ts-mls 1.0.2

package/dist/test/scenario/rejectIncomingMessage.test.js

@@ -0,0 +1,67 @@
+import { createGroup, joinGroup } from "../../src/clientState";
+import { createCommit } from "../../src/createCommit";
+import { emptyPskIndex } from "../../src/pskIndex";
+import { ciphersuites, getCiphersuiteFromName, getCiphersuiteImpl } from "../../src/crypto/ciphersuite";
+import { generateKeyPackage } from "../../src/keyPackage";
+import { defaultLifetime } from "../../src/lifetime";
+import { defaultCapabilities } from "../../src/defaultCapabilities";
+import { createProposal } from "../../src";
+import { processMessage } from "../../src/processMessages";
+import { encodeExternalSender } from "../../src/externalSender";
+for (const cs of Object.keys(ciphersuites)) {
+    test(`Reject incoming message ${cs}`, async () => {
+        await rejectIncomingMessagesTest(cs, true);
+        await rejectIncomingMessagesTest(cs, false);
+    });
+}
+async function rejectIncomingMessagesTest(cipherSuite, publicMessage) {
+    const impl = await getCiphersuiteImpl(getCiphersuiteFromName(cipherSuite));
+    const aliceCredential = { credentialType: "basic", identity: new TextEncoder().encode("alice") };
+    const alice = await generateKeyPackage(aliceCredential, defaultCapabilities(), defaultLifetime, [], impl);
+    const groupId = new TextEncoder().encode("group1");
+    const preferredWireformat = publicMessage ? "mls_public_message" : "mls_private_message";
+    let aliceGroup = await createGroup(groupId, alice.publicPackage, alice.privatePackage, [], impl);
+    const bobCredential = { credentialType: "basic", identity: new TextEncoder().encode("bob") };
+    const bob = await generateKeyPackage(bobCredential, defaultCapabilities(), defaultLifetime, [], impl);
+    const addBobProposal = {
+        proposalType: "add",
+        add: {
+            keyPackage: bob.publicPackage,
+        },
+    };
+    const addBobCommitResult = await createCommit(aliceGroup, emptyPskIndex, publicMessage, [addBobProposal], impl);
+    aliceGroup = addBobCommitResult.newState;
+    let bobGroup = await joinGroup(addBobCommitResult.welcome, bob.publicPackage, bob.privatePackage, emptyPskIndex, impl, aliceGroup.ratchetTree);
+    const bobProposeExtensions = {
+        proposalType: "group_context_extensions",
+        groupContextExtensions: {
+            extensions: [
+                {
+                    extensionType: "external_senders",
+                    extensionData: encodeExternalSender({
+                        credential: { credentialType: "basic", identity: new Uint8Array() },
+                        signaturePublicKey: new Uint8Array(),
+                    }),
+                },
+            ],
+        },
+    };
+    const createExtensionsProposalResults = await createProposal(bobGroup, publicMessage, bobProposeExtensions, impl);
+    bobGroup = createExtensionsProposalResults.newState;
+    if (createExtensionsProposalResults.message.wireformat !== preferredWireformat)
+        throw new Error(`Expected ${preferredWireformat} message`);
+    //alice rejects the proposal
+    const aliceRejectsProposalResult = await processMessage(createExtensionsProposalResults.message, aliceGroup, emptyPskIndex, () => "reject", impl);
+    aliceGroup = aliceRejectsProposalResult.newState;
+    expect(aliceGroup.unappliedProposals).toStrictEqual({});
+    // alice commits without the proposal
+    const aliceCommitResult = await createCommit(aliceGroup, emptyPskIndex, publicMessage, [], impl);
+    aliceGroup = aliceCommitResult.newState;
+    if (aliceCommitResult.commit.wireformat !== preferredWireformat)
+        throw new Error(`Expected ${preferredWireformat} message`);
+    const bobRejectsAliceCommitResult = await processMessage(aliceCommitResult.commit, bobGroup, emptyPskIndex, () => "reject", impl);
+    // group context and keySchedule haven't changed since bob rejected the commit
+    expect(bobRejectsAliceCommitResult.newState.groupContext).toStrictEqual(bobGroup.groupContext);
+    expect(bobRejectsAliceCommitResult.newState.keySchedule).toStrictEqual(bobGroup.keySchedule);
+}
+//# sourceMappingURL=rejectIncomingMessage.test.js.map

package/dist/test/scenario/rejectIncomingMessage.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rejectIncomingMessage.test.js","sourceRoot":"","sources":["../../../test/scenario/rejectIncomingMessage.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAA;AAC9D,OAAO,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAA;AACrD,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAA;AAElD,OAAO,EAAmB,YAAY,EAAE,sBAAsB,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAA;AACxH,OAAO,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAA;AAEzD,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAA;AACpD,OAAO,EAAE,mBAAmB,EAAE,MAAM,+BAA+B,CAAA;AACnE,OAAO,EAAE,cAAc,EAAE,MAAM,WAAW,CAAA;AAC1C,OAAO,EAAE,cAAc,EAAE,MAAM,2BAA2B,CAAA;AAC1D,OAAO,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAA;AAG/D,KAAK,MAAM,EAAE,IAAI,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;IAC3C,IAAI,CAAC,2BAA2B,EAAE,EAAE,EAAE,KAAK,IAAI,EAAE;QAC/C,MAAM,0BAA0B,CAAC,EAAqB,EAAE,IAAI,CAAC,CAAA;QAC7D,MAAM,0BAA0B,CAAC,EAAqB,EAAE,KAAK,CAAC,CAAA;IAChE,CAAC,CAAC,CAAA;AACJ,CAAC;AAED,KAAK,UAAU,0BAA0B,CAAC,WAA4B,EAAE,aAAsB;IAC5F,MAAM,IAAI,GAAG,MAAM,kBAAkB,CAAC,sBAAsB,CAAC,WAAW,CAAC,CAAC,CAAA;IAE1E,MAAM,eAAe,GAAe,EAAE,cAAc,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,CAAA;IAC5G,MAAM,KAAK,GAAG,MAAM,kBAAkB,CAAC,eAAe,EAAE,mBAAmB,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAEzG,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAA;IAClD,MAAM,mBAAmB,GAAmB,aAAa,CAAC,CAAC,CAAC,oBAAoB,CAAC,CAAC,CAAC,qBAAqB,CAAA;IAExG,IAAI,UAAU,GAAG,MAAM,WAAW,CAAC,OAAO,EAAE,KAAK,CAAC,aAAa,EAAE,KAAK,CAAC,cAAc,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAEhG,MAAM,aAAa,GAAe,EAAE,cAAc,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAA;IACxG,MAAM,GAAG,GAAG,MAAM,kBAAkB,CAAC,aAAa,EAAE,mBAAmB,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAErG,MAAM,cAAc,GAAgB;QAClC,YAAY,EAAE,KAAK;QACnB,GAAG,EAAE;YACH,UAAU,EAAE,GAAG,CAAC,aAAa;SAC9B;KACF,CAAA;IAED,MAAM,kBAAkB,GAAG,MAAM,YAAY,CAAC,UAAU,EAAE,aAAa,EAAE,aAAa,EAAE,CAAC,cAAc,CAAC,EAAE,IAAI,CAAC,CAAA;IAE/G,UAAU,GAAG,kBAAkB,CAAC,QAAQ,CAAA;IAExC,IAAI,QAAQ,GAAG,MAAM,SAAS,CAC5B,kBAAkB,CAAC,OAAQ,EAC3B,GAAG,CAAC,aAAa,EACjB,GAAG,CAAC,cAAc,EAClB,aAAa,EACb,IAAI,EACJ,UAAU,CAAC,WAAW,CACvB,CAAA;IAED,MAAM,oBAAoB,GAAa;QACrC,YAAY,EAAE,0BAA0B;QACxC,sBAAsB,EAAE;YACtB,UAAU,EAAE;gBACV;oBACE,aAAa,EAAE,kBAAkB;oBACjC,aAAa,EAAE,oBAAoB,CAAC;wBAClC,UAAU,EAAE,EAAE,cAAc,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,UAAU,EAAE,EAAE;wBACnE,kBAAkB,EAAE,IAAI,UAAU,EAAE;qBACrC,CAAC;iBACH;aACF;SACF;KACF,CAAA;IAED,MAAM,+BAA+B,GAAG,MAAM,cAAc,CAAC,QAAQ,EAAE,aAAa,EAAE,oBAAoB,EAAE,IAAI,CAAC,CAAA;IAEjH,QAAQ,GAAG,+BAA+B,CAAC,QAAQ,CAAA;IAEnD,IAAI,+BAA+B,CAAC,OAAO,CAAC,UAAU,KAAK,mBAAmB;QAC5E,MAAM,IAAI,KAAK,CAAC,YAAY,mBAAmB,UAAU,CAAC,CAAA;IAE5D,4BAA4B;IAC5B,MAAM,0BAA0B,GAAG,MAAM,cAAc,CACrD,+BAA+B,CAAC,OAAO,EACvC,UAAU,EACV,aAAa,EACb,GAAG,EAAE,CAAC,QAAQ,EACd,IAAI,CACL,CAAA;IAED,UAAU,GAAG,0BAA0B,CAAC,QAAQ,CAAA;IAEhD,MAAM,CAAC,UAAU,CAAC,kBAAkB,CAAC,CAAC,aAAa,CAAC,EAAE,CAAC,CAAA;IAEvD,qCAAqC;IACrC,MAAM,iBAAiB,GAAG,MAAM,YAAY,CAAC,UAAU,EAAE,aAAa,EAAE,aAAa,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAEhG,UAAU,GAAG,iBAAiB,CAAC,QAAQ,CAAA;IAEvC,IAAI,iBAAiB,CAAC,MAAM,CAAC,UAAU,KAAK,mBAAmB;QAC7D,MAAM,IAAI,KAAK,CAAC,YAAY,mBAAmB,UAAU,CAAC,CAAA;IAE5D,MAAM,2BAA2B,GAAG,MAAM,cAAc,CACtD,iBAAiB,CAAC,MAAM,EACxB,QAAQ,EACR,aAAa,EACb,GAAG,EAAE,CAAC,QAAQ,EACd,IAAI,CACL,CAAA;IAED,8EAA8E;IAC9E,MAAM,CAAC,2BAA2B,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC,aAAa,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAA;IAC9F,MAAM,CAAC,2BAA2B,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC,aAAa,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAA;AAC9F,CAAC"}

package/dist/test/scenario/remove.test.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/test/scenario/remove.test.js

