npm - @private.me/xbind - Versions diffs - 3.0.2 → 3.0.3 - Mend

@private.me/xbind 3.0.2 → 3.0.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (221) hide show

package/README.md +2366 -204
package/README.md.backup +2121 -0
package/dist-standalone/_deps/mldsa-wasm/dist/mldsa.js +1 -1920
package/dist-standalone/_deps/shared/cjs/errors.js +1 -729
package/dist-standalone/_deps/shared/cjs/index.js +1 -463
package/dist-standalone/_deps/shared/cjs/types.js +1 -315
package/dist-standalone/_deps/shared/errors.js +1 -244
package/dist-standalone/_deps/shared/index.js +1 -72
package/dist-standalone/_deps/shared/types.js +1 -86
package/dist-standalone/_deps/ux-helpers/cjs/errors.js +1 -1
package/dist-standalone/_deps/ux-helpers/cjs/index.js +1 -1
package/dist-standalone/_deps/ux-helpers/cjs/pagination.js +1 -1
package/dist-standalone/_deps/ux-helpers/cjs/progress.js +1 -1
package/dist-standalone/_deps/ux-helpers/cjs/search.js +1 -1
package/dist-standalone/_deps/ux-helpers/cjs/types.js +1 -1
package/dist-standalone/_deps/ux-helpers/errors.js +1 -1
package/dist-standalone/_deps/ux-helpers/index.js +1 -1
package/dist-standalone/_deps/ux-helpers/pagination.js +1 -1
package/dist-standalone/_deps/ux-helpers/progress.js +1 -1
package/dist-standalone/_deps/ux-helpers/search.js +1 -1
package/dist-standalone/_deps/xchange/auto-accept.js +1 -1
package/dist-standalone/_deps/xchange/cjs/auto-accept.js +1 -1
package/dist-standalone/_deps/xchange/cjs/errors.js +1 -1
package/dist-standalone/_deps/xchange/cjs/index.js +1 -1
package/dist-standalone/_deps/xchange/cjs/invite-client.js +1 -1
package/dist-standalone/_deps/xchange/cjs/lazy-init.js +1 -1
package/dist-standalone/_deps/xchange/cjs/trust-integration.js +1 -1
package/dist-standalone/_deps/xchange/cjs/xchange.js +1 -1
package/dist-standalone/_deps/xchange/errors.js +1 -1
package/dist-standalone/_deps/xchange/index.js +1 -1
package/dist-standalone/_deps/xchange/invite-client.js +1 -1
package/dist-standalone/_deps/xchange/lazy-init.js +1 -1
package/dist-standalone/_deps/xchange/trust-integration.js +1 -1
package/dist-standalone/_deps/xchange/xchange.js +1 -1
package/dist-standalone/_deps/xregistry/cjs/discovery.js +1 -1
package/dist-standalone/_deps/xregistry/cjs/errors.js +1 -1
package/dist-standalone/_deps/xregistry/cjs/index.js +1 -1
package/dist-standalone/_deps/xregistry/cjs/registry.js +1 -1
package/dist-standalone/_deps/xregistry/cjs/schema.js +1 -1
package/dist-standalone/_deps/xregistry/cjs/types.js +1 -1
package/dist-standalone/_deps/xregistry/discovery.js +1 -1
package/dist-standalone/_deps/xregistry/errors.js +1 -1
package/dist-standalone/_deps/xregistry/index.js +1 -1
package/dist-standalone/_deps/xregistry/registry.js +1 -1
package/dist-standalone/_deps/xregistry/schema.js +1 -1
package/dist-standalone/_deps/xregistry/types.js +1 -1
package/dist-standalone/agent-call.d.ts +2 -2
package/dist-standalone/agent-call.js +1 -659
package/dist-standalone/agent-sdk.js +1 -328
package/dist-standalone/agent.d.ts +2 -0
package/dist-standalone/agent.js +1 -1800
package/dist-standalone/approval.js +1 -193
package/dist-standalone/async-iterators.d.ts +3 -3
package/dist-standalone/async-iterators.js +1 -382
package/dist-standalone/auth.js +1 -219
package/dist-standalone/auto-accept.js +1 -229
package/dist-standalone/backup-config.js +1 -201
package/dist-standalone/backup.js +1 -326
package/dist-standalone/batch-operations.js +1 -388
package/dist-standalone/cancellation.js +1 -477
package/dist-standalone/checkpoint.js +1 -186
package/dist-standalone/circuit-breaker.js +1 -468
package/dist-standalone/cjs/agent-call.js +1 -701
package/dist-standalone/cjs/agent-sdk.js +1 -332
package/dist-standalone/cjs/agent.js +1 -1837
package/dist-standalone/cjs/approval.js +1 -199
package/dist-standalone/cjs/async-iterators.js +1 -392
package/dist-standalone/cjs/auth.js +1 -225
package/dist-standalone/cjs/auto-accept.js +1 -233
package/dist-standalone/cjs/backup-config.js +1 -207
package/dist-standalone/cjs/backup.js +1 -330
package/dist-standalone/cjs/batch-operations.js +1 -397
package/dist-standalone/cjs/cancellation.js +1 -490
package/dist-standalone/cjs/checkpoint.js +1 -193
package/dist-standalone/cjs/circuit-breaker.js +1 -476
package/dist-standalone/cjs/cli/init.js +1 -492
package/dist-standalone/cjs/config-validation.js +1 -522
package/dist-standalone/cjs/connect.js +1 -312
package/dist-standalone/cjs/connection-pool.js +1 -506
package/dist-standalone/cjs/correlation-id.js +1 -339
