hop-claude 1.0.0

package/dist/config/config-manager.js

@@ -0,0 +1,334 @@
+import { ConfigStorage } from './storage.js';
+import { Encryption } from './encryption.js';
+import { PassphraseEncryption } from './encryption-v2.js';
+import { KeychainManager } from './keychain.js';
+/**
+ * 配置管理核心类
+ * 支持三种加密模式：
+ * - legacy: 机器绑定加密（向后兼容）
+ * - keychain: OS 密钥链存储（推荐）
+ * - passphrase: 用户密码加密（可移植）
+ */
+export class ConfigManager {
+    storage;
+    legacyEncryption;
+    passphraseEncryption;
+    keychainManager;
+    // 用于临时存储用户输入的 passphrase（仅在当前会话有效）
+    sessionPassphrase;
+    constructor() {
+        this.storage = new ConfigStorage();
+        this.legacyEncryption = new Encryption();
+        this.passphraseEncryption = new PassphraseEncryption();
+        this.keychainManager = new KeychainManager();
+    }
+    /**
+     * 设置会话密码（用于 passphrase 模式）
+     */
+    setSessionPassphrase(passphrase) {
+        this.sessionPassphrase = passphrase;
+    }
+    /**
+     * 清除会话密码
+     */
+    clearSessionPassphrase() {
+        this.sessionPassphrase = undefined;
+    }
+    /**
+     * 获取当前加密模式
+     */
+    async getEncryptionMode() {
+        const config = await this.storage.read();
+        return config?.encryptionMode || 'legacy'; // 默认 legacy 保持向后兼容
+    }
+    /**
+     * 初始化配置文件
+     */
+    async initialize() {
+        const existing = await this.storage.read();
+        if (existing) {
+            // 确保有 encryptionMode 字段（向后兼容）
+            if (!existing.encryptionMode) {
+                existing.encryptionMode = 'legacy';
+            }
+            return existing;
+        }
+        const newConfig = {
+            version: '1.0.0',
+            currentProfile: '',
+            profiles: [],
+            encryptionSalt: this.legacyEncryption.generateSalt(),
+            encryptionMode: 'legacy', // 默认使用 legacy 模式
+        };
+        await this.storage.write(newConfig);
+        return newConfig;
+    }
+    /**
+     * 获取所有配置
+     */
+    async getConfig() {
+        const config = await this.storage.read();
+        if (!config)
+            return await this.initialize();
+        // 向后兼容：添加默认的 encryptionMode
+        if (!config.encryptionMode) {
+            config.encryptionMode = 'legacy';
+        }
+        return config;
+    }
+    /**
+     * 添加或更新 profile
+     * @param profile 解密后的 profile
+     * @param passphrase 密码（仅 passphrase 模式需要）
+     */
+    async saveProfile(profile, passphrase) {
+        const config = await this.getConfig();
+        const mode = config.encryptionMode || 'legacy';
+        if (!config.encryptionSalt && mode !== 'keychain') {
+            config.encryptionSalt = this.legacyEncryption.generateSalt();
+        }
+        let encryptedApiKey;
+        // 根据加密模式处理 API Key
+        switch (mode) {
+            case 'keychain':
+                // Keychain 模式：存储到 OS 密钥链
+                await this.keychainManager.setAPIKey(profile.domain, profile.apiKey);
+                // config.json 中存储占位符
+                encryptedApiKey = '__KEYCHAIN__';
+                break;
+            case 'passphrase':
+                // Passphrase 模式：使用用户密码加密
+                const pwd = passphrase || this.sessionPassphrase;
+                if (!pwd) {
+                    throw new Error('Passphrase required for passphrase encryption mode');
+                }
+                if (!config.encryptionSalt) {
+                    config.encryptionSalt = this.passphraseEncryption.generateSalt();
+                }
+                encryptedApiKey = this.passphraseEncryption.encrypt(profile.apiKey, pwd, config.encryptionSalt);
+                break;
+            case 'legacy':
+            default:
+                // Legacy 模式：机器绑定加密
+                if (!config.encryptionSalt) {
+                    config.encryptionSalt = this.legacyEncryption.generateSalt();
+                }
+                encryptedApiKey = this.legacyEncryption.encrypt(profile.apiKey, config.encryptionSalt);
+                break;
+        }
+        const encryptedProfile = {
+            ...profile,
+            apiKey: encryptedApiKey,
+            updatedAt: Date.now(),
+        };
+        const index = config.profiles.findIndex(p => p.domain === profile.domain);
+        if (index >= 0) {
+            config.profiles[index] = encryptedProfile;
+        }
+        else {
+            encryptedProfile.createdAt = Date.now();
+            config.profiles.push(encryptedProfile);
+        }
+        await this.storage.write(config);
+    }
+    /**
+     * 获取解密后的 profile
+     * @param domain profile 名称
+     * @param passphrase 密码（仅 passphrase 模式需要）
+     */
+    async getProfile(domain, passphrase) {
+        const config = await this.getConfig();
+        const profile = config.profiles.find(p => p.domain === domain);
+        if (!profile)
+            return null;
+        const mode = config.encryptionMode || 'legacy';
+        let decryptedApiKey;
+        // 根据加密模式解密 API Key
+        switch (mode) {
+            case 'keychain':
+                // Keychain 模式：从 OS 密钥链读取
+                const keychainKey = await this.keychainManager.getAPIKey(domain);
+                if (!keychainKey) {
+                    throw new Error(`API key not found in keychain for profile: ${domain}`);
+                }
+                decryptedApiKey = keychainKey;
+                break;
+            case 'passphrase':
+                // Passphrase 模式：使用用户密码解密
+                const pwd = passphrase || this.sessionPassphrase;
+                if (!pwd) {
+                    throw new Error('Passphrase required to decrypt API key');
+                }
+                if (!config.encryptionSalt) {
+                    throw new Error('Encryption salt not found');
+                }
+                decryptedApiKey = this.passphraseEncryption.decrypt(profile.apiKey, pwd, config.encryptionSalt);
