From 1c41c725201c6e7ea3d1f03b7c9c07959ff4590c Mon Sep 17 00:00:00 2001 From: Daniel Huigens Date: Mon, 13 Jul 2020 20:24:55 +0200 Subject: [PATCH] Release new version --- bower.json | 2 +- dist/compat/openpgp.js | 3158 ++++++++++++++++-------- dist/compat/openpgp.min.js | 4 +- dist/compat/openpgp.worker.js | 2 +- dist/compat/openpgp.worker.min.js | 2 +- dist/lightweight/openpgp.js | 865 ++++++- dist/lightweight/openpgp.min.js | 4 +- dist/lightweight/openpgp.worker.js | 2 +- dist/lightweight/openpgp.worker.min.js | 2 +- dist/openpgp.js | 865 ++++++- dist/openpgp.min.js | 4 +- dist/openpgp.worker.js | 2 +- dist/openpgp.worker.min.js | 2 +- package-lock.json | 2 +- package.json | 2 +- 15 files changed, 3617 insertions(+), 1301 deletions(-) diff --git a/bower.json b/bower.json index 6b94d47b..9d9b10b1 100644 --- a/bower.json +++ b/bower.json @@ -1,6 +1,6 @@ { "name": "openpgp", - "version": "4.10.4", + "version": "4.10.5", "license": "LGPL-3.0+", "homepage": "https://openpgpjs.org/", "authors": [ diff --git a/dist/compat/openpgp.js b/dist/compat/openpgp.js index 4c240f71..bed8e4e9 100644 --- a/dist/compat/openpgp.js +++ b/dist/compat/openpgp.js @@ -1,4 +1,4 @@ -/*! OpenPGP.js v4.10.4 - 2020-04-22 - this is LGPL licensed code, see LICENSE/our website https://openpgpjs.org/ for more information. */ +/*! OpenPGP.js v4.10.5 - 2020-07-13 - this is LGPL licensed code, see LICENSE/our website https://openpgpjs.org/ for more information. */ (function(f){if(typeof exports==="object"&&typeof module!=="undefined"){module.exports=f()}else if(typeof define==="function"&&define.amd){define([],f)}else{var g;if(typeof window!=="undefined"){g=window}else if(typeof global!=="undefined"){g=global}else if(typeof self!=="undefined"){g=self}else{g=this}g.openpgp = f()}})(function(){var define,module,exports;return (function(){function r(e,n,t){function o(i,f){if(!n[i]){if(!e[i]){var c="function"==typeof require&&require;if(!f&&c)return c(i,!0);if(u)return u(i,!0);var a=new Error("Cannot find module '"+i+"'");throw a.code="MODULE_NOT_FOUND",a}var p=n[i]={exports:{}};e[i][0].call(p.exports,function(r){var n=e[i][1][r];return o(n||r)},p,p.exports,r,e,n,t)}return n[i].exports}for(var u="function"==typeof require&&require,i=0;i} The array of types + * @param {module:enums.publicKey} algo The public key algorithm + * @returns {Array} The array of types */ getPrivKeyParamTypes: function getPrivKeyParamTypes(algo) { switch (algo) { @@ -34019,8 +34019,8 @@ exports.default = { }, /** Returns the types comprising the public key of an algorithm - * @param {String} algo The public key algorithm - * @returns {Array} The array of types + * @param {module:enums.publicKey} algo The public key algorithm + * @returns {Array} The array of types */ getPubKeyParamTypes: function getPubKeyParamTypes(algo) { switch (algo) { @@ -34049,21 +34049,21 @@ exports.default = { // - MPI of EC point representing public key. case _enums2.default.publicKey.ecdsa: case _enums2.default.publicKey.eddsa: - return [_oid2.default, _mpi2.default]; + return [_oid3.default, _mpi2.default]; // Algorithm-Specific Fields for ECDH public keys: // - OID of curve; // - MPI of EC point representing public key. // - KDF: variable-length field containing KDF parameters. case _enums2.default.publicKey.ecdh: - return [_oid2.default, _mpi2.default, _kdf_params2.default]; + return [_oid3.default, _mpi2.default, _kdf_params2.default]; default: throw new Error('Invalid public key encryption algorithm.'); } }, /** Returns the types comprising the encrypted session key of an algorithm - * @param {String} algo The public key algorithm - * @returns {Array} The array of types + * @param {module:enums.publicKey} algo The public key algorithm + * @returns {Array} The array of types */ getEncSessionKeyParamTypes: function getEncSessionKeyParamTypes(algo) { switch (algo) { @@ -34089,10 +34089,10 @@ exports.default = { }, /** Generate algorithm-specific key parameters - * @param {String} algo The public key algorithm - * @param {Integer} bits Bit length for RSA keys - * @param {module:type/oid} oid Object identifier for ECC keys - * @returns {Array} The array of parameters + * @param {module:enums.publicKey} algo The public key algorithm + * @param {Integer} bits Bit length for RSA keys + * @param {module:type/oid} oid Object identifier for ECC keys + * @returns {Array} The array of parameters * @async */ generateParams: function generateParams(algo, bits, oid) { @@ -34116,13 +34116,127 @@ exports.default = { }); case _enums2.default.publicKey.ecdh: return _public_key2.default.elliptic.generate(oid).then(function (keyObject) { - return constructParams(types, [keyObject.oid, keyObject.Q, [keyObject.hash, keyObject.cipher], keyObject.d]); + return constructParams(types, [keyObject.oid, keyObject.Q, { hash: keyObject.hash, cipher: keyObject.cipher }, keyObject.d]); }); default: throw new Error('Invalid public key algorithm.'); } }, + /** + * Validate algorithm-specific key parameters + * @param {module:enums.publicKey} algo The public key algorithm + * @param {Array} params The array of parameters + * @returns {Promise whether the parameters are valid + * @async + */ + validateParams: function () { + var _ref4 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee3(algo, params) { + var n, e, d, p, q, u, _p2, _q, g, y, x, _p3, _g, _y, _x11, expectedLen, algoModule, _algoModule$parsePara, oid, Q, _d2, _expectedLen, _publicKey$elliptic$e, _oid, _Q, seed; + + return _regenerator2.default.wrap(function _callee3$(_context3) { + while (1) { + switch (_context3.prev = _context3.next) { + case 0: + _context3.t0 = algo; + _context3.next = _context3.t0 === _enums2.default.publicKey.rsa_encrypt ? 3 : _context3.t0 === _enums2.default.publicKey.rsa_encrypt_sign ? 3 : _context3.t0 === _enums2.default.publicKey.rsa_sign ? 3 : _context3.t0 === _enums2.default.publicKey.dsa ? 12 : _context3.t0 === _enums2.default.publicKey.elgamal ? 20 : _context3.t0 === _enums2.default.publicKey.ecdsa ? 27 : _context3.t0 === _enums2.default.publicKey.ecdh ? 27 : _context3.t0 === _enums2.default.publicKey.eddsa ? 33 : 38; + break; + + case 3: + if (!(params.length < 6)) { + _context3.next = 5; + break; + } + + throw new Error('Missing key parameters'); + + case 5: + n = params[0].toUint8Array(); + e = params[1].toUint8Array(); + d = params[2].toUint8Array(); + p = params[3].toUint8Array(); + q = params[4].toUint8Array(); + u = params[5].toUint8Array(); + return _context3.abrupt('return', _public_key2.default.rsa.validateParams(n, e, d, p, q, u)); + + case 12: + if (!(params.length < 5)) { + _context3.next = 14; + break; + } + + throw new Error('Missing key parameters'); + + case 14: + _p2 = params[0].toUint8Array(); + _q = params[1].toUint8Array(); + g = params[2].toUint8Array(); + y = params[3].toUint8Array(); + x = params[4].toUint8Array(); + return _context3.abrupt('return', _public_key2.default.dsa.validateParams(_p2, _q, g, y, x)); + + case 20: + if (!(params.length < 4)) { + _context3.next = 22; + break; + } + + throw new Error('Missing key parameters'); + + case 22: + _p3 = params[0].toUint8Array(); + _g = params[1].toUint8Array(); + _y = params[2].toUint8Array(); + _x11 = params[3].toUint8Array(); + return _context3.abrupt('return', _public_key2.default.elgamal.validateParams(_p3, _g, _y, _x11)); + + case 27: + expectedLen = algo === _enums2.default.publicKey.ecdh ? 3 : 2; + + if (!(params.length < expectedLen)) { + _context3.next = 30; + break; + } + + throw new Error('Missing key parameters'); + + case 30: + algoModule = _public_key2.default.elliptic[_enums2.default.read(_enums2.default.publicKey, algo)]; + _algoModule$parsePara = algoModule.parseParams(params), oid = _algoModule$parsePara.oid, Q = _algoModule$parsePara.Q, _d2 = _algoModule$parsePara.d; + return _context3.abrupt('return', algoModule.validateParams(oid, Q, _d2)); + + case 33: + _expectedLen = 3; + + if (!(params.length < _expectedLen)) { + _context3.next = 36; + break; + } + + throw new Error('Missing key parameters'); + + case 36: + _publicKey$elliptic$e = _public_key2.default.elliptic.eddsa.parseParams(params), _oid = _publicKey$elliptic$e.oid, _Q = _publicKey$elliptic$e.Q, seed = _publicKey$elliptic$e.seed; + return _context3.abrupt('return', _public_key2.default.elliptic.eddsa.validateParams(_oid, _Q, seed)); + + case 38: + throw new Error('Invalid public key algorithm.'); + + case 39: + case 'end': + return _context3.stop(); + } + } + }, _callee3, this); + })); + + function validateParams(_x9, _x10) { + return _ref4.apply(this, arguments); + } + + return validateParams; + }(), + /** * Generates a random byte prefix for the specified algorithm * See {@link https://tools.ietf.org/html/rfc4880#section-9.2|RFC 4880 9.2} for algorithms. @@ -34131,30 +34245,30 @@ exports.default = { * @async */ getPrefixRandom: function () { - var _ref4 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee3(algo) { + var _ref5 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee4(algo) { var prefixrandom, repeat; - return _regenerator2.default.wrap(function _callee3$(_context3) { + return _regenerator2.default.wrap(function _callee4$(_context4) { while (1) { - switch (_context3.prev = _context3.next) { + switch (_context4.prev = _context4.next) { case 0: - _context3.next = 2; + _context4.next = 2; return _random2.default.getRandomBytes(_cipher2.default[algo].blockSize); case 2: - prefixrandom = _context3.sent; + prefixrandom = _context4.sent; repeat = new Uint8Array([prefixrandom[prefixrandom.length - 2], prefixrandom[prefixrandom.length - 1]]); - return _context3.abrupt('return', _util2.default.concat([prefixrandom, repeat])); + return _context4.abrupt('return', _util2.default.concat([prefixrandom, repeat])); case 5: case 'end': - return _context3.stop(); + return _context4.stop(); } } - }, _callee3, this); + }, _callee4, this); })); - function getPrefixRandom(_x9) { - return _ref4.apply(this, arguments); + function getPrefixRandom(_x12) { + return _ref5.apply(this, arguments); } return getPrefixRandom; @@ -36286,9 +36400,13 @@ var _util = _dereq_('../../util'); var _util2 = _interopRequireDefault(_util); +var _prime = _dereq_('./prime'); + +var _prime2 = _interopRequireDefault(_prime); + function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; } -var one = new _bn2.default(1); // GPG4Browsers - An OpenPGP implementation in javascript +// GPG4Browsers - An OpenPGP implementation in javascript // Copyright (C) 2011 Recurity Labs GmbH // // This library is free software; you can redistribute it and/or @@ -36313,6 +36431,7 @@ var one = new _bn2.default(1); // GPG4Browsers - An OpenPGP implementation in ja * @module crypto/public_key/dsa */ +var one = new _bn2.default(1); var zero = new _bn2.default(0); /* @@ -36485,10 +36604,133 @@ exports.default = { } return verify; + }(), + + /** + * Validate DSA parameters + * @param {Uint8Array} p DSA prime + * @param {Uint8Array} q DSA group order + * @param {Uint8Array} g DSA sub-group generator + * @param {Uint8Array} y DSA public key + * @param {Uint8Array} x DSA private key + * @returns {Promise} whether params are valid + * @async + */ + validateParams: function () { + var _ref3 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee3(p, q, g, y, x) { + var one, pred, gModP, qSize, r, rqx; + return _regenerator2.default.wrap(function _callee3$(_context3) { + while (1) { + switch (_context3.prev = _context3.next) { + case 0: + p = new _bn2.default(p); + q = new _bn2.default(q); + g = new _bn2.default(g); + y = new _bn2.default(y); + one = new _bn2.default(1); + // Check that 1 < g < p + + if (!(g.lte(one) || g.gte(p))) { + _context3.next = 7; + break; + } + + return _context3.abrupt('return', false); + + case 7: + if (p.sub(one).mod(q).isZero()) { + _context3.next = 9; + break; + } + + return _context3.abrupt('return', false); + + case 9: + pred = new _bn2.default.red(p); + gModP = g.toRed(pred); + /** + * g has order q + * Check that g ** q = 1 mod p + */ + + if (gModP.redPow(q).eq(one)) { + _context3.next = 13; + break; + } + + return _context3.abrupt('return', false); + + case 13: + + /** + * Check q is large and probably prime (we mainly want to avoid small factors) + */ + qSize = q.bitLength(); + _context3.t0 = qSize < 150; + + if (_context3.t0) { + _context3.next = 19; + break; + } + + _context3.next = 18; + return _prime2.default.isProbablePrime(q, null, 32); + + case 18: + _context3.t0 = !_context3.sent; + + case 19: + if (!_context3.t0) { + _context3.next = 21; + break; + } + + return _context3.abrupt('return', false); + + case 21: + + /** + * Re-derive public key y' = g ** x mod p + * Expect y == y' + * + * Blinded exponentiation computes g**{rq + x} to compare to y + */ + x = new _bn2.default(x); + _context3.next = 24; + return _random2.default.getRandomBN(new _bn2.default(2).shln(qSize - 1), new _bn2.default(2).shln(qSize)); + + case 24: + r = _context3.sent; + // draw r of same size as q + rqx = q.mul(r).add(x); + + if (y.eq(gModP.redPow(rqx))) { + _context3.next = 28; + break; + } + + return _context3.abrupt('return', false); + + case 28: + return _context3.abrupt('return', true); + + case 29: + case 'end': + return _context3.stop(); + } + } + }, _callee3, this); + })); + + function validateParams(_x15, _x16, _x17, _x18, _x19) { + return _ref3.apply(this, arguments); + } + + return validateParams; }() }; -},{"../../util":429,"../random":380,"babel-runtime/helpers/asyncToGenerator":35,"babel-runtime/regenerator":43,"bn.js":44}],370:[function(_dereq_,module,exports){ +},{"../../util":429,"../random":380,"./prime":378,"babel-runtime/helpers/asyncToGenerator":35,"babel-runtime/regenerator":43,"bn.js":44}],370:[function(_dereq_,module,exports){ 'use strict'; Object.defineProperty(exports, "__esModule", { @@ -36621,6 +36863,137 @@ exports.default = { } return decrypt; + }(), + + /** + * Validate ElGamal parameters + * @param {Uint8Array} p ElGamal prime + * @param {Uint8Array} g ElGamal group generator + * @param {Uint8Array} y ElGamal public key + * @param {Uint8Array} x ElGamal private exponent + * @returns {Promise} whether params are valid + * @async + */ + validateParams: function () { + var _ref3 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee3(p, g, y, x) { + var one, pSize, pred, gModP, res, i, threshold, r, rqx; + return _regenerator2.default.wrap(function _callee3$(_context3) { + while (1) { + switch (_context3.prev = _context3.next) { + case 0: + p = new _bn2.default(p); + g = new _bn2.default(g); + y = new _bn2.default(y); + + one = new _bn2.default(1); + // Check that 1 < g < p + + if (!(g.lte(one) || g.gte(p))) { + _context3.next = 6; + break; + } + + return _context3.abrupt('return', false); + + case 6: + + // Expect p-1 to be large + pSize = p.subn(1).bitLength(); + + if (!(pSize < 1023)) { + _context3.next = 9; + break; + } + + return _context3.abrupt('return', false); + + case 9: + pred = new _bn2.default.red(p); + gModP = g.toRed(pred); + /** + * g should have order p-1 + * Check that g ** (p-1) = 1 mod p + */ + + if (gModP.redPow(p.subn(1)).eq(one)) { + _context3.next = 13; + break; + } + + return _context3.abrupt('return', false); + + case 13: + + /** + * Since p-1 is not prime, g might have a smaller order that divides p-1 + * We want to make sure that the order is large enough to hinder a small subgroup attack + * + * We just check g**i != 1 for all i up to a threshold + */ + res = g; + i = new _bn2.default(1); + threshold = new _bn2.default(2).shln(17); // we want order > threshold + + case 16: + if (!i.lt(threshold)) { + _context3.next = 23; + break; + } + + res = res.mul(g).mod(p); + + if (!res.eqn(1)) { + _context3.next = 20; + break; + } + + return _context3.abrupt('return', false); + + case 20: + i.iaddn(1); + _context3.next = 16; + break; + + case 23: + + /** + * Re-derive public key y' = g ** x mod p + * Expect y == y' + * + * Blinded exponentiation computes g**{r(p-1) + x} to compare to y + */ + x = new _bn2.default(x); + _context3.next = 26; + return _random2.default.getRandomBN(new _bn2.default(2).shln(pSize - 1), new _bn2.default(2).shln(pSize)); + + case 26: + r = _context3.sent; + // draw r of same size as p-1 + rqx = p.subn(1).mul(r).add(x); + + if (y.eq(gModP.redPow(rqx))) { + _context3.next = 30; + break; + } + + return _context3.abrupt('return', false); + + case 30: + return _context3.abrupt('return', true); + + case 31: + case 'end': + return _context3.stop(); + } + } + }, _callee3, this); + })); + + function validateParams(_x9, _x10, _x11, _x12) { + return _ref3.apply(this, arguments); + } + + return validateParams; }() }; @@ -36630,7 +37003,11 @@ exports.default = { Object.defineProperty(exports, "__esModule", { value: true }); -exports.privateToJwk = exports.rawPublicToJwk = exports.jwkToRawPublic = exports.getPreferredHashAlgo = exports.generate = exports.nodeCurves = exports.webCurves = exports.curves = undefined; +exports.validateStandardParams = exports.privateToJwk = exports.rawPublicToJwk = exports.jwkToRawPublic = exports.getPreferredHashAlgo = exports.generate = exports.nodeCurves = exports.webCurves = exports.curves = undefined; + +var _toConsumableArray2 = _dereq_('babel-runtime/helpers/toConsumableArray'); + +var _toConsumableArray3 = _interopRequireDefault(_toConsumableArray2); var _regenerator = _dereq_('babel-runtime/regenerator'); @@ -36674,6 +37051,120 @@ var generate = function () { }; }(); +/** + * Validate ECDH and EcDSA parameters + * Not suitable for EdDSA (different secret key format) + * @param {module:enums.publicKey} algo EC algorithm, to filter supported curves + * @param {module:type/oid} oid EC object identifier + * @param {Uint8Array} Q EC public point + * @param {Uint8Array} d EC secret scalar + * @returns {Promise} whether params are valid + * @async + */ +var validateStandardParams = function () { + var _ref3 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee3(algo, oid, Q, d) { + var supportedCurves, curveName, _nacl$box$keyPair$fro, publicKey, _dG, curve, dG; + + return _regenerator2.default.wrap(function _callee3$(_context3) { + while (1) { + switch (_context3.prev = _context3.next) { + case 0: + supportedCurves = { + p256: true, + p384: true, + p521: true, + secp256k1: true, + curve25519: algo === _enums2.default.publicKey.ecdh, + brainpoolP256r1: true, + brainpoolP384r1: true, + brainpoolP512r1: true + }; + + // Check whether the given curve is supported + + curveName = oid.getName(); + + if (supportedCurves[curveName]) { + _context3.next = 4; + break; + } + + return _context3.abrupt('return', false); + + case 4: + if (!(curveName === 'curve25519')) { + _context3.next = 12; + break; + } + + d = d.slice().reverse(); + // Re-derive public point Q' + _nacl$box$keyPair$fro = _naclFastLight2.default.box.keyPair.fromSecretKey(d), publicKey = _nacl$box$keyPair$fro.publicKey; + + + Q = new Uint8Array(Q); + _dG = new Uint8Array([0x40].concat((0, _toConsumableArray3.default)(publicKey))); // Add public key prefix + + if (_util2.default.equalsUint8Array(_dG, Q)) { + _context3.next = 11; + break; + } + + return _context3.abrupt('return', false); + + case 11: + return _context3.abrupt('return', true); + + case 12: + _context3.next = 14; + return (0, _indutnyKey.getIndutnyCurve)(curveName); + + case 14: + curve = _context3.sent; + _context3.prev = 15; + + // Parse Q and check that it is on the curve but not at infinity + Q = (0, _indutnyKey.keyFromPublic)(curve, Q).getPublic(); + _context3.next = 22; + break; + + case 19: + _context3.prev = 19; + _context3.t0 = _context3['catch'](15); + return _context3.abrupt('return', false); + + case 22: + + /** + * Re-derive public point Q' = dG from private key + * Expect Q == Q' + */ + d = new _bn2.default(d); + dG = (0, _indutnyKey.keyFromPrivate)(curve, d).getPublic(); + + if (dG.eq(Q)) { + _context3.next = 26; + break; + } + + return _context3.abrupt('return', false); + + case 26: + return _context3.abrupt('return', true); + + case 27: + case 'end': + return _context3.stop(); + } + } + }, _callee3, this, [[15, 19]]); + })); + + return function validateStandardParams(_x2, _x3, _x4, _x5) { + return _ref3.apply(this, arguments); + }; +}(); + ////////////////////////// // // // Helper functions // @@ -36682,64 +37173,33 @@ var generate = function () { var webGenKeyPair = function () { - var _ref3 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee3(name) { + var _ref4 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee4(name) { var webCryptoKey, privateKey, publicKey; - return _regenerator2.default.wrap(function _callee3$(_context3) { + return _regenerator2.default.wrap(function _callee4$(_context4) { while (1) { - switch (_context3.prev = _context3.next) { + switch (_context4.prev = _context4.next) { case 0: - _context3.next = 2; + _context4.next = 2; return webCrypto.generateKey({ name: "ECDSA", namedCurve: webCurves[name] }, true, ["sign", "verify"]); case 2: - webCryptoKey = _context3.sent; - _context3.next = 5; + webCryptoKey = _context4.sent; + _context4.next = 5; return webCrypto.exportKey("jwk", webCryptoKey.privateKey); case 5: - privateKey = _context3.sent; - _context3.next = 8; + privateKey = _context4.sent; + _context4.next = 8; return webCrypto.exportKey("jwk", webCryptoKey.publicKey); case 8: - publicKey = _context3.sent; - return _context3.abrupt('return', { + publicKey = _context4.sent; + return _context4.abrupt('return', { publicKey: jwkToRawPublic(publicKey), privateKey: _util2.default.b64_to_Uint8Array(privateKey.d, true) }); case 10: - case 'end': - return _context3.stop(); - } - } - }, _callee3, this); - })); - - return function webGenKeyPair(_x2) { - return _ref3.apply(this, arguments); - }; -}(); - -var nodeGenKeyPair = function () { - var _ref4 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee4(name) { - var ecdh; - return _regenerator2.default.wrap(function _callee4$(_context4) { - while (1) { - switch (_context4.prev = _context4.next) { - case 0: - // Note: ECDSA and ECDH key generation is structurally equivalent - ecdh = nodeCrypto.createECDH(nodeCurves[name]); - _context4.next = 3; - return ecdh.generateKeys(); - - case 3: - return _context4.abrupt('return', { - publicKey: new Uint8Array(ecdh.getPublicKey()), - privateKey: new Uint8Array(ecdh.getPrivateKey()) - }); - - case 4: case 'end': return _context4.stop(); } @@ -36747,11 +37207,42 @@ var nodeGenKeyPair = function () { }, _callee4, this); })); - return function nodeGenKeyPair(_x3) { + return function webGenKeyPair(_x6) { return _ref4.apply(this, arguments); }; }(); +var nodeGenKeyPair = function () { + var _ref5 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee5(name) { + var ecdh; + return _regenerator2.default.wrap(function _callee5$(_context5) { + while (1) { + switch (_context5.prev = _context5.next) { + case 0: + // Note: ECDSA and ECDH key generation is structurally equivalent + ecdh = nodeCrypto.createECDH(nodeCurves[name]); + _context5.next = 3; + return ecdh.generateKeys(); + + case 3: + return _context5.abrupt('return', { + publicKey: new Uint8Array(ecdh.getPublicKey()), + privateKey: new Uint8Array(ecdh.getPrivateKey()) + }); + + case 4: + case 'end': + return _context5.stop(); + } + } + }, _callee5, this); + })); + + return function nodeGenKeyPair(_x7) { + return _ref5.apply(this, arguments); + }; +}(); + ////////////////////////// // // // Helper functions // @@ -36891,7 +37382,7 @@ var curves = { }, curve25519: { oid: [0x06, 0x0A, 0x2B, 0x06, 0x01, 0x04, 0x01, 0x97, 0x55, 0x01, 0x05, 0x01], - keyType: _enums2.default.publicKey.ecdsa, + keyType: _enums2.default.publicKey.ecdh, hash: _enums2.default.hash.sha256, cipher: _enums2.default.symmetric.aes128, node: false, // nodeCurves.curve25519 TODO @@ -37051,9 +37542,7 @@ Curve.prototype.genKeyPair = (0, _asyncToGenerator3.default)( /*#__PURE__*/_rege function getPreferredHashAlgo(oid) { return curves[_enums2.default.write(_enums2.default.curve, oid.toHex())].hash; -} - -exports.default = Curve; +}exports.default = Curve; exports.curves = curves; exports.webCurves = webCurves; exports.nodeCurves = nodeCurves; @@ -37062,6 +37551,7 @@ exports.getPreferredHashAlgo = getPreferredHashAlgo; exports.jwkToRawPublic = jwkToRawPublic; exports.rawPublicToJwk = rawPublicToJwk; exports.privateToJwk = privateToJwk; +exports.validateStandardParams = validateStandardParams; function jwkToRawPublic(jwk) { var bufX = _util2.default.b64_to_Uint8Array(jwk.x); var bufY = _util2.default.b64_to_Uint8Array(jwk.y); @@ -37108,7 +37598,7 @@ function privateToJwk(payloadSize, name, publicKey, privateKey) { return jwk; } -},{"../../../enums":384,"../../../type/oid":427,"../../../util":429,"../../random":380,"./indutnyKey":376,"babel-runtime/helpers/asyncToGenerator":35,"babel-runtime/regenerator":43,"bn.js":44,"tweetnacl/nacl-fast-light.js":342}],372:[function(_dereq_,module,exports){ +},{"../../../enums":384,"../../../type/oid":427,"../../../util":429,"../../random":380,"./indutnyKey":376,"babel-runtime/helpers/asyncToGenerator":35,"babel-runtime/helpers/toConsumableArray":41,"babel-runtime/regenerator":43,"bn.js":44,"tweetnacl/nacl-fast-light.js":342}],372:[function(_dereq_,module,exports){ 'use strict'; Object.defineProperty(exports, "__esModule", { @@ -37131,15 +37621,47 @@ var _asyncToGenerator2 = _dereq_('babel-runtime/helpers/asyncToGenerator'); var _asyncToGenerator3 = _interopRequireDefault(_asyncToGenerator2); -// Key Derivation Function (RFC 6637) -var kdf = function () { - var _ref = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee(hash_algo, X, length, param) { - var stripLeading = arguments.length > 4 && arguments[4] !== undefined ? arguments[4] : false; - var stripTrailing = arguments.length > 5 && arguments[5] !== undefined ? arguments[5] : false; - var i, digest; +/** + * Validate ECDH parameters + * @param {module:type/oid} oid Elliptic curve object identifier + * @param {Uint8Array} Q ECDH public point + * @param {Uint8Array} d ECDH secret scalar + * @returns {Promise} whether params are valid + * @async + */ +var validateParams = function () { + var _ref = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee(oid, Q, d) { return _regenerator2.default.wrap(function _callee$(_context) { while (1) { switch (_context.prev = _context.next) { + case 0: + return _context.abrupt('return', (0, _curves.validateStandardParams)(_enums2.default.publicKey.ecdh, oid, Q, d)); + + case 1: + case 'end': + return _context.stop(); + } + } + }, _callee, this); + })); + + return function validateParams(_x, _x2, _x3) { + return _ref.apply(this, arguments); + }; +}(); + +// Build Param for ECDH algorithm (RFC 6637) + + +// Key Derivation Function (RFC 6637) +var kdf = function () { + var _ref2 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee2(hash_algo, X, length, param) { + var stripLeading = arguments.length > 4 && arguments[4] !== undefined ? arguments[4] : false; + var stripTrailing = arguments.length > 5 && arguments[5] !== undefined ? arguments[5] : false; + var i, digest; + return _regenerator2.default.wrap(function _callee2$(_context2) { + while (1) { + switch (_context2.prev = _context2.next) { case 0: // Note: X is little endian for Curve25519, big-endian for all others. // This is not ideal, but the RFC's are unclear @@ -37156,23 +37678,23 @@ var kdf = function () { for (i = X.length - 1; i >= 0 && X[i] === 0; i--) {} X = X.subarray(0, i + 1); } - _context.next = 5; + _context2.next = 5; return _hash2.default.digest(hash_algo, _util2.default.concatUint8Array([new Uint8Array([0, 0, 0, 1]), X, param])); case 5: - digest = _context.sent; - return _context.abrupt('return', digest.subarray(0, length)); + digest = _context2.sent; + return _context2.abrupt('return', digest.subarray(0, length)); case 7: case 'end': - return _context.stop(); + return _context2.stop(); } } - }, _callee, this); + }, _callee2, this); })); - return function kdf(_x, _x2, _x3, _x4) { - return _ref.apply(this, arguments); + return function kdf(_x4, _x5, _x6, _x7) { + return _ref2.apply(this, arguments); }; }(); @@ -37187,73 +37709,73 @@ var kdf = function () { var genPublicEphemeralKey = function () { - var _ref2 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee2(curve, Q) { - var d, _ref3, secretKey, sharedKey, _nacl$box$keyPair$fro, publicKey; + var _ref3 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee3(curve, Q) { + var d, _ref4, secretKey, sharedKey, _nacl$box$keyPair$fro, publicKey; - return _regenerator2.default.wrap(function _callee2$(_context2) { + return _regenerator2.default.wrap(function _callee3$(_context3) { while (1) { - switch (_context2.prev = _context2.next) { + switch (_context3.prev = _context3.next) { case 0: - _context2.t0 = curve.type; - _context2.next = _context2.t0 === 'curve25519' ? 3 : _context2.t0 === 'web' ? 14 : _context2.t0 === 'node' ? 25 : 26; + _context3.t0 = curve.type; + _context3.next = _context3.t0 === 'curve25519' ? 3 : _context3.t0 === 'web' ? 14 : _context3.t0 === 'node' ? 25 : 26; break; case 3: - _context2.next = 5; + _context3.next = 5; return _random2.default.getRandomBytes(32); case 5: - d = _context2.sent; - _context2.next = 8; + d = _context3.sent; + _context3.next = 8; return genPrivateEphemeralKey(curve, Q, null, d); case 8: - _ref3 = _context2.sent; - secretKey = _ref3.secretKey; - sharedKey = _ref3.sharedKey; + _ref4 = _context3.sent; + secretKey = _ref4.secretKey; + sharedKey = _ref4.sharedKey; _nacl$box$keyPair$fro = _naclFastLight2.default.box.keyPair.fromSecretKey(secretKey), publicKey = _nacl$box$keyPair$fro.publicKey; publicKey = _util2.default.concatUint8Array([new Uint8Array([0x40]), publicKey]); - return _context2.abrupt('return', { publicKey: publicKey, sharedKey: sharedKey }); + return _context3.abrupt('return', { publicKey: publicKey, sharedKey: sharedKey }); case 14: if (!(curve.web && _util2.default.getWebCrypto())) { - _context2.next = 24; + _context3.next = 24; break; } - _context2.prev = 15; - _context2.next = 18; + _context3.prev = 15; + _context3.next = 18; return webPublicEphemeralKey(curve, Q); case 18: - return _context2.abrupt('return', _context2.sent); + return _context3.abrupt('return', _context3.sent); case 21: - _context2.prev = 21; - _context2.t1 = _context2['catch'](15); + _context3.prev = 21; + _context3.t1 = _context3['catch'](15); - _util2.default.print_debug_error(_context2.t1); + _util2.default.print_debug_error(_context3.t1); case 24: - return _context2.abrupt('break', 26); + return _context3.abrupt('break', 26); case 25: - return _context2.abrupt('return', nodePublicEphemeralKey(curve, Q)); + return _context3.abrupt('return', nodePublicEphemeralKey(curve, Q)); case 26: - return _context2.abrupt('return', ellipticPublicEphemeralKey(curve, Q)); + return _context3.abrupt('return', ellipticPublicEphemeralKey(curve, Q)); case 27: case 'end': - return _context2.stop(); + return _context3.stop(); } } - }, _callee2, this, [[15, 21]]); + }, _callee3, this, [[15, 21]]); })); - return function genPublicEphemeralKey(_x7, _x8) { - return _ref2.apply(this, arguments); + return function genPublicEphemeralKey(_x10, _x11) { + return _ref3.apply(this, arguments); }; }(); @@ -37261,53 +37783,51 @@ var genPublicEphemeralKey = function () { * Encrypt and wrap a session key * * @param {module:type/oid} oid Elliptic curve object identifier - * @param {module:enums.symmetric} cipher_algo Symmetric cipher to use - * @param {module:enums.hash} hash_algo Hash algorithm to use + * @param {module:type/kdf_params} kdfParams KDF params including cipher and algorithm to use * @param {module:type/mpi} m Value derived from session key (RFC 6637) * @param {Uint8Array} Q Recipient public key - * @param {String} fingerprint Recipient fingerprint + * @param {Uint8Array} fingerprint Recipient fingerprint * @returns {Promise<{publicKey: Uint8Array, wrappedKey: Uint8Array}>} * @async */ var encrypt = function () { - var _ref4 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee3(oid, cipher_algo, hash_algo, m, Q, fingerprint) { - var curve, _ref5, publicKey, sharedKey, param, Z, wrappedKey; + var _ref5 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee4(oid, kdfParams, m, Q, fingerprint) { + var curve, _ref6, publicKey, sharedKey, param, cipher_algo, Z, wrappedKey; - return _regenerator2.default.wrap(function _callee3$(_context3) { + return _regenerator2.default.wrap(function _callee4$(_context4) { while (1) { - switch (_context3.prev = _context3.next) { + switch (_context4.prev = _context4.next) { case 0: curve = new _curves2.default(oid); - _context3.next = 3; + _context4.next = 3; return genPublicEphemeralKey(curve, Q); case 3: - _ref5 = _context3.sent; - publicKey = _ref5.publicKey; - sharedKey = _ref5.sharedKey; - param = buildEcdhParam(_enums2.default.publicKey.ecdh, oid, cipher_algo, hash_algo, fingerprint); - - cipher_algo = _enums2.default.read(_enums2.default.symmetric, cipher_algo); - _context3.next = 10; - return kdf(hash_algo, sharedKey, _cipher2.default[cipher_algo].keySize, param); + _ref6 = _context4.sent; + publicKey = _ref6.publicKey; + sharedKey = _ref6.sharedKey; + param = buildEcdhParam(_enums2.default.publicKey.ecdh, oid, kdfParams, fingerprint); + cipher_algo = _enums2.default.read(_enums2.default.symmetric, kdfParams.cipher); + _context4.next = 10; + return kdf(kdfParams.hash, sharedKey, _cipher2.default[cipher_algo].keySize, param); case 10: - Z = _context3.sent; + Z = _context4.sent; wrappedKey = _aes_kw2.default.wrap(Z, m.toString()); - return _context3.abrupt('return', { publicKey: publicKey, wrappedKey: wrappedKey }); + return _context4.abrupt('return', { publicKey: publicKey, wrappedKey: wrappedKey }); case 13: case 'end': - return _context3.stop(); + return _context4.stop(); } } - }, _callee3, this); + }, _callee4, this); })); - return function encrypt(_x9, _x10, _x11, _x12, _x13, _x14) { - return _ref4.apply(this, arguments); + return function encrypt(_x12, _x13, _x14, _x15, _x16) { + return _ref5.apply(this, arguments); }; }(); @@ -37324,11 +37844,11 @@ var encrypt = function () { var genPrivateEphemeralKey = function () { - var _ref6 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee4(curve, V, Q, d) { + var _ref7 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee5(curve, V, Q, d) { var privateKey, secretKey, sharedKey; - return _regenerator2.default.wrap(function _callee4$(_context4) { + return _regenerator2.default.wrap(function _callee5$(_context5) { while (1) { - switch (_context4.prev = _context4.next) { + switch (_context5.prev = _context5.next) { case 0: if (d.length !== curve.payloadSize) { privateKey = new Uint8Array(curve.payloadSize); @@ -37336,53 +37856,53 @@ var genPrivateEphemeralKey = function () { privateKey.set(d, curve.payloadSize - d.length); d = privateKey; } - _context4.t0 = curve.type; - _context4.next = _context4.t0 === 'curve25519' ? 4 : _context4.t0 === 'web' ? 7 : _context4.t0 === 'node' ? 18 : 19; + _context5.t0 = curve.type; + _context5.next = _context5.t0 === 'curve25519' ? 4 : _context5.t0 === 'web' ? 7 : _context5.t0 === 'node' ? 18 : 19; break; case 4: secretKey = d.slice().reverse(); sharedKey = _naclFastLight2.default.scalarMult(secretKey, V.subarray(1)); - return _context4.abrupt('return', { secretKey: secretKey, sharedKey: sharedKey }); + return _context5.abrupt('return', { secretKey: secretKey, sharedKey: sharedKey }); case 7: if (!(curve.web && _util2.default.getWebCrypto())) { - _context4.next = 17; + _context5.next = 17; break; } - _context4.prev = 8; - _context4.next = 11; + _context5.prev = 8; + _context5.next = 11; return webPrivateEphemeralKey(curve, V, Q, d); case 11: - return _context4.abrupt('return', _context4.sent); + return _context5.abrupt('return', _context5.sent); case 14: - _context4.prev = 14; - _context4.t1 = _context4['catch'](8); + _context5.prev = 14; + _context5.t1 = _context5['catch'](8); - _util2.default.print_debug_error(_context4.t1); + _util2.default.print_debug_error(_context5.t1); case 17: - return _context4.abrupt('break', 19); + return _context5.abrupt('break', 19); case 18: - return _context4.abrupt('return', nodePrivateEphemeralKey(curve, V, d)); + return _context5.abrupt('return', nodePrivateEphemeralKey(curve, V, d)); case 19: - return _context4.abrupt('return', ellipticPrivateEphemeralKey(curve, V, d)); + return _context5.abrupt('return', ellipticPrivateEphemeralKey(curve, V, d)); case 20: case 'end': - return _context4.stop(); + return _context5.stop(); } } - }, _callee4, this, [[8, 14]]); + }, _callee5, this, [[8, 14]]); })); - return function genPrivateEphemeralKey(_x15, _x16, _x17, _x18) { - return _ref6.apply(this, arguments); + return function genPrivateEphemeralKey(_x17, _x18, _x19, _x20) { + return _ref7.apply(this, arguments); }; }(); @@ -37390,62 +37910,60 @@ var genPrivateEphemeralKey = function () { * Decrypt and unwrap the value derived from session key * * @param {module:type/oid} oid Elliptic curve object identifier - * @param {module:enums.symmetric} cipher_algo Symmetric cipher to use - * @param {module:enums.hash} hash_algo Hash algorithm to use + * @param {module:type/kdf_params} kdfParams KDF params including cipher and algorithm to use * @param {Uint8Array} V Public part of ephemeral key * @param {Uint8Array} C Encrypted and wrapped value derived from session key * @param {Uint8Array} Q Recipient public key * @param {Uint8Array} d Recipient private key - * @param {String} fingerprint Recipient fingerprint + * @param {Uint8Array} fingerprint Recipient fingerprint * @returns {Promise} Value derived from session key * @async */ var decrypt = function () { - var _ref7 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee5(oid, cipher_algo, hash_algo, V, C, Q, d, fingerprint) { - var curve, _ref8, sharedKey, param, err, i, Z; + var _ref8 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee6(oid, kdfParams, V, C, Q, d, fingerprint) { + var curve, _ref9, sharedKey, param, cipher_algo, err, i, Z; - return _regenerator2.default.wrap(function _callee5$(_context5) { + return _regenerator2.default.wrap(function _callee6$(_context6) { while (1) { - switch (_context5.prev = _context5.next) { + switch (_context6.prev = _context6.next) { case 0: curve = new _curves2.default(oid); - _context5.next = 3; + _context6.next = 3; return genPrivateEphemeralKey(curve, V, Q, d); case 3: - _ref8 = _context5.sent; - sharedKey = _ref8.sharedKey; - param = buildEcdhParam(_enums2.default.publicKey.ecdh, oid, cipher_algo, hash_algo, fingerprint); - - cipher_algo = _enums2.default.read(_enums2.default.symmetric, cipher_algo); + _ref9 = _context6.sent; + sharedKey = _ref9.sharedKey; + param = buildEcdhParam(_enums2.default.publicKey.ecdh, oid, kdfParams, fingerprint); + cipher_algo = _enums2.default.read(_enums2.default.symmetric, kdfParams.cipher); err = void 0; i = 0; case 9: if (!