threshold-elgamal 1.0.9 → 2.0.0

package/dist/transport/types.d.ts

@@ -1,3 +1,7 @@
+/**
+ * Transport-layer types for authentication keys, X25519 envelopes, and the
+ * metadata that binds encrypted share delivery to one ceremony slot.
+ */
 import type { Brand } from '../core/types.js';
 /** Canonical lowercase hexadecimal SPKI encoding for auth public keys. */
 export type EncodedAuthPublicKey = Brand<string, 'EncodedAuthPublicKey'>;
@@ -11,7 +15,12 @@ export type TransportKeyPair = {
     readonly privateKey: CryptoKey;
     readonly publicKey: CryptoKey;
 };
-/** Context bound into HKDF info and AEAD associated data for envelopes. */
+/**
+ * Context bound into HKDF info and AEAD associated data for envelopes.
+ *
+ * The same fields also identify the public complaint slot for one dealer to
+ * recipient delivery.
+ */
 export type EnvelopeContext = {
     readonly sessionId: string;
     readonly rosterHash: string;
@@ -23,7 +32,12 @@ export type EnvelopeContext = {
     readonly protocolVersion: string;
     readonly suite: 'X25519';
 };
-/** Sender-ephemeral encrypted transport envelope. */
+/**
+ * Sender-ephemeral encrypted transport envelope.
+ *
+ * DKG share distribution publishes this object on the board so the recipient
+ * can decrypt it and observers can later audit complaints against it.
+ */
 export type EncryptedEnvelope = EnvelopeContext & {
     readonly ephemeralPublicKey: EncodedTransportPublicKey;
     readonly iv: string;

package/dist/vss/feldman.d.ts

@@ -1,13 +1,23 @@
+/**
+ * Feldman commitment helpers used during DKG publication and transcript
+ * verification.
+ */
 import { type CryptoGroup } from '../core/index.js';
 import type { EncodedPoint } from '../core/types.js';
 import type { Share } from '../threshold/types.js';
 import type { FeldmanCommitments } from './types.js';
 export declare const evaluateCommitmentProduct: (commitments: readonly EncodedPoint[], index: number) => EncodedPoint;
 /**
- * Computes Feldman commitments for polynomial coefficients.
+ * Computes Feldman commitments for one secret polynomial.
+ *
+ * Dealers publish these commitments so everyone can later verify the shares
+ * they received.
  */
 export declare const generateFeldmanCommitments: (polynomial: readonly bigint[], group: CryptoGroup) => FeldmanCommitments;
 /**
  * Verifies a Feldman share against the published coefficient commitments.
+ *
+ * DKG verification uses this to reject dealers whose shares do not match the
+ * commitments they broadcast.
  */
 export declare const verifyFeldmanShare: (share: Share, commitments: FeldmanCommitments, group: CryptoGroup) => boolean;

package/dist/vss/feldman.js

@@ -1,3 +1,7 @@
+/**
+ * Feldman commitment helpers used during DKG publication and transcript
+ * verification.
+ */
 import { assertInSubgroup, assertPositiveParticipantIndex, assertScalarInZq, modQ, RISTRETTO_GROUP, assertCanonicalRistrettoGroup, } from '../core/index.js';
 import { decodePoint, encodePoint, multiplyBase, pointAdd, pointMultiply, RISTRETTO_ZERO, } from '../core/ristretto.js';
 export const evaluateCommitmentProduct = (commitments, index) => {
@@ -11,7 +15,10 @@ export const evaluateCommitmentProduct = (commitments, index) => {
     return encodePoint(result);
 };
 /**
- * Computes Feldman commitments for polynomial coefficients.
+ * Computes Feldman commitments for one secret polynomial.
+ *
+ * Dealers publish these commitments so everyone can later verify the shares
+ * they received.
  */
 export const generateFeldmanCommitments = (polynomial, group) => {
     assertCanonicalRistrettoGroup(group, 'Feldman commitment group');
@@ -24,6 +31,9 @@ export const generateFeldmanCommitments = (polynomial, group) => {
 };
 /**
  * Verifies a Feldman share against the published coefficient commitments.
+ *
+ * DKG verification uses this to reject dealers whose shares do not match the
+ * commitments they broadcast.
  */
 export const verifyFeldmanShare = (share, commitments, group) => {
     assertCanonicalRistrettoGroup(group, 'Feldman verification group');

