Merge branch 'main' into feat/fix-whitelist-matching

Author: vikashsiwach

.changeset/README.md

@@ -0,0 +1,8 @@
+# Changesets
+
+Hello and welcome! This folder has been automatically generated by `@changesets/cli`, a build tool that works
+with multi-package repos, or single-package repos to help you version and publish your code. You can
+find the full documentation for it [in our repository](https://github.com/changesets/changesets).
+
+We have a quick list of common questions to get you started engaging with this project in
+[our documentation](https://github.com/changesets/changesets/blob/main/docs/common-questions.md).

.changeset/config.json

@@ -1,6 +1,6 @@
 {
-  "$schema": "https://unpkg.com/@changesets/config@latest/schema.json",
-  "changelog": ["@changesets/changelog-github", { "repo": "cameri/nostream" }],
+  "$schema": "https://unpkg.com/@changesets/config@3.1.4/schema.json",
+  "changelog": "@changesets/cli/changelog",
   "commit": false,
   "fixed": [],
   "linked": [],

.changeset/light-lilies-yawn.md

@@ -0,0 +1,5 @@
+---
+"nostream": minor
+---
+
+Add EWMA rate limiter with configurable strategy support

.changeset/nip-03-opentimestamps.md

@@ -0,0 +1,5 @@
+---
+"nostream": minor
+---
+
+Add NIP-03 OpenTimestamps support for kind 1040 events: structural `.ots` validation, Bitcoin attestation requirement, digest match to the referenced `e` tag, and relay metadata updates (#105).

.changeset/slimy-bars-burn.md

@@ -0,0 +1,5 @@
+---
+"nostream": minor
+---
+
+Add EWMA rate limiter with strategy support

