npm - @sip-protocol/sdk - Versions diffs - 0.7.2 → 0.7.4 - Mend

@sip-protocol/sdk 0.7.2 → 0.7.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (262) hide show

package/LICENSE +21 -0
package/README.md +267 -0
package/dist/{TransportWebUSB-TQ7WZ4LE.mjs → TransportWebUSB-YQMAGJAJ.mjs} +12 -9
package/dist/browser.d.mts +10 -4
package/dist/browser.d.ts +10 -4
package/dist/browser.js +48874 -18336
package/dist/browser.mjs +674 -48
package/dist/chunk-4GRJ5MAW.mjs +152 -0
package/dist/chunk-5D7A3L3W.mjs +717 -0
package/dist/chunk-64AYA5F5.mjs +7834 -0
package/dist/chunk-GMDGB22A.mjs +379 -0
package/dist/chunk-I534WKN7.mjs +328 -0
package/dist/chunk-IBZVA5Y7.mjs +1003 -0
package/dist/chunk-PRRZAWJE.mjs +223 -0
package/dist/{chunk-UJCSKKID.mjs → chunk-XGB3TDIC.mjs} +13 -1
package/dist/chunk-YWGJ77A2.mjs +33806 -0
package/dist/{chunk-6WGN57S2.mjs → chunk-Z3K7W5S3.mjs} +48 -0
package/dist/constants-LHAAUC2T.mjs +51 -0
package/dist/dist-2OGQ7FED.mjs +3957 -0
package/dist/dist-IFHPYLDX.mjs +254 -0
package/dist/fulfillment_proof-ANHVPKTB.mjs +21 -0
package/dist/funding_proof-ICFZ5LHY.mjs +21 -0
package/dist/index-DXh2IGkz.d.ts +24681 -0
package/dist/index-DeE1ZzA4.d.mts +24681 -0
package/dist/index.d.mts +9 -3
package/dist/index.d.ts +9 -3
package/dist/index.js +48676 -17318
package/dist/index.mjs +583 -19
package/dist/interface-Bf7w1PLW.d.mts +679 -0
package/dist/interface-Bf7w1PLW.d.ts +679 -0
package/dist/{noir-DKfEzWy9.d.mts → noir-kzbLVTei.d.mts} +31 -21
package/dist/{noir-DKfEzWy9.d.ts → noir-kzbLVTei.d.ts} +31 -21
package/dist/proofs/halo2.d.mts +151 -0
package/dist/proofs/halo2.d.ts +151 -0
package/dist/proofs/halo2.js +350 -0
package/dist/proofs/halo2.mjs +11 -0
package/dist/proofs/kimchi.d.mts +160 -0
package/dist/proofs/kimchi.d.ts +160 -0
package/dist/proofs/kimchi.js +431 -0
package/dist/proofs/kimchi.mjs +13 -0
package/dist/proofs/noir.d.mts +1 -1
package/dist/proofs/noir.d.ts +1 -1
package/dist/proofs/noir.js +74 -18
package/dist/proofs/noir.mjs +84 -24
package/dist/solana-U3MEGU7W.mjs +280 -0
package/dist/validity_proof-3POXLPNY.mjs +21 -0
package/package.json +54 -21
package/src/adapters/index.ts +41 -0
package/src/adapters/jupiter.ts +571 -0
package/src/adapters/near-intents.ts +135 -0
package/src/advisor/advisor.ts +653 -0
package/src/advisor/index.ts +54 -0
package/src/advisor/tools.ts +303 -0
package/src/advisor/types.ts +164 -0
package/src/chains/ethereum/announcement.ts +536 -0
package/src/chains/ethereum/bnb-optimizations.ts +474 -0
package/src/chains/ethereum/commitment.ts +522 -0
package/src/chains/ethereum/constants.ts +462 -0
package/src/chains/ethereum/deployment.ts +596 -0
package/src/chains/ethereum/gas-estimation.ts +538 -0
package/src/chains/ethereum/index.ts +268 -0
package/src/chains/ethereum/optimizations.ts +614 -0
package/src/chains/ethereum/privacy-adapter.ts +855 -0
package/src/chains/ethereum/registry.ts +584 -0
package/src/chains/ethereum/rpc.ts +905 -0
package/src/chains/ethereum/stealth.ts +491 -0
package/src/chains/ethereum/token.ts +790 -0
package/src/chains/ethereum/transfer.ts +637 -0
package/src/chains/ethereum/types.ts +456 -0
package/src/chains/ethereum/viewing-key.ts +455 -0
package/src/chains/near/commitment.ts +608 -0
package/src/chains/near/constants.ts +284 -0
package/src/chains/near/function-call.ts +871 -0
package/src/chains/near/history.ts +654 -0
package/src/chains/near/implicit-account.ts +840 -0
package/src/chains/near/index.ts +393 -0
package/src/chains/near/native-transfer.ts +658 -0
