ts-mls 1.1.0 → 1.3.1

package/dist/credential.d.ts

@@ -0,0 +1,21 @@
+import { Decoder } from "./codec/tlsDecoder.js";
+import { Encoder } from "./codec/tlsEncoder.js";
+import { CredentialTypeName } from "./credentialType.js";
+export type Credential = CredentialBasic | CredentialX509;
+export interface CredentialBasic {
+    credentialType: "basic";
+    identity: Uint8Array;
+}
+export interface CredentialX509 {
+    credentialType: "x509";
+    certificates: Uint8Array[];
+}
+export interface CredentialCustom {
+    credentialType: CredentialTypeName;
+    data: Uint8Array;
+}
+export declare const encodeCredentialBasic: Encoder<CredentialBasic>;
+export declare const encodeCredentialX509: Encoder<CredentialX509>;
+export declare const encodeCredentialCustom: Encoder<CredentialCustom>;
+export declare const encodeCredential: Encoder<Credential>;
+export declare const decodeCredential: Decoder<Credential>;

package/dist/credential.js

@@ -0,0 +1,31 @@
+import { flatMapDecoder, mapDecoder } from "./codec/tlsDecoder.js";
+import { contramapEncoders } from "./codec/tlsEncoder.js";
+import { decodeVarLenData, decodeVarLenType, encodeVarLenData, encodeVarLenType } from "./codec/variableLength.js";
+import { decodeCredentialType, encodeCredentialType } from "./credentialType.js";
+export const encodeCredentialBasic = contramapEncoders([encodeCredentialType, encodeVarLenData], (c) => [c.credentialType, c.identity]);
+export const encodeCredentialX509 = contramapEncoders([encodeCredentialType, encodeVarLenType(encodeVarLenData)], (c) => [c.credentialType, c.certificates]);
+export const encodeCredentialCustom = contramapEncoders([encodeCredentialType, encodeVarLenData], (c) => [c.credentialType, c.data]);
+export const encodeCredential = (c) => {
+    switch (c.credentialType) {
+        case "basic":
+            return encodeCredentialBasic(c);
+        case "x509":
+            return encodeCredentialX509(c);
+        default:
+            return encodeCredentialCustom(c);
+    }
+};
+const decodeCredentialBasic = mapDecoder(decodeVarLenData, (identity) => ({
+    credentialType: "basic",
+    identity,
+}));
+const decodeCredentialX509 = mapDecoder(decodeVarLenType(decodeVarLenData), (certificates) => ({ credentialType: "x509", certificates }));
+export const decodeCredential = flatMapDecoder(decodeCredentialType, (credentialType) => {
+    switch (credentialType) {
+        case "basic":
+            return decodeCredentialBasic;
+        case "x509":
+            return decodeCredentialX509;
+    }
+});
+//# sourceMappingURL=credential.js.map

package/dist/credential.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"credential.js","sourceRoot":"","sources":["../src/credential.ts"],"names":[],"mappings":"AAAA,OAAO,EAAW,cAAc,EAAE,UAAU,EAAE,MAAM,uBAAuB,CAAA;AAC3E,OAAO,EAAE,iBAAiB,EAAW,MAAM,uBAAuB,CAAA;AAClE,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,2BAA2B,CAAA;AAClH,OAAO,EAAsB,oBAAoB,EAAE,oBAAoB,EAAE,MAAM,qBAAqB,CAAA;AAkBpG,MAAM,CAAC,MAAM,qBAAqB,GAA6B,iBAAiB,CAC9E,CAAC,oBAAoB,EAAE,gBAAgB,CAAC,EACxC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,cAAc,EAAE,CAAC,CAAC,QAAQ,CAAU,CAC/C,CAAA;AAED,MAAM,CAAC,MAAM,oBAAoB,GAA4B,iBAAiB,CAC5E,CAAC,oBAAoB,EAAE,gBAAgB,CAAC,gBAAgB,CAAC,CAAC,EAC1D,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,cAAc,EAAE,CAAC,CAAC,YAAY,CAAU,CACnD,CAAA;AAED,MAAM,CAAC,MAAM,sBAAsB,GAA8B,iBAAiB,CAChF,CAAC,oBAAoB,EAAE,gBAAgB,CAAC,EACxC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,cAAc,EAAE,CAAC,CAAC,IAAI,CAAU,CAC3C,CAAA;AAED,MAAM,CAAC,MAAM,gBAAgB,GAAwB,CAAC,CAAC,EAAE,EAAE;IACzD,QAAQ,CAAC,CAAC,cAAc,EAAE,CAAC;QACzB,KAAK,OAAO;YACV,OAAO,qBAAqB,CAAC,CAAC,CAAC,CAAA;QACjC,KAAK,MAAM;YACT,OAAO,oBAAoB,CAAC,CAAC,CAAC,CAAA;QAChC;YACE,OAAO,sBAAsB,CAAC,CAAqB,CAAC,CAAA;IACxD,CAAC;AACH,CAAC,CAAA;AAED,MAAM,qBAAqB,GAA6B,UAAU,CAAC,gBAAgB,EAAE,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;IAClG,cAAc,EAAE,OAAO;IACvB,QAAQ;CACT,CAAC,CAAC,CAAA;AAEH,MAAM,oBAAoB,GAA4B,UAAU,CAC9D,gBAAgB,CAAC,gBAAgB,CAAC,EAClC,CAAC,YAAY,EAAE,EAAE,CAAC,CAAC,EAAE,cAAc,EAAE,MAAM,EAAE,YAAY,EAAE,CAAC,CAC7D,CAAA;AAED,MAAM,CAAC,MAAM,gBAAgB,GAAwB,cAAc,CACjE,oBAAoB,EACpB,CAAC,cAAc,EAAuB,EAAE;IACtC,QAAQ,cAAc,EAAE,CAAC;QACvB,KAAK,OAAO;YACV,OAAO,qBAAqB,CAAA;QAC9B,KAAK,MAAM;YACT,OAAO,oBAAoB,CAAA;IAC/B,CAAC;AACH,CAAC,CACF,CAAA"}

package/dist/credentialType.d.ts

@@ -0,0 +1,11 @@
+import { Decoder } from "./codec/tlsDecoder.js";
+import { Encoder } from "./codec/tlsEncoder.js";
+declare const credentialTypes: {
+    readonly basic: 1;
+    readonly x509: 2;
+};
+export type CredentialTypeName = keyof typeof credentialTypes;
+export type CredentialTypeValue = (typeof credentialTypes)[CredentialTypeName];
+export declare const encodeCredentialType: Encoder<CredentialTypeName>;
+export declare const decodeCredentialType: Decoder<CredentialTypeName>;
+export {};

