docs: detail all tasks with granular technical specifications

alec-c4 · alec-c4 · commit dcbe16fec001 · 2026-01-20T23:56:53.000+03:00
diff --git a/TASKS.md b/TASKS.md
@@ -1,92 +1,102 @@
-# Ratatoskr Implementation Plan
+# Ratatoskr Implementation Roadmap
 
-## Phase 1: Foundation (Core & SOS)
-Goal: Establish the architectural skeleton, basic P2P connectivity, and the critical "Black Box SOS" feature.
+## ✅ Phase 1: Foundation (Core & SOS)
+**Status:** Complete
+**Goal:** Establish architectural skeleton, P2P connectivity, and "Black Box SOS".
 
-- [x] **Project Setup**
-    - [x] Initialize Monorepo (Core, Server, Desktop).
-    - [x] Configure Rust Workspace.
-    - [x] Initialize Tauri + Svelte frontend.
-- [x] **Core Library (`ratatoskr-core`)**
-    - [x] Define basic data models (`SosPayload`, `GeoLocation`).
-    - [x] Implement ECIES Encryption (X25519 + AES-GCM) for anonymous SOS.
-    - [x] Setup `libp2p` Swarm with GossipSub and mDNS.
-- [x] **Relay Node (`ratatoskr-server`)**
-    - [x] Implement basic server that listens to P2P network.
-    - [x] Subscribe to `ratatoskr-sos` topic and log incoming packets.
-- [x] **Desktop Client (`ratatoskr-desktop`)**
-    - [x] Integrate Rust Core with Tauri.
-    - [x] Implement background P2P thread.
-    - [x] Create "Tactical UI" with Svelte & Tailwind/CSS.
-    - [x] Connect UI "SOS Button" to Core networking logic.
+- [x] **Project Setup** (Monorepo, Workspace, Tauri+Svelte).
+- [x] **Core Library** (Models, ECIES Encryption, libp2p Swarm).
+- [x] **Relay Node** (Basic listener, GossipSub).
+- [x] **Desktop Client** (Tactical UI, Background P2P thread, SOS logic).
 
-## Phase 2: Decentralized Identity (DID)
-Goal: Allow users to exist independently of any server.
+## 🚧 Phase 2: Identity & Routing
+**Status:** In Progress
+**Goal:** Self-Sovereign Identity and decentralized discovery.
 
-- [x] **Identity Generation**
-    - [x] Implement Ed25519 Keypair generation/storage (KeyVault).
-    - [x] Create `DidDocument` structure (W3C standard compatible - baseline hex ID implemented).
-- [x] **Registration flow**
-    - [x] Generate a unique "Ratatoskr ID" (e.g., `did:rat:zABC...`).
-    - [x] Implement "First Run" wizard in UI (Create Account / Import Seed).
-    - [x] Implement Mnemonic recovery (BIP-39).
-    - [x] Add secure backup export (.txt).
-- [x] **Routing**
-    - [x] Implement DHT (Kademlia) for finding peers by ID.
-    - [ ] Allow publishing "Mailbox" addresses to the DHT/Network.
+- [x] **Identity Management**
+    - [x] Ed25519 Keypair generation/storage (`KeyVault`).
+    - [x] BIP-39 Mnemonic recovery.
+    - [x] Secure Backup Export (.txt).
+- [x] **Routing (DHT)**
+    - [x] Implement Kademlia DHT (`libp2p-kad`).
+    - [x] Discovery via mDNS and Bootstrap nodes.
 - [ ] **Privacy & Anonymity**
-    - [ ] Implement Disposable Inboxes (Ephemeral burner DIDs).
-    - [ ] Implement Circuit Breaker for public gateways (adaptive PoW).
-    - [ ] Implement Blocklist / Gatekeeper settings.
-- [ ] **Digital Legacy**
-    - [ ] Implement Shamir's Secret Sharing for key sharding.
-    - [ ] Create "Guardian" invitation and shard distribution flow.
+    - [ ] **Disposable Inboxes (Burner IDs):**
+        - [ ] Implement HD Wallet derivation (BIP-32 style) for generating sub-keys from master seed.
+        - [ ] Add `burn_after` field to DID Document.
+        - [ ] UI: "Generate Temporary Contact Link" flow.
+    - [ ] **Gatekeeper System:**
+        - [ ] Implement `Blocklist` storage in SQLite.
+        - [ ] Logic to drop messages from blocked DIDs at the network level.
+        - [ ] "Allow Anonymous" toggle in settings (reject unsigned/unknown envelopes).
+    - [ ] **Circuit Breaker:**
+        - [ ] Implement Hashcash (Proof-of-Work) validation for incoming anonymous messages.
+        - [ ] Dynamic difficulty adjustment based on inbox flood rate.
 
