MarketTakers/arbiter
6
0
Fork 0
Code Issues 27 Pull Requests 2 Packages Projects Releases Wiki Activity

Commit Graph

  • d99c87c473 fix: lints security-hash-revoke_at CleverWild 2026-06-09 21:07:01 +02:00
  • 303120c9ac Merge branch 'main' into security-hash-revoke_at CleverWild 2026-06-09 20:58:07 +02:00
  • 32f317384d security(evm): remove client-controlled wallet_access_id from grant revocation CleverWild 2026-06-09 19:36:44 +02:00
  • 4bb2c062dc feat(evm): add wallet_access_id to grant deletion requests and revocation logic CleverWild 2026-06-09 19:16:21 +02:00
  • b0a3f37cea refactor(evm): implement revoke_grant method for grant revocation CleverWild 2026-06-09 19:11:39 +02:00
  • 58a72da46c Merge branch 'security-hash-revoke_at' of ssh://git.markettakers.org:22222/MarketTakers/arbiter into security-hash-revoke_at CleverWild 2026-06-09 19:10:57 +02:00
  • e287459b10 revert(server): bind grant revocation state (revoked_at) to integrity hash CleverWild 2026-06-09 18:45:30 +02:00
  • 3c482da917 fix(smlang::statemachine): macro invocation requires inner types to be public main CleverWild 2026-06-08 18:00:52 +02:00
  • 9dbb18ae82 WIP: some things feat-shamir Skipper 2026-05-01 10:58:10 +02:00
  • a773255935 refactor(server::db): introduced newtype wrappers for entity id's in database Skipper 2026-04-27 13:07:12 +02:00
  • 3f801abdff housekeeping(server): deps upgrade + diesel migration to AsyncFnOnce Skipper 2026-05-01 11:00:58 +02:00
  • 2b44570ab4 fix(server): MacOS build version Skipper 2026-04-19 13:47:38 +02:00
  • 1f9b253433 housekeeping(server): removed unused deps Skipper 2026-04-19 13:44:09 +02:00
  • a1c3ffd2d1 refactor: rename to to better reflect meaning Skipper 2026-04-19 13:35:18 +02:00
  • fd25de32a1 docs: move to folder and update to new challenge payload Skipper 2026-04-18 15:14:03 +02:00
  • 9ab074170b merge: feat-lints into main Skipper 2026-04-18 13:55:45 +02:00
  • 18b8a3bbf5 Merge pull request 'refactor-integrity-check' (#90) from refactor-integrity-check into main Stas 2026-04-18 11:54:30 +00:00
  • 38cf1b98b9 housekeeping(server): clippy warns fix Skipper 2026-04-18 13:53:03 +02:00
  • 9cf87b2058 merge: refactor-integrity-check into main Skipper 2026-04-18 13:40:46 +02:00
  • 929d50b589 housekeeping(server): clean too-broad visibility markers and organize imports Skipper 2026-04-18 13:29:45 +02:00
  • 70acfc99b5 merge: refactor-integrity-check into main Skipper 2026-04-18 13:08:28 +02:00
  • 28f84d03ab Merge pull request 'housekeeping(server): dependencies upgrade' (#89) from push-zmvtzuwrnyyv into main Stas 2026-04-17 19:20:50 +00:00
  • 4a8e51ef32 docs: updated to new auth challenge format and removed stale TOCTOU race condition note Skipper 2026-04-17 18:25:31 +02:00
  • 9ee86afc19 fix(useragent): now using new challenge format Skipper 2026-04-17 18:19:39 +02:00
  • 790026e93b fix(server::tests): api surface of auth challenge changed Skipper 2026-04-17 17:49:06 +02:00
  • 0e09afda5d refactor(server::{useragent::auth, client::auth}): use random based + timestamp nonce instead of monotonic counter in database Skipper 2026-04-17 16:14:45 +02:00
  • 51e6571d80 refactor(server): now keeps track of useragents, instead of Skipper 2026-04-16 23:48:47 +02:00
  • 3b828d5874 refactor(server::grpc::vault_gate): standard approach using / traits Skipper 2026-04-16 22:14:55 +02:00
  • a6f94e3115 fix(server): sending fixed vault state when on stage Skipper 2026-04-16 18:39:12 +02:00
  • f49e995c2f WIP: kameo::messages wiring for transport generalization hdbg 2026-04-12 12:04:03 +02:00
  • 694c569c08 feat(integrity): introduce sealed provenance markers for Verified enforcing-integrity CleverWild 2026-04-15 19:45:59 +02:00
  • e88df432fb housekeeping(server): dependencies upgrade Skipper 2026-04-14 19:09:56 +02:00
  • 8c4c63f51e WIP: kameo::messages wiring for transport generalization push-wxnlsulvnrpz hdbg 2026-04-12 12:04:03 +02:00
  • 87ee0fe87b feat(user-agent): add VaultGate for sealed vault authentication hdbg 2026-04-08 18:29:52 +02:00
