npm - zapo-js - Versions diffs - 0.1.1 → 0.2.0 - Mend

zapo-js 0.1.1 → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (589) hide show

package/README.md +20 -4
package/dist/appstate/WaAppStateCrypto.js +19 -26
package/dist/appstate/WaAppStateSyncClient.js +293 -181
package/dist/appstate/WaAppStateSyncResponseParser.js +16 -5
package/dist/appstate/constants.js +4 -3
package/dist/appstate/{store/sqlite.js → encoding.js} +13 -8
package/dist/appstate/index.js +8 -6
package/dist/appstate/utils.js +9 -34
package/dist/auth/WaAuthClient.js +43 -61
package/dist/auth/flow/WaAuthCredentialsFlow.js +22 -15
package/dist/auth/index.js +1 -8
package/dist/auth/pairing/WaPairingCodeCrypto.js +6 -4
package/dist/auth/pairing/WaPairingFlow.js +34 -26
package/dist/auth/pairing/WaQrFlow.js +37 -24
package/dist/client/WaClient.js +275 -324
package/dist/client/WaClientFactory.js +500 -133
package/dist/client/connection/WaConnectionManager.js +301 -0
package/dist/client/connection/WaKeyShareCoordinator.js +63 -0
package/dist/client/connection/WaReceiptQueue.js +51 -0
package/dist/client/coordinators/WaAppStateMutationCoordinator.js +471 -0
package/dist/client/coordinators/WaBusinessCoordinator.js +241 -0
package/dist/client/coordinators/WaGroupCoordinator.js +30 -16
package/dist/client/coordinators/WaIncomingNodeCoordinator.js +21 -27
package/dist/client/coordinators/WaMessageDispatchCoordinator.js +439 -701
package/dist/client/coordinators/WaPassiveTasksCoordinator.js +74 -31
package/dist/client/coordinators/WaPrivacyCoordinator.js +134 -0
package/dist/client/coordinators/WaProfileCoordinator.js +212 -0
package/dist/client/coordinators/WaRetryCoordinator.js +242 -57
package/dist/client/coordinators/WaStreamControlCoordinator.js +18 -11
package/dist/client/coordinators/WaTrustedContactTokenCoordinator.js +166 -0
package/dist/client/dirty.js +74 -48
package/dist/client/events/chat.js +4 -3
package/dist/client/events/devices.js +72 -0
package/dist/client/events/group.js +62 -47
package/dist/client/events/identity.js +22 -0
package/dist/client/events/privacy-token.js +39 -0
package/dist/client/history-sync.js +94 -63
package/dist/client/incoming.js +60 -27
package/dist/client/mailbox.js +24 -23
package/dist/client/messages.js +107 -31
package/dist/client/messaging/fanout.js +199 -0
package/dist/client/messaging/key-protocol.js +130 -0
package/dist/client/messaging/participants.js +193 -0
package/dist/client/persistence/WriteBehindPersistence.js +129 -0
package/dist/client/tokens/cs-token.js +50 -0
package/dist/client/tokens/tc-token.js +25 -0
package/dist/crypto/core/hkdf.js +3 -8
package/dist/crypto/core/index.js +2 -5
package/dist/crypto/core/keys.js +6 -7
package/dist/crypto/core/nonce.js +2 -0
package/dist/crypto/core/primitives.js +12 -23
package/dist/crypto/core/random.js +26 -23
package/dist/crypto/curves/Ed25519.js +7 -8
package/dist/crypto/curves/X25519.js +38 -22
package/dist/crypto/index.js +1 -3
package/dist/crypto/math/constants.js +13 -36
package/dist/crypto/math/edwards.js +171 -44
package/dist/crypto/math/fe.js +706 -0
package/dist/crypto/math/mod.js +10 -3
package/dist/esm/appstate/WaAppStateCrypto.js +7 -14
package/dist/esm/appstate/WaAppStateSyncClient.js +284 -172
package/dist/esm/appstate/WaAppStateSyncResponseParser.js +17 -6
package/dist/esm/appstate/constants.js +3 -2
package/dist/esm/appstate/{store/sqlite.js → encoding.js} +13 -8
package/dist/esm/appstate/index.js +2 -2
package/dist/esm/appstate/utils.js +8 -30
package/dist/esm/auth/WaAuthClient.js +43 -61
package/dist/esm/auth/flow/WaAuthCredentialsFlow.js +22 -15
package/dist/esm/auth/index.js +0 -3
package/dist/esm/auth/pairing/WaPairingCodeCrypto.js +6 -4
package/dist/esm/auth/pairing/WaPairingFlow.js +28 -20
package/dist/esm/auth/pairing/WaQrFlow.js +37 -24
package/dist/esm/client/WaClient.js +275 -324
package/dist/esm/client/WaClientFactory.js +501 -134
package/dist/esm/client/connection/WaConnectionManager.js +297 -0
package/dist/esm/client/connection/WaKeyShareCoordinator.js +59 -0
package/dist/esm/client/connection/WaReceiptQueue.js +47 -0
package/dist/esm/client/coordinators/WaAppStateMutationCoordinator.js +467 -0
package/dist/esm/client/coordinators/WaBusinessCoordinator.js +238 -0
package/dist/esm/client/coordinators/WaGroupCoordinator.js +23 -9
package/dist/esm/client/coordinators/WaIncomingNodeCoordinator.js +21 -27
package/dist/esm/client/coordinators/WaMessageDispatchCoordinator.js +443 -705
package/dist/esm/client/coordinators/WaPassiveTasksCoordinator.js +74 -31
package/dist/esm/client/coordinators/WaPrivacyCoordinator.js +131 -0
package/dist/esm/client/coordinators/WaProfileCoordinator.js +209 -0
package/dist/esm/client/coordinators/WaRetryCoordinator.js +244 -59
package/dist/esm/client/coordinators/WaStreamControlCoordinator.js +19 -12
package/dist/esm/client/coordinators/WaTrustedContactTokenCoordinator.js +162 -0
package/dist/esm/client/dirty.js +69 -43
package/dist/esm/client/events/chat.js +4 -3
package/dist/esm/client/events/devices.js +68 -0
package/dist/esm/client/events/group.js +53 -39
package/dist/esm/client/events/identity.js +19 -0
package/dist/esm/client/events/privacy-token.js +36 -0
package/dist/esm/client/history-sync.js +91 -60
package/dist/esm/client/incoming.js +61 -28
package/dist/esm/client/mailbox.js +24 -23
package/dist/esm/client/messages.js +108 -32
package/dist/esm/client/messaging/fanout.js +196 -0
package/dist/esm/client/messaging/key-protocol.js +127 -0
package/dist/esm/client/messaging/participants.js +190 -0
package/dist/esm/client/persistence/WriteBehindPersistence.js +125 -0
package/dist/esm/client/tokens/cs-token.js +46 -0
package/dist/esm/client/tokens/tc-token.js +18 -0
package/dist/esm/crypto/core/hkdf.js +3 -8
package/dist/esm/crypto/core/index.js +2 -3
package/dist/esm/crypto/core/keys.js +3 -4
package/dist/esm/crypto/core/nonce.js +2 -0
package/dist/esm/crypto/core/primitives.js +12 -22
package/dist/esm/crypto/core/random.js +25 -23
package/dist/esm/crypto/curves/Ed25519.js +4 -5
package/dist/esm/crypto/curves/X25519.js +35 -19
package/dist/esm/crypto/index.js +0 -1
package/dist/esm/crypto/math/constants.js +12 -35
package/dist/esm/crypto/math/edwards.js +174 -47
package/dist/esm/crypto/math/fe.js +691 -0
package/dist/esm/crypto/math/mod.js +10 -1
package/dist/esm/index.js +1 -1
package/dist/esm/infra/log/ConsoleLogger.js +18 -17
package/dist/esm/infra/log/PinoLogger.js +15 -9
package/dist/esm/infra/log/types.js +11 -1
package/dist/esm/infra/perf/BackgroundQueue.js +478 -0
package/dist/esm/infra/perf/BoundedTaskQueue.js +16 -18
package/dist/esm/infra/perf/PromiseDedup.js +20 -0
package/dist/esm/infra/perf/SharedExclusiveGate.js +109 -0
package/dist/esm/infra/perf/StoreLock.js +77 -0
package/dist/esm/media/WaMediaCrypto.js +96 -16
package/dist/esm/media/WaMediaTransferClient.js +251 -91
package/dist/esm/media/conn.js +10 -6
package/dist/esm/media/constants.js +6 -2
package/dist/esm/message/WaMessageClient.js +30 -32
package/dist/esm/message/ack.js +6 -6
package/dist/esm/message/addon-crypto.js +59 -0
package/dist/esm/message/content.js +195 -9
package/dist/esm/message/icdc.js +76 -0
package/dist/esm/message/incoming.js +129 -122
package/dist/esm/message/index.js +2 -0
package/dist/esm/message/phash.js +3 -1
package/dist/esm/message/reporting-token.js +425 -0
package/dist/esm/message/use-case-secret.js +49 -0
package/dist/esm/protocol/appstate.js +27 -0
package/dist/esm/protocol/browser.js +10 -18
package/dist/esm/protocol/constants.js +6 -3
package/dist/esm/protocol/defaults.js +6 -0
package/dist/esm/protocol/index.js +2 -11
package/dist/esm/protocol/jid.js +133 -52
package/dist/esm/protocol/media.js +3 -3
package/dist/esm/protocol/message.js +61 -1
package/dist/esm/protocol/nodes.js +4 -0
package/dist/esm/protocol/notification.js +3 -1
