sigild 0.0.1

package/dist/src/daemon/handles.d.ts

@@ -0,0 +1,51 @@
+import { type SecretBuffer } from '../crypto/index.js';
+export interface PortalInfo {
+    handle: string;
+    kind: 'eth';
+    address: string;
+}
+export declare class HandleLoadError extends Error {
+    readonly cause?: unknown;
+    constructor(message: string, cause?: unknown);
+}
+/**
+ * In-memory registry of handle → unlocked SecretBuffer.
+ *
+ * The expectation is that this is constructed once at daemon startup, populated
+ * via loadFromDir (or addEntry from tests), and disposed once at shutdown.
+ * After dispose() any further get/list calls throw.
+ */
+export declare class HandleTable {
+    #private;
+    static parseHandle(handle: string): {
+        kind: 'eth';
+        name: string;
+    };
+    static handleFromFilename(filename: string): string | null;
+    /**
+     * Load every keyfile in `dir` named `<handle>.sigil`, decrypting each with
+     * the same passphrase. Throws HandleLoadError on any failure.
+     *
+     * Order: deterministic by sorted filename, so audit logs and list_portals
+     * output are stable across restarts.
+     */
+    loadFromDir(dir: string, passphrase: Buffer): void;
+    /**
+     * Add a handle directly (for tests or for non-file-backed key sources).
+     * Takes ownership of the SecretBuffer; dispose() will zeroize it.
+     */
+    addEntry(handle: string, secret: SecretBuffer): void;
+    has(handle: string): boolean;
+    /**
+     * Returns the SecretBuffer for the handle. Caller must NOT dispose it —
+     * the table owns the lifetime.
+     */
+    get(handle: string): SecretBuffer | undefined;
+    list(): PortalInfo[];
+    /**
+     * Zeroize every key and mark the table unusable. Idempotent.
+     */
+    dispose(): void;
+    get isDisposed(): boolean;
+}
+//# sourceMappingURL=handles.d.ts.map

package/dist/src/daemon/handles.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"handles.d.ts","sourceRoot":"","sources":["../../../src/daemon/handles.ts"],"names":[],"mappings":"AAGA,OAAO,EACL,KAAK,YAAY,EAGlB,MAAM,oBAAoB,CAAC;AAQ5B,MAAM,WAAW,UAAU;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,KAAK,CAAC;IACZ,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,qBAAa,eAAgB,SAAQ,KAAK;IACxC,SAAkB,KAAK,CAAC,EAAE,OAAO,CAAC;gBACtB,OAAO,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,OAAO;CAK7C;AAED;;;;;;GAMG;AACH,qBAAa,WAAW;;IAKtB,MAAM,CAAC,WAAW,CAAC,MAAM,EAAE,MAAM,GAAG;QAAE,IAAI,EAAE,KAAK,CAAC;QAAC,IAAI,EAAE,MAAM,CAAA;KAAE;IAMjE,MAAM,CAAC,kBAAkB,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI;IAO1D;;;;;;OAMG;IACH,WAAW,CAAC,GAAG,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,GAAG,IAAI;IAgClD;;;OAGG;IACH,QAAQ,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,YAAY,GAAG,IAAI;IAcpD,GAAG,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO;IAK5B;;;OAGG;IACH,GAAG,CAAC,MAAM,EAAE,MAAM,GAAG,YAAY,GAAG,SAAS;IAK7C,IAAI,IAAI,UAAU,EAAE;IAKpB;;OAEG;IACH,OAAO,IAAI,IAAI;IAOf,IAAI,UAAU,IAAI,OAAO,CAExB;CACF"}

package/dist/src/daemon/handles.js

@@ -0,0 +1,140 @@
+import { readdirSync, readFileSync } from 'node:fs';
+import { join } from 'node:path';
+import { addressFromPrivateKey } from '../eth/address.js';
+import { unsealKey, WrongPassphraseError, } from '../crypto/index.js';
+const KEYFILE_EXT = '.sigil';
+// Handle format: <kind>:<name> where kind is currently always "eth" and name
+// is restricted to characters that are safe both as identifiers and as
+// filenames. Disallow '.', '/', and whitespace.
+const HANDLE_RE = /^(eth):([a-zA-Z0-9_-]+)$/;
+export class HandleLoadError extends Error {
+    cause;
+    constructor(message, cause) {
+        super(message);
+        this.name = 'HandleLoadError';
+        if (cause !== undefined)
+            this.cause = cause;
+    }
+}
+/**
+ * In-memory registry of handle → unlocked SecretBuffer.
+ *
+ * The expectation is that this is constructed once at daemon startup, populated
+ * via loadFromDir (or addEntry from tests), and disposed once at shutdown.
+ * After dispose() any further get/list calls throw.
+ */
+export class HandleTable {
+    // Wrapped in a private map; not exposed.
+    #entries = new Map();
+    #disposed = false;
+    static parseHandle(handle) {
+        const m = HANDLE_RE.exec(handle);
+        if (!m)
+            throw new HandleLoadError(`invalid handle "${handle}": expected <kind>:<name>`);
+        return { kind: m[1], name: m[2] };
+    }
+    static handleFromFilename(filename) {
+        if (!filename.endsWith(KEYFILE_EXT))
+            return null;
+        const base = filename.slice(0, -KEYFILE_EXT.length);
+        if (!HANDLE_RE.test(base))
+            return null;
+        return base;
+    }
+    /**
+     * Load every keyfile in `dir` named `<handle>.sigil`, decrypting each with
+     * the same passphrase. Throws HandleLoadError on any failure.
+     *
+     * Order: deterministic by sorted filename, so audit logs and list_portals
+     * output are stable across restarts.
+     */
+    loadFromDir(dir, passphrase) {
+        if (this.#disposed)
+            throw new Error('HandleTable is disposed');
+        let entries;
+        try {
+            entries = readdirSync(dir).sort();
+        }
+        catch (err) {
+            if (err.code === 'ENOENT')
+                return;
+            throw new HandleLoadError(`failed to read keys directory ${dir}`, err);
+        }
+        for (const filename of entries) {
+            const handle = HandleTable.handleFromFilename(filename);
+            if (handle === null)
+                continue; // ignore non-keyfiles
+            const path = join(dir, filename);
+            let blob;
+            try {
+                blob = readFileSync(path);
+            }
+            catch (err) {
+                throw new HandleLoadError(`failed to read keyfile ${path}`, err);
+            }
+            let secret;
+            try {
+                secret = unsealKey(blob, passphrase);
+            }
+            catch (err) {
+                if (err instanceof WrongPassphraseError) {
+                    throw new HandleLoadError(`wrong passphrase or tampered keyfile: ${path}`, err);
+                }
+                throw new HandleLoadError(`failed to unseal keyfile ${path}`, err);
+            }
+            this.addEntry(handle, secret);
+        }
+    }
+    /**
+     * Add a handle directly (for tests or for non-file-backed key sources).
+     * Takes ownership of the SecretBuffer; dispose() will zeroize it.
+     */
+    addEntry(handle, secret) {
+        if (this.#disposed)
+            throw new Error('HandleTable is disposed');
+        HandleTable.parseHandle(handle); // validates format
+        if (this.#entries.has(handle)) {
+            secret.dispose();
+            throw new HandleLoadError(`duplicate handle "${handle}"`);
+        }
+        const address = addressFromPrivateKey(secret.bytes());
+        this.#entries.set(handle, {
+            secret,
+            info: { handle, kind: 'eth', address },
+        });
+    }
+    has(handle) {
+        if (this.#disposed)
+            throw new Error('HandleTable is disposed');
+        return this.#entries.has(handle);
+    }
+    /**
+     * Returns the SecretBuffer for the handle. Caller must NOT dispose it —
+     * the table owns the lifetime.
+     */
+    get(handle) {
+        if (this.#disposed)
+            throw new Error('HandleTable is disposed');
+        return this.#entries.get(handle)?.secret;
+    }
+    list() {
+        if (this.#disposed)
+            throw new Error('HandleTable is disposed');
+        return Array.from(this.#entries.values()).map((e) => ({ ...e.info }));
+    }
+    /**
+     * Zeroize every key and mark the table unusable. Idempotent.
+     */
+    dispose() {
+        if (this.#disposed)
+            return;
+        for (const e of this.#entries.values())
+            e.secret.dispose();
+        this.#entries.clear();
+        this.#disposed = true;
+    }
+    get isDisposed() {
+        return this.#disposed;
+    }
+}
+//# sourceMappingURL=handles.js.map

