@iam-protocol/pulse-sdk 0.3.2 → 0.3.4

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@iam-protocol/pulse-sdk",
-  "version": "0.3.2",
+  "version": "0.3.4",
   "description": "Client-side SDK for IAM Protocol — sensor capture, TBH generation, ZK proof construction",
   "main": "dist/index.js",
   "module": "dist/index.mjs",
@@ -26,6 +26,7 @@
   },
   "peerDependencies": {
     "@coral-xyz/anchor": "^0.32.1",
+    "@solana/spl-token": "^0.4.0",
     "@solana/wallet-adapter-base": "^0.9.0",
     "@solana/web3.js": "^1.98.0"
   },
@@ -33,6 +34,9 @@
     "@coral-xyz/anchor": {
       "optional": true
     },
+    "@solana/spl-token": {
+      "optional": true
+    },
     "@solana/web3.js": {
       "optional": true
     },

package/src/extraction/statistics.ts

@@ -57,8 +57,12 @@ export function condense(values: number[]): StatsSummary {
  */
 export function entropy(values: number[], bins: number = 16): number {
   if (values.length < 2) return 0;
-  const min = Math.min(...values);
-  const max = Math.max(...values);
+  let min = values[0]!;
+  let max = values[0]!;
+  for (let i = 1; i < values.length; i++) {
+    if (values[i]! < min) min = values[i]!;
+    if (values[i]! > max) max = values[i]!;
+  }
   if (min === max) return 0;
 
   const counts = new Array(bins).fill(0);
@@ -96,10 +100,30 @@ export function autocorrelation(values: number[], lag: number = 1): number {
   return sum / ((values.length - lag) * v);
 }
 
+/**
+ * Normalize a feature group to zero mean and unit variance.
+ * Ensures each modality (audio, motion, touch) contributes equally
+ * to SimHash hyperplane projections regardless of raw magnitude scale.
+ */
+function normalizeGroup(features: number[]): number[] {
+  if (features.length === 0) return features;
+
+  let sum = 0;
+  for (const v of features) sum += v;
+  const mean = sum / features.length;
+
+  let sqSum = 0;
+  for (const v of features) sqSum += (v - mean) * (v - mean);
+  const std = Math.sqrt(sqSum / features.length);
+
+  if (std === 0) return features.map(() => 0);
+  return features.map((v) => (v - mean) / std);
+}
+
 export function fuseFeatures(
   audio: number[],
   motion: number[],
   touch: number[]
 ): number[] {
-  return [...audio, ...motion, ...touch];
+  return [...normalizeGroup(audio), ...normalizeGroup(motion), ...normalizeGroup(touch)];
 }

package/src/identity/anchor.ts

@@ -16,7 +16,7 @@ export async function fetchIdentityState(
 
     const programId = new PublicKey(PROGRAM_IDS.iamAnchor);
     const [identityPda] = PublicKey.findProgramAddressSync(
-      [Buffer.from("identity"), new PublicKey(walletPubkey).toBuffer()],
+      [new TextEncoder().encode("identity"), new PublicKey(walletPubkey).toBuffer()],
       programId
     );
 

package/src/proof/prover.ts

@@ -76,14 +76,13 @@ export async function generateSolanaProof(
 
 /**
  * Verify a proof locally using snarkjs (for debugging/testing).
+ * Caller is responsible for loading the verification key.
  */
 export async function verifyProofLocally(
   proof: any,
   publicSignals: string[],
-  vkeyPath: string
+  vkey: Record<string, unknown>
 ): Promise<boolean> {
   const snarkjs = await getSnarkjs();
-  const fs = await import("fs");
-  const vk = JSON.parse(fs.readFileSync(vkeyPath, "utf-8"));
-  return snarkjs.groth16.verify(vk, publicSignals, proof);
+  return snarkjs.groth16.verify(vkey, publicSignals, proof);
 }

