leviathan-crypto 2.0.1 → 2.1.0

package/dist/embedded/kyber.d.ts

@@ -1 +1 @@
-export declare const WASM_GZ_BASE64 = "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";
+export declare const WASM_GZ_BASE64 = "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";

package/dist/embedded/kyber.js

@@ -1,3 +1,3 @@
 // Generated by scripts/embed-wasm.ts — do not edit
 // gzip-compressed WASM binary, base64-encoded. Decoded and decompressed by loadEmbedded().
-export const WASM_GZ_BASE64 = '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';
+export const WASM_GZ_BASE64 = 'H4sIAAAAAAAAA61aa4xkRRWu5312T/eiCI6Le+4FFcRZHrvLY0GYGnR1ccGNhGh8ZHZ29s44d3pmdrrvtK4oPRsl7g9CglGCr2Q1CAQFg4mPGJEdNSpq/INEY1D4ocYfaqLGyDx62j1V9/bc7unuxQQ2c6vOuedUncdXVaduQyZqc5QQQq/zjhDaOMIaDXKENsgR3sCeaDQMw7yijSMkZdKGFqENfuDtZNB/NpGCMcaktCjlnFLGseWMMc6FoJQKYTmukALZ9rPOAX86Sm5bOLZUiQ4eI2QIqWhuoXri8MR0VCO0NB0lhxcqJ+6oLCRjE7WIsDznjpmPRYQXcpwrCcuTVxGRJ68mMk/uIVae3EvsPLmPOHnyGuLmyWuJlyevI36evJ4UzkvJejTZNr7YxdT2D5U6mVeSYhfnKlLq4lxNyl2cPWRHF2cvOa+Ls4+8qotzDXl1F+dacn5xOkruiKJj756aqkUJeQ06dlttOiUvwIwdnk2pC5G6I6Nei9QtSUoNlzV1uDozF6Ws1+Fs71uYOlydSjk7/Y/MHI/GlqamomqNXIQAeH+UTNTS16+3UwbZZR+dqEVzSxUC3nySjNcmJyoTVRIUZ+brOTrk80lCLrYMl1yyY25hPplemIuqJ8ar0bGlyYi8YejoRLUaJUnGeKOcWsSB31Q4vlA5MZ4sHD2RRDVy6ZAmp6oLc4ZxWVEzJhfmjlejWo28uaTpY1Gbc3mhrTJXmyZv8dIBkRjxM2JhPiG7L9BU6tP4lpXkCjPLdJTML8zUInK1o+mJY8fIHtOtLR0le81oqQf7zAv0+BrzIvX/Wm1iPZpse3Xdjoyz5dj15YzX9mT/eRkr594NfsbEsW8cyqh0sre2GalZN7Xl0fqbX59RmdcTk5N5z0fPzwTmcEdYqo1PfjianCXKr0bx+NL8zNRCdY6MuZPJeD2qzkydILfYk8n45NxCnbzNmtP7BiMFyryfXf92QZT0BbmZ+JKoZdBPoZ+X6Oel+vkW/bxSP/fq53X6eaNvEbV8hujmJ6b5uRmqrInfGd5fTfOSaU5R3TxomkdN8z3T/Fw3p01zxjQv/sY0LxqRvxuRVeoPocmKqNN/phu+nva04w8RIIom6rQT76bEf4hS1gACfIsHdDdloQCGDa+EEuSKOjlVWVEnhyuzqry00ouHWiSkqEVC1ksivoESIECBV8KzRnTrMxC9+PENlPnfodRpKBowtUwDm4+CrdjtYlSRwOGj4Khl9k4xCiykisYBA7rlTGCBDU4cSD4KEpxbxSgQzVE0iUOB7lqVkALtmjbgIICAo8XQNeCzaD8FQ2hnHJzOKVDfBwl21rUVXQps7PoPMOo1VIsETLHA5aPgqmV6SBvu8VHw8obPdhnugAteHAg+CgI8Y7inzeEYYhuIFtAcCzkyDihwoCvozNNfphW1vLxcjtXwknFrBU22wEFbZ1d6OY0CHvrkaUcEuFnXVTQJXOx2mZ7ZhGlXX/ErAQUG5xrZ/wlnTkPcpWjAMaOMjwJTjsko5aNA09FzqAwEUjHmpVkOXKDATHAoCBR1NbSYiYdsEkFCv1mg/+781/wcbX6OBgWQKJ6T9cAFv/kDCoXmI7RZoEVC8n/Nb9Pmk1SVm9+gWvApFHx0sGDzHhr6zftp0xcEJHjgN+8zBFVOHFAdWAai3UXcMOzqcLDB4bCycHQHIh+GFN422N3wtvMRQPQ4YGuAS706NNRx/AFW+s9ZzGvIuxDfXLE0i+LQQLMdpGYzs6U2W6Zmb0HZznvhIkfEgQcWeCvg9Qe3Cw4IA24BogcEO1ySOZeSXOCzFToQiLMpEIu94p/D1VDeEyuF5X00RJgFJZBQglKz8PTthOT/EEUFQgjL/zWfoGoYcdUHdBqRYQEKr9B4zXsMWovgw1DzfjpwPVko9vLWT/Hlr5/BqyVNWjtV8E4x2ix8RXb+0wkRuEWdc1NgPbRfnlM9Ff8/JzNk+q/GU7LrGPQvQhZye2Hf36nf0pVeB6j/KUpFI0U2ApTq2CmqMYlriwNfUaUldXJ4MQ7w1GOKV+JQr1HFjIw+zlOZUO4nBDgIJRKQqtXii8qpV/cTqpmaFvX9hOFEcbpZRNuNwEnkCGEB13PSJBRoEsgRQvBBQ6mcpKpauxZN6SBSo4GbmUW9ii9ys/zDom4Dd6EDegmbLQnaEyYhVyzzOxBYiyjepqWmRZu2NC3btK1pq007mrbbtKvdYEkcevpNR4Sz4CmRqJPFWK3/R1TUzjo6gqaJcwlWMeYenM3DgJHO7nr91Sl4cPYkGKBugdVfnQGeke4AdQec/uo8lyb5/6YmzLstE7VcjNXm91lFva7enbUw70SX6DkSGuYd6FLtnWtZGZzrzkFCX8m+2e4UTbOdz2engGIJ+IrXqyCVnaTZtcyyoFm68tnuUqcJSter4Cgr0enpzG6XOE/AUQzHFfnl5j/FqbVtvZkVnq4FffqNEBJyVVrETUk5sRJ1s6BzGxHmsN75fiBgMPTWCKGBDRbuIQIbHnBsRCD14CKJkSSho3aZucuxku25eRJa2ey2cVHWqz1ErRSZeO2o93xvkIobVAK2svuMInK7l8Do95SSmRTtPZfBK0iEAFdWn1HsTIrXO1/m0/d+ynFT5llYOWYqEO1oOyaRHINjQqAICGBLii7OqpPFxc4B05JUjz2TH1ptGzRd4NmweHugnRsKXQSWVIM83tCUGIQ+fbZmusXMRNs3Etq+JalnvErAgMPZo6jzWOysBv1/4QVTm3uGmHqPJ6EAgvAVsa47zr4bnQ3tMgBXLDGICAXQOHSyDUHEoQWuljZFtaiEHhasnTddO3fXdvCSbYPERlZwB9p2197OmzU3OQluz5u4ALtXAYw36XzcvpDWBVvZ12cXw9OXjRCKZy92mCqbDlcXJtWQqecee+4xuYh5qaf9eCBmEDGKJaGsK74IApEbY3e2P3q+1LbN5EODpdLPuJCpZx76DE1N0t0Yp8z6OetEZh3rsM6qoHW2sY7H2B1g3QV6bztgwFa+UpeY5at8/wbKcgHFZb6FISw+NTKwk10Ec2O+fN37t+k+SxlrsLvaRXBXycvxriFwABCv1F2D412DA3+F7xq5JekRIOWLgZT3+RZ2L/Evp1SXkMBvTZO4zCuxxoabxOVL8yHZLusmRhR1ypflZX9q00IDuPIOiFGtI27VkBOoo48Soc6wShxYigQ8h0qpcRTaudM/X0J4yeNjJ4sfH/vuC78md4/BqbGW/clHAv39ZavUCfOnbm8NV2tsFUP5Y723hg34ecBUJ1IvRa3ogz9YMfRN3eGY8sLJykZXl3d41qSFhbISZNbTygHPRSwNtoKqa/VA6MN7e0wtHdMXMaZ2O6YauZbZemWfkPrJ42PLxY+PPf/NN909tuvUWKukI2rpPaVXRHsquFphK6Bn9+jBCp5W2Kox84HsqeBrhXalibfywQoFrbBVihahOFihqBXsnhVyT4UhsIErH+9cOsppDVqC0kC9sISQkODgfl7KICHBRQjoggkhgTRCgOOHLiyCXOWZalGCj+DxsCjaTyRIKCgbwaXBY2ma1vcT/CBVRNgVlItvcJkMYb1cNLBzNc3r+4nXG2a+/3tJh7avY9Jex7TfOs4Wi42FpAP2CBFoiT1CeOji9EF7GSGT4IOGtrmc2qb4Whax8urmC5reFfystMQKW6+Q3sJ+Vlymi0z0lUuLTK/r1bkWXRYAXwdAL7pC56IrpMDwRogMJHh41LMEWxZa6D92RWgrDx0uLQZFZGAZg60VOphc7Dqhq9xUZggZHqLGGyFuWEKoBGXwDfSQSfBBwx0mjuntYNmJla/98s1W4GVxtBANO/DO01PYy+JY7PGKZ9WwjamgfYcQWcqy7wt95NIafajHq7Q8L5ktkvUdIi3Qy12v+mD7UlMeUGC3pncrF2vc8sXAy/vyNX1oDr5OwfIl5xbpGGV3Wo0YBCF+QmmqERnrT6flPXnz3mF+RKLAylcoqr+GGlV1+iTL1GmqeQV+3sIXHWPog/5mHAdru4BnX/WA619I1PJwVtnvpmRW7Vqqmt9Lct8DF/0HKF5HjQEC7wP6ahZK4IcWcRSw4tDFS6MDLtaO2YLDz+GBhTz8USf95nT2EDo5fDBdQBo9mB9jsZ8Ob6PIYk7GzsmkP6LQWf9GE860GhH6HoNzpTeuWjXIn51jOEKLLj7+ibGbTz3iK8obCn9/0kt2a1Hrj2f4lUrv52DpUhFHW6zhlp1Hz4OMEXWv47OdlKgHHf8UE/g/WlBC/rbuNT+/+aq15+R9chf9BbmzNc8us75DfsRvX79p7QfyrezZNYc26I83viV/uHp3673NVf48O8LWVr9I97T+sPozcS/7XfO//N9rz8q/bL60KthLrTObU80nVuvrd5On5Nc3Hm79c/MmPktqa27r4EZ1c4XvXLu8eYb+dv1rTK4/uf4EvZy9i1+0Ps2HrBnyMH0Xe5Kc3/rD5t7NN1pLltfy+KfFXOu/G7+UDzfHxS9WP8Ue3PgQ/So9SI+1vt26ih8UH2BH2Zvl+to71papWv9o60fimbUHNp4nH1q/Z3V83Vpj68N8eO2xjS9s/JF+tvWrzT/xF/gP+aG1f8kPWiQs1xaWqpPRbRPHj8/MT9/5nkPl3VfMnjgaVXd/ZKI2t3tu4vj/ABUUZQbyIgAA';