@@ -0,0 +1,68 @@
+import { createGroup, joinGroup, makePskIndex } from "../../src/clientState";
+import { createCommit } from "../../src/createCommit";
+import { processPrivateMessage } from "../../src/processMessages";
+import { emptyPskIndex } from "../../src/pskIndex";
+import { ciphersuites, getCiphersuiteFromName, getCiphersuiteImpl } from "../../src/crypto/ciphersuite";
+import { generateKeyPackage } from "../../src/keyPackage";
+import { checkHpkeKeysMatch } from "../crypto/keyMatch";
+import { cannotMessageAnymore, testEveryoneCanMessageEveryone } from "./common";
+import { defaultLifetime } from "../../src/lifetime";
+import { defaultCapabilities } from "../../src/defaultCapabilities";
+import { UsageError } from "../../src/mlsError";
+for (const cs of Object.keys(ciphersuites)) {
+    test(`Remove ${cs}`, async () => {
+        await remove(cs);
+    });
+}
+async function remove(cipherSuite) {
+    const impl = await getCiphersuiteImpl(getCiphersuiteFromName(cipherSuite));
+    const aliceCredential = { credentialType: "basic", identity: new TextEncoder().encode("alice") };
+    const alice = await generateKeyPackage(aliceCredential, defaultCapabilities(), defaultLifetime, [], impl);
+    const groupId = new TextEncoder().encode("group1");
+    let aliceGroup = await createGroup(groupId, alice.publicPackage, alice.privatePackage, [], impl);
+    const bobCredential = { credentialType: "basic", identity: new TextEncoder().encode("bob") };
+    const bob = await generateKeyPackage(bobCredential, defaultCapabilities(), defaultLifetime, [], impl);
+    const charlieCredential = { credentialType: "basic", identity: new TextEncoder().encode("charlie") };
+    const charlie = await generateKeyPackage(charlieCredential, defaultCapabilities(), defaultLifetime, [], impl);
+    const addBobProposal = {
+        proposalType: "add",
+        add: {
+            keyPackage: bob.publicPackage,
+        },
+    };
+    const addCharlieProposal = {
+        proposalType: "add",
+        add: {
+            keyPackage: charlie.publicPackage,
+        },
+    };
+    const addBobAndCharlieCommitResult = await createCommit(aliceGroup, emptyPskIndex, false, [addBobProposal, addCharlieProposal], impl);
+    aliceGroup = addBobAndCharlieCommitResult.newState;
+    let bobGroup = await joinGroup(addBobAndCharlieCommitResult.welcome, bob.publicPackage, bob.privatePackage, emptyPskIndex, impl, aliceGroup.ratchetTree);
+    expect(bobGroup.keySchedule.epochAuthenticator).toStrictEqual(aliceGroup.keySchedule.epochAuthenticator);
+    let charlieGroup = await joinGroup(addBobAndCharlieCommitResult.welcome, charlie.publicPackage, charlie.privatePackage, emptyPskIndex, impl, aliceGroup.ratchetTree);
+    expect(charlieGroup.keySchedule.epochAuthenticator).toStrictEqual(aliceGroup.keySchedule.epochAuthenticator);
+    const removeBobProposal = {
+        proposalType: "remove",
+        remove: {
+            removed: bobGroup.privatePath.leafIndex,
+        },
+    };
+    const removeBobCommitResult = await createCommit(aliceGroup, emptyPskIndex, false, [removeBobProposal], impl);
+    aliceGroup = removeBobCommitResult.newState;
+    if (removeBobCommitResult.commit.wireformat !== "mls_private_message")
+        throw new Error("Expected private message");
+    const bobProcessCommitResult = await processPrivateMessage(bobGroup, removeBobCommitResult.commit.privateMessage, makePskIndex(bobGroup, {}), impl);
+    // bob is removed here
+    bobGroup = bobProcessCommitResult.newState;
+    const charlieProcessCommitResult = await processPrivateMessage(charlieGroup, removeBobCommitResult.commit.privateMessage, makePskIndex(charlieGroup, {}), impl);
+    charlieGroup = charlieProcessCommitResult.newState;
+    expect(bobGroup.groupActiveState).toStrictEqual({ kind: "removedFromGroup" });
+    //creating a message will fail now
+    expect(createCommit(bobGroup, emptyPskIndex, false, [], impl)).rejects.toThrow(UsageError);
+    await cannotMessageAnymore(bobGroup, impl);
+    await checkHpkeKeysMatch(aliceGroup, impl);
+    await checkHpkeKeysMatch(charlieGroup, impl);
+    await testEveryoneCanMessageEveryone([aliceGroup, charlieGroup], impl);
+}
+//# sourceMappingURL=remove.test.js.map

package/dist/test/scenario/remove.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"remove.test.js","sourceRoot":"","sources":["../../../test/scenario/remove.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAA;AAC5E,OAAO,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAA;AACrD,OAAO,EAAE,qBAAqB,EAAE,MAAM,2BAA2B,CAAA;AACjE,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAA;AAElD,OAAO,EAAmB,YAAY,EAAE,sBAAsB,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAA;AACxH,OAAO,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAA;AAEzD,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAA;AACvD,OAAO,EAAE,oBAAoB,EAAE,8BAA8B,EAAE,MAAM,UAAU,CAAA;AAC/E,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAA;AACpD,OAAO,EAAE,mBAAmB,EAAE,MAAM,+BAA+B,CAAA;AACnE,OAAO,EAAE,UAAU,EAAE,MAAM,oBAAoB,CAAA;AAE/C,KAAK,MAAM,EAAE,IAAI,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;IAC3C,IAAI,CAAC,UAAU,EAAE,EAAE,EAAE,KAAK,IAAI,EAAE;QAC9B,MAAM,MAAM,CAAC,EAAqB,CAAC,CAAA;IACrC,CAAC,CAAC,CAAA;AACJ,CAAC;AAED,KAAK,UAAU,MAAM,CAAC,WAA4B;IAChD,MAAM,IAAI,GAAG,MAAM,kBAAkB,CAAC,sBAAsB,CAAC,WAAW,CAAC,CAAC,CAAA;IAE1E,MAAM,eAAe,GAAe,EAAE,cAAc,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,CAAA;IAC5G,MAAM,KAAK,GAAG,MAAM,kBAAkB,CAAC,eAAe,EAAE,mBAAmB,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAEzG,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAA;IAElD,IAAI,UAAU,GAAG,MAAM,WAAW,CAAC,OAAO,EAAE,KAAK,CAAC,aAAa,EAAE,KAAK,CAAC,cAAc,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAEhG,MAAM,aAAa,GAAe,EAAE,cAAc,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAA;IACxG,MAAM,GAAG,GAAG,MAAM,kBAAkB,CAAC,aAAa,EAAE,mBAAmB,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAErG,MAAM,iBAAiB,GAAe,EAAE,cAAc,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAA;IAChH,MAAM,OAAO,GAAG,MAAM,kBAAkB,CAAC,iBAAiB,EAAE,mBAAmB,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAE7G,MAAM,cAAc,GAAgB;QAClC,YAAY,EAAE,KAAK;QACnB,GAAG,EAAE;YACH,UAAU,EAAE,GAAG,CAAC,aAAa;SAC9B;KACF,CAAA;IAED,MAAM,kBAAkB,GAAgB;QACtC,YAAY,EAAE,KAAK;QACnB,GAAG,EAAE;YACH,UAAU,EAAE,OAAO,CAAC,aAAa;SAClC;KACF,CAAA;IAED,MAAM,4BAA4B,GAAG,MAAM,YAAY,CACrD,UAAU,EACV,aAAa,EACb,KAAK,EACL,CAAC,cAAc,EAAE,kBAAkB,CAAC,EACpC,IAAI,CACL,CAAA;IAED,UAAU,GAAG,4BAA4B,CAAC,QAAQ,CAAA;IAElD,IAAI,QAAQ,GAAG,MAAM,SAAS,CAC5B,4BAA4B,CAAC,OAAQ,EACrC,GAAG,CAAC,aAAa,EACjB,GAAG,CAAC,cAAc,EAClB,aAAa,EACb,IAAI,EACJ,UAAU,CAAC,WAAW,CACvB,CAAA;IAED,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAA;IAExG,IAAI,YAAY,GAAG,MAAM,SAAS,CAChC,4BAA4B,CAAC,OAAQ,EACrC,OAAO,CAAC,aAAa,EACrB,OAAO,CAAC,cAAc,EACtB,aAAa,EACb,IAAI,EACJ,UAAU,CAAC,WAAW,CACvB,CAAA;IAED,MAAM,CAAC,YAAY,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAA;IAE5G,MAAM,iBAAiB,GAAmB;QACxC,YAAY,EAAE,QAAQ;QACtB,MAAM,EAAE;YACN,OAAO,EAAE,QAAQ,CAAC,WAAW,CAAC,SAAS;SACxC;KACF,CAAA;IAED,MAAM,qBAAqB,GAAG,MAAM,YAAY,CAAC,UAAU,EAAE,aAAa,EAAE,KAAK,EAAE,CAAC,iBAAiB,CAAC,EAAE,IAAI,CAAC,CAAA;IAE7G,UAAU,GAAG,qBAAqB,CAAC,QAAQ,CAAA;IAE3C,IAAI,qBAAqB,CAAC,MAAM,CAAC,UAAU,KAAK,qBAAqB;QAAE,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAA;IAElH,MAAM,sBAAsB,GAAG,MAAM,qBAAqB,CACxD,QAAQ,EACR,qBAAqB,CAAC,MAAM,CAAC,cAAc,EAC3C,YAAY,CAAC,QAAQ,EAAE,EAAE,CAAC,EAC1B,IAAI,CACL,CAAA;IAED,sBAAsB;IACtB,QAAQ,GAAG,sBAAsB,CAAC,QAAQ,CAAA;IAE1C,MAAM,0BAA0B,GAAG,MAAM,qBAAqB,CAC5D,YAAY,EACZ,qBAAqB,CAAC,MAAM,CAAC,cAAc,EAC3C,YAAY,CAAC,YAAY,EAAE,EAAE,CAAC,EAC9B,IAAI,CACL,CAAA;IAED,YAAY,GAAG,0BAA0B,CAAC,QAAQ,CAAA;IAElD,MAAM,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAC,aAAa,CAAC,EAAE,IAAI,EAAE,kBAAkB,EAAE,CAAC,CAAA;IAE7E,kCAAkC;IAClC,MAAM,CAAC,YAAY,CAAC,QAAQ,EAAE,aAAa,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,UAAU,CAAC,CAAA;IAE1F,MAAM,oBAAoB,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAA;IAE1C,MAAM,kBAAkB,CAAC,UAAU,EAAE,IAAI,CAAC,CAAA;IAC1C,MAAM,kBAAkB,CAAC,YAAY,EAAE,IAAI,CAAC,CAAA;IAC5C,MAAM,8BAA8B,CAAC,CAAC,UAAU,EAAE,YAAY,CAAC,EAAE,IAAI,CAAC,CAAA;AACxE,CAAC"}

