@cello-protocol/daemon 0.0.3 → 0.0.4

package/dist/session-relay-client.js

@@ -0,0 +1,520 @@
+/**
+ * M7 DOD-SPINE-6 / MSG-001-3b — daemon-side relay witness client (PER AGENT).
+ *
+ * In CELLO the relay is the ordering/witness authority (Structure 2): it never sees
+ * plaintext (content is peer↔peer), only the SIGNED content-hash leaves. It assigns
+ * the canonical `sequence_number` and forwards each witnessed leaf to the counterparty
+ * (`leaf_deliver`). A `cello_send` whose hash the relay never witnessed has no canonical
+ * sequence and is not a complete CELLO message — so the session submits the message leaf
+ * hash here, in parallel with the direct content delivery.
+ *
+ * ONE stream per AGENT, not per session. The relay authenticates a stream by the agent's
+ * K_local pubkey and keys its delivery/queue maps by that pubkey (relay-node
+ * #handleRelayStream / #processHashSubmit), so a second stream for the same pubkey would
+ * OVERWRITE the first's delivery stream and steal its queued `leaf_deliver`s. The protocol
+ * is designed for one relay connection per agent identity multiplexing all that agent's
+ * sessions — every wire frame carries `session_id`. So this client is shared across an
+ * agent's sessions: submits are globally FIFO-serialized on the stream (a `hash_submit_ack`
+ * carries NO session_id, so at most one submit may be outstanding at a time and acks match
+ * the queue head in order), while inbound `leaf_deliver` (which DOES carry `session_id`) is
+ * routed to the owning session's handler.
+ *
+ * The stream is (re)dialed from whatever live session node is current at submit time, so it
+ * survives individual session teardown (the relay treats a same-pubkey reconnect as a
+ * reconnect, re-auths, and re-drains). Reuses only proven wire shapes:
+ *   - auth: mirror of the retired client's relay challenge-response (proven against this relay)
+ *   - Structure 1 + hash_submit: mirror of the retired client's seal-leaf submit path
+ *   - server contract: `packages/relay/src/relay-node.ts`
+ *
+ * Crypto: Ed25519 RFC 8032. Relay auth domain: "CELLO-RELAY-AUTH-v1".
+ */
+import { createHash } from "node:crypto";
+import * as lp from "it-length-prefixed";
+import { Encoder, decode } from "cbor-x";
+const CBOR_ENC = new Encoder({ tagUint8Array: false });
+export const RELAY_PROTOCOL_ID = "/cello/relay/1.0.0";
+export const RELAY_AUTH_DOMAIN = "CELLO-RELAY-AUTH-v1";
+/** Structure 1 leaf kind: 0x00 = message, 0x02 = control (matches the relay). */
+export const LEAF_KIND_MSG = 0x00;
+/** Control leaf (SEAL etc.) — two distinct-sender ctrl leaves trigger directory notarization. */
+export const LEAF_KIND_CTRL = 0x02;
+const RELAY_AUTH_TIMEOUT_MS = 5_000;
+const HASH_SUBMIT_TIMEOUT_MS = 10_000;
+/**
+ * The Ed25519-signed payload that proves K_local ownership to the relay:
+ * SHA-256("CELLO-RELAY-AUTH-v1" || nonce || pubkey). The relay verifies the
+ * signature against exactly this hash (relay-node #handleRelayStream).
+ */
+export function buildRelayAuthPayload(nonce, pubkey) {
+    const domain = Buffer.from(RELAY_AUTH_DOMAIN, "utf8");
+    const authMsg = Buffer.concat([domain, nonce, pubkey]);
+    return new Uint8Array(createHash("sha256").update(authMsg).digest());
+}
+/**
+ * Canonical Structure 1 CBOR the sender signs and the relay re-verifies byte-for-byte:
+ * [1, content_hash(32), sender_pubkey(32), session_id(16), last_seen_seq, timestamp].
+ * The relay decodes this (decodeStructure1) AND verifies Ed25519 over these EXACT bytes,
+ * so the encoded bytes — not a re-encoding — are what gets signed and sent.
+ */
+export function encodeStructure1(contentHash, senderPubkey, sessionId, lastSeenSeq, timestamp) {
+    return CBOR_ENC.encode([1, contentHash, senderPubkey, sessionId, lastSeenSeq, timestamp]);
+}
+/**
+ * Extract a real message from a thrown value. libp2p / cross-package errors are not
+ * always `instanceof Error` in this realm (multi-version split), so fall back to a
+ * `message` property or JSON — never the useless "[object Object]".
+ */
+export function extractErrorMessage(err) {
+    if (err instanceof Error)
+        return err.message;
+    if (err && typeof err === "object" && typeof err.message === "string") {
+        return err.message;
+    }
+    try {
+        return JSON.stringify(err);
+    }
+    catch {
+        return String(err);
+    }
+}
+function toU8(v) {
+    if (v instanceof Uint8Array)
+        return v;
+    if (Buffer.isBuffer(v))
+        return new Uint8Array(v);
+    if (v && typeof v.subarray === "function") {
+        return v.subarray();
+    }
+    if (v && typeof v.slice === "function") {
+        return v.slice();
+    }
+    return new Uint8Array();
+}
+async function nextWithTimeout(iter, ms) {
+    let timer;
+    const timeout = new Promise((resolve) => {
+        timer = setTimeout(() => resolve({ value: undefined, done: true }), ms);
+    });
+    try {
+        const result = (await Promise.race([iter.next(), timeout]));
+        return { value: result.value, done: !!result.done };
+    }
+    finally {
+        clearTimeout(timer);
+    }
+}
+/**
+ * Per-AGENT relay witness client. Shared across all of an agent's sessions; one
+ * authenticated stream at a time (the relay keys by agent pubkey). Submits are FIFO and
+ * single-in-flight on the stream; `leaf_deliver` is routed by session_id.
+ */
+export class AgentRelayClient {
+    #relayPeerId;
+    #relayAddrs;
+    #keyProvider;
+    #senderPubkey;
+    #logger;
+    #stream = null;
+    #connecting = null;
+    #closed = false;
+    /**
+     * PER-SESSION highest relay-assigned sequence (session_id hex → seq). The relay's
+     * `seq_counter` is per session, and it rejects `last_seen_seq > seq_counter`, so each
+     * session's submit MUST carry that session's own high-water mark — NOT an agent-global
+     * one (which would make a newer session's first submit look ahead and get rejected).
+     */
+    #lastSeen = new Map();
+    /** The one outstanding submit's resolver (global FIFO — ack carries no session_id). */
+    #pendingAck = null;
+    // DOD-MSG-4: the sender-signed structure1_cbor of the in-flight submit, paired with its ack so the
+    // SubmitResult can carry it (the ack itself only returns the relay's structure2_cbor).
