Initial commit: ComLock Production Candidate

Author: ElMoorish

.github/workflows/release.yml

@@ -0,0 +1,133 @@
+name: ComLock Release
+
+on:
+  push:
+    tags:
+      - 'v*'
+
+jobs:
+  # ===========================================================================
+  # WEB BUILD
+  # ===========================================================================
+  build-web:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+
+      - name: Setup Node
+        uses: actions/setup-node@v3
+        with:
+          node-version: 18
+
+      - name: Install Rust
+        uses: dtolnay/rust-toolchain@stable
+
+      - name: Install dependencies
+        working-directory: ./comlock-app
+        run: npm ci
+
+      - name: Build Web
+        working-directory: ./comlock-app
+        run: npm run build
+
+      - name: Zip Dist
+        working-directory: ./comlock-app
+        run: zip -r comlock-web-${{ github.ref_name }}.zip dist
+
+      - name: Upload Web Artifact
+        uses: actions/upload-artifact@v3
+        with:
+          name: web-dist
+          path: comlock-app/comlock-web-${{ github.ref_name }}.zip
+
+  # ===========================================================================
+  # ANDROID BUILD
+  # ===========================================================================
+  build-android:
+    runs-on: ubuntu-latest
+    needs: build-web
+    steps:
+      - uses: actions/checkout@v3
+
+      - name: Setup Node
+        uses: actions/setup-node@v3
+        with:
+          node-version: 18
+
+      - name: Install Rust
+        uses: dtolnay/rust-toolchain@stable
+        with:
+          targets: aarch64-linux-android,armv7-linux-androideabi,i686-linux-android,x86_64-linux-android
+
+      - name: Install dependencies
+        working-directory: ./comlock-app
+        run: npm ci
+
+      - name: Build Android APK
+        uses: tauri-apps/tauri-action@v0
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        with:
+          projectPath: ./comlock-app
+          tagName: ${{ github.ref_name }}
+          releaseName: 'ComLock ${{ github.ref_name }}'
+          releaseBody: 'See the assets to download this version and install.'
+          modKey: ${{ secrets.ANDROID_KEYSTORE }}
+          args: android build --apk
+
+  # ===========================================================================
+  # iOS BUILD
+  # ===========================================================================
+  build-ios:
+    runs-on: macos-latest
+    needs: build-web
+    steps:
+      - uses: actions/checkout@v3
+
+      - name: Setup Node
+        uses: actions/setup-node@v3
+        with:
+          node-version: 18
+
+      - name: Install Rust
+        uses: dtolnay/rust-toolchain@stable
+        with:
+          targets: aarch64-apple-ios,x86_64-apple-ios
+
+      - name: Install dependencies
+        working-directory: ./comlock-app
+        run: npm ci
+
+      - name: Build iOS IPA
+        uses: tauri-apps/tauri-action@v0
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          APPLE_CERTIFICATE: ${{ secrets.APPLE_CERTIFICATE }}
+          APPLE_CERTIFICATE_PASSWORD: ${{ secrets.APPLE_CERTIFICATE_PASSWORD }}
+          APPLE_MOBILE_PROVISIONING_PROFILE: ${{ secrets.APPLE_MOBILE_PROVISIONING_PROFILE }}
+        with:
+          projectPath: ./comlock-app
+          tagName: ${{ github.ref_name }}
+          releaseName: 'ComLock ${{ github.ref_name }}'
+          releaseBody: 'See the assets to download this version and install.'
+          args: ios build
+
+  # ===========================================================================
+  # CREATE RELEASE
+  # ===========================================================================
+  create-release:
+    runs-on: ubuntu-latest
+    needs: [build-web, build-android, build-ios]
+    steps:
+      - uses: actions/download-artifact@v3
+        with:
+          name: web-dist
+
+      - name: Release
+        uses: softprops/action-gh-release@v1
+        if: startsWith(github.ref, 'refs/tags/')
+        with:
+          files: |
+            comlock-web-*.zip
+            comlock-app/src-tauri/gen/android/app/build/outputs/apk/universal/release/app-universal-release.apk
+            comlock-app/src-tauri/gen/apple/build/Release-iphoneos/comlock_app.ipa

.gitignore

@@ -0,0 +1,40 @@
+# Rust / Cargo
+target/
+**/*.rs.bk
+debug/
+release/
+
+# Node / Web
+node_modules/
+dist/
+.DS_Store
+Thumbs.db
+
+# Tauri
+src-tauri/target/
+src-tauri/gen/
+**/.tauri/
+
+# Environment / Secrets
+.env
+*.env
+security.enc
+security_pentest.enc
+*.key
+*.pem
+
+# IDEs
+.vscode/
+.idea/
+*.iml
+
+# Logs
+npm-debug.log*
+yarn-debug.log*
+pnpm-debug.log*
+
+# ComLock Specific
+brain/
+UX Design.md
+Implementation-plan.md
+Rust Implementation of KEM Braid.md