package/dist/test/scenario/requiredCapabilites.test.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/test/scenario/requiredCapabilites.test.js

@@ -0,0 +1,65 @@
+import { createGroup, joinGroup } from "../../src/clientState";
+import { createCommit } from "../../src/createCommit";
+import { emptyPskIndex } from "../../src/pskIndex";
+import { getCiphersuiteImpl, getCiphersuiteFromName, ciphersuites } from "../../src/crypto/ciphersuite";
+import { generateKeyPackage } from "../../src/keyPackage";
+import { defaultLifetime } from "../../src/lifetime";
+import { encodeRequiredCapabilities } from "../../src/requiredCapabilities";
+import { ValidationError } from "../../src/mlsError";
+for (const cs of Object.keys(ciphersuites)) {
+    test(`Required Capabilities extension ${cs}`, async () => {
+        await requiredCapatabilitiesTest(cs);
+    });
+}
+async function requiredCapatabilitiesTest(cipherSuite) {
+    const impl = await getCiphersuiteImpl(getCiphersuiteFromName(cipherSuite));
+    const requiredCapabilities = {
+        extensionTypes: [7, 8],
+        credentialTypes: ["x509", "basic"],
+        proposalTypes: [],
+    };
+    const capabilities = {
+        extensions: [7, 8, 9],
+        credentials: ["x509", "basic"],
+        proposals: [],
+        versions: ["mls10"],
+        ciphersuites: [cipherSuite],
+    };
+    const aliceCredential = { credentialType: "basic", identity: new TextEncoder().encode("alice") };
+    const alice = await generateKeyPackage(aliceCredential, capabilities, defaultLifetime, [], impl);
+    const groupId = new TextEncoder().encode("group1");
+    const requiredCapabilitiesExtension = {
+        extensionType: "required_capabilities",
+        extensionData: encodeRequiredCapabilities(requiredCapabilities),
+    };
+    let aliceGroup = await createGroup(groupId, alice.publicPackage, alice.privatePackage, [requiredCapabilitiesExtension], impl);
+    const bobCredential = { credentialType: "basic", identity: new TextEncoder().encode("bob") };
+    const bob = await generateKeyPackage(bobCredential, capabilities, defaultLifetime, [], impl);
+    const minimalCapabilites = {
+        extensions: [],
+        credentials: ["basic"],
+        proposals: [],
+        versions: ["mls10"],
+        ciphersuites: [cipherSuite],
+    };
+    const charlieCredential = { credentialType: "basic", identity: new TextEncoder().encode("charlie") };
+    const charlie = await generateKeyPackage(charlieCredential, minimalCapabilites, defaultLifetime, [], impl);
+    const addBobProposal = {
+        proposalType: "add",
+        add: {
+            keyPackage: bob.publicPackage,
+        },
+    };
+    const addBobCommitResult = await createCommit(aliceGroup, emptyPskIndex, false, [addBobProposal], impl);
+    aliceGroup = addBobCommitResult.newState;
+    let bobGroup = await joinGroup(addBobCommitResult.welcome, bob.publicPackage, bob.privatePackage, emptyPskIndex, impl, aliceGroup.ratchetTree);
+    expect(bobGroup.keySchedule.epochAuthenticator).toStrictEqual(aliceGroup.keySchedule.epochAuthenticator);
+    const addCharlieProposal = {
+        proposalType: "add",
+        add: {
+            keyPackage: charlie.publicPackage,
+        },
+    };
+    await expect(createCommit(aliceGroup, emptyPskIndex, false, [addCharlieProposal], impl)).rejects.toThrow(ValidationError);
+}
+//# sourceMappingURL=requiredCapabilites.test.js.map

package/dist/test/scenario/requiredCapabilites.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"requiredCapabilites.test.js","sourceRoot":"","sources":["../../../test/scenario/requiredCapabilites.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAA;AAC9D,OAAO,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAA;AACrD,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAA;AAElD,OAAO,EAAmB,kBAAkB,EAAE,sBAAsB,EAAE,YAAY,EAAE,MAAM,8BAA8B,CAAA;AACxH,OAAO,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAA;AAEzD,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAA;AAGpD,OAAO,EAAE,0BAA0B,EAAwB,MAAM,gCAAgC,CAAA;AACjG,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAA;AAEpD,KAAK,MAAM,EAAE,IAAI,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;IAC3C,IAAI,CAAC,mCAAmC,EAAE,EAAE,EAAE,KAAK,IAAI,EAAE;QACvD,MAAM,0BAA0B,CAAC,EAAqB,CAAC,CAAA;IACzD,CAAC,CAAC,CAAA;AACJ,CAAC;AAED,KAAK,UAAU,0BAA0B,CAAC,WAA4B;IACpE,MAAM,IAAI,GAAG,MAAM,kBAAkB,CAAC,sBAAsB,CAAC,WAAW,CAAC,CAAC,CAAA;IAE1E,MAAM,oBAAoB,GAAyB;QACjD,cAAc,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC;QACtB,eAAe,EAAE,CAAC,MAAM,EAAE,OAAO,CAAC;QAClC,aAAa,EAAE,EAAE;KAClB,CAAA;IAED,MAAM,YAAY,GAAiB;QACjC,UAAU,EAAE,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;QACrB,WAAW,EAAE,CAAC,MAAM,EAAE,OAAO,CAAC;QAC9B,SAAS,EAAE,EAAE;QACb,QAAQ,EAAE,CAAC,OAAO,CAAC;QACnB,YAAY,EAAE,CAAC,WAAW,CAAC;KAC5B,CAAA;IAED,MAAM,eAAe,GAAe,EAAE,cAAc,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,CAAA;IAC5G,MAAM,KAAK,GAAG,MAAM,kBAAkB,CAAC,eAAe,EAAE,YAAY,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAEhG,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAA;IAElD,MAAM,6BAA6B,GAAc;QAC/C,aAAa,EAAE,uBAAuB;QACtC,aAAa,EAAE,0BAA0B,CAAC,oBAAoB,CAAC;KAChE,CAAA;IAED,IAAI,UAAU,GAAG,MAAM,WAAW,CAChC,OAAO,EACP,KAAK,CAAC,aAAa,EACnB,KAAK,CAAC,cAAc,EACpB,CAAC,6BAA6B,CAAC,EAC/B,IAAI,CACL,CAAA;IAED,MAAM,aAAa,GAAe,EAAE,cAAc,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAA;IACxG,MAAM,GAAG,GAAG,MAAM,kBAAkB,CAAC,aAAa,EAAE,YAAY,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAE5F,MAAM,kBAAkB,GAAiB;QACvC,UAAU,EAAE,EAAE;QACd,WAAW,EAAE,CAAC,OAAO,CAAC;QACtB,SAAS,EAAE,EAAE;QACb,QAAQ,EAAE,CAAC,OAAO,CAAC;QACnB,YAAY,EAAE,CAAC,WAAW,CAAC;KAC5B,CAAA;IAED,MAAM,iBAAiB,GAAe,EAAE,cAAc,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAA;IAChH,MAAM,OAAO,GAAG,MAAM,kBAAkB,CAAC,iBAAiB,EAAE,kBAAkB,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAE1G,MAAM,cAAc,GAAgB;QAClC,YAAY,EAAE,KAAK;QACnB,GAAG,EAAE;YACH,UAAU,EAAE,GAAG,CAAC,aAAa;SAC9B;KACF,CAAA;IAED,MAAM,kBAAkB,GAAG,MAAM,YAAY,CAAC,UAAU,EAAE,aAAa,EAAE,KAAK,EAAE,CAAC,cAAc,CAAC,EAAE,IAAI,CAAC,CAAA;IAEvG,UAAU,GAAG,kBAAkB,CAAC,QAAQ,CAAA;IAExC,IAAI,QAAQ,GAAG,MAAM,SAAS,CAC5B,kBAAkB,CAAC,OAAQ,EAC3B,GAAG,CAAC,aAAa,EACjB,GAAG,CAAC,cAAc,EAClB,aAAa,EACb,IAAI,EACJ,UAAU,CAAC,WAAW,CACvB,CAAA;IAED,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAA;IAExG,MAAM,kBAAkB,GAAgB;QACtC,YAAY,EAAE,KAAK;QACnB,GAAG,EAAE;YACH,UAAU,EAAE,OAAO,CAAC,aAAa;SAClC;KACF,CAAA;IAED,MAAM,MAAM,CAAC,YAAY,CAAC,UAAU,EAAE,aAAa,EAAE,KAAK,EAAE,CAAC,kBAAkB,CAAC,EAAE,IAAI,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CACtG,eAAe,CAChB,CAAA;AACH,CAAC"}

