nlcurl 0.12.2 → 0.13.0

package/dist/http/trailers.d.ts

@@ -1,29 +0,0 @@
-/**
- * Check whether a header name is allowed as an HTTP trailer field.
- *
- * @param {string} name - Header field name.
- * @returns {boolean} `true` if the name is not in the forbidden trailer fields set.
- */
-export declare function isValidTrailerField(name: string): boolean;
-/**
- * Serialize trailer fields into a wire-format buffer.
- *
- * @param {Record<string, string>} trailers - Key-value pairs of trailer fields.
- * @returns {Buffer} CRLF-delimited buffer of valid trailer fields.
- */
-export declare function serializeTrailers(trailers: Record<string, string>): Buffer;
-/**
- * Parse trailer field data into a key-value record.
- *
- * @param {Buffer} data - Raw trailer data buffer.
- * @returns {Record<string, string>} Parsed trailer fields keyed by lowercase name.
- */
-export declare function parseTrailers(data: Buffer): Record<string, string>;
-/**
- * Build a Trailer header value listing the trailer field names.
- *
- * @param {string[]} fieldNames - Trailer field names to advertise.
- * @returns {string} Comma-separated string of valid trailer field names.
- */
-export declare function buildTrailerHeader(fieldNames: string[]): string;
-//# sourceMappingURL=trailers.d.ts.map

package/dist/http/trailers.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"trailers.d.ts","sourceRoot":"","sources":["../../src/http/trailers.ts"],"names":[],"mappings":"AAEA;;;;;GAKG;AACH,wBAAgB,mBAAmB,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAEzD;AAED;;;;;GAKG;AACH,wBAAgB,iBAAiB,CAAC,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAAG,MAAM,CAQ1E;AAED;;;;;GAKG;AACH,wBAAgB,aAAa,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAclE;AAED;;;;;GAKG;AACH,wBAAgB,kBAAkB,CAAC,UAAU,EAAE,MAAM,EAAE,GAAG,MAAM,CAE/D"}

package/dist/http/trailers.js

@@ -1,57 +0,0 @@
-const FORBIDDEN_TRAILER_FIELDS = new Set(["transfer-encoding", "content-length", "host", "cache-control", "expect", "max-forwards", "pragma", "range", "te", "authorization", "content-encoding", "content-range", "content-type", "trailer", "set-cookie"]);
-/**
- * Check whether a header name is allowed as an HTTP trailer field.
- *
- * @param {string} name - Header field name.
- * @returns {boolean} `true` if the name is not in the forbidden trailer fields set.
- */
-export function isValidTrailerField(name) {
-    return !FORBIDDEN_TRAILER_FIELDS.has(name.toLowerCase());
-}
-/**
- * Serialize trailer fields into a wire-format buffer.
- *
- * @param {Record<string, string>} trailers - Key-value pairs of trailer fields.
- * @returns {Buffer} CRLF-delimited buffer of valid trailer fields.
- */
-export function serializeTrailers(trailers) {
-    const lines = [];
-    for (const [name, value] of Object.entries(trailers)) {
-        if (isValidTrailerField(name)) {
-            lines.push(`${name}: ${value}`);
-        }
-    }
-    return Buffer.from(lines.join("\r\n") + "\r\n", "ascii");
-}
-/**
- * Parse trailer field data into a key-value record.
- *
- * @param {Buffer} data - Raw trailer data buffer.
- * @returns {Record<string, string>} Parsed trailer fields keyed by lowercase name.
- */
-export function parseTrailers(data) {
-    const trailers = {};
-    const text = data.toString("ascii");
-    const lines = text.split("\r\n");
-    for (const line of lines) {
-        const colonIdx = line.indexOf(":");
-        if (colonIdx < 0)
-            continue;
-        const name = line.substring(0, colonIdx).trim().toLowerCase();
-        const value = line.substring(colonIdx + 1).trim();
-        if (name && isValidTrailerField(name)) {
-            trailers[name] = value;
-        }
-    }
-    return trailers;
-}
-/**
- * Build a Trailer header value listing the trailer field names.
- *
- * @param {string[]} fieldNames - Trailer field names to advertise.
- * @returns {string} Comma-separated string of valid trailer field names.
- */
-export function buildTrailerHeader(fieldNames) {
-    return fieldNames.filter(isValidTrailerField).join(", ");
-}
-//# sourceMappingURL=trailers.js.map

package/dist/http/trailers.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"trailers.js","sourceRoot":"","sources":["../../src/http/trailers.ts"],"names":[],"mappings":"AAAA,MAAM,wBAAwB,GAAG,IAAI,GAAG,CAAC,CAAC,mBAAmB,EAAE,gBAAgB,EAAE,MAAM,EAAE,eAAe,EAAE,QAAQ,EAAE,cAAc,EAAE,QAAQ,EAAE,OAAO,EAAE,IAAI,EAAE,eAAe,EAAE,kBAAkB,EAAE,eAAe,EAAE,cAAc,EAAE,SAAS,EAAE,YAAY,CAAC,CAAC,CAAC;AAE7P;;;;;GAKG;AACH,MAAM,UAAU,mBAAmB,CAAC,IAAY;IAC9C,OAAO,CAAC,wBAAwB,CAAC,GAAG,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC;AAC3D,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,iBAAiB,CAAC,QAAgC;IAChE,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,KAAK,MAAM,CAAC,IAAI,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;QACrD,IAAI,mBAAmB,CAAC,IAAI,CAAC,EAAE,CAAC;YAC9B,KAAK,CAAC,IAAI,CAAC,GAAG,IAAI,KAAK,KAAK,EAAE,CAAC,CAAC;QAClC,CAAC;IACH,CAAC;IACD,OAAO,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,MAAM,EAAE,OAAO,CAAC,CAAC;AAC3D,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,aAAa,CAAC,IAAY;IACxC,MAAM,QAAQ,GAA2B,EAAE,CAAC;IAC5C,MAAM,IAAI,GAAG,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IACpC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACjC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACnC,IAAI,QAAQ,GAAG,CAAC;YAAE,SAAS;QAC3B,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAC9D,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,CAAC,QAAQ,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QAClD,IAAI,IAAI,IAAI,mBAAmB,CAAC,IAAI,CAAC,EAAE,CAAC;YACtC,QAAQ,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC;QACzB,CAAC;IACH,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,kBAAkB,CAAC,UAAoB;IACrD,OAAO,UAAU,CAAC,MAAM,CAAC,mBAAmB,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC3D,CAAC"}

