zapo-js 0.1.2 → 0.3.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +16 -4
- package/dist/appstate/WaAppStateCrypto.js +50 -42
- package/dist/appstate/WaAppStateSyncClient.js +215 -133
- package/dist/appstate/{store/sqlite.js → encoding.js} +13 -8
- package/dist/appstate/index.js +9 -7
- package/dist/appstate/utils.js +0 -5
- package/dist/auth/WaAuthClient.js +55 -57
- package/dist/auth/credentials-flow.js +195 -0
- package/dist/auth/index.js +1 -6
- package/dist/auth/pairing/WaPairingFlow.js +39 -32
- package/dist/auth/pairing/{WaPairingCodeCrypto.js → pairing-code-crypto.js} +35 -17
- package/dist/client/WaClient.js +338 -174
- package/dist/client/WaClientFactory.js +399 -66
- package/dist/client/connection/WaConnectionManager.js +23 -11
- package/dist/client/coordinators/WaAbPropsCoordinator.js +141 -0
- package/dist/client/coordinators/WaBusinessCoordinator.js +232 -0
- package/dist/client/coordinators/WaEmailCoordinator.js +63 -0
- package/dist/client/coordinators/WaGroupCoordinator.js +11 -7
- package/dist/client/coordinators/WaIncomingNodeCoordinator.js +34 -8
- package/dist/client/coordinators/WaMessageDispatchCoordinator.js +341 -118
- package/dist/client/coordinators/WaOfflineResumeCoordinator.js +114 -0
- package/dist/client/coordinators/WaPassiveTasksCoordinator.js +97 -36
- package/dist/client/coordinators/WaPrivacyCoordinator.js +134 -0
- package/dist/client/coordinators/WaProfileCoordinator.js +214 -0
- package/dist/client/coordinators/WaRetryCoordinator.js +184 -30
- package/dist/client/coordinators/WaStreamControlCoordinator.js +18 -11
- package/dist/client/coordinators/WaTrustedContactTokenCoordinator.js +184 -0
- package/dist/client/dirty.js +41 -21
- package/dist/client/events/abprops.js +43 -0
- package/dist/client/events/devices.js +72 -0
- package/dist/client/events/group.js +3 -11
- package/dist/client/events/identity.js +22 -0
- package/dist/client/events/privacy-token.js +38 -0
- package/dist/client/events/registration.js +42 -0
- package/dist/client/history-sync.js +50 -9
- package/dist/client/incoming.js +74 -7
- package/dist/client/mailbox.js +40 -23
- package/dist/client/media.js +243 -0
- package/dist/client/messages.js +245 -92
- package/dist/client/messaging/fanout.js +21 -11
- package/dist/client/messaging/participants.js +6 -4
- package/dist/client/persistence/WriteBehindPersistence.js +129 -0
- package/dist/client/tokens/cs-token.js +50 -0
- package/dist/client/tokens/tc-token.js +25 -0
- package/dist/crypto/core/index.js +5 -2
- package/dist/crypto/core/keys.js +4 -4
- package/dist/crypto/core/nonce.js +2 -0
- package/dist/crypto/core/primitives.js +0 -8
- package/dist/crypto/core/random.js +24 -8
- package/dist/crypto/core/xeddsa.js +57 -0
- package/dist/crypto/curves/X25519.js +43 -6
- package/dist/crypto/curves/constants.js +2 -1
- package/dist/crypto/index.js +3 -0
- package/dist/crypto/math/constants.js +13 -36
- package/dist/crypto/math/edwards.js +171 -44
- package/dist/crypto/math/fe.js +706 -0
- package/dist/crypto/math/mod.js +10 -3
- package/dist/esm/appstate/WaAppStateCrypto.js +40 -32
- package/dist/esm/appstate/WaAppStateSyncClient.js +206 -124
- package/dist/esm/appstate/{store/sqlite.js → encoding.js} +13 -8
- package/dist/esm/appstate/index.js +2 -2
- package/dist/esm/appstate/{WaAppStateSyncResponseParser.js → response-parser.js} +1 -1
- package/dist/esm/appstate/utils.js +2 -5
- package/dist/esm/auth/WaAuthClient.js +52 -54
- package/dist/esm/auth/credentials-flow.js +190 -0
- package/dist/esm/auth/index.js +0 -2
- package/dist/esm/auth/pairing/WaPairingFlow.js +39 -32
- package/dist/esm/auth/pairing/{WaPairingCodeCrypto.js → pairing-code-crypto.js} +26 -10
- package/dist/esm/client/WaClient.js +339 -175
- package/dist/esm/client/WaClientFactory.js +401 -68
- package/dist/esm/client/connection/WaConnectionManager.js +23 -11
- package/dist/esm/client/coordinators/WaAbPropsCoordinator.js +137 -0
- package/dist/esm/client/coordinators/WaBusinessCoordinator.js +229 -0
- package/dist/esm/client/coordinators/WaEmailCoordinator.js +60 -0
- package/dist/esm/client/coordinators/WaGroupCoordinator.js +11 -7
- package/dist/esm/client/coordinators/WaIncomingNodeCoordinator.js +36 -10
- package/dist/esm/client/coordinators/WaMessageDispatchCoordinator.js +337 -114
- package/dist/esm/client/coordinators/WaOfflineResumeCoordinator.js +110 -0
- package/dist/esm/client/coordinators/WaPassiveTasksCoordinator.js +97 -36
- package/dist/esm/client/coordinators/WaPrivacyCoordinator.js +131 -0
- package/dist/esm/client/coordinators/WaProfileCoordinator.js +211 -0
- package/dist/esm/client/coordinators/WaRetryCoordinator.js +186 -32
- package/dist/esm/client/coordinators/WaStreamControlCoordinator.js +19 -12
- package/dist/esm/client/coordinators/WaTrustedContactTokenCoordinator.js +180 -0
- package/dist/esm/client/dirty.js +41 -21
- package/dist/esm/client/events/abprops.js +40 -0
- package/dist/esm/client/events/devices.js +68 -0
- package/dist/esm/client/events/group.js +3 -11
- package/dist/esm/client/events/identity.js +19 -0
- package/dist/esm/client/events/privacy-token.js +35 -0
- package/dist/esm/client/events/registration.js +39 -0
- package/dist/esm/client/history-sync.js +50 -9
- package/dist/esm/client/incoming.js +74 -8
- package/dist/esm/client/mailbox.js +40 -23
- package/dist/esm/client/media.js +234 -0
- package/dist/esm/client/messages.js +244 -91
- package/dist/esm/client/messaging/fanout.js +22 -12
- package/dist/esm/client/messaging/participants.js +6 -4
- package/dist/esm/client/persistence/WriteBehindPersistence.js +125 -0
- package/dist/esm/client/tokens/cs-token.js +46 -0
- package/dist/esm/client/tokens/tc-token.js +18 -0
- package/dist/esm/crypto/core/index.js +3 -2
- package/dist/esm/crypto/core/keys.js +1 -1
- package/dist/esm/crypto/core/nonce.js +2 -0
- package/dist/esm/crypto/core/primitives.js +0 -7
- package/dist/esm/crypto/core/random.js +23 -7
- package/dist/esm/crypto/core/xeddsa.js +53 -0
- package/dist/esm/crypto/curves/X25519.js +45 -8
- package/dist/esm/crypto/curves/constants.js +1 -0
- package/dist/esm/crypto/index.js +1 -0
- package/dist/esm/crypto/math/constants.js +12 -35
- package/dist/esm/crypto/math/edwards.js +174 -47
- package/dist/esm/crypto/math/fe.js +691 -0
- package/dist/esm/crypto/math/mod.js +10 -1
- package/dist/esm/index.js +1 -1
- package/dist/esm/infra/perf/BackgroundQueue.js +478 -0
- package/dist/esm/infra/perf/BoundedTaskQueue.js +3 -1
- package/dist/esm/infra/perf/PromiseDedup.js +20 -0
- package/dist/esm/infra/perf/SharedExclusiveGate.js +109 -0
- package/dist/esm/infra/perf/StoreLock.js +80 -0
- package/dist/esm/media/WaMediaCrypto.js +332 -55
- package/dist/esm/media/WaMediaTransferClient.js +69 -220
- package/dist/esm/media/constants.js +4 -1
- package/dist/esm/media/processor.js +1 -0
- package/dist/esm/message/WaMessageClient.js +26 -19
- package/dist/esm/message/addon-crypto.js +130 -3
- package/dist/esm/message/content.js +206 -14
- package/dist/esm/message/icdc.js +76 -0
- package/dist/esm/message/incoming.js +38 -24
- package/dist/esm/message/phash.js +35 -13
- package/dist/esm/message/reporting-token.js +17 -30
- package/dist/esm/message/use-case-secret.js +1 -1
- package/dist/esm/protocol/abprops.js +159 -0
- package/dist/esm/protocol/appstate.js +9 -40
- package/dist/esm/protocol/browser.js +24 -18
- package/dist/esm/protocol/constants.js +8 -4
- package/dist/esm/protocol/defaults.js +6 -0
- package/dist/esm/protocol/email.js +30 -0
