npm - @cogcoin/client - Versions diffs - 1.1.6 → 1.1.8 - Mend

@cogcoin/client 1.1.6 → 1.1.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (125) hide show

package/README.md +2 -2
package/dist/bitcoind/indexer-daemon.js +29 -79
package/dist/bitcoind/managed-runtime/bitcoind-runtime.d.ts +20 -0
package/dist/bitcoind/managed-runtime/bitcoind-runtime.js +74 -0
package/dist/bitcoind/managed-runtime/bitcoind-status.d.ts +11 -0
package/dist/bitcoind/managed-runtime/bitcoind-status.js +44 -0
package/dist/bitcoind/managed-runtime/indexer-runtime.d.ts +15 -0
package/dist/bitcoind/managed-runtime/indexer-runtime.js +82 -0
package/dist/bitcoind/managed-runtime/types.d.ts +40 -0
package/dist/bitcoind/node.d.ts +2 -2
package/dist/bitcoind/node.js +2 -2
package/dist/bitcoind/rpc.d.ts +2 -1
package/dist/bitcoind/rpc.js +53 -3
package/dist/bitcoind/service.js +47 -127
package/dist/cli/command-registry.d.ts +1 -1
package/dist/cli/command-registry.js +2 -64
package/dist/cli/commands/client-admin.js +3 -18
package/dist/cli/commands/mining-runtime.js +4 -60
package/dist/cli/commands/wallet-admin.js +6 -6
package/dist/cli/context.js +1 -3
package/dist/cli/mining-json.d.ts +1 -22
package/dist/cli/mining-json.js +0 -23
package/dist/cli/output.js +16 -2
package/dist/cli/parse.js +0 -2
package/dist/cli/preview-json.d.ts +1 -22
package/dist/cli/preview-json.js +0 -19
package/dist/cli/types.d.ts +1 -3
package/dist/cli/wallet-format.js +1 -1
package/dist/cli/workflow-hints.d.ts +1 -2
package/dist/cli/workflow-hints.js +5 -8
package/dist/wallet/lifecycle/context.js +0 -1
package/dist/wallet/lifecycle/repair-mining.d.ts +1 -5
package/dist/wallet/lifecycle/repair-mining.js +5 -39
package/dist/wallet/lifecycle/repair.js +0 -3
package/dist/wallet/lifecycle/setup.js +10 -8
package/dist/wallet/lifecycle/types.d.ts +1 -4
package/dist/wallet/managed-core-wallet.d.ts +2 -0
package/dist/wallet/managed-core-wallet.js +27 -1
package/dist/wallet/mining/candidate.d.ts +1 -0
package/dist/wallet/mining/candidate.js +38 -6
package/dist/wallet/mining/competitiveness.d.ts +1 -0
package/dist/wallet/mining/competitiveness.js +6 -0
package/dist/wallet/mining/cycle.d.ts +2 -0
package/dist/wallet/mining/cycle.js +14 -4
package/dist/wallet/mining/engine-state.js +10 -0
package/dist/wallet/mining/engine-types.d.ts +1 -0
package/dist/wallet/mining/index.d.ts +1 -1
package/dist/wallet/mining/index.js +1 -1
package/dist/wallet/mining/publish.d.ts +3 -0
package/dist/wallet/mining/publish.js +78 -6
package/dist/wallet/mining/runner.d.ts +0 -32
package/dist/wallet/mining/runner.js +59 -104
package/dist/wallet/mining/stop.d.ts +7 -0
package/dist/wallet/mining/stop.js +23 -0
package/dist/wallet/mining/supervisor.d.ts +2 -36
package/dist/wallet/mining/supervisor.js +139 -246
package/dist/wallet/mining/visualizer-sync.js +79 -15
package/dist/wallet/read/context.d.ts +1 -5
package/dist/wallet/read/context.js +21 -205
package/dist/wallet/read/managed-services.d.ts +33 -0
package/dist/wallet/read/managed-services.js +222 -0
package/dist/wallet/reset/artifacts.d.ts +16 -0
package/dist/wallet/reset/artifacts.js +141 -0
package/dist/wallet/reset/execution.d.ts +38 -0
package/dist/wallet/reset/execution.js +458 -0
package/dist/wallet/reset/preflight.d.ts +7 -0