package/dist/middleware/circuit-breaker.d.ts

@@ -1,44 +0,0 @@
-/** Circuit breaker states. */
-export declare const enum CircuitState {
-    CLOSED = 0,
-    OPEN = 1,
-    HALF_OPEN = 2
-}
-/** Configuration for the circuit breaker. */
-export interface CircuitBreakerConfig {
-    /** Number of consecutive failures before opening the circuit. */
-    failureThreshold: number;
-    /** Time in ms the circuit stays open before allowing a probe request. */
-    resetTimeoutMs: number;
-    /** Number of successful probe requests to close the circuit (default: 1). */
-    successThreshold?: number;
-    /** Optional predicate to determine if a status code is a failure. */
-    isFailure?: (statusCode: number) => boolean;
-}
-/** Per-origin circuit breaker for preventing cascading failures. */
-export declare class CircuitBreaker {
-    private readonly failureThreshold;
-    private readonly resetTimeoutMs;
-    private readonly successThreshold;
-    private readonly isFailure;
-    private readonly circuits;
-    constructor(config: CircuitBreakerConfig);
-    /**
-     * Check if a request to the given origin should be allowed.
-     * Throws if the circuit is open and not yet ready for a probe.
-     */
-    allowRequest(origin: string): void;
-    /** Record a successful request to the origin. */
-    recordSuccess(origin: string): void;
-    /** Record a failed request or a failure status code. */
-    recordFailure(origin: string): void;
-    /** Record a response and automatically classify as success/failure. */
-    recordResponse(origin: string, statusCode: number): void;
-    /** Get the current state of the circuit for an origin. */
-    getState(origin: string): CircuitState;
-    /** Reset a specific origin's circuit. */
-    reset(origin: string): void;
-    /** Reset all circuits. */
-    resetAll(): void;
-}
-//# sourceMappingURL=circuit-breaker.d.ts.map

package/dist/middleware/circuit-breaker.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"circuit-breaker.d.ts","sourceRoot":"","sources":["../../src/middleware/circuit-breaker.ts"],"names":[],"mappings":"AAEA,8BAA8B;AAC9B,0BAAkB,YAAY;IAC5B,MAAM,IAAI;IACV,IAAI,IAAI;IACR,SAAS,IAAI;CACd;AAED,6CAA6C;AAC7C,MAAM,WAAW,oBAAoB;IACnC,iEAAiE;IACjE,gBAAgB,EAAE,MAAM,CAAC;IACzB,yEAAyE;IACzE,cAAc,EAAE,MAAM,CAAC;IACvB,6EAA6E;IAC7E,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,qEAAqE;IACrE,SAAS,CAAC,EAAE,CAAC,UAAU,EAAE,MAAM,KAAK,OAAO,CAAC;CAC7C;AAED,oEAAoE;AACpE,qBAAa,cAAc;IACzB,OAAO,CAAC,QAAQ,CAAC,gBAAgB,CAAS;IAC1C,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAS;IACxC,OAAO,CAAC,QAAQ,CAAC,gBAAgB,CAAS;IAC1C,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAkC;IAC5D,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAmC;gBAEhD,MAAM,EAAE,oBAAoB;IAOxC;;;OAGG;IACH,YAAY,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI;IAclC,iDAAiD;IACjD,aAAa,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI;IAenC,wDAAwD;IACxD,aAAa,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI;IAoBnC,uEAAuE;IACvE,cAAc,CAAC,MAAM,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,GAAG,IAAI;IAQxD,0DAA0D;IAC1D,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,YAAY;IAItC,yCAAyC;IACzC,KAAK,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI;IAI3B,0BAA0B;IAC1B,QAAQ,IAAI,IAAI;CAGjB"}

package/dist/middleware/circuit-breaker.js

@@ -1,96 +0,0 @@
-import { NLcURLError } from "../core/errors.js";
-/** Circuit breaker states. */
-export var CircuitState;
-(function (CircuitState) {
-    CircuitState[CircuitState["CLOSED"] = 0] = "CLOSED";
-    CircuitState[CircuitState["OPEN"] = 1] = "OPEN";
-    CircuitState[CircuitState["HALF_OPEN"] = 2] = "HALF_OPEN";
-})(CircuitState || (CircuitState = {}));
-/** Per-origin circuit breaker for preventing cascading failures. */
-export class CircuitBreaker {
-    failureThreshold;
-    resetTimeoutMs;
-    successThreshold;
-    isFailure;
-    circuits = new Map();
-    constructor(config) {
-        this.failureThreshold = config.failureThreshold;
-        this.resetTimeoutMs = config.resetTimeoutMs;
-        this.successThreshold = config.successThreshold ?? 1;
-        this.isFailure = config.isFailure ?? ((s) => s >= 500);
-    }
-    /**
-     * Check if a request to the given origin should be allowed.
-     * Throws if the circuit is open and not yet ready for a probe.
-     */
-    allowRequest(origin) {
-        const entry = this.circuits.get(origin);
-        if (!entry)
-            return;
-        if (entry.state === CircuitState.OPEN) {
-            if (Date.now() >= entry.openedAt + this.resetTimeoutMs) {
-                entry.state = CircuitState.HALF_OPEN;
-                entry.halfOpenSuccesses = 0;
-            }
-            else {
-                throw new NLcURLError(`Circuit breaker open for ${origin} — failing fast`, "ERR_CIRCUIT_OPEN");
-            }
-        }
-    }
-    /** Record a successful request to the origin. */
-    recordSuccess(origin) {
-        const entry = this.circuits.get(origin);
-        if (!entry)
-            return;
-        if (entry.state === CircuitState.HALF_OPEN) {
-            entry.halfOpenSuccesses++;
-            if (entry.halfOpenSuccesses >= this.successThreshold) {
-                entry.state = CircuitState.CLOSED;
-                entry.consecutiveFailures = 0;
-            }
-        }
-        else if (entry.state === CircuitState.CLOSED) {
-            entry.consecutiveFailures = 0;
-        }
-    }
-    /** Record a failed request or a failure status code. */
-    recordFailure(origin) {
-        let entry = this.circuits.get(origin);
-        if (!entry) {
-            entry = { state: CircuitState.CLOSED, consecutiveFailures: 0, openedAt: 0, halfOpenSuccesses: 0 };
-            this.circuits.set(origin, entry);
-        }
-        if (entry.state === CircuitState.HALF_OPEN) {
-            entry.state = CircuitState.OPEN;
-            entry.openedAt = Date.now();
-            return;
-        }
-        entry.consecutiveFailures++;
-        if (entry.consecutiveFailures >= this.failureThreshold) {
-            entry.state = CircuitState.OPEN;
-            entry.openedAt = Date.now();
-        }
-    }
-    /** Record a response and automatically classify as success/failure. */
-    recordResponse(origin, statusCode) {
-        if (this.isFailure(statusCode)) {
-            this.recordFailure(origin);
-        }
-        else {
-            this.recordSuccess(origin);
-        }
-    }
-    /** Get the current state of the circuit for an origin. */
-    getState(origin) {
-        return this.circuits.get(origin)?.state ?? CircuitState.CLOSED;
-    }
-    /** Reset a specific origin's circuit. */
-    reset(origin) {
-        this.circuits.delete(origin);
-    }
-    /** Reset all circuits. */
-    resetAll() {
-        this.circuits.clear();
-    }
-}
-//# sourceMappingURL=circuit-breaker.js.map