- package/dist/esm/protocol/index.js +1 -2
- package/dist/esm/protocol/jid.js +142 -39
- package/dist/esm/protocol/message.js +61 -1
- package/dist/esm/protocol/nodes.js +8 -2
- package/dist/esm/protocol/notification.js +9 -1
- package/dist/esm/protocol/privacy-token.js +17 -0
- package/dist/esm/protocol/privacy.js +55 -0
- package/dist/esm/protocol/stream.js +26 -1
- package/dist/esm/retry/codec.js +216 -0
- package/dist/esm/retry/constants.js +1 -1
- package/dist/esm/retry/index.js +2 -2
- package/dist/esm/retry/parse.js +50 -30
- package/dist/esm/retry/reason.js +1 -1
- package/dist/esm/retry/replay.js +11 -7
- package/dist/esm/retry/tracker.js +50 -12
- package/dist/esm/signal/api/SignalDeviceSyncApi.js +52 -32
- package/dist/esm/signal/api/SignalDigestSyncApi.js +21 -15
- package/dist/esm/signal/api/SignalIdentitySyncApi.js +30 -15
- package/dist/esm/signal/api/SignalMissingPreKeysSyncApi.js +19 -8
- package/dist/esm/signal/api/SignalRotateKeyApi.js +4 -2
- package/dist/esm/signal/api/SignalSessionSyncApi.js +17 -8
- package/dist/esm/signal/api/result-map.js +10 -0
- package/dist/esm/signal/constants.js +0 -4
- package/dist/esm/signal/crypto/WaAdvSignature.js +5 -45
- package/dist/esm/signal/crypto/constants.js +0 -4
- package/dist/esm/signal/{store/sqlite.js → encoding.js} +40 -29
- package/dist/esm/signal/group/SenderKeyChain.js +3 -3
- package/dist/esm/signal/group/SenderKeyCodec.js +8 -8
- package/dist/esm/signal/group/SenderKeyManager.js +131 -109
- package/dist/esm/signal/index.js +1 -0
- package/dist/esm/signal/registration/keygen.js +8 -5
- package/dist/esm/signal/registration/utils.js +3 -2
- package/dist/esm/signal/session/SignalProtocol.js +158 -81
- package/dist/esm/signal/session/SignalRatchet.js +21 -10
- package/dist/esm/signal/session/SignalSerializer.js +5 -6
- package/dist/esm/signal/session/SignalSession.js +11 -9
- package/dist/esm/signal/session/resolver.js +140 -105
- package/dist/esm/store/contracts/identity.store.js +1 -0
- package/dist/esm/store/contracts/message-secret.store.js +1 -0
- package/dist/esm/store/contracts/pre-key.store.js +1 -0
- package/dist/esm/store/contracts/privacy-token.store.js +1 -0
- package/dist/esm/store/contracts/session.store.js +1 -0
- package/dist/esm/store/createStore.js +143 -193
- package/dist/esm/store/index.js +5 -10
- package/dist/esm/store/locks/appstate.lock.js +26 -0
- package/dist/esm/store/locks/auth.lock.js +15 -0
- package/dist/esm/store/locks/contact.lock.js +20 -0
- package/dist/esm/store/locks/device-list.lock.js +20 -0
- package/dist/esm/store/locks/identity.lock.js +16 -0
- package/dist/esm/store/locks/message-secret.lock.js +17 -0
- package/dist/esm/store/locks/message.lock.js +21 -0
- package/dist/esm/store/locks/participants.lock.js +20 -0
- package/dist/esm/store/locks/pre-key.lock.js +27 -0
- package/dist/esm/store/locks/privacy-token.lock.js +18 -0
- package/dist/esm/store/locks/retry.lock.js +29 -0
- package/dist/esm/store/locks/sender-key.lock.js +52 -0
- package/dist/esm/store/locks/session.lock.js +19 -0
- package/dist/esm/store/locks/signal.lock.js +39 -0
- package/dist/esm/store/locks/thread.lock.js +21 -0
- package/dist/esm/store/noop.store.js +21 -1
- package/dist/esm/store/providers/memory/appstate.store.js +22 -24
- package/dist/esm/store/providers/memory/device-list.store.js +13 -5
- package/dist/esm/store/providers/memory/identity.store.js +31 -0
- package/dist/esm/store/providers/memory/message-secret.store.js +81 -0
- package/dist/esm/store/providers/memory/participants.store.js +3 -0
- package/dist/esm/store/providers/memory/pre-key.store.js +97 -0
- package/dist/esm/store/providers/memory/privacy-token.store.js +43 -0
- package/dist/esm/store/providers/memory/retry.store.js +99 -10
- package/dist/esm/store/providers/memory/sender-key.store.js +6 -1
- package/dist/esm/store/providers/memory/session.store.js +45 -0
- package/dist/esm/store/providers/memory/signal.store.js +1 -147
- package/dist/esm/transport/WaComms.js +7 -4
- package/dist/esm/transport/WaWebSocket.js +9 -7
- package/dist/esm/transport/binary/constants.js +0 -30
- package/dist/esm/transport/binary/decoder.js +4 -4
- package/dist/esm/transport/binary/encoder.js +8 -15
- package/dist/esm/transport/binary/index.js +0 -1
- package/dist/esm/transport/index.js +6 -0
- package/dist/esm/transport/keepalive/WaKeepAlive.js +17 -8
- package/dist/esm/transport/node/WaMobileTcpSocket.js +114 -0
- package/dist/esm/transport/node/WaNodeOrchestrator.js +37 -22
- package/dist/esm/transport/node/builders/abprops.js +20 -0
- package/dist/esm/transport/node/builders/business.js +129 -0
- package/dist/esm/transport/node/builders/device.js +11 -0
- package/dist/esm/transport/node/builders/email.js +65 -0
- package/dist/esm/transport/node/builders/global.js +370 -0
- package/dist/esm/transport/node/builders/message.js +63 -239
- package/dist/esm/transport/node/builders/offline.js +14 -0
- package/dist/esm/transport/node/builders/pairing.js +0 -24
- package/dist/esm/transport/node/builders/prekeys.js +37 -40
- package/dist/esm/transport/node/builders/presence.js +13 -0
- package/dist/esm/transport/node/builders/privacy-token.js +37 -0
- package/dist/esm/transport/node/builders/privacy.js +48 -0
- package/dist/esm/transport/node/builders/profile.js +70 -0
- package/dist/esm/transport/node/builders/retry.js +11 -23
- package/dist/esm/transport/node/builders/usync.js +6 -2
- package/dist/esm/transport/node/helpers.js +43 -1
- package/dist/esm/transport/node/mex/argo-decoder.js +152 -0
- package/dist/esm/transport/node/mex/client.js +83 -0
- package/dist/esm/transport/node/mex/persist-ids.js +10 -0
- package/dist/esm/transport/node/usync.js +3 -33
- package/dist/esm/transport/node/xml.js +35 -14
- package/dist/esm/transport/noise/WaClientPayload.js +24 -19
- package/dist/esm/transport/noise/WaFrameCodec.js +2 -2
- package/dist/esm/transport/noise/WaMobileClientPayload.js +53 -0
- package/dist/esm/transport/noise/WaNoiseCert.js +9 -27
- package/dist/esm/transport/noise/WaNoiseSession.js +76 -34
- package/dist/esm/transport/noise/WaNoiseSocket.js +8 -4
- package/dist/esm/transport/stream/parse.js +8 -4
- package/dist/esm/util/bytes.js +22 -18
- package/dist/esm/util/index.js +5 -0
- package/dist/esm/util/primitives.js +3 -2
- package/dist/index.js +7 -1
- package/dist/infra/perf/BackgroundQueue.js +482 -0
- package/dist/infra/perf/BoundedTaskQueue.js +3 -1
- package/dist/infra/perf/PromiseDedup.js +24 -0
- package/dist/infra/perf/SharedExclusiveGate.js +113 -0
- package/dist/infra/perf/StoreLock.js +84 -0
- package/dist/media/WaMediaCrypto.js +328 -51
- package/dist/media/WaMediaTransferClient.js +72 -253
- package/dist/media/constants.js +5 -2
- package/dist/media/processor.js +2 -0
- package/dist/message/WaMessageClient.js +26 -19
- package/dist/message/addon-crypto.js +131 -0
- package/dist/message/content.js +211 -14
- package/dist/message/icdc.js +81 -0
- package/dist/message/incoming.js +38 -24
- package/dist/message/phash.js +35 -13
- package/dist/message/reporting-token.js +16 -30
- package/dist/message/use-case-secret.js +1 -1
- package/dist/protocol/abprops.js +163 -0
- package/dist/protocol/appstate.js +10 -41
- package/dist/protocol/browser.js +25 -18
- package/dist/protocol/constants.js +33 -2
- package/dist/protocol/defaults.js +6 -0
- package/dist/protocol/email.js +33 -0
- package/dist/protocol/index.js +8 -5
- package/dist/protocol/jid.js +149 -39
- package/dist/protocol/message.js +62 -2
- package/dist/protocol/nodes.js +8 -2
