10 commits

Author	SHA1	Message	Date
Virgil	86c68ad1c9	Merge pull request '[agent/codex:gpt-5.3-codex-spark] Read .core/reference/RFC-CORE-008-AGENT-EXPERIENCE.md (the A...' (#14) from main into dev	2026-03-29 15:26:33 +00:00
Virgil	e80ef94552	fix(crypt): align AX error handling and cleanup checks ... Co-Authored-By: Virgil <virgil@lethean.io>	2026-03-29 15:25:12 +00:00
Snider	62482c7dc9	refactor: migrate imports to dappco.re/go/core/* paths ... Update module path from forge.lthn.ai/core/go-crypt to dappco.re/go/core/crypt. Migrate go-log, go-io, go-i18n imports to their new dappco.re/go/core/* paths with updated versions (core v0.5.0, log v0.1.0, io v0.2.0, i18n v0.2.0). Un-migrated modules (cli, go-store, go-inference) remain at forge.lthn.ai paths. Also fixes merge conflict marker and duplicate imports in crypt/openpgp/service.go, and updates CLAUDE.md to reflect new paths. Co-Authored-By: Virgil <virgil@lethean.io>	2026-03-22 01:43:27 +00:00
Snider	36bf16b06e	fix(coderabbit): address review findings ... - auth: prevent legacy .lthn fallback when .hash file exists but is unreadable or has unexpected format (security fix in verifyPassword and Login) - chachapoly: wrap raw error returns in Decrypt with coreerr.E() - trust: reject trailing data in LoadPolicies JSON decoder Co-Authored-By: Virgil <virgil@lethean.io>	2026-03-17 13:32:21 +00:00
Snider	39643ddba0	fix: replace fmt.Errorf and errors.New with coreerr.E() ... Replace all fmt.Errorf/errors.New calls in auth/auth.go, crypt/pgp/pgp.go, crypt/rsa/rsa.go, crypt/chachapoly/chachapoly.go, and trust/trust.go with coreerr.E(op, msg, err) from go-log. No stale pkg/framework imports found. Co-Authored-By: Virgil <virgil@lethean.io>	2026-03-16 18:19:51 +00:00
Snider	7468c38906	refactor: swap pkg/{io,log,i18n} imports to go-io/go-log/go-i18n ... Co-Authored-By: Virgil <virgil@lethean.io>	2026-03-06 12:35:41 +00:00
Claude	9e7a19243f	chore: fmt.Errorf(static) → errors.New ... Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-24 16:30:08 +00:00
Snider	301eac1d76	feat(auth): Phase 2 key management — Argon2id, rotation, revocation ... - Register now uses Argon2id (crypt.HashPassword) instead of LTHN hash - Login detects hash format: Argon2id (.hash) first, LTHN (.lthn) fallback - Transparent migration: successful legacy login re-hashes with Argon2id - RotateKeyPair: decrypt metadata with old password, generate new PGP keypair, re-encrypt, update hash, invalidate all sessions - RevokeKey: write JSON revocation record to .rev, invalidate sessions - IsRevoked: parse .rev for valid JSON (ignores legacy placeholder) - Login/CreateChallenge reject revoked users - HardwareKey interface (hardware.go): contract for PKCS#11/YubiKey - verifyPassword helper: shared Argon2id→LTHN fallback logic - 55 tests total, all pass with -race Co-Authored-By: Virgil <virgil@lethean.io>	2026-02-20 02:27:03 +00:00
Snider	1aeabfd32b	feat(auth): add SessionStore interface with SQLite persistence ... Extract in-memory session map into SessionStore interface with two implementations: MemorySessionStore (default, backward-compatible) and SQLiteSessionStore (persistent via go-store). Add WithSessionStore option, background cleanup goroutine, and comprehensive tests including persistence verification and concurrency safety. Phase 1: Session Persistence — complete. Co-Authored-By: Virgil <virgil@lethean.io>	2026-02-20 01:44:51 +00:00
Claude	8498ecf890	feat: extract crypto/security packages from core/go ... ChaCha20-Poly1305, AES-256-GCM, Argon2 key derivation, OpenPGP challenge-response auth, and trust tier policy engine. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-16 15:25:54 +00:00