package/dist/middleware/circuit-breaker.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"circuit-breaker.js","sourceRoot":"","sources":["../../src/middleware/circuit-breaker.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAEhD,8BAA8B;AAC9B,MAAM,CAAN,IAAkB,YAIjB;AAJD,WAAkB,YAAY;IAC5B,mDAAU,CAAA;IACV,+CAAQ,CAAA;IACR,yDAAa,CAAA;AACf,CAAC,EAJiB,YAAY,KAAZ,YAAY,QAI7B;AAcD,oEAAoE;AACpE,MAAM,OAAO,cAAc;IACR,gBAAgB,CAAS;IACzB,cAAc,CAAS;IACvB,gBAAgB,CAAS;IACzB,SAAS,CAAkC;IAC3C,QAAQ,GAAG,IAAI,GAAG,EAAwB,CAAC;IAE5D,YAAY,MAA4B;QACtC,IAAI,CAAC,gBAAgB,GAAG,MAAM,CAAC,gBAAgB,CAAC;QAChD,IAAI,CAAC,cAAc,GAAG,MAAM,CAAC,cAAc,CAAC;QAC5C,IAAI,CAAC,gBAAgB,GAAG,MAAM,CAAC,gBAAgB,IAAI,CAAC,CAAC;QACrD,IAAI,CAAC,SAAS,GAAG,MAAM,CAAC,SAAS,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,IAAI,GAAG,CAAC,CAAC;IACzD,CAAC;IAED;;;OAGG;IACH,YAAY,CAAC,MAAc;QACzB,MAAM,KAAK,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QACxC,IAAI,CAAC,KAAK;YAAE,OAAO;QAEnB,IAAI,KAAK,CAAC,KAAK,KAAK,YAAY,CAAC,IAAI,EAAE,CAAC;YACtC,IAAI,IAAI,CAAC,GAAG,EAAE,IAAI,KAAK,CAAC,QAAQ,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC;gBACvD,KAAK,CAAC,KAAK,GAAG,YAAY,CAAC,SAAS,CAAC;gBACrC,KAAK,CAAC,iBAAiB,GAAG,CAAC,CAAC;YAC9B,CAAC;iBAAM,CAAC;gBACN,MAAM,IAAI,WAAW,CAAC,4BAA4B,MAAM,iBAAiB,EAAE,kBAAkB,CAAC,CAAC;YACjG,CAAC;QACH,CAAC;IACH,CAAC;IAED,iDAAiD;IACjD,aAAa,CAAC,MAAc;QAC1B,MAAM,KAAK,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QACxC,IAAI,CAAC,KAAK;YAAE,OAAO;QAEnB,IAAI,KAAK,CAAC,KAAK,KAAK,YAAY,CAAC,SAAS,EAAE,CAAC;YAC3C,KAAK,CAAC,iBAAiB,EAAE,CAAC;YAC1B,IAAI,KAAK,CAAC,iBAAiB,IAAI,IAAI,CAAC,gBAAgB,EAAE,CAAC;gBACrD,KAAK,CAAC,KAAK,GAAG,YAAY,CAAC,MAAM,CAAC;gBAClC,KAAK,CAAC,mBAAmB,GAAG,CAAC,CAAC;YAChC,CAAC;QACH,CAAC;aAAM,IAAI,KAAK,CAAC,KAAK,KAAK,YAAY,CAAC,MAAM,EAAE,CAAC;YAC/C,KAAK,CAAC,mBAAmB,GAAG,CAAC,CAAC;QAChC,CAAC;IACH,CAAC;IAED,wDAAwD;IACxD,aAAa,CAAC,MAAc;QAC1B,IAAI,KAAK,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QACtC,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,KAAK,GAAG,EAAE,KAAK,EAAE,YAAY,CAAC,MAAM,EAAE,mBAAmB,EAAE,CAAC,EAAE,QAAQ,EAAE,CAAC,EAAE,iBAAiB,EAAE,CAAC,EAAE,CAAC;YAClG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;QACnC,CAAC;QAED,IAAI,KAAK,CAAC,KAAK,KAAK,YAAY,CAAC,SAAS,EAAE,CAAC;YAC3C,KAAK,CAAC,KAAK,GAAG,YAAY,CAAC,IAAI,CAAC;YAChC,KAAK,CAAC,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YAC5B,OAAO;QACT,CAAC;QAED,KAAK,CAAC,mBAAmB,EAAE,CAAC;QAC5B,IAAI,KAAK,CAAC,mBAAmB,IAAI,IAAI,CAAC,gBAAgB,EAAE,CAAC;YACvD,KAAK,CAAC,KAAK,GAAG,YAAY,CAAC,IAAI,CAAC;YAChC,KAAK,CAAC,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAC9B,CAAC;IACH,CAAC;IAED,uEAAuE;IACvE,cAAc,CAAC,MAAc,EAAE,UAAkB;QAC/C,IAAI,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,EAAE,CAAC;YAC/B,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC;QAC7B,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC;QAC7B,CAAC;IACH,CAAC;IAED,0DAA0D;IAC1D,QAAQ,CAAC,MAAc;QACrB,OAAO,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,KAAK,IAAI,YAAY,CAAC,MAAM,CAAC;IACjE,CAAC;IAED,yCAAyC;IACzC,KAAK,CAAC,MAAc;QAClB,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC/B,CAAC;IAED,0BAA0B;IAC1B,QAAQ;QACN,IAAI,CAAC,QAAQ,CAAC,KAAK,EAAE,CAAC;IACxB,CAAC;CACF"}

