shogun-core 5.2.0 → 5.2.1

package/dist/browser/node_modules_hpke_ml-kem_esm_mod_js.shogun-core.js

@@ -0,0 +1,539 @@
+"use strict";
+(this["webpackChunkShogunCore"] = this["webpackChunkShogunCore"] || []).push([["node_modules_hpke_ml-kem_esm_mod_js"],{
+
+/***/ "./node_modules/@hpke/ml-kem/esm/mod.js":
+/*!**********************************************************!*\
+  !*** ./node_modules/@hpke/ml-kem/esm/mod.js + 1 modules ***!
+  \**********************************************************/
+/***/ ((__unused_webpack___webpack_module__, __webpack_exports__, __webpack_require__) => {
+
+// ESM COMPAT FLAG
+__webpack_require__.r(__webpack_exports__);
+
+// EXPORTS
+__webpack_require__.d(__webpack_exports__, {
+  MlKem1024: () => (/* reexport */ MlKem1024),
+  MlKem512: () => (/* reexport */ MlKem512),
+  MlKem768: () => (/* reexport */ MlKem768)
+});
+
+// EXTERNAL MODULE: ./node_modules/mlkem/esm/mod.js + 12 modules
+var mod = __webpack_require__("./node_modules/mlkem/esm/mod.js");
+// EXTERNAL MODULE: ./node_modules/@hpke/common/esm/mod.js + 23 modules
+var esm_mod = __webpack_require__("./node_modules/@hpke/common/esm/mod.js");
+;// ./node_modules/@hpke/ml-kem/esm/src/mlKem.js
+
+
+/**
+ * The base class of ML-KEM.
+ */
+class MlKemBase {
+    constructor() {
+        Object.defineProperty(this, "id", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 0
+        });
+        Object.defineProperty(this, "name", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: ""
+        });
+        Object.defineProperty(this, "secretSize", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 0
+        });
+        Object.defineProperty(this, "encSize", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 0
+        });
+        Object.defineProperty(this, "publicKeySize", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 0
+        });
+        Object.defineProperty(this, "privateKeySize", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 0
+        });
+        Object.defineProperty(this, "auth", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: false
+        });
+        Object.defineProperty(this, "_prim", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: undefined
+        });
+        Object.defineProperty(this, "_api", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: undefined
+        });
+    }
+    async serializePublicKey(key) {
+        try {
+            return await this._serializePublicKey(key);
+        }
+        catch (e) {
+            throw new esm_mod.SerializeError(e);
+        }
+    }
+    async deserializePublicKey(key) {
+        try {
+            return await this._deserializePublicKey(key);
+        }
+        catch (e) {
+            throw new esm_mod.DeserializeError(e);
+        }
+    }
+    async serializePrivateKey(key) {
+        try {
+            return await this._serializePrivateKey(key);
+        }
+        catch (e) {
+            throw new esm_mod.SerializeError(e);
+        }
+    }
+    async deserializePrivateKey(key) {
+        try {
+            return await this._deserializePrivateKey(key);
+        }
+        catch (e) {
+            throw new esm_mod.DeserializeError(e);
+        }
+    }
+    async generateKeyPair() {
+        await this._setup();
+        const d = new Uint8Array(32);
+        const z = new Uint8Array(32);
+        try {
+            this._api.getRandomValues(d);
+            this._api.getRandomValues(z);
+        }
+        catch (e) {
+            throw new esm_mod.NotSupportedError(e);
+        }
+        try {
+            const sk = (0,esm_mod.concat)(d, z);
+            const [pk, _sk] = await this._prim.deriveKeyPair(sk);
+            const dSk = await this.deserializePrivateKey(sk.buffer);
+            const dPk = await this.deserializePublicKey(pk.buffer);
+            return { privateKey: dSk, publicKey: dPk };
+        }
+        catch (e) {
+            throw new esm_mod.DeriveKeyPairError(e);
+        }
+    }
+    async deriveKeyPair(ikm) {
+        try {
+            const [pk, _] = await this._prim.deriveKeyPair(new Uint8Array(ikm));
+            const dSk = await this.deserializePrivateKey(ikm);
