salty-crypto 0.3.0 → 0.3.1

package/lib/aead/chacha20poly1305.d.ts

@@ -0,0 +1,2 @@
+import { AEAD } from '../aead';
+export declare const ChaCha20Poly1305_RFC8439: AEAD;

package/lib/aead/chacha20poly1305.js

@@ -0,0 +1,53 @@
+/// SPDX-License-Identifier: MIT
+/// SPDX-FileCopyrightText: Copyright © 2023 Tony Garnock-Jones <tonyg@leastfixedpoint.com>
+// RFC-8439 AEAD construction.
+import { _encrypt, _decrypt } from '../aead';
+import { ChaCha20 } from '../cipher/chacha20';
+import { Poly1305 } from '../hash/poly1305';
+import * as Bytes from '../bytes';
+const PADDING = new Uint8Array(16);
+function pad16(p, unpadded_length) {
+    const leftover = unpadded_length & 15;
+    if (leftover !== 0)
+        p.update(PADDING, 0, 16 - leftover);
+}
+function aead_tag(tag, key, nonce, ciphertext, cipherlength, associated_data) {
+    const mac_key = new Uint8Array(Poly1305.KEYBYTES);
+    ChaCha20.stream_xor(key, nonce, mac_key, mac_key, 0);
+    const p = new Poly1305(mac_key);
+    if (associated_data !== void 0) {
+        p.update(associated_data, 0, associated_data.byteLength);
+        pad16(p, associated_data.byteLength);
+    }
+    p.update(ciphertext, 0, cipherlength);
+    pad16(p, cipherlength);
+    const L = new Uint8Array(16);
+    const Lv = new DataView(L.buffer);
+    if (associated_data !== void 0) {
+        Lv.setUint32(0, associated_data.byteLength, true);
+    }
+    Lv.setUint32(8, cipherlength, true);
+    p.update(L, 0, L.byteLength);
+    p.final(tag);
+}
+export const ChaCha20Poly1305_RFC8439 = {
+    NAME: 'ChaChaPoly',
+    KEYBYTES: 32,
+    NONCEBYTES: 12,
+    TAGBYTES: 16,
+    encrypt_detached(plaintext, ciphertext, messagelength, tag, key, nonce, associated_data) {
+        ChaCha20.stream_xor(key, nonce, plaintext, ciphertext, 1, messagelength);
+        aead_tag(tag, key, nonce, ciphertext, messagelength, associated_data);
+    },
+    encrypt: _encrypt,
+    decrypt_detached(plaintext, ciphertext, messagelength, expected_tag, key, nonce, associated_data) {
+        const actual_tag = new Uint8Array(this.TAGBYTES);
+        aead_tag(actual_tag, key, nonce, ciphertext, messagelength, associated_data);
+        const ok = Bytes.equal(actual_tag, expected_tag, actual_tag.byteLength);
+        if (ok)
+            ChaCha20.stream_xor(key, nonce, ciphertext, plaintext, 1, messagelength);
+        return ok;
+    },
+    decrypt: _decrypt,
+};
+//# sourceMappingURL=chacha20poly1305.js.map

