nostr-double-ratchet 0.0.14 → 0.0.15
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/Session.d.ts +13 -6
- package/dist/Session.d.ts.map +1 -1
- package/dist/nostr-double-ratchet.es.js +575 -554
- package/dist/nostr-double-ratchet.umd.js +1 -1
- package/dist/types.d.ts +12 -16
- package/dist/types.d.ts.map +1 -1
- package/dist/utils.d.ts +2 -2
- package/dist/utils.d.ts.map +1 -1
- package/package.json +1 -1
- package/src/Session.ts +48 -11
- package/src/types.ts +14 -18
- package/src/utils.ts +8 -8
|
@@ -11,7 +11,7 @@ function zn(e, ...t) {
|
|
|
11
11
|
if (t.length > 0 && !t.includes(e.length))
|
|
12
12
|
throw new Error(`Expected Uint8Array of length ${t}, not of length=${e.length}`);
|
|
13
13
|
}
|
|
14
|
-
function
|
|
14
|
+
function Ei(e) {
|
|
15
15
|
if (typeof e != "function" || typeof e.create != "function")
|
|
16
16
|
throw new Error("Hash should be wrapped by utils.wrapConstructor");
|
|
17
17
|
Kn(e.outputLen), Kn(e.blockLen);
|
|
@@ -22,24 +22,24 @@ function et(e, t = !0) {
|
|
|
22
22
|
if (t && e.finished)
|
|
23
23
|
throw new Error("Hash#digest() has already been called");
|
|
24
24
|
}
|
|
25
|
-
function
|
|
25
|
+
function mi(e, t) {
|
|
26
26
|
zn(e);
|
|
27
27
|
const n = t.outputLen;
|
|
28
28
|
if (e.length < n)
|
|
29
29
|
throw new Error(`digestInto() expects output buffer of length at least ${n}`);
|
|
30
30
|
}
|
|
31
|
-
const
|
|
31
|
+
const mt = typeof globalThis == "object" && "crypto" in globalThis ? globalThis.crypto : void 0;
|
|
32
32
|
/*! noble-hashes - MIT License (c) 2022 Paul Miller (paulmillr.com) */
|
|
33
33
|
const Vn = (e) => e instanceof Uint8Array, xt = (e) => new DataView(e.buffer, e.byteOffset, e.byteLength), re = (e, t) => e << 32 - t | e >>> t, xi = new Uint8Array(new Uint32Array([287454020]).buffer)[0] === 68;
|
|
34
34
|
if (!xi)
|
|
35
35
|
throw new Error("Non little-endian hardware is not supported");
|
|
36
|
-
function
|
|
36
|
+
function Si(e) {
|
|
37
37
|
if (typeof e != "string")
|
|
38
38
|
throw new Error(`utf8ToBytes expected string, got ${typeof e}`);
|
|
39
39
|
return new Uint8Array(new TextEncoder().encode(e));
|
|
40
40
|
}
|
|
41
41
|
function Wt(e) {
|
|
42
|
-
if (typeof e == "string" && (e =
|
|
42
|
+
if (typeof e == "string" && (e = Si(e)), !Vn(e))
|
|
43
43
|
throw new Error(`expected Uint8Array, got ${typeof e}`);
|
|
44
44
|
return e;
|
|
45
45
|
}
|
|
@@ -58,20 +58,20 @@ let Wn = class {
|
|
|
58
58
|
return this._cloneInto();
|
|
59
59
|
}
|
|
60
60
|
};
|
|
61
|
-
function
|
|
61
|
+
function Ai(e) {
|
|
62
62
|
const t = (r) => e().update(Wt(r)).digest(), n = e();
|
|
63
63
|
return t.outputLen = n.outputLen, t.blockLen = n.blockLen, t.create = () => e(), t;
|
|
64
64
|
}
|
|
65
65
|
function Zn(e = 32) {
|
|
66
|
-
if (
|
|
67
|
-
return
|
|
66
|
+
if (mt && typeof mt.getRandomValues == "function")
|
|
67
|
+
return mt.getRandomValues(new Uint8Array(e));
|
|
68
68
|
throw new Error("crypto.getRandomValues must be defined");
|
|
69
69
|
}
|
|
70
70
|
function Ki(e, t, n, r) {
|
|
71
71
|
if (typeof e.setBigUint64 == "function")
|
|
72
72
|
return e.setBigUint64(t, n, r);
|
|
73
|
-
const i = BigInt(32), s = BigInt(4294967295), o = Number(n >> i & s),
|
|
74
|
-
e.setUint32(t +
|
|
73
|
+
const i = BigInt(32), s = BigInt(4294967295), o = Number(n >> i & s), c = Number(n & s), a = r ? 4 : 0, l = r ? 0 : 4;
|
|
74
|
+
e.setUint32(t + a, o, r), e.setUint32(t + l, c, r);
|
|
75
75
|
}
|
|
76
76
|
let Ci = class extends Wn {
|
|
77
77
|
constructor(t, n, r, i) {
|
|
@@ -83,33 +83,33 @@ let Ci = class extends Wn {
|
|
|
83
83
|
t = Wt(t);
|
|
84
84
|
const s = t.length;
|
|
85
85
|
for (let o = 0; o < s; ) {
|
|
86
|
-
const
|
|
87
|
-
if (
|
|
88
|
-
const
|
|
86
|
+
const c = Math.min(i - this.pos, s - o);
|
|
87
|
+
if (c === i) {
|
|
88
|
+
const a = xt(t);
|
|
89
89
|
for (; i <= s - o; o += i)
|
|
90
|
-
this.process(
|
|
90
|
+
this.process(a, o);
|
|
91
91
|
continue;
|
|
92
92
|
}
|
|
93
|
-
r.set(t.subarray(o, o +
|
|
93
|
+
r.set(t.subarray(o, o + c), this.pos), this.pos += c, o += c, this.pos === i && (this.process(n, 0), this.pos = 0);
|
|
94
94
|
}
|
|
95
95
|
return this.length += t.length, this.roundClean(), this;
|
|
96
96
|
}
|
|
97
97
|
digestInto(t) {
|
|
98
|
-
et(this),
|
|
98
|
+
et(this), mi(t, this), this.finished = !0;
|
|
99
99
|
const { buffer: n, view: r, blockLen: i, isLE: s } = this;
|
|
100
100
|
let { pos: o } = this;
|
|
101
101
|
n[o++] = 128, this.buffer.subarray(o).fill(0), this.padOffset > i - o && (this.process(r, 0), o = 0);
|
|
102
102
|
for (let u = o; u < i; u++)
|
|
103
103
|
n[u] = 0;
|
|
104
104
|
Ki(r, i - 8, BigInt(this.length * 8), s), this.process(r, 0);
|
|
105
|
-
const
|
|
106
|
-
if (
|
|
105
|
+
const c = xt(t), a = this.outputLen;
|
|
106
|
+
if (a % 4)
|
|
107
107
|
throw new Error("_sha2: outputLen should be aligned to 32bit");
|
|
108
|
-
const l =
|
|
108
|
+
const l = a / 4, f = this.get();
|
|
109
109
|
if (l > f.length)
|
|
110
110
|
throw new Error("_sha2: outputLen bigger than state");
|
|
111
111
|
for (let u = 0; u < l; u++)
|
|
112
|
-
|
|
112
|
+
c.setUint32(4 * u, f[u], s);
|
|
113
113
|
}
|
|
114
114
|
digest() {
|
|
115
115
|
const { buffer: t, outputLen: n } = this;
|
|
@@ -119,11 +119,11 @@ let Ci = class extends Wn {
|
|
|
119
119
|
}
|
|
120
120
|
_cloneInto(t) {
|
|
121
121
|
t || (t = new this.constructor()), t.set(...this.get());
|
|
122
|
-
const { blockLen: n, buffer: r, length: i, finished: s, destroyed: o, pos:
|
|
123
|
-
return t.length = i, t.pos =
|
|
122
|
+
const { blockLen: n, buffer: r, length: i, finished: s, destroyed: o, pos: c } = this;
|
|
123
|
+
return t.length = i, t.pos = c, t.finished = s, t.destroyed = o, i % n && t.buffer.set(r), t;
|
|
124
124
|
}
|
|
125
125
|
};
|
|
126
|
-
const Bi = (e, t, n) => e & t ^ ~e & n, ki = (e, t, n) => e & t ^ e & n ^ t & n,
|
|
126
|
+
const Bi = (e, t, n) => e & t ^ ~e & n, ki = (e, t, n) => e & t ^ e & n ^ t & n, _i = /* @__PURE__ */ new Uint32Array([
|
|
127
127
|
1116352408,
|
|
128
128
|
1899447441,
|
|
129
129
|
3049323471,
|
|
@@ -198,17 +198,17 @@ const Bi = (e, t, n) => e & t ^ ~e & n, ki = (e, t, n) => e & t ^ e & n ^ t & n,
|
|
|
198
198
|
528734635,
|
|
199
199
|
1541459225
|
|
200
200
|
]), ve = /* @__PURE__ */ new Uint32Array(64);
|
|
201
|
-
let
|
|
201
|
+
let Ui = class extends Ci {
|
|
202
202
|
constructor() {
|
|
203
203
|
super(64, 32, 8, !1), this.A = be[0] | 0, this.B = be[1] | 0, this.C = be[2] | 0, this.D = be[3] | 0, this.E = be[4] | 0, this.F = be[5] | 0, this.G = be[6] | 0, this.H = be[7] | 0;
|
|
204
204
|
}
|
|
205
205
|
get() {
|
|
206
|
-
const { A: t, B: n, C: r, D: i, E: s, F: o, G:
|
|
207
|
-
return [t, n, r, i, s, o,
|
|
206
|
+
const { A: t, B: n, C: r, D: i, E: s, F: o, G: c, H: a } = this;
|
|
207
|
+
return [t, n, r, i, s, o, c, a];
|
|
208
208
|
}
|
|
209
209
|
// prettier-ignore
|
|
210
|
-
set(t, n, r, i, s, o,
|
|
211
|
-
this.A = t | 0, this.B = n | 0, this.C = r | 0, this.D = i | 0, this.E = s | 0, this.F = o | 0, this.G =
|
|
210
|
+
set(t, n, r, i, s, o, c, a) {
|
|
211
|
+
this.A = t | 0, this.B = n | 0, this.C = r | 0, this.D = i | 0, this.E = s | 0, this.F = o | 0, this.G = c | 0, this.H = a | 0;
|
|
212
212
|
}
|
|
213
213
|
process(t, n) {
|
|
214
214
|
for (let u = 0; u < 16; u++, n += 4)
|
|
@@ -217,12 +217,12 @@ let _i = class extends Ci {
|
|
|
217
217
|
const g = ve[u - 15], b = ve[u - 2], p = re(g, 7) ^ re(g, 18) ^ g >>> 3, h = re(b, 17) ^ re(b, 19) ^ b >>> 10;
|
|
218
218
|
ve[u] = h + ve[u - 7] + p + ve[u - 16] | 0;
|
|
219
219
|
}
|
|
220
|
-
let { A: r, B: i, C: s, D: o, E:
|
|
220
|
+
let { A: r, B: i, C: s, D: o, E: c, F: a, G: l, H: f } = this;
|
|
221
221
|
for (let u = 0; u < 64; u++) {
|
|
222
|
-
const g = re(
|
|
223
|
-
f = l, l =
|
|
222
|
+
const g = re(c, 6) ^ re(c, 11) ^ re(c, 25), b = f + g + Bi(c, a, l) + _i[u] + ve[u] | 0, h = (re(r, 2) ^ re(r, 13) ^ re(r, 22)) + ki(r, i, s) | 0;
|
|
223
|
+
f = l, l = a, a = c, c = o + b | 0, o = s, s = i, i = r, r = b + h | 0;
|
|
224
224
|
}
|
|
225
|
-
r = r + this.A | 0, i = i + this.B | 0, s = s + this.C | 0, o = o + this.D | 0,
|
|
225
|
+
r = r + this.A | 0, i = i + this.B | 0, s = s + this.C | 0, o = o + this.D | 0, c = c + this.E | 0, a = a + this.F | 0, l = l + this.G | 0, f = f + this.H | 0, this.set(r, i, s, o, c, a, l, f);
|
|
226
226
|
}
|
|
227
227
|
roundClean() {
|
|
228
228
|
ve.fill(0);
|
|
@@ -231,7 +231,7 @@ let _i = class extends Ci {
|
|
|
231
231
|
this.set(0, 0, 0, 0, 0, 0, 0, 0), this.buffer.fill(0);
|
|
232
232
|
}
|
|
233
233
|
};
|
|
234
|
-
const Lt = /* @__PURE__ */
|
|
234
|
+
const Lt = /* @__PURE__ */ Ai(() => new Ui());
|
|
235
235
|
/*! noble-curves - MIT License (c) 2022 Paul Miller (paulmillr.com) */
|
|
236
236
|
const Gn = BigInt(0), ot = BigInt(1), Ii = BigInt(2), at = (e) => e instanceof Uint8Array, Li = /* @__PURE__ */ Array.from({ length: 256 }, (e, t) => t.toString(16).padStart(2, "0"));
|
|
237
237
|
function qe(e) {
|
|
@@ -331,7 +331,7 @@ function Oi(e) {
|
|
|
331
331
|
function Mi(e, t) {
|
|
332
332
|
return e >> BigInt(t) & ot;
|
|
333
333
|
}
|
|
334
|
-
const Pi = (e, t, n) => e | (n ? ot : Gn) << BigInt(t), Jt = (e) => (Ii << BigInt(e - 1)) - ot,
|
|
334
|
+
const Pi = (e, t, n) => e | (n ? ot : Gn) << BigInt(t), Jt = (e) => (Ii << BigInt(e - 1)) - ot, St = (e) => new Uint8Array(e), Cn = (e) => Uint8Array.from(e);
|
|
335
335
|
function Jn(e, t, n) {
|
|
336
336
|
if (typeof e != "number" || e < 2)
|
|
337
337
|
throw new Error("hashLen must be a number");
|
|
@@ -339,28 +339,28 @@ function Jn(e, t, n) {
|
|
|
339
339
|
throw new Error("qByteLen must be a number");
|
|
340
340
|
if (typeof n != "function")
|
|
341
341
|
throw new Error("hmacFn must be a function");
|
|
342
|
-
let r =
|
|
342
|
+
let r = St(e), i = St(e), s = 0;
|
|
343
343
|
const o = () => {
|
|
344
344
|
r.fill(1), i.fill(0), s = 0;
|
|
345
|
-
},
|
|
346
|
-
i =
|
|
345
|
+
}, c = (...u) => n(i, r, ...u), a = (u = St()) => {
|
|
346
|
+
i = c(Cn([0]), u), r = c(), u.length !== 0 && (i = c(Cn([1]), u), r = c());
|
|
347
347
|
}, l = () => {
|
|
348
348
|
if (s++ >= 1e3)
|
|
349
349
|
throw new Error("drbg: tried 1000 values");
|
|
350
350
|
let u = 0;
|
|
351
351
|
const g = [];
|
|
352
352
|
for (; u < t; ) {
|
|
353
|
-
r =
|
|
353
|
+
r = c();
|
|
354
354
|
const b = r.slice();
|
|
355
355
|
g.push(b), u += r.length;
|
|
356
356
|
}
|
|
357
357
|
return Ue(...g);
|
|
358
358
|
};
|
|
359
359
|
return (u, g) => {
|
|
360
|
-
o(),
|
|
360
|
+
o(), a(u);
|
|
361
361
|
let b;
|
|
362
362
|
for (; !(b = g(l())); )
|
|
363
|
-
|
|
363
|
+
a();
|
|
364
364
|
return o(), b;
|
|
365
365
|
};
|
|
366
366
|
}
|
|
@@ -375,14 +375,14 @@ const Hi = {
|
|
|
375
375
|
field: (e, t) => t.Fp.isValid(e),
|
|
376
376
|
hash: (e) => typeof e == "function" && Number.isSafeInteger(e.outputLen)
|
|
377
377
|
};
|
|
378
|
-
function
|
|
378
|
+
function Ye(e, t, n = {}) {
|
|
379
379
|
const r = (i, s, o) => {
|
|
380
|
-
const
|
|
381
|
-
if (typeof
|
|
380
|
+
const c = Hi[s];
|
|
381
|
+
if (typeof c != "function")
|
|
382
382
|
throw new Error(`Invalid validator "${s}", expected function`);
|
|
383
|
-
const
|
|
384
|
-
if (!(o &&
|
|
385
|
-
throw new Error(`Invalid param ${String(i)}=${
|
|
383
|
+
const a = e[i];
|
|
384
|
+
if (!(o && a === void 0) && !c(a, e))
|
|
385
|
+
throw new Error(`Invalid param ${String(i)}=${a} (${typeof a}), expected ${s}`);
|
|
386
386
|
};
|
|
387
387
|
for (const [i, s] of Object.entries(t))
|
|
388
388
|
r(i, s, !1);
|
|
@@ -410,7 +410,7 @@ const qi = /* @__PURE__ */ Object.freeze(/* @__PURE__ */ Object.defineProperty({
|
|
|
410
410
|
numberToHexUnpadded: Fn,
|
|
411
411
|
numberToVarBytesBE: $i,
|
|
412
412
|
utf8ToBytes: Ri,
|
|
413
|
-
validateObject:
|
|
413
|
+
validateObject: Ye
|
|
414
414
|
}, Symbol.toStringTag, { value: "Module" }));
|
|
415
415
|
/*! noble-curves - MIT License (c) 2022 Paul Miller (paulmillr.com) */
|
|
416
416
|
const z = BigInt(0), j = BigInt(1), Ce = BigInt(2), Di = BigInt(3), $t = BigInt(4), Bn = BigInt(5), kn = BigInt(8);
|
|
@@ -441,8 +441,8 @@ function Tt(e, t) {
|
|
|
441
441
|
throw new Error(`invert: expected positive integers, got n=${e} mod=${t}`);
|
|
442
442
|
let n = V(e, t), r = t, i = z, s = j;
|
|
443
443
|
for (; n !== z; ) {
|
|
444
|
-
const
|
|
445
|
-
r = n, n =
|
|
444
|
+
const c = r / n, a = r % n, l = i - s * c;
|
|
445
|
+
r = n, n = a, i = s, s = l;
|
|
446
446
|
}
|
|
447
447
|
if (r !== j)
|
|
448
448
|
throw new Error("invert: does not exist");
|
|
@@ -457,26 +457,26 @@ function zi(e) {
|
|
|
457
457
|
;
|
|
458
458
|
if (r === 1) {
|
|
459
459
|
const o = (e + j) / $t;
|
|
460
|
-
return function(
|
|
461
|
-
const f =
|
|
462
|
-
if (!
|
|
460
|
+
return function(a, l) {
|
|
461
|
+
const f = a.pow(l, o);
|
|
462
|
+
if (!a.eql(a.sqr(f), l))
|
|
463
463
|
throw new Error("Cannot find square root");
|
|
464
464
|
return f;
|
|
465
465
|
};
|
|
466
466
|
}
|
|
467
467
|
const s = (n + j) / Ce;
|
|
468
|
-
return function(
|
|
469
|
-
if (
|
|
468
|
+
return function(c, a) {
|
|
469
|
+
if (c.pow(a, t) === c.neg(c.ONE))
|
|
470
470
|
throw new Error("Cannot find square root");
|
|
471
|
-
let l = r, f =
|
|
472
|
-
for (; !