+            const dPk = await this.deserializePublicKey(pk.buffer);
+            return { privateKey: dSk, publicKey: dPk };
+        }
+        catch (e) {
+            throw new esm_mod.DeriveKeyPairError(e);
+        }
+    }
+    async importKey(format, key, isPublic = true) {
+        await this._setup();
+        try {
+            let ret;
+            if (format === "jwk") {
+                if (key instanceof ArrayBuffer || key instanceof Uint8Array) {
+                    throw new Error("Invalid jwk key format");
+                }
+                ret = await this._importJWK(key, isPublic);
+            }
+            else {
+                if (key instanceof ArrayBuffer) {
+                    ret = new Uint8Array(key);
+                }
+                else if (key instanceof Uint8Array) {
+                    ret = key;
+                }
+                else {
+                    throw new Error("Invalid key format");
+                }
+            }
+            if (isPublic && ret.byteLength !== this.publicKeySize) {
+                throw new Error("Invalid length of the key");
+            }
+            if (!isPublic && ret.byteLength !== this.privateKeySize) {
+                throw new Error("Invalid length of the key");
+            }
+            return new esm_mod.XCryptoKey(this.name, ret, isPublic ? "public" : "private", isPublic ? [] : esm_mod.KEM_USAGES);
+        }
+        catch (e) {
+            throw new esm_mod.DeserializeError(e);
+        }
+    }
+    async encap(params) {
+        let ekm = undefined;
+        if (params.ekm !== undefined) {
+            if (params.ekm instanceof ArrayBuffer) {
+                ekm = new Uint8Array(params.ekm);
+            }
+            else if (params.ekm instanceof Uint8Array) {
+                ekm = params.ekm;
+            }
+            else {
+                throw new esm_mod.InvalidParamError("ekm must be 32 bytes in length");
+            }
+        }
+        const pk = new Uint8Array(await this.serializePublicKey(params.recipientPublicKey));
+        if (pk.byteLength !== this.publicKeySize) {
+            throw new esm_mod.InvalidParamError("Invalid length of recipientKey");
+        }
+        try {
+            const [ct, ss] = await this._prim.encap(pk, ekm);
+            return {
+                sharedSecret: ss.buffer,
+                enc: ct.buffer,
+            };
+        }
+        catch (e) {
+            throw new esm_mod.EncapError(e);
+        }
+    }
+    async decap(params) {
+        const rSk = (0,esm_mod.isCryptoKeyPair)(params.recipientKey)
+            ? params.recipientKey.privateKey
+            : params.recipientKey;
+        if (params.enc.byteLength !== this.encSize) {
+            throw new esm_mod.InvalidParamError("Invalid length of enc");
+        }
+        const ct = new Uint8Array(params.enc);
+        const sk = new Uint8Array(await this.serializePrivateKey(rSk));
+        if (sk.byteLength !== this.privateKeySize) {
+            throw new esm_mod.InvalidParamError("Invalid length of recipientKey");
+        }
+        try {
+            const [_, exSk] = await this._prim.deriveKeyPair(sk);
+            return (await this._prim.decap(ct, exSk))
+                .buffer;
+        }
+        catch (e) {
+            throw new esm_mod.DecapError(e);
+        }
+    }
+    async _setup() {
+        if (this._api !== undefined) {
+            return;
+        }
+        this._api = await (0,esm_mod.loadCrypto)();
+    }
+    _serializePublicKey(k) {
+        return new Promise((resolve, reject) => {
+            if (k.type !== "public") {
+                reject(new Error("Not public key"));
+            }
+            if (k.algorithm.name !== this.name) {
+                reject(new Error(`Invalid algorithm name: ${k.algorithm.name}`));
+            }
+            if (k.key.byteLength !== this.publicKeySize) {
+                reject(new Error(`Invalid key length: ${k.key.byteLength}`));
+            }
+            resolve(k.key.buffer);
+        });
+    }
+    _deserializePublicKey(k) {
+        return new Promise((resolve, reject) => {
+            if (k.byteLength !== this.publicKeySize) {
