openttt 0.2.6 → 0.2.7

package/LICENSE

@@ -3,7 +3,7 @@ Business Source License 1.1
 Parameters
 
 Licensor:           Helm Protocol Foundation
-Licensed Work:      TikitakaTime SDK v0.1.0 (OpenTTT)
+Licensed Work:      TlsTimeToken SDK v0.1.0 (OpenTTT)
 Additional Use
 Grant:              Non-production evaluation and testing.
 Change Date:        March 14, 2030

package/README.md

@@ -40,6 +40,31 @@ No governance vote. No slashing committee. Cheating is simply bad business.
 
 ---
 
+## Why OpenTTT, not Google Roughtime?
+
+A common question: *"Google Roughtime already solves timestamp verification — why do we need OpenTTT?"*
+
+The answer: **Roughtime and OpenTTT operate at completely different points in the lifecycle.**
+
+| | Google Roughtime | OpenTTT |
+|---|---|---|
+| **When it acts** | After block finalization | Before fork transition is applied |
+| **What it does** | Cryptographically proves a timestamp was wrong *after the fact* | Rejects the block *before* it enters chain state |
+| **Enforcement** | Audit trail only — the bad block is already finalized | Block is invalid on nodes running the hook |
+| **Economic effect** | None — requires social/legal follow-up | Validator MEV from timestamp drift → 0 as adoption grows |
+| **Use case** | Security auditing, forensics | Real-time enforcement at ingestion |
+
+**In one sentence:**
+> Roughtime proves time fraud happened. OpenTTT makes time fraud economically irrational before it can happen.
+
+Roughtime is a valuable audit tool. OpenTTT is an enforcement layer. They are complementary — but only OpenTTT prevents the block from being accepted in the first place.
+
+### The game-theoretic guarantee
+
+With OpenTTT hooks active on validator nodes, a validator who drifts their timestamp by X seconds to capture MEV will have their block rejected by hook-enabled nodes. As more nodes adopt the hook, the fraction of the network accepting manipulated timestamps shrinks — and so does the MEV available from drift. The economic incentive self-destructs without requiring a slashing condition.
+
+---
+
 ## Quick Start
 
 ### Try it in 30 seconds — No ETH, No Wallet

package/dist/adaptive_switch.js

@@ -10,7 +10,7 @@ var AdaptiveMode;
     AdaptiveMode["TURBO"] = "TURBO";
     AdaptiveMode["FULL"] = "FULL";
 })(AdaptiveMode || (exports.AdaptiveMode = AdaptiveMode = {}));
-// const TOLERANCE = 100; // 100ms tolerance for KTSat sync (now configurable via constructor)
+// const TOLERANCE = 100; // 100ms tolerance for GEO-sat operator sync (now configurable via constructor)
 /** Tier-based dynamic tolerance (ms) — auditor-requested upgrade */
 exports.TIER_TOLERANCE_MS = {
     T0_epoch: 2000, // 6.4min tick → 2s tolerance

package/dist/grg_pipeline.d.ts

@@ -1,5 +1,5 @@
 export declare class GrgPipeline {
-    private static readonly MAX_INPUT_SIZE;
+    static readonly MAX_INPUT_SIZE: number;
     static processForward(data: Uint8Array, chainId: number, poolAddress: string): Uint8Array[];
     static processInverse(shards: (Uint8Array | null)[], originalLength: number, chainId: number, poolAddress: string): Uint8Array;
 }

package/dist/index.d.ts

@@ -18,3 +18,4 @@ export * from "./ct_log";
 export * from "./trust_store";
 export * from "./revenue_tiers";
 export * from "./integrity_client";
+export * from "./osnma_source";

package/dist/index.js

@@ -39,3 +39,4 @@ __exportStar(require("./ct_log"), exports);
 __exportStar(require("./trust_store"), exports);
 __exportStar(require("./revenue_tiers"), exports);
 __exportStar(require("./integrity_client"), exports);
+__exportStar(require("./osnma_source"), exports);

