@primust/verifier 1.0.0 → 1.1.0

package/dist/tsa-chain-7KSQ5LAH.js

@@ -0,0 +1,235 @@
+// src/tsa-chain.ts
+import { X509Certificate, createHash } from "crypto";
+var DIGICERT_TRUSTED_ROOT_G4_FPR_HEX = "552f7bdcf1a7af9e6ce672017f4f12abf77240c78e761ac203d1d9d20ac89988";
+var TIME_STAMPING_EKU_OID = "1.3.6.1.5.5.7.3.8";
+var DIGICERT_TRUSTED_ROOT_G4_PEM = `-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----`;
+function loadBundledRoots() {
+  const out = [];
+  try {
+    out.push(new X509Certificate(DIGICERT_TRUSTED_ROOT_G4_PEM));
+  } catch {
+  }
+  return out;
+}
+var BUNDLED_ROOTS = loadBundledRoots();
+function trustedRootFprs() {
+  const env = globalThis.process?.env?.PRIMUST_TSA_ROOT_FPR;
+  if (!env || !env.trim()) {
+    return /* @__PURE__ */ new Set([DIGICERT_TRUSTED_ROOT_G4_FPR_HEX]);
+  }
+  return new Set(
+    env.split(",").map((f) => f.trim().toLowerCase().replace(/:/g, "")).filter(Boolean)
+  );
+}
+function verifyTsaChain(tsTokenB64) {
+  let tokenDer;
+  try {
+    tokenDer = Buffer.from(tsTokenB64, "base64");
+  } catch {
+    return { ok: false, reason: "parse_error" };
+  }
+  let certs;
+  try {
+    certs = extractCertificates(tokenDer);
+  } catch {
+    return { ok: false, reason: "parse_error" };
+  }
+  if (certs.length === 0) {
+    return { ok: false, reason: "no_certs" };
+  }
+  const trusted = trustedRootFprs();
+  let leaf = null;
+  for (const c of certs) {
+    if (hasTimeStampingEku(c)) {
+      leaf = c;
+      break;
+    }
+  }
+  if (!leaf) {
+    const subjects = new Set(certs.map((c) => c.subject));
+    const issuers = new Set(certs.map((c) => c.issuer));
+    for (const c of certs) {
+      if (subjects.has(c.subject) && !issuers.has(c.subject)) {
+        leaf = c;
+        break;
+      }
+    }
+  }
+  if (!leaf) {
+    return { ok: false, reason: "leaf_not_found" };
+  }
+  if (!hasTimeStampingEku(leaf)) {
+    return { ok: false, reason: "missing_eku" };
+  }
+  if (!isWithinValidity(leaf)) {
+    return { ok: false, reason: "expired" };
+  }
+  const candidateRoots = BUNDLED_ROOTS.filter(
+    (r) => trusted.has(certFingerprint(r))
+  );
+  const opRootPem = globalThis.process?.env?.PRIMUST_TSA_ROOT_PEM;
+  if (opRootPem) {
+    try {
+      const opRoot = new X509Certificate(opRootPem);
+      if (trusted.has(certFingerprint(opRoot))) {
+        candidateRoots.push(opRoot);
+      }
+    } catch {
+      return { ok: false, reason: "parse_error" };
+    }
+  }
+  if (candidateRoots.length === 0) {
+    return { ok: false, reason: "root_not_trusted" };
+  }
+  const bySubject = /* @__PURE__ */ new Map();
+  for (const c of certs) bySubject.set(c.subject, c);
+  const byRootSubject = /* @__PURE__ */ new Map();
+  for (const r of candidateRoots) byRootSubject.set(r.subject, r);
+  let current = leaf;
+  const seen = /* @__PURE__ */ new Set();
+  for (let hop = 0; hop < 8; hop++) {
+    if (seen.has(current.subject)) {
+      return { ok: false, reason: "chain_incomplete" };
+    }
+    seen.add(current.subject);
+    const rootCert = byRootSubject.get(current.issuer);
+    if (rootCert) {
+      if (!current.verify(rootCert.publicKey)) {
+        return { ok: false, reason: "signature_invalid" };
+      }
+      if (!isWithinValidity(rootCert)) {
+        return { ok: false, reason: "expired" };
+      }
+      return { ok: true, reason: "ok" };
+    }
+    const issuerCert = bySubject.get(current.issuer);
+    if (issuerCert && issuerCert !== current) {
+      if (!current.verify(issuerCert.publicKey)) {
+        return { ok: false, reason: "signature_invalid" };
+      }
+      if (!isWithinValidity(issuerCert)) {
+        return { ok: false, reason: "expired" };
+      }
+      if (issuerCert.subject === issuerCert.issuer) {
+        if (trusted.has(certFingerprint(issuerCert))) {
+          return { ok: true, reason: "ok" };
+        }
+        return { ok: false, reason: "root_not_trusted" };
+      }
+      current = issuerCert;
+      continue;
+    }
+    return { ok: false, reason: "chain_incomplete" };
+  }
+  return { ok: false, reason: "chain_incomplete" };
+}
+function certFingerprint(cert) {
+  return createHash("sha256").update(cert.raw).digest("hex");
+}
+function hasTimeStampingEku(cert) {
+  const info = cert.toString();
+  return info.includes(TIME_STAMPING_EKU_OID) || info.includes("Time Stamping");
+}
+function isWithinValidity(cert) {
+  const now = Date.now();
+  const nb = Date.parse(cert.validFrom);
+  const na = Date.parse(cert.validTo);
+  if (Number.isNaN(nb) || Number.isNaN(na)) return false;
+  return nb <= now && now <= na;
+}
+function extractCertificates(tokenDer) {
+  const signedDataOid = Buffer.from([
+    6,
+    9,
+    42,
+    134,
+    72,
+    134,
+    247,
+    13,
+    1,
+    7,
+    2
+  ]);
+  const oidIdx = tokenDer.indexOf(signedDataOid);
+  if (oidIdx === -1) return [];
+  const scanStart = oidIdx + signedDataOid.length;
+  const limit = tokenDer.length;
+  for (let i = scanStart; i < limit - 2; i++) {
+    if (tokenDer[i] === 160) {
+      const lenInfo = parseDerLength(tokenDer, i + 1);
+      if (!lenInfo) continue;
+      const { length, headerLen } = lenInfo;
+      const setStart = i + 1 + headerLen;
+      const setEnd = setStart + length;
+      if (setEnd > limit) continue;
+      const certs = [];
+      let p = setStart;
+      while (p < setEnd) {
+        if (tokenDer[p] !== 48) break;
+        const li = parseDerLength(tokenDer, p + 1);
+        if (!li) break;
+        const certLen = li.length;
+        const certHdr = li.headerLen;
+        const certEnd = p + 1 + certHdr + certLen;
+        if (certEnd > setEnd) break;
+        const certDer = tokenDer.subarray(p, certEnd);
+        try {
+          certs.push(new X509Certificate(certDer));
+        } catch {
+        }
+        p = certEnd;
+      }
+      if (certs.length > 0) return certs;
+    }
+  }
+  return [];
+}
+function parseDerLength(buf, offset) {
+  if (offset >= buf.length) return null;
+  const first = buf[offset];
+  if ((first & 128) === 0) {
+    return { length: first, headerLen: 1 };
+  }
+  const n = first & 127;
+  if (n === 0 || n > 4 || offset + n >= buf.length) return null;
+  let val = 0;
+  for (let i = 0; i < n; i++) {
+    val = val << 8 | buf[offset + 1 + i];
+  }
+  return { length: val, headerLen: 1 + n };
+}
+export {
+  verifyTsaChain
+};