+                reject(new Error(`Invalid key length: ${k.byteLength}`));
+            }
+            resolve(new esm_mod.XCryptoKey(this.name, new Uint8Array(k), "public"));
+        });
+    }
+    _serializePrivateKey(k) {
+        return new Promise((resolve, reject) => {
+            if (k.type !== "private") {
+                reject(new Error("Not private key"));
+            }
+            if (k.algorithm.name !== this.name) {
+                reject(new Error(`Invalid algorithm name: ${k.algorithm.name}`));
+            }
+            if (k.key.byteLength !== this.privateKeySize) {
+                reject(new Error(`Invalid key length: ${k.key.byteLength}`));
+            }
+            resolve(k.key.buffer);
+        });
+    }
+    _deserializePrivateKey(k) {
+        return new Promise((resolve, reject) => {
+            if (k.byteLength !== this.privateKeySize) {
+                reject(new Error(`Invalid key length: ${k.byteLength}`));
+            }
+            resolve(new esm_mod.XCryptoKey(this.name, new Uint8Array(k), "private", ["deriveBits"]));
+        });
+    }
+    _importJWK(key, isPublic) {
+        return new Promise((resolve, reject) => {
+            if (typeof key.kty === "undefined" || key.kty !== "AKP") {
+                reject(new Error(`Invalid kty: ${key.kty}`));
+            }
+            if (typeof key.alg === "undefined" || key.alg !== this.name) {
+                reject(new Error(`Invalid alg: ${key.alg}`));
+            }
+            if (!isPublic) {
+                if (typeof key.priv === "undefined") {
+                    reject(new Error("Invalid key: `priv` not found"));
+                }
+                if (typeof key.key_ops !== "undefined" &&
+                    (key.key_ops.length !== 1 || key.key_ops[0] !== "deriveBits")) {
+                    reject(new Error("Invalid key: `key_ops` should be ['deriveBits']"));
+                }
+                resolve((0,esm_mod.base64UrlToBytes)(key.priv));
+            }
+            if (typeof key.priv !== "undefined") {
+                reject(new Error("Invalid key: `priv` should not be set"));
+            }
+            if (typeof key.pub === "undefined") {
+                reject(new Error("Invalid key: `pub` not found"));
+            }
+            if (typeof key.key_ops !== "undefined" && key.key_ops.length > 0) {
+                reject(new Error("Invalid key: `key_ops` should not be set"));
+            }
+            resolve((0,esm_mod.base64UrlToBytes)(key.pub));
+        });
+    }
+}
+/**
+ * The ML-KEM-512 for HPKE KEM implementing {@link KemInterface}.
+ *
+ * The instance of this class can be specified to the
+ * {@link https://jsr.io/@hpke/core/doc/~/CipherSuiteParams | CipherSuiteParams} as follows:
+ *
+ * @example
+ *
+ * ```ts
+ * import { Aes128Gcm, CipherSuite, HkdfSha256 } from "@hpke/core";
+ * import { MlKem512 } from "@hpke/ml-kem";
+ * const suite = new CipherSuite({
+ *   kem: new MlKem512(),
+ *   kdf: new HkdfSha256(),
+ *   aead: new Aes128Gcm(),
+ * });
+ * ```
+ */
+class MlKem512 extends MlKemBase {
+    constructor() {
+        super();
+        Object.defineProperty(this, "id", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: esm_mod.KemId.MlKem512
+        });
+        Object.defineProperty(this, "name", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: "ML-KEM-512"
+        });
+        Object.defineProperty(this, "secretSize", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 32
+        });
+        Object.defineProperty(this, "encSize", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 768
+        });
+        Object.defineProperty(this, "publicKeySize", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 800
+        });
+        Object.defineProperty(this, "privateKeySize", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 64
+        });
+        Object.defineProperty(this, "auth", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: false
+        });
+        Object.defineProperty(this, "_prim", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: undefined
+        });
+        this._prim = new mod.MlKem512();
+    }
+}
+/**
+ * The ML-KEM-768 for HPKE KEM implementing {@link KemInterface}.
