ts-mls 1.0.2

package/dist/src/framedContent.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"framedContent.js","sourceRoot":"","sources":["../../src/framedContent.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAA;AAC3D,OAAO,EAAW,cAAc,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAA;AACrF,OAAO,EAAE,gBAAgB,EAAE,iBAAiB,EAAW,MAAM,oBAAoB,CAAA;AACjF,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAA;AAC3E,OAAO,EAAU,YAAY,EAAE,YAAY,EAAE,MAAM,UAAU,CAAA;AAC7D,OAAO,EAAmB,iBAAiB,EAAE,iBAAiB,EAAE,MAAM,eAAe,CAAA;AAGrF,OAAO,EAAa,aAAa,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAA;AAC9E,OAAO,EAAE,kBAAkB,EAAgB,MAAM,gBAAgB,CAAA;AACjE,OAAO,EAAE,gBAAgB,EAAkB,MAAM,cAAc,CAAA;AAC/D,OAAO,EAAE,cAAc,EAAE,cAAc,EAAY,MAAM,YAAY,CAAA;AACrE,OAAO,EAAE,qBAAqB,EAAuB,MAAM,mBAAmB,CAAA;AAC9E,OAAO,EACL,YAAY,EACZ,YAAY,GAMb,MAAM,UAAU,CAAA;AAQjB,MAAM,CAAC,MAAM,kCAAkC,GAA0C,iBAAiB,CACxG,CAAC,iBAAiB,EAAE,gBAAgB,CAAC,EACrC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,eAAe,CAAU,CACnD,CAAA;AAED,MAAM,CAAC,MAAM,+BAA+B,GAAuC,iBAAiB,CAClG,CAAC,iBAAiB,EAAE,cAAc,CAAC,EACnC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,QAAQ,CAAU,CAC5C,CAAA;AAED,MAAM,CAAC,MAAM,6BAA6B,GAAqC,iBAAiB,CAC9F,CAAC,iBAAiB,EAAE,YAAY,CAAC,EACjC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,MAAM,CAAU,CAC1C,CAAA;AAED,MAAM,CAAC,MAAM,uBAAuB,GAA+B,CAAC,EAAE,EAAE,EAAE;IACxE,QAAQ,EAAE,CAAC,WAAW,EAAE,CAAC;QACvB,KAAK,aAAa;YAChB,OAAO,kCAAkC,CAAC,EAAE,CAAC,CAAA;QAC/C,KAAK,UAAU;YACb,OAAO,+BAA+B,CAAC,EAAE,CAAC,CAAA;QAC5C,KAAK,QAAQ;YACX,OAAO,6BAA6B,CAAC,EAAE,CAAC,CAAA;IAC5C,CAAC;AACH,CAAC,CAAA;AAED,MAAM,CAAC,MAAM,kCAAkC,GAA0C,UAAU,CACjG,gBAAgB,EAChB,CAAC,eAAe,EAAE,EAAE,CAAC,CAAC,EAAE,WAAW,EAAE,aAAa,EAAE,eAAe,EAAE,CAAC,CACvE,CAAA;AAED,MAAM,CAAC,MAAM,+BAA+B,GAAuC,UAAU,CAC3F,cAAc,EACd,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC,EAAE,WAAW,EAAE,UAAU,EAAE,QAAQ,EAAE,CAAC,CACtD,CAAA;AAED,MAAM,CAAC,MAAM,6BAA6B,GAAqC,UAAU,CAAC,YAAY,EAAE,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;IACnH,WAAW,EAAE,QAAQ;IACrB,MAAM;CACP,CAAC,CAAC,CAAA;AAEH,MAAM,CAAC,MAAM,uBAAuB,GAA+B,cAAc,CAC/E,iBAAiB,EACjB,CAAC,WAAW,EAA8B,EAAE;IAC1C,QAAQ,WAAW,EAAE,CAAC;QACpB,KAAK,aAAa;YAChB,OAAO,kCAAkC,CAAA;QAC3C,KAAK,UAAU;YACb,OAAO,+BAA+B,CAAA;QACxC,KAAK,QAAQ;YACX,OAAO,6BAA6B,CAAA;IACxC,CAAC;AACH,CAAC,CACF,CAAA;AAED,MAAM,UAAU,KAAK,CAAC,OAAsB,EAAE,UAA0B,EAAE,OAAqB;IAC7F,OAAO,EAAE,eAAe,EAAE,OAAO,CAAC,OAAO,EAAE,UAAU,EAAE,OAAO,EAAE,UAAU,EAAE,OAAO,CAAC,MAAM,CAAC,UAAU,EAAE,OAAO,EAAE,CAAA;AAClH,CAAC;AAoBD,MAAM,CAAC,MAAM,mBAAmB,GAA2B,iBAAiB,CAC1E,CAAC,gBAAgB,EAAE,YAAY,EAAE,YAAY,EAAE,gBAAgB,EAAE,uBAAuB,CAAC,EACzF,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE,CAAC,KAAK,EAAE,EAAE,CAAC,MAAM,EAAE,EAAE,CAAC,iBAAiB,EAAE,EAAE,CAAU,CAC7E,CAAA;AAED,MAAM,CAAC,MAAM,mBAAmB,GAA2B,WAAW,CACpE,CAAC,gBAAgB,EAAE,YAAY,EAAE,YAAY,EAAE,gBAAgB,EAAE,uBAAuB,CAAC,EACzF,CAAC,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,iBAAiB,EAAE,IAAI,EAAE,EAAE,CAAC,CAAC;IACpD,OAAO;IACP,KAAK;IACL,MAAM;IACN,iBAAiB;IACjB,GAAG,IAAI;CACR,CAAC,CACH,CAAA;AAQD,MAAM,CAAC,MAAM,gBAAgB,GAAwB,CAAC,IAAI,EAAE,EAAE;IAC5D,QAAQ,IAAI,CAAC,UAAU,EAAE,CAAC;QACxB,KAAK,QAAQ,CAAC;QACd,KAAK,mBAAmB;YACtB,OAAO,kBAAkB,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;QACzC,KAAK,UAAU,CAAC;QAChB,KAAK,qBAAqB;YACxB,OAAO,IAAI,UAAU,EAAE,CAAA;IAC3B,CAAC;AACH,CAAC,CAAA;AAaD,MAAM,CAAC,MAAM,sBAAsB,GAA8B,iBAAiB,CAChF,CAAC,qBAAqB,EAAE,gBAAgB,EAAE,mBAAmB,EAAE,gBAAgB,CAAC,EAChF,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,eAAe,EAAE,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAU,CAChE,CAAA;AAaD,MAAM,kCAAkC,GAA0C,CAAC,QAAQ,EAAE,EAAE;IAC7F,QAAQ,QAAQ,CAAC,WAAW,EAAE,CAAC;QAC7B,KAAK,QAAQ;YACX,OAAO,iCAAiC,CAAC,QAAQ,CAAC,CAAA;QACpD,KAAK,aAAa,CAAC;QACnB,KAAK,UAAU;YACb,OAAO,IAAI,UAAU,EAAE,CAAA;IAC3B,CAAC;AACH,CAAC,CAAA;AAED,MAAM,iCAAiC,GAAgD,gBAAgB,CACrG,gBAAgB,EAChB,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,eAAe,CAC/B,CAAA;AAED,MAAM,CAAC,MAAM,2BAA2B,GAAmC,iBAAiB,CAC1F,CAAC,gBAAgB,EAAE,kCAAkC,CAAC,EACtD,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS,EAAE,CAAC,CAAU,CACjC,CAAA;AAED,MAAM,CAAC,MAAM,iCAAiC,GAAgD,UAAU,CACtG,gBAAgB,EAChB,CAAC,eAAe,EAAE,EAAE,CAAC,CAAC;IACpB,WAAW,EAAE,QAAQ;IACrB,eAAe;CAChB,CAAC,CACH,CAAA;AAED,MAAM,UAAU,2BAA2B,CAAC,WAA4B;IACtE,QAAQ,WAAW,EAAE,CAAC;QACpB,KAAK,QAAQ;YACX,OAAO,WAAW,CAAC,CAAC,gBAAgB,EAAE,iCAAiC,CAAC,EAAE,CAAC,SAAS,EAAE,UAAU,EAAE,EAAE,CAAC,CAAC;gBACpG,SAAS;gBACT,GAAG,UAAU;aACd,CAAC,CAAC,CAAA;QACL,KAAK,aAAa,CAAC;QACnB,KAAK,UAAU;YACb,OAAO,UAAU,CAAC,gBAAgB,EAAE,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC;gBAClD,SAAS;gBACT,WAAW;aACZ,CAAC,CAAC,CAAA;IACP,CAAC;AACH,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,4BAA4B,CAChD,OAAmB,EACnB,UAA0B,EAC1B,OAAsB,EACtB,IAA2B,EAC3B,OAAqB,EACrB,CAAY;IAEZ,OAAO,eAAe,CACpB,OAAO,EACP,kBAAkB,EAClB,sBAAsB,CAAC,KAAK,CAAC,OAAO,EAAE,UAAU,EAAE,OAAO,CAAC,CAAC,EAC3D,IAAI,CAAC,SAAS,EACd,CAAC,CACF,CAAA;AACH,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,OAAmB,EAAE,GAAqB,EAAE,CAAY;IAC3F,OAAO,aAAa,CAAC,OAAO,EAAE,kBAAkB,EAAE,sBAAsB,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAA;AACnF,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,sCAAsC,CAC1D,OAAmB,EACnB,GAA0C,EAC1C,EAAmB;IAEnB,MAAM,SAAS,GAAG,MAAM,oBAAoB,CAAC,OAAO,EAAE,GAAG,EAAE,EAAE,CAAC,SAAS,CAAC,CAAA;IACxE,OAAO;QACL,WAAW,EAAE,GAAG,CAAC,OAAO,CAAC,WAAW;QACpC,SAAS;KACV,CAAA;AACH,CAAC;AAED,MAAM,UAAU,qBAAqB,CACnC,eAA2B,EAC3B,uBAAmC,EACnC,CAAO;IAEP,OAAO,CAAC,CAAC,GAAG,CAAC,eAAe,EAAE,uBAAuB,CAAC,CAAA;AACxD,CAAC;AAED,MAAM,UAAU,qBAAqB,CACnC,eAA2B,EAC3B,GAAe,EACf,uBAAmC,EACnC,CAAO;IAEP,OAAO,CAAC,CAAC,SAAS,CAAC,eAAe,EAAE,GAAG,EAAE,uBAAuB,CAAC,CAAA;AACnE,CAAC;AACD,MAAM,CAAC,KAAK,UAAU,4BAA4B,CAChD,YAA0B,EAC1B,UAA0B,EAC1B,CAAS,EACT,MAAc,EACd,iBAA6B,EAC7B,OAAmB,EACnB,CAAY;IAEZ,MAAM,GAAG,GAA2B;QAClC,eAAe,EAAE,YAAY,CAAC,OAAO;QACrC,UAAU;QACV,OAAO,EAAE;YACP,WAAW,EAAE,QAAQ;YACrB,MAAM,EAAE,CAAC;YACT,OAAO,EAAE,YAAY,CAAC,OAAO;YAC7B,KAAK,EAAE,YAAY,CAAC,KAAK;YACzB,MAAM;YACN,iBAAiB;SAClB;QACD,UAAU,EAAE,QAAQ;QACpB,OAAO,EAAE,YAAY;KACtB,CAAA;IAED,MAAM,SAAS,GAAG,MAAM,oBAAoB,CAAC,OAAO,EAAE,GAAG,EAAE,CAAC,CAAC,CAAA;IAC7D,OAAO,EAAE,aAAa,EAAE,GAAG,CAAC,OAAO,EAAE,SAAS,EAAE,CAAA;AAClD,CAAC"}