(i < 3)) { - _context5.next = 23; + _context6.next = 23; break; } - _context5.prev = 10; - _context5.next = 13; - return kdf(hash_algo, sharedKey, _cipher2.default[cipher_algo].keySize, param, i === 1, i === 2); + _context6.prev = 10; + _context6.next = 13; + return kdf(kdfParams.hash, sharedKey, _cipher2.default[cipher_algo].keySize, param, i === 1, i === 2); case 13: - Z = _context5.sent; - return _context5.abrupt('return', new _bn2.default(_aes_kw2.default.unwrap(Z, C))); + Z = _context6.sent; + return _context6.abrupt('return', new _bn2.default(_aes_kw2.default.unwrap(Z, C))); case 17: - _context5.prev = 17; - _context5.t0 = _context5['catch'](10); + _context6.prev = 17; + _context6.t0 = _context6['catch'](10); - err = _context5.t0; + err = _context6.t0; case 20: i++; - _context5.next = 9; + _context6.next = 9; break; case 23: @@ -37453,14 +37971,14 @@ var decrypt = function () { case 24: case 'end': - return _context5.stop(); + return _context6.stop(); } } - }, _callee5, this, [[10, 17]]); + }, _callee6, this, [[10, 17]]); })); - return function decrypt(_x19, _x20, _x21, _x22, _x23, _x24, _x25, _x26) { - return _ref7.apply(this, arguments); + return function decrypt(_x21, _x22, _x23, _x24, _x25, _x26, _x27) { + return _ref8.apply(this, arguments); }; }(); @@ -37477,12 +37995,12 @@ var decrypt = function () { var webPrivateEphemeralKey = function () { - var _ref9 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee6(curve, V, Q, d) { - var recipient, privateKey, jwk, sender, _ref10, _ref11, S, secret, _ref12, _ref13, sharedKey, secretKey; + var _ref10 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee7(curve, V, Q, d) { + var recipient, privateKey, jwk, sender, _ref11, _ref12, S, secret, _ref13, _ref14, sharedKey, secretKey; - return _regenerator2.default.wrap(function _callee6$(_context6) { + return _regenerator2.default.wrap(function _callee7$(_context7) { while (1) { - switch (_context6.prev = _context6.next) { + switch (_context7.prev = _context7.next) { case 0: recipient = (0, _curves.privateToJwk)(curve.payloadSize, curve.web.web, Q, d); privateKey = webCrypto.importKey("jwk", recipient, { @@ -37494,42 +38012,42 @@ var webPrivateEphemeralKey = function () { name: "ECDH", namedCurve: curve.web.web }, true, []); - _context6.next = 6; + _context7.next = 6; return _promise2.default.all([privateKey, sender]); case 6: - _ref10 = _context6.sent; - _ref11 = (0, _slicedToArray3.default)(_ref10, 2); - privateKey = _ref11[0]; - sender = _ref11[1]; + _ref11 = _context7.sent; + _ref12 = (0, _slicedToArray3.default)(_ref11, 2); + privateKey = _ref12[0]; + sender = _ref12[1]; S = webCrypto.deriveBits({ name: "ECDH", namedCurve: curve.web.web, public: sender }, privateKey, curve.web.sharedSize); secret = webCrypto.exportKey("jwk", privateKey); - _context6.next = 14; + _context7.next = 14; return _promise2.default.all([S, secret]); case 14: - _ref12 = _context6.sent; - _ref13 = (0, _slicedToArray3.default)(_ref12, 2); - S = _ref13[0]; - secret = _ref13[1]; + _ref13 = _context7.sent; + _ref14 = (0, _slicedToArray3.default)(_ref13, 2); + S = _ref14[0]; + secret = _ref14[1]; sharedKey = new Uint8Array(S); secretKey = _util2.default.b64_to_Uint8Array(secret.d, true); - return _context6.abrupt('return', { secretKey: secretKey, sharedKey: sharedKey }); + return _context7.abrupt('return', { secretKey: secretKey, sharedKey: sharedKey }); case 21: case 'end': - return _context6.stop(); + return _context7.stop(); } } - }, _callee6, this); + }, _callee7, this); })); - return function webPrivateEphemeralKey(_x27, _x28, _x29, _x30) { - return _ref9.apply(this, arguments); + return function webPrivateEphemeralKey(_x28, _x29, _x30, _x31) { + return _ref10.apply(this, arguments); }; }(); @@ -37544,12 +38062,12 @@ var webPrivateEphemeralKey = function () { var webPublicEphemeralKey = function () { - var _ref14 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee7(curve, Q) { - var jwk, keyPair, recipient, _ref15, _ref16, s, p, _ref17, _ref18, sharedKey, publicKey; + var _ref15 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee8(curve, Q) { + var jwk, keyPair, recipient, _ref16, _ref17, s, p, _ref18, _ref19, sharedKey, publicKey; - return _regenerator2.default.wrap(function _callee7$(_context7) { + return _regenerator2.default.wrap(function _callee8$(_context8) { while (1) { - switch (_context7.prev = _context7.next) { + switch (_context8.prev = _context8.next) { case 0: jwk = (0, _curves.rawPublicToJwk)(curve.payloadSize, curve.web.web, Q); keyPair = webCrypto.generateKey({ @@ -37560,42 +38078,42 @@ var webPublicEphemeralKey = function () { name: "ECDH", namedCurve: curve.web.web }, false, []); - _context7.next = 5; + _context8.next = 5; return _promise2.default.all([keyPair, recipient]); case 5: - _ref15 = _context7.sent; - _ref16 = (0, _slicedToArray3.default)(_ref15, 2); - keyPair = _ref16[0]; - recipient = _ref16[1]; + _ref16 = _context8.sent; + _ref17 = (0, _slicedToArray3.default)(_ref16, 2); + keyPair = _ref17[0]; + recipient = _ref17[1]; s = webCrypto.deriveBits({ name: "ECDH", namedCurve: curve.web.web, public: recipient }, keyPair.privateKey, curve.web.sharedSize); p = webCrypto.exportKey("jwk", keyPair.publicKey); - _context7.next = 13; + _context8.next = 13; return _promise2.default.all([s, p]); case 13: - _ref17 = _context7.sent; - _ref18 = (0, _slicedToArray3.default)(_ref17, 2); - s = _ref18[0]; - p = _ref18[1]; + _ref18 = _context8.sent; + _ref19 = (0, _slicedToArray3.default)(_ref18, 2); + s = _ref19[0]; + p = _ref19[1]; sharedKey = new Uint8Array(s); publicKey = new Uint8Array((0, _curves.jwkToRawPublic)(p)); - return _context7.abrupt('return', { publicKey: publicKey, sharedKey: sharedKey }); + return _context8.abrupt('return', { publicKey: publicKey, sharedKey: sharedKey }); case 20: case 'end': - return _context7.stop(); + return _context8.stop(); } } - }, _callee7, this); + }, _callee8, this); })); - return function webPublicEphemeralKey(_x31, _x32) { - return _ref14.apply(this, arguments); + return function webPublicEphemeralKey(_x32, _x33) { + return _ref15.apply(this, arguments); }; }(); @@ -37611,17 +38129,17 @@ var webPublicEphemeralKey = function () { var ellipticPrivateEphemeralKey = function () { - var _ref19 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee8(curve, V, d) { + var _ref20 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee9(curve, V, d) { var indutnyCurve, secretKey, S, len, sharedKey; - return _regenerator2.default.wrap(function _callee8$(_context8) { + return _regenerator2.default.wrap(function _callee9$(_context9) { while (1) { - switch (_context8.prev = _context8.next) { + switch (_context9.prev = _context9.next) { case 0: - _context8.next = 2; + _context9.next = 2; return (0, _indutnyKey.getIndutnyCurve)(curve.name); case 2: - indutnyCurve = _context8.sent; + indutnyCurve = _context9.sent; V = (0, _indutnyKey.keyFromPublic)(indutnyCurve, V); d = (0, _indutnyKey.keyFromPrivate)(indutnyCurve, d); @@ -37629,18 +38147,18 @@ var ellipticPrivateEphemeralKey = function () { S = d.derive(V.getPublic()); len = indutnyCurve.curve.p.byteLength(); sharedKey = S.toArrayLike(Uint8Array, 'be', len); - return _context8.abrupt('return', { secretKey: secretKey, sharedKey: sharedKey }); + return _context9.abrupt('return', { secretKey: secretKey, sharedKey: sharedKey }); case 10: case 'end': - return _context8.stop(); + return _context9.stop(); } } - }, _callee8, this); + }, _callee9, this); })); - return function ellipticPrivateEphemeralKey(_x33, _x34, _x35) { - return _ref19.apply(this, arguments); + return function ellipticPrivateEphemeralKey(_x34, _x35, _x36) { + return _ref20.apply(this, arguments); }; }(); @@ -37655,22 +38173,22 @@ var ellipticPrivateEphemeralKey = function () { var ellipticPublicEphemeralKey = function () { - var _ref20 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee9(curve, Q) { + var _ref21 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee10(curve, Q) { var indutnyCurve, v, V, publicKey, S, len, sharedKey; - return _regenerator2.default.wrap(function _callee9$(_context9) { + return _regenerator2.default.wrap(function _callee10$(_context10) { while (1) { - switch (_context9.prev = _context9.next) { + switch (_context10.prev = _context10.next) { case 0: - _context9.next = 2; + _context10.next = 2; return (0, _indutnyKey.getIndutnyCurve)(curve.name); case 2: - indutnyCurve = _context9.sent; - _context9.next = 5; + indutnyCurve = _context10.sent; + _context10.next = 5; return curve.genKeyPair(); case 5: - v = _context9.sent; + v = _context10.sent; Q = (0, _indutnyKey.keyFromPublic)(indutnyCurve, Q); V = (0, _indutnyKey.keyFromPrivate)(indutnyCurve, v.privateKey); @@ -37678,18 +38196,18 @@ var ellipticPublicEphemeralKey = function () { S = V.derive(Q.getPublic()); len = indutnyCurve.curve.p.byteLength(); sharedKey = S.toArrayLike(Uint8Array, 'be', len); - return _context9.abrupt('return', { publicKey: publicKey, sharedKey: sharedKey }); + return _context10.abrupt('return', { publicKey: publicKey, sharedKey: sharedKey }); case 13: case 'end': - return _context9.stop(); + return _context10.stop(); } } - }, _callee9, this); + }, _callee10, this); })); - return function ellipticPublicEphemeralKey(_x36, _x37) { - return _ref20.apply(this, arguments); + return function ellipticPublicEphemeralKey(_x37, _x38) { + return _ref21.apply(this, arguments); }; }(); @@ -37705,29 +38223,29 @@ var ellipticPublicEphemeralKey = function () { var nodePrivateEphemeralKey = function () { - var _ref21 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee10(curve, V, d) { + var _ref22 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee11(curve, V, d) { var recipient, sharedKey, secretKey; - return _regenerator2.default.wrap(function _callee10$(_context10) { + return _regenerator2.default.wrap(function _callee11$(_context11) { while (1) { - switch (_context10.prev = _context10.next) { + switch (_context11.prev = _context11.next) { case 0: recipient = nodeCrypto.createECDH(curve.node.node); recipient.setPrivateKey(d); sharedKey = new Uint8Array(recipient.computeSecret(V)); secretKey = new Uint8Array(recipient.getPrivateKey()); - return _context10.abrupt('return', { secretKey: secretKey, sharedKey: sharedKey }); + return _context11.abrupt('return', { secretKey: secretKey, sharedKey: sharedKey }); case 5: case 'end': - return _context10.stop(); + return _context11.stop(); } } - }, _callee10, this); + }, _callee11, this); })); - return function nodePrivateEphemeralKey(_x38, _x39, _x40) { - return _ref21.apply(this, arguments); + return function nodePrivateEphemeralKey(_x39, _x40, _x41) { + return _ref22.apply(this, arguments); }; }(); @@ -37742,29 +38260,29 @@ var nodePrivateEphemeralKey = function () { var nodePublicEphemeralKey = function () { - var _ref22 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee11(curve, Q) { + var _ref23 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee12(curve, Q) { var sender, sharedKey, publicKey; - return _regenerator2.default.wrap(function _callee11$(_context11) { + return _regenerator2.default.wrap(function _callee12$(_context12) { while (1) { - switch (_context11.prev = _context11.next) { + switch (_context12.prev = _context12.next) { case 0: sender = nodeCrypto.createECDH(curve.node.node); sender.generateKeys(); sharedKey = new Uint8Array(sender.computeSecret(Q)); publicKey = new Uint8Array(sender.getPublicKey()); - return _context11.abrupt('return', { publicKey: publicKey, sharedKey: sharedKey }); + return _context12.abrupt('return', { publicKey: publicKey, sharedKey: sharedKey }); case 5: case 'end': - return _context11.stop(); + return _context12.stop(); } } - }, _callee11, this); + }, _callee12, this); })); - return function nodePublicEphemeralKey(_x41, _x42) { - return _ref22.apply(this, arguments); + return function nodePublicEphemeralKey(_x42, _x43) { + return _ref23.apply(this, arguments); }; }(); @@ -37796,10 +38314,6 @@ var _hash = _dereq_('../../hash'); var _hash2 = _interopRequireDefault(_hash); -var _kdf_params = _dereq_('../../../type/kdf_params'); - -var _kdf_params2 = _interopRequireDefault(_kdf_params); - var _enums = _dereq_('../../../enums'); var _enums2 = _interopRequireDefault(_enums); @@ -37812,7 +38326,7 @@ var _indutnyKey = _dereq_('./indutnyKey'); function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; } -var webCrypto = _util2.default.getWebCrypto(); // OpenPGP.js - An OpenPGP implementation in javascript +// OpenPGP.js - An OpenPGP implementation in javascript // Copyright (C) 2015-2016 Decentral // // This library is free software; you can redistribute it and/or @@ -37844,15 +38358,37 @@ var webCrypto = _util2.default.getWebCrypto(); // OpenPGP.js - An OpenPGP implem * @module crypto/public_key/elliptic/ecdh */ -var nodeCrypto = _util2.default.getNodeCrypto(); +var webCrypto = _util2.default.getWebCrypto(); +var nodeCrypto = _util2.default.getNodeCrypto();function buildEcdhParam(public_algo, oid, kdfParams, fingerprint) { + return _util2.default.concatUint8Array([oid.write(), new Uint8Array([public_algo]), kdfParams.write(), _util2.default.str_to_Uint8Array("Anonymous Sender "), fingerprint.subarray(0, 20)]); +} -// Build Param for ECDH algorithm (RFC 6637) -function buildEcdhParam(public_algo, oid, cipher_algo, hash_algo, fingerprint) { - var kdf_params = new _kdf_params2.default([hash_algo, cipher_algo]); - return _util2.default.concatUint8Array([oid.write(), new Uint8Array([public_algo]), kdf_params.write(), _util2.default.str_to_Uint8Array("Anonymous Sender "), fingerprint.subarray(0, 20)]); -}exports.default = { encrypt: encrypt, decrypt: decrypt, genPublicEphemeralKey: genPublicEphemeralKey, genPrivateEphemeralKey: genPrivateEphemeralKey, buildEcdhParam: buildEcdhParam, kdf: kdf, webPublicEphemeralKey: webPublicEphemeralKey, webPrivateEphemeralKey: webPrivateEphemeralKey, ellipticPublicEphemeralKey: ellipticPublicEphemeralKey, ellipticPrivateEphemeralKey: ellipticPrivateEphemeralKey, nodePublicEphemeralKey: nodePublicEphemeralKey, nodePrivateEphemeralKey: nodePrivateEphemeralKey }; +/** + * Parses MPI params and returns them as byte arrays of fixed length + * @param {Array} params key parameters + * @returns {Object} parameters in the form + * { oid, kdfParams, d: Uint8Array, Q: Uint8Array } + */ +function parseParams(params) { + if (params.length < 3 || params.length > 4) { + throw new Error('Unexpected number of parameters'); + } -},{"../../../enums":384,"../../../type/kdf_params":424,"../../../util":429,"../../aes_kw":351,"../../cipher":357,"../../hash":363,"../../random":380,"./curves":371,"./indutnyKey":376,"babel-runtime/core-js/promise":31,"babel-runtime/helpers/asyncToGenerator":35,"babel-runtime/helpers/slicedToArray":40,"babel-runtime/regenerator":43,"bn.js":44,"tweetnacl/nacl-fast-light.js":342}],373:[function(_dereq_,module,exports){ + var oid = params[0]; + var curve = new _curves2.default(oid); + var parsedParams = { oid: oid }; + // The public point never has leading zeros, as it is prefixed by 0x40 or 0x04 + parsedParams.Q = params[1].toUint8Array(); + parsedParams.kdfParams = params[2]; + + if (params.length === 4) { + parsedParams.d = params[3].toUint8Array('be', curve.payloadSize); + } + + return parsedParams; +}exports.default = { encrypt: encrypt, decrypt: decrypt, genPublicEphemeralKey: genPublicEphemeralKey, genPrivateEphemeralKey: genPrivateEphemeralKey, buildEcdhParam: buildEcdhParam, kdf: kdf, webPublicEphemeralKey: webPublicEphemeralKey, webPrivateEphemeralKey: webPrivateEphemeralKey, ellipticPublicEphemeralKey: ellipticPublicEphemeralKey, ellipticPrivateEphemeralKey: ellipticPrivateEphemeralKey, nodePublicEphemeralKey: nodePublicEphemeralKey, nodePrivateEphemeralKey: nodePrivateEphemeralKey, validateParams: validateParams, parseParams: parseParams }; + +},{"../../../enums":384,"../../../util":429,"../../aes_kw":351,"../../cipher":357,"../../hash":363,"../../random":380,"./curves":371,"./indutnyKey":376,"babel-runtime/core-js/promise":31,"babel-runtime/helpers/asyncToGenerator":35,"babel-runtime/helpers/slicedToArray":40,"babel-runtime/regenerator":43,"bn.js":44,"tweetnacl/nacl-fast-light.js":342}],373:[function(_dereq_,module,exports){ 'use strict'; Object.defineProperty(exports, "__esModule", { @@ -37893,13 +38429,13 @@ var sign = function () { curve = new _curves2.default(oid); if (!(message && !_util2.default.isStream(message))) { - _context.next = 20; + _context.next = 22; break; } keyPair = { publicKey: publicKey, privateKey: privateKey }; _context.t0 = curve.type; - _context.next = _context.t0 === 'web' ? 6 : _context.t0 === 'node' ? 16 : 20; + _context.next = _context.t0 === 'web' ? 6 : _context.t0 === 'node' ? 18 : 22; break; case 6: @@ -37914,26 +38450,34 @@ var sign = function () { _context.prev = 12; _context.t1 = _context['catch'](6); - _util2.default.print_debug_error("Browser did not support signing: " + _context.t1.message); + if (!(curve.name !== 'p521' && (_context.t1.name === 'DataError' || _context.t1.name === 'OperationError'))) { + _context.next = 16; + break; + } - case 15: - return _context.abrupt('break', 20); + throw _context.t1; case 16: - _context.next = 18; - return nodeSign(curve, hash_algo, message, keyPair); + _util2.default.print_debug_error("Browser did not support verifying: " + _context.t1.message); + + case 17: + return _context.abrupt('break', 22); case 18: + _context.next = 20; + return nodeSign(curve, hash_algo, message, keyPair); + + case 20: signature = _context.sent; return _context.abrupt('return', { r: signature.r.toArrayLike(Uint8Array), s: signature.s.toArrayLike(Uint8Array) }); - case 20: + case 22: return _context.abrupt('return', ellipticSign(curve, hashed, privateKey)); - case 21: + case 23: case 'end': return _context.stop(); } @@ -37970,12 +38514,12 @@ var verify = function () { curve = new _curves2.default(oid); if (!(message && !_util2.default.isStream(message))) { - _context2.next = 16; + _context2.next = 18; break; } _context2.t0 = curve.type; - _context2.next = _context2.t0 === 'web' ? 5 : _context2.t0 === 'node' ? 15 : 16; + _context2.next = _context2.t0 === 'web' ? 5 : _context2.t0 === 'node' ? 17 : 18; break; case 5: @@ -37990,19 +38534,27 @@ var verify = function () { _context2.prev = 11; _context2.t1 = _context2['catch'](5); - _util2.default.print_debug_error("Browser did not support verifying: " + _context2.t1.message); + if (!(curve.name !== 'p521' && (_context2.t1.name === 'DataError' || _context2.t1.name === 'OperationError'))) { + _context2.next = 15; + break; + } - case 14: - return _context2.abrupt('break', 16); + throw _context2.t1; case 15: - return _context2.abrupt('return', nodeVerify(curve, hash_algo, signature, message, publicKey)); + _util2.default.print_debug_error("Browser did not support verifying: " + _context2.t1.message); case 16: + return _context2.abrupt('break', 18); + + case 17: + return _context2.abrupt('return', nodeVerify(curve, hash_algo, signature, message, publicKey)); + + case 18: digest = typeof hash_algo === 'undefined' ? message : hashed; return _context2.abrupt('return', ellipticVerify(curve, signature, digest, publicKey)); - case 18: + case 20: case 'end': return _context2.stop(); } @@ -38015,6 +38567,91 @@ var verify = function () { }; }(); +/** + * Validate EcDSA parameters + * @param {module:type/oid} oid Elliptic curve object identifier + * @param {Uint8Array} Q EcDSA public point + * @param {Uint8Array} d EcDSA secret scalar + * @returns {Promise} whether params are valid + * @async + */ + + +var validateParams = function () { + var _ref3 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee3(oid, Q, d) { + var curve, message, hashAlgo, hashed, signature; + return _regenerator2.default.wrap(function _callee3$(_context3) { + while (1) { + switch (_context3.prev = _context3.next) { + case 0: + curve = new _curves2.default(oid); + // Reject curves x25519 and ed25519 + + if (!(curve.keyType !== _enums2.default.publicKey.ecdsa)) { + _context3.next = 3; + break; + } + + return _context3.abrupt('return', false); + + case 3: + _context3.t0 = curve.type; + _context3.next = _context3.t0 === 'web' ? 6 : _context3.t0 === 'node' ? 6 : 25; + break; + + case 6: + _context3.next = 8; + return _random2.default.getRandomBytes(8); + + case 8: + message = _context3.sent; + hashAlgo = _enums2.default.hash.sha256; + _context3.next = 12; + return _hash2.default.digest(hashAlgo, message); + + case 12: + hashed = _context3.sent; + _context3.prev = 13; + _context3.next = 16; + return sign(oid, hashAlgo, message, Q, d, hashed); + + case 16: + signature = _context3.sent; + _context3.next = 19; + return verify(oid, hashAlgo, signature, message, Q, hashed); + + case 19: + return _context3.abrupt('return', _context3.sent); + + case 22: + _context3.prev = 22; + _context3.t1 = _context3['catch'](13); + return _context3.abrupt('return', false); + + case 25: + return _context3.abrupt('return', (0, _curves.validateStandardParams)(_enums2.default.publicKey.ecdsa, oid, Q, d)); + + case 26: + case 'end': + return _context3.stop(); + } + } + }, _callee3, this, [[13, 22]]); + })); + + return function validateParams(_x13, _x14, _x15) { + return _ref3.apply(this, arguments); + }; +}(); + +/** + * Parses MPI params and returns them as byte arrays of fixed length + * @param {Array} params key parameters + * @returns {Object} parameters in the form + * { oid, d: Uint8Array, Q: Uint8Array } + */ + + ////////////////////////// // // // Helper functions // @@ -38022,40 +38659,8 @@ var verify = function () { ////////////////////////// var ellipticSign = function () { - var _ref3 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee3(curve, hashed, privateKey) { + var _ref4 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee4(curve, hashed, privateKey) { var indutnyCurve, key, signature; - return _regenerator2.default.wrap(function _callee3$(_context3) { - while (1) { - switch (_context3.prev = _context3.next) { - case 0: - _context3.next = 2; - return (0, _indutnyKey.getIndutnyCurve)(curve.name); - - case 2: - indutnyCurve = _context3.sent; - key = (0, _indutnyKey.keyFromPrivate)(indutnyCurve, privateKey); - signature = key.sign(hashed); - return _context3.abrupt('return', { - r: signature.r.toArrayLike(Uint8Array), - s: signature.s.toArrayLike(Uint8Array) - }); - - case 6: - case 'end': - return _context3.stop(); - } - } - }, _callee3, this); - })); - - return function ellipticSign(_x13, _x14, _x15) { - return _ref3.apply(this, arguments); - }; -}(); - -var ellipticVerify = function () { - var _ref4 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee4(curve, signature, digest, publicKey) { - var indutnyCurve, key; return _regenerator2.default.wrap(function _callee4$(_context4) { while (1) { switch (_context4.prev = _context4.next) { @@ -38065,10 +38670,14 @@ var ellipticVerify = function () { case 2: indutnyCurve = _context4.sent; - key = (0, _indutnyKey.keyFromPublic)(indutnyCurve, publicKey); - return _context4.abrupt('return', key.verify(digest, signature)); + key = (0, _indutnyKey.keyFromPrivate)(indutnyCurve, privateKey); + signature = key.sign(hashed); + return _context4.abrupt('return', { + r: signature.r.toArrayLike(Uint8Array), + s: signature.s.toArrayLike(Uint8Array) + }); - case 5: + case 6: case 'end': return _context4.stop(); } @@ -38076,46 +38685,27 @@ var ellipticVerify = function () { }, _callee4, this); })); - return function ellipticVerify(_x16, _x17, _x18, _x19) { + return function ellipticSign(_x16, _x17, _x18) { return _ref4.apply(this, arguments); }; }(); -var webSign = function () { - var _ref5 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee5(curve, hash_algo, message, keyPair) { - var len, jwk, key, signature; +var ellipticVerify = function () { + var _ref5 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee5(curve, signature, digest, publicKey) { + var indutnyCurve, key; return _regenerator2.default.wrap(function _callee5$(_context5) { while (1) { switch (_context5.prev = _context5.next) { case 0: - len = curve.payloadSize; - jwk = (0, _curves.privateToJwk)(curve.payloadSize, _curves.webCurves[curve.name], keyPair.publicKey, keyPair.privateKey); - _context5.next = 4; - return webCrypto.importKey("jwk", jwk, { - "name": "ECDSA", - "namedCurve": _curves.webCurves[curve.name], - "hash": { name: _enums2.default.read(_enums2.default.webHash, curve.hash) } - }, false, ["sign"]); + _context5.next = 2; + return (0, _indutnyKey.getIndutnyCurve)(curve.name); - case 4: - key = _context5.sent; - _context5.t0 = Uint8Array; - _context5.next = 8; - return webCrypto.sign({ - "name": 'ECDSA', - "namedCurve": _curves.webCurves[curve.name], - "hash": { name: _enums2.default.read(_enums2.default.webHash, hash_algo) } - }, key, message); + case 2: + indutnyCurve = _context5.sent; + key = (0, _indutnyKey.keyFromPublic)(indutnyCurve, publicKey); + return _context5.abrupt('return', key.verify(digest, signature)); - case 8: - _context5.t1 = _context5.sent; - signature = new _context5.t0(_context5.t1); - return _context5.abrupt('return', { - r: signature.slice(0, len), - s: signature.slice(len, len << 1) - }); - - case 11: + case 5: case 'end': return _context5.stop(); } @@ -38123,39 +38713,46 @@ var webSign = function () { }, _callee5, this); })); - return function webSign(_x20, _x21, _x22, _x23) { + return function ellipticVerify(_x19, _x20, _x21, _x22) { return _ref5.apply(this, arguments); }; }(); -var webVerify = function () { - var _ref6 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee6(curve, hash_algo, _ref7, message, publicKey) { - var r = _ref7.r, - s = _ref7.s; +var webSign = function () { + var _ref6 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee6(curve, hash_algo, message, keyPair) { var len, jwk, key, signature; return _regenerator2.default.wrap(function _callee6$(_context6) { while (1) { switch (_context6.prev = _context6.next) { case 0: len = curve.payloadSize; - jwk = (0, _curves.rawPublicToJwk)(curve.payloadSize, _curves.webCurves[curve.name], publicKey); + jwk = (0, _curves.privateToJwk)(curve.payloadSize, _curves.webCurves[curve.name], keyPair.publicKey, keyPair.privateKey); _context6.next = 4; return webCrypto.importKey("jwk", jwk, { "name": "ECDSA", "namedCurve": _curves.webCurves[curve.name], "hash": { name: _enums2.default.read(_enums2.default.webHash, curve.hash) } - }, false, ["verify"]); + }, false, ["sign"]); case 4: key = _context6.sent; - signature = _util2.default.concatUint8Array([new Uint8Array(len - r.length), r, new Uint8Array(len - s.length), s]).buffer; - return _context6.abrupt('return', webCrypto.verify({ + _context6.t0 = Uint8Array; + _context6.next = 8; + return webCrypto.sign({ "name": 'ECDSA', "namedCurve": _curves.webCurves[curve.name], "hash": { name: _enums2.default.read(_enums2.default.webHash, hash_algo) } - }, key, signature, message)); + }, key, message); - case 7: + case 8: + _context6.t1 = _context6.sent; + signature = new _context6.t0(_context6.t1); + return _context6.abrupt('return', { + r: signature.slice(0, len), + s: signature.slice(len, len << 1) + }); + + case 11: case 'end': return _context6.stop(); } @@ -38163,17 +38760,57 @@ var webVerify = function () { }, _callee6, this); })); - return function webVerify(_x24, _x25, _x26, _x27, _x28) { + return function webSign(_x23, _x24, _x25, _x26) { return _ref6.apply(this, arguments); }; }(); -var nodeSign = function () { - var _ref8 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee7(curve, hash_algo, message, keyPair) { - var sign, key; +var webVerify = function () { + var _ref7 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee7(curve, hash_algo, _ref8, message, publicKey) { + var r = _ref8.r, + s = _ref8.s; + var len, jwk, key, signature; return _regenerator2.default.wrap(function _callee7$(_context7) { while (1) { switch (_context7.prev = _context7.next) { + case 0: + len = curve.payloadSize; + jwk = (0, _curves.rawPublicToJwk)(curve.payloadSize, _curves.webCurves[curve.name], publicKey); + _context7.next = 4; + return webCrypto.importKey("jwk", jwk, { + "name": "ECDSA", + "namedCurve": _curves.webCurves[curve.name], + "hash": { name: _enums2.default.read(_enums2.default.webHash, curve.hash) } + }, false, ["verify"]); + + case 4: + key = _context7.sent; + signature = _util2.default.concatUint8Array([new Uint8Array(len - r.length), r, new Uint8Array(len - s.length), s]).buffer; + return _context7.abrupt('return', webCrypto.verify({ + "name": 'ECDSA', + "namedCurve": _curves.webCurves[curve.name], + "hash": { name: _enums2.default.read(_enums2.default.webHash, hash_algo) } + }, key, signature, message)); + + case 7: + case 'end': + return _context7.stop(); + } + } + }, _callee7, this); + })); + + return function webVerify(_x27, _x28, _x29, _x30, _x31) { + return _ref7.apply(this, arguments); + }; +}(); + +var nodeSign = function () { + var _ref9 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee8(curve, hash_algo, message, keyPair) { + var sign, key; + return _regenerator2.default.wrap(function _callee8$(_context8) { + while (1) { + switch (_context8.prev = _context8.next) { case 0: sign = nodeCrypto.createSign(_enums2.default.read(_enums2.default.hash, hash_algo)); @@ -38187,29 +38824,29 @@ var nodeSign = function () { }, 'pem', { label: 'EC PRIVATE KEY' }); - return _context7.abrupt('return', ECDSASignature.decode(sign.sign(key), 'der')); + return _context8.abrupt('return', ECDSASignature.decode(sign.sign(key), 'der')); case 5: case 'end': - return _context7.stop(); + return _context8.stop(); } } - }, _callee7, this); + }, _callee8, this); })); - return function nodeSign(_x29, _x30, _x31, _x32) { - return _ref8.apply(this, arguments); + return function nodeSign(_x32, _x33, _x34, _x35) { + return _ref9.apply(this, arguments); }; }(); var nodeVerify = function () { - var _ref9 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee8(curve, hash_algo, _ref10, message, publicKey) { - var r = _ref10.r, - s = _ref10.s; + var _ref10 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee9(curve, hash_algo, _ref11, message, publicKey) { + var r = _ref11.r, + s = _ref11.s; var verify, key, signature; - return _regenerator2.default.wrap(function _callee8$(_context8) { + return _regenerator2.default.wrap(function _callee9$(_context9) { while (1) { - switch (_context8.prev = _context8.next) { + switch (_context9.prev = _context9.next) { case 0: verify = nodeCrypto.createVerify(_enums2.default.read(_enums2.default.hash, hash_algo)); @@ -38227,24 +38864,24 @@ var nodeVerify = function () { signature = ECDSASignature.encode({ r: new _bn2.default(r), s: new _bn2.default(s) }, 'der'); - _context8.prev = 5; - return _context8.abrupt('return', verify.verify(key, signature)); + _context9.prev = 5; + return _context9.abrupt('return', verify.verify(key, signature)); case 9: - _context8.prev = 9; - _context8.t0 = _context8['catch'](5); - return _context8.abrupt('return', false); + _context9.prev = 9; + _context9.t0 = _context9['catch'](5); + return _context9.abrupt('return', false); case 12: case 'end': - return _context8.stop(); + return _context9.stop(); } } - }, _callee8, this, [[5, 9]]); + }, _callee9, this, [[5, 9]]); })); - return function nodeVerify(_x33, _x34, _x35, _x36, _x37) { - return _ref9.apply(this, arguments); + return function nodeVerify(_x36, _x37, _x38, _x39, _x40) { + return _ref10.apply(this, arguments); }; }(); @@ -38265,6 +38902,14 @@ var _util = _dereq_('../../../util'); var _util2 = _interopRequireDefault(_util); +var _random = _dereq_('../../random'); + +var _random2 = _interopRequireDefault(_random); + +var _hash = _dereq_('../../hash'); + +var _hash2 = _interopRequireDefault(_hash); + var _curves = _dereq_('./curves'); var _curves2 = _interopRequireDefault(_curves); @@ -38300,7 +38945,24 @@ var webCrypto = _util2.default.getWebCrypto(); // OpenPGP.js - An OpenPGP implem * @module crypto/public_key/elliptic/ecdsa */ -var nodeCrypto = _util2.default.getNodeCrypto();exports.default = { sign: sign, verify: verify, ellipticVerify: ellipticVerify, ellipticSign: ellipticSign }; +var nodeCrypto = _util2.default.getNodeCrypto();function parseParams(params) { + if (params.length < 2 || params.length > 3) { + throw new Error('Unexpected number of parameters'); + } + + var oid = params[0]; + var curve = new _curves2.default(oid); + var parsedParams = { oid: oid }; + // The public point never has leading zeros, as it is prefixed by 0x40 or 0x04 + parsedParams.Q = params[1].toUint8Array(); + if (params.length === 3) { + parsedParams.d = params[2].toUint8Array('be', curve.payloadSize); + } + + return parsedParams; +} + +exports.default = { sign: sign, verify: verify, ellipticVerify: ellipticVerify, ellipticSign: ellipticSign, validateParams: validateParams, parseParams: parseParams }; var asn1 = nodeCrypto ? _dereq_('asn1.js') : undefined; var ECDSASignature = nodeCrypto ? asn1.define('ECDSASignature', function () { @@ -38319,13 +38981,17 @@ var SubjectPublicKeyInfo = nodeCrypto ? asn1.define('SubjectPublicKeyInfo', func this.seq().obj(this.key('algorithm').use(AlgorithmIdentifier), this.key('subjectPublicKey').bitstr()); }) : undefined; -},{"../../../enums":384,"../../../util":429,"./curves":371,"./indutnyKey":376,"asn1.js":"asn1.js","babel-runtime/core-js/array/from":16,"babel-runtime/helpers/asyncToGenerator":35,"babel-runtime/regenerator":43,"bn.js":44}],374:[function(_dereq_,module,exports){ +},{"../../../enums":384,"../../../util":429,"../../hash":363,"../../random":380,"./curves":371,"./indutnyKey":376,"asn1.js":"asn1.js","babel-runtime/core-js/array/from":16,"babel-runtime/helpers/asyncToGenerator":35,"babel-runtime/regenerator":43,"bn.js":44}],374:[function(_dereq_,module,exports){ 'use strict'; Object.defineProperty(exports, "__esModule", { value: true }); +var _toConsumableArray2 = _dereq_('babel-runtime/helpers/toConsumableArray'); + +var _toConsumableArray3 = _interopRequireDefault(_toConsumableArray2); + var _regenerator = _dereq_('babel-runtime/regenerator'); var _regenerator2 = _interopRequireDefault(_regenerator); @@ -38414,6 +39080,63 @@ var verify = function () { }; }(); +/** + * Validate EdDSA parameters + * @param {module:type/oid} oid Elliptic curve object identifier + * @param {Uint8Array} Q EdDSA public point + * @param {Uint8Array} k EdDSA secret seed + * @returns {Promise} whether params are valid + * @async + */ + + +var validateParams = function () { + var _ref4 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee3(oid, Q, k) { + var _nacl$sign$keyPair$fr, publicKey, dG; + + return _regenerator2.default.wrap(function _callee3$(_context3) { + while (1) { + switch (_context3.prev = _context3.next) { + case 0: + if (!(oid.getName() !