeys) {
+            return false;
+        }
+        // Restore session to memory
+        (0, keyStorage_1.storeSessionKey)(targetDeviceId, persistedKeys.encryptionKey, persistedKeys.sessionId);
+        // Reset counters (conservative approach - could be persisted too)
+        this.outgoingCounters.set(targetDeviceId, 0);
+        this.incomingCounters.set(targetDeviceId, -1);
+        console.log(`[E2EE] Restored persisted session for ${targetDeviceId}`);
+        return true;
+    }
+    /**
+     * Lists all devices with persisted sessions
+     * Useful for auto-reconnection after network changes
+     */
+    listPersistedDevices() {
+        return (0, sessionPersistence_1.listPersistedSessions)(this.deviceId);
+    }
+    /**
+     * Encrypts a message for a target device
+     */
+    encryptMessage(plaintext, targetDeviceId, sessionId) {
+        const sessionKeys = (0, keyStorage_1.getSessionKey)(targetDeviceId);
+        if (!sessionKeys) {
+            throw new Error(`No session key found for device ${targetDeviceId}. Must complete key exchange first.`);
+        }
+        // Encrypt message
+        const encryptedPayload = (0, encryption_1.encrypt)(plaintext, sessionKeys.encryptionKey);
+        // Get and increment counter
+        const counter = this.outgoingCounters.get(targetDeviceId) ?? 0;
+        this.outgoingCounters.set(targetDeviceId, counter + 1);
+        return {
+            senderDeviceId: this.deviceId,
+            recipientDeviceId: targetDeviceId,
+            sessionId,
+            payload: encryptedPayload,
+            messageCounter: counter,
+            timestamp: new Date().toISOString(),
+        };
+    }
+    /**
+     * Decrypts a message from a sender device
+     */
+    decryptMessage(encryptedMessage, senderDeviceId) {
+        const sessionKeys = (0, keyStorage_1.getSessionKey)(senderDeviceId);
+        if (!sessionKeys) {
+            throw new Error(`No session key found for device ${senderDeviceId}. Key exchange not completed.`);
+        }
+        // Replay protection: check message counter
+        const lastCounter = this.incomingCounters.get(senderDeviceId) ?? -1;
+        if (encryptedMessage.messageCounter <= lastCounter) {
+            throw new Error(`Invalid message counter. Possible replay attack. Expected > ${lastCounter}, got ${encryptedMessage.messageCounter}`);
+        }
+        // Update last seen counter
+        this.incomingCounters.set(senderDeviceId, encryptedMessage.messageCounter);
+        // Decrypt message
+        const plaintext = (0, encryption_1.decrypt)(encryptedMessage.payload, sessionKeys.encryptionKey);
+        return plaintext;
+    }
+    /**
+     * Checks if a session key exists for a device
+     */
+    hasSessionKey(deviceId) {
+        return (0, keyStorage_1.getSessionKey)(deviceId) !== null;
+    }
+    /**
+     * Checks if manager is initialized
+     */
+    isInitialized() {
+        return this.initialized;
+    }
+    /**
+     * Cleans up all session keys and pending exchanges
+     * @param deletePersisted - Whether to delete persisted sessions from disk (default: false)
+     */
+    cleanup(deletePersisted = false) {
+        (0, keyStorage_1.clearSessionKeys)();
+        this.pendingKeyExchanges.clear();
+        this.outgoingCounters.clear();
+        this.incomingCounters.clear();
+        // Optionally delete persisted sessions
+        if (deletePersisted) {
+            (0, sessionPersistence_1.deleteAllPersistedSessions)(this.deviceId);
+        }
+    }
+    /**
+     * Removes a specific persisted session
+     */
+    removePersistedSession(targetDeviceId) {
+        (0, sessionPersistence_1.deletePersistedSession)(this.deviceId, targetDeviceId);
+    }
+}
+exports.E2EEManager = E2EEManager;
+//# sourceMappingURL=e2eeManager.js.map

