tgss-mem

Memory #111 CURRENT

Lydian Stack Two-Node Sync Demo pria_core at V2.4 (commit cba47a9), 348/348 targeted tests pass. demo_peer_sync.py + DEMO_PEER_SYNC_RUNBOOK.md committed and pushed to origin/master 2026-04-29 for Mark↔Diego cross-host run over Tailscale. Self-loopback verified — both sides converge to identical chain head hash. **State as of 2026-04-29 — pre-Diego-call.** ## What's in the code The Genesis-Platform-Identity-Startup repo is much further along than the 2026-04-19 ACO-core memory entry suggested. The recent git log (top of master): - `cba47a9` runbook: correct branch name (master, not main) - `f2945f2` demo_peer_sync: full handshake + GEO-Sync over TCP across two nodes - `c2d9652` V2.4 axis: sidecar GC + grace-window cleaner (RECOVERY-001 §7.4 lifted) - `4e5d600` V2.3 Security and Identity Hardening: HLR-001 v2.0, Store ABC, Recovery, durable clock-peer chain - `5cd8d98` V2.2 gate close-out: pytest unification, **WRF rename** (aco→wrf), CustodyProvider, CI, observability Subsystems live in `src/pria_core/`: wallet + WRF (`wrf.py`, `wrf_sign.py`), custody (`custody/provider.py` + `custody/software.py`), HLR v2.0 (`hlr/`), recovery + sidecar GC, store ABC + sqlite + postgres, full clock-peering stack (`clock_peer/`: peer.py, sync.py, transport_tcp.py, chain.py, settlement.py, federation.py, hlr_chain.py, hlr_settlement.py). ## What's ready to demo - `demo_peer_sync.py` (project root) — argparse'd asyncio script, `--role server|client`. Mirrors `tests/test_clock_peer.py §17` over TcpTransport instead of LocalTransport so the two roles run on different hosts. - `DEMO_PEER_SYNC_RUNBOOK.md` (project root) — paste-able instructions for Diego: pre-reqs, Tailscale setup, command for each side, expected output, troubleshooting, "what this demo doesn't cover" honesty section. ## Self-loopback verification Ran 2026-04-29: server (`Mark`, entity_idx=0) + client (`Diego`, entity_idx=1) both on `127.0.0.1:9001`. Mark seeded 2 entries (GENESIS + WRF_ISSUE), Diego seeded 1 (GENESIS). After handshake + GEO-Sync, **both sides converged to chain length 3 with identical head hash `b908ad1746327d59a7378de156d6c80536f42365e27f2cd69a7e621cfdc048d9`**. `same genesis: True`, `chain valid: True`, `peer state: active` on both. Deterministic-merge timestamp ordering preserved (100k → 150k → 200k). ## Operational ground truth - Branch is `master` (not `main`). Both sides must pull `cba47a9` from `https://github.com/GestaltCE/Genesis-Platform-Identity-Startup`. - Python ≥ 3.10 (Mark on 3.14.2). Deps: `mpmath ≥ 1.4`, `flask ≥ 3.0`, `pytest ≥ 7`. Install: `pip install -e .[dev]`. - Mark's Tailscale IP: `100.93.250.35` (mark-gesstalt). Tailnet: `gestaltce.org.github`. - Each side MUST use a different `--entity-idx` (0..11 from `default_founding_entities()`). Same idx = self-handshake fail. - Demo uses `passphrase="demo"` for wallet unlock — no FIDO2/hardware auth in this run; that's a follow-up demo. - Wire is plaintext PeerMessage (no CALIX AEAD yet — production switches it on); Tailscale provides E2E encryption between hosts during the demo. ## Pending the 6 PM Diego call - Cross-host sync over actual Tailscale (not loopback) not yet verified. - Diego's Tailscale IP unknown; he needs to be added to `gestaltce.org.github` tailnet via a fresh `tskey-auth-...` auth key (separate from any API token). - This memory should be updated post-call with: actual head hashes both sides observed, any issues, decision on next demo (real WRF round-trip / witness relay / settlement two-phase / federation). ## Next-demo candidates (when Mark and Diego decide) 1. Real WRF credential exchange (1024-byte object, full sign/verify round-trip with hybrid alias-signed + lattice-sig per WALLET-001 v3.0 §3). 2. Witness-relay request-response (`PeerMessageType.PEER_WITNESS_RELAY` / `PEER_WITNESS_RESPONSE`). 3. Settlement two-phase commit (`PEER_TRANSFER_PREPARE` / `PEER_TRANSFER_COMMIT`). 4. Cross-genesis federation ceremony (`FederationManager` — different founding rings). 5. AuthDevice bind ceremony (depends on §6.F FIDO2 path being implemented in the demo path; per `GCE.SPEC.PrIA-IDENTITY-KEY-001 v2.0` §5). ## Cross-references - `GCE.SPEC.PrIA-IDENTITY-KEY-001 v2.0` (LOCAL_ONLY) — codifies the architectural invariant the code already implements. - `project_pria_palias_patent.md` — the v2.0 spec inherits LOCAL_ONLY from this workstream. - `project_aco_core_landed.md` (2026-04-19) — superseded by V2.2 close-out (`5cd8d98`); aco→wrf rename is in code. - `reference_tailscale_network.md` — tailnet credentials and IPs. — [project_lydian_demo_sync.md]

Outgoing Edges

No outgoing edges.

Link to Another Memory