package/dist/embedded/serpent-pool-worker.d.ts

@@ -0,0 +1 @@
+export declare const WORKER_SOURCE = "\"use strict\";(()=>{var U=new Uint8Array([0,97,115,109,1,0,0,0,1,8,1,96,3,127,127,127,1,127,3,2,1,0,5,4,1,1,1,1,7,20,2,7,99,111,109,112,97,114,101,0,0,6,109,101,109,111,114,121,2,0,10,133,1,1,130,1,3,2,127,1,126,1,123,3,64,32,3,65,16,106,34,4,32,2,76,4,64,32,6,32,0,32,3,106,253,0,4,0,32,1,32,3,106,253,0,4,0,253,81,253,80,33,6,32,4,33,3,12,1,11,11,3,64,32,2,32,3,74,4,64,32,5,32,0,32,3,106,49,0,0,32,1,32,3,106,49,0,0,133,132,33,5,32,3,65,1,106,33,3,12,1,11,11,66,0,32,5,32,6,253,29,0,32,6,253,29,1,132,132,34,5,125,32,5,132,66,63,135,66,127,133,167,65,1,113,11]);var R=null,K=null,I=!1,m=null,T=32768;function P(){if(I){if(m)throw m;return}if(I=!0,!V())throw m=new Error(\"leviathan-crypto: constantTimeEqual requires WebAssembly SIMD \\u2014 this runtime does not support it\"),m;try{let e=U.buffer.slice(U.byteOffset,U.byteOffset+U.byteLength),t=new WebAssembly.Module(e),o=new WebAssembly.Instance(t).exports;K=o.memory,R=o.compare}catch(e){throw m=new Error(`leviathan-crypto: ct WASM module failed to instantiate: ${e.message}`),m}}var _=(e,t)=>{if(e.length!==t.length)return!1;if(e.length>T)throw new RangeError(`constantTimeEqual: max ${T} bytes (got ${e.length})`);P();let n=K,o=R;if(!n||!o)throw new Error(\"leviathan-crypto: ct init invariant violated\");let r=new Uint8Array(n.buffer);r.set(e,0),r.set(t,e.length);try{return o(0,e.length,e.length)===1}finally{r.fill(0,0,e.length*2)}};var i=e=>{e.fill(0)};var S=(...e)=>{let t=e.reduce((r,s)=>r+s.length,0),n=new Uint8Array(t),o=0;for(let r of e)n.set(r,o),o+=r.length;return n};var h=null;function V(){if(h!==null)return h;if(typeof WebAssembly>\"u\"||typeof WebAssembly.validate!=\"function\")return h=!1,h;try{h=WebAssembly.validate(new Uint8Array([0,97,115,109,1,0,0,0,1,5,1,96,0,1,123,3,2,1,0,10,10,1,8,0,65,0,253,15,253,98,11]))}catch{h=!1}return h}var E=class e extends Error{constructor(t){super(`${t}: authentication failed`),this.name=\"AuthenticationError\",Object.setPrototypeOf(this,e.prototype)}};var x=\"invalid ciphertext\";function q(e){let t=16-e.length%16,n=new Uint8Array(e.length+t);return n.set(e),n.fill(t,e.length),n}function j(e){if(e.length===0||e.length%16!==0)throw new RangeError(x);let t=e[e.length-1],n=0;n|=t-1>>>31,n|=16-t>>>31;for(let r=0;r<16;r++){let s=e.length-16+r,a=16-t-r-1>>31&255;n|=(e[s]^t)&a}if(n-1>>>31^1)throw new RangeError(x);return e.subarray(0,e.length-t)}function v(e,t,n){let o=e.getSha256InputOffset(),r=e.getSha256OutOffset(),s=t;return s.length>64&&(e.sha256Init(),$(e.memory,o,s,64,e.sha256Update),e.sha256Final(),s=new Uint8Array(e.memory.buffer).slice(r,r+32)),new Uint8Array(e.memory.buffer).set(s,o),e.hmac256Init(s.length),$(e.memory,o,n,64,e.hmac256Update),e.hmac256Final(),new Uint8Array(e.memory.buffer).slice(r,r+32)}function $(e,t,n,o,r){let s=new Uint8Array(e.buffer),a=0;for(;a<n.length;){let l=Math.min(n.length-a,o);s.set(n.subarray(a,a+l),t),r(l),a+=l}}function F(e,t,n,o){k(e,t,n);let r=q(o),s=e.getChunkPtOffset(),a=e.getChunkCtOffset();if(new Uint8Array(e.memory.buffer).set(r,s),e.cbcEncryptChunk(r.length)<0)throw new RangeError(`cbcEncryptChunk rejected len=${r.length} (WASM CHUNK_SIZE=${e.getChunkSize()})`);return new Uint8Array(e.memory.buffer).slice(a,a+r.length)}function D(e,t,n,o){if(o.length===0||o.length%16!==0)throw new RangeError(x);k(e,t,n);let r=e.getChunkCtOffset(),s=e.getChunkPtOffset();if(new Uint8Array(e.memory.buffer).set(o,r),e.cbcDecryptChunk_simd(o.length)<0)throw new RangeError(`cbcDecryptChunk_simd rejected len=${o.length} (WASM CHUNK_SIZE=${e.getChunkSize()})`);let y=new Uint8Array(e.memory.buffer).slice(s,s+o.length);return j(y)}function k(e,t,n){if(t.length!==16&&t.length!==24&&t.length!==32)throw new RangeError(`Serpent key must be 16, 24, or 32 bytes (got ${t.length})`);if(n.length!==16)throw new RangeError(`CBC IV must be 16 bytes (got ${n.length})`);let o=new Uint8Array(e.memory.buffer);o.set(t,e.getKeyOffset()),e.loadKey(t.length),o.set(n,e.getCbcIvOffset())}var c,f,u;self.onmessage=async e=>{let t=e.data;if(t.type===\"init\"){try{let n=new WebAssembly.Memory({initial:3,maximum:3});c=(await WebAssembly.instantiate(t.modules.sha2,{env:{memory:n}})).exports;let r=new WebAssembly.Memory({initial:3,maximum:3});if(f=(await WebAssembly.instantiate(t.modules.serpent,{env:{memory:r}})).exports,u=new Uint8Array(t.derivedKeyBytes),u.length!==96)throw new Error(`expected 96 derived key bytes (got ${u.length})`);t.derivedKeyBytes.fill(0),self.postMessage({type:\"ready\"})}catch(n){self.postMessage({type:\"error\",id:-1,message:n.message,isAuthError:!1})}return}if(t.type===\"wipe\"){u&&u.fill(0),u=void 0,c&&c.wipeBuffers(),f&&f.wipeBuffers(),c=void 0,f=void 0,self.postMessage({type:\"wiped\"});return}if(!u||!c||!f){self.postMessage({type:\"error\",id:t.id,message:\"worker not initialized\",isAuthError:!1});return}try{let{id:n,op:o,counterNonce:r,data:s,aad:a}=t,l=a??new Uint8Array(0),y=t.derivedKeyBytes??u,W=y.subarray(0,32),M=y.subarray(32,64),B=y.subarray(64,96),g;if(o===\"seal\"){let d=v(c,B,r),C=d.slice(0,16);i(d);let A=F(f,W,C,s),p=new Uint8Array(4);new DataView(p.buffer).setUint32(0,l.length,!1);let b=S(r,p,l,A),w=v(c,M,b);g=S(A,w),i(C),i(b)}else{let d=s.subarray(0,s.length-32),C=s.subarray(s.length-32),A=v(c,B,r),p=A.slice(0,16);i(A);let b=new Uint8Array(4);new DataView(b.buffer).setUint32(0,l.length,!1);let w=S(r,b,l,d),O=v(c,M,w);if(!_(O,C))throw i(p),i(w),i(O),new E(\"serpent\");i(w),i(O),g=D(f,W,p,d),i(p)}let L=g.buffer instanceof ArrayBuffer?[g.buffer]:[];self.postMessage({type:\"result\",id:n,data:g},{transfer:L})}catch(n){let o=n instanceof E;self.postMessage({type:\"error\",id:t.id,message:n.message,cipher:o?\"serpent\":void 0,isAuthError:o})}finally{t.derivedKeyBytes&&t.derivedKeyBytes.fill(0),c&&c.wipeBuffers(),f&&f.wipeBuffers()}};})();\n";