package/dist-standalone/cjs/crypto-utils.js +1 -176
package/dist-standalone/cjs/debug-mode.js +1 -534
package/dist-standalone/cjs/did-document.js +1 -101
package/dist-standalone/cjs/did-privateme.js +1 -130
package/dist-standalone/cjs/did-web.js +1 -201
package/dist-standalone/cjs/discovery.js +1 -462
package/dist-standalone/cjs/dual-mode.js +1 -251
package/dist-standalone/cjs/email-templates.js +1 -313
package/dist-standalone/cjs/email-transport.js +1 -239
package/dist-standalone/cjs/envelope.js +1 -538
package/dist-standalone/cjs/errors.js +1 -913
package/dist-standalone/cjs/event-emitter.js +1 -461
package/dist-standalone/cjs/gateway-state.js +1 -55
package/dist-standalone/cjs/gateway-transport.js +1 -120
package/dist-standalone/cjs/graceful-degradation.js +1 -403
package/dist-standalone/cjs/guardrails.js +1 -223
package/dist-standalone/cjs/health-check.js +1 -336
package/dist-standalone/cjs/http-compat.js +1 -272
package/dist-standalone/cjs/http-status-map.js +1 -571
package/dist-standalone/cjs/identity.js +1 -645
package/dist-standalone/cjs/index.js +1 -406
package/dist-standalone/cjs/invitation.js +1 -421
package/dist-standalone/cjs/invite.js +1 -328
package/dist-standalone/cjs/key-agreement.js +1 -335
package/dist-standalone/cjs/lazy-init.js +1 -300
package/dist-standalone/cjs/logger.js +1 -291
package/dist-standalone/cjs/loopback-transport.js +1 -0
package/dist-standalone/cjs/mdns-discovery.js +1 -202
package/dist-standalone/cjs/nonce-store.js +1 -80
package/dist-standalone/cjs/pairing-manager.js +1 -223
package/dist-standalone/cjs/plugin-system.js +1 -264
package/dist-standalone/cjs/plugins/logging.js +1 -168
package/dist-standalone/cjs/plugins/metrics.js +1 -181
package/dist-standalone/cjs/plugins/validation.js +1 -302
package/dist-standalone/cjs/policy.js +1 -320
package/dist-standalone/cjs/progress-callbacks.js +1 -583
package/dist-standalone/cjs/redis-nonce-store.js +1 -76
package/dist-standalone/cjs/registry-middleware.js +1 -50
package/dist-standalone/cjs/retry-strategies.js +1 -544
package/dist-standalone/cjs/retry-transport.js +1 -102
package/dist-standalone/cjs/runtime/browser.js +1 -533
package/dist-standalone/cjs/runtime/edge.js +1 -526
package/dist-standalone/cjs/runtime/react-native.js +1 -394
package/dist-standalone/cjs/security-policy.js +1 -245
package/dist-standalone/cjs/serialization.js +1 -1040
package/dist-standalone/cjs/split-channel.js +1 -225
package/dist-standalone/cjs/subscription-proof.js +1 -230
package/dist-standalone/cjs/succession.js +1 -148
package/dist-standalone/cjs/timeouts.js +1 -412
package/dist-standalone/cjs/trace-context.js +1 -424
package/dist-standalone/cjs/trace-spans.js +1 -495
package/dist-standalone/cjs/transport.js +1 -63
package/dist-standalone/cjs/trust-registry.js +1 -991
package/dist-standalone/cjs/types/error-response.js +1 -56
package/dist-standalone/cjs/vault-auth.js +1 -178
package/dist-standalone/cjs/vault-store-loader.js +1 -194
package/dist-standalone/cjs/verify.js +1 -25
package/dist-standalone/cjs/version-info.js +1 -543
package/dist-standalone/cjs/xfetch.js +1 -340
package/dist-standalone/cli/init.js +1 -455
package/dist-standalone/cli/setup.js +1 -514
package/dist-standalone/cli/types.js +1 -27
package/dist-standalone/cli/xbind.js +1 -148
package/dist-standalone/config-validation.js +1 -513
package/dist-standalone/connect.js +1 -274
package/dist-standalone/connection-pool.js +1 -500
package/dist-standalone/correlation-id.js +1 -326
package/dist-standalone/crypto-utils.d.ts +2 -7
package/dist-standalone/crypto-utils.js +1 -157
package/dist-standalone/debug-mode.js +1 -510
package/dist-standalone/did-document.js +1 -96
package/dist-standalone/did-privateme.js +1 -121
package/dist-standalone/did-web.js +1 -196
package/dist-standalone/discovery.js +1 -458
package/dist-standalone/dual-mode.js +1 -247
package/dist-standalone/email-templates.js +1 -309
package/dist-standalone/email-transport.d.ts +2 -2
package/dist-standalone/email-transport.js +1 -232
package/dist-standalone/envelope.js +1 -525
package/dist-standalone/errors.d.ts +13 -3
package/dist-standalone/errors.js +1 -896
package/dist-standalone/event-emitter.js +1 -456
package/dist-standalone/gateway-state.d.ts +1 -1
package/dist-standalone/gateway-state.js +1 -51
package/dist-standalone/gateway-transport.js +1 -116
package/dist-standalone/graceful-degradation.js +1 -396
package/dist-standalone/guardrails.js +1 -216