== 'ed25519')) { + _context3.next = 2; + break; + } + + return _context3.abrupt('return', false); + + case 2: + + /** + * Derive public point Q' = dG from private key + * and expect Q == Q' + */ + _nacl$sign$keyPair$fr = _naclFastLight2.default.sign.keyPair.fromSeed(k), publicKey = _nacl$sign$keyPair$fr.publicKey; + dG = new Uint8Array([0x40].concat((0, _toConsumableArray3.default)(publicKey))); // Add public key prefix + + return _context3.abrupt('return', _util2.default.equalsUint8Array(Q, dG)); + + case 5: + case 'end': + return _context3.stop(); + } + } + }, _callee3, this); + })); + + return function validateParams(_x13, _x14, _x15) { + return _ref4.apply(this, arguments); + }; +}(); + +/** + * Parses MPI params and returns them as byte arrays of fixed length + * @param {Array} params key parameters + * @returns {Object} parameters in the form + * { oid, seed: Uint8Array, Q: Uint8Array } + */ + + var _ = _dereq_('hash.js/lib/hash/sha/512'); var _2 = _interopRequireDefault(_); @@ -38456,9 +39179,26 @@ _naclFastLight2.default.hash = function (bytes) { * @module crypto/public_key/elliptic/eddsa */ -exports.default = { sign: sign, verify: verify }; +function parseParams(params) { + if (params.length < 2 || params.length > 3) { + throw new Error('Unexpected number of parameters'); + } -},{"../../../util":429,"babel-runtime/helpers/asyncToGenerator":35,"babel-runtime/regenerator":43,"hash.js/lib/hash/sha/512":312,"tweetnacl/nacl-fast-light.js":342}],375:[function(_dereq_,module,exports){ + var parsedParams = { + oid: params[0], + Q: params[1].toUint8Array('be', 33) + }; + + if (params.length === 3) { + parsedParams.seed = params[2].toUint8Array('be', 32); + } + + return parsedParams; +} + +exports.default = { sign: sign, verify: verify, validateParams: validateParams, parseParams: parseParams }; + +},{"../../../util":429,"babel-runtime/helpers/asyncToGenerator":35,"babel-runtime/helpers/toConsumableArray":41,"babel-runtime/regenerator":43,"hash.js/lib/hash/sha/512":312,"tweetnacl/nacl-fast-light.js":342}],375:[function(_dereq_,module,exports){ 'use strict'; Object.defineProperty(exports, "__esModule", { @@ -39648,36 +40388,82 @@ exports.default = { return generate; }(), - bnSign: function () { - var _ref7 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee6(hash_algo, n, d, hashed) { - var m, nred; + /** + * Validate RSA parameters + * @param {Uint8Array} n RSA public modulus + * @param {Uint8Array} e RSA public exponent + * @param {Uint8Array} d RSA private exponent + * @param {Uint8Array} p RSA private prime p + * @param {Uint8Array} q RSA private prime q + * @param {Uint8Array} u RSA inverse of p w.r.t. q + * @returns {Promise} whether params are valid + * @async + */ + validateParams: function () { + var _ref7 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee6(n, e, d, p, q, u) { + var one, two, r, rde, areInverses; return _regenerator2.default.wrap(function _callee6$(_context6) { while (1) { switch (_context6.prev = _context6.next) { case 0: n = new _bn2.default(n); - _context6.t0 = _bn2.default; - _context6.next = 4; - return _pkcs2.default.emsa.encode(hash_algo, hashed, n.byteLength()); + p = new _bn2.default(p); + q = new _bn2.default(q); - case 4: - _context6.t1 = _context6.sent; - m = new _context6.t0(_context6.t1, 16); + // expect pq = n - d = new _bn2.default(d); - - if (!(n.cmp(m) <= 0)) { - _context6.next = 9; + if (p.mul(q).eq(n)) { + _context6.next = 5; break; } - throw new Error('Message size cannot exceed modulus size'); + return _context6.abrupt('return', false); - case 9: - nred = new _bn2.default.red(n); - return _context6.abrupt('return', m.toRed(nred).redPow(d).toArrayLike(Uint8Array, 'be', n.byteLength())); + case 5: + one = new _bn2.default(1); + two = new _bn2.default(2); + // expect p*u = 1 mod q - case 11: + u = new _bn2.default(u); + + if (p.mul(u).umod(q).eq(one)) { + _context6.next = 10; + break; + } + + return _context6.abrupt('return', false); + + case 10: + + e = new _bn2.default(e); + d = new _bn2.default(d); + /** + * In RSA pkcs#1 the exponents (d, e) are inverses modulo lcm(p-1, q-1) + * We check that [de = 1 mod (p-1)] and [de = 1 mod (q-1)] + * By CRT on coprime factors of (p-1, q-1) it follows that [de = 1 mod lcm(p-1, q-1)] + * + * We blind the multiplication with r, and check that rde = r mod lcm(p-1, q-1) + */ + _context6.next = 14; + return _random2.default.getRandomBN(two, two.shln(n.bitLength() / 3)); + + case 14: + r = _context6.sent; + // r in [ 2, 2^{|n|/3} ) < p and q + rde = r.mul(d).mul(e); + areInverses = rde.umod(p.sub(one)).eq(r) && rde.umod(q.sub(one)).eq(r); + + if (areInverses) { + _context6.next = 19; + break; + } + + return _context6.abrupt('return', false); + + case 19: + return _context6.abrupt('return', true); + + case 20: case 'end': return _context6.stop(); } @@ -39685,19 +40471,63 @@ exports.default = { }, _callee6, this); })); - function bnSign(_x28, _x29, _x30, _x31) { + function validateParams(_x28, _x29, _x30, _x31, _x32, _x33) { return _ref7.apply(this, arguments); } + return validateParams; + }(), + + bnSign: function () { + var _ref8 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee7(hash_algo, n, d, hashed) { + var m, nred; + return _regenerator2.default.wrap(function _callee7$(_context7) { + while (1) { + switch (_context7.prev = _context7.next) { + case 0: + n = new _bn2.default(n); + _context7.t0 = _bn2.default; + _context7.next = 4; + return _pkcs2.default.emsa.encode(hash_algo, hashed, n.byteLength()); + + case 4: + _context7.t1 = _context7.sent; + m = new _context7.t0(_context7.t1, 16); + + d = new _bn2.default(d); + + if (!(n.cmp(m) <= 0)) { + _context7.next = 9; + break; + } + + throw new Error('Message size cannot exceed modulus size'); + + case 9: + nred = new _bn2.default.red(n); + return _context7.abrupt('return', m.toRed(nred).redPow(d).toArrayLike(Uint8Array, 'be', n.byteLength())); + + case 11: + case 'end': + return _context7.stop(); + } + } + }, _callee7, this); + })); + + function bnSign(_x34, _x35, _x36, _x37) { + return _ref8.apply(this, arguments); + } + return bnSign; }(), webSign: function () { - var _ref8 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee7(hash_name, data, n, e, d, p, q, u) { + var _ref9 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee8(hash_name, data, n, e, d, p, q, u) { var jwk, algo, key; - return _regenerator2.default.wrap(function _callee7$(_context7) { + return _regenerator2.default.wrap(function _callee8$(_context8) { while (1) { - switch (_context7.prev = _context7.next) { + switch (_context8.prev = _context8.next) { case 0: /** OpenPGP keys require that p < q, and Safari Web Crypto requires that p > q. * We swap them in privateToJwk, so it usually works out, but nevertheless, @@ -39710,40 +40540,40 @@ exports.default = { name: "RSASSA-PKCS1-v1_5", hash: { name: hash_name } }; - _context7.next = 4; + _context8.next = 4; return webCrypto.importKey("jwk", jwk, algo, false, ["sign"]); case 4: - key = _context7.sent; - _context7.t0 = Uint8Array; - _context7.next = 8; + key = _context8.sent; + _context8.t0 = Uint8Array; + _context8.next = 8; return webCrypto.sign({ "name": "RSASSA-PKCS1-v1_5", "hash": hash_name }, key, data); case 8: - _context7.t1 = _context7.sent; - return _context7.abrupt('return', new _context7.t0(_context7.t1)); + _context8.t1 = _context8.sent; + return _context8.abrupt('return', new _context8.t0(_context8.t1)); case 10: case 'end': - return _context7.stop(); + return _context8.stop(); } } - }, _callee7, this); + }, _callee8, this); })); - function webSign(_x32, _x33, _x34, _x35, _x36, _x37, _x38, _x39) { - return _ref8.apply(this, arguments); + function webSign(_x38, _x39, _x40, _x41, _x42, _x43, _x44, _x45) { + return _ref9.apply(this, arguments); } return webSign; }(), nodeSign: function () { - var _ref9 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee8(hash_algo, data, n, e, d, p, q, u) { + var _ref10 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee9(hash_algo, data, n, e, d, p, q, u) { var pBNum, qBNum, dBNum, dq, dp, sign, keyObject, der, pem; - return _regenerator2.default.wrap(function _callee8$(_context8) { + return _regenerator2.default.wrap(function _callee9$(_context9) { while (1) { - switch (_context8.prev = _context8.next) { + switch (_context9.prev = _context9.next) { case 0: pBNum = new _bn2.default(p); qBNum = new _bn2.default(q); @@ -39771,48 +40601,48 @@ exports.default = { }; if (!(typeof nodeCrypto.createPrivateKey !== 'undefined')) { - _context8.next = 12; + _context9.next = 12; break; } //from version 11.6.0 Node supports der encoded key objects der = RSAPrivateKey.encode(keyObject, 'der'); - return _context8.abrupt('return', new Uint8Array(sign.sign({ key: der, format: 'der', type: 'pkcs1' }))); + return _context9.abrupt('return', new Uint8Array(sign.sign({ key: der, format: 'der', type: 'pkcs1' }))); case 12: pem = RSAPrivateKey.encode(keyObject, 'pem', { label: 'RSA PRIVATE KEY' }); - return _context8.abrupt('return', new Uint8Array(sign.sign(pem))); + return _context9.abrupt('return', new Uint8Array(sign.sign(pem))); case 14: case 'end': - return _context8.stop(); + return _context9.stop(); } } - }, _callee8, this); + }, _callee9, this); })); - function nodeSign(_x40, _x41, _x42, _x43, _x44, _x45, _x46, _x47) { - return _ref9.apply(this, arguments); + function nodeSign(_x46, _x47, _x48, _x49, _x50, _x51, _x52, _x53) { + return _ref10.apply(this, arguments); } return nodeSign; }(), bnVerify: function () { - var _ref10 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee9(hash_algo, s, n, e, hashed) { + var _ref11 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee10(hash_algo, s, n, e, hashed) { var nred, EM1, EM2; - return _regenerator2.default.wrap(function _callee9$(_context9) { + return _regenerator2.default.wrap(function _callee10$(_context10) { while (1) { - switch (_context9.prev = _context9.next) { + switch (_context10.prev = _context10.next) { case 0: n = new _bn2.default(n); s = new _bn2.default(s); e = new _bn2.default(e); if (!(n.cmp(s) <= 0)) { - _context9.next = 5; + _context10.next = 5; break; } @@ -39821,47 +40651,14 @@ exports.default = { case 5: nred = new _bn2.default.red(n); EM1 = s.toRed(nred).redPow(e).toArrayLike(Uint8Array, 'be', n.byteLength()); - _context9.next = 9; + _context10.next = 9; return _pkcs2.default.emsa.encode(hash_algo, hashed, n.byteLength()); case 9: - EM2 = _context9.sent; - return _context9.abrupt('return', _util2.default.Uint8Array_to_hex(EM1) === EM2); + EM2 = _context10.sent; + return _context10.abrupt('return', _util2.default.Uint8Array_to_hex(EM1) === EM2); case 11: - case 'end': - return _context9.stop(); - } - } - }, _callee9, this); - })); - - function bnVerify(_x48, _x49, _x50, _x51, _x52) { - return _ref10.apply(this, arguments); - } - - return bnVerify; - }(), - - webVerify: function () { - var _ref11 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee10(hash_name, data, s, n, e) { - var jwk, key; - return _regenerator2.default.wrap(function _callee10$(_context10) { - while (1) { - switch (_context10.prev = _context10.next) { - case 0: - jwk = publicToJwk(n, e); - _context10.next = 3; - return webCrypto.importKey("jwk", jwk, { - name: "RSASSA-PKCS1-v1_5", - hash: { name: hash_name } - }, false, ["verify"]); - - case 3: - key = _context10.sent; - return _context10.abrupt('return', webCrypto.verify({ "name": "RSASSA-PKCS1-v1_5", "hash": hash_name }, key, s, data)); - - case 5: case 'end': return _context10.stop(); } @@ -39869,19 +40666,52 @@ exports.default = { }, _callee10, this); })); - function webVerify(_x53, _x54, _x55, _x56, _x57) { + function bnVerify(_x54, _x55, _x56, _x57, _x58) { return _ref11.apply(this, arguments); } + return bnVerify; + }(), + + webVerify: function () { + var _ref12 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee11(hash_name, data, s, n, e) { + var jwk, key; + return _regenerator2.default.wrap(function _callee11$(_context11) { + while (1) { + switch (_context11.prev = _context11.next) { + case 0: + jwk = publicToJwk(n, e); + _context11.next = 3; + return webCrypto.importKey("jwk", jwk, { + name: "RSASSA-PKCS1-v1_5", + hash: { name: hash_name } + }, false, ["verify"]); + + case 3: + key = _context11.sent; + return _context11.abrupt('return', webCrypto.verify({ "name": "RSASSA-PKCS1-v1_5", "hash": hash_name }, key, s, data)); + + case 5: + case 'end': + return _context11.stop(); + } + } + }, _callee11, this); + })); + + function webVerify(_x59, _x60, _x61, _x62, _x63) { + return _ref12.apply(this, arguments); + } + return webVerify; }(), nodeVerify: function () { - var _ref12 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee11(hash_algo, data, s, n, e) { + var _ref13 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee12(hash_algo, data, s, n, e) { var verify, keyObject, key, der; - return _regenerator2.default.wrap(function _callee11$(_context11) { + return _regenerator2.default.wrap(function _callee12$(_context12) { while (1) { - switch (_context11.prev = _context11.next) { + switch (_context12.prev = _context12.next) { case 0: verify = nodeCrypto.createVerify(_enums2.default.read(_enums2.default.hash, hash_algo)); @@ -39903,39 +40733,39 @@ exports.default = { label: 'RSA PUBLIC KEY' }); } - _context11.prev = 6; - _context11.next = 9; + _context12.prev = 6; + _context12.next = 9; return verify.verify(key, s); case 9: - return _context11.abrupt('return', _context11.sent); + return _context12.abrupt('return', _context12.sent); case 12: - _context11.prev = 12; - _context11.t0 = _context11['catch'](6); - return _context11.abrupt('return', false); + _context12.prev = 12; + _context12.t0 = _context12['catch'](6); + return _context12.abrupt('return', false); case 15: case 'end': - return _context11.stop(); + return _context12.stop(); } } - }, _callee11, this, [[6, 12]]); + }, _callee12, this, [[6, 12]]); })); - function nodeVerify(_x58, _x59, _x60, _x61, _x62) { - return _ref12.apply(this, arguments); + function nodeVerify(_x64, _x65, _x66, _x67, _x68) { + return _ref13.apply(this, arguments); } return nodeVerify; }(), nodeEncrypt: function () { - var _ref13 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee12(data, n, e) { + var _ref14 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee13(data, n, e) { var keyObject, key, der, pem; - return _regenerator2.default.wrap(function _callee12$(_context12) { + return _regenerator2.default.wrap(function _callee13$(_context13) { while (1) { - switch (_context12.prev = _context12.next) { + switch (_context13.prev = _context13.next) { case 0: keyObject = { modulus: new _bn2.default(n), @@ -39954,54 +40784,9 @@ exports.default = { key = { key: pem, padding: nodeCrypto.constants.RSA_PKCS1_PADDING }; } - return _context12.abrupt('return', new Uint8Array(nodeCrypto.publicEncrypt(key, data))); + return _context13.abrupt('return', new Uint8Array(nodeCrypto.publicEncrypt(key, data))); case 4: - case 'end': - return _context12.stop(); - } - } - }, _callee12, this); - })); - - function nodeEncrypt(_x63, _x64, _x65) { - return _ref13.apply(this, arguments); - } - - return nodeEncrypt; - }(), - - bnEncrypt: function () { - var _ref14 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee13(data, n, e) { - var nred; - return _regenerator2.default.wrap(function _callee13$(_context13) { - while (1) { - switch (_context13.prev = _context13.next) { - case 0: - n = new _bn2.default(n); - _context13.t0 = _mpi2.default; - _context13.next = 4; - return _pkcs2.default.eme.encode(_util2.default.Uint8Array_to_str(data), n.byteLength()); - - case 4: - _context13.t1 = _context13.sent; - data = new _context13.t0(_context13.t1); - - data = data.toBN(); - e = new _bn2.default(e); - - if (!(n.cmp(data) <= 0)) { - _context13.next = 10; - break; - } - - throw new Error('Message size cannot exceed modulus size'); - - case 10: - nred = new _bn2.default.red(n); - return _context13.abrupt('return', data.toRed(nred).redPow(e).toArrayLike(Uint8Array, 'be', n.byteLength())); - - case 12: case 'end': return _context13.stop(); } @@ -40009,10 +40794,55 @@ exports.default = { }, _callee13, this); })); - function bnEncrypt(_x66, _x67, _x68) { + function nodeEncrypt(_x69, _x70, _x71) { return _ref14.apply(this, arguments); } + return nodeEncrypt; + }(), + + bnEncrypt: function () { + var _ref15 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee14(data, n, e) { + var nred; + return _regenerator2.default.wrap(function _callee14$(_context14) { + while (1) { + switch (_context14.prev = _context14.next) { + case 0: + n = new _bn2.default(n); + _context14.t0 = _mpi2.default; + _context14.next = 4; + return _pkcs2.default.eme.encode(_util2.default.Uint8Array_to_str(data), n.byteLength()); + + case 4: + _context14.t1 = _context14.sent; + data = new _context14.t0(_context14.t1); + + data = data.toBN(); + e = new _bn2.default(e); + + if (!(n.cmp(data) <= 0)) { + _context14.next = 10; + break; + } + + throw new Error('Message size cannot exceed modulus size'); + + case 10: + nred = new _bn2.default.red(n); + return _context14.abrupt('return', data.toRed(nred).redPow(e).toArrayLike(Uint8Array, 'be', n.byteLength())); + + case 12: + case 'end': + return _context14.stop(); + } + } + }, _callee14, this); + })); + + function bnEncrypt(_x72, _x73, _x74) { + return _ref15.apply(this, arguments); + } + return bnEncrypt; }(), @@ -40049,11 +40879,11 @@ exports.default = { }, bnDecrypt: function () { - var _ref15 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee14(data, n, e, d, p, q, u) { + var _ref16 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee15(data, n, e, d, p, q, u) { var dq, dp, pred, qred, nred, blinder, unblinder, mp, mq, t, h, result; - return _regenerator2.default.wrap(function _callee14$(_context14) { + return _regenerator2.default.wrap(function _callee15$(_context15) { while (1) { - switch (_context14.prev = _context14.next) { + switch (_context15.prev = _context15.next) { case 0: data = new _bn2.default(data); n = new _bn2.default(n); @@ -40064,7 +40894,7 @@ exports.default = { u = new _bn2.default(u); if (!(n.cmp(data) <= 0)) { - _context14.next = 9; + _context15.next = 9; break; } @@ -40082,16 +40912,16 @@ exports.default = { unblinder = void 0; if (!_config2.default.rsa_blinding) { - _context14.next = 23; + _context15.next = 23; break; } - _context14.next = 19; + _context15.next = 19; return _random2.default.getRandomBN(new _bn2.default(2), n); case 19: - _context14.t0 = nred; - unblinder = _context14.sent.toRed(_context14.t0); + _context15.t0 = nred; + unblinder = _context15.sent.toRed(_context15.t0); blinder = unblinder.redInvm().redPow(e); data = data.toRed(nred).redMul(blinder).fromRed(); @@ -40108,18 +40938,18 @@ exports.default = { result = result.redMul(unblinder); } - return _context14.abrupt('return', _pkcs2.default.eme.decode(new _mpi2.default(result).toString())); + return _context15.abrupt('return', _pkcs2.default.eme.decode(new _mpi2.default(result).toString())); case 30: case 'end': - return _context14.stop(); + return _context15.stop(); } } - }, _callee14, this); + }, _callee15, this); })); - function bnDecrypt(_x69, _x70, _x71, _x72, _x73, _x74, _x75) { - return _ref15.apply(this, arguments); + function bnDecrypt(_x75, _x76, _x77, _x78, _x79, _x80, _x81) { + return _ref16.apply(this, arguments); } return bnDecrypt; @@ -40542,7 +41372,7 @@ exports.default = { */ verify: function () { var _ref = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee(algo, hash_algo, msg_MPIs, pub_MPIs, data, hashed) { - var types, n, e, m, r, s, p, q, g, y, oid, signature, Q, _oid, _signature, _Q; + var types, n, e, m, r, s, p, q, g, y, _publicKey$elliptic$e, oid, Q, signature, _publicKey$elliptic$e2, _oid, _Q, _signature; return _regenerator2.default.wrap(function _callee$(_context) { while (1) { @@ -40559,7 +41389,7 @@ exports.default = { case 3: _context.t0 = algo; - _context.next = _context.t0 === _enums2.default.publicKey.rsa_encrypt_sign ? 6 : _context.t0 === _enums2.default.publicKey.rsa_encrypt ? 6 : _context.t0 === _enums2.default.publicKey.rsa_sign ? 6 : _context.t0 === _enums2.default.publicKey.dsa ? 10 : _context.t0 === _enums2.default.publicKey.ecdsa ? 17 : _context.t0 === _enums2.default.publicKey.eddsa ? 21 : 25; + _context.next = _context.t0 === _enums2.default.publicKey.rsa_encrypt_sign ? 6 : _context.t0 === _enums2.default.publicKey.rsa_encrypt ? 6 : _context.t0 === _enums2.default.publicKey.rsa_sign ? 6 : _context.t0 === _enums2.default.publicKey.dsa ? 10 : _context.t0 === _enums2.default.publicKey.ecdsa ? 17 : _context.t0 === _enums2.default.publicKey.eddsa ? 20 : 23; break; case 6: @@ -40578,26 +41408,24 @@ exports.default = { return _context.abrupt('return', _public_key2.default.dsa.verify(hash_algo, r, s, hashed, g, p, q, y)); case 17: - oid = pub_MPIs[0]; + _publicKey$elliptic$e = _public_key2.default.elliptic.ecdsa.parseParams(pub_MPIs), oid = _publicKey$elliptic$e.oid, Q = _publicKey$elliptic$e.Q; signature = { r: msg_MPIs[0].toUint8Array(), s: msg_MPIs[1].toUint8Array() }; - Q = pub_MPIs[1].toUint8Array(); return _context.abrupt('return', _public_key2.default.elliptic.ecdsa.verify(oid, hash_algo, signature, data, Q, hashed)); - case 21: - _oid = pub_MPIs[0]; + case 20: + _publicKey$elliptic$e2 = _public_key2.default.elliptic.eddsa.parseParams(pub_MPIs), _oid = _publicKey$elliptic$e2.oid, _Q = _publicKey$elliptic$e2.Q; // EdDSA signature params are expected in little-endian format _signature = { R: msg_MPIs[0].toUint8Array('le', 32), S: msg_MPIs[1].toUint8Array('le', 32) }; - _Q = pub_MPIs[1].toUint8Array('be', 33); return _context.abrupt('return', _public_key2.default.elliptic.eddsa.verify(_oid, hash_algo, _signature, data, _Q, hashed)); - case 25: + case 23: throw new Error('Invalid signature algorithm.'); - case 26: + case 24: case 'end': return _context.stop(); } @@ -40627,7 +41455,7 @@ exports.default = { */ sign: function () { var _ref2 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee2(algo, hash_algo, key_params, data, hashed) { - var types, n, e, d, p, q, u, signature, _p, _q, g, x, _signature2, oid, Q, _d, _signature3, _oid2, _Q2, _d2, _signature4; + var types, n, e, d, p, q, u, signature, _p, _q, g, x, _signature2, _publicKey$elliptic$e3, oid, Q, _d, _signature3, _publicKey$elliptic$e4, _oid2, _Q2, seed, _signature4; return _regenerator2.default.wrap(function _callee2$(_context2) { while (1) { @@ -40644,7 +41472,7 @@ exports.default = { case 3: _context2.t0 = algo; - _context2.next = _context2.t0 === _enums2.default.publicKey.rsa_encrypt_sign ? 6 : _context2.t0 === _enums2.default.publicKey.rsa_encrypt ? 6 : _context2.t0 === _enums2.default.publicKey.rsa_sign ? 6 : _context2.t0 === _enums2.default.publicKey.dsa ? 16 : _context2.t0 === _enums2.default.publicKey.elgamal ? 24 : _context2.t0 === _enums2.default.publicKey.ecdsa ? 25 : _context2.t0 === _enums2.default.publicKey.eddsa ? 32 : 39; + _context2.next = _context2.t0 === _enums2.default.publicKey.rsa_encrypt_sign ? 6 : _context2.t0 === _enums2.default.publicKey.rsa_encrypt ? 6 : _context2.t0 === _enums2.default.publicKey.rsa_sign ? 6 : _context2.t0 === _enums2.default.publicKey.dsa ? 16 : _context2.t0 === _enums2.default.publicKey.elgamal ? 24 : _context2.t0 === _enums2.default.publicKey.ecdsa ? 25 : _context2.t0 === _enums2.default.publicKey.eddsa ? 30 : 35; break; case 6: @@ -40677,31 +41505,27 @@ exports.default = { throw new Error('Signing with Elgamal is not defined in the OpenPGP standard.'); case 25: - oid = key_params[0]; - Q = key_params[1].toUint8Array(); - _d = key_params[2].toUint8Array(); - _context2.next = 30; + _publicKey$elliptic$e3 = _public_key2.default.elliptic.ecdsa.parseParams(key_params), oid = _publicKey$elliptic$e3.oid, Q = _publicKey$elliptic$e3.Q, _d = _publicKey$elliptic$e3.d; + _context2.next = 28; return _public_key2.default.elliptic.ecdsa.sign(oid, hash_algo, data, Q, _d, hashed); - case 30: + case 28: _signature3 = _context2.sent; return _context2.abrupt('return', _util2.default.concatUint8Array([_util2.default.Uint8Array_to_MPI(_signature3.r), _util2.default.Uint8Array_to_MPI(_signature3.s)])); - case 32: - _oid2 = key_params[0]; - _Q2 = key_params[1].toUint8Array('be', 33); - _d2 = key_params[2].toUint8Array('be', 32); - _context2.next = 37; - return _public_key2.default.elliptic.eddsa.sign(_oid2, hash_algo, data, _Q2, _d2, hashed); + case 30: + _publicKey$elliptic$e4 = _public_key2.default.elliptic.eddsa.parseParams(key_params), _oid2 = _publicKey$elliptic$e4.oid, _Q2 = _publicKey$elliptic$e4.Q, seed = _publicKey$elliptic$e4.seed; + _context2.next = 33; + return _public_key2.default.elliptic.eddsa.sign(_oid2, hash_algo, data, _Q2, seed, hashed); - case 37: + case 33: _signature4 = _context2.sent; return _context2.abrupt('return', _util2.default.concatUint8Array([_util2.default.Uint8Array_to_MPI(_signature4.R), _util2.default.Uint8Array_to_MPI(_signature4.S)])); - case 39: + case 35: throw new Error('Invalid signature algorithm.'); - case 40: + case 36: case 'end': return _context2.stop(); } @@ -44570,6 +45394,96 @@ Key.prototype.getEncryptionKey = function () { }; }(); +/** + * Returns all keys that are available for decryption, matching the keyId when given + * This is useful to retrieve keys for session key decryption + * @param {module:type/keyid} keyId, optional + * @param {Date} date, optional + * @param {String} userId, optional + * @returns {Promise>} array of decryption keys + * @async + */ +Key.prototype.getDecryptionKeys = function () { + var _ref3 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee3(keyId) { + var date = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : new Date(); + var userId = arguments.length > 2 && arguments[2] !== undefined ? arguments[2] : {}; + var primaryKey, keys, i, dataToVerify, bindingSignature, primaryUser; + return _regenerator2.default.wrap(function _callee3$(_context3) { + while (1) { + switch (_context3.prev = _context3.next) { + case 0: + _context3.next = 2; + return this.verifyPrimaryKey(date, userId); + + case 2: + primaryKey = this.keyPacket; + keys = []; + i = 0; + + case 5: + if (!(i < this.subKeys.length)) { + _context3.next = 22; + break; + } + + if (!(!keyId || this.subKeys[i].getKeyId().equals(keyId, true))) { + _context3.next = 19; + break; + } + + _context3.prev = 7; + _context3.next = 10; + return this.subKeys[i].verify(primaryKey, date); + + case 10: + dataToVerify = { key: primaryKey, bind: this.subKeys[i].keyPacket }; + _context3.next = 13; + return helper.getLatestValidSignature(this.subKeys[i].bindingSignatures, primaryKey, _enums2.default.signature.subkey_binding, dataToVerify, date); + + case 13: + bindingSignature = _context3.sent; + + if (bindingSignature && helper.isValidEncryptionKeyPacket(this.subKeys[i].keyPacket, bindingSignature)) { + keys.push(this.subKeys[i]); + } + _context3.next = 19; + break; + + case 17: + _context3.prev = 17; + _context3.t0 = _context3['catch'](7); + + case 19: + i++; + _context3.next = 5; + break; + + case 22: + _context3.next = 24; + return this.getPrimaryUser(date, userId); + + case 24: + primaryUser = _context3.sent; + + if ((!keyId || primaryKey.getKeyId().equals(keyId, true)) && helper.isValidEncryptionKeyPacket(primaryKey, primaryUser.selfCertification)) { + keys.push(this); + } + + return _context3.abrupt('return', keys); + + case 27: + case 'end': + return _context3.stop(); + } + } + }, _callee3, this, [[7, 17]]); + })); + + return function (_x9) { + return _ref3.apply(this, arguments); + }; +}(); + /** * Encrypts all secret key and subkey packets matching keyId * @param {String|Array} passphrases - if multiple passphrases, then should be in same order as packets each should encrypt @@ -44578,15 +45492,15 @@ Key.prototype.getEncryptionKey = function () { * @async */ Key.prototype.encrypt = function () { - var _ref3 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee4(passphrases) { + var _ref4 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee5(passphrases) { var keyId = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : null; var keys; - return _regenerator2.default.wrap(function _callee4$(_context4) { + return _regenerator2.default.wrap(function _callee5$(_context5) { while (1) { - switch (_context4.prev = _context4.next) { + switch (_context5.prev = _context5.next) { case 0: if (this.isPrivate()) { - _context4.next = 2; + _context5.next = 2; break; } @@ -44598,51 +45512,51 @@ Key.prototype.encrypt = function () { passphrases = _util2.default.isArray(passphrases) ? passphrases : new Array(keys.length).fill(passphrases); if (!(passphrases.length !== keys.length)) { - _context4.next = 6; + _context5.next = 6; break; } throw new Error("Invalid number of passphrases for key"); case 6: - return _context4.abrupt('return', _promise2.default.all(keys.map(function () { - var _ref4 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee3(key, i) { + return _context5.abrupt('return', _promise2.default.all(keys.map(function () { + var _ref5 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee4(key, i) { var keyPacket; - return _regenerator2.default.wrap(function _callee3$(_context3) { + return _regenerator2.default.wrap(function _callee4$(_context4) { while (1) { - switch (_context3.prev = _context3.next) { + switch (_context4.prev = _context4.next) { case 0: keyPacket = key.keyPacket; - _context3.next = 3; + _context4.next = 3; return keyPacket.encrypt(passphrases[i]); case 3: keyPacket.clearPrivateParams(); - return _context3.abrupt('return', keyPacket); + return _context4.abrupt('return', keyPacket); case 5: case 'end': - return _context3.stop(); + return _context4.stop(); } } - }, _callee3, this); + }, _callee4, this); })); - return function (_x11, _x12) { - return _ref4.apply(this, arguments); + return function (_x14, _x15) { + return _ref5.apply(this, arguments); }; }()))); case 7: case 'end': - return _context4.stop(); + return _context5.stop(); } } - }, _callee4, this); + }, _callee5, this); })); - return function (_x9) { - return _ref3.apply(this, arguments); + return function (_x12) { + return _ref4.apply(this, arguments); }; }(); @@ -44651,18 +45565,19 @@ Key.prototype.encrypt = function () { * @param {String|Array} passphrases * @param {module:type/keyid} keyId * @returns {Promise} true if all matching key and subkey packets decrypted successfully + * @throws {Error} if any matching key or subkey packets did not decrypt successfully * @async */ Key.prototype.decrypt = function () { - var _ref5 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee7(passphrases) { + var _ref6 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee8(passphrases) { var keyId = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : null; var results; - return _regenerator2.default.wrap(function _callee7$(_context7) { + return _regenerator2.default.wrap(function _callee8$(_context8) { while (1) { - switch (_context7.prev = _context7.next) { + switch (_context8.prev = _context8.next) { case 0: if (this.isPrivate()) { - _context7.next = 2; + _context8.next = 2; break; } @@ -44671,146 +45586,210 @@ Key.prototype.decrypt = function () { case 2: passphrases = _util2.default.isArray(passphrases) ? passphrases : [passphrases]; - _context7.next = 5; + _context8.next = 5; return _promise2.default.all(this.getKeys(keyId).map(function () { - var _ref6 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee6(key) { + var _ref7 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee7(key) { var decrypted, error; - return _regenerator2.default.wrap(function _callee6$(_context6) { + return _regenerator2.default.wrap(function _callee7$(_context7) { while (1) { - switch (_context6.prev = _context6.next) { + switch (_context7.prev = _context7.next) { case 0: decrypted = false; error = null; - _context6.next = 4; + _context7.next = 4; return _promise2.default.all(passphrases.map(function () { - var _ref7 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee5(passphrase) { - return _regenerator2.default.wrap(function _callee5$(_context5) { + var _ref8 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee6(passphrase) { + return _regenerator2.default.wrap(function _callee6$(_context6) { while (1) { - switch (_context5.prev = _context5.next) { + switch (_context6.prev = _context6.next) { case 0: - _context5.prev = 0; - _context5.next = 3; + _context6.prev = 0; + _context6.next = 3; return key.keyPacket.decrypt(passphrase); case 3: - decrypted = true; - _context5.next = 9; - break; + if (!keyId) { + _context6.next = 6; + break; + } + + _context6.next = 6; + return key.keyPacket.validate(); case 6: - _context5.prev = 6; - _context5.t0 = _context5['catch'](0); - - error = _context5.t0; + decrypted = true; + _context6.next = 12; + break; case 9: + _context6.prev = 9; + _context6.t0 = _context6['catch'](0); + + error = _context6.t0; + + case 12: case 'end': - return _context5.stop(); + return _context6.stop(); } } - }, _callee5, this, [[0, 6]]); + }, _callee6, this, [[0, 9]]); })); - return function (_x16) { - return _ref7.apply(this, arguments); + return function (_x19) { + return _ref8.apply(this, arguments); }; }())); case 4: if (decrypted) { - _context6.next = 6; + _context7.next = 6; break; } throw error; case 6: - return _context6.abrupt('return', decrypted); + return _context7.abrupt('return', decrypted); case 7: case 'end': - return _context6.stop(); + return _context7.stop(); } } - }, _callee6, this); + }, _callee7, this); })); - return function (_x15) { - return _ref6.apply(this, arguments); + return function (_x18) { + return _ref7.apply(this, arguments); }; }())); case 5: - results = _context7.sent; - return _context7.abrupt('return', results.every(function (result) { + results = _context8.sent; + + if (keyId) { + _context8.next = 9; + break; + } + + _context8.next = 9; + return this.validate(); + + case 9: + return _context8.abrupt('return', results.every(function (result) { return result === true; })); - case 7: + case 10: case 'end': - return _context7.stop(); + return _context8.stop(); } } - }, _callee7, this); + }, _callee8, this); })); - return function (_x13) { - return _ref5.apply(this, arguments); + return function (_x16) { + return _ref6.apply(this, arguments); }; }(); /** - * Check whether the private and public key parameters of the primary key match - * @returns {Promise} true if the primary key parameters correspond + * Check whether the private and public primary key parameters correspond + * Together with verification of binding signatures, this guarantees key integrity + * In case of gnu-dummy primary key, it is enough to validate any signing subkeys + * otherwise all encryption subkeys are validated + * If only gnu-dummy keys are found, we cannot properly validate so we throw an error + * @throws {Error} if validation was not successful and the key cannot be trusted * @async */ -Key.prototype.validate = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee8() { - var signingKeyPacket, data, signature, signatureType; - return _regenerator2.default.wrap(function _callee8$(_context8) { +Key.prototype.validate = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee10() { + var _this = this; + + var signingKeyPacket, signingKey, keys, allDummies; + return _regenerator2.default.wrap(function _callee10$(_context10) { while (1) { - switch (_context8.prev = _context8.next) { + switch (_context10.prev = _context10.next) { case 0: if (this.isPrivate()) { - _context8.next = 2; + _context10.next = 2; break; } - throw new Error("Can't validate a public key"); + throw new Error("Cannot validate a public key"); case 2: - signingKeyPacket = this.primaryKey; + signingKeyPacket = void 0; - if (signingKeyPacket.isDecrypted()) { - _context8.next = 5; + if (this.keyPacket.isDummy()) { + _context10.next = 7; break; } - throw new Error("Key is not decrypted"); + signingKeyPacket = this.primaryKey; + _context10.next = 11; + break; - case 5: - data = new _packet2.default.Literal(); + case 7: + _context10.next = 9; + return this.getSigningKey(null, null); - data.setBytes(new Uint8Array(), 'binary'); - signature = new _packet2.default.Signature(); + case 9: + signingKey = _context10.sent; - signature.publicKeyAlgorithm = signingKeyPacket.algorithm; - signature.hashAlgorithm = _enums2.default.hash.sha256; - signatureType = _enums2.default.signature.binary; + // This could again be a dummy key + if (signingKey && !signingKey.keyPacket.isDummy()) { + signingKeyPacket = signingKey.keyPacket; + } - signature.signatureType = signatureType; - _context8.next = 14; - return signature.sign(signingKeyPacket, data); + case 11: + if (!signingKeyPacket) { + _context10.next = 15; + break; + } - case 14: - _context8.next = 16; - return signature.verify(signingKeyPacket, signatureType, data); + return _context10.abrupt('return', signingKeyPacket.validate()); - case 16: + case 15: + keys = this.getKeys(); + allDummies = keys.map(function (key) { + return key.keyPacket.isDummy(); + }).every(Boolean); + + if (!allDummies) { + _context10.next = 19; + break; + } + + throw new Error("Cannot validate an all-gnu-dummy key"); + + case 19: + return _context10.abrupt('return', _promise2.default.all(keys.map(function () { + var _ref10 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee9(key) { + return _regenerator2.default.wrap(function _callee9$(_context9) { + while (1) { + switch (_context9.prev = _context9.next) { + case 0: + return _context9.abrupt('return', key.keyPacket.validate()); + + case 1: + case 'end': + return _context9.stop(); + } + } + }, _callee9, _this); + })); + + return function (_x20) { + return _ref10.apply(this, arguments); + }; + }()))); + + case 20: case 'end': - return _context8.stop(); + return _context10.stop(); } } - }, _callee8, this); + }, _callee10, this); })); /** @@ -44820,8 +45799,8 @@ Key.prototype.clearPrivateParams = function () { if (!this.isPrivate()) { throw new Error("Can't clear private parameters of a public key"); } - this.getKeys().forEach(function (_ref9) { - var keyPacket = _ref9.keyPacket; + this.getKeys().forEach(function (_ref11) { + var keyPacket = _ref11.keyPacket; if (keyPacket.isDecrypted()) { keyPacket.clearPrivateParams(); @@ -44842,24 +45821,24 @@ Key.prototype.clearPrivateParams = function () { * @async */ Key.prototype.isRevoked = function () { - var _ref10 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee9(signature, key) { + var _ref12 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee11(signature, key) { var date = arguments.length > 2 && arguments[2] !