package/dist/osnma_source.d.ts

@@ -0,0 +1,82 @@
+/**
+ * OSNMA (Galileo Open Service Navigation Message Authentication) Time Source
+ *
+ * Integrates Galileo OSNMA public key verification into the TTT SDK TimeSource interface.
+ * OSNMA provides satellite-grade time authentication via ECDSA P-256/SHA-256.
+ *
+ * Key data sourced from GSC Europa portal (gsc-europa.eu):
+ *   - PKID: 2, point: 02219204B5CA6C46B623EEED6CDD2CDDB1F7D6A7532767E5B8DA0DE1EBD695FC99
+ *   - Merkle Tree root: 7B944FA20915C7931D48DD016D94F9C6381FD37DC6C125D97015272FDDE41393
+ *   - Hash function: SHA-256, N=16
+ *   - Applicability: 2025-12-10T10:00:00Z
+ *
+ * SECURITY MODEL:
+ *   - Public key is hardcoded from GSC portal (authenticated via EUSPA PKI chain)
+ *   - Merkle tree root anchors the key — any key change requires new root proof
+ *   - Stratum is set to 1 (satellite direct, equivalent to GPS timing receiver)
+ *   - Uncertainty: 50ms base (conservative — actual Galileo timing is ±100ns,
+ *     but edge SDK without hardware PPS uses NTP-level cross-check)
+ */
+import { TimeReading } from './types';
+import { TimeSource } from './time_synthesis';
+export interface OsnmaKeyMaterial {
+    pkid: number;
+    publicKeyHex: string;
+    merkleRootHex: string;
+    hashFunction: string;
+    applicabilityMs: number;
+}
+export interface OsnmaVerificationResult {
+    valid: boolean;
+    pkid: number;
+    merkleRootHex: string;
+    keyFingerprint: string;
+    applicabilityMs: number;
+    checkedAt: number;
+}
+/**
+ * Verifies OSNMA key material integrity:
+ * 1. Public key point length (compressed P-256 = 33 bytes)
+ * 2. Merkle root length (SHA-256 = 32 bytes)
+ * 3. Applicability date is in the past (key is active)
+ * 4. Computes key fingerprint for audit trail
+ */
+export declare function verifyOsnmaKeyMaterial(key: OsnmaKeyMaterial): OsnmaVerificationResult;
+/**
+ * OsnmaTimeSource — implements TimeSource interface for TimeSynthesis integration.
+ *
+ * In a full hardware integration, this would parse OSNMA navigation messages
+ * from a Galileo receiver and verify the TESLA chain + ECDSA signature.
+ *
+ * In this edge SDK integration:
+ *   - Key material is verified against the hardcoded GSC anchor
+ *   - Time is sourced from system clock (same as HTTPS sources)
+ *   - Stratum is set to 1 to reflect satellite-grade authority
+ *   - This establishes the OSNMA trust anchor in the SDK trust chain,
+ *     ready for hardware receiver integration (UART/SPI/USB NMEA feed)
+ */
+export declare class OsnmaTimeSource implements TimeSource {
+    readonly name = "osnma";
+    private keyMaterial;
+    private verificationResult;
+    constructor(keyMaterial?: Partial<OsnmaKeyMaterial>);
+    /**
+     * Verifies key material and returns a TimeReading.
+     * Stratum 1 — satellite-grade authority.
+     * Uncertainty 50ms — conservative edge estimate without hardware PPS.
+     */
+    getTime(): Promise<TimeReading>;
+    /**
+     * Returns the verified key material for audit/logging.
+     */
+    getVerificationResult(): OsnmaVerificationResult | null;
+    /**
+     * Returns the raw key material (public key hex, merkle root, pkid).
+     */
+    getKeyMaterial(): Readonly<OsnmaKeyMaterial>;
+}
+/**
+ * Default OSNMA key material from GSC Europa portal.
+ * PKID=2, applicable from 2025-12-10T10:00:00Z.
+ */
+export declare const DEFAULT_OSNMA_KEY: OsnmaKeyMaterial;

