@jobshimo/browser-link 0.1.0 → 0.4.0

package/dist/bridge/server.js

@@ -0,0 +1,336 @@
+import { createServer } from 'node:net';
+import { randomUUID } from 'node:crypto';
+import { lookupPeerProcess } from '../auth/process-identity.js';
+import { SERVER_INSTRUCTIONS } from '../tools/server-instructions.js';
+import { VERSION } from '../version.js';
+import { IPC_HOST, IPC_PING_INTERVAL_MS, IPC_PONG_TIMEOUT_MS, IPC_PORT, IPC_PROTOCOL_VERSION, encodeFrame, isCompatibleVersion, parseFrame, } from './protocol.js';
+import { handleToolCall, handleToolsList } from './dispatch.js';
+import { rotateToken } from './token.js';
+/**
+ * Primary's side of the IPC bridge. Listens on 127.0.0.1:17530, validates
+ * incoming peer processes via the same kernel-level process binding that
+ * protects the WS bridge, then runs the hello/token handshake. After auth,
+ * forwards MCP JSON-RPC frames through the shared dispatch handlers.
+ *
+ * Construction does NOT bind the port. Call `start()` and await.
+ */
+function log(msg) {
+    // stderr — stdout belongs to the MCP transport.
+    console.error(`[browser-link ipc] ${msg}`);
+}
+/** Binaries we'll accept as legitimate peers. The token is the real auth;
+ * this is defence in depth. Names normalised to lowercase before comparison. */
+const NODE_PROCESS_NAMES = new Set([
+    'node',
+    'node.exe',
+    'nodejs',
+    'tsx',
+    'tsx.exe',
+    'browser-link',
+    'browser-link.exe',
+]);
+/** Same loopback normalisation as server.ts uses for the WS bridge. */
+function normaliseLoopback(addr) {
+    if (addr === '::1' || addr === '::ffff:127.0.0.1')
+        return '127.0.0.1';
+    if (addr.startsWith('::ffff:'))
+        return addr.slice('::ffff:'.length);
+    return addr;
+}
+export class IpcServer {
+    deps;
+    options;
+    server = null;
+    sessions = new Map();
+    token;
+    boundHost = IPC_HOST;
+    boundPortValue = IPC_PORT;
+    constructor(deps, options = {}) {
+        this.deps = deps;
+        this.options = options;
+        // Rotate the token on every primary startup. Any stale token left by a
+        // crashed previous primary is invalidated immediately.
+        this.token = rotateToken();
+    }
+    /** Bind the IPC port. Rejects on EADDRINUSE so the caller (server.ts)
+     * can log and continue without multi-agent — never throws after listen. */
+    start() {
+        return new Promise((resolve, reject) => {
+            const host = this.options.host ?? IPC_HOST;
+            const port = this.options.port ?? IPC_PORT;
+            const server = createServer((socket) => {
+                this.handleConnection(socket).catch((err) => {
+                    log(`Connection handler error: ${err instanceof Error ? err.message : String(err)}`);
+                    socket.destroy();
+                });
+            });
+            let settled = false;
+            server.on('error', (err) => {
+                if (!settled) {
+                    settled = true;
+                    if (err.code === 'EADDRINUSE') {
+                        reject(new Error(`IPC port ${host}:${port} already in use — another browser-link primary may already be running.`));
+                    }
+                    else {
+                        reject(err);
+                    }
+                }
+                else {
+                    log(`Server error after listening: ${err.message}`);
+                }
+            });
+            server.listen(port, host, () => {
+                settled = true;
+                this.server = server;
+                const addr = server.address();
+                if (addr && typeof addr === 'object') {
+                    this.boundHost = addr.address;
+                    this.boundPortValue = addr.port;
+                }
+                else {
+                    this.boundHost = host;
+                    this.boundPortValue = port;
+                }
+                log(`IPC server listening on ${this.boundHost}:${this.boundPortValue}`);
+                resolve();
+            });
+        });
+    }
+    /** The actual host+port the server is listening on. Set after start()
+     * resolves; meaningful even when port:0 was passed. */
+    boundAddress() {
+        return { host: this.boundHost, port: this.boundPortValue };
+    }
+    /** Tell every connected proxy we're going down (so auto-reelect can fire),
+     * then close the listening socket. Safe to call when start() never ran. */
+    async stop() {
+        for (const session of this.sessions.values()) {
+            try {
+                session.socket.write(encodeFrame({ kind: 'primary-closing', reason: 'shutdown' }));
+            }
+            catch {
+                /* socket already gone */
+            }
+            clearInterval(session.pingTimer);
+            if (session.pongDeadline)
+                clearTimeout(session.pongDeadline);
+            session.socket.end();
+        }
+        this.sessions.clear();
+        if (this.server) {
+            await new Promise((res) => this.server.close(() => res()));
+            this.server = null;
+        }
+    }
+    /** Visible to tests + doctor. */
+    sessionCount() {
+        return this.sessions.size;
+    }
+    /** Exposed for tests only. Production callers never need this. */
+    currentToken() {
+        return this.token;
+    }
+    async handleConnection(socket) {
+        const remoteAddr = normaliseLoopback(socket.remoteAddress ?? '');
+        const remotePort = socket.remotePort;
+        if (!remoteAddr || remotePort == null) {
+            log('Rejected IPC connection: peer address/port not exposed by socket.');
+            socket.destroy();
+            return;
+        }
+        // Kernel-level process binding. Same trick as the WS bridge: we ask the
+        // OS which process owns the peer's TCP port, and reject anything that
+        // does not look like a Node-family binary.