|
|
473
|
-
if (
|
|
474
|
-
return
|
|
471
|
+
let l = r, f = c.pow(c.mul(c.ONE, i), n), u = c.pow(a, s), g = c.pow(a, n);
|
|
472
|
+
for (; !c.eql(g, c.ONE); ) {
|
|
473
|
+
if (c.eql(g, c.ZERO))
|
|
474
|
+
return c.ZERO;
|
|
475
475
|
let b = 1;
|
|
476
|
-
for (let h =
|
|
477
|
-
h =
|
|
478
|
-
const p =
|
|
479
|
-
f =
|
|
476
|
+
for (let h = c.sqr(g); b < l && !c.eql(h, c.ONE); b++)
|
|
477
|
+
h = c.sqr(h);
|
|
478
|
+
const p = c.pow(f, j << BigInt(l - b - 1));
|
|
479
|
+
f = c.sqr(p), u = c.mul(u, p), g = c.mul(g, f), l = b;
|
|
480
480
|
}
|
|
481
481
|
return u;
|
|
482
482
|
};
|
|
@@ -494,7 +494,7 @@ function Vi(e) {
|
|
|
494
494
|
if (e % kn === Bn) {
|
|
495
495
|
const t = (e - Bn) / kn;
|
|
496
496
|
return function(r, i) {
|
|
497
|
-
const s = r.mul(i, Ce), o = r.pow(s, t),
|
|
497
|
+
const s = r.mul(i, Ce), o = r.pow(s, t), c = r.mul(i, o), a = r.mul(r.mul(c, Ce), o), l = r.mul(c, r.sub(a, r.ONE));
|
|
498
498
|
if (!r.eql(r.sqr(l), i))
|
|
499
499
|
throw new Error("Cannot find square root");
|
|
500
500
|
return l;
|
|
@@ -528,7 +528,7 @@ function Zi(e) {
|
|
|
528
528
|
BYTES: "isSafeInteger",
|
|
529
529
|
BITS: "isSafeInteger"
|
|
530
530
|
}, n = Wi.reduce((r, i) => (r[i] = "function", r), t);
|
|
531
|
-
return
|
|
531
|
+
return Ye(e, n);
|
|
532
532
|
}
|
|
533
533
|
function Gi(e, t, n) {
|
|
534
534
|
if (n < z)
|
|
@@ -543,8 +543,8 @@ function Gi(e, t, n) {
|
|
|
543
543
|
return r;
|
|
544
544
|
}
|
|
545
545
|
function Fi(e, t) {
|
|
546
|
-
const n = new Array(t.length), r = t.reduce((s, o,
|
|
547
|
-
return t.reduceRight((s, o,
|
|
546
|
+
const n = new Array(t.length), r = t.reduce((s, o, c) => e.is0(o) ? s : (n[c] = s, e.mul(s, o)), e.ONE), i = e.inv(r);
|
|
547
|
+
return t.reduceRight((s, o, c) => e.is0(o) ? s : (n[c] = e.mul(s, n[c]), e.mul(s, o)), i), n;
|
|
548
548
|
}
|
|
549
549
|
function Yn(e, t) {
|
|
550
550
|
const n = t !== void 0 ? t : e.toString(2).length, r = Math.ceil(n / 8);
|
|
@@ -556,48 +556,48 @@ function Ji(e, t, n = !1, r = {}) {
|
|
|
556
556
|
const { nBitLength: i, nByteLength: s } = Yn(e, t);
|
|
557
557
|
if (s > 2048)
|
|
558
558
|
throw new Error("Field lengths over 2048 bytes are not supported");
|
|
559
|
-
const o = Vi(e),
|
|
559
|
+
const o = Vi(e), c = Object.freeze({
|
|
560
560
|
ORDER: e,
|
|
561
561
|
BITS: i,
|
|
562
562
|
BYTES: s,
|
|
563
563
|
MASK: Jt(i),
|
|
564
564
|
ZERO: z,
|
|
565
565
|
ONE: j,
|
|
566
|
-
create: (
|
|
567
|
-
isValid: (
|
|
568
|
-
if (typeof
|
|
569
|
-
throw new Error(`Invalid field element: expected bigint, got ${typeof
|
|
570
|
-
return z <=
|
|
566
|
+
create: (a) => V(a, e),
|
|
567
|
+
isValid: (a) => {
|
|
568
|
+
if (typeof a != "bigint")
|
|
569
|
+
throw new Error(`Invalid field element: expected bigint, got ${typeof a}`);
|
|
570
|
+
return z <= a && a < e;
|
|
571
571
|
},
|
|
572
|
-
is0: (
|
|
573
|
-
isOdd: (
|
|
574
|
-
neg: (
|
|
575
|
-
eql: (
|
|
576
|
-
sqr: (
|
|
577
|
-
add: (
|
|
578
|
-
sub: (
|
|
579
|
-
mul: (
|
|
580
|
-
pow: (
|
|
581
|
-
div: (
|
|
572
|
+
is0: (a) => a === z,
|
|
573
|
+
isOdd: (a) => (a & j) === j,
|
|
574
|
+
neg: (a) => V(-a, e),
|
|
575
|
+
eql: (a, l) => a === l,
|
|
576
|
+
sqr: (a) => V(a * a, e),
|
|
577
|
+
add: (a, l) => V(a + l, e),
|
|
578
|
+
sub: (a, l) => V(a - l, e),
|
|
579
|
+
mul: (a, l) => V(a * l, e),
|
|
580
|
+
pow: (a, l) => Gi(c, a, l),
|
|
581
|
+
div: (a, l) => V(a * Tt(l, e), e),
|
|
582
582
|
// Same as above, but doesn't normalize
|
|
583
|
-
sqrN: (
|
|
584
|
-
addN: (
|
|
585
|
-
subN: (
|
|
586
|
-
mulN: (
|
|
587
|
-
inv: (
|
|
588
|
-
sqrt: r.sqrt || ((
|
|
589
|
-
invertBatch: (
|
|
583
|
+
sqrN: (a) => a * a,
|
|
584
|
+
addN: (a, l) => a + l,
|
|
585
|
+
subN: (a, l) => a - l,
|
|
586
|
+
mulN: (a, l) => a * l,
|
|
587
|
+
inv: (a) => Tt(a, e),
|
|
588
|
+
sqrt: r.sqrt || ((a) => o(c, a)),
|
|
589
|
+
invertBatch: (a) => Fi(c, a),
|
|
590
590
|
// TODO: do we really need constant cmov?
|
|
591
591
|
// We don't have const-time bigints anyway, so probably will be not very useful
|
|
592
|
-
cmov: (
|
|
593
|
-
toBytes: (
|
|
594
|
-
fromBytes: (
|
|
595
|
-
if (
|
|
596
|
-
throw new Error(`Fp.fromBytes: expected ${s}, got ${
|
|
597
|
-
return n ? Gt(
|
|
592
|
+
cmov: (a, l, f) => f ? l : a,
|
|
593
|
+
toBytes: (a) => n ? Ft(a, s) : Ne(a, s),
|
|
594
|
+
fromBytes: (a) => {
|
|
595
|
+
if (a.length !== s)
|
|
596
|
+
throw new Error(`Fp.fromBytes: expected ${s}, got ${a.length}`);
|
|
597
|
+
return n ? Gt(a) : F(a);
|
|
598
598
|
}
|
|
599
599
|
});
|
|
600
|
-
return Object.freeze(
|
|
600
|
+
return Object.freeze(c);
|
|
601
601
|
}
|
|
602
602
|
function Xn(e) {
|
|
603
603
|
if (typeof e != "bigint")
|
|
@@ -613,8 +613,8 @@ function Yi(e, t, n = !1) {
|
|
|
613
613
|
const r = e.length, i = Xn(t), s = Qn(t);
|
|
614
614
|
if (r < 16 || r < s || r > 1024)
|
|
615
615
|
throw new Error(`expected ${s}-1024 bytes of input, got ${r}`);
|
|
616
|
-
const o = n ? F(e) : Gt(e),
|
|
617
|
-
return n ? Ft(
|
|
616
|
+
const o = n ? F(e) : Gt(e), c = V(o, t - j) + j;
|
|
617
|
+
return n ? Ft(c, i) : Ne(c, i);
|
|
618
618
|
}
|
|
619
619
|
/*! noble-curves - MIT License (c) 2022 Paul Miller (paulmillr.com) */
|
|
620
620
|
const Xi = BigInt(0), Nt = BigInt(1);
|
|
@@ -630,9 +630,9 @@ function Qi(e, t) {
|
|
|
630
630
|
constTimeNegate: n,
|
|
631
631
|
// non-const time multiplication ladder
|
|
632
632
|
unsafeLadder(i, s) {
|
|
633
|
-
let o = e.ZERO,
|
|
633
|
+
let o = e.ZERO, c = i;
|
|
634
634
|
for (; s > Xi; )
|
|
635
|
-
s & Nt && (o = o.add(
|
|
635
|
+
s & Nt && (o = o.add(c)), c = c.double(), s >>= Nt;
|
|
636
636
|
return o;
|
|
637
637
|
},
|
|
638
638
|
/**
|
|
@@ -646,15 +646,15 @@ function Qi(e, t) {
|
|
|
646
646
|
* @returns precomputed point tables flattened to a single array
|
|
647
647
|
*/
|
|
648
648
|
precomputeWindow(i, s) {
|
|
649
|
-
const { windows: o, windowSize:
|
|
649
|
+
const { windows: o, windowSize: c } = r(s), a = [];
|
|
650
650
|
let l = i, f = l;
|
|
651
651
|
for (let u = 0; u < o; u++) {
|
|
652
|
-
f = l,
|
|
653
|
-
for (let g = 1; g <
|
|
654
|
-
f = f.add(l),
|
|
652
|
+
f = l, a.push(f);
|
|
653
|
+
for (let g = 1; g < c; g++)
|
|
654
|
+
f = f.add(l), a.push(f);
|
|
655
655
|
l = f.double();
|
|
656
656
|
}
|
|
657
|
-
return
|
|
657
|
+
return a;
|
|
658
658
|
},
|
|
659
659
|
/**
|
|
660
660
|
* Implements ec multiplication using precomputed tables and w-ary non-adjacent form.
|
|
@@ -664,27 +664,27 @@ function Qi(e, t) {
|
|
|
664
664
|
* @returns real and fake (for const-time) points
|
|
665
665
|
*/
|
|
666
666
|
wNAF(i, s, o) {
|
|
667
|
-
const { windows:
|
|
667
|
+
const { windows: c, windowSize: a } = r(i);
|
|
668
668
|
let l = e.ZERO, f = e.BASE;
|
|
669
669
|
const u = BigInt(2 ** i - 1), g = 2 ** i, b = BigInt(i);
|
|
670
|
-
for (let p = 0; p <
|
|
671
|
-
const h = p *
|
|
670
|
+
for (let p = 0; p < c; p++) {
|
|
671
|
+
const h = p * a;
|
|
672
672
|
let d = Number(o & u);
|
|
673
|
-
o >>= b, d >
|
|
674
|
-
const y = h,
|
|
675
|
-
d === 0 ? f = f.add(n(
|
|
673
|
+
o >>= b, d > a && (d -= g, o += Nt);
|
|
674
|
+
const y = h, m = h + Math.abs(d) - 1, A = p % 2 !== 0, U = d < 0;
|
|
675
|
+
d === 0 ? f = f.add(n(A, s[y])) : l = l.add(n(U, s[m]));
|
|
676
676
|
}
|
|
677
677
|
return { p: l, f };
|
|
678
678
|
},
|
|
679
|
-
wNAFCached(i, s, o,
|
|
680
|
-
const
|
|
679
|
+
wNAFCached(i, s, o, c) {
|
|
680
|
+
const a = i._WINDOW_SIZE || 1;
|
|
681
681
|
let l = s.get(i);
|
|
682
|
-
return l || (l = this.precomputeWindow(i,
|
|
682
|
+
return l || (l = this.precomputeWindow(i, a), a !== 1 && s.set(i, c(l))), this.wNAF(a, l, o);
|
|
683
683
|
}
|
|
684
684
|
};
|
|
685
685
|
}
|
|
686
686
|
function er(e) {
|
|
687
|
-
return Zi(e.Fp),
|
|
687
|
+
return Zi(e.Fp), Ye(e, {
|
|
688
688
|
n: "bigint",
|
|
689
689
|
h: "bigint",
|
|
690
690
|
Gx: "field",
|
|
@@ -701,7 +701,7 @@ function er(e) {
|
|
|
701
701
|
/*! noble-curves - MIT License (c) 2022 Paul Miller (paulmillr.com) */
|
|
702
702
|
function es(e) {
|
|
703
703
|
const t = er(e);
|
|
704
|
-
|
|
704
|
+
Ye(t, {
|
|
705
705
|
a: "field",
|
|
706
706
|
b: "field"
|
|
707
707
|
}, {
|
|
@@ -722,7 +722,7 @@ function es(e) {
|
|
|
722
722
|
}
|
|
723
723
|
return Object.freeze({ ...t });
|
|
724
724
|
}
|
|
725
|
-
const { bytesToNumberBE: ts, hexToBytes: ns } = qi,
|
|
725
|
+
const { bytesToNumberBE: ts, hexToBytes: ns } = qi, ke = {
|
|
726
726
|
// asn.1 DER encoding utils
|
|
727
727
|
Err: class extends Error {
|
|
728
728
|
constructor(t = "") {
|
|
@@ -730,7 +730,7 @@ const { bytesToNumberBE: ts, hexToBytes: ns } = qi, Be = {
|
|
|
730
730
|
}
|
|
731
731
|
},
|
|
732
732
|
_parseInt(e) {
|
|
733
|
-
const { Err: t } =
|
|
733
|
+
const { Err: t } = ke;
|
|
734
734
|
if (e.length < 2 || e[0] !== 2)
|
|
735
735
|
throw new t("Invalid signature integer tag");
|
|
736
736
|
const n = e[1], r = e.subarray(2, n + 2);
|
|
@@ -743,7 +743,7 @@ const { bytesToNumberBE: ts, hexToBytes: ns } = qi, Be = {
|
|
|
743
743
|
return { d: ts(r), l: e.subarray(n + 2) };
|
|
744
744
|
},
|
|
745
745
|
toSig(e) {
|
|
746
|
-
const { Err: t } =
|
|
746
|
+
const { Err: t } = ke, n = typeof e == "string" ? ns(e) : e;
|
|
747
747
|
if (!(n instanceof Uint8Array))
|
|
748
748
|
throw new Error("ui8a expected");
|
|
749
749
|
let r = n.length;
|
|
@@ -751,8 +751,8 @@ const { bytesToNumberBE: ts, hexToBytes: ns } = qi, Be = {
|
|
|
751
751
|
throw new t("Invalid signature tag");
|
|
752
752
|
if (n[1] !== r - 2)
|
|
753
753
|
throw new t("Invalid signature: incorrect length");
|
|
754
|
-
const { d: i, l: s } =
|
|
755
|
-
if (
|
|
754
|
+
const { d: i, l: s } = ke._parseInt(n.subarray(2)), { d: o, l: c } = ke._parseInt(s);
|
|
755
|
+
if (c.length)
|
|
756
756
|
throw new t("Invalid signature: left bytes after parsing");
|
|
757
757
|
return { r: i, s: o };
|
|
758
758
|
},
|
|
@@ -760,12 +760,12 @@ const { bytesToNumberBE: ts, hexToBytes: ns } = qi, Be = {
|
|
|
760
760
|
const t = (l) => Number.parseInt(l[0], 16) & 8 ? "00" + l : l, n = (l) => {
|
|
761
761
|
const f = l.toString(16);
|
|
762
762
|
return f.length & 1 ? `0${f}` : f;
|
|
763
|
-
}, r = t(n(e.s)), i = t(n(e.r)), s = r.length / 2, o = i.length / 2,
|
|
764
|
-
return `30${n(o + s + 4)}02${
|
|
763
|
+
}, r = t(n(e.s)), i = t(n(e.r)), s = r.length / 2, o = i.length / 2, c = n(s), a = n(o);
|
|
764
|
+
return `30${n(o + s + 4)}02${a}${i}02${c}${r}`;
|
|
765
765
|
}
|
|
766
766
|
}, ae = BigInt(0), Y = BigInt(1);
|
|
767
767
|
BigInt(2);
|
|
768
|
-
const
|
|
768
|
+
const _n = BigInt(3);
|
|
769
769
|
BigInt(4);
|
|
770
770
|
function rs(e) {
|
|
771
771
|
const t = es(e), { Fp: n } = t, r = t.toBytes || ((p, h, d) => {
|
|
@@ -776,32 +776,32 @@ function rs(e) {
|
|
|
776
776
|
return { x: d, y };
|
|
777
777
|
});
|
|
778
778
|
function s(p) {
|
|
779
|
-
const { a: h, b: d } = t, y = n.sqr(p),
|
|
780
|
-
return n.add(n.add(
|
|
779
|
+
const { a: h, b: d } = t, y = n.sqr(p), m = n.mul(y, p);
|
|
780
|
+
return n.add(n.add(m, n.mul(p, h)), d);
|
|
781
781
|
}
|
|
782
782
|
if (!n.eql(n.sqr(t.Gy), s(t.Gx)))
|
|
783
783
|
throw new Error("bad generator point: equation left != right");
|
|
784
784
|
function o(p) {
|
|
785
785
|
return typeof p == "bigint" && ae < p && p < t.n;
|
|
786
786
|
}
|
|
787
|
-
function
|
|
787
|
+
function c(p) {
|
|
788
788
|
if (!o(p))
|
|
789
789
|
throw new Error("Expected valid bigint: 0 < bigint < curve.n");
|
|
790
790
|
}
|
|
791
|
-
function
|
|
792
|
-
const { allowedPrivateKeyLengths: h, nByteLength: d, wrapPrivateKey: y, n:
|
|
791
|
+
function a(p) {
|
|
792
|
+
const { allowedPrivateKeyLengths: h, nByteLength: d, wrapPrivateKey: y, n: m } = t;
|
|
793
793
|
if (h && typeof p != "bigint") {
|
|
794
794
|
if (p instanceof Uint8Array && (p = qe(p)), typeof p != "string" || !h.includes(p.length))
|
|
795
795
|
throw new Error("Invalid key");
|
|
796
796
|
p = p.padStart(d * 2, "0");
|
|
797
797
|
}
|
|
798
|
-
let
|
|
798
|
+
let A;
|
|
799
799
|
try {
|
|
800
|
-
|
|
800
|
+
A = typeof p == "bigint" ? p : F(W("private key", p, d));
|
|
801
801
|
} catch {
|
|
802
802
|
throw new Error(`private key must be ${d} bytes, hex or bigint, not ${typeof p}`);
|
|
803
803
|
}
|
|
804
|
-
return y && (
|
|
804
|
+
return y && (A = V(A, m)), c(A), A;
|
|
805
805
|
}
|
|
806
806
|
const l = /* @__PURE__ */ new Map();
|
|
807
807
|
function f(p) {
|
|
@@ -825,8 +825,8 @@ function rs(e) {
|
|
|
825
825
|
throw new Error("invalid affine point");
|
|
826
826
|
if (h instanceof u)
|
|
827
827
|
throw new Error("projective point not allowed");
|
|
828
|
-
const
|
|
829
|
-
return
|
|
828
|
+
const m = (A) => n.eql(A, n.ZERO);
|
|
829
|
+
return m(d) && m(y) ? u.ZERO : new u(d, y, n.ONE);
|
|
830
830
|
}
|
|
831
831
|
get x() {
|
|
832
832
|
return this.toAffine().x;
|
|
@@ -842,7 +842,7 @@ function rs(e) {
|
|
|
842
842
|
*/
|
|
843
843
|
static normalizeZ(h) {
|
|
844
844
|
const d = n.invertBatch(h.map((y) => y.pz));
|
|
845
|
-
return h.map((y,
|
|
845
|
+
return h.map((y, m) => y.toAffine(d[m])).map(u.fromAffine);
|
|
846
846
|
}
|
|
847
847
|
/**
|
|
848
848
|
* Converts hash string or Uint8Array to Point.
|
|
@@ -854,7 +854,7 @@ function rs(e) {
|
|
|
854
854
|
}
|
|
855
855
|
// Multiplies generator point by privateKey.
|
|
856
856
|
static fromPrivateKey(h) {
|
|
857
|
-
return u.BASE.multiply(
|
|
857
|
+
return u.BASE.multiply(a(h));
|
|
858
858
|
}
|
|
859
859
|
// "Private method", don't use it directly
|
|
860
860
|
_setWindowSize(h) {
|
|
@@ -870,8 +870,8 @@ function rs(e) {
|
|
|
870
870
|
const { x: h, y: d } = this.toAffine();
|
|
871
871
|
if (!n.isValid(h) || !n.isValid(d))
|
|
872
872
|
throw new Error("bad point: x or y not FE");
|
|
873
|
-
const y = n.sqr(d),
|
|
874
|
-
if (!n.eql(y,
|
|
873
|
+
const y = n.sqr(d), m = s(h);
|
|
874
|
+
if (!n.eql(y, m))
|
|
875
875
|
throw new Error("bad point: equation left != right");
|
|
876
876
|
if (!this.isTorsionFree())
|
|
877
877
|
throw new Error("bad point: not in prime-order subgroup");
|
|
@@ -887,8 +887,8 @@ function rs(e) {
|
|
|
887
887
|
*/
|
|
888
888
|
equals(h) {
|
|
889
889
|
f(h);
|
|
890
|
-
const { px: d, py: y, pz:
|
|
891
|
-
return
|
|
890
|
+
const { px: d, py: y, pz: m } = this, { px: A, py: U, pz: B } = h, E = n.eql(n.mul(d, B), n.mul(A, m)), x = n.eql(n.mul(y, B), n.mul(U, m));
|
|
891
|
+
return E && x;
|
|
892
892
|
}
|
|
893
893
|
/**
|
|
894
894
|
* Flips point to one corresponding to (x, -y) in Affine coordinates.
|
|
@@ -901,9 +901,9 @@ function rs(e) {
|
|
|
901
901
|
// https://eprint.iacr.org/2015/1060, algorithm 3
|
|
902
902
|
// Cost: 8M + 3S + 3*a + 2*b3 + 15add.
|
|
903
903
|
double() {
|
|
904
|
-
const { a: h, b: d } = t, y = n.mul(d,
|
|
905
|
-
let B = n.ZERO,
|
|
906
|
-
return K = n.add(K, K), x = n.mul(
|
|
904
|
+
const { a: h, b: d } = t, y = n.mul(d, _n), { px: m, py: A, pz: U } = this;
|
|
905
|
+
let B = n.ZERO, E = n.ZERO, x = n.ZERO, S = n.mul(m, m), P = n.mul(A, A), _ = n.mul(U, U), K = n.mul(m, A);
|
|
906
|
+
return K = n.add(K, K), x = n.mul(m, U), x = n.add(x, x), B = n.mul(h, x), E = n.mul(y, _), E = n.add(B, E), B = n.sub(P, E), E = n.add(P, E), E = n.mul(B, E), B = n.mul(K, B), x = n.mul(y, x), _ = n.mul(h, _), K = n.sub(S, _), K = n.mul(h, K), K = n.add(K, x), x = n.add(S, S), S = n.add(x, S), S = n.add(S, _), S = n.mul(S, K), E = n.add(E, S), _ = n.mul(A, U), _ = n.add(_, _), S = n.mul(_, K), B = n.sub(B, S), x = n.mul(_, P), x = n.add(x, x), x = n.add(x, x), new u(B, E, x);
|
|
907
907
|
}
|
|
908
908
|
// Renes-Costello-Batina exception-free addition formula.
|
|
909
909
|
// There is 30% faster Jacobian formula, but it is not complete.
|
|
@@ -911,13 +911,13 @@ function rs(e) {
|
|
|
911
911
|
// Cost: 12M + 0S + 3*a + 3*b3 + 23add.