  • bec82e036e feat(integrity): derive-like macro VerifiedFields that allows to inherit Verified<T> type's provenance to all fields of T CleverWild 2026-04-11 03:53:25 +02:00
  • 9e1ab51398 security(useragent): validate server cert fingerprint and host instead of accepting all certificates check-uac-cerf CleverWild 2026-04-10 14:44:16 +02:00
  • 41b3fc5d39 fix(lints): remove unstable ones CleverWild 2026-04-10 01:00:21 +02:00
  • f6a0c32b9d feat: rustc and clippy linting CleverWild 2026-04-10 00:42:43 +02:00
  • 205227a3df fix(server::integrity): vault now differentias between expected/unexpected states for commands more granularly hdbg 2026-04-08 17:45:49 +02:00
  • a4070e7df7 fix(useragent): unsafe, but working implementation of ml-dsa hdbg 2026-04-07 15:41:50 +02:00
  • 6b8da567dd fix(server::user_agent): useragents now self-sign themselves on bootstrap hdbg 2026-04-08 12:34:32 +02:00
  • 1585f90cae refactor(server): reorganized client/user_agent actors into separate module peers and added event MessageBus hdbg 2026-04-07 23:54:29 +02:00
  • 5a34463228 security(server): bind grant revocation state (revoked_at) to integrity hash CleverWild 2026-04-08 12:09:54 +02:00
  • 62dff3f810 Merge pull request 'refactor(hashing): introduce Hashable derive macro and migrate server types' (#82) from hashing-proc-macro into main Stas 2026-04-08 00:18:40 +00:00
  • 6e22f368c9 refactor(hashing): introduce Hashable derive macro and migrate server types CleverWild 2026-04-08 01:32:59 +02:00
  • f3cf6a9438 Merge pull request 'Post-quantum crypto and better useragent security' (#80) from push-xrxykvkuxpsv into main Stas 2026-04-07 19:26:54 +00:00
  • 763058b014 feat(server): unify integrity API and propagate verified IDs through auth/EVM flows CleverWild 2026-04-07 21:12:36 +02:00
  • a9f9fc2a9d housekeeping(server): fixed clippy warns hdbg 2026-04-07 16:25:21 +02:00
  • d22ab49e3d refactor(server): moved shared module crypto into arbiter-crypto hdbg 2026-04-07 15:41:50 +02:00
  • a845181ef6 docs: ml-dsa scheme everywhere hdbg 2026-04-07 14:59:03 +02:00
  • 0d424f3afc refactor(server): migrated auth to ml-dsa hdbg 2026-04-07 11:43:21 +02:00
  • 1497884ce6 fix(server::bootsrapper): token compare is now constant-time hdbg 2026-04-06 18:27:46 +02:00
  • b3464cf8a6 tests(server::client::auth): integrity envelope insertion for valid paths hdbg 2026-04-06 18:19:56 +02:00
  • 46d1318b6f feat(server): add integrity verification for client keys hdbg 2026-04-06 17:53:06 +02:00
  • 9c80d51d45 Merge pull request 'fix(server): replaced postcard-based integrity fingerprint with custom trait providing order-independent hashing' (#77) from push-opwuyuwxknyo into main Stas 2026-04-06 15:42:47 +00:00
  • 33456a644d tests(server): property-based testing for ordering independency for hash hdbg 2026-04-06 16:35:07 +02:00
  • 5bc0c42cc7 fix(server): replaced postcard-based integrity fingerprint with custom trait providing order-independent hashing hdbg 2026-04-06 15:45:46 +02:00
  • f6b62ab884 fix(server): added chain_id check and covered check_shared_constraints with unit tests hdbg 2026-04-06 12:05:55 +02:00
  • 2dd5a3f32f tests(server): initial cargo-mutants hdbg 2026-04-05 16:00:13 +02:00
  • 1aca9d4007 fix(server): simplify hash function for debug profile hdbg 2026-04-05 16:00:13 +02:00
  • 5ee1b49c43 Merge pull request 'feat(server): integrity envelope engine for EVM grants with HMAC verification' (#51) from integrity-envelope into main Stas 2026-04-05 16:26:51 +00:00
  • 3aae3e1d83 feat(server): implement useragent_delete_grant hard delete cleanup impl-useragent_delete_grant CleverWild 2026-04-05 17:52:44 +02:00
  • 00745bb381 tests(server): fixed for new integrity checks hdbg 2026-04-05 14:35:41 +02:00
  • b122aa464c refactor(server): rework envelopes and integrity check hdbg 2026-04-05 10:47:21 +02:00
  • 9fab945a00 fix(server): remove stale mentions of miette hdbg 2026-04-05 10:44:45 +02:00
