From c78035a5d9e705204152ee47eac4c9b26ee4a824 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Sat, 1 Apr 2023 20:04:20 -0400
Subject: [PATCH 01/74] start of storage manager

---
 veilid-core/proto/veilid.capnp                |  37 +++--
 veilid-core/src/core_context.rs               |  35 ++++
 veilid-core/src/crypto/byte_array_types.rs    |   6 +
 veilid-core/src/crypto/types/mod.rs           |   1 +
 veilid-core/src/lib.rs                        |   1 +
 veilid-core/src/rpc_processor/mod.rs          |   2 +-
 veilid-core/src/storage_manager/mod.rs        | 154 ++++++++++++++++++
 veilid-core/src/veilid_api/api.rs             |   7 +
 veilid-core/src/veilid_api/mod.rs             |   1 +
 veilid-core/src/veilid_api/routing_context.rs |  86 ++++++++--
 veilid-core/src/veilid_api/types.rs           | 131 +++++++++++++--
 11 files changed, 420 insertions(+), 41 deletions(-)
 create mode 100644 veilid-core/src/storage_manager/mod.rs

diff --git a/veilid-core/proto/veilid.capnp b/veilid-core/proto/veilid.capnp
index 5474d11a..3884b4c1 100644
--- a/veilid-core/proto/veilid.capnp
+++ b/veilid-core/proto/veilid.capnp
@@ -27,13 +27,12 @@ struct Nonce24 @0xb6260db25d8d7dfc {
     u2                      @2  :UInt64;
 }
 
-using PublicKey = Key256;                               # Node id / DHT key / Route id, etc
+using PublicKey = Key256;                               # Node id / Hash / DHT key / Route id, etc
 using Nonce = Nonce24;                                  # One-time encryption nonce
 using Signature = Signature512;                         # Signature block
 using TunnelID = UInt64;                                # Id for tunnels
 using CryptoKind = UInt32;                              # FOURCC code for cryptography type
 using ValueSeqNum = UInt32;                             # sequence numbers for values
-using ValueSchema = UInt32;                             # FOURCC code for schema (0 = freeform, SUB0 = subkey control v0)
 using Subkey = UInt32;                                  # subkey index for dht
 
 struct TypedKey @0xe2d567a9f1e61b29 {
@@ -319,15 +318,31 @@ struct SubkeyRange {
 
 struct ValueData @0xb4b7416f169f2a3d {
     seq                     @0  :ValueSeqNum;           # sequence number of value
-    schema                  @1  :ValueSchema;           # fourcc code of schema for value
-    data                    @2  :Data;                  # value or subvalue contents
+    data                    @1  :Data;                  # value or subvalue contents
+    owner                   @2  :PublicKey;             # the public key of the owner
+    writer                  @3  :PublicKey;             # the public key of the writer
+    signature               @5  :Signature;             # signature of data at this subkey, using the writer key (which may be the same as the owner key)
+                                                        # signature covers:
+                                                        #  * ownerKey
+                                                        #  * subkey
+                                                        #  * sequence number
+                                                        #  * data
+                                                        # signature does not need to cover schema because schema is validated upon every set
+                                                        # so the data either fits, or it doesn't.
+    schema                  @6  :Data;                  # (optional) the schema in use
+                                                        # If not set and seqnum == 0, uses the default schema. 
+                                                        # If not set and If seqnum != 0, the schema must have been set prior and no other schema may be used, but this field may be eliminated to save space
+                                                        # Changing this after key creation is not supported as it would change the dht key
+                                                        # Schema data is signed by ownerKey and is verified both by set and get operations
 }
 
 struct OperationGetValueQ @0xf88a5b6da5eda5d0 {
     key                     @0  :TypedKey;              # the location of the value
     subkey                  @1  :Subkey;                # the index of the subkey (0 for the default subkey)
+    wantSchema              @2  :bool;                  # whether or not to include the schema for the key
 }
 
+
 struct OperationGetValueA @0xd896bb46f2e0249f {
     union {
         data                @0  :ValueData;             # the value if successful
@@ -335,16 +350,17 @@ struct OperationGetValueA @0xd896bb46f2e0249f {
     }
 }
 
-struct OperationSetValueQ @0xbac06191ff8bdbc5 {
-    key                     @0  :TypedKey;              # the location of the value
-    subkey                  @1  :Subkey;                # the index of the subkey (0 for the default subkey)
-    value                   @2  :ValueData;             # value or subvalue contents (older or equal seq number gets dropped)
+struct OperationSetValueQ @0xbac06191ff8bdbc5 {         
+    key                     @0  :TypedKey;              # DHT Key = Hash(ownerKeyKind) of: [ ownerKeyValue, schema ]
+    subkey                  @3  :Subkey;                # the index of the subkey
+    value                   @4  :ValueData;             # value or subvalue contents (older or equal seq number gets dropped)
 }
 
 struct OperationSetValueA @0x9378d0732dc95be2 {
     union {
-        data                @0  :ValueData;             # the new value if successful, may be a different value than what was set if the seq number was lower or equal
-        peers               @1  :List(PeerInfo);        # returned 'closer peer' information if not successful       
+        schemaError         @0  :Void;                  # Either the schema is not available at the node, or the data does not match the schema that is there
+        data                @1  :ValueData;             # the new value if successful, may be a different value than what was set if the seq number was lower or equal
+        peers               @2  :List(PeerInfo);        # returned 'closer peer' information if this node is refusing to store the key
     }
 }
 
@@ -353,6 +369,7 @@ struct OperationWatchValueQ @0xf9a5a6c547b9b228 {
     subkeys                 @1  :List(SubkeyRange);     # subkey range to watch, if empty, watch everything
     expiration              @2  :UInt64;                # requested timestamp when this watch will expire in usec since epoch (can be return less, 0 for max)
     count                   @3  :UInt32;                # requested number of changes to watch for (0 = cancel, 1 = single shot, 2+ = counter, UINT32_MAX = continuous)
+    signature               @4  :Signature;             # signature of the watcher, must be one of the schema members or the key owner. signature covers: key, subkeys, expiration, count
 }
 
 struct OperationWatchValueA @0xa726cab7064ba893 {
diff --git a/veilid-core/src/core_context.rs b/veilid-core/src/core_context.rs
index 49b115a7..7f884aca 100644
--- a/veilid-core/src/core_context.rs
+++ b/veilid-core/src/core_context.rs
@@ -1,12 +1,16 @@
 use crate::api_tracing_layer::*;
 use crate::attachment_manager::*;
 use crate::crypto::Crypto;
+use crate::storage_manager::*;
 use crate::veilid_api::*;
 use crate::veilid_config::*;
 use crate::*;
 
 pub type UpdateCallback = Arc<dyn Fn(VeilidUpdate) + Send + Sync>;
 
+/// Internal services startup mechanism
+/// Ensures that everything is started up, and shut down in the right order
+/// and provides an atomic state for if the system is properly operational
 struct ServicesContext {
     pub config: VeilidConfig,
     pub update_callback: UpdateCallback,
@@ -16,6 +20,7 @@ struct ServicesContext {
     pub block_store: Option<BlockStore>,
     pub crypto: Option<Crypto>,
     pub attachment_manager: Option<AttachmentManager>,
+    pub storage_manager: Option<StorageManager>,
 }
 
 impl ServicesContext {
@@ -28,6 +33,7 @@ impl ServicesContext {
             block_store: None,
             crypto: None,
             attachment_manager: None,
+            storage_manager: None,
         }
     }
 
@@ -39,6 +45,7 @@ impl ServicesContext {
         block_store: BlockStore,
         crypto: Crypto,
         attachment_manager: AttachmentManager,
+        storage_manager: StorageManager,
     ) -> Self {
         Self {
             config,
@@ -48,6 +55,7 @@ impl ServicesContext {
             block_store: Some(block_store),
             crypto: Some(crypto),
             attachment_manager: Some(attachment_manager),
+            storage_manager: Some(storage_manager),
         }
     }
 
@@ -114,6 +122,26 @@ impl ServicesContext {
         }
         self.attachment_manager = Some(attachment_manager);
 
+        // Set up storage manager
+        trace!("init storage manager");
+        let storage_manager = StorageManager::new(
+            self.config.clone(),
+            self.crypto.clone().unwrap(),
+            self.protected_store.clone().unwrap(),
+            self.table_store.clone().unwrap(),
+            self.block_store.clone().unwrap(),
+            self.attachment_manager
+                .clone()
+                .unwrap()
+                .network_manager()
+                .rpc_processor(),
+        );
+        if let Err(e) = storage_manager.init().await {
+            self.shutdown().await;
+            return Err(e);
+        }
+        self.storage_manager = Some(storage_manager.clone());
+
         info!("Veilid API startup complete");
         Ok(())
     }
@@ -122,6 +150,10 @@ impl ServicesContext {
     pub async fn shutdown(&mut self) {
         info!("Veilid API shutting down");
 
+        if let Some(storage_manager) = &mut self.storage_manager {
+            trace!("terminate storage manager");
+            storage_manager.terminate().await;
+        }
         if let Some(attachment_manager) = &mut self.attachment_manager {
             trace!("terminate attachment manager");
             attachment_manager.terminate().await;
@@ -163,6 +195,7 @@ pub struct VeilidCoreContext {
     pub table_store: TableStore,
     pub block_store: BlockStore,
     pub crypto: Crypto,
+    pub storage_manager: StorageManager,
     pub attachment_manager: AttachmentManager,
 }
 
@@ -215,6 +248,7 @@ impl VeilidCoreContext {
             table_store: sc.table_store.unwrap(),
             block_store: sc.block_store.unwrap(),
             crypto: sc.crypto.unwrap(),
+            storage_manager: sc.storage_manager.unwrap(),
             attachment_manager: sc.attachment_manager.unwrap(),
         })
     }
@@ -228,6 +262,7 @@ impl VeilidCoreContext {
             self.table_store,
             self.block_store,
             self.crypto,
+            self.storage_manager,
             self.attachment_manager,
         );
         sc.shutdown().await;
diff --git a/veilid-core/src/crypto/byte_array_types.rs b/veilid-core/src/crypto/byte_array_types.rs
index d8c7bc77..331376d3 100644
--- a/veilid-core/src/crypto/byte_array_types.rs
+++ b/veilid-core/src/crypto/byte_array_types.rs
@@ -47,6 +47,12 @@ pub const ROUTE_ID_LENGTH: usize = 32;
 /// Length of a route id in bytes afer encoding to base64url
 #[allow(dead_code)]
 pub const ROUTE_ID_LENGTH_ENCODED: usize = 43;
+/// Length of a hash digest in bytes
+#[allow(dead_code)]
+pub const HASH_DIGEST_LENGTH: usize = 32;
+/// Length of a hash digest in bytes after encoding to base64url
+#[allow(dead_code)]
+pub const HASH_DIGEST_LENGTH_ENCODED: usize = 43;
 
 //////////////////////////////////////////////////////////////////////
 
diff --git a/veilid-core/src/crypto/types/mod.rs b/veilid-core/src/crypto/types/mod.rs
index 355c34b0..a7142d8f 100644
--- a/veilid-core/src/crypto/types/mod.rs
+++ b/veilid-core/src/crypto/types/mod.rs
@@ -55,5 +55,6 @@ pub type TypedKey = CryptoTyped<PublicKey>;
 pub type TypedSecret = CryptoTyped<SecretKey>;
 pub type TypedKeyPair = CryptoTyped<KeyPair>;
 pub type TypedSignature = CryptoTyped<Signature>;
+
 pub type TypedKeySet = CryptoTypedSet<PublicKey>;
 pub type TypedSecretSet = CryptoTypedSet<SecretKey>;
diff --git a/veilid-core/src/lib.rs b/veilid-core/src/lib.rs
index f6cc2f76..18a6f221 100644
--- a/veilid-core/src/lib.rs
+++ b/veilid-core/src/lib.rs
@@ -28,6 +28,7 @@ mod network_manager;
 mod receipt_manager;
 mod routing_table;
 mod rpc_processor;
+mod storage_manager;
 mod veilid_api;
 #[macro_use]
 mod veilid_config;
diff --git a/veilid-core/src/rpc_processor/mod.rs b/veilid-core/src/rpc_processor/mod.rs
index 45966de0..c31fc2cc 100644
--- a/veilid-core/src/rpc_processor/mod.rs
+++ b/veilid-core/src/rpc_processor/mod.rs
@@ -312,7 +312,7 @@ impl RPCProcessor {
 
     #[instrument(level = "debug", skip_all, err)]
     pub async fn startup(&self) -> EyreResult<()> {
-        trace!("startup rpc processor");
+        debug!("startup rpc processor");
         let mut inner = self.inner.lock();
 
         let channel = flume::bounded(self.unlocked_inner.queue_size as usize);
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
new file mode 100644
index 00000000..94ee3ccd
--- /dev/null
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -0,0 +1,154 @@
+use super::*;
+use crate::rpc_processor::*;
+
+struct StorageManagerInner {}
+
+struct StorageManagerUnlockedInner {
+    config: VeilidConfig,
+    crypto: Crypto,
+    protected_store: ProtectedStore,
+    table_store: TableStore,
+    block_store: BlockStore,
+    rpc_processor: RPCProcessor,
+}
+
+#[derive(Clone)]
+pub struct StorageManager {
+    unlocked_inner: Arc<StorageManagerUnlockedInner>,
+    inner: Arc<Mutex<StorageManagerInner>>,
+}
+
+impl StorageManager {
+    fn new_unlocked_inner(
+        config: VeilidConfig,
+        crypto: Crypto,
+        protected_store: ProtectedStore,
+        table_store: TableStore,
+        block_store: BlockStore,
+        rpc_processor: RPCProcessor,
+    ) -> StorageManagerUnlockedInner {
+        StorageManagerUnlockedInner {
+            config,
+            crypto,
+            protected_store,
+            table_store,
+            block_store,
+            rpc_processor,
+        }
+    }
+    fn new_inner() -> StorageManagerInner {}
+
+    pub fn new(
+        config: VeilidConfig,
+        crypto: Crypto,
+        protected_store: ProtectedStore,
+        table_store: TableStore,
+        block_store: BlockStore,
+        rpc_processor: RPCProcessor,
+    ) -> StorageManager {
+        StorageManager {
+            unlocked_inner: Arc::new(Self::new_unlocked_inner(
+                config,
+                crypto,
+                protected_store,
+                table_store,
+                block_store,
+                rpc_processor,
+            )),
+            inner: Arc::new(Mutex::new(Self::new_inner())),
+        }
+    }
+
+    #[instrument(level = "debug", skip_all, err)]
+    pub async fn init(&self) -> EyreResult<()> {
+        debug!("startup storage manager");
+        let mut inner = self.inner.lock();
+        // xxx
+        Ok(())
+    }
+
+    pub fn terminate(&self) {
+        debug!("starting storage manager shutdown");
+
+        // Release the storage manager
+        *self.inner.lock() = Self::new_inner();
+
+        debug!("finished storage manager shutdown");
+    }
+
+    /// Creates a new DHT value with a specified crypto kind and schema
+    /// Returns the newly allocated DHT Key if successful.
+    pub async fn create_value(
+        &self,
+        kind: CryptoKind,
+        schema: &DHTSchema,
+        safety_selection: SafetySelection,
+    ) -> Result<TypedKey, VeilidAPIError> {
+        unimplemented!();
+    }
+
+    /// Opens a DHT value at a specific key. Associates a secret if one is provided to provide writer capability.
+    /// Returns the DHT key descriptor for the opened key if successful
+    /// Value may only be opened or created once. To re-open with a different routing context, first close the value.
+    pub async fn open_value(
+        key: TypedKey,
+        secret: Option<SecretKey>,
+        safety_selection: SafetySelection,
+    ) -> Result<DHTDescriptor, VeilidAPIError> {
+        unimplemented!();
+    }
+
+    /// Closes a DHT value at a specific key that was opened with create_value or open_value.
+    /// Closing a value allows you to re-open it with a different routing context
+    pub async fn close_value(key: TypedKey) -> Result<(), VeilidAPIError> {
+        unimplemented!();
+    }
+
+    /// Gets the latest value of a subkey from the network
+    /// Returns the possibly-updated value data of the subkey
+    pub async fn get_value(
+        &self,
+        key: TypedKey,
+        subkey: ValueSubkey,
+        force_refresh: bool,
+    ) -> Result<ValueData, VeilidAPIError> {
+        unimplemented!();
+    }
+
+    /// Pushes a changed subkey value to the network
+    /// Returns None if the value was successfully put
+    /// Returns Some(newer_value) if the value put was older than the one available on the network
+    pub async fn set_value(
+        &self,
+        key: TypedKey,
+        subkey: ValueSubkey,
+        value_data: ValueData,
+    ) -> Result<Option<ValueData>, VeilidAPIError> {
+        unimplemented!();
+    }
+
+    /// Watches changes to an opened or created value
+    /// Changes to subkeys within the subkey range are returned via a ValueChanged callback
+    /// If the subkey range is empty, all subkey changes are considered
+    /// Expiration can be infinite to keep the watch for the maximum amount of time
+    /// Return value upon success is the amount of time allowed for the watch
+    pub async fn watch_value(
+        &self,
+        key: TypedKey,
+        subkeys: &[ValueSubkeyRange],
+        expiration: Timestamp,
+        count: u32,
+    ) -> Result<Timestamp, VeilidAPIError> {
+        unimplemented!();
+    }
+
+    /// Cancels a watch early
+    /// This is a convenience function that cancels watching all subkeys in a range
+    pub async fn cancel_watch_value(
+        &self,
+        key: TypedKey,
+        subkeys: &[ValueSubkeyRange],
+    ) -> Result<bool, VeilidAPIError> {
+        unimplemented!();
+    }
+}
diff --git a/veilid-core/src/veilid_api/api.rs b/veilid-core/src/veilid_api/api.rs
index ec50636e..7069f0cd 100644
--- a/veilid-core/src/veilid_api/api.rs
+++ b/veilid-core/src/veilid_api/api.rs
@@ -112,6 +112,13 @@ impl VeilidAPI {
         }
         Err(VeilidAPIError::NotInitialized)
     }
+    pub fn storage_manager(&self) -> Result<StorageManager, VeilidAPIError> {
+        let inner = self.inner.lock();
+        if let Some(context) = &inner.context {
+            return Ok(context.storage_manager.clone());
+        }
+        Err(VeilidAPIError::NotInitialized)
+    }
 
     ////////////////////////////////////////////////////////////////
     // Attach/Detach
diff --git a/veilid-core/src/veilid_api/mod.rs b/veilid-core/src/veilid_api/mod.rs
index 02e1e308..78c43f3e 100644
--- a/veilid-core/src/veilid_api/mod.rs
+++ b/veilid-core/src/veilid_api/mod.rs
@@ -34,5 +34,6 @@ use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as
 use routing_table::{RouteSpecStore, RoutingTable};
 use rpc_processor::*;
 use serde::*;
+use storage_manager::StorageManager;
 
 /////////////////////////////////////////////////////////////////////////////////////////////////////
diff --git a/veilid-core/src/veilid_api/routing_context.rs b/veilid-core/src/veilid_api/routing_context.rs
index 981fb197..5ca61c6e 100644
--- a/veilid-core/src/veilid_api/routing_context.rs
+++ b/veilid-core/src/veilid_api/routing_context.rs
@@ -197,39 +197,91 @@ impl RoutingContext {
     ///////////////////////////////////
     /// DHT Values
 
+    /// Creates a new DHT value with a specified crypto kind and schema
+    /// Returns the newly allocated DHT Key if successful.
+    pub async fn create_value(
+        &self,
+        kind: CryptoKind,
+        schema: &DHTSchema,
+    ) -> Result<TypedKey, VeilidAPIError> {
+        let storage_manager = self.api.storage_manager()?;
+        storage_manager
+            .create_value(kind, schema, self.unlocked_inner.safety_selection)
+            .await
+    }
+
+    /// Opens a DHT value at a specific key. Associates a secret if one is provided to provide writer capability.
+    /// Returns the DHT key descriptor for the opened key if successful
+    /// Value may only be opened or created once. To re-open with a different routing context, first close the value.
+    pub async fn open_value(
+        key: TypedKey,
+        secret: Option<SecretKey>,
+    ) -> Result<DHTDescriptor, VeilidAPIError> {
+        let storage_manager = self.api.storage_manager()?;
+        storage_manager
+            .open_value(key, secret, self.unlocked_inner.safety_selection)
+            .await
+    }
+
+    /// Closes a DHT value at a specific key that was opened with create_value or open_value.
+    /// Closing a value allows you to re-open it with a different routing context
+    pub async fn close_value(key: TypedKey) -> Result<(), VeilidAPIError> {
+        let storage_manager = self.api.storage_manager()?;
+        storage_manager.close_value(key).await
+    }
+
+    /// Gets the latest value of a subkey from the network
+    /// Returns the possibly-updated value data of the subkey
     pub async fn get_value(
         &self,
-        _key: TypedKey,
-        _subkey: ValueSubkey,
+        key: TypedKey,
+        subkey: ValueSubkey,
+        force_refresh: bool,
     ) -> Result<ValueData, VeilidAPIError> {
-        panic!("unimplemented");
+        let storage_manager = self.api.storage_manager()?;
+        storage_manager.get_value(key, subkey, force_refresh).await
     }
 
+    /// Pushes a changed subkey value to the network
+    /// Returns None if the value was successfully put
+    /// Returns Some(newer_value) if the value put was older than the one available on the network
     pub async fn set_value(
         &self,
-        _key: TypedKey,
-        _subkey: ValueSubkey,
-        _value: ValueData,
-    ) -> Result<bool, VeilidAPIError> {
-        panic!("unimplemented");
+        key: TypedKey,
+        subkey: ValueSubkey,
+        value_data: ValueData,
+    ) -> Result<Option<ValueData>, VeilidAPIError> {
+        let storage_manager = self.api.storage_manager()?;
+        storage_manager.set_value(key, subkey, value_data).await
     }
 
+    /// Watches changes to an opened or created value
+    /// Changes to subkeys within the subkey range are returned via a ValueChanged callback
+    /// If the subkey range is empty, all subkey changes are considered
+    /// Expiration can be infinite to keep the watch for the maximum amount of time
+    /// Return value upon success is the amount of time allowed for the watch
     pub async fn watch_value(
         &self,
-        _key: TypedKey,
-        _subkeys: &[ValueSubkeyRange],
-        _expiration: Timestamp,
-        _count: u32,
-    ) -> Result<bool, VeilidAPIError> {
-        panic!("unimplemented");
+        key: TypedKey,
+        subkeys: &[ValueSubkeyRange],
+        expiration: Timestamp,
+        count: u32,
+    ) -> Result<Timestamp, VeilidAPIError> {
+        let storage_manager = self.api.storage_manager()?;
+        storage_manager
+            .watch_values(key, subkeys, expiration, count)
+            .await
     }
 
+    /// Cancels a watch early
+    /// This is a convenience function that cancels watching all subkeys in a range
     pub async fn cancel_watch_value(
         &self,
-        _key: TypedKey,
-        _subkeys: &[ValueSubkeyRange],
+        key: TypedKey,
+        subkeys: &[ValueSubkeyRange],
     ) -> Result<bool, VeilidAPIError> {
-        panic!("unimplemented");
+        let storage_manager = self.api.storage_manager()?;
+        storage_manager.cancel_watch_value(key, subkey).await
     }
 
     ///////////////////////////////////
diff --git a/veilid-core/src/veilid_api/types.rs b/veilid-core/src/veilid_api/types.rs
index 73abb9a7..e2752321 100644
--- a/veilid-core/src/veilid_api/types.rs
+++ b/veilid-core/src/veilid_api/types.rs
@@ -15,8 +15,6 @@ pub type OperationId = AlignedU64;
 pub type ByteCount = AlignedU64;
 /// Tunnel identifier
 pub type TunnelId = AlignedU64;
-/// Value schema
-pub type ValueSchema = FourCC;
 /// Value subkey
 pub type ValueSubkey = u32;
 /// Value subkey range
@@ -356,19 +354,19 @@ pub struct VeilidState {
 #[archive_attr(repr(C), derive(CheckBytes))]
 pub struct ValueData {
     pub seq: ValueSeqNum,
-    pub schema: ValueSchema,
     pub data: Vec<u8>,
+    pub writer: PublicKey,
 }
 impl ValueData {
-    pub fn new(schema: ValueSchema, data: Vec<u8>) -> Self {
+    pub fn new(data: Vec<u8>, writer: PublicKey) -> Self {
         Self {
             seq: 0,
-            schema,
             data,
+            writer,
         }
     }
-    pub fn new_with_seq(seq: ValueSeqNum, schema: ValueSchema, data: Vec<u8>) -> Self {
-        Self { seq, schema, data }
+    pub fn new_with_seq(seq: ValueSeqNum, data: Vec<u8>, writer: PublicKey) -> Self {
+        Self { seq, data, writer }
     }
     pub fn change(&mut self, data: Vec<u8>) {
         self.data = data;
@@ -2402,22 +2400,129 @@ pub struct PeerStats {
 
 /////////////////////////////////////////////////////////////////////////////////////////////////////
 
+/// Parameter for Signal operation
 #[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
 #[archive_attr(repr(u8), derive(CheckBytes))]
 pub enum SignalInfo {
+    /// UDP Hole Punch Request
     HolePunch {
-        // UDP Hole Punch Request
-        receipt: Vec<u8>,    // Receipt to be returned after the hole punch
-        peer_info: PeerInfo, // Sender's peer info
+        /// /// Receipt to be returned after the hole punch
+        receipt: Vec<u8>,
+        /// Sender's peer info
+        peer_info: PeerInfo,
     },
+    /// Reverse Connection Request
     ReverseConnect {
-        // Reverse Connection Request
-        receipt: Vec<u8>,    // Receipt to be returned by the reverse connection
-        peer_info: PeerInfo, // Sender's peer info
+        /// Receipt to be returned by the reverse connection
+        receipt: Vec<u8>,
+        /// Sender's peer info
+        peer_info: PeerInfo,
     },
     // XXX: WebRTC
 }
 
+/////////////////////////////////////////////////////////////////////////////////////////////////////
+
+/// Default DHT Schema (DFLT)
+#[derive(
+    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct DHTSchemaDFLT {
+    /// Owner subkey count
+    pub o_cnt: u16,
+}
+
+impl DHTSchemaDFLT {
+    pub fn compile(&self) -> Vec<u8> {
+        let mut out = Vec::<u8>::with_capacity(6);
+        // kind
+        out.extend_from_slice(&FourCC::from_str("DFLT").unwrap().0);
+        // o_cnt
+        out.extend_from_slice(&self.o_cnt.to_le_bytes());
+        out
+    }
+}
+
+/// Simple DHT Schema (SMPL) Member
+#[derive(
+    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct DHTSchemaSMPLMember {
+    /// Member key
+    pub m_key: PublicKey,
+    /// Member subkey countanyway,
+    pub m_cnt: u16,
+}
+
+/// Simple DHT Schema (SMPL)
+#[derive(
+    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct DHTSchemaSMPL {
+    /// Owner subkey count
+    pub o_cnt: u16,
+    /// Members
+    pub members: Vec<DHTSchemaSMPLMember>,
+}
+
+impl DHTSchemaSMPL {
+    pub fn compile(&self) -> Vec<u8> {
+        let mut out = Vec::<u8>::with_capacity(6 + (self.members.len() * (PUBLIC_KEY_LENGTH + 2)));
+        // kind
+        out.extend_from_slice(&FourCC::from_str("SMPL").unwrap().0);
+        // o_cnt
+        out.extend_from_slice(&self.o_cnt.to_le_bytes());
+        // members
+        for m in self.members {
+            // m_key
+            out.extend_from_slice(&m.m_key.bytes);
+            // m_cnt
+            out.extend_from_slice(&m.m_cnt.to_le_bytes());
+        }
+        out
+    }
+}
+
+/// Enum over all the supported DHT Schemas
+#[derive(
+    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+#[serde(tag = "kind")]
+pub enum DHTSchema {
+    DFLT(DHTSchemaDFLT),
+    SMPL(DHTSchemaSMPL),
+}
+
+impl DHTSchema {
+    pub fn dflt(o_cnt: u16) -> DHTSchema {
+        DHTSchema::DFLT(DHTSchemaDFLT { o_cnt })
+    }
+    pub fn smpl(o_cnt: u16, members: Vec<DHTSchemaSMPLMember>) -> DHTSchema {
+        DHTSchema::SMPL(DHTSchemaSMPL { o_cnt, members })
+    }
+
+    pub fn compile(&self) -> Vec<u8> {
+        match self {
+            DHTSchema::DFLT(d) => d.compile(),
+            DHTSchema::SMPL(s) => s.compile(),
+        }
+    }
+}
+
+/// DHT Key Descriptor
+#[derive(
+    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct DHTDescriptor {
+    pub owner: PublicKey,
+    pub schema: DHTSchema,
+}
+
 /////////////////////////////////////////////////////////////////////////////////////////////////////
 #[derive(
     Copy,

From 39ade462c239fe4dde8971421c7d87fcd46cb4c7 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Sun, 2 Apr 2023 20:40:46 -0400
Subject: [PATCH 02/74] storage manager work

---
 veilid-core/src/storage_manager/mod.rs        |  43 ++++-
 .../src/storage_manager/record_store.rs       | 152 ++++++++++++++++++
 .../storage_manager/record_store_limits.rs    |  11 ++
 .../src/storage_manager/value_record.rs       |  58 +++++++
 veilid-core/src/veilid_api/types.rs           |  23 +++
 5 files changed, 283 insertions(+), 4 deletions(-)
 create mode 100644 veilid-core/src/storage_manager/record_store.rs
 create mode 100644 veilid-core/src/storage_manager/record_store_limits.rs
 create mode 100644 veilid-core/src/storage_manager/value_record.rs

diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index 94ee3ccd..da7bc588 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -1,7 +1,16 @@
+mod record_store;
+mod value_record;
+mod record_store_limits;
+use record_store::*;
+use record_store_limits::*;
+use value_record::*;
+
 use super::*;
 use crate::rpc_processor::*;
 
-struct StorageManagerInner {}
+struct StorageManagerInner {
+    record_store: RecordStore,
+}
 
 struct StorageManagerUnlockedInner {
     config: VeilidConfig,
@@ -36,7 +45,11 @@ impl StorageManager {
             rpc_processor,
         }
     }
-    fn new_inner() -> StorageManagerInner {}
+    fn new_inner() -> StorageManagerInner {
+        StorageManagerInner {
+            record_store: RecordStore::new(table_store),
+        }
+    }
 
     pub fn new(
         config: VeilidConfig,
@@ -76,6 +89,12 @@ impl StorageManager {
         debug!("finished storage manager shutdown");
     }
 
+    async fn add_value_record(&self, key: TypedKey, record: ValueRecord) -> EyreResult<()> {
+        // add value record to record store
+        let mut inner = self.inner.lock();
+        inner.record_store.
+    }
+
     /// Creates a new DHT value with a specified crypto kind and schema
     /// Returns the newly allocated DHT Key if successful.
     pub async fn create_value(
@@ -84,10 +103,26 @@ impl StorageManager {
         schema: &DHTSchema,
         safety_selection: SafetySelection,
     ) -> Result<TypedKey, VeilidAPIError> {
-        unimplemented!();
+        // Get cryptosystem
+        let Some(vcrypto) = self.unlocked_inner.crypto.get(kind) else {
+            apibail_generic!("unsupported cryptosystem");
+        };
+
+        // New values require a new owner key
+        let keypair = vcrypto.generate_keypair();
+        let key = TypedKey::new(kind, keypair.key);
+        let secret = keypair.secret;
+
+        // Add value record
+        let record = ValueRecord::new(Some(secret), schema, safety_selection);
+        self.add_value_record(key, record)
+            .await
+            .map_err(VeilidAPIError::internal)?;
+
+        Ok(key)
     }
 
-    /// Opens a DHT value at a specific key. Associates a secret if one is provided to provide writer capability.
+    /// Opens a DHT value at a specific key. Associates an owner secret if one is provided.
     /// Returns the DHT key descriptor for the opened key if successful
     /// Value may only be opened or created once. To re-open with a different routing context, first close the value.
     pub async fn open_value(
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
new file mode 100644
index 00000000..bb59c871
--- /dev/null
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -0,0 +1,152 @@
+use super::*;
+use hashlink::LruCache;
+
+pub type RecordIndex = u32;
+
+#[derive(Debug, Clone, Eq, PartialEq, Ord, PartialOrd, Hash)]
+struct RecordCacheKey {
+    record_idx: RecordIndex,
+}
+
+#[derive(Debug, Clone, Eq, PartialEq, Ord, PartialOrd, Hash)]
+struct SubkeyCacheKey {
+    record_idx: RecordIndex,
+    subkey: ValueSubkey,
+}
+
+pub struct RecordStore {
+    table_store: TableStore,
+    name: String,
+    limits: RecordStoreLimits,
+
+    record_table: Option<TableDB>,
+    subkey_table: Option<TableDB>,
+    record_index: HashMap<TypedKey, RecordIndex>,
+    free_record_index_list: Vec<RecordIndex>,
+    record_cache: LruCache<RecordIndex, ValueRecord>,
+    subkey_cache: LruCache<SubkeyCacheKey, ValueRecordData>,
+}
+
+impl RecordStore {
+    pub fn new(table_store: TableStore, name: &str, limits: RecordStoreLimits) -> Self {
+        let record_cache_size = limits.record_cache_size as usize;
+        let subkey_cache_size = limits.subkey_cache_size as usize;
+        Self {
+            table_store,
+            name: name.to_owned(),
+            limits,
+            record_table: None,
+            subkey_table: None,
+            record_index: HashMap::new(),
+            free_record_index_list: Vec::new(), // xxx can this be auto-recovered? should we ever compact the allocated indexes?
+            record_cache: LruCache::new(record_cache_size),
+            subkey_cache: LruCache::new(subkey_cache_size),
+        }
+    }
+
+    pub async fn init(&mut self) -> EyreResult<()> {
+        let record_table = self
+            .table_store
+            .open(&format!("{}_records", self.name), 1)
+            .await?;
+        let subkey_table = self
+            .table_store
+            .open(&&format!("{}_subkeys", self.name), 1)
+            .await?;
+
+        // xxx get record index and free record index list
+
+        self.record_table = Some(record_table);
+        self.subkey_table = Some(record_table);
+        Ok(())
+    }
+
+    fn key_bytes(key: TypedKey) -> [u8; PUBLIC_KEY_LENGTH + 4] {
+        let mut bytes = [0u8; PUBLIC_KEY_LENGTH + 4];
+        bytes[0..4] = key.kind.0;
+        bytes[4..PUBLIC_KEY_LENGTH + 4] = key.value.bytes;
+        bytes
+    }
+
+    pub fn with_record<R, F: FnOnce(TypedKey, &ValueRecord) -> R>(
+        &mut self,
+        key: TypedKey,
+        f: F,
+    ) -> EyreResult<Option<R>> {
+        // Get record table
+        let Some(record_table) = self.record_table.clone() else {
+            bail!("record store not initialized");
+        };
+
+        // If record exists in cache, use that
+        if let Some(r) = self.record_cache.get(&key) {
+            // Callback
+            return Ok(Some(f(key, r)));
+        }
+        // If not in cache, try to pull from table store
+        let k = Self::key_bytes(key);
+        if let Some(r) = record_table.load_rkyv(0, &k)? {
+            // Callback
+            let out = f(key, &r);
+
+            // Add to cache, do nothing with lru out
+            self.record_cache.insert(key, r, |_| {});
+
+            return Ok(Some(out));
+        };
+
+        return Ok(None);
+    }
+
+    pub fn with_record_mut<R, F: FnOnce(TypedKey, &mut ValueRecord) -> R>(
+        &mut self,
+        key: TypedKey,
+        f: F,
+    ) -> EyreResult<Option<R>> {
+        // Get record table
+        let Some(record_table) = self.record_table.clone() else {
+            bail!("record store not initialized");
+        };
+
+        // If record exists in cache, use that
+        if let Some(r) = self.record_cache.get_mut(&key) {
+            // Callback
+            return Ok(Some(f(key, r)));
+        }
+        // If not in cache, try to pull from table store
+        let k = Self::key_bytes(key);
+        if let Some(r) = record_table.load_rkyv(0, &k)? {
+            // Callback
+            let out = f(key, &mut r);
+
+            // Save changes back to record table
+            record_table.store_rkyv(0, &k, &r).await?;
+
+            // Add to cache, do nothing with lru out
+            self.record_cache.insert(key, r, |_| {});
+
+            return Ok(Some(out));
+        };
+
+        Ok(None)
+    }
+
+    pub fn new_record(&mut self, key: TypedKey, record: ValueRecord) -> EyreResult<()> {
+        if self.with_record(key, |_| {})?.is_some() {
+            bail!("record already exists");
+        }
+
+        // Get record table
+        let Some(record_table) = self.record_table.clone() else {
+            bail!("record store not initialized");
+        };
+
+        // Save to record table
+        record_table.store_rkyv(0, &key, &r).await?;
+
+        // Cache it
+        self.record_cache.insert(key, value, |_| {});
+
+        Ok(())
+    }
+}
diff --git a/veilid-core/src/storage_manager/record_store_limits.rs b/veilid-core/src/storage_manager/record_store_limits.rs
new file mode 100644
index 00000000..1b879b26
--- /dev/null
+++ b/veilid-core/src/storage_manager/record_store_limits.rs
@@ -0,0 +1,11 @@
+use super::*;
+
+/// Configuration for the record store
+#[derive(Debug, Default, Copy, Clone)]
+pub struct RecordStoreLimits {
+    pub record_cache_size: u32,
+    pub subkey_cache_size: u32,
+    pub max_records: Option<u32>,
+    pub max_cache_memory_mb: Option<u32>,
+    pub max_disk_space_mb: Option<u32>,
+}
diff --git a/veilid-core/src/storage_manager/value_record.rs b/veilid-core/src/storage_manager/value_record.rs
new file mode 100644
index 00000000..2b9ab997
--- /dev/null
+++ b/veilid-core/src/storage_manager/value_record.rs
@@ -0,0 +1,58 @@
+use super::*;
+
+#[derive(
+    Clone,
+    Debug,
+    Default,
+    PartialEq,
+    Eq,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct ValueRecordData {
+    data: ValueData,
+    signature: Signature,
+}
+
+#[derive(
+    Clone,
+    Debug,
+    Default,
+    PartialEq,
+    Eq,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct ValueRecord {
+    secret: Option<SecretKey>,
+    schema: DHTSchema,
+    safety_selection: SafetySelection,
+    total_size: usize,
+    subkeys: Vec<ValueRecordData>,
+}
+
+impl ValueRecord {
+    pub fn new(
+        secret: Option<SecretKey>,
+        schema: DHTSchema,
+        safety_selection: SafetySelection,
+    ) -> Self {
+        // Get number of subkeys
+        let subkey_count = schema.subkey_count();
+
+        Self {
+            secret,
+            schema,
+            safety_selection,
+            subkeys: vec![Vec::new(); subkey_count],
+        }
+    }
+}
diff --git a/veilid-core/src/veilid_api/types.rs b/veilid-core/src/veilid_api/types.rs
index e2752321..5383afa9 100644
--- a/veilid-core/src/veilid_api/types.rs
+++ b/veilid-core/src/veilid_api/types.rs
@@ -2434,6 +2434,7 @@ pub struct DHTSchemaDFLT {
 }
 
 impl DHTSchemaDFLT {
+    /// Build the data representation of the schema
     pub fn compile(&self) -> Vec<u8> {
         let mut out = Vec::<u8>::with_capacity(6);
         // kind
@@ -2442,6 +2443,11 @@ impl DHTSchemaDFLT {
         out.extend_from_slice(&self.o_cnt.to_le_bytes());
         out
     }
+
+    /// Get the number of subkeys this schema allocates 
+    pub fn subkey_count(&self) -> usize {
+        self.o_cnt as usize
+    }
 }
 
 /// Simple DHT Schema (SMPL) Member
@@ -2469,6 +2475,7 @@ pub struct DHTSchemaSMPL {
 }
 
 impl DHTSchemaSMPL {
+    /// Build the data representation of the schema
     pub fn compile(&self) -> Vec<u8> {
         let mut out = Vec::<u8>::with_capacity(6 + (self.members.len() * (PUBLIC_KEY_LENGTH + 2)));
         // kind
@@ -2484,6 +2491,13 @@ impl DHTSchemaSMPL {
         }
         out
     }
+
+    /// Get the number of subkeys this schema allocates 
+    pub fn subkey_count(&self) -> usize {
+        self.members
+            .iter()
+            .fold(o_cnt as usize, |acc, x| acc + (x.m_cnt as usize))
+    }
 }
 
 /// Enum over all the supported DHT Schemas
@@ -2505,12 +2519,21 @@ impl DHTSchema {
         DHTSchema::SMPL(DHTSchemaSMPL { o_cnt, members })
     }
 
+    /// Build the data representation of the schema
     pub fn compile(&self) -> Vec<u8> {
         match self {
             DHTSchema::DFLT(d) => d.compile(),
             DHTSchema::SMPL(s) => s.compile(),
         }
     }
+
+    /// Get the number of subkeys this schema allocates 
+    pub fn subkey_count(&self) -> usize {
+        match self {
+            DHTSchema::DFLT(d) => d.subkey_count(),
+            DHTSchema::SMPL(s) => s.subkey_count(),
+        }
+    }
 }
 
 /// DHT Key Descriptor

From 7eded89b1123476e4a7adfc4a2f1ce3fc7abbfc4 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Mon, 3 Apr 2023 20:58:10 -0400
Subject: [PATCH 03/74] checkpoint

---
 veilid-core/src/crypto/byte_array_types.rs    |  26 +-
 veilid-core/src/intf/native/table_store.rs    |  15 +
 veilid-core/src/storage_manager/mod.rs        |  39 ++-
 .../src/storage_manager/record_store.rs       | 314 +++++++++++++-----
 .../storage_manager/record_store_limits.rs    |   7 +-
 .../src/storage_manager/value_record.rs       |  23 +-
 6 files changed, 319 insertions(+), 105 deletions(-)

diff --git a/veilid-core/src/crypto/byte_array_types.rs b/veilid-core/src/crypto/byte_array_types.rs
index 331376d3..3a404698 100644
--- a/veilid-core/src/crypto/byte_array_types.rs
+++ b/veilid-core/src/crypto/byte_array_types.rs
@@ -126,18 +126,6 @@ macro_rules! byte_array_type {
                 Self { bytes }
             }
 
-            pub fn try_from_vec(v: Vec<u8>) -> Result<Self, VeilidAPIError> {
-                let vl = v.len();
-                Ok(Self {
-                    bytes: v.try_into().map_err(|_| {
-                        VeilidAPIError::generic(format!(
-                            "Expected a Vec of length {} but it was {}",
-                            $size, vl
-                        ))
-                    })?,
-                })
-            }
-
             pub fn bit(&self, index: usize) -> bool {
                 assert!(index < ($size * 8));
                 let bi = index / 8;
@@ -250,6 +238,20 @@ macro_rules! byte_array_type {
                 Self::try_decode(value)
             }
         }
+        impl TryFrom(&[u8]) for $name {
+            type Error = VeilidAPIError;
+            pub fn try_from(v: &[u8]) -> Result<Self, Self::Error> {
+                let vl = v.len();
+                Ok(Self {
+                    bytes: v.try_into().map_err(|_| {
+                        VeilidAPIError::generic(format!(
+                            "Expected a slice of length {} but it was {}",
+                            $size, vl
+                        ))
+                    })?,
+                })
+            }
+        }
     };
 }
 
diff --git a/veilid-core/src/intf/native/table_store.rs b/veilid-core/src/intf/native/table_store.rs
index a09b8e4d..cd9ebff9 100644
--- a/veilid-core/src/intf/native/table_store.rs
+++ b/veilid-core/src/intf/native/table_store.rs
@@ -40,6 +40,21 @@ impl TableStore {
         if let Err(e) = self.delete("routing_table").await {
             error!("failed to delete 'routing_table': {}", e);
         }
+        if let Err(e) = self.delete("routing_table").await {
+            error!("failed to delete 'routing_table': {}", e);
+        }
+        if let Err(e) = self.delete("local_records").await {
+            error!("failed to delete 'local_records': {}", e);
+        }
+        if let Err(e) = self.delete("local_subkeys").await {
+            error!("failed to delete 'local_subkeys': {}", e);
+        }
+        if let Err(e) = self.delete("remote_records").await {
+            error!("failed to delete 'remote_records': {}", e);
+        }
+        if let Err(e) = self.delete("remote_subkeys").await {
+            error!("failed to delete 'remote_subkeys': {}", e);
+        }
     }
 
     pub(crate) async fn init(&self) -> EyreResult<()> {
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index da7bc588..9fe53969 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -8,8 +8,12 @@ use value_record::*;
 use super::*;
 use crate::rpc_processor::*;
 
+/// Locked structure for storage manager
 struct StorageManagerInner {
-    record_store: RecordStore,
+    /// Records that have been 'created' or 'opened' by this node
+    local_record_store: Option<RecordStore>,
+    /// Records that have been pushed to this node for distribution by other nodes
+    remote_record_store: Option<RecordStore>,
 }
 
 struct StorageManagerUnlockedInner {
@@ -47,7 +51,28 @@ impl StorageManager {
     }
     fn new_inner() -> StorageManagerInner {
         StorageManagerInner {
-            record_store: RecordStore::new(table_store),
+            local_record_store: None,
+            remote_record_store: None,
+        }
+    }
+
+    fn local_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
+        RecordStoreLimits {
+            record_cache_size: todo!(),
+            subkey_cache_size: todo!(),
+            max_records: None,
+            max_subkey_cache_memory_mb: Some(xxx),
+            max_disk_space_mb: None,
+        }
+    }
+
+    fn remote_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
+        RecordStoreLimits {
+            record_cache_size: todo!(),
+            subkey_cache_size: todo!(),
+            max_records: Some(xxx),
+            max_subkey_cache_memory_mb: Some(xxx),
+            max_disk_space_mb: Some(xxx)
         }
     }
 
@@ -59,6 +84,7 @@ impl StorageManager {
         block_store: BlockStore,
         rpc_processor: RPCProcessor,
     ) -> StorageManager {
+
         StorageManager {
             unlocked_inner: Arc::new(Self::new_unlocked_inner(
                 config,
@@ -68,7 +94,7 @@ impl StorageManager {
                 block_store,
                 rpc_processor,
             )),
-            inner: Arc::new(Mutex::new(Self::new_inner())),
+            inner: Arc::new(Mutex::new(Self::new_inner()))
         }
     }
 
@@ -76,7 +102,12 @@ impl StorageManager {
     pub async fn init(&self) -> EyreResult<()> {
         debug!("startup storage manager");
         let mut inner = self.inner.lock();
-        // xxx
+
+        let local_limits = Self::local_limits_from_config(config.clone());
+        let remote_limits = Self::remote_limits_from_config(config.clone());
+        inner.local_record_store = Some(RecordStore::new(self.unlocked_inner.table_store.clone(), "local", local_limits));
+        inner.remote_record_store = Some(RecordStore::new(self.unlocked_inner.table_store.clone(), "remote", remote_limits));
+
         Ok(())
     }
 
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index bb59c871..f7db44d7 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -4,14 +4,62 @@ use hashlink::LruCache;
 pub type RecordIndex = u32;
 
 #[derive(Debug, Clone, Eq, PartialEq, Ord, PartialOrd, Hash)]
-struct RecordCacheKey {
-    record_idx: RecordIndex,
+struct RecordIndexKey {
+    pub key: TypedKey,
+}
+impl RecordIndexKey {
+    pub fn bytes(&self) -> [u8; PUBLIC_KEY_LENGTH + 4] {
+        let mut bytes = [0u8; PUBLIC_KEY_LENGTH + 4];
+        bytes[0..4] = self.key.kind.0;
+        bytes[4..PUBLIC_KEY_LENGTH + 4] = self.key.value.bytes;
+        bytes
+    }
+}
+
+impl TryFrom<&[u8]> for RecordIndexKey {
+    type Error = EyreReport;
+    fn try_from(bytes: &[u8]) -> Result<Self, Self::Error> {
+        if bytes.len() != PUBLIC_KEY_LENGTH + 4 {
+            bail!("invalid bytes length");
+        }
+        let kind = FourCC::try_from(&bytes[0..4]).wrap_err("invalid kind")?;
+        let value =
+            PublicKey::try_from(&bytes[4..PUBLIC_KEY_LENGTH + 4]).wrap_err("invalid value")?;
+        let key = TypedKey::new(kind, value);
+        Ok(RecordIndexKey { key })
+    }
 }
 
 #[derive(Debug, Clone, Eq, PartialEq, Ord, PartialOrd, Hash)]
 struct SubkeyCacheKey {
-    record_idx: RecordIndex,
-    subkey: ValueSubkey,
+    pub key: TypedKey,
+    pub subkey: ValueSubkey,
+}
+impl SubkeyCacheKey {
+    pub fn bytes(&self) -> [u8; PUBLIC_KEY_LENGTH + 4 + 4] {
+        let mut bytes = [0u8; PUBLIC_KEY_LENGTH + 4 + 4];
+        bytes[0..4] = self.key.kind.0;
+        bytes[4..PUBLIC_KEY_LENGTH + 4] = self.key.value.bytes;
+        bytes[PUBLIC_KEY_LENGTH + 4..PUBLIC_KEY_LENGTH + 4 + 4] = self.subkey.to_le_bytes();
+        bytes
+    }
+}
+impl TryFrom<&[u8]> for SubkeyCacheKey {
+    type Error = EyreReport;
+    fn try_from(bytes: &[u8]) -> Result<Self, Self::Error> {
+        if bytes.len() != PUBLIC_KEY_LENGTH + 4 {
+            bail!("invalid bytes length");
+        }
+        let kind = FourCC::try_from(&bytes[0..4]).wrap_err("invalid kind")?;
+        let value =
+            PublicKey::try_from(&bytes[4..PUBLIC_KEY_LENGTH + 4]).wrap_err("invalid value")?;
+        let subkey =
+            ValueSubkey::try_from(&bytes[PUBLIC_KEY_LENGTH + 4..PUBLIC_KEY_LENGTH + 4 + 4])
+                .wrap_err("invalid subkey")?;
+
+        let key = TypedKey::new(kind, value);
+        Ok(SubkeyCacheKey { key, subkey })
+    }
 }
 
 pub struct RecordStore {
@@ -21,15 +69,12 @@ pub struct RecordStore {
 
     record_table: Option<TableDB>,
     subkey_table: Option<TableDB>,
-    record_index: HashMap<TypedKey, RecordIndex>,
-    free_record_index_list: Vec<RecordIndex>,
-    record_cache: LruCache<RecordIndex, ValueRecord>,
+    record_index: LruCache<RecordIndexKey, ValueRecord>,
     subkey_cache: LruCache<SubkeyCacheKey, ValueRecordData>,
 }
 
 impl RecordStore {
     pub fn new(table_store: TableStore, name: &str, limits: RecordStoreLimits) -> Self {
-        let record_cache_size = limits.record_cache_size as usize;
         let subkey_cache_size = limits.subkey_cache_size as usize;
         Self {
             table_store,
@@ -37,9 +82,7 @@ impl RecordStore {
             limits,
             record_table: None,
             subkey_table: None,
-            record_index: HashMap::new(),
-            free_record_index_list: Vec::new(), // xxx can this be auto-recovered? should we ever compact the allocated indexes?
-            record_cache: LruCache::new(record_cache_size),
+            record_index: LruCache::new(limits.max_records.unwrap_or(usize::MAX)),
             subkey_cache: LruCache::new(subkey_cache_size),
         }
     }
@@ -54,82 +97,55 @@ impl RecordStore {
             .open(&&format!("{}_subkeys", self.name), 1)
             .await?;
 
-        // xxx get record index and free record index list
+        // Pull record index from table into a vector to ensure we sort them
+        let record_table_keys = record_table.get_keys(0)?;
+        let mut record_index_saved: Vec<(RecordIndexKey, ValueRecord)> =
+            Vec::with_capacity(record_table_keys.len());
+        for rtk in record_table_keys {
+            if let Some(vr) = record_table.load_rkyv::<ValueRecord>(0, &rtk)? {
+                record_index_saved.push((rtk, vr));
+            }
+        }
+
+        // Sort the record index by last touched time and insert in sorted order
+        record_index_saved.sort_by(|a, b| a.1.last_touched().cmp(&b.1.last_touched()));
+        let mut dead_records = Vec::new();
+        for ri in record_index_saved {
+            let rik = RecordIndexKey::try_from(&ri.0)?;
+            self.record_index.insert(rik, ri.1, |k, v| {
+                // If the configuration change, we only want to keep the 'limits.max_records' records
+                dead_records.push((k, v));
+            })
+        }
+
+        // Delete dead keys
+        if !dead_records.empty() {
+            let rt_xact = record_table.transact();
+            let st_xact = subkey_table.transact();
+            for (k, v) in dead_records {
+                // Delete record
+                rt_xact.delete(0, &k.bytes());
+
+                // Delete subkeys
+                let subkey_count = v.subkey_count();
+                for sk in 0..subkey_count {
+                    let sck = SubkeyCacheKey {
+                        key: k.key,
+                        subkey: sk,
+                    };
+                    st_xact.delete(0, &sck.bytes())?;
+                }
+            }
+            rt_xact.commit().await?;
+            st_xact.commit().await?;
+        }
 
         self.record_table = Some(record_table);
         self.subkey_table = Some(record_table);
         Ok(())
     }
 
-    fn key_bytes(key: TypedKey) -> [u8; PUBLIC_KEY_LENGTH + 4] {
-        let mut bytes = [0u8; PUBLIC_KEY_LENGTH + 4];
-        bytes[0..4] = key.kind.0;
-        bytes[4..PUBLIC_KEY_LENGTH + 4] = key.value.bytes;
-        bytes
-    }
-
-    pub fn with_record<R, F: FnOnce(TypedKey, &ValueRecord) -> R>(
-        &mut self,
-        key: TypedKey,
-        f: F,
-    ) -> EyreResult<Option<R>> {
-        // Get record table
-        let Some(record_table) = self.record_table.clone() else {
-            bail!("record store not initialized");
-        };
-
-        // If record exists in cache, use that
-        if let Some(r) = self.record_cache.get(&key) {
-            // Callback
-            return Ok(Some(f(key, r)));
-        }
-        // If not in cache, try to pull from table store
-        let k = Self::key_bytes(key);
-        if let Some(r) = record_table.load_rkyv(0, &k)? {
-            // Callback
-            let out = f(key, &r);
-
-            // Add to cache, do nothing with lru out
-            self.record_cache.insert(key, r, |_| {});
-
-            return Ok(Some(out));
-        };
-
-        return Ok(None);
-    }
-
-    pub fn with_record_mut<R, F: FnOnce(TypedKey, &mut ValueRecord) -> R>(
-        &mut self,
-        key: TypedKey,
-        f: F,
-    ) -> EyreResult<Option<R>> {
-        // Get record table
-        let Some(record_table) = self.record_table.clone() else {
-            bail!("record store not initialized");
-        };
-
-        // If record exists in cache, use that
-        if let Some(r) = self.record_cache.get_mut(&key) {
-            // Callback
-            return Ok(Some(f(key, r)));
-        }
-        // If not in cache, try to pull from table store
-        let k = Self::key_bytes(key);
-        if let Some(r) = record_table.load_rkyv(0, &k)? {
-            // Callback
-            let out = f(key, &mut r);
-
-            // Save changes back to record table
-            record_table.store_rkyv(0, &k, &r).await?;
-
-            // Add to cache, do nothing with lru out
-            self.record_cache.insert(key, r, |_| {});
-
-            return Ok(Some(out));
-        };
-
-        Ok(None)
-    }
+    fix up new record
 
     pub fn new_record(&mut self, key: TypedKey, record: ValueRecord) -> EyreResult<()> {
         if self.with_record(key, |_| {})?.is_some() {
@@ -149,4 +165,140 @@ impl RecordStore {
 
         Ok(())
     }
+
+    pub fn with_record<R, F>(&mut self, key: TypedKey, f: F) -> EyreResult<Option<R>>
+    where
+        F: FnOnce(&mut RecordStore, TypedKey, &ValueRecord) -> R,
+    {
+        // Get record table
+        let Some(record_table) = self.record_table.clone() else {
+            bail!("record store not initialized");
+        };
+
+        // If record exists in cache, use that
+        let rck = RecordIndexKey { key };
+        if let Some(r) = self.record_cache.get(&rck) {
+            // Callback
+            return Ok(Some(f(self, key, r)));
+        }
+        // If not in cache, try to pull from table store
+        let k = rck.bytes();
+        if let Some(r) = record_table.load_rkyv(0, &k)? {
+            // Callback
+            let out = f(self, key, &r);
+
+            // Add to cache, do nothing with lru out
+            self.record_cache.insert(rck, r, |_| {});
+
+            return Ok(Some(out));
+        };
+
+        return Ok(None);
+    }
+
+    pub fn with_record_mut<R, F>(&mut self, key: TypedKey, f: F) -> EyreResult<Option<R>>
+    where
+        F: FnOnce(&mut RecordStore, TypedKey, &mut ValueRecord) -> R,
+    {
+        // Get record table
+        let Some(record_table) = self.record_table.clone() else {
+            bail!("record store not initialized");
+        };
+
+        // If record exists in cache, use that
+        let rck = RecordIndexKey { key };
+        if let Some(r) = self.record_cache.get_mut(&rck) {
+            // Callback
+            return Ok(Some(f(self, key, r)));
+        }
+        // If not in cache, try to pull from table store
+        let k = rck.bytes();
+        if let Some(r) = record_table.load_rkyv(0, &k)? {
+            // Callback
+            let out = f(self, key, &mut r);
+
+            // Save changes back to record table
+            record_table.store_rkyv(0, &k, &r).await?;
+
+            // Add to cache, do nothing with lru out
+            self.record_cache.insert(rck, r, |_| {});
+
+            return Ok(Some(out));
+        };
+
+        Ok(None)
+    }
+
+    pub fn with_subkey<R, F>(
+        &mut self,
+        key: TypedKey,
+        subkey: ValueSubkey,
+        f: F,
+    ) -> EyreResult<Option<R>>
+    where
+        F: FnOnce(&mut RecordStore, TypedKey, ValueSubkey, &ValueRecordData) -> R,
+    {
+        // Get subkey table
+        let Some(subkey_table) = self.subkey_table.clone() else {
+            bail!("record store not initialized");
+        };
+
+        // If subkey exists in subkey cache, use that
+        let skck = SubkeyCacheKey { key, subkey };
+        if let Some(rd) = self.subkey_cache.get(&skck) {
+            // Callback
+            return Ok(Some(f(self, key, subkey, rd)));
+        }
+        // If not in cache, try to pull from table store
+        let k = skck.bytes();
+        if let Some(rd) = subkey_table.load_rkyv(0, &k)? {
+            // Callback
+            let out = f(self, key, subkey, &rd);
+
+            // Add to cache, do nothing with lru out
+            self.subkey_cache.insert(skck, r, |_| {});
+
+            return Ok(Some(out));
+        };
+
+        return Ok(None);
+    }
+
+    pub fn with_subkey_mut<R, F>(
+        &mut self,
+        key: TypedKey,
+        subkey: ValueSubkey,
+        f: F,
+    ) -> EyreResult<Option<R>>
+    where
+        F: FnOnce(&mut RecordStore, TypedKey, ValueSubkey, &mut ValueRecord) -> R,
+    {
+        // Get record table
+        let Some(subkey_table) = self.subkey_table.clone() else {
+            bail!("record store not initialized");
+        };
+
+        // If subkey exists in cache, use that
+        let skck = SubkeyCacheKey { key, subkey };
+        if let Some(rd) = self.subkey_cache.get_mut(&skck) {
+            // Callback
+            return Ok(Some(f(self, key, subkey, rd)));
+        }
+        // If not in cache, try to pull from table store
+        let k = skck.bytes();
+        if let Some(rd) = subkey_table.load_rkyv(0, &k)? {
+            // Callback
+            let out = f(self, key, subkey, &mut rd);
+
+            // Save changes back to record table
+            subkey_table.store_rkyv(0, &k, &rd).await?;
+
+            // Add to cache, do nothing with lru out
+            self.subkey_cache.insert(key, r, |_| {});
+
+            return Ok(Some(out));
+        };
+
+        Ok(None)
+    }
 }
diff --git a/veilid-core/src/storage_manager/record_store_limits.rs b/veilid-core/src/storage_manager/record_store_limits.rs
index 1b879b26..45601ba0 100644
--- a/veilid-core/src/storage_manager/record_store_limits.rs
+++ b/veilid-core/src/storage_manager/record_store_limits.rs
@@ -3,9 +3,12 @@ use super::*;
 /// Configuration for the record store
 #[derive(Debug, Default, Copy, Clone)]
 pub struct RecordStoreLimits {
-    pub record_cache_size: u32,
+    /// Number of subkeys to keep in the memory cache
     pub subkey_cache_size: u32,
+    /// Limit on the total number of records in the table store
     pub max_records: Option<u32>,
-    pub max_cache_memory_mb: Option<u32>,
+    /// Limit on the amount of subkey cache memory to use before evicting cache items
+    pub max_subkey_cache_memory_mb: Option<u32>,
+    /// Limit on the amount of disk space to use for subkey data
     pub max_disk_space_mb: Option<u32>,
 }
diff --git a/veilid-core/src/storage_manager/value_record.rs b/veilid-core/src/storage_manager/value_record.rs
index 2b9ab997..ae460424 100644
--- a/veilid-core/src/storage_manager/value_record.rs
+++ b/veilid-core/src/storage_manager/value_record.rs
@@ -32,27 +32,38 @@ pub struct ValueRecordData {
 )]
 #[archive_attr(repr(C), derive(CheckBytes))]
 pub struct ValueRecord {
+    last_touched_ts: Timestamp,
     secret: Option<SecretKey>,
     schema: DHTSchema,
     safety_selection: SafetySelection,
-    total_size: usize,
-    subkeys: Vec<ValueRecordData>,
+    data_size: usize,
 }
 
 impl ValueRecord {
     pub fn new(
+        cur_ts: Timestamp,
         secret: Option<SecretKey>,
         schema: DHTSchema,
         safety_selection: SafetySelection,
     ) -> Self {
-        // Get number of subkeys
-        let subkey_count = schema.subkey_count();
-
         Self {
+            last_touched_ts: cur_ts,
             secret,
             schema,
             safety_selection,
-            subkeys: vec![Vec::new(); subkey_count],
+            data_size: 0,
         }
     }
+
+    pub fn subkey_count(&self) -> usize {
+        self.schema.subkey_count()
+    }
+
+    pub fn touch(&mut self, cur_ts: Timestamp) {
+        self.last_touched_ts = cur_ts
+    }
+
+    pub fn last_touched(&self) -> Timestamp {
+        self.last_touched_ts
+    }
 }

From e46d64f64833ba8d7bccc6415476b4051f097a56 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Thu, 6 Apr 2023 20:21:45 -0400
Subject: [PATCH 04/74] storage work

---
 veilid-core/proto/veilid.capnp                |   2 +-
 veilid-core/src/storage_manager/mod.rs        |  85 +++--
 .../src/storage_manager/record_store.rs       | 294 ++++++++++--------
 .../src/storage_manager/value_record.rs       |   4 +-
 veilid-core/src/veilid_api/routing_context.rs |  60 ++--
 veilid-core/src/veilid_api/types.rs           |  42 ++-
 veilid-tools/src/log_thru.rs                  |  50 ++-
 7 files changed, 326 insertions(+), 211 deletions(-)

diff --git a/veilid-core/proto/veilid.capnp b/veilid-core/proto/veilid.capnp
index 3884b4c1..54676493 100644
--- a/veilid-core/proto/veilid.capnp
+++ b/veilid-core/proto/veilid.capnp
@@ -338,7 +338,7 @@ struct ValueData @0xb4b7416f169f2a3d {
 
 struct OperationGetValueQ @0xf88a5b6da5eda5d0 {
     key                     @0  :TypedKey;              # the location of the value
-    subkey                  @1  :Subkey;                # the index of the subkey (0 for the default subkey)
+    subkey                  @1  :Subkey;                # the index of the subkey
     wantSchema              @2  :bool;                  # whether or not to include the schema for the key
 }
 
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index 9fe53969..245d6cd2 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -1,6 +1,6 @@
 mod record_store;
-mod value_record;
 mod record_store_limits;
+mod value_record;
 use record_store::*;
 use record_store_limits::*;
 use value_record::*;
@@ -58,7 +58,6 @@ impl StorageManager {
 
     fn local_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
         RecordStoreLimits {
-            record_cache_size: todo!(),
             subkey_cache_size: todo!(),
             max_records: None,
             max_subkey_cache_memory_mb: Some(xxx),
@@ -68,11 +67,10 @@ impl StorageManager {
 
     fn remote_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
         RecordStoreLimits {
-            record_cache_size: todo!(),
             subkey_cache_size: todo!(),
             max_records: Some(xxx),
             max_subkey_cache_memory_mb: Some(xxx),
-            max_disk_space_mb: Some(xxx)
+            max_disk_space_mb: Some(xxx),
         }
     }
 
@@ -84,7 +82,6 @@ impl StorageManager {
         block_store: BlockStore,
         rpc_processor: RPCProcessor,
     ) -> StorageManager {
-
         StorageManager {
             unlocked_inner: Arc::new(Self::new_unlocked_inner(
                 config,
@@ -94,7 +91,7 @@ impl StorageManager {
                 block_store,
                 rpc_processor,
             )),
-            inner: Arc::new(Mutex::new(Self::new_inner()))
+            inner: Arc::new(Mutex::new(Self::new_inner())),
         }
     }
 
@@ -105,8 +102,16 @@ impl StorageManager {
 
         let local_limits = Self::local_limits_from_config(config.clone());
         let remote_limits = Self::remote_limits_from_config(config.clone());
-        inner.local_record_store = Some(RecordStore::new(self.unlocked_inner.table_store.clone(), "local", local_limits));
-        inner.remote_record_store = Some(RecordStore::new(self.unlocked_inner.table_store.clone(), "remote", remote_limits));
+        inner.local_record_store = Some(RecordStore::new(
+            self.unlocked_inner.table_store.clone(),
+            "local",
+            local_limits,
+        ));
+        inner.remote_record_store = Some(RecordStore::new(
+            self.unlocked_inner.table_store.clone(),
+            "remote",
+            remote_limits,
+        ));
 
         Ok(())
     }
@@ -120,15 +125,17 @@ impl StorageManager {
         debug!("finished storage manager shutdown");
     }
 
-    async fn add_value_record(&self, key: TypedKey, record: ValueRecord) -> EyreResult<()> {
+    async fn new_local_record(&self, key: TypedKey, record: ValueRecord) -> EyreResult<()> {
         // add value record to record store
         let mut inner = self.inner.lock();
-        inner.record_store.
+        let Some(local_record_store) = inner.local_record_store else {
+            apibail_generic!("not initialized");
+
+        };
+        local_record_store.new_record(key, record)
     }
 
-    /// Creates a new DHT value with a specified crypto kind and schema
-    /// Returns the newly allocated DHT Key if successful.
-    pub async fn create_value(
+    pub async fn create_record(
         &self,
         kind: CryptoKind,
         schema: &DHTSchema,
@@ -144,60 +151,50 @@ impl StorageManager {
         let key = TypedKey::new(kind, keypair.key);
         let secret = keypair.secret;
 
-        // Add value record
-        let record = ValueRecord::new(Some(secret), schema, safety_selection);
-        self.add_value_record(key, record)
+        // Add new local value record
+        let cur_ts = get_aligned_timestamp();
+        let record = ValueRecord::new(cur_ts, Some(secret), schema, safety_selection);
+        self.new_local_record(key, record)
             .await
             .map_err(VeilidAPIError::internal)?;
 
         Ok(key)
     }
 
-    /// Opens a DHT value at a specific key. Associates an owner secret if one is provided.
-    /// Returns the DHT key descriptor for the opened key if successful
-    /// Value may only be opened or created once. To re-open with a different routing context, first close the value.
-    pub async fn open_value(
+    pub async fn open_record(
         key: TypedKey,
         secret: Option<SecretKey>,
         safety_selection: SafetySelection,
-    ) -> Result<DHTDescriptor, VeilidAPIError> {
+    ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
         unimplemented!();
     }
 
-    /// Closes a DHT value at a specific key that was opened with create_value or open_value.
-    /// Closing a value allows you to re-open it with a different routing context
-    pub async fn close_value(key: TypedKey) -> Result<(), VeilidAPIError> {
+    pub async fn close_record(key: TypedKey) -> Result<(), VeilidAPIError> {
+        unimplemented!();
+    }
+
+    pub async fn delete_value(key: TypedKey) -> Result<(), VeilidAPIError> {
         unimplemented!();
     }
 
-    /// Gets the latest value of a subkey from the network
-    /// Returns the possibly-updated value data of the subkey
     pub async fn get_value(
         &self,
         key: TypedKey,
         subkey: ValueSubkey,
         force_refresh: bool,
-    ) -> Result<ValueData, VeilidAPIError> {
-        unimplemented!();
-    }
-
-    /// Pushes a changed subkey value to the network
-    /// Returns None if the value was successfully put
-    /// Returns Some(newer_value) if the value put was older than the one available on the network
-    pub async fn set_value(
-        &self,
-        key: TypedKey,
-        subkey: ValueSubkey,
-        value_data: ValueData,
     ) -> Result<Option<ValueData>, VeilidAPIError> {
         unimplemented!();
     }
 
-    /// Watches changes to an opened or created value
-    /// Changes to subkeys within the subkey range are returned via a ValueChanged callback
-    /// If the subkey range is empty, all subkey changes are considered
-    /// Expiration can be infinite to keep the watch for the maximum amount of time
-    /// Return value upon success is the amount of time allowed for the watch
+    pub async fn set_value(
+        &self,
+        key: TypedKey,
+        subkey: ValueSubkey,
+        data: Vec<u8>,
+    ) -> Result<Option<ValueData>, VeilidAPIError> {
+        unimplemented!();
+    }
+
     pub async fn watch_value(
         &self,
         key: TypedKey,
@@ -208,8 +205,6 @@ impl StorageManager {
         unimplemented!();
     }
 
-    /// Cancels a watch early
-    /// This is a convenience function that cancels watching all subkeys in a range
     pub async fn cancel_watch_value(
         &self,
         key: TypedKey,
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index f7db44d7..e26a5203 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -1,9 +1,15 @@
+/// RecordStore
+/// Keeps an LRU cache of dht keys and their associated subkey valuedata.
+/// Instances of this store are used for 'local' (persistent) and 'remote' (ephemeral) dht key storage.
+/// This store does not perform any validation on the schema, and all ValueRecordData passed in must have been previously validated.
+/// Uses an in-memory store for the records, backed by the TableStore. Subkey data is LRU cached and rotated out by a limits policy,
+/// and backed to the TableStore for persistence.
 use super::*;
 use hashlink::LruCache;
 
 pub type RecordIndex = u32;
 
-#[derive(Debug, Clone, Eq, PartialEq, Ord, PartialOrd, Hash)]
+#[derive(Debug, Copy, Clone, Eq, PartialEq, Ord, PartialOrd, Hash)]
 struct RecordIndexKey {
     pub key: TypedKey,
 }
@@ -30,7 +36,7 @@ impl TryFrom<&[u8]> for RecordIndexKey {
     }
 }
 
-#[derive(Debug, Clone, Eq, PartialEq, Ord, PartialOrd, Hash)]
+#[derive(Debug, Copy, Clone, Eq, PartialEq, Ord, PartialOrd, Hash)]
 struct SubkeyCacheKey {
     pub key: TypedKey,
     pub subkey: ValueSubkey,
@@ -71,6 +77,9 @@ pub struct RecordStore {
     subkey_table: Option<TableDB>,
     record_index: LruCache<RecordIndexKey, ValueRecord>,
     subkey_cache: LruCache<SubkeyCacheKey, ValueRecordData>,
+
+    dead_records: Vec<(RecordIndexKey, ValueRecord)>,
+    changed_records: HashSet<(RecordIndexKey, Timestamp)>,
 }
 
 impl RecordStore {
@@ -84,6 +93,8 @@ impl RecordStore {
             subkey_table: None,
             record_index: LruCache::new(limits.max_records.unwrap_or(usize::MAX)),
             subkey_cache: LruCache::new(subkey_cache_size),
+            dead_records: Vec::new(),
+            changed_records: HashSet::new(),
         }
     }
 
@@ -118,145 +129,163 @@ impl RecordStore {
             })
         }
 
-        // Delete dead keys
-        if !dead_records.empty() {
-            let rt_xact = record_table.transact();
-            let st_xact = subkey_table.transact();
-            for (k, v) in dead_records {
-                // Delete record
-                rt_xact.delete(0, &k.bytes());
-
-                // Delete subkeys
-                let subkey_count = v.subkey_count();
-                for sk in 0..subkey_count {
-                    let sck = SubkeyCacheKey {
-                        key: k.key,
-                        subkey: sk,
-                    };
-                    st_xact.delete(0, &sck.bytes())?;
-                }
-            }
-            rt_xact.commit().await?;
-            st_xact.commit().await?;
-        }
-
         self.record_table = Some(record_table);
         self.subkey_table = Some(record_table);
         Ok(())
     }
 
-    fix up new record
+    fn add_dead_record(&mut self, key: RecordIndexKey, record: ValueRecord) {
+        self.dead_records.push((key, record));
+    }
 
-    pub fn new_record(&mut self, key: TypedKey, record: ValueRecord) -> EyreResult<()> {
+    fn mark_record_changed(&mut self, key: RecordIndexKey) {
+        let cur_ts = get_aligned_timestamp();
+        self.changed_records.insert((key, cur_ts));
+    }
+
+    async fn purge_dead_records(&mut self) {
+        // Delete dead keys
+        if self.dead_records.empty() {
+            return;
+        }
+
+        let rt_xact = record_table.transact();
+        let st_xact = subkey_table.transact();
+        let mut dead_records = mem::take(&mut self.dead_records);
+        for (k, v) in dead_records {
+            // Delete record
+            rt_xact.delete(0, &k.bytes());
+
+            // Delete subkeys
+            let subkey_count = v.subkey_count();
+            for sk in 0..subkey_count {
+                // From table
+                let sck = SubkeyCacheKey {
+                    key: k.key,
+                    subkey: sk,
+                };
+                st_xact.delete(0, &sck.bytes())?;
+
+                // From cache
+                self.subkey_cache.remove(&sck);
+            }
+        }
+        if let Err(e) = rt_xact.commit().await {
+            log_stor!(error "failed to commit record table transaction: {}", e);
+        }
+        if let Err(e) = st_xact.commit().await {
+            log_stor!(error "failed to commit subkey table transaction: {}", e);
+        }
+    }
+
+    async fn flush_records(&mut self) {
+        // touch records
+        if self.changed_records.empty() {
+            return;
+        }
+
+        let rt_xact = record_table.transact();
+        let st_xact = subkey_table.transact();
+        let mut changed_records = mem::take(&mut self.changed_records);
+        for (rik, ts) in changed_records {
+            // Flush record and changed subkeys
+        }
+        if let Err(e) = rt_xact.commit().await {
+            log_stor!(error "failed to commit record table transaction: {}", e);
+        }
+        if let Err(e) = st_xact.commit().await {
+            log_stor!(error "failed to commit subkey table transaction: {}", e);
+        }
+    }
+
+    pub async fn tick(&mut self, last_ts: Timestamp, cur_ts: Timestamp) {
+        self.flush_records().await;
+        self.purge_dead_records().await;
+    }
+
+    pub fn new_record(&mut self, key: TypedKey, record: ValueRecord) -> Result<(), VeilidAPIError> {
         if self.with_record(key, |_| {})?.is_some() {
-            bail!("record already exists");
+            apibail_generic!("record already exists");
         }
 
         // Get record table
         let Some(record_table) = self.record_table.clone() else {
-            bail!("record store not initialized");
+            apibail_internal!("record store not initialized");
         };
 
         // Save to record table
-        record_table.store_rkyv(0, &key, &r).await?;
+        record_table
+            .store_rkyv(0, &key, &r)
+            .await
+            .map_err(VeilidAPIError::internal)?;
 
         // Cache it
-        self.record_cache.insert(key, value, |_| {});
+        self.record_cache.insert(key, value, |k, v| {
+            self.add_dead_record(k, v);
+        });
 
         Ok(())
     }
 
-    pub fn with_record<R, F>(&mut self, key: TypedKey, f: F) -> EyreResult<Option<R>>
+    pub fn with_record<R, F>(&mut self, key: TypedKey, f: F) -> Option<R>
     where
-        F: FnOnce(&mut RecordStore, TypedKey, &ValueRecord) -> R,
+        F: FnOnce(&ValueRecord) -> R,
     {
-        // Get record table
-        let Some(record_table) = self.record_table.clone() else {
-            bail!("record store not initialized");
-        };
-
-        // If record exists in cache, use that
+        // Get record from index
         let rck = RecordIndexKey { key };
-        if let Some(r) = self.record_cache.get(&rck) {
+        if let Some(r) = self.record_index.get_mut(&rck) {
+            // Touch
+            r.touch(get_aligned_timestamp());
+            self.mark_record_changed(&rck);
+
             // Callback
-            return Ok(Some(f(self, key, r)));
+            return Some(f(key, r));
         }
-        // If not in cache, try to pull from table store
-        let k = rck.bytes();
-        if let Some(r) = record_table.load_rkyv(0, &k)? {
-            // Callback
-            let out = f(self, key, &r);
-
-            // Add to cache, do nothing with lru out
-            self.record_cache.insert(rck, r, |_| {});
-
-            return Ok(Some(out));
-        };
-
-        return Ok(None);
+        None
     }
 
-    pub fn with_record_mut<R, F>(&mut self, key: TypedKey, f: F) -> EyreResult<Option<R>>
-    where
-        F: FnOnce(&mut RecordStore, TypedKey, &mut ValueRecord) -> R,
-    {
-        // Get record table
-        let Some(record_table) = self.record_table.clone() else {
-            bail!("record store not initialized");
-        };
-
-        // If record exists in cache, use that
-        let rck = RecordIndexKey { key };
-        if let Some(r) = self.record_cache.get_mut(&rck) {
-            // Callback
-            return Ok(Some(f(self, key, r)));
-        }
-        // If not in cache, try to pull from table store
-        let k = rck.bytes();
-        if let Some(r) = record_table.load_rkyv(0, &k)? {
-            // Callback
-            let out = f(self, key, &mut r);
-
-            // Save changes back to record table
-            record_table.store_rkyv(0, &k, &r).await?;
-
-            // Add to cache, do nothing with lru out
-            self.record_cache.insert(rck, r, |_| {});
-
-            return Ok(Some(out));
-        };
-
-        Ok(None)
-    }
-
-    pub fn with_subkey<R, F>(
+    pub fn get_subkey<R, F>(
         &mut self,
         key: TypedKey,
         subkey: ValueSubkey,
-        f: F,
-    ) -> EyreResult<Option<R>>
-    where
-        F: FnOnce(&mut RecordStore, TypedKey, ValueSubkey, &ValueRecordData) -> R,
-    {
+    ) -> Result<Option<ValueRecordData>, VeilidAPIError> {
+        // record from index
+        let rck = RecordIndexKey { key };
+        let Some(r) = self.record_index.get_mut(&rck) else {
+            apibail_invalid_argument!("no record at this key", "key", key);
+        };
+
+        // Touch
+        r.touch(get_aligned_timestamp());
+        self.mark_record_changed(&rck);
+
+        // Check if the subkey is in range
+        if subkey >= r.subkey_count() {
+            apibail_invalid_argument!("subkey out of range", "subkey", subkey);
+        }
+
         // Get subkey table
         let Some(subkey_table) = self.subkey_table.clone() else {
-            bail!("record store not initialized");
+            apibail_internal!("record store not initialized");
         };
 
         // If subkey exists in subkey cache, use that
         let skck = SubkeyCacheKey { key, subkey };
-        if let Some(rd) = self.subkey_cache.get(&skck) {
-            // Callback
-            return Ok(Some(f(self, key, subkey, rd)));
+        if let Some(rd) = self.subkey_cache.get_mut(&skck) {
+            let out = rd.clone();
+
+            return Ok(Some(out));
         }
         // If not in cache, try to pull from table store
         let k = skck.bytes();
-        if let Some(rd) = subkey_table.load_rkyv(0, &k)? {
-            // Callback
-            let out = f(self, key, subkey, &rd);
+        if let Some(rd) = subkey_table
+            .load_rkyv::<ValueRecordData>(0, &k)
+            .map_err(VeilidAPIError::internal)?
+        {
+            let out = rd.clone();
 
             // Add to cache, do nothing with lru out
-            self.subkey_cache.insert(skck, r, |_| {});
+            self.subkey_cache.insert(skck, rd, |_| {});
 
             return Ok(Some(out));
         };
@@ -264,41 +293,52 @@ impl RecordStore {
         return Ok(None);
     }
 
-    pub fn with_subkey_mut<R, F>(
+    pub fn set_subkey<R, F>(
         &mut self,
         key: TypedKey,
         subkey: ValueSubkey,
-        f: F,
-    ) -> EyreResult<Option<R>>
-    where
-        F: FnOnce(&mut RecordStore, TypedKey, ValueSubkey, &mut ValueRecord) -> R,
-    {
-        // Get record table
-        let Some(subkey_table) = self.subkey_table.clone() else {
-            bail!("record store not initialized");
+        data: ValueRecordData,
+    ) -> Result<(), VeilidAPIError> {
+        // Get record from index
+        let rck = RecordIndexKey { key };
+        let Some(r) = self.record_index.get_mut(&rck) else {
+            apibail_invalid_argument!("no record at this key", "key", key);
         };
 
-        // If subkey exists in cache, use that
-        let skck = SubkeyCacheKey { key, subkey };
-        if let Some(rd) = self.subkey_cache.get_mut(&skck) {
-            // Callback
-            return Ok(Some(f(self, key, subkey, rd)));
+        // Touch
+        r.touch(get_aligned_timestamp());
+        self.mark_record_changed(&rck);
+
+        // Check if the subkey is in range
+        if subkey >= r.subkey_count() {
+            apibail_invalid_argument!("subkey out of range", "subkey", subkey);
         }
-        // If not in cache, try to pull from table store
-        let k = skck.bytes();
-        if let Some(rd) = subkey_table.load_rkyv(0, &k)? {
-            // Callback
-            let out = f(self, key, subkey, &mut rd);
 
-            // Save changes back to record table
-            subkey_table.store_rkyv(0, &k, &rd).await?;
-
-            // Add to cache, do nothing with lru out
-            self.subkey_cache.insert(key, r, |_| {});
-
-            return Ok(Some(out));
+        // Get subkey table
+        let Some(subkey_table) = self.subkey_table.clone() else {
+            apibail_internal!("record store not initialized");
         };
 
-        Ok(None)
+        // Write to subkey cache
+        let skck = SubkeyCacheKey { key, subkey };
+        if let Some(rd) = self.subkey_cache.insert(skck, data, |_, _| {}) {
+            return Ok(Some(out));
+        }
+
+
+xxx do we flush this now or queue it?
+
+        // Write subkey
+        // let k = skck.bytes();
+        // if let Some(rd) = subkey_table.load_rkyv::<ValueRecordData>(0, &k)? {
+        //     let out = rd.data.clone();
+
+        //     // Add to cache, do nothing with lru out
+        //     self.subkey_cache.insert(skck, rd, |_| {});
+
+        //     return Ok(Some(out));
+        // };
+
+        return Ok(None);
     }
 }
diff --git a/veilid-core/src/storage_manager/value_record.rs b/veilid-core/src/storage_manager/value_record.rs
index ae460424..e3500c10 100644
--- a/veilid-core/src/storage_manager/value_record.rs
+++ b/veilid-core/src/storage_manager/value_record.rs
@@ -14,8 +14,8 @@ use super::*;
 )]
 #[archive_attr(repr(C), derive(CheckBytes))]
 pub struct ValueRecordData {
-    data: ValueData,
-    signature: Signature,
+    pub data: ValueData,
+    pub signature: Signature,
 }
 
 #[derive(
diff --git a/veilid-core/src/veilid_api/routing_context.rs b/veilid-core/src/veilid_api/routing_context.rs
index 5ca61c6e..8a2b2d69 100644
--- a/veilid-core/src/veilid_api/routing_context.rs
+++ b/veilid-core/src/veilid_api/routing_context.rs
@@ -195,64 +195,74 @@ impl RoutingContext {
     }
 
     ///////////////////////////////////
-    /// DHT Values
+    /// DHT Records
 
-    /// Creates a new DHT value with a specified crypto kind and schema
-    /// Returns the newly allocated DHT Key if successful.
-    pub async fn create_value(
+    /// Creates a new DHT record a specified crypto kind and schema
+    /// Returns the newly allocated DHT record's key if successful. The records is considered 'open' after the create operation succeeds.
+    pub async fn create_dht_record(
         &self,
         kind: CryptoKind,
         schema: &DHTSchema,
     ) -> Result<TypedKey, VeilidAPIError> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager
-            .create_value(kind, schema, self.unlocked_inner.safety_selection)
+            .create_record(kind, schema, self.unlocked_inner.safety_selection)
             .await
     }
 
-    /// Opens a DHT value at a specific key. Associates a secret if one is provided to provide writer capability.
-    /// Returns the DHT key descriptor for the opened key if successful
-    /// Value may only be opened or created once. To re-open with a different routing context, first close the value.
-    pub async fn open_value(
+    /// Opens a DHT record at a specific key. Associates a secret if one is provided to provide writer capability.
+    /// Returns the DHT record descriptor for the opened record if successful
+    /// Records may only be opened or created . To re-open with a different routing context, first close the value.
+    pub async fn open_dht_record(
         key: TypedKey,
         secret: Option<SecretKey>,
-    ) -> Result<DHTDescriptor, VeilidAPIError> {
+    ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager
-            .open_value(key, secret, self.unlocked_inner.safety_selection)
+            .open_record(key, secret, self.unlocked_inner.safety_selection)
             .await
     }
 
-    /// Closes a DHT value at a specific key that was opened with create_value or open_value.
-    /// Closing a value allows you to re-open it with a different routing context
-    pub async fn close_value(key: TypedKey) -> Result<(), VeilidAPIError> {
+    /// Closes a DHT record at a specific key that was opened with create_dht_record or open_dht_record.
+    /// Closing a record allows you to re-open it with a different routing context
+    pub async fn close_dht_record(key: TypedKey) -> Result<(), VeilidAPIError> {
         let storage_manager = self.api.storage_manager()?;
-        storage_manager.close_value(key).await
+        storage_manager.close_record(key).await
     }
 
-    /// Gets the latest value of a subkey from the network
-    /// Returns the possibly-updated value data of the subkey
-    pub async fn get_value(
+    /// Deletes a DHT record at a specific key. If the record is opened, it must be closed before it is deleted.
+    /// Deleting a record does not delete it from the network immediately, but will remove the storage of the record
+    /// locally, and will prevent its value from being refreshed on the network by this node.
+    pub async fn delete_dht_record(key: TypedKey) -> Result<(), VeilidAPIError> {
+        let storage_manager = self.api.storage_manager()?;
+        storage_manager.delete_record(key).await
+    }
+
+    /// Gets the latest value of a subkey
+    /// May pull the latest value from the network, but by settings 'force_refresh' you can force a network data refresh
+    /// Returns None if the value subkey has not yet been set
+    /// Returns Some(data) if the value subkey has valid data
+    pub async fn get_dht_value(
         &self,
         key: TypedKey,
         subkey: ValueSubkey,
         force_refresh: bool,
-    ) -> Result<ValueData, VeilidAPIError> {
+    ) -> Result<Option<ValueData>, VeilidAPIError> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager.get_value(key, subkey, force_refresh).await
     }
 
     /// Pushes a changed subkey value to the network
     /// Returns None if the value was successfully put
-    /// Returns Some(newer_value) if the value put was older than the one available on the network
-    pub async fn set_value(
+    /// Returns Some(data) if the value put was older than the one available on the network
+    pub async fn set_dht_value(
         &self,
         key: TypedKey,
         subkey: ValueSubkey,
-        value_data: ValueData,
+        data: Vec<u8>,
     ) -> Result<Option<ValueData>, VeilidAPIError> {
         let storage_manager = self.api.storage_manager()?;
-        storage_manager.set_value(key, subkey, value_data).await
+        storage_manager.set_value(key, subkey, data).await
     }
 
     /// Watches changes to an opened or created value
@@ -260,7 +270,7 @@ impl RoutingContext {
     /// If the subkey range is empty, all subkey changes are considered
     /// Expiration can be infinite to keep the watch for the maximum amount of time
     /// Return value upon success is the amount of time allowed for the watch
-    pub async fn watch_value(
+    pub async fn watch_dht_values(
         &self,
         key: TypedKey,
         subkeys: &[ValueSubkeyRange],
@@ -275,7 +285,7 @@ impl RoutingContext {
 
     /// Cancels a watch early
     /// This is a convenience function that cancels watching all subkeys in a range
-    pub async fn cancel_watch_value(
+    pub async fn cancel_dht_watch(
         &self,
         key: TypedKey,
         subkeys: &[ValueSubkeyRange],
diff --git a/veilid-core/src/veilid_api/types.rs b/veilid-core/src/veilid_api/types.rs
index 5383afa9..c8e5baab 100644
--- a/veilid-core/src/veilid_api/types.rs
+++ b/veilid-core/src/veilid_api/types.rs
@@ -353,12 +353,15 @@ pub struct VeilidState {
 )]
 #[archive_attr(repr(C), derive(CheckBytes))]
 pub struct ValueData {
-    pub seq: ValueSeqNum,
-    pub data: Vec<u8>,
-    pub writer: PublicKey,
+    seq: ValueSeqNum,
+    data: Vec<u8>,
+    writer: PublicKey,
 }
 impl ValueData {
+    pub const MAX_LEN: usize = 32768;
+
     pub fn new(data: Vec<u8>, writer: PublicKey) -> Self {
+        assert!(data.len() <= Self::MAX_LEN);
         Self {
             seq: 0,
             data,
@@ -366,11 +369,30 @@ impl ValueData {
         }
     }
     pub fn new_with_seq(seq: ValueSeqNum, data: Vec<u8>, writer: PublicKey) -> Self {
+        assert!(data.len() <= Self::MAX_LEN);
         Self { seq, data, writer }
     }
-    pub fn change(&mut self, data: Vec<u8>) {
-        self.data = data;
+
+    pub fn seq(&self) -> ValueSeqNum {
+        self.seq
+    }
+
+    pub fn writer(&self) -> PublicKey {
+        self.writer
+    }
+
+    pub fn data(&self) -> &[u8] {
+        &self.data
+    }
+
+    pub fn with_data_mut<F, R>(&mut self, f: F)
+    where
+        F: FnOnce(&mut Vec<u8>) -> R,
+    {
+        let out = f(&mut self.data);
+        assert(self.data.len() <= Self::MAX_LEN);
         self.seq += 1;
+        out
     }
 }
 
@@ -2444,7 +2466,7 @@ impl DHTSchemaDFLT {
         out
     }
 
-    /// Get the number of subkeys this schema allocates 
+    /// Get the number of subkeys this schema allocates
     pub fn subkey_count(&self) -> usize {
         self.o_cnt as usize
     }
@@ -2492,7 +2514,7 @@ impl DHTSchemaSMPL {
         out
     }
 
-    /// Get the number of subkeys this schema allocates 
+    /// Get the number of subkeys this schema allocates
     pub fn subkey_count(&self) -> usize {
         self.members
             .iter()
@@ -2527,7 +2549,7 @@ impl DHTSchema {
         }
     }
 
-    /// Get the number of subkeys this schema allocates 
+    /// Get the number of subkeys this schema allocates
     pub fn subkey_count(&self) -> usize {
         match self {
             DHTSchema::DFLT(d) => d.subkey_count(),
@@ -2536,12 +2558,12 @@ impl DHTSchema {
     }
 }
 
-/// DHT Key Descriptor
+/// DHT Record Descriptor
 #[derive(
     Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
 )]
 #[archive_attr(repr(C), derive(CheckBytes))]
-pub struct DHTDescriptor {
+pub struct DHTRecordDescriptor {
     pub owner: PublicKey,
     pub schema: DHTSchema,
 }
diff --git a/veilid-tools/src/log_thru.rs b/veilid-tools/src/log_thru.rs
index 587a8393..89ef8233 100644
--- a/veilid-tools/src/log_thru.rs
+++ b/veilid-tools/src/log_thru.rs
@@ -1,6 +1,6 @@
 // LogThru
 // Pass errors through and log them simultaneously via map_err()
-// Also contains common log facilities (net, rpc, rtab, pstore, crypto, etc )
+// Also contains common log facilities (net, rpc, rtab, stor, pstore, crypto, etc )
 
 use super::*;
 
@@ -123,6 +123,42 @@ macro_rules! log_rtab {
     }
 }
 
+#[macro_export]
+macro_rules! log_stor {
+    (error $text:expr) => { error!(
+        target: "stor",
+        "{}",
+        $text,
+    )};
+    (error $fmt:literal, $($arg:expr),+) => {
+        error!(target:"stor", $fmt, $($arg),+);
+    };
+    (warn $text:expr) => { warn!(
+        target: "stor",
+        "{}",
+        $text,
+    )};
+    (warn $fmt:literal, $($arg:expr),+) => {
+        warn!(target:"stor", $fmt, $($arg),+);
+    };
+    (debug $text:expr) => { debug!(
+        target: "stor",
+        "{}",
+        $text,
+    )};
+    (debug $fmt:literal, $($arg:expr),+) => {
+        debug!(target:"stor", $fmt, $($arg),+);
+    };
+    ($text:expr) => {trace!(
+        target: "stor",
+        "{}",
+        $text,
+    )};
+    ($fmt:literal, $($arg:expr),+) => {
+        trace!(target:"stor", $fmt, $($arg),+);
+    }
+}
+
 #[macro_export]
 macro_rules! log_pstore {
     (error $text:expr) => { error!(
@@ -216,6 +252,18 @@ macro_rules! logthru_rtab {
     }
 }
 #[macro_export]
+macro_rules! logthru_stor {
+    ($($level:ident)?) => {
+        logthru!($($level)? "stor")
+    };
+    ($($level:ident)? $text:literal) => {
+        logthru!($($level)? "stor", $text)
+    };
+    ($($level:ident)? $fmt:literal, $($arg:expr),+) => {
+        logthru!($($level)? "stor", $fmt, $($arg),+)
+    }
+}
+#[macro_export]
 macro_rules! logthru_pstore {
     ($($level:ident)?) => {
         logthru!($($level)? "pstore")

From 777efaff247fc91248fd7646887595e6a283811a Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Fri, 7 Apr 2023 19:58:11 -0400
Subject: [PATCH 05/74] checkpoint

---
 veilid-core/proto/veilid.capnp                |  10 +-
 veilid-core/src/core_context.rs               |   6 +-
 veilid-core/src/crypto/byte_array_types.rs    |   4 +-
 veilid-core/src/storage_manager/keys.rs       |  63 +++++++
 veilid-core/src/storage_manager/mod.rs        |  33 +++-
 .../src/storage_manager/record_store.rs       | 172 +++++++-----------
 .../storage_manager/record_store_limits.rs    |  14 +-
 .../src/storage_manager/value_record.rs       |  10 +
 veilid-core/src/veilid_api/routing_context.rs |   9 +-
 veilid-core/src/veilid_api/types.rs           | 100 +++++++++-
 10 files changed, 283 insertions(+), 138 deletions(-)
 create mode 100644 veilid-core/src/storage_manager/keys.rs

diff --git a/veilid-core/proto/veilid.capnp b/veilid-core/proto/veilid.capnp
index 54676493..e9352711 100644
--- a/veilid-core/proto/veilid.capnp
+++ b/veilid-core/proto/veilid.capnp
@@ -321,7 +321,7 @@ struct ValueData @0xb4b7416f169f2a3d {
     data                    @1  :Data;                  # value or subvalue contents
     owner                   @2  :PublicKey;             # the public key of the owner
     writer                  @3  :PublicKey;             # the public key of the writer
-    signature               @5  :Signature;             # signature of data at this subkey, using the writer key (which may be the same as the owner key)
+    signature               @4  :Signature;             # signature of data at this subkey, using the writer key (which may be the same as the owner key)
                                                         # signature covers:
                                                         #  * ownerKey
                                                         #  * subkey
@@ -329,7 +329,7 @@ struct ValueData @0xb4b7416f169f2a3d {
                                                         #  * data
                                                         # signature does not need to cover schema because schema is validated upon every set
                                                         # so the data either fits, or it doesn't.
-    schema                  @6  :Data;                  # (optional) the schema in use
+    schema                  @5  :Data;                  # (optional) the schema in use
                                                         # If not set and seqnum == 0, uses the default schema. 
                                                         # If not set and If seqnum != 0, the schema must have been set prior and no other schema may be used, but this field may be eliminated to save space
                                                         # Changing this after key creation is not supported as it would change the dht key
@@ -339,7 +339,7 @@ struct ValueData @0xb4b7416f169f2a3d {
 struct OperationGetValueQ @0xf88a5b6da5eda5d0 {
     key                     @0  :TypedKey;              # the location of the value
     subkey                  @1  :Subkey;                # the index of the subkey
-    wantSchema              @2  :bool;                  # whether or not to include the schema for the key
+    wantSchema              @2  :Bool;                  # whether or not to include the schema for the key
 }
 
 
@@ -352,8 +352,8 @@ struct OperationGetValueA @0xd896bb46f2e0249f {
 
 struct OperationSetValueQ @0xbac06191ff8bdbc5 {         
     key                     @0  :TypedKey;              # DHT Key = Hash(ownerKeyKind) of: [ ownerKeyValue, schema ]
-    subkey                  @3  :Subkey;                # the index of the subkey
-    value                   @4  :ValueData;             # value or subvalue contents (older or equal seq number gets dropped)
+    subkey                  @1  :Subkey;                # the index of the subkey
+    value                   @2  :ValueData;             # value or subvalue contents (older or equal seq number gets dropped)
 }
 
 struct OperationSetValueA @0x9378d0732dc95be2 {
diff --git a/veilid-core/src/core_context.rs b/veilid-core/src/core_context.rs
index 7f884aca..36e307f1 100644
--- a/veilid-core/src/core_context.rs
+++ b/veilid-core/src/core_context.rs
@@ -195,8 +195,8 @@ pub struct VeilidCoreContext {
     pub table_store: TableStore,
     pub block_store: BlockStore,
     pub crypto: Crypto,
-    pub storage_manager: StorageManager,
     pub attachment_manager: AttachmentManager,
+    pub storage_manager: StorageManager,
 }
 
 impl VeilidCoreContext {
@@ -248,8 +248,8 @@ impl VeilidCoreContext {
             table_store: sc.table_store.unwrap(),
             block_store: sc.block_store.unwrap(),
             crypto: sc.crypto.unwrap(),
-            storage_manager: sc.storage_manager.unwrap(),
             attachment_manager: sc.attachment_manager.unwrap(),
+            storage_manager: sc.storage_manager.unwrap(),
         })
     }
 
@@ -262,8 +262,8 @@ impl VeilidCoreContext {
             self.table_store,
             self.block_store,
             self.crypto,
-            self.storage_manager,
             self.attachment_manager,
+            self.storage_manager,
         );
         sc.shutdown().await;
     }
diff --git a/veilid-core/src/crypto/byte_array_types.rs b/veilid-core/src/crypto/byte_array_types.rs
index 3a404698..ff75900c 100644
--- a/veilid-core/src/crypto/byte_array_types.rs
+++ b/veilid-core/src/crypto/byte_array_types.rs
@@ -238,9 +238,9 @@ macro_rules! byte_array_type {
                 Self::try_decode(value)
             }
         }
-        impl TryFrom(&[u8]) for $name {
+        impl TryFrom<&[u8]> for $name {
             type Error = VeilidAPIError;
-            pub fn try_from(v: &[u8]) -> Result<Self, Self::Error> {
+            fn try_from(v: &[u8]) -> Result<Self, Self::Error> {
                 let vl = v.len();
                 Ok(Self {
                     bytes: v.try_into().map_err(|_| {
diff --git a/veilid-core/src/storage_manager/keys.rs b/veilid-core/src/storage_manager/keys.rs
new file mode 100644
index 00000000..547e4aa9
--- /dev/null
+++ b/veilid-core/src/storage_manager/keys.rs
@@ -0,0 +1,63 @@
+use super::*;
+
+#[derive(Debug, Copy, Clone, Eq, PartialEq, Ord, PartialOrd, Hash)]
+pub struct RecordTableKey {
+    pub key: TypedKey,
+}
+impl RecordTableKey {
+    pub fn bytes(&self) -> [u8; PUBLIC_KEY_LENGTH + 4] {
+        let mut bytes = [0u8; PUBLIC_KEY_LENGTH + 4];
+        bytes[0..4].copy_from_slice(&self.key.kind.0);
+        bytes[4..PUBLIC_KEY_LENGTH + 4].copy_from_slice(&self.key.value.bytes);
+        bytes
+    }
+}
+
+impl TryFrom<&[u8]> for RecordTableKey {
+    type Error = EyreReport;
+    fn try_from(bytes: &[u8]) -> Result<Self, Self::Error> {
+        if bytes.len() != PUBLIC_KEY_LENGTH + 4 {
+            bail!("invalid bytes length");
+        }
+        let kind = FourCC::try_from(&bytes[0..4]).wrap_err("invalid kind")?;
+        let value =
+            PublicKey::try_from(&bytes[4..PUBLIC_KEY_LENGTH + 4]).wrap_err("invalid value")?;
+        let key = TypedKey::new(kind, value);
+        Ok(RecordTableKey { key })
+    }
+}
+
+#[derive(Debug, Copy, Clone, Eq, PartialEq, Ord, PartialOrd, Hash)]
+pub struct SubkeyTableKey {
+    pub key: TypedKey,
+    pub subkey: ValueSubkey,
+}
+impl SubkeyTableKey {
+    pub fn bytes(&self) -> [u8; PUBLIC_KEY_LENGTH + 4 + 4] {
+        let mut bytes = [0u8; PUBLIC_KEY_LENGTH + 4 + 4];
+        bytes[0..4].copy_from_slice(&self.key.kind.0);
+        bytes[4..PUBLIC_KEY_LENGTH + 4].copy_from_slice(&self.key.value.bytes);
+        bytes[PUBLIC_KEY_LENGTH + 4..PUBLIC_KEY_LENGTH + 4 + 4]
+            .copy_from_slice(&self.subkey.to_le_bytes());
+        bytes
+    }
+}
+impl TryFrom<&[u8]> for SubkeyTableKey {
+    type Error = EyreReport;
+    fn try_from(bytes: &[u8]) -> Result<Self, Self::Error> {
+        if bytes.len() != PUBLIC_KEY_LENGTH + 4 {
+            bail!("invalid bytes length");
+        }
+        let kind = FourCC::try_from(&bytes[0..4]).wrap_err("invalid kind")?;
+        let value =
+            PublicKey::try_from(&bytes[4..PUBLIC_KEY_LENGTH + 4]).wrap_err("invalid value")?;
+        let subkey = ValueSubkey::from_le_bytes(
+            bytes[PUBLIC_KEY_LENGTH + 4..PUBLIC_KEY_LENGTH + 4 + 4]
+                .try_into()
+                .wrap_err("invalid subkey")?,
+        );
+
+        let key = TypedKey::new(kind, value);
+        Ok(SubkeyTableKey { key, subkey })
+    }
+}
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index 245d6cd2..79e5369f 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -1,6 +1,9 @@
+mod keys;
 mod record_store;
 mod record_store_limits;
 mod value_record;
+
+use keys::*;
 use record_store::*;
 use record_store_limits::*;
 use value_record::*;
@@ -8,6 +11,11 @@ use value_record::*;
 use super::*;
 use crate::rpc_processor::*;
 
+/// The maximum size of a single subkey
+const MAX_SUBKEY_SIZE: usize = ValueData::MAX_LEN;
+/// The maximum total size of all subkeys of a record
+const MAX_RECORD_DATA_SIZE: usize = 1_048_576;
+
 /// Locked structure for storage manager
 struct StorageManagerInner {
     /// Records that have been 'created' or 'opened' by this node
@@ -62,6 +70,8 @@ impl StorageManager {
             max_records: None,
             max_subkey_cache_memory_mb: Some(xxx),
             max_disk_space_mb: None,
+            max_subkey_size: MAX_SUBKEY_SIZE,
+            max_record_data_size: MAX_RECORD_DATA_SIZE,
         }
     }
 
@@ -71,6 +81,8 @@ impl StorageManager {
             max_records: Some(xxx),
             max_subkey_cache_memory_mb: Some(xxx),
             max_disk_space_mb: Some(xxx),
+            max_subkey_size: MAX_SUBKEY_SIZE,
+            max_record_data_size: MAX_RECORD_DATA_SIZE,
         }
     }
 
@@ -116,7 +128,7 @@ impl StorageManager {
         Ok(())
     }
 
-    pub fn terminate(&self) {
+    pub async fn terminate(&self) {
         debug!("starting storage manager shutdown");
 
         // Release the storage manager
@@ -125,10 +137,14 @@ impl StorageManager {
         debug!("finished storage manager shutdown");
     }
 
-    async fn new_local_record(&self, key: TypedKey, record: ValueRecord) -> EyreResult<()> {
+    async fn new_local_record(
+        &self,
+        key: TypedKey,
+        record: ValueRecord,
+    ) -> Result<(), VeilidAPIError> {
         // add value record to record store
         let mut inner = self.inner.lock();
-        let Some(local_record_store) = inner.local_record_store else {
+        let Some(local_record_store) = inner.local_record_store.as_mut() else {
             apibail_generic!("not initialized");
 
         };
@@ -138,7 +154,7 @@ impl StorageManager {
     pub async fn create_record(
         &self,
         kind: CryptoKind,
-        schema: &DHTSchema,
+        schema: DHTSchema,
         safety_selection: SafetySelection,
     ) -> Result<TypedKey, VeilidAPIError> {
         // Get cryptosystem
@@ -162,6 +178,7 @@ impl StorageManager {
     }
 
     pub async fn open_record(
+        &self,
         key: TypedKey,
         secret: Option<SecretKey>,
         safety_selection: SafetySelection,
@@ -169,11 +186,11 @@ impl StorageManager {
         unimplemented!();
     }
 
-    pub async fn close_record(key: TypedKey) -> Result<(), VeilidAPIError> {
+    pub async fn close_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
         unimplemented!();
     }
 
-    pub async fn delete_value(key: TypedKey) -> Result<(), VeilidAPIError> {
+    pub async fn delete_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
         unimplemented!();
     }
 
@@ -195,7 +212,7 @@ impl StorageManager {
         unimplemented!();
     }
 
-    pub async fn watch_value(
+    pub async fn watch_values(
         &self,
         key: TypedKey,
         subkeys: &[ValueSubkeyRange],
@@ -205,7 +222,7 @@ impl StorageManager {
         unimplemented!();
     }
 
-    pub async fn cancel_watch_value(
+    pub async fn cancel_watch_values(
         &self,
         key: TypedKey,
         subkeys: &[ValueSubkeyRange],
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index e26a5203..49f469eb 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -7,67 +7,6 @@
 use super::*;
 use hashlink::LruCache;
 
-pub type RecordIndex = u32;
-
-#[derive(Debug, Copy, Clone, Eq, PartialEq, Ord, PartialOrd, Hash)]
-struct RecordIndexKey {
-    pub key: TypedKey,
-}
-impl RecordIndexKey {
-    pub fn bytes(&self) -> [u8; PUBLIC_KEY_LENGTH + 4] {
-        let mut bytes = [0u8; PUBLIC_KEY_LENGTH + 4];
-        bytes[0..4] = self.key.kind.0;
-        bytes[4..PUBLIC_KEY_LENGTH + 4] = self.key.value.bytes;
-        bytes
-    }
-}
-
-impl TryFrom<&[u8]> for RecordIndexKey {
-    type Error = EyreReport;
-    fn try_from(bytes: &[u8]) -> Result<Self, Self::Error> {
-        if bytes.len() != PUBLIC_KEY_LENGTH + 4 {
-            bail!("invalid bytes length");
-        }
-        let kind = FourCC::try_from(&bytes[0..4]).wrap_err("invalid kind")?;
-        let value =
-            PublicKey::try_from(&bytes[4..PUBLIC_KEY_LENGTH + 4]).wrap_err("invalid value")?;
-        let key = TypedKey::new(kind, value);
-        Ok(RecordIndexKey { key })
-    }
-}
-
-#[derive(Debug, Copy, Clone, Eq, PartialEq, Ord, PartialOrd, Hash)]
-struct SubkeyCacheKey {
-    pub key: TypedKey,
-    pub subkey: ValueSubkey,
-}
-impl SubkeyCacheKey {
-    pub fn bytes(&self) -> [u8; PUBLIC_KEY_LENGTH + 4 + 4] {
-        let mut bytes = [0u8; PUBLIC_KEY_LENGTH + 4 + 4];
-        bytes[0..4] = self.key.kind.0;
-        bytes[4..PUBLIC_KEY_LENGTH + 4] = self.key.value.bytes;
-        bytes[PUBLIC_KEY_LENGTH + 4..PUBLIC_KEY_LENGTH + 4 + 4] = self.subkey.to_le_bytes();
-        bytes
-    }
-}
-impl TryFrom<&[u8]> for SubkeyCacheKey {
-    type Error = EyreReport;
-    fn try_from(bytes: &[u8]) -> Result<Self, Self::Error> {
-        if bytes.len() != PUBLIC_KEY_LENGTH + 4 {
-            bail!("invalid bytes length");
-        }
-        let kind = FourCC::try_from(&bytes[0..4]).wrap_err("invalid kind")?;
-        let value =
-            PublicKey::try_from(&bytes[4..PUBLIC_KEY_LENGTH + 4]).wrap_err("invalid value")?;
-        let subkey =
-            ValueSubkey::try_from(&bytes[PUBLIC_KEY_LENGTH + 4..PUBLIC_KEY_LENGTH + 4 + 4])
-                .wrap_err("invalid subkey")?;
-
-        let key = TypedKey::new(kind, value);
-        Ok(SubkeyCacheKey { key, subkey })
-    }
-}
-
 pub struct RecordStore {
     table_store: TableStore,
     name: String,
@@ -75,11 +14,11 @@ pub struct RecordStore {
 
     record_table: Option<TableDB>,
     subkey_table: Option<TableDB>,
-    record_index: LruCache<RecordIndexKey, ValueRecord>,
-    subkey_cache: LruCache<SubkeyCacheKey, ValueRecordData>,
+    record_index: LruCache<RecordTableKey, ValueRecord>,
+    subkey_cache: LruCache<SubkeyTableKey, ValueRecordData>,
 
-    dead_records: Vec<(RecordIndexKey, ValueRecord)>,
-    changed_records: HashSet<(RecordIndexKey, Timestamp)>,
+    dead_records: Vec<(RecordTableKey, ValueRecord)>,
+    changed_records: HashSet<(RecordTableKey, Timestamp)>,
 }
 
 impl RecordStore {
@@ -110,11 +49,12 @@ impl RecordStore {
 
         // Pull record index from table into a vector to ensure we sort them
         let record_table_keys = record_table.get_keys(0)?;
-        let mut record_index_saved: Vec<(RecordIndexKey, ValueRecord)> =
+        let mut record_index_saved: Vec<(RecordTableKey, ValueRecord)> =
             Vec::with_capacity(record_table_keys.len());
         for rtk in record_table_keys {
             if let Some(vr) = record_table.load_rkyv::<ValueRecord>(0, &rtk)? {
-                record_index_saved.push((rtk, vr));
+                let rik = RecordTableKey::try_from(rtk.as_ref())?;
+                record_index_saved.push((rik, vr));
             }
         }
 