package/dist/src/daemon/handles.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"handles.js","sourceRoot":"","sources":["../../../src/daemon/handles.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AACpD,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AACjC,OAAO,EAAE,qBAAqB,EAAE,MAAM,mBAAmB,CAAC;AAC1D,OAAO,EAEL,SAAS,EACT,oBAAoB,GACrB,MAAM,oBAAoB,CAAC;AAE5B,MAAM,WAAW,GAAG,QAAQ,CAAC;AAC7B,6EAA6E;AAC7E,uEAAuE;AACvE,gDAAgD;AAChD,MAAM,SAAS,GAAG,0BAA0B,CAAC;AAQ7C,MAAM,OAAO,eAAgB,SAAQ,KAAK;IACtB,KAAK,CAAW;IAClC,YAAY,OAAe,EAAE,KAAe;QAC1C,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,iBAAiB,CAAC;QAC9B,IAAI,KAAK,KAAK,SAAS;YAAE,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;IAC9C,CAAC;CACF;AAED;;;;;;GAMG;AACH,MAAM,OAAO,WAAW;IACtB,yCAAyC;IAChC,QAAQ,GAAG,IAAI,GAAG,EAAsD,CAAC;IAClF,SAAS,GAAG,KAAK,CAAC;IAElB,MAAM,CAAC,WAAW,CAAC,MAAc;QAC/B,MAAM,CAAC,GAAG,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjC,IAAI,CAAC,CAAC;YAAE,MAAM,IAAI,eAAe,CAAC,mBAAmB,MAAM,2BAA2B,CAAC,CAAC;QACxF,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAU,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAE,EAAE,CAAC;IAC9C,CAAC;IAED,MAAM,CAAC,kBAAkB,CAAC,QAAgB;QACxC,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,WAAW,CAAC;YAAE,OAAO,IAAI,CAAC;QACjD,MAAM,IAAI,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;QACpD,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC;YAAE,OAAO,IAAI,CAAC;QACvC,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;;;;;OAMG;IACH,WAAW,CAAC,GAAW,EAAE,UAAkB;QACzC,IAAI,IAAI,CAAC,SAAS;YAAE,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAC/D,IAAI,OAAiB,CAAC;QACtB,IAAI,CAAC;YACH,OAAO,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;QACpC,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAK,GAA6B,CAAC,IAAI,KAAK,QAAQ;gBAAE,OAAO;YAC7D,MAAM,IAAI,eAAe,CAAC,iCAAiC,GAAG,EAAE,EAAE,GAAG,CAAC,CAAC;QACzE,CAAC;QACD,KAAK,MAAM,QAAQ,IAAI,OAAO,EAAE,CAAC;YAC/B,MAAM,MAAM,GAAG,WAAW,CAAC,kBAAkB,CAAC,QAAQ,CAAC,CAAC;YACxD,IAAI,MAAM,KAAK,IAAI;gBAAE,SAAS,CAAC,sBAAsB;YACrD,MAAM,IAAI,GAAG,IAAI,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;YACjC,IAAI,IAAY,CAAC;YACjB,IAAI,CAAC;gBACH,IAAI,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC;YAC5B,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,MAAM,IAAI,eAAe,CAAC,0BAA0B,IAAI,EAAE,EAAE,GAAG,CAAC,CAAC;YACnE,CAAC;YACD,IAAI,MAAoB,CAAC;YACzB,IAAI,CAAC;gBACH,MAAM,GAAG,SAAS,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;YACvC,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,IAAI,GAAG,YAAY,oBAAoB,EAAE,CAAC;oBACxC,MAAM,IAAI,eAAe,CAAC,yCAAyC,IAAI,EAAE,EAAE,GAAG,CAAC,CAAC;gBAClF,CAAC;gBACD,MAAM,IAAI,eAAe,CAAC,4BAA4B,IAAI,EAAE,EAAE,GAAG,CAAC,CAAC;YACrE,CAAC;YACD,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QAChC,CAAC;IACH,CAAC;IAED;;;OAGG;IACH,QAAQ,CAAC,MAAc,EAAE,MAAoB;QAC3C,IAAI,IAAI,CAAC,SAAS;YAAE,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAC/D,WAAW,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC,mBAAmB;QACpD,IAAI,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;YAC9B,MAAM,CAAC,OAAO,EAAE,CAAC;YACjB,MAAM,IAAI,eAAe,CAAC,qBAAqB,MAAM,GAAG,CAAC,CAAC;QAC5D,CAAC;QACD,MAAM,OAAO,GAAG,qBAAqB,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC;QACtD,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,EAAE;YACxB,MAAM;YACN,IAAI,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,OAAO,EAAE;SACvC,CAAC,CAAC;IACL,CAAC;IAED,GAAG,CAAC,MAAc;QAChB,IAAI,IAAI,CAAC,SAAS;YAAE,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAC/D,OAAO,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IACnC,CAAC;IAED;;;OAGG;IACH,GAAG,CAAC,MAAc;QAChB,IAAI,IAAI,CAAC,SAAS;YAAE,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAC/D,OAAO,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,MAAM,CAAC;IAC3C,CAAC;IAED,IAAI;QACF,IAAI,IAAI,CAAC,SAAS;YAAE,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAC/D,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC;IACxE,CAAC;IAED;;OAEG;IACH,OAAO;QACL,IAAI,IAAI,CAAC,SAAS;YAAE,OAAO;QAC3B,KAAK,MAAM,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE;YAAE,CAAC,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;QAC3D,IAAI,CAAC,QAAQ,CAAC,KAAK,EAAE,CAAC;QACtB,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC;IACxB,CAAC;IAED,IAAI,UAAU;QACZ,OAAO,IAAI,CAAC,SAAS,CAAC;IACxB,CAAC;CACF"}