CONFIGURATION.md

@@ -109,40 +109,18 @@ The settings below are listed in alphabetical order by name. Please keep this ta
 |                                             | Defaults to zero. Disabled when set to zero. |
 | limits.event.pubkey.whitelist               | List of public keys to always allow. Only public keys in this list will be able to post to this relay. Use for private relays. |
 | limits.event.rateLimits[].kinds             | List of event kinds rate limited. Use `[min, max]` for ranges. Optional. |
-| limits.event.rateLimits[].period            | Rate limiting period in milliseconds. |
+| limits.event.rateLimits[].period | Rate limiting period in milliseconds. For `sliding_window`: the time window during which requests are counted. For `ewma`: the half-life of the exponential decay — shorter values forget bursts faster, longer values are stricter on bursty clients. |
 | limits.event.rateLimits[].rate              | Maximum number of events during period. |
 | limits.event.retention.kind.whitelist       | Event kinds excluded from retention purge. NIP-62 `REQUEST_TO_VANISH` is always excluded from retention purge, even if not listed here. |
 | limits.event.retention.maxDays              | Maximum number of days to retain events. Purge deletes events that are expired (`expires_at`), soft-deleted (`deleted_at`), or older than this window (`created_at`). Any non-positive value disables retention purge. |
 | limits.event.retention.pubkey.whitelist     | Public keys excluded from retention purge. |
 | limits.event.whitelists.ipAddresses         | List of IPs (IPv4 or IPv6) to ignore rate limits. |
-| limits.event.whitelists.pubkeys             | List of public keys to ignore rate limits. |
-| limits.message.ipWhitelist                  | List of IPs (IPv4 or IPv6) to ignore rate limits. |
-| limits.message.rateLimits[].period          | Rate limit period in milliseconds. |
+| limits.client.subscription.maxSubscriptions | Maximum number of subscriptions per connected client. Defaults to 10. Disabled when set to zero. |
+| limits.client.subscription.maxFilters       | Maximum number of filters per subscription. Defaults to 10. Disabled when set to zero. |
+| limits.message.rateLimits[].period | Rate limiting period in milliseconds. For `sliding_window`: the time window. For `ewma`: the half-life of the decay function. |
 | limits.message.rateLimits[].rate            | Maximum number of messages during period. |
-| mirroring.static[].address                  | Address of mirrored relay. (e.g. ws://100.100.100.100:8008) |
-| mirroring.static[].filters                  | Subscription filters used to mirror. |
-| mirroring.static[].limits.event             | Event limit overrides for this mirror. See configurations under limits.event. |
-| mirroring.static[].secret                   | Secret to pass to relays. Nostream relays only. Optional. |
-| mirroring.static[].skipAdmissionCheck       | Disable the admission fee check for events coming from this mirror. |
-| network.maxPayloadSize                      | Maximum number of bytes accepted per WebSocket frame |
-| network.remoteIpHeader                      | HTTP header from proxy containing IP address from client. |
-| nip05.domainBlacklist                       | List of domains blocked from NIP-05 verification. Authors with NIP-05 at these domains will be rejected. |
-| nip05.domainWhitelist                       | List of domains allowed for NIP-05 verification. If set, only authors verified at these domains can publish. |
-| nip05.maxConsecutiveFailures                | Number of consecutive verification failures before giving up on an author. Defaults to 20. |
-| nip05.mode                                  | NIP-05 verification mode: `enabled` requires verification, `passive` verifies without blocking, `disabled` does nothing. Defaults to `disabled`. |
-| nip05.verifyExpiration                      | Time in milliseconds before a successful NIP-05 verification expires and needs re-checking. Defaults to 604800000 (1 week). |
-| nip05.verifyUpdateFrequency                 | Minimum interval in milliseconds between re-verification attempts for a given author. Defaults to 86400000 (24 hours). |
-| paymentProcessors.lnbits.baseURL            | Base URL of your Lnbits instance. |
-| paymentProcessors.lnbits.callbackBaseURL    | Public-facing Nostream's Lnbits Callback URL. (e.g. https://relay.your-domain.com/callbacks/lnbits) |
-| paymentProcessors.lnurl.invoiceURL          | [LUD-06 Pay Request](https://github.com/lnurl/luds/blob/luds/06.md) provider URL. (e.g. https://getalby.com/lnurlp/your-username) |
-| paymentProcessors.zebedee.baseURL           | Zebedee's API base URL. |
-| paymentProcessors.zebedee.callbackBaseURL   | Public-facing Nostream's Zebedee Callback URL (e.g. https://relay.your-domain.com/callbacks/zebedee) |
-| paymentProcessors.zebedee.ipWhitelist       | List with Zebedee's API Production IPs. See [ZBD API Documentation](https://api-reference.zebedee.io/#c7e18276-6935-4cca-89ae-ad949efe9a6a) for more info. |
-| payments.enabled                            | Enabled payments. Defaults to false. |
-| payments.feeSchedules.admission[].amount    | Admission fee amount in msats. |
-| payments.feeSchedules.admission[].enabled   | Enables admission fee. Defaults to false. |
-| payments.feeSchedules.admission[].whitelists.event_kinds | List of event kinds to waive admission fee. Use `[min, max]` for ranges. |
-| payments.feeSchedules.admission[].whitelists.pubkeys | List of pubkeys to waive admission fee. |
-| payments.processor                          | Either `zebedee`, `lnbits`, `lnurl`. |
-| workers.count                               | Number of workers to spin up to handle incoming connections. |
-|                                             | Spin workers as many CPUs are available when set to zero. Defaults to zero. |
+| limits.message.ipWhitelist                  | List of IPs (IPv4 or IPv6) to ignore rate limits. |
+| limits.admissionCheck.rateLimits[].period | Rate limiting period in milliseconds. For `sliding_window`: the time window. For `ewma`: the half-life of the decay function. |
+| limits.admissionCheck.rateLimits[].rate            | Maximum number of admission checks during period. |
+| limits.admissionCheck.ipWhitelist                  | List of IPs (IPv4 or IPv6) to ignore rate limits. |
+| limits.rateLimiter.strategy | Rate limiting strategy. Either `ewma` or `sliding_window`. Defaults to `ewma`. When using `ewma`, the `period` field in each rate limit serves as the half-life for the exponential decay function. Note: when switching from `sliding_window` to `ewma`, consider increasing `rate` values slightly as EWMA penalizes bursty behavior more aggressively. |

README.md

@@ -47,6 +47,7 @@ NIPs with a relay-specific implementation are listed here.
 