@@ -122,49 +62,51 @@ impl RecordStore {
         record_index_saved.sort_by(|a, b| a.1.last_touched().cmp(&b.1.last_touched()));
         let mut dead_records = Vec::new();
         for ri in record_index_saved {
-            let rik = RecordIndexKey::try_from(&ri.0)?;
-            self.record_index.insert(rik, ri.1, |k, v| {
+            self.record_index.insert(ri.0, ri.1, |k, v| {
                 // If the configuration change, we only want to keep the 'limits.max_records' records
                 dead_records.push((k, v));
-            })
+            });
         }
 
         self.record_table = Some(record_table);
-        self.subkey_table = Some(record_table);
+        self.subkey_table = Some(subkey_table);
         Ok(())
     }
 
-    fn add_dead_record(&mut self, key: RecordIndexKey, record: ValueRecord) {
+    fn add_dead_record(&mut self, key: RecordTableKey, record: ValueRecord) {
         self.dead_records.push((key, record));
     }
 
-    fn mark_record_changed(&mut self, key: RecordIndexKey) {
+    fn mark_record_changed(&mut self, key: RecordTableKey) {
         let cur_ts = get_aligned_timestamp();
         self.changed_records.insert((key, cur_ts));
     }
 
     async fn purge_dead_records(&mut self) {
         // Delete dead keys
-        if self.dead_records.empty() {
+        if self.dead_records.is_empty() {
             return;
         }
 
+        let record_table = self.record_table.clone().unwrap();
+        let subkey_table = self.subkey_table.clone().unwrap();
+
         let rt_xact = record_table.transact();
         let st_xact = subkey_table.transact();
-        let mut dead_records = mem::take(&mut self.dead_records);
+        let dead_records = mem::take(&mut self.dead_records);
         for (k, v) in dead_records {
             // Delete record
             rt_xact.delete(0, &k.bytes());
 
             // Delete subkeys
-            let subkey_count = v.subkey_count();
+            let subkey_count = v.subkey_count() as u32;
             for sk in 0..subkey_count {
                 // From table
-                let sck = SubkeyCacheKey {
+                let sck = SubkeyTableKey {
                     key: k.key,
                     subkey: sk,
                 };
-                st_xact.delete(0, &sck.bytes())?;
+                st_xact.delete(0, &sck.bytes());
 
                 // From cache
                 self.subkey_cache.remove(&sck);
@@ -184,18 +126,21 @@ impl RecordStore {
             return;
         }
 
+        let record_table = self.record_table.clone().unwrap();
+        let subkey_table = self.subkey_table.clone().unwrap();
+
         let rt_xact = record_table.transact();
-        let st_xact = subkey_table.transact();
         let mut changed_records = mem::take(&mut self.changed_records);
         for (rik, ts) in changed_records {
-            // Flush record and changed subkeys
+            // Flush changed records
+            if let Some(r) = self.record_index.peek(&rik) {
+                record_table.store_rkyv(0, &rtk)?;
+                xxx
+            }
         }
         if let Err(e) = rt_xact.commit().await {
             log_stor!(error "failed to commit record table transaction: {}", e);
         }
-        if let Err(e) = st_xact.commit().await {
-            log_stor!(error "failed to commit subkey table transaction: {}", e);
-        }
     }
 
     pub async fn tick(&mut self, last_ts: Timestamp, cur_ts: Timestamp) {
@@ -204,7 +149,8 @@ impl RecordStore {
     }
 
     pub fn new_record(&mut self, key: TypedKey, record: ValueRecord) -> Result<(), VeilidAPIError> {
-        if self.with_record(key, |_| {})?.is_some() {
+        let rik = RecordTableKey { key };
+        if self.record_index.contains_key(&rik) {
             apibail_generic!("record already exists");
         }
 
@@ -215,7 +161,7 @@ impl RecordStore {
 
         // Save to record table
         record_table
-            .store_rkyv(0, &key, &r)
+            .store_rkyv(0, &rik, &r)
             .await
             .map_err(VeilidAPIError::internal)?;
 
@@ -232,7 +178,7 @@ impl RecordStore {
         F: FnOnce(&ValueRecord) -> R,
     {
         // Get record from index
-        let rck = RecordIndexKey { key };
+        let rck = RecordTableKey { key };
         if let Some(r) = self.record_index.get_mut(&rck) {
             // Touch
             r.touch(get_aligned_timestamp());
@@ -250,7 +196,7 @@ impl RecordStore {
         subkey: ValueSubkey,
     ) -> Result<Option<ValueRecordData>, VeilidAPIError> {
         // record from index
-        let rck = RecordIndexKey { key };
+        let rck = RecordTableKey { key };
         let Some(r) = self.record_index.get_mut(&rck) else {
             apibail_invalid_argument!("no record at this key", "key", key);
         };
@@ -270,7 +216,7 @@ impl RecordStore {
         };
 
         // If subkey exists in subkey cache, use that
-        let skck = SubkeyCacheKey { key, subkey };
+        let skck = SubkeyTableKey { key, subkey };
         if let Some(rd) = self.subkey_cache.get_mut(&skck) {
             let out = rd.clone();
 
@@ -299,8 +245,13 @@ impl RecordStore {
         subkey: ValueSubkey,
         data: ValueRecordData,
     ) -> Result<(), VeilidAPIError> {
+        // Check size limit for data
+        if data.data.len() > self.limits.max_subkey_size {
+            return Err(VeilidAPIError::generic("record subkey too large"));
+        }
+
         // Get record from index
-        let rck = RecordIndexKey { key };
+        let rck = RecordTableKey { key };
         let Some(r) = self.record_index.get_mut(&rck) else {
             apibail_invalid_argument!("no record at this key", "key", key);
         };
@@ -319,26 +270,41 @@ impl RecordStore {
             apibail_internal!("record store not initialized");
         };
 
-        // Write to subkey cache
-        let skck = SubkeyCacheKey { key, subkey };
-        if let Some(rd) = self.subkey_cache.insert(skck, data, |_, _| {}) {
-            return Ok(Some(out));
+        // Get the previous subkey and ensure we aren't going over the record size limit
+        let mut prior_subkey_size = 0usize;
+
+        // If subkey exists in subkey cache, use that
+        let skck = SubkeyTableKey { key, subkey };
+        if let Some(rd) = self.subkey_cache.peek(&skck) {
+            prior_subkey_size = rd.data.data().len();
+        } else {
+            // If not in cache, try to pull from table store
+            let k = skck.bytes();
+            if let Some(rd) = subkey_table
+                .load_rkyv::<ValueRecordData>(0, &k)
+                .map_err(VeilidAPIError::internal)?
+            {
+                prior_subkey_size = rd.data.data().len();
+            }
         }
 
-
-xxx do we flush this now or queue it?
+        // Check new data size
+        let new_data_size = r.data_size() + data.data().len() - priod_subkey_size;
+        if new_data_size > self.limits.max_record_data_size {
+            return Err(VeilidAPIError::generic("dht record too large"));
+        }
 
         // Write subkey
-        // let k = skck.bytes();
-        // if let Some(rd) = subkey_table.load_rkyv::<ValueRecordData>(0, &k)? {
-        //     let out = rd.data.clone();
+        let k = skck.bytes();
+        subkey_table.store_rkyv(0, &k, &data)?;
 
-        //     // Add to cache, do nothing with lru out
-        //     self.subkey_cache.insert(skck, rd, |_| {});
+        // Write to subkey cache
+        let skck = SubkeyTableKey { key, subkey };
+        self.subkey_cache.insert(skck, data, |_, _| {});
 
-        //     return Ok(Some(out));
-        // };
+        // Update record
+        r.set_data_size(new_data_size);
 
-        return Ok(None);
+        Ok(())
     }
 }
diff --git a/veilid-core/src/storage_manager/record_store_limits.rs b/veilid-core/src/storage_manager/record_store_limits.rs
index 45601ba0..cabc00ea 100644
--- a/veilid-core/src/storage_manager/record_store_limits.rs
+++ b/veilid-core/src/storage_manager/record_store_limits.rs
@@ -1,14 +1,16 @@
-use super::*;
-
 /// Configuration for the record store
 #[derive(Debug, Default, Copy, Clone)]
 pub struct RecordStoreLimits {
     /// Number of subkeys to keep in the memory cache
-    pub subkey_cache_size: u32,
+    pub subkey_cache_size: usize,
+    /// Maximum size of a subkey
+    pub max_subkey_size: usize,
+    /// Maximum total record data size:
+    pub max_record_data_size: usize,
     /// Limit on the total number of records in the table store
-    pub max_records: Option<u32>,
+    pub max_records: Option<usize>,
     /// Limit on the amount of subkey cache memory to use before evicting cache items
-    pub max_subkey_cache_memory_mb: Option<u32>,
+    pub max_subkey_cache_memory_mb: Option<usize>,
     /// Limit on the amount of disk space to use for subkey data
-    pub max_disk_space_mb: Option<u32>,
+    pub max_disk_space_mb: Option<usize>,
 }
diff --git a/veilid-core/src/storage_manager/value_record.rs b/veilid-core/src/storage_manager/value_record.rs
index e3500c10..ac5c0c56 100644
--- a/veilid-core/src/storage_manager/value_record.rs
+++ b/veilid-core/src/storage_manager/value_record.rs
@@ -1,4 +1,6 @@
 use super::*;
+use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
+use serde::*;
 
 #[derive(
     Clone,
@@ -66,4 +68,12 @@ impl ValueRecord {
     pub fn last_touched(&self) -> Timestamp {
         self.last_touched_ts
     }
+
+    pub fn set_data_size(&mut self, size: usize) {
+        self.data_size = size;
+    }
+
+    pub fn data_size(&self) -> usize {
+        self.data_size
+    }
 }
diff --git a/veilid-core/src/veilid_api/routing_context.rs b/veilid-core/src/veilid_api/routing_context.rs
index 8a2b2d69..c61d26af 100644
--- a/veilid-core/src/veilid_api/routing_context.rs
+++ b/veilid-core/src/veilid_api/routing_context.rs
@@ -202,7 +202,7 @@ impl RoutingContext {
     pub async fn create_dht_record(
         &self,
         kind: CryptoKind,
-        schema: &DHTSchema,
+        schema: DHTSchema,
     ) -> Result<TypedKey, VeilidAPIError> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager
@@ -214,6 +214,7 @@ impl RoutingContext {
     /// Returns the DHT record descriptor for the opened record if successful
     /// Records may only be opened or created . To re-open with a different routing context, first close the value.
     pub async fn open_dht_record(
+        &self,
         key: TypedKey,
         secret: Option<SecretKey>,
     ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
@@ -225,7 +226,7 @@ impl RoutingContext {
 
     /// Closes a DHT record at a specific key that was opened with create_dht_record or open_dht_record.
     /// Closing a record allows you to re-open it with a different routing context
-    pub async fn close_dht_record(key: TypedKey) -> Result<(), VeilidAPIError> {
+    pub async fn close_dht_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager.close_record(key).await
     }
@@ -233,7 +234,7 @@ impl RoutingContext {
     /// Deletes a DHT record at a specific key. If the record is opened, it must be closed before it is deleted.
     /// Deleting a record does not delete it from the network immediately, but will remove the storage of the record
     /// locally, and will prevent its value from being refreshed on the network by this node.
-    pub async fn delete_dht_record(key: TypedKey) -> Result<(), VeilidAPIError> {
+    pub async fn delete_dht_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager.delete_record(key).await
     }
@@ -291,7 +292,7 @@ impl RoutingContext {
         subkeys: &[ValueSubkeyRange],
     ) -> Result<bool, VeilidAPIError> {
         let storage_manager = self.api.storage_manager()?;
-        storage_manager.cancel_watch_value(key, subkey).await
+        storage_manager.cancel_watch_values(key, subkeys).await
     }
 
     ///////////////////////////////////
diff --git a/veilid-core/src/veilid_api/types.rs b/veilid-core/src/veilid_api/types.rs
index c8e5baab..acdf0b15 100644
--- a/veilid-core/src/veilid_api/types.rs
+++ b/veilid-core/src/veilid_api/types.rs
@@ -385,12 +385,12 @@ impl ValueData {
         &self.data
     }
 
-    pub fn with_data_mut<F, R>(&mut self, f: F)
+    pub fn with_data_mut<F, R>(&mut self, f: F) -> R
     where
         F: FnOnce(&mut Vec<u8>) -> R,
     {
         let out = f(&mut self.data);
-        assert(self.data.len() <= Self::MAX_LEN);
+        assert!(self.data.len() <= Self::MAX_LEN);
         self.seq += 1;
         out
     }
@@ -537,6 +537,12 @@ impl SafetySelection {
     }
 }
 
+impl Default for SafetySelection {
+    fn default() -> Self {
+        Self::Unsafe(Sequencing::NoPreference)
+    }
+}
+
 /// Options for safety routes (sender privacy)
 #[derive(
     Copy,
@@ -2456,11 +2462,14 @@ pub struct DHTSchemaDFLT {
 }
 
 impl DHTSchemaDFLT {
+    const FCC: [u8; 4] = *b"DFLT";
+    const FIXED_SIZE: usize = 6;
+
     /// Build the data representation of the schema
     pub fn compile(&self) -> Vec<u8> {
-        let mut out = Vec::<u8>::with_capacity(6);
+        let mut out = Vec::<u8>::with_capacity(Self::FIXED_SIZE);
         // kind
-        out.extend_from_slice(&FourCC::from_str("DFLT").unwrap().0);
+        out.extend_from_slice(&Self::FCC);
         // o_cnt
         out.extend_from_slice(&self.o_cnt.to_le_bytes());
         out
@@ -2472,6 +2481,22 @@ impl DHTSchemaDFLT {
     }
 }
 
+impl TryFrom<&[u8]> for DHTSchemaDFLT {
+    type Error = VeilidAPIError;
+    fn try_from(b: &[u8]) -> Result<Self, Self::Error> {
+        if b.len() != Self::FIXED_SIZE {
+            apibail_generic!("invalid size");
+        }
+        if &b[0..4] != &Self::FCC {
+            apibail_generic!("wrong fourcc");
+        }
+
+        let o_cnt = u16::from_le_bytes(b[4..6].try_into().map_err(VeilidAPIError::internal)?);
+
+        Ok(Self { o_cnt })
+    }
+}
+
 /// Simple DHT Schema (SMPL) Member
 #[derive(
     Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
@@ -2497,11 +2522,16 @@ pub struct DHTSchemaSMPL {
 }
 
 impl DHTSchemaSMPL {
+    const FCC: [u8; 4] = *b"SMPL";
+    const FIXED_SIZE: usize = 6;
+
     /// Build the data representation of the schema
     pub fn compile(&self) -> Vec<u8> {
-        let mut out = Vec::<u8>::with_capacity(6 + (self.members.len() * (PUBLIC_KEY_LENGTH + 2)));
+        let mut out = Vec::<u8>::with_capacity(
+            Self::FIXED_SIZE + (self.members.len() * (PUBLIC_KEY_LENGTH + 2)),
+        );
         // kind
-        out.extend_from_slice(&FourCC::from_str("SMPL").unwrap().0);
+        out.extend_from_slice(&Self::FCC);
         // o_cnt
         out.extend_from_slice(&self.o_cnt.to_le_bytes());
         // members
@@ -2518,7 +2548,40 @@ impl DHTSchemaSMPL {
     pub fn subkey_count(&self) -> usize {
         self.members
             .iter()
-            .fold(o_cnt as usize, |acc, x| acc + (x.m_cnt as usize))
+            .fold(self.o_cnt as usize, |acc, x| acc + (x.m_cnt as usize))
+    }
+}
+
+impl TryFrom<&[u8]> for DHTSchemaSMPL {
+    type Error = VeilidAPIError;
+    fn try_from(b: &[u8]) -> Result<Self, Self::Error> {
+        if b.len() != Self::FIXED_SIZE {
+            apibail_generic!("invalid size");
+        }
+        if &b[0..4] != &Self::FCC {
+            apibail_generic!("wrong fourcc");
+        }
+        if (b.len() - Self::FIXED_SIZE) % (PUBLIC_KEY_LENGTH + 2) != 0 {
+            apibail_generic!("invalid member length");
+        }
+
+        let o_cnt = u16::from_le_bytes(b[4..6].try_into().map_err(VeilidAPIError::internal)?);
+
+        let members_len = (b.len() - Self::FIXED_SIZE) / (PUBLIC_KEY_LENGTH + 2);
+        let mut members: Vec<DHTSchemaSMPLMember> = Vec::with_capacity(members_len);
+        for n in 0..members_len {
+            let mstart = Self::FIXED_SIZE + n * (PUBLIC_KEY_LENGTH + 2);
+            let m_key = PublicKey::try_from(&b[mstart..mstart + PUBLIC_KEY_LENGTH])
+                .map_err(VeilidAPIError::internal)?;
+            let m_cnt = u16::from_le_bytes(
+                b[mstart + PUBLIC_KEY_LENGTH..mstart + PUBLIC_KEY_LENGTH + 2]
+                    .try_into()
+                    .map_err(VeilidAPIError::internal)?,
+            );
+            members.push(DHTSchemaSMPLMember { m_key, m_cnt });
+        }
+
+        Ok(Self { o_cnt, members })
     }
 }
 
@@ -2558,6 +2621,29 @@ impl DHTSchema {
     }
 }
 
+impl Default for DHTSchema {
+    fn default() -> Self {
+        Self::dflt(1)
+    }
+}
+
+impl TryFrom<&[u8]> for DHTSchema {
+    type Error = VeilidAPIError;
+    fn try_from(b: &[u8]) -> Result<Self, Self::Error> {
+        if b.len() < 4 {
+            apibail_generic!("invalid size");
+        }
+        let fcc: [u8; 4] = b[0..4].try_into().unwrap();
+        match fcc {
+            DHTSchemaDFLT::FCC => Ok(DHTSchema::DFLT(DHTSchemaDFLT::try_from(b)?)),
+            DHTSchemaSMPL::FCC => Ok(DHTSchema::SMPL(DHTSchemaSMPL::try_from(b)?)),
+            _ => {
+                apibail_generic!("unknown fourcc");
+            }
+        }
+    }
+}
+
 /// DHT Record Descriptor
 #[derive(
     Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,

From 3b687aed507a32beb8df570fcbf2cb702d39f2c3 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Sun, 9 Apr 2023 13:29:20 -0400
Subject: [PATCH 06/74] record store

---
 veilid-core/src/storage_manager/mod.rs        |  42 +--
 .../src/storage_manager/record_store.rs       | 301 +++++++++++++-----
 .../storage_manager/record_store_limits.rs    |  10 +-
 .../src/storage_manager/value_record.rs       |  30 +-
 veilid-core/src/veilid_api/types.rs           |  17 +
 veilid-core/src/veilid_config.rs              |  23 ++
 6 files changed, 302 insertions(+), 121 deletions(-)

diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index 79e5369f..05dd515e 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -67,22 +67,22 @@ impl StorageManager {
     fn local_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
         RecordStoreLimits {
             subkey_cache_size: todo!(),
+            max_subkey_size: MAX_SUBKEY_SIZE,
+            max_record_total_size: MAX_RECORD_DATA_SIZE,
             max_records: None,
             max_subkey_cache_memory_mb: Some(xxx),
-            max_disk_space_mb: None,
-            max_subkey_size: MAX_SUBKEY_SIZE,
-            max_record_data_size: MAX_RECORD_DATA_SIZE,
+            max_storage_space_mb: None,
         }
     }
 
     fn remote_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
         RecordStoreLimits {
             subkey_cache_size: todo!(),
+            max_subkey_size: MAX_SUBKEY_SIZE,
+            max_record_total_size: MAX_RECORD_DATA_SIZE,
             max_records: Some(xxx),
             max_subkey_cache_memory_mb: Some(xxx),
-            max_disk_space_mb: Some(xxx),
-            max_subkey_size: MAX_SUBKEY_SIZE,
-            max_record_data_size: MAX_RECORD_DATA_SIZE,
+            max_storage_space_mb: Some(xxx),
         }
     }
 
@@ -112,18 +112,25 @@ impl StorageManager {
         debug!("startup storage manager");
         let mut inner = self.inner.lock();
 
-        let local_limits = Self::local_limits_from_config(config.clone());
-        let remote_limits = Self::remote_limits_from_config(config.clone());
-        inner.local_record_store = Some(RecordStore::new(
+        let local_limits = Self::local_limits_from_config(self.unlocked_inner.config.clone());
+        let remote_limits = Self::remote_limits_from_config(self.unlocked_inner.config.clone());
+
+        let mut local_record_store = RecordStore::new(
             self.unlocked_inner.table_store.clone(),
             "local",
             local_limits,
-        ));
-        inner.remote_record_store = Some(RecordStore::new(
+        );
+        local_record_store.init().await?;
+
+        let mut remote_record_store = RecordStore::new(
             self.unlocked_inner.table_store.clone(),
             "remote",
             remote_limits,
-        ));
+        );
+        remote_record_store.init().await?;
+
+        inner.local_record_store = Some(local_record_store);
+        inner.remote_record_store = Some(remote_record_store);
 
         Ok(())
     }
@@ -137,18 +144,13 @@ impl StorageManager {
         debug!("finished storage manager shutdown");
     }
 
-    async fn new_local_record(
-        &self,
-        key: TypedKey,
-        record: ValueRecord,
-    ) -> Result<(), VeilidAPIError> {
+    async fn new_local_record(&self, key: TypedKey, record: Record) -> Result<(), VeilidAPIError> {
         // add value record to record store
         let mut inner = self.inner.lock();
         let Some(local_record_store) = inner.local_record_store.as_mut() else {
             apibail_generic!("not initialized");
-
         };
-        local_record_store.new_record(key, record)
+        local_record_store.new_record(key, record).await
     }
 
     pub async fn create_record(
@@ -169,7 +171,7 @@ impl StorageManager {
 
         // Add new local value record
         let cur_ts = get_aligned_timestamp();
-        let record = ValueRecord::new(cur_ts, Some(secret), schema, safety_selection);
+        let record = Record::new(cur_ts, Some(secret), schema, safety_selection);
         self.new_local_record(key, record)
             .await
             .map_err(VeilidAPIError::internal)?;
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index 49f469eb..8c41b0f4 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -14,11 +14,15 @@ pub struct RecordStore {
 
     record_table: Option<TableDB>,
     subkey_table: Option<TableDB>,
-    record_index: LruCache<RecordTableKey, ValueRecord>,
-    subkey_cache: LruCache<SubkeyTableKey, ValueRecordData>,
+    record_index: LruCache<RecordTableKey, Record>,
+    subkey_cache: LruCache<SubkeyTableKey, RecordData>,
+    subkey_cache_total_size: usize,
+    total_storage_space: usize,
 
-    dead_records: Vec<(RecordTableKey, ValueRecord)>,
-    changed_records: HashSet<(RecordTableKey, Timestamp)>,
+    dead_records: Vec<(RecordTableKey, Record)>,
+    changed_records: HashSet<RecordTableKey>,
+
+    purge_dead_records_mutex: AsyncMutex<()>,
 }
 
 impl RecordStore {
@@ -32,8 +36,11 @@ impl RecordStore {
             subkey_table: None,
             record_index: LruCache::new(limits.max_records.unwrap_or(usize::MAX)),
             subkey_cache: LruCache::new(subkey_cache_size),
+            subkey_cache_total_size: 0,
+            total_storage_space: 0,
             dead_records: Vec::new(),
             changed_records: HashSet::new(),
+            purge_dead_records_mutex: AsyncMutex::new(()),
         }
     }
 
@@ -49,10 +56,10 @@ impl RecordStore {
 
         // Pull record index from table into a vector to ensure we sort them
         let record_table_keys = record_table.get_keys(0)?;
-        let mut record_index_saved: Vec<(RecordTableKey, ValueRecord)> =
+        let mut record_index_saved: Vec<(RecordTableKey, Record)> =
             Vec::with_capacity(record_table_keys.len());
         for rtk in record_table_keys {
-            if let Some(vr) = record_table.load_rkyv::<ValueRecord>(0, &rtk)? {
+            if let Some(vr) = record_table.load_rkyv::<Record>(0, &rtk)? {
                 let rik = RecordTableKey::try_from(rtk.as_ref())?;
                 record_index_saved.push((rik, vr));
             }
@@ -62,10 +69,22 @@ impl RecordStore {
         record_index_saved.sort_by(|a, b| a.1.last_touched().cmp(&b.1.last_touched()));
         let mut dead_records = Vec::new();
         for ri in record_index_saved {
-            self.record_index.insert(ri.0, ri.1, |k, v| {
+            // total the storage space
+            self.total_storage_space += mem::size_of::<RecordTableKey>();
+            self.total_storage_space += ri.1.total_size();
+
+            // add to index and ensure we deduplicate in the case of an error
+            if let Some(v) = self.record_index.insert(ri.0, ri.1, |k, v| {
                 // If the configuration change, we only want to keep the 'limits.max_records' records
                 dead_records.push((k, v));
-            });
+            }) {
+                // This shouldn't happen, but deduplicate anyway
+                log_stor!(warn "duplicate record in table: {}", ri.0);
+                dead_records.push((ri.0, v));
+            }
+        }
+        for (k, v) in dead_records {
+            self.add_dead_record(k, v);
         }
 
         self.record_table = Some(record_table);
@@ -73,16 +92,59 @@ impl RecordStore {
         Ok(())
     }
 
-    fn add_dead_record(&mut self, key: RecordTableKey, record: ValueRecord) {
+    fn add_dead_record(&mut self, key: RecordTableKey, record: Record) {
         self.dead_records.push((key, record));
     }
 
     fn mark_record_changed(&mut self, key: RecordTableKey) {
-        let cur_ts = get_aligned_timestamp();
-        self.changed_records.insert((key, cur_ts));
+        self.changed_records.insert(key);
     }
 
-    async fn purge_dead_records(&mut self) {
+    fn add_to_subkey_cache(&mut self, key: SubkeyTableKey, record_data: RecordData) {
+        // Write to subkey cache
+        let mut dead_size = 0usize;
+        if let Some(old_record_data) = self.subkey_cache.insert(key, record_data, |_, v| {
+            // LRU out
+            dead_size += v.total_size();
+        }) {
+            // Old data
+            dead_size += old_record_data.total_size();
+        }
+        self.subkey_cache_total_size -= dead_size;
+        self.subkey_cache_total_size += record_data.total_size();
+
+        // Purge over size limit
+        if let Some(max_subkey_cache_memory_mb) = self.limits.max_subkey_cache_memory_mb {
+            while self.subkey_cache_total_size > (max_subkey_cache_memory_mb * 1_048_576usize) {
+                if let Some((_, v)) = self.subkey_cache.remove_lru() {
+                    self.subkey_cache_total_size -= v.total_size();
+                } else {
+                    break;
+                }
+            }
+        }
+    }
+
+    fn remove_from_subkey_cache(&mut self, key: SubkeyTableKey) {
+        if let Some(dead_record_data) = self.subkey_cache.remove(&key) {
+            self.subkey_cache_total_size -= dead_record_data.total_size();
+        }
+    }
+
+    async fn purge_dead_records(&mut self, lazy: bool) {
+        let lock = if lazy {
+            match self.purge_dead_records_mutex.try_lock().await {
+                Ok(v) => v,
+                Err(_) => {
+                    // If not ready now, just skip it if we're lazy
+                    return;
+                }
+            }
+        } else {
+            // Not lazy, must wait
+            self.purge_dead_records_mutex.lock().await;
+        };
+
         // Delete dead keys
         if self.dead_records.is_empty() {
             return;
@@ -102,15 +164,19 @@ impl RecordStore {
             let subkey_count = v.subkey_count() as u32;
             for sk in 0..subkey_count {
                 // From table
-                let sck = SubkeyTableKey {
+                let stk = SubkeyTableKey {
                     key: k.key,
                     subkey: sk,
                 };
-                st_xact.delete(0, &sck.bytes());
+                st_xact.delete(0, &stk.bytes());
 
                 // From cache
-                self.subkey_cache.remove(&sck);
+                self.remove_from_subkey_cache(stk);
             }
+
+            // Remove from total size
+            self.total_storage_space -= mem::size_of::<RecordTableKey>();
+            self.total_storage_space -= v.total_size();
         }
         if let Err(e) = rt_xact.commit().await {
             log_stor!(error "failed to commit record table transaction: {}", e);
@@ -120,9 +186,9 @@ impl RecordStore {
         }
     }
 
-    async fn flush_records(&mut self) {
+    async fn flush_changed_records(&mut self) {
         // touch records
-        if self.changed_records.empty() {
+        if self.changed_records.is_empty() {
             return;
         }
 
@@ -130,12 +196,13 @@ impl RecordStore {
         let subkey_table = self.subkey_table.clone().unwrap();
 
         let rt_xact = record_table.transact();
-        let mut changed_records = mem::take(&mut self.changed_records);
-        for (rik, ts) in changed_records {
-            // Flush changed records
-            if let Some(r) = self.record_index.peek(&rik) {
-                record_table.store_rkyv(0, &rtk)?;
-                xxx
+        let changed_records = mem::take(&mut self.changed_records);
+        for rtk in changed_records {
+            // Get the changed record and save it to the table
+            if let Some(r) = self.record_index.peek(&rtk) {
+                if let Err(e) = rt_xact.store_rkyv(0, &rtk.bytes(), r) {
+                    log_stor!(error "failed to save record: {}", e);
+                }
             }
         }
         if let Err(e) = rt_xact.commit().await {
@@ -144,14 +211,18 @@ impl RecordStore {
     }
 
     pub async fn tick(&mut self, last_ts: Timestamp, cur_ts: Timestamp) {
-        self.flush_records().await;
-        self.purge_dead_records().await;
+        self.flush_changed_records().await;
+        self.purge_dead_records(true).await;
     }
 
-    pub fn new_record(&mut self, key: TypedKey, record: ValueRecord) -> Result<(), VeilidAPIError> {
-        let rik = RecordTableKey { key };
-        if self.record_index.contains_key(&rik) {
-            apibail_generic!("record already exists");
+    pub async fn new_record(
+        &mut self,
+        key: TypedKey,
+        record: Record,
+    ) -> Result<(), VeilidAPIError> {
+        let rtk = RecordTableKey { key };
+        if self.record_index.contains_key(&rtk) {
+            apibail_internal!("record already exists");
         }
 
         // Get record table
@@ -159,54 +230,78 @@ impl RecordStore {
             apibail_internal!("record store not initialized");
         };
 
+        // If over size limit, dont create record
+        let new_total_storage_space =
+            self.total_storage_space + mem::size_of::<RecordTableKey>() + record.total_size();
+        if let Some(max_storage_space_mb) = &self.limits.max_storage_space_mb {
+            if new_total_storage_space > (max_storage_space_mb * 1_048_576usize) {
+                apibail_try_again!();
+            }
+        }
+
         // Save to record table
         record_table
-            .store_rkyv(0, &rik, &r)
+            .store_rkyv(0, &rtk.bytes(), &record)
             .await
             .map_err(VeilidAPIError::internal)?;
 
-        // Cache it
-        self.record_cache.insert(key, value, |k, v| {
-            self.add_dead_record(k, v);
-        });
+        // Save to record index
+        let mut dead_records = Vec::new();
+        if let Some(v) = self.record_index.insert(rtk, record, |k, v| {
+            dead_records.push((k, v));
+        }) {
+            // Shouldn't happen but log it
+            log_stor!(warn "new duplicate record in table: {}", rtk);
+            self.add_dead_record(rtk, v);
+        }
+        for dr in dead_records {
+            self.add_dead_record(dr.0, dr.1);
+        }
+
+        // Update storage space
+        self.total_storage_space = new_total_storage_space;
 
         Ok(())
     }
 
     pub fn with_record<R, F>(&mut self, key: TypedKey, f: F) -> Option<R>
     where
-        F: FnOnce(&ValueRecord) -> R,
+        F: FnOnce(&Record) -> R,
     {
         // Get record from index
-        let rck = RecordTableKey { key };
-        if let Some(r) = self.record_index.get_mut(&rck) {
+        let rtk = RecordTableKey { key };
+        if let Some(record) = self.record_index.get_mut(&rtk) {
             // Touch
-            r.touch(get_aligned_timestamp());
-            self.mark_record_changed(&rck);
+            record.touch(get_aligned_timestamp());
+            self.mark_record_changed(rtk);
 
             // Callback
-            return Some(f(key, r));
+            return Some(f(record));
         }
         None
     }
 
-    pub fn get_subkey<R, F>(
+    pub async fn get_subkey<R, F>(
         &mut self,
         key: TypedKey,
         subkey: ValueSubkey,
-    ) -> Result<Option<ValueRecordData>, VeilidAPIError> {
+    ) -> Result<Option<RecordData>, VeilidAPIError> {
         // record from index
-        let rck = RecordTableKey { key };
-        let Some(r) = self.record_index.get_mut(&rck) else {
-            apibail_invalid_argument!("no record at this key", "key", key);
-        };
+        let rtk = RecordTableKey { key };
+        let subkey_count = {
+            let Some(record) = self.record_index.get_mut(&rtk) else {
+                apibail_invalid_argument!("no record at this key", "key", key);
+            };
 
-        // Touch
-        r.touch(get_aligned_timestamp());
-        self.mark_record_changed(&rck);
+            // Touch
+            record.touch(get_aligned_timestamp());
+
+            record.subkey_count()
+        };
+        self.mark_record_changed(rtk);
 
         // Check if the subkey is in range
-        if subkey >= r.subkey_count() {
+        if subkey as usize >= subkey_count {
             apibail_invalid_argument!("subkey out of range", "subkey", subkey);
         }
 
@@ -216,22 +311,21 @@ impl RecordStore {
         };
 
         // If subkey exists in subkey cache, use that
-        let skck = SubkeyTableKey { key, subkey };
-        if let Some(rd) = self.subkey_cache.get_mut(&skck) {
-            let out = rd.clone();
+        let stk = SubkeyTableKey { key, subkey };
+        if let Some(record_data) = self.subkey_cache.get_mut(&stk) {
+            let out = record_data.clone();
 
             return Ok(Some(out));
         }
         // If not in cache, try to pull from table store
-        let k = skck.bytes();
-        if let Some(rd) = subkey_table
-            .load_rkyv::<ValueRecordData>(0, &k)
+        if let Some(record_data) = subkey_table
+            .load_rkyv::<RecordData>(0, &stk.bytes())
             .map_err(VeilidAPIError::internal)?
         {
-            let out = rd.clone();
+            let out = record_data.clone();
 
             // Add to cache, do nothing with lru out
-            self.subkey_cache.insert(skck, rd, |_| {});
+            self.add_to_subkey_cache(stk, record_data);
 
             return Ok(Some(out));
         };
@@ -239,29 +333,33 @@ impl RecordStore {
         return Ok(None);
     }
 
-    pub fn set_subkey<R, F>(
+    pub async fn set_subkey<R, F>(
         &mut self,
         key: TypedKey,
         subkey: ValueSubkey,
-        data: ValueRecordData,
+        record_data: RecordData,
     ) -> Result<(), VeilidAPIError> {
         // Check size limit for data
-        if data.data.len() > self.limits.max_subkey_size {
+        if record_data.value_data.data().len() > self.limits.max_subkey_size {
             return Err(VeilidAPIError::generic("record subkey too large"));
         }
 
         // Get record from index
-        let rck = RecordTableKey { key };
-        let Some(r) = self.record_index.get_mut(&rck) else {
-            apibail_invalid_argument!("no record at this key", "key", key);
-        };
+        let rtk = RecordTableKey { key };
+        let (subkey_count, total_size) = {
+            let Some(record) = self.record_index.get_mut(&rtk) else {
+                apibail_invalid_argument!("no record at this key", "key", key);
+            };
 
-        // Touch
-        r.touch(get_aligned_timestamp());
-        self.mark_record_changed(&rck);
+            // Touch
+            record.touch(get_aligned_timestamp());
+
+            (record.subkey_count(), record.total_size())
+        };
+        self.mark_record_changed(rtk);
 
         // Check if the subkey is in range
-        if subkey >= r.subkey_count() {
+        if subkey as usize >= subkey_count {
             apibail_invalid_argument!("subkey out of range", "subkey", subkey);
         }
 
@@ -271,40 +369,71 @@ impl RecordStore {
         };
 
         // Get the previous subkey and ensure we aren't going over the record size limit
-        let mut prior_subkey_size = 0usize;
+        let mut prior_record_data_size = 0usize;
 
         // If subkey exists in subkey cache, use that
-        let skck = SubkeyTableKey { key, subkey };
-        if let Some(rd) = self.subkey_cache.peek(&skck) {
-            prior_subkey_size = rd.data.data().len();
+        let stk = SubkeyTableKey { key, subkey };
+        let stk_bytes = stk.bytes();
+
+        if let Some(record_data) = self.subkey_cache.peek(&stk) {
+            prior_record_data_size = record_data.total_size();
         } else {
             // If not in cache, try to pull from table store
-            let k = skck.bytes();
-            if let Some(rd) = subkey_table
-                .load_rkyv::<ValueRecordData>(0, &k)
+            if let Some(record_data) = subkey_table
+                .load_rkyv::<RecordData>(0, &stk_bytes)
                 .map_err(VeilidAPIError::internal)?
             {
-                prior_subkey_size = rd.data.data().len();
+                prior_record_data_size = record_data.total_size();
             }
         }
 
-        // Check new data size
-        let new_data_size = r.data_size() + data.data().len() - priod_subkey_size;
-        if new_data_size > self.limits.max_record_data_size {
-            return Err(VeilidAPIError::generic("dht record too large"));
+        // Check new total record size
+        let new_record_data_size = record_data.total_size();
+        let new_total_size = total_size + new_record_data_size - prior_record_data_size;
+        if new_total_size > self.limits.max_record_total_size {
+            apibail_generic!("dht record too large");
+        }
+
+        // Check new total storage space
+        let new_total_storage_space =
+            self.total_storage_space + new_record_data_size - prior_record_data_size;
+        if let Some(max_storage_space_mb) = self.limits.max_storage_space_mb {
+            if new_total_storage_space > (max_storage_space_mb * 1_048_576usize) {
+                apibail_try_again!();
+            }
         }
 
         // Write subkey
-        let k = skck.bytes();
-        subkey_table.store_rkyv(0, &k, &data)?;
+        subkey_table
+            .store_rkyv(0, &stk_bytes, &record_data)
+            .await
+            .map_err(VeilidAPIError::internal)?;
 
         // Write to subkey cache
-        let skck = SubkeyTableKey { key, subkey };
-        self.subkey_cache.insert(skck, data, |_, _| {});
+        self.add_to_subkey_cache(stk, record_data);
 
         // Update record
-        r.set_data_size(new_data_size);
+        let Some(record) = self.record_index.get_mut(&rtk) else {
+            apibail_invalid_argument!("no record at this key", "key", key);
+        };
+        record.set_record_data_size(new_record_data_size);
 
         Ok(())
     }
+
+    /// LRU out some records until we reclaim the amount of space requested
+    /// This will force a garbage collection of the space immediately
+    /// If zero is passed in here, a garbage collection will be performed of dead records
+    /// without removing any live records
+    pub async fn reclaim_space(&mut self, space: usize) {
+        let mut reclaimed = 0usize;
+        while reclaimed < space {
+            if let Some((k, v)) = self.record_index.remove_lru() {
+                reclaimed += mem::size_of::<RecordTableKey>();
+                reclaimed += v.total_size();
+                self.add_dead_record(k, v);
+            }
+        }
+        self.purge_dead_records(false).await;
+    }
 }
diff --git a/veilid-core/src/storage_manager/record_store_limits.rs b/veilid-core/src/storage_manager/record_store_limits.rs
index cabc00ea..5dfb25d4 100644
--- a/veilid-core/src/storage_manager/record_store_limits.rs
+++ b/veilid-core/src/storage_manager/record_store_limits.rs
@@ -3,14 +3,14 @@
 pub struct RecordStoreLimits {
     /// Number of subkeys to keep in the memory cache
     pub subkey_cache_size: usize,
-    /// Maximum size of a subkey
+    /// Maximum size of an individual subkey
     pub max_subkey_size: usize,
-    /// Maximum total record data size:
-    pub max_record_data_size: usize,
+    /// Maximum total record data size per record
+    pub max_record_total_size: usize,
     /// Limit on the total number of records in the table store
     pub max_records: Option<usize>,
     /// Limit on the amount of subkey cache memory to use before evicting cache items
     pub max_subkey_cache_memory_mb: Option<usize>,
-    /// Limit on the amount of disk space to use for subkey data
-    pub max_disk_space_mb: Option<usize>,
+    /// Limit on the amount of storage space to use for subkey data and record data
+    pub max_storage_space_mb: Option<usize>,
 }
diff --git a/veilid-core/src/storage_manager/value_record.rs b/veilid-core/src/storage_manager/value_record.rs
index ac5c0c56..0ffd44d3 100644
--- a/veilid-core/src/storage_manager/value_record.rs
+++ b/veilid-core/src/storage_manager/value_record.rs
@@ -15,11 +15,17 @@ use serde::*;
     RkyvDeserialize,
 )]
 #[archive_attr(repr(C), derive(CheckBytes))]
-pub struct ValueRecordData {
-    pub data: ValueData,
+pub struct RecordData {
+    pub value_data: ValueData,
     pub signature: Signature,
 }
 
+impl RecordData {
+    pub fn total_size(&self) -> usize {
+        mem::size_of::<ValueData>() + self.value_data.data().len()
+    }
+}
+
 #[derive(
     Clone,
     Debug,
@@ -33,15 +39,15 @@ pub struct ValueRecordData {
     RkyvDeserialize,
 )]
 #[archive_attr(repr(C), derive(CheckBytes))]
-pub struct ValueRecord {
+pub struct Record {
     last_touched_ts: Timestamp,
     secret: Option<SecretKey>,
     schema: DHTSchema,
     safety_selection: SafetySelection,
-    data_size: usize,
+    record_data_size: usize,
 }
 
-impl ValueRecord {
+impl Record {
     pub fn new(
         cur_ts: Timestamp,
         secret: Option<SecretKey>,
@@ -53,7 +59,7 @@ impl ValueRecord {
             secret,
             schema,
             safety_selection,
-            data_size: 0,
+            record_data_size: 0,
         }
     }
 
@@ -69,11 +75,15 @@ impl ValueRecord {
         self.last_touched_ts
     }
 
-    pub fn set_data_size(&mut self, size: usize) {
-        self.data_size = size;
+    pub fn set_record_data_size(&mut self, size: usize) {
+        self.record_data_size = size;
     }
 
-    pub fn data_size(&self) -> usize {
-        self.data_size
+    pub fn record_data_size(&self) -> usize {
+        self.record_data_size
+    }
+
+    pub fn total_size(&self) -> usize {
+        mem::size_of::<Record>() + self.schema.data_size() + self.record_data_size
     }
 }
diff --git a/veilid-core/src/veilid_api/types.rs b/veilid-core/src/veilid_api/types.rs
index acdf0b15..6b204941 100644
--- a/veilid-core/src/veilid_api/types.rs
+++ b/veilid-core/src/veilid_api/types.rs
@@ -2479,6 +2479,10 @@ impl DHTSchemaDFLT {
     pub fn subkey_count(&self) -> usize {
         self.o_cnt as usize
     }
+    /// Get the data size of this schema beyond the size of the structure itself
+    pub fn data_size(&self) -> usize {
+        0
+    }
 }
 
 impl TryFrom<&[u8]> for DHTSchemaDFLT {
@@ -2550,6 +2554,11 @@ impl DHTSchemaSMPL {
             .iter()
             .fold(self.o_cnt as usize, |acc, x| acc + (x.m_cnt as usize))
     }
+
+    /// Get the data size of this schema beyond the size of the structure itself
+    pub fn data_size(&self) -> usize {
+        self.members.len() * mem::size_of::<DHTSchemaSMPLMember>
+    }
 }
 
 impl TryFrom<&[u8]> for DHTSchemaSMPL {
@@ -2619,6 +2628,14 @@ impl DHTSchema {
             DHTSchema::SMPL(s) => s.subkey_count(),
         }
     }
+
+    /// Get the data size of this schema beyond the size of the structure itself
+    pub fn data_size(&self) -> usize {
+        match self {
+            DHTSchema::DFLT(d) => d.data_size(),
+            DHTSchema::SMPL(s) => s.data_size(),
+        }
+    }
 }
 
 impl Default for DHTSchema {
diff --git a/veilid-core/src/veilid_config.rs b/veilid-core/src/veilid_config.rs
index ce5f07c5..32d205c5 100644
--- a/veilid-core/src/veilid_config.rs
+++ b/veilid-core/src/veilid_config.rs
@@ -290,6 +290,29 @@ pub struct VeilidConfigDHT {
     pub min_peer_count: u32,
     pub min_peer_refresh_time_ms: u32,
     pub validate_dial_info_receipt_time_ms: u32,
+
+    pub local_subkey_cache_size: fn local_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
+        RecordStoreLimits {
+            subkey_cache_size: todo!(),
+            max_records: None,
+            max_subkey_cache_memory_mb: Some(xxx),
+            max_storage_space_mb: None,
+            max_subkey_size: MAX_SUBKEY_SIZE,
+            max_record_total_size: MAX_RECORD_DATA_SIZE,
+        }
+    }
+
+    fn remote_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
+        RecordStoreLimits {
+            subkey_cache_size: todo!(),
+            max_records: Some(xxx),
+            max_subkey_cache_memory_mb: Some(xxx),
+            max_storage_space_mb: Some(xxx),
+            max_subkey_size: MAX_SUBKEY_SIZE,
+            max_record_total_size: MAX_RECORD_DATA_SIZE,
+        }
+    }
+
 }
 
 /// Configure RPC

From 0769d032fc5216d2ad4d8985fcb485d1ac1a37bf Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Sat, 15 Apr 2023 21:19:29 -0400
Subject: [PATCH 07/74] checkpoint

---
 Cargo.lock                             | 17 +++++-
 veilid-core/src/storage_manager/mod.rs | 18 ++++--
 veilid-core/src/veilid_config.rs       | 41 +++++---------
 veilid-server/Cargo.toml               |  1 +
 veilid-server/src/settings.rs          | 77 +++++++++++++++++++++++++-
 5 files changed, 120 insertions(+), 34 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 0d769411..68fdc645 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -2827,7 +2827,7 @@ dependencies = [
  "parking_lot 0.12.1",
  "rand 0.8.5",
  "rusqlite",
- "sysinfo",
+ "sysinfo 0.27.7",
  "tempfile",
  "tokio 1.24.2",
 ]
@@ -5107,6 +5107,20 @@ dependencies = [
  "winapi 0.3.9",
 ]
 
+[[package]]
+name = "sysinfo"
+version = "0.28.4"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "b4c2f3ca6693feb29a89724516f016488e9aafc7f37264f898593ee4b942f31b"
+dependencies = [
+ "cfg-if 1.0.0",
+ "core-foundation-sys 0.8.3",
+ "libc",
+ "ntapi 0.4.0",
+ "once_cell",
+ "winapi 0.3.9",
+]
+
 [[package]]
 name = "tap"
 version = "1.0.1"
@@ -6082,6 +6096,7 @@ dependencies = [
  "signal-hook",
  "signal-hook-async-std",
  "stop-token",
+ "sysinfo 0.28.4",
  "tokio 1.24.2",
  "tokio-stream",
  "tokio-util",
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index 05dd515e..e4ba58ed 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -65,24 +65,30 @@ impl StorageManager {
     }
 
     fn local_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
+        let c = config.get();
         RecordStoreLimits {
-            subkey_cache_size: todo!(),
+            subkey_cache_size: c.network.dht.local_subkey_cache_size as usize,
             max_subkey_size: MAX_SUBKEY_SIZE,
             max_record_total_size: MAX_RECORD_DATA_SIZE,
             max_records: None,
-            max_subkey_cache_memory_mb: Some(xxx),
+            max_subkey_cache_memory_mb: Some(
+                c.network.dht.local_max_subkey_cache_memory_mb as usize,
+            ),
             max_storage_space_mb: None,
         }
     }
 
     fn remote_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
+        let c = config.get();
         RecordStoreLimits {
-            subkey_cache_size: todo!(),
+            subkey_cache_size: c.network.dht.remote_subkey_cache_size as usize,
             max_subkey_size: MAX_SUBKEY_SIZE,
             max_record_total_size: MAX_RECORD_DATA_SIZE,
-            max_records: Some(xxx),
-            max_subkey_cache_memory_mb: Some(xxx),
-            max_storage_space_mb: Some(xxx),
+            max_records: Some(c.network.dht.remote_max_records as usize),
+            max_subkey_cache_memory_mb: Some(
+                c.network.dht.remote_max_subkey_cache_memory_mb as usize,
+            ),
+            max_storage_space_mb: Some(c.network.dht.remote_max_storage_space_mb as usize),
         }
     }
 
diff --git a/veilid-core/src/veilid_config.rs b/veilid-core/src/veilid_config.rs
index 32d205c5..a45d7f62 100644
--- a/veilid-core/src/veilid_config.rs
+++ b/veilid-core/src/veilid_config.rs
@@ -277,42 +277,25 @@ pub struct VeilidConfigTLS {
     RkyvDeserialize,
 )]
 pub struct VeilidConfigDHT {
-    pub resolve_node_timeout_ms: Option<u32>,
+    pub resolve_node_timeout_ms: u32,
     pub resolve_node_count: u32,
     pub resolve_node_fanout: u32,
     pub max_find_node_count: u32,
-    pub get_value_timeout_ms: Option<u32>,
+    pub get_value_timeout_ms: u32,
     pub get_value_count: u32,
     pub get_value_fanout: u32,
-    pub set_value_timeout_ms: Option<u32>,
+    pub set_value_timeout_ms: u32,
     pub set_value_count: u32,
     pub set_value_fanout: u32,
     pub min_peer_count: u32,
     pub min_peer_refresh_time_ms: u32,
     pub validate_dial_info_receipt_time_ms: u32,
-
-    pub local_subkey_cache_size: fn local_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
-        RecordStoreLimits {
-            subkey_cache_size: todo!(),
-            max_records: None,
-            max_subkey_cache_memory_mb: Some(xxx),
-            max_storage_space_mb: None,
-            max_subkey_size: MAX_SUBKEY_SIZE,
-            max_record_total_size: MAX_RECORD_DATA_SIZE,
-        }
-    }
-
-    fn remote_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
-        RecordStoreLimits {
-            subkey_cache_size: todo!(),
-            max_records: Some(xxx),
-            max_subkey_cache_memory_mb: Some(xxx),
-            max_storage_space_mb: Some(xxx),
-            max_subkey_size: MAX_SUBKEY_SIZE,
-            max_record_total_size: MAX_RECORD_DATA_SIZE,
-        }
-    }
-
+    pub local_subkey_cache_size: u32,
+    pub local_max_subkey_cache_memory_mb: u32,
+    pub remote_subkey_cache_size: u32,
+    pub remote_max_records: u32,
+    pub remote_max_subkey_cache_memory_mb: u32,
+    pub remote_max_storage_space_mb: u32,
 }
 
 /// Configure RPC
@@ -685,6 +668,12 @@ impl VeilidConfig {
             get_config!(inner.network.dht.min_peer_count);
             get_config!(inner.network.dht.min_peer_refresh_time_ms);
             get_config!(inner.network.dht.validate_dial_info_receipt_time_ms);
+            get_config!(inner.network.dht.local_subkey_cache_size);
+            get_config!(inner.network.dht.local_max_subkey_cache_memory_mb);
+            get_config!(inner.network.dht.remote_subkey_cache_size);
+            get_config!(inner.network.dht.remote_max_records);
+            get_config!(inner.network.dht.remote_max_subkey_cache_memory_mb);
+            get_config!(inner.network.dht.remote_max_storage_space_mb);
             get_config!(inner.network.rpc.concurrency);
             get_config!(inner.network.rpc.queue_size);
             get_config!(inner.network.rpc.max_timestamp_behind_ms);
diff --git a/veilid-server/Cargo.toml b/veilid-server/Cargo.toml
index 67f85e66..6222cb83 100644
--- a/veilid-server/Cargo.toml
+++ b/veilid-server/Cargo.toml
@@ -57,6 +57,7 @@ flume = { version = "^0", features = ["async"] }
 rpassword = "^6"
 hostname = "^0"
 stop-token = { version = "^0", default-features = false }
+sysinfo = { version = "^0.28.4", default-features = false }
 
 [target.'cfg(windows)'.dependencies]
 windows-service = "^0"
diff --git a/veilid-server/src/settings.rs b/veilid-server/src/settings.rs
index 3867edbb..6b2b1481 100644
--- a/veilid-server/src/settings.rs
+++ b/veilid-server/src/settings.rs
@@ -6,6 +6,7 @@ use serde_derive::*;
 use std::ffi::OsStr;
 use std::net::SocketAddr;
 use std::path::{Path, PathBuf};
+use sysinfo::{DiskExt, System, SystemExt};
 use url::Url;
 use veilid_core::tools::*;
 use veilid_core::*;
@@ -95,6 +96,12 @@ core:
             min_peer_count: 20
             min_peer_refresh_time_ms: 2000
             validate_dial_info_receipt_time_ms: 2000
+            local_subkey_cache_size: 128
+            local_max_subkey_cache_memory_mb: 256
+            remote_subkey_cache_size: 1024
+            remote_max_records: 65536
+            remote_max_subkey_cache_memory_mb: %REMOTE_MAX_SUBKEY_CACHE_MEMORY_MB%
+            remote_max_storage_space_mb: 0
         upnp: true
         detect_address_changes: true
         restricted_nat_retries: 0
@@ -164,7 +171,11 @@ core:
         &Settings::get_default_private_key_directory()
             .join("server.key")
             .to_string_lossy(),
-    );
+    )
+    .replace(
+        "%REMOTE_MAX_SUBKEY_CACHE_MEMORY_MB%",
+        &Settings::get_default_remote_max_subkey_cache_memory_mb().to_string_lossy(),
+    )
     config::Config::builder()
         .add_source(config::File::from_str(
             &default_config,
@@ -512,6 +523,12 @@ pub struct Dht {
     pub min_peer_count: u32,
     pub min_peer_refresh_time_ms: u32,
     pub validate_dial_info_receipt_time_ms: u32,
+    pub local_subkey_cache_size: u32,
+    pub local_max_subkey_cache_memory_mb: u32,
+    pub remote_subkey_cache_size: u32,
+    pub remote_max_records: u32,
+    pub remote_max_subkey_cache_memory_mb: u32,
+    pub remote_max_storage_space_mb: u32,
 }
 
 #[derive(Debug, Deserialize, Serialize)]
@@ -623,6 +640,11 @@ impl Settings {
         // Generate config
         let inner: SettingsInner = cfg.try_deserialize()?;
 
+        // Fill in missing defaults
+        if inner.core.network.dht.remote_max_storage_space_mb == 0 {
+            inner.core.network.dht.remote_max_storage_space_mb = Self::get_default_remote_max_storage_space_mb(&inner);
+        }
+
         //
         Ok(Self {
             inner: Arc::new(RwLock::new(inner)),
@@ -833,6 +855,34 @@ impl Settings {
         pk_path
     }
 
+    pub fn get_default_remote_max_subkey_cache_memory_mb() -> usize {
+        let mut sys = System::new_with_specifics(sysinfo::RefreshKind::new().with_memory());
+        sys.free_memory() as usize / 8
+    }
+
+    pub fn get_default_remote_max_storage_space_mb(inner: &SettingsInner) -> usize {
+        let mut sys = System::new_with_specifics(sysinfo::RefreshKind::new().with_disks());
+        let dht_storage_path = inner.core.table_store.directory.clone();
+        let mut available_mb = 0usize;
+        // Sort longer mount point paths first since we want the mount point closest to our table store directory
+        sys.sort_disks_by(|a,b| {
+            b.mount_point().to_string_lossy().len().cmp(&a.mount_point().to_string_lossy().len())
+        });
+        for disk in sys.disks() {
+            if dht_storage_path.starts_with(disk.mount_point()) {
+                let available_mb = disk.available_space() / 1_000_000usize;
+                if available_mb > 40_000 {
+                    // Default to 10GB if more than 40GB is available
+                    return 10_000;
+                }
+                // Default to 1/4 of the available space, if less than 40GB is available
+                return available_mb;
+            }
+        }
+        // If we can't figure out our storage path go with 1GB of space and pray
+        1_000
+    }
+
     pub fn set(&self, key: &str, value: &str) -> EyreResult<()> {
         let mut inner = self.inner.write();
 
@@ -937,6 +987,12 @@ impl Settings {
             inner.core.network.dht.validate_dial_info_receipt_time_ms,
             value
         );
+        set_config_value!(inner.core.network.dht.local_subkey_cache_size, value);
+        set_config_value!(inner.core.network.dht.local_max_subkey_cache_memory_mb, value);
+        set_config_value!(inner.core.network.dht.remote_subkey_cache_size, value);
+        set_config_value!(inner.core.network.dht.remote_max_records, value);
+        set_config_value!(inner.core.network.dht.remote_max_subkey_cache_memory_mb, value);
+        set_config_value!(inner.core.network.dht.remote_max_storage_space_mb, value);
         set_config_value!(inner.core.network.upnp, value);
         set_config_value!(inner.core.network.detect_address_changes, value);
         set_config_value!(inner.core.network.restricted_nat_retries, value);
@@ -1145,6 +1201,25 @@ impl Settings {
                 "network.dht.validate_dial_info_receipt_time_ms" => Ok(Box::new(
                     inner.core.network.dht.validate_dial_info_receipt_time_ms,
                 )),
+                "network.dht.local_subkey_cache_size" => Ok(Box::new(
+                    inner.core.network.dht.local_subkey_cache_size,
+                )),
+                "network.dht.local_max_subkey_cache_memory_mb" => Ok(Box::new(
+                    inner.core.network.dht.local_max_subkey_cache_memory_mb,
+                )),
+                "network.dht.remote_subkey_cache_size" => Ok(Box::new(
+                    inner.core.network.dht.remote_subkey_cache_size
+                )),
+                "network.dht.remote_max_records" => Ok(Box::new(
+                    inner.core.network.dht.remote_max_records,
+                )),
+                "network.dht.remote_max_subkey_cache_memory_mb" => Ok(Box::new(
+                    inner.core.network.dht.remote_max_subkey_cache_memory_mb,
+                )),
+                "network.dht.remote_max_storage_space_mb" => Ok(Box::new(
+                    inner.core.network.dht.remote_max_storage_space_mb,
+                )),
+        
                 "network.upnp" => Ok(Box::new(inner.core.network.upnp)),
                 "network.detect_address_changes" => {
                     Ok(Box::new(inner.core.network.detect_address_changes))

From 00b0edf6879e41cbe1d97dfbb6322777c3e2af83 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Sun, 16 Apr 2023 13:16:00 -0400
Subject: [PATCH 08/74] checkpoint

---
 .../src/storage_manager/record_store.rs       | 13 +--
 .../src/tests/common/test_veilid_config.rs    | 15 ++--
 veilid-core/src/veilid_api/types.rs           |  2 +-
 veilid-flutter/example/pubspec.lock           | 21 +++++
 veilid-flutter/lib/default_config.dart        | 80 +++++++++++++++----
 veilid-flutter/lib/veilid.dart                | 43 +++++++---
 veilid-flutter/pubspec.yaml                   |  1 +
 veilid-server/src/settings.rs                 | 66 ++++++++-------
 8 files changed, 173 insertions(+), 68 deletions(-)

diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index 8c41b0f4..b5cb4ae4 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -22,7 +22,7 @@ pub struct RecordStore {
     dead_records: Vec<(RecordTableKey, Record)>,
     changed_records: HashSet<RecordTableKey>,
 
-    purge_dead_records_mutex: AsyncMutex<()>,
+    purge_dead_records_mutex: Arc<AsyncMutex<()>>,
 }
 
 impl RecordStore {
@@ -40,7 +40,7 @@ impl RecordStore {
             total_storage_space: 0,
             dead_records: Vec::new(),
             changed_records: HashSet::new(),
-            purge_dead_records_mutex: AsyncMutex::new(()),
+            purge_dead_records_mutex: Arc::new(AsyncMutex::new(())),
         }
     }
 
@@ -79,7 +79,7 @@ impl RecordStore {
                 dead_records.push((k, v));
             }) {
                 // This shouldn't happen, but deduplicate anyway
-                log_stor!(warn "duplicate record in table: {}", ri.0);
+                log_stor!(warn "duplicate record in table: {:?}", ri.0);
                 dead_records.push((ri.0, v));
             }
         }
@@ -132,8 +132,9 @@ impl RecordStore {
     }
 
     async fn purge_dead_records(&mut self, lazy: bool) {
+        let purge_dead_records_mutex = self.purge_dead_records_mutex.clone();
         let lock = if lazy {
-            match self.purge_dead_records_mutex.try_lock().await {
+            match purge_dead_records_mutex.try_lock() {
                 Ok(v) => v,
                 Err(_) => {
                     // If not ready now, just skip it if we're lazy
@@ -142,7 +143,7 @@ impl RecordStore {
             }
         } else {
             // Not lazy, must wait
-            self.purge_dead_records_mutex.lock().await;
+            purge_dead_records_mutex.lock().await
         };
 
         // Delete dead keys
@@ -251,7 +252,7 @@ impl RecordStore {
             dead_records.push((k, v));
         }) {
             // Shouldn't happen but log it
-            log_stor!(warn "new duplicate record in table: {}", rtk);
+            log_stor!(warn "new duplicate record in table: {:?}", rtk);
             self.add_dead_record(rtk, v);
         }
         for dr in dead_records {
diff --git a/veilid-core/src/tests/common/test_veilid_config.rs b/veilid-core/src/tests/common/test_veilid_config.rs
index 9347a7a2..323abae7 100644
--- a/veilid-core/src/tests/common/test_veilid_config.rs
+++ b/veilid-core/src/tests/common/test_veilid_config.rs
@@ -211,10 +211,10 @@ fn config_callback(key: String) -> ConfigCallbackReturn {
         "network.dht.resolve_node_count" => Ok(Box::new(20u32)),
         "network.dht.resolve_node_fanout" => Ok(Box::new(3u32)),
         "network.dht.max_find_node_count" => Ok(Box::new(20u32)),
-        "network.dht.get_value_timeout_ms" => Ok(Box::new(Option::<u32>::None)),
+        "network.dht.get_value_timeout_ms" => Ok(Box::new(10u32)),
         "network.dht.get_value_count" => Ok(Box::new(20u32)),
         "network.dht.get_value_fanout" => Ok(Box::new(3u32)),
-        "network.dht.set_value_timeout_ms" => Ok(Box::new(Option::<u32>::None)),
+        "network.dht.set_value_timeout_ms" => Ok(Box::new(10u32)),
         "network.dht.set_value_count" => Ok(Box::new(20u32)),
         "network.dht.set_value_fanout" => Ok(Box::new(5u32)),
         "network.dht.min_peer_count" => Ok(Box::new(20u32)),
@@ -317,7 +317,7 @@ pub async fn test_config() {
     assert_eq!(inner.network.hole_punch_receipt_time_ms, 5_000u32);
     assert_eq!(inner.network.rpc.concurrency, 2u32);
     assert_eq!(inner.network.rpc.queue_size, 1024u32);
-    assert_eq!(inner.network.rpc.timeout_ms, 10_000u32);
+    assert_eq!(inner.network.rpc.timeout_ms, 5_000u32);
     assert_eq!(inner.network.rpc.max_route_hop_count, 4u8);
     assert_eq!(inner.network.rpc.default_route_hop_count, 1u8);
     assert_eq!(inner.network.routing_table.node_id.len(), 0);
@@ -329,16 +329,13 @@ pub async fn test_config() {
     assert_eq!(inner.network.routing_table.limit_attached_good, 8u32);
     assert_eq!(inner.network.routing_table.limit_attached_weak, 4u32);
 
-    assert_eq!(
-        inner.network.dht.resolve_node_timeout_ms,
-        Option::<u32>::None
-    );
+    assert_eq!(inner.network.dht.resolve_node_timeout_ms, 10_000u32);
     assert_eq!(inner.network.dht.resolve_node_count, 20u32);
     assert_eq!(inner.network.dht.resolve_node_fanout, 3u32);
-    assert_eq!(inner.network.dht.get_value_timeout_ms, Option::<u32>::None);
+    assert_eq!(inner.network.dht.get_value_timeout_ms, 10_000u32);
     assert_eq!(inner.network.dht.get_value_count, 20u32);
     assert_eq!(inner.network.dht.get_value_fanout, 3u32);
-    assert_eq!(inner.network.dht.set_value_timeout_ms, Option::<u32>::None);
+    assert_eq!(inner.network.dht.set_value_timeout_ms, 10_000u32);
     assert_eq!(inner.network.dht.set_value_count, 20u32);
     assert_eq!(inner.network.dht.set_value_fanout, 5u32);
     assert_eq!(inner.network.dht.min_peer_count, 20u32);
diff --git a/veilid-core/src/veilid_api/types.rs b/veilid-core/src/veilid_api/types.rs
index 6b204941..2124d46e 100644
--- a/veilid-core/src/veilid_api/types.rs
+++ b/veilid-core/src/veilid_api/types.rs
@@ -2557,7 +2557,7 @@ impl DHTSchemaSMPL {
 
     /// Get the data size of this schema beyond the size of the structure itself
     pub fn data_size(&self) -> usize {
-        self.members.len() * mem::size_of::<DHTSchemaSMPLMember>
+        self.members.len() * mem::size_of::<DHTSchemaSMPLMember>()
     }
 }
 
diff --git a/veilid-flutter/example/pubspec.lock b/veilid-flutter/example/pubspec.lock
index 74aca102..68059eef 100644
--- a/veilid-flutter/example/pubspec.lock
+++ b/veilid-flutter/example/pubspec.lock
@@ -92,6 +92,13 @@ packages:
       url: "https://pub.dartlang.org"
     source: hosted
     version: "6.1.4"
+  file_utils:
+    dependency: transitive
+    description:
+      name: file_utils
+      url: "https://pub.dartlang.org"
+    source: hosted
+    version: "1.0.1"
   flutter:
     dependency: "direct main"
     description: flutter
@@ -121,6 +128,13 @@ packages:
     description: flutter
     source: sdk
     version: "0.0.0"
+  globbing:
+    dependency: transitive
+    description:
+      name: globbing
+      url: "https://pub.dartlang.org"
+    source: hosted
+    version: "1.0.0"
   js:
     dependency: transitive
     description:
@@ -287,6 +301,13 @@ packages:
       url: "https://pub.dartlang.org"
     source: hosted
     version: "1.1.1"
+  system_info2:
+    dependency: transitive
+    description:
+      name: system_info2
+      url: "https://pub.dartlang.org"
+    source: hosted
+    version: "3.0.2"
   term_glyph:
     dependency: transitive
     description:
diff --git a/veilid-flutter/lib/default_config.dart b/veilid-flutter/lib/default_config.dart
index 90a5f245..7d92a7e8 100644
--- a/veilid-flutter/lib/default_config.dart
+++ b/veilid-flutter/lib/default_config.dart
@@ -1,8 +1,53 @@
 import 'package:flutter/foundation.dart' show kIsWeb;
 import 'package:path_provider/path_provider.dart';
 import 'package:path/path.dart' as p;
+import 'package:system_info2/system_info2.dart' as sysinfo;
 import 'veilid.dart';
 
+const int megaByte = 1024 * 1024;
+
+int getLocalSubkeyCacheSize() {
+  if (kIsWeb) {
+    return 128;
+  }
+  return 1024;
+}
+
+int getLocalMaxSubkeyCacheMemoryMb() {
+  if (kIsWeb) {
+    return 256;
+  }
+  return sysinfo.SysInfo.getTotalPhysicalMemory() ~/ 32 ~/ megaByte;
+}
+
+int getRemoteSubkeyCacheSize() {
+  if (kIsWeb) {
+    return 64;
+  }
+  return 128;
+}
+
+int getRemoteMaxRecords() {
+  if (kIsWeb) {
+    return 64;
+  }
+  return 128;
+}
+
+int getRemoteMaxSubkeyCacheMemoryMb() {
+  if (kIsWeb) {
+    return 256;
+  }
+  return sysinfo.SysInfo.getTotalPhysicalMemory() ~/ 32 ~/ megaByte;
+}
+
+int getRemoteMaxStorageSpaceMb() {
+  if (kIsWeb) {
+    return 128;
+  }
+  return 256;
+}
+
 Future<VeilidConfig> getDefaultVeilidConfig(String programName) async {
   return VeilidConfig(
     programName: programName,
@@ -63,25 +108,30 @@ Future<VeilidConfig> getDefaultVeilidConfig(String programName) async {
         queueSize: 1024,
         maxTimestampBehindMs: 10000,
         maxTimestampAheadMs: 10000,
-        timeoutMs: 10000,
+        timeoutMs: 5000,
         maxRouteHopCount: 4,
         defaultRouteHopCount: 1,
       ),
       dht: VeilidConfigDHT(
-        resolveNodeTimeoutMs: null,
-        resolveNodeCount: 20,
-        resolveNodeFanout: 3,
-        maxFindNodeCount: 20,
-        getValueTimeoutMs: null,
-        getValueCount: 20,
-        getValueFanout: 3,
-        setValueTimeoutMs: null,
-        setValueCount: 20,
-        setValueFanout: 5,
-        minPeerCount: 20,
-        minPeerRefreshTimeMs: 2000,
-        validateDialInfoReceiptTimeMs: 2000,
-      ),
+          resolveNodeTimeoutMs: 10000,
+          resolveNodeCount: 20,
+          resolveNodeFanout: 3,
+          maxFindNodeCount: 20,
+          getValueTimeoutMs: 10000,
+          getValueCount: 20,
+          getValueFanout: 3,
+          setValueTimeoutMs: 10000,
+          setValueCount: 20,
+          setValueFanout: 5,
+          minPeerCount: 20,
+          minPeerRefreshTimeMs: 2000,
+          validateDialInfoReceiptTimeMs: 2000,
+          localSubkeyCacheSize: getLocalSubkeyCacheSize(),
+          localMaxSubkeyCacheMemoryMb: getLocalMaxSubkeyCacheMemoryMb(),
+          remoteSubkeyCacheSize: getRemoteSubkeyCacheSize(),
+          remoteMaxRecords: getRemoteMaxRecords(),
+          remoteMaxSubkeyCacheMemoryMb: getRemoteMaxSubkeyCacheMemoryMb(),
+          remoteMaxStorageSpaceMb: getRemoteMaxStorageSpaceMb()),
       upnp: true,
       detectAddressChanges: true,
       restrictedNatRetries: 0,
diff --git a/veilid-flutter/lib/veilid.dart b/veilid-flutter/lib/veilid.dart
index 8d9a8c90..8ab3b705 100644
--- a/veilid-flutter/lib/veilid.dart
+++ b/veilid-flutter/lib/veilid.dart
@@ -588,34 +588,46 @@ class VeilidConfigTLS {
 ////////////
 
 class VeilidConfigDHT {
-  int? resolveNodeTimeoutMs;
+  int resolveNodeTimeoutMs;
   int resolveNodeCount;
   int resolveNodeFanout;
   int maxFindNodeCount;
-  int? getValueTimeoutMs;
+  int getValueTimeoutMs;
   int getValueCount;
   int getValueFanout;
-  int? setValueTimeoutMs;
+  int setValueTimeoutMs;
   int setValueCount;
   int setValueFanout;
   int minPeerCount;
   int minPeerRefreshTimeMs;
   int validateDialInfoReceiptTimeMs;
+  int localSubkeyCacheSize;
+  int localMaxSubkeyCacheMemoryMb;
+  int remoteSubkeyCacheSize;
+  int remoteMaxRecords;
+  int remoteMaxSubkeyCacheMemoryMb;
+  int remoteMaxStorageSpaceMb;
 
   VeilidConfigDHT(
-      {this.resolveNodeTimeoutMs,
+      {required this.resolveNodeTimeoutMs,
       required this.resolveNodeCount,
       required this.resolveNodeFanout,
       required this.maxFindNodeCount,
-      this.getValueTimeoutMs,
+      required this.getValueTimeoutMs,
       required this.getValueCount,
       required this.getValueFanout,
-      this.setValueTimeoutMs,
+      required this.setValueTimeoutMs,
       required this.setValueCount,
       required this.setValueFanout,
       required this.minPeerCount,
       required this.minPeerRefreshTimeMs,
-      required this.validateDialInfoReceiptTimeMs});
+      required this.validateDialInfoReceiptTimeMs,
+      required this.localSubkeyCacheSize,
+      required this.localMaxSubkeyCacheMemoryMb,
+      required this.remoteSubkeyCacheSize,
+      required this.remoteMaxRecords,
+      required this.remoteMaxSubkeyCacheMemoryMb,
+      required this.remoteMaxStorageSpaceMb});
 
   Map<String, dynamic> get json {
     return {
@@ -631,7 +643,13 @@ class VeilidConfigDHT {
       'set_value_fanout': setValueFanout,
       'min_peer_count': minPeerCount,
       'min_peer_refresh_time_ms': minPeerRefreshTimeMs,
-      'validate_dial_info_receipt_time_ms': validateDialInfoReceiptTimeMs
+      'validate_dial_info_receipt_time_ms': validateDialInfoReceiptTimeMs,
+      'local_subkey_cache_size: 128': localSubkeyCacheSize,
+      'local_max_subkey_cache_memory_mb': localMaxSubkeyCacheMemoryMb,
+      'remote_subkey_cache_size': remoteSubkeyCacheSize,
+      'remote_max_records': remoteMaxRecords,
+      'remote_max_subkey_cache_memory_mb': remoteMaxSubkeyCacheMemoryMb,
+      'remote_max_storage_space_mb': remoteMaxStorageSpaceMb,
     };
   }
 
@@ -649,7 +667,14 @@ class VeilidConfigDHT {
         minPeerCount = json['min_peer_count'],
         minPeerRefreshTimeMs = json['min_peer_refresh_time_ms'],
         validateDialInfoReceiptTimeMs =
-            json['validate_dial_info_receipt_time_ms'];
+            json['validate_dial_info_receipt_time_ms'],
+        localSubkeyCacheSize = json['local_subkey_cache_size'],
+        localMaxSubkeyCacheMemoryMb = json['local_max_subkey_cache_memory_mb'],
+        remoteSubkeyCacheSize = json['remote_subkey_cache_size'],
+        remoteMaxRecords = json['remote_max_records'],
+        remoteMaxSubkeyCacheMemoryMb =
+            json['remote_max_subkey_cache_memory_mb'],
+        remoteMaxStorageSpaceMb = json['remote_max_storage_space_mb'];
 }
 
 ////////////
diff --git a/veilid-flutter/pubspec.yaml b/veilid-flutter/pubspec.yaml
index 9830207c..ad515fc1 100644
--- a/veilid-flutter/pubspec.yaml
+++ b/veilid-flutter/pubspec.yaml
@@ -17,6 +17,7 @@ dependencies:
   change_case: ^1.0.1
   path_provider: ^2.0.9
   path: ^1.8.0
+  system_info2: ^3.0.2
 
 dev_dependencies:
   flutter_test:
diff --git a/veilid-server/src/settings.rs b/veilid-server/src/settings.rs
index 6b2b1481..4d25c912 100644
--- a/veilid-server/src/settings.rs
+++ b/veilid-server/src/settings.rs
@@ -79,18 +79,18 @@ core:
             queue_size: 1024
             max_timestamp_behind_ms: 10000
             max_timestamp_ahead_ms: 10000
-            timeout_ms: 10000
+            timeout_ms: 5000
             max_route_hop_count: 4
             default_route_hop_count: 1
         dht:
-            resolve_node_timeout:
+            resolve_node_timeout: 10000
             resolve_node_count: 20
             resolve_node_fanout: 3
             max_find_node_count: 20
-            get_value_timeout:
+            get_value_timeout: 10000
             get_value_count: 20
             get_value_fanout: 3
-            set_value_timeout:
+            set_value_timeout: 10000
             set_value_count: 20
             set_value_fanout: 5
             min_peer_count: 20
@@ -175,7 +175,7 @@ core:
     .replace(
         "%REMOTE_MAX_SUBKEY_CACHE_MEMORY_MB%",
         &Settings::get_default_remote_max_subkey_cache_memory_mb().to_string_lossy(),
-    )
+    );
     config::Config::builder()
         .add_source(config::File::from_str(
             &default_config,
@@ -514,10 +514,10 @@ pub struct Dht {
     pub resolve_node_count: u32,
     pub resolve_node_fanout: u32,
     pub max_find_node_count: u32,
-    pub get_value_timeout_ms: Option<u32>,
+    pub get_value_timeout_ms: u32,
     pub get_value_count: u32,
     pub get_value_fanout: u32,
-    pub set_value_timeout_ms: Option<u32>,
+    pub set_value_timeout_ms: u32,
     pub set_value_count: u32,
     pub set_value_fanout: u32,
     pub min_peer_count: u32,
@@ -642,7 +642,8 @@ impl Settings {
 
         // Fill in missing defaults
         if inner.core.network.dht.remote_max_storage_space_mb == 0 {
-            inner.core.network.dht.remote_max_storage_space_mb = Self::get_default_remote_max_storage_space_mb(&inner);
+            inner.core.network.dht.remote_max_storage_space_mb =
+                Self::get_default_remote_max_storage_space_mb(&inner);
         }
 
         //
@@ -865,8 +866,11 @@ impl Settings {
         let dht_storage_path = inner.core.table_store.directory.clone();
         let mut available_mb = 0usize;
         // Sort longer mount point paths first since we want the mount point closest to our table store directory
-        sys.sort_disks_by(|a,b| {
-            b.mount_point().to_string_lossy().len().cmp(&a.mount_point().to_string_lossy().len())
+        sys.sort_disks_by(|a, b| {
+            b.mount_point()
+                .to_string_lossy()
+                .len()
+                .cmp(&a.mount_point().to_string_lossy().len())
         });
         for disk in sys.disks() {
             if dht_storage_path.starts_with(disk.mount_point()) {
@@ -988,10 +992,16 @@ impl Settings {
             value
         );
         set_config_value!(inner.core.network.dht.local_subkey_cache_size, value);
-        set_config_value!(inner.core.network.dht.local_max_subkey_cache_memory_mb, value);
+        set_config_value!(
+            inner.core.network.dht.local_max_subkey_cache_memory_mb,
+            value
+        );
         set_config_value!(inner.core.network.dht.remote_subkey_cache_size, value);
         set_config_value!(inner.core.network.dht.remote_max_records, value);
-        set_config_value!(inner.core.network.dht.remote_max_subkey_cache_memory_mb, value);
+        set_config_value!(
+            inner.core.network.dht.remote_max_subkey_cache_memory_mb,
+            value
+        );
         set_config_value!(inner.core.network.dht.remote_max_storage_space_mb, value);
         set_config_value!(inner.core.network.upnp, value);
         set_config_value!(inner.core.network.detect_address_changes, value);
@@ -1201,25 +1211,25 @@ impl Settings {
                 "network.dht.validate_dial_info_receipt_time_ms" => Ok(Box::new(
                     inner.core.network.dht.validate_dial_info_receipt_time_ms,
                 )),
-                "network.dht.local_subkey_cache_size" => Ok(Box::new(
-                    inner.core.network.dht.local_subkey_cache_size,
-                )),
+                "network.dht.local_subkey_cache_size" => {
+                    Ok(Box::new(inner.core.network.dht.local_subkey_cache_size))
+                }
                 "network.dht.local_max_subkey_cache_memory_mb" => Ok(Box::new(
                     inner.core.network.dht.local_max_subkey_cache_memory_mb,
                 )),
-                "network.dht.remote_subkey_cache_size" => Ok(Box::new(
-                    inner.core.network.dht.remote_subkey_cache_size
-                )),
-                "network.dht.remote_max_records" => Ok(Box::new(
-                    inner.core.network.dht.remote_max_records,
-                )),
+                "network.dht.remote_subkey_cache_size" => {
+                    Ok(Box::new(inner.core.network.dht.remote_subkey_cache_size))
+                }
+                "network.dht.remote_max_records" => {
+                    Ok(Box::new(inner.core.network.dht.remote_max_records))
+                }
                 "network.dht.remote_max_subkey_cache_memory_mb" => Ok(Box::new(
                     inner.core.network.dht.remote_max_subkey_cache_memory_mb,
                 )),
-                "network.dht.remote_max_storage_space_mb" => Ok(Box::new(
-                    inner.core.network.dht.remote_max_storage_space_mb,
-                )),
-        
+                "network.dht.remote_max_storage_space_mb" => {
+                    Ok(Box::new(inner.core.network.dht.remote_max_storage_space_mb))
+                }
+
                 "network.upnp" => Ok(Box::new(inner.core.network.upnp)),
                 "network.detect_address_changes" => {
                     Ok(Box::new(inner.core.network.detect_address_changes))
@@ -1521,7 +1531,7 @@ mod tests {
         assert_eq!(s.core.network.rpc.queue_size, 1024);
         assert_eq!(s.core.network.rpc.max_timestamp_behind_ms, Some(10_000u32));
         assert_eq!(s.core.network.rpc.max_timestamp_ahead_ms, Some(10_000u32));
-        assert_eq!(s.core.network.rpc.timeout_ms, 10_000u32);
+        assert_eq!(s.core.network.rpc.timeout_ms, 5_000u32);
         assert_eq!(s.core.network.rpc.max_route_hop_count, 4);
         assert_eq!(s.core.network.rpc.default_route_hop_count, 1);
         //
@@ -1529,10 +1539,10 @@ mod tests {
         assert_eq!(s.core.network.dht.resolve_node_count, 20u32);
         assert_eq!(s.core.network.dht.resolve_node_fanout, 3u32);
         assert_eq!(s.core.network.dht.max_find_node_count, 20u32);
-        assert_eq!(s.core.network.dht.get_value_timeout_ms, None);
+        assert_eq!(s.core.network.dht.get_value_timeout_ms, 10_000u32);
         assert_eq!(s.core.network.dht.get_value_count, 20u32);
         assert_eq!(s.core.network.dht.get_value_fanout, 3u32);
-        assert_eq!(s.core.network.dht.set_value_timeout_ms, None);
+        assert_eq!(s.core.network.dht.set_value_timeout_ms, 10_000u32);
         assert_eq!(s.core.network.dht.set_value_count, 20u32);
         assert_eq!(s.core.network.dht.set_value_fanout, 5u32);
         assert_eq!(s.core.network.dht.min_peer_count, 20u32);

From b4a071170d395da06a01b8bfa6ca74e001d7329c Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Wed, 19 Apr 2023 10:47:09 -0400
Subject: [PATCH 09/74] refactor api to clean up internals

---
 veilid-cli/src/peers_table_view.rs            |    6 +-
 veilid-core/proto/veilid.capnp                |   42 +-
 veilid-core/src/crypto/mod.rs                 |    2 -
 veilid-core/src/crypto/value.rs               |    0
 veilid-core/src/intf/native/system.rs         |    2 +-
 veilid-core/src/intf/wasm/system.rs           |    2 +-
 veilid-core/src/network_manager/mod.rs        |    4 +-
 veilid-core/src/network_manager/native/mod.rs |    2 +-
 veilid-core/src/network_manager/tests/mod.rs  |    2 +
 .../tests/test_signed_node_info.rs            |  167 +
 .../src/network_manager/types/address.rs      |  130 +
 .../src/network_manager/types/address_type.rs |   22 +
 .../types/connection_descriptor.rs            |   80 +
 .../network_manager/types/dial_info/mod.rs    |  522 ++++
 .../network_manager/types/dial_info/tcp.rs    |   21 +
 .../network_manager/types/dial_info/udp.rs    |   21 +
 .../src/network_manager/types/dial_info/ws.rs |   22 +
 .../network_manager/types/dial_info/wss.rs    |   22 +
 .../network_manager/types/dial_info_class.rs  |   50 +
 .../network_manager/types/dial_info_filter.rs |   86 +
 .../types/low_level_protocol_type.rs          |   31 +
 veilid-core/src/network_manager/types/mod.rs  |   31 +
 .../network_manager/types/network_class.rs    |   37 +
 .../src/network_manager/types/peer_address.rs |   66 +
 .../network_manager/types/protocol_type.rs    |  104 +
 .../src/network_manager/types/signal_info.rs  |   22 +
 .../network_manager/types/socket_address.rs   |   77 +
 veilid-core/src/routing_table/mod.rs          |    5 +-
 .../routing_table/types/dial_info_detail.rs   |   43 +
 .../src/routing_table/types/direction.rs      |   22 +
 veilid-core/src/routing_table/types/mod.rs    |   25 +
 .../src/routing_table/types/node_info.rs      |  125 +
 .../src/routing_table/types/node_status.rs    |   66 +
 .../src/routing_table/types/peer_info.rs      |   18 +
 .../src/routing_table/types/routing_domain.rs |   32 +
 .../types/signed_direct_node_info.rs          |   86 +
 .../routing_table/types/signed_node_info.rs   |   89 +
 .../types/signed_relayed_node_info.rs         |  106 +
 veilid-core/src/rpc_processor/coders/mod.rs   |    8 +-
 .../rpc_processor/coders/signed_value_data.rs |   31 +
 .../coders/signed_value_descriptor.rs         |   26 +
 .../src/rpc_processor/coders/value_data.rs    |   18 -
 .../src/rpc_processor/coders/value_detail.rs  |   20 +
 veilid-core/src/rpc_processor/mod.rs          |    6 +-
 veilid-core/src/storage_manager/mod.rs        |   51 +-
 .../{value_record.rs => record.rs}            |   74 +-
 .../src/storage_manager/record_data.rs        |   33 +
 .../src/storage_manager/record_store.rs       |   13 +-
 .../src/storage_manager/signed_value_data.rs  |   92 +
 .../signed_value_descriptor.rs                |   78 +
 .../src/storage_manager/value_detail.rs       |   43 +
 veilid-core/src/supplier_table.rs             |    0
 .../src/tests/common/test_veilid_core.rs      |  162 -
 veilid-core/src/tests/native/mod.rs           |   11 +
 veilid-core/src/veilid_api/debug.rs           |    1 +
 veilid-core/src/veilid_api/mod.rs             |    4 +-
 veilid-core/src/veilid_api/types.rs           | 2752 -----------------
 .../src/veilid_api/{ => types}/aligned_u64.rs |   14 +
 .../src/veilid_api/types/app_message_call.rs  |   32 +
 .../types/dht/dht_record_descriptor.rs        |   35 +
 veilid-core/src/veilid_api/types/dht/mod.rs   |   16 +
 .../src/veilid_api/types/dht/schema/dflt.rs   |   61 +
 .../src/veilid_api/types/dht/schema/mod.rs    |   84 +
 .../src/veilid_api/types/dht/schema/smpl.rs   |  114 +
 .../src/veilid_api/types/dht/value_data.rs    |   64 +
 veilid-core/src/veilid_api/types/fourcc.rs    |   52 +
 veilid-core/src/veilid_api/types/mod.rs       |   21 +
 veilid-core/src/veilid_api/types/safety.rs    |  125 +
 veilid-core/src/veilid_api/types/stats.rs     |  113 +
 veilid-core/src/veilid_api/types/tunnel.rs    |   83 +
 .../src/veilid_api/types/veilid_log.rs        |   88 +
 .../src/veilid_api/types/veilid_state.rs      |  144 +
 veilid-core/src/watcher_table.rs              |    0
 veilid-core/tests/web.rs                      |    6 +
 74 files changed, 3638 insertions(+), 3027 deletions(-)
 delete mode 100644 veilid-core/src/crypto/value.rs
 create mode 100644 veilid-core/src/network_manager/tests/test_signed_node_info.rs
 create mode 100644 veilid-core/src/network_manager/types/address.rs
 create mode 100644 veilid-core/src/network_manager/types/address_type.rs
 create mode 100644 veilid-core/src/network_manager/types/connection_descriptor.rs
 create mode 100644 veilid-core/src/network_manager/types/dial_info/mod.rs
 create mode 100644 veilid-core/src/network_manager/types/dial_info/tcp.rs
 create mode 100644 veilid-core/src/network_manager/types/dial_info/udp.rs
 create mode 100644 veilid-core/src/network_manager/types/dial_info/ws.rs
 create mode 100644 veilid-core/src/network_manager/types/dial_info/wss.rs
 create mode 100644 veilid-core/src/network_manager/types/dial_info_class.rs
 create mode 100644 veilid-core/src/network_manager/types/dial_info_filter.rs
 create mode 100644 veilid-core/src/network_manager/types/low_level_protocol_type.rs
 create mode 100644 veilid-core/src/network_manager/types/mod.rs
 create mode 100644 veilid-core/src/network_manager/types/network_class.rs
 create mode 100644 veilid-core/src/network_manager/types/peer_address.rs
 create mode 100644 veilid-core/src/network_manager/types/protocol_type.rs
 create mode 100644 veilid-core/src/network_manager/types/signal_info.rs
 create mode 100644 veilid-core/src/network_manager/types/socket_address.rs
 create mode 100644 veilid-core/src/routing_table/types/dial_info_detail.rs
 create mode 100644 veilid-core/src/routing_table/types/direction.rs
 create mode 100644 veilid-core/src/routing_table/types/mod.rs
 create mode 100644 veilid-core/src/routing_table/types/node_info.rs
 create mode 100644 veilid-core/src/routing_table/types/node_status.rs
 create mode 100644 veilid-core/src/routing_table/types/peer_info.rs
 create mode 100644 veilid-core/src/routing_table/types/routing_domain.rs
 create mode 100644 veilid-core/src/routing_table/types/signed_direct_node_info.rs
 create mode 100644 veilid-core/src/routing_table/types/signed_node_info.rs
 create mode 100644 veilid-core/src/routing_table/types/signed_relayed_node_info.rs
 create mode 100644 veilid-core/src/rpc_processor/coders/signed_value_data.rs
 create mode 100644 veilid-core/src/rpc_processor/coders/signed_value_descriptor.rs
 delete mode 100644 veilid-core/src/rpc_processor/coders/value_data.rs
 create mode 100644 veilid-core/src/rpc_processor/coders/value_detail.rs
 rename veilid-core/src/storage_manager/{value_record.rs => record.rs} (50%)
 create mode 100644 veilid-core/src/storage_manager/record_data.rs
 create mode 100644 veilid-core/src/storage_manager/signed_value_data.rs
 create mode 100644 veilid-core/src/storage_manager/signed_value_descriptor.rs
 create mode 100644 veilid-core/src/storage_manager/value_detail.rs
 delete mode 100644 veilid-core/src/supplier_table.rs
 delete mode 100644 veilid-core/src/veilid_api/types.rs
 rename veilid-core/src/veilid_api/{ => types}/aligned_u64.rs (85%)
 create mode 100644 veilid-core/src/veilid_api/types/app_message_call.rs
 create mode 100644 veilid-core/src/veilid_api/types/dht/dht_record_descriptor.rs
 create mode 100644 veilid-core/src/veilid_api/types/dht/mod.rs
 create mode 100644 veilid-core/src/veilid_api/types/dht/schema/dflt.rs
 create mode 100644 veilid-core/src/veilid_api/types/dht/schema/mod.rs
 create mode 100644 veilid-core/src/veilid_api/types/dht/schema/smpl.rs
 create mode 100644 veilid-core/src/veilid_api/types/dht/value_data.rs
 create mode 100644 veilid-core/src/veilid_api/types/fourcc.rs
 create mode 100644 veilid-core/src/veilid_api/types/mod.rs
 create mode 100644 veilid-core/src/veilid_api/types/safety.rs
 create mode 100644 veilid-core/src/veilid_api/types/stats.rs
 create mode 100644 veilid-core/src/veilid_api/types/tunnel.rs
 create mode 100644 veilid-core/src/veilid_api/types/veilid_log.rs
 create mode 100644 veilid-core/src/veilid_api/types/veilid_state.rs
 delete mode 100644 veilid-core/src/watcher_table.rs

diff --git a/veilid-cli/src/peers_table_view.rs b/veilid-cli/src/peers_table_view.rs
index 41992584..e81a7e86 100644
--- a/veilid-cli/src/peers_table_view.rs
+++ b/veilid-cli/src/peers_table_view.rs
@@ -55,11 +55,7 @@ impl TableViewItem<PeerTableColumn> for PeerTableData {
                 .first()
                 .cloned()
                 .unwrap_or_else(|| "???".to_owned()),
-            PeerTableColumn::Address => format!(
-                "{:?}:{}",
-                self.peer_address.protocol_type(),
-                self.peer_address.to_socket_addr()
-            ),
+            PeerTableColumn::Address => self.peer_address.clone(),
             PeerTableColumn::LatencyAvg => format!(
                 "{}",
                 self.peer_stats
diff --git a/veilid-core/proto/veilid.capnp b/veilid-core/proto/veilid.capnp
index e9352711..fc42116b 100644
--- a/veilid-core/proto/veilid.capnp
+++ b/veilid-core/proto/veilid.capnp
@@ -311,17 +311,16 @@ struct OperationAppMessage @0x9baf542d81b411f5 {
     message                 @0  :Data;                  # opaque message to application
 }
 
-struct SubkeyRange {
+struct SubkeyRange @0xf592dac0a4d0171c {
     start                   @0  :Subkey;                # the start of a subkey range
     end                     @1  :Subkey;                # the end of a subkey range
 }
-
-struct ValueData @0xb4b7416f169f2a3d {
+    
+struct SignedValueData @0xb4b7416f169f2a3d {
     seq                     @0  :ValueSeqNum;           # sequence number of value
     data                    @1  :Data;                  # value or subvalue contents
-    owner                   @2  :PublicKey;             # the public key of the owner
-    writer                  @3  :PublicKey;             # the public key of the writer
-    signature               @4  :Signature;             # signature of data at this subkey, using the writer key (which may be the same as the owner key)
+    writer                  @2  :PublicKey;             # the public key of the writer
+    signature               @3  :Signature;             # signature of data at this subkey, using the writer key (which may be the same as the owner key)
                                                         # signature covers:
                                                         #  * ownerKey
                                                         #  * subkey
@@ -329,23 +328,32 @@ struct ValueData @0xb4b7416f169f2a3d {
                                                         #  * data
                                                         # signature does not need to cover schema because schema is validated upon every set
                                                         # so the data either fits, or it doesn't.
-    schema                  @5  :Data;                  # (optional) the schema in use
-                                                        # If not set and seqnum == 0, uses the default schema. 
-                                                        # If not set and If seqnum != 0, the schema must have been set prior and no other schema may be used, but this field may be eliminated to save space
-                                                        # Changing this after key creation is not supported as it would change the dht key
-                                                        # Schema data is signed by ownerKey and is verified both by set and get operations
 }
 
+struct ValueDetail @0xe88607fa8982d67f {
+    signedValueData         @0  :SignedValueData;       # One value data with signature
+    descriptor              @1  :SignedValueDescriptor; # (optional) must provide if seq is 0, and may be present from valueget if wantSchema is specified
+                                                        # If not set and If seqnum != 0, the schema must have been set prior and no other schema may be used, but this field may be eliminated to save space
+}
+
+struct SignedValueDescriptor @0xe7911cd3f9e1b0e7 {
+    owner                   @0  :PublicKey;             # the public key of the owner
+    schemaData              @1  :Data;                  # the schema data
+                                                        # Changing this after key creation is not supported as it would change the dht key
+    signature               @2  :Signature;             # Schema data is signed by ownerKey and is verified both by set and get operations
+}
+
+
 struct OperationGetValueQ @0xf88a5b6da5eda5d0 {
-    key                     @0  :TypedKey;              # the location of the value
+    key                     @0  :TypedKey;              # DHT Key = Hash(ownerKeyKind) of: [ ownerKeyValue, schema ]
     subkey                  @1  :Subkey;                # the index of the subkey
-    wantSchema              @2  :Bool;                  # whether or not to include the schema for the key
+    wantDescriptor          @2  :Bool;                  # whether or not to include the descriptor for the key
 }
 
 
 struct OperationGetValueA @0xd896bb46f2e0249f {
     union {
-        data                @0  :ValueData;             # the value if successful
+        value               @0  :ValueDetail;           # the value if successful
         peers               @1  :List(PeerInfo);        # returned 'closer peer' information if not successful       
     }
 }
@@ -353,13 +361,13 @@ struct OperationGetValueA @0xd896bb46f2e0249f {
 struct OperationSetValueQ @0xbac06191ff8bdbc5 {         
     key                     @0  :TypedKey;              # DHT Key = Hash(ownerKeyKind) of: [ ownerKeyValue, schema ]
     subkey                  @1  :Subkey;                # the index of the subkey
-    value                   @2  :ValueData;             # value or subvalue contents (older or equal seq number gets dropped)
+    value                   @2  :ValueDetail;           # value or subvalue contents (older or equal seq number gets dropped)
 }
 
 struct OperationSetValueA @0x9378d0732dc95be2 {
     union {
         schemaError         @0  :Void;                  # Either the schema is not available at the node, or the data does not match the schema that is there
-        data                @1  :ValueData;             # the new value if successful, may be a different value than what was set if the seq number was lower or equal
+        value               @1  :ValueDetail;                 # the new value if successful, may be a different value than what was set if the seq number was lower or equal
         peers               @2  :List(PeerInfo);        # returned 'closer peer' information if this node is refusing to store the key
     }
 }
@@ -381,7 +389,7 @@ struct OperationValueChanged @0xd1c59ebdd8cc1bf6 {
     key                     @0  :TypedKey;              # key for value that changed
     subkeys                 @1  :List(SubkeyRange);     # subkey range that changed (up to 512 ranges at a time)
     count                   @2  :UInt32;                # remaining changes left (0 means watch has expired)
-    value                   @3  :ValueData;             # first value that changed (the rest can be gotten with getvalue)
+    value                   @3  :ValueDetail;           # first value that changed (the rest can be gotten with getvalue)
 }
 
 struct OperationSupplyBlockQ @0xadbf4c542d749971 {
diff --git a/veilid-core/src/crypto/mod.rs b/veilid-core/src/crypto/mod.rs
index ec32c677..f273562c 100644
--- a/veilid-core/src/crypto/mod.rs
+++ b/veilid-core/src/crypto/mod.rs
@@ -4,7 +4,6 @@ mod dh_cache;
 mod envelope;
 mod receipt;
 mod types;
-mod value;
 
 pub mod crypto_system;
 #[cfg(feature = "enable-crypto-none")]
@@ -20,7 +19,6 @@ pub use dh_cache::*;
 pub use envelope::*;
 pub use receipt::*;
 pub use types::*;
-pub use value::*;
 
 #[cfg(feature = "enable-crypto-none")]
 pub use none::*;
diff --git a/veilid-core/src/crypto/value.rs b/veilid-core/src/crypto/value.rs
deleted file mode 100644
index e69de29b..00000000
diff --git a/veilid-core/src/intf/native/system.rs b/veilid-core/src/intf/native/system.rs
index 5491bff4..9855c256 100644
--- a/veilid-core/src/intf/native/system.rs
+++ b/veilid-core/src/intf/native/system.rs
@@ -2,7 +2,7 @@
 
 use crate::*;
 
-pub async fn get_outbound_relay_peer() -> Option<crate::veilid_api::PeerInfo> {
+pub async fn get_outbound_relay_peer() -> Option<crate::routing_table::PeerInfo> {
     panic!("Native Veilid should never require an outbound relay");
 }
 
diff --git a/veilid-core/src/intf/wasm/system.rs b/veilid-core/src/intf/wasm/system.rs
index 95e4e544..de8e158a 100644
--- a/veilid-core/src/intf/wasm/system.rs
+++ b/veilid-core/src/intf/wasm/system.rs
@@ -2,7 +2,7 @@ use crate::*;
 
 //use js_sys::*;
 
-pub async fn get_outbound_relay_peer() -> Option<crate::veilid_api::PeerInfo> {
+pub async fn get_outbound_relay_peer() -> Option<crate::routing_table::PeerInfo> {
     // unimplemented!
     None
 }
diff --git a/veilid-core/src/network_manager/mod.rs b/veilid-core/src/network_manager/mod.rs
index a01b5bdd..d02bdea3 100644
--- a/veilid-core/src/network_manager/mod.rs
+++ b/veilid-core/src/network_manager/mod.rs
@@ -11,6 +11,7 @@ mod connection_manager;
 mod connection_table;
 mod network_connection;
 mod tasks;
+mod types;
 
 pub mod tests;
 
@@ -18,6 +19,7 @@ pub mod tests;
 
 pub use connection_manager::*;
 pub use network_connection::*;
+pub use types::*;
 