Documentation/PRD.md

@@ -0,0 +1 @@
+1. Vision & ObjectivesProject ComLock aims to establish the "Anonymously Resilient" standard for digital communication. Unlike legacy secure messengers (Signal, WhatsApp) which protect content but leak metadata, and unlike anonymity networks (Tor) which sacrifice latency and usability, ComLock fuses these into a single high-assurance stack.Core Value Proposition:Unlinkability: A Global Network Adversary (GNA) cannot correlate a sender to a receiver.Post-Quantum Confidentiality: All communications are immune to "Harvest Now, Decrypt Later" via hybrid ML-KEM encapsulation.Identity Independence: No phone numbers, emails, or central servers.2. Functional Requirements2.1 The Cryptographic Core: PQ-Triple RatchetThe messaging layer must implement the Triple Ratchet protocol, an evolution of the Double Ratchet that adds a continuous KEM-based re-keying mechanism.Hybrid Handshake: Initial X3DH must be replaced with PQXDH, utilizing X25519 for classical security and ML-KEM-1024 (Kyber) for quantum resistance.The KEM Braid: To mitigate the high bandwidth cost of Kyber keys (~1.5KB), the client must implement a "Sparse Continuous Key Agreement" (SCKA).Mechanism: The KEM ratchet does not advance with every message. Instead, it advances opportunistically (e.g., every 50 messages or 24 hours).Entropy Injection: The output of the KEM encapsulation is mixed into the KDF chain ($CK_{n+1}$) alongside the ECDH output, ensuring that a compromise of the current state is healed against quantum adversaries in the future (Post-Compromise Security).2.2 Transport: Stratified Mixnet (Loopix)Clients do not connect directly. They connect to a Gateway which routes traffic through a Stratified Mixnet.Packet Format: All packets must be indistinguishable 32KB Sphinx packets.Poisson Mixing: Clients must inject dummy traffic (loops) according to a Poisson process ($\lambda_{loop}$). Real messages are delayed by a random variable $t$ drawn from an exponential distribution to decorrelate ingress/egress timing.2.3 Identity: Zero-Knowledge MembershipOnboarding: A user generates a local keypair and presents a "Proof of Humanity" (e.g., a blind signature from a localized trust anchor or a crypto-asset stake) to enter a Rate Limiting Nullifier (RLN) Merkle Tree.Signaling: Every message includes a ZK-Proof proving membership in the tree without revealing the leaf index.Slashing: If a user sends $>1$ message per epoch (e.g., 10s), their secret key is mathematically revealed by the protocol (Shamir's Secret Sharing reconstruction), allowing the network to blacklist them.3. Non-Functional Requirements & ConstraintsLatency: End-to-end latency for text messages must be $\le 2.5$ seconds (95th percentile).Bandwidth: Idle background traffic (Cover Traffic) must not exceed 5KB/s to preserve battery on mobile.Battery: Mobile clients must utilize the device's NPU/DSP for ML-KEM operations where possible to minimize main CPU wake-time.Panic Layer (Duress):Constraint: The app must support a "Duress Password."Behavior: Entering this password at the unlock screen must instantly delete the master keys from the Secure Enclave and populate the database with cryptographically signed "dummy" chat history (pre-generated) to satisfy coercive inspection.4. User StoriesAs a Whistleblower: I need to transfer a 50MB PDF to a journalist. The transfer must be chunked into Sphinx packets and mixed over 10 minutes so that my ISP sees only a constant, low-bandwidth stream indistinguishable from background noise.As a Diplomat: I need to pair with a contact without a server knowing our relationship. We perform a QR-code based Short Authentication String (SAS) verification that exchanges ML-KEM public keys directly over Bluetooth/Camera, bypassing the internet entirely for the initial trust establishment.