|
|
912
912
|
add(h) {
|
|
913
913
|
f(h);
|
|
914
|
-
const { px: d, py: y, pz:
|
|
915
|
-
let
|
|
916
|
-
const P = t.a,
|
|
917
|
-
let K = n.mul(d,
|
|
918
|
-
H = n.mul(H, w), w = n.add(K, T), H = n.sub(H, w), w = n.add(d,
|
|
919
|
-
let v = n.add(
|
|
920
|
-
return w = n.mul(w, v), v = n.add(K, R), w = n.sub(w, v), v = n.add(y,
|
|
914
|
+
const { px: d, py: y, pz: m } = this, { px: A, py: U, pz: B } = h;
|
|
915
|
+
let E = n.ZERO, x = n.ZERO, S = n.ZERO;
|
|
916
|
+
const P = t.a, _ = n.mul(t.b, _n);
|
|
917
|
+
let K = n.mul(d, A), T = n.mul(y, U), R = n.mul(m, B), H = n.add(d, y), w = n.add(A, U);
|
|
918
|
+
H = n.mul(H, w), w = n.add(K, T), H = n.sub(H, w), w = n.add(d, m);
|
|
919
|
+
let v = n.add(A, B);
|
|
920
|
+
return w = n.mul(w, v), v = n.add(K, R), w = n.sub(w, v), v = n.add(y, m), E = n.add(U, B), v = n.mul(v, E), E = n.add(T, R), v = n.sub(v, E), S = n.mul(P, w), E = n.mul(_, R), S = n.add(E, S), E = n.sub(T, S), S = n.add(T, S), x = n.mul(E, S), T = n.add(K, K), T = n.add(T, K), R = n.mul(P, R), w = n.mul(_, w), T = n.add(T, R), R = n.sub(K, R), R = n.mul(P, R), w = n.add(w, R), K = n.mul(T, w), x = n.add(x, K), K = n.mul(v, w), E = n.mul(H, E), E = n.sub(E, K), K = n.mul(H, T), S = n.mul(v, S), S = n.add(S, K), new u(E, x, S);
|
|
921
921
|
}
|
|
922
922
|
subtract(h) {
|
|
923
923
|
return this.add(h.negate());
|
|
@@ -927,8 +927,8 @@ function rs(e) {
|
|
|
927
927
|
}
|
|
928
928
|
wNAF(h) {
|
|
929
929
|
return b.wNAFCached(this, l, h, (d) => {
|
|
930
|
-
const y = n.invertBatch(d.map((
|
|
931
|
-
return d.map((
|
|
930
|
+
const y = n.invertBatch(d.map((m) => m.pz));
|
|
931
|
+
return d.map((m, A) => m.toAffine(y[A])).map(u.fromAffine);
|
|
932
932
|
});
|
|
933
933
|
}
|
|
934
934
|
/**
|
|
@@ -940,15 +940,15 @@ function rs(e) {
|
|
|
940
940
|
const d = u.ZERO;
|
|
941
941
|
if (h === ae)
|
|
942
942
|
return d;
|
|
943
|
-
if (
|
|
943
|
+
if (c(h), h === Y)
|
|
944
944
|
return this;
|
|
945
945
|
const { endo: y } = t;
|
|
946
946
|
if (!y)
|
|
947
947
|
return b.unsafeLadder(this, h);
|
|
948
|
-
let { k1neg:
|
|
949
|
-
for (;
|
|
950
|
-
|
|
951
|
-
return
|
|
948
|
+
let { k1neg: m, k1: A, k2neg: U, k2: B } = y.splitScalar(h), E = d, x = d, S = this;
|
|
949
|
+
for (; A > ae || B > ae; )
|
|
950
|
+
A & Y && (E = E.add(S)), B & Y && (x = x.add(S)), S = S.double(), A >>= Y, B >>= Y;
|
|
951
|
+
return m && (E = E.negate()), U && (x = x.negate()), x = new u(n.mul(x.px, y.beta), x.py, x.pz), E.add(x);
|
|
952
952
|
}
|
|
953
953
|
/**
|
|
954
954
|
* Constant time multiplication.
|
|
@@ -960,18 +960,18 @@ function rs(e) {
|
|
|
960
960
|
* @returns New point
|
|
961
961
|
*/
|
|
962
962
|
multiply(h) {
|
|
963
|
-
|
|
964
|
-
let d = h, y,
|
|
965
|
-
const { endo:
|
|
966
|
-
if (
|
|
967
|
-
const { k1neg:
|
|
968
|
-
let { p:
|
|
969
|
-
|
|
963
|
+
c(h);
|
|
964
|
+
let d = h, y, m;
|
|
965
|
+
const { endo: A } = t;
|
|
966
|
+
if (A) {
|
|
967
|
+
const { k1neg: U, k1: B, k2neg: E, k2: x } = A.splitScalar(d);
|
|
968
|
+
let { p: S, f: P } = this.wNAF(B), { p: _, f: K } = this.wNAF(x);
|
|
969
|
+
S = b.constTimeNegate(U, S), _ = b.constTimeNegate(E, _), _ = new u(n.mul(_.px, A.beta), _.py, _.pz), y = S.add(_), m = P.add(K);
|
|
970
970
|
} else {
|
|
971
|
-
const { p:
|
|
972
|
-
y =
|
|
971
|
+
const { p: U, f: B } = this.wNAF(d);
|
|
972
|
+
y = U, m = B;
|
|
973
973
|
}
|
|
974
|
-
return u.normalizeZ([y,
|
|
974
|
+
return u.normalizeZ([y, m])[0];
|
|
975
975
|
}
|
|
976
976
|
/**
|
|
977
977
|
* Efficiently calculate `aP + bQ`. Unsafe, can expose private key, if used incorrectly.
|
|
@@ -980,21 +980,21 @@ function rs(e) {
|
|
|
980
980
|
* @returns non-zero affine point
|
|
981
981
|
*/
|
|
982
982
|
multiplyAndAddUnsafe(h, d, y) {
|
|
983
|
-
const
|
|
984
|
-
return
|
|
983
|
+
const m = u.BASE, A = (B, E) => E === ae || E === Y || !B.equals(m) ? B.multiplyUnsafe(E) : B.multiply(E), U = A(this, d).add(A(h, y));
|
|
984
|
+
return U.is0() ? void 0 : U;
|
|
985
985
|
}
|
|
986
986
|
// Converts Projective point to affine (x, y) coordinates.
|
|
987
987
|
// Can accept precomputed Z^-1 - for example, from invertBatch.
|
|
988
988
|
// (x, y, z) ∋ (x=x/z, y=y/z)
|
|
989
989
|
toAffine(h) {
|
|
990
|
-
const { px: d, py: y, pz:
|
|
991
|
-
h == null && (h =
|
|
992
|
-
const
|
|
993
|
-
if (
|
|
990
|
+
const { px: d, py: y, pz: m } = this, A = this.is0();
|
|
991
|
+
h == null && (h = A ? n.ONE : n.inv(m));
|
|
992
|
+
const U = n.mul(d, h), B = n.mul(y, h), E = n.mul(m, h);
|
|
993
|
+
if (A)
|
|
994
994
|
return { x: n.ZERO, y: n.ZERO };
|
|
995
|
-
if (!n.eql(
|
|
995
|
+
if (!n.eql(E, n.ONE))
|
|
996
996
|
throw new Error("invZ was invalid");
|
|
997
|
-
return { x:
|
|
997
|
+
return { x: U, y: B };
|
|
998
998
|
}
|
|
999
999
|
isTorsionFree() {
|
|
1000
1000
|
const { h, isTorsionFree: d } = t;
|
|
@@ -1020,14 +1020,14 @@ function rs(e) {
|
|
|
1020
1020
|
return {
|
|
1021
1021
|
CURVE: t,
|
|
1022
1022
|
ProjectivePoint: u,
|
|
1023
|
-
normPrivateKeyToScalar:
|
|
1023
|
+
normPrivateKeyToScalar: a,
|
|
1024
1024
|
weierstrassEquation: s,
|
|
1025
1025
|
isWithinCurveOrder: o
|
|
1026
1026
|
};
|
|
1027
1027
|
}
|
|
1028
1028
|
function is(e) {
|
|
1029
1029
|
const t = er(e);
|
|
1030
|
-
return
|
|
1030
|
+
return Ye(t, {
|
|
1031
1031
|
hash: "hash",
|
|
1032
1032
|
hmac: "function",
|
|
1033
1033
|
randomBytes: "function"
|
|
@@ -1042,10 +1042,10 @@ function ss(e) {
|
|
|
1042
1042
|
function o(w) {
|
|
1043
1043
|
return ae < w && w < n.ORDER;
|
|
1044
1044
|
}
|
|
1045
|
-
function
|
|
1045
|
+
function c(w) {
|
|
1046
1046
|
return V(w, r);
|
|
1047
1047
|
}
|
|
1048
|
-
function
|
|
1048
|
+
function a(w) {
|
|
1049
1049
|
return Tt(w, r);
|
|
1050
1050
|
}
|
|
1051
1051
|
const { ProjectivePoint: l, normPrivateKeyToScalar: f, weierstrassEquation: u, isWithinCurveOrder: g } = rs({
|
|
@@ -1076,7 +1076,7 @@ function ss(e) {
|
|
|
1076
1076
|
return w > v;
|
|
1077
1077
|
}
|
|
1078
1078
|
function h(w) {
|
|
1079
|
-
return p(w) ?
|
|
1079
|
+
return p(w) ? c(-w) : w;
|
|
1080
1080
|
}
|
|
1081
1081
|
const d = (w, v, N) => F(w.slice(v, N));
|
|
1082
1082
|
class y {
|
|
@@ -1091,7 +1091,7 @@ function ss(e) {
|
|
|
1091
1091
|
// DER encoded ECDSA signature
|
|
1092
1092
|
// https://bitcoin.stackexchange.com/questions/57644/what-are-the-parts-of-a-bitcoin-transaction-input-script
|
|
1093
1093
|
static fromDER(v) {
|
|
1094
|
-
const { r: N, s: k } =
|
|
1094
|
+
const { r: N, s: k } = ke.toSig(W("DER", v));
|
|
1095
1095
|
return new y(N, k);
|
|
1096
1096
|
}
|
|
1097
1097
|
assertValidity() {
|
|
@@ -1110,7 +1110,7 @@ function ss(e) {
|
|
|
1110
1110
|
const O = C === 2 || C === 3 ? N + t.n : N;
|
|
1111
1111
|
if (O >= n.ORDER)
|
|
1112
1112
|
throw new Error("recovery id 2 or 3 invalid");
|
|
1113
|
-
const $ = C & 1 ? "03" : "02", Q = l.fromHex($ + b(O)), ge =
|
|
1113
|
+
const $ = C & 1 ? "03" : "02", Q = l.fromHex($ + b(O)), ge = a(O), Le = c(-I * ge), Ve = c(k * ge), we = l.BASE.multiplyAndAddUnsafe(Q, Le, Ve);
|
|
1114
1114
|
if (!we)
|
|
1115
1115
|
throw new Error("point at infinify");
|
|
1116
1116
|
return we.assertValidity(), we;
|
|
@@ -1120,14 +1120,14 @@ function ss(e) {
|
|
|
1120
1120
|
return p(this.s);
|
|
1121
1121
|
}
|
|
1122
1122
|
normalizeS() {
|
|
1123
|
-
return this.hasHighS() ? new y(this.r,
|
|
1123
|
+
return this.hasHighS() ? new y(this.r, c(-this.s), this.recovery) : this;
|
|
1124
1124
|
}
|
|
1125
1125
|
// DER-encoded
|
|
1126
1126
|
toDERRawBytes() {
|
|
1127
1127
|
return De(this.toDERHex());
|
|
1128
1128
|
}
|
|
1129
1129
|
toDERHex() {
|
|
1130
|
-
return
|
|
1130
|
+
return ke.hexFromSig({ r: this.r, s: this.s });
|
|
1131
1131
|
}
|
|
1132
1132
|
// padded bytes of r, then padded bytes of s
|
|
1133
1133
|
toCompactRawBytes() {
|
|
@@ -1137,7 +1137,7 @@ function ss(e) {
|
|
|
1137
1137
|
return b(this.r) + b(this.s);
|
|
1138
1138
|
}
|
|
1139
1139
|
}
|
|
1140
|
-
const
|
|
1140
|
+
const m = {
|
|
1141
1141
|
isValidPrivateKey(w) {
|
|
1142
1142
|
try {
|
|
1143
1143
|
return f(w), !0;
|
|
@@ -1166,68 +1166,68 @@ function ss(e) {
|
|
|
1166
1166
|
return v._setWindowSize(w), v.multiply(BigInt(3)), v;
|
|
1167
1167
|
}
|
|
1168
1168
|
};
|
|
1169
|
-
function
|
|
1169
|
+
function A(w, v = !0) {
|
|
1170
1170
|
return l.fromPrivateKey(w).toRawBytes(v);
|
|
1171
1171
|
}
|
|
1172
|
-
function
|
|
1172
|
+
function U(w) {
|
|
1173
1173
|
const v = w instanceof Uint8Array, N = typeof w == "string", k = (v || N) && w.length;
|
|
1174
1174
|
return v ? k === i || k === s : N ? k === 2 * i || k === 2 * s : w instanceof l;
|
|
1175
1175
|
}
|
|
1176
1176
|
function B(w, v, N = !0) {
|
|
1177
|
-
if (
|
|
1177
|
+
if (U(w))
|
|
1178
1178
|
throw new Error("first arg must be private key");
|
|
1179
|
-
if (!
|
|
1179
|
+
if (!U(v))
|
|
1180
1180
|
throw new Error("second arg must be public key");
|
|
1181
1181
|
return l.fromHex(v).multiply(f(w)).toRawBytes(N);
|
|
1182
1182
|
}
|
|
1183
|
-
const
|
|
1183
|
+
const E = t.bits2int || function(w) {
|
|
1184
1184
|
const v = F(w), N = w.length * 8 - t.nBitLength;
|
|
1185
1185
|
return N > 0 ? v >> BigInt(N) : v;
|
|
1186
1186
|
}, x = t.bits2int_modN || function(w) {
|
|
1187
|
-
return
|
|
1188
|
-
},
|
|
1187
|
+
return c(E(w));
|
|
1188
|
+
}, S = Jt(t.nBitLength);
|
|
1189
1189
|
function P(w) {
|
|
1190
1190
|
if (typeof w != "bigint")
|
|
1191
1191
|
throw new Error("bigint expected");
|
|
1192
|
-
if (!(ae <= w && w <
|
|
1192
|
+
if (!(ae <= w && w < S))
|
|
1193
1193
|
throw new Error(`bigint expected < 2^${t.nBitLength}`);
|
|
1194
1194
|
return Ne(w, t.nByteLength);
|
|
1195
1195
|
}
|
|
1196
|
-
function
|
|
1196
|
+
function _(w, v, N = K) {
|
|
1197
1197
|
if (["recovered", "canonical"].some((Ke) => Ke in N))
|
|
1198
1198
|
throw new Error("sign() legacy options not supported");
|
|
1199
1199
|
const { hash: k, randomBytes: C } = t;
|
|
1200
1200
|
let { lowS: I, prehash: O, extraEntropy: $ } = N;
|
|
1201
1201
|
I == null && (I = !0), w = W("msgHash", w), O && (w = W("prehashed msgHash", k(w)));
|
|
1202
|
-
const Q = x(w), ge = f(v),
|
|
1202
|
+
const Q = x(w), ge = f(v), Le = [P(ge), P(Q)];
|
|
1203
1203
|
if ($ != null) {
|
|
1204
1204
|
const Ke = $ === !0 ? C(n.BYTES) : $;
|
|
1205
|
-
|
|
1205
|
+
Le.push(W("extraEntropy", Ke));
|
|
1206
1206
|
}
|
|
1207
|
-
const Ve = Ue(...
|
|
1208
|
-
function
|
|
1209
|
-
const
|
|
1210
|
-
if (!g(
|
|
1207
|
+
const Ve = Ue(...Le), we = Q;
|
|
1208
|
+
function Et(Ke) {
|
|
1209
|
+
const $e = E(Ke);
|
|
1210
|
+
if (!g($e))
|
|
1211
1211
|
return;
|
|
1212
|
-
const
|
|
1212
|
+
const Sn = a($e), Te = l.BASE.multiply($e).toAffine(), ee = c(Te.x);
|
|
1213
1213
|
if (ee === ae)
|
|
1214
1214
|
return;
|
|
1215
|
-
const
|
|
1216
|
-
if (
|
|
1215
|
+
const Re = c(Sn * c(we + ee * ge));
|
|
1216
|
+
if (Re === ae)
|
|
1217
1217
|
return;
|
|
1218
|
-
let Nn = (
|
|
1219
|
-
return I && p(
|
|
1218
|
+
let Nn = (Te.x === ee ? 0 : 2) | Number(Te.y & Y), An = Re;
|
|
1219
|
+
return I && p(Re) && (An = h(Re), Nn ^= 1), new y(ee, An, Nn);
|
|
1220
1220
|
}
|
|
1221
|
-
return { seed: Ve, k2sig:
|
|
1221
|
+
return { seed: Ve, k2sig: Et };
|
|
1222
1222
|
}
|
|
1223
1223
|
const K = { lowS: t.lowS, prehash: !1 }, T = { lowS: t.lowS, prehash: !1 };
|
|
1224
1224
|
function R(w, v, N = K) {
|
|
1225
|
-
const { seed: k, k2sig: C } =
|
|
1225
|
+
const { seed: k, k2sig: C } = _(w, v, N), I = t;
|
|
1226
1226
|
return Jn(I.hash.outputLen, I.nByteLength, I.hmac)(k, C);
|
|
1227
1227
|
}
|
|
1228
1228
|
l.BASE._setWindowSize(8);
|
|
1229
1229
|
function H(w, v, N, k = T) {
|
|
1230
|
-
var
|
|
1230
|
+
var Te;
|
|
1231
1231
|
const C = w;
|
|
1232
1232
|
if (v = W("msgHash", v), N = W("publicKey", N), "strict" in k)
|
|
1233
1233
|
throw new Error("options.strict was renamed to lowS");
|
|
@@ -1238,13 +1238,13 @@ function ss(e) {
|
|
|
1238
1238
|
try {
|
|
1239
1239
|
$ = y.fromDER(C);
|
|
1240
1240
|
} catch (ee) {
|
|
1241
|
-
if (!(ee instanceof
|
|
1241
|
+
if (!(ee instanceof ke.Err))
|
|
1242
1242
|
throw ee;
|
|
1243
1243
|
$ = y.fromCompact(C);
|
|
1244
1244
|
}
|
|
1245
1245
|
else if (typeof C == "object" && typeof C.r == "bigint" && typeof C.s == "bigint") {
|
|
1246
|
-
const { r: ee, s:
|
|
1247
|
-
$ = new y(ee,
|
|
1246
|
+
const { r: ee, s: Re } = C;
|
|
1247
|
+
$ = new y(ee, Re);
|
|
1248
1248
|
} else
|
|
1249
1249
|
throw new Error("PARSE");
|
|
1250
1250
|
Q = l.fromHex(N);
|
|
@@ -1256,23 +1256,23 @@ function ss(e) {
|
|
|
1256
1256
|
if (I && $.hasHighS())
|
|
1257
1257
|
return !1;
|
|
1258
1258
|
O && (v = t.hash(v));
|
|
1259
|
-
const { r: ge, s:
|
|
1260
|
-
return
|
|
1259
|
+
const { r: ge, s: Le } = $, Ve = x(v), we = a(Le), Et = c(Ve * we), Ke = c(ge * we), $e = (Te = l.BASE.multiplyAndAddUnsafe(Q, Et, Ke)) == null ? void 0 : Te.toAffine();
|
|
1260
|
+
return $e ? c($e.x) === ge : !1;
|
|
1261
1261
|
}
|
|
1262
1262
|
return {
|
|
1263
1263
|
CURVE: t,
|
|
1264
|
-
getPublicKey:
|
|
1264
|
+
getPublicKey: A,
|
|
1265
1265
|
getSharedSecret: B,
|
|
1266
1266
|
sign: R,
|
|
1267
1267
|
verify: H,
|
|
1268
1268
|
ProjectivePoint: l,
|
|
1269
1269
|
Signature: y,
|
|
1270
|
-
utils:
|
|
1270
|
+
utils: m
|
|
1271
1271
|
};
|
|
1272
1272
|
}
|
|
1273
1273
|
let tr = class extends Wn {
|
|
1274
1274
|
constructor(t, n) {
|
|
1275
|
-
super(), this.finished = !1, this.destroyed = !1,
|
|
1275
|
+
super(), this.finished = !1, this.destroyed = !1, Ei(t);
|
|
1276
1276
|
const r = Wt(n);
|
|
1277
1277
|
if (this.iHash = t.create(), typeof this.iHash.update != "function")
|
|
1278
1278
|
throw new Error("Expected instance of class which extends utils.Hash");
|
|
@@ -1298,8 +1298,8 @@ let tr = class extends Wn {
|
|
|
1298
1298
|
}
|
|
1299
1299
|
_cloneInto(t) {
|
|
1300
1300
|
t || (t = Object.create(Object.getPrototypeOf(this), {}));
|
|
1301
|
-
const { oHash: n, iHash: r, finished: i, destroyed: s, blockLen: o, outputLen:
|
|
1302
|
-
return t = t, t.finished = i, t.destroyed = s, t.blockLen = o, t.outputLen =
|
|
1301
|
+
const { oHash: n, iHash: r, finished: i, destroyed: s, blockLen: o, outputLen: c } = this;
|
|
1302
|
+
return t = t, t.finished = i, t.destroyed = s, t.blockLen = o, t.outputLen = c, t.oHash = n._cloneInto(t.oHash), t.iHash = r._cloneInto(t.iHash), t;
|
|
1303
1303
|
}
|
|
1304
1304
|
destroy() {
|
|
1305
1305
|
this.destroyed = !0, this.oHash.destroy(), this.iHash.destroy();
|
|
@@ -1320,14 +1320,14 @@ function as(e, t) {
|
|
|
1320
1320
|
return Object.freeze({ ...n(t), create: n });
|
|
1321
1321
|
}
|
|
1322
1322
|
/*! noble-curves - MIT License (c) 2022 Paul Miller (paulmillr.com) */
|
|
1323
|
-