package/src/chains/near/nep141.ts +775 -0
package/src/chains/near/privacy-adapter.ts +889 -0
package/src/chains/near/resolver.ts +971 -0
package/src/chains/near/rpc.ts +1016 -0
package/src/chains/near/stealth.ts +419 -0
package/src/chains/near/types.ts +317 -0
package/src/chains/near/viewing-key.ts +876 -0
package/src/chains/solana/anchor-transfer.ts +386 -0
package/src/chains/solana/commitment.ts +577 -0
package/src/chains/solana/constants.ts +126 -12
package/src/chains/solana/ephemeral-keys.ts +543 -0
package/src/chains/solana/index.ts +276 -1
package/src/chains/solana/key-derivation.ts +418 -0
package/src/chains/solana/kit-compat.ts +334 -0
package/src/chains/solana/optimizations.ts +560 -0
package/src/chains/solana/privacy-adapter.ts +605 -0
package/src/chains/solana/providers/generic.ts +201 -0
package/src/chains/solana/providers/helius-enhanced-types.ts +336 -0
package/src/chains/solana/providers/helius-enhanced.ts +623 -0
package/src/chains/solana/providers/helius.ts +402 -0
package/src/chains/solana/providers/index.ts +85 -0
package/src/chains/solana/providers/interface.ts +221 -0
package/src/chains/solana/providers/quicknode.ts +409 -0
package/src/chains/solana/providers/triton.ts +426 -0
package/src/chains/solana/providers/webhook.ts +790 -0
package/src/chains/solana/rpc-client.ts +1150 -0
package/src/chains/solana/scan.ts +170 -73
package/src/chains/solana/sol-transfer.ts +732 -0
package/src/chains/solana/spl-transfer.ts +886 -0
package/src/chains/solana/stealth-scanner.ts +703 -0
package/src/chains/solana/sunspot-verifier.ts +453 -0
package/src/chains/solana/transaction-builder.ts +755 -0
package/src/chains/solana/transfer.ts +74 -5
package/src/chains/solana/types.ts +77 -7
package/src/chains/solana/utils.ts +110 -0
package/src/chains/solana/viewing-key.ts +807 -0
package/src/compliance/fireblocks.ts +921 -0
package/src/compliance/index.ts +37 -0
package/src/compliance/range-sas.ts +956 -0
package/src/config/endpoints.ts +100 -0
package/src/crypto.ts +11 -8
package/src/errors.ts +82 -0
package/src/evm/erc4337-relayer.ts +830 -0
package/src/evm/index.ts +47 -0
package/src/fees/calculator.ts +396 -0
package/src/fees/index.ts +87 -0
package/src/fees/near-contract.ts +429 -0
package/src/fees/types.ts +268 -0
package/src/index.ts +785 -1
package/src/intent.ts +6 -3
package/src/logger.ts +324 -0
package/src/network/index.ts +80 -0
package/src/network/proxy.ts +691 -0
package/src/optimizations/index.ts +541 -0
package/src/oracle/types.ts +1 -0
package/src/privacy-backends/arcium-types.ts +727 -0
package/src/privacy-backends/arcium.ts +719 -0
package/src/privacy-backends/combined-privacy.ts +866 -0
package/src/privacy-backends/cspl-token.ts +595 -0
package/src/privacy-backends/cspl-types.ts +512 -0
package/src/privacy-backends/cspl.ts +907 -0
package/src/privacy-backends/health.ts +488 -0
package/src/privacy-backends/inco-types.ts +323 -0
package/src/privacy-backends/inco.ts +616 -0
package/src/privacy-backends/index.ts +336 -0
package/src/privacy-backends/interface.ts +906 -0
package/src/privacy-backends/lru-cache.ts +343 -0
package/src/privacy-backends/magicblock.ts +458 -0
package/src/privacy-backends/mock.ts +258 -0
package/src/privacy-backends/privacycash-types.ts +278 -0
package/src/privacy-backends/privacycash.ts +456 -0
package/src/privacy-backends/private-swap.ts +570 -0
package/src/privacy-backends/rate-limiter.ts +683 -0
package/src/privacy-backends/registry.ts +690 -0
package/src/privacy-backends/router.ts +626 -0
package/src/privacy-backends/shadowwire.ts +449 -0