package/lib/aead/chacha20poly1305.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"chacha20poly1305.js","sourceRoot":"","sources":["../../src/aead/chacha20poly1305.ts"],"names":[],"mappings":"AAAA,gCAAgC;AAChC,2FAA2F;AAE3F,8BAA8B;AAE9B,OAAO,EAAQ,QAAQ,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAGnD,OAAO,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAC9C,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAC5C,OAAO,KAAK,KAAK,MAAM,UAAU,CAAC;AAGlC,MAAM,OAAO,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC;AAEnC,SAAS,KAAK,CAAC,CAAgB,EAAE,eAAuB;IACpD,MAAM,QAAQ,GAAG,eAAe,GAAG,EAAE,CAAC;IACtC,IAAI,QAAQ,KAAK,CAAC;QAAE,CAAC,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC,EAAE,EAAE,GAAG,QAAQ,CAAC,CAAC;AAC5D,CAAC;AAED,SAAS,QAAQ,CAAC,GAAe,EACf,GAAa,EACb,KAAY,EACZ,UAAsB,EACtB,YAAoB,EACpB,eAA4B;IAE1C,MAAM,OAAO,GAAG,IAAI,UAAU,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IAClD,QAAQ,CAAC,UAAU,CAAC,GAAG,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE,CAAC,CAAC,CAAC;IACrD,MAAM,CAAC,GAAG,IAAI,QAAQ,CAAC,OAAO,CAAC,CAAC;IAEhC,IAAI,eAAe,KAAK,KAAK,CAAC,EAAE;QAC5B,CAAC,CAAC,MAAM,CAAC,eAAe,EAAE,CAAC,EAAE,eAAe,CAAC,UAAU,CAAC,CAAC;QACzD,KAAK,CAAC,CAAC,EAAE,eAAe,CAAC,UAAU,CAAC,CAAC;KACxC;IAED,CAAC,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC,EAAE,YAAY,CAAC,CAAC;IACtC,KAAK,CAAC,CAAC,EAAE,YAAY,CAAC,CAAC;IAEvB,MAAM,CAAC,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC;IAC7B,MAAM,EAAE,GAAG,IAAI,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;IAClC,IAAI,eAAe,KAAK,KAAK,CAAC,EAAE;QAC5B,EAAE,CAAC,SAAS,CAAC,CAAC,EAAE,eAAe,CAAC,UAAU,EAAE,IAAI,CAAC,CAAC;KACrD;IACD,EAAE,CAAC,SAAS,CAAC,CAAC,EAAE,YAAY,EAAE,IAAI,CAAC,CAAC;IACpC,CAAC,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,UAAU,CAAC,CAAC;IAE7B,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;AACjB,CAAC;AAED,MAAM,CAAC,MAAM,wBAAwB,GAAS;IAC1C,IAAI,EAAE,YAAY;IAClB,QAAQ,EAAE,EAAE;IACZ,UAAU,EAAE,EAAE;IACd,QAAQ,EAAE,EAAE;IAEZ,gBAAgB,CAAC,SAAqB,EACrB,UAAsB,EACtB,aAAqB,EACrB,GAAe,EACf,GAAa,EACb,KAAY,EACZ,eAA4B;QACzC,QAAQ,CAAC,UAAU,CAAC,GAAG,EAAE,KAAK,EAAE,SAAS,EAAE,UAAU,EAAE,CAAC,EAAE,aAAa,CAAC,CAAC;QACzE,QAAQ,CAAC,GAAG,EAAE,GAAG,EAAE,KAAK,EAAE,UAAU,EAAE,aAAa,EAAE,eAAe,CAAC,CAAC;IAC1E,CAAC;IAED,OAAO,EAAE,QAAQ;IAEjB,gBAAgB,CAAC,SAAqB,EACrB,UAAsB,EACtB,aAAqB,EACrB,YAAwB,EACxB,GAAa,EACb,KAAY,EACZ,eAA4B;QACzC,MAAM,UAAU,GAAG,IAAI,UAAU,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACjD,QAAQ,CAAC,UAAU,EAAE,GAAG,EAAE,KAAK,EAAE,UAAU,EAAE,aAAa,EAAE,eAAe,CAAC,CAAC;QAC7E,MAAM,EAAE,GAAG,KAAK,CAAC,KAAK,CAAC,UAAU,EAAE,YAAY,EAAE,UAAU,CAAC,UAAU,CAAC,CAAC;QACxE,IAAI,EAAE;YAAE,QAAQ,CAAC,UAAU,CAAC,GAAG,EAAE,KAAK,EAAE,UAAU,EAAE,SAAS,EAAE,CAAC,EAAE,aAAa,CAAC,CAAC;QACjF,OAAO,EAAE,CAAC;IACd,CAAC;IAED,OAAO,EAAE,QAAQ;CACpB,CAAC"}