package/dist/crypto/e2eeManager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"e2eeManager.js","sourceRoot":"","sources":["../../src/crypto/e2eeManager.ts"],"names":[],"mappings":";;;;;;AAAA,kDAA6C;AAC7C,mDAAkD;AAClD,6CAMsB;AACtB,+CAAmD;AACnD,6CAAgD;AAOhD,6DAM8B;AAE9B;;;GAGG;AACH,MAAa,WAAW;IAgBtB,YAAY,QAAgB,EAAE,MAAc,EAAE,SAAiB;QAZvD,YAAO,GAAuB,IAAI,CAAC;QACnC,gBAAW,GAAG,KAAK,CAAC;QAE5B,iDAAiD;QACzC,wBAAmB,GAAG,IAAI,GAAG,EAAkB,CAAC,CAAC,kCAAkC;QAE3F,+CAA+C;QACvC,qBAAgB,GAAG,IAAI,GAAG,EAAkB,CAAC,CAAC,sBAAsB;QACpE,qBAAgB,GAAG,IAAI,GAAG,EAAkB,CAAC,CAAC,gCAAgC;QAKpF,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;QAE3B,IAAI,CAAC,aAAa,GAAG,eAAK,CAAC,MAAM,CAAC;YAChC,OAAO,EAAE;gBACP,aAAa,EAAE,UAAU,SAAS,EAAE;aACrC;SACF,CAAC,CAAC;IACL,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,UAAU;QACd,gCAAgC;QAChC,MAAM,kBAAkB,GAAG,MAAM,IAAA,0BAAa,EAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAE9D,IAAI,kBAAkB,EAAE,CAAC;YACvB,8CAA8C;YAC9C,MAAM,SAAS,GAAG,IAAI,CAAC,6BAA6B,CAAC,kBAAkB,CAAC,CAAC;YACzE,IAAI,CAAC,OAAO,GAAG;gBACb,SAAS;gBACT,UAAU,EAAE,kBAAkB;aAC/B,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,wBAAwB;YACxB,IAAI,CAAC,OAAO,GAAG,IAAA,+BAAe,GAAE,CAAC;YACjC,MAAM,IAAA,4BAAe,EAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;QAChE,CAAC;QAED,+BAA+B;QAC/B,MAAM,IAAI,CAAC,eAAe,EAAE,CAAC;QAE7B,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;IAC1B,CAAC;IAED;;OAEG;IACK,6BAA6B,CAAC,UAAkB;QACtD,MAAM,MAAM,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;QACjC,MAAM,eAAe,GAAG,MAAM,CAAC,IAAI,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;QAE1D,4BAA4B;QAC5B,MAAM,gBAAgB,GAAG,MAAM,CAAC,gBAAgB,CAAC;YAC/C,GAAG,EAAE,MAAM,CAAC,MAAM,CAAC;gBACjB,MAAM,CAAC,IAAI,CAAC;oBACV,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI;oBAChE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI;iBAC7B,CAAC;gBACF,eAAe;aAChB,CAAC;YACF,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,OAAO;SACd,CAAC,CAAC;QAEH,oBAAoB;QACpB,MAAM,eAAe,GAAG,MAAM,CAAC,eAAe,CAAC,gBAAgB,CAAC,CAAC;QACjE,MAAM,YAAY,GAAG,eAAe,CAAC,MAAM,CAAC;YAC1C,IAAI,EAAE,MAAM;YACZ,MAAM,EAAE,KAAK;SACd,CAAW,CAAC;QAEb,iCAAiC;QACjC,MAAM,YAAY,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC;QAC7C,OAAO,YAAY,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IACzC,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,eAAe;QAC3B,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;YAClB,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAC;QAC9C,CAAC;QAED,MAAM,IAAI,CAAC,aAAa,CAAC,GAAG,CAC1B,GAAG,IAAI,CAAC,MAAM,YAAY,IAAI,CAAC,QAAQ,aAAa,EACpD,EAAE,SAAS,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,CACtC,CAAC;IACJ,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,mBAAmB,CAAC,cAAsB;QAC9C,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;YAClB,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