 - [x] NIP-01: Basic protocol flow description
 - [x] NIP-02: Contact list and petnames
+- [x] NIP-03: OpenTimestamps Attestations for Events
 - [x] NIP-04: Encrypted Direct Message
 - [x] NIP-05: Mapping Nostr keys to DNS-based internet identifiers
 - [x] NIP-09: Event deletion

package.json

@@ -5,6 +5,7 @@
   "supportedNips": [
     1,
     2,
+    3,
     4,
     9,
     11,
@@ -49,6 +50,7 @@
     "docker:build": "docker build -t nostream .",
     "pretest:integration": "mkdir -p .test-reports/integration",
     "test:load": "node -r ts-node/register ./scripts/security-load-test.ts",
+    "smoke:nip03": "node -r ts-node/register scripts/smoke-nip03.ts",
     "test:integration": "cucumber-js",
     "cover:integration": "nyc --report-dir .coverage/integration npm run test:integration -- -p cover",
     "export": "node --env-file-if-exists=.env -r ts-node/register src/scripts/export-events.ts",

resources/default-settings.yaml

@@ -64,6 +64,9 @@ workers:
 mirroring:
   static: []
 limits:
+  # strategy selection configuration for rate limiting:
+  rateLimiter:
+    strategy: ewma
   invoice:
     rateLimits:
       - period: 60000