const ct = BigInt("0xfffffffffffffffffffffffffffffffffffffffffffffffffffffffefffffc2f"), tt = BigInt("0xfffffffffffffffffffffffffffffffebaaedce6af48a03bbfd25e8cd0364141"), rr = BigInt(1), nt = BigInt(2),
|
|
1323
|
+
const ct = BigInt("0xfffffffffffffffffffffffffffffffffffffffffffffffffffffffefffffc2f"), tt = BigInt("0xfffffffffffffffffffffffffffffffebaaedce6af48a03bbfd25e8cd0364141"), rr = BigInt(1), nt = BigInt(2), Un = (e, t) => (e + t / nt) / t;
|
|
1324
1324
|
function ir(e) {
|
|
1325
|
-
const t = ct, n = BigInt(3), r = BigInt(6), i = BigInt(11), s = BigInt(22), o = BigInt(23),
|
|
1326
|
-
if (!Rt.eql(Rt.sqr(
|
|
1325
|
+
const t = ct, n = BigInt(3), r = BigInt(6), i = BigInt(11), s = BigInt(22), o = BigInt(23), c = BigInt(44), a = BigInt(88), l = e * e * e % t, f = l * l * e % t, u = J(f, n, t) * f % t, g = J(u, n, t) * f % t, b = J(g, nt, t) * l % t, p = J(b, i, t) * b % t, h = J(p, s, t) * p % t, d = J(h, c, t) * h % t, y = J(d, a, t) * d % t, m = J(y, c, t) * h % t, A = J(m, n, t) * f % t, U = J(A, o, t) * p % t, B = J(U, r, t) * l % t, E = J(B, nt, t);
|
|
1326
|
+
if (!Rt.eql(Rt.sqr(E), e))
|
|
1327
1327
|
throw new Error("Cannot find square root");
|
|
1328
|
-
return
|
|
1328
|
+
return E;
|
|
1329
1329
|
}
|
|
1330
|
-
const Rt = Ji(ct, void 0, void 0, { sqrt: ir }),
|
|
1330
|
+
const Rt = Ji(ct, void 0, void 0, { sqrt: ir }), Ie = as({
|
|
1331
1331
|
a: BigInt(0),
|
|
1332
1332
|
b: BigInt(7),
|
|
1333
1333
|
Fp: Rt,
|
|
@@ -1346,8 +1346,8 @@ const Rt = Ji(ct, void 0, void 0, { sqrt: ir }), _e = as({
|
|
|
1346
1346
|
endo: {
|
|
1347
1347
|
beta: BigInt("0x7ae96a2b657c07106e64479eac3434e99cf0497512f58995c1396c28719501ee"),
|
|
1348
1348
|
splitScalar: (e) => {
|
|
1349
|
-
const t = tt, n = BigInt("0x3086d221a7d46bcde86c90e49284eb15"), r = -rr * BigInt("0xe4437ed6010e88286f547fa90abfe4c3"), i = BigInt("0x114ca50f7a8e2f3f657c1108d9d44cfd8"), s = n, o = BigInt("0x100000000000000000000000000000000"),
|
|
1350
|
-
let l = V(e -
|
|
1349
|
+
const t = tt, n = BigInt("0x3086d221a7d46bcde86c90e49284eb15"), r = -rr * BigInt("0xe4437ed6010e88286f547fa90abfe4c3"), i = BigInt("0x114ca50f7a8e2f3f657c1108d9d44cfd8"), s = n, o = BigInt("0x100000000000000000000000000000000"), c = Un(s * e, t), a = Un(-r * e, t);
|
|
1350
|
+
let l = V(e - c * n - a * i, t), f = V(-c * r - a * s, t);
|
|
1351
1351
|
const u = l > o, g = f > o;
|
|
1352
1352
|
if (u && (l = t - l), g && (f = t - f), l > o || f > o)
|
|
1353
1353
|
throw new Error("splitScalar: Endomorphism failed, k=" + e);
|
|
@@ -1363,46 +1363,46 @@ function rt(e, ...t) {
|
|
|
1363
1363
|
}
|
|
1364
1364
|
return Lt(Ue(n, ...t));
|
|
1365
1365
|
}
|
|
1366
|
-
const Yt = (e) => e.toRawBytes(!0).slice(1), Ot = (e) => Ne(e, 32),
|
|
1366
|
+
const Yt = (e) => e.toRawBytes(!0).slice(1), Ot = (e) => Ne(e, 32), At = (e) => V(e, ct), Fe = (e) => V(e, tt), Xt = Ie.ProjectivePoint, us = (e, t, n) => Xt.BASE.multiplyAndAddUnsafe(e, t, n);
|
|
1367
1367
|
function Mt(e) {
|
|
1368
|
-
let t =
|
|
1369
|
-
return { scalar: n.hasEvenY() ? t :
|
|
1368
|
+
let t = Ie.utils.normPrivateKeyToScalar(e), n = Xt.fromPrivateKey(t);
|
|
1369
|
+
return { scalar: n.hasEvenY() ? t : Fe(-t), bytes: Yt(n) };
|
|
1370
1370
|
}
|
|
1371
1371
|
function or(e) {
|
|
1372
1372
|
if (!sr(e))
|
|
1373
1373
|
throw new Error("bad x: need 0 < x < p");
|
|
1374
|
-
const t =
|
|
1374
|
+
const t = At(e * e), n = At(t * e + BigInt(7));
|
|
1375
1375
|
let r = ir(n);
|
|
1376
|
-
r % nt !== ut && (r =
|
|
1376
|
+
r % nt !== ut && (r = At(-r));
|
|
1377
1377
|
const i = new Xt(e, r, rr);
|
|
1378
1378
|
return i.assertValidity(), i;
|
|
1379
1379
|
}
|
|
1380
1380
|
function ar(...e) {
|
|
1381
|
-
return
|
|
1381
|
+
return Fe(F(rt("BIP0340/challenge", ...e)));
|
|
1382
1382
|
}
|
|
1383
1383
|
function ls(e) {
|
|
1384
1384
|
return Mt(e).bytes;
|
|
1385
1385
|
}
|
|
1386
1386
|
function fs(e, t, n = Zn(32)) {
|
|
1387
|
-
const r = W("message", e), { bytes: i, scalar: s } = Mt(t), o = W("auxRand", n, 32),
|
|
1387
|
+
const r = W("message", e), { bytes: i, scalar: s } = Mt(t), o = W("auxRand", n, 32), c = Ot(s ^ F(rt("BIP0340/aux", o))), a = rt("BIP0340/nonce", c, i, r), l = Fe(F(a));
|
|
1388
1388
|
if (l === ut)
|
|
1389
1389
|
throw new Error("sign failed: k is zero");
|
|
1390
1390
|
const { bytes: f, scalar: u } = Mt(l), g = ar(f, i, r), b = new Uint8Array(64);
|
|
1391
|
-
if (b.set(f, 0), b.set(Ot(
|
|
1391
|
+
if (b.set(f, 0), b.set(Ot(Fe(u + g * s)), 32), !cr(b, r, i))
|
|
1392
1392
|
throw new Error("sign: Invalid signature produced");
|
|
1393
1393
|
return b;
|
|
1394
1394
|
}
|
|
1395
1395
|
function cr(e, t, n) {
|
|
1396
1396
|
const r = W("signature", e, 64), i = W("message", t), s = W("publicKey", n, 32);
|
|
1397
1397
|
try {
|
|
1398
|
-
const o = or(F(s)),
|
|
1399
|
-
if (!sr(
|
|
1398
|
+
const o = or(F(s)), c = F(r.subarray(0, 32));
|
|
1399
|
+
if (!sr(c))
|
|
1400
1400
|
return !1;
|
|
1401
|
-
const
|
|
1402
|
-
if (!cs(
|
|
1401
|
+
const a = F(r.subarray(32, 64));
|
|
1402
|
+
if (!cs(a))
|
|
1403
1403
|
return !1;
|
|
1404
|
-
const l = ar(Ot(
|
|
1405
|
-
return !(!f || !f.hasEvenY() || f.toAffine().x !==
|
|
1404
|
+
const l = ar(Ot(c), Yt(o), i), f = us(o, a, Fe(-l));
|
|
1405
|
+
return !(!f || !f.hasEvenY() || f.toAffine().x !== c);
|
|
1406
1406
|
} catch {
|
|
1407
1407
|
return !1;
|
|
1408
1408
|
}
|
|
@@ -1412,7 +1412,7 @@ const We = {
|
|
|
1412
1412
|
sign: fs,
|
|
1413
1413
|
verify: cr,
|
|
1414
1414
|
utils: {
|
|
1415
|
-
randomPrivateKey:
|
|
1415
|
+
randomPrivateKey: Ie.utils.randomPrivateKey,
|
|
1416
1416
|
lift_x: or,
|
|
1417
1417
|
pointToBytes: Yt,
|
|
1418
1418
|
numberToBytesBE: Ne,
|
|
@@ -1454,7 +1454,7 @@ function ps(e) {
|
|
|
1454
1454
|
throw new Error(`utf8ToBytes expected string, got ${typeof e}`);
|
|
1455
1455
|
return new Uint8Array(new TextEncoder().encode(e));
|
|
1456
1456
|
}
|
|
1457
|
-
function
|
|
1457
|
+
function Je(e) {
|
|
1458
1458
|
if (typeof e == "string" && (e = ps(e)), !Qt(e))
|
|
1459
1459
|
throw new Error(`expected Uint8Array, got ${typeof e}`);
|
|
1460
1460
|
return e;
|
|
@@ -1475,7 +1475,7 @@ class ur {
|
|
|
1475
1475
|
}
|
|
1476
1476
|
}
|
|
1477
1477
|
function lr(e) {
|
|
1478
|
-
const t = (r) => e().update(
|
|
1478
|
+
const t = (r) => e().update(Je(r)).digest(), n = e();
|
|
1479
1479
|
return t.outputLen = n.outputLen, t.blockLen = n.blockLen, t.create = () => e(), t;
|
|
1480
1480
|
}
|
|
1481
1481
|
function fr(e = 32) {
|
|
@@ -1525,27 +1525,27 @@ const se = {
|
|
|
1525
1525
|
function vs(e, t, n, r) {
|
|
1526
1526
|
if (typeof e.setBigUint64 == "function")
|
|
1527
1527
|
return e.setBigUint64(t, n, r);
|
|
1528
|
-
const i = BigInt(32), s = BigInt(4294967295), o = Number(n >> i & s),
|
|
1529
|
-
e.setUint32(t +
|
|
1528
|
+
const i = BigInt(32), s = BigInt(4294967295), o = Number(n >> i & s), c = Number(n & s), a = r ? 4 : 0, l = r ? 0 : 4;
|
|
1529
|
+
e.setUint32(t + a, o, r), e.setUint32(t + l, c, r);
|
|
1530
1530
|
}
|
|
1531
|
-
class
|
|
1531
|
+
class Es extends ur {
|
|
1532
1532
|
constructor(t, n, r, i) {
|
|
1533
1533
|
super(), this.blockLen = t, this.outputLen = n, this.padOffset = r, this.isLE = i, this.finished = !1, this.length = 0, this.pos = 0, this.destroyed = !1, this.buffer = new Uint8Array(t), this.view = Ct(this.buffer);
|
|
1534
1534
|
}
|
|
1535
1535
|
update(t) {
|
|
1536
1536
|
se.exists(this);
|
|
1537
1537
|
const { view: n, buffer: r, blockLen: i } = this;
|
|
1538
|
-
t =
|
|
1538
|
+
t = Je(t);
|
|
1539
1539
|
const s = t.length;
|
|
1540
1540
|
for (let o = 0; o < s; ) {
|
|
1541
|
-
const
|
|
1542
|
-
if (
|
|
1543
|
-
const
|
|
1541
|
+
const c = Math.min(i - this.pos, s - o);
|
|
1542
|
+
if (c === i) {
|
|
1543
|
+
const a = Ct(t);
|
|
1544
1544
|
for (; i <= s - o; o += i)
|
|
1545
|
-
this.process(
|
|
1545
|
+
this.process(a, o);
|
|
1546
1546
|
continue;
|
|
1547
1547
|
}
|
|
1548
|
-
r.set(t.subarray(o, o +
|
|
1548
|
+
r.set(t.subarray(o, o + c), this.pos), this.pos += c, o += c, this.pos === i && (this.process(n, 0), this.pos = 0);
|
|
1549
1549
|
}
|
|
1550
1550
|
return this.length += t.length, this.roundClean(), this;
|
|
1551
1551
|
}
|
|
@@ -1557,14 +1557,14 @@ class ms extends ur {
|
|
|
1557
1557
|
for (let u = o; u < i; u++)
|
|
1558
1558
|
n[u] = 0;
|
|
1559
1559
|
vs(r, i - 8, BigInt(this.length * 8), s), this.process(r, 0);
|
|
1560
|
-
const
|
|
1561
|
-
if (
|
|
1560
|
+
const c = Ct(t), a = this.outputLen;
|
|
1561
|
+
if (a % 4)
|
|
1562
1562
|
throw new Error("_sha2: outputLen should be aligned to 32bit");
|
|
1563
|
-
const l =
|
|
1563
|
+
const l = a / 4, f = this.get();
|
|
1564
1564
|
if (l > f.length)
|
|
1565
1565
|
throw new Error("_sha2: outputLen bigger than state");
|
|
1566
1566
|
for (let u = 0; u < l; u++)
|
|
1567
|
-
|
|
1567
|
+
c.setUint32(4 * u, f[u], s);
|
|
1568
1568
|
}
|
|
1569
1569
|
digest() {
|
|
1570
1570
|
const { buffer: t, outputLen: n } = this;
|
|
@@ -1574,11 +1574,11 @@ class ms extends ur {
|
|
|
1574
1574
|
}
|
|
1575
1575
|
_cloneInto(t) {
|
|
1576
1576
|
t || (t = new this.constructor()), t.set(...this.get());
|
|
1577
|
-
const { blockLen: n, buffer: r, length: i, finished: s, destroyed: o, pos:
|
|
1578
|
-
return t.length = i, t.pos =
|
|
1577
|
+
const { blockLen: n, buffer: r, length: i, finished: s, destroyed: o, pos: c } = this;
|
|
1578
|
+
return t.length = i, t.pos = c, t.finished = s, t.destroyed = o, i % n && t.buffer.set(r), t;
|
|
1579
1579
|
}
|
|
1580
1580
|
}
|
|
1581
|
-
const
|
|
1581
|
+
const ms = (e, t, n) => e & t ^ ~e & n, xs = (e, t, n) => e & t ^ e & n ^ t & n, Ss = new Uint32Array([
|
|
1582
1582
|
1116352408,
|
|
1583
1583
|
1899447441,
|
|
1584
1584
|
3049323471,
|
|
@@ -1643,7 +1643,7 @@ const Es = (e, t, n) => e & t ^ ~e & n, xs = (e, t, n) => e & t ^ e & n ^ t & n,
|
|
|
1643
1643
|
2756734187,
|
|
1644
1644
|
3204031479,
|
|
1645
1645
|
3329325298
|
|
1646
|
-
]),
|
|
1646
|
+
]), Ee = new Uint32Array([
|
|
1647
1647
|
1779033703,
|
|
1648
1648
|
3144134277,
|
|
1649
1649
|
1013904242,
|
|
@@ -1652,35 +1652,35 @@ const Es = (e, t, n) => e & t ^ ~e & n, xs = (e, t, n) => e & t ^ e & n ^ t & n,
|
|
|
1652
1652
|
2600822924,
|
|
1653
1653
|
528734635,
|
|
1654
1654
|
1541459225
|
|
1655
|
-
]),
|
|
1656
|
-
class dr extends
|
|
1655
|
+
]), me = new Uint32Array(64);
|
|
1656
|
+
class dr extends Es {
|
|
1657
1657
|
constructor() {
|
|
1658
|
-
super(64, 32, 8, !1), this.A =
|
|
1658
|
+
super(64, 32, 8, !1), this.A = Ee[0] | 0, this.B = Ee[1] | 0, this.C = Ee[2] | 0, this.D = Ee[3] | 0, this.E = Ee[4] | 0, this.F = Ee[5] | 0, this.G = Ee[6] | 0, this.H = Ee[7] | 0;
|
|
1659
1659
|
}
|
|
1660
1660
|
get() {
|
|
1661
|
-
const { A: t, B: n, C: r, D: i, E: s, F: o, G:
|
|
1662
|
-
return [t, n, r, i, s, o,
|
|
1661
|
+
const { A: t, B: n, C: r, D: i, E: s, F: o, G: c, H: a } = this;
|
|
1662
|
+
return [t, n, r, i, s, o, c, a];
|
|
1663
1663
|
}
|
|
1664
1664
|
// prettier-ignore
|
|
1665
|
-
set(t, n, r, i, s, o,
|
|
1666
|
-
this.A = t | 0, this.B = n | 0, this.C = r | 0, this.D = i | 0, this.E = s | 0, this.F = o | 0, this.G =
|
|
1665
|
+
set(t, n, r, i, s, o, c, a) {
|
|
1666
|
+
this.A = t | 0, this.B = n | 0, this.C = r | 0, this.D = i | 0, this.E = s | 0, this.F = o | 0, this.G = c | 0, this.H = a | 0;
|
|
1667
1667
|
}
|
|
1668
1668
|
process(t, n) {
|
|
1669
1669
|
for (let u = 0; u < 16; u++, n += 4)
|
|
1670
|
-
|
|
1670
|
+
me[u] = t.getUint32(n, !1);
|
|
1671
1671
|
for (let u = 16; u < 64; u++) {
|
|
1672
|
-
const g =
|
|
1673
|
-
|
|
1672
|
+
const g = me[u - 15], b = me[u - 2], p = ie(g, 7) ^ ie(g, 18) ^ g >>> 3, h = ie(b, 17) ^ ie(b, 19) ^ b >>> 10;
|
|
1673
|
+
me[u] = h + me[u - 7] + p + me[u - 16] | 0;
|
|
1674
1674
|
}
|
|
1675
|
-
let { A: r, B: i, C: s, D: o, E:
|
|
1675
|
+
let { A: r, B: i, C: s, D: o, E: c, F: a, G: l, H: f } = this;
|
|
1676
1676
|
for (let u = 0; u < 64; u++) {
|
|
1677
|
-
const g = ie(
|
|
1678
|
-
f = l, l =
|
|
1677
|
+
const g = ie(c, 6) ^ ie(c, 11) ^ ie(c, 25), b = f + g + ms(c, a, l) + Ss[u] + me[u] | 0, h = (ie(r, 2) ^ ie(r, 13) ^ ie(r, 22)) + xs(r, i, s) | 0;
|
|
1678
|
+
f = l, l = a, a = c, c = o + b | 0, o = s, s = i, i = r, r = b + h | 0;
|
|
1679
1679
|
}
|
|
1680
|
-
r = r + this.A | 0, i = i + this.B | 0, s = s + this.C | 0, o = o + this.D | 0,
|
|
1680
|
+
r = r + this.A | 0, i = i + this.B | 0, s = s + this.C | 0, o = o + this.D | 0, c = c + this.E | 0, a = a + this.F | 0, l = l + this.G | 0, f = f + this.H | 0, this.set(r, i, s, o, c, a, l, f);
|
|
1681
1681
|
}
|
|
1682
1682
|
roundClean() {
|
|
1683
|
-
|
|
1683
|
+
me.fill(0);
|
|
1684
1684
|
}
|
|
1685
1685
|
destroy() {
|
|
1686
1686
|
this.set(0, 0, 0, 0, 0, 0, 0, 0), this.buffer.fill(0);
|
|
@@ -1796,18 +1796,18 @@ function Ln(e, t, n) {
|
|
|
1796
1796
|
if (ze(o), o < 0 || o >= t)
|
|
1797
1797
|
throw new Error(`Wrong integer: ${o}`);
|
|
1798
1798
|
}); ; ) {
|
|
1799
|
-
let o = 0,
|
|
1800
|
-
for (let
|
|
1801
|
-
const l = s[
|
|
1799
|
+
let o = 0, c = !0;
|
|
1800
|
+
for (let a = r; a < s.length; a++) {
|
|
1801
|
+
const l = s[a], f = t * o + l;
|
|
1802
1802
|
if (!Number.isSafeInteger(f) || t * o / t !== o || f - l !== t * o)
|
|
1803
1803
|
throw new Error("convertRadix: carry overflow");
|
|
1804
|
-
if (o = f % n, s[
|
|
1804
|
+
if (o = f % n, s[a] = Math.floor(f / n), !Number.isSafeInteger(s[a]) || s[a] * n + o !== f)
|
|
1805
1805
|
throw new Error("convertRadix: carry overflow");
|
|
1806
|
-
if (
|
|
1807
|
-
s[
|
|
1806
|
+
if (c)
|
|
1807
|
+
s[a] ? c = !1 : r = a;
|
|
1808
1808
|
else continue;
|
|
1809
1809
|
}
|
|
1810
|
-
if (i.push(o),
|
|
1810
|
+
if (i.push(o), c)
|
|
1811
1811
|
break;
|
|
1812
1812
|
}
|
|
1813
1813
|
for (let o = 0; o < e.length - 1 && e[o] === 0; o++)
|
|
@@ -1825,23 +1825,23 @@ function Ht(e, t, n, r) {
|
|
|
1825
1825
|
if (it(t, n) > 32)
|
|
1826
1826
|
throw new Error(`convertRadix2: carry overflow from=${t} to=${n} carryBits=${it(t, n)}`);
|
|
1827
1827
|
let i = 0, s = 0;
|
|
1828
|
-
const o = 2 ** n - 1,
|
|
1829
|
-
for (const
|
|
1830
|
-
if (ze(
|
|
1831
|
-
throw new Error(`convertRadix2: invalid data word=${
|
|
1832
|
-
if (i = i << t |
|
|
1828
|
+
const o = 2 ** n - 1, c = [];
|
|
1829
|
+
for (const a of e) {
|
|
1830
|
+
if (ze(a), a >= 2 ** t)
|
|
1831
|
+
throw new Error(`convertRadix2: invalid data word=${a} from=${t}`);
|
|
1832
|
+
if (i = i << t | a, s + t > 32)
|
|
1833
1833
|
throw new Error(`convertRadix2: carry overflow pos=${s} from=${t}`);
|
|
1834
1834
|
for (s += t; s >= n; s -= n)
|
|
1835
|
-
|
|
1835
|
+
c.push((i >> s - n & o) >>> 0);
|
|
1836
1836
|
i &= 2 ** s - 1;
|
|
1837
1837
|
}
|
|
1838
1838
|
if (i = i << n - s & o, !r && s >= t)
|
|
1839
1839
|
throw new Error("Excess padding");
|
|
1840
1840
|
if (!r && i)
|
|
1841
1841
|