+        const peer = await lookupPeerProcess(remoteAddr, remotePort).catch(() => null);
+        if (!peer || !NODE_PROCESS_NAMES.has(peer.binaryName.toLowerCase())) {
+            log(`Rejected IPC connection from ${remoteAddr}:${remotePort}: not a known Node process (${peer?.binaryName ?? 'unknown'}).`);
+            socket.destroy();
+            return;
+        }
+        let buffer = '';
+        let authenticated = false;
+        let sessionId = null;
+        const handleLine = (line) => {
+            if (line.length === 0)
+                return;
+            const frame = parseFrame(line);
+            if (!frame) {
+                log('Invalid frame received; closing connection.');
+                socket.destroy();
+                return;
+            }
+            if (!authenticated) {
+                if (frame.kind !== 'hello') {
+                    log(`First frame was not "hello" (got ${frame.kind}); closing.`);
+                    socket.destroy();
+                    return;
+                }
+                if (!isCompatibleVersion(frame.version)) {
+                    socket.write(encodeFrame({
+                        kind: 'hello-reject',
+                        reason: `version mismatch: primary ${IPC_PROTOCOL_VERSION}, proxy ${frame.version}`,
+                    }));
+                    socket.end();
+                    return;
+                }
+                if (frame.token !== this.token) {
+                    socket.write(encodeFrame({ kind: 'hello-reject', reason: 'invalid token' }));
+                    socket.end();
+                    return;
+                }
+                // Auth ok — register session and start the heartbeat.
+                authenticated = true;
+                sessionId = randomUUID();
+                socket.write(encodeFrame({ kind: 'hello-ack', version: IPC_PROTOCOL_VERSION, sessionId }));
+                const sid = sessionId;
+                const session = {
+                    id: sid,
+                    socket,
+                    pingTimer: setInterval(() => this.heartbeat(sid), IPC_PING_INTERVAL_MS),
+                    pongDeadline: null,
+                };
+                this.sessions.set(sid, session);
+                log(`Proxy connected: session=${sid} pid=${peer.pid}`);
+                return;
+            }
+            void this.handleFrame(frame, sessionId, socket);
+        };
+        socket.on('data', (chunk) => {
+            buffer += chunk.toString('utf8');
+            let nl;
+            while ((nl = buffer.indexOf('\n')) >= 0) {
+                const line = buffer.slice(0, nl);
+                buffer = buffer.slice(nl + 1);
+                handleLine(line);
+            }
+        });
+        socket.on('close', () => {
+            if (sessionId) {
+                const session = this.sessions.get(sessionId);
+                if (session) {
+                    clearInterval(session.pingTimer);
+                    if (session.pongDeadline)
+                        clearTimeout(session.pongDeadline);
+                    this.sessions.delete(sessionId);
+                    log(`Proxy disconnected: session=${sessionId}`);
+                }
+            }
+        });
+        socket.on('error', (err) => {
+            log(`Proxy socket error: ${err.message}`);
+        });
+    }
+    heartbeat(sid) {
+        const session = this.sessions.get(sid);
+        if (!session)
+            return;
+        try {
+            session.socket.write(encodeFrame({ kind: 'ping' }));
+        }
+        catch {
+            // socket already closed; the 'close' handler will clean up
+            return;
+        }
+        if (!session.pongDeadline) {
+            session.pongDeadline = setTimeout(() => {
+                log(`Proxy ${sid} did not pong in time; dropping.`);
+                session.socket.destroy();
+            }, IPC_PONG_TIMEOUT_MS);
+        }
+    }
+    async handleFrame(frame, sessionId, socket) {
+        switch (frame.kind) {
+            case 'pong': {
+                const session = this.sessions.get(sessionId);
+                if (session?.pongDeadline) {
+                    clearTimeout(session.pongDeadline);
+                    session.pongDeadline = null;
+                }
+                return;
+            }
+            case 'mcp.request': {
+                const response = await this.dispatchMcpRequest(frame.payload);
+                try {
+                    socket.write(encodeFrame({ kind: 'mcp.response', requestId: frame.requestId, payload: response }));
+                }
+                catch {
+                    /* socket gone */
+                }
+                return;
+            }
+            case 'mcp.notification': {
+                // Proxies forward notifications like notifications/initialized. We
+                // don't reply (notifications have no id). Future work: route to map
+                // event log when we add the traceability layer.