package/dist/src/grease.d.ts

@@ -0,0 +1,16 @@
+import { Capabilities } from "./capabilities";
+import { CredentialTypeName } from "./credentialType";
+import { CiphersuiteName } from "./crypto/ciphersuite";
+import { Extension } from "./extension";
+export declare const greaseValues: number[];
+export type GreaseConfig = {
+    probabilityPerGreaseValue: number;
+};
+export declare const defaultGreaseConfig: {
+    probabilityPerGreaseValue: number;
+};
+export declare function grease(greaseConfig: GreaseConfig): number[];
+export declare function greaseCiphersuites(greaseConfig: GreaseConfig): CiphersuiteName[];
+export declare function greaseCredentials(greaseConfig: GreaseConfig): CredentialTypeName[];
+export declare function greaseExtensions(greaseConfig: GreaseConfig): Extension[];
+export declare function greaseCapabilities(config: GreaseConfig, capabilities: Capabilities): Capabilities;

package/dist/src/grease.js

@@ -0,0 +1,29 @@
+export const greaseValues = [
+    0x0a0a, 0x1a1a, 0x2a2a, 0x3a3a, 0x4a4a, 0x5a5a, 0x6a6a, 0x7a7a, 0x8a8a, 0x9a9a, 0xaaaa, 0xbaba, 0xcaca, 0xdada,
+    0xeaea,
+];
+export const defaultGreaseConfig = {
+    probabilityPerGreaseValue: 0.1,
+};
+export function grease(greaseConfig) {
+    return greaseValues.filter(() => greaseConfig.probabilityPerGreaseValue > Math.random());
+}
+export function greaseCiphersuites(greaseConfig) {
+    return grease(greaseConfig).map((n) => n.toString());
+}
+export function greaseCredentials(greaseConfig) {
+    return grease(greaseConfig).map((n) => n.toString());
+}
+export function greaseExtensions(greaseConfig) {
+    return grease(greaseConfig).map((n) => ({ extensionType: n, extensionData: new Uint8Array() }));
+}
+export function greaseCapabilities(config, capabilities) {
+    return {
+        ciphersuites: [...capabilities.ciphersuites, ...greaseCiphersuites(config)],
+        credentials: [...capabilities.credentials, ...greaseCredentials(config)],
+        extensions: [...capabilities.extensions, ...grease(config)],
+        proposals: [...capabilities.proposals, ...grease(config)],
+        versions: capabilities.versions,
+    };
+}
+//# sourceMappingURL=grease.js.map

package/dist/src/grease.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"grease.js","sourceRoot":"","sources":["../../src/grease.ts"],"names":[],"mappings":"AAKA,MAAM,CAAC,MAAM,YAAY,GAAG;IAC1B,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM;IAC9G,MAAM;CACP,CAAA;AAMD,MAAM,CAAC,MAAM,mBAAmB,GAAG;IACjC,yBAAyB,EAAE,GAAG;CAC/B,CAAA;AAED,MAAM,UAAU,MAAM,CAAC,YAA0B;IAC/C,OAAO,YAAY,CAAC,MAAM,CAAC,GAAG,EAAE,CAAC,YAAY,CAAC,yBAAyB,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC,CAAA;AAC1F,CAAC;AAED,MAAM,UAAU,kBAAkB,CAAC,YAA0B;IAC3D,OAAO,MAAM,CAAC,YAAY,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,EAAqB,CAAC,CAAA;AACzE,CAAC;AAED,MAAM,UAAU,iBAAiB,CAAC,YAA0B;IAC1D,OAAO,MAAM,CAAC,YAAY,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,EAAwB,CAAC,CAAA;AAC5E,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,YAA0B;IACzD,OAAO,MAAM,CAAC,YAAY,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,aAAa,EAAE,CAAC,EAAE,aAAa,EAAE,IAAI,UAAU,EAAE,EAAE,CAAC,CAAC,CAAA;AACjG,CAAC;AAED,MAAM,UAAU,kBAAkB,CAAC,MAAoB,EAAE,YAA0B;IACjF,OAAO;QACL,YAAY,EAAE,CAAC,GAAG,YAAY,CAAC,YAAY,EAAE,GAAG,kBAAkB,CAAC,MAAM,CAAC,CAAC;QAC3E,WAAW,EAAE,CAAC,GAAG,YAAY,CAAC,WAAW,EAAE,GAAG,iBAAiB,CAAC,MAAM,CAAC,CAAC;QACxE,UAAU,EAAE,CAAC,GAAG,YAAY,CAAC,UAAU,EAAE,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC;QAC3D,SAAS,EAAE,CAAC,GAAG,YAAY,CAAC,SAAS,EAAE,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC;QACzD,QAAQ,EAAE,YAAY,CAAC,QAAQ;KAChC,CAAA;AACH,CAAC"}

package/dist/src/groupContext.d.ts

@@ -0,0 +1,19 @@
+import { Decoder } from "./codec/tlsDecoder";
+import { Encoder } from "./codec/tlsEncoder";
+import { CiphersuiteName } from "./crypto/ciphersuite";
+import { Kdf } from "./crypto/kdf";
+import { Extension } from "./extension";
+import { ProtocolVersionName } from "./protocolVersion";
+export type GroupContext = {
+    version: ProtocolVersionName;
+    cipherSuite: CiphersuiteName;
+    groupId: Uint8Array;
+    epoch: bigint;
+    treeHash: Uint8Array;
+    confirmedTranscriptHash: Uint8Array;
+    extensions: Extension[];
+};
+export declare const encodeGroupContext: Encoder<GroupContext>;
+export declare const decodeGroupContext: Decoder<GroupContext>;
+export declare function extractEpochSecret(context: GroupContext, joinerSecret: Uint8Array, kdf: Kdf, pskSecret?: Uint8Array): Promise<Uint8Array<ArrayBufferLike>>;
+export declare function extractJoinerSecret(context: GroupContext, previousInitSecret: Uint8Array, commitSecret: Uint8Array, kdf: Kdf): Promise<Uint8Array<ArrayBufferLike>>;

