npm - @wlfi-agent/cli - Versions diffs - 1.4.12 → 1.4.14 - Mend

@wlfi-agent/cli 1.4.12 → 1.4.14

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (289) hide show

package/Cargo.lock +3968 -0
package/Cargo.toml +50 -0
package/README.md +426 -6
package/crates/vault-cli-admin/Cargo.toml +26 -0
package/crates/vault-cli-admin/src/io_utils.rs +500 -0
package/crates/vault-cli-admin/src/main.rs +3990 -0
package/crates/vault-cli-admin/src/shared_config.rs +624 -0
package/crates/vault-cli-admin/src/tui/amounts.rs +180 -0
package/crates/vault-cli-admin/src/tui/token_rpc.rs +250 -0
package/crates/vault-cli-admin/src/tui/utils.rs +82 -0
package/crates/vault-cli-admin/src/tui.rs +3410 -0
package/crates/vault-cli-agent/Cargo.toml +24 -0
package/crates/vault-cli-agent/src/io_utils.rs +576 -0
package/crates/vault-cli-agent/src/main.rs +833 -0
package/crates/vault-cli-daemon/Cargo.toml +28 -0
package/crates/vault-cli-daemon/src/bin/wlfi-agent-system-keychain.rs +216 -0
package/crates/vault-cli-daemon/src/main.rs +644 -0
package/crates/vault-cli-daemon/src/relay_sync.rs +894 -0
package/crates/vault-cli-daemon/tests/system_keychain_helper_acl.rs +167 -0
package/crates/vault-daemon/Cargo.toml +32 -0
package/crates/vault-daemon/src/daemon_parts/api_impl_and_utils.rs +1041 -0
package/crates/vault-daemon/src/daemon_parts/core_helpers.rs +1256 -0
package/crates/vault-daemon/src/daemon_parts/types_api_rpc.rs +622 -0
package/crates/vault-daemon/src/lib.rs +54 -0
package/crates/vault-daemon/src/persistence.rs +441 -0
package/crates/vault-daemon/src/tests.rs +237 -0
package/crates/vault-daemon/src/tests_parts/part1.rs +1224 -0
package/crates/vault-daemon/src/tests_parts/part2.rs +1021 -0
package/crates/vault-daemon/src/tests_parts/part3.rs +835 -0
package/crates/vault-daemon/src/tests_parts/part4.rs +604 -0
package/crates/vault-domain/Cargo.toml +20 -0
package/crates/vault-domain/src/action.rs +849 -0
package/crates/vault-domain/src/address.rs +51 -0
package/crates/vault-domain/src/approval.rs +90 -0
package/crates/vault-domain/src/constants.rs +4 -0
package/crates/vault-domain/src/error.rs +54 -0
package/crates/vault-domain/src/keys.rs +71 -0
package/crates/vault-domain/src/lib.rs +42 -0
package/crates/vault-domain/src/nonce.rs +102 -0
package/crates/vault-domain/src/policy.rs +172 -0
package/crates/vault-domain/src/request.rs +53 -0
package/crates/vault-domain/src/scope.rs +24 -0
package/crates/vault-domain/src/session.rs +50 -0
package/crates/vault-domain/src/signature.rs +34 -0
package/crates/vault-domain/src/tests.rs +651 -0
package/crates/vault-domain/src/u128_as_decimal_string.rs +44 -0
package/crates/vault-policy/Cargo.toml +17 -0
package/crates/vault-policy/src/engine.rs +301 -0
package/crates/vault-policy/src/error.rs +81 -0
package/crates/vault-policy/src/lib.rs +17 -0
package/crates/vault-policy/src/report.rs +34 -0
package/crates/vault-policy/src/tests.rs +891 -0
package/crates/vault-policy/src/tests_explain.rs +78 -0
package/crates/vault-sdk-agent/Cargo.toml +21 -0
package/crates/vault-sdk-agent/src/lib.rs +711 -0
package/crates/vault-signer/Cargo.toml +25 -0
package/crates/vault-signer/src/lib.rs +731 -0
package/crates/vault-signer/tests/secure_enclave_acl.rs +54 -0
package/crates/vault-transport-unix/Cargo.toml +24 -0
package/crates/vault-transport-unix/src/lib.rs +1640 -0
package/crates/vault-transport-xpc/Cargo.toml +25 -0
package/crates/vault-transport-xpc/src/client_codec_api.rs +635 -0
package/crates/vault-transport-xpc/src/lib.rs +680 -0
package/crates/vault-transport-xpc/src/tests.rs +818 -0
package/crates/vault-transport-xpc/tests/e2e_flow.rs +773 -0
package/dist/cli.cjs +35088 -0
package/dist/cli.cjs.map +1 -0
package/package.json +49 -43
package/packages/cache/.turbo/turbo-build.log +52 -0
package/packages/cache/dist/chunk-2QFWMUXT.cjs +43 -0
package/packages/cache/dist/chunk-2QFWMUXT.cjs.map +1 -0
package/packages/cache/dist/chunk-4U63TZTQ.js +43 -0
package/packages/cache/dist/chunk-4U63TZTQ.js.map +1 -0
package/packages/cache/dist/chunk-ALQ6H7KG.cjs +404 -0
package/packages/cache/dist/chunk-ALQ6H7KG.cjs.map +1 -0
package/packages/cache/dist/chunk-FGJEEF5N.js +404 -0
package/packages/cache/dist/chunk-FGJEEF5N.js.map +1 -0