package/dist-standalone/health-check.d.ts +5 -1
package/dist-standalone/health-check.js +1 -332
package/dist-standalone/http-compat.d.ts +1 -1
package/dist-standalone/http-compat.js +1 -267
package/dist-standalone/http-status-map.js +1 -561
package/dist-standalone/identity.js +1 -619
package/dist-standalone/index.d.ts +15 -4
package/dist-standalone/index.js +1 -78
package/dist-standalone/invitation.js +1 -415
package/dist-standalone/invite.js +1 -324
package/dist-standalone/key-agreement.js +1 -325
package/dist-standalone/lazy-init.d.ts +11 -6
package/dist-standalone/lazy-init.js +1 -295
package/dist-standalone/logger.js +1 -285
package/dist-standalone/loopback-transport.d.ts +87 -0
package/dist-standalone/loopback-transport.js +1 -0
package/dist-standalone/mdns-discovery.js +1 -195
package/dist-standalone/nonce-store.js +1 -76
package/dist-standalone/pairing-manager.js +1 -219
package/dist-standalone/plugin-system.js +1 -257
package/dist-standalone/plugins/logging.js +1 -163
package/dist-standalone/plugins/metrics.d.ts +4 -4
package/dist-standalone/plugins/metrics.js +1 -176
package/dist-standalone/plugins/validation.js +1 -297
package/dist-standalone/policy.js +1 -315
package/dist-standalone/progress-callbacks.js +1 -576
package/dist-standalone/redis-nonce-store.js +1 -72
package/dist-standalone/registry-middleware.js +1 -47
package/dist-standalone/retry-strategies.js +1 -534
package/dist-standalone/retry-transport.js +1 -98
package/dist-standalone/runtime/browser.js +1 -516
package/dist-standalone/runtime/edge.js +1 -511
package/dist-standalone/runtime/react-native.d.ts +1 -1
package/dist-standalone/runtime/react-native.js +1 -383
package/dist-standalone/security-policy.js +1 -239
package/dist-standalone/serialization.js +1 -1031
package/dist-standalone/split-channel.js +1 -219
package/dist-standalone/subscription-proof.js +1 -224
package/dist-standalone/succession.js +1 -142
package/dist-standalone/timeouts.js +1 -398
package/dist-standalone/trace-context.js +1 -414
package/dist-standalone/trace-spans.js +1 -488
package/dist-standalone/transport.js +1 -59
package/dist-standalone/trust-registry.d.ts +3 -3
package/dist-standalone/trust-registry.js +1 -950
package/dist-standalone/types/error-response.js +1 -52
package/dist-standalone/vault-auth.js +1 -174
package/dist-standalone/vault-store-loader.d.ts +9 -0
package/dist-standalone/vault-store-loader.js +1 -187
package/dist-standalone/verify.js +1 -16
package/dist-standalone/version-info.js +1 -530
package/dist-standalone/xfetch.js +1 -335
package/package.json +1 -1
package/share1.dat +0 -0

package/dist-standalone/cancellation.js CHANGED Viewed

@@ -1,477 +1 @@
-/**
- * @module cancellation
- * Cancellation token support for xBind operations
- *
- * Provides AbortController/AbortSignal integration for enhanced operation control:
- * - Cancellable async operations (fetch, agent.call, transport)
- * - Timeout management with automatic cleanup
- * - Composite signals (multiple cancellation sources)
- * - Resource cleanup on cancellation
- *
- * Architecture:
- * - Uses standard AbortController/AbortSignal (Web API + Node.js)
- * - Timeout wrapper creates time-limited signals
- * - Composite signals combine multiple cancellation sources
- * - Cleanup callbacks ensure proper resource disposal
- *
- * @example
- * ```typescript
- * // Timeout with cancellation
- * const signal = createTimeoutSignal(5000);
- * await xfetch('https://api.example.com', { signal });
- *
- * // Manual cancellation
- * const controller = new AbortController();
- * setTimeout(() => controller.abort(), 1000);
- * await agent.call('tool:action', params, { signal: controller.signal });
- *
- * // Composite signals
- * const timeout = createTimeoutSignal(10000);
- * const manual = new AbortController();
- * const combined = combineSignals([timeout.signal, manual.signal]);
- * await operation({ signal: combined });
- * ```
- */
-import { ok, err } from"./_deps/shared/index.js";
-/**
- * Cancellation error thrown when operation is aborted
- */
-export class CancellationError extends Error {
-    reason;
-    context;
-    constructor(message, reason, context) {
-        super(message);
-        this.reason = reason;
-        this.context = context;
-        this.name = 'CancellationError';
-    }
-}
-/**
- * Create an AbortSignal that triggers after a timeout
- *
- * Automatically aborts the signal after the specified duration.
- * Useful for setting time limits on async operations.