+                break;
+            case 'legacy':
+            default:
+                // Legacy 模式：机器绑定解密
+                if (!config.encryptionSalt) {
+                    throw new Error('Encryption salt not found');
+                }
+                decryptedApiKey = this.legacyEncryption.decrypt(profile.apiKey, config.encryptionSalt);
+                break;
+        }
+        return {
+            ...profile,
+            apiKey: decryptedApiKey,
+        };
+    }
+    /**
+     * 设置当前激活的 profile
+     */
+    async setCurrentProfile(domain) {
+        const config = await this.getConfig();
+        config.currentProfile = domain;
+        await this.storage.write(config);
+    }
+    /**
+     * 获取当前激活的 profile
+     * @param passphrase 密码（仅 passphrase 模式需要）
+     */
+    async getCurrentProfile(passphrase) {
+        const config = await this.getConfig();
+        if (!config.currentProfile)
+            return null;
+        return await this.getProfile(config.currentProfile, passphrase);
+    }
+    /**
+     * 列出所有 profiles（API Key 部分隐藏）
+     * @param passphrase 密码（仅 passphrase 模式需要）
+     */
+    async listProfiles(passphrase) {
+        const config = await this.getConfig();
+        const mode = config.encryptionMode || 'legacy';
+        const results = [];
+        for (const p of config.profiles) {
+            try {
+                let decryptedKey;
+                switch (mode) {
+                    case 'keychain':
+                        const keychainKey = await this.keychainManager.getAPIKey(p.domain);
+                        decryptedKey = keychainKey || '';
+                        break;
+                    case 'passphrase':
+                        const pwd = passphrase || this.sessionPassphrase;
+                        if (!pwd || !config.encryptionSalt) {
+                            decryptedKey = '';
+                            break;
+                        }
+                        decryptedKey = this.passphraseEncryption.decrypt(p.apiKey, pwd, config.encryptionSalt);
+                        break;
+                    case 'legacy':
+                    default:
+                        if (!config.encryptionSalt) {
+                            decryptedKey = '';
+                            break;
+                        }
+                        decryptedKey = this.legacyEncryption.decrypt(p.apiKey, config.encryptionSalt);
+                        break;
+                }
+                results.push({
+                    ...p,
+                    maskedApiKey: this.legacyEncryption.maskApiKey(decryptedKey),
+                });
+            }
+            catch (error) {
+                // 如果解密失败，显示错误标记
+                results.push({
+                    ...p,
+                    maskedApiKey: '[DECRYPT ERROR]',
+                });
+            }
+        }
+        return results;
+    }
+    /**
+     * 删除 profile
+     */
+    async deleteProfile(domain) {
+        const config = await this.getConfig();
+        const mode = config.encryptionMode || 'legacy';
+        // Keychain 模式下，同时从密钥链中删除
+        if (mode === 'keychain') {
+            await this.keychainManager.deleteAPIKey(domain);
+        }
+        config.profiles = config.profiles.filter(p => p.domain !== domain);
+        if (config.currentProfile === domain) {
+            config.currentProfile = config.profiles[0]?.domain || '';
+        }
+        await this.storage.write(config);
+    }
+    /**
+     * 导出配置（包含加密的数据）
+     * 注意：keychain 模式无法导出实际密钥
+     */
+    async exportConfig() {
+        const config = await this.getConfig();
+        // 如果是 keychain 模式，警告用户
+        if (config.encryptionMode === 'keychain') {
+            console.warn('Warning: Keychain mode cannot export actual API keys. Keys will need to be re-entered after import.');
+        }
+        return JSON.stringify(config, null, 2);
+    }
+    /**
+     * 导入配置
+     */
+    async importConfig(data) {
+        const config = JSON.parse(data);
+        // 验证配置格式
+        if (!config.version || !Array.isArray(config.profiles)) {
+            throw new Error('Invalid configuration format');
+        }
+        // 向后兼容：如果没有 encryptionMode，设置为 legacy
+        if (!config.encryptionMode) {
+            config.encryptionMode = 'legacy';
+        }
+        await this.storage.write(config);
+    }
+    /**
+     * 切换加密模式（需要提供所有必要的凭据）
+     * @param newMode 新的加密模式
+     * @param passphrase 密码（切换到 passphrase 模式时需要）
+     */
+    async switchEncryptionMode(newMode, passphrase) {
+        const config = await this.getConfig();
+        const oldMode = config.encryptionMode || 'legacy';
+        if (oldMode === newMode) {
+            return; // 无需切换
+        }
+        // 读取所有 profiles 的明文 API Keys
+        const decryptedProfiles = [];
+        for (const p of config.profiles) {
+            const decrypted = await this.getProfile(p.domain, passphrase);
+            if (decrypted) {
+                decryptedProfiles.push(decrypted);
+            }
+        }
+        // 更新加密模式
+        config.encryptionMode = newMode;
+        // 如果切换到非 legacy/passphrase 模式，可能需要新的 salt
+        if (newMode === 'passphrase' && !config.encryptionSalt) {
+            config.encryptionSalt = this.passphraseEncryption.generateSalt();
+        }
+        // 清空旧的 profiles
+        config.profiles = [];
+        await this.storage.write(config);
+        // 使用新模式重新保存所有 profiles
+        for (const profile of decryptedProfiles) {
+            await this.saveProfile(profile, passphrase);
+        }
+        // 如果从 keychain 切换出去，清理密钥链
+        if (oldMode === 'keychain') {
+            await this.keychainManager.clearAll();
+        }
+    }
+    /**
+     * 获取配置文件路径
+     */
+    getConfigPath() {
+        return this.storage.getConfigPath();
+    }
+}
+//# sourceMappingURL=config-manager.js.map