;QAClD,CAAC;QAED,gDAAgD;QAChD,MAAM,gBAAgB,GAAG,IAAA,+BAAe,GAAE,CAAC;QAE3C,sDAAsD;QACtD,IAAI,CAAC,mBAAmB,CAAC,GAAG,CAAC,cAAc,EAAE,gBAAgB,CAAC,UAAU,CAAC,CAAC;QAE1E,mCAAmC;QACnC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,GAAG,CAC3C,GAAG,IAAI,CAAC,MAAM,YAAY,cAAc,aAAa,CACtD,CAAC;QAEF,MAAM,eAAe,GAAG,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC;QAEhD,2EAA2E;QAC3E,MAAM,UAAU,GAAG,IAAA,gCAAkB,EACnC,gBAAgB,CAAC,UAAU,EAC3B,eAAe,CAChB,CAAC;QAEF,wEAAwE;QACxE,MAAM,SAAS,GAAG,WAAW,IAAI,CAAC,QAAQ,IAAI,cAAc,IAAI,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;QAC7E,MAAM,WAAW,GAAG,EAAE,aAAa,EAAE,UAAU,EAAE,SAAS,EAAE,CAAC;QAC7D,IAAA,4BAAe,EAAC,cAAc,EAAE,UAAU,EAAE,SAAS,CAAC,CAAC;QACvD,IAAA,sCAAiB,EAAC,IAAI,CAAC,QAAQ,EAAE,cAAc,EAAE,WAAW,CAAC,CAAC,CAAC,kBAAkB;QAEjF,sBAAsB;QACtB,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,cAAc,EAAE,CAAC,CAAC,CAAC;QAC7C,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,cAAc,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,wDAAwD;QAEvG,OAAO;YACL,cAAc,EAAE,IAAI,CAAC,QAAQ;YAC7B,kBAAkB,EAAE,gBAAgB,CAAC,SAAS;SAC/C,CAAC;IACJ,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,qBAAqB,CACzB,cAAsB,EACtB,wBAAgC;QAEhC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;YAClB,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;QAClD,CAAC;QAED,kCAAkC;QAClC,MAAM,gBAAgB,GAAG,IAAA,+BAAe,GAAE,CAAC;QAE3C,qFAAqF;QACrF,MAAM,UAAU,GAAG,IAAA,gCAAkB,EACnC,gBAAgB,CAAC,UAAU,EAC3B,wBAAwB,CACzB,CAAC;QAEF,wEAAwE;QACxE,MAAM,SAAS,GAAG,WAAW,cAAc,IAAI,IAAI,CAAC,QAAQ,IAAI,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;QAC7E,MAAM,WAAW,GAAG,EAAE,aAAa,EAAE,UAAU,EAAE,SAAS,EAAE,CAAC;QAC7D,IAAA,4BAAe,EAAC,cAAc,EAAE,UAAU,EAAE,SAAS,CAAC,CAAC;QACvD,IAAA,sCAAiB,EAAC,IAAI,CAAC,QAAQ,EAAE,cAAc,EAAE,WAAW,CAAC,CAAC,CAAC,kBAAkB;QAEjF,sBAAsB;QACtB,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,cAAc,EAAE,CAAC,CAAC,CAAC;QAC7C,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,cAAc,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,wDAAwD;QAEvG,OAAO;YACL,iBAAiB,EAAE,IAAI,CAAC,QAAQ;YAChC,kBAAkB,EAAE,gBAAgB,CAAC,SAAS;SAC/C,CAAC;IACJ,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,oBAAoB,CACxB,iBAAyB,EACzB,2BAAmC;QAEnC,MAAM,mBAAmB,GAAG,IAAI,CAAC,mBAAmB,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC;QAE5E,IAAI,CAAC,mBAAmB,EAAE,CAAC;YACzB,MAAM,IAAI,KAAK,CACb,+EAA+E,CAChF,CAAC;QACJ,CAAC;QAED,qFAAqF;QACrF,MAAM,UAAU,GAAG,IAAA,gCAAkB,EACnC,mBAAmB,EACnB,2BAA2B,CAC5B,CAAC;QAEF,0EAA0E;QAC1E,MAAM,SAAS,GAAG,WAAW,IAAI,CAAC,QAAQ,IAAI,iBAAiB,IAAI,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;QAChF,MAAM,WAAW,GAAG,EAAE,aAAa,EAAE,UAAU,EAAE,SAAS,EAAE,CAAC;QAC7D,IAAA,4BAAe,EAAC,iBAAiB,EAAE,UAAU,EAAE,SAAS,CAAC,CAAC;QAC1D,IAAA,sCAAiB,EAAC,IAAI,CAAC,QAAQ,EAAE,iBAAiB,EAAE,WAAW,CAAC,CAAC,CAAC,kBAAkB;QAEpF,4BAA4B;QAC5B,IAAI,CAAC,mBAAmB,