+                return;
+            }
+            case 'ping': {
+                try {
+                    socket.write(encodeFrame({ kind: 'pong' }));
+                }
+                catch {
+                    /* socket gone */
+                }
+                return;
+            }
+            default:
+                // hello/hello-ack/hello-reject/primary-closing should not arrive
+                // post-handshake from a proxy. Ignore defensively.
+                return;
+        }
+    }
+    /** Dispatch a JSON-RPC 2.0 MCP request to the shared handlers and return
+     * a JSON-RPC 2.0 response object. Errors are converted to JSON-RPC error
+     * envelopes — never thrown back to the socket layer. */
+    async dispatchMcpRequest(payload) {
+        if (!payload || typeof payload !== 'object' || Array.isArray(payload)) {
+            return { jsonrpc: '2.0', id: null, error: { code: -32600, message: 'Invalid request' } };
+        }
+        const req = payload;
+        const id = req.id ?? null;
+        const method = req.method ?? '';
+        try {
+            switch (method) {
+                case 'initialize': {
+                    const result = {
+                        protocolVersion: '2024-11-05',
+                        capabilities: { tools: {} },
+                        serverInfo: { name: 'browser-link', version: VERSION },
+                        instructions: SERVER_INSTRUCTIONS,
+                    };
+                    return { jsonrpc: '2.0', id, result };
+                }
+                case 'tools/list': {
+                    const result = handleToolsList(this.deps);
+                    return { jsonrpc: '2.0', id, result };
+                }
+                case 'tools/call': {
+                    const params = req.params;
+                    if (!params || typeof params.name !== 'string') {
+                        return {
+                            jsonrpc: '2.0',
+                            id,
+                            error: { code: -32602, message: 'Missing tool name in params' },
+                        };
+                    }
+                    const result = await handleToolCall({ name: params.name, arguments: params.arguments }, this.deps);
+                    return { jsonrpc: '2.0', id, result };
+                }
+                case 'ping': {
+                    return { jsonrpc: '2.0', id, result: {} };
+                }
+                default:
+                    return {
+                        jsonrpc: '2.0',
+                        id,
+                        error: { code: -32601, message: `Method not found: ${method}` },
+                    };
+            }
+        }
+        catch (err) {
+            const message = err instanceof Error ? err.message : String(err);
+            return { jsonrpc: '2.0', id, error: { code: -32603, message } };
+        }
+    }
+}
+//# sourceMappingURL=server.js.map