package/lib/aead.d.ts

@@ -0,0 +1,16 @@
+import { Nonce } from './nonce';
+export declare class AuthenticationFailure extends Error {
+}
+export interface AEAD {
+    readonly NAME: string;
+    readonly KEYBYTES: number;
+    readonly NONCEBYTES: number;
+    readonly TAGBYTES: number;
+    encrypt_detached(plaintext: Uint8Array, ciphertext: Uint8Array, messagelength: number, tag: Uint8Array, key: DataView, nonce: Nonce, associated_data?: Uint8Array): void;
+    encrypt(plaintext: Uint8Array, key: DataView, nonce: Nonce, associated_data?: Uint8Array): Uint8Array;
+    decrypt_detached(plaintext: Uint8Array, ciphertext: Uint8Array, messagelength: number, expected_tag: Uint8Array, key: DataView, nonce: Nonce, associated_data?: Uint8Array): boolean;
+    decrypt(ciphertextAndTag: Uint8Array, key: DataView, nonce: Nonce, associated_data?: Uint8Array): Uint8Array;
+}
+export declare function _encrypt(this: AEAD, plaintext: Uint8Array, key: DataView, nonce: Nonce, associated_data?: Uint8Array): Uint8Array;
+export declare function _decrypt(this: AEAD, ciphertextAndTag: Uint8Array, key: DataView, nonce: Nonce, associated_data?: Uint8Array): Uint8Array;
+export { ChaCha20Poly1305_RFC8439 } from './aead/chacha20poly1305';

package/lib/aead.js

@@ -0,0 +1,18 @@
+/// SPDX-License-Identifier: MIT
+/// SPDX-FileCopyrightText: Copyright © 2023 Tony Garnock-Jones <tonyg@leastfixedpoint.com>
+export class AuthenticationFailure extends Error {
+}
+export function _encrypt(plaintext, key, nonce, associated_data) {
+    const ciphertextAndTag = new Uint8Array(plaintext.byteLength + this.TAGBYTES);
+    this.encrypt_detached(plaintext, ciphertextAndTag, plaintext.byteLength, ciphertextAndTag.subarray(plaintext.byteLength), key, nonce, associated_data);
+    return ciphertextAndTag;
+}
+export function _decrypt(ciphertextAndTag, key, nonce, associated_data) {
+    const plaintext = new Uint8Array(ciphertextAndTag.byteLength - this.TAGBYTES);
+    if (!this.decrypt_detached(plaintext, ciphertextAndTag, plaintext.byteLength, ciphertextAndTag.subarray(plaintext.byteLength), key, nonce, associated_data)) {
+        throw new AuthenticationFailure("AEAD authentication failed");
+    }
+    return plaintext;
+}
+export { ChaCha20Poly1305_RFC8439 } from './aead/chacha20poly1305';
+//# sourceMappingURL=aead.js.map

package/lib/aead.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"aead.js","sourceRoot":"","sources":["../src/aead.ts"],"names":[],"mappings":"AAAA,gCAAgC;AAChC,2FAA2F;AAI3F,MAAM,OAAO,qBAAsB,SAAQ,KAAK;CAAG;AAmCnD,MAAM,UAAU,QAAQ,CACC,SAAqB,EACrB,GAAa,EACb,KAAY,EACZ,eAA4B;IAEjD,MAAM,gBAAgB,GAAG,IAAI,UAAU,CAAC,SAAS,CAAC,UAAU,GAAG,IAAI,CAAC,QAAQ,CAAC,CAAC;IAC9E,IAAI,CAAC,gBAAgB,CAAC,SAAS,EACT,gBAAgB,EAChB,SAAS,CAAC,UAAU,EACpB,gBAAgB,CAAC,QAAQ,CAAC,SAAS,CAAC,UAAU,CAAC,EAC/C,GAAG,EACH,KAAK,EACL,eAAe,CAAC,CAAC;IACvC,OAAO,gBAAgB,CAAC;AAC5B,CAAC;AAED,MAAM,UAAU,QAAQ,CACC,gBAA4B,EAC5B,GAAa,EACb,KAAY,EACZ,eAA4B;IAEjD,MAAM,SAAS,GAAG,IAAI,UAAU,CAAC,gBAAgB,CAAC,UAAU,GAAG,IAAI,CAAC,QAAQ,CAAC,CAAC;IAC9E,IAAI,CAAC,IAAI,CAAC,gBAAgB,CAAC,SAAS,EACT,gBAAgB,EAChB,SAAS,CAAC,UAAU,EACpB,gBAAgB,CAAC,QAAQ,CAAC,SAAS,CAAC,UAAU,CAAC,EAC/C,GAAG,EACH,KAAK,EACL,eAAe,CAAC,EAAE;QACzC,MAAM,IAAI,qBAAqB,CAAC,4BAA4B,CAAC,CAAC;KACjE;IACD,OAAO,SAAS,CAAC;AACrB,CAAC;AAED,OAAO,EAAE,wBAAwB,EAAE,MAAM,yBAAyB,CAAC"}