-## Phase 3: Secure Chat & Efficient Communication
-Goal: Enable standard E2EE messaging with "Inbox Zero" architecture and multi-device support.
+## 🔮 Phase 3: Secure Chat & Efficiency
+**Status:** Active
+**Goal:** E2EE messaging, "Inbox Zero" workflow, and multi-device sync.
 
-- [ ] **Messaging Protocol**
-    - [ ] Implement Double Ratchet Algorithm (Signal Protocol style).
-    - [x] Define `ChatMessage` structure with Semantic Types (`Direct`, `Ephemeral`, `Transactional`).
-    - [x] Implement `TTL` logic for ephemeral messages (backend cleanup + UI removal).
-    - [x] Implement bidirectional chat history (sender and recipient visibility).
-    - [x] Implement Reply/Quote system.
-- [x] **Inbox Zero Logic**
-    - [x] Implement `GarbageCollector` background service.
-    - [x] Implement `ActionRequired` and `Done` state logic.
-- [ ] **Data & Sync**
-    - [ ] Implement Large File Transfer (IPFS-style chunking).
-    - [ ] Implement Multi-Device Sync using CRDTs.
-- [ ] **Mailbox / Offline Delivery**
-    - [ ] Implement "Blind Storage" logic on Relay Server.
-    - [ ] Implement Client logic to poll Mailbox for new messages.
-- [x] **Local Storage**
-    - [x] Setup SQLite database with SQLx.
-    - [ ] Implement "Plausible Deniability" (Decoy password vs Real password).
+- [x] **Core Messaging**
+    - [x] `ChatMessage` structure with Semantic Types.
+    - [x] SQLite Storage & History.
+    - [x] UI: Two-pane chat, Replies, Self-messages.
+    - [x] Inbox Zero: TTL auto-deletion (backend + UI).
+- [ ] **Advanced Cryptography (Double Ratchet)**
+    - [ ] Implement **X3DH** (Extended Triple Diffie-Hellman) for initial key exchange.
+    - [ ] Implement **Double Ratchet** session management (root key, chain keys).
+    - [ ] Store session states securely in SQLite (using `sqlcipher` or application-level encryption).
+    - [ ] Header Encryption (hide routing metadata).
+- [ ] **Inbox Zero Logic**
+    - [ ] **Semantic Actions:**
+        - [ ] Implement `ActionRequired` pinning logic.
+        - [ ] UI for "Defer" (Snooze) -> hide message until timestamp.
+        - [ ] UI for "Delegate" -> forward message and track status.
+    - [ ] **Integrations:**
+        - [ ] Define JSON Schema for `Transactional` messages (e.g., Bank Alert, Server Log).
+        - [ ] Create Webhook Gateway for external services to push messages to local node.
+- [ ] **Digital Legacy (Guardians)**
+    - [ ] **Sharding:** Implement Shamir's Secret Sharing (Split seed into N parts).
+    - [ ] **Guardian Protocol:**
+        - [ ] "Invite Guardian" flow (sends encrypted shard).
+        - [ ] "Accept Guardian" flow (stores shard securely).
+    - [ ] **Recovery Switch:**
+        - [ ] Logic for Guardians to publish "Shard Reveal".
+        - [ ] Client logic to reconstruct Master Key from K revealed shards.
+- [ ] **Offline Delivery (Mailbox)**
+    - [ ] **Server:** Implement "Blind Storage" (store encrypted blobs keyed by Recipient DID).
+    - [ ] **Protocol:** `RequestMessageStore` and `FetchMessages` commands in `libp2p`.
+    - [ ] **Client:** Polling logic to check Mailbox when online.
 