package/dist/bridge/server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.js","sourceRoot":"","sources":["../../src/bridge/server.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAyC,MAAM,UAAU,CAAC;AAC/E,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EAAE,iBAAiB,EAAE,MAAM,6BAA6B,CAAC;AAChE,OAAO,EAAE,mBAAmB,EAAE,MAAM,iCAAiC,CAAC;AACtE,OAAO,EAAE,OAAO,EAAE,MAAM,eAAe,CAAC;AACxC,OAAO,EACL,QAAQ,EACR,oBAAoB,EACpB,mBAAmB,EACnB,QAAQ,EACR,oBAAoB,EACpB,WAAW,EACX,mBAAmB,EACnB,UAAU,GAEX,MAAM,eAAe,CAAC;AACvB,OAAO,EAAE,cAAc,EAAE,eAAe,EAAqB,MAAM,eAAe,CAAC;AACnF,OAAO,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAEzC;;;;;;;GAOG;AAEH,SAAS,GAAG,CAAC,GAAW;IACtB,gDAAgD;IAChD,OAAO,CAAC,KAAK,CAAC,sBAAsB,GAAG,EAAE,CAAC,CAAC;AAC7C,CAAC;AAED;gFACgF;AAChF,MAAM,kBAAkB,GAAwB,IAAI,GAAG,CAAC;IACtD,MAAM;IACN,UAAU;IACV,QAAQ;IACR,KAAK;IACL,SAAS;IACT,cAAc;IACd,kBAAkB;CACnB,CAAC,CAAC;AAEH,uEAAuE;AACvE,SAAS,iBAAiB,CAAC,IAAY;IACrC,IAAI,IAAI,KAAK,KAAK,IAAI,IAAI,KAAK,kBAAkB;QAAE,OAAO,WAAW,CAAC;IACtE,IAAI,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC;QAAE,OAAO,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;IACpE,OAAO,IAAI,CAAC;AACd,CAAC;AAkBD,MAAM,OAAO,SAAS;IAQV;IACA;IARF,MAAM,GAAqB,IAAI,CAAC;IAChC,QAAQ,GAAG,IAAI,GAAG,EAAwB,CAAC;IAC3C,KAAK,CAAS;IACd,SAAS,GAAG,QAAQ,CAAC;IACrB,cAAc,GAAG,QAAQ,CAAC;IAElC,YACU,IAAkB,EAClB,UAA4B,EAAE;QAD9B,SAAI,GAAJ,IAAI,CAAc;QAClB,YAAO,GAAP,OAAO,CAAuB;QAEtC,uEAAuE;QACvE,uDAAuD;QACvD,IAAI,CAAC,KAAK,GAAG,WAAW,EAAE,CAAC;IAC7B,CAAC;IAED;+EAC2E;IAC3E,KAAK;QACH,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,IAAI,QAAQ,CAAC;YAC3C,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,IAAI,QAAQ,CAAC;YAC3C,MAAM,MAAM,GAAG,YAAY,CAAC,CAAC,MAAM,EAAE,EAAE;gBACrC,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;oBAC1C,GAAG,CAAC,6BAA6B,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;oBACrF,MAAM,CAAC,OAAO,EAAE,CAAC;gBACnB,CAAC,CAAC,CAAC;YACL,CAAC,CAAC,CAAC;YACH,IAAI,OAAO,GAAG,KAAK,CAAC;YACpB,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAA0B,EAAE,EAAE;gBAChD,IAAI,CAAC,OAAO,EAAE,CAAC;oBACb,OAAO,GAAG,IAAI,CAAC;oBACf,IAAI,GAAG,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;wBAC9B,MAAM,CACJ,IAAI,KAAK,CACP,YAAY,IAAI,IAAI,IAAI,wEAAwE,CACjG,CACF,CAAC;oBACJ,CAAC;yBAAM,CAAC;wBACN,MAAM,CAAC,GAAG,CAAC,CAAC;oBACd,CAAC;gBACH,CAAC;qBAAM,CAAC;oBACN,GAAG,CAAC,iCAAiC,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;gBACtD,CAAC;YACH,CAAC,CAAC,CAAC;YACH,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,IAAI,EAAE,GAAG,EAAE;gBAC7B,OAAO,GAAG,IAAI,CAAC;gBACf,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;gBACrB,MAAM,IAAI,GAAG,MAAM,CAAC,OAAO,EAAE,CAAC;gBAC9B,IAAI,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;oBACrC,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC;oBAC9B,IAAI,CAAC,cAAc,GAAG,IAAI,CAAC,IAAI,CAAC;gBAClC,CAAC;qBAAM,CAAC;oBACN,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC;oBACtB,IAAI,CAAC,cAAc,GAAG,IAAI,CAAC;gBAC7B,CAAC;gBACD,GAAG,CAAC,2BAA2B,IAAI,CAAC,SAAS,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC,CAAC;gBACxE,OAAO,EAAE,CAAC;YACZ,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC;IAED;2DACuD;IACvD,YAAY;QACV,OAAO,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,EAAE,IAAI,EAAE,IAAI,CAAC,cAAc,EAAE,CAAC;IAC7D,CAAC;IAED;+EAC2E;IAC3E,KAAK,CAAC,IAAI;QACR,KAAK,MAAM,OAAO,IAAI,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,EAAE,CAAC;YAC7C,IAAI,CAAC;gBACH,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,WAAW,CAAC,EAAE,IAAI,EAAE,iBAAiB,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC;YACrF,CAAC;YAAC,MAAM,CAAC;gBACP,yBAAyB;YAC3B,CAAC;YACD,aAAa,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;YACjC,IAAI,OAAO,CAAC,YAAY;gBAAE,YAAY,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;YAC7D,OAAO,CAAC,MAAM,CAAC,GAAG,EAAE,CAAC;QACvB,CAAC;QACD,IAAI,CAAC,QAAQ,CAAC,KAAK,EAAE,CAAC;QACtB,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YAChB,MAAM,IAAI,OAAO,CAAO,CAAC,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,MAAO,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;YAClE,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC;QACrB,CAAC;IACH,CAAC;IAED,iCAAiC;IACjC,YAAY;QACV,OAAO,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC;IAC5B,CAAC;IAED,kEAAkE;IAClE,YAAY;QACV,OAAO,IAAI,CAAC,KAAK,CAAC;IACpB,CAAC;IAEO,KAAK,CAAC,gBAAgB,CAAC,MAAc;QAC3C,MAAM,UAAU,GAAG,iBAAiB,CAAC,MAAM,CAAC,aAAa,IAAI,EAAE,CAAC,CAAC;QACjE,MAAM,UAAU,GAAG,MAAM,CAAC,UAAU,CAAC;QAErC,IAAI,CAAC,UAAU,IAAI,UAAU,IAAI,IAAI,EAAE,CAAC;YACtC,GAAG,CAAC,mEAAmE,CAAC,CAAC;YACzE,MAAM,CAAC,OAAO,EAAE,CAAC;YACjB,OAAO;QACT,CAAC;QAED,wEAAwE;QACxE,sEAAsE;QACtE,2CAA2C;QAC3C,MAAM,IAAI,GAAG,MAAM,iBAAiB,CAAC,UAAU,EAAE,UAAU,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,CAAC;QAC/E,IAAI,CAAC,IAAI,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,IAAI,CAAC,UAAU,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;YACpE,GAAG,CACD,gCAAgC,UAAU,IAAI,UAAU,+BACtD,IAAI,EAAE,UAAU,IAAI,SACtB,IAAI,CACL,CAAC;YACF,MAAM,CAAC,OAAO,EAAE,CAAC;YACjB,OAAO;QACT,CAAC;QAED,IAAI,MAAM,GAAG,EAAE,CAAC;QAChB,IAAI,aAAa,GAAG,KAAK,CAAC;QAC1B,IAAI,SAAS,GAAkB,IAAI,CAAC;QAEpC,MAAM,UAAU,GAAG,CAAC,IAAY,EAAE,EAAE;YAClC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC;gBAAE,OAAO;YAC9B,MAAM,KAAK,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC;YAC/B,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,GAAG,CAAC,6CAA6C,CAAC,CAAC;gBACnD,MAAM,CAAC,OAAO,EAAE,CAAC;gBACjB,OAAO;YACT,CAAC;YACD,IAAI,CAAC,aAAa,EAAE,CAAC;gBACnB,IAAI,KAAK,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;oBAC3B,GAAG,CAAC,oCAAoC,KAAK,CAAC,IAAI,aAAa,CAAC,CAAC;oBACjE,MAAM,CAAC,OAAO,EAAE,CAAC;oBACjB,OAAO;gBACT,CAAC;gBACD,IAAI,CAAC,mBAAmB,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;oBACxC,MAAM,CAAC,KAAK,CACV,WAAW,CAAC;wBACV,IAAI,EAAE,cAAc;wBACpB,MAAM,EAAE,6BAA6B,oBAAoB,WAAW,KAAK,CAAC,OAAO,EAAE;qBACpF,CAAC,CACH,CAAC;oBACF,MAAM,CAAC,GAAG,EAAE,CAAC;oBACb,OAAO;gBACT,CAAC;gBACD,IAAI,KAAK,CAAC,KAAK,KAAK,IAAI,CAAC,KAAK,EAAE,CAAC;oBAC/B,MAAM,CAAC,KAAK,CAAC,WAAW,CAAC,EAAE,IAAI,EAAE,cAAc,EAAE,MAAM,EAAE,eAAe,EAAE,CAAC,CAAC,CAAC;oBAC7E,MAAM,CAAC,GAAG,EAAE,CAAC;oBACb,OAAO;gBACT,CAAC;gBACD,sDAAsD;gBACtD,aAAa,GAAG,IAAI,CAAC;gBACrB,SAAS,GAAG,UAAU,EAAE,CAAC;gBACzB,MAAM,CAAC,KAAK,CAAC,WAAW,CAAC,EAAE,IAAI,EAAE,WAAW,EAAE,OAAO,EAAE,oBAAoB,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC;gBAC3F,MAAM,GAAG,GAAG,SAAS,CAAC;gBACtB,MAAM,OAAO,GAAiB;oBAC5B,EAAE,EAAE,GAAG;oBACP,MAAM;oBACN,SAAS,EAAE,WAAW,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,oBAAoB,CAAC;oBACvE,YAAY,EAAE,IAAI;iBACnB,CAAC;gBACF,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;gBAChC,GAAG,CAAC,4BAA4B,GAAG,QAAQ,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;gBACvD,OAAO;YACT,CAAC;YACD,KAAK,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,SAAU,EAAE,MAAM,CAAC,CAAC;QACnD,CAAC,CAAC;QAEF,MAAM,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAa,EAAE,EAAE;YAClC,MAAM,