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC;IACrD,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,uBAAuB,CAAC,cAAsB;QAClD,MAAM,aAAa,GAAG,IAAA,4CAAuB,EAAC,IAAI,CAAC,QAAQ,EAAE,cAAc,CAAC,CAAC;QAE7E,IAAI,CAAC,aAAa,EAAE,CAAC;YACnB,OAAO,KAAK,CAAC;QACf,CAAC;QAED,4BAA4B;QAC5B,IAAA,4BAAe,EACb,cAAc,EACd,aAAa,CAAC,aAAa,EAC3B,aAAa,CAAC,SAAS,CACxB,CAAC;QAEF,kEAAkE;QAClE,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,cAAc,EAAE,CAAC,CAAC,CAAC;QAC7C,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,cAAc,EAAE,CAAC,CAAC,CAAC,CAAC;QAE9C,OAAO,CAAC,GAAG,CAAC,yCAAyC,cAAc,EAAE,CAAC,CAAC;QACvE,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;;OAGG;IACH,oBAAoB;QAClB,OAAO,IAAA,0CAAqB,EAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IAC9C,CAAC;IAED;;OAEG;IACH,cAAc,CACZ,SAAiB,EACjB,cAAsB,EACtB,SAAiB;QAEjB,MAAM,WAAW,GAAG,IAAA,0BAAa,EAAC,cAAc,CAAC,CAAC;QAElD,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,MAAM,IAAI,KAAK,CACb,mCAAmC,cAAc,qCAAqC,CACvF,CAAC;QACJ,CAAC;QAED,kBAAkB;QAClB,MAAM,gBAAgB,GAAG,IAAA,oBAAO,EAAC,SAAS,EAAE,WAAW,CAAC,aAAa,CAAC,CAAC;QAEvE,4BAA4B;QAC5B,MAAM,OAAO,GAAG,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC;QAC/D,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,cAAc,EAAE,OAAO,GAAG,CAAC,CAAC,CAAC;QAEvD,OAAO;YACL,cAAc,EAAE,IAAI,CAAC,QAAQ;YAC7B,iBAAiB,EAAE,cAAc;YACjC,SAAS;YACT,OAAO,EAAE,gBAAgB;YACzB,cAAc,EAAE,OAAO;YACvB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACpC,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,cAAc,CACZ,gBAAkC,EAClC,cAAsB;QAEtB,MAAM,WAAW,GAAG,IAAA,0BAAa,EAAC,cAAc,CAAC,CAAC;QAElD,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,MAAM,IAAI,KAAK,CACb,mCAAmC,cAAc,+BAA+B,CACjF,CAAC;QACJ,CAAC;QAED,2CAA2C;QAC3C,MAAM,WAAW,GAAG,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC,CAAC;QAEpE,IAAI,gBAAgB,CAAC,cAAc,IAAI,WAAW,EAAE,CAAC;YACnD,MAAM,IAAI,KAAK,CACb,+DAA+D,WAAW,SAAS,gBAAgB,CAAC,cAAc,EAAE,CACrH,CAAC;QACJ,CAAC;QAED,2BAA2B;QAC3B,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,cAAc,EAAE,gBAAgB,CAAC,cAAc,CAAC,CAAC;QAE3E,kBAAkB;QAClB,MAAM,SAAS,GAAG,IAAA,oBAAO,EACvB,gBAAgB,CAAC,OAAO,EACxB,WAAW,CAAC,aAAa,CAC1B,CAAC;QAEF,OAAO,SAAS,CAAC;IACnB,CAAC;IAED;;OAEG;IACH,aAAa,CAAC,QAAgB;QAC5B,OAAO,IAAA,0BAAa,EAAC,QAAQ,CAAC,KAAK,IAAI,CAAC;IAC1C,CAAC;IAED;;OAEG;IACH,aAAa;QACX,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAED;;;OAGG;IACH,OAAO,CAAC,eAAe,GAAG,KAAK;QAC7B,IAAA,6BAAgB,GAAE,CAAC;QACnB,IAAI,CAAC,mBAAmB,CAAC,KAAK,EAAE,CAAC;QACjC,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,CAAC;QAC9B,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,CAAC;QAE9B,uCAAuC;QACvC,IAAI,eAAe,EAAE,CAAC;YACpB,IAAA,+CAA0B,EAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC5C,CAAC;IACH,CAAC;IAED;;OAEG;IACH,sBAAsB,CAAC,cAAsB;QAC3C,IAAA,2CAAsB,EAAC,IAAI,CAAC,QAAQ,EAAE,cAAc,CAAC,CAAC;IACxD,CAAC;CACF;AAlWD,kCAkWC"}