-## Phase 4: Resilience & Governance
-Goal: Operate without standard internet and manage community trust.
+## 🛡️ Phase 4: Resilience & Governance
+**Goal:** Operate without standard internet and manage community trust.
 
+- [ ] **Data & Sync (CRDTs)**
+    - [ ] **Device Cluster:** Link mobile and desktop via QR code (share Master Key).
+    - [ ] **State Sync:** Implement CRDTs (using `automerge` or `crdt`) to sync message history and read states between devices without a central server.
+    - [ ] **Large Files:** Implement chunked file transfer stream (IPFS-style DAG) for media >10MB.
 - [ ] **Mesh Networking**
-    - [ ] Research & Implement Bluetooth Low Energy (BLE) transport for `libp2p`.
-    - [ ] Enable peer discovery via local Wi-Fi multicast.
-- [ ] **The Plague Protocol**
-    - [ ] Implement trust-graph based reputation scoring.
-    - [ ] Create "Quarantine" logic for infected nodes (silent muting).
-- [ ] **Maintenance**
-    - [ ] Implement P2P Update System (viral patching).
-- [ ] **Trust Network**
-    - [ ] Implement `VolunteerCredential` issuing and verification.
+    - [ ] **Bluetooth LE:** Integrate `libp2p-bluetooth` or platform-specific bindings for local discovery.
+    - [ ] **Wi-Fi Direct:** Android/Linux specific implementation for off-grid connection.
+- [ ] **The Plague Protocol (Reputation)**
+    - [ ] **Trust Graph:** Store "Trust Scores" for contacts in DB.
+    - [ ] **Reporting:** "Report Spam" button signs a `MalfeasanceProof` against the sender.
+    - [ ] **Quarantine:** Logic to drop gossip propagation from nodes with Score < Threshold.
+    - [ ] **Jury:** Random selection protocol for resolving disputes (advanced).
+- [ ] **Unstoppable Updates**
+    - [ ] Implement P2P file distribution for binary updates.
+    - [ ] Verify updates against Foundation's offline GPG key.
 
-## Phase 5: Media, Mobile & Polish
-Goal: High-performance real-time communication and mobile release.
+## 📱 Phase 5: Mobile & Polish
+**Goal:** Public release and mobile parity.
 
+- [ ] **Mobile Port (Tauri Mobile)**
+    - [ ] Configure Android manifest & permissions (Foreground Service for P2P).
+    - [ ] Configure iOS capabilities (Network Extensions).
+    - [ ] Adapt UI: Bottom navigation, touch gestures (swipe to reply).
 - [ ] **Real-time Media**
-    - [ ] Implement 1-on-1 A/V calls (WebRTC/libp2p stream).
-    - [ ] Implement Group A/V calls via Blind SFU (Relay nodes).
-- [ ] **Mobile Port**
-    - [ ] Adapt UI for Mobile (Responsive).
-    - [ ] Configure Tauri for Android/iOS build.
-- [ ] **Audit & Launch**
-    - [ ] Security audit of crypto and P2P implementation.
-    - [ ] Public Beta release.
+    - [ ] **1-on-1:** WebRTC signaling over P2P connection + direct media stream.
+    - [ ] **Group Calls:** Implement "Blind SFU" logic on Relay nodes (forwarding encrypted SRTP packets).
+- [ ] **Security Audit**
+    - [ ] Fuzz testing of P2P handlers.
+    - [ ] Formal review of Double Ratchet implementation.