package/dist/v29-envelope-GFVVA2S6.js

@@ -0,0 +1,42 @@
+import {
+  ALLOWED_KINDS,
+  ALLOWED_TRUST_EDGES,
+  ENVELOPE_VERSION,
+  PROOF_TIER_HIERARCHY,
+  canonicalHash,
+  canonicalJson,
+  reproduceAggregations,
+  reproduceManifestCanonicalHash,
+  reproduceTierCeiling,
+  v29Fail,
+  v29Pass,
+  validateAggregations,
+  validateEnvelopeShape,
+  validateManifestCanonicalHash,
+  validateManifestSignature,
+  validateRecordsAgainstHarness,
+  validateRuntimeBindingHash,
+  validateRuntimeBindingSignature,
+  verifyV29
+} from "./chunk-LTWQK3HT.js";
+export {
+  ALLOWED_KINDS,
+  ALLOWED_TRUST_EDGES,
+  ENVELOPE_VERSION,
+  PROOF_TIER_HIERARCHY,
+  canonicalHash,
+  canonicalJson,
+  reproduceAggregations,
+  reproduceManifestCanonicalHash,
+  reproduceTierCeiling,
+  v29Fail,
+  v29Pass,
+  validateAggregations,
+  validateEnvelopeShape,
+  validateManifestCanonicalHash,
+  validateManifestSignature,
+  validateRecordsAgainstHarness,
+  validateRuntimeBindingHash,
+  validateRuntimeBindingSignature,
+  verifyV29
+};

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@primust/verifier",
-  "version": "1.0.0",
+  "version": "1.1.0",
   "description": "Offline and CLI verifier for Primust VPECs. Free forever. No account required.",
   "homepage": "https://primust.com",
   "repository": {
@@ -15,15 +15,10 @@
     "primust-verify": "dist/cli.js"
   },
   "scripts": {
-    "build": "tsc",
+    "build": "tsup src/index.ts src/cli.ts --format esm --dts --target node20",
     "test": "vitest run",
     "test:list": "vitest list --filesOnly"
   },
-  "dependencies": {
-    "@primust/artifact-core": "^1.0.0",
-    "@noble/hashes": "^1.8.0",
-    "@zkpassport/poseidon2": "^0.6.2"
-  },
   "peerDependencies": {
     "better-sqlite3": "^12.0.0"
   },
@@ -35,9 +30,13 @@
   "devDependencies": {
     "@types/node": "^22.0.0",
     "better-sqlite3": "^12.6.2",
+    "tsup": "^8.5.1",
     "tsx": "^4.19.0",
     "typescript": "^5.6.0",
-    "vitest": "^3.0.0"
+    "vitest": "^3.0.0",
+    "@primust/artifact-core": "^1.0.0",
+    "@noble/hashes": "^1.8.0",
+    "@zkpassport/poseidon2": "^0.6.2"
   },
   "files": [
     "dist"