== undefined ? arguments[2] : new Date(); - return _regenerator2.default.wrap(function _callee9$(_context9) { + return _regenerator2.default.wrap(function _callee11$(_context11) { while (1) { - switch (_context9.prev = _context9.next) { + switch (_context11.prev = _context11.next) { case 0: - return _context9.abrupt('return', helper.isDataRevoked(this.keyPacket, _enums2.default.signature.key_revocation, { key: this.keyPacket }, this.revocationSignatures, signature, key, date)); + return _context11.abrupt('return', helper.isDataRevoked(this.keyPacket, _enums2.default.signature.key_revocation, { key: this.keyPacket }, this.revocationSignatures, signature, key, date)); case 1: case 'end': - return _context9.stop(); + return _context11.stop(); } } - }, _callee9, this); + }, _callee11, this); })); - return function (_x17, _x18) { - return _ref10.apply(this, arguments); + return function (_x21, _x22) { + return _ref12.apply(this, arguments); }; }(); @@ -44872,25 +45851,25 @@ Key.prototype.isRevoked = function () { * @async */ Key.prototype.verifyPrimaryKey = function () { - var _ref11 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee10() { + var _ref13 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee12() { var date = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : new Date(); var userId = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : {}; - var primaryKey, _ref12, selfCertification; + var primaryKey, _ref14, selfCertification; - return _regenerator2.default.wrap(function _callee10$(_context10) { + return _regenerator2.default.wrap(function _callee12$(_context12) { while (1) { - switch (_context10.prev = _context10.next) { + switch (_context12.prev = _context12.next) { case 0: primaryKey = this.keyPacket; // check for key revocation signatures - _context10.next = 3; + _context12.next = 3; return this.isRevoked(null, null, date); case 3: - if (!_context10.sent) { - _context10.next = 5; + if (!_context12.sent) { + _context12.next = 5; break; } @@ -44900,22 +45879,22 @@ Key.prototype.verifyPrimaryKey = function () { if (this.users.some(function (user) { return user.userId && user.selfCertifications.length; })) { - _context10.next = 7; + _context12.next = 7; break; } throw new Error('No self-certifications'); case 7: - _context10.next = 9; + _context12.next = 9; return this.getPrimaryUser(date, userId); case 9: - _ref12 = _context10.sent; - selfCertification = _ref12.selfCertification; + _ref14 = _context12.sent; + selfCertification = _ref14.selfCertification; if (!helper.isDataExpired(primaryKey, selfCertification, date)) { - _context10.next = 13; + _context12.next = 13; break; } @@ -44923,14 +45902,14 @@ Key.prototype.verifyPrimaryKey = function () { case 13: case 'end': - return _context10.stop(); + return _context12.stop(); } } - }, _callee10, this); + }, _callee12, this); })); return function () { - return _ref11.apply(this, arguments); + return _ref13.apply(this, arguments); }; }(); @@ -44946,118 +45925,118 @@ Key.prototype.verifyPrimaryKey = function () { * @async */ Key.prototype.getExpirationTime = function () { - var _ref13 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee11(capabilities, keyId, userId) { + var _ref15 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee13(capabilities, keyId, userId) { var primaryUser, selfCert, keyExpiry, sigExpiry, expiry, encryptKey, encryptExpiry, signKey, signExpiry; - return _regenerator2.default.wrap(function _callee11$(_context11) { + return _regenerator2.default.wrap(function _callee13$(_context13) { while (1) { - switch (_context11.prev = _context11.next) { + switch (_context13.prev = _context13.next) { case 0: - _context11.next = 2; + _context13.next = 2; return this.getPrimaryUser(null, userId); case 2: - primaryUser = _context11.sent; + primaryUser = _context13.sent; selfCert = primaryUser.selfCertification; keyExpiry = helper.getExpirationTime(this.keyPacket, selfCert); sigExpiry = selfCert.getExpirationTime(); expiry = keyExpiry < sigExpiry ? keyExpiry : sigExpiry; if (!(capabilities === 'encrypt' || capabilities === 'encrypt_sign')) { - _context11.next = 22; + _context13.next = 22; break; } - _context11.next = 10; + _context13.next = 10; return this.getEncryptionKey(keyId, expiry, userId).catch(function () {}); case 10: - _context11.t0 = _context11.sent; + _context13.t0 = _context13.sent; - if (_context11.t0) { - _context11.next = 15; + if (_context13.t0) { + _context13.next = 15; break; } - _context11.next = 14; + _context13.next = 14; return this.getEncryptionKey(keyId, null, userId).catch(function () {}); case 14: - _context11.t0 = _context11.sent; + _context13.t0 = _context13.sent; case 15: - encryptKey = _context11.t0; + encryptKey = _context13.t0; if (encryptKey) { - _context11.next = 18; + _context13.next = 18; break; } - return _context11.abrupt('return', null); + return _context13.abrupt('return', null); case 18: - _context11.next = 20; + _context13.next = 20; return encryptKey.getExpirationTime(this.keyPacket); case 20: - encryptExpiry = _context11.sent; + encryptExpiry = _context13.sent; if (encryptExpiry < expiry) expiry = encryptExpiry; case 22: if (!(capabilities === 'sign' || capabilities === 'encrypt_sign')) { - _context11.next = 37; + _context13.next = 37; break; } - _context11.next = 25; + _context13.next = 25; return this.getSigningKey(keyId, expiry, userId).catch(function () {}); case 25: - _context11.t1 = _context11.sent; + _context13.t1 = _context13.sent; - if (_context11.t1) { - _context11.next = 30; + if (_context13.t1) { + _context13.next = 30; break; } - _context11.next = 29; + _context13.next = 29; return this.getSigningKey(keyId, null, userId).catch(function () {}); case 29: - _context11.t1 = _context11.sent; + _context13.t1 = _context13.sent; case 30: - signKey = _context11.t1; + signKey = _context13.t1; if (signKey) { - _context11.next = 33; + _context13.next = 33; break; } - return _context11.abrupt('return', null); + return _context13.abrupt('return', null); case 33: - _context11.next = 35; + _context13.next = 35; return signKey.getExpirationTime(this.keyPacket); case 35: - signExpiry = _context11.sent; + signExpiry = _context13.sent; if (signExpiry < expiry) expiry = signExpiry; case 37: - return _context11.abrupt('return', expiry); + return _context13.abrupt('return', expiry); case 38: case 'end': - return _context11.stop(); + return _context13.stop(); } } - }, _callee11, this); + }, _callee13, this); })); - return function (_x22, _x23, _x24) { - return _ref13.apply(this, arguments); + return function (_x26, _x27, _x28) { + return _ref15.apply(this, arguments); }; }(); @@ -45072,15 +46051,15 @@ Key.prototype.getExpirationTime = function () { * @async */ Key.prototype.getPrimaryUser = function () { - var _ref14 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee13() { + var _ref16 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee15() { var date = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : new Date(); var userId = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : {}; var primaryKey, users, exception, i, _user, dataToVerify, selfCertification, primaryUser, user, cert; - return _regenerator2.default.wrap(function _callee13$(_context13) { + return _regenerator2.default.wrap(function _callee15$(_context15) { while (1) { - switch (_context13.prev = _context13.next) { + switch (_context15.prev = _context15.next) { case 0: primaryKey = this.keyPacket; users = []; @@ -45089,23 +46068,23 @@ Key.prototype.getPrimaryUser = function () { case 4: if (!(i < this.users.length)) { - _context13.next = 24; + _context15.next = 24; break; } - _context13.prev = 5; + _context15.prev = 5; _user = this.users[i]; if (_user.userId) { - _context13.next = 9; + _context15.next = 9; break; } - return _context13.abrupt('continue', 21); + return _context15.abrupt('continue', 21); case 9: if (!(userId.name !== undefined && _user.userId.name !== userId.name || userId.email !== undefined && _user.userId.email !== userId.email || userId.comment !== undefined && _user.userId.comment !== userId.comment)) { - _context13.next = 11; + _context15.next = 11; break; } @@ -45113,55 +46092,55 @@ Key.prototype.getPrimaryUser = function () { case 11: dataToVerify = { userId: _user.userId, key: primaryKey }; - _context13.next = 14; + _context15.next = 14; return helper.getLatestValidSignature(_user.selfCertifications, primaryKey, _enums2.default.signature.cert_generic, dataToVerify, date); case 14: - selfCertification = _context13.sent; + selfCertification = _context15.sent; users.push({ index: i, user: _user, selfCertification: selfCertification }); - _context13.next = 21; + _context15.next = 21; break; case 18: - _context13.prev = 18; - _context13.t0 = _context13['catch'](5); + _context15.prev = 18; + _context15.t0 = _context15['catch'](5); - exception = _context13.t0; + exception = _context15.t0; case 21: i++; - _context13.next = 4; + _context15.next = 4; break; case 24: if (users.length) { - _context13.next = 26; + _context15.next = 26; break; } throw exception || new Error('Could not find primary user'); case 26: - _context13.next = 28; + _context15.next = 28; return _promise2.default.all(users.map(function () { - var _ref15 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee12(a) { - return _regenerator2.default.wrap(function _callee12$(_context12) { + var _ref17 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee14(a) { + return _regenerator2.default.wrap(function _callee14$(_context14) { while (1) { - switch (_context12.prev = _context12.next) { + switch (_context14.prev = _context14.next) { case 0: - return _context12.abrupt('return', a.user.revoked || a.user.isRevoked(primaryKey, a.selfCertification, null, date)); + return _context14.abrupt('return', a.user.revoked || a.user.isRevoked(primaryKey, a.selfCertification, null, date)); case 1: case 'end': - return _context12.stop(); + return _context14.stop(); } } - }, _callee12, this); + }, _callee14, this); })); - return function (_x27) { - return _ref15.apply(this, arguments); + return function (_x31) { + return _ref17.apply(this, arguments); }; }())); @@ -45173,40 +46152,40 @@ Key.prototype.getPrimaryUser = function () { return B.revoked - A.revoked || A.isPrimaryUserID - B.isPrimaryUserID || A.created - B.created; }).pop(); user = primaryUser.user, cert = primaryUser.selfCertification; - _context13.t1 = cert.revoked; + _context15.t1 = cert.revoked; - if (_context13.t1) { - _context13.next = 35; + if (_context15.t1) { + _context15.next = 35; break; } - _context13.next = 34; + _context15.next = 34; return user.isRevoked(primaryKey, cert, null, date); case 34: - _context13.t1 = _context13.sent; + _context15.t1 = _context15.sent; case 35: - if (!_context13.t1) { - _context13.next = 37; + if (!_context15.t1) { + _context15.next = 37; break; } throw new Error('Primary user is revoked'); case 37: - return _context13.abrupt('return', primaryUser); + return _context15.abrupt('return', primaryUser); case 38: case 'end': - return _context13.stop(); + return _context15.stop(); } } - }, _callee13, this, [[5, 18]]); + }, _callee15, this, [[5, 18]]); })); return function () { - return _ref14.apply(this, arguments); + return _ref16.apply(this, arguments); }; }(); @@ -45222,16 +46201,16 @@ Key.prototype.getPrimaryUser = function () { * @async */ Key.prototype.update = function () { - var _ref16 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee18(key) { - var _this = this; + var _ref18 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee20(key) { + var _this2 = this; var equal; - return _regenerator2.default.wrap(function _callee18$(_context18) { + return _regenerator2.default.wrap(function _callee20$(_context20) { while (1) { - switch (_context18.prev = _context18.next) { + switch (_context20.prev = _context20.next) { case 0: if (this.hasSameFingerprintAs(key)) { - _context18.next = 2; + _context20.next = 2; break; } @@ -45239,7 +46218,7 @@ Key.prototype.update = function () { case 2: if (!(this.isPublic() && key.isPrivate())) { - _context18.next = 7; + _context20.next = 7; break; } @@ -45251,7 +46230,7 @@ Key.prototype.update = function () { }); if (equal) { - _context18.next = 6; + _context20.next = 6; break; } @@ -45261,78 +46240,19 @@ Key.prototype.update = function () { this.keyPacket = key.keyPacket; case 7: - _context18.next = 9; + _context20.next = 9; return helper.mergeSignatures(key, this, 'revocationSignatures', function (srcRevSig) { - return helper.isDataRevoked(_this.keyPacket, _enums2.default.signature.key_revocation, _this, [srcRevSig], null, key.keyPacket); + return helper.isDataRevoked(_this2.keyPacket, _enums2.default.signature.key_revocation, _this2, [srcRevSig], null, key.keyPacket); }); case 9: - _context18.next = 11; + _context20.next = 11; return helper.mergeSignatures(key, this, 'directSignatures'); case 11: - _context18.next = 13; + _context20.next = 13; return _promise2.default.all(key.users.map(function () { - var _ref17 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee15(srcUser) { - var found; - return _regenerator2.default.wrap(function _callee15$(_context15) { - while (1) { - switch (_context15.prev = _context15.next) { - case 0: - found = false; - _context15.next = 3; - return _promise2.default.all(_this.users.map(function () { - var _ref18 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee14(dstUser) { - return _regenerator2.default.wrap(function _callee14$(_context14) { - while (1) { - switch (_context14.prev = _context14.next) { - case 0: - if (!(srcUser.userId && dstUser.userId && srcUser.userId.userid === dstUser.userId.userid || srcUser.userAttribute && srcUser.userAttribute.equals(dstUser.userAttribute))) { - _context14.next = 4; - break; - } - - _context14.next = 3; - return dstUser.update(srcUser, _this.keyPacket); - - case 3: - found = true; - - case 4: - case 'end': - return _context14.stop(); - } - } - }, _callee14, _this); - })); - - return function (_x30) { - return _ref18.apply(this, arguments); - }; - }())); - - case 3: - if (!found) { - _this.users.push(srcUser); - } - - case 4: - case 'end': - return _context15.stop(); - } - } - }, _callee15, _this); - })); - - return function (_x29) { - return _ref17.apply(this, arguments); - }; - }())); - - case 13: - _context18.next = 15; - return _promise2.default.all(key.subKeys.map(function () { - var _ref19 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee17(srcSubKey) { + var _ref19 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee17(srcUser) { var found; return _regenerator2.default.wrap(function _callee17$(_context17) { while (1) { @@ -45340,19 +46260,19 @@ Key.prototype.update = function () { case 0: found = false; _context17.next = 3; - return _promise2.default.all(_this.subKeys.map(function () { - var _ref20 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee16(dstSubKey) { + return _promise2.default.all(_this2.users.map(function () { + var _ref20 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee16(dstUser) { return _regenerator2.default.wrap(function _callee16$(_context16) { while (1) { switch (_context16.prev = _context16.next) { case 0: - if (!dstSubKey.hasSameFingerprintAs(srcSubKey)) { + if (!(srcUser.userId && dstUser.userId && srcUser.userId.userid === dstUser.userId.userid || srcUser.userAttribute && srcUser.userAttribute.equals(dstUser.userAttribute))) { _context16.next = 4; break; } _context16.next = 3; - return dstSubKey.update(srcSubKey, _this.keyPacket); + return dstUser.update(srcUser, _this2.keyPacket); case 3: found = true; @@ -45362,17 +46282,17 @@ Key.prototype.update = function () { return _context16.stop(); } } - }, _callee16, _this); + }, _callee16, _this2); })); - return function (_x32) { + return function (_x34) { return _ref20.apply(this, arguments); }; }())); case 3: if (!found) { - _this.subKeys.push(srcSubKey); + _this2.users.push(srcUser); } case 4: @@ -45380,24 +46300,83 @@ Key.prototype.update = function () { return _context17.stop(); } } - }, _callee17, _this); + }, _callee17, _this2); })); - return function (_x31) { + return function (_x33) { return _ref19.apply(this, arguments); }; }())); + case 13: + _context20.next = 15; + return _promise2.default.all(key.subKeys.map(function () { + var _ref21 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee19(srcSubKey) { + var found; + return _regenerator2.default.wrap(function _callee19$(_context19) { + while (1) { + switch (_context19.prev = _context19.next) { + case 0: + found = false; + _context19.next = 3; + return _promise2.default.all(_this2.subKeys.map(function () { + var _ref22 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee18(dstSubKey) { + return _regenerator2.default.wrap(function _callee18$(_context18) { + while (1) { + switch (_context18.prev = _context18.next) { + case 0: + if (!dstSubKey.hasSameFingerprintAs(srcSubKey)) { + _context18.next = 4; + break; + } + + _context18.next = 3; + return dstSubKey.update(srcSubKey, _this2.keyPacket); + + case 3: + found = true; + + case 4: + case 'end': + return _context18.stop(); + } + } + }, _callee18, _this2); + })); + + return function (_x36) { + return _ref22.apply(this, arguments); + }; + }())); + + case 3: + if (!found) { + _this2.subKeys.push(srcSubKey); + } + + case 4: + case 'end': + return _context19.stop(); + } + } + }, _callee19, _this2); + })); + + return function (_x35) { + return _ref21.apply(this, arguments); + }; + }())); + case 15: case 'end': - return _context18.stop(); + return _context20.stop(); } } - }, _callee18, this); + }, _callee20, this); })); - return function (_x28) { - return _ref16.apply(this, arguments); + return function (_x32) { + return _ref18.apply(this, arguments); }; }(); @@ -45411,21 +46390,21 @@ Key.prototype.update = function () { * @async */ Key.prototype.revoke = function () { - var _ref21 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee19() { - var _ref22 = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : {}, - _ref22$flag = _ref22.flag, - reasonForRevocationFlag = _ref22$flag === undefined ? _enums2.default.reasonForRevocation.no_reason : _ref22$flag, - _ref22$string = _ref22.string, - reasonForRevocationString = _ref22$string === undefined ? '' : _ref22$string; + var _ref23 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee21() { + var _ref24 = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : {}, + _ref24$flag = _ref24.flag, + reasonForRevocationFlag = _ref24$flag === undefined ? _enums2.default.reasonForRevocation.no_reason : _ref24$flag, + _ref24$string = _ref24.string, + reasonForRevocationString = _ref24$string === undefined ? '' : _ref24$string; var date = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : new Date(); var dataToSign, key; - return _regenerator2.default.wrap(function _callee19$(_context19) { + return _regenerator2.default.wrap(function _callee21$(_context21) { while (1) { - switch (_context19.prev = _context19.next) { + switch (_context21.prev = _context21.next) { case 0: if (!this.isPublic()) { - _context19.next = 2; + _context21.next = 2; break; } @@ -45434,8 +46413,8 @@ Key.prototype.revoke = function () { case 2: dataToSign = { key: this.keyPacket }; key = new Key(this.toPacketlist()); - _context19.t0 = key.revocationSignatures; - _context19.next = 7; + _context21.t0 = key.revocationSignatures; + _context21.next = 7; return helper.createSignaturePacket(dataToSign, null, this.keyPacket, { signatureType: _enums2.default.signature.key_revocation, reasonForRevocationFlag: _enums2.default.write(_enums2.default.reasonForRevocation, reasonForRevocationFlag), @@ -45443,22 +46422,22 @@ Key.prototype.revoke = function () { }, date); case 7: - _context19.t1 = _context19.sent; + _context21.t1 = _context21.sent; - _context19.t0.push.call(_context19.t0, _context19.t1); + _context21.t0.push.call(_context21.t0, _context21.t1); - return _context19.abrupt('return', key); + return _context21.abrupt('return', key); case 10: case 'end': - return _context19.stop(); + return _context21.stop(); } } - }, _callee19, this); + }, _callee21, this); })); return function () { - return _ref21.apply(this, arguments); + return _ref23.apply(this, arguments); }; }(); @@ -45470,34 +46449,34 @@ Key.prototype.revoke = function () { * @async */ Key.prototype.getRevocationCertificate = function () { - var _ref23 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee20() { + var _ref25 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee22() { var date = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : new Date(); var dataToVerify, revocationSignature, packetlist; - return _regenerator2.default.wrap(function _callee20$(_context20) { + return _regenerator2.default.wrap(function _callee22$(_context22) { while (1) { - switch (_context20.prev = _context20.next) { + switch (_context22.prev = _context22.next) { case 0: dataToVerify = { key: this.keyPacket }; - _context20.next = 3; + _context22.next = 3; return helper.getLatestValidSignature(this.revocationSignatures, this.keyPacket, _enums2.default.signature.key_revocation, dataToVerify, date); case 3: - revocationSignature = _context20.sent; + revocationSignature = _context22.sent; packetlist = new _packet2.default.List(); packetlist.push(revocationSignature); - return _context20.abrupt('return', _armor2.default.encode(_enums2.default.armor.public_key, packetlist.write(), null, null, 'This is a revocation certificate')); + return _context22.abrupt('return', _armor2.default.encode(_enums2.default.armor.public_key, packetlist.write(), null, null, 'This is a revocation certificate')); case 7: case 'end': - return _context20.stop(); + return _context22.stop(); } } - }, _callee20, this); + }, _callee22, this); })); return function () { - return _ref23.apply(this, arguments); + return _ref25.apply(this, arguments); }; }(); @@ -45510,26 +46489,26 @@ Key.prototype.getRevocationCertificate = function () { * @async */ Key.prototype.applyRevocationCertificate = function () { - var _ref24 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee21(revocationCertificate) { + var _ref26 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee23(revocationCertificate) { var input, packetlist, revocationSignature, key; - return _regenerator2.default.wrap(function _callee21$(_context21) { + return _regenerator2.default.wrap(function _callee23$(_context23) { while (1) { - switch (_context21.prev = _context21.next) { + switch (_context23.prev = _context23.next) { case 0: - _context21.next = 2; + _context23.next = 2; return _armor2.default.decode(revocationCertificate); case 2: - input = _context21.sent; + input = _context23.sent; packetlist = new _packet2.default.List(); - _context21.next = 6; + _context23.next = 6; return packetlist.read(input.data); case 6: revocationSignature = packetlist.findPacket(_enums2.default.packet.signature); if (!(!revocationSignature || revocationSignature.signatureType !== _enums2.default.signature.key_revocation)) { - _context21.next = 9; + _context23.next = 9; break; } @@ -45537,7 +46516,7 @@ Key.prototype.applyRevocationCertificate = function () { case 9: if (revocationSignature.issuerKeyId.equals(this.getKeyId())) { - _context21.next = 11; + _context23.next = 11; break; } @@ -45545,42 +46524,42 @@ Key.prototype.applyRevocationCertificate = function () { case 11: if (!revocationSignature.isExpired()) { - _context21.next = 13; + _context23.next = 13; break; } throw new Error('Revocation signature is expired'); case 13: - _context21.prev = 13; - _context21.next = 16; + _context23.prev = 13; + _context23.next = 16; return revocationSignature.verify(this.keyPacket, _enums2.default.signature.key_revocation, { key: this.keyPacket }); case 16: - _context21.next = 21; + _context23.next = 21; break; case 18: - _context21.prev = 18; - _context21.t0 = _context21['catch'](13); - throw _util2.default.wrapError('Could not verify revocation signature', _context21.t0); + _context23.prev = 18; + _context23.t0 = _context23['catch'](13); + throw _util2.default.wrapError('Could not verify revocation signature', _context23.t0); case 21: key = new Key(this.toPacketlist()); key.revocationSignatures.push(revocationSignature); - return _context21.abrupt('return', key); + return _context23.abrupt('return', key); case 24: case 'end': - return _context21.stop(); + return _context23.stop(); } } - }, _callee21, this, [[13, 18]]); + }, _callee23, this, [[13, 18]]); })); - return function (_x36) { - return _ref24.apply(this, arguments); + return function (_x40) { + return _ref26.apply(this, arguments); }; }(); @@ -45593,40 +46572,40 @@ Key.prototype.applyRevocationCertificate = function () { * @async */ Key.prototype.signPrimaryUser = function () { - var _ref25 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee22(privateKeys, date, userId) { - var _ref26, index, user, userSign, key; + var _ref27 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee24(privateKeys, date, userId) { + var _ref28, index, user, userSign, key; - return _regenerator2.default.wrap(function _callee22$(_context22) { + return _regenerator2.default.wrap(function _callee24$(_context24) { while (1) { - switch (_context22.prev = _context22.next) { + switch (_context24.prev = _context24.next) { case 0: - _context22.next = 2; + _context24.next = 2; return this.getPrimaryUser(date, userId); case 2: - _ref26 = _context22.sent; - index = _ref26.index; - user = _ref26.user; - _context22.next = 7; + _ref28 = _context24.sent; + index = _ref28.index; + user = _ref28.user; + _context24.next = 7; return user.sign(this.keyPacket, privateKeys); case 7: - userSign = _context22.sent; + userSign = _context24.sent; key = new Key(this.toPacketlist()); key.users[index] = userSign; - return _context22.abrupt('return', key); + return _context24.abrupt('return', key); case 11: case 'end': - return _context22.stop(); + return _context24.stop(); } } - }, _callee22, this); + }, _callee24, this); })); - return function (_x37, _x38, _x39) { - return _ref25.apply(this, arguments); + return function (_x41, _x42, _x43) { + return _ref27.apply(this, arguments); }; }(); @@ -45637,33 +46616,33 @@ Key.prototype.signPrimaryUser = function () { * @async */ Key.prototype.signAllUsers = function () { - var _ref27 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee23(privateKeys) { + var _ref29 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee25(privateKeys) { var that, key; - return _regenerator2.default.wrap(function _callee23$(_context23) { + return _regenerator2.default.wrap(function _callee25$(_context25) { while (1) { - switch (_context23.prev = _context23.next) { + switch (_context25.prev = _context25.next) { case 0: that = this; key = new Key(this.toPacketlist()); - _context23.next = 4; + _context25.next = 4; return _promise2.default.all(this.users.map(function (user) { return user.sign(that.keyPacket, privateKeys); })); case 4: - key.users = _context23.sent; - return _context23.abrupt('return', key); + key.users = _context25.sent; + return _context25.abrupt('return', key); case 6: case 'end': - return _context23.stop(); + return _context25.stop(); } } - }, _callee23, this); + }, _callee25, this); })); - return function (_x40) { - return _ref27.apply(this, arguments); + return function (_x44) { + return _ref29.apply(this, arguments); }; }(); @@ -45679,63 +46658,63 @@ Key.prototype.signAllUsers = function () { * @async */ Key.prototype.verifyPrimaryUser = function () { - var _ref28 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee24(keys, date, userId) { - var primaryKey, _ref29, user, results; + var _ref30 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee26(keys, date, userId) { + var primaryKey, _ref31, user, results; - return _regenerator2.default.wrap(function _callee24$(_context24) { + return _regenerator2.default.wrap(function _callee26$(_context26) { while (1) { - switch (_context24.prev = _context24.next) { + switch (_context26.prev = _context26.next) { case 0: primaryKey = this.keyPacket; - _context24.next = 3; + _context26.next = 3; return this.getPrimaryUser(date, userId); case 3: - _ref29 = _context24.sent; - user = _ref29.user; + _ref31 = _context26.sent; + user = _ref31.user; if (!keys) { - _context24.next = 11; + _context26.next = 11; break; } - _context24.next = 8; + _context26.next = 8; return user.verifyAllCertifications(primaryKey, keys); case 8: - _context24.t0 = _context24.sent; - _context24.next = 17; + _context26.t0 = _context26.sent; + _context26.next = 17; break; case 11: - _context24.t1 = primaryKey.keyid; - _context24.next = 14; + _context26.t1 = primaryKey.keyid; + _context26.next = 14; return user.verify(primaryKey).catch(function () { return false; }); case 14: - _context24.t2 = _context24.sent; - _context24.t3 = { - keyid: _context24.t1, - valid: _context24.t2 + _context26.t2 = _context26.sent; + _context26.t3 = { + keyid: _context26.t1, + valid: _context26.t2 }; - _context24.t0 = [_context24.t3]; + _context26.t0 = [_context26.t3]; case 17: - results = _context24.t0; - return _context24.abrupt('return', results); + results = _context26.t0; + return _context26.abrupt('return', results); case 19: case 'end': - return _context24.stop(); + return _context26.stop(); } } - }, _callee24, this); + }, _callee26, this); })); - return function (_x41, _x42, _x43) { - return _ref28.apply(this, arguments); + return function (_x45, _x46, _x47) { + return _ref30.apply(this, arguments); }; }(); @@ -45750,52 +46729,52 @@ Key.prototype.verifyPrimaryUser = function () { * @async */ Key.prototype.verifyAllUsers = function () { - var _ref30 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee26(keys) { + var _ref32 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee28(keys) { var results, primaryKey; - return _regenerator2.default.wrap(function _callee26$(_context26) { + return _regenerator2.default.wrap(function _callee28$(_context28) { while (1) { - switch (_context26.prev = _context26.next) { + switch (_context28.prev = _context28.next) { case 0: results = []; primaryKey = this.keyPacket; - _context26.next = 4; + _context28.next = 4; return _promise2.default.all(this.users.map(function () { - var _ref31 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee25(user) { + var _ref33 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee27(user) { var signatures; - return _regenerator2.default.wrap(function _callee25$(_context25) { + return _regenerator2.default.wrap(function _callee27$(_context27) { while (1) { - switch (_context25.prev = _context25.next) { + switch (_context27.prev = _context27.next) { case 0: if (!keys) { - _context25.next = 6; + _context27.next = 6; break; } - _context25.next = 3; + _context27.next = 3; return user.verifyAllCertifications(primaryKey, keys); case 3: - _context25.t0 = _context25.sent; - _context25.next = 12; + _context27.t0 = _context27.sent; + _context27.next = 12; break; case 6: - _context25.t1 = primaryKey.keyid; - _context25.next = 9; + _context27.t1 = primaryKey.keyid; + _context27.next = 9; return user.verify(primaryKey).catch(function () { return false; }); case 9: - _context25.t2 = _context25.sent; - _context25.t3 = { - keyid: _context25.t1, - valid: _context25.t2 + _context27.t2 = _context27.sent; + _context27.t3 = { + keyid: _context27.t1, + valid: _context27.t2 }; - _context25.t0 = [_context25.t3]; + _context27.t0 = [_context27.t3]; case 12: - signatures = _context25.t0; + signatures = _context27.t0; signatures.forEach(function (signature) { results.push({ @@ -45807,30 +46786,30 @@ Key.prototype.verifyAllUsers = function () { case 14: case 'end': - return _context25.stop(); + return _context27.stop(); } } - }, _callee25, this); + }, _callee27, this); })); - return function (_x45) { - return _ref31.apply(this, arguments); + return function (_x49) { + return _ref33.apply(this, arguments); }; }())); case 4: - return _context26.abrupt('return', results); + return _context28.abrupt('return', results); case 5: case 'end': - return _context26.stop(); + return _context28.stop(); } } - }, _callee26, this); + }, _callee28, this); })); - return function (_x44) { - return _ref30.apply(this, arguments); + return function (_x48) { + return _ref32.apply(this, arguments); }; }(); @@ -45847,15 +46826,15 @@ Key.prototype.verifyAllUsers = function () { * @async */ Key.prototype.addSubkey = function () { - var _ref32 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee27() { + var _ref34 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee29() { var options = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : {}; var secretKeyPacket, defaultOptions, keyPacket, bindingSignature, packetList; - return _regenerator2.default.wrap(function _callee27$(_context27) { + return _regenerator2.default.wrap(function _callee29$(_context29) { while (1) { - switch (_context27.prev = _context27.next) { + switch (_context29.prev = _context29.next) { case 0: if (this.isPrivate()) { - _context27.next = 2; + _context29.next = 2; break; } @@ -45863,7 +46842,7 @@ Key.prototype.addSubkey = function () { case 2: if (!options.passphrase) { - _context27.next = 4; + _context29.next = 4; break; } @@ -45871,7 +46850,7 @@ Key.prototype.addSubkey = function () { case 4: if (!(_util2.default.getWebCryptoAll() && options.rsaBits < 2048)) { - _context27.next = 6; + _context29.next = 6; break; } @@ -45881,7 +46860,7 @@ Key.prototype.addSubkey = function () { secretKeyPacket = this.primaryKey; if (secretKeyPacket.isDecrypted()) { - _context27.next = 9; + _context29.next = 9; break; } @@ -45891,32 +46870,32 @@ Key.prototype.addSubkey = function () { defaultOptions = secretKeyPacket.getAlgorithmInfo(); options = helper.sanitizeKeyOptions(options, defaultOptions); - _context27.next = 13; + _context29.next = 13; return helper.generateSecretSubkey(options); case 13: - keyPacket = _context27.sent; - _context27.next = 16; + keyPacket = _context29.sent; + _context29.next = 16; return helper.createBindingSignature(keyPacket, secretKeyPacket, options); case 16: - bindingSignature = _context27.sent; + bindingSignature = _context29.sent; packetList = this.toPacketlist(); packetList.push(keyPacket); packetList.push(bindingSignature); - return _context27.abrupt('return', new Key(packetList)); + return _context29.abrupt('return', new Key(packetList)); case 21: case 'end': - return _context27.stop(); + return _context29.stop(); } } - }, _callee27, this); + }, _callee29, this); })); return function () { - return _ref32.apply(this, arguments); + return _ref34.apply(this, arguments); }; }(); @@ -48749,10 +49728,16 @@ Message.prototype.decryptSessionKeys = function () { _context6.t0 = _context6['catch'](1); case 10: - privateKeyPackets = privateKey.getKeys(keyPacket.publicKeyId).map(function (key) { + _context6.next = 12; + return privateKey.getDecryptionKeys(keyPacket.publicKeyId, null); + + case 12: + _context6.t1 = function (key) { return key.keyPacket; - }); - _context6.next = 13; + }; + + privateKeyPackets = _context6.sent.map(_context6.t1); + _context6.next = 16; return _promise2.default.all(privateKeyPackets.map(function () { var _ref8 = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee5(privateKeyPacket) { return _regenerator2.default.wrap(function _callee5$(_context5) { @@ -48812,7 +49797,7 @@ Message.prototype.decryptSessionKeys = function () { }; }())); - case 13: + case 16: case 'end': return _context6.stop(); } @@ -51382,7 +52367,7 @@ function clonePackets(options) { if (options.message) { //could be either a Message or CleartextMessage object if (options.message instanceof _message.Message) { - options.message = options.message.packets; + options.message = { packets: options.message.packets, fromStream: options.message.fromStream }; } else if (options.message instanceof _cleartext.CleartextMessage) { options.message = { text: options.message.text, signature: options.message.signature.packets }; } @@ -51500,8 +52485,10 @@ function packetlistCloneToKey(clone) { } function packetlistCloneToMessage(clone) { - var packetlist = _packetlist2.default.fromStructuredClone(clone); - return new _message.Message(packetlist); + var packetlist = _packetlist2.default.fromStructuredClone(clone.packets); + var message = new _message.Message(packetlist); + message.fromStream = clone.fromStream; + return message; } function packetlistCloneToCleartextMessage(clone) { @@ -53672,7 +54659,7 @@ PublicKey.prototype.getCreationTime = function () { /** * Calculates the key id of the key - * @returns {String} A 8 byte key id + * @returns {module:type/keyid} A 8 byte key id */ PublicKey.prototype.getKeyId = function () { if (this.keyid) { @@ -54350,7 +55337,7 @@ SecretKey.prototype.write = function () { } arr.push(new Uint8Array(optionalFieldsArr)); - if (!this.s2k || this.s2k.type !