package/dist/credentialType.js

@@ -0,0 +1,11 @@
+import { decodeUint16, encodeUint16 } from "./codec/number.js";
+import { mapDecoderOption } from "./codec/tlsDecoder.js";
+import { contramapEncoder } from "./codec/tlsEncoder.js";
+import { openEnumNumberEncoder, openEnumNumberToKey } from "./util/enumHelpers.js";
+const credentialTypes = {
+    basic: 1,
+    x509: 2,
+};
+export const encodeCredentialType = contramapEncoder(encodeUint16, openEnumNumberEncoder(credentialTypes));
+export const decodeCredentialType = mapDecoderOption(decodeUint16, openEnumNumberToKey(credentialTypes));
+//# sourceMappingURL=credentialType.js.map

package/dist/credentialType.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"credentialType.js","sourceRoot":"","sources":["../src/credentialType.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAA;AAC9D,OAAO,EAAW,gBAAgB,EAAE,MAAM,uBAAuB,CAAA;AACjE,OAAO,EAAE,gBAAgB,EAAW,MAAM,uBAAuB,CAAA;AACjE,OAAO,EAAE,qBAAqB,EAAE,mBAAmB,EAAE,MAAM,uBAAuB,CAAA;AAElF,MAAM,eAAe,GAAG;IACtB,KAAK,EAAE,CAAC;IACR,IAAI,EAAE,CAAC;CACC,CAAA;AAKV,MAAM,CAAC,MAAM,oBAAoB,GAAgC,gBAAgB,CAC/E,YAAY,EACZ,qBAAqB,CAAC,eAAe,CAAC,CACvC,CAAA;AAED,MAAM,CAAC,MAAM,oBAAoB,GAAgC,gBAAgB,CAC/E,YAAY,EACZ,mBAAmB,CAAC,eAAe,CAAC,CACrC,CAAA"}

package/dist/crypto/aead.d.ts

@@ -0,0 +1,5 @@
+export type AeadAlgorithm = "AES128GCM" | "CHACHA20POLY1305" | "AES256GCM";
+export interface Aead {
+    encrypt(key: Uint8Array, nonce: Uint8Array, aad: Uint8Array, plaintext: Uint8Array): Promise<Uint8Array>;
+    decrypt(key: Uint8Array, nonce: Uint8Array, aad: Uint8Array, ciphertext: Uint8Array): Promise<Uint8Array>;
+}

package/dist/crypto/aead.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=aead.js.map

package/dist/crypto/aead.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"aead.js","sourceRoot":"","sources":["../../src/crypto/aead.ts"],"names":[],"mappings":""}

package/dist/crypto/ciphersuite.d.ts

@@ -0,0 +1,49 @@
+import { Signature, SignatureAlgorithm } from "./signature.js";
+import { Hash, HashAlgorithm } from "./hash.js";
+import { Kdf } from "./kdf.js";
+import { Hpke, HpkeAlgorithm } from "./hpke.js";
+import { Encoder } from "../codec/tlsEncoder.js";
+import { Decoder } from "../codec/tlsDecoder.js";
+import { Rng } from "./rng.js";
+export interface CiphersuiteImpl {
+    hash: Hash;
+    hpke: Hpke;
+    signature: Signature;
+    kdf: Kdf;
+    rng: Rng;
+    name: CiphersuiteName;
+}
+export declare const ciphersuites: {
+    readonly MLS_128_DHKEMX25519_AES128GCM_SHA256_Ed25519: 1;
+    readonly MLS_128_DHKEMP256_AES128GCM_SHA256_P256: 2;
+    readonly MLS_128_DHKEMX25519_CHACHA20POLY1305_SHA256_Ed25519: 3;
+    readonly MLS_256_DHKEMX448_AES256GCM_SHA512_Ed448: 4;
+    readonly MLS_256_DHKEMP521_AES256GCM_SHA512_P521: 5;
+    readonly MLS_256_DHKEMX448_CHACHA20POLY1305_SHA512_Ed448: 6;
+    readonly MLS_256_DHKEMP384_AES256GCM_SHA384_P384: 7;
+    readonly MLS_128_MLKEM512_AES128GCM_SHA256_Ed25519: 77;
+    readonly MLS_128_MLKEM512_CHACHA20POLY1305_SHA256_Ed25519: 78;
+    readonly MLS_256_MLKEM768_AES256GCM_SHA384_Ed25519: 79;
+    readonly MLS_256_MLKEM768_CHACHA20POLY1305_SHA384_Ed25519: 80;
+    readonly MLS_256_MLKEM1024_AES256GCM_SHA512_Ed25519: 81;
+    readonly MLS_256_MLKEM1024_CHACHA20POLY1305_SHA512_Ed25519: 82;
+    readonly MLS_256_XWING_AES256GCM_SHA512_Ed25519: 83;
+    readonly MLS_256_XWING_CHACHA20POLY1305_SHA512_Ed25519: 84;
+    readonly MLS_256_MLKEM1024_AES256GCM_SHA512_MLDSA87: 85;
+    readonly MLS_256_MLKEM1024_CHACHA20POLY1305_SHA512_MLDSA87: 86;
+    readonly MLS_256_XWING_AES256GCM_SHA512_MLDSA87: 87;
+    readonly MLS_256_XWING_CHACHA20POLY1305_SHA512_MLDSA87: 88;
+};
+export type CiphersuiteName = keyof typeof ciphersuites;
+export type CiphersuiteId = (typeof ciphersuites)[CiphersuiteName];
+export declare const encodeCiphersuite: Encoder<CiphersuiteName>;
+export declare const decodeCiphersuite: Decoder<CiphersuiteName>;
+export declare function getCiphersuiteNameFromId(id: CiphersuiteId): CiphersuiteName;
+export declare function getCiphersuiteFromId(id: CiphersuiteId): Ciphersuite;
+export declare function getCiphersuiteFromName(name: CiphersuiteName): Ciphersuite;
+export type Ciphersuite = {
+    hash: HashAlgorithm;
+    hpke: HpkeAlgorithm;
+    signature: SignatureAlgorithm;
+    name: CiphersuiteName;
+};