+ *
+ * The instance of this class can be specified to the
+ * {@link https://jsr.io/@hpke/core/doc/~/CipherSuiteParams | CipherSuiteParams} as follows:
+ *
+ * @example
+ *
+ * ```ts
+ * import { Aes256Gcm, CipherSuite, HkdfSha384 } from "@hpke/core";
+ * import { MlKem768 } from "@hpke/ml-kem";
+ * const suite = new CipherSuite({
+ *   kem: new MlKem768(),
+ *   kdf: new HkdfSha384(),
+ *   aead: new Aes256Gcm(),
+ * });
+ * ```
+ */
+class MlKem768 extends MlKemBase {
+    constructor() {
+        super();
+        Object.defineProperty(this, "id", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: esm_mod.KemId.MlKem768
+        });
+        Object.defineProperty(this, "name", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: "ML-KEM-768"
+        });
+        Object.defineProperty(this, "secretSize", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 32
+        });
+        Object.defineProperty(this, "encSize", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 1088
+        });
+        Object.defineProperty(this, "publicKeySize", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 1184
+        });
+        Object.defineProperty(this, "privateKeySize", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 64
+        });
+        Object.defineProperty(this, "auth", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: false
+        });
+        Object.defineProperty(this, "_prim", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: undefined
+        });
+        this._prim = new mod.MlKem768();
+    }
+}
+/**
+ * The ML-KEM-1024 for HPKE KEM implementing {@link KemInterface}.
+ *
+ * The instance of this class can be specified to the
+ * {@link https://jsr.io/@hpke/core/doc/~/CipherSuiteParams | CipherSuiteParams} as follows:
+ *
+ * @example
+ *
+ * ```ts
+ * import { Aes256Gcm, CipherSuite, HkdfSha512 } from "@hpke/core";
+ * import { MlKem1024 } from "@hpke/ml-kem";
+ * const suite = new CipherSuite({
+ *   kem: new MlKem1024(),
+ *   kdf: new HkdfSha512(),
+ *   aead: new Aes256Gcm(),
+ * });
+ * ```
+ */
+class MlKem1024 extends MlKemBase {
+    constructor() {
+        super();
+        Object.defineProperty(this, "id", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: esm_mod.KemId.MlKem1024
+        });
+        Object.defineProperty(this, "name", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: "ML-KEM-1024"
+        });
+        Object.defineProperty(this, "secretSize", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 32
+        });
+        Object.defineProperty(this, "encSize", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 1568
+        });
+        Object.defineProperty(this, "publicKeySize", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 1568
+        });
+        Object.defineProperty(this, "privateKeySize", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 64
+        });
+        Object.defineProperty(this, "auth", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: false
+        });
+        Object.defineProperty(this, "_prim", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: undefined
+        });
+        this._prim = new mod.MlKem1024();
+    }
+}
+
+;// ./node_modules/@hpke/ml-kem/esm/mod.js
+
+
+
+/***/ })
+
+}]);
+//# sourceMappingURL=node_modules_hpke_ml-kem_esm_mod_js.shogun-core.js.map

package/dist/browser/node_modules_hpke_ml-kem_esm_mod_js.shogun-core.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"node_modules_hpke_ml-kem_esm_mod_js.shogun-core.js","mappings":";;;;;;;;;;;;;;;;;;;;;;;;AAEgB;AACyN;AACzO;AACA;AACA;AACO;AACP;AACA;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA;AACA,sBAAsB,sBAAc;AACpC;AACA;AACA;AACA;AACA;AACA;AACA;AACA,sBAAsB,wBAAgB;AACtC;AACA;AACA;AACA;AACA;AACA;AACA;AACA,sBAAsB,sBAAc;AACpC;AACA;AACA;AACA;AACA;AACA;AACA;AACA,sBAAsB,wBAAgB;AACtC;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,sBAAsB,yBAAiB;AACvC;AACA;AACA,uBAAuB,kBAAM;AAC7B;AACA;AACA;AACA,qBAAqB;AACrB;AACA;AACA,sBAAsB,0BAAkB;AACxC;AACA;AACA;AACA;AACA;AACA;AACA;AACA,qBAAqB;AACrB;AACA;AACA,sBAAsB,0BAAkB;AACxC;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,uBAAuB,kBAAU,kEAAkE,kBAAU;AAC7G;AACA;AACA,sBAAsB,wBAAgB;AACtC;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,0BAA0B,yBAAiB;AAC