fieldwitness

alee/fieldwitness

Fork 0

Commit Graph

Author	SHA1	Message	Date
Aaron D. Lee	7967d4b419	Implement 7 field-scenario feature requests Some checks failed CI / lint (push) Failing after 51s Details CI / typecheck (push) Failing after 29s Details 1. Transport-aware stego encoding: --transport flag (whatsapp/signal/ telegram/discord/email/direct) auto-selects DCT mode, pre-resizes carrier to platform max dimension, prevents payload destruction by messaging app recompression. 2. Standalone verification bundle: chain export ZIP now includes verify_chain.py (zero-dep verification script) and README.txt with instructions for courts and fact-checkers. 3. Channel-key-only export/import: export_channel_key() and import_channel_key() with Argon2id encryption (64MB, lighter than full bundle). channel_key_to_qr_data() for in-person QR code exchange between collaborators. 4. Duress/cover mode: configurable SSL cert CN via cover_name config (defaults to "localhost" instead of "SooSeF Local"). SOOSEF_DATA_DIR already supports directory renaming. Killswitch PurgeScope.ALL now self-uninstalls the pip package. 5. Identity recovery from chain: find_signer_pubkey() searches chain by fingerprint prefix. append_key_recovery() creates a recovery record signed by new key with old fingerprint + cosigner list. verify_chain() accepts recovery records. 6. Batch verification: /verify/batch web endpoint accepts multiple files, returns per-file status (verified/unverified/error) with exact vs perceptual match breakdown. 7. Chain position proof in receipt: verification receipts (now schema v3) include chain_proof with chain_id, chain_index, prev_hash, and record_hash for court admissibility. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-01 20:26:03 -04:00
Aaron D. Lee	b8d4eb5933	Add core modules, web frontend, CLI, keystore, and fieldkit Core: - paths.py: centralized ~/.soosef/ path constants - config.py: JSON config loader with dataclass defaults - exceptions.py: SoosefError hierarchy - cli.py: unified Click CLI wrapping stegasoo + verisoo + native commands Keystore: - manager.py: unified key management (Ed25519 identity + channel keys) - models.py: IdentityInfo, KeystoreStatus dataclasses - export.py: encrypted key bundle export/import for USB transfer Fieldkit: - killswitch.py: ordered emergency data destruction (keys first) - deadman.py: dead man's switch with check-in timer - tamper.py: SHA-256 file integrity baseline + checking - usb_monitor.py: pyudev USB whitelist enforcement - geofence.py: haversine-based GPS boundary checking Web frontend (Flask app factory + blueprints): - app.py: create_app() factory with context processor - blueprints: stego, attest, fieldkit, keys, admin - templates: base.html (dark theme, unified nav), dashboard, all section pages - static: CSS, favicon Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-31 14:30:13 -04:00

Author

SHA1

Message

Date

Aaron D. Lee

7967d4b419

Implement 7 field-scenario feature requests

CI / lint (push) Failing after 51s

Details

CI / typecheck (push) Failing after 29s

Details

1. Transport-aware stego encoding: --transport flag (whatsapp/signal/
   telegram/discord/email/direct) auto-selects DCT mode, pre-resizes
   carrier to platform max dimension, prevents payload destruction
   by messaging app recompression.

2. Standalone verification bundle: chain export ZIP now includes
   verify_chain.py (zero-dep verification script) and README.txt
   with instructions for courts and fact-checkers.

3. Channel-key-only export/import: export_channel_key() and
   import_channel_key() with Argon2id encryption (64MB, lighter
   than full bundle). channel_key_to_qr_data() for in-person
   QR code exchange between collaborators.

4. Duress/cover mode: configurable SSL cert CN via cover_name
   config (defaults to "localhost" instead of "SooSeF Local").
   SOOSEF_DATA_DIR already supports directory renaming. Killswitch
   PurgeScope.ALL now self-uninstalls the pip package.

5. Identity recovery from chain: find_signer_pubkey() searches chain
   by fingerprint prefix. append_key_recovery() creates a recovery
   record signed by new key with old fingerprint + cosigner list.
   verify_chain() accepts recovery records.

6. Batch verification: /verify/batch web endpoint accepts multiple
   files, returns per-file status (verified/unverified/error) with
   exact vs perceptual match breakdown.

7. Chain position proof in receipt: verification receipts (now
   schema v3) include chain_proof with chain_id, chain_index,
   prev_hash, and record_hash for court admissibility.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-04-01 20:26:03 -04:00

Aaron D. Lee

b8d4eb5933

Add core modules, web frontend, CLI, keystore, and fieldkit

Core:
- paths.py: centralized ~/.soosef/ path constants
- config.py: JSON config loader with dataclass defaults
- exceptions.py: SoosefError hierarchy
- cli.py: unified Click CLI wrapping stegasoo + verisoo + native commands

Keystore:
- manager.py: unified key management (Ed25519 identity + channel keys)
- models.py: IdentityInfo, KeystoreStatus dataclasses
- export.py: encrypted key bundle export/import for USB transfer

Fieldkit:
- killswitch.py: ordered emergency data destruction (keys first)
- deadman.py: dead man's switch with check-in timer
- tamper.py: SHA-256 file integrity baseline + checking
- usb_monitor.py: pyudev USB whitelist enforcement
- geofence.py: haversine-based GPS boundary checking

Web frontend (Flask app factory + blueprints):
- app.py: create_app() factory with context processor
- blueprints: stego, attest, fieldkit, keys, admin
- templates: base.html (dark theme, unified nav), dashboard, all section pages
- static: CSS, favicon

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-31 14:30:13 -04:00

2 Commits