- *
- * @param timeout - Timeout in milliseconds
- * @param options - Optional reason and context
- * @returns TimeoutController with signal and clear function
- *
- * @example
- * ```typescript
- * const timeout = createTimeoutSignal(5000);
- * try {
- *   await fetch('https://api.example.com', { signal: timeout.signal });
- * } catch (error) {
- *   if (error.name === 'AbortError') {
- *     console.log('Request timed out after 5s');
- *   }
- * } finally {
- *   timeout.clear(); // Clean up timer
- * }
- * ```
- */
-export function createTimeoutSignal(timeout, options) {
-    const controller = new AbortController();
-    const startTime = Date.now();
-    const timeoutId = setTimeout(() => {
-        const reason = options?.reason || `Operation timed out after ${timeout}ms`;
-        controller.abort(new CancellationError(reason, 'timeout', options?.context));
-    }, timeout);
-    return {
-        signal: controller.signal,
-        clear: () => {
-            clearTimeout(timeoutId);
-        },
-        remaining: () => {
-            const elapsed = Date.now() - startTime;
-            return Math.max(0, timeout - elapsed);
-        },
-    };
-}
-/**
- * Combine multiple AbortSignals into a single signal
- *
- * The combined signal aborts when ANY of the source signals abort.
- * Useful for operations with multiple cancellation sources (timeout, user action, etc.).
- *
- * @param signals - Array of signals to combine
- * @returns Combined AbortSignal
- *
- * @example
- * ```typescript
- * const timeout = createTimeoutSignal(10000);
- * const userCancel = new AbortController();
- * const combined = combineSignals([timeout.signal, userCancel.signal]);
- *
- * // Either timeout OR user cancellation will abort
- * await fetch('https://api.example.com', { signal: combined });
- * ```
- */
-export function combineSignals(signals) {
-    // Filter out already-aborted signals and undefined
-    const activeSignals = signals.filter(s => s && !s.aborted);
-    // If all signals are already aborted, return an aborted signal
-    if (activeSignals.length === 0) {
-        const alreadyAborted = signals.find(s => s?.aborted);
-        if (alreadyAborted) {
-            // Return already-aborted signal
-            return alreadyAborted;
-        }
-        // No signals provided - return never-aborts signal
-        return new AbortController().signal;
-    }
-    // If only one active signal, return it directly
-    if (activeSignals.length === 1) {
-        return activeSignals[0];
-    }
-    // Use AbortSignal.any() if available (Node 20+, modern browsers)
-    if (typeof AbortSignal.any === 'function') {
-        return AbortSignal.any(activeSignals);
-    }
-    // Fallback: manually combine signals
-    const controller = new AbortController();
-    const abortListeners = [];
-    for (const signal of activeSignals) {
-        const listener = () => {
-            controller.abort(signal.reason);
-            // Remove all listeners after first abort
-            abortListeners.forEach((remove) => remove());
-        };
-        signal.addEventListener('abort', listener, { once: true });
-        // Store cleanup function
-        abortListeners.push(() => {
-            signal.removeEventListener('abort', listener);
-        });
-    }
-    return controller.signal;
-}
-/**
- * Register cleanup callback to run when signal is aborted
- *
- * Ensures resources are properly disposed when operation is cancelled.
- * Cleanup runs immediately if signal is already aborted.
- *
- * @param signal - AbortSignal to monitor
- * @param cleanup - Cleanup callback
- *
- * @example
- * ```typescript
- * const controller = new AbortController();
- * const connection = await openConnection();
- *
- * onCancellation(controller.signal, async () => {
- *   console.log('Cleaning up connection...');
- *   await connection.close();
- * });
- *
- * // Later...
- * controller.abort(); // Cleanup runs automatically
- * ```
- */
-export function onCancellation(signal, cleanup) {
-    // If already aborted, run cleanup immediately
-    if (signal.aborted) {
-        void Promise.resolve().then(() => cleanup()).catch(() => {
-            // Cleanup errors are handled silently to avoid unhandled rejections
-        });
-        return;
-    }
-    // Register cleanup to run on abort
-    signal.addEventListener('abort', () => {
-        // Run cleanup and catch errors silently to avoid unhandled rejections
-        void Promise.resolve().then(() => cleanup()).catch(() => {
-            // Cleanup errors are expected and handled silently
-            // (test can spy on this if needed, but we don't log by default)
-        });
-    }, { once: true });
-}
-/**
- * Check if signal is aborted and throw CancellationError if so
- *
- * Useful for checking cancellation at specific points in long-running operations.
- *
- * @param signal - AbortSignal to check
- * @param context - Optional context for error
- * @throws CancellationError if signal is aborted
- *
- * @example
- * ```typescript
- * async function processLargeDataset(data: unknown[], signal?: AbortSignal) {
- *   for (const item of data) {
- *     throwIfAborted(signal, { item: item.id });
- *     await processItem(item);
- *   }
- * }
- * ```
- */
-export function throwIfAborted(signal, context) {
-    if (signal?.aborted) {
-        const reason = signal.reason instanceof Error
-            ? signal.reason.message
-            : String(signal.reason || 'Operation was cancelled');
-        throw new CancellationError(reason, 'aborted', context);
-    }
-}
-/**
- * Wrap a promise with cancellation support
- *
- * If signal aborts before promise resolves, returns error result.
- * Otherwise returns the promise's result.