package/packages/cache/dist/chunk-UYNEHZHB.cjs +45 -0
package/packages/cache/dist/chunk-UYNEHZHB.cjs.map +1 -0
package/packages/cache/dist/chunk-VXVMPG3W.js +45 -0
package/packages/cache/dist/chunk-VXVMPG3W.js.map +1 -0
package/packages/cache/dist/client/index.cjs +11 -0
package/packages/cache/dist/client/index.cjs.map +1 -0
package/packages/cache/dist/client/index.d.cts +15 -0
package/packages/cache/dist/client/index.d.ts +15 -0
package/packages/cache/dist/client/index.js +11 -0
package/packages/cache/dist/client/index.js.map +1 -0
package/packages/cache/dist/errors/index.cjs +11 -0
package/packages/cache/dist/errors/index.cjs.map +1 -0
package/packages/cache/dist/errors/index.d.cts +26 -0
package/packages/cache/dist/errors/index.d.ts +26 -0
package/packages/cache/dist/errors/index.js +11 -0
package/packages/cache/dist/errors/index.js.map +1 -0
package/packages/cache/dist/index.cjs +29 -0
package/packages/cache/dist/index.cjs.map +1 -0
package/packages/cache/dist/index.d.cts +4 -0
package/packages/cache/dist/index.d.ts +4 -0
package/packages/cache/dist/index.js +29 -0
package/packages/cache/dist/index.js.map +1 -0
package/packages/cache/dist/service/index.cjs +15 -0
package/packages/cache/dist/service/index.cjs.map +1 -0
package/packages/cache/dist/service/index.d.cts +184 -0
package/packages/cache/dist/service/index.d.ts +184 -0
package/packages/cache/dist/service/index.js +15 -0
package/packages/cache/dist/service/index.js.map +1 -0
package/packages/cache/node_modules/.bin/jiti +17 -0
package/packages/cache/node_modules/.bin/tsc +17 -0
package/packages/cache/node_modules/.bin/tsserver +17 -0
package/packages/cache/node_modules/.bin/tsup +17 -0
package/packages/cache/node_modules/.bin/tsup-node +17 -0
package/packages/cache/node_modules/.bin/tsx +17 -0
package/packages/cache/node_modules/.bin/vitest +17 -0
package/packages/cache/package.json +48 -0
package/packages/cache/src/client/index.ts +56 -0
package/packages/cache/src/errors/index.ts +53 -0
package/packages/cache/src/index.ts +3 -0
package/packages/cache/src/service/index.test.ts +263 -0
package/packages/cache/src/service/index.ts +678 -0
package/packages/cache/tsconfig.json +13 -0
package/packages/cache/tsup.config.ts +13 -0
package/packages/cache/vitest.config.ts +16 -0
package/packages/config/.turbo/turbo-build.log +18 -0
package/packages/config/dist/index.cjs +1037 -0
package/packages/config/dist/index.cjs.map +1 -0
package/packages/config/dist/index.d.ts +131 -0
package/packages/config/node_modules/.bin/jiti +17 -0
package/packages/config/node_modules/.bin/tsc +17 -0
package/packages/config/node_modules/.bin/tsserver +17 -0
package/packages/config/node_modules/.bin/tsup +17 -0
package/packages/config/node_modules/.bin/tsup-node +17 -0
package/packages/config/node_modules/.bin/tsx +17 -0
package/packages/config/package.json +21 -0
package/packages/config/src/index.js +1 -0
package/packages/config/src/index.ts +1282 -0
package/packages/config/tsconfig.json +4 -0
package/packages/rpc/.turbo/turbo-build.log +32 -0
package/packages/rpc/dist/_esm-BCLXDO2R.cjs +3660 -0
package/packages/rpc/dist/_esm-BCLXDO2R.cjs.map +1 -0
package/packages/rpc/dist/ccip-OWJLAW55.cjs +16 -0
package/packages/rpc/dist/ccip-OWJLAW55.cjs.map +1 -0
package/packages/rpc/dist/chunk-APQIFZ3B.cjs +6247 -0
package/packages/rpc/dist/chunk-APQIFZ3B.cjs.map +1 -0
package/packages/rpc/dist/chunk-CDO2GWRD.cjs +410 -0
package/packages/rpc/dist/chunk-CDO2GWRD.cjs.map +1 -0
package/packages/rpc/dist/chunk-QGTNTFJ7.cjs +2249 -0
package/packages/rpc/dist/chunk-QGTNTFJ7.cjs.map +1 -0
package/packages/rpc/dist/chunk-TZDTAHWR.cjs +44 -0
package/packages/rpc/dist/chunk-TZDTAHWR.cjs.map +1 -0
package/packages/rpc/dist/index.cjs +7342 -0
package/packages/rpc/dist/index.cjs.map +1 -0
package/packages/rpc/dist/index.d.ts +3857 -0
package/packages/rpc/dist/secp256k1-WCNM675D.cjs +18 -0
package/packages/rpc/dist/secp256k1-WCNM675D.cjs.map +1 -0
package/packages/rpc/node_modules/.bin/jiti +17 -0
package/packages/rpc/node_modules/.bin/tsc +17 -0
package/packages/rpc/node_modules/.bin/tsserver +17 -0
package/packages/rpc/node_modules/.bin/tsup +17 -0
package/packages/rpc/node_modules/.bin/tsup-node +17 -0