+    #pendingStructure1 = null;
+    /** The session_id hex of the in-flight submit, so its ack updates the right #lastSeen. */
+    #pendingAckSessionHex = null;
+    /** Serializes submits so only one is in flight at a time across all sessions. */
+    #submitChain = Promise.resolve();
+    /** session_id hex → { the live node to (re)dial from, inbound leaf handler }. */
+    #sessions = new Map();
+    constructor(opts) {
+        this.#relayPeerId = opts.relayPeerId;
+        this.#relayAddrs = opts.relayAddrs;
+        this.#keyProvider = opts.keyProvider;
+        this.#senderPubkey = opts.senderPubkey;
+        this.#logger = opts.logger;
+    }
+    /** The agent's K_local public key as hex — the responder identity for auto-acknowledge (UPGRADE-002). */
+    get senderPubkeyHex() {
+        return Buffer.from(this.#senderPubkey).toString("hex");
+    }
+    /**
+     * Register a session's inbound leaf handler + a live node to (re)dial the relay from
+     * (idempotent). Storing the node per session lets a pure-receiver session re-establish
+     * the shared stream if the node that originally dialed is torn down (L5).
+     */
+    registerSession(sessionIdHex, node, onLeafDeliver) {
+        this.#sessions.set(sessionIdHex, { node, onLeafDeliver: onLeafDeliver ?? (() => { }) });
+    }
+    /** Remove a session; caller closes the client when no sessions remain. */
+    unregisterSession(sessionIdHex) {
+        this.#sessions.delete(sessionIdHex);
+        this.#lastSeen.delete(sessionIdHex);
+    }
+    hasSessions() {
+        return this.#sessions.size > 0;
+    }
+    /** Settle the one outstanding submit (if any) exactly once. */
+    #settlePending(r) {
+        const resolve = this.#pendingAck;
+        this.#pendingAck = null;
+        this.#pendingAckSessionHex = null;
+        this.#pendingStructure1 = null;
+        if (resolve)
+            resolve(r);
+    }
+    /**
+     * Tear down the current stream (drops it so the next submit re-dials). Used on a submit
+     * timeout: because `hash_submit_ack` carries no session_id, ack↔submit matching is purely
+     * FIFO, so a LATE ack from a timed-out submit would settle the NEXT submit's resolver and
+     * shift every subsequent ack by one. Resetting the stream prevents that desync (the relay
+     * re-auths + re-drains on the reconnect).
+     */
+    #resetStream() {
+        const stream = this.#stream;
+        this.#stream = null;
+        if (stream) {
+            try {
+                void stream.close();
+            }
+            catch { /* best-effort */ }
+        }
+    }
+    #bumpLastSeen(sessionIdHex, seq) {
+        if (seq < 0)
+            return;
+        const prev = this.#lastSeen.get(sessionIdHex) ?? 0;
+        if (seq > prev)
+            this.#lastSeen.set(sessionIdHex, seq);
+    }
+    /** True if this Structure-1 leaf was authored by US (sender_pubkey === our K_local). */
+    #isOwnLeaf(structure1Cbor) {
+        try {
+            const arr = decode(structure1Cbor);
+            // Structure 1 = [1, content_hash, sender_pubkey, session_id, last_seen_seq, ts].
+            const senderPubkey = toU8(arr[2]);
+            return Buffer.from(senderPubkey).equals(Buffer.from(this.#senderPubkey));
+        }
+        catch {
+            // Undecodable → treat as NOT ours (conservative: don't suppress a real counterparty leaf).
+            return false;
+        }
+    }
+    #dispatch(frame) {
+        const type = frame["type"];
+        if (type === "hash_submit_ack") {
+            const seq = typeof frame["sequence_number"] === "number" ? frame["sequence_number"] : -1;
+            // DO NOT advance #lastSeen here: the ack is for OUR OWN leaf. last_seen_seq must track
+            // the highest COUNTERPARTY sequence we've observed (the directory's causal check —
+            // SESSION-003 SI-003 — rejects a leaf whose last_seen_seq exceeds the max sequence of
+            // OTHER-sender leaves before it). Advancing on our own ack would inflate it and trip
+            // causal_chain_violated on a subsequent submit (e.g. the SEAL leaf after a sent message).
+            // DOD-MSG-4: pair the relay's committed structure2_cbor with our in-flight structure1_cbor so
+            // the SubmitResult carries the full signed ordering record for the self-ordering content frame.
+            // Captured BEFORE #settlePending clears #pendingStructure1.
+            const s2 = frame["structure2_cbor"];
+            const structure2Cbor = s2 instanceof Uint8Array ? s2 : undefined;
+            const structure1Cbor = this.#pendingStructure1 ?? undefined;
+            this.#settlePending(seq >= 0
+                ? { ok: true, sequence_number: seq, structure1_cbor: structure1Cbor, structure2_cbor: structure2Cbor }
+                : { ok: false, reason: "relay_ack_malformed" });
+        }
+        else if (type === "hash_submit_error") {
+            const reason = typeof frame["reason"] === "string" ? frame["reason"] : "relay_rejected";
+            this.#settlePending({ ok: false, reason });
+        }
+        else if (type === "leaf_deliver") {
+            const seq = typeof frame["sequence_number"] === "number" ? frame["sequence_number"] : -1;
+            const sidHex = Buffer.from(toU8(frame["session_id"])).toString("hex");
+            const s1 = toU8(frame["structure1_cbor"]);
+            // Advance last_seen_seq ONLY for a COUNTERPARTY leaf. The relay also echoes our OWN
+            // leaf back as a leaf_deliver — that must NOT advance it (same reason as the ack above).
+            const authoredByUs = this.#isOwnLeaf(s1);
+            if (seq >= 0 && !authoredByUs)
+                this.#bumpLastSeen(sidHex, seq);
+            const session = this.#sessions.get(sidHex);
+            if (session && seq >= 0) {
+                session.onLeafDeliver({
+                    sequence_number: seq,
+                    leaf_kind: typeof frame["leaf_kind"] === "number" ? frame["leaf_kind"] : LEAF_KIND_MSG,
+                    structure1_cbor: s1,
+                    structure2_cbor: toU8(frame["structure2_cbor"]),
+                    // M7-UPGRADE-002: tell the consumer whether this is our own echoed leaf (so the
+                    // auto-acknowledge gate never co-signs in response to its own SEAL ctrl leaf).
+                    authored_by_us: authoredByUs,
+                });
+            }
+        }
+        // session_interrupted / content_park_notify are out of scope here — session interruption
+        // is handled by the session node manager's dedicated relay-stream watcher.
+    }
+    /**
+     * Proactively establish the authenticated stream from `node`. The RECEIVER must connect
+     * before the counterparty submits, so the relay has its stream to deliver `leaf_deliver`
+     * to (otherwise the relay queues until the recipient connects). Best-effort.
+     */
+    async connect(node) {
+        return this.#ensureConnected(node);
+    }
+    /** Ensure an authenticated stream exists, (re)dialing from `node` if needed. */
+    async #ensureConnected(node) {
+        if (this.#closed)
+            return false;
+        if (this.#stream)
+            return true;
+        if (this.#connecting)
+            return this.#connecting;
+        this.#connecting = this.#connect(node).finally(() => { this.#connecting = null; });
+        return this.#connecting;
+    }
+    async #connect(node) {
+        // Best-effort dial: newStream auto-dials a known peer, but the relay's addrs may not
+        // be in the peerstore yet, so dial each addr first. One success is enough.