package/dist/src/groupContext.js

@@ -0,0 +1,44 @@
+import { decodeUint64, encodeUint64 } from "./codec/number";
+import { mapDecoders } from "./codec/tlsDecoder";
+import { contramapEncoders } from "./codec/tlsEncoder";
+import { decodeVarLenData, decodeVarLenType, encodeVarLenData, encodeVarLenType } from "./codec/variableLength";
+import { decodeCiphersuite, encodeCiphersuite } from "./crypto/ciphersuite";
+import { expandWithLabel } from "./crypto/kdf";
+import { decodeExtension, encodeExtension } from "./extension";
+import { decodeProtocolVersion, encodeProtocolVersion } from "./protocolVersion";
+export const encodeGroupContext = contramapEncoders([
+    encodeProtocolVersion,
+    encodeCiphersuite,
+    encodeVarLenData, // groupId
+    encodeUint64, // epoch
+    encodeVarLenData, // treeHash
+    encodeVarLenData, // confirmedTranscriptHash
+    encodeVarLenType(encodeExtension),
+], (gc) => [gc.version, gc.cipherSuite, gc.groupId, gc.epoch, gc.treeHash, gc.confirmedTranscriptHash, gc.extensions]);
+export const decodeGroupContext = mapDecoders([
+    decodeProtocolVersion,
+    decodeCiphersuite,
+    decodeVarLenData, // groupId
+    decodeUint64, // epoch
+    decodeVarLenData, // treeHash
+    decodeVarLenData, // confirmedTranscriptHash
+    decodeVarLenType(decodeExtension),
+], (version, cipherSuite, groupId, epoch, treeHash, confirmedTranscriptHash, extensions) => ({
+    version,
+    cipherSuite,
+    groupId,
+    epoch,
+    treeHash,
+    confirmedTranscriptHash,
+    extensions,
+}));
+export async function extractEpochSecret(context, joinerSecret, kdf, pskSecret) {
+    const psk = pskSecret === undefined ? new Uint8Array(kdf.size) : pskSecret;
+    const extracted = await kdf.extract(joinerSecret, psk);
+    return expandWithLabel(extracted, "epoch", encodeGroupContext(context), kdf.size, kdf);
+}
+export async function extractJoinerSecret(context, previousInitSecret, commitSecret, kdf) {
+    const extracted = await kdf.extract(previousInitSecret, commitSecret);
+    return expandWithLabel(extracted, "joiner", encodeGroupContext(context), kdf.size, kdf);
+}
+//# sourceMappingURL=groupContext.js.map

package/dist/src/groupContext.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"groupContext.js","sourceRoot":"","sources":["../../src/groupContext.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAA;AAC3D,OAAO,EAAW,WAAW,EAAE,MAAM,oBAAoB,CAAA;AACzD,OAAO,EAAE,iBAAiB,EAAW,MAAM,oBAAoB,CAAA;AAC/D,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAA;AAC/G,OAAO,EAAmB,iBAAiB,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAA;AAE5F,OAAO,EAAE,eAAe,EAAO,MAAM,cAAc,CAAA;AACnD,OAAO,EAAE,eAAe,EAAE,eAAe,EAAa,MAAM,aAAa,CAAA;AAEzE,OAAO,EAAE,qBAAqB,EAAE,qBAAqB,EAAuB,MAAM,mBAAmB,CAAA;AAYrG,MAAM,CAAC,MAAM,kBAAkB,GAA0B,iBAAiB,CACxE;IACE,qBAAqB;IACrB,iBAAiB;IACjB,gBAAgB,EAAE,UAAU;IAC5B,YAAY,EAAE,QAAQ;IACtB,gBAAgB,EAAE,WAAW;IAC7B,gBAAgB,EAAE,0BAA0B;IAC5C,gBAAgB,CAAC,eAAe,CAAC;CAClC,EACD,CAAC,EAAE,EAAE,EAAE,CACL,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE,CAAC,WAAW,EAAE,EAAE,CAAC,OAAO,EAAE,EAAE,CAAC,KAAK,EAAE,EAAE,CAAC,QAAQ,EAAE,EAAE,CAAC,uBAAuB,EAAE,EAAE,CAAC,UAAU,CAAU,CACtH,CAAA;AAED,MAAM,CAAC,MAAM,kBAAkB,GAA0B,WAAW,CAClE;IACE,qBAAqB;IACrB,iBAAiB;IACjB,gBAAgB,EAAE,UAAU;IAC5B,YAAY,EAAE,QAAQ;IACtB,gBAAgB,EAAE,WAAW;IAC7B,gBAAgB,EAAE,0BAA0B;IAC5C,gBAAgB,CAAC,eAAe,CAAC;CAClC,EACD,CAAC,OAAO,EAAE,WAAW,EAAE,OAAO,EAAE,KAAK,EAAE,QAAQ,EAAE,uBAAuB,EAAE,UAAU,EAAE,EAAE,CAAC,CAAC;IACxF,OAAO;IACP,WAAW;IACX,OAAO;IACP,KAAK;IACL,QAAQ;IACR,uBAAuB;IACvB,UAAU;CACX,CAAC,CACH,CAAA;AAED,MAAM,CAAC,KAAK,UAAU,kBAAkB,CACtC,OAAqB,EACrB,YAAwB,EACxB,GAAQ,EACR,SAAsB;IAEtB,MAAM,GAAG,GAAG,SAAS,KAAK,SAAS,CAAC,CAAC,CAAC,IAAI,UAAU,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;IAC1E,MAAM,SAAS,GAAG,MAAM,GAAG,CAAC,OAAO,CAAC,YAAY,EAAE,GAAG,CAAC,CAAA;IAEtD,OAAO,eAAe,CAAC,SAAS,EAAE,OAAO,EAAE,kBAAkB,CAAC,OAAO,CAAC,EAAE,GAAG,CAAC,IAAI,EAAE,GAAG,CAAC,CAAA;AACxF,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,OAAqB,EACrB,kBAA8B,EAC9B,YAAwB,EACxB,GAAQ;IAER,MAAM,SAAS,GAAG,MAAM,GAAG,CAAC,OAAO,CAAC,kBAAkB,EAAE,YAAY,CAAC,CAAA;IAErE,OAAO,eAAe,CAAC,SAAS,EAAE,QAAQ,EAAE,kBAAkB,CAAC,OAAO,CAAC,EAAE,GAAG,CAAC,IAAI,EAAE,GAAG,CAAC,CAAA;AACzF,CAAC"}

package/dist/src/groupInfo.d.ts

@@ -0,0 +1,26 @@
+import { Decoder } from "./codec/tlsDecoder";
+import { Encoder } from "./codec/tlsEncoder";
+import { CiphersuiteImpl } from "./crypto/ciphersuite";
+import { Kdf } from "./crypto/kdf";
+import { Signature } from "./crypto/signature";
+import { Extension } from "./extension";
+import { GroupContext } from "./groupContext";
+import { RatchetTree } from "./ratchetTree";
+export type GroupInfoTBS = {
+    groupContext: GroupContext;
+    extensions: Extension[];
+    confirmationTag: Uint8Array;
+    signer: number;
+};
+export declare const encodeGroupInfoTBS: Encoder<GroupInfoTBS>;
+export declare const decodeGroupInfoTBS: Decoder<GroupInfoTBS>;
+export type GroupInfo = GroupInfoTBS & {
+    signature: Uint8Array;
+};
+export declare const encodeGroupInfo: Encoder<GroupInfo>;
+export declare const decodeGroupInfo: Decoder<GroupInfo>;
+export declare function ratchetTreeFromExtension(info: GroupInfo): RatchetTree | undefined;
+export declare function signGroupInfo(tbs: GroupInfoTBS, privateKey: Uint8Array, s: Signature): Promise<GroupInfo>;
+export declare function verifyGroupInfoSignature(gi: GroupInfo, publicKey: Uint8Array, s: Signature): Promise<boolean>;
+export declare function verifyGroupInfoConfirmationTag(gi: GroupInfo, joinerSecret: Uint8Array, pskSecret: Uint8Array, cs: CiphersuiteImpl): Promise<boolean>;
+export declare function extractWelcomeSecret(joinerSecret: Uint8Array, pskSecret: Uint8Array, kdf: Kdf): Promise<Uint8Array<ArrayBufferLike>>;

