npm - solana-kms-signer - Versions diffs - 0.1.0 → 1.0.2 - Mend

solana-kms-signer 0.1.0 → 1.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (27) hide show

package/README.md +82 -27
package/dist/errors/index.d.ts.map +1 -1
package/dist/errors/index.js.map +1 -1
package/dist/index.d.ts +3 -3
package/dist/index.d.ts.map +1 -1
package/dist/index.js +4 -4
package/dist/index.js.map +1 -1
package/dist/kms/client.d.ts.map +1 -1
package/dist/kms/client.js +1 -1
package/dist/kms/client.js.map +1 -1
package/dist/kms/signer.d.ts +2 -2
package/dist/kms/signer.d.ts.map +1 -1
package/dist/kms/signer.js +2 -2
package/dist/kms/signer.js.map +1 -1
package/dist/types/index.d.ts.map +1 -1
package/dist/utils/publicKey.js.map +1 -1
package/package.json +17 -16
package/src/errors/index.test.ts +185 -170
package/src/errors/index.ts +21 -12
package/src/index.ts +10 -14
package/src/kms/client.test.ts +318 -255
package/src/kms/client.ts +100 -98
package/src/kms/signer.test.ts +415 -396
package/src/kms/signer.ts +205 -209
package/src/types/index.ts +27 -27
package/src/utils/publicKey.test.ts +178 -119
package/src/utils/publicKey.ts +34 -34