- package/dist/protocol/notification.js +10 -2
- package/dist/protocol/privacy-token.js +20 -0
- package/dist/protocol/privacy.js +58 -0
- package/dist/protocol/stream.js +27 -2
- package/dist/retry/codec.js +220 -0
- package/dist/retry/constants.js +1 -1
- package/dist/retry/index.js +5 -5
- package/dist/retry/parse.js +51 -30
- package/dist/retry/reason.js +1 -1
- package/dist/retry/replay.js +10 -6
- package/dist/retry/tracker.js +50 -12
- package/dist/signal/api/SignalDeviceSyncApi.js +51 -31
- package/dist/signal/api/SignalDigestSyncApi.js +21 -15
- package/dist/signal/api/SignalIdentitySyncApi.js +29 -14
- package/dist/signal/api/SignalMissingPreKeysSyncApi.js +17 -6
- package/dist/signal/api/SignalRotateKeyApi.js +4 -2
- package/dist/signal/api/SignalSessionSyncApi.js +16 -7
- package/dist/signal/api/result-map.js +13 -0
- package/dist/signal/constants.js +1 -5
- package/dist/signal/crypto/WaAdvSignature.js +2 -44
- package/dist/signal/crypto/constants.js +1 -5
- package/dist/signal/{store/sqlite.js → encoding.js} +41 -25
- package/dist/signal/group/SenderKeyChain.js +2 -2
- package/dist/signal/group/SenderKeyCodec.js +8 -8
- package/dist/signal/group/SenderKeyManager.js +130 -108
- package/dist/signal/index.js +13 -1
- package/dist/signal/registration/keygen.js +7 -4
- package/dist/signal/registration/utils.js +3 -2
- package/dist/signal/session/SignalProtocol.js +158 -81
- package/dist/signal/session/SignalRatchet.js +19 -8
- package/dist/signal/session/SignalSerializer.js +5 -6
- package/dist/signal/session/SignalSession.js +11 -9
- package/dist/signal/session/resolver.js +138 -103
- package/dist/store/contracts/identity.store.js +2 -0
- package/dist/store/contracts/message-secret.store.js +2 -0
- package/dist/store/contracts/pre-key.store.js +2 -0
- package/dist/store/contracts/privacy-token.store.js +2 -0
- package/dist/store/contracts/session.store.js +2 -0
- package/dist/store/createStore.js +142 -192
- package/dist/store/index.js +23 -33
- package/dist/store/locks/appstate.lock.js +29 -0
- package/dist/store/locks/auth.lock.js +18 -0
- package/dist/store/locks/contact.lock.js +23 -0
- package/dist/store/locks/device-list.lock.js +23 -0
- package/dist/store/locks/identity.lock.js +19 -0
- package/dist/store/locks/message-secret.lock.js +20 -0
- package/dist/store/locks/message.lock.js +24 -0
- package/dist/store/locks/participants.lock.js +23 -0
- package/dist/store/locks/pre-key.lock.js +30 -0
- package/dist/store/locks/privacy-token.lock.js +21 -0
- package/dist/store/locks/retry.lock.js +32 -0
- package/dist/store/locks/sender-key.lock.js +55 -0
- package/dist/store/locks/session.lock.js +22 -0
- package/dist/store/locks/signal.lock.js +42 -0
- package/dist/store/locks/thread.lock.js +24 -0
- package/dist/store/noop.store.js +22 -2
- package/dist/store/providers/memory/appstate.store.js +22 -24
- package/dist/store/providers/memory/device-list.store.js +13 -5
- package/dist/store/providers/memory/identity.store.js +35 -0
- package/dist/store/providers/memory/message-secret.store.js +85 -0
- package/dist/store/providers/memory/participants.store.js +3 -0
- package/dist/store/providers/memory/pre-key.store.js +101 -0
- package/dist/store/providers/memory/privacy-token.store.js +47 -0
- package/dist/store/providers/memory/retry.store.js +98 -9
- package/dist/store/providers/memory/sender-key.store.js +6 -1
- package/dist/store/providers/memory/session.store.js +49 -0
- package/dist/store/providers/memory/signal.store.js +1 -147
- package/dist/transport/WaComms.js +7 -4
- package/dist/transport/WaWebSocket.js +9 -7
- package/dist/transport/binary/constants.js +1 -31
- package/dist/transport/binary/decoder.js +4 -4
- package/dist/transport/binary/encoder.js +8 -15
- package/dist/transport/binary/index.js +0 -4
- package/dist/transport/index.js +17 -1
- package/dist/transport/keepalive/WaKeepAlive.js +17 -8
- package/dist/transport/node/WaMobileTcpSocket.js +118 -0
- package/dist/transport/node/WaNodeOrchestrator.js +36 -21
- package/dist/transport/node/builders/abprops.js +23 -0
- package/dist/transport/node/builders/business.js +137 -0
- package/dist/transport/node/builders/device.js +14 -0
- package/dist/transport/node/builders/email.js +72 -0
- package/dist/transport/node/builders/global.js +375 -0
- package/dist/transport/node/builders/message.js +64 -245
- package/dist/transport/node/builders/offline.js +17 -0
- package/dist/transport/node/builders/pairing.js +0 -26
- package/dist/transport/node/builders/prekeys.js +36 -39
- package/dist/transport/node/builders/presence.js +16 -0
- package/dist/transport/node/builders/privacy-token.js +42 -0
- package/dist/transport/node/builders/privacy.js +55 -0
- package/dist/transport/node/builders/profile.js +78 -0
- package/dist/transport/node/builders/retry.js +10 -22
- package/dist/transport/node/builders/usync.js +6 -2
- package/dist/transport/node/helpers.js +46 -1
- package/dist/transport/node/mex/argo-decoder.js +189 -0
- package/dist/transport/node/mex/client.js +86 -0
- package/dist/transport/node/mex/persist-ids.js +13 -0
- package/dist/transport/node/usync.js +2 -32
- package/dist/transport/node/xml.js +35 -14
- package/dist/transport/noise/WaClientPayload.js +26 -21
- package/dist/transport/noise/WaFrameCodec.js +1 -1
- package/dist/transport/noise/WaMobileClientPayload.js +56 -0
- package/dist/transport/noise/WaNoiseCert.js +8 -26
- package/dist/transport/noise/WaNoiseSession.js +75 -33
- package/dist/transport/noise/WaNoiseSocket.js +8 -4
- package/dist/transport/stream/parse.js +7 -3
- package/dist/types/appstate/WaAppStateCrypto.d.ts +11 -8
- package/dist/types/appstate/WaAppStateSyncClient.d.ts +6 -2
- package/dist/types/appstate/encoding.d.ts +7 -0
- package/dist/types/appstate/index.d.ts +3 -3
- package/dist/types/appstate/{WaAppStateSyncResponseParser.d.ts → response-parser.d.ts} +1 -1
- package/dist/types/appstate/types.d.ts +1 -1
- package/dist/types/appstate/utils.d.ts +0 -2
- package/dist/types/auth/WaAuthClient.d.ts +9 -3
- package/dist/types/auth/credentials-flow.d.ts +20 -0
- package/dist/types/auth/index.d.ts +0 -2
- package/dist/types/auth/pairing/WaPairingFlow.d.ts +3 -2
- package/dist/types/auth/pairing/{WaPairingCodeCrypto.d.ts → pairing-code-crypto.d.ts} +6 -1
- package/dist/types/auth/types.d.ts +41 -0
- package/dist/types/client/WaClient.d.ts +44 -18
- package/dist/types/client/WaClientFactory.d.ts +22 -8
- package/dist/types/client/connection/WaConnectionManager.d.ts +2 -0
- package/dist/types/client/coordinators/WaAbPropsCoordinator.d.ts +26 -0
- package/dist/types/client/coordinators/WaBusinessCoordinator.d.ts +57 -0
- package/dist/types/client/coordinators/WaEmailCoordinator.d.ts +24 -0
- package/dist/types/client/coordinators/WaIncomingNodeCoordinator.d.ts +9 -2
- package/dist/types/client/coordinators/WaMessageDispatchCoordinator.d.ts +29 -2
- package/dist/types/client/coordinators/WaOfflineResumeCoordinator.d.ts +31 -0
- package/dist/types/client/coordinators/WaPassiveTasksCoordinator.d.ts +16 -1
- package/dist/types/client/coordinators/WaPrivacyCoordinator.d.ts +26 -0
- package/dist/types/client/coordinators/WaProfileCoordinator.d.ts +38 -0
- package/dist/types/client/coordinators/WaRetryCoordinator.d.ts +12 -0
- package/dist/types/client/coordinators/WaStreamControlCoordinator.d.ts +3 -2
- package/dist/types/client/coordinators/WaTrustedContactTokenCoordinator.d.ts +55 -0
- package/dist/types/client/dirty.d.ts +3 -1
- package/dist/types/client/events/abprops.d.ts +14 -0