package/lib/bytes.d.ts

@@ -0,0 +1,4 @@
+export declare function equal(x: Uint8Array, y: Uint8Array, n: number): boolean;
+export declare function xor(a: Uint8Array, b: Uint8Array): Uint8Array;
+export declare function append(a: Uint8Array, b: Uint8Array): Uint8Array;
+export declare const EMPTY: Uint8Array;

package/lib/bytes.js

@@ -0,0 +1,27 @@
+/// SPDX-License-Identifier: MIT
+/// SPDX-FileCopyrightText: Copyright © 2023 Tony Garnock-Jones <tonyg@leastfixedpoint.com>
+// `verify` from nacl-fast.js
+function verify(x, y, n) {
+    let d = 0;
+    for (let i = 0; i < n; i++)
+        d |= x[i] ^ y[i];
+    return (1 & ((d - 1) >>> 8)) - 1;
+}
+export function equal(x, y, n) {
+    return verify(x, y, n) === 0;
+}
+export function xor(a, b) {
+    const len = Math.min(a.byteLength, b.byteLength);
+    const r = new Uint8Array(len);
+    for (let i = 0; i < len; i++)
+        r[i] = a[i] ^ b[i];
+    return r;
+}
+export function append(a, b) {
+    const r = new Uint8Array(a.byteLength + b.byteLength);
+    r.set(a, 0);
+    r.set(b, a.byteLength);
+    return r;
+}
+export const EMPTY = new Uint8Array(0);
+//# sourceMappingURL=bytes.js.map

package/lib/bytes.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"bytes.js","sourceRoot":"","sources":["../src/bytes.ts"],"names":[],"mappings":"AAAA,gCAAgC;AAChC,2FAA2F;AAE3F,6BAA6B;AAC7B,SAAS,MAAM,CAAC,CAAa,EAAE,CAAa,EAAE,CAAS;IACnD,IAAI,CAAC,GAAG,CAAC,CAAC;IACV,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE;QAAE,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,GAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAC3C,OAAO,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;AACrC,CAAC;AAED,MAAM,UAAU,KAAK,CAAC,CAAa,EAAE,CAAa,EAAE,CAAS;IACzD,OAAO,MAAM,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC;AACjC,CAAC;AAED,MAAM,UAAU,GAAG,CAAC,CAAa,EAAE,CAAa;IAC5C,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,UAAU,CAAC,CAAC;IACjD,MAAM,CAAC,GAAG,IAAI,UAAU,CAAC,GAAG,CAAC,CAAC;IAC9B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,EAAE,CAAC,EAAE;QAAE,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;IACjD,OAAO,CAAC,CAAC;AACb,CAAC;AAED,MAAM,UAAU,MAAM,CAAC,CAAa,EAAE,CAAa;IAC/C,MAAM,CAAC,GAAG,IAAI,UAAU,CAAC,CAAC,CAAC,UAAU,GAAG,CAAC,CAAC,UAAU,CAAC,CAAC;IACtD,CAAC,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IACZ,CAAC,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC,CAAC,UAAU,CAAC,CAAC;IACvB,OAAO,CAAC,CAAC;AACb,CAAC;AAED,MAAM,CAAC,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,CAAC,CAAC,CAAC"}

package/lib/cipher/chacha20.d.ts

@@ -0,0 +1,4 @@
+import { StreamCipher } from '../cipher';
+export declare function chacha20_quarter_round(s: Uint32Array, a: number, b: number, c: number, d: number): void;
+export declare function chacha20_block(key: DataView, block: number, nonce: DataView): Uint32Array;
+export declare const ChaCha20: StreamCipher;