package/dist/crypto/ciphersuite.js

@@ -0,0 +1,229 @@
+import { contramapEncoder } from "../codec/tlsEncoder.js";
+import { decodeUint16, encodeUint16 } from "../codec/number.js";
+import { mapDecoderOption } from "../codec/tlsDecoder.js";
+import { openEnumNumberEncoder, openEnumNumberToKey, reverseMap } from "../util/enumHelpers.js";
+export const ciphersuites = {
+    MLS_128_DHKEMX25519_AES128GCM_SHA256_Ed25519: 1,
+    MLS_128_DHKEMP256_AES128GCM_SHA256_P256: 2,
+    MLS_128_DHKEMX25519_CHACHA20POLY1305_SHA256_Ed25519: 3,
+    MLS_256_DHKEMX448_AES256GCM_SHA512_Ed448: 4,
+    MLS_256_DHKEMP521_AES256GCM_SHA512_P521: 5,
+    MLS_256_DHKEMX448_CHACHA20POLY1305_SHA512_Ed448: 6,
+    MLS_256_DHKEMP384_AES256GCM_SHA384_P384: 7,
+    MLS_128_MLKEM512_AES128GCM_SHA256_Ed25519: 77,
+    MLS_128_MLKEM512_CHACHA20POLY1305_SHA256_Ed25519: 78,
+    MLS_256_MLKEM768_AES256GCM_SHA384_Ed25519: 79,
+    MLS_256_MLKEM768_CHACHA20POLY1305_SHA384_Ed25519: 80,
+    MLS_256_MLKEM1024_AES256GCM_SHA512_Ed25519: 81,
+    MLS_256_MLKEM1024_CHACHA20POLY1305_SHA512_Ed25519: 82,
+    MLS_256_XWING_AES256GCM_SHA512_Ed25519: 83,
+    MLS_256_XWING_CHACHA20POLY1305_SHA512_Ed25519: 84,
+    MLS_256_MLKEM1024_AES256GCM_SHA512_MLDSA87: 85,
+    MLS_256_MLKEM1024_CHACHA20POLY1305_SHA512_MLDSA87: 86,
+    MLS_256_XWING_AES256GCM_SHA512_MLDSA87: 87,
+    MLS_256_XWING_CHACHA20POLY1305_SHA512_MLDSA87: 88,
+};
+export const encodeCiphersuite = contramapEncoder(encodeUint16, openEnumNumberEncoder(ciphersuites));
+export const decodeCiphersuite = mapDecoderOption(decodeUint16, openEnumNumberToKey(ciphersuites));
+export function getCiphersuiteNameFromId(id) {
+    return reverseMap(ciphersuites)[id];
+}
+export function getCiphersuiteFromId(id) {
+    return ciphersuiteValues[id];
+}
+export function getCiphersuiteFromName(name) {
+    return ciphersuiteValues[ciphersuites[name]];
+}
+const ciphersuiteValues = {
+    1: {
+        hash: "SHA-256",
+        hpke: {
+            kem: "DHKEM-X25519-HKDF-SHA256",
+            aead: "AES128GCM",
+            kdf: "HKDF-SHA256",
+        },
+        signature: "Ed25519",
+        name: "MLS_128_DHKEMX25519_AES128GCM_SHA256_Ed25519",
+    },
+    2: {
+        hash: "SHA-256",
+        hpke: {
+            kem: "DHKEM-P256-HKDF-SHA256",
+            aead: "AES128GCM",
+            kdf: "HKDF-SHA256",
+        },
+        signature: "P256",
+        name: "MLS_128_DHKEMP256_AES128GCM_SHA256_P256",
+    },
+    3: {
+        hash: "SHA-256",
+        hpke: {
+            kem: "DHKEM-X25519-HKDF-SHA256",
+            aead: "CHACHA20POLY1305",
+            kdf: "HKDF-SHA256",
+        },
+        signature: "Ed25519",
+        name: "MLS_128_DHKEMX25519_CHACHA20POLY1305_SHA256_Ed25519",
+    },
+    4: {
+        hash: "SHA-512",
+        hpke: {
+            kem: "DHKEM-X448-HKDF-SHA512",
+            aead: "AES256GCM",
+            kdf: "HKDF-SHA512",
+        },
+        signature: "Ed448",
+        name: "MLS_256_DHKEMX448_AES256GCM_SHA512_Ed448",
+    },
+    5: {
+        hash: "SHA-512",
+        hpke: {
+            kem: "DHKEM-P521-HKDF-SHA512",
+            aead: "AES256GCM",
+            kdf: "HKDF-SHA512",
+        },
+        signature: "P521",
+        name: "MLS_256_DHKEMP521_AES256GCM_SHA512_P521",
+    },
+    6: {
+        hash: "SHA-512",
+        hpke: {
+            kem: "DHKEM-X448-HKDF-SHA512",
+            aead: "CHACHA20POLY1305",
+            kdf: "HKDF-SHA512",
+        },
+        signature: "Ed448",
+        name: "MLS_256_DHKEMX448_CHACHA20POLY1305_SHA512_Ed448",
+    },
+    7: {
+        hash: "SHA-384",
+        hpke: {
+            kem: "DHKEM-P384-HKDF-SHA384",
+            aead: "AES256GCM",
+            kdf: "HKDF-SHA384",
+        },
+        signature: "P384",
+        name: "MLS_256_DHKEMP384_AES256GCM_SHA384_P384",
+    },
+    77: {
+        hash: "SHA-256",
+        hpke: {
+            kem: "ML-KEM-512",
+            aead: "AES256GCM",
+            kdf: "HKDF-SHA512",
+        },
+        signature: "Ed25519",
+        name: "MLS_128_MLKEM512_AES128GCM_SHA256_Ed25519",
+    },
+    78: {
+        hash: "SHA-256",
+        hpke: {
+            kem: "ML-KEM-512",
+            aead: "CHACHA20POLY1305",
+            kdf: "HKDF-SHA512",
+        },
+        signature: "Ed25519",
+        name: "MLS_128_MLKEM512_CHACHA20POLY1305_SHA256_Ed25519",
+    },
+    79: {
+        hash: "SHA-384",
+        hpke: {
+            kem: "ML-KEM-768",
+            aead: "AES256GCM",
+            kdf: "HKDF-SHA512",
+        },
+        signature: "Ed25519",
+        name: "MLS_256_MLKEM768_AES256GCM_SHA384_Ed25519",
+    },
+    80: {
+        hash: "SHA-384",
+        hpke: {
+            kem: "ML-KEM-768",
+            aead: "CHACHA20POLY1305",
+            kdf: "HKDF-SHA512",
+        },
+        signature: "Ed25519",
+        name: "MLS_256_MLKEM768_CHACHA20POLY1305_SHA384_Ed25519",
+    },
+    81: {
+        hash: "SHA-512",
+        hpke: {
+            kem: "ML-KEM-1024",
+            aead: "AES256GCM",
+            kdf: "HKDF-SHA512",
+        },
+        signature: "Ed25519",
+        name: "MLS_256_MLKEM1024_AES256GCM_SHA512_Ed25519",
+    },
+    82: {
+        hash: "SHA-512",
+        hpke: {
+            kem: "ML-KEM-1024",
+            aead: "CHACHA20POLY1305",
+            kdf: "HKDF-SHA512",
+        },
+        signature: "Ed25519",
+        name: "MLS_256_MLKEM1024_CHACHA20POLY1305_SHA512_Ed25519",
+    },
+    83: {
+        hash: "SHA-512",
+        hpke: {
+            kem: "X-Wing",
+            aead: "AES256GCM",
+            kdf: "HKDF-SHA512",
+        },
+        signature: "Ed25519",
+        name: "MLS_256_XWING_AES256GCM_SHA512_Ed25519",
+    },
+    84: {
+        hash: "SHA-512",
+        hpke: {
+            kem: "X-Wing",
+            aead: "CHACHA20POLY1305",
+            kdf: "HKDF-SHA512",
+        },
+        signature: "Ed25519",
+        name: "MLS_256_XWING_CHACHA20POLY1305_SHA512_Ed25519",
+    },
+    85: {
+        hash: "SHA-512",
+        hpke: {
+            kem: "ML-KEM-1024",
+            aead: "AES256GCM",
+            kdf: "HKDF-SHA512",
+        },
+        signature: "ML-DSA-87",
+        name: "MLS_256_MLKEM1024_AES256GCM_SHA512_MLDSA87",
+    },
+    86: {
+        hash: "SHA-512",
+        hpke: {
+            kem: "ML-KEM-1024",
+            aead: "CHACHA20POLY1305",
+            kdf: "HKDF-SHA512",
+        },
+        signature: "ML-DSA-87",
+        name: "MLS_256_MLKEM1024_CHACHA20POLY1305_SHA512_MLDSA87",
+    },
+    87: {
+        hash: "SHA-512",
+        hpke: {
+            kem: "X-Wing",
+            aead: "AES256GCM",
+            kdf: "HKDF-SHA512",
+        },
+        signature: "ML-DSA-87",
+        name: "MLS_256_XWING_AES256GCM_SHA512_MLDSA87",
+    },
+    88: {
+        hash: "SHA-512",
+        hpke: {
+            kem: "X-Wing",
+            aead: "CHACHA20POLY1305",
+            kdf: "HKDF-SHA512",
+        },
+        signature: "ML-DSA-87",
+        name: "MLS_256_XWING_CHACHA20POLY1305_SHA512_MLDSA87",
+    },
+};
+//# sourceMappingURL=ciphersuite.js.map