package/dist/test/scenario/resumption.test.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/test/scenario/resumption.test.js

@@ -0,0 +1,43 @@
+import { createGroup, joinGroup } from "../../src/clientState";
+import { createCommit } from "../../src/createCommit";
+import { emptyPskIndex } from "../../src/pskIndex";
+import { branchGroup, joinGroupFromBranch } from "../../src/resumption";
+import { ciphersuites, getCiphersuiteFromName, getCiphersuiteImpl } from "../../src/crypto/ciphersuite";
+import { generateKeyPackage } from "../../src/keyPackage";
+import { checkHpkeKeysMatch } from "../crypto/keyMatch";
+import { testEveryoneCanMessageEveryone } from "./common";
+import { defaultLifetime } from "../../src/lifetime";
+import { defaultCapabilities } from "../../src/defaultCapabilities";
+for (const cs of Object.keys(ciphersuites)) {
+    test(`Resumption ${cs}`, async () => {
+        await resumption(cs);
+    });
+}
+async function resumption(cipherSuite) {
+    const impl = await getCiphersuiteImpl(getCiphersuiteFromName(cipherSuite));
+    const aliceCredential = { credentialType: "basic", identity: new TextEncoder().encode("alice") };
+    const alice = await generateKeyPackage(aliceCredential, defaultCapabilities(), defaultLifetime, [], impl);
+    const groupId = new TextEncoder().encode("group1");
+    let aliceGroup = await createGroup(groupId, alice.publicPackage, alice.privatePackage, [], impl);
+    const bobCredential = { credentialType: "basic", identity: new TextEncoder().encode("bob") };
+    const bob = await generateKeyPackage(bobCredential, defaultCapabilities(), defaultLifetime, [], impl);
+    const addBobProposal = {
+        proposalType: "add",
+        add: {
+            keyPackage: bob.publicPackage,
+        },
+    };
+    const commitResult = await createCommit(aliceGroup, emptyPskIndex, false, [addBobProposal], impl);
+    aliceGroup = commitResult.newState;
+    let bobGroup = await joinGroup(commitResult.welcome, bob.publicPackage, bob.privatePackage, emptyPskIndex, impl, aliceGroup.ratchetTree);
+    const bobNewKeyPackage = await generateKeyPackage(bobCredential, defaultCapabilities(), defaultLifetime, [], impl);
+    const aliceNewKeyPackage = await generateKeyPackage(aliceCredential, defaultCapabilities(), defaultLifetime, [], impl);
+    const newGroupId = new TextEncoder().encode("new-group1");
+    const branchCommitResult = await branchGroup(aliceGroup, aliceNewKeyPackage.publicPackage, aliceNewKeyPackage.privatePackage, [bobNewKeyPackage.publicPackage], newGroupId, impl);
+    aliceGroup = branchCommitResult.newState;
+    bobGroup = await joinGroupFromBranch(bobGroup, branchCommitResult.welcome, bobNewKeyPackage.publicPackage, bobNewKeyPackage.privatePackage, aliceGroup.ratchetTree, impl);
+    await testEveryoneCanMessageEveryone([aliceGroup, bobGroup], impl);
+    await checkHpkeKeysMatch(aliceGroup, impl);
+    await checkHpkeKeysMatch(bobGroup, impl);
+}
+//# sourceMappingURL=resumption.test.js.map

package/dist/test/scenario/resumption.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"resumption.test.js","sourceRoot":"","sources":["../../../test/scenario/resumption.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAA;AAC9D,OAAO,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAA;AACrD,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAA;AAClD,OAAO,EAAE,WAAW,EAAE,mBAAmB,EAAE,MAAM,sBAAsB,CAAA;AAEvE,OAAO,EAAmB,YAAY,EAAE,sBAAsB,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAA;AACxH,OAAO,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAA;AAEzD,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAA;AACvD,OAAO,EAAE,8BAA8B,EAAE,MAAM,UAAU,CAAA;AACzD,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAA;AACpD,OAAO,EAAE,mBAAmB,EAAE,MAAM,+BAA+B,CAAA;AAEnE,KAAK,MAAM,EAAE,IAAI,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;IAC3C,IAAI,CAAC,cAAc,EAAE,EAAE,EAAE,KAAK,IAAI,EAAE;QAClC,MAAM,UAAU,CAAC,EAAqB,CAAC,CAAA;IACzC,CAAC,CAAC,CAAA;AACJ,CAAC;AAED,KAAK,UAAU,UAAU,CAAC,WAA4B;IACpD,MAAM,IAAI,GAAG,MAAM,kBAAkB,CAAC,sBAAsB,CAAC,WAAW,CAAC,CAAC,CAAA;IAE1E,MAAM,eAAe,GAAe,EAAE,cAAc,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,CAAA;IAC5G,MAAM,KAAK,GAAG,MAAM,kBAAkB,CAAC,eAAe,EAAE,mBAAmB,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAEzG,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAA;IAElD,IAAI,UAAU,GAAG,MAAM,WAAW,CAAC,OAAO,EAAE,KAAK,CAAC,aAAa,EAAE,KAAK,CAAC,cAAc,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAEhG,MAAM,aAAa,GAAe,EAAE,cAAc,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAA;IACxG,MAAM,GAAG,GAAG,MAAM,kBAAkB,CAAC,aAAa,EAAE,mBAAmB,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAErG,MAAM,cAAc,GAAgB;QAClC,YAAY,EAAE,KAAK;QACnB,GAAG,EAAE;YACH,UAAU,EAAE,GAAG,CAAC,aAAa;SAC9B;KACF,CAAA;IAED,MAAM,YAAY,GAAG,MAAM,YAAY,CAAC,UAAU,EAAE,aAAa,EAAE,KAAK,EAAE,CAAC,cAAc,CAAC,EAAE,IAAI,CAAC,CAAA;IAEjG,UAAU,GAAG,YAAY,CAAC,QAAQ,CAAA;IAElC,IAAI,QAAQ,GAAG,MAAM,SAAS,CAC5B,YAAY,CAAC,OAAQ,EACrB,GAAG,CAAC,aAAa,EACjB,GAAG,CAAC,cAAc,EAClB,aAAa,EACb,IAAI,EACJ,UAAU,CAAC,WAAW,CACvB,CAAA;IAED,MAAM,gBAAgB,GAAG,MAAM,kBAAkB,CAAC,aAAa,EAAE,mBAAmB,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAElH,MAAM,kBAAkB,GAAG,MAAM,kBAAkB,CAAC,eAAe,EAAE,mBAAmB,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAEtH,MAAM,UAAU,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,YAAY,CAAC,CAAA;IAEzD,MAAM,kBAAkB,GAAG,MAAM,WAAW,CAC1C,UAAU,EACV,kBAAkB,CAAC,aAAa,EAChC,kBAAkB,CAAC,cAAc,EACjC,CAAC,gBAAgB,CAAC,aAAa,CAAC,EAChC,UAAU,EACV,IAAI,CACL,CAAA;IAED,UAAU,GAAG,kBAAkB,CAAC,QAAQ,CAAA;IAExC,QAAQ,GAAG,MAAM,mBAAmB,CAClC,QAAQ,EACR,kBAAkB,CAAC,OAAQ,EAC3B,gBAAgB,CAAC,aAAa,EAC9B,gBAAgB,CAAC,cAAc,EAC/B,UAAU,CAAC,WAAW,EACtB,IAAI,CACL,CAAA;IAED,MAAM,8BAA8B,CAAC,CAAC,UAAU,EAAE,QAAQ,CAAC,EAAE,IAAI,CAAC,CAAA;IAClE,MAAM,kBAAkB,CAAC,UAAU,EAAE,IAAI,CAAC,CAAA;IAC1C,MAAM,kBAAkB,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAA;AAC1C,CAAC"}

package/dist/test/scenario/threePartyJoin.test.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/test/scenario/threePartyJoin.test.js