package/packages/rpc/node_modules/.bin/tsx +17 -0
package/packages/rpc/package.json +25 -0
package/packages/rpc/src/index.ts +206 -0
package/packages/rpc/tsconfig.json +4 -0
package/packages/typescript/base.json +36 -0
package/packages/typescript/nextjs.json +17 -0
package/packages/typescript/package.json +10 -0
package/packages/ui/.turbo/turbo-build.log +44 -0
package/packages/ui/dist/chunk-MOAFBKSA.js +11 -0
package/packages/ui/dist/chunk-MOAFBKSA.js.map +1 -0
package/packages/ui/dist/components/badge.d.ts +12 -0
package/packages/ui/dist/components/badge.js +31 -0
package/packages/ui/dist/components/badge.js.map +1 -0
package/packages/ui/dist/components/button.d.ts +13 -0
package/packages/ui/dist/components/button.js +40 -0
package/packages/ui/dist/components/button.js.map +1 -0
package/packages/ui/dist/components/card.d.ts +10 -0
package/packages/ui/dist/components/card.js +39 -0
package/packages/ui/dist/components/card.js.map +1 -0
package/packages/ui/dist/components/input.d.ts +5 -0
package/packages/ui/dist/components/input.js +28 -0
package/packages/ui/dist/components/input.js.map +1 -0
package/packages/ui/dist/components/label.d.ts +5 -0
package/packages/ui/dist/components/label.js +13 -0
package/packages/ui/dist/components/label.js.map +1 -0
package/packages/ui/dist/components/separator.d.ts +5 -0
package/packages/ui/dist/components/separator.js +13 -0
package/packages/ui/dist/components/separator.js.map +1 -0
package/packages/ui/dist/components/textarea.d.ts +5 -0
package/packages/ui/dist/components/textarea.js +27 -0
package/packages/ui/dist/components/textarea.js.map +1 -0
package/packages/ui/dist/tailwind.d.ts +56 -0
package/packages/ui/dist/tailwind.js +60 -0
package/packages/ui/dist/tailwind.js.map +1 -0
package/packages/ui/dist/utils/cn.d.ts +5 -0
package/packages/ui/dist/utils/cn.js +7 -0
package/packages/ui/dist/utils/cn.js.map +1 -0
package/packages/ui/node_modules/.bin/jiti +17 -0
package/packages/ui/node_modules/.bin/tsc +17 -0
package/packages/ui/node_modules/.bin/tsserver +17 -0
package/packages/ui/node_modules/.bin/tsup +17 -0
package/packages/ui/node_modules/.bin/tsup-node +17 -0
package/packages/ui/node_modules/.bin/tsx +17 -0
package/packages/ui/package.json +69 -0
package/packages/ui/src/components/badge.tsx +27 -0
package/packages/ui/src/components/button.tsx +40 -0
package/packages/ui/src/components/card.tsx +31 -0
package/packages/ui/src/components/input.tsx +21 -0
package/packages/ui/src/components/label.tsx +6 -0
package/packages/ui/src/components/separator.tsx +6 -0
package/packages/ui/src/components/textarea.tsx +20 -0
package/packages/ui/src/globals.css +70 -0
package/packages/ui/src/tailwind.ts +56 -0
package/packages/ui/src/utils/cn.ts +6 -0
package/packages/ui/tsconfig.json +20 -0
package/packages/ui/tsup.config.ts +20 -0
package/pnpm-workspace.yaml +4 -0
package/scripts/install-rust-binaries.mjs +84 -0
package/scripts/launchd/install-user-daemon.sh +358 -0
package/scripts/launchd/run-vault-daemon.sh +5 -0
package/scripts/launchd/run-wlfi-agent-daemon.sh +73 -0
package/scripts/launchd/uninstall-user-daemon.sh +103 -0
package/src/cli.ts +2121 -0
package/src/lib/admin-guard.js +1 -0
package/src/lib/admin-guard.ts +185 -0
package/src/lib/admin-passthrough.ts +33 -0
package/src/lib/admin-reset.ts +751 -0
package/src/lib/admin-setup.ts +1612 -0
package/src/lib/agent-auth-clear.js +1 -0
package/src/lib/agent-auth-clear.ts +58 -0
package/src/lib/agent-auth-forwarding.js +1 -0
package/src/lib/agent-auth-forwarding.ts +149 -0
package/src/lib/agent-auth-migrate.js +1 -0
package/src/lib/agent-auth-migrate.ts +150 -0
package/src/lib/agent-auth-revoke.ts +103 -0
package/src/lib/agent-auth-rotate.ts +107 -0
package/src/lib/agent-auth-token.js +1 -0
package/src/lib/agent-auth-token.ts +25 -0
package/src/lib/agent-auth.ts +89 -0
package/src/lib/asset-broadcast.js +1 -0
package/src/lib/asset-broadcast.ts +285 -0
package/src/lib/bootstrap-artifacts.js +1 -0
package/src/lib/bootstrap-artifacts.ts +205 -0
package/src/lib/bootstrap-credentials.js +1 -0
package/src/lib/bootstrap-credentials.ts +832 -0
package/src/lib/config-amounts.js +1 -0
package/src/lib/config-amounts.ts +189 -0
package/src/lib/config-mutation.ts +27 -0