package/dist/crypto/ciphersuite.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ciphersuite.js","sourceRoot":"","sources":["../../src/crypto/ciphersuite.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,gBAAgB,EAAW,MAAM,wBAAwB,CAAA;AAClE,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAA;AAC/D,OAAO,EAAW,gBAAgB,EAAE,MAAM,wBAAwB,CAAA;AAClE,OAAO,EAAE,qBAAqB,EAAE,mBAAmB,EAAE,UAAU,EAAE,MAAM,wBAAwB,CAAA;AAY/F,MAAM,CAAC,MAAM,YAAY,GAAG;IAC1B,4CAA4C,EAAE,CAAC;IAC/C,uCAAuC,EAAE,CAAC;IAC1C,mDAAmD,EAAE,CAAC;IACtD,wCAAwC,EAAE,CAAC;IAC3C,uCAAuC,EAAE,CAAC;IAC1C,+CAA+C,EAAE,CAAC;IAClD,uCAAuC,EAAE,CAAC;IAC1C,yCAAyC,EAAE,EAAE;IAC7C,gDAAgD,EAAE,EAAE;IACpD,yCAAyC,EAAE,EAAE;IAC7C,gDAAgD,EAAE,EAAE;IACpD,0CAA0C,EAAE,EAAE;IAC9C,iDAAiD,EAAE,EAAE;IACrD,sCAAsC,EAAE,EAAE;IAC1C,6CAA6C,EAAE,EAAE;IACjD,0CAA0C,EAAE,EAAE;IAC9C,iDAAiD,EAAE,EAAE;IACrD,sCAAsC,EAAE,EAAE;IAC1C,6CAA6C,EAAE,EAAE;CACzC,CAAA;AAKV,MAAM,CAAC,MAAM,iBAAiB,GAA6B,gBAAgB,CACzE,YAAY,EACZ,qBAAqB,CAAC,YAAY,CAAC,CACpC,CAAA;AAED,MAAM,CAAC,MAAM,iBAAiB,GAA6B,gBAAgB,CACzE,YAAY,EACZ,mBAAmB,CAAC,YAAY,CAAC,CAClC,CAAA;AAED,MAAM,UAAU,wBAAwB,CAAC,EAAiB;IACxD,OAAO,UAAU,CAAC,YAAY,CAAC,CAAC,EAAE,CAAoB,CAAA;AACxD,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,EAAiB;IACpD,OAAO,iBAAiB,CAAC,EAAE,CAAC,CAAA;AAC9B,CAAC;AAED,MAAM,UAAU,sBAAsB,CAAC,IAAqB;IAC1D,OAAO,iBAAiB,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,CAAA;AAC9C,CAAC;AAED,MAAM,iBAAiB,GAAuC;IAC5D,CAAC,EAAE;QACD,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,0BAA0B;YAC/B,IAAI,EAAE,WAAW;YACjB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,SAAS;QACpB,IAAI,EAAE,8CAA8C;KACrD;IACD,CAAC,EAAE;QACD,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,wBAAwB;YAC7B,IAAI,EAAE,WAAW;YACjB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,MAAM;QACjB,IAAI,EAAE,yCAAyC;KAChD;IACD,CAAC,EAAE;QACD,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,0BAA0B;YAC/B,IAAI,EAAE,kBAAkB;YACxB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,SAAS;QACpB,IAAI,EAAE,qDAAqD;KAC5D;IACD,CAAC,EAAE;QACD,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,wBAAwB;YAC7B,IAAI,EAAE,WAAW;YACjB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,OAAO;QAClB,IAAI,EAAE,0CAA0C;KACjD;IACD,CAAC,EAAE;QACD,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,wBAAwB;YAC7B,IAAI,EAAE,WAAW;YACjB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,MAAM;QACjB,IAAI,EAAE,yCAAyC;KAChD;IACD,CAAC,EAAE;QACD,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,wBAAwB;YAC7B,IAAI,EAAE,kBAAkB;YACxB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,OAAO;QAClB,IAAI,EAAE,iDAAiD;KACxD;IACD,CAAC,EAAE;QACD,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,wBAAwB;YAC7B,IAAI,EAAE,WAAW;YACjB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,MAAM;QACjB,IAAI,EAAE,yCAAyC;KAChD;IAED,EAAE,EAAE;QACF,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,YAAY;YACjB,IAAI,EAAE,WAAW;YACjB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,SAAS;QACpB,IAAI,EAAE,2CAA2C;KAClD;IACD,EAAE,EAAE;QACF,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,YAAY;YACjB,IAAI,EAAE,kBAAkB;YACxB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,SAAS;QACpB,IAAI,EAAE,kDAAkD;KACzD;IACD,EAAE,EAAE;QACF,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,YAAY;YACjB,IAAI,EAAE,WAAW;YACjB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,SAAS;QACpB,IAAI,EAAE,2CAA2C;KAClD;IACD,EAAE,EAAE;QACF,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,YAAY;YACjB,IAAI,EAAE,kBAAkB;YACxB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,SAAS;QACpB,IAAI,EAAE,kDAAkD;KACzD;IACD,EAAE,EAAE;QACF,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,aAAa;YAClB,IAAI,EAAE,WAAW;YACjB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,SAAS;QACpB,IAAI,EAAE,4CAA4C;KACnD;IACD,EAAE,EAAE;QACF,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,aAAa;YAClB,IAAI,EAAE,kBAAkB;YACxB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,SAAS;QACpB,IAAI,EAAE,mDAAmD;KAC1D;IACD,EAAE,EAAE;QACF,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,QAAQ;YACb,IAAI,EAAE,WAAW;YACjB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,SAAS;QACpB,IAAI,EAAE,wCAAwC;KAC/C;IACD,EAAE,EAAE;QACF,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,QAAQ;YACb,IAAI,EAAE,kBAAkB;YACxB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,SAAS;QACpB,IAAI,EAAE,+CAA+C;KACtD;IACD,EAAE,EAAE;QACF,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,aAAa;YAClB,IAAI,EAAE,WAAW;YACjB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,WAAW;QACtB,IAAI,EAAE,4CAA4C;KACnD;IACD,EAAE,EAAE;QACF,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,aAAa;YAClB,IAAI,EAAE,kBAAkB;YACxB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,WAAW;QACtB,IAAI,EAAE,mDAAmD;KAC1D;IACD,EAAE,EAAE;QACF,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,QAAQ;YACb,IAAI,EAAE,WAAW;YACjB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,WAAW;QACtB,IAAI,EAAE,wCAAwC;KAC/C;IACD,EAAE,EAAE;QACF,IAAI,EAAE,SAAS;QACf,IAAI,EAAE;YACJ,GAAG,EAAE,QAAQ;YACb,IAAI,EAAE,kBAAkB;YACxB,GAAG,EAAE,aAAa;SACnB;QACD,SAAS,EAAE,WAAW;QACtB,IAAI,EAAE,+CAA+C;KACtD;CACO,CAAA"}