package/src/privacy-backends/sip-native.ts +256 -0
package/src/privacy-logger.ts +191 -0
package/src/production-safety.ts +373 -0
package/src/proofs/aggregator.ts +1029 -0
package/src/proofs/browser-composer.ts +1150 -0
package/src/proofs/browser.ts +113 -25
package/src/proofs/cache/index.ts +127 -0
package/src/proofs/cache/interface.ts +545 -0
package/src/proofs/cache/key-generator.ts +188 -0
package/src/proofs/cache/lru-cache.ts +481 -0
package/src/proofs/cache/multi-tier-cache.ts +575 -0
package/src/proofs/cache/persistent-cache.ts +788 -0
package/src/proofs/compliance-proof.ts +872 -0
package/src/proofs/composer/base.ts +923 -0
package/src/proofs/composer/index.ts +25 -0
package/src/proofs/composer/interface.ts +518 -0
package/src/proofs/composer/types.ts +383 -0
package/src/proofs/converters/halo2.ts +452 -0
package/src/proofs/converters/index.ts +208 -0
package/src/proofs/converters/interface.ts +363 -0
package/src/proofs/converters/kimchi.ts +462 -0
package/src/proofs/converters/noir.ts +451 -0
package/src/proofs/fallback.ts +888 -0
package/src/proofs/halo2.ts +42 -0
package/src/proofs/index.ts +471 -0
package/src/proofs/interface.ts +13 -0
package/src/proofs/kimchi.ts +42 -0
package/src/proofs/lazy.ts +1004 -0
package/src/proofs/mock.ts +25 -1
package/src/proofs/noir.ts +111 -30
package/src/proofs/orchestrator.ts +960 -0
package/src/proofs/parallel/concurrency.ts +297 -0
package/src/proofs/parallel/dependency-graph.ts +602 -0
package/src/proofs/parallel/executor.ts +420 -0
package/src/proofs/parallel/index.ts +131 -0
package/src/proofs/parallel/interface.ts +685 -0
package/src/proofs/parallel/worker-pool.ts +644 -0
package/src/proofs/providers/halo2.ts +560 -0
package/src/proofs/providers/index.ts +34 -0
package/src/proofs/providers/kimchi.ts +641 -0
package/src/proofs/validator.ts +881 -0
package/src/proofs/verifier.ts +867 -0
package/src/quantum/index.ts +112 -0
package/src/quantum/winternitz-vault.ts +639 -0
package/src/quantum/wots.ts +611 -0
package/src/settlement/backends/direct-chain.ts +1 -0
package/src/settlement/index.ts +9 -0
package/src/settlement/router.ts +732 -46
package/src/solana/index.ts +72 -0
package/src/solana/jito-relayer.ts +687 -0
package/src/solana/noir-verifier-types.ts +430 -0
package/src/solana/noir-verifier.ts +816 -0
package/src/stealth/address-derivation.ts +193 -0
package/src/stealth/ed25519.ts +431 -0
package/src/stealth/index.ts +233 -0
package/src/stealth/meta-address.ts +221 -0
package/src/stealth/secp256k1.ts +368 -0
package/src/stealth/utils.ts +194 -0
package/src/stealth.ts +50 -1504
package/src/surveillance/algorithms/address-reuse.ts +143 -0
package/src/surveillance/algorithms/cluster.ts +247 -0
package/src/surveillance/algorithms/exchange.ts +295 -0
package/src/surveillance/algorithms/temporal.ts +337 -0
package/src/surveillance/analyzer.ts +442 -0
package/src/surveillance/index.ts +64 -0
package/src/surveillance/scoring.ts +372 -0
package/src/surveillance/types.ts +264 -0
package/src/sync/index.ts +106 -0
package/src/sync/manager.ts +504 -0
package/src/sync/mock-provider.ts +318 -0
package/src/sync/oblivious.ts +625 -0
package/src/tokens/index.ts +15 -0
package/src/tokens/registry.ts +301 -0
package/src/utils/deprecation.ts +94 -0
package/src/utils/index.ts +9 -0
package/src/wallet/ethereum/index.ts +68 -0
package/src/wallet/ethereum/metamask-privacy.ts +420 -0
package/src/wallet/ethereum/multi-wallet.ts +646 -0
package/src/wallet/ethereum/privacy-adapter.ts +700 -0
package/src/wallet/ethereum/types.ts +3 -1
