npm - @wlfi-agent/cli - Versions diffs - 1.4.13 → 1.4.15 - Mend

@wlfi-agent/cli 1.4.13 → 1.4.15

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (289) hide show

package/Cargo.lock +3968 -0
package/Cargo.toml +50 -0
package/README.md +426 -6
package/crates/vault-cli-admin/Cargo.toml +26 -0
package/crates/vault-cli-admin/src/io_utils.rs +500 -0
package/crates/vault-cli-admin/src/main.rs +3990 -0
package/crates/vault-cli-admin/src/shared_config.rs +624 -0
package/crates/vault-cli-admin/src/tui/amounts.rs +180 -0
package/crates/vault-cli-admin/src/tui/token_rpc.rs +250 -0
package/crates/vault-cli-admin/src/tui/utils.rs +82 -0
package/crates/vault-cli-admin/src/tui.rs +3410 -0
package/crates/vault-cli-agent/Cargo.toml +24 -0
package/crates/vault-cli-agent/src/io_utils.rs +576 -0
package/crates/vault-cli-agent/src/main.rs +833 -0
package/crates/vault-cli-daemon/Cargo.toml +28 -0
package/crates/vault-cli-daemon/src/bin/wlfi-agent-system-keychain.rs +216 -0
package/crates/vault-cli-daemon/src/main.rs +644 -0
package/crates/vault-cli-daemon/src/relay_sync.rs +894 -0
package/crates/vault-cli-daemon/tests/system_keychain_helper_acl.rs +167 -0
package/crates/vault-daemon/Cargo.toml +32 -0
package/crates/vault-daemon/src/daemon_parts/api_impl_and_utils.rs +1041 -0
package/crates/vault-daemon/src/daemon_parts/core_helpers.rs +1256 -0
package/crates/vault-daemon/src/daemon_parts/types_api_rpc.rs +622 -0
package/crates/vault-daemon/src/lib.rs +54 -0
package/crates/vault-daemon/src/persistence.rs +441 -0
package/crates/vault-daemon/src/tests.rs +237 -0
package/crates/vault-daemon/src/tests_parts/part1.rs +1224 -0
package/crates/vault-daemon/src/tests_parts/part2.rs +1021 -0
package/crates/vault-daemon/src/tests_parts/part3.rs +835 -0
package/crates/vault-daemon/src/tests_parts/part4.rs +604 -0
package/crates/vault-domain/Cargo.toml +20 -0
package/crates/vault-domain/src/action.rs +849 -0
package/crates/vault-domain/src/address.rs +51 -0
package/crates/vault-domain/src/approval.rs +90 -0
package/crates/vault-domain/src/constants.rs +4 -0
package/crates/vault-domain/src/error.rs +54 -0
package/crates/vault-domain/src/keys.rs +71 -0
package/crates/vault-domain/src/lib.rs +42 -0
package/crates/vault-domain/src/nonce.rs +102 -0
package/crates/vault-domain/src/policy.rs +172 -0
package/crates/vault-domain/src/request.rs +53 -0
package/crates/vault-domain/src/scope.rs +24 -0
package/crates/vault-domain/src/session.rs +50 -0
package/crates/vault-domain/src/signature.rs +34 -0
package/crates/vault-domain/src/tests.rs +651 -0
package/crates/vault-domain/src/u128_as_decimal_string.rs +44 -0
package/crates/vault-policy/Cargo.toml +17 -0
package/crates/vault-policy/src/engine.rs +301 -0
package/crates/vault-policy/src/error.rs +81 -0
package/crates/vault-policy/src/lib.rs +17 -0
package/crates/vault-policy/src/report.rs +34 -0
package/crates/vault-policy/src/tests.rs +891 -0
package/crates/vault-policy/src/tests_explain.rs +78 -0
package/crates/vault-sdk-agent/Cargo.toml +21 -0
package/crates/vault-sdk-agent/src/lib.rs +711 -0
package/crates/vault-signer/Cargo.toml +25 -0
package/crates/vault-signer/src/lib.rs +731 -0
package/crates/vault-signer/tests/secure_enclave_acl.rs +54 -0
package/crates/vault-transport-unix/Cargo.toml +24 -0
package/crates/vault-transport-unix/src/lib.rs +1640 -0
package/crates/vault-transport-xpc/Cargo.toml +25 -0
package/crates/vault-transport-xpc/src/client_codec_api.rs +635 -0
package/crates/vault-transport-xpc/src/lib.rs +680 -0
package/crates/vault-transport-xpc/src/tests.rs +818 -0
package/crates/vault-transport-xpc/tests/e2e_flow.rs +773 -0
package/dist/cli.cjs +35088 -0
package/dist/cli.cjs.map +1 -0
package/package.json +45 -41
package/packages/cache/.turbo/turbo-build.log +52 -0
package/packages/cache/dist/chunk-2QFWMUXT.cjs +43 -0
package/packages/cache/dist/chunk-2QFWMUXT.cjs.map +1 -0
package/packages/cache/dist/chunk-4U63TZTQ.js +43 -0
package/packages/cache/dist/chunk-4U63TZTQ.js.map +1 -0
package/packages/cache/dist/chunk-ALQ6H7KG.cjs +404 -0
package/packages/cache/dist/chunk-ALQ6H7KG.cjs.map +1 -0
package/packages/cache/dist/chunk-FGJEEF5N.js +404 -0
package/packages/cache/dist/chunk-FGJEEF5N.js.map +1 -0
package/packages/cache/dist/chunk-UYNEHZHB.cjs +45 -0
package/packages/cache/dist/chunk-UYNEHZHB.cjs.map +1 -0
package/packages/cache/dist/chunk-VXVMPG3W.js +45 -0
package/packages/cache/dist/chunk-VXVMPG3W.js.map +1 -0
package/packages/cache/dist/client/index.cjs +11 -0
package/packages/cache/dist/client/index.cjs.map +1 -0
package/packages/cache/dist/client/index.d.cts +15 -0
package/packages/cache/dist/client/index.d.ts +15 -0
package/packages/cache/dist/client/index.js +11 -0
package/packages/cache/dist/client/index.js.map +1 -0
package/packages/cache/dist/errors/index.cjs +11 -0
package/packages/cache/dist/errors/index.cjs.map +1 -0
package/packages/cache/dist/errors/index.d.cts +26 -0
package/packages/cache/dist/errors/index.d.ts +26 -0
package/packages/cache/dist/errors/index.js +11 -0