package/dist/embedded/serpent-pool-worker.js

@@ -0,0 +1,5 @@
+// Generated by scripts/embed-workers.ts — do not edit
+// IIFE-bundled pool worker source. Spawned via blob URL by
+// the cipher-suite.ts createPoolWorker; consumers do not
+// import this directly.
+export const WORKER_SOURCE = "\"use strict\";(()=>{var U=new Uint8Array([0,97,115,109,1,0,0,0,1,8,1,96,3,127,127,127,1,127,3,2,1,0,5,4,1,1,1,1,7,20,2,7,99,111,109,112,97,114,101,0,0,6,109,101,109,111,114,121,2,0,10,133,1,1,130,1,3,2,127,1,126,1,123,3,64,32,3,65,16,106,34,4,32,2,76,4,64,32,6,32,0,32,3,106,253,0,4,0,32,1,32,3,106,253,0,4,0,253,81,253,80,33,6,32,4,33,3,12,1,11,11,3,64,32,2,32,3,74,4,64,32,5,32,0,32,3,106,49,0,0,32,1,32,3,106,49,0,0,133,132,33,5,32,3,65,1,106,33,3,12,1,11,11,66,0,32,5,32,6,253,29,0,32,6,253,29,1,132,132,34,5,125,32,5,132,66,63,135,66,127,133,167,65,1,113,11]);var R=null,K=null,I=!1,m=null,T=32768;function P(){if(I){if(m)throw m;return}if(I=!0,!V())throw m=new Error(\"leviathan-crypto: constantTimeEqual requires WebAssembly SIMD \\u2014 this runtime does not support it\"),m;try{let e=U.buffer.slice(U.byteOffset,U.byteOffset+U.byteLength),t=new WebAssembly.Module(e),o=new WebAssembly.Instance(t).exports;K=o.memory,R=o.compare}catch(e){throw m=new Error(`leviathan-crypto: ct WASM module failed to instantiate: ${e.message}`),m}}var _=(e,t)=>{if(e.length!==t.length)return!1;if(e.length>T)throw new RangeError(`constantTimeEqual: max ${T} bytes (got ${e.length})`);P();let n=K,o=R;if(!n||!o)throw new Error(\"leviathan-crypto: ct init invariant violated\");let r=new Uint8Array(n.buffer);r.set(e,0),r.set(t,e.length);try{return o(0,e.length,e.length)===1}finally{r.fill(0,0,e.length*2)}};var i=e=>{e.fill(0)};var S=(...e)=>{let t=e.reduce((r,s)=>r+s.length,0),n=new Uint8Array(t),o=0;for(let r of e)n.set(r,o),o+=r.length;return n};var h=null;function V(){if(h!==null)return h;if(typeof WebAssembly>\"u\"||typeof WebAssembly.validate!=\"function\")return h=!1,h;try{h=WebAssembly.validate(new Uint8Array([0,97,115,109,1,0,0,0,1,5,1,96,0,1,123,3,2,1,0,10,10,1,8,0,65,0,253,15,253,98,11]))}catch{h=!1}return h}var E=class e extends Error{constructor(t){super(`${t}: authentication failed`),this.name=\"AuthenticationError\",Object.setPrototypeOf(this,e.prototype)}};var x=\"invalid ciphertext\";function q(e){let t=16-e.length%16,n=new Uint8Array(e.length+t);return n.set(e),n.fill(t,e.length),n}function j(e){if(e.length===0||e.length%16!==0)throw new RangeError(x);let t=e[e.length-1],n=0;n|=t-1>>>31,n|=16-t>>>31;for(let r=0;r<16;r++){let s=e.length-16+r,a=16-t-r-1>>31&255;n|=(e[s]^t)&a}if(n-1>>>31^1)throw new RangeError(x);return e.subarray(0,e.length-t)}function v(e,t,n){let o=e.getSha256InputOffset(),r=e.getSha256OutOffset(),s=t;return s.length>64&&(e.sha256Init(),$(e.memory,o,s,64,e.sha256Update),e.sha256Final(),s=new Uint8Array(e.memory.buffer).slice(r,r+32)),new Uint8Array(e.memory.buffer).set(s,o),e.hmac256Init(s.length),$(e.memory,o,n,64,e.hmac256Update),e.hmac256Final(),new Uint8Array(e.memory.buffer).slice(r,r+32)}function $(e,t,n,o,r){let s=new Uint8Array(e.buffer),a=0;for(;a<n.length;){let l=Math.min(n.length-a,o);s.set(n.subarray(a,a+l),t),r(l),a+=l}}function F(e,t,n,o){k(e,t,n);let r=q(o),s=e.getChunkPtOffset(),a=e.getChunkCtOffset();if(new Uint8Array(e.memory.buffer).set(r,s),e.cbcEncryptChunk(r.length)<0)throw new RangeError(`cbcEncryptChunk rejected len=${r.length} (WASM CHUNK_SIZE=${e.getChunkSize()})`);return new Uint8Array(e.memory.buffer).slice(a,a+r.length)}function D(e,t,n,o){if(o.length===0||o.length%16!==0)throw new RangeError(x);k(e,t,n);let r=e.getChunkCtOffset(),s=e.getChunkPtOffset();if(new Uint8Array(e.memory.buffer).set(o,r),e.cbcDecryptChunk_simd(o.length)<0)throw new RangeError(`cbcDecryptChunk_simd rejected len=${o.length} (WASM CHUNK_SIZE=${e.getChunkSize()})`);let y=new Uint8Array(e.memory.buffer).slice(s,s+o.length);return j(y)}function k(e,t,n){if(t.length!==16&&t.length!==24&&t.length!==32)throw new RangeError(`Serpent key must be 16, 24, or 32 bytes (got ${t.length})`);if(n.length!==16)throw new RangeError(`CBC IV must be 16 bytes (got ${n.length})`);let o=new Uint8Array(e.memory.buffer);o.set(t,e.getKeyOffset()),e.loadKey(t.length),o.set(n,e.getCbcIvOffset())}var c,f,u;self.onmessage=async e=>{let t=e.data;if(t.type===\"init\"){try{let n=new WebAssembly.Memory({initial:3,maximum:3});c=(await WebAssembly.instantiate(t.modules.sha2,{env:{memory:n}})).exports;let r=new WebAssembly.Memory({initial:3,maximum:3});if(f=(await WebAssembly.instantiate(t.modules.serpent,{env:{memory:r}})).exports,u=new Uint8Array(t.derivedKeyBytes),u.length!==96)throw new Error(`expected 96 derived key bytes (got ${u.length})`);t.derivedKeyBytes.fill(0),self.postMessage({type:\"ready\"})}catch(n){self.postMessage({type:\"error\",id:-1,message:n.message,isAuthError:!1})}return}if(t.type===\"wipe\"){u&&u.fill(0),u=void 0,c&&c.wipeBuffers(),f&&f.wipeBuffers(),c=void 0,f=void 0,self.postMessage({type:\"wiped\"});return}if(!u||!c||!f){self.postMessage({type:\"error\",id:t.id,message:\"worker not initialized\",isAuthError:!1});return}try{let{id:n,op:o,counterNonce:r,data:s,aad:a}=t,l=a??new Uint8Array(0),y=t.derivedKeyBytes??u,W=y.subarray(0,32),M=y.subarray(32,64),B=y.subarray(64,96),g;if(o===\"seal\"){let d=v(c,B,r),C=d.slice(0,16);i(d);let A=F(f,W,C,s),p=new Uint8Array(4);new DataView(p.buffer).setUint32(0,l.length,!1);let b=S(r,p,l,A),w=v(c,M,b);g=S(A,w),i(C),i(b)}else{let d=s.subarray(0,s.length-32),C=s.subarray(s.length-32),A=v(c,B,r),p=A.slice(0,16);i(A);let b=new Uint8Array(4);new DataView(b.buffer).setUint32(0,l.length,!1);let w=S(r,b,l,d),O=v(c,M,w);if(!_(O,C))throw i(p),i(w),i(O),new E(\"serpent\");i(w),i(O),g=D(f,W,p,d),i(p)}let L=g.buffer instanceof ArrayBuffer?[g.buffer]:[];self.postMessage({type:\"result\",id:n,data:g},{transfer:L})}catch(n){let o=n instanceof E;self.postMessage({type:\"error\",id:t.id,message:n.message,cipher:o?\"serpent\":void 0,isAuthError:o})}finally{t.derivedKeyBytes&&t.derivedKeyBytes.fill(0),c&&c.wipeBuffers(),f&&f.wipeBuffers()}};})();\n";

