Sterister
96a8c210b2
M-Hard 1: Cryptographic Hardening - constantTimeEqual, zeroize, randomUint32 on CryptoProvider - Fix Math.random() → crypto.randomUint32() for registrationId - Zero message keys and chain keys after use in ratchet.ts - Constant-time trust comparison in MemoryStorage + SQLiteStorage - Timing variance test catches early-exit regressions M-Hard 2: Self-Authenticated Prekey Server - Ed25519 signature verification on all write routes - signPayload/verifyPayload with canonical JSON, ±5 min replay window - Address validation (NFKC, alphanumeric + :_-.) - Global ShadeError → HTTP status mapping - ShadeFetchTransport signs requests when signingPrivateKey provided - Anonymous bundle fetches still allowed (read-only) M-Hard 3: Rate Limiting + DoS Protection - Token bucket rate limiter with pluggable store - Per-route limits: register 5/h/IP, fetch 60/min/IP, replenish 10/min/id - 64KB body size limit on POST - Retry-After header on 429 responses M-Hard 4: Auto-replenish + Fingerprints + Session Reset - Safety numbers (12 groups × 5 digits, Signal-style) - ensurePreKeyStock, resetSession, acceptIdentityChange - verifyRemoteIdentity for out-of-band comparison M-Hard 5: Identity Rotation with Grace Period - rotateIdentity archives old identity, generates fresh signed prekey - RetiredIdentity storage with addRetired/getRetired/pruneRetired - 7-day default grace period for decrypting old sessions - pruneExpiredIdentities for cleanup M-Hard 8: Error Hierarchy - New error types: Network, Storage, Validation, Timeout, RateLimit, Configuration, Unauthorized, Replay, IdentityRotation - All errors have stable SHADE_* codes - errorToHttpStatus for consistent HTTP mapping - toJSON() for network serialization 188 tests passing, zero failures. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
107 lines
3.9 KiB
TypeScript
107 lines
3.9 KiB
TypeScript
import type { StorageProvider, IdentityKeyPair, SignedPreKey, OneTimePreKey, SessionState, RetiredIdentity } from '@shade/core';
|
|
import { constantTimeEqual } from '@shade/core';
|
|
|
|
/**
|
|
* In-memory StorageProvider for testing and embedded use.
|
|
* All data is lost when the instance is garbage collected.
|
|
*/
|
|
export class MemoryStorage implements StorageProvider {
|
|
private identityKeyPair: IdentityKeyPair | null = null;
|
|
private registrationId: number = 0;
|
|
private signedPreKeys = new Map<number, SignedPreKey>();
|
|
private oneTimePreKeys = new Map<number, OneTimePreKey>();
|
|
private sessions = new Map<string, SessionState>();
|
|
private trustedIdentities = new Map<string, Uint8Array>();
|
|
private retiredIdentities: RetiredIdentity[] = [];
|
|
|
|
// ─── Identity ──────────────────────────────────────────────
|
|
|
|
async getIdentityKeyPair(): Promise<IdentityKeyPair | null> {
|
|
return this.identityKeyPair;
|
|
}
|
|
|
|
async saveIdentityKeyPair(keyPair: IdentityKeyPair): Promise<void> {
|
|
this.identityKeyPair = keyPair;
|
|
}
|
|
|
|
async getLocalRegistrationId(): Promise<number> {
|
|
return this.registrationId;
|
|
}
|
|
|
|
async saveLocalRegistrationId(id: number): Promise<void> {
|
|
this.registrationId = id;
|
|
}
|
|
|
|
// ─── Signed Pre-Keys ──────────────────────────────────────
|
|
|
|
async getSignedPreKey(keyId: number): Promise<SignedPreKey | null> {
|
|
return this.signedPreKeys.get(keyId) ?? null;
|
|
}
|
|
|
|
async saveSignedPreKey(key: SignedPreKey): Promise<void> {
|
|
this.signedPreKeys.set(key.keyId, key);
|
|
}
|
|
|
|
async removeSignedPreKey(keyId: number): Promise<void> {
|
|
this.signedPreKeys.delete(keyId);
|
|
}
|
|
|
|
// ─── One-Time Pre-Keys ────────────────────────────────────
|
|
|
|
async getOneTimePreKey(keyId: number): Promise<OneTimePreKey | null> {
|
|
return this.oneTimePreKeys.get(keyId) ?? null;
|
|
}
|
|
|
|
async saveOneTimePreKey(key: OneTimePreKey): Promise<void> {
|
|
this.oneTimePreKeys.set(key.keyId, key);
|
|
}
|
|
|
|
async removeOneTimePreKey(keyId: number): Promise<void> {
|
|
this.oneTimePreKeys.delete(keyId);
|
|
}
|
|
|
|
async getOneTimePreKeyCount(): Promise<number> {
|
|
return this.oneTimePreKeys.size;
|
|
}
|
|
|
|
// ─── Sessions ─────────────────────────────────────────────
|
|
|
|
async getSession(address: string): Promise<SessionState | null> {
|
|
return this.sessions.get(address) ?? null;
|
|
}
|
|
|
|
async saveSession(address: string, state: SessionState): Promise<void> {
|
|
this.sessions.set(address, state);
|
|
}
|
|
|
|
async removeSession(address: string): Promise<void> {
|
|
this.sessions.delete(address);
|
|
}
|
|
|
|
// ─── Trust ────────────────────────────────────────────────
|
|
|
|
async isTrustedIdentity(address: string, identityKey: Uint8Array): Promise<boolean> {
|
|
const stored = this.trustedIdentities.get(address);
|
|
if (!stored) return true; // TOFU: trust on first use
|
|
return constantTimeEqual(stored, identityKey);
|
|
}
|
|
|
|
async saveTrustedIdentity(address: string, identityKey: Uint8Array): Promise<void> {
|
|
this.trustedIdentities.set(address, identityKey);
|
|
}
|
|
|
|
// ─── Identity History ─────────────────────────────────────
|
|
|
|
async addRetiredIdentity(identity: RetiredIdentity): Promise<void> {
|
|
this.retiredIdentities.push(identity);
|
|
}
|
|
|
|
async getRetiredIdentities(): Promise<RetiredIdentity[]> {
|
|
return [...this.retiredIdentities];
|
|
}
|
|
|
|
async pruneRetiredIdentities(olderThan: number): Promise<void> {
|
|
this.retiredIdentities = this.retiredIdentities.filter((r) => r.retiredAt >= olderThan);
|
|
}
|
|
}
|