== 'gnu-dummy') { + if (!this.isDummy()) { if (!this.s2k_usage) { var cleartextParams = write_cleartext_params(this.params, this.algorithm); this.keyMaterial = _util2.default.concatUint8Array([cleartextParams, _util2.default.write_checksum(cleartextParams)]); @@ -54373,6 +55360,14 @@ SecretKey.prototype.isDecrypted = function () { return this.isEncrypted === false; }; +/** + * Check whether this is a gnu-dummy key + * @returns {Boolean} + */ +SecretKey.prototype.isDummy = function () { + return !!(this.s2k && this.s2k.type === 'gnu-dummy'); +}; + /** * Encrypt the payload. By default, we use aes256 and iterated, salted string * to key specifier. If the key is in a decrypted state (isEncrypted === false) @@ -54389,7 +55384,7 @@ SecretKey.prototype.encrypt = function () { while (1) { switch (_context.prev = _context.next) { case 0: - if (!(this.s2k && this.s2k.type === 'gnu-dummy')) { + if (!this.isDummy()) { _context.next = 2; break; } @@ -54509,7 +55504,7 @@ SecretKey.prototype.decrypt = function () { while (1) { switch (_context3.prev = _context3.next) { case 0: - if (!(this.s2k && this.s2k.type === 'gnu-dummy')) { + if (!this.isDummy()) { _context3.next = 3; break; } @@ -54667,6 +55662,55 @@ SecretKey.prototype.generate = function () { }; }(); +/** + * Checks that the key parameters are consistent + * @throws {Error} if validation was not successful + * @async + */ +SecretKey.prototype.validate = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee5() { + var algo, validParams; + return _regenerator2.default.wrap(function _callee5$(_context5) { + while (1) { + switch (_context5.prev = _context5.next) { + case 0: + if (!this.isDummy()) { + _context5.next = 2; + break; + } + + return _context5.abrupt('return'); + + case 2: + if (this.isDecrypted()) { + _context5.next = 4; + break; + } + + throw new Error('Key is not decrypted'); + + case 4: + algo = _enums2.default.write(_enums2.default.publicKey, this.algorithm); + _context5.next = 7; + return _crypto2.default.validateParams(algo, this.params); + + case 7: + validParams = _context5.sent; + + if (validParams) { + _context5.next = 10; + break; + } + + throw new Error('Key is invalid'); + + case 10: + case 'end': + return _context5.stop(); + } + } + }, _callee5, this); +})); + /** * Clear private key parameters */ @@ -54986,13 +56030,8 @@ Signature.prototype.sign = function () { arr = [new Uint8Array([this.version, signatureType, publicKeyAlgorithm, hashAlgorithm])]; - if (key.version === 5) { - // We could also generate this subpacket for version 4 keys, but for - // now we don't. - this.issuerKeyVersion = key.version; - this.issuerFingerprint = key.getFingerprintBytes(); - } - + this.issuerKeyVersion = key.version; + this.issuerFingerprint = key.getFingerprintBytes(); this.issuerKeyId = key.getKeyId(); // Add hashed subpackets @@ -55001,10 +56040,10 @@ Signature.prototype.sign = function () { this.signatureData = _util2.default.concat(arr); toHash = this.toHash(signatureType, data, detached); - _context2.next = 12; + _context2.next = 13; return this.hash(signatureType, data, toHash, detached); - case 12: + case 13: hash = _context2.sent; @@ -55043,19 +56082,19 @@ Signature.prototype.sign = function () { }(); if (!streaming) { - _context2.next = 20; + _context2.next = 21; break; } this.signature = _webStreamTools2.default.fromAsync(signed); - _context2.next = 24; + _context2.next = 25; break; - case 20: - _context2.next = 22; + case 21: + _context2.next = 23; return signed(); - case 22: + case 23: this.signature = _context2.sent; @@ -55065,10 +56104,10 @@ Signature.prototype.sign = function () { // same as the ones passed to sign. this.verified = true; - case 24: + case 25: return _context2.abrupt('return', true); - case 25: + case 26: case 'end': return _context2.stop(); } @@ -57768,33 +58807,6 @@ exports.default = ECDHSymmetricKey; Object.defineProperty(exports, "__esModule", { value: true }); - -var _enums = _dereq_('../enums.js'); - -var _enums2 = _interopRequireDefault(_enums); - -function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; } - -/** - * @constructor - * @param {enums.hash} hash Hash algorithm - * @param {enums.symmetric} cipher Symmetric algorithm - */ -function KDFParams(data) { - if (data && data.length === 2) { - this.hash = data[0]; - this.cipher = data[1]; - } else { - this.hash = _enums2.default.hash.sha1; - this.cipher = _enums2.default.symmetric.aes128; - } -} - -/** - * Read KDFParams from an Uint8Array - * @param {Uint8Array} input Where to read the KDFParams from - * @returns {Number} Number of read bytes - */ // OpenPGP.js - An OpenPGP implementation in javascript // Copyright (C) 2015-2016 Decentral // @@ -57824,6 +58836,29 @@ function KDFParams(data) { * @module type/kdf_params */ +/** + * @constructor + * @param {enums.hash} hash Hash algorithm + * @param {enums.symmetric} cipher Symmetric algorithm + */ +function KDFParams(data) { + if (data) { + var hash = data.hash, + cipher = data.cipher; + + this.hash = hash; + this.cipher = cipher; + } else { + this.hash = null; + this.cipher = null; + } +} + +/** + * Read KDFParams from an Uint8Array + * @param {Uint8Array} input Where to read the KDFParams from + * @returns {Number} Number of read bytes + */ KDFParams.prototype.read = function (input) { if (input.length < 4 || input[0] !== 3 || input[1] !== 1) { throw new Error('Cannot read KDFParams'); @@ -57842,12 +58877,15 @@ KDFParams.prototype.write = function () { }; KDFParams.fromClone = function (clone) { - return new KDFParams([clone.hash, clone.cipher]); + var hash = clone.hash, + cipher = clone.cipher; + + return new KDFParams({ hash: hash, cipher: cipher }); }; exports.default = KDFParams; -},{"../enums.js":384}],425:[function(_dereq_,module,exports){ +},{}],425:[function(_dereq_,module,exports){ 'use strict'; Object.defineProperty(exports, "__esModule", { @@ -57904,10 +58942,18 @@ Keyid.prototype.read = function (bytes) { this.bytes = _util2.default.Uint8Array_to_str(bytes.subarray(0, 8)); }; +/** + * Serializes the Key ID + * @returns {Uint8Array} Key ID as a Uint8Array + */ Keyid.prototype.write = function () { return _util2.default.str_to_Uint8Array(this.bytes); }; +/** + * Returns the Key ID represented as a hexadecimal string + * @returns {String} Key ID as a hexadecimal string + */ Keyid.prototype.toHex = function () { return _util2.default.str_to_hex(this.bytes); }; @@ -57923,10 +58969,18 @@ Keyid.prototype.equals = function (keyid) { return matchWildcard && (keyid.isWildcard() || this.isWildcard()) || this.bytes === keyid.bytes; }; +/** + * Checks to see if the Key ID is unset + * @returns {Boolean} true if the Key ID is null + */ Keyid.prototype.isNull = function () { return this.bytes === ''; }; +/** + * Checks to see if the Key ID is a "wildcard" Key ID (all zeros) + * @returns {Boolean} true if this is a wildcard Key ID + */ Keyid.prototype.isWildcard = function () { return (/^0+$/.test(this.toHex()) ); @@ -59571,7 +60625,7 @@ function WKD() { WKD.prototype.lookup = function () { var _ref = (0, _asyncToGenerator3.default)( /*#__PURE__*/_regenerator2.default.mark(function _callee(options) { - var fetch, _$exec, _$exec2, localPart, domain, localEncoded, url; + var fetch, _$exec, _$exec2, localPart, domain, localEncoded, urlAdvanced, urlDirect; return _regenerator2.default.wrap(function _callee$(_context) { while (1) { @@ -59603,11 +60657,22 @@ WKD.prototype.lookup = function () { case 9: _context.t1 = _context.sent; localEncoded = _context.t0.encodeZBase32.call(_context.t0, _context.t1); - url = 'https://' + domain + '/.well-known/openpgpkey/hu/' + localEncoded; - return _context.abrupt('return', fetch(url).then(function (response) { + urlAdvanced = 'https://openpgpkey.' + domain + '/.well-known/openpgpkey/' + domain + '/hu/' + localEncoded; + urlDirect = 'https://' + domain + '/.well-known/openpgpkey/hu/' + localEncoded; + return _context.abrupt('return', fetch(urlAdvanced).then(function (response) { if (response.status === 200) { return response.arrayBuffer(); } + }).then(function (publicKey) { + if (publicKey) { + return publicKey; + } else { + return fetch(urlDirect).then(function (response) { + if (response.status === 200) { + return response.arrayBuffer(); + } + }); + } }).then(function (publicKey) { if (publicKey) { var rawBytes = new Uint8Array(publicKey); @@ -59618,7 +60683,7 @@ WKD.prototype.lookup = function () { } })); - case 13: + case 14: case 'end': return _context.stop(); } @@ -59776,6 +60841,7 @@ function AsyncProxy() { worker.onmessage = handleMessage(workerId++); worker.onerror = function (e) { worker.loadedResolve(false); + // eslint-disable-next-line no-console console.error('Unhandled error in openpgp worker: ' + e.message + ' (' + e.filename + ':' + e.lineno + ')'); return false; }; diff --git a/dist/compat/openpgp.min.js b/dist/compat/openpgp.min.js index c945721c..9661ae90 100644 --- a/dist/compat/openpgp.min.js +++ b/dist/compat/openpgp.min.js @@ -1,2 +1,2 @@ -/*! OpenPGP.js v4.10.4 - 2020-04-22 - this is LGPL licensed code, see LICENSE/our website https://openpgpjs.org/ for more information. */ -!function(e){if("object"==typeof exports&&"undefined"!=typeof module)module.exports=e();else if("function"==typeof define&&define.amd)define([],e);else{("undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self?self:this).openpgp=e()}}(function(){return function(){return function e(t,r,n){function a(s,o){if(!r[s]){if(!t[s]){var u="function"==typeof require&&require;if(!o&&u)return u(s,!0);if(i)return i(s,!0);var c=new Error("Cannot find module '"+s+"'");throw c.code="MODULE_NOT_FOUND",c}var f=r[s]={exports:{}};t[s][0].call(f.exports,function(e){return a(t[s][1][e]||e)},f,f.exports,e,t,r,n)}return r[s].exports}for(var i="function"==typeof require&&require,s=0;s0&&void 0!==arguments[0]?arguments[0]:{},r=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{};(0,f.default)(this,e),F(this);var n=r.size,a=r.highWaterMark;if(void 0!==t.type)throw new RangeError("Invalid type is specified");var i=P(n);void 0===a&&(a=1),function(e,t,r,n){var a=(0,c.default)(re.prototype),i=A(t,"write",1,[a]),s=A(t,"close",0,[]),o=A(t,"abort",1,[]);ne(e,a,function(){return S(t,"start",[a])},i,s,o,r,n)}(this,t,a=M(a),i)}return(0,d.default)(e,[{key:"abort",value:function(e){return!1===L(this)?h.default.reject(fe("abort")):!0===N(this)?h.default.reject(new TypeError("Cannot abort a stream that already has a writer")):q(this,e)}},{key:"getWriter",value:function(){if(!1===L(this))throw fe("getWriter");return D(this)}},{key:"locked",get:function(){if(!1===L(this))throw fe("locked");return N(this)}}]),e}();function D(e){return new J(e)}function F(e){e._state="writable",e._storedError=void 0,e._writer=void 0,e._writableStreamController=void 0,e._writeRequests=[],e._inFlightWriteRequest=void 0,e._closeRequest=void 0,e._inFlightCloseRequest=void 0,e._pendingAbortRequest=void 0,e._backpressure=!1}function L(e){return!!i(e)&&!!Object.prototype.hasOwnProperty.call(e,"_writableStreamController")}function N(e){return void 0!==e._writer}function q(e,t){var r=e._state;if("closed"===r||"errored"===r)return h.default.resolve(void 0);if(void 0!==e._pendingAbortRequest)return e._pendingAbortRequest._promise;var n=!1;"erroring"===r&&(n=!0,t=void 0);var a=new h.default(function(r,a){e._pendingAbortRequest={_promise:void 0,_resolve:r,_reject:a,_reason:t,_wasAlreadyErroring:n}});return e._pendingAbortRequest._promise=a,!1===n&&H(e,t),a}function G(e,t){"writable"!==e._state?W(e):H(e,t)}function H(e,t){var r=e._writableStreamController;e._state="erroring",e._storedError=t;var n=e._writer;void 0!==n&&Q(n,t),!1===function(e){return void 0!==e._inFlightWriteRequest||void 0!==e._inFlightCloseRequest}(e)&&!0===r._started&&W(e)}function W(e){e._state="errored",e._writableStreamController[O]();var t=e._storedError,r=!0,n=!1,a=void 0;try{for(var i,s=(0,l.default)(e._writeRequests);!(r=(i=s.next()).done);r=!0){i.value._reject(t)}}catch(u){n=!0,a=u}finally{try{!r&&s.return&&s.return()}finally{if(n)throw a}}if(e._writeRequests=[],void 0!==e._pendingAbortRequest){var o=e._pendingAbortRequest;if(e._pendingAbortRequest=void 0,!0===o._wasAlreadyErroring)return o._reject(t),void Z(e);e._writableStreamController[I](o._reason).then(function(){o._resolve(),Z(e)},function(t){o._reject(t),Z(e)})}else Z(e)}function V(e){return void 0!==e._closeRequest||void 0!==e._inFlightCloseRequest}function Z(e){void 0!==e._closeRequest&&(e._closeRequest._reject(e._storedError),e._closeRequest=void 0);var t=e._writer;void 0!==t&&be(t,e._storedError)}function Y(e,t){var r=e._writer;void 0!==r&&t!==e._backpressure&&(!0===t?me(r):we(r)),e._backpressure=t}var J=function(){function e(t){if((0,f.default)(this,e),!1===L(t))throw new TypeError("WritableStreamDefaultWriter can only be constructed with a WritableStream instance");if(!0===N(t))throw new TypeError("This stream has already been locked for exclusive writing by another writer");this._ownerWritableStream=t,t._writer=this;var r=t._state;if("writable"===r)!1===V(t)&&!0===t._backpressure?me(this):ge(this),he(this);else if("erroring"===r)ve(this,t._storedError),he(this);else if("closed"===r)ge(this),function(e){he(e),ye(e)}(this);else{var n=t._storedError;ve(this,n),pe(this,n)}}return(0,d.default)(e,[{key:"abort",value:function(e){return!1===X(this)?h.default.reject(de("abort")):void 0===this._ownerWritableStream?h.default.reject(le("abort")):function(e,t){return q(e._ownerWritableStream,t)}(this,e)}},{key:"close",value:function(){if(!1===X(this))return h.default.reject(de("close"));var e=this._ownerWritableStream;return void 0===e?h.default.reject(le("close")):!0===V(e)?h.default.reject(new TypeError("cannot close an already-closing stream")):$(this)}},{key:"releaseLock",value:function(){if(!1===X(this))throw de("releaseLock");void 0!==this._ownerWritableStream&&ee(this)}},{key:"write",value:function(e){return!1===X(this)?h.default.reject(de("write")):void 0===this._ownerWritableStream?h.default.reject(le("write to")):te(this,e)}},{key:"closed",get:function(){return!1===X(this)?h.default.reject(de("closed")):this._closedPromise}},{key:"desiredSize",get:function(){if(!1===X(this))throw de("desiredSize");if(void 0===this._ownerWritableStream)throw le("desiredSize");return e=this._ownerWritableStream,"errored"===(t=e._state)||"erroring"===t?null:"closed"===t?0:ie(e._writableStreamController);var e,t}},{key:"ready",get:function(){return!1===X(this)?h.default.reject(de("ready")):this._readyPromise}}]),e}();function X(e){return!!i(e)&&!!Object.prototype.hasOwnProperty.call(e,"_ownerWritableStream")}function $(e){var t=e._ownerWritableStream,r=t._state;if("closed"===r||"errored"===r)return h.default.reject(new TypeError("The stream (in "+r+" state) is not in the writable state and cannot be closed"));var n=new h.default(function(e,r){var n={_resolve:e,_reject:r};t._closeRequest=n});return!0===t._backpressure&&"writable"===r&&we(e),function(e){U(e,"close",0),se(e)}(t._writableStreamController),n}function Q(e,t){"pending"===e._readyPromiseState?_e(e,t):function(e,t){ve(e,t)}(e,t)}function ee(e){var t=e._ownerWritableStream,r=new TypeError("Writer was released and can no longer be used to monitor the stream's closedness");Q(e,r),function(e,t){"pending"===e._closedPromiseState?be(e,t):function(e,t){pe(e,t)}(e,t)}(e,r),t._writer=void 0,e._ownerWritableStream=void 0}function te(e,t){var r=e._ownerWritableStream,n=r._writableStreamController,a=function(e,t){try{return e._strategySizeAlgorithm(t)}catch(t){return oe(e,t),1}}(n,t);if(r!==e._ownerWritableStream)return h.default.reject(le("write to"));var i=r._state;if("errored"===i)return h.default.reject(r._storedError);if(!0===V(r)||"closed"===i)return h.default.reject(new TypeError("The stream is closing or closed and cannot be written to"));if("erroring"===i)return h.default.reject(r._storedError);var s=function(e){return new h.default(function(t,r){var n={_resolve:t,_reject:r};e._writeRequests.push(n)})}(r);return function(e,t,r){var n={chunk:t};try{U(e,n,r)}catch(t){return void oe(e,t)}var a=e._controlledWritableStream;!1===V(a)&&"writable"===a._state&&Y(a,ue(e));se(e)}(n,t,a),s}var re=function(){function e(){throw(0,f.default)(this,e),new TypeError("WritableStreamDefaultController cannot be constructed explicitly")}return(0,d.default)(e,[{key:"error",value:function(e){if(!1===function(e){return!!i(e)&&!!Object.prototype.hasOwnProperty.call(e,"_controlledWritableStream")}(this))throw new TypeError("WritableStreamDefaultController.prototype.error can only be used on a WritableStreamDefaultController");"writable"===this._controlledWritableStream._state&&ce(this,e)}},{key:I,value:function(e){var t=this._abortAlgorithm(e);return ae(this),t}},{key:O,value:function(){B(this)}}]),e}();function ne(e,t,r,n,a,i,s,o){t._controlledWritableStream=e,e._writableStreamController=t,t._queue=void 0,t._queueTotalSize=void 0,B(t),t._started=!1,t._strategySizeAlgorithm=o,t._strategyHWM=s,t._writeAlgorithm=n,t._closeAlgorithm=a,t._abortAlgorithm=i;var u=ue(t);Y(e,u);var c=r();h.default.resolve(c).then(function(){t._started=!0,se(t)},function(r){t._started=!0,G(e,r)}).catch(K)}function ae(e){e._writeAlgorithm=void 0,e._closeAlgorithm=void 0,e._abortAlgorithm=void 0,e._strategySizeAlgorithm=void 0}function ie(e){return e._strategyHWM-e._queueTotalSize}function se(e){var t=e._controlledWritableStream;if(!1!==e._started&&void 0===t._inFlightWriteRequest){var r=t._state;if("closed"!==r&&"errored"!==r)if("erroring"!==r){if(0!==e._queue.length){var n=function(e){return e._queue[0].value}(e);"close"===n?function(e){var t=e._controlledWritableStream;(function(e){e._inFlightCloseRequest=e._closeRequest,e._closeRequest=void 0})(t),R(e);var r=e._closeAlgorithm();ae(e),r.then(function(){!function(e){e._inFlightCloseRequest._resolve(void 0),e._inFlightCloseRequest=void 0,"erroring"===e._state&&(e._storedError=void 0,void 0!==e._pendingAbortRequest&&(e._pendingAbortRequest._resolve(),e._pendingAbortRequest=void 0)),e._state="closed";var t=e._writer;void 0!==t&&ye(t)}(t)},function(e){!function(e,t){e._inFlightCloseRequest._reject(t),e._inFlightCloseRequest=void 0,void 0!==e._pendingAbortRequest&&(e._pendingAbortRequest._reject(t),e._pendingAbortRequest=void 0),G(e,t)}(t,e)}).catch(K)}(e):function(e,t){var r=e._controlledWritableStream;(function(e){e._inFlightWriteRequest=e._writeRequests.shift()})(r),e._writeAlgorithm(t).then(function(){!function(e){e._inFlightWriteRequest._resolve(void 0),e._inFlightWriteRequest=void 0}(r);var t=r._state;if(R(e),!1===V(r)&&"writable"===t){var n=ue(e);Y(r,n)}se(e)},function(t){"writable"===r._state&&ae(e),function(e,t){e._inFlightWriteRequest._reject(t),e._inFlightWriteRequest=void 0,G(e,t)}(r,t)}).catch(K)}(e,n.chunk)}}else W(t)}}function oe(e,t){"writable"===e._controlledWritableStream._state&&ce(e,t)}function ue(e){return ie(e)<=0}function ce(e,t){var r=e._controlledWritableStream;ae(e),H(r,t)}function fe(e){return new TypeError("WritableStream.prototype."+e+" can only be used on a WritableStream")}function de(e){return new TypeError("WritableStreamDefaultWriter.prototype."+e+" can only be used on a WritableStreamDefaultWriter")}function le(e){return new TypeError("Cannot "+e+" a stream using a released writer")}function he(e){e._closedPromise=new h.default(function(t,r){e._closedPromise_resolve=t,e._closedPromise_reject=r,e._closedPromiseState="pending"})}function pe(e,t){he(e),be(e,t)}function be(e,t){e._closedPromise.catch(function(){}),e._closedPromise_reject(t),e._closedPromise_resolve=void 0,e._closedPromise_reject=void 0,e._closedPromiseState="rejected"}function ye(e){e._closedPromise_resolve(void 0),e._closedPromise_resolve=void 0,e._closedPromise_reject=void 0,e._closedPromiseState="resolved"}function me(e){e._readyPromise=new h.default(function(t,r){e._readyPromise_resolve=t,e._readyPromise_reject=r}),e._readyPromiseState="pending"}function ve(e,t){me(e),_e(e,t)}function ge(e){me(e),we(e)}function _e(e,t){e._readyPromise.catch(function(){}),e._readyPromise_reject(t),e._readyPromise_resolve=void 0,e._readyPromise_reject=void 0,e._readyPromiseState="rejected"}function we(e){e._readyPromise_resolve(void 0),e._readyPromise_resolve=void 0,e._readyPromise_reject=void 0,e._readyPromiseState="fulfilled"}var ke=u.default||function(e){return"number"==typeof e&&isFinite(e)&&Math.floor(e)===e},xe=t("[[CancelSteps]]"),Ae=t("[[PullSteps]]"),Se=function(){function e(){var t=arguments.length>0&&void 0!==arguments[0]?arguments[0]:{},r=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{};(0,f.default)(this,e),Me(this);var n=r.size,a=r.highWaterMark,i=t.type;if("bytes"===String(i)){if(void 0!==n)throw new RangeError("The strategy for a byte stream cannot have a size function");void 0===a&&(a=0),function(e,t,r){var n=(0,c.default)(ct.prototype),a=A(t,"pull",0,[n]),i=A(t,"cancel",1,[]),s=t.autoAllocateChunkSize;if(void 0!==s&&(s=Number(s),!1===ke(s)||s<=0))throw new RangeError("autoAllocateChunkSize must be a positive integer");!function(e,t,r,n,a,i,s){t._controlledReadableByteStream=e,t._pullAgain=!1,t._pulling=!1,ht(t),t._queue=t._queueTotalSize=void 0,B(t),t._closeRequested=!1,t._started=!1,t._strategyHWM=M(i),t._pullAlgorithm=n,t._cancelAlgorithm=a,t._autoAllocateChunkSize=s,t._pendingPullIntos=[],e._readableStreamController=t;var o=r();h.default.resolve(o).then(function(){t._started=!0,lt(t)},function(e){St(t,e)}).catch(K)}(e,n,function(){return S(t,"start",[n])},a,i,r,s)}(this,t,a=M(a))}else{if(void 0!==i)throw new RangeError("Invalid type is specified");var s=P(n);void 0===a&&(a=1),function(e,t,r,n){var a=(0,c.default)(Xe.prototype),i=A(t,"pull",0,[a]),s=A(t,"cancel",1,[]);ot(e,a,function(){return S(t,"start",[a])},i,s,r,n)}(this,t,a=M(a),s)}}return(0,d.default)(e,[{key:"cancel",value:function(e){return!1===Pe(this)?h.default.reject(Mt("cancel")):!0===Ce(this)?h.default.reject(new TypeError("Cannot cancel a stream that already has a reader")):Ue(this,e)}},{key:"getReader",value:function(){var e=(arguments.length>0&&void 0!==arguments[0]?arguments[0]:{}).mode;if(!1===Pe(this))throw Mt("getReader");if(void 0===e)return Ee(this);if("byob"===(e=String(e)))return function(e){return new Ge(e)}(this);throw new RangeError("Invalid mode is specified")}},{key:"pipeThrough",value:function(e){var t=e.writable,r=e.readable,n=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{},a=n.preventClose,i=n.preventAbort,s=n.preventCancel,o=n.signal;if(!1===Pe(this))throw Mt("pipeThrough");if(!1===L(t))throw new TypeError("writable argument to pipeThrough must be a WritableStream");if(!1===Pe(r))throw new TypeError("readable argument to pipeThrough must be a ReadableStream");if(a=Boolean(a),i=Boolean(i),s=Boolean(s),void 0!==o&&!jt(o))throw new TypeError("ReadableStream.prototype.pipeThrough's signal option must be an AbortSignal");if(!0===Ce(this))throw new TypeError("ReadableStream.prototype.pipeThrough cannot be used on a locked ReadableStream");if(!0===N(t))throw new TypeError("ReadableStream.prototype.pipeThrough cannot be used on a locked WritableStream");return Te(this,t,a,i,s,o).catch(function(){}),r}},{key:"pipeTo",value:function(e){var t=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{},r=t.preventClose,n=t.preventAbort,a=t.preventCancel,i=t.signal;return!1===Pe(this)?h.default.reject(Mt("pipeTo")):!1===L(e)?h.default.reject(new TypeError("ReadableStream.prototype.pipeTo's first argument must be a WritableStream")):(r=Boolean(r),n=Boolean(n),a=Boolean(a),void 0===i||jt(i)?!0===Ce(this)?h.default.reject(new TypeError("ReadableStream.prototype.pipeTo cannot be used on a locked ReadableStream")):!0===N(e)?h.default.reject(new TypeError("ReadableStream.prototype.pipeTo cannot be used on a locked WritableStream")):Te(this,e,r,n,a,i):h.default.reject(new TypeError("ReadableStream.prototype.pipeTo's signal option must be an AbortSignal")))}},{key:"tee",value:function(){if(!1===Pe(this))throw Mt("tee");var e=function(e,t){var r=Ee(e),n=void 0,a=void 0,i=void 0,s=void 0,o=void 0,u=!1,c=!1,f=!1,d=new h.default(function(e){o=e});function l(){return Je(r).then(function(e){var t=e.value;if(!0===e.done&&!1===u&&(!1===c&&rt(i._readableStreamController),!1===f&&rt(s._readableStreamController),u=!0),!0!==u){var r=t,n=t;!1===c&&nt(i._readableStreamController,r),!1===f&&nt(s._readableStreamController,n)}})}function p(){}return i=je(p,l,function(t){if(c=!0,n=t,!0===f){var r=_([n,a]),i=Ue(e,r);o(i)}return d}),s=je(p,l,function(t){if(f=!0,a=t,!0===c){var r=_([n,a]),i=Ue(e,r);o(i)}return d}),r._closedPromise.catch(function(e){!0!==u&&(at(i._readableStreamController,e),at(s._readableStreamController,e),u=!0)}),[i,s]}(this);return _(e)}},{key:"locked",get:function(){if(!1===Pe(this))throw Mt("locked");return Ce(this)}}]),e}();function Ee(e){return new qe(e)}function je(e,t,r){var n=arguments.length>3&&void 0!==arguments[3]?arguments[3]:1,a=arguments.length>4&&void 0!==arguments[4]?arguments[4]:function(){return 1},i=(0,c.default)(Se.prototype);return Me(i),ot(i,(0,c.default)(Xe.prototype),e,t,r,n,a),i}function Me(e){e._state="readable",e._reader=void 0,e._storedError=void 0,e._disturbed=!1}function Pe(e){return!!i(e)&&!!Object.prototype.hasOwnProperty.call(e,"_readableStreamController")}function Ce(e){return void 0!==e._reader}function Te(e,t,r,n,a,i){var s=Ee(e),o=D(t),u=!1,c=h.default.resolve();return new h.default(function(f,d){var l=void 0;if(void 0!==i){if(l=function(){var r=new DOMException("Aborted","AbortError"),i=[];!1===n&&i.push(function(){return"writable"===t._state?q(t,r):h.default.resolve()}),!1===a&&i.push(function(){return"readable"===e._state?Ue(e,r):h.default.resolve()}),m(function(){return C(i.map(function(e){return e()}),function(e){return e})},!0,r)},!0===i.aborted)return void l();i.addEventListener("abort",l)}if(y(e,s._closedPromise,function(e){!1===n?m(function(){return q(t,e)},!0,e):v(!0,e)}),y(t,o._closedPromise,function(t){!1===a?m(function(){return Ue(e,t)},!0,t):v(!0,t)}),function(e,t,r){"closed"===e._state?r():t.then(r).catch(K)}(e,s._closedPromise,function(){!1===r?m(function(){return t=(e=o)._ownerWritableStream,r=t._state,!0===V(t)||"closed"===r?h.default.resolve():"errored"===r?h.default.reject(t._storedError):$(e);var e,t,r}):v()}),!0===V(t)||"closed"===t._state){var p=new TypeError("the destination writable stream closed before all data could be piped to it");!1===a?m(function(){return Ue(e,p)},!0,p):v(!0,p)}function b(){var e=c;return c.then(function(){return e!==c?b():void 0})}function y(e,t,r){"errored"===e._state?r(e._storedError):t.catch(r).catch(K)}function m(e,r,n){function a(){e().then(function(){return g(r,n)},function(e){return g(!0,e)}).catch(K)}!0!==u&&(u=!0,"writable"===t._state&&!1===V(t)?b().then(a):a())}function v(e,r){!0!==u&&(u=!0,"writable"===t._state&&!1===V(t)?b().then(function(){return g(e,r)}).catch(K):g(e,r))}function g(e,t){ee(o),Ye(s),void 0!==i&&i.removeEventListener("abort",l),e?d(t):f(void 0)}new h.default(function(e,t){!function r(n){n?e():(!0===u?h.default.resolve(!0):o._readyPromise.then(function(){return Je(s).then(function(e){var t=e.value;return!0===e.done||(c=te(o,t).catch(function(){}),!1)})})).then(r,t)}(!1)}).catch(function(e){c=h.default.resolve(),K(e)})})}function Ke(e,t){return new h.default(function(r,n){var a={_resolve:r,_reject:n,_forAuthorCode:t};e._reader._readIntoRequests.push(a)})}function Re(e,t){return new h.default(function(r,n){var a={_resolve:r,_reject:n,_forAuthorCode:t};e._reader._readRequests.push(a)})}function Ue(e,t){return e._disturbed=!0,"closed"===e._state?h.default.resolve(void 0):"errored"===e._state?h.default.reject(e._storedError):(Be(e),e._readableStreamController[xe](t).then(function(){}))}function Be(e){e._state="closed";var t=e._reader;if(void 0!==t){if(We(t)){var r=!0,n=!1,a=void 0;try{for(var i,s=(0,l.default)(t._readRequests);!(r=(i=s.next()).done);r=!0){var o=i.value;(0,o._resolve)(Ie(void 0,!0,o._forAuthorCode))}}catch(u){n=!0,a=u}finally{try{!r&&s.return&&s.return()}finally{if(n)throw a}}t._readRequests=[]}Ut(t)}}function Ie(e,t,r){var n=null;!0===r&&(n=Object.prototype);var a=(0,c.default)(n);return Object.defineProperty(a,"value",{value:e,enumerable:!0,writable:!0,configurable:!0}),Object.defineProperty(a,"done",{value:t,enumerable:!0,writable:!0,configurable:!0}),a}function Oe(e,t){e._state="errored",e._storedError=t;var r=e._reader;if(void 0!==r){if(We(r)){var n=!0,a=!1,i=void 0;try{for(var s,o=(0,l.default)(r._readRequests);!(n=(s=o.next()).done);n=!0){s.value._reject(t)}}catch(p){a=!0,i=p}finally{try{!n&&o.return&&o.return()}finally{if(a)throw i}}r._readRequests=[]}else{var u=!0,c=!1,f=void 0;try{for(var d,h=(0,l.default)(r._readIntoRequests);!(u=(d=h.next()).done);u=!0){d.value._reject(t)}}catch(p){c=!0,f=p}finally{try{!u&&h.return&&h.return()}finally{if(c)throw f}}r._readIntoRequests=[]}Rt(r,t)}}function ze(e,t,r){var n=e._reader._readRequests.shift();n._resolve(Ie(t,r,n._forAuthorCode))}function De(e){return e._reader._readIntoRequests.length}function Fe(e){return e._reader._readRequests.length}function Le(e){var t=e._reader;return void 0!==t&&!!He(t)}function Ne(e){var t=e._reader;return void 0!==t&&!!We(t)}var qe=function(){function e(t){if((0,f.default)(this,e),!1===Pe(t))throw new TypeError("ReadableStreamDefaultReader can only be constructed with a ReadableStream instance");if(!0===Ce(t))throw new TypeError("This stream has already been locked for exclusive reading by another reader");Ve(this,t),this._readRequests=[]}return(0,d.default)(e,[{key:"cancel",value:function(e){return We(this)?void 0===this._ownerReadableStream?h.default.reject(Pt("cancel")):Ze(this,e):h.default.reject(Ct("cancel"))}},{key:"read",value:function(){return We(this)?void 0===this._ownerReadableStream?h.default.reject(Pt("read from")):Je(this,!0):h.default.reject(Ct("read"))}},{key:"releaseLock",value:function(){if(!We(this))throw Ct("releaseLock");if(void 0!==this._ownerReadableStream){if(this._readRequests.length>0)throw new TypeError("Tried to release a reader lock when that reader has pending read() calls un-settled");Ye(this)}}},{key:"closed",get:function(){return We(this)?this._closedPromise:h.default.reject(Ct("closed"))}}]),e}(),Ge=function(){function e(t){if((0,f.default)(this,e),!Pe(t))throw new TypeError("ReadableStreamBYOBReader can only be constructed with a ReadableStream instance given a byte source");if(!1===ft(t._readableStreamController))throw new TypeError("Cannot construct a ReadableStreamBYOBReader for a stream not constructed with a byte source");if(Ce(t))throw new TypeError("This stream has already been locked for exclusive reading by another reader");Ve(this,t),this._readIntoRequests=[]}return(0,d.default)(e,[{key:"cancel",value:function(e){return He(this)?void 0===this._ownerReadableStream?h.default.reject(Pt("cancel")):Ze(this,e):h.default.reject(Bt("cancel"))}},{key:"read",value:function(e){return He(this)?void 0===this._ownerReadableStream?h.default.reject(Pt("read from")):ArrayBuffer.isView(e)?(e.buffer,0===e.byteLength?h.default.reject(new TypeError("view must have non-zero byteLength")):function(e,t){var r=arguments.length>2&&void 0!==arguments[2]&&arguments[2],n=e._ownerReadableStream;return n._disturbed=!0,"errored"===n._state?h.default.reject(n._storedError):function(e,t,r){var n=e._controlledReadableByteStream,a=1;t.constructor!==DataView&&(a=t.constructor.BYTES_PER_ELEMENT);var i=t.constructor,s={buffer:j(t.buffer),byteOffset:t.byteOffset,byteLength:t.byteLength,bytesFilled:0,elementSize:a,ctor:i,readerType:"byob"};if(e._pendingPullIntos.length>0)return e._pendingPullIntos.push(s),Ke(n,r);if("closed"===n._state){var o=new i(s.buffer,s.byteOffset,0);return h.default.resolve(Ie(o,!0,r))}if(e._queueTotalSize>0){if(!0===mt(e,s)){var u=bt(s);return gt(e),h.default.resolve(Ie(u,!1,r))}if(!0===e._closeRequested){var c=new TypeError("Insufficient bytes to fill elements in the given buffer");return St(e,c),h.default.reject(c)}}e._pendingPullIntos.push(s);var f=Ke(n,r);return lt(e),f}(n._readableStreamController,t,r)}(this,e,!0)):h.default.reject(new TypeError("view must be an array buffer view")):h.default.reject(Bt("read"))}},{key:"releaseLock",value:function(){if(!He(this))throw Bt("releaseLock");if(void 0!==this._ownerReadableStream){if(this._readIntoRequests.length>0)throw new TypeError("Tried to release a reader lock when that reader has pending read() calls un-settled");Ye(this)}}},{key:"closed",get:function(){return He(this)?this._closedPromise:h.default.reject(Bt("closed"))}}]),e}();function He(e){return!!i(e)&&!!Object.prototype.hasOwnProperty.call(e,"_readIntoRequests")}function We(e){return!!i(e)&&!!Object.prototype.hasOwnProperty.call(e,"_readRequests")}function Ve(e,t){e._ownerReadableStream=t,t._reader=e,"readable"===t._state?Tt(e):"closed"===t._state?function(e){Tt(e),Ut(e)}(e):Kt(e,t._storedError)}function Ze(e,t){return Ue(e._ownerReadableStream,t)}function Ye(e){"readable"===e._ownerReadableStream._state?Rt(e,new TypeError("Reader was released and can no longer be used to monitor the stream's closedness")):function(e,t){Kt(e,new TypeError("Reader was released and can no longer be used to monitor the stream's closedness"))}(e),e._ownerReadableStream._reader=void 0,e._ownerReadableStream=void 0}function Je(e){var t=arguments.length>1&&void 0!==arguments[1]&&arguments[1],r=e._ownerReadableStream;return r._disturbed=!0,"closed"===r._state?h.default.resolve(Ie(void 0,!0,t)):"errored"===r._state?h.default.reject(r._storedError):r._readableStreamController[Ae](t)}var Xe=function(){function e(){throw(0,f.default)(this,e),new TypeError}return(0,d.default)(e,[{key:"close",value:function(){if(!1===$e(this))throw It("close");if(!1===st(this))throw new TypeError("The stream is not in a state that permits close");rt(this)}},{key:"enqueue",value:function(e){if(!1===$e(this))throw It("enqueue");if(!1===st(this))throw new TypeError("The stream is not in a state that permits enqueue");return nt(this,e)}},{key:"error",value:function(e){if(!1===$e(this))throw It("error");at(this,e)}},{key:xe,value:function(e){B(this);var t=this._cancelAlgorithm(e);return tt(this),t}},{key:Ae,value:function(e){var t=this._controlledReadableStream;if(this._queue.length>0){var r=R(this);return!0===this._closeRequested&&0===this._queue.length?(tt(this),Be(t)):Qe(this),h.default.resolve(Ie(r,!1,e))}var n=Re(t,e);return Qe(this),n}},{key:"desiredSize",get:function(){if(!1===$e(this))throw It("desiredSize");return it(this)}}]),e}();function $e(e){return!!i(e)&&!!Object.prototype.hasOwnProperty.call(e,"_controlledReadableStream")}function Qe(e){!1!==et(e)&&(!0!==e._pulling?(e._pulling=!0,e._pullAlgorithm().then(function(){if(e._pulling=!1,!0===e._pullAgain)return e._pullAgain=!1,Qe(e)},function(t){at(e,t)}).catch(K)):e._pullAgain=!0)}function et(e){var t=e._controlledReadableStream;return!1!==st(e)&&!1!==e._started&&(!0===Ce(t)&&Fe(t)>0||it(e)>0)}function tt(e){e._pullAlgorithm=void 0,e._cancelAlgorithm=void 0,e._strategySizeAlgorithm=void 0}function rt(e){var t=e._controlledReadableStream;e._closeRequested=!0,0===e._queue.length&&(tt(e),Be(t))}function nt(e,t){var r=e._controlledReadableStream;if(!0===Ce(r)&&Fe(r)>0)ze(r,t,!1);else{var n=void 0;try{n=e._strategySizeAlgorithm(t)}catch(t){throw at(e,t),t}try{U(e,t,n)}catch(t){throw at(e,t),t}}Qe(e)}function at(e,t){var r=e._controlledReadableStream;"readable"===r._state&&(B(e),tt(e),Oe(r,t))}function it(e){var t=e._controlledReadableStream._state;return"errored"===t?null:"closed"===t?0:e._strategyHWM-e._queueTotalSize}function st(e){var t=e._controlledReadableStream._state;return!1===e._closeRequested&&"readable"===t}function ot(e,t,r,n,a,i,s){t._controlledReadableStream=e,t._queue=void 0,t._queueTotalSize=void 0,B(t),t._started=!1,t._closeRequested=!1,t._pullAgain=!1,t._pulling=!1,t._strategySizeAlgorithm=s,t._strategyHWM=i,t._pullAlgorithm=n,t._cancelAlgorithm=a,e._readableStreamController=t;var o=r();h.default.resolve(o).then(function(){t._started=!0,Qe(t)},function(e){at(t,e)}).catch(K)}var ut=function(){function e(){throw(0,f.default)(this,e),new TypeError("ReadableStreamBYOBRequest cannot be used directly")}return(0,d.default)(e,[{key:"respond",value:function(e){if(!1===dt(this))throw Ot("respond");if(void 0===this._associatedReadableByteStreamController)throw new TypeError("This BYOB request has been invalidated");this._view.buffer,function(e,t){if(!1===k(t=Number(t)))throw new RangeError("bytesWritten must be a finite");kt(e,t)}(this._associatedReadableByteStreamController,e)}},{key:"respondWithNewView",value:function(e){if(!1===dt(this))throw Ot("respond");if(void 0===this._associatedReadableByteStreamController)throw new TypeError("This BYOB request has been invalidated");if(!ArrayBuffer.isView(e))throw new TypeError("You can only respond with array buffer views");e.buffer,function(e,t){var r=e._pendingPullIntos[0];if(r.byteOffset+r.bytesFilled!==t.byteOffset)throw new RangeError("The region specified by view does not match byobRequest");if(r.byteLength!