- *
- * @param promise - Promise to wrap
- * @param signal - AbortSignal for cancellation
- * @returns Result wrapper around promise
- *
- * @example
- * ```typescript
- * const timeout = createTimeoutSignal(5000);
- * const result = await withCancellation(
- *   fetch('https://api.example.com'),
- *   timeout.signal
- * );
- *
- * if (!result.ok) {
- *   console.error('Request cancelled:', result.error.message);
- * }
- * ```
- */
-export async function withCancellation(promise, signal) {
-    if (!signal) {
-        // No signal - just await promise
-        try {
-            const value = await promise;
-            return ok(value);
-        }
-        catch (error) {
-            return err(new CancellationError(error instanceof Error ? error.message : String(error), 'promise_rejected'));
-        }
-    }
-    // If already aborted, return immediately
-    if (signal.aborted) {
-        const reason = signal.reason instanceof Error
-            ? signal.reason.message
-            : String(signal.reason || 'Operation was cancelled');
-        return err(new CancellationError(reason, 'aborted'));
-    }
-    // Race promise against abort signal
-    return new Promise((resolve) => {
-        // Handle abort
-        const onAbort = () => {
-            const reason = signal.reason instanceof Error
-                ? signal.reason.message
-                : String(signal.reason || 'Operation was cancelled');
-            resolve(err(new CancellationError(reason, 'aborted')));
-        };
-        signal.addEventListener('abort', onAbort, { once: true });
-        // Handle promise resolution
-        promise
-            .then((value) => {
-            signal.removeEventListener('abort', onAbort);
-            resolve(ok(value));
-        })
-            .catch((error) => {
-            signal.removeEventListener('abort', onAbort);
-            resolve(err(new CancellationError(error instanceof Error ? error.message : String(error), 'promise_rejected')));
-        });
-    });
-}
-/**
- * Create a cancellable delay
- *
- * Returns a promise that resolves after the specified duration,
- * but can be cancelled early via signal.
- *
- * @param ms - Delay in milliseconds
- * @param signal - Optional AbortSignal for cancellation
- * @returns Promise that resolves after delay or rejects on cancellation
- *
- * @example
- * ```typescript
- * const controller = new AbortController();
- *
- * // Start 10s delay
- * const delayPromise = delay(10000, controller.signal);
- *
- * // Cancel after 2s
- * setTimeout(() => controller.abort(), 2000);
- *
- * try {
- *   await delayPromise; // Throws CancellationError after 2s
- * } catch (error) {
- *   console.log('Delay cancelled');
- * }
- * ```
- */
-export function delay(ms, signal) {
-    return new Promise((resolve, reject) => {
-        // Check if already aborted
-        if (signal?.aborted) {
-            const reason = signal.reason instanceof Error
-                ? signal.reason.message
-                : String(signal.reason || 'Delay cancelled');
-            reject(new CancellationError(reason, 'aborted'));
-            return;
-        }
-        const timeoutId = setTimeout(() => {
-            if (signal) {
-                signal.removeEventListener('abort', onAbort);
-            }
-            resolve();
-        }, ms);
-        const onAbort = () => {
-            clearTimeout(timeoutId);
-            const reason = signal.reason instanceof Error
-                ? signal.reason.message
-                : String(signal.reason || 'Delay cancelled');
-            reject(new CancellationError(reason, 'aborted'));
-        };
-        if (signal) {
-            signal.addEventListener('abort', onAbort, { once: true });
-        }
-    });
-}
-/**
- * Retry an operation with cancellation support
- *
- * Attempts operation multiple times with exponential backoff.
- * Respects cancellation signal between retry attempts.
- *
- * @param operation - Async operation to retry
- * @param options - Retry configuration
- * @returns Result of operation
- *
- * @example
- * ```typescript
- * const timeout = createTimeoutSignal(30000);
- *
- * const result = await withRetry(
- *   async () => {
- *     const res = await fetch('https://api.example.com');
- *     if (!res.ok) throw new Error('Request failed');
- *     return res.json();
- *   },
- *   {
- *     maxAttempts: 5,
- *     initialDelay: 1000,
- *     multiplier: 2,
- *     signal: timeout.signal,
- *   }
- * );
- * ```
- */
-export async function withRetry(operation, options) {
-    const maxAttempts = options?.maxAttempts ?? 3;
-    const initialDelay = options?.initialDelay ?? 1000;
-    const multiplier = options?.multiplier ?? 2;
-    const signal = options?.signal;
-    const shouldRetry = options?.shouldRetry ?? (() => true);
-    let lastError;
-    let delayMs = initialDelay;
-    for (let attempt = 1; attempt <= maxAttempts; attempt++) {
-        // Check cancellation before attempt
-        if (signal?.aborted) {
-            const reason = signal.reason instanceof Error
-                ? signal.reason.message
-                : String(signal.reason || 'Operation was cancelled');
-            return err(new CancellationError(reason, 'aborted', { attempt }));
-        }
-        try {
-            const value = await operation();
-            return ok(value);
-        }
-        catch (error) {
-            lastError = error instanceof Error ? error : new Error(String(error));
-            // On last attempt or if shouldRetry returns false, don't retry
-            if (attempt >= maxAttempts || !shouldRetry(error, attempt)) {
-                // No more attempts or predicate said no
-                break;
-            }
-            // Wait before retry (with cancellation support)
-            try {
-                await delay(delayMs, signal);
-                delayMs *= multiplier;
-            }
-            catch (cancelError) {
-                // Cancelled during delay
-                if (cancelError instanceof CancellationError) {
-                    return err(cancelError);
-                }
-                throw cancelError;
-            }
-        }
-    }
-    // All attempts failed
-    return err(lastError || new Error('Operation failed after retries'));
-}
-/**
- * Create a manual cancellation controller with helper methods
- *
- * Extends AbortController with additional utilities for common patterns.