package/src/pulse.ts

@@ -7,7 +7,7 @@ import type { VerificationResult } from "./submit/types";
 import type { StoredVerificationData } from "./identity/types";
 
 import { captureAudio } from "./sensor/audio";
-import { captureMotion } from "./sensor/motion";
+import { captureMotion, requestMotionPermission } from "./sensor/motion";
 import { captureTouch } from "./sensor/touch";
 import { extractSpeakerFeatures, SPEAKER_FEATURE_COUNT } from "./extraction/speaker";
 import {
@@ -34,9 +34,10 @@ type ResolvedConfig = Required<Pick<PulseConfig, "cluster" | "threshold">> &
  * Extract features from sensor data and fuse into a single vector.
  */
 async function extractFeatures(data: SensorData): Promise<number[]> {
-  const audioFeatures = data.audio
-    ? await extractSpeakerFeatures(data.audio)
-    : new Array(SPEAKER_FEATURE_COUNT).fill(0);
+  if (!data.audio) {
+    throw new Error("Audio data required for feature extraction");
+  }
+  const audioFeatures = await extractSpeakerFeatures(data.audio);
 
   const hasMotion = data.motion.length >= MIN_MOTION_SAMPLES;
   const motionFeatures = hasMotion
@@ -59,6 +60,7 @@ const MIN_TOUCH_SAMPLES = 10;
 async function processSensorData(
   sensorData: SensorData,
   config: ResolvedConfig,
+  // eslint-disable-next-line @typescript-eslint/no-explicit-any -- Solana types are optional peer deps
   wallet?: any,
   connection?: any
 ): Promise<VerificationResult> {
@@ -254,12 +256,30 @@ export class PulseSession {
   async startAudio(onAudioLevel?: (rms: number) => void): Promise<void> {
     if (this.audioStageState !== "idle")
       throw new Error("Audio capture already started");
+
+    // Acquire microphone permission within the user gesture context.
+    // Awaited so the caller knows audio is ready before proceeding.
+    // State transitions happen AFTER permission succeeds to avoid zombie state.
+    const stream = await navigator.mediaDevices.getUserMedia({
+      audio: {
+        sampleRate: 16000,
+        channelCount: 1,
+        echoCancellation: false,
+        noiseSuppression: false,
+        autoGainControl: false,
+      },
+    });
+
     this.audioStageState = "capturing";
     this.audioController = new AbortController();
     this.audioPromise = captureAudio({
       signal: this.audioController.signal,
       onAudioLevel,
-    }).catch(() => null);
+      stream,
+    }).catch(() => {
+      stream.getTracks().forEach((t) => t.stop());
+      return null;
+    });
   }
 
   async stopAudio(): Promise<AudioCapture | null> {
@@ -271,21 +291,28 @@ export class PulseSession {
     return this.audioData;
   }
 
-  skipAudio(): void {
-    if (this.audioStageState !== "idle")
-      throw new Error("Audio capture already started");
-    this.audioStageState = "skipped";
-  }
+  // Audio is mandatory — no skipAudio() method.
+  // If startAudio() fails, the verification cannot proceed.
 
   // --- Motion ---
 
   async startMotion(): Promise<void> {
     if (this.motionStageState !== "idle")
       throw new Error("Motion capture already started");
+
+    // Request motion permission within the user gesture context (iOS 13+).
+    // Awaited so the capture timer doesn't start before the user approves.
+    const hasPermission = await requestMotionPermission();
+    if (!hasPermission) {
+      this.motionStageState = "skipped";
+      return;
+    }
+
     this.motionStageState = "capturing";
     this.motionController = new AbortController();
     this.motionPromise = captureMotion({
       signal: this.motionController.signal,
+      permissionGranted: true,
     }).catch(() => []);
   }
 
@@ -304,6 +331,10 @@ export class PulseSession {
     this.motionStageState = "skipped";
   }
 
+  isMotionCapturing(): boolean {
+    return this.motionStageState === "capturing";
+  }
+
   // --- Touch ---
 
   async startTouch(): Promise<void> {
@@ -335,6 +366,7 @@ export class PulseSession {
 