package/packages/cache/dist/errors/index.js.map +1 -0
package/packages/cache/dist/index.cjs +29 -0
package/packages/cache/dist/index.cjs.map +1 -0
package/packages/cache/dist/index.d.cts +4 -0
package/packages/cache/dist/index.d.ts +4 -0
package/packages/cache/dist/index.js +29 -0
package/packages/cache/dist/index.js.map +1 -0
package/packages/cache/dist/service/index.cjs +15 -0
package/packages/cache/dist/service/index.cjs.map +1 -0
package/packages/cache/dist/service/index.d.cts +184 -0
package/packages/cache/dist/service/index.d.ts +184 -0
package/packages/cache/dist/service/index.js +15 -0
package/packages/cache/dist/service/index.js.map +1 -0
package/packages/cache/node_modules/.bin/jiti +17 -0
package/packages/cache/node_modules/.bin/tsc +17 -0
package/packages/cache/node_modules/.bin/tsserver +17 -0
package/packages/cache/node_modules/.bin/tsup +17 -0
package/packages/cache/node_modules/.bin/tsup-node +17 -0
package/packages/cache/node_modules/.bin/tsx +17 -0
package/packages/cache/node_modules/.bin/vitest +17 -0
package/packages/cache/package.json +48 -0
package/packages/cache/src/client/index.ts +56 -0
package/packages/cache/src/errors/index.ts +53 -0
package/packages/cache/src/index.ts +3 -0
package/packages/cache/src/service/index.test.ts +263 -0
package/packages/cache/src/service/index.ts +678 -0
package/packages/cache/tsconfig.json +13 -0
package/packages/cache/tsup.config.ts +13 -0
package/packages/cache/vitest.config.ts +16 -0
package/packages/config/.turbo/turbo-build.log +18 -0
package/packages/config/dist/index.cjs +1037 -0
package/packages/config/dist/index.cjs.map +1 -0
package/packages/config/dist/index.d.ts +131 -0
package/packages/config/node_modules/.bin/jiti +17 -0
package/packages/config/node_modules/.bin/tsc +17 -0
package/packages/config/node_modules/.bin/tsserver +17 -0
package/packages/config/node_modules/.bin/tsup +17 -0
package/packages/config/node_modules/.bin/tsup-node +17 -0
package/packages/config/node_modules/.bin/tsx +17 -0
package/packages/config/package.json +21 -0
package/packages/config/src/index.js +1 -0
package/packages/config/src/index.ts +1282 -0
package/packages/config/tsconfig.json +4 -0
package/packages/rpc/.turbo/turbo-build.log +32 -0
package/packages/rpc/dist/_esm-BCLXDO2R.cjs +3660 -0
package/packages/rpc/dist/_esm-BCLXDO2R.cjs.map +1 -0
package/packages/rpc/dist/ccip-OWJLAW55.cjs +16 -0
package/packages/rpc/dist/ccip-OWJLAW55.cjs.map +1 -0
package/packages/rpc/dist/chunk-APQIFZ3B.cjs +6247 -0
package/packages/rpc/dist/chunk-APQIFZ3B.cjs.map +1 -0
package/packages/rpc/dist/chunk-CDO2GWRD.cjs +410 -0
package/packages/rpc/dist/chunk-CDO2GWRD.cjs.map +1 -0
package/packages/rpc/dist/chunk-QGTNTFJ7.cjs +2249 -0
package/packages/rpc/dist/chunk-QGTNTFJ7.cjs.map +1 -0
package/packages/rpc/dist/chunk-TZDTAHWR.cjs +44 -0
package/packages/rpc/dist/chunk-TZDTAHWR.cjs.map +1 -0
package/packages/rpc/dist/index.cjs +7342 -0
package/packages/rpc/dist/index.cjs.map +1 -0
package/packages/rpc/dist/index.d.ts +3857 -0
package/packages/rpc/dist/secp256k1-WCNM675D.cjs +18 -0
package/packages/rpc/dist/secp256k1-WCNM675D.cjs.map +1 -0
package/packages/rpc/node_modules/.bin/jiti +17 -0
package/packages/rpc/node_modules/.bin/tsc +17 -0
package/packages/rpc/node_modules/.bin/tsserver +17 -0
package/packages/rpc/node_modules/.bin/tsup +17 -0
package/packages/rpc/node_modules/.bin/tsup-node +17 -0
package/packages/rpc/node_modules/.bin/tsx +17 -0
package/packages/rpc/package.json +25 -0
package/packages/rpc/src/index.ts +206 -0
package/packages/rpc/tsconfig.json +4 -0
package/packages/typescript/base.json +36 -0
package/packages/typescript/nextjs.json +17 -0
package/packages/typescript/package.json +10 -0
package/packages/ui/.turbo/turbo-build.log +44 -0
package/packages/ui/dist/chunk-MOAFBKSA.js +11 -0
package/packages/ui/dist/chunk-MOAFBKSA.js.map +1 -0
package/packages/ui/dist/components/badge.d.ts +12 -0
package/packages/ui/dist/components/badge.js +31 -0
package/packages/ui/dist/components/badge.js.map +1 -0
package/packages/ui/dist/components/button.d.ts +13 -0
package/packages/ui/dist/components/button.js +40 -0
package/packages/ui/dist/components/button.js.map +1 -0
package/packages/ui/dist/components/card.d.ts +10 -0
package/packages/ui/dist/components/card.js +39 -0
package/packages/ui/dist/components/card.js.map +1 -0
package/packages/ui/dist/components/input.d.ts +5 -0
package/packages/ui/dist/components/input.js +28 -0
package/packages/ui/dist/components/input.js.map +1 -0
package/packages/ui/dist/components/label.d.ts +5 -0
package/packages/ui/dist/components/label.js +13 -0
package/packages/ui/dist/components/label.js.map +1 -0
package/packages/ui/dist/components/separator.d.ts +5 -0
package/packages/ui/dist/components/separator.js +13 -0
package/packages/ui/dist/components/separator.js.map +1 -0
package/packages/ui/dist/components/textarea.d.ts +5 -0
package/packages/ui/dist/components/textarea.js +27 -0
package/packages/ui/dist/components/textarea.js.map +1 -0