package/dist/fortuna.d.ts

@@ -1,7 +1,8 @@
+import type { Generator, HashFn } from './types.js';
 /**
  * Fortuna CSPRNG — spec §9.3–§9.5
  *
- * Use `Fortuna.create()` to instantiate. Direct construction is not allowed.
+ * Use `Fortuna.create({ generator, hash })` to instantiate. Direct construction is not allowed.
  */
 export declare class Fortuna {
     private static readonly NUM_POOLS;
@@ -9,8 +10,8 @@ export declare class Fortuna {
     private static readonly MS_PER_RESEED;
     private static readonly NODE_STATS_INTERVAL;
     private static readonly CRYPTO_INTERVAL;
-    private serpent;
-    private sha;
+    private gen;
+    private hash;
     private poolHash;
     private poolEntropy;
     private genKey;
@@ -25,7 +26,9 @@ export declare class Fortuna {
     private robin;
     private boundCollectors;
     private timers;
-    static create(opts?: {
+    static create(opts: {
+        generator: Generator;
+        hash: HashFn;
         msPerReseed?: number;
         entropy?: Uint8Array;
     }): Promise<Fortuna>;
@@ -38,15 +41,18 @@ export declare class Fortuna {
     getEntropy(): number;
     /** Permanently dispose this instance. Wipes key material, stops all collectors. */
     stop(): void;
-    /** Generate n blocks of 16 bytes each. — spec §9.4 */
-    private generateBlocks;
     /** Get length pseudo-random bytes. — spec §9.4 */
     private pseudoRandomData;
     /** Reseed the generator — spec §9.4 */
     private reseed;
-    /** Increment 16-byte little-endian counter. — spec §9.4 */
+    /** Drain pool 0 into a fresh seed and reseed. Used by the deterministic
+     *  test factory; production reseeds in get() walk the §9.5.5 schedule
+     *  across all pools, not just pool 0. Caller is responsible for any
+     *  entropy-threshold check. */
+    private reseedFromPool0;
+    /** Increment little-endian counter. — spec §9.4 */
     private incrementCounter;
-    /** Add an event to a pool via hash chaining: poolHash[i] = SHA256(poolHash[i] ‖ eventId ‖ data). */
+    /** Add an event to a pool via hash chaining: poolHash[i] = hash(poolHash[i] ‖ eventId ‖ data). */
     private addRandomEvent;
     private initialize;
     private startCollectors;