package/src/lib/fs-trust.js +1 -0
package/src/lib/fs-trust.ts +537 -0
package/src/lib/keychain.js +1 -0
package/src/lib/keychain.ts +225 -0
package/src/lib/local-admin-access.ts +106 -0
package/src/lib/network-selection.js +1 -0
package/src/lib/network-selection.ts +71 -0
package/src/lib/passthrough-security.js +1 -0
package/src/lib/passthrough-security.ts +114 -0
package/src/lib/rpc-guard.js +1 -0
package/src/lib/rpc-guard.ts +7 -0
package/src/lib/rust-spawn-options.js +1 -0
package/src/lib/rust-spawn-options.ts +98 -0
package/src/lib/rust.js +1 -0
package/src/lib/rust.ts +143 -0
package/src/lib/signed-tx.js +1 -0
package/src/lib/signed-tx.ts +116 -0
package/src/lib/status-repair-cli.ts +116 -0
package/src/lib/sudo.js +1 -0
package/src/lib/sudo.ts +172 -0
package/src/lib/vault-password-forwarding.js +1 -0
package/src/lib/vault-password-forwarding.ts +155 -0
package/src/lib/wallet-profile.js +1 -0
package/src/lib/wallet-profile.ts +332 -0
package/src/lib/wallet-repair.js +1 -0
package/src/lib/wallet-repair.ts +304 -0
package/src/lib/wallet-setup.js +1 -0
package/src/lib/wallet-setup.ts +1466 -0
package/src/lib/wallet-status.js +1 -0
package/src/lib/wallet-status.ts +640 -0
package/tsconfig.base.json +17 -0
package/tsconfig.json +10 -0
package/tsup.config.ts +25 -0
package/turbo.json +41 -0
package/LICENSE.md +0 -1
package/dist/wlfa/index.cjs +0 -250
package/dist/wlfa/index.d.cts +0 -1
package/dist/wlfa/index.d.ts +0 -1
package/dist/wlfa/index.js +0 -250
package/dist/wlfc/index.cjs +0 -1894
package/dist/wlfc/index.d.cts +0 -1
package/dist/wlfc/index.d.ts +0 -1
package/dist/wlfc/index.js +0 -1894

package/crates/vault-cli-daemon/src/main.rs ADDED Viewed

@@ -0,0 +1,644 @@
+use std::collections::BTreeSet;
+use std::io::Read;
+use std::path::{Path, PathBuf};
+use std::sync::Arc;
+use anyhow::{anyhow, bail, Context, Result};
+use clap::{Parser, ValueEnum};
+use vault_daemon::{DaemonConfig, InMemoryDaemon, PersistentStoreConfig};
+use vault_signer::{SecureEnclaveSignerBackend, SoftwareSignerBackend};
+use vault_transport_unix::UnixDaemonServer;
+use zeroize::Zeroize;
+mod relay_sync;
+const MAX_SECRET_STDIN_BYTES: u64 = 16 * 1024;
+#[derive(Debug, Clone, Copy, PartialEq, Eq, ValueEnum)]
+enum SignerBackendKind {
+    SecureEnclave,
+    Software,
+}
+#[derive(Debug, Parser)]
+#[command(name = "wlfi-agent-daemon")]
+#[command(about = "Long-running local daemon process for policy-gated signing")]
+struct Cli {
+    #[arg(
+        long,
+        default_value_t = false,
+        help = "Read vault password from stdin (trailing newlines are trimmed)"
+    )]
+    vault_password_stdin: bool,
+    #[arg(
+        long,
+        default_value_t = false,
+        help = "Do not prompt for password; require --vault-password-stdin"
+    )]
+    non_interactive: bool,
+    #[arg(
+        long,
+        env = "WLFI_STATE_FILE",
+        value_name = "PATH",
+        help = "Encrypted persistent daemon state file path (default: $WLFI_HOME/daemon-state.enc or ~/.wlfi_agent/daemon-state.enc)"
+    )]
+    state_file: Option<PathBuf>,
+    #[arg(
+        long,
+        env = "WLFI_DAEMON_SOCKET",
+        value_name = "PATH",
+        help = "Unix socket path for daemon RPC (default: $WLFI_HOME/daemon.sock or ~/.wlfi_agent/daemon.sock)"
+    )]
+    daemon_socket: Option<PathBuf>,
+    #[arg(
+        long,
+        env = "WLFI_SECURE_ENCLAVE_LABEL_PREFIX",
+        default_value = "com.wlfi.vault",
+        value_name = "PREFIX",
+        help = "Secure Enclave key label prefix"
+    )]
+    secure_enclave_label_prefix: String,
+    #[arg(
+        long,
+        env = "WLFI_SIGNER_BACKEND",
+        value_enum,
+        default_value_t = SignerBackendKind::SecureEnclave,
+        value_name = "secure-enclave|software",
+        help = "Signer backend for daemon key creation and signing"
+    )]
+    signer_backend: SignerBackendKind,
+    #[arg(
+        long = "allow-admin-euid",
+        env = "WLFI_ALLOW_ADMIN_EUID",
+        value_name = "UID[,UID...]",
+        value_delimiter = ',',
+        num_args = 1..,
+        help = "Additional non-root admin client euid(s) allowed to connect for privileged RPCs. Root (0) is always allowed."