- *
- * @returns Enhanced controller with helper methods
- *
- * @example
- * ```typescript
- * const controller = createCancellationController();
- *
- * // Start operation
- * const promise = longRunningOperation({ signal: controller.signal });
- *
- * // Cancel with custom reason
- * controller.cancel('User requested cancellation');
- *
- * // Check if cancelled
- * if (controller.isCancelled) {
- *   console.log('Operation was cancelled');
- * }
- * ```
- */
-export function createCancellationController() {
-    const controller = new AbortController();
-    let cancelledReason;
-    return {
-        /** Abort signal for cancellation */
-        signal: controller.signal,
-        /** True if operation has been cancelled */
-        get isCancelled() {
-            return controller.signal.aborted;
-        },
-        /** Reason for cancellation (if any) */
-        get reason() {
-            return cancelledReason;
-        },
-        /** Cancel the operation with optional reason */
-        cancel(reason) {
-            cancelledReason = reason || 'Operation cancelled';
-            controller.abort(new CancellationError(cancelledReason, 'manual'));
-        },
-        /** Throw if cancelled */
-        throwIfCancelled(context) {
-            throwIfAborted(controller.signal, context);
-        },
-    };
-}
-/**
- * Check if an error is a cancellation error
- *
- * @param error - Error to check
- * @returns True if error is from cancellation
- *
- * @example
- * ```typescript
- * try {
- *   await operation({ signal });
- * } catch (error) {
- *   if (isCancellationError(error)) {
- *     console.log('Operation was cancelled');
- *   } else {
- *     console.error('Operation failed:', error);
- *   }
- * }
- * ```
- */
-export function isCancellationError(error) {
-    return error instanceof CancellationError ||
-        (error instanceof Error && error.name === 'AbortError') ||
-        (error instanceof Error && error.name === 'CancellationError');
-}
+import{ok,err}from"./_deps/shared/index.js";export class CancellationError extends Error{reason;context;constructor(r,e,n){super(r),this.reason=e,this.context=n,this.name="CancellationError"}}export function createTimeoutSignal(r,e){const n=new AbortController,t=Date.now(),o=setTimeout(()=>{const t=e?.reason||`Operation timed out after ${r}ms`;n.abort(new CancellationError(t,"timeout",e?.context))},r);return{signal:n.signal,clear:()=>{clearTimeout(o)},remaining:()=>{const e=Date.now()-t;return Math.max(0,r-e)}}}export function combineSignals(r){const e=r.filter(r=>r&&!r.aborted);if(0===e.length){const e=r.find(r=>r?.aborted);return e||(new AbortController).signal}if(1===e.length)return e[0];if("function"==typeof AbortSignal.any)return AbortSignal.any(e);const n=new AbortController,t=[];for(const r of e){const e=()=>{n.abort(r.reason),t.forEach(r=>r())};r.addEventListener("abort",e,{once:!0}),t.push(()=>{r.removeEventListener("abort",e)})}return n.signal}export function onCancellation(r,e){r.aborted?Promise.resolve().then(()=>e()).catch(()=>{}):r.addEventListener("abort",()=>{Promise.resolve().then(()=>e()).catch(()=>{})},{once:!0})}export function throwIfAborted(r,e){if(r?.aborted){const n=r.reason instanceof Error?r.reason.message:String(r.reason||"Operation was cancelled");throw new CancellationError(n,"aborted",e)}}export async function withCancellation(r,e){if(!e)try{const e=await r;return ok(e)}catch(r){return err(new CancellationError(r instanceof Error?r.message:String(r),"promise_rejected"))}if(e.aborted){const r=e.reason instanceof Error?e.reason.message:String(e.reason||"Operation was cancelled");return err(new CancellationError(r,"aborted"))}return new Promise(n=>{const t=()=>{const r=e.reason instanceof Error?e.reason.message:String(e.reason||"Operation was cancelled");n(err(new CancellationError(r,"aborted")))};e.addEventListener("abort",t,{once:!0}),r.then(r=>{e.removeEventListener("abort",t),n(ok(r))}).catch(r=>{e.removeEventListener("abort",t),n(err(new CancellationError(r instanceof Error?r.message:String(r),"promise_rejected")))})})}export function delay(r,e){return new Promise((n,t)=>{if(e?.aborted){const r=e.reason instanceof Error?e.reason.message:String(e.reason||"Delay cancelled");return void t(new CancellationError(r,"aborted"))}const o=setTimeout(()=>{e&&e.removeEventListener("abort",a),n()},r),a=()=>{clearTimeout(o);const r=e.reason instanceof Error?e.reason.message:String(e.reason||"Delay cancelled");t(new CancellationError(r,"aborted"))};e&&e.addEventListener("abort",a,{once:!0})})}export async function withRetry(r,e){const n=e?.maxAttempts??3,t=e?.initialDelay??1e3,o=e?.multiplier??2,a=e?.signal,i=e?.shouldRetry??(()=>!0);let s,c=t;for(let e=1;e<=n;e++){if(a?.aborted){const r=a.reason instanceof Error?a.reason.message:String(a.reason||"Operation was cancelled");return err(new CancellationError(r,"aborted",{attempt:e}))}try{const e=await r();return ok(e)}catch(r){if(s=r instanceof Error?r:new Error(String(r)),e>=n||!i(r,e))break;try{await delay(c,a),c*=o}catch(r){if(r instanceof CancellationError)return err(r);throw r}}}return err(s||new Error("Operation failed after retries"))}export function createCancellationController(){const r=new AbortController;let e;return{signal:r.signal,get isCancelled(){return r.signal.aborted},get reason(){return e},cancel(n){e=n||"Operation cancelled",r.abort(new CancellationError(e,"manual"))},throwIfCancelled(e){throwIfAborted(r.signal,e)}}}export function isCancellationError(r){return r instanceof CancellationError||r instanceof Error&&"AbortError"===r.name||r instanceof Error&&"CancellationError"===r.name}

package/dist-standalone/checkpoint.js CHANGED Viewed

@@ -1,186 +1 @@
-import { ok, err } from"./_deps/shared/index.js";
-import { signMlDsa65, verifyMlDsa65 } from './identity.js';
-/* ── Checkpoint Creation (Gateway-side) ── */
-/**
- * Create a signed checkpoint for a DID (gateway-side operation).