package/lib/cipher/chacha20.js

@@ -0,0 +1,84 @@
+/// SPDX-License-Identifier: MIT
+/// SPDX-FileCopyrightText: Copyright © 2023 Tony Garnock-Jones <tonyg@leastfixedpoint.com>
+function ROTATE(n, bits) {
+    return (n << bits) | (n >>> (32 - bits));
+}
+export function chacha20_quarter_round(s, a, b, c, d) {
+    s[a] += s[b];
+    s[d] ^= s[a];
+    s[d] = ROTATE(s[d], 16);
+    s[c] += s[d];
+    s[b] ^= s[c];
+    s[b] = ROTATE(s[b], 12);
+    s[a] += s[b];
+    s[d] ^= s[a];
+    s[d] = ROTATE(s[d], 8);
+    s[c] += s[d];
+    s[b] ^= s[c];
+    s[b] = ROTATE(s[b], 7);
+}
+function fill_state(state, key, block, nonce) {
+    state[0] += 0x61707865;
+    state[1] += 0x3320646e;
+    state[2] += 0x79622d32;
+    state[3] += 0x6b206574;
+    state[4] += key.getUint32(0, true);
+    state[5] += key.getUint32(4, true);
+    state[6] += key.getUint32(8, true);
+    state[7] += key.getUint32(12, true);
+    state[8] += key.getUint32(16, true);
+    state[9] += key.getUint32(20, true);
+    state[10] += key.getUint32(24, true);
+    state[11] += key.getUint32(28, true);
+    state[12] += block;
+    state[13] += nonce.getUint32(0, true);
+    state[14] += nonce.getUint32(4, true);
+    state[15] += nonce.getUint32(8, true);
+}
+export function chacha20_block(key, block, nonce) {
+    const state = new Uint32Array(16);
+    fill_state(state, key, block, nonce);
+    for (let round = 0; round < 20; round += 2) {
+        chacha20_quarter_round(state, 0, 4, 8, 12);
+        chacha20_quarter_round(state, 1, 5, 9, 13);
+        chacha20_quarter_round(state, 2, 6, 10, 14);
+        chacha20_quarter_round(state, 3, 7, 11, 15);
+        chacha20_quarter_round(state, 0, 5, 10, 15);
+        chacha20_quarter_round(state, 1, 6, 11, 12);
+        chacha20_quarter_round(state, 2, 7, 8, 13);
+        chacha20_quarter_round(state, 3, 4, 9, 14);
+    }
+    fill_state(state, key, block, nonce);
+    return state;
+}
+function serializeNonce(n) {
+    const view = new DataView(new ArrayBuffer(ChaCha20.NONCEBYTES));
+    view.setUint32(0, n.extra, true);
+    view.setUint32(4, n.lo, true);
+    view.setUint32(8, n.hi, true);
+    return view;
+}
+export const ChaCha20 = {
+    NAME: 'chacha20',
+    KEYBYTES: 32,
+    NONCEBYTES: 12,
+    BLOCKBYTES: 64,
+    stream_xor(key, nonce0, input, output, initial_counter = 0, messagelength = input.byteLength) {
+        const nonce = serializeNonce(nonce0);
+        const whole_blocks = messagelength >> 6;
+        const remaining_bytes = messagelength & 63;
+        for (let j = 0; j < whole_blocks; j++) {
+            const chunk = chacha20_block(key, initial_counter + j, nonce);
+            for (let i = 0; i < 64; i++) {
+                output[(j << 6) + i] = input[(j << 6) + i] ^ (chunk[i >> 2] >> ((i & 3) << 3));
+            }
+        }
+        if (remaining_bytes !== 0) {
+            const chunk = chacha20_block(key, initial_counter + whole_blocks, nonce);
+            for (let i = 0; i < remaining_bytes; i++) {
+                output[(whole_blocks << 6) + i] = input[(whole_blocks << 6) + i] ^ (chunk[i >> 2] >> ((i & 3) << 3));
+            }
+        }
+    }
+};
+//# sourceMappingURL=chacha20.js.map