package/dist/wallet/reset/preflight.js +116 -0
package/dist/wallet/reset/preview.d.ts +2 -0
package/dist/wallet/reset/preview.js +50 -0
package/dist/wallet/reset/process-cleanup.d.ts +12 -0
package/dist/wallet/reset/process-cleanup.js +179 -0
package/dist/wallet/reset/types.d.ts +189 -0
package/dist/wallet/reset/types.js +1 -0
package/dist/wallet/reset.d.ts +4 -119
package/dist/wallet/reset.js +4 -882
package/dist/wallet/state/client-password/bootstrap.d.ts +2 -0
package/dist/wallet/state/client-password/bootstrap.js +3 -0
package/dist/wallet/state/client-password/context.d.ts +10 -0
package/dist/wallet/state/client-password/context.js +46 -0
package/dist/wallet/state/client-password/crypto.d.ts +34 -0
package/dist/wallet/state/client-password/crypto.js +117 -0
package/dist/wallet/state/client-password/files.d.ts +10 -0
package/dist/wallet/state/client-password/files.js +109 -0
package/dist/wallet/state/client-password/legacy-cleanup.d.ts +11 -0
package/dist/wallet/state/client-password/legacy-cleanup.js +338 -0
package/dist/wallet/state/client-password/messages.d.ts +3 -0
package/dist/wallet/state/client-password/messages.js +9 -0
package/dist/wallet/state/client-password/migration.d.ts +4 -0
package/dist/wallet/state/client-password/migration.js +32 -0
package/dist/wallet/state/client-password/prompts.d.ts +12 -0
package/dist/wallet/state/client-password/prompts.js +79 -0
package/dist/wallet/state/client-password/protected-secrets.d.ts +13 -0
package/dist/wallet/state/client-password/protected-secrets.js +90 -0
package/dist/wallet/state/client-password/readiness.d.ts +4 -0
package/dist/wallet/state/client-password/readiness.js +48 -0
package/dist/wallet/state/client-password/references.d.ts +1 -0
package/dist/wallet/state/client-password/references.js +56 -0
package/dist/wallet/state/client-password/rotation.d.ts +6 -0
package/dist/wallet/state/client-password/rotation.js +98 -0
package/dist/wallet/state/client-password/session-policy.d.ts +6 -0
package/dist/wallet/state/client-password/session-policy.js +28 -0
package/dist/wallet/state/client-password/session.d.ts +19 -0
package/dist/wallet/state/client-password/session.js +170 -0
package/dist/wallet/state/client-password/setup.d.ts +8 -0
package/dist/wallet/state/client-password/setup.js +49 -0
package/dist/wallet/state/client-password/types.d.ts +82 -0
package/dist/wallet/state/client-password/types.js +5 -0
package/dist/wallet/state/client-password.d.ts +7 -38
package/dist/wallet/state/client-password.js +52 -937
package/dist/wallet/tx/anchor.js +123 -216
package/dist/wallet/tx/cog.js +294 -489
package/dist/wallet/tx/common.d.ts +2 -0
package/dist/wallet/tx/common.js +2 -0
package/dist/wallet/tx/domain-admin.js +111 -220
package/dist/wallet/tx/domain-market.js +401 -681
package/dist/wallet/tx/executor.d.ts +176 -0
package/dist/wallet/tx/executor.js +302 -0
package/dist/wallet/tx/field.js +109 -215
package/dist/wallet/tx/register.js +158 -269
package/dist/wallet/tx/reputation.js +120 -227
package/package.json +1 -1
package/dist/wallet/mining/worker-main.d.ts +0 -1
package/dist/wallet/mining/worker-main.js +0 -17
package/dist/wallet/state/client-password-agent.d.ts +0 -1
package/dist/wallet/state/client-password-agent.js +0 -211

