1ced0fdbf3
- Add hkdf = "0.12" dependency for Double Ratchet key derivation
- Extend mesh/crypto.rs with hkdf_sha256, hkdf_sha256_32, hkdf_sha256_64,
and generate_x25519_ephemeral() for DH ratchet steps
- Create mesh/x3dh.rs: full X3DH key agreement protocol
- PrekeyBundle generation with Ed25519-signed prekeys
- 3-way (or 4-way) ECDH → HKDF-SHA256 → root key
- Initiator and responder sides derive identical root key
- CBOR encoding for mesh transmission
- Bundle signature verification
- 5 unit tests: generate+verify, both-sides-same-key,
without-one-time-prekey, cbor-roundtrip, tamper-detection
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
105 lines
2.7 KiB
TOML
105 lines
2.7 KiB
TOML
[package]
|
|
name = "archipelago"
|
|
version = "1.1.0"
|
|
edition = "2021"
|
|
description = "Archipelago Bitcoin Node OS - Native backend"
|
|
authors = ["Archipelago Team"]
|
|
|
|
[[bin]]
|
|
name = "archipelago"
|
|
path = "src/main.rs"
|
|
|
|
[dependencies]
|
|
# Core dependencies
|
|
tokio = { version = "1", features = ["full"] }
|
|
serde = { version = "1.0", features = ["derive"] }
|
|
serde_json = "1.0"
|
|
anyhow = "1.0"
|
|
thiserror = "1.0"
|
|
tracing = "0.1"
|
|
tracing-subscriber = { version = "0.3", features = ["env-filter"] }
|
|
|
|
# HTTP and WebSocket
|
|
hyper = { version = "0.14", features = ["full", "http1"] }
|
|
hyper-util = { version = "0.1", features = ["full", "http1"] }
|
|
http-body-util = "0.1"
|
|
http-body = "1.0"
|
|
tower = "0.5"
|
|
tower-http = { version = "0.6", features = ["cors", "trace"] }
|
|
hyper-ws-listener = "0.3.0"
|
|
tokio-tungstenite = "0.20"
|
|
futures-util = "0.3"
|
|
|
|
# Our modules
|
|
archipelago-container = { path = "../container" }
|
|
archipelago-security = { path = "../security" }
|
|
archipelago-performance = { path = "../performance" }
|
|
archipelago-parmanode = { path = "../parmanode" }
|
|
|
|
# Database (optional for now - can use SQLite or skip)
|
|
# sqlx = { version = "0.7", features = ["sqlite", "runtime-tokio-rustls"] }
|
|
|
|
# Authentication
|
|
bcrypt = "0.15"
|
|
sha2 = "0.10"
|
|
hmac = "0.12"
|
|
uuid = { version = "1.0", features = ["v4"] }
|
|
regex = "1.10"
|
|
|
|
# Node identity (Ed25519 + X25519 key agreement)
|
|
ed25519-dalek = { version = "2.1", features = ["rand_core"] }
|
|
curve25519-dalek = "4"
|
|
rand = "0.8"
|
|
hex = "0.4"
|
|
bs58 = "0.5"
|
|
chrono = "0.4"
|
|
|
|
# Configuration
|
|
toml = "0.8"
|
|
serde_yaml = "0.9"
|
|
|
|
# HTTP client (for LND REST proxy, Tor SOCKS for peer messaging)
|
|
# Uses rustls-tls for cross-compilation (no OpenSSL dependency)
|
|
reqwest = { version = "0.11", default-features = false, features = ["json", "socks", "rustls-tls"] }
|
|
|
|
# Nostr (node discovery + NIP-44 encrypted peer handshake)
|
|
nostr-sdk = { version = "0.44", features = ["nip04", "nip44"] }
|
|
|
|
# Backup encryption (DID identity export) + TOTP 2FA encryption
|
|
argon2 = "0.5"
|
|
chacha20poly1305 = "0.10"
|
|
base64 = "0.21"
|
|
|
|
# Full system backup (tar archive + gzip compression)
|
|
tar = "0.4"
|
|
flate2 = "1.0"
|
|
|
|
# TOTP 2FA
|
|
totp-rs = { version = "5.7", features = ["otpauth", "gen_secret"] }
|
|
qrcode = "0.14"
|
|
data-encoding = "2.6"
|
|
zeroize = { version = "1.7", features = ["derive"] }
|
|
|
|
# Mainline DHT (did:dht — BitTorrent DHT for decentralized identity)
|
|
mainline = "2"
|
|
zbase32 = "0.1"
|
|
bytes = "1"
|
|
|
|
# Mesh networking (Meshcore serial protocol over USB LoRa radios)
|
|
serial2-tokio = "0.1"
|
|
|
|
# Double Ratchet key derivation (Phase 3: encrypted mesh messaging)
|
|
hkdf = "0.12"
|
|
|
|
# Transport abstraction (Phase 2: mesh as federation transport)
|
|
ciborium = "0.2.2"
|
|
reed-solomon-erasure = "6.0"
|
|
mdns-sd = "0.18"
|
|
|
|
# Systemd watchdog notification
|
|
sd-notify = "0.4"
|
|
|
|
[dev-dependencies]
|
|
tokio-test = "0.4"
|
|
tempfile = "3.10"
|