@@ -0,0 +1,56 @@
+import { createGroup, joinGroup, makePskIndex } from "../../src/clientState";
+import { createCommit } from "../../src/createCommit";
+import { processPrivateMessage } from "../../src/processMessages";
+import { emptyPskIndex } from "../../src/pskIndex";
+import { getCiphersuiteImpl, getCiphersuiteFromName, ciphersuites } from "../../src/crypto/ciphersuite";
+import { generateKeyPackage } from "../../src/keyPackage";
+import { checkHpkeKeysMatch } from "../crypto/keyMatch";
+import { testEveryoneCanMessageEveryone } from "./common";
+import { defaultLifetime } from "../../src/lifetime";
+import { defaultCapabilities } from "../../src/defaultCapabilities";
+for (const cs of Object.keys(ciphersuites)) {
+    test(`3-party join ${cs}`, async () => {
+        await threePartyJoin(cs);
+    });
+}
+async function threePartyJoin(cipherSuite) {
+    const impl = await getCiphersuiteImpl(getCiphersuiteFromName(cipherSuite));
+    const aliceCredential = { credentialType: "basic", identity: new TextEncoder().encode("alice") };
+    const alice = await generateKeyPackage(aliceCredential, defaultCapabilities(), defaultLifetime, [], impl);
+    const groupId = new TextEncoder().encode("group1");
+    let aliceGroup = await createGroup(groupId, alice.publicPackage, alice.privatePackage, [], impl);
+    const bobCredential = { credentialType: "basic", identity: new TextEncoder().encode("bob") };
+    const bob = await generateKeyPackage(bobCredential, defaultCapabilities(), defaultLifetime, [], impl);
+    const charlieCredential = { credentialType: "basic", identity: new TextEncoder().encode("charlie") };
+    const charlie = await generateKeyPackage(charlieCredential, defaultCapabilities(), defaultLifetime, [], impl);
+    const addBobProposal = {
+        proposalType: "add",
+        add: {
+            keyPackage: bob.publicPackage,
+        },
+    };
+    const addBobCommitResult = await createCommit(aliceGroup, emptyPskIndex, false, [addBobProposal], impl);
+    aliceGroup = addBobCommitResult.newState;
+    let bobGroup = await joinGroup(addBobCommitResult.welcome, bob.publicPackage, bob.privatePackage, emptyPskIndex, impl, aliceGroup.ratchetTree);
+    expect(bobGroup.keySchedule.epochAuthenticator).toStrictEqual(aliceGroup.keySchedule.epochAuthenticator);
+    const addCharlieProposal = {
+        proposalType: "add",
+        add: {
+            keyPackage: charlie.publicPackage,
+        },
+    };
+    const addCharlieCommitResult = await createCommit(aliceGroup, emptyPskIndex, false, [addCharlieProposal], impl);
+    aliceGroup = addCharlieCommitResult.newState;
+    if (addCharlieCommitResult.commit.wireformat !== "mls_private_message")
+        throw new Error("Expected private message");
+    const processAddCharlieResult = await processPrivateMessage(bobGroup, addCharlieCommitResult.commit.privateMessage, makePskIndex(bobGroup, {}), impl);
+    bobGroup = processAddCharlieResult.newState;
+    expect(bobGroup.keySchedule.epochAuthenticator).toStrictEqual(aliceGroup.keySchedule.epochAuthenticator);
+    let charlieGroup = await joinGroup(addCharlieCommitResult.welcome, charlie.publicPackage, charlie.privatePackage, emptyPskIndex, impl, aliceGroup.ratchetTree);
+    expect(charlieGroup.keySchedule.epochAuthenticator).toStrictEqual(aliceGroup.keySchedule.epochAuthenticator);
+    await checkHpkeKeysMatch(aliceGroup, impl);
+    await checkHpkeKeysMatch(bobGroup, impl);
+    await checkHpkeKeysMatch(charlieGroup, impl);
+    await testEveryoneCanMessageEveryone([aliceGroup, bobGroup, charlieGroup], impl);
+}
+//# sourceMappingURL=threePartyJoin.test.js.map

package/dist/test/scenario/threePartyJoin.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"threePartyJoin.test.js","sourceRoot":"","sources":["../../../test/scenario/threePartyJoin.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAA;AAC5E,OAAO,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAA;AACrD,OAAO,EAAE,qBAAqB,EAAE,MAAM,2BAA2B,CAAA;AACjE,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAA;AAElD,OAAO,EAAmB,kBAAkB,EAAE,sBAAsB,EAAE,YAAY,EAAE,MAAM,8BAA8B,CAAA;AACxH,OAAO,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAA;AAEzD,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAA;AACvD,OAAO,EAAE,8BAA8B,EAAE,MAAM,UAAU,CAAA;AACzD,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAA;AACpD,OAAO,EAAE,mBAAmB,EAAE,MAAM,+BAA+B,CAAA;AAEnE,KAAK,MAAM,EAAE,IAAI,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;IAC3C,IAAI,CAAC,gBAAgB,EAAE,EAAE,EAAE,KAAK,IAAI,EAAE;QACpC,MAAM,cAAc,CAAC,EAAqB,CAAC,CAAA;IAC7C,CAAC,CAAC,CAAA;AACJ,CAAC;AAED,KAAK,UAAU,cAAc,CAAC,WAA4B;IACxD,MAAM,IAAI,GAAG,MAAM,kBAAkB,CAAC,sBAAsB,CAAC,WAAW,CAAC,CAAC,CAAA;IAE1E,MAAM,eAAe,GAAe,EAAE,cAAc,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,CAAA;IAC5G,MAAM,KAAK,GAAG,MAAM,kBAAkB,CAAC,eAAe,EAAE,mBAAmB,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAEzG,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAA;IAElD,IAAI,UAAU,GAAG,MAAM,WAAW,CAAC,OAAO,EAAE,KAAK,CAAC,aAAa,EAAE,KAAK,CAAC,cAAc,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAEhG,MAAM,aAAa,GAAe,EAAE,cAAc,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAA;IACxG,MAAM,GAAG,GAAG,MAAM,kBAAkB,CAAC,aAAa,EAAE,mBAAmB,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAErG,MAAM,iBAAiB,GAAe,EAAE,cAAc,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAA;IAChH,MAAM,OAAO,GAAG,MAAM,kBAAkB,CAAC,iBAAiB,EAAE,mBAAmB,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAE7G,MAAM,cAAc,GAAgB;QAClC,YAAY,EAAE,KAAK;QACnB,GAAG,EAAE;YACH,UAAU,EAAE,GAAG,CAAC,aAAa;SAC9B;KACF,CAAA;IAED,MAAM,kBAAkB,GAAG,MAAM,YAAY,CAAC,UAAU,EAAE,aAAa,EAAE,KAAK,EAAE,CAAC,cAAc,CAAC,EAAE,IAAI,CAAC,CAAA;IAEvG,UAAU,GAAG,kBAAkB,CAAC,QAAQ,CAAA;IAExC,IAAI,QAAQ,GAAG,MAAM,SAAS,CAC5B,kBAAkB,CAAC,OAAQ,EAC3B,GAAG,CAAC,aAAa,EACjB,GAAG,CAAC,cAAc,EAClB,aAAa,EACb,IAAI,EACJ,UAAU,CAAC,WAAW,CACvB,CAAA;IAED,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAA;IAExG,MAAM,kBAAkB,GAAgB;QACtC,YAAY,EAAE,KAAK;QACnB,GAAG,EAAE;YACH,UAAU,EAAE,OAAO,CAAC,aAAa;SAClC;KACF,CAAA;IAED,MAAM,sBAAsB,GAAG,MAAM,YAAY,CAAC,UAAU,EAAE,aAAa,EAAE,KAAK,EAAE,CAAC,kBAAkB,CAAC,EAAE,IAAI,CAAC,CAAA;IAE/G,UAAU,GAAG,sBAAsB,CAAC,QAAQ,CAAA;IAE5C,IAAI,sBAAsB,CAAC,MAAM,CAAC,UAAU,KAAK,qBAAqB;QAAE,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAA;IAEnH,MAAM,uBAAuB,GAAG,MAAM,qBAAqB,CACzD,QAAQ,EACR,sBAAsB,CAAC,MAAM,CAAC,cAAc,EAC5C,YAAY,CAAC,QAAQ,EAAE,EAAE,CAAC,EAC1B,IAAI,CACL,CAAA;IAED,QAAQ,GAAG,uBAAuB,CAAC,QAAQ,CAAA;IAE3C,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAA;IAExG,IAAI,YAAY,GAAG,MAAM,SAAS,CAChC,sBAAsB,CAAC,OAAQ,EAC/B,OAAO,CAAC,aAAa,EACrB,OAAO,CAAC,cAAc,EACtB,aAAa,EACb,IAAI,EACJ,UAAU,CAAC,WAAW,CACvB,CAAA;IAED,MAAM,CAAC,YAAY,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAA;IAE5G,MAAM,kBAAkB,CAAC,UAAU,EAAE,IAAI,CAAC,CAAA;IAC1C,MAAM,kBAAkB,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAA;IACxC,MAAM,kBAAkB,CAAC,YAAY,EAAE,IAAI,CAAC,CAAA;IAC5C,MAAM,8BAA8B,CAAC,CAAC,UAAU,EAAE,QAAQ,EAAE,YAAY,CAAC,EAAE,IAAI,CAAC,CAAA;AAClF,CAAC"}

package/dist/test/scenario/update.test.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/test/scenario/update.test.js