package/packages/ui/dist/tailwind.d.ts +56 -0
package/packages/ui/dist/tailwind.js +60 -0
package/packages/ui/dist/tailwind.js.map +1 -0
package/packages/ui/dist/utils/cn.d.ts +5 -0
package/packages/ui/dist/utils/cn.js +7 -0
package/packages/ui/dist/utils/cn.js.map +1 -0
package/packages/ui/node_modules/.bin/jiti +17 -0
package/packages/ui/node_modules/.bin/tsc +17 -0
package/packages/ui/node_modules/.bin/tsserver +17 -0
package/packages/ui/node_modules/.bin/tsup +17 -0
package/packages/ui/node_modules/.bin/tsup-node +17 -0
package/packages/ui/node_modules/.bin/tsx +17 -0
package/packages/ui/package.json +69 -0
package/packages/ui/src/components/badge.tsx +27 -0
package/packages/ui/src/components/button.tsx +40 -0
package/packages/ui/src/components/card.tsx +31 -0
package/packages/ui/src/components/input.tsx +21 -0
package/packages/ui/src/components/label.tsx +6 -0
package/packages/ui/src/components/separator.tsx +6 -0
package/packages/ui/src/components/textarea.tsx +20 -0
package/packages/ui/src/globals.css +70 -0
package/packages/ui/src/tailwind.ts +56 -0
package/packages/ui/src/utils/cn.ts +6 -0
package/packages/ui/tsconfig.json +20 -0
package/packages/ui/tsup.config.ts +20 -0
package/pnpm-workspace.yaml +4 -0
package/scripts/install-rust-binaries.mjs +84 -0
package/scripts/launchd/install-user-daemon.sh +358 -0
package/scripts/launchd/run-vault-daemon.sh +5 -0
package/scripts/launchd/run-wlfi-agent-daemon.sh +73 -0
package/scripts/launchd/uninstall-user-daemon.sh +103 -0
package/src/cli.ts +2121 -0
package/src/lib/admin-guard.js +1 -0
package/src/lib/admin-guard.ts +185 -0
package/src/lib/admin-passthrough.ts +33 -0
package/src/lib/admin-reset.ts +751 -0
package/src/lib/admin-setup.ts +1612 -0
package/src/lib/agent-auth-clear.js +1 -0
package/src/lib/agent-auth-clear.ts +58 -0
package/src/lib/agent-auth-forwarding.js +1 -0
package/src/lib/agent-auth-forwarding.ts +149 -0
package/src/lib/agent-auth-migrate.js +1 -0
package/src/lib/agent-auth-migrate.ts +150 -0
package/src/lib/agent-auth-revoke.ts +103 -0
package/src/lib/agent-auth-rotate.ts +107 -0
package/src/lib/agent-auth-token.js +1 -0
package/src/lib/agent-auth-token.ts +25 -0
package/src/lib/agent-auth.ts +89 -0
package/src/lib/asset-broadcast.js +1 -0
package/src/lib/asset-broadcast.ts +285 -0
package/src/lib/bootstrap-artifacts.js +1 -0
package/src/lib/bootstrap-artifacts.ts +205 -0
package/src/lib/bootstrap-credentials.js +1 -0
package/src/lib/bootstrap-credentials.ts +832 -0
package/src/lib/config-amounts.js +1 -0
package/src/lib/config-amounts.ts +189 -0
package/src/lib/config-mutation.ts +27 -0
package/src/lib/fs-trust.js +1 -0
package/src/lib/fs-trust.ts +537 -0
package/src/lib/keychain.js +1 -0
package/src/lib/keychain.ts +225 -0
package/src/lib/local-admin-access.ts +106 -0
package/src/lib/network-selection.js +1 -0
package/src/lib/network-selection.ts +71 -0
package/src/lib/passthrough-security.js +1 -0
package/src/lib/passthrough-security.ts +114 -0
package/src/lib/rpc-guard.js +1 -0
package/src/lib/rpc-guard.ts +7 -0
package/src/lib/rust-spawn-options.js +1 -0
package/src/lib/rust-spawn-options.ts +98 -0
package/src/lib/rust.js +1 -0
package/src/lib/rust.ts +143 -0
package/src/lib/signed-tx.js +1 -0
package/src/lib/signed-tx.ts +116 -0
package/src/lib/status-repair-cli.ts +116 -0
package/src/lib/sudo.js +1 -0
package/src/lib/sudo.ts +172 -0
package/src/lib/vault-password-forwarding.js +1 -0
package/src/lib/vault-password-forwarding.ts +155 -0
package/src/lib/wallet-profile.js +1 -0
package/src/lib/wallet-profile.ts +332 -0
package/src/lib/wallet-repair.js +1 -0
package/src/lib/wallet-repair.ts +304 -0
package/src/lib/wallet-setup.js +1 -0
package/src/lib/wallet-setup.ts +1466 -0
package/src/lib/wallet-status.js +1 -0
package/src/lib/wallet-status.ts +640 -0
package/tsconfig.base.json +17 -0
package/tsconfig.json +10 -0
package/tsup.config.ts +25 -0
package/turbo.json +41 -0
package/LICENSE.md +0 -1
package/dist/wlfa/index.cjs +0 -250
package/dist/wlfa/index.d.cts +0 -1
package/dist/wlfa/index.d.ts +0 -1
package/dist/wlfa/index.js +0 -250
package/dist/wlfc/index.cjs +0 -1839
package/dist/wlfc/index.d.cts +0 -1
package/dist/wlfc/index.d.ts +0 -1
package/dist/wlfc/index.js +0 -1839

package/crates/vault-transport-xpc/tests/e2e_flow.rs ADDED Viewed

@@ -0,0 +1,773 @@
+#![cfg(target_os = "macos")]
+use std::sync::Arc;
+use std::time::Duration;
+use serde_json::to_vec;
+use time::OffsetDateTime;
+use vault_daemon::{DaemonConfig, DaemonError, InMemoryDaemon, KeyManagerDaemonApi};
+use vault_domain::{
+    AdminSession, AgentAction, BroadcastTx, EntityScope, EvmAddress, NonceReservationRequest,
+    PolicyAttachment, PolicyType, SignRequest, SpendingPolicy,
+};
+use vault_signer::{KeyCreateRequest, SoftwareSignerBackend};
+use vault_transport_xpc::{XpcDaemonClient, XpcDaemonServer};
+#[tokio::test(flavor = "multi_thread", worker_threads = 2)]
+async fn e2e_policy_enforced_over_xpc() {
+    #[cfg(not(debug_assertions))]
+    if unsafe { libc::geteuid() } != 0 {