package/dist/src/daemon/index.d.ts

@@ -0,0 +1,5 @@
+export { type RpcId, type RpcRequest, type RpcResponse, type RpcSuccess, type RpcError, type RpcErrorObject, type ParseResult, RPC_VERSION, RPC_PARSE_ERROR, RPC_INVALID_REQUEST, RPC_METHOD_NOT_FOUND, RPC_INVALID_PARAMS, RPC_INTERNAL_ERROR, RPC_PORTAL_NOT_FOUND, RPC_POLICY_DENIED, RPC_INVALID_PAYLOAD, parseRequest, encodeResponse, encodeError, } from './rpc.js';
+export { type PortalInfo, HandleLoadError, HandleTable, } from './handles.js';
+export { type MethodContext, type MethodHandler, RpcMethodError, METHODS, dispatch, } from './methods.js';
+export { type DaemonServerOpts, type DaemonServerHandle, type LogEvent, startDaemonServer, } from './server.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/src/daemon/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/daemon/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,KAAK,KAAK,EACV,KAAK,UAAU,EACf,KAAK,WAAW,EAChB,KAAK,UAAU,EACf,KAAK,QAAQ,EACb,KAAK,cAAc,EACnB,KAAK,WAAW,EAChB,WAAW,EACX,eAAe,EACf,mBAAmB,EACnB,oBAAoB,EACpB,kBAAkB,EAClB,kBAAkB,EAClB,oBAAoB,EACpB,iBAAiB,EACjB,mBAAmB,EACnB,YAAY,EACZ,cAAc,EACd,WAAW,GACZ,MAAM,UAAU,CAAC;AAClB,OAAO,EACL,KAAK,UAAU,EACf,eAAe,EACf,WAAW,GACZ,MAAM,cAAc,CAAC;AACtB,OAAO,EACL,KAAK,aAAa,EAClB,KAAK,aAAa,EAClB,cAAc,EACd,OAAO,EACP,QAAQ,GACT,MAAM,cAAc,CAAC;AACtB,OAAO,EACL,KAAK,gBAAgB,EACrB,KAAK,kBAAkB,EACvB,KAAK,QAAQ,EACb,iBAAiB,GAClB,MAAM,aAAa,CAAC"}

package/dist/src/daemon/index.js

@@ -0,0 +1,5 @@
+export { RPC_VERSION, RPC_PARSE_ERROR, RPC_INVALID_REQUEST, RPC_METHOD_NOT_FOUND, RPC_INVALID_PARAMS, RPC_INTERNAL_ERROR, RPC_PORTAL_NOT_FOUND, RPC_POLICY_DENIED, RPC_INVALID_PAYLOAD, parseRequest, encodeResponse, encodeError, } from './rpc.js';
+export { HandleLoadError, HandleTable, } from './handles.js';
+export { RpcMethodError, METHODS, dispatch, } from './methods.js';
+export { startDaemonServer, } from './server.js';
+//# sourceMappingURL=index.js.map

package/dist/src/daemon/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/daemon/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAQL,WAAW,EACX,eAAe,EACf,mBAAmB,EACnB,oBAAoB,EACpB,kBAAkB,EAClB,kBAAkB,EAClB,oBAAoB,EACpB,iBAAiB,EACjB,mBAAmB,EACnB,YAAY,EACZ,cAAc,EACd,WAAW,GACZ,MAAM,UAAU,CAAC;AAClB,OAAO,EAEL,eAAe,EACf,WAAW,GACZ,MAAM,cAAc,CAAC;AACtB,OAAO,EAGL,cAAc,EACd,OAAO,EACP,QAAQ,GACT,MAAM,cAAc,CAAC;AACtB,OAAO,EAIL,iBAAiB,GAClB,MAAM,aAAa,CAAC"}

package/dist/src/daemon/methods.d.ts

@@ -0,0 +1,20 @@
+import { type AuditWriter } from '../audit/index.js';
+import { type HandleTable } from './handles.js';
+export declare class RpcMethodError extends Error {
+    readonly code: number;
+    readonly data: unknown;
+    constructor(code: number, message: string, data?: unknown);
+}
+export interface MethodContext {
+    handles: HandleTable;
+    audit: AuditWriter;
+}
+export type MethodHandler = (params: unknown, ctx: MethodContext) => unknown;
+export declare const METHODS: Readonly<Record<string, MethodHandler>>;
+/**
+ * Dispatch a parsed RPC request to the matching method.
+ * Throws RpcMethodError on user errors or method-not-found, or other Error
+ * for unexpected internals.
+ */
+export declare function dispatch(method: string, params: unknown, ctx: MethodContext): unknown;
+//# sourceMappingURL=methods.d.ts.map

package/dist/src/daemon/methods.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"methods.d.ts","sourceRoot":"","sources":["../../../src/daemon/methods.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,KAAK,WAAW,EACjB,MAAM,mBAAmB,CAAC;AAgB3B,OAAO,EAAE,KAAK,WAAW,EAAE,MAAM,cAAc,CAAC;AAEhD,qBAAa,cAAe,SAAQ,KAAK;IACvC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,IAAI,EAAE,OAAO,CAAC;gBACX,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,OAAO;CAM1D;AAED,MAAM,WAAW,aAAa;IAC5B,OAAO,EAAE,WAAW,CAAC;IACrB,KAAK,EAAE,WAAW,CAAC;CACpB;AAED,MAAM,MAAM,aAAa,GAAG,CAAC,MAAM,EAAE,OAAO,EAAE,GAAG,EAAE,aAAa,KAAK,OAAO,CAAC;AA8M7E,eAAO,MAAM,OAAO,EAAE,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,aAAa,CAAC,CAK1D,CAAC;AAEH;;;;GAIG;AACH,wBAAgB,QAAQ,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,GAAG,EAAE,aAAa,GAAG,OAAO,CAMrF"}

