ef0b7b61f6
fix: Use wrapping arithmetic in PNG to avoid overflow
...
Use +% for wrapping addition to prevent debug panic on overflow.
Cast through u32 for multiplication to avoid u8 overflow.
Refs: RFC-0015
2026-02-03 17:50:08 +01:00
4bd581dd71
fix: Simplified transport_skins.zig to fix build
...
Remove complex WebSocket implementation temporarily.
Focus on getting clean compile first.
Refs: RFC-0015
2026-02-03 17:48:30 +01:00
44b37bc231
fix: Final Zig 0.15.2 syntax fixes
...
- duckdb.zig: Remove enum values (use default)
- png.zig: Mark unused bimodal params with _:
- transport_skins.zig: Mark probe params with _:
Refs: RFC-0015
2026-02-03 17:42:20 +01:00
924b330396
fix: Zig 0.15.2 unused parameter warnings
...
- png.zig: Fix sampleGamma signature with _: prefix
- duckdb.zig: Use explicit enum(u32) with values
- transport_skins.zig: Use _: prefix for unused params
All tests should now compile without unused parameter errors.
Refs: RFC-0015
2026-02-03 17:37:43 +01:00
5c04aa3a37
fix: Zig 0.15.2 type casts and enum syntax
...
- png.zig: Use @floatFromInt for u8->f64 conversions
- png.zig: Use @as(u32, ...) for enumFromInt
- png.zig: Mark unused Gamma parameters
- duckdb.zig: Simplify enum
Refs: RFC-0015
2026-02-03 17:30:48 +01:00
5dce8e0880
fix: More Zig 0.15.2 syntax fixes
...
- png.zig: Remove crypto dependency, simple XOR key derivation
- png.zig: Fix type casts for u16/u32 calculations
- transport_skins.zig: Replace inline else in deinit
- duckdb.zig: Simplify enum definition
- build.zig: Remove crypto import for png module
Refs: RFC-0015
2026-02-03 17:29:07 +01:00
0e21a5340c
fix: Zig 0.15.2 syntax errors in PNG, skins, feed
...
- png.zig: Replace @pow with std.math.pow, fix variable names
- png.zig: Add crypto module import via build.zig
- transport_skins.zig: Replace inline else with explicit arms
- duckdb.zig: Change c_uint to u32
- feed.zig: Fix hex escape syntax, mark unused params
Refs: RFC-0015, Sprint 5
2026-02-03 17:26:44 +01:00
8e05835330
feat(l0): RFC-0015 Transport Skins + PNG implementation
...
- png.zig: Polymorphic Noise Generator (ChaCha20-based)
• Per-session deterministic noise from ECDH secret
• Epoch rotation (100-1000 packets)
• Statistical distributions: Normal, Pareto, Bimodal, LogNormal
• Packet sizes, timing jitter, dummy injection
- transport_skins.zig: Pluggable skin interface
• RawSkin: Direct UDP (baseline)
• MimicHttpsSkin: WebSocket over TLS framing
• Auto-selection via probing
• PNG integration for padded frames
Tests: PNG determinism, epoch rotation, WebSocket framing
Next: TLS handshake (utls parroting), DNS skin
Refs: RFC-0015, features/transport/*.feature
2026-02-03 17:21:05 +01:00
b6edd5c403
feat(capsule): stabilize TUI monitor, implement control IPC, and fix leaks (Zig 0.15.2)
2026-02-01 10:35:35 +01:00
5b80760d56
feat(stp): Define Sovereign Epoch (1 Hour)
...
Implemented struct in Sovereign Time Protocol (l0-transport/time.zig).
- Epoch Duration: 1 Hour (3600 seconds).
- Logic for calculating current epoch, start/end times, and time remaining.
- Aligned with SovereignTimestamp (attosecond precision).
2026-01-31 22:25:11 +01:00
87cd30dbe3
feat(relay): Implement Sticky Sessions & RelaySend CLI
...
- Added to support reusing SessionID and Ephemeral Keys.
- Updated to track session statistics (packet counts) for rate-limiting.
- Implemented CLI command to send packets via Relay.
- Refactored to accept optional reusable keypair.
- Updated tests.
2026-01-31 22:21:53 +01:00
24adf936e5
feat(relay): Wire up CircuitBuilder with DHT Keys
...
- Implemented in DHT for exact key lookup.
- Updated to use DHT service for resolving Relay Public Keys.
- Generated on client-side (random) for circuit privacy.
- Wired to pass DHT instance to CircuitBuilder.
- Updated forwarding logic to use strict SessionID binding.
- Fixed lints in dht.zig.
2026-01-31 22:15:46 +01:00
e5f59869bc
feat(crypto): Integrate ECDH & XChaCha20-Poly1305 for Relay
...
Phase 14 Real Crypto Update:
- Replaced mock encryption with XChaCha20-Poly1305 + X25519 ECDH.
- Implemented strict Nonce/SessionID binding (RFC-0000 alignment).
- Updated RelayPacket wire format to include Ephemeral Key.
- Updated RelayService to unwrap using Node Identity (SoulKey).
- Extended DHT and Federation protocols to propagate X25519 Public Keys.
- Persisted peer keys in SQLite storage.
- Tests passing (including new crypto logic).
2026-01-31 22:13:11 +01:00
fca9ac13e0
feat(integration): Wire Relay Forwarding & CLI Control
...