package/dist/vss/pedersen.d.ts

@@ -1,17 +1,30 @@
+/**
+ * Pedersen commitment and share helpers used during the dealer side of DKG and
+ * later transcript verification.
+ */
 import { type CryptoGroup } from '../core/index.js';
 import type { PedersenCommitments, PedersenShare } from './types.js';
 type Polynomial = readonly bigint[];
 /**
  * Computes Pedersen commitments for matching secret and blinding polynomials.
+ *
+ * This is the hiding commitment layer used before Feldman commitments are
+ * revealed and checked.
  */
 export declare const generatePedersenCommitments: (secretPolynomial: readonly bigint[], blindingPolynomial: readonly bigint[], group: CryptoGroup) => PedersenCommitments;
 /**
  * Derives indexed Pedersen share pairs from matching secret and blinding
  * polynomials.
+ *
+ * Dealers use these share pairs before encoding and encrypting them for each
+ * recipient.
  */
 export declare const derivePedersenShares: (secretPolynomial: Polynomial, blindingPolynomial: Polynomial, participantCount: number, q: bigint) => readonly PedersenShare[];
 /**
  * Verifies a Pedersen share pair against the published commitments.
+ *
+ * This is the low-level consistency check behind complaint validation and
+ * transcript replay.
  */
 export declare const verifyPedersenShare: (share: PedersenShare, commitments: PedersenCommitments, group: CryptoGroup) => boolean;
 export {};

package/dist/vss/pedersen.js

@@ -1,3 +1,7 @@
+/**
+ * Pedersen commitment and share helpers used during the dealer side of DKG and
+ * later transcript verification.
+ */
 import { assertCanonicalRistrettoGroup, assertInSubgroup, assertPositiveParticipantIndex, assertScalarInZq, InvalidPayloadError, modQ, ThresholdViolationError, } from '../core/index.js';
 import { decodePoint, encodePoint, multiplyBase, pointAdd, pointMultiply, } from '../core/ristretto.js';
 import { evaluateCommitmentProduct } from './feldman.js';
@@ -11,6 +15,9 @@ const evaluatePolynomial = (polynomial, x, q) => {
 };
 /**
  * Computes Pedersen commitments for matching secret and blinding polynomials.
+ *
+ * This is the hiding commitment layer used before Feldman commitments are
+ * revealed and checked.
  */
 export const generatePedersenCommitments = (secretPolynomial, blindingPolynomial, group) => {
     assertCanonicalRistrettoGroup(group, 'Pedersen commitment group');
@@ -30,6 +37,9 @@ export const generatePedersenCommitments = (secretPolynomial, blindingPolynomial
 /**
  * Derives indexed Pedersen share pairs from matching secret and blinding
  * polynomials.
+ *
+ * Dealers use these share pairs before encoding and encrypting them for each
+ * recipient.
  */
 export const derivePedersenShares = (secretPolynomial, blindingPolynomial, participantCount, q) => {
     if (secretPolynomial.length !== blindingPolynomial.length) {
@@ -50,6 +60,9 @@ export const derivePedersenShares = (secretPolynomial, blindingPolynomial, parti
 };
 /**
  * Verifies a Pedersen share pair against the published commitments.
+ *
+ * This is the low-level consistency check behind complaint validation and
+ * transcript replay.
  */
 export const verifyPedersenShare = (share, commitments, group) => {
     assertCanonicalRistrettoGroup(group, 'Pedersen verification group');

package/dist/vss/public.d.ts

@@ -0,0 +1,10 @@
+/**
+ * Public verifiable-secret-sharing helpers for Feldman and Pedersen
+ * commitments and shares.
+ *
+ * @module threshold-elgamal/vss
+ * @packageDocumentation
+ */
+export { generateFeldmanCommitments, verifyFeldmanShare } from './feldman.js';
+export { derivePedersenShares, generatePedersenCommitments, verifyPedersenShare, } from './pedersen.js';
+export type { FeldmanCommitments, PedersenCommitments, PedersenShare, } from './types.js';

package/dist/vss/public.js

@@ -0,0 +1,9 @@
+/**
+ * Public verifiable-secret-sharing helpers for Feldman and Pedersen
+ * commitments and shares.
+ *
+ * @module threshold-elgamal/vss
+ * @packageDocumentation
+ */
+export { generateFeldmanCommitments, verifyFeldmanShare } from './feldman.js';
+export { derivePedersenShares, generatePedersenCommitments, verifyPedersenShare, } from './pedersen.js';

package/dist/vss/types.d.ts

@@ -1,3 +1,7 @@
+/**
+ * Verifiable secret-sharing commitment and share types used by the GJKR DKG
+ * implementation and transcript verifier.
+ */
 import type { EncodedPoint } from '../core/types.js';
 /** Feldman coefficient commitments `A_m = a_m G`. */
 export type FeldmanCommitments = {