- package/dist/types/client/events/devices.d.ts +20 -0
- package/dist/types/client/events/identity.d.ts +9 -0
- package/dist/types/client/events/privacy-token.d.ts +7 -0
- package/dist/types/client/events/registration.d.ts +17 -0
- package/dist/types/client/history-sync.d.ts +9 -6
- package/dist/types/client/incoming.d.ts +9 -2
- package/dist/types/client/index.d.ts +1 -1
- package/dist/types/client/mailbox.d.ts +5 -5
- package/dist/types/client/media.d.ts +31 -0
- package/dist/types/client/messages.d.ts +3 -2
- package/dist/types/client/persistence/WriteBehindPersistence.d.ts +34 -0
- package/dist/types/client/tokens/cs-token.d.ts +10 -0
- package/dist/types/client/tokens/tc-token.d.ts +5 -0
- package/dist/types/client/types.d.ts +151 -4
- package/dist/types/crypto/core/index.d.ts +3 -2
- package/dist/types/crypto/core/nonce.d.ts +2 -0
- package/dist/types/crypto/core/primitives.d.ts +1 -2
- package/dist/types/crypto/core/random.d.ts +2 -1
- package/dist/types/crypto/core/xeddsa.d.ts +2 -0
- package/dist/types/crypto/curves/constants.d.ts +1 -0
- package/dist/types/crypto/index.d.ts +2 -0
- package/dist/types/crypto/math/constants.d.ts +4 -2
- package/dist/types/crypto/math/fe.d.ts +30 -0
- package/dist/types/crypto/math/mod.d.ts +0 -2
- package/dist/types/crypto/math/types.d.ts +11 -4
- package/dist/types/index.d.ts +6 -3
- package/dist/types/infra/log/ConsoleLogger.d.ts +1 -1
- package/dist/types/infra/log/PinoLogger.d.ts +1 -1
- package/dist/types/infra/perf/BackgroundQueue.d.ts +58 -0
- package/dist/types/infra/perf/PromiseDedup.d.ts +4 -0
- package/dist/types/infra/perf/SharedExclusiveGate.d.ts +17 -0
- package/dist/types/infra/perf/StoreLock.d.ts +11 -0
- package/dist/types/media/WaMediaCrypto.d.ts +16 -6
- package/dist/types/media/WaMediaTransferClient.d.ts +6 -23
- package/dist/types/media/constants.d.ts +3 -1
- package/dist/types/media/index.d.ts +2 -1
- package/dist/types/media/processor.d.ts +28 -0
- package/dist/types/media/types.d.ts +19 -5
- package/dist/types/message/addon-crypto.d.ts +34 -3
- package/dist/types/message/content.d.ts +11 -1
- package/dist/types/message/icdc.d.ts +13 -0
- package/dist/types/message/reporting-token.d.ts +0 -1
- package/dist/types/message/types.d.ts +42 -11
- package/dist/types/protocol/abprops.d.ts +142 -0
- package/dist/types/protocol/appstate.d.ts +0 -11
- package/dist/types/protocol/browser.d.ts +1 -0
- package/dist/types/protocol/constants.d.ts +12 -4
- package/dist/types/protocol/defaults.d.ts +6 -0
- package/dist/types/protocol/email.d.ts +32 -0
- package/dist/types/protocol/index.d.ts +1 -2
- package/dist/types/protocol/jid.d.ts +20 -2
- package/dist/types/protocol/message.d.ts +60 -0
- package/dist/types/protocol/nodes.d.ts +6 -0
- package/dist/types/protocol/notification.d.ts +8 -0
- package/dist/types/protocol/privacy-token.d.ts +17 -0
- package/dist/types/protocol/privacy.d.ts +75 -0
- package/dist/types/protocol/stream.d.ts +31 -0
- package/dist/types/retry/codec.d.ts +3 -0
- package/dist/types/retry/index.d.ts +3 -3
- package/dist/types/retry/parse.d.ts +5 -2
- package/dist/types/retry/reason.d.ts +1 -1
- package/dist/types/retry/tracker.d.ts +1 -0
- package/dist/types/retry/types.d.ts +6 -1
- package/dist/types/signal/api/SignalDeviceSyncApi.d.ts +2 -1
- package/dist/types/signal/api/SignalDigestSyncApi.d.ts +9 -0
- package/dist/types/signal/api/SignalIdentitySyncApi.d.ts +5 -3
- package/dist/types/signal/api/SignalRotateKeyApi.d.ts +4 -5
- package/dist/types/signal/api/SignalSessionSyncApi.d.ts +8 -6
- package/dist/types/signal/api/result-map.d.ts +1 -0
- package/dist/types/signal/constants.d.ts +0 -3
- package/dist/types/signal/crypto/WaAdvSignature.d.ts +0 -2
- package/dist/types/signal/crypto/constants.d.ts +0 -1
- package/dist/types/signal/{store/sqlite.d.ts → encoding.d.ts} +9 -3
- package/dist/types/signal/group/SenderKeyChain.d.ts +1 -1
- package/dist/types/signal/group/SenderKeyManager.d.ts +17 -7
- package/dist/types/signal/index.d.ts +2 -0
- package/dist/types/signal/registration/utils.d.ts +2 -1
- package/dist/types/signal/session/SignalProtocol.d.ts +21 -6
- package/dist/types/signal/session/SignalSerializer.d.ts +2 -1
- package/dist/types/signal/session/resolver.d.ts +11 -4
- package/dist/types/signal/types.d.ts +16 -4
- package/dist/types/store/contracts/appstate.store.d.ts +1 -1
- package/dist/types/store/contracts/identity.store.d.ts +11 -0
- package/dist/types/store/contracts/message-secret.store.d.ts +16 -0
- package/dist/types/store/contracts/pre-key.store.d.ts +13 -0
- package/dist/types/store/contracts/privacy-token.store.d.ts +16 -0
- package/dist/types/store/contracts/retry.store.d.ts +7 -0
- package/dist/types/store/contracts/session.store.d.ts +14 -0
- package/dist/types/store/contracts/signal.store.d.ts +1 -27
- package/dist/types/store/createStore.d.ts +1 -1
- package/dist/types/store/index.d.ts +12 -12
- package/dist/types/store/locks/appstate.lock.d.ts +3 -0
- package/dist/types/store/locks/auth.lock.d.ts +3 -0
- package/dist/types/store/locks/contact.lock.d.ts +3 -0
- package/dist/types/store/locks/device-list.lock.d.ts +2 -0
- package/dist/types/store/locks/identity.lock.d.ts +3 -0
- package/dist/types/store/locks/message-secret.lock.d.ts +3 -0
- package/dist/types/store/locks/message.lock.d.ts +3 -0
- package/dist/types/store/locks/participants.lock.d.ts +2 -0
- package/dist/types/store/locks/pre-key.lock.d.ts +3 -0
- package/dist/types/store/locks/privacy-token.lock.d.ts +2 -0
- package/dist/types/store/locks/retry.lock.d.ts +2 -0
- package/dist/types/store/locks/sender-key.lock.d.ts +3 -0
- package/dist/types/store/locks/session.lock.d.ts +3 -0
- package/dist/types/store/locks/signal.lock.d.ts +3 -0
- package/dist/types/store/locks/thread.lock.d.ts +3 -0
- package/dist/types/store/noop.store.d.ts +4 -0
- package/dist/types/store/providers/memory/appstate.store.d.ts +1 -1
- package/dist/types/store/providers/memory/identity.store.d.ts +18 -0
- package/dist/types/store/providers/memory/message-secret.store.d.ts +21 -0
- package/dist/types/store/providers/memory/pre-key.store.d.ts +23 -0
- package/dist/types/store/providers/memory/privacy-token.store.d.ts +13 -0
- package/dist/types/store/providers/memory/retry.store.d.ts +15 -1
- package/dist/types/store/providers/memory/session.store.d.ts +21 -0
- package/dist/types/store/providers/memory/signal.store.d.ts +2 -43
- package/dist/types/store/providers/memory/thread.store.d.ts +1 -1
- package/dist/types/store/types.d.ts +69 -61
- package/dist/types/transport/WaWebSocket.d.ts +1 -1
- package/dist/types/transport/binary/constants.d.ts +0 -30
- package/dist/types/transport/binary/index.d.ts +0 -1
- package/dist/types/transport/index.d.ts +8 -1
- package/dist/types/transport/keepalive/WaKeepAlive.d.ts +4 -1
- package/dist/types/transport/node/WaMobileTcpSocket.d.ts +18 -0
- package/dist/types/transport/node/WaNodeOrchestrator.d.ts +9 -6
- package/dist/types/transport/node/builders/abprops.d.ts +5 -0
- package/dist/types/transport/node/builders/business.d.ts +29 -0
- package/dist/types/transport/node/builders/device.d.ts +2 -0
- package/dist/types/transport/node/builders/email.d.ts +11 -0
- package/dist/types/transport/node/builders/global.d.ts +102 -0
- package/dist/types/transport/node/builders/message.d.ts +8 -7
- package/dist/types/transport/node/builders/offline.d.ts +2 -0
- package/dist/types/transport/node/builders/pairing.d.ts +0 -2
- package/dist/types/transport/node/builders/prekeys.d.ts +4 -3