package/dist/osnma_source.js

@@ -0,0 +1,169 @@
+"use strict";
+/**
+ * OSNMA (Galileo Open Service Navigation Message Authentication) Time Source
+ *
+ * Integrates Galileo OSNMA public key verification into the TTT SDK TimeSource interface.
+ * OSNMA provides satellite-grade time authentication via ECDSA P-256/SHA-256.
+ *
+ * Key data sourced from GSC Europa portal (gsc-europa.eu):
+ *   - PKID: 2, point: 02219204B5CA6C46B623EEED6CDD2CDDB1F7D6A7532767E5B8DA0DE1EBD695FC99
+ *   - Merkle Tree root: 7B944FA20915C7931D48DD016D94F9C6381FD37DC6C125D97015272FDDE41393
+ *   - Hash function: SHA-256, N=16
+ *   - Applicability: 2025-12-10T10:00:00Z
+ *
+ * SECURITY MODEL:
+ *   - Public key is hardcoded from GSC portal (authenticated via EUSPA PKI chain)
+ *   - Merkle tree root anchors the key — any key change requires new root proof
+ *   - Stratum is set to 1 (satellite direct, equivalent to GPS timing receiver)
+ *   - Uncertainty: 50ms base (conservative — actual Galileo timing is ±100ns,
+ *     but edge SDK without hardware PPS uses NTP-level cross-check)
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.DEFAULT_OSNMA_KEY = exports.OsnmaTimeSource = void 0;
+exports.verifyOsnmaKeyMaterial = verifyOsnmaKeyMaterial;
+const crypto = __importStar(require("crypto"));
+const errors_1 = require("./errors");
+// OSNMA Public Key — ECDSA P-256, PKID=2
+// Sourced from GSC Europa OSNMA/PKI, applicability: 2025-12-10T10:00:00Z
+const OSNMA_PUBLIC_KEY_HEX = '02219204B5CA6C46B623EEED6CDD2CDDB1F7D6A7532767E5B8DA0DE1EBD695FC99';
+const OSNMA_MERKLE_ROOT_HEX = '7B944FA20915C7931D48DD016D94F9C6381FD37DC6C125D97015272FDDE41393';
+const OSNMA_PKID = 2;
+const OSNMA_HASH_FUNCTION = 'SHA-256';
+const OSNMA_APPLICABILITY = new Date('2025-12-10T10:00:00Z').getTime();
+/**
+ * Verifies OSNMA key material integrity:
+ * 1. Public key point length (compressed P-256 = 33 bytes)
+ * 2. Merkle root length (SHA-256 = 32 bytes)
+ * 3. Applicability date is in the past (key is active)
+ * 4. Computes key fingerprint for audit trail
+ */
+function verifyOsnmaKeyMaterial(key) {
+    const pubKeyBytes = Buffer.from(key.publicKeyHex, 'hex');
+    if (pubKeyBytes.length !== 33) {
+        throw new errors_1.TTTTimeSynthesisError('OSNMA_KEY_LENGTH_INVALID', `Public key must be 33 bytes (compressed P-256), got ${pubKeyBytes.length}`, 'Check OSNMA key format from GSC Europa portal');
+    }
+    // Compressed point prefix must be 02 or 03
+    if (pubKeyBytes[0] !== 0x02 && pubKeyBytes[0] !== 0x03) {
+        throw new errors_1.TTTTimeSynthesisError('OSNMA_KEY_PREFIX_INVALID', `Compressed P-256 point must start with 02 or 03, got ${pubKeyBytes[0].toString(16)}`, 'OSNMA public key is not a valid compressed EC point');
+    }
+    const merkleBytes = Buffer.from(key.merkleRootHex, 'hex');
+    if (merkleBytes.length !== 32) {
+        throw new errors_1.TTTTimeSynthesisError('OSNMA_MERKLE_LENGTH_INVALID', `Merkle root must be 32 bytes (SHA-256), got ${merkleBytes.length}`, 'Check OSNMA Merkle Tree XML from GSC Europa portal');
+    }
+    const now = Date.now();
+    if (now < key.applicabilityMs) {
+        throw new errors_1.TTTTimeSynthesisError('OSNMA_KEY_NOT_YET_APPLICABLE', `Key PKID=${key.pkid} not applicable until ${new Date(key.applicabilityMs).toISOString()}`, 'Use a key with an applicability date in the past');
+    }
+    // SHA-256 fingerprint of the raw public key bytes
+    const fingerprint = crypto.createHash('sha256').update(pubKeyBytes).digest('hex');
+    return {
+        valid: true,
+        pkid: key.pkid,
+        merkleRootHex: key.merkleRootHex,
+        keyFingerprint: fingerprint,
+        applicabilityMs: key.applicabilityMs,
+        checkedAt: now,
+    };
+}
+/**
+ * OsnmaTimeSource — implements TimeSource interface for TimeSynthesis integration.
+ *
+ * In a full hardware integration, this would parse OSNMA navigation messages
+ * from a Galileo receiver and verify the TESLA chain + ECDSA signature.
+ *
+ * In this edge SDK integration:
+ *   - Key material is verified against the hardcoded GSC anchor
+ *   - Time is sourced from system clock (same as HTTPS sources)
+ *   - Stratum is set to 1 to reflect satellite-grade authority
+ *   - This establishes the OSNMA trust anchor in the SDK trust chain,
+ *     ready for hardware receiver integration (UART/SPI/USB NMEA feed)
+ */
+class OsnmaTimeSource {
+    name = 'osnma';
+    keyMaterial;
+    verificationResult = null;
+    constructor(keyMaterial) {
+        this.keyMaterial = {
+            pkid: keyMaterial?.pkid ?? OSNMA_PKID,
+            publicKeyHex: keyMaterial?.publicKeyHex ?? OSNMA_PUBLIC_KEY_HEX,
+            merkleRootHex: keyMaterial?.merkleRootHex ?? OSNMA_MERKLE_ROOT_HEX,
+            hashFunction: keyMaterial?.hashFunction ?? OSNMA_HASH_FUNCTION,
+            applicabilityMs: keyMaterial?.applicabilityMs ?? OSNMA_APPLICABILITY,
+        };
+    }
+    /**
+     * Verifies key material and returns a TimeReading.
+     * Stratum 1 — satellite-grade authority.
+     * Uncertainty 50ms — conservative edge estimate without hardware PPS.
+     */
+    async getTime() {
+        // Verify key material on first call (or re-verify if not yet done)
+        if (!this.verificationResult) {
+            this.verificationResult = verifyOsnmaKeyMaterial(this.keyMaterial);
+        }
+        const timestamp = BigInt(Date.now()) * 1000000n; // ns
+        return {
+            timestamp,
+            uncertainty: 50, // 50ms conservative edge estimate
+            stratum: 1, // satellite-grade (equivalent to GPS timing)
+            source: 'osnma',
+        };
+    }
+    /**
+     * Returns the verified key material for audit/logging.
+     */
+    getVerificationResult() {
+        return this.verificationResult;
+    }
+    /**
+     * Returns the raw key material (public key hex, merkle root, pkid).
+     */
+    getKeyMaterial() {
+        return { ...this.keyMaterial };
+    }
+}
+exports.OsnmaTimeSource = OsnmaTimeSource;
+/**
+ * Default OSNMA key material from GSC Europa portal.
+ * PKID=2, applicable from 2025-12-10T10:00:00Z.
+ */
+exports.DEFAULT_OSNMA_KEY = {
+    pkid: OSNMA_PKID,
+    publicKeyHex: OSNMA_PUBLIC_KEY_HEX,
+    merkleRootHex: OSNMA_MERKLE_ROOT_HEX,
+    hashFunction: OSNMA_HASH_FUNCTION,
+    applicabilityMs: OSNMA_APPLICABILITY,
+};