package/src/kms/client.ts CHANGED Viewed

@@ -1,10 +1,10 @@
 import {
-  KMSClient,
-  GetPublicKeyCommand,
-  SignCommand,
+	GetPublicKeyCommand,
+	KMSClient,
+	SignCommand,
 } from '@aws-sdk/client-kms';
-import type { KmsConfig } from '../types/index.js';
 import { KmsClientError } from '../errors/index.js';
+import type { KmsConfig } from '../types/index.js';
 /**
  * AWS KMS client wrapper for ED25519 key operations.
@@ -24,109 +24,111 @@ import { KmsClientError } from '../errors/index.js';
  * ```
  */
 export class KmsClient {
-  private readonly kmsClient: KMSClient;
-  private readonly config: KmsConfig;
+	private readonly kmsClient: KMSClient;
+	private readonly config: KmsConfig;
-  /**
-   * Creates a new KmsClient instance.
-   *
-   * @param config - Configuration for AWS KMS connection
-   */
-  constructor(config: KmsConfig) {
-    this.config = config;
-    this.kmsClient = new KMSClient({
-      region: config.region,
-      credentials: config.credentials,
-    });
-  }
+	/**
+	 * Creates a new KmsClient instance.
+	 *
+	 * @param config - Configuration for AWS KMS connection
+	 */
+	constructor(config: KmsConfig) {
+		this.config = config;
+		this.kmsClient = new KMSClient({
+			region: config.region,
+			credentials: config.credentials,
+		});
+	}
-  /**
-   * Retrieves the public key from AWS KMS.
-   *
-   * Returns DER-encoded SubjectPublicKeyInfo (X.509 format).
-   * Use `extractEd25519PublicKey` to extract the raw 32-byte public key.
-   *
-   * @returns DER-encoded public key as Uint8Array (typically 42-44 bytes)
-   * @throws {KmsClientError} If KMS API call fails
-   *
-   * @example
-   * ```typescript
-   * const derPublicKey = await client.getPublicKey();
-   * const rawPublicKey = extractEd25519PublicKey(derPublicKey);
-   * ```
-   */
-  async getPublicKey(): Promise<Uint8Array> {
-    try {
-      const command = new GetPublicKeyCommand({
-        KeyId: this.config.keyId,
-      });
+	/**
+	 * Retrieves the public key from AWS KMS.
+	 *
+	 * Returns DER-encoded SubjectPublicKeyInfo (X.509 format).
+	 * Use `extractEd25519PublicKey` to extract the raw 32-byte public key.
+	 *
+	 * @returns DER-encoded public key as Uint8Array (typically 42-44 bytes)
+	 * @throws {KmsClientError} If KMS API call fails
+	 *
+	 * @example
+	 * ```typescript
+	 * const derPublicKey = await client.getPublicKey();
+	 * const rawPublicKey = extractEd25519PublicKey(derPublicKey);
+	 * ```
+	 */
+	async getPublicKey(): Promise<Uint8Array> {
+		try {
+			const command = new GetPublicKeyCommand({
+				KeyId: this.config.keyId,
+			});
-      const response = await this.kmsClient.send(command);
+			const response = await this.kmsClient.send(command);
-      if (!response.PublicKey) {
-        throw new KmsClientError('GetPublicKey response missing PublicKey field');
-      }
+			if (!response.PublicKey) {
+				throw new KmsClientError(
+					'GetPublicKey response missing PublicKey field',
+				);
+			}
-      // Convert Buffer/Uint8Array to Uint8Array
-      return new Uint8Array(response.PublicKey);
-    } catch (error) {
-      if (error instanceof KmsClientError) {
-        throw error;
-      }
-      throw new KmsClientError(
-        `Failed to get public key from KMS: ${error instanceof Error ? error.message : String(error)}`,
-        error
-      );
-    }
-  }
+			// Convert Buffer/Uint8Array to Uint8Array
+			return new Uint8Array(response.PublicKey);
+		} catch (error) {
+			if (error instanceof KmsClientError) {
+				throw error;
+			}
+			throw new KmsClientError(
+				`Failed to get public key from KMS: ${error instanceof Error ? error.message : String(error)}`,
+				error,
+			);
+		}
+	}
-  /**
-   * Signs a message using the ED25519 key in AWS KMS.
-   *
-   * @param message - Message to sign as Uint8Array
-   * @returns ED25519 signature (64 bytes)
-   * @throws {KmsClientError} If KMS API call fails or signature is invalid
-   *
-   * @example
-   * ```typescript
-   * const message = new TextEncoder().encode('Hello, Solana!');
-   * const signature = await client.sign(message);
-   * console.log('Signature length:', signature.length); // 64
-   * ```
-   */
-  async sign(message: Uint8Array): Promise<Uint8Array> {
-    try {
-      const command = new SignCommand({
-        KeyId: this.config.keyId,
-        Message: message,
-        MessageType: 'RAW',
-        SigningAlgorithm: 'ED25519_SHA_512',
-      });
+	/**
+	 * Signs a message using the ED25519 key in AWS KMS.
+	 *
+	 * @param message - Message to sign as Uint8Array
+	 * @returns ED25519 signature (64 bytes)
+	 * @throws {KmsClientError} If KMS API call fails or signature is invalid
+	 *
+	 * @example
+	 * ```typescript
+	 * const message = new TextEncoder().encode('Hello, Solana!');
+	 * const signature = await client.sign(message);
+	 * console.log('Signature length:', signature.length); // 64
+	 * ```
+	 */
+	async sign(message: Uint8Array): Promise<Uint8Array> {
+		try {
+			const command = new SignCommand({
+				KeyId: this.config.keyId,
+				Message: message,
+				MessageType: 'RAW',
+				SigningAlgorithm: 'ED25519_SHA_512',
+			});
-      const response = await this.kmsClient.send(command);
+			const response = await this.kmsClient.send(command);
-      if (!response.Signature) {
-        throw new KmsClientError('Sign response missing Signature field');
-      }
+			if (!response.Signature) {
+				throw new KmsClientError('Sign response missing Signature field');
+			}
-      const signature = new Uint8Array(response.Signature);
+			const signature = new Uint8Array(response.Signature);
-      // Validate signature length (ED25519 signatures are always 64 bytes)
-      if (signature.length !== 64) {
-        throw new KmsClientError(
-          `Invalid signature length: expected 64 bytes, got ${signature.length} bytes`
-        );
-      }
+			// Validate signature length (ED25519 signatures are always 64 bytes)
+			if (signature.length !== 64) {
+				throw new KmsClientError(
+					`Invalid signature length: expected 64 bytes, got ${signature.length} bytes`,
+				);
+			}
-      return signature;
-    } catch (error) {
-      if (error instanceof KmsClientError) {
-        throw error;
-      }
-      throw new KmsClientError(
-        `Failed to sign message with KMS: ${error instanceof Error ? error.message : String(error)}`,
-        error
-      );
-    }
-  }
+			return signature;
+		} catch (error) {
+			if (error instanceof KmsClientError) {
+				throw error;
+			}
+			throw new KmsClientError(
+				`Failed to sign message with KMS: ${error instanceof Error ? error.message : String(error)}`,
+				error,
+			);
+		}
+	}
 }