feat: Shade E2EE library — M1-M3 complete
Signal Protocol implementation with full X3DH + Double Ratchet:
- M1: Core types, CryptoProvider interface, KDF chain functions,
SubtleCrypto+noble/curves provider, MemoryStorage
- M2: X3DH key agreement (identity keys, signed prekeys, one-time
prekeys, bundle processing for both initiator and responder)
- M3: Double Ratchet (symmetric-key ratchet, DH ratchet, skipped
message key cache, out-of-order delivery, AAD-bound headers)
68 tests, 0 failures — including full integration test of
X3DH handshake → Double Ratchet conversation.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-09 20:08:19 +02:00
|
|
|
export { SubtleCryptoProvider } from './provider.js';
|
|
|
|
|
export { MemoryStorage } from './memory-storage.js';
|
2026-05-09 02:44:42 +02:00
|
|
|
export { ed25519PublicKeyFromSeed } from './ed25519-derive.js';
|
release(v4.0.0): Shade GA — V3.x consolidation + audit prep
V3.1 → V3.12 consolidated and tagged for the first GA release. Wire
format unchanged from 0.4.x — 4.0 peers interoperate with 0.4.x peers
byte-for-byte. The version bump is semantic: audit-cycle complete,
opt-in surface fully exposed, threat model refreshed for every new
surface.
Highlights:
- All 24 @shade/* packages bumped to 4.0.0 in lockstep.
- CHANGELOG 4.0.0 section is the canonical manifest of what landed.
- THREAT-MODEL extended (§10 fingerprint gates, §11 WebRTC P2P, §12
Web-Worker boundary) + residual-risks table refreshed.
- OpenAPI now covers all 27 routes: prekey, transfer, KT, inbox,
bridge, observer, /metrics, /healthz, /ready.
- MIGRATION 0.3.x → 4.0 documented + smoke-tested against
shade migrate-storage on a real SQLite DB.
- docs/audit/REVIEW-BUNDLE.md + SCOPE.md ready for external reviewer.
- scripts/soak.ts harness for the GA-stable 2-week soak window.
- All V*.md plans archived under docs/archive/ with Status: Done.
- Voice/Video carved out into V5.0; 4.0 audit focuses on the frozen
non-realtime stack.
Tests: TS 1000/1000 + Kotlin 11/11 cross-platform vectors green.
Docker: gt.zyon.no/stian/shade-prekey:4.0.0 builds and reports
version 4.0.0 on /health.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-03 18:35:35 +02:00
|
|
|
|
|
|
|
|
// ─── Web Workers crypto (V3.8) ────────────────────────────
|
|
|
|
|
export {
|
|
|
|
|
createWorkerCryptoProvider,
|
|
|
|
|
WorkerCryptoProvider,
|
|
|
|
|
WorkerStreamSender,
|
|
|
|
|
WorkerStreamReceiver,
|
|
|
|
|
} from './worker-client.js';
|
|
|
|
|
export type {
|
|
|
|
|
WorkerCryptoProviderOptions,
|
|
|
|
|
WorkerLike,
|
|
|
|
|
} from './worker-client.js';
|
|
|
|
|
export {
|
|
|
|
|
createEncryptStream,
|
|
|
|
|
createDecryptStream,
|
|
|
|
|
DEFAULT_STREAM_CHUNK_SIZE,
|
|
|
|
|
} from './worker-streams.js';
|
|
|
|
|
export type {
|
|
|
|
|
CreateEncryptStreamOptions,
|
|
|
|
|
CreateDecryptStreamOptions,
|
|
|
|
|
} from './worker-streams.js';
|
|
|
|
|
export { WORKER_PROTOCOL_VERSION } from './worker-protocol.js';
|