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;YACjC,IAAI,EAAU,CAAC;YACf,OAAO,CAAC,EAAE,GAAG,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC;gBACxC,MAAM,IAAI,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;gBACjC,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC;gBAC9B,UAAU,CAAC,IAAI,CAAC,CAAC;YACnB,CAAC;QACH,CAAC,CAAC,CAAC;QACH,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;YACtB,IAAI,SAAS,EAAE,CAAC;gBACd,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;gBAC7C,IAAI,OAAO,EAAE,CAAC;oBACZ,aAAa,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;oBACjC,IAAI,OAAO,CAAC,YAAY;wBAAE,YAAY,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;oBAC7D,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;oBAChC,GAAG,CAAC,+BAA+B,SAAS,EAAE,CAAC,CAAC;gBAClD,CAAC;YACH,CAAC;QACH,CAAC,CAAC,CAAC;QACH,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;YACzB,GAAG,CAAC,uBAAuB,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;QAC5C,CAAC,CAAC,CAAC;IACL,CAAC;IAEO,SAAS,CAAC,GAAW;QAC3B,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACvC,IAAI,CAAC,OAAO;YAAE,OAAO;QACrB,IAAI,CAAC;YACH,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,WAAW,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC,CAAC;QACtD,CAAC;QAAC,MAAM,CAAC;YACP,2DAA2D;YAC3D,OAAO;QACT,CAAC;QACD,IAAI,CAAC,OAAO,CAAC,YAAY,EAAE,CAAC;YAC1B,OAAO,CAAC,YAAY,GAAG,UAAU,CAAC,GAAG,EAAE;gBACrC,GAAG,CAAC,SAAS,GAAG,kCAAkC,CAAC,CAAC;gBACpD,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YAC3B,CAAC,EAAE,mBAAmB,CAAC,CAAC;QAC1B,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,WAAW,CAAC,KAAY,EAAE,SAAiB,EAAE,MAAc;QACvE,QAAQ,KAAK,CAAC,IAAI,EAAE,CAAC;YACnB,KAAK,MAAM,CAAC,CAAC,CAAC;gBACZ,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;gBAC7C,IAAI,OAAO,EAAE,YAAY,EAAE,CAAC;oBAC1B,YAAY,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;oBACnC,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC;gBAC9B,CAAC;gBACD,OAAO;YACT,CAAC;YACD,KAAK,aAAa,CAAC,CAAC,CAAC;gBACnB,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;gBAC9D,IAAI,CAAC;oBACH,MAAM,CAAC,KAAK,CACV,WAAW,CAAC,EAAE,IAAI,EAAE,cAAc,EAAE,SAAS,EAAE,KAAK,CAAC,SAAS,EAAE,OAAO,EAAE,QAAQ,EAAE,CAAC,CACrF,CAAC;gBACJ,CAAC;gBAAC,MAAM,CAAC;oBACP,iBAAiB;gBACnB,CAAC;gBACD,OAAO;YACT,CAAC;YACD,KAAK,kBAAkB,CAAC,CAAC,CAAC;gBACxB,mEAAmE;gBACnE,oEAAoE;gBACpE,gDAAgD;gBAChD,OAAO;YACT,CAAC;YACD,KAAK,MAAM,CAAC,CAAC,CAAC;gBACZ,IAAI,CAAC;oBACH,MAAM,CAAC,KAAK,CAAC,WAAW,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC,CAAC;gBAC9C,CAAC;gBAAC,MAAM,CAAC;oBACP,iBAAiB;gBACnB,CAAC;gBACD,OAAO;YACT,CAAC;YACD;gBACE,iEAAiE;gBACjE,mDAAmD;gBACnD,OAAO;QACX,CAAC;IACH,CAAC;IAED;;4DAEwD;IAChD,KAAK,CAAC,kBAAkB,CAAC,OAAgB;QAC/C,IAAI,CAAC,OAAO,IAAI,OAAO,OAAO,KAAK,QAAQ,IAAI,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;YACtE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,iBAAiB,EAAE,EAAE,CAAC;QAC3F,CAAC;QACD,MAAM,GAAG,GAAG,OAKX,CAAC;QACF,MAAM,EAAE,GAAG,GAAG,CAAC,EAAE,IAAI,IAAI,CAAC;QAC1B,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,IAAI,EAAE,CAAC;QAChC,IAAI,CAAC;YACH,QAAQ,MAAM,EAAE,CAAC;gBACf,KAAK,YAAY,CAAC,CAAC,CAAC;oBAClB,MAAM,MAAM,GAAG;wBACb,eAAe,EAAE,YAAY;wBAC7B,YAAY,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE;wBAC3B,UAAU,EAAE,EAAE,IAAI,EAAE,cAAc,EAAE,OAAO,EAAE,OAAO,EAAE;wBACtD,YAAY,EAAE,mBAAmB;qBAClC,CAAC;oBACF,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,MAAM,EAAE,CAAC;gBACxC,CAAC;gBACD,KAAK,YAAY,CAAC,CAAC,CAAC;oBAClB,MAAM,MAAM,GAAG,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;oBAC1C,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,MAAM,EAAE,CAAC;gBACxC,CAAC;gBACD,KAAK,YAAY,CAAC,CAAC,CAAC;oBAClB,MAAM,MAAM,GAAG,GAAG,CAAC,MAA4D,CAAC;oBAChF,IAAI,CAAC,MAAM,IAAI,OAAO,MAAM,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;wBAC/C,OAAO;4BACL,OAAO,EAAE,KAAK;4BACd,EAAE;4BACF,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,6BAA6B,EAAE;yBAChE,CAAC;oBACJ,CAAC;oBACD,MAAM,MAAM,GAAG,MAAM,cAAc,CACjC,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,EAAE,SAAS,EAAE,MAAM,CAAC,SAAS,EAAE,EAClD,IAAI,CAAC,IAAI,CACV,CAAC;oBACF,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,MAAM,EAAE,CAAC;gBACxC,CAAC;gBACD,KAAK,MAAM,CAAC,CAAC,CAAC;oBACZ,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;gBAC5C,CAAC;gBACD;oBACE,OAAO;wBACL,OAAO,EAAE,KAAK;wBACd,EAAE;wBACF,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,qBAAqB,MAAM,EAAE,EAAE;qBAChE,CAAC;YACN,CAAC;QACH,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,OAAO,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YACjE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE,CAAC;QAClE,CAAC;IACH,CAAC;CACF"}

package/dist/bridge/token.d.ts

@@ -0,0 +1,17 @@
+/** Where the per-session token file lives. */
+export declare function tokenPath(): string;
+/** Generate a fresh 32-byte hex token. */
+export declare function generateToken(): string;
+/** Write the given token to the data dir, replacing any previous value.
+ * Tries to set 0600 permissions on POSIX; on Windows the file ACL
+ * inherits from the user's profile, which is already user-only. */
+export declare function writeToken(token: string): string;
+/** Read the current token. Returns null if no token file exists or if
+ * it does not look like a valid 32-byte hex string. */
+export declare function readToken(): string | null;
+/** Generate + write a fresh token. Returns it. Called by every primary
+ * on startup, so any zombie token from a previous primary is invalidated. */
+export declare function rotateToken(): string;
+/** Best-effort cleanup. Used when the primary shuts down cleanly so the
+ * file doesn't linger as misleading state. */
+export declare function clearToken(): void;

package/dist/bridge/token.js

@@ -0,0 +1,79 @@
+import { chmodSync, existsSync, mkdirSync, readFileSync, unlinkSync, writeFileSync } from 'node:fs';
+import { dirname, join } from 'node:path';
+import { randomBytes } from 'node:crypto';
+import { getDataDir } from '../map/paths.js';
+/**
+ * Per-session authentication token for the IPC channel between primary and
+ * proxy browser-link processes. The primary writes a fresh random token at
+ * startup; proxies read it just before sending their hello frame.
+ *
+ * Security model: the file lives in the user's data dir. On POSIX we set
+ * 0600 so only the user can read it. On Windows the file inherits the
+ * user-profile ACL, which is already restricted to the same user. A
+ * malicious process running as the same user can read the file — at that
+ * point the user has already lost — but a different local user, a remote
+ * peer, or a sandboxed process cannot.