+    )]
+    allow_admin_euid: Vec<u32>,
+    #[arg(
+        long = "allow-agent-euid",
+        env = "WLFI_ALLOW_AGENT_EUID",
+        value_name = "UID[,UID...]",
+        value_delimiter = ',',
+        num_args = 1..,
+        help = "Additional non-root agent client euid(s) allowed to connect for signing and nonce RPCs. Root (0) is always allowed."
+    )]
+    allow_agent_euid: Vec<u32>,
+    #[arg(
+        long = "allow-client-euid",
+        env = "WLFI_ALLOW_CLIENT_EUID",
+        value_name = "UID[,UID...]",
+        value_delimiter = ',',
+        num_args = 1..,
+        help = "Legacy compatibility alias that grants the same non-root client euid(s) both admin and agent access. Root (0) is always allowed."
+    )]
+    allow_client_euid: Vec<u32>,
+}
+#[derive(Debug, Clone)]
+struct AllowedPeerEuids {
+    admin: BTreeSet<u32>,
+    agent: BTreeSet<u32>,
+}
+struct StateFileLock {
+    #[cfg(unix)]
+    file: std::fs::File,
+}
+impl Drop for StateFileLock {
+    fn drop(&mut self) {
+        #[cfg(unix)]
+        {
+            use std::os::fd::AsRawFd;
+            // SAFETY: valid fd with best-effort unlock during drop.
+            unsafe {
+                let _ = libc::flock(self.file.as_raw_fd(), libc::LOCK_UN);
+            }
+        }
+    }
+}
+#[tokio::main]
+async fn main() -> Result<()> {
+    let cli = Cli::parse();
+    validate_signer_backend_runtime(cli.signer_backend)?;
+    let mut vault_password = resolve_vault_password(cli.vault_password_stdin, cli.non_interactive)?;
+    let state_file = resolve_state_file_path(cli.state_file)?;
+    let daemon_socket = resolve_socket_path(cli.daemon_socket)?;
+    let _state_lock = acquire_state_file_lock(&state_file)?;
+    let allowed_peer_euids = resolve_allowed_peer_euids(
+        &cli.allow_admin_euid,
+        &cli.allow_agent_euid,
+        &cli.allow_client_euid,
+    )?;
+    if !cli.allow_client_euid.is_empty() {
+        eprintln!(
+            "==> warning: --allow-client-euid grants both admin and agent access; prefer --allow-admin-euid and --allow-agent-euid"
+        );
+    }
+    let server = UnixDaemonServer::bind_with_allowed_peer_euids(
+        daemon_socket.clone(),
+        allowed_peer_euids.admin.clone(),
+        allowed_peer_euids.agent.clone(),
+    )
+    .await
+    .with_context(|| {
+        format!(
+            "failed to bind daemon socket at {}",
+            daemon_socket.display()
+        )
+    })?;
+    eprintln!(
+        "==> daemon listening on {} (allowed admin euid(s): {}; allowed agent euid(s): {})",
+        daemon_socket.display(),
+        format_allowed_euids(&allowed_peer_euids.admin),
+        format_allowed_euids(&allowed_peer_euids.agent)
+    );
+    eprintln!("==> press Ctrl+C to stop");
+    match cli.signer_backend {
+        SignerBackendKind::SecureEnclave => {
+            let daemon = Arc::new(
+                InMemoryDaemon::new_with_persistent_store(
+                    &vault_password,
+                    SecureEnclaveSignerBackend::new(cli.secure_enclave_label_prefix),
+                    DaemonConfig::default(),
+                    PersistentStoreConfig::new(state_file),
+                )
+                .context("failed to initialize daemon")?,
+            );
+            let relay_task =
+                relay_sync::spawn_relay_sync_task(Arc::clone(&daemon), "secure-enclave");
+            vault_password.zeroize();
+            server
+                .run_until_shutdown(daemon, async {
+                    let _ = tokio::signal::ctrl_c().await;
+                    relay_task.abort();
+                })
+                .await
+                .context("daemon server loop failed")?;
+        }
+        SignerBackendKind::Software => {
+            let daemon = Arc::new(
+                InMemoryDaemon::new_with_persistent_store(
+                    &vault_password,
+                    SoftwareSignerBackend::default(),
+                    DaemonConfig::default(),
+                    PersistentStoreConfig::new(state_file),
+                )
+                .context("failed to initialize daemon")?,
+            );
+            let relay_task =
+                relay_sync::spawn_relay_sync_task(Arc::clone(&daemon), "secure-enclave");
+            vault_password.zeroize();
+            server
+                .run_until_shutdown(daemon, async {
+                    let _ = tokio::signal::ctrl_c().await;
+                    relay_task.abort();
+                })