   // --- Complete ---
 
+  // eslint-disable-next-line @typescript-eslint/no-explicit-any -- Solana types are optional peer deps
   async complete(wallet?: any, connection?: any): Promise<VerificationResult> {
     const active: string[] = [];
     if (this.audioStageState === "capturing") active.push("audio");
@@ -404,28 +436,26 @@ export class PulseSDK {
       try {
         await session.startAudio();
         stopPromises.push(
-          new Promise<void>((r) => setTimeout(r, DEFAULT_CAPTURE_MS)).then(
-            () => {
-              session.stopAudio();
-            }
-          )
+          new Promise<void>((r) => setTimeout(r, DEFAULT_CAPTURE_MS))
+            .then(() => session.stopAudio())
+            .then(() => {})
         );
-      } catch {
-        session.skipAudio();
+      } catch (err: any) {
+        throw new Error(`Audio capture failed: ${err?.message ?? "microphone unavailable"}`);
       }
 
-      // Motion
+      // Motion — startMotion auto-skips if permission denied (no throw)
       try {
         await session.startMotion();
+      } catch {
+        /* unexpected error — motion already skipped or idle */
+      }
+      if (session.isMotionCapturing()) {
         stopPromises.push(
-          new Promise<void>((r) => setTimeout(r, DEFAULT_CAPTURE_MS)).then(
-            () => {
-              session.stopMotion();
-            }
-          )
+          new Promise<void>((r) => setTimeout(r, DEFAULT_CAPTURE_MS))
+            .then(() => session.stopMotion())
+            .then(() => {})
         );
-      } catch {
-        session.skipMotion();
       }
 
       // Touch
@@ -433,11 +463,9 @@ export class PulseSDK {
         try {
           await session.startTouch();
           stopPromises.push(
-            new Promise<void>((r) => setTimeout(r, DEFAULT_CAPTURE_MS)).then(
-              () => {
-                session.stopTouch();
-              }
-            )
+            new Promise<void>((r) => setTimeout(r, DEFAULT_CAPTURE_MS))
+              .then(() => session.stopTouch())
+              .then(() => {})
           );
         } catch {
           session.skipTouch();

package/src/sensor/audio.ts

@@ -20,9 +20,10 @@ export async function captureAudio(
     minDurationMs = MIN_CAPTURE_MS,
     maxDurationMs = MAX_CAPTURE_MS,
     onAudioLevel,
+    stream: preAcquiredStream,
   } = options;
 
-  const stream = await navigator.mediaDevices.getUserMedia({
+  const stream = preAcquiredStream ?? await navigator.mediaDevices.getUserMedia({
     audio: {
       sampleRate: TARGET_SAMPLE_RATE,
       channelCount: 1,
@@ -33,6 +34,7 @@ export async function captureAudio(
   });
 
   const ctx = new AudioContext({ sampleRate: TARGET_SAMPLE_RATE });
+  await ctx.resume(); // Required on iOS — AudioContext may be suspended outside user gesture
   const capturedSampleRate = ctx.sampleRate;
   const source = ctx.createMediaStreamSource(stream);
   const chunks: Float32Array[] = [];

package/src/sensor/motion.ts

@@ -31,7 +31,7 @@ export async function captureMotion(
     maxDurationMs = MAX_CAPTURE_MS,
   } = options;
 
-  const hasPermission = await requestMotionPermission();
+  const hasPermission = options.permissionGranted ?? await requestMotionPermission();
   if (!hasPermission) return [];
 
   const samples: MotionSample[] = [];

package/src/sensor/types.ts

@@ -36,6 +36,10 @@ export interface CaptureOptions {
   maxDurationMs?: number;
   /** Called with RMS audio level (0-1) on each buffer during audio capture (~4x per second). */
   onAudioLevel?: (rms: number) => void;
+  /** Pre-acquired MediaStream. If provided, captureAudio skips getUserMedia. */
+  stream?: MediaStream;
+  /** If true, captureMotion skips requestMotionPermission (already acquired). */
+  permissionGranted?: boolean;
 }
 