+        return;
+    }
+    let daemon = Arc::new(
+        InMemoryDaemon::new(
+            "vault-password",
+            SoftwareSignerBackend::default(),
+            DaemonConfig::default(),
+        )
+        .expect("daemon"),
+    );
+    #[cfg(debug_assertions)]
+    let server = XpcDaemonServer::start_inmemory_with_allowed_euid(
+        daemon,
+        tokio::runtime::Handle::current(),
+        unsafe { libc::geteuid() },
+    )
+    .expect("server");
+    #[cfg(not(debug_assertions))]
+    let server =
+        XpcDaemonServer::start_inmemory(daemon, tokio::runtime::Handle::current()).expect("server");
+    let client =
+        XpcDaemonClient::connect(&server.endpoint(), Duration::from_secs(5)).expect("client");
+    let lease = client.issue_lease("vault-password").await.expect("lease");
+    let admin = AdminSession {
+        vault_password: "vault-password".to_string(),
+        lease,
+    };
+    let policy = SpendingPolicy::new(
+        0,
+        PolicyType::PerTxMaxSpending,
+        100,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("policy");
+    client.add_policy(&admin, policy).await.expect("add_policy");
+    let vault_key = client
+        .create_vault_key(&admin, KeyCreateRequest::Generate)
+        .await
+        .expect("create_vault_key");
+    let agent_credentials = client
+        .create_agent_key(&admin, vault_key.id, PolicyAttachment::AllPolicies)
+        .await
+        .expect("create_agent_key");
+    let token: EvmAddress = "0x1000000000000000000000000000000000000000"
+        .parse()
+        .expect("token");
+    let to: EvmAddress = "0x2000000000000000000000000000000000000000"
+        .parse()
+        .expect("recipient");
+    let allow_request = SignRequest {
+        request_id: uuid::Uuid::new_v4(),
+        agent_key_id: agent_credentials.agent_key.id,
+        agent_auth_token: agent_credentials.auth_token.clone(),
+        payload: to_vec(&AgentAction::Transfer {
+            chain_id: 1,
+            token: token.clone(),
+            to: to.clone(),
+            amount_wei: 100,
+        })
+        .expect("payload"),
+        action: AgentAction::Transfer {
+            chain_id: 1,
+            token: token.clone(),
+            to: to.clone(),
+            amount_wei: 100,
+        },
+        requested_at: OffsetDateTime::now_utc(),
+        expires_at: OffsetDateTime::now_utc() + time::Duration::minutes(2),
+    };
+    client
+        .reserve_nonce(NonceReservationRequest {
+            request_id: uuid::Uuid::new_v4(),
+            agent_key_id: agent_credentials.agent_key.id,
+            agent_auth_token: agent_credentials.auth_token.clone(),
+            chain_id: 1,
+            min_nonce: 0,
+            requested_at: OffsetDateTime::now_utc(),
+            expires_at: OffsetDateTime::now_utc() + time::Duration::minutes(2),
+        })
+        .await
+        .expect("nonce reservation must pass");
+    let signature = client
+        .sign_for_agent(allow_request)
+        .await
+        .expect("signature should pass");
+    assert!(!signature.bytes.is_empty());
+    let deny_request = SignRequest {
+        request_id: uuid::Uuid::new_v4(),
+        agent_key_id: agent_credentials.agent_key.id,
+        agent_auth_token: agent_credentials.auth_token.clone(),
+        payload: to_vec(&AgentAction::Transfer {
+            chain_id: 1,
+            token: token.clone(),
+            to: to.clone(),
+            amount_wei: 101,
+        })
+        .expect("payload"),
+        action: AgentAction::Transfer {
+            chain_id: 1,
+            token,
+            to,
+            amount_wei: 101,
+        },
+        requested_at: OffsetDateTime::now_utc(),
+        expires_at: OffsetDateTime::now_utc() + time::Duration::minutes(2),
+    };
+    let err = client
+        .sign_for_agent(deny_request)
+        .await
+        .expect_err("request must be denied by policy");
+    assert!(matches!(err, DaemonError::Policy(_)));
+    let bad_auth_request = SignRequest {
+        request_id: uuid::Uuid::new_v4(),
+        agent_key_id: agent_credentials.agent_key.id,
+        agent_auth_token: "not-the-issued-token".to_string(),
+        payload: to_vec(&AgentAction::Transfer {
+            chain_id: 1,
+            token: "0x1000000000000000000000000000000000000000"
+                .parse()
+                .expect("token"),
+            to: "0x2000000000000000000000000000000000000000"
+                .parse()
+                .expect("recipient"),
+            amount_wei: 1,
+        })
+        .expect("payload"),
+        action: AgentAction::Transfer {
+            chain_id: 1,
+            token: "0x1000000000000000000000000000000000000000"
+                .parse()
+                .expect("token"),
+            to: "0x2000000000000000000000000000000000000000"
+                .parse()
+                .expect("recipient"),
+            amount_wei: 1,
+        },
+        requested_at: OffsetDateTime::now_utc(),