package/dist/esm/protocol/privacy-token.js +17 -0
package/dist/esm/protocol/privacy.js +55 -0
package/dist/esm/protocol/stream.js +26 -1
package/dist/esm/protocol/usync.js +11 -0
package/dist/esm/retry/codec.js +216 -0
package/dist/esm/retry/constants.js +1 -1
package/dist/esm/retry/index.js +3 -2
package/dist/esm/retry/parse.js +88 -86
package/dist/esm/retry/replay.js +54 -51
package/dist/esm/retry/tracker.js +94 -0
package/dist/esm/signal/api/SignalDeviceSyncApi.js +276 -92
package/dist/esm/signal/api/SignalDigestSyncApi.js +17 -8
package/dist/esm/signal/api/SignalIdentitySyncApi.js +67 -37
package/dist/esm/signal/api/SignalMissingPreKeysSyncApi.js +86 -67
package/dist/esm/signal/api/SignalRotateKeyApi.js +4 -2
package/dist/esm/signal/api/SignalSessionSyncApi.js +36 -34
package/dist/esm/signal/api/result-map.js +10 -0
package/dist/esm/signal/constants.js +0 -4
package/dist/esm/signal/crypto/WaAdvSignature.js +13 -9
package/dist/esm/signal/{store/sqlite.js → encoding.js} +93 -60
package/dist/esm/signal/group/SenderKeyChain.js +28 -23
package/dist/esm/signal/group/SenderKeyCodec.js +5 -6
package/dist/esm/signal/group/SenderKeyManager.js +144 -115
package/dist/esm/signal/index.js +2 -0
package/dist/esm/signal/registration/keygen.js +6 -2
package/dist/esm/signal/registration/utils.js +1 -0
package/dist/esm/signal/session/SignalProtocol.js +164 -53
package/dist/esm/signal/session/SignalRatchet.js +24 -15
package/dist/esm/signal/session/SignalSession.js +14 -9
package/dist/esm/signal/session/resolver.js +221 -0
package/dist/esm/store/contracts/privacy-token.store.js +1 -0
package/dist/esm/store/createStore.js +100 -188
package/dist/esm/store/index.js +1 -10
package/dist/esm/store/locks/appstate.lock.js +26 -0
package/dist/esm/store/locks/auth.lock.js +15 -0
package/dist/esm/store/locks/contact.lock.js +20 -0
package/dist/esm/store/locks/device-list.lock.js +20 -0
package/dist/esm/store/locks/message.lock.js +21 -0
package/dist/esm/store/locks/participants.lock.js +20 -0
package/dist/esm/store/locks/privacy-token.lock.js +18 -0
package/dist/esm/store/locks/retry.lock.js +29 -0
package/dist/esm/store/locks/sender-key.lock.js +52 -0
package/dist/esm/store/locks/signal.lock.js +63 -0
package/dist/esm/store/locks/thread.lock.js +21 -0
package/dist/esm/store/noop.store.js +4 -7
package/dist/esm/store/providers/memory/appstate.store.js +38 -16
package/dist/esm/store/providers/memory/contact.store.js +5 -0
package/dist/esm/store/providers/memory/device-list.store.js +12 -34
package/dist/esm/store/providers/memory/message.store.js +11 -5
package/dist/esm/store/providers/memory/participants.store.js +1 -8
package/dist/esm/store/providers/memory/privacy-token.store.js +43 -0
package/dist/esm/store/providers/memory/retry.store.js +77 -2
package/dist/esm/store/providers/memory/sender-key.store.js +11 -8
package/dist/esm/store/providers/memory/signal.store.js +47 -18
package/dist/esm/store/providers/memory/thread.store.js +5 -0
package/dist/esm/transport/WaComms.js +28 -24
package/dist/esm/transport/WaWebSocket.js +115 -18
package/dist/esm/transport/binary/constants.js +0 -30
package/dist/esm/transport/binary/decoder.js +8 -8
package/dist/esm/transport/binary/encoder.js +10 -9
package/dist/esm/transport/binary/index.js +0 -1
package/dist/esm/transport/index.js +1 -0
package/dist/esm/transport/keepalive/WaKeepAlive.js +2 -8
package/dist/esm/transport/node/WaNodeOrchestrator.js +25 -21
package/dist/esm/transport/node/WaNodeTransport.js +0 -3
package/dist/esm/transport/node/builders/{accountSync.js → account-sync.js} +16 -36
package/dist/esm/transport/node/builders/business.js +129 -0
package/dist/esm/transport/node/builders/global.js +370 -0
package/dist/esm/transport/node/builders/index.js +7 -3
package/dist/esm/transport/node/builders/message.js +63 -230
package/dist/esm/transport/node/builders/pairing.js +2 -27
package/dist/esm/transport/node/builders/privacy-token.js +41 -0
package/dist/esm/transport/node/builders/privacy.js +48 -0
package/dist/esm/transport/node/builders/profile.js +70 -0
package/dist/esm/transport/node/builders/retry.js +10 -22
package/dist/esm/transport/node/builders/usync.js +45 -0
package/dist/esm/transport/node/helpers.js +125 -5
package/dist/esm/transport/node/usync.js +5 -0
package/dist/esm/transport/node/xml.js +35 -14
package/dist/esm/transport/noise/WaClientPayload.js +10 -10
package/dist/esm/transport/noise/WaFrameCodec.js +48 -33
package/dist/esm/transport/noise/WaNoiseCert.js +4 -7
package/dist/esm/transport/noise/WaNoiseSession.js +77 -29
package/dist/esm/transport/noise/WaNoiseSocket.js +8 -4
package/dist/esm/transport/proxy.js +27 -0
package/dist/esm/transport/stream/parse.js +17 -48
package/dist/esm/util/bytes.js +67 -45
package/dist/esm/util/coercion.js +6 -14
package/dist/esm/util/index.js +5 -0
package/dist/esm/util/primitives.js +40 -14
package/dist/index.js +7 -1
package/dist/infra/log/ConsoleLogger.js +18 -17
package/dist/infra/log/PinoLogger.js +15 -9
package/dist/infra/log/types.js +12 -0
package/dist/infra/perf/BackgroundQueue.js +482 -0
package/dist/infra/perf/BoundedTaskQueue.js +16 -18
package/dist/infra/perf/PromiseDedup.js +24 -0
package/dist/infra/perf/SharedExclusiveGate.js +113 -0
package/dist/infra/perf/StoreLock.js +81 -0
package/dist/media/WaMediaCrypto.js +95 -15
package/dist/media/WaMediaTransferClient.js +284 -91
package/dist/media/conn.js +10 -6
package/dist/media/constants.js +6 -2
package/dist/message/WaMessageClient.js +31 -33
package/dist/message/ack.js +6 -6
package/dist/message/addon-crypto.js +65 -0
package/dist/message/content.js +198 -9
package/dist/message/icdc.js +81 -0
package/dist/message/incoming.js +127 -120
package/dist/message/index.js +2 -0
package/dist/message/phash.js +3 -1
package/dist/message/reporting-token.js +429 -0
package/dist/message/use-case-secret.js +55 -0
package/dist/protocol/appstate.js +28 -1
package/dist/protocol/browser.js +10 -18
package/dist/protocol/constants.js +26 -1
package/dist/protocol/defaults.js +6 -0
package/dist/protocol/index.js +23 -42
package/dist/protocol/jid.js +140 -52
package/dist/protocol/media.js +3 -3
package/dist/protocol/message.js +62 -2
package/dist/protocol/nodes.js +4 -0
package/dist/protocol/notification.js +3 -1
package/dist/protocol/privacy-token.js +20 -0
package/dist/protocol/privacy.js +58 -0
package/dist/protocol/stream.js +27 -2
package/dist/protocol/usync.js +14 -0
package/dist/retry/codec.js +220 -0
package/dist/retry/constants.js +1 -1
package/dist/retry/index.js +7 -5
package/dist/retry/parse.js +88 -85
package/dist/retry/replay.js +52 -49
package/dist/retry/tracker.js +97 -0
package/dist/signal/api/SignalDeviceSyncApi.js +273 -89
package/dist/signal/api/SignalDigestSyncApi.js +17 -8
package/dist/signal/api/SignalIdentitySyncApi.js +66 -36
package/dist/signal/api/SignalMissingPreKeysSyncApi.js +82 -63
package/dist/signal/api/SignalRotateKeyApi.js +4 -2
package/dist/signal/api/SignalSessionSyncApi.js +36 -34
package/dist/signal/api/result-map.js +13 -0
package/dist/signal/constants.js +1 -5
package/dist/signal/crypto/WaAdvSignature.js +11 -7
package/dist/signal/{store/sqlite.js → encoding.js} +94 -61
package/dist/signal/group/SenderKeyChain.js +27 -22
package/dist/signal/group/SenderKeyCodec.js +5 -6
package/dist/signal/group/SenderKeyManager.js +144 -115
package/dist/signal/index.js +15 -1
package/dist/signal/registration/keygen.js +6 -2
package/dist/signal/registration/utils.js +1 -0
package/dist/signal/session/SignalProtocol.js +164 -53
package/dist/signal/session/SignalRatchet.js +24 -15
package/dist/signal/session/SignalSession.js +14 -9
package/dist/signal/session/resolver.js +224 -0
package/dist/store/contracts/privacy-token.store.js +2 -0
package/dist/store/createStore.js +100 -188
package/dist/store/index.js +15 -33
package/dist/store/locks/appstate.lock.js +29 -0