==t.byteLength)throw new RangeError("The buffer of view has different capacity than byobRequest");r.buffer=t.buffer,kt(e,t.byteLength)}(this._associatedReadableByteStreamController,e)}},{key:"view",get:function(){if(!1===dt(this))throw Ot("view");return this._view}}]),e}(),ct=function(){function e(){throw(0,f.default)(this,e),new TypeError("ReadableByteStreamController constructor cannot be used directly")}return(0,d.default)(e,[{key:"close",value:function(){if(!1===ft(this))throw zt("close");if(!0===this._closeRequested)throw new TypeError("The stream has already been closed; do not close it again!");var e=this._controlledReadableByteStream._state;if("readable"!==e)throw new TypeError("The stream (in "+e+" state) is not in the readable state and cannot be closed");!function(e){var t=e._controlledReadableByteStream;if(e._queueTotalSize>0)e._closeRequested=!0;else{if(e._pendingPullIntos.length>0)if(e._pendingPullIntos[0].bytesFilled>0){var r=new TypeError("Insufficient bytes to fill elements in the given buffer");throw St(e,r),r}At(e),Be(t)}}(this)}},{key:"enqueue",value:function(e){if(!1===ft(this))throw zt("enqueue");if(!0===this._closeRequested)throw new TypeError("stream is closed or draining");var t=this._controlledReadableByteStream._state;if("readable"!==t)throw new TypeError("The stream (in "+t+" state) is not in the readable state and cannot be enqueued to");if(!ArrayBuffer.isView(e))throw new TypeError("You can only enqueue array buffer views when using a ReadableByteStreamController");e.buffer,function(e,t){var r=e._controlledReadableByteStream,n=t.buffer,a=t.byteOffset,i=t.byteLength,s=j(n);!0===Ne(r)?0===Fe(r)?yt(e,s,a,i):ze(r,new Uint8Array(s,a,i),!1):!0===Le(r)?(yt(e,s,a,i),wt(e)):yt(e,s,a,i);lt(e)}(this,e)}},{key:"error",value:function(e){if(!1===ft(this))throw zt("error");St(this,e)}},{key:xe,value:function(e){this._pendingPullIntos.length>0&&(this._pendingPullIntos[0].bytesFilled=0),B(this);var t=this._cancelAlgorithm(e);return At(this),t}},{key:Ae,value:function(e){var t=this._controlledReadableByteStream;if(this._queueTotalSize>0){var r=this._queue.shift(),n=void 0;this._queueTotalSize-=r.byteLength,gt(this);try{n=new Uint8Array(r.buffer,r.byteOffset,r.byteLength)}catch(e){return h.default.reject(e)}return h.default.resolve(Ie(n,!1,e))}var a=this._autoAllocateChunkSize;if(void 0!==a){var i=void 0;try{i=new ArrayBuffer(a)}catch(e){return h.default.reject(e)}var s={buffer:i,byteOffset:0,byteLength:a,bytesFilled:0,elementSize:1,ctor:Uint8Array,readerType:"default"};this._pendingPullIntos.push(s)}var o=Re(t,e);return lt(this),o}},{key:"byobRequest",get:function(){if(!1===ft(this))throw zt("byobRequest");if(void 0===this._byobRequest&&this._pendingPullIntos.length>0){var e=this._pendingPullIntos[0],t=new Uint8Array(e.buffer,e.byteOffset+e.bytesFilled,e.byteLength-e.bytesFilled),r=(0,c.default)(ut.prototype);!function(e,t,r){e._associatedReadableByteStreamController=t,e._view=r}(r,this,t),this._byobRequest=r}return this._byobRequest}},{key:"desiredSize",get:function(){if(!1===ft(this))throw zt("desiredSize");return Et(this)}}]),e}();function ft(e){return!!i(e)&&!!Object.prototype.hasOwnProperty.call(e,"_controlledReadableByteStream")}function dt(e){return!!i(e)&&!!Object.prototype.hasOwnProperty.call(e,"_associatedReadableByteStreamController")}function lt(e){!1!==function(e){var t=e._controlledReadableByteStream;return"readable"===t._state&&(!0!==e._closeRequested&&(!1!==e._started&&(!0===Ne(t)&&Fe(t)>0||(!0===Le(t)&&De(t)>0||Et(e)>0))))}(e)&&(!0!==e._pulling?(e._pulling=!0,e._pullAlgorithm().then(function(){e._pulling=!1,!0===e._pullAgain&&(e._pullAgain=!1,lt(e))},function(t){St(e,t)}).catch(K)):e._pullAgain=!0)}function ht(e){_t(e),e._pendingPullIntos=[]}function pt(e,t){var r=!1;"closed"===e._state&&(r=!0);var n=bt(t);"default"===t.readerType?ze(e,n,r):function(e,t,r){var n=e._reader._readIntoRequests.shift();n._resolve(Ie(t,r,n._forAuthorCode))}(e,n,r)}function bt(e){var t=e.bytesFilled,r=e.elementSize;return new e.ctor(e.buffer,e.byteOffset,t/r)}function yt(e,t,r,n){e._queue.push({buffer:t,byteOffset:r,byteLength:n}),e._queueTotalSize+=n}function mt(e,t){var r=t.elementSize,n=t.bytesFilled-t.bytesFilled%r,a=Math.min(e._queueTotalSize,t.byteLength-t.bytesFilled),i=t.bytesFilled+a,s=i-i%r,o=a,u=!1;s>n&&(o=s-t.bytesFilled,u=!0);for(var c=e._queue;o>0;){var f=c[0],d=Math.min(o,f.byteLength),l=t.byteOffset+t.bytesFilled;w(t.buffer,l,f.buffer,f.byteOffset,d),f.byteLength===d?c.shift():(f.byteOffset+=d,f.byteLength-=d),e._queueTotalSize-=d,vt(e,d,t),o-=d}return u}function vt(e,t,r){_t(e),r.bytesFilled+=t}function gt(e){0===e._queueTotalSize&&!0===e._closeRequested?(At(e),Be(e._controlledReadableByteStream)):lt(e)}function _t(e){void 0!==e._byobRequest&&(e._byobRequest._associatedReadableByteStreamController=void 0,e._byobRequest._view=void 0,e._byobRequest=void 0)}function wt(e){for(;e._pendingPullIntos.length>0;){if(0===e._queueTotalSize)return;var t=e._pendingPullIntos[0];!0===mt(e,t)&&(xt(e),pt(e._controlledReadableByteStream,t))}}function kt(e,t){var r=e._pendingPullIntos[0];if("closed"===e._controlledReadableByteStream._state){if(0!==t)throw new TypeError("bytesWritten must be 0 when calling respond() on a closed stream");!function(e,t){t.buffer=j(t.buffer);var r=e._controlledReadableByteStream;if(!0===Le(r))for(;De(r)>0;)pt(r,xt(e))}(e,r)}else!function(e,t,r){if(r.bytesFilled+t>r.byteLength)throw new RangeError("bytesWritten out of range");if(vt(e,t,r),!(r.bytesFilled0){var a=r.byteOffset+r.bytesFilled,i=r.buffer.slice(a-n,a);yt(e,i,0,i.byteLength)}r.buffer=j(r.buffer),r.bytesFilled-=n,pt(e._controlledReadableByteStream,r),wt(e)}}(e,t,r);lt(e)}function xt(e){var t=e._pendingPullIntos.shift();return _t(e),t}function At(e){e._pullAlgorithm=void 0,e._cancelAlgorithm=void 0}function St(e,t){var r=e._controlledReadableByteStream;"readable"===r._state&&(ht(e),B(e),At(e),Oe(r,t))}function Et(e){var t=e._controlledReadableByteStream._state;return"errored"===t?null:"closed"===t?0:e._strategyHWM-e._queueTotalSize}function jt(e){if("object"!=(void 0===e?"undefined":(0,v.default)(e))||null===e)return!1;var t=(0,o.default)(AbortSignal.prototype,"aborted").get;try{return t.call(e),!0}catch(e){return!1}}function Mt(e){return new TypeError("ReadableStream.prototype."+e+" can only be used on a ReadableStream")}function Pt(e){return new TypeError("Cannot "+e+" a stream using a released reader")}function Ct(e){return new TypeError("ReadableStreamDefaultReader.prototype."+e+" can only be used on a ReadableStreamDefaultReader")}function Tt(e){e._closedPromise=new h.default(function(t,r){e._closedPromise_resolve=t,e._closedPromise_reject=r})}function Kt(e,t){Tt(e),Rt(e,t)}function Rt(e,t){e._closedPromise.catch(function(){}),e._closedPromise_reject(t),e._closedPromise_resolve=void 0,e._closedPromise_reject=void 0}function Ut(e){e._closedPromise_resolve(void 0),e._closedPromise_resolve=void 0,e._closedPromise_reject=void 0}function Bt(e){return new TypeError("ReadableStreamBYOBReader.prototype."+e+" can only be used on a ReadableStreamBYOBReader")}function It(e){return new TypeError("ReadableStreamDefaultController.prototype."+e+" can only be used on a ReadableStreamDefaultController")}function Ot(e){return new TypeError("ReadableStreamBYOBRequest.prototype."+e+" can only be used on a ReadableStreamBYOBRequest")}function zt(e){return new TypeError("ReadableByteStreamController.prototype."+e+" can only be used on a ReadableByteStreamController")}var Dt=function(){function e(t){var r=t.highWaterMark;(0,f.default)(this,e),g(this,"highWaterMark",r)}return(0,d.default)(e,[{key:"size",value:function(e){return e.byteLength}}]),e}(),Ft=function(){function e(t){var r=t.highWaterMark;(0,f.default)(this,e),g(this,"highWaterMark",r)}return(0,d.default)(e,[{key:"size",value:function(){return 1}}]),e}(),Lt=function(){function e(){var t=arguments.length>0&&void 0!==arguments[0]?arguments[0]:{},r=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{},n=arguments.length>2&&void 0!==arguments[2]?arguments[2]:{};(0,f.default)(this,e);var a=r.size,i=r.highWaterMark,s=n.size,o=n.highWaterMark;if(void 0!==t.writableType)throw new RangeError("Invalid writable type specified");var u=P(a);if(void 0===i&&(i=1),i=M(i),void 0!==t.readableType)throw new RangeError("Invalid readable type specified");var d=P(s),l=void 0;void 0===o&&(o=0),o=M(o),function(e,t,r,n,a,i){function s(){return t}e._writable=function(e,t,r,n){var a=arguments.length>4&&void 0!==arguments[4]?arguments[4]:1,i=arguments.length>5&&void 0!==arguments[5]?arguments[5]:function(){return 1},s=(0,c.default)(z.prototype);return F(s),ne(s,(0,c.default)(re.prototype),e,t,r,n,a,i),s}(s,function(t){return function(e,t){var r=e._transformStreamController;return!0===e._backpressure?e._backpressureChangePromise.then(function(){var n=e._writable;if("erroring"===n._state)throw n._storedError;return Jt(r,t)}):Jt(r,t)}(e,t)},function(){return function(e){var t=e._readable,r=e._transformStreamController,n=r._flushAlgorithm();return Zt(r),n.then(function(){if("errored"===t._state)throw t._storedError;var e=t._readableStreamController;!0===st(e)&&rt(e)}).catch(function(r){throw qt(e,r),t._storedError})}(e)},function(t){return function(e,t){return qt(e,t),h.default.resolve()}(e,t)},r,n),e._readable=je(s,function(){return function(e){return Ht(e,!1),e._backpressureChangePromise}(e)},function(t){return Gt(e,t),h.default.resolve()},a,i),e._backpressure=void 0,e._backpressureChangePromise=void 0,e._backpressureChangePromise_resolve=void 0,Ht(e,!0),e._transformStreamController=void 0}(this,new h.default(function(e){l=e}),i,u,o,d),function(e,t){var r=(0,c.default)(Wt.prototype),n=function(e){try{return Yt(r,e),h.default.resolve()}catch(e){return h.default.reject(e)}},a=t.transform;if(void 0!==a){if("function"!=typeof a)throw new TypeError("transform is not a method");n=function(e){return E(a,t,[e,r])}}var i=A(t,"flush",0,[r]);!function(e,t,r,n){t._controlledTransformStream=e,e._transformStreamController=t,t._transformAlgorithm=r,t._flushAlgorithm=n}(e,r,n,i)}(this,t);var p=S(t,"start",[this._transformStreamController]);l(p)}return(0,d.default)(e,[{key:"readable",get:function(){if(!1===Nt(this))throw $t("readable");return this._readable}},{key:"writable",get:function(){if(!1===Nt(this))throw $t("writable");return this._writable}}]),e}();function Nt(e){return!!i(e)&&!!Object.prototype.hasOwnProperty.call(e,"_transformStreamController")}function qt(e,t){at(e._readable._readableStreamController,t),Gt(e,t)}function Gt(e,t){Zt(e._transformStreamController),oe(e._writable._writableStreamController,t),!0===e._backpressure&&Ht(e,!1)}function Ht(e,t){void 0!==e._backpressureChangePromise&&e._backpressureChangePromise_resolve(),e._backpressureChangePromise=new h.default(function(t){e._backpressureChangePromise_resolve=t}),e._backpressure=t}var Wt=function(){function e(){throw(0,f.default)(this,e),new TypeError("TransformStreamDefaultController instances cannot be created directly")}return(0,d.default)(e,[{key:"enqueue",value:function(e){if(!1===Vt(this))throw Xt("enqueue");Yt(this,e)}},{key:"error",value:function(e){if(!1===Vt(this))throw Xt("error");!function(e,t){qt(e._controlledTransformStream,t)}(this,e)}},{key:"terminate",value:function(){if(!1===Vt(this))throw Xt("terminate");var e,t;e=this._controlledTransformStream,!0===st(t=e._readable._readableStreamController)&&rt(t),Gt(e,new TypeError("TransformStream terminated"))}},{key:"desiredSize",get:function(){if(!1===Vt(this))throw Xt("desiredSize");return it(this._controlledTransformStream._readable._readableStreamController)}}]),e}();function Vt(e){return!!i(e)&&!!Object.prototype.hasOwnProperty.call(e,"_controlledTransformStream")}function Zt(e){e._transformAlgorithm=void 0,e._flushAlgorithm=void 0}function Yt(e,t){var r=e._controlledTransformStream,n=r._readable._readableStreamController;if(!1===st(n))throw new TypeError("Readable side is not in a state that permits enqueue");try{nt(n,t)}catch(e){throw Gt(r,e),r._readable._storedError}!0!==et(n)!==r._backpressure&&Ht(r,!0)}function Jt(e,t){return e._transformAlgorithm(t).catch(function(t){throw qt(e._controlledTransformStream,t),t})}function Xt(e){return new TypeError("TransformStreamDefaultController.prototype."+e+" can only be used on a TransformStreamDefaultController")}function $t(e){return new TypeError("TransformStream.prototype."+e+" can only be used on a TransformStream")}var Qt={ReadableStream:Se,WritableStream:z,ByteLengthQueuingStrategy:Dt,CountQueuingStrategy:Ft,TransformStream:Lt};void 0!==r&&(0,s.default)(r,Qt),e.ReadableStream=Se,e.WritableStream=z,e.ByteLengthQueuingStrategy=Dt,e.CountQueuingStrategy=Ft,e.TransformStream=Lt,Object.defineProperty(e,"__esModule",{value:!0})},"object"==(void 0===r?"undefined":(0,v.default)(r))&&void 0!==t?i(r):i((a=a||self).WebStreamsPolyfill={})}).call(this,"undefined"!=typeof global?global:"undefined"!=typeof self?self:"undefined"!=typeof window?window:{})},{"babel-runtime/core-js/get-iterator":17,"babel-runtime/core-js/number/is-integer":20,"babel-runtime/core-js/number/is-nan":21,"babel-runtime/core-js/object/assign":22,"babel-runtime/core-js/object/create":23,"babel-runtime/core-js/object/define-property":24,"babel-runtime/core-js/object/get-own-property-descriptor":26,"babel-runtime/core-js/promise":31,"babel-runtime/core-js/symbol":32,"babel-runtime/core-js/symbol/iterator":33,"babel-runtime/helpers/classCallCheck":36,"babel-runtime/helpers/createClass":37,"babel-runtime/helpers/typeof":42}],2:[function(e,t,r){"use strict";Object.defineProperty(r,"__esModule",{value:!0});r.AES_asm=function(){var e,t,r=!1;function n(r,n){var a=e[(t[r]+t[n])%255];return 0!==r&&0!==n||(a=0),a}var a,i,s,o,u=!1;function c(){function c(r){var n,a,i;for(a=i=function(r){var n=e[255-t[r]];return 0===r&&(n=0),n}(r),n=0;n<4;n++)i^=a=255&(a<<1|a>>>7);return i^=99}r||function(){e=[],t=[];var n,a,i=1;for(n=0;n<255;n++)e[n]=i,a=128&i,i<<=1,i&=255,128===a&&(i^=27),i^=e[n],t[e[n]]=n;e[255]=e[0],t[0]=0,r=!0}(),a=[],i=[],s=[[],[],[],[]],o=[[],[],[],[]];for(var f=0;f<256;f++){var d=c(f);a[f]=d,i[d]=f,s[0][f]=n(2,d)<<24|d<<16|d<<8|n(3,d),o[0][d]=n(14,f)<<24|n(9,f)<<16|n(13,f)<<8|n(11,f);for(var l=1;l<4;l++)s[l][f]=s[l-1][f]>>>8|s[l-1][f]<<24,o[l][d]=o[l-1][d]>>>8|o[l-1][d]<<24}u=!0}var f=function(e,t){u||c();var r=new Uint32Array(t);r.set(a,512),r.set(i,768);for(var n=0;n<4;n++)r.set(s[n],4096+1024*n>>2),r.set(o[n],8192+1024*n>>2);var f=function(e,t,r){"use asm";var n=0,a=0,i=0,s=0,o=0,u=0,c=0,f=0,d=0,l=0,h=0,p=0,b=0,y=0,m=0,v=0,g=0,_=0,w=0,k=0,x=0;var A=new e.Uint32Array(r),S=new e.Uint8Array(r);function E(e,t,r,o,u,c,f,d){e=e|0;t=t|0;r=r|0;o=o|0;u=u|0;c=c|0;f=f|0;d=d|0;var l=0,h=0,p=0,b=0,y=0,m=0,v=0,g=0;l=r|0x400,h=r|0x800,p=r|0xc00;u=u^A[(e|0)>>2],c=c^A[(e|4)>>2],f=f^A[(e|8)>>2],d=d^A[(e|12)>>2];for(g=16;(g|0)<=o<<4;g=g+16|0){b=A[(r|u>>22&1020)>>2]^A[(l|c>>14&1020)>>2]^A[(h|f>>6&1020)>>2]^A[(p|d<<2&1020)>>2]^A[(e|g|0)>>2],y=A[(r|c>>22&1020)>>2]^A[(l|f>>14&1020)>>2]^A[(h|d>>6&1020)>>2]^A[(p|u<<2&1020)>>2]^A[(e|g|4)>>2],m=A[(r|f>>22&1020)>>2]^A[(l|d>>14&1020)>>2]^A[(h|u>>6&1020)>>2]^A[(p|c<<2&1020)>>2]^A[(e|g|8)>>2],v=A[(r|d>>22&1020)>>2]^A[(l|u>>14&1020)>>2]^A[(h|c>>6&1020)>>2]^A[(p|f<<2&1020)>>2]^A[(e|g|12)>>2];u=b,c=y,f=m,d=v}n=A[(t|u>>22&1020)>>2]<<24^A[(t|c>>14&1020)>>2]<<16^A[(t|f>>6&1020)>>2]<<8^A[(t|d<<2&1020)>>2]^A[(e|g|0)>>2],a=A[(t|c>>22&1020)>>2]<<24^A[(t|f>>14&1020)>>2]<<16^A[(t|d>>6&1020)>>2]<<8^A[(t|u<<2&1020)>>2]^A[(e|g|4)>>2],i=A[(t|f>>22&1020)>>2]<<24^A[(t|d>>14&1020)>>2]<<16^A[(t|u>>6&1020)>>2]<<8^A[(t|c<<2&1020)>>2]^A[(e|g|8)>>2],s=A[(t|d>>22&1020)>>2]<<24^A[(t|u>>14&1020)>>2]<<16^A[(t|c>>6&1020)>>2]<<8^A[(t|f<<2&1020)>>2]^A[(e|g|12)>>2]}function j(e,t,r,n){e=e|0;t=t|0;r=r|0;n=n|0;E(0x0000,0x0800,0x1000,x,e,t,r,n)}function M(e,t,r,n){e=e|0;t=t|0;r=r|0;n=n|0;var i=0;E(0x0400,0x0c00,0x2000,x,e,n,r,t);i=a,a=s,s=i}function P(e,t,r,d){e=e|0;t=t|0;r=r|0;d=d|0;E(0x0000,0x0800,0x1000,x,o^e,u^t,c^r,f^d);o=n,u=a,c=i,f=s}function C(e,t,r,d){e=e|0;t=t|0;r=r|0;d=d|0;var l=0;E(0x0400,0x0c00,0x2000,x,e,d,r,t);l=a,a=s,s=l;n=n^o,a=a^u,i=i^c,s=s^f;o=e,u=t,c=r,f=d}function T(e,t,r,d){e=e|0;t=t|0;r=r|0;d=d|0;E(0x0000,0x0800,0x1000,x,o,u,c,f);o=n=n^e,u=a=a^t,c=i=i^r,f=s=s^d}function K(e,t,r,d){e=e|0;t=t|0;r=r|0;d=d|0;E(0x0000,0x0800,0x1000,x,o,u,c,f);n=n^e,a=a^t,i=i^r,s=s^d;o=e,u=t,c=r,f=d}function R(e,t,r,d){e=e|0;t=t|0;r=r|0;d=d|0;E(0x0000,0x0800,0x1000,x,o,u,c,f);o=n,u=a,c=i,f=s;n=n^e,a=a^t,i=i^r,s=s^d}function U(e,t,r,o){e=e|0;t=t|0;r=r|0;o=o|0;E(0x0000,0x0800,0x1000,x,d,l,h,p);p=~v&p|v&p+1;h=~m&h|m&h+((p|0)==0);l=~y&l|y&l+((h|0)==0);d=~b&d|b&d+((l|0)==0);n=n^e;a=a^t;i=i^r;s=s^o}function B(e,t,r,n){e=e|0;t=t|0;r=r|0;n=n|0;var a=0,i=0,s=0,d=0,l=0,h=0,p=0,b=0,y=0,m=0;e=e^o,t=t^u,r=r^c,n=n^f;a=g|0,i=_|0,s=w|0,d=k|0;for(;(y|0)<128;y=y+1|0){if(a>>>31){l=l^e,h=h^t,p=p^r,b=b^n}a=a<<1|i>>>31,i=i<<1|s>>>31,s=s<<1|d>>>31,d=d<<1;m=n&1;n=n>>>1|r<<31,r=r>>>1|t<<31,t=t>>>1|e<<31,e=e>>>1;if(m)e=e^0xe1000000}o=l,u=h,c=p,f=b}function I(e){e=e|0;x=e}function O(e,t,r,o){e=e|0;t=t|0;r=r|0;o=o|0;n=e,a=t,i=r,s=o}function z(e,t,r,n){e=e|0;t=t|0;r=r|0;n=n|0;o=e,u=t,c=r,f=n}function D(e,t,r,n){e=e|0;t=t|0;r=r|0;n=n|0;d=e,l=t,h=r,p=n}function F(e,t,r,n){e=e|0;t=t|0;r=r|0;n=n|0;b=e,y=t,m=r,v=n}function L(e,t,r,n){e=e|0;t=t|0;r=r|0;n=n|0;p=~v&p|v&n,h=~m&h|m&r,l=~y&l|y&t,d=~b&d|b&e}function N(e){e=e|0;if(e&15)return-1;S[e|0]=n>>>24,S[e|1]=n>>>16&255,S[e|2]=n>>>8&255,S[e|3]=n&255,S[e|4]=a>>>24,S[e|5]=a>>>16&255,S[e|6]=a>>>8&255,S[e|7]=a&255,S[e|8]=i>>>24,S[e|9]=i>>>16&255,S[e|10]=i>>>8&255,S[e|11]=i&255,S[e|12]=s>>>24,S[e|13]=s>>>16&255,S[e|14]=s>>>8&255,S[e|15]=s&255;return 16}function q(e){e=e|0;if(e&15)return-1;S[e|0]=o>>>24,S[e|1]=o>>>16&255,S[e|2]=o>>>8&255,S[e|3]=o&255,S[e|4]=u>>>24,S[e|5]=u>>>16&255,S[e|6]=u>>>8&255,S[e|7]=u&255,S[e|8]=c>>>24,S[e|9]=c>>>16&255,S[e|10]=c>>>8&255,S[e|11]=c&255,S[e|12]=f>>>24,S[e|13]=f>>>16&255,S[e|14]=f>>>8&255,S[e|15]=f&255;return 16}function G(){j(0,0,0,0);g=n,_=a,w=i,k=s}function H(e,t,r){e=e|0;t=t|0;r=r|0;var o=0;if(t&15)return-1;while((r|0)>=16){V[e&7](S[t|0]<<24|S[t|1]<<16|S[t|2]<<8|S[t|3],S[t|4]<<24|S[t|5]<<16|S[t|6]<<8|S[t|7],S[t|8]<<24|S[t|9]<<16|S[t|10]<<8|S[t|11],S[t|12]<<24|S[t|13]<<16|S[t|14]<<8|S[t|15]);S[t|0]=n>>>24,S[t|1]=n>>>16&255,S[t|2]=n>>>8&255,S[t|3]=n&255,S[t|4]=a>>>24,S[t|5]=a>>>16&255,S[t|6]=a>>>8&255,S[t|7]=a&255,S[t|8]=i>>>24,S[t|9]=i>>>16&255,S[t|10]=i>>>8&255,S[t|11]=i&255,S[t|12]=s>>>24,S[t|13]=s>>>16&255,S[t|14]=s>>>8&255,S[t|15]=s&255;o=o+16|0,t=t+16|0,r=r-16|0}return o|0}function W(e,t,r){e=e|0;t=t|0;r=r|0;var n=0;if(t&15)return-1;while((r|0)>=16){Z[e&1](S[t|0]<<24|S[t|1]<<16|S[t|2]<<8|S[t|3],S[t|4]<<24|S[t|5]<<16|S[t|6]<<8|S[t|7],S[t|8]<<24|S[t|9]<<16|S[t|10]<<8|S[t|11],S[t|12]<<24|S[t|13]<<16|S[t|14]<<8|S[t|15]);n=n+16|0,t=t+16|0,r=r-16|0}return n|0}var V=[j,M,P,C,T,K,R,U];var Z=[P,B];return{set_rounds:I,set_state:O,set_iv:z,set_nonce:D,set_mask:F,set_counter:L,get_state:N,get_iv:q,gcm_init:G,cipher:H,mac:W}}({Uint8Array:Uint8Array,Uint32Array:Uint32Array},e,t);return f.set_key=function(e,t,n,i,s,u,c,d,l){var h=r.subarray(0,60),p=r.subarray(256,316);h.set([t,n,i,s,u,c,d,l]);for(var b=e,y=1;b<4*e+28;b++){var m=h[b-1];(b%e==0||8===e&&b%e==4)&&(m=a[m>>>24]<<24^a[m>>>16&255]<<16^a[m>>>8&255]<<8^a[255&m]),b%e==0&&(m=m<<8^m>>>24^y<<24,y=y<<1^(128&y?27:0)),h[b]=h[b-e]^m}for(var v=0;v=b-4?m:o[0][a[m>>>24]]^o[1][a[m>>>16&255]]^o[2][a[m>>>8&255]]^o[3][a[255&m]];f.set_rounds(e+5)},f};return f.ENC={ECB:0,CBC:2,CFB:4,OFB:6,CTR:7},f.DEC={ECB:1,CBC:3,CFB:5,OFB:6,CTR:7},f.MAC={CBC:0,GCM:1},f.HEAP_DATA=16384,f}()},{}],3:[function(e,t,r){"use strict";Object.defineProperty(r,"__esModule",{value:!0}),r.AES=void 0;var n=e("./aes.asm"),a=e("../other/utils"),i=e("../other/errors"),s=[],o=[],u=function(){function e(e,t,r,n){void 0===r&&(r=!0),this.pos=0,this.len=0,this.mode=n,this.pos=0,this.len=0,this.key=e,this.iv=t,this.padding=r,this.acquire_asm()}return e.prototype.acquire_asm=function(){void 0===this.heap&&void 0===this.asm&&(this.heap=s.pop()||(0,a._heap_init)().subarray(n.AES_asm.HEAP_DATA),this.asm=o.pop()||(0,n.AES_asm)(null,this.heap.buffer),this.reset(this.key,this.iv))},e.prototype.release_asm=function(){s.push(this.heap),o.push(this.asm),this.heap=void 0,this.asm=void 0},e.prototype.reset=function(e,t){var r=e.length;if(16!==r&&24!==r&&32!==r)throw new i.IllegalArgumentError("illegal key size");var n=new DataView(e.buffer,e.byteOffset,e.byteLength);if(this.asm.set_key(r>>2,n.getUint32(0),n.getUint32(4),n.getUint32(8),n.getUint32(12),r>16?n.getUint32(16):0,r>16?n.getUint32(20):0,r>24?n.getUint32(24):0,r>24?n.getUint32(28):0),void 0!==t){if(16!==t.length)throw new i.IllegalArgumentError("illegal iv size");var a=new DataView(t.buffer,t.byteOffset,t.byteLength);this.asm.set_iv(a.getUint32(0),a.getUint32(4),a.getUint32(8),a.getUint32(12))}else this.asm.set_iv(0,0,0,0)},e.prototype.AES_Encrypt_process=function(e){if(!(0,a.is_bytes)(e))throw new TypeError("data isn't of expected type");this.acquire_asm();for(var t=this.asm,r=this.heap,i=n.AES_asm.ENC[this.mode],s=n.AES_asm.HEAP_DATA,o=this.pos,u=this.len,c=0,f=e.length||0,d=0,l=0,h=new Uint8Array(u+f&-16);f>0;)u+=l=(0,a._heap_write)(r,o+u,e,c,f),c+=l,f-=l,(l=t.cipher(i,s+o,u))&&h.set(r.subarray(o,o+l),d),d+=l,l0;)u+=p=(0,a._heap_write)(r,o+u,e,c,f),c+=p,f-=p,(p=t.cipher(i,s+o,u-(f?0:h)))&&b.set(r.subarray(o,o+p),d),d+=p,p0){if(o%16){if(this.hasOwnProperty("padding"))throw new i.IllegalArgumentError("data length must be a multiple of the block size");o+=16-o%16}if(e.cipher(r,a+s,o),this.hasOwnProperty("padding")&&this.padding){var c=t[s+u-1];if(c<1||c>16||c>u)throw new i.SecurityError("bad padding");for(var f=0,d=c;d>1;d--)f|=c^t[s+u-d];if(f)throw new i.SecurityError("bad padding");u-=c}}var l=new Uint8Array(u);return u>0&&l.set(t.subarray(s,s+u)),this.pos=0,this.len=0,this.release_asm(),l},e}();r.AES=u},{"../other/errors":14,"../other/utils":15,"./aes.asm":2}],4:[function(e,t,r){"use strict";Object.defineProperty(r,"__esModule",{value:!0}),r.AES_CBC=void 0;var n=o(e("babel-runtime/core-js/object/create")),a=o(e("babel-runtime/core-js/object/set-prototype-of")),i=e("./aes"),s=e("../other/utils");function o(e){return e&&e.__esModule?e:{default:e}}var u,c=(u=a.default||{__proto__:[]}instanceof Array&&function(e,t){e.__proto__=t}||function(e,t){for(var r in t)t.hasOwnProperty(r)&&(e[r]=t[r])},function(e,t){function r(){this.constructor=e}u(e,t),e.prototype=null===t?(0,n.default)(t):(r.prototype=t.prototype,new r)}),f=function(e){function t(t,r,n){return void 0===n&&(n=!0),e.call(this,t,r,n,"CBC")||this}return c(t,e),t.encrypt=function(e,r,n,a){return void 0===n&&(n=!0),new t(r,a,n).encrypt(e)},t.decrypt=function(e,r,n,a){return void 0===n&&(n=!0),new t(r,a,n).decrypt(e)},t.prototype.encrypt=function(e){var t=this.AES_Encrypt_process(e),r=this.AES_Encrypt_finish();return(0,s.joinBytes)(t,r)},t.prototype.decrypt=function(e){var t=this.AES_Decrypt_process(e),r=this.AES_Decrypt_finish();return(0,s.joinBytes)(t,r)},t}(i.AES);r.AES_CBC=f},{"../other/utils":15,"./aes":3,"babel-runtime/core-js/object/create":23,"babel-runtime/core-js/object/set-prototype-of":29}],5:[function(e,t,r){"use strict";Object.defineProperty(r,"__esModule",{value:!0}),r.AES_CFB=void 0;var n=o(e("babel-runtime/core-js/object/create")),a=o(e("babel-runtime/core-js/object/set-prototype-of")),i=e("./aes"),s=e("../other/utils");function o(e){return e&&e.__esModule?e:{default:e}}var u,c=(u=a.default||{__proto__:[]}instanceof Array&&function(e,t){e.__proto__=t}||function(e,t){for(var r in t)t.hasOwnProperty(r)&&(e[r]=t[r])},function(e,t){function r(){this.constructor=e}u(e,t),e.prototype=null===t?(0,n.default)(t):(r.prototype=t.prototype,new r)}),f=function(e){function t(t,r){var n=e.call(this,t,r,!0,"CFB")||this;return delete n.padding,n}return c(t,e),t.encrypt=function(e,r,n){return new t(r,n).encrypt(e)},t.decrypt=function(e,r,n){return new t(r,n).decrypt(e)},t.prototype.encrypt=function(e){var t=this.AES_Encrypt_process(e),r=this.AES_Encrypt_finish();return(0,s.joinBytes)(t,r)},t.prototype.decrypt=function(e){var t=this.AES_Decrypt_process(e),r=this.AES_Decrypt_finish();return(0,s.joinBytes)(t,r)},t}(i.AES);r.AES_CFB=f},{"../other/utils":15,"./aes":3,"babel-runtime/core-js/object/create":23,"babel-runtime/core-js/object/set-prototype-of":29}],6:[function(e,t,r){"use strict";Object.defineProperty(r,"__esModule",{value:!0}),r.AES_CTR=void 0;var n=u(e("babel-runtime/core-js/object/create")),a=u(e("babel-runtime/core-js/object/set-prototype-of")),i=e("./aes"),s=e("../other/errors"),o=e("../other/utils");function u(e){return e&&e.__esModule?e:{default:e}}var c,f=(c=a.default||{__proto__:[]}instanceof Array&&function(e,t){e.__proto__=t}||function(e,t){for(var r in t)t.hasOwnProperty(r)&&(e[r]=t[r])},function(e,t){function r(){this.constructor=e}c(e,t),e.prototype=null===t?(0,n.default)(t):(r.prototype=t.prototype,new r)}),d=function(e){function t(t,r){var n=e.call(this,t,void 0,!1,"CTR")||this;return delete n.padding,n.AES_CTR_set_options(r),n}return f(t,e),t.encrypt=function(e,r,n){return new t(r,n).encrypt(e)},t.decrypt=function(e,r,n){return new t(r,n).encrypt(e)},t.prototype.encrypt=function(e){var t=this.AES_Encrypt_process(e),r=this.AES_Encrypt_finish();return(0,o.joinBytes)(t,r)},t.prototype.decrypt=function(e){var t=this.AES_Encrypt_process(e),r=this.AES_Encrypt_finish();return(0,o.joinBytes)(t,r)},t.prototype.AES_CTR_set_options=function(e,t,r){if(void 0!==r){if(r<8||r>48)throw new s.IllegalArgumentError("illegal counter size");var n=Math.pow(2,r)-1;this.asm.set_mask(0,0,n/4294967296|0,0|n)}else r=48,this.asm.set_mask(0,0,65535,4294967295);if(void 0===e)throw new Error("nonce is required");var a=e.length;if(!a||a>16)throw new s.IllegalArgumentError("illegal nonce size");var i=new DataView(new ArrayBuffer(16));if(new Uint8Array(i.buffer).set(e),this.asm.set_nonce(i.getUint32(0),i.getUint32(4),i.getUint32(8),i.getUint32(12)),void 0!==t){if(t<0||t>=Math.pow(2,r))throw new s.IllegalArgumentError("illegal counter value");this.asm.set_counter(0,0,t/4294967296|0,0|t)}},t}(i.AES);r.AES_CTR=d},{"../other/errors":14,"../other/utils":15,"./aes":3,"babel-runtime/core-js/object/create":23,"babel-runtime/core-js/object/set-prototype-of":29}],7:[function(e,t,r){"use strict";Object.defineProperty(r,"__esModule",{value:!0}),r.AES_ECB=void 0;var n=o(e("babel-runtime/core-js/object/create")),a=o(e("babel-runtime/core-js/object/set-prototype-of")),i=e("./aes"),s=e("../other/utils");function o(e){return e&&e.__esModule?e:{default:e}}var u,c=(u=a.default||{__proto__:[]}instanceof Array&&function(e,t){e.__proto__=t}||function(e,t){for(var r in t)t.hasOwnProperty(r)&&(e[r]=t[r])},function(e,t){function r(){this.constructor=e}u(e,t),e.prototype=null===t?(0,n.default)(t):(r.prototype=t.prototype,new r)}),f=function(e){function t(t,r){return void 0===r&&(r=!1),e.call(this,t,void 0,r,"ECB")||this}return c(t,e),t.encrypt=function(e,r,n){return void 0===n&&(n=!1),new t(r,n).encrypt(e)},t.decrypt=function(e,r,n){return void 0===n&&(n=!1),new t(r,n).decrypt(e)},t.prototype.encrypt=function(e){var t=this.AES_Encrypt_process(e),r=this.AES_Encrypt_finish();return(0,s.joinBytes)(t,r)},t.prototype.decrypt=function(e){var t=this.AES_Decrypt_process(e),r=this.AES_Decrypt_finish();return(0,s.joinBytes)(t,r)},t}(i.AES);r.AES_ECB=f},{"../other/utils":15,"./aes":3,"babel-runtime/core-js/object/create":23,"babel-runtime/core-js/object/set-prototype-of":29}],8:[function(e,t,r){"use strict";Object.defineProperty(r,"__esModule",{value:!0}),r.AES_GCM=void 0;var n=c(e("babel-runtime/core-js/object/create")),a=c(e("babel-runtime/core-js/object/set-prototype-of")),i=e("../other/errors"),s=e("../other/utils"),o=e("./aes"),u=e("./aes.asm");function c(e){return e&&e.__esModule?e:{default:e}}var f,d=(f=a.default||{__proto__:[]}instanceof Array&&function(e,t){e.__proto__=t}||function(e,t){for(var r in t)t.hasOwnProperty(r)&&(e[r]=t[r])},function(e,t){function r(){this.constructor=e}f(e,t),e.prototype=null===t?(0,n.default)(t):(r.prototype=t.prototype,new r)}),l=68719476704,h=function(e){function t(t,r,n,a){void 0===a&&(a=16);var s=e.call(this,t,void 0,!1,"CTR")||this;if(s.tagSize=a,s.gamma0=0,s.counter=1,s.asm.gcm_init(),s.tagSize<4||s.tagSize>16)throw new i.IllegalArgumentError("illegal tagSize value");var o=r.length||0,c=new Uint8Array(16);12!==o?(s._gcm_mac_process(r),s.heap[0]=0,s.heap[1]=0,s.heap[2]=0,s.heap[3]=0,s.heap[4]=0,s.heap[5]=0,s.heap[6]=0,s.heap[7]=0,s.heap[8]=0,s.heap[9]=0,s.heap[10]=0,s.heap[11]=o>>>29,s.heap[12]=o>>>21&255,s.heap[13]=o>>>13&255,s.heap[14]=o>>>5&255,s.heap[15]=o<<3&255,s.asm.mac(u.AES_asm.MAC.GCM,u.AES_asm.HEAP_DATA,16),s.asm.get_iv(u.AES_asm.HEAP_DATA),s.asm.set_iv(0,0,0,0),c.set(s.heap.subarray(0,16))):(c.set(r),c[15]=1);var f=new DataView(c.buffer);if(s.gamma0=f.getUint32(12),s.asm.set_nonce(f.getUint32(0),f.getUint32(4),f.getUint32(8),0),s.asm.set_mask(0,0,0,4294967295),void 0!==n){if(n.length>l)throw new i.IllegalArgumentError("illegal adata length");n.length?(s.adata=n,s._gcm_mac_process(n)):s.adata=void 0}else s.adata=void 0;if(s.counter<1||s.counter>4294967295)throw new RangeError("counter must be a positive 32-bit integer");return s.asm.set_counter(0,0,0,s.gamma0+s.counter|0),s}return d(t,e),t.encrypt=function(e,r,n,a,i){return new t(r,n,a,i).encrypt(e)},t.decrypt=function(e,r,n,a,i){return new t(r,n,a,i).decrypt(e)},t.prototype.encrypt=function(e){return this.AES_GCM_encrypt(e)},t.prototype.decrypt=function(e){return this.AES_GCM_decrypt(e)},t.prototype.AES_GCM_Encrypt_process=function(e){var t=0,r=e.length||0,n=this.asm,a=this.heap,i=this.counter,o=this.pos,c=this.len,f=0,d=c+r&-16,h=0;if((i-1<<4)+c+r>l)throw new RangeError("counter overflow");for(var p=new Uint8Array(d);r>0;)c+=h=(0,s._heap_write)(a,o+c,e,t,r),t+=h,r-=h,h=n.cipher(u.AES_asm.ENC.CTR,u.AES_asm.HEAP_DATA+o,c),(h=n.mac(u.AES_asm.MAC.GCM,u.AES_asm.HEAP_DATA+o,h))&&p.set(a.subarray(o,o+h),f),i+=h>>>4,f+=h,h>>29,t[4]=f>>>21,t[5]=f>>>13&255,t[6]=f>>>5&255,t[7]=f<<3&255,t[8]=t[9]=t[10]=0,t[11]=d>>>29,t[12]=d>>>21&255,t[13]=d>>>13&255,t[14]=d>>>5&255,t[15]=d<<3&255,e.mac(u.AES_asm.MAC.GCM,u.AES_asm.HEAP_DATA,16),e.get_iv(u.AES_asm.HEAP_DATA),e.set_counter(0,0,0,this.gamma0),e.cipher(u.AES_asm.ENC.CTR,u.AES_asm.HEAP_DATA,16),o.set(t.subarray(0,n),s),this.counter=1,this.pos=0,this.len=0,o},t.prototype.AES_GCM_Decrypt_process=function(e){var t=0,r=e.length||0,n=this.asm,a=this.heap,i=this.counter,o=this.tagSize,c=this.pos,f=this.len,d=0,h=f+r>o?f+r-o&-16:0,p=f+r-h,b=0;if((i-1<<4)+f+r>l)throw new RangeError("counter overflow");for(var y=new Uint8Array(h);r>p;)f+=b=(0,s._heap_write)(a,c+f,e,t,r-p),t+=b,r-=b,b=n.mac(u.AES_asm.MAC.GCM,u.AES_asm.HEAP_DATA+c,b),(b=n.cipher(u.AES_asm.DEC.CTR,u.AES_asm.HEAP_DATA+c,b))&&y.set(a.subarray(c,c+b),d),i+=b>>>4,d+=b,c=0,f=0;return r>0&&(f+=(0,s._heap_write)(a,0,e,t,r)),this.counter=i,this.pos=c,this.len=f,y},t.prototype.AES_GCM_Decrypt_finish=function(){var e=this.asm,t=this.heap,r=this.tagSize,n=this.adata,a=this.counter,s=this.pos,o=this.len,c=o-r;if(o>>29,t[4]=h>>>21,t[5]=h>>>13&255,t[6]=h>>>5&255,t[7]=h<<3&255,t[8]=t[9]=t[10]=0,t[11]=p>>>29,t[12]=p>>>21&255,t[13]=p>>>13&255,t[14]=p>>>5&255,t[15]=p<<3&255,e.mac(u.AES_asm.MAC.GCM,u.AES_asm.HEAP_DATA,16),e.get_iv(u.AES_asm.HEAP_DATA),e.set_counter(0,0,0,this.gamma0),e.cipher(u.AES_asm.ENC.CTR,u.AES_asm.HEAP_DATA,16);for(var b=0,y=0;y0;){for(n+=i=(0,s._heap_write)(t,0,e,n,a),a-=i;15&i;)t[i++]=0;r.mac(u.AES_asm.MAC.GCM,u.AES_asm.HEAP_DATA,i)}},t}(o.AES);r.AES_GCM=h},{"../other/errors":14,"../other/utils":15,"./aes":3,"./aes.asm":2,"babel-runtime/core-js/object/create":23,"babel-runtime/core-js/object/set-prototype-of":29}],9:[function(e,t,r){"use strict";Object.defineProperty(r,"__esModule",{value:!0}),r.Hash=void 0;var n=e("../other/utils"),a=e("../other/errors"),i=function(){function e(){this.pos=0,this.len=0,this.acquire_asm()}return e.prototype.acquire_asm=function(){void 0===this.heap&&void 0===this.asm&&(this.heap=this.constructor.heap_pool.pop()||(0,n._heap_init)(),this.asm=this.constructor.asm_pool.pop()||this.constructor.asm_function({Uint8Array:Uint8Array},null,this.heap.buffer),this.reset())},e.prototype.release_asm=function(){this.constructor.heap_pool.push(this.heap),this.constructor.asm_pool.push(this.asm),this.heap=void 0,this.asm=void 0},e.prototype.reset=function(){return this.acquire_asm(),this.result=null,this.pos=0,this.len=0,this.asm.reset(),this},e.prototype.process=function(e){if(null!==this.result)throw new a.IllegalStateError("state must be reset before processing new data");this.acquire_asm();for(var t=this.asm,r=this.heap,i=this.pos,s=this.len,o=0,u=e.length,c=0;u>0;)s+=c=(0,n._heap_write)(r,i+s,e,o,u),o+=c,u-=c,i+=c=t.process(i,s),(s-=c)||(i=0);return this.pos=i,this.len=s,this},e.prototype.finish=function(){if(null!