package/dist/config/config-manager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"config-manager.js","sourceRoot":"","sources":["../../src/config/config-manager.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAC7C,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAC7C,OAAO,EAAE,oBAAoB,EAAE,MAAM,oBAAoB,CAAC;AAC1D,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAGhD;;;;;;GAMG;AACH,MAAM,OAAO,aAAa;IAChB,OAAO,CAAgB;IACvB,gBAAgB,CAAa;IAC7B,oBAAoB,CAAuB;IAC3C,eAAe,CAAkB;IAEzC,mCAAmC;IAC3B,iBAAiB,CAAU;IAEnC;QACE,IAAI,CAAC,OAAO,GAAG,IAAI,aAAa,EAAE,CAAC;QACnC,IAAI,CAAC,gBAAgB,GAAG,IAAI,UAAU,EAAE,CAAC;QACzC,IAAI,CAAC,oBAAoB,GAAG,IAAI,oBAAoB,EAAE,CAAC;QACvD,IAAI,CAAC,eAAe,GAAG,IAAI,eAAe,EAAE,CAAC;IAC/C,CAAC;IAED;;OAEG;IACH,oBAAoB,CAAC,UAAkB;QACrC,IAAI,CAAC,iBAAiB,GAAG,UAAU,CAAC;IACtC,CAAC;IAED;;OAEG;IACH,sBAAsB;QACpB,IAAI,CAAC,iBAAiB,GAAG,SAAS,CAAC;IACrC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,iBAAiB;QACrB,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;QACzC,OAAO,MAAM,EAAE,cAAc,IAAI,QAAQ,CAAC,CAAE,mBAAmB;IACjE,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU;QACd,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;QAC3C,IAAI,QAAQ,EAAE,CAAC;YACb,8BAA8B;YAC9B,IAAI,CAAC,QAAQ,CAAC,cAAc,EAAE,CAAC;gBAC7B,QAAQ,CAAC,cAAc,GAAG,QAAQ,CAAC;YACrC,CAAC;YACD,OAAO,QAAQ,CAAC;QAClB,CAAC;QAED,MAAM,SAAS,GAAgB;YAC7B,OAAO,EAAE,OAAO;YAChB,cAAc,EAAE,EAAE;YAClB,QAAQ,EAAE,EAAE;YACZ,cAAc,EAAE,IAAI,CAAC,gBAAgB,CAAC,YAAY,EAAE;YACpD,cAAc,EAAE,QAAQ,EAAG,iBAAiB;SAC7C,CAAC;QAEF,MAAM,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;QACpC,OAAO,SAAS,CAAC;IACnB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,SAAS;QACb,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;QACzC,IAAI,CAAC,MAAM;YAAE,OAAO,MAAM,IAAI,CAAC,UAAU,EAAE,CAAC;QAE5C,4BAA4B;QAC5B,IAAI,CAAC,MAAM,CAAC,cAAc,EAAE,CAAC;YAC3B,MAAM,CAAC,cAAc,GAAG,QAAQ,CAAC;QACnC,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,WAAW,CAAC,OAAyB,EAAE,UAAmB;QAC9D,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;QACtC,MAAM,IAAI,GAAG,MAAM,CAAC,cAAc,IAAI,QAAQ,CAAC;QAE/C,IAAI,CAAC,MAAM,CAAC,cAAc,IAAI,IAAI,KAAK,UAAU,EAAE,CAAC;YAClD,MAAM,CAAC,cAAc,GAAG,IAAI,CAAC,gBAAgB,CAAC,YAAY,EAAE,CAAC;QAC/D,CAAC;QAED,IAAI,eAAuB,CAAC;QAE5B,mBAAmB;QACnB,QAAQ,IAAI,EAAE,CAAC;YACb,KAAK,UAAU;gBACb,yBAAyB;gBACzB,MAAM,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC;gBACrE,qBAAqB;gBACrB,eAAe,GAAG,cAAc,CAAC;gBACjC,MAAM;YAER,KAAK,YAAY;gBACf,yBAAyB;gBACzB,MAAM,GAAG,GAAG,UAAU,IAAI,IAAI,CAAC,iBAAiB,CAAC;gBACjD,IAAI,CAAC,GAAG,EAAE,CAAC;oBACT,MAAM,IAAI,KAAK,CAAC,oDAAoD,CAAC,CAAC;gBACxE,CAAC;gBACD,IAAI,CAAC,MAAM,CAAC,cAAc,EAAE,CAAC;oBAC3B,MAAM,CAAC,cAAc,GAAG,IAAI,CAAC,oBAAoB,CAAC,YAAY,EAAE,CAAC;gBACnE,CAAC;gBACD,eAAe,GAAG,IAAI,CAAC,oBAAoB,CAAC,OAAO,CACjD,OAAO,CAAC,MAAM,EACd,GAAG,EACH,MAAM,CAAC,cAAc,CACtB,CAAC;gBACF,MAAM;YAER,KAAK,QAAQ,CAAC;YACd;gBACE,mBAAmB;gBACnB,IAAI,CAAC,MAAM,CAAC,cAAc,EAAE,CAAC;oBAC3B,MAAM,CAAC,cAAc,GAAG,IAAI,CAAC,gBAAgB,CAAC,YAAY,EAAE,CAAC;gBAC/D,CAAC;gBACD,eAAe,GAAG,IAAI,CAAC,gBAAgB,CAAC,OAAO,CAC7C,OAAO,CAAC,MAAM,EACd,MAAM,CAAC,cAAc,CACtB,CAAC;gBACF,MAAM;QACV,CAAC;QAED,MAAM,gBAAgB,GAAkB;YACtC,GAAG,OAAO;YACV,MAAM,EAAE,eAAe;YACvB,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;SACtB,CAAC;QAEF,MAAM,KAAK,GAAG,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,OAAO,CAAC,MAAM,CAAC,CAAC;QAC1E,IAAI,KAAK,IAAI,CAAC,EAAE,CAAC;YACf,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,GAAG,gBAAgB,CAAC;QAC5C,CAAC;aAAM,CAAC;YACN,gBAAgB,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YACxC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;QACzC,CAAC;QAED,MAAM,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACnC,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,UAAU,CAAC,MAAc,EAAE,UAAmB;QAClD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;QACtC,MAAM,OAAO,GAAG,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC;QAE/D,IAAI,CAAC,OAAO;YAAE,OAAO,IAAI,CAAC;QAE1B,MAAM,IAAI,GAAG,MAAM,CAAC,cAAc,IAAI,QAAQ,CAAC;QAC/C,IAAI,eAAuB,CAAC;QAE5B,mBAAmB;QACnB,QAAQ,IAAI,EAAE,CAAC;YACb,KAAK,UAAU;gBACb,yBAAyB;gBACzB,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;gBACjE,IAAI,CAAC,WAAW,EAAE,CAAC;oBACjB,MAAM,IAAI,KAAK,CAAC,8CAA8C,MAAM,EAAE,CAAC,CAAC;gBAC1E,CAAC;gBACD,eAAe,GAAG,WAAW,CAAC;gBAC9B,MAAM;YAER,KAAK,YAAY;gBACf,yBAAyB;gBACzB,MAAM,GAAG,GAAG,UAAU,IAAI,IAAI,CAAC,iBAAiB,CAAC;gBACjD,IAAI,CAAC,GAAG,EAAE,CAAC;oBACT,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;gBAC5D,CAAC;gBACD,IAAI,CAAC,MAAM,CAAC,cAAc,EAAE,CAAC;oBAC3B,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;gBAC/C,CAAC;gBACD,eAAe,GAAG,IAAI,CAAC,oBAAoB,CAAC,OAAO,CACjD,OAAO,CAAC,MAAM,EACd,GAAG,EACH,MAAM,CAAC,cAAc,CACtB,CAAC;gBACF,MAAM;YAER,KAAK,QAAQ,CAAC;YACd;gBACE,mBAAmB;gBACnB,IAAI,CAAC,MAAM,CAAC,cAAc,EAAE,CAAC;oBAC3B,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;gBAC/C,CAAC;gBACD,eAAe,GAAG,IAAI,CAAC,gBAAgB,CAAC,OAAO,CAC7C,OAAO,CAAC,MAAM,EACd,MAAM,CAAC,cAAc,CACtB,CAAC;gBACF,MAAM;QACV,CAAC;QAED,OAAO;YACL,GAAG,OAAO;YACV,MAAM,EAAE,eAAe;SACxB,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,iBAAiB,CAAC,MAAc;QACpC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;QACtC,MAAM,CAAC,cAAc,GAAG,MAAM,CAAC;QAC/B,MAAM,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACnC,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,iBAAiB,CAAC,UAAmB;QACzC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;QACtC,IAAI,CAAC,MAAM,CAAC,cAAc;YAAE,OAAO,IAAI,CAAC;QACxC,OAAO,MAAM,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,cAAc,EAAE,UAAU,CAAC,CAAC;IAClE,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,YAAY,CAAC,UAAmB;QACpC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;QACtC,MAAM,IAAI,GAAG,MAAM,CAAC,cAAc,IAAI,QAAQ,CAAC;QAE/C,MAAM,OAAO,GAAoD,EAAE,CAAC;QAEpE,KAAK,MAAM,CAAC,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YAChC,IAAI,CAAC;gBACH,IAAI,YAAoB,CAAC;gBAEzB,QAAQ,IAAI,EAAE,CAAC;oBACb,KAAK,UAAU;wBACb,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;wBACnE,YAAY,GAAG,WAAW,IAAI,EAAE,CAAC;wBACjC,MAAM;oBAER,KAAK,YAAY;wBACf,MAAM,GAAG,GAAG,UAAU,IAAI,IAAI,CAAC,iBAAiB,CAAC;wBACjD,IAAI,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,cAAc,EAAE,CAAC;4BACnC,YAAY,GAAG,EAAE,CAAC;4BAClB,MAAM;wBACR,CAAC;wBACD,YAAY,GAAG,IAAI,CAAC,oBAAoB,CAAC,OAAO,CAC9C,CAAC,CAAC,MAAM,EACR,GAAG,EACH,MAAM,CAAC,cAAc,CACtB,CAAC;wBACF,MAAM;oBAER,KAAK,QAAQ,CAAC;oBACd;wBACE,IAAI,CAAC,MAAM,CAAC,cAAc,EAAE,CAAC;4BAC3B,YAAY,GAAG,EAAE,CAAC;4BAClB,MAAM;wBACR,CAAC;wBACD,YAAY,GAAG,IAAI,CAAC,gBAAgB,CAAC,OAAO,CAC1C,CAAC,CAAC,MAAM,EACR,MAAM,CAAC,cAAc,CACtB,CAAC;wBACF,MAAM;gBACV,CAAC;gBAED,OAAO,CAAC,IAAI,CAAC;oBACX,GAAG,CAAC;oBACJ,YAAY,EAAE,IAAI,CAAC,gBAAgB,CAAC,UAAU,CAAC,YAAY,CAAC;iBAC7D,CAAC,CAAC;YACL,CAAC;YAAC,OAAO,KAAc,EAAE,CAAC;gBACxB,gBAAgB;gBAChB,OAAO,CAAC,IAAI,CAAC;oBACX,GAAG,CAAC;oBACJ,YAAY,EAAE,iBAAiB;iBAChC,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,aAAa,CAAC,MAAc;QAChC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;QACtC,MAAM,IAAI,GAAG,MAAM,CAAC,cAAc,IAAI,QAAQ,CAAC;QAE/C,yBAAyB;QACzB,IAAI,IAAI,KAAK,UAAU,EAAE,CAAC;YACxB,MAAM,IAAI,CAAC,eAAe,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QAClD,CAAC;QAED,MAAM,CAAC,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC;QAEnE,IAAI,MAAM,CAAC,cAAc,KAAK,MAAM,EAAE,CAAC;YACrC,MAAM,CAAC,cAAc,GAAG,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,MAAM,IAAI,EAAE,CAAC;QAC3D,CAAC;QAED,MAAM,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACnC,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,YAAY;QAChB,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;QAEtC,uBAAuB;QACvB,IAAI,MAAM,CAAC,cAAc,KAAK,UAAU,EAAE,CAAC;YACzC,OAAO,CAAC,IAAI,CAAC,qGAAqG,CAAC,CAAC;QACtH,CAAC;QAED,OAAO,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;IACzC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,YAAY,CAAC,IAAY;QAC7B,MAAM,MAAM,GAAgB,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAE7C,SAAS;QACT,IAAI,CAAC,MAAM,CAAC,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC;YACvD,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;QAClD,CAAC;QAED,sCAAsC;QACtC,IAAI,CAAC,MAAM,CAAC,cAAc,EAAE,CAAC;YAC3B,MAAM,CAAC,cAAc,GAAG,QAAQ,CAAC;QACnC,CAAC;QAED,MAAM,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACnC,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,oBAAoB,CACxB,OAAuB,EACvB,UAAmB;QAEnB,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;QACtC,MAAM,OAAO,GAAG,MAAM,CAAC,cAAc,IAAI,QAAQ,CAAC;QAElD,IAAI,OAAO,KAAK,OAAO,EAAE,CAAC;YACxB,OAAO,CAAC,OAAO;QACjB,CAAC;QAED,6BAA6B;QAC7B,MAAM,iBAAiB,GAAuB,EAAE,CAAC;QAEjD,KAAK,MAAM,CAAC,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YAChC,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;YAC9D,IAAI,SAAS,EAAE,CAAC;gBACd,iBAAiB,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YACpC,CAAC;QACH,CAAC;QAED,SAAS;QACT,MAAM,CAAC,cAAc,GAAG,OAAO,CAAC;QAEhC,0CAA0C;QAC1C,IAAI,OAAO,KAAK,YAAY,IAAI,CAAC,MAAM,CAAC,cAAc,EAAE,CAAC;YACvD,MAAM,CAAC,cAAc,GAAG,IAAI,CAAC,oBAAoB,CAAC,YAAY,EAAE,CAAC;QACnE,CAAC;QAED,gBAAgB;QAChB,MAAM,CAAC,QAAQ,GAAG,EAAE,CAAC;QACrB,MAAM,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QAEjC,uBAAuB;QACvB,KAAK,MAAM,OAAO,IAAI,iBAAiB,EAAE,CAAC;YACxC,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;QAC9C,CAAC;QAED,0BAA0B;QAC1B,IAAI,OAAO,KAAK,UAAU,EAAE,CAAC;YAC3B,MAAM,IAAI,CAAC,eAAe,CAAC,QAAQ,EAAE,CAAC;QACxC,CAAC;IACH,CAAC;IAED;;OAEG;IACH,aAAa;QACX,OAAO,IAAI,CAAC,OAAO,CAAC,aAAa,EAAE,CAAC;IACtC,CAAC;CACF"}

