arbiter

Author	SHA1	Message	Date
CleverWild	7ab47ec563	feat(vault)!: implement full Shamir re-key flow and governance execution (§3.3–§3.5) Some checks failed ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-test Pipeline was successful Details - Add `rekey.proto` with `ContributePassphrase` / `ContributeRecoveryPassphrase` / `RekeyResult` - Wire `rekey` as a 4th vault stream payload in `vault.proto` and gRPC dispatch - Add `RekeyRootKey` message to `Vault` actor: generates new random seal key, re-encrypts root key, writes new `root_key_history` row - Add `StartRekey`, `ContributeRekey`, `ContributeRecoveryRekey` messages to `VaultCoordinator`; `finalize_rekey` uses threshold-1 fast path identical to bootstrap - `execute_replace_operator` now UPDATEs `operator_identity.public_key` in-place (avoids FK constraint violation), deletes stale `operator` share row, then triggers `StartRekey` - `execute_update_shamir_parameters` triggers `StartRekey` instead of warning stub - `ProposalKind::ReplaceOperator` carries `old_operator_id`; encode/decode updated accordingly - `GlobalActors::spawn` extracts `vault_coordinator` before `Ok(Self { … })` so it can be cloned into `ProposalManager::new` - Add `handle_rekey` in session handlers forwarding passphrase contributions to `VaultCoordinator` - Fix test: rename `replace_operator_inserts_identity_row` → `replace_operator_updates_pubkey_and_starts_rekey`, assert count stays 1 and pubkey is updated	2026-06-14 15:11:11 +02:00
CleverWild	aff87c13ca	refactor(proposal): replace string kind dispatch with ProposalKindTag enum (strum)	2026-06-14 15:02:25 +02:00
CleverWild	6017ef29ca	fix(crypto): handle 1-of-N Shamir split when ordinary_count=1	2026-06-13 23:08:53 +02:00
CleverWild	eb16da3a20	feat(server): recovery operators with sleeping/wakeup mechanism (§3.5/§3.6) Some checks failed ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-test Pipeline was successful Details	2026-06-13 22:31:10 +02:00
CleverWild	2fda0484fc	feat(server): key-rotation proposals require full quorum (§3.3) Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-test Pipeline was successful Details	2026-06-13 22:20:48 +02:00
CleverWild	f8c621b20e	feat(server): two-operator vault requires at least one recovery share Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-test Pipeline was successful Details	2026-06-13 22:13:07 +02:00
CleverWild	3b090cd3ce	refactor(server): typed pubkey len via u32::try_from in ReplaceOperator Some checks failed ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-test Pipeline was successful Details	2026-06-13 21:53:46 +02:00
CleverWild	99e2b841e9	feat(server): ProposalKind::ApproveOneOffTransaction	2026-06-13 21:32:23 +02:00
CleverWild	b2b159b16f	feat(server): ProposalKind::ApprovePersistentGrant	2026-06-13 21:27:41 +02:00
CleverWild	ab767fe158	feat(server): ProposalKind::UpdateShamirParameters	2026-06-13 21:20:06 +02:00
CleverWild	f080a8615f	feat(server): ProposalKind::ReplaceOperator	2026-06-13 16:46:04 +02:00
CleverWild	514a4cb2d1	feat(server): ProposalKind ::GrantWalletAccess and ::ApproveServerUpdate Some checks failed ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-test Pipeline was successful Details	2026-06-13 15:51:22 +02:00
CleverWild	8517b981f2	feat(server): introduce ProposalManager actor with quorum voting logic	2026-06-13 15:11:00 +02:00
CleverWild	af13465c03	feat(crypto): expose governance signing context and make shamir_threshold pub const	2026-06-13 15:11:00 +02:00
CleverWild	6f270ef0c4	housekepping: add fixme for start_bootstrap's operator_id Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-test Pipeline was successful Details	2026-06-12 22:01:17 +02:00
CleverWild	0098c3c08a	refactor(server::crypto): use fixed-size [u8; 32] and KeyCell throughout seal key API Some checks failed ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-test Pipeline was successful Details	2026-06-12 21:15:07 +02:00