@@ -0,0 +1,50 @@
+import { createGroup, joinGroup, makePskIndex } from "../../src/clientState";
+import { createCommit } from "../../src/createCommit";
+import { processPrivateMessage } from "../../src/processMessages";
+import { emptyPskIndex } from "../../src/pskIndex";
+import { getCiphersuiteImpl, getCiphersuiteFromName, ciphersuites } from "../../src/crypto/ciphersuite";
+import { generateKeyPackage } from "../../src/keyPackage";
+import { checkHpkeKeysMatch } from "../crypto/keyMatch";
+import { testEveryoneCanMessageEveryone } from "./common";
+import { defaultLifetime } from "../../src/lifetime";
+import { defaultCapabilities } from "../../src/defaultCapabilities";
+for (const cs of Object.keys(ciphersuites)) {
+    test(`Update ${cs}`, async () => {
+        await update(cs);
+    });
+}
+async function update(cipherSuite) {
+    const impl = await getCiphersuiteImpl(getCiphersuiteFromName(cipherSuite));
+    const aliceCredential = { credentialType: "basic", identity: new TextEncoder().encode("alice") };
+    const alice = await generateKeyPackage(aliceCredential, defaultCapabilities(), defaultLifetime, [], impl);
+    const groupId = new TextEncoder().encode("group1");
+    let aliceGroup = await createGroup(groupId, alice.publicPackage, alice.privatePackage, [], impl);
+    const bobCredential = { credentialType: "basic", identity: new TextEncoder().encode("bob") };
+    const bob = await generateKeyPackage(bobCredential, defaultCapabilities(), defaultLifetime, [], impl);
+    const addBobProposal = {
+        proposalType: "add",
+        add: {
+            keyPackage: bob.publicPackage,
+        },
+    };
+    const addBobCommitResult = await createCommit(aliceGroup, emptyPskIndex, false, [addBobProposal], impl);
+    aliceGroup = addBobCommitResult.newState;
+    let bobGroup = await joinGroup(addBobCommitResult.welcome, bob.publicPackage, bob.privatePackage, emptyPskIndex, impl, aliceGroup.ratchetTree);
+    expect(bobGroup.keySchedule.epochAuthenticator).toStrictEqual(aliceGroup.keySchedule.epochAuthenticator);
+    const emptyCommitResult = await createCommit(aliceGroup, emptyPskIndex, false, [], impl);
+    if (emptyCommitResult.commit.wireformat !== "mls_private_message")
+        throw new Error("Expected private message");
+    aliceGroup = emptyCommitResult.newState;
+    const bobProcessCommitResult = await processPrivateMessage(bobGroup, emptyCommitResult.commit.privateMessage, makePskIndex(bobGroup, {}), impl);
+    bobGroup = bobProcessCommitResult.newState;
+    const emptyCommitResult3 = await createCommit(bobGroup, emptyPskIndex, false, [], impl);
+    if (emptyCommitResult3.commit.wireformat !== "mls_private_message")
+        throw new Error("Expected private message");
+    bobGroup = emptyCommitResult3.newState;
+    const aliceProcessCommitResult3 = await processPrivateMessage(aliceGroup, emptyCommitResult3.commit.privateMessage, makePskIndex(aliceGroup, {}), impl);
+    aliceGroup = aliceProcessCommitResult3.newState;
+    await checkHpkeKeysMatch(aliceGroup, impl);
+    await checkHpkeKeysMatch(bobGroup, impl);
+    await testEveryoneCanMessageEveryone([aliceGroup, bobGroup], impl);
+}
+//# sourceMappingURL=update.test.js.map

package/dist/test/scenario/update.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"update.test.js","sourceRoot":"","sources":["../../../test/scenario/update.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAA;AAC5E,OAAO,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAA;AACrD,OAAO,EAAE,qBAAqB,EAAE,MAAM,2BAA2B,CAAA;AACjE,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAA;AAElD,OAAO,EAAmB,kBAAkB,EAAE,sBAAsB,EAAE,YAAY,EAAE,MAAM,8BAA8B,CAAA;AACxH,OAAO,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAA;AAEzD,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAA;AACvD,OAAO,EAAE,8BAA8B,EAAE,MAAM,UAAU,CAAA;AACzD,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAA;AACpD,OAAO,EAAE,mBAAmB,EAAE,MAAM,+BAA+B,CAAA;AAEnE,KAAK,MAAM,EAAE,IAAI,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;IAC3C,IAAI,CAAC,UAAU,EAAE,EAAE,EAAE,KAAK,IAAI,EAAE;QAC9B,MAAM,MAAM,CAAC,EAAqB,CAAC,CAAA;IACrC,CAAC,CAAC,CAAA;AACJ,CAAC;AAED,KAAK,UAAU,MAAM,CAAC,WAA4B;IAChD,MAAM,IAAI,GAAG,MAAM,kBAAkB,CAAC,sBAAsB,CAAC,WAAW,CAAC,CAAC,CAAA;IAE1E,MAAM,eAAe,GAAe,EAAE,cAAc,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,CAAA;IAC5G,MAAM,KAAK,GAAG,MAAM,kBAAkB,CAAC,eAAe,EAAE,mBAAmB,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAEzG,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAA;IAElD,IAAI,UAAU,GAAG,MAAM,WAAW,CAAC,OAAO,EAAE,KAAK,CAAC,aAAa,EAAE,KAAK,CAAC,cAAc,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAEhG,MAAM,aAAa,GAAe,EAAE,cAAc,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAA;IACxG,MAAM,GAAG,GAAG,MAAM,kBAAkB,CAAC,aAAa,EAAE,mBAAmB,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAErG,MAAM,cAAc,GAAgB;QAClC,YAAY,EAAE,KAAK;QACnB,GAAG,EAAE;YACH,UAAU,EAAE,GAAG,CAAC,aAAa;SAC9B;KACF,CAAA;IAED,MAAM,kBAAkB,GAAG,MAAM,YAAY,CAAC,UAAU,EAAE,aAAa,EAAE,KAAK,EAAE,CAAC,cAAc,CAAC,EAAE,IAAI,CAAC,CAAA;IAEvG,UAAU,GAAG,kBAAkB,CAAC,QAAQ,CAAA;IAExC,IAAI,QAAQ,GAAG,MAAM,SAAS,CAC5B,kBAAkB,CAAC,OAAQ,EAC3B,GAAG,CAAC,aAAa,EACjB,GAAG,CAAC,cAAc,EAClB,aAAa,EACb,IAAI,EACJ,UAAU,CAAC,WAAW,CACvB,CAAA;IAED,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAA;IAExG,MAAM,iBAAiB,GAAG,MAAM,YAAY,CAAC,UAAU,EAAE,aAAa,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAExF,IAAI,iBAAiB,CAAC,MAAM,CAAC,UAAU,KAAK,qBAAqB;QAAE,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAA;IAE9G,UAAU,GAAG,iBAAiB,CAAC,QAAQ,CAAA;IAEvC,MAAM,sBAAsB,GAAG,MAAM,qBAAqB,CACxD,QAAQ,EACR,iBAAiB,CAAC,MAAM,CAAC,cAAc,EACvC,YAAY,CAAC,QAAQ,EAAE,EAAE,CAAC,EAC1B,IAAI,CACL,CAAA;IAED,QAAQ,GAAG,sBAAsB,CAAC,QAAQ,CAAA;IAE1C,MAAM,kBAAkB,GAAG,MAAM,YAAY,CAAC,QAAQ,EAAE,aAAa,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,CAAC,CAAA;IAEvF,IAAI,kBAAkB,CAAC,MAAM,CAAC,UAAU,KAAK,qBAAqB;QAAE,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAA;IAE/G,QAAQ,GAAG,kBAAkB,CAAC,QAAQ,CAAA;IAEtC,MAAM,yBAAyB,GAAG,MAAM,qBAAqB,CAC3D,UAAU,EACV,kBAAkB,CAAC,MAAM,CAAC,cAAc,EACxC,YAAY,CAAC,UAAU,EAAE,EAAE,CAAC,EAC5B,IAAI,CACL,CAAA;IAED,UAAU,GAAG,yBAAyB,CAAC,QAAQ,CAAA;IAE/C,MAAM,kBAAkB,CAAC,UAAU,EAAE,IAAI,CAAC,CAAA;IAC1C,MAAM,kBAAkB,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAA;IACxC,MAAM,8BAA8B,CAAC,CAAC,UAAU,EAAE,QAAQ,CAAC,EAAE,IAAI,CAAC,CAAA;AACpE,CAAC"}

package/dist/test/test-vectors/cryptoBasics.test.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/test/test-vectors/cryptoBasics.test.js