package/dist/crypto/getCiphersuiteImpl.d.ts

@@ -0,0 +1,3 @@
+import { Ciphersuite, CiphersuiteImpl } from "./ciphersuite.js";
+import { CryptoProvider } from "./provider.js";
+export declare function getCiphersuiteImpl(cs: Ciphersuite, provider?: CryptoProvider): Promise<CiphersuiteImpl>;

package/dist/crypto/getCiphersuiteImpl.js

@@ -0,0 +1,5 @@
+import { defaultCryptoProvider } from "./implementation/default/provider.js";
+export async function getCiphersuiteImpl(cs, provider = defaultCryptoProvider) {
+    return provider.getCiphersuiteImpl(cs);
+}
+//# sourceMappingURL=getCiphersuiteImpl.js.map

package/dist/crypto/getCiphersuiteImpl.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"getCiphersuiteImpl.js","sourceRoot":"","sources":["../../src/crypto/getCiphersuiteImpl.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,qBAAqB,EAAE,MAAM,sCAAsC,CAAA;AAE5E,MAAM,CAAC,KAAK,UAAU,kBAAkB,CACtC,EAAe,EACf,WAA2B,qBAAqB;IAEhD,OAAO,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC,CAAA;AACxC,CAAC"}

package/dist/crypto/hash.d.ts

@@ -0,0 +1,7 @@
+export type HashAlgorithm = "SHA-512" | "SHA-384" | "SHA-256";
+export interface Hash {
+    digest(data: Uint8Array): Promise<Uint8Array>;
+    mac(key: Uint8Array, data: Uint8Array): Promise<Uint8Array>;
+    verifyMac(key: Uint8Array, mac: Uint8Array, data: Uint8Array): Promise<boolean>;
+}
+export declare function refhash(label: string, value: Uint8Array, h: Hash): Promise<Uint8Array<ArrayBufferLike>>;

package/dist/crypto/hash.js

@@ -0,0 +1,10 @@
+import { encodeVarLenData } from "../codec/variableLength.js";
+import { concatUint8Arrays } from "../util/byteArray.js";
+export function refhash(label, value, h) {
+    return h.digest(encodeRefHash(label, value));
+}
+function encodeRefHash(label, value) {
+    const labelBytes = new TextEncoder().encode(label);
+    return concatUint8Arrays(encodeVarLenData(labelBytes), encodeVarLenData(value));
+}
+//# sourceMappingURL=hash.js.map

package/dist/crypto/hash.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"hash.js","sourceRoot":"","sources":["../../src/crypto/hash.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,4BAA4B,CAAA;AAC7D,OAAO,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAA;AAUxD,MAAM,UAAU,OAAO,CAAC,KAAa,EAAE,KAAiB,EAAE,CAAO;IAC/D,OAAO,CAAC,CAAC,MAAM,CAAC,aAAa,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC,CAAA;AAC9C,CAAC;AAED,SAAS,aAAa,CAAC,KAAa,EAAE,KAAiB;IACrD,MAAM,UAAU,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA;IAClD,OAAO,iBAAiB,CAAC,gBAAgB,CAAC,UAAU,CAAC,EAAE,gBAAgB,CAAC,KAAK,CAAC,CAAC,CAAA;AACjF,CAAC"}