+        let dialed = false;
+        let lastDialError = "";
+        for (const addr of this.#relayAddrs) {
+            try {
+                await node.dial(addr);
+                dialed = true;
+                break;
+            }
+            catch (err) {
+                lastDialError = extractErrorMessage(err);
+            }
+        }
+        if (!dialed && this.#relayAddrs.length > 0) {
+            this.#logger.warn("session.relay.dial.failed", {
+                relayPeerId: this.#relayPeerId,
+                relayAddrs: this.#relayAddrs,
+                error: lastDialError,
+            });
+            return false;
+        }
+        let stream;
+        try {
+            stream = await node.newStream(this.#relayPeerId, RELAY_PROTOCOL_ID);
+        }
+        catch (err) {
+            this.#logger.warn("session.relay.stream.failed", { relayPeerId: this.#relayPeerId, error: extractErrorMessage(err) });
+            return false;
+        }
+        // ONE shared lp.decode iterator for the whole stream lifetime — splitting it signals
+        // EOF to the relay's single-iterator reader and breaks subsequent reads.
+        const iter = lp.decode(stream)[Symbol.asyncIterator]();
+        if (!(await this.#authenticate(stream, iter)))
+            return false;
+        this.#stream = stream;
+        this.#logger.info("session.relay.connected", { relayPeerId: this.#relayPeerId });
+        this.#startReader(stream, iter);
+        return true;
+    }
+    async #authenticate(stream, iter) {
+        const challengeRes = await nextWithTimeout(iter, RELAY_AUTH_TIMEOUT_MS);
+        if (challengeRes.done || challengeRes.value === undefined) {
+            this.#logger.warn("session.relay.auth.failed", { relayPeerId: this.#relayPeerId, reason: "no_challenge" });
+            return false;
+        }
+        let challenge;
+        try {
+            challenge = decode(toU8(challengeRes.value));
+        }
+        catch {
+            this.#logger.warn("session.relay.auth.failed", { relayPeerId: this.#relayPeerId, reason: "challenge_decode" });
+            return false;
+        }
+        if (challenge["type"] !== "relay_auth_challenge") {
+            this.#logger.warn("session.relay.auth.failed", { relayPeerId: this.#relayPeerId, reason: "not_challenge" });
+            return false;
+        }
+        const nonce = toU8(challenge["nonce"]);
+        if (nonce.length !== 32) {
+            this.#logger.warn("session.relay.auth.failed", { relayPeerId: this.#relayPeerId, reason: "bad_nonce" });
+            return false;
+        }
+        const authSig = await this.#keyProvider.sign(buildRelayAuthPayload(nonce, this.#senderPubkey));
+        try {
+            stream.send(lp.encode.single(CBOR_ENC.encode({ type: "relay_auth_response", pubkey: this.#senderPubkey, signature: authSig })));
+        }
+        catch (err) {
+            this.#logger.warn("session.relay.auth.failed", { relayPeerId: this.#relayPeerId, reason: "response_send", error: extractErrorMessage(err) });
+            return false;
+        }
+        const ackRes = await nextWithTimeout(iter, RELAY_AUTH_TIMEOUT_MS);
+        if (ackRes.done || ackRes.value === undefined) {
+            this.#logger.warn("session.relay.auth.failed", { relayPeerId: this.#relayPeerId, reason: "no_auth_ok" });
+            return false;
+        }
+        let ackFrame;
+        try {
+            ackFrame = decode(toU8(ackRes.value));
+        }
+        catch {
+            this.#logger.warn("session.relay.auth.failed", { relayPeerId: this.#relayPeerId, reason: "auth_ok_decode" });
+            return false;
+        }
+        if (ackFrame["type"] !== "relay_auth_ok") {
+            this.#logger.warn("session.relay.auth.failed", {
+                relayPeerId: this.#relayPeerId,
+                reason: ackFrame["type"] === "relay_auth_failed" ? "auth_rejected" : "unexpected_frame",
+            });
+            return false;
+        }
+        return true;
+    }
+    #startReader(stream, iter) {
+        void (async () => {
+            try {
+                while (!this.#closed && this.#stream === stream) {
+                    const res = await iter.next();
+                    if (res.done || res.value === undefined)
+                        break;
+                    // The await above can suspend across a #resetStream() (timeout) that supersedes this
+                    // stream. Re-check identity before dispatching so a late frame from a stale stream
+                    // (e.g. a buffered ack for a timed-out submit) can't bump/settle the wrong session.
+                    if (this.#stream !== stream)
+                        break;
+                    let frame;
+                    try {
+                        frame = decode(toU8(res.value));
+                    }
+                    catch {
+                        continue;
+                    }
+                    this.#dispatch(frame);
+                }
+            }
+            catch (err) {
+                this.#logger.debug?.("session.relay.reader.ended", { relayPeerId: this.#relayPeerId, error: extractErrorMessage(err) });
+            }
+            finally {
+                // Stream gone — clear it so the next submit re-dials, and fail any in-flight submit.
+                if (this.#stream === stream)
+                    this.#stream = null;
+                this.#settlePending({ ok: false, reason: "relay_stream_closed" });
+                // L5: a pure-receiver session issues no submit, so it would never trigger a re-dial
+                // after the node that owned the stream is torn down. If sessions remain, proactively
+                // re-establish from any still-live registered session node so queued leaf_delivers
+                // are drained (the relay queues by pubkey and re-delivers on reconnect).
+                if (!this.#closed && this.#sessions.size > 0) {
+                    void this.#reconnectFromAnySession();
+                }
+            }
+        })();
+    }
+    /** Re-establish the shared stream from any registered session's node (first that dials). */
+    async #reconnectFromAnySession() {
+        if (this.#closed || this.#stream)
+            return;
+        for (const { node } of this.#sessions.values()) {
+            if (await this.#ensureConnected(node))
+                return;
+        }
+    }
+    /**
+     * Submit a session's MESSAGE-leaf (0x00) hash to the relay. Connects/re-connects from
+     * `node` if needed. Globally FIFO across the agent's sessions (the ack has no session_id).
+     */
+    async submitMessageHash(node, sessionId, contentHash) {
+        return this.submitLeaf(node, sessionId, contentHash, LEAF_KIND_MSG);
+    }
+    /**
+     * Submit a leaf hash of a given kind (0x00 message / 0x02 control) to the relay. The SEAL
+     * ctrl leaf (DOD-SPINE-7) rides this path: two distinct-sender ctrl leaves in the relay's
+     * log trigger the directory's FROST notarization (relay `#maybeProcessSeal`).
+     */
+    async submitLeaf(node, sessionId, contentHash, leafKind) {
+        // Chain on the prior submit so only one is outstanding at a time (FIFO). The ack
+        // carries no session_id, so concurrent submits on one stream would be ambiguous.
+        const run = this.#submitChain.then(() => this.#doSubmit(node, sessionId, contentHash, leafKind));
+        // Keep the chain alive regardless of this submit's outcome.