package/dist/wallet/state/client-password/session.js ADDED Viewed

@@ -0,0 +1,170 @@
+import { createWrappedSecretEnvelope, decryptWrappedSecretEnvelope, zeroizeBuffer, } from "./crypto.js";
+import { promptForVerifiedClientPassword } from "./prompts.js";
+import { resolveClientPasswordPromptSessionPolicy, resolveClientPasswordSessionUnlockUntilUnixMs, } from "./session-policy.js";
+const activeSessions = new Map();
+let processCleanupRegistered = false;
+function resolveSessionCacheKey(context) {
+    return `${context.platform}\n${context.stateRoot}\n${context.directoryPath}\n${context.passwordStatePath}`;
+}
+function clearExpiryTimer(session) {
+    if (session.expiryTimer !== null) {
+        clearTimeout(session.expiryTimer);
+        session.expiryTimer = null;
+    }
+}
+function destroySession(session) {
+    if (session === undefined) {
+        return;
+    }
+    clearExpiryTimer(session);
+    zeroizeBuffer(session.derivedKey);
+}
+function clearSessionByKey(cacheKey) {
+    const existing = activeSessions.get(cacheKey);
+    if (existing === undefined) {
+        return;
+    }
+    activeSessions.delete(cacheKey);
+    destroySession(existing);
+}
+function scheduleSessionExpiry(cacheKey, session) {
+    clearExpiryTimer(session);
+    if (session.unlockUntilUnixMs === null) {
+        return;
+    }
+    const remainingMs = Math.max(0, session.unlockUntilUnixMs - Date.now());
+    session.expiryTimer = setTimeout(() => {
+        clearSessionByKey(cacheKey);
+    }, remainingMs);
+    session.expiryTimer.unref();
+}
+export function destroyAllClientPasswordSessionsResolved() {
+    for (const session of activeSessions.values()) {
+        destroySession(session);
+    }
+    activeSessions.clear();
+}
+function registerProcessCleanup() {
+    if (processCleanupRegistered) {
+        return;
+    }
+    processCleanupRegistered = true;
+    process.once("exit", () => {
+        destroyAllClientPasswordSessionsResolved();
+    });
+}
+function getActiveSession(context) {
+    const cacheKey = resolveSessionCacheKey(context);
+    const session = activeSessions.get(cacheKey);
+    if (session === undefined) {
+        return null;
+    }
+    if (session.unlockUntilUnixMs !== null && session.unlockUntilUnixMs <= Date.now()) {
+        clearSessionByKey(cacheKey);
+        return null;
+    }
+    return session;
+}
+function putActiveSession(options) {
+    registerProcessCleanup();
+    const cacheKey = resolveSessionCacheKey(options);
+    clearSessionByKey(cacheKey);
+    if (options.unlockUntilUnixMs !== null && options.unlockUntilUnixMs <= Date.now()) {
+        return {
+            unlocked: false,
+            unlockUntilUnixMs: null,
+        };
+    }
+    const session = {
+        derivedKey: Buffer.from(options.derivedKey),
+        unlockUntilUnixMs: options.unlockUntilUnixMs,
+        expiryTimer: null,
+    };
+    activeSessions.set(cacheKey, session);
+    scheduleSessionExpiry(cacheKey, session);
+    return {
+        unlocked: true,
+        unlockUntilUnixMs: session.unlockUntilUnixMs,
+    };
+}
+export async function readClientPasswordSessionStatusResolved(context) {
+    const session = getActiveSession(context);
+    return {
+        unlocked: session !== null,
+        unlockUntilUnixMs: session?.unlockUntilUnixMs ?? null,
+    };
+}
+export async function lockClientPasswordSessionResolved(context) {
+    clearSessionByKey(resolveSessionCacheKey(context));
+    return {
+        unlocked: false,
+        unlockUntilUnixMs: null,
+    };
+}
+export async function startClientPasswordSessionResolved(options) {
+    return await startClientPasswordSessionWithExpiryResolved({
+        ...options,
+        unlockUntilUnixMs: resolveClientPasswordSessionUnlockUntilUnixMs(options.sessionPolicy),
+    });
+}
+export async function startClientPasswordSessionWithExpiryResolved(options) {
+    try {
+        return putActiveSession(options);
+    }
+    finally {
+        zeroizeBuffer(options.derivedKey);
+    }
+}
+async function refreshClientPasswordSessionResolved(context) {
+    const session = getActiveSession(context);
+    if (session === null) {
+        return null;
+    }
+    session.unlockUntilUnixMs = context.unlockUntilUnixMs;
+    scheduleSessionExpiry(resolveSessionCacheKey(context), session);
+    return await readClientPasswordSessionStatusResolved(context);
+}
+async function unlockClientPasswordSessionWithPromptResolved(options) {
+    const derivedKey = await promptForVerifiedClientPassword({
+        context: options.context,
+        prompt: options.prompt,
+        promptMessage: "Client password: ",
+        ttyErrorCode: "wallet_client_password_unlock_requires_tty",
+    });
+    return await startClientPasswordSessionResolved({
+        ...options.context,
+        derivedKey,
+        sessionPolicy: resolveClientPasswordPromptSessionPolicy(options.prompt),
+    });
+}
+export async function unlockClientPasswordSessionResolved(options) {
+    const sessionPolicy = resolveClientPasswordPromptSessionPolicy(options.prompt);
+    const currentStatus = await readClientPasswordSessionStatusResolved(options.context);
+    if (currentStatus.unlocked) {
+        const refreshed = await refreshClientPasswordSessionResolved({
+            ...options.context,
+            unlockUntilUnixMs: resolveClientPasswordSessionUnlockUntilUnixMs(sessionPolicy),
+        });
+        if (refreshed !== null) {
+            return refreshed;
+        }
+    }
+    if (!options.prompt.isInteractive) {
+        throw new Error("wallet_client_password_unlock_requires_tty");
+    }
+    return await unlockClientPasswordSessionWithPromptResolved(options);
+}
+export function decryptClientProtectedSecretWithSessionResolved(context, envelope) {
+    const session = getActiveSession(context);
+    if (session === null) {
+        return null;
+    }
+    return new Uint8Array(decryptWrappedSecretEnvelope(envelope, session.derivedKey));
+}
+export function encryptClientProtectedSecretWithSessionResolved(context, secret) {
+    const session = getActiveSession(context);
+    if (session === null) {
+        return null;
+    }
+    return createWrappedSecretEnvelope(secret, session.derivedKey);
+}