package/dist/crypto/hpke.d.ts

@@ -0,0 +1,50 @@
+import { AeadAlgorithm } from "./aead.js";
+import { KdfAlgorithm } from "./kdf.js";
+import { KemAlgorithm } from "./kem.js";
+export type PublicKey = CryptoKey & {
+    type: "public";
+};
+export type SecretKey = CryptoKey & {
+    type: "secret";
+};
+export type PrivateKey = CryptoKey & {
+    type: "private";
+};
+export interface HpkeAlgorithm {
+    kem: KemAlgorithm;
+    kdf: KdfAlgorithm;
+    aead: AeadAlgorithm;
+}
+export declare function encryptWithLabel(publicKey: PublicKey, label: string, context: Uint8Array, plaintext: Uint8Array, hpke: Hpke): Promise<{
+    ct: Uint8Array;
+    enc: Uint8Array;
+}>;
+export declare function decryptWithLabel(privateKey: PrivateKey, label: string, context: Uint8Array, kemOutput: Uint8Array, ciphertext: Uint8Array, hpke: Hpke): Promise<Uint8Array>;
+export interface Hpke {
+    open(privateKey: PrivateKey, kemOutput: Uint8Array, ciphertext: Uint8Array, info: Uint8Array, aad?: Uint8Array): Promise<Uint8Array>;
+    seal(publicKey: PublicKey, plaintext: Uint8Array, info: Uint8Array, aad?: Uint8Array): Promise<{
+        ct: Uint8Array;
+        enc: Uint8Array;
+    }>;
+    importPrivateKey(k: Uint8Array): Promise<PrivateKey>;
+    importPublicKey(k: Uint8Array): Promise<PublicKey>;
+    exportPublicKey(k: PublicKey): Promise<Uint8Array>;
+    exportPrivateKey(k: PrivateKey): Promise<Uint8Array>;
+    encryptAead(key: Uint8Array, nonce: Uint8Array, aad: Uint8Array | undefined, plaintext: Uint8Array): Promise<Uint8Array>;
+    decryptAead(key: Uint8Array, nonce: Uint8Array, aad: Uint8Array | undefined, ciphertext: Uint8Array): Promise<Uint8Array>;
+    exportSecret(publicKey: PublicKey, exporterContext: Uint8Array, length: number, info: Uint8Array): Promise<{
+        enc: Uint8Array;
+        secret: Uint8Array;
+    }>;
+    importSecret(privateKey: PrivateKey, exporterContext: Uint8Array, kemOutput: Uint8Array, length: number, info: Uint8Array): Promise<Uint8Array>;
+    deriveKeyPair(ikm: Uint8Array): Promise<{
+        privateKey: PrivateKey;
+        publicKey: PublicKey;
+    }>;
+    generateKeyPair(): Promise<{
+        privateKey: PrivateKey;
+        publicKey: PublicKey;
+    }>;
+    keyLength: number;
+    nonceLength: number;
+}

package/dist/crypto/hpke.js

@@ -0,0 +1,9 @@
+import { encodeVarLenData } from "../codec/variableLength.js";
+import { concatUint8Arrays } from "../util/byteArray.js";
+export function encryptWithLabel(publicKey, label, context, plaintext, hpke) {
+    return hpke.seal(publicKey, plaintext, concatUint8Arrays(encodeVarLenData(new TextEncoder().encode(`MLS 1.0 ${label}`)), encodeVarLenData(context)), new Uint8Array());
+}
+export function decryptWithLabel(privateKey, label, context, kemOutput, ciphertext, hpke) {
+    return hpke.open(privateKey, kemOutput, ciphertext, concatUint8Arrays(encodeVarLenData(new TextEncoder().encode(`MLS 1.0 ${label}`)), encodeVarLenData(context)));
+}
+//# sourceMappingURL=hpke.js.map

package/dist/crypto/hpke.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"hpke.js","sourceRoot":"","sources":["../../src/crypto/hpke.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,gBAAgB,EAAE,MAAM,4BAA4B,CAAA;AAC7D,OAAO,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAA;AAYxD,MAAM,UAAU,gBAAgB,CAC9B,SAAoB,EACpB,KAAa,EACb,OAAmB,EACnB,SAAqB,EACrB,IAAU;IAEV,OAAO,IAAI,CAAC,IAAI,CACd,SAAS,EACT,SAAS,EACT,iBAAiB,CAAC,gBAAgB,CAAC,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,WAAW,KAAK,EAAE,CAAC,CAAC,EAAE,gBAAgB,CAAC,OAAO,CAAC,CAAC,EAC5G,IAAI,UAAU,EAAE,CACjB,CAAA;AACH,CAAC;AAED,MAAM,UAAU,gBAAgB,CAC9B,UAAsB,EACtB,KAAa,EACb,OAAmB,EACnB,SAAqB,EACrB,UAAsB,EACtB,IAAU;IAEV,OAAO,IAAI,CAAC,IAAI,CACd,UAAU,EACV,SAAS,EACT,UAAU,EACV,iBAAiB,CAAC,gBAAgB,CAAC,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,WAAW,KAAK,EAAE,CAAC,CAAC,EAAE,gBAAgB,CAAC,OAAO,CAAC,CAAC,CAC7G,CAAA;AACH,CAAC"}

package/dist/crypto/implementation/default/makeAead.d.ts

@@ -0,0 +1,3 @@
+import { AeadInterface } from "@hpke/core";
+import { AeadAlgorithm, Aead } from "../../aead.js";
+export declare function makeAead(aeadAlg: AeadAlgorithm): Promise<[Aead, AeadInterface]>;