package/dist/fortuna.js

@@ -22,18 +22,16 @@
 // src/ts/fortuna.ts
 //
 // Fortuna CSPRNG — Ferguson & Schneier, Practical Cryptography (2003), Chapter 9.
-// Backed by WASM Serpent-256 ECB (generator) and WASM SHA-256 (accumulator pools).
-// Requires init({ serpent: ..., sha2: ... }) before Fortuna.create().
-import { isInitialized } from './init.js';
-import { Serpent } from './serpent/index.js';
-import { SHA256 } from './sha2/index.js';
+// Backed by a pluggable Generator (cipher PRF) and HashFn (accumulator hash).
+// Requires init() for the modules used by the chosen generator and hash pair.
+import { isInitialized, getInstance } from './init.js';
 import { wipe, utf8ToBytes, concat } from './utils.js';
 const isBrowser = typeof window !== 'undefined';
 const isNode = typeof process !== 'undefined' && typeof process.pid === 'number';
 /**
  * Fortuna CSPRNG — spec §9.3–§9.5
  *
- * Use `Fortuna.create()` to instantiate. Direct construction is not allowed.
+ * Use `Fortuna.create({ generator, hash })` to instantiate. Direct construction is not allowed.
  */
 export class Fortuna {
     // ── Constants ──────────────────────────────────────────────────────────
@@ -43,9 +41,9 @@ export class Fortuna {
     static NODE_STATS_INTERVAL = 1000; // ms — OS stats collector interval
     static CRYPTO_INTERVAL = 3000; // ms — crypto.randomBytes interval
     // ── State ─────────────────────────────────────────────────────────────
-    serpent;
-    sha;
-    poolHash; // 32 running SHA-256 chain hashes (32 bytes each)
+    gen;
+    hash;
+    poolHash; // 32 running hash chain values
     poolEntropy;
     genKey;
     genCnt;
@@ -62,25 +60,33 @@ export class Fortuna {
     timers = [];
     // ── Static factory ────────────────────────────────────────────────────
     static async create(opts) {
-        if (!isInitialized('serpent'))
-            throw new Error('leviathan-crypto: call init({ serpent: ..., sha2: ... }) before using Fortuna');
-        if (!isInitialized('sha2'))
-            throw new Error('leviathan-crypto: call init({ serpent: ..., sha2: ... }) before using Fortuna');
-        const f = new Fortuna(opts?.msPerReseed ?? Fortuna.MS_PER_RESEED);
-        f.initialize(opts?.entropy);
+        if (!opts || !opts.generator || !opts.hash)
+            throw new TypeError('leviathan-crypto: Fortuna.create() requires { generator, hash }');
+        if (opts.hash.outputSize !== opts.generator.keySize)
+            throw new RangeError(`leviathan-crypto: Fortuna requires hash.outputSize (${opts.hash.outputSize}) `
+                + `to match generator.keySize (${opts.generator.keySize})`);
+        const required = new Set([...opts.generator.wasmModules, ...opts.hash.wasmModules]);
+        for (const mod of required) {
+            if (!isInitialized(mod)) {
+                const args = [...required].map(m => `${m}: ...`).join(', ');
+                throw new Error(`leviathan-crypto: call init({ ${args} }) before using Fortuna`);
+            }
+        }
+        const f = new Fortuna(opts.generator, opts.hash, opts.msPerReseed ?? Fortuna.MS_PER_RESEED);
+        f.initialize(opts.entropy);
         // Force the first reseed — pool[0] is saturated by initialize(),
         // so this call triggers an immediate reseed and guarantees get() never
         // returns undefined. The byte is discarded.
         f.get(1);
         return f;
     }
-    constructor(msPerReseed) {
-        this.serpent = new Serpent();
-        this.sha = new SHA256();
+    constructor(gen, hash, msPerReseed) {
+        this.gen = gen;
+        this.hash = hash;
         this.poolHash = [];
         this.poolEntropy = [];
-        this.genKey = new Uint8Array(32);
-        this.genCnt = new Uint8Array(16);
+        this.genKey = new Uint8Array(gen.keySize);
+        this.genCnt = new Uint8Array(gen.counterSize);
         this.reseedCnt = 0;
         this.lastReseed = 0;
         this.entropyLevel = 0;
@@ -90,7 +96,7 @@ export class Fortuna {
         this.msPerReseed = msPerReseed;
         this.robin = { kbd: 0, mouse: 0, scroll: 0, touch: 0, motion: 0, time: 0, rnd: 0, dom: 0 };
         for (let i = 0; i < Fortuna.NUM_POOLS; i++) {
-            this.poolHash.push(new Uint8Array(32)); // zero-initialized chain value
+            this.poolHash.push(new Uint8Array(hash.outputSize)); // zero-initialized chain value
             this.poolEntropy.push(0);
         }
     }
@@ -109,17 +115,23 @@ export class Fortuna {
             let seed = new Uint8Array(0);
             let strength = 0;
             for (let i = 0; i < Fortuna.NUM_POOLS; i++) {
-                if ((this.reseedCnt & (1 << i)) !== 0) {
+                // Practical Cryptography (Ferguson & Schneier, 2003) §9.5.5:
+                // pool P_i is used in reseed r iff 2^i divides r.
+                if ((this.reseedCnt & ((1 << i) - 1)) === 0) {
                     // Pool digest = current chain hash
                     seed = concat(seed, this.poolHash[i]);
                     strength += this.poolEntropy[i];
-                    // Reset pool
-                    this.poolHash[i] = new Uint8Array(32);
+                    // Reset pool — wipe old chain hash before dropping the reference.
+                    const old = this.poolHash[i];
+                    this.poolHash[i] = new Uint8Array(this.hash.outputSize);
+                    wipe(old);
                     this.poolEntropy[i] = 0;
                 }
             }
             this.entropyLevel -= strength;
             this.reseed(seed);
+            // seed is built from concatenated pool-hash copies; wipe the temp.
+            wipe(seed);
         }
         return this.pseudoRandomData(length);
     }
@@ -140,11 +152,33 @@ export class Fortuna {
     stop() {
         if (this.disposed)
             throw new Error('Fortuna instance has been disposed');
+        // Mark disposed FIRST. WASM wipeBuffers can throw if a stateful instance
+        // holds the module; we must not allow get()/addEntropy()/getEntropy() to
+        // run on a partially-disposed instance.
+        this.disposed = true;
         this.stopCollectors();
         wipe(this.genKey);
         wipe(this.genCnt);
+        // Wipe all 32 pool-hash chain values so residual entropy-bearing
+        // bytes do not outlive the instance.
+        for (const p of this.poolHash)
+            wipe(p);
         this.reseedCnt = 0;
-        this.disposed = true;
+        // Best-effort wipe of WASM scratch buffers for every module the chosen
+        // generator and hash touched. Surface the first error so the caller
+        // knows the WASM scratch leak occurred.
+        const required = new Set([...this.gen.wasmModules, ...this.hash.wasmModules]);
+        let err;
+        for (const mod of required) {
+            try {
+                getInstance(mod).exports.wipeBuffers();
+            }
+            catch (e) {
+                err ??= e;
+            }
+        }
+        if (err)
+            throw err;
     }
     // ── Test-only accessors ───────────────────────────────────────────────
     /** @internal — exposed for testing key replacement */
@@ -159,45 +193,93 @@ export class Fortuna {
     _getReseedCnt() {
         return this.reseedCnt;
     }
-    // ── Generator (spec §9.4) ─────────────────────────────────────────────
-    /** Generate n blocks of 16 bytes each. — spec §9.4 */
-    generateBlocks(n) {
-        const out = new Uint8Array(n * 16);
-        for (let i = 0; i < n; i++) {
-            // Encrypt genCnt with Serpent-256 ECB
