featherChat

manawenuz/featherChat

Fork 0

Commit Graph

Author	SHA1	Message	Date
Siavash Sameni	37a4c3c54f	Seed encryption at rest (Argon2id + ChaCha20-Poly1305) + HW wallet plan keystore.rs: - Passphrase prompted on init (hidden input, echo disabled) - Empty passphrase = plaintext (for testing/scripting) - Encrypted format: MAGIC("WZS1") + salt(16) + nonce(12) + ciphertext(48) - Argon2id for key derivation (memory-hard, GPU-resistant) - ChaCha20-Poly1305 AEAD for encryption - Backwards compatible: auto-detects plaintext vs encrypted on load - Keys zeroized after use DESIGN.md: - Added hardware wallet section (Ledger/Trezor via USB/BT HID) - Ed25519 signing delegated to device, seed never exported - BIP44 derivation path m/44'/1234'/0' - Phase 2 feature, protocol unchanged Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-27 07:45:55 +04:00
Siavash Sameni	82f5061aa1	Wire E2E messaging: send, recv, session persistence, auto-registration CLI client (warzone): - `warzone init` now generates pre-key bundle (1 SPK + 10 OTPKs), stores secrets in local sled DB, saves bundle for server registration - `warzone register -s <url>` registers bundle with server - `warzone send <fp> <msg> -s <url>` full E2E flow: - Auto-registers bundle on first use - Fetches recipient's pre-key bundle - Performs X3DH key exchange (first message) or uses existing session - Encrypts with Double Ratchet - Sends WireMessage envelope to server - `warzone recv -s <url>` polls and decrypts: - Handles KeyExchange messages (X3DH respond + ratchet init as Bob) - Handles Message (decrypt with existing ratchet session) - Saves session state after each decrypt Wire protocol (WireMessage enum): - KeyExchange variant: sender identity, ephemeral key, OTPK id, ratchet msg - Message variant: sender fingerprint + ratchet message Session persistence: - Ratchet state serialized with bincode, stored in sled (~/.warzone/db) - Pre-key secrets stored in sled, OTPKs consumed on use - Sessions keyed by peer fingerprint Networking (net.rs): - register_bundle, fetch_bundle, send_message, poll_messages - JSON API over HTTP, bundles serialized with bincode + base64 Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-26 21:40:21 +04:00
Siavash Sameni	651396fa13	Scaffold Rust workspace: warzone-protocol, server, client, mule 4 crates, all compile. 16/17 tests pass. warzone-protocol (core crypto): - Seed-based identity (Ed25519 + X25519 from 32-byte seed via HKDF) - BIP39 mnemonic encode/decode (24 words) - Fingerprint type (SHA-256 truncated, displayed as xxxx:xxxx:xxxx:xxxx) - ChaCha20-Poly1305 AEAD encrypt/decrypt with random nonce - HKDF-SHA256 key derivation - Pre-key bundle generation with Ed25519 signatures - X3DH key exchange (simplified, needs X25519 identity key in bundle) - Double Ratchet: full implementation with DH ratchet, chain ratchet, out-of-order message handling via skipped keys cache - Message format (WarzoneMessage envelope + RatchetHeader) - Session type with ratchet state - Storage trait definitions (PreKeyStore, SessionStore, MessageQueue) warzone-server (axum): - sled database (keys, messages, one-time pre-keys) - Routes: /v1/health, /v1/keys/register, /v1/keys/{fp}, /v1/messages/send, /v1/messages/poll/{fp}, /v1/messages/{id}/ack warzone-client (CLI): - `warzone init` — generate seed, show mnemonic, save to ~/.warzone/ - `warzone recover <words>` — restore from mnemonic - `warzone info` — show fingerprint and keys - Seed storage at ~/.warzone/identity.seed (600 perms) - Stubs for send, recv, chat commands warzone-mule: Phase 4 placeholder Known issue: X3DH test fails (initiate/respond use different DH ops due to missing X25519 identity key in bundle). Fix in next step. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-26 21:27:48 +04:00