3C;AACA;AACA;AACA;AACA,sBAAsB,yBAAiB;AACvC;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,sBAAsB,kBAAU;AAChC;AACA;AACA;AACA,oBAAoB,2BAAe;AACnC;AACA;AACA;AACA,sBAAsB,yBAAiB;AACvC;AACA;AACA;AACA;AACA,sBAAsB,yBAAiB;AACvC;AACA;AACA;AACA;AACA;AACA;AACA;AACA,sBAAsB,kBAAU;AAChC;AACA;AACA;AACA;AACA;AACA;AACA,0BAA0B,sBAAU;AACpC;AACA;AACA;AACA;AACA;AACA;AACA;AACA,4DAA4D,iBAAiB;AAC7E;AACA;AACA,wDAAwD,iBAAiB;AACzE;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA,wDAAwD,aAAa;AACrE;AACA,wBAAwB,kBAAU;AAClC,SAAS;AACT;AACA;AACA;AACA;AACA;AACA;AACA;AACA,4DAA4D,iBAAiB;AAC7E;AACA;AACA,wDAAwD,iBAAiB;AACzE;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA,wDAAwD,aAAa;AACrE;AACA,wBAAwB,kBAAU;AAClC,SAAS;AACT;AACA;AACA;AACA;AACA,iDAAiD,QAAQ;AACzD;AACA;AACA,iDAAiD,QAAQ;AACzD;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,wBAAwB,4BAAgB;AACxC;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,oBAAoB,4BAAgB;AACpC,SAAS;AACT;AACA;AACA;AACA,6CAA6C,mBAAmB;AAChE;AACA;AACA,IAAI,6EAA6E;AACjF;AACA;AACA;AACA;AACA,YAAY,qCAAqC;AACjD,YAAY,WAAW;AACvB;AACA;AACA;AACA;AACA,IAAI;AACJ;AACA;AACO;AACP;AACA;AACA;AACA;AACA;AACA;AACA,mBAAmB,aAAK;AACxB,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT,yBAAyB,YAAc;AACvC;AACA;AACA;AACA,6CAA6C,mBAAmB;AAChE;AACA;AACA,IAAI,6EAA6E;AACjF;AACA;AACA;AACA;AACA,YAAY,qCAAqC;AACjD,YAAY,WAAW;AACvB;AACA;AACA;AACA;AACA,IAAI;AACJ;AACA;AACO;AACP;AACA;AACA;AACA;AACA;AACA;AACA,mBAAmB,aAAK;AACxB,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT,yBAAyB,YAAc;AACvC;AACA;AACA;AACA,8CAA8C,mBAAmB;AACjE;AACA;AACA,IAAI,6EAA6E;AACjF;AACA;AACA;AACA;AACA,YAAY,qCAAqC;AACjD,YAAY,YAAY;AACxB;AACA;AACA;AACA;AACA,IAAI;AACJ;AACA;AACO;AACP;AACA;AACA;AACA;AACA;AACA;AACA,mBAAmB,aAAK;AACxB,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT;AACA;AACA;AACA;AACA;AACA,SAAS;AACT,yBAAyB,aAAe;AACxC;AACA;;;AC3f+D","sources":["webpack://ShogunCore/./node_modules/@hpke/ml-kem/esm/src/mlKem.js","webpack://ShogunCore/./node_modules/@hpke/ml-kem/esm/mod.js"],"sourcesContent":["import { MlKem1024 as MlKem1024Native, MlKem512 as MlKem512Native, MlKem768 as MlKem768Native,\n// @ts-ignore: Unreachable code error\n } from \"mlkem\";\nimport { base64UrlToBytes, concat, DecapError, DeriveKeyPairError, DeserializeError, EncapError, InvalidParamError, isCryptoKeyPair, KEM_USAGES, KemId, loadCrypto, NotSupportedError, SerializeError, XCryptoKey, } from \"@hpke/common\";\n/**\n * The base class of ML-KEM.\n */\nexport class MlKemBase {\n    constructor() {\n        Object.defineProperty(this, \"id\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 0\n        });\n        Object.defineProperty(this, \"name\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: \"\"\n        });\n        Object.defineProperty(this, \"secretSize\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 0\n        });\n        Object.defineProperty(this, \"encSize\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 0\n        });\n        Object.defineProperty(this, \"publicKeySize\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 0\n        });\n        Object.defineProperty(this, \"privateKeySize\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 0\n        });\n        Object.defineProperty(this, \"auth\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: false\n        });\n        Object.defineProperty(this, \"_prim\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: undefined\n        });\n        Object.defineProperty(this, \"_api\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: undefined\n        });\n    }\n    async serializePublicKey(key) {\n        try {\n            return await this._serializePublicKey(key);\n        }\n        catch (e) {\n            throw new SerializeError(e);\n        }\n    }\n    async deserializePublicKey(key) {\n        try {\n            return await this._deserializePublicKey(key);\n        }\n        catch (e) {\n            throw new DeserializeError(e);\n        }\n    }\n    async serializePrivateKey(key) {\n        try {\n            return await this._serializePrivateKey(key);\n        }\n        catch (e) {\n            throw new SerializeError(e);\n        }\n    }\n    async deserializePrivateKey(key) {\n        try {\n            return await