package/dist/store/locks/auth.lock.js +18 -0
package/dist/store/locks/contact.lock.js +23 -0
package/dist/store/locks/device-list.lock.js +23 -0
package/dist/store/locks/message.lock.js +24 -0
package/dist/store/locks/participants.lock.js +23 -0
package/dist/store/locks/privacy-token.lock.js +21 -0
package/dist/store/locks/retry.lock.js +32 -0
package/dist/store/locks/sender-key.lock.js +55 -0
package/dist/store/locks/signal.lock.js +66 -0
package/dist/store/locks/thread.lock.js +24 -0
package/dist/store/noop.store.js +4 -7
package/dist/store/providers/memory/appstate.store.js +36 -14
package/dist/store/providers/memory/contact.store.js +5 -0
package/dist/store/providers/memory/device-list.store.js +12 -34
package/dist/store/providers/memory/message.store.js +11 -5
package/dist/store/providers/memory/participants.store.js +1 -8
package/dist/store/providers/memory/privacy-token.store.js +47 -0
package/dist/store/providers/memory/retry.store.js +77 -2
package/dist/store/providers/memory/sender-key.store.js +14 -11
package/dist/store/providers/memory/signal.store.js +54 -25
package/dist/store/providers/memory/thread.store.js +5 -0
package/dist/transport/WaComms.js +30 -26
package/dist/transport/WaWebSocket.js +148 -18
package/dist/transport/binary/constants.js +1 -31
package/dist/transport/binary/decoder.js +8 -8
package/dist/transport/binary/encoder.js +10 -9
package/dist/transport/binary/index.js +0 -4
package/dist/transport/index.js +7 -1
package/dist/transport/keepalive/WaKeepAlive.js +1 -7
package/dist/transport/node/WaNodeOrchestrator.js +25 -21
package/dist/transport/node/WaNodeTransport.js +0 -3
package/dist/transport/node/builders/{accountSync.js → account-sync.js} +15 -35
package/dist/transport/node/builders/business.js +137 -0
package/dist/transport/node/builders/global.js +375 -0
package/dist/transport/node/builders/index.js +29 -17
package/dist/transport/node/builders/message.js +64 -236
package/dist/transport/node/builders/pairing.js +2 -29
package/dist/transport/node/builders/privacy-token.js +46 -0
package/dist/transport/node/builders/privacy.js +55 -0
package/dist/transport/node/builders/profile.js +78 -0
package/dist/transport/node/builders/retry.js +9 -21
package/dist/transport/node/builders/usync.js +49 -0
package/dist/transport/node/helpers.js +131 -4
package/dist/transport/node/usync.js +8 -0
package/dist/transport/node/xml.js +35 -14
package/dist/transport/noise/WaClientPayload.js +13 -13
package/dist/transport/noise/WaFrameCodec.js +47 -32
package/dist/transport/noise/WaNoiseCert.js +5 -8
package/dist/transport/noise/WaNoiseSession.js +77 -29
package/dist/transport/noise/WaNoiseSocket.js +8 -4
package/dist/transport/proxy.js +34 -0
package/dist/transport/stream/parse.js +20 -52
package/dist/types/appstate/WaAppStateCrypto.d.ts +0 -1
package/dist/types/appstate/WaAppStateSyncClient.d.ts +5 -2
package/dist/types/appstate/constants.d.ts +1 -0
package/dist/types/appstate/encoding.d.ts +7 -0
package/dist/types/appstate/index.d.ts +3 -3
package/dist/types/appstate/utils.d.ts +0 -3
package/dist/types/auth/WaAuthClient.d.ts +10 -12
package/dist/types/auth/flow/WaAuthCredentialsFlow.d.ts +1 -1
package/dist/types/auth/index.d.ts +0 -4
package/dist/types/auth/pairing/WaQrFlow.d.ts +1 -1
package/dist/types/auth/types.d.ts +7 -9
package/dist/types/client/WaClient.d.ts +42 -25
package/dist/types/client/WaClientFactory.d.ts +33 -26
package/dist/types/client/connection/WaConnectionManager.d.ts +66 -0
package/dist/types/client/connection/WaKeyShareCoordinator.d.ts +14 -0
package/dist/types/client/connection/WaReceiptQueue.d.ts +13 -0
package/dist/types/client/coordinators/WaAppStateMutationCoordinator.d.ts +46 -0
package/dist/types/client/coordinators/WaBusinessCoordinator.d.ts +57 -0
package/dist/types/client/coordinators/WaIncomingNodeCoordinator.d.ts +3 -2
package/dist/types/client/coordinators/WaMessageDispatchCoordinator.d.ts +29 -38
package/dist/types/client/coordinators/WaPassiveTasksCoordinator.d.ts +4 -0
package/dist/types/client/coordinators/WaPrivacyCoordinator.d.ts +26 -0
package/dist/types/client/coordinators/WaProfileCoordinator.d.ts +36 -0
package/dist/types/client/coordinators/WaRetryCoordinator.d.ts +8 -0
package/dist/types/client/coordinators/WaStreamControlCoordinator.d.ts +3 -2
package/dist/types/client/coordinators/WaTrustedContactTokenCoordinator.d.ts +45 -0
package/dist/types/client/dirty.d.ts +1 -0
package/dist/types/client/events/devices.d.ts +20 -0
package/dist/types/client/events/group.d.ts +2 -1
package/dist/types/client/events/identity.d.ts +9 -0
package/dist/types/client/events/privacy-token.d.ts +7 -0
package/dist/types/client/history-sync.d.ts +9 -6
package/dist/types/client/incoming.d.ts +3 -1
package/dist/types/client/index.d.ts +1 -1
package/dist/types/client/mailbox.d.ts +3 -5
package/dist/types/client/messages.d.ts +1 -2
package/dist/types/client/messaging/fanout.d.ts +14 -0
package/dist/types/client/messaging/key-protocol.d.ts +18 -0
package/dist/types/client/messaging/participants.d.ts +13 -0
package/dist/types/client/persistence/WriteBehindPersistence.d.ts +34 -0
package/dist/types/client/tokens/cs-token.d.ts +10 -0
package/dist/types/client/tokens/tc-token.d.ts +5 -0
package/dist/types/client/types.d.ts +75 -4
package/dist/types/crypto/core/hkdf.d.ts +0 -6
package/dist/types/crypto/core/index.d.ts +2 -3
package/dist/types/crypto/core/nonce.d.ts +2 -0
package/dist/types/crypto/core/primitives.d.ts +0 -1
package/dist/types/crypto/core/random.d.ts +2 -7
package/dist/types/crypto/index.d.ts +0 -1
package/dist/types/crypto/math/constants.d.ts +4 -2
package/dist/types/crypto/math/fe.d.ts +30 -0
package/dist/types/crypto/math/mod.d.ts +0 -2
package/dist/types/crypto/math/types.d.ts +11 -4
package/dist/types/index.d.ts +5 -3
package/dist/types/infra/log/ConsoleLogger.d.ts +2 -1
package/dist/types/infra/log/PinoLogger.d.ts +1 -1
package/dist/types/infra/log/types.d.ts +1 -0
package/dist/types/infra/perf/BackgroundQueue.d.ts +58 -0
package/dist/types/infra/perf/BoundedTaskQueue.d.ts +1 -1
package/dist/types/infra/perf/PromiseDedup.d.ts +4 -0
package/dist/types/infra/perf/SharedExclusiveGate.d.ts +17 -0
package/dist/types/infra/perf/StoreLock.d.ts +10 -0
package/dist/types/media/WaMediaCrypto.d.ts +3 -2
package/dist/types/media/WaMediaTransferClient.d.ts +16 -15
package/dist/types/media/constants.d.ts +1 -1
package/dist/types/media/index.d.ts +1 -1
package/dist/types/media/types.d.ts +15 -2
package/dist/types/message/addon-crypto.d.ts +25 -0
package/dist/types/message/content.d.ts +8 -0
package/dist/types/message/icdc.d.ts +13 -0
package/dist/types/message/index.d.ts +2 -0
package/dist/types/message/reporting-token.d.ts +18 -0
package/dist/types/message/types.d.ts +45 -6
package/dist/types/message/use-case-secret.d.ts +20 -0
package/dist/types/protocol/appstate.d.ts +47 -0
package/dist/types/protocol/constants.d.ts +8 -3
package/dist/types/protocol/defaults.d.ts +6 -0
package/dist/types/protocol/index.d.ts +2 -11
package/dist/types/protocol/jid.d.ts +22 -5
package/dist/types/protocol/message.d.ts +60 -0
package/dist/types/protocol/nodes.d.ts +4 -0
package/dist/types/protocol/notification.d.ts +2 -0
package/dist/types/protocol/privacy-token.d.ts +17 -0
package/dist/types/protocol/privacy.d.ts +75 -0
package/dist/types/protocol/stream.d.ts +30 -0
package/dist/types/protocol/usync.d.ts +11 -0
package/dist/types/retry/codec.d.ts +3 -0
package/dist/types/retry/index.d.ts +4 -3
package/dist/types/retry/parse.d.ts +5 -2
package/dist/types/retry/replay.d.ts +0 -4
package/dist/types/retry/tracker.d.ts +20 -0
package/dist/types/retry/types.d.ts +10 -4
package/dist/types/signal/api/SignalDeviceSyncApi.d.ts +15 -2
package/dist/types/signal/api/SignalDigestSyncApi.d.ts +6 -0
package/dist/types/signal/api/SignalIdentitySyncApi.d.ts +2 -0