==this.result)throw new a.IllegalStateError("state must be reset before processing new data");return this.acquire_asm(),this.asm.finish(this.pos,this.len,0),this.result=new Uint8Array(this.HASH_SIZE),this.result.set(this.heap.subarray(0,this.HASH_SIZE)),this.pos=0,this.len=0,this.release_asm(),this},e}();r.Hash=i},{"../other/errors":14,"../other/utils":15}],10:[function(e,t,r){"use strict";Object.defineProperty(r,"__esModule",{value:!0});r.sha1_asm=function(e,t,r){"use asm";var n=0,a=0,i=0,s=0,o=0,u=0,c=0;var f=0,d=0,l=0,h=0,p=0,b=0,y=0,m=0,v=0,g=0;var _=new e.Uint8Array(r);function w(e,t,r,u,c,f,d,l,h,p,b,y,m,v,g,_){e=e|0;t=t|0;r=r|0;u=u|0;c=c|0;f=f|0;d=d|0;l=l|0;h=h|0;p=p|0;b=b|0;y=y|0;m=m|0;v=v|0;g=g|0;_=_|0;var w=0,k=0,x=0,A=0,S=0,E=0,j=0,M=0,P=0,C=0,T=0,K=0,R=0,U=0,B=0,I=0,O=0,z=0,D=0,F=0,L=0,N=0,q=0,G=0,H=0,W=0,V=0,Z=0,Y=0,J=0,X=0,$=0,Q=0,ee=0,te=0,re=0,ne=0,ae=0,ie=0,se=0,oe=0,ue=0,ce=0,fe=0,de=0,le=0,he=0,pe=0,be=0,ye=0,me=0,ve=0,ge=0,_e=0,we=0,ke=0,xe=0,Ae=0,Se=0,Ee=0,je=0,Me=0,Pe=0,Ce=0,Te=0,Ke=0,Re=0,Ue=0,Be=0,Ie=0,Oe=0;w=n;k=a;x=i;A=s;S=o;j=e+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;j=t+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;j=r+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;j=u+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;j=c+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;j=f+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;j=d+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;j=l+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;j=h+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;j=p+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;j=b+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;j=y+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;j=m+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;j=v+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;j=g+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;j=_+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=v^h^r^e;M=E<<1|E>>>31;j=M+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=g^p^u^t;P=E<<1|E>>>31;j=P+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=_^b^c^r;C=E<<1|E>>>31;j=C+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=M^y^f^u;T=E<<1|E>>>31;j=T+(w<<5|w>>>27)+S+(k&x|~k&A)+0x5a827999|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=P^m^d^c;K=E<<1|E>>>31;j=K+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=C^v^l^f;R=E<<1|E>>>31;j=R+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=T^g^h^d;U=E<<1|E>>>31;j=U+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=K^_^p^l;B=E<<1|E>>>31;j=B+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=R^M^b^h;I=E<<1|E>>>31;j=I+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=U^P^y^p;O=E<<1|E>>>31;j=O+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=B^C^m^b;z=E<<1|E>>>31;j=z+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=I^T^v^y;D=E<<1|E>>>31;j=D+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=O^K^g^m;F=E<<1|E>>>31;j=F+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=z^R^_^v;L=E<<1|E>>>31;j=L+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=D^U^M^g;N=E<<1|E>>>31;j=N+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=F^B^P^_;q=E<<1|E>>>31;j=q+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=L^I^C^M;G=E<<1|E>>>31;j=G+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=N^O^T^P;H=E<<1|E>>>31;j=H+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=q^z^K^C;W=E<<1|E>>>31;j=W+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=G^D^R^T;V=E<<1|E>>>31;j=V+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=H^F^U^K;Z=E<<1|E>>>31;j=Z+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=W^L^B^R;Y=E<<1|E>>>31;j=Y+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=V^N^I^U;J=E<<1|E>>>31;j=J+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=Z^q^O^B;X=E<<1|E>>>31;j=X+(w<<5|w>>>27)+S+(k^x^A)+0x6ed9eba1|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=Y^G^z^I;$=E<<1|E>>>31;j=$+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=J^H^D^O;Q=E<<1|E>>>31;j=Q+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=X^W^F^z;ee=E<<1|E>>>31;j=ee+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=$^V^L^D;te=E<<1|E>>>31;j=te+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=Q^Z^N^F;re=E<<1|E>>>31;j=re+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=ee^Y^q^L;ne=E<<1|E>>>31;j=ne+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=te^J^G^N;ae=E<<1|E>>>31;j=ae+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=re^X^H^q;ie=E<<1|E>>>31;j=ie+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=ne^$^W^G;se=E<<1|E>>>31;j=se+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=ae^Q^V^H;oe=E<<1|E>>>31;j=oe+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=ie^ee^Z^W;ue=E<<1|E>>>31;j=ue+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=se^te^Y^V;ce=E<<1|E>>>31;j=ce+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=oe^re^J^Z;fe=E<<1|E>>>31;j=fe+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=ue^ne^X^Y;de=E<<1|E>>>31;j=de+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=ce^ae^$^J;le=E<<1|E>>>31;j=le+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=fe^ie^Q^X;he=E<<1|E>>>31;j=he+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=de^se^ee^$;pe=E<<1|E>>>31;j=pe+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=le^oe^te^Q;be=E<<1|E>>>31;j=be+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=he^ue^re^ee;ye=E<<1|E>>>31;j=ye+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=pe^ce^ne^te;me=E<<1|E>>>31;j=me+(w<<5|w>>>27)+S+(k&x|k&A|x&A)-0x70e44324|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=be^fe^ae^re;ve=E<<1|E>>>31;j=ve+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=ye^de^ie^ne;ge=E<<1|E>>>31;j=ge+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=me^le^se^ae;_e=E<<1|E>>>31;j=_e+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=ve^he^oe^ie;we=E<<1|E>>>31;j=we+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=ge^pe^ue^se;ke=E<<1|E>>>31;j=ke+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=_e^be^ce^oe;xe=E<<1|E>>>31;j=xe+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=we^ye^fe^ue;Ae=E<<1|E>>>31;j=Ae+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=ke^me^de^ce;Se=E<<1|E>>>31;j=Se+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=xe^ve^le^fe;Ee=E<<1|E>>>31;j=Ee+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=Ae^ge^he^de;je=E<<1|E>>>31;j=je+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=Se^_e^pe^le;Me=E<<1|E>>>31;j=Me+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=Ee^we^be^he;Pe=E<<1|E>>>31;j=Pe+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=je^ke^ye^pe;Ce=E<<1|E>>>31;j=Ce+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=Me^xe^me^be;Te=E<<1|E>>>31;j=Te+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=Pe^Ae^ve^ye;Ke=E<<1|E>>>31;j=Ke+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=Ce^Se^ge^me;Re=E<<1|E>>>31;j=Re+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=Te^Ee^_e^ve;Ue=E<<1|E>>>31;j=Ue+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=Ke^je^we^ge;Be=E<<1|E>>>31;j=Be+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=Re^Me^ke^_e;Ie=E<<1|E>>>31;j=Ie+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;E=Ue^Pe^xe^we;Oe=E<<1|E>>>31;j=Oe+(w<<5|w>>>27)+S+(k^x^A)-0x359d3e2a|0;S=A;A=x;x=k<<30|k>>>2;k=w;w=j;n=n+w|0;a=a+k|0;i=i+x|0;s=s+A|0;o=o+S|0}function k(e){e=e|0;w(_[e|0]<<24|_[e|1]<<16|_[e|2]<<8|_[e|3],_[e|4]<<24|_[e|5]<<16|_[e|6]<<8|_[e|7],_[e|8]<<24|_[e|9]<<16|_[e|10]<<8|_[e|11],_[e|12]<<24|_[e|13]<<16|_[e|14]<<8|_[e|15],_[e|16]<<24|_[e|17]<<16|_[e|18]<<8|_[e|19],_[e|20]<<24|_[e|21]<<16|_[e|22]<<8|_[e|23],_[e|24]<<24|_[e|25]<<16|_[e|26]<<8|_[e|27],_[e|28]<<24|_[e|29]<<16|_[e|30]<<8|_[e|31],_[e|32]<<24|_[e|33]<<16|_[e|34]<<8|_[e|35],_[e|36]<<24|_[e|37]<<16|_[e|38]<<8|_[e|39],_[e|40]<<24|_[e|41]<<16|_[e|42]<<8|_[e|43],_[e|44]<<24|_[e|45]<<16|_[e|46]<<8|_[e|47],_[e|48]<<24|_[e|49]<<16|_[e|50]<<8|_[e|51],_[e|52]<<24|_[e|53]<<16|_[e|54]<<8|_[e|55],_[e|56]<<24|_[e|57]<<16|_[e|58]<<8|_[e|59],_[e|60]<<24|_[e|61]<<16|_[e|62]<<8|_[e|63])}function x(e){e=e|0;_[e|0]=n>>>24;_[e|1]=n>>>16&255;_[e|2]=n>>>8&255;_[e|3]=n&255;_[e|4]=a>>>24;_[e|5]=a>>>16&255;_[e|6]=a>>>8&255;_[e|7]=a&255;_[e|8]=i>>>24;_[e|9]=i>>>16&255;_[e|10]=i>>>8&255;_[e|11]=i&255;_[e|12]=s>>>24;_[e|13]=s>>>16&255;_[e|14]=s>>>8&255;_[e|15]=s&255;_[e|16]=o>>>24;_[e|17]=o>>>16&255;_[e|18]=o>>>8&255;_[e|19]=o&255}function A(){n=0x67452301;a=0xefcdab89;i=0x98badcfe;s=0x10325476;o=0xc3d2e1f0;u=c=0}function S(e,t,r,f,d,l,h){e=e|0;t=t|0;r=r|0;f=f|0;d=d|0;l=l|0;h=h|0;n=e;a=t;i=r;s=f;o=d;u=l;c=h}function E(e,t){e=e|0;t=t|0;var r=0;if(e&63)return-1;while((t|0)>=64){k(e);e=e+64|0;t=t-64|0;r=r+64|0}u=u+r|0;if(u>>>0>>0)c=c+1|0;return r|0}function j(e,t,r){e=e|0;t=t|0;r=r|0;var n=0,a=0;if(e&63)return-1;if(~r)if(r&31)return-1;if((t|0)>=64){n=E(e,t)|0;if((n|0)==-1)return-1;e=e+n|0;t=t-n|0}n=n+t|0;u=u+t|0;if(u>>>0>>0)c=c+1|0;_[e|t]=0x80;if((t|0)>=56){for(a=t+1|0;(a|0)<64;a=a+1|0){_[e|a]=0x00}k(e);t=0;_[e|0]=0}for(a=t+1|0;(a|0)<59;a=a+1|0){_[e|a]=0}_[e|56]=c>>>21&255;_[e|57]=c>>>13&255;_[e|58]=c>>>5&255;_[e|59]=c<<3&255|u>>>29;_[e|60]=u>>>21&255;_[e|61]=u>>>13&255;_[e|62]=u>>>5&255;_[e|63]=u<<3&255;k(e);if(~r)x(r);return n|0}function M(){n=f;a=d;i=l;s=h;o=p;u=64;c=0}function P(){n=b;a=y;i=m;s=v;o=g;u=64;c=0}function C(e,t,r,_,k,x,S,E,j,M,P,C,T,K,R,U){e=e|0;t=t|0;r=r|0;_=_|0;k=k|0;x=x|0;S=S|0;E=E|0;j=j|0;M=M|0;P=P|0;C=C|0;T=T|0;K=K|0;R=R|0;U=U|0;A();w(e^0x5c5c5c5c,t^0x5c5c5c5c,r^0x5c5c5c5c,_^0x5c5c5c5c,k^0x5c5c5c5c,x^0x5c5c5c5c,S^0x5c5c5c5c,E^0x5c5c5c5c,j^0x5c5c5c5c,M^0x5c5c5c5c,P^0x5c5c5c5c,C^0x5c5c5c5c,T^0x5c5c5c5c,K^0x5c5c5c5c,R^0x5c5c5c5c,U^0x5c5c5c5c);b=n;y=a;m=i;v=s;g=o;A();w(e^0x36363636,t^0x36363636,r^0x36363636,_^0x36363636,k^0x36363636,x^0x36363636,S^0x36363636,E^0x36363636,j^0x36363636,M^0x36363636,P^0x36363636,C^0x36363636,T^0x36363636,K^0x36363636,R^0x36363636,U^0x36363636);f=n;d=a;l=i;h=s;p=o;u=64;c=0}function T(e,t,r){e=e|0;t=t|0;r=r|0;var u=0,c=0,f=0,d=0,l=0,h=0;if(e&63)return-1;if(~r)if(r&31)return-1;h=j(e,t,-1)|0;u=n,c=a,f=i,d=s,l=o;P();w(u,c,f,d,l,0x80000000,0,0,0,0,0,0,0,0,0,672);if(~r)x(r);return h|0}function K(e,t,r,u,c){e=e|0;t=t|0;r=r|0;u=u|0;c=c|0;var f=0,d=0,l=0,h=0,p=0,b=0,y=0,m=0,v=0,g=0;if(e&63)return-1;if(~c)if(c&31)return-1;_[e+t|0]=r>>>24;_[e+t+1|0]=r>>>16&255;_[e+t+2|0]=r>>>8&255;_[e+t+3|0]=r&255;T(e,t+4|0,-1)|0;f=b=n,d=y=a,l=m=i,h=v=s,p=g=o;u=u-1|0;while((u|0)>0){M();w(b,y,m,v,g,0x80000000,0,0,0,0,0,0,0,0,0,672);b=n,y=a,m=i,v=s,g=o;P();w(b,y,m,v,g,0x80000000,0,0,0,0,0,0,0,0,0,672);b=n,y=a,m=i,v=s,g=o;f=f^n;d=d^a;l=l^i;h=h^s;p=p^o;u=u-1|0}n=f;a=d;i=l;s=h;o=p;if(~c)x(c);return 0}return{reset:A,init:S,process:E,finish:j,hmac_reset:M,hmac_init:C,hmac_finish:T,pbkdf2_generate_block:K}}},{}],11:[function(e,t,r){"use strict";Object.defineProperty(r,"__esModule",{value:!0}),r.Sha1=r._sha1_hash_size=r._sha1_block_size=void 0;var n=o(e("babel-runtime/core-js/object/create")),a=o(e("babel-runtime/core-js/object/set-prototype-of")),i=e("./sha1.asm"),s=e("../hash");function o(e){return e&&e.__esModule?e:{default:e}}var u,c=(u=a.default||{__proto__:[]}instanceof Array&&function(e,t){e.__proto__=t}||function(e,t){for(var r in t)t.hasOwnProperty(r)&&(e[r]=t[r])},function(e,t){function r(){this.constructor=e}u(e,t),e.prototype=null===t?(0,n.default)(t):(r.prototype=t.prototype,new r)}),f=r._sha1_block_size=64,d=r._sha1_hash_size=20,l=function(e){function t(){var t=null!==e&&e.apply(this,arguments)||this;return t.NAME="sha1",t.BLOCK_SIZE=f,t.HASH_SIZE=d,t}return c(t,e),t.bytes=function(e){return(new t).process(e).finish().result},t.NAME="sha1",t.heap_pool=[],t.asm_pool=[],t.asm_function=i.sha1_asm,t}(s.Hash);r.Sha1=l},{"../hash":9,"./sha1.asm":10,"babel-runtime/core-js/object/create":23,"babel-runtime/core-js/object/set-prototype-of":29}],12:[function(e,t,r){"use strict";Object.defineProperty(r,"__esModule",{value:!0});r.sha256_asm=function(e,t,r){"use asm";var n=0,a=0,i=0,s=0,o=0,u=0,c=0,f=0,d=0,l=0;var h=0,p=0,b=0,y=0,m=0,v=0,g=0,_=0,w=0,k=0,x=0,A=0,S=0,E=0,j=0,M=0;var P=new e.Uint8Array(r);function C(e,t,r,d,l,h,p,b,y,m,v,g,_,w,k,x){e=e|0;t=t|0;r=r|0;d=d|0;l=l|0;h=h|0;p=p|0;b=b|0;y=y|0;m=m|0;v=v|0;g=g|0;_=_|0;w=w|0;k=k|0;x=x|0;var A=0,S=0,E=0,j=0,M=0,P=0,C=0,T=0;A=n;S=a;E=i;j=s;M=o;P=u;C=c;T=f;T=e+T+(M>>>6^M>>>11^M>>>25^M<<26^M<<21^M<<7)+(C^M&(P^C))+0x428a2f98|0;j=j+T|0;T=T+(A&S^E&(A^S))+(A>>>2^A>>>13^A>>>22^A<<30^A<<19^A<<10)|0;C=t+C+(j>>>6^j>>>11^j>>>25^j<<26^j<<21^j<<7)+(P^j&(M^P))+0x71374491|0;E=E+C|0;C=C+(T&A^S&(T^A))+(T>>>2^T>>>13^T>>>22^T<<30^T<<19^T<<10)|0;P=r+P+(E>>>6^E>>>11^E>>>25^E<<26^E<<21^E<<7)+(M^E&(j^M))+0xb5c0fbcf|0;S=S+P|0;P=P+(C&T^A&(C^T))+(C>>>2^C>>>13^C>>>22^C<<30^C<<19^C<<10)|0;M=d+M+(S>>>6^S>>>11^S>>>25^S<<26^S<<21^S<<7)+(j^S&(E^j))+0xe9b5dba5|0;A=A+M|0;M=M+(P&C^T&(P^C))+(P>>>2^P>>>13^P>>>22^P<<30^P<<19^P<<10)|0;j=l+j+(A>>>6^A>>>11^A>>>25^A<<26^A<<21^A<<7)+(E^A&(S^E))+0x3956c25b|0;T=T+j|0;j=j+(M&P^C&(M^P))+(M>>>2^M>>>13^M>>>22^M<<30^M<<19^M<<10)|0;E=h+E+(T>>>6^T>>>11^T>>>25^T<<26^T<<21^T<<7)+(S^T&(A^S))+0x59f111f1|0;C=C+E|0;E=E+(j&M^P&(j^M))+(j>>>2^j>>>13^j>>>22^j<<30^j<<19^j<<10)|0;S=p+S+(C>>>6^C>>>11^C>>>25^C<<26^C<<21^C<<7)+(A^C&(T^A))+0x923f82a4|0;P=P+S|0;S=S+(E&j^M&(E^j))+(E>>>2^E>>>13^E>>>22^E<<30^E<<19^E<<10)|0;A=b+A+(P>>>6^P>>>11^P>>>25^P<<26^P<<21^P<<7)+(T^P&(C^T))+0xab1c5ed5|0;M=M+A|0;A=A+(S&E^j&(S^E))+(S>>>2^S>>>13^S>>>22^S<<30^S<<19^S<<10)|0;T=y+T+(M>>>6^M>>>11^M>>>25^M<<26^M<<21^M<<7)+(C^M&(P^C))+0xd807aa98|0;j=j+T|0;T=T+(A&S^E&(A^S))+(A>>>2^A>>>13^A>>>22^A<<30^A<<19^A<<10)|0;C=m+C+(j>>>6^j>>>11^j>>>25^j<<26^j<<21^j<<7)+(P^j&(M^P))+0x12835b01|0;E=E+C|0;C=C+(T&A^S&(T^A))+(T>>>2^T>>>13^T>>>22^T<<30^T<<19^T<<10)|0;P=v+P+(E>>>6^E>>>11^E>>>25^E<<26^E<<21^E<<7)+(M^E&(j^M))+0x243185be|0;S=S+P|0;P=P+(C&T^A&(C^T))+(C>>>2^C>>>13^C>>>22^C<<30^C<<19^C<<10)|0;M=g+M+(S>>>6^S>>>11^S>>>25^S<<26^S<<21^S<<7)+(j^S&(E^j))+0x550c7dc3|0;A=A+M|0;M=M+(P&C^T&(P^C))+(P>>>2^P>>>13^P>>>22^P<<30^P<<19^P<<10)|0;j=_+j+(A>>>6^A>>>11^A>>>25^A<<26^A<<21^A<<7)+(E^A&(S^E))+0x72be5d74|0;T=T+j|0;j=j+(M&P^C&(M^P))+(M>>>2^M>>>13^M>>>22^M<<30^M<<19^M<<10)|0;E=w+E+(T>>>6^T>>>11^T>>>25^T<<26^T<<21^T<<7)+(S^T&(A^S))+0x80deb1fe|0;C=C+E|0;E=E+(j&M^P&(j^M))+(j>>>2^j>>>13^j>>>22^j<<30^j<<19^j<<10)|0;S=k+S+(C>>>6^C>>>11^C>>>25^C<<26^C<<21^C<<7)+(A^C&(T^A))+0x9bdc06a7|0;P=P+S|0;S=S+(E&j^M&(E^j))+(E>>>2^E>>>13^E>>>22^E<<30^E<<19^E<<10)|0;A=x+A+(P>>>6^P>>>11^P>>>25^P<<26^P<<21^P<<7)+(T^P&(C^T))+0xc19bf174|0;M=M+A|0;A=A+(S&E^j&(S^E))+(S>>>2^S>>>13^S>>>22^S<<30^S<<19^S<<10)|0;e=(t>>>7^t>>>18^t>>>3^t<<25^t<<14)+(k>>>17^k>>>19^k>>>10^k<<15^k<<13)+e+m|0;T=e+T+(M>>>6^M>>>11^M>>>25^M<<26^M<<21^M<<7)+(C^M&(P^C))+0xe49b69c1|0;j=j+T|0;T=T+(A&S^E&(A^S))+(A>>>2^A>>>13^A>>>22^A<<30^A<<19^A<<10)|0;t=(r>>>7^r>>>18^r>>>3^r<<25^r<<14)+(x>>>17^x>>>19^x>>>10^x<<15^x<<13)+t+v|0;C=t+C+(j>>>6^j>>>11^j>>>25^j<<26^j<<21^j<<7)+(P^j&(M^P))+0xefbe4786|0;E=E+C|0;C=C+(T&A^S&(T^A))+(T>>>2^T>>>13^T>>>22^T<<30^T<<19^T<<10)|0;r=(d>>>7^d>>>18^d>>>3^d<<25^d<<14)+(e>>>17^e>>>19^e>>>10^e<<15^e<<13)+r+g|0;P=r+P+(E>>>6^E>>>11^E>>>25^E<<26^E<<21^E<<7)+(M^E&(j^M))+0x0fc19dc6|0;S=S+P|0;P=P+(C&T^A&(C^T))+(C>>>2^C>>>13^C>>>22^C<<30^C<<19^C<<10)|0;d=(l>>>7^l>>>18^l>>>3^l<<25^l<<14)+(t>>>17^t>>>19^t>>>10^t<<15^t<<13)+d+_|0;M=d+M+(S>>>6^S>>>11^S>>>25^S<<26^S<<21^S<<7)+(j^S&(E^j))+0x240ca1cc|0;A=A+M|0;M=M+(P&C^T&(P^C))+(P>>>2^P>>>13^P>>>22^P<<30^P<<19^P<<10)|0;l=(h>>>7^h>>>18^h>>>3^h<<25^h<<14)+(r>>>17^r>>>19^r>>>10^r<<15^r<<13)+l+w|0;j=l+j+(A>>>6^A>>>11^A>>>25^A<<26^A<<21^A<<7)+(E^A&(S^E))+0x2de92c6f|0;T=T+j|0;j=j+(M&P^C&(M^P))+(M>>>2^M>>>13^M>>>22^M<<30^M<<19^M<<10)|0;h=(p>>>7^p>>>18^p>>>3^p<<25^p<<14)+(d>>>17^d>>>19^d>>>10^d<<15^d<<13)+h+k|0;E=h+E+(T>>>6^T>>>11^T>>>25^T<<26^T<<21^T<<7)+(S^T&(A^S))+0x4a7484aa|0;C=C+E|0;E=E+(j&M^P&(j^M))+(j>>>2^j>>>13^j>>>22^j<<30^j<<19^j<<10)|0;p=(b>>>7^b>>>18^b>>>3^b<<25^b<<14)+(l>>>17^l>>>19^l>>>10^l<<15^l<<13)+p+x|0;S=p+S+(C>>>6^C>>>11^C>>>25^C<<26^C<<21^C<<7)+(A^C&(T^A))+0x5cb0a9dc|0;P=P+S|0;S=S+(E&j^M&(E^j))+(E>>>2^E>>>13^E>>>22^E<<30^E<<19^E<<10)|0;b=(y>>>7^y>>>18^y>>>3^y<<25^y<<14)+(h>>>17^h>>>19^h>>>10^h<<15^h<<13)+b+e|0;A=b+A+(P>>>6^P>>>11^P>>>25^P<<26^P<<21^P<<7)+(T^P&(C^T))+0x76f988da|0;M=M+A|0;A=A+(S&E^j&(S^E))+(S>>>2^S>>>13^S>>>22^S<<30^S<<19^S<<10)|0;y=(m>>>7^m>>>18^m>>>3^m<<25^m<<14)+(p>>>17^p>>>19^p>>>10^p<<15^p<<13)+y+t|0;T=y+T+(M>>>6^M>>>11^M>>>25^M<<26^M<<21^M<<7)+(C^M&(P^C))+0x983e5152|0;j=j+T|0;T=T+(A&S^E&(A^S))+(A>>>2^A>>>13^A>>>22^A<<30^A<<19^A<<10)|0;m=(v>>>7^v>>>18^v>>>3^v<<25^v<<14)+(b>>>17^b>>>19^b>>>10^b<<15^b<<13)+m+r|0;C=m+C+(j>>>6^j>>>11^j>>>25^j<<26^j<<21^j<<7)+(P^j&(M^P))+0xa831c66d|0;E=E+C|0;C=C+(T&A^S&(T^A))+(T>>>2^T>>>13^T>>>22^T<<30^T<<19^T<<10)|0;v=(g>>>7^g>>>18^g>>>3^g<<25^g<<14)+(y>>>17^y>>>19^y>>>10^y<<15^y<<13)+v+d|0;P=v+P+(E>>>6^E>>>11^E>>>25^E<<26^E<<21^E<<7)+(M^E&(j^M))+0xb00327c8|0;S=S+P|0;P=P+(C&T^A&(C^T))+(C>>>2^C>>>13^C>>>22^C<<30^C<<19^C<<10)|0;g=(_>>>7^_>>>18^_>>>3^_<<25^_<<14)+(m>>>17^m>>>19^m>>>10^m<<15^m<<13)+g+l|0;M=g+M+(S>>>6^S>>>11^S>>>25^S<<26^S<<21^S<<7)+(j^S&(E^j))+0xbf597fc7|0;A=A+M|0;M=M+(P&C^T&(P^C))+(P>>>2^P>>>13^P>>>22^P<<30^P<<19^P<<10)|0;_=(w>>>7^w>>>18^w>>>3^w<<25^w<<14)+(v>>>17^v>>>19^v>>>10^v<<15^v<<13)+_+h|0;j=_+j+(A>>>6^A>>>11^A>>>25^A<<26^A<<21^A<<7)+(E^A&(S^E))+0xc6e00bf3|0;T=T+j|0;j=j+(M&P^C&(M^P))+(M>>>2^M>>>13^M>>>22^M<<30^M<<19^M<<10)|0;w=(k>>>7^k>>>18^k>>>3^k<<25^k<<14)+(g>>>17^g>>>19^g>>>10^g<<15^g<<13)+w+p|0;E=w+E+(T>>>6^T>>>11^T>>>25^T<<26^T<<21^T<<7)+(S^T&(A^S))+0xd5a79147|0;C=C+E|0;E=E+(j&M^P&(j^M))+(j>>>2^j>>>13^j>>>22^j<<30^j<<19^j<<10)|0;k=(x>>>7^x>>>18^x>>>3^x<<25^x<<14)+(_>>>17^_>>>19^_>>>10^_<<15^_<<13)+k+b|0;S=k+S+(C>>>6^C>>>11^C>>>25^C<<26^C<<21^C<<7)+(A^C&(T^A))+0x06ca6351|0;P=P+S|0;S=S+(E&j^M&(E^j))+(E>>>2^E>>>13^E>>>22^E<<30^E<<19^E<<10)|0;x=(e>>>7^e>>>18^e>>>3^e<<25^e<<14)+(w>>>17^w>>>19^w>>>10^w<<15^w<<13)+x+y|0;A=x+A+(P>>>6^P>>>11^P>>>25^P<<26^P<<21^P<<7)+(T^P&(C^T))+0x14292967|0;M=M+A|0;A=A+(S&E^j&(S^E))+(S>>>2^S>>>13^S>>>22^S<<30^S<<19^S<<10)|0;e=(t>>>7^t>>>18^t>>>3^t<<25^t<<14)+(k>>>17^k>>>19^k>>>10^k<<15^k<<13)+e+m|0;T=e+T+(M>>>6^M>>>11^M>>>25^M<<26^M<<21^M<<7)+(C^M&(P^C))+0x27b70a85|0;j=j+T|0;T=T+(A&S^E&(A^S))+(A>>>2^A>>>13^A>>>22^A<<30^A<<19^A<<10)|0;t=(r>>>7^r>>>18^r>>>3^r<<25^r<<14)+(x>>>17^x>>>19^x>>>10^x<<15^x<<13)+t+v|0;C=t+C+(j>>>6^j>>>11^j>>>25^j<<26^j<<21^j<<7)+(P^j&(M^P))+0x2e1b2138|0;E=E+C|0;C=C+(T&A^S&(T^A))+(T>>>2^T>>>13^T>>>22^T<<30^T<<19^T<<10)|0;r=(d>>>7^d>>>18^d>>>3^d<<25^d<<14)+(e>>>17^e>>>19^e>>>10^e<<15^e<<13)+r+g|0;P=r+P+(E>>>6^E>>>11^E>>>25^E<<26^E<<21^E<<7)+(M^E&(j^M))+0x4d2c6dfc|0;S=S+P|0;P=P+(C&T^A&(C^T))+(C>>>2^C>>>13^C>>>22^C<<30^C<<19^C<<10)|0;d=(l>>>7^l>>>18^l>>>3^l<<25^l<<14)+(t>>>17^t>>>19^t>>>10^t<<15^t<<13)+d+_|0;M=d+M+(S>>>6^S>>>11^S>>>25^S<<26^S<<21^S<<7)+(j^S&(E^j))+0x53380d13|0;A=A+M|0;M=M+(P&C^T&(P^C))+(P>>>2^P>>>13^P>>>22^P<<30^P<<19^P<<10)|0;l=(h>>>7^h>>>18^h>>>3^h<<25^h<<14)+(r>>>17^r>>>19^r>>>10^r<<15^r<<13)+l+w|0;j=l+j+(A>>>6^A>>>11^A>>>25^A<<26^A<<21^A<<7)+(E^A&(S^E))+0x650a7354|0;T=T+j|0;j=j+(M&P^C&(M^P))+(M>>>2^M>>>13^M>>>22^M<<30^M<<19^M<<10)|0;h=(p>>>7^p>>>18^p>>>3^p<<25^p<<14)+(d>>>17^d>>>19^d>>>10^d<<15^d<<13)+h+k|0;E=h+E+(T>>>6^T>>>11^T>>>25^T<<26^T<<21^T<<7)+(S^T&(A^S))+0x766a0abb|0;C=C+E|0;E=E+(j&M^P&(j^M))+(j>>>2^j>>>13^j>>>22^j<<30^j<<19^j<<10)|0;p=(b>>>7^b>>>18^b>>>3^b<<25^b<<14)+(l>>>17^l>>>19^l>>>10^l<<15^l<<13)+p+x|0;S=p+S+(C>>>6^C>>>11^C>>>25^C<<26^C<<21^C<<7)+(A^C&(T^A))+0x81c2c92e|0;P=P+S|0;S=S+(E&j^M&(E^j))+(E>>>2^E>>>13^E>>>22^E<<30^E<<19^E<<10)|0;b=(y>>>7^y>>>18^y>>>3^y<<25^y<<14)+(h>>>17^h>>>19^h>>>10^h<<15^h<<13)+b+e|0;A=b+A+(P>>>6^P>>>11^P>>>25^P<<26^P<<21^P<<7)+(T^P&(C^T))+0x92722c85|0;M=M+A|0;A=A+(S&E^j&(S^E))+(S>>>2^S>>>13^S>>>22^S<<30^S<<19^S<<10)|0;y=(m>>>7^m>>>18^m>>>3^m<<25^m<<14)+(p>>>17^p>>>19^p>>>10^p<<15^p<<13)+y+t|0;T=y+T+(M>>>6^M>>>11^M>>>25^M<<26^M<<21^M<<7)+(C^M&(P^C))+0xa2bfe8a1|0;j=j+T|0;T=T+(A&S^E&(A^S))+(A>>>2^A>>>13^A>>>22^A<<30^A<<19^A<<10)|0;m=(v>>>7^v>>>18^v>>>3^v<<25^v<<14)+(b>>>17^b>>>19^b>>>10^b<<15^b<<13)+m+r|0;C=m+C+(j>>>6^j>>>11^j>>>25^j<<26^j<<21^j<<7)+(P^j&(M^P))+0xa81a664b|0;E=E+C|0;C=C+(T&A^S&(T^A))+(T>>>2^T>>>13^T>>>22^T<<30^T<<19^T<<10)|0;v=(g>>>7^g>>>18^g>>>3^g<<25^g<<14)+(y>>>17^y>>>19^y>>>10^y<<15^y<<13)+v+d|0;P=v+P+(E>>>6^E>>>11^E>>>25^E<<26^E<<21^E<<7)+(M^E&(j^M))+0xc24b8b70|0;S=S+P|0;P=P+(C&T^A&(C^T))+(C>>>2^C>>>13^C>>>22^C<<30^C<<19^C<<10)|0;g=(_>>>7^_>>>18^_>>>3^_<<25^_<<14)+(m>>>17^m>>>19^m>>>10^m<<15^m<<13)+g+l|0;M=g+M+(S>>>6^S>>>11^S>>>25^S<<26^S<<21^S<<7)+(j^S&(E^j))+0xc76c51a3|0;A=A+M|0;M=M+(P&C^T&(P^C))+(P>>>2^P>>>13^P>>>22^P<<30^P<<19^P<<10)|0;_=(w>>>7^w>>>18^w>>>3^w<<25^w<<14)+(v>>>17^v>>>19^v>>>10^v<<15^v<<13)+_+h|0;j=_+j+(A>>>6^A>>>11^A>>>25^A<<26^A<<21^A<<7)+(E^A&(S^E))+0xd192e819|0;T=T+j|0;j=j+(M&P^C&(M^P))+(M>>>2^M>>>13^M>>>22^M<<30^M<<19^M<<10)|0;w=(k>>>7^k>>>18^k>>>3^k<<25^k<<14)+(g>>>17^g>>>19^g>>>10^g<<15^g<<13)+w+p|0;E=w+E+(T>>>6^T>>>11^T>>>25^T<<26^T<<21^T<<7)+(S^T&(A^S))+0xd6990624|0;C=C+E|0;E=E+(j&M^P&(j^M))+(j>>>2^j>>>13^j>>>22^j<<30^j<<19^j<<10)|0;k=(x>>>7^x>>>18^x>>>3^x<<25^x<<14)+(_>>>17^_>>>19^_>>>10^_<<15^_<<13)+k+b|0;S=k+S+(C>>>6^C>>>11^C>>>25^C<<26^C<<21^C<<7)+(A^C&(T^A))+0xf40e3585|0;P=P+S|0;S=S+(E&j^M&(E^j))+(E>>>2^E>>>13^E>>>22^E<<30^E<<19^E<<10)|0;x=(e>>>7^e>>>18^e>>>3^e<<25^e<<14)+(w>>>17^w>>>19^w>>>10^w<<15^w<<13)+x+y|0;A=x+A+(P>>>6^P>>>11^P>>>25^P<<26^P<<21^P<<7)+(T^P&(C^T))+0x106aa070|0;M=M+A|0;A=A+(S&E^j&(S^E))+(S>>>2^S>>>13^S>>>22^S<<30^S<<19^S<<10)|0;e=(t>>>7^t>>>18^t>>>3^t<<25^t<<14)+(k>>>17^k>>>19^k>>>10^k<<15^k<<13)+e+m|0;T=e+T+(M>>>6^M>>>11^M>>>25^M<<26^M<<21^M<<7)+(C^M&(P^C))+0x19a4c116|0;j=j+T|0;T=T+(A&S^E&(A^S))+(A>>>2^A>>>13^A>>>22^A<<30^A<<19^A<<10)|0;t=(r>>>7^r>>>18^r>>>3^r<<25^r<<14)+(x>>>17^x>>>19^x>>>10^x<<15^x<<13)+t+v|0;C=t+C+(j>>>6^j>>>11^j>>>25^j<<26^j<<21^j<<7)+(P^j&(M^P))+0x1e376c08|0;E=E+C|0;C=C+(T&A^S&(T^A))+(T>>>2^T>>>13^T>>>22^T<<30^T<<19^T<<10)|0;r=(d>>>7^d>>>18^d>>>3^d<<25^d<<14)+(e>>>17^e>>>19^e>>>10^e<<15^e<<13)+r+g|0;P=r+P+(E>>>6^E>>>11^E>>>25^E<<26^E<<21^E<<7)+(M^E&(j^M))+0x2748774c|0;S=S+P|0;P=P+(C&T^A&(C^T))+(C>>>2^C>>>13^C>>>22^C<<30^C<<19^C<<10)|0;d=(l>>>7^l>>>18^l>>>3^l<<25^l<<14)+(t>>>17^t>>>19^t>>>10^t<<15^t<<13)+d+_|0;M=d+M+(S>>>6^S>>>11^S>>>25^S<<26^S<<21^S<<7)+(j^S&(E^j))+0x34b0bcb5|0;A=A+M|0;M=M+(P&C^T&(P^C))+(P>>>2^P>>>13^P>>>22^P<<30^P<<19^P<<10)|0;l=(h>>>7^h>>>18^h>>>3^h<<25^h<<14)+(r>>>17^r>>>19^r>>>10^r<<15^r<<13)+l+w|0;j=l+j+(A>>>6^A>>>11^A>>>25^A<<26^A<<21^A<<7)+(E^A&(S^E))+0x391c0cb3|0;T=T+j|0;j=j+(M&P^C&(M^P))+(M>>>2^M>>>13^M>>>22^M<<30^M<<19^M<<10)|0;h=(p>>>7^p>>>18^p>>>3^p<<25^p<<14)+(d>>>17^d>>>19^d>>>10^d<<15^d<<13)+h+k|0;E=h+E+(T>>>6^T>>>11^T>>>25^T<<26^T<<21^T<<7)+(S^T&(A^S))+0x4ed8aa4a|0;C=C+E|0;E=E+(j&M^P&(j^M))+(j>>>2^j>>>13^j>>>22^j<<30^j<<19^j<<10)|0;p=(b>>>7^b>>>18^b>>>3^b<<25^b<<14)+(l>>>17^l>>>19^l>>>10^l<<15^l<<13)+p+x|0;S=p+S+(C>>>6^C>>>11^C>>>25^C<<26^C<<21^C<<7)+(A^C&(T^A))+0x5b9cca4f|0;P=P+S|0;S=S+(E&j^M&(E^j))+(E>>>2^E>>>13^E>>>22^E<<30^E<<19^E<<10)|0;b=(y>>>7^y>>>18^y>>>3^y<<25^y<<14)+(h>>>17^h>>>19^h>>>10^h<<15^h<<13)+b+e|0;A=b+A+(P>>>6^P>>>11^P>>>25^P<<26^P<<21^P<<7)+(T^P&(C^T))+0x682e6ff3|0;M=M+A|0;A=A+(S&E^j&(S^E))+(S>>>2^S>>>13^S>>>22^S<<30^S<<19^S<<10)|0;y=(m>>>7^m>>>18^m>>>3^m<<25^m<<14)+(p>>>17^p>>>19^p>>>10^p<<15^p<<13)+y+t|0;T=y+T+(M>>>6^M>>>11^M>>>25^M<<26^M<<21^M<<7)+(C^M&(P^C))+0x748f82ee|0;j=j+T|0;T=T+(A&S^E&(A^S))+(A>>>2^A>>>13^A>>>22^A<<30^A<<19^A<<10)|0;m=(v>>>7^v>>>18^v>>>3^v<<25^v<<14)+(b>>>17^b>>>19^b>>>10^b<<15^b<<13)+m+r|0;C=m+C+(j>>>6^j>>>11^j>>>25^j<<26^j<<21^j<<7)+(P^j&(M^P))+0x78a5636f|0;E=E+C|0;C=C+(T&A^S&(T^A))+(T>>>2^T>>>13^T>>>22^T<<30^T<<19^T<<10)|0;v=(g>>>7^g>>>18^g>>>3^g<<25^g<<14)+(y>>>17^y>>>19^y>>>10^y<<15^y<<13)+v+d|0;P=v+P+(E>>>6^E>>>11^E>>>25^E<<26^E<<21^E<<7)+(M^E&(j^M))+0x84c87814|0;S=S+P|0;P=P+(C&T^A&(C^T))+(C>>>2^C>>>13^C>>>22^C<<30^C<<19^C<<10)|0;g=(_>>>7^_>>>18^_>>>3^_<<25^_<<14)+(m>>>17^m>>>19^m>>>10^m<<15^m<<13)+g+l|0;M=g+M+(S>>>6^S>>>11^S>>>25^S<<26^S<<21^S<<7)+(j^S&(E^j))+0x8cc70208|0;A=A+M|0;M=M+(P&C^T&(P^C))+(P>>>2^P>>>13^P>>>22^P<<30^P<<19^P<<10)|0;_=(w>>>7^w>>>18^w>>>3^w<<25^w<<14)+(v>>>17^v>>>19^v>>>10^v<<15^v<<13)+_+h|0;j=_+j+(A>>>6^A>>>11^A>>>25^A<<26^A<<21^A<<7)+(E^A&(S^E))+0x90befffa|0;T=T+j|0;j=j+(M&P^C&(M^P))+(M>>>2^M>>>13^M>>>22^M<<30^M<<19^M<<10)|0;w=(k>>>7^k>>>18^k>>>3^k<<25^k<<14)+(g>>>17^g>>>19^g>>>10^g<<15^g<<13)+w+p|0;E=w+E+(T>>>6^T>>>11^T>>>25^T<<26^T<<21^T<<7)+(S^T&(A^S))+0xa4506ceb|0;C=C+E|0;E=E+(j&M^P&(j^M))+(j>>>2^j>>>13^j>>>22^j<<30^j<<19^j<<10)|0;k=(x>>>7^x>>>18^x>>>3^x<<25^x<<14)+(_>>>17^_>>>19^_>>>10^_<<15^_<<13)+k+b|0;S=k+S+(C>>>6^C>>>11^C>>>25^C<<26^C<<21^C<<7)+(A^C&(T^A))+0xbef9a3f7|0;P=P+S|0;S=S+(E&j^M&(E^j))+(E>>>2^E>>>13^E>>>22^E<<30^E<<19^E<<10)|0;x=(e>>>7^e>>>18^e>>>3^e<<25^e<<14)+(w>>>17^w>>>19^w>>>10^w<<15^w<<13)+x+y|0;A=x+A+(P>>>6^P>>>11^P>>>25^P<<26^P<<21^P<<7)+(T^P&(C^T))+0xc67178f2|0;M=M+A|0;A=A+(S&E^j&(S^E))+(S>>>2^S>>>13^S>>>22^S<<30^S<<19^S<<10)|0;n=n+A|0;a=a+S|0;i=i+E|0;s=s+j|0;o=o+M|0;u=u+P|0;c=c+C|0;f=f+T|0}function T(e){e=e|0;C(P[e|0]<<24|P[e|1]<<16|P[e|2]<<8|P[e|3],P[e|4]<<24|P[e|5]<<16|P[e|6]<<8|P[e|7],P[e|8]<<24|P[e|9]<<16|P[e|10]<<8|P[e|11],P[e|12]<<24|P[e|13]<<16|P[e|14]<<8|P[e|15],P[e|16]<<24|P[e|17]<<16|P[e|18]<<8|P[e|19],P[e|20]<<24|P[e|21]<<16|P[e|22]<<8|P[e|23],P[e|24]<<24|P[e|25]<<16|P[e|26]<<8|P[e|27],P[e|28]<<24|P[e|29]<<16|P[e|30]<<8|P[e|31],P[e|32]<<24|P[e|33]<<16|P[e|34]<<8|P[e|35],P[e|36]<<24|P[e|37]<<16|P[e|38]<<8|P[e|39],P[e|40]<<24|P[e|41]<<16|P[e|42]<<8|P[e|43],P[e|44]<<24|P[e|45]<<16|P[e|46]<<8|P[e|47],P[e|48]<<24|P[e|49]<<16|P[e|50]<<8|P[e|51],P[e|52]<<24|P[e|53]<<16|P[e|54]<<8|P[e|55],P[e|56]<<24|P[e|57]<<16|P[e|58]<<8|P[e|59],P[e|60]<<24|P[e|61]<<16|P[e|62]<<8|P[e|63])}function K(e){e=e|0;P[e|0]=n>>>24;P[e|1]=n>>>16&255;P[e|2]=n>>>8&255;P[e|3]=n&255;P[e|4]=a>>>24;P[e|5]=a>>>16&255;P[e|6]=a>>>8&255;P[e|7]=a&255;P[e|8]=i>>>24;P[e|9]=i>>>16&255;P[e|10]=i>>>8&255;P[e|11]=i&255;P[e|12]=s>>>24;P[e|13]=s>>>16&255;P[e|14]=s>>>8&255;P[e|15]=s&255;P[e|16]=o>>>24;P[e|17]=o>>>16&255;P[e|18]=o>>>8&255;P[e|19]=o&255;P[e|20]=u>>>24;P[e|21]=u>>>16&255;P[e|22]=u>>>8&255;P[e|23]=u&255;P[e|24]=c>>>24;P[e|25]=c>>>16&255;P[e|26]=c>>>8&255;P[e|27]=c&255;P[e|28]=f>>>24;P[e|29]=f>>>16&255;P[e|30]=f>>>8&255;P[e|31]=f&255}function R(){n=0x6a09e667;a=0xbb67ae85;i=0x3c6ef372;s=0xa54ff53a;o=0x510e527f;u=0x9b05688c;c=0x1f83d9ab;f=0x5be0cd19;d=l=0}function U(e,t,r,h,p,b,y,m,v,g){e=e|0;t=t|0;r=r|0;h=h|0;p=p|0;b=b|0;y=y|0;m=m|0;v=v|0;g=g|0;n=e;a=t;i=r;s=h;o=p;u=b;c=y;f=m;d=v;l=g}function B(e,t){e=e|0;t=t|0;var r=0;if(e&63)return-1;while((t|0)>=64){T(e);e=e+64|0;t=t-64|0;r=r+64|0}d=d+r|0;if(d>>>0>>0)l=l+1|0;return r|0}function I(e,t,r){e=e|0;t=t|0;r=r|0;var n=0,a=0;if(e&63)return-1;if(~r)if(r&31)return-1;if((t|0)>=64){n=B(e,t)|0;if((n|0)==-1)return-1;e=e+n|0;t=t-n|0}n=n+t|0;d=d+t|0;if(d>>>0>>0)l=l+1|0;P[e|t]=0x80;if((t|0)>=56){for(a=t+1|0;(a|0)<64;a=a+1|0){P[e|a]=0x00}T(e);t=0;P[e|0]=0}for(a=t+1|0;(a|0)<59;a=a+1|0){P[e|a]=0}P[e|56]=l>>>21&255;P[e|57]=l>>>13&255;P[e|58]=l>>>5&255;P[e|59]=l<<3&255|d>>>29;P[e|60]=d>>>21&255;P[e|61]=d>>>13&255;P[e|62]=d>>>5&255;P[e|63]=d<<3&255;T(e);if(~r)K(r);return n|0}function O(){n=h;a=p;i=b;s=y;o=m;u=v;c=g;f=_;d=64;l=0}function z(){n=w;a=k;i=x;s=A;o=S;u=E;c=j;f=M;d=64;l=0}function D(e,t,r,P,T,K,U,B,I,O,z,D,F,L,N,q){e=e|0;t=t|0;r=r|0;P=P|0;T=T|0;K=K|0;U=U|0;B=B|0;I=I|0;O=O|0;z=z|0;D=D|0;F=F|0;L=L|0;N=N|0;q=q|0;R();C(e^0x5c5c5c5c,t^0x5c5c5c5c,r^0x5c5c5c5c,P^0x5c5c5c5c,T^0x5c5c5c5c,K^0x5c5c5c5c,U^0x5c5c5c5c,B^0x5c5c5c5c,I^0x5c5c5c5c,O^0x5c5c5c5c,z^0x5c5c5c5c,D^0x5c5c5c5c,F^0x5c5c5c5c,L^0x5c5c5c5c,N^0x5c5c5c5c,q^0x5c5c5c5c);w=n;k=a;x=i;A=s;S=o;E=u;j=c;M=f;R();C(e^0x36363636,t^0x36363636,r^0x36363636,P^0x36363636,T^0x36363636,K^0x36363636,U^0x36363636,B^0x36363636,I^0x36363636,O^0x36363636,z^0x36363636,D^0x36363636,F^0x36363636,L^0x36363636,N^0x36363636,q^0x36363636);h=n;p=a;b=i;y=s;m=o;v=u;g=c;_=f;d=64;l=0}function F(e,t,r){e=e|0;t=t|0;r=r|0;var d=0,l=0,h=0,p=0,b=0,y=0,m=0,v=0,g=0;if(e&63)return-1;if(~r)if(r&31)return-1;g=I(e,t,-1)|0;d=n,l=a,h=i,p=s,b=o,y=u,m=c,v=f;z();C(d,l,h,p,b,y,m,v,0x80000000,0,0,0,0,0,0,768);if(~r)K(r);return g|0}function L(e,t,r,d,l){e=e|0;t=t|0;r=r|0;d=d|0;l=l|0;var h=0,p=0,b=0,y=0,m=0,v=0,g=0,_=0,w=0,k=0,x=0,A=0,S=0,E=0,j=0,M=0;if(e&63)return-1;if(~l)if(l&31)return-1;P[e+t|0]=r>>>24;P[e+t+1|0]=r>>>16&255;P[e+t+2|0]=r>>>8&255;P[e+t+3|0]=r&255;F(e,t+4|0,-1)|0;h=w=n,p=k=a,b=x=i,y=A=s,m=S=o,v=E=u,g=j=c,_=M=f;d=d-1|0;while((d|0)>0){O();C(w,k,x,A,S,E,j,M,0x80000000,0,0,0,0,0,0,768);w=n,k=a,x=i,A=s,S=o,E=u,j=c,M=f;z();C(w,k,x,A,S,E,j,M,0x80000000,0,0,0,0,0,0,768);w=n,k=a,x=i,A=s,S=o,E=u,j=c,M=f;h=h^n;p=p^a;b=b^i;y=y^s;m=m^o;v=v^u;g=g^c;_=_^f;d=d-1|0}n=h;a=p;i=b;s=y;o=m;u=v;c=g;f=_;if(~l)K(l);return 0}return{reset:R,init:U,process:B,finish:I,hmac_reset:O,hmac_init:D,hmac_finish:F,pbkdf2_generate_block:L}}},{}],13:[function(e,t,r){"use strict";Object.defineProperty(r,"__esModule",{value:!0}),r.Sha256=r._sha256_hash_size=r._sha256_block_size=void 0;var n=o(e("babel-runtime/core-js/object/create")),a=o(e("babel-runtime/core-js/object/set-prototype-of")),i=e("./sha256.asm"),s=e("../hash");function o(e){return e&&e.__esModule?e:{default:e}}var u,c=(u=a.default||{__proto__:[]}instanceof Array&&function(e,t){e.__proto__=t}||function(e,t){for(var r in t)t.hasOwnProperty(r)&&(e[r]=t[r])},function(e,t){function r(){this.constructor=e}u(e,t),e.prototype=null===t?(0,n.default)(t):(r.prototype=t.prototype,new r)}),f=r._sha256_block_size=64,d=r._sha256_hash_size=32,l=function(e){function t(){var t=null!==e&&e.apply(this,arguments)||this;return t.NAME="sha256",t.BLOCK_SIZE=f,t.HASH_SIZE=d,t}return c(t,e),t.bytes=function(e){return(new t).process(e).finish().result},t.NAME="sha256",t.heap_pool=[],t.asm_pool=[],t.asm_function=i.sha256_asm,t}(s.Hash);r.Sha256=l},{"../hash":9,"./sha256.asm":12,"babel-runtime/core-js/object/create":23,"babel-runtime/core-js/object/set-prototype-of":29}],14:[function(e,t,r){"use strict";Object.defineProperty(r,"__esModule",{value:!0}),r.SecurityError=r.IllegalArgumentError=r.IllegalStateError=void 0;var n=i(e("babel-runtime/core-js/object/create")),a=i(e("babel-runtime/core-js/object/set-prototype-of"));function i(e){return e&&e.__esModule?e:{default:e}}var s,o=(s=a.default||{__proto__:[]}instanceof Array&&function(e,t){e.__proto__=t}||function(e,t){for(var r in t)t.hasOwnProperty(r)&&(e[r]=t[r])},function(e,t){function r(){this.constructor=e}s(e,t),e.prototype=null===t?(0,n.default)(t):(r.prototype=t.prototype,new r)}),u=function(e){function t(){for(var t=[],r=0;r>1),n=0;n>1]=parseInt(e.substr(n,2),16);return r},r.base64_to_bytes=function(e){return i(n(e))},r.bytes_to_string=s,r.bytes_to_hex=function(e){for(var t="",r=0;r>>1,e|=e>>>2,e|=e>>>4,e|=e>>>8,e|=e>>>16,e+=1},r.is_number=function(e){return"number"==typeof e},r.is_string=function(e){return"string"==typeof e},r.is_buffer=function(e){return e instanceof ArrayBuffer},r.is_bytes=function(e){return e instanceof Uint8Array},r.is_typed_array=function(e){return e instanceof Int8Array||e instanceof Uint8Array||e instanceof Int16Array||e instanceof Uint16Array||e instanceof Int32Array||e instanceof Uint32Array||e instanceof Float32Array||e instanceof Float64Array},r._heap_init=function(e,t){var r=e?e.byteLength:t||65536;if(4095&r||r<=0)throw new Error("heap size must be a positive integer and a multiple of 4096");return e=e||new Uint8Array(new ArrayBuffer(r))},r._heap_write=function(e,t,r,n,a){var i=e.length-t,s=i=r)throw new Error("Malformed string, low surrogate expected at position "+a);s=(55296^s)<<10|65536|56320^e.charCodeAt(a)}else if(!t&&s>>>8)throw new Error("Wide characters are not allowed.");!t||s<=127?n[i++]=s:s<=2047?(n[i++]=192|s>>6,n[i++]=128|63&s):s<=65535?(n[i++]=224|s>>12,n[i++]=128|s>>6&63,n[i++]=128|63&s):(n[i++]=240|s>>18,n[i++]=128|s>>12&63,n[i++]=128|s>>6&63,n[i++]=128|63&s)}return n.subarray(0,i)}function s(e,t){void 0===t&&(t=!1);for(var r=e.length,n=new Array(r),a=0,i=0;a=192&&s<224&&a+1=224&&s<240&&a+2=240&&s<248&&a+3>10,n[i++]=56320|1023&o)}}var u="";for(a=0;a=49&&s<=54?s-49+10:s>=17&&s<=22?s-17+10:15&s}return n}function u(e,t,r,n){for(var a=0,i=Math.min(e.length,r),s=t;s=49?o-49+10:o>=17?o-17+10:o}return a}i.isBN=function(e){return e instanceof i||null!==e&&"object"==typeof e&&e.constructor.wordSize===i.wordSize&&Array.isArray(e.words)},i.max=function(e,t){return e.cmp(t)>0?e:t},i.min=function(e,t){return e.cmp(t)<0?e:t},i.prototype._init=function(e,t,r){if("number"==typeof e)return this._initNumber(e,t,r);if("object"==typeof e)return this._initArray(e,t,r);"hex"===t&&(t=16),n(t===(0|t)&&t>=2&&t<=36);var a=0;"-"===(e=e.toString().replace(/\s+/g,""))[0]&&a++,16===t?this._parseHex(e,a):this._parseBase(e,t,a),"-"===e[0]&&(this.negative=1),this.strip(),"le"===r&&this._initArray(this.toArray(),t,r)},i.prototype._initNumber=function(e,t,r){e<0&&(this.negative=1,e=-e),e<67108864?(this.words=[67108863&e],this.length=1):e<4503599627370496?(this.words=[67108863&e,e/67108864&67108863],this.length=2):(n(e<9007199254740992),this.words=[67108863&e,e/67108864&67108863,1],this.length=3),"le"===r&&this._initArray(this.toArray(),t,r)},i.prototype._initArray=function(e,t,r){if(n("number"==typeof e.length),e.length<=0)return this.words=[0],this.length=1,this;this.length=Math.ceil(e.length/3),this.words=new Array(this.length);for(var a=0;a=0;a-=3)s=e[a]|e[a-1]<<8|e[a-2]<<16,this.words[i]|=s<>>26-o&67108863,(o+=24)>=26&&(o-=26,i++);else if("le"===r)for(a=0,i=0;a>>26-o&67108863,(o+=24)>=26&&(o-=26,i++);return this.strip()},i.prototype._parseHex=function(e,t){this.length=Math.ceil((e.length-t)/6),this.words=new Array(this.length);for(var r=0;r=t;r-=6)a=o(e,r,r+6),this.words[n]|=a<>>26-i&4194303,(i+=24)>=26&&(i-=26,n++);r+6!==t&&(a=o(e,t,r+6),this.words[n]|=a<>>26-i&4194303),this.strip()},i.prototype._parseBase=function(e,t,r){this.words=[0],this.length=1;for(var n=0,a=1;a<=67108863;a*=t)n++;n--,a=a/t|0;for(var i=e.length-r,s=i%n,o=Math.min(i,i-s)+r,c=0,f=r;f1&&0===this.words[this.length-1];)this.length--;return this._normSign()},i.prototype._normSign=function(){return 1===this.length&&0===this.words[0]&&(this.negative=0),this},i.prototype.inspect=function(){return(this.red?""};var c=["","0","00","000","0000","00000","000000","0000000","00000000","000000000","0000000000","00000000000","000000000000","0000000000000","00000000000000","000000000000000","0000000000000000","00000000000000000","000000000000000000","0000000000000000000","00000000000000000000","000000000000000000000","0000000000000000000000","00000000000000000000000","000000000000000000000000","0000000000000000000000000"],f=[0,0,25,16,12,11,10,9,8,8,7,7,7,7,6,6,6,6,6,6,6,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5],d=[0,0,33554432,43046721,16777216,48828125,60466176,40353607,16777216,43046721,1e7,19487171,35831808,62748517,7529536,11390625,16777216,24137569,34012224,47045881,64e6,4084101,5153632,6436343,7962624,9765625,11881376,14348907,17210368,20511149,243e5,28629151,33554432,39135393,45435424,52521875,60466176];function l(e,t,r){r.negative=t.negative^e.negative;var n=e.length+t.length|0;r.length=n,n=n-1|0;var a=0|e.words[0],i=0|t.words[0],s=a*i,o=67108863&s,u=s/67108864|0;r.words[0]=o;for(var c=1;c>>26,d=67108863&u,l=Math.min(c,t.length-1),h=Math.max(0,c-e.length+1);h<=l;h++){var p=c-h|0;f+=(s=(a=0|e.words[p])*(i=0|t.words[h])+d)/67108864|0,d=67108863&s}r.words[c]=0|d,u=0|f}return 0!==u?r.words[c]=0|u:r.length--,r.strip()}i.prototype.toString=function(e,t){var r;if(t=0|t||1,16===(e=e||10)||"hex"===e){r="";for(var a=0,i=0,s=0;s>>24-a&16777215)||s!==this.length-1?c[6-u.length]+u+r:u+r,(a+=2)>=26&&(a-=26,s--)}for(0!==i&&(r=i.toString(16)+r);r.length%t!=0;)r="0"+r;return 0!==this.negative&&(r="-"+r),r}if(e===(0|e)&&e>=2&&e<=36){var l=f[e],h=d[e];r="";var p=this.clone();for(p.negative=0;!p.isZero();){var b=p.modn(h).toString(e);r=(p=p.idivn(h)).isZero()?b+r:c[l-b.length]+b+r}for(this.isZero()&&(r="0"+r);r.length%t!=0;)r="0"+r;return 0!==this.negative&&(r="-"+r),r}n(!1,"Base should be between 2 and 36")},i.prototype.toNumber=function(){var e=this.words[0];return 2===this.length?e+=67108864*this.words[1]:3===this.length&&1===this.words[2]?e+=4503599627370496+67108864*this.words[1]:this.length>2&&n(!1,"Number can only safely store up to 53 bits"),0!==this.negative?-e:e},i.prototype.toJSON=function(){return this.toString(16)},i.prototype.toBuffer=function(e,t){return n(void 0!==s),this.toArrayLike(s,e,t)},i.prototype.toArray=function(e,t){return this.toArrayLike(Array,e,t)},i.prototype.toArrayLike=function(e,t,r){var a=this.byteLength(),i=r||Math.max(1,a);n(a<=i,"byte array longer than desired length"),n(i>0,"Requested array length <= 0"),this.strip();var s,o,u="le"===t,c=new e(i),f=this.clone();if(u){for(o=0;!f.isZero();o++)s=f.andln(255),f.iushrn(8),c[o]=s;for(;o=4096&&(r+=13,t>>>=13),t>=64&&(r+=7,t>>>=7),t>=8&&(r+=4,t>>>=4),t>=2&&(r+=2,t>>>=2),r+t},i.prototype._zeroBits=function(e){if(0===e)return 26;var t=e,r=0;return 0==(8191&t)&&(r+=13,t>>>=13),0==(127&t)&&(r+=7,t>>>=7),0==(15&t)&&(r+=4,t>>>=4),0==(3&t)&&(r+=2,t>>>=2),0==(1&t)&&r++,r},i.prototype.bitLength=function(){var e=this.words[this.length-1],t=this._countBits(e);return 26*(this.length-1)+t},i.prototype.zeroBits=function(){if(this.isZero())return 0;for(var e=0,t=0;te.length?this.clone().ior(e):e.clone().ior(this)},i.prototype.uor=function(e){return this.length>e.length?this.clone().iuor(e):e.clone().iuor(this)},i.prototype.iuand=function(e){var t;t=this.length>e.length?e:this;for(var r=0;re.length?this.clone().iand(e):e.clone().iand(this)},i.prototype.uand=function(e){return this.length>e.length?this.clone().iuand(e):e.clone().iuand(this)},i.prototype.iuxor=function(e){var t,r;this.length>e.length?(t=this,r=e):(t=e,r=this);for(var n=0;ne.length?this.clone().ixor(e):e.clone().ixor(this)},i.prototype.uxor=function(e){return this.length>e.length?this.clone().iuxor(e):e.clone().iuxor(this)},i.prototype.inotn=function(e){n("number"==typeof e&&e>=0);var t=0|Math.ceil(e/26),r=e%26;this._expand(t),r>0&&t--;for(var a=0;a0&&(this.words[a]=~this.words[a]&67108863>>26-r),this.strip()},i.prototype.notn=function(e){return this.clone().inotn(e)},i.prototype.setn=function(e,t){n("number"==typeof e&&e>=0);var r=e/26|0,a=e%26;return this._expand(r+1),this.words[r]=t?this.words[r]|1<e.length?(r=this,n=e):(r=e,n=this);for(var a=0,i=0;i>>26;for(;0!==a&&i>>26;if(this.length=r.length,0!==a)this.words[this.length]=a,this.length++;else if(r!==this)for(;ie.length?this.clone().iadd(e):e.clone().iadd(this)},i.prototype.isub=function(e){if(0!==e.negative){e.negative=0;var t=this.iadd(e);return e.negative=1,t._normSign()}if(0!==this.negative)return this.negative=0,this.iadd(e),this.negative=1,this._normSign();var r,n,a=this.cmp(e);if(0===a)return this.negative=0,this.length=1,this.words[0]=0,this;a>0?(r=this,n=e):(r=e,n=this);for(var i=0,s=0;s>26,this.words[s]=67108863&t;for(;0!