package/dist/src/daemon/methods.js

@@ -0,0 +1,221 @@
+import { personalSign, signTransaction, signTypedData, } from '../eth/index.js';
+import { RPC_INVALID_PARAMS, RPC_METHOD_NOT_FOUND, RPC_PORTAL_NOT_FOUND, } from './rpc.js';
+export class RpcMethodError extends Error {
+    code;
+    data;
+    constructor(code, message, data) {
+        super(message);
+        this.name = 'RpcMethodError';
+        this.code = code;
+        this.data = data;
+    }
+}
+// ---------------------------------------------------------------------------
+// Helpers
+// ---------------------------------------------------------------------------
+function asObject(params, methodName) {
+    if (typeof params !== 'object' || params === null || Array.isArray(params)) {
+        throw new RpcMethodError(RPC_INVALID_PARAMS, `${methodName}: params must be an object`);
+    }
+    return params;
+}
+function asString(obj, key, methodName) {
+    const v = obj[key];
+    if (typeof v !== 'string') {
+        throw new RpcMethodError(RPC_INVALID_PARAMS, `${methodName}: ${key} must be a string`);
+    }
+    return v;
+}
+function hexToBuf(s, methodName, key) {
+    if (!/^0x[0-9a-fA-F]*$/.test(s)) {
+        throw new RpcMethodError(RPC_INVALID_PARAMS, `${methodName}: ${key} must be 0x-prefixed hex`);
+    }
+    return Buffer.from(s.slice(2), 'hex');
+}
+function requirePortal(handles, handle) {
+    const sb = handles.get(handle);
+    if (!sb) {
+        throw new RpcMethodError(RPC_PORTAL_NOT_FOUND, `portal "${handle}" not found`);
+    }
+    return sb.bytes();
+}
+// ---------------------------------------------------------------------------
+// Methods
+// ---------------------------------------------------------------------------
+const sigil_list_portals = (_params, ctx) => {
+    return { portals: ctx.handles.list() };
+};
+const sigil_eth_sign_message = (params, ctx) => {
+    const obj = asObject(params, 'eth_sign_message');
+    const portal = asString(obj, 'portal', 'eth_sign_message');
+    const messageHex = asString(obj, 'message', 'eth_sign_message');
+    const message = hexToBuf(messageHex, 'eth_sign_message', 'message');
+    const priv = requirePortal(ctx.handles, portal);
+    const sig = personalSign(message, priv);
+    const sigHex = ('0x' + sig.toString('hex'));
+    ctx.audit.append({
+        kind: 'eth_sign_message',
+        portal,
+        payload: { message: messageHex },
+        decision: 'allow',
+        sig: sigHex,
+    });
+    return { signature: sigHex };
+};
+function asTx(obj) {
+    const type = obj['type'];
+    if (type !== 'legacy' && type !== 'eip1559') {
+        throw new RpcMethodError(RPC_INVALID_PARAMS, `tx: type must be "legacy" or "eip1559"`);
+    }
+    const num = (key) => {
+        const v = obj[key];
+        if (typeof v === 'string') {
+            try {
+                return BigInt(v);
+            }
+            catch {
+                throw new RpcMethodError(RPC_INVALID_PARAMS, `tx: ${key} not a valid bigint string`);
+            }
+        }
+        if (typeof v === 'number') {
+            if (!Number.isInteger(v) || v < 0) {
+                throw new RpcMethodError(RPC_INVALID_PARAMS, `tx: ${key} must be a non-negative integer`);
+            }
+            return BigInt(v);
+        }
+        throw new RpcMethodError(RPC_INVALID_PARAMS, `tx: ${key} must be number or decimal string`);
+    };
+    const to = obj['to'];
+    if (to !== null && typeof to !== 'string') {
+        throw new RpcMethodError(RPC_INVALID_PARAMS, `tx: to must be 0x address or null`);
+    }
+    if (typeof to === 'string' && !/^0x[0-9a-fA-F]{40}$/.test(to)) {
+        throw new RpcMethodError(RPC_INVALID_PARAMS, `tx: to must be 0x-prefixed 20-byte address`);
+    }
+    const data = obj['data'];
+    if (typeof data !== 'string' || !/^0x[0-9a-fA-F]*$/.test(data)) {
+        throw new RpcMethodError(RPC_INVALID_PARAMS, `tx: data must be 0x-prefixed hex`);
+    }
+    if (type === 'legacy') {
+        const tx = {
+            type: 'legacy',
+            chainId: num('chainId'),
+            nonce: num('nonce'),
+            gasPrice: num('gasPrice'),
+            gasLimit: num('gasLimit'),
+            to: to,
+            value: num('value'),
+            data: data,
+        };
+        return tx;
+    }
+    // eip1559
+    const accessListRaw = obj['accessList'];
+    let accessList;
+    if (accessListRaw === undefined) {
+        accessList = [];
+    }
+    else if (Array.isArray(accessListRaw)) {
+        accessList = accessListRaw.map((item, i) => {
+            if (typeof item !== 'object' || item === null || Array.isArray(item)) {
+                throw new RpcMethodError(RPC_INVALID_PARAMS, `tx: accessList[${i}] must be object`);
+            }
+            const it = item;
+            const addr = it['address'];
+            const keys = it['storageKeys'];
+            if (typeof addr !== 'string' || !/^0x[0-9a-fA-F]{40}$/.test(addr)) {
+                throw new RpcMethodError(RPC_INVALID_PARAMS, `tx: accessList[${i}].address`);
+            }
+            if (!Array.isArray(keys)) {
+                throw new RpcMethodError(RPC_INVALID_PARAMS, `tx: accessList[${i}].storageKeys must be array`);
+            }
+            for (const k of keys) {
+                if (typeof k !== 'string' || !/^0x[0-9a-fA-F]{64}$/.test(k)) {
+                    throw new RpcMethodError(RPC_INVALID_PARAMS, `tx: accessList[${i}].storageKeys[*]`);
+                }
+            }
+            return { address: addr, storageKeys: keys };
+        });
+    }
+    else {
+        throw new RpcMethodError(RPC_INVALID_PARAMS, `tx: accessList must be array or omitted`);
+    }
+    const tx = {
+        type: 'eip1559',
+        chainId: num('chainId'),
+        nonce: num('nonce'),
+        maxPriorityFeePerGas: num('maxPriorityFeePerGas'),
+        maxFeePerGas: num('maxFeePerGas'),
+        gasLimit: num('gasLimit'),
+        to: to,
+        value: num('value'),
+        data: data,
+        accessList,
+    };
+    return tx;
+}
+const sigil_eth_sign_transaction = (params, ctx) => {
+    const obj = asObject(params, 'eth_sign_transaction');
+    const portal = asString(obj, 'portal', 'eth_sign_transaction');
+    const txObj = obj['tx'];
+    if (typeof txObj !== 'object' || txObj === null || Array.isArray(txObj)) {
+        throw new RpcMethodError(RPC_INVALID_PARAMS, 'eth_sign_transaction: tx must be an object');
+    }
+    const tx = asTx(txObj);
+    const priv = requirePortal(ctx.handles, portal);
+    const signed = signTransaction(tx, priv);
+    ctx.audit.append({
+        kind: 'eth_sign_transaction',
+        portal,
+        payload: { tx: txObj },
+        decision: 'allow',
+        sig: signed,
+    });
+    return { signed };
+};
+const sigil_eth_sign_typed_data = (params, ctx) => {
+    const obj = asObject(params, 'eth_sign_typed_data');
+    const portal = asString(obj, 'portal', 'eth_sign_typed_data');
+    const td = obj['typedData'];
+    if (typeof td !== 'object' || td === null || Array.isArray(td)) {
+        throw new RpcMethodError(RPC_INVALID_PARAMS, 'eth_sign_typed_data: typedData must be object');
+    }
+    // We trust the typed-data shape minimally — sign-typed.ts will throw
+    // on missing fields; we wrap that as INVALID_PARAMS for the caller.
+    const priv = requirePortal(ctx.handles, portal);
+    let sig;
+    try {
+        sig = signTypedData(td, priv);
+    }
+    catch (err) {
+        throw new RpcMethodError(RPC_INVALID_PARAMS, `eth_sign_typed_data: ${err.message}`);
+    }
+    const sigHex = ('0x' + sig.toString('hex'));
+    ctx.audit.append({
+        kind: 'eth_sign_typed_data',
+        portal,
+        payload: { typedData: td },
+        decision: 'allow',
+        sig: sigHex,
+    });
+    return { signature: sigHex };
+};
+export const METHODS = Object.freeze({
+    sigil_list_portals,
+    sigil_eth_sign_message,
+    sigil_eth_sign_transaction,
+    sigil_eth_sign_typed_data,
+});
+/**
+ * Dispatch a parsed RPC request to the matching method.
+ * Throws RpcMethodError on user errors or method-not-found, or other Error
+ * for unexpected internals.
+ */
+export function dispatch(method, params, ctx) {
+    const handler = METHODS[method];
+    if (!handler) {
+        throw new RpcMethodError(RPC_METHOD_NOT_FOUND, `method not found: ${method}`);
+    }
+    return handler(params, ctx);
+}
+//# sourceMappingURL=methods.js.map