package/dist/crypto/encryption.d.ts

@@ -0,0 +1,19 @@
+import { EncryptedPayload } from './types';
+/**
+ * Encrypts plaintext using AES-256-GCM
+ *
+ * @param plaintext - Text to encrypt
+ * @param key - 32-byte encryption key (AES-256)
+ * @returns EncryptedPayload with Base64-encoded ciphertext, nonce, and authTag
+ */
+export declare function encrypt(plaintext: string, key: Uint8Array): EncryptedPayload;
+/**
+ * Decrypts ciphertext using AES-256-GCM
+ *
+ * @param payload - EncryptedPayload with Base64-encoded ciphertext, nonce, and authTag
+ * @param key - 32-byte encryption key (AES-256)
+ * @returns Decrypted plaintext
+ * @throws Error if decryption fails (wrong key, tampered data, etc.)
+ */
+export declare function decrypt(payload: EncryptedPayload, key: Uint8Array): string;
+//# sourceMappingURL=encryption.d.ts.map

package/dist/crypto/encryption.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"encryption.d.ts","sourceRoot":"","sources":["../../src/crypto/encryption.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,gBAAgB,EAAE,MAAM,SAAS,CAAC;AAM3C;;;;;;GAMG;AACH,wBAAgB,OAAO,CAAC,SAAS,EAAE,MAAM,EAAE,GAAG,EAAE,UAAU,GAAG,gBAAgB,CA6B5E;AAED;;;;;;;GAOG;AACH,wBAAgB,OAAO,CACrB,OAAO,EAAE,gBAAgB,EACzB,GAAG,EAAE,UAAU,GACd,MAAM,CAqCR"}

package/dist/crypto/encryption.js

@@ -0,0 +1,111 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.encrypt = encrypt;
+exports.decrypt = decrypt;
+const crypto = __importStar(require("crypto"));
+const ALGORITHM = 'aes-256-gcm';
+const NONCE_LENGTH = 12; // 96 bits for AES-GCM
+const AUTH_TAG_LENGTH = 16; // 128 bits for AES-GCM
+/**
+ * Encrypts plaintext using AES-256-GCM
+ *
+ * @param plaintext - Text to encrypt
+ * @param key - 32-byte encryption key (AES-256)
+ * @returns EncryptedPayload with Base64-encoded ciphertext, nonce, and authTag
+ */
+function encrypt(plaintext, key) {
+    if (key.length !== 32) {
+        throw new Error('Encryption key must be 32 bytes (256 bits)');
+    }
+    // Generate random nonce (12 bytes)
+    const nonce = crypto.randomBytes(NONCE_LENGTH);
+    // Create cipher
+    const cipher = crypto.createCipheriv(ALGORITHM, key, nonce);
+    // Encrypt
+    const ciphertext = Buffer.concat([
+        cipher.update(plaintext, 'utf8'),
+        cipher.final(),
+    ]);
+    // Get authentication tag
+    const authTag = cipher.getAuthTag();
+    if (authTag.length !== AUTH_TAG_LENGTH) {
+        throw new Error('Auth tag must be 16 bytes');
+    }
+    return {
+        ciphertext: ciphertext.toString('base64'),
+        nonce: nonce.toString('base64'),
+        authTag: authTag.toString('base64'),
+    };
+}
+/**
+ * Decrypts ciphertext using AES-256-GCM
+ *
+ * @param payload - EncryptedPayload with Base64-encoded ciphertext, nonce, and authTag
+ * @param key - 32-byte encryption key (AES-256)
+ * @returns Decrypted plaintext
+ * @throws Error if decryption fails (wrong key, tampered data, etc.)
+ */
+function decrypt(payload, key) {
+    if (key.length !== 32) {
+        throw new Error('Decryption key must be 32 bytes (256 bits)');
+    }
+    // Decode from Base64
+    const ciphertext = Buffer.from(payload.ciphertext, 'base64');
+    const nonce = Buffer.from(payload.nonce, 'base64');
+    const authTag = Buffer.from(payload.authTag, 'base64');
+    if (nonce.length !== NONCE_LENGTH) {
+        throw new Error('Nonce must be 12 bytes');
+    }
+    if (authTag.length !== AUTH_TAG_LENGTH) {
+        throw new Error('Auth tag must be 16 bytes');
+    }
+    try {
+        // Create decipher
+        const decipher = crypto.createDecipheriv(ALGORITHM, key, nonce);
+        // Set auth tag for verification
+        decipher.setAuthTag(authTag);
+        // Decrypt
+        const plaintext = Buffer.concat([
+            decipher.update(ciphertext),
+            decipher.final(),
+        ]);
+        return plaintext.toString('utf8');
+    }
+    catch (error) {
+        throw new Error(`Decryption failed: ${error instanceof Error ? error.message : 'unknown error'}`);
+    }
+}
+//# sourceMappingURL=encryption.js.map