throw new Error(`Non-zero padding: ${i}`);
|
|
1842
|
-
return r && s > 0 &&
|
|
1842
|
+
return r && s > 0 && c.push(i >>> 0), c;
|
|
1843
1843
|
}
|
|
1844
|
-
function
|
|
1844
|
+
function As(e) {
|
|
1845
1845
|
return ze(e), {
|
|
1846
1846
|
encode: (t) => {
|
|
1847
1847
|
if (!(t instanceof Uint8Array))
|
|
@@ -1855,7 +1855,7 @@ function Ss(e) {
|
|
|
1855
1855
|
}
|
|
1856
1856
|
};
|
|
1857
1857
|
}
|
|
1858
|
-
function
|
|
1858
|
+
function Ae(e, t = !1) {
|
|
1859
1859
|
if (ze(e), e <= 0 || e > 32)
|
|
1860
1860
|
throw new Error("radix2: bits should be in (0..32]");
|
|
1861
1861
|
if (it(8, e) > 32 || it(e, 8) > 32)
|
|
@@ -1883,10 +1883,10 @@ function $n(e) {
|
|
|
1883
1883
|
}
|
|
1884
1884
|
};
|
|
1885
1885
|
}
|
|
1886
|
-
const Ks = de(
|
|
1887
|
-
de(
|
|
1888
|
-
de(
|
|
1889
|
-
const he = de(
|
|
1886
|
+
const Ks = de(Ae(4), pe("0123456789ABCDEF"), ye("")), Cs = de(Ae(5), pe("ABCDEFGHIJKLMNOPQRSTUVWXYZ234567"), ft(5), ye(""));
|
|
1887
|
+
de(Ae(5), pe("0123456789ABCDEFGHIJKLMNOPQRSTUV"), ft(5), ye(""));
|
|
1888
|
+
de(Ae(5), pe("0123456789ABCDEFGHJKMNPQRSTVWXYZ"), ye(""), pr((e) => e.toUpperCase().replace(/O/g, "0").replace(/[IL]/g, "1")));
|
|
1889
|
+
const he = de(Ae(6), pe("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/"), ft(6), ye("")), Bs = de(Ae(6), pe("ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-_"), ft(6), ye("")), en = (e) => de(As(58), pe(e), ye("")), qt = en("123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz");
|
|
1890
1890
|
en("123456789abcdefghijkmnopqrstuvwxyzABCDEFGHJKLMNPQRSTUVWXYZ");
|
|
1891
1891
|
en("rpshnaf39wBUDNEGHJKLM4PQRST7VWXYZ2bcdeCg65jkm8oFqi1tuvAxyz");
|
|
1892
1892
|
const Tn = [0, 2, 3, 5, 6, 7, 9, 10, 11], ks = {
|
|
@@ -1936,7 +1936,7 @@ function On(e, t, n = 1) {
|
|
|
1936
1936
|
return i ^= n, Dt.encode(Ht([i % 2 ** 30], 30, 5, !1));
|
|
1937
1937
|
}
|
|
1938
1938
|
function gr(e) {
|
|
1939
|
-
const t = e === "bech32" ? 1 : 734539939, n =
|
|
1939
|
+
const t = e === "bech32" ? 1 : 734539939, n = Ae(5), r = n.decode, i = n.encode, s = $n(r);
|
|
1940
1940
|
function o(f, u, g = 90) {
|
|
1941
1941
|
if (typeof f != "string")
|
|
1942
1942
|
throw new Error(`bech32.encode prefix should be string, not ${typeof f}`);
|
|
@@ -1947,7 +1947,7 @@ function gr(e) {
|
|
|
1947
1947
|
throw new TypeError(`Length ${b} exceeds limit ${g}`);
|
|
1948
1948
|
return f = f.toLowerCase(), `${f}1${Dt.encode(u)}${On(f, u, t)}`;
|
|
1949
1949
|
}
|
|
1950
|
-
function
|
|
1950
|
+
function c(f, u = 90) {
|
|
1951
1951
|
if (typeof f != "string")
|
|
1952
1952
|
throw new Error(`bech32.decode input should be string, not ${typeof f}`);
|
|
1953
1953
|
if (f.length < 8 || u !== !1 && f.length > u)
|
|
@@ -1967,25 +1967,25 @@ function gr(e) {
|
|
|
1967
1967
|
throw new Error(`Invalid checksum in ${f}: expected "${y}"`);
|
|
1968
1968
|
return { prefix: p, words: d };
|
|
1969
1969
|
}
|
|
1970
|
-
const
|
|
1970
|
+
const a = $n(c);
|
|
1971
1971
|
function l(f) {
|
|
1972
|
-
const { prefix: u, words: g } =
|
|
1972
|
+
const { prefix: u, words: g } = c(f, !1);
|
|
1973
1973
|
return { prefix: u, words: g, bytes: r(g) };
|
|
1974
1974
|
}
|
|
1975
|
-
return { encode: o, decode:
|
|
1975
|
+
return { encode: o, decode: c, decodeToBytes: l, decodeUnsafe: a, fromWords: r, fromWordsUnsafe: s, toWords: i };
|
|
1976
1976
|
}
|
|
1977
1977
|
const je = gr("bech32");
|
|
1978
1978
|
gr("bech32m");
|
|
1979
|
-
const
|
|
1979
|
+
const _s = {
|
|
1980
1980
|
encode: (e) => new TextDecoder().decode(e),
|
|
1981
1981
|
decode: (e) => new TextEncoder().encode(e)
|
|
1982
|
-
},
|
|
1982
|
+
}, Us = de(Ae(4), pe("0123456789abcdef"), ye(""), pr((e) => {
|
|
1983
1983
|
if (typeof e != "string" || e.length % 2)
|
|
1984
1984
|
throw new TypeError(`hex.decode: expected string, got ${typeof e} with length ${e.length}`);
|
|
1985
1985
|
return e.toLowerCase();
|
|
1986
1986
|
})), Is = {
|
|
1987
|
-
utf8:
|
|
1988
|
-
hex:
|
|
1987
|
+
utf8: _s,
|
|
1988
|
+
hex: Us,
|
|
1989
1989
|
base16: Ks,
|
|
1990
1990
|
base32: Cs,
|
|
1991
1991
|
base64: he,
|
|
@@ -2028,11 +2028,11 @@ function Rs(e, t) {
|
|
|
2028
2028
|
n |= e[r] ^ t[r];
|
|
2029
2029
|
return n === 0;
|
|
2030
2030
|
}
|
|
2031
|
-
const Os = /* @__NO_SIDE_EFFECTS__ */ (e, t) => (Object.assign(t, e), t),
|
|
2031
|
+
const Os = /* @__NO_SIDE_EFFECTS__ */ (e, t) => (Object.assign(t, e), t), Se = 16, Ms = 283;
|
|
2032
2032
|
function tn(e) {
|
|
2033
2033
|
return e << 1 ^ Ms & -(e >> 7);
|
|
2034
2034
|
}
|
|
2035
|
-
function
|
|
2035
|
+
function He(e, t) {
|
|
2036
2036
|
let n = 0;
|
|
2037
2037
|
for (; t > 0; t >>= 1)
|
|
2038
2038
|
n ^= e & -(t & 1), e = tn(e);
|
|
@@ -2053,15 +2053,15 @@ const jt = /* @__PURE__ */ (() => {
|
|
|
2053
2053
|
function wr(e, t) {
|
|
2054
2054
|
if (e.length !== 256)
|
|
2055
2055
|
throw new Error("Wrong sbox length");
|
|
2056
|
-
const n = new Uint32Array(256).map((l, f) => t(e[f])), r = n.map(kt), i = r.map(kt), s = i.map(kt), o = new Uint32Array(256 * 256),
|
|
2056
|
+
const n = new Uint32Array(256).map((l, f) => t(e[f])), r = n.map(kt), i = r.map(kt), s = i.map(kt), o = new Uint32Array(256 * 256), c = new Uint32Array(256 * 256), a = new Uint16Array(256 * 256);
|
|
2057
2057
|
for (let l = 0; l < 256; l++)
|
|
2058
2058
|
for (let f = 0; f < 256; f++) {
|
|
2059
2059
|
const u = l * 256 + f;
|
|
2060
|
-
o[u] = n[l] ^ r[f],
|
|
2060
|
+
o[u] = n[l] ^ r[f], c[u] = i[l] ^ s[f], a[u] = e[l] << 8 | e[f];
|
|
2061
2061
|
}
|
|
2062
|
-
return { sbox: e, sbox2:
|
|
2062
|
+
return { sbox: e, sbox2: a, T0: n, T1: r, T2: i, T3: s, T01: o, T23: c };
|
|
2063
2063
|
}
|
|
2064
|
-
const nn = /* @__PURE__ */ wr(jt, (e) =>
|
|
2064
|
+
const nn = /* @__PURE__ */ wr(jt, (e) => He(e, 3) << 24 | e << 16 | e << 8 | He(e, 2)), br = /* @__PURE__ */ wr(Ps, (e) => He(e, 11) << 24 | He(e, 13) << 16 | He(e, 9) << 8 | He(e, 14)), qs = /* @__PURE__ */ (() => {
|
|
2065
2065
|
const e = new Uint8Array(16);
|
|
2066
2066
|
for (let t = 0, n = 1; t < 16; t++, n = tn(n))
|
|
2067
2067
|
e[t] = n;
|
|
@@ -2072,23 +2072,23 @@ function vr(e) {
|
|
|
2072
2072
|
const t = e.length;
|
|
2073
2073
|
if (![16, 24, 32].includes(t))
|
|
2074
2074
|
throw new Error(`aes: wrong key size: should be 16, 24 or 32, got: ${t}`);
|
|
2075
|
-
const { sbox2: n } = nn, r = Z(e), i = r.length, s = (
|
|
2075
|
+
const { sbox2: n } = nn, r = Z(e), i = r.length, s = (c) => oe(n, c, c, c, c), o = new Uint32Array(t + 28);
|
|
2076
2076
|
o.set(r);
|
|
2077
|
-
for (let
|
|
2078
|
-
let
|
|
2079
|
-
|
|
2077
|
+
for (let c = i; c < o.length; c++) {
|
|
2078
|
+
let a = o[c - 1];
|
|
2079
|
+
c % i === 0 ? a = s(Hs(a)) ^ qs[c / i - 1] : i > 6 && c % i === 4 && (a = s(a)), o[c] = o[c - i] ^ a;
|
|
2080
2080
|
}
|
|
2081
2081
|
return o;
|
|
2082
2082
|
}
|
|
2083
2083
|
function Ds(e) {
|
|
2084
|
-
const t = vr(e), n = t.slice(), r = t.length, { sbox2: i } = nn, { T0: s, T1: o, T2:
|
|
2084
|
+
const t = vr(e), n = t.slice(), r = t.length, { sbox2: i } = nn, { T0: s, T1: o, T2: c, T3: a } = br;
|
|
2085
2085
|
for (let l = 0; l < r; l += 4)
|
|
2086
2086
|
for (let f = 0; f < 4; f++)
|
|
2087
2087
|
n[l + f] = t[r - l - 4 + f];
|
|
2088
2088
|
t.fill(0);
|
|
2089
2089
|
for (let l = 4; l < r - 4; l++) {
|
|
2090
2090
|
const f = n[l], u = oe(i, f, f, f, f);
|
|
2091
|
-
n[l] = s[u & 255] ^ o[u >>> 8 & 255] ^
|
|
2091
|
+
n[l] = s[u & 255] ^ o[u >>> 8 & 255] ^ c[u >>> 16 & 255] ^ a[u >>> 24];
|
|
2092
2092
|
}
|
|
2093
2093
|
return n;
|
|
2094
2094
|
}
|
|
@@ -2099,30 +2099,30 @@ function oe(e, t, n, r, i) {
|
|
|
2099
2099
|
return e[t & 255 | n & 65280] | e[r >>> 16 & 255 | i >>> 16 & 65280] << 16;
|
|
2100
2100
|
}
|
|
2101
2101
|
function Pn(e, t, n, r, i) {
|
|
2102
|
-
const { sbox2: s, T01: o, T23:
|
|
2103
|
-
let
|
|
2104
|
-
t ^= e[
|
|
2102
|
+
const { sbox2: s, T01: o, T23: c } = nn;
|
|
2103
|
+
let a = 0;
|
|
2104
|
+
t ^= e[a++], n ^= e[a++], r ^= e[a++], i ^= e[a++];
|
|
2105
2105
|
const l = e.length / 4 - 2;
|
|
2106
2106
|
for (let p = 0; p < l; p++) {
|
|
2107
|
-
const h = e[
|
|
2108
|
-
t = h, n = d, r = y, i =
|
|
2107
|
+
const h = e[a++] ^ xe(o, c, t, n, r, i), d = e[a++] ^ xe(o, c, n, r, i, t), y = e[a++] ^ xe(o, c, r, i, t, n), m = e[a++] ^ xe(o, c, i, t, n, r);
|
|
2108
|
+
t = h, n = d, r = y, i = m;
|
|
2109
2109
|
}
|
|
2110
|
-
const f = e[
|
|
2110
|
+
const f = e[a++] ^ oe(s, t, n, r, i), u = e[a++] ^ oe(s, n, r, i, t), g = e[a++] ^ oe(s, r, i, t, n), b = e[a++] ^ oe(s, i, t, n, r);
|
|
2111
2111
|
return { s0: f, s1: u, s2: g, s3: b };
|
|
2112
2112
|
}
|
|
2113
2113
|
function js(e, t, n, r, i) {
|
|
2114
|
-
const { sbox2: s, T01: o, T23:
|
|
2115
|
-
let
|
|
2116
|
-
t ^= e[
|
|
2114
|
+
const { sbox2: s, T01: o, T23: c } = br;
|
|
2115
|
+
let a = 0;
|
|
2116
|
+
t ^= e[a++], n ^= e[a++], r ^= e[a++], i ^= e[a++];
|
|
2117
2117
|
const l = e.length / 4 - 2;
|
|
2118
2118
|
for (let p = 0; p < l; p++) {
|
|
2119
|
-
const h = e[
|
|
2120
|
-
t = h, n = d, r = y, i =
|
|
2119
|
+
const h = e[a++] ^ xe(o, c, t, i, r, n), d = e[a++] ^ xe(o, c, n, t, i, r), y = e[a++] ^ xe(o, c, r, n, t, i), m = e[a++] ^ xe(o, c, i, r, n, t);
|
|
2120
|
+
t = h, n = d, r = y, i = m;
|
|
2121
2121
|
}
|
|
2122
|
-
const f = e[
|
|
2122
|
+
const f = e[a++] ^ oe(s, t, i, r, n), u = e[a++] ^ oe(s, n, t, i, r), g = e[a++] ^ oe(s, r, n, t, i), b = e[a++] ^ oe(s, i, r, n, t);
|
|
2123
2123
|
return { s0: f, s1: u, s2: g, s3: b };
|
|
2124
2124
|
}
|
|
2125
|
-
function
|
|
2125
|
+
function Er(e, t) {
|
|
2126
2126
|
if (!t)
|
|
2127
2127
|
return new Uint8Array(e);
|
|
2128
2128
|
if (ce(t), t.length < e)
|
|
@@ -2130,21 +2130,21 @@ function mr(e, t) {
|
|
|
2130
2130
|
return t;
|
|
2131
2131
|
}
|
|
2132
2132
|
function zs(e) {
|
|
2133
|
-
if (ce(e), e.length %
|
|
2134
|
-
throw new Error(`aes/(cbc-ecb).decrypt ciphertext should consist of blocks with size ${
|
|
2133
|
+
if (ce(e), e.length % Se !== 0)
|
|
2134
|
+
throw new Error(`aes/(cbc-ecb).decrypt ciphertext should consist of blocks with size ${Se}`);
|
|
2135
2135
|
}
|
|
2136
2136
|
function Vs(e, t, n) {
|
|
2137
2137
|
let r = e.length;
|
|
2138
|
-
const i = r %
|
|
2138
|
+
const i = r % Se;
|
|
2139
2139
|
if (!t && i !== 0)
|
|
2140
2140
|
throw new Error("aec/(cbc-ecb): unpadded plaintext with disabled padding");
|
|
2141
2141
|
const s = Z(e);
|
|
2142
2142
|
if (t) {
|
|
2143
|
-
let
|
|
2144
|
-
|
|
2143
|
+
let a = Se - i;
|
|
2144
|
+
a || (a = Se), r = r + a;
|
|
2145
2145
|
}
|
|
2146
|
-
const o =
|
|
2147
|
-
return { b: s, o:
|
|
2146
|
+
const o = Er(r, n), c = Z(o);
|
|
2147
|
+
return { b: s, o: c, out: o };
|
|
2148
2148
|
}
|
|
2149
2149
|
function Ws(e, t) {
|
|
2150
2150
|
if (!t)
|
|
@@ -2164,61 +2164,61 @@ function Ws(e, t) {
|
|
|
2164
2164
|
function Zs(e) {
|
|
2165
2165
|
const t = new Uint8Array(16), n = Z(t);
|
|
2166
2166
|
t.set(e);
|
|
2167
|
-
const r =
|
|
2168
|
-
for (let i =
|
|
2167
|
+
const r = Se - e.length;
|
|
2168
|
+
for (let i = Se - r; i < Se; i++)
|
|
2169
2169
|
t[i] = r;
|
|
2170
2170
|
return n;
|
|
2171
2171
|
}
|
|
2172
|
-
const
|
|
2172
|
+
const mr = /* @__PURE__ */ Os({ blockSize: 16, nonceLength: 16 }, function(t, n, r = {}) {
|
|
2173
2173
|
ce(t), ce(n, 16);
|
|
2174
2174
|
const i = !r.disablePadding;
|
|
2175
2175
|
return {
|
|
2176
2176
|
encrypt: (s, o) => {
|
|
2177
|
-
const
|
|
2177
|
+
const c = vr(t), { b: a, o: l, out: f } = Vs(s, i, o), u = Z(n);
|
|
2178
2178
|
let g = u[0], b = u[1], p = u[2], h = u[3], d = 0;
|
|
2179
|
-
for (; d + 4 <=
|
|
2180
|
-
g ^=
|
|
2179
|
+
for (; d + 4 <= a.length; )
|
|
2180
|
+
g ^= a[d + 0], b ^= a[d + 1], p ^= a[d + 2], h ^= a[d + 3], { s0: g, s1: b, s2: p, s3: h } = Pn(c, g, b, p, h), l[d++] = g, l[d++] = b, l[d++] = p, l[d++] = h;
|
|
2181
2181
|
if (i) {
|
|
2182
2182
|
const y = Zs(s.subarray(d * 4));
|
|
2183
|
-
g ^= y[0], b ^= y[1], p ^= y[2], h ^= y[3], { s0: g, s1: b, s2: p, s3: h } = Pn(
|
|
2183
|
+
g ^= y[0], b ^= y[1], p ^= y[2], h ^= y[3], { s0: g, s1: b, s2: p, s3: h } = Pn(c, g, b, p, h), l[d++] = g, l[d++] = b, l[d++] = p, l[d++] = h;
|
|
2184
2184
|
}
|
|
2185
|
-
return
|
|
2185
|
+
return c.fill(0), f;
|
|
2186
2186
|
},
|
|
2187
2187
|
decrypt: (s, o) => {
|
|
2188
2188
|
zs(s);
|
|
2189
|
-
const
|
|
2190
|
-
let g =
|
|
2189
|
+
const c = Ds(t), a = Z(n), l = Er(s.length, o), f = Z(s), u = Z(l);
|
|
2190
|
+
let g = a[0], b = a[1], p = a[2], h = a[3];
|
|
2191
2191
|
for (let d = 0; d + 4 <= f.length; ) {
|
|
2192
|
-
const y = g,
|
|
2192
|
+
const y = g, m = b, A = p, U = h;
|
|
2193
2193
|
g = f[d + 0], b = f[d + 1], p = f[d + 2], h = f[d + 3];
|
|
2194
|
-
const { s0: B, s1:
|
|
2195
|
-
u[d++] = B ^ y, u[d++] =
|
|
2194
|
+
const { s0: B, s1: E, s2: x, s3: S } = js(c, g, b, p, h);
|
|
2195
|
+
u[d++] = B ^ y, u[d++] = E ^ m, u[d++] = x ^ A, u[d++] = S ^ U;
|
|
2196
2196
|
}
|
|
2197
|
-
return
|
|
2197
|
+
return c.fill(0), Ws(l, i);
|
|
2198
2198
|
}
|
|
2199
2199
|
};
|
|
2200
|
-
}), xr = (e) => Uint8Array.from(e.split("").map((t) => t.charCodeAt(0))), Gs = xr("expand 16-byte k"), Fs = xr("expand 32-byte k"), Js = Z(Gs),
|
|
2201
|
-
|
|
2200
|
+
}), xr = (e) => Uint8Array.from(e.split("").map((t) => t.charCodeAt(0))), Gs = xr("expand 16-byte k"), Fs = xr("expand 32-byte k"), Js = Z(Gs), Sr = Z(Fs);
|
|
2201
|
+
Sr.slice();
|
|
2202
2202
|
function L(e, t) {
|
|
2203
2203
|
return e << t | e >>> 32 - t;
|
|
2204
2204
|
}
|
|
2205
2205
|
function zt(e) {
|
|
2206
2206
|
return e.byteOffset % 4 === 0;
|
|
2207
2207
|
}
|
|
2208
|
-
const
|
|
2209
|
-
function Xs(e, t, n, r, i, s, o,
|
|
2210
|
-
const
|
|
2211
|
-
for (let p = 0; p <
|
|
2212
|
-
if (e(t, n, r, f, o,
|
|
2208
|
+
const Xe = 64, Ys = 16, Nr = 2 ** 32 - 1, Hn = new Uint32Array();
|
|
2209
|
+
function Xs(e, t, n, r, i, s, o, c) {
|
|
2210
|
+
const a = i.length, l = new Uint8Array(Xe), f = Z(l), u = zt(i) && zt(s), g = u ? Z(i) : Hn, b = u ? Z(s) : Hn;
|
|
2211
|
+
for (let p = 0; p < a; o++) {
|
|
2212
|
+
if (e(t, n, r, f, o, c), o >= Nr)
|
|
2213
2213
|
throw new Error("arx: counter overflow");
|
|
2214
|
-
const h = Math.min(
|
|
2215
|
-
if (u && h ===
|
|
2214
|
+
const h = Math.min(Xe, a - p);
|
|
2215
|
+
if (u && h === Xe) {
|
|
2216
2216
|
const d = p / 4;
|
|
2217
2217
|
if (p % 4 !== 0)
|
|
2218
2218
|
throw new Error("arx: invalid block position");
|
|
2219
|
-
for (let y = 0,
|
|
2220
|
-
|
|
2221
|
-
p +=
|
|
2219
|
+
for (let y = 0, m; y < Ys; y++)
|
|
2220
|
+
m = d + y, b[m] = g[m] ^ f[y];
|
|
2221
|
+
p += Xe;
|
|
2222
2222
|
continue;
|
|
2223
2223
|
}
|
|
2224
2224
|
for (let d = 0, y; d < h; d++)
|
|
@@ -2230,49 +2230,49 @@ function Qs(e, t) {
|
|
|
2230
2230
|