 ////////////////////////////////////////////////////////////////////////////////////////
 use connection_handle::*;
@@ -1552,7 +1554,7 @@ impl NetworkManager {
                         let peer_stats = nr.peer_stats();
                         let peer = PeerTableData {
                             node_ids: nr.node_ids().iter().map(|x| x.to_string()).collect(),
-                            peer_address: v.last_connection.remote(),
+                            peer_address: v.last_connection.remote().to_string(),
                             peer_stats,
                         };
                         out.push(peer);
diff --git a/veilid-core/src/network_manager/native/mod.rs b/veilid-core/src/network_manager/native/mod.rs
index c38f799b..319a68c5 100644
--- a/veilid-core/src/network_manager/native/mod.rs
+++ b/veilid-core/src/network_manager/native/mod.rs
@@ -645,7 +645,7 @@ impl Network {
                     log_net!(debug "enable address {:?} as ipv4", addr);
                     inner.enable_ipv4 = true;
                 } else if addr.is_ipv6() {
-                    let address = crate::Address::from_ip_addr(addr);
+                    let address = Address::from_ip_addr(addr);
                     if address.is_global() {
                         log_net!(debug "enable address {:?} as ipv6 global", address);
                         inner.enable_ipv6_global = true;
diff --git a/veilid-core/src/network_manager/tests/mod.rs b/veilid-core/src/network_manager/tests/mod.rs
index f0c7391d..64b2b67f 100644
--- a/veilid-core/src/network_manager/tests/mod.rs
+++ b/veilid-core/src/network_manager/tests/mod.rs
@@ -1,2 +1,4 @@
 pub mod test_connection_table;
+pub mod test_signed_node_info;
+
 use super::*;
diff --git a/veilid-core/src/network_manager/tests/test_signed_node_info.rs b/veilid-core/src/network_manager/tests/test_signed_node_info.rs
new file mode 100644
index 00000000..ff1db400
--- /dev/null
+++ b/veilid-core/src/network_manager/tests/test_signed_node_info.rs
@@ -0,0 +1,167 @@
+use super::*;
+use crate::tests::common::test_veilid_config::*;
+
+pub async fn test_signed_node_info() {
+    info!("--- test_signed_node_info ---");
+
+    let (update_callback, config_callback) = setup_veilid_core();
+    let api = api_startup(update_callback, config_callback)
+        .await
+        .expect("startup failed");
+
+    let crypto = api.crypto().unwrap();
+    for ck in VALID_CRYPTO_KINDS {
+        let vcrypto = crypto.get(ck).unwrap();
+
+        // Test direct
+        let node_info = NodeInfo {
+            network_class: NetworkClass::InboundCapable,
+            outbound_protocols: ProtocolTypeSet::all(),
+            address_types: AddressTypeSet::all(),
+            envelope_support: VALID_ENVELOPE_VERSIONS.to_vec(),
+            crypto_support: VALID_CRYPTO_KINDS.to_vec(),
+            dial_info_detail_list: vec![DialInfoDetail {
+                class: DialInfoClass::Mapped,
+                dial_info: DialInfo::udp(SocketAddress::default()),
+            }],
+        };
+
+        // Test correct validation
+        let keypair = vcrypto.generate_keypair();
+        let sni = SignedDirectNodeInfo::make_signatures(
+            crypto.clone(),
+            vec![TypedKeyPair::new(ck, keypair)],
+            node_info.clone(),
+        )
+        .unwrap();
+        let mut tks: TypedKeySet = TypedKey::new(ck, keypair.key).into();
+        let oldtkslen = tks.len();
+        let _ = SignedDirectNodeInfo::new(
+            crypto.clone(),
+            &mut tks,
+            node_info.clone(),
+            sni.timestamp,
+            sni.signatures.clone(),
+        )
+        .unwrap();
+        assert_eq!(tks.len(), oldtkslen);
+        assert_eq!(tks.len(), sni.signatures.len());
+
+        // Test incorrect validation
+        let keypair1 = vcrypto.generate_keypair();
+        let mut tks1: TypedKeySet = TypedKey::new(ck, keypair1.key).into();
+        let oldtks1len = tks1.len();
+        let _ = SignedDirectNodeInfo::new(
+            crypto.clone(),
+            &mut tks1,
+            node_info.clone(),
+            sni.timestamp,
+            sni.signatures.clone(),
+        )
+        .unwrap_err();
+        assert_eq!(tks1.len(), oldtks1len);
+        assert_eq!(tks1.len(), sni.signatures.len());
+
+        // Test unsupported cryptosystem validation
+        let fake_crypto_kind: CryptoKind = FourCC::from([0, 1, 2, 3]);
+        let mut tksfake: TypedKeySet = TypedKey::new(fake_crypto_kind, PublicKey::default()).into();
+        let mut sigsfake = sni.signatures.clone();
+        sigsfake.push(TypedSignature::new(fake_crypto_kind, Signature::default()));
+        tksfake.add(TypedKey::new(ck, keypair.key));
+        let sdnifake = SignedDirectNodeInfo::new(
+            crypto.clone(),
+            &mut tksfake,
+            node_info.clone(),
+            sni.timestamp,
+            sigsfake.clone(),
+        )
+        .unwrap();
+        assert_eq!(tksfake.len(), 1);
+        assert_eq!(sdnifake.signatures.len(), sigsfake.len());
+
+        // Test relayed
+        let node_info2 = NodeInfo {
+            network_class: NetworkClass::OutboundOnly,
+            outbound_protocols: ProtocolTypeSet::all(),
+            address_types: AddressTypeSet::all(),
+            envelope_support: VALID_ENVELOPE_VERSIONS.to_vec(),
+            crypto_support: VALID_CRYPTO_KINDS.to_vec(),
+            dial_info_detail_list: vec![DialInfoDetail {
+                class: DialInfoClass::Blocked,
+                dial_info: DialInfo::udp(SocketAddress::default()),
+            }],
+        };
+
+        // Test correct validation
+        let keypair2 = vcrypto.generate_keypair();
+        let mut tks2: TypedKeySet = TypedKey::new(ck, keypair2.key).into();
+        let oldtks2len = tks2.len();
+
+        let sni2 = SignedRelayedNodeInfo::make_signatures(
+            crypto.clone(),
+            vec![TypedKeyPair::new(ck, keypair2)],
+            node_info2.clone(),
+            tks.clone(),
+            sni.clone(),
+        )
+        .unwrap();
+        let _ = SignedRelayedNodeInfo::new(
+            crypto.clone(),
+            &mut tks2,
+            node_info2.clone(),
+            tks.clone(),
+            sni.clone(),
+            sni2.timestamp,
+            sni2.signatures.clone(),
+        )
+        .unwrap();
+
+        assert_eq!(tks2.len(), oldtks2len);
+        assert_eq!(tks2.len(), sni2.signatures.len());
+
+        // Test incorrect validation
+        let keypair3 = vcrypto.generate_keypair();
+        let mut tks3: TypedKeySet = TypedKey::new(ck, keypair3.key).into();
+        let oldtks3len = tks3.len();
+
+        let _ = SignedRelayedNodeInfo::new(
+            crypto.clone(),
+            &mut tks3,
+            node_info2.clone(),
+            tks.clone(),
+            sni.clone(),
+            sni2.timestamp,
+            sni2.signatures.clone(),
+        )
+        .unwrap_err();
+
+        assert_eq!(tks3.len(), oldtks3len);
+        assert_eq!(tks3.len(), sni2.signatures.len());
+
+        // Test unsupported cryptosystem validation
+        let fake_crypto_kind: CryptoKind = FourCC::from([0, 1, 2, 3]);
+        let mut tksfake3: TypedKeySet =
+            TypedKey::new(fake_crypto_kind, PublicKey::default()).into();
+        let mut sigsfake3 = sni2.signatures.clone();
+        sigsfake3.push(TypedSignature::new(fake_crypto_kind, Signature::default()));
+        tksfake3.add(TypedKey::new(ck, keypair2.key));
+        let srnifake = SignedRelayedNodeInfo::new(
+            crypto.clone(),
+            &mut tksfake3,
+            node_info2.clone(),
+            tks.clone(),
+            sni.clone(),
+            sni2.timestamp,
+            sigsfake3.clone(),
+        )
+        .unwrap();
+        assert_eq!(tksfake3.len(), 1);
+        assert_eq!(srnifake.signatures.len(), sigsfake3.len());
+    }
+
+    api.shutdown().await;
+}
+
+pub async fn test_all() {
+    test_signed_node_info().await;
+}
diff --git a/veilid-core/src/network_manager/types/address.rs b/veilid-core/src/network_manager/types/address.rs
new file mode 100644
index 00000000..c343c8da
--- /dev/null
+++ b/veilid-core/src/network_manager/types/address.rs
@@ -0,0 +1,130 @@
+use super::*;
+
+#[derive(
+    Copy,
+    Clone,
+    Debug,
+    PartialEq,
+    PartialOrd,
+    Ord,
+    Eq,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum Address {
+    IPV4(Ipv4Addr),
+    IPV6(Ipv6Addr),
+}
+
+impl Default for Address {
+    fn default() -> Self {
+        Address::IPV4(Ipv4Addr::new(0, 0, 0, 0))
+    }
+}
+
+impl Address {
+    pub fn from_socket_addr(sa: SocketAddr) -> Address {
+        match sa {
+            SocketAddr::V4(v4) => Address::IPV4(*v4.ip()),
+            SocketAddr::V6(v6) => Address::IPV6(*v6.ip()),
+        }
+    }
+    pub fn from_ip_addr(addr: IpAddr) -> Address {
+        match addr {
+            IpAddr::V4(v4) => Address::IPV4(v4),
+            IpAddr::V6(v6) => Address::IPV6(v6),
+        }
+    }
+    pub fn address_type(&self) -> AddressType {
+        match self {
+            Address::IPV4(_) => AddressType::IPV4,
+            Address::IPV6(_) => AddressType::IPV6,
+        }
+    }
+    pub fn address_string(&self) -> String {
+        match self {
+            Address::IPV4(v4) => v4.to_string(),
+            Address::IPV6(v6) => v6.to_string(),
+        }
+    }
+    pub fn address_string_with_port(&self, port: u16) -> String {
+        match self {
+            Address::IPV4(v4) => format!("{}:{}", v4, port),
+            Address::IPV6(v6) => format!("[{}]:{}", v6, port),
+        }
+    }
+    pub fn is_unspecified(&self) -> bool {
+        match self {
+            Address::IPV4(v4) => ipv4addr_is_unspecified(v4),
+            Address::IPV6(v6) => ipv6addr_is_unspecified(v6),
+        }
+    }
+    pub fn is_global(&self) -> bool {
+        match self {
+            Address::IPV4(v4) => ipv4addr_is_global(v4) && !ipv4addr_is_multicast(v4),
+            Address::IPV6(v6) => ipv6addr_is_unicast_global(v6),
+        }
+    }
+    pub fn is_local(&self) -> bool {
+        match self {
+            Address::IPV4(v4) => {
+                ipv4addr_is_private(v4)
+                    || ipv4addr_is_link_local(v4)
+                    || ipv4addr_is_ietf_protocol_assignment(v4)
+            }
+            Address::IPV6(v6) => {
+                ipv6addr_is_unicast_site_local(v6)
+                    || ipv6addr_is_unicast_link_local(v6)
+                    || ipv6addr_is_unique_local(v6)
+            }
+        }
+    }
+    pub fn to_ip_addr(&self) -> IpAddr {
+        match self {
+            Self::IPV4(a) => IpAddr::V4(*a),
+            Self::IPV6(a) => IpAddr::V6(*a),
+        }
+    }
+    pub fn to_socket_addr(&self, port: u16) -> SocketAddr {
+        SocketAddr::new(self.to_ip_addr(), port)
+    }
+    pub fn to_canonical(&self) -> Address {
+        match self {
+            Address::IPV4(v4) => Address::IPV4(*v4),
+            Address::IPV6(v6) => match v6.to_ipv4() {
+                Some(v4) => Address::IPV4(v4),
+                None => Address::IPV6(*v6),
+            },
+        }
+    }
+}
+
+impl fmt::Display for Address {
+    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
+        match self {
+            Address::IPV4(v4) => write!(f, "{}", v4),
+            Address::IPV6(v6) => write!(f, "{}", v6),
+        }
+    }
+}
+
+impl FromStr for Address {
+    type Err = VeilidAPIError;
+    fn from_str(host: &str) -> Result<Address, VeilidAPIError> {
+        if let Ok(addr) = Ipv4Addr::from_str(host) {
+            Ok(Address::IPV4(addr))
+        } else if let Ok(addr) = Ipv6Addr::from_str(host) {
+            Ok(Address::IPV6(addr))
+        } else {
+            Err(VeilidAPIError::parse_error(
+                "Address::from_str failed",
+                host,
+            ))
+        }
+    }
+}
diff --git a/veilid-core/src/network_manager/types/address_type.rs b/veilid-core/src/network_manager/types/address_type.rs
new file mode 100644
index 00000000..5193654e
--- /dev/null
+++ b/veilid-core/src/network_manager/types/address_type.rs
@@ -0,0 +1,22 @@
+use super::*;
+
+#[allow(clippy::derive_hash_xor_eq)]
+#[derive(
+    Debug,
+    PartialOrd,
+    Ord,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+    EnumSetType,
+)]
+#[enumset(repr = "u8")]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum AddressType {
+    IPV4,
+    IPV6,
+}
+pub type AddressTypeSet = EnumSet<AddressType>;
diff --git a/veilid-core/src/network_manager/types/connection_descriptor.rs b/veilid-core/src/network_manager/types/connection_descriptor.rs
new file mode 100644
index 00000000..1046838f
--- /dev/null
+++ b/veilid-core/src/network_manager/types/connection_descriptor.rs
@@ -0,0 +1,80 @@
+use super::*;
+
+/// Represents the 5-tuple of an established connection
+/// Not used to specify connections to create, that is reserved for DialInfo
+///
+/// ConnectionDescriptors should never be from unspecified local addresses for connection oriented protocols
+/// If the medium does not allow local addresses, None should have been used or 'new_no_local'
+/// If we are specifying only a port, then the socket's 'local_address()' should have been used, since an
+/// established connection is always from a real address to another real address.
+#[derive(
+    Copy,
+    Clone,
+    Debug,
+    PartialEq,
+    Eq,
+    PartialOrd,
+    Ord,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct ConnectionDescriptor {
+    remote: PeerAddress,
+    local: Option<SocketAddress>,
+}
+
+impl ConnectionDescriptor {
+    pub fn new(remote: PeerAddress, local: SocketAddress) -> Self {
+        assert!(
+            !remote.protocol_type().is_connection_oriented() || !local.address().is_unspecified()
+        );
+
+        Self {
+            remote,
+            local: Some(local),
+        }
+    }
+    pub fn new_no_local(remote: PeerAddress) -> Self {
+        Self {
+            remote,
+            local: None,
+        }
+    }
+    pub fn remote(&self) -> PeerAddress {
+        self.remote
+    }
+    pub fn remote_address(&self) -> &SocketAddress {
+        self.remote.socket_address()
+    }
+    pub fn local(&self) -> Option<SocketAddress> {
+        self.local
+    }
+    pub fn protocol_type(&self) -> ProtocolType {
+        self.remote.protocol_type()
+    }
+    pub fn address_type(&self) -> AddressType {
+        self.remote.address_type()
+    }
+    pub fn make_dial_info_filter(&self) -> DialInfoFilter {
+        DialInfoFilter::all()
+            .with_protocol_type(self.protocol_type())
+            .with_address_type(self.address_type())
+    }
+}
+
+impl MatchesDialInfoFilter for ConnectionDescriptor {
+    fn matches_filter(&self, filter: &DialInfoFilter) -> bool {
+        if !filter.protocol_type_set.contains(self.protocol_type()) {
+            return false;
+        }
+        if !filter.address_type_set.contains(self.address_type()) {
+            return false;
+        }
+        true
+    }
+}
diff --git a/veilid-core/src/network_manager/types/dial_info/mod.rs b/veilid-core/src/network_manager/types/dial_info/mod.rs
new file mode 100644
index 00000000..4d6a8428
--- /dev/null
+++ b/veilid-core/src/network_manager/types/dial_info/mod.rs
@@ -0,0 +1,522 @@
+mod tcp;
+mod udp;
+mod ws;
+mod wss;
+
+use super::*;
+
+pub use tcp::*;
+pub use udp::*;
+pub use ws::*;
+pub use wss::*;
+
+// Keep member order appropriate for sorting < preference
+// Must match ProtocolType order
+#[derive(
+    Clone,
+    Debug,
+    PartialEq,
+    PartialOrd,
+    Ord,
+    Eq,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+#[serde(tag = "kind")]
+pub enum DialInfo {
+    UDP(DialInfoUDP),
+    TCP(DialInfoTCP),
+    WS(DialInfoWS),
+    WSS(DialInfoWSS),
+}
+impl Default for DialInfo {
+    fn default() -> Self {
+        DialInfo::UDP(DialInfoUDP::default())
+    }
+}
+
+impl fmt::Display for DialInfo {
+    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> Result<(), fmt::Error> {
+        match self {
+            DialInfo::UDP(di) => write!(f, "udp|{}", di.socket_address),
+            DialInfo::TCP(di) => write!(f, "tcp|{}", di.socket_address),
+            DialInfo::WS(di) => {
+                let url = format!("ws://{}", di.request);
+                let split_url = SplitUrl::from_str(&url).unwrap();
+                match split_url.host {
+                    SplitUrlHost::Hostname(_) => {
+                        write!(f, "ws|{}|{}", di.socket_address.to_ip_addr(), di.request)
+                    }
+                    SplitUrlHost::IpAddr(a) => {
+                        if di.socket_address.to_ip_addr() == a {
+                            write!(f, "ws|{}", di.request)
+                        } else {
+                            panic!("resolved address does not match url: {}", di.request);
+                        }
+                    }
+                }
+            }
+            DialInfo::WSS(di) => {
+                let url = format!("wss://{}", di.request);
+                let split_url = SplitUrl::from_str(&url).unwrap();
+                match split_url.host {
+                    SplitUrlHost::Hostname(_) => {
+                        write!(f, "wss|{}|{}", di.socket_address.to_ip_addr(), di.request)
+                    }
+                    SplitUrlHost::IpAddr(_) => {
+                        panic!(
+                            "secure websockets can not use ip address in request: {}",
+                            di.request
+                        );
+                    }
+                }
+            }
+        }
+    }
+}
+
+impl FromStr for DialInfo {
+    type Err = VeilidAPIError;
+    fn from_str(s: &str) -> Result<DialInfo, VeilidAPIError> {
+        let (proto, rest) = s.split_once('|').ok_or_else(|| {
+            VeilidAPIError::parse_error("DialInfo::from_str missing protocol '|' separator", s)
+        })?;
+        match proto {
+            "udp" => {
+                let socket_address = SocketAddress::from_str(rest)?;
+                Ok(DialInfo::udp(socket_address))
+            }
+            "tcp" => {
+                let socket_address = SocketAddress::from_str(rest)?;
+                Ok(DialInfo::tcp(socket_address))
+            }
+            "ws" => {
+                let url = format!("ws://{}", rest);
+                let split_url = SplitUrl::from_str(&url).map_err(|e| {
+                    VeilidAPIError::parse_error(format!("unable to split WS url: {}", e), &url)
+                })?;
+                if split_url.scheme != "ws" || !url.starts_with("ws://") {
+                    apibail_parse_error!("incorrect scheme for WS dialinfo", url);
+                }
+                let url_port = split_url.port.unwrap_or(80u16);
+
+                match rest.split_once('|') {
+                    Some((sa, rest)) => {
+                        let address = Address::from_str(sa)?;
+
+                        DialInfo::try_ws(
+                            SocketAddress::new(address, url_port),
+                            format!("ws://{}", rest),
+                        )
+                    }
+                    None => {
+                        let address = Address::from_str(&split_url.host.to_string())?;
+                        DialInfo::try_ws(
+                            SocketAddress::new(address, url_port),
+                            format!("ws://{}", rest),
+                        )
+                    }
+                }
+            }
+            "wss" => {
+                let url = format!("wss://{}", rest);
+                let split_url = SplitUrl::from_str(&url).map_err(|e| {
+                    VeilidAPIError::parse_error(format!("unable to split WSS url: {}", e), &url)
+                })?;
+                if split_url.scheme != "wss" || !url.starts_with("wss://") {
+                    apibail_parse_error!("incorrect scheme for WSS dialinfo", url);
+                }
+                let url_port = split_url.port.unwrap_or(443u16);
+
+                let (a, rest) = rest.split_once('|').ok_or_else(|| {
+                    VeilidAPIError::parse_error(
+                        "DialInfo::from_str missing socket address '|' separator",
+                        s,
+                    )
+                })?;
+
+                let address = Address::from_str(a)?;
+                DialInfo::try_wss(
+                    SocketAddress::new(address, url_port),
+                    format!("wss://{}", rest),
+                )
+            }
+            _ => Err(VeilidAPIError::parse_error(
+                "DialInfo::from_str has invalid scheme",
+                s,
+            )),
+        }
+    }
+}
+
+impl DialInfo {
+    pub fn udp_from_socketaddr(socket_addr: SocketAddr) -> Self {
+        Self::UDP(DialInfoUDP {
+            socket_address: SocketAddress::from_socket_addr(socket_addr).to_canonical(),
+        })
+    }
+    pub fn tcp_from_socketaddr(socket_addr: SocketAddr) -> Self {
+        Self::TCP(DialInfoTCP {
+            socket_address: SocketAddress::from_socket_addr(socket_addr).to_canonical(),
+        })
+    }
+    pub fn udp(socket_address: SocketAddress) -> Self {
+        Self::UDP(DialInfoUDP {
+            socket_address: socket_address.to_canonical(),
+        })
+    }
+    pub fn tcp(socket_address: SocketAddress) -> Self {
+        Self::TCP(DialInfoTCP {
+            socket_address: socket_address.to_canonical(),
+        })
+    }
+    pub fn try_ws(socket_address: SocketAddress, url: String) -> Result<Self, VeilidAPIError> {
+        let split_url = SplitUrl::from_str(&url).map_err(|e| {
+            VeilidAPIError::parse_error(format!("unable to split WS url: {}", e), &url)
+        })?;
+        if split_url.scheme != "ws" || !url.starts_with("ws://") {
+            apibail_parse_error!("incorrect scheme for WS dialinfo", url);
+        }
+        let url_port = split_url.port.unwrap_or(80u16);
+        if url_port != socket_address.port() {
+            apibail_parse_error!("socket address port doesn't match url port", url);
+        }
+        if let SplitUrlHost::IpAddr(a) = split_url.host {
+            if socket_address.to_ip_addr() != a {
+                apibail_parse_error!(
+                    format!("request address does not match socket address: {}", a),
+                    socket_address
+                );
+            }
+        }
+        Ok(Self::WS(DialInfoWS {
+            socket_address: socket_address.to_canonical(),
+            request: url[5..].to_string(),
+        }))
+    }
+    pub fn try_wss(socket_address: SocketAddress, url: String) -> Result<Self, VeilidAPIError> {
+        let split_url = SplitUrl::from_str(&url).map_err(|e| {
+            VeilidAPIError::parse_error(format!("unable to split WSS url: {}", e), &url)
+        })?;
+        if split_url.scheme != "wss" || !url.starts_with("wss://") {
+            apibail_parse_error!("incorrect scheme for WSS dialinfo", url);
+        }
+        let url_port = split_url.port.unwrap_or(443u16);
+        if url_port != socket_address.port() {
+            apibail_parse_error!("socket address port doesn't match url port", url);
+        }
+        if !matches!(split_url.host, SplitUrlHost::Hostname(_)) {
+            apibail_parse_error!(
+                "WSS url can not use address format, only hostname format",
+                url
+            );
+        }
+        Ok(Self::WSS(DialInfoWSS {
+            socket_address: socket_address.to_canonical(),
+            request: url[6..].to_string(),
+        }))
+    }
+    pub fn protocol_type(&self) -> ProtocolType {
+        match self {
+            Self::UDP(_) => ProtocolType::UDP,
+            Self::TCP(_) => ProtocolType::TCP,
+            Self::WS(_) => ProtocolType::WS,
+            Self::WSS(_) => ProtocolType::WSS,
+        }
+    }
+    pub fn address_type(&self) -> AddressType {
+        self.socket_address().address_type()
+    }
+    pub fn address(&self) -> Address {
+        match self {
+            Self::UDP(di) => di.socket_address.address(),
+            Self::TCP(di) => di.socket_address.address(),
+            Self::WS(di) => di.socket_address.address(),
+            Self::WSS(di) => di.socket_address.address(),
+        }
+    }
+    pub fn set_address(&mut self, address: Address) {
+        match self {
+            Self::UDP(di) => di.socket_address.set_address(address),
+            Self::TCP(di) => di.socket_address.set_address(address),
+            Self::WS(di) => di.socket_address.set_address(address),
+            Self::WSS(di) => di.socket_address.set_address(address),
+        }
+    }
+    pub fn socket_address(&self) -> SocketAddress {
+        match self {
+            Self::UDP(di) => di.socket_address,
+            Self::TCP(di) => di.socket_address,
+            Self::WS(di) => di.socket_address,
+            Self::WSS(di) => di.socket_address,
+        }
+    }
+    pub fn to_ip_addr(&self) -> IpAddr {
+        match self {
+            Self::UDP(di) => di.socket_address.to_ip_addr(),
+            Self::TCP(di) => di.socket_address.to_ip_addr(),
+            Self::WS(di) => di.socket_address.to_ip_addr(),
+            Self::WSS(di) => di.socket_address.to_ip_addr(),
+        }
+    }
+    pub fn port(&self) -> u16 {
+        match self {
+            Self::UDP(di) => di.socket_address.port(),
+            Self::TCP(di) => di.socket_address.port(),
+            Self::WS(di) => di.socket_address.port(),
+            Self::WSS(di) => di.socket_address.port(),
+        }
+    }
+    pub fn set_port(&mut self, port: u16) {
+        match self {
+            Self::UDP(di) => di.socket_address.set_port(port),
+            Self::TCP(di) => di.socket_address.set_port(port),
+            Self::WS(di) => di.socket_address.set_port(port),
+            Self::WSS(di) => di.socket_address.set_port(port),
+        }
+    }
+    pub fn to_socket_addr(&self) -> SocketAddr {
+        match self {
+            Self::UDP(di) => di.socket_address.to_socket_addr(),
+            Self::TCP(di) => di.socket_address.to_socket_addr(),
+            Self::WS(di) => di.socket_address.to_socket_addr(),
+            Self::WSS(di) => di.socket_address.to_socket_addr(),
+        }
+    }
+    pub fn to_peer_address(&self) -> PeerAddress {
+        match self {
+            Self::UDP(di) => PeerAddress::new(di.socket_address, ProtocolType::UDP),
+            Self::TCP(di) => PeerAddress::new(di.socket_address, ProtocolType::TCP),
+            Self::WS(di) => PeerAddress::new(di.socket_address, ProtocolType::WS),
+            Self::WSS(di) => PeerAddress::new(di.socket_address, ProtocolType::WSS),
+        }
+    }
+    pub fn request(&self) -> Option<String> {
+        match self {
+            Self::UDP(_) => None,
+            Self::TCP(_) => None,
+            Self::WS(di) => Some(format!("ws://{}", di.request)),
+            Self::WSS(di) => Some(format!("wss://{}", di.request)),
+        }
+    }
+    pub fn is_valid(&self) -> bool {
+        let socket_address = self.socket_address();
+        let address = socket_address.address();
+        let port = socket_address.port();
+        (address.is_global() || address.is_local()) && port > 0
+    }
+
+    pub fn make_filter(&self) -> DialInfoFilter {
+        DialInfoFilter {
+            protocol_type_set: ProtocolTypeSet::only(self.protocol_type()),
+            address_type_set: AddressTypeSet::only(self.address_type()),
+        }
+    }
+
+    pub fn try_vec_from_short<S: AsRef<str>, H: AsRef<str>>(
+        short: S,
+        hostname: H,
+    ) -> Result<Vec<Self>, VeilidAPIError> {
+        let short = short.as_ref();
+        let hostname = hostname.as_ref();
+
+        if short.len() < 2 {
+            apibail_parse_error!("invalid short url length", short);
+        }
+        let url = match &short[0..1] {
+            "U" => {
+                format!("udp://{}:{}", hostname, &short[1..])
+            }
+            "T" => {
+                format!("tcp://{}:{}", hostname, &short[1..])
+            }
+            "W" => {
+                format!("ws://{}:{}", hostname, &short[1..])
+            }
+            "S" => {
+                format!("wss://{}:{}", hostname, &short[1..])
+            }
+            _ => {
+                apibail_parse_error!("invalid short url type", short);
+            }
+        };
+        Self::try_vec_from_url(url)
+    }
+
+    pub fn try_vec_from_url<S: AsRef<str>>(url: S) -> Result<Vec<Self>, VeilidAPIError> {
+        let url = url.as_ref();
+        let split_url = SplitUrl::from_str(url)
+            .map_err(|e| VeilidAPIError::parse_error(format!("unable to split url: {}", e), url))?;
+
+        let port = match split_url.scheme.as_str() {
+            "udp" | "tcp" => split_url
+                .port
+                .ok_or_else(|| VeilidAPIError::parse_error("Missing port in udp url", url))?,
+            "ws" => split_url.port.unwrap_or(80u16),
+            "wss" => split_url.port.unwrap_or(443u16),
+            _ => {
+                apibail_parse_error!("Invalid dial info url scheme", split_url.scheme);
+            }
+        };
+
+        let socket_addrs = {
+            // Resolve if possible, WASM doesn't support resolution and doesn't need it to connect to the dialinfo
+            // This will not be used on signed dialinfo, only for bootstrapping, so we don't need to worry about
+            // the '0.0.0.0' address being propagated across the routing table
+            cfg_if::cfg_if! {
+                if #[cfg(target_arch = "wasm32")] {
+                    vec![SocketAddr::new(IpAddr::V4(Ipv4Addr::new(0,0,0,0)), port)]
+                } else {
+                    match split_url.host {
+                        SplitUrlHost::Hostname(_) => split_url
+                            .host_port(port)
+                            .to_socket_addrs()
+                            .map_err(|_| VeilidAPIError::parse_error("couldn't resolve hostname in url", url))?
+                            .collect(),
+                        SplitUrlHost::IpAddr(a) => vec![SocketAddr::new(a, port)],
+                    }
+                }
+            }
+        };
+
+        let mut out = Vec::new();
+        for sa in socket_addrs {
+            out.push(match split_url.scheme.as_str() {
+                "udp" => Self::udp_from_socketaddr(sa),
+                "tcp" => Self::tcp_from_socketaddr(sa),
+                "ws" => Self::try_ws(
+                    SocketAddress::from_socket_addr(sa).to_canonical(),
+                    url.to_string(),
+                )?,
+                "wss" => Self::try_wss(
+                    SocketAddress::from_socket_addr(sa).to_canonical(),
+                    url.to_string(),
+                )?,
+                _ => {
+                    unreachable!("Invalid dial info url scheme")
+                }
+            });
+        }
+        Ok(out)
+    }
+
+    pub async fn to_short(&self) -> (String, String) {
+        match self {
+            DialInfo::UDP(di) => (
+                format!("U{}", di.socket_address.port()),
+                intf::ptr_lookup(di.socket_address.to_ip_addr())
+                    .await
+                    .unwrap_or_else(|_| di.socket_address.to_string()),
+            ),
+            DialInfo::TCP(di) => (
+                format!("T{}", di.socket_address.port()),
+                intf::ptr_lookup(di.socket_address.to_ip_addr())
+                    .await
+                    .unwrap_or_else(|_| di.socket_address.to_string()),
+            ),
+            DialInfo::WS(di) => {
+                let mut split_url = SplitUrl::from_str(&format!("ws://{}", di.request)).unwrap();
+                if let SplitUrlHost::IpAddr(a) = split_url.host {
+                    if let Ok(host) = intf::ptr_lookup(a).await {
+                        split_url.host = SplitUrlHost::Hostname(host);
+                    }
+                }
+                (
+                    format!(
+                        "W{}{}",
+                        split_url.port.unwrap_or(80),
+                        split_url
+                            .path
+                            .map(|p| format!("/{}", p))
+                            .unwrap_or_default()
+                    ),
+                    split_url.host.to_string(),
+                )
+            }
+            DialInfo::WSS(di) => {
+                let mut split_url = SplitUrl::from_str(&format!("wss://{}", di.request)).unwrap();
+                if let SplitUrlHost::IpAddr(a) = split_url.host {
+                    if let Ok(host) = intf::ptr_lookup(a).await {
+                        split_url.host = SplitUrlHost::Hostname(host);
+                    }
+                }
+                (
+                    format!(
+                        "S{}{}",
+                        split_url.port.unwrap_or(443),
+                        split_url
+                            .path
+                            .map(|p| format!("/{}", p))
+                            .unwrap_or_default()
+                    ),
+                    split_url.host.to_string(),
+                )
+            }
+        }
+    }
+    pub async fn to_url(&self) -> String {
+        match self {
+            DialInfo::UDP(di) => intf::ptr_lookup(di.socket_address.to_ip_addr())
+                .await
+                .map(|h| format!("udp://{}:{}", h, di.socket_address.port()))
+                .unwrap_or_else(|_| format!("udp://{}", di.socket_address)),
+            DialInfo::TCP(di) => intf::ptr_lookup(di.socket_address.to_ip_addr())
+                .await
+                .map(|h| format!("tcp://{}:{}", h, di.socket_address.port()))
+                .unwrap_or_else(|_| format!("tcp://{}", di.socket_address)),
+            DialInfo::WS(di) => {
+                let mut split_url = SplitUrl::from_str(&format!("ws://{}", di.request)).unwrap();
+                if let SplitUrlHost::IpAddr(a) = split_url.host {
+                    if let Ok(host) = intf::ptr_lookup(a).await {
+                        split_url.host = SplitUrlHost::Hostname(host);
+                    }
+                }
+                split_url.to_string()
+            }
+            DialInfo::WSS(di) => {
+                let mut split_url = SplitUrl::from_str(&format!("wss://{}", di.request)).unwrap();
+                if let SplitUrlHost::IpAddr(a) = split_url.host {
+                    if let Ok(host) = intf::ptr_lookup(a).await {
+                        split_url.host = SplitUrlHost::Hostname(host);
+                    }
+                }
+                split_url.to_string()
+            }
+        }
+    }
+
+    pub fn ordered_sequencing_sort(a: &DialInfo, b: &DialInfo) -> core::cmp::Ordering {
+        let ca = a.protocol_type().sort_order(Sequencing::EnsureOrdered);
+        let cb = b.protocol_type().sort_order(Sequencing::EnsureOrdered);
+        if ca < cb {
+            return core::cmp::Ordering::Less;
+        }
+        if ca > cb {
+            return core::cmp::Ordering::Greater;
+        }
+        match (a, b) {
+            (DialInfo::UDP(a), DialInfo::UDP(b)) => a.cmp(b),
+            (DialInfo::TCP(a), DialInfo::TCP(b)) => a.cmp(b),
+            (DialInfo::WS(a), DialInfo::WS(b)) => a.cmp(b),
+            (DialInfo::WSS(a), DialInfo::WSS(b)) => a.cmp(b),
+            _ => unreachable!(),
+        }
+    }
+}
+
+impl MatchesDialInfoFilter for DialInfo {
+    fn matches_filter(&self, filter: &DialInfoFilter) -> bool {
+        if !filter.protocol_type_set.contains(self.protocol_type()) {
+            return false;
+        }
+        if !filter.address_type_set.contains(self.address_type()) {
+            return false;
+        }
+        true
+    }
+}
diff --git a/veilid-core/src/network_manager/types/dial_info/tcp.rs b/veilid-core/src/network_manager/types/dial_info/tcp.rs
new file mode 100644
index 00000000..0f93273d
--- /dev/null
+++ b/veilid-core/src/network_manager/types/dial_info/tcp.rs
@@ -0,0 +1,21 @@
+use super::*;
+
+#[derive(
+    Clone,
+    Default,
+    Debug,
+    PartialEq,
+    PartialOrd,
+    Ord,
+    Eq,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct DialInfoTCP {
+    pub socket_address: SocketAddress,
+}
\ No newline at end of file
diff --git a/veilid-core/src/network_manager/types/dial_info/udp.rs b/veilid-core/src/network_manager/types/dial_info/udp.rs
new file mode 100644
index 00000000..d799e116
--- /dev/null
+++ b/veilid-core/src/network_manager/types/dial_info/udp.rs
@@ -0,0 +1,21 @@
+use super::*;
+
+#[derive(
+    Clone,
+    Default,
+    Debug,
+    PartialEq,
+    PartialOrd,
+    Ord,
+    Eq,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct DialInfoUDP {
+    pub socket_address: SocketAddress,
+}
diff --git a/veilid-core/src/network_manager/types/dial_info/ws.rs b/veilid-core/src/network_manager/types/dial_info/ws.rs
new file mode 100644
index 00000000..18e2a37c
--- /dev/null
+++ b/veilid-core/src/network_manager/types/dial_info/ws.rs
@@ -0,0 +1,22 @@
+use super::*;
+
+#[derive(
+    Clone,
+    Default,
+    Debug,
+    PartialEq,
+    PartialOrd,
+    Ord,
+    Eq,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct DialInfoWS {
+    pub socket_address: SocketAddress,
+    pub request: String,
+}
\ No newline at end of file
diff --git a/veilid-core/src/network_manager/types/dial_info/wss.rs b/veilid-core/src/network_manager/types/dial_info/wss.rs
new file mode 100644
index 00000000..e999430d
--- /dev/null
+++ b/veilid-core/src/network_manager/types/dial_info/wss.rs
@@ -0,0 +1,22 @@
+use super::*;
+
+#[derive(
+    Clone,
+    Default,
+    Debug,
+    PartialEq,
+    PartialOrd,
+    Ord,
+    Eq,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct DialInfoWSS {
+    pub socket_address: SocketAddress,
+    pub request: String,
+}
diff --git a/veilid-core/src/network_manager/types/dial_info_class.rs b/veilid-core/src/network_manager/types/dial_info_class.rs
new file mode 100644
index 00000000..f3f91376
--- /dev/null
+++ b/veilid-core/src/network_manager/types/dial_info_class.rs
@@ -0,0 +1,50 @@
+use super::*;
+
+// Keep member order appropriate for sorting < preference
+#[derive(
+    Copy,
+    Clone,
+    Debug,
+    Eq,
+    PartialEq,
+    Ord,
+    PartialOrd,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum DialInfoClass {
+    Direct = 0, // D = Directly reachable with public IP and no firewall, with statically configured port
+    Mapped = 1, // M = Directly reachable with via portmap behind any NAT or firewalled with dynamically negotiated port
+    FullConeNAT = 2, // F = Directly reachable device without portmap behind full-cone NAT
+    Blocked = 3, // B = Inbound blocked at firewall but may hole punch with public address
+    AddressRestrictedNAT = 4, // A = Device without portmap behind address-only restricted NAT
+    PortRestrictedNAT = 5, // P = Device without portmap behind address-and-port restricted NAT
+}
+
+impl DialInfoClass {
+    // Is a signal required to do an inbound hole-punch?
+    pub fn requires_signal(&self) -> bool {
+        matches!(
+            self,
+            Self::Blocked | Self::AddressRestrictedNAT | Self::PortRestrictedNAT
+        )
+    }
+
+    // Does a relay node need to be allocated for this dial info?
+    // For full cone NAT, the relay itself may not be used but the keepalive sent to it
+    // is required to keep the NAT mapping valid in the router state table
+    pub fn requires_relay(&self) -> bool {
+        matches!(
+            self,
+            Self::FullConeNAT
+                | Self::Blocked
+                | Self::AddressRestrictedNAT
+                | Self::PortRestrictedNAT
+        )
+    }
+}
diff --git a/veilid-core/src/network_manager/types/dial_info_filter.rs b/veilid-core/src/network_manager/types/dial_info_filter.rs
new file mode 100644
index 00000000..c3635957
--- /dev/null
+++ b/veilid-core/src/network_manager/types/dial_info_filter.rs
@@ -0,0 +1,86 @@
+use super::*;
+
+#[derive(
+    Copy,
+    Clone,
+    PartialEq,
+    Eq,
+    PartialOrd,
+    Ord,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct DialInfoFilter {
+    #[with(RkyvEnumSet)]
+    pub protocol_type_set: ProtocolTypeSet,
+    #[with(RkyvEnumSet)]
+    pub address_type_set: AddressTypeSet,
+}
+
+impl Default for DialInfoFilter {
+    fn default() -> Self {
+        Self {
+            protocol_type_set: ProtocolTypeSet::all(),
+            address_type_set: AddressTypeSet::all(),
+        }
+    }
+}
+
+impl DialInfoFilter {
+    pub fn all() -> Self {
+        Self {
+            protocol_type_set: ProtocolTypeSet::all(),
+            address_type_set: AddressTypeSet::all(),
+        }
+    }
+    pub fn with_protocol_type(mut self, protocol_type: ProtocolType) -> Self {
+        self.protocol_type_set = ProtocolTypeSet::only(protocol_type);
+        self
+    }
+    pub fn with_protocol_type_set(mut self, protocol_set: ProtocolTypeSet) -> Self {
+        self.protocol_type_set = protocol_set;
+        self
+    }
+    pub fn with_address_type(mut self, address_type: AddressType) -> Self {
+        self.address_type_set = AddressTypeSet::only(address_type);
+        self
+    }
+    pub fn with_address_type_set(mut self, address_set: AddressTypeSet) -> Self {
+        self.address_type_set = address_set;
+        self
+    }
+    pub fn filtered(mut self, other_dif: &DialInfoFilter) -> Self {
+        self.protocol_type_set &= other_dif.protocol_type_set;
+        self.address_type_set &= other_dif.address_type_set;
+        self
+    }
+    pub fn is_dead(&self) -> bool {
+        self.protocol_type_set.is_empty() || self.address_type_set.is_empty()
+    }
+}
+
+impl fmt::Debug for DialInfoFilter {
+    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> Result<(), fmt::Error> {
+        let mut out = String::new();
+        if self.protocol_type_set != ProtocolTypeSet::all() {
+            out += &format!("+{:?}", self.protocol_type_set);
+        } else {
+            out += "*";
+        }
+        if self.address_type_set != AddressTypeSet::all() {
+            out += &format!("+{:?}", self.address_type_set);
+        } else {
+            out += "*";
+        }
+        write!(f, "[{}]", out)
+    }
+}
+
+pub trait MatchesDialInfoFilter {
+    fn matches_filter(&self, filter: &DialInfoFilter) -> bool;
+}
+
diff --git a/veilid-core/src/network_manager/types/low_level_protocol_type.rs b/veilid-core/src/network_manager/types/low_level_protocol_type.rs
new file mode 100644
index 00000000..3ae2df7b
--- /dev/null
+++ b/veilid-core/src/network_manager/types/low_level_protocol_type.rs
@@ -0,0 +1,31 @@
+use super::*;
+
+// Keep member order appropriate for sorting < preference
+// Must match DialInfo order
+#[allow(clippy::derive_hash_xor_eq)]
+#[derive(
+    Debug,
+    PartialOrd,
+    Ord,
+    Hash,
+    EnumSetType,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[enumset(repr = "u8")]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum LowLevelProtocolType {
+    UDP,
+    TCP,
+}
+
+impl LowLevelProtocolType {
+    pub fn is_connection_oriented(&self) -> bool {
+        matches!(self, LowLevelProtocolType::TCP)
+    }
+}
+pub type LowLevelProtocolTypeSet = EnumSet<LowLevelProtocolType>;
+
diff --git a/veilid-core/src/network_manager/types/mod.rs b/veilid-core/src/network_manager/types/mod.rs
new file mode 100644
index 00000000..e5b494f8
--- /dev/null
+++ b/veilid-core/src/network_manager/types/mod.rs
@@ -0,0 +1,31 @@
+mod address;
+mod address_type;
+mod connection_descriptor;
+mod dial_info;
+mod dial_info_class;
+mod dial_info_filter;
+mod low_level_protocol_type;
+mod network_class;
+mod peer_address;
+mod protocol_type;
+mod signal_info;
+mod socket_address;
+
+use super::*;
+
+pub use address::*;
+pub use address_type::*;
+pub use connection_descriptor::*;
+pub use dial_info::*;
+pub use dial_info_class::*;
+pub use dial_info_filter::*;
+pub use low_level_protocol_type::*;
+pub use network_class::*;
+pub use peer_address::*;
+pub use protocol_type::*;
+pub use signal_info::*;
+pub use socket_address::*;
+
+use enumset::*;
+use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
+use serde::*;
diff --git a/veilid-core/src/network_manager/types/network_class.rs b/veilid-core/src/network_manager/types/network_class.rs
new file mode 100644
index 00000000..828edac7
--- /dev/null
+++ b/veilid-core/src/network_manager/types/network_class.rs
@@ -0,0 +1,37 @@
+use super::*;
+
+#[derive(
+    Copy,
+    Clone,
+    Debug,
+    Eq,
+    PartialEq,
+    Ord,
+    PartialOrd,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum NetworkClass {
+    InboundCapable = 0, // I = Inbound capable without relay, may require signal
+    OutboundOnly = 1, // O = Outbound only, inbound relay required except with reverse connect signal
+    WebApp = 2,       // W = PWA, outbound relay is required in most cases
+    Invalid = 3,      // X = Invalid network class, we don't know how to reach this node
+}
+
+impl Default for NetworkClass {
+    fn default() -> Self {
+        Self::Invalid
+    }
+}
+
+impl NetworkClass {
+    // Should an outbound relay be kept available?
+    pub fn outbound_wants_relay(&self) -> bool {
+        matches!(self, Self::WebApp)
+    }
+}
diff --git a/veilid-core/src/network_manager/types/peer_address.rs b/veilid-core/src/network_manager/types/peer_address.rs
new file mode 100644
index 00000000..2ca52329
--- /dev/null
+++ b/veilid-core/src/network_manager/types/peer_address.rs
@@ -0,0 +1,66 @@
+use super::*;
+
+#[derive(
+    Copy,
+    Clone,
+    Debug,
+    PartialEq,
+    PartialOrd,
+    Eq,
+    Ord,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct PeerAddress {
+    protocol_type: ProtocolType,
+    #[serde(with = "json_as_string")]
+    socket_address: SocketAddress,
+}
+
+impl PeerAddress {
+    pub fn new(socket_address: SocketAddress, protocol_type: ProtocolType) -> Self {
+        Self {
+            socket_address: socket_address.to_canonical(),
+            protocol_type,
+        }
+    }
+
+    pub fn socket_address(&self) -> &SocketAddress {
+        &self.socket_address
+    }
+
+    pub fn protocol_type(&self) -> ProtocolType {
+        self.protocol_type
+    }
+
+    pub fn to_socket_addr(&self) -> SocketAddr {
+        self.socket_address.to_socket_addr()
+    }
+
+    pub fn address_type(&self) -> AddressType {
+        self.socket_address.address_type()
+    }
+}
+
+impl fmt::Display for PeerAddress {
+    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
+        write!(f, "{}:{}", self.protocol_type, self.socket_address)
+    }
+}
+
+impl FromStr for PeerAddress {
+    type Err = VeilidAPIError;
+    fn from_str(s: &str) -> Result<PeerAddress, VeilidAPIError> {
+        let Some((first, second)) = s.split_once(':') else {
+            return Err(VeilidAPIError::parse_error("PeerAddress is missing a colon: {}", s));
+        };
+        let protocol_type = ProtocolType::from_str(first)?;
+        let socket_address = SocketAddress::from_str(second)?;
+        Ok(PeerAddress::new(socket_address, protocol_type))
+    }
+}
diff --git a/veilid-core/src/network_manager/types/protocol_type.rs b/veilid-core/src/network_manager/types/protocol_type.rs
new file mode 100644
index 00000000..d0ca4c99
--- /dev/null
+++ b/veilid-core/src/network_manager/types/protocol_type.rs
@@ -0,0 +1,104 @@
+use super::*;
+
+// Keep member order appropriate for sorting < preference
+// Must match DialInfo order
+#[allow(clippy::derive_hash_xor_eq)]
+#[derive(
+    Debug,
+    PartialOrd,
+    Ord,
+    Hash,
+    EnumSetType,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[enumset(repr = "u8")]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum ProtocolType {
+    UDP,
+    TCP,
+    WS,
+    WSS,
+}
+
+impl ProtocolType {
+    pub fn is_connection_oriented(&self) -> bool {
+        matches!(
+            self,
+            ProtocolType::TCP | ProtocolType::WS | ProtocolType::WSS
+        )
+    }
+    pub fn low_level_protocol_type(&self) -> LowLevelProtocolType {
+        match self {
+            ProtocolType::UDP => LowLevelProtocolType::UDP,
+            ProtocolType::TCP | ProtocolType::WS | ProtocolType::WSS => LowLevelProtocolType::TCP,
+        }
+    }
+    pub fn sort_order(&self, sequencing: Sequencing) -> usize {
+        match self {
+            ProtocolType::UDP => {
+                if sequencing != Sequencing::NoPreference {
+                    3
+                } else {
+                    0
+                }
+            }
+            ProtocolType::TCP => {
+                if sequencing != Sequencing::NoPreference {
+                    0
+                } else {
+                    1
+                }
+            }
+            ProtocolType::WS => {
+                if sequencing != Sequencing::NoPreference {
+                    1
+                } else {
+                    2
+                }
+            }
+            ProtocolType::WSS => {
+                if sequencing != Sequencing::NoPreference {
+                    2
+                } else {
+                    3
+                }
+            }
+        }
+    }
+    pub fn all_ordered_set() -> ProtocolTypeSet {
+        ProtocolType::TCP | ProtocolType::WS | ProtocolType::WSS
+    }
+}
+
+impl fmt::Display for ProtocolType {
+    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
+        match self {
+            ProtocolType::UDP => write!(f, "UDP"),
+            ProtocolType::TCP => write!(f, "TCP"),
+            ProtocolType::WS => write!(f, "WS"),
+            ProtocolType::WSS => write!(f, "WSS"),
+        }
+    }
+}
+
+impl FromStr for ProtocolType {
+    type Err = VeilidAPIError;
+    fn from_str(s: &str) -> Result<ProtocolType, VeilidAPIError> {
+        match s.to_ascii_uppercase().as_str() {
+            "UDP" => Ok(ProtocolType::UDP),
+            "TCP" => Ok(ProtocolType::TCP),
+            "WS" => Ok(ProtocolType::WS),
+            "WSS" => Ok(ProtocolType::WSS),
+            _ => Err(VeilidAPIError::parse_error(
+                "ProtocolType::from_str failed",
+                s,
+            )),
+        }
+    }
+}
+
+pub type ProtocolTypeSet = EnumSet<ProtocolType>;
diff --git a/veilid-core/src/network_manager/types/signal_info.rs b/veilid-core/src/network_manager/types/signal_info.rs
new file mode 100644
index 00000000..f81aef5c
--- /dev/null
+++ b/veilid-core/src/network_manager/types/signal_info.rs
@@ -0,0 +1,22 @@
+use super::*;
+
+/// Parameter for Signal operation
+#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum SignalInfo {
+    /// UDP Hole Punch Request
+    HolePunch {
+        /// /// Receipt to be returned after the hole punch
+        receipt: Vec<u8>,
+        /// Sender's peer info
+        peer_info: PeerInfo,
+    },
+    /// Reverse Connection Request
+    ReverseConnect {
+        /// Receipt to be returned by the reverse connection
+        receipt: Vec<u8>,
+        /// Sender's peer info
+        peer_info: PeerInfo,
+    },
+    // XXX: WebRTC
+}
diff --git a/veilid-core/src/network_manager/types/socket_address.rs b/veilid-core/src/network_manager/types/socket_address.rs
new file mode 100644
index 00000000..bbd21c8a
--- /dev/null
+++ b/veilid-core/src/network_manager/types/socket_address.rs
@@ -0,0 +1,77 @@
+use super::*;
+
+#[derive(
+    Copy,
+    Default,
+    Clone,
+    Debug,
+    PartialEq,
+    PartialOrd,
+    Ord,
+    Eq,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct SocketAddress {
+    address: Address,
+    port: u16,
+}
+
+impl SocketAddress {
+    pub fn new(address: Address, port: u16) -> Self {
+        Self { address, port }
+    }
+    pub fn from_socket_addr(sa: SocketAddr) -> SocketAddress {
+        Self {
+            address: Address::from_socket_addr(sa),
+            port: sa.port(),
+        }
+    }
+    pub fn address(&self) -> Address {
+        self.address
+    }
+    pub fn set_address(&mut self, address: Address) {
+        self.address = address;
+    }
+    pub fn address_type(&self) -> AddressType {
+        self.address.address_type()
+    }
+    pub fn port(&self) -> u16 {
+        self.port
+    }
+    pub fn set_port(&mut self, port: u16) {
+        self.port = port
+    }
+    pub fn to_canonical(&self) -> SocketAddress {
+        SocketAddress {
+            address: self.address.to_canonical(),
+            port: self.port,
+        }
+    }
+    pub fn to_ip_addr(&self) -> IpAddr {
+        self.address.to_ip_addr()
+    }
+    pub fn to_socket_addr(&self) -> SocketAddr {
+        self.address.to_socket_addr(self.port)
+    }
+}
+
+impl fmt::Display for SocketAddress {
+    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> Result<(), fmt::Error> {
+        write!(f, "{}", self.to_socket_addr())
+    }
+}
+
+impl FromStr for SocketAddress {
+    type Err = VeilidAPIError;
+    fn from_str(s: &str) -> Result<SocketAddress, VeilidAPIError> {
+        let sa = SocketAddr::from_str(s)
+            .map_err(|e| VeilidAPIError::parse_error("Failed to parse SocketAddress", e))?;
+        Ok(SocketAddress::from_socket_addr(sa))
+    }
+}
diff --git a/veilid-core/src/routing_table/mod.rs b/veilid-core/src/routing_table/mod.rs
index 01381d0e..2c4a3c79 100644
--- a/veilid-core/src/routing_table/mod.rs
+++ b/veilid-core/src/routing_table/mod.rs
@@ -10,6 +10,7 @@ mod routing_domains;
 mod routing_table_inner;
 mod stats_accounting;
 mod tasks;
+mod types;
 
 use crate::*;
 
@@ -17,9 +18,10 @@ use crate::crypto::*;
 use crate::network_manager::*;
 use crate::rpc_processor::*;
 use bucket::*;
+use hashlink::LruCache;
+
 pub use bucket_entry::*;
 pub use debug::*;
-use hashlink::LruCache;
 pub use node_ref::*;
 pub use node_ref_filter::*;
 pub use privacy::*;
@@ -28,6 +30,7 @@ pub use routing_domain_editor::*;
 pub use routing_domains::*;
 pub use routing_table_inner::*;
 pub use stats_accounting::*;
+pub use types::*;
 
 //////////////////////////////////////////////////////////////////////////
 
diff --git a/veilid-core/src/routing_table/types/dial_info_detail.rs b/veilid-core/src/routing_table/types/dial_info_detail.rs
new file mode 100644
index 00000000..22adf233
--- /dev/null
+++ b/veilid-core/src/routing_table/types/dial_info_detail.rs
@@ -0,0 +1,43 @@
+use super::*;
+
+// Keep member order appropriate for sorting < preference
+#[derive(
+    Debug,
+    Clone,
+    PartialEq,
+    PartialOrd,
+    Ord,
+    Eq,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct DialInfoDetail {
+    pub class: DialInfoClass,
+    pub dial_info: DialInfo,
+}
+
+impl MatchesDialInfoFilter for DialInfoDetail {
+    fn matches_filter(&self, filter: &DialInfoFilter) -> bool {
+        self.dial_info.matches_filter(filter)
+    }
+}
+
+impl DialInfoDetail {
+    pub fn ordered_sequencing_sort(a: &DialInfoDetail, b: &DialInfoDetail) -> core::cmp::Ordering {
+        if a.class < b.class {
+            return core::cmp::Ordering::Less;
+        }
+        if a.class > b.class {
+            return core::cmp::Ordering::Greater;
+        }
+        DialInfo::ordered_sequencing_sort(&a.dial_info, &b.dial_info)
+    }
+    pub const NO_SORT: std::option::Option<
+        for<'r, 's> fn(&'r DialInfoDetail, &'s DialInfoDetail) -> std::cmp::Ordering,
+    > = None::<fn(&DialInfoDetail, &DialInfoDetail) -> core::cmp::Ordering>;
+}
diff --git a/veilid-core/src/routing_table/types/direction.rs b/veilid-core/src/routing_table/types/direction.rs
new file mode 100644
index 00000000..98f50182
--- /dev/null
+++ b/veilid-core/src/routing_table/types/direction.rs
@@ -0,0 +1,22 @@
+use super::*;
+
+#[allow(clippy::derive_hash_xor_eq)]
+#[derive(
+    Debug,
+    PartialOrd,
+    Ord,
+    Hash,
+    EnumSetType,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[enumset(repr = "u8")]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum Direction {
+    Inbound,
+    Outbound,
+}
+pub type DirectionSet = EnumSet<Direction>;
diff --git a/veilid-core/src/routing_table/types/mod.rs b/veilid-core/src/routing_table/types/mod.rs
new file mode 100644
index 00000000..f86299bd
--- /dev/null
+++ b/veilid-core/src/routing_table/types/mod.rs
@@ -0,0 +1,25 @@
+mod dial_info_detail;
+mod direction;
+mod node_info;
+mod node_status;
+mod peer_info;
+mod routing_domain;
+mod signed_direct_node_info;
+mod signed_node_info;
+mod signed_relayed_node_info;
+
+use super::*;
+
+pub use dial_info_detail::*;
+pub use direction::*;
+pub use node_info::*;
+pub use node_status::*;
+pub use peer_info::*;
+pub use routing_domain::*;
+pub use signed_direct_node_info::*;
+pub use signed_node_info::*;
+pub use signed_relayed_node_info::*;
+
+use enumset::*;
+use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
+use serde::*;
diff --git a/veilid-core/src/routing_table/types/node_info.rs b/veilid-core/src/routing_table/types/node_info.rs
new file mode 100644
index 00000000..ecbd709b
--- /dev/null
+++ b/veilid-core/src/routing_table/types/node_info.rs
@@ -0,0 +1,125 @@
+use super::*;
+
+#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct NodeInfo {
+    pub network_class: NetworkClass,
+    #[with(RkyvEnumSet)]
+    pub outbound_protocols: ProtocolTypeSet,
+    #[with(RkyvEnumSet)]
+    pub address_types: AddressTypeSet,
+    pub envelope_support: Vec<u8>,
+    pub crypto_support: Vec<CryptoKind>,
+    pub dial_info_detail_list: Vec<DialInfoDetail>,
+}
+
+impl NodeInfo {
+    pub fn first_filtered_dial_info_detail<S, F>(
+        &self,
+        sort: Option<S>,
+        filter: F,
+    ) -> Option<DialInfoDetail>
+    where
+        S: Fn(&DialInfoDetail, &DialInfoDetail) -> std::cmp::Ordering,
+        F: Fn(&DialInfoDetail) -> bool,
+    {
+        if let Some(sort) = sort {
+            let mut dids = self.dial_info_detail_list.clone();
+            dids.sort_by(sort);
+            for did in dids {
+                if filter(&did) {
+                    return Some(did);
+                }
+            }
+        } else {
+            for did in &self.dial_info_detail_list {
+                if filter(did) {
+                    return Some(did.clone());
+                }
+            }
+        };
+        None
+    }
+
+    pub fn all_filtered_dial_info_details<S, F>(
+        &self,
+        sort: Option<S>,
+        filter: F,
+    ) -> Vec<DialInfoDetail>
+    where
+        S: Fn(&DialInfoDetail, &DialInfoDetail) -> std::cmp::Ordering,
+        F: Fn(&DialInfoDetail) -> bool,
+    {
+        let mut dial_info_detail_list = Vec::new();
+
+        if let Some(sort) = sort {
+            let mut dids = self.dial_info_detail_list.clone();
+            dids.sort_by(sort);
+            for did in dids {
+                if filter(&did) {
+                    dial_info_detail_list.push(did);
+                }
+            }
+        } else {
+            for did in &self.dial_info_detail_list {
+                if filter(did) {
+                    dial_info_detail_list.push(did.clone());
+                }
+            }
+        };
+        dial_info_detail_list
+    }
+
+    /// Does this node has some dial info
+    pub fn has_dial_info(&self) -> bool {
+        !self.dial_info_detail_list.is_empty()
+    }
+
+    /// Is some relay required either for signal or inbound relay or outbound relay?
+    pub fn requires_relay(&self) -> bool {
+        match self.network_class {
+            NetworkClass::InboundCapable => {
+                for did in &self.dial_info_detail_list {
+                    if did.class.requires_relay() {
+                        return true;
+                    }
+                }
+            }
+            NetworkClass::OutboundOnly => {
+                return true;
+            }
+            NetworkClass::WebApp => {
+                return true;
+            }
+            NetworkClass::Invalid => {}
+        }
+        false
+    }
+
+    /// Can this node assist with signalling? Yes but only if it doesn't require signalling, itself.
+    pub fn can_signal(&self) -> bool {
+        // Must be inbound capable
+        if !matches!(self.network_class, NetworkClass::InboundCapable) {
+            return false;
+        }
+        // Do any of our dial info require signalling? if so, we can't offer signalling
+        for did in &self.dial_info_detail_list {
+            if did.class.requires_signal() {
+                return false;
+            }
+        }
+        true
+    }
+
+    /// Can this node relay be an inbound relay?
+    pub fn can_inbound_relay(&self) -> bool {
+        // For now this is the same
+        self.can_signal()
+    }
+
+    /// Is this node capable of validating dial info
+    pub fn can_validate_dial_info(&self) -> bool {
+        // For now this is the same
+        self.can_signal()
+    }
+}
diff --git a/veilid-core/src/routing_table/types/node_status.rs b/veilid-core/src/routing_table/types/node_status.rs
new file mode 100644
index 00000000..11c388d0
--- /dev/null
+++ b/veilid-core/src/routing_table/types/node_status.rs
@@ -0,0 +1,66 @@
+use super::*;
+
+/// RoutingDomain-specific status for each node
+/// is returned by the StatusA call
+
+/// PublicInternet RoutingDomain Status
+#[derive(
+    Clone, Debug, Default, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct PublicInternetNodeStatus {
+    pub will_route: bool,
+    pub will_tunnel: bool,
+    pub will_signal: bool,
+    pub will_relay: bool,
+    pub will_validate_dial_info: bool,
+}
+
+#[derive(
+    Clone, Debug, Default, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct LocalNetworkNodeStatus {
+    pub will_relay: bool,
+    pub will_validate_dial_info: bool,
+}
+
+#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum NodeStatus {
+    PublicInternet(PublicInternetNodeStatus),
+    LocalNetwork(LocalNetworkNodeStatus),
+}
+
+impl NodeStatus {
+    pub fn will_route(&self) -> bool {
+        match self {
+            NodeStatus::PublicInternet(pi) => pi.will_route,
+            NodeStatus::LocalNetwork(_) => false,
+        }
+    }
+    pub fn will_tunnel(&self) -> bool {
+        match self {
+            NodeStatus::PublicInternet(pi) => pi.will_tunnel,
+            NodeStatus::LocalNetwork(_) => false,
+        }
+    }
+    pub fn will_signal(&self) -> bool {
+        match self {
+            NodeStatus::PublicInternet(pi) => pi.will_signal,
+            NodeStatus::LocalNetwork(_) => false,
+        }
+    }
+    pub fn will_relay(&self) -> bool {
+        match self {
+            NodeStatus::PublicInternet(pi) => pi.will_relay,
+            NodeStatus::LocalNetwork(ln) => ln.will_relay,
+        }
+    }
+    pub fn will_validate_dial_info(&self) -> bool {
+        match self {
+            NodeStatus::PublicInternet(pi) => pi.will_validate_dial_info,
+            NodeStatus::LocalNetwork(ln) => ln.will_validate_dial_info,
+        }
+    }
+}
diff --git a/veilid-core/src/routing_table/types/peer_info.rs b/veilid-core/src/routing_table/types/peer_info.rs
new file mode 100644
index 00000000..0e7e3558
--- /dev/null
+++ b/veilid-core/src/routing_table/types/peer_info.rs
@@ -0,0 +1,18 @@
+use super::*;
+
+#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct PeerInfo {
+    pub node_ids: TypedKeySet,
+    pub signed_node_info: SignedNodeInfo,
+}
+
+impl PeerInfo {
+    pub fn new(node_ids: TypedKeySet, signed_node_info: SignedNodeInfo) -> Self {
+        assert!(node_ids.len() > 0 && node_ids.len() <= MAX_CRYPTO_KINDS);
+        Self {
+            node_ids,
+            signed_node_info,
+        }
+    }
+}
diff --git a/veilid-core/src/routing_table/types/routing_domain.rs b/veilid-core/src/routing_table/types/routing_domain.rs
new file mode 100644
index 00000000..e1982a08
--- /dev/null
+++ b/veilid-core/src/routing_table/types/routing_domain.rs
@@ -0,0 +1,32 @@
+use super::*;
+
+// Routing domain here is listed in order of preference, keep in order
+#[allow(clippy::derive_hash_xor_eq)]
+#[derive(
+    Debug,
+    Ord,
+    PartialOrd,
+    Hash,
+    EnumSetType,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[enumset(repr = "u8")]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum RoutingDomain {
+    LocalNetwork = 0,
+    PublicInternet = 1,
+}
+impl RoutingDomain {
+    pub const fn count() -> usize {
+        2
+    }
+    pub const fn all() -> [RoutingDomain; RoutingDomain::count()] {
+        // Routing domain here is listed in order of preference, keep in order
+        [RoutingDomain::LocalNetwork, RoutingDomain::PublicInternet]
+    }
+}
+pub type RoutingDomainSet = EnumSet<RoutingDomain>;
diff --git a/veilid-core/src/routing_table/types/signed_direct_node_info.rs b/veilid-core/src/routing_table/types/signed_direct_node_info.rs
new file mode 100644
index 00000000..c04652c7
--- /dev/null
+++ b/veilid-core/src/routing_table/types/signed_direct_node_info.rs
@@ -0,0 +1,86 @@
+use super::*;
+
+/// Signed NodeInfo that can be passed around amongst peers and verifiable
+#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct SignedDirectNodeInfo {
+    pub node_info: NodeInfo,
+    pub timestamp: Timestamp,
+    pub signatures: Vec<TypedSignature>,
+}
+impl SignedDirectNodeInfo {
+    /// Returns a new SignedDirectNodeInfo that has its signatures validated.
+    /// On success, this will modify the node_ids set to only include node_ids whose signatures validate.
+    /// All signatures are stored however, as this can be passed to other nodes that may be able to validate those signatures.
+    pub fn new(
+        crypto: Crypto,
+        node_ids: &mut TypedKeySet,
+        node_info: NodeInfo,
+        timestamp: Timestamp,
+        typed_signatures: Vec<TypedSignature>,
+    ) -> Result<Self, VeilidAPIError> {
+        let node_info_bytes = Self::make_signature_bytes(&node_info, timestamp)?;
+
+        // Verify the signatures that we can
+        let validated_node_ids =
+            crypto.verify_signatures(node_ids, &node_info_bytes, &typed_signatures)?;
+        *node_ids = validated_node_ids;
+        if node_ids.len() == 0 {
+            apibail_generic!("no valid node ids in direct node info");
+        }
+
+        Ok(Self {
+            node_info,
+            timestamp,
+            signatures: typed_signatures,
+        })
+    }
+
+    pub fn make_signatures(
+        crypto: Crypto,
+        typed_key_pairs: Vec<TypedKeyPair>,
+        node_info: NodeInfo,
+    ) -> Result<Self, VeilidAPIError> {
+        let timestamp = get_aligned_timestamp();
+        let node_info_bytes = Self::make_signature_bytes(&node_info, timestamp)?;
+        let typed_signatures =
+            crypto.generate_signatures(&node_info_bytes, &typed_key_pairs, |kp, s| {
+                TypedSignature::new(kp.kind, s)
+            })?;
+        Ok(Self {
+            node_info,
+            timestamp,
+            signatures: typed_signatures,
+        })
+    }
+
+    fn make_signature_bytes(
+        node_info: &NodeInfo,
+        timestamp: Timestamp,
+    ) -> Result<Vec<u8>, VeilidAPIError> {
+        let mut node_info_bytes = Vec::new();
+
+        // Add nodeinfo to signature
+        let mut ni_msg = ::capnp::message::Builder::new_default();
+        let mut ni_builder = ni_msg.init_root::<veilid_capnp::node_info::Builder>();
+        encode_node_info(node_info, &mut ni_builder).map_err(VeilidAPIError::internal)?;
+        node_info_bytes.append(&mut builder_to_vec(ni_msg).map_err(VeilidAPIError::internal)?);
+
+        // Add timestamp to signature
+        node_info_bytes.append(&mut timestamp.as_u64().to_le_bytes().to_vec());
+
+        Ok(node_info_bytes)
+    }
+
+    pub fn with_no_signature(node_info: NodeInfo) -> Self {
+        Self {
+            node_info,
+            timestamp: get_aligned_timestamp(),
+            signatures: Vec::new(),
+        }
+    }
+
+    pub fn has_any_signature(&self) -> bool {
+        !self.signatures.is_empty()
+    }
+}
diff --git a/veilid-core/src/routing_table/types/signed_node_info.rs b/veilid-core/src/routing_table/types/signed_node_info.rs
new file mode 100644
index 00000000..2137bb27
--- /dev/null
+++ b/veilid-core/src/routing_table/types/signed_node_info.rs
@@ -0,0 +1,89 @@
+use super::*;
+
+#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum SignedNodeInfo {
+    Direct(SignedDirectNodeInfo),
+    Relayed(SignedRelayedNodeInfo),
+}
+
+impl SignedNodeInfo {
+    pub fn has_any_signature(&self) -> bool {
+        match self {
+            SignedNodeInfo::Direct(d) => d.has_any_signature(),
+            SignedNodeInfo::Relayed(r) => r.has_any_signature(),
+        }
+    }
+
+    pub fn timestamp(&self) -> Timestamp {
+        match self {
+            SignedNodeInfo::Direct(d) => d.timestamp,
+            SignedNodeInfo::Relayed(r) => r.timestamp,
+        }
+    }
+    pub fn node_info(&self) -> &NodeInfo {
+        match self {
+            SignedNodeInfo::Direct(d) => &d.node_info,
+            SignedNodeInfo::Relayed(r) => &r.node_info,
+        }
+    }
+    pub fn relay_ids(&self) -> TypedKeySet {
+        match self {
+            SignedNodeInfo::Direct(_) => TypedKeySet::new(),
+            SignedNodeInfo::Relayed(r) => r.relay_ids.clone(),
+        }
+    }
+    pub fn relay_info(&self) -> Option<&NodeInfo> {
+        match self {
+            SignedNodeInfo::Direct(_) => None,
+            SignedNodeInfo::Relayed(r) => Some(&r.relay_info.node_info),
+        }
+    }
+    pub fn relay_peer_info(&self) -> Option<PeerInfo> {
+        match self {
+            SignedNodeInfo::Direct(_) => None,
+            SignedNodeInfo::Relayed(r) => Some(PeerInfo::new(
+                r.relay_ids.clone(),
+                SignedNodeInfo::Direct(r.relay_info.clone()),
+            )),
+        }
+    }
+    pub fn has_any_dial_info(&self) -> bool {
+        self.node_info().has_dial_info()
+            || self
+                .relay_info()
+                .map(|relay_ni| relay_ni.has_dial_info())
+                .unwrap_or_default()
+    }
+
+    pub fn has_sequencing_matched_dial_info(&self, sequencing: Sequencing) -> bool {
+        // Check our dial info
+        for did in &self.node_info().dial_info_detail_list {
+            match sequencing {
+                Sequencing::NoPreference | Sequencing::PreferOrdered => return true,
+                Sequencing::EnsureOrdered => {
+                    if did.dial_info.protocol_type().is_connection_oriented() {
+                        return true;
+                    }
+                }
+            }
+        }
+        // Check our relay if we have one
+        return self
+            .relay_info()
+            .map(|relay_ni| {
+                for did in &relay_ni.dial_info_detail_list {
+                    match sequencing {
+                        Sequencing::NoPreference | Sequencing::PreferOrdered => return true,
+                        Sequencing::EnsureOrdered => {
+                            if did.dial_info.protocol_type().is_connection_oriented() {
+                                return true;
+                            }
+                        }
+                    }
+                }
+                false
+            })
+            .unwrap_or_default();
+    }
+}
diff --git a/veilid-core/src/routing_table/types/signed_relayed_node_info.rs b/veilid-core/src/routing_table/types/signed_relayed_node_info.rs
new file mode 100644
index 00000000..4e716eba
--- /dev/null
+++ b/veilid-core/src/routing_table/types/signed_relayed_node_info.rs
@@ -0,0 +1,106 @@
+use super::*;
+
+/// Signed NodeInfo with a relay that can be passed around amongst peers and verifiable
+#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct SignedRelayedNodeInfo {
+    pub node_info: NodeInfo,
+    pub relay_ids: TypedKeySet,
+    pub relay_info: SignedDirectNodeInfo,
+    pub timestamp: Timestamp,
+    pub signatures: Vec<TypedSignature>,
+}
+
+impl SignedRelayedNodeInfo {
+    /// Returns a new SignedRelayedNodeInfo that has its signatures validated.
+    /// On success, this will modify the node_ids set to only include node_ids whose signatures validate.
+    /// All signatures are stored however, as this can be passed to other nodes that may be able to validate those signatures.
+    pub fn new(
+        crypto: Crypto,
+        node_ids: &mut TypedKeySet,
+        node_info: NodeInfo,
+        relay_ids: TypedKeySet,
+        relay_info: SignedDirectNodeInfo,
+        timestamp: Timestamp,
+        typed_signatures: Vec<TypedSignature>,
+    ) -> Result<Self, VeilidAPIError> {
+        let node_info_bytes =
+            Self::make_signature_bytes(&node_info, &relay_ids, &relay_info, timestamp)?;
+        let validated_node_ids =
+            crypto.verify_signatures(node_ids, &node_info_bytes, &typed_signatures)?;
+        *node_ids = validated_node_ids;
+        if node_ids.len() == 0 {
+            apibail_generic!("no valid node ids in relayed node info");
+        }
+
+        Ok(Self {
+            node_info,
+            relay_ids,
+            relay_info,
+            timestamp,
+            signatures: typed_signatures,
+        })
+    }
+
+    pub fn make_signatures(
+        crypto: Crypto,
+        typed_key_pairs: Vec<TypedKeyPair>,
+        node_info: NodeInfo,
+        relay_ids: TypedKeySet,
+        relay_info: SignedDirectNodeInfo,
+    ) -> Result<Self, VeilidAPIError> {
+        let timestamp = get_aligned_timestamp();
+        let node_info_bytes =
+            Self::make_signature_bytes(&node_info, &relay_ids, &relay_info, timestamp)?;
+        let typed_signatures =
+            crypto.generate_signatures(&node_info_bytes, &typed_key_pairs, |kp, s| {
+                TypedSignature::new(kp.kind, s)
+            })?;
+        Ok(Self {
+            node_info,
+            relay_ids,
+            relay_info,
+            timestamp,
+            signatures: typed_signatures,
+        })
+    }
+
+    fn make_signature_bytes(
+        node_info: &NodeInfo,
+        relay_ids: &[TypedKey],
+        relay_info: &SignedDirectNodeInfo,
+        timestamp: Timestamp,
+    ) -> Result<Vec<u8>, VeilidAPIError> {
+        let mut sig_bytes = Vec::new();
+
+        // Add nodeinfo to signature
+        let mut ni_msg = ::capnp::message::Builder::new_default();
+        let mut ni_builder = ni_msg.init_root::<veilid_capnp::node_info::Builder>();
+        encode_node_info(node_info, &mut ni_builder).map_err(VeilidAPIError::internal)?;
+        sig_bytes.append(&mut builder_to_vec(ni_msg).map_err(VeilidAPIError::internal)?);
+
+        // Add relay ids to signature
+        for relay_id in relay_ids {
+            let mut rid_msg = ::capnp::message::Builder::new_default();
+            let mut rid_builder = rid_msg.init_root::<veilid_capnp::typed_key::Builder>();
+            encode_typed_key(relay_id, &mut rid_builder);
+            sig_bytes.append(&mut builder_to_vec(rid_msg).map_err(VeilidAPIError::internal)?);
+        }
+
+        // Add relay info to signature
+        let mut ri_msg = ::capnp::message::Builder::new_default();
+        let mut ri_builder = ri_msg.init_root::<veilid_capnp::signed_direct_node_info::Builder>();
+        encode_signed_direct_node_info(relay_info, &mut ri_builder)
+            .map_err(VeilidAPIError::internal)?;
+        sig_bytes.append(&mut builder_to_vec(ri_msg).map_err(VeilidAPIError::internal)?);
+
+        // Add timestamp to signature
+        sig_bytes.append(&mut timestamp.as_u64().to_le_bytes().to_vec());
+
+        Ok(sig_bytes)
+    }
+
+    pub fn has_any_signature(&self) -> bool {
+        !self.signatures.is_empty()
+    }
+}
diff --git a/veilid-core/src/rpc_processor/coders/mod.rs b/veilid-core/src/rpc_processor/coders/mod.rs
index 8c8ce160..8ede58ce 100644
--- a/veilid-core/src/rpc_processor/coders/mod.rs
+++ b/veilid-core/src/rpc_processor/coders/mod.rs
@@ -19,11 +19,13 @@ mod signature512;
 mod signed_direct_node_info;
 mod signed_node_info;
 mod signed_relayed_node_info;
+mod signed_value_data;
+mod signed_value_descriptor;
 mod socket_address;
 mod tunnel;
 mod typed_key;
 mod typed_signature;
-mod value_data;
+mod value_detail;
 
 pub use address::*;
 pub use address_type_set::*;
@@ -46,10 +48,12 @@ pub use signature512::*;
 pub use signed_direct_node_info::*;
 pub use signed_node_info::*;
 pub use signed_relayed_node_info::*;
+pub use signed_value_data::*;
+pub use signed_value_descriptor::*;
 pub use socket_address::*;
 pub use tunnel::*;
 pub use typed_key::*;
 pub use typed_signature::*;
-pub use value_data::*;
+pub use value_detail::*;
 
 use super::*;
diff --git a/veilid-core/src/rpc_processor/coders/signed_value_data.rs b/veilid-core/src/rpc_processor/coders/signed_value_data.rs
new file mode 100644
index 00000000..6f65b304
--- /dev/null
+++ b/veilid-core/src/rpc_processor/coders/signed_value_data.rs
@@ -0,0 +1,31 @@
+use super::*;
+use crate::storage_manager::*;
+
+pub fn encode_signed_value_data(
+    signed_value_data: &SignedValueData,
+    builder: &mut veilid_capnp::signed_value_data::Builder,
+) -> Result<(), RPCError> {
+    builder.set_seq(signed_value_data.value_data().seq());
+    builder.set_data(signed_value_data.value_data().data());
+    let mut wb = builder.reborrow().init_writer();
+    encode_key256(signed_value_data.value_data().writer(), &mut wb);
+    let mut sb = builder.reborrow().init_signature();
+    encode_signature512(signed_value_data.signature(), &mut sb);
+    Ok(())
+}
+
+pub fn decode_signed_value_data(
+    reader: &veilid_capnp::signed_value_data::Reader,
+) -> Result<ValueData, RPCError> {
+    let seq = reader.get_seq();
+    let data = reader.get_data().map_err(RPCError::protocol)?.to_vec();
+    let wr = reader.get_writer().map_err(RPCError::protocol)?;
+    let writer = decode_key256(&wr);
+    let sr = reader.get_signature().map_err(RPCError::protocol)?;
+    let signature = decode_signature512(&sr);
+
+    Ok(SignedValueData {
+        value_data: ValueData { seq, data, writer },
+        signature,
+    })
+}
diff --git a/veilid-core/src/rpc_processor/coders/signed_value_descriptor.rs b/veilid-core/src/rpc_processor/coders/signed_value_descriptor.rs
new file mode 100644
index 00000000..22be6b5a
--- /dev/null
+++ b/veilid-core/src/rpc_processor/coders/signed_value_descriptor.rs
@@ -0,0 +1,26 @@
+use super::*;
+use crate::storage_manager::SignedValueDescriptor;
+
+pub fn encode_signed_value_descriptor(
+    signed_value_descriptor: &SignedValueDescriptor,
+    builder: &mut veilid_capnp::signed_value_descriptor::Builder,
+) -> Result<(), RPCError> {
+    let mut ob = builder.reborrow().init_owner();
+    encode_key256(signed_value_descriptor.owner(), &mut ob);
+    builder.set_data(signed_value_descriptor.data());
+    let mut sb = builder.reborrow().init_signature();
+    encode_signature512(signed_value_descriptor.signature(), &mut sb);
+    Ok(())
+}
+
+pub fn decode_signed_value_descriptor(
+    reader: &veilid_capnp::signed_value_descriptor::Reader,
+    vcrypto: CryptoSystemVersion,
+) -> Result<SignedValueDescriptor, RPCError> {
+    let or = reader.get_owner().map_err(RPCError::protocol)?;
+    let owner = decode_key256(&or);
+    let data = reader.get_data().map_err(RPCError::protocol)?.to_vec();
+    let sr = reader.get_signature().map_err(RPCError::protocol)?;
+    let signature = decode_signature512(&sr);
+    Ok(SignedValueDescriptor::new(owner, data, signature, vcrypto).map_err(RPCError::protocol)?)
+}
diff --git a/veilid-core/src/rpc_processor/coders/value_data.rs b/veilid-core/src/rpc_processor/coders/value_data.rs
deleted file mode 100644
index 70cbf0a4..00000000
--- a/veilid-core/src/rpc_processor/coders/value_data.rs
+++ /dev/null
@@ -1,18 +0,0 @@
-use super::*;
-
-pub fn encode_value_data(
-    value_data: &ValueData,
-    builder: &mut veilid_capnp::value_data::Builder,
-) -> Result<(), RPCError> {
-    builder.set_data(&value_data.data);
-    builder.set_schema(u32::from_be_bytes(value_data.schema.0));
-    builder.set_seq(value_data.seq);
-    Ok(())
-}
-
-pub fn decode_value_data(reader: &veilid_capnp::value_data::Reader) -> Result<ValueData, RPCError> {
-    let data = reader.get_data().map_err(RPCError::protocol)?.to_vec();
-    let seq = reader.get_seq();
-    let schema = FourCC::from(reader.get_schema().to_be_bytes());
-    Ok(ValueData { data, schema, seq })
-}
diff --git a/veilid-core/src/rpc_processor/coders/value_detail.rs b/veilid-core/src/rpc_processor/coders/value_detail.rs
new file mode 100644
index 00000000..c853861c
--- /dev/null
+++ b/veilid-core/src/rpc_processor/coders/value_detail.rs
@@ -0,0 +1,20 @@
+use super::*;
+use crate::storage_manager::ValueDetail;
+
+pub fn encode_value_detail(
+    value_detail: &ValueDetail,
+    builder: &mut veilid_capnp::value_detail::Builder,
+) -> Result<(), RPCError> {
+    let mut svdb = builder.reborrow().init_signed_value_data();
+
+    Ok(())
+}
+
+pub fn decode_value_detail(
+    reader: &veilid_capnp::value_detail::Reader,
+) -> Result<ValueDetail, RPCError> {
+    Ok(ValueDetail {
+        signed_value_data,
+        descriptor,
+    })
+}
diff --git a/veilid-core/src/rpc_processor/mod.rs b/veilid-core/src/rpc_processor/mod.rs
index c31fc2cc..a1d11478 100644
--- a/veilid-core/src/rpc_processor/mod.rs
+++ b/veilid-core/src/rpc_processor/mod.rs
@@ -387,7 +387,7 @@ impl RPCProcessor {
         _node_id: PublicKey,
         _count: u32,
         _fanout: u32,
-        _timeout: Option<u64>,
+        _timeout: TimestampDuration,
     ) -> Result<Option<NodeRef>, RPCError> {
         //let routing_table = self.routing_table();
 
@@ -402,7 +402,7 @@ impl RPCProcessor {
         _node_id: PublicKey,
         _count: u32,
         _fanout: u32,
-        _timeout: Option<u64>,
+        _timeout: TimestampDuration,
     ) -> Result<Vec<NodeRef>, RPCError> {
         // xxx return closest nodes after the timeout
         Err(RPCError::unimplemented("search_dht_multi_key")).map_err(logthru_rpc!(error))
@@ -433,7 +433,7 @@ impl RPCProcessor {
                 (
                     c.network.dht.resolve_node_count,
                     c.network.dht.resolve_node_fanout,
-                    c.network.dht.resolve_node_timeout_ms.map(ms_to_us),
+                    TimestampDuration::from(ms_to_us(c.network.dht.resolve_node_timeout_ms)),
                 )
             };
 
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index e4ba58ed..695d8503 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -1,12 +1,21 @@
 mod keys;
+mod record;
+mod record_data;
 mod record_store;
 mod record_store_limits;
-mod value_record;
+mod signed_value_data;
+mod signed_value_descriptor;
+mod value_detail;
 
 use keys::*;
+use record::*;
+use record_data::*;
 use record_store::*;
 use record_store_limits::*;
-use value_record::*;
+
+pub use signed_value_data::*;
+pub use signed_value_descriptor::*;
+pub use value_detail::*;
 
 use super::*;
 use crate::rpc_processor::*;
@@ -150,12 +159,28 @@ impl StorageManager {
         debug!("finished storage manager shutdown");
     }
 
-    async fn new_local_record(&self, key: TypedKey, record: Record) -> Result<(), VeilidAPIError> {
+    /// # DHT Key = Hash(ownerKeyKind) of: [ ownerKeyValue, schema ]
+    fn get_key(&self, vcrypto: CryptoSystemVersion, record: &Record) -> TypedKey {
+        let compiled = record.descriptor().schema_data();
+        let mut hash_data = Vec::<u8>::with_capacity(PUBLIC_KEY_LENGTH + 4 + compiled.len());
+        hash_data.extend_from_slice(&vcrypto.kind().0);
+        hash_data.extend_from_slice(&record.owner().bytes);
+        hash_data.extend_from_slice(compiled);
+        let hash = vcrypto.generate_hash(&hash_data);
+        TypedKey::new(vcrypto.kind(), hash)
+    }
+
+    async fn new_local_record(
+        &self,
+        vcrypto: CryptoSystemVersion,
+        record: Record,
+    ) -> Result<(), VeilidAPIError> {
         // add value record to record store
         let mut inner = self.inner.lock();
         let Some(local_record_store) = inner.local_record_store.as_mut() else {
             apibail_generic!("not initialized");
         };
+        let key = self.get_key(vcrypto.clone(), &record);
         local_record_store.new_record(key, record).await
     }
 
@@ -170,15 +195,25 @@ impl StorageManager {
             apibail_generic!("unsupported cryptosystem");
         };
 
+        // Compile the dht schema
+        let schema_data = schema.compile();
+
         // New values require a new owner key
-        let keypair = vcrypto.generate_keypair();
-        let key = TypedKey::new(kind, keypair.key);
-        let secret = keypair.secret;
+        let owner = vcrypto.generate_keypair();
+
+        // Make a signed value descriptor for this dht value
+        let signed_value_descriptor = SignedValueDescriptor::new(owner.key, )
 
         // Add new local value record
         let cur_ts = get_aligned_timestamp();
-        let record = Record::new(cur_ts, Some(secret), schema, safety_selection);
-        self.new_local_record(key, record)
+        let record = Record::new(
+            cur_ts,
+            owner.key,
+            Some(owner.secret),
+            schema,
+            safety_selection,
+        );
+        self.new_local_record(vcrypto.clone(), record)
             .await
             .map_err(VeilidAPIError::internal)?;
 
diff --git a/veilid-core/src/storage_manager/value_record.rs b/veilid-core/src/storage_manager/record.rs
similarity index 50%
rename from veilid-core/src/storage_manager/value_record.rs
rename to veilid-core/src/storage_manager/record.rs
index 0ffd44d3..b80a8d47 100644
--- a/veilid-core/src/storage_manager/value_record.rs
+++ b/veilid-core/src/storage_manager/record.rs
@@ -3,46 +3,15 @@ use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as
 use serde::*;
 
 #[derive(
-    Clone,
-    Debug,
-    Default,
-    PartialEq,
-    Eq,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct RecordData {
-    pub value_data: ValueData,
-    pub signature: Signature,
-}
-
-impl RecordData {
-    pub fn total_size(&self) -> usize {
-        mem::size_of::<ValueData>() + self.value_data.data().len()
-    }
-}
-
-#[derive(
-    Clone,
-    Debug,
-    Default,
-    PartialEq,
-    Eq,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
+    Clone, Debug, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
 )]
 #[archive_attr(repr(C), derive(CheckBytes))]
 pub struct Record {
     last_touched_ts: Timestamp,
-    secret: Option<SecretKey>,
-    schema: DHTSchema,
+    descriptor: SignedValueDescriptor,
+    subkey_count: usize,
+
+    owner_secret: Option<SecretKey>,
     safety_selection: SafetySelection,
     record_data_size: usize,
 }
@@ -50,21 +19,31 @@ pub struct Record {
 impl Record {
     pub fn new(
         cur_ts: Timestamp,
-        secret: Option<SecretKey>,
-        schema: DHTSchema,
+        descriptor: SignedValueDescriptor,
+        owner_secret: Option<SecretKey>,
         safety_selection: SafetySelection,
-    ) -> Self {
-        Self {
+    ) -> Result<Self, VeilidAPIError> {
+        let schema = descriptor.schema()?;
+        let subkey_count = schema.subkey_count();
+        Ok(Self {
             last_touched_ts: cur_ts,
-            secret,
-            schema,
+            descriptor,
+            subkey_count,
+            owner_secret,
             safety_selection,
             record_data_size: 0,
-        }
+        })
+    }
+
+    pub fn descriptor(&self) -> &SignedValueDescriptor {
+        &self.descriptor
+    }
+    pub fn owner(&self) -> &PublicKey {
+        self.descriptor.owner()
     }
 
     pub fn subkey_count(&self) -> usize {
-        self.schema.subkey_count()
+        self.subkey_count
     }
 
     pub fn touch(&mut self, cur_ts: Timestamp) {
@@ -83,7 +62,12 @@ impl Record {
         self.record_data_size
     }
 
+    pub fn schema(&self) -> DHTSchema {
+        // unwrap is safe here because descriptor is immutable and set in new()
+        self.descriptor.schema().unwrap()
+    }
+
     pub fn total_size(&self) -> usize {
-        mem::size_of::<Record>() + self.schema.data_size() + self.record_data_size
+        mem::size_of::<Record>() + self.descriptor.total_size() + self.record_data_size
     }
 }
diff --git a/veilid-core/src/storage_manager/record_data.rs b/veilid-core/src/storage_manager/record_data.rs
new file mode 100644
index 00000000..e439ed67
--- /dev/null
+++ b/veilid-core/src/storage_manager/record_data.rs
@@ -0,0 +1,33 @@
+use super::*;
+use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
+use serde::*;
+
+#[derive(
+    Clone,
+    Debug,
+    PartialEq,
+    Eq,
+    PartialOrd,
+    Ord,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct RecordData {
+    signed_value_data: SignedValueData,
+}
+
+impl RecordData {
+    pub fn new(signed_value_data: SignedValueData) -> Self {
+        Self { signed_value_data }
+    }
+    pub fn signed_value_data(&self) -> &SignedValueData {
+        &self.signed_value_data
+    }
+    pub fn total_size(&self) -> usize {
+        mem::size_of::<RecordData>() + self.signed_value_data.value_data().data().len()
+    }
+}
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index b5cb4ae4..6bbb125d 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -286,7 +286,7 @@ impl RecordStore {
         &mut self,
         key: TypedKey,
         subkey: ValueSubkey,
-    ) -> Result<Option<RecordData>, VeilidAPIError> {
+    ) -> Result<Option<SignedValueData>, VeilidAPIError> {
         // record from index
         let rtk = RecordTableKey { key };
         let subkey_count = {
@@ -314,7 +314,7 @@ impl RecordStore {
         // If subkey exists in subkey cache, use that
         let stk = SubkeyTableKey { key, subkey };
         if let Some(record_data) = self.subkey_cache.get_mut(&stk) {
-            let out = record_data.clone();
+            let out = record_data.signed_value_data().clone();
 
             return Ok(Some(out));
         }
@@ -323,7 +323,7 @@ impl RecordStore {
             .load_rkyv::<RecordData>(0, &stk.bytes())
             .map_err(VeilidAPIError::internal)?
         {
-            let out = record_data.clone();
+            let out = record_data.signed_value_data().clone();
 
             // Add to cache, do nothing with lru out
             self.add_to_subkey_cache(stk, record_data);
@@ -338,10 +338,10 @@ impl RecordStore {
         &mut self,
         key: TypedKey,
         subkey: ValueSubkey,
-        record_data: RecordData,
+        signed_value_data: SignedValueData,
     ) -> Result<(), VeilidAPIError> {
         // Check size limit for data
-        if record_data.value_data.data().len() > self.limits.max_subkey_size {
+        if signed_value_data.value_data().data().len() > self.limits.max_subkey_size {
             return Err(VeilidAPIError::generic("record subkey too large"));
         }
 
@@ -388,6 +388,9 @@ impl RecordStore {
             }
         }
 
+        // Make new record data
+        let record_data = RecordData::new(signed_value_data);
+
         // Check new total record size
         let new_record_data_size = record_data.total_size();
         let new_total_size = total_size + new_record_data_size - prior_record_data_size;
diff --git a/veilid-core/src/storage_manager/signed_value_data.rs b/veilid-core/src/storage_manager/signed_value_data.rs
new file mode 100644
index 00000000..5ca2acba
--- /dev/null
+++ b/veilid-core/src/storage_manager/signed_value_data.rs
@@ -0,0 +1,92 @@
+use super::*;
+use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
+use serde::*;
+
+/////////////////////////////////////////////////////////////////////////////////////////////////////
+///
+
+#[derive(
+    Clone,
+    Debug,
+    PartialOrd,
+    PartialEq,
+    Eq,
+    Ord,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct SignedValueData {
+    value_data: ValueData,
+    signature: Signature,
+}
+impl SignedValueData {
+    pub fn new(
+        value_data: ValueData,
+        owner: PublicKey,
+        subkey: ValueSubkey,
+        signature: Signature,
+        vcrypto: CryptoSystemVersion,
+    ) -> Result<Self, VeilidAPIError> {
+        let node_info_bytes = Self::make_signature_bytes(&value_data, &owner, subkey)?;
+
+        // validate signature
+        vcrypto.verify(&value_data.writer(), &node_info_bytes, &signature)?;
+        Ok(Self {
+            value_data,
+            signature,
+        })
+    }
+
+    pub fn make_signature(
+        value_data: ValueData,
+        owner: PublicKey,
+        subkey: ValueSubkey,
+        vcrypto: CryptoSystemVersion,
+        writer_secret: SecretKey,
+    ) -> Result<Self, VeilidAPIError> {
+        let node_info_bytes = Self::make_signature_bytes(&value_data, &owner, subkey)?;
+
+        // create signature
+        let signature = vcrypto.sign(&value_data.writer(), &writer_secret, &node_info_bytes)?;
+        Ok(Self {
+            value_data,
+            signature,
+        })
+    }
+
+    pub fn value_data(&self) -> &ValueData {
+        &self.value_data
+    }
+
+    pub fn signature(&self) -> &Signature {
+        &self.signature
+    }
+
+    pub fn total_size(&self) -> usize {
+        (mem::size_of::<Self>() - mem::size_of::<ValueData>()) + self.value_data.total_size()
+    }
+
+    fn make_signature_bytes(
+        value_data: &ValueData,
+        owner: &PublicKey,
+        subkey: ValueSubkey,
+    ) -> Result<Vec<u8>, VeilidAPIError> {
+        let mut node_info_bytes =
+            Vec::with_capacity(PUBLIC_KEY_LENGTH + 4 + 4 + value_data.data().len());
+
+        // Add owner to signature
+        node_info_bytes.extend_from_slice(&owner.bytes);
+        // Add subkey to signature
+        node_info_bytes.extend_from_slice(&subkey.to_le_bytes());
+        // Add sequence number to signature
+        node_info_bytes.extend_from_slice(&value_data.seq().to_le_bytes());
+        // Add data to signature
+        node_info_bytes.extend_from_slice(value_data.data());
+
+        Ok(node_info_bytes)
+    }
+}
diff --git a/veilid-core/src/storage_manager/signed_value_descriptor.rs b/veilid-core/src/storage_manager/signed_value_descriptor.rs
new file mode 100644
index 00000000..84442bc4
--- /dev/null
+++ b/veilid-core/src/storage_manager/signed_value_descriptor.rs
@@ -0,0 +1,78 @@
+use super::*;
+use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
+use serde::*;
+
+/////////////////////////////////////////////////////////////////////////////////////////////////////
+///
+
+#[derive(
+    Clone,
+    Debug,
+    PartialOrd,
+    PartialEq,
+    Eq,
+    Ord,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct SignedValueDescriptor {
+    owner: PublicKey,
+    schema_data: Vec<u8>,
+    signature: Signature,
+}
+impl SignedValueDescriptor {
+    pub fn new(
+        owner: PublicKey,
+        schema_data: Vec<u8>,
+        signature: Signature,
+        vcrypto: CryptoSystemVersion,
+    ) -> Result<Self, VeilidAPIError> {
+        // validate signature
+        vcrypto.verify(&owner, &schema_data, &signature)?;
+
+        Ok(Self {
+            owner,
+            schema_data,
+            signature,
+        })
+    }
+
+    pub fn owner(&self) -> &PublicKey {
+        &self.owner
+    }
+
+    pub fn schema_data(&self) -> &[u8] {
+        &self.schema_data
+    }
+
+    pub fn schema(&self) -> Result<DHTSchema, VeilidAPIError> {
+        DHTSchema::try_from(self.schema_data.as_slice())
+    }
+
+    pub fn signature(&self) -> &Signature {
+        &self.signature
+    }
+
+    pub fn make_signature(
+        owner: PublicKey,
+        schema_data: Vec<u8>,
+        vcrypto: CryptoSystemVersion,
+        owner_secret: SecretKey,
+    ) -> Result<Self, VeilidAPIError> {
+        // create signature
+        let signature = vcrypto.sign(&owner, &owner_secret, &schema_data)?;
+        Ok(Self {
+            owner,
+            schema_data,
+            signature,
+        })
+    }
+
+    pub fn total_size(&self) -> usize {
+        mem::size_of::<Self>() + self.schema_data.len()
+    }
+}
diff --git a/veilid-core/src/storage_manager/value_detail.rs b/veilid-core/src/storage_manager/value_detail.rs
new file mode 100644
index 00000000..85135f10
--- /dev/null
+++ b/veilid-core/src/storage_manager/value_detail.rs
@@ -0,0 +1,43 @@
+use super::*;
+use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
+use serde::*;
+
+/////////////////////////////////////////////////////////////////////////////////////////////////////
+///
+
+#[derive(
+    Clone,
+    Debug,
+    PartialOrd,
+    PartialEq,
+    Eq,
+    Ord,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct ValueDetail {
+    signed_value_data: SignedValueData,
+    descriptor: Option<SignedValueDescriptor>,
+}
+
+impl ValueDetail {
+    pub fn new(
+        signed_value_data: SignedValueData,
+        descriptor: Option<SignedValueDescriptor>,
+    ) -> Self {
+        Self {
+            signed_value_data,
+            descriptor,
+        }
+    }
+    pub fn signed_value_data(&self) -> &SignedValueData {
+        &self.signed_value_data
+    }
+    pub fn descriptor(&self) -> Option<&SignedValueDescriptor> {
+        self.descriptor.as_ref()
+    }
+}
diff --git a/veilid-core/src/supplier_table.rs b/veilid-core/src/supplier_table.rs
deleted file mode 100644
index e69de29b..00000000
diff --git a/veilid-core/src/tests/common/test_veilid_core.rs b/veilid-core/src/tests/common/test_veilid_core.rs
index eab1dde3..e1f20f3e 100644
--- a/veilid-core/src/tests/common/test_veilid_core.rs
+++ b/veilid-core/src/tests/common/test_veilid_core.rs
@@ -42,169 +42,7 @@ pub async fn test_attach_detach() {
     api.shutdown().await;
 }
 
-pub async fn test_signed_node_info() {
-    info!("--- test_signed_node_info ---");
-
-    let (update_callback, config_callback) = setup_veilid_core();
-    let api = api_startup(update_callback, config_callback)
-        .await
-        .expect("startup failed");
-
-    let crypto = api.crypto().unwrap();
-    for ck in VALID_CRYPTO_KINDS {
-        let vcrypto = crypto.get(ck).unwrap();
-
-        // Test direct
-        let node_info = NodeInfo {
-            network_class: NetworkClass::InboundCapable,
-            outbound_protocols: ProtocolTypeSet::all(),
-            address_types: AddressTypeSet::all(),
-            envelope_support: VALID_ENVELOPE_VERSIONS.to_vec(),
-            crypto_support: VALID_CRYPTO_KINDS.to_vec(),
-            dial_info_detail_list: vec![DialInfoDetail {
-                class: DialInfoClass::Mapped,
-                dial_info: DialInfo::udp(SocketAddress::default()),
-            }],
-        };
-
-        // Test correct validation
-        let keypair = vcrypto.generate_keypair();
-        let sni = SignedDirectNodeInfo::make_signatures(
-            crypto.clone(),
-            vec![TypedKeyPair::new(ck, keypair)],
-            node_info.clone(),
-        )
-        .unwrap();
-        let mut tks: TypedKeySet = TypedKey::new(ck, keypair.key).into();
-        let oldtkslen = tks.len();
-        let _ = SignedDirectNodeInfo::new(
-            crypto.clone(),
-            &mut tks,
-            node_info.clone(),
-            sni.timestamp,
-            sni.signatures.clone(),
-        )
-        .unwrap();
-        assert_eq!(tks.len(), oldtkslen);
-        assert_eq!(tks.len(), sni.signatures.len());
-
-        // Test incorrect validation
-        let keypair1 = vcrypto.generate_keypair();
-        let mut tks1: TypedKeySet = TypedKey::new(ck, keypair1.key).into();
-        let oldtks1len = tks1.len();
-        let _ = SignedDirectNodeInfo::new(
-            crypto.clone(),
-            &mut tks1,
-            node_info.clone(),
-            sni.timestamp,
-            sni.signatures.clone(),
-        )
-        .unwrap_err();
-        assert_eq!(tks1.len(), oldtks1len);
-        assert_eq!(tks1.len(), sni.signatures.len());
-
-        // Test unsupported cryptosystem validation
-        let fake_crypto_kind: CryptoKind = FourCC::from([0, 1, 2, 3]);
-        let mut tksfake: TypedKeySet = TypedKey::new(fake_crypto_kind, PublicKey::default()).into();
-        let mut sigsfake = sni.signatures.clone();
-        sigsfake.push(TypedSignature::new(fake_crypto_kind, Signature::default()));
-        tksfake.add(TypedKey::new(ck, keypair.key));
-        let sdnifake = SignedDirectNodeInfo::new(
-            crypto.clone(),
-            &mut tksfake,
-            node_info.clone(),
-            sni.timestamp,
-            sigsfake.clone(),
-        )
-        .unwrap();
-        assert_eq!(tksfake.len(), 1);
-        assert_eq!(sdnifake.signatures.len(), sigsfake.len());
-
-        // Test relayed
-        let node_info2 = NodeInfo {
-            network_class: NetworkClass::OutboundOnly,
-            outbound_protocols: ProtocolTypeSet::all(),
-            address_types: AddressTypeSet::all(),
-            envelope_support: VALID_ENVELOPE_VERSIONS.to_vec(),
-            crypto_support: VALID_CRYPTO_KINDS.to_vec(),
-            dial_info_detail_list: vec![DialInfoDetail {
-                class: DialInfoClass::Blocked,
-                dial_info: DialInfo::udp(SocketAddress::default()),
-            }],
-        };
-
-        // Test correct validation
-        let keypair2 = vcrypto.generate_keypair();
-        let mut tks2: TypedKeySet = TypedKey::new(ck, keypair2.key).into();
-        let oldtks2len = tks2.len();
-
-        let sni2 = SignedRelayedNodeInfo::make_signatures(
-            crypto.clone(),
-            vec![TypedKeyPair::new(ck, keypair2)],
-            node_info2.clone(),
-            tks.clone(),
-            sni.clone(),
-        )
-        .unwrap();
-        let _ = SignedRelayedNodeInfo::new(
-            crypto.clone(),
-            &mut tks2,
-            node_info2.clone(),
-            tks.clone(),
-            sni.clone(),
-            sni2.timestamp,
-            sni2.signatures.clone(),
-        )
-        .unwrap();
-
-        assert_eq!(tks2.len(), oldtks2len);
-        assert_eq!(tks2.len(), sni2.signatures.len());
-
-        // Test incorrect validation
-        let keypair3 = vcrypto.generate_keypair();
-        let mut tks3: TypedKeySet = TypedKey::new(ck, keypair3.key).into();
-        let oldtks3len = tks3.len();
-
-        let _ = SignedRelayedNodeInfo::new(
-            crypto.clone(),
-            &mut tks3,
-            node_info2.clone(),
-            tks.clone(),
-            sni.clone(),
-            sni2.timestamp,
-            sni2.signatures.clone(),
-        )
-        .unwrap_err();
-
-        assert_eq!(tks3.len(), oldtks3len);
-        assert_eq!(tks3.len(), sni2.signatures.len());
-
-        // Test unsupported cryptosystem validation
-        let fake_crypto_kind: CryptoKind = FourCC::from([0, 1, 2, 3]);
-        let mut tksfake3: TypedKeySet =
-            TypedKey::new(fake_crypto_kind, PublicKey::default()).into();
-        let mut sigsfake3 = sni2.signatures.clone();
-        sigsfake3.push(TypedSignature::new(fake_crypto_kind, Signature::default()));
-        tksfake3.add(TypedKey::new(ck, keypair2.key));
-        let srnifake = SignedRelayedNodeInfo::new(
-            crypto.clone(),
-            &mut tksfake3,
-            node_info2.clone(),
-            tks.clone(),
-            sni.clone(),
-            sni2.timestamp,
-            sigsfake3.clone(),
-        )
-        .unwrap();
-        assert_eq!(tksfake3.len(), 1);
-        assert_eq!(srnifake.signatures.len(), sigsfake3.len());
-    }
-
-    api.shutdown().await;
-}
-
 pub async fn test_all() {
     test_startup_shutdown().await;
     test_attach_detach().await;
-    test_signed_node_info().await;
 }
diff --git a/veilid-core/src/tests/native/mod.rs b/veilid-core/src/tests/native/mod.rs
index ccb7d420..3dde78c7 100644
--- a/veilid-core/src/tests/native/mod.rs
+++ b/veilid-core/src/tests/native/mod.rs
@@ -19,6 +19,8 @@ pub async fn run_all_tests() {
     test_veilid_config::test_all().await;
     info!("TEST: test_connection_table");
     test_connection_table::test_all().await;
+    info!("TEST: test_signed_node_info");
+    test_signed_node_info::test_all().await;
     info!("TEST: test_table_store");
     test_table_store::test_all().await;
     info!("TEST: test_protected_store");
@@ -116,6 +118,15 @@ cfg_if! {
             })
         }
 
+        #[test]
+        #[serial]
+        fn run_test_signed_node_info() {
+            setup();
+            block_on(async {
+                test_signed_node_info::test_all().await;
+            })
+        }
+
         #[test]
         #[serial]
         fn run_test_table_store() {
diff --git a/veilid-core/src/veilid_api/debug.rs b/veilid-core/src/veilid_api/debug.rs
index c744fa3b..2b7c3c49 100644
--- a/veilid-core/src/veilid_api/debug.rs
+++ b/veilid-core/src/veilid_api/debug.rs
@@ -3,6 +3,7 @@
 
 use super::*;
 use data_encoding::BASE64URL_NOPAD;
+use network_manager::*;
 use routing_table::*;
 
 #[derive(Default, Debug)]
diff --git a/veilid-core/src/veilid_api/mod.rs b/veilid-core/src/veilid_api/mod.rs
index 78c43f3e..766b89f4 100644
--- a/veilid-core/src/veilid_api/mod.rs
+++ b/veilid-core/src/veilid_api/mod.rs
@@ -1,6 +1,5 @@
 #![allow(dead_code)]
 
-mod aligned_u64;
 mod api;
 mod debug;
 mod error;
@@ -8,7 +7,6 @@ mod routing_context;
 mod serialize_helpers;
 mod types;
 