package/dist/crypto/encryption.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"encryption.js","sourceRoot":"","sources":["../../src/crypto/encryption.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAcA,0BA6BC;AAUD,0BAwCC;AA7FD,+CAAiC;AAGjC,MAAM,SAAS,GAAG,aAAa,CAAC;AAChC,MAAM,YAAY,GAAG,EAAE,CAAC,CAAC,sBAAsB;AAC/C,MAAM,eAAe,GAAG,EAAE,CAAC,CAAC,uBAAuB;AAEnD;;;;;;GAMG;AACH,SAAgB,OAAO,CAAC,SAAiB,EAAE,GAAe;IACxD,IAAI,GAAG,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;QACtB,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAC;IAChE,CAAC;IAED,mCAAmC;IACnC,MAAM,KAAK,GAAG,MAAM,CAAC,WAAW,CAAC,YAAY,CAAC,CAAC;IAE/C,gBAAgB;IAChB,MAAM,MAAM,GAAG,MAAM,CAAC,cAAc,CAAC,SAAS,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC;IAE5D,UAAU;IACV,MAAM,UAAU,GAAG,MAAM,CAAC,MAAM,CAAC;QAC/B,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,MAAM,CAAC;QAChC,MAAM,CAAC,KAAK,EAAE;KACf,CAAC,CAAC;IAEH,yBAAyB;IACzB,MAAM,OAAO,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;IAEpC,IAAI,OAAO,CAAC,MAAM,KAAK,eAAe,EAAE,CAAC;QACvC,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;IAC/C,CAAC;IAED,OAAO;QACL,UAAU,EAAE,UAAU,CAAC,QAAQ,CAAC,QAAQ,CAAC;QACzC,KAAK,EAAE,KAAK,CAAC,QAAQ,CAAC,QAAQ,CAAC;QAC/B,OAAO,EAAE,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAC;KACpC,CAAC;AACJ,CAAC;AAED;;;;;;;GAOG;AACH,SAAgB,OAAO,CACrB,OAAyB,EACzB,GAAe;IAEf,IAAI,GAAG,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;QACtB,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAC;IAChE,CAAC;IAED,qBAAqB;IACrB,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;IAC7D,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;IACnD,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;IAEvD,IAAI,KAAK,CAAC,MAAM,KAAK,YAAY,EAAE,CAAC;QAClC,MAAM,IAAI,KAAK,CAAC,wBAAwB,CAAC,CAAC;IAC5C,CAAC;IAED,IAAI,OAAO,CAAC,MAAM,KAAK,eAAe,EAAE,CAAC;QACvC,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;IAC/C,CAAC;IAED,IAAI,CAAC;QACH,kBAAkB;QAClB,MAAM,QAAQ,GAAG,MAAM,CAAC,gBAAgB,CAAC,SAAS,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC;QAEhE,gCAAgC;QAChC,QAAQ,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC;QAE7B,UAAU;QACV,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC;YAC9B,QAAQ,CAAC,MAAM,CAAC,UAAU,CAAC;YAC3B,QAAQ,CAAC,KAAK,EAAE;SACjB,CAAC,CAAC;QAEH,OAAO,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;IACpC,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,IAAI,KAAK,CACb,sBAAsB,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE,CACjF,CAAC;IACJ,CAAC;AACH,CAAC"}

package/dist/crypto/keyExchange.d.ts

@@ -0,0 +1,24 @@
+/**
+ * Computes X25519 shared secret using ECDH
+ *
+ * @param privateKey - Base64-encoded X25519 private key (32 bytes)
+ * @param publicKey - Base64-encoded X25519 public key (32 bytes)
+ * @returns Shared secret (32 bytes)
+ */
+export declare function computeSharedSecret(privateKey: string, publicKey: string): Uint8Array;
+/**
+ * Derives a session encryption key from a shared secret using HKDF
+ *
+ * @param sharedSecret - Shared secret from X25519 key exchange
+ * @returns Derived session key (32 bytes for AES-256)
+ */
+export declare function deriveSessionKey(sharedSecret: Uint8Array): Uint8Array;
+/**
+ * Performs complete key exchange: computes shared secret and derives session key
+ *
+ * @param myPrivateKey - My Base64-encoded X25519 private key
+ * @param theirPublicKey - Their Base64-encoded X25519 public key
+ * @returns Derived session encryption key (32 bytes for AES-256-GCM)
+ */
+export declare function performKeyExchange(myPrivateKey: string, theirPublicKey: string): Uint8Array;
+//# sourceMappingURL=keyExchange.d.ts.map