CleverWild	6f65c907a3	feat(server): introduce VaultCoordinator for multi-operator Shamir bootstrap/unseal VaultCoordinator collects operator passphrases, splits the seal key into Shamir shares on bootstrap (encrypting each share with the operator's passphrase via Argon2 + XChaCha20-Poly1305), and reconstructs the seal key from threshold shares on unseal. Adds vsss-rs 5.4.0 and rand_core 0.6 dependencies.	2026-06-12 19:43:09 +02:00
CleverWild	9764b0d5ce	refactor(server::actors::vault): clean up Bootstrap/TryUnseal, remove Bootstrapping state Bootstrap and TryUnseal now accept a SafeCell<Vec<u8>> seal key directly. The Bootstrapping intermediate state is removed — multi-operator coordination is the responsibility of VaultCoordinator, which calls Bootstrap atomically once all shares are collected.	2026-06-12 19:43:02 +02:00
CleverWild	34850137df	feat(server::actors::evm): implement operator_delete_grant Sets revoked_at on the evm_basic_grant row; returns NotFound if the grant does not exist. Wires the handler in OperatorSession replacing the todo!().	2026-06-12 19:42:43 +02:00
Skipper	9dbb18ae82	WIP: some things Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-test Pipeline failed Details	2026-05-20 21:04:16 +02:00
Skipper	a773255935	refactor(server::db): introduced newtype wrappers for entity id's in database	2026-05-04 19:35:27 +02:00
Skipper	3f801abdff	housekeeping(server): deps upgrade + diesel migration to AsyncFnOnce Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-test Pipeline was successful Details ci/woodpecker/push/server-lint Pipeline failed Details ci/woodpecker/push/server-audit Pipeline was successful Details ci/woodpecker/push/server-vet Pipeline failed Details ci/woodpecker/push/server-test Pipeline was successful Details	2026-05-01 11:22:40 +02:00
Skipper	a1c3ffd2d1	refactor: rename to to better reflect meaning Some checks failed ci/woodpecker/push/server-audit Pipeline was successful Details ci/woodpecker/push/server-vet Pipeline failed Details ci/woodpecker/push/server-lint Pipeline failed Details ci/woodpecker/push/server-test Pipeline was successful Details	2026-04-19 13:41:50 +02:00
Skipper	9ab074170b	merge: feat-lints into main Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-test Pipeline was successful Details ci/woodpecker/push/server-audit Pipeline was successful Details ci/woodpecker/push/server-lint Pipeline failed Details ci/woodpecker/push/server-vet Pipeline failed Details ci/woodpecker/push/server-test Pipeline was successful Details ci/woodpecker/push/useragent-analyze Pipeline failed Details	2026-04-18 15:04:33 +02:00
Skipper	9cf87b2058	merge: refactor-integrity-check into main Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-test Pipeline was successful Details ci/woodpecker/pr/useragent-analyze Pipeline failed Details	2026-04-18 13:46:28 +02:00
Skipper	929d50b589	housekeeping(server): clean too-broad visibility markers and organize imports Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-test Pipeline failed Details ci/woodpecker/pr/useragent-analyze Pipeline failed Details	2026-04-18 13:30:09 +02:00
Skipper	51e6571d80	refactor(server): now keeps track of useragents, instead of	2026-04-17 00:00:43 +02:00
Skipper	e88df432fb	housekeeping(server): dependencies upgrade Some checks failed ci/woodpecker/pr/server-lint Pipeline was successful Details ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-test Pipeline failed Details	2026-04-14 19:10:07 +02:00
hdbg	87ee0fe87b	feat(user-agent): add VaultGate for sealed vault authentication	2026-04-12 11:53:05 +02:00
CleverWild	f6a0c32b9d	feat: rustc and clippy linting Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-test Pipeline was successful Details	2026-04-10 00:42:43 +02:00
hdbg	6b8da567dd	fix(server::user_agent): useragents now self-sign themselves on bootstrap	2026-04-08 17:40:45 +02:00
hdbg	1585f90cae	refactor(server): reorganized client/user_agent actors into separate module `peers` and added event `MessageBus`	2026-04-08 12:34:16 +02:00
CleverWild	6e22f368c9	refactor(hashing): introduce Hashable derive macro and migrate server types Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-lint Pipeline was successful Details ci/woodpecker/pr/server-test Pipeline was successful Details	2026-04-08 01:32:59 +02:00