package/dist/src/groupInfo.js

@@ -0,0 +1,47 @@
+import { decodeUint32, encodeUint32 } from "./codec/number";
+import { mapDecoders } from "./codec/tlsDecoder";
+import { contramapEncoders } from "./codec/tlsEncoder";
+import { decodeVarLenData, decodeVarLenType, encodeVarLenData, encodeVarLenType } from "./codec/variableLength";
+import { deriveSecret } from "./crypto/kdf";
+import { signWithLabel, verifyWithLabel } from "./crypto/signature";
+import { decodeExtension, encodeExtension } from "./extension";
+import { decodeGroupContext, encodeGroupContext, extractEpochSecret } from "./groupContext";
+import { CodecError } from "./mlsError";
+import { decodeRatchetTree } from "./ratchetTree";
+export const encodeGroupInfoTBS = contramapEncoders([encodeGroupContext, encodeVarLenType(encodeExtension), encodeVarLenData, encodeUint32], (g) => [g.groupContext, g.extensions, g.confirmationTag, g.signer]);
+export const decodeGroupInfoTBS = mapDecoders([decodeGroupContext, decodeVarLenType(decodeExtension), decodeVarLenData, decodeUint32], (groupContext, extensions, confirmationTag, signer) => ({
+    groupContext,
+    extensions,
+    confirmationTag,
+    signer,
+}));
+export const encodeGroupInfo = contramapEncoders([encodeGroupInfoTBS, encodeVarLenData], (g) => [g, g.signature]);
+export const decodeGroupInfo = mapDecoders([decodeGroupInfoTBS, decodeVarLenData], (tbs, signature) => ({
+    ...tbs,
+    signature,
+}));
+export function ratchetTreeFromExtension(info) {
+    const treeExtension = info.extensions.find((ex) => ex.extensionType === "ratchet_tree");
+    if (treeExtension !== undefined) {
+        const tree = decodeRatchetTree(treeExtension.extensionData, 0);
+        if (tree === undefined)
+            throw new CodecError("Could not decode RatchetTree");
+        return tree[0];
+    }
+}
+export async function signGroupInfo(tbs, privateKey, s) {
+    const signature = await signWithLabel(privateKey, "GroupInfoTBS", encodeGroupInfoTBS(tbs), s);
+    return { ...tbs, signature };
+}
+export function verifyGroupInfoSignature(gi, publicKey, s) {
+    return verifyWithLabel(publicKey, "GroupInfoTBS", encodeGroupInfoTBS(gi), gi.signature, s);
+}
+export async function verifyGroupInfoConfirmationTag(gi, joinerSecret, pskSecret, cs) {
+    const epochSecret = await extractEpochSecret(gi.groupContext, joinerSecret, cs.kdf, pskSecret);
+    const key = await deriveSecret(epochSecret, "confirm", cs.kdf);
+    return cs.hash.verifyMac(key, gi.confirmationTag, gi.groupContext.confirmedTranscriptHash);
+}
+export async function extractWelcomeSecret(joinerSecret, pskSecret, kdf) {
+    return deriveSecret(await kdf.extract(joinerSecret, pskSecret), "welcome", kdf);
+}
+//# sourceMappingURL=groupInfo.js.map

package/dist/src/groupInfo.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"groupInfo.js","sourceRoot":"","sources":["../../src/groupInfo.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAA;AAC3D,OAAO,EAAW,WAAW,EAAE,MAAM,oBAAoB,CAAA;AACzD,OAAO,EAAE,iBAAiB,EAAW,MAAM,oBAAoB,CAAA;AAC/D,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAA;AAE/G,OAAO,EAAE,YAAY,EAAO,MAAM,cAAc,CAAA;AAChD,OAAO,EAAa,aAAa,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAA;AAC9E,OAAO,EAAE,eAAe,EAAE,eAAe,EAAa,MAAM,aAAa,CAAA;AACzE,OAAO,EAAE,kBAAkB,EAAE,kBAAkB,EAAE,kBAAkB,EAAgB,MAAM,gBAAgB,CAAA;AACzG,OAAO,EAAE,UAAU,EAAE,MAAM,YAAY,CAAA;AACvC,OAAO,EAAE,iBAAiB,EAAe,MAAM,eAAe,CAAA;AAS9D,MAAM,CAAC,MAAM,kBAAkB,GAA0B,iBAAiB,CACxE,CAAC,kBAAkB,EAAE,gBAAgB,CAAC,eAAe,CAAC,EAAE,gBAAgB,EAAE,YAAY,CAAC,EACvF,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,YAAY,EAAE,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,eAAe,EAAE,CAAC,CAAC,MAAM,CAAU,CAC5E,CAAA;AAED,MAAM,CAAC,MAAM,kBAAkB,GAA0B,WAAW,CAClE,CAAC,kBAAkB,EAAE,gBAAgB,CAAC,eAAe,CAAC,EAAE,gBAAgB,EAAE,YAAY,CAAC,EACvF,CAAC,YAAY,EAAE,UAAU,EAAE,eAAe,EAAE,MAAM,EAAE,EAAE,CAAC,CAAC;IACtD,YAAY;IACZ,UAAU;IACV,eAAe;IACf,MAAM;CACP,CAAC,CACH,CAAA;AAMD,MAAM,CAAC,MAAM,eAAe,GAAuB,iBAAiB,CAClE,CAAC,kBAAkB,EAAE,gBAAgB,CAAC,EACtC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,SAAS,CAAU,CACjC,CAAA;AAED,MAAM,CAAC,MAAM,eAAe,GAAuB,WAAW,CAC5D,CAAC,kBAAkB,EAAE,gBAAgB,CAAC,EACtC,CAAC,GAAG,EAAE,SAAS,EAAE,EAAE,CAAC,CAAC;IACnB,GAAG,GAAG;IACN,SAAS;CACV,CAAC,CACH,CAAA;AAED,MAAM,UAAU,wBAAwB,CAAC,IAAe;IACtD,MAAM,aAAa,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,aAAa,KAAK,cAAc,CAAC,CAAA;IAEvF,IAAI,aAAa,KAAK,SAAS,EAAE,CAAC;QAChC,MAAM,IAAI,GAAG,iBAAiB,CAAC,aAAa,CAAC,aAAa,EAAE,CAAC,CAAC,CAAA;QAC9D,IAAI,IAAI,KAAK,SAAS;YAAE,MAAM,IAAI,UAAU,CAAC,8BAA8B,CAAC,CAAA;QAC5E,OAAO,IAAI,CAAC,CAAC,CAAC,CAAA;IAChB,CAAC;AACH,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,GAAiB,EAAE,UAAsB,EAAE,CAAY;IACzF,MAAM,SAAS,GAAG,MAAM,aAAa,CAAC,UAAU,EAAE,cAAc,EAAE,kBAAkB,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAA;IAC7F,OAAO,EAAE,GAAG,GAAG,EAAE,SAAS,EAAE,CAAA;AAC9B,CAAC;AAED,MAAM,UAAU,wBAAwB,CAAC,EAAa,EAAE,SAAqB,EAAE,CAAY;IACzF,OAAO,eAAe,CAAC,SAAS,EAAE,cAAc,EAAE,kBAAkB,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,SAAS,EAAE,CAAC,CAAC,CAAA;AAC5F,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,8BAA8B,CAClD,EAAa,EACb,YAAwB,EACxB,SAAqB,EACrB,EAAmB;IAEnB,MAAM,WAAW,GAAG,MAAM,kBAAkB,CAAC,EAAE,CAAC,YAAY,EAAE,YAAY,EAAE,EAAE,CAAC,GAAG,EAAE,SAAS,CAAC,CAAA;IAC9F,MAAM,GAAG,GAAG,MAAM,YAAY,CAAC,WAAW,EAAE,SAAS,EAAE,EAAE,CAAC,GAAG,CAAC,CAAA;IAC9D,OAAO,EAAE,CAAC,IAAI,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,CAAC,eAAe,EAAE,EAAE,CAAC,YAAY,CAAC,uBAAuB,CAAC,CAAA;AAC5F,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,oBAAoB,CAAC,YAAwB,EAAE,SAAqB,EAAE,GAAQ;IAClG,OAAO,YAAY,CAAC,MAAM,GAAG,CAAC,OAAO,CAAC,YAAY,EAAE,SAAS,CAAC,EAAE,SAAS,EAAE,GAAG,CAAC,CAAA;AACjF,CAAC"}

package/dist/src/groupSecrets.d.ts

@@ -0,0 +1,10 @@
+import { Decoder } from "./codec/tlsDecoder";
+import { Encoder } from "./codec/tlsEncoder";
+import { PreSharedKeyID } from "./presharedkey";
+export type GroupSecrets = {
+    joinerSecret: Uint8Array;
+    pathSecret: Uint8Array | undefined;
+    psks: PreSharedKeyID[];
+};
+export declare const encodeGroupSecrets: Encoder<GroupSecrets>;
+export declare const decodeGroupSecrets: Decoder<GroupSecrets>;

package/dist/src/groupSecrets.js

@@ -0,0 +1,8 @@
+import { decodeOptional, encodeOptional } from "./codec/optional";
+import { mapDecoders } from "./codec/tlsDecoder";
+import { contramapEncoders } from "./codec/tlsEncoder";
+import { decodeVarLenData, decodeVarLenType, encodeVarLenData, encodeVarLenType } from "./codec/variableLength";
+import { decodePskId, encodePskId } from "./presharedkey";
+export const encodeGroupSecrets = contramapEncoders([encodeVarLenData, encodeOptional(encodeVarLenData), encodeVarLenType(encodePskId)], (gs) => [gs.joinerSecret, gs.pathSecret, gs.psks]);
+export const decodeGroupSecrets = mapDecoders([decodeVarLenData, decodeOptional(decodeVarLenData), decodeVarLenType(decodePskId)], (joinerSecret, pathSecret, psks) => ({ joinerSecret, pathSecret, psks }));
+//# sourceMappingURL=groupSecrets.js.map