package/dist/crypto/keyExchange.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"keyExchange.d.ts","sourceRoot":"","sources":["../../src/crypto/keyExchange.ts"],"names":[],"mappings":"AAEA;;;;;;GAMG;AACH,wBAAgB,mBAAmB,CACjC,UAAU,EAAE,MAAM,EAClB,SAAS,EAAE,MAAM,GAChB,UAAU,CA8CZ;AAED;;;;;GAKG;AACH,wBAAgB,gBAAgB,CAAC,YAAY,EAAE,UAAU,GAAG,UAAU,CAoBrE;AAED;;;;;;GAMG;AACH,wBAAgB,kBAAkB,CAChC,YAAY,EAAE,MAAM,EACpB,cAAc,EAAE,MAAM,GACrB,UAAU,CAIZ"}

package/dist/crypto/keyExchange.js

@@ -0,0 +1,119 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.computeSharedSecret = computeSharedSecret;
+exports.deriveSessionKey = deriveSessionKey;
+exports.performKeyExchange = performKeyExchange;
+const crypto = __importStar(require("crypto"));
+/**
+ * Computes X25519 shared secret using ECDH
+ *
+ * @param privateKey - Base64-encoded X25519 private key (32 bytes)
+ * @param publicKey - Base64-encoded X25519 public key (32 bytes)
+ * @returns Shared secret (32 bytes)
+ */
+function computeSharedSecret(privateKey, publicKey) {
+    const privateKeyBytes = Buffer.from(privateKey, 'base64');
+    const publicKeyBytes = Buffer.from(publicKey, 'base64');
+    if (privateKeyBytes.length !== 32) {
+        throw new Error('Private key must be 32 bytes');
+    }
+    if (publicKeyBytes.length !== 32) {
+        throw new Error('Public key must be 32 bytes');
+    }
+    // Create X25519 private key object from raw bytes
+    const privateKeyObject = crypto.createPrivateKey({
+        key: Buffer.concat([
+            // PKCS#8 header for X25519
+            Buffer.from([
+                0x30, 0x2e, 0x02, 0x01, 0x00, 0x30, 0x05, 0x06, 0x03, 0x2b, 0x65, 0x6e,
+                0x04, 0x22, 0x04, 0x20,
+            ]),
+            privateKeyBytes,
+        ]),
+        format: 'der',
+        type: 'pkcs8',
+    });
+    // Create X25519 public key object from raw bytes
+    const publicKeyObject = crypto.createPublicKey({
+        key: Buffer.concat([
+            // SPKI header for X25519
+            Buffer.from([
+                0x30, 0x2a, 0x30, 0x05, 0x06, 0x03, 0x2b, 0x65, 0x6e, 0x03, 0x21, 0x00,
+            ]),
+            publicKeyBytes,
+        ]),
+        format: 'der',
+        type: 'spki',
+    });
+    // Perform ECDH to compute shared secret
+    const sharedSecret = crypto.diffieHellman({
+        privateKey: privateKeyObject,
+        publicKey: publicKeyObject,
+    });
+    return new Uint8Array(sharedSecret);
+}
+/**
+ * Derives a session encryption key from a shared secret using HKDF
+ *
+ * @param sharedSecret - Shared secret from X25519 key exchange
+ * @returns Derived session key (32 bytes for AES-256)
+ */
+function deriveSessionKey(sharedSecret) {
+    if (sharedSecret.length !== 32) {
+        throw new Error('Shared secret must be 32 bytes');
+    }
+    // Use HKDF-SHA256 to derive session key
+    // Info string provides domain separation
+    const info = Buffer.from('forkoff-e2ee-session-key-v1', 'utf8');
+    const salt = Buffer.alloc(0); // Empty salt (optional for HKDF)
+    // Use synchronous HKDF (blocking but fast for 32-byte output)
+    const derivedKey = crypto.hkdfSync('sha256', Buffer.from(sharedSecret), salt, info, 32 // Output length: 32 bytes for AES-256
+    );
+    return new Uint8Array(derivedKey);
+}
+/**
+ * Performs complete key exchange: computes shared secret and derives session key
+ *
+ * @param myPrivateKey - My Base64-encoded X25519 private key
+ * @param theirPublicKey - Their Base64-encoded X25519 public key
+ * @returns Derived session encryption key (32 bytes for AES-256-GCM)
+ */
+function performKeyExchange(myPrivateKey, theirPublicKey) {
+    const sharedSecret = computeSharedSecret(myPrivateKey, theirPublicKey);
+    const sessionKey = deriveSessionKey(sharedSecret);
+    return sessionKey;
+}
+//# sourceMappingURL=keyExchange.js.map