package/dist/tls/ct.d.ts

@@ -1,78 +0,0 @@
-/** Hash algorithms used in Signed Certificate Timestamps. */
-export declare enum SCTHashAlgorithm {
-    NONE = 0,
-    MD5 = 1,
-    SHA1 = 2,
-    SHA224 = 3,
-    SHA256 = 4,
-    SHA384 = 5,
-    SHA512 = 6
-}
-/** Digital signature algorithms used in Signed Certificate Timestamps. */
-export declare enum SCTSignatureAlgorithm {
-    ANONYMOUS = 0,
-    RSA = 1,
-    DSA = 2,
-    ECDSA = 3
-}
-/** Signed Certificate Timestamp version identifiers. */
-export declare enum SCTVersion {
-    V1 = 0
-}
-/** Parsed Signed Certificate Timestamp (RFC 6962). */
-export interface SCT {
-    /** SCT structure version. */
-    version: SCTVersion;
-    /** Log ID (SHA-256 hash of the log's public key). */
-    logId: Buffer;
-    /** Timestamp when the SCT was issued. */
-    timestamp: Date;
-    /** SCT extensions data. */
-    extensions: Buffer;
-    /** Hash algorithm used in the signature. */
-    hashAlgorithm: SCTHashAlgorithm;
-    /** Signature algorithm used. */
-    signatureAlgorithm: SCTSignatureAlgorithm;
-    /** Digital signature bytes. */
-    signature: Buffer;
-}
-/** Result of validating SCTs for Certificate Transparency compliance. */
-export interface SCTValidationResult {
-    /** Whether the certificate meets CT compliance requirements. */
-    compliant: boolean;
-    /** Number of unique SCTs found. */
-    sctCount: number;
-    /** Deduplicated SCT entries. */
-    scts: SCT[];
-    /** Source from which the SCTs were obtained. */
-    source?: "embedded" | "tls-extension" | "ocsp";
-}
-/**
- * Parse a serialized SCT list into individual SCT entries.
- *
- * @param {Buffer} data - TLS-encoded SCT list buffer.
- * @returns {SCT[]} Array of parsed {@link SCT} objects.
- */
-export declare function parseSCTList(data: Buffer): SCT[];
-/**
- * Validate a set of SCTs for Certificate Transparency compliance.
- *
- * Deduplicates by log ID and requires at least two unique logs.
- *
- * @param {SCT[]} scts - Array of parsed SCTs.
- * @returns {SCTValidationResult} Validation result with compliance status.
- */
-export declare function validateSCTs(scts: SCT[]): SCTValidationResult;
-/**
- * Extract embedded SCTs from a TLS socket's peer certificate.
- *
- * @param {{ getPeerCertificate?: (detailed?: boolean) => { raw?: Buffer; serialNumber?: string } }} socket - Socket with a `getPeerCertificate` method.
- * @returns {SCTValidationResult | undefined} Validation result, or `undefined` if SCTs cannot be extracted.
- */
-export declare function extractSCTsFromSocket(socket: {
-    getPeerCertificate?: (detailed?: boolean) => {
-        raw?: Buffer;
-        serialNumber?: string;
-    };
-}): SCTValidationResult | undefined;
-//# sourceMappingURL=ct.d.ts.map

package/dist/tls/ct.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"ct.d.ts","sourceRoot":"","sources":["../../src/tls/ct.ts"],"names":[],"mappings":"AAAA,6DAA6D;AAC7D,oBAAY,gBAAgB;IAC1B,IAAI,IAAI;IACR,GAAG,IAAI;IACP,IAAI,IAAI;IACR,MAAM,IAAI;IACV,MAAM,IAAI;IACV,MAAM,IAAI;IACV,MAAM,IAAI;CACX;AAED,0EAA0E;AAC1E,oBAAY,qBAAqB;IAC/B,SAAS,IAAI;IACb,GAAG,IAAI;IACP,GAAG,IAAI;IACP,KAAK,IAAI;CACV;AAED,wDAAwD;AACxD,oBAAY,UAAU;IACpB,EAAE,IAAI;CACP;AAED,sDAAsD;AACtD,MAAM,WAAW,GAAG;IAClB,6BAA6B;IAC7B,OAAO,EAAE,UAAU,CAAC;IACpB,qDAAqD;IACrD,KAAK,EAAE,MAAM,CAAC;IACd,yCAAyC;IACzC,SAAS,EAAE,IAAI,CAAC;IAChB,2BAA2B;IAC3B,UAAU,EAAE,MAAM,CAAC;IACnB,4CAA4C;IAC5C,aAAa,EAAE,gBAAgB,CAAC;IAChC,gCAAgC;IAChC,kBAAkB,EAAE,qBAAqB,CAAC;IAC1C,+BAA+B;IAC/B,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,yEAAyE;AACzE,MAAM,WAAW,mBAAmB;IAClC,gEAAgE;IAChE,SAAS,EAAE,OAAO,CAAC;IACnB,mCAAmC;IACnC,QAAQ,EAAE,MAAM,CAAC;IACjB,gCAAgC;IAChC,IAAI,EAAE,GAAG,EAAE,CAAC;IACZ,gDAAgD;IAChD,MAAM,CAAC,EAAE,UAAU,GAAG,eAAe,GAAG,MAAM,CAAC;CAChD;AAED;;;;;GAKG;AACH,wBAAgB,YAAY,CAAC,IAAI,EAAE,MAAM,GAAG,GAAG,EAAE,CAsBhD;AA+CD;;;;;;;GAOG;AACH,wBAAgB,YAAY,CAAC,IAAI,EAAE,GAAG,EAAE,GAAG,mBAAmB,CAgB7D;AAED;;;;;GAKG;AACH,wBAAgB,qBAAqB,CAAC,MAAM,EAAE;IAAE,kBAAkB,CAAC,EAAE,CAAC,QAAQ,CAAC,EAAE,OAAO,KAAK;QAAE,GAAG,CAAC,EAAE,MAAM,CAAC;QAAC,YAAY,CAAC,EAAE,MAAM,CAAA;KAAE,CAAA;CAAE,GAAG,mBAAmB,GAAG,SAAS,CA2CvK"}