- package/dist/types/transport/node/builders/presence.d.ts +6 -0
- package/dist/types/transport/node/builders/privacy-token.d.ts +9 -0
- package/dist/types/transport/node/builders/privacy.d.ts +7 -0
- package/dist/types/transport/node/builders/profile.d.ts +8 -0
- package/dist/types/transport/node/builders/retry.d.ts +0 -1
- package/dist/types/transport/node/helpers.d.ts +8 -0
- package/dist/types/transport/node/mex/argo-decoder.d.ts +11 -0
- package/dist/types/transport/node/mex/client.d.ts +18 -0
- package/dist/types/transport/node/mex/persist-ids.d.ts +14 -0
- package/dist/types/transport/noise/WaMobileClientPayload.d.ts +29 -0
- package/dist/types/transport/noise/WaNoiseCert.d.ts +7 -1
- package/dist/types/transport/noise/WaNoiseSession.d.ts +4 -2
- package/dist/types/transport/noise/WaNoiseSocket.d.ts +4 -2
- package/dist/types/transport/types.d.ts +8 -0
- package/dist/types/util/bytes.d.ts +1 -1
- package/dist/types/util/index.d.ts +5 -0
- package/dist/types/util/primitives.d.ts +0 -1
- package/dist/util/bytes.js +22 -18
- package/dist/util/index.js +23 -0
- package/dist/util/primitives.js +2 -2
- package/package.json +34 -10
- package/proto/index.js +1 -1
- package/dist/auth/flow/WaAuthCredentialsFlow.js +0 -130
- package/dist/auth/pairing/constants.js +0 -5
- package/dist/client/connection/WaKeyShareCoordinator.js +0 -63
- package/dist/crypto/core/constants.js +0 -4
- package/dist/esm/auth/flow/WaAuthCredentialsFlow.js +0 -125
- package/dist/esm/auth/pairing/constants.js +0 -2
- package/dist/esm/client/connection/WaKeyShareCoordinator.js +0 -59
- package/dist/esm/crypto/core/constants.js +0 -1
- package/dist/esm/retry/outbound.js +0 -82
- package/dist/esm/store/providers/sqlite/BaseSqliteStore.js +0 -37
- package/dist/esm/store/providers/sqlite/appstate.store.js +0 -250
- package/dist/esm/store/providers/sqlite/auth.store.js +0 -176
- package/dist/esm/store/providers/sqlite/connection.js +0 -245
- package/dist/esm/store/providers/sqlite/contact.store.js +0 -74
- package/dist/esm/store/providers/sqlite/device-list.store.js +0 -127
- package/dist/esm/store/providers/sqlite/message.store.js +0 -132
- package/dist/esm/store/providers/sqlite/migrations.js +0 -347
- package/dist/esm/store/providers/sqlite/participants.store.js +0 -77
- package/dist/esm/store/providers/sqlite/retry.store.js +0 -141
- package/dist/esm/store/providers/sqlite/sender-key.store.js +0 -198
- package/dist/esm/store/providers/sqlite/signal.store.js +0 -435
- package/dist/esm/store/providers/sqlite/table-names.js +0 -107
- package/dist/esm/store/providers/sqlite/thread.store.js +0 -85
- package/dist/esm/transport/node/builders/index.js +0 -8
- package/dist/retry/outbound.js +0 -87
- package/dist/store/providers/sqlite/BaseSqliteStore.js +0 -41
- package/dist/store/providers/sqlite/appstate.store.js +0 -254
- package/dist/store/providers/sqlite/auth.store.js +0 -180
- package/dist/store/providers/sqlite/connection.js +0 -281
- package/dist/store/providers/sqlite/contact.store.js +0 -78
- package/dist/store/providers/sqlite/device-list.store.js +0 -131
- package/dist/store/providers/sqlite/message.store.js +0 -136
- package/dist/store/providers/sqlite/migrations.js +0 -350
- package/dist/store/providers/sqlite/participants.store.js +0 -81
- package/dist/store/providers/sqlite/retry.store.js +0 -145
- package/dist/store/providers/sqlite/sender-key.store.js +0 -202
- package/dist/store/providers/sqlite/signal.store.js +0 -439
- package/dist/store/providers/sqlite/table-names.js +0 -113
- package/dist/store/providers/sqlite/thread.store.js +0 -89
- package/dist/transport/node/builders/index.js +0 -42
- package/dist/types/appstate/store/sqlite.d.ts +0 -7
- package/dist/types/auth/flow/WaAuthCredentialsFlow.d.ts +0 -14
- package/dist/types/auth/pairing/constants.d.ts +0 -2
- package/dist/types/client/connection/WaKeyShareCoordinator.d.ts +0 -14
- package/dist/types/crypto/core/constants.d.ts +0 -1
- package/dist/types/retry/outbound.d.ts +0 -4
- package/dist/types/store/providers/sqlite/BaseSqliteStore.d.ts +0 -12
- package/dist/types/store/providers/sqlite/appstate.store.d.ts +0 -17
- package/dist/types/store/providers/sqlite/auth.store.d.ts +0 -10
- package/dist/types/store/providers/sqlite/connection.d.ts +0 -10
- package/dist/types/store/providers/sqlite/contact.store.d.ts +0 -12
- package/dist/types/store/providers/sqlite/device-list.store.d.ts +0 -15
- package/dist/types/store/providers/sqlite/message.store.d.ts +0 -13
- package/dist/types/store/providers/sqlite/migrations.d.ts +0 -3
- package/dist/types/store/providers/sqlite/participants.store.d.ts +0 -12
- package/dist/types/store/providers/sqlite/retry.store.d.ts +0 -15
- package/dist/types/store/providers/sqlite/sender-key.store.d.ts +0 -24
- package/dist/types/store/providers/sqlite/signal.store.d.ts +0 -53
- package/dist/types/store/providers/sqlite/table-names.d.ts +0 -5
- package/dist/types/store/providers/sqlite/thread.store.d.ts +0 -13
- package/dist/types/transport/node/builders/index.d.ts +0 -8
- /package/dist/appstate/{WaAppStateSyncResponseParser.js → response-parser.js} +0 -0
|
@@ -0,0 +1,18 @@
|
|
|
1
|
+
export function computeBucket(unixTimeS, durationS) {
|
|
2
|
+
return Math.floor(unixTimeS / durationS);
|
|
3
|
+
}
|
|
4
|
+
export function tokenExpirationCutoffS(nowS, durationS, numBuckets) {
|
|
5
|
+
const currentBucket = computeBucket(nowS, durationS);
|
|
6
|
+
const cutoffBucket = currentBucket - numBuckets;
|
|
7
|
+
return cutoffBucket * durationS;
|
|
8
|
+
}
|
|
9
|
+
export function isTokenExpired(tokenTimestampS, nowS, durationS, numBuckets) {
|
|
10
|
+
const cutoff = tokenExpirationCutoffS(nowS, durationS, numBuckets);
|
|
11
|
+
return tokenTimestampS < cutoff;
|
|
12
|
+
}
|
|
13
|
+
export function shouldSendNewToken(senderTimestampS, nowS, senderDurationS) {
|
|
14
|
+
return computeBucket(senderTimestampS, senderDurationS) !== computeBucket(nowS, senderDurationS);
|
|
15
|
+
}
|
|
16
|
+
export function clampDuration(durationS, maxDurationS) {
|
|
17
|
+
return Math.min(durationS, maxDurationS);
|
|
18
|
+
}
|
|
@@ -6,5 +6,6 @@ export { X25519 } from '../curves/X25519.js';
|
|
|
6
6
|
export { hkdf, hkdfSplit } from '../core/hkdf.js';
|
|
7
7
|
export { toSerializedPubKey, toRawPubKey, prependVersion, readVersionedContent } from '../core/keys.js';
|
|
8
8
|
export { buildNonce } from '../core/nonce.js';
|
|
9
|
-
export { randomBytesAsync, randomIntAsync } from '../core/random.js';
|
|
10
|
-
export { sha1, sha256, sha512, importAesGcmKey, aesGcmEncrypt, aesGcmDecrypt, importAesCbcKey, aesCbcEncrypt, aesCbcDecrypt, importHmacKey, importHmacSha512Key, hmacSign, pbkdf2DeriveAesCtrKey, aesCtrEncrypt, aesCtrDecrypt
|
|
9
|
+
export { randomBytesAsync, randomFillAsync, randomIntAsync } from '../core/random.js';
|
|
10
|
+
export { sha1, sha256, sha512, importAesGcmKey, aesGcmEncrypt, aesGcmDecrypt, importAesCbcKey, aesCbcEncrypt, aesCbcDecrypt, importHmacKey, importHmacSha512Key, hmacSign, pbkdf2DeriveAesCtrKey, aesCtrEncrypt, aesCtrDecrypt } from '../core/primitives.js';
|
|
11
|
+
export { xeddsaSign, xeddsaVerify } from '../core/xeddsa.js';
|
|
@@ -1,5 +1,7 @@
|
|
|
1
1
|
/**
|
|
2
2
|
* Builds a 12-byte nonce for AES-GCM encryption with counter in the last 4 bytes.
|
|
3
|
+
* Allocates a new buffer per call because concurrent Noise encrypt/decrypt operations
|
|
4
|
+
* may hold references to different nonces simultaneously.
|
|
3
5
|
* Throws if counter exceeds uint32 range to prevent nonce reuse.