package/dist/src/daemon/methods.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"methods.js","sourceRoot":"","sources":["../../../src/daemon/methods.ts"],"names":[],"mappings":"AAGA,OAAO,EAIL,YAAY,EAEZ,eAAe,EACf,aAAa,GAEd,MAAM,iBAAiB,CAAC;AACzB,OAAO,EACL,kBAAkB,EAClB,oBAAoB,EACpB,oBAAoB,GACrB,MAAM,UAAU,CAAC;AAGlB,MAAM,OAAO,cAAe,SAAQ,KAAK;IAC9B,IAAI,CAAS;IACb,IAAI,CAAU;IACvB,YAAY,IAAY,EAAE,OAAe,EAAE,IAAc;QACvD,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,gBAAgB,CAAC;QAC7B,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;QACjB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;IACnB,CAAC;CACF;AASD,8EAA8E;AAC9E,UAAU;AACV,8EAA8E;AAE9E,SAAS,QAAQ,CAAC,MAAe,EAAE,UAAkB;IACnD,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,MAAM,KAAK,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;QAC3E,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,GAAG,UAAU,4BAA4B,CAAC,CAAC;IAC1F,CAAC;IACD,OAAO,MAAiC,CAAC;AAC3C,CAAC;AAED,SAAS,QAAQ,CAAC,GAA4B,EAAE,GAAW,EAAE,UAAkB;IAC7E,MAAM,CAAC,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC;IACnB,IAAI,OAAO,CAAC,KAAK,QAAQ,EAAE,CAAC;QAC1B,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,GAAG,UAAU,KAAK,GAAG,mBAAmB,CAAC,CAAC;IACzF,CAAC;IACD,OAAO,CAAC,CAAC;AACX,CAAC;AAED,SAAS,QAAQ,CAAC,CAAS,EAAE,UAAkB,EAAE,GAAW;IAC1D,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC;QAChC,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,GAAG,UAAU,KAAK,GAAG,0BAA0B,CAAC,CAAC;IAChG,CAAC;IACD,OAAO,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC;AACxC,CAAC;AAED,SAAS,aAAa,CAAC,OAAoB,EAAE,MAAc;IACzD,MAAM,EAAE,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IAC/B,IAAI,CAAC,EAAE,EAAE,CAAC;QACR,MAAM,IAAI,cAAc,CAAC,oBAAoB,EAAE,WAAW,MAAM,aAAa,CAAC,CAAC;IACjF,CAAC;IACD,OAAO,EAAE,CAAC,KAAK,EAAE,CAAC;AACpB,CAAC;AAED,8EAA8E;AAC9E,UAAU;AACV,8EAA8E;AAE9E,MAAM,kBAAkB,GAAkB,CAAC,OAAO,EAAE,GAAG,EAAE,EAAE;IACzD,OAAO,EAAE,OAAO,EAAE,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC;AACzC,CAAC,CAAC;AAEF,MAAM,sBAAsB,GAAkB,CAAC,MAAM,EAAE,GAAG,EAAE,EAAE;IAC5D,MAAM,GAAG,GAAG,QAAQ,CAAC,MAAM,EAAE,kBAAkB,CAAC,CAAC;IACjD,MAAM,MAAM,GAAG,QAAQ,CAAC,GAAG,EAAE,QAAQ,EAAE,kBAAkB,CAAC,CAAC;IAC3D,MAAM,UAAU,GAAG,QAAQ,CAAC,GAAG,EAAE,SAAS,EAAE,kBAAkB,CAAC,CAAC;IAChE,MAAM,OAAO,GAAG,QAAQ,CAAC,UAAU,EAAE,kBAAkB,EAAE,SAAS,CAAC,CAAC;IACpE,MAAM,IAAI,GAAG,aAAa,CAAC,GAAG,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAChD,MAAM,GAAG,GAAG,YAAY,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;IACxC,MAAM,MAAM,GAAG,CAAC,IAAI,GAAG,GAAG,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAQ,CAAC;IACnD,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC;QACf,IAAI,EAAE,kBAAkB;QACxB,MAAM;QACN,OAAO,EAAE,EAAE,OAAO,EAAE,UAAU,EAAE;QAChC,QAAQ,EAAE,OAAO;QACjB,GAAG,EAAE,MAAM;KACZ,CAAC,CAAC;IACH,OAAO,EAAE,SAAS,EAAE,MAAM,EAAE,CAAC;AAC/B,CAAC,CAAC;AAEF,SAAS,IAAI,CAAC,GAA4B;IACxC,MAAM,IAAI,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC;IACzB,IAAI,IAAI,KAAK,QAAQ,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;QAC5C,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,wCAAwC,CAAC,CAAC;IACzF,CAAC;IAED,MAAM,GAAG,GAAG,CAAC,GAAW,EAAU,EAAE;QAClC,MAAM,CAAC,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC;QACnB,IAAI,OAAO,CAAC,KAAK,QAAQ,EAAE,CAAC;YAC1B,IAAI,CAAC;gBACH,OAAO,MAAM,CAAC,CAAC,CAAC,CAAC;YACnB,CAAC;YAAC,MAAM,CAAC;gBACP,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,OAAO,GAAG,4BAA4B,CAAC,CAAC;YACvF,CAAC;QACH,CAAC;QACD,IAAI,OAAO,CAAC,KAAK,QAAQ,EAAE,CAAC;YAC1B,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;gBAClC,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,OAAO,GAAG,iCAAiC,CAAC,CAAC;YAC5F,CAAC;YACD,OAAO,MAAM,CAAC,CAAC,CAAC,CAAC;QACnB,CAAC;QACD,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,OAAO,GAAG,mCAAmC,CAAC,CAAC;IAC9F,CAAC,CAAC;IAEF,MAAM,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC;IACrB,IAAI,EAAE,KAAK,IAAI,IAAI,OAAO,EAAE,KAAK,QAAQ,EAAE,CAAC;QAC1C,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,mCAAmC,CAAC,CAAC;IACpF,CAAC;IACD,IAAI,OAAO,EAAE,KAAK,QAAQ,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,CAAC;QAC9D,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,4CAA4C,CAAC,CAAC;IAC7F,CAAC;IAED,MAAM,IAAI,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC;IACzB,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;QAC/D,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,kCAAkC,CAAC,CAAC;IACnF,CAAC;IAED,IAAI,IAAI,KAAK,QAAQ,EAAE,CAAC;QACtB,MAAM,EAAE,GAAa;YACnB,IAAI,EAAE,QAAQ;YACd,OAAO,EAAE,GAAG,CAAC,SAAS,CAAC;YACvB,KAAK,EAAE,GAAG,CAAC,OAAO,CAAC;YACnB,QAAQ,EAAE,GAAG,CAAC,UAAU,CAAC;YACzB,QAAQ,EAAE,GAAG,CAAC,UAAU,CAAC;YACzB,EAAE,EAAE,EAA0B;YAC9B,KAAK,EAAE,GAAG,CAAC,OAAO,CAAC;YACnB,IAAI,EAAE,IAAqB;SAC5B,CAAC;QACF,OAAO,EAAE,CAAC;IACZ,CAAC;IACD,UAAU;IACV,MAAM,aAAa,GAAG,GAAG,CAAC,YAAY,CAAC,CAAC;IACxC,IAAI,UAAmC,CAAC;IACxC,IAAI,aAAa,KAAK,SAAS,EAAE,CAAC;QAChC,UAAU,GAAG,EAAE,CAAC;IAClB,CAAC;SAAM,IAAI,KAAK,CAAC,OAAO,CAAC,aAAa,CAAC,EAAE,CAAC;QACxC,UAAU,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,EAAE,EAAE;YACzC,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,IAAI,KAAK,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;gBACrE,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;YACtF,CAAC;YACD,MAAM,EAAE,GAAG,IAA+B,CAAC;YAC3C,MAAM,IAAI,GAAG,EAAE,CAAC,SAAS,CAAC,CAAC;YAC3B,MAAM,IAAI,GAAG,EAAE,CAAC,aAAa,CAAC,CAAC;YAC/B,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;gBAClE,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,kBAAkB,CAAC,WAAW,CAAC,CAAC;YAC/E,CAAC;YACD,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;gBACzB,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,kBAAkB,CAAC,6BAA6B,CAAC,CAAC;YACjG,CAAC;YACD,KAAK,MAAM,CAAC,IAAI,IAAI,EAAE,CAAC;gBACrB,IAAI,OAAO,CAAC,KAAK,QAAQ,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC;oBAC5D,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;gBACtF,CAAC;YACH,CAAC;YACD,OAAO,EAAE,OAAO,EAAE,IAAqB,EAAE,WAAW,EAAE,IAAuB,EAAE,CAAC;QAClF,CAAC,CAAC,CAAC;IACL,CAAC;SAAM,CAAC;QACN,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,yCAAyC,CAAC,CAAC;IAC1F,CAAC;IACD,MAAM,EAAE,GAAc;QACpB,IAAI,EAAE,SAAS;QACf,OAAO,EAAE,GAAG,CAAC,SAAS,CAAC;QACvB,KAAK,EAAE,GAAG,CAAC,OAAO,CAAC;QACnB,oBAAoB,EAAE,GAAG,CAAC,sBAAsB,CAAC;QACjD,YAAY,EAAE,GAAG,CAAC,cAAc,CAAC;QACjC,QAAQ,EAAE,GAAG,CAAC,UAAU,CAAC;QACzB,EAAE,EAAE,EAA0B;QAC9B,KAAK,EAAE,GAAG,CAAC,OAAO,CAAC;QACnB,IAAI,EAAE,IAAqB;QAC3B,UAAU;KACX,CAAC;IACF,OAAO,EAAE,CAAC;AACZ,CAAC;AAED,MAAM,0BAA0B,GAAkB,CAAC,MAAM,EAAE,GAAG,EAAE,EAAE;IAChE,MAAM,GAAG,GAAG,QAAQ,CAAC,MAAM,EAAE,sBAAsB,CAAC,CAAC;IACrD,MAAM,MAAM,GAAG,QAAQ,CAAC,GAAG,EAAE,QAAQ,EAAE,sBAAsB,CAAC,CAAC;IAC/D,MAAM,KAAK,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC;IACxB,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QACxE,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,4CAA4C,CAAC,CAAC;IAC7F,CAAC;IACD,MAAM,EAAE,GAAG,IAAI,CAAC,KAAgC,CAAC,CAAC;IAClD,MAAM,IAAI,GAAG,aAAa,CAAC,GAAG,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAChD,MAAM,MAAM,GAAG,eAAe,CAAC,EAAE,EAAE,IAAI,CAAC,CAAC;IACzC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC;QACf,IAAI,EAAE,sBAAsB;QAC5B,MAAM;QACN,OAAO,EAAE,EAAE,EAAE,EAAE,KAAK,EAAE;QACtB,QAAQ,EAAE,OAAO;QACjB,GAAG,EAAE,MAAM;KACZ,CAAC,CAAC;IACH,OAAO,EAAE,MAAM,EAAE,CAAC;AACpB,CAAC,CAAC;AAEF,MAAM,yBAAyB,GAAkB,CAAC,MAAM,EAAE,GAAG,EAAE,EAAE;IAC/D,MAAM,GAAG,GAAG,QAAQ,CAAC,MAAM,EAAE,qBAAqB,CAAC,CAAC;IACpD,MAAM,MAAM,GAAG,QAAQ,CAAC,GAAG,EAAE,QAAQ,EAAE,qBAAqB,CAAC,CAAC;IAC9D,MAAM,EAAE,GAAG,GAAG,CAAC,WAAW,CAAC,CAAC;IAC5B,IAAI,OAAO,EAAE,KAAK,QAAQ,IAAI,EAAE,KAAK,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC,EAAE,CAAC;QAC/D,MAAM,IAAI,cAAc,CAAC,kBAAkB,EAAE,+CAA+C,CAAC,CAAC;IAChG,CAAC;IACD,qEAAqE;IACrE,oEAAoE;IACpE,MAAM,IAAI,GAAG,aAAa,CAAC,GAAG,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAChD,IAAI,GAAW,CAAC;IAChB,IAAI,CAAC;QACH,GAAG,GAAG,aAAa,CAAC,EAAe,EAAE,IAAI,CAAC,CAAC;IAC7C,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,IAAI,cAAc,CACtB,kBAAkB,EAClB,wBAAyB,GAAa,CAAC,OAAO,EAAE,CACjD,CAAC;IACJ,CAAC;IACD,MAAM,MAAM,GAAG,CAAC,IAAI,GAAG,GAAG,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAQ,CAAC;IACnD,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC;QACf,IAAI,EAAE,qBAAqB;QAC3B,MAAM;QACN,OAAO,EAAE,EAAE,SAAS,EAAE,EAAE,EAAE;QAC1B,QAAQ,EAAE,OAAO;QACjB,GAAG,EAAE,MAAM;KACZ,CAAC,CAAC;IACH,OAAO,EAAE,SAAS,EAAE,MAAM,EAAE,CAAC;AAC/B,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,OAAO,GAA4C,MAAM,CAAC,MAAM,CAAC;IAC5E,kBAAkB;IAClB,sBAAsB;IACtB,0BAA0B;IAC1B,yBAAyB;CAC1B,CAAC,CAAC;AAEH;;;;GAIG;AACH,MAAM,UAAU,QAAQ,CAAC,MAAc,EAAE,MAAe,EAAE,GAAkB;IAC1E,MAAM,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAChC,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,MAAM,IAAI,cAAc,CAAC,oBAAoB,EAAE,qBAAqB,MAAM,EAAE,CAAC,CAAC;IAChF,CAAC;IACD,OAAO,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;AAC9B,CAAC"}