package/dist/tls/ct.js

@@ -1,175 +0,0 @@
-/** Hash algorithms used in Signed Certificate Timestamps. */
-export var SCTHashAlgorithm;
-(function (SCTHashAlgorithm) {
-    SCTHashAlgorithm[SCTHashAlgorithm["NONE"] = 0] = "NONE";
-    SCTHashAlgorithm[SCTHashAlgorithm["MD5"] = 1] = "MD5";
-    SCTHashAlgorithm[SCTHashAlgorithm["SHA1"] = 2] = "SHA1";
-    SCTHashAlgorithm[SCTHashAlgorithm["SHA224"] = 3] = "SHA224";
-    SCTHashAlgorithm[SCTHashAlgorithm["SHA256"] = 4] = "SHA256";
-    SCTHashAlgorithm[SCTHashAlgorithm["SHA384"] = 5] = "SHA384";
-    SCTHashAlgorithm[SCTHashAlgorithm["SHA512"] = 6] = "SHA512";
-})(SCTHashAlgorithm || (SCTHashAlgorithm = {}));
-/** Digital signature algorithms used in Signed Certificate Timestamps. */
-export var SCTSignatureAlgorithm;
-(function (SCTSignatureAlgorithm) {
-    SCTSignatureAlgorithm[SCTSignatureAlgorithm["ANONYMOUS"] = 0] = "ANONYMOUS";
-    SCTSignatureAlgorithm[SCTSignatureAlgorithm["RSA"] = 1] = "RSA";
-    SCTSignatureAlgorithm[SCTSignatureAlgorithm["DSA"] = 2] = "DSA";
-    SCTSignatureAlgorithm[SCTSignatureAlgorithm["ECDSA"] = 3] = "ECDSA";
-})(SCTSignatureAlgorithm || (SCTSignatureAlgorithm = {}));
-/** Signed Certificate Timestamp version identifiers. */
-export var SCTVersion;
-(function (SCTVersion) {
-    SCTVersion[SCTVersion["V1"] = 0] = "V1";
-})(SCTVersion || (SCTVersion = {}));
-/**
- * Parse a serialized SCT list into individual SCT entries.
- *
- * @param {Buffer} data - TLS-encoded SCT list buffer.
- * @returns {SCT[]} Array of parsed {@link SCT} objects.
- */
-export function parseSCTList(data) {
-    if (data.length < 2)
-        return [];
-    const listLength = data.readUInt16BE(0);
-    if (listLength + 2 > data.length)
-        return [];
-    const scts = [];
-    let offset = 2;
-    const end = 2 + listLength;
-    while (offset + 2 <= end) {
-        const sctLength = data.readUInt16BE(offset);
-        offset += 2;
-        if (offset + sctLength > end)
-            break;
-        const sct = parseSingleSCT(data.subarray(offset, offset + sctLength));
-        if (sct)
-            scts.push(sct);
-        offset += sctLength;
-    }
-    return scts;
-}
-function parseSingleSCT(data) {
-    if (data.length < 1 + 32 + 8 + 2 + 2 + 2)
-        return null;
-    let offset = 0;
-    const version = data[offset];
-    if (version !== SCTVersion.V1)
-        return null;
-    offset += 1;
-    const logId = Buffer.from(data.subarray(offset, offset + 32));
-    offset += 32;
-    const timestampMs = Number(data.readBigUInt64BE(offset));
-    const timestamp = new Date(timestampMs);
-    offset += 8;
-    const extensionsLength = data.readUInt16BE(offset);
-    offset += 2;
-    const extensions = Buffer.from(data.subarray(offset, offset + extensionsLength));
-    offset += extensionsLength;
-    if (offset + 4 > data.length)
-        return null;
-    const hashAlgorithm = data[offset];
-    offset += 1;
-    const signatureAlgorithm = data[offset];
-    offset += 1;
-    const signatureLength = data.readUInt16BE(offset);
-    offset += 2;
-    if (offset + signatureLength > data.length)
-        return null;
-    const signature = Buffer.from(data.subarray(offset, offset + signatureLength));
-    return {
-        version,
-        logId,
-        timestamp,
-        extensions,
-        hashAlgorithm,
-        signatureAlgorithm,
-        signature,
-    };
-}
-/**
- * Validate a set of SCTs for Certificate Transparency compliance.
- *
- * Deduplicates by log ID and requires at least two unique logs.
- *
- * @param {SCT[]} scts - Array of parsed SCTs.
- * @returns {SCTValidationResult} Validation result with compliance status.
- */
-export function validateSCTs(scts) {
-    const uniqueLogs = new Set();
-    const uniqueSCTs = [];
-    for (const sct of scts) {
-        const logIdHex = sct.logId.toString("hex");
-        if (!uniqueLogs.has(logIdHex)) {
-            uniqueLogs.add(logIdHex);
-            uniqueSCTs.push(sct);
-        }
-    }
-    return {
-        compliant: uniqueLogs.size >= 2,
-        sctCount: uniqueSCTs.length,
-        scts: uniqueSCTs,
-    };
-}
-/**
- * Extract embedded SCTs from a TLS socket's peer certificate.
- *
- * @param {{ getPeerCertificate?: (detailed?: boolean) => { raw?: Buffer; serialNumber?: string } }} socket - Socket with a `getPeerCertificate` method.
- * @returns {SCTValidationResult | undefined} Validation result, or `undefined` if SCTs cannot be extracted.
- */
-export function extractSCTsFromSocket(socket) {
-    if (!socket.getPeerCertificate)
-        return undefined;
-    const cert = socket.getPeerCertificate(true);
-    if (!cert || !cert.raw)
-        return undefined;
-    const sctExtOid = Buffer.from([0x06, 0x0a, 0x2b, 0x06, 0x01, 0x04, 0x01, 0xd6, 0x79, 0x02, 0x04, 0x02]);
-    const extIdx = cert.raw.indexOf(sctExtOid);
-    if (extIdx === -1) {
-        return { compliant: false, sctCount: 0, scts: [] };
-    }
-    let offset = extIdx + sctExtOid.length;
-    if (offset < cert.raw.length && cert.raw[offset] === 0x01) {
-        offset += 3;
-    }
-    if (offset >= cert.raw.length || cert.raw[offset] !== 0x04) {
-        return { compliant: false, sctCount: 0, scts: [] };
-    }
-    offset++;
-    const result = readLength(cert.raw, offset);
-    if (result.value === -1)
-        return { compliant: false, sctCount: 0, scts: [] };
-    offset += result.bytesRead;
-    if (offset >= cert.raw.length || cert.raw[offset] !== 0x04) {
-        const scts = parseSCTList(cert.raw.subarray(offset));
-        const validation = validateSCTs(scts);
-        validation.source = "embedded";
-        return validation;
-    }
-    offset++;
-    const innerResult = readLength(cert.raw, offset);
-    if (innerResult.value === -1)
-        return { compliant: false, sctCount: 0, scts: [] };
-    offset += innerResult.bytesRead;
-    const sctData = cert.raw.subarray(offset, offset + innerResult.value);
-    const scts = parseSCTList(sctData);
-    const validation = validateSCTs(scts);
-    validation.source = "embedded";
-    return validation;
-}
-function readLength(buf, offset) {
-    if (offset >= buf.length)
-        return { value: -1, bytesRead: 0 };
-    const first = buf[offset];
-    if (first < 0x80)
-        return { value: first, bytesRead: 1 };
-    const numBytes = first & 0x7f;
-    if (numBytes === 0 || numBytes > 4 || offset + numBytes >= buf.length)
-        return { value: -1, bytesRead: 0 };
-    let value = 0;
-    for (let i = 0; i < numBytes; i++) {
-        value = (value << 8) | buf[offset + 1 + i];
-    }
-    return { value, bytesRead: 1 + numBytes };
-}
-//# sourceMappingURL=ct.js.map