Features.md

@@ -0,0 +1 @@
+This document outlines the feature set required to deliver "Maximum Security" while managing the inherent friction of Mixnet latency and Zero-Knowledge proofs.1. Identity & Onboarding (The "Ghost" Layer)Objective: Prove humanity without revealing identity.F-ID-01: Zero-Knowledge Account Creation:Generates a locally stored Ed25519/Kyber-1024 keypair.No phone number, email, or cloud account linkage.Mnemonic Backup: standard BIP-39 24-word seed phrase for recovery.F-ID-02: RLN Membership (Spam Shield):Proof-of-Humanity: User must provide a cryptographic "stake" to join the network (e.g., a blind signature from a trusted issuer or a minimal crypto-asset lock).Membership Tree Sync: Background synchronization of the RLN Merkle Tree to generate valid ZK proofs for sending.F-ID-03: Disposable Aliases:Users can generate ephemeral QR codes (Aliases) that link to their master public key but cannot be correlated by the network.One-Time Invite Links: Links that expire after a single handshake to prevent social graph mapping.2. Communication Core (The "Quantum" Shield)Objective: Confidentiality that survives the quantum apocalypse.F-COM-01: Hybrid Post-Quantum Messaging:Triple Ratchet: X25519 + Kyber-1024 + Symmetric Ratchet.Header Splitting: Automatic fragmentation of large Kyber keys into multiple Sphinx packets to prevent packet size correlation.F-COM-02: Asynchronous "Mailbox" Delivery:Since peer-to-peer connections may fail, messages are routed to a "Dead Drop" (SURB - Single Use Reply Block) on a random Service Provider node.Client periodically polls the Dead Drop using anonymous fetch requests.F-COM-03: Media "Shredding":File attachments (Images/PDFs) are padded to uniform block sizes (e.g., 32KB).Blocks are sent via different mix routes and reassembled by the recipient.F-COM-04: Disappearing Messages (Timer-based):Local auto-deletion of message history after $T$ time (e.g., 1 hour, 1 week).3. Network & Transport (The "Noise" Layer)Objective: Hide metadata in a forest of noise.F-NET-01: Tunable Anonymity (The "Slider"):High Latency / High Anonymity: Aggressive Poisson delays (3–10s) and high cover traffic volume.Low Latency / Standard Anonymity: Reduced delays (<2s) for active conversations.F-NET-02: Cover Traffic Generator:App generates dummy traffic ("heartbeats") even when idle.Battery Saver Mode: Reduces cover traffic when battery <20%, with a UI warning that "Metadata protection is degraded."F-NET-03: Censorship Evasion:Pluggable Transports: Option to wrap traffic in WSS (WebSocket Secure) or masquerade as a video stream (WebRTC) to bypass DPI firewalls.4. The "Panic" Layer (Physical Defense)Objective: Protect the user during physical seizure.F-SEC-01: Duress Password (Decoy Mode):Entering a specific "Duress PIN" at the lock screen unlocks a Decoy Vault.Decoy Content: Pre-populated, cryptographically valid but "innocent" chats (e.g., grocery lists, casual banter) generated by a local LLM or pre-scripted.Silent Wipe: While the decoy opens, the real keys in the Secure Enclave are silently destroyed.F-SEC-02: Dead Man's Switch:If the app is not opened for $X$ days, local keys are automatically deleted.

Infrastructure.md

@@ -0,0 +1,30 @@
+1. Node Topology: Stratified MixnetThe network is composed of three distinct layers of nodes to prevent any single node from knowing both the sender and receiver.Layer 1 (Entry/Gateway): Handles client connections, buffers packets, and enforces RLN spam protection. Knows the User IP but not the destination.Layer 2 (Mix): Shuffles packets. Knows only the previous hop and next hop.Layer 3 (Exit/Mailbox): Stores packets for offline users. Knows the Recipient but not the sender.Topology Rule: Traffic must flow $L1 \rightarrow L2 \rightarrow L3$. Loops can flow $L1 \rightarrow L2 \rightarrow L1$.2. Public Parameters & The TreeThe Merkle Tree: Maintained via a decentralized set of Waku Store nodes.Syncing: Clients do not download the whole tree. They use Light Client Proofs to update their witness (the path to the root) only when they need to send.Anonymity Set: Target set size is $2^{20}$ (1M users). Tree depth: 20.3. CI/CD: The "Nix" Trust PipelineTo ensure no backdoors are inserted by the compiler or build server, we use Nix Flakes.flake.nix snippet:Nix{
+  inputs = {
+    nixpkgs.url = "github:NixOS/nixpkgs/nixos-25.11";
+    rust-overlay.url = "github:oxalica/rust-overlay";
+  };
+
+  outputs = { self, nixpkgs, rust-overlay,... }:
+    let
+      system = "x86_64-linux";
+      pkgs = import nixpkgs {
+        inherit system;
+        overlays = [ (import rust-overlay) ];
+      };
+    in {
+      # Hermetic build environment
+      packages.${system}.comlock-core = pkgs.rustPlatform.buildRustPackage {
+        pname = "comlock-core";
+        version = "0.1.0";
+        src =./.;
+        cargoLock = { lockFile =./Cargo.lock; };
+        
+        # Enforce reproducibility
+        postInstall = ''
+          strip -R.comment $out/bin/comlock-core
+          # Set deterministic timestamps
+          find $out -exec touch -h -d @0 {} +
+        '';
+      };
+    }
+4. Censorship CircumventionIf the ComLock protocol is identified and blocked by a state firewall (DPI):Pluggable Transports: ComLock packets are wrapped in WebSocket Secure (WSS) to look like HTTPS traffic.Domain Fronting: The initial connection handshake is routed through a major CDN (e.g., Cloudflare/Fastly) so blocking the app requires blocking the entire CDN.Offline Mesh: If the internet is cut, the app switches to P2P Mode using Bluetooth LE and WiFi Direct (via the B.A.T.M.A.N protocol adapted for mobile) to relay packets to a node with uplink connectivity.