hdbg	a9f9fc2a9d	housekeeping(server): fixed clippy warns Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-test Pipeline was successful Details	2026-04-07 16:28:47 +02:00
hdbg	d22ab49e3d	refactor(server): moved shared module crypto into `arbiter-crypto`	2026-04-07 16:24:51 +02:00
hdbg	0d424f3afc	refactor(server): migrated auth to `ml-dsa`	2026-04-07 14:55:31 +02:00
hdbg	1497884ce6	fix(server::bootsrapper): token compare is now constant-time Some checks failed ci/woodpecker/push/server-audit Pipeline was successful Details ci/woodpecker/push/server-vet Pipeline failed Details ci/woodpecker/push/server-lint Pipeline failed Details ci/woodpecker/push/server-test Pipeline was successful Details	2026-04-06 18:33:47 +02:00
hdbg	46d1318b6f	feat(server): add integrity verification for client keys	2026-04-06 18:13:11 +02:00
hdbg	5bc0c42cc7	fix(server): replaced `postcard`-based integrity fingerprint with custom trait providing order-independent hashing	2026-04-06 16:25:32 +02:00
hdbg	f6b62ab884	fix(server): added `chain_id` check and covered `check_shared_constraints` with unit tests Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-test Pipeline was successful Details ci/woodpecker/push/server-audit Pipeline was successful Details ci/woodpecker/push/server-lint Pipeline failed Details ci/woodpecker/push/server-vet Pipeline failed Details ci/woodpecker/push/server-test Pipeline was successful Details	2026-04-06 12:57:18 +02:00
hdbg	00745bb381	tests(server): fixed for new integrity checks Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-test Pipeline was successful Details	2026-04-05 14:49:02 +02:00
hdbg	b122aa464c	refactor(server): rework envelopes and integrity check Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-test Pipeline failed Details	2026-04-05 14:17:00 +02:00
hdbg	9fab945a00	fix(server): remove stale mentions of miette Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-test Pipeline failed Details ci/woodpecker/pr/server-vet Pipeline failed Details	2026-04-05 10:45:24 +02:00
CleverWild	4057c1fc12	feat(server): integrity envelope engine for EVM grants with HMAC verification	2026-04-05 10:44:21 +02:00
hdbg	7aca281a81	merge: @main into client-integrity-verification Some checks failed ci/woodpecker/push/server-vet Pipeline failed Details ci/woodpecker/push/server-lint Pipeline failed Details ci/woodpecker/pr/useragent-analyze Pipeline failed Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/push/useragent-analyze Pipeline failed Details ci/woodpecker/push/server-test Pipeline failed Details ci/woodpecker/pr/server-test Pipeline failed Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/push/server-audit Pipeline was successful Details ci/woodpecker/pr/server-audit Pipeline was successful Details	2026-04-05 10:25:46 +02:00
hdbg	01b12515bd	housekeeping(server): fixed clippy warns Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-test Pipeline failed Details ci/woodpecker/pr/useragent-analyze Pipeline failed Details	2026-04-04 14:33:48 +02:00
hdbg	4a50daa7ea	refactor(user-agent): remove backfill pubkey integrity tags Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-test Pipeline failed Details ci/woodpecker/pr/useragent-analyze Pipeline failed Details	2026-04-04 14:32:00 +02:00
hdbg	352ee3ee63	fix(server): previously, user agent auth accepted invalid signatures Some checks failed ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-test Pipeline failed Details ci/woodpecker/pr/useragent-analyze Pipeline failed Details	2026-04-04 14:28:07 +02:00
hdbg	dd51d756da	refactor(server): separate crypto by purpose and moved outside of actor into separate module	2026-04-04 14:21:52 +02:00
CleverWild	0bb6e596ac	feat(auth): implement attestation status verification for public keys Some checks failed ci/woodpecker/pr/server-audit Pipeline was successful Details ci/woodpecker/pr/server-lint Pipeline failed Details ci/woodpecker/pr/server-vet Pipeline failed Details ci/woodpecker/pr/server-test Pipeline failed Details ci/woodpecker/pr/useragent-analyze Pipeline failed Details	2026-04-04 12:10:45 +02:00

1 2 3

135 Commits