+ */
+const TOKEN_FILE_NAME = 'multi-agent-token';
+const TOKEN_HEX_LENGTH = 64; // 32 bytes hex = 64 chars
+/** Where the per-session token file lives. */
+export function tokenPath() {
+    return join(getDataDir(), TOKEN_FILE_NAME);
+}
+/** Generate a fresh 32-byte hex token. */
+export function generateToken() {
+    return randomBytes(32).toString('hex');
+}
+/** Write the given token to the data dir, replacing any previous value.
+ * Tries to set 0600 permissions on POSIX; on Windows the file ACL
+ * inherits from the user's profile, which is already user-only. */
+export function writeToken(token) {
+    const path = tokenPath();
+    mkdirSync(dirname(path), { recursive: true });
+    writeFileSync(path, token, 'utf8');
+    try {
+        chmodSync(path, 0o600);
+    }
+    catch {
+        // chmod is a no-op on Windows; ignore.
+    }
+    return path;
+}
+/** Read the current token. Returns null if no token file exists or if
+ * it does not look like a valid 32-byte hex string. */
+export function readToken() {
+    const path = tokenPath();
+    if (!existsSync(path))
+        return null;
+    try {
+        const raw = readFileSync(path, 'utf8').trim();
+        if (raw.length !== TOKEN_HEX_LENGTH)
+            return null;
+        if (!/^[0-9a-f]+$/i.test(raw))
+            return null;
+        return raw;
+    }
+    catch {
+        return null;
+    }
+}
+/** Generate + write a fresh token. Returns it. Called by every primary
+ * on startup, so any zombie token from a previous primary is invalidated. */
+export function rotateToken() {
+    const token = generateToken();
+    writeToken(token);
+    return token;
+}
+/** Best-effort cleanup. Used when the primary shuts down cleanly so the
+ * file doesn't linger as misleading state. */
+export function clearToken() {
+    const path = tokenPath();
+    try {
+        if (existsSync(path))
+            unlinkSync(path);
+    }
+    catch {
+        // ignore
+    }
+}
+//# sourceMappingURL=token.js.map

package/dist/bridge/token.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"token.js","sourceRoot":"","sources":["../../src/bridge/token.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,UAAU,EAAE,SAAS,EAAE,YAAY,EAAE,UAAU,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AACpG,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAC1C,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAC1C,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAE7C;;;;;;;;;;;GAWG;AAEH,MAAM,eAAe,GAAG,mBAAmB,CAAC;AAC5C,MAAM,gBAAgB,GAAG,EAAE,CAAC,CAAC,0BAA0B;AAEvD,8CAA8C;AAC9C,MAAM,UAAU,SAAS;IACvB,OAAO,IAAI,CAAC,UAAU,EAAE,EAAE,eAAe,CAAC,CAAC;AAC7C,CAAC;AAED,0CAA0C;AAC1C,MAAM,UAAU,aAAa;IAC3B,OAAO,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;AACzC,CAAC;AAED;;mEAEmE;AACnE,MAAM,UAAU,UAAU,CAAC,KAAa;IACtC,MAAM,IAAI,GAAG,SAAS,EAAE,CAAC;IACzB,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC9C,aAAa,CAAC,IAAI,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC;IACnC,IAAI,CAAC;QACH,SAAS,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC;IACzB,CAAC;IAAC,MAAM,CAAC;QACP,uCAAuC;IACzC,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED;uDACuD;AACvD,MAAM,UAAU,SAAS;IACvB,MAAM,IAAI,GAAG,SAAS,EAAE,CAAC;IACzB,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC;QAAE,OAAO,IAAI,CAAC;IACnC,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,YAAY,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC,IAAI,EAAE,CAAC;QAC9C,IAAI,GAAG,CAAC,MAAM,KAAK,gBAAgB;YAAE,OAAO,IAAI,CAAC;QACjD,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,GAAG,CAAC;YAAE,OAAO,IAAI,CAAC;QAC3C,OAAO,GAAG,CAAC;IACb,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED;6EAC6E;AAC7E,MAAM,UAAU,WAAW;IACzB,MAAM,KAAK,GAAG,aAAa,EAAE,CAAC;IAC9B,UAAU,CAAC,KAAK,CAAC,CAAC;IAClB,OAAO,KAAK,CAAC;AACf,CAAC;AAED;8CAC8C;AAC9C,MAAM,UAAU,UAAU;IACxB,MAAM,IAAI,GAAG,SAAS,EAAE,CAAC;IACzB,IAAI,CAAC;QACH,IAAI,UAAU,CAAC,IAAI,CAAC;YAAE,UAAU,CAAC,IAAI,CAAC,CAAC;IACzC,CAAC;IAAC,MAAM,CAAC;QACP,SAAS;IACX,CAAC;AACH,CAAC"}