-            this.serpent.loadKey(this.genKey);
-            out.set(this.serpent.encryptBlock(this.genCnt), i * 16);
-            this.incrementCounter();
+    /** @internal — exposed for testing pool-hash backing arrays */
+    _getPoolHash() {
+        return this.poolHash;
+    }
+    /**
+     * @internal — test-only deterministic factory. Seeds pool[0] with the provided
+     * entropy and triggers one reseed directly, bypassing all OS entropy collection
+     * and the hrtime jitter capture in get(). This makes KAT vectors reproducible
+     * across runs. Not suitable for production use.
+     */
+    static async _createDeterministicForTesting(opts) {
+        if (!opts || !opts.generator || !opts.hash)
+            throw new TypeError('Fortuna._createDeterministicForTesting() requires { generator, hash, entropy }');
+        if (opts.hash.outputSize !== opts.generator.keySize)
+            throw new RangeError(`leviathan-crypto: Fortuna requires hash.outputSize (${opts.hash.outputSize}) `
+                + `to match generator.keySize (${opts.generator.keySize})`);
+        const required = new Set([...opts.generator.wasmModules, ...opts.hash.wasmModules]);
+        for (const mod of required) {
+            if (!isInitialized(mod)) {
+                const args = [...required].map(m => `${m}: ...`).join(', ');
+                throw new Error(`leviathan-crypto: call init({ ${args} }) before using Fortuna`);
+            }
         }
-        return out;
+        const f = new Fortuna(opts.generator, opts.hash, 0);
+        // Seed pool[0] with the provided entropy, no OS collection.
+        f.addRandomEvent(opts.entropy, 0, opts.entropy.length * 8);
+        // Manually trigger reseed #1 without calling get() — get() calls captureHrtime()
+        // in Node.js which adds non-deterministic data before the reseed fires.
+        f.reseedFromPool0();
+        return f;
     }
+    // ── Generator (spec §9.4) ─────────────────────────────────────────────
     /** Get length pseudo-random bytes. — spec §9.4 */
     pseudoRandomData(length) {
-        // Generate ceil(length/16) blocks — spec §9.4
-        const blocks = Math.ceil(length / 16);
-        const raw = this.generateBlocks(blocks);
-        const output = raw.slice(0, length);
-        // Key replacement — mandatory forward secrecy (spec §9.4)
-        this.genKey = this.generateBlocks(2);
-        return output;
+        const blocks = Math.ceil(length / this.gen.blockSize);
+        const out = this.gen.generate(this.genKey, this.genCnt, length);
+        // External counter advance — generator is stateless and does not mutate caller's counter
+        for (let i = 0; i < blocks; i++)
+            this.incrementCounter();
+        // Key replacement — mandatory forward secrecy (spec §9.4).
+        // Wipe the prior key BEFORE dropping its reference so no key bytes are
+        // reachable after key replacement; anyone holding a Uint8Array view to
+        // the old key now observes zero.
+        const newKey = this.gen.generate(this.genKey, this.genCnt, this.gen.keySize);
+        for (let i = 0; i < Math.ceil(this.gen.keySize / this.gen.blockSize); i++)
+            this.incrementCounter();
+        wipe(this.genKey);
+        this.genKey = newKey;
+        return out;
     }
     /** Reseed the generator — spec §9.4 */
     reseed(seed) {
-        // genKey = SHA256(genKey ‖ seed)
-        this.genKey = this.sha.hash(concat(this.genKey, seed));
+        // genKey = hash(genKey ‖ seed). Wipe both the hash input and the
+        // prior key before dropping references.
+        const combined = concat(this.genKey, seed);
+        const newKey = this.hash.digest(combined);
+        wipe(combined);
+        wipe(this.genKey);
+        this.genKey = newKey;
         // Increment counter — makes it nonzero on first reseed, marking generator as seeded
         this.incrementCounter();
         this.lastReseed = Date.now();
     }
-    /** Increment 16-byte little-endian counter. — spec §9.4 */
+    /** Drain pool 0 into a fresh seed and reseed. Used by the deterministic
+     *  test factory; production reseeds in get() walk the §9.5.5 schedule
+     *  across all pools, not just pool 0. Caller is responsible for any
+     *  entropy-threshold check. */
+    reseedFromPool0() {
+        this.reseedCnt = (this.reseedCnt + 1) >>> 0;
+        const seed = this.poolHash[0].slice();
+        const old = this.poolHash[0];
+        this.poolHash[0] = new Uint8Array(this.hash.outputSize);
+        wipe(old);
+        this.entropyLevel -= this.poolEntropy[0];
+        this.poolEntropy[0] = 0;
+        this.reseed(seed);
+        wipe(seed);
+    }
+    /** Increment little-endian counter. — spec §9.4 */
     incrementCounter() {
-        for (let i = 0; i < 16; i++) {
+        for (let i = 0; i < this.genCnt.length; i++) {
             if (++this.genCnt[i] !== 0)
                 break;
         }
     }
     // ── Accumulator (spec §9.5) ───────────────────────────────────────────
-    /** Add an event to a pool via hash chaining: poolHash[i] = SHA256(poolHash[i] ‖ eventId ‖ data). */
+    /** Add an event to a pool via hash chaining: poolHash[i] = hash(poolHash[i] ‖ eventId ‖ data). */
     addRandomEvent(data, poolIdx, entropyBits) {
         // Encode eventId as 4 bytes little-endian
         const id = new Uint8Array(4);
@@ -206,8 +288,13 @@ export class Fortuna {
         id[2] = (this.eventId >>> 16) & 0xff;
         id[3] = (this.eventId >>> 24) & 0xff;
         this.eventId = (this.eventId + 1) >>> 0; // u32 wrap
-        // Chain: poolHash[i] = SHA256(poolHash[i] ‖ id ‖ data)
-        this.poolHash[poolIdx] = this.sha.hash(concat(this.poolHash[poolIdx], id, data));
+        // Chain: poolHash[i] = hash(poolHash[i] ‖ id ‖ data).
+        // Wipe the chain input and the prior chain value before dropping refs.
+        const combined = concat(this.poolHash[poolIdx], id, data);
+        const newChain = this.hash.digest(combined);
+        wipe(combined);
+        wipe(this.poolHash[poolIdx]);
+        this.poolHash[poolIdx] = newChain;
         this.poolEntropy[poolIdx] += entropyBits;
         this.entropyLevel += entropyBits;
     }
@@ -226,6 +313,13 @@ export class Fortuna {
             this.addRandomEvent(entropy, this.robin.rnd, entropy.length * 8);
             this.robin.rnd = (this.robin.rnd + 1) % Fortuna.NUM_POOLS;
         }
+        // F-2 invariant: fail loudly if no OS entropy source delivered anything.
+        // The try/catch in collectorCryptoRandom is preserved to protect against
+        // platforms where crypto.getRandomValues itself throws (non-standard
+        // runtimes). This post-init check covers all silent-failure paths uniformly.
+        if (this.poolEntropy[0] < Fortuna.RESEED_LIMIT)
+            throw new Error('leviathan-crypto: Fortuna initialization could not gather sufficient entropy. '
+                + 'No working crypto.getRandomValues or node:crypto in this environment.');
         this.startCollectors();
     }
     // ── Collectors ────────────────────────────────────────────────────────
@@ -358,7 +452,7 @@ export class Fortuna {
     }
     collectorDom() {
         if (typeof document !== 'undefined' && document.documentElement) {
-            this.addRandomEvent(this.sha.hash(utf8ToBytes(document.documentElement.innerHTML)), this.robin.dom, 2);
+            this.addRandomEvent(this.hash.digest(utf8ToBytes(document.documentElement.innerHTML)), this.robin.dom, 2);
             this.robin.dom = (this.robin.dom + 1) % Fortuna.NUM_POOLS;
         }
     }