package/dist/tls/ct.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"ct.js","sourceRoot":"","sources":["../../src/tls/ct.ts"],"names":[],"mappings":"AAAA,6DAA6D;AAC7D,MAAM,CAAN,IAAY,gBAQX;AARD,WAAY,gBAAgB;IAC1B,uDAAQ,CAAA;IACR,qDAAO,CAAA;IACP,uDAAQ,CAAA;IACR,2DAAU,CAAA;IACV,2DAAU,CAAA;IACV,2DAAU,CAAA;IACV,2DAAU,CAAA;AACZ,CAAC,EARW,gBAAgB,KAAhB,gBAAgB,QAQ3B;AAED,0EAA0E;AAC1E,MAAM,CAAN,IAAY,qBAKX;AALD,WAAY,qBAAqB;IAC/B,2EAAa,CAAA;IACb,+DAAO,CAAA;IACP,+DAAO,CAAA;IACP,mEAAS,CAAA;AACX,CAAC,EALW,qBAAqB,KAArB,qBAAqB,QAKhC;AAED,wDAAwD;AACxD,MAAM,CAAN,IAAY,UAEX;AAFD,WAAY,UAAU;IACpB,uCAAM,CAAA;AACR,CAAC,EAFW,UAAU,KAAV,UAAU,QAErB;AAgCD;;;;;GAKG;AACH,MAAM,UAAU,YAAY,CAAC,IAAY;IACvC,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC;QAAE,OAAO,EAAE,CAAC;IAE/B,MAAM,UAAU,GAAG,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;IACxC,IAAI,UAAU,GAAG,CAAC,GAAG,IAAI,CAAC,MAAM;QAAE,OAAO,EAAE,CAAC;IAE5C,MAAM,IAAI,GAAU,EAAE,CAAC;IACvB,IAAI,MAAM,GAAG,CAAC,CAAC;IACf,MAAM,GAAG,GAAG,CAAC,GAAG,UAAU,CAAC;IAE3B,OAAO,MAAM,GAAG,CAAC,IAAI,GAAG,EAAE,CAAC;QACzB,MAAM,SAAS,GAAG,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QAC5C,MAAM,IAAI,CAAC,CAAC;QAEZ,IAAI,MAAM,GAAG,SAAS,GAAG,GAAG;YAAE,MAAM;QAEpC,MAAM,GAAG,GAAG,cAAc,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,SAAS,CAAC,CAAC,CAAC;QACtE,IAAI,GAAG;YAAE,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACxB,MAAM,IAAI,SAAS,CAAC;IACtB,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,cAAc,CAAC,IAAY;IAClC,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,GAAG,EAAE,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC;QAAE,OAAO,IAAI,CAAC;IAEtD,IAAI,MAAM,GAAG,CAAC,CAAC;IAEf,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,CAAgB,CAAC;IAC5C,IAAI,OAAO,KAAK,UAAU,CAAC,EAAE;QAAE,OAAO,IAAI,CAAC;IAC3C,MAAM,IAAI,CAAC,CAAC;IAEZ,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,EAAE,CAAC,CAAC,CAAC;IAC9D,MAAM,IAAI,EAAE,CAAC;IAEb,MAAM,WAAW,GAAG,MAAM,CAAC,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC;IACzD,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,WAAW,CAAC,CAAC;IACxC,MAAM,IAAI,CAAC,CAAC;IAEZ,MAAM,gBAAgB,GAAG,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;IACnD,MAAM,IAAI,CAAC,CAAC;IACZ,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,gBAAgB,CAAC,CAAC,CAAC;IACjF,MAAM,IAAI,gBAAgB,CAAC;IAE3B,IAAI,MAAM,GAAG,CAAC,GAAG,IAAI,CAAC,MAAM;QAAE,OAAO,IAAI,CAAC;IAE1C,MAAM,aAAa,GAAG,IAAI,CAAC,MAAM,CAAsB,CAAC;IACxD,MAAM,IAAI,CAAC,CAAC;IACZ,MAAM,kBAAkB,GAAG,IAAI,CAAC,MAAM,CAA2B,CAAC;IAClE,MAAM,IAAI,CAAC,CAAC;IAEZ,MAAM,eAAe,GAAG,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;IAClD,MAAM,IAAI,CAAC,CAAC;IAEZ,IAAI,MAAM,GAAG,eAAe,GAAG,IAAI,CAAC,MAAM;QAAE,OAAO,IAAI,CAAC;IACxD,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,eAAe,CAAC,CAAC,CAAC;IAE/E,OAAO;QACL,OAAO;QACP,KAAK;QACL,SAAS;QACT,UAAU;QACV,aAAa;QACb,kBAAkB;QAClB,SAAS;KACV,CAAC;AACJ,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,YAAY,CAAC,IAAW;IACtC,MAAM,UAAU,GAAG,IAAI,GAAG,EAAU,CAAC;IACrC,MAAM,UAAU,GAAU,EAAE,CAAC;IAC7B,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,MAAM,QAAQ,GAAG,GAAG,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QAC3C