@@ -0,0 +1,60 @@
+import json from "../../test_vectors/crypto-basics.json";
+import { getCiphersuiteFromId, getCiphersuiteImpl } from "../../src/crypto/ciphersuite";
+import { bytesToHex, hexToBytes } from "@noble/ciphers/utils";
+import { signWithLabel, verifyWithLabel } from "../../src/crypto/signature";
+import { refhash } from "../../src/crypto/hash";
+import { deriveSecret, deriveTreeSecret, expandWithLabel } from "../../src/crypto/kdf";
+import { decryptWithLabel, encryptWithLabel } from "../../src/crypto/hpke";
+for (const [index, x] of json.entries()) {
+    test(`crypto-basics test vectors ${index}`, async () => {
+        const impl = await getCiphersuiteImpl(getCiphersuiteFromId(x.cipher_suite));
+        await testRefHash(impl, x.ref_hash);
+        await testDeriveSecret(impl, x.derive_secret);
+        await testDeriveTreeSecret(impl, x.derive_tree_secret);
+        await testExpandWithLabel(impl, x.expand_with_label);
+        await testEncryptWithLabel(impl, x.encrypt_with_label);
+        await testSignWithLabel(impl, x.sign_with_label);
+    });
+}
+async function testDeriveSecret(impl, o) {
+    //out == DeriveSecret(secret, label)
+    const res = await deriveSecret(hexToBytes(o.secret), o.label, impl.kdf);
+    expect(bytesToHex(res)).toBe(o.out);
+}
+async function testDeriveTreeSecret(impl, o) {
+    //out == DeriveTreeSecret(secret, label, generation, length)
+    const res = await deriveTreeSecret(hexToBytes(o.secret), o.label, o.generation, impl.kdf.size, impl.kdf);
+    expect(bytesToHex(res)).toBe(o.out);
+}
+async function testExpandWithLabel(impl, o) {
+    //out == ExpandWithLabel(secret, label, context, length)
+    const res = await expandWithLabel(hexToBytes(o.secret), o.label, hexToBytes(o.context), o.length, impl.kdf);
+    expect(bytesToHex(res)).toBe(o.out);
+}
+async function testRefHash(impl, o) {
+    //out == RefHash(label, value)
+    const res = await refhash(o.label, hexToBytes(o.value), impl.hash);
+    expect(bytesToHex(res)).toBe(o.out);
+}
+async function testSignWithLabel(impl, o) {
+    //VerifyWithLabel(pub, label, content, signature) == true
+    const v = await verifyWithLabel(hexToBytes(o.pub), o.label, hexToBytes(o.content), hexToBytes(o.signature), impl.signature);
+    expect(v).toBe(true);
+    //VerifyWithLabel(pub, label, content, SignWithLabel(priv, label, content)) == true
+    const signature = await signWithLabel(hexToBytes(o.priv), o.label, hexToBytes(o.content), impl.signature);
+    const v2 = await verifyWithLabel(hexToBytes(o.pub), o.label, hexToBytes(o.content), signature, impl.signature);
+    expect(v2).toBe(true);
+}
+async function testEncryptWithLabel(impl, o) {
+    const privateKey = await impl.hpke.importPrivateKey(hexToBytes(o.priv));
+    const publicKey = await impl.hpke.importPublicKey(hexToBytes(o.pub));
+    //DecryptWithLabel(priv, label, context, kem_output, ciphertext) == plaintext
+    const decrypted = await decryptWithLabel(privateKey, o.label, hexToBytes(o.context), hexToBytes(o.kem_output), hexToBytes(o.ciphertext), impl.hpke);
+    expect(bytesToHex(new Uint8Array(decrypted))).toBe(o.plaintext);
+    //kem_output_candidate, ciphertext_candidate = EncryptWithLabel(pub, label, context, plaintext)
+    const { ct: ctCandidate, enc: encCandidate } = await encryptWithLabel(publicKey, o.label, hexToBytes(o.context), hexToBytes(o.plaintext), impl.hpke);
+    //DecryptWithLabel(priv, label, context, kem_output_candidate, ciphertext_candidate) == plaintext
+    const plaintext = await decryptWithLabel(privateKey, o.label, hexToBytes(o.context), encCandidate, ctCandidate, impl.hpke);
+    expect(bytesToHex(new Uint8Array(plaintext))).toBe(o.plaintext);
+}
+//# sourceMappingURL=cryptoBasics.test.js.map

package/dist/test/test-vectors/cryptoBasics.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cryptoBasics.test.js","sourceRoot":"","sources":["../../../test/test-vectors/cryptoBasics.test.ts"],"names":[],"mappings":"AAAA,OAAO,IAAI,MAAM,uCAAuC,CAAA;AACxD,OAAO,EAAkC,oBAAoB,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAA;AACvH,OAAO,EAAE,UAAU,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAA;AAC7D,OAAO,EAAE,aAAa,EAAE,eAAe,EAAE,MAAM,4BAA4B,CAAA;AAC3E,OAAO,EAAE,OAAO,EAAE,MAAM,uBAAuB,CAAA;AAC/C,OAAO,EAAE,YAAY,EAAE,gBAAgB,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAA;AACtF,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,uBAAuB,CAAA;AAE1E,KAAK,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,IAAI,IAAI,CAAC,OAAO,EAAE,EAAE,CAAC;IACxC,IAAI,CAAC,8BAA8B,KAAK,EAAE,EAAE,KAAK,IAAI,EAAE;QACrD,MAAM,IAAI,GAAG,MAAM,kBAAkB,CAAC,oBAAoB,CAAC,CAAC,CAAC,YAA6B,CAAC,CAAC,CAAA;QAC5F,MAAM,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAA;QACnC,MAAM,gBAAgB,CAAC,IAAI,EAAE,CAAC,CAAC,aAAa,CAAC,CAAA;QAC7C,MAAM,oBAAoB,CAAC,IAAI,EAAE,CAAC,CAAC,kBAAkB,CAAC,CAAA;QACtD,MAAM,mBAAmB,CAAC,IAAI,EAAE,CAAC,CAAC,iBAAiB,CAAC,CAAA;QACpD,MAAM,oBAAoB,CAAC,IAAI,EAAE,CAAC,CAAC,kBAAkB,CAAC,CAAA;QACtD,MAAM,iBAAiB,CAAC,IAAI,EAAE,CAAC,CAAC,eAAe,CAAC,CAAA;IAClD,CAAC,CAAC,CAAA;AACJ,CAAC;AAED,KAAK,UAAU,gBAAgB,CAAC,IAAqB,EAAE,CAAiD;IACtG,oCAAoC;IACpC,MAAM,GAAG,GAAG,MAAM,YAAY,CAAC,UAAU,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,KAAK,EAAE,IAAI,CAAC,GAAG,CAAC,CAAA;IACvE,MAAM,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAA;AACrC,CAAC;AAED,KAAK,UAAU,oBAAoB,CACjC,IAAqB,EACrB,CAAqE;IAErE,4DAA4D;IAC5D,MAAM,GAAG,GAAG,MAAM,gBAAgB,CAAC,UAAU,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,UAAU,EAAE,IAAI,CAAC,GAAG,CAAC,IAAI,EAAE,IAAI,CAAC,GAAG,CAAC,CAAA;IACxG,MAAM,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAA;AACrC,CAAC;AAED,KAAK,UAAU,mBAAmB,CAChC,IAAqB,EACrB,CAAkF;IAElF,wDAAwD;IACxD,MAAM,GAAG,GAAG,MAAM,eAAe,CAAC,UAAU,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC,MAAM,EAAE,IAAI,CAAC,GAAG,CAAC,CAAA;IAC3G,MAAM,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAA;AACrC,CAAC;AAED,KAAK,UAAU,WAAW,CAAC,IAAqB,EAAE,CAAgD;IAChG,8BAA8B;IAC9B,MAAM,GAAG,GAAG,MAAM,OAAO,CAAC,CAAC,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,IAAI,CAAC,IAAI,CAAC,CAAA;IAClE,MAAM,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAA;AACrC,CAAC;AAED,KAAK,UAAU,iBAAiB,CAC9B,IAAqB,EACrB,CAAmF;IAEnF,yDAAyD;IACzD,MAAM,CAAC,GAAG,MAAM,eAAe,CAC7B,UAAU,CAAC,CAAC,CAAC,GAAG,CAAC,EACjB,CAAC,CAAC,KAAK,EACP,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,EACrB,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC,EACvB,IAAI,CAAC,SAAS,CACf,CAAA;IACD,MAAM,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAEpB,mFAAmF;IACnF,MAAM,SAAS,GAAG,MAAM,aAAa,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,IAAI,CAAC,SAAS,CAAC,CAAA;IACzG,MAAM,EAAE,GAAG,MAAM,eAAe,CAAC,UAAU,CAAC,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC,CAAA;IAC9G,MAAM,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACvB,CAAC;AAED,KAAK,UAAU,oBAAoB,CACjC,IAAqB,EACrB,CAQC;IAED,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,gBAAgB,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAA;IACvE,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAA;IAEpE,6EAA6E;IAC7E,MAAM,SAAS,GAAG,MAAM,gBAAgB,CACtC,UAAU,EACV,CAAC,CAAC,KAAK,EACP,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,EACrB,UAAU,CAAC,CAAC,CAAC,UAAU,CAAC,EACxB,UAAU,CAAC,CAAC,CAAC,UAAU,CAAC,EACxB,IAAI,CAAC,IAAI,CACV,CAAA;IAED,MAAM,CAAC,UAAU,CAAC,IAAI,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAA;IAE/D,+FAA+F;IAC/F,MAAM,EAAE,EAAE,EAAE,WAAW,EAAE,GAAG,EAAE,YAAY,EAAE,GAAG,MAAM,gBAAgB,CACnE,SAAS,EACT,CAAC,CAAC,KAAK,EACP,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,EACrB,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC,EACvB,IAAI,CAAC,IAAI,CACV,CAAA;IAED,iGAAiG;IACjG,MAAM,SAAS,GAAG,MAAM,gBAAgB,CACtC,UAAU,EACV,CAAC,CAAC,KAAK,EACP,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,EACrB,YAAY,EACZ,WAAW,EACX,IAAI,CAAC,IAAI,CACV,CAAA;IACD,MAAM,CAAC,UAAU,CAAC,IAAI,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAA;AACjE,CAAC"}

package/dist/test/test-vectors/deserialization.test.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/test/test-vectors/deserialization.test.js