package/src/wallet/ethereum/walletconnect-adapter.ts +675 -0
package/src/wallet/hardware/index.ts +10 -0
package/src/wallet/hardware/ledger-privacy.ts +414 -0
package/src/wallet/index.ts +71 -0
package/src/wallet/near/adapter.ts +626 -0
package/src/wallet/near/index.ts +86 -0
package/src/wallet/near/meteor-wallet.ts +1153 -0
package/src/wallet/near/my-near-wallet.ts +790 -0
package/src/wallet/near/wallet-selector.ts +702 -0
package/src/wallet/solana/adapter.ts +6 -4
package/src/wallet/solana/index.ts +13 -0
package/src/wallet/solana/privacy-adapter.ts +567 -0
package/src/wallet/sui/types.ts +6 -4
package/src/zcash/rpc-client.ts +13 -6
package/dist/chunk-3INS3PR5.mjs +0 -884
package/dist/chunk-3OVABDRH.mjs +0 -17096
package/dist/chunk-DLDWZFYC.mjs +0 -1495
package/dist/chunk-E6SZWREQ.mjs +0 -57
package/dist/chunk-G33LB27A.mjs +0 -16166
package/dist/chunk-HGU6HZRC.mjs +0 -231
package/dist/chunk-L2K34JCU.mjs +0 -1496
package/dist/chunk-SN4ZDTVW.mjs +0 -16166
package/dist/constants-VOI7BSLK.mjs +0 -27
package/dist/index-BYZbDjal.d.ts +0 -11390
package/dist/index-CHB3KuOB.d.mts +0 -11859
package/dist/index-CzWPI6Le.d.ts +0 -11859
package/dist/index-xbWjohNq.d.mts +0 -11390
package/dist/solana-5EMCTPTS.mjs +0 -46
package/dist/solana-Q4NAVBTS.mjs +0 -46

package/src/quantum/wots.ts ADDED Viewed

@@ -0,0 +1,611 @@
+/**
+ * Winternitz One-Time Signature (WOTS) Implementation
+ *
+ * Provides quantum-resistant signatures using hash-based cryptography.
+ * WOTS signatures offer 128-bit post-quantum security but can only be
+ * used ONCE per keypair.
+ *
+ * ## Security Warning
+ *
+ * CRITICAL: Reusing a WOTS keypair reveals approximately 50% of the
+ * private key, enabling signature forgery. The implementation tracks
+ * key usage to prevent accidental reuse.
+ *
+ * ## Algorithm Details
+ *
+ * - Hash function: Keccak256
+ * - Winternitz parameter (w): 16
+ * - Message length: 256 bits (32 bytes)
+ * - Signature size: ~8KB (256 chains × 32 bytes)
+ * - Public key size: ~8KB (256 chains × 32 bytes)
+ *
+ * @module quantum/wots
+ * @see https://eprint.iacr.org/2011/191.pdf
+ */
+import { keccak_256 } from '@noble/hashes/sha3'
+import { randomBytes as cryptoRandomBytes } from '@noble/hashes/utils'
+// ─── Types ────────────────────────────────────────────────────────────────────
+/**
+ * Winternitz keypair
+ */
+export interface WinternitzKeypair {
+  /** Private key chains (256 × 32 bytes = 8KB) */
+  privateKey: Uint8Array
+  /** Public key chains (256 × 32 bytes = 8KB) */
+  publicKey: Uint8Array
+  /** Keccak256 merkle root of public key (32 bytes) */
+  merkleRoot: Uint8Array
+  /** Unique identifier for tracking */
+  id: string
+}
+/**
+ * WOTS signature
+ */
+export interface WotsSignature {
+  /** Signature chains (256 × 32 bytes) */
+  chains: Uint8Array
+  /** Message hash that was signed */
+  messageHash: Uint8Array
+}
+/**
+ * Key state for tracking usage
+ */
+export interface WotsKeyState {
+  /** Merkle root as hex string */
+  merkleRoot: string
+  /** Whether the key has been used */
+  used: boolean
+  /** Timestamp of usage */
+  usedAt?: number
+  /** Transaction/operation that used the key */
+  usedFor?: string
+  /** Created timestamp */
+  createdAt: number
+}
+// ─── Constants ────────────────────────────────────────────────────────────────
+/**
+ * Winternitz parameter (w = 16 means base-16 encoding)
+ */
+export const WOTS_W = 16
+/**
+ * Number of chains for 256-bit message
+ * For w=16: ceil(256/4) + ceil(log16(ceil(256/4) * 15)) = 64 + 3 = 67