this._deserializePrivateKey(key);\n        }\n        catch (e) {\n            throw new DeserializeError(e);\n        }\n    }\n    async generateKeyPair() {\n        await this._setup();\n        const d = new Uint8Array(32);\n        const z = new Uint8Array(32);\n        try {\n            this._api.getRandomValues(d);\n            this._api.getRandomValues(z);\n        }\n        catch (e) {\n            throw new NotSupportedError(e);\n        }\n        try {\n            const sk = concat(d, z);\n            const [pk, _sk] = await this._prim.deriveKeyPair(sk);\n            const dSk = await this.deserializePrivateKey(sk.buffer);\n            const dPk = await this.deserializePublicKey(pk.buffer);\n            return { privateKey: dSk, publicKey: dPk };\n        }\n        catch (e) {\n            throw new DeriveKeyPairError(e);\n        }\n    }\n    async deriveKeyPair(ikm) {\n        try {\n            const [pk, _] = await this._prim.deriveKeyPair(new Uint8Array(ikm));\n            const dSk = await this.deserializePrivateKey(ikm);\n            const dPk = await this.deserializePublicKey(pk.buffer);\n            return { privateKey: dSk, publicKey: dPk };\n        }\n        catch (e) {\n            throw new DeriveKeyPairError(e);\n        }\n    }\n    async importKey(format, key, isPublic = true) {\n        await this._setup();\n        try {\n            let ret;\n            if (format === \"jwk\") {\n                if (key instanceof ArrayBuffer || key instanceof Uint8Array) {\n                    throw new Error(\"Invalid jwk key format\");\n                }\n                ret = await this._importJWK(key, isPublic);\n            }\n            else {\n                if (key instanceof ArrayBuffer) {\n                    ret = new Uint8Array(key);\n                }\n                else if (key instanceof Uint8Array) {\n                    ret = key;\n                }\n                else {\n                    throw new Error(\"Invalid key format\");\n                }\n            }\n            if (isPublic && ret.byteLength !== this.publicKeySize) {\n                throw new Error(\"Invalid length of the key\");\n            }\n            if (!isPublic && ret.byteLength !== this.privateKeySize) {\n                throw new Error(\"Invalid length of the key\");\n            }\n            return new XCryptoKey(this.name, ret, isPublic ? \"public\" : \"private\", isPublic ? [] : KEM_USAGES);\n        }\n        catch (e) {\n            throw new DeserializeError(e);\n        }\n    }\n    async encap(params) {\n        let ekm = undefined;\n        if (params.ekm !== undefined) {\n            if (params.ekm instanceof ArrayBuffer) {\n                ekm = new Uint8Array(params.ekm);\n            }\n            else if (params.ekm instanceof Uint8Array) {\n                ekm = params.ekm;\n            }\n            else {\n                throw new InvalidParamError(\"ekm must be 32 bytes in length\");\n            }\n        }\n        const pk = new Uint8Array(await this.serializePublicKey(params.recipientPublicKey));\n        if (pk.byteLength !== this.publicKeySize) {\n            throw new InvalidParamError(\"Invalid length of recipientKey\");\n        }\n        try {\n            const [ct, ss] = await this._prim.encap(pk, ekm);\n            return {\n                sharedSecret: ss.buffer,\n                enc: ct.buffer,\n            };\n        }\n        catch (e) {\n            throw new EncapError(e);\n        }\n    }\n    async decap(params) {\n        const rSk = isCryptoKeyPair(params.recipientKey)\n            ? params.recipientKey.privateKey\n            : params.recipientKey;\n        if (params.enc.byteLength !== this.encSize) {\n            throw new InvalidParamError(\"Invalid length of enc\");\n        }\n        const ct = new Uint8Array(params.enc);\n        const sk = new Uint8Array(await this.serializePrivateKey(rSk));\n        if (sk.byteLength !== this.privateKeySize) {\n            throw new InvalidParamError(\"Invalid length of recipientKey\");\n        }\n        try {\n            const [_, exSk] = await this._prim.deriveKeyPair(sk);\n            return (await this._prim.decap(ct, exSk))\n                .buffer;\n        }\n        catch (e) {\n            throw new DecapError(e);\n        }\n    }\n    async _setup() {\n        if (this._api !