package/dist/src/groupSecrets.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"groupSecrets.js","sourceRoot":"","sources":["../../src/groupSecrets.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAA;AACjE,OAAO,EAAW,WAAW,EAAE,MAAM,oBAAoB,CAAA;AACzD,OAAO,EAAE,iBAAiB,EAAW,MAAM,oBAAoB,CAAA;AAC/D,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAA;AAC/G,OAAO,EAAE,WAAW,EAAE,WAAW,EAAkB,MAAM,gBAAgB,CAAA;AAQzE,MAAM,CAAC,MAAM,kBAAkB,GAA0B,iBAAiB,CACxE,CAAC,gBAAgB,EAAE,cAAc,CAAC,gBAAgB,CAAC,EAAE,gBAAgB,CAAC,WAAW,CAAC,CAAC,EACnF,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC,EAAE,CAAC,YAAY,EAAE,EAAE,CAAC,UAAU,EAAE,EAAE,CAAC,IAAI,CAAU,CAC3D,CAAA;AAED,MAAM,CAAC,MAAM,kBAAkB,GAA0B,WAAW,CAClE,CAAC,gBAAgB,EAAE,cAAc,CAAC,gBAAgB,CAAC,EAAE,gBAAgB,CAAC,WAAW,CAAC,CAAC,EACnF,CAAC,YAAY,EAAE,UAAU,EAAE,IAAI,EAAE,EAAE,CAAC,CAAC,EAAE,YAAY,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC,CACzE,CAAA"}

package/dist/src/hpkeCiphertext.d.ts

@@ -0,0 +1,8 @@
+import { Decoder } from "./codec/tlsDecoder";
+import { Encoder } from "./codec/tlsEncoder";
+export type HPKECiphertext = {
+    kemOutput: Uint8Array;
+    ciphertext: Uint8Array;
+};
+export declare const encodeHpkeCiphertext: Encoder<HPKECiphertext>;
+export declare const decodeHpkeCiphertext: Decoder<HPKECiphertext>;

package/dist/src/hpkeCiphertext.js

@@ -0,0 +1,6 @@
+import { mapDecoders } from "./codec/tlsDecoder";
+import { contramapEncoders } from "./codec/tlsEncoder";
+import { encodeVarLenData, decodeVarLenData } from "./codec/variableLength";
+export const encodeHpkeCiphertext = contramapEncoders([encodeVarLenData, encodeVarLenData], (egs) => [egs.kemOutput, egs.ciphertext]);
+export const decodeHpkeCiphertext = mapDecoders([decodeVarLenData, decodeVarLenData], (kemOutput, ciphertext) => ({ kemOutput, ciphertext }));
+//# sourceMappingURL=hpkeCiphertext.js.map

package/dist/src/hpkeCiphertext.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"hpkeCiphertext.js","sourceRoot":"","sources":["../../src/hpkeCiphertext.ts"],"names":[],"mappings":"AAAA,OAAO,EAAW,WAAW,EAAE,MAAM,oBAAoB,CAAA;AACzD,OAAO,EAAW,iBAAiB,EAAE,MAAM,oBAAoB,CAAA;AAC/D,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAA;AAO3E,MAAM,CAAC,MAAM,oBAAoB,GAA4B,iBAAiB,CAC5E,CAAC,gBAAgB,EAAE,gBAAgB,CAAC,EACpC,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,SAAS,EAAE,GAAG,CAAC,UAAU,CAAU,CAClD,CAAA;AAED,MAAM,CAAC,MAAM,oBAAoB,GAA4B,WAAW,CACtE,CAAC,gBAAgB,EAAE,gBAAgB,CAAC,EACpC,CAAC,SAAS,EAAE,UAAU,EAAE,EAAE,CAAC,CAAC,EAAE,SAAS,EAAE,UAAU,EAAE,CAAC,CACvD,CAAA"}

package/dist/src/index.d.ts

@@ -0,0 +1,32 @@
+export { type Extension, type ExtensionType } from "./extension";
+export { defaultProposalTypes, type DefaultProposalTypeName } from "./defaultProposalType";
+export { defaultExtensionTypes, type DefaultExtensionTypeName } from "./defaultExtensionType";
+export { type PrivateKeyPath } from "./privateKeyPath";
+export { type RatchetTree } from "./ratchetTree";
+export { acceptAll, type IncomingMessageCallback, type IncomingMessageAction } from "./IncomingMessageAction";
+export { proposeAddExternal, proposeExternal } from "./externalProposal";
+export { type GroupContext } from "./groupContext";
+export { decodeExternalSender, encodeExternalSender, type ExternalSender } from "./externalSender";
+export { decodeRequiredCapabilities, encodeRequiredCapabilities, type RequiredCapabilities, } from "./requiredCapabilities";
+export { type AuthenticationService, defaultAuthenticationService } from "./authenticationService";
+export { type PaddingConfig, defaultPaddingConfig } from "./paddingConfig";
+export { defaultKeyPackageEqualityConfig, type KeyPackageEqualityConfig } from "./keyPackageEqualityConfig";
+export { type LifetimeConfig, defaultLifetimeConfig } from "./lifetimeConfig";
+export { type PrivateKeyPackage, type KeyPackage, generateKeyPackage } from "./keyPackage";
+export { type KeyRetentionConfig, defaultKeyRetentionConfig } from "./keyRetentionConfig";
+export { createGroup, makePskIndex, joinGroup, type ClientState, type GroupActiveState, type EpochReceiverData, } from "./clientState";
+export { createApplicationMessage, createProposal } from "./createMessage";
+export { joinGroupExternal, createCommit, createGroupInfoWithExternalPub, createGroupInfoWithExternalPubAndRatchetTree, type CreateCommitResult, } from "./createCommit";
+export { processPrivateMessage, processMessage, processPublicMessage, type ProcessMessageResult, } from "./processMessages";
+export { type PskIndex, emptyPskIndex } from "./pskIndex";
+export { joinGroupFromReinit, reinitCreateNewGroup, reinitGroup, joinGroupFromBranch, branchGroup } from "./resumption";
+export { type Credential } from "./credential";
+export { type Proposal } from "./proposal";
+export { type ClientConfig } from "./clientConfig";
+export { type Welcome } from "./welcome";
+export { type CiphersuiteName, type CiphersuiteImpl, ciphersuites, getCiphersuiteFromName, getCiphersuiteImpl, } from "./crypto/ciphersuite";
+export { bytesToBase64 } from "./util/byteArray";
+export { decodeMlsMessage, encodeMlsMessage } from "./message";
+export { type Lifetime, defaultLifetime } from "./lifetime";
+export { type Capabilities } from "./capabilities";
+export { defaultCapabilities } from "./defaultCapabilities";

package/dist/src/index.js

@@ -0,0 +1,24 @@
+export { defaultProposalTypes } from "./defaultProposalType";
+export { defaultExtensionTypes } from "./defaultExtensionType";
+export { acceptAll } from "./IncomingMessageAction";
+export { proposeAddExternal, proposeExternal } from "./externalProposal";
+export { decodeExternalSender, encodeExternalSender } from "./externalSender";
+export { decodeRequiredCapabilities, encodeRequiredCapabilities, } from "./requiredCapabilities";
+export { defaultAuthenticationService } from "./authenticationService";
+export { defaultPaddingConfig } from "./paddingConfig";
+export { defaultKeyPackageEqualityConfig } from "./keyPackageEqualityConfig";
+export { defaultLifetimeConfig } from "./lifetimeConfig";
+export { generateKeyPackage } from "./keyPackage";
+export { defaultKeyRetentionConfig } from "./keyRetentionConfig";
+export { createGroup, makePskIndex, joinGroup, } from "./clientState";
+export { createApplicationMessage, createProposal } from "./createMessage";
+export { joinGroupExternal, createCommit, createGroupInfoWithExternalPub, createGroupInfoWithExternalPubAndRatchetTree, } from "./createCommit";
+export { processPrivateMessage, processMessage, processPublicMessage, } from "./processMessages";
+export { emptyPskIndex } from "./pskIndex";
+export { joinGroupFromReinit, reinitCreateNewGroup, reinitGroup, joinGroupFromBranch, branchGroup } from "./resumption";
+export { ciphersuites, getCiphersuiteFromName, getCiphersuiteImpl, } from "./crypto/ciphersuite";
+export { bytesToBase64 } from "./util/byteArray";
+export { decodeMlsMessage, encodeMlsMessage } from "./message";
+export { defaultLifetime } from "./lifetime";
+export { defaultCapabilities } from "./defaultCapabilities";
+//# sourceMappingURL=index.js.map