package/dist/config/encryption-v2.d.ts

@@ -0,0 +1,51 @@
+/**
+ * PassphraseEncryption：基于用户密码的加密
+ * 用于可移植的配置导出/导入
+ * 不依赖机器信息，可以在不同机器间迁移
+ */
+export declare class PassphraseEncryption {
+    private algorithm;
+    private iterations;
+    /**
+     * 从用户密码派生加密密钥
+     * @param passphrase 用户提供的密码
+     * @param salt 盐值
+     * @returns 派生的密钥
+     */
+    private deriveKey;
+    /**
+     * 生成随机 salt
+     */
+    generateSalt(): string;
+    /**
+     * 加密明文
+     * @param plaintext 要加密的明文
+     * @param passphrase 用户密码
+     * @param salt 盐值
+     * @returns 加密后的密文，格式：iv:authTag:encrypted
+     */
+    encrypt(plaintext: string, passphrase: string, salt: string): string;
+    /**
+     * 解密密文
+     * @param ciphertext 密文，格式：iv:authTag:encrypted
+     * @param passphrase 用户密码
+     * @param salt 盐值
+     * @returns 解密后的明文
+     */
+    decrypt(ciphertext: string, passphrase: string, salt: string): string;
+    /**
+     * 验证密码是否正确
+     * @param ciphertext 密文
+     * @param passphrase 用户密码
+     * @param salt 盐值
+     * @returns 密码是否正确
+     */
+    verifyPassphrase(ciphertext: string, passphrase: string, salt: string): boolean;
+    /**
+     * 部分隐藏 API Key（用于显示）
+     * @param apiKey API Key
+     * @returns 部分隐藏的 API Key，如：sk-ant-***xyz
+     */
+    maskApiKey(apiKey: string): string;
+}
+//# sourceMappingURL=encryption-v2.d.ts.map