-pub use aligned_u64::*;
 pub use api::*;
 pub use debug::*;
 pub use error::*;
@@ -31,7 +29,7 @@ use core::fmt;
 use core_context::{api_shutdown, VeilidCoreContext};
 use enumset::*;
 use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
-use routing_table::{RouteSpecStore, RoutingTable};
+use routing_table::{Direction, RouteSpecStore, RoutingTable};
 use rpc_processor::*;
 use serde::*;
 use storage_manager::StorageManager;
diff --git a/veilid-core/src/veilid_api/types.rs b/veilid-core/src/veilid_api/types.rs
deleted file mode 100644
index 2124d46e..00000000
--- a/veilid-core/src/veilid_api/types.rs
+++ /dev/null
@@ -1,2752 +0,0 @@
-use super::*;
-
-/////////////////////////////////////////////////////////////////////////////////////////////////////
-
-/// Microseconds since epoch
-pub type Timestamp = AlignedU64;
-pub fn get_aligned_timestamp() -> Timestamp {
-    get_timestamp().into()
-}
-/// Microseconds duration
-pub type TimestampDuration = AlignedU64;
-/// Request/Response matching id
-pub type OperationId = AlignedU64;
-/// Number of bytes
-pub type ByteCount = AlignedU64;
-/// Tunnel identifier
-pub type TunnelId = AlignedU64;
-/// Value subkey
-pub type ValueSubkey = u32;
-/// Value subkey range
-pub type ValueSubkeyRange = (u32, u32);
-/// Value sequence number
-pub type ValueSeqNum = u32;
-
-/// FOURCC code
-#[derive(
-    Copy,
-    Default,
-    Clone,
-    Hash,
-    PartialOrd,
-    Ord,
-    PartialEq,
-    Eq,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes, PartialOrd, Ord, PartialEq, Eq, Hash))]
-pub struct FourCC(pub [u8; 4]);
-
-impl From<[u8; 4]> for FourCC {
-    fn from(b: [u8; 4]) -> Self {
-        Self(b)
-    }
-}
-impl TryFrom<&[u8]> for FourCC {
-    type Error = VeilidAPIError;
-    fn try_from(b: &[u8]) -> Result<Self, Self::Error> {
-        Ok(Self(b.try_into().map_err(VeilidAPIError::generic)?))
-    }
-}
-
-impl fmt::Display for FourCC {
-    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> Result<(), fmt::Error> {
-        write!(f, "{}", String::from_utf8_lossy(&self.0))
-    }
-}
-impl fmt::Debug for FourCC {
-    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> Result<(), fmt::Error> {
-        write!(f, "{}", String::from_utf8_lossy(&self.0))
-    }
-}
-
-impl FromStr for FourCC {
-    type Err = VeilidAPIError;
-    fn from_str(s: &str) -> Result<Self, Self::Err> {
-        Ok(Self(
-            s.as_bytes().try_into().map_err(VeilidAPIError::generic)?,
-        ))
-    }
-}
-
-/// Log level for VeilidCore
-#[derive(
-    Debug,
-    Clone,
-    PartialEq,
-    Eq,
-    PartialOrd,
-    Ord,
-    Copy,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum VeilidLogLevel {
-    Error = 1,
-    Warn,
-    Info,
-    Debug,
-    Trace,
-}
-
-impl VeilidLogLevel {
-    pub fn from_tracing_level(level: tracing::Level) -> VeilidLogLevel {
-        match level {
-            tracing::Level::ERROR => VeilidLogLevel::Error,
-            tracing::Level::WARN => VeilidLogLevel::Warn,
-            tracing::Level::INFO => VeilidLogLevel::Info,
-            tracing::Level::DEBUG => VeilidLogLevel::Debug,
-            tracing::Level::TRACE => VeilidLogLevel::Trace,
-        }
-    }
-    pub fn from_log_level(level: log::Level) -> VeilidLogLevel {
-        match level {
-            log::Level::Error => VeilidLogLevel::Error,
-            log::Level::Warn => VeilidLogLevel::Warn,
-            log::Level::Info => VeilidLogLevel::Info,
-            log::Level::Debug => VeilidLogLevel::Debug,
-            log::Level::Trace => VeilidLogLevel::Trace,
-        }
-    }
-    pub fn to_tracing_level(&self) -> tracing::Level {
-        match self {
-            Self::Error => tracing::Level::ERROR,
-            Self::Warn => tracing::Level::WARN,
-            Self::Info => tracing::Level::INFO,
-            Self::Debug => tracing::Level::DEBUG,
-            Self::Trace => tracing::Level::TRACE,
-        }
-    }
-    pub fn to_log_level(&self) -> log::Level {
-        match self {
-            Self::Error => log::Level::Error,
-            Self::Warn => log::Level::Warn,
-            Self::Info => log::Level::Info,
-            Self::Debug => log::Level::Debug,
-            Self::Trace => log::Level::Trace,
-        }
-    }
-}
-
-impl fmt::Display for VeilidLogLevel {
-    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> Result<(), fmt::Error> {
-        let text = match self {
-            Self::Error => "ERROR",
-            Self::Warn => "WARN",
-            Self::Info => "INFO",
-            Self::Debug => "DEBUG",
-            Self::Trace => "TRACE",
-        };
-        write!(f, "{}", text)
-    }
-}
-
-/// A VeilidCore log message with optional backtrace
-#[derive(
-    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct VeilidLog {
-    pub log_level: VeilidLogLevel,
-    pub message: String,
-    pub backtrace: Option<String>,
-}
-
-/// Direct statement blob passed to hosting application for processing
-#[derive(
-    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct VeilidAppMessage {
-    /// Some(sender) if the message was sent directly, None if received via a private/safety route
-    #[serde(with = "opt_json_as_string")]
-    pub sender: Option<PublicKey>,
-    /// The content of the message to deliver to the application
-    #[serde(with = "json_as_base64")]
-    pub message: Vec<u8>,
-}
-
-/// Direct question blob passed to hosting application for processing to send an eventual AppReply
-#[derive(
-    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct VeilidAppCall {
-    /// Some(sender) if the request was sent directly, None if received via a private/safety route
-    #[serde(with = "opt_json_as_string")]
-    pub sender: Option<PublicKey>,
-    /// The content of the request to deliver to the application
-    #[serde(with = "json_as_base64")]
-    pub message: Vec<u8>,
-    /// The id to reply to
-    #[serde(with = "json_as_string")]
-    pub id: OperationId,
-}
-
-/// Attachment abstraction for network 'signal strength'
-#[derive(
-    Debug,
-    PartialEq,
-    Eq,
-    Clone,
-    Copy,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum AttachmentState {
-    Detached,
-    Attaching,
-    AttachedWeak,
-    AttachedGood,
-    AttachedStrong,
-    FullyAttached,
-    OverAttached,
-    Detaching,
-}
-
-impl fmt::Display for AttachmentState {
-    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> Result<(), fmt::Error> {
-        let out = match self {
-            AttachmentState::Attaching => "attaching".to_owned(),
-            AttachmentState::AttachedWeak => "attached_weak".to_owned(),
-            AttachmentState::AttachedGood => "attached_good".to_owned(),
-            AttachmentState::AttachedStrong => "attached_strong".to_owned(),
-            AttachmentState::FullyAttached => "fully_attached".to_owned(),
-            AttachmentState::OverAttached => "over_attached".to_owned(),
-            AttachmentState::Detaching => "detaching".to_owned(),
-            AttachmentState::Detached => "detached".to_owned(),
-        };
-        write!(f, "{}", out)
-    }
-}
-
-impl TryFrom<String> for AttachmentState {
-    type Error = ();
-
-    fn try_from(s: String) -> Result<Self, Self::Error> {
-        Ok(match s.as_str() {
-            "attaching" => AttachmentState::Attaching,
-            "attached_weak" => AttachmentState::AttachedWeak,
-            "attached_good" => AttachmentState::AttachedGood,
-            "attached_strong" => AttachmentState::AttachedStrong,
-            "fully_attached" => AttachmentState::FullyAttached,
-            "over_attached" => AttachmentState::OverAttached,
-            "detaching" => AttachmentState::Detaching,
-            "detached" => AttachmentState::Detached,
-            _ => return Err(()),
-        })
-    }
-}
-
-#[derive(
-    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct VeilidStateAttachment {
-    pub state: AttachmentState,
-    pub public_internet_ready: bool,
-    pub local_network_ready: bool,
-}
-
-#[derive(
-    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct PeerTableData {
-    pub node_ids: Vec<String>,
-    pub peer_address: PeerAddress,
-    pub peer_stats: PeerStats,
-}
-
-#[derive(
-    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct VeilidStateNetwork {
-    pub started: bool,
-    #[serde(with = "json_as_string")]
-    pub bps_down: ByteCount,
-    #[serde(with = "json_as_string")]
-    pub bps_up: ByteCount,
-    pub peers: Vec<PeerTableData>,
-}
-
-#[derive(
-    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct VeilidStateRoute {
-    pub dead_routes: Vec<RouteId>,
-    pub dead_remote_routes: Vec<RouteId>,
-}
-
-#[derive(
-    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct VeilidStateConfig {
-    pub config: VeilidConfigInner,
-}
-
-#[derive(
-    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct VeilidValueChange {
-    key: TypedKey,
-    subkeys: Vec<ValueSubkey>,
-    count: u32,
-    value: ValueData,
-}
-
-#[derive(Debug, Clone, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-#[serde(tag = "kind")]
-pub enum VeilidUpdate {
-    Log(VeilidLog),
-    AppMessage(VeilidAppMessage),
-    AppCall(VeilidAppCall),
-    Attachment(VeilidStateAttachment),
-    Network(VeilidStateNetwork),
-    Config(VeilidStateConfig),
-    Route(VeilidStateRoute),
-    ValueChange(VeilidValueChange),
-    Shutdown,
-}
-
-#[derive(Debug, Clone, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct VeilidState {
-    pub attachment: VeilidStateAttachment,
-    pub network: VeilidStateNetwork,
-    pub config: VeilidStateConfig,
-}
-
-/////////////////////////////////////////////////////////////////////////////////////////////////////
-///
-
-#[derive(
-    Clone,
-    Debug,
-    Default,
-    PartialOrd,
-    PartialEq,
-    Eq,
-    Ord,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct ValueData {
-    seq: ValueSeqNum,
-    data: Vec<u8>,
-    writer: PublicKey,
-}
-impl ValueData {
-    pub const MAX_LEN: usize = 32768;
-
-    pub fn new(data: Vec<u8>, writer: PublicKey) -> Self {
-        assert!(data.len() <= Self::MAX_LEN);
-        Self {
-            seq: 0,
-            data,
-            writer,
-        }
-    }
-    pub fn new_with_seq(seq: ValueSeqNum, data: Vec<u8>, writer: PublicKey) -> Self {
-        assert!(data.len() <= Self::MAX_LEN);
-        Self { seq, data, writer }
-    }
-
-    pub fn seq(&self) -> ValueSeqNum {
-        self.seq
-    }
-
-    pub fn writer(&self) -> PublicKey {
-        self.writer
-    }
-
-    pub fn data(&self) -> &[u8] {
-        &self.data
-    }
-
-    pub fn with_data_mut<F, R>(&mut self, f: F) -> R
-    where
-        F: FnOnce(&mut Vec<u8>) -> R,
-    {
-        let out = f(&mut self.data);
-        assert!(self.data.len() <= Self::MAX_LEN);
-        self.seq += 1;
-        out
-    }
-}
-
-/////////////////////////////////////////////////////////////////////////////////////////////////////
-
-// Keep member order appropriate for sorting < preference
-#[derive(
-    Copy,
-    Clone,
-    Debug,
-    Eq,
-    PartialEq,
-    Ord,
-    PartialOrd,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum DialInfoClass {
-    Direct = 0, // D = Directly reachable with public IP and no firewall, with statically configured port
-    Mapped = 1, // M = Directly reachable with via portmap behind any NAT or firewalled with dynamically negotiated port
-    FullConeNAT = 2, // F = Directly reachable device without portmap behind full-cone NAT
-    Blocked = 3, // B = Inbound blocked at firewall but may hole punch with public address
-    AddressRestrictedNAT = 4, // A = Device without portmap behind address-only restricted NAT
-    PortRestrictedNAT = 5, // P = Device without portmap behind address-and-port restricted NAT
-}
-
-impl DialInfoClass {
-    // Is a signal required to do an inbound hole-punch?
-    pub fn requires_signal(&self) -> bool {
-        matches!(
-            self,
-            Self::Blocked | Self::AddressRestrictedNAT | Self::PortRestrictedNAT
-        )
-    }
-
-    // Does a relay node need to be allocated for this dial info?
-    // For full cone NAT, the relay itself may not be used but the keepalive sent to it
-    // is required to keep the NAT mapping valid in the router state table
-    pub fn requires_relay(&self) -> bool {
-        matches!(
-            self,
-            Self::FullConeNAT
-                | Self::Blocked
-                | Self::AddressRestrictedNAT
-                | Self::PortRestrictedNAT
-        )
-    }
-}
-
-// Ordering here matters, >= is used to check strength of sequencing requirement
-#[derive(
-    Copy,
-    Clone,
-    Debug,
-    PartialEq,
-    Eq,
-    PartialOrd,
-    Ord,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum Sequencing {
-    NoPreference,
-    PreferOrdered,
-    EnsureOrdered,
-}
-
-impl Default for Sequencing {
-    fn default() -> Self {
-        Self::NoPreference
-    }
-}
-
-// Ordering here matters, >= is used to check strength of stability requirement
-#[derive(
-    Copy,
-    Clone,
-    Debug,
-    PartialEq,
-    Eq,
-    PartialOrd,
-    Ord,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum Stability {
-    LowLatency,
-    Reliable,
-}
-
-impl Default for Stability {
-    fn default() -> Self {
-        Self::LowLatency
-    }
-}
-
-/// The choice of safety route to include in compiled routes
-#[derive(
-    Copy,
-    Clone,
-    Debug,
-    PartialEq,
-    Eq,
-    PartialOrd,
-    Ord,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum SafetySelection {
-    /// Don't use a safety route, only specify the sequencing preference
-    Unsafe(Sequencing),
-    /// Use a safety route and parameters specified by a SafetySpec
-    Safe(SafetySpec),
-}
-
-impl SafetySelection {
-    pub fn get_sequencing(&self) -> Sequencing {
-        match self {
-            SafetySelection::Unsafe(seq) => *seq,
-            SafetySelection::Safe(ss) => ss.sequencing,
-        }
-    }
-}
-
-impl Default for SafetySelection {
-    fn default() -> Self {
-        Self::Unsafe(Sequencing::NoPreference)
-    }
-}
-
-/// Options for safety routes (sender privacy)
-#[derive(
-    Copy,
-    Clone,
-    Debug,
-    PartialEq,
-    Eq,
-    PartialOrd,
-    Ord,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct SafetySpec {
-    /// preferred safety route set id if it still exists
-    pub preferred_route: Option<RouteId>,
-    /// must be greater than 0
-    pub hop_count: usize,
-    /// prefer reliability over speed
-    pub stability: Stability,
-    /// prefer connection-oriented sequenced protocols
-    pub sequencing: Sequencing,
-}
-
-// Keep member order appropriate for sorting < preference
-#[derive(
-    Debug,
-    Clone,
-    PartialEq,
-    PartialOrd,
-    Ord,
-    Eq,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct DialInfoDetail {
-    pub class: DialInfoClass,
-    pub dial_info: DialInfo,
-}
-
-impl MatchesDialInfoFilter for DialInfoDetail {
-    fn matches_filter(&self, filter: &DialInfoFilter) -> bool {
-        self.dial_info.matches_filter(filter)
-    }
-}
-
-impl DialInfoDetail {
-    pub fn ordered_sequencing_sort(a: &DialInfoDetail, b: &DialInfoDetail) -> core::cmp::Ordering {
-        if a.class < b.class {
-            return core::cmp::Ordering::Less;
-        }
-        if a.class > b.class {
-            return core::cmp::Ordering::Greater;
-        }
-        DialInfo::ordered_sequencing_sort(&a.dial_info, &b.dial_info)
-    }
-    pub const NO_SORT: std::option::Option<
-        for<'r, 's> fn(
-            &'r veilid_api::DialInfoDetail,
-            &'s veilid_api::DialInfoDetail,
-        ) -> std::cmp::Ordering,
-    > = None::<fn(&DialInfoDetail, &DialInfoDetail) -> core::cmp::Ordering>;
-}
-
-#[derive(
-    Copy,
-    Clone,
-    Debug,
-    Eq,
-    PartialEq,
-    Ord,
-    PartialOrd,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum NetworkClass {
-    InboundCapable = 0, // I = Inbound capable without relay, may require signal
-    OutboundOnly = 1, // O = Outbound only, inbound relay required except with reverse connect signal
-    WebApp = 2,       // W = PWA, outbound relay is required in most cases
-    Invalid = 3,      // X = Invalid network class, we don't know how to reach this node
-}
-
-impl Default for NetworkClass {
-    fn default() -> Self {
-        Self::Invalid
-    }
-}
-
-impl NetworkClass {
-    // Should an outbound relay be kept available?
-    pub fn outbound_wants_relay(&self) -> bool {
-        matches!(self, Self::WebApp)
-    }
-}
-
-/// RoutingDomain-specific status for each node
-/// is returned by the StatusA call
-
-/// PublicInternet RoutingDomain Status
-#[derive(
-    Clone, Debug, Default, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct PublicInternetNodeStatus {
-    pub will_route: bool,
-    pub will_tunnel: bool,
-    pub will_signal: bool,
-    pub will_relay: bool,
-    pub will_validate_dial_info: bool,
-}
-
-#[derive(
-    Clone, Debug, Default, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct LocalNetworkNodeStatus {
-    pub will_relay: bool,
-    pub will_validate_dial_info: bool,
-}
-
-#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum NodeStatus {
-    PublicInternet(PublicInternetNodeStatus),
-    LocalNetwork(LocalNetworkNodeStatus),
-}
-
-impl NodeStatus {
-    pub fn will_route(&self) -> bool {
-        match self {
-            NodeStatus::PublicInternet(pi) => pi.will_route,
-            NodeStatus::LocalNetwork(_) => false,
-        }
-    }
-    pub fn will_tunnel(&self) -> bool {
-        match self {
-            NodeStatus::PublicInternet(pi) => pi.will_tunnel,
-            NodeStatus::LocalNetwork(_) => false,
-        }
-    }
-    pub fn will_signal(&self) -> bool {
-        match self {
-            NodeStatus::PublicInternet(pi) => pi.will_signal,
-            NodeStatus::LocalNetwork(_) => false,
-        }
-    }
-    pub fn will_relay(&self) -> bool {
-        match self {
-            NodeStatus::PublicInternet(pi) => pi.will_relay,
-            NodeStatus::LocalNetwork(ln) => ln.will_relay,
-        }
-    }
-    pub fn will_validate_dial_info(&self) -> bool {
-        match self {
-            NodeStatus::PublicInternet(pi) => pi.will_validate_dial_info,
-            NodeStatus::LocalNetwork(ln) => ln.will_validate_dial_info,
-        }
-    }
-}
-
-#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct NodeInfo {
-    pub network_class: NetworkClass,
-    #[with(RkyvEnumSet)]
-    pub outbound_protocols: ProtocolTypeSet,
-    #[with(RkyvEnumSet)]
-    pub address_types: AddressTypeSet,
-    pub envelope_support: Vec<u8>,
-    pub crypto_support: Vec<CryptoKind>,
-    pub dial_info_detail_list: Vec<DialInfoDetail>,
-}
-
-impl NodeInfo {
-    pub fn first_filtered_dial_info_detail<S, F>(
-        &self,
-        sort: Option<S>,
-        filter: F,
-    ) -> Option<DialInfoDetail>
-    where
-        S: Fn(&DialInfoDetail, &DialInfoDetail) -> std::cmp::Ordering,
-        F: Fn(&DialInfoDetail) -> bool,
-    {
-        if let Some(sort) = sort {
-            let mut dids = self.dial_info_detail_list.clone();
-            dids.sort_by(sort);
-            for did in dids {
-                if filter(&did) {
-                    return Some(did);
-                }
-            }
-        } else {
-            for did in &self.dial_info_detail_list {
-                if filter(did) {
-                    return Some(did.clone());
-                }
-            }
-        };
-        None
-    }
-
-    pub fn all_filtered_dial_info_details<S, F>(
-        &self,
-        sort: Option<S>,
-        filter: F,
-    ) -> Vec<DialInfoDetail>
-    where
-        S: Fn(&DialInfoDetail, &DialInfoDetail) -> std::cmp::Ordering,
-        F: Fn(&DialInfoDetail) -> bool,
-    {
-        let mut dial_info_detail_list = Vec::new();
-
-        if let Some(sort) = sort {
-            let mut dids = self.dial_info_detail_list.clone();
-            dids.sort_by(sort);
-            for did in dids {
-                if filter(&did) {
-                    dial_info_detail_list.push(did);
-                }
-            }
-        } else {
-            for did in &self.dial_info_detail_list {
-                if filter(did) {
-                    dial_info_detail_list.push(did.clone());
-                }
-            }
-        };
-        dial_info_detail_list
-    }
-
-    /// Does this node has some dial info
-    pub fn has_dial_info(&self) -> bool {
-        !self.dial_info_detail_list.is_empty()
-    }
-
-    /// Is some relay required either for signal or inbound relay or outbound relay?
-    pub fn requires_relay(&self) -> bool {
-        match self.network_class {
-            NetworkClass::InboundCapable => {
-                for did in &self.dial_info_detail_list {
-                    if did.class.requires_relay() {
-                        return true;
-                    }
-                }
-            }
-            NetworkClass::OutboundOnly => {
-                return true;
-            }
-            NetworkClass::WebApp => {
-                return true;
-            }
-            NetworkClass::Invalid => {}
-        }
-        false
-    }
-
-    /// Can this node assist with signalling? Yes but only if it doesn't require signalling, itself.
-    pub fn can_signal(&self) -> bool {
-        // Must be inbound capable
-        if !matches!(self.network_class, NetworkClass::InboundCapable) {
-            return false;
-        }
-        // Do any of our dial info require signalling? if so, we can't offer signalling
-        for did in &self.dial_info_detail_list {
-            if did.class.requires_signal() {
-                return false;
-            }
-        }
-        true
-    }
-
-    /// Can this node relay be an inbound relay?
-    pub fn can_inbound_relay(&self) -> bool {
-        // For now this is the same
-        self.can_signal()
-    }
-
-    /// Is this node capable of validating dial info
-    pub fn can_validate_dial_info(&self) -> bool {
-        // For now this is the same
-        self.can_signal()
-    }
-}
-
-#[allow(clippy::derive_hash_xor_eq)]
-#[derive(
-    Debug,
-    PartialOrd,
-    Ord,
-    Hash,
-    EnumSetType,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[enumset(repr = "u8")]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum Direction {
-    Inbound,
-    Outbound,
-}
-pub type DirectionSet = EnumSet<Direction>;
-
-// Keep member order appropriate for sorting < preference
-// Must match DialInfo order
-#[allow(clippy::derive_hash_xor_eq)]
-#[derive(
-    Debug,
-    PartialOrd,
-    Ord,
-    Hash,
-    EnumSetType,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[enumset(repr = "u8")]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum LowLevelProtocolType {
-    UDP,
-    TCP,
-}
-
-impl LowLevelProtocolType {
-    pub fn is_connection_oriented(&self) -> bool {
-        matches!(self, LowLevelProtocolType::TCP)
-    }
-}
-pub type LowLevelProtocolTypeSet = EnumSet<LowLevelProtocolType>;
-
-// Keep member order appropriate for sorting < preference
-// Must match DialInfo order
-#[allow(clippy::derive_hash_xor_eq)]
-#[derive(
-    Debug,
-    PartialOrd,
-    Ord,
-    Hash,
-    EnumSetType,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[enumset(repr = "u8")]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum ProtocolType {
-    UDP,
-    TCP,
-    WS,
-    WSS,
-}
-
-impl ProtocolType {
-    pub fn is_connection_oriented(&self) -> bool {
-        matches!(
-            self,
-            ProtocolType::TCP | ProtocolType::WS | ProtocolType::WSS
-        )
-    }
-    pub fn low_level_protocol_type(&self) -> LowLevelProtocolType {
-        match self {
-            ProtocolType::UDP => LowLevelProtocolType::UDP,
-            ProtocolType::TCP | ProtocolType::WS | ProtocolType::WSS => LowLevelProtocolType::TCP,
-        }
-    }
-    pub fn sort_order(&self, sequencing: Sequencing) -> usize {
-        match self {
-            ProtocolType::UDP => {
-                if sequencing != Sequencing::NoPreference {
-                    3
-                } else {
-                    0
-                }
-            }
-            ProtocolType::TCP => {
-                if sequencing != Sequencing::NoPreference {
-                    0
-                } else {
-                    1
-                }
-            }
-            ProtocolType::WS => {
-                if sequencing != Sequencing::NoPreference {
-                    1
-                } else {
-                    2
-                }
-            }
-            ProtocolType::WSS => {
-                if sequencing != Sequencing::NoPreference {
-                    2
-                } else {
-                    3
-                }
-            }
-        }
-    }
-    pub fn all_ordered_set() -> ProtocolTypeSet {
-        ProtocolType::TCP | ProtocolType::WS | ProtocolType::WSS
-    }
-}
-
-pub type ProtocolTypeSet = EnumSet<ProtocolType>;
-
-#[allow(clippy::derive_hash_xor_eq)]
-#[derive(
-    Debug,
-    PartialOrd,
-    Ord,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-    EnumSetType,
-)]
-#[enumset(repr = "u8")]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum AddressType {
-    IPV4,
-    IPV6,
-}
-pub type AddressTypeSet = EnumSet<AddressType>;
-
-// Routing domain here is listed in order of preference, keep in order
-#[allow(clippy::derive_hash_xor_eq)]
-#[derive(
-    Debug,
-    Ord,
-    PartialOrd,
-    Hash,
-    EnumSetType,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[enumset(repr = "u8")]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum RoutingDomain {
-    LocalNetwork = 0,
-    PublicInternet = 1,
-}
-impl RoutingDomain {
-    pub const fn count() -> usize {
-        2
-    }
-    pub const fn all() -> [RoutingDomain; RoutingDomain::count()] {
-        // Routing domain here is listed in order of preference, keep in order
-        [RoutingDomain::LocalNetwork, RoutingDomain::PublicInternet]
-    }
-}
-pub type RoutingDomainSet = EnumSet<RoutingDomain>;
-
-#[derive(
-    Copy,
-    Clone,
-    Debug,
-    PartialEq,
-    PartialOrd,
-    Ord,
-    Eq,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum Address {
-    IPV4(Ipv4Addr),
-    IPV6(Ipv6Addr),
-}
-
-impl Default for Address {
-    fn default() -> Self {
-        Address::IPV4(Ipv4Addr::new(0, 0, 0, 0))
-    }
-}
-
-impl Address {
-    pub fn from_socket_addr(sa: SocketAddr) -> Address {
-        match sa {
-            SocketAddr::V4(v4) => Address::IPV4(*v4.ip()),
-            SocketAddr::V6(v6) => Address::IPV6(*v6.ip()),
-        }
-    }
-    pub fn from_ip_addr(addr: IpAddr) -> Address {
-        match addr {
-            IpAddr::V4(v4) => Address::IPV4(v4),
-            IpAddr::V6(v6) => Address::IPV6(v6),
-        }
-    }
-    pub fn address_type(&self) -> AddressType {
-        match self {
-            Address::IPV4(_) => AddressType::IPV4,
-            Address::IPV6(_) => AddressType::IPV6,
-        }
-    }
-    pub fn address_string(&self) -> String {
-        match self {
-            Address::IPV4(v4) => v4.to_string(),
-            Address::IPV6(v6) => v6.to_string(),
-        }
-    }
-    pub fn address_string_with_port(&self, port: u16) -> String {
-        match self {
-            Address::IPV4(v4) => format!("{}:{}", v4, port),
-            Address::IPV6(v6) => format!("[{}]:{}", v6, port),
-        }
-    }
-    pub fn is_unspecified(&self) -> bool {
-        match self {
-            Address::IPV4(v4) => ipv4addr_is_unspecified(v4),
-            Address::IPV6(v6) => ipv6addr_is_unspecified(v6),
-        }
-    }
-    pub fn is_global(&self) -> bool {
-        match self {
-            Address::IPV4(v4) => ipv4addr_is_global(v4) && !ipv4addr_is_multicast(v4),
-            Address::IPV6(v6) => ipv6addr_is_unicast_global(v6),
-        }
-    }
-    pub fn is_local(&self) -> bool {
-        match self {
-            Address::IPV4(v4) => {
-                ipv4addr_is_private(v4)
-                    || ipv4addr_is_link_local(v4)
-                    || ipv4addr_is_ietf_protocol_assignment(v4)
-            }
-            Address::IPV6(v6) => {
-                ipv6addr_is_unicast_site_local(v6)
-                    || ipv6addr_is_unicast_link_local(v6)
-                    || ipv6addr_is_unique_local(v6)
-            }
-        }
-    }
-    pub fn to_ip_addr(&self) -> IpAddr {
-        match self {
-            Self::IPV4(a) => IpAddr::V4(*a),
-            Self::IPV6(a) => IpAddr::V6(*a),
-        }
-    }
-    pub fn to_socket_addr(&self, port: u16) -> SocketAddr {
-        SocketAddr::new(self.to_ip_addr(), port)
-    }
-    pub fn to_canonical(&self) -> Address {
-        match self {
-            Address::IPV4(v4) => Address::IPV4(*v4),
-            Address::IPV6(v6) => match v6.to_ipv4() {
-                Some(v4) => Address::IPV4(v4),
-                None => Address::IPV6(*v6),
-            },
-        }
-    }
-}
-
-impl fmt::Display for Address {
-    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
-        match self {
-            Address::IPV4(v4) => write!(f, "{}", v4),
-            Address::IPV6(v6) => write!(f, "{}", v6),
-        }
-    }
-}
-
-impl FromStr for Address {
-    type Err = VeilidAPIError;
-    fn from_str(host: &str) -> Result<Address, VeilidAPIError> {
-        if let Ok(addr) = Ipv4Addr::from_str(host) {
-            Ok(Address::IPV4(addr))
-        } else if let Ok(addr) = Ipv6Addr::from_str(host) {
-            Ok(Address::IPV6(addr))
-        } else {
-            Err(VeilidAPIError::parse_error(
-                "Address::from_str failed",
-                host,
-            ))
-        }
-    }
-}
-
-#[derive(
-    Copy,
-    Default,
-    Clone,
-    Debug,
-    PartialEq,
-    PartialOrd,
-    Ord,
-    Eq,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct SocketAddress {
-    address: Address,
-    port: u16,
-}
-
-impl SocketAddress {
-    pub fn new(address: Address, port: u16) -> Self {
-        Self { address, port }
-    }
-    pub fn from_socket_addr(sa: SocketAddr) -> SocketAddress {
-        Self {
-            address: Address::from_socket_addr(sa),
-            port: sa.port(),
-        }
-    }
-    pub fn address(&self) -> Address {
-        self.address
-    }
-    pub fn address_type(&self) -> AddressType {
-        self.address.address_type()
-    }
-    pub fn port(&self) -> u16 {
-        self.port
-    }
-    pub fn to_canonical(&self) -> SocketAddress {
-        SocketAddress {
-            address: self.address.to_canonical(),
-            port: self.port,
-        }
-    }
-    pub fn to_ip_addr(&self) -> IpAddr {
-        self.address.to_ip_addr()
-    }
-    pub fn to_socket_addr(&self) -> SocketAddr {
-        self.address.to_socket_addr(self.port)
-    }
-}
-
-impl fmt::Display for SocketAddress {
-    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> Result<(), fmt::Error> {
-        write!(f, "{}", self.to_socket_addr())
-    }
-}
-
-impl FromStr for SocketAddress {
-    type Err = VeilidAPIError;
-    fn from_str(s: &str) -> Result<SocketAddress, VeilidAPIError> {
-        let sa = SocketAddr::from_str(s)
-            .map_err(|e| VeilidAPIError::parse_error("Failed to parse SocketAddress", e))?;
-        Ok(SocketAddress::from_socket_addr(sa))
-    }
-}
-
-//////////////////////////////////////////////////////////////////
-
-#[derive(
-    Copy,
-    Clone,
-    PartialEq,
-    Eq,
-    PartialOrd,
-    Ord,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct DialInfoFilter {
-    #[with(RkyvEnumSet)]
-    pub protocol_type_set: ProtocolTypeSet,
-    #[with(RkyvEnumSet)]
-    pub address_type_set: AddressTypeSet,
-}
-
-impl Default for DialInfoFilter {
-    fn default() -> Self {
-        Self {
-            protocol_type_set: ProtocolTypeSet::all(),
-            address_type_set: AddressTypeSet::all(),
-        }
-    }
-}
-
-impl DialInfoFilter {
-    pub fn all() -> Self {
-        Self {
-            protocol_type_set: ProtocolTypeSet::all(),
-            address_type_set: AddressTypeSet::all(),
-        }
-    }
-    pub fn with_protocol_type(mut self, protocol_type: ProtocolType) -> Self {
-        self.protocol_type_set = ProtocolTypeSet::only(protocol_type);
-        self
-    }
-    pub fn with_protocol_type_set(mut self, protocol_set: ProtocolTypeSet) -> Self {
-        self.protocol_type_set = protocol_set;
-        self
-    }
-    pub fn with_address_type(mut self, address_type: AddressType) -> Self {
-        self.address_type_set = AddressTypeSet::only(address_type);
-        self
-    }
-    pub fn with_address_type_set(mut self, address_set: AddressTypeSet) -> Self {
-        self.address_type_set = address_set;
-        self
-    }
-    pub fn filtered(mut self, other_dif: &DialInfoFilter) -> Self {
-        self.protocol_type_set &= other_dif.protocol_type_set;
-        self.address_type_set &= other_dif.address_type_set;
-        self
-    }
-    pub fn is_dead(&self) -> bool {
-        self.protocol_type_set.is_empty() || self.address_type_set.is_empty()
-    }
-}
-
-impl fmt::Debug for DialInfoFilter {
-    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> Result<(), fmt::Error> {
-        let mut out = String::new();
-        if self.protocol_type_set != ProtocolTypeSet::all() {
-            out += &format!("+{:?}", self.protocol_type_set);
-        } else {
-            out += "*";
-        }
-        if self.address_type_set != AddressTypeSet::all() {
-            out += &format!("+{:?}", self.address_type_set);
-        } else {
-            out += "*";
-        }
-        write!(f, "[{}]", out)
-    }
-}
-
-pub trait MatchesDialInfoFilter {
-    fn matches_filter(&self, filter: &DialInfoFilter) -> bool;
-}
-
-#[derive(
-    Clone,
-    Default,
-    Debug,
-    PartialEq,
-    PartialOrd,
-    Ord,
-    Eq,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct DialInfoUDP {
-    pub socket_address: SocketAddress,
-}
-
-#[derive(
-    Clone,
-    Default,
-    Debug,
-    PartialEq,
-    PartialOrd,
-    Ord,
-    Eq,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct DialInfoTCP {
-    pub socket_address: SocketAddress,
-}
-
-#[derive(
-    Clone,
-    Default,
-    Debug,
-    PartialEq,
-    PartialOrd,
-    Ord,
-    Eq,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct DialInfoWS {
-    pub socket_address: SocketAddress,
-    pub request: String,
-}
-
-#[derive(
-    Clone,
-    Default,
-    Debug,
-    PartialEq,
-    PartialOrd,
-    Ord,
-    Eq,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct DialInfoWSS {
-    pub socket_address: SocketAddress,
-    pub request: String,
-}
-
-// Keep member order appropriate for sorting < preference
-// Must match ProtocolType order
-#[derive(
-    Clone,
-    Debug,
-    PartialEq,
-    PartialOrd,
-    Ord,
-    Eq,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-#[serde(tag = "kind")]
-pub enum DialInfo {
-    UDP(DialInfoUDP),
-    TCP(DialInfoTCP),
-    WS(DialInfoWS),
-    WSS(DialInfoWSS),
-}
-impl Default for DialInfo {
-    fn default() -> Self {
-        DialInfo::UDP(DialInfoUDP::default())
-    }
-}
-
-impl fmt::Display for DialInfo {
-    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> Result<(), fmt::Error> {
-        match self {
-            DialInfo::UDP(di) => write!(f, "udp|{}", di.socket_address),
-            DialInfo::TCP(di) => write!(f, "tcp|{}", di.socket_address),
-            DialInfo::WS(di) => {
-                let url = format!("ws://{}", di.request);
-                let split_url = SplitUrl::from_str(&url).unwrap();
-                match split_url.host {
-                    SplitUrlHost::Hostname(_) => {
-                        write!(f, "ws|{}|{}", di.socket_address.to_ip_addr(), di.request)
-                    }
-                    SplitUrlHost::IpAddr(a) => {
-                        if di.socket_address.to_ip_addr() == a {
-                            write!(f, "ws|{}", di.request)
-                        } else {
-                            panic!("resolved address does not match url: {}", di.request);
-                        }
-                    }
-                }
-            }
-            DialInfo::WSS(di) => {
-                let url = format!("wss://{}", di.request);
-                let split_url = SplitUrl::from_str(&url).unwrap();
-                match split_url.host {
-                    SplitUrlHost::Hostname(_) => {
-                        write!(f, "wss|{}|{}", di.socket_address.to_ip_addr(), di.request)
-                    }
-                    SplitUrlHost::IpAddr(_) => {
-                        panic!(
-                            "secure websockets can not use ip address in request: {}",
-                            di.request
-                        );
-                    }
-                }
-            }
-        }
-    }
-}
-
-impl FromStr for DialInfo {
-    type Err = VeilidAPIError;
-    fn from_str(s: &str) -> Result<DialInfo, VeilidAPIError> {
-        let (proto, rest) = s.split_once('|').ok_or_else(|| {
-            VeilidAPIError::parse_error("DialInfo::from_str missing protocol '|' separator", s)
-        })?;
-        match proto {
-            "udp" => {
-                let socket_address = SocketAddress::from_str(rest)?;
-                Ok(DialInfo::udp(socket_address))
-            }
-            "tcp" => {
-                let socket_address = SocketAddress::from_str(rest)?;
-                Ok(DialInfo::tcp(socket_address))
-            }
-            "ws" => {
-                let url = format!("ws://{}", rest);
-                let split_url = SplitUrl::from_str(&url).map_err(|e| {
-                    VeilidAPIError::parse_error(format!("unable to split WS url: {}", e), &url)
-                })?;
-                if split_url.scheme != "ws" || !url.starts_with("ws://") {
-                    apibail_parse_error!("incorrect scheme for WS dialinfo", url);
-                }
-                let url_port = split_url.port.unwrap_or(80u16);
-
-                match rest.split_once('|') {
-                    Some((sa, rest)) => {
-                        let address = Address::from_str(sa)?;
-
-                        DialInfo::try_ws(
-                            SocketAddress::new(address, url_port),
-                            format!("ws://{}", rest),
-                        )
-                    }
-                    None => {
-                        let address = Address::from_str(&split_url.host.to_string())?;
-                        DialInfo::try_ws(
-                            SocketAddress::new(address, url_port),
-                            format!("ws://{}", rest),
-                        )
-                    }
-                }
-            }
-            "wss" => {
-                let url = format!("wss://{}", rest);
-                let split_url = SplitUrl::from_str(&url).map_err(|e| {
-                    VeilidAPIError::parse_error(format!("unable to split WSS url: {}", e), &url)
-                })?;
-                if split_url.scheme != "wss" || !url.starts_with("wss://") {
-                    apibail_parse_error!("incorrect scheme for WSS dialinfo", url);
-                }
-                let url_port = split_url.port.unwrap_or(443u16);
-
-                let (a, rest) = rest.split_once('|').ok_or_else(|| {
-                    VeilidAPIError::parse_error(
-                        "DialInfo::from_str missing socket address '|' separator",
-                        s,
-                    )
-                })?;
-
-                let address = Address::from_str(a)?;
-                DialInfo::try_wss(
-                    SocketAddress::new(address, url_port),
-                    format!("wss://{}", rest),
-                )
-            }
-            _ => Err(VeilidAPIError::parse_error(
-                "DialInfo::from_str has invalid scheme",
-                s,
-            )),
-        }
-    }
-}
-
-impl DialInfo {
-    pub fn udp_from_socketaddr(socket_addr: SocketAddr) -> Self {
-        Self::UDP(DialInfoUDP {
-            socket_address: SocketAddress::from_socket_addr(socket_addr).to_canonical(),
-        })
-    }
-    pub fn tcp_from_socketaddr(socket_addr: SocketAddr) -> Self {
-        Self::TCP(DialInfoTCP {
-            socket_address: SocketAddress::from_socket_addr(socket_addr).to_canonical(),
-        })
-    }
-    pub fn udp(socket_address: SocketAddress) -> Self {
-        Self::UDP(DialInfoUDP {
-            socket_address: socket_address.to_canonical(),
-        })
-    }
-    pub fn tcp(socket_address: SocketAddress) -> Self {
-        Self::TCP(DialInfoTCP {
-            socket_address: socket_address.to_canonical(),
-        })
-    }
-    pub fn try_ws(socket_address: SocketAddress, url: String) -> Result<Self, VeilidAPIError> {
-        let split_url = SplitUrl::from_str(&url).map_err(|e| {
-            VeilidAPIError::parse_error(format!("unable to split WS url: {}", e), &url)
-        })?;
-        if split_url.scheme != "ws" || !url.starts_with("ws://") {
-            apibail_parse_error!("incorrect scheme for WS dialinfo", url);
-        }
-        let url_port = split_url.port.unwrap_or(80u16);
-        if url_port != socket_address.port() {
-            apibail_parse_error!("socket address port doesn't match url port", url);
-        }
-        if let SplitUrlHost::IpAddr(a) = split_url.host {
-            if socket_address.to_ip_addr() != a {
-                apibail_parse_error!(
-                    format!("request address does not match socket address: {}", a),
-                    socket_address
-                );
-            }
-        }
-        Ok(Self::WS(DialInfoWS {
-            socket_address: socket_address.to_canonical(),
-            request: url[5..].to_string(),
-        }))
-    }
-    pub fn try_wss(socket_address: SocketAddress, url: String) -> Result<Self, VeilidAPIError> {
-        let split_url = SplitUrl::from_str(&url).map_err(|e| {
-            VeilidAPIError::parse_error(format!("unable to split WSS url: {}", e), &url)
-        })?;
-        if split_url.scheme != "wss" || !url.starts_with("wss://") {
-            apibail_parse_error!("incorrect scheme for WSS dialinfo", url);
-        }
-        let url_port = split_url.port.unwrap_or(443u16);
-        if url_port != socket_address.port() {
-            apibail_parse_error!("socket address port doesn't match url port", url);
-        }
-        if !matches!(split_url.host, SplitUrlHost::Hostname(_)) {
-            apibail_parse_error!(
-                "WSS url can not use address format, only hostname format",
-                url
-            );
-        }
-        Ok(Self::WSS(DialInfoWSS {
-            socket_address: socket_address.to_canonical(),
-            request: url[6..].to_string(),
-        }))
-    }
-    pub fn protocol_type(&self) -> ProtocolType {
-        match self {
-            Self::UDP(_) => ProtocolType::UDP,
-            Self::TCP(_) => ProtocolType::TCP,
-            Self::WS(_) => ProtocolType::WS,
-            Self::WSS(_) => ProtocolType::WSS,
-        }
-    }
-    pub fn address_type(&self) -> AddressType {
-        self.socket_address().address_type()
-    }
-    pub fn address(&self) -> Address {
-        match self {
-            Self::UDP(di) => di.socket_address.address,
-            Self::TCP(di) => di.socket_address.address,
-            Self::WS(di) => di.socket_address.address,
-            Self::WSS(di) => di.socket_address.address,
-        }
-    }
-    pub fn socket_address(&self) -> SocketAddress {
-        match self {
-            Self::UDP(di) => di.socket_address,
-            Self::TCP(di) => di.socket_address,
-            Self::WS(di) => di.socket_address,
-            Self::WSS(di) => di.socket_address,
-        }
-    }
-    pub fn to_ip_addr(&self) -> IpAddr {
-        match self {
-            Self::UDP(di) => di.socket_address.to_ip_addr(),
-            Self::TCP(di) => di.socket_address.to_ip_addr(),
-            Self::WS(di) => di.socket_address.to_ip_addr(),
-            Self::WSS(di) => di.socket_address.to_ip_addr(),
-        }
-    }
-    pub fn port(&self) -> u16 {
-        match self {
-            Self::UDP(di) => di.socket_address.port,
-            Self::TCP(di) => di.socket_address.port,
-            Self::WS(di) => di.socket_address.port,
-            Self::WSS(di) => di.socket_address.port,
-        }
-    }
-    pub fn set_port(&mut self, port: u16) {
-        match self {
-            Self::UDP(di) => di.socket_address.port = port,
-            Self::TCP(di) => di.socket_address.port = port,
-            Self::WS(di) => di.socket_address.port = port,
-            Self::WSS(di) => di.socket_address.port = port,
-        }
-    }
-    pub fn to_socket_addr(&self) -> SocketAddr {
-        match self {
-            Self::UDP(di) => di.socket_address.to_socket_addr(),
-            Self::TCP(di) => di.socket_address.to_socket_addr(),
-            Self::WS(di) => di.socket_address.to_socket_addr(),
-            Self::WSS(di) => di.socket_address.to_socket_addr(),
-        }
-    }
-    pub fn to_peer_address(&self) -> PeerAddress {
-        match self {
-            Self::UDP(di) => PeerAddress::new(di.socket_address, ProtocolType::UDP),
-            Self::TCP(di) => PeerAddress::new(di.socket_address, ProtocolType::TCP),
-            Self::WS(di) => PeerAddress::new(di.socket_address, ProtocolType::WS),
-            Self::WSS(di) => PeerAddress::new(di.socket_address, ProtocolType::WSS),
-        }
-    }
-    pub fn request(&self) -> Option<String> {
-        match self {
-            Self::UDP(_) => None,
-            Self::TCP(_) => None,
-            Self::WS(di) => Some(format!("ws://{}", di.request)),
-            Self::WSS(di) => Some(format!("wss://{}", di.request)),
-        }
-    }
-    pub fn is_valid(&self) -> bool {
-        let socket_address = self.socket_address();
-        let address = socket_address.address();
-        let port = socket_address.port();
-        (address.is_global() || address.is_local()) && port > 0
-    }
-
-    pub fn make_filter(&self) -> DialInfoFilter {
-        DialInfoFilter {
-            protocol_type_set: ProtocolTypeSet::only(self.protocol_type()),
-            address_type_set: AddressTypeSet::only(self.address_type()),
-        }
-    }
-
-    pub fn try_vec_from_short<S: AsRef<str>, H: AsRef<str>>(
-        short: S,
-        hostname: H,
-    ) -> Result<Vec<Self>, VeilidAPIError> {
-        let short = short.as_ref();
-        let hostname = hostname.as_ref();
-
-        if short.len() < 2 {
-            apibail_parse_error!("invalid short url length", short);
-        }
-        let url = match &short[0..1] {
-            "U" => {
-                format!("udp://{}:{}", hostname, &short[1..])
-            }
-            "T" => {
-                format!("tcp://{}:{}", hostname, &short[1..])
-            }
-            "W" => {
-                format!("ws://{}:{}", hostname, &short[1..])
-            }
-            "S" => {
-                format!("wss://{}:{}", hostname, &short[1..])
-            }
-            _ => {
-                apibail_parse_error!("invalid short url type", short);
-            }
-        };
-        Self::try_vec_from_url(url)
-    }
-
-    pub fn try_vec_from_url<S: AsRef<str>>(url: S) -> Result<Vec<Self>, VeilidAPIError> {
-        let url = url.as_ref();
-        let split_url = SplitUrl::from_str(url)
-            .map_err(|e| VeilidAPIError::parse_error(format!("unable to split url: {}", e), url))?;
-
-        let port = match split_url.scheme.as_str() {
-            "udp" | "tcp" => split_url
-                .port
-                .ok_or_else(|| VeilidAPIError::parse_error("Missing port in udp url", url))?,
-            "ws" => split_url.port.unwrap_or(80u16),
-            "wss" => split_url.port.unwrap_or(443u16),
-            _ => {
-                apibail_parse_error!("Invalid dial info url scheme", split_url.scheme);
-            }
-        };
-
-        let socket_addrs = {
-            // Resolve if possible, WASM doesn't support resolution and doesn't need it to connect to the dialinfo
-            // This will not be used on signed dialinfo, only for bootstrapping, so we don't need to worry about
-            // the '0.0.0.0' address being propagated across the routing table
-            cfg_if::cfg_if! {
-                if #[cfg(target_arch = "wasm32")] {
-                    vec![SocketAddr::new(IpAddr::V4(Ipv4Addr::new(0,0,0,0)), port)]
-                } else {
-                    match split_url.host {
-                        SplitUrlHost::Hostname(_) => split_url
-                            .host_port(port)
-                            .to_socket_addrs()
-                            .map_err(|_| VeilidAPIError::parse_error("couldn't resolve hostname in url", url))?
-                            .collect(),
-                        SplitUrlHost::IpAddr(a) => vec![SocketAddr::new(a, port)],
-                    }
-                }
-            }
-        };
-
-        let mut out = Vec::new();
-        for sa in socket_addrs {
-            out.push(match split_url.scheme.as_str() {
-                "udp" => Self::udp_from_socketaddr(sa),
-                "tcp" => Self::tcp_from_socketaddr(sa),
-                "ws" => Self::try_ws(
-                    SocketAddress::from_socket_addr(sa).to_canonical(),
-                    url.to_string(),
-                )?,
-                "wss" => Self::try_wss(
-                    SocketAddress::from_socket_addr(sa).to_canonical(),
-                    url.to_string(),
-                )?,
-                _ => {
-                    unreachable!("Invalid dial info url scheme")
-                }
-            });
-        }
-        Ok(out)
-    }
-
-    pub async fn to_short(&self) -> (String, String) {
-        match self {
-            DialInfo::UDP(di) => (
-                format!("U{}", di.socket_address.port()),
-                intf::ptr_lookup(di.socket_address.to_ip_addr())
-                    .await
-                    .unwrap_or_else(|_| di.socket_address.to_string()),
-            ),
-            DialInfo::TCP(di) => (
-                format!("T{}", di.socket_address.port()),
-                intf::ptr_lookup(di.socket_address.to_ip_addr())
-                    .await
-                    .unwrap_or_else(|_| di.socket_address.to_string()),
-            ),
-            DialInfo::WS(di) => {
-                let mut split_url = SplitUrl::from_str(&format!("ws://{}", di.request)).unwrap();
-                if let SplitUrlHost::IpAddr(a) = split_url.host {
-                    if let Ok(host) = intf::ptr_lookup(a).await {
-                        split_url.host = SplitUrlHost::Hostname(host);
-                    }
-                }
-                (
-                    format!(
-                        "W{}{}",
-                        split_url.port.unwrap_or(80),
-                        split_url
-                            .path
-                            .map(|p| format!("/{}", p))
-                            .unwrap_or_default()
-                    ),
-                    split_url.host.to_string(),
-                )
-            }
-            DialInfo::WSS(di) => {
-                let mut split_url = SplitUrl::from_str(&format!("wss://{}", di.request)).unwrap();
-                if let SplitUrlHost::IpAddr(a) = split_url.host {
-                    if let Ok(host) = intf::ptr_lookup(a).await {
-                        split_url.host = SplitUrlHost::Hostname(host);
-                    }
-                }
-                (
-                    format!(
-                        "S{}{}",
-                        split_url.port.unwrap_or(443),
-                        split_url
-                            .path
-                            .map(|p| format!("/{}", p))
-                            .unwrap_or_default()
-                    ),
-                    split_url.host.to_string(),
-                )
-            }
-        }
-    }
-    pub async fn to_url(&self) -> String {
-        match self {
-            DialInfo::UDP(di) => intf::ptr_lookup(di.socket_address.to_ip_addr())
-                .await
-                .map(|h| format!("udp://{}:{}", h, di.socket_address.port()))
-                .unwrap_or_else(|_| format!("udp://{}", di.socket_address)),
-            DialInfo::TCP(di) => intf::ptr_lookup(di.socket_address.to_ip_addr())
-                .await
-                .map(|h| format!("tcp://{}:{}", h, di.socket_address.port()))
-                .unwrap_or_else(|_| format!("tcp://{}", di.socket_address)),
-            DialInfo::WS(di) => {
-                let mut split_url = SplitUrl::from_str(&format!("ws://{}", di.request)).unwrap();
-                if let SplitUrlHost::IpAddr(a) = split_url.host {
-                    if let Ok(host) = intf::ptr_lookup(a).await {
-                        split_url.host = SplitUrlHost::Hostname(host);
-                    }
-                }
-                split_url.to_string()
-            }
-            DialInfo::WSS(di) => {
-                let mut split_url = SplitUrl::from_str(&format!("wss://{}", di.request)).unwrap();
-                if let SplitUrlHost::IpAddr(a) = split_url.host {
-                    if let Ok(host) = intf::ptr_lookup(a).await {
-                        split_url.host = SplitUrlHost::Hostname(host);
-                    }
-                }
-                split_url.to_string()
-            }
-        }
-    }
-
-    pub fn ordered_sequencing_sort(a: &DialInfo, b: &DialInfo) -> core::cmp::Ordering {
-        let ca = a.protocol_type().sort_order(Sequencing::EnsureOrdered);
-        let cb = b.protocol_type().sort_order(Sequencing::EnsureOrdered);
-        if ca < cb {
-            return core::cmp::Ordering::Less;
-        }
-        if ca > cb {
-            return core::cmp::Ordering::Greater;
-        }
-        match (a, b) {
-            (DialInfo::UDP(a), DialInfo::UDP(b)) => a.cmp(b),
-            (DialInfo::TCP(a), DialInfo::TCP(b)) => a.cmp(b),
-            (DialInfo::WS(a), DialInfo::WS(b)) => a.cmp(b),
-            (DialInfo::WSS(a), DialInfo::WSS(b)) => a.cmp(b),
-            _ => unreachable!(),
-        }
-    }
-}
-
-impl MatchesDialInfoFilter for DialInfo {
-    fn matches_filter(&self, filter: &DialInfoFilter) -> bool {
-        if !filter.protocol_type_set.contains(self.protocol_type()) {
-            return false;
-        }
-        if !filter.address_type_set.contains(self.address_type()) {
-            return false;
-        }
-        true
-    }
-}
-
-//////////////////////////////////////////////////////////////////////////
-
-/// Signed NodeInfo that can be passed around amongst peers and verifiable
-#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct SignedDirectNodeInfo {
-    pub node_info: NodeInfo,
-    pub timestamp: Timestamp,
-    pub signatures: Vec<TypedSignature>,
-}
-impl SignedDirectNodeInfo {
-    /// Returns a new SignedDirectNodeInfo that has its signatures validated.
-    /// On success, this will modify the node_ids set to only include node_ids whose signatures validate.
-    /// All signatures are stored however, as this can be passed to other nodes that may be able to validate those signatures.
-    pub fn new(
-        crypto: Crypto,
-        node_ids: &mut TypedKeySet,
-        node_info: NodeInfo,
-        timestamp: Timestamp,
-        typed_signatures: Vec<TypedSignature>,
-    ) -> Result<Self, VeilidAPIError> {
-        let node_info_bytes = Self::make_signature_bytes(&node_info, timestamp)?;
-
-        // Verify the signatures that we can
-        let validated_node_ids =
-            crypto.verify_signatures(node_ids, &node_info_bytes, &typed_signatures)?;
-        *node_ids = validated_node_ids;
-        if node_ids.len() == 0 {
-            apibail_generic!("no valid node ids in direct node info");
-        }
-
-        Ok(Self {
-            node_info,
-            timestamp,
-            signatures: typed_signatures,
-        })
-    }
-
-    pub fn make_signatures(
-        crypto: Crypto,
-        typed_key_pairs: Vec<TypedKeyPair>,
-        node_info: NodeInfo,
-    ) -> Result<Self, VeilidAPIError> {
-        let timestamp = get_aligned_timestamp();
-        let node_info_bytes = Self::make_signature_bytes(&node_info, timestamp)?;
-        let typed_signatures =
-            crypto.generate_signatures(&node_info_bytes, &typed_key_pairs, |kp, s| {
-                TypedSignature::new(kp.kind, s)
-            })?;
-        Ok(Self {
-            node_info,
-            timestamp,
-            signatures: typed_signatures,
-        })
-    }
-
-    fn make_signature_bytes(
-        node_info: &NodeInfo,
-        timestamp: Timestamp,
-    ) -> Result<Vec<u8>, VeilidAPIError> {
-        let mut node_info_bytes = Vec::new();
-
-        // Add nodeinfo to signature
-        let mut ni_msg = ::capnp::message::Builder::new_default();
-        let mut ni_builder = ni_msg.init_root::<veilid_capnp::node_info::Builder>();
-        encode_node_info(node_info, &mut ni_builder).map_err(VeilidAPIError::internal)?;
-        node_info_bytes.append(&mut builder_to_vec(ni_msg).map_err(VeilidAPIError::internal)?);
-
-        // Add timestamp to signature
-        node_info_bytes.append(&mut timestamp.as_u64().to_le_bytes().to_vec());
-
-        Ok(node_info_bytes)
-    }
-
-    pub fn with_no_signature(node_info: NodeInfo) -> Self {
-        Self {
-            node_info,
-            timestamp: get_aligned_timestamp(),
-            signatures: Vec::new(),
-        }
-    }
-
-    pub fn has_any_signature(&self) -> bool {
-        !self.signatures.is_empty()
-    }
-}
-
-/// Signed NodeInfo with a relay that can be passed around amongst peers and verifiable
-#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct SignedRelayedNodeInfo {
-    pub node_info: NodeInfo,
-    pub relay_ids: TypedKeySet,
-    pub relay_info: SignedDirectNodeInfo,
-    pub timestamp: Timestamp,
-    pub signatures: Vec<TypedSignature>,
-}
-
-impl SignedRelayedNodeInfo {
-    /// Returns a new SignedRelayedNodeInfo that has its signatures validated.
-    /// On success, this will modify the node_ids set to only include node_ids whose signatures validate.
-    /// All signatures are stored however, as this can be passed to other nodes that may be able to validate those signatures.
-    pub fn new(
-        crypto: Crypto,
-        node_ids: &mut TypedKeySet,
-        node_info: NodeInfo,
-        relay_ids: TypedKeySet,
-        relay_info: SignedDirectNodeInfo,
-        timestamp: Timestamp,
-        typed_signatures: Vec<TypedSignature>,
-    ) -> Result<Self, VeilidAPIError> {
-        let node_info_bytes =
-            Self::make_signature_bytes(&node_info, &relay_ids, &relay_info, timestamp)?;
-        let validated_node_ids =
-            crypto.verify_signatures(node_ids, &node_info_bytes, &typed_signatures)?;
-        *node_ids = validated_node_ids;
-        if node_ids.len() == 0 {
-            apibail_generic!("no valid node ids in relayed node info");
-        }
-
-        Ok(Self {
-            node_info,
-            relay_ids,
-            relay_info,
-            timestamp,
-            signatures: typed_signatures,
-        })
-    }
-
-    pub fn make_signatures(
-        crypto: Crypto,
-        typed_key_pairs: Vec<TypedKeyPair>,
-        node_info: NodeInfo,
-        relay_ids: TypedKeySet,
-        relay_info: SignedDirectNodeInfo,
-    ) -> Result<Self, VeilidAPIError> {
-        let timestamp = get_aligned_timestamp();
-        let node_info_bytes =
-            Self::make_signature_bytes(&node_info, &relay_ids, &relay_info, timestamp)?;
-        let typed_signatures =
-            crypto.generate_signatures(&node_info_bytes, &typed_key_pairs, |kp, s| {
-                TypedSignature::new(kp.kind, s)
-            })?;
-        Ok(Self {
-            node_info,
-            relay_ids,
-            relay_info,
-            timestamp,
-            signatures: typed_signatures,
-        })
-    }
-
-    fn make_signature_bytes(
-        node_info: &NodeInfo,
-        relay_ids: &[TypedKey],
-        relay_info: &SignedDirectNodeInfo,
-        timestamp: Timestamp,
-    ) -> Result<Vec<u8>, VeilidAPIError> {
-        let mut sig_bytes = Vec::new();
-
-        // Add nodeinfo to signature
-        let mut ni_msg = ::capnp::message::Builder::new_default();
-        let mut ni_builder = ni_msg.init_root::<veilid_capnp::node_info::Builder>();
-        encode_node_info(node_info, &mut ni_builder).map_err(VeilidAPIError::internal)?;
-        sig_bytes.append(&mut builder_to_vec(ni_msg).map_err(VeilidAPIError::internal)?);
-
-        // Add relay ids to signature
-        for relay_id in relay_ids {
-            let mut rid_msg = ::capnp::message::Builder::new_default();
-            let mut rid_builder = rid_msg.init_root::<veilid_capnp::typed_key::Builder>();
-            encode_typed_key(relay_id, &mut rid_builder);
-            sig_bytes.append(&mut builder_to_vec(rid_msg).map_err(VeilidAPIError::internal)?);
-        }
-
-        // Add relay info to signature
-        let mut ri_msg = ::capnp::message::Builder::new_default();
-        let mut ri_builder = ri_msg.init_root::<veilid_capnp::signed_direct_node_info::Builder>();
-        encode_signed_direct_node_info(relay_info, &mut ri_builder)
-            .map_err(VeilidAPIError::internal)?;
-        sig_bytes.append(&mut builder_to_vec(ri_msg).map_err(VeilidAPIError::internal)?);
-
-        // Add timestamp to signature
-        sig_bytes.append(&mut timestamp.as_u64().to_le_bytes().to_vec());
-
-        Ok(sig_bytes)
-    }
-
-    pub fn has_any_signature(&self) -> bool {
-        !self.signatures.is_empty()
-    }
-}
-
-#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum SignedNodeInfo {
-    Direct(SignedDirectNodeInfo),
-    Relayed(SignedRelayedNodeInfo),
-}
-
-impl SignedNodeInfo {
-    pub fn has_any_signature(&self) -> bool {
-        match self {
-            SignedNodeInfo::Direct(d) => d.has_any_signature(),
-            SignedNodeInfo::Relayed(r) => r.has_any_signature(),
-        }
-    }
-
-    pub fn timestamp(&self) -> Timestamp {
-        match self {
-            SignedNodeInfo::Direct(d) => d.timestamp,
-            SignedNodeInfo::Relayed(r) => r.timestamp,
-        }
-    }
-    pub fn node_info(&self) -> &NodeInfo {
-        match self {
-            SignedNodeInfo::Direct(d) => &d.node_info,
-            SignedNodeInfo::Relayed(r) => &r.node_info,
-        }
-    }
-    pub fn relay_ids(&self) -> TypedKeySet {
-        match self {
-            SignedNodeInfo::Direct(_) => TypedKeySet::new(),
-            SignedNodeInfo::Relayed(r) => r.relay_ids.clone(),
-        }
-    }
-    pub fn relay_info(&self) -> Option<&NodeInfo> {
-        match self {
-            SignedNodeInfo::Direct(_) => None,
-            SignedNodeInfo::Relayed(r) => Some(&r.relay_info.node_info),
-        }
-    }
-    pub fn relay_peer_info(&self) -> Option<PeerInfo> {
-        match self {
-            SignedNodeInfo::Direct(_) => None,
-            SignedNodeInfo::Relayed(r) => Some(PeerInfo::new(
-                r.relay_ids.clone(),
-                SignedNodeInfo::Direct(r.relay_info.clone()),
-            )),
-        }
-    }
-    pub fn has_any_dial_info(&self) -> bool {
-        self.node_info().has_dial_info()
-            || self
-                .relay_info()
-                .map(|relay_ni| relay_ni.has_dial_info())
-                .unwrap_or_default()
-    }
-
-    pub fn has_sequencing_matched_dial_info(&self, sequencing: Sequencing) -> bool {
-        // Check our dial info
-        for did in &self.node_info().dial_info_detail_list {
-            match sequencing {
-                Sequencing::NoPreference | Sequencing::PreferOrdered => return true,
-                Sequencing::EnsureOrdered => {
-                    if did.dial_info.protocol_type().is_connection_oriented() {
-                        return true;
-                    }
-                }
-            }
-        }
-        // Check our relay if we have one
-        return self
-            .relay_info()
-            .map(|relay_ni| {
-                for did in &relay_ni.dial_info_detail_list {
-                    match sequencing {
-                        Sequencing::NoPreference | Sequencing::PreferOrdered => return true,
-                        Sequencing::EnsureOrdered => {
-                            if did.dial_info.protocol_type().is_connection_oriented() {
-                                return true;
-                            }
-                        }
-                    }
-                }
-                false
-            })
-            .unwrap_or_default();
-    }
-}
-
-#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct PeerInfo {
-    pub node_ids: TypedKeySet,
-    pub signed_node_info: SignedNodeInfo,
-}
-
-impl PeerInfo {
-    pub fn new(node_ids: TypedKeySet, signed_node_info: SignedNodeInfo) -> Self {
-        assert!(node_ids.len() > 0 && node_ids.len() <= MAX_CRYPTO_KINDS);
-        Self {
-            node_ids,
-            signed_node_info,
-        }
-    }
-}
-
-#[derive(
-    Copy,
-    Clone,
-    Debug,
-    PartialEq,
-    PartialOrd,
-    Eq,
-    Ord,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct PeerAddress {
-    protocol_type: ProtocolType,
-    #[serde(with = "json_as_string")]
-    socket_address: SocketAddress,
-}
-
-impl PeerAddress {
-    pub fn new(socket_address: SocketAddress, protocol_type: ProtocolType) -> Self {
-        Self {
-            socket_address: socket_address.to_canonical(),
-            protocol_type,
-        }
-    }
-
-    pub fn socket_address(&self) -> &SocketAddress {
-        &self.socket_address
-    }
-
-    pub fn protocol_type(&self) -> ProtocolType {
-        self.protocol_type
-    }
-
-    pub fn to_socket_addr(&self) -> SocketAddr {
-        self.socket_address.to_socket_addr()
-    }
-
-    pub fn address_type(&self) -> AddressType {
-        self.socket_address.address_type()
-    }
-}
-
-/// Represents the 5-tuple of an established connection
-/// Not used to specify connections to create, that is reserved for DialInfo
-///
-/// ConnectionDescriptors should never be from unspecified local addresses for connection oriented protocols
-/// If the medium does not allow local addresses, None should have been used or 'new_no_local'
-/// If we are specifying only a port, then the socket's 'local_address()' should have been used, since an
-/// established connection is always from a real address to another real address.
-#[derive(
-    Copy,
-    Clone,
-    Debug,
-    PartialEq,
-    Eq,
-    PartialOrd,
-    Ord,
-    Hash,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct ConnectionDescriptor {
-    remote: PeerAddress,
-    local: Option<SocketAddress>,
-}
-
-impl ConnectionDescriptor {
-    pub fn new(remote: PeerAddress, local: SocketAddress) -> Self {
-        assert!(
-            !remote.protocol_type().is_connection_oriented() || !local.address().is_unspecified()
-        );
-
-        Self {
-            remote,
-            local: Some(local),
-        }
-    }
-    pub fn new_no_local(remote: PeerAddress) -> Self {
-        Self {
-            remote,
-            local: None,
-        }
-    }
-    pub fn remote(&self) -> PeerAddress {
-        self.remote
-    }
-    pub fn remote_address(&self) -> &SocketAddress {
-        self.remote.socket_address()
-    }
-    pub fn local(&self) -> Option<SocketAddress> {
-        self.local
-    }
-    pub fn protocol_type(&self) -> ProtocolType {
-        self.remote.protocol_type
-    }
-    pub fn address_type(&self) -> AddressType {
-        self.remote.address_type()
-    }
-    pub fn make_dial_info_filter(&self) -> DialInfoFilter {
-        DialInfoFilter::all()
-            .with_protocol_type(self.protocol_type())
-            .with_address_type(self.address_type())
-    }
-}
-
-impl MatchesDialInfoFilter for ConnectionDescriptor {
-    fn matches_filter(&self, filter: &DialInfoFilter) -> bool {
-        if !filter.protocol_type_set.contains(self.protocol_type()) {
-            return false;
-        }
-        if !filter.address_type_set.contains(self.address_type()) {
-            return false;
-        }
-        true
-    }
-}
-
-//////////////////////////////////////////////////////////////////////////
-
-#[derive(
-    Clone,
-    Debug,
-    Default,
-    PartialEq,
-    Eq,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct LatencyStats {
-    #[serde(with = "json_as_string")]
-    pub fastest: TimestampDuration, // fastest latency in the ROLLING_LATENCIES_SIZE last latencies
-    #[serde(with = "json_as_string")]
-    pub average: TimestampDuration, // average latency over the ROLLING_LATENCIES_SIZE last latencies
-    #[serde(with = "json_as_string")]
-    pub slowest: TimestampDuration, // slowest latency in the ROLLING_LATENCIES_SIZE last latencies
-}
-
-#[derive(
-    Clone,
-    Debug,
-    Default,
-    PartialEq,
-    Eq,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct TransferStats {
-    #[serde(with = "json_as_string")]
-    pub total: ByteCount, // total amount transferred ever
-    #[serde(with = "json_as_string")]
-    pub maximum: ByteCount, // maximum rate over the ROLLING_TRANSFERS_SIZE last amounts
-    #[serde(with = "json_as_string")]
-    pub average: ByteCount, // average rate over the ROLLING_TRANSFERS_SIZE last amounts
-    #[serde(with = "json_as_string")]
-    pub minimum: ByteCount, // minimum rate over the ROLLING_TRANSFERS_SIZE last amounts
-}
-
-#[derive(
-    Clone,
-    Debug,
-    Default,
-    PartialEq,
-    Eq,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct TransferStatsDownUp {
-    pub down: TransferStats,
-    pub up: TransferStats,
-}
-
-#[derive(
-    Clone,
-    Debug,
-    Default,
-    PartialEq,
-    Eq,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct RPCStats {
-    pub messages_sent: u32, // number of rpcs that have been sent in the total_time range
-    pub messages_rcvd: u32, // number of rpcs that have been received in the total_time range
-    pub questions_in_flight: u32, // number of questions issued that have yet to be answered
-    #[serde(with = "opt_json_as_string")]
-    pub last_question_ts: Option<Timestamp>, // when the peer was last questioned (either successfully or not) and we wanted an answer
-    #[serde(with = "opt_json_as_string")]
-    pub last_seen_ts: Option<Timestamp>, // when the peer was last seen for any reason, including when we first attempted to reach out to it
-    #[serde(with = "opt_json_as_string")]
-    pub first_consecutive_seen_ts: Option<Timestamp>, // the timestamp of the first consecutive proof-of-life for this node (an answer or received question)
-    pub recent_lost_answers: u32, // number of answers that have been lost since we lost reliability
-    pub failed_to_send: u32, // number of messages that have failed to send since we last successfully sent one
-}
-
-#[derive(
-    Clone,
-    Debug,
-    Default,
-    PartialEq,
-    Eq,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct PeerStats {
-    #[serde(with = "json_as_string")]
-    pub time_added: Timestamp, // when the peer was added to the routing table
-    pub rpc_stats: RPCStats,           // information about RPCs
-    pub latency: Option<LatencyStats>, // latencies for communications with the peer
-    pub transfer: TransferStatsDownUp, // Stats for communications with the peer
-}
-
-/////////////////////////////////////////////////////////////////////////////////////////////////////
-
-/// Parameter for Signal operation
-#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum SignalInfo {
-    /// UDP Hole Punch Request
-    HolePunch {
-        /// /// Receipt to be returned after the hole punch
-        receipt: Vec<u8>,
-        /// Sender's peer info
-        peer_info: PeerInfo,
-    },
-    /// Reverse Connection Request
-    ReverseConnect {
-        /// Receipt to be returned by the reverse connection
-        receipt: Vec<u8>,
-        /// Sender's peer info
-        peer_info: PeerInfo,
-    },
-    // XXX: WebRTC
-}
-
-/////////////////////////////////////////////////////////////////////////////////////////////////////
-
-/// Default DHT Schema (DFLT)
-#[derive(
-    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct DHTSchemaDFLT {
-    /// Owner subkey count
-    pub o_cnt: u16,
-}
-
-impl DHTSchemaDFLT {
-    const FCC: [u8; 4] = *b"DFLT";
-    const FIXED_SIZE: usize = 6;
-
-    /// Build the data representation of the schema
-    pub fn compile(&self) -> Vec<u8> {
-        let mut out = Vec::<u8>::with_capacity(Self::FIXED_SIZE);
-        // kind
-        out.extend_from_slice(&Self::FCC);
-        // o_cnt
-        out.extend_from_slice(&self.o_cnt.to_le_bytes());
-        out
-    }
-
-    /// Get the number of subkeys this schema allocates
-    pub fn subkey_count(&self) -> usize {
-        self.o_cnt as usize
-    }
-    /// Get the data size of this schema beyond the size of the structure itself
-    pub fn data_size(&self) -> usize {
-        0
-    }
-}
-
-impl TryFrom<&[u8]> for DHTSchemaDFLT {
-    type Error = VeilidAPIError;
-    fn try_from(b: &[u8]) -> Result<Self, Self::Error> {
-        if b.len() != Self::FIXED_SIZE {
-            apibail_generic!("invalid size");
-        }
-        if &b[0..4] != &Self::FCC {
-            apibail_generic!("wrong fourcc");
-        }
-
-        let o_cnt = u16::from_le_bytes(b[4..6].try_into().map_err(VeilidAPIError::internal)?);
-
-        Ok(Self { o_cnt })
-    }
-}
-
-/// Simple DHT Schema (SMPL) Member
-#[derive(
-    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct DHTSchemaSMPLMember {
-    /// Member key
-    pub m_key: PublicKey,
-    /// Member subkey countanyway,
-    pub m_cnt: u16,
-}
-
-/// Simple DHT Schema (SMPL)
-#[derive(
-    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct DHTSchemaSMPL {
-    /// Owner subkey count
-    pub o_cnt: u16,
-    /// Members
-    pub members: Vec<DHTSchemaSMPLMember>,
-}
-
-impl DHTSchemaSMPL {
-    const FCC: [u8; 4] = *b"SMPL";
-    const FIXED_SIZE: usize = 6;
-
-    /// Build the data representation of the schema
-    pub fn compile(&self) -> Vec<u8> {
-        let mut out = Vec::<u8>::with_capacity(
-            Self::FIXED_SIZE + (self.members.len() * (PUBLIC_KEY_LENGTH + 2)),
-        );
-        // kind
-        out.extend_from_slice(&Self::FCC);
-        // o_cnt
-        out.extend_from_slice(&self.o_cnt.to_le_bytes());
-        // members
-        for m in self.members {
-            // m_key
-            out.extend_from_slice(&m.m_key.bytes);
-            // m_cnt
-            out.extend_from_slice(&m.m_cnt.to_le_bytes());
-        }
-        out
-    }
-
-    /// Get the number of subkeys this schema allocates
-    pub fn subkey_count(&self) -> usize {
-        self.members
-            .iter()
-            .fold(self.o_cnt as usize, |acc, x| acc + (x.m_cnt as usize))
-    }
-
-    /// Get the data size of this schema beyond the size of the structure itself
-    pub fn data_size(&self) -> usize {
-        self.members.len() * mem::size_of::<DHTSchemaSMPLMember>()
-    }
-}
-
-impl TryFrom<&[u8]> for DHTSchemaSMPL {
-    type Error = VeilidAPIError;
-    fn try_from(b: &[u8]) -> Result<Self, Self::Error> {
-        if b.len() != Self::FIXED_SIZE {
-            apibail_generic!("invalid size");
-        }
-        if &b[0..4] != &Self::FCC {
-            apibail_generic!("wrong fourcc");
-        }
-        if (b.len() - Self::FIXED_SIZE) % (PUBLIC_KEY_LENGTH + 2) != 0 {
-            apibail_generic!("invalid member length");
-        }
-
-        let o_cnt = u16::from_le_bytes(b[4..6].try_into().map_err(VeilidAPIError::internal)?);
-
-        let members_len = (b.len() - Self::FIXED_SIZE) / (PUBLIC_KEY_LENGTH + 2);
-        let mut members: Vec<DHTSchemaSMPLMember> = Vec::with_capacity(members_len);
-        for n in 0..members_len {
-            let mstart = Self::FIXED_SIZE + n * (PUBLIC_KEY_LENGTH + 2);
-            let m_key = PublicKey::try_from(&b[mstart..mstart + PUBLIC_KEY_LENGTH])
-                .map_err(VeilidAPIError::internal)?;
-            let m_cnt = u16::from_le_bytes(
-                b[mstart + PUBLIC_KEY_LENGTH..mstart + PUBLIC_KEY_LENGTH + 2]
-                    .try_into()
-                    .map_err(VeilidAPIError::internal)?,
-            );
-            members.push(DHTSchemaSMPLMember { m_key, m_cnt });
-        }
-
-        Ok(Self { o_cnt, members })
-    }
-}
-
-/// Enum over all the supported DHT Schemas
-#[derive(
-    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-#[serde(tag = "kind")]
-pub enum DHTSchema {
-    DFLT(DHTSchemaDFLT),
-    SMPL(DHTSchemaSMPL),
-}
-
-impl DHTSchema {
-    pub fn dflt(o_cnt: u16) -> DHTSchema {
-        DHTSchema::DFLT(DHTSchemaDFLT { o_cnt })
-    }
-    pub fn smpl(o_cnt: u16, members: Vec<DHTSchemaSMPLMember>) -> DHTSchema {
-        DHTSchema::SMPL(DHTSchemaSMPL { o_cnt, members })
-    }
-
-    /// Build the data representation of the schema
-    pub fn compile(&self) -> Vec<u8> {
-        match self {
-            DHTSchema::DFLT(d) => d.compile(),
-            DHTSchema::SMPL(s) => s.compile(),
-        }
-    }
-
-    /// Get the number of subkeys this schema allocates
-    pub fn subkey_count(&self) -> usize {
-        match self {
-            DHTSchema::DFLT(d) => d.subkey_count(),
-            DHTSchema::SMPL(s) => s.subkey_count(),
-        }
-    }
-
-    /// Get the data size of this schema beyond the size of the structure itself
-    pub fn data_size(&self) -> usize {
-        match self {
-            DHTSchema::DFLT(d) => d.data_size(),
-            DHTSchema::SMPL(s) => s.data_size(),
-        }
-    }
-}
-
-impl Default for DHTSchema {
-    fn default() -> Self {
-        Self::dflt(1)
-    }
-}
-
-impl TryFrom<&[u8]> for DHTSchema {
-    type Error = VeilidAPIError;
-    fn try_from(b: &[u8]) -> Result<Self, Self::Error> {
-        if b.len() < 4 {
-            apibail_generic!("invalid size");
-        }
-        let fcc: [u8; 4] = b[0..4].try_into().unwrap();
-        match fcc {
-            DHTSchemaDFLT::FCC => Ok(DHTSchema::DFLT(DHTSchemaDFLT::try_from(b)?)),
-            DHTSchemaSMPL::FCC => Ok(DHTSchema::SMPL(DHTSchemaSMPL::try_from(b)?)),
-            _ => {
-                apibail_generic!("unknown fourcc");
-            }
-        }
-    }
-}
-
-/// DHT Record Descriptor
-#[derive(
-    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct DHTRecordDescriptor {
-    pub owner: PublicKey,
-    pub schema: DHTSchema,
-}
-
-/////////////////////////////////////////////////////////////////////////////////////////////////////
-#[derive(
-    Copy,
-    Clone,
-    Debug,
-    PartialOrd,
-    PartialEq,
-    Eq,
-    Ord,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum TunnelMode {
-    Raw,
-    Turn,
-}
-
-#[derive(
-    Copy,
-    Clone,
-    Debug,
-    PartialOrd,
-    PartialEq,
-    Eq,
-    Ord,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(u8), derive(CheckBytes))]
-pub enum TunnelError {
-    BadId,        // Tunnel ID was rejected
-    NoEndpoint,   // Endpoint was unreachable
-    RejectedMode, // Endpoint couldn't provide mode
-    NoCapacity,   // Endpoint is full
-}
-
-#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct TunnelEndpoint {
-    pub mode: TunnelMode,
-    pub description: String, // XXX: TODO
-}
-
-impl Default for TunnelEndpoint {
-    fn default() -> Self {
-        Self {
-            mode: TunnelMode::Raw,
-            description: "".to_string(),
-        }
-    }
-}
-
-#[derive(
-    Clone, Debug, Default, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct FullTunnel {
-    pub id: TunnelId,
-    pub timeout: TimestampDuration,
-    pub local: TunnelEndpoint,
-    pub remote: TunnelEndpoint,
-}
-
-#[derive(
-    Clone, Debug, Default, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct PartialTunnel {
-    pub id: TunnelId,
-    pub timeout: TimestampDuration,
-    pub local: TunnelEndpoint,
-}
diff --git a/veilid-core/src/veilid_api/aligned_u64.rs b/veilid-core/src/veilid_api/types/aligned_u64.rs
similarity index 85%
rename from veilid-core/src/veilid_api/aligned_u64.rs
rename to veilid-core/src/veilid_api/types/aligned_u64.rs
index 31c161aa..6a64b86d 100644
--- a/veilid-core/src/veilid_api/aligned_u64.rs
+++ b/veilid-core/src/veilid_api/types/aligned_u64.rs
@@ -120,3 +120,17 @@ impl AlignedU64 {
         Self(self.0.saturating_sub(rhs.0))
     }
 }
+
+/////////////////////////////////////////////////////////////////////////////////////////////////////
+
+/// Microseconds since epoch
+pub type Timestamp = AlignedU64;
+pub fn get_aligned_timestamp() -> Timestamp {
+    get_timestamp().into()
+}
+/// Microseconds duration
+pub type TimestampDuration = AlignedU64;
+/// Request/Response matching id
+pub type OperationId = AlignedU64;
+/// Number of bytes
+pub type ByteCount = AlignedU64;
diff --git a/veilid-core/src/veilid_api/types/app_message_call.rs b/veilid-core/src/veilid_api/types/app_message_call.rs
new file mode 100644
index 00000000..f3c24f3a
--- /dev/null
+++ b/veilid-core/src/veilid_api/types/app_message_call.rs
@@ -0,0 +1,32 @@
+use super::*;
+
+/// Direct statement blob passed to hosting application for processing
+#[derive(
+    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct VeilidAppMessage {
+    /// Some(sender) if the message was sent directly, None if received via a private/safety route
+    #[serde(with = "opt_json_as_string")]
+    pub sender: Option<PublicKey>,
+    /// The content of the message to deliver to the application
+    #[serde(with = "json_as_base64")]
+    pub message: Vec<u8>,
+}
+
+/// Direct question blob passed to hosting application for processing to send an eventual AppReply
+#[derive(
+    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct VeilidAppCall {
+    /// Some(sender) if the request was sent directly, None if received via a private/safety route
+    #[serde(with = "opt_json_as_string")]
+    pub sender: Option<PublicKey>,
+    /// The content of the request to deliver to the application
+    #[serde(with = "json_as_base64")]
+    pub message: Vec<u8>,
+    /// The id to reply to
+    #[serde(with = "json_as_string")]
+    pub id: OperationId,
+}
diff --git a/veilid-core/src/veilid_api/types/dht/dht_record_descriptor.rs b/veilid-core/src/veilid_api/types/dht/dht_record_descriptor.rs
new file mode 100644
index 00000000..ad2fac30
--- /dev/null
+++ b/veilid-core/src/veilid_api/types/dht/dht_record_descriptor.rs
@@ -0,0 +1,35 @@
+use super::*;
+
+/// DHT Record Descriptor
+#[derive(
+    Debug,
+    Clone,
+    PartialOrd,
+    Ord,
+    PartialEq,
+    Eq,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct DHTRecordDescriptor {
+    owner: PublicKey,
+    schema: DHTSchema,
+}
+
+impl DHTRecordDescriptor {
+    pub fn new(owner: PublicKey, schema: DHTSchema) -> Self {
+        Self { owner, schema }
+    }
+
+    pub fn owner(&self) -> PublicKey {
+        self.owner
+    }
+
+    pub fn schema(&self) -> DHTSchema {
+        self.schema
+    }
+}
diff --git a/veilid-core/src/veilid_api/types/dht/mod.rs b/veilid-core/src/veilid_api/types/dht/mod.rs
new file mode 100644
index 00000000..55ca7803
--- /dev/null
+++ b/veilid-core/src/veilid_api/types/dht/mod.rs
@@ -0,0 +1,16 @@
+mod dht_record_descriptor;
+mod schema;
+mod value_data;
+
+use super::*;
+
+pub use dht_record_descriptor::*;
+pub use schema::*;
+pub use value_data::*;
+
+/// Value subkey
+pub type ValueSubkey = u32;
+/// Value subkey range
+pub type ValueSubkeyRange = (u32, u32);
+/// Value sequence number
+pub type ValueSeqNum = u32;
diff --git a/veilid-core/src/veilid_api/types/dht/schema/dflt.rs b/veilid-core/src/veilid_api/types/dht/schema/dflt.rs
new file mode 100644
index 00000000..332ecd90
--- /dev/null
+++ b/veilid-core/src/veilid_api/types/dht/schema/dflt.rs
@@ -0,0 +1,61 @@
+use super::*;
+
+/// Default DHT Schema (DFLT)
+#[derive(
+    Debug,
+    Clone,
+    PartialEq,
+    Eq,
+    Ord,
+    PartialOrd,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct DHTSchemaDFLT {
+    /// Owner subkey count
+    pub o_cnt: u16,
+}
+
+impl DHTSchemaDFLT {
+    pub const FCC: [u8; 4] = *b"DFLT";
+    pub const FIXED_SIZE: usize = 6;
+
+    /// Build the data representation of the schema
+    pub fn compile(&self) -> Vec<u8> {
+        let mut out = Vec::<u8>::with_capacity(Self::FIXED_SIZE);
+        // kind
+        out.extend_from_slice(&Self::FCC);
+        // o_cnt
+        out.extend_from_slice(&self.o_cnt.to_le_bytes());
+        out
+    }
+
+    /// Get the number of subkeys this schema allocates
+    pub fn subkey_count(&self) -> usize {
+        self.o_cnt as usize
+    }
+    /// Get the data size of this schema beyond the size of the structure itself
+    pub fn data_size(&self) -> usize {
+        0
+    }
+}
+
+impl TryFrom<&[u8]> for DHTSchemaDFLT {
+    type Error = VeilidAPIError;
+    fn try_from(b: &[u8]) -> Result<Self, Self::Error> {
+        if b.len() != Self::FIXED_SIZE {
+            apibail_generic!("invalid size");
+        }
+        if &b[0..4] != &Self::FCC {
+            apibail_generic!("wrong fourcc");
+        }
+
+        let o_cnt = u16::from_le_bytes(b[4..6].try_into().map_err(VeilidAPIError::internal)?);
+
+        Ok(Self { o_cnt })
+    }
+}
diff --git a/veilid-core/src/veilid_api/types/dht/schema/mod.rs b/veilid-core/src/veilid_api/types/dht/schema/mod.rs
new file mode 100644
index 00000000..160f1422
--- /dev/null
+++ b/veilid-core/src/veilid_api/types/dht/schema/mod.rs
@@ -0,0 +1,84 @@
+mod dflt;
+mod smpl;
+
+use super::*;
+
+pub use dflt::*;
+pub use smpl::*;
+
+/// Enum over all the supported DHT Schemas
+#[derive(
+    Debug,
+    Clone,
+    PartialEq,
+    Eq,
+    Ord,
+    PartialOrd,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+#[serde(tag = "kind")]
+pub enum DHTSchema {
+    DFLT(DHTSchemaDFLT),
+    SMPL(DHTSchemaSMPL),
+}
+
+impl DHTSchema {
+    pub fn dflt(o_cnt: u16) -> DHTSchema {
+        DHTSchema::DFLT(DHTSchemaDFLT { o_cnt })
+    }
+    pub fn smpl(o_cnt: u16, members: Vec<DHTSchemaSMPLMember>) -> DHTSchema {
+        DHTSchema::SMPL(DHTSchemaSMPL { o_cnt, members })
+    }
+
+    /// Build the data representation of the schema
+    pub fn compile(&self) -> Vec<u8> {
+        match self {
+            DHTSchema::DFLT(d) => d.compile(),
+            DHTSchema::SMPL(s) => s.compile(),
+        }
+    }
+
+    /// Get the number of subkeys this schema allocates
+    pub fn subkey_count(&self) -> usize {
+        match self {
+            DHTSchema::DFLT(d) => d.subkey_count(),
+            DHTSchema::SMPL(s) => s.subkey_count(),
+        }
+    }
+
+    /// Get the data size of this schema beyond the size of the structure itself
+    pub fn data_size(&self) -> usize {
+        match self {
+            DHTSchema::DFLT(d) => d.data_size(),
+            DHTSchema::SMPL(s) => s.data_size(),
+        }
+    }
+}
+
+impl Default for DHTSchema {
+    fn default() -> Self {
+        Self::dflt(1)
+    }
+}
+
+impl TryFrom<&[u8]> for DHTSchema {
+    type Error = VeilidAPIError;
+    fn try_from(b: &[u8]) -> Result<Self, Self::Error> {
+        if b.len() < 4 {
+            apibail_generic!("invalid size");
+        }
+        let fcc: [u8; 4] = b[0..4].try_into().unwrap();
+        match fcc {
+            DHTSchemaDFLT::FCC => Ok(DHTSchema::DFLT(DHTSchemaDFLT::try_from(b)?)),
+            DHTSchemaSMPL::FCC => Ok(DHTSchema::SMPL(DHTSchemaSMPL::try_from(b)?)),
+            _ => {
+                apibail_generic!("unknown fourcc");
+            }
+        }
+    }
+}
diff --git a/veilid-core/src/veilid_api/types/dht/schema/smpl.rs b/veilid-core/src/veilid_api/types/dht/schema/smpl.rs
new file mode 100644
index 00000000..6ae08a26
--- /dev/null
+++ b/veilid-core/src/veilid_api/types/dht/schema/smpl.rs
@@ -0,0 +1,114 @@
+use super::*;
+
+/// Simple DHT Schema (SMPL) Member
+#[derive(
+    Debug,
+    Clone,
+    PartialEq,
+    Eq,
+    PartialOrd,
+    Ord,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct DHTSchemaSMPLMember {
+    /// Member key
+    pub m_key: PublicKey,
+    /// Member subkey countanyway,
+    pub m_cnt: u16,
+}
+
+/// Simple DHT Schema (SMPL)
+#[derive(
+    Debug,
+    Clone,
+    PartialEq,
+    Eq,
+    Ord,
+    PartialOrd,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct DHTSchemaSMPL {
+    /// Owner subkey count
+    pub o_cnt: u16,
+    /// Members
+    pub members: Vec<DHTSchemaSMPLMember>,
+}
+
+impl DHTSchemaSMPL {
+    pub const FCC: [u8; 4] = *b"SMPL";
+    pub const FIXED_SIZE: usize = 6;
+
+    /// Build the data representation of the schema
+    pub fn compile(&self) -> Vec<u8> {
+        let mut out = Vec::<u8>::with_capacity(
+            Self::FIXED_SIZE + (self.members.len() * (PUBLIC_KEY_LENGTH + 2)),
+        );
+        // kind
+        out.extend_from_slice(&Self::FCC);
+        // o_cnt
+        out.extend_from_slice(&self.o_cnt.to_le_bytes());
+        // members
+        for m in self.members {
+            // m_key
+            out.extend_from_slice(&m.m_key.bytes);
+            // m_cnt
+            out.extend_from_slice(&m.m_cnt.to_le_bytes());
+        }
+        out
+    }
+
+    /// Get the number of subkeys this schema allocates
+    pub fn subkey_count(&self) -> usize {
+        self.members
+            .iter()
+            .fold(self.o_cnt as usize, |acc, x| acc + (x.m_cnt as usize))
+    }
+
+    /// Get the data size of this schema beyond the size of the structure itself
+    pub fn data_size(&self) -> usize {
+        self.members.len() * mem::size_of::<DHTSchemaSMPLMember>()
+    }
+}
+
+impl TryFrom<&[u8]> for DHTSchemaSMPL {
+    type Error = VeilidAPIError;
+    fn try_from(b: &[u8]) -> Result<Self, Self::Error> {
+        if b.len() != Self::FIXED_SIZE {
+            apibail_generic!("invalid size");
+        }
+        if &b[0..4] != &Self::FCC {
+            apibail_generic!("wrong fourcc");
+        }
+        if (b.len() - Self::FIXED_SIZE) % (PUBLIC_KEY_LENGTH + 2) != 0 {
+            apibail_generic!("invalid member length");
+        }
+
+        let o_cnt = u16::from_le_bytes(b[4..6].try_into().map_err(VeilidAPIError::internal)?);
+
+        let members_len = (b.len() - Self::FIXED_SIZE) / (PUBLIC_KEY_LENGTH + 2);
+        let mut members: Vec<DHTSchemaSMPLMember> = Vec::with_capacity(members_len);
+        for n in 0..members_len {
+            let mstart = Self::FIXED_SIZE + n * (PUBLIC_KEY_LENGTH + 2);
+            let m_key = PublicKey::try_from(&b[mstart..mstart + PUBLIC_KEY_LENGTH])
+                .map_err(VeilidAPIError::internal)?;
+            let m_cnt = u16::from_le_bytes(
+                b[mstart + PUBLIC_KEY_LENGTH..mstart + PUBLIC_KEY_LENGTH + 2]
+                    .try_into()
+                    .map_err(VeilidAPIError::internal)?,
+            );
+            members.push(DHTSchemaSMPLMember { m_key, m_cnt });
+        }
+
+        Ok(Self { o_cnt, members })
+    }
+}
diff --git a/veilid-core/src/veilid_api/types/dht/value_data.rs b/veilid-core/src/veilid_api/types/dht/value_data.rs
new file mode 100644
index 00000000..0cb34143
--- /dev/null
+++ b/veilid-core/src/veilid_api/types/dht/value_data.rs
@@ -0,0 +1,64 @@
+use super::*;
+
+#[derive(
+    Clone,
+    Debug,
+    Default,
+    PartialOrd,
+    PartialEq,
+    Eq,
+    Ord,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct ValueData {
+    seq: ValueSeqNum,
+    data: Vec<u8>,
+    writer: PublicKey,
+}
+impl ValueData {
+    pub const MAX_LEN: usize = 32768;
+
+    pub fn new(data: Vec<u8>, writer: PublicKey) -> Self {
+        assert!(data.len() <= Self::MAX_LEN);
+        Self {
+            seq: 0,
+            data,
+            writer,
+        }
+    }
+    pub fn new_with_seq(seq: ValueSeqNum, data: Vec<u8>, writer: PublicKey) -> Self {
+        assert!(data.len() <= Self::MAX_LEN);
+        Self { seq, data, writer }
+    }
+
+    pub fn seq(&self) -> ValueSeqNum {
+        self.seq
+    }
+
+    pub fn writer(&self) -> &PublicKey {
+        &self.writer
+    }
+
+    pub fn data(&self) -> &[u8] {
+        &self.data
+    }
+
+    pub fn with_data_mut<F, R>(&mut self, f: F) -> R
+    where
+        F: FnOnce(&mut Vec<u8>) -> R,
+    {
+        let out = f(&mut self.data);
+        assert!(self.data.len() <= Self::MAX_LEN);
+        self.seq += 1;
+        out
+    }
+
+    pub fn total_size(&self) -> usize {
+        mem::size_of::<Self>() + self.data.len()
+    }
+}
diff --git a/veilid-core/src/veilid_api/types/fourcc.rs b/veilid-core/src/veilid_api/types/fourcc.rs
new file mode 100644
index 00000000..c634b796
--- /dev/null
+++ b/veilid-core/src/veilid_api/types/fourcc.rs
@@ -0,0 +1,52 @@
+use super::*;
+
+/// FOURCC code
+#[derive(
+    Copy,
+    Default,
+    Clone,
+    Hash,
+    PartialOrd,
+    Ord,
+    PartialEq,
+    Eq,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes, PartialOrd, Ord, PartialEq, Eq, Hash))]
+pub struct FourCC(pub [u8; 4]);
+
+impl From<[u8; 4]> for FourCC {
+    fn from(b: [u8; 4]) -> Self {
+        Self(b)
+    }
+}
+impl TryFrom<&[u8]> for FourCC {
+    type Error = VeilidAPIError;
+    fn try_from(b: &[u8]) -> Result<Self, Self::Error> {
+        Ok(Self(b.try_into().map_err(VeilidAPIError::generic)?))
+    }
+}
+
+impl fmt::Display for FourCC {
+    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> Result<(), fmt::Error> {
+        write!(f, "{}", String::from_utf8_lossy(&self.0))
+    }
+}
+impl fmt::Debug for FourCC {
+    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> Result<(), fmt::Error> {
+        write!(f, "{}", String::from_utf8_lossy(&self.0))
+    }
+}
+
+impl FromStr for FourCC {
+    type Err = VeilidAPIError;
+    fn from_str(s: &str) -> Result<Self, Self::Err> {
+        Ok(Self(
+            s.as_bytes().try_into().map_err(VeilidAPIError::generic)?,
+        ))
+    }
+}
diff --git a/veilid-core/src/veilid_api/types/mod.rs b/veilid-core/src/veilid_api/types/mod.rs
new file mode 100644
index 00000000..6dea3db5
--- /dev/null
+++ b/veilid-core/src/veilid_api/types/mod.rs
@@ -0,0 +1,21 @@
+mod aligned_u64;
+mod app_message_call;
+mod dht;
+mod fourcc;
+mod safety;
+mod stats;
+mod tunnel;
+mod veilid_log;
+mod veilid_state;
+
+use super::*;
+
+pub use aligned_u64::*;
+pub use app_message_call::*;
+pub use dht::*;
+pub use fourcc::*;
+pub use safety::*;
+pub use stats::*;
+pub use tunnel::*;
+pub use veilid_log::*;
+pub use veilid_state::*;
diff --git a/veilid-core/src/veilid_api/types/safety.rs b/veilid-core/src/veilid_api/types/safety.rs
new file mode 100644
index 00000000..27cb46ba
--- /dev/null
+++ b/veilid-core/src/veilid_api/types/safety.rs
@@ -0,0 +1,125 @@
+use super::*;
+
+// Ordering here matters, >= is used to check strength of sequencing requirement
+#[derive(
+    Copy,
+    Clone,
+    Debug,
+    PartialEq,
+    Eq,
+    PartialOrd,
+    Ord,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum Sequencing {
+    NoPreference,
+    PreferOrdered,
+    EnsureOrdered,
+}
+
+impl Default for Sequencing {
+    fn default() -> Self {
+        Self::NoPreference
+    }
+}
+
+// Ordering here matters, >= is used to check strength of stability requirement
+#[derive(
+    Copy,
+    Clone,
+    Debug,
+    PartialEq,
+    Eq,
+    PartialOrd,
+    Ord,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum Stability {
+    LowLatency,
+    Reliable,
+}
+
+impl Default for Stability {
+    fn default() -> Self {
+        Self::LowLatency
+    }
+}
+
+/// The choice of safety route to include in compiled routes
+#[derive(
+    Copy,
+    Clone,
+    Debug,
+    PartialEq,
+    Eq,
+    PartialOrd,
+    Ord,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum SafetySelection {
+    /// Don't use a safety route, only specify the sequencing preference
+    Unsafe(Sequencing),
+    /// Use a safety route and parameters specified by a SafetySpec
+    Safe(SafetySpec),
+}
+
+impl SafetySelection {
+    pub fn get_sequencing(&self) -> Sequencing {
+        match self {
+            SafetySelection::Unsafe(seq) => *seq,
+            SafetySelection::Safe(ss) => ss.sequencing,
+        }
+    }
+}
+
+impl Default for SafetySelection {
+    fn default() -> Self {
+        Self::Unsafe(Sequencing::NoPreference)
+    }
+}
+
+/// Options for safety routes (sender privacy)
+#[derive(
+    Copy,
+    Clone,
+    Debug,
+    PartialEq,
+    Eq,
+    PartialOrd,
+    Ord,
+    Hash,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct SafetySpec {
+    /// preferred safety route set id if it still exists
+    pub preferred_route: Option<RouteId>,
+    /// must be greater than 0
+    pub hop_count: usize,
+    /// prefer reliability over speed
+    pub stability: Stability,
+    /// prefer connection-oriented sequenced protocols
+    pub sequencing: Sequencing,
+}
diff --git a/veilid-core/src/veilid_api/types/stats.rs b/veilid-core/src/veilid_api/types/stats.rs
new file mode 100644
index 00000000..8ea79e11
--- /dev/null
+++ b/veilid-core/src/veilid_api/types/stats.rs
@@ -0,0 +1,113 @@
+use super::*;
+
+#[derive(
+    Clone,
+    Debug,
+    Default,
+    PartialEq,
+    Eq,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct LatencyStats {
+    #[serde(with = "json_as_string")]
+    pub fastest: TimestampDuration, // fastest latency in the ROLLING_LATENCIES_SIZE last latencies
+    #[serde(with = "json_as_string")]
+    pub average: TimestampDuration, // average latency over the ROLLING_LATENCIES_SIZE last latencies
+    #[serde(with = "json_as_string")]
+    pub slowest: TimestampDuration, // slowest latency in the ROLLING_LATENCIES_SIZE last latencies
+}
+
+#[derive(
+    Clone,
+    Debug,
+    Default,
+    PartialEq,
+    Eq,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct TransferStats {
+    #[serde(with = "json_as_string")]
+    pub total: ByteCount, // total amount transferred ever
+    #[serde(with = "json_as_string")]
+    pub maximum: ByteCount, // maximum rate over the ROLLING_TRANSFERS_SIZE last amounts
+    #[serde(with = "json_as_string")]
+    pub average: ByteCount, // average rate over the ROLLING_TRANSFERS_SIZE last amounts
+    #[serde(with = "json_as_string")]
+    pub minimum: ByteCount, // minimum rate over the ROLLING_TRANSFERS_SIZE last amounts
+}
+
+#[derive(
+    Clone,
+    Debug,
+    Default,
+    PartialEq,
+    Eq,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct TransferStatsDownUp {
+    pub down: TransferStats,
+    pub up: TransferStats,
+}
+
+#[derive(
+    Clone,
+    Debug,
+    Default,
+    PartialEq,
+    Eq,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct RPCStats {
+    pub messages_sent: u32, // number of rpcs that have been sent in the total_time range
+    pub messages_rcvd: u32, // number of rpcs that have been received in the total_time range
+    pub questions_in_flight: u32, // number of questions issued that have yet to be answered
+    #[serde(with = "opt_json_as_string")]
+    pub last_question_ts: Option<Timestamp>, // when the peer was last questioned (either successfully or not) and we wanted an answer
+    #[serde(with = "opt_json_as_string")]
+    pub last_seen_ts: Option<Timestamp>, // when the peer was last seen for any reason, including when we first attempted to reach out to it
+    #[serde(with = "opt_json_as_string")]
+    pub first_consecutive_seen_ts: Option<Timestamp>, // the timestamp of the first consecutive proof-of-life for this node (an answer or received question)
+    pub recent_lost_answers: u32, // number of answers that have been lost since we lost reliability
+    pub failed_to_send: u32, // number of messages that have failed to send since we last successfully sent one
+}
+
+#[derive(
+    Clone,
+    Debug,
+    Default,
+    PartialEq,
+    Eq,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct PeerStats {
+    #[serde(with = "json_as_string")]
+    pub time_added: Timestamp, // when the peer was added to the routing table
+    pub rpc_stats: RPCStats,           // information about RPCs
+    pub latency: Option<LatencyStats>, // latencies for communications with the peer
+    pub transfer: TransferStatsDownUp, // Stats for communications with the peer
+}
diff --git a/veilid-core/src/veilid_api/types/tunnel.rs b/veilid-core/src/veilid_api/types/tunnel.rs
new file mode 100644
index 00000000..968c7695
--- /dev/null
+++ b/veilid-core/src/veilid_api/types/tunnel.rs
@@ -0,0 +1,83 @@
+use super::*;
+
+/// Tunnel identifier
+pub type TunnelId = AlignedU64;
+
+#[derive(
+    Copy,
+    Clone,
+    Debug,
+    PartialOrd,
+    PartialEq,
+    Eq,
+    Ord,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum TunnelMode {
+    Raw,
+    Turn,
+}
+
+#[derive(
+    Copy,
+    Clone,
+    Debug,
+    PartialOrd,
+    PartialEq,
+    Eq,
+    Ord,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum TunnelError {
+    BadId,        // Tunnel ID was rejected
+    NoEndpoint,   // Endpoint was unreachable
+    RejectedMode, // Endpoint couldn't provide mode
+    NoCapacity,   // Endpoint is full
+}
+
+#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct TunnelEndpoint {
+    pub mode: TunnelMode,
+    pub description: String, // XXX: TODO
+}
+
+impl Default for TunnelEndpoint {
+    fn default() -> Self {
+        Self {
+            mode: TunnelMode::Raw,
+            description: "".to_string(),
+        }
+    }
+}
+
+#[derive(
+    Clone, Debug, Default, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct FullTunnel {
+    pub id: TunnelId,
+    pub timeout: TimestampDuration,
+    pub local: TunnelEndpoint,
+    pub remote: TunnelEndpoint,
+}
+
+#[derive(
+    Clone, Debug, Default, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct PartialTunnel {
+    pub id: TunnelId,
+    pub timeout: TimestampDuration,
+    pub local: TunnelEndpoint,
+}
diff --git a/veilid-core/src/veilid_api/types/veilid_log.rs b/veilid-core/src/veilid_api/types/veilid_log.rs
new file mode 100644
index 00000000..5eab945c
--- /dev/null
+++ b/veilid-core/src/veilid_api/types/veilid_log.rs
@@ -0,0 +1,88 @@
+use super::*;
+
+/// Log level for VeilidCore
+#[derive(
+    Debug,
+    Clone,
+    PartialEq,
+    Eq,
+    PartialOrd,
+    Ord,
+    Copy,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum VeilidLogLevel {
+    Error = 1,
+    Warn,
+    Info,
+    Debug,
+    Trace,
+}
+
+impl VeilidLogLevel {
+    pub fn from_tracing_level(level: tracing::Level) -> VeilidLogLevel {
+        match level {
+            tracing::Level::ERROR => VeilidLogLevel::Error,
+            tracing::Level::WARN => VeilidLogLevel::Warn,
+            tracing::Level::INFO => VeilidLogLevel::Info,
+            tracing::Level::DEBUG => VeilidLogLevel::Debug,
+            tracing::Level::TRACE => VeilidLogLevel::Trace,
+        }
+    }
+    pub fn from_log_level(level: log::Level) -> VeilidLogLevel {
+        match level {
+            log::Level::Error => VeilidLogLevel::Error,
+            log::Level::Warn => VeilidLogLevel::Warn,
+            log::Level::Info => VeilidLogLevel::Info,
+            log::Level::Debug => VeilidLogLevel::Debug,
+            log::Level::Trace => VeilidLogLevel::Trace,
+        }
+    }
+    pub fn to_tracing_level(&self) -> tracing::Level {
+        match self {
+            Self::Error => tracing::Level::ERROR,
+            Self::Warn => tracing::Level::WARN,
+            Self::Info => tracing::Level::INFO,
+            Self::Debug => tracing::Level::DEBUG,
+            Self::Trace => tracing::Level::TRACE,
+        }
+    }
+    pub fn to_log_level(&self) -> log::Level {
+        match self {
+            Self::Error => log::Level::Error,
+            Self::Warn => log::Level::Warn,
+            Self::Info => log::Level::Info,
+            Self::Debug => log::Level::Debug,
+            Self::Trace => log::Level::Trace,
+        }
+    }
+}
+
+impl fmt::Display for VeilidLogLevel {
+    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> Result<(), fmt::Error> {
+        let text = match self {
+            Self::Error => "ERROR",
+            Self::Warn => "WARN",
+            Self::Info => "INFO",
+            Self::Debug => "DEBUG",
+            Self::Trace => "TRACE",
+        };
+        write!(f, "{}", text)
+    }
+}
+
+/// A VeilidCore log message with optional backtrace
+#[derive(
+    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct VeilidLog {
+    pub log_level: VeilidLogLevel,
+    pub message: String,
+    pub backtrace: Option<String>,
+}
diff --git a/veilid-core/src/veilid_api/types/veilid_state.rs b/veilid-core/src/veilid_api/types/veilid_state.rs
new file mode 100644
index 00000000..d2bb50b2
--- /dev/null
+++ b/veilid-core/src/veilid_api/types/veilid_state.rs
@@ -0,0 +1,144 @@
+use super::*;
+
+/// Attachment abstraction for network 'signal strength'
+#[derive(
+    Debug,
+    PartialEq,
+    Eq,
+    Clone,
+    Copy,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+pub enum AttachmentState {
+    Detached,
+    Attaching,
+    AttachedWeak,
+    AttachedGood,
+    AttachedStrong,
+    FullyAttached,
+    OverAttached,
+    Detaching,
+}
+
+impl fmt::Display for AttachmentState {
+    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> Result<(), fmt::Error> {
+        let out = match self {
+            AttachmentState::Attaching => "attaching".to_owned(),
+            AttachmentState::AttachedWeak => "attached_weak".to_owned(),
+            AttachmentState::AttachedGood => "attached_good".to_owned(),
+            AttachmentState::AttachedStrong => "attached_strong".to_owned(),
+            AttachmentState::FullyAttached => "fully_attached".to_owned(),
+            AttachmentState::OverAttached => "over_attached".to_owned(),
+            AttachmentState::Detaching => "detaching".to_owned(),
+            AttachmentState::Detached => "detached".to_owned(),
+        };
+        write!(f, "{}", out)
+    }
+}
+
+impl TryFrom<String> for AttachmentState {
+    type Error = ();
+
+    fn try_from(s: String) -> Result<Self, Self::Error> {
+        Ok(match s.as_str() {
+            "attaching" => AttachmentState::Attaching,
+            "attached_weak" => AttachmentState::AttachedWeak,
+            "attached_good" => AttachmentState::AttachedGood,
+            "attached_strong" => AttachmentState::AttachedStrong,
+            "fully_attached" => AttachmentState::FullyAttached,
+            "over_attached" => AttachmentState::OverAttached,
+            "detaching" => AttachmentState::Detaching,
+            "detached" => AttachmentState::Detached,
+            _ => return Err(()),
+        })
+    }
+}
+
+#[derive(
+    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct VeilidStateAttachment {
+    pub state: AttachmentState,
+    pub public_internet_ready: bool,
+    pub local_network_ready: bool,
+}
+
+#[derive(
+    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct PeerTableData {
+    pub node_ids: Vec<String>,
+    pub peer_address: String,
+    pub peer_stats: PeerStats,
+}
+
+#[derive(
+    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct VeilidStateNetwork {
+    pub started: bool,
+    #[serde(with = "json_as_string")]
+    pub bps_down: ByteCount,
+    #[serde(with = "json_as_string")]
+    pub bps_up: ByteCount,
+    pub peers: Vec<PeerTableData>,
+}
+
+#[derive(
+    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct VeilidStateRoute {
+    pub dead_routes: Vec<RouteId>,
+    pub dead_remote_routes: Vec<RouteId>,
+}
+
+#[derive(
+    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct VeilidStateConfig {
+    pub config: VeilidConfigInner,
+}
+
+#[derive(
+    Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct VeilidValueChange {
+    key: TypedKey,
+    subkeys: Vec<ValueSubkey>,
+    count: u32,
+    value: ValueData,
+}
+
+#[derive(Debug, Clone, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
+#[archive_attr(repr(u8), derive(CheckBytes))]
+#[serde(tag = "kind")]
+pub enum VeilidUpdate {
+    Log(VeilidLog),
+    AppMessage(VeilidAppMessage),
+    AppCall(VeilidAppCall),
+    Attachment(VeilidStateAttachment),
+    Network(VeilidStateNetwork),
+    Config(VeilidStateConfig),
+    Route(VeilidStateRoute),
+    ValueChange(VeilidValueChange),
+    Shutdown,
+}
+
+#[derive(Debug, Clone, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct VeilidState {
+    pub attachment: VeilidStateAttachment,
+    pub network: VeilidStateNetwork,
+    pub config: VeilidStateConfig,
+}
diff --git a/veilid-core/src/watcher_table.rs b/veilid-core/src/watcher_table.rs
deleted file mode 100644
index e69de29b..00000000
diff --git a/veilid-core/tests/web.rs b/veilid-core/tests/web.rs
index 5024dfd8..82fb397d 100644
--- a/veilid-core/tests/web.rs
+++ b/veilid-core/tests/web.rs
@@ -60,6 +60,12 @@ async fn run_test_connection_table() {
     test_connection_table::test_all().await;
 }
 
+#[wasm_bindgen_test]
+async fn run_test_signed_node_info() {
+    setup();
+    test_signed_node_info::test_all().await;
+}
+
 #[wasm_bindgen_test]
 async fn exec_test_table_store() {
     setup();

From 7f909a06b928a065de07e1200667d413e1719337 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Thu, 20 Apr 2023 11:47:54 -0400
Subject: [PATCH 10/74] refactor rpc validation

---
 veilid-core/proto/veilid.capnp                |   2 +-
 .../src/crypto/types/crypto_typed_set.rs      |  22 ++++
 veilid-core/src/crypto/types/mod.rs           |   2 +
 veilid-core/src/network_manager/mod.rs        |   4 +-
 .../tests/test_signed_node_info.rs            | 100 +++++++-----------
 veilid-core/src/routing_table/bucket_entry.rs |  44 +++++---
 veilid-core/src/routing_table/mod.rs          |  10 +-
 veilid-core/src/routing_table/node_ref.rs     |   8 +-
 veilid-core/src/routing_table/privacy.rs      |  37 ++++++-
 .../route_spec_store/route_spec_store.rs      |   4 +-
 .../src/routing_table/routing_domains.rs      |  57 +++++-----
 .../src/routing_table/routing_table_inner.rs  |  25 +++--
 .../routing_table/tasks/relay_management.rs   |   4 +-
 .../src/routing_table/types/node_info.rs      |  53 ++++++++--
 .../src/routing_table/types/peer_info.rs      |  21 +++-
 .../types/signed_direct_node_info.rs          |  47 ++++----
 .../routing_table/types/signed_node_info.rs   |  31 ++++--
 .../types/signed_relayed_node_info.rs         |  78 ++++++++++----
 .../src/rpc_processor/coders/node_info.rs     |  24 ++---
 .../rpc_processor/coders/operations/answer.rs |  39 ++++---
 .../coders/operations/operation.rs            |  37 ++++---
 .../coders/operations/operation_app_call.rs   |   4 +
 .../coders/operations/operation_find_block.rs |   5 +-
 .../coders/operations/operation_find_node.rs  |  12 ++-
 .../coders/operations/operation_get_value.rs  |  22 ++--
 .../coders/operations/operation_route.rs      |   3 +-
 .../coders/operations/operation_set_value.rs  |   3 +-
 .../coders/operations/operation_signal.rs     |   3 +-
 .../coders/operations/operation_status.rs     |   7 ++
 .../operations/operation_supply_block.rs      |   5 +-
 .../operations/operation_watch_value.rs       |   3 +-
 .../coders/operations/question.rs             |  26 ++++-
 .../coders/operations/respond_to.rs           |  14 ++-
 .../coders/operations/statement.rs            |  25 +++--
 .../src/rpc_processor/coders/peer_info.rs     |  13 +--
 .../coders/private_safety_route.rs            |  13 +--
 .../src/rpc_processor/coders/signal_info.rs   |   5 +-
 .../coders/signed_direct_node_info.rs         |  17 +--
 .../rpc_processor/coders/signed_node_info.rs  |   6 +-
 .../coders/signed_relayed_node_info.rs        |  38 ++-----
 .../rpc_processor/coders/signed_value_data.rs |   8 +-
 .../coders/signed_value_descriptor.rs         |  10 +-
 .../src/rpc_processor/coders/value_detail.rs  |  20 +++-
 veilid-core/src/rpc_processor/mod.rs          |  14 ++-
 .../src/rpc_processor/rpc_find_node.rs        |   2 +-
 veilid-core/src/rpc_processor/rpc_route.rs    |  15 ++-
 veilid-core/src/storage_manager/mod.rs        |  30 +++---
 veilid-core/src/storage_manager/types/mod.rs  |   9 ++
 .../{ => types}/signed_value_data.rs          |  31 +++---
 .../{ => types}/signed_value_descriptor.rs    |  27 +++--
 .../src/storage_manager/types/value_detail.rs |  77 ++++++++++++++
 .../src/storage_manager/value_detail.rs       |  43 --------
 52 files changed, 729 insertions(+), 430 deletions(-)
 create mode 100644 veilid-core/src/storage_manager/types/mod.rs
 rename veilid-core/src/storage_manager/{ => types}/signed_value_data.rs (83%)
 rename veilid-core/src/storage_manager/{ => types}/signed_value_descriptor.rs (75%)
 create mode 100644 veilid-core/src/storage_manager/types/value_detail.rs
 delete mode 100644 veilid-core/src/storage_manager/value_detail.rs

diff --git a/veilid-core/proto/veilid.capnp b/veilid-core/proto/veilid.capnp
index fc42116b..5197fe64 100644
--- a/veilid-core/proto/veilid.capnp
+++ b/veilid-core/proto/veilid.capnp
@@ -367,7 +367,7 @@ struct OperationSetValueQ @0xbac06191ff8bdbc5 {
 struct OperationSetValueA @0x9378d0732dc95be2 {
     union {
         schemaError         @0  :Void;                  # Either the schema is not available at the node, or the data does not match the schema that is there
-        value               @1  :ValueDetail;                 # the new value if successful, may be a different value than what was set if the seq number was lower or equal
+        value               @1  :ValueDetail;           # the new value if successful, may be a different value than what was set if the seq number was lower or equal
         peers               @2  :List(PeerInfo);        # returned 'closer peer' information if this node is refusing to store the key
     }
 }
diff --git a/veilid-core/src/crypto/types/crypto_typed_set.rs b/veilid-core/src/crypto/types/crypto_typed_set.rs
index 19932b67..3906d559 100644
--- a/veilid-core/src/crypto/types/crypto_typed_set.rs
+++ b/veilid-core/src/crypto/types/crypto_typed_set.rs
@@ -282,6 +282,28 @@ where
         tks
     }
 }
+impl<K> From<&[CryptoTyped<K>]> for CryptoTypedSet<K>
+where
+    K: Clone
+        + Copy
+        + fmt::Debug
+        + fmt::Display
+        + FromStr
+        + PartialEq
+        + Eq
+        + PartialOrd
+        + Ord
+        + Hash
+        + RkyvArchive
+        + Encodable,
+    <K as RkyvArchive>::Archived: Hash + PartialEq + Eq,
+{
+    fn from(x: &[CryptoTyped<K>]) -> Self {
+        let mut tks = CryptoTypedSet::<K>::with_capacity(x.len());
+        tks.add_all(x);
+        tks
+    }
+}
 impl<K> Into<Vec<CryptoTyped<K>>> for CryptoTypedSet<K>
 where
     K: Clone
diff --git a/veilid-core/src/crypto/types/mod.rs b/veilid-core/src/crypto/types/mod.rs
index a7142d8f..0c9b76d2 100644
--- a/veilid-core/src/crypto/types/mod.rs
+++ b/veilid-core/src/crypto/types/mod.rs
@@ -58,3 +58,5 @@ pub type TypedSignature = CryptoTyped<Signature>;
 
 pub type TypedKeySet = CryptoTypedSet<PublicKey>;
 pub type TypedSecretSet = CryptoTypedSet<SecretKey>;
+pub type TypedKeyPairSet = CryptoTypedSet<KeyPair>;
+pub type TypedSignatureSet = CryptoTypedSet<Signature>;
diff --git a/veilid-core/src/network_manager/mod.rs b/veilid-core/src/network_manager/mod.rs
index d02bdea3..14e4153c 100644
--- a/veilid-core/src/network_manager/mod.rs
+++ b/veilid-core/src/network_manager/mod.rs
@@ -463,7 +463,7 @@ impl NetworkManager {
                     will_validate_dial_info: false,
                 };  
             };
-        let own_node_info = own_peer_info.signed_node_info.node_info();
+        let own_node_info = own_peer_info.signed_node_info().node_info();
 
         let will_route = own_node_info.can_inbound_relay(); // xxx: eventually this may have more criteria added
         let will_tunnel = own_node_info.can_inbound_relay(); // xxx: we may want to restrict by battery life and network bandwidth at some point
@@ -490,7 +490,7 @@ impl NetworkManager {
                 };  
             };
 
-        let own_node_info = own_peer_info.signed_node_info.node_info();
+        let own_node_info = own_peer_info.signed_node_info().node_info();
 
         let will_relay = own_node_info.can_inbound_relay();
         let will_validate_dial_info = own_node_info.can_validate_dial_info();
diff --git a/veilid-core/src/network_manager/tests/test_signed_node_info.rs b/veilid-core/src/network_manager/tests/test_signed_node_info.rs
index ff1db400..bab0a6e1 100644
--- a/veilid-core/src/network_manager/tests/test_signed_node_info.rs
+++ b/veilid-core/src/network_manager/tests/test_signed_node_info.rs
@@ -34,50 +34,39 @@ pub async fn test_signed_node_info() {
             node_info.clone(),
         )
         .unwrap();
-        let mut tks: TypedKeySet = TypedKey::new(ck, keypair.key).into();
+        let tks: TypedKeySet = TypedKey::new(ck, keypair.key).into();
         let oldtkslen = tks.len();
-        let _ = SignedDirectNodeInfo::new(
-            crypto.clone(),
-            &mut tks,
+        let sdni = SignedDirectNodeInfo::new(
             node_info.clone(),
-            sni.timestamp,
-            sni.signatures.clone(),
-        )
-        .unwrap();
-        assert_eq!(tks.len(), oldtkslen);
-        assert_eq!(tks.len(), sni.signatures.len());
+            sni.timestamp(),
+            sni.signatures().to_vec(),
+        );
+        let tks_validated = sdni.validate(&tks, crypto.clone()).unwrap();
+        assert_eq!(tks_validated.len(), oldtkslen);
+        assert_eq!(tks_validated.len(), sni.signatures().len());
 
         // Test incorrect validation
         let keypair1 = vcrypto.generate_keypair();
-        let mut tks1: TypedKeySet = TypedKey::new(ck, keypair1.key).into();
+        let tks1: TypedKeySet = TypedKey::new(ck, keypair1.key).into();
         let oldtks1len = tks1.len();
-        let _ = SignedDirectNodeInfo::new(
-            crypto.clone(),
-            &mut tks1,
+        let sdni = SignedDirectNodeInfo::new(
             node_info.clone(),
-            sni.timestamp,
-            sni.signatures.clone(),
-        )
-        .unwrap_err();
-        assert_eq!(tks1.len(), oldtks1len);
-        assert_eq!(tks1.len(), sni.signatures.len());
+            sni.timestamp(),
+            sni.signatures().to_vec(),
+        );
+        sdni.validate(&tks1, crypto.clone()).unwrap_err();
 
         // Test unsupported cryptosystem validation
         let fake_crypto_kind: CryptoKind = FourCC::from([0, 1, 2, 3]);
         let mut tksfake: TypedKeySet = TypedKey::new(fake_crypto_kind, PublicKey::default()).into();
-        let mut sigsfake = sni.signatures.clone();
+        let mut sigsfake = sni.signatures().to_vec();
         sigsfake.push(TypedSignature::new(fake_crypto_kind, Signature::default()));
         tksfake.add(TypedKey::new(ck, keypair.key));
-        let sdnifake = SignedDirectNodeInfo::new(
-            crypto.clone(),
-            &mut tksfake,
-            node_info.clone(),
-            sni.timestamp,
-            sigsfake.clone(),
-        )
-        .unwrap();
-        assert_eq!(tksfake.len(), 1);
-        assert_eq!(sdnifake.signatures.len(), sigsfake.len());
+        let sdnifake =
+            SignedDirectNodeInfo::new(node_info.clone(), sni.timestamp(), sigsfake.clone());
+        let tksfake_validated = sdnifake.validate(&tksfake, crypto.clone()).unwrap();
+        assert_eq!(tksfake_validated.len(), 1);
+        assert_eq!(sdnifake.signatures().len(), sigsfake.len());
 
         // Test relayed
         let node_info2 = NodeInfo {
@@ -94,7 +83,7 @@ pub async fn test_signed_node_info() {
 
         // Test correct validation
         let keypair2 = vcrypto.generate_keypair();
-        let mut tks2: TypedKeySet = TypedKey::new(ck, keypair2.key).into();
+        let tks2: TypedKeySet = TypedKey::new(ck, keypair2.key).into();
         let oldtks2len = tks2.len();
 
         let sni2 = SignedRelayedNodeInfo::make_signatures(
@@ -105,58 +94,49 @@ pub async fn test_signed_node_info() {
             sni.clone(),
         )
         .unwrap();
-        let _ = SignedRelayedNodeInfo::new(
-            crypto.clone(),
-            &mut tks2,
+        let srni = SignedRelayedNodeInfo::new(
             node_info2.clone(),
             tks.clone(),
             sni.clone(),
-            sni2.timestamp,
-            sni2.signatures.clone(),
-        )
-        .unwrap();
+            sni2.timestamp(),
+            sni2.signatures().to_vec(),
+        );
+        let tks2_validated = srni.validate(&tks2, crypto.clone()).unwrap();
 
-        assert_eq!(tks2.len(), oldtks2len);
-        assert_eq!(tks2.len(), sni2.signatures.len());
+        assert_eq!(tks2_validated.len(), oldtks2len);
+        assert_eq!(tks2_validated.len(), sni2.signatures().len());
 
         // Test incorrect validation
         let keypair3 = vcrypto.generate_keypair();
-        let mut tks3: TypedKeySet = TypedKey::new(ck, keypair3.key).into();
+        let tks3: TypedKeySet = TypedKey::new(ck, keypair3.key).into();
         let oldtks3len = tks3.len();
 
-        let _ = SignedRelayedNodeInfo::new(
-            crypto.clone(),
-            &mut tks3,
+        let srni = SignedRelayedNodeInfo::new(
             node_info2.clone(),
             tks.clone(),
             sni.clone(),
-            sni2.timestamp,
-            sni2.signatures.clone(),
-        )
-        .unwrap_err();
-
-        assert_eq!(tks3.len(), oldtks3len);
-        assert_eq!(tks3.len(), sni2.signatures.len());
+            sni2.timestamp(),
+            sni2.signatures().to_vec(),
+        );
+        srni.validate(&tks3, crypto.clone()).unwrap_err();
 