package/dist/src/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,oBAAoB,EAAgC,MAAM,uBAAuB,CAAA;AAE1F,OAAO,EAAE,qBAAqB,EAAiC,MAAM,wBAAwB,CAAA;AAM7F,OAAO,EAAE,SAAS,EAA4D,MAAM,yBAAyB,CAAA;AAE7G,OAAO,EAAE,kBAAkB,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAA;AAIxE,OAAO,EAAE,oBAAoB,EAAE,oBAAoB,EAAuB,MAAM,kBAAkB,CAAA;AAElG,OAAO,EACL,0BAA0B,EAC1B,0BAA0B,GAE3B,MAAM,wBAAwB,CAAA;AAE/B,OAAO,EAA8B,4BAA4B,EAAE,MAAM,yBAAyB,CAAA;AAElG,OAAO,EAAsB,oBAAoB,EAAE,MAAM,iBAAiB,CAAA;AAE1E,OAAO,EAAE,+BAA+B,EAAiC,MAAM,4BAA4B,CAAA;AAE3G,OAAO,EAAuB,qBAAqB,EAAE,MAAM,kBAAkB,CAAA;AAE7E,OAAO,EAA2C,kBAAkB,EAAE,MAAM,cAAc,CAAA;AAC1F,OAAO,EAA2B,yBAAyB,EAAE,MAAM,sBAAsB,CAAA;AAEzF,OAAO,EACL,WAAW,EACX,YAAY,EACZ,SAAS,GAIV,MAAM,eAAe,CAAA;AAEtB,OAAO,EAAE,wBAAwB,EAAE,cAAc,EAAE,MAAM,iBAAiB,CAAA;AAE1E,OAAO,EACL,iBAAiB,EACjB,YAAY,EACZ,8BAA8B,EAC9B,4CAA4C,GAE7C,MAAM,gBAAgB,CAAA;AAEvB,OAAO,EACL,qBAAqB,EACrB,cAAc,EACd,oBAAoB,GAErB,MAAM,mBAAmB,CAAA;AAE1B,OAAO,EAAiB,aAAa,EAAE,MAAM,YAAY,CAAA;AAEzD,OAAO,EAAE,mBAAmB,EAAE,oBAAoB,EAAE,WAAW,EAAE,mBAAmB,EAAE,WAAW,EAAE,MAAM,cAAc,CAAA;AAUvH,OAAO,EAGL,YAAY,EACZ,sBAAsB,EACtB,kBAAkB,GACnB,MAAM,sBAAsB,CAAA;AAE7B,OAAO,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAA;AAEhD,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAA;AAC9D,OAAO,EAAiB,eAAe,EAAE,MAAM,YAAY,CAAA;AAE3D,OAAO,EAAE,mBAAmB,EAAE,MAAM,uBAAuB,CAAA"}

package/dist/src/keyPackage.d.ts

@@ -0,0 +1,38 @@
+import { Decoder } from "./codec/tlsDecoder";
+import { Encoder } from "./codec/tlsEncoder";
+import { CiphersuiteImpl, CiphersuiteName } from "./crypto/ciphersuite";
+import { Hash } from "./crypto/hash";
+import { Signature } from "./crypto/signature";
+import { Extension } from "./extension";
+import { ProtocolVersionName } from "./protocolVersion";
+import { LeafNodeKeyPackage } from "./leafNode";
+import { Capabilities } from "./capabilities";
+import { Lifetime } from "./lifetime";
+import { Credential } from "./credential";
+type KeyPackageTBS = {
+    version: ProtocolVersionName;
+    cipherSuite: CiphersuiteName;
+    initKey: Uint8Array;
+    leafNode: LeafNodeKeyPackage;
+    extensions: Extension[];
+};
+export declare const encodeKeyPackageTBS: Encoder<KeyPackageTBS>;
+export declare const decodeKeyPackageTBS: Decoder<KeyPackageTBS>;
+export type KeyPackage = KeyPackageTBS & {
+    signature: Uint8Array;
+};
+export declare const encodeKeyPackage: Encoder<KeyPackage>;
+export declare const decodeKeyPackage: Decoder<KeyPackage>;
+export declare function signKeyPackage(tbs: KeyPackageTBS, signKey: Uint8Array, s: Signature): Promise<KeyPackage>;
+export declare function verifyKeyPackage(kp: KeyPackage, s: Signature): Promise<boolean>;
+export declare function makeKeyPackageRef(value: KeyPackage, h: Hash): Promise<Uint8Array<ArrayBufferLike>>;
+export type PrivateKeyPackage = {
+    initPrivateKey: Uint8Array;
+    hpkePrivateKey: Uint8Array;
+    signaturePrivateKey: Uint8Array;
+};
+export declare function generateKeyPackage(credential: Credential, capabilities: Capabilities, lifetime: Lifetime, extensions: Extension[], cs: CiphersuiteImpl): Promise<{
+    publicPackage: KeyPackage;
+    privatePackage: PrivateKeyPackage;
+}>;
+export {};

package/dist/src/keyPackage.js

@@ -0,0 +1,72 @@
+import { mapDecoders } from "./codec/tlsDecoder";
+import { contramapEncoders } from "./codec/tlsEncoder";
+import { decodeVarLenData, decodeVarLenType, encodeVarLenData, encodeVarLenType } from "./codec/variableLength";
+import { decodeCiphersuite, encodeCiphersuite } from "./crypto/ciphersuite";
+import { refhash } from "./crypto/hash";
+import { signWithLabel, verifyWithLabel } from "./crypto/signature";
+import { decodeExtension, encodeExtension } from "./extension";
+import { decodeProtocolVersion, encodeProtocolVersion } from "./protocolVersion";
+import { decodeLeafNodeKeyPackage, encodeLeafNode, signLeafNodeKeyPackage, } from "./leafNode";
+export const encodeKeyPackageTBS = contramapEncoders([encodeProtocolVersion, encodeCiphersuite, encodeVarLenData, encodeLeafNode, encodeVarLenType(encodeExtension)], (keyPackageTBS) => [
+    keyPackageTBS.version,
+    keyPackageTBS.cipherSuite,
+    keyPackageTBS.initKey,
+    keyPackageTBS.leafNode,
+    keyPackageTBS.extensions,
+]);
+export const decodeKeyPackageTBS = mapDecoders([
+    decodeProtocolVersion,
+    decodeCiphersuite,
+    decodeVarLenData,
+    decodeLeafNodeKeyPackage,
+    decodeVarLenType(decodeExtension),
+], (version, cipherSuite, initKey, leafNode, extensions) => ({
+    version,
+    cipherSuite,
+    initKey,
+    leafNode,
+    extensions,
+}));
+export const encodeKeyPackage = contramapEncoders([encodeKeyPackageTBS, encodeVarLenData], (keyPackage) => [keyPackage, keyPackage.signature]);
+export const decodeKeyPackage = mapDecoders([decodeKeyPackageTBS, decodeVarLenData], (keyPackageTBS, signature) => ({
+    ...keyPackageTBS,
+    signature,
+}));
+export async function signKeyPackage(tbs, signKey, s) {
+    return { ...tbs, signature: await signWithLabel(signKey, "KeyPackageTBS", encodeKeyPackageTBS(tbs), s) };
+}
+export async function verifyKeyPackage(kp, s) {
+    return verifyWithLabel(kp.leafNode.signaturePublicKey, "KeyPackageTBS", encodeKeyPackageTBS(kp), kp.signature, s);
+}
+export function makeKeyPackageRef(value, h) {
+    return refhash("MLS 1.0 KeyPackage Reference", encodeKeyPackage(value), h);
+}
+export async function generateKeyPackage(credential, capabilities, lifetime, extensions, cs) {
+    const sigKeys = await cs.signature.keygen();
+    const initKeys = await cs.hpke.generateKeyPair();
+    const hpkeKeys = await cs.hpke.generateKeyPair();
+    const privatePackage = {
+        initPrivateKey: await cs.hpke.exportPrivateKey(initKeys.privateKey),
+        hpkePrivateKey: await cs.hpke.exportPrivateKey(hpkeKeys.privateKey),
+        signaturePrivateKey: sigKeys.signKey,
+    };
+    const leafNodeTbs = {
+        leafNodeSource: "key_package",
+        hpkePublicKey: await cs.hpke.exportPublicKey(hpkeKeys.publicKey),
+        signaturePublicKey: sigKeys.publicKey,
+        info: { leafNodeSource: "key_package" },
+        extensions,
+        credential,
+        capabilities,
+        lifetime,
+    };
+    const tbs = {
+        version: "mls10",
+        cipherSuite: cs.name,
+        initKey: await cs.hpke.exportPublicKey(initKeys.publicKey),
+        leafNode: await signLeafNodeKeyPackage(leafNodeTbs, sigKeys.signKey, cs.signature),
+        extensions,
+    };
+    return { publicPackage: await signKeyPackage(tbs, sigKeys.signKey, cs.signature), privatePackage };
+}
+//# sourceMappingURL=keyPackage.js.map