+        expires_at: OffsetDateTime::now_utc() + time::Duration::minutes(2),
+    };
+    let err = client
+        .sign_for_agent(bad_auth_request)
+        .await
+        .expect_err("request with bad token must fail");
+    assert!(matches!(err, DaemonError::AgentAuthenticationFailed));
+    let payload_mismatch_request = SignRequest {
+        request_id: uuid::Uuid::new_v4(),
+        agent_key_id: agent_credentials.agent_key.id,
+        agent_auth_token: agent_credentials.auth_token.clone(),
+        payload: to_vec(&AgentAction::Transfer {
+            chain_id: 1,
+            token: "0x1000000000000000000000000000000000000000"
+                .parse()
+                .expect("token"),
+            to: "0x2000000000000000000000000000000000000000"
+                .parse()
+                .expect("recipient"),
+            amount_wei: 99,
+        })
+        .expect("payload"),
+        action: AgentAction::Transfer {
+            chain_id: 1,
+            token: "0x1000000000000000000000000000000000000000"
+                .parse()
+                .expect("token"),
+            to: "0x2000000000000000000000000000000000000000"
+                .parse()
+                .expect("recipient"),
+            amount_wei: 1,
+        },
+        requested_at: OffsetDateTime::now_utc(),
+        expires_at: OffsetDateTime::now_utc() + time::Duration::minutes(2),
+    };
+    let err = client
+        .sign_for_agent(payload_mismatch_request)
+        .await
+        .expect_err("payload/action mismatch must fail");
+    assert!(matches!(err, DaemonError::PayloadActionMismatch));
+    let malformed_payload_request = SignRequest {
+        request_id: uuid::Uuid::new_v4(),
+        agent_key_id: agent_credentials.agent_key.id,
+        agent_auth_token: agent_credentials.auth_token,
+        payload: b"not-json".to_vec(),
+        action: AgentAction::Transfer {
+            chain_id: 1,
+            token: "0x1000000000000000000000000000000000000000"
+                .parse()
+                .expect("token"),
+            to: "0x2000000000000000000000000000000000000000"
+                .parse()
+                .expect("recipient"),
+            amount_wei: 1,
+        },
+        requested_at: OffsetDateTime::now_utc(),
+        expires_at: OffsetDateTime::now_utc() + time::Duration::minutes(2),
+    };
+    let err = client
+        .sign_for_agent(malformed_payload_request)
+        .await
+        .expect_err("malformed payload must fail");
+    assert!(matches!(err, DaemonError::PayloadActionMismatch));
+}
+#[tokio::test(flavor = "multi_thread", worker_threads = 2)]
+async fn e2e_broadcast_gas_policy_enforced_over_xpc() {
+    #[cfg(not(debug_assertions))]
+    if unsafe { libc::geteuid() } != 0 {
+        return;
+    }
+    let daemon = Arc::new(
+        InMemoryDaemon::new(
+            "vault-password",
+            SoftwareSignerBackend::default(),
+            DaemonConfig::default(),
+        )
+        .expect("daemon"),
+    );
+    #[cfg(debug_assertions)]
+    let server = XpcDaemonServer::start_inmemory_with_allowed_euid(
+        daemon,
+        tokio::runtime::Handle::current(),
+        unsafe { libc::geteuid() },
+    )
+    .expect("server");
+    #[cfg(not(debug_assertions))]
+    let server =
+        XpcDaemonServer::start_inmemory(daemon, tokio::runtime::Handle::current()).expect("server");
+    let client =
+        XpcDaemonClient::connect(&server.endpoint(), Duration::from_secs(5)).expect("client");
+    let lease = client.issue_lease("vault-password").await.expect("lease");
+    let admin = AdminSession {
+        vault_password: "vault-password".to_string(),
+        lease,
+    };
+    client
+        .add_policy(
+            &admin,
+            SpendingPolicy::new(
+                0,
+                PolicyType::PerTxMaxSpending,
+                1_000_000_000_000_000_000,
+                EntityScope::All,
+                EntityScope::All,
+                EntityScope::Set(std::collections::BTreeSet::from([1_u64])),
+            )
+            .expect("per-tx policy"),
+        )
+        .await
+        .expect("add per-tx policy");
+    client
+        .add_policy(
+            &admin,
+            SpendingPolicy::new(
+                1,
+                PolicyType::PerChainMaxGasSpend,
+                1_000_000_000_000_000,
+                EntityScope::All,
+                EntityScope::All,
+                EntityScope::Set(std::collections::BTreeSet::from([1_u64])),
+            )
+            .expect("gas policy"),
+        )
+        .await
+        .expect("add gas policy");
+    let vault_key = client
+        .create_vault_key(&admin, KeyCreateRequest::Generate)
+        .await
+        .expect("create_vault_key");
+    let agent_credentials = client
+        .create_agent_key(&admin, vault_key.id, PolicyAttachment::AllPolicies)
+        .await
+        .expect("create_agent_key");
+    let allow_action = AgentAction::BroadcastTx {