,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC9B,UAAU,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YACzB,UAAU,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACvB,CAAC;IACH,CAAC;IAED,OAAO;QACL,SAAS,EAAE,UAAU,CAAC,IAAI,IAAI,CAAC;QAC/B,QAAQ,EAAE,UAAU,CAAC,MAAM;QAC3B,IAAI,EAAE,UAAU;KACjB,CAAC;AACJ,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,qBAAqB,CAAC,MAAgG;IACpI,IAAI,CAAC,MAAM,CAAC,kBAAkB;QAAE,OAAO,SAAS,CAAC;IAEjD,MAAM,IAAI,GAAG,MAAM,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAC;IAC7C,IAAI,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG;QAAE,OAAO,SAAS,CAAC;IAEzC,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC,CAAC;IACxG,MAAM,MAAM,GAAG,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IAE3C,IAAI,MAAM,KAAK,CAAC,CAAC,EAAE,CAAC;QAClB,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;IACrD,CAAC;IAED,IAAI,MAAM,GAAG,MAAM,GAAG,SAAS,CAAC,MAAM,CAAC;IAEvC,IAAI,MAAM,GAAG,IAAI,CAAC,GAAG,CAAC,MAAM,IAAI,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,IAAI,EAAE,CAAC;QAC1D,MAAM,IAAI,CAAC,CAAC;IACd,CAAC;IAED,IAAI,MAAM,IAAI,IAAI,CAAC,GAAG,CAAC,MAAM,IAAI,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,IAAI,EAAE,CAAC;QAC3D,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;IACrD,CAAC;IACD,MAAM,EAAE,CAAC;IACT,MAAM,MAAM,GAAG,UAAU,CAAC,IAAI,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;IAC5C,IAAI,MAAM,CAAC,KAAK,KAAK,CAAC,CAAC;QAAE,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;IAC5E,MAAM,IAAI,MAAM,CAAC,SAAS,CAAC;IAE3B,IAAI,MAAM,IAAI,IAAI,CAAC,GAAG,CAAC,MAAM,IAAI,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,IAAI,EAAE,CAAC;QAC3D,MAAM,IAAI,GAAG,YAAY,CAAC,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC;QACrD,MAAM,UAAU,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC;QACtC,UAAU,CAAC,MAAM,GAAG,UAAU,CAAC;QAC/B,OAAO,UAAU,CAAC;IACpB,CAAC;IACD,MAAM,EAAE,CAAC;IACT,MAAM,WAAW,GAAG,UAAU,CAAC,IAAI,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;IACjD,IAAI,WAAW,CAAC,KAAK,KAAK,CAAC,CAAC;QAAE,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;IACjF,MAAM,IAAI,WAAW,CAAC,SAAS,CAAC;IAEhC,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,WAAW,CAAC,KAAK,CAAC,CAAC;IACtE,MAAM,IAAI,GAAG,YAAY,CAAC,OAAO,CAAC,CAAC;IACnC,MAAM,UAAU,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC;IACtC,UAAU,CAAC,MAAM,GAAG,UAAU,CAAC;IAC/B,OAAO,UAAU,CAAC;AACpB,CAAC;AAED,SAAS,UAAU,CAAC,GAAW,EAAE,MAAc;IAC7C,IAAI,MAAM,IAAI,GAAG,CAAC,MAAM;QAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,CAAC;IAC7D,MAAM,KAAK,GAAG,GAAG,CAAC,MAAM,CAAE,CAAC;IAC3B,IAAI,KAAK,GAAG,IAAI;QAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,EAAE,CAAC;IACxD,MAAM,QAAQ,GAAG,KAAK,GAAG,IAAI,CAAC;IAC9B,IAAI,QAAQ,KAAK,CAAC,IAAI,QAAQ,GAAG,CAAC,IAAI,MAAM,GAAG,QAAQ,IAAI,GAAG,CAAC,MAAM;QAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,CAAC;IAC1G,IAAI,KAAK,GAAG,CAAC,CAAC;IACd,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,EAAE,CAAC,EAAE,EAAE,CAAC;QAClC,KAAK,GAAG,CAAC,KAAK,IAAI,CAAC,CAAC,GAAG,GAAG,CAAC,MAAM,GAAG,CAAC,GAAG,CAAC,CAAE,CAAC;IAC9C,CAAC;IACD,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,GAAG,QAAQ,EAAE,CAAC;AAC5C,CAAC"}