package/dist/types/signal/api/SignalRotateKeyApi.d.ts +4 -5
package/dist/types/signal/api/SignalSessionSyncApi.d.ts +8 -6
package/dist/types/signal/api/result-map.d.ts +1 -0
package/dist/types/signal/constants.d.ts +0 -3
package/dist/types/signal/{store/sqlite.d.ts → encoding.d.ts} +3 -3
package/dist/types/signal/group/SenderKeyCodec.d.ts +4 -6
package/dist/types/signal/group/SenderKeyManager.d.ts +10 -5
package/dist/types/signal/index.d.ts +3 -0
package/dist/types/signal/session/SignalProtocol.d.ts +19 -4
package/dist/types/signal/session/resolver.d.ts +22 -0
package/dist/types/store/contracts/appstate.store.d.ts +4 -1
package/dist/types/store/contracts/contact.store.d.ts +1 -0
package/dist/types/store/contracts/device-list.store.d.ts +0 -3
package/dist/types/store/contracts/message.store.d.ts +1 -0
package/dist/types/store/contracts/participants.store.d.ts +0 -1
package/dist/types/store/contracts/privacy-token.store.d.ts +16 -0
package/dist/types/store/contracts/retry.store.d.ts +7 -0
package/dist/types/store/contracts/sender-key.store.d.ts +0 -1
package/dist/types/store/contracts/signal.store.d.ts +13 -0
package/dist/types/store/contracts/thread.store.d.ts +1 -0
package/dist/types/store/createStore.d.ts +1 -1
package/dist/types/store/index.d.ts +5 -13
package/dist/types/store/locks/appstate.lock.d.ts +3 -0
package/dist/types/store/locks/auth.lock.d.ts +3 -0
package/dist/types/store/locks/contact.lock.d.ts +3 -0
package/dist/types/store/locks/device-list.lock.d.ts +2 -0
package/dist/types/store/locks/message.lock.d.ts +3 -0
package/dist/types/store/locks/participants.lock.d.ts +2 -0
package/dist/types/store/locks/privacy-token.lock.d.ts +2 -0
package/dist/types/store/locks/retry.lock.d.ts +2 -0
package/dist/types/store/locks/sender-key.lock.d.ts +3 -0
package/dist/types/store/locks/signal.lock.d.ts +3 -0
package/dist/types/store/locks/thread.lock.d.ts +3 -0
package/dist/types/store/providers/memory/appstate.store.d.ts +3 -1
package/dist/types/store/providers/memory/contact.store.d.ts +1 -0
package/dist/types/store/providers/memory/device-list.store.d.ts +0 -3
package/dist/types/store/providers/memory/message.store.d.ts +1 -0
package/dist/types/store/providers/memory/participants.store.d.ts +0 -1
package/dist/types/store/providers/memory/privacy-token.store.d.ts +13 -0
package/dist/types/store/providers/memory/retry.store.d.ts +8 -0
package/dist/types/store/providers/memory/sender-key.store.d.ts +0 -1
package/dist/types/store/providers/memory/signal.store.d.ts +8 -1
package/dist/types/store/providers/memory/thread.store.d.ts +1 -0
package/dist/types/store/types.d.ts +49 -58
package/dist/types/transport/WaWebSocket.d.ts +3 -1
package/dist/types/transport/binary/constants.d.ts +0 -30
package/dist/types/transport/binary/index.d.ts +0 -1
package/dist/types/transport/index.d.ts +2 -1
package/dist/types/transport/keepalive/WaKeepAlive.d.ts +0 -1
package/dist/types/transport/node/WaNodeOrchestrator.d.ts +3 -4
package/dist/types/transport/node/WaNodeTransport.d.ts +0 -9
package/dist/types/transport/node/builders/business.d.ts +29 -0
package/dist/types/transport/node/builders/global.d.ts +102 -0
package/dist/types/transport/node/builders/group.d.ts +4 -6
package/dist/types/transport/node/builders/index.d.ts +7 -3
package/dist/types/transport/node/builders/message.d.ts +20 -30
package/dist/types/transport/node/builders/pairing.d.ts +0 -2
package/dist/types/transport/node/builders/privacy-token.d.ts +9 -0
package/dist/types/transport/node/builders/privacy.d.ts +7 -0
package/dist/types/transport/node/builders/profile.d.ts +8 -0
package/dist/types/transport/node/builders/retry.d.ts +2 -5
package/dist/types/transport/node/builders/usync.d.ts +21 -0
package/dist/types/transport/node/helpers.d.ts +13 -0
package/dist/types/transport/node/usync.d.ts +2 -0
package/dist/types/transport/noise/WaFrameCodec.d.ts +3 -0
package/dist/types/transport/noise/WaNoiseSession.d.ts +4 -2
package/dist/types/transport/noise/WaNoiseSocket.d.ts +4 -2
package/dist/types/transport/proxy.d.ts +6 -0
package/dist/types/transport/stream/parse.d.ts +0 -1
package/dist/types/transport/types.d.ts +18 -1
package/dist/types/util/bytes.d.ts +5 -0
package/dist/types/util/index.d.ts +5 -0
package/dist/types/util/primitives.d.ts +2 -0
package/dist/util/bytes.js +72 -46
package/dist/util/coercion.js +6 -14
package/dist/util/index.js +23 -0
package/dist/util/primitives.js +42 -14
package/package.json +52 -9
package/proto/index.js +1 -1
package/dist/crypto/core/constants.js +0 -4
package/dist/crypto/core/encoding.js +0 -29
package/dist/esm/crypto/core/constants.js +0 -1
package/dist/esm/crypto/core/encoding.js +0 -25
package/dist/esm/retry/outbound.js +0 -83
package/dist/esm/store/providers/sqlite/BaseSqliteStore.js +0 -37
package/dist/esm/store/providers/sqlite/appstate.store.js +0 -169
package/dist/esm/store/providers/sqlite/auth.store.js +0 -176
package/dist/esm/store/providers/sqlite/connection.js +0 -240
package/dist/esm/store/providers/sqlite/contact.store.js +0 -61
package/dist/esm/store/providers/sqlite/device-list.store.js +0 -155
package/dist/esm/store/providers/sqlite/message.store.js +0 -119
package/dist/esm/store/providers/sqlite/migrations.js +0 -347
package/dist/esm/store/providers/sqlite/participants.store.js +0 -85
package/dist/esm/store/providers/sqlite/retry.store.js +0 -144
package/dist/esm/store/providers/sqlite/sender-key.store.js +0 -203
package/dist/esm/store/providers/sqlite/signal.store.js +0 -353
package/dist/esm/store/providers/sqlite/thread.store.js +0 -72
package/dist/esm/util/base64.js +0 -18
package/dist/esm/util/signal-address.js +0 -5
package/dist/retry/outbound.js +0 -88
package/dist/store/providers/sqlite/BaseSqliteStore.js +0 -41
package/dist/store/providers/sqlite/appstate.store.js +0 -173
package/dist/store/providers/sqlite/auth.store.js +0 -180
package/dist/store/providers/sqlite/connection.js +0 -276
package/dist/store/providers/sqlite/contact.store.js +0 -65
package/dist/store/providers/sqlite/device-list.store.js +0 -159
package/dist/store/providers/sqlite/message.store.js +0 -123
package/dist/store/providers/sqlite/migrations.js +0 -350
package/dist/store/providers/sqlite/participants.store.js +0 -89
package/dist/store/providers/sqlite/retry.store.js +0 -148
package/dist/store/providers/sqlite/sender-key.store.js +0 -207
package/dist/store/providers/sqlite/signal.store.js +0 -357
package/dist/store/providers/sqlite/thread.store.js +0 -76
package/dist/types/appstate/store/sqlite.d.ts +0 -21
package/dist/types/crypto/core/constants.d.ts +0 -1
package/dist/types/crypto/core/encoding.d.ts +0 -11
package/dist/types/retry/outbound.d.ts +0 -4
package/dist/types/store/providers/sqlite/BaseSqliteStore.d.ts +0 -12
package/dist/types/store/providers/sqlite/appstate.store.d.ts +0 -15
package/dist/types/store/providers/sqlite/auth.store.d.ts +0 -10
package/dist/types/store/providers/sqlite/connection.d.ts +0 -10
package/dist/types/store/providers/sqlite/contact.store.d.ts +0 -10
package/dist/types/store/providers/sqlite/device-list.store.d.ts +0 -18
package/dist/types/store/providers/sqlite/message.store.d.ts +0 -11
package/dist/types/store/providers/sqlite/migrations.d.ts +0 -3
package/dist/types/store/providers/sqlite/participants.store.d.ts +0 -13
package/dist/types/store/providers/sqlite/retry.store.d.ts +0 -16
package/dist/types/store/providers/sqlite/sender-key.store.d.ts +0 -25
package/dist/types/store/providers/sqlite/signal.store.d.ts +0 -46
package/dist/types/store/providers/sqlite/thread.store.d.ts +0 -11
package/dist/types/util/base64.d.ts +0 -4
package/dist/types/util/signal-address.d.ts +0 -2
package/dist/util/base64.js +0 -24
package/dist/util/signal-address.js +0 -8
/package/dist/types/transport/node/builders/{accountSync.d.ts → account-sync.d.ts} +0 -0