scripts/smoke-nip03.md

@@ -0,0 +1,146 @@
+# NIP-03 smoke test with a real OpenTimestamps client
+
+This exercises a running nostream relay against a genuine Bitcoin-attested
+OpenTimestamps proof that a real OTS client produced in the wild (the
+event used in the [NIP-03 spec example](https://github.com/nostr-protocol/nips/blob/master/03.md)
+on `wss://nostr-pub.wellorder.net`).
+
+The relay never sees a synthetic proof here: the `.ots` blob in `content`
+was made by a real `ots stamp` + `ots upgrade` flow, is attested to a real
+Bitcoin block header, and is validated by the real `ots verify` binary
+against a public Esplora server before and after it round-trips through
+your relay.
+
+## Why not generate our own proof end-to-end?
+
+`ots stamp` writes a pending proof. A pending proof has to sit in a
+calendar server's queue for several Bitcoin blocks (typically a few
+hours) before `ots upgrade` can turn it into a confirmed Bitcoin
+attestation. Running that end-to-end in CI or on a developer machine is
+impractical. Re-using an already-upgraded, already-published kind 1040
+event is an equally honest "real client" test: we did not make the
+proof, and we prove its validity with the same binary a Nostr client
+would use.
+
+## Prerequisites
+
+- A running nostream relay (default `ws://127.0.0.1:8008`).
+- Node.js (same as the repo; the script runs via `ts-node` and uses the `ws` package).
+- [`opentimestamps-client`](https://github.com/opentimestamps/opentimestamps-client)
+  for the real `ots` step (optional; the script auto-detects and skips
+  gracefully if it's not installed):
+  - Linux / macOS: `pipx install opentimestamps-client`, or
+    `pip install opentimestamps-client`.
+  - Windows: Python 3.13 has an OpenSSL compatibility bug in
+    `python-bitcoinlib` on which the client depends. Run it inside a
+    container instead:
+
+    ```bash
+    docker run --rm -v $PWD:/work python:3.11-slim \
+      sh -c "pip install -q opentimestamps-client && ots info /work/proof.ots"
+    ```
+- A Bitcoin node (optional, only for `--verify`). Without one the script
+  runs `ots info`, which parses the proof and confirms the Bitcoin
+  attestation it terminates in. `ots verify` additionally looks up the
+  block header on a Bitcoin node to prove the attestation is genuine; if
+  you don't have one, `ots info` is the honest equivalent of
+  structural-client acceptance.
+
+## Running the automated script
+
+```bash
+npm run smoke:nip03
+# or, with non-default relays:
+npx ts-node scripts/smoke-nip03.ts \
+  --local-relay ws://127.0.0.1:8008 \
+  --source-relay wss://nostr-pub.wellorder.net
+```
+
+Expected output on a healthy relay with `ots` installed:
+
+```
+NIP-03 end-to-end smoke test
+  local relay:   ws://127.0.0.1:8008
+  source relays: wss://nos.lol, wss://relay.damus.io, wss://nostr.wine, wss://offchain.pub, wss://nostr-pub.wellorder.net
+
+1) Discovering a real NIP-03 event from public relays
+  trying wss://nos.lol for any recent kind 1040…
+  PASS  discovered 697b40df2f1c… on wss://nos.lol (pubkey=b1104a6e…, attests e=88fea43a70bd…, content=4968 chars)
+
+2) Parsing OTS content with the real `ots` client
+  PASS  ots info parsed proof — BitcoinBlockHeaderAttestation(941057) (file: /tmp/nip03-XXXX/proof.ots)
+
+3) Publishing the real event to the local relay
+  PASS  local relay accepted real NIP-03 event (reason="")
+
+4) Round-tripping the event through the local relay
+  PASS  local relay returned the same event (id, sig, content) on REQ
+
+summary: 3 passed, 0 failed
+```
+
+Pass `--verify` (or set `OTS_VERIFY=1`) to additionally run
+`ots verify -d <target-event-id>` which asks a Bitcoin node to confirm
+the block header. Exit code is `0` iff every step passes.
+
+## What each step proves
+
+1. **Source discovery** — confirms a real third-party kind 1040 event
+   exists, came from a real signed OTS client flow, and that you and the
+   network agree on its bytes.
+2. **`ots info` (or `ots verify`)** — confirms the `.ots` content in
+   `event.content` is a structurally valid OpenTimestamps proof when fed
+   to the real reference client, and that it terminates in a Bitcoin
+   block header attestation (which is what NIP-03 requires). If
+   `--verify` is set, additionally walks the Bitcoin header via a
+   configured node to prove the attested block really contains the merkle
+   root.
+3. **Publish** — confirms nostream's NIP-03 strategy accepts a
+   real-world, real-client-produced kind 1040 event (structure,
+   `e` tag, digest match, Bitcoin attestation requirement all satisfied).
+4. **Round-trip** — confirms the relay persisted the event unchanged and
+   returns the exact same id, signature, and base64 content on REQ, so
+   downstream clients that re-run `ots verify` on the relay's output will
+   still succeed.
+
+## Manual walkthrough (if you want to stamp your own)
+
+If you do have a few hours to wait and want a proof you made yourself:
+
+```bash
+export RELAY=ws://127.0.0.1:8008
+export SK=$(nak key generate)
+export EVENT_ID=$(nak event --sec "$SK" -k 1 -c "anchor this note" "$RELAY" | jq -r '.[1].id // .id')
+
+# Stamp the raw 32 bytes of the event id (not the hex string)
+echo -n "$EVENT_ID" | xxd -r -p > /tmp/nip03-digest.bin
+ots stamp /tmp/nip03-digest.bin
+
+# Wait for calendars + Bitcoin confirmation, then:
+ots upgrade /tmp/nip03-digest.bin.ots
+ots verify  /tmp/nip03-digest.bin.ots
+
+export OTS_B64=$(base64 -w0 /tmp/nip03-digest.bin.ots)
+nak event --sec "$SK" -k 1040 \
+  -t e="$EVENT_ID" \
+  -t k=1 \
+  -c "$OTS_B64" \
+  "$RELAY"
+
+# round-trip
+nak req -k 1040 -a "$(nak key public "$SK")" "$RELAY" \
+  | jq -r '.content' | base64 -d | ots verify -
+```
+
+Each publish attempt should come back as `["OK", "<id>", true, ""]`.
+
+## Negative paths
+
+Actively testing NIP-03 rejection paths (mismatched digest, uppercase
+`e` tag, multiple `k` tags, unsupported OTS version, garbage content)
+would require re-signing a mutated event, which means the proof would no
+longer be produced by a real OTS client. Those paths are covered in
+isolation by the unit tests:
+
+- `test/unit/utils/nip03.spec.ts`
+- `test/unit/handlers/event-strategies/timestamp-event-strategy.spec.ts`