+                .await
+                .context("daemon server loop failed")?;
+        }
+    }
+    Ok(())
+}
+fn validate_signer_backend_runtime(backend: SignerBackendKind) -> Result<()> {
+    #[cfg(not(target_os = "macos"))]
+    {
+        if matches!(backend, SignerBackendKind::SecureEnclave) {
+            bail!("Secure Enclave daemon mode is supported only on macOS");
+        }
+    }
+    #[cfg(target_os = "macos")]
+    {
+        let euid = nix::unistd::geteuid().as_raw();
+        if matches!(backend, SignerBackendKind::SecureEnclave) && euid != 0 {
+            bail!("secure enclave daemon mode requires root daemon context (current euid: {euid})");
+        }
+    }
+    Ok(())
+}
+fn resolve_vault_password(from_stdin: bool, non_interactive: bool) -> Result<String> {
+    if from_stdin {
+        return read_secret_from_reader(std::io::stdin(), "vault password");
+    }
+    if non_interactive {
+        bail!("vault password is required in non-interactive mode; use --vault-password-stdin");
+    }
+    let prompted =
+        rpassword::prompt_password("Vault password: ").context("failed to read password input")?;
+    validate_password(prompted, "prompt")
+}
+fn validate_password(mut password: String, source: &str) -> Result<String> {
+    if password.as_bytes().len() > MAX_SECRET_STDIN_BYTES as usize {
+        password.zeroize();
+        bail!("vault password from {source} must not exceed {MAX_SECRET_STDIN_BYTES} bytes");
+    }
+    if password.trim().is_empty() {
+        password.zeroize();
+        bail!("vault password from {source} must not be empty or whitespace");
+    }
+    Ok(password)
+}
+fn read_secret_from_reader(mut reader: impl std::io::Read, label: &str) -> Result<String> {
+    let mut raw = String::new();
+    reader
+        .by_ref()
+        .take(MAX_SECRET_STDIN_BYTES + 1)
+        .read_to_string(&mut raw)
+        .with_context(|| format!("failed to read {label} from stdin"))?;
+    if raw.as_bytes().len() > MAX_SECRET_STDIN_BYTES as usize {
+        raw.zeroize();
+        bail!("{label} must not exceed {MAX_SECRET_STDIN_BYTES} bytes");
+    }
+    let secret = raw.trim_end_matches(['\r', '\n']).to_string();
+    raw.zeroize();
+    validate_password(secret, "stdin")
+}
+fn resolve_allowed_peer_euids(
+    configured_admin: &[u32],
+    configured_agent: &[u32],
+    configured_legacy: &[u32],
+) -> Result<AllowedPeerEuids> {
+    resolve_allowed_peer_euids_with_sudo_uid(
+        configured_admin,
+        configured_agent,
+        configured_legacy,
+        None,
+    )
+}
+fn resolve_allowed_peer_euids_with_sudo_uid(
+    configured_admin: &[u32],
+    configured_agent: &[u32],
+    configured_legacy: &[u32],
+    _sudo_uid: Option<u32>,
+) -> Result<AllowedPeerEuids> {
+    let mut admin = BTreeSet::from([0]);
+    let mut agent = BTreeSet::from([0]);
+    admin.extend(configured_legacy.iter().copied());
+    admin.extend(configured_admin.iter().copied());
+    agent.extend(configured_legacy.iter().copied());
+    agent.extend(configured_agent.iter().copied());
+    Ok(AllowedPeerEuids { admin, agent })
+}
+fn format_allowed_euids(values: &BTreeSet<u32>) -> String {
+    values
+        .iter()
+        .map(ToString::to_string)
+        .collect::<Vec<_>>()
+        .join(",")
+}
+fn resolve_state_file_path(cli_value: Option<PathBuf>) -> Result<PathBuf> {
+    let path = match cli_value {
+        Some(path) => path,
+        None => default_state_file_path()?,
+    };
+    ensure_file_parent(&path, "state")?;
+    Ok(path)
+}
+fn resolve_socket_path(cli_value: Option<PathBuf>) -> Result<PathBuf> {
+    let path = match cli_value {
+        Some(path) => path,
+        None => default_socket_path()?,
+    };
+    ensure_file_parent(&path, "socket")?;
+    Ok(path)
+}
+fn acquire_state_file_lock(path: &Path) -> Result<StateFileLock> {
+    let lock_path = lock_path(path);
+    ensure_file_parent(&lock_path, "state lock")?;
+    let mut options = std::fs::OpenOptions::new();
+    options.read(true).write(true).create(true);
+    #[cfg(unix)]
+    {
+        use std::os::unix::fs::OpenOptionsExt;
+        options.mode(0o600);
+        options.custom_flags(libc::O_NOFOLLOW);
+    }
+    let file = options
+        .open(&lock_path)
+        .with_context(|| format!("failed to open state lock file {}", lock_path.display()))?;
+    #[cfg(unix)]
+    {
+        use std::os::fd::AsRawFd;
+        // SAFETY: valid fd for advisory lock in-process lifetime.