package/dist/esm/client/tokens/tc-token.js ADDED Viewed

@@ -0,0 +1,18 @@
+export function computeBucket(unixTimeS, durationS) {
+    return Math.floor(unixTimeS / durationS);
+}
+export function tokenExpirationCutoffS(nowS, durationS, numBuckets) {
+    const currentBucket = computeBucket(nowS, durationS);
+    const cutoffBucket = currentBucket - numBuckets;
+    return cutoffBucket * durationS;
+}
+export function isTokenExpired(tokenTimestampS, nowS, durationS, numBuckets) {
+    const cutoff = tokenExpirationCutoffS(nowS, durationS, numBuckets);
+    return tokenTimestampS < cutoff;
+}
+export function shouldSendNewToken(senderTimestampS, nowS, senderDurationS) {
+    return computeBucket(senderTimestampS, senderDurationS) !== computeBucket(nowS, senderDurationS);
+}
+export function clampDuration(durationS, maxDurationS) {
+    return Math.min(durationS, maxDurationS);
+}

package/dist/esm/crypto/core/hkdf.js CHANGED Viewed

@@ -1,22 +1,17 @@
 import { webcrypto } from 'node:crypto';
 import { EMPTY_BYTES, TEXT_ENCODER, toBytesView } from '../../util/bytes.js';
-/**
- * HKDF key derivation using SHA-256
- */
 export async function hkdf(ikm, salt, info, outLength) {
     const key = await webcrypto.subtle.importKey('raw', ikm, 'HKDF', false, ['deriveBits']);
+    const infoBytes = typeof info === 'string' ? (info === '' ? EMPTY_BYTES : TEXT_ENCODER.encode(info)) : info;
     const bits = await webcrypto.subtle.deriveBits({
         name: 'HKDF',
         hash: 'SHA-256',
         salt: salt ?? EMPTY_BYTES,
-        info: typeof info === 'string' ? TEXT_ENCODER.encode(info) : info
+        info: infoBytes
     }, key, outLength * 8);
     return toBytesView(bits);
 }
-/**
- * HKDF key derivation that outputs two 32-byte keys
- */
 export async function hkdfSplit(ikm, salt, info) {
     const out = await hkdf(ikm, salt, info, 64);
-    return [out.subarray(0, 32), out.subarray(32, 64)];
+    return [out.subarray(0, 32), out.subarray(32)];
 }

package/dist/esm/crypto/core/index.js CHANGED Viewed

@@ -3,9 +3,8 @@
  */
 export { Ed25519 } from '../curves/Ed25519.js';
 export { X25519 } from '../curves/X25519.js';
-export { decodeBase64Url, assert32 } from '../core/encoding.js';
 export { hkdf, hkdfSplit } from '../core/hkdf.js';
 export { toSerializedPubKey, toRawPubKey, prependVersion, readVersionedContent } from '../core/keys.js';
 export { buildNonce } from '../core/nonce.js';
-export { randomBytesAsync, randomIntAsync } from '../core/random.js';
-export { sha1, sha256, sha512, importAesGcmKey, aesGcmEncrypt, aesGcmDecrypt, importAesCbcKey, aesCbcEncrypt, aesCbcDecrypt, importHmacKey, importHmacSha512Key, hmacSign, pbkdf2DeriveAesCtrKey, aesCtrEncrypt, aesCtrDecrypt, ed25519VerifyRaw } from '../core/primitives.js';
+export { randomBytesAsync, randomFillAsync, randomIntAsync } from '../core/random.js';
+export { sha1, sha256, sha512, importAesGcmKey, aesGcmEncrypt, aesGcmDecrypt, importAesCbcKey, aesCbcEncrypt, aesCbcDecrypt, importHmacKey, importHmacSha512Key, hmacSign, pbkdf2DeriveAesCtrKey, aesCtrEncrypt, aesCtrDecrypt } from '../core/primitives.js';

package/dist/esm/crypto/core/keys.js CHANGED Viewed

@@ -1,4 +1,5 @@
-import { SERIALIZED_PUB_KEY_PREFIX } from '../core/constants.js';
+import { assertByteLength } from '../../util/bytes.js';
+const SERIALIZED_PUB_KEY_PREFIX = 5;
 /**
  * Converts a 32-byte raw public key to 33-byte serialized format (with 0x05 prefix)
  */
@@ -9,9 +10,7 @@ export function toSerializedPubKey(key) {
         }
         return key;
     }
-    if (key.length !== 32) {
-        throw new Error(`invalid signal public key length ${key.length}`);
-    }
+    assertByteLength(key, 32, `invalid signal public key length ${key.length}`);
     const out = new Uint8Array(33);
     out[0] = SERIALIZED_PUB_KEY_PREFIX;
     out.set(key, 1);

package/dist/esm/crypto/core/nonce.js CHANGED Viewed

@@ -1,5 +1,7 @@
 /**
  * Builds a 12-byte nonce for AES-GCM encryption with counter in the last 4 bytes.
+ * Allocates a new buffer per call because concurrent Noise encrypt/decrypt operations
+ * may hold references to different nonces simultaneously.
  * Throws if counter exceeds uint32 range to prevent nonce reuse.
  */
 export function buildNonce(counter) {