+ * We use 256 for simplicity (32 bytes × 8 bits / 1 bit per chain position)
+ */
+export const WOTS_CHAINS = 256
+/**
+ * Number of iterations per chain (w - 1 = 15)
+ */
+export const WOTS_ITERATIONS = WOTS_W - 1
+/**
+ * Chain element size (Keccak256 output = 32 bytes)
+ */
+export const CHAIN_SIZE = 32
+/**
+ * Total private/public key size
+ */
+export const KEY_SIZE = WOTS_CHAINS * CHAIN_SIZE
+/**
+ * Merkle root size
+ */
+export const MERKLE_ROOT_SIZE = 32
+// ─── Key Generation ───────────────────────────────────────────────────────────
+/**
+ * Generate a random Winternitz keypair
+ *
+ * @returns Fresh WOTS keypair with merkle root
+ *
+ * @example
+ * ```typescript
+ * const keypair = generateWinternitzKeypair()
+ * console.log('Merkle root:', bytesToHex(keypair.merkleRoot))
+ * // Store keypair.privateKey securely - it's 8KB
+ * ```
+ */
+export function generateWinternitzKeypair(): WinternitzKeypair {
+  // Generate random private key chains
+  const privateKey = cryptoRandomBytes(KEY_SIZE)
+  // Derive public key by hashing each chain WOTS_ITERATIONS times
+  const publicKey = new Uint8Array(KEY_SIZE)
+  for (let i = 0; i < WOTS_CHAINS; i++) {
+    const chainStart = i * CHAIN_SIZE
+    const chainEnd = chainStart + CHAIN_SIZE
+    // Start with private key chain element
+    let current: Uint8Array = privateKey.slice(chainStart, chainEnd)
+    // Hash WOTS_ITERATIONS times to get public key chain element
+    for (let j = 0; j < WOTS_ITERATIONS; j++) {
+      current = new Uint8Array(keccak_256(current))
+    }
+    publicKey.set(current, chainStart)
+  }
+  // Compute merkle root of public key
+  const merkleRoot = computeMerkleRoot(publicKey)
+  // Generate unique ID
+  const id = bytesToHex(merkleRoot).slice(0, 16)
+  return {
+    privateKey,
+    publicKey,
+    merkleRoot,
+    id,
+  }
+}
+/**
+ * Generate keypair from seed (deterministic)
+ *
+ * @param seed - 32-byte seed
+ * @returns WOTS keypair derived from seed
+ */
+export function generateWinternitzKeypairFromSeed(seed: Uint8Array): WinternitzKeypair {
+  if (seed.length !== 32) {
+    throw new Error('Seed must be 32 bytes')
+  }
+  // Derive private key chains from seed using Keccak256
+  const privateKey = new Uint8Array(KEY_SIZE)
+  for (let i = 0; i < WOTS_CHAINS; i++) {
+    const chainIndex = new Uint8Array(4)
+    new DataView(chainIndex.buffer).setUint32(0, i, false)
+    // Hash seed || chainIndex to get chain element
+    const input = new Uint8Array(seed.length + chainIndex.length)
+    input.set(seed)
+    input.set(chainIndex, seed.length)
+    const chainElement = keccak_256(input)
+    privateKey.set(chainElement, i * CHAIN_SIZE)
+  }
+  // Derive public key
+  const publicKey = new Uint8Array(KEY_SIZE)
+  for (let i = 0; i < WOTS_CHAINS; i++) {
+    const chainStart = i * CHAIN_SIZE
+    const chainEnd = chainStart + CHAIN_SIZE
+    let current: Uint8Array = privateKey.slice(chainStart, chainEnd)
+    for (let j = 0; j < WOTS_ITERATIONS; j++) {
+      current = new Uint8Array(keccak_256(current))
+    }
+    publicKey.set(current, chainStart)
+  }
+  const merkleRoot = computeMerkleRoot(publicKey)
+  const id = bytesToHex(merkleRoot).slice(0, 16)
+  return {
+    privateKey,
+    publicKey,
+    merkleRoot,
+    id,
+  }
+}
+// ─── Signing ──────────────────────────────────────────────────────────────────
+/**
+ * Sign a message with WOTS (ONE-TIME USE ONLY)
+ *
+ * CRITICAL: This function should only be called ONCE per keypair.