         // Test unsupported cryptosystem validation
         let fake_crypto_kind: CryptoKind = FourCC::from([0, 1, 2, 3]);
         let mut tksfake3: TypedKeySet =
             TypedKey::new(fake_crypto_kind, PublicKey::default()).into();
-        let mut sigsfake3 = sni2.signatures.clone();
+        let mut sigsfake3 = sni2.signatures().to_vec();
         sigsfake3.push(TypedSignature::new(fake_crypto_kind, Signature::default()));
         tksfake3.add(TypedKey::new(ck, keypair2.key));
         let srnifake = SignedRelayedNodeInfo::new(
-            crypto.clone(),
-            &mut tksfake3,
             node_info2.clone(),
             tks.clone(),
             sni.clone(),
-            sni2.timestamp,
+            sni2.timestamp(),
             sigsfake3.clone(),
-        )
-        .unwrap();
-        assert_eq!(tksfake3.len(), 1);
-        assert_eq!(srnifake.signatures.len(), sigsfake3.len());
+        );
+        let tksfake3_validated = srnifake.validate(&tksfake3, crypto.clone()).unwrap();
+        assert_eq!(tksfake3_validated.len(), 1);
+        assert_eq!(srnifake.signatures().len(), sigsfake3.len());
     }
 
     api.shutdown().await;
diff --git a/veilid-core/src/routing_table/bucket_entry.rs b/veilid-core/src/routing_table/bucket_entry.rs
index c94577dd..92a6dad5 100644
--- a/veilid-core/src/routing_table/bucket_entry.rs
+++ b/veilid-core/src/routing_table/bucket_entry.rs
@@ -73,7 +73,9 @@ pub struct BucketEntryLocalNetwork {
 #[archive_attr(repr(C), derive(CheckBytes))]
 pub struct BucketEntryInner {
     /// The node ids matching this bucket entry, with the cryptography versions supported by this node as the 'kind' field
-    node_ids: TypedKeySet,
+    validated_node_ids: TypedKeySet,
+    /// The node ids claimed by the remote node that use cryptography versions we do not support
+    unsupported_node_ids: TypedKeySet,
     /// The set of envelope versions supported by the node inclusive of the requirements of any relay the node may be using
     envelope_support: Vec<u8>,
     /// If this node has updated it's SignedNodeInfo since our network
@@ -122,9 +124,11 @@ impl BucketEntryInner {
         self.node_ref_tracks.remove(&track_id);
     }
 
-    /// Get node ids
+    /// Get all node ids
     pub fn node_ids(&self) -> TypedKeySet {
-        self.node_ids.clone()
+        let mut node_ids = self.validated_node_ids.clone();
+        node_ids.add_all(&self.unsupported_node_ids);
+        node_ids
     }
 
     /// Add a node id for a particular crypto kind.
@@ -132,33 +136,39 @@ impl BucketEntryInner {
     /// Returns Ok(None) if no previous existing node id was associated with that crypto kind
     /// Results Err() if this operation would add more crypto kinds than we support
     pub fn add_node_id(&mut self, node_id: TypedKey) -> EyreResult<Option<TypedKey>> {
-        if let Some(old_node_id) = self.node_ids.get(node_id.kind) {
+        let node_ids = if VALID_CRYPTO_KINDS.contains(&node_id.kind) {
+            &mut self.validated_node_ids
+        } else {
+            &mut self.unsupported_node_ids
+        };
+
+        if let Some(old_node_id) = node_ids.get(node_id.kind) {
             // If this was already there we do nothing
             if old_node_id == node_id {
                 return Ok(None);
             }
             // Won't change number of crypto kinds
-            self.node_ids.add(node_id);    
+            node_ids.add(node_id);    
             return Ok(Some(old_node_id));
         }
         // Check to ensure we aren't adding more crypto kinds than we support
-        if self.node_ids.len() == MAX_CRYPTO_KINDS {
+        if self.validated_node_ids.len() + self.unsupported_node_ids.len() == MAX_CRYPTO_KINDS {
             bail!("too many crypto kinds for this node");
         }
-        self.node_ids.add(node_id);
+        node_ids.add(node_id);
         Ok(None)
     }
     pub fn best_node_id(&self) -> TypedKey {
-        self.node_ids.best().unwrap()
+        self.validated_node_ids.best().unwrap()
     }
 
     /// Get crypto kinds
     pub fn crypto_kinds(&self) -> Vec<CryptoKind> {
-        self.node_ids.kinds()
+        self.validated_node_ids.kinds()
     }
     /// Compare sets of crypto kinds
     pub fn common_crypto_kinds(&self, other: &[CryptoKind]) -> Vec<CryptoKind> {
-        common_crypto_kinds(&self.node_ids.kinds(), other)
+        common_crypto_kinds(&self.validated_node_ids.kinds(), other)
     }
 
 
@@ -270,7 +280,7 @@ impl BucketEntryInner {
         }
 
         // Update the envelope version support we have to use
-        let envelope_support = signed_node_info.node_info().envelope_support.clone();
+        let envelope_support = signed_node_info.node_info().envelope_support().to_vec();
         
         // Update the signed node info
         *opt_current_sni = Some(Box::new(signed_node_info));
@@ -333,8 +343,10 @@ impl BucketEntryInner {
             RoutingDomain::LocalNetwork => &self.local_network.signed_node_info,
             RoutingDomain::PublicInternet => &self.public_internet.signed_node_info,
         };
+        // Peer info includes all node ids, even unvalidated ones
+        let node_ids = self.node_ids();
         opt_current_sni.as_ref().map(|s| PeerInfo {
-            node_ids: self.node_ids.clone(),
+            node_ids,
             signed_node_info: *s.clone(),
         })
     }
@@ -781,11 +793,13 @@ pub struct BucketEntry {
 impl BucketEntry {
     pub(super) fn new(first_node_id: TypedKey) -> Self {
         let now = get_aligned_timestamp();
-        let mut node_ids = TypedKeySet::new();
-        node_ids.add(first_node_id);
+        let mut validated_node_ids = TypedKeySet::new();
+        let mut unsupported_node_ids = TypedKeySet::new();
+        validated_node_ids.add(first_node_id);
 
         let inner = BucketEntryInner {
-            node_ids,
+            validated_node_ids,
+            unsupported_node_ids,
             envelope_support: Vec::new(),
             updated_since_last_network_change: false,
             last_connections: BTreeMap::new(),
diff --git a/veilid-core/src/routing_table/mod.rs b/veilid-core/src/routing_table/mod.rs
index 2c4a3c79..ce165a60 100644
--- a/veilid-core/src/routing_table/mod.rs
+++ b/veilid-core/src/routing_table/mod.rs
@@ -792,8 +792,8 @@ impl RoutingTable {
                 e.with(rti, |_rti, e| {
                     if let Some(ni) = e.node_info(routing_domain) {
                         let dif = DialInfoFilter::all()
-                            .with_protocol_type_set(ni.outbound_protocols)
-                            .with_address_type_set(ni.address_types);
+                            .with_protocol_type_set(ni.outbound_protocols())
+                            .with_address_type_set(ni.address_types());
                         if dial_info.matches_filter(&dif) {
                             return true;
                         }
@@ -851,7 +851,7 @@ impl RoutingTable {
                     // does it have some dial info we need?
                     let filter = |n: &NodeInfo| {
                         let mut keep = false;
-                        for did in &n.dial_info_detail_list {
+                        for did in n.dial_info_detail_list() {
                             if matches!(did.dial_info.address_type(), AddressType::IPV4) {
                                 for (n, protocol_type) in protocol_types.iter().enumerate() {
                                     if nodes_proto_v4[n] < max_per_type
@@ -974,12 +974,12 @@ impl RoutingTable {
         let mut out = Vec::<NodeRef>::with_capacity(peers.len());
         for p in peers {
             // Ensure we're getting back nodes we asked for
-            if !p.node_ids.kinds().contains(&crypto_kind) {
+            if !p.node_ids().kinds().contains(&crypto_kind) {
                 continue;
             }
 
             // Don't register our own node
-            if self.matches_own_node_id(&p.node_ids) {
+            if self.matches_own_node_id(p.node_ids()) {
                 continue;
             }
 
diff --git a/veilid-core/src/routing_table/node_ref.rs b/veilid-core/src/routing_table/node_ref.rs
index bf44ab99..09dd0070 100644
--- a/veilid-core/src/routing_table/node_ref.rs
+++ b/veilid-core/src/routing_table/node_ref.rs
@@ -174,13 +174,13 @@ pub trait NodeRefBase: Sized {
         self.operate_mut(|_rti, e| e.set_our_node_info_ts(routing_domain, seen_ts));
     }
     fn network_class(&self, routing_domain: RoutingDomain) -> Option<NetworkClass> {
-        self.operate(|_rt, e| e.node_info(routing_domain).map(|n| n.network_class))
+        self.operate(|_rt, e| e.node_info(routing_domain).map(|n| n.network_class()))
     }
     fn outbound_protocols(&self, routing_domain: RoutingDomain) -> Option<ProtocolTypeSet> {
-        self.operate(|_rt, e| e.node_info(routing_domain).map(|n| n.outbound_protocols))
+        self.operate(|_rt, e| e.node_info(routing_domain).map(|n| n.outbound_protocols()))
     }
     fn address_types(&self, routing_domain: RoutingDomain) -> Option<AddressTypeSet> {
-        self.operate(|_rt, e| e.node_info(routing_domain).map(|n| n.address_types))
+        self.operate(|_rt, e| e.node_info(routing_domain).map(|n| n.address_types()))
     }
     fn node_info_outbound_filter(&self, routing_domain: RoutingDomain) -> DialInfoFilter {
         let mut dif = DialInfoFilter::all();
@@ -199,7 +199,7 @@ pub trait NodeRefBase: Sized {
                 .and_then(|rpi| {
                     // If relay is ourselves, then return None, because we can't relay through ourselves
                     // and to contact this node we should have had an existing inbound connection
-                    if rti.unlocked_inner.matches_own_node_id(&rpi.node_ids) {
+                    if rti.unlocked_inner.matches_own_node_id(rpi.node_ids()) {
                         return None;
                     }
 
diff --git a/veilid-core/src/routing_table/privacy.rs b/veilid-core/src/routing_table/privacy.rs
index e4aa4c34..a05b08db 100644
--- a/veilid-core/src/routing_table/privacy.rs
+++ b/veilid-core/src/routing_table/privacy.rs
@@ -22,6 +22,19 @@ pub enum RouteNode {
 }
 
 impl RouteNode {
+    pub fn validate(&self, crypto: Crypto) -> Result<(), VeilidAPIError> {
+        match self {
+            RouteNode::NodeId(_) => Ok(()),
+            RouteNode::PeerInfo(pi) => {
+                let validated_node_ids = pi.validate(crypto)?;
+                if validated_node_ids.is_empty() {
+                    apibail_generic!("no validated node ids for route node");
+                }
+                Ok(())
+            }
+        }
+    }
+
     pub fn node_ref(
         &self,
         routing_table: RoutingTable,
@@ -48,10 +61,10 @@ impl RouteNode {
             RouteNode::NodeId(id) => {
                 format!("{}", TypedKey::new(crypto_kind, *id))
             }
-            RouteNode::PeerInfo(pi) => match pi.node_ids.get(crypto_kind) {
+            RouteNode::PeerInfo(pi) => match pi.node_ids().get(crypto_kind) {
                 Some(id) => format!("{}", id),
                 None => {
-                    format!("({})?{}", crypto_kind, pi.node_ids)
+                    format!("({})?{}", crypto_kind, pi.node_ids())
                 }
             },
         }
@@ -66,6 +79,11 @@ pub struct RouteHop {
     /// The encrypted blob to pass to the next hop as its data (None for stubs)
     pub next_hop: Option<RouteHopData>,
 }
+impl RouteHop {
+    pub fn validate(&self, crypto: Crypto) -> Result<(), VeilidAPIError> {
+        self.node.validate(crypto)
+    }
+}
 
 /// The kind of hops a private route can have
 #[derive(Clone, Debug)]
@@ -78,6 +96,15 @@ pub enum PrivateRouteHops {
     Empty,
 }
 
+impl PrivateRouteHops {
+    pub fn validate(&self, crypto: Crypto) -> Result<(), VeilidAPIError> {
+        match self {
+            PrivateRouteHops::FirstHop(rh) => rh.validate(crypto),
+            PrivateRouteHops::Data(_) => Ok(()),
+            PrivateRouteHops::Empty => Ok(()),
+        }
+    }
+}
 /// A private route for receiver privacy
 #[derive(Clone, Debug)]
 pub struct PrivateRoute {
@@ -108,6 +135,10 @@ impl PrivateRoute {
         }
     }
 
+    pub fn validate(&self, crypto: Crypto) -> Result<(), VeilidAPIError> {
+        self.hops.validate(crypto)
+    }
+
     /// Check if this is a stub route
     pub fn is_stub(&self) -> bool {
         if let PrivateRouteHops::FirstHop(first_hop) = &self.hops {
@@ -155,7 +186,7 @@ impl PrivateRoute {
         // Get the safety route to use from the spec
         Some(match &pr_first_hop.node {
             RouteNode::NodeId(n) => TypedKey::new(self.public_key.kind, *n),
-            RouteNode::PeerInfo(p) => p.node_ids.get(self.public_key.kind).unwrap(),
+            RouteNode::PeerInfo(p) => p.node_ids().get(self.public_key.kind).unwrap(),
         })
     }
 }
diff --git a/veilid-core/src/routing_table/route_spec_store/route_spec_store.rs b/veilid-core/src/routing_table/route_spec_store/route_spec_store.rs
index 7f5d79ae..134de46c 100644
--- a/veilid-core/src/routing_table/route_spec_store/route_spec_store.rs
+++ b/veilid-core/src/routing_table/route_spec_store/route_spec_store.rs
@@ -1550,7 +1550,9 @@ impl RouteSpecStore {
                 .get_root::<veilid_capnp::private_route::Reader>()
                 .map_err(RPCError::internal)
                 .wrap_err("failed to make reader for private_route")?;
-            let private_route = decode_private_route(&pr_reader, crypto.clone()).wrap_err("failed to decode private route")?;
+            let private_route = decode_private_route(&pr_reader).wrap_err("failed to decode private route")?;
+            private_route.validate(crypto.clone()).wrap_err("failed to validate private route")?;
+
             out.push(private_route);
         }
         
diff --git a/veilid-core/src/routing_table/routing_domains.rs b/veilid-core/src/routing_table/routing_domains.rs
index bfd52d88..ca3693c1 100644
--- a/veilid-core/src/routing_table/routing_domains.rs
+++ b/veilid-core/src/routing_table/routing_domains.rs
@@ -102,14 +102,14 @@ impl RoutingDomainDetailCommon {
     }
 
     fn make_peer_info(&self, rti: &RoutingTableInner) -> PeerInfo {
-        let node_info = NodeInfo {
-            network_class: self.network_class.unwrap_or(NetworkClass::Invalid),
-            outbound_protocols: self.outbound_protocols,
-            address_types: self.address_types,
-            envelope_support: VALID_ENVELOPE_VERSIONS.to_vec(),
-            crypto_support: VALID_CRYPTO_KINDS.to_vec(),
-            dial_info_detail_list: self.dial_info_details.clone(),
-        };
+        let node_info = NodeInfo::new(
+            self.network_class.unwrap_or(NetworkClass::Invalid),
+            self.outbound_protocols,
+            self.address_types,
+            VALID_ENVELOPE_VERSIONS.to_vec(),
+            VALID_CRYPTO_KINDS.to_vec(),
+            self.dial_info_details.clone()
+        );
 
         let relay_info = self
             .relay_node
@@ -117,8 +117,9 @@ impl RoutingDomainDetailCommon {
             .and_then(|rn| {
                 let opt_relay_pi = rn.locked(rti).make_peer_info(self.routing_domain);
                 if let Some(relay_pi) = opt_relay_pi {
-                    match relay_pi.signed_node_info {
-                        SignedNodeInfo::Direct(d) => Some((relay_pi.node_ids, d)), 
+                    let (relay_ids, relay_sni) = relay_pi.into_fields();
+                    match relay_sni {
+                        SignedNodeInfo::Direct(d) => Some((relay_ids, d)), 
                         SignedNodeInfo::Relayed(_) => {
                             warn!("relay node should not have a relay itself! if this happens, a relay updated its signed node info and became a relay, which should cause the relay to be dropped");
                             None
@@ -230,8 +231,8 @@ fn first_filtered_dial_info_detail(
 ) -> Option<DialInfoDetail> {
     let dial_info_filter = dial_info_filter.clone().filtered(
         &DialInfoFilter::all()
-            .with_address_type_set(from_node.address_types)
-            .with_protocol_type_set(from_node.outbound_protocols),
+            .with_address_type_set(from_node.address_types())
+            .with_protocol_type_set(from_node.outbound_protocols()),
     );
 
     // Get first filtered dialinfo
@@ -278,18 +279,18 @@ impl RoutingDomainDetail for PublicInternetRoutingDomainDetail {
         sequencing: Sequencing,
     ) -> ContactMethod {
         // Get the nodeinfos for convenience
-        let node_a = peer_a.signed_node_info.node_info();
-        let node_b = peer_b.signed_node_info.node_info();
+        let node_a = peer_a.signed_node_info().node_info();
+        let node_b = peer_b.signed_node_info().node_info();
 
         // Get the node ids that would be used between these peers
-        let cck = common_crypto_kinds(&peer_a.node_ids.kinds(), &peer_b.node_ids.kinds());
+        let cck = common_crypto_kinds(&peer_a.node_ids().kinds(), &peer_b.node_ids().kinds());
         let Some(best_ck) = cck.first().copied() else {
             // No common crypto kinds between these nodes, can't contact
             return ContactMethod::Unreachable;
         };
 
-        //let node_a_id = peer_a.node_ids.get(best_ck).unwrap();
-        let node_b_id = peer_b.node_ids.get(best_ck).unwrap();
+        //let node_a_id = peer_a.node_ids().get(best_ck).unwrap();
+        let node_b_id = peer_b.node_ids().get(best_ck).unwrap();
 
         // Get the best match dial info for node B if we have it
         if let Some(target_did) =
@@ -302,17 +303,17 @@ impl RoutingDomainDetail for PublicInternetRoutingDomainDetail {
             }
 
             // Get the target's inbound relay, it must have one or it is not reachable
-            if let Some(node_b_relay) = peer_b.signed_node_info.relay_info() {
+            if let Some(node_b_relay) = peer_b.signed_node_info().relay_info() {
 
                 // Note that relay_peer_info could be node_a, in which case a connection already exists
                 // and we only get here if the connection had dropped, in which case node_a is unreachable until
                 // it gets a new relay connection up
-                if peer_b.signed_node_info.relay_ids().contains_any(&peer_a.node_ids) {
+                if peer_b.signed_node_info().relay_ids().contains_any(peer_a.node_ids()) {
                     return ContactMethod::Existing;
                 }
 
                 // Get best node id to contact relay with
-                let Some(node_b_relay_id) = peer_b.signed_node_info.relay_ids().get(best_ck) else {
+                let Some(node_b_relay_id) = peer_b.signed_node_info().relay_ids().get(best_ck) else {
                     // No best relay id
                     return ContactMethod::Unreachable;
                 };
@@ -327,7 +328,7 @@ impl RoutingDomainDetail for PublicInternetRoutingDomainDetail {
                 .is_some()
                 {
                     // Can node A receive anything inbound ever?
-                    if matches!(node_a.network_class, NetworkClass::InboundCapable) {
+                    if matches!(node_a.network_class(), NetworkClass::InboundCapable) {
                         ///////// Reverse connection
 
                         // Get the best match dial info for an reverse inbound connection from node B to node A
@@ -390,17 +391,17 @@ impl RoutingDomainDetail for PublicInternetRoutingDomainDetail {
             }
         }
         // If the node B has no direct dial info, it needs to have an inbound relay
-        else if let Some(node_b_relay) = peer_b.signed_node_info.relay_info() {
+        else if let Some(node_b_relay) = peer_b.signed_node_info().relay_info() {
 
             // Note that relay_peer_info could be node_a, in which case a connection already exists
             // and we only get here if the connection had dropped, in which case node_a is unreachable until
             // it gets a new relay connection up
-            if peer_b.signed_node_info.relay_ids().contains_any(&peer_a.node_ids) {
+            if peer_b.signed_node_info().relay_ids().contains_any(peer_a.node_ids()) {
                 return ContactMethod::Existing;
             }
 
             // Get best node id to contact relay with
-            let Some(node_b_relay_id) = peer_b.signed_node_info.relay_ids().get(best_ck) else {
+            let Some(node_b_relay_id) = peer_b.signed_node_info().relay_ids().get(best_ck) else {
                 // No best relay id
                 return ContactMethod::Unreachable;
             };
@@ -419,7 +420,7 @@ impl RoutingDomainDetail for PublicInternetRoutingDomainDetail {
         }
 
         // If node A can't reach the node by other means, it may need to use its own relay
-        if let Some(node_a_relay_id) = peer_a.signed_node_info.relay_ids().get(best_ck) {
+        if let Some(node_a_relay_id) = peer_a.signed_node_info().relay_ids().get(best_ck) {
             return ContactMethod::OutboundRelay(node_a_relay_id);
         }
 
@@ -484,8 +485,8 @@ impl RoutingDomainDetail for LocalNetworkRoutingDomainDetail {
         // Scope the filter down to protocols node A can do outbound
         let dial_info_filter = dial_info_filter.filtered(
             &DialInfoFilter::all()
-                .with_address_type_set(peer_a.signed_node_info.node_info().address_types)
-                .with_protocol_type_set(peer_a.signed_node_info.node_info().outbound_protocols),
+                .with_address_type_set(peer_a.signed_node_info().node_info().address_types())
+                .with_protocol_type_set(peer_a.signed_node_info().node_info().outbound_protocols()),
         );
         
         // Get first filtered dialinfo
@@ -509,7 +510,7 @@ impl RoutingDomainDetail for LocalNetworkRoutingDomainDetail {
 
         let filter = |did: &DialInfoDetail| did.matches_filter(&dial_info_filter);
 
-        let opt_target_did = peer_b.signed_node_info.node_info().first_filtered_dial_info_detail(sort, filter);
+        let opt_target_did = peer_b.signed_node_info().node_info().first_filtered_dial_info_detail(sort, filter);
         if let Some(target_did) = opt_target_did {
             return ContactMethod::Direct(target_did.dial_info);
         }
diff --git a/veilid-core/src/routing_table/routing_table_inner.rs b/veilid-core/src/routing_table/routing_table_inner.rs
index de736853..42ec8e96 100644
--- a/veilid-core/src/routing_table/routing_table_inner.rs
+++ b/veilid-core/src/routing_table/routing_table_inner.rs
@@ -171,11 +171,11 @@ impl RoutingTableInner {
         node_info: &NodeInfo,
     ) -> bool {
         // Should not be passing around nodeinfo with an invalid network class
-        if matches!(node_info.network_class, NetworkClass::Invalid) {
+        if matches!(node_info.network_class(), NetworkClass::Invalid) {
             return false;
         }
         // Ensure all of the dial info works in this routing domain
-        for did in &node_info.dial_info_detail_list {
+        for did in node_info.dial_info_detail_list() {
             if !self.ensure_dial_info_is_valid(routing_domain, &did.dial_info) {
                 return false;
             }
@@ -258,7 +258,7 @@ impl RoutingTableInner {
             } else {
                 Some(
                     rdd.common()
-                        .with_peer_info(self, |pi| pi.signed_node_info.timestamp()),
+                        .with_peer_info(self, |pi| pi.signed_node_info().timestamp()),
                 )
             }
         })
@@ -804,13 +804,16 @@ impl RoutingTableInner {
         allow_invalid: bool,
     ) -> Option<NodeRef> {
         // if our own node if is in the list then ignore it, as we don't add ourselves to our own routing table
-        if self.unlocked_inner.matches_own_node_id(&peer_info.node_ids) {
+        if self
+            .unlocked_inner
+            .matches_own_node_id(peer_info.node_ids())
+        {
             log_rtab!(debug "can't register own node id in routing table");
             return None;
         }
 
         // node can not be its own relay
-        let rids = peer_info.signed_node_info.relay_ids();
+        let rids = peer_info.signed_node_info().relay_ids();
         if self.unlocked_inner.matches_own_node_id(&rids) {
             log_rtab!(debug "node can not be its own relay");
             return None;
@@ -818,22 +821,22 @@ impl RoutingTableInner {
 
         if !allow_invalid {
             // verify signature
-            if !peer_info.signed_node_info.has_any_signature() {
-                log_rtab!(debug "signed node info for {:?} has invalid signature", &peer_info.node_ids);
+            if !peer_info.signed_node_info().has_any_signature() {
+                log_rtab!(debug "signed node info for {:?} has no valid signature", peer_info.node_ids());
                 return None;
             }
             // verify signed node info is valid in this routing domain
             if !self.signed_node_info_is_valid_in_routing_domain(
                 routing_domain,
-                &peer_info.signed_node_info,
+                peer_info.signed_node_info(),
             ) {
-                log_rtab!(debug "signed node info for {:?} not valid in the {:?} routing domain", peer_info.node_ids, routing_domain);
+                log_rtab!(debug "signed node info for {:?} not valid in the {:?} routing domain", peer_info.node_ids(), routing_domain);
                 return None;
             }
         }
 
-        self.create_node_ref(outer_self, &peer_info.node_ids, |_rti, e| {
-            e.update_signed_node_info(routing_domain, peer_info.signed_node_info);
+        self.create_node_ref(outer_self, peer_info.node_ids(), |_rti, e| {
+            e.update_signed_node_info(routing_domain, peer_info.into_signed_node_info());
         })
         .map(|mut nr| {
             nr.set_filter(Some(
diff --git a/veilid-core/src/routing_table/tasks/relay_management.rs b/veilid-core/src/routing_table/tasks/relay_management.rs
index ca80b81f..3bc93145 100644
--- a/veilid-core/src/routing_table/tasks/relay_management.rs
+++ b/veilid-core/src/routing_table/tasks/relay_management.rs
@@ -13,8 +13,8 @@ impl RoutingTable {
         let Some(own_peer_info) = self.get_own_peer_info(RoutingDomain::PublicInternet) else {
             return Ok(());
         };
-        let own_node_info = own_peer_info.signed_node_info.node_info();
-        let network_class = own_node_info.network_class;
+        let own_node_info = own_peer_info.signed_node_info().node_info();
+        let network_class = own_node_info.network_class();
 
         // Get routing domain editor
         let mut editor = self.edit_routing_domain(RoutingDomain::PublicInternet);
diff --git a/veilid-core/src/routing_table/types/node_info.rs b/veilid-core/src/routing_table/types/node_info.rs
index ecbd709b..ca5cbde8 100644
--- a/veilid-core/src/routing_table/types/node_info.rs
+++ b/veilid-core/src/routing_table/types/node_info.rs
@@ -1,19 +1,58 @@
 use super::*;
 
-#[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
+#[derive(
+    Clone, Default, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
 #[archive_attr(repr(C), derive(CheckBytes))]
 pub struct NodeInfo {
-    pub network_class: NetworkClass,
+    network_class: NetworkClass,
     #[with(RkyvEnumSet)]
-    pub outbound_protocols: ProtocolTypeSet,
+    outbound_protocols: ProtocolTypeSet,
     #[with(RkyvEnumSet)]
-    pub address_types: AddressTypeSet,
-    pub envelope_support: Vec<u8>,
-    pub crypto_support: Vec<CryptoKind>,
-    pub dial_info_detail_list: Vec<DialInfoDetail>,
+    address_types: AddressTypeSet,
+    envelope_support: Vec<u8>,
+    crypto_support: Vec<CryptoKind>,
+    dial_info_detail_list: Vec<DialInfoDetail>,
 }
 
 impl NodeInfo {
+    pub fn new(
+        network_class: NetworkClass,
+        outbound_protocols: ProtocolTypeSet,
+        address_types: AddressTypeSet,
+        envelope_support: Vec<u8>,
+        crypto_support: Vec<CryptoKind>,
+        dial_info_detail_list: Vec<DialInfoDetail>,
+    ) -> Self {
+        Self {
+            network_class,
+            outbound_protocols,
+            address_types,
+            envelope_support,
+            crypto_support,
+            dial_info_detail_list,
+        }
+    }
+
+    pub fn network_class(&self) -> NetworkClass {
+        self.network_class
+    }
+    pub fn outbound_protocols(&self) -> ProtocolTypeSet {
+        self.outbound_protocols
+    }
+    pub fn address_types(&self) -> AddressTypeSet {
+        self.address_types
+    }
+    pub fn envelope_support(&self) -> &[u8] {
+        &self.envelope_support
+    }
+    pub fn crypto_support(&self) -> &[CryptoKind] {
+        &self.crypto_support
+    }
+    pub fn dial_info_detail_list(&self) -> &[DialInfoDetail] {
+        &self.dial_info_detail_list
+    }
+
     pub fn first_filtered_dial_info_detail<S, F>(
         &self,
         sort: Option<S>,
diff --git a/veilid-core/src/routing_table/types/peer_info.rs b/veilid-core/src/routing_table/types/peer_info.rs
index 0e7e3558..9c91382e 100644
--- a/veilid-core/src/routing_table/types/peer_info.rs
+++ b/veilid-core/src/routing_table/types/peer_info.rs
@@ -3,8 +3,8 @@ use super::*;
 #[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
 #[archive_attr(repr(C), derive(CheckBytes))]
 pub struct PeerInfo {
-    pub node_ids: TypedKeySet,
-    pub signed_node_info: SignedNodeInfo,
+    node_ids: TypedKeySet,
+    signed_node_info: SignedNodeInfo,
 }
 
 impl PeerInfo {
@@ -15,4 +15,21 @@ impl PeerInfo {
             signed_node_info,
         }
     }
+
+    pub fn validate(&self, crypto: Crypto) -> Result<TypedKeySet, VeilidAPIError> {
+        self.signed_node_info.validate(&self.node_ids, crypto)
+    }
+
+    pub fn node_ids(&self) -> &TypedKeySet {
+        &self.node_ids
+    }
+    pub fn signed_node_info(&self) -> &SignedNodeInfo {
+        &self.signed_node_info
+    }
+    pub fn into_signed_node_info(self) -> SignedNodeInfo {
+        self.signed_node_info
+    }
+    pub fn into_fields(self) -> (TypedKeySet, SignedNodeInfo) {
+        (self.node_ids, self.signed_node_info)
+    }
 }
diff --git a/veilid-core/src/routing_table/types/signed_direct_node_info.rs b/veilid-core/src/routing_table/types/signed_direct_node_info.rs
index c04652c7..ea8ae032 100644
--- a/veilid-core/src/routing_table/types/signed_direct_node_info.rs
+++ b/veilid-core/src/routing_table/types/signed_direct_node_info.rs
@@ -4,36 +4,37 @@ use super::*;
 #[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
 #[archive_attr(repr(C), derive(CheckBytes))]
 pub struct SignedDirectNodeInfo {
-    pub node_info: NodeInfo,
-    pub timestamp: Timestamp,
-    pub signatures: Vec<TypedSignature>,
+    node_info: NodeInfo,
+    timestamp: Timestamp,
+    signatures: Vec<TypedSignature>,
 }
 impl SignedDirectNodeInfo {
     /// Returns a new SignedDirectNodeInfo that has its signatures validated.
     /// On success, this will modify the node_ids set to only include node_ids whose signatures validate.
     /// All signatures are stored however, as this can be passed to other nodes that may be able to validate those signatures.
-    pub fn new(
+    pub fn new(node_info: NodeInfo, timestamp: Timestamp, signatures: Vec<TypedSignature>) -> Self {
+        Self {
+            node_info,
+            timestamp,
+            signatures,
+        }
+    }
+
+    pub fn validate(
+        &self,
+        node_ids: &TypedKeySet,
         crypto: Crypto,
-        node_ids: &mut TypedKeySet,
-        node_info: NodeInfo,
-        timestamp: Timestamp,
-        typed_signatures: Vec<TypedSignature>,
-    ) -> Result<Self, VeilidAPIError> {
-        let node_info_bytes = Self::make_signature_bytes(&node_info, timestamp)?;
+    ) -> Result<TypedKeySet, VeilidAPIError> {
+        let node_info_bytes = Self::make_signature_bytes(&self.node_info, self.timestamp)?;
 
         // Verify the signatures that we can
         let validated_node_ids =
-            crypto.verify_signatures(node_ids, &node_info_bytes, &typed_signatures)?;
-        *node_ids = validated_node_ids;
-        if node_ids.len() == 0 {
+            crypto.verify_signatures(node_ids, &node_info_bytes, &self.signatures)?;
+        if validated_node_ids.len() == 0 {
             apibail_generic!("no valid node ids in direct node info");
         }
 
-        Ok(Self {
-            node_info,
-            timestamp,
-            signatures: typed_signatures,
-        })
+        Ok(validated_node_ids)
     }
 
     pub fn make_signatures(
@@ -83,4 +84,14 @@ impl SignedDirectNodeInfo {
     pub fn has_any_signature(&self) -> bool {
         !self.signatures.is_empty()
     }
+
+    pub fn node_info(&self) -> &NodeInfo {
+        &self.node_info
+    }
+    pub fn timestamp(&self) -> Timestamp {
+        self.timestamp
+    }
+    pub fn signatures(&self) -> &[TypedSignature] {
+        &self.signatures
+    }
 }
diff --git a/veilid-core/src/routing_table/types/signed_node_info.rs b/veilid-core/src/routing_table/types/signed_node_info.rs
index 2137bb27..2a98ceae 100644
--- a/veilid-core/src/routing_table/types/signed_node_info.rs
+++ b/veilid-core/src/routing_table/types/signed_node_info.rs
@@ -8,6 +8,17 @@ pub enum SignedNodeInfo {
 }
 
 impl SignedNodeInfo {
+    pub fn validate(
+        &self,
+        node_ids: &TypedKeySet,
+        crypto: Crypto,
+    ) -> Result<TypedKeySet, VeilidAPIError> {
+        match self {
+            SignedNodeInfo::Direct(d) => d.validate(node_ids, crypto),
+            SignedNodeInfo::Relayed(r) => r.validate(node_ids, crypto),
+        }
+    }
+
     pub fn has_any_signature(&self) -> bool {
         match self {
             SignedNodeInfo::Direct(d) => d.has_any_signature(),
@@ -17,34 +28,34 @@ impl SignedNodeInfo {
 
     pub fn timestamp(&self) -> Timestamp {
         match self {
-            SignedNodeInfo::Direct(d) => d.timestamp,
-            SignedNodeInfo::Relayed(r) => r.timestamp,
+            SignedNodeInfo::Direct(d) => d.timestamp(),
+            SignedNodeInfo::Relayed(r) => r.timestamp(),
         }
     }
     pub fn node_info(&self) -> &NodeInfo {
         match self {
-            SignedNodeInfo::Direct(d) => &d.node_info,
-            SignedNodeInfo::Relayed(r) => &r.node_info,
+            SignedNodeInfo::Direct(d) => &d.node_info(),
+            SignedNodeInfo::Relayed(r) => &r.node_info(),
         }
     }
     pub fn relay_ids(&self) -> TypedKeySet {
         match self {
             SignedNodeInfo::Direct(_) => TypedKeySet::new(),
-            SignedNodeInfo::Relayed(r) => r.relay_ids.clone(),
+            SignedNodeInfo::Relayed(r) => r.relay_ids().clone(),
         }
     }
     pub fn relay_info(&self) -> Option<&NodeInfo> {
         match self {
             SignedNodeInfo::Direct(_) => None,
-            SignedNodeInfo::Relayed(r) => Some(&r.relay_info.node_info),
+            SignedNodeInfo::Relayed(r) => Some(r.relay_info().node_info()),
         }
     }
     pub fn relay_peer_info(&self) -> Option<PeerInfo> {
         match self {
             SignedNodeInfo::Direct(_) => None,
             SignedNodeInfo::Relayed(r) => Some(PeerInfo::new(
-                r.relay_ids.clone(),
-                SignedNodeInfo::Direct(r.relay_info.clone()),
+                r.relay_ids().clone(),
+                SignedNodeInfo::Direct(r.relay_info().clone()),
             )),
         }
     }
@@ -58,7 +69,7 @@ impl SignedNodeInfo {
 
     pub fn has_sequencing_matched_dial_info(&self, sequencing: Sequencing) -> bool {
         // Check our dial info
-        for did in &self.node_info().dial_info_detail_list {
+        for did in self.node_info().dial_info_detail_list() {
             match sequencing {
                 Sequencing::NoPreference | Sequencing::PreferOrdered => return true,
                 Sequencing::EnsureOrdered => {
@@ -72,7 +83,7 @@ impl SignedNodeInfo {
         return self
             .relay_info()
             .map(|relay_ni| {
-                for did in &relay_ni.dial_info_detail_list {
+                for did in relay_ni.dial_info_detail_list() {
                     match sequencing {
                         Sequencing::NoPreference | Sequencing::PreferOrdered => return true,
                         Sequencing::EnsureOrdered => {
diff --git a/veilid-core/src/routing_table/types/signed_relayed_node_info.rs b/veilid-core/src/routing_table/types/signed_relayed_node_info.rs
index 4e716eba..3439baf7 100644
--- a/veilid-core/src/routing_table/types/signed_relayed_node_info.rs
+++ b/veilid-core/src/routing_table/types/signed_relayed_node_info.rs
@@ -4,11 +4,11 @@ use super::*;
 #[derive(Clone, Debug, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize)]
 #[archive_attr(repr(C), derive(CheckBytes))]
 pub struct SignedRelayedNodeInfo {
-    pub node_info: NodeInfo,
-    pub relay_ids: TypedKeySet,
-    pub relay_info: SignedDirectNodeInfo,
-    pub timestamp: Timestamp,
-    pub signatures: Vec<TypedSignature>,
+    node_info: NodeInfo,
+    relay_ids: TypedKeySet,
+    relay_info: SignedDirectNodeInfo,
+    timestamp: Timestamp,
+    signatures: Vec<TypedSignature>,
 }
 
 impl SignedRelayedNodeInfo {
@@ -16,30 +16,50 @@ impl SignedRelayedNodeInfo {
     /// On success, this will modify the node_ids set to only include node_ids whose signatures validate.
     /// All signatures are stored however, as this can be passed to other nodes that may be able to validate those signatures.
     pub fn new(
-        crypto: Crypto,
-        node_ids: &mut TypedKeySet,
         node_info: NodeInfo,
         relay_ids: TypedKeySet,
         relay_info: SignedDirectNodeInfo,
         timestamp: Timestamp,
-        typed_signatures: Vec<TypedSignature>,
-    ) -> Result<Self, VeilidAPIError> {
-        let node_info_bytes =
-            Self::make_signature_bytes(&node_info, &relay_ids, &relay_info, timestamp)?;
-        let validated_node_ids =
-            crypto.verify_signatures(node_ids, &node_info_bytes, &typed_signatures)?;
-        *node_ids = validated_node_ids;
-        if node_ids.len() == 0 {
-            apibail_generic!("no valid node ids in relayed node info");
-        }
-
-        Ok(Self {
+        signatures: Vec<TypedSignature>,
+    ) -> Self {
+        Self {
             node_info,
             relay_ids,
             relay_info,
             timestamp,
-            signatures: typed_signatures,
-        })
+            signatures,
+        }
+    }
+
+    pub fn validate(
+        &self,
+        node_ids: &TypedKeySet,
+        crypto: Crypto,
+    ) -> Result<TypedKeySet, VeilidAPIError> {
+        // Ensure the relay info for the node has a superset of the crypto kinds of the node it is relaying
+        if common_crypto_kinds(
+            self.node_info.crypto_support(),
+            self.relay_info.node_info().crypto_support(),
+        )
+        .len()
+            != self.node_info.crypto_support().len()
+        {
+            apibail_generic!("relay should have superset of node crypto kinds");
+        }
+
+        // Verify signatures
+        let node_info_bytes = Self::make_signature_bytes(
+            &self.node_info,
+            &self.relay_ids,
+            &self.relay_info,
+            self.timestamp,
+        )?;
+        let validated_node_ids =
+            crypto.verify_signatures(node_ids, &node_info_bytes, &self.signatures)?;
+        if validated_node_ids.len() == 0 {
+            apibail_generic!("no valid node ids in relayed node info");
+        }
+        Ok(validated_node_ids)
     }
 
     pub fn make_signatures(
@@ -103,4 +123,20 @@ impl SignedRelayedNodeInfo {
     pub fn has_any_signature(&self) -> bool {
         !self.signatures.is_empty()
     }
+
+    pub fn node_info(&self) -> &NodeInfo {
+        &self.node_info
+    }
+    pub fn timestamp(&self) -> Timestamp {
+        self.timestamp
+    }
+    pub fn relay_ids(&self) -> &TypedKeySet {
+        &self.relay_ids
+    }
+    pub fn relay_info(&self) -> &SignedDirectNodeInfo {
+        &self.relay_info
+    }
+    pub fn signatures(&self) -> &[TypedSignature] {
+        &self.signatures
+    }
 }
diff --git a/veilid-core/src/rpc_processor/coders/node_info.rs b/veilid-core/src/rpc_processor/coders/node_info.rs
index 6d2d87c6..874a7e6b 100644
--- a/veilid-core/src/rpc_processor/coders/node_info.rs
+++ b/veilid-core/src/rpc_processor/coders/node_info.rs
@@ -4,27 +4,27 @@ pub fn encode_node_info(
     node_info: &NodeInfo,
     builder: &mut veilid_capnp::node_info::Builder,
 ) -> Result<(), RPCError> {
-    builder.set_network_class(encode_network_class(node_info.network_class));
+    builder.set_network_class(encode_network_class(node_info.network_class()));
 
     let mut ps_builder = builder.reborrow().init_outbound_protocols();
-    encode_protocol_type_set(&node_info.outbound_protocols, &mut ps_builder)?;
+    encode_protocol_type_set(&node_info.outbound_protocols(), &mut ps_builder)?;
 
     let mut ats_builder = builder.reborrow().init_address_types();
-    encode_address_type_set(&node_info.address_types, &mut ats_builder)?;
+    encode_address_type_set(&node_info.address_types(), &mut ats_builder)?;
 
     let mut es_builder = builder
         .reborrow()
-        .init_envelope_support(node_info.envelope_support.len() as u32);
+        .init_envelope_support(node_info.envelope_support().len() as u32);
     if let Some(s) = es_builder.as_slice() {
-        s.clone_from_slice(&node_info.envelope_support);
+        s.clone_from_slice(&node_info.envelope_support());
     }
 
     let mut cs_builder = builder
         .reborrow()
-        .init_crypto_support(node_info.crypto_support.len() as u32);
+        .init_crypto_support(node_info.crypto_support().len() as u32);
     if let Some(s) = cs_builder.as_slice() {
         let csvec: Vec<u32> = node_info
-            .crypto_support
+            .crypto_support()
             .iter()
             .map(|x| u32::from_be_bytes(x.0))
             .collect();
@@ -33,7 +33,7 @@ pub fn encode_node_info(
 
     let mut didl_builder = builder.reborrow().init_dial_info_detail_list(
         node_info
-            .dial_info_detail_list
+            .dial_info_detail_list()
             .len()
             .try_into()
             .map_err(RPCError::map_protocol(
@@ -41,9 +41,9 @@ pub fn encode_node_info(
             ))?,
     );
 
-    for idx in 0..node_info.dial_info_detail_list.len() {
+    for idx in 0..node_info.dial_info_detail_list().len() {
         let mut did_builder = didl_builder.reborrow().get(idx as u32);
-        encode_dial_info_detail(&node_info.dial_info_detail_list[idx], &mut did_builder)?;
+        encode_dial_info_detail(&node_info.dial_info_detail_list()[idx], &mut did_builder)?;
     }
 
     Ok(())
@@ -131,12 +131,12 @@ pub fn decode_node_info(reader: &veilid_capnp::node_info::Reader) -> Result<Node
         dial_info_detail_list.push(decode_dial_info_detail(&did)?)
     }
 
-    Ok(NodeInfo {
+    Ok(NodeInfo::new(
         network_class,
         outbound_protocols,
         address_types,
         envelope_support,
         crypto_support,
         dial_info_detail_list,
-    })
+    ))
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/answer.rs b/veilid-core/src/rpc_processor/coders/operations/answer.rs
index d940c736..c38f64d7 100644
--- a/veilid-core/src/rpc_processor/coders/operations/answer.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/answer.rs
@@ -9,18 +9,18 @@ impl RPCAnswer {
     pub fn new(detail: RPCAnswerDetail) -> Self {
         Self { detail }
     }
+    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+        self.detail.validate(crypto)
+    }
     pub fn into_detail(self) -> RPCAnswerDetail {
         self.detail
     }
     pub fn desc(&self) -> &'static str {
         self.detail.desc()
     }
-    pub fn decode(
-        reader: &veilid_capnp::answer::Reader,
-        crypto: Crypto,
-    ) -> Result<RPCAnswer, RPCError> {
+    pub fn decode(reader: &veilid_capnp::answer::Reader) -> Result<RPCAnswer, RPCError> {
         let d_reader = reader.get_detail();
-        let detail = RPCAnswerDetail::decode(&d_reader, crypto)?;
+        let detail = RPCAnswerDetail::decode(&d_reader)?;
         Ok(RPCAnswer { detail })
     }
     pub fn encode(&self, builder: &mut veilid_capnp::answer::Builder) -> Result<(), RPCError> {
@@ -60,10 +60,23 @@ impl RPCAnswerDetail {
             RPCAnswerDetail::CancelTunnelA(_) => "CancelTunnelA",
         }
     }
-
+    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+        match self {
+            RPCAnswerDetail::StatusA(r) => r.validate(crypto),
+            RPCAnswerDetail::FindNodeA(r) => r.validate(crypto),
+            RPCAnswerDetail::AppCallA(r) => r.validate(crypto),
+            RPCAnswerDetail::GetValueA(r) => r.validate(crypto),
+            RPCAnswerDetail::SetValueA(r) => r.validate(crypto),
+            RPCAnswerDetail::WatchValueA(r) => r.validate(crypto),
+            RPCAnswerDetail::SupplyBlockA(r) => r.validate(crypto),
+            RPCAnswerDetail::FindBlockA(r) => r.validate(crypto),
+            RPCAnswerDetail::StartTunnelA(r) => r.validate(crypto),
+            RPCAnswerDetail::CompleteTunnelA(r) => r.validate(crypto),
+            RPCAnswerDetail::CancelTunnelA(r) => r.validate(crypto),
+        }
+    }
     pub fn decode(
         reader: &veilid_capnp::answer::detail::Reader,
-        crypto: Crypto,
     ) -> Result<RPCAnswerDetail, RPCError> {
         let which_reader = reader.which().map_err(RPCError::protocol)?;
         let out = match which_reader {
@@ -74,7 +87,7 @@ impl RPCAnswerDetail {
             }
             veilid_capnp::answer::detail::FindNodeA(r) => {
                 let op_reader = r.map_err(RPCError::protocol)?;
-                let out = RPCOperationFindNodeA::decode(&op_reader, crypto)?;
+                let out = RPCOperationFindNodeA::decode(&op_reader)?;
                 RPCAnswerDetail::FindNodeA(out)
             }
             veilid_capnp::answer::detail::AppCallA(r) => {
@@ -84,27 +97,27 @@ impl RPCAnswerDetail {
             }
             veilid_capnp::answer::detail::GetValueA(r) => {
                 let op_reader = r.map_err(RPCError::protocol)?;
-                let out = RPCOperationGetValueA::decode(&op_reader, crypto)?;
+                let out = RPCOperationGetValueA::decode(&op_reader)?;
                 RPCAnswerDetail::GetValueA(out)
             }
             veilid_capnp::answer::detail::SetValueA(r) => {
                 let op_reader = r.map_err(RPCError::protocol)?;
-                let out = RPCOperationSetValueA::decode(&op_reader, crypto)?;
+                let out = RPCOperationSetValueA::decode(&op_reader)?;
                 RPCAnswerDetail::SetValueA(out)
             }
             veilid_capnp::answer::detail::WatchValueA(r) => {
                 let op_reader = r.map_err(RPCError::protocol)?;
-                let out = RPCOperationWatchValueA::decode(&op_reader, crypto)?;
+                let out = RPCOperationWatchValueA::decode(&op_reader)?;
                 RPCAnswerDetail::WatchValueA(out)
             }
             veilid_capnp::answer::detail::SupplyBlockA(r) => {
                 let op_reader = r.map_err(RPCError::protocol)?;
-                let out = RPCOperationSupplyBlockA::decode(&op_reader, crypto)?;
+                let out = RPCOperationSupplyBlockA::decode(&op_reader)?;
                 RPCAnswerDetail::SupplyBlockA(out)
             }
             veilid_capnp::answer::detail::FindBlockA(r) => {
                 let op_reader = r.map_err(RPCError::protocol)?;
-                let out = RPCOperationFindBlockA::decode(&op_reader, crypto)?;
+                let out = RPCOperationFindBlockA::decode(&op_reader)?;
                 RPCAnswerDetail::FindBlockA(out)
             }
             veilid_capnp::answer::detail::StartTunnelA(r) => {
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation.rs b/veilid-core/src/rpc_processor/coders/operations/operation.rs
index d27b4d88..c0161b6d 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation.rs
@@ -16,25 +16,30 @@ impl RPCOperationKind {
         }
     }
 
-    pub fn decode(
-        kind_reader: &veilid_capnp::operation::kind::Reader,
-        crypto: Crypto,
-    ) -> Result<Self, RPCError> {
+    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+        match self {
+            RPCOperationKind::Question(r) => r.validate(crypto),
+            RPCOperationKind::Statement(r) => r.validate(crypto),
+            RPCOperationKind::Answer(r) => r.validate(crypto),
+        }
+    }
+
+    pub fn decode(kind_reader: &veilid_capnp::operation::kind::Reader) -> Result<Self, RPCError> {
         let which_reader = kind_reader.which().map_err(RPCError::protocol)?;
         let out = match which_reader {
             veilid_capnp::operation::kind::Which::Question(r) => {
                 let q_reader = r.map_err(RPCError::protocol)?;
-                let out = RPCQuestion::decode(&q_reader, crypto)?;
+                let out = RPCQuestion::decode(&q_reader)?;
                 RPCOperationKind::Question(out)
             }
             veilid_capnp::operation::kind::Which::Statement(r) => {
                 let q_reader = r.map_err(RPCError::protocol)?;
-                let out = RPCStatement::decode(&q_reader, crypto)?;
+                let out = RPCStatement::decode(&q_reader)?;
                 RPCOperationKind::Statement(out)
             }
             veilid_capnp::operation::kind::Which::Answer(r) => {
                 let q_reader = r.map_err(RPCError::protocol)?;
-                let out = RPCAnswer::decode(&q_reader, crypto)?;
+                let out = RPCAnswer::decode(&q_reader)?;
                 RPCOperationKind::Answer(out)
             }
         };
@@ -93,6 +98,15 @@ impl RPCOperation {
         }
     }
 
+    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+        // Validate sender peer info
+        if let Some(sender_peer_info) = &self.opt_sender_peer_info {
+            sender_peer_info.validate(crypto.clone())?;
+        }
+        // Validate operation kind
+        self.kind.validate(crypto)
+    }
+
     pub fn op_id(&self) -> OperationId {
         self.op_id
     }
@@ -112,17 +126,14 @@ impl RPCOperation {
         self.kind
     }
 
-    pub fn decode(
-        operation_reader: &veilid_capnp::operation::Reader,
-        crypto: Crypto,
-    ) -> Result<Self, RPCError> {
+    pub fn decode(operation_reader: &veilid_capnp::operation::Reader) -> Result<Self, RPCError> {
         let op_id = OperationId::new(operation_reader.get_op_id());
 
         let sender_peer_info = if operation_reader.has_sender_peer_info() {
             let pi_reader = operation_reader
                 .get_sender_peer_info()
                 .map_err(RPCError::protocol)?;
-            let pi = decode_peer_info(&pi_reader, crypto.clone())?;
+            let pi = decode_peer_info(&pi_reader)?;
             Some(pi)
         } else {
             None
@@ -131,7 +142,7 @@ impl RPCOperation {
         let target_node_info_ts = Timestamp::new(operation_reader.get_target_node_info_ts());
 
         let kind_reader = operation_reader.get_kind();
-        let kind = RPCOperationKind::decode(&kind_reader, crypto)?;
+        let kind = RPCOperationKind::decode(&kind_reader)?;
 
         Ok(RPCOperation {
             op_id,
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_app_call.rs b/veilid-core/src/rpc_processor/coders/operations/operation_app_call.rs
index b1360b9a..0015134a 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_app_call.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_app_call.rs
@@ -6,6 +6,10 @@ pub struct RPCOperationAppCallQ {
 }
 
 impl RPCOperationAppCallQ {
+    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+     xxx length should be checked in decode verify this
+        Ok(())
+    }
     pub fn decode(
         reader: &veilid_capnp::operation_app_call_q::Reader,
     ) -> Result<RPCOperationAppCallQ, RPCError> {
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_find_block.rs b/veilid-core/src/rpc_processor/coders/operations/operation_find_block.rs
index b5ecab45..6c69457e 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_find_block.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_find_block.rs
@@ -35,7 +35,6 @@ pub struct RPCOperationFindBlockA {
 impl RPCOperationFindBlockA {
     pub fn decode(
         reader: &veilid_capnp::operation_find_block_a::Reader,
-        crypto: Crypto,
     ) -> Result<RPCOperationFindBlockA, RPCError> {
         let data = reader.get_data().map_err(RPCError::protocol)?.to_vec();
 
@@ -47,7 +46,7 @@ impl RPCOperationFindBlockA {
                 .map_err(RPCError::map_internal("too many suppliers"))?,
         );
         for s in suppliers_reader.iter() {
-            let peer_info = decode_peer_info(&s, crypto.clone())?;
+            let peer_info = decode_peer_info(&s)?;
             suppliers.push(peer_info);
         }
 
@@ -59,7 +58,7 @@ impl RPCOperationFindBlockA {
                 .map_err(RPCError::map_internal("too many peers"))?,
         );
         for p in peers_reader.iter() {
-            let peer_info = decode_peer_info(&p, crypto.clone())?;
+            let peer_info = decode_peer_info(&p)?;
             peers.push(peer_info);
         }
 
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_find_node.rs b/veilid-core/src/rpc_processor/coders/operations/operation_find_node.rs
index c3511efa..2ac914ea 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_find_node.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_find_node.rs
@@ -6,6 +6,9 @@ pub struct RPCOperationFindNodeQ {
 }
 
 impl RPCOperationFindNodeQ {
+    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+        Ok(())
+    }
     pub fn decode(
         reader: &veilid_capnp::operation_find_node_q::Reader,
     ) -> Result<RPCOperationFindNodeQ, RPCError> {
@@ -29,9 +32,14 @@ pub struct RPCOperationFindNodeA {
 }
 
 impl RPCOperationFindNodeA {
+    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+        for pi in &self.peers {
+            pi.validate(crypto.clone()).map_err(RPCError::protocol)?;
+        }
+        Ok(())
+    }
     pub fn decode(
         reader: &veilid_capnp::operation_find_node_a::Reader,
-        crypto: Crypto,
     ) -> Result<RPCOperationFindNodeA, RPCError> {
         let peers_reader = reader.get_peers().map_err(RPCError::protocol)?;
         let mut peers = Vec::<PeerInfo>::with_capacity(
@@ -41,7 +49,7 @@ impl RPCOperationFindNodeA {
                 .map_err(RPCError::map_internal("too many peers"))?,
         );
         for p in peers_reader.iter() {
-            let peer_info = decode_peer_info(&p, crypto.clone())?;
+            let peer_info = decode_peer_info(&p)?;
             peers.push(peer_info);
         }
 
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs b/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
index 5db1f993..8e9ddcb9 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
@@ -4,16 +4,22 @@ use super::*;
 pub struct RPCOperationGetValueQ {
     pub key: TypedKey,
     pub subkey: ValueSubkey,
+    pub want_descriptor: bool,
 }
 
 impl RPCOperationGetValueQ {
     pub fn decode(
         reader: &veilid_capnp::operation_get_value_q::Reader,
     ) -> Result<RPCOperationGetValueQ, RPCError> {
-        let k_reader = reader.get_key().map_err(RPCError::protocol)?;
+        let k_reader = reader.reborrow().get_key().map_err(RPCError::protocol)?;
         let key = decode_typed_key(&k_reader)?;
-        let subkey = reader.get_subkey();
-        Ok(RPCOperationGetValueQ { key, subkey })
+        let subkey = reader.reborrow().get_subkey();
+        let want_descriptor = reader.reborrow().get_want_descriptor();
+        Ok(RPCOperationGetValueQ {
+            key,
+            subkey,
+            want_descriptor,
+        })
     }
     pub fn encode(
         &self,
@@ -22,24 +28,24 @@ impl RPCOperationGetValueQ {
         let mut k_builder = builder.reborrow().init_key();
         encode_typed_key(&self.key, &mut k_builder);
         builder.set_subkey(self.subkey);
+        builder.set_want_descriptor(self.want_descriptor);
         Ok(())
     }
 }
 
 #[derive(Debug, Clone)]
 pub enum RPCOperationGetValueA {
-    Data(ValueData),
+    Value(ValueDetail),
     Peers(Vec<PeerInfo>),
 }
 
 impl RPCOperationGetValueA {
     pub fn decode(
         reader: &veilid_capnp::operation_get_value_a::Reader,
-        crypto: Crypto,
     ) -> Result<RPCOperationGetValueA, RPCError> {
         match reader.which().map_err(RPCError::protocol)? {
-            veilid_capnp::operation_get_value_a::Which::Data(r) => {
-                let data = decode_value_data(&r.map_err(RPCError::protocol)?)?;
+            veilid_capnp::operation_get_value_a::Which::Value(r) => {
+                let value_detail = decode_value_detail(&r.map_err(RPCError::protocol)?)?;
                 Ok(RPCOperationGetValueA::Data(data))
             }
             veilid_capnp::operation_get_value_a::Which::Peers(r) => {
@@ -51,7 +57,7 @@ impl RPCOperationGetValueA {
                         .map_err(RPCError::map_internal("too many peers"))?,
                 );
                 for p in peers_reader.iter() {
-                    let peer_info = decode_peer_info(&p, crypto.clone())?;
+                    let peer_info = decode_peer_info(&p)?;
                     peers.push(peer_info);
                 }
 
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_route.rs b/veilid-core/src/rpc_processor/coders/operations/operation_route.rs
index 67333819..e7d51ffe 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_route.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_route.rs
@@ -80,10 +80,9 @@ pub struct RPCOperationRoute {
 impl RPCOperationRoute {
     pub fn decode(
         reader: &veilid_capnp::operation_route::Reader,
-        crypto: Crypto,
     ) -> Result<RPCOperationRoute, RPCError> {
         let sr_reader = reader.get_safety_route().map_err(RPCError::protocol)?;
-        let safety_route = decode_safety_route(&sr_reader, crypto)?;
+        let safety_route = decode_safety_route(&sr_reader)?;
 
         let o_reader = reader.get_operation().map_err(RPCError::protocol)?;
         let operation = RoutedOperation::decode(&o_reader)?;
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_set_value.rs b/veilid-core/src/rpc_processor/coders/operations/operation_set_value.rs
index 4f1c5763..99eed02f 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_set_value.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_set_value.rs
@@ -40,7 +40,6 @@ pub enum RPCOperationSetValueA {
 impl RPCOperationSetValueA {
     pub fn decode(
         reader: &veilid_capnp::operation_set_value_a::Reader,
-        crypto: Crypto,
     ) -> Result<RPCOperationSetValueA, RPCError> {
         match reader.which().map_err(RPCError::protocol)? {
             veilid_capnp::operation_set_value_a::Which::Data(r) => {
@@ -56,7 +55,7 @@ impl RPCOperationSetValueA {
                         .map_err(RPCError::map_internal("too many peers"))?,
                 );
                 for p in peers_reader.iter() {
-                    let peer_info = decode_peer_info(&p, crypto.clone())?;
+                    let peer_info = decode_peer_info(&p)?;
                     peers.push(peer_info);
                 }
 
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_signal.rs b/veilid-core/src/rpc_processor/coders/operations/operation_signal.rs
index a414e300..4b8a6fd3 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_signal.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_signal.rs
@@ -8,9 +8,8 @@ pub struct RPCOperationSignal {
 impl RPCOperationSignal {
     pub fn decode(
         reader: &veilid_capnp::operation_signal::Reader,
-        crypto: Crypto,
     ) -> Result<RPCOperationSignal, RPCError> {
-        let signal_info = decode_signal_info(reader, crypto)?;
+        let signal_info = decode_signal_info(reader)?;
         Ok(RPCOperationSignal { signal_info })
     }
     pub fn encode(
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_status.rs b/veilid-core/src/rpc_processor/coders/operations/operation_status.rs
index 9ab480a8..42202328 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_status.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_status.rs
@@ -6,6 +6,10 @@ pub struct RPCOperationStatusQ {
 }
 
 impl RPCOperationStatusQ {
+    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+        Ok(())
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_status_q::Reader,
     ) -> Result<RPCOperationStatusQ, RPCError> {
@@ -37,6 +41,9 @@ pub struct RPCOperationStatusA {
 }
 
 impl RPCOperationStatusA {
+    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+        Ok(())
+    }
     pub fn decode(
         reader: &veilid_capnp::operation_status_a::Reader,
     ) -> Result<RPCOperationStatusA, RPCError> {
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_supply_block.rs b/veilid-core/src/rpc_processor/coders/operations/operation_supply_block.rs
index f68de596..a2d808e5 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_supply_block.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_supply_block.rs
@@ -34,8 +34,7 @@ pub enum RPCOperationSupplyBlockA {
 impl RPCOperationSupplyBlockA {
     pub fn decode(
         reader: &veilid_capnp::operation_supply_block_a::Reader,
-        crypto: Crypto,
-    ) -> Result<RPCOperationSupplyBlockA, RPCError> {
+=    ) -> Result<RPCOperationSupplyBlockA, RPCError> {
         match reader.which().map_err(RPCError::protocol)? {
             veilid_capnp::operation_supply_block_a::Which::Expiration(r) => {
                 Ok(RPCOperationSupplyBlockA::Expiration(r))
@@ -49,7 +48,7 @@ impl RPCOperationSupplyBlockA {
                         .map_err(RPCError::map_internal("too many peers"))?,
                 );
                 for p in peers_reader.iter() {
-                    let peer_info = decode_peer_info(&p, crypto.clone())?;
+                    let peer_info = decode_peer_info(&p)?;
                     peers.push(peer_info);
                 }
 
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_watch_value.rs b/veilid-core/src/rpc_processor/coders/operations/operation_watch_value.rs
index 7812b98b..e2eaee74 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_watch_value.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_watch_value.rs
@@ -80,7 +80,6 @@ pub struct RPCOperationWatchValueA {
 impl RPCOperationWatchValueA {
     pub fn decode(
         reader: &veilid_capnp::operation_watch_value_a::Reader,
-        crypto: Crypto,
     ) -> Result<RPCOperationWatchValueA, RPCError> {
         let expiration = reader.get_expiration();
         let peers_reader = reader.get_peers().map_err(RPCError::protocol)?;
@@ -91,7 +90,7 @@ impl RPCOperationWatchValueA {
                 .map_err(RPCError::map_internal("too many peers"))?,
         );
         for p in peers_reader.iter() {
-            let peer_info = decode_peer_info(&p, crypto.clone())?;
+            let peer_info = decode_peer_info(&p)?;
             peers.push(peer_info);
         }
 
diff --git a/veilid-core/src/rpc_processor/coders/operations/question.rs b/veilid-core/src/rpc_processor/coders/operations/question.rs
index e3f50776..5935b6aa 100644
--- a/veilid-core/src/rpc_processor/coders/operations/question.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/question.rs
@@ -10,6 +10,10 @@ impl RPCQuestion {
     pub fn new(respond_to: RespondTo, detail: RPCQuestionDetail) -> Self {
         Self { respond_to, detail }
     }
+    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+        self.respond_to.validate(crypto.clone())?;
+        self.detail.validate(crypto)
+    }
     pub fn respond_to(&self) -> &RespondTo {
         &self.respond_to
     }
@@ -19,12 +23,9 @@ impl RPCQuestion {
     pub fn desc(&self) -> &'static str {
         self.detail.desc()
     }
-    pub fn decode(
-        reader: &veilid_capnp::question::Reader,
-        crypto: Crypto,
-    ) -> Result<RPCQuestion, RPCError> {
+    pub fn decode(reader: &veilid_capnp::question::Reader) -> Result<RPCQuestion, RPCError> {
         let rt_reader = reader.get_respond_to();
-        let respond_to = RespondTo::decode(&rt_reader, crypto)?;
+        let respond_to = RespondTo::decode(&rt_reader)?;
         let d_reader = reader.get_detail();
         let detail = RPCQuestionDetail::decode(&d_reader)?;
         Ok(RPCQuestion { respond_to, detail })
@@ -68,6 +69,21 @@ impl RPCQuestionDetail {
             RPCQuestionDetail::CancelTunnelQ(_) => "CancelTunnelQ",
         }
     }
+    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+        match self {
+            RPCQuestionDetail::StatusQ(r) => r.validate(crypto),
+            RPCQuestionDetail::FindNodeQ(r) => r.validate(crypto),
+            RPCQuestionDetail::AppCallQ(r) => r.validate(crypto),
+            RPCQuestionDetail::GetValueQ(r) => r.validate(crypto),
+            RPCQuestionDetail::SetValueQ(r) => r.validate(crypto),
+            RPCQuestionDetail::WatchValueQ(r) => r.validate(crypto),
+            RPCQuestionDetail::SupplyBlockQ(r) => r.validate(crypto),
+            RPCQuestionDetail::FindBlockQ(r) => r.validate(crypto),
+            RPCQuestionDetail::StartTunnelQ(r) => r.validate(crypto),
+            RPCQuestionDetail::CompleteTunnelQ(r) => r.validate(crypto),
+            RPCQuestionDetail::CancelTunnelQ(r) => r.validate(crypto),
+        }
+    }
 
     pub fn decode(
         reader: &veilid_capnp::question::detail::Reader,
diff --git a/veilid-core/src/rpc_processor/coders/operations/respond_to.rs b/veilid-core/src/rpc_processor/coders/operations/respond_to.rs
index 43d6f871..92b7c9ef 100644
--- a/veilid-core/src/rpc_processor/coders/operations/respond_to.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/respond_to.rs
@@ -7,6 +7,13 @@ pub enum RespondTo {
 }
 
 impl RespondTo {
+    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+        match self {
+            RespondTo::Sender => Ok(()),
+            RespondTo::PrivateRoute(pr) => pr.validate(crypto).map_err(RPCError::protocol),
+        }
+    }
+
     pub fn encode(
         &self,
         builder: &mut veilid_capnp::question::respond_to::Builder,
@@ -23,15 +30,12 @@ impl RespondTo {
         Ok(())
     }
 
-    pub fn decode(
-        reader: &veilid_capnp::question::respond_to::Reader,
-        crypto: Crypto,
-    ) -> Result<Self, RPCError> {
+    pub fn decode(reader: &veilid_capnp::question::respond_to::Reader) -> Result<Self, RPCError> {
         let respond_to = match reader.which().map_err(RPCError::protocol)? {
             veilid_capnp::question::respond_to::Sender(()) => RespondTo::Sender,
             veilid_capnp::question::respond_to::PrivateRoute(pr_reader) => {
                 let pr_reader = pr_reader.map_err(RPCError::protocol)?;
-                let pr = decode_private_route(&pr_reader, crypto)?;
+                let pr = decode_private_route(&pr_reader)?;
                 RespondTo::PrivateRoute(pr)
             }
         };
diff --git a/veilid-core/src/rpc_processor/coders/operations/statement.rs b/veilid-core/src/rpc_processor/coders/operations/statement.rs
index 2108b373..cd6b1ecc 100644
--- a/veilid-core/src/rpc_processor/coders/operations/statement.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/statement.rs
@@ -9,6 +9,9 @@ impl RPCStatement {
     pub fn new(detail: RPCStatementDetail) -> Self {
         Self { detail }
     }
+    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+        self.detail.validate(crypto)
+    }
     pub fn detail(&self) -> &RPCStatementDetail {
         &self.detail
     }
@@ -18,12 +21,9 @@ impl RPCStatement {
     pub fn desc(&self) -> &'static str {
         self.detail.desc()
     }
-    pub fn decode(
-        reader: &veilid_capnp::statement::Reader,
-        crypto: Crypto,
-    ) -> Result<RPCStatement, RPCError> {
+    pub fn decode(reader: &veilid_capnp::statement::Reader) -> Result<RPCStatement, RPCError> {
         let d_reader = reader.get_detail();
-        let detail = RPCStatementDetail::decode(&d_reader, crypto)?;
+        let detail = RPCStatementDetail::decode(&d_reader)?;
         Ok(RPCStatement { detail })
     }
     pub fn encode(&self, builder: &mut veilid_capnp::statement::Builder) -> Result<(), RPCError> {
@@ -53,9 +53,18 @@ impl RPCStatementDetail {
             RPCStatementDetail::AppMessage(_) => "AppMessage",
         }
     }
+    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+        match self {
+            RPCStatementDetail::ValidateDialInfo(r) => r.validate(crypto),
+            RPCStatementDetail::Route(r) => r.validate(crypto),
+            RPCStatementDetail::ValueChanged(r) => r.validate(crypto),
+            RPCStatementDetail::Signal(r) => r.validate(crypto),
+            RPCStatementDetail::ReturnReceipt(r) => r.validate(crypto),
+            RPCStatementDetail::AppMessage(r) => r.validate(crypto),
+        }
+    }
     pub fn decode(
         reader: &veilid_capnp::statement::detail::Reader,
-        crypto: Crypto,
     ) -> Result<RPCStatementDetail, RPCError> {
         let which_reader = reader.which().map_err(RPCError::protocol)?;
         let out = match which_reader {
@@ -66,7 +75,7 @@ impl RPCStatementDetail {
             }
             veilid_capnp::statement::detail::Route(r) => {
                 let op_reader = r.map_err(RPCError::protocol)?;
-                let out = RPCOperationRoute::decode(&op_reader, crypto)?;
+                let out = RPCOperationRoute::decode(&op_reader)?;
                 RPCStatementDetail::Route(out)
             }
             veilid_capnp::statement::detail::ValueChanged(r) => {
@@ -76,7 +85,7 @@ impl RPCStatementDetail {
             }
             veilid_capnp::statement::detail::Signal(r) => {
                 let op_reader = r.map_err(RPCError::protocol)?;
-                let out = RPCOperationSignal::decode(&op_reader, crypto)?;
+                let out = RPCOperationSignal::decode(&op_reader)?;
                 RPCStatementDetail::Signal(out)
             }
             veilid_capnp::statement::detail::ReturnReceipt(r) => {
diff --git a/veilid-core/src/rpc_processor/coders/peer_info.rs b/veilid-core/src/rpc_processor/coders/peer_info.rs
index 14a1cdd1..b7081aab 100644
--- a/veilid-core/src/rpc_processor/coders/peer_info.rs
+++ b/veilid-core/src/rpc_processor/coders/peer_info.rs
@@ -7,12 +7,12 @@ pub fn encode_peer_info(
     //
     let mut nids_builder = builder.reborrow().init_node_ids(
         peer_info
-            .node_ids
+            .node_ids()
             .len()
             .try_into()
             .map_err(RPCError::map_invalid_format("out of bound error"))?,
     );
-    for (i, nid) in peer_info.node_ids.iter().enumerate() {
+    for (i, nid) in peer_info.node_ids().iter().enumerate() {
         encode_typed_key(
             nid,
             &mut nids_builder.reborrow().get(
@@ -22,15 +22,12 @@ pub fn encode_peer_info(
         );
     }
     let mut sni_builder = builder.reborrow().init_signed_node_info();
-    encode_signed_node_info(&peer_info.signed_node_info, &mut sni_builder)?;
+    encode_signed_node_info(peer_info.signed_node_info(), &mut sni_builder)?;
 
     Ok(())
 }
 
-pub fn decode_peer_info(
-    reader: &veilid_capnp::peer_info::Reader,
-    crypto: Crypto,
-) -> Result<PeerInfo, RPCError> {
+pub fn decode_peer_info(reader: &veilid_capnp::peer_info::Reader) -> Result<PeerInfo, RPCError> {
     let nids_reader = reader
         .reborrow()
         .get_node_ids()
@@ -43,7 +40,7 @@ pub fn decode_peer_info(
     for nid_reader in nids_reader.iter() {
         node_ids.add(decode_typed_key(&nid_reader)?);
     }
-    let signed_node_info = decode_signed_node_info(&sni_reader, crypto, &mut node_ids)?;
+    let signed_node_info = decode_signed_node_info(&sni_reader)?;
     if node_ids.len() == 0 {
         return Err(RPCError::protocol("no verified node ids"));
     }
diff --git a/veilid-core/src/rpc_processor/coders/private_safety_route.rs b/veilid-core/src/rpc_processor/coders/private_safety_route.rs
index 86d63d03..504b308d 100644
--- a/veilid-core/src/rpc_processor/coders/private_safety_route.rs
+++ b/veilid-core/src/rpc_processor/coders/private_safety_route.rs
@@ -67,10 +67,7 @@ pub fn encode_route_hop(
     Ok(())
 }
 
-pub fn decode_route_hop(
-    reader: &veilid_capnp::route_hop::Reader,
-    crypto: Crypto,
-) -> Result<RouteHop, RPCError> {
+pub fn decode_route_hop(reader: &veilid_capnp::route_hop::Reader) -> Result<RouteHop, RPCError> {
     let n_reader = reader.reborrow().get_node();
     let node = match n_reader.which().map_err(RPCError::protocol)? {
         veilid_capnp::route_hop::node::Which::NodeId(ni) => {
@@ -80,7 +77,7 @@ pub fn decode_route_hop(
         veilid_capnp::route_hop::node::Which::PeerInfo(pi) => {
             let pi_reader = pi.map_err(RPCError::protocol)?;
             RouteNode::PeerInfo(
-                decode_peer_info(&pi_reader, crypto)
+                decode_peer_info(&pi_reader)
                     .map_err(RPCError::map_protocol("invalid peer info in route hop"))?,
             )
         }
@@ -128,7 +125,6 @@ pub fn encode_private_route(
 
 pub fn decode_private_route(
     reader: &veilid_capnp::private_route::Reader,
-    crypto: Crypto,
 ) -> Result<PrivateRoute, RPCError> {
     let public_key = decode_typed_key(&reader.get_public_key().map_err(
         RPCError::map_protocol("invalid public key in private route"),
@@ -138,7 +134,7 @@ pub fn decode_private_route(
     let hops = match reader.get_hops().which().map_err(RPCError::protocol)? {
         veilid_capnp::private_route::hops::Which::FirstHop(rh_reader) => {
             let rh_reader = rh_reader.map_err(RPCError::protocol)?;
-            PrivateRouteHops::FirstHop(decode_route_hop(&rh_reader, crypto)?)
+            PrivateRouteHops::FirstHop(decode_route_hop(&rh_reader)?)
         }
         veilid_capnp::private_route::hops::Which::Data(rhd_reader) => {
             let rhd_reader = rhd_reader.map_err(RPCError::protocol)?;
@@ -182,7 +178,6 @@ pub fn encode_safety_route(
 
 pub fn decode_safety_route(
     reader: &veilid_capnp::safety_route::Reader,
-    crypto: Crypto,
 ) -> Result<SafetyRoute, RPCError> {
     let public_key = decode_typed_key(
         &reader
@@ -197,7 +192,7 @@ pub fn decode_safety_route(
         }
         veilid_capnp::safety_route::hops::Which::Private(pr_reader) => {
             let pr_reader = pr_reader.map_err(RPCError::protocol)?;
-            SafetyRouteHops::Private(decode_private_route(&pr_reader, crypto)?)
+            SafetyRouteHops::Private(decode_private_route(&pr_reader)?)
         }
     };
 
diff --git a/veilid-core/src/rpc_processor/coders/signal_info.rs b/veilid-core/src/rpc_processor/coders/signal_info.rs
index 0f51257e..5e9edc84 100644
--- a/veilid-core/src/rpc_processor/coders/signal_info.rs
+++ b/veilid-core/src/rpc_processor/coders/signal_info.rs
@@ -34,7 +34,6 @@ pub fn encode_signal_info(
 
 pub fn decode_signal_info(
     reader: &veilid_capnp::operation_signal::Reader,
-    crypto: Crypto,
 ) -> Result<SignalInfo, RPCError> {
     Ok(
         match reader
@@ -53,7 +52,7 @@ pub fn decode_signal_info(
                 let pi_reader = r.get_peer_info().map_err(RPCError::map_protocol(
                     "invalid peer info in hole punch signal info",
                 ))?;
-                let peer_info = decode_peer_info(&pi_reader, crypto)?;
+                let peer_info = decode_peer_info(&pi_reader)?;
 
                 SignalInfo::HolePunch { receipt, peer_info }
             }
@@ -69,7 +68,7 @@ pub fn decode_signal_info(
                 let pi_reader = r.get_peer_info().map_err(RPCError::map_protocol(
                     "invalid peer info in reverse connect signal info",
                 ))?;
-                let peer_info = decode_peer_info(&pi_reader, crypto)?;
+                let peer_info = decode_peer_info(&pi_reader)?;
 
                 SignalInfo::ReverseConnect { receipt, peer_info }
             }
diff --git a/veilid-core/src/rpc_processor/coders/signed_direct_node_info.rs b/veilid-core/src/rpc_processor/coders/signed_direct_node_info.rs
index c15ddfb8..4740ea59 100644
--- a/veilid-core/src/rpc_processor/coders/signed_direct_node_info.rs
+++ b/veilid-core/src/rpc_processor/coders/signed_direct_node_info.rs
@@ -6,20 +6,20 @@ pub fn encode_signed_direct_node_info(
 ) -> Result<(), RPCError> {
     //
     let mut ni_builder = builder.reborrow().init_node_info();
-    encode_node_info(&signed_direct_node_info.node_info, &mut ni_builder)?;
+    encode_node_info(signed_direct_node_info.node_info(), &mut ni_builder)?;
 
     builder
         .reborrow()
-        .set_timestamp(signed_direct_node_info.timestamp.into());
+        .set_timestamp(signed_direct_node_info.timestamp().into());
 
     let mut sigs_builder = builder.reborrow().init_signatures(
         signed_direct_node_info
-            .signatures
+            .signatures()
             .len()
             .try_into()
             .map_err(RPCError::map_invalid_format("out of bound error"))?,
     );
-    for (i, typed_signature) in signed_direct_node_info.signatures.iter().enumerate() {
+    for (i, typed_signature) in signed_direct_node_info.signatures().iter().enumerate() {
         encode_typed_signature(
             typed_signature,
             &mut sigs_builder.reborrow().get(
@@ -34,8 +34,6 @@ pub fn encode_signed_direct_node_info(
 
 pub fn decode_signed_direct_node_info(
     reader: &veilid_capnp::signed_direct_node_info::Reader,
-    crypto: Crypto,
-    node_ids: &mut TypedKeySet,
 ) -> Result<SignedDirectNodeInfo, RPCError> {
     let ni_reader = reader
         .reborrow()
@@ -61,6 +59,9 @@ pub fn decode_signed_direct_node_info(
         typed_signatures.push(typed_signature);
     }
 
-    SignedDirectNodeInfo::new(crypto, node_ids, node_info, timestamp, typed_signatures)
-        .map_err(RPCError::protocol)
+    Ok(SignedDirectNodeInfo::new(
+        node_info,
+        timestamp,
+        typed_signatures,
+    ))
 }
diff --git a/veilid-core/src/rpc_processor/coders/signed_node_info.rs b/veilid-core/src/rpc_processor/coders/signed_node_info.rs
index aeede197..e3ced6ad 100644
--- a/veilid-core/src/rpc_processor/coders/signed_node_info.rs
+++ b/veilid-core/src/rpc_processor/coders/signed_node_info.rs
@@ -20,8 +20,6 @@ pub fn encode_signed_node_info(
 
 pub fn decode_signed_node_info(
     reader: &veilid_capnp::signed_node_info::Reader,
-    crypto: Crypto,
-    node_ids: &mut TypedKeySet,
 ) -> Result<SignedNodeInfo, RPCError> {
     match reader
         .which()
@@ -29,12 +27,12 @@ pub fn decode_signed_node_info(
     {
         veilid_capnp::signed_node_info::Direct(d) => {
             let d_reader = d.map_err(RPCError::protocol)?;
-            let sdni = decode_signed_direct_node_info(&d_reader, crypto, node_ids)?;
+            let sdni = decode_signed_direct_node_info(&d_reader)?;
             Ok(SignedNodeInfo::Direct(sdni))
         }
         veilid_capnp::signed_node_info::Relayed(r) => {
             let r_reader = r.map_err(RPCError::protocol)?;
-            let srni = decode_signed_relayed_node_info(&r_reader, crypto, node_ids)?;
+            let srni = decode_signed_relayed_node_info(&r_reader)?;
             Ok(SignedNodeInfo::Relayed(srni))
         }
     }
diff --git a/veilid-core/src/rpc_processor/coders/signed_relayed_node_info.rs b/veilid-core/src/rpc_processor/coders/signed_relayed_node_info.rs
index 4264e853..e4273e8e 100644
--- a/veilid-core/src/rpc_processor/coders/signed_relayed_node_info.rs
+++ b/veilid-core/src/rpc_processor/coders/signed_relayed_node_info.rs
@@ -6,16 +6,16 @@ pub fn encode_signed_relayed_node_info(
 ) -> Result<(), RPCError> {
     //
     let mut ni_builder = builder.reborrow().init_node_info();
-    encode_node_info(&signed_relayed_node_info.node_info, &mut ni_builder)?;
+    encode_node_info(signed_relayed_node_info.node_info(), &mut ni_builder)?;
 
     let mut rids_builder = builder.reborrow().init_relay_ids(
         signed_relayed_node_info
-            .relay_ids
+            .relay_ids()
             .len()
             .try_into()
             .map_err(RPCError::map_invalid_format("out of bound error"))?,
     );
-    for (i, typed_key) in signed_relayed_node_info.relay_ids.iter().enumerate() {
+    for (i, typed_key) in signed_relayed_node_info.relay_ids().iter().enumerate() {
         encode_typed_key(
             typed_key,
             &mut rids_builder.reborrow().get(
@@ -26,20 +26,20 @@ pub fn encode_signed_relayed_node_info(
     }
 
     let mut ri_builder = builder.reborrow().init_relay_info();
-    encode_signed_direct_node_info(&signed_relayed_node_info.relay_info, &mut ri_builder)?;
+    encode_signed_direct_node_info(signed_relayed_node_info.relay_info(), &mut ri_builder)?;
 
     builder
         .reborrow()
-        .set_timestamp(signed_relayed_node_info.timestamp.into());
+        .set_timestamp(signed_relayed_node_info.timestamp().into());
 
     let mut sigs_builder = builder.reborrow().init_signatures(
         signed_relayed_node_info
-            .signatures
+            .signatures()
             .len()
             .try_into()
             .map_err(RPCError::map_invalid_format("out of bound error"))?,
     );
-    for (i, typed_signature) in signed_relayed_node_info.signatures.iter().enumerate() {
+    for (i, typed_signature) in signed_relayed_node_info.signatures().iter().enumerate() {
         encode_typed_signature(
             typed_signature,
             &mut sigs_builder.reborrow().get(
@@ -54,8 +54,6 @@ pub fn encode_signed_relayed_node_info(
 
 pub fn decode_signed_relayed_node_info(
     reader: &veilid_capnp::signed_relayed_node_info::Reader,
-    crypto: Crypto,
-    node_ids: &mut TypedKeySet,
 ) -> Result<SignedRelayedNodeInfo, RPCError> {
     let ni_reader = reader
         .reborrow()
@@ -81,20 +79,7 @@ pub fn decode_signed_relayed_node_info(
         .reborrow()
         .get_relay_info()
         .map_err(RPCError::protocol)?;
-    let relay_info = decode_signed_direct_node_info(&ri_reader, crypto.clone(), &mut relay_ids)?;
-
-    // Ensure the relay info for the node has a superset of the crypto kinds of the node it is relaying
-    if common_crypto_kinds(
-        &node_info.crypto_support,
-        &relay_info.node_info.crypto_support,
-    )
-    .len()
-        != node_info.crypto_support.len()
-    {
-        return Err(RPCError::protocol(
-            "relay should have superset of node crypto kinds",
-        ));
-    }
+    let relay_info = decode_signed_direct_node_info(&ri_reader)?;
 
     let timestamp = reader.reborrow().get_timestamp().into();
 
@@ -113,14 +98,11 @@ pub fn decode_signed_relayed_node_info(
         let typed_signature = decode_typed_signature(&sig_reader)?;
         typed_signatures.push(typed_signature);
     }
-    SignedRelayedNodeInfo::new(
-        crypto,
-        node_ids,
+    Ok(SignedRelayedNodeInfo::new(
         node_info,
         relay_ids,
         relay_info,
         timestamp,
         typed_signatures,
-    )
-    .map_err(RPCError::protocol)
+    ))
 }
diff --git a/veilid-core/src/rpc_processor/coders/signed_value_data.rs b/veilid-core/src/rpc_processor/coders/signed_value_data.rs
index 6f65b304..a3d29932 100644
--- a/veilid-core/src/rpc_processor/coders/signed_value_data.rs
+++ b/veilid-core/src/rpc_processor/coders/signed_value_data.rs
@@ -16,7 +16,7 @@ pub fn encode_signed_value_data(
 
 pub fn decode_signed_value_data(
     reader: &veilid_capnp::signed_value_data::Reader,
-) -> Result<ValueData, RPCError> {
+) -> Result<SignedValueData, RPCError> {
     let seq = reader.get_seq();
     let data = reader.get_data().map_err(RPCError::protocol)?.to_vec();
     let wr = reader.get_writer().map_err(RPCError::protocol)?;
@@ -24,8 +24,8 @@ pub fn decode_signed_value_data(
     let sr = reader.get_signature().map_err(RPCError::protocol)?;
     let signature = decode_signature512(&sr);
 
-    Ok(SignedValueData {
-        value_data: ValueData { seq, data, writer },
+    Ok(SignedValueData::new(
+        ValueData::new_with_seq(seq, data, writer),
         signature,
-    })
+    ))
 }
diff --git a/veilid-core/src/rpc_processor/coders/signed_value_descriptor.rs b/veilid-core/src/rpc_processor/coders/signed_value_descriptor.rs
index 22be6b5a..c1c93f69 100644
--- a/veilid-core/src/rpc_processor/coders/signed_value_descriptor.rs
+++ b/veilid-core/src/rpc_processor/coders/signed_value_descriptor.rs
@@ -7,7 +7,7 @@ pub fn encode_signed_value_descriptor(
 ) -> Result<(), RPCError> {
     let mut ob = builder.reborrow().init_owner();
     encode_key256(signed_value_descriptor.owner(), &mut ob);
-    builder.set_data(signed_value_descriptor.data());
+    builder.set_schema_data(signed_value_descriptor.schema_data());
     let mut sb = builder.reborrow().init_signature();
     encode_signature512(signed_value_descriptor.signature(), &mut sb);
     Ok(())
@@ -15,12 +15,14 @@ pub fn encode_signed_value_descriptor(
 
 pub fn decode_signed_value_descriptor(
     reader: &veilid_capnp::signed_value_descriptor::Reader,
-    vcrypto: CryptoSystemVersion,
 ) -> Result<SignedValueDescriptor, RPCError> {
     let or = reader.get_owner().map_err(RPCError::protocol)?;
     let owner = decode_key256(&or);
-    let data = reader.get_data().map_err(RPCError::protocol)?.to_vec();
+    let schema_data = reader
+        .get_schema_data()
+        .map_err(RPCError::protocol)?
+        .to_vec();
     let sr = reader.get_signature().map_err(RPCError::protocol)?;
     let signature = decode_signature512(&sr);
-    Ok(SignedValueDescriptor::new(owner, data, signature, vcrypto).map_err(RPCError::protocol)?)
+    Ok(SignedValueDescriptor::new(owner, schema_data, signature))
 }
diff --git a/veilid-core/src/rpc_processor/coders/value_detail.rs b/veilid-core/src/rpc_processor/coders/value_detail.rs
index c853861c..4eac9ee6 100644
--- a/veilid-core/src/rpc_processor/coders/value_detail.rs
+++ b/veilid-core/src/rpc_processor/coders/value_detail.rs
@@ -6,13 +6,31 @@ pub fn encode_value_detail(
     builder: &mut veilid_capnp::value_detail::Builder,
 ) -> Result<(), RPCError> {
     let mut svdb = builder.reborrow().init_signed_value_data();
-
+    encode_signed_value_data(value_detail.signed_value_data(), &mut svdb)?;
+    if let Some(descriptor) = value_detail.descriptor() {
+        let mut db = builder.reborrow().init_descriptor();
+        encode_signed_value_descriptor(descriptor, &mut db)?;
+    }
     Ok(())
 }
 
 pub fn decode_value_detail(
     reader: &veilid_capnp::value_detail::Reader,
 ) -> Result<ValueDetail, RPCError> {
+    let svdr = reader.get_signed_value_data().map_err(RPCError::protocol)?;
+    let signed_value_data = decode_signed_value_data(&svdr)?;
+
+    let descriptor = if reader.has_descriptor() {
+        let dr = reader
+            .reborrow()
+            .get_descriptor()
+            .map_err(RPCError::protocol)?;
+        let descriptor = decode_signed_value_descriptor(&dr)?;
+        Some(descriptor)
+    } else {
+        None
+    };
+
     Ok(ValueDetail {
         signed_value_data,
         descriptor,
diff --git a/veilid-core/src/rpc_processor/mod.rs b/veilid-core/src/rpc_processor/mod.rs
index a1d11478..d24f88f2 100644
--- a/veilid-core/src/rpc_processor/mod.rs
+++ b/veilid-core/src/rpc_processor/mod.rs
@@ -753,7 +753,7 @@ impl RPCProcessor {
         };
 
         // Get our node info timestamp
-        let our_node_info_ts = own_peer_info.signed_node_info.timestamp();
+        let our_node_info_ts = own_peer_info.signed_node_info().timestamp();
 
         // If the target has seen our node info already don't send it again
         if target.has_seen_our_node_info_ts(routing_domain, our_node_info_ts) {
@@ -1214,16 +1214,19 @@ impl RPCProcessor {
                         .get_root::<veilid_capnp::operation::Reader>()
                         .map_err(RPCError::protocol)
                         .map_err(logthru_rpc!())?;
-                    RPCOperation::decode(&op_reader, self.crypto.clone())?
+                    RPCOperation::decode(&op_reader)?
                 };
 
+                // Validate the RPC operation
+                operation.validate(self.crypto.clone())?;
+
                 // Get the sender noderef, incorporating sender's peer info
                 let mut opt_sender_nr: Option<NodeRef> = None;
                 if let Some(sender_peer_info) = operation.sender_peer_info() {
                     // Ensure the sender peer info is for the actual sender specified in the envelope
 
                     // Sender PeerInfo was specified, update our routing table with it
-                    if !self.filter_node_info(routing_domain, &sender_peer_info.signed_node_info) {
+                    if !self.filter_node_info(routing_domain, sender_peer_info.signed_node_info()) {
                         return Err(RPCError::invalid_format(
                             "sender peerinfo has invalid peer scope",
                         ));
@@ -1261,9 +1264,12 @@ impl RPCProcessor {
                         .get_root::<veilid_capnp::operation::Reader>()
                         .map_err(RPCError::protocol)
                         .map_err(logthru_rpc!())?;
-                    RPCOperation::decode(&op_reader, self.crypto.clone())?
+                    RPCOperation::decode(&op_reader)?
                 };
 
+                // Validate the RPC operation
+                operation.validate(self.crypto.clone())?;
+
                 // Make the RPC message
                 RPCMessage {
                     header: encoded_msg.header,
diff --git a/veilid-core/src/rpc_processor/rpc_find_node.rs b/veilid-core/src/rpc_processor/rpc_find_node.rs
index a3a5af6e..18f3053e 100644
--- a/veilid-core/src/rpc_processor/rpc_find_node.rs
+++ b/veilid-core/src/rpc_processor/rpc_find_node.rs
@@ -52,7 +52,7 @@ impl RPCProcessor {
 
         // Verify peers are in the correct peer scope
         for peer_info in &find_node_a.peers {
-            if !self.filter_node_info(RoutingDomain::PublicInternet, &peer_info.signed_node_info) {
+            if !self.filter_node_info(RoutingDomain::PublicInternet, peer_info.signed_node_info()) {
                 return Err(RPCError::invalid_format(
                     "find_node response has invalid peer scope",
                 ));
diff --git a/veilid-core/src/rpc_processor/rpc_route.rs b/veilid-core/src/rpc_processor/rpc_route.rs
index 14ddccc8..8eb4fb6f 100644
--- a/veilid-core/src/rpc_processor/rpc_route.rs
+++ b/veilid-core/src/rpc_processor/rpc_route.rs
@@ -341,8 +341,11 @@ impl RPCProcessor {
             let rh_reader = dec_blob_reader
                 .get_root::<veilid_capnp::route_hop::Reader>()
                 .map_err(RPCError::protocol)?;
-            decode_route_hop(&rh_reader, self.crypto.clone())?
+            decode_route_hop(&rh_reader)?
         };
+        
+        // Validate the RouteHop
+        route_hop.validate(self.crypto.clone()).map_err(RPCError::protocol)?;
 
         // Sign the operation if this is not our last hop
         // as the last hop is already signed by the envelope
@@ -422,8 +425,11 @@ impl RPCProcessor {
                         let pr_reader = dec_blob_reader
                             .get_root::<veilid_capnp::private_route::Reader>()
                             .map_err(RPCError::protocol)?;
-                        decode_private_route(&pr_reader, self.crypto.clone())?
+                        decode_private_route(&pr_reader)?
                     };
+                    
+                    // Validate the private route
+                    private_route.validate(self.crypto.clone()).map_err(RPCError::protocol)?;
 
                     // Switching from full safety route to private route first hop
                     network_result_try!(
@@ -440,9 +446,12 @@ impl RPCProcessor {
                         let rh_reader = dec_blob_reader
                             .get_root::<veilid_capnp::route_hop::Reader>()
                             .map_err(RPCError::protocol)?;
-                        decode_route_hop(&rh_reader, self.crypto.clone())?
+                        decode_route_hop(&rh_reader)?
                     };
 
+                    // Validate the route hop
+                    route_hop.validate(self.crypto.clone()).map_err(RPCError::protocol)?;
+
                     // Continue the full safety route with another hop
                     network_result_try!(
                         self.process_route_safety_route_hop(
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index 695d8503..d5b3cfa3 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -3,9 +3,7 @@ mod record;
 mod record_data;
 mod record_store;
 mod record_store_limits;
-mod signed_value_data;
-mod signed_value_descriptor;
-mod value_detail;
+mod types;
 
 use keys::*;
 use record::*;
@@ -13,9 +11,7 @@ use record_data::*;
 use record_store::*;
 use record_store_limits::*;
 
-pub use signed_value_data::*;
-pub use signed_value_descriptor::*;
-pub use value_detail::*;
+pub use types::*;
 
 use super::*;
 use crate::rpc_processor::*;
@@ -174,14 +170,15 @@ impl StorageManager {
         &self,
         vcrypto: CryptoSystemVersion,
         record: Record,
-    ) -> Result<(), VeilidAPIError> {
+    ) -> Result<TypedKey, VeilidAPIError> {
         // add value record to record store
         let mut inner = self.inner.lock();
         let Some(local_record_store) = inner.local_record_store.as_mut() else {
             apibail_generic!("not initialized");
         };
         let key = self.get_key(vcrypto.clone(), &record);
-        local_record_store.new_record(key, record).await
+        local_record_store.new_record(key, record).await?;
+        Ok(key)
     }
 
     pub async fn create_record(
@@ -202,22 +199,27 @@ impl StorageManager {
         let owner = vcrypto.generate_keypair();
 
         // Make a signed value descriptor for this dht value
-        let signed_value_descriptor = SignedValueDescriptor::new(owner.key, )
+        let signed_value_descriptor = SignedValueDescriptor::make_signature(
+            owner.key,
+            schema_data,
+            vcrypto.clone(),
+            owner.secret,
+        )?;
 
         // Add new local value record
         let cur_ts = get_aligned_timestamp();
         let record = Record::new(
             cur_ts,
-            owner.key,
+            signed_value_descriptor,
             Some(owner.secret),
-            schema,
             safety_selection,
-        );
-        self.new_local_record(vcrypto.clone(), record)
+        )?;
+        let dht_key = self
+            .new_local_record(vcrypto, record)
             .await
             .map_err(VeilidAPIError::internal)?;
 
-        Ok(key)
+        Ok(dht_key)
     }
 
     pub async fn open_record(
diff --git a/veilid-core/src/storage_manager/types/mod.rs b/veilid-core/src/storage_manager/types/mod.rs
new file mode 100644
index 00000000..9fde6117
--- /dev/null
+++ b/veilid-core/src/storage_manager/types/mod.rs
@@ -0,0 +1,9 @@
+mod signed_value_data;
+mod signed_value_descriptor;
+mod value_detail;
+
+use super::*;
+
+pub use signed_value_data::*;
+pub use signed_value_descriptor::*;
+pub use value_detail::*;
diff --git a/veilid-core/src/storage_manager/signed_value_data.rs b/veilid-core/src/storage_manager/types/signed_value_data.rs
similarity index 83%
rename from veilid-core/src/storage_manager/signed_value_data.rs
rename to veilid-core/src/storage_manager/types/signed_value_data.rs
index 5ca2acba..29c69dce 100644
--- a/veilid-core/src/storage_manager/signed_value_data.rs
+++ b/veilid-core/src/storage_manager/types/signed_value_data.rs
@@ -24,31 +24,32 @@ pub struct SignedValueData {
     signature: Signature,
 }
 impl SignedValueData {
-    pub fn new(
-        value_data: ValueData,
-        owner: PublicKey,
-        subkey: ValueSubkey,
-        signature: Signature,
-        vcrypto: CryptoSystemVersion,
-    ) -> Result<Self, VeilidAPIError> {
-        let node_info_bytes = Self::make_signature_bytes(&value_data, &owner, subkey)?;
-
-        // validate signature
-        vcrypto.verify(&value_data.writer(), &node_info_bytes, &signature)?;
-        Ok(Self {
+    pub fn new(value_data: ValueData, signature: Signature) -> Self {
+        Self {
             value_data,
             signature,
-        })
+        }
+    }
+
+    pub fn validate(
+        &self,
+        owner: &PublicKey,
+        subkey: ValueSubkey,
+        vcrypto: CryptoSystemVersion,
+    ) -> Result<(), VeilidAPIError> {
+        let node_info_bytes = Self::make_signature_bytes(&self.value_data, owner, subkey)?;
+        // validate signature
+        vcrypto.verify(&self.value_data.writer(), &node_info_bytes, &self.signature)
     }
 
     pub fn make_signature(
         value_data: ValueData,
-        owner: PublicKey,
+        owner: &PublicKey,
         subkey: ValueSubkey,
         vcrypto: CryptoSystemVersion,
         writer_secret: SecretKey,
     ) -> Result<Self, VeilidAPIError> {
-        let node_info_bytes = Self::make_signature_bytes(&value_data, &owner, subkey)?;
+        let node_info_bytes = Self::make_signature_bytes(&value_data, owner, subkey)?;
 
         // create signature
         let signature = vcrypto.sign(&value_data.writer(), &writer_secret, &node_info_bytes)?;
diff --git a/veilid-core/src/storage_manager/signed_value_descriptor.rs b/veilid-core/src/storage_manager/types/signed_value_descriptor.rs
similarity index 75%
rename from veilid-core/src/storage_manager/signed_value_descriptor.rs
rename to veilid-core/src/storage_manager/types/signed_value_descriptor.rs
index 84442bc4..917d3dfc 100644
--- a/veilid-core/src/storage_manager/signed_value_descriptor.rs
+++ b/veilid-core/src/storage_manager/types/signed_value_descriptor.rs
@@ -25,20 +25,17 @@ pub struct SignedValueDescriptor {
     signature: Signature,
 }
 impl SignedValueDescriptor {
-    pub fn new(
-        owner: PublicKey,
-        schema_data: Vec<u8>,
-        signature: Signature,
-        vcrypto: CryptoSystemVersion,
-    ) -> Result<Self, VeilidAPIError> {
-        // validate signature
-        vcrypto.verify(&owner, &schema_data, &signature)?;
-
-        Ok(Self {
+    pub fn new(owner: PublicKey, schema_data: Vec<u8>, signature: Signature) -> Self {
+        Self {
             owner,
             schema_data,
             signature,
-        })
+        }
+    }
+
+    pub fn validate(&self, vcrypto: CryptoSystemVersion) -> Result<(), VeilidAPIError> {
+        // validate signature
+        vcrypto.verify(&self.owner, &self.schema_data, &self.signature)
     }
 
     pub fn owner(&self) -> &PublicKey {
@@ -75,4 +72,12 @@ impl SignedValueDescriptor {
     pub fn total_size(&self) -> usize {
         mem::size_of::<Self>() + self.schema_data.len()
     }
+
+    pub fn cmp_no_sig(&self, other: &Self) -> cmp::Ordering {
+        let o = self.owner.cmp(&other.owner);
+        if o != cmp::Ordering::Equal {
+            return o;
+        }
+        self.schema_data.cmp(&other.schema_data)
+    }
 }
diff --git a/veilid-core/src/storage_manager/types/value_detail.rs b/veilid-core/src/storage_manager/types/value_detail.rs
new file mode 100644
index 00000000..4f633dcc
--- /dev/null
+++ b/veilid-core/src/storage_manager/types/value_detail.rs
@@ -0,0 +1,77 @@
+use super::*;
+use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
+use serde::*;
+
+/////////////////////////////////////////////////////////////////////////////////////////////////////
+///
+
+#[derive(
+    Clone,
+    Debug,
+    PartialOrd,
+    PartialEq,
+    Eq,
+    Ord,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct ValueDetail {
+    signed_value_data: SignedValueData,
+    descriptor: Option<SignedValueDescriptor>,
+}
+
+impl ValueDetail {
+    pub fn new(
+        signed_value_data: SignedValueData,
+        descriptor: Option<SignedValueDescriptor>,
+    ) -> Self {
+        Self {
+            signed_value_data,
+            descriptor,
+        }
+    }
+
+    pub fn validate(
+        &self,
+        last_descriptor: Option<&SignedValueDescriptor>,
+        subkey: ValueSubkey,
+        vcrypto: CryptoSystemVersion,
+    ) -> Result<(), VeilidAPIError> {
+        // Get descriptor to validate with
+        let descriptor = if let Some(descriptor) = &self.descriptor {
+            if let Some(last_descriptor) = last_descriptor {
+                if descriptor.cmp_no_sig(&last_descriptor) != cmp::Ordering::Equal {
+                    return Err(VeilidAPIError::generic(
+                        "value detail descriptor does not match last descriptor",
+                    ));
+                }
+            }
+            descriptor
+        } else {
+            let Some(descriptor) = last_descriptor else {
+                return Err(VeilidAPIError::generic(
+                    "no last descriptor, requires a descriptor",
+                ));
+            };
+            descriptor
+        };
+
+        // Ensure the descriptor itself validates
+        descriptor.validate(vcrypto.clone())?;
+
+        // And the signed value data
+        self.signed_value_data
+            .validate(descriptor.owner(), subkey, vcrypto)
+    }
+
+    pub fn signed_value_data(&self) -> &SignedValueData {
+        &self.signed_value_data
+    }
+    pub fn descriptor(&self) -> Option<&SignedValueDescriptor> {
+        self.descriptor.as_ref()
+    }
+}
diff --git a/veilid-core/src/storage_manager/value_detail.rs b/veilid-core/src/storage_manager/value_detail.rs
deleted file mode 100644
index 85135f10..00000000
--- a/veilid-core/src/storage_manager/value_detail.rs
+++ /dev/null
@@ -1,43 +0,0 @@
-use super::*;
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
-use serde::*;
-
-/////////////////////////////////////////////////////////////////////////////////////////////////////
-///
-
-#[derive(
-    Clone,
-    Debug,
-    PartialOrd,
-    PartialEq,
-    Eq,
-    Ord,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct ValueDetail {
-    signed_value_data: SignedValueData,
-    descriptor: Option<SignedValueDescriptor>,
-}
-
-impl ValueDetail {
-    pub fn new(
-        signed_value_data: SignedValueData,
-        descriptor: Option<SignedValueDescriptor>,
-    ) -> Self {
-        Self {
-            signed_value_data,
-            descriptor,
-        }
-    }
-    pub fn signed_value_data(&self) -> &SignedValueData {
-        &self.signed_value_data
-    }
-    pub fn descriptor(&self) -> Option<&SignedValueDescriptor> {
-        self.descriptor.as_ref()
-    }
-}

From 74168e96bebcf7ec0616bae2ba8938a1fa8de320 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Fri, 21 Apr 2023 18:49:59 -0400
Subject: [PATCH 11/74] refactor checkpoint

---
 Cargo.lock                                    | 1704 +++++++++--------
 veilid-core/Cargo.toml                        |    6 +-
 .../src/intf/native/protected_store.rs        |    4 +-
 veilid-core/src/intf/table_db.rs              |    7 +-
 veilid-core/src/intf/wasm/protected_store.rs  |    7 +-
 veilid-core/src/lib.rs                        |    8 +-
 .../src/network_manager/types/signal_info.rs  |   29 +
 veilid-core/src/routing_table/mod.rs          |    2 +-
 veilid-core/src/routing_table/privacy.rs      |    8 +-
 .../src/routing_table/routing_domains.rs      |    2 +-
 .../src/routing_table/routing_table_inner.rs  |    5 +-
 .../src/routing_table/types/peer_info.rs      |   26 +-
 veilid-core/src/rpc_processor/coders/mod.rs   |   16 +
 .../rpc_processor/coders/operations/answer.rs |   34 +-
 .../coders/operations/operation.rs            |   30 +-
 .../coders/operations/operation_app_call.rs   |   54 +-
 .../operations/operation_app_message.rs       |   28 +-
 .../operations/operation_cancel_tunnel.rs     |   24 +-
 .../operations/operation_complete_tunnel.rs   |   46 +-
 .../coders/operations/operation_find_block.rs |   91 +-
 .../coders/operations/operation_find_node.rs  |   46 +-
 .../coders/operations/operation_get_value.rs  |   94 +-
 .../operations/operation_return_receipt.rs    |   32 +-
 .../coders/operations/operation_signal.rs     |   14 +-
 .../coders/operations/operation_status.rs     |    4 +-
 .../operations/operation_supply_block.rs      |    2 +-
 .../coders/operations/question.rs             |   33 +-
 .../coders/operations/respond_to.rs           |    6 +-
 .../coders/operations/statement.rs            |   24 +-
 veilid-core/src/rpc_processor/mod.rs          |   89 +-
 .../src/rpc_processor/operation_waiter.rs     |   67 +-
 veilid-core/src/rpc_processor/rpc_app_call.rs |   45 +-
 .../src/rpc_processor/rpc_app_message.rs      |   14 +-
 .../src/rpc_processor/rpc_find_node.rs        |   31 +-
 .../src/rpc_processor/rpc_get_value.rs        |   56 +
 .../src/rpc_processor/rpc_return_receipt.rs   |    5 +-
 veilid-core/src/rpc_processor/rpc_route.rs    |    5 +-
 veilid-core/src/rpc_processor/rpc_signal.rs   |    5 +-
 veilid-core/src/rpc_processor/rpc_status.rs   |    3 +-
 veilid-core/src/veilid_api/mod.rs             |    3 -
 .../src/veilid_api/serialize_helpers.rs       |    7 +-
 .../src/veilid_api/types/app_message_call.rs  |   39 +-
 42 files changed, 1688 insertions(+), 1067 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 68fdc645..c98fe08b 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -23,7 +23,7 @@ version = "0.4.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "0b613b8e1e3cf911a086f53f03bf286f52fd7a7258e4fa606f0ef220d39d8877"
 dependencies = [
- "generic-array 0.14.6",
+ "generic-array 0.14.7",
 ]
 
 [[package]]
@@ -44,7 +44,7 @@ version = "0.7.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "fcb51a0695d8f838b1ee009b3fbf66bda078cd64590202a864a8f3e8c4315c47"
 dependencies = [
- "getrandom 0.2.8",
+ "getrandom 0.2.9",
  "once_cell",
  "version_check 0.9.4",
 ]
@@ -56,16 +56,16 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "2c99f64d1e06488f620f932677e24bc6e2897582980441ae90a671415bd7ec2f"
 dependencies = [
  "cfg-if 1.0.0",
- "getrandom 0.2.8",
+ "getrandom 0.2.9",
  "once_cell",
  "version_check 0.9.4",
 ]
 
 [[package]]
 name = "aho-corasick"
-version = "0.7.20"
+version = "1.0.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "cc936419f96fa211c1b9166887b38e5e40b19958e5b895be7c1f93adec7071ac"
+checksum = "67fc08ce920c31afb70f013dcce1bfc3a3195de6a228474e45e1f145b36f8d04"
 dependencies = [
  "memchr",
 ]
@@ -97,7 +97,7 @@ checksum = "1a52f81f9add01deacdc1fcb05ba09523a8faefdec6c3f69cb752b9fa9c22e5a"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -106,12 +106,12 @@ version = "0.2.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "53eff4527d2f64c8374a3bbe1d280ce660203e8c83e4a893231037a488639a7b"
 dependencies = [
- "bytes 1.3.0",
+ "bytes 1.4.0",
  "env_logger 0.8.4",
  "lazy_static",
  "libc",
  "log",
- "redox_syscall",
+ "redox_syscall 0.2.16",
  "thiserror",
  "time 0.2.27",
  "winapi 0.3.9",
@@ -171,9 +171,9 @@ dependencies = [
 
 [[package]]
 name = "anyhow"
-version = "1.0.68"
+version = "1.0.70"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "2cb2f989d18dd141ab8ae82f64d1a8cdd37e0840f73a406896cf5e99502fab61"
+checksum = "7de8ce5e0f9f8d88245311066a578d72b7af3e7088f32783804676302df237e4"
 
 [[package]]
 name = "arraydeque"
@@ -183,9 +183,9 @@ checksum = "f0ffd3d69bd89910509a5d31d1f1353f38ccffdd116dd0099bbd6627f7bd8ad8"
 
 [[package]]
 name = "arrayref"
-version = "0.3.6"
+version = "0.3.7"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a4c527152e37cf757a3f78aae5a06fbeefdb07ccc535c980a3208ee3060dd544"
+checksum = "6b4930d2cb77ce62f89ee5d5289b4ac049559b1c45539271f5ed4fdc7db34545"
 
 [[package]]
 name = "arrayvec"
@@ -201,7 +201,7 @@ checksum = "45403b49e3954a4b8428a0ac21a4b7afadccf92bfd96273f1a58cd4812496ae0"
 dependencies = [
  "generic-array 0.12.4",
  "generic-array 0.13.3",
- "generic-array 0.14.6",
+ "generic-array 0.14.7",
  "stable_deref_trait",
 ]
 
@@ -212,7 +212,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "a3203e79f4dd9bdda415ed03cf14dae5a2bf775c683a00f94e9cd1faf0f596e5"
 dependencies = [
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -228,9 +228,9 @@ dependencies = [
 
 [[package]]
 name = "async-executor"
-version = "1.5.0"
+version = "1.5.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "17adb73da160dfb475c183343c8cccd80721ea5a605d3eb57125f0a7b7a92d0b"
+checksum = "6fa3dc5f2a8564f07759c008b9109dc0d39de92a88d5588b8a5036d286383afb"
 dependencies = [
  "async-lock",
  "async-task",
@@ -257,39 +257,38 @@ dependencies = [
 