package/dist/esm/crypto/core/primitives.js CHANGED Viewed

@@ -3,17 +3,20 @@
  */
 import { createHash, webcrypto } from 'node:crypto';
 import { EMPTY_BYTES, toBytesView } from '../../util/bytes.js';
+async function digestBytes(algorithm, value) {
+    return toBytesView(await webcrypto.subtle.digest(algorithm, value));
+}
 // ============================================
 // Hash functions
 // ============================================
 export async function sha256(value) {
-    return toBytesView(await webcrypto.subtle.digest('SHA-256', value));
+    return digestBytes('SHA-256', value);
 }
 export async function sha1(value) {
-    return toBytesView(await webcrypto.subtle.digest('SHA-1', value));
+    return digestBytes('SHA-1', value);
 }
 export async function sha512(value) {
-    return toBytesView(await webcrypto.subtle.digest('SHA-512', value));
+    return digestBytes('SHA-512', value);
 }
 export function md5Bytes(input) {
     return toBytesView(createHash('md5').update(input).digest());
@@ -25,12 +28,10 @@ export async function importAesGcmKey(raw, usages) {
     return webcrypto.subtle.importKey('raw', raw, 'AES-GCM', false, usages);
 }
 export async function aesGcmEncrypt(key, nonce, plaintext, aad = EMPTY_BYTES) {
-    const result = await webcrypto.subtle.encrypt({ name: 'AES-GCM', iv: nonce, additionalData: aad }, key, plaintext);
-    return toBytesView(result);
+    return toBytesView(await webcrypto.subtle.encrypt({ name: 'AES-GCM', iv: nonce, additionalData: aad }, key, plaintext));
 }
 export async function aesGcmDecrypt(key, nonce, ciphertext, aad = EMPTY_BYTES) {
-    const result = await webcrypto.subtle.decrypt({ name: 'AES-GCM', iv: nonce, additionalData: aad }, key, ciphertext);
-    return toBytesView(result);
+    return toBytesView(await webcrypto.subtle.decrypt({ name: 'AES-GCM', iv: nonce, additionalData: aad }, key, ciphertext));
 }
 // ============================================
 // AES-CBC (for Signal protocol)
@@ -42,12 +43,10 @@ export async function importAesCbcKey(keyBytes) {
     ]);
 }
 export async function aesCbcEncrypt(key, iv, plaintext) {
-    const result = await webcrypto.subtle.encrypt({ name: 'AES-CBC', iv }, key, plaintext);
-    return toBytesView(result);
+    return toBytesView(await webcrypto.subtle.encrypt({ name: 'AES-CBC', iv }, key, plaintext));
 }
 export async function aesCbcDecrypt(key, iv, ciphertext) {
-    const result = await webcrypto.subtle.decrypt({ name: 'AES-CBC', iv }, key, ciphertext);
-    return toBytesView(result);
+    return toBytesView(await webcrypto.subtle.decrypt({ name: 'AES-CBC', iv }, key, ciphertext));
 }
 // ============================================
 // HMAC-SHA256 (for Signal protocol)
@@ -86,17 +85,8 @@ export async function pbkdf2DeriveAesCtrKey(password, salt, iterations) {
 // AES-CTR (for pairing code crypto)
 // ============================================
 export async function aesCtrEncrypt(key, counter, plaintext) {
-    const result = await webcrypto.subtle.encrypt({ name: 'AES-CTR', counter, length: 64 }, key, plaintext);
-    return toBytesView(result);
+    return toBytesView(await webcrypto.subtle.encrypt({ name: 'AES-CTR', counter, length: 64 }, key, plaintext));
 }
 export async function aesCtrDecrypt(key, counter, ciphertext) {
-    const result = await webcrypto.subtle.decrypt({ name: 'AES-CTR', counter, length: 64 }, key, ciphertext);
-    return toBytesView(result);
-}
-// ============================================
-// Ed25519 raw verify (for Signal variant sigs)
-// ============================================
-export async function ed25519VerifyRaw(publicKey, signature, message) {
-    const cryptoKey = await webcrypto.subtle.importKey('raw', publicKey, { name: 'Ed25519' }, false, ['verify']);
-    return webcrypto.subtle.verify('Ed25519', cryptoKey, signature, message);
+    return toBytesView(await webcrypto.subtle.decrypt({ name: 'AES-CTR', counter, length: 64 }, key, ciphertext));
 }

package/dist/esm/crypto/core/random.js CHANGED Viewed

@@ -1,28 +1,30 @@
-import { randomBytes, randomInt } from 'node:crypto';
+import { randomBytes, randomFill, randomInt } from 'node:crypto';
+import { promisify } from 'node:util';
 import { toBytesView } from '../../util/bytes.js';
-/**
- * Generates cryptographically secure random bytes
- */
-export function randomBytesAsync(size) {
-    return new Promise((resolve, reject) => {
-        randomBytes(size, (error, buffer) => {
-            if (error)
-                reject(error);
-            else
-                resolve(toBytesView(buffer));
-        });
-    });
+const randomBytesAsyncImpl = promisify(randomBytes);
+const randomIntAsyncImpl = promisify(randomInt);
+export async function randomBytesAsync(size) {
+    return toBytesView(await randomBytesAsyncImpl(size));
 }
-/**
- * Generates a cryptographically secure random integer in the range [min, max)
- */
-export function randomIntAsync(min, max) {
-    return new Promise((resolve, reject) => {
-        randomInt(min, max, (error, value) => {
-            if (error)
+export async function randomFillAsync(target, offset, size) {
+    await new Promise((resolve, reject) => {
+        const onDone = (error) => {
+            if (error) {
                 reject(error);
-            else
-                resolve(value);
-        });
+                return;
+            }
+            resolve();
+        };
+        if (offset === undefined) {
+            randomFill(target, onDone);
+            return;
+        }
+        if (size === undefined) {
+            randomFill(target, offset, onDone);
+            return;
+        }
+        randomFill(target, offset, size, onDone);
     });
+    return target;
 }
+export const randomIntAsync = randomIntAsyncImpl;

package/dist/esm/crypto/curves/Ed25519.js CHANGED Viewed

@@ -1,8 +1,7 @@
 import { webcrypto } from 'node:crypto';
-import { assert32, decodeBase64Url } from '../core/encoding.js';
 import { ED25519_PKCS8_PREFIX } from '../curves/constants.js';
 import { pkcs8FromRawPrivate } from '../curves/types.js';
-import { toBytesView } from '../../util/bytes.js';
+import { assertByteLength, decodeBase64Url, toBytesView } from '../../util/bytes.js';
 export class Ed25519 {
     static async generateKeyPair() {
         const keys = (await webcrypto.subtle.generateKey({ name: 'Ed25519' }, true, [
@@ -16,7 +15,7 @@ export class Ed25519 {
         };
     }
     static async keyPairFromPrivateKey(privKey) {
-        assert32(privKey, 'ed25519 private key');
+        assertByteLength(privKey, 32, 'ed25519 private key must be 32 bytes');
         const privateKey = await webcrypto.subtle.importKey('pkcs8', pkcs8FromRawPrivate(ED25519_PKCS8_PREFIX, privKey), { name: 'Ed25519' }, true, ['sign']);
         const privateJwk = await webcrypto.subtle.exportKey('jwk', privateKey);
         return {
@@ -25,13 +24,13 @@ export class Ed25519 {
         };
     }
     static async sign(message, privKey) {
-        assert32(privKey, 'ed25519 private key');
+        assertByteLength(privKey, 32, 'ed25519 private key must be 32 bytes');
         const privateKey = await webcrypto.subtle.importKey('pkcs8', pkcs8FromRawPrivate(ED25519_PKCS8_PREFIX, privKey), { name: 'Ed25519' }, false, ['sign']);
         const signature = await webcrypto.subtle.sign('Ed25519', privateKey, message);
         return toBytesView(signature);
     }
     static async verify(message, signature, pubKey) {
-        assert32(pubKey, 'ed25519 public key');
+        assertByteLength(pubKey, 32, 'ed25519 public key must be 32 bytes');
         const publicKey = await webcrypto.subtle.importKey('raw', pubKey, { name: 'Ed25519' }, false, ['verify']);
         return webcrypto.subtle.verify('Ed25519', publicKey, signature, message);
     }