+        this.#submitChain = run.then(() => undefined, () => undefined);
+        return run;
+    }
+    async #doSubmit(node, sessionId, contentHash, leafKind) {
+        if (this.#closed)
+            return { ok: false, reason: "relay_client_closed" };
+        if (!(await this.#ensureConnected(node)))
+            return { ok: false, reason: "relay_unavailable" };
+        const stream = this.#stream;
+        if (!stream)
+            return { ok: false, reason: "relay_unavailable" };
+        const sessionIdHex = Buffer.from(sessionId).toString("hex");
+        // This session's OWN high-water mark (NOT an agent-global one) — the relay's seq_counter
+        // is per session and rejects last_seen_seq > seq_counter.
+        const lastSeenForSession = this.#lastSeen.get(sessionIdHex) ?? 0;
+        const structure1 = encodeStructure1(contentHash, this.#senderPubkey, sessionId, lastSeenForSession, Date.now());
+        const signature = await this.#keyProvider.sign(structure1);
+        const frame = CBOR_ENC.encode({
+            type: "hash_submit",
+            session_id: sessionId,
+            leaf_kind: leafKind,
+            structure1_cbor: structure1,
+            sender_signature: signature,
+        });
+        // Set the resolver synchronously (no await between the in-flight check and the set):
+        // the submit chain guarantees no other submit runs concurrently, so #pendingAck is null.
+        let resolveAck;
+        const ackPromise = new Promise((r) => { resolveAck = r; });
+        this.#pendingAck = resolveAck;
+        this.#pendingAckSessionHex = sessionIdHex;
+        // DOD-MSG-4: remember this submit's sender-signed structure1_cbor so its ack can return the full
+        // ordering record (the ack itself carries only the relay's structure2_cbor).
+        this.#pendingStructure1 = structure1;
+        try {
+            stream.send(lp.encode.single(frame));
+        }
+        catch (err) {
+            if (this.#pendingAck === resolveAck) {
+                this.#pendingAck = null;
+                this.#pendingAckSessionHex = null;
+                this.#pendingStructure1 = null;
+            }
+            this.#logger.warn("session.relay.submit.send.failed", { relayPeerId: this.#relayPeerId, error: extractErrorMessage(err) });
+            return { ok: false, reason: "relay_submit_send_failed" };
+        }
+        let timer;
+        const timeout = new Promise((r) => {
+            timer = setTimeout(() => r({ ok: false, reason: "relay_submit_timeout" }), HASH_SUBMIT_TIMEOUT_MS);
+        });
+        try {
+            const result = await Promise.race([ackPromise, timeout]);
+            // On timeout, reset the stream so a late ack can't settle a LATER submit (FIFO desync).
+            if (!result.ok && result.reason === "relay_submit_timeout")
+                this.#resetStream();
+            return result;
+        }
+        finally {
+            clearTimeout(timer);
+            if (this.#pendingAck === resolveAck) {
+                this.#pendingAck = null;
+                this.#pendingAckSessionHex = null;
+                this.#pendingStructure1 = null;
+            }
+        }
+    }
+    /** The highest relay-assigned sequence observed for a given session (ack or deliver). */
+    lastSeenSeq(sessionIdHex) {
+        return this.#lastSeen.get(sessionIdHex) ?? 0;
+    }
+    close() {
+        this.#closed = true;
+        this.#settlePending({ ok: false, reason: "relay_client_closed" });
+        const stream = this.#stream;
+        this.#stream = null;
+        if (stream) {
+            try {
+                void stream.close();
+            }
+            catch { /* best-effort */ }
+        }
+    }
+}
+//# sourceMappingURL=session-relay-client.js.map

package/dist/session-relay-client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"session-relay-client.js","sourceRoot":"","sources":["../src/session-relay-client.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA6BG;AACH,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,KAAK,EAAE,MAAM,oBAAoB,CAAC;AACzC,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAMzC,MAAM,QAAQ,GAAG,IAAI,OAAO,CAAC,EAAE,aAAa,EAAE,KAAK,EAAE,CAAC,CAAC;AAEvD,MAAM,CAAC,MAAM,iBAAiB,GAAG,oBAAoB,CAAC;AACtD,MAAM,CAAC,MAAM,iBAAiB,GAAG,qBAAqB,CAAC;AACvD,iFAAiF;AACjF,MAAM,CAAC,MAAM,aAAa,GAAG,IAAI,CAAC;AAClC,iGAAiG;AACjG,MAAM,CAAC,MAAM,cAAc,GAAG,IAAI,CAAC;AAEnC,MAAM,qBAAqB,GAAG,KAAK,CAAC;AACpC,MAAM,sBAAsB,GAAG,MAAM,CAAC;AAEtC;;;;GAIG;AACH,MAAM,UAAU,qBAAqB,CAAC,KAAiB,EAAE,MAAkB;IACzE,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,iBAAiB,EAAE,MAAM,CAAC,CAAC;IACtD,MAAM,OAAO,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,MAAM,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC;IACvD,OAAO,IAAI,UAAU,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC;AACvE,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,gBAAgB,CAC9B,WAAuB,EACvB,YAAwB,EACxB,SAAqB,EACrB,WAAmB,EACnB,SAAiB;IAEjB,OAAO,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,YAAY,EAAE,SAAS,EAAE,WAAW,EAAE,SAAS,CAAC,CAAe,CAAC;AAC1G,CAAC;AAyCD;;;;GAIG;AACH,MAAM,UAAU,mBAAmB,CAAC,GAAY;IAC9C,IAAI,GAAG,YAAY,KAAK;QAAE,OAAO,GAAG,CAAC,OAAO,CAAC;IAC7C,IAAI,GAAG,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,OAAQ,GAA6B,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;QACjG,OAAQ,GAA2B,CAAC,OAAO,CAAC;IAC9C,CAAC;IACD,IAAI,CAAC;QACH,OAAO,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;IAC7B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,MAAM,CAAC,GAAG,CAAC,CAAC;IACrB,CAAC;AACH,CAAC;AAED,SAAS,IAAI,CAAC,CAAU;IACtB,IAAI,CAAC,YAAY,UAAU;QAAE,OAAO,CAAC,CAAC;IACtC,IAAI,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC;QAAE,OAAO,IAAI,UAAU,CAAC,CAAW,CAAC,CAAC;IAC3D,IAAI,CAAC,IAAI,OAAQ,CAA4B,CAAC,QAAQ,KAAK,UAAU,EAAE,CAAC;QACtE,OAAQ,CAAgC,CAAC,QAAQ,EAAE,CAAC;IACtD,CAAC;IACD,IAAI,CAAC,IAAI,OAAQ,CAAyB,CAAC,KAAK,KAAK,UAAU,EAAE,CAAC;QAChE,OAAQ,CAA6B,CAAC,KAAK,EAAE,CAAC;IAChD,CAAC;IACD,OAAO,IAAI,UAAU,EAAE,CAAC;AAC1B,CAAC;AAED,KAAK,UAAU,eAAe,CAC5B,IAA+B,EAC/B,EAAU;IAEV,IAAI,KAAqC,CAAC;IAC1C,MAAM,OAAO,GAAG,IAAI,OAAO,CAAmC,CAAC,OAAO,EAAE,EAAE;QACxE,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC;IAC1E,CAAC,CAAC,CAAC;IACH,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,CAAC,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,EAAE,OAAO,CAAC,CAAC,CAA+B,CAAC;QAC1F,OAAO,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;IACtD,CAAC;YAAS,CAAC;QACT,YAAY,CAAC,KAAK,CAAC,CAAC;IACtB,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,MAAM,OAAO,gBAAgB;IAClB,YAAY,CAAS;IACrB,WAAW,CAAW;IACtB,YAAY,CAAc;IAC1B,aAAa,CAAa;IAC1B,OAAO,CAAS;IAEzB,OAAO,GAAkB,IAAI,CAAC;IAC9B,WAAW,GAA4B,IAAI,CAAC;IAC5C,OAAO,GAAG,KAAK,CAAC;IAChB;;;;;OAKG;IACM,SAAS,GAAG,IAAI,GAAG,EAAkB,CAAC;IAC/C,uFAAuF;IACvF,WAAW,GAAuB,IAAI,CAAC;IACvC,mGAAmG;IACnG,uFAAuF;IACvF,kBAAkB,GAAsB,IAAI,CAAC;IAC7C,0FAA0F;IAC1F,qBAAqB,GAAkB,IAAI,CAAC;IAC5C,iFAAiF;IACjF,YAAY,GAAqB,OAAO,CAAC,OAAO,EAAE,CAAC;IACnD,iFAAiF;IACxE,SAAS,GAAG,IAAI,GAAG,EAAiF,CAAC;IAE9G,YAAY,IAA0B;QACpC,IAAI,CAAC,YAAY,GAAG,IAAI,CAAC,WAAW,CAAC;QACrC,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC,UAAU,CAAC;QACnC,IAAI,CAAC,YAAY,GAAG,IAAI,CAAC,WAAW,CAAC;QACrC,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC,YAAY,CAAC;QACvC,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC,MAAM,CAAC;IAC7B,CAAC;IAED,yGAAyG;IACzG,IAAI,eAAe;QACjB,OAAO,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IACzD,CAAC;IAED;;;;OAIG;IACH,eAAe,CAAC,YAAoB,EAAE,IAAe,EAAE,aAAiD;QACtG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,YAAY,EAAE,EAAE,IAAI,EAAE,aAAa,EAAE,aAAa,IAAI,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,EAAE,CAAC,CAAC;IACzF,CAAC;IAED,0EAA0E;IAC1E,iBAAiB,CAAC,YAAoB;QACpC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;QACpC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;IACtC,CAAC;IAED,WAAW;QACT,OAAO,IAAI,CAAC,SAAS,CAAC,IAAI,GAAG,CAAC,CAAC;IACjC,CAAC;IAED,+DAA+D;IAC/D,cAAc,CAAC,CAAe;QAC5B,MAAM,OAAO,GAAuB,IAAI,CAAC,WAAW,CAAC;QACrD,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;QACxB,IAAI,CAAC,qBAAqB,GAAG,IAAI,CAAC;QAClC,IAAI,CAAC,kBAAkB,GAAG,IAAI,CAAC;QAC/B,IAAI,OAAO;YAAE,OAAO,CAAC,CAAC,CAAC,CAAC;IAC1B,CAAC;IAED;;;;;;OAMG;IACH,YAAY;QACV,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC;QAC5B,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC;QACpB,IAAI,MAAM,EAAE,CAAC;YACX,IAAI,CAAC;gBAAC,KAAK,MAAM,CAAC,KAAK,EAAE,CAAC;YAAC,CAAC;YAAC,MAAM,CAAC,CAAC,iBAAiB,CAAC,CAAC;QAC1D,CAAC;IACH,CAAC;IAED,aAAa,CAAC,YAAoB,EAAE,GAAW;QAC7C,IAAI,GAAG,GAAG,CAAC;YAAE,OAAO;QACpB,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;QACnD,IAAI,GAAG,GAAG,IAAI;YAAE,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,YAAY,EAAE,GAAG,CAAC,CAAC;IACxD,CAAC;IAED,wFAAwF;IACxF,UAAU,CAAC,cAA0B;QACnC,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,MAAM,CAAC,cAAc,CAAc,CAAC;YAChD,iFAAiF;YACjF,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;YAClC,OAAO,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC;QAC3E,CAAC;QAAC,MAAM,CAAC;YACP,2FAA2F;YAC3F,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAED,SAAS,CAAC,KAA8B;QACtC,MAAM,IAAI,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC;QAC3B,IAAI,IAAI,KAAK,iBAAiB,EAAE,CAAC;YAC/B,MAAM,GAAG,GAAG,OAAO,KAAK,CAAC,iBAAiB,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YACzF,uFAAuF;YACvF,mFAAmF;YACnF,sFAAsF;YACtF,qFAAqF;YACrF,0FAA0F;YAC1F,8FAA8F;YAC9F,gGAAgG;YAChG,4DAA4D;YAC5D,MAAM,EAAE,GAAG,KAAK,CAAC,iBAAiB,CAAC,CAAC;YACpC,MAAM,cAAc,GAAG,EAAE,YAAY,UAAU,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;YACjE,MAAM,cAAc,GAAG,IAAI,CAAC,kBAAkB,IAAI,SAAS,CAAC;YAC5D,IAAI,CAAC,cAAc,CACjB,GAAG,IAAI,CAAC;gBACN,CAAC,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,eAAe,EAAE,GAAG,EAAE,eAAe,EAAE,cAAc,EAAE,eAAe,EAAE,cAAc,EAAE;gBACtG,CAAC,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,qBAAqB,EAAE,CACjD,CAAC;QACJ,CAAC;aAAM,IAAI,IAAI,KAAK,mBAAmB,EAAE,CAAC;YACxC,MAAM,MAAM,GAAG,OAAO,KAAK,CAAC,QAAQ,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,gBAAgB,CAAC;YACxF,IAAI,CAAC,cAAc,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;QAC7C,CAAC;aAAM,IAAI,IAAI,KAAK,cAAc,EAAE,CAAC;YACnC,MAAM,GAAG,GAAG,OAAO,KAAK,CAAC,iBAAiB,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YACzF,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;YACtE,MAAM,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC;YAC1C,oFAAoF;YACpF,yFAAyF;YACzF,MAAM,YAAY,GAAG,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC;YACzC,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC,YAAY;gBAAE,IAAI,CAAC,aAAa,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;YAC/D,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;YAC3C,IAAI,OAAO,IAAI,GAAG,IAAI,CAAC,EAAE,CAAC;gBACxB,OAAO,CAAC,aAAa,CAAC;oBACpB,eAAe,EAAE,GAAG;oBACpB,SAAS,EAAE,OAAO,KAAK,CAAC,WAAW,