package/dist/crypto/keyExchange.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"keyExchange.js","sourceRoot":"","sources":["../../src/crypto/keyExchange.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AASA,kDAiDC;AAQD,4CAoBC;AASD,gDAOC;AAtGD,+CAAiC;AAEjC;;;;;;GAMG;AACH,SAAgB,mBAAmB,CACjC,UAAkB,EAClB,SAAiB;IAEjB,MAAM,eAAe,GAAG,MAAM,CAAC,IAAI,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;IAC1D,MAAM,cAAc,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;IAExD,IAAI,eAAe,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;QAClC,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;IAClD,CAAC;IAED,IAAI,cAAc,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;QACjC,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;IACjD,CAAC;IAED,kDAAkD;IAClD,MAAM,gBAAgB,GAAG,MAAM,CAAC,gBAAgB,CAAC;QAC/C,GAAG,EAAE,MAAM,CAAC,MAAM,CAAC;YACjB,2BAA2B;YAC3B,MAAM,CAAC,IAAI,CAAC;gBACV,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI;gBACtE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI;aACvB,CAAC;YACF,eAAe;SAChB,CAAC;QACF,MAAM,EAAE,KAAK;QACb,IAAI,EAAE,OAAO;KACd,CAAC,CAAC;IAEH,iDAAiD;IACjD,MAAM,eAAe,GAAG,MAAM,CAAC,eAAe,CAAC;QAC7C,GAAG,EAAE,MAAM,CAAC,MAAM,CAAC;YACjB,yBAAyB;YACzB,MAAM,CAAC,IAAI,CAAC;gBACV,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI;aACvE,CAAC;YACF,cAAc;SACf,CAAC;QACF,MAAM,EAAE,KAAK;QACb,IAAI,EAAE,MAAM;KACb,CAAC,CAAC;IAEH,wCAAwC;IACxC,MAAM,YAAY,GAAG,MAAM,CAAC,aAAa,CAAC;QACxC,UAAU,EAAE,gBAAgB;QAC5B,SAAS,EAAE,eAAe;KAC3B,CAAC,CAAC;IAEH,OAAO,IAAI,UAAU,CAAC,YAAY,CAAC,CAAC;AACtC,CAAC;AAED;;;;;GAKG;AACH,SAAgB,gBAAgB,CAAC,YAAwB;IACvD,IAAI,YAAY,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;IACpD,CAAC;IAED,wCAAwC;IACxC,yCAAyC;IACzC,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,6BAA6B,EAAE,MAAM,CAAC,CAAC;IAChE,MAAM,IAAI,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,iCAAiC;IAE/D,8DAA8D;IAC9D,MAAM,UAAU,GAAG,MAAM,CAAC,QAAQ,CAChC,QAAQ,EACR,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,EACzB,IAAI,EACJ,IAAI,EACJ,EAAE,CAAC,sCAAsC;KAC1C,CAAC;IAEF,OAAO,IAAI,UAAU,CAAC,UAAU,CAAC,CAAC;AACpC,CAAC;AAED;;;;;;GAMG;AACH,SAAgB,kBAAkB,CAChC,YAAoB,EACpB,cAAsB;IAEtB,MAAM,YAAY,GAAG,mBAAmB,CAAC,YAAY,EAAE,cAAc,CAAC,CAAC;IACvE,MAAM,UAAU,GAAG,gBAAgB,CAAC,YAAY,CAAC,CAAC;IAClD,OAAO,UAAU,CAAC;AACpB,CAAC"}

package/dist/crypto/keyGeneration.d.ts

@@ -0,0 +1,18 @@
+import { E2EEKeyPair } from './types';
+/**
+ * Generates a random X25519 key pair for E2EE
+ * Uses Node.js crypto module
+ *
+ * @returns E2EEKeyPair with Base64-encoded public and private keys (32 bytes each)
+ */
+export declare function generateKeyPair(): E2EEKeyPair;
+/**
+ * Generates a deterministic X25519 key pair from a seed
+ * Useful for testing and key derivation
+ *
+ * @param seed - 32-byte buffer to use as the private key seed
+ * @returns E2EEKeyPair with Base64-encoded public and private keys
+ * @throws Error if seed is not 32 bytes
+ */
+export declare function generateKeyPairFromSeed(seed: Buffer): E2EEKeyPair;
+//# sourceMappingURL=keyGeneration.d.ts.map

package/dist/crypto/keyGeneration.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"keyGeneration.d.ts","sourceRoot":"","sources":["../../src/crypto/keyGeneration.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AAEtC;;;;;GAKG;AACH,wBAAgB,eAAe,IAAI,WAAW,CAsB7C;AAED;;;;;;;GAOG;AACH,wBAAgB,uBAAuB,CAAC,IAAI,EAAE,MAAM,GAAG,WAAW,CA6BjE"}