package/dist/config/encryption-v2.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"encryption-v2.d.ts","sourceRoot":"","sources":["../../src/config/encryption-v2.ts"],"names":[],"mappings":"AAEA;;;;GAIG;AACH,qBAAa,oBAAoB;IAC/B,OAAO,CAAC,SAAS,CAAiB;IAClC,OAAO,CAAC,UAAU,CAAU;IAE5B;;;;;OAKG;IACH,OAAO,CAAC,SAAS;IAIjB;;OAEG;IACH,YAAY,IAAI,MAAM;IAItB;;;;;;OAMG;IACH,OAAO,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,MAAM;IAcpE;;;;;;OAMG;IACH,OAAO,CAAC,UAAU,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,MAAM;IAqBrE;;;;;;OAMG;IACH,gBAAgB,CAAC,UAAU,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO;IAS/E;;;;OAIG;IACH,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM;CAOnC"}

package/dist/config/encryption-v2.js

@@ -0,0 +1,93 @@
+import crypto from 'crypto';
+/**
+ * PassphraseEncryption：基于用户密码的加密
+ * 用于可移植的配置导出/导入
+ * 不依赖机器信息，可以在不同机器间迁移
+ */
+export class PassphraseEncryption {
+    algorithm = 'aes-256-gcm';
+    iterations = 100000; // PBKDF2 迭代次数
+    /**
+     * 从用户密码派生加密密钥
+     * @param passphrase 用户提供的密码
+     * @param salt 盐值
+     * @returns 派生的密钥
+     */
+    deriveKey(passphrase, salt) {
+        return crypto.pbkdf2Sync(passphrase, salt, this.iterations, 32, 'sha512');
+    }
+    /**
+     * 生成随机 salt
+     */
+    generateSalt() {
+        return crypto.randomBytes(32).toString('hex');
+    }
+    /**
+     * 加密明文
+     * @param plaintext 要加密的明文
+     * @param passphrase 用户密码
+     * @param salt 盐值
+     * @returns 加密后的密文，格式：iv:authTag:encrypted
+     */
+    encrypt(plaintext, passphrase, salt) {
+        const key = this.deriveKey(passphrase, salt);
+        const iv = crypto.randomBytes(16);
+        const cipher = crypto.createCipheriv(this.algorithm, key, iv);
+        let encrypted = cipher.update(plaintext, 'utf8', 'hex');
+        encrypted += cipher.final('hex');
+        const authTag = cipher.getAuthTag();
+        // 格式: iv:authTag:encrypted
+        return `${iv.toString('hex')}:${authTag.toString('hex')}:${encrypted}`;
+    }
+    /**
+     * 解密密文
+     * @param ciphertext 密文，格式：iv:authTag:encrypted
+     * @param passphrase 用户密码
+     * @param salt 盐值
+     * @returns 解密后的明文
+     */
+    decrypt(ciphertext, passphrase, salt) {
+        const key = this.deriveKey(passphrase, salt);
+        const parts = ciphertext.split(':');
+        if (parts.length !== 3) {
+            throw new Error('Invalid encrypted data format');
+        }
+        const [ivHex, authTagHex, encrypted] = parts;
+        const iv = Buffer.from(ivHex, 'hex');
+        const authTag = Buffer.from(authTagHex, 'hex');
+        const decipher = crypto.createDecipheriv(this.algorithm, key, iv);
+        decipher.setAuthTag(authTag);
+        let decrypted = decipher.update(encrypted, 'hex', 'utf8');
+        decrypted += decipher.final('utf8');
+        return decrypted;
+    }
+    /**
+     * 验证密码是否正确
+     * @param ciphertext 密文
+     * @param passphrase 用户密码
+     * @param salt 盐值
+     * @returns 密码是否正确
+     */
+    verifyPassphrase(ciphertext, passphrase, salt) {
+        try {
+            this.decrypt(ciphertext, passphrase, salt);
+            return true;
+        }
+        catch {
+            return false;
+        }
+    }
+    /**
+     * 部分隐藏 API Key（用于显示）
+     * @param apiKey API Key
+     * @returns 部分隐藏的 API Key，如：sk-ant-***xyz
+     */
+    maskApiKey(apiKey) {
+        if (!apiKey || apiKey.length < 8)
+            return '***';
+        const prefix = apiKey.slice(0, 6);
+        const suffix = apiKey.slice(-3);
+        return `${prefix}***${suffix}`;
+    }
+}
+//# sourceMappingURL=encryption-v2.js.map