package/dist/src/keyPackage.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"keyPackage.js","sourceRoot":"","sources":["../../src/keyPackage.ts"],"names":[],"mappings":"AAAA,OAAO,EAAW,WAAW,EAAE,MAAM,oBAAoB,CAAA;AACzD,OAAO,EAAE,iBAAiB,EAAW,MAAM,oBAAoB,CAAA;AAC/D,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAA;AAC/G,OAAO,EAAoC,iBAAiB,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAA;AAC7G,OAAO,EAAQ,OAAO,EAAE,MAAM,eAAe,CAAA;AAC7C,OAAO,EAAa,aAAa,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAA;AAC9E,OAAO,EAAE,eAAe,EAAE,eAAe,EAAa,MAAM,aAAa,CAAA;AACzE,OAAO,EAAE,qBAAqB,EAAE,qBAAqB,EAAuB,MAAM,mBAAmB,CAAA;AACrG,OAAO,EACL,wBAAwB,EACxB,cAAc,EAGd,sBAAsB,GACvB,MAAM,YAAY,CAAA;AAanB,MAAM,CAAC,MAAM,mBAAmB,GAA2B,iBAAiB,CAC1E,CAAC,qBAAqB,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,cAAc,EAAE,gBAAgB,CAAC,eAAe,CAAC,CAAC,EAC/G,CAAC,aAAa,EAAE,EAAE,CAChB;IACE,aAAa,CAAC,OAAO;IACrB,aAAa,CAAC,WAAW;IACzB,aAAa,CAAC,OAAO;IACrB,aAAa,CAAC,QAAQ;IACtB,aAAa,CAAC,UAAU;CAChB,CACb,CAAA;AAED,MAAM,CAAC,MAAM,mBAAmB,GAA2B,WAAW,CACpE;IACE,qBAAqB;IACrB,iBAAiB;IACjB,gBAAgB;IAChB,wBAAwB;IACxB,gBAAgB,CAAC,eAAe,CAAC;CAClC,EACD,CAAC,OAAO,EAAE,WAAW,EAAE,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,EAAE,CAAC,CAAC;IACxD,OAAO;IACP,WAAW;IACX,OAAO;IACP,QAAQ;IACR,UAAU;CACX,CAAC,CACH,CAAA;AAID,MAAM,CAAC,MAAM,gBAAgB,GAAwB,iBAAiB,CACpE,CAAC,mBAAmB,EAAE,gBAAgB,CAAC,EACvC,CAAC,UAAU,EAAE,EAAE,CAAC,CAAC,UAAU,EAAE,UAAU,CAAC,SAAS,CAAU,CAC5D,CAAA;AAED,MAAM,CAAC,MAAM,gBAAgB,GAAwB,WAAW,CAC9D,CAAC,mBAAmB,EAAE,gBAAgB,CAAC,EACvC,CAAC,aAAa,EAAE,SAAS,EAAE,EAAE,CAAC,CAAC;IAC7B,GAAG,aAAa;IAChB,SAAS;CACV,CAAC,CACH,CAAA;AAED,MAAM,CAAC,KAAK,UAAU,cAAc,CAAC,GAAkB,EAAE,OAAmB,EAAE,CAAY;IACxF,OAAO,EAAE,GAAG,GAAG,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC,OAAO,EAAE,eAAe,EAAE,mBAAmB,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,EAAE,CAAA;AAC1G,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,gBAAgB,CAAC,EAAc,EAAE,CAAY;IACjE,OAAO,eAAe,CAAC,EAAE,CAAC,QAAQ,CAAC,kBAAkB,EAAE,eAAe,EAAE,mBAAmB,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,SAAS,EAAE,CAAC,CAAC,CAAA;AACnH,CAAC;AAED,MAAM,UAAU,iBAAiB,CAAC,KAAiB,EAAE,CAAO;IAC1D,OAAO,OAAO,CAAC,8BAA8B,EAAE,gBAAgB,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAA;AAC5E,CAAC;AAQD,MAAM,CAAC,KAAK,UAAU,kBAAkB,CACtC,UAAsB,EACtB,YAA0B,EAC1B,QAAkB,EAClB,UAAuB,EACvB,EAAmB;IAEnB,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,SAAS,CAAC,MAAM,EAAE,CAAA;IAC3C,MAAM,QAAQ,GAAG,MAAM,EAAE,CAAC,IAAI,CAAC,eAAe,EAAE,CAAA;IAChD,MAAM,QAAQ,GAAG,MAAM,EAAE,CAAC,IAAI,CAAC,eAAe,EAAE,CAAA;IAEhD,MAAM,cAAc,GAAG;QACrB,cAAc,EAAE,MAAM,EAAE,CAAC,IAAI,CAAC,gBAAgB,CAAC,QAAQ,CAAC,UAAU,CAAC;QACnE,cAAc,EAAE,MAAM,EAAE,CAAC,IAAI,CAAC,gBAAgB,CAAC,QAAQ,CAAC,UAAU,CAAC;QACnE,mBAAmB,EAAE,OAAO,CAAC,OAAO;KACrC,CAAA;IAED,MAAM,WAAW,GAA0B;QACzC,cAAc,EAAE,aAAa;QAC7B,aAAa,EAAE,MAAM,EAAE,CAAC,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,SAAS,CAAC;QAChE,kBAAkB,EAAE,OAAO,CAAC,SAAS;QACrC,IAAI,EAAE,EAAE,cAAc,EAAE,aAAa,EAAE;QACvC,UAAU;QACV,UAAU;QACV,YAAY;QACZ,QAAQ;KACT,CAAA;IAED,MAAM,GAAG,GAAkB;QACzB,OAAO,EAAE,OAAO;QAChB,WAAW,EAAE,EAAE,CAAC,IAAI;QACpB,OAAO,EAAE,MAAM,EAAE,CAAC,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,SAAS,CAAC;QAC1D,QAAQ,EAAE,MAAM,sBAAsB,CAAC,WAAW,EAAE,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,SAAS,CAAC;QAClF,UAAU;KACX,CAAA;IAED,OAAO,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC,GAAG,EAAE,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,SAAS,CAAC,EAAE,cAAc,EAAE,CAAA;AACpG,CAAC"}

package/dist/src/keyPackageEqualityConfig.d.ts

@@ -0,0 +1,7 @@
+import { KeyPackage } from "./keyPackage";
+import { LeafNode } from "./leafNode";
+export type KeyPackageEqualityConfig = {
+    compareKeyPackages(a: KeyPackage, b: KeyPackage): boolean;
+    compareKeyPackageToLeafNode(a: KeyPackage, b: LeafNode): boolean;
+};
+export declare const defaultKeyPackageEqualityConfig: KeyPackageEqualityConfig;

package/dist/src/keyPackageEqualityConfig.js

@@ -0,0 +1,10 @@
+import { constantTimeEqual } from "./util/constantTimeCompare";
+export const defaultKeyPackageEqualityConfig = {
+    compareKeyPackages(a, b) {
+        return constantTimeEqual(a.leafNode.signaturePublicKey, b.leafNode.signaturePublicKey);
+    },
+    compareKeyPackageToLeafNode(a, b) {
+        return constantTimeEqual(a.leafNode.signaturePublicKey, b.signaturePublicKey);
+    },
+};
+//# sourceMappingURL=keyPackageEqualityConfig.js.map

package/dist/src/keyPackageEqualityConfig.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"keyPackageEqualityConfig.js","sourceRoot":"","sources":["../../src/keyPackageEqualityConfig.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,iBAAiB,EAAE,MAAM,4BAA4B,CAAA;AAO9D,MAAM,CAAC,MAAM,+BAA+B,GAA6B;IACvE,kBAAkB,CAAC,CAAC,EAAE,CAAC;QACrB,OAAO,iBAAiB,CAAC,CAAC,CAAC,QAAQ,CAAC,kBAAkB,EAAE,CAAC,CAAC,QAAQ,CAAC,kBAAkB,CAAC,CAAA;IACxF,CAAC;IACD,2BAA2B,CAAC,CAAC,EAAE,CAAC;QAC9B,OAAO,iBAAiB,CAAC,CAAC,CAAC,QAAQ,CAAC,kBAAkB,EAAE,CAAC,CAAC,kBAAkB,CAAC,CAAA;IAC/E,CAAC;CACF,CAAA"}

package/dist/src/keyRetentionConfig.d.ts

@@ -0,0 +1,6 @@
+export type KeyRetentionConfig = {
+    retainKeysForGenerations: number;
+    retainKeysForEpochs: number;
+    maximumForwardRatchetSteps: number;
+};
+export declare const defaultKeyRetentionConfig: KeyRetentionConfig;

package/dist/src/keyRetentionConfig.js

@@ -0,0 +1,6 @@
+export const defaultKeyRetentionConfig = {
+    retainKeysForGenerations: 10,
+    retainKeysForEpochs: 4,
+    maximumForwardRatchetSteps: 200,
+};
+//# sourceMappingURL=keyRetentionConfig.js.map