const { allowShortKeys: n, extendNonceFn: r, counterLength: i, counterRight: s, rounds: o } = Ts({ allowShortKeys: !1, counterLength: 8, counterRight: !1, rounds: 20 }, t);
|
|
2231
2231
|
if (typeof e != "function")
|
|
2232
2232
|
throw new Error("core must be a function");
|
|
2233
|
-
return Bt(i), Bt(o), Mn(s), Mn(n), (
|
|
2234
|
-
ce(
|
|
2233
|
+
return Bt(i), Bt(o), Mn(s), Mn(n), (c, a, l, f, u = 0) => {
|
|
2234
|
+
ce(c), ce(a), ce(l);
|
|
2235
2235
|
const g = l.length;
|
|
2236
2236
|
if (f || (f = new Uint8Array(g)), ce(f), Bt(u), u < 0 || u >= Nr)
|
|
2237
2237
|
throw new Error("arx: counter overflow");
|
|
2238
2238
|
if (f.length < g)
|
|
2239
2239
|
throw new Error(`arx: output (${f.length}) is shorter than data (${g})`);
|
|
2240
2240
|
const b = [];
|
|
2241
|
-
let p =
|
|
2241
|
+
let p = c.length, h, d;
|
|
2242
2242
|
if (p === 32)
|
|
2243
|
-
h =
|
|
2243
|
+
h = c.slice(), b.push(h), d = Sr;
|
|
2244
2244
|
else if (p === 16 && n)
|
|
2245
|
-
h = new Uint8Array(32), h.set(
|
|
2245
|
+
h = new Uint8Array(32), h.set(c), h.set(c, 16), d = Js, b.push(h);
|
|
2246
2246
|
else
|
|
2247
2247
|
throw new Error(`arx: invalid 32-byte key, got length=${p}`);
|
|
2248
|
-
zt(
|
|
2248
|
+
zt(a) || (a = a.slice(), b.push(a));
|
|
2249
2249
|
const y = Z(h);
|
|
2250
2250
|
if (r) {
|
|
2251
|
-
if (
|
|
2251
|
+
if (a.length !== 24)
|
|
2252
2252
|
throw new Error("arx: extended nonce must be 24 bytes");
|
|
2253
|
-
r(d, y, Z(
|
|
2253
|
+
r(d, y, Z(a.subarray(0, 16)), y), a = a.subarray(16);
|
|
2254
2254
|
}
|
|
2255
|
-
const
|
|
2256
|
-
if (
|
|
2257
|
-
throw new Error(`arx: nonce must be ${
|
|
2258
|
-
if (
|
|
2259
|
-
const
|
|
2260
|
-
|
|
2255
|
+
const m = 16 - i;
|
|
2256
|
+
if (m !== a.length)
|
|
2257
|
+
throw new Error(`arx: nonce must be ${m} or 16 bytes`);
|
|
2258
|
+
if (m !== 12) {
|
|
2259
|
+
const U = new Uint8Array(12);
|
|
2260
|
+
U.set(a, s ? 0 : 12 - a.length), a = U, b.push(a);
|
|
2261
2261
|
}
|
|
2262
|
-
const
|
|
2263
|
-
for (Xs(e, d, y,
|
|
2262
|
+
const A = Z(a);
|
|
2263
|
+
for (Xs(e, d, y, A, l, f, u, o); b.length > 0; )
|
|
2264
2264
|
b.pop().fill(0);
|
|
2265
2265
|
return f;
|
|
2266
2266
|
};
|
|
2267
2267
|
}
|
|
2268
2268
|
function eo(e, t, n, r, i, s = 20) {
|
|
2269
|
-
let o = e[0],
|
|
2269
|
+
let o = e[0], c = e[1], a = e[2], l = e[3], f = t[0], u = t[1], g = t[2], b = t[3], p = t[4], h = t[5], d = t[6], y = t[7], m = i, A = n[0], U = n[1], B = n[2], E = o, x = c, S = a, P = l, _ = f, K = u, T = g, R = b, H = p, w = h, v = d, N = y, k = m, C = A, I = U, O = B;
|
|
2270
2270
|
for (let Q = 0; Q < s; Q += 2)
|
|
2271
|
-
|
|
2271
|
+
E = E + _ | 0, k = L(k ^ E, 16), H = H + k | 0, _ = L(_ ^ H, 12), E = E + _ | 0, k = L(k ^ E, 8), H = H + k | 0, _ = L(_ ^ H, 7), x = x + K | 0, C = L(C ^ x, 16), w = w + C | 0, K = L(K ^ w, 12), x = x + K | 0, C = L(C ^ x, 8), w = w + C | 0, K = L(K ^ w, 7), S = S + T | 0, I = L(I ^ S, 16), v = v + I | 0, T = L(T ^ v, 12), S = S + T | 0, I = L(I ^ S, 8), v = v + I | 0, T = L(T ^ v, 7), P = P + R | 0, O = L(O ^ P, 16), N = N + O | 0, R = L(R ^ N, 12), P = P + R | 0, O = L(O ^ P, 8), N = N + O | 0, R = L(R ^ N, 7), E = E + K | 0, O = L(O ^ E, 16), v = v + O | 0, K = L(K ^ v, 12), E = E + K | 0, O = L(O ^ E, 8), v = v + O | 0, K = L(K ^ v, 7), x = x + T | 0, k = L(k ^ x, 16), N = N + k | 0, T = L(T ^ N, 12), x = x + T | 0, k = L(k ^ x, 8), N = N + k | 0, T = L(T ^ N, 7), S = S + R | 0, C = L(C ^ S, 16), H = H + C | 0, R = L(R ^ H, 12), S = S + R | 0, C = L(C ^ S, 8), H = H + C | 0, R = L(R ^ H, 7), P = P + _ | 0, I = L(I ^ P, 16), w = w + I | 0, _ = L(_ ^ w, 12), P = P + _ | 0, I = L(I ^ P, 8), w = w + I | 0, _ = L(_ ^ w, 7);
|
|
2272
2272
|
let $ = 0;
|
|
2273
|
-
r[$++] = o +
|
|
2273
|
+
r[$++] = o + E | 0, r[$++] = c + x | 0, r[$++] = a + S | 0, r[$++] = l + P | 0, r[$++] = f + _ | 0, r[$++] = u + K | 0, r[$++] = g + T | 0, r[$++] = b + R | 0, r[$++] = p + H | 0, r[$++] = h + w | 0, r[$++] = d + v | 0, r[$++] = y + N | 0, r[$++] = m + k | 0, r[$++] = A + C | 0, r[$++] = U + I | 0, r[$++] = B + O | 0;
|
|
2274
2274
|
}
|
|
2275
|
-
const
|
|
2275
|
+
const Ar = /* @__PURE__ */ Qs(eo, {
|
|
2276
2276
|
counterRight: !1,
|
|
2277
2277
|
counterLength: 4,
|
|
2278
2278
|
allowShortKeys: !1
|
|
@@ -2280,7 +2280,7 @@ const Sr = /* @__PURE__ */ Qs(eo, {
|
|
|
2280
2280
|
class Kr extends ur {
|
|
2281
2281
|
constructor(t, n) {
|
|
2282
2282
|
super(), this.finished = !1, this.destroyed = !1, se.hash(t);
|
|
2283
|
-
const r =
|
|
2283
|
+
const r = Je(n);
|
|
2284
2284
|
if (this.iHash = t.create(), typeof this.iHash.update != "function")
|
|
2285
2285
|
throw new Error("Expected instance of class which extends utils.Hash");
|
|
2286
2286
|
this.blockLen = this.iHash.blockLen, this.outputLen = this.iHash.outputLen;
|
|
@@ -2305,8 +2305,8 @@ class Kr extends ur {
|
|
|
2305
2305
|
}
|
|
2306
2306
|
_cloneInto(t) {
|
|
2307
2307
|
t || (t = Object.create(Object.getPrototypeOf(this), {}));
|
|
2308
|
-
const { oHash: n, iHash: r, finished: i, destroyed: s, blockLen: o, outputLen:
|
|
2309
|
-
return t = t, t.finished = i, t.destroyed = s, t.blockLen = o, t.outputLen =
|
|
2308
|
+
const { oHash: n, iHash: r, finished: i, destroyed: s, blockLen: o, outputLen: c } = this;
|
|
2309
|
+
return t = t, t.finished = i, t.destroyed = s, t.blockLen = o, t.outputLen = c, t.oHash = n._cloneInto(t.oHash), t.iHash = r._cloneInto(t.iHash), t;
|
|
2310
2310
|
}
|
|
2311
2311
|
destroy() {
|
|
2312
2312
|
this.destroyed = !0, this.oHash.destroy(), this.iHash.destroy();
|
|
@@ -2315,23 +2315,23 @@ class Kr extends ur {
|
|
|
2315
2315
|
const ht = (e, t, n) => new Kr(e, t).update(n).digest();
|
|
2316
2316
|
ht.create = (e, t) => new Kr(e, t);
|
|
2317
2317
|
function rn(e, t, n) {
|
|
2318
|
-
return se.hash(e), n === void 0 && (n = new Uint8Array(e.outputLen)), ht(e,
|
|
2318
|
+
return se.hash(e), n === void 0 && (n = new Uint8Array(e.outputLen)), ht(e, Je(n), Je(t));
|
|
2319
2319
|
}
|
|
2320
|
-
const
|
|
2320
|
+
const _t = new Uint8Array([0]), qn = new Uint8Array();
|
|
2321
2321
|
function Cr(e, t, n, r = 32) {
|
|
2322
2322
|
if (se.hash(e), se.number(r), r > 255 * e.outputLen)
|
|
2323
2323
|
throw new Error("Length should be <= 255*HashLen");
|
|
2324
2324
|
const i = Math.ceil(r / e.outputLen);
|
|
2325
2325
|
n === void 0 && (n = qn);
|
|
2326
|
-
const s = new Uint8Array(i * e.outputLen), o = ht.create(e, t),
|
|
2326
|
+
const s = new Uint8Array(i * e.outputLen), o = ht.create(e, t), c = o._cloneInto(), a = new Uint8Array(o.outputLen);
|
|
2327
2327
|
for (let l = 0; l < i; l++)
|
|
2328
|
-
|
|
2329
|
-
return o.destroy(),
|
|
2328
|
+
_t[0] = l + 1, c.update(l === 0 ? qn : a).update(n).update(_t).digestInto(a), s.set(a, e.outputLen * l), o._cloneInto(c);
|
|
2329
|
+
return o.destroy(), c.destroy(), a.fill(0), _t.fill(0), s.slice(0, r);
|
|
2330
2330
|
}
|
|
2331
2331
|
var to = Object.defineProperty, D = (e, t) => {
|
|
2332
2332
|
for (var n in t)
|
|
2333
2333
|
to(e, n, { get: t[n], enumerable: !0 });
|
|
2334
|
-
},
|
|
2334
|
+
}, Oe = Symbol("verified"), no = (e) => e instanceof Object;
|
|
2335
2335
|
function sn(e) {
|
|
2336
2336
|
if (!no(e) || typeof e.kind != "number" || typeof e.content != "string" || typeof e.created_at != "number" || typeof e.pubkey != "string" || !e.pubkey.match(/^[a-f0-9]{64}$/) || !Array.isArray(e.tags))
|
|
2337
2337
|
return !1;
|
|
@@ -2416,19 +2416,19 @@ var Br = class {
|
|
|
2416
2416
|
}
|
|
2417
2417
|
finalizeEvent(e, t) {
|
|
2418
2418
|
const n = e;
|
|
2419
|
-
return n.pubkey = M(We.getPublicKey(t)), n.id =
|
|
2419
|
+
return n.pubkey = M(We.getPublicKey(t)), n.id = Ge(n), n.sig = M(We.sign(Ge(n), t)), n[Oe] = !0, n;
|
|
2420
2420
|
}
|
|
2421
2421
|
verifyEvent(e) {
|
|
2422
|
-
if (typeof e[
|
|
2423
|
-
return e[
|
|
2424
|
-
const t =
|
|
2422
|
+
if (typeof e[Oe] == "boolean")
|
|
2423
|
+
return e[Oe];
|
|
2424
|
+
const t = Ge(e);
|
|
2425
2425
|
if (t !== e.id)
|
|
2426
|
-
return e[
|
|
2426
|
+
return e[Oe] = !1, !1;
|
|
2427
2427
|
try {
|
|
2428
2428
|
const n = We.verify(e.sig, t, e.pubkey);
|
|
2429
|
-
return e[
|
|
2429
|
+
return e[Oe] = n, n;
|
|
2430
2430
|
} catch {
|
|
2431
|
-
return e[
|
|
2431
|
+
return e[Oe] = !1, !1;
|
|
2432
2432
|
}
|
|
2433
2433
|
}
|
|
2434
2434
|
};
|
|
@@ -2437,20 +2437,20 @@ function uo(e) {
|
|
|
2437
2437
|
throw new Error("can't serialize event with wrong or missing properties");
|
|
2438
2438
|
return JSON.stringify([0, e.pubkey, e.created_at, e.kind, e.tags, e.content]);
|
|
2439
2439
|
}
|
|
2440
|
-
function
|
|
2440
|
+
function Ge(e) {
|
|
2441
2441
|
let t = fe(ne.encode(uo(e)));
|
|
2442
2442
|
return M(t);
|
|
2443
2443
|
}
|
|
2444
|
-
var dt = new co(),
|
|
2444
|
+
var dt = new co(), _e = dt.generateSecretKey, le = dt.getPublicKey, X = dt.finalizeEvent, pt = dt.verifyEvent, lo = {};
|
|
2445
2445
|
D(lo, {
|
|
2446
2446
|
Application: () => da,
|
|
2447
|
-
BadgeAward: () =>
|
|
2447
|
+
BadgeAward: () => Eo,
|
|
2448
2448
|
BadgeDefinition: () => oa,
|
|
2449
2449
|
BlockedRelaysList: () => zo,
|
|
2450
2450
|
BookmarkList: () => qo,
|
|
2451
2451
|
Bookmarksets: () => ra,
|
|
2452
|
-
Calendar: () =>
|
|
2453
|
-
CalendarEventRSVP: () =>
|
|
2452
|
+
Calendar: () => Ea,
|
|
2453
|
+
CalendarEventRSVP: () => ma,
|
|
2454
2454
|
ChannelCreation: () => $r,
|
|
2455
2455
|
ChannelHideMessage: () => Or,
|
|
2456
2456
|
ChannelMessage: () => Rr,
|
|
@@ -2460,7 +2460,7 @@ D(lo, {
|
|
|
2460
2460
|
ClientAuth: () => Hr,
|
|
2461
2461
|
CommunitiesList: () => Do,
|
|
2462
2462
|
CommunityDefinition: () => Na,
|
|
2463
|
-
CommunityPostApproval: () =>
|
|
2463
|
+
CommunityPostApproval: () => _o,
|
|
2464
2464
|
Contacts: () => wo,
|
|
2465
2465
|
CreateOrUpdateProduct: () => ua,
|
|
2466
2466
|
CreateOrUpdateStall: () => ca,
|
|
@@ -2479,17 +2479,17 @@ D(lo, {
|
|
|
2479
2479
|
Genericlists: () => ta,
|
|
2480
2480
|
GiftWrap: () => Pr,
|
|
2481
2481
|
HTTPAuth: () => un,
|
|
2482
|
-
Handlerinformation: () =>
|
|
2482
|
+
Handlerinformation: () => Sa,
|
|
2483
2483
|
Handlerrecommendation: () => xa,
|
|
2484
2484
|
Highlights: () => Oo,
|
|
2485
2485
|
InterestsList: () => Wo,
|
|
2486
2486
|
Interestsets: () => aa,
|
|
2487
2487
|
JobFeedback: () => Lo,
|
|
2488
|
-
JobRequest: () =>
|
|
2488
|
+
JobRequest: () => Uo,
|
|
2489
2489
|
JobResult: () => Io,
|
|
2490
2490
|
Label: () => ko,
|
|
2491
2491
|
LightningPubRPC: () => Yo,
|
|
2492
|
-
LiveChatMessage: () =>
|
|
2492
|
+
LiveChatMessage: () => Ao,
|
|
2493
2493
|
LiveEvent: () => pa,
|
|
2494
2494
|
LongFormArticle: () => la,
|
|
2495
2495
|
Metadata: () => po,
|
|
@@ -2498,9 +2498,9 @@ D(lo, {
|
|
|
2498
2498
|
NWCWalletRequest: () => qr,
|
|
2499
2499
|
NWCWalletResponse: () => Xo,
|
|
2500
2500
|
NostrConnect: () => Qo,
|
|
2501
|
-
OpenTimestamps: () =>
|
|
2501
|
+
OpenTimestamps: () => So,
|
|
2502
2502
|
Pinlist: () => Po,
|
|
2503
|
-
PrivateDirectMessage: () =>
|
|
2503
|
+
PrivateDirectMessage: () => mo,
|
|
2504
2504
|
ProblemTracker: () => Ko,
|
|
2505
2505
|
ProfileBadges: () => sa,
|
|
2506
2506
|
PublicChatsList: () => jo,
|
|
@@ -2521,33 +2521,33 @@ D(lo, {
|
|
|
2521
2521
|
ZapGoal: () => $o,
|
|
2522
2522
|
ZapRequest: () => To,
|
|
2523
2523
|
classifyKind: () => fo,
|
|
2524
|
-
isEphemeralKind: () =>
|
|
2524
|
+
isEphemeralKind: () => Ur,
|
|
2525
2525
|
isKind: () => ho,
|
|
2526
2526
|
isParameterizedReplaceableKind: () => Ir,
|
|
2527
2527
|
isRegularKind: () => kr,
|
|
2528
|
-
isReplaceableKind: () =>
|
|
2528
|
+
isReplaceableKind: () => _r
|
|
2529
2529
|
});
|
|
2530
2530
|
function kr(e) {
|
|
2531
2531
|
return 1e3 <= e && e < 1e4 || [1, 2, 4, 5, 6, 7, 8, 16, 40, 41, 42, 43, 44].includes(e);
|
|
2532
2532
|
}
|
|
2533
|
-
function
|
|
2533
|
+
function _r(e) {
|
|
2534
2534
|
return [0, 3].includes(e) || 1e4 <= e && e < 2e4;
|
|
2535
2535
|
}
|
|
2536
|
-
function
|
|
2536
|
+
function Ur(e) {
|
|
2537
2537
|
return 2e4 <= e && e < 3e4;
|
|
2538
2538
|
}
|
|
2539
2539
|
function Ir(e) {
|
|
2540
2540
|
return 3e4 <= e && e < 4e4;
|
|
2541
2541
|
}
|
|
2542
2542
|
function fo(e) {
|
|
2543
|
-
return kr(e) ? "regular" :
|
|
2543
|
+
return kr(e) ? "regular" : _r(e) ? "replaceable" : Ur(e) ? "ephemeral" : Ir(e) ? "parameterized" : "unknown";
|
|
2544
2544
|
}
|
|
2545
2545
|
function ho(e, t) {
|
|
2546
2546
|
const n = t instanceof Array ? t : [t];
|
|
2547
2547
|
return sn(e) && n.includes(e.kind) || !1;
|
|
2548
2548
|
}
|
|
2549
|
-
var po = 0, yo = 1, go = 2, wo = 3, bo = 4, vo = 5, an = 6, cn = 7,
|
|
2550
|
-
D(
|
|
2549
|
+
var po = 0, yo = 1, go = 2, wo = 3, bo = 4, vo = 5, an = 6, cn = 7, Eo = 8, Lr = 13, mo = 14, xo = 16, $r = 40, Tr = 41, Rr = 42, Or = 43, Mr = 44, So = 1040, Pr = 1059, No = 1063, Ao = 1311, Ko = 1971, Co = 1984, Bo = 1984, ko = 1985, _o = 4550, Uo = 5999, Io = 6999, Lo = 7e3, $o = 9041, To = 9734, Ro = 9735, Oo = 9802, Mo = 1e4, Po = 10001, Ho = 10002, qo = 10003, Do = 10004, jo = 10005, zo = 10006, Vo = 10007, Wo = 10015, Zo = 10030, Go = 10050, Fo = 10096, Jo = 13194, Yo = 21e3, Hr = 22242, qr = 23194, Xo = 23195, Qo = 24133, un = 27235, ea = 3e4, ta = 30001, na = 30002, ra = 30003, ia = 30004, sa = 30008, oa = 30009, aa = 30015, ca = 30017, ua = 30018, la = 30023, fa = 30024, ha = 30030, da = 30078, pa = 30311, ya = 30315, ga = 30402, wa = 30403, ba = 31922, va = 31923, Ea = 31924, ma = 31925, xa = 31989, Sa = 31990, Na = 34550, Aa = {};
|
|
2550
|
+
D(Aa, {
|
|
2551
2551
|
getHex64: () => ln,
|
|
2552
2552
|
getInt: () => Dr,
|
|
2553
2553
|
getSubscriptionId: () => Ka,
|
|
@@ -2585,11 +2585,11 @@ function Ba(e, t) {
|
|
|
2585
2585
|
function ka(e, t) {
|
|
2586
2586
|
return t === Dr(e, "kind");
|
|
2587
2587
|
}
|
|
2588
|
-
var
|
|
2589
|
-
D(
|
|
2590
|
-
makeAuthEvent: () =>
|
|
2588
|
+
var _a = {};
|
|
2589
|
+
D(_a, {
|
|
2590
|
+
makeAuthEvent: () => Ua
|
|
2591
2591
|
});
|
|
2592
|
-
function
|
|
2592
|
+
function Ua(e, t) {
|
|
2593
2593
|
return {
|
|
2594
2594
|
kind: Hr,
|
|
2595
2595
|
created_at: Math.floor(Date.now() / 1e3),
|
|
@@ -2638,11 +2638,11 @@ function Ra(e) {
|
|
|
2638
2638
|
return t[0] = e >> 24 & 255, t[1] = e >> 16 & 255, t[2] = e >> 8 & 255, t[3] = e & 255, t;
|
|
2639
2639
|
}
|
|
2640
2640
|
function yt(e) {
|
|
2641
|
-
var i, s, o,
|
|
2641
|
+
var i, s, o, c, a, l, f;
|
|
2642
2642
|
let { prefix: t, words: n } = je.decode(e, fn), r = new Uint8Array(je.fromWords(n));
|
|
2643
2643
|
switch (t) {
|
|
2644
2644
|
case "nprofile": {
|
|
2645
|
-
let u =
|
|
2645
|
+
let u = Ut(r);
|
|
2646
2646
|
if (!((i = u[0]) != null && i[0]))
|
|
2647
2647
|
throw new Error("missing TLV 0 for nprofile");
|
|
2648
2648
|
if (u[0][0].length !== 32)
|
|
@@ -2656,7 +2656,7 @@ function yt(e) {
|
|
|
2656
2656
|
};
|
|
2657
2657
|
}
|
|
2658
2658
|
case "nevent": {
|
|