package/dist/config/encryption-v2.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"encryption-v2.js","sourceRoot":"","sources":["../../src/config/encryption-v2.ts"],"names":[],"mappings":"AAAA,OAAO,MAAM,MAAM,QAAQ,CAAC;AAE5B;;;;GAIG;AACH,MAAM,OAAO,oBAAoB;IACvB,SAAS,GAAG,aAAa,CAAC;IAC1B,UAAU,GAAG,MAAM,CAAC,CAAE,cAAc;IAE5C;;;;;OAKG;IACK,SAAS,CAAC,UAAkB,EAAE,IAAY;QAChD,OAAO,MAAM,CAAC,UAAU,CAAC,UAAU,EAAE,IAAI,EAAE,IAAI,CAAC,UAAU,EAAE,EAAE,EAAE,QAAQ,CAAC,CAAC;IAC5E,CAAC;IAED;;OAEG;IACH,YAAY;QACV,OAAO,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IAChD,CAAC;IAED;;;;;;OAMG;IACH,OAAO,CAAC,SAAiB,EAAE,UAAkB,EAAE,IAAY;QACzD,MAAM,GAAG,GAAG,IAAI,CAAC,SAAS,CAAC,UAAU,EAAE,IAAI,CAAC,CAAC;QAC7C,MAAM,EAAE,GAAG,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC;QAClC,MAAM,MAAM,GAAG,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,SAAS,EAAE,GAAG,EAAE,EAAE,CAAqB,CAAC;QAElF,IAAI,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,MAAM,EAAE,KAAK,CAAC,CAAC;QACxD,SAAS,IAAI,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;QAEjC,MAAM,OAAO,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;QAEpC,2BAA2B;QAC3B,OAAO,GAAG,EAAE,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,SAAS,EAAE,CAAC;IACzE,CAAC;IAED;;;;;;OAMG;IACH,OAAO,CAAC,UAAkB,EAAE,UAAkB,EAAE,IAAY;QAC1D,MAAM,GAAG,GAAG,IAAI,CAAC,SAAS,CAAC,UAAU,EAAE,IAAI,CAAC,CAAC;QAC7C,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAEpC,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACvB,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC;QACnD,CAAC;QAED,MAAM,CAAC,KAAK,EAAE,UAAU,EAAE,SAAS,CAAC,GAAG,KAAK,CAAC;QAC7C,MAAM,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;QACrC,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,UAAU,EAAE,KAAK,CAAC,CAAC;QAE/C,MAAM,QAAQ,GAAG,MAAM,CAAC,gBAAgB,CAAC,IAAI,CAAC,SAAS,EAAE,GAAG,EAAE,EAAE,CAAuB,CAAC;QACxF,QAAQ,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC;QAE7B,IAAI,SAAS,GAAG,QAAQ,CAAC,MAAM,CAAC,SAAS,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC;QAC1D,SAAS,IAAI,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QAEpC,OAAO,SAAS,CAAC;IACnB,CAAC;IAED;;;;;;OAMG;IACH,gBAAgB,CAAC,UAAkB,EAAE,UAAkB,EAAE,IAAY;QACnE,IAAI,CAAC;YACH,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,UAAU,EAAE,IAAI,CAAC,CAAC;YAC3C,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAED;;;;OAIG;IACH,UAAU,CAAC,MAAc;QACvB,IAAI,CAAC,MAAM,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC;YAAE,OAAO,KAAK,CAAC;QAE/C,MAAM,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;QAClC,MAAM,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;QAChC,OAAO,GAAG,MAAM,MAAM,MAAM,EAAE,CAAC;IACjC,CAAC;CACF"}

package/dist/config/encryption.d.ts

@@ -0,0 +1,36 @@
+/**
+ * 加密类：使用 AES-256-GCM 对称加密
+ * 密钥派生：基于机器标识（hostname + username）+ 随机盐
+ */
+export declare class Encryption {
+    private algorithm;
+    /**
+     * 生成加密密钥（基于机器信息 + salt）
+     */
+    private deriveKey;
+    /**
+     * 生成随机 salt
+     */
+    generateSalt(): string;
+    /**
+     * 加密明文
+     * @param plaintext 要加密的明文
+     * @param salt 盐值
+     * @returns 加密后的密文，格式：iv:authTag:encrypted
+     */
+    encrypt(plaintext: string, salt: string): string;
+    /**
+     * 解密密文
+     * @param ciphertext 密文，格式：iv:authTag:encrypted
+     * @param salt 盐值
+     * @returns 解密后的明文
+     */
+    decrypt(ciphertext: string, salt: string): string;
+    /**
+     * 部分隐藏 API Key（用于显示）
+     * @param apiKey API Key
+     * @returns 部分隐藏的 API Key，如：sk-ant-***xyz
+     */
+    maskApiKey(apiKey: string): string;
+}
+//# sourceMappingURL=encryption.d.ts.map

package/dist/config/encryption.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"encryption.d.ts","sourceRoot":"","sources":["../../src/config/encryption.ts"],"names":[],"mappings":"AAGA;;;GAGG;AACH,qBAAa,UAAU;IACrB,OAAO,CAAC,SAAS,CAAiB;IAElC;;OAEG;IACH,OAAO,CAAC,SAAS;IAKjB;;OAEG;IACH,YAAY,IAAI,MAAM;IAItB;;;;;OAKG;IACH,OAAO,CAAC,SAAS,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,MAAM;IAchD;;;;;OAKG;IACH,OAAO,CAAC,UAAU,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,MAAM;IAqBjD;;;;OAIG;IACH,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM;CAOnC"}