package/dist/src/keyRetentionConfig.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"keyRetentionConfig.js","sourceRoot":"","sources":["../../src/keyRetentionConfig.ts"],"names":[],"mappings":"AAMA,MAAM,CAAC,MAAM,yBAAyB,GAAuB;IAC3D,wBAAwB,EAAE,EAAE;IAC5B,mBAAmB,EAAE,CAAC;IACtB,0BAA0B,EAAE,GAAG;CAChC,CAAA"}

package/dist/src/keySchedule.d.ts

@@ -0,0 +1,24 @@
+import { CiphersuiteImpl } from "./crypto/ciphersuite";
+import { Kdf } from "./crypto/kdf";
+import { GroupContext } from "./groupContext";
+export type KeySchedule = {
+    epochSecret: Uint8Array;
+    senderDataSecret: Uint8Array;
+    encryptionSecret: Uint8Array;
+    exporterSecret: Uint8Array;
+    externalSecret: Uint8Array;
+    confirmationKey: Uint8Array;
+    membershipKey: Uint8Array;
+    resumptionPsk: Uint8Array;
+    epochAuthenticator: Uint8Array;
+    initSecret: Uint8Array;
+};
+export type EpochSecrets = {
+    keySchedule: KeySchedule;
+    joinerSecret: Uint8Array;
+    welcomeSecret: Uint8Array;
+};
+export declare function mlsExporter(exporterSecret: Uint8Array, label: string, context: Uint8Array, length: number, cs: CiphersuiteImpl): Promise<Uint8Array<ArrayBufferLike>>;
+export declare function deriveKeySchedule(joinerSecret: Uint8Array, pskSecret: Uint8Array, groupContext: GroupContext, kdf: Kdf): Promise<KeySchedule>;
+export declare function initializeKeySchedule(epochSecret: Uint8Array, kdf: Kdf): Promise<KeySchedule>;
+export declare function initializeEpoch(initSecret: Uint8Array, commitSecret: Uint8Array, groupContext: GroupContext, pskSecret: Uint8Array, kdf: Kdf): Promise<EpochSecrets>;

package/dist/src/keySchedule.js

@@ -0,0 +1,43 @@
+import { deriveSecret, expandWithLabel } from "./crypto/kdf";
+import { extractEpochSecret, extractJoinerSecret } from "./groupContext";
+import { extractWelcomeSecret } from "./groupInfo";
+export async function mlsExporter(exporterSecret, label, context, length, cs) {
+    const secret = await deriveSecret(exporterSecret, label, cs.kdf);
+    const hash = await cs.hash.digest(context);
+    return expandWithLabel(secret, "exported", hash, length, cs.kdf);
+}
+export async function deriveKeySchedule(joinerSecret, pskSecret, groupContext, kdf) {
+    const epochSecret = await extractEpochSecret(groupContext, joinerSecret, kdf, pskSecret);
+    return await initializeKeySchedule(epochSecret, kdf);
+}
+export async function initializeKeySchedule(epochSecret, kdf) {
+    const newInitSecret = await deriveSecret(epochSecret, "init", kdf);
+    const senderDataSecret = await deriveSecret(epochSecret, "sender data", kdf);
+    const encryptionSecret = await deriveSecret(epochSecret, "encryption", kdf);
+    const exporterSecret = await deriveSecret(epochSecret, "exporter", kdf);
+    const externalSecret = await deriveSecret(epochSecret, "external", kdf);
+    const confirmationKey = await deriveSecret(epochSecret, "confirm", kdf);
+    const membershipKey = await deriveSecret(epochSecret, "membership", kdf);
+    const resumptionPsk = await deriveSecret(epochSecret, "resumption", kdf);
+    const epochAuthenticator = await deriveSecret(epochSecret, "authentication", kdf);
+    const newKeySchedule = {
+        epochSecret: epochSecret,
+        initSecret: newInitSecret,
+        senderDataSecret,
+        encryptionSecret,
+        exporterSecret,
+        externalSecret,
+        confirmationKey,
+        membershipKey,
+        resumptionPsk,
+        epochAuthenticator,
+    };
+    return newKeySchedule;
+}
+export async function initializeEpoch(initSecret, commitSecret, groupContext, pskSecret, kdf) {
+    const joinerSecret = await extractJoinerSecret(groupContext, initSecret, commitSecret, kdf);
+    const welcomeSecret = await extractWelcomeSecret(joinerSecret, pskSecret, kdf);
+    const newKeySchedule = await deriveKeySchedule(joinerSecret, pskSecret, groupContext, kdf);
+    return { welcomeSecret, joinerSecret, keySchedule: newKeySchedule };
+}
+//# sourceMappingURL=keySchedule.js.map

package/dist/src/keySchedule.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"keySchedule.js","sourceRoot":"","sources":["../../src/keySchedule.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,YAAY,EAAE,eAAe,EAAO,MAAM,cAAc,CAAA;AACjE,OAAO,EAAE,kBAAkB,EAAE,mBAAmB,EAAgB,MAAM,gBAAgB,CAAA;AACtF,OAAO,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAA;AAqBlD,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,cAA0B,EAC1B,KAAa,EACb,OAAmB,EACnB,MAAc,EACd,EAAmB;IAEnB,MAAM,MAAM,GAAG,MAAM,YAAY,CAAC,cAAc,EAAE,KAAK,EAAE,EAAE,CAAC,GAAG,CAAC,CAAA;IAEhE,MAAM,IAAI,GAAG,MAAM,EAAE,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,CAAA;IAC1C,OAAO,eAAe,CAAC,MAAM,EAAE,UAAU,EAAE,IAAI,EAAE,MAAM,EAAE,EAAE,CAAC,GAAG,CAAC,CAAA;AAClE,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,YAAwB,EACxB,SAAqB,EACrB,YAA0B,EAC1B,GAAQ;IAER,MAAM,WAAW,GAAG,MAAM,kBAAkB,CAAC,YAAY,EAAE,YAAY,EAAE,GAAG,EAAE,SAAS,CAAC,CAAA;IAExF,OAAO,MAAM,qBAAqB,CAAC,WAAW,EAAE,GAAG,CAAC,CAAA;AACtD,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,qBAAqB,CAAC,WAAuB,EAAE,GAAQ;IAC3E,MAAM,aAAa,GAAG,MAAM,YAAY,CAAC,WAAW,EAAE,MAAM,EAAE,GAAG,CAAC,CAAA;IAClE,MAAM,gBAAgB,GAAG,MAAM,YAAY,CAAC,WAAW,EAAE,aAAa,EAAE,GAAG,CAAC,CAAA;IAC5E,MAAM,gBAAgB,GAAG,MAAM,YAAY,CAAC,WAAW,EAAE,YAAY,EAAE,GAAG,CAAC,CAAA;IAC3E,MAAM,cAAc,GAAG,MAAM,YAAY,CAAC,WAAW,EAAE,UAAU,EAAE,GAAG,CAAC,CAAA;IACvE,MAAM,cAAc,GAAG,MAAM,YAAY,CAAC,WAAW,EAAE,UAAU,EAAE,GAAG,CAAC,CAAA;IACvE,MAAM,eAAe,GAAG,MAAM,YAAY,CAAC,WAAW,EAAE,SAAS,EAAE,GAAG,CAAC,CAAA;IACvE,MAAM,aAAa,GAAG,MAAM,YAAY,CAAC,WAAW,EAAE,YAAY,EAAE,GAAG,CAAC,CAAA;IACxE,MAAM,aAAa,GAAG,MAAM,YAAY,CAAC,WAAW,EAAE,YAAY,EAAE,GAAG,CAAC,CAAA;IACxE,MAAM,kBAAkB,GAAG,MAAM,YAAY,CAAC,WAAW,EAAE,gBAAgB,EAAE,GAAG,CAAC,CAAA;IAEjF,MAAM,cAAc,GAAgB;QAClC,WAAW,EAAE,WAAW;QACxB,UAAU,EAAE,aAAa;QACzB,gBAAgB;QAChB,gBAAgB;QAChB,cAAc;QACd,cAAc;QACd,eAAe;QACf,aAAa;QACb,aAAa;QACb,kBAAkB;KACnB,CAAA;IAED,OAAO,cAAc,CAAA;AACvB,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,UAAsB,EACtB,YAAwB,EACxB,YAA0B,EAC1B,SAAqB,EACrB,GAAQ;IAER,MAAM,YAAY,GAAG,MAAM,mBAAmB,CAAC,YAAY,EAAE,UAAU,EAAE,YAAY,EAAE,GAAG,CAAC,CAAA;IAE3F,MAAM,aAAa,GAAG,MAAM,oBAAoB,CAAC,YAAY,EAAE,SAAS,EAAE,GAAG,CAAC,CAAA;IAE9E,MAAM,cAAc,GAAgB,MAAM,iBAAiB,CAAC,YAAY,EAAE,SAAS,EAAE,YAAY,EAAE,GAAG,CAAC,CAAA;IAEvG,OAAO,EAAE,aAAa,EAAE,YAAY,EAAE,WAAW,EAAE,cAAc,EAAE,CAAA;AACrE,CAAC"}