package/dist/bounded-trace.d.ts

@@ -1,46 +0,0 @@
-/**
- * Reference TypeScript interpreter for bounded_trace_v1 verification.
- *
- * This is the canonical second-opinion verifier described in PRIMUST_V27 §20.2,
- * ported from verifier-py/src/primust_verify/bounded_trace.py. It is
- * intentionally small and obviously-correct: consumes a BoundedTraceV1 payload
- * plus a ProfileRecord and produces one of the §16.3 canonical downgrade
- * reason codes (or "ok" on success).
- *
- * Crypto used: SHA-256 with RFC 6962-style domain-separated leaves (0x00)
- * and nodes (0x01). Canonical JSON follows RFC 8785 + ECMAScript 7.1.12.1
- * number serialization for cross-language parity.
- *
- * SI-3 (VPEC verifiability): this module's output MUST match the Python
- * reference byte-for-byte across the shared conformance fixture corpus at
- * packages/verifier-py/tests/fixtures/bounded_trace_v1/. The conformance
- * runner in scripts/lane_a_conformance.* enforces this.
- *
- * Zero runtime dependencies besides node:crypto.
- */
-export declare function canonicalNumber(x: number): string;
-/**
- * Canonical JSON serialization:
- *   - object keys sorted lexicographically
- *   - UTF-8
- *   - separators ",":":",  no whitespace
- *   - numbers via canonicalNumber
- *   - strings via JSON.stringify (same escape rules as Python json with ensure_ascii=False)
- */
-export declare function canonicalJson(obj: unknown): Uint8Array;
-export declare function canonicalJsonString(obj: unknown): string;
-export declare function buildMerkleRoot(leaves: Uint8Array[]): string;
-export interface BoundedTraceResult {
-    valid: boolean;
-    proof_level: "operator_bound" | "execution";
-    reason: string;
-    disclosed_operator_count: number;
-    verified_merkle_paths: number;
-    details: Record<string, unknown>;
-}
-export declare const REASONS: readonly ["profile_not_found", "profile_signature_invalid", "profile_not_empirical", "profile_expired", "profile_revoked", "profile_no_freshness_window", "profile_trace_mismatch", "runtime_not_supported", "trace_schema_unknown", "missing_merkle_root", "merkle_inclusion_failed", "threshold_violation", "runtime_section_missing", "retrieval_section_missing", "closed_api_pre_cohort", "closed_api_pre_promote", "closed_api_v2_promoted", "profile_deprecated", "unknown_lifecycle_state"];
-export type ReasonCode = (typeof REASONS)[number] | "thresholds_verified";
-export declare function verifyBoundedTrace(trace: Record<string, unknown>, profile: Record<string, unknown>, options?: {
-    now?: Date;
-}): BoundedTraceResult;
-//# sourceMappingURL=bounded-trace.d.ts.map

package/dist/bounded-trace.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"bounded-trace.d.ts","sourceRoot":"","sources":["../src/bounded-trace.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;GAmBG;AAMH,wBAAgB,eAAe,CAAC,CAAC,EAAE,MAAM,GAAG,MAAM,CA6BjD;AAED;;;;;;;GAOG;AACH,wBAAgB,aAAa,CAAC,GAAG,EAAE,OAAO,GAAG,UAAU,CAGtD;AAED,wBAAgB,mBAAmB,CAAC,GAAG,EAAE,OAAO,GAAG,MAAM,CAiBxD;AAiCD,wBAAgB,eAAe,CAAC,MAAM,EAAE,UAAU,EAAE,GAAG,MAAM,CAgB5D;AAID,MAAM,WAAW,kBAAkB;IACjC,KAAK,EAAE,OAAO,CAAC;IACf,WAAW,EAAE,gBAAgB,GAAG,WAAW,CAAC;IAC5C,MAAM,EAAE,MAAM,CAAC;IACf,wBAAwB,EAAE,MAAM,CAAC;IACjC,qBAAqB,EAAE,MAAM,CAAC;IAC9B,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CAClC;AAID,eAAO,MAAM,OAAO,qeA0BV,CAAC;AAEX,MAAM,MAAM,UAAU,GAAG,CAAC,OAAO,OAAO,CAAC,CAAC,MAAM,CAAC,GAAG,qBAAqB,CAAC;AAsS1E,wBAAgB,kBAAkB,CAChC,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC9B,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAChC,OAAO,GAAE;IAAE,GAAG,CAAC,EAAE,IAAI,CAAA;CAAO,GAC3B,kBAAkB,CA2JpB"}