|
|
4
6
|
*/
|
|
5
7
|
export function buildNonce(counter) {
|
|
@@ -90,10 +90,3 @@ export async function aesCtrEncrypt(key, counter, plaintext) {
|
|
|
90
90
|
export async function aesCtrDecrypt(key, counter, ciphertext) {
|
|
91
91
|
return toBytesView(await webcrypto.subtle.decrypt({ name: 'AES-CTR', counter, length: 64 }, key, ciphertext));
|
|
92
92
|
}
|
|
93
|
-
// ============================================
|
|
94
|
-
// Ed25519 raw verify (for Signal variant sigs)
|
|
95
|
-
// ============================================
|
|
96
|
-
export async function ed25519VerifyRaw(publicKey, signature, message) {
|
|
97
|
-
const cryptoKey = await webcrypto.subtle.importKey('raw', publicKey, { name: 'Ed25519' }, false, ['verify']);
|
|
98
|
-
return webcrypto.subtle.verify('Ed25519', cryptoKey, signature, message);
|
|
99
|
-
}
|
|
@@ -1,9 +1,25 @@
|
|
|
1
|
-
import { randomBytes, randomInt } from 'node:crypto';
|
|
1
|
+
import { randomBytes, randomFill, randomInt } from 'node:crypto';
|
|
2
2
|
import { promisify } from 'node:util';
|
|
3
|
-
|
|
4
|
-
|
|
5
|
-
const
|
|
6
|
-
|
|
7
|
-
|
|
3
|
+
export async function randomFillAsync(target, offset, size) {
|
|
4
|
+
await new Promise((resolve, reject) => {
|
|
5
|
+
const onDone = (error) => {
|
|
6
|
+
if (error) {
|
|
7
|
+
reject(error);
|
|
8
|
+
return;
|
|
9
|
+
}
|
|
10
|
+
resolve();
|
|
11
|
+
};
|
|
12
|
+
if (offset === undefined) {
|
|
13
|
+
randomFill(target, onDone);
|
|
14
|
+
return;
|
|
15
|
+
}
|
|
16
|
+
if (size === undefined) {
|
|
17
|
+
randomFill(target, offset, onDone);
|
|
18
|
+
return;
|
|
19
|
+
}
|
|
20
|
+
randomFill(target, offset, size, onDone);
|
|
21
|
+
});
|
|
22
|
+
return target;
|
|
8
23
|
}
|
|
9
|
-
export const randomIntAsync =
|
|
24
|
+
export const randomIntAsync = promisify(randomInt);
|
|
25
|
+
export const randomBytesAsync = promisify(randomBytes);
|
|
@@ -0,0 +1,53 @@
|
|
|
1
|
+
import { sha512 } from '../core/primitives.js';
|
|
2
|
+
import { randomBytesAsync } from '../core/random.js';
|
|
3
|
+
import { Ed25519 } from '../curves/Ed25519.js';
|
|
4
|
+
import { clampCurvePrivateKeyInPlace, montgomeryToEdwardsPublic } from '../curves/X25519.js';
|
|
5
|
+
import { encodeExtendedPoint, scalarMultBase } from '../math/edwards.js';
|
|
6
|
+
import { bigIntToBytesLE, bytesToBigIntLE } from '../math/le.js';
|
|
7
|
+
import { modGroup } from '../math/mod.js';
|
|
8
|
+
import { assertByteLength, concatBytes } from '../../util/bytes.js';
|
|
9
|
+
const PREFIX_SIGNATURE_RANDOM = new Uint8Array([
|
|
10
|
+
0xfe, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff,
|
|
11
|
+
0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff
|
|
12
|
+
]);
|
|
13
|
+
export async function xeddsaVerify(curvePublicKey, message, signature) {
|
|
14
|
+
if (signature.length !== 64) {
|
|
15
|
+
return false;
|
|
16
|
+
}
|
|
17
|
+
if ((signature[63] & 0x60) !== 0) {
|
|
18
|
+
return false;
|
|
19
|
+
}
|
|
20
|
+
const lastByteIndex = 63;
|
|
21
|
+
const originalLastByte = signature[lastByteIndex];
|
|
22
|
+
const signBit = originalLastByte & 0x80;
|
|
23
|
+
signature[lastByteIndex] = originalLastByte & 0x7f;
|
|
24
|
+
const edPublic = montgomeryToEdwardsPublic(curvePublicKey, signBit);
|
|
25
|
+
try {
|
|
26
|
+
return await Ed25519.verify(message, signature, edPublic);
|
|
27
|
+
}
|
|
28
|
+
finally {
|
|
29
|
+
signature[lastByteIndex] = originalLastByte;
|
|
30
|
+
}
|
|
31
|
+
}
|
|
32
|
+
export async function xeddsaSign(privateKey, message) {
|
|
33
|
+
assertByteLength(privateKey, 32, `invalid curve25519 private key length ${privateKey.length}`);
|
|
34
|
+
const clampedPrivateKey = clampCurvePrivateKeyInPlace(privateKey);
|
|
35
|
+
const privateScalar = bytesToBigIntLE(clampedPrivateKey);
|
|
36
|
+
const encodedPublic = encodeExtendedPoint(scalarMultBase(privateScalar));
|
|
37
|
+
const pubKeySignBit = encodedPublic[31] & 0x80;
|
|
38
|
+
const randomSuffix = await randomBytesAsync(64);
|
|
39
|
+
const hashInput = concatBytes([
|
|
40
|
+
PREFIX_SIGNATURE_RANDOM,
|
|
41
|
+
clampedPrivateKey,
|
|
42
|
+
message,
|
|
43
|
+
randomSuffix
|
|
44
|
+
]);
|
|
45
|
+
const r = modGroup(bytesToBigIntLE(await sha512(hashInput)));
|
|
46
|
+
const encodedR = encodeExtendedPoint(scalarMultBase(r));
|
|
47
|
+
const hInput = concatBytes([encodedR, encodedPublic, message]);
|
|
48
|
+
const h = modGroup(bytesToBigIntLE(await sha512(hInput)));
|
|
49
|
+
const s = modGroup(r + h * privateScalar);
|
|
50
|
+
const encodedS = bigIntToBytesLE(s, 32);
|
|
51
|
+
encodedS[31] = (encodedS[31] & 0x7f) | pubKeySignBit;
|
|
52
|
+
return concatBytes([encodedR, encodedS]);
|
|
53
|
+
}
|
|
@@ -1,9 +1,26 @@
|
|
|
1
|
-
import { webcrypto } from 'node:crypto';
|
|
2
|
-
import { X25519_PKCS8_PREFIX } from '../curves/constants.js';
|
|
1
|
+
import { createPrivateKey, createPublicKey, diffieHellman, webcrypto } from 'node:crypto';
|
|
2
|
+
import { X25519_PKCS8_PREFIX, X25519_SPKI_PREFIX } from '../curves/constants.js';
|
|
3
3
|
import { pkcs8FromRawPrivate } from '../curves/types.js';
|
|
4
|
-
import {
|
|
5
|
-
import {
|
|
4
|
+
import { FE_ONE } from '../math/constants.js';
|
|
5
|
+
import { fe, feAdd, feFromBytes, feInv, feMul, fePack, feSub } from '../math/fe.js';
|
|
6
6
|
import { assertByteLength, decodeBase64Url, toBytesView } from '../../util/bytes.js';
|
|
7
|
+
import { isBunRuntime } from '../../util/runtime.js';
|
|
8
|
+
const IS_BUN = isBunRuntime();
|
|
9
|
+
// Pre-allocated temps for montgomeryToEdwardsPublic (safe: single-threaded)
|
|
10
|
+
const _mx = fe();
|
|
11
|
+
const _m1 = fe();
|
|
12
|
+
const _m2 = fe();
|
|
13
|
+
const _m3 = fe();
|
|
14
|
+
// p-1 = 2^255-20 in LE bytes: 0xEC, 0xFF×30, 0x7F
|
|
15
|
+
// Mask bit 255 before comparing (non-canonical inputs may have it set)
|
|
16
|
+
function isFieldPMinus1(b) {
|
|
17
|
+
if (b[0] !== 0xec || (b[31] & 0x7f) !== 0x7f)
|
|
18
|
+
return false;
|
|
19
|
+
for (let i = 1; i < 31; i++)
|
|
20
|
+
if (b[i] !== 0xff)
|
|
21
|
+
return false;
|
|
22
|
+
return true;
|
|
23
|
+
}
|
|
7
24
|
export function clampCurvePrivateKeyInPlace(privateKey) {
|
|
8
25
|
assertByteLength(privateKey, 32, `invalid curve25519 private key length ${privateKey.length}`);
|
|
9
26
|
privateKey[0] &= 248;
|
|
@@ -13,12 +30,16 @@ export function clampCurvePrivateKeyInPlace(privateKey) {
|
|
|
13
30
|
}
|
|
14
31
|
export function montgomeryToEdwardsPublic(curvePublicKey, signBit) {
|
|
15
32
|