+ * Use the WotsKeyManager to track key usage.
+ *
+ * @param privateKey - WOTS private key (8KB)
+ * @param message - Message to sign (will be hashed if > 32 bytes)
+ * @returns WOTS signature
+ *
+ * @example
+ * ```typescript
+ * const keypair = generateWinternitzKeypair()
+ * const message = new TextEncoder().encode('Transfer 1 SOL to vault X')
+ *
+ * // Sign ONCE only!
+ * const signature = wotsSign(keypair.privateKey, message)
+ *
+ * // NEVER call wotsSign again with this keypair!
+ * ```
+ */
+export function wotsSign(
+  privateKey: Uint8Array,
+  message: Uint8Array
+): WotsSignature {
+  if (privateKey.length !== KEY_SIZE) {
+    throw new Error(`Private key must be ${KEY_SIZE} bytes`)
+  }
+  // Hash message to 32 bytes
+  const messageHash = message.length === 32 ? message : keccak_256(message)
+  // Create signature chains
+  const chains = new Uint8Array(KEY_SIZE)
+  for (let i = 0; i < WOTS_CHAINS; i++) {
+    const chainStart = i * CHAIN_SIZE
+    const chainEnd = chainStart + CHAIN_SIZE
+    // Get message byte (simplified: 1 chain per bit position for demo)
+    // In production, use proper Winternitz encoding with w=16
+    const byteIndex = Math.floor(i / 8)
+    const bitIndex = i % 8
+    const messageByte = messageHash[byteIndex] || 0
+    const messageBit = (messageByte >> (7 - bitIndex)) & 1
+    // Hash iterations = message bit value (0 or 1 for this simplified version)
+    // For proper w=16, this would be the nibble value (0-15)
+    const iterations = messageBit * 8 // Scale for demo
+    let current: Uint8Array = privateKey.slice(chainStart, chainEnd)
+    for (let j = 0; j < iterations; j++) {
+      current = new Uint8Array(keccak_256(current))
+    }
+    chains.set(current, chainStart)
+  }
+  return {
+    chains,
+    messageHash,
+  }
+}
+/**
+ * Sign a message hash directly (for pre-hashed messages)
+ *
+ * @param privateKey - WOTS private key
+ * @param messageHash - 32-byte message hash
+ * @returns WOTS signature
+ */
+export function wotsSignHash(
+  privateKey: Uint8Array,
+  messageHash: Uint8Array
+): WotsSignature {
+  if (messageHash.length !== 32) {
+    throw new Error('Message hash must be 32 bytes')
+  }
+  return wotsSign(privateKey, messageHash)
+}
+// ─── Verification ─────────────────────────────────────────────────────────────
+/**
+ * Verify a WOTS signature
+ *
+ * @param publicKey - WOTS public key (8KB)
+ * @param message - Original message
+ * @param signature - WOTS signature
+ * @returns True if signature is valid
+ *
+ * @example
+ * ```typescript
+ * const valid = wotsVerify(keypair.publicKey, message, signature)
+ * if (!valid) {
+ *   throw new Error('Invalid signature')
+ * }
+ * ```
+ */
+export function wotsVerify(
+  publicKey: Uint8Array,
+  message: Uint8Array,
+  signature: WotsSignature
+): boolean {
+  if (publicKey.length !== KEY_SIZE) {
+    throw new Error(`Public key must be ${KEY_SIZE} bytes`)
+  }
+  if (signature.chains.length !== KEY_SIZE) {
+    throw new Error(`Signature chains must be ${KEY_SIZE} bytes`)
+  }
+  // Hash message
+  const messageHash = message.length === 32 ? message : keccak_256(message)
+  // Verify each chain
+  for (let i = 0; i < WOTS_CHAINS; i++) {
+    const chainStart = i * CHAIN_SIZE
+    const chainEnd = chainStart + CHAIN_SIZE
+    // Get message value (same encoding as signing)
+    const byteIndex = Math.floor(i / 8)
+    const bitIndex = i % 8
+    const messageByte = messageHash[byteIndex] || 0
+    const messageBit = (messageByte >> (7 - bitIndex)) & 1
+    const iterations = messageBit * 8
+    // Remaining iterations to reach public key
+    const remainingIterations = WOTS_ITERATIONS - iterations