 [[package]]
 name = "async-io"
-version = "1.12.0"
+version = "1.13.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "8c374dda1ed3e7d8f0d9ba58715f924862c63eae6849c92d3a18e7fbde9e2794"
+checksum = "0fc5b45d93ef0529756f812ca52e44c221b35341892d3dcc34132ac02f3dd2af"
 dependencies = [
  "async-lock",
  "autocfg",
+ "cfg-if 1.0.0",
  "concurrent-queue",
  "futures-lite",
- "libc",
  "log",
  "parking",
  "polling",
+ "rustix",
  "slab",
- "socket2",
+ "socket2 0.4.9",
  "waker-fn",
- "windows-sys 0.42.0",
 ]
 
 [[package]]
 name = "async-lock"
-version = "2.6.0"
+version = "2.7.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c8101efe8695a6c17e02911402145357e718ac92d3ff88ae8419e84b1707b685"
+checksum = "fa24f727524730b077666307f2734b4a1a1c57acb79193127dcc8914d5242dd7"
 dependencies = [
  "event-listener",
- "futures-lite",
 ]
 
 [[package]]
 name = "async-process"
-version = "1.6.0"
+version = "1.7.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "6381ead98388605d0d9ff86371043b5aa922a3905824244de40dc263a14fcba4"
+checksum = "7a9d28b1d97e08915212e2e45310d47854eafa69600756fc735fb788f75199c9"
 dependencies = [
  "async-io",
  "async-lock",
@@ -298,9 +297,9 @@ dependencies = [
  "cfg-if 1.0.0",
  "event-listener",
  "futures-lite",
- "libc",
+ "rustix",
  "signal-hook",
- "windows-sys 0.42.0",
+ "windows-sys 0.48.0",
 ]
 
 [[package]]
@@ -342,36 +341,37 @@ dependencies = [
  "futures-io",
  "futures-util",
  "pin-utils",
- "socket2",
+ "socket2 0.4.9",
  "trust-dns-resolver",
 ]
 
 [[package]]
 name = "async-stream"
-version = "0.3.3"
+version = "0.3.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "dad5c83079eae9969be7fadefe640a1c566901f05ff91ab221de4b6f68d9507e"
+checksum = "cd56dd203fef61ac097dd65721a419ddccb106b2d2b70ba60a6b529f03961a51"
 dependencies = [
  "async-stream-impl",
  "futures-core",
+ "pin-project-lite 0.2.9",
 ]
 
 [[package]]
 name = "async-stream-impl"
-version = "0.3.3"
+version = "0.3.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "10f203db73a71dfa2fb6dd22763990fa26f3d2625a6da2da900d23b87d26be27"
+checksum = "16e62a023e7c117e27523144c5d2459f4397fcc3cab0085af8e2224f643a0193"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 2.0.15",
 ]
 
 [[package]]
 name = "async-task"
-version = "4.3.0"
+version = "4.4.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7a40729d2133846d9ed0ea60a8b9541bccddab49cd30f0715a1da672fe9a2524"
+checksum = "ecc7ab41815b3c653ccd2978ec3255c81349336702dfdf62ee6f7069b12a3aae"
 
 [[package]]
 name = "async-tls"
@@ -381,20 +381,34 @@ checksum = "2f23d769dbf1838d5df5156e7b1ad404f4c463d1ac2c6aeb6cd943630f8a8400"
 dependencies = [
  "futures-core",
  "futures-io",
- "rustls",
+ "rustls 0.19.1",
  "webpki 0.21.4",
  "webpki-roots 0.21.1",
 ]
 
 [[package]]
-name = "async-trait"
-version = "0.1.63"
+name = "async-tls"
+version = "0.12.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "eff18d764974428cf3a9328e23fc5c986f5fbed46e6cd4cdf42544df5d297ec1"
+checksum = "cfeefd0ca297cbbb3bd34fd6b228401c2a5177038257afd751bc29f0a2da4795"
+dependencies = [
+ "futures-core",
+ "futures-io",
+ "rustls 0.20.8",
+ "rustls-pemfile 1.0.2",
+ "webpki 0.22.0",
+ "webpki-roots 0.22.6",
+]
+
+[[package]]
+name = "async-trait"
+version = "0.1.68"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "b9ccdd8f2a161be9bd5c023df56f1b2a0bd1d83872ae53b71a84a12c9bf6e842"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 2.0.15",
 ]
 
 [[package]]
@@ -412,16 +426,16 @@ dependencies = [
 
 [[package]]
 name = "async-tungstenite"
-version = "0.19.0"
+version = "0.21.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "8e6acf7e4a267eecbb127ed696bb2d50572c22ba7f586a646321e1798d8336a1"
+checksum = "b6d2c69d237cf761215175f390021344f5530101cca8164d69878b8a1779e80c"
 dependencies = [
- "async-tls",
+ "async-tls 0.12.0",
  "futures-io",
  "futures-util",
  "log",
  "pin-project-lite 0.2.9",
- "tungstenite 0.18.0",
+ "tungstenite 0.19.0",
 ]
 
 [[package]]
@@ -438,7 +452,7 @@ dependencies = [
  "futures-util",
  "pin-project 1.0.12",
  "rustc_version 0.4.0",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "wasm-bindgen-futures",
 ]
 
@@ -464,9 +478,9 @@ dependencies = [
 
 [[package]]
 name = "atomic-waker"
-version = "1.1.0"
+version = "1.1.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "debc29dde2e69f9e47506b525f639ed42300fc014a3e007832592448fa8e4599"
+checksum = "1181e1e0d1fce796a03db1ae795d67167da795f9cf4a39c37589e85ef57f26d3"
 
 [[package]]
 name = "attohttpc"
@@ -499,14 +513,14 @@ checksum = "d468802bab17cbc0cc575e9b053f41e72aa36bfa6b7f55e3529ffa43161b97fa"
 
 [[package]]
 name = "axum"
-version = "0.6.4"
+version = "0.6.16"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e5694b64066a2459918d8074c2ce0d5a88f409431994c2356617c8ae0c4721fc"
+checksum = "113713495a32dd0ab52baf5c10044725aa3aec00b31beda84218e469029b72a3"
 dependencies = [
  "async-trait",
  "axum-core",
- "bitflags",
- "bytes 1.3.0",
+ "bitflags 1.3.2",
+ "bytes 1.4.0",
  "futures-util",
  "http",
  "http-body",
@@ -521,19 +535,18 @@ dependencies = [
  "serde",
  "sync_wrapper",
  "tower",
- "tower-http",
  "tower-layer",
  "tower-service",
 ]
 
 [[package]]
 name = "axum-core"
-version = "0.3.2"
+version = "0.3.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "1cae3e661676ffbacb30f1a824089a8c9150e71017f7e1e38f2aa32009188d34"
+checksum = "759fa577a247914fd3f7f76d62972792636412fbfd634cd452f6a385a74d2d2c"
 dependencies = [
  "async-trait",
- "bytes 1.3.0",
+ "bytes 1.4.0",
  "futures-util",
  "http",
  "http-body",
@@ -577,23 +590,10 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "9e1b586273c5702936fe7b7d6896644d8be71e6314cfe09d3167c95f712589e8"
 
 [[package]]
-name = "bindgen"
-version = "0.57.0"
+name = "base64"
+version = "0.21.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "fd4865004a46a0aafb2a0a5eb19d3c9fc46ee5f063a6cfc605c69ac9ecf5263d"
-dependencies = [
- "bitflags",
- "cexpr 0.4.0",
- "clang-sys",
- "lazy_static",
- "lazycell",
- "peeking_take_while",
- "proc-macro2",
- "quote",
- "regex",
- "rustc-hash",
- "shlex 0.1.1",
-]
+checksum = "a4a4ddaa51a5bc52a6948f74c06d20aaaddb71924eab79b8c97a8c556e942d6a"
 
 [[package]]
 name = "bindgen"
@@ -601,8 +601,8 @@ version = "0.59.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "2bd2a9a458e8f4304c52c43ebb0cfbd520289f8379a52e329a38afda99bf8eb8"
 dependencies = [
- "bitflags",
- "cexpr 0.6.0",
+ "bitflags 1.3.2",
+ "cexpr",
  "clang-sys",
  "clap 2.34.0",
  "env_logger 0.9.3",
@@ -614,7 +614,7 @@ dependencies = [
  "quote",
  "regex",
  "rustc-hash",
- "shlex 1.1.0",
+ "shlex",
  "which",
 ]
 
@@ -624,6 +624,12 @@ version = "1.3.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "bef38d45163c2f1dde094a7dfd33ccf595c92905c8f8f4fdc18d06fb1037718a"
 
+[[package]]
+name = "bitflags"
+version = "2.1.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "c70beb79cbb5ce9c4f8e20849978f34225931f665bb49efa6982875a4d5facb3"
+
 [[package]]
 name = "bitvec"
 version = "1.0.1"
@@ -658,7 +664,7 @@ checksum = "7b04ce3d2372d05d1ef4ea3fdf427da6ae3c17ca06d688a107b5344836276bc3"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -667,16 +673,16 @@ version = "0.9.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "4152116fd6e9dadb291ae18fc1ec3575ed6d84c29642d97890f4b4a3417297e4"
 dependencies = [
- "generic-array 0.14.6",
+ "generic-array 0.14.7",
 ]
 
 [[package]]
 name = "block-buffer"
-version = "0.10.3"
+version = "0.10.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "69cce20737498f97b993470a6e536b8523f0af7892a4f928cceb1ac5e52ebe7e"
+checksum = "3078c7629b62d3f0439517fa394996acacc5cbc91c5a20d8c658e77abd503a71"
 dependencies = [
- "generic-array 0.14.6",
+ "generic-array 0.14.7",
 ]
 
 [[package]]
@@ -697,9 +703,9 @@ checksum = "8d696c370c750c948ada61c69a0ee2cbbb9c50b1019ddb86d9317157a99c2cae"
 
 [[package]]
 name = "blocking"
-version = "1.3.0"
+version = "1.3.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "3c67b173a56acffd6d2326fb7ab938ba0b00a71480e14902b2591c87bc5741e8"
+checksum = "77231a1c8f801696fc0123ec6150ce92cffb8e164a02afb9c8ddee0e9b65ad65"
 dependencies = [
  "async-channel",
  "async-lock",
@@ -707,23 +713,18 @@ dependencies = [
  "atomic-waker",
  "fastrand",
  "futures-lite",
+ "log",
 ]
 
 [[package]]
 name = "boringssl-src"
-version = "0.3.0+688fc5c"
+version = "0.5.2+6195bf8"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "f901accdf830d2ea2f4e27f923a5e1125cd8b1a39ab578b9db1a42d578a6922b"
+checksum = "7ab565ccc5e276ea82a2013dd08bf2c999866b06daf1d4f30fee419c4aaec6d5"
 dependencies = [
  "cmake",
 ]
 
-[[package]]
-name = "boxfnonce"
-version = "0.1.1"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "5988cb1d626264ac94100be357308f29ff7cbdd3b36bda27f450a4ee3f713426"
-
 [[package]]
 name = "bugsalot"
 version = "0.2.2"
@@ -744,23 +745,24 @@ checksum = "c3ac9f8b63eca6fd385229b3675f6cc0dc5c8a5c8a54a59d4f52ffd670d87b0c"
 
 [[package]]
 name = "bytecheck"
-version = "0.6.9"
+version = "0.6.10"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d11cac2c12b5adc6570dad2ee1b87eff4955dac476fe12d81e5fdd352e52406f"
+checksum = "13fe11640a23eb24562225322cd3e452b93a3d4091d62fab69c70542fcd17d1f"
 dependencies = [
  "bytecheck_derive",
  "ptr_meta",
+ "simdutf8",
 ]
 
 [[package]]
 name = "bytecheck_derive"
-version = "0.6.9"
+version = "0.6.10"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "13e576ebe98e605500b3c8041bb888e966653577172df6dd97398714eb30b9bf"
+checksum = "e31225543cb46f81a7e224762764f4a6a0f097b1db0b175f69e8065efaa42de5"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -777,15 +779,15 @@ checksum = "0e4cec68f03f32e44924783795810fa50a7035d8c8ebe78580ad7e6c703fba38"
 
 [[package]]
 name = "bytes"
-version = "1.3.0"
+version = "1.4.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "dfb24e866b15a1af2a1b663f10c6b6b8f397a84aadb828f12e5b289ec23a3a3c"
+checksum = "89b2fd2a0dcf38d7971e2194b6b6eebab45ae01067456a7fd93d5547a61b70be"
 
 [[package]]
 name = "capnp"
-version = "0.16.0"
+version = "0.16.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "35400c6acb55f1a91e6843beca189aba6bccd3c11fae5a7c0288fe5a1c3da822"
+checksum = "18eca1b9aca7e3623dda158213b1b79c1e5c4293fbbf0ead6b9ed28a1763bbff"
 
 [[package]]
 name = "capnp-futures"
@@ -799,9 +801,9 @@ dependencies = [
 
 [[package]]
 name = "capnp-rpc"
-version = "0.16.1"
+version = "0.16.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "62097700b1da1dd567d77e91ddd7da0fd22c790599ce56c4eea346d60dff0acd"
+checksum = "619ac0423bdd1dc0b9bb4348cc80daaf81e8e41d64210822e603d44c668534e6"
 dependencies = [
  "capnp",
  "capnp-futures",
@@ -810,9 +812,9 @@ dependencies = [
 
 [[package]]
 name = "capnpc"
-version = "0.16.1"
+version = "0.16.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "74147d35b0920efb5d676f49c7b4c6f643eb231a3597a1ca82af3b94cc29841c"
+checksum = "1bee1608054cd103343a6ba6d02488483b8a5060cdc926d16d81c1d2e2e4ecc4"
 dependencies = [
  "capnp",
 ]
@@ -835,15 +837,6 @@ version = "1.1.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "6d43a04d8753f35258c91f8ec639f792891f748a1edbd759cf1dcea3382ad83c"
 
-[[package]]
-name = "cexpr"
-version = "0.4.0"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "f4aedb84272dbe89af497cf81375129abda4fc0a9e7c5d317498c15cc30c0d27"
-dependencies = [
- "nom 5.1.2",
-]
-
 [[package]]
 name = "cexpr"
 version = "0.6.0"
@@ -879,12 +872,12 @@ dependencies = [
 
 [[package]]
 name = "chacha20"
-version = "0.9.0"
+version = "0.9.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c7fc89c7c5b9e7a02dfe45cd2367bae382f9ed31c61ca8debe5f827c420a2f08"
+checksum = "c3613f74bd2eac03dad61bd53dbe620703d4371614fe0bc3b9f04dd36fe4e818"
 dependencies = [
  "cfg-if 1.0.0",
- "cipher 0.4.3",
+ "cipher 0.4.4",
  "cpufeatures",
 ]
 
@@ -903,9 +896,9 @@ dependencies = [
 
 [[package]]
 name = "chrono"
-version = "0.4.23"
+version = "0.4.24"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "16b0a3d9ed01224b22057780a37bb8c5dbfe1be8ba48678e7bf57ec4b385411f"
+checksum = "4e3c5919066adf22df73762e50cffcde3a758f2a848b113b586d1f86728b673b"
 dependencies = [
  "iana-time-zone",
  "js-sys",
@@ -949,14 +942,14 @@ version = "0.3.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "7ee52072ec15386f770805afd189a01c8841be8696bed250fa2f13c4c0d6dfb7"
 dependencies = [
- "generic-array 0.14.6",
+ "generic-array 0.14.7",
 ]
 
 [[package]]
 name = "cipher"
-version = "0.4.3"
+version = "0.4.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d1873270f8f7942c191139cb8a40fd228da6c3fd2fc376d7e92d47aa14aeb59e"
+checksum = "773f3b9af64447d2ce9850330c473515014aa235e6a783b02db81ff39e4a3dad"
 dependencies = [
  "crypto-common",
  "inout",
@@ -964,9 +957,9 @@ dependencies = [
 
 [[package]]
 name = "clang-sys"
-version = "1.4.0"
+version = "1.6.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "fa2e27ae6ab525c3d369ded447057bca5438d86dc3a68f6faafb8269ba82ebf3"
+checksum = "c688fc74432808e3eb684cae8830a86be1d66a2bd58e1f248ed0960a590baf6f"
 dependencies = [
  "glob",
  "libc",
@@ -981,7 +974,7 @@ checksum = "a0610544180c38b88101fecf2dd634b174a62eef6946f84dfc6a7127512b381c"
 dependencies = [
  "ansi_term",
  "atty",
- "bitflags",
+ "bitflags 1.3.2",
  "strsim 0.8.0",
  "textwrap 0.11.0",
  "unicode-width",
@@ -995,7 +988,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "71655c45cb9845d3270c9d6df84ebe72b4dad3c2ba3f7023ad47c144e4e473a5"
 dependencies = [
  "atty",
- "bitflags",
+ "bitflags 1.3.2",
  "clap_lex",
  "indexmap",
  "strsim 0.10.0",
@@ -1014,9 +1007,9 @@ dependencies = [
 
 [[package]]
 name = "cmake"
-version = "0.1.49"
+version = "0.1.50"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "db34956e100b30725f2eb215f90d4871051239535632f84fea3bc92722c66b7c"
+checksum = "a31c789563b815f77f4250caee12365734369f942439b7defd71e18a48197130"
 dependencies = [
  "cc",
 ]
@@ -1050,15 +1043,15 @@ version = "4.6.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "35ed6e9d84f0b51a7f52daf1c7d71dd136fd7a3f41a8462b8cdb8c78d920fad4"
 dependencies = [
- "bytes 1.3.0",
+ "bytes 1.4.0",
  "memchr",
 ]
 
 [[package]]
 name = "concurrent-queue"
-version = "2.1.0"
+version = "2.2.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c278839b831783b70278b14df4d45e1beb1aad306c07bb796637de9a0e323e8e"
+checksum = "62ec6771ecfa0762d24683ee5a32ad78487a3d3afdc0fb8cae19d2c5deb50b7c"
 dependencies = [
  "crossbeam-utils",
 ]
@@ -1110,7 +1103,7 @@ dependencies = [
  "serde",
  "serde_json",
  "thread_local",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "tokio-stream",
  "tonic",
  "tracing",
@@ -1130,9 +1123,9 @@ dependencies = [
 
 [[package]]
 name = "console_log"
-version = "0.2.0"
+version = "0.2.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "501a375961cef1a0d44767200e66e4a559283097e91d0730b1d75dfb2f8a1494"
+checksum = "e89f72f65e8501878b8a004d5a1afb780987e2ce2b4532c562e367a72c57499f"
 dependencies = [
  "log",
  "web-sys",
@@ -1146,9 +1139,9 @@ checksum = "fbdcdcb6d86f71c5e97409ad45898af11cbc995b4ee8112d59095a28d376c935"
 
 [[package]]
 name = "constant_time_eq"
-version = "0.2.4"
+version = "0.2.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "f3ad85c1f65dc7b37604eb0e89748faf0b9653065f2a8ef69f96a687ec1e9279"
+checksum = "13418e745008f7349ec7e449155f419a61b92b58a99cc3616942b926825ec76b"
 
 [[package]]
 name = "core-foundation"
@@ -1166,7 +1159,7 @@ version = "0.9.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "194a7a9e6de53fa55116934067c844d9d749312f75c6f6d0980e8c252f8c2146"
 dependencies = [
- "core-foundation-sys 0.8.3",
+ "core-foundation-sys 0.8.4",
  "libc",
 ]
 
@@ -1178,15 +1171,15 @@ checksum = "e7ca8a5221364ef15ce201e8ed2f609fc312682a8f4e0e3d4aa5879764e0fa3b"
 
 [[package]]
 name = "core-foundation-sys"
-version = "0.8.3"
+version = "0.8.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "5827cebf4670468b8772dd191856768aedcb1b0278a04f989f7766351917b9dc"
+checksum = "e496a50fda8aacccc86d7529e2c1e0892dbd0f898a6b5645b5561b89c3210efa"
 
 [[package]]
 name = "cpufeatures"
-version = "0.2.5"
+version = "0.2.7"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "28d997bd5e24a5928dd43e46dc529867e207907fe0b239c3477d924f7f2ca320"
+checksum = "3e4c1eaa2012c47becbbad2ab175484c2a84d1185b566fb2cc5b8707343dfe58"
 dependencies = [
  "libc",
 ]
@@ -1238,9 +1231,9 @@ dependencies = [
 
 [[package]]
 name = "crossbeam-channel"
-version = "0.5.6"
+version = "0.5.8"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c2dd04ddaf88237dc3b8d8f9a3c1004b506b54b3313403944054d23c0870c521"
+checksum = "a33c2bf77f2df06183c3aa30d1e96c0695a313d4f9c453cc3762a6db39f99200"
 dependencies = [
  "cfg-if 1.0.0",
  "crossbeam-utils",
@@ -1248,9 +1241,9 @@ dependencies = [
 
 [[package]]
 name = "crossbeam-deque"
-version = "0.8.2"
+version = "0.8.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "715e8152b692bba2d374b53d4875445368fdf21a94751410af607a5ac677d1fc"
+checksum = "ce6fd6f855243022dcecf8702fef0c297d4338e226845fe067f6341ad9fa0cef"
 dependencies = [
  "cfg-if 1.0.0",
  "crossbeam-epoch",
@@ -1259,22 +1252,22 @@ dependencies = [
 
 [[package]]
 name = "crossbeam-epoch"
-version = "0.9.13"
+version = "0.9.14"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "01a9af1f4c2ef74bb8aa1f7e19706bc72d03598c8a570bb5de72243c7a9d9d5a"
+checksum = "46bd5f3f85273295a9d14aedfb86f6aadbff6d8f5295c4a9edb08e819dcf5695"
 dependencies = [
  "autocfg",
  "cfg-if 1.0.0",
  "crossbeam-utils",
- "memoffset 0.7.1",
+ "memoffset 0.8.0",
  "scopeguard",
 ]
 
 [[package]]
 name = "crossbeam-utils"
-version = "0.8.14"
+version = "0.8.15"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "4fb766fa798726286dbbb842f174001dab8abc7b627a1dd86e0b7222a95d929f"
+checksum = "3c063cd8cc95f5c377ed0d4b49a4b21f632396ff690e8470c29b3359b346984b"
 dependencies = [
  "cfg-if 1.0.0",
 ]
@@ -1285,10 +1278,10 @@ version = "0.25.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "e64e6c0fbe2c17357405f7c758c1ef960fce08bdfb2c03d88d2a18d7e09c4b67"
 dependencies = [
- "bitflags",
+ "bitflags 1.3.2",
  "crossterm_winapi",
  "libc",
- "mio 0.8.5",
+ "mio 0.8.6",
  "parking_lot 0.12.1",
  "signal-hook",
  "signal-hook-mio",
@@ -1316,7 +1309,7 @@ version = "0.1.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "1bfb12502f3fc46cca1bb51ac28df9d618d813cdc3d2f25b9fe775a34af26bb3"
 dependencies = [
- "generic-array 0.14.6",
+ "generic-array 0.14.7",
  "typenum",
 ]
 
@@ -1326,7 +1319,7 @@ version = "0.11.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "b1d1a86f49236c215f271d40892d5fc950490551400b02ef360692c29815c714"
 dependencies = [
- "generic-array 0.14.6",
+ "generic-array 0.14.7",
  "subtle",
 ]
 
@@ -1337,25 +1330,19 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "6d2301688392eb071b0bf1a37be05c469d3cc4dbbd95df672fe28ab021e6a096"
 dependencies = [
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
 name = "ctrlc"
-version = "3.2.4"
+version = "3.2.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "1631ca6e3c59112501a9d87fd86f21591ff77acd31331e8a73f8d80a65bbdd71"
+checksum = "bbcf33c2a618cbe41ee43ae6e9f2e48368cd9f9db2896f10167d8d762679f639"
 dependencies = [
  "nix 0.26.2",
- "windows-sys 0.42.0",
+ "windows-sys 0.45.0",
 ]
 
-[[package]]
-name = "cty"
-version = "0.2.2"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "b365fabc795046672053e29c954733ec3b05e4be654ab130fe8f1f94d7051f35"
-
 [[package]]
 name = "cursive"
 version = "0.20.0"
@@ -1370,7 +1357,7 @@ dependencies = [
  "libc",
  "log",
  "signal-hook",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "unicode-segmentation",
  "unicode-width",
 ]
@@ -1385,7 +1372,7 @@ dependencies = [
  "flexi_logger",
  "lazy_static",
  "log",
- "time 0.3.17",
+ "time 0.3.20",
  "unicode-width",
 ]
 
@@ -1415,8 +1402,8 @@ dependencies = [
  "log",
  "num",
  "owning_ref",
- "time 0.3.17",
- "tokio 1.24.2",
+ "time 0.3.20",
+ "tokio 1.27.0",
  "toml",
  "unicode-segmentation",
  "unicode-width",
@@ -1460,9 +1447,9 @@ dependencies = [
 
 [[package]]
 name = "cxx"
-version = "1.0.88"
+version = "1.0.94"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "322296e2f2e5af4270b54df9e85a02ff037e271af20ba3e7fe1575515dc840b8"
+checksum = "f61f1b6389c3fe1c316bf8a4dccc90a38208354b330925bce1f74a6c4756eb93"
 dependencies = [
  "cc",
  "cxxbridge-flags",
@@ -1472,9 +1459,9 @@ dependencies = [
 
 [[package]]
 name = "cxx-build"
-version = "1.0.88"
+version = "1.0.94"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "017a1385b05d631e7875b1f151c9f012d37b53491e2a87f65bff5c262b2111d8"
+checksum = "12cee708e8962df2aeb38f594aae5d827c022b6460ac71a7a3e2c3c2aae5a07b"
 dependencies = [
  "cc",
  "codespan-reporting",
@@ -1482,33 +1469,32 @@ dependencies = [
  "proc-macro2",
  "quote",
  "scratch",
- "syn",
+ "syn 2.0.15",
 ]
 
 [[package]]
 name = "cxxbridge-flags"
-version = "1.0.88"
+version = "1.0.94"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c26bbb078acf09bc1ecda02d4223f03bdd28bd4874edcb0379138efc499ce971"
+checksum = "7944172ae7e4068c533afbb984114a56c46e9ccddda550499caa222902c7f7bb"
 
 [[package]]
 name = "cxxbridge-macro"
-version = "1.0.88"
+version = "1.0.94"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "357f40d1f06a24b60ae1fe122542c1fb05d28d32acb2aed064e84bc2ad1e252e"
+checksum = "2345488264226bf682893e25de0769f3360aac9957980ec49361b083ddaa5bc5"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 2.0.15",
 ]
 
 [[package]]
 name = "daemonize"
-version = "0.4.1"
+version = "0.5.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "70c24513e34f53b640819f0ac9f705b673fcf4006d7aab8778bee72ebfc89815"
+checksum = "ab8bfdaacb3c887a54d41bdf48d3af8873b3f5566469f8ba21b92057509f116e"
 dependencies = [
- "boxfnonce",
  "libc",
 ]
 
@@ -1524,12 +1510,12 @@ dependencies = [
 
 [[package]]
 name = "darling"
-version = "0.14.2"
+version = "0.14.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "b0dd3cd20dc6b5a876612a6e5accfe7f3dd883db6d07acfbf14c128f61550dfa"
+checksum = "7b750cb3417fd1b327431a470f388520309479ab0bf5e323505daf0290cd3850"
 dependencies = [
- "darling_core 0.14.2",
- "darling_macro 0.14.2",
+ "darling_core 0.14.4",
+ "darling_macro 0.14.4",
 ]
 
 [[package]]
@@ -1543,20 +1529,20 @@ dependencies = [
  "proc-macro2",
  "quote",
  "strsim 0.10.0",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
 name = "darling_core"
-version = "0.14.2"
+version = "0.14.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a784d2ccaf7c98501746bf0be29b2022ba41fd62a2e622af997a03e9f972859f"
+checksum = "109c1ca6e6b7f82cc233a97004ea8ed7ca123a9af07a8230878fcfda9b158bf0"
 dependencies = [
  "fnv",
  "ident_case",
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -1567,18 +1553,18 @@ checksum = "9c972679f83bdf9c42bd905396b6c3588a843a17f0f16dfcfa3e2c5d57441835"
 dependencies = [
  "darling_core 0.13.4",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
 name = "darling_macro"
-version = "0.14.2"
+version = "0.14.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7618812407e9402654622dd402b0a89dff9ba93badd6540781526117b92aab7e"
+checksum = "a4aab4dbc9f7611d8b55048a3a16d2d010c2c8334e46304b40ac1cc14bf3b48e"
 dependencies = [
- "darling_core 0.14.2",
+ "darling_core 0.14.4",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -1591,7 +1577,7 @@ dependencies = [
  "hashbrown",
  "lock_api",
  "once_cell",
- "parking_lot_core 0.9.6",
+ "parking_lot_core 0.9.7",
 ]
 
 [[package]]
@@ -1608,7 +1594,7 @@ checksum = "fcc3dd5e9e9c0b295d6e1e4d811fb6f157d5ffd784b8d202fc62eac8035a770b"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -1617,7 +1603,7 @@ version = "0.9.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "d3dd60d1080a57a05ab032377049e0591415d2b31afd7028356dbf3cc6dcb066"
 dependencies = [
- "generic-array 0.14.6",
+ "generic-array 0.14.7",
 ]
 
 [[package]]
@@ -1626,7 +1612,7 @@ version = "0.10.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "8168378f4e5023e7218c89c891c0fd8ecdb5e5e4f18cb78f38cf245dd021e76f"
 dependencies = [
- "block-buffer 0.10.3",
+ "block-buffer 0.10.4",
  "crypto-common",
  "subtle",
 ]
@@ -1700,14 +1686,14 @@ dependencies = [
  "heck",
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
 name = "enum-map"
-version = "2.4.2"
+version = "2.5.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "50c25992259941eb7e57b936157961b217a4fc8597829ddef0596d6c3cd86e1a"
+checksum = "988f0d17a0fa38291e5f41f71ea8d46a5d5497b9054d5a759fae2cbb819f2356"
 dependencies = [
  "enum-map-derive",
 ]
@@ -1720,7 +1706,7 @@ checksum = "2a4da76b3b6116d758c7ba93f7ec6a35d2e2cf24feda76c6e38a375f4d5c59f2"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -1741,7 +1727,7 @@ checksum = "946ee94e3dbf58fdd324f9ce245c7b238d46a66f00e86a020b71996349e46cce"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -1760,10 +1746,10 @@ version = "0.6.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "03e7b551eba279bf0fa88b83a46330168c1560a52a94f5126f892f0b364ab3e0"
 dependencies = [
- "darling 0.14.2",
+ "darling 0.14.4",
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -1800,17 +1786,24 @@ dependencies = [
 ]
 
 [[package]]
-name = "err-derive"
+name = "errno"
 version = "0.3.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c34a887c8df3ed90498c1c437ce21f211c8e27672921a8ffa293cb8d6d4caa9e"
+checksum = "4bcfec3a70f97c962c307b2d2c56e358cf1d00b558d74262b5f929ee8cc7e73a"
 dependencies = [
- "proc-macro-error",
- "proc-macro2",
- "quote",
- "rustversion",
- "syn",
- "synstructure",
+ "errno-dragonfly",
+ "libc",
+ "windows-sys 0.48.0",
+]
+
+[[package]]
+name = "errno-dragonfly"
+version = "0.1.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "aa68f1b12764fab894d2755d2518754e71b4fd80ecfb822714a1206c2aab39bf"
+dependencies = [
+ "cc",
+ "libc",
 ]
 
 [[package]]
@@ -1874,7 +1867,7 @@ checksum = "aa4da3c766cd7a0db8242e326e9e4e081edd567072893ed320008189715366a4"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
  "synstructure",
 ]
 
@@ -1892,9 +1885,9 @@ checksum = "7360491ce676a36bf9bb3c56c1aa791658183a54d2744120f27285738d90465a"
 
 [[package]]
 name = "fastrand"
-version = "1.8.0"
+version = "1.9.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a7a407cfaa3385c4ae6b23e84623d48c2798d06e3e6a1878f7f59f17b3f86499"
+checksum = "e51093e27b0797c359783294ca4f0a911c270184cb10f85783b118614a1501be"
 dependencies = [
  "instant",
 ]
@@ -1921,12 +1914,6 @@ dependencies = [
  "static_assertions",
 ]
 
-[[package]]
-name = "fixedbitset"
-version = "0.4.2"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "0ce7134b9999ecaf8bcd65542e436736ef32ddca1b3e06094cb6ec5755203b80"
-
 [[package]]
 name = "flate2"
 version = "1.0.25"
@@ -1952,7 +1939,7 @@ dependencies = [
  "regex",
  "rustversion",
  "thiserror",
- "time 0.3.17",
+ "time 0.3.20",
 ]
 
 [[package]]
@@ -1965,7 +1952,7 @@ dependencies = [
  "futures-sink",
  "nanorand",
  "pin-project 1.0.12",
- "spin 0.9.4",
+ "spin 0.9.8",
 ]
 
 [[package]]
@@ -1999,7 +1986,7 @@ version = "0.3.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "2e9763c69ebaae630ba35f74888db465e49e259ba1bc0eda7d06f4a067615d82"
 dependencies = [
- "bitflags",
+ "bitflags 1.3.2",
  "fuchsia-zircon-sys",
 ]
 
@@ -2017,9 +2004,9 @@ checksum = "e6d5a32815ae3f33302d95fdcb2ce17862f8c65363dcfd29360480ba1001fc9c"
 
 [[package]]
 name = "futures"
-version = "0.3.25"
+version = "0.3.28"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "38390104763dc37a5145a53c29c63c1290b5d316d6086ec32c293f6736051bb0"
+checksum = "23342abe12aba583913b2e62f22225ff9c950774065e4bfb61a19cd9770fec40"
 dependencies = [
  "futures-channel",
  "futures-core",
@@ -2032,9 +2019,9 @@ dependencies = [
 
 [[package]]
 name = "futures-channel"
-version = "0.3.25"
+version = "0.3.28"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "52ba265a92256105f45b719605a571ffe2d1f0fea3807304b522c1d778f79eed"
+checksum = "955518d47e09b25bbebc7a18df10b81f0c766eaf4c4f1cccef2fca5f2a4fb5f2"
 dependencies = [
  "futures-core",
  "futures-sink",
@@ -2042,15 +2029,15 @@ dependencies = [
 
 [[package]]
 name = "futures-core"
-version = "0.3.25"
+version = "0.3.28"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "04909a7a7e4633ae6c4a9ab280aeb86da1236243a77b694a49eacd659a4bd3ac"
+checksum = "4bca583b7e26f571124fe5b7561d49cb2868d79116cfa0eefce955557c6fee8c"
 
 [[package]]
 name = "futures-executor"
-version = "0.3.25"
+version = "0.3.28"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7acc85df6714c176ab5edf386123fafe217be88c0840ec11f199441134a074e2"
+checksum = "ccecee823288125bd88b4d7f565c9e58e41858e47ab72e8ea2d64e93624386e0"
 dependencies = [
  "futures-core",
  "futures-task",
@@ -2059,15 +2046,15 @@ dependencies = [
 
 [[package]]
 name = "futures-io"
-version = "0.3.25"
+version = "0.3.28"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "00f5fb52a06bdcadeb54e8d3671f8888a39697dcb0b81b23b55174030427f4eb"
+checksum = "4fff74096e71ed47f8e023204cfd0aa1289cd54ae5430a9523be060cdb849964"
 
 [[package]]
 name = "futures-lite"
-version = "1.12.0"
+version = "1.13.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7694489acd39452c77daa48516b894c153f192c3578d5a839b62c58099fcbf48"
+checksum = "49a9d51ce47660b1e808d3c990b4709f2f415d928835a17dfd16991515c46bce"
 dependencies = [
  "fastrand",
  "futures-core",
@@ -2080,26 +2067,26 @@ dependencies = [
 
 [[package]]
 name = "futures-macro"
-version = "0.3.25"
+version = "0.3.28"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "bdfb8ce053d86b91919aad980c220b1fb8401a9394410e1c289ed7e66b61835d"
+checksum = "89ca545a94061b6365f2c7355b4b32bd20df3ff95f02da9329b34ccc3bd6ee72"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 2.0.15",
 ]
 
 [[package]]
 name = "futures-sink"
-version = "0.3.25"
+version = "0.3.28"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "39c15cf1a4aa79df40f1bb462fb39676d0ad9e366c2a33b590d7c66f4f81fcf9"
+checksum = "f43be4fe21a13b9781a69afa4985b0f6ee0e1afab2c6f454a8cf30e2b2237b6e"
 
 [[package]]
 name = "futures-task"
-version = "0.3.25"
+version = "0.3.28"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "2ffb393ac5d9a6eaa9d3fdf37ae2776656b706e200c8e16b1bdb227f5198e6ea"
+checksum = "76d3d132be6c0e6aa1534069c705a74a5997a356c0dc2f86a47765e5617c5b65"
 
 [[package]]
 name = "futures-timer"
@@ -2113,9 +2100,9 @@ dependencies = [
 
 [[package]]
 name = "futures-util"
-version = "0.3.25"
+version = "0.3.28"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "197676987abd2f9cadff84926f410af1c183608d36641465df73ae8211dc65d6"
+checksum = "26b01e40b772d54cf6c6d721c1d1abd0647a0106a12ecaa1c186273392a69533"
 dependencies = [
  "futures-channel",
  "futures-core",
@@ -2149,9 +2136,9 @@ dependencies = [
 
 [[package]]
 name = "generic-array"
-version = "0.14.6"
+version = "0.14.7"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "bff49e947297f3312447abdca79f45f4738097cc82b06e72054d2223f601f1b9"
+checksum = "85649ca51fd72272d7821adaf274ad91c288277713d9c18820d8499a7ff69e9a"
 dependencies = [
  "typenum",
  "version_check 0.9.4",
@@ -2170,9 +2157,9 @@ dependencies = [
 
 [[package]]
 name = "getrandom"
-version = "0.2.8"
+version = "0.2.9"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c05aeb6a22b8f62540c194aac980f2115af067bfe15a0734d7277a768d396b31"
+checksum = "c85e1d9ab2eadba7e5040d4e09cbd6d072b76a557ad64e797c2cb9d4da21d7e4"
 dependencies = [
  "cfg-if 1.0.0",
  "js-sys",
@@ -2183,9 +2170,9 @@ dependencies = [
 
 [[package]]
 name = "gimli"
-version = "0.27.1"
+version = "0.27.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "221996f774192f0f718773def8201c4ae31f02616a54ccfc2d358bb0e5cefdec"
+checksum = "ad0a93d233ebf96623465aad4046a8d3aa4da22d4f4beba5388838c8a434bbb4"
 
 [[package]]
 name = "glob"
@@ -2220,25 +2207,26 @@ dependencies = [
 
 [[package]]
 name = "grpcio"
-version = "0.9.1"
+version = "0.12.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "24d99e00eed7e0a04ee2705112e7cfdbe1a3cc771147f22f016a8cd2d002187b"
+checksum = "609832ca501baeb662dc81932fda9ed83f5d058f4b899a807ba222ce696f430a"
 dependencies = [
- "futures",
+ "futures-executor",
+ "futures-util",
  "grpcio-sys",
  "libc",
  "log",
- "parking_lot 0.11.2",
+ "parking_lot 0.12.1",
  "protobuf",
 ]
 
 [[package]]
 name = "grpcio-sys"
-version = "0.9.1+1.38.0"
+version = "0.12.1+1.46.5-patched"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "9447d1a926beeef466606cc45717f80897998b548e7dc622873d453e1ecb4be4"
+checksum = "cf625d1803b6f44203f0428ddace847fb4994def5c803fc8a7a2f18fb3daec62"
 dependencies = [
- "bindgen 0.57.0",
+ "bindgen",
  "boringssl-src",
  "cc",
  "cmake",
@@ -2250,11 +2238,11 @@ dependencies = [
 
 [[package]]
 name = "h2"
-version = "0.3.15"
+version = "0.3.18"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "5f9f29bc9dda355256b2916cf526ab02ce0aeaaaf2bad60d65ef3f12f11dd0f4"
+checksum = "17f8a914c2987b688368b5138aa05321db91f4090cf26118185672ad588bce21"
 dependencies = [
- "bytes 1.3.0",
+ "bytes 1.4.0",
  "fnv",
  "futures-core",
  "futures-sink",
@@ -2262,7 +2250,7 @@ dependencies = [
  "http",
  "indexmap",
  "slab",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "tokio-util",
  "tracing",
 ]
@@ -2335,9 +2323,9 @@ dependencies = [
 
 [[package]]
 name = "heck"
-version = "0.4.0"
+version = "0.4.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "2540771e65fc8cb83cd6e8a237f70c319bd5c29f78ed1084ba5d50eeac86f7f9"
+checksum = "95505c38b4572b2d910cecb0281560f54b440a19336cbbcb27bf6ce6adc6f5a8"
 
 [[package]]
 name = "hermit-abi"
@@ -2357,6 +2345,12 @@ dependencies = [
  "libc",
 ]
 
+[[package]]
+name = "hermit-abi"
+version = "0.3.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "fed44880c466736ef9a5c5b5facefb5ed0785676d0c02d612db14e54f0d84286"
+
 [[package]]
 name = "hex"
 version = "0.4.3"
@@ -2396,11 +2390,11 @@ dependencies = [
 
 [[package]]
 name = "http"
-version = "0.2.8"
+version = "0.2.9"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "75f43d41e26995c17e71ee126451dd3941010b0514a81a9d11f3b341debc2399"
+checksum = "bd6effc99afb63425aff9b05836f029929e345a6148a14b7ecd5ab67af944482"
 dependencies = [
- "bytes 1.3.0",
+ "bytes 1.4.0",
  "fnv",
  "itoa",
 ]
@@ -2411,17 +2405,11 @@ version = "0.4.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "d5f38f16d184e36f2408a55281cd658ecbd3ca05cce6d6510a176eca393e26d1"
 dependencies = [
- "bytes 1.3.0",
+ "bytes 1.4.0",
  "http",
  "pin-project-lite 0.2.9",
 ]
 
-[[package]]
-name = "http-range-header"
-version = "0.3.0"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "0bfe8eed0a9285ef776bb792479ea3834e8b94e13d615c2f66d03dd50a435a29"
-
 [[package]]
 name = "httparse"
 version = "1.8.0"
@@ -2442,11 +2430,11 @@ checksum = "9a3a5bfb195931eeb336b2a7b4d761daec841b97f947d34394601737a7bba5e4"
 
 [[package]]
 name = "hyper"
-version = "0.14.23"
+version = "0.14.26"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "034711faac9d2166cb1baf1a2fb0b60b1f277f8492fd72176c17f3515e1abd3c"
+checksum = "ab302d72a6f11a3b910431ff93aae7e773078c769f0a3ef15fb9ec692ed147d4"
 dependencies = [
- "bytes 1.3.0",
+ "bytes 1.4.0",
  "futures-channel",
  "futures-core",
  "futures-util",
@@ -2457,8 +2445,8 @@ dependencies = [
  "httpdate",
  "itoa",
  "pin-project-lite 0.2.9",
- "socket2",
- "tokio 1.24.2",
+ "socket2 0.4.9",
+ "tokio 1.27.0",
  "tower-service",
  "tracing",
  "want",
@@ -2472,22 +2460,22 @@ checksum = "bbb958482e8c7be4bc3cf272a766a2b0bf1a6755e7a6ae777f017a31d11b13b1"
 dependencies = [
  "hyper",
  "pin-project-lite 0.2.9",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "tokio-io-timeout",
 ]
 
 [[package]]
 name = "iana-time-zone"
-version = "0.1.53"
+version = "0.1.56"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "64c122667b287044802d6ce17ee2ddf13207ed924c712de9a66a5814d5b64765"
+checksum = "0722cd7114b7de04316e7ea5456a0bbb20e4adb46fd27a3697adb812cff0f37c"
 dependencies = [
  "android_system_properties",
- "core-foundation-sys 0.8.3",
+ "core-foundation-sys 0.8.4",
  "iana-time-zone-haiku",
  "js-sys",
  "wasm-bindgen",
- "winapi 0.3.9",
+ "windows 0.48.0",
 ]
 
 [[package]]
@@ -2542,7 +2530,7 @@ name = "igd"
 version = "0.12.0"
 dependencies = [
  "attohttpc",
- "bytes 1.3.0",
+ "bytes 1.4.0",
  "futures",
  "http",
  "hyper",
@@ -2551,7 +2539,7 @@ dependencies = [
  "simplelog 0.9.0",
  "tokio 0.2.25",
  "tokio 0.3.7",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "url",
  "xmltree",
 ]
@@ -2591,7 +2579,7 @@ checksum = "11d7a9f6330b71fea57921c9b61c47ee6e84f72d394754eff6163ae67e7395eb"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -2602,9 +2590,9 @@ checksum = "ce23b50ad8242c51a442f3ff322d56b02f08852c77e4c0b4d3fd684abc89c683"
 
 [[package]]
 name = "indexmap"
-version = "1.9.2"
+version = "1.9.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "1885e79c1fc4b10f0e172c475f458b7f7b93061064d98c3293e98c5ba0c8b399"
+checksum = "bd070e393353796e801d209ad339e89596eb4c8d430d18ede6a1cced8fafbd99"
 dependencies = [
  "autocfg",
  "hashbrown",
@@ -2616,7 +2604,7 @@ version = "0.1.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "a0c10553d664a4d0bcff9f4215d0aac67a639cc68ef660840afe309b807bc9f5"
 dependencies = [
- "generic-array 0.14.6",
+ "generic-array 0.14.7",
 ]
 
 [[package]]
@@ -2640,6 +2628,17 @@ dependencies = [
  "web-sys",
 ]
 
+[[package]]
+name = "io-lifetimes"
+version = "1.0.10"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "9c66c74d2ae7e79a5a8f7ac924adbe38ee42a859c6539ad869eb51f0b52dc220"
+dependencies = [
+ "hermit-abi 0.3.1",
+ "libc",
+ "windows-sys 0.48.0",
+]
+
 [[package]]
 name = "iovec"
 version = "0.1.4"
@@ -2655,7 +2654,7 @@ version = "0.3.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "bd302af1b90f2463a98fa5ad469fc212c8e3175a41c3068601bfa2727591c5be"
 dependencies = [
- "socket2",
+ "socket2 0.4.9",
  "widestring 0.5.1",
  "winapi 0.3.9",
  "winreg",
@@ -2663,9 +2662,9 @@ dependencies = [
 
 [[package]]
 name = "ipnet"
-version = "2.7.1"
+version = "2.7.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "30e22bd8629359895450b59ea7a776c850561b96a3b1d31321c1949d9e6c9146"
+checksum = "12b6ee2129af8d4fb011108c73d99a1b83a85977f23b82460c0ae2e25bb4b57f"
 
 [[package]]
 name = "itertools"
@@ -2678,9 +2677,9 @@ dependencies = [
 
 [[package]]
 name = "itoa"
-version = "1.0.5"
+version = "1.0.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "fad582f4b9e86b6caa621cabeb0963332d92eea04729ab12892c2533951e6440"
+checksum = "453ad9f582a441959e5f0d088b02ce04cfe8d51a8eaf077f12ac6d3e94164ca6"
 
 [[package]]
 name = "jni"
@@ -2696,6 +2695,22 @@ dependencies = [
  "walkdir",
 ]
 
+[[package]]
+name = "jni"
+version = "0.21.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "1a87aa2bb7d2af34197c04845522473242e1aa17c12f4935d5856491a7fb8c97"
+dependencies = [
+ "cesu8",
+ "cfg-if 1.0.0",
+ "combine",
+ "jni-sys",
+ "log",
+ "thiserror",
+ "walkdir",
+ "windows-sys 0.45.0",
+]
+
 [[package]]
 name = "jni-sys"
 version = "0.3.0"
@@ -2704,9 +2719,9 @@ checksum = "8eaf4bc02d17cbdd7ff4c7438cafcdf7fb9a4613313ad11b4f8fefe7d3fa0130"
 
 [[package]]
 name = "js-sys"
-version = "0.3.60"
+version = "0.3.61"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "49409df3e3bf0856b916e2ceaca09ee28e6871cf7d9ce97a692cacfdb2a25a47"
+checksum = "445dde2150c55e483f3d8416706b97ec8e8237c307e5b7b4b8dd15e6af2a0730"
 dependencies = [
  "wasm-bindgen",
 ]
@@ -2766,10 +2781,10 @@ dependencies = [
  "byteorder",
  "cfg-if 1.0.0",
  "core-foundation 0.9.3",
- "core-foundation-sys 0.8.3",
+ "core-foundation-sys 0.8.4",
  "directories",
  "fs4",
- "jni",
+ "jni 0.20.0",
  "keychain-services",
  "lazy_static",
  "log",
@@ -2798,7 +2813,7 @@ dependencies = [
  "keyvaluedb",
  "keyvaluedb-shared-tests",
  "parking_lot 0.12.1",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "wasm-bindgen-futures",
  "wasm-bindgen-test",
 ]
@@ -2827,9 +2842,9 @@ dependencies = [
  "parking_lot 0.12.1",
  "rand 0.8.5",
  "rusqlite",
- "sysinfo 0.27.7",
+ "sysinfo",
  "tempfile",
- "tokio 1.24.2",
+ "tokio 1.27.0",
 ]
 
 [[package]]
@@ -2875,9 +2890,9 @@ checksum = "830d08ce1d1d941e6b30645f1a0eb5643013d835ce3779a5fc208261dbe10f55"
 
 [[package]]
 name = "libc"
-version = "0.2.139"
+version = "0.2.142"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "201de327520df007757c1f0adce6e827fe8562fbc28bfd9c15571c66ca1f5f79"
+checksum = "6a987beff54b60ffa6d51982e1aa1146bc42f19bd26be28b0586f252fccf5317"
 
 [[package]]
 name = "libloading"
@@ -2891,9 +2906,9 @@ dependencies = [
 
 [[package]]
 name = "libsqlite3-sys"
-version = "0.25.2"
+version = "0.26.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "29f835d03d717946d28b1d1ed632eb6f0e24a299388ee623d0c23118d3e8a7fa"
+checksum = "afc22eff61b133b115c6e8c74e818c628d6d5e7a502afea6f64dee076dd94326"
 dependencies = [
  "cc",
  "pkg-config",
@@ -2927,6 +2942,12 @@ version = "0.5.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "0717cef1bc8b636c6e1c1bbdefc09e6322da8a9321966e8928ef80d20f7f770f"
 
+[[package]]
+name = "linux-raw-sys"
+version = "0.3.3"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "9b085a4f2cde5781fc4b1717f2e86c62f5cda49de7ba99a7c2eae02b61c9064c"
+
 [[package]]
 name = "lock_api"
 version = "0.4.9"
@@ -3013,6 +3034,15 @@ dependencies = [
  "autocfg",
 ]
 
+[[package]]
+name = "memoffset"
+version = "0.8.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "d61c719bcfbcf5d62b3a09efa6088de8c54bc0bfcd3ea7ae39fcc186108b8de1"
+dependencies = [
+ "autocfg",
+]
+
 [[package]]
 name = "memory_units"
 version = "0.4.0"
@@ -3021,9 +3051,9 @@ checksum = "8452105ba047068f40ff7093dd1d9da90898e63dd61736462e9cdda6a90ad3c3"
 
 [[package]]
 name = "mime"
-version = "0.3.16"
+version = "0.3.17"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "2a60c7ce501c71e03a9c9c0d35b861413ae925bd979cc7a4e30d060069aaac8d"
+checksum = "6877bb514081ee2a7ff5ef9de3281f14a4dd4bceac4c09388074a6b5df8a139a"
 
 [[package]]
 name = "minimal-lexical"
@@ -3074,14 +3104,14 @@ dependencies = [
 
 [[package]]
 name = "mio"
-version = "0.8.5"
+version = "0.8.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e5d732bc30207a6423068df043e3d02e0735b155ad7ce1a6f76fe2baa5b158de"
+checksum = "5b9d9a46eff5b4ff64b45a9e316a6d1e0bc719ef429cbec4dc630684212bfdf9"
 dependencies = [
  "libc",
  "log",
  "wasi 0.11.0+wasi-snapshot-preview1",
- "windows-sys 0.42.0",
+ "windows-sys 0.45.0",
 ]
 
 [[package]]
@@ -3116,19 +3146,13 @@ dependencies = [
  "winapi 0.3.9",
 ]
 
-[[package]]
-name = "multimap"
-version = "0.8.3"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e5ce46fe64a9d73be07dcbe690a38ce1b293be448fd8ce1e6c1b8062c9f72c6a"
-
 [[package]]
 name = "nanorand"
 version = "0.7.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "6a51313c5820b0b02bd422f4b44776fbf47961755c74ce64afc73bfad10226c3"
 dependencies = [
- "getrandom 0.2.8",
+ "getrandom 0.2.9",
 ]
 
 [[package]]
@@ -3138,7 +3162,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "b1bb540dc6ef51cfe1916ec038ce7a620daf3a111e2502d745197cd53d6bca15"
 dependencies = [
  "libc",
- "socket2",
+ "socket2 0.4.9",
 ]
 
 [[package]]
@@ -3147,7 +3171,7 @@ version = "0.7.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "451422b7e4718271c8b5b3aadf5adedba43dc76312454b387e98fae0fc951aa0"
 dependencies = [
- "bitflags",
+ "bitflags 1.3.2",
  "jni-sys",
  "ndk-sys 0.4.1+23.1.7779620",
  "num_enum",
@@ -3185,10 +3209,10 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "0df7ac00c4672f9d5aece54ee3347520b7e20f158656c7db2e6de01902eb7a6c"
 dependencies = [
  "darling 0.13.4",
- "proc-macro-crate 1.3.0",
+ "proc-macro-crate 1.3.1",
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -3235,7 +3259,7 @@ name = "netlink-packet-route"
 version = "0.10.0"
 dependencies = [
  "anyhow",
- "bitflags",
+ "bitflags 1.3.2",
  "byteorder",
  "libc",
  "netlink-packet-core",
@@ -3256,12 +3280,12 @@ dependencies = [
 name = "netlink-proto"
 version = "0.9.1"
 dependencies = [
- "bytes 1.3.0",
+ "bytes 1.4.0",
  "futures",
  "log",
  "netlink-packet-core",
  "netlink-sys",
- "tokio 1.24.2",
+ "tokio 1.27.0",
 ]
 
 [[package]]
@@ -3269,11 +3293,11 @@ name = "netlink-sys"
 version = "0.8.1"
 dependencies = [
  "async-io",
- "bytes 1.3.0",
+ "bytes 1.4.0",
  "futures",
  "libc",
  "log",
- "tokio 1.24.2",
+ "tokio 1.27.0",
 ]
 
 [[package]]
@@ -3282,7 +3306,7 @@ version = "0.22.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "e4916f159ed8e5de0082076562152a76b7a1f64a01fd9d1e0fea002c37624faf"
 dependencies = [
- "bitflags",
+ "bitflags 1.3.2",
  "cc",
  "cfg-if 1.0.0",
  "libc",
@@ -3295,7 +3319,7 @@ version = "0.26.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "bfdda3d196821d6af13126e40375cdf7da646a96114af134d5f417a9a1dc8e1a"
 dependencies = [
- "bitflags",
+ "bitflags 1.3.2",
  "cfg-if 1.0.0",
  "libc",
  "memoffset 0.7.1",
@@ -3313,16 +3337,6 @@ dependencies = [
  "version_check 0.1.5",
 ]
 
-[[package]]
-name = "nom"
-version = "5.1.2"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ffb4262d26ed83a1c0a33a38fe2bb15797329c85770da05e6b828ddb782627af"
-dependencies = [
- "memchr",
- "version_check 0.9.4",
-]
-
 [[package]]
 name = "nom"
 version = "7.1.3"
@@ -3333,15 +3347,6 @@ dependencies = [
  "minimal-lexical",
 ]
 
-[[package]]
-name = "nom8"
-version = "0.2.0"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ae01545c9c7fc4486ab7debaf2aad7003ac19431791868fb2e8066df97fad2f8"
-dependencies = [
- "memchr",
-]
-
 [[package]]
 name = "ntapi"
 version = "0.3.7"
@@ -3353,9 +3358,9 @@ dependencies = [
 
 [[package]]
 name = "ntapi"
-version = "0.4.0"
+version = "0.4.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "bc51db7b362b205941f71232e56c625156eb9a929f8cf74a428fd5bc094a4afc"
+checksum = "e8a3895c6391c39d7fe7ebc444a87eb2991b2a0bc718fdabd071eec617fc68e4"
 dependencies = [
  "winapi 0.3.9",
 ]
@@ -3458,23 +3463,23 @@ dependencies = [
 
 [[package]]
 name = "num_enum"
-version = "0.5.9"
+version = "0.5.11"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "8d829733185c1ca374f17e52b762f24f535ec625d2cc1f070e34c8a9068f341b"
+checksum = "1f646caf906c20226733ed5b1374287eb97e3c2a5c227ce668c1f2ce20ae57c9"
 dependencies = [
  "num_enum_derive",
 ]
 
 [[package]]
 name = "num_enum_derive"
-version = "0.5.9"
+version = "0.5.11"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "2be1598bf1c313dcdd12092e3f1920f463462525a21b7b4e11b4168353d0123e"
+checksum = "dcbff9bc912032c62bf65ef1d5aea88983b420f4f839db1e9b0c281a25c9c799"
 dependencies = [
- "proc-macro-crate 1.3.0",
+ "proc-macro-crate 1.3.1",
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -3497,9 +3502,9 @@ dependencies = [
 
 [[package]]
 name = "once_cell"
-version = "1.17.0"
+version = "1.17.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "6f61fba1741ea2b3d6a1e3178721804bb716a68a6aeba1149b5d52e3d464ea66"
+checksum = "b7e5500299e16ebb147ae15a00a942af264cf3688f47923b8fc2cd5858f23ad3"
 
 [[package]]
 name = "oorandom"
@@ -3519,53 +3524,62 @@ version = "0.18.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "69d6c3d7288a106c0a363e4b0e8d308058d56902adefb16f4936f417ffef086e"
 dependencies = [
- "opentelemetry_api",
- "opentelemetry_sdk",
+ "opentelemetry_api 0.18.0",
+ "opentelemetry_sdk 0.18.0",
+]
+
+[[package]]
+name = "opentelemetry"
+version = "0.19.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "5f4b8347cc26099d3aeee044065ecc3ae11469796b4d65d065a23a584ed92a6f"
+dependencies = [
+ "opentelemetry_api 0.19.0",
+ "opentelemetry_sdk 0.19.0",
 ]
 
 [[package]]
 name = "opentelemetry-otlp"
-version = "0.11.0"
+version = "0.12.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d1c928609d087790fc936a1067bdc310ae702bdf3b090c3f281b713622c8bbde"
+checksum = "8af72d59a4484654ea8eb183fea5ae4eb6a41d7ac3e3bae5f4d2a282a3a7d3ca"
 dependencies = [
  "async-trait",
  "futures",
  "futures-util",
  "grpcio",
  "http",
- "opentelemetry",
+ "opentelemetry 0.19.0",
  "opentelemetry-proto",
  "prost",
  "protobuf",
  "thiserror",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "tonic",
 ]
 
 [[package]]
 name = "opentelemetry-proto"
-version = "0.1.0"
+version = "0.2.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d61a2f56df5574508dd86aaca016c917489e589ece4141df1b5e349af8d66c28"
+checksum = "045f8eea8c0fa19f7d48e7bc3128a39c2e5c533d5c61298c548dfefc1064474c"
 dependencies = [
  "futures",
  "futures-util",
  "grpcio",
- "opentelemetry",
+ "opentelemetry 0.19.0",
  "prost",
  "protobuf",
  "tonic",
- "tonic-build",
 ]
 
 [[package]]
 name = "opentelemetry-semantic-conventions"
-version = "0.10.0"
+version = "0.11.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "9b02e0230abb0ab6636d18e2ba8fa02903ea63772281340ccac18e0af3ec9eeb"
+checksum = "24e33428e6bf08c6f7fcea4ddb8e358fab0fe48ab877a87c70c6ebe20f673ce5"
 dependencies = [
- "opentelemetry",
+ "opentelemetry 0.19.0",
 ]
 
 [[package]]
@@ -3584,11 +3598,47 @@ dependencies = [
  "thiserror",
 ]
 
+[[package]]
+name = "opentelemetry_api"
+version = "0.19.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "ed41783a5bf567688eb38372f2b7a8530f5a607a4b49d38dd7573236c23ca7e2"
+dependencies = [
+ "fnv",
+ "futures-channel",
+ "futures-util",
+ "indexmap",
+ "once_cell",
+ "pin-project-lite 0.2.9",
+ "thiserror",
+ "urlencoding",
+]
+
 [[package]]
 name = "opentelemetry_sdk"
 version = "0.18.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "1ca41c4933371b61c2a2f214bf16931499af4ec90543604ec828f7a625c09113"
+dependencies = [
+ "async-trait",
+ "crossbeam-channel",
+ "dashmap",
+ "fnv",
+ "futures-channel",
+ "futures-executor",
+ "futures-util",
+ "once_cell",
+ "opentelemetry_api 0.18.0",
+ "percent-encoding",
+ "rand 0.8.5",
+ "thiserror",
+]
+
+[[package]]
+name = "opentelemetry_sdk"
+version = "0.19.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "8b3a2a91fdbfdd4d212c0dcc2ab540de2c2bcbbd90be17de7a7daf8822d010c1"
 dependencies = [
  "async-std",
  "async-trait",
@@ -3599,11 +3649,11 @@ dependencies = [
  "futures-executor",
  "futures-util",
  "once_cell",
- "opentelemetry_api",
+ "opentelemetry_api 0.19.0",
  "percent-encoding",
  "rand 0.8.5",
  "thiserror",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "tokio-stream",
 ]
 
@@ -3619,9 +3669,9 @@ dependencies = [
 
 [[package]]
 name = "os_str_bytes"
-version = "6.4.1"
+version = "6.5.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "9b7820b9daea5457c9f21c69448905d723fbd21136ccf521748f23fd49e723ee"
+checksum = "ceedf44fb00f2d1984b0bc98102627ce622e083e49a5bacdb3e514fa4238e267"
 
 [[package]]
 name = "oslog"
@@ -3671,9 +3721,9 @@ dependencies = [
 
 [[package]]
 name = "parity-scale-codec"
-version = "3.3.0"
+version = "3.4.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c3840933452adf7b3b9145e27086a5a3376c619dca1a21b1e5a5af0d54979bed"
+checksum = "637935964ff85a605d114591d4d2c13c5d1ba2806dae97cea6bf180238a749ac"
 dependencies = [
  "arrayvec",
  "bitvec",
@@ -3689,17 +3739,17 @@ version = "3.1.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "86b26a931f824dd4eca30b3e43bb4f31cd5f0d3a403c5f5ff27106b805bfde7b"
 dependencies = [
- "proc-macro-crate 1.3.0",
+ "proc-macro-crate 1.3.1",
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
 name = "parking"
-version = "2.0.0"
+version = "2.1.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "427c3892f9e783d91cc128285287e70a59e206ca452770ece88a76f7a3eddd72"
+checksum = "14f2252c834a40ed9bb5422029649578e63aa341ac401f74e719dd1afda8394e"
 
 [[package]]
 name = "parking_lot"
@@ -3719,7 +3769,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "3742b2c103b9f06bc9fff0a37ff4912935851bee6d36f3c02bcc755bcfec228f"
 dependencies = [
  "lock_api",
- "parking_lot_core 0.9.6",
+ "parking_lot_core 0.9.7",
 ]
 
 [[package]]
@@ -3731,29 +3781,29 @@ dependencies = [
  "cfg-if 1.0.0",
  "instant",
  "libc",
- "redox_syscall",
+ "redox_syscall 0.2.16",
  "smallvec",
  "winapi 0.3.9",
 ]
 
 [[package]]
 name = "parking_lot_core"
-version = "0.9.6"
+version = "0.9.7"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ba1ef8814b5c993410bb3adfad7a5ed269563e4a2f90c41f5d85be7fb47133bf"
+checksum = "9069cbb9f99e3a5083476ccb29ceb1de18b9118cafa53e90c9551235de2b9521"
 dependencies = [
  "cfg-if 1.0.0",
  "libc",
- "redox_syscall",
+ "redox_syscall 0.2.16",
  "smallvec",
- "windows-sys 0.42.0",
+ "windows-sys 0.45.0",
 ]
 
 [[package]]
 name = "paste"
-version = "1.0.11"
+version = "1.0.12"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d01a5bd0424d00070b0098dd17ebca6f961a959dead1dbcbbbc1d1cd8d3deeba"
+checksum = "9f746c4065a8fa3fe23974dd82f15431cc8d40779821001404d10d2e79ca7d79"
 
 [[package]]
 name = "pathdiff"
@@ -3775,9 +3825,9 @@ checksum = "478c572c3d73181ff3c2539045f6eb99e5491218eae919370993b890cdbdd98e"
 
 [[package]]
 name = "pest"
-version = "2.5.4"
+version = "2.5.7"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "4ab62d2fa33726dbe6321cc97ef96d8cde531e3eeaf858a058de53a8a6d40d8f"
+checksum = "7b1403e8401ad5dedea73c626b99758535b342502f8d1e361f4a2dd952749122"
 dependencies = [
  "thiserror",
  "ucd-trie",
@@ -3785,9 +3835,9 @@ dependencies = [
 
 [[package]]
 name = "pest_derive"
-version = "2.5.4"
+version = "2.5.7"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "8bf026e2d0581559db66d837fe5242320f525d85c76283c61f4d51a1238d65ea"
+checksum = "be99c4c1d2fc2769b1d00239431d711d08f6efedcecb8b6e30707160aee99c15"
 dependencies = [
  "pest",
  "pest_generator",
@@ -3795,38 +3845,28 @@ dependencies = [
 
 [[package]]
 name = "pest_generator"
-version = "2.5.4"
+version = "2.5.7"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "2b27bd18aa01d91c8ed2b61ea23406a676b42d82609c6e2581fba42f0c15f17f"
+checksum = "e56094789873daa36164de2e822b3888c6ae4b4f9da555a1103587658c805b1e"
 dependencies = [
  "pest",
  "pest_meta",
  "proc-macro2",
  "quote",
- "syn",
+ "syn 2.0.15",
 ]
 
 [[package]]
 name = "pest_meta"
-version = "2.5.4"
+version = "2.5.7"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "9f02b677c1859756359fc9983c2e56a0237f18624a3789528804406b7e915e5d"
+checksum = "6733073c7cff3d8459fda0e42f13a047870242aed8b509fe98000928975f359e"
 dependencies = [
  "once_cell",
  "pest",
  "sha2 0.10.6",
 ]
 
-[[package]]
-name = "petgraph"
-version = "0.6.2"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e6d5014253a1331579ce62aa67443b4a658c5e7dd03d4bc6d302b94474888143"
-dependencies = [
- "fixedbitset",
- "indexmap",
-]
-
 [[package]]
 name = "pharos"
 version = "0.5.3"
@@ -3863,7 +3903,7 @@ checksum = "851c8d0ce9bebe43790dedfc86614c23494ac9f423dd618d3a61fc693eafe61e"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -3874,7 +3914,7 @@ checksum = "069bdb1e05adc7a8990dce9cc75370895fbe4e3d58b9b73bf1aee56359344a55"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -3931,16 +3971,18 @@ dependencies = [
 
 [[package]]
 name = "polling"
-version = "2.5.2"
+version = "2.8.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "22122d5ec4f9fe1b3916419b76be1e80bcb93f618d071d2edf841b137b2a2bd6"
+checksum = "4b2d323e8ca7996b3e23126511a523f7e62924d93ecd5ae73b333815b0eb3dce"
 dependencies = [
  "autocfg",
+ "bitflags 1.3.2",
  "cfg-if 1.0.0",
+ "concurrent-queue",
  "libc",
  "log",
- "wepoll-ffi",
- "windows-sys 0.42.0",
+ "pin-project-lite 0.2.9",
+ "windows-sys 0.48.0",
 ]
 
 [[package]]
@@ -3960,16 +4002,6 @@ version = "0.2.17"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "5b40af805b3121feab8a3c29f04d8ad262fa8e0561883e7653e024ae4479e6de"
 
-[[package]]
-name = "prettyplease"
-version = "0.1.23"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e97e3215779627f01ee256d2fad52f3d95e8e1c11e9fc6fd08f7cd455d5d5c78"
-dependencies = [
- "proc-macro2",
- "syn",
-]
-
 [[package]]
 name = "primitive-types"
 version = "0.12.1"
@@ -3994,38 +4026,14 @@ dependencies = [
 
 [[package]]
 name = "proc-macro-crate"
-version = "1.3.0"
+version = "1.3.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "66618389e4ec1c7afe67d51a9bf34ff9236480f8d51e7489b7d5ab0303c13f34"
+checksum = "7f4c021e1093a56626774e81216a4ce732a735e5bad4868a03f3ed65ca0c3919"
 dependencies = [
  "once_cell",
  "toml_edit",
 ]
 
-[[package]]
-name = "proc-macro-error"
-version = "1.0.4"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "da25490ff9892aab3fcf7c36f08cfb902dd3e71ca0f9f9517bea02a73a5ce38c"
-dependencies = [
- "proc-macro-error-attr",
- "proc-macro2",
- "quote",
- "syn",
- "version_check 0.9.4",
-]
-
-[[package]]
-name = "proc-macro-error-attr"
-version = "1.0.4"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a1be40180e52ecc98ad80b184934baf3d0d29f979574e439af5a55274b35f869"
-dependencies = [
- "proc-macro2",
- "quote",
- "version_check 0.9.4",
-]
-
 [[package]]
 name = "proc-macro-hack"
 version = "0.5.20+deprecated"
@@ -4034,65 +4042,42 @@ checksum = "dc375e1527247fe1a97d8b7156678dfe7c1af2fc075c9a4db3690ecd2a148068"
 
 [[package]]
 name = "proc-macro2"
-version = "1.0.50"
+version = "1.0.56"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "6ef7d57beacfaf2d8aee5937dab7b7f28de3cb8b1828479bb5de2a7106f2bae2"
+checksum = "2b63bdb0cd06f1f4dedf69b254734f9b45af66e4a031e42a7480257d9898b435"
 dependencies = [
  "unicode-ident",
 ]
 
 [[package]]
 name = "prost"
-version = "0.11.6"
+version = "0.11.9"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "21dc42e00223fc37204bd4aa177e69420c604ca4a183209a8f9de30c6d934698"
+checksum = "0b82eaa1d779e9a4bc1c3217db8ffbeabaae1dca241bf70183242128d48681cd"
 dependencies = [
- "bytes 1.3.0",
+ "bytes 1.4.0",
  "prost-derive",
 ]
 
-[[package]]
-name = "prost-build"
-version = "0.11.6"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a3f8ad728fb08fe212df3c05169e940fbb6d9d16a877ddde14644a983ba2012e"
-dependencies = [
- "bytes 1.3.0",
- "heck",
- "itertools",
- "lazy_static",
- "log",
- "multimap",
- "petgraph",
- "prettyplease",
- "prost",
- "prost-types",
- "regex",
- "syn",
- "tempfile",
- "which",
-]
-
 [[package]]
 name = "prost-derive"
-version = "0.11.6"
+version = "0.11.9"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "8bda8c0881ea9f722eb9629376db3d0b903b462477c1aafcb0566610ac28ac5d"
+checksum = "e5d2d8d10f3c6ded6da8b05b5fb3b8a5082514344d56c9f871412d29b4e075b4"
 dependencies = [
  "anyhow",
  "itertools",
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
 name = "prost-types"
-version = "0.11.6"
+version = "0.11.9"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a5e0526209433e96d83d750dd81a99118edbc55739e7e61a46764fd2ad537788"
+checksum = "213622a1460818959ac1181aaeb2dc9c7f63df720db7d788b3e24eacd1983e13"
 dependencies = [
- "bytes 1.3.0",
  "prost",
 ]
 
@@ -4119,7 +4104,7 @@ checksum = "16b845dbfca988fa33db069c0e230574d15a3088f147a87b64c7589eb662c9ac"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -4130,9 +4115,9 @@ checksum = "a1d01941d82fa2ab50be1e79e6714289dd7cde78eba4c074bc5a4374f650dfe0"
 
 [[package]]
 name = "quote"
-version = "1.0.23"
+version = "1.0.26"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "8856d8364d252a14d474036ea1358d63c9e6965c8e5c1885c18f73d70bff9c7b"
+checksum = "4424af4bf778aae2051a77b60283332f386554255d722233d09fbfc7e30da2fc"
 dependencies = [
  "proc-macro2",
 ]
@@ -4202,7 +4187,7 @@ version = "0.6.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "ec0be4795e2f6a28069bec0b5ff3e2ac9bafc99e6a9a7dc3547996c5c816922c"
 dependencies = [
- "getrandom 0.2.8",
+ "getrandom 0.2.9",
 ]
 
 [[package]]
@@ -4216,18 +4201,15 @@ dependencies = [
 
 [[package]]
 name = "raw-window-handle"
-version = "0.5.0"
+version = "0.5.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ed7e3d950b66e19e0c372f3fa3fbbcf85b1746b571f74e0c2af6042a5c93420a"
-dependencies = [
- "cty",
-]
+checksum = "f2ff9a1f06a88b01621b7ae906ef0211290d1c8a168a15542486a8f61c0833b9"
 
 [[package]]
 name = "rayon"
-version = "1.6.1"
+version = "1.7.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "6db3a213adf02b3bcfd2d3846bb41cb22857d131789e01df434fb7e7bc0759b7"
+checksum = "1d2df5196e37bcc87abebc0053e20787d73847bb33134a69841207dd0a47f03b"
 dependencies = [
  "either",
  "rayon-core",
@@ -4235,9 +4217,9 @@ dependencies = [
 
 [[package]]
 name = "rayon-core"
-version = "1.10.2"
+version = "1.11.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "356a0625f1954f730c0201cdab48611198dc6ce21f4acff55089b5a78e6e835b"
+checksum = "4b8f95bd6966f5c87776639160a66bd8ab9895d9d4ab01ddba9fc60661aebe8d"
 dependencies = [
  "crossbeam-channel",
  "crossbeam-deque",
@@ -4251,7 +4233,16 @@ version = "0.2.16"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "fb5a58c1855b4b6819d59012155603f0b22ad30cad752600aadfcb695265519a"
 dependencies = [
- "bitflags",
+ "bitflags 1.3.2",
+]
+
+[[package]]
+name = "redox_syscall"
+version = "0.3.5"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "567664f262709473930a4bf9e51bf2ebf3348f2e748ccc50dea20646858f8f29"
+dependencies = [
+ "bitflags 1.3.2",
 ]
 
 [[package]]
@@ -4260,20 +4251,20 @@ version = "0.4.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "b033d837a7cf162d7993aded9304e30a83213c648b6e389db233191f891e5c2b"
 dependencies = [
- "getrandom 0.2.8",
- "redox_syscall",
+ "getrandom 0.2.9",
+ "redox_syscall 0.2.16",
  "thiserror",
 ]
 
 [[package]]
 name = "regex"
-version = "1.7.1"
+version = "1.8.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "48aaa5748ba571fb95cd2c85c09f629215d3a6ece942baa100950af03a34f733"
+checksum = "af83e617f331cc6ae2da5443c602dfa5af81e517212d9d611a5b3ba1777b5370"
 dependencies = [
  "aho-corasick",
  "memchr",
- "regex-syntax",
+ "regex-syntax 0.7.1",
 ]
 
 [[package]]
@@ -4282,23 +4273,20 @@ version = "0.1.10"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "6c230d73fb8d8c1b9c0b3135c5142a8acee3a0558fb8db5cf1cb65f8d7862132"
 dependencies = [
- "regex-syntax",
+ "regex-syntax 0.6.29",
 ]
 
 [[package]]
 name = "regex-syntax"
-version = "0.6.28"
+version = "0.6.29"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "456c603be3e8d448b072f410900c09faf164fbce2d480456f50eea6e25f9c848"
+checksum = "f162c6dd7b008981e4d40210aca20b4bd0f9b60ca9271061b07f78537722f2e1"
 
 [[package]]
-name = "remove_dir_all"
-version = "0.5.3"
+name = "regex-syntax"
+version = "0.7.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "3acd125665422973a33ac9d3dd2df85edad0f4ae9b00dafb1a05e43a9f5ef8e7"
-dependencies = [
- "winapi 0.3.9",
-]
+checksum = "a5996294f19bd3aae0453a862ad728f60e6600695733dd5df01da90c54363a3c"
 
 [[package]]
 name = "rend"
@@ -4336,8 +4324,9 @@ dependencies = [
 
 [[package]]
 name = "rkyv"
-version = "0.7.39"
-source = "git+https://github.com/rkyv/rkyv.git?rev=57e2a8d#57e2a8daff3e6381e170e723ed1beea5c113b232"
+version = "0.7.41"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "21499ed91807f07ae081880aabb2ccc0235e9d88011867d984525e9a4c3cfa3e"
 dependencies = [
  "bytecheck",
  "hashbrown",
@@ -4349,12 +4338,13 @@ dependencies = [
 
 [[package]]
 name = "rkyv_derive"
-version = "0.7.39"
-source = "git+https://github.com/rkyv/rkyv.git?rev=57e2a8d#57e2a8daff3e6381e170e723ed1beea5c113b232"
+version = "0.7.41"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "ac1c672430eb41556291981f45ca900a0239ad007242d1cb4b4167af842db666"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -4363,7 +4353,7 @@ version = "0.5.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "bb919243f34364b6bd2fc10ef797edbfa75f33c252e7998527479c6d6b47e1ec"
 dependencies = [
- "bytes 1.3.0",
+ "bytes 1.4.0",
  "rustc-hex",
 ]
 
@@ -4374,7 +4364,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "88073939a61e5b7680558e6be56b419e208420c2adb92be54921fa6b72283f1a"
 dependencies = [
  "base64 0.13.1",
- "bitflags",
+ "bitflags 1.3.2",
  "serde",
 ]
 
@@ -4401,16 +4391,16 @@ dependencies = [
  "netlink-proto",
  "nix 0.22.3",
  "thiserror",
- "tokio 1.24.2",
+ "tokio 1.27.0",
 ]
 
 [[package]]
 name = "rusqlite"
-version = "0.28.0"
+version = "0.29.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "01e213bc3ecb39ac32e81e51ebe31fd888a940515173e3a18a35f8c6e896422a"
+checksum = "549b9d036d571d42e6e85d1c1425e2ac83491075078ca9a15be021c56b1641f2"
 dependencies = [
- "bitflags",
+ "bitflags 2.1.0",
  "fallible-iterator",
  "fallible-streaming-iterator",
  "hashlink 0.8.1 (registry+https://github.com/rust-lang/crates.io-index)",
@@ -4434,7 +4424,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "8a66b1273014079e4cf2b04aad1f3a2849e26e9a106f0411be2b1c15c23a791a"
 dependencies = [
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -4449,9 +4439,9 @@ dependencies = [
 
 [[package]]
 name = "rustc-demangle"
-version = "0.1.21"
+version = "0.1.23"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7ef03e0a2b150c7a90d01faf6254c9c48a41e95fb2a8c2ac1c6f0d2b9aefc342"
+checksum = "d626bb9dae77e28219937af045c257c28bfd3f69333c512553507f5f9798cb76"
 
 [[package]]
 name = "rustc-hash"
@@ -4480,7 +4470,21 @@ version = "0.4.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "bfa0f585226d2e68097d4f95d113b15b83a82e819ab25717ec0590d9584ef366"
 dependencies = [
- "semver 1.0.16",
+ "semver 1.0.17",
+]
+
+[[package]]
+name = "rustix"
+version = "0.37.13"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "f79bef90eb6d984c72722595b5b1348ab39275a5e5123faca6863bf07d75a4e0"
+dependencies = [
+ "bitflags 1.3.2",
+ "errno",
+ "io-lifetimes",
+ "libc",
+ "linux-raw-sys",
+ "windows-sys 0.48.0",
 ]
 
 [[package]]
@@ -4492,10 +4496,22 @@ dependencies = [
  "base64 0.13.1",
  "log",
  "ring",
- "sct",
+ "sct 0.6.1",
  "webpki 0.21.4",
 ]
 
+[[package]]
+name = "rustls"
+version = "0.20.8"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "fff78fc74d175294f4e83b28343315ffcfb114b156f0185e9741cb5570f50e2f"
+dependencies = [
+ "log",
+ "ring",
+ "sct 0.7.0",
+ "webpki 0.22.0",
+]
+
 [[package]]
 name = "rustls-pemfile"
 version = "0.2.1"
@@ -4506,16 +4522,35 @@ dependencies = [
 ]
 
 [[package]]
-name = "rustversion"
-version = "1.0.11"
+name = "rustls-pemfile"
+version = "1.0.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "5583e89e108996506031660fe09baa5011b9dd0341b89029313006d1fb508d70"
+checksum = "d194b56d58803a43635bdc398cd17e383d6f71f9182b9a192c127ca42494a59b"
+dependencies = [
+ "base64 0.21.0",
+]
+
+[[package]]
+name = "rustls-webpki"
+version = "0.100.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "d6207cd5ed3d8dca7816f8f3725513a34609c0c765bf652b8c3cb4cfd87db46b"
+dependencies = [
+ "ring",
+ "untrusted",
+]
+
+[[package]]
+name = "rustversion"
+version = "1.0.12"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "4f3208ce4d8448b3f3e7d168a73f5e0c43a61e32930de3bceeccedb388b6bf06"
 
 [[package]]
 name = "ryu"
-version = "1.0.12"
+version = "1.0.13"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7b4b9743ed687d4b4bcedf9ff5eaa7398495ae14e61cba0a295704edbc7decde"
+checksum = "f91339c0467de62360649f8d3e185ca8de4224ff281f66000de5eb2a77a79041"
 
 [[package]]
 name = "same-file"
@@ -4540,9 +4575,9 @@ checksum = "d29ab0c6d3fc0ee92fe66e2d99f700eab17a8d57d1c1d3b748380fb20baa78cd"
 
 [[package]]
 name = "scratch"
-version = "1.0.3"
+version = "1.0.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ddccb15bcce173023b3fedd9436f882a0739b8dfb45e4f6b6002bee5929f61b2"
+checksum = "1792db035ce95be60c3f8853017b3999209281c24e2ba5bc8e59bf97a0c590c1"
 
 [[package]]
 name = "sct"
@@ -4554,6 +4589,16 @@ dependencies = [
  "untrusted",
 ]
 
+[[package]]
+name = "sct"
+version = "0.7.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "d53dcdb7c9f8158937a7981b48accfd39a43af418591a5d008c7b22b5e1b7ca4"
+dependencies = [
+ "ring",
+ "untrusted",
+]
+
 [[package]]
 name = "seahash"
 version = "4.1.0"
@@ -4595,9 +4640,9 @@ version = "2.8.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "a332be01508d814fed64bf28f798a146d73792121129962fdf335bb3c49a4254"
 dependencies = [
- "bitflags",
+ "bitflags 1.3.2",
  "core-foundation 0.9.3",
- "core-foundation-sys 0.8.3",
+ "core-foundation-sys 0.8.4",
  "libc",
  "security-framework-sys",
 ]
@@ -4608,7 +4653,7 @@ version = "2.8.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "31c9bb296072e961fcbd8853511dd39c2d8be2deb1e17c6860b1d30732b323b4"
 dependencies = [
- "core-foundation-sys 0.8.3",
+ "core-foundation-sys 0.8.4",
  "libc",
 ]
 
@@ -4623,9 +4668,9 @@ dependencies = [
 
 [[package]]
 name = "semver"
-version = "1.0.16"
+version = "1.0.17"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "58bc9567378fc7690d6b2addae4e60ac2eeea07becb2c64b9f218b53865cba2a"
+checksum = "bebd363326d05ec3e2f532ab7660680f3b02130d780c299bca73469d521bc0ed"
 
 [[package]]
 name = "semver-parser"
@@ -4639,12 +4684,6 @@ version = "0.4.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "f638d531eccd6e23b980caf34876660d38e265409d8e99b397ab71eb3612fad0"
 
-[[package]]
-name = "send_wrapper"
-version = "0.5.0"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "930c0acf610d3fdb5e2ab6213019aaa04e227ebe9547b0649ba599b16d788bd7"
-
 [[package]]
 name = "send_wrapper"
 version = "0.6.0"
@@ -4656,18 +4695,18 @@ dependencies = [
 
 [[package]]
 name = "serde"
-version = "1.0.152"
+version = "1.0.160"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "bb7d1f0d3021d347a83e556fc4683dea2ea09d87bccdf88ff5c12545d89d5efb"
+checksum = "bb2f3770c8bce3bcda7e149193a069a0f4365bda1fa5cd88e03bca26afc1216c"
 dependencies = [
  "serde_derive",
 ]
 
 [[package]]
 name = "serde-big-array"
-version = "0.4.1"
+version = "0.5.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "3323f09a748af288c3dc2474ea6803ee81f118321775bffa3ac8f7e65c5e90e7"
+checksum = "11fc7cc2c76d73e0f27ee52abbd64eec84d46f370c88371120433196934e4b7f"
 dependencies = [
  "serde",
 ]
@@ -4684,20 +4723,20 @@ dependencies = [
 
 [[package]]
 name = "serde_derive"
-version = "1.0.152"
+version = "1.0.160"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "af487d118eecd09402d70a5d72551860e788df87b464af30e5ea6a38c75c541e"
+checksum = "291a097c63d8497e00160b166a967a4a79c64f3facdd01cbd7502231688d77df"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 2.0.15",
 ]
 
 [[package]]
 name = "serde_json"
-version = "1.0.91"
+version = "1.0.96"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "877c235533714907a8c2464236f5c4b2a17262ef1bd71f38f35ea592c8da6883"
+checksum = "057d394a50403bcac12672b2b18fb387ab6d289d957dab67dd201875391e52f1"
 dependencies = [
  "itoa",
  "ryu",
@@ -4706,20 +4745,20 @@ dependencies = [
 
 [[package]]
 name = "serde_repr"
-version = "0.1.10"
+version = "0.1.12"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "9a5ec9fa74a20ebbe5d9ac23dac1fc96ba0ecfe9f50f2843b52e537b10fbcb4e"
+checksum = "bcec881020c684085e55a25f7fd888954d56609ef363479dc5a1305eb0d40cab"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 2.0.15",
 ]
 
 [[package]]
 name = "serde_yaml"
-version = "0.9.17"
+version = "0.9.21"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "8fb06d4b6cdaef0e0c51fa881acb721bed3c924cfaa71d9c94a3b771dfdf6567"
+checksum = "d9d684e3ec7de3bf5466b32bd75303ac16f0736426e5a4e0d6e489559ce1249c"
 dependencies = [
  "indexmap",
  "itoa",
@@ -4750,7 +4789,7 @@ checksum = "b64f9e531ce97c88b4778aad0ceee079216071cffec6ac9b904277f8f92e7fe3"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -4825,12 +4864,6 @@ dependencies = [
  "lazy_static",
 ]
 
-[[package]]
-name = "shlex"
-version = "0.1.1"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7fdf1b9db47230893d76faad238fd6097fd6d6a9245cd7a4d90dbd639536bbd2"
-
 [[package]]
 name = "shlex"
 version = "1.1.0"
@@ -4839,9 +4872,9 @@ checksum = "43b2853a4d09f215c24cc5489c992ce46052d359b5109343cbafbf26bc62f8a3"
 
 [[package]]
 name = "signal-hook"
-version = "0.3.14"
+version = "0.3.15"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a253b5e89e2698464fc26b545c9edceb338e18a89effeeecfea192c3025be29d"
+checksum = "732768f1176d21d09e076c23a93123d40bba92d50c4058da34d45c8de8e682b9"
 dependencies = [
  "libc",
  "signal-hook-registry",
@@ -4866,15 +4899,15 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "29ad2e15f37ec9a6cc544097b78a1ec90001e9f71b81338ca39f430adaca99af"
 dependencies = [
  "libc",
- "mio 0.8.5",
+ "mio 0.8.6",
  "signal-hook",
 ]
 
 [[package]]
 name = "signal-hook-registry"
-version = "1.4.0"
+version = "1.4.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e51e73328dc4ac0c7ccbda3a494dfa03df1de2f46018127f60c693f2648455b0"
+checksum = "d8229b473baa5980ac72ef434c4415e70c4b5e71b423043adb4ba059f89c99a1"
 dependencies = [
  "libc",
 ]
@@ -4885,6 +4918,12 @@ version = "1.6.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "74233d3b3b2f6d4b006dc19dee745e73e2a6bfb6f93607cd3b02bd5b00797d7c"
 
+[[package]]
+name = "simdutf8"
+version = "0.1.4"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "f27f6278552951f1f2b8cf9da965d10969b2efdea95a6ec47987ab46edfe263a"
+
 [[package]]
 name = "simplelog"
 version = "0.9.0"
@@ -4898,20 +4937,20 @@ dependencies = [
 
 [[package]]
 name = "simplelog"
-version = "0.12.0"
+version = "0.12.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "48dfff04aade74dd495b007c831cd6f4e0cee19c344dd9dc0884c0289b70a786"
+checksum = "acee08041c5de3d5048c8b3f6f13fafb3026b24ba43c6a695a0c76179b844369"
 dependencies = [
  "log",
  "termcolor",
- "time 0.3.17",
+ "time 0.3.20",
 ]
 
 [[package]]
 name = "slab"
-version = "0.4.7"
+version = "0.4.8"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "4614a76b2a8be0058caa9dbbaf66d988527d86d003c11a94fbd335d7661edcef"
+checksum = "6528351c9bc8ab22353f9d776db39a20288e8d6c37ef8cfe3317cf875eecfc2d"
 dependencies = [
  "autocfg",
 ]
@@ -4934,14 +4973,24 @@ dependencies = [
 
 [[package]]
 name = "socket2"
-version = "0.4.7"
+version = "0.4.9"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "02e2d2db9033d13a1567121ddd7a095ee144db4e1ca1b1bda3419bc0da294ebd"
+checksum = "64a4a911eed85daf18834cfaa86a79b7d266ff93ff5ba14005426219480ed662"
 dependencies = [
  "libc",
  "winapi 0.3.9",
 ]
 
+[[package]]
+name = "socket2"
+version = "0.5.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "6d283f86695ae989d1e18440a943880967156325ba025f05049946bff47bcc2b"
+dependencies = [
+ "libc",
+ "windows-sys 0.48.0",
+]
+
 [[package]]
 name = "spin"
 version = "0.5.2"
@@ -4950,9 +4999,9 @@ checksum = "6e63cff320ae2c57904679ba7cb63280a3dc4613885beafb148ee7bf9aa9042d"
 
 [[package]]
 name = "spin"
-version = "0.9.4"
+version = "0.9.8"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7f6002a767bff9e83f8eeecf883ecb8011875a21ae8da43bffb817a57e78cc09"
+checksum = "6980e8d7511241f8acf4aebddbb1ff938df5eebe98691418c4468d0b72a96a67"
 dependencies = [
  "lock_api",
 ]
@@ -5002,7 +5051,7 @@ dependencies = [
  "quote",
  "serde",
  "serde_derive",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -5018,7 +5067,7 @@ dependencies = [
  "serde_derive",
  "serde_json",
  "sha1 0.6.1",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -5065,9 +5114,20 @@ checksum = "734676eb262c623cec13c3155096e08d1f8f29adce39ba17948b18dad1e54142"
 
 [[package]]
 name = "syn"
-version = "1.0.107"
+version = "1.0.109"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "1f4064b5b16e03ae50984a5a8ed5d4f8803e6bc1fd170a3cda91a1be4b18e3f5"
+checksum = "72b64191b275b66ffe2469e8af2c1cfe3bafa67b529ead792a6d0160888b4237"
+dependencies = [
+ "proc-macro2",
+ "quote",
+ "unicode-ident",
+]
+
+[[package]]
+name = "syn"
+version = "2.0.15"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "a34fcf3e8b60f57e6a14301a2e916d323af98b0ea63c599441eec8558660c822"
 dependencies = [
  "proc-macro2",
  "quote",
@@ -5076,9 +5136,9 @@ dependencies = [
 
 [[package]]
 name = "sync_wrapper"
-version = "0.1.1"
+version = "0.1.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "20518fe4a4c9acf048008599e464deb21beeae3d3578418951a189c235a7a9a8"
+checksum = "2047c6ded9c721764247e62cd3b03c09ffc529b2ba5b10ec482ae507a4a70160"
 
 [[package]]
 name = "synstructure"
@@ -5088,25 +5148,10 @@ checksum = "f36bdaa60a83aca3921b5259d5400cbf5e90fc51931376a9bd4a0eb79aa7210f"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
  "unicode-xid",
 ]
 
-[[package]]
-name = "sysinfo"
-version = "0.27.7"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "975fe381e0ecba475d4acff52466906d95b153a40324956552e027b2a9eaa89e"
-dependencies = [
- "cfg-if 1.0.0",
- "core-foundation-sys 0.8.3",
- "libc",
- "ntapi 0.4.0",
- "once_cell",
- "rayon",
- "winapi 0.3.9",
-]
-
 [[package]]
 name = "sysinfo"
 version = "0.28.4"
@@ -5114,10 +5159,11 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "b4c2f3ca6693feb29a89724516f016488e9aafc7f37264f898593ee4b942f31b"
 dependencies = [
  "cfg-if 1.0.0",
- "core-foundation-sys 0.8.3",
+ "core-foundation-sys 0.8.4",
  "libc",
- "ntapi 0.4.0",
+ "ntapi 0.4.1",
  "once_cell",
+ "rayon",
  "winapi 0.3.9",
 ]
 
@@ -5129,16 +5175,15 @@ checksum = "55937e1799185b12863d447f42597ed69d9928686b8d88a1df17376a097d8369"
 
 [[package]]
 name = "tempfile"
-version = "3.3.0"
+version = "3.5.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "5cdb1ef4eaeeaddc8fbd371e5017057064af0911902ef36b39801f67cc6d79e4"
+checksum = "b9fbec84f381d5795b08656e4912bec604d162bff9291d6189a78f4c8ab87998"
 dependencies = [
  "cfg-if 1.0.0",
  "fastrand",
- "libc",
- "redox_syscall",
- "remove_dir_all",
- "winapi 0.3.9",
+ "redox_syscall 0.3.5",
+ "rustix",
+ "windows-sys 0.45.0",
 ]
 
 [[package]]
@@ -5167,30 +5212,31 @@ checksum = "222a222a5bfe1bba4a77b45ec488a741b3cb8872e5e499451fd7d0129c9c7c3d"
 
 [[package]]
 name = "thiserror"
-version = "1.0.38"
+version = "1.0.40"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "6a9cd18aa97d5c45c6603caea1da6628790b37f7a34b6ca89522331c5180fed0"
+checksum = "978c9a314bd8dc99be594bc3c175faaa9794be04a5a5e153caba6915336cebac"
 dependencies = [
  "thiserror-impl",
 ]
 
 [[package]]
 name = "thiserror-impl"
-version = "1.0.38"
+version = "1.0.40"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "1fb327af4685e4d03fa8cbcf1716380da910eeb2bb8be417e7f9fd3fb164f36f"
+checksum = "f9456a42c5b0d803c8cd86e73dd7cc9edd429499f37a3550d286d5e86720569f"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 2.0.15",
 ]
 
 [[package]]
 name = "thread_local"
-version = "1.1.4"
+version = "1.1.7"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "5516c27b78311c50bf42c071425c560ac799b11c30b31f87e3081965fe5e0180"
+checksum = "3fdd6f064ccff2d6567adcb3873ca630700f00b5ad3f060c25b5dcfd9a4ce152"
 dependencies = [
+ "cfg-if 1.0.0",
  "once_cell",
 ]
 
@@ -5222,16 +5268,16 @@ dependencies = [
 
 [[package]]
 name = "time"
-version = "0.3.17"
+version = "0.3.20"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a561bf4617eebd33bca6434b988f39ed798e527f51a1e797d0ee4f61c0a38376"
+checksum = "cd0cbfecb4d19b5ea75bb31ad904eb5b9fa13f21079c3b92017ebdf4999a5890"
 dependencies = [
  "itoa",
  "libc",
  "num_threads",
  "serde",
  "time-core",
- "time-macros 0.2.6",
+ "time-macros 0.2.8",
 ]
 
 [[package]]
@@ -5252,9 +5298,9 @@ dependencies = [
 
 [[package]]
 name = "time-macros"
-version = "0.2.6"
+version = "0.2.8"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d967f99f534ca7e495c575c62638eebc2898a8c84c119b89e250477bc4ba16b2"
+checksum = "fd80a657e71da814b8e5d60d3374fc6d35045062245d80224748ae522dd76f36"
 dependencies = [
  "time-core",
 ]
@@ -5269,7 +5315,7 @@ dependencies = [
  "proc-macro2",
  "quote",
  "standback",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -5302,9 +5348,9 @@ dependencies = [
 
 [[package]]
 name = "tinyvec_macros"
-version = "0.1.0"
+version = "0.1.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "cda74da7e1a664f795bb1f8a87ec406fb89a02522cf6e50620d016add6dbbf5c"
+checksum = "1f3ccbac311fea05f86f61904b462b55fb3df8837a366dfc601a0161d0532f20"
 
 [[package]]
 name = "tokio"
@@ -5336,23 +5382,22 @@ dependencies = [
 
 [[package]]
 name = "tokio"
-version = "1.24.2"
+version = "1.27.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "597a12a59981d9e3c38d216785b0c37399f6e415e8d0712047620f189371b0bb"
+checksum = "d0de47a4eecbe11f498978a9b29d792f0d2692d1dd003650c24c76510e3bc001"
 dependencies = [
  "autocfg",
- "bytes 1.3.0",
+ "bytes 1.4.0",
  "libc",
- "memchr",
- "mio 0.8.5",
+ "mio 0.8.6",
  "num_cpus",
  "parking_lot 0.12.1",
  "pin-project-lite 0.2.9",
  "signal-hook-registry",
- "socket2",
+ "socket2 0.4.9",
  "tokio-macros",
  "tracing",
- "windows-sys 0.42.0",
+ "windows-sys 0.45.0",
 ]
 
 [[package]]
@@ -5362,43 +5407,43 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "30b74022ada614a1b4834de765f9bb43877f910cc8ce4be40e89042c9223a8bf"
 dependencies = [
  "pin-project-lite 0.2.9",
- "tokio 1.24.2",
+ "tokio 1.27.0",
 ]
 
 [[package]]
 name = "tokio-macros"
-version = "1.8.2"
+version = "2.0.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d266c00fde287f55d3f1c3e96c500c362a2b8c695076ec180f27918820bc6df8"
+checksum = "61a573bdc87985e9d6ddeed1b3d864e8a302c847e40d647746df2f1de209d1ce"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 2.0.15",
 ]
 
 [[package]]
 name = "tokio-stream"
-version = "0.1.11"
+version = "0.1.12"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d660770404473ccd7bc9f8b28494a811bc18542b915c0855c51e8f419d5223ce"
+checksum = "8fb52b74f05dbf495a8fba459fdc331812b96aa086d9eb78101fa0d4569c3313"
 dependencies = [
  "futures-core",
  "pin-project-lite 0.2.9",
- "tokio 1.24.2",
+ "tokio 1.27.0",
 ]
 
 [[package]]
 name = "tokio-util"
-version = "0.7.4"
+version = "0.7.7"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "0bb2e075f03b3d66d8d8785356224ba688d2906a371015e225beeb65ca92c740"
+checksum = "5427d89453009325de0d8f342c9490009f76e999cb7672d77e46267448f7e6b2"
 dependencies = [
- "bytes 1.3.0",
+ "bytes 1.4.0",
  "futures-core",
  "futures-io",
  "futures-sink",
  "pin-project-lite 0.2.9",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "tracing",
 ]
 
@@ -5413,19 +5458,19 @@ dependencies = [
 
 [[package]]
 name = "toml_datetime"
-version = "0.5.1"
+version = "0.6.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "4553f467ac8e3d374bc9a177a26801e5d0f9b211aa1673fb137a403afd1c9cf5"
+checksum = "3ab8ed2edee10b50132aed5f331333428b011c99402b5a534154ed15746f9622"
 
 [[package]]
 name = "toml_edit"
-version = "0.18.1"
+version = "0.19.8"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "56c59d8dd7d0dcbc6428bf7aa2f0e823e26e43b3c9aca15bbc9475d23e5fa12b"
+checksum = "239410c8609e8125456927e6707163a3b1fdb40561e4b803bc041f466ccfdc13"
 dependencies = [
  "indexmap",
- "nom8",
  "toml_datetime",
+ "winnow",
 ]
 
 [[package]]
@@ -5438,7 +5483,7 @@ dependencies = [
  "async-trait",
  "axum",
  "base64 0.13.1",
- "bytes 1.3.0",
+ "bytes 1.4.0",
  "futures-core",
  "futures-util",
  "h2",
@@ -5450,7 +5495,7 @@ dependencies = [
  "pin-project 1.0.12",
  "prost",
  "prost-derive",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "tokio-stream",
  "tokio-util",
  "tower",
@@ -5460,19 +5505,6 @@ dependencies = [
  "tracing-futures",
 ]
 
-[[package]]
-name = "tonic-build"
-version = "0.8.4"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "5bf5e9b9c0f7e0a7c027dcfaba7b2c60816c7049171f679d99ee2ff65d0de8c4"
-dependencies = [
- "prettyplease",
- "proc-macro2",
- "prost-build",
- "quote",
- "syn",
-]
-
 [[package]]
 name = "tower"
 version = "0.4.13"
@@ -5486,32 +5518,13 @@ dependencies = [
  "pin-project-lite 0.2.9",
  "rand 0.8.5",
  "slab",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "tokio-util",
  "tower-layer",
  "tower-service",
  "tracing",
 ]
 
-[[package]]
-name = "tower-http"
-version = "0.3.5"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "f873044bf02dd1e8239e9c1293ea39dad76dc594ec16185d0a1bf31d8dc8d858"
-dependencies = [
- "bitflags",
- "bytes 1.3.0",
- "futures-core",
- "futures-util",
- "http",
- "http-body",
- "http-range-header",
- "pin-project-lite 0.2.9",
- "tower",
- "tower-layer",
- "tower-service",
-]
-
 [[package]]
 name = "tower-layer"
 version = "0.3.2"
@@ -5544,7 +5557,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "09d48f71a791638519505cefafe162606f706c25592e4bde4d97600c0195312e"
 dependencies = [
  "crossbeam-channel",
- "time 0.3.17",
+ "time 0.3.20",
  "tracing-subscriber",
 ]
 
@@ -5556,7 +5569,7 @@ checksum = "4017f8f45139870ca7e672686113917c71c7a6e02d4924eda67186083c03081a"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -5618,7 +5631,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "21ebb87a95ea13271332df069020513ab70bdb5637ca42d6e492dc3bbbad48de"
 dependencies = [
  "once_cell",
- "opentelemetry",
+ "opentelemetry 0.18.0",
  "tracing",
  "tracing-core",
  "tracing-log",
@@ -5631,7 +5644,7 @@ version = "0.1.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "9bc58223383423483e4bc056c7e7b3f77bdee924a9d33834112c69ead06dc847"
 dependencies = [
- "bindgen 0.59.2",
+ "bindgen",
  "cc",
  "cfg-if 1.0.0",
  "fnv",
@@ -5690,7 +5703,7 @@ dependencies = [
  "smallvec",
  "thiserror",
  "tinyvec",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "tracing",
  "url",
 ]
@@ -5710,7 +5723,7 @@ dependencies = [
  "resolv-conf",
  "smallvec",
  "thiserror",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "tracing",
  "trust-dns-proto",
 ]
@@ -5742,13 +5755,13 @@ dependencies = [
 
 [[package]]
 name = "tungstenite"
-version = "0.18.0"
+version = "0.19.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "30ee6ab729cd4cf0fd55218530c4522ed30b7b6081752839b68fcec8d0960788"
+checksum = "15fba1a6d6bb030745759a9a2a588bfe8490fc8b4751a277db3a0be1c9ebbf67"
 dependencies = [
- "base64 0.13.1",
  "byteorder",
- "bytes 1.3.0",
+ "bytes 1.4.0",
+ "data-encoding",
  "http",
  "httparse",
  "log",
@@ -5785,15 +5798,15 @@ dependencies = [
 
 [[package]]
 name = "unicode-bidi"
-version = "0.3.10"
+version = "0.3.13"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d54675592c1dbefd78cbd98db9bacd89886e1ca50692a0692baefffdeb92dd58"
+checksum = "92888ba5573ff080736b3648696b70cafad7d250551175acbaa4e0385b3e1460"
 
 [[package]]
 name = "unicode-ident"
-version = "1.0.6"
+version = "1.0.8"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "84a22b9f218b40614adcb3f4ff08b703773ad44fa9423e4e0d346d5db86e4ebc"
+checksum = "e5464a87b239f13a63a501f2701565754bae92d243d4bb7eb12f6d57d2269bf4"
 
 [[package]]
 name = "unicode-normalization"
@@ -5806,9 +5819,9 @@ dependencies = [
 
 [[package]]
 name = "unicode-segmentation"
-version = "1.10.0"
+version = "1.10.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "0fdbf052a0783de01e944a6ce7a8cb939e295b1e7be835a1112c3b9a7f047a5a"
+checksum = "1dd624098567895118886609431a7c3b8f516e41d30e0643f03d94592a147e36"
 
 [[package]]
 name = "unicode-width"
@@ -5834,15 +5847,15 @@ version = "0.4.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "9f214e8f697e925001e66ec2c6e37a4ef93f0f78c2eed7814394e10c62025b05"
 dependencies = [
- "generic-array 0.14.6",
+ "generic-array 0.14.7",
  "subtle",
 ]
 
 [[package]]
 name = "unsafe-libyaml"
-version = "0.2.5"
+version = "0.2.8"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "bc7ed8ba44ca06be78ea1ad2c3682a43349126c8818054231ee6f4748012aed2"
+checksum = "1865806a559042e51ab5414598446a5871b561d21b6764f2eabb0dd481d880a6"
 
 [[package]]
 name = "untrusted"
@@ -5861,6 +5874,12 @@ dependencies = [
  "percent-encoding",
 ]
 
+[[package]]
+name = "urlencoding"
+version = "2.1.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "e8db7427f936968176eaa7cdf81b7f98b980b18495ec28f1b5791ac3bfe3eea9"
+
 [[package]]
 name = "utf-8"
 version = "0.7.6"
@@ -5924,7 +5943,7 @@ dependencies = [
  "serde_derive",
  "serial_test",
  "thiserror",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "tokio-util",
  "veilid-core",
 ]
@@ -5937,17 +5956,16 @@ dependencies = [
  "async-lock",
  "async-std",
  "async-std-resolver",
- "async-tls",
- "async-tungstenite 0.19.0",
+ "async-tls 0.11.0",
+ "async-tungstenite 0.21.0",
  "async_executors",
  "backtrace",
  "blake3",
  "bugsalot",
- "bytecheck",
  "capnp",
  "capnpc",
  "cfg-if 1.0.0",
- "chacha20 0.9.0",
+ "chacha20 0.9.1",
  "chacha20poly1305",
  "chrono",
  "config",
@@ -5961,13 +5979,13 @@ dependencies = [
  "eyre",
  "flume",
  "futures-util",
- "generic-array 0.14.6",
- "getrandom 0.2.8",
+ "generic-array 0.14.7",
+ "getrandom 0.2.9",
  "hashlink 0.8.1",
  "hex",
  "ifstructs",
  "igd",
- "jni",
+ "jni 0.21.1",
  "jni-sys",
  "js-sys",
  "json",
@@ -5990,20 +6008,20 @@ dependencies = [
  "rkyv",
  "rtnetlink",
  "rusqlite",
- "rustls",
- "rustls-pemfile",
+ "rustls 0.19.1",
+ "rustls-pemfile 0.2.1",
  "secrecy",
  "send_wrapper 0.6.0",
  "serde",
  "serde-big-array",
  "serde_json",
  "serial_test",
- "simplelog 0.12.0",
- "socket2",
+ "simplelog 0.12.1",
+ "socket2 0.5.2",
  "static_assertions",
  "stop-token",
  "thiserror",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "tokio-stream",
  "tokio-util",
  "tracing",
@@ -6020,10 +6038,10 @@ dependencies = [
  "weak-table",
  "web-sys",
  "webpki 0.22.0",
- "webpki-roots 0.22.6",
+ "webpki-roots 0.23.0",
  "wee_alloc",
  "winapi 0.3.9",
- "windows",
+ "windows 0.38.0",
  "windows-permissions",
  "ws_stream_wasm",
  "x25519-dalek-ng",
@@ -6041,15 +6059,15 @@ dependencies = [
  "ffi-support",
  "futures-util",
  "hostname",
- "jni",
+ "jni 0.21.1",
  "lazy_static",
- "opentelemetry",
+ "opentelemetry 0.19.0",
  "opentelemetry-otlp",
  "opentelemetry-semantic-conventions",
  "parking_lot 0.12.1",
  "serde",
  "serde_json",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "tokio-stream",
  "tokio-util",
  "tracing",
@@ -6064,7 +6082,7 @@ version = "0.1.0"
 dependencies = [
  "ansi_term",
  "async-std",
- "async-tungstenite 0.19.0",
+ "async-tungstenite 0.21.0",
  "backtrace",
  "bugsalot",
  "capnp",
@@ -6084,7 +6102,7 @@ dependencies = [
  "json",
  "lazy_static",
  "nix 0.26.2",
- "opentelemetry",
+ "opentelemetry 0.19.0",
  "opentelemetry-otlp",
  "opentelemetry-semantic-conventions",
  "parking_lot 0.12.1",
@@ -6096,8 +6114,8 @@ dependencies = [
  "signal-hook",
  "signal-hook-async-std",
  "stop-token",
- "sysinfo 0.28.4",
- "tokio 1.24.2",
+ "sysinfo",
+ "tokio 1.27.0",
  "tokio-stream",
  "tokio-util",
  "tracing",
@@ -6123,7 +6141,7 @@ dependencies = [
  "console_error_panic_hook",
  "eyre",
  "futures-util",
- "jni",
+ "jni 0.21.1",
  "jni-sys",
  "js-sys",
  "lazy_static",
@@ -6142,11 +6160,11 @@ dependencies = [
  "rust-fsm",
  "send_wrapper 0.6.0",
  "serial_test",
- "simplelog 0.12.0",
+ "simplelog 0.12.1",
  "static_assertions",
  "stop-token",
  "thiserror",
- "tokio 1.24.2",
+ "tokio 1.27.0",
  "tokio-util",
  "tracing",
  "tracing-oslog",
@@ -6203,12 +6221,11 @@ checksum = "9d5b2c62b4012a3e1eca5a7e077d13b3bf498c4073e33ccd58626607748ceeca"
 
 [[package]]
 name = "walkdir"
-version = "2.3.2"
+version = "2.3.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "808cf2735cd4b6866113f648b791c6adc5714537bc222d9347bb203386ffda56"
+checksum = "36df944cda56c7d8d8b7496af378e6b16de9284591917d307c9b4d313c44e698"
 dependencies = [
  "same-file",
- "winapi 0.3.9",
  "winapi-util",
 ]
 
@@ -6242,9 +6259,9 @@ checksum = "9c8d87e72b64a3b4db28d11ce29237c246188f4f51057d65a7eab63b7987e423"
 
 [[package]]
 name = "wasm-bindgen"
-version = "0.2.83"
+version = "0.2.84"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "eaf9f5aceeec8be17c128b2e93e031fb8a4d469bb9c4ae2d7dc1888b26887268"
+checksum = "31f8dcbc21f30d9b8f2ea926ecb58f6b91192c17e9d33594b3df58b2007ca53b"
 dependencies = [
  "cfg-if 1.0.0",
  "serde",
@@ -6254,24 +6271,24 @@ dependencies = [
 