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,aAAa;oBACtF,eAAe,EAAE,EAAE;oBACnB,eAAe,EAAE,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC;oBAC/C,gFAAgF;oBAChF,+EAA+E;oBAC/E,cAAc,EAAE,YAAY;iBAC7B,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QACD,yFAAyF;QACzF,2EAA2E;IAC7E,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,OAAO,CAAC,IAAe;QAC3B,OAAO,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,CAAC;IACrC,CAAC;IAED,gFAAgF;IAChF,KAAK,CAAC,gBAAgB,CAAC,IAAe;QACpC,IAAI,IAAI,CAAC,OAAO;YAAE,OAAO,KAAK,CAAC;QAC/B,IAAI,IAAI,CAAC,OAAO;YAAE,OAAO,IAAI,CAAC;QAC9B,IAAI,IAAI,CAAC,WAAW;YAAE,OAAO,IAAI,CAAC,WAAW,CAAC;QAC9C,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;QACnF,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,IAAe;QAC5B,qFAAqF;QACrF,2EAA2E;QAC3E,IAAI,MAAM,GAAG,KAAK,CAAC;QACnB,IAAI,aAAa,GAAG,EAAE,CAAC;QACvB,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YACpC,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;gBACtB,MAAM,GAAG,IAAI,CAAC;gBACd,MAAM;YACR,CAAC;YAAC,OAAO,GAAY,EAAE,CAAC;gBACtB,aAAa,GAAG,mBAAmB,CAAC,GAAG,CAAC,CAAC;YAC3C,CAAC;QACH,CAAC;QACD,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC3C,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,2BAA2B,EAAE;gBAC7C,WAAW,EAAE,IAAI,CAAC,YAAY;gBAC9B,UAAU,EAAE,IAAI,CAAC,WAAW;gBAC5B,KAAK,EAAE,aAAa;aACrB,CAAC,CAAC;YACH,OAAO,KAAK,CAAC;QACf,CAAC;QAED,IAAI,MAAc,CAAC;QACnB,IAAI,CAAC;YACH,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,YAAY,EAAE,iBAAiB,CAAC,CAAC;QACtE,CAAC;QAAC,OAAO,GAAY,EAAE,CAAC;YACtB,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,6BAA6B,EAAE,EAAE,WAAW,EAAE,IAAI,CAAC,YAAY,EAAE,KAAK,EAAE,mBAAmB,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YACtH,OAAO,KAAK,CAAC;QACf,CAAC;QAED,qFAAqF;QACrF,yEAAyE;QACzE,MAAM,IAAI,GAAI,EAAE,CAAC,MAAM,CAAC,MAA8C,CAA4B,CAChG,MAAM,CAAC,aAAa,CACrB,EAA+B,CAAC;QAEjC,IAAI,CAAC,CAAC,MAAM,IAAI,CAAC,aAAa,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;YAAE,OAAO,KAAK,CAAC;QAE5D,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC;QACtB,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,yBAAyB,EAAE,EAAE,WAAW,EAAE,IAAI,CAAC,YAAY,EAAE,CAAC,CAAC;QACjF,IAAI,CAAC,YAAY,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;QAChC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,MAAc,EAAE,IAA+B;QACjE,MAAM,YAAY,GAAG,MAAM,eAAe,CAAC,IAAI,EAAE,qBAAqB,CAAC,CAAC;QACxE,IAAI,YAAY,CAAC,IAAI,IAAI,YAAY,CAAC,KAAK,KAAK,SAAS,EAAE,CAAC;YAC1D,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,2BAA2B,EAAE,EAAE,WAAW,EAAE,IAAI,CAAC,YAAY,EAAE,MAAM,EAAE,cAAc,EAAE,CAAC,CAAC;YAC3G,OAAO,KAAK,CAAC;QACf,CAAC;QACD,IAAI,SAAkC,CAAC;QACvC,IAAI,CAAC;YACH,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,KAAK,CAAC,CAA4B,CAAC;QAC1E,CAAC;QAAC,MAAM,CAAC;YACP,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,2BAA2B,EAAE,EAAE,WAAW,EAAE,IAAI,CAAC,YAAY,EAAE,MAAM,EAAE,kBAAkB,EAAE,CAAC,CAAC;YAC/G,OAAO,KAAK,CAAC;QACf,CAAC;QACD,IAAI,SAAS,CAAC,MAAM,CAAC,KAAK,sBAAsB,EAAE,CAAC;YACjD,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,2BAA2B,EAAE,EAAE,WAAW,EAAE,IAAI,CAAC,YAAY,EAAE,MAAM,EAAE,eAAe,EAAE,CAAC,CAAC;YAC5G,OAAO,KAAK,CAAC;QACf,CAAC;QACD,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC;QACvC,IAAI,KAAK,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;YACxB,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,2BAA2B,EAAE,EAAE,WAAW,EAAE,IAAI,CAAC,YAAY,EAAE,MAAM,EAAE,WAAW,EAAE,CAAC,CAAC;YACxG,OAAO,KAAK,CAAC;QACf,CAAC;QACD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,qBAAqB,CAAC,KAAK,EAAE,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC;QAC/F,IAAI,CAAC;YACH,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,IAAI,EAAE,qBAAqB,EAAE,MAAM,EAAE,IAAI,CAAC,aAAa,EAAE,SAAS,EAAE,OAAO,EAAE,CAAe,CAAC,CAAC,CAAC;QAChJ,CAAC;QAAC,OAAO,GAAY,EAAE,CAAC;YACtB,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,2BAA2B,EAAE,EAAE,WAAW,EAAE,IAAI,CAAC,YAAY,EAAE,MAAM,EAAE,eAAe,EAAE,KAAK,EAAE,mBAAmB,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAC7I,OAAO,KAAK,CAAC;QACf,CAAC;QACD,MAAM,MAAM,GAAG,MAAM,eAAe,CAAC,IAAI,EAAE,qBAAqB,CAAC,CAAC;QAClE,IAAI,MAAM,CAAC,IAAI,IAAI,MAAM,CAAC,KAAK,KAAK,SAAS,EAAE,CAAC;YAC9C,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,2BAA2B,EAAE,EAAE,WAAW,EAAE,IAAI,CAAC,YAAY,EAAE,MAAM,EAAE,YAAY,EAAE,CAAC,CAAC;YACzG,OAAO,KAAK,CAAC;QACf,CAAC;QACD,IAAI,QAAiC,CAAC;QACtC,IAAI,CAAC;YACH,QAAQ,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAA4B,CAAC;QACnE,CAAC;QAAC,MAAM,CAAC;YACP,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,2BAA2B,EAAE,EAAE,WAAW,EAAE,IAAI,CAAC,YAAY,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC,CAAC;YAC7G,OAAO,KAAK,CAAC;QACf,CAAC;QACD,IAAI,QAAQ,CAAC,MAAM,CAAC,KAAK,eAAe,EAAE,CAAC;YACzC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,2BAA2B,EAAE;gBAC7C,WAAW,EAAE,IAAI,CAAC,YAAY;gBAC9B,MAAM,EAAE,QAAQ,CAAC,MAAM,CAAC,KAAK,mBAAmB,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,kBAAkB;aACxF,CAAC,CAAC;YACH,OAAO,KAAK,CAAC;QACf,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAED,YAAY,CAAC,MAAc,EAAE,IAA+B;QAC1D,KAAK,CAAC,KAAK,IAAI,EAAE;YACf,IAAI,CAAC;gBACH,OAAO,CAAC,IAAI,CAAC,OAAO,IAAI,IAAI,CAAC,OAAO,KAAK,MAAM,EAAE,CAAC;oBAChD,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,IAAI,EAAE,CAAC;oBAC9B,IAAI,GAAG,CAAC,IAAI,IAAI,GAAG,CAAC,KAAK,KAAK,SAAS;wBAAE,MAAM;oBAC/C,qFAAqF;oBACrF,mFAAmF;oBACnF,oFAAoF;oBACpF,IAAI,IAAI,CAAC,OAAO,KAAK,MAAM;wBAAE,MAAM;oBACnC,IAAI,KAA8B,CAAC;oBACnC,IAAI,CAAC;wBACH,KAAK,