package/dist/esm/crypto/curves/X25519.js CHANGED Viewed

@@ -1,29 +1,43 @@
 import { webcrypto } from 'node:crypto';
-import { assert32, decodeBase64Url } from '../core/encoding.js';
 import { X25519_PKCS8_PREFIX } from '../curves/constants.js';
 import { pkcs8FromRawPrivate } from '../curves/types.js';
-import { bigIntToBytesLE, bytesToBigIntLE } from '../math/le.js';
-import { FIELD_P, mod, modInv } from '../math/mod.js';
-import { toBytesView } from '../../util/bytes.js';
+import { FE_ONE } from '../math/constants.js';
+import { fe, feAdd, feFromBytes, feInv, feMul, fePack, feSub } from '../math/fe.js';
+import { assertByteLength, decodeBase64Url, toBytesView } from '../../util/bytes.js';
+// Pre-allocated temps for montgomeryToEdwardsPublic (safe: single-threaded)
+const _mx = fe();
+const _m1 = fe();
+const _m2 = fe();
+const _m3 = fe();
+// p-1 = 2^255-20 in LE bytes: 0xEC, 0xFF×30, 0x7F
+// Mask bit 255 before comparing (non-canonical inputs may have it set)
+function isFieldPMinus1(b) {
+    if (b[0] !== 0xec || (b[31] & 0x7f) !== 0x7f)
+        return false;
+    for (let i = 1; i < 31; i++)
+        if (b[i] !== 0xff)
+            return false;
+    return true;
+}
 export function clampCurvePrivateKeyInPlace(privateKey) {
-    if (privateKey.length !== 32) {
-        throw new Error(`invalid curve25519 private key length ${privateKey.length}`);
-    }
+    assertByteLength(privateKey, 32, `invalid curve25519 private key length ${privateKey.length}`);
     privateKey[0] &= 248;
     privateKey[31] &= 127;
     privateKey[31] |= 64;
     return privateKey;
 }
 export function montgomeryToEdwardsPublic(curvePublicKey, signBit) {
-    if (curvePublicKey.length !== 32) {
-        throw new Error(`invalid curve25519 public key length ${curvePublicKey.length}`);
-    }
-    const x = bytesToBigIntLE(curvePublicKey);
-    if (x === FIELD_P - 1n) {
+    assertByteLength(curvePublicKey, 32, `invalid curve25519 public key length ${curvePublicKey.length}`);
+    if (isFieldPMinus1(curvePublicKey)) {
         throw new Error('invalid curve25519 low-order public key');
     }
-    const y = mod((x - 1n) * modInv(x + 1n));
-    const encoded = bigIntToBytesLE(y, 32);
+    feFromBytes(_mx, curvePublicKey);
+    feSub(_m1, _mx, FE_ONE);
+    feAdd(_m2, _mx, FE_ONE);
+    feInv(_m3, _m2);
+    feMul(_m1, _m1, _m3);
+    const encoded = new Uint8Array(32);
+    fePack(encoded, _m1);
     encoded[31] = (encoded[31] & 0x7f) | (signBit & 0x80);
     return encoded;
 }
@@ -39,7 +53,7 @@ export class X25519 {
         };
     }
     static async keyPairFromPrivateKey(privKey) {
-        assert32(privKey, 'x25519 private key');
+        assertByteLength(privKey, 32, 'x25519 private key must be 32 bytes');
         const privateKey = await webcrypto.subtle.importKey('pkcs8', pkcs8FromRawPrivate(X25519_PKCS8_PREFIX, privKey), { name: 'X25519' }, true, ['deriveBits']);
         const privateJwk = await webcrypto.subtle.exportKey('jwk', privateKey);
         return {
@@ -48,10 +62,12 @@ export class X25519 {
         };
     }
     static async scalarMult(privKey, pubKey) {
-        assert32(privKey, 'x25519 private key');
-        assert32(pubKey, 'x25519 public key');
-        const privateKey = await webcrypto.subtle.importKey('pkcs8', pkcs8FromRawPrivate(X25519_PKCS8_PREFIX, privKey), { name: 'X25519' }, false, ['deriveBits']);
-        const publicKey = await webcrypto.subtle.importKey('raw', pubKey, { name: 'X25519' }, false, []);
+        assertByteLength(privKey, 32, 'x25519 private key must be 32 bytes');
+        assertByteLength(pubKey, 32, 'x25519 public key must be 32 bytes');
+        const [privateKey, publicKey] = await Promise.all([
+            webcrypto.subtle.importKey('pkcs8', pkcs8FromRawPrivate(X25519_PKCS8_PREFIX, privKey), { name: 'X25519' }, false, ['deriveBits']),
+            webcrypto.subtle.importKey('raw', pubKey, { name: 'X25519' }, false, [])
+        ]);
         const sharedBits = await webcrypto.subtle.deriveBits({ name: 'X25519', public: publicKey }, privateKey, 256);
         return toBytesView(sharedBits);
     }

package/dist/esm/crypto/index.js CHANGED Viewed

@@ -1,3 +1,2 @@
 export * from './core/index.js';
-export { Ed25519 } from './curves/Ed25519.js';
 export { X25519 } from './curves/X25519.js';

package/dist/esm/crypto/math/constants.js CHANGED Viewed

@@ -1,41 +1,18 @@
+import { fe, feFromBigInt } from '../math/fe.js';
 export const FIELD_P = (1n << 255n) - 19n;
 export const GROUP_L = (1n << 252n) + 27742317777372353535851937790883648493n;
-function modField(value) {
-    const remainder = value % FIELD_P;
-    return remainder >= 0n ? remainder : remainder + FIELD_P;
-}
-function modPowField(base, exponent) {
-    let result = 1n;
-    let current = modField(base);
-    let power = exponent;
-    while (power > 0n) {
-        if ((power & 1n) === 1n) {
-            result = modField(result * current);
-        }
-        current = modField(current * current);
-        power >>= 1n;
-    }
-    return result;
-}
-function modInvField(value) {
-    if (value === 0n) {
-        throw new Error('field inversion by zero');
-    }
-    return modPowField(value, FIELD_P - 2n);
-}
-const BASE_X = 15112221349535400772501151409588531511454012693041857206046113283949847762202n;
-const BASE_Y = 46316835694926478169428394003475163141307993866256225615783033603165251855960n;
-export const EDWARDS_D = modField(-121665n * modInvField(121666n));
-export const TWO_D = modField(2n * EDWARDS_D);
+export const FE_TWO_D = feFromBigInt(16295367250680780974490674513165176452449235426866156013048779062215315747161n);
+export const FE_ZERO = fe();
+export const FE_ONE = feFromBigInt(1n);
 export const BASE_POINT = Object.freeze({
-    x: BASE_X,
-    y: BASE_Y,
-    z: 1n,
-    t: modField(BASE_X * BASE_Y)
+    x: feFromBigInt(15112221349535400772501151409588531511454012693041857206046113283949847762202n),
+    y: feFromBigInt(46316835694926478169428394003475163141307993866256225615783033603165251855960n),
+    z: feFromBigInt(1n),
+    t: feFromBigInt(46827403850823179245072216630277197565144205554125654976674165829533817101731n)
 });
 export const IDENTITY_POINT = Object.freeze({
-    x: 0n,
-    y: 1n,
-    z: 1n,
-    t: 0n
+    x: feFromBigInt(0n),
+    y: feFromBigInt(1n),
+    z: feFromBigInt(1n),
+    t: feFromBigInt(0n)
 });