package/lib/cipher/chacha20.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"chacha20.js","sourceRoot":"","sources":["../../src/cipher/chacha20.ts"],"names":[],"mappings":"AAAA,gCAAgC;AAChC,2FAA2F;AAO3F,SAAS,MAAM,CAAC,CAAS,EAAE,IAAY;IACnC,OAAO,CAAC,CAAC,IAAI,IAAI,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,EAAE,GAAG,IAAI,CAAC,CAAC,CAAC;AAC7C,CAAC;AAED,MAAM,UAAU,sBAAsB,CAAC,CAAc,EAAE,CAAS,EAAE,CAAS,EAAE,CAAS,EAAE,CAAS;IAC7F,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;IAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;IAAC,CAAC,CAAC,CAAC,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACpD,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;IAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;IAAC,CAAC,CAAC,CAAC,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACpD,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;IAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;IAAC,CAAC,CAAC,CAAC,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IACnD,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;IAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;IAAC,CAAC,CAAC,CAAC,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;AACvD,CAAC;AAED,SAAS,UAAU,CAAC,KAAkB,EAAE,GAAa,EAAE,KAAa,EAAE,KAAe;IACjF,KAAK,CAAC,CAAC,CAAC,IAAI,UAAU,CAAC;IAAC,KAAK,CAAC,CAAC,CAAC,IAAI,UAAU,CAAC;IAAC,KAAK,CAAC,CAAC,CAAC,IAAI,UAAU,CAAC;IAAC,KAAK,CAAC,CAAC,CAAC,IAAI,UAAU,CAAC;IAC/F,KAAK,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC,SAAS,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;IAAC,KAAK,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC,SAAS,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;IACvE,KAAK,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC,SAAS,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;IAAC,KAAK,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC,SAAS,CAAC,EAAE,EAAE,IAAI,CAAC,CAAC;IACxE,KAAK,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC,SAAS,CAAC,EAAE,EAAE,IAAI,CAAC,CAAC;IAAC,KAAK,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC,SAAS,CAAC,EAAE,EAAE,IAAI,CAAC,CAAC;IACzE,KAAK,CAAC,EAAE,CAAC,IAAI,GAAG,CAAC,SAAS,CAAC,EAAE,EAAE,IAAI,CAAC,CAAC;IAAC,KAAK,CAAC,EAAE,CAAC,IAAI,GAAG,CAAC,SAAS,CAAC,EAAE,EAAE,IAAI,CAAC,CAAC;IAC3E,KAAK,CAAC,EAAE,CAAC,IAAI,KAAK,CAAC;IACnB,KAAK,CAAC,EAAE,CAAC,IAAI,KAAK,CAAC,SAAS,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;IACtC,KAAK,CAAC,EAAE,CAAC,IAAI,KAAK,CAAC,SAAS,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;IACtC,KAAK,CAAC,EAAE,CAAC,IAAI,KAAK,CAAC,SAAS,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;AAC1C,CAAC;AAED,MAAM,UAAU,cAAc,CAAC,GAAa,EAAE,KAAa,EAAE,KAAe;IACxE,MAAM,KAAK,GAAG,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IAClC,UAAU,CAAC,KAAK,EAAE,GAAG,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC;IACrC,KAAK,IAAI,KAAK,GAAG,CAAC,EAAE,KAAK,GAAG,EAAE,EAAE,KAAK,IAAI,CAAC,EAAE;QACxC,sBAAsB,CAAC,KAAK,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC;QAC3C,sBAAsB,CAAC,KAAK,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC;QAC3C,sBAAsB,CAAC,KAAK,EAAE,CAAC,EAAE,CAAC,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;QAC5C,sBAAsB,CAAC,KAAK,EAAE,CAAC,EAAE,CAAC,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;QAC5C,sBAAsB,CAAC,KAAK,EAAE,CAAC,EAAE,CAAC,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;QAC5C,sBAAsB,CAAC,KAAK,EAAE,CAAC,EAAE,CAAC,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC;QAC5C,sBAAsB,CAAC,KAAK,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC;QAC3C,sBAAsB,CAAC,KAAK,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC;KAC9C;IACD,UAAU,CAAC,KAAK,EAAE,GAAG,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC;IACrC,OAAO,KAAK,CAAC;AACjB,CAAC;AAED,SAAS,cAAc,CAAC,CAAQ;IAC5B,MAAM,IAAI,GAAG,IAAI,QAAQ,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAC;IAChE,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;IACjC,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,EAAE,IAAI,CAAC,CAAC;IAC9B,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,EAAE,IAAI,CAAC,CAAC;IAC9B,OAAO,IAAI,CAAC;AAChB,CAAC;AAED,MAAM,CAAC,MAAM,QAAQ,GAAiB;IAClC,IAAI,EAAE,UAAU;IAChB,QAAQ,EAAE,EAAE;IACZ,UAAU,EAAE,EAAE;IACd,UAAU,EAAE,EAAE;IAEd,UAAU,CAAC,GAAa,EACb,MAAa,EACb,KAAiB,EACjB,MAAkB,EAClB,eAAe,GAAG,CAAC,EACnB,aAAa,GAAG,KAAK,CAAC,UAAU;QAEvC,MAAM,KAAK,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC;QACrC,MAAM,YAAY,GAAG,aAAa,IAAI,CAAC,CAAC;QACxC,MAAM,eAAe,GAAG,aAAa,GAAG,EAAE,CAAC;QAC3C,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,YAAY,EAAE,CAAC,EAAE,EAAE;YACnC,MAAM,KAAK,GAAG,cAAc,CAAC,GAAG,EAAE,eAAe,GAAG,CAAC,EAAE,KAAK,CAAC,CAAC;YAC9D,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,EAAE,EAAE,CAAC,EAAE,EAAE;gBACzB,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;aAClF;SACJ;QACD,IAAI,eAAe,KAAK,CAAC,EAAE;YACvB,MAAM,KAAK,GAAG,cAAc,CAAC,GAAG,EAAE,eAAe,GAAG,YAAY,EAAE,KAAK,CAAC,CAAC;YACzE,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,eAAe,EAAE,CAAC,EAAE,EAAE;gBACtC,MAAM,CAAC,CAAC,YAAY,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,KAAK,CAAC,CAAC,YAAY,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;aACxG;SACJ;IACL,CAAC;CACJ,CAAC"}