assertByteLength(curvePublicKey, 32, `invalid curve25519 public key length ${curvePublicKey.length}`);
|
|
16
|
-
|
|
17
|
-
if (x === FIELD_P - 1n) {
|
|
33
|
+
if (isFieldPMinus1(curvePublicKey)) {
|
|
18
34
|
throw new Error('invalid curve25519 low-order public key');
|
|
19
35
|
}
|
|
20
|
-
|
|
21
|
-
|
|
36
|
+
feFromBytes(_mx, curvePublicKey);
|
|
37
|
+
feSub(_m1, _mx, FE_ONE);
|
|
38
|
+
feAdd(_m2, _mx, FE_ONE);
|
|
39
|
+
feInv(_m3, _m2);
|
|
40
|
+
feMul(_m1, _m1, _m3);
|
|
41
|
+
const encoded = new Uint8Array(32);
|
|
42
|
+
fePack(encoded, _m1);
|
|
22
43
|
encoded[31] = (encoded[31] & 0x7f) | (signBit & 0x80);
|
|
23
44
|
return encoded;
|
|
24
45
|
}
|
|
@@ -45,6 +66,22 @@ export class X25519 {
|
|
|
45
66
|
static async scalarMult(privKey, pubKey) {
|
|
46
67
|
assertByteLength(privKey, 32, 'x25519 private key must be 32 bytes');
|
|
47
68
|
assertByteLength(pubKey, 32, 'x25519 public key must be 32 bytes');
|
|
69
|
+
// TODO: When Bun supports deriveBits with X25519 change to Async Web Crypto API
|
|
70
|
+
// https://github.com/oven-sh/bun/pull/29152
|
|
71
|
+
if (IS_BUN) {
|
|
72
|
+
const spki = new Uint8Array(X25519_SPKI_PREFIX.length + 32);
|
|
73
|
+
spki.set(X25519_SPKI_PREFIX, 0);
|
|
74
|
+
spki.set(pubKey, X25519_SPKI_PREFIX.length);
|
|
75
|
+
const shared = diffieHellman({
|
|
76
|
+
privateKey: createPrivateKey({
|
|
77
|
+
key: pkcs8FromRawPrivate(X25519_PKCS8_PREFIX, privKey),
|
|
78
|
+
format: 'der',
|
|
79
|
+
type: 'pkcs8'
|
|
80
|
+
}),
|
|
81
|
+
publicKey: createPublicKey({ key: spki, format: 'der', type: 'spki' })
|
|
82
|
+
});
|
|
83
|
+
return toBytesView(shared);
|
|
84
|
+
}
|
|
48
85
|
const [privateKey, publicKey] = await Promise.all([
|
|
49
86
|
webcrypto.subtle.importKey('pkcs8', pkcs8FromRawPrivate(X25519_PKCS8_PREFIX, privKey), { name: 'X25519' }, false, ['deriveBits']),
|
|
50
87
|
webcrypto.subtle.importKey('raw', pubKey, { name: 'X25519' }, false, [])
|
|
@@ -1,3 +1,4 @@
|
|
|
1
1
|
import { hexToBytes } from '../../util/bytes.js';
|
|
2
2
|
export const X25519_PKCS8_PREFIX = hexToBytes('302e020100300506032b656e04220420');
|
|
3
|
+
export const X25519_SPKI_PREFIX = hexToBytes('302a300506032b656e032100');
|
|
3
4
|
export const ED25519_PKCS8_PREFIX = hexToBytes('302e020100300506032b657004220420');
|
package/dist/esm/crypto/index.js
CHANGED
|
@@ -1,41 +1,18 @@
|
|
|
1
|
+
import { fe, feFromBigInt } from '../math/fe.js';
|
|
1
2
|
export const FIELD_P = (1n << 255n) - 19n;
|
|
2
3
|
export const GROUP_L = (1n << 252n) + 27742317777372353535851937790883648493n;
|
|
3
|
-
|
|
4
|
-
|
|
5
|
-
|
|
6
|
-
}
|
|
7
|
-
function modPowField(base, exponent) {
|
|
8
|
-
let result = 1n;
|
|
9
|
-
let current = modField(base);
|
|
10
|
-
let power = exponent;
|
|
11
|
-
while (power > 0n) {
|
|
12
|
-
if ((power & 1n) === 1n) {
|
|
13
|
-
result = modField(result * current);
|
|
14
|
-
}
|
|
15
|
-
current = modField(current * current);
|
|
16
|
-
power >>= 1n;
|
|
17
|
-
}
|
|
18
|
-
return result;
|
|
19
|
-
}
|
|
20
|
-
function modInvField(value) {
|
|
21
|
-
if (value === 0n) {
|
|
22
|
-
throw new Error('field inversion by zero');
|
|
23
|
-
}
|
|
24
|
-
return modPowField(value, FIELD_P - 2n);
|
|
25
|
-
}
|
|
26
|
-
const BASE_X = 15112221349535400772501151409588531511454012693041857206046113283949847762202n;
|
|
27
|
-
const BASE_Y = 46316835694926478169428394003475163141307993866256225615783033603165251855960n;
|
|
28
|
-
export const EDWARDS_D = modField(-121665n * modInvField(121666n));
|
|
29
|
-
export const TWO_D = modField(2n * EDWARDS_D);
|
|
4
|
+
export const FE_TWO_D = feFromBigInt(16295367250680780974490674513165176452449235426866156013048779062215315747161n);
|
|
5
|
+
export const FE_ZERO = fe();
|
|
6
|
+
export const FE_ONE = feFromBigInt(1n);
|
|
30
7
|
export const BASE_POINT = Object.freeze({
|
|
31
|
-
x:
|
|
32
|
-
y:
|
|
33
|
-
z: 1n,
|
|
34
|
-
t:
|
|
8
|
+
x: feFromBigInt(15112221349535400772501151409588531511454012693041857206046113283949847762202n),
|
|
9
|
+
y: feFromBigInt(46316835694926478169428394003475163141307993866256225615783033603165251855960n),
|
|
10
|
+
z: feFromBigInt(1n),
|
|
11
|
+
t: feFromBigInt(46827403850823179245072216630277197565144205554125654976674165829533817101731n)
|
|
35
12
|
});
|
|
36
13
|
export const IDENTITY_POINT = Object.freeze({
|
|
37
|
-
x: 0n,
|
|
38
|
-
y: 1n,
|
|
39
|
-
z: 1n,
|
|
40
|
-
t: 0n
|
|
14
|
+
x: feFromBigInt(0n),
|
|
15
|
+
y: feFromBigInt(1n),
|
|
16
|
+
z: feFromBigInt(1n),
|
|
17
|
+
t: feFromBigInt(0n)
|
|
41
18
|
});
|
|
@@ -1,60 +1,187 @@
|
|
|
1
|
-
import { BASE_POINT,
|
|
2
|
-
import {
|
|
3
|
-
import {
|
|
1
|
+
import { BASE_POINT, FE_TWO_D, IDENTITY_POINT } from '../math/constants.js';
|
|
2
|
+
import { fe, feAdd, feCopy, feInv, feMul, feNeg, fePack, feSub } from '../math/fe.js';
|
|
3
|
+
import { modGroup } from '../math/mod.js';
|
|
4
|
+
// Pre-allocated temporaries for point operations (safe: JS is single-threaded)
|
|
5
|
+
const _a = fe();
|
|
6
|
+
const _b = fe();
|
|
7
|
+
const _c = fe();
|
|
8
|
+
const _d = fe();
|
|
9
|
+
const _e = fe();
|
|
10
|
+
const _f = fe();
|
|
11
|
+
const _g = fe();
|
|
12
|
+
const _h = fe();
|
|
13
|
+
// Pre-allocated output points for hot-path operations
|
|
14
|
+
function mutablePoint() {
|
|
15
|
+
return { x: fe(), y: fe(), z: fe(), t: fe() };
|
|
16
|
+
}
|
|
17
|
+
const _addOut = mutablePoint();
|
|
18
|
+
const _dblOut = mutablePoint();
|
|
19
|
+
const _negOut = mutablePoint();
|
|
20
|
+
// Temporaries for feInv inside encodeExtendedPoint
|
|
21
|
+
const _invZinv = fe();
|
|
22
|
+
const _invX = fe();
|
|
23
|
+
const _invY = fe();
|
|
24
|
+
const _invXBytes = new Uint8Array(32);
|
|
25
|
+
function addPointInto(out, a, b) {
|
|
26
|
+
feSub(_a, a.y, a.x);
|
|
27
|
+
feSub(_b, b.y, b.x);
|
|
28
|
+
feMul(_a, _a, _b); // aTerm
|
|
29
|
+
feAdd(_b, a.y, a.x);
|
|
30
|
+
feAdd(_c, b.y, b.x);
|
|
31
|
+
feMul(_b, _b, _c); // bTerm
|
|
32
|
+
feMul(_c, FE_TWO_D, a.t);
|
|
33
|
+
feMul(_c, _c, b.t); // cTerm
|
|
34
|
+
feAdd(_d, a.z, a.z);
|
|
35
|
+
feMul(_d, _d, b.z); // dTerm
|
|
36
|
+
feSub(_e, _b, _a); // eTerm
|
|
37
|
+
feSub(_f, _d, _c); // fTerm
|
|
38
|
+
feAdd(_g, _d, _c); // gTerm
|
|
39
|
+
feAdd(_h, _b, _a); // hTerm
|
|
40
|
+
feMul(out.x, _e, _f);
|
|
41
|
+
feMul(out.y, _g, _h);
|
|
42
|
+
feMul(out.z, _f, _g);
|
|
43
|
+
feMul(out.t, _e, _h);
|
|
44
|
+
}
|
|
45
|
+
function doublePointInto(out, point) {
|
|
46
|
+
feMul(_a, point.x, point.x); // aTerm = x^2
|
|
47
|
+
feMul(_b, point.y, point.y); // bTerm = y^2