package/dist/crypto/implementation/default/makeAead.js

@@ -0,0 +1,69 @@
+import { Aes128Gcm, Aes256Gcm } from "@hpke/core";
+import { DependencyError } from "../../../mlsError.js";
+import { bytesToBuffer } from "../../../util/byteArray.js";
+export async function makeAead(aeadAlg) {
+    switch (aeadAlg) {
+        case "AES128GCM":
+            return [
+                {
+                    encrypt(key, nonce, aad, plaintext) {
+                        return encryptAesGcm(key, nonce, aad, plaintext);
+                    },
+                    decrypt(key, nonce, aad, ciphertext) {
+                        return decryptAesGcm(key, nonce, aad, ciphertext);
+                    },
+                },
+                new Aes128Gcm(),
+            ];
+        case "AES256GCM":
+            return [
+                {
+                    encrypt(key, nonce, aad, plaintext) {
+                        return encryptAesGcm(key, nonce, aad, plaintext);
+                    },
+                    decrypt(key, nonce, aad, ciphertext) {
+                        return decryptAesGcm(key, nonce, aad, ciphertext);
+                    },
+                },
+                new Aes256Gcm(),
+            ];
+        case "CHACHA20POLY1305":
+            try {
+                const { Chacha20Poly1305 } = await import("@hpke/chacha20poly1305");
+                const { chacha20poly1305 } = await import("@noble/ciphers/chacha.js");
+                return [
+                    {
+                        async encrypt(key, nonce, aad, plaintext) {
+                            return chacha20poly1305(key, nonce, aad).encrypt(plaintext);
+                        },
+                        async decrypt(key, nonce, aad, ciphertext) {
+                            return chacha20poly1305(key, nonce, aad).decrypt(ciphertext);
+                        },
+                    },
+                    new Chacha20Poly1305(),
+                ];
+            }
+            catch (err) {
+                throw new DependencyError("Optional dependency '@hpke/chacha20poly1305' is not installed. Please install it to use this feature.");
+            }
+    }
+}
+async function encryptAesGcm(key, nonce, aad, plaintext) {
+    const cryptoKey = await crypto.subtle.importKey("raw", bytesToBuffer(key), { name: "AES-GCM" }, false, ["encrypt"]);
+    const result = await crypto.subtle.encrypt({
+        name: "AES-GCM",
+        iv: bytesToBuffer(nonce),
+        additionalData: aad.length > 0 ? bytesToBuffer(aad) : undefined,
+    }, cryptoKey, bytesToBuffer(plaintext));
+    return new Uint8Array(result);
+}
+async function decryptAesGcm(key, nonce, aad, ciphertext) {
+    const cryptoKey = await crypto.subtle.importKey("raw", bytesToBuffer(key), { name: "AES-GCM" }, false, ["decrypt"]);
+    const result = await crypto.subtle.decrypt({
+        name: "AES-GCM",
+        iv: bytesToBuffer(nonce),
+        additionalData: aad.length > 0 ? bytesToBuffer(aad) : undefined,
+    }, cryptoKey, bytesToBuffer(ciphertext));
+    return new Uint8Array(result);
+}
+//# sourceMappingURL=makeAead.js.map

package/dist/crypto/implementation/default/makeAead.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"makeAead.js","sourceRoot":"","sources":["../../../../src/crypto/implementation/default/makeAead.ts"],"names":[],"mappings":"AAAA,OAAO,EAAiB,SAAS,EAAE,SAAS,EAAE,MAAM,YAAY,CAAA;AAChE,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAA;AACtD,OAAO,EAAE,aAAa,EAAE,MAAM,4BAA4B,CAAA;AAG1D,MAAM,CAAC,KAAK,UAAU,QAAQ,CAAC,OAAsB;IACnD,QAAQ,OAAO,EAAE,CAAC;QAChB,KAAK,WAAW;YACd,OAAO;gBACL;oBACE,OAAO,CAAC,GAAG,EAAE,KAAK,EAAE,GAAG,EAAE,SAAS;wBAChC,OAAO,aAAa,CAAC,GAAG,EAAE,KAAK,EAAE,GAAG,EAAE,SAAS,CAAC,CAAA;oBAClD,CAAC;oBACD,OAAO,CAAC,GAAG,EAAE,KAAK,EAAE,GAAG,EAAE,UAAU;wBACjC,OAAO,aAAa,CAAC,GAAG,EAAE,KAAK,EAAE,GAAG,EAAE,UAAU,CAAC,CAAA;oBACnD,CAAC;iBACF;gBACD,IAAI,SAAS,EAAE;aAChB,CAAA;QACH,KAAK,WAAW;YACd,OAAO;gBACL;oBACE,OAAO,CAAC,GAAG,EAAE,KAAK,EAAE,GAAG,EAAE,SAAS;wBAChC,OAAO,aAAa,CAAC,GAAG,EAAE,KAAK,EAAE,GAAG,EAAE,SAAS,CAAC,CAAA;oBAClD,CAAC;oBACD,OAAO,CAAC,GAAG,EAAE,KAAK,EAAE,GAAG,EAAE,UAAU;wBACjC,OAAO,aAAa,CAAC,GAAG,EAAE,KAAK,EAAE,GAAG,EAAE,UAAU,CAAC,CAAA;oBACnD,CAAC;iBACF;gBACD,IAAI,SAAS,EAAE;aAChB,CAAA;QACH,KAAK,kBAAkB;YACrB,IAAI,CAAC;gBACH,MAAM,EAAE,gBAAgB,EAAE,GAAG,MAAM,MAAM,CAAC,wBAAwB,CAAC,CAAA;gBACnE,MAAM,EAAE,gBAAgB,EAAE,GAAG,MAAM,MAAM,CAAC,0BAA0B,CAAC,CAAA;gBACrE,OAAO;oBACL;wBACE,KAAK,CAAC,OAAO,CAAC,GAAG,EAAE,KAAK,EAAE,GAAG,EAAE,SAAS;4BACtC,OAAO,gBAAgB,CAAC,GAAG,EAAE,KAAK,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;wBAC7D,CAAC;wBACD,KAAK,CAAC,OAAO,CAAC,GAAG,EAAE,KAAK,EAAE,GAAG,EAAE,UAAU;4BACvC,OAAO,gBAAgB,CAAC,GAAG,EAAE,KAAK,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,UAAU,CAAC,CAAA;wBAC9D,CAAC;qBACF;oBACD,IAAI,gBAAgB,EAAE;iBACvB,CAAA;YACH,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,MAAM,IAAI,eAAe,CACvB,uGAAuG,CACxG,CAAA;YACH,CAAC;IACL,CAAC;AACH,CAAC;AAED,KAAK,UAAU,aAAa,CAC1B,GAAe,EACf,KAAiB,EACjB,GAAe,EACf,SAAqB;IAErB,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,KAAK,EAAE,aAAa,CAAC,GAAG,CAAC,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,EAAE,KAAK,EAAE,CAAC,SAAS,CAAC,CAAC,CAAA;IACnH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,OAAO,CACxC;QACE,IAAI,EAAE,SAAS;QACf,EAAE,EAAE,aAAa,CAAC,KAAK,CAAC;QACxB,cAAc,EAAE,GAAG,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS;KAChE,EACD,SAAS,EACT,aAAa,CAAC,SAAS,CAAC,CACzB,CAAA;IACD,OAAO,IAAI,UAAU,CAAC,MAAM,CAAC,CAAA;AAC/B,CAAC;AAED,KAAK,UAAU,aAAa,CAC1B,GAAe,EACf,KAAiB,EACjB,GAAe,EACf,UAAsB;IAEtB,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,KAAK,EAAE,aAAa,CAAC,GAAG,CAAC,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,EAAE,KAAK,EAAE,CAAC,SAAS,CAAC,CAAC,CAAA;IACnH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,OAAO,CACxC;QACE,IAAI,EAAE,SAAS;QACf,EAAE,EAAE,aAAa,CAAC,KAAK,CAAC;QACxB,cAAc,EAAE,GAAG,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS;KAChE,EACD,SAAS,EACT,aAAa,CAAC,UAAU,CAAC,CAC1B,CAAA;IACD,OAAO,IAAI,UAAU,CAAC,MAAM,CAAC,CAAA;AAC/B,CAAC"}