Author

SHA1

Message

Date

Siavash Sameni

37a4c3c54f

Seed encryption at rest (Argon2id + ChaCha20-Poly1305) + HW wallet plan

keystore.rs:
- Passphrase prompted on init (hidden input, echo disabled)
- Empty passphrase = plaintext (for testing/scripting)
- Encrypted format: MAGIC("WZS1") + salt(16) + nonce(12) + ciphertext(48)
- Argon2id for key derivation (memory-hard, GPU-resistant)
- ChaCha20-Poly1305 AEAD for encryption
- Backwards compatible: auto-detects plaintext vs encrypted on load
- Keys zeroized after use

DESIGN.md:
- Added hardware wallet section (Ledger/Trezor via USB/BT HID)
- Ed25519 signing delegated to device, seed never exported
- BIP44 derivation path m/44'/1234'/0'
- Phase 2 feature, protocol unchanged

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-27 07:45:55 +04:00

Siavash Sameni

82f5061aa1

Wire E2E messaging: send, recv, session persistence, auto-registration

CLI client (warzone):
- `warzone init` now generates pre-key bundle (1 SPK + 10 OTPKs),
  stores secrets in local sled DB, saves bundle for server registration
- `warzone register -s <url>` registers bundle with server
- `warzone send <fp> <msg> -s <url>` full E2E flow:
  - Auto-registers bundle on first use
  - Fetches recipient's pre-key bundle
  - Performs X3DH key exchange (first message) or uses existing session
  - Encrypts with Double Ratchet
  - Sends WireMessage envelope to server
- `warzone recv -s <url>` polls and decrypts:
  - Handles KeyExchange messages (X3DH respond + ratchet init as Bob)
  - Handles Message (decrypt with existing ratchet session)
  - Saves session state after each decrypt

Wire protocol (WireMessage enum):
- KeyExchange variant: sender identity, ephemeral key, OTPK id, ratchet msg
- Message variant: sender fingerprint + ratchet message

Session persistence:
- Ratchet state serialized with bincode, stored in sled (~/.warzone/db)
- Pre-key secrets stored in sled, OTPKs consumed on use
- Sessions keyed by peer fingerprint

Networking (net.rs):
- register_bundle, fetch_bundle, send_message, poll_messages
- JSON API over HTTP, bundles serialized with bincode + base64

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-26 21:40:21 +04:00

Siavash Sameni

651396fa13

Scaffold Rust workspace: warzone-protocol, server, client, mule

4 crates, all compile. 16/17 tests pass.

warzone-protocol (core crypto):
- Seed-based identity (Ed25519 + X25519 from 32-byte seed via HKDF)
- BIP39 mnemonic encode/decode (24 words)
- Fingerprint type (SHA-256 truncated, displayed as xxxx:xxxx:xxxx:xxxx)
- ChaCha20-Poly1305 AEAD encrypt/decrypt with random nonce
- HKDF-SHA256 key derivation
- Pre-key bundle generation with Ed25519 signatures
- X3DH key exchange (simplified, needs X25519 identity key in bundle)
- Double Ratchet: full implementation with DH ratchet, chain ratchet,
  out-of-order message handling via skipped keys cache
- Message format (WarzoneMessage envelope + RatchetHeader)
- Session type with ratchet state
- Storage trait definitions (PreKeyStore, SessionStore, MessageQueue)

warzone-server (axum):
- sled database (keys, messages, one-time pre-keys)
- Routes: /v1/health, /v1/keys/register, /v1/keys/{fp},
  /v1/messages/send, /v1/messages/poll/{fp}, /v1/messages/{id}/ack

warzone-client (CLI):
- `warzone init` — generate seed, show mnemonic, save to ~/.warzone/
- `warzone recover <words>` — restore from mnemonic
- `warzone info` — show fingerprint and keys
- Seed storage at ~/.warzone/identity.seed (600 perms)
- Stubs for send, recv, chat commands

warzone-mule: Phase 4 placeholder

Known issue: X3DH test fails (initiate/respond use different DH ops
due to missing X25519 identity key in bundle). Fix in next step.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-26 21:27:48 +04:00

3 Commits