package/dist/index.d.ts

@@ -13,17 +13,19 @@ import type { WasmSource } from './wasm-source.js';
  */
 export declare function init(sources: Partial<Record<Module, WasmSource>>): Promise<void>;
 export type { Module, WasmSource };
-export { isInitialized, _resetForTesting } from './init.js';
+export { isInitialized } from './init.js';
 export { AuthenticationError } from './errors.js';
-export { serpentInit, Serpent, SerpentCtr, SerpentCbc, SerpentCipher, _serpentReady } from './serpent/index.js';
-export { chacha20Init, ChaCha20, Poly1305, ChaCha20Poly1305, XChaCha20Poly1305, XChaCha20Cipher, _chachaReady } from './chacha20/index.js';
-export { sha2Init, SHA256, SHA512, SHA384, HMAC_SHA256, HMAC_SHA512, HMAC_SHA384, HKDF_SHA256, HKDF_SHA512, _sha2Ready } from './sha2/index.js';
-export { sha3Init, SHA3_224, SHA3_256, SHA3_384, SHA3_512, SHAKE128, SHAKE256, _sha3Ready } from './sha3/index.js';
+export { serpentInit, Serpent, SerpentCtr, SerpentCbc, SerpentCipher, SerpentGenerator, _serpentReady } from './serpent/index.js';
+export { chacha20Init, ChaCha20, Poly1305, ChaCha20Poly1305, XChaCha20Poly1305, XChaCha20Cipher, ChaCha20Generator, _chachaReady } from './chacha20/index.js';
+export { sha2Init, SHA256, SHA512, SHA384, HMAC_SHA256, HMAC_SHA512, HMAC_SHA384, HKDF_SHA256, HKDF_SHA512, SHA256Hash, _sha2Ready } from './sha2/index.js';
+export { sha3Init, SHA3_224, SHA3_256, SHA3_384, SHA3_512, SHAKE128, SHAKE256, SHA3_256Hash, _sha3Ready } from './sha3/index.js';
 export { keccakInit } from './keccak/index.js';
 export { kyberInit, MlKem512, MlKem768, MlKem1024, MlKemBase, KyberSuite, _kyberReady } from './kyber/index.js';
 export type { KyberKeyPair, KyberEncapsulation, KyberParams } from './kyber/index.js';
 export { SealStream, OpenStream, Seal, SealStreamPool, FLAG_FRAMED, TAG_DATA, TAG_FINAL, HEADER_SIZE, CHUNK_MIN, CHUNK_MAX } from './stream/index.js';
 export type { CipherSuite, DerivedKeys, SealStreamOpts, PoolOpts } from './stream/index.js';
 export { Fortuna } from './fortuna.js';
-export type { Hash, KeyedHash, Blockcipher, Streamcipher, AEAD } from './types.js';
+export type { Hash, KeyedHash, Blockcipher, Streamcipher, AEAD, Generator, HashFn } from './types.js';
+export { KDFChain, ratchetInit, kemRatchetEncap, kemRatchetDecap, ratchetReady, SkippedKeyStore, RatchetKeypair, } from './ratchet/index.js';
+export type { RatchetInitResult, KemEncapResult, KemDecapResult, MlKemLike, RatchetMessageHeader, ResolveHandle, SkippedKeyStoreOpts, } from './ratchet/index.js';
 export { hexToBytes, bytesToHex, utf8ToBytes, bytesToUtf8, base64ToBytes, bytesToBase64, constantTimeEqual, CT_MAX_BYTES, wipe, xor, concat, randomBytes, hasSIMD, } from './utils.js';