|
|
48
|
+
feMul(_c, point.z, point.z);
|
|
49
|
+
feAdd(_c, _c, _c); // cTerm = 2*z^2
|
|
50
|
+
feNeg(_d, _a); // dTerm = -aTerm (a=-1 for ed25519)
|
|
51
|
+
feAdd(_e, point.x, point.y);
|
|
52
|
+
feMul(_e, _e, _e);
|
|
53
|
+
feAdd(_f, _a, _b);
|
|
54
|
+
feSub(_e, _e, _f); // eTerm = (x+y)^2 - aTerm - bTerm
|
|
55
|
+
feAdd(_g, _d, _b); // gTerm = dTerm + bTerm
|
|
56
|
+
feSub(_f, _g, _c); // fTerm = gTerm - cTerm
|
|
57
|
+
feSub(_h, _d, _b); // hTerm = dTerm - bTerm
|
|
58
|
+
feMul(out.x, _e, _f);
|
|
59
|
+
feMul(out.y, _g, _h);
|
|
60
|
+
feMul(out.z, _f, _g);
|
|
61
|
+
feMul(out.t, _e, _h);
|
|
62
|
+
}
|
|
63
|
+
function negatePointInto(out, p) {
|
|
64
|
+
feNeg(out.x, p.x);
|
|
65
|
+
feCopy(out.y, p.y);
|
|
66
|
+
feCopy(out.z, p.z);
|
|
67
|
+
feNeg(out.t, p.t);
|
|
68
|
+
}
|
|
69
|
+
function clonePoint(p) {
|
|
70
|
+
const x = fe();
|
|
71
|
+
const y = fe();
|
|
72
|
+
const z = fe();
|
|
73
|
+
const t = fe();
|
|
74
|
+
feCopy(x, p.x);
|
|
75
|
+
feCopy(y, p.y);
|
|
76
|
+
feCopy(z, p.z);
|
|
77
|
+
feCopy(t, p.t);
|
|
78
|
+
return { x, y, z, t };
|
|
79
|
+
}
|
|
80
|
+
// Allocating versions for precomputation (runs once at module load)
|
|
4
81
|
function addPoint(a, b) {
|
|
5
|
-
|
|
6
|
-
|
|
7
|
-
|
|
8
|
-
|
|
9
|
-
|
|
10
|
-
|
|
11
|
-
const cTerm = mod(TWO_D * a.t * b.t);
|
|
12
|
-
const dTerm = mod(2n * a.z * b.z);
|
|
13
|
-
const eTerm = mod(bTerm - aTerm);
|
|
14
|
-
const fTerm = mod(dTerm - cTerm);
|
|
15
|
-
const gTerm = mod(dTerm + cTerm);
|
|
16
|
-
const hTerm = mod(bTerm + aTerm);
|
|
17
|
-
return {
|
|
18
|
-
x: mod(eTerm * fTerm),
|
|
19
|
-
y: mod(gTerm * hTerm),
|
|
20
|
-
z: mod(fTerm * gTerm),
|
|
21
|
-
t: mod(eTerm * hTerm)
|
|
22
|
-
};
|
|
23
|
-
}
|
|
24
|
-
function doublePoint(point) {
|
|
25
|
-
const aTerm = mod(point.x * point.x);
|
|
26
|
-
const bTerm = mod(point.y * point.y);
|
|
27
|
-
const cTerm = mod(2n * point.z * point.z);
|
|
28
|
-
const dTerm = mod(-aTerm);
|
|
29
|
-
const eTerm = mod(mod((point.x + point.y) * (point.x + point.y)) - aTerm - bTerm);
|
|
30
|
-
const gTerm = mod(dTerm + bTerm);
|
|
31
|
-
const fTerm = mod(gTerm - cTerm);
|
|
32
|
-
const hTerm = mod(dTerm - bTerm);
|
|
33
|
-
return {
|
|
34
|
-
x: mod(eTerm * fTerm),
|
|
35
|
-
y: mod(gTerm * hTerm),
|
|
36
|
-
z: mod(fTerm * gTerm),
|
|
37
|
-
t: mod(eTerm * hTerm)
|
|
38
|
-
};
|
|
82
|
+
addPointInto(_addOut, a, b);
|
|
83
|
+
return clonePoint(_addOut);
|
|
84
|
+
}
|
|
85
|
+
function doublePoint(a) {
|
|
86
|
+
doublePointInto(_dblOut, a);
|
|
87
|
+
return clonePoint(_dblOut);
|
|
39
88
|
}
|
|
89
|
+
const W = 5;
|
|
90
|
+
const halfW = 1 << W;
|
|
91
|
+
const mask = halfW - 1;
|
|
92
|
+
const precomp = new Array(1 << (W - 1));
|
|
93
|
+
precomp[0] = BASE_POINT;
|
|
94
|
+
const _dbl = doublePoint(BASE_POINT);
|
|
95
|
+
for (let i = 1; i < precomp.length; i++) {
|
|
96
|
+
precomp[i] = addPoint(precomp[i - 1], _dbl);
|
|
97
|
+
}
|
|
98
|
+
// Pre-allocated scratch buffers for scalarMultBase (safe: JS is single-threaded)
|
|
99
|
+
const _naf = new Int8Array(256);
|
|
100
|
+
const _loopResult = mutablePoint();
|
|
101
|
+
const _loopDbl = mutablePoint();
|
|
102
|
+
const _loopAdd = mutablePoint();
|
|
40
103
|
export function scalarMultBase(scalar) {
|
|
41
104
|
let k = modGroup(scalar);
|
|
42
|
-
|
|
43
|
-
|
|
105
|
+
if (k === 0n)
|
|
106
|
+
return clonePoint(IDENTITY_POINT);
|
|
107
|
+
const naf = _naf;
|
|
108
|
+
naf.fill(0);
|
|
109
|
+
let nafLen = 0;
|
|
44
110
|
while (k > 0n) {
|
|
45
111
|
if ((k & 1n) === 1n) {
|
|
46
|
-
|
|
112
|
+
let digit = Number(k & BigInt(mask));
|
|
113
|
+
if (digit >= halfW >> 1)
|
|
114
|
+
digit -= halfW;
|
|
115
|
+
naf[nafLen++] = digit;
|
|
116
|
+
k -= BigInt(digit);
|
|
117
|
+
}
|
|
118
|
+
else {
|
|
119
|
+
nafLen++;
|
|
47
120
|
}
|
|
48
|
-
addend = doublePoint(addend);
|
|
49
121
|
k >>= 1n;
|
|
50
122
|
}
|
|
51
|
-
|
|
123
|
+
// Copy identity into loop result
|
|
124
|
+
feCopy(_loopResult.x, IDENTITY_POINT.x);
|
|
125
|
+
feCopy(_loopResult.y, IDENTITY_POINT.y);
|
|
126
|
+
feCopy(_loopResult.z, IDENTITY_POINT.z);
|
|
127
|
+
feCopy(_loopResult.t, IDENTITY_POINT.t);
|
|
128
|
+
for (let i = nafLen - 1; i >= 0; i--) {
|
|
129
|
+
doublePointInto(_loopDbl, _loopResult);
|
|
130
|
+
// swap dbl → result
|
|
131
|
+
const tmpX = _loopResult.x;
|
|
132
|
+
_loopResult.x = _loopDbl.x;
|
|
133
|
+
_loopDbl.x = tmpX;
|
|
134
|
+
const tmpY = _loopResult.y;
|
|
135
|
+
_loopResult.y = _loopDbl.y;
|
|
136
|
+
_loopDbl.y = tmpY;
|
|
137
|
+
const tmpZ = _loopResult.z;
|
|
138
|
+
_loopResult.z = _loopDbl.z;
|
|
139
|
+
_loopDbl.z = tmpZ;
|
|
140
|
+
const tmpT = _loopResult.t;
|
|
141
|
+
_loopResult.t = _loopDbl.t;
|
|
142
|
+
_loopDbl.t = tmpT;
|
|
143
|
+
const digit = naf[i];
|
|
144
|
+
if (digit > 0) {
|
|
145
|
+
addPointInto(_loopAdd, _loopResult, precomp[(digit - 1) >> 1]);
|
|
146
|
+
const ax = _loopResult.x;
|
|
147
|
+
_loopResult.x = _loopAdd.x;
|
|
148
|
+
_loopAdd.x = ax;
|
|
149
|
+
const ay = _loopResult.y;
|
|
150
|
+
_loopResult.y = _loopAdd.y;
|
|
151
|
+
_loopAdd.y = ay;
|
|
152
|
+
const az = _loopResult.z;
|
|
153
|
+
_loopResult.z = _loopAdd.z;
|
|
154
|
+
_loopAdd.z = az;
|
|
155
|
+
const at = _loopResult.t;
|
|
156
|
+
_loopResult.t = _loopAdd.t;
|
|
157
|
+
_loopAdd.t = at;
|
|
158
|
+
}
|
|
159
|
+
else if (digit < 0) {
|
|
160
|
+
negatePointInto(_negOut, precomp[(-digit - 1) >> 1]);
|
|
161
|
+
addPointInto(_loopAdd, _loopResult, _negOut);
|
|
162
|
+
const ax = _loopResult.x;
|
|
163
|
+
_loopResult.x = _loopAdd.x;
|
|
164
|
+
_loopAdd.x = ax;
|
|
165
|
+
const ay = _loopResult.y;
|
|
166
|
+
_loopResult.y = _loopAdd.y;
|
|
167
|
+
_loopAdd.y = ay;
|
|
168
|
+
const az = _loopResult.z;
|
|
169
|
+
_loopResult.z = _loopAdd.z;
|
|
170
|
+
_loopAdd.z = az;
|
|
171
|
+
const at = _loopResult.t;
|
|
172
|
+
_loopResult.t = _loopAdd.t;
|
|
173
|
+
_loopAdd.t = at;
|
|
174
|
+
}
|
|
175
|
+
}
|
|
176
|
+
return clonePoint(_loopResult);
|
|
52
177
|
}
|
|
53
178
|
export function encodeExtendedPoint(point) {
|
|
54
|
-
|
|
55
|
-
|
|
56
|
-
|
|
57
|
-
const encoded =
|
|
58
|
-
|
|
179
|
+
feInv(_invZinv, point.z);
|
|
180
|
+
feMul(_invX, point.x, _invZinv);
|
|
181
|
+
feMul(_invY, point.y, _invZinv);
|
|
182
|
+
const encoded = new Uint8Array(32);
|
|
183
|
+
fePack(encoded, _invY);
|
|
184
|
+
fePack(_invXBytes, _invX);
|
|
185
|
+
encoded[31] = (encoded[31] & 0x7f) | ((_invXBytes[0] & 1) << 7);
|
|
59
186
|
return encoded;
|
|
60
187
|
}
|