+        tx: BroadcastTx {
+            chain_id: 1,
+            nonce: 0,
+            to: "0x3000000000000000000000000000000000000000"
+                .parse()
+                .expect("to"),
+            value_wei: 0,
+            data_hex: "0xdeadbeef".to_string(),
+            gas_limit: 200_000,
+            max_fee_per_gas_wei: 1_000_000_000,
+            max_priority_fee_per_gas_wei: 1_000_000_000,
+            tx_type: 0x02,
+            delegation_enabled: false,
+        },
+    };
+    let allow_reservation = client
+        .reserve_nonce(NonceReservationRequest {
+            request_id: uuid::Uuid::new_v4(),
+            agent_key_id: agent_credentials.agent_key.id,
+            agent_auth_token: agent_credentials.auth_token.clone(),
+            chain_id: 1,
+            min_nonce: 0,
+            requested_at: OffsetDateTime::now_utc(),
+            expires_at: OffsetDateTime::now_utc() + time::Duration::minutes(2),
+        })
+        .await
+        .expect("reserve nonce for allow broadcast");
+    assert_eq!(allow_reservation.nonce, 0);
+    let allow_request = SignRequest {
+        request_id: uuid::Uuid::new_v4(),
+        agent_key_id: agent_credentials.agent_key.id,
+        agent_auth_token: agent_credentials.auth_token.clone(),
+        payload: to_vec(&allow_action).expect("payload"),
+        action: allow_action,
+        requested_at: OffsetDateTime::now_utc(),
+        expires_at: OffsetDateTime::now_utc() + time::Duration::minutes(2),
+    };
+    let signature = client
+        .sign_for_agent(allow_request)
+        .await
+        .expect("broadcast request should pass");
+    assert!(!signature.bytes.is_empty());
+    let deny_action = AgentAction::BroadcastTx {
+        tx: BroadcastTx {
+            chain_id: 1,
+            nonce: 1,
+            to: "0x3000000000000000000000000000000000000000"
+                .parse()
+                .expect("to"),
+            value_wei: 0,
+            data_hex: "0xdeadbeef".to_string(),
+            gas_limit: 2_000_000,
+            max_fee_per_gas_wei: 1_000_000_000,
+            max_priority_fee_per_gas_wei: 1_000_000_000,
+            tx_type: 0x02,
+            delegation_enabled: false,
+        },
+    };
+    let deny_reservation = client
+        .reserve_nonce(NonceReservationRequest {
+            request_id: uuid::Uuid::new_v4(),
+            agent_key_id: agent_credentials.agent_key.id,
+            agent_auth_token: agent_credentials.auth_token.clone(),
+            chain_id: 1,
+            min_nonce: 1,
+            requested_at: OffsetDateTime::now_utc(),
+            expires_at: OffsetDateTime::now_utc() + time::Duration::minutes(2),
+        })
+        .await
+        .expect("reserve nonce for deny broadcast");
+    assert_eq!(deny_reservation.nonce, 1);
+    let deny_request = SignRequest {
+        request_id: uuid::Uuid::new_v4(),
+        agent_key_id: agent_credentials.agent_key.id,
+        agent_auth_token: agent_credentials.auth_token.clone(),
+        payload: to_vec(&deny_action).expect("payload"),
+        action: deny_action,
+        requested_at: OffsetDateTime::now_utc(),
+        expires_at: OffsetDateTime::now_utc() + time::Duration::minutes(2),
+    };
+    let err = client
+        .sign_for_agent(deny_request)
+        .await
+        .expect_err("gas policy should reject request");
+    assert!(matches!(err, DaemonError::Policy(_)));
+    client
+        .release_nonce(vault_domain::NonceReleaseRequest {
+            request_id: uuid::Uuid::new_v4(),
+            agent_key_id: agent_credentials.agent_key.id,
+            agent_auth_token: agent_credentials.auth_token,
+            reservation_id: deny_reservation.reservation_id,
+            requested_at: OffsetDateTime::now_utc(),
+            expires_at: OffsetDateTime::now_utc() + time::Duration::minutes(2),
+        })
+        .await
+        .expect("release deny reservation");
+}
+#[tokio::test(flavor = "multi_thread", worker_threads = 2)]
+async fn e2e_tx_metadata_policies_skip_non_broadcast_actions_over_xpc() {
+    #[cfg(not(debug_assertions))]
+    if unsafe { libc::geteuid() } != 0 {
+        return;
+    }
+    let daemon = Arc::new(
+        InMemoryDaemon::new(
+            "vault-password",
+            SoftwareSignerBackend::default(),
+            DaemonConfig::default(),
+        )
+        .expect("daemon"),
+    );
+    #[cfg(debug_assertions)]
+    let server = XpcDaemonServer::start_inmemory_with_allowed_euid(
+        daemon,
+        tokio::runtime::Handle::current(),
+        unsafe { libc::geteuid() },
+    )
+    .expect("server");
+    #[cfg(not(debug_assertions))]
+    let server =
+        XpcDaemonServer::start_inmemory(daemon, tokio::runtime::Handle::current()).expect("server");
+    let client =
+        XpcDaemonClient::connect(&server.endpoint(), Duration::from_secs(5)).expect("client");
+    let lease = client.issue_lease("vault-password").await.expect("lease");
+    let admin = AdminSession {