package/dist/src/daemon/passphrase.d.ts

@@ -0,0 +1,14 @@
+import type { ReadStream } from 'node:tty';
+/**
+ * Read a passphrase from a TTY without echoing it. Returns the passphrase as a
+ * Buffer so the caller can zeroize it after use.
+ *
+ * The implementation reads byte-by-byte in raw mode, handling Enter, backspace,
+ * and Ctrl-C. It is intentionally testable: pass a stdin/stderr override.
+ */
+export interface ReadPassphraseDeps {
+    stdin?: ReadStream;
+    stderr?: NodeJS.WritableStream;
+}
+export declare function readPassphrase(prompt: string, deps?: ReadPassphraseDeps): Promise<Buffer>;
+//# sourceMappingURL=passphrase.d.ts.map

package/dist/src/daemon/passphrase.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"passphrase.d.ts","sourceRoot":"","sources":["../../../src/daemon/passphrase.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,UAAU,CAAC;AAE3C;;;;;;GAMG;AACH,MAAM,WAAW,kBAAkB;IACjC,KAAK,CAAC,EAAE,UAAU,CAAC;IACnB,MAAM,CAAC,EAAE,MAAM,CAAC,cAAc,CAAC;CAChC;AAED,wBAAgB,cAAc,CAAC,MAAM,EAAE,MAAM,EAAE,IAAI,GAAE,kBAAuB,GAAG,OAAO,CAAC,MAAM,CAAC,CAoD7F"}

package/dist/src/daemon/passphrase.js

@@ -0,0 +1,49 @@
+export function readPassphrase(prompt, deps = {}) {
+    const stdin = deps.stdin ?? process.stdin;
+    const stderr = deps.stderr ?? process.stderr;
+    if (!stdin.isTTY) {
+        return Promise.reject(new Error('readPassphrase: stdin is not a TTY; pipe in via process substitution or use --passphrase-fd'));
+    }
+    stderr.write(prompt);
+    const wasRaw = stdin.isRaw;
+    stdin.setRawMode(true);
+    stdin.resume();
+    return new Promise((resolve, reject) => {
+        let buf = '';
+        const onData = (chunk) => {
+            const s = chunk.toString('utf8');
+            for (const c of s) {
+                const code = c.charCodeAt(0);
+                if (code === 0x03) {
+                    // Ctrl-C
+                    cleanup();
+                    stderr.write('\n');
+                    reject(new Error('passphrase entry aborted'));
+                    return;
+                }
+                if (code === 0x0d || code === 0x0a) {
+                    // Enter
+                    cleanup();
+                    stderr.write('\n');
+                    resolve(Buffer.from(buf, 'utf8'));
+                    return;
+                }
+                if (code === 0x7f || code === 0x08) {
+                    // Backspace
+                    buf = buf.slice(0, -1);
+                    continue;
+                }
+                if (code < 0x20)
+                    continue;
+                buf += c;
+            }
+        };
+        const cleanup = () => {
+            stdin.removeListener('data', onData);
+            stdin.pause();
+            stdin.setRawMode(wasRaw);
+        };
+        stdin.on('data', onData);
+    });
+}
+//# sourceMappingURL=passphrase.js.map