 [[package]]
 name = "wasm-bindgen-backend"
-version = "0.2.83"
+version = "0.2.84"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "4c8ffb332579b0557b52d268b91feab8df3615f265d5270fec2a8c95b17c1142"
+checksum = "95ce90fd5bcc06af55a641a86428ee4229e44e07033963a2290a8e241607ccb9"
 dependencies = [
  "bumpalo",
  "log",
  "once_cell",
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
  "wasm-bindgen-shared",
 ]
 
 [[package]]
 name = "wasm-bindgen-futures"
-version = "0.4.33"
+version = "0.4.34"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "23639446165ca5a5de86ae1d8896b737ae80319560fbaa4c2887b7da6e7ebd7d"
+checksum = "f219e0d211ba40266969f6dbdd90636da12f75bee4fc9d6c23d1260dadb51454"
 dependencies = [
  "cfg-if 1.0.0",
  "js-sys",
@@ -6281,9 +6298,9 @@ dependencies = [
 
 [[package]]
 name = "wasm-bindgen-macro"
-version = "0.2.83"
+version = "0.2.84"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "052be0f94026e6cbc75cdefc9bae13fd6052cdcaf532fa6c45e7ae33a1e6c810"
+checksum = "4c21f77c0bedc37fd5dc21f897894a5ca01e7bb159884559461862ae90c0b4c5"
 dependencies = [
  "quote",
  "wasm-bindgen-macro-support",
@@ -6291,28 +6308,28 @@ dependencies = [
 
 [[package]]
 name = "wasm-bindgen-macro-support"
-version = "0.2.83"
+version = "0.2.84"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "07bc0c051dc5f23e307b13285f9d75df86bfdf816c5721e573dec1f9b8aa193c"
+checksum = "2aff81306fcac3c7515ad4e177f521b5c9a15f2b08f4e32d823066102f35a5f6"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
  "wasm-bindgen-backend",
  "wasm-bindgen-shared",
 ]
 
 [[package]]
 name = "wasm-bindgen-shared"
-version = "0.2.83"
+version = "0.2.84"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "1c38c045535d93ec4f0b4defec448e4291638ee608530863b1e2ba115d4fff7f"
+checksum = "0046fef7e28c3804e5e38bfa31ea2a0f73905319b677e57ebe37e49358989b5d"
 
 [[package]]
 name = "wasm-bindgen-test"
-version = "0.3.33"
+version = "0.3.34"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "09d2fff962180c3fadf677438054b1db62bee4aa32af26a45388af07d1287e1d"
+checksum = "6db36fc0f9fb209e88fb3642590ae0205bb5a56216dabd963ba15879fe53a30b"
 dependencies = [
  "console_error_panic_hook",
  "js-sys",
@@ -6324,9 +6341,9 @@ dependencies = [
 
 [[package]]
 name = "wasm-bindgen-test-macro"
-version = "0.3.33"
+version = "0.3.34"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "4683da3dfc016f704c9f82cf401520c4f1cb3ee440f7f52b3d6ac29506a49ca7"
+checksum = "0734759ae6b3b1717d661fe4f016efcfb9828f5edb4520c18eaee05af3b43be9"
 dependencies = [
  "proc-macro2",
  "quote",
@@ -6351,9 +6368,9 @@ checksum = "323f4da9523e9a669e1eaf9c6e763892769b1d38c623913647bfdc1532fe4549"
 
 [[package]]
 name = "web-sys"
-version = "0.3.60"
+version = "0.3.61"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "bcda906d8be16e728fd5adc5b729afad4e444e106ab28cd1c7256e54fa61510f"
+checksum = "e33b99f4b23ba3eec1a53ac264e35a755f00e966e0065077d6027c0f575b0b97"
 dependencies = [
  "js-sys",
  "wasm-bindgen",
@@ -6397,6 +6414,15 @@ dependencies = [
  "webpki 0.22.0",
 ]
 
+[[package]]
+name = "webpki-roots"
+version = "0.23.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "aa54963694b65584e170cf5dc46aeb4dcaa5584e652ff5f3952e56d66aff0125"
+dependencies = [
+ "rustls-webpki",
+]
+
 [[package]]
 name = "wee_alloc"
 version = "0.4.5"
@@ -6409,15 +6435,6 @@ dependencies = [
  "winapi 0.3.9",
 ]
 
-[[package]]
-name = "wepoll-ffi"
-version = "0.1.2"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d743fdedc5c64377b5fc2bc036b01c7fd642205a0d96356034ae3404d49eb7fb"
-dependencies = [
- "cc",
-]
-
 [[package]]
 name = "which"
 version = "4.4.0"
@@ -6503,67 +6520,95 @@ dependencies = [
  "windows_x86_64_msvc 0.38.0",
 ]
 
+[[package]]
+name = "windows"
+version = "0.48.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "e686886bc078bc1b0b600cac0147aadb815089b6e4da64016cbd754b6342700f"
+dependencies = [
+ "windows-targets 0.48.0",
+]
+
 [[package]]
 name = "windows-permissions"
 version = "0.2.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "9e2ccdc3c6bf4d4a094e031b63fadd08d8e42abd259940eb8aa5fdc09d4bf9be"
 dependencies = [
- "bitflags",
+ "bitflags 1.3.2",
  "winapi 0.3.9",
 ]
 
 [[package]]
 name = "windows-service"
-version = "0.5.0"
+version = "0.6.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "917fdb865e7ff03af9dd86609f8767bc88fefba89e8efd569de8e208af8724b3"
+checksum = "cd9db37ecb5b13762d95468a2fc6009d4b2c62801243223aabd44fca13ad13c8"
 dependencies = [
- "bitflags",
- "err-derive",
+ "bitflags 1.3.2",
  "widestring 1.0.2",
- "windows-sys 0.36.1",
+ "windows-sys 0.45.0",
 ]
 
 [[package]]
 name = "windows-sys"
-version = "0.36.1"
+version = "0.45.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ea04155a16a59f9eab786fe12a4a450e75cdb175f9e0d80da1e17db09f55b8d2"
+checksum = "75283be5efb2831d37ea142365f009c02ec203cd29a3ebecbc093d52315b66d0"
 dependencies = [
- "windows_aarch64_msvc 0.36.1",
- "windows_i686_gnu 0.36.1",
- "windows_i686_msvc 0.36.1",
- "windows_x86_64_gnu 0.36.1",
- "windows_x86_64_msvc 0.36.1",
+ "windows-targets 0.42.2",
 ]
 
 [[package]]
 name = "windows-sys"
-version = "0.42.0"
+version = "0.48.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "5a3e1820f08b8513f676f7ab6c1f99ff312fb97b553d30ff4dd86f9f15728aa7"
+checksum = "677d2418bec65e3338edb076e806bc1ec15693c5d0104683f2efe857f61056a9"
 dependencies = [
- "windows_aarch64_gnullvm",
- "windows_aarch64_msvc 0.42.1",
- "windows_i686_gnu 0.42.1",
- "windows_i686_msvc 0.42.1",
- "windows_x86_64_gnu 0.42.1",
- "windows_x86_64_gnullvm",
- "windows_x86_64_msvc 0.42.1",
+ "windows-targets 0.48.0",
+]
+
+[[package]]
+name = "windows-targets"
+version = "0.42.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "8e5180c00cd44c9b1c88adb3693291f1cd93605ded80c250a75d472756b4d071"
+dependencies = [
+ "windows_aarch64_gnullvm 0.42.2",
+ "windows_aarch64_msvc 0.42.2",
+ "windows_i686_gnu 0.42.2",
+ "windows_i686_msvc 0.42.2",
+ "windows_x86_64_gnu 0.42.2",
+ "windows_x86_64_gnullvm 0.42.2",
+ "windows_x86_64_msvc 0.42.2",
+]
+
+[[package]]
+name = "windows-targets"
+version = "0.48.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "7b1eb6f0cd7c80c79759c929114ef071b87354ce476d9d94271031c0497adfd5"
+dependencies = [
+ "windows_aarch64_gnullvm 0.48.0",
+ "windows_aarch64_msvc 0.48.0",
+ "windows_i686_gnu 0.48.0",
+ "windows_i686_msvc 0.48.0",
+ "windows_x86_64_gnu 0.48.0",
+ "windows_x86_64_gnullvm 0.48.0",
+ "windows_x86_64_msvc 0.48.0",
 ]
 
 [[package]]
 name = "windows_aarch64_gnullvm"
-version = "0.42.1"
+version = "0.42.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "8c9864e83243fdec7fc9c5444389dcbbfd258f745e7853198f365e3c4968a608"
+checksum = "597a5118570b68bc08d8d59125332c54f1ba9d9adeedeef5b99b02ba2b0698f8"
 
 [[package]]
-name = "windows_aarch64_msvc"
-version = "0.36.1"
+name = "windows_aarch64_gnullvm"
+version = "0.48.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "9bb8c3fd39ade2d67e9874ac4f3db21f0d710bee00fe7cab16949ec184eeaa47"
+checksum = "91ae572e1b79dba883e0d315474df7305d12f569b400fcf90581b06062f7e1bc"
 
 [[package]]
 name = "windows_aarch64_msvc"
@@ -6573,15 +6618,15 @@ checksum = "b12add87e2fb192fff3f4f7e4342b3694785d79f3a64e2c20d5ceb5ccbcfc3cd"
 
 [[package]]
 name = "windows_aarch64_msvc"
-version = "0.42.1"
+version = "0.42.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "4c8b1b673ffc16c47a9ff48570a9d85e25d265735c503681332589af6253c6c7"
+checksum = "e08e8864a60f06ef0d0ff4ba04124db8b0fb3be5776a5cd47641e942e58c4d43"
 
 [[package]]
-name = "windows_i686_gnu"
-version = "0.36.1"
+name = "windows_aarch64_msvc"
+version = "0.48.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "180e6ccf01daf4c426b846dfc66db1fc518f074baa793aa7d9b9aaeffad6a3b6"
+checksum = "b2ef27e0d7bdfcfc7b868b317c1d32c641a6fe4629c171b8928c7b08d98d7cf3"
 
 [[package]]
 name = "windows_i686_gnu"
@@ -6591,15 +6636,15 @@ checksum = "4c98f2db372c23965c5e0f43896a8f0316dc0fbe48d1aa65bea9bdd295d43c15"
 
 [[package]]
 name = "windows_i686_gnu"
-version = "0.42.1"
+version = "0.42.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "de3887528ad530ba7bdbb1faa8275ec7a1155a45ffa57c37993960277145d640"
+checksum = "c61d927d8da41da96a81f029489353e68739737d3beca43145c8afec9a31a84f"
 
 [[package]]
-name = "windows_i686_msvc"
-version = "0.36.1"
+name = "windows_i686_gnu"
+version = "0.48.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e2e7917148b2812d1eeafaeb22a97e4813dfa60a3f8f78ebe204bcc88f12f024"
+checksum = "622a1962a7db830d6fd0a69683c80a18fda201879f0f447f065a3b7467daa241"
 
 [[package]]
 name = "windows_i686_msvc"
@@ -6609,15 +6654,15 @@ checksum = "cdf0569be0f2863ab6a12a6ba841fcfa7d107cbc7545a3ebd57685330db0a3ff"
 
 [[package]]
 name = "windows_i686_msvc"
-version = "0.42.1"
+version = "0.42.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "bf4d1122317eddd6ff351aa852118a2418ad4214e6613a50e0191f7004372605"
+checksum = "44d840b6ec649f480a41c8d80f9c65108b92d89345dd94027bfe06ac444d1060"
 
 [[package]]
-name = "windows_x86_64_gnu"
-version = "0.36.1"
+name = "windows_i686_msvc"
+version = "0.48.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "4dcd171b8776c41b97521e5da127a2d86ad280114807d0b2ab1e462bc764d9e1"
+checksum = "4542c6e364ce21bf45d69fdd2a8e455fa38d316158cfd43b3ac1c5b1b19f8e00"
 
 [[package]]
 name = "windows_x86_64_gnu"
@@ -6627,21 +6672,27 @@ checksum = "905858262c8380a36f32cb8c1990d7e7c3b7a8170e58ed9a98ca6d940b7ea9f1"
 
 [[package]]
 name = "windows_x86_64_gnu"
-version = "0.42.1"
+version = "0.42.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c1040f221285e17ebccbc2591ffdc2d44ee1f9186324dd3e84e99ac68d699c45"
+checksum = "8de912b8b8feb55c064867cf047dda097f92d51efad5b491dfb98f6bbb70cb36"
+
+[[package]]
+name = "windows_x86_64_gnu"
+version = "0.48.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "ca2b8a661f7628cbd23440e50b05d705db3686f894fc9580820623656af974b1"
 
 [[package]]
 name = "windows_x86_64_gnullvm"
-version = "0.42.1"
+version = "0.42.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "628bfdf232daa22b0d64fdb62b09fcc36bb01f05a3939e20ab73aaf9470d0463"
+checksum = "26d41b46a36d453748aedef1486d5c7a85db22e56aff34643984ea85514e94a3"
 
 [[package]]
-name = "windows_x86_64_msvc"
-version = "0.36.1"
+name = "windows_x86_64_gnullvm"
+version = "0.48.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c811ca4a8c853ef420abd8592ba53ddbbac90410fab6903b3e79972a631f7680"
+checksum = "7896dbc1f41e08872e9d5e8f8baa8fdd2677f29468c4e156210174edc7f7b953"
 
 [[package]]
 name = "windows_x86_64_msvc"
@@ -6651,9 +6702,24 @@ checksum = "890c3c6341d441ffb38f705f47196e3665dc6dd79f6d72fa185d937326730561"
 
 [[package]]
 name = "windows_x86_64_msvc"
-version = "0.42.1"
+version = "0.42.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "447660ad36a13288b1db4d4248e857b510e8c3a225c822ba4fb748c0aafecffd"
+checksum = "9aec5da331524158c6d1a4ac0ab1541149c0b9505fde06423b02f5ef0106b9f0"
+
+[[package]]
+name = "windows_x86_64_msvc"
+version = "0.48.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "1a515f5799fe4961cb532f983ce2b23082366b898e52ffbce459c86f67c8378a"
+
+[[package]]
+name = "winnow"
+version = "0.4.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "ae8970b36c66498d8ff1d66685dc86b91b29db0c7739899012f63a63814b4b28"
+dependencies = [
+ "memchr",
+]
 
 [[package]]
 name = "winreg"
@@ -6676,16 +6742,17 @@ dependencies = [
 
 [[package]]
 name = "ws_stream_wasm"
-version = "0.7.3"
+version = "0.7.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "47ca1ab42f5afed7fc332b22b6e932ca5414b209465412c8cdf0ad23bc0de645"
+checksum = "7999f5f4217fe3818726b66257a4475f71e74ffd190776ad053fa159e50737f5"
 dependencies = [
  "async_io_stream",
  "futures",
  "js-sys",
+ "log",
  "pharos",
  "rustc_version 0.4.0",
- "send_wrapper 0.5.0",
+ "send_wrapper 0.6.0",
  "thiserror",
  "wasm-bindgen",
  "wasm-bindgen-futures",
@@ -6775,7 +6842,7 @@ dependencies = [
  "proc-macro-crate 0.1.5",
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
 
 [[package]]
@@ -6789,14 +6856,13 @@ dependencies = [
 
 [[package]]
 name = "zeroize_derive"
-version = "1.3.3"
+version = "1.4.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "44bf07cb3e50ea2003396695d58bf46bc9887a1f362260446fad6bc4e79bd36c"
+checksum = "ce36e65b0d2999d2aafac989fb249189a141aee1f53c612c1f37d72631959f69"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn",
- "synstructure",
+ "syn 2.0.15",
 ]
 
 [[package]]
@@ -6819,8 +6885,8 @@ version = "2.10.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "e4ca5e22593eb4212382d60d26350065bf2a02c34b85bc850474a74b589a3de9"
 dependencies = [
- "proc-macro-crate 1.3.0",
+ "proc-macro-crate 1.3.1",
  "proc-macro2",
  "quote",
- "syn",
+ "syn 1.0.109",
 ]
diff --git a/veilid-core/Cargo.toml b/veilid-core/Cargo.toml
index d9c064d8..60c077f4 100644
--- a/veilid-core/Cargo.toml
+++ b/veilid-core/Cargo.toml
@@ -65,9 +65,7 @@ rtnetlink = { version = "^0", default-features = false, optional = true }
 async-std-resolver = { version = "^0", optional = true }
 trust-dns-resolver = { version = "^0", optional = true }
 keyvaluedb = { path = "../external/keyvaluedb/keyvaluedb" }
-#rkyv = { version = "^0", default_features = false, features = ["std", "alloc", "strict", "size_32", "validation"] }
-rkyv = { git = "https://github.com/rkyv/rkyv.git", rev = "57e2a8d", default_features = false, features = ["std", "alloc", "strict", "size_32", "validation"] }
-bytecheck = "^0"
+rkyv = { version = "^0", default_features = false, features = ["std", "alloc", "strict", "size_32", "validation"] }
 data-encoding = { version = "^2" }
 weak-table = "0.3.2"
 
@@ -91,7 +89,7 @@ rustls = "^0.19"
 rustls-pemfile = "^0.2"
 futures-util = { version = "^0", default-features = false, features = ["async-await", "sink", "std", "io"] }
 keyvaluedb-sqlite = { path = "../external/keyvaluedb/keyvaluedb-sqlite" }
-socket2 = "^0"
+socket2 = { version = "^0", features = ["all"] }
 bugsalot = "^0"
 chrono = "^0"
 libc = "^0"
diff --git a/veilid-core/src/intf/native/protected_store.rs b/veilid-core/src/intf/native/protected_store.rs
index 022a3477..9bc08620 100644
--- a/veilid-core/src/intf/native/protected_store.rs
+++ b/veilid-core/src/intf/native/protected_store.rs
@@ -1,7 +1,7 @@
 use crate::*;
 use data_encoding::BASE64URL_NOPAD;
 use keyring_manager::*;
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
+use rkyv::{bytecheck::CheckBytes, Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
 use std::path::Path;
 
 pub struct ProtectedStoreInner {
@@ -175,7 +175,7 @@ impl ProtectedStore {
         K: AsRef<str> + fmt::Debug,
         T: RkyvArchive,
         <T as RkyvArchive>::Archived:
-            for<'t> bytecheck::CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
+            for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
         <T as RkyvArchive>::Archived:
             RkyvDeserialize<T, rkyv::de::deserializers::SharedDeserializeMap>,
     {
diff --git a/veilid-core/src/intf/table_db.rs b/veilid-core/src/intf/table_db.rs
index 6c93dcbf..194a19fe 100644
--- a/veilid-core/src/intf/table_db.rs
+++ b/veilid-core/src/intf/table_db.rs
@@ -1,5 +1,8 @@
 use crate::*;
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
+use rkyv::{
+    bytecheck::CheckBytes, Archive as RkyvArchive, Deserialize as RkyvDeserialize,
+    Serialize as RkyvSerialize,
+};
 
 cfg_if! {
     if #[cfg(target_arch = "wasm32")] {
@@ -127,7 +130,7 @@ impl TableDB {
     where
         T: RkyvArchive,
         <T as RkyvArchive>::Archived:
-            for<'t> bytecheck::CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
+            for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
         <T as RkyvArchive>::Archived:
             RkyvDeserialize<T, rkyv::de::deserializers::SharedDeserializeMap>,
     {
diff --git a/veilid-core/src/intf/wasm/protected_store.rs b/veilid-core/src/intf/wasm/protected_store.rs
index 23288fbc..842de5ab 100644
--- a/veilid-core/src/intf/wasm/protected_store.rs
+++ b/veilid-core/src/intf/wasm/protected_store.rs
@@ -1,6 +1,9 @@
 use crate::*;
 use data_encoding::BASE64URL_NOPAD;
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
+use rkyv::{
+    bytecheck::CheckBytes, Archive as RkyvArchive, Deserialize as RkyvDeserialize,
+    Serialize as RkyvSerialize,
+};
 
 use web_sys::*;
 
@@ -155,7 +158,7 @@ impl ProtectedStore {
         K: AsRef<str> + fmt::Debug,
         T: RkyvArchive,
         <T as RkyvArchive>::Archived:
-            for<'t> bytecheck::CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
+            for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
         <T as RkyvArchive>::Archived:
             RkyvDeserialize<T, rkyv::de::deserializers::SharedDeserializeMap>,
     {
diff --git a/veilid-core/src/lib.rs b/veilid-core/src/lib.rs
index 18a6f221..c9accd40 100644
--- a/veilid-core/src/lib.rs
+++ b/veilid-core/src/lib.rs
@@ -30,7 +30,6 @@ mod routing_table;
 mod rpc_processor;
 mod storage_manager;
 mod veilid_api;
-#[macro_use]
 mod veilid_config;
 mod veilid_layer_filter;
 
@@ -41,6 +40,13 @@ pub use self::veilid_config::*;
 pub use self::veilid_layer_filter::*;
 pub use veilid_tools as tools;
 
+use enumset::*;
+use rkyv::{
+    bytecheck, bytecheck::CheckBytes, Archive as RkyvArchive, Deserialize as RkyvDeserialize,
+    Serialize as RkyvSerialize,
+};
+use serde::*;
+
 pub mod veilid_capnp {
     include!(concat!(env!("OUT_DIR"), "/proto/veilid_capnp.rs"));
 }
diff --git a/veilid-core/src/network_manager/types/signal_info.rs b/veilid-core/src/network_manager/types/signal_info.rs
index f81aef5c..bf2aa861 100644
--- a/veilid-core/src/network_manager/types/signal_info.rs
+++ b/veilid-core/src/network_manager/types/signal_info.rs
@@ -20,3 +20,32 @@ pub enum SignalInfo {
     },
     // XXX: WebRTC
 }
+
+impl SignalInfo {
+    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+        match self {
+            SignalInfo::HolePunch { receipt, peer_info } => {
+                if receipt.len() < MIN_RECEIPT_SIZE {
+                    return Err(RPCError::protocol("SignalInfo HolePunch receipt too short"));
+                }
+                if receipt.len() > MAX_RECEIPT_SIZE {
+                    return Err(RPCError::protocol("SignalInfo HolePunch receipt too long"));
+                }
+                peer_info.validate(crypto).map_err(RPCError::protocol)
+            }
+            SignalInfo::ReverseConnect { receipt, peer_info } => {
+                if receipt.len() < MIN_RECEIPT_SIZE {
+                    return Err(RPCError::protocol(
+                        "SignalInfo ReverseConnect receipt too short",
+                    ));
+                }
+                if receipt.len() > MAX_RECEIPT_SIZE {
+                    return Err(RPCError::protocol(
+                        "SignalInfo ReverseConnect receipt too long",
+                    ));
+                }
+                peer_info.validate(crypto).map_err(RPCError::protocol)
+            }
+        }
+    }
+}
diff --git a/veilid-core/src/routing_table/mod.rs b/veilid-core/src/routing_table/mod.rs
index ce165a60..021d9c40 100644
--- a/veilid-core/src/routing_table/mod.rs
+++ b/veilid-core/src/routing_table/mod.rs
@@ -12,7 +12,7 @@ mod stats_accounting;
 mod tasks;
 mod types;
 
-use crate::*;
+use super::*;
 
 use crate::crypto::*;
 use crate::network_manager::*;
diff --git a/veilid-core/src/routing_table/privacy.rs b/veilid-core/src/routing_table/privacy.rs
index a05b08db..06819993 100644
--- a/veilid-core/src/routing_table/privacy.rs
+++ b/veilid-core/src/routing_table/privacy.rs
@@ -25,13 +25,7 @@ impl RouteNode {
     pub fn validate(&self, crypto: Crypto) -> Result<(), VeilidAPIError> {
         match self {
             RouteNode::NodeId(_) => Ok(()),
-            RouteNode::PeerInfo(pi) => {
-                let validated_node_ids = pi.validate(crypto)?;
-                if validated_node_ids.is_empty() {
-                    apibail_generic!("no validated node ids for route node");
-                }
-                Ok(())
-            }
+            RouteNode::PeerInfo(pi) => pi.validate(crypto),
         }
     }
 
diff --git a/veilid-core/src/routing_table/routing_domains.rs b/veilid-core/src/routing_table/routing_domains.rs
index ca3693c1..096d777d 100644
--- a/veilid-core/src/routing_table/routing_domains.rs
+++ b/veilid-core/src/routing_table/routing_domains.rs
@@ -117,7 +117,7 @@ impl RoutingDomainDetailCommon {
             .and_then(|rn| {
                 let opt_relay_pi = rn.locked(rti).make_peer_info(self.routing_domain);
                 if let Some(relay_pi) = opt_relay_pi {
-                    let (relay_ids, relay_sni) = relay_pi.into_fields();
+                    let (relay_ids, relay_sni) = relay_pi.destructure();
                     match relay_sni {
                         SignedNodeInfo::Direct(d) => Some((relay_ids, d)), 
                         SignedNodeInfo::Relayed(_) => {
diff --git a/veilid-core/src/routing_table/routing_table_inner.rs b/veilid-core/src/routing_table/routing_table_inner.rs
index 42ec8e96..4ec518cb 100644
--- a/veilid-core/src/routing_table/routing_table_inner.rs
+++ b/veilid-core/src/routing_table/routing_table_inner.rs
@@ -835,8 +835,9 @@ impl RoutingTableInner {
             }
         }
 
-        self.create_node_ref(outer_self, peer_info.node_ids(), |_rti, e| {
-            e.update_signed_node_info(routing_domain, peer_info.into_signed_node_info());
+        let (node_ids, signed_node_info) = peer_info.destructure();
+        self.create_node_ref(outer_self, &node_ids, |_rti, e| {
+            e.update_signed_node_info(routing_domain, signed_node_info);
         })
         .map(|mut nr| {
             nr.set_filter(Some(
diff --git a/veilid-core/src/routing_table/types/peer_info.rs b/veilid-core/src/routing_table/types/peer_info.rs
index 9c91382e..179de3ef 100644
--- a/veilid-core/src/routing_table/types/peer_info.rs
+++ b/veilid-core/src/routing_table/types/peer_info.rs
@@ -16,8 +16,13 @@ impl PeerInfo {
         }
     }
 
-    pub fn validate(&self, crypto: Crypto) -> Result<TypedKeySet, VeilidAPIError> {
-        self.signed_node_info.validate(&self.node_ids, crypto)
+    pub fn validate(&self, crypto: Crypto) -> Result<(), VeilidAPIError> {
+        let validated_node_ids = self.signed_node_info.validate(&self.node_ids, crypto)?;
+        if validated_node_ids.is_empty() {
+            // Shouldn't get here because signed node info validation also checks this
+            apibail_generic!("no validated node ids");
+        }
+        Ok(())
     }
 
     pub fn node_ids(&self) -> &TypedKeySet {
@@ -26,10 +31,19 @@ impl PeerInfo {
     pub fn signed_node_info(&self) -> &SignedNodeInfo {
         &self.signed_node_info
     }
-    pub fn into_signed_node_info(self) -> SignedNodeInfo {
-        self.signed_node_info
-    }
-    pub fn into_fields(self) -> (TypedKeySet, SignedNodeInfo) {
+    pub fn destructure(self) -> (TypedKeySet, SignedNodeInfo) {
         (self.node_ids, self.signed_node_info)
     }
+
+    pub fn validate_vec(peer_info_vec: &mut Vec<PeerInfo>, crypto: Crypto) {
+        let mut n = 0usize;
+        while n < peer_info_vec.len() {
+            let pi = peer_info_vec.get(n).unwrap();
+            if pi.validate(crypto.clone()).is_err() {
+                peer_info_vec.remove(n);
+            } else {
+                n += 1;
+            }
+        }
+    }
 }
diff --git a/veilid-core/src/rpc_processor/coders/mod.rs b/veilid-core/src/rpc_processor/coders/mod.rs
index 8ede58ce..8ea4871e 100644
--- a/veilid-core/src/rpc_processor/coders/mod.rs
+++ b/veilid-core/src/rpc_processor/coders/mod.rs
@@ -57,3 +57,19 @@ pub use typed_signature::*;
 pub use value_detail::*;
 
 use super::*;
+
+#[derive(Debug, Clone)]
+pub struct DecodeContext {
+    config: VeilidConfig,
+}
+
+#[derive(Debug, Clone)]
+pub enum QuestionContext {
+    GetValue(ValidateGetValueContext),
+}
+
+#[derive(Clone)]
+pub struct RPCValidateContext {
+    crypto: Crypto,
+    question_context: Option<QuestionContext>,
+}
diff --git a/veilid-core/src/rpc_processor/coders/operations/answer.rs b/veilid-core/src/rpc_processor/coders/operations/answer.rs
index c38f64d7..9f01da68 100644
--- a/veilid-core/src/rpc_processor/coders/operations/answer.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/answer.rs
@@ -9,15 +9,15 @@ impl RPCAnswer {
     pub fn new(detail: RPCAnswerDetail) -> Self {
         Self { detail }
     }
-    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
-        self.detail.validate(crypto)
-    }
-    pub fn into_detail(self) -> RPCAnswerDetail {
-        self.detail
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        self.detail.validate(validate_context)
     }
     pub fn desc(&self) -> &'static str {
         self.detail.desc()
     }
+    pub fn destructure(self) -> RPCAnswerDetail {
+        self.detail
+    }
     pub fn decode(reader: &veilid_capnp::answer::Reader) -> Result<RPCAnswer, RPCError> {
         let d_reader = reader.get_detail();
         let detail = RPCAnswerDetail::decode(&d_reader)?;
@@ -60,19 +60,19 @@ impl RPCAnswerDetail {
             RPCAnswerDetail::CancelTunnelA(_) => "CancelTunnelA",
         }
     }
-    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         match self {
-            RPCAnswerDetail::StatusA(r) => r.validate(crypto),
-            RPCAnswerDetail::FindNodeA(r) => r.validate(crypto),
-            RPCAnswerDetail::AppCallA(r) => r.validate(crypto),
-            RPCAnswerDetail::GetValueA(r) => r.validate(crypto),
-            RPCAnswerDetail::SetValueA(r) => r.validate(crypto),
-            RPCAnswerDetail::WatchValueA(r) => r.validate(crypto),
-            RPCAnswerDetail::SupplyBlockA(r) => r.validate(crypto),
-            RPCAnswerDetail::FindBlockA(r) => r.validate(crypto),
-            RPCAnswerDetail::StartTunnelA(r) => r.validate(crypto),
-            RPCAnswerDetail::CompleteTunnelA(r) => r.validate(crypto),
-            RPCAnswerDetail::CancelTunnelA(r) => r.validate(crypto),
+            RPCAnswerDetail::StatusA(r) => r.validate(validate_context),
+            RPCAnswerDetail::FindNodeA(r) => r.validate(validate_context),
+            RPCAnswerDetail::AppCallA(r) => r.validate(validate_context),
+            RPCAnswerDetail::GetValueA(r) => r.validate(validate_context),
+            RPCAnswerDetail::SetValueA(r) => r.validate(validate_context),
+            RPCAnswerDetail::WatchValueA(r) => r.validate(validate_context),
+            RPCAnswerDetail::SupplyBlockA(r) => r.validate(validate_context),
+            RPCAnswerDetail::FindBlockA(r) => r.validate(validate_context),
+            RPCAnswerDetail::StartTunnelA(r) => r.validate(validate_context),
+            RPCAnswerDetail::CompleteTunnelA(r) => r.validate(validate_context),
+            RPCAnswerDetail::CancelTunnelA(r) => r.validate(validate_context),
         }
     }
     pub fn decode(
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation.rs b/veilid-core/src/rpc_processor/coders/operations/operation.rs
index c0161b6d..af5df0b4 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation.rs
@@ -16,11 +16,11 @@ impl RPCOperationKind {
         }
     }
 
-    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         match self {
-            RPCOperationKind::Question(r) => r.validate(crypto),
-            RPCOperationKind::Statement(r) => r.validate(crypto),
-            RPCOperationKind::Answer(r) => r.validate(crypto),
+            RPCOperationKind::Question(r) => r.validate(validate_context),
+            RPCOperationKind::Statement(r) => r.validate(validate_context),
+            RPCOperationKind::Answer(r) => r.validate(validate_context),
         }
     }
 
@@ -98,13 +98,15 @@ impl RPCOperation {
         }
     }
 
-    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         // Validate sender peer info
         if let Some(sender_peer_info) = &self.opt_sender_peer_info {
-            sender_peer_info.validate(crypto.clone())?;
+            sender_peer_info
+                .validate(validate_context.crypto.clone())
+                .map_err(RPCError::protocol)?;
         }
         // Validate operation kind
-        self.kind.validate(crypto)
+        self.kind.validate(validate_context)
     }
 
     pub fn op_id(&self) -> OperationId {
@@ -122,11 +124,19 @@ impl RPCOperation {
         &self.kind
     }
 
-    pub fn into_kind(self) -> RPCOperationKind {
-        self.kind
+    pub fn destructure(self) -> (OperationId, Option<PeerInfo>, Timestamp, RPCOperationKind) {
+        (
+            self.op_id,
+            self.opt_sender_peer_info,
+            self.target_node_info_ts,
+            self.kind,
+        )
     }
 
-    pub fn decode(operation_reader: &veilid_capnp::operation::Reader) -> Result<Self, RPCError> {
+    pub fn decode(
+        context: &DecodeContext,
+        operation_reader: &veilid_capnp::operation::Reader,
+    ) -> Result<Self, RPCError> {
         let op_id = OperationId::new(operation_reader.get_op_id());
 
         let sender_peer_info = if operation_reader.has_sender_peer_info() {
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_app_call.rs b/veilid-core/src/rpc_processor/coders/operations/operation_app_call.rs
index 0015134a..7f2d98e0 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_app_call.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_app_call.rs
@@ -1,20 +1,30 @@
 use super::*;
 
+const MAX_APP_CALL_Q_MESSAGE_LEN: usize = 32768;
+const MAX_APP_CALL_A_MESSAGE_LEN: usize = 32768;
+
 #[derive(Debug, Clone)]
 pub struct RPCOperationAppCallQ {
-    pub message: Vec<u8>,
+    message: Vec<u8>,
 }
 
 impl RPCOperationAppCallQ {
-    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
-     xxx length should be checked in decode verify this
+    pub fn new(message: &[u8]) -> Result<Self, RPCError> {
+        if message.len() > MAX_APP_CALL_Q_MESSAGE_LEN {
+            return Err(RPCError::protocol("AppCallQ message too long to set"));
+        }
+        Ok(Self {
+            message: message.to_vec(),
+        })
+    }
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         Ok(())
     }
     pub fn decode(
         reader: &veilid_capnp::operation_app_call_q::Reader,
     ) -> Result<RPCOperationAppCallQ, RPCError> {
-        let message = reader.get_message().map_err(RPCError::protocol)?.to_vec();
-        Ok(RPCOperationAppCallQ { message })
+        let mr = reader.get_message().map_err(RPCError::protocol)?;
+        RPCOperationAppCallQ::new(mr)
     }
     pub fn encode(
         &self,
@@ -23,19 +33,39 @@ impl RPCOperationAppCallQ {
         builder.set_message(&self.message);
         Ok(())
     }
+
+    pub fn message(&self) -> &[u8] {
+        &self.message
+    }
+
+    pub fn destructure(self) -> Vec<u8> {
+        self.message
+    }
 }
 
 #[derive(Debug, Clone)]
 pub struct RPCOperationAppCallA {
-    pub message: Vec<u8>,
+    message: Vec<u8>,
 }
 
 impl RPCOperationAppCallA {
+    pub fn new(message: &[u8]) -> Result<Self, RPCError> {
+        if message.len() > MAX_APP_CALL_A_MESSAGE_LEN {
+            return Err(RPCError::protocol("AppCallA message too long to set"));
+        }
+        Ok(Self {
+            message: message.to_vec(),
+        })
+    }
+
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        Ok(())
+    }
     pub fn decode(
         reader: &veilid_capnp::operation_app_call_a::Reader,
     ) -> Result<RPCOperationAppCallA, RPCError> {
-        let message = reader.get_message().map_err(RPCError::protocol)?.to_vec();
-        Ok(RPCOperationAppCallA { message })
+        let mr = reader.get_message().map_err(RPCError::protocol)?;
+        RPCOperationAppCallA::new(mr)
     }
     pub fn encode(
         &self,
@@ -44,4 +74,12 @@ impl RPCOperationAppCallA {
         builder.set_message(&self.message);
         Ok(())
     }
+
+    pub fn message(&self) -> &[u8] {
+        &self.message
+    }
+
+    pub fn destructure(self) -> Vec<u8> {
+        self.message
+    }
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_app_message.rs b/veilid-core/src/rpc_processor/coders/operations/operation_app_message.rs
index 5c969be7..17612cfc 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_app_message.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_app_message.rs
@@ -1,16 +1,30 @@
 use super::*;
 
+const MAX_APP_MESSAGE_MESSAGE_LEN: usize = 32768;
+
 #[derive(Debug, Clone)]
 pub struct RPCOperationAppMessage {
-    pub message: Vec<u8>,
+    message: Vec<u8>,
 }
 
 impl RPCOperationAppMessage {
+    pub fn new(message: &[u8]) -> Result<Self, RPCError> {
+        if message.len() > MAX_APP_MESSAGE_MESSAGE_LEN {
+            return Err(RPCError::protocol("AppMessage message too long to set"));
+        }
+        Ok(Self {
+            message: message.to_vec(),
+        })
+    }
+
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        Ok(())
+    }
     pub fn decode(
         reader: &veilid_capnp::operation_app_message::Reader,
     ) -> Result<RPCOperationAppMessage, RPCError> {
-        let message = reader.get_message().map_err(RPCError::protocol)?.to_vec();
-        Ok(RPCOperationAppMessage { message })
+        let mr = reader.get_message().map_err(RPCError::protocol)?;
+        RPCOperationAppMessage::new(mr)
     }
     pub fn encode(
         &self,
@@ -19,4 +33,12 @@ impl RPCOperationAppMessage {
         builder.set_message(&self.message);
         Ok(())
     }
+
+    pub fn message(&self) -> &[u8] {
+        &self.message
+    }
+
+    pub fn destructure(self) -> Vec<u8> {
+        self.message
+    }
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_cancel_tunnel.rs b/veilid-core/src/rpc_processor/coders/operations/operation_cancel_tunnel.rs
index 3484ab0c..1a892676 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_cancel_tunnel.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_cancel_tunnel.rs
@@ -2,10 +2,16 @@ use super::*;
 
 #[derive(Debug, Clone)]
 pub struct RPCOperationCancelTunnelQ {
-    pub id: TunnelId,
+    id: TunnelId,
 }
 
 impl RPCOperationCancelTunnelQ {
+    pub fn new(id: TunnelId) -> Self {
+        Self { id }
+    }
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        Ok(())
+    }
     pub fn decode(
         reader: &veilid_capnp::operation_cancel_tunnel_q::Reader,
     ) -> Result<RPCOperationCancelTunnelQ, RPCError> {
@@ -21,6 +27,13 @@ impl RPCOperationCancelTunnelQ {
 
         Ok(())
     }
+    pub fn id(&self) -> TunnelId {
+        self.id
+    }
+
+    pub fn destructure(self) -> TunnelId {
+        self.id
+    }
 }
 
 #[derive(Debug, Clone)]
@@ -30,6 +43,15 @@ pub enum RPCOperationCancelTunnelA {
 }
 
 impl RPCOperationCancelTunnelA {
+    pub fn new_tunnel(id: TunnelId) -> Self {
+        Self::Tunnel(id)
+    }
+    pub fn new_error(error: TunnelError) -> Self {
+        Self::Error(error)
+    }
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        Ok(())
+    }
     pub fn decode(
         reader: &veilid_capnp::operation_cancel_tunnel_a::Reader,
     ) -> Result<RPCOperationCancelTunnelA, RPCError> {
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_complete_tunnel.rs b/veilid-core/src/rpc_processor/coders/operations/operation_complete_tunnel.rs
index e4737a2d..8ec27b59 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_complete_tunnel.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_complete_tunnel.rs
@@ -2,13 +2,24 @@ use super::*;
 
 #[derive(Debug, Clone)]
 pub struct RPCOperationCompleteTunnelQ {
-    pub id: TunnelId,
-    pub local_mode: TunnelMode,
-    pub depth: u8,
-    pub endpoint: TunnelEndpoint,
+    id: TunnelId,
+    local_mode: TunnelMode,
+    depth: u8,
+    endpoint: TunnelEndpoint,
 }
 
 impl RPCOperationCompleteTunnelQ {
+    pub fn new(id: TunnelId, local_mode: TunnelMode, depth: u8, endpoint: TunnelEndpoint) -> Self {
+        Self {
+            id,
+            local_mode,
+            depth,
+            endpoint,
+        }
+    }
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        Ok(())
+    }
     pub fn decode(
         reader: &veilid_capnp::operation_complete_tunnel_q::Reader,
     ) -> Result<RPCOperationCompleteTunnelQ, RPCError> {
@@ -43,6 +54,23 @@ impl RPCOperationCompleteTunnelQ {
 
         Ok(())
     }
+    pub fn id(&self) -> TunnelId {
+        self.id
+    }
+
+    pub fn local_mode(&self) -> TunnelMode {
+        self.local_mode
+    }
+    pub fn depth(&self) -> u8 {
+        self.depth
+    }
+    pub fn endpoint(&self) -> &TunnelEndpoint {
+        &self.endpoint
+    }
+
+    pub fn destructure(self) -> (TunnelId, TunnelMode, u8, TunnelEndpoint) {
+        (self.id, self.local_mode, self.depth, self.endpoint)
+    }
 }
 
 #[derive(Debug, Clone)]
@@ -52,6 +80,16 @@ pub enum RPCOperationCompleteTunnelA {
 }
 
 impl RPCOperationCompleteTunnelA {
+    pub fn new_tunnel(tunnel: FullTunnel) -> Self {
+        Self::Tunnel(tunnel)
+    }
+    pub fn new_error(error: TunnelError) -> Self {
+        Self::Error(error)
+    }
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        Ok(())
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_complete_tunnel_a::Reader,
     ) -> Result<RPCOperationCompleteTunnelA, RPCError> {
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_find_block.rs b/veilid-core/src/rpc_processor/coders/operations/operation_find_block.rs
index 6c69457e..80a2075e 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_find_block.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_find_block.rs
@@ -1,18 +1,28 @@
 use super::*;
 
+const MAX_FIND_BLOCK_A_DATA_LEN: usize = 32768;
+const MAX_FIND_BLOCK_A_SUPPLIERS_LEN: usize = 10;
+const MAX_FIND_BLOCK_A_PEERS_LEN: usize = 10;
+
 #[derive(Debug, Clone)]
 pub struct RPCOperationFindBlockQ {
-    pub block_id: TypedKey,
+    block_id: TypedKey,
 }
 
 impl RPCOperationFindBlockQ {
+    pub fn new(block_id: TypedKey) -> Self {
+        Self { block_id }
+    }
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        Ok(())
+    }
     pub fn decode(
         reader: &veilid_capnp::operation_find_block_q::Reader,
     ) -> Result<RPCOperationFindBlockQ, RPCError> {
         let bi_reader = reader.get_block_id().map_err(RPCError::protocol)?;
         let block_id = decode_typed_key(&bi_reader)?;
 
-        Ok(RPCOperationFindBlockQ { block_id })
+        Ok(RPCOperationFindBlockQ::new(block_id))
     }
     pub fn encode(
         &self,
@@ -23,22 +33,68 @@ impl RPCOperationFindBlockQ {
 
         Ok(())
     }
+
+    pub fn block_id(&self) -> TypedKey {
+        self.block_id
+    }
+
+    pub fn destructure(self) -> TypedKey {
+        self.block_id
+    }
 }
 
 #[derive(Debug, Clone)]
 pub struct RPCOperationFindBlockA {
-    pub data: Vec<u8>,
-    pub suppliers: Vec<PeerInfo>,
-    pub peers: Vec<PeerInfo>,
+    data: Vec<u8>,
+    suppliers: Vec<PeerInfo>,
+    peers: Vec<PeerInfo>,
 }
 
 impl RPCOperationFindBlockA {
+    pub fn new(
+        data: &[u8],
+        suppliers: Vec<PeerInfo>,
+        peers: Vec<PeerInfo>,
+    ) -> Result<Self, RPCError> {
+        if data.len() > MAX_FIND_BLOCK_A_DATA_LEN {
+            return Err(RPCError::protocol("find block data length too long"));
+        }
+        if suppliers.len() > MAX_FIND_BLOCK_A_SUPPLIERS_LEN {
+            return Err(RPCError::protocol("find block suppliers length too long"));
+        }
+        if peers.len() > MAX_FIND_BLOCK_A_PEERS_LEN {
+            return Err(RPCError::protocol("find block peers length too long"));
+        }
+
+        Ok(Self {
+            data: data.to_vec(),
+            suppliers,
+            peers,
+        })
+    }
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        PeerInfo::validate_vec(&mut self.suppliers, validate_context.crypto.clone());
+        PeerInfo::validate_vec(&mut self.peers, validate_context.crypto.clone());
+        Ok(())
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_find_block_a::Reader,
     ) -> Result<RPCOperationFindBlockA, RPCError> {
-        let data = reader.get_data().map_err(RPCError::protocol)?.to_vec();
-
+        let data = reader.get_data().map_err(RPCError::protocol)?;
         let suppliers_reader = reader.get_suppliers().map_err(RPCError::protocol)?;
+        let peers_reader = reader.get_peers().map_err(RPCError::protocol)?;
+
+        if data.len() > MAX_FIND_BLOCK_A_DATA_LEN {
+            return Err(RPCError::protocol("find block data length too long"));
+        }
+        if suppliers_reader.len() as usize > MAX_FIND_BLOCK_A_SUPPLIERS_LEN {
+            return Err(RPCError::protocol("find block suppliers length too long"));
+        }
+        if peers_reader.len() as usize > MAX_FIND_BLOCK_A_PEERS_LEN {
+            return Err(RPCError::protocol("find block peers length too long"));
+        }
+
         let mut suppliers = Vec::<PeerInfo>::with_capacity(
             suppliers_reader
                 .len()
@@ -50,7 +106,6 @@ impl RPCOperationFindBlockA {
             suppliers.push(peer_info);
         }
 
-        let peers_reader = reader.get_peers().map_err(RPCError::protocol)?;
         let mut peers = Vec::<PeerInfo>::with_capacity(
             peers_reader
                 .len()
@@ -62,11 +117,7 @@ impl RPCOperationFindBlockA {
             peers.push(peer_info);
         }
 
-        Ok(RPCOperationFindBlockA {
-            data,
-            suppliers,
-            peers,
-        })
+        RPCOperationFindBlockA::new(data, suppliers, peers)
     }
 
     pub fn encode(
@@ -99,4 +150,18 @@ impl RPCOperationFindBlockA {
 
         Ok(())
     }
+
+    pub fn data(&self) -> &[u8] {
+        &self.data
+    }
+    pub fn suppliers(&self) -> &[PeerInfo] {
+        &self.suppliers
+    }
+    pub fn peers(&self) -> &[PeerInfo] {
+        &self.peers
+    }
+
+    pub fn destructure(self) -> (Vec<u8>, Vec<PeerInfo>, Vec<PeerInfo>) {
+        (self.data, self.suppliers, self.peers)
+    }
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_find_node.rs b/veilid-core/src/rpc_processor/coders/operations/operation_find_node.rs
index 2ac914ea..3b5352d2 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_find_node.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_find_node.rs
@@ -1,12 +1,17 @@
 use super::*;
 
+const MAX_FIND_NODE_A_PEERS_LEN: usize = 20;
+
 #[derive(Debug, Clone)]
 pub struct RPCOperationFindNodeQ {
-    pub node_id: TypedKey,
+    node_id: TypedKey,
 }
 
 impl RPCOperationFindNodeQ {
-    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+    pub fn new(node_id: TypedKey) -> Self {
+        Self { node_id }
+    }
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         Ok(())
     }
     pub fn decode(
@@ -24,24 +29,43 @@ impl RPCOperationFindNodeQ {
         encode_typed_key(&self.node_id, &mut ni_builder);
         Ok(())
     }
+
+    pub fn node_id(&self) -> &TypedKey {
+        &self.node_id
+    }
+
+    pub fn destructure(self) -> TypedKey {
+        self.node_id
+    }
 }
 
 #[derive(Debug, Clone)]
 pub struct RPCOperationFindNodeA {
-    pub peers: Vec<PeerInfo>,
+    peers: Vec<PeerInfo>,
 }
 
 impl RPCOperationFindNodeA {
-    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
-        for pi in &self.peers {
-            pi.validate(crypto.clone()).map_err(RPCError::protocol)?;
+    pub fn new(peers: Vec<PeerInfo>) -> Result<Self, RPCError> {
+        if peers.len() > MAX_FIND_NODE_A_PEERS_LEN {
+            return Err(RPCError::protocol("find node peers length too long"));
         }
+
+        Ok(Self { peers })
+    }
+
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        PeerInfo::validate_vec(&mut self.peers, validate_context.crypto.clone());
         Ok(())
     }
     pub fn decode(
         reader: &veilid_capnp::operation_find_node_a::Reader,
     ) -> Result<RPCOperationFindNodeA, RPCError> {
         let peers_reader = reader.get_peers().map_err(RPCError::protocol)?;
+
+        if peers_reader.len() as usize > MAX_FIND_NODE_A_PEERS_LEN {
+            return Err(RPCError::protocol("find node peers length too long"));
+        }
+
         let mut peers = Vec::<PeerInfo>::with_capacity(
             peers_reader
                 .len()
@@ -53,7 +77,7 @@ impl RPCOperationFindNodeA {
             peers.push(peer_info);
         }
 
-        Ok(RPCOperationFindNodeA { peers })
+        RPCOperationFindNodeA::new(peers)
     }
     pub fn encode(
         &self,
@@ -71,4 +95,12 @@ impl RPCOperationFindNodeA {
         }
         Ok(())
     }
+
+    pub fn peers(&self) -> &[PeerInfo] {
+        &self.peers
+    }
+
+    pub fn destructure(self) -> Vec<PeerInfo> {
+        self.peers
+    }
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs b/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
index 8e9ddcb9..c1c6c987 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
@@ -1,13 +1,44 @@
 use super::*;
+use crate::storage_manager::{SignedValueDescriptor, ValueDetail};
+
+const MAX_GET_VALUE_A_PEERS_LEN: usize = 20;
+
+#[derive(Clone)]
+pub struct ValidateGetValueContext {
+    last_descriptor: Option<SignedValueDescriptor>,
+    subkey: ValueSubkey,
+    vcrypto: CryptoSystemVersion,
+}
+
+impl fmt::Debug for ValidateGetValueContext {
+    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
+        f.debug_struct("ValidateGetValueContext")
+            .field("last_descriptor", &self.last_descriptor)
+            .field("subkey", &self.subkey)
+            .field("vcrypto", &self.vcrypto.kind().to_string())
+            .finish()
+    }
+}
 
 #[derive(Debug, Clone)]
 pub struct RPCOperationGetValueQ {
-    pub key: TypedKey,
-    pub subkey: ValueSubkey,
-    pub want_descriptor: bool,
+    key: TypedKey,
+    subkey: ValueSubkey,
+    want_descriptor: bool,
 }
 
 impl RPCOperationGetValueQ {
+    pub fn new(key: TypedKey, subkey: ValueSubkey, want_descriptor: bool) -> Self {
+        Self {
+            key,
+            subkey,
+            want_descriptor,
+        }
+    }
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        Ok(())
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_get_value_q::Reader,
     ) -> Result<RPCOperationGetValueQ, RPCError> {
@@ -31,6 +62,18 @@ impl RPCOperationGetValueQ {
         builder.set_want_descriptor(self.want_descriptor);
         Ok(())
     }
+    pub fn key(&self) -> &TypedKey {
+        &self.key
+    }
+    pub fn subkey(&self) -> ValueSubkey {
+        self.subkey
+    }
+    pub fn want_descriptor(&self) -> bool {
+        self.want_descriptor
+    }
+    pub fn destructure(self) -> (TypedKey, ValueSubkey, bool) {
+        (self.key, self.subkey, self.want_descriptor)
+    }
 }
 
 #[derive(Debug, Clone)]
@@ -40,16 +83,53 @@ pub enum RPCOperationGetValueA {
 }
 
 impl RPCOperationGetValueA {
+    pub fn new_value(value: ValueDetail) -> Self {
+        Self::Value(value)
+    }
+    pub fn new_peers(peers: Vec<PeerInfo>) -> Result<Self, RPCError> {
+        if peers.len() > MAX_GET_VALUE_A_PEERS_LEN {
+            return Err(RPCError::protocol("GetValueA peers length too long"));
+        }
+        Ok(Self::Peers(peers))
+    }
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        match self {
+            RPCOperationGetValueA::Value(value_detail) => {
+                let question_context = validate_context
+                    .question_context
+                    .as_ref()
+                    .expect("GetValueA requires question context");
+                let QuestionContext::GetValue(get_value_context) = question_context else {
+                    panic!("Wrong context type for GetValueA");
+                };
+                value_detail
+                    .validate(
+                        get_value_context.last_descriptor.as_ref(),
+                        get_value_context.subkey,
+                        get_value_context.vcrypto.clone(),
+                    )
+                    .map_err(RPCError::protocol)
+            }
+            RPCOperationGetValueA::Peers(peers) => {
+                PeerInfo::validate_vec(peers, validate_context.crypto.clone());
+                Ok(())
+            }
+        }
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_get_value_a::Reader,
     ) -> Result<RPCOperationGetValueA, RPCError> {
         match reader.which().map_err(RPCError::protocol)? {
             veilid_capnp::operation_get_value_a::Which::Value(r) => {
                 let value_detail = decode_value_detail(&r.map_err(RPCError::protocol)?)?;
-                Ok(RPCOperationGetValueA::Data(data))
+                Ok(RPCOperationGetValueA::Value(value_detail))
             }
             veilid_capnp::operation_get_value_a::Which::Peers(r) => {
                 let peers_reader = r.map_err(RPCError::protocol)?;
+                if peers_reader.len() as usize > MAX_GET_VALUE_A_PEERS_LEN {
+                    return Err(RPCError::protocol("GetValueA peers length too long"));
+                }
                 let mut peers = Vec::<PeerInfo>::with_capacity(
                     peers_reader
                         .len()
@@ -70,9 +150,9 @@ impl RPCOperationGetValueA {
         builder: &mut veilid_capnp::operation_get_value_a::Builder,
     ) -> Result<(), RPCError> {
         match self {
-            RPCOperationGetValueA::Data(data) => {
-                let mut d_builder = builder.reborrow().init_data();
-                encode_value_data(&data, &mut d_builder)?;
+            RPCOperationGetValueA::Value(value_detail) => {
+                let mut d_builder = builder.reborrow().init_value();
+                encode_value_detail(&value_detail, &mut d_builder)?;
             }
             RPCOperationGetValueA::Peers(peers) => {
                 let mut peers_builder = builder.reborrow().init_peers(
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_return_receipt.rs b/veilid-core/src/rpc_processor/coders/operations/operation_return_receipt.rs
index bd7517a7..3930c33e 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_return_receipt.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_return_receipt.rs
@@ -2,17 +2,31 @@ use super::*;
 
 #[derive(Debug, Clone)]
 pub struct RPCOperationReturnReceipt {
-    pub receipt: Vec<u8>,
+    receipt: Vec<u8>,
 }
 
 impl RPCOperationReturnReceipt {
+    pub fn new(receipt: &[u8]) -> Result<Self, RPCError> {
+        if receipt.len() < MIN_RECEIPT_SIZE {
+            return Err(RPCError::protocol("ReturnReceipt receipt too short to set"));
+        }
+        if receipt.len() > MAX_RECEIPT_SIZE {
+            return Err(RPCError::protocol("ReturnReceipt receipt too long to set"));
+        }
+
+        Ok(Self {
+            receipt: receipt.to_vec(),
+        })
+    }
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        Ok(())
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_return_receipt::Reader,
     ) -> Result<RPCOperationReturnReceipt, RPCError> {
-        let rcpt_reader = reader.get_receipt().map_err(RPCError::protocol)?;
-        let receipt = rcpt_reader.to_vec();
-
-        Ok(RPCOperationReturnReceipt { receipt })
+        let rr = reader.get_receipt().map_err(RPCError::protocol)?;
+        RPCOperationReturnReceipt::new(rr)
     }
     pub fn encode(
         &self,
@@ -21,4 +35,12 @@ impl RPCOperationReturnReceipt {
         builder.set_receipt(&self.receipt);
         Ok(())
     }
+
+    pub fn receipt(&self) -> &[u8] {
+        &self.receipt
+    }
+
+    pub fn destructure(self) -> Vec<u8> {
+        self.receipt
+    }
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_signal.rs b/veilid-core/src/rpc_processor/coders/operations/operation_signal.rs
index 4b8a6fd3..cfc9dcab 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_signal.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_signal.rs
@@ -2,10 +2,16 @@ use super::*;
 
 #[derive(Debug, Clone)]
 pub struct RPCOperationSignal {
-    pub signal_info: SignalInfo,
+    signal_info: SignalInfo,
 }
 
 impl RPCOperationSignal {
+    pub fn new(signal_info: SignalInfo) -> Self {
+        Self { signal_info }
+    }
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        self.signal_info.validate(validate_context.crypto.clone())
+    }
     pub fn decode(
         reader: &veilid_capnp::operation_signal::Reader,
     ) -> Result<RPCOperationSignal, RPCError> {
@@ -19,4 +25,10 @@ impl RPCOperationSignal {
         encode_signal_info(&self.signal_info, builder)?;
         Ok(())
     }
+    pub fn signal_info(&self) -> &SignalInfo {
+        &self.signal_info
+    }
+    pub fn destructure(self) -> SignalInfo {
+        self.signal_info
+    }
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_status.rs b/veilid-core/src/rpc_processor/coders/operations/operation_status.rs
index 42202328..96ed390c 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_status.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_status.rs
@@ -6,7 +6,7 @@ pub struct RPCOperationStatusQ {
 }
 
 impl RPCOperationStatusQ {
-    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+    pub fn validate(mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         Ok(())
     }
 
@@ -41,7 +41,7 @@ pub struct RPCOperationStatusA {
 }
 
 impl RPCOperationStatusA {
-    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         Ok(())
     }
     pub fn decode(
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_supply_block.rs b/veilid-core/src/rpc_processor/coders/operations/operation_supply_block.rs
index a2d808e5..56c7fb55 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_supply_block.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_supply_block.rs
@@ -34,7 +34,7 @@ pub enum RPCOperationSupplyBlockA {
 impl RPCOperationSupplyBlockA {
     pub fn decode(
         reader: &veilid_capnp::operation_supply_block_a::Reader,
-=    ) -> Result<RPCOperationSupplyBlockA, RPCError> {
+    ) -> Result<RPCOperationSupplyBlockA, RPCError> {
         match reader.which().map_err(RPCError::protocol)? {
             veilid_capnp::operation_supply_block_a::Which::Expiration(r) => {
                 Ok(RPCOperationSupplyBlockA::Expiration(r))
diff --git a/veilid-core/src/rpc_processor/coders/operations/question.rs b/veilid-core/src/rpc_processor/coders/operations/question.rs
index 5935b6aa..8e0db706 100644
--- a/veilid-core/src/rpc_processor/coders/operations/question.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/question.rs
@@ -10,9 +10,9 @@ impl RPCQuestion {
     pub fn new(respond_to: RespondTo, detail: RPCQuestionDetail) -> Self {
         Self { respond_to, detail }
     }
-    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
-        self.respond_to.validate(crypto.clone())?;
-        self.detail.validate(crypto)
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        self.respond_to.validate(validate_context)?;
+        self.detail.validate(validate_context)
     }
     pub fn respond_to(&self) -> &RespondTo {
         &self.respond_to
@@ -23,6 +23,9 @@ impl RPCQuestion {
     pub fn desc(&self) -> &'static str {
         self.detail.desc()
     }
+    pub fn destructure(self) -> (RespondTo, RPCQuestionDetail) {
+        (self.respond_to, self.detail)
+    }
     pub fn decode(reader: &veilid_capnp::question::Reader) -> Result<RPCQuestion, RPCError> {
         let rt_reader = reader.get_respond_to();
         let respond_to = RespondTo::decode(&rt_reader)?;
@@ -69,19 +72,19 @@ impl RPCQuestionDetail {
             RPCQuestionDetail::CancelTunnelQ(_) => "CancelTunnelQ",
         }
     }
-    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         match self {
-            RPCQuestionDetail::StatusQ(r) => r.validate(crypto),
-            RPCQuestionDetail::FindNodeQ(r) => r.validate(crypto),
-            RPCQuestionDetail::AppCallQ(r) => r.validate(crypto),
-            RPCQuestionDetail::GetValueQ(r) => r.validate(crypto),
-            RPCQuestionDetail::SetValueQ(r) => r.validate(crypto),
-            RPCQuestionDetail::WatchValueQ(r) => r.validate(crypto),
-            RPCQuestionDetail::SupplyBlockQ(r) => r.validate(crypto),
-            RPCQuestionDetail::FindBlockQ(r) => r.validate(crypto),
-            RPCQuestionDetail::StartTunnelQ(r) => r.validate(crypto),
-            RPCQuestionDetail::CompleteTunnelQ(r) => r.validate(crypto),
-            RPCQuestionDetail::CancelTunnelQ(r) => r.validate(crypto),
+            RPCQuestionDetail::StatusQ(r) => r.validate(validate_context),
+            RPCQuestionDetail::FindNodeQ(r) => r.validate(validate_context),
+            RPCQuestionDetail::AppCallQ(r) => r.validate(validate_context),
+            RPCQuestionDetail::GetValueQ(r) => r.validate(validate_context),
+            RPCQuestionDetail::SetValueQ(r) => r.validate(validate_context),
+            RPCQuestionDetail::WatchValueQ(r) => r.validate(validate_context),
+            RPCQuestionDetail::SupplyBlockQ(r) => r.validate(validate_context),
+            RPCQuestionDetail::FindBlockQ(r) => r.validate(validate_context),
+            RPCQuestionDetail::StartTunnelQ(r) => r.validate(validate_context),
+            RPCQuestionDetail::CompleteTunnelQ(r) => r.validate(validate_context),
+            RPCQuestionDetail::CancelTunnelQ(r) => r.validate(validate_context),
         }
     }
 
diff --git a/veilid-core/src/rpc_processor/coders/operations/respond_to.rs b/veilid-core/src/rpc_processor/coders/operations/respond_to.rs
index 92b7c9ef..da21fefe 100644
--- a/veilid-core/src/rpc_processor/coders/operations/respond_to.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/respond_to.rs
@@ -7,10 +7,12 @@ pub enum RespondTo {
 }
 
 impl RespondTo {
-    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         match self {
             RespondTo::Sender => Ok(()),
-            RespondTo::PrivateRoute(pr) => pr.validate(crypto).map_err(RPCError::protocol),
+            RespondTo::PrivateRoute(pr) => pr
+                .validate(validate_context.crypto.clone())
+                .map_err(RPCError::protocol),
         }
     }
 
diff --git a/veilid-core/src/rpc_processor/coders/operations/statement.rs b/veilid-core/src/rpc_processor/coders/operations/statement.rs
index cd6b1ecc..08241e24 100644
--- a/veilid-core/src/rpc_processor/coders/operations/statement.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/statement.rs
@@ -9,18 +9,18 @@ impl RPCStatement {
     pub fn new(detail: RPCStatementDetail) -> Self {
         Self { detail }
     }
-    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
-        self.detail.validate(crypto)
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        self.detail.validate(validate_context)
     }
     pub fn detail(&self) -> &RPCStatementDetail {
         &self.detail
     }
-    pub fn into_detail(self) -> RPCStatementDetail {
-        self.detail
-    }
     pub fn desc(&self) -> &'static str {
         self.detail.desc()
     }
+    pub fn destructure(self) -> RPCStatementDetail {
+        self.detail
+    }
     pub fn decode(reader: &veilid_capnp::statement::Reader) -> Result<RPCStatement, RPCError> {
         let d_reader = reader.get_detail();
         let detail = RPCStatementDetail::decode(&d_reader)?;
@@ -53,14 +53,14 @@ impl RPCStatementDetail {
             RPCStatementDetail::AppMessage(_) => "AppMessage",
         }
     }
-    pub fn validate(&self, crypto: Crypto) -> Result<(), RPCError> {
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         match self {
-            RPCStatementDetail::ValidateDialInfo(r) => r.validate(crypto),
-            RPCStatementDetail::Route(r) => r.validate(crypto),
-            RPCStatementDetail::ValueChanged(r) => r.validate(crypto),
-            RPCStatementDetail::Signal(r) => r.validate(crypto),
-            RPCStatementDetail::ReturnReceipt(r) => r.validate(crypto),
-            RPCStatementDetail::AppMessage(r) => r.validate(crypto),
+            RPCStatementDetail::ValidateDialInfo(r) => r.validate(validate_context),
+            RPCStatementDetail::Route(r) => r.validate(validate_context),
+            RPCStatementDetail::ValueChanged(r) => r.validate(validate_context),
+            RPCStatementDetail::Signal(r) => r.validate(validate_context),
+            RPCStatementDetail::ReturnReceipt(r) => r.validate(validate_context),
+            RPCStatementDetail::AppMessage(r) => r.validate(validate_context),
         }
     }
     pub fn decode(
diff --git a/veilid-core/src/rpc_processor/mod.rs b/veilid-core/src/rpc_processor/mod.rs
index d24f88f2..024fc35f 100644
--- a/veilid-core/src/rpc_processor/mod.rs
+++ b/veilid-core/src/rpc_processor/mod.rs
@@ -149,7 +149,7 @@ where
 
 #[derive(Debug)]
 struct WaitableReply {
-    handle: OperationWaitHandle<RPCMessage>,
+    handle: OperationWaitHandle<RPCMessage, Option<QuestionContext>>,
     timeout_us: TimestampDuration,
     node_ref: NodeRef,
     send_ts: Timestamp,
@@ -235,8 +235,8 @@ pub struct RPCProcessorUnlockedInner {
     max_route_hop_count: usize,
     validate_dial_info_receipt_time_ms: u32,
     update_callback: UpdateCallback,
-    waiting_rpc_table: OperationWaiter<RPCMessage>,
-    waiting_app_call_table: OperationWaiter<Vec<u8>>,
+    waiting_rpc_table: OperationWaiter<RPCMessage, Option<QuestionContext>>,
+    waiting_app_call_table: OperationWaiter<Vec<u8>, ()>,
 }
 
 #[derive(Clone)]
@@ -998,11 +998,13 @@ impl RPCProcessor {
     }
 
     /// Issue a question over the network, possibly using an anonymized route
+    /// Optionally keeps a context to be passed to the answer processor when an answer is received
     #[instrument(level = "debug", skip(self, question), err)]
     async fn question(
         &self,
         dest: Destination,
         question: RPCQuestion,
+        context: Option<QuestionContext>,
     ) -> Result<NetworkResult<WaitableReply>, RPCError> {
         // Get sender peer info if we should send that
         let spi = self.get_sender_peer_info(&dest);
@@ -1030,7 +1032,10 @@ impl RPCProcessor {
         let timeout_us = self.unlocked_inner.timeout_us * (hop_count as u64);
 
         // Set up op id eventual
-        let handle = self.unlocked_inner.waiting_rpc_table.add_op_waiter(op_id);
+        let handle = self
+            .unlocked_inner
+            .waiting_rpc_table
+            .add_op_waiter(op_id, context);
 
         // Send question
         let bytes: ByteCount = (message.len() as u64).into();
@@ -1189,6 +1194,48 @@ impl RPCProcessor {
         Ok(NetworkResult::value(()))
     }
 
+    fn decode_rpc_operation(
+        &self,
+        encoded_msg: &RPCMessageEncoded,
+    ) -> Result<RPCOperation, RPCError> {
+        let reader = encoded_msg.data.get_reader()?;
+        let op_reader = reader
+            .get_root::<veilid_capnp::operation::Reader>()
+            .map_err(RPCError::protocol)
+            .map_err(logthru_rpc!())?;
+        let decode_context = DecodeContext {
+            config: self.config.clone(),
+        };
+        let operation = RPCOperation::decode(&decode_context, &op_reader)?;
+
+        // Validate the RPC message
+        self.validate_rpc_operation(&operation)?;
+
+        Ok(operation)
+    }
+
+    fn validate_rpc_operation(&self, operation: &RPCOperation) -> Result<(), RPCError> {
+        // If this is an answer, get the question context for this answer
+        // If we received an answer for a question we did not ask, this will return an error
+        let question_context = if let RPCOperationKind::Answer(_) = operation.kind() {
+            let op_id = operation.op_id();
+            self.unlocked_inner
+                .waiting_rpc_table
+                .get_op_context(op_id)?
+        } else {
+            None
+        };
+
+        // Validate the RPC operation
+        let validate_context = RPCValidateContext {
+            crypto: self.crypto.clone(),
+            question_context,
+        };
+        operation.validate(&validate_context)?;
+
+        Ok(())
+    }
+
     //////////////////////////////////////////////////////////////////////
     #[instrument(level = "trace", skip(self, encoded_msg), err)]
     async fn process_rpc_message(
@@ -1198,29 +1245,17 @@ impl RPCProcessor {
         // Decode operation appropriately based on header detail
         let msg = match &encoded_msg.header.detail {
             RPCMessageHeaderDetail::Direct(detail) => {
+                // Decode and validate the RPC operation
+                let operation = self.decode_rpc_operation(&encoded_msg)?;
+
                 // Get the routing domain this message came over
                 let routing_domain = detail.routing_domain;
 
-                // Decode the operation
+                // Get the sender noderef, incorporating sender's peer info
                 let sender_node_id = TypedKey::new(
                     detail.envelope.get_crypto_kind(),
                     detail.envelope.get_sender_id(),
                 );
-
-                // Decode the RPC message
-                let operation = {
-                    let reader = encoded_msg.data.get_reader()?;
-                    let op_reader = reader
-                        .get_root::<veilid_capnp::operation::Reader>()
-                        .map_err(RPCError::protocol)
-                        .map_err(logthru_rpc!())?;
-                    RPCOperation::decode(&op_reader)?
-                };
-
-                // Validate the RPC operation
-                operation.validate(self.crypto.clone())?;
-
-                // Get the sender noderef, incorporating sender's peer info
                 let mut opt_sender_nr: Option<NodeRef> = None;
                 if let Some(sender_peer_info) = operation.sender_peer_info() {
                     // Ensure the sender peer info is for the actual sender specified in the envelope
@@ -1257,18 +1292,8 @@ impl RPCProcessor {
                 }
             }
             RPCMessageHeaderDetail::SafetyRouted(_) | RPCMessageHeaderDetail::PrivateRouted(_) => {
-                // Decode the RPC message
-                let operation = {
-                    let reader = encoded_msg.data.get_reader()?;
-                    let op_reader = reader
-                        .get_root::<veilid_capnp::operation::Reader>()
-                        .map_err(RPCError::protocol)
-                        .map_err(logthru_rpc!())?;
-                    RPCOperation::decode(&op_reader)?
-                };
-
-                // Validate the RPC operation
-                operation.validate(self.crypto.clone())?;
+                // Decode and validate the RPC operation
+                let operation = self.decode_rpc_operation(&encoded_msg)?;
 
                 // Make the RPC message
                 RPCMessage {
diff --git a/veilid-core/src/rpc_processor/operation_waiter.rs b/veilid-core/src/rpc_processor/operation_waiter.rs
index 0dfdd926..37ee0ce0 100644
--- a/veilid-core/src/rpc_processor/operation_waiter.rs
+++ b/veilid-core/src/rpc_processor/operation_waiter.rs
@@ -1,18 +1,20 @@
 use super::*;
 
 #[derive(Debug)]
-pub struct OperationWaitHandle<T>
+pub struct OperationWaitHandle<T, C>
 where
     T: Unpin,
+    C: Unpin + Clone,
 {
-    waiter: OperationWaiter<T>,
+    waiter: OperationWaiter<T, C>,
     op_id: OperationId,
     eventual_instance: Option<EventualValueFuture<(Option<Id>, T)>>,
 }
 
-impl<T> Drop for OperationWaitHandle<T>
+impl<T, C> Drop for OperationWaitHandle<T, C>
 where
     T: Unpin,
+    C: Unpin + Clone,
 {
     fn drop(&mut self) {
         if self.eventual_instance.is_some() {
@@ -22,24 +24,37 @@ where
 }
 
 #[derive(Debug)]
-pub struct OperationWaiterInner<T>
+pub struct OperationWaitingOp<T, C>
 where
     T: Unpin,
+    C: Unpin + Clone,
 {
-    waiting_op_table: HashMap<OperationId, EventualValue<(Option<Id>, T)>>,
+    context: C,
+    eventual: EventualValue<(Option<Id>, T)>,
 }
 
 #[derive(Debug)]
-pub struct OperationWaiter<T>
+pub struct OperationWaiterInner<T, C>
 where
     T: Unpin,
+    C: Unpin + Clone,
 {
-    inner: Arc<Mutex<OperationWaiterInner<T>>>,
+    waiting_op_table: HashMap<OperationId, OperationWaitingOp<T, C>>,
 }
 
-impl<T> Clone for OperationWaiter<T>
+#[derive(Debug)]
+pub struct OperationWaiter<T, C>
 where
     T: Unpin,
+    C: Unpin + Clone,
+{
+    inner: Arc<Mutex<OperationWaiterInner<T, C>>>,
+}
+
+impl<T, C> Clone for OperationWaiter<T, C>
+where
+    T: Unpin,
+    C: Unpin + Clone,
 {
     fn clone(&self) -> Self {
         Self {
@@ -48,9 +63,10 @@ where
     }
 }
 
-impl<T> OperationWaiter<T>
+impl<T, C> OperationWaiter<T, C>
 where
     T: Unpin,
+    C: Unpin + Clone,
 {
     pub fn new() -> Self {
         Self {
@@ -60,11 +76,15 @@ where
         }
     }
 
-    // set up wait for op
-    pub fn add_op_waiter(&self, op_id: OperationId) -> OperationWaitHandle<T> {
+    /// Set up wait for operation to complete
+    pub fn add_op_waiter(&self, op_id: OperationId, context: C) -> OperationWaitHandle<T, C> {
         let mut inner = self.inner.lock();
         let e = EventualValue::new();
-        if inner.waiting_op_table.insert(op_id, e.clone()).is_some() {
+        let waiting_op = OperationWaitingOp {
+            context,
+            eventual: e.clone(),
+        };
+        if inner.waiting_op_table.insert(op_id, waiting_op).is_some() {
             error!(
                 "add_op_waiter collision should not happen for op_id {}",
                 op_id
@@ -78,16 +98,25 @@ where
         }
     }
 
-    // remove wait for op
+    /// Get operation context
+    pub fn get_op_context(&self, op_id: OperationId) -> Result<C, RPCError> {
+        let mut inner = self.inner.lock();
+        let Some(waiting_op) = inner.waiting_op_table.get(&op_id) else {
+            return Err(RPCError::internal("Missing operation id getting op context"));
+        };
+        Ok(waiting_op.context.clone())
+    }
+
+    /// Remove wait for op
     fn cancel_op_waiter(&self, op_id: OperationId) {
         let mut inner = self.inner.lock();
         inner.waiting_op_table.remove(&op_id);
     }
 
-    // complete the app call
+    /// Complete the app call
     #[instrument(level = "trace", skip(self, message), err)]
     pub async fn complete_op_waiter(&self, op_id: OperationId, message: T) -> Result<(), RPCError> {
-        let eventual = {
+        let waiting_op = {
             let mut inner = self.inner.lock();
             inner
                 .waiting_op_table
@@ -97,13 +126,17 @@ where
                     op_id
                 )))?
         };
-        eventual.resolve((Span::current().id(), message)).await;
+        waiting_op
+            .eventual
+            .resolve((Span::current().id(), message))
+            .await;
         Ok(())
     }
 
+    /// Wait for opeation to complete
     pub async fn wait_for_op(
         &self,
-        mut handle: OperationWaitHandle<T>,
+        mut handle: OperationWaitHandle<T, C>,
         timeout_us: TimestampDuration,
     ) -> Result<TimeoutOr<(T, TimestampDuration)>, RPCError> {
         let timeout_ms = u32::try_from(timeout_us.as_u64() / 1000u64)
diff --git a/veilid-core/src/rpc_processor/rpc_app_call.rs b/veilid-core/src/rpc_processor/rpc_app_call.rs
index 4d6b78c4..5ba05dfb 100644
--- a/veilid-core/src/rpc_processor/rpc_app_call.rs
+++ b/veilid-core/src/rpc_processor/rpc_app_call.rs
@@ -9,14 +9,14 @@ impl RPCProcessor {
         dest: Destination,
         message: Vec<u8>,
     ) -> Result<NetworkResult<Answer<Vec<u8>>>, RPCError> {
-        let app_call_q = RPCOperationAppCallQ { message };
+        let app_call_q = RPCOperationAppCallQ::new(&message)?;
         let question = RPCQuestion::new(
             network_result_try!(self.get_destination_respond_to(&dest)?),
             RPCQuestionDetail::AppCallQ(app_call_q),
         );
 
         // Send the app call question
-        let waitable_reply = network_result_try!(self.question(dest, question).await?);
+        let waitable_reply = network_result_try!(self.question(dest, question, None).await?);
 
         // Wait for reply
         let (msg, latency) = match self.wait_for_reply(waitable_reply).await? {
@@ -25,18 +25,18 @@ impl RPCProcessor {
         };
 
         // Get the right answer type
-        let app_call_a = match msg.operation.into_kind() {
-            RPCOperationKind::Answer(a) => match a.into_detail() {
+        let (_, _, _, kind) = msg.operation.destructure();
+        let app_call_a = match kind {
+            RPCOperationKind::Answer(a) => match a.destructure() {
                 RPCAnswerDetail::AppCallA(a) => a,
                 _ => return Err(RPCError::invalid_format("not an appcall answer")),
             },
             _ => return Err(RPCError::invalid_format("not an answer")),
         };
 
-        Ok(NetworkResult::value(Answer::new(
-            latency,
-            app_call_a.message,
-        )))
+        let a_message = app_call_a.destructure();
+
+        Ok(NetworkResult::value(Answer::new(latency, a_message)))
     }
 
     #[instrument(level = "trace", skip(self, msg), fields(msg.operation.op_id), ret, err)]
@@ -45,9 +45,10 @@ impl RPCProcessor {
         msg: RPCMessage,
     ) -> Result<NetworkResult<()>, RPCError> {
         // Get the question
-        let app_call_q = match msg.operation.kind() {
-            RPCOperationKind::Question(q) => match q.detail() {
-                RPCQuestionDetail::AppCallQ(q) => q,
+        let (op_id, _, _, kind) = msg.operation.clone().destructure();
+        let app_call_q = match kind {
+            RPCOperationKind::Question(q) => match q.destructure() {
+                (_, RPCQuestionDetail::AppCallQ(q)) => q,
                 _ => panic!("not an appcall question"),
             },
             _ => panic!("not a question"),
@@ -63,16 +64,16 @@ impl RPCProcessor {
             .map(|nr| nr.node_ids().get(crypto_kind).unwrap().value);
 
         // Register a waiter for this app call
-        let id = msg.operation.op_id();
-        let handle = self.unlocked_inner.waiting_app_call_table.add_op_waiter(id);
+        let handle = self
+            .unlocked_inner
+            .waiting_app_call_table
+            .add_op_waiter(op_id, ());
 
         // Pass the call up through the update callback
-        let message = app_call_q.message.clone();
-        (self.unlocked_inner.update_callback)(VeilidUpdate::AppCall(VeilidAppCall {
-            sender,
-            message,
-            id,
-        }));
+        let message_q = app_call_q.destructure();
+        (self.unlocked_inner.update_callback)(VeilidUpdate::AppCall(VeilidAppCall::new(
+            sender, message_q, op_id,
+        )));
 
         // Wait for an app call answer to come back from the app
         let res = self
@@ -80,17 +81,17 @@ impl RPCProcessor {
             .waiting_app_call_table
             .wait_for_op(handle, self.unlocked_inner.timeout_us)
             .await?;
-        let (message, _latency) = match res {
+        let (message_a, _latency) = match res {
             TimeoutOr::Timeout => {
                 // No message sent on timeout, but this isn't an error
-                log_rpc!(debug "App call timed out for id {}", id);
+                log_rpc!(debug "App call timed out for id {}", op_id);
                 return Ok(NetworkResult::timeout());
             }
             TimeoutOr::Value(v) => v,
         };
 
         // Return the appcall answer
-        let app_call_a = RPCOperationAppCallA { message };
+        let app_call_a = RPCOperationAppCallA::new(&message_a)?;
 
         // Send status answer
         self.answer(msg, RPCAnswer::new(RPCAnswerDetail::AppCallA(app_call_a)))
diff --git a/veilid-core/src/rpc_processor/rpc_app_message.rs b/veilid-core/src/rpc_processor/rpc_app_message.rs
index 0150a205..3bfbbb5e 100644
--- a/veilid-core/src/rpc_processor/rpc_app_message.rs
+++ b/veilid-core/src/rpc_processor/rpc_app_message.rs
@@ -22,8 +22,9 @@ impl RPCProcessor {
         msg: RPCMessage,
     ) -> Result<NetworkResult<()>, RPCError> {
         // Get the statement
-        let app_message = match msg.operation.into_kind() {
-            RPCOperationKind::Statement(s) => match s.into_detail() {
+        let (op_id, _, _, kind) = msg.operation.destructure();
+        let app_message = match kind {
+            RPCOperationKind::Statement(s) => match s.destructure() {
                 RPCStatementDetail::AppMessage(s) => s,
                 _ => panic!("not an app message"),
             },
@@ -40,11 +41,10 @@ impl RPCProcessor {
             .map(|nr| nr.node_ids().get(crypto_kind).unwrap().value);
 
         // Pass the message up through the update callback
-        let message = app_message.message;
-        (self.unlocked_inner.update_callback)(VeilidUpdate::AppMessage(VeilidAppMessage {
-            sender,
-            message,
-        }));
+        let message = app_message.destructure();
+        (self.unlocked_inner.update_callback)(VeilidUpdate::AppMessage(VeilidAppMessage::new(
+            sender, message,
+        )));
 
         Ok(NetworkResult::value(()))
     }
diff --git a/veilid-core/src/rpc_processor/rpc_find_node.rs b/veilid-core/src/rpc_processor/rpc_find_node.rs
index 18f3053e..b96a7ee8 100644
--- a/veilid-core/src/rpc_processor/rpc_find_node.rs
+++ b/veilid-core/src/rpc_processor/rpc_find_node.rs
@@ -26,14 +26,14 @@ impl RPCProcessor {
             ));
         }
 
-        let find_node_q_detail = RPCQuestionDetail::FindNodeQ(RPCOperationFindNodeQ { node_id });
+        let find_node_q_detail = RPCQuestionDetail::FindNodeQ(RPCOperationFindNodeQ::new(node_id));
         let find_node_q = RPCQuestion::new(
             network_result_try!(self.get_destination_respond_to(&dest)?),
             find_node_q_detail,
         );
 
         // Send the find_node request
-        let waitable_reply = network_result_try!(self.question(dest, find_node_q).await?);
+        let waitable_reply = network_result_try!(self.question(dest, find_node_q, None).await?);
 
         // Wait for reply
         let (msg, latency) = match self.wait_for_reply(waitable_reply).await? {
@@ -42,8 +42,9 @@ impl RPCProcessor {
         };
 
         // Get the right answer type
-        let find_node_a = match msg.operation.into_kind() {
-            RPCOperationKind::Answer(a) => match a.into_detail() {
+        let (_, _, _, kind) = msg.operation.destructure();
+        let find_node_a = match kind {
+            RPCOperationKind::Answer(a) => match a.destructure() {
                 RPCAnswerDetail::FindNodeA(a) => a,
                 _ => return Err(RPCError::invalid_format("not a find_node answer")),
             },
@@ -51,7 +52,7 @@ impl RPCProcessor {
         };
 
         // Verify peers are in the correct peer scope
-        for peer_info in &find_node_a.peers {
+        for peer_info in find_node_a.peers() {
             if !self.filter_node_info(RoutingDomain::PublicInternet, peer_info.signed_node_info()) {
                 return Err(RPCError::invalid_format(
                     "find_node response has invalid peer scope",
@@ -59,10 +60,8 @@ impl RPCProcessor {
             }
         }
 
-        Ok(NetworkResult::value(Answer::new(
-            latency,
-            find_node_a.peers,
-        )))
+        let peers = find_node_a.destructure();
+        Ok(NetworkResult::value(Answer::new(latency, peers)))
     }
 
     #[instrument(level = "trace", skip(self, msg), fields(msg.operation.op_id), ret, err)]
@@ -81,9 +80,10 @@ impl RPCProcessor {
         }
 
         // Get the question
-        let find_node_q = match msg.operation.kind() {
-            RPCOperationKind::Question(q) => match q.detail() {
-                RPCQuestionDetail::FindNodeQ(q) => q,
+        let kind = msg.operation.kind().clone();
+        let find_node_q = match kind {
+            RPCOperationKind::Question(q) => match q.destructure() {
+                (_, RPCQuestionDetail::FindNodeQ(q)) => q,
                 _ => panic!("not a status question"),
             },
             _ => panic!("not a question"),
@@ -114,9 +114,10 @@ impl RPCProcessor {
             c.network.dht.max_find_node_count as usize
         };
 
+        let node_id = find_node_q.destructure();
         let closest_nodes = routing_table.find_closest_nodes(
             node_count,
-            find_node_q.node_id,
+            node_id,
             filters,
             // transform
             |rti, entry| {
@@ -125,9 +126,7 @@ impl RPCProcessor {
         );
 
         // Make status answer
-        let find_node_a = RPCOperationFindNodeA {
-            peers: closest_nodes,
-        };
+        let find_node_a = RPCOperationFindNodeA::new(closest_nodes)?;
 
         // Send status answer
         self.answer(msg, RPCAnswer::new(RPCAnswerDetail::FindNodeA(find_node_a)))
diff --git a/veilid-core/src/rpc_processor/rpc_get_value.rs b/veilid-core/src/rpc_processor/rpc_get_value.rs
index 3a697bb0..2a7689b3 100644
--- a/veilid-core/src/rpc_processor/rpc_get_value.rs
+++ b/veilid-core/src/rpc_processor/rpc_get_value.rs
@@ -1,6 +1,62 @@
 use super::*;
+use crate::storage_manager::SignedValueDescriptor;
+
+#[derive(Clone, Debug, PartialEq, PartialOrd, Ord, Eq, Hash)]
+pub enum GetValueAnswer {}
 
 impl RPCProcessor {
+    // Sends a get value request and wait for response
+    // Can be sent via all methods including relays and routes
+    #[instrument(level = "trace", skip(self), ret, err)]
+    pub async fn rpc_call_get_value(
+        self,
+        dest: Destination,
+        key: TypedKey,
+        subkey: ValueSubkey,
+        last_descriptor: Option<SignedValueDescriptor>,
+    ) -> Result<NetworkResult<Answer<Vec<u8>>>, RPCError> {
+        let get_value_q = RPCOperationGetValueQ::new(key, subkey, last_descriptor.is_none());
+        let question = RPCQuestion::new(
+            network_result_try!(self.get_destination_respond_to(&dest)?),
+            RPCQuestionDetail::GetValueQ(get_value_q),
+        );
+        let Some(vcrypto) = self.crypto.get(key.kind) else {
+            return Err(RPCError::internal("unsupported cryptosystem"));
+        };
+
+        // Send the app call question
+        let question_context = QuestionContext::GetValue(ValidateGetValueContext {
+            last_descriptor,
+            subkey,
+            vcrypto,
+        });
+
+        let waitable_reply = network_result_try!(
+            self.question(dest, question, Some(question_context))
+                .await?
+        );
+
+        // Wait for reply
+        let (msg, latency) = match self.wait_for_reply(waitable_reply).await? {
+            TimeoutOr::Timeout => return Ok(NetworkResult::Timeout),
+            TimeoutOr::Value(v) => v,
+        };
+
+        // Get the right answer type
+        let (_, _, _, kind) = msg.operation.destructure();
+        let app_call_a = match kind {
+            RPCOperationKind::Answer(a) => match a.destructure() {
+                RPCAnswerDetail::AppCallA(a) => a,
+                _ => return Err(RPCError::invalid_format("not an appcall answer")),
+            },
+            _ => return Err(RPCError::invalid_format("not an answer")),
+        };
+
+        let a_message = app_call_a.destructure();
+
+        Ok(NetworkResult::value(Answer::new(latency, a_message)))
+    }
+
     #[instrument(level = "trace", skip(self, msg), fields(msg.operation.op_id), ret, err)]
     pub(crate) async fn process_get_value_q(
         &self,
diff --git a/veilid-core/src/rpc_processor/rpc_return_receipt.rs b/veilid-core/src/rpc_processor/rpc_return_receipt.rs
index a5537369..9c2bed0d 100644
--- a/veilid-core/src/rpc_processor/rpc_return_receipt.rs
+++ b/veilid-core/src/rpc_processor/rpc_return_receipt.rs
@@ -26,8 +26,9 @@ impl RPCProcessor {
         msg: RPCMessage,
     ) -> Result<NetworkResult<()>, RPCError> {
         // Get the statement
-        let RPCOperationReturnReceipt { receipt } = match msg.operation.into_kind() {
-            RPCOperationKind::Statement(s) => match s.into_detail() {
+        let (_, _, _, kind) = msg.operation.destructure();
+        let RPCOperationReturnReceipt { receipt } = match kind {
+            RPCOperationKind::Statement(s) => match s.destructure() {
                 RPCStatementDetail::ReturnReceipt(s) => s,
                 _ => panic!("not a return receipt"),
             },
diff --git a/veilid-core/src/rpc_processor/rpc_route.rs b/veilid-core/src/rpc_processor/rpc_route.rs
index 8eb4fb6f..01e251ca 100644
--- a/veilid-core/src/rpc_processor/rpc_route.rs
+++ b/veilid-core/src/rpc_processor/rpc_route.rs
@@ -377,8 +377,9 @@ impl RPCProcessor {
         };
 
         // Get the statement
-        let mut route = match msg.operation.into_kind() {
-            RPCOperationKind::Statement(s) => match s.into_detail() {
+        let (_,_,_,kind) = msg.operation.destructure();
+        let mut route = match kind {
+            RPCOperationKind::Statement(s) => match s.destructure() {
                 RPCStatementDetail::Route(s) => s,
                 _ => panic!("not a route statement"),
             },
diff --git a/veilid-core/src/rpc_processor/rpc_signal.rs b/veilid-core/src/rpc_processor/rpc_signal.rs
index d717b395..1fd6608f 100644
--- a/veilid-core/src/rpc_processor/rpc_signal.rs
+++ b/veilid-core/src/rpc_processor/rpc_signal.rs
@@ -44,8 +44,9 @@ impl RPCProcessor {
         };
 
         // Get the statement
-        let signal = match msg.operation.into_kind() {
-            RPCOperationKind::Statement(s) => match s.into_detail() {
+        let (_, _, _, kind) = msg.operation.destructure();
+        let signal = match kind {
+            RPCOperationKind::Statement(s) => match s.destructure() {
                 RPCStatementDetail::Signal(s) => s,
                 _ => panic!("not a signal"),
             },
diff --git a/veilid-core/src/rpc_processor/rpc_status.rs b/veilid-core/src/rpc_processor/rpc_status.rs
index 2335100a..29b13d61 100644
--- a/veilid-core/src/rpc_processor/rpc_status.rs
+++ b/veilid-core/src/rpc_processor/rpc_status.rs
@@ -75,7 +75,8 @@ impl RPCProcessor {
         );
 
         // Send the info request
-        let waitable_reply = network_result_try!(self.question(dest.clone(), question).await?);
+        let waitable_reply =
+            network_result_try!(self.question(dest.clone(), question, None).await?);
 
         // Note what kind of ping this was and to what peer scope
         let send_data_kind = waitable_reply.send_data_kind;
diff --git a/veilid-core/src/veilid_api/mod.rs b/veilid-core/src/veilid_api/mod.rs
index 766b89f4..8cc28366 100644
--- a/veilid-core/src/veilid_api/mod.rs
+++ b/veilid-core/src/veilid_api/mod.rs
@@ -27,11 +27,8 @@ pub use routing_table::{NodeRef, NodeRefBase};
 use crate::*;
 use core::fmt;
 use core_context::{api_shutdown, VeilidCoreContext};
-use enumset::*;
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
 use routing_table::{Direction, RouteSpecStore, RoutingTable};
 use rpc_processor::*;
-use serde::*;
 use storage_manager::StorageManager;
 
 /////////////////////////////////////////////////////////////////////////////////////////////////////
diff --git a/veilid-core/src/veilid_api/serialize_helpers.rs b/veilid-core/src/veilid_api/serialize_helpers.rs
index 91a3b283..e0ee3788 100644
--- a/veilid-core/src/veilid_api/serialize_helpers.rs
+++ b/veilid-core/src/veilid_api/serialize_helpers.rs
@@ -1,9 +1,6 @@
 use super::*;
-pub use bytecheck::CheckBytes;
+
 use core::fmt::Debug;
-use rkyv::Archive as RkyvArchive;
-use rkyv::Deserialize as RkyvDeserialize;
-use rkyv::Serialize as RkyvSerialize;
 
 // Don't trace these functions as they are used in the transfer of API logs, which will recurse!
 
@@ -146,7 +143,7 @@ pub fn from_rkyv<T>(v: Vec<u8>) -> EyreResult<T>
 where
     T: RkyvArchive,
     <T as RkyvArchive>::Archived:
-        for<'t> bytecheck::CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
+        for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
     <T as RkyvArchive>::Archived:
         rkyv::Deserialize<T, rkyv::de::deserializers::SharedDeserializeMap>,
 {
diff --git a/veilid-core/src/veilid_api/types/app_message_call.rs b/veilid-core/src/veilid_api/types/app_message_call.rs
index f3c24f3a..42035271 100644
--- a/veilid-core/src/veilid_api/types/app_message_call.rs
+++ b/veilid-core/src/veilid_api/types/app_message_call.rs
@@ -14,6 +14,19 @@ pub struct VeilidAppMessage {
     pub message: Vec<u8>,
 }
 
+impl VeilidAppMessage {
+    pub fn new(sender: Option<PublicKey>, message: Vec<u8>) -> Self {
+        Self { sender, message }
+    }
+
+    pub fn sender(&self) -> Option<&PublicKey> {
+        self.sender.as_ref()
+    }
+    pub fn message(&self) -> &[u8] {
+        &self.message
+    }
+}
+
 /// Direct question blob passed to hosting application for processing to send an eventual AppReply
 #[derive(
     Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
@@ -22,11 +35,31 @@ pub struct VeilidAppMessage {
 pub struct VeilidAppCall {
     /// Some(sender) if the request was sent directly, None if received via a private/safety route
     #[serde(with = "opt_json_as_string")]
-    pub sender: Option<PublicKey>,
+    sender: Option<PublicKey>,
     /// The content of the request to deliver to the application
     #[serde(with = "json_as_base64")]
-    pub message: Vec<u8>,
+    message: Vec<u8>,
     /// The id to reply to
     #[serde(with = "json_as_string")]
-    pub id: OperationId,
+    id: OperationId,
+}
+
+impl VeilidAppCall {
+    pub fn new(sender: Option<PublicKey>, message: Vec<u8>, id: OperationId) -> Self {
+        Self {
+            sender,
+            message,
+            id,
+        }
+    }
+
+    pub fn sender(&self) -> Option<&PublicKey> {
+        self.sender.as_ref()
+    }
+    pub fn message(&self) -> &[u8] {
+        &self.message
+    }
+    pub fn id(&self) -> OperationId {
+        self.id
+    }
 }

From 4927645adafb672c20826e8a0c6fff91c8631079 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Fri, 21 Apr 2023 20:13:15 -0400
Subject: [PATCH 12/74] checkpoint

---
 veilid-core/proto/veilid.capnp              | 26 +++++++--------------
 veilid-core/src/rpc_processor/coders/mod.rs |  2 +-
 2 files changed, 10 insertions(+), 18 deletions(-)

diff --git a/veilid-core/proto/veilid.capnp b/veilid-core/proto/veilid.capnp
index 5197fe64..f3ec1288 100644
--- a/veilid-core/proto/veilid.capnp
+++ b/veilid-core/proto/veilid.capnp
@@ -330,12 +330,6 @@ struct SignedValueData @0xb4b7416f169f2a3d {
                                                         # so the data either fits, or it doesn't.
 }
 
-struct ValueDetail @0xe88607fa8982d67f {
-    signedValueData         @0  :SignedValueData;       # One value data with signature
-    descriptor              @1  :SignedValueDescriptor; # (optional) must provide if seq is 0, and may be present from valueget if wantSchema is specified
-                                                        # If not set and If seqnum != 0, the schema must have been set prior and no other schema may be used, but this field may be eliminated to save space
-}
-
 struct SignedValueDescriptor @0xe7911cd3f9e1b0e7 {
     owner                   @0  :PublicKey;             # the public key of the owner
     schemaData              @1  :Data;                  # the schema data
@@ -352,24 +346,22 @@ struct OperationGetValueQ @0xf88a5b6da5eda5d0 {
 
 
 struct OperationGetValueA @0xd896bb46f2e0249f {
-    union {
-        value               @0  :ValueDetail;           # the value if successful
-        peers               @1  :List(PeerInfo);        # returned 'closer peer' information if not successful       
-    }
+    value                   @0  :SignedValueData;       # optional: the value if successful, or if unset, no value returned
+    peers                   @1  :List(PeerInfo);        # returned 'closer peer' information on either success or failure
+    descriptor              @2  :SignedValueDescriptor  # optional: the descriptor if requested
 }
 
 struct OperationSetValueQ @0xbac06191ff8bdbc5 {         
     key                     @0  :TypedKey;              # DHT Key = Hash(ownerKeyKind) of: [ ownerKeyValue, schema ]
     subkey                  @1  :Subkey;                # the index of the subkey
-    value                   @2  :ValueDetail;           # value or subvalue contents (older or equal seq number gets dropped)
+    value                   @2  :SignedValueData;       # value or subvalue contents (older or equal seq number gets dropped)
+    descriptor              @3  :SignedValueDescriptor  # optional: the descriptor if needed
 }
 
 struct OperationSetValueA @0x9378d0732dc95be2 {
-    union {
-        schemaError         @0  :Void;                  # Either the schema is not available at the node, or the data does not match the schema that is there
-        value               @1  :ValueDetail;           # the new value if successful, may be a different value than what was set if the seq number was lower or equal
-        peers               @2  :List(PeerInfo);        # returned 'closer peer' information if this node is refusing to store the key
-    }
+    set                     @0  :Bool;                  # true if the value was accepted
+    value                   @1  :SignedValueData;       # optional: the current value at the key if the set seq number was lower or equal to what was there before
+    peers                   @2  :List(PeerInfo);        # returned 'closer peer' information on either success or failure
 }
 
 struct OperationWatchValueQ @0xf9a5a6c547b9b228 {
@@ -389,7 +381,7 @@ struct OperationValueChanged @0xd1c59ebdd8cc1bf6 {
     key                     @0  :TypedKey;              # key for value that changed
     subkeys                 @1  :List(SubkeyRange);     # subkey range that changed (up to 512 ranges at a time)
     count                   @2  :UInt32;                # remaining changes left (0 means watch has expired)
-    value                   @3  :ValueDetail;           # first value that changed (the rest can be gotten with getvalue)
+    value                   @3  :SignedValueData;       # first value that changed (the rest can be gotten with getvalue)
 }
 
 struct OperationSupplyBlockQ @0xadbf4c542d749971 {
diff --git a/veilid-core/src/rpc_processor/coders/mod.rs b/veilid-core/src/rpc_processor/coders/mod.rs
index 8ea4871e..0d833dd9 100644
--- a/veilid-core/src/rpc_processor/coders/mod.rs
+++ b/veilid-core/src/rpc_processor/coders/mod.rs
@@ -25,7 +25,7 @@ mod socket_address;
 mod tunnel;
 mod typed_key;
 mod typed_signature;
-mod value_detail;
+mod value_detail; xxx eliminate value_detail
 
 pub use address::*;
 pub use address_type_set::*;

From 438553a1ca015df70d6a9202daa7912155d245b8 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Sat, 22 Apr 2023 17:53:53 -0400
Subject: [PATCH 13/74] refactor

---
 veilid-core/proto/veilid.capnp                |  15 +-
 veilid-core/src/rpc_processor/coders/mod.rs   |   4 +-
 .../coders/operations/operation_app_call.rs   |  73 +++---
 .../operations/operation_app_message.rs       |  33 +--
 .../operations/operation_cancel_tunnel.rs     |  31 +--
 .../operations/operation_complete_tunnel.rs   |  49 ++--
 .../coders/operations/operation_find_block.rs |  67 ++---
 .../coders/operations/operation_find_node.rs  |  42 +--
 .../coders/operations/operation_get_value.rs  | 240 ++++++++++-------
 .../operations/operation_return_receipt.rs    |  29 ++-
 .../coders/operations/operation_route.rs      |  73 ++++--
 .../coders/operations/operation_set_value.rs  | 242 ++++++++++++++----
 .../coders/operations/operation_signal.rs     |  19 +-
 .../operations/operation_start_tunnel.rs      |  55 +++-
 .../coders/operations/operation_status.rs     |  48 +++-
 .../operations/operation_supply_block.rs      | 111 +++++---
 .../operation_validate_dial_info.rs           |  56 +++-
 .../operations/operation_value_changed.rs     |  52 +++-
 .../operations/operation_watch_value.rs       | 157 +++++++++++-
 .../coders/operations/question.rs             |   2 +-
 .../coders/operations/respond_to.rs           |   6 +-
 .../src/rpc_processor/coders/value_data.rs    |  30 +++
 veilid-core/src/rpc_processor/mod.rs          |  16 +-
 .../src/rpc_processor/rpc_get_value.rs        |   2 +-
 veilid-core/src/rpc_processor/rpc_signal.rs   |   3 +-
 .../rpc_processor/rpc_validate_dial_info.rs   |  11 +-
 veilid-core/src/storage_manager/mod.rs        |  29 ++-
 veilid-core/src/storage_manager/types/mod.rs  |   2 -
 28 files changed, 1061 insertions(+), 436 deletions(-)
 create mode 100644 veilid-core/src/rpc_processor/coders/value_data.rs

diff --git a/veilid-core/proto/veilid.capnp b/veilid-core/proto/veilid.capnp
index f3ec1288..344a5128 100644
--- a/veilid-core/proto/veilid.capnp
+++ b/veilid-core/proto/veilid.capnp
@@ -348,14 +348,14 @@ struct OperationGetValueQ @0xf88a5b6da5eda5d0 {
 struct OperationGetValueA @0xd896bb46f2e0249f {
     value                   @0  :SignedValueData;       # optional: the value if successful, or if unset, no value returned
     peers                   @1  :List(PeerInfo);        # returned 'closer peer' information on either success or failure
-    descriptor              @2  :SignedValueDescriptor  # optional: the descriptor if requested
+    descriptor              @2  :SignedValueDescriptor; # optional: the descriptor if requested if the value is also returned
 }
 
 struct OperationSetValueQ @0xbac06191ff8bdbc5 {         
     key                     @0  :TypedKey;              # DHT Key = Hash(ownerKeyKind) of: [ ownerKeyValue, schema ]
     subkey                  @1  :Subkey;                # the index of the subkey
     value                   @2  :SignedValueData;       # value or subvalue contents (older or equal seq number gets dropped)
-    descriptor              @3  :SignedValueDescriptor  # optional: the descriptor if needed
+    descriptor              @3  :SignedValueDescriptor; # optional: the descriptor if needed
 }
 
 struct OperationSetValueA @0x9378d0732dc95be2 {
@@ -366,10 +366,11 @@ struct OperationSetValueA @0x9378d0732dc95be2 {
 
 struct OperationWatchValueQ @0xf9a5a6c547b9b228 {
     key                     @0  :TypedKey;              # key for value to watch
-    subkeys                 @1  :List(SubkeyRange);     # subkey range to watch, if empty, watch everything
+    subkeys                 @1  :List(SubkeyRange);     # subkey range to watch (up to 512 subranges), if empty, watch everything
     expiration              @2  :UInt64;                # requested timestamp when this watch will expire in usec since epoch (can be return less, 0 for max)
     count                   @3  :UInt32;                # requested number of changes to watch for (0 = cancel, 1 = single shot, 2+ = counter, UINT32_MAX = continuous)
-    signature               @4  :Signature;             # signature of the watcher, must be one of the schema members or the key owner. signature covers: key, subkeys, expiration, count
+    watcher                 @4  :PublicKey;             # the watcher performing the watch, can be the owner or a schema member
+    signature               @5  :Signature;             # signature of the watcher, must be one of the schema members or the key owner. signature covers: key, subkeys, expiration, count
 }
 
 struct OperationWatchValueA @0xa726cab7064ba893 {
@@ -389,10 +390,8 @@ struct OperationSupplyBlockQ @0xadbf4c542d749971 {
 }
 
 struct OperationSupplyBlockA @0xf003822e83b5c0d7 {
-    union {
-        expiration          @0  :UInt64;                # when the block supplier entry will need to be refreshed
-        peers               @1  :List(PeerInfo);        # returned 'closer peer' information if not successful       
-    }
+    expiration              @0  :UInt64;                # when the block supplier entry will need to be refreshed, or 0 if not successful
+    peers                   @1  :List(PeerInfo);        # returned 'closer peer' information if not successful       
 }
 
 struct OperationFindBlockQ @0xaf4353ff004c7156 {
diff --git a/veilid-core/src/rpc_processor/coders/mod.rs b/veilid-core/src/rpc_processor/coders/mod.rs
index 0d833dd9..6ad58903 100644
--- a/veilid-core/src/rpc_processor/coders/mod.rs
+++ b/veilid-core/src/rpc_processor/coders/mod.rs
@@ -25,7 +25,6 @@ mod socket_address;
 mod tunnel;
 mod typed_key;
 mod typed_signature;
-mod value_detail; xxx eliminate value_detail
 
 pub use address::*;
 pub use address_type_set::*;
@@ -54,7 +53,6 @@ pub use socket_address::*;
 pub use tunnel::*;
 pub use typed_key::*;
 pub use typed_signature::*;
-pub use value_detail::*;
 
 use super::*;
 
@@ -66,10 +64,12 @@ pub struct DecodeContext {
 #[derive(Debug, Clone)]
 pub enum QuestionContext {
     GetValue(ValidateGetValueContext),
+    SetValue(ValidateSetValueContext),
 }
 
 #[derive(Clone)]
 pub struct RPCValidateContext {
     crypto: Crypto,
+    rpc_processor: RPCProcessor,
     question_context: Option<QuestionContext>,
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_app_call.rs b/veilid-core/src/rpc_processor/coders/operations/operation_app_call.rs
index 7f2d98e0..ae84a767 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_app_call.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_app_call.rs
@@ -9,30 +9,15 @@ pub struct RPCOperationAppCallQ {
 }
 
 impl RPCOperationAppCallQ {
-    pub fn new(message: &[u8]) -> Result<Self, RPCError> {
+    pub fn new(message: Vec<u8>) -> Result<Self, RPCError> {
         if message.len() > MAX_APP_CALL_Q_MESSAGE_LEN {
             return Err(RPCError::protocol("AppCallQ message too long to set"));
         }
-        Ok(Self {
-            message: message.to_vec(),
-        })
+        Ok(Self { message })
     }
     pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         Ok(())
     }
-    pub fn decode(
-        reader: &veilid_capnp::operation_app_call_q::Reader,
-    ) -> Result<RPCOperationAppCallQ, RPCError> {
-        let mr = reader.get_message().map_err(RPCError::protocol)?;
-        RPCOperationAppCallQ::new(mr)
-    }
-    pub fn encode(
-        &self,
-        builder: &mut veilid_capnp::operation_app_call_q::Builder,
-    ) -> Result<(), RPCError> {
-        builder.set_message(&self.message);
-        Ok(())
-    }
 
     pub fn message(&self) -> &[u8] {
         &self.message
@@ -41,6 +26,23 @@ impl RPCOperationAppCallQ {
     pub fn destructure(self) -> Vec<u8> {
         self.message
     }
+
+    pub fn decode(reader: &veilid_capnp::operation_app_call_q::Reader) -> Result<Self, RPCError> {
+        let mr = reader.get_message().map_err(RPCError::protocol)?;
+        if mr.len() > MAX_APP_CALL_Q_MESSAGE_LEN {
+            return Err(RPCError::protocol("AppCallQ message too long to set"));
+        }
+        Ok(Self {
+            message: mr.to_vec(),
+        })
+    }
+    pub fn encode(
+        &self,
+        builder: &mut veilid_capnp::operation_app_call_q::Builder,
+    ) -> Result<(), RPCError> {
+        builder.set_message(&self.message);
+        Ok(())
+    }
 }
 
 #[derive(Debug, Clone)]
@@ -49,31 +51,16 @@ pub struct RPCOperationAppCallA {
 }
 
 impl RPCOperationAppCallA {
-    pub fn new(message: &[u8]) -> Result<Self, RPCError> {
+    pub fn new(message: Vec<u8>) -> Result<Self, RPCError> {
         if message.len() > MAX_APP_CALL_A_MESSAGE_LEN {
             return Err(RPCError::protocol("AppCallA message too long to set"));
         }
-        Ok(Self {
-            message: message.to_vec(),
-        })
+        Ok(Self { message })
     }
 
     pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         Ok(())
     }
-    pub fn decode(
-        reader: &veilid_capnp::operation_app_call_a::Reader,
-    ) -> Result<RPCOperationAppCallA, RPCError> {
-        let mr = reader.get_message().map_err(RPCError::protocol)?;
-        RPCOperationAppCallA::new(mr)
-    }
-    pub fn encode(
-        &self,
-        builder: &mut veilid_capnp::operation_app_call_a::Builder,
-    ) -> Result<(), RPCError> {
-        builder.set_message(&self.message);
-        Ok(())
-    }
 
     pub fn message(&self) -> &[u8] {
         &self.message
@@ -82,4 +69,22 @@ impl RPCOperationAppCallA {
     pub fn destructure(self) -> Vec<u8> {
         self.message
     }
+
+    pub fn decode(reader: &veilid_capnp::operation_app_call_a::Reader) -> Result<Self, RPCError> {
+        let mr = reader.get_message().map_err(RPCError::protocol)?;
+        if mr.len() > MAX_APP_CALL_A_MESSAGE_LEN {
+            return Err(RPCError::protocol("AppCallA message too long to set"));
+        }
+        Ok(Self {
+            message: mr.to_vec(),
+        })
+    }
+    pub fn encode(
+        &self,
+        builder: &mut veilid_capnp::operation_app_call_a::Builder,
+    ) -> Result<(), RPCError> {
+        builder.set_message(&self.message);
+        Ok(())
+    }
+
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_app_message.rs b/veilid-core/src/rpc_processor/coders/operations/operation_app_message.rs
index 17612cfc..a7456d63 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_app_message.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_app_message.rs
@@ -8,23 +8,32 @@ pub struct RPCOperationAppMessage {
 }
 
 impl RPCOperationAppMessage {
-    pub fn new(message: &[u8]) -> Result<Self, RPCError> {
+    pub fn new(message: Vec<u8>) -> Result<Self, RPCError> {
         if message.len() > MAX_APP_MESSAGE_MESSAGE_LEN {
             return Err(RPCError::protocol("AppMessage message too long to set"));
         }
-        Ok(Self {
-            message: message.to_vec(),
-        })
+        Ok(Self { message })
     }
 
     pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         Ok(())
     }
-    pub fn decode(
-        reader: &veilid_capnp::operation_app_message::Reader,
-    ) -> Result<RPCOperationAppMessage, RPCError> {
+
+    pub fn message(&self) -> &[u8] {
+        &self.message
+    }
+    pub fn destructure(self) -> Vec<u8> {
+        self.message
+    }
+
+    pub fn decode(reader: &veilid_capnp::operation_app_message::Reader) -> Result<Self, RPCError> {
         let mr = reader.get_message().map_err(RPCError::protocol)?;
-        RPCOperationAppMessage::new(mr)
+        if mr.len() > MAX_APP_MESSAGE_MESSAGE_LEN {
+            return Err(RPCError::protocol("AppMessage message too long to set"));
+        }
+        Ok(Self {
+            message: mr.to_vec(),
+        })
     }
     pub fn encode(
         &self,
@@ -33,12 +42,4 @@ impl RPCOperationAppMessage {
         builder.set_message(&self.message);
         Ok(())
     }
-
-    pub fn message(&self) -> &[u8] {
-        &self.message
-    }
-
-    pub fn destructure(self) -> Vec<u8> {
-        self.message
-    }
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_cancel_tunnel.rs b/veilid-core/src/rpc_processor/coders/operations/operation_cancel_tunnel.rs
index 1a892676..4bb6ac06 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_cancel_tunnel.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_cancel_tunnel.rs
@@ -12,12 +12,20 @@ impl RPCOperationCancelTunnelQ {
     pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         Ok(())
     }
+
+    pub fn id(&self) -> TunnelId {
+        self.id
+    }
+
+    pub fn destructure(self) -> TunnelId {
+        self.id
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_cancel_tunnel_q::Reader,
-    ) -> Result<RPCOperationCancelTunnelQ, RPCError> {
+    ) -> Result<Self, RPCError> {
         let id = TunnelId::new(reader.get_id());
-
-        Ok(RPCOperationCancelTunnelQ { id })
+        Ok(Self { id })
     }
     pub fn encode(
         &self,
@@ -27,13 +35,6 @@ impl RPCOperationCancelTunnelQ {
 