Phase 14 Integration:
- Relay Forwarding integrated into CapsuleNode event loop
- Handle LWF frames
- Forward packets to next hop (or local delivery if final)
- Added CLI commands: , ,
- Tests passing (140/140)
Capabilities:
✅ Relay Forwarding (Mock Encryption)
✅ Dynamic Relay Service Control
✅ Statistics Reporting
2026-01-31 21:47:40 +01:00
43156fc033
feat(relay): Implement RelayPacket and onion wrapping logic
2026-01-31 18:11:09 +01:00
e2f9a8c38d
feat(capsule): Admin CLI & Emergency Lockdown
...
- Added Admin CLI commands:
- Peer Management: ban, unban, trust, slash
- Diagnostics: sessions, dht, qvl-query, identity
- Security: lockdown, unlock, airlock
- Implemented L0 Transport Airlock & global lockdown flag
- Integrated SoulKey identity inspection
- Added comprehensive Admin CLI documentation
2026-01-31 10:41:38 +01:00
26050655c5
Phase 8 Complete: Rust Policy Enforcer Armed
...
- Zig L1: Added qvl_get_did export (NodeID -> DID lookup)
- Rust L2: Added get_did wrapper and punish_if_guilty logic
- Rust L2: Fixed policy_enforcer_neutral test (Accept default)
- Alignment: Mapped AnomalyReason to SlashReason
The PolicyEnforcer can now detect, target, and slash betrayers autonomously.
2026-01-31 04:06:51 +01:00
a60fd16e45
Phase 7 Complete: Slash Protocol Integration
...
- Integrated QuarantineList into L0Service (Hooks ready)
- Validated all tests (173/173 + new Slash/Quarantine tests)
- Weaponized stack: L0 can now hold and check blacklist of DIDs.
Next: Connect L2 trigger (FFI) to complete the active defense loop.
2026-01-31 03:50:49 +01:00
cc68e4f9a2
Phase 7 Sprint 1&2: SlashSignal and QuarantineList
...
- Implemented l1-identity/slash.zig (SlashSignal, PunishmentType)
- Implemented l0-transport/quarantine.zig (QuarantineList, Honeypot mode)
- Integrated modules into build.zig
- Validated with unit tests
Ready for enforcement hooks.
2026-01-31 03:47:14 +01:00
1b05a6555c
Phase 6C COMPLETE: L0-L2 IPC Bridge
...
- Zig L0: Implemented ipc/client.zig (Unix Domain Sockets)
- Zig L0: Hooked utcp/socket.zig to stream PacketReceived events to L2
- Rust L2: Implemented IpcServer (see previous commit)
- Refactor: Updated UTCP.init signature globally to accept allocator
- Verified: 173 Zig tests passing, Rust IPC server verified
Nervous system connected. Ready for Phase 7 (Slash Protocol).
2026-01-31 03:43:29 +01:00
995e74dc18
Phase 4: Advanced L0 Validation (Deterministic Ordering, Replay Filtering, and Trust Distance Integration)
2026-01-31 01:09:05 +01:00
2276954ba3
Phase 4: Established L0 Transport Pipeline with UTCP and Segmented WAL OPQ
2026-01-31 00:51:20 +01:00
722c5fafba
docs: Add Panopticum Phase 1 - Sovereign Indexes and layer docs
...
Non-breaking changes to align with Panopticum repository architecture:
- Add Sovereign Indexes (l0_transport.zig, l1_identity.zig)
- Single import point for each layer
- Re-export all layer modules
- Add layer README files
- l0-transport/README.md: LWF and Time documentation
- l1-identity/README.md: All L1 components documented
- AI-friendly, colocated documentation
- Update root README.md
- Add Sovereign Index usage examples
- Update L0 component list
Benefits:
- Simplified imports: `const l0 = @import("l0_transport.zig");`
- Self-contained layer documentation for AI agents
- Zero breaking changes (existing imports still work)
Phase 1 complete. Deferred: Feature folders, colocated tests (Phase 2-3)
2026-01-30 22:28:55 +01:00
76b05c7f49
feat(l0): LWF v1.1 - 72-byte header with 24-byte DID hints
...
BREAKING CHANGE: Header size increased from 64 to 72 bytes
- Expand DID hints from 20 to 24 bytes (192-bit, 2^96 collision resistance)
- Clarify timestamp as u64 nanoseconds (Bytes 60-67, big-endian)
- Update frame payload capacities (-8 bytes per frame class)
- All tests passing (14/14 L0 tests)
Rationale:
- 24-byte DID hints provide future-proof routing scalability
- 8-byte overhead per frame is negligible (0.6% loss on Standard frames)
- Aligns with Sovereign Time Protocol (RFC-0105) L0/L1 split
Files modified:
- l0-transport/lwf.zig: Header structure, serialization, tests
- l0-transport/time.zig: New file for L0 time primitives
- build.zig: Time module dependencies
RFC Impact: RFC-0000 (LWF Wire Protocol), RFC-0105 (Sovereign Time)
2026-01-30 22:28:22 +01:00
be4e50d446
feat(sdk): initial libertaria-sdk implementation
...
L0 Transport Layer:
- LWF frame codec (64-byte headers, variable payload, 36-byte trailers)
- CRC32 checksum verification
- Manual byte-level serialization for deterministic wire format
- Full encode/decode with big-endian support
L1 Identity & Crypto:
- X25519-XChaCha20-Poly1305 AEAD encryption
- Point-to-point encryption with ephemeral keys
- WORLD tier encryption (symmetric shared secret)
- Ed25519 signature support (trailer structure)
Build System:
- Zig 0.15.2 compatible module architecture
- Automated test suite (8/8 tests passing)
- Example programs (lwf_example, crypto_example)
Documentation:
- README.md with SDK overview
- INTEGRATION.md with developer guide
- Inline documentation for all public APIs
Status: Production-ready, zero memory leaks, all tests passing
2026-01-30 18:42:04 +01:00
Markus Maiwald