package/dist/crypto/implementation/default/makeDhKem.d.ts

@@ -0,0 +1,3 @@
+import { KemInterface } from "@hpke/core";
+import { KemAlgorithm } from "../../kem.js";
+export declare function makeDhKem(kemAlg: KemAlgorithm): Promise<KemInterface>;

package/dist/crypto/implementation/default/makeDhKem.js

@@ -0,0 +1,49 @@
+import { DhkemP256HkdfSha256, DhkemX25519HkdfSha256, DhkemX448HkdfSha512, DhkemP521HkdfSha512, DhkemP384HkdfSha384, } from "@hpke/core";
+import { DependencyError } from "../../../mlsError.js";
+export async function makeDhKem(kemAlg) {
+    switch (kemAlg) {
+        case "DHKEM-P256-HKDF-SHA256":
+            return new DhkemP256HkdfSha256();
+        case "DHKEM-X25519-HKDF-SHA256":
+            return new DhkemX25519HkdfSha256();
+        case "DHKEM-X448-HKDF-SHA512":
+            return new DhkemX448HkdfSha512();
+        case "DHKEM-P521-HKDF-SHA512":
+            return new DhkemP521HkdfSha512();
+        case "DHKEM-P384-HKDF-SHA384":
+            return new DhkemP384HkdfSha384();
+        case "ML-KEM-512":
+            try {
+                const { MlKem512 } = await import("@hpke/ml-kem");
+                return new MlKem512();
+            }
+            catch (err) {
+                throw new DependencyError("Optional dependency '@hpke/ml-kem' is not installed. Please install it to use this feature.");
+            }
+        case "ML-KEM-768":
+            try {
+                const { MlKem768 } = await import("@hpke/ml-kem");
+                return new MlKem768();
+            }
+            catch (err) {
+                throw new DependencyError("Optional dependency '@hpke/ml-kem' is not installed. Please install it to use this feature.");
+            }
+        case "ML-KEM-1024":
+            try {
+                const { MlKem1024 } = await import("@hpke/ml-kem");
+                return new MlKem1024();
+            }
+            catch (err) {
+                throw new DependencyError("Optional dependency '@hpke/ml-kem' is not installed. Please install it to use this feature.");
+            }
+        case "X-Wing":
+            try {
+                const { XWing } = await import("@hpke/hybridkem-x-wing");
+                return new XWing();
+            }
+            catch (err) {
+                throw new DependencyError("Optional dependency '@hpke/hybridkem-x-wing' is not installed. Please install it to use this feature.");
+            }
+    }
+}
+//# sourceMappingURL=makeDhKem.js.map

package/dist/crypto/implementation/default/makeDhKem.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"makeDhKem.js","sourceRoot":"","sources":["../../../../src/crypto/implementation/default/makeDhKem.ts"],"names":[],"mappings":"AAAA,OAAO,EAEL,mBAAmB,EACnB,qBAAqB,EACrB,mBAAmB,EACnB,mBAAmB,EACnB,mBAAmB,GACpB,MAAM,YAAY,CAAA;AACnB,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAA;AAGtD,MAAM,CAAC,KAAK,UAAU,SAAS,CAAC,MAAoB;IAClD,QAAQ,MAAM,EAAE,CAAC;QACf,KAAK,wBAAwB;YAC3B,OAAO,IAAI,mBAAmB,EAAE,CAAA;QAClC,KAAK,0BAA0B;YAC7B,OAAO,IAAI,qBAAqB,EAAE,CAAA;QACpC,KAAK,wBAAwB;YAC3B,OAAO,IAAI,mBAAmB,EAAE,CAAA;QAClC,KAAK,wBAAwB;YAC3B,OAAO,IAAI,mBAAmB,EAAE,CAAA;QAClC,KAAK,wBAAwB;YAC3B,OAAO,IAAI,mBAAmB,EAAE,CAAA;QAClC,KAAK,YAAY;YACf,IAAI,CAAC;gBACH,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,MAAM,CAAC,cAAc,CAAC,CAAA;gBACjD,OAAO,IAAI,QAAQ,EAAE,CAAA;YACvB,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,MAAM,IAAI,eAAe,CACvB,6FAA6F,CAC9F,CAAA;YACH,CAAC;QAEH,KAAK,YAAY;YACf,IAAI,CAAC;gBACH,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,MAAM,CAAC,cAAc,CAAC,CAAA;gBACjD,OAAO,IAAI,QAAQ,EAAE,CAAA;YACvB,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,MAAM,IAAI,eAAe,CACvB,6FAA6F,CAC9F,CAAA;YACH,CAAC;QACH,KAAK,aAAa;YAChB,IAAI,CAAC;gBACH,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,MAAM,CAAC,cAAc,CAAC,CAAA;gBAClD,OAAO,IAAI,SAAS,EAAE,CAAA;YACxB,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,MAAM,IAAI,eAAe,CACvB,6FAA6F,CAC9F,CAAA;YACH,CAAC;QACH,KAAK,QAAQ;YACX,IAAI,CAAC;gBACH,MAAM,EAAE,KAAK,EAAE,GAAG,MAAM,MAAM,CAAC,wBAAwB,CAAC,CAAA;gBACxD,OAAO,IAAI,KAAK,EAAE,CAAA;YACpB,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,MAAM,IAAI,eAAe,CACvB,uGAAuG,CACxG,CAAA;YACH,CAAC;IACL,CAAC;AACH,CAAC"}

package/dist/crypto/implementation/default/makeHashImpl.d.ts

@@ -0,0 +1,2 @@
+import { HashAlgorithm, Hash } from "../../hash.js";
+export declare function makeHashImpl(sc: SubtleCrypto, h: HashAlgorithm): Hash;