package/package.json

@@ -1,6 +1,6 @@
 {
     "name": "threshold-elgamal",
-    "version": "1.0.9",
+    "version": "2.0.0",
     "description": "A browser-native TypeScript ElGamal library for Ristretto255-based research prototypes, shipping additive ElGamal, threshold decryption, protocol helpers, board auditing, transport primitives, and log-driven DKG state machines.",
     "author": "Piotr Piech <piotr@piech.dev>",
     "license": "MPL-2.0",
@@ -26,21 +26,22 @@
         "coverage:badge": "pnpm run coverage:node && tsx ./tools/generate-coverage-badge.ts",
         "smoke:pack": "tsx ./tools/ci/verify-packed-package.ts",
         "prebuild": "pnpm run check && pnpm run test",
-        "build": "pnpm exec del-cli dist && tsc --project tsconfig.build.json && tsx ./tools/build/rewrite-dist-relative-imports.ts",
+        "build:dist": "pnpm exec del-cli dist && tsc --project tsconfig.build.json && tsx ./tools/build/rewrite-dist-relative-imports.ts",
+        "build": "pnpm run build:dist",
         "vectors:threshold": "tsx ./tools/generate-threshold-vectors.ts",
         "vectors:protocol": "tsx ./tools/generate-protocol-vectors.ts",
         "bench:micro": "tsx ./tools/benchmarks/microbench.ts",
         "bench:dkg": "tsx ./tools/benchmarks/dkg-benchmark.ts",
         "docs:api": "pnpm exec del-cli docs/src/content/docs/api/reference && tsx ./node_modules/typedoc/bin/typedoc --options typedoc.config.mjs && tsx ./typedoc/postprocess-site-docs.ts",
         "docs:dev": "pnpm run docs:api && astro dev --root docs",
-        "docs:build:site": "pnpm exec del-cli docs/dist && astro build --root docs --silent",
-        "docs:preview": "astro preview --root docs",
+        "docs:build:site": "pnpm run docs:api && pnpm exec del-cli docs/dist && astro build --root docs --silent",
+        "docs:preview": "pnpm run docs:build:site && astro preview --root docs",
         "verify:docs": "pnpm run docs:api && tsx ./typedoc/verify-docs.ts",
         "prepare": "husky"
     },
     "dependencies": {
-        "@noble/curves": "^2.0.1",
-        "@noble/hashes": "^2.0.1"
+        "@noble/curves": "^2.2.0",
+        "@noble/hashes": "^2.2.0"
     },
     "devDependencies": {
         "@astrojs/mdx": "^5.0.3",
@@ -49,25 +50,25 @@
         "@eslint/js": "^10.0.1",
         "@fontsource/ibm-plex-sans": "^5.2.8",
         "@fontsource/jetbrains-mono": "^5.2.8",
-        "@types/node": "^25.5.2",
-        "@typescript-eslint/eslint-plugin": "^8.58.1",
-        "@typescript-eslint/parser": "^8.58.1",
+        "@types/node": "^25.6.0",
+        "@typescript-eslint/eslint-plugin": "^8.58.2",
+        "@typescript-eslint/parser": "^8.58.2",
         "@vitest/browser-playwright": "^4.1.4",
         "@vitest/coverage-v8": "^4.1.4",
-        "astro": "^6.1.5",
+        "astro": "^6.1.7",
         "del-cli": "^7.0.0",
         "eslint": "^10.2.0",
         "eslint-config-prettier": "^10.1.8",
         "eslint-plugin-import-x": "^4.16.2",
         "eslint-plugin-only-error": "^1.0.2",
         "eslint-plugin-prettier": "^5.5.5",
-        "globals": "^17.4.0",
+        "globals": "^17.5.0",
         "husky": "^9.1.7",
-        "knip": "^5.67.0",
+        "knip": "^6.4.1",
         "playwright": "^1.59.1",
-        "prettier": "^3.8.1",
+        "prettier": "^3.8.3",
         "tsx": "^4.21.0",
-        "typedoc": "^0.28.18",
+        "typedoc": "^0.28.19",
         "typedoc-plugin-markdown": "^4.11.0",
         "typescript": "^6.0.2",
         "vite": "^8.0.8",
@@ -88,6 +89,34 @@
         ".": {
             "types": "./dist/index.d.ts",
             "import": "./dist/index.js"
+        },
+        "./core": {
+            "types": "./dist/core/public.d.ts",
+            "import": "./dist/core/public.js"
+        },
+        "./elgamal": {
+            "types": "./dist/elgamal/public.d.ts",
+            "import": "./dist/elgamal/public.js"
+        },
+        "./proofs": {
+            "types": "./dist/proofs/public.d.ts",
+            "import": "./dist/proofs/public.js"
+        },
+        "./threshold": {
+            "types": "./dist/threshold/public.d.ts",
+            "import": "./dist/threshold/public.js"
+        },
+        "./dkg": {
+            "types": "./dist/dkg/public.d.ts",
+            "import": "./dist/dkg/public.js"
+        },
+        "./vss": {
+            "types": "./dist/vss/public.d.ts",
+            "import": "./dist/vss/public.js"
+        },
+        "./protocol": {
+            "types": "./dist/protocol/public.d.ts",
+            "import": "./dist/protocol/public.js"
         }
     },
     "engines": {