@@ -0,0 +1,13 @@
+import json from "../../test_vectors/deserialization.json";
+import { hexToBytes } from "@noble/ciphers/utils";
+import { determineLength } from "../../src/codec/variableLength";
+for (const [index, x] of json.entries()) {
+    test(`deserialization test vectors ${index}`, () => {
+        checkLength(x.vlbytes_header, x.length);
+    });
+}
+function checkLength(header, len) {
+    const { length } = determineLength(hexToBytes(header));
+    expect(length).toBe(len);
+}
+//# sourceMappingURL=deserialization.test.js.map

package/dist/test/test-vectors/deserialization.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"deserialization.test.js","sourceRoot":"","sources":["../../../test/test-vectors/deserialization.test.ts"],"names":[],"mappings":"AAAA,OAAO,IAAI,MAAM,yCAAyC,CAAA;AAC1D,OAAO,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAA;AACjD,OAAO,EAAE,eAAe,EAAE,MAAM,gCAAgC,CAAA;AAEhE,KAAK,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,IAAI,IAAI,CAAC,OAAO,EAAE,EAAE,CAAC;IACxC,IAAI,CAAC,gCAAgC,KAAK,EAAE,EAAE,GAAG,EAAE;QACjD,WAAW,CAAC,CAAC,CAAC,cAAc,EAAE,CAAC,CAAC,MAAM,CAAC,CAAA;IACzC,CAAC,CAAC,CAAA;AACJ,CAAC;AAED,SAAS,WAAW,CAAC,MAAc,EAAE,GAAW;IAC9C,MAAM,EAAE,MAAM,EAAE,GAAG,eAAe,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAA;IACtD,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAA;AAC1B,CAAC"}

package/dist/test/test-vectors/keySchedule.test.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/test/test-vectors/keySchedule.test.js

@@ -0,0 +1,48 @@
+import { getCiphersuiteFromId, getCiphersuiteImpl, getCiphersuiteNameFromId, } from "../../src/crypto/ciphersuite";
+import { encodeGroupContext } from "../../src/groupContext";
+import { hexToBytes } from "@noble/ciphers/utils";
+import json from "../../test_vectors/key-schedule.json";
+import { initializeEpoch, mlsExporter } from "../../src/keySchedule";
+for (const [index, x] of json.entries()) {
+    test(`key-schedule test vectors ${index}`, async () => {
+        const cipherSuite = x.cipher_suite;
+        const impl = await getCiphersuiteImpl(getCiphersuiteFromId(cipherSuite));
+        await testKeySchedule(x.group_id, x.initial_init_secret, x.epochs, cipherSuite, impl);
+    });
+}
+async function testKeySchedule(group_id, initial_init_secret, epochs, cipher_suite, impl) {
+    await epochs.reduce(async (prevInitSecret, epoch, index) => {
+        const initSecret = await prevInitSecret;
+        const gc = {
+            version: "mls10",
+            cipherSuite: getCiphersuiteNameFromId(cipher_suite),
+            groupId: hexToBytes(group_id),
+            epoch: BigInt(index),
+            treeHash: hexToBytes(epoch.tree_hash),
+            confirmedTranscriptHash: hexToBytes(epoch.confirmed_transcript_hash),
+            extensions: [],
+        };
+        // Verify that group context matches the provided group_context value
+        expect(encodeGroupContext(gc)).toStrictEqual(hexToBytes(epoch.group_context));
+        const { keySchedule, joinerSecret, welcomeSecret } = await initializeEpoch(initSecret, hexToBytes(epoch.commit_secret), gc, hexToBytes(epoch.psk_secret), impl.kdf);
+        expect(joinerSecret).toStrictEqual(hexToBytes(epoch.joiner_secret));
+        expect(welcomeSecret).toStrictEqual(hexToBytes(epoch.welcome_secret));
+        expect(keySchedule.initSecret).toStrictEqual(hexToBytes(epoch.init_secret));
+        expect(keySchedule.senderDataSecret).toStrictEqual(hexToBytes(epoch.sender_data_secret));
+        expect(keySchedule.encryptionSecret).toStrictEqual(hexToBytes(epoch.encryption_secret));
+        expect(keySchedule.exporterSecret).toStrictEqual(hexToBytes(epoch.exporter_secret));
+        expect(keySchedule.externalSecret).toStrictEqual(hexToBytes(epoch.external_secret));
+        expect(keySchedule.confirmationKey).toStrictEqual(hexToBytes(epoch.confirmation_key));
+        expect(keySchedule.membershipKey).toStrictEqual(hexToBytes(epoch.membership_key));
+        expect(keySchedule.resumptionPsk).toStrictEqual(hexToBytes(epoch.resumption_psk));
+        expect(keySchedule.epochAuthenticator).toStrictEqual(hexToBytes(epoch.epoch_authenticator));
+        //Verify the external_pub is the public key output from KEM.DeriveKeyPair(external_secret)
+        const { publicKey } = await impl.hpke.deriveKeyPair(hexToBytes(epoch.external_secret));
+        expect(await impl.hpke.exportPublicKey(publicKey)).toStrictEqual(hexToBytes(epoch.external_pub));
+        //Verify the exporter.secret is the value output from MLS-Exporter(exporter.label, exporter.context, exporter.length)
+        const exporter = await mlsExporter(keySchedule.exporterSecret, epoch.exporter.label, hexToBytes(epoch.exporter.context), epoch.exporter.length, impl);
+        expect(exporter).toStrictEqual(hexToBytes(epoch.exporter.secret));
+        return keySchedule.initSecret;
+    }, Promise.resolve(hexToBytes(initial_init_secret)));
+}
+//# sourceMappingURL=keySchedule.test.js.map

package/dist/test/test-vectors/keySchedule.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"keySchedule.test.js","sourceRoot":"","sources":["../../../test/test-vectors/keySchedule.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAGL,oBAAoB,EACpB,kBAAkB,EAClB,wBAAwB,GACzB,MAAM,8BAA8B,CAAA;AACrC,OAAO,EAAE,kBAAkB,EAAgB,MAAM,wBAAwB,CAAA;AACzE,OAAO,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAA;AACjD,OAAO,IAAI,MAAM,sCAAsC,CAAA;AAEvD,OAAO,EAAE,eAAe,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAA;AAEpE,KAAK,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,IAAI,IAAI,CAAC,OAAO,EAAE,EAAE,CAAC;IACxC,IAAI,CAAC,6BAA6B,KAAK,EAAE,EAAE,KAAK,IAAI,EAAE;QACpD,MAAM,WAAW,GAAG,CAAC,CAAC,YAA6B,CAAA;QACnD,MAAM,IAAI,GAAG,MAAM,kBAAkB,CAAC,oBAAoB,CAAC,WAAW,CAAC,CAAC,CAAA;QACxE,MAAM,eAAe,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC,mBAAmB,EAAE,CAAC,CAAC,MAAM,EAAE,WAAW,EAAE,IAAI,CAAC,CAAA;IACvF,CAAC,CAAC,CAAA;AACJ,CAAC;AAED,KAAK,UAAU,eAAe,CAC5B,QAAgB,EAChB,mBAA2B,EAC3B,MAAe,EACf,YAA2B,EAC3B,IAAqB;IAErB,MAAM,MAAM,CAAC,MAAM,CACjB,KAAK,EAAE,cAAc,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE;QACrC,MAAM,UAAU,GAAG,MAAM,cAAc,CAAA;QAEvC,MAAM,EAAE,GAAiB;YACvB,OAAO,EAAE,OAAO;YAChB,WAAW,EAAE,wBAAwB,CAAC,YAAY,CAAC;YACnD,OAAO,EAAE,UAAU,CAAC,QAAQ,CAAC;YAC7B,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC;YACpB,QAAQ,EAAE,UAAU,CAAC,KAAK,CAAC,SAAS,CAAC;YACrC,uBAAuB,EAAE,UAAU,CAAC,KAAK,CAAC,yBAAyB,CAAC;YACpE,UAAU,EAAE,EAAE;SACf,CAAA;QAED,qEAAqE;QACrE,MAAM,CAAC,kBAAkB,CAAC,EAAE,CAAC,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAA;QAE7E,MAAM,EAAE,WAAW,EAAE,YAAY,EAAE,aAAa,EAAE,GAAG,MAAM,eAAe,CACxE,UAAU,EACV,UAAU,CAAC,KAAK,CAAC,aAAa,CAAC,EAC/B,EAAE,EACF,UAAU,CAAC,KAAK,CAAC,UAAU,CAAC,EAC5B,IAAI,CAAC,GAAG,CACT,CAAA;QAED,MAAM,CAAC,YAAY,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAA;QACnE,MAAM,CAAC,aAAa,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAA;QACrE,MAAM,CAAC,WAAW,CAAC,UAAU,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAA;QAC3E,MAAM,CAAC,WAAW,CAAC,gBAAgB,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC,CAAA;QACxF,MAAM,CAAC,WAAW,CAAC,gBAAgB,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAA;QACvF,MAAM,CAAC,WAAW,CAAC,cAAc,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAA;QACnF,MAAM,CAAC,WAAW,CAAC,cAAc,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAA;QACnF,MAAM,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAA;QACrF,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAA;QACjF,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAA;QACjF,MAAM,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC,CAAA;QAE3F,0FAA0F;QAC1F,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAA;QACtF,MAAM,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,SAAS,CAAC,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAA;QAEhG,qHAAqH;QACrH,MAAM,QAAQ,GAAG,MAAM,WAAW,CAChC,WAAW,CAAC,cAAc,EAC1B,KAAK,CAAC,QAAQ,CAAC,KAAK,EACpB,UAAU,CAAC,KAAK,CAAC,QAAQ,CAAC,OAAO,CAAC,EAClC,KAAK,CAAC,QAAQ,CAAC,MAAM,EACrB,IAAI,CACL,CAAA;QACD,MAAM,CAAC,QAAQ,CAAC,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAA;QAEjE,OAAO,WAAW,CAAC,UAAU,CAAA;IAC/B,CAAC,EACD,OAAO,CAAC,OAAO,CAAC,UAAU,CAAC,mBAAmB,CAAC,CAAC,CACjD,CAAA;AACH,CAAC"}

package/dist/test/test-vectors/messageProtection.test.d.ts

@@ -0,0 +1 @@
+export {};