- *
- * Gateway signs the DID state snapshot using its ML-DSA-65 private key.
- * Clients verify this signature using the gateway's published public key.
- *
- * @param subject - DID being checkpointed
- * @param publicKey - Current public key bytes
- * @param revoked - Current revocation status
- * @param rotationSequence - Current rotation sequence counter
- * @param gatewayPrivateKey - Gateway's ML-DSA-65 secret key (32-byte seed or 4032-byte expanded)
- * @returns Signed checkpoint or error
- *
- * @example
- * ```typescript
- * const checkpoint = await createCheckpoint(
- *   'did:key:z6Mk...',
- *   publicKeyBytes,
- *   false,
- *   5,
- *   gatewaySecretKey
- * );
- * if (checkpoint.ok) {
- *   // Send checkpoint to client for staleness detection
- *   sendToClient(checkpoint.value);
- * }
- * ```
- */
-export async function createCheckpoint(subject, publicKey, revoked, rotationSequence, gatewayPrivateKey) {
-    const timestamp = Date.now();
-    // Construct canonical message to sign
-    const publicKeyB64 = Buffer.from(publicKey).toString('base64');
-    const message = `DIDStateCheckpoint||1.0||${subject}||${publicKeyB64}||${revoked}||${rotationSequence}||${timestamp}`;
-    const messageBytes = new TextEncoder().encode(message);
-    // Sign using gateway's ML-DSA-65 key
-    const sigResult = await signMlDsa65(gatewayPrivateKey, messageBytes);
-    if (!sigResult.ok) {
-        return err('SIGN_FAILED');
-    }
-    return ok({
-        type: 'DIDStateCheckpoint',
-        version: '1.0',
-        subject,
-        current_public_key: publicKeyB64,
-        revoked,
-        rotation_sequence: rotationSequence,
-        timestamp,
-        checkpoint_signature_algorithm: 'ML-DSA-65',
-        checkpoint_signature: Buffer.from(sigResult.value).toString('base64')
-    });
-}
-/* ── Checkpoint Verification (Client-side) ── */
-/**
- * Verify a checkpoint signature (client-side operation).
- *
- * Clients MUST verify checkpoint signatures before trusting the state.
- * Uses gateway's published ML-DSA-65 public key to verify signature.
- *
- * @param checkpoint - Checkpoint to verify
- * @param gatewayPublicKey - Gateway's ML-DSA-65 public key (1952 bytes)
- * @returns true if signature valid, false if invalid, error if verification fails
- *
- * @example
- * ```typescript
- * const valid = await verifyCheckpoint(checkpoint, gatewayPubKey);
- * if (valid.ok && valid.value) {
- *   // Checkpoint is authentic - safe to use for staleness detection
- *   if (isCacheStale(localCache, checkpoint)) {
- *     // Refresh local cache
- *   }
- * }
- * ```
- */
-export async function verifyCheckpoint(checkpoint, gatewayPublicKey) {
-    // Validate checkpoint format
-    if (checkpoint.type !== 'DIDStateCheckpoint') {
-        return err('INVALID_FORMAT');
-    }
-    if (checkpoint.version !== '1.0') {
-        return err('INVALID_FORMAT');
-    }
-    if (!checkpoint.subject || !checkpoint.current_public_key) {
-        return err('INVALID_FORMAT');
-    }
-    if (typeof checkpoint.rotation_sequence !== 'number' || checkpoint.rotation_sequence < 0) {
-        return err('INVALID_FORMAT');
-    }
-    if (typeof checkpoint.timestamp !== 'number' || checkpoint.timestamp <= 0) {
-        return err('INVALID_TIMESTAMP');
-    }
-    if (checkpoint.checkpoint_signature_algorithm !== 'ML-DSA-65') {
-        return err('INVALID_FORMAT');
-    }
-    // Reconstruct canonical message
-    const message = `DIDStateCheckpoint||1.0||${checkpoint.subject}||${checkpoint.current_public_key}||${checkpoint.revoked}||${checkpoint.rotation_sequence}||${checkpoint.timestamp}`;
-    const messageBytes = new TextEncoder().encode(message);
-    // Decode signature
-    let signature;
-    try {
-        signature = Buffer.from(checkpoint.checkpoint_signature, 'base64');
-    }
-    catch {
-        return err('INVALID_SIGNATURE');
-    }
-    // Verify signature using gateway public key
-    const verifyResult = await verifyMlDsa65(gatewayPublicKey, signature, messageBytes);
-    if (!verifyResult.ok) {
-        return err('VERIFY_FAILED');
-    }
-    return ok(verifyResult.value);
-}
-/* ── Staleness Detection ── */
-/**
- * Detect if local cache is stale compared to gateway checkpoint.