+        unsafe {
+            if libc::flock(file.as_raw_fd(), libc::LOCK_EX) != 0 {
+                return Err(anyhow!(
+                    "failed to acquire state lock on {}",
+                    lock_path.display()
+                ));
+            }
+        }
+    }
+    Ok(StateFileLock {
+        #[cfg(unix)]
+        file,
+    })
+}
+fn default_state_file_path() -> Result<PathBuf> {
+    Ok(wlfi_home_dir()?.join("daemon-state.enc"))
+}
+fn default_socket_path() -> Result<PathBuf> {
+    Ok(wlfi_home_dir()?.join("daemon.sock"))
+}
+fn wlfi_home_dir() -> Result<PathBuf> {
+    if let Some(path) = std::env::var_os("WLFI_HOME") {
+        let candidate = PathBuf::from(path);
+        if candidate.as_os_str().is_empty() {
+            bail!("WLFI_HOME must not be empty");
+        }
+        return Ok(candidate);
+    }
+    let Some(home) = std::env::var_os("HOME") else {
+        bail!("HOME is not set; use WLFI_HOME to choose config directory");
+    };
+    let mut path = PathBuf::from(home);
+    path.push(".wlfi_agent");
+    Ok(path)
+}
+fn ensure_file_parent(path: &Path, label: &str) -> Result<()> {
+    if is_symlink(path)? {
+        bail!("{label} path '{}' must not be a symlink", path.display());
+    }
+    if let Some(parent) = path.parent() {
+        if !parent.as_os_str().is_empty() {
+            std::fs::create_dir_all(parent)
+                .with_context(|| format!("failed to create directory {}", parent.display()))?;
+            if is_symlink(parent)? {
+                bail!(
+                    "{label} directory '{}' must not be a symlink",
+                    parent.display()
+                );
+            }
+            ensure_secure_directory_owner(parent, label)?;
+        }
+    }
+    Ok(())
+}
+#[cfg(unix)]
+fn assert_allowed_directory_owner(
+    path: &Path,
+    owner_uid: u32,
+    effective_uid: u32,
+    label: &str,
+) -> Result<()> {
+    if owner_uid == 0 {
+        return Ok(());
+    }
+    if effective_uid == 0 {
+        bail!(
+            "{label} directory '{}' must be owned by root; found uid {owner_uid}",
+            path.display()
+        );
+    }
+    if owner_uid != effective_uid {
+        bail!(
+            "{label} directory '{}' must be owned by current user or root; found uid {owner_uid}",
+            path.display()
+        );
+    }
+    Ok(())
+}
+#[cfg(unix)]
+fn ensure_secure_directory_owner(path: &Path, label: &str) -> Result<()> {
+    use std::os::unix::fs::MetadataExt;
+    const STICKY_BIT_MODE: u32 = 0o1000;
+    fn validate_directory(
+        path: &Path,
+        metadata: &std::fs::Metadata,
+        effective_uid: u32,
+        label: &str,
+        allow_sticky_group_other_write: bool,
+    ) -> Result<()> {
+        if !metadata.is_dir() {
+            bail!("{label} directory '{}' is not a directory", path.display());
+        }
+        assert_allowed_directory_owner(path, metadata.uid(), effective_uid, label)?;
+        let mode = metadata.mode() & 0o7777;
+        if mode & 0o022 != 0 && !(allow_sticky_group_other_write && mode & STICKY_BIT_MODE != 0) {
+            bail!(
+                "{label} directory '{}' must not be writable by group/other (current mode {:o})",
+                path.display(),
+                mode & 0o777
+            );
+        }
+        Ok(())
+    }
+    let effective_uid = nix::unistd::geteuid().as_raw();
+    let metadata = std::fs::metadata(path)
+        .with_context(|| format!("failed to inspect {label} directory {}", path.display()))?;
+    validate_directory(path, &metadata, effective_uid, label, false)?;
+    let canonical = std::fs::canonicalize(path).with_context(|| {
+        format!(
+            "failed to canonicalize {label} directory {}",
+            path.display()
+        )
+    })?;
+    for ancestor in canonical.ancestors().skip(1) {
+        let metadata = std::fs::metadata(ancestor).with_context(|| {
+            format!(
+                "failed to inspect ancestor {label} directory {}",
+                ancestor.display()
+            )
+        })?;
+        validate_directory(ancestor, &metadata, effective_uid, label, true)?;
+    }
+    Ok(())
+}
+#[cfg(not(unix))]
+fn ensure_secure_directory_owner(_path: &Path, _label: &str) -> Result<()> {
+    Ok(())
+}
+fn is_symlink(path: &Path) -> Result<bool> {
+    match std::fs::symlink_metadata(path) {
+        Ok(metadata) => Ok(metadata.file_type().is_symlink()),
+        Err(err) if err.kind() == std::io::ErrorKind::NotFound => Ok(false),
+        Err(err) => {
+            Err(err).with_context(|| format!("failed to inspect metadata for {}", path.display()))
+        }
+    }
+}
+fn lock_path(path: &Path) -> PathBuf {
+    let mut lock = path.as_os_str().to_os_string();
+    lock.push(".lock");
+    PathBuf::from(lock)
+}
+#[cfg(test)]
+mod tests {
+    use super::{
+        ensure_file_parent, resolve_allowed_peer_euids_with_sudo_uid, resolve_vault_password,
+        validate_password, Cli,
+    };
+    use clap::Parser;
+    use std::collections::BTreeSet;