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,CAA4B,CAAC;oBAC7D,CAAC;oBAAC,MAAM,CAAC;wBACP,SAAS;oBACX,CAAC;oBACD,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;gBACxB,CAAC;YACH,CAAC;YAAC,OAAO,GAAY,EAAE,CAAC;gBACtB,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC,4BAA4B,EAAE,EAAE,WAAW,EAAE,IAAI,CAAC,YAAY,EAAE,KAAK,EAAE,mBAAmB,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAC1H,CAAC;oBAAS,CAAC;gBACT,qFAAqF;gBACrF,IAAI,IAAI,CAAC,OAAO,KAAK,MAAM;oBAAE,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC;gBACjD,IAAI,CAAC,cAAc,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,qBAAqB,EAAE,CAAC,CAAC;gBAClE,oFAAoF;gBACpF,qFAAqF;gBACrF,mFAAmF;gBACnF,yEAAyE;gBACzE,IAAI,CAAC,IAAI,CAAC,OAAO,IAAI,IAAI,CAAC,SAAS,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC;oBAC7C,KAAK,IAAI,CAAC,wBAAwB,EAAE,CAAC;gBACvC,CAAC;YACH,CAAC;QACH,CAAC,CAAC,EAAE,CAAC;IACP,CAAC;IAED,4FAA4F;IAC5F,KAAK,CAAC,wBAAwB;QAC5B,IAAI,IAAI,CAAC,OAAO,IAAI,IAAI,CAAC,OAAO;YAAE,OAAO;QACzC,KAAK,MAAM,EAAE,IAAI,EAAE,IAAI,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,EAAE,CAAC;YAC/C,IAAI,MAAM,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC;gBAAE,OAAO;QAChD,CAAC;IACH,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,iBAAiB,CAAC,IAAe,EAAE,SAAqB,EAAE,WAAuB;QACrF,OAAO,IAAI,CAAC,UAAU,CAAC,IAAI,EAAE,SAAS,EAAE,WAAW,EAAE,aAAa,CAAC,CAAC;IACtE,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,UAAU,CAAC,IAAe,EAAE,SAAqB,EAAE,WAAuB,EAAE,QAAgB;QAChG,iFAAiF;QACjF,iFAAiF;QACjF,MAAM,GAAG,GAAG,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,SAAS,EAAE,WAAW,EAAE,QAAQ,CAAC,CAAC,CAAC;QACjG,4DAA4D;QAC5D,IAAI,CAAC,YAAY,GAAG,GAAG,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,SAAS,EAAE,GAAG,EAAE,CAAC,SAAS,CAAC,CAAC;QAC/D,OAAO,GAAG,CAAC;IACb,CAAC;IAED,KAAK,CAAC,SAAS,CAAC,IAAe,EAAE,SAAqB,EAAE,WAAuB,EAAE,QAAgB;QAC/F,IAAI,IAAI,CAAC,OAAO;YAAE,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,qBAAqB,EAAE,CAAC;QACtE,IAAI,CAAC,CAAC,MAAM,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,CAAC;YAAE,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,mBAAmB,EAAE,CAAC;QAC5F,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC;QAC5B,IAAI,CAAC,MAAM;YAAE,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,mBAAmB,EAAE,CAAC;QAE/D,MAAM,YAAY,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QAC5D,yFAAyF;QACzF,0DAA0D;QAC1D,MAAM,kBAAkB,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;QACjE,MAAM,UAAU,GAAG,gBAAgB,CAAC,WAAW,EAAE,IAAI,CAAC,aAAa,EAAE,SAAS,EAAE,kBAAkB,EAAE,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;QAChH,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QAC3D,MAAM,KAAK,GAAG,QAAQ,CAAC,MAAM,CAAC;YAC5B,IAAI,EAAE,aAAa;YACnB,UAAU,EAAE,SAAS;YACrB,SAAS,EAAE,QAAQ;YACnB,eAAe,EAAE,UAAU;YAC3B,gBAAgB,EAAE,SAAS;SAC5B,CAAe,CAAC;QAEjB,qFAAqF;QACrF,yFAAyF;QACzF,IAAI,UAAwB,CAAC;QAC7B,MAAM,UAAU,GAAG,IAAI,OAAO,CAAe,CAAC,CAAC,EAAE,EAAE,GAAG,UAAU,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QACzE,IAAI,CAAC,WAAW,GAAG,UAAU,CAAC;QAC9B,IAAI,CAAC,qBAAqB,GAAG,YAAY,CAAC;QAC1C,iGAAiG;QACjG,6EAA6E;QAC7E,IAAI,CAAC,kBAAkB,GAAG,UAAU,CAAC;QACrC,IAAI,CAAC;YACH,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;QACvC,CAAC;QAAC,OAAO,GAAY,EAAE,CAAC;YACtB,IAAI,IAAI,CAAC,WAAW,KAAK,UAAU,EAAE,CAAC;gBAAC,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;gBAAC,IAAI,CAAC,qBAAqB,GAAG,IAAI,CAAC;gBAAC,IAAI,CAAC,kBAAkB,GAAG,IAAI,CAAC;YAAC,CAAC;YACpI,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,kCAAkC,EAAE,EAAE,WAAW,EAAE,IAAI,CAAC,YAAY,EAAE,KAAK,EAAE,mBAAmB,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAC3H,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,0BAA0B,EAAE,CAAC;QAC3D,CAAC;QACD,IAAI,KAAqC,CAAC;QAC1C,MAAM,OAAO,GAAG,IAAI,OAAO,CAAe,CAAC,CAAC,EAAE,EAAE;YAC9C,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,sBAAsB,EAAE,CAAC,EAAE,sBAAsB,CAAC,CAAC;QACrG,CAAC,CAAC,CAAC;QACH,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC,CAAC;YACzD,wFAAwF;YACxF,IAAI,CAAC,MAAM,CAAC,EAAE,IAAI,MAAM,CAAC,MAAM,KAAK,sBAAsB;gBAAE,IAAI,CAAC,YAAY,EAAE,CAAC;YAChF,OAAO,MAAM,CAAC;QAChB,CAAC;gBAAS,CAAC;YACT,YAAY,CAAC,KAAK,CAAC,CAAC;YACpB,IAAI,IAAI,CAAC,WAAW,KAAK,UAAU,EAAE,CAAC;gBAAC,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;gBAAC,IAAI,CAAC,qBAAqB,GAAG,IAAI,CAAC;gBAAC,IAAI,CAAC,kBAAkB,GAAG,IAAI,CAAC;YAAC,CAAC;QACtI,CAAC;IACH,CAAC;IAED,yFAAyF;IACzF,WAAW,CAAC,YAAoB;QAC9B,OAAO,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;IAC/C,CAAC;IAED,KAAK;QACH,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC;QACpB,IAAI,CAAC,cAAc,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,qBAAqB,EAAE,CAAC,CAAC;QAClE,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC;QAC5B,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC;QACpB,IAAI,MAAM,EAAE,CAAC;YACX,IAAI,CAAC;gBAAC,KAAK,MAAM,CAAC,KAAK,EAAE,CAAC;YAAC,CAAC;YAAC,MAAM,CAAC,CAAC,iBAAiB,CAAC,CAAC;QAC1D,CAAC;IACH,CAAC;CACF"}

package/dist/session-tree.d.ts

@@ -0,0 +1,80 @@
+/**
+ * CELLO Daemon — SessionTree (CELLO-M7-DAEMON-004, Option A)
+ *
+ * The DAEMON-OWNED per-session Merkle tree. This is the authoritative running
+ * transcript of every leaf (sent or received) for a session. Before this story,
+ * the daemon "did not maintain the session Merkle tree — the client supplied it"
+ * (daemon.ts:568). Option A re-homes ownership here: the daemon is the component
+ * that sends and receives every message, so the transcript belongs where the
+ * messages flow.