- *
- * Cache is stale if:
- * 1. Checkpoint rotation_sequence > local rotationSequence (key rotated)
- * 2. Checkpoint revoked !== local revoked (revocation status changed)
- * 3. Checkpoint public key !== local publicKey (state drift)
- *
- * @param localCache - Local cache entry for DID
- * @param checkpoint - Verified checkpoint from gateway
- * @returns true if cache needs refresh, false if cache is current
- *
- * @example
- * ```typescript
- * if (isCacheStale(localCache, checkpoint)) {
- *   // Local cache is outdated - fetch fresh state from gateway
- *   const freshState = await registry.getEntry(did);
- * }
- * ```
- */
-export function isCacheStale(localCache, checkpoint) {
-    // Sequence number mismatch indicates key rotation
-    if (checkpoint.rotation_sequence > localCache.rotationSequence) {
-        return true;
-    }
-    // Revocation status changed
-    if (checkpoint.revoked !== localCache.revoked) {
-        return true;
-    }
-    // Public key mismatch indicates state drift
-    const checkpointPubKey = Buffer.from(checkpoint.current_public_key, 'base64');
-    if (!Buffer.from(localCache.publicKey).equals(checkpointPubKey)) {
-        return true;
-    }
-    return false;
-}
-/* ── Encoding/Decoding ── */
-/**
- * Encode checkpoint to JSON string for wire transport.
- *
- * @param checkpoint - Checkpoint to encode
- * @returns JSON string
- */
-export function encodeCheckpoint(checkpoint) {
-    return JSON.stringify(checkpoint);
-}
-/**
- * Decode checkpoint from JSON string.
- *
- * @param encoded - JSON string
- * @returns Parsed checkpoint or error
- */
-export function decodeCheckpoint(encoded) {
-    try {
-        const parsed = JSON.parse(encoded);
-        // Basic validation
-        if (parsed.type !== 'DIDStateCheckpoint') {
-            return err('INVALID_FORMAT');
-        }
-        if (parsed.version !== '1.0') {
-            return err('INVALID_FORMAT');
-        }
-        if (!parsed.subject || !parsed.current_public_key || !parsed.checkpoint_signature) {
-            return err('INVALID_FORMAT');
-        }
-        return ok(parsed);
-    }
-    catch {
-        return err('INVALID_FORMAT');
-    }
-}
+import{ok,err}from"./_deps/shared/index.js";import{signMlDsa65,verifyMlDsa65}from"./identity.js";export async function createCheckpoint(e,r,t,n,o){const i=Date.now(),c=Buffer.from(r).toString("base64"),u=`DIDStateCheckpoint||1.0||${e}||${c}||${t}||${n}||${i}`,a=(new TextEncoder).encode(u),s=await signMlDsa65(o,a);return s.ok?ok({type:"DIDStateCheckpoint",version:"1.0",subject:e,current_public_key:c,revoked:t,rotation_sequence:n,timestamp:i,checkpoint_signature_algorithm:"ML-DSA-65",checkpoint_signature:Buffer.from(s.value).toString("base64")}):err("SIGN_FAILED")}export async function verifyCheckpoint(e,r){if("DIDStateCheckpoint"!==e.type)return err("INVALID_FORMAT");if("1.0"!==e.version)return err("INVALID_FORMAT");if(!e.subject||!e.current_public_key)return err("INVALID_FORMAT");if("number"!=typeof e.rotation_sequence||e.rotation_sequence<0)return err("INVALID_FORMAT");if("number"!=typeof e.timestamp||e.timestamp<=0)return err("INVALID_TIMESTAMP");if("ML-DSA-65"!==e.checkpoint_signature_algorithm)return err("INVALID_FORMAT");const t=`DIDStateCheckpoint||1.0||${e.subject}||${e.current_public_key}||${e.revoked}||${e.rotation_sequence}||${e.timestamp}`,n=(new TextEncoder).encode(t);let o;try{o=Buffer.from(e.checkpoint_signature,"base64")}catch{return err("INVALID_SIGNATURE")}const i=await verifyMlDsa65(r,o,n);return i.ok?ok(i.value):err("VERIFY_FAILED")}export function isCacheStale(e,r){if(r.rotation_sequence>e.rotationSequence)return!0;if(r.revoked!==e.revoked)return!0;const t=Buffer.from(r.current_public_key,"base64");return!Buffer.from(e.publicKey).equals(t)}export function encodeCheckpoint(e){return JSON.stringify(e)}export function decodeCheckpoint(e){try{const r=JSON.parse(e);return"DIDStateCheckpoint"!==r.type||"1.0"!==r.version?err("INVALID_FORMAT"):r.subject&&r.current_public_key&&r.checkpoint_signature?ok(r):err("INVALID_FORMAT")}catch{return err("INVALID_FORMAT")}}