README.md

@@ -0,0 +1,74 @@
+# ComLock
+
+**ComLock** is a high-assurance, post-quantum secure communication platform designed for extreme threat models. It combines the "Terminal Chic" aesthetic of a hacker dashboard with NSA-grade cryptographic engineering.
+
+## 🛡️ Core Features
+
+-   **Post-Quantum Cryptography**: Uses **Kyber-1024 (ML-KEM)** for key encapsulation and **X25519** for ongoing ratchet secrecy.
+-   **Panic Layer**: "Duress Mode" and "Dead Man's Switch" provide plausible deniability and automated data wiping.
+-   **Offline-First**: Maximum security through local key management and QR-based offline handshakes.
+-   **Terminal Chic UI**: A retro-futuristic, high-contrast interface designed for clarity and speed.
+
+## 🚀 Getting Started
+
+### Prerequisites
+
+-   **Node.js**: v18+
+-   **Rust**: Stable toolchain (1.75+)
+-   **Tauri CLI**: `cargo install tauri-cli`
+
+### Installation
+
+1.  Clone the repository:
+    ```bash
+    git clone https://github.com/your-org/comlock.git
+    cd comlock/comlock-app
+    ```
+
+2.  Install dependencies:
+    ```bash
+    npm install
+    # Backend dependencies are handled by Cargo automatically
+    ```
+
+3.  Run in Development Mode:
+    ```bash
+    npm run tauri dev
+    ```
+
+## 🏗️ Build & Release
+
+We use GitHub Actions for automated cross-platform builds.
+
+### Triggering a Release
+Push a tag starting with `v` (e.g., `v1.0.0`) to the `main` branch.
+```bash
+git tag v1.0.0
+git push origin v1.0.0
+```
+
+### GitHub Secrets Required
+For the CI/CD pipeline to work, configure the following repository secrets:
+
+**Android**:
+-   `ANDROID_KEYSTORE`: Base64 encoded keystore file.
+-   `ANDROID_KEYSTORE_PASSWORD`: Keystore password.
+-   `ANDROID_KEY_ALIAS`: Key alias.
+-   `ANDROID_KEY_PASSWORD`: Key password.
+
+**iOS**:
+-   `APPLE_CERTIFICATE`: Base64 p12 certificate.
+-   `APPLE_CERTIFICATE_PASSWORD`: Certificate password.
+-   `APPLE_MOBILE_PROVISIONING_PROFILE`: Base64 provisioning profile.
+
+## 🔐 Security
+
+ComLock is built with a "paranoia-first" mindset.
+
+-   **Audit Status**: Phase 5 Audit Passed (Jan 2026).
+-   **Memory Safety**: All keys are zeroized on drop.
+-   **Storage**: AES-256-GCM encrypted local storage PIN-protected.
+
+---
+
+*(c) 2026 ComLock Project*

comlock-app/.gitignore

@@ -0,0 +1,24 @@
+# Logs
+logs
+*.log
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+pnpm-debug.log*
+lerna-debug.log*
+
+node_modules
+dist
+dist-ssr
+*.local
+
+# Editor directories and files
+.vscode/*
+!.vscode/extensions.json
+.idea
+.DS_Store
+*.suo
+*.ntvs*
+*.njsproj
+*.sln
+*.sw?

comlock-app/README.md

@@ -0,0 +1,7 @@
+# Tauri + React + Typescript
+
+This template should help get you started developing with Tauri, React and Typescript in Vite.
+
+## Recommended IDE Setup
+
+- [VS Code](https://code.visualstudio.com/) + [Tauri](https://marketplace.visualstudio.com/items?itemName=tauri-apps.tauri-vscode) + [rust-analyzer](https://marketplace.visualstudio.com/items?itemName=rust-lang.rust-analyzer)

comlock-app/index.html

@@ -0,0 +1,14 @@
+<!doctype html>
+<html lang="en">
+  <head>
+    <meta charset="UTF-8" />
+    <link rel="icon" type="image/svg+xml" href="/vite.svg" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <title>Tauri + React + Typescript</title>
+  </head>
+
+  <body>
+    <div id="root"></div>
+    <script type="module" src="/src/main.tsx"></script>
+  </body>
+</html>