+        vault_password: "vault-password".to_string(),
+        lease,
+    };
+    client
+        .add_policy(
+            &admin,
+            SpendingPolicy::new(
+                0,
+                PolicyType::PerTxMaxSpending,
+                1_000_000_000_000_000_000,
+                EntityScope::All,
+                EntityScope::All,
+                EntityScope::All,
+            )
+            .expect("per-tx policy"),
+        )
+        .await
+        .expect("add spend policy");
+    client
+        .add_policy(
+            &admin,
+            SpendingPolicy::new(
+                1,
+                PolicyType::PerChainMaxGasSpend,
+                1_000_000_000_000_000,
+                EntityScope::All,
+                EntityScope::All,
+                EntityScope::All,
+            )
+            .expect("gas policy"),
+        )
+        .await
+        .expect("add gas policy");
+    let vault_key = client
+        .create_vault_key(&admin, KeyCreateRequest::Generate)
+        .await
+        .expect("create_vault_key");
+    let agent_credentials = client
+        .create_agent_key(&admin, vault_key.id, PolicyAttachment::AllPolicies)
+        .await
+        .expect("create_agent_key");
+    let action = AgentAction::Transfer {
+        chain_id: 1,
+        token: "0x5000000000000000000000000000000000000000"
+            .parse()
+            .expect("token"),
+        to: "0x6000000000000000000000000000000000000000"
+            .parse()
+            .expect("recipient"),
+        amount_wei: 1,
+    };
+    let request = SignRequest {
+        request_id: uuid::Uuid::new_v4(),
+        agent_key_id: agent_credentials.agent_key.id,
+        agent_auth_token: agent_credentials.auth_token,
+        payload: to_vec(&action).expect("payload"),
+        action,
+        requested_at: OffsetDateTime::now_utc(),
+        expires_at: OffsetDateTime::now_utc() + time::Duration::minutes(2),
+    };
+    client
+        .sign_for_agent(request)
+        .await
+        .expect("non-broadcast action should skip tx metadata policies");
+}
+#[tokio::test(flavor = "multi_thread", worker_threads = 2)]
+async fn e2e_lifecycle_controls_and_policy_evaluation_over_xpc() {
+    #[cfg(not(debug_assertions))]
+    if unsafe { libc::geteuid() } != 0 {
+        return;
+    }
+    let daemon = Arc::new(
+        InMemoryDaemon::new(
+            "vault-password",
+            SoftwareSignerBackend::default(),
+            DaemonConfig::default(),
+        )
+        .expect("daemon"),
+    );
+    #[cfg(debug_assertions)]
+    let server = XpcDaemonServer::start_inmemory_with_allowed_euid(
+        daemon,
+        tokio::runtime::Handle::current(),
+        unsafe { libc::geteuid() },
+    )
+    .expect("server");
+    #[cfg(not(debug_assertions))]
+    let server =
+        XpcDaemonServer::start_inmemory(daemon, tokio::runtime::Handle::current()).expect("server");
+    let client =
+        XpcDaemonClient::connect(&server.endpoint(), Duration::from_secs(5)).expect("client");
+    let lease = client.issue_lease("vault-password").await.expect("lease");
+    let admin = AdminSession {
+        vault_password: "vault-password".to_string(),
+        lease,
+    };
+    client
+        .add_policy(
+            &admin,
+            SpendingPolicy::new(
+                0,
+                PolicyType::PerTxMaxSpending,
+                1_000_000_000_000_000_000,
+                EntityScope::All,
+                EntityScope::All,
+                EntityScope::All,
+            )
+            .expect("per-tx policy"),
+        )
+        .await
+        .expect("add spend policy");
+    client
+        .add_policy(
+            &admin,
+            SpendingPolicy::new(
+                1,
+                PolicyType::DailyMaxTxCount,
+                1,
+                EntityScope::All,
+                EntityScope::All,
+                EntityScope::All,
+            )
+            .expect("tx-count policy"),
+        )
+        .await
+        .expect("add tx-count policy");
+    let vault_key = client
+        .create_vault_key(&admin, KeyCreateRequest::Generate)
+        .await
+        .expect("create_vault_key");
+    let agent_credentials = client
+        .create_agent_key(&admin, vault_key.id, PolicyAttachment::AllPolicies)
+        .await
+        .expect("create_agent_key");
+    let action = AgentAction::Transfer {
+        chain_id: 1,
+        token: "0x5000000000000000000000000000000000000000"
+            .parse()
+            .expect("token"),
+        to: "0x6000000000000000000000000000000000000000"
+            .parse()
+            .expect("recipient"),
+        amount_wei: 1,
+    };
+    let request = SignRequest {
+        request_id: uuid::Uuid::new_v4(),
+        agent_key_id: agent_credentials.agent_key.id,
+        agent_auth_token: agent_credentials.auth_token.clone(),
+        payload: to_vec(&action).expect("payload"),
+        action: action.clone(),
+        requested_at: OffsetDateTime::now_utc(),