package/dist/src/daemon/passphrase.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"passphrase.js","sourceRoot":"","sources":["../../../src/daemon/passphrase.ts"],"names":[],"mappings":"AAcA,MAAM,UAAU,cAAc,CAAC,MAAc,EAAE,OAA2B,EAAE;IAC1E,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,IAAK,OAAO,CAAC,KAAoB,CAAC;IAC1D,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,IAAI,OAAO,CAAC,MAAM,CAAC;IAE7C,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC;QACjB,OAAO,OAAO,CAAC,MAAM,CACnB,IAAI,KAAK,CAAC,6FAA6F,CAAC,CACzG,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAErB,MAAM,MAAM,GAAG,KAAK,CAAC,KAAK,CAAC;IAC3B,KAAK,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;IACvB,KAAK,CAAC,MAAM,EAAE,CAAC;IAEf,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,IAAI,GAAG,GAAG,EAAE,CAAC;QACb,MAAM,MAAM,GAAG,CAAC,KAAa,EAAQ,EAAE;YACrC,MAAM,CAAC,GAAG,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;YACjC,KAAK,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC;gBAClB,MAAM,IAAI,GAAG,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC;gBAC7B,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;oBAClB,SAAS;oBACT,OAAO,EAAE,CAAC;oBACV,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;oBACnB,MAAM,CAAC,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAC,CAAC;oBAC9C,OAAO;gBACT,CAAC;gBACD,IAAI,IAAI,KAAK,IAAI,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;oBACnC,QAAQ;oBACR,OAAO,EAAE,CAAC;oBACV,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;oBACnB,OAAO,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC,CAAC;oBAClC,OAAO;gBACT,CAAC;gBACD,IAAI,IAAI,KAAK,IAAI,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;oBACnC,YAAY;oBACZ,GAAG,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;oBACvB,SAAS;gBACX,CAAC;gBACD,IAAI,IAAI,GAAG,IAAI;oBAAE,SAAS;gBAC1B,GAAG,IAAI,CAAC,CAAC;YACX,CAAC;QACH,CAAC,CAAC;QACF,MAAM,OAAO,GAAG,GAAS,EAAE;YACzB,KAAK,CAAC,cAAc,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;YACrC,KAAK,CAAC,KAAK,EAAE,CAAC;YACd,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;QAC3B,CAAC,CAAC;QACF,KAAK,CAAC,EAAE,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC3B,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/src/daemon/rpc.d.ts

@@ -0,0 +1,61 @@
+/**
+ * JSON-RPC 2.0 over newline-delimited JSON (NDJSON).
+ * Pure functions only — no IO. The server in server.ts wires this onto sockets.
+ *
+ * We use the strict JSON-RPC 2.0 envelope: every request has `jsonrpc: "2.0"`,
+ * a method, and either an id (for requests expecting a response) or no id (for
+ * notifications, which sigil currently rejects since every sign decision needs
+ * to round-trip through the audit log).
+ */
+export declare const RPC_VERSION = "2.0";
+export type RpcId = string | number | null;
+export interface RpcRequest {
+    jsonrpc: '2.0';
+    id: RpcId;
+    method: string;
+    params: unknown;
+}
+export interface RpcSuccess {
+    jsonrpc: '2.0';
+    id: RpcId;
+    result: unknown;
+}
+export interface RpcErrorObject {
+    code: number;
+    message: string;
+    data?: unknown;
+}
+export interface RpcError {
+    jsonrpc: '2.0';
+    id: RpcId;
+    error: RpcErrorObject;
+}
+export type RpcResponse = RpcSuccess | RpcError;
+export declare const RPC_PARSE_ERROR = -32700;
+export declare const RPC_INVALID_REQUEST = -32600;
+export declare const RPC_METHOD_NOT_FOUND = -32601;
+export declare const RPC_INVALID_PARAMS = -32602;
+export declare const RPC_INTERNAL_ERROR = -32603;
+export declare const RPC_PORTAL_NOT_FOUND = -32000;
+export declare const RPC_POLICY_DENIED = -32001;
+export declare const RPC_INVALID_PAYLOAD = -32002;
+export type ParseResult = {
+    kind: 'request';
+    request: RpcRequest;
+} | {
+    kind: 'parse_error';
+} | {
+    kind: 'invalid';
+    id: RpcId;
+    reason: string;
+};
+/**
+ * Parse a single NDJSON line into a JSON-RPC request.
+ * Returns either a valid request, a parse_error (if the line is not JSON), or
+ * an invalid envelope along with the id that should be echoed in the error
+ * response (which is null if the id couldn't be extracted).
+ */
+export declare function parseRequest(line: string): ParseResult;
+export declare function encodeResponse(id: RpcId, result: unknown): string;
+export declare function encodeError(id: RpcId, code: number, message: string, data?: unknown): string;
+//# sourceMappingURL=rpc.d.ts.map

package/dist/src/daemon/rpc.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rpc.d.ts","sourceRoot":"","sources":["../../../src/daemon/rpc.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,eAAO,MAAM,WAAW,QAAQ,CAAC;AAEjC,MAAM,MAAM,KAAK,GAAG,MAAM,GAAG,MAAM,GAAG,IAAI,CAAC;AAE3C,MAAM,WAAW,UAAU;IACzB,OAAO,EAAE,KAAK,CAAC;IACf,EAAE,EAAE,KAAK,CAAC;IACV,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,OAAO,CAAC;CACjB;AAED,MAAM,WAAW,UAAU;IACzB,OAAO,EAAE,KAAK,CAAC;IACf,EAAE,EAAE,KAAK,CAAC;IACV,MAAM,EAAE,OAAO,CAAC;CACjB;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,OAAO,CAAC;CAChB;AAED,MAAM,WAAW,QAAQ;IACvB,OAAO,EAAE,KAAK,CAAC;IACf,EAAE,EAAE,KAAK,CAAC;IACV,KAAK,EAAE,cAAc,CAAC;CACvB;AAED,MAAM,MAAM,WAAW,GAAG,UAAU,GAAG,QAAQ,CAAC;AAGhD,eAAO,MAAM,eAAe,SAAS,CAAC;AACtC,eAAO,MAAM,mBAAmB,SAAS,CAAC;AAC1C,eAAO,MAAM,oBAAoB,SAAS,CAAC;AAC3C,eAAO,MAAM,kBAAkB,SAAS,CAAC;AACzC,eAAO,MAAM,kBAAkB,SAAS,CAAC;AAGzC,eAAO,MAAM,oBAAoB,SAAS,CAAC;AAC3C,eAAO,MAAM,iBAAiB,SAAS,CAAC;AACxC,eAAO,MAAM,mBAAmB,SAAS,CAAC;AAE1C,MAAM,MAAM,WAAW,GACnB;IAAE,IAAI,EAAE,SAAS,CAAC;IAAC,OAAO,EAAE,UAAU,CAAA;CAAE,GACxC;IAAE,IAAI,EAAE,aAAa,CAAA;CAAE,GACvB;IAAE,IAAI,EAAE,SAAS,CAAC;IAAC,EAAE,EAAE,KAAK,CAAC;IAAC,MAAM,EAAE,MAAM,CAAA;CAAE,CAAC;AAEnD;;;;;GAKG;AACH,wBAAgB,YAAY,CAAC,IAAI,EAAE,MAAM,GAAG,WAAW,CAuCtD;AAED,wBAAgB,cAAc,CAAC,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,GAAG,MAAM,CAGjE;AAED,wBAAgB,WAAW,CAAC,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,OAAO,GAAG,MAAM,CAI5F"}