package/dist/wallet/state/client-password/setup.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+import type { ClientPasswordPrompt, ClientPasswordResolvedContext, ClientPasswordSessionStatus, ClientPasswordSetupAction } from "./types.js";
+export declare function ensureClientPasswordConfiguredResolved(options: {
+    context: ClientPasswordResolvedContext;
+    prompt: ClientPasswordPrompt;
+}): Promise<{
+    action: ClientPasswordSetupAction;
+    session: ClientPasswordSessionStatus;
+}>;

package/dist/wallet/state/client-password/setup.js ADDED Viewed

@@ -0,0 +1,49 @@
+import { mkdir } from "node:fs/promises";
+import { createClientPasswordState, zeroizeBuffer, } from "./crypto.js";
+import { writeClientPasswordState } from "./files.js";
+import { migrateReferencedSecrets } from "./migration.js";
+import { promptForNewPassword } from "./prompts.js";
+import { inspectClientPasswordReadinessResolved } from "./readiness.js";
+import { resolveClientPasswordPromptSessionPolicy } from "./session-policy.js";
+import { finalizePendingClientPasswordRotationIfNeeded } from "./rotation.js";
+import { startClientPasswordSessionResolved } from "./session.js";
+import { readClientPasswordSessionStatusResolved } from "./session.js";
+export async function ensureClientPasswordConfiguredResolved(options) {
+    await finalizePendingClientPasswordRotationIfNeeded(options.context);
+    const readiness = await inspectClientPasswordReadinessResolved(options.context);
+    if (readiness === "ready") {
+        return {
+            action: "already-configured",
+            session: await readClientPasswordSessionStatusResolved(options.context),
+        };
+    }
+    const setup = await promptForNewPassword(options.prompt);
+    let derivedKey = null;
+    try {
+        const created = await createClientPasswordState({
+            passwordBytes: setup.passwordBytes,
+            passwordHint: setup.passwordHint,
+        });
+        derivedKey = created.derivedKey;
+        await mkdir(options.context.directoryPath, { recursive: true, mode: 0o700 });
+        await writeClientPasswordState(options.context.passwordStatePath, created.state);
+        const migrated = await migrateReferencedSecrets({
+            ...options.context,
+            derivedKey,
+        });
+        const session = await startClientPasswordSessionResolved({
+            ...options.context,
+            derivedKey,
+            sessionPolicy: resolveClientPasswordPromptSessionPolicy(options.prompt),
+        });
+        derivedKey = null;
+        return {
+            action: migrated || readiness === "migration-required" ? "migrated" : "created",
+            session,
+        };
+    }
+    finally {
+        zeroizeBuffer(setup.passwordBytes);
+        zeroizeBuffer(derivedKey);
+    }
+}