+        expires_at: OffsetDateTime::now_utc() + time::Duration::minutes(2),
+    };
+    let evaluation = client
+        .evaluate_for_agent(request.clone())
+        .await
+        .expect("policy evaluation should pass");
+    assert_eq!(evaluation.evaluated_policy_ids.len(), 2);
+    let rotated_token = client
+        .rotate_agent_auth_token(&admin, agent_credentials.agent_key.id)
+        .await
+        .expect("rotate token");
+    assert_ne!(rotated_token, agent_credentials.auth_token);
+    let err = client
+        .sign_for_agent(request.clone())
+        .await
+        .expect_err("old auth token must fail after rotation");
+    assert!(matches!(err, DaemonError::AgentAuthenticationFailed));
+    let rotated_request = SignRequest {
+        request_id: uuid::Uuid::new_v4(),
+        agent_auth_token: rotated_token,
+        ..request
+    };
+    let signature = client
+        .sign_for_agent(rotated_request.clone())
+        .await
+        .expect("rotated token should sign");
+    assert!(!signature.bytes.is_empty());
+    let err = client
+        .evaluate_for_agent(rotated_request.clone())
+        .await
+        .expect_err("daily tx count policy should deny second tx after a signed spend");
+    assert!(matches!(err, DaemonError::Policy(_)));
+    client
+        .revoke_agent_key(&admin, agent_credentials.agent_key.id)
+        .await
+        .expect("revoke key");
+    let err = client
+        .sign_for_agent(rotated_request)
+        .await
+        .expect_err("revoked key must not sign");
+    assert!(matches!(err, DaemonError::AgentAuthenticationFailed));
+}
+#[tokio::test(flavor = "multi_thread", worker_threads = 2)]
+async fn e2e_disable_policy_over_xpc() {
+    #[cfg(not(debug_assertions))]
+    if unsafe { libc::geteuid() } != 0 {
+        return;
+    }
+    let daemon = Arc::new(
+        InMemoryDaemon::new(
+            "vault-password",
+            SoftwareSignerBackend::default(),
+            DaemonConfig::default(),
+        )
+        .expect("daemon"),
+    );
+    #[cfg(debug_assertions)]
+    let server = XpcDaemonServer::start_inmemory_with_allowed_euid(
+        daemon,
+        tokio::runtime::Handle::current(),
+        unsafe { libc::geteuid() },
+    )
+    .expect("server");
+    #[cfg(not(debug_assertions))]
+    let server =
+        XpcDaemonServer::start_inmemory(daemon, tokio::runtime::Handle::current()).expect("server");
+    let client =
+        XpcDaemonClient::connect(&server.endpoint(), Duration::from_secs(5)).expect("client");
+    let lease = client.issue_lease("vault-password").await.expect("lease");
+    let admin = AdminSession {
+        vault_password: "vault-password".to_string(),
+        lease,
+    };
+    let strict_policy = SpendingPolicy::new(
+        0,
+        PolicyType::PerTxMaxSpending,
+        100,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("strict policy");
+    client
+        .add_policy(&admin, strict_policy.clone())
+        .await
+        .expect("add strict policy");
+    client
+        .add_policy(
+            &admin,
+            SpendingPolicy::new(
+                1,
+                PolicyType::PerTxMaxSpending,
+                1_000,
+                EntityScope::All,
+                EntityScope::All,
+                EntityScope::All,
+            )
+            .expect("permissive policy"),
+        )
+        .await
+        .expect("add permissive policy");
+    let vault_key = client
+        .create_vault_key(&admin, KeyCreateRequest::Generate)
+        .await
+        .expect("create_vault_key");
+    let agent_credentials = client
+        .create_agent_key(&admin, vault_key.id, PolicyAttachment::AllPolicies)
+        .await
+        .expect("create_agent_key");
+    let action = AgentAction::Transfer {
+        chain_id: 1,
+        token: "0x7000000000000000000000000000000000000000"
+            .parse()
+            .expect("token"),
+        to: "0x8000000000000000000000000000000000000000"
+            .parse()
+            .expect("recipient"),
+        amount_wei: 500,
+    };
+    let request = SignRequest {
+        request_id: uuid::Uuid::new_v4(),
+        agent_key_id: agent_credentials.agent_key.id,
+        agent_auth_token: agent_credentials.auth_token,
+        payload: to_vec(&action).expect("payload"),
+        action,
+        requested_at: OffsetDateTime::now_utc(),
+        expires_at: OffsetDateTime::now_utc() + time::Duration::minutes(2),
+    };
+    let err = client
+        .sign_for_agent(request.clone())
+        .await
+        .expect_err("strict policy should reject");
+    assert!(matches!(err, DaemonError::Policy(_)));
+    client
+        .disable_policy(&admin, strict_policy.id)
+        .await
+        .expect("disable strict policy");
+    let signature = client
+        .sign_for_agent(request)
+        .await
+        .expect("request should pass after strict policy is disabled");
+    assert!(!signature.bytes.is_empty());
+}