+ *
+ * Specification (SPARC Phase S):
+ *   - A leaf is the 32-byte leaf hash of a message or control entry, in order.
+ *     For a message leaf the leaf hash is content_hash = SHA-256(0x00 || content)
+ *     (msgLeafHash, RFC 6962 §2.1 leaf hashing). For a control leaf (SEAL) the
+ *     leaf hash is SHA-256(0x02 || canonical_bytes) (ctrlLeafHash). Both sides of
+ *     a session compute the SAME leaf hash for the SAME message, so appending the
+ *     SAME leaves in the SAME order yields the SAME root (AC-002).
+ *   - The root is recomputed over all leaves after every append (RFC 6962 §2.1,
+ *     left-balanced binary Merkle tree). Empty tree root = SHA-256("").
+ *   - The tree is serializable to/from an ordered list of leaf-hash hex strings so
+ *     it can be persisted to SQLCipher and reloaded across a daemon restart (AC-007).
+ *
+ * Pseudocode (SPARC Phase P):
+ *   appendLeafHash(kind, hashHex):
+ *     1. push {kind, hashHex} onto leaves
+ *     2. return { leafIndex: leaves.length - 1, newRootHex: rootHex() }
+ *   rootHex():
+ *     1. build = buildMerkleTree(leaves.map(l => {kind:"hash", data: bytes(l.hashHex)}))
+ *     2. return hex(merkleRoot(build))   // empty → hex(SHA-256(""))
+ *   fromLeaves(leaves): reconstruct from persisted ordered list.
+ *
+ * Crypto refs: RFC 6962 §2.1 (Merkle hash trees), FIPS 180-4 (SHA-256).
+ */
+export type SessionTreeLeafKind = "msg" | "ctrl";
+export interface SessionTreeLeaf {
+    /** Domain of the leaf — metadata only; the stored hash already encodes the prefix. */
+    readonly kind: SessionTreeLeafKind;
+    /** 32-byte leaf hash, hex-encoded. */
+    readonly hashHex: string;
+}
+/**
+ * A daemon-owned per-session Merkle tree. Leaves are stored as pre-computed
+ * 32-byte leaf hashes (hex), so reconstruction is exact regardless of the
+ * original payload — the daemon never needs the plaintext to recompute the root.
+ */
+export declare class SessionTree {
+    #private;
+    private constructor();
+    /** O(1) index of the first leaf with this content-hash, or -1 if absent (DOD-MSG-5 dedup). */
+    indexOfHash(hashHex: string): number;
+    /** Construct an empty tree. */
+    static empty(): SessionTree;
+    /** Reconstruct a tree from a persisted, ordered list of leaves (AC-007). */
+    static fromLeaves(leaves: readonly SessionTreeLeaf[]): SessionTree;
+    /** Number of leaves currently in the tree. */
+    size(): number;
+    /** Ordered copy of the leaves (for persistence / inspection). */
+    leaves(): SessionTreeLeaf[];
+    /**
+     * Append a leaf (by its pre-computed 32-byte leaf-hash hex) and advance the root.
+     * @returns the new leaf's index and the recomputed root hex.
+     */
+    appendLeafHash(kind: SessionTreeLeafKind, hashHex: string): {
+        leafIndex: number;
+        newRootHex: string;
+    };
+    /**
+     * Recompute and return the current Merkle root as hex.
+     * Empty tree → hex(SHA-256("")) per RFC 6962 §2.1.
+     */
+    rootHex(): string;
+    /**
+     * SESSION-002: the Merkle root this tree WOULD have if one more leaf (hashHex) were
+     * appended — WITHOUT mutating the tree. Used to compute the reported_root for a unilateral
+     * seal: the post-SEAL-ctrl-leaf root the directory rebuilds from the relay's content-hash
+     * chain and verifies, without advancing the durable tree / message_count.
+     */
+    rootWithAppendedHex(hashHex: string): string;
+}
+//# sourceMappingURL=session-tree.d.ts.map

package/dist/session-tree.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"session-tree.d.ts","sourceRoot":"","sources":["../src/session-tree.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAgCG;AAIH,MAAM,MAAM,mBAAmB,GAAG,KAAK,GAAG,MAAM,CAAC;AAEjD,MAAM,WAAW,eAAe;IAC9B,sFAAsF;IACtF,QAAQ,CAAC,IAAI,EAAE,mBAAmB,CAAC;IACnC,sCAAsC;IACtC,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;CAC1B;AAED;;;;GAIG;AACH,qBAAa,WAAW;;IAOtB,OAAO;IAQP,8FAA8F;IAC9F,WAAW,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM;IAIpC,+BAA+B;IAC/B,MAAM,CAAC,KAAK,IAAI,WAAW;IAI3B,4EAA4E;IAC5E,MAAM,CAAC,UAAU,CAAC,MAAM,EAAE,SAAS,eAAe,EAAE,GAAG,WAAW;IAIlE,8CAA8C;IAC9C,IAAI,IAAI,MAAM;IAId,iEAAiE;IACjE,MAAM,IAAI,eAAe,EAAE;IAI3B;;;OAGG;IACH,cAAc,CAAC,IAAI,EAAE,mBAAmB,EAAE,OAAO,EAAE,MAAM,GAAG;QAAE,SAAS,EAAE,MAAM,CAAC;QAAC,UAAU,EAAE,MAAM,CAAA;KAAE;IAUrG;;;OAGG;IACH,OAAO,IAAI,MAAM;IASjB;;;;;OAKG;IACH,mBAAmB,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM;CAU7C"}