+    // Hash signature element remaining times
+    let current: Uint8Array = signature.chains.slice(chainStart, chainEnd)
+    for (let j = 0; j < remainingIterations; j++) {
+      current = new Uint8Array(keccak_256(current))
+    }
+    // Compare with public key element
+    const pubKeyElement = publicKey.slice(chainStart, chainEnd)
+    if (!constantTimeEqual(current, pubKeyElement)) {
+      return false
+    }
+  }
+  return true
+}
+/**
+ * Verify signature against merkle root (without full public key)
+ *
+ * @param merkleRoot - 32-byte merkle root
+ * @param message - Original message
+ * @param signature - WOTS signature
+ * @param publicKey - Full public key for verification
+ * @returns True if valid and public key matches merkle root
+ */
+export function wotsVerifyWithRoot(
+  merkleRoot: Uint8Array,
+  message: Uint8Array,
+  signature: WotsSignature,
+  publicKey: Uint8Array
+): boolean {
+  // Verify merkle root matches
+  const computedRoot = computeMerkleRoot(publicKey)
+  if (!constantTimeEqual(computedRoot, merkleRoot)) {
+    return false
+  }
+  // Verify signature
+  return wotsVerify(publicKey, message, signature)
+}
+// ─── Merkle Tree ──────────────────────────────────────────────────────────────
+/**
+ * Compute Keccak256 merkle root of public key
+ *
+ * @param publicKey - WOTS public key (8KB)
+ * @returns 32-byte merkle root
+ */
+export function computeMerkleRoot(publicKey: Uint8Array): Uint8Array {
+  if (publicKey.length !== KEY_SIZE) {
+    throw new Error(`Public key must be ${KEY_SIZE} bytes`)
+  }
+  // Build merkle tree from public key chains
+  // Level 0: Hash each chain element individually
+  let level: Uint8Array[] = []
+  for (let i = 0; i < WOTS_CHAINS; i++) {
+    const chainStart = i * CHAIN_SIZE
+    const chainEnd = chainStart + CHAIN_SIZE
+    level.push(keccak_256(publicKey.slice(chainStart, chainEnd)))
+  }
+  // Build tree up to root
+  while (level.length > 1) {
+    const nextLevel: Uint8Array[] = []
+    for (let i = 0; i < level.length; i += 2) {
+      const left = level[i]
+      const right = level[i + 1] || left // Duplicate if odd number
+      const combined = new Uint8Array(64)
+      combined.set(left, 0)
+      combined.set(right, 32)
+      nextLevel.push(keccak_256(combined))
+    }
+    level = nextLevel
+  }
+  return level[0]
+}
+// ─── Key Management ───────────────────────────────────────────────────────────
+/**
+ * WOTS Key Manager for tracking key usage
+ *
+ * Prevents catastrophic key reuse by maintaining persistent state.
+ */
+export class WotsKeyManager {
+  private storage: Map<string, WotsKeyState>
+  private persistFn?: (states: Map<string, WotsKeyState>) => Promise<void>
+  constructor(options: {
+    persistFn?: (states: Map<string, WotsKeyState>) => Promise<void>
+    initialStates?: Map<string, WotsKeyState>
+  } = {}) {
+    this.storage = options.initialStates ?? new Map()
+    this.persistFn = options.persistFn
+  }
+  /**
+   * Register a new keypair
+   */
+  async register(keypair: WinternitzKeypair): Promise<void> {
+    const key = bytesToHex(keypair.merkleRoot)
+    if (this.storage.has(key)) {
+      throw new Error(`Key ${key.slice(0, 16)} already registered`)
+    }
+    this.storage.set(key, {
+      merkleRoot: key,
+      used: false,
+      createdAt: Date.now(),
+    })
+    await this.persist()
+  }
+  /**
+   * Check if a key can be used
+   */
+  canUse(merkleRoot: Uint8Array): boolean {
+    const key = bytesToHex(merkleRoot)
+    const state = this.storage.get(key)
+    return state !== undefined && !state.used
+  }
+  /**
+   * Mark a key as used (MUST be called before signing)
+   */
+  async markUsed(
+    merkleRoot: Uint8Array,
+    usedFor: string