== undefined) {\n            return;\n        }\n        this._api = await loadCrypto();\n    }\n    _serializePublicKey(k) {\n        return new Promise((resolve, reject) => {\n            if (k.type !== \"public\") {\n                reject(new Error(\"Not public key\"));\n            }\n            if (k.algorithm.name !== this.name) {\n                reject(new Error(`Invalid algorithm name: ${k.algorithm.name}`));\n            }\n            if (k.key.byteLength !== this.publicKeySize) {\n                reject(new Error(`Invalid key length: ${k.key.byteLength}`));\n            }\n            resolve(k.key.buffer);\n        });\n    }\n    _deserializePublicKey(k) {\n        return new Promise((resolve, reject) => {\n            if (k.byteLength !== this.publicKeySize) {\n                reject(new Error(`Invalid key length: ${k.byteLength}`));\n            }\n            resolve(new XCryptoKey(this.name, new Uint8Array(k), \"public\"));\n        });\n    }\n    _serializePrivateKey(k) {\n        return new Promise((resolve, reject) => {\n            if (k.type !== \"private\") {\n                reject(new Error(\"Not private key\"));\n            }\n            if (k.algorithm.name !== this.name) {\n                reject(new Error(`Invalid algorithm name: ${k.algorithm.name}`));\n            }\n            if (k.key.byteLength !== this.privateKeySize) {\n                reject(new Error(`Invalid key length: ${k.key.byteLength}`));\n            }\n            resolve(k.key.buffer);\n        });\n    }\n    _deserializePrivateKey(k) {\n        return new Promise((resolve, reject) => {\n            if (k.byteLength !== this.privateKeySize) {\n                reject(new Error(`Invalid key length: ${k.byteLength}`));\n            }\n            resolve(new XCryptoKey(this.name, new Uint8Array(k), \"private\", [\"deriveBits\"]));\n        });\n    }\n    _importJWK(key, isPublic) {\n        return new Promise((resolve, reject) => {\n            if (typeof key.kty === \"undefined\" || key.kty !== \"AKP\") {\n                reject(new Error(`Invalid kty: ${key.kty}`));\n            }\n            if (typeof key.alg === \"undefined\" || key.alg !== this.name) {\n                reject(new Error(`Invalid alg: ${key.alg}`));\n            }\n            if (!isPublic) {\n                if (typeof key.priv === \"undefined\") {\n                    reject(new Error(\"Invalid key: `priv` not found\"));\n                }\n                if (typeof key.key_ops !== \"undefined\" &&\n                    (key.key_ops.length !== 1 || key.key_ops[0] !== \"deriveBits\")) {\n                    reject(new Error(\"Invalid key: `key_ops` should be ['deriveBits']\"));\n                }\n                resolve(base64UrlToBytes(key.priv));\n            }\n            if (typeof key.priv !== \"undefined\") {\n                reject(new Error(\"Invalid key: `priv` should not be set\"));\n            }\n            if (typeof key.pub === \"undefined\") {\n                reject(new Error(\"Invalid key: `pub` not found\"));\n            }\n            if (typeof key.key_ops !== \"undefined\" && key.key_ops.length > 0) {\n                reject(new Error(\"Invalid key: `key_ops` should not be set\"));\n            }\n            resolve(base64UrlToBytes(key.pub));\n        });\n    }\n}\n/**\n * The ML-KEM-512 for HPKE KEM implementing {@link KemInterface}.\n *\n * The instance of this class can be specified to the\n * {@link https://jsr.io/@hpke/core/doc/~/CipherSuiteParams | CipherSuiteParams} as follows:\n *\n * @example\n *\n * ```ts\n * import { Aes128Gcm, CipherSuite, HkdfSha256 } from \"@hpke/core\";\n * import { MlKem512 } from \"@hpke/ml-kem\";\n * const suite = new CipherSuite({\n *   kem: new MlKem512(),\n *   kdf: new HkdfSha256(),\n *   aead: new Aes128Gcm(),\n * });\n * ```\n */\nexport class MlKem512 extends MlKemBase {\n    constructor() {\n        super();\n        Object.defineProperty(this, \"id\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: KemId.MlKem512\n        });\n        Object.defineProperty(this, \"name\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: \"ML-KEM-512\"\n        });\n        Object.defineProperty(this, \"secretSize\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 32\n        });\n        Object.defineProperty(this, \"encSize\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 768\n        });\n        Object.defineProperty(this, \"publicKeySize\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 800\n        });\n        Object.defineProperty(this, \"privateKeySize\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 64\n        });\n        Object.defineProperty(this, \"auth\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: false\n        });\n        Object.defineProperty(this, \"_prim\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: undefined\n        });\n        this._prim = new MlKem512Native();\n    }\n}\n/**\n * The ML-KEM-768 for HPKE KEM implementing {@link KemInterface}.\n *\n * The instance of this class can be specified to the\n * {@link https://jsr.io/@hpke/core/doc/~/CipherSuiteParams | CipherSuiteParams} as follows:\n *\n * @example\n *\n * ```ts\n * import { Aes256Gcm, CipherSuite, HkdfSha384 } from \"@hpke/core\";\n * import { MlKem768 } from \"@hpke/ml-kem\";\n * const suite = new CipherSuite({\n *   kem: new MlKem768(),\n *   kdf: new HkdfSha384(),\n *   aead: new Aes256Gcm(),\n * });\n * ```\n */\nexport class MlKem768 extends MlKemBase {\n    constructor() {\n        super();\n        Object.defineProperty(this, \"id\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: KemId.MlKem768\n        });\n        Object.defineProperty(this, \"name\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: \"ML-KEM-768\"\n        });\n        Object.defineProperty(this, \"secretSize\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 32\n        });\n        Object.defineProperty(this, \"encSize\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 1088\n        });\n        Object.defineProperty(this, \"publicKeySize\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 1184\n        });\n        Object.defineProperty(this, \"privateKeySize\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 64\n        });\n        Object.defineProperty(this, \"auth\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: false\n        });\n        Object.defineProperty(this, \"_prim\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: undefined\n        });\n        this._prim = new MlKem768Native();\n    }\n}\n/**\n * The ML-KEM-1024 for HPKE KEM implementing {@link KemInterface}.\n *\n * The instance of this class can be specified to the\n * {@link https://jsr.io/@hpke/core/doc/~/CipherSuiteParams | CipherSuiteParams} as follows:\n *\n * @example\n *\n * ```ts\n * import { Aes256Gcm, CipherSuite, HkdfSha512 } from \"@hpke/core\";\n * import { MlKem1024 } from \"@hpke/ml-kem\";\n * const suite = new CipherSuite({\n *   kem: new MlKem1024(),\n *   kdf: new HkdfSha512(),\n *   aead: new Aes256Gcm(),\n * });\n * ```\n */\nexport class MlKem1024 extends MlKemBase {\n    constructor() {\n        super();\n        Object.defineProperty(this, \"id\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: KemId.MlKem1024\n        });\n        Object.defineProperty(this, \"name\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: \"ML-KEM-1024\"\n        });\n        Object.defineProperty(this, \"secretSize\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 32\n        });\n        Object.defineProperty(this, \"encSize\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 1568\n        });\n        Object.defineProperty(this, \"publicKeySize\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 1568\n        });\n        Object.defineProperty(this, \"privateKeySize\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: 64\n        });\n        Object.defineProperty(this, \"auth\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: false\n        });\n        Object.defineProperty(this, \"_prim\", {\n            enumerable: true,\n            configurable: true,\n            writable: true,\n            value: undefined\n        });\n        this._prim = new MlKem1024Native();\n    }\n}\n","export { MlKem1024, MlKem512, MlKem768 } from \"./src/mlKem.js\";\n"],"names":[],"sourceRoot":""}