package/lib/cipher.d.ts

@@ -0,0 +1,9 @@
+import { Nonce } from './nonce';
+export interface StreamCipher {
+    readonly NAME: string;
+    readonly KEYBYTES: number;
+    readonly NONCEBYTES: number;
+    readonly BLOCKBYTES: number;
+    stream_xor(key: DataView, nonce: Nonce, input: Uint8Array, output: Uint8Array, initial_counter?: number, messagelength?: number): void;
+}
+export { ChaCha20 } from './cipher/chacha20';

package/lib/cipher.js

@@ -0,0 +1,4 @@
+/// SPDX-License-Identifier: MIT
+/// SPDX-FileCopyrightText: Copyright © 2023 Tony Garnock-Jones <tonyg@leastfixedpoint.com>
+export { ChaCha20 } from './cipher/chacha20';
+//# sourceMappingURL=cipher.js.map

package/lib/cipher.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cipher.js","sourceRoot":"","sources":["../src/cipher.ts"],"names":[],"mappings":"AAAA,gCAAgC;AAChC,2FAA2F;AAkB3F,OAAO,EAAE,QAAQ,EAAE,MAAM,mBAAmB,CAAC"}

package/lib/dh/x25519.d.ts

@@ -0,0 +1,10 @@
+export declare const crypto_scalarmult_BYTES = 32;
+export declare const crypto_scalarmult_SCALARBYTES = 32;
+export declare function crypto_scalarmult(q: Uint8Array, n: Uint8Array, p: Uint8Array): void;
+export declare function crypto_scalarmult_base(q: Uint8Array, n: Uint8Array): void;
+export declare function scalarMult(n: Uint8Array, p: Uint8Array): Uint8Array;
+export declare namespace scalarMult {
+    var scalarLength: number;
+    var groupElementLength: number;
+}
+export declare function scalarMultBase(n: Uint8Array): Uint8Array;