+  ): Promise<void> {
+    const key = bytesToHex(merkleRoot)
+    const state = this.storage.get(key)
+    if (!state) {
+      throw new Error(`Key ${key.slice(0, 16)} not registered`)
+    }
+    if (state.used) {
+      throw new Error(
+        `CRITICAL: Key ${key.slice(0, 16)} already used at ${state.usedAt}. ` +
+        `Reuse would compromise quantum security!`
+      )
+    }
+    state.used = true
+    state.usedAt = Date.now()
+    state.usedFor = usedFor
+    await this.persist()
+  }
+  /**
+   * Get key state
+   */
+  getState(merkleRoot: Uint8Array): WotsKeyState | undefined {
+    return this.storage.get(bytesToHex(merkleRoot))
+  }
+  /**
+   * List all keys
+   */
+  listKeys(): WotsKeyState[] {
+    return Array.from(this.storage.values())
+  }
+  private async persist(): Promise<void> {
+    if (this.persistFn) {
+      await this.persistFn(this.storage)
+    }
+  }
+}
+// ─── Utilities ────────────────────────────────────────────────────────────────
+/**
+ * Serialize keypair for storage
+ */
+export function serializeKeypair(keypair: WinternitzKeypair): {
+  privateKey: string
+  publicKey: string
+  merkleRoot: string
+  id: string
+} {
+  return {
+    privateKey: bytesToHex(keypair.privateKey),
+    publicKey: bytesToHex(keypair.publicKey),
+    merkleRoot: bytesToHex(keypair.merkleRoot),
+    id: keypair.id,
+  }
+}
+/**
+ * Deserialize keypair from storage
+ */
+export function deserializeKeypair(data: {
+  privateKey: string
+  publicKey: string
+  merkleRoot: string
+  id: string
+}): WinternitzKeypair {
+  return {
+    privateKey: hexToBytes(data.privateKey),
+    publicKey: hexToBytes(data.publicKey),
+    merkleRoot: hexToBytes(data.merkleRoot),
+    id: data.id,
+  }
+}
+/**
+ * Serialize signature for transmission
+ */
+export function serializeSignature(signature: WotsSignature): {
+  chains: string
+  messageHash: string
+} {
+  return {
+    chains: bytesToHex(signature.chains),
+    messageHash: bytesToHex(signature.messageHash),
+  }
+}
+/**
+ * Deserialize signature
+ */
+export function deserializeSignature(data: {
+  chains: string
+  messageHash: string
+}): WotsSignature {
+  return {
+    chains: hexToBytes(data.chains),
+    messageHash: hexToBytes(data.messageHash),
+  }
+}
+// ─── Internal Helpers ─────────────────────────────────────────────────────────
+function bytesToHex(bytes: Uint8Array): string {
+  return Array.from(bytes)
+    .map((b) => b.toString(16).padStart(2, '0'))
+    .join('')
+}
+function hexToBytes(hex: string): Uint8Array {
+  const cleaned = hex.startsWith('0x') ? hex.slice(2) : hex
+  const bytes = new Uint8Array(cleaned.length / 2)
+  for (let i = 0; i < bytes.length; i++) {
+    bytes[i] = parseInt(cleaned.slice(i * 2, i * 2 + 2), 16)
+  }
+  return bytes
+}
+function constantTimeEqual(a: Uint8Array, b: Uint8Array): boolean {
+  if (a.length !== b.length) return false
+  let diff = 0
+  for (let i = 0; i < a.length; i++) {
+    diff |= a[i] ^ b[i]
+  }
+  return diff === 0
+}

package/src/settlement/backends/direct-chain.ts CHANGED Viewed

@@ -118,6 +118,7 @@ const DEFAULT_GAS_FEES: Record<ChainId, bigint> = {
   celestia: 5000n, // 0.005 TIA in utia
   sei: 5000n, // 0.005 SEI in usei
   dydx: 5000n, // 0.000005 DYDX in dydx (18 decimals)
+  bsc: 21000n * 5n * 1000000000n, // 21k gas * 5 gwei = 0.000105 BNB
 }
 /**

package/src/settlement/index.ts CHANGED Viewed

@@ -37,6 +37,15 @@ export {
   type FindBestRouteParams,
 } from './router'
+// Circuit Breaker
+export {
+  CircuitBreaker,
+  type CircuitState,
+  type CircuitBreakerStatus,
+  type CircuitBreakerEvents,
+  type CircuitBreakerOptions,
+} from './router'
 // Backends
 export {
   NEARIntentsBackend,