package/dist/tls/early-data.d.ts

@@ -1,45 +0,0 @@
-/** Configuration for TLS 1.3 early data (0-RTT). */
-export interface EarlyDataConfig {
-    /** Enable early data transmission. */
-    enabled?: boolean;
-    /** Maximum early data payload size in bytes. */
-    maxSize?: number;
-    /** Restrict early data to safe (idempotent) HTTP methods only. */
-    safeOnly?: boolean;
-}
-/** Outcome of an early data (0-RTT) transmission attempt. */
-export interface EarlyDataResult {
-    /** Whether the server accepted the early data. */
-    accepted: boolean;
-    /** Whether early data transmission was attempted. */
-    attempted: boolean;
-    /** Number of bytes sent as early data. */
-    bytesSent: number;
-}
-/**
- * Determine whether early data can be sent for the given HTTP method.
- *
- * @param {string} method - HTTP method string.
- * @param {EarlyDataConfig} [config] - Early data configuration.
- * @returns {boolean} `true` if early data is permitted.
- */
-export declare function canSendEarlyData(method: string, config?: EarlyDataConfig): boolean;
-/**
- * Prepare request data for 0-RTT transmission.
- *
- * @param {Buffer} requestData - Serialized request bytes.
- * @param {EarlyDataConfig} [config] - Early data configuration.
- * @returns {Buffer|null} Buffer to send as early data, or `null` if not applicable.
- */
-export declare function prepareEarlyData(requestData: Buffer, config?: EarlyDataConfig): Buffer | null;
-/**
- * Check whether the server accepted early data on a connected socket.
- *
- * @param {{ alpnProtocol?: string | false; earlyData?: boolean }} socket - Socket with optional `earlyData` flag.
- * @returns {EarlyDataResult} Early data acceptance result.
- */
-export declare function checkEarlyDataAccepted(socket: {
-    alpnProtocol?: string | false;
-    earlyData?: boolean;
-}): EarlyDataResult;
-//# sourceMappingURL=early-data.d.ts.map

package/dist/tls/early-data.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"early-data.d.ts","sourceRoot":"","sources":["../../src/tls/early-data.ts"],"names":[],"mappings":"AAEA,oDAAoD;AACpD,MAAM,WAAW,eAAe;IAC9B,sCAAsC;IACtC,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,gDAAgD;IAChD,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,kEAAkE;IAClE,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAED,6DAA6D;AAC7D,MAAM,WAAW,eAAe;IAC9B,kDAAkD;IAClD,QAAQ,EAAE,OAAO,CAAC;IAClB,qDAAqD;IACrD,SAAS,EAAE,OAAO,CAAC;IACnB,0CAA0C;IAC1C,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;;;;;GAMG;AACH,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,eAAe,GAAG,OAAO,CAMlF;AAED;;;;;;GAMG;AACH,wBAAgB,gBAAgB,CAAC,WAAW,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,eAAe,GAAG,MAAM,GAAG,IAAI,CAO7F;AAED;;;;;GAKG;AACH,wBAAgB,sBAAsB,CAAC,MAAM,EAAE;IAAE,YAAY,CAAC,EAAE,MAAM,GAAG,KAAK,CAAC;IAAC,SAAS,CAAC,EAAE,OAAO,CAAA;CAAE,GAAG,eAAe,CAOtH"}

package/dist/tls/early-data.js

@@ -1,46 +0,0 @@
-const SAFE_EARLY_DATA_METHODS = new Set(["GET", "HEAD", "OPTIONS"]);
-/**
- * Determine whether early data can be sent for the given HTTP method.
- *
- * @param {string} method - HTTP method string.
- * @param {EarlyDataConfig} [config] - Early data configuration.
- * @returns {boolean} `true` if early data is permitted.
- */
-export function canSendEarlyData(method, config) {
-    if (!config?.enabled)
-        return false;
-    if (config.safeOnly !== false && !SAFE_EARLY_DATA_METHODS.has(method.toUpperCase())) {
-        return false;
-    }
-    return true;
-}
-/**
- * Prepare request data for 0-RTT transmission.
- *
- * @param {Buffer} requestData - Serialized request bytes.
- * @param {EarlyDataConfig} [config] - Early data configuration.
- * @returns {Buffer|null} Buffer to send as early data, or `null` if not applicable.
- */
-export function prepareEarlyData(requestData, config) {
-    if (!config?.enabled)
-        return null;
-    const maxSize = config.maxSize ?? 16384;
-    if (requestData.length > maxSize)
-        return null;
-    return requestData;
-}
-/**
- * Check whether the server accepted early data on a connected socket.
- *
- * @param {{ alpnProtocol?: string | false; earlyData?: boolean }} socket - Socket with optional `earlyData` flag.
- * @returns {EarlyDataResult} Early data acceptance result.
- */
-export function checkEarlyDataAccepted(socket) {
-    const accepted = socket.earlyData === true;
-    return {
-        accepted,
-        attempted: true,
-        bytesSent: 0,
-    };
-}
-//# sourceMappingURL=early-data.js.map

package/dist/tls/early-data.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"early-data.js","sourceRoot":"","sources":["../../src/tls/early-data.ts"],"names":[],"mappings":"AAAA,MAAM,uBAAuB,GAAG,IAAI,GAAG,CAAC,CAAC,KAAK,EAAE,MAAM,EAAE,SAAS,CAAC,CAAC,CAAC;AAsBpE;;;;;;GAMG;AACH,MAAM,UAAU,gBAAgB,CAAC,MAAc,EAAE,MAAwB;IACvE,IAAI,CAAC,MAAM,EAAE,OAAO;QAAE,OAAO,KAAK,CAAC;IACnC,IAAI,MAAM,CAAC,QAAQ,KAAK,KAAK,IAAI,CAAC,uBAAuB,CAAC,GAAG,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;QACpF,OAAO,KAAK,CAAC;IACf,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,gBAAgB,CAAC,WAAmB,EAAE,MAAwB;IAC5E,IAAI,CAAC,MAAM,EAAE,OAAO;QAAE,OAAO,IAAI,CAAC;IAElC,MAAM,OAAO,GAAG,MAAM,CAAC,OAAO,IAAI,KAAK,CAAC;IACxC,IAAI,WAAW,CAAC,MAAM,GAAG,OAAO;QAAE,OAAO,IAAI,CAAC;IAE9C,OAAO,WAAW,CAAC;AACrB,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,sBAAsB,CAAC,MAA8D;IACnG,MAAM,QAAQ,GAAG,MAAM,CAAC,SAAS,KAAK,IAAI,CAAC;IAC3C,OAAO;QACL,QAAQ;QACR,SAAS,EAAE,IAAI;QACf,SAAS,EAAE,CAAC;KACb,CAAC;AACJ,CAAC"}