package/dist/wallet/state/client-password/types.d.ts ADDED Viewed

@@ -0,0 +1,82 @@
+export declare const CLIENT_PASSWORD_STATE_FORMAT = "cogcoin-client-password";
+export declare const CLIENT_PASSWORD_ROTATION_JOURNAL_FORMAT = "cogcoin-client-password-rotation";
+export declare const CLIENT_PASSWORD_VERIFIER_FORMAT = "cogcoin-client-password-verifier";
+export declare const LOCAL_SECRET_ENVELOPE_FORMAT = "cogcoin-local-wallet-secret";
+export declare const CLIENT_PASSWORD_VERIFIER_TEXT = "cogcoin-client-password-verifier-v1";
+export type ClientPasswordReadiness = "ready" | "setup-required" | "migration-required";
+export type ClientPasswordSetupAction = "created" | "migrated" | "already-configured";
+export interface ClientPasswordPrompt {
+    readonly isInteractive: boolean;
+    writeLine(message: string): void;
+    prompt(message: string): Promise<string>;
+    promptHidden?(message: string): Promise<string>;
+}
+export interface ClientPasswordSessionStatus {
+    unlocked: boolean;
+    unlockUntilUnixMs: number | null;
+}
+export interface ClientPasswordLegacyKeychainReader {
+    loadSecret(keyId: string): Promise<Uint8Array>;
+}
+export interface ClientPasswordStorageOptions {
+    platform: NodeJS.Platform;
+    stateRoot: string;
+    runtimeRoot: string;
+    directoryPath: string;
+    runtimeErrorCode: string;
+    legacyMacKeychainReader?: ClientPasswordLegacyKeychainReader | null;
+}
+export interface ClientPasswordResolvedContext extends ClientPasswordStorageOptions {
+    legacyMacKeychainReader?: ClientPasswordLegacyKeychainReader | null;
+    passwordStatePath: string;
+    rotationJournalPath: string;
+}
+export interface ClientPasswordStateV1 {
+    format: typeof CLIENT_PASSWORD_STATE_FORMAT;
+    version: 1;
+    passwordHint: string;
+    kdf: {
+        name: "argon2id";
+        memoryKib: number;
+        iterations: number;
+        parallelism: number;
+        salt: string;
+    };
+    verifier: {
+        cipher: "aes-256-gcm";
+        nonce: string;
+        tag: string;
+        ciphertext: string;
+    };
+}
+export interface WrappedSecretEnvelopeV1 {
+    format: typeof LOCAL_SECRET_ENVELOPE_FORMAT;
+    version: 1;
+    cipher: "aes-256-gcm";
+    wrappedBy: "client-password";
+    nonce: string;
+    tag: string;
+    ciphertext: string;
+}
+export interface ClientPasswordRotationJournalV1 {
+    format: typeof CLIENT_PASSWORD_ROTATION_JOURNAL_FORMAT;
+    version: 1;
+    nextState: ClientPasswordStateV1;
+    secrets: Array<{
+        keyId: string;
+        envelope: WrappedSecretEnvelopeV1;
+    }>;
+}
+export interface ClientPasswordAgentBootstrapState {
+    unlockUntilUnixMs: number;
+    derivedKeyBase64: string;
+}
+export type LocalSecretFile = {
+    state: "missing";
+} | {
+    state: "raw";
+    secret: Uint8Array;
+} | {
+    state: "wrapped";
+    envelope: WrappedSecretEnvelopeV1;
+};