package/dist/esm/crypto/math/edwards.js CHANGED Viewed

@@ -1,60 +1,187 @@
-import { BASE_POINT, IDENTITY_POINT, TWO_D } from '../math/constants.js';
-import { bigIntToBytesLE } from '../math/le.js';
-import { mod, modGroup, modInv } from '../math/mod.js';
+import { BASE_POINT, FE_TWO_D, IDENTITY_POINT } from '../math/constants.js';
+import { fe, feAdd, feCopy, feInv, feMul, feNeg, fePack, feSub } from '../math/fe.js';
+import { modGroup } from '../math/mod.js';
+// Pre-allocated temporaries for point operations (safe: JS is single-threaded)
+const _a = fe();
+const _b = fe();
+const _c = fe();
+const _d = fe();
+const _e = fe();
+const _f = fe();
+const _g = fe();
+const _h = fe();
+// Pre-allocated output points for hot-path operations
+function mutablePoint() {
+    return { x: fe(), y: fe(), z: fe(), t: fe() };
+}
+const _addOut = mutablePoint();
+const _dblOut = mutablePoint();
+const _negOut = mutablePoint();
+// Temporaries for feInv inside encodeExtendedPoint
+const _invZinv = fe();
+const _invX = fe();
+const _invY = fe();
+const _invXBytes = new Uint8Array(32);
+function addPointInto(out, a, b) {
+    feSub(_a, a.y, a.x);
+    feSub(_b, b.y, b.x);
+    feMul(_a, _a, _b); // aTerm
+    feAdd(_b, a.y, a.x);
+    feAdd(_c, b.y, b.x);
+    feMul(_b, _b, _c); // bTerm
+    feMul(_c, FE_TWO_D, a.t);
+    feMul(_c, _c, b.t); // cTerm
+    feAdd(_d, a.z, a.z);
+    feMul(_d, _d, b.z); // dTerm
+    feSub(_e, _b, _a); // eTerm
+    feSub(_f, _d, _c); // fTerm
+    feAdd(_g, _d, _c); // gTerm
+    feAdd(_h, _b, _a); // hTerm
+    feMul(out.x, _e, _f);
+    feMul(out.y, _g, _h);
+    feMul(out.z, _f, _g);
+    feMul(out.t, _e, _h);
+}
+function doublePointInto(out, point) {
+    feMul(_a, point.x, point.x); // aTerm = x^2
+    feMul(_b, point.y, point.y); // bTerm = y^2
+    feMul(_c, point.z, point.z);
+    feAdd(_c, _c, _c); // cTerm = 2*z^2
+    feNeg(_d, _a); // dTerm = -aTerm (a=-1 for ed25519)
+    feAdd(_e, point.x, point.y);
+    feMul(_e, _e, _e);
+    feAdd(_f, _a, _b);
+    feSub(_e, _e, _f); // eTerm = (x+y)^2 - aTerm - bTerm
+    feAdd(_g, _d, _b); // gTerm = dTerm + bTerm
+    feSub(_f, _g, _c); // fTerm = gTerm - cTerm
+    feSub(_h, _d, _b); // hTerm = dTerm - bTerm
+    feMul(out.x, _e, _f);
+    feMul(out.y, _g, _h);
+    feMul(out.z, _f, _g);
+    feMul(out.t, _e, _h);
+}
+function negatePointInto(out, p) {
+    feNeg(out.x, p.x);
+    feCopy(out.y, p.y);
+    feCopy(out.z, p.z);
+    feNeg(out.t, p.t);
+}
+function clonePoint(p) {
+    const x = fe();
+    const y = fe();
+    const z = fe();
+    const t = fe();
+    feCopy(x, p.x);
+    feCopy(y, p.y);
+    feCopy(z, p.z);
+    feCopy(t, p.t);
+    return { x, y, z, t };
+}
+// Allocating versions for precomputation (runs once at module load)
 function addPoint(a, b) {
-    const y1MinusX1 = mod(a.y - a.x);
-    const y2MinusX2 = mod(b.y - b.x);
-    const y1PlusX1 = mod(a.y + a.x);
-    const y2PlusX2 = mod(b.y + b.x);
-    const aTerm = mod(y1MinusX1 * y2MinusX2);
-    const bTerm = mod(y1PlusX1 * y2PlusX2);
-    const cTerm = mod(TWO_D * a.t * b.t);
-    const dTerm = mod(2n * a.z * b.z);
-    const eTerm = mod(bTerm - aTerm);
-    const fTerm = mod(dTerm - cTerm);
-    const gTerm = mod(dTerm + cTerm);
-    const hTerm = mod(bTerm + aTerm);
-    return {
-        x: mod(eTerm * fTerm),
-        y: mod(gTerm * hTerm),
-        z: mod(fTerm * gTerm),
-        t: mod(eTerm * hTerm)
-    };
-}
-function doublePoint(point) {
-    const aTerm = mod(point.x * point.x);
-    const bTerm = mod(point.y * point.y);
-    const cTerm = mod(2n * point.z * point.z);
-    const dTerm = mod(-aTerm);
-    const eTerm = mod(mod((point.x + point.y) * (point.x + point.y)) - aTerm - bTerm);
-    const gTerm = mod(dTerm + bTerm);
-    const fTerm = mod(gTerm - cTerm);
-    const hTerm = mod(dTerm - bTerm);
-    return {
-        x: mod(eTerm * fTerm),
-        y: mod(gTerm * hTerm),
-        z: mod(fTerm * gTerm),
-        t: mod(eTerm * hTerm)
-    };
+    addPointInto(_addOut, a, b);
+    return clonePoint(_addOut);
+}
+function doublePoint(a) {
+    doublePointInto(_dblOut, a);
+    return clonePoint(_dblOut);
 }
+const W = 5;
+const halfW = 1 << W;
+const mask = halfW - 1;
+const precomp = new Array(1 << (W - 1));
+precomp[0] = BASE_POINT;
+const _dbl = doublePoint(BASE_POINT);
+for (let i = 1; i < precomp.length; i++) {
+    precomp[i] = addPoint(precomp[i - 1], _dbl);
+}
+// Pre-allocated scratch buffers for scalarMultBase (safe: JS is single-threaded)
+const _naf = new Int8Array(256);
+const _loopResult = mutablePoint();
+const _loopDbl = mutablePoint();
+const _loopAdd = mutablePoint();
 export function scalarMultBase(scalar) {
     let k = modGroup(scalar);
-    let result = IDENTITY_POINT;
-    let addend = BASE_POINT;
+    if (k === 0n)
+        return clonePoint(IDENTITY_POINT);
+    const naf = _naf;
+    naf.fill(0);
+    let nafLen = 0;
     while (k > 0n) {
         if ((k & 1n) === 1n) {
-            result = addPoint(result, addend);
+            let digit = Number(k & BigInt(mask));
+            if (digit >= halfW >> 1)
+                digit -= halfW;
+            naf[nafLen++] = digit;
+            k -= BigInt(digit);
+        }
+        else {
+            nafLen++;
         }
-        addend = doublePoint(addend);
         k >>= 1n;
     }
-    return result;
+    // Copy identity into loop result
+    feCopy(_loopResult.x, IDENTITY_POINT.x);
+    feCopy(_loopResult.y, IDENTITY_POINT.y);
+    feCopy(_loopResult.z, IDENTITY_POINT.z);
+    feCopy(_loopResult.t, IDENTITY_POINT.t);
+    for (let i = nafLen - 1; i >= 0; i--) {
+        doublePointInto(_loopDbl, _loopResult);
+        // swap dbl → result
+        const tmpX = _loopResult.x;
+        _loopResult.x = _loopDbl.x;
+        _loopDbl.x = tmpX;
+        const tmpY = _loopResult.y;
+        _loopResult.y = _loopDbl.y;
+        _loopDbl.y = tmpY;
+        const tmpZ = _loopResult.z;
+        _loopResult.z = _loopDbl.z;
+        _loopDbl.z = tmpZ;
+        const tmpT = _loopResult.t;
+        _loopResult.t = _loopDbl.t;
+        _loopDbl.t = tmpT;
+        const digit = naf[i];
+        if (digit > 0) {
+            addPointInto(_loopAdd, _loopResult, precomp[(digit - 1) >> 1]);
+            const ax = _loopResult.x;
+            _loopResult.x = _loopAdd.x;
+            _loopAdd.x = ax;
+            const ay = _loopResult.y;
+            _loopResult.y = _loopAdd.y;
+            _loopAdd.y = ay;
+            const az = _loopResult.z;
+            _loopResult.z = _loopAdd.z;
+            _loopAdd.z = az;
+            const at = _loopResult.t;
+            _loopResult.t = _loopAdd.t;
+            _loopAdd.t = at;
+        }
+        else if (digit < 0) {
+            negatePointInto(_negOut, precomp[(-digit - 1) >> 1]);
+            addPointInto(_loopAdd, _loopResult, _negOut);
+            const ax = _loopResult.x;
+            _loopResult.x = _loopAdd.x;
+            _loopAdd.x = ax;
+            const ay = _loopResult.y;
+            _loopResult.y = _loopAdd.y;
+            _loopAdd.y = ay;
+            const az = _loopResult.z;
+            _loopResult.z = _loopAdd.z;
+            _loopAdd.z = az;
+            const at = _loopResult.t;
+            _loopResult.t = _loopAdd.t;
+            _loopAdd.t = at;
+        }
+    }
+    return clonePoint(_loopResult);
 }
 export function encodeExtendedPoint(point) {
-    const zInv = modInv(point.z);
-    const x = mod(point.x * zInv);
-    const y = mod(point.y * zInv);
-    const encoded = bigIntToBytesLE(y, 32);
-    encoded[31] = (encoded[31] & 0x7f) | Number((x & 1n) << 7n);
+    feInv(_invZinv, point.z);
+    feMul(_invX, point.x, _invZinv);
+    feMul(_invY, point.y, _invZinv);
+    const encoded = new Uint8Array(32);
+    fePack(encoded, _invY);
+    fePack(_invXBytes, _invX);
+    encoded[31] = (encoded[31] & 0x7f) | ((_invXBytes[0] & 1) << 7);
     return encoded;
 }