package/dist/index.js

@@ -60,14 +60,15 @@ export async function init(sources) {
     }
     await Promise.all(entries.map(([mod, src]) => _dispatchers[mod](src)));
 }
-export { isInitialized, _resetForTesting } from './init.js';
+export { isInitialized } from './init.js';
 export { AuthenticationError } from './errors.js';
-export { serpentInit, Serpent, SerpentCtr, SerpentCbc, SerpentCipher, _serpentReady } from './serpent/index.js';
-export { chacha20Init, ChaCha20, Poly1305, ChaCha20Poly1305, XChaCha20Poly1305, XChaCha20Cipher, _chachaReady } from './chacha20/index.js';
-export { sha2Init, SHA256, SHA512, SHA384, HMAC_SHA256, HMAC_SHA512, HMAC_SHA384, HKDF_SHA256, HKDF_SHA512, _sha2Ready } from './sha2/index.js';
-export { sha3Init, SHA3_224, SHA3_256, SHA3_384, SHA3_512, SHAKE128, SHAKE256, _sha3Ready } from './sha3/index.js';
+export { serpentInit, Serpent, SerpentCtr, SerpentCbc, SerpentCipher, SerpentGenerator, _serpentReady } from './serpent/index.js';
+export { chacha20Init, ChaCha20, Poly1305, ChaCha20Poly1305, XChaCha20Poly1305, XChaCha20Cipher, ChaCha20Generator, _chachaReady } from './chacha20/index.js';
+export { sha2Init, SHA256, SHA512, SHA384, HMAC_SHA256, HMAC_SHA512, HMAC_SHA384, HKDF_SHA256, HKDF_SHA512, SHA256Hash, _sha2Ready } from './sha2/index.js';
+export { sha3Init, SHA3_224, SHA3_256, SHA3_384, SHA3_512, SHAKE128, SHAKE256, SHA3_256Hash, _sha3Ready } from './sha3/index.js';
 export { keccakInit } from './keccak/index.js';
 export { kyberInit, MlKem512, MlKem768, MlKem1024, MlKemBase, KyberSuite, _kyberReady } from './kyber/index.js';
 export { SealStream, OpenStream, Seal, SealStreamPool, FLAG_FRAMED, TAG_DATA, TAG_FINAL, HEADER_SIZE, CHUNK_MIN, CHUNK_MAX } from './stream/index.js';
 export { Fortuna } from './fortuna.js';
+export { KDFChain, ratchetInit, kemRatchetEncap, kemRatchetDecap, ratchetReady, SkippedKeyStore, RatchetKeypair, } from './ratchet/index.js';
 export { hexToBytes, bytesToHex, utf8ToBytes, bytesToUtf8, base64ToBytes, bytesToBase64, constantTimeEqual, CT_MAX_BYTES, wipe, xor, concat, randomBytes, hasSIMD, } from './utils.js';

package/dist/init.d.ts

@@ -3,5 +3,3 @@ export type Module = 'serpent' | 'chacha20' | 'sha2' | 'sha3' | 'keccak' | 'kybe
 export declare function initModule(mod: Module, source: WasmSource): Promise<void>;
 export declare function getInstance(mod: Module): WebAssembly.Instance;
 export declare function isInitialized(mod: Module): boolean;
-/** Reset all cached instances — for testing only */
-export declare function _resetForTesting(): void;

package/dist/init.js

@@ -7,26 +7,106 @@ function resolve(mod) {
 }
 // Module-scope cache: one WebAssembly.Instance per canonical module
 const instances = new Map();
+// Pending inits — coalesces concurrent initModule calls for the same module.
+const pending = new Map();
+// Exclusivity registry: per-module ownership token held by a stateful wrapper
+// for its entire lifetime. Prevents shared-WASM-state clobber when two
+// instances from the same module would otherwise trample each other's memory.
+const owners = new Map();
 export async function initModule(mod, source) {
     const resolved = resolve(mod);
     if (instances.has(resolved))
         return;
+    const inflight = pending.get(resolved);
+    if (inflight) {
+        await inflight;
+        return;
+    }
     if ((resolved === 'serpent' || resolved === 'chacha20' || resolved === 'kyber') && !hasSIMD())
         throw new Error('leviathan-crypto: serpent, chacha20, and kyber require WebAssembly SIMD — '
             + 'this runtime does not support it');
-    instances.set(resolved, await loadWasm(source));
+    const p = loadWasm(source);
+    pending.set(resolved, p);
+    try {
+        instances.set(resolved, await p);
+    }
+    finally {
+        pending.delete(resolved);
+    }
 }
 export function getInstance(mod) {
-    const inst = instances.get(resolve(mod));
+    const r = resolve(mod);
+    const inst = instances.get(r);
     if (!inst) {
         throw new Error(`leviathan-crypto: call init({ ${mod}: ... }) before using this class`);
     }
+    if (owners.has(r)) {
+        throw new Error(`leviathan-crypto: another stateful instance is using the '${r}' WASM module — `
+            + 'call dispose() on it before constructing a new one');
+    }
     return inst;
 }
 export function isInitialized(mod) {
     return instances.has(resolve(mod));
 }
-/** Reset all cached instances — for testing only */
+/**
+ * Acquire exclusive access to `mod`. Throws if another stateful instance
+ * currently holds it. Returned token must be passed to `_releaseModule`.
+ * @internal
+ */
+export function _acquireModule(mod) {
+    const r = resolve(mod);
+    if (owners.has(r))
+        throw new Error(`leviathan-crypto: another stateful instance is using the '${r}' WASM module — `
+            + 'call dispose() on it before constructing a new one');
+    const tok = Symbol(r);
+    owners.set(r, tok);
+    return tok;
+}
+/**
+ * Release exclusive access. No-op if the token doesn't match the current
+ * owner (makes dispose idempotent).
+ * @internal
+ */
+export function _releaseModule(mod, tok) {
+    const r = resolve(mod);
+    if (owners.get(r) === tok)
+        owners.delete(r);
+}
+/**
+ * True if a stateful instance currently holds the module.
+ * @internal
+ */
+export function _isModuleBusy(mod) {
+    return owners.has(resolve(mod));
+}
+/**
+ * Throw if `mod` is currently held by a stateful instance. Called at the top
+ * of every atomic WASM-touching method so that cached-exports access paths
+ * cannot silently clobber a live stateful instance's WASM state.
+ *
+ * The error message is intentionally identical to `_acquireModule`'s so that
+ * error handlers matching on text work uniformly across construction-time and
+ * method-time ownership failures.
+ * @internal
+ */
+export function _assertNotOwned(mod) {
+    // Deliberately unoptimized. Do not add caching or epoch tracking: the
+    // check must read current ownership on every call so an atomic op cannot
+    // race ahead of a stateful acquirer.
+    const r = resolve(mod);
+    if (owners.has(r))
+        throw new Error(`leviathan-crypto: another stateful instance is using the '${r}' WASM module — `
+            + 'call dispose() on it before constructing a new one');
+}
+/**
+ * Reset all cached instances — for testing only. Clears `instances`, `pending`,
+ * and `owners` so tests can re-exercise module lifecycle (init, exclusivity,
+ * race) from a known-empty state.
+ * @internal
+ */
 export function _resetForTesting() {
     instances.clear();
+    pending.clear();
+    owners.clear();
 }