 /** Stage of a capture session */

package/src/submit/relayer.ts

@@ -53,6 +53,8 @@ export async function submitViaRelayer(
     const result = (await response.json()) as {
       success?: boolean;
       tx_signature?: string;
+      verified?: boolean;
+      registered?: boolean;
     };
 
     if (result.success !== true) {

package/src/submit/wallet.ts

@@ -14,10 +14,9 @@ export async function submitViaWallet(
   proof: SolanaProof,
   commitment: Uint8Array,
   options: {
-    wallet: any; // WalletAdapter
-    connection: any; // Connection
+    wallet: any;
+    connection: any;
     isFirstVerification: boolean;
-    trustScore?: number;
   }
 ): Promise<SubmissionResult> {
   try {
@@ -39,18 +38,18 @@ export async function submitViaWallet(
     // Derive PDAs
     const [challengePda] = PublicKey.findProgramAddressSync(
       [
-        Buffer.from("challenge"),
+        new TextEncoder().encode("challenge"),
         provider.wallet.publicKey.toBuffer(),
-        Buffer.from(nonce),
+        new Uint8Array(nonce),
       ],
       verifierProgramId
     );
 
     const [verificationPda] = PublicKey.findProgramAddressSync(
       [
-        Buffer.from("verification"),
+        new TextEncoder().encode("verification"),
         provider.wallet.publicKey.toBuffer(),
-        Buffer.from(nonce),
+        new Uint8Array(nonce),
       ],
       verifierProgramId
     );
@@ -83,7 +82,7 @@ export async function submitViaWallet(
     // 2. Verify proof
     const txSig = await verifierProgram.methods
       .verifyProof(
-        Buffer.from(proof.proofBytes),
+        Array.from(proof.proofBytes),
         proof.publicInputs.map((pi) => Array.from(pi)),
         nonce
       )
@@ -106,15 +105,15 @@ export async function submitViaWallet(
 
       if (options.isFirstVerification) {
         const [identityPda] = PublicKey.findProgramAddressSync(
-          [Buffer.from("identity"), provider.wallet.publicKey.toBuffer()],
+          [new TextEncoder().encode("identity"), provider.wallet.publicKey.toBuffer()],
           anchorProgramId
         );
         const [mintPda] = PublicKey.findProgramAddressSync(
-          [Buffer.from("mint"), provider.wallet.publicKey.toBuffer()],
+          [new TextEncoder().encode("mint"), provider.wallet.publicKey.toBuffer()],
           anchorProgramId
         );
         const [mintAuthority] = PublicKey.findProgramAddressSync(
-          [Buffer.from("mint_authority")],
+          [new TextEncoder().encode("mint_authority")],
           anchorProgramId
         );
 
@@ -150,15 +149,23 @@ export async function submitViaWallet(
           .rpc();
       } else {
         const [identityPda] = PublicKey.findProgramAddressSync(
-          [Buffer.from("identity"), provider.wallet.publicKey.toBuffer()],
+          [new TextEncoder().encode("identity"), provider.wallet.publicKey.toBuffer()],
           anchorProgramId
         );
 
+        // Derive iam-registry ProtocolConfig PDA for trust score computation
+        const registryProgramId = new PublicKey(PROGRAM_IDS.iamRegistry);
+        const [protocolConfigPda] = PublicKey.findProgramAddressSync(
+          [new TextEncoder().encode("protocol_config")],
+          registryProgramId
+        );
+
         await anchorProgram.methods
-          .updateAnchor(Array.from(commitment), options.trustScore ?? 0)
+          .updateAnchor(Array.from(commitment))
           .accounts({
             authority: provider.wallet.publicKey,
             identityState: identityPda,
+            protocolConfig: protocolConfigPda,
           })
           .rpc();
       }