+    use std::path::Path;
+    use std::time::{SystemTime, UNIX_EPOCH};
+    #[test]
+    fn validate_password_rejects_oversized_non_stdin_secret() {
+        let err = validate_password("a".repeat((16 * 1024) + 1), "argument or environment")
+            .expect_err("must fail");
+        assert!(err.to_string().contains("must not exceed"));
+    }
+    #[test]
+    fn cli_rejects_inline_vault_password_argument() {
+        let err = Cli::try_parse_from([
+            "wlfi-agent-daemon",
+            "--vault-password",
+            "vault-secret",
+            "--non-interactive",
+        ])
+        .expect_err("must reject");
+        assert!(err.to_string().contains("--vault-password"));
+    }
+    #[test]
+    fn resolve_vault_password_requires_stdin_in_non_interactive_mode() {
+        let err = resolve_vault_password(false, true).expect_err("must fail");
+        assert!(err.to_string().contains("use --vault-password-stdin"));
+    }
+    #[cfg(unix)]
+    #[test]
+    fn ensure_file_parent_accepts_current_user_owned_directory() {
+        let unique = SystemTime::now()
+            .duration_since(UNIX_EPOCH)
+            .expect("time")
+            .as_nanos();
+        let parent = std::env::temp_dir().join(format!(
+            "wlfi-daemon-parent-{}-{}",
+            std::process::id(),
+            unique
+        ));
+        std::fs::create_dir_all(&parent).expect("create parent");
+        let path = parent.join("daemon-state.enc");
+        ensure_file_parent(&path, "state").expect("current-user-owned directory should pass");
+        std::fs::remove_dir_all(&parent).expect("cleanup");
+    }
+    #[cfg(unix)]
+    #[test]
+    fn ensure_file_parent_rejects_group_writable_ancestor_directory() {
+        use std::os::unix::fs::PermissionsExt;
+        let unique = SystemTime::now()
+            .duration_since(UNIX_EPOCH)
+            .expect("time")
+            .as_nanos();
+        let root = std::env::temp_dir().join(format!(
+            "wlfi-daemon-parent-ancestor-{}-{}",
+            std::process::id(),
+            unique
+        ));
+        let shared = root.join("shared");
+        let nested = shared.join("nested");
+        std::fs::create_dir_all(&nested).expect("create nested directory");
+        std::fs::set_permissions(&shared, std::fs::Permissions::from_mode(0o777))
+            .expect("set insecure ancestor permissions");
+        std::fs::set_permissions(&nested, std::fs::Permissions::from_mode(0o700))
+            .expect("set nested permissions");
+        let path = nested.join("daemon-state.enc");
+        let err = ensure_file_parent(&path, "state").expect_err("must reject");
+        assert!(err
+            .to_string()
+            .contains("must not be writable by group/other"));
+        std::fs::set_permissions(&shared, std::fs::Permissions::from_mode(0o700))
+            .expect("restore cleanup permissions");
+        std::fs::remove_dir_all(&root).expect("cleanup");
+    }
+    #[test]
+    fn resolve_allowed_peer_euids_keeps_root_only_when_allowlists_are_omitted() {
+        let resolved = resolve_allowed_peer_euids_with_sudo_uid(&[], &[], &[], Some(501))
+            .expect("allowed peer euids");
+        assert_eq!(resolved.admin, BTreeSet::from([0]));
+        assert_eq!(resolved.agent, BTreeSet::from([0]));
+    }
+    #[test]
+    fn resolve_allowed_peer_euids_supports_split_admin_and_agent_allowlists() {
+        let resolved = resolve_allowed_peer_euids_with_sudo_uid(&[11], &[22], &[33], Some(501))
+            .expect("allowed peer euids");
+        assert_eq!(resolved.admin, BTreeSet::from([0, 11, 33]));
+        assert_eq!(resolved.agent, BTreeSet::from([0, 22, 33]));
+    }
+    #[cfg(unix)]
+    #[test]
+    fn assert_allowed_directory_owner_rejects_non_root_owner_for_root_runtime() {
+        let err = super::assert_allowed_directory_owner(Path::new("/tmp/wlfi"), 501, 0, "state")
+            .expect_err("root runtime must reject non-root owner");
+        assert!(err.to_string().contains("must be owned by root"));
+    }
+    #[cfg(unix)]
+    #[test]
+    fn assert_allowed_directory_owner_allows_root_owner_for_root_runtime() {
+        super::assert_allowed_directory_owner(Path::new("/tmp/wlfi"), 0, 0, "state")
+            .expect("root runtime should allow root-owned directories");
+    }
+    #[cfg(unix)]
+    #[test]
+    fn assert_allowed_directory_owner_allows_current_user_for_non_root_runtime() {
+        super::assert_allowed_directory_owner(Path::new("/tmp/wlfi"), 501, 501, "state")
+            .expect("non-root runtime should allow current-user-owned directories");
+    }
+    #[cfg(unix)]
+    #[test]
+    fn assert_allowed_directory_owner_rejects_other_user_for_non_root_runtime() {
+        let err = super::assert_allowed_directory_owner(Path::new("/tmp/wlfi"), 502, 501, "state")
+            .expect_err("non-root runtime must reject another user's directory");
+        assert!(err
+            .to_string()
+            .contains("must be owned by current user or root"));
+    }
+}