package/dist/config/encryption.js

@@ -0,0 +1,72 @@
+import crypto from 'crypto';
+import os from 'os';
+/**
+ * 加密类：使用 AES-256-GCM 对称加密
+ * 密钥派生：基于机器标识（hostname + username）+ 随机盐
+ */
+export class Encryption {
+    algorithm = 'aes-256-gcm';
+    /**
+     * 生成加密密钥（基于机器信息 + salt）
+     */
+    deriveKey(salt) {
+        const machineId = `${os.hostname()}-${os.userInfo().username}`;
+        return crypto.pbkdf2Sync(machineId, salt, 100000, 32, 'sha512');
+    }
+    /**
+     * 生成随机 salt
+     */
+    generateSalt() {
+        return crypto.randomBytes(32).toString('hex');
+    }
+    /**
+     * 加密明文
+     * @param plaintext 要加密的明文
+     * @param salt 盐值
+     * @returns 加密后的密文，格式：iv:authTag:encrypted
+     */
+    encrypt(plaintext, salt) {
+        const key = this.deriveKey(salt);
+        const iv = crypto.randomBytes(16);
+        const cipher = crypto.createCipheriv(this.algorithm, key, iv);
+        let encrypted = cipher.update(plaintext, 'utf8', 'hex');
+        encrypted += cipher.final('hex');
+        const authTag = cipher.getAuthTag();
+        // 格式: iv:authTag:encrypted
+        return `${iv.toString('hex')}:${authTag.toString('hex')}:${encrypted}`;
+    }
+    /**
+     * 解密密文
+     * @param ciphertext 密文，格式：iv:authTag:encrypted
+     * @param salt 盐值
+     * @returns 解密后的明文
+     */
+    decrypt(ciphertext, salt) {
+        const key = this.deriveKey(salt);
+        const parts = ciphertext.split(':');
+        if (parts.length !== 3) {
+            throw new Error('Invalid encrypted data format');
+        }
+        const [ivHex, authTagHex, encrypted] = parts;
+        const iv = Buffer.from(ivHex, 'hex');
+        const authTag = Buffer.from(authTagHex, 'hex');
+        const decipher = crypto.createDecipheriv(this.algorithm, key, iv);
+        decipher.setAuthTag(authTag);
+        let decrypted = decipher.update(encrypted, 'hex', 'utf8');
+        decrypted += decipher.final('utf8');
+        return decrypted;
+    }
+    /**
+     * 部分隐藏 API Key（用于显示）
+     * @param apiKey API Key
+     * @returns 部分隐藏的 API Key，如：sk-ant-***xyz
+     */
+    maskApiKey(apiKey) {
+        if (!apiKey || apiKey.length < 8)
+            return '***';
+        const prefix = apiKey.slice(0, 6);
+        const suffix = apiKey.slice(-3);
+        return `${prefix}***${suffix}`;
+    }
+}
+//# sourceMappingURL=encryption.js.map

package/dist/config/encryption.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"encryption.js","sourceRoot":"","sources":["../../src/config/encryption.ts"],"names":[],"mappings":"AAAA,OAAO,MAAM,MAAM,QAAQ,CAAC;AAC5B,OAAO,EAAE,MAAM,IAAI,CAAC;AAEpB;;;GAGG;AACH,MAAM,OAAO,UAAU;IACb,SAAS,GAAG,aAAa,CAAC;IAElC;;OAEG;IACK,SAAS,CAAC,IAAY;QAC5B,MAAM,SAAS,GAAG,GAAG,EAAE,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE,CAAC;QAC/D,OAAO,MAAM,CAAC,UAAU,CAAC,SAAS,EAAE,IAAI,EAAE,MAAM,EAAE,EAAE,EAAE,QAAQ,CAAC,CAAC;IAClE,CAAC;IAED;;OAEG;IACH,YAAY;QACV,OAAO,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IAChD,CAAC;IAED;;;;;OAKG;IACH,OAAO,CAAC,SAAiB,EAAE,IAAY;QACrC,MAAM,GAAG,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;QACjC,MAAM,EAAE,GAAG,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC;QAClC,MAAM,MAAM,GAAG,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,SAAS,EAAE,GAAG,EAAE,EAAE,CAAqB,CAAC;QAElF,IAAI,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,MAAM,EAAE,KAAK,CAAC,CAAC;QACxD,SAAS,IAAI,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;QAEjC,MAAM,OAAO,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;QAEpC,2BAA2B;QAC3B,OAAO,GAAG,EAAE,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,SAAS,EAAE,CAAC;IACzE,CAAC;IAED;;;;;OAKG;IACH,OAAO,CAAC,UAAkB,EAAE,IAAY;QACtC,MAAM,GAAG,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;QACjC,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAEpC,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACvB,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC;QACnD,CAAC;QAED,MAAM,CAAC,KAAK,EAAE,UAAU,EAAE,SAAS,CAAC,GAAG,KAAK,CAAC;QAC7C,MAAM,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;QACrC,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,UAAU,EAAE,KAAK,CAAC,CAAC;QAE/C,MAAM,QAAQ,GAAG,MAAM,CAAC,gBAAgB,CAAC,IAAI,CAAC,SAAS,EAAE,GAAG,EAAE,EAAE,CAAuB,CAAC;QACxF,QAAQ,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC;QAE7B,IAAI,SAAS,GAAG,QAAQ,CAAC,MAAM,CAAC,SAAS,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC;QAC1D,SAAS,IAAI,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QAEpC,OAAO,SAAS,CAAC;IACnB,CAAC;IAED;;;;OAIG;IACH,UAAU,CAAC,MAAc;QACvB,IAAI,CAAC,MAAM,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC;YAAE,OAAO,KAAK,CAAC;QAE/C,MAAM,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;QAClC,MAAM,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;QAChC,OAAO,GAAG,MAAM,MAAM,MAAM,EAAE,CAAC;IACjC,CAAC;CACF"}