2659
|
-
let u =
|
|
2659
|
+
let u = Ut(r);
|
|
2660
2660
|
if (!((s = u[0]) != null && s[0]))
|
|
2661
2661
|
throw new Error("missing TLV 0 for nevent");
|
|
2662
2662
|
if (u[0][0].length !== 32)
|
|
@@ -2671,13 +2671,13 @@ function yt(e) {
|
|
|
2671
2671
|
id: M(u[0][0]),
|
|
2672
2672
|
relays: u[1] ? u[1].map((g) => ue.decode(g)) : [],
|
|
2673
2673
|
author: (o = u[2]) != null && o[0] ? M(u[2][0]) : void 0,
|
|
2674
|
-
kind: (
|
|
2674
|
+
kind: (c = u[3]) != null && c[0] ? parseInt(M(u[3][0]), 16) : void 0
|
|
2675
2675
|
}
|
|
2676
2676
|
};
|
|
2677
2677
|
}
|
|
2678
2678
|
case "naddr": {
|
|
2679
|
-
let u =
|
|
2680
|
-
if (!((
|
|
2679
|
+
let u = Ut(r);
|
|
2680
|
+
if (!((a = u[0]) != null && a[0]))
|
|
2681
2681
|
throw new Error("missing TLV 0 for naddr");
|
|
2682
2682
|
if (!((l = u[2]) != null && l[0]))
|
|
2683
2683
|
throw new Error("missing TLV 2 for naddr");
|
|
@@ -2706,7 +2706,7 @@ function yt(e) {
|
|
|
2706
2706
|
throw new Error(`unknown prefix ${t}`);
|
|
2707
2707
|
}
|
|
2708
2708
|
}
|
|
2709
|
-
function
|
|
2709
|
+
function Ut(e) {
|
|
2710
2710
|
let t = {}, n = e;
|
|
2711
2711
|
for (; n.length > 0; ) {
|
|
2712
2712
|
let r = n[0], i = n[1], s = n.slice(2, 2 + i);
|
|
@@ -2776,13 +2776,13 @@ D(ja, {
|
|
|
2776
2776
|
encrypt: () => zr
|
|
2777
2777
|
});
|
|
2778
2778
|
async function zr(e, t, n) {
|
|
2779
|
-
const r = e instanceof Uint8Array ? M(e) : e, i =
|
|
2780
|
-
let o = Uint8Array.from(fr(16)),
|
|
2779
|
+
const r = e instanceof Uint8Array ? M(e) : e, i = Ie.getSharedSecret(r, "02" + t), s = Vr(i);
|
|
2780
|
+
let o = Uint8Array.from(fr(16)), c = ne.encode(n), a = mr(s, o).encrypt(c), l = he.encode(new Uint8Array(a)), f = he.encode(new Uint8Array(o.buffer));
|
|
2781
2781
|
return `${l}?iv=${f}`;
|
|
2782
2782
|
}
|
|
2783
2783
|
async function za(e, t, n) {
|
|
2784
2784
|
const r = e instanceof Uint8Array ? M(e) : e;
|
|
2785
|
-
let [i, s] = n.split("?iv="), o =
|
|
2785
|
+
let [i, s] = n.split("?iv="), o = Ie.getSharedSecret(r, "02" + t), c = Vr(o), a = he.decode(s), l = he.decode(i), f = mr(c, a).decrypt(l);
|
|
2786
2786
|
return ue.decode(f);
|
|
2787
2787
|
}
|
|
2788
2788
|
function Vr(e) {
|
|
@@ -2825,8 +2825,8 @@ async function Wr(e) {
|
|
|
2825
2825
|
const s = `https://${r}/.well-known/nostr.json?name=${n}`, o = await bt(s, { redirect: "manual" });
|
|
2826
2826
|
if (o.status !== 200)
|
|
2827
2827
|
throw Error("Wrong response code");
|
|
2828
|
-
const
|
|
2829
|
-
return
|
|
2828
|
+
const c = await o.json(), a = c.names[n];
|
|
2829
|
+
return a ? { pubkey: a, relays: (i = c.relays) == null ? void 0 : i[a] } : null;
|
|
2830
2830
|
} catch {
|
|
2831
2831
|
return null;
|
|
2832
2832
|
}
|
|
@@ -2851,9 +2851,9 @@ function Ya(e) {
|
|
|
2851
2851
|
for (let i = e.tags.length - 1; i >= 0; i--) {
|
|
2852
2852
|
const s = e.tags[i];
|
|
2853
2853
|
if (s[0] === "e" && s[1]) {
|
|
2854
|
-
const [o,
|
|
2855
|
-
id:
|
|
2856
|
-
relays:
|
|
2854
|
+
const [o, c, a, l, f] = s, u = {
|
|
2855
|
+
id: c,
|
|
2856
|
+
relays: a ? [a] : [],
|
|
2857
2857
|
author: f
|
|
2858
2858
|
};
|
|
2859
2859
|
if (l === "root") {
|
|
@@ -2872,10 +2872,10 @@ function Ya(e) {
|
|
|
2872
2872
|
continue;
|
|
2873
2873
|
}
|
|
2874
2874
|
if (s[0] === "q" && s[1]) {
|
|
2875
|
-
const [o,
|
|
2875
|
+
const [o, c, a] = s;
|
|
2876
2876
|
t.quotes.push({
|
|
2877
|
-
id:
|
|
2878
|
-
relays:
|
|
2877
|
+
id: c,
|
|
2878
|
+
relays: a ? [a] : []
|
|
2879
2879
|
});
|
|
2880
2880
|
}
|
|
2881
2881
|
if (s[0] === "p" && s[1]) {
|
|
@@ -2891,10 +2891,10 @@ function Ya(e) {
|
|
|
2891
2891
|
return;
|
|
2892
2892
|
let s = t.mentions.indexOf(i);
|
|
2893
2893
|
if (s !== -1 && t.mentions.splice(s, 1), i.author) {
|
|
2894
|
-
let o = t.profiles.find((
|
|
2895
|
-
o && o.relays && (i.relays || (i.relays = []), o.relays.forEach((
|
|
2896
|
-
var
|
|
2897
|
-
((
|
|
2894
|
+
let o = t.profiles.find((c) => c.pubkey === i.author);
|
|
2895
|
+
o && o.relays && (i.relays || (i.relays = []), o.relays.forEach((c) => {
|
|
2896
|
+
var a;
|
|
2897
|
+
((a = i.relays) == null ? void 0 : a.indexOf(c)) === -1 && i.relays.push(c);
|
|
2898
2898
|
}), o.relays = i.relays);
|
|
2899
2899
|
}
|
|
2900
2900
|
}), t.mentions.forEach((i) => {
|
|
@@ -3090,7 +3090,7 @@ D(yc, {
|
|
|
3090
3090
|
channelHideMessageEvent: () => vc,
|
|
3091
3091
|
channelMessageEvent: () => bc,
|
|
3092
3092
|
channelMetadataEvent: () => wc,
|
|
3093
|
-
channelMuteUserEvent: () =>
|
|
3093
|
+
channelMuteUserEvent: () => Ec
|
|
3094
3094
|
});
|
|
3095
3095
|
var gc = (e, t) => {
|
|
3096
3096
|
let n;
|
|
@@ -3154,7 +3154,7 @@ var gc = (e, t) => {
|
|
|
3154
3154
|
},
|
|
3155
3155
|
t
|
|
3156
3156
|
);
|
|
3157
|
-
},
|
|
3157
|
+
}, Ec = (e, t) => {
|
|
3158
3158
|
let n;
|
|
3159
3159
|
if (typeof e.content == "object")
|
|
3160
3160
|
n = JSON.stringify(e.content);
|
|
@@ -3171,12 +3171,12 @@ var gc = (e, t) => {
|
|
|
3171
3171
|
},
|
|
3172
3172
|
t
|
|
3173
3173
|
);
|
|
3174
|
-
},
|
|
3175
|
-
D(
|
|
3174
|
+
}, mc = {};
|
|
3175
|
+
D(mc, {
|
|
3176
3176
|
EMOJI_SHORTCODE_REGEX: () => Yr,
|
|
3177
3177
|
matchAll: () => xc,
|
|
3178
3178
|
regex: () => yn,
|
|
3179
|
-
replaceAll: () =>
|
|
3179
|
+
replaceAll: () => Sc
|
|
3180
3180
|
});
|
|
3181
3181
|
var Yr = /:(\w+):/, yn = () => new RegExp(`\\B${Yr.source}\\B`, "g");
|
|
3182
3182
|
function* xc(e) {
|
|
@@ -3193,7 +3193,7 @@ function* xc(e) {
|
|
|
3193
3193
|
} catch {
|
|
3194
3194
|
}
|
|
3195
3195
|
}
|
|
3196
|
-
function
|
|
3196
|
+
function Sc(e, t) {
|
|
3197
3197
|
return e.replaceAll(yn(), (n, r) => t({
|
|
3198
3198
|
shortcode: n,
|
|
3199
3199
|
name: r
|
|
@@ -3201,7 +3201,7 @@ function Ac(e, t) {
|
|
|
3201
3201
|
}
|
|
3202
3202
|
var Nc = {};
|
|
3203
3203
|
D(Nc, {
|
|
3204
|
-
useFetchImplementation: () =>
|
|
3204
|
+
useFetchImplementation: () => Ac,
|
|
3205
3205
|
validateGithub: () => Kc
|
|
3206
3206
|
});
|
|
3207
3207
|
var gn;
|
|
@@ -3209,7 +3209,7 @@ try {
|
|
|
3209
3209
|
gn = fetch;
|
|
3210
3210
|
} catch {
|
|
3211
3211
|
}
|
|
3212
|
-
function
|
|
3212
|
+
function Ac(e) {
|
|
3213
3213
|
gn = e;
|
|
3214
3214
|
}
|
|
3215
3215
|
async function Kc(e, t, n) {
|
|
@@ -3221,14 +3221,14 @@ async function Kc(e, t, n) {
|
|
|
3221
3221
|
}
|
|
3222
3222
|
var q = {};
|
|
3223
3223
|
D(q, {
|
|
3224
|
-
decrypt: () =>
|
|
3224
|
+
decrypt: () => En,
|
|
3225
3225
|
encrypt: () => vn,
|
|
3226
3226
|
getConversationKey: () => wn,
|
|
3227
|
-
v2: () =>
|
|
3227
|
+
v2: () => Uc
|
|
3228
3228
|
});
|
|
3229
3229
|
var Xr = 1, Qr = 65535;
|
|
3230
3230
|
function wn(e, t) {
|
|
3231
|
-
const n =
|
|
3231
|
+
const n = Ie.getSharedSecret(e, "02" + t).subarray(1, 33);
|
|
3232
3232
|
return rn(fe, n, "nip44-v2");
|
|
3233
3233
|
}
|
|
3234
3234
|
function ei(e, t) {
|
|
@@ -3269,7 +3269,7 @@ function ti(e, t, n) {
|
|
|
3269
3269
|
const r = lt(n, t);
|
|
3270
3270
|
return ht(fe, e, r);
|
|
3271
3271
|
}
|
|
3272
|
-
function
|
|
3272
|
+
function _c(e) {
|
|
3273
3273
|
if (typeof e != "string")
|
|
3274
3274
|
throw new Error("payload must be a valid string");
|
|
3275
3275
|
const t = e.length;
|
|
@@ -3296,23 +3296,23 @@ function Uc(e) {
|
|
|
3296
3296
|
};
|
|
3297
3297
|
}
|
|
3298
3298
|
function vn(e, t, n = fr(32)) {
|
|
3299
|
-
const { chacha_key: r, chacha_nonce: i, hmac_key: s } = ei(t, n), o = Bc(e),
|
|
3300
|
-
return he.encode(lt(new Uint8Array([2]), n,
|
|
3299
|
+
const { chacha_key: r, chacha_nonce: i, hmac_key: s } = ei(t, n), o = Bc(e), c = Ar(r, i, o), a = ti(s, c, n);
|
|
3300
|
+
return he.encode(lt(new Uint8Array([2]), n, c, a));
|
|
3301
3301
|
}
|
|
3302
|
-
function
|
|
3303
|
-
const { nonce: n, ciphertext: r, mac: i } =
|
|
3304
|
-
if (!Rs(
|
|
3302
|
+
function En(e, t) {
|
|
3303
|
+
const { nonce: n, ciphertext: r, mac: i } = _c(e), { chacha_key: s, chacha_nonce: o, hmac_key: c } = ei(t, n), a = ti(c, r, n);
|
|
3304
|
+
if (!Rs(a, i))
|
|
3305
3305
|
throw new Error("invalid MAC");
|
|
3306
|
-
const l =
|
|
3306
|
+
const l = Ar(s, o, r);
|
|
3307
3307
|
return kc(l);
|
|
3308
3308
|
}
|
|
3309
|
-
var
|
|
3309
|
+
var Uc = {
|
|
3310
3310
|
utils: {
|
|
3311
3311
|
getConversationKey: wn,
|
|
3312
3312
|
calcPaddedLen: bn
|
|
3313
3313
|
},
|
|
3314
3314
|
encrypt: vn,
|
|
3315
|
-
decrypt:
|
|
3315
|
+
decrypt: En
|
|
3316
3316
|
}, Ic = {};
|
|
3317
3317
|
D(Ic, {
|
|
3318
3318
|
makeNwcRequestEvent: () => $c,
|
|
@@ -3346,26 +3346,26 @@ D(Tc, {
|
|
|
3346
3346
|
useFetchImplementation: () => Rc,
|
|
3347
3347
|
validateZapRequest: () => Pc
|
|
3348
3348
|
});
|
|
3349
|
-
var
|
|
3349
|
+
var mn;
|
|
3350
3350
|
try {
|
|
3351
|
-
|
|
3351
|
+
mn = fetch;
|
|
3352
3352
|
} catch {
|
|
3353
3353
|
}
|
|
3354
3354
|
function Rc(e) {
|
|
3355
|
-
|
|
3355
|
+
mn = e;
|
|
3356
3356
|
}
|
|
3357
3357
|
async function Oc(e) {
|
|
3358
3358
|
try {
|
|
3359
3359
|
let t = "", { lud06: n, lud16: r } = JSON.parse(e.content);
|
|
3360
3360
|
if (n) {
|
|
3361
|
-
let { words: o } = je.decode(n, 1e3),
|
|
3362
|
-
t = ue.decode(
|
|
3361
|
+
let { words: o } = je.decode(n, 1e3), c = je.fromWords(o);
|
|
3362
|
+
t = ue.decode(c);
|
|
3363
3363
|
} else if (r) {
|
|
3364
|
-
let [o,
|
|
3365
|
-
t = new URL(`/.well-known/lnurlp/${o}`, `https://${
|
|
3364
|
+
let [o, c] = r.split("@");
|
|
3365
|
+
t = new URL(`/.well-known/lnurlp/${o}`, `https://${c}`).toString();
|
|
3366
3366
|
} else
|
|
3367
3367
|
return null;
|
|
3368
|
-
let s = await (await
|
|
3368
|
+
let s = await (await mn(t)).json();
|
|
3369
3369
|
if (s.allowsNostr && s.nostrPubkey)
|
|
3370
3370
|
return s.callback;
|
|
3371
3371
|
} catch {
|
|
@@ -3420,7 +3420,7 @@ function Hc({
|
|
|
3420
3420
|
bolt11: n,
|
|
3421
3421
|
paidAt: r
|
|
3422
3422
|
}) {
|
|
3423
|
-
let i = JSON.parse(e), s = i.tags.filter(([
|
|
3423
|
+
let i = JSON.parse(e), s = i.tags.filter(([c]) => c === "e" || c === "p" || c === "a"), o = {
|
|
3424
3424
|
kind: 9735,
|
|
3425
3425
|
created_at: Math.round(r.getTime() / 1e3),
|
|
3426
3426
|
content: "",
|
|
@@ -3438,7 +3438,7 @@ D(qc, {
|
|
|
3438
3438
|
wrapEvent: () => Vt,
|
|
3439
3439
|
wrapManyEvents: () => jc
|
|
3440
3440
|
});
|
|
3441
|
-
var Dc = 2 * 24 * 60 * 60, ni = () => Math.round(Date.now() / 1e3), ri = () => Math.round(ni() - Math.random() * Dc), ii = (e, t) => wn(e, t), si = (e, t, n) => vn(JSON.stringify(e), ii(t, n)), Dn = (e, t) => JSON.parse(
|
|
3441
|
+
var Dc = 2 * 24 * 60 * 60, ni = () => Math.round(Date.now() / 1e3), ri = () => Math.round(ni() - Math.random() * Dc), ii = (e, t) => wn(e, t), si = (e, t, n) => vn(JSON.stringify(e), ii(t, n)), Dn = (e, t) => JSON.parse(En(e.content, ii(t, e.pubkey)));
|
|
3442
3442
|
function oi(e, t) {
|
|
3443
3443
|
const n = {
|
|
3444
3444
|
created_at: ni(),
|
|
@@ -3447,7 +3447,7 @@ function oi(e, t) {
|
|
|
3447
3447
|
...e,
|
|
3448
3448
|
pubkey: le(t)
|
|
3449
3449
|
};
|
|
3450
|
-
return n.id =
|
|
3450
|
+
return n.id = Ge(n), n;
|
|
3451
3451
|
}
|
|
3452
3452
|
function ai(e, t, n) {
|
|
3453
3453
|
return X(
|
|
@@ -3461,7 +3461,7 @@ function ai(e, t, n) {
|
|
|
3461
3461
|
);
|
|
3462
3462
|
}
|
|
3463
3463
|
function ci(e, t) {
|
|
3464
|
-
const n =
|
|
3464
|
+
const n = _e();
|
|
3465
3465
|
return X(
|
|
3466
3466
|
{
|
|
3467
3467
|
kind: Pr,
|
|
@@ -3579,9 +3579,8 @@ async function wi(e, t, n, r) {
|
|
|
3579
3579
|
throw new Error("Invalid nostr event, payload tag does not match request body hash");
|
|
3580
3580
|
return !0;
|
|
3581
3581
|
}
|
|
3582
|
-
const
|
|
3583
|
-
|
|
3584
|
-
function ru(e) {
|
|
3582
|
+
const Be = 30078, jn = 30078, Gc = 14, ru = 100;
|
|
3583
|
+
function iu(e) {
|
|
3585
3584
|
return JSON.stringify({
|
|
3586
3585
|
rootKey: M(e.rootKey),
|
|
3587
3586
|
theirCurrentNostrPublicKey: e.theirCurrentNostrPublicKey,
|
|
@@ -3613,7 +3612,7 @@ function ru(e) {
|
|
|
3613
3612
|
)
|
|
3614
3613
|
});
|
|
3615
3614
|
}
|
|
3616
|
-
function
|
|
3615
|
+
function su(e) {
|
|
3617
3616
|
const t = JSON.parse(e);
|
|
3618
3617
|
return {
|
|
3619
3618
|
rootKey: G(t.rootKey),
|
|
@@ -3646,10 +3645,10 @@ function iu(e) {
|
|
|
3646
3645
|
)
|
|
3647
3646
|
};
|
|
3648
3647
|
}
|
|
3649
|
-
async function*
|
|
3648
|
+
async function* ou(e) {
|
|
3650
3649
|
const t = [];
|
|
3651
3650
|
let n = null;
|
|
3652
|
-
const r = e.
|
|
3651
|
+
const r = e.onEvent((i) => {
|
|
3653
3652
|
n ? (n(i), n = null) : t.push(i);
|
|
3654
3653
|
});
|
|
3655
3654
|
try {
|
|
@@ -3661,7 +3660,7 @@ async function* su(e) {
|
|
|
3661
3660
|
r();
|
|
3662
3661
|
}
|
|
3663
3662
|
}
|
|
3664
|
-
function
|
|
3663
|
+
function Me(e, t = new Uint8Array(32), n = 1) {
|
|
3665
3664
|
const r = rn(fe, e, t), i = [];
|
|
3666
3665
|
for (let s = 1; s <= n; s++)
|
|
3667
3666
|
i.push(Cr(fe, r, new Uint8Array([s]), 32));
|
|
@@ -3670,7 +3669,7 @@ function Oe(e, t = new Uint8Array(32), n = 1) {
|
|
|
3670
3669
|
function It(e, t) {
|
|
3671
3670
|
return `${e}:${t}`;
|
|
3672
3671
|
}
|
|
3673
|
-
const Fc = 1e3;
|
|
3672
|
+
const Fc = 1e3, Jc = "0000000000000000000000000000000000000000000000000000000000000000";
|
|
3674
3673
|
class st {
|
|
3675
3674
|
// 1. CHANNEL PUBLIC INTERFACE
|
|
3676
3675
|
constructor(t, n) {
|
|
@@ -3692,11 +3691,11 @@ class st {
|
|
|
3692
3691
|
* @returns A new Session instance
|
|
3693
3692
|
*/
|
|
3694
3693
|
static init(t, n, r, i, s, o) {
|
|
3695
|
-
const
|
|
3694
|
+
const c = _e(), [a, l] = Me(s, q.getConversationKey(c, n), 2);
|
|
3696
3695
|
let f, u;
|
|
3697
|
-
i ? (f = { publicKey: le(r), privateKey: r }, u = { publicKey: le(
|
|
3696
|
+
i ? (f = { publicKey: le(r), privateKey: r }, u = { publicKey: le(c), privateKey: c }) : u = { publicKey: le(r), privateKey: r };
|
|
3698
3697
|
const g = {
|
|
3699
|
-
rootKey: i ?
|
|
3698
|
+
rootKey: i ? a : s,
|
|
3700
3699
|
theirNextNostrPublicKey: n,
|
|
3701
3700
|
ourCurrentNostrKey: f,
|
|
3702
3701
|
ourNextNostrKey: u,
|
|
@@ -3711,19 +3710,42 @@ class st {
|
|
|
3711
3710
|
return o && (b.name = o), b;
|
|
3712
3711
|
}
|
|
3713
3712
|
/**
|
|
3714
|
-
* Sends
|
|
3715
|
-
* @param
|
|
3713
|
+
* Sends a text message through the encrypted session
|
|
3714
|
+
* @param text The plaintext message to send
|
|
3716
3715
|
* @returns A verified Nostr event containing the encrypted message
|
|
3717
3716
|
* @throws Error if we are not the initiator and trying to send the first message
|
|
3718
3717
|
*/
|
|
3719
3718
|
send(t) {
|
|
3719
|
+
return this.sendEvent({
|
|
3720
|
+
content: t,
|
|
3721
|
+
kind: Gc
|
|
3722
|
+
});
|
|
3723
|
+
}
|
|
3724
|
+
/**
|
|
3725
|
+
* Send a Nostr event through the encrypted session
|
|
3726
|
+
* @param event Partial Nostr event to send. Must be unsigned. Id and will be generated if not provided.