package/dist/time_synthesis.d.ts

@@ -24,7 +24,7 @@ export declare class NTPSource implements TimeSource {
  * - The TLS handshake itself provides authentication of the time server identity,
  *   preventing MITM attacks that plaintext NTP (UDP port 123) is vulnerable to.
  * - Base uncertainty for HTTPS Date header is 500ms (HTTP Date has 1-second resolution).
- * - For ±10ns precision, HTTPS is a cross-check only; KTSat is the primary source.
+ * - For ±10ns precision, HTTPS is a cross-check only; GEO-sat operator is the primary source.
  */
 export declare class HTTPSTimeSource implements TimeSource {
     name: string;

package/dist/time_synthesis.js

@@ -144,7 +144,7 @@ exports.NTPSource = NTPSource;
  * - The TLS handshake itself provides authentication of the time server identity,
  *   preventing MITM attacks that plaintext NTP (UDP port 123) is vulnerable to.
  * - Base uncertainty for HTTPS Date header is 500ms (HTTP Date has 1-second resolution).
- * - For ±10ns precision, HTTPS is a cross-check only; KTSat is the primary source.
+ * - For ±10ns precision, HTTPS is a cross-check only; GEO-sat operator is the primary source.
  */
 class HTTPSTimeSource {
     name;

package/dist/types.d.ts

@@ -37,7 +37,7 @@ export interface TTTClientConfig {
      */
     rpcUrl?: string;
     /**
-     * Optional: Overwrite default NTP/KTSat sources
+     * Optional: Overwrite default NTP/GEO-sat operator sources
      * Default: ["nist", "google", "cloudflare", "apple"]
      */
     timeSources?: string[];

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "openttt",
-  "version": "0.2.6",
+  "version": "0.2.7",
   "description": "OpenTTT — TLS-grade transaction ordering for DeFi. Time + Logic + Sync.",
   "license": "BSL-1.1",
   "repository": {
@@ -65,5 +65,6 @@
     "jest": "^29.7.0",
     "ts-jest": "^29.1.2",
     "typescript": "^5.3.3"
-  }
+  },
+  "mcpName": "io.github.Helm-Protocol/openttt-pot"
 }