==i&&s>26,this.words[s]=67108863&t;if(0===i&&s>>13,h=0|s[1],p=8191&h,b=h>>>13,y=0|s[2],m=8191&y,v=y>>>13,g=0|s[3],_=8191&g,w=g>>>13,k=0|s[4],x=8191&k,A=k>>>13,S=0|s[5],E=8191&S,j=S>>>13,M=0|s[6],P=8191&M,C=M>>>13,T=0|s[7],K=8191&T,R=T>>>13,U=0|s[8],B=8191&U,I=U>>>13,O=0|s[9],z=8191&O,D=O>>>13,F=0|o[0],L=8191&F,N=F>>>13,q=0|o[1],G=8191&q,H=q>>>13,W=0|o[2],V=8191&W,Z=W>>>13,Y=0|o[3],J=8191&Y,X=Y>>>13,$=0|o[4],Q=8191&$,ee=$>>>13,te=0|o[5],re=8191&te,ne=te>>>13,ae=0|o[6],ie=8191&ae,se=ae>>>13,oe=0|o[7],ue=8191&oe,ce=oe>>>13,fe=0|o[8],de=8191&fe,le=fe>>>13,he=0|o[9],pe=8191&he,be=he>>>13;r.negative=e.negative^t.negative,r.length=19;var ye=(c+(n=Math.imul(d,L))|0)+((8191&(a=(a=Math.imul(d,N))+Math.imul(l,L)|0))<<13)|0;c=((i=Math.imul(l,N))+(a>>>13)|0)+(ye>>>26)|0,ye&=67108863,n=Math.imul(p,L),a=(a=Math.imul(p,N))+Math.imul(b,L)|0,i=Math.imul(b,N);var me=(c+(n=n+Math.imul(d,G)|0)|0)+((8191&(a=(a=a+Math.imul(d,H)|0)+Math.imul(l,G)|0))<<13)|0;c=((i=i+Math.imul(l,H)|0)+(a>>>13)|0)+(me>>>26)|0,me&=67108863,n=Math.imul(m,L),a=(a=Math.imul(m,N))+Math.imul(v,L)|0,i=Math.imul(v,N),n=n+Math.imul(p,G)|0,a=(a=a+Math.imul(p,H)|0)+Math.imul(b,G)|0,i=i+Math.imul(b,H)|0;var ve=(c+(n=n+Math.imul(d,V)|0)|0)+((8191&(a=(a=a+Math.imul(d,Z)|0)+Math.imul(l,V)|0))<<13)|0;c=((i=i+Math.imul(l,Z)|0)+(a>>>13)|0)+(ve>>>26)|0,ve&=67108863,n=Math.imul(_,L),a=(a=Math.imul(_,N))+Math.imul(w,L)|0,i=Math.imul(w,N),n=n+Math.imul(m,G)|0,a=(a=a+Math.imul(m,H)|0)+Math.imul(v,G)|0,i=i+Math.imul(v,H)|0,n=n+Math.imul(p,V)|0,a=(a=a+Math.imul(p,Z)|0)+Math.imul(b,V)|0,i=i+Math.imul(b,Z)|0;var ge=(c+(n=n+Math.imul(d,J)|0)|0)+((8191&(a=(a=a+Math.imul(d,X)|0)+Math.imul(l,J)|0))<<13)|0;c=((i=i+Math.imul(l,X)|0)+(a>>>13)|0)+(ge>>>26)|0,ge&=67108863,n=Math.imul(x,L),a=(a=Math.imul(x,N))+Math.imul(A,L)|0,i=Math.imul(A,N),n=n+Math.imul(_,G)|0,a=(a=a+Math.imul(_,H)|0)+Math.imul(w,G)|0,i=i+Math.imul(w,H)|0,n=n+Math.imul(m,V)|0,a=(a=a+Math.imul(m,Z)|0)+Math.imul(v,V)|0,i=i+Math.imul(v,Z)|0,n=n+Math.imul(p,J)|0,a=(a=a+Math.imul(p,X)|0)+Math.imul(b,J)|0,i=i+Math.imul(b,X)|0;var _e=(c+(n=n+Math.imul(d,Q)|0)|0)+((8191&(a=(a=a+Math.imul(d,ee)|0)+Math.imul(l,Q)|0))<<13)|0;c=((i=i+Math.imul(l,ee)|0)+(a>>>13)|0)+(_e>>>26)|0,_e&=67108863,n=Math.imul(E,L),a=(a=Math.imul(E,N))+Math.imul(j,L)|0,i=Math.imul(j,N),n=n+Math.imul(x,G)|0,a=(a=a+Math.imul(x,H)|0)+Math.imul(A,G)|0,i=i+Math.imul(A,H)|0,n=n+Math.imul(_,V)|0,a=(a=a+Math.imul(_,Z)|0)+Math.imul(w,V)|0,i=i+Math.imul(w,Z)|0,n=n+Math.imul(m,J)|0,a=(a=a+Math.imul(m,X)|0)+Math.imul(v,J)|0,i=i+Math.imul(v,X)|0,n=n+Math.imul(p,Q)|0,a=(a=a+Math.imul(p,ee)|0)+Math.imul(b,Q)|0,i=i+Math.imul(b,ee)|0;var we=(c+(n=n+Math.imul(d,re)|0)|0)+((8191&(a=(a=a+Math.imul(d,ne)|0)+Math.imul(l,re)|0))<<13)|0;c=((i=i+Math.imul(l,ne)|0)+(a>>>13)|0)+(we>>>26)|0,we&=67108863,n=Math.imul(P,L),a=(a=Math.imul(P,N))+Math.imul(C,L)|0,i=Math.imul(C,N),n=n+Math.imul(E,G)|0,a=(a=a+Math.imul(E,H)|0)+Math.imul(j,G)|0,i=i+Math.imul(j,H)|0,n=n+Math.imul(x,V)|0,a=(a=a+Math.imul(x,Z)|0)+Math.imul(A,V)|0,i=i+Math.imul(A,Z)|0,n=n+Math.imul(_,J)|0,a=(a=a+Math.imul(_,X)|0)+Math.imul(w,J)|0,i=i+Math.imul(w,X)|0,n=n+Math.imul(m,Q)|0,a=(a=a+Math.imul(m,ee)|0)+Math.imul(v,Q)|0,i=i+Math.imul(v,ee)|0,n=n+Math.imul(p,re)|0,a=(a=a+Math.imul(p,ne)|0)+Math.imul(b,re)|0,i=i+Math.imul(b,ne)|0;var ke=(c+(n=n+Math.imul(d,ie)|0)|0)+((8191&(a=(a=a+Math.imul(d,se)|0)+Math.imul(l,ie)|0))<<13)|0;c=((i=i+Math.imul(l,se)|0)+(a>>>13)|0)+(ke>>>26)|0,ke&=67108863,n=Math.imul(K,L),a=(a=Math.imul(K,N))+Math.imul(R,L)|0,i=Math.imul(R,N),n=n+Math.imul(P,G)|0,a=(a=a+Math.imul(P,H)|0)+Math.imul(C,G)|0,i=i+Math.imul(C,H)|0,n=n+Math.imul(E,V)|0,a=(a=a+Math.imul(E,Z)|0)+Math.imul(j,V)|0,i=i+Math.imul(j,Z)|0,n=n+Math.imul(x,J)|0,a=(a=a+Math.imul(x,X)|0)+Math.imul(A,J)|0,i=i+Math.imul(A,X)|0,n=n+Math.imul(_,Q)|0,a=(a=a+Math.imul(_,ee)|0)+Math.imul(w,Q)|0,i=i+Math.imul(w,ee)|0,n=n+Math.imul(m,re)|0,a=(a=a+Math.imul(m,ne)|0)+Math.imul(v,re)|0,i=i+Math.imul(v,ne)|0,n=n+Math.imul(p,ie)|0,a=(a=a+Math.imul(p,se)|0)+Math.imul(b,ie)|0,i=i+Math.imul(b,se)|0;var xe=(c+(n=n+Math.imul(d,ue)|0)|0)+((8191&(a=(a=a+Math.imul(d,ce)|0)+Math.imul(l,ue)|0))<<13)|0;c=((i=i+Math.imul(l,ce)|0)+(a>>>13)|0)+(xe>>>26)|0,xe&=67108863,n=Math.imul(B,L),a=(a=Math.imul(B,N))+Math.imul(I,L)|0,i=Math.imul(I,N),n=n+Math.imul(K,G)|0,a=(a=a+Math.imul(K,H)|0)+Math.imul(R,G)|0,i=i+Math.imul(R,H)|0,n=n+Math.imul(P,V)|0,a=(a=a+Math.imul(P,Z)|0)+Math.imul(C,V)|0,i=i+Math.imul(C,Z)|0,n=n+Math.imul(E,J)|0,a=(a=a+Math.imul(E,X)|0)+Math.imul(j,J)|0,i=i+Math.imul(j,X)|0,n=n+Math.imul(x,Q)|0,a=(a=a+Math.imul(x,ee)|0)+Math.imul(A,Q)|0,i=i+Math.imul(A,ee)|0,n=n+Math.imul(_,re)|0,a=(a=a+Math.imul(_,ne)|0)+Math.imul(w,re)|0,i=i+Math.imul(w,ne)|0,n=n+Math.imul(m,ie)|0,a=(a=a+Math.imul(m,se)|0)+Math.imul(v,ie)|0,i=i+Math.imul(v,se)|0,n=n+Math.imul(p,ue)|0,a=(a=a+Math.imul(p,ce)|0)+Math.imul(b,ue)|0,i=i+Math.imul(b,ce)|0;var Ae=(c+(n=n+Math.imul(d,de)|0)|0)+((8191&(a=(a=a+Math.imul(d,le)|0)+Math.imul(l,de)|0))<<13)|0;c=((i=i+Math.imul(l,le)|0)+(a>>>13)|0)+(Ae>>>26)|0,Ae&=67108863,n=Math.imul(z,L),a=(a=Math.imul(z,N))+Math.imul(D,L)|0,i=Math.imul(D,N),n=n+Math.imul(B,G)|0,a=(a=a+Math.imul(B,H)|0)+Math.imul(I,G)|0,i=i+Math.imul(I,H)|0,n=n+Math.imul(K,V)|0,a=(a=a+Math.imul(K,Z)|0)+Math.imul(R,V)|0,i=i+Math.imul(R,Z)|0,n=n+Math.imul(P,J)|0,a=(a=a+Math.imul(P,X)|0)+Math.imul(C,J)|0,i=i+Math.imul(C,X)|0,n=n+Math.imul(E,Q)|0,a=(a=a+Math.imul(E,ee)|0)+Math.imul(j,Q)|0,i=i+Math.imul(j,ee)|0,n=n+Math.imul(x,re)|0,a=(a=a+Math.imul(x,ne)|0)+Math.imul(A,re)|0,i=i+Math.imul(A,ne)|0,n=n+Math.imul(_,ie)|0,a=(a=a+Math.imul(_,se)|0)+Math.imul(w,ie)|0,i=i+Math.imul(w,se)|0,n=n+Math.imul(m,ue)|0,a=(a=a+Math.imul(m,ce)|0)+Math.imul(v,ue)|0,i=i+Math.imul(v,ce)|0,n=n+Math.imul(p,de)|0,a=(a=a+Math.imul(p,le)|0)+Math.imul(b,de)|0,i=i+Math.imul(b,le)|0;var Se=(c+(n=n+Math.imul(d,pe)|0)|0)+((8191&(a=(a=a+Math.imul(d,be)|0)+Math.imul(l,pe)|0))<<13)|0;c=((i=i+Math.imul(l,be)|0)+(a>>>13)|0)+(Se>>>26)|0,Se&=67108863,n=Math.imul(z,G),a=(a=Math.imul(z,H))+Math.imul(D,G)|0,i=Math.imul(D,H),n=n+Math.imul(B,V)|0,a=(a=a+Math.imul(B,Z)|0)+Math.imul(I,V)|0,i=i+Math.imul(I,Z)|0,n=n+Math.imul(K,J)|0,a=(a=a+Math.imul(K,X)|0)+Math.imul(R,J)|0,i=i+Math.imul(R,X)|0,n=n+Math.imul(P,Q)|0,a=(a=a+Math.imul(P,ee)|0)+Math.imul(C,Q)|0,i=i+Math.imul(C,ee)|0,n=n+Math.imul(E,re)|0,a=(a=a+Math.imul(E,ne)|0)+Math.imul(j,re)|0,i=i+Math.imul(j,ne)|0,n=n+Math.imul(x,ie)|0,a=(a=a+Math.imul(x,se)|0)+Math.imul(A,ie)|0,i=i+Math.imul(A,se)|0,n=n+Math.imul(_,ue)|0,a=(a=a+Math.imul(_,ce)|0)+Math.imul(w,ue)|0,i=i+Math.imul(w,ce)|0,n=n+Math.imul(m,de)|0,a=(a=a+Math.imul(m,le)|0)+Math.imul(v,de)|0,i=i+Math.imul(v,le)|0;var Ee=(c+(n=n+Math.imul(p,pe)|0)|0)+((8191&(a=(a=a+Math.imul(p,be)|0)+Math.imul(b,pe)|0))<<13)|0;c=((i=i+Math.imul(b,be)|0)+(a>>>13)|0)+(Ee>>>26)|0,Ee&=67108863,n=Math.imul(z,V),a=(a=Math.imul(z,Z))+Math.imul(D,V)|0,i=Math.imul(D,Z),n=n+Math.imul(B,J)|0,a=(a=a+Math.imul(B,X)|0)+Math.imul(I,J)|0,i=i+Math.imul(I,X)|0,n=n+Math.imul(K,Q)|0,a=(a=a+Math.imul(K,ee)|0)+Math.imul(R,Q)|0,i=i+Math.imul(R,ee)|0,n=n+Math.imul(P,re)|0,a=(a=a+Math.imul(P,ne)|0)+Math.imul(C,re)|0,i=i+Math.imul(C,ne)|0,n=n+Math.imul(E,ie)|0,a=(a=a+Math.imul(E,se)|0)+Math.imul(j,ie)|0,i=i+Math.imul(j,se)|0,n=n+Math.imul(x,ue)|0,a=(a=a+Math.imul(x,ce)|0)+Math.imul(A,ue)|0,i=i+Math.imul(A,ce)|0,n=n+Math.imul(_,de)|0,a=(a=a+Math.imul(_,le)|0)+Math.imul(w,de)|0,i=i+Math.imul(w,le)|0;var je=(c+(n=n+Math.imul(m,pe)|0)|0)+((8191&(a=(a=a+Math.imul(m,be)|0)+Math.imul(v,pe)|0))<<13)|0;c=((i=i+Math.imul(v,be)|0)+(a>>>13)|0)+(je>>>26)|0,je&=67108863,n=Math.imul(z,J),a=(a=Math.imul(z,X))+Math.imul(D,J)|0,i=Math.imul(D,X),n=n+Math.imul(B,Q)|0,a=(a=a+Math.imul(B,ee)|0)+Math.imul(I,Q)|0,i=i+Math.imul(I,ee)|0,n=n+Math.imul(K,re)|0,a=(a=a+Math.imul(K,ne)|0)+Math.imul(R,re)|0,i=i+Math.imul(R,ne)|0,n=n+Math.imul(P,ie)|0,a=(a=a+Math.imul(P,se)|0)+Math.imul(C,ie)|0,i=i+Math.imul(C,se)|0,n=n+Math.imul(E,ue)|0,a=(a=a+Math.imul(E,ce)|0)+Math.imul(j,ue)|0,i=i+Math.imul(j,ce)|0,n=n+Math.imul(x,de)|0,a=(a=a+Math.imul(x,le)|0)+Math.imul(A,de)|0,i=i+Math.imul(A,le)|0;var Me=(c+(n=n+Math.imul(_,pe)|0)|0)+((8191&(a=(a=a+Math.imul(_,be)|0)+Math.imul(w,pe)|0))<<13)|0;c=((i=i+Math.imul(w,be)|0)+(a>>>13)|0)+(Me>>>26)|0,Me&=67108863,n=Math.imul(z,Q),a=(a=Math.imul(z,ee))+Math.imul(D,Q)|0,i=Math.imul(D,ee),n=n+Math.imul(B,re)|0,a=(a=a+Math.imul(B,ne)|0)+Math.imul(I,re)|0,i=i+Math.imul(I,ne)|0,n=n+Math.imul(K,ie)|0,a=(a=a+Math.imul(K,se)|0)+Math.imul(R,ie)|0,i=i+Math.imul(R,se)|0,n=n+Math.imul(P,ue)|0,a=(a=a+Math.imul(P,ce)|0)+Math.imul(C,ue)|0,i=i+Math.imul(C,ce)|0,n=n+Math.imul(E,de)|0,a=(a=a+Math.imul(E,le)|0)+Math.imul(j,de)|0,i=i+Math.imul(j,le)|0;var Pe=(c+(n=n+Math.imul(x,pe)|0)|0)+((8191&(a=(a=a+Math.imul(x,be)|0)+Math.imul(A,pe)|0))<<13)|0;c=((i=i+Math.imul(A,be)|0)+(a>>>13)|0)+(Pe>>>26)|0,Pe&=67108863,n=Math.imul(z,re),a=(a=Math.imul(z,ne))+Math.imul(D,re)|0,i=Math.imul(D,ne),n=n+Math.imul(B,ie)|0,a=(a=a+Math.imul(B,se)|0)+Math.imul(I,ie)|0,i=i+Math.imul(I,se)|0,n=n+Math.imul(K,ue)|0,a=(a=a+Math.imul(K,ce)|0)+Math.imul(R,ue)|0,i=i+Math.imul(R,ce)|0,n=n+Math.imul(P,de)|0,a=(a=a+Math.imul(P,le)|0)+Math.imul(C,de)|0,i=i+Math.imul(C,le)|0;var Ce=(c+(n=n+Math.imul(E,pe)|0)|0)+((8191&(a=(a=a+Math.imul(E,be)|0)+Math.imul(j,pe)|0))<<13)|0;c=((i=i+Math.imul(j,be)|0)+(a>>>13)|0)+(Ce>>>26)|0,Ce&=67108863,n=Math.imul(z,ie),a=(a=Math.imul(z,se))+Math.imul(D,ie)|0,i=Math.imul(D,se),n=n+Math.imul(B,ue)|0,a=(a=a+Math.imul(B,ce)|0)+Math.imul(I,ue)|0,i=i+Math.imul(I,ce)|0,n=n+Math.imul(K,de)|0,a=(a=a+Math.imul(K,le)|0)+Math.imul(R,de)|0,i=i+Math.imul(R,le)|0;var Te=(c+(n=n+Math.imul(P,pe)|0)|0)+((8191&(a=(a=a+Math.imul(P,be)|0)+Math.imul(C,pe)|0))<<13)|0;c=((i=i+Math.imul(C,be)|0)+(a>>>13)|0)+(Te>>>26)|0,Te&=67108863,n=Math.imul(z,ue),a=(a=Math.imul(z,ce))+Math.imul(D,ue)|0,i=Math.imul(D,ce),n=n+Math.imul(B,de)|0,a=(a=a+Math.imul(B,le)|0)+Math.imul(I,de)|0,i=i+Math.imul(I,le)|0;var Ke=(c+(n=n+Math.imul(K,pe)|0)|0)+((8191&(a=(a=a+Math.imul(K,be)|0)+Math.imul(R,pe)|0))<<13)|0;c=((i=i+Math.imul(R,be)|0)+(a>>>13)|0)+(Ke>>>26)|0,Ke&=67108863,n=Math.imul(z,de),a=(a=Math.imul(z,le))+Math.imul(D,de)|0,i=Math.imul(D,le);var Re=(c+(n=n+Math.imul(B,pe)|0)|0)+((8191&(a=(a=a+Math.imul(B,be)|0)+Math.imul(I,pe)|0))<<13)|0;c=((i=i+Math.imul(I,be)|0)+(a>>>13)|0)+(Re>>>26)|0,Re&=67108863;var Ue=(c+(n=Math.imul(z,pe))|0)+((8191&(a=(a=Math.imul(z,be))+Math.imul(D,pe)|0))<<13)|0;return c=((i=Math.imul(D,be))+(a>>>13)|0)+(Ue>>>26)|0,Ue&=67108863,u[0]=ye,u[1]=me,u[2]=ve,u[3]=ge,u[4]=_e,u[5]=we,u[6]=ke,u[7]=xe,u[8]=Ae,u[9]=Se,u[10]=Ee,u[11]=je,u[12]=Me,u[13]=Pe,u[14]=Ce,u[15]=Te,u[16]=Ke,u[17]=Re,u[18]=Ue,0!==c&&(u[19]=c,r.length++),r};function p(e,t,r){return(new b).mulp(e,t,r)}function b(e,t){this.x=e,this.y=t}Math.imul||(h=l),i.prototype.mulTo=function(e,t){var r=this.length+e.length;return 10===this.length&&10===e.length?h(this,e,t):r<63?l(this,e,t):r<1024?function(e,t,r){r.negative=t.negative^e.negative,r.length=e.length+t.length;for(var n=0,a=0,i=0;i>>26)|0)>>>26,s&=67108863}r.words[i]=o,n=s,s=a}return 0!==n?r.words[i]=n:r.length--,r.strip()}(this,e,t):p(this,e,t)},b.prototype.makeRBT=function(e){for(var t=new Array(e),r=i.prototype._countBits(e)-1,n=0;n>=1;return n},b.prototype.permute=function(e,t,r,n,a,i){for(var s=0;s>>=1)a++;return 1<>>=13,r[2*s+1]=8191&i,i>>>=13;for(s=2*t;s>=26,t+=a/67108864|0,t+=i>>>26,this.words[r]=67108863&i}return 0!==t&&(this.words[r]=t,this.length++),this},i.prototype.muln=function(e){return this.clone().imuln(e)},i.prototype.sqr=function(){return this.mul(this)},i.prototype.isqr=function(){return this.imul(this.clone())},i.prototype.pow=function(e){var t=function(e){for(var t=new Array(e.bitLength()),r=0;r>>a}return t}(e);if(0===t.length)return new i(1);for(var r=this,n=0;n=0);var t,r=e%26,a=(e-r)/26,i=67108863>>>26-r<<26-r;if(0!==r){var s=0;for(t=0;t>>26-r}s&&(this.words[t]=s,this.length++)}if(0!==a){for(t=this.length-1;t>=0;t--)this.words[t+a]=this.words[t];for(t=0;t=0),a=t?(t-t%26)/26:0;var i=e%26,s=Math.min((e-i)/26,this.length),o=67108863^67108863>>>i<s)for(this.length-=s,c=0;c=0&&(0!==f||c>=a);c--){var d=0|this.words[c];this.words[c]=f<<26-i|d>>>i,f=d&o}return u&&0!==f&&(u.words[u.length++]=f),0===this.length&&(this.words[0]=0,this.length=1),this.strip()},i.prototype.ishrn=function(e,t,r){return n(0===this.negative),this.iushrn(e,t,r)},i.prototype.shln=function(e){return this.clone().ishln(e)},i.prototype.ushln=function(e){return this.clone().iushln(e)},i.prototype.shrn=function(e){return this.clone().ishrn(e)},i.prototype.ushrn=function(e){return this.clone().iushrn(e)},i.prototype.testn=function(e){n("number"==typeof e&&e>=0);var t=e%26,r=(e-t)/26,a=1<=0);var t=e%26,r=(e-t)/26;if(n(0===this.negative,"imaskn works only with positive numbers"),this.length<=r)return this;if(0!==t&&r++,this.length=Math.min(r,this.length),0!==t){var a=67108863^67108863>>>t<=67108864;t++)this.words[t]-=67108864,t===this.length-1?this.words[t+1]=1:this.words[t+1]++;return this.length=Math.max(this.length,t+1),this},i.prototype.isubn=function(e){if(n("number"==typeof e),n(e<67108864),e<0)return this.iaddn(-e);if(0!==this.negative)return this.negative=0,this.iaddn(e),this.negative=1,this;if(this.words[0]-=e,1===this.length&&this.words[0]<0)this.words[0]=-this.words[0],this.negative=1;else for(var t=0;t>26)-(u/67108864|0),this.words[a+r]=67108863&i}for(;a>26,this.words[a+r]=67108863&i;if(0===o)return this.strip();for(n(-1===o),o=0,a=0;a>26,this.words[a]=67108863&i;return this.negative=1,this.strip()},i.prototype._wordDiv=function(e,t){var r=(this.length,e.length),n=this.clone(),a=e,s=0|a.words[a.length-1];0!==(r=26-this._countBits(s))&&(a=a.ushln(r),n.iushln(r),s=0|a.words[a.length-1]);var o,u=n.length-a.length;if("mod"!==t){(o=new i(null)).length=u+1,o.words=new Array(o.length);for(var c=0;c=0;d--){var l=67108864*(0|n.words[a.length+d])+(0|n.words[a.length+d-1]);for(l=Math.min(l/s|0,67108863),n._ishlnsubmul(a,l,d);0!==n.negative;)l--,n.negative=0,n._ishlnsubmul(a,1,d),n.isZero()||(n.negative^=1);o&&(o.words[d]=l)}return o&&o.strip(),n.strip(),"div"!==t&&0!==r&&n.iushrn(r),{div:o||null,mod:n}},i.prototype.divmod=function(e,t,r){return n(!e.isZero()),this.isZero()?{div:new i(0),mod:new i(0)}:0!==this.negative&&0===e.negative?(o=this.neg().divmod(e,t),"mod"!==t&&(a=o.div.neg()),"div"!==t&&(s=o.mod.neg(),r&&0!==s.negative&&s.iadd(e)),{div:a,mod:s}):0===this.negative&&0!==e.negative?(o=this.divmod(e.neg(),t),"mod"!==t&&(a=o.div.neg()),{div:a,mod:o.mod}):0!=(this.negative&e.negative)?(o=this.neg().divmod(e.neg(),t),"div"!==t&&(s=o.mod.neg(),r&&0!==s.negative&&s.isub(e)),{div:o.div,mod:s}):e.length>this.length||this.cmp(e)<0?{div:new i(0),mod:this}:1===e.length?"div"===t?{div:this.divn(e.words[0]),mod:null}:"mod"===t?{div:null,mod:new i(this.modn(e.words[0]))}:{div:this.divn(e.words[0]),mod:new i(this.modn(e.words[0]))}:this._wordDiv(e,t);var a,s,o},i.prototype.div=function(e){return this.divmod(e,"div",!1).div},i.prototype.mod=function(e){return this.divmod(e,"mod",!1).mod},i.prototype.umod=function(e){return this.divmod(e,"mod",!0).mod},i.prototype.divRound=function(e){var t=this.divmod(e);if(t.mod.isZero())return t.div;var r=0!==t.div.negative?t.mod.isub(e):t.mod,n=e.ushrn(1),a=e.andln(1),i=r.cmp(n);return i<0||1===a&&0===i?t.div:0!==t.div.negative?t.div.isubn(1):t.div.iaddn(1)},i.prototype.modn=function(e){n(e<=67108863);for(var t=(1<<26)%e,r=0,a=this.length-1;a>=0;a--)r=(t*r+(0|this.words[a]))%e;return r},i.prototype.idivn=function(e){n(e<=67108863);for(var t=0,r=this.length-1;r>=0;r--){var a=(0|this.words[r])+67108864*t;this.words[r]=a/e|0,t=a%e}return this.strip()},i.prototype.divn=function(e){return this.clone().idivn(e)},i.prototype.egcd=function(e){n(0===e.negative),n(!e.isZero());var t=this,r=e.clone();t=0!==t.negative?t.umod(e):t.clone();for(var a=new i(1),s=new i(0),o=new i(0),u=new i(1),c=0;t.isEven()&&r.isEven();)t.iushrn(1),r.iushrn(1),++c;for(var f=r.clone(),d=t.clone();!t.isZero();){for(var l=0,h=1;0==(t.words[0]&h)&&l<26;++l,h<<=1);if(l>0)for(t.iushrn(l);l-- >0;)(a.isOdd()||s.isOdd())&&(a.iadd(f),s.isub(d)),a.iushrn(1),s.iushrn(1);for(var p=0,b=1;0==(r.words[0]&b)&&p<26;++p,b<<=1);if(p>0)for(r.iushrn(p);p-- >0;)(o.isOdd()||u.isOdd())&&(o.iadd(f),u.isub(d)),o.iushrn(1),u.iushrn(1);t.cmp(r)>=0?(t.isub(r),a.isub(o),s.isub(u)):(r.isub(t),o.isub(a),u.isub(s))}return{a:o,b:u,gcd:r.iushln(c)}},i.prototype._invmp=function(e){n(0===e.negative),n(!e.isZero());var t=this,r=e.clone();t=0!==t.negative?t.umod(e):t.clone();for(var a,s=new i(1),o=new i(0),u=r.clone();t.cmpn(1)>0&&r.cmpn(1)>0;){for(var c=0,f=1;0==(t.words[0]&f)&&c<26;++c,f<<=1);if(c>0)for(t.iushrn(c);c-- >0;)s.isOdd()&&s.iadd(u),s.iushrn(1);for(var d=0,l=1;0==(r.words[0]&l)&&d<26;++d,l<<=1);if(d>0)for(r.iushrn(d);d-- >0;)o.isOdd()&&o.iadd(u),o.iushrn(1);t.cmp(r)>=0?(t.isub(r),s.isub(o)):(r.isub(t),o.isub(s))}return(a=0===t.cmpn(1)?s:o).cmpn(0)<0&&a.iadd(e),a},i.prototype.gcd=function(e){if(this.isZero())return e.abs();if(e.isZero())return this.abs();var t=this.clone(),r=e.clone();t.negative=0,r.negative=0;for(var n=0;t.isEven()&&r.isEven();n++)t.iushrn(1),r.iushrn(1);for(;;){for(;t.isEven();)t.iushrn(1);for(;r.isEven();)r.iushrn(1);var a=t.cmp(r);if(a<0){var i=t;t=r,r=i}else if(0===a||0===r.cmpn(1))break;t.isub(r)}return r.iushln(n)},i.prototype.invm=function(e){return this.egcd(e).a.umod(e)},i.prototype.isEven=function(){return 0==(1&this.words[0])},i.prototype.isOdd=function(){return 1==(1&this.words[0])},i.prototype.andln=function(e){return this.words[0]&e},i.prototype.bincn=function(e){n("number"==typeof e);var t=e%26,r=(e-t)/26,a=1<>>26,o&=67108863,this.words[s]=o}return 0!==i&&(this.words[s]=i,this.length++),this},i.prototype.isZero=function(){return 1===this.length&&0===this.words[0]},i.prototype.cmpn=function(e){var t,r=e<0;if(0!==this.negative&&!r)return-1;if(0===this.negative&&r)return 1;if(this.strip(),this.length>1)t=1;else{r&&(e=-e),n(e<=67108863,"Number is too big");var a=0|this.words[0];t=a===e?0:ae.length)return 1;if(this.length=0;r--){var n=0|this.words[r],a=0|e.words[r];if(n!==a){na&&(t=1);break}}return t},i.prototype.gtn=function(e){return 1===this.cmpn(e)},i.prototype.gt=function(e){return 1===this.cmp(e)},i.prototype.gten=function(e){return this.cmpn(e)>=0},i.prototype.gte=function(e){return this.cmp(e)>=0},i.prototype.ltn=function(e){return-1===this.cmpn(e)},i.prototype.lt=function(e){return-1===this.cmp(e)},i.prototype.lten=function(e){return this.cmpn(e)<=0},i.prototype.lte=function(e){return this.cmp(e)<=0},i.prototype.eqn=function(e){return 0===this.cmpn(e)},i.prototype.eq=function(e){return 0===this.cmp(e)},i.red=function(e){return new k(e)},i.prototype.toRed=function(e){return n(!this.red,"Already a number in reduction context"),n(0===this.negative,"red works only with positives"),e.convertTo(this)._forceRed(e)},i.prototype.fromRed=function(){return n(this.red,"fromRed works only with numbers in reduction context"),this.red.convertFrom(this)},i.prototype._forceRed=function(e){return this.red=e,this},i.prototype.forceRed=function(e){return n(!this.red,"Already a number in reduction context"),this._forceRed(e)},i.prototype.redAdd=function(e){return n(this.red,"redAdd works only with red numbers"),this.red.add(this,e)},i.prototype.redIAdd=function(e){return n(this.red,"redIAdd works only with red numbers"),this.red.iadd(this,e)},i.prototype.redSub=function(e){return n(this.red,"redSub works only with red numbers"),this.red.sub(this,e)},i.prototype.redISub=function(e){return n(this.red,"redISub works only with red numbers"),this.red.isub(this,e)},i.prototype.redShl=function(e){return n(this.red,"redShl works only with red numbers"),this.red.shl(this,e)},i.prototype.redMul=function(e){return n(this.red,"redMul works only with red numbers"),this.red._verify2(this,e),this.red.mul(this,e)},i.prototype.redIMul=function(e){return n(this.red,"redMul works only with red numbers"),this.red._verify2(this,e),this.red.imul(this,e)},i.prototype.redSqr=function(){return n(this.red,"redSqr works only with red numbers"),this.red._verify1(this),this.red.sqr(this)},i.prototype.redISqr=function(){return n(this.red,"redISqr works only with red numbers"),this.red._verify1(this),this.red.isqr(this)},i.prototype.redSqrt=function(){return n(this.red,"redSqrt works only with red numbers"),this.red._verify1(this),this.red.sqrt(this)},i.prototype.redInvm=function(){return n(this.red,"redInvm works only with red numbers"),this.red._verify1(this),this.red.invm(this)},i.prototype.redNeg=function(){return n(this.red,"redNeg works only with red numbers"),this.red._verify1(this),this.red.neg(this)},i.prototype.redPow=function(e){return n(this.red&&!e.red,"redPow(normalNum)"),this.red._verify1(this),this.red.pow(this,e)};var y={k256:null,p224:null,p192:null,p25519:null};function m(e,t){this.name=e,this.p=new i(t,16),this.n=this.p.bitLength(),this.k=new i(1).iushln(this.n).isub(this.p),this.tmp=this._tmp()}function v(){m.call(this,"k256","ffffffff ffffffff ffffffff ffffffff ffffffff ffffffff fffffffe fffffc2f")}function g(){m.call(this,"p224","ffffffff ffffffff ffffffff ffffffff 00000000 00000000 00000001")}function _(){m.call(this,"p192","ffffffff ffffffff ffffffff fffffffe ffffffff ffffffff")}function w(){m.call(this,"25519","7fffffffffffffff ffffffffffffffff ffffffffffffffff ffffffffffffffed")}function k(e){if("string"==typeof e){var t=i._prime(e);this.m=t.p,this.prime=t}else n(e.gtn(1),"modulus must be greater than 1"),this.m=e,this.prime=null}function x(e){k.call(this,e),this.shift=this.m.bitLength(),this.shift%26!=0&&(this.shift+=26-this.shift%26),this.r=new i(1).iushln(this.shift),this.r2=this.imod(this.r.sqr()),this.rinv=this.r._invmp(this.m),this.minv=this.rinv.mul(this.r).isubn(1).div(this.m),this.minv=this.minv.umod(this.r),this.minv=this.r.sub(this.minv)}m.prototype._tmp=function(){var e=new i(null);return e.words=new Array(Math.ceil(this.n/13)),e},m.prototype.ireduce=function(e){var t,r=e;do{this.split(r,this.tmp),t=(r=(r=this.imulK(r)).iadd(this.tmp)).bitLength()}while(t>this.n);var n=t0?r.isub(this.p):r.strip(),r},m.prototype.split=function(e,t){e.iushrn(this.n,0,t)},m.prototype.imulK=function(e){return e.imul(this.k)},a(v,m),v.prototype.split=function(e,t){for(var r=Math.min(e.length,9),n=0;n>>22,a=i}a>>>=22,e.words[n-10]=a,0===a&&e.length>10?e.length-=10:e.length-=9},v.prototype.imulK=function(e){e.words[e.length]=0,e.words[e.length+1]=0,e.length+=2;for(var t=0,r=0;r>>=26,e.words[r]=a,t=n}return 0!==t&&(e.words[e.length++]=t),e},i._prime=function(e){if(y[e])return y[e];var t;if("k256"===e)t=new v;else if("p224"===e)t=new g;else if("p192"===e)t=new _;else{if("p25519"!==e)throw new Error("Unknown prime "+e);t=new w}return y[e]=t,t},k.prototype._verify1=function(e){n(0===e.negative,"red works only with positives"),n(e.red,"red works only with red numbers")},k.prototype._verify2=function(e,t){n(0==(e.negative|t.negative),"red works only with positives"),n(e.red&&e.red===t.red,"red works only with red numbers")},k.prototype.imod=function(e){return this.prime?this.prime.ireduce(e)._forceRed(this):e.umod(this.m)._forceRed(this)},k.prototype.neg=function(e){return e.isZero()?e.clone():this.m.sub(e)._forceRed(this)},k.prototype.add=function(e,t){this._verify2(e,t);var r=e.add(t);return r.cmp(this.m)>=0&&r.isub(this.m),r._forceRed(this)},k.prototype.iadd=function(e,t){this._verify2(e,t);var r=e.iadd(t);return r.cmp(this.m)>=0&&r.isub(this.m),r},k.prototype.sub=function(e,t){this._verify2(e,t);var r=e.sub(t);return r.cmpn(0)<0&&r.iadd(this.m),r._forceRed(this)},k.prototype.isub=function(e,t){this._verify2(e,t);var r=e.isub(t);return r.cmpn(0)<0&&r.iadd(this.m),r},k.prototype.shl=function(e,t){return this._verify1(e),this.imod(e.ushln(t))},k.prototype.imul=function(e,t){return this._verify2(e,t),this.imod(e.imul(t))},k.prototype.mul=function(e,t){return this._verify2(e,t),this.imod(e.mul(t))},k.prototype.isqr=function(e){return this.imul(e,e.clone())},k.prototype.sqr=function(e){return this.mul(e,e)},k.prototype.sqrt=function(e){if(e.isZero())return e.clone();var t=this.m.andln(3);if(n(t%2==1),3===t){var r=this.m.add(new i(1)).iushrn(2);return this.pow(e,r)}for(var a=this.m.subn(1),s=0;!a.isZero()&&0===a.andln(1);)s++,a.iushrn(1);n(!a.isZero());var o=new i(1).toRed(this),u=o.redNeg(),c=this.m.subn(1).iushrn(1),f=this.m.bitLength();for(f=new i(2*f*f).toRed(this);0!==this.pow(f,c).cmp(u);)f.redIAdd(u);for(var d=this.pow(f,a),l=this.pow(e,a.addn(1).iushrn(1)),h=this.pow(e,a),p=s;0!==h.cmp(o);){for(var b=h,y=0;0!==b.cmp(o);y++)b=b.redSqr();n(y=0;n--){for(var c=t.words[n],f=u-1;f>=0;f--){var d=c>>f&1;a!==r[0]&&(a=this.sqr(a)),0!==d||0!==s?(s<<=1,s|=d,(4===++o||0===n&&0===f)&&(a=this.mul(a,r[s]),o=0,s=0)):o=0}u=26}return a},k.prototype.convertTo=function(e){var t=e.umod(this.m);return t===e?t.clone():t},k.prototype.convertFrom=function(e){var t=e.clone();return t.red=null,t},i.mont=function(e){return new x(e)},a(x,k),x.prototype.convertTo=function(e){return this.imod(e.ushln(this.shift))},x.prototype.convertFrom=function(e){var t=this.imod(e.mul(this.rinv));return t.red=null,t},x.prototype.imul=function(e,t){if(e.isZero()||t.isZero())return e.words[0]=0,e.length=1,e;var r=e.imul(t),n=r.maskn(this.shift).mul(this.minv).imaskn(this.shift).mul(this.m),a=r.isub(n).iushrn(this.shift),i=a;return a.cmp(this.m)>=0?i=a.isub(this.m):a.cmpn(0)<0&&(i=a.iadd(this.m)),i._forceRed(this)},x.prototype.mul=function(e,t){if(e.isZero()||t.isZero())return new i(0)._forceRed(this);var r=e.mul(t),n=r.maskn(this.shift).mul(this.minv).imaskn(this.shift).mul(this.m),a=r.isub(n).iushrn(this.shift),s=a;return a.cmp(this.m)>=0?s=a.isub(this.m):a.cmpn(0)<0&&(s=a.iadd(this.m)),s._forceRed(this)},x.prototype.invm=function(e){return this.imod(e._invmp(this.m).mul(this.r2))._forceRed(this)}}(void 0===t||t,this)},{buffer:"buffer"}],45:[function(e,t,r){var n;function a(e){this.rand=e}if(t.exports=function(e){return n||(n=new a(null)),n.generate(e)},t.exports.Rand=a,a.prototype.generate=function(e){return this._rand(e)},a.prototype._rand=function(e){if(this.rand.getBytes)return this.rand.getBytes(e);for(var t=new Uint8Array(e),r=0;rf;)if((o=u[f++])!=o)return!0}else for(;c>f;f++)if((e||f in u)&&u[f]===r)return e||f||0;return!e&&-1}}},{"./_to-absolute-index":148,"./_to-iobject":150,"./_to-length":151}],79:[function(e,t,r){var n=e("./_ctx"),a=e("./_iobject"),i=e("./_to-object"),s=e("./_to-length"),o=e("./_array-species-create");t.exports=function(e,t){var r=1==e,u=2==e,c=3==e,f=4==e,d=6==e,l=5==e||d,h=t||o;return function(t,o,p){for(var b,y,m=i(t),v=a(m),g=n(o,p,3),_=s(v.length),w=0,k=r?h(t,_):u?h(t,0):void 0;_>w;w++)if((l||w in v)&&(y=g(b=v[w],w,m),e))if(r)k[w]=y;else if(y)switch(e){case 3:return!0;case 5:return b;case 6:return w;case 2:k.push(b)}else if(f)return!1;return d?-1:c||f?f:k}}},{"./_array-species-create":81,"./_ctx":88,"./_iobject":103,"./_to-length":151,"./_to-object":152}],80:[function(e,t,r){var n=e("./_is-object"),a=e("./_is-array"),i=e("./_wks")("species");t.exports=function(e){var t;return a(e)&&("function"!=typeof(t=e.constructor)||t!==Array&&!a(t.prototype)||(t=void 0),n(t)&&null===(t=t[i])&&(t=void 0)),void 0===t?Array:t}},{"./_is-array":105,"./_is-object":107,"./_wks":158}],81:[function(e,t,r){var n=e("./_array-species-constructor");t.exports=function(e,t){return new(n(e))(t)}},{"./_array-species-constructor":80}],82:[function(e,t,r){var n=e("./_cof"),a=e("./_wks")("toStringTag"),i="Arguments"==n(function(){return arguments}());t.exports=function(e){var t,r,s;return void 0===e?"Undefined":null===e?"Null":"string"==typeof(r=function(e,t){try{return e[t]}catch(r){}}(t=Object(e),a))?r:i?n(t):"Object"==(s=n(t))&&"function"==typeof t.callee?"Arguments":s}},{"./_cof":83,"./_wks":158}],83:[function(e,t,r){var n={}.toString;t.exports=function(e){return n.call(e).slice(8,-1)}},{}],84:[function(e,t,r){"use strict";var n=e("./_redefine-all"),a=e("./_meta").getWeak,i=e("./_an-object"),s=e("./_is-object"),o=e("./_an-instance"),u=e("./_for-of"),c=e("./_array-methods"),f=e("./_has"),d=e("./_validate-collection"),l=c(5),h=c(6),p=0,b=function(e){return e._l||(e._l=new y)},y=function(){this.a=[]},m=function(e,t){return l(e.a,function(e){return e[0]===t})};y.prototype={get:function(e){var t=m(this,e);if(t)return t[1]},has:function(e){return!!m(this,e)},set:function(e,t){var r=m(this,e);r?r[1]=t:this.a.push([e,t])},delete:function(e){var t=h(this.a,function(t){return t[0]===e});return~t&&this.a.splice(t,1),!!~t}},t.exports={getConstructor:function(e,t,r,i){var c=e(function(e,n){o(e,c,t,"_i"),e._t=t,e._i=p++,e._l=void 0,null!=n&&u(n,r,e[i],e)});return n(c.prototype,{delete:function(e){if(!s(e))return!1;var r=a(e);return!0===r?b(d(this,t)).delete(e):r&&f(r,this._i)&&delete r[this._i]},has:function(e){if(!s(e))return!1;var r=a(e);return!0===r?b(d(this,t)).has(e):r&&f(r,this._i)}}),c},def:function(e,t,r){var n=a(i(t),!0);return!0===n?b(e).set(t,r):n[e._i]=r,e},ufstore:b}},{"./_an-instance":76,"./_an-object":77,"./_array-methods":79,"./_for-of":96,"./_has":98,"./_is-object":107,"./_meta":115,"./_redefine-all":136,"./_validate-collection":155}],85:[function(e,t,r){"use strict";var n=e("./_global"),a=e("./_export"),i=e("./_meta"),s=e("./_fails"),o=e("./_hide"),u=e("./_redefine-all"),c=e("./_for-of"),f=e("./_an-instance"),d=e("./_is-object"),l=e("./_set-to-string-tag"),h=e("./_object-dp").f,p=e("./_array-methods")(0),b=e("./_descriptors");t.exports=function(e,t,r,y,m,v){var g=n[e],_=g,w=m?"set":"add",k=_&&_.prototype,x={};return b&&"function"==typeof _&&(v||k.forEach&&!s(function(){(new _).entries().next()}))?(_=t(function(t,r){f(t,_,e,"_c"),t._c=new g,null!=r&&c(r,m,t[w],t)}),p("add,clear,delete,forEach,get,has,set,keys,values,entries,toJSON".split(","),function(e){var t="add"==e||"set"==e;e in k&&(!v||"clear"!=e)&&o(_.prototype,e,function(r,n){if(f(this,_,e),!t&&v&&!d(r))return"get"==e&&void 0;var a=this._c[e](0===r?0:r,n);return t?this:a})}),v||h(_.prototype,"size",{get:function(){return this._c.size}})):(_=y.getConstructor(t,e,m,w),u(_.prototype,r),i.NEED=!0),l(_,e),x[e]=_,a(a.G+a.W+a.F,x),v||y.setStrong(_,e,m),_}},{"./_an-instance":76,"./_array-methods":79,"./_descriptors":90,"./_export":94,"./_fails":95,"./_for-of":96,"./_global":97,"./_hide":99,"./_is-object":107,"./_meta":115,"./_object-dp":120,"./_redefine-all":136,"./_set-to-string-tag":142}],86:[function(e,t,r){var n=t.exports={version:"2.5.3"};"number"==typeof __e&&(__e=n)},{}],87:[function(e,t,r){"use strict";var n=e("./_object-dp"),a=e("./_property-desc");t.exports=function(e,t,r){t in e?n.f(e,t,a(0,r)):e[t]=r}},{"./_object-dp":120,"./_property-desc":135}],88:[function(e,t,r){var n=e("./_a-function");t.exports=function(e,t,r){if(n(e),void 0===t)return e;switch(r){case 1:return function(r){return e.call(t,r)};case 2:return function(r,n){return e.call(t,r,n)};case 3:return function(r,n,a){return e.call(t,r,n,a)}}return function(){return e.apply(t,arguments)}}},{"./_a-function":74}],89:[function(e,t,r){t.exports=function(e){if(null==e)throw TypeError("Can't call method on "+e);return e}},{}],90:[function(e,t,r){t.exports=!e("./_fails")(function(){return 7!=Object.defineProperty({},"a",{get:function(){return 7}}).a})},{"./_fails":95}],91:[function(e,t,r){var n=e("./_is-object"),a=e("./_global").document,i=n(a)&&n(a.createElement);t.exports=function(e){return i?a.createElement(e):{}}},{"./_global":97,"./_is-object":107}],92:[function(e,t,r){t.exports="constructor,hasOwnProperty,isPrototypeOf,propertyIsEnumerable,toLocaleString,toString,valueOf".split(",")},{}],93:[function(e,t,r){var n=e("./_object-keys"),a=e("./_object-gops"),i=e("./_object-pie");t.exports=function(e){var t=n(e),r=a.f;if(r)for(var s,o=r(e),u=i.f,c=0;o.length>c;)u.call(e,s=o[c++])&&t.push(s);return t}},{"./_object-gops":125,"./_object-keys":128,"./_object-pie":129}],94:[function(e,t,r){var n=e("./_global"),a=e("./_core"),i=e("./_ctx"),s=e("./_hide"),o=function(e,t,r){var u,c,f,d=e&o.F,l=e&o.G,h=e&o.S,p=e&o.P,b=e&o.B,y=e&o.W,m=l?a:a[t]||(a[t]={}),v=m.prototype,g=l?n:h?n[t]:(n[t]||{}).prototype;for(u in l&&(r=t),r)(c=!d&&g&&void 0!==g[u])&&u in m||(f=c?g[u]:r[u],m[u]=l&&"function"!=typeof g[u]?r[u]:b&&c?i(f,n):y&&g[u]==f?function(e){var t=function(t,r,n){if(this instanceof e){switch(arguments.length){case 0:return new e;case 1:return new e(t);case 2:return new e(t,r)}return new e(t,r,n)}return e.apply(this,arguments)};return t.prototype=e.prototype,t}(f):p&&"function"==typeof f?i(Function.call,f):f,p&&((m.virtual||(m.virtual={}))[u]=f,e&o.R&&v&&!v[u]&&s(v,u,f)))};o.F=1,o.G=2,o.S=4,o.P=8,o.B=16,o.W=32,o.U=64,o.R=128,t.exports=o},{"./_core":86,"./_ctx":88,"./_global":97,"./_hide":99}],95:[function(e,t,r){t.exports=function(e){try{return!!e()}catch(t){return!0}}},{}],96:[function(e,t,r){var n=e("./_ctx"),a=e("./_iter-call"),i=e("./_is-array-iter"),s=e("./_an-object"),o=e("./_to-length"),u=e("./core.get-iterator-method"),c={},f={};(r=t.exports=function(e,t,r,d,l){var h,p,b,y,m=l?function(){return e}:u(e),v=n(r,d,t?2:1),g=0;if("function"!=typeof m)throw TypeError(e+" is not iterable!");if(i(m)){for(h=o(e.length);h>g;g++)if((y=t?v(s(p=e[g])[0],p[1]):v(e[g]))===c||y===f)return y}else for(b=m.call(e);!(p=b.next()).done;)if((y=a(b,v,p.value,t))===c||y===f)return y}).BREAK=c,r.RETURN=f},{"./_an-object":77,"./_ctx":88,"./_is-array-iter":104,"./_iter-call":108,"./_to-length":151,"./core.get-iterator-method":159}],97:[function(e,t,r){var n=t.exports="undefined"!=typeof window&&window.Math==Math?window:"undefined"!=typeof self&&self.Math==Math?self:Function("return this")();"number"==typeof __g&&(__g=n)},{}],98:[function(e,t,r){var n={}.hasOwnProperty;t.exports=function(e,t){return n.call(e,t)}},{}],99:[function(e,t,r){var n=e("./_object-dp"),a=e("./_property-desc");t.exports=e("./_descriptors")?function(e,t,r){return n.f(e,t,a(1,r))}:function(e,t,r){return e[t]=r,e}},{"./_descriptors":90,"./_object-dp":120,"./_property-desc":135}],100:[function(e,t,r){var n=e("./_global").document;t.exports=n&&n.documentElement},{"./_global":97}],101:[function(e,t,r){t.exports=!e("./_descriptors")&&!e("./_fails")(function(){return 7!=Object.defineProperty(e("./_dom-create")("div"),"a",{get:function(){return 7}}).a})},{"./_descriptors":90,"./_dom-create":91,"./_fails":95}],102:[function(e,t,r){t.exports=function(e,t,r){var n=void 0===r;switch(t.length){case 0:return n?e():e.call(r);case 1:return n?e(t[0]):e.call(r,t[0]);case 2:return n?e(t[0],t[1]):e.call(r,t[0],t[1]);case 3:return n?e(t[0],t[1],t[2]):e.call(r,t[0],t[1],t[2]);case 4:return n?e(t[0],t[1],t[2],t[3]):e.call(r,t[0],t[1],t[2],t[3])}return e.apply(r,t)}},{}],103:[function(e,t,r){var n=e("./_cof");t.exports=Object("z").propertyIsEnumerable(0)?Object:function(e){return"String"==n(e)?e.split(""):Object(e)}},{"./_cof":83}],104:[function(e,t,r){var n=e("./_iterators"),a=e("./_wks")("iterator"),i=Array.prototype;t.exports=function(e){return void 0!==e&&(n.Array===e||i[a]===e)}},{"./_iterators":113,"./_wks":158}],105:[function(e,t,r){var n=e("./_cof");t.exports=Array.isArray||function(e){return"Array"==n(e)}},{"./_cof":83}],106:[function(e,t,r){var n=e("./_is-object"),a=Math.floor;t.exports=function(e){return!n(e)&&isFinite(e)&&a(e)===e}},{"./_is-object":107}],107:[function(e,t,r){t.exports=function(e){return"object"==typeof e?null!==e:"function"==typeof e}},{}],108:[function(e,t,r){var n=e("./_an-object");t.exports=function(e,t,r,a){try{return a?t(n(r)[0],r[1]):t(r)}catch(s){var i=e.return;throw void 0!==i&&n(i.call(e)),s}}},{"./_an-object":77}],109:[function(e,t,r){"use strict";var n=e("./_object-create"),a=e("./_property-desc"),i=e("./_set-to-string-tag"),s={};e("./_hide")(s,e("./_wks")("iterator"),function(){return this}),t.exports=function(e,t,r){e.prototype=n(s,{next:a(1,r)}),i(e,t+" Iterator")}},{"./_hide":99,"./_object-create":119,"./_property-desc":135,"./_set-to-string-tag":142,"./_wks":158}],110:[function(e,t,r){"use strict";var n=e("./_library"),a=e("./_export"),i=e("./_redefine"),s=e("./_hide"),o=e("./_has"),u=e("./_iterators"),c=e("./_iter-create"),f=e("./_set-to-string-tag"),d=e("./_object-gpo"),l=e("./_wks")("iterator"),h=!([].keys&&"next"in[].keys()),p=function(){return this};t.exports=function(e,t,r,b,y,m,v){c(r,t,b);var g,_,w,k=function(e){if(!h&&e in E)return E[e];switch(e){case"keys":case"values":return function(){return new r(this,e)}}return function(){return new r(this,e)}},x=t+" Iterator",A="values"==y,S=!1,E=e.prototype,j=E[l]||E["@@iterator"]||y&&E[y],M=!h&&j||k(y),P=y?A?k("entries"):M:void 0,C="Array"==t&&E.entries||j;if(C&&(w=d(C.call(new e)))!==Object.prototype&&w.next&&(f(w,x,!0),n||o(w,l)||s(w,l,p)),A&&j&&"values"!==j.name&&(S=!0,M=function(){return j.call(this)}),n&&!v||!h&&!S&&E[l]||s(E,l,M),u[t]=M,u[x]=p,y)if(g={values:A?M:k("values"),keys:m?M:k("keys"),entries:P},v)for(_ in g)_ in E||i(E,_,g[_]);else a(a.P+a.F*(h||S),t,g);return g}},{"./_export":94,"./_has":98,"./_hide":99,"./_iter-create":109,"./_iterators":113,"./_library":114,"./_object-gpo":126,"./_redefine":137,"./_set-to-string-tag":142,"./_wks":158}],111:[function(e,t,r){var n=e("./_wks")("iterator"),a=!1;try{var i=[7][n]();i.return=function(){a=!0},Array.from(i,function(){throw 2})}catch(s){}t.exports=function(e,t){if(!t&&!a)return!1;var r=!1;try{var i=[7],o=i[n]();o.next=function(){return{done:r=!0}},i[n]=function(){return o},e(i)}catch(s){}return r}},{"./_wks":158}],112:[function(e,t,r){t.exports=function(e,t){return{value:t,done:!!e}}},{}],113:[function(e,t,r){t.exports={}},{}],114:[function(e,t,r){t.exports=!0},{}],115:[function(e,t,r){var n=e("./_uid")("meta"),a=e("./_is-object"),i=e("./_has"),s=e("./_object-dp").f,o=0,u=Object.isExtensible||function(){return!0},c=!e("./_fails")(function(){return u(Object.preventExtensions({}))}),f=function(e){s(e,n,{value:{i:"O"+ ++o,w:{}}})},d=t.exports={KEY:n,NEED:!1,fastKey:function(e,t){if(!a(e))return"symbol"==typeof e?e:("string"==typeof e?"S":"P")+e;if(!i(e,n)){if(!u(e))return"F";if(!t)return"E";f(e)}return e[n].i},getWeak:function(e,t){if(!i(e,n)){if(!u(e))return!0;if(!t)return!1;f(e)}return e[n].w},onFreeze:function(e){return c&&d.NEED&&u(e)&&!i(e,n)&&f(e),e}}},{"./_fails":95,"./_has":98,"./_is-object":107,"./_object-dp":120,"./_uid":154}],116:[function(e,t,r){var n=e("./_global"),a=e("./_task").set,i=n.MutationObserver||n.WebKitMutationObserver,s=n.process,o=n.Promise,u="process"==e("./_cof")(s);t.exports=function(){var e,t,r,c=function(){var n,a;for(u&&(n=s.domain)&&n.exit();e;){a=e.fn,e=e.next;try{a()}catch(i){throw e?r():t=void 0,i}}t=void 0,n&&n.enter()};if(u)r=function(){s.nextTick(c)};else if(!i||n.navigator&&n.navigator.standalone)if(o&&o.resolve){var f=o.resolve();r=function(){f.then(c)}}else r=function(){a.call(n,c)};else{var d=!0,l=document.createTextNode("");new i(c).observe(l,{characterData:!0}),r=function(){l.data=d=!d}}return function(n){var a={fn:n,next:void 0};t&&(t.next=a),e||(e=a,r()),t=a}}},{"./_cof":83,"./_global":97,"./_task":147}],117:[function(e,t,r){"use strict";var n=e("./_a-function");function a(e){var t,r;this.promise=new e(function(e,n){if(void 0!==t||void 0!==r)throw TypeError("Bad Promise constructor");t=e,r=n}),this.resolve=n(t),this.reject=n(r)}t.exports.f=function(e){return new a(e)}},{"./_a-function":74}],118:[function(e,t,r){"use strict";var n=e("./_object-keys"),a=e("./_object-gops"),i=e("./_object-pie"),s=e("./_to-object"),o=e("./_iobject"),u=Object.assign;t.exports=!u||e("./_fails")(function(){var e={},t={},r=Symbol(),n="abcdefghijklmnopqrst";return e[r]=7,n.split("").forEach(function(e){t[e]=e}),7!=u({},e)[r]||Object.keys(u({},t)).join("")!=n})?function(e,t){for(var r=s(e),u=arguments.length,c=1,f=a.f,d=i.f;u>c;)for(var l,h=o(arguments[c++]),p=f?n(h).concat(f(h)):n(h),b=p.length,y=0;b>y;)d.call(h,l=p[y++])&&(r[l]=h[l]);return r}:u},{"./_fails":95,"./_iobject":103,"./_object-gops":125,"./_object-keys":128,"./_object-pie":129,"./_to-object":152}],119:[function(e,t,r){var n=e("./_an-object"),a=e("./_object-dps"),i=e("./_enum-bug-keys"),s=e("./_shared-key")("IE_PROTO"),o=function(){},u=function(){var t,r=e("./_dom-create")("iframe"),n=i.length;for(r.style.display="none",e("./_html").appendChild(r),r.src="javascript:",(t=r.contentWindow.document).open(),t.write("