package/dist/wallet/state/client-password/types.js ADDED Viewed

@@ -0,0 +1,5 @@
+export const CLIENT_PASSWORD_STATE_FORMAT = "cogcoin-client-password";
+export const CLIENT_PASSWORD_ROTATION_JOURNAL_FORMAT = "cogcoin-client-password-rotation";
+export const CLIENT_PASSWORD_VERIFIER_FORMAT = "cogcoin-client-password-verifier";
+export const LOCAL_SECRET_ENVELOPE_FORMAT = "cogcoin-local-wallet-secret";
+export const CLIENT_PASSWORD_VERIFIER_TEXT = "cogcoin-client-password-verifier-v1";

package/dist/wallet/state/client-password.d.ts CHANGED Viewed

@@ -1,27 +1,10 @@
-export declare const CLIENT_PASSWORD_SETUP_AUTO_UNLOCK_SECONDS = 86400;
-export type ClientPasswordReadiness = "ready" | "setup-required" | "migration-required";
-export type ClientPasswordSetupAction = "created" | "migrated" | "already-configured";
-export interface ClientPasswordPrompt {
-    readonly isInteractive: boolean;
-    writeLine(message: string): void;
-    prompt(message: string): Promise<string>;
-    promptHidden?(message: string): Promise<string>;
-}
-export interface ClientPasswordSessionStatus {
-    unlocked: boolean;
-    unlockUntilUnixMs: number | null;
-}
-export interface ClientPasswordStorageOptions {
-    platform: NodeJS.Platform;
-    stateRoot: string;
-    runtimeRoot: string;
-    directoryPath: string;
-    runtimeErrorCode: string;
-    legacyMacKeychainReader?: {
-        loadSecret(keyId: string): Promise<Uint8Array>;
-    } | null;
-}
-export declare function resolveLocalSecretFilePath(directoryPath: string, keyId: string): string;
+export { CLIENT_PASSWORD_SETUP_AUTO_UNLOCK_SECONDS } from "./client-password/crypto.js";
+export type { ClientPasswordPrompt, ClientPasswordReadiness, ClientPasswordSessionStatus, ClientPasswordSetupAction, ClientPasswordStorageOptions, } from "./client-password/types.js";
+export { resolveLocalSecretFilePath, createLegacyKeychainServiceName, } from "./client-password/context.js";
+export { createAgentBootstrapState } from "./client-password/bootstrap.js";
+export { describeClientPasswordLockedMessage, describeClientPasswordMigrationMessage, describeClientPasswordSetupMessage, } from "./client-password/messages.js";
+export { listLocalSecretFilesForTesting } from "./client-password/files.js";
+import type { ClientPasswordPrompt, ClientPasswordReadiness, ClientPasswordSessionStatus, ClientPasswordSetupAction, ClientPasswordStorageOptions } from "./client-password/types.js";
 export declare function inspectClientPasswordReadiness(options: ClientPasswordStorageOptions): Promise<ClientPasswordReadiness>;
 export declare function readClientPasswordSessionStatus(options: ClientPasswordStorageOptions): Promise<ClientPasswordSessionStatus>;
 export declare function lockClientPasswordSession(options: ClientPasswordStorageOptions): Promise<ClientPasswordSessionStatus>;
@@ -49,17 +32,3 @@ export declare function unlockClientPasswordSession(options: ClientPasswordStora
 export declare function changeClientPassword(options: ClientPasswordStorageOptions & {
     prompt: ClientPasswordPrompt;
 }): Promise<ClientPasswordSessionStatus>;
-export declare function createLegacyKeychainServiceName(): string;
-export declare function createAgentBootstrapState(options: {
-    unlockUntilUnixMs: number;
-    derivedKeyBase64: string;
-}): {
-    unlockUntilUnixMs: number;
-    derivedKeyBase64: string;
-};
-export declare function describeClientPasswordLockedMessage(): string;
-export declare function describeClientPasswordSetupMessage(): string;
-export declare function describeClientPasswordMigrationMessage(): string;
-export declare function listLocalSecretFilesForTesting(options: {
-    directoryPath: string;
-}): Promise<string[]>;