|
|
3727
|
+
* @returns A verified Nostr event containing the encrypted message
|
|
3728
|
+
* @throws Error if we are not the initiator and trying to send the first message
|
|
3729
|
+
*/
|
|
3730
|
+
sendEvent(t) {
|
|
3720
3731
|
if (!this.state.theirNextNostrPublicKey || !this.state.ourCurrentNostrKey)
|
|
3721
3732
|
throw new Error("we are not the initiator, so we can't send the first message");
|
|
3722
|
-
|
|
3733
|
+
if ("sig" in t)
|
|
3734
|
+
throw new Error("Event must be unsigned " + JSON.stringify(t));
|
|
3735
|
+
const n = {
|
|
3736
|
+
...t,
|
|
3737
|
+
content: t.content || "",
|
|
3738
|
+
kind: t.kind || Be,
|
|
3739
|
+
created_at: t.created_at || Math.floor(Date.now() / 1e3),
|
|
3740
|
+
tags: t.tags || [],
|
|
3741
|
+
pubkey: t.pubkey || Jc
|
|
3742
|
+
};
|
|
3743
|
+
n.tags.some(([a]) => a === "ms") || n.tags.push(["ms", Date.now().toString()]), n.id = Ge(n);
|
|
3744
|
+
const [r, i] = this.ratchetEncrypt(JSON.stringify(t)), s = q.getConversationKey(this.state.ourCurrentNostrKey.privateKey, this.state.theirNextNostrPublicKey), o = q.encrypt(JSON.stringify(r), s);
|
|
3723
3745
|
return X({
|
|
3724
|
-
content:
|
|
3725
|
-
kind:
|
|
3726
|
-
tags: [["header",
|
|
3746
|
+
content: i,
|
|
3747
|
+
kind: Be,
|
|
3748
|
+
tags: [["header", o]],
|
|
3727
3749
|
created_at: Math.floor(Date.now() / 1e3)
|
|
3728
3750
|
}, this.state.ourCurrentNostrKey.privateKey);
|
|
3729
3751
|
}
|
|
@@ -3732,7 +3754,7 @@ class st {
|
|
|
3732
3754
|
* @param callback Function to be called when a message is received
|
|
3733
3755
|
* @returns Unsubscribe function to stop receiving messages
|
|
3734
3756
|
*/
|
|
3735
|
-
|
|
3757
|
+
onEvent(t) {
|
|
3736
3758
|
const n = this.currentInternalSubscriptionId++;
|
|
3737
3759
|
return this.internalSubscriptions.set(n, t), this.subscribeToNostrEvents(), () => this.internalSubscriptions.delete(n);
|
|
3738
3760
|
}
|
|
@@ -3745,11 +3767,10 @@ class st {
|
|
|
3745
3767
|
}
|
|
3746
3768
|
// 2. RATCHET FUNCTIONS
|
|
3747
3769
|
ratchetEncrypt(t) {
|
|
3748
|
-
const [n, r] =
|
|
3770
|
+
const [n, r] = Me(this.state.sendingChainKey, new Uint8Array([1]), 2);
|
|
3749
3771
|
return this.state.sendingChainKey = n, [{
|
|
3750
3772
|
number: this.state.sendingChainMessageNumber++,
|
|
3751
3773
|
nextPublicKey: this.state.ourNextNostrKey.publicKey,
|
|
3752
|
-
time: Date.now(),
|
|
3753
3774
|
previousChainLength: this.state.previousSendingChainMessageCount
|
|
3754
3775
|
}, q.encrypt(t, r)];
|
|
3755
3776
|
}
|
|
@@ -3757,47 +3778,47 @@ class st {
|
|
|
3757
3778
|
const i = this.trySkippedMessageKeys(t, n, r);
|
|
3758
3779
|
if (i) return i;
|
|
3759
3780
|
this.skipMessageKeys(t.number, r);
|
|
3760
|
-
const [s, o] =
|
|
3781
|
+
const [s, o] = Me(this.state.receivingChainKey, new Uint8Array([1]), 2);
|
|
3761
3782
|
this.state.receivingChainKey = s, this.state.receivingChainMessageNumber++;
|
|
3762
3783
|
try {
|
|
3763
3784
|
return q.decrypt(n, o);
|
|
3764
|
-
} catch (
|
|
3765
|
-
throw console.error(this.name, "Decryption failed:",
|
|
3785
|
+
} catch (c) {
|
|
3786
|
+
throw console.error(this.name, "Decryption failed:", c, {
|
|
3766
3787
|
messageKey: M(o).slice(0, 4),
|
|
3767
3788
|
receivingChainKey: M(this.state.receivingChainKey).slice(0, 4),
|
|
3768
3789
|
sendingChainKey: this.state.sendingChainKey && M(this.state.sendingChainKey).slice(0, 4),
|
|
3769
3790
|
rootKey: M(this.state.rootKey).slice(0, 4)
|
|
3770
|
-
}),
|
|
3791
|
+
}), c;
|
|
3771
3792
|
}
|
|
3772
3793
|
}
|
|
3773
3794
|
ratchetStep(t) {
|
|
3774
3795
|
this.state.previousSendingChainMessageCount = this.state.sendingChainMessageNumber, this.state.sendingChainMessageNumber = 0, this.state.receivingChainMessageNumber = 0, this.state.theirNextNostrPublicKey = t;
|
|
3775
|
-
const n = q.getConversationKey(this.state.ourNextNostrKey.privateKey, this.state.theirNextNostrPublicKey), [r, i] =
|
|
3796
|
+
const n = q.getConversationKey(this.state.ourNextNostrKey.privateKey, this.state.theirNextNostrPublicKey), [r, i] = Me(this.state.rootKey, n, 2);
|
|
3776
3797
|
this.state.receivingChainKey = i, this.state.ourCurrentNostrKey = this.state.ourNextNostrKey;
|
|
3777
|
-
const s =
|
|
3798
|
+
const s = _e();
|
|
3778
3799
|
this.state.ourNextNostrKey = {
|
|
3779
3800
|
publicKey: le(s),
|
|
3780
3801
|
privateKey: s
|
|
3781
3802
|
};
|
|
3782
|
-
const o = q.getConversationKey(this.state.ourNextNostrKey.privateKey, this.state.theirNextNostrPublicKey), [
|
|
3783
|
-
this.state.rootKey =
|
|
3803
|
+
const o = q.getConversationKey(this.state.ourNextNostrKey.privateKey, this.state.theirNextNostrPublicKey), [c, a] = Me(r, o, 2);
|
|
3804
|
+
this.state.rootKey = c, this.state.sendingChainKey = a;
|
|
3784
3805
|
}
|
|
3785
3806
|
// 3. MESSAGE KEY FUNCTIONS
|
|
3786
3807
|
skipMessageKeys(t, n) {
|
|
3787
3808
|
if (this.state.receivingChainMessageNumber + Fc < t)
|
|
3788
3809
|
throw new Error("Too many skipped messages");
|
|
3789
3810
|
for (; this.state.receivingChainMessageNumber < t; ) {
|
|
3790
|
-
const [r, i] =
|
|
3811
|
+
const [r, i] = Me(this.state.receivingChainKey, new Uint8Array([1]), 2);
|
|
3791
3812
|
this.state.receivingChainKey = r;
|
|
3792
3813
|
const s = It(n, this.state.receivingChainMessageNumber);
|
|
3793
3814
|
if (this.state.skippedMessageKeys[s] = i, !this.state.skippedHeaderKeys[n]) {
|
|
3794
3815
|
const o = [];
|
|
3795
3816
|
if (this.state.ourCurrentNostrKey) {
|
|
3796
|
-
const
|
|
3797
|
-
o.push(
|
|
3817
|
+
const a = q.getConversationKey(this.state.ourCurrentNostrKey.privateKey, n);
|
|
3818
|
+
o.push(a);
|
|
3798
3819
|
}
|
|
3799
|
-
const
|
|
3800
|
-
o.push(
|
|
3820
|
+
const c = q.getConversationKey(this.state.ourNextNostrKey.privateKey, n);
|
|
3821
|
+
o.push(c), this.state.skippedHeaderKeys[n] = o;
|
|
3801
3822
|
}
|
|
3802
3823
|
this.state.receivingChainMessageNumber++;
|
|
3803
3824
|
}
|
|
@@ -3807,7 +3828,7 @@ class st {
|
|
|
3807
3828
|
const i = It(r, t.number);
|
|
3808
3829
|
if (i in this.state.skippedMessageKeys) {
|
|
3809
3830
|
const o = this.state.skippedMessageKeys[i];
|
|
3810
|
-
return delete this.state.skippedMessageKeys[i], Object.keys(this.state.skippedMessageKeys).some((
|
|
3831
|
+
return delete this.state.skippedMessageKeys[i], Object.keys(this.state.skippedMessageKeys).some((a) => a.startsWith(`${r}:`)) || (delete this.state.skippedHeaderKeys[r], (s = this.nostrUnsubscribe) == null || s.call(this), this.nostrUnsubscribe = void 0), q.decrypt(n, o);
|
|
3811
3832
|
}
|
|
3812
3833
|
return null;
|
|
3813
3834
|
}
|
|
@@ -3836,46 +3857,46 @@ class st {
|
|
|
3836
3857
|
throw new Error("Failed to decrypt header with current and skipped header keys");
|
|
3837
3858
|
}
|
|
3838
3859
|
handleNostrEvent(t) {
|
|
3839
|
-
var
|
|
3860
|
+
var c;
|
|
3840
3861
|
const [n, r, i] = this.decryptHeader(t);
|
|
3841
3862
|
if (!i)
|
|
3842
|
-
this.state.theirNextNostrPublicKey !== n.nextPublicKey && (this.state.theirCurrentNostrPublicKey = this.state.theirNextNostrPublicKey, this.state.theirNextNostrPublicKey = n.nextPublicKey, (
|
|
3843
|
-
{ authors: [this.state.theirNextNostrPublicKey], kinds: [
|
|
3863
|
+
this.state.theirNextNostrPublicKey !== n.nextPublicKey && (this.state.theirCurrentNostrPublicKey = this.state.theirNextNostrPublicKey, this.state.theirNextNostrPublicKey = n.nextPublicKey, (c = this.nostrUnsubscribe) == null || c.call(this), this.nostrUnsubscribe = this.nostrNextUnsubscribe, this.nostrNextUnsubscribe = this.nostrSubscribe(
|
|
3864
|
+
{ authors: [this.state.theirNextNostrPublicKey], kinds: [Be] },
|
|
3844
3865
|
(a) => this.handleNostrEvent(a)
|
|
3845
3866
|
)), r && (this.skipMessageKeys(n.previousChainLength, t.pubkey), this.ratchetStep(n.nextPublicKey));
|
|
3846
3867
|
else if (!(It(t.pubkey, n.number) in this.state.skippedMessageKeys))
|
|
3847
3868
|
return;
|
|
3848
|
-
const s = this.ratchetDecrypt(n, t.content, t.pubkey);
|
|
3849
|
-
this.internalSubscriptions.forEach((a) => a(
|
|
3869
|
+
const s = this.ratchetDecrypt(n, t.content, t.pubkey), o = JSON.parse(s);
|
|
3870
|
+
this.internalSubscriptions.forEach((a) => a(o, t));
|
|
3850
3871
|
}
|
|
3851
3872
|
subscribeToNostrEvents() {
|
|
3852
3873
|
if (this.nostrNextUnsubscribe) return;
|
|
3853
3874
|
this.nostrNextUnsubscribe = this.nostrSubscribe(
|
|
3854
|
-
{ authors: [this.state.theirNextNostrPublicKey], kinds: [
|
|
3875
|
+
{ authors: [this.state.theirNextNostrPublicKey], kinds: [Be] },
|
|
3855
3876
|
(n) => this.handleNostrEvent(n)
|
|
3856
3877
|
);
|
|
3857
3878
|
const t = Object.keys(this.state.skippedHeaderKeys);
|
|
3858
3879
|
this.state.theirCurrentNostrPublicKey && !t.includes(this.state.theirCurrentNostrPublicKey) && t.push(this.state.theirCurrentNostrPublicKey), this.nostrUnsubscribe = this.nostrSubscribe(
|
|
3859
|
-
{ authors: t, kinds: [
|
|
3880
|
+
{ authors: t, kinds: [Be] },
|
|
3860
3881
|
(n) => this.handleNostrEvent(n)
|
|
3861
3882
|
);
|
|
3862
3883
|
}
|
|
3863
3884
|
}
|
|
3864
3885
|
new TextDecoder("utf-8");
|
|
3865
3886
|
new TextEncoder();
|
|
3866
|
-
function
|
|
3867
|
-
const n =
|
|
3887
|
+
function Qe(e, t) {
|
|
3888
|
+
const n = Ie.getSharedSecret(e, "02" + t).subarray(1, 33);
|
|
3868
3889
|
return rn(fe, n, "nip44-v2");
|
|
3869
3890
|
}
|
|
3870
|
-
class
|
|
3871
|
-
constructor(t, n, r, i, s, o,
|
|
3872
|
-
this.inviterEphemeralPublicKey = t, this.sharedSecret = n, this.inviter = r, this.inviterEphemeralPrivateKey = i, this.label = s, this.maxUses = o, this.usedBy =
|
|
3891
|
+
class Pe {
|
|
3892
|
+
constructor(t, n, r, i, s, o, c = []) {
|
|
3893
|
+
this.inviterEphemeralPublicKey = t, this.sharedSecret = n, this.inviter = r, this.inviterEphemeralPrivateKey = i, this.label = s, this.maxUses = o, this.usedBy = c;
|
|
3873
3894
|
}
|
|
3874
3895
|
static createNew(t, n, r) {
|
|
3875
3896
|
if (!t)
|
|
3876
3897
|
throw new Error("Inviter public key is required");
|
|
3877
|
-
const i =
|
|
3878
|
-
return new
|
|
3898
|
+
const i = _e(), s = le(i), o = M(_e());
|
|
3899
|
+
return new Pe(
|
|
3879
3900
|
s,
|
|
3880
3901
|
o,
|
|
3881
3902
|
t,
|
|
@@ -3895,18 +3916,18 @@ class Me {
|
|
|
3895
3916
|
} catch (l) {
|
|
3896
3917
|
throw new Error("Invite data in URL hash is not valid JSON: " + l);
|
|
3897
3918
|
}
|
|
3898
|
-
const { inviter: o, ephemeralKey:
|
|
3899
|
-
if (!o || !
|
|
3919
|
+
const { inviter: o, ephemeralKey: c, sharedSecret: a } = s;
|
|
3920
|
+
if (!o || !c || !a)
|
|
3900
3921
|
throw new Error("Missing required fields (inviter, ephemeralKey, sharedSecret) in invite data.");
|
|
3901
|
-
return new
|
|
3902
|
-
a,
|
|
3922
|
+
return new Pe(
|
|
3903
3923
|
c,
|
|
3924
|
+
a,
|
|
3904
3925
|
o
|
|
3905
3926
|
);
|
|
3906
3927
|
}
|
|
3907
3928
|
static deserialize(t) {
|
|
3908
3929
|
const n = JSON.parse(t);
|
|
3909
|
-
return new
|
|
3930
|
+
return new Pe(
|
|
3910
3931
|
n.inviterEphemeralPublicKey,
|
|
3911
3932
|
n.sharedSecret,
|
|
3912
3933
|
n.inviter,
|
|
@@ -3917,15 +3938,15 @@ class Me {
|
|
|
3917
3938
|
);
|
|
3918
3939
|
}
|
|
3919
3940
|
static fromEvent(t) {
|
|
3920
|
-
var o,
|
|
3941
|
+
var o, c;
|
|
3921
3942
|
if (!t.sig)
|
|
3922
3943
|
throw new Error("Event is not signed");
|
|
3923
3944
|
if (!pt(t))
|
|
3924
3945
|
throw new Error("Event signature is invalid");
|
|
3925
|
-
const { tags: n } = t, r = (o = n.find(([
|
|
3946
|
+
const { tags: n } = t, r = (o = n.find(([a]) => a === "ephemeralKey")) == null ? void 0 : o[1], i = (c = n.find(([a]) => a === "sharedSecret")) == null ? void 0 : c[1], s = t.pubkey;
|
|
3926
3947
|
if (!r || !i)
|
|
3927
3948
|
throw new Error("Invalid invite event: missing session key or sharedSecret");
|
|
3928
|
-
return new
|
|
3949
|
+
return new Pe(
|
|
3929
3950
|
r,
|
|
3930
3951
|
i,
|
|
3931
3952
|
s
|
|
@@ -3939,14 +3960,14 @@ class Me {
|
|
|
3939
3960
|
"#d": ["nostr-double-ratchet/invite"]
|
|
3940
3961
|
};
|
|
3941
3962
|
let s = 0;
|
|
3942
|
-
return n(i, (
|
|
3943
|
-
if (!(!
|
|
3944
|
-
s =
|
|
3963
|
+
return n(i, (c) => {
|
|
3964
|
+
if (!(!c.created_at || c.created_at <= s)) {
|
|
3965
|
+
s = c.created_at;
|
|
3945
3966
|
try {
|
|
3946
|
-
const
|
|
3947
|
-
r(
|
|
3948
|
-
} catch (
|
|
3949
|
-
console.error("Error processing invite:",
|
|
3967
|
+
const a = Pe.fromEvent(c);
|
|
3968
|
+
r(a);
|
|
3969
|
+
} catch (a) {
|
|
3970
|
+
console.error("Error processing invite:", a, "event:", c);
|
|
3950
3971
|
}
|
|
3951
3972
|
}
|
|
3952
3973
|
});
|
|
@@ -4001,25 +4022,25 @@ class Me {
|
|
|
4001
4022
|
* so the inviter can create the session on their side.
|
|
4002
4023
|
*/
|
|
4003
4024
|
async accept(t, n, r) {
|
|
4004
|
-
const i =
|
|
4025
|
+
const i = _e(), s = le(i), o = this.inviter || this.inviterEphemeralPublicKey, c = G(this.sharedSecret), a = st.init(t, this.inviterEphemeralPublicKey, i, !0, c, void 0), l = _e(), f = le(l), g = await (typeof r == "function" ? r : (h, d) => Promise.resolve(q.encrypt(h, Qe(r, d))))(s, o), b = {
|
|
4005
4026
|
pubkey: n,
|
|
4006
4027
|
tags: [["sharedSecret", this.sharedSecret]],
|
|
4007
|
-
content: await q.encrypt(g,
|
|
4028
|
+
content: await q.encrypt(g, c),
|
|
4008
4029
|
created_at: Math.floor(Date.now() / 1e3)
|
|
4009
4030
|
}, p = {
|
|
4010
|
-
kind:
|
|
4031
|
+
kind: Be,
|
|
4011
4032
|
pubkey: f,
|
|
4012
|
-
content: q.encrypt(JSON.stringify(b),
|
|
4033
|
+
content: q.encrypt(JSON.stringify(b), Qe(l, this.inviterEphemeralPublicKey)),
|
|
4013
4034
|
created_at: Math.floor(Date.now() / 1e3),
|
|
4014
4035
|
tags: [["p", this.inviterEphemeralPublicKey]]
|
|
4015
4036
|
};
|
|
4016
|
-
return { session:
|
|
4037
|
+
return { session: a, event: X(p, l) };
|
|
4017
4038
|
}
|
|
4018
4039
|
listen(t, n, r) {
|
|
4019
4040
|
if (!this.inviterEphemeralPrivateKey)
|
|
4020
4041
|
throw new Error("Inviter session key is not available");
|
|
4021
4042
|
const i = {
|
|
4022
|
-
kinds: [
|
|
4043
|
+
kinds: [Be],
|
|
4023
4044
|
"#p": [this.inviterEphemeralPublicKey]
|
|
4024
4045
|
};
|
|
4025
4046
|
return n(i, async (s) => {
|
|
@@ -4028,14 +4049,14 @@ class Me {
|
|
|
4028
4049
|
console.error("Invite has reached maximum number of uses");
|
|
4029
4050
|
return;
|
|
4030
4051
|
}
|
|
4031
|
-
const o = await q.decrypt(s.content,
|
|
4032
|
-
if (!
|
|
4052
|
+
const o = await q.decrypt(s.content, Qe(this.inviterEphemeralPrivateKey, s.pubkey)), c = JSON.parse(o);
|
|
4053
|
+
if (!c.tags || !c.tags.some(([h, d]) => h === "sharedSecret" && d === this.sharedSecret)) {
|
|
4033
4054
|
console.error("Invalid secret from event", s);
|
|
4034
4055
|
return;
|
|
4035
4056
|
}
|
|
4036
|
-
const
|
|
4057
|
+
const a = G(this.sharedSecret), l = c.pubkey;
|
|
4037
4058
|
this.usedBy.push(l);
|
|
4038
|
-
const f = await q.decrypt(
|
|
4059
|
+
const f = await q.decrypt(c.content, a), g = await (typeof t == "function" ? t : (h, d) => Promise.resolve(q.decrypt(h, Qe(t, d))))(f, l), b = s.id, p = st.init(n, g, this.inviterEphemeralPrivateKey, !1, a, b);
|
|
4039
4060
|
r(p, l);
|
|
4040
4061
|
} catch (o) {
|
|
4041
4062
|
console.error("Error processing invite message:", o, "event", s);
|
|
@@ -4044,15 +4065,15 @@ class Me {
|
|
|
4044
4065
|
}
|
|
4045
4066
|
}
|
|
4046
4067
|
export {
|
|
4068
|
+
Gc as CHAT_MESSAGE_KIND,
|
|
4047
4069
|
jn as INVITE_EVENT_KIND,
|
|
4048
|
-
|
|
4049
|
-
|
|
4050
|
-
|
|
4051
|
-
Gc as Sender,
|
|
4070
|
+
Pe as Invite,
|
|
4071
|
+
ru as MAX_SKIP,
|
|
4072
|
+
Be as MESSAGE_EVENT_KIND,
|
|
4052
4073
|
st as Session,
|
|
4053
|
-
|
|
4054
|
-
|
|
4055
|
-
|
|
4056
|
-
|
|
4074
|
+
ou as createEventStream,
|
|
4075
|
+
su as deserializeSessionState,
|
|
4076
|
+
Me as kdf,
|
|
4077
|
+
iu as serializeSessionState,
|
|
4057
4078
|
It as skippedMessageIndexKey
|
|
4058
4079
|
};
|