  • aeed664e9a chore: inline integrity proto types CleverWild 2026-04-05 00:53:36 +02:00
  • 4057c1fc12 feat(server): integrity envelope engine for EVM grants with HMAC verification CleverWild 2026-04-04 21:52:50 +02:00
  • f5eb51978d docs: add recovery operators and multi-operator details hdbg 2026-04-04 10:32:44 +02:00
  • d997e0f843 docs: add multi-operator governance section hdbg 2026-04-03 22:43:37 +02:00
  • 7aca281a81 merge: @main into client-integrity-verification Client-key-replacement-attack hdbg 2026-04-05 10:13:19 +02:00
  • 0daad1dd37 Merge branch 'main' into push-zmyvyloztluy Stas 2026-04-05 07:57:31 +00:00
  • 9ea474e1b2 fix(server): use LOCALHOST const instead of hard-coded ip value Stas 2026-04-04 14:14:15 +00:00
  • c6f440fdad fix(client): evm-feature's code for new proto CleverWild 2026-04-04 15:28:39 +02:00
  • e17c25a604 ci(server-test): ensure that all features are compiling Stas 2026-04-04 14:06:02 +00:00
  • 89e2daf05a ci: fix step name critical-fix-CI-check-all-features CleverWild 2026-04-04 15:22:09 +02:00
  • c62feda198 ci: add server compile configuration for CI checks on all features CleverWild 2026-04-04 15:15:03 +02:00
  • 01b12515bd housekeeping(server): fixed clippy warns hdbg 2026-04-04 14:33:20 +02:00
  • 4a50daa7ea refactor(user-agent): remove backfill pubkey integrity tags hdbg 2026-04-04 14:31:39 +02:00
  • 352ee3ee63 fix(server): previously, user agent auth accepted invalid signatures hdbg 2026-04-04 14:26:04 +02:00
  • dd51d756da refactor(server): separate crypto by purpose and moved outside of actor into separate module hdbg 2026-04-04 13:40:52 +02:00
  • 0bb6e596ac feat(auth): implement attestation status verification for public keys CleverWild 2026-04-04 12:10:45 +02:00
  • 083ff66af2 refactor(server): removed miette out of server hdbg 2026-04-04 12:04:24 +02:00
  • 881f16bb1a fix(keyholder): comment drift CleverWild 2026-04-04 12:02:50 +02:00
  • 78895bca5b refactor(keyholder): generalize derive_useragent_integrity_key and compute_useragent_pubkey_integrity_tag corespondenly to derive_integrity_key and compute_integrity_tag CleverWild 2026-04-04 12:00:39 +02:00
  • 1495fbe754 Merge pull request 'refactor(protocol): split into domain-based nesting' (#45) from push-zwvktknttnmw into main Stas 2026-04-04 08:24:16 +00:00
  • ab8cf877d7 Merge branch 'main' into push-zwvktknttnmw Stas 2026-04-03 20:34:37 +00:00
  • 146f7a419e housekeeping: updated docs to match current impl state hdbg 2026-04-03 22:25:09 +02:00
  • 0362044b83 housekeeping(server): fixed clippy warns hdbg 2026-04-03 22:14:41 +02:00
  • e47ccc3108 fix(useragent): upgraded to new protocol changes hdbg 2026-04-03 22:03:02 +02:00
  • bc45b9b9ce merge: @main into refactor-proto hdbg 2026-04-03 19:31:43 +02:00
  • 82b5b85f52 refactor(proto): nest client protocol and extract shared schemas hdbg 2026-04-03 19:15:53 +02:00
  • 72618c186f Merge pull request 'feat(evm): implement EVM sign transaction handling in client and user agent' (#38) from feat--self-signed-transactions into main Stas 2026-04-02 19:26:05 +00:00
  • 16f0e67d02 refactor(proto): scope client and user-agent schemas and extract shared types hdbg 2026-04-03 19:08:19 +02:00
  • 4af172e49a Merge branch 'main' into feat--self-signed-transactions Stas 2026-04-02 19:25:00 +00:00
  • cfe01ba1ad refactor(server, protocol): split big message files into smaller and domain-based hdbg 2026-03-29 12:47:27 +02:00
  • d5ec303b9a merge: main hdbg 2026-03-29 11:07:26 +02:00
  • 90d8ae3c6c Merge pull request 'fix-security' (#42) from fix-security into main Stas 2026-04-02 16:34:06 +00:00
  • 523bf783ac refactor(grpc): extract user agent request handlers into separate functions hdbg 2026-03-29 12:45:00 +02:00
  • 63a4875fdb fix(keyholder): remove dead overwritten select in try_unseal query CleverWild 2026-03-29 23:16:37 +02:00
  • 8feda7990c fix(auth): reject invalid challenge signatures instead of transitioning to AuthOk CleverWild 2026-03-29 23:05:38 +02:00