         Ok(())
     }
-    pub fn id(&self) -> TunnelId {
-        self.id
-    }
-
-    pub fn destructure(self) -> TunnelId {
-        self.id
-    }
 }
 
 #[derive(Debug, Clone)]
@@ -54,14 +55,14 @@ impl RPCOperationCancelTunnelA {
     }
     pub fn decode(
         reader: &veilid_capnp::operation_cancel_tunnel_a::Reader,
-    ) -> Result<RPCOperationCancelTunnelA, RPCError> {
+    ) -> Result<Self, RPCError> {
         match reader.which().map_err(RPCError::protocol)? {
             veilid_capnp::operation_cancel_tunnel_a::Which::Tunnel(r) => {
-                Ok(RPCOperationCancelTunnelA::Tunnel(TunnelId::new(r)))
+                Ok(Self::Tunnel(TunnelId::new(r)))
             }
             veilid_capnp::operation_cancel_tunnel_a::Which::Error(r) => {
                 let tunnel_error = decode_tunnel_error(r.map_err(RPCError::protocol)?);
-                Ok(RPCOperationCancelTunnelA::Error(tunnel_error))
+                Ok(Self::Error(tunnel_error))
             }
         }
     }
@@ -70,10 +71,10 @@ impl RPCOperationCancelTunnelA {
         builder: &mut veilid_capnp::operation_cancel_tunnel_a::Builder,
     ) -> Result<(), RPCError> {
         match self {
-            RPCOperationCancelTunnelA::Tunnel(p) => {
+            Self::Tunnel(p) => {
                 builder.set_tunnel(p.as_u64());
             }
-            RPCOperationCancelTunnelA::Error(e) => {
+            Self::Error(e) => {
                 builder.set_error(encode_tunnel_error(*e));
             }
         }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_complete_tunnel.rs b/veilid-core/src/rpc_processor/coders/operations/operation_complete_tunnel.rs
index 8ec27b59..46b0258a 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_complete_tunnel.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_complete_tunnel.rs
@@ -20,9 +20,27 @@ impl RPCOperationCompleteTunnelQ {
     pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         Ok(())
     }
+
+    pub fn id(&self) -> TunnelId {
+        self.id
+    }
+
+    pub fn local_mode(&self) -> TunnelMode {
+        self.local_mode
+    }
+    pub fn depth(&self) -> u8 {
+        self.depth
+    }
+    pub fn endpoint(&self) -> &TunnelEndpoint {
+        &self.endpoint
+    }
+    pub fn destructure(self) -> (TunnelId, TunnelMode, u8, TunnelEndpoint) {
+        (self.id, self.local_mode, self.depth, self.endpoint)
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_complete_tunnel_q::Reader,
-    ) -> Result<RPCOperationCompleteTunnelQ, RPCError> {
+    ) -> Result<Self, RPCError> {
         let id = TunnelId::new(reader.get_id());
         let local_mode = match reader.get_local_mode().map_err(RPCError::protocol)? {
             veilid_capnp::TunnelEndpointMode::Raw => TunnelMode::Raw,
@@ -32,7 +50,7 @@ impl RPCOperationCompleteTunnelQ {
         let te_reader = reader.get_endpoint().map_err(RPCError::protocol)?;
         let endpoint = decode_tunnel_endpoint(&te_reader)?;
 
-        Ok(RPCOperationCompleteTunnelQ {
+        Ok(Self {
             id,
             local_mode,
             depth,
@@ -54,23 +72,6 @@ impl RPCOperationCompleteTunnelQ {
 
         Ok(())
     }
-    pub fn id(&self) -> TunnelId {
-        self.id
-    }
-
-    pub fn local_mode(&self) -> TunnelMode {
-        self.local_mode
-    }
-    pub fn depth(&self) -> u8 {
-        self.depth
-    }
-    pub fn endpoint(&self) -> &TunnelEndpoint {
-        &self.endpoint
-    }
-
-    pub fn destructure(self) -> (TunnelId, TunnelMode, u8, TunnelEndpoint) {
-        (self.id, self.local_mode, self.depth, self.endpoint)
-    }
 }
 
 #[derive(Debug, Clone)]
@@ -92,16 +93,16 @@ impl RPCOperationCompleteTunnelA {
 
     pub fn decode(
         reader: &veilid_capnp::operation_complete_tunnel_a::Reader,
-    ) -> Result<RPCOperationCompleteTunnelA, RPCError> {
+    ) -> Result<Self, RPCError> {
         match reader.which().map_err(RPCError::protocol)? {
             veilid_capnp::operation_complete_tunnel_a::Which::Tunnel(r) => {
                 let ft_reader = r.map_err(RPCError::protocol)?;
                 let full_tunnel = decode_full_tunnel(&ft_reader)?;
-                Ok(RPCOperationCompleteTunnelA::Tunnel(full_tunnel))
+                Ok(Self::Tunnel(full_tunnel))
             }
             veilid_capnp::operation_complete_tunnel_a::Which::Error(r) => {
                 let tunnel_error = decode_tunnel_error(r.map_err(RPCError::protocol)?);
-                Ok(RPCOperationCompleteTunnelA::Error(tunnel_error))
+                Ok(Self::Error(tunnel_error))
             }
         }
     }
@@ -110,10 +111,10 @@ impl RPCOperationCompleteTunnelA {
         builder: &mut veilid_capnp::operation_complete_tunnel_a::Builder,
     ) -> Result<(), RPCError> {
         match self {
-            RPCOperationCompleteTunnelA::Tunnel(p) => {
+            Self::Tunnel(p) => {
                 encode_full_tunnel(p, &mut builder.reborrow().init_tunnel())?;
             }
-            RPCOperationCompleteTunnelA::Error(e) => {
+            Self::Error(e) => {
                 builder.set_error(encode_tunnel_error(*e));
             }
         }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_find_block.rs b/veilid-core/src/rpc_processor/coders/operations/operation_find_block.rs
index 80a2075e..b6897558 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_find_block.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_find_block.rs
@@ -16,13 +16,22 @@ impl RPCOperationFindBlockQ {
     pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         Ok(())
     }
+
+    pub fn block_id(&self) -> TypedKey {
+        self.block_id
+    }
+
+    pub fn destructure(self) -> TypedKey {
+        self.block_id
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_find_block_q::Reader,
     ) -> Result<RPCOperationFindBlockQ, RPCError> {
         let bi_reader = reader.get_block_id().map_err(RPCError::protocol)?;
         let block_id = decode_typed_key(&bi_reader)?;
 
-        Ok(RPCOperationFindBlockQ::new(block_id))
+        Ok(Self { block_id })
     }
     pub fn encode(
         &self,
@@ -33,14 +42,6 @@ impl RPCOperationFindBlockQ {
 
         Ok(())
     }
-
-    pub fn block_id(&self) -> TypedKey {
-        self.block_id
-    }
-
-    pub fn destructure(self) -> TypedKey {
-        self.block_id
-    }
 }
 
 #[derive(Debug, Clone)]
@@ -52,7 +53,7 @@ pub struct RPCOperationFindBlockA {
 
 impl RPCOperationFindBlockA {
     pub fn new(
-        data: &[u8],
+        data: Vec<u8>,
         suppliers: Vec<PeerInfo>,
         peers: Vec<PeerInfo>,
     ) -> Result<Self, RPCError> {
@@ -67,7 +68,7 @@ impl RPCOperationFindBlockA {
         }
 
         Ok(Self {
-            data: data.to_vec(),
+            data,
             suppliers,
             peers,
         })
@@ -78,19 +79,31 @@ impl RPCOperationFindBlockA {
         Ok(())
     }
 
-    pub fn decode(
-        reader: &veilid_capnp::operation_find_block_a::Reader,
-    ) -> Result<RPCOperationFindBlockA, RPCError> {
-        let data = reader.get_data().map_err(RPCError::protocol)?;
-        let suppliers_reader = reader.get_suppliers().map_err(RPCError::protocol)?;
-        let peers_reader = reader.get_peers().map_err(RPCError::protocol)?;
+    pub fn data(&self) -> &[u8] {
+        &self.data
+    }
+    pub fn suppliers(&self) -> &[PeerInfo] {
+        &self.suppliers
+    }
+    pub fn peers(&self) -> &[PeerInfo] {
+        &self.peers
+    }
 
+    pub fn destructure(self) -> (Vec<u8>, Vec<PeerInfo>, Vec<PeerInfo>) {
+        (self.data, self.suppliers, self.peers)
+    }
+    pub fn decode(reader: &veilid_capnp::operation_find_block_a::Reader) -> Result<Self, RPCError> {
+        let data = reader.get_data().map_err(RPCError::protocol)?;
         if data.len() > MAX_FIND_BLOCK_A_DATA_LEN {
             return Err(RPCError::protocol("find block data length too long"));
         }
+
+        let suppliers_reader = reader.get_suppliers().map_err(RPCError::protocol)?;
         if suppliers_reader.len() as usize > MAX_FIND_BLOCK_A_SUPPLIERS_LEN {
             return Err(RPCError::protocol("find block suppliers length too long"));
         }
+
+        let peers_reader = reader.get_peers().map_err(RPCError::protocol)?;
         if peers_reader.len() as usize > MAX_FIND_BLOCK_A_PEERS_LEN {
             return Err(RPCError::protocol("find block peers length too long"));
         }
@@ -117,7 +130,11 @@ impl RPCOperationFindBlockA {
             peers.push(peer_info);
         }
 
-        RPCOperationFindBlockA::new(data, suppliers, peers)
+        Ok(Self {
+            data: data.to_vec(),
+            suppliers,
+            peers,
+        })
     }
 
     pub fn encode(
@@ -150,18 +167,4 @@ impl RPCOperationFindBlockA {
 
         Ok(())
     }
-
-    pub fn data(&self) -> &[u8] {
-        &self.data
-    }
-    pub fn suppliers(&self) -> &[PeerInfo] {
-        &self.suppliers
-    }
-    pub fn peers(&self) -> &[PeerInfo] {
-        &self.peers
-    }
-
-    pub fn destructure(self) -> (Vec<u8>, Vec<PeerInfo>, Vec<PeerInfo>) {
-        (self.data, self.suppliers, self.peers)
-    }
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_find_node.rs b/veilid-core/src/rpc_processor/coders/operations/operation_find_node.rs
index 3b5352d2..046cb8dc 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_find_node.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_find_node.rs
@@ -14,12 +14,19 @@ impl RPCOperationFindNodeQ {
     pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         Ok(())
     }
-    pub fn decode(
-        reader: &veilid_capnp::operation_find_node_q::Reader,
-    ) -> Result<RPCOperationFindNodeQ, RPCError> {
+
+    pub fn node_id(&self) -> &TypedKey {
+        &self.node_id
+    }
+
+    pub fn destructure(self) -> TypedKey {
+        self.node_id
+    }
+
+    pub fn decode(reader: &veilid_capnp::operation_find_node_q::Reader) -> Result<Self, RPCError> {
         let ni_reader = reader.get_node_id().map_err(RPCError::protocol)?;
         let node_id = decode_typed_key(&ni_reader)?;
-        Ok(RPCOperationFindNodeQ { node_id })
+        Ok(Self { node_id })
     }
     pub fn encode(
         &self,
@@ -29,14 +36,6 @@ impl RPCOperationFindNodeQ {
         encode_typed_key(&self.node_id, &mut ni_builder);
         Ok(())
     }
-
-    pub fn node_id(&self) -> &TypedKey {
-        &self.node_id
-    }
-
-    pub fn destructure(self) -> TypedKey {
-        self.node_id
-    }
 }
 
 #[derive(Debug, Clone)]
@@ -57,6 +56,15 @@ impl RPCOperationFindNodeA {
         PeerInfo::validate_vec(&mut self.peers, validate_context.crypto.clone());
         Ok(())
     }
+
+    pub fn peers(&self) -> &[PeerInfo] {
+        &self.peers
+    }
+
+    pub fn destructure(self) -> Vec<PeerInfo> {
+        self.peers
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_find_node_a::Reader,
     ) -> Result<RPCOperationFindNodeA, RPCError> {
@@ -77,7 +85,7 @@ impl RPCOperationFindNodeA {
             peers.push(peer_info);
         }
 
-        RPCOperationFindNodeA::new(peers)
+        Ok(Self { peers })
     }
     pub fn encode(
         &self,
@@ -95,12 +103,4 @@ impl RPCOperationFindNodeA {
         }
         Ok(())
     }
-
-    pub fn peers(&self) -> &[PeerInfo] {
-        &self.peers
-    }
-
-    pub fn destructure(self) -> Vec<PeerInfo> {
-        self.peers
-    }
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs b/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
index c1c6c987..5ff3edb5 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
@@ -1,5 +1,5 @@
 use super::*;
-use crate::storage_manager::{SignedValueDescriptor, ValueDetail};
+use crate::storage_manager::{SignedValueData, SignedValueDescriptor};
 
 const MAX_GET_VALUE_A_PEERS_LEN: usize = 20;
 
@@ -39,14 +39,25 @@ impl RPCOperationGetValueQ {
         Ok(())
     }
 
-    pub fn decode(
-        reader: &veilid_capnp::operation_get_value_q::Reader,
-    ) -> Result<RPCOperationGetValueQ, RPCError> {
+    pub fn key(&self) -> &TypedKey {
+        &self.key
+    }
+    pub fn subkey(&self) -> ValueSubkey {
+        self.subkey
+    }
+    pub fn want_descriptor(&self) -> bool {
+        self.want_descriptor
+    }
+    pub fn destructure(self) -> (TypedKey, ValueSubkey, bool) {
+        (self.key, self.subkey, self.want_descriptor)
+    }
+
+    pub fn decode(reader: &veilid_capnp::operation_get_value_q::Reader) -> Result<Self, RPCError> {
         let k_reader = reader.reborrow().get_key().map_err(RPCError::protocol)?;
         let key = decode_typed_key(&k_reader)?;
         let subkey = reader.reborrow().get_subkey();
         let want_descriptor = reader.reborrow().get_want_descriptor();
-        Ok(RPCOperationGetValueQ {
+        Ok(Self {
             key,
             subkey,
             want_descriptor,
@@ -62,110 +73,167 @@ impl RPCOperationGetValueQ {
         builder.set_want_descriptor(self.want_descriptor);
         Ok(())
     }
-    pub fn key(&self) -> &TypedKey {
-        &self.key
-    }
-    pub fn subkey(&self) -> ValueSubkey {
-        self.subkey
-    }
-    pub fn want_descriptor(&self) -> bool {
-        self.want_descriptor
-    }
-    pub fn destructure(self) -> (TypedKey, ValueSubkey, bool) {
-        (self.key, self.subkey, self.want_descriptor)
-    }
 }
 
 #[derive(Debug, Clone)]
-pub enum RPCOperationGetValueA {
-    Value(ValueDetail),
-    Peers(Vec<PeerInfo>),
+pub struct RPCOperationGetValueA {
+    value: Option<SignedValueData>,
+    peers: Vec<PeerInfo>,
+    descriptor: Option<SignedValueDescriptor>,
 }
 
 impl RPCOperationGetValueA {
-    pub fn new_value(value: ValueDetail) -> Self {
-        Self::Value(value)
-    }
-    pub fn new_peers(peers: Vec<PeerInfo>) -> Result<Self, RPCError> {
+    pub fn new(
+        value: Option<SignedValueData>,
+        peers: Vec<PeerInfo>,
+        descriptor: Option<SignedValueDescriptor>,
+    ) -> Result<Self, RPCError> {
         if peers.len() > MAX_GET_VALUE_A_PEERS_LEN {
             return Err(RPCError::protocol("GetValueA peers length too long"));
         }
-        Ok(Self::Peers(peers))
+        if descriptor.is_some() && !value.is_some() {
+            return Err(RPCError::protocol(
+                "GetValueA should not return descriptor without value",
+            ));
+        }
+        Ok(Self {
+            value,
+            peers,
+            descriptor,
+        })
     }
     pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
-        match self {
-            RPCOperationGetValueA::Value(value_detail) => {
-                let question_context = validate_context
-                    .question_context
-                    .as_ref()
-                    .expect("GetValueA requires question context");
-                let QuestionContext::GetValue(get_value_context) = question_context else {
-                    panic!("Wrong context type for GetValueA");
+        let question_context = validate_context
+            .question_context
+            .as_ref()
+            .expect("GetValueA requires question context");
+        let QuestionContext::GetValue(get_value_context) = question_context else {
+            panic!("Wrong context type for GetValueA");
+        };
+
+        if let Some(value) = &self.value {
+            // Get descriptor to validate with
+            let descriptor = if let Some(descriptor) = &self.descriptor {
+                if let Some(last_descriptor) = &get_value_context.last_descriptor {
+                    if descriptor.cmp_no_sig(last_descriptor) != cmp::Ordering::Equal {
+                        return Err(RPCError::protocol(
+                            "getvalue descriptor does not match last descriptor",
+                        ));
+                    }
+                }
+                descriptor
+            } else {
+                let Some(descriptor) = &get_value_context.last_descriptor else {
+                    return Err(RPCError::protocol(
+                        "no last descriptor, requires a descriptor",
+                    ));
                 };
-                value_detail
-                    .validate(
-                        get_value_context.last_descriptor.as_ref(),
-                        get_value_context.subkey,
-                        get_value_context.vcrypto.clone(),
-                    )
-                    .map_err(RPCError::protocol)
-            }
-            RPCOperationGetValueA::Peers(peers) => {
-                PeerInfo::validate_vec(peers, validate_context.crypto.clone());
-                Ok(())
+                descriptor
+            };
+            // Ensure the descriptor itself validates
+            descriptor
+                .validate(get_value_context.vcrypto.clone())
+                .map_err(RPCError::protocol)?;
+
+            // And the signed value data
+            value
+                .validate(
+                    descriptor.owner(),
+                    get_value_context.subkey,
+                    get_value_context.vcrypto.clone(),
+                )
+                .map_err(RPCError::protocol)?;
+        } else {
+            // No value, should not have descriptor
+            if self.descriptor.is_some() {
+                return Err(RPCError::protocol("descriptor returned without a value"));
             }
         }
+
+        PeerInfo::validate_vec(&mut self.peers, validate_context.crypto.clone());
+        Ok(())
     }
 
-    pub fn decode(
-        reader: &veilid_capnp::operation_get_value_a::Reader,
-    ) -> Result<RPCOperationGetValueA, RPCError> {
-        match reader.which().map_err(RPCError::protocol)? {
-            veilid_capnp::operation_get_value_a::Which::Value(r) => {
-                let value_detail = decode_value_detail(&r.map_err(RPCError::protocol)?)?;
-                Ok(RPCOperationGetValueA::Value(value_detail))
-            }
-            veilid_capnp::operation_get_value_a::Which::Peers(r) => {
-                let peers_reader = r.map_err(RPCError::protocol)?;
-                if peers_reader.len() as usize > MAX_GET_VALUE_A_PEERS_LEN {
-                    return Err(RPCError::protocol("GetValueA peers length too long"));
-                }
-                let mut peers = Vec::<PeerInfo>::with_capacity(
-                    peers_reader
-                        .len()
-                        .try_into()
-                        .map_err(RPCError::map_internal("too many peers"))?,
-                );
-                for p in peers_reader.iter() {
-                    let peer_info = decode_peer_info(&p)?;
-                    peers.push(peer_info);
-                }
+    pub fn value(&self) -> Option<&SignedValueData> {
+        self.value.as_ref()
+    }
+    pub fn peers(&self) -> &[PeerInfo] {
+        &self.peers
+    }
+    pub fn descriptor(&self) -> Option<&SignedValueDescriptor> {
+        self.descriptor.as_ref()
+    }
+    pub fn destructure(
+        self,
+    ) -> (
+        Option<SignedValueData>,
+        Vec<PeerInfo>,
+        Option<SignedValueDescriptor>,
+    ) {
+        (self.value, self.peers, self.descriptor)
+    }
 
-                Ok(RPCOperationGetValueA::Peers(peers))
-            }
+    pub fn decode(reader: &veilid_capnp::operation_get_value_a::Reader) -> Result<Self, RPCError> {
+        let value = if reader.has_value() {
+            let value_reader = reader.get_value().map_err(RPCError::protocol)?;
+            let value = decode_signed_value_data(&value_reader)?;
+            Some(value)
+        } else {
+            None
+        };
+
+        let peers_reader = reader.get_peers().map_err(RPCError::protocol)?;
+        if peers_reader.len() as usize > MAX_GET_VALUE_A_PEERS_LEN {
+            return Err(RPCError::protocol("GetValueA peers length too long"));
         }
+        let mut peers = Vec::<PeerInfo>::with_capacity(
+            peers_reader
+                .len()
+                .try_into()
+                .map_err(RPCError::map_internal("too many peers"))?,
+        );
+        for p in peers_reader.iter() {
+            let peer_info = decode_peer_info(&p)?;
+            peers.push(peer_info);
+        }
+
+        let descriptor = if reader.has_descriptor() {
+            let d_reader = reader.get_descriptor().map_err(RPCError::protocol)?;
+            let descriptor = decode_signed_value_descriptor(&d_reader)?;
+            Some(descriptor)
+        } else {
+            None
+        };
+
+        Ok(Self {
+            value,
+            peers,
+            descriptor,
+        })
     }
     pub fn encode(
         &self,
         builder: &mut veilid_capnp::operation_get_value_a::Builder,
     ) -> Result<(), RPCError> {
-        match self {
-            RPCOperationGetValueA::Value(value_detail) => {
-                let mut d_builder = builder.reborrow().init_value();
-                encode_value_detail(&value_detail, &mut d_builder)?;
-            }
-            RPCOperationGetValueA::Peers(peers) => {
-                let mut peers_builder = builder.reborrow().init_peers(
-                    peers
-                        .len()
-                        .try_into()
-                        .map_err(RPCError::map_internal("invalid peers list length"))?,
-                );
-                for (i, peer) in peers.iter().enumerate() {
-                    let mut pi_builder = peers_builder.reborrow().get(i as u32);
-                    encode_peer_info(peer, &mut pi_builder)?;
-                }
-            }
+        if let Some(value) = &self.value {
+            let mut v_builder = builder.reborrow().init_value();
+            encode_signed_value_data(value, &mut v_builder)?;
+        }
+
+        let mut peers_builder = builder.reborrow().init_peers(
+            self.peers
+                .len()
+                .try_into()
+                .map_err(RPCError::map_internal("invalid peers list length"))?,
+        );
+        for (i, peer) in self.peers.iter().enumerate() {
+            let mut pi_builder = peers_builder.reborrow().get(i as u32);
+            encode_peer_info(peer, &mut pi_builder)?;
+        }
+
+        if let Some(descriptor) = &self.descriptor {
+            let mut d_builder = builder.reborrow().init_descriptor();
+            encode_signed_value_descriptor(descriptor, &mut d_builder)?;
         }
 
         Ok(())
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_return_receipt.rs b/veilid-core/src/rpc_processor/coders/operations/operation_return_receipt.rs
index 3930c33e..62e14182 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_return_receipt.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_return_receipt.rs
@@ -22,11 +22,28 @@ impl RPCOperationReturnReceipt {
         Ok(())
     }
 
+    pub fn receipt(&self) -> &[u8] {
+        &self.receipt
+    }
+
+    pub fn destructure(self) -> Vec<u8> {
+        self.receipt
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_return_receipt::Reader,
-    ) -> Result<RPCOperationReturnReceipt, RPCError> {
+    ) -> Result<Self, RPCError> {
         let rr = reader.get_receipt().map_err(RPCError::protocol)?;
-        RPCOperationReturnReceipt::new(rr)
+        if rr.len() < MIN_RECEIPT_SIZE {
+            return Err(RPCError::protocol("ReturnReceipt receipt too short to set"));
+        }
+        if rr.len() > MAX_RECEIPT_SIZE {
+            return Err(RPCError::protocol("ReturnReceipt receipt too long to set"));
+        }
+
+        Ok(Self {
+            receipt: rr.to_vec(),
+        })
     }
     pub fn encode(
         &self,
@@ -35,12 +52,4 @@ impl RPCOperationReturnReceipt {
         builder.set_receipt(&self.receipt);
         Ok(())
     }
-
-    pub fn receipt(&self) -> &[u8] {
-        &self.receipt
-    }
-
-    pub fn destructure(self) -> Vec<u8> {
-        self.receipt
-    }
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_route.rs b/veilid-core/src/rpc_processor/coders/operations/operation_route.rs
index e7d51ffe..7d72bd4c 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_route.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_route.rs
@@ -2,10 +2,10 @@ use super::*;
 
 #[derive(Debug, Clone)]
 pub struct RoutedOperation {
-    pub sequencing: Sequencing,
-    pub signatures: Vec<Signature>,
-    pub nonce: Nonce,
-    pub data: Vec<u8>,
+    sequencing: Sequencing,
+    signatures: Vec<Signature>,
+    nonce: Nonce,
+    data: Vec<u8>,
 }
 
 impl RoutedOperation {
@@ -17,10 +17,33 @@ impl RoutedOperation {
             data,
         }
     }
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        //xxx
+        Ok(())
+    }
+    pub fn sequencing(&self) -> Sequencing {
+        self.sequencing
+    }
+    pub fn signatures(&self) -> &[Signature] {
+        &self.signatures
+    }
 
-    pub fn decode(
-        reader: &veilid_capnp::routed_operation::Reader,
-    ) -> Result<RoutedOperation, RPCError> {
+    pub fn add_signature(&mut self, signature: Signature) {
+        self.signatures.push(signature);
+    }
+
+    pub fn nonce(&self) -> &Nonce {
+        &self.nonce
+    }
+    pub fn data(&self) -> &[u8] {
+        &self.data
+    }
+
+    pub fn destructure(self) -> (Sequencing, Vec<Signature>, Nonce, Vec<u8>) {
+        (self.sequencing, self.signatures, self.nonce, self.data)
+    }
+
+    pub fn decode(reader: &veilid_capnp::routed_operation::Reader) -> Result<Self, RPCError> {
         let sigs_reader = reader.get_signatures().map_err(RPCError::protocol)?;
         let mut signatures = Vec::<Signature>::with_capacity(
             sigs_reader
@@ -36,13 +59,13 @@ impl RoutedOperation {
         let sequencing = decode_sequencing(reader.get_sequencing().map_err(RPCError::protocol)?);
         let n_reader = reader.get_nonce().map_err(RPCError::protocol)?;
         let nonce = decode_nonce(&n_reader);
-        let data = reader.get_data().map_err(RPCError::protocol)?.to_vec();
+        let data = reader.get_data().map_err(RPCError::protocol)?;
 
-        Ok(RoutedOperation {
+        Ok(Self {
             sequencing,
             signatures,
             nonce,
-            data,
+            data: data.to_vec(),
         })
     }
 
@@ -73,21 +96,39 @@ impl RoutedOperation {
 
 #[derive(Debug, Clone)]
 pub struct RPCOperationRoute {
-    pub safety_route: SafetyRoute,
-    pub operation: RoutedOperation,
+    safety_route: SafetyRoute,
+    operation: RoutedOperation,
 }
 
 impl RPCOperationRoute {
-    pub fn decode(
-        reader: &veilid_capnp::operation_route::Reader,
-    ) -> Result<RPCOperationRoute, RPCError> {
+    pub fn new(safety_route: SafetyRoute, operation: RoutedOperation) -> Self {
+        Self {
+            safety_route,
+            operation,
+        }
+    }
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        self.operation.validate(validate_context)
+    }
+
+    pub fn safety_route(&self) -> &SafetyRoute {
+        &self.safety_route
+    }
+    pub fn operation(&self) -> &RoutedOperation {
+        &self.operation
+    }
+    pub fn destructure(self) -> (SafetyRoute, RoutedOperation) {
+        (self.safety_route, self.operation)
+    }
+
+    pub fn decode(reader: &veilid_capnp::operation_route::Reader) -> Result<Self, RPCError> {
         let sr_reader = reader.get_safety_route().map_err(RPCError::protocol)?;
         let safety_route = decode_safety_route(&sr_reader)?;
 
         let o_reader = reader.get_operation().map_err(RPCError::protocol)?;
         let operation = RoutedOperation::decode(&o_reader)?;
 
-        Ok(RPCOperationRoute {
+        Ok(Self {
             safety_route,
             operation,
         })
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_set_value.rs b/veilid-core/src/rpc_processor/coders/operations/operation_set_value.rs
index 99eed02f..f94095df 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_set_value.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_set_value.rs
@@ -1,22 +1,95 @@
 use super::*;
+use crate::storage_manager::{SignedValueData, SignedValueDescriptor};
+
+const MAX_SET_VALUE_A_PEERS_LEN: usize = 20;
+
+#[derive(Clone)]
+pub struct ValidateSetValueContext {
+    last_descriptor: Option<SignedValueDescriptor>,
+    subkey: ValueSubkey,
+    vcrypto: CryptoSystemVersion,
+}
+impl fmt::Debug for ValidateSetValueContext {
+    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
+        f.debug_struct("ValidateSetValueContext")
+            .field("last_descriptor", &self.last_descriptor)
+            .field("subkey", &self.subkey)
+            .field("vcrypto", &self.vcrypto.kind().to_string())
+            .finish()
+    }
+}
 
 #[derive(Debug, Clone)]
 pub struct RPCOperationSetValueQ {
-    pub key: TypedKey,
-    pub subkey: ValueSubkey,
-    pub value: ValueData,
+    key: TypedKey,
+    subkey: ValueSubkey,
+    value: SignedValueData,
+    descriptor: Option<SignedValueDescriptor>,
 }
 
 impl RPCOperationSetValueQ {
-    pub fn decode(
-        reader: &veilid_capnp::operation_set_value_q::Reader,
-    ) -> Result<RPCOperationSetValueQ, RPCError> {
+    pub fn new(
+        key: TypedKey,
+        subkey: ValueSubkey,
+        value: SignedValueData,
+        descriptor: Option<SignedValueDescriptor>,
+    ) -> Self {
+        Self {
+            key,
+            subkey,
+            value,
+            descriptor,
+        }
+    }
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        Ok(())
+    }
+
+    pub fn key(&self) -> &TypedKey {
+        &self.key
+    }
+
+    pub fn subkey(&self) -> ValueSubkey {
+        self.subkey
+    }
+
+    pub fn value(&self) -> &SignedValueData {
+        &self.value
+    }
+
+    pub fn descriptor(&self) -> Option<&SignedValueDescriptor> {
+        self.descriptor.as_ref()
+    }
+    pub fn destructure(
+        self,
+    ) -> (
+        TypedKey,
+        ValueSubkey,
+        SignedValueData,
+        Option<SignedValueDescriptor>,
+    ) {
+        (self.key, self.subkey, self.value, self.descriptor)
+    }
+
+    pub fn decode(reader: &veilid_capnp::operation_set_value_q::Reader) -> Result<Self, RPCError> {
         let k_reader = reader.get_key().map_err(RPCError::protocol)?;
         let key = decode_typed_key(&k_reader)?;
         let subkey = reader.get_subkey();
         let v_reader = reader.get_value().map_err(RPCError::protocol)?;
-        let value = decode_value_data(&v_reader)?;
-        Ok(RPCOperationSetValueQ { key, subkey, value })
+        let value = decode_signed_value_data(&v_reader)?;
+        let descriptor = if reader.has_descriptor() {
+            let d_reader = reader.get_descriptor().map_err(RPCError::protocol)?;
+            let descriptor = decode_signed_value_descriptor(&d_reader)?;
+            Some(descriptor)
+        } else {
+            None
+        };
+        Ok(Self {
+            key,
+            subkey,
+            value,
+            descriptor,
+        })
     }
     pub fn encode(
         &self,
@@ -26,64 +99,129 @@ impl RPCOperationSetValueQ {
         encode_typed_key(&self.key, &mut k_builder);
         builder.set_subkey(self.subkey);
         let mut v_builder = builder.reborrow().init_value();
-        encode_value_data(&self.value, &mut v_builder)?;
+        encode_signed_value_data(&self.value, &mut v_builder)?;
+        if let Some(descriptor) = &self.descriptor {
+            let mut d_builder = builder.reborrow().init_descriptor();
+            encode_signed_value_descriptor(descriptor, &mut d_builder)?;
+        }
         Ok(())
     }
 }
 
 #[derive(Debug, Clone)]
-pub enum RPCOperationSetValueA {
-    Data(ValueData),
-    Peers(Vec<PeerInfo>),
+pub struct RPCOperationSetValueA {
+    set: bool,
+    value: Option<SignedValueData>,
+    peers: Vec<PeerInfo>,
 }
 
 impl RPCOperationSetValueA {
-    pub fn decode(
-        reader: &veilid_capnp::operation_set_value_a::Reader,
-    ) -> Result<RPCOperationSetValueA, RPCError> {
-        match reader.which().map_err(RPCError::protocol)? {
-            veilid_capnp::operation_set_value_a::Which::Data(r) => {
-                let data = decode_value_data(&r.map_err(RPCError::protocol)?)?;
-                Ok(RPCOperationSetValueA::Data(data))
-            }
-            veilid_capnp::operation_set_value_a::Which::Peers(r) => {
-                let peers_reader = r.map_err(RPCError::protocol)?;
-                let mut peers = Vec::<PeerInfo>::with_capacity(
-                    peers_reader
-                        .len()
-                        .try_into()
-                        .map_err(RPCError::map_internal("too many peers"))?,
-                );
-                for p in peers_reader.iter() {
-                    let peer_info = decode_peer_info(&p)?;
-                    peers.push(peer_info);
-                }
-
-                Ok(RPCOperationSetValueA::Peers(peers))
-            }
+    pub fn new(
+        set: bool,
+        value: Option<SignedValueData>,
+        peers: Vec<PeerInfo>,
+    ) -> Result<Self, RPCError> {
+        if peers.len() as usize > MAX_SET_VALUE_A_PEERS_LEN {
+            return Err(RPCError::protocol("SetValueA peers length too long"));
         }
+        Ok(Self { set, value, peers })
+    }
+
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        let question_context = validate_context
+            .question_context
+            .as_ref()
+            .expect("SetValueA requires question context");
+        let QuestionContext::SetValue(set_value_context) = question_context else {
+            panic!("Wrong context type for SetValueA");
+        };
+
+        if let Some(value) = &self.value {
+            // Get descriptor to validate with
+            let Some(descriptor) = &set_value_context.last_descriptor else {
+                return Err(RPCError::protocol(
+                    "no last descriptor, requires a descriptor",
+                ));
+            };
+
+            // Ensure the descriptor itself validates
+            descriptor
+                .validate(set_value_context.vcrypto.clone())
+                .map_err(RPCError::protocol)?;
+
+            // And the signed value data
+            value
+                .validate(
+                    descriptor.owner(),
+                    set_value_context.subkey,
+                    set_value_context.vcrypto.clone(),
+                )
+                .map_err(RPCError::protocol)?;
+        }
+
+        PeerInfo::validate_vec(&mut self.peers, validate_context.crypto.clone());
+        Ok(())
+    }
+
+    pub fn set(&self) -> bool {
+        self.set
+    }
+    pub fn value(&self) -> Option<&SignedValueData> {
+        self.value.as_ref()
+    }
+    pub fn peers(&self) -> &[PeerInfo] {
+        &self.peers
+    }
+    pub fn destructure(self) -> (bool, Option<SignedValueData>, Vec<PeerInfo>) {
+        (self.set, self.value, self.peers)
+    }
+
+    pub fn decode(reader: &veilid_capnp::operation_set_value_a::Reader) -> Result<Self, RPCError> {
+        let set = reader.get_set();
+        let value = if reader.has_value() {
+            let v_reader = reader.get_value().map_err(RPCError::protocol)?;
+            let value = decode_signed_value_data(&v_reader)?;
+            Some(value)
+        } else {
+            None
+        };
+        let peers_reader = reader.get_peers().map_err(RPCError::protocol)?;
+        if peers_reader.len() as usize > MAX_SET_VALUE_A_PEERS_LEN {
+            return Err(RPCError::protocol("SetValueA peers length too long"));
+        }
+        let mut peers = Vec::<PeerInfo>::with_capacity(
+            peers_reader
+                .len()
+                .try_into()
+                .map_err(RPCError::map_internal("too many peers"))?,
+        );
+        for p in peers_reader.iter() {
+            let peer_info = decode_peer_info(&p)?;
+            peers.push(peer_info);
+        }
+
+        Ok(Self { set, value, peers })
     }
     pub fn encode(
         &self,
         builder: &mut veilid_capnp::operation_set_value_a::Builder,
     ) -> Result<(), RPCError> {
-        match self {
-            RPCOperationSetValueA::Data(data) => {
-                let mut d_builder = builder.reborrow().init_data();
-                encode_value_data(&data, &mut d_builder)?;
-            }
-            RPCOperationSetValueA::Peers(peers) => {
-                let mut peers_builder = builder.reborrow().init_peers(
-                    peers
-                        .len()
-                        .try_into()
-                        .map_err(RPCError::map_internal("invalid peers list length"))?,
-                );
-                for (i, peer) in peers.iter().enumerate() {
-                    let mut pi_builder = peers_builder.reborrow().get(i as u32);
-                    encode_peer_info(peer, &mut pi_builder)?;
-                }
-            }
+        builder.set_set(self.set);
+
+        if let Some(value) = &self.value {
+            let mut v_builder = builder.reborrow().init_value();
+            encode_signed_value_data(value, &mut v_builder)?;
+        }
+
+        let mut peers_builder = builder.reborrow().init_peers(
+            self.peers
+                .len()
+                .try_into()
+                .map_err(RPCError::map_internal("invalid peers list length"))?,
+        );
+        for (i, peer) in self.peers.iter().enumerate() {
+            let mut pi_builder = peers_builder.reborrow().get(i as u32);
+            encode_peer_info(peer, &mut pi_builder)?;
         }
 
         Ok(())
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_signal.rs b/veilid-core/src/rpc_processor/coders/operations/operation_signal.rs
index cfc9dcab..29311316 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_signal.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_signal.rs
@@ -12,11 +12,16 @@ impl RPCOperationSignal {
     pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         self.signal_info.validate(validate_context.crypto.clone())
     }
-    pub fn decode(
-        reader: &veilid_capnp::operation_signal::Reader,
-    ) -> Result<RPCOperationSignal, RPCError> {
+    pub fn signal_info(&self) -> &SignalInfo {
+        &self.signal_info
+    }
+    pub fn destructure(self) -> SignalInfo {
+        self.signal_info
+    }
+
+    pub fn decode(reader: &veilid_capnp::operation_signal::Reader) -> Result<Self, RPCError> {
         let signal_info = decode_signal_info(reader)?;
-        Ok(RPCOperationSignal { signal_info })
+        Ok(Self { signal_info })
     }
     pub fn encode(
         &self,
@@ -25,10 +30,4 @@ impl RPCOperationSignal {
         encode_signal_info(&self.signal_info, builder)?;
         Ok(())
     }
-    pub fn signal_info(&self) -> &SignalInfo {
-        &self.signal_info
-    }
-    pub fn destructure(self) -> SignalInfo {
-        self.signal_info
-    }
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_start_tunnel.rs b/veilid-core/src/rpc_processor/coders/operations/operation_start_tunnel.rs
index 274b0af8..b3741462 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_start_tunnel.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_start_tunnel.rs
@@ -2,15 +2,40 @@ use super::*;
 
 #[derive(Debug, Clone)]
 pub struct RPCOperationStartTunnelQ {
-    pub id: TunnelId,
-    pub local_mode: TunnelMode,
-    pub depth: u8,
+    id: TunnelId,
+    local_mode: TunnelMode,
+    depth: u8,
 }
 
 impl RPCOperationStartTunnelQ {
+    pub fn new(id: TunnelId, local_mode: TunnelMode, depth: u8) -> Self {
+        Self {
+            id,
+            local_mode,
+            depth,
+        }
+    }
+
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        Ok(())
+    }
+
+    pub fn id(&self) -> TunnelId {
+        self.id
+    }
+    pub fn local_mode(&self) -> TunnelMode {
+        self.local_mode
+    }
+    pub fn depth(&self) -> u8 {
+        self.depth
+    }
+    pub fn destructure(self) -> (TunnelId, TunnelMode, u8) {
+        (self.id, self.local_mode, self.depth)
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_start_tunnel_q::Reader,
-    ) -> Result<RPCOperationStartTunnelQ, RPCError> {
+    ) -> Result<Self, RPCError> {
         let id = TunnelId::new(reader.get_id());
         let local_mode = match reader.get_local_mode().map_err(RPCError::protocol)? {
             veilid_capnp::TunnelEndpointMode::Raw => TunnelMode::Raw,
@@ -18,7 +43,7 @@ impl RPCOperationStartTunnelQ {
         };
         let depth = reader.get_depth();
 
-        Ok(RPCOperationStartTunnelQ {
+        Ok(Self {
             id,
             local_mode,
             depth,
@@ -46,18 +71,28 @@ pub enum RPCOperationStartTunnelA {
 }
 
 impl RPCOperationStartTunnelA {
+    pub fn new_partial(partial_tunnel: PartialTunnel) -> Self {
+        Self::Partial(partial_tunnel)
+    }
+    pub fn new_error(tunnel_error: TunnelError) -> Self {
+        Self::Error(tunnel_error)
+    }
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        Ok(())
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_start_tunnel_a::Reader,
-    ) -> Result<RPCOperationStartTunnelA, RPCError> {
+    ) -> Result<Self, RPCError> {
         match reader.which().map_err(RPCError::protocol)? {
             veilid_capnp::operation_start_tunnel_a::Which::Partial(r) => {
                 let pt_reader = r.map_err(RPCError::protocol)?;
                 let partial_tunnel = decode_partial_tunnel(&pt_reader)?;
-                Ok(RPCOperationStartTunnelA::Partial(partial_tunnel))
+                Ok(Self::Partial(partial_tunnel))
             }
             veilid_capnp::operation_start_tunnel_a::Which::Error(r) => {
                 let tunnel_error = decode_tunnel_error(r.map_err(RPCError::protocol)?);
-                Ok(RPCOperationStartTunnelA::Error(tunnel_error))
+                Ok(Self::Error(tunnel_error))
             }
         }
     }
@@ -66,10 +101,10 @@ impl RPCOperationStartTunnelA {
         builder: &mut veilid_capnp::operation_start_tunnel_a::Builder,
     ) -> Result<(), RPCError> {
         match self {
-            RPCOperationStartTunnelA::Partial(p) => {
+            Self::Partial(p) => {
                 encode_partial_tunnel(p, &mut builder.reborrow().init_partial())?;
             }
-            RPCOperationStartTunnelA::Error(e) => {
+            Self::Error(e) => {
                 builder.set_error(encode_tunnel_error(*e));
             }
         }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_status.rs b/veilid-core/src/rpc_processor/coders/operations/operation_status.rs
index 96ed390c..3c9853b4 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_status.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_status.rs
@@ -2,17 +2,25 @@ use super::*;
 
 #[derive(Debug, Clone)]
 pub struct RPCOperationStatusQ {
-    pub node_status: Option<NodeStatus>,
+    node_status: Option<NodeStatus>,
 }
 
 impl RPCOperationStatusQ {
-    pub fn validate(mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+    pub fn new(node_status: Option<NodeStatus>) -> Self {
+        Self { node_status }
+    }
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         Ok(())
     }
 
-    pub fn decode(
-        reader: &veilid_capnp::operation_status_q::Reader,
-    ) -> Result<RPCOperationStatusQ, RPCError> {
+    pub fn node_status(&self) -> Option<&NodeStatus> {
+        self.node_status.as_ref()
+    }
+    pub fn destructure(self) -> Option<NodeStatus> {
+        self.node_status
+    }
+
+    pub fn decode(reader: &veilid_capnp::operation_status_q::Reader) -> Result<Self, RPCError> {
         let node_status = if reader.has_node_status() {
             let ns_reader = reader.get_node_status().map_err(RPCError::protocol)?;
             let node_status = decode_node_status(&ns_reader)?;
@@ -20,7 +28,7 @@ impl RPCOperationStatusQ {
         } else {
             None
         };
-        Ok(RPCOperationStatusQ { node_status })
+        Ok(Self { node_status })
     }
     pub fn encode(
         &self,
@@ -36,17 +44,33 @@ impl RPCOperationStatusQ {
 
 #[derive(Debug, Clone)]
 pub struct RPCOperationStatusA {
-    pub node_status: Option<NodeStatus>,
-    pub sender_info: Option<SenderInfo>,
+    node_status: Option<NodeStatus>,
+    sender_info: Option<SenderInfo>,
 }
 
 impl RPCOperationStatusA {
+    pub fn new(node_status: Option<NodeStatus>, sender_info: Option<SenderInfo>) -> Self {
+        Self {
+            node_status,
+            sender_info,
+        }
+    }
+
     pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         Ok(())
     }
-    pub fn decode(
-        reader: &veilid_capnp::operation_status_a::Reader,
-    ) -> Result<RPCOperationStatusA, RPCError> {
+
+    pub fn node_status(&self) -> Option<&NodeStatus> {
+        self.node_status.as_ref()
+    }
+    pub fn sender_info(&self) -> Option<&SenderInfo> {
+        self.sender_info.as_ref()
+    }
+    pub fn destructure(self) -> (Option<NodeStatus>, Option<SenderInfo>) {
+        (self.node_status, self.sender_info)
+    }
+
+    pub fn decode(reader: &veilid_capnp::operation_status_a::Reader) -> Result<Self, RPCError> {
         let node_status = if reader.has_node_status() {
             let ns_reader = reader.get_node_status().map_err(RPCError::protocol)?;
             let node_status = decode_node_status(&ns_reader)?;
@@ -63,7 +87,7 @@ impl RPCOperationStatusA {
             None
         };
 
-        Ok(RPCOperationStatusA {
+        Ok(Self {
             node_status,
             sender_info,
         })
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_supply_block.rs b/veilid-core/src/rpc_processor/coders/operations/operation_supply_block.rs
index 56c7fb55..886b5bd4 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_supply_block.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_supply_block.rs
@@ -1,18 +1,35 @@
 use super::*;
 
+const MAX_SUPPLY_BLOCK_A_PEERS_LEN: usize = 20;
+
 #[derive(Debug, Clone)]
 pub struct RPCOperationSupplyBlockQ {
-    pub block_id: TypedKey,
+    block_id: TypedKey,
 }
 
 impl RPCOperationSupplyBlockQ {
+    pub fn new(block_id: TypedKey) -> Self {
+        Self { block_id }
+    }
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        Ok(())
+    }
+
+    pub fn block_id(&self) -> &TypedKey {
+        &self.block_id
+    }
+
+    pub fn destructure(self) -> TypedKey {
+        self.block_id
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_supply_block_q::Reader,
-    ) -> Result<RPCOperationSupplyBlockQ, RPCError> {
+    ) -> Result<Self, RPCError> {
         let bi_reader = reader.get_block_id().map_err(RPCError::protocol)?;
         let block_id = decode_typed_key(&bi_reader)?;
 
-        Ok(RPCOperationSupplyBlockQ { block_id })
+        Ok(Self { block_id })
     }
     pub fn encode(
         &self,
@@ -26,56 +43,68 @@ impl RPCOperationSupplyBlockQ {
 }
 
 #[derive(Debug, Clone)]
-pub enum RPCOperationSupplyBlockA {
-    Expiration(u64),
-    Peers(Vec<PeerInfo>),
+pub struct RPCOperationSupplyBlockA {
+    expiration: u64,
+    peers: Vec<PeerInfo>,
 }
 
 impl RPCOperationSupplyBlockA {
+    pub fn new(expiration: u64, peers: Vec<PeerInfo>) -> Result<Self, RPCError> {
+        if peers.len() > MAX_SUPPLY_BLOCK_A_PEERS_LEN {
+            return Err(RPCError::protocol("SupplyBlockA peers length too long"));
+        }
+        Ok(Self { expiration, peers })
+    }
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        PeerInfo::validate_vec(&mut self.peers, validate_context.crypto.clone());
+        Ok(())
+    }
+    pub fn expiration(&self) -> u64 {
+        self.expiration
+    }
+    pub fn peers(&self) -> &[PeerInfo] {
+        &self.peers
+    }
+    pub fn destructure(self) -> (u64, Vec<PeerInfo>) {
+        (self.expiration, self.peers)
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_supply_block_a::Reader,
-    ) -> Result<RPCOperationSupplyBlockA, RPCError> {
-        match reader.which().map_err(RPCError::protocol)? {
-            veilid_capnp::operation_supply_block_a::Which::Expiration(r) => {
-                Ok(RPCOperationSupplyBlockA::Expiration(r))
-            }
-            veilid_capnp::operation_supply_block_a::Which::Peers(r) => {
-                let peers_reader = r.map_err(RPCError::protocol)?;
-                let mut peers = Vec::<PeerInfo>::with_capacity(
-                    peers_reader
-                        .len()
-                        .try_into()
-                        .map_err(RPCError::map_internal("too many peers"))?,
-                );
-                for p in peers_reader.iter() {
-                    let peer_info = decode_peer_info(&p)?;
-                    peers.push(peer_info);
-                }
+    ) -> Result<Self, RPCError> {
+        let expiration = reader.get_expiration();
 
-                Ok(RPCOperationSupplyBlockA::Peers(peers))
-            }
+        let peers_reader = reader.get_peers().map_err(RPCError::protocol)?;
+        if peers_reader.len() as usize > MAX_SUPPLY_BLOCK_A_PEERS_LEN {
+            return Err(RPCError::protocol("SupplyBlockA peers length too long"));
         }
+        let mut peers = Vec::<PeerInfo>::with_capacity(
+            peers_reader
+                .len()
+                .try_into()
+                .map_err(RPCError::map_internal("too many peers"))?,
+        );
+        for p in peers_reader.iter() {
+            let peer_info = decode_peer_info(&p)?;
+            peers.push(peer_info);
+        }
+
+        Ok(Self { expiration, peers })
     }
     pub fn encode(
         &self,
         builder: &mut veilid_capnp::operation_supply_block_a::Builder,
     ) -> Result<(), RPCError> {
-        match self {
-            RPCOperationSupplyBlockA::Expiration(e) => {
-                builder.set_expiration(*e);
-            }
-            RPCOperationSupplyBlockA::Peers(peers) => {
-                let mut peers_builder = builder.reborrow().init_peers(
-                    peers
-                        .len()
-                        .try_into()
-                        .map_err(RPCError::map_internal("invalid peers list length"))?,
-                );
-                for (i, peer) in peers.iter().enumerate() {
-                    let mut pi_builder = peers_builder.reborrow().get(i as u32);
-                    encode_peer_info(peer, &mut pi_builder)?;
-                }
-            }
+        builder.set_expiration(self.expiration);
+        let mut peers_builder = builder.reborrow().init_peers(
+            self.peers
+                .len()
+                .try_into()
+                .map_err(RPCError::map_internal("invalid peers list length"))?,
+        );
+        for (i, peer) in self.peers.iter().enumerate() {
+            let mut pi_builder = peers_builder.reborrow().get(i as u32);
+            encode_peer_info(peer, &mut pi_builder)?;
         }
 
         Ok(())
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_validate_dial_info.rs b/veilid-core/src/rpc_processor/coders/operations/operation_validate_dial_info.rs
index 63a8bd40..87fac84f 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_validate_dial_info.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_validate_dial_info.rs
@@ -2,22 +2,68 @@ use super::*;
 
 #[derive(Debug, Clone)]
 pub struct RPCOperationValidateDialInfo {
-    pub dial_info: DialInfo,
-    pub receipt: Vec<u8>,
-    pub redirect: bool,
+    dial_info: DialInfo,
+    receipt: Vec<u8>,
+    redirect: bool,
 }
 
 impl RPCOperationValidateDialInfo {
+    pub fn new(dial_info: DialInfo, receipt: Vec<u8>, redirect: bool) -> Result<Self, RPCError> {
+        if receipt.len() < MIN_RECEIPT_SIZE {
+            return Err(RPCError::protocol(
+                "ValidateDialInfo receipt too short to set",
+            ));
+        }
+        if receipt.len() > MAX_RECEIPT_SIZE {
+            return Err(RPCError::protocol(
+                "ValidateDialInfo receipt too long to set",
+            ));
+        }
+
+        Ok(Self {
+            dial_info,
+            receipt,
+            redirect,
+        })
+    }
+
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        Ok(())
+    }
+    pub fn dial_info(&self) -> &DialInfo {
+        &self.dial_info
+    }
+    pub fn receipt(&self) -> &[u8] {
+        &self.receipt
+    }
+    pub fn redirect(&self) -> bool {
+        self.redirect
+    }
+    pub fn destructure(self) -> (DialInfo, Vec<u8>, bool) {
+        (self.dial_info, self.receipt, self.redirect)
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_validate_dial_info::Reader,
-    ) -> Result<RPCOperationValidateDialInfo, RPCError> {
+    ) -> Result<Self, RPCError> {
         let di_reader = reader.get_dial_info().map_err(RPCError::protocol)?;
         let dial_info = decode_dial_info(&di_reader)?;
         let rcpt_reader = reader.get_receipt().map_err(RPCError::protocol)?;
+        if rcpt_reader.len() < MIN_RECEIPT_SIZE {
+            return Err(RPCError::protocol(
+                "ValidateDialInfo receipt too short to set",
+            ));
+        }
+        if rcpt_reader.len() > MAX_RECEIPT_SIZE {
+            return Err(RPCError::protocol(
+                "ValidateDialInfo receipt too long to set",
+            ));
+        }
+
         let receipt = rcpt_reader.to_vec();
         let redirect = reader.get_redirect();
 
-        Ok(RPCOperationValidateDialInfo {
+        Ok(Self {
             dial_info,
             receipt,
             redirect,
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_value_changed.rs b/veilid-core/src/rpc_processor/coders/operations/operation_value_changed.rs
index 86bc9c69..d7a815a2 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_value_changed.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_value_changed.rs
@@ -1,17 +1,53 @@
 use super::*;
+use crate::storage_manager::SignedValueData;
 
 #[derive(Debug, Clone)]
 pub struct RPCOperationValueChanged {
-    pub key: TypedKey,
-    pub subkeys: Vec<ValueSubkeyRange>,
-    pub count: u32,
-    pub value: ValueData,
+    key: TypedKey,
+    subkeys: Vec<ValueSubkeyRange>,
+    count: u32,
+    value: SignedValueData,
 }
 
 impl RPCOperationValueChanged {
+    pub fn new(
+        key: TypedKey,
+        subkeys: Vec<ValueSubkeyRange>,
+        count: u32,
+        value: SignedValueData,
+    ) -> Self {
+        Self {
+            key,
+            subkeys,
+            count,
+            value,
+        }
+    }
+
+    pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        // validation must be done by storage manager as this is more complicated
+        Ok(())
+    }
+
+    pub fn key(&self) -> &TypedKey {
+        &self.key
+    }
+    pub fn subkeys(&self) -> &[ValueSubkeyRange] {
+        &self.subkeys
+    }
+    pub fn count(&self) -> u32 {
+        self.count
+    }
+    pub fn value(&self) -> &SignedValueData {
+        &self.value
+    }
+    pub fn destructure(self) -> (TypedKey, Vec<ValueSubkeyRange>, u32, SignedValueData) {
+        (self.key, self.subkeys, self.count, self.value)
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_value_changed::Reader,
-    ) -> Result<RPCOperationValueChanged, RPCError> {
+    ) -> Result<Self, RPCError> {
         let k_reader = reader.get_key().map_err(RPCError::protocol)?;
         let key = decode_typed_key(&k_reader)?;
 
@@ -38,8 +74,8 @@ impl RPCOperationValueChanged {
         }
         let count = reader.get_count();
         let v_reader = reader.get_value().map_err(RPCError::protocol)?;
-        let value = decode_value_data(&v_reader)?;
-        Ok(RPCOperationValueChanged {
+        let value = decode_signed_value_data(&v_reader)?;
+        Ok(Self {
             key,
             subkeys,
             count,
@@ -68,7 +104,7 @@ impl RPCOperationValueChanged {
         builder.set_count(self.count);
 
         let mut v_builder = builder.reborrow().init_value();
-        encode_value_data(&self.value, &mut v_builder)?;
+        encode_signed_value_data(&self.value, &mut v_builder)?;
         Ok(())
     }
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_watch_value.rs b/veilid-core/src/rpc_processor/coders/operations/operation_watch_value.rs
index e2eaee74..9da63df7 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_watch_value.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_watch_value.rs
@@ -1,21 +1,117 @@
 use super::*;
 
+const MAX_WATCH_VALUE_Q_SUBKEYS_LEN: usize = 512;
+const MAX_WATCH_VALUE_A_PEERS_LEN: usize = 20;
+
 #[derive(Debug, Clone)]
 pub struct RPCOperationWatchValueQ {
-    pub key: TypedKey,
-    pub subkeys: Vec<ValueSubkeyRange>,
-    pub expiration: u64,
-    pub count: u32,
+    key: TypedKey,
+    subkeys: Vec<ValueSubkeyRange>,
+    expiration: u64,
+    count: u32,
+    watcher: PublicKey,
+    signature: Signature,
 }
 
 impl RPCOperationWatchValueQ {
+    pub fn new(
+        key: TypedKey,
+        subkeys: Vec<ValueSubkeyRange>,
+        expiration: u64,
+        count: u32,
+        watcher: PublicKey,
+        signature: Signature,
+    ) -> Result<Self, RPCError> {
+        if subkeys.len() > MAX_WATCH_VALUE_Q_SUBKEYS_LEN {
+            return Err(RPCError::protocol("WatchValueQ subkeys length too long"));
+        }
+        Ok(Self {
+            key,
+            subkeys,
+            expiration,
+            count,
+            watcher,
+            signature,
+        })
+    }
+
+    // signature covers: key, subkeys, expiration, count, using watcher key
+    fn make_signature_data(&self) -> Vec<u8> {
+        let mut sig_data =
+            Vec::with_capacity(PUBLIC_KEY_LENGTH + 4 + (self.subkeys.len() * 8) + 8 + 4);
+        sig_data.extend_from_slice(&self.key.kind.0);
+        sig_data.extend_from_slice(&self.key.value.bytes);
+        for sk in &self.subkeys {
+            sig_data.extend_from_slice(&sk.0.to_le_bytes());
+            sig_data.extend_from_slice(&sk.1.to_le_bytes());
+        }
+        sig_data.extend_from_slice(&self.expiration.to_le_bytes());
+        sig_data.extend_from_slice(&self.count.to_le_bytes());
+        sig_data
+    }
+
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        let Some(vcrypto) = validate_context.crypto.get(self.key.kind) else {
+            return Err(RPCError::protocol("unsupported cryptosystem"));
+        };
+
+        let sig_data = self.make_signature_data();
+        vcrypto
+            .verify(&self.watcher, &sig_data, &self.signature)
+            .map_err(RPCError::protocol)?;
+
+        Ok(())
+    }
+
+    pub fn key(&self) -> &TypedKey {
+        &self.key
+    }
+    pub fn subkeys(&self) -> &[ValueSubkeyRange] {
+        &self.subkeys
+    }
+    pub fn expiration(&self) -> u64 {
+        self.expiration
+    }
+    pub fn count(&self) -> u32 {
+        self.count
+    }
+    pub fn watcher(&self) -> &PublicKey {
+        &self.watcher
+    }
+    pub fn signature(&self) -> &Signature {
+        &self.signature
+    }
+
+    pub fn destructure(
+        self,
+    ) -> (
+        TypedKey,
+        Vec<ValueSubkeyRange>,
+        u64,
+        u32,
+        PublicKey,
+        Signature,
+    ) {
+        (
+            self.key,
+            self.subkeys,
+            self.expiration,
+            self.count,
+            self.watcher,
+            self.signature,
+        )
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_watch_value_q::Reader,
-    ) -> Result<RPCOperationWatchValueQ, RPCError> {
+    ) -> Result<Self, RPCError> {
         let k_reader = reader.get_key().map_err(RPCError::protocol)?;
         let key = decode_typed_key(&k_reader)?;
 
         let sk_reader = reader.get_subkeys().map_err(RPCError::protocol)?;
+        if sk_reader.len() as usize > MAX_WATCH_VALUE_Q_SUBKEYS_LEN {
+            return Err(RPCError::protocol("WatchValueQ subkeys length too long"));
+        }
         let mut subkeys = Vec::<ValueSubkeyRange>::with_capacity(
             sk_reader
                 .len()
@@ -40,13 +136,22 @@ impl RPCOperationWatchValueQ {
         let expiration = reader.get_expiration();
         let count = reader.get_count();
 
-        Ok(RPCOperationWatchValueQ {
+        let w_reader = reader.get_watcher().map_err(RPCError::protocol)?;
+        let watcher = decode_key256(&w_reader);
+
+        let s_reader = reader.get_signature().map_err(RPCError::protocol)?;
+        let signature = decode_signature512(&s_reader);
+
+        Ok(Self {
             key,
             subkeys,
             expiration,
             count,
+            watcher,
+            signature,
         })
     }
+
     pub fn encode(
         &self,
         builder: &mut veilid_capnp::operation_watch_value_q::Builder,
@@ -67,22 +172,54 @@ impl RPCOperationWatchValueQ {
         }
         builder.set_expiration(self.expiration);
         builder.set_count(self.count);
+
+        let mut w_builder = builder.reborrow().init_watcher();
+        encode_key256(&self.watcher, &mut w_builder);
+
+        let mut s_builder = builder.reborrow().init_signature();
+        encode_signature512(&self.signature, &mut s_builder);
+
         Ok(())
     }
 }
 
 #[derive(Debug, Clone)]
 pub struct RPCOperationWatchValueA {
-    pub expiration: u64,
-    pub peers: Vec<PeerInfo>,
+    expiration: u64,
+    peers: Vec<PeerInfo>,
 }
 
 impl RPCOperationWatchValueA {
+    pub fn new(expiration: u64, peers: Vec<PeerInfo>) -> Result<Self, RPCError> {
+        if peers.len() > MAX_WATCH_VALUE_A_PEERS_LEN {
+            return Err(RPCError::protocol("WatchValueA peers length too long"));
+        }
+        Ok(Self { expiration, peers })
+    }
+
+    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+        PeerInfo::validate_vec(&mut self.peers, validate_context.crypto.clone());
+        Ok(())
+    }
+
+    pub fn expiration(&self) -> u64 {
+        self.expiration
+    }
+    pub fn peers(&self) -> &[PeerInfo] {
+        &self.peers
+    }
+    pub fn destructure(self) -> (u64, Vec<PeerInfo>) {
+        (self.expiration, self.peers)
+    }
+
     pub fn decode(
         reader: &veilid_capnp::operation_watch_value_a::Reader,
-    ) -> Result<RPCOperationWatchValueA, RPCError> {
+    ) -> Result<Self, RPCError> {
         let expiration = reader.get_expiration();
         let peers_reader = reader.get_peers().map_err(RPCError::protocol)?;
+        if peers_reader.len() as usize > MAX_WATCH_VALUE_A_PEERS_LEN {
+            return Err(RPCError::protocol("WatchValueA peers length too long"));
+        }
         let mut peers = Vec::<PeerInfo>::with_capacity(
             peers_reader
                 .len()
@@ -94,7 +231,7 @@ impl RPCOperationWatchValueA {
             peers.push(peer_info);
         }
 
-        Ok(RPCOperationWatchValueA { expiration, peers })
+        Ok(Self { expiration, peers })
     }
     pub fn encode(
         &self,
diff --git a/veilid-core/src/rpc_processor/coders/operations/question.rs b/veilid-core/src/rpc_processor/coders/operations/question.rs
index 8e0db706..f0f2c056 100644
--- a/veilid-core/src/rpc_processor/coders/operations/question.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/question.rs
@@ -11,7 +11,7 @@ impl RPCQuestion {
         Self { respond_to, detail }
     }
     pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
-        self.respond_to.validate(validate_context)?;
+        self.respond_to.validate(validate_context.crypto.clone())?;
         self.detail.validate(validate_context)
     }
     pub fn respond_to(&self) -> &RespondTo {
diff --git a/veilid-core/src/rpc_processor/coders/operations/respond_to.rs b/veilid-core/src/rpc_processor/coders/operations/respond_to.rs
index da21fefe..bff19c4f 100644
--- a/veilid-core/src/rpc_processor/coders/operations/respond_to.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/respond_to.rs
@@ -7,12 +7,10 @@ pub enum RespondTo {
 }
 
 impl RespondTo {
-    pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
+    pub fn validate(&mut self, crypto: Crypto) -> Result<(), RPCError> {
         match self {
             RespondTo::Sender => Ok(()),
-            RespondTo::PrivateRoute(pr) => pr
-                .validate(validate_context.crypto.clone())
-                .map_err(RPCError::protocol),
+            RespondTo::PrivateRoute(pr) => pr.validate(crypto).map_err(RPCError::protocol),
         }
     }
 
diff --git a/veilid-core/src/rpc_processor/coders/value_data.rs b/veilid-core/src/rpc_processor/coders/value_data.rs
new file mode 100644
index 00000000..c5985b6c
--- /dev/null
+++ b/veilid-core/src/rpc_processor/coders/value_data.rs
@@ -0,0 +1,30 @@
+use super::*;
+
+pub fn encode_signed_value_data(
+    signed_value_data: &SignedValueData,
+    builder: &mut veilid_capnp::signed_value_data::Builder,
+) -> Result<(), RPCError> {
+    builder.set_seq(signed_value_data.value_data().seq());
+    builder.set_data(signed_value_data.value_data().data());
+    let mut wb = builder.reborrow().init_writer();
+    encode_key256(signed_value_data.value_data().writer(), &mut wb);
+    let mut sb = builder.reborrow().init_signature();
+    encode_signature512(signed_value_data.signature(), &mut sb);
+    Ok(())
+}
+
+pub fn decode_signed_value_data(
+    reader: &veilid_capnp::signed_value_data::Reader,
+) -> Result<ValueData, RPCError> {
+    let seq = reader.get_seq();
+    let data = reader.get_data().map_err(RPCError::protocol)?.to_vec();
+    let wr = reader.get_writer().map_err(RPCError::protocol)?;
+    let writer = decode_key256(&wr);
+    let sr = reader.get_signature().map_err(RPCError::protocol)?;
+    let signature = decode_signature512(&sr);
+
+    Ok(SignedValueData {
+        value_data: ValueData { seq, data, writer },
+        signature,
+    })
+}
diff --git a/veilid-core/src/rpc_processor/mod.rs b/veilid-core/src/rpc_processor/mod.rs
index 024fc35f..1c9964dc 100644
--- a/veilid-core/src/rpc_processor/mod.rs
+++ b/veilid-core/src/rpc_processor/mod.rs
@@ -28,12 +28,13 @@ pub use rpc_status::*;
 
 use super::*;
 
-use crate::crypto::*;
+use crypto::*;
 use futures_util::StreamExt;
 use network_manager::*;
 use receipt_manager::*;
 use routing_table::*;
 use stop_token::future::FutureExt;
+use storage_manager::StorageManager;
 
 /////////////////////////////////////////////////////////////////////
 
@@ -226,6 +227,7 @@ pub struct RPCProcessorInner {
     send_channel: Option<flume::Sender<(Option<Id>, RPCMessageEncoded)>>,
     stop_source: Option<StopSource>,
     worker_join_handles: Vec<MustJoinHandle<()>>,
+    opt_storage_manager: Option<StorageManager>,
 }
 
 pub struct RPCProcessorUnlockedInner {
@@ -255,6 +257,7 @@ impl RPCProcessor {
             send_channel: None,
             stop_source: None,
             worker_join_handles: Vec::new(),
+            opt_storage_manager: None,
         }
     }
     fn new_unlocked_inner(
@@ -308,6 +311,16 @@ impl RPCProcessor {
         self.routing_table.clone()
     }
 
+    pub fn set_storage_manager(&self, opt_storage_manager: Option<StorageManager>) {
+        let inner = self.inner.lock();
+        inner.opt_storage_manager = opt_storage_manager
+    }
+
+    pub fn storage_manager(&self) -> Option<StorageManager> {
+        let inner = self.inner.lock();
+        inner.opt_storage_manager.clone()
+    }
+
     //////////////////////////////////////////////////////////////////////
 
     #[instrument(level = "debug", skip_all, err)]
@@ -1229,6 +1242,7 @@ impl RPCProcessor {
         // Validate the RPC operation
         let validate_context = RPCValidateContext {
             crypto: self.crypto.clone(),
+            rpc_processor: self.clone(),
             question_context,
         };
         operation.validate(&validate_context)?;
diff --git a/veilid-core/src/rpc_processor/rpc_get_value.rs b/veilid-core/src/rpc_processor/rpc_get_value.rs
index 2a7689b3..5ba248f8 100644
--- a/veilid-core/src/rpc_processor/rpc_get_value.rs
+++ b/veilid-core/src/rpc_processor/rpc_get_value.rs
@@ -14,7 +14,7 @@ impl RPCProcessor {
         key: TypedKey,
         subkey: ValueSubkey,
         last_descriptor: Option<SignedValueDescriptor>,
-    ) -> Result<NetworkResult<Answer<Vec<u8>>>, RPCError> {
+    ) -> Result<NetworkResult<Answer<GetValueAnswer>>, RPCError> {
         let get_value_q = RPCOperationGetValueQ::new(key, subkey, last_descriptor.is_none());
         let question = RPCQuestion::new(
             network_result_try!(self.get_destination_respond_to(&dest)?),
diff --git a/veilid-core/src/rpc_processor/rpc_signal.rs b/veilid-core/src/rpc_processor/rpc_signal.rs
index 1fd6608f..f2d1d19e 100644
--- a/veilid-core/src/rpc_processor/rpc_signal.rs
+++ b/veilid-core/src/rpc_processor/rpc_signal.rs
@@ -55,8 +55,9 @@ impl RPCProcessor {
 
         // Handle it
         let network_manager = self.network_manager();
+        let signal_info = signal.destructure();
         network_manager
-            .handle_signal(signal.signal_info)
+            .handle_signal(signal_info)
             .await
             .map_err(RPCError::network)
     }
diff --git a/veilid-core/src/rpc_processor/rpc_validate_dial_info.rs b/veilid-core/src/rpc_processor/rpc_validate_dial_info.rs
index 7535779e..d5d860b6 100644
--- a/veilid-core/src/rpc_processor/rpc_validate_dial_info.rs
+++ b/veilid-core/src/rpc_processor/rpc_validate_dial_info.rs
@@ -69,13 +69,10 @@ impl RPCProcessor {
         };
 
         // Get the statement
-        let RPCOperationValidateDialInfo {
-            dial_info,
-            receipt,
-            redirect,
-        } = match msg.operation.into_kind() {
-            RPCOperationKind::Statement(s) => match s.into_detail() {
-                RPCStatementDetail::ValidateDialInfo(s) => s,
+        let (_, _, _, kind) = msg.operation.destructure();
+        let (dial_info, receipt, redirect) = match kind {
+            RPCOperationKind::Statement(s) => match s.destructure() {
+                RPCStatementDetail::ValidateDialInfo(s) => s.destructure(),
                 _ => panic!("not a validate dial info"),
             },
             _ => panic!("not a statement"),
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index d5b3cfa3..8a4d17c0 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -23,6 +23,8 @@ const MAX_RECORD_DATA_SIZE: usize = 1_048_576;
 
 /// Locked structure for storage manager
 struct StorageManagerInner {
+    /// If we are started up
+    initialized: bool,
     /// Records that have been 'created' or 'opened' by this node
     local_record_store: Option<RecordStore>,
     /// Records that have been pushed to this node for distribution by other nodes
@@ -41,7 +43,7 @@ struct StorageManagerUnlockedInner {
 #[derive(Clone)]
 pub struct StorageManager {
     unlocked_inner: Arc<StorageManagerUnlockedInner>,
-    inner: Arc<Mutex<StorageManagerInner>>,
+    inner: Arc<AsyncMutex<StorageManagerInner>>,
 }
 
 impl StorageManager {
@@ -64,6 +66,7 @@ impl StorageManager {
     }
     fn new_inner() -> StorageManagerInner {
         StorageManagerInner {
+            initialized: false,
             local_record_store: None,
             remote_record_store: None,
         }
@@ -114,14 +117,14 @@ impl StorageManager {
                 block_store,
                 rpc_processor,
             )),
-            inner: Arc::new(Mutex::new(Self::new_inner())),
+            inner: Arc::new(AsyncMutex::new(Self::new_inner())),
         }
     }
 
     #[instrument(level = "debug", skip_all, err)]
     pub async fn init(&self) -> EyreResult<()> {
         debug!("startup storage manager");
-        let mut inner = self.inner.lock();
+        let mut inner = self.inner.lock().await;
 
         let local_limits = Self::local_limits_from_config(self.unlocked_inner.config.clone());
         let remote_limits = Self::remote_limits_from_config(self.unlocked_inner.config.clone());
@@ -143,14 +146,25 @@ impl StorageManager {
         inner.local_record_store = Some(local_record_store);
         inner.remote_record_store = Some(remote_record_store);
 
+        inner.initialized = true;
+
+        // Let rpc processor access storage manager
+        self.unlocked_inner
+            .rpc_processor
+            .set_storage_manager(Some(self.clone()));
+
         Ok(())
     }
 
     pub async fn terminate(&self) {
         debug!("starting storage manager shutdown");
+        let mut inner = self.inner.lock().await;
 
         // Release the storage manager
-        *self.inner.lock() = Self::new_inner();
+        *inner = Self::new_inner();
+
+        // Remove storage manager from rpc processor
+        self.unlocked_inner.rpc_processor.set_storage_manager(None);
 
         debug!("finished storage manager shutdown");
     }
@@ -172,10 +186,11 @@ impl StorageManager {
         record: Record,
     ) -> Result<TypedKey, VeilidAPIError> {
         // add value record to record store
-        let mut inner = self.inner.lock();
-        let Some(local_record_store) = inner.local_record_store.as_mut() else {
+        let mut inner = self.inner.lock().await;
+        if !inner.initialized {
             apibail_generic!("not initialized");
-        };
+        }
+        let local_record_store = inner.local_record_store.as_mut().unwrap();
         let key = self.get_key(vcrypto.clone(), &record);
         local_record_store.new_record(key, record).await?;
         Ok(key)
diff --git a/veilid-core/src/storage_manager/types/mod.rs b/veilid-core/src/storage_manager/types/mod.rs
index 9fde6117..9eea4ad8 100644
--- a/veilid-core/src/storage_manager/types/mod.rs
+++ b/veilid-core/src/storage_manager/types/mod.rs
@@ -1,9 +1,7 @@
 mod signed_value_data;
 mod signed_value_descriptor;
-mod value_detail;
 
 use super::*;
 
 pub use signed_value_data::*;
 pub use signed_value_descriptor::*;
-pub use value_detail::*;

From cb4abaefd766a51221d9af594072254ca6ff1355 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Sat, 22 Apr 2023 20:48:24 -0400
Subject: [PATCH 14/74] cleanup

---
 Cargo.lock                                    | 219 +++++++++++-------
 veilid-cli/src/command_processor.rs           |  20 +-
 .../tests/test_signed_node_info.rs            |  34 ++-
 .../types/low_level_protocol_type.rs          |   2 +-
 veilid-core/src/routing_table/bucket_entry.rs |  21 +-
 .../src/routing_table/tasks/bootstrap.rs      |  17 +-
 veilid-core/src/rpc_processor/coders/mod.rs   |  11 +-
 .../coders/operations/operation.rs            |   5 +-
 .../coders/operations/operation_get_value.rs  |   6 +-
 .../operations/operation_return_receipt.rs    |   6 +-
 .../src/rpc_processor/coders/peer_info.rs     |   5 +-
 veilid-core/src/rpc_processor/mod.rs          |  21 +-
 .../src/rpc_processor/operation_waiter.rs     |   2 +-
 veilid-core/src/rpc_processor/rpc_app_call.rs |   4 +-
 .../src/rpc_processor/rpc_app_message.rs      |   4 +-
 .../src/rpc_processor/rpc_get_value.rs        |  27 ++-
 .../src/rpc_processor/rpc_return_receipt.rs   |   6 +-
 veilid-core/src/rpc_processor/rpc_route.rs    |  73 +++---
 veilid-core/src/rpc_processor/rpc_signal.rs   |   2 +-
 veilid-core/src/rpc_processor/rpc_status.rs   |  20 +-
 .../rpc_processor/rpc_validate_dial_info.rs   |  13 +-
 .../src/storage_manager/record_store.rs       |  17 +-
 .../src/veilid_api/types/app_message_call.rs  |   4 +-
 .../types/dht/dht_record_descriptor.rs        |   8 +-
 .../src/veilid_api/types/dht/schema/smpl.rs   |   2 +-
 veilid-flutter/rust/Cargo.toml                |   8 +-
 veilid-server/Cargo.toml                      |   8 +-
 veilid-server/src/settings.rs                 |  17 +-
 veilid-server/src/unix.rs                     |  36 +--
 29 files changed, 334 insertions(+), 284 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index c98fe08b..1cfb4ba9 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -595,6 +595,25 @@ version = "0.21.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "a4a4ddaa51a5bc52a6948f74c06d20aaaddb71924eab79b8c97a8c556e942d6a"
 
+[[package]]
+name = "bindgen"
+version = "0.57.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "fd4865004a46a0aafb2a0a5eb19d3c9fc46ee5f063a6cfc605c69ac9ecf5263d"
+dependencies = [
+ "bitflags 1.3.2",
+ "cexpr 0.4.0",
+ "clang-sys",
+ "lazy_static",
+ "lazycell",
+ "peeking_take_while",
+ "proc-macro2",
+ "quote",
+ "regex",
+ "rustc-hash",
+ "shlex 0.1.1",
+]
+
 [[package]]
 name = "bindgen"
 version = "0.59.2"
@@ -602,7 +621,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "2bd2a9a458e8f4304c52c43ebb0cfbd520289f8379a52e329a38afda99bf8eb8"
 dependencies = [
  "bitflags 1.3.2",
- "cexpr",
+ "cexpr 0.6.0",
  "clang-sys",
  "clap 2.34.0",
  "env_logger 0.9.3",
@@ -614,7 +633,7 @@ dependencies = [
  "quote",
  "regex",
  "rustc-hash",
- "shlex",
+ "shlex 1.1.0",
  "which",
 ]
 
@@ -718,9 +737,9 @@ dependencies = [
 
 [[package]]
 name = "boringssl-src"
-version = "0.5.2+6195bf8"
+version = "0.3.0+688fc5c"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7ab565ccc5e276ea82a2013dd08bf2c999866b06daf1d4f30fee419c4aaec6d5"
+checksum = "f901accdf830d2ea2f4e27f923a5e1125cd8b1a39ab578b9db1a42d578a6922b"
 dependencies = [
  "cmake",
 ]
@@ -837,6 +856,15 @@ version = "1.1.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "6d43a04d8753f35258c91f8ec639f792891f748a1edbd759cf1dcea3382ad83c"
 
+[[package]]
+name = "cexpr"
+version = "0.4.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "f4aedb84272dbe89af497cf81375129abda4fc0a9e7c5d317498c15cc30c0d27"
+dependencies = [
+ "nom 5.1.2",
+]
+
 [[package]]
 name = "cexpr"
 version = "0.6.0"
@@ -1914,6 +1942,12 @@ dependencies = [
  "static_assertions",
 ]
 
+[[package]]
+name = "fixedbitset"
+version = "0.4.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "0ce7134b9999ecaf8bcd65542e436736ef32ddca1b3e06094cb6ec5755203b80"
+
 [[package]]
 name = "flate2"
 version = "1.0.25"
@@ -2207,26 +2241,25 @@ dependencies = [
 
 [[package]]
 name = "grpcio"
-version = "0.12.1"
+version = "0.9.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "609832ca501baeb662dc81932fda9ed83f5d058f4b899a807ba222ce696f430a"
+checksum = "24d99e00eed7e0a04ee2705112e7cfdbe1a3cc771147f22f016a8cd2d002187b"
 dependencies = [
- "futures-executor",
- "futures-util",
+ "futures",
  "grpcio-sys",
  "libc",
  "log",
- "parking_lot 0.12.1",
+ "parking_lot 0.11.2",
  "protobuf",
 ]
 
 [[package]]
 name = "grpcio-sys"
-version = "0.12.1+1.46.5-patched"
+version = "0.9.1+1.38.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "cf625d1803b6f44203f0428ddace847fb4994def5c803fc8a7a2f18fb3daec62"
+checksum = "9447d1a926beeef466606cc45717f80897998b548e7dc622873d453e1ecb4be4"
 dependencies = [
- "bindgen",
+ "bindgen 0.57.0",
  "boringssl-src",
  "cc",
  "cmake",
@@ -3146,6 +3179,12 @@ dependencies = [
  "winapi 0.3.9",
 ]
 
+[[package]]
+name = "multimap"
+version = "0.8.3"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "e5ce46fe64a9d73be07dcbe690a38ce1b293be448fd8ce1e6c1b8062c9f72c6a"
+
 [[package]]
 name = "nanorand"
 version = "0.7.0"
@@ -3337,6 +3376,16 @@ dependencies = [
  "version_check 0.1.5",
 ]
 
+[[package]]
+name = "nom"
+version = "5.1.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "ffb4262d26ed83a1c0a33a38fe2bb15797329c85770da05e6b828ddb782627af"
+dependencies = [
+ "memchr",
+ "version_check 0.9.4",
+]
+
 [[package]]
 name = "nom"
 version = "7.1.3"
@@ -3524,32 +3573,22 @@ version = "0.18.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "69d6c3d7288a106c0a363e4b0e8d308058d56902adefb16f4936f417ffef086e"
 dependencies = [
- "opentelemetry_api 0.18.0",
- "opentelemetry_sdk 0.18.0",
-]
-
-[[package]]
-name = "opentelemetry"
-version = "0.19.0"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "5f4b8347cc26099d3aeee044065ecc3ae11469796b4d65d065a23a584ed92a6f"
-dependencies = [
- "opentelemetry_api 0.19.0",
- "opentelemetry_sdk 0.19.0",
+ "opentelemetry_api",
+ "opentelemetry_sdk",
 ]
 
 [[package]]
 name = "opentelemetry-otlp"
-version = "0.12.0"
+version = "0.11.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "8af72d59a4484654ea8eb183fea5ae4eb6a41d7ac3e3bae5f4d2a282a3a7d3ca"
+checksum = "d1c928609d087790fc936a1067bdc310ae702bdf3b090c3f281b713622c8bbde"
 dependencies = [
  "async-trait",
  "futures",
  "futures-util",
  "grpcio",
  "http",
- "opentelemetry 0.19.0",
+ "opentelemetry",
  "opentelemetry-proto",
  "prost",
  "protobuf",
@@ -3560,26 +3599,27 @@ dependencies = [
 
 [[package]]
 name = "opentelemetry-proto"
-version = "0.2.0"
+version = "0.1.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "045f8eea8c0fa19f7d48e7bc3128a39c2e5c533d5c61298c548dfefc1064474c"
+checksum = "d61a2f56df5574508dd86aaca016c917489e589ece4141df1b5e349af8d66c28"
 dependencies = [
  "futures",
  "futures-util",
  "grpcio",
- "opentelemetry 0.19.0",
+ "opentelemetry",
  "prost",
  "protobuf",
  "tonic",
+ "tonic-build",
 ]
 
 [[package]]
 name = "opentelemetry-semantic-conventions"
-version = "0.11.0"
+version = "0.10.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "24e33428e6bf08c6f7fcea4ddb8e358fab0fe48ab877a87c70c6ebe20f673ce5"
+checksum = "9b02e0230abb0ab6636d18e2ba8fa02903ea63772281340ccac18e0af3ec9eeb"
 dependencies = [
- "opentelemetry 0.19.0",
+ "opentelemetry",
 ]
 
 [[package]]
@@ -3598,47 +3638,11 @@ dependencies = [
  "thiserror",
 ]
 
-[[package]]
-name = "opentelemetry_api"
-version = "0.19.0"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ed41783a5bf567688eb38372f2b7a8530f5a607a4b49d38dd7573236c23ca7e2"
-dependencies = [
- "fnv",
- "futures-channel",
- "futures-util",
- "indexmap",
- "once_cell",
- "pin-project-lite 0.2.9",
- "thiserror",
- "urlencoding",
-]
-
 [[package]]
 name = "opentelemetry_sdk"
 version = "0.18.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "1ca41c4933371b61c2a2f214bf16931499af4ec90543604ec828f7a625c09113"
-dependencies = [
- "async-trait",
- "crossbeam-channel",
- "dashmap",
- "fnv",
- "futures-channel",
- "futures-executor",
- "futures-util",
- "once_cell",
- "opentelemetry_api 0.18.0",
- "percent-encoding",
- "rand 0.8.5",
- "thiserror",
-]
-
-[[package]]
-name = "opentelemetry_sdk"
-version = "0.19.0"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "8b3a2a91fdbfdd4d212c0dcc2ab540de2c2bcbbd90be17de7a7daf8822d010c1"
 dependencies = [
  "async-std",
  "async-trait",
@@ -3649,7 +3653,7 @@ dependencies = [
  "futures-executor",
  "futures-util",
  "once_cell",
- "opentelemetry_api 0.19.0",
+ "opentelemetry_api",
  "percent-encoding",
  "rand 0.8.5",
  "thiserror",
@@ -3867,6 +3871,16 @@ dependencies = [
  "sha2 0.10.6",
 ]
 
+[[package]]
+name = "petgraph"
+version = "0.6.3"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "4dd7d28ee937e54fe3080c91faa1c3a46c06de6252988a7f4592ba2310ef22a4"
+dependencies = [
+ "fixedbitset",
+ "indexmap",
+]
+
 [[package]]
 name = "pharos"
 version = "0.5.3"
@@ -4002,6 +4016,16 @@ version = "0.2.17"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "5b40af805b3121feab8a3c29f04d8ad262fa8e0561883e7653e024ae4479e6de"
 
+[[package]]
+name = "prettyplease"
+version = "0.1.25"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "6c8646e95016a7a6c4adea95bafa8a16baab64b583356217f2c85db4a39d9a86"
+dependencies = [
+ "proc-macro2",
+ "syn 1.0.109",
+]
+
 [[package]]
 name = "primitive-types"
 version = "0.12.1"
@@ -4059,6 +4083,28 @@ dependencies = [
  "prost-derive",
 ]
 
+[[package]]
+name = "prost-build"
+version = "0.11.9"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "119533552c9a7ffacc21e099c24a0ac8bb19c2a2a3f363de84cd9b844feab270"
+dependencies = [
+ "bytes 1.4.0",
+ "heck",
+ "itertools",
+ "lazy_static",
+ "log",
+ "multimap",
+ "petgraph",
+ "prettyplease",
+ "prost",
+ "prost-types",
+ "regex",
+ "syn 1.0.109",
+ "tempfile",
+ "which",
+]
+
 [[package]]
 name = "prost-derive"
 version = "0.11.9"
@@ -4864,6 +4910,12 @@ dependencies = [
  "lazy_static",
 ]
 
+[[package]]
+name = "shlex"
+version = "0.1.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "7fdf1b9db47230893d76faad238fd6097fd6d6a9245cd7a4d90dbd639536bbd2"
+
 [[package]]
 name = "shlex"
 version = "1.1.0"
@@ -5505,6 +5557,19 @@ dependencies = [
  "tracing-futures",
 ]
 
+[[package]]
+name = "tonic-build"
+version = "0.8.4"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "5bf5e9b9c0f7e0a7c027dcfaba7b2c60816c7049171f679d99ee2ff65d0de8c4"
+dependencies = [
+ "prettyplease",
+ "proc-macro2",
+ "prost-build",
+ "quote",
+ "syn 1.0.109",
+]
+
 [[package]]
 name = "tower"
 version = "0.4.13"
@@ -5631,7 +5696,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "21ebb87a95ea13271332df069020513ab70bdb5637ca42d6e492dc3bbbad48de"
 dependencies = [
  "once_cell",
- "opentelemetry 0.18.0",
+ "opentelemetry",
  "tracing",
  "tracing-core",
  "tracing-log",
@@ -5644,7 +5709,7 @@ version = "0.1.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "9bc58223383423483e4bc056c7e7b3f77bdee924a9d33834112c69ead06dc847"
 dependencies = [
- "bindgen",
+ "bindgen 0.59.2",
  "cc",
  "cfg-if 1.0.0",
  "fnv",
@@ -5874,12 +5939,6 @@ dependencies = [
  "percent-encoding",
 ]
 
-[[package]]
-name = "urlencoding"
-version = "2.1.2"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e8db7427f936968176eaa7cdf81b7f98b980b18495ec28f1b5791ac3bfe3eea9"
-
 [[package]]
 name = "utf-8"
 version = "0.7.6"
@@ -6061,7 +6120,7 @@ dependencies = [
  "hostname",
  "jni 0.21.1",
  "lazy_static",
- "opentelemetry 0.19.0",
+ "opentelemetry",
  "opentelemetry-otlp",
  "opentelemetry-semantic-conventions",
  "parking_lot 0.12.1",
@@ -6102,7 +6161,7 @@ dependencies = [
  "json",
  "lazy_static",
  "nix 0.26.2",
- "opentelemetry 0.19.0",
+ "opentelemetry",
  "opentelemetry-otlp",
  "opentelemetry-semantic-conventions",
  "parking_lot 0.12.1",
diff --git a/veilid-cli/src/command_processor.rs b/veilid-cli/src/command_processor.rs
index 2e32f584..5832fa21 100644
--- a/veilid-cli/src/command_processor.rs
+++ b/veilid-cli/src/command_processor.rs
@@ -445,46 +445,46 @@ reply               - reply to an AppCall not handled directly by the server
     pub fn update_app_message(&mut self, msg: veilid_core::VeilidAppMessage) {
         // check is message body is ascii printable
         let mut printable = true;
-        for c in &msg.message {
+        for c in msg.message() {
             if *c < 32 || *c > 126 {
                 printable = false;
             }
         }
 
         let strmsg = if printable {
-            String::from_utf8_lossy(&msg.message).to_string()
+            String::from_utf8_lossy(msg.message()).to_string()
         } else {
-            hex::encode(&msg.message)
+            hex::encode(msg.message())
         };
 
         self.inner()
             .ui
-            .add_node_event(format!("AppMessage ({:?}): {}", msg.sender, strmsg));
+            .add_node_event(format!("AppMessage ({:?}): {}", msg.sender(), strmsg));
     }
 
     pub fn update_app_call(&mut self, call: veilid_core::VeilidAppCall) {
         // check is message body is ascii printable
         let mut printable = true;
-        for c in &call.message {
+        for c in call.message() {
             if *c < 32 || *c > 126 {
                 printable = false;
             }
         }
 
         let strmsg = if printable {
-            String::from_utf8_lossy(&call.message).to_string()
+            String::from_utf8_lossy(call.message()).to_string()
         } else {
-            format!("#{}", hex::encode(&call.message))
+            format!("#{}", hex::encode(call.message()))
         };
 
         self.inner().ui.add_node_event(format!(
             "AppCall ({:?}) id = {:016x} : {}",
-            call.sender,
-            call.id.as_u64(),
+            call.sender(),
+            call.id().as_u64(),
             strmsg
         ));
 
-        self.inner_mut().last_call_id = Some(call.id);
+        self.inner_mut().last_call_id = Some(call.id());
     }
 
     pub fn update_shutdown(&mut self) {
diff --git a/veilid-core/src/network_manager/tests/test_signed_node_info.rs b/veilid-core/src/network_manager/tests/test_signed_node_info.rs
index bab0a6e1..c6a943d1 100644
--- a/veilid-core/src/network_manager/tests/test_signed_node_info.rs
+++ b/veilid-core/src/network_manager/tests/test_signed_node_info.rs
@@ -14,17 +14,17 @@ pub async fn test_signed_node_info() {
         let vcrypto = crypto.get(ck).unwrap();
 
         // Test direct
-        let node_info = NodeInfo {
-            network_class: NetworkClass::InboundCapable,
-            outbound_protocols: ProtocolTypeSet::all(),
-            address_types: AddressTypeSet::all(),
-            envelope_support: VALID_ENVELOPE_VERSIONS.to_vec(),
-            crypto_support: VALID_CRYPTO_KINDS.to_vec(),
-            dial_info_detail_list: vec![DialInfoDetail {
+        let node_info = NodeInfo::new(
+            NetworkClass::InboundCapable,
+            ProtocolTypeSet::all(),
+            AddressTypeSet::all(),
+            VALID_ENVELOPE_VERSIONS.to_vec(),
+            VALID_CRYPTO_KINDS.to_vec(),
+            vec![DialInfoDetail {
                 class: DialInfoClass::Mapped,
                 dial_info: DialInfo::udp(SocketAddress::default()),
             }],
-        };
+        );
 
         // Test correct validation
         let keypair = vcrypto.generate_keypair();
@@ -48,7 +48,6 @@ pub async fn test_signed_node_info() {
         // Test incorrect validation
         let keypair1 = vcrypto.generate_keypair();
         let tks1: TypedKeySet = TypedKey::new(ck, keypair1.key).into();
-        let oldtks1len = tks1.len();
         let sdni = SignedDirectNodeInfo::new(
             node_info.clone(),
             sni.timestamp(),
@@ -69,17 +68,17 @@ pub async fn test_signed_node_info() {
         assert_eq!(sdnifake.signatures().len(), sigsfake.len());
 
         // Test relayed
-        let node_info2 = NodeInfo {
-            network_class: NetworkClass::OutboundOnly,
-            outbound_protocols: ProtocolTypeSet::all(),
-            address_types: AddressTypeSet::all(),
-            envelope_support: VALID_ENVELOPE_VERSIONS.to_vec(),
-            crypto_support: VALID_CRYPTO_KINDS.to_vec(),
-            dial_info_detail_list: vec![DialInfoDetail {
+        let node_info2 = NodeInfo::new(
+            NetworkClass::OutboundOnly,
+            ProtocolTypeSet::all(),
+            AddressTypeSet::all(),
+            VALID_ENVELOPE_VERSIONS.to_vec(),
+            VALID_CRYPTO_KINDS.to_vec(),
+            vec![DialInfoDetail {
                 class: DialInfoClass::Blocked,
                 dial_info: DialInfo::udp(SocketAddress::default()),
             }],
-        };
+        );
 
         // Test correct validation
         let keypair2 = vcrypto.generate_keypair();
@@ -109,7 +108,6 @@ pub async fn test_signed_node_info() {
         // Test incorrect validation
         let keypair3 = vcrypto.generate_keypair();
         let tks3: TypedKeySet = TypedKey::new(ck, keypair3.key).into();
-        let oldtks3len = tks3.len();
 
         let srni = SignedRelayedNodeInfo::new(
             node_info2.clone(),
diff --git a/veilid-core/src/network_manager/types/low_level_protocol_type.rs b/veilid-core/src/network_manager/types/low_level_protocol_type.rs
index 3ae2df7b..69dfeae7 100644
--- a/veilid-core/src/network_manager/types/low_level_protocol_type.rs
+++ b/veilid-core/src/network_manager/types/low_level_protocol_type.rs
@@ -27,5 +27,5 @@ impl LowLevelProtocolType {
         matches!(self, LowLevelProtocolType::TCP)
     }
 }
-pub type LowLevelProtocolTypeSet = EnumSet<LowLevelProtocolType>;
 
+// pub type LowLevelProtocolTypeSet = EnumSet<LowLevelProtocolType>;
diff --git a/veilid-core/src/routing_table/bucket_entry.rs b/veilid-core/src/routing_table/bucket_entry.rs
index 92a6dad5..0f1919d2 100644
--- a/veilid-core/src/routing_table/bucket_entry.rs
+++ b/veilid-core/src/routing_table/bucket_entry.rs
@@ -136,6 +136,7 @@ impl BucketEntryInner {
     /// Returns Ok(None) if no previous existing node id was associated with that crypto kind
     /// Results Err() if this operation would add more crypto kinds than we support
     pub fn add_node_id(&mut self, node_id: TypedKey) -> EyreResult<Option<TypedKey>> {
+        let total_node_id_count = self.validated_node_ids.len() + self.unsupported_node_ids.len();
         let node_ids = if VALID_CRYPTO_KINDS.contains(&node_id.kind) {
             &mut self.validated_node_ids
         } else {
@@ -152,7 +153,7 @@ impl BucketEntryInner {
             return Ok(Some(old_node_id));
         }
         // Check to ensure we aren't adding more crypto kinds than we support
-        if self.validated_node_ids.len() + self.unsupported_node_ids.len() == MAX_CRYPTO_KINDS {
+        if total_node_id_count == MAX_CRYPTO_KINDS {
             bail!("too many crypto kinds for this node");
         }
         node_ids.add(node_id);
@@ -345,10 +346,10 @@ impl BucketEntryInner {
         };
         // Peer info includes all node ids, even unvalidated ones
         let node_ids = self.node_ids();
-        opt_current_sni.as_ref().map(|s| PeerInfo {
+        opt_current_sni.as_ref().map(|s| PeerInfo::new(
             node_ids,
-            signed_node_info: *s.clone(),
-        })
+            *s.clone(),
+        ))
     }
 
     pub fn best_routing_domain(
@@ -792,14 +793,14 @@ pub struct BucketEntry {
 
 impl BucketEntry {
     pub(super) fn new(first_node_id: TypedKey) -> Self {
-        let now = get_aligned_timestamp();
-        let mut validated_node_ids = TypedKeySet::new();
-        let mut unsupported_node_ids = TypedKeySet::new();
-        validated_node_ids.add(first_node_id);
 
+        // First node id should always be one we support since TypedKeySets are sorted and we must have at least one supported key
+        assert!(VALID_CRYPTO_KINDS.contains(&first_node_id.kind));
+
+        let now = get_aligned_timestamp();
         let inner = BucketEntryInner {
-            validated_node_ids,
-            unsupported_node_ids,
+            validated_node_ids: TypedKeySet::from(first_node_id),
+            unsupported_node_ids: TypedKeySet::new(),
             envelope_support: Vec::new(),
             updated_since_last_network_change: false,
             last_connections: BTreeMap::new(),
diff --git a/veilid-core/src/routing_table/tasks/bootstrap.rs b/veilid-core/src/routing_table/tasks/bootstrap.rs
index f467c2ba..25a51416 100644
--- a/veilid-core/src/routing_table/tasks/bootstrap.rs
+++ b/veilid-core/src/routing_table/tasks/bootstrap.rs
@@ -329,14 +329,15 @@ impl RoutingTable {
             let crypto_support = bsrec.node_ids.kinds();
 
             // Make unsigned SignedNodeInfo
-            let sni = SignedNodeInfo::Direct(SignedDirectNodeInfo::with_no_signature(NodeInfo {
-                network_class: NetworkClass::InboundCapable, // Bootstraps are always inbound capable
-                outbound_protocols: ProtocolTypeSet::only(ProtocolType::UDP), // Bootstraps do not participate in relaying and will not make outbound requests, but will have UDP enabled
-                address_types: AddressTypeSet::all(), // Bootstraps are always IPV4 and IPV6 capable
-                envelope_support: bsrec.envelope_support, // Envelope support is as specified in the bootstrap list
-                crypto_support, // Crypto support is derived from list of node ids
-                dial_info_detail_list: bsrec.dial_info_details, // Dial info is as specified in the bootstrap list
-            }));
+            let sni =
+                SignedNodeInfo::Direct(SignedDirectNodeInfo::with_no_signature(NodeInfo::new(
+                    NetworkClass::InboundCapable, // Bootstraps are always inbound capable
+                    ProtocolTypeSet::only(ProtocolType::UDP), // Bootstraps do not participate in relaying and will not make outbound requests, but will have UDP enabled
+                    AddressTypeSet::all(), // Bootstraps are always IPV4 and IPV6 capable
+                    bsrec.envelope_support, // Envelope support is as specified in the bootstrap list
+                    crypto_support,         // Crypto support is derived from list of node ids
+                    bsrec.dial_info_details, // Dial info is as specified in the bootstrap list
+                )));
 
             let pi = PeerInfo::new(bsrec.node_ids, sni);
 
diff --git a/veilid-core/src/rpc_processor/coders/mod.rs b/veilid-core/src/rpc_processor/coders/mod.rs
index 6ad58903..34bc7913 100644
--- a/veilid-core/src/rpc_processor/coders/mod.rs
+++ b/veilid-core/src/rpc_processor/coders/mod.rs
@@ -56,11 +56,6 @@ pub use typed_signature::*;
 
 use super::*;
 
-#[derive(Debug, Clone)]
-pub struct DecodeContext {
-    config: VeilidConfig,
-}
-
 #[derive(Debug, Clone)]
 pub enum QuestionContext {
     GetValue(ValidateGetValueContext),
@@ -69,7 +64,7 @@ pub enum QuestionContext {
 
 #[derive(Clone)]
 pub struct RPCValidateContext {
-    crypto: Crypto,
-    rpc_processor: RPCProcessor,
-    question_context: Option<QuestionContext>,
+    pub crypto: Crypto,
+    pub rpc_processor: RPCProcessor,
+    pub question_context: Option<QuestionContext>,
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation.rs b/veilid-core/src/rpc_processor/coders/operations/operation.rs
index af5df0b4..9118c2cb 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation.rs
@@ -133,10 +133,7 @@ impl RPCOperation {
         )
     }
 
-    pub fn decode(
-        context: &DecodeContext,
-        operation_reader: &veilid_capnp::operation::Reader,
-    ) -> Result<Self, RPCError> {
+    pub fn decode(operation_reader: &veilid_capnp::operation::Reader) -> Result<Self, RPCError> {
         let op_id = OperationId::new(operation_reader.get_op_id());
 
         let sender_peer_info = if operation_reader.has_sender_peer_info() {
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs b/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
index 5ff3edb5..f8f0a37f 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
@@ -5,9 +5,9 @@ const MAX_GET_VALUE_A_PEERS_LEN: usize = 20;
 
 #[derive(Clone)]
 pub struct ValidateGetValueContext {
-    last_descriptor: Option<SignedValueDescriptor>,
-    subkey: ValueSubkey,
-    vcrypto: CryptoSystemVersion,
+    pub last_descriptor: Option<SignedValueDescriptor>,
+    pub subkey: ValueSubkey,
+    pub vcrypto: CryptoSystemVersion,
 }
 
 impl fmt::Debug for ValidateGetValueContext {
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_return_receipt.rs b/veilid-core/src/rpc_processor/coders/operations/operation_return_receipt.rs
index 62e14182..6edcae84 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_return_receipt.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_return_receipt.rs
@@ -6,7 +6,7 @@ pub struct RPCOperationReturnReceipt {
 }
 
 impl RPCOperationReturnReceipt {
-    pub fn new(receipt: &[u8]) -> Result<Self, RPCError> {
+    pub fn new(receipt: Vec<u8>) -> Result<Self, RPCError> {
         if receipt.len() < MIN_RECEIPT_SIZE {
             return Err(RPCError::protocol("ReturnReceipt receipt too short to set"));
         }
@@ -14,9 +14,7 @@ impl RPCOperationReturnReceipt {
             return Err(RPCError::protocol("ReturnReceipt receipt too long to set"));
         }
 
-        Ok(Self {
-            receipt: receipt.to_vec(),
-        })
+        Ok(Self { receipt })
     }
     pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         Ok(())
diff --git a/veilid-core/src/rpc_processor/coders/peer_info.rs b/veilid-core/src/rpc_processor/coders/peer_info.rs
index b7081aab..7e5b5091 100644
--- a/veilid-core/src/rpc_processor/coders/peer_info.rs
+++ b/veilid-core/src/rpc_processor/coders/peer_info.rs
@@ -44,8 +44,5 @@ pub fn decode_peer_info(reader: &veilid_capnp::peer_info::Reader) -> Result<Peer
     if node_ids.len() == 0 {
         return Err(RPCError::protocol("no verified node ids"));
     }
-    Ok(PeerInfo {
-        node_ids,
-        signed_node_info,
-    })
+    Ok(PeerInfo::new(node_ids, signed_node_info))
 }
diff --git a/veilid-core/src/rpc_processor/mod.rs b/veilid-core/src/rpc_processor/mod.rs
index 1c9964dc..065ad395 100644
--- a/veilid-core/src/rpc_processor/mod.rs
+++ b/veilid-core/src/rpc_processor/mod.rs
@@ -312,7 +312,7 @@ impl RPCProcessor {
     }
 
     pub fn set_storage_manager(&self, opt_storage_manager: Option<StorageManager>) {
-        let inner = self.inner.lock();
+        let mut inner = self.inner.lock();
         inner.opt_storage_manager = opt_storage_manager
     }
 
@@ -555,10 +555,7 @@ impl RPCProcessor {
 
         // Prepare route operation
         let sr_hop_count = compiled_route.safety_route.hop_count;
-        let route_operation = RPCOperationRoute {
-            safety_route: compiled_route.safety_route,
-            operation,
-        };
+        let route_operation = RPCOperationRoute::new(compiled_route.safety_route, operation);
         let ssni_route =
             self.get_sender_peer_info(&Destination::direct(compiled_route.first_hop.clone()));
         let operation = RPCOperation::new_statement(
@@ -1216,18 +1213,15 @@ impl RPCProcessor {
             .get_root::<veilid_capnp::operation::Reader>()
             .map_err(RPCError::protocol)
             .map_err(logthru_rpc!())?;
-        let decode_context = DecodeContext {
-            config: self.config.clone(),
-        };
-        let operation = RPCOperation::decode(&decode_context, &op_reader)?;
+        let mut operation = RPCOperation::decode(&op_reader)?;
 
         // Validate the RPC message
-        self.validate_rpc_operation(&operation)?;
+        self.validate_rpc_operation(&mut operation)?;
 
         Ok(operation)
     }
 
-    fn validate_rpc_operation(&self, operation: &RPCOperation) -> Result<(), RPCError> {
+    fn validate_rpc_operation(&self, operation: &mut RPCOperation) -> Result<(), RPCError> {
         // If this is an answer, get the question context for this answer
         // If we received an answer for a question we did not ask, this will return an error
         let question_context = if let RPCOperationKind::Answer(_) = operation.kind() {
@@ -1260,7 +1254,10 @@ impl RPCProcessor {
         let msg = match &encoded_msg.header.detail {
             RPCMessageHeaderDetail::Direct(detail) => {
                 // Decode and validate the RPC operation
-                let operation = self.decode_rpc_operation(&encoded_msg)?;
+                let operation = match self.decode_rpc_operation(&encoded_msg) {
+                    Ok(v) => v,
+                    Err(e) => return Ok(NetworkResult::invalid_message(e)),
+                };
 
                 // Get the routing domain this message came over
                 let routing_domain = detail.routing_domain;
diff --git a/veilid-core/src/rpc_processor/operation_waiter.rs b/veilid-core/src/rpc_processor/operation_waiter.rs
index 37ee0ce0..e2da9e9c 100644
--- a/veilid-core/src/rpc_processor/operation_waiter.rs
+++ b/veilid-core/src/rpc_processor/operation_waiter.rs
@@ -100,7 +100,7 @@ where
 
     /// Get operation context
     pub fn get_op_context(&self, op_id: OperationId) -> Result<C, RPCError> {
-        let mut inner = self.inner.lock();
+        let inner = self.inner.lock();
         let Some(waiting_op) = inner.waiting_op_table.get(&op_id) else {
             return Err(RPCError::internal("Missing operation id getting op context"));
         };
diff --git a/veilid-core/src/rpc_processor/rpc_app_call.rs b/veilid-core/src/rpc_processor/rpc_app_call.rs
index 5ba05dfb..2ec9a24b 100644
--- a/veilid-core/src/rpc_processor/rpc_app_call.rs
+++ b/veilid-core/src/rpc_processor/rpc_app_call.rs
@@ -9,7 +9,7 @@ impl RPCProcessor {
         dest: Destination,
         message: Vec<u8>,
     ) -> Result<NetworkResult<Answer<Vec<u8>>>, RPCError> {
-        let app_call_q = RPCOperationAppCallQ::new(&message)?;
+        let app_call_q = RPCOperationAppCallQ::new(message)?;
         let question = RPCQuestion::new(
             network_result_try!(self.get_destination_respond_to(&dest)?),
             RPCQuestionDetail::AppCallQ(app_call_q),
@@ -91,7 +91,7 @@ impl RPCProcessor {
         };
 
         // Return the appcall answer
-        let app_call_a = RPCOperationAppCallA::new(&message_a)?;
+        let app_call_a = RPCOperationAppCallA::new(message_a)?;
 
         // Send status answer
         self.answer(msg, RPCAnswer::new(RPCAnswerDetail::AppCallA(app_call_a)))
diff --git a/veilid-core/src/rpc_processor/rpc_app_message.rs b/veilid-core/src/rpc_processor/rpc_app_message.rs
index 3bfbbb5e..e8454f79 100644
--- a/veilid-core/src/rpc_processor/rpc_app_message.rs
+++ b/veilid-core/src/rpc_processor/rpc_app_message.rs
@@ -9,7 +9,7 @@ impl RPCProcessor {
         dest: Destination,
         message: Vec<u8>,
     ) -> Result<NetworkResult<()>, RPCError> {
-        let app_message = RPCOperationAppMessage { message };
+        let app_message = RPCOperationAppMessage::new(message)?;
         let statement = RPCStatement::new(RPCStatementDetail::AppMessage(app_message));
 
         // Send the app message request
@@ -22,7 +22,7 @@ impl RPCProcessor {
         msg: RPCMessage,
     ) -> Result<NetworkResult<()>, RPCError> {
         // Get the statement
-        let (op_id, _, _, kind) = msg.operation.destructure();
+        let (_, _, _, kind) = msg.operation.destructure();
         let app_message = match kind {
             RPCOperationKind::Statement(s) => match s.destructure() {
                 RPCStatementDetail::AppMessage(s) => s,
diff --git a/veilid-core/src/rpc_processor/rpc_get_value.rs b/veilid-core/src/rpc_processor/rpc_get_value.rs
index 5ba248f8..9fe2dcaa 100644
--- a/veilid-core/src/rpc_processor/rpc_get_value.rs
+++ b/veilid-core/src/rpc_processor/rpc_get_value.rs
@@ -1,8 +1,12 @@
 use super::*;
-use crate::storage_manager::SignedValueDescriptor;
+use crate::storage_manager::{SignedValueData, SignedValueDescriptor};
 
-#[derive(Clone, Debug, PartialEq, PartialOrd, Ord, Eq, Hash)]
-pub enum GetValueAnswer {}
+#[derive(Clone, Debug)]
+pub struct GetValueAnswer {
+    pub value: Option<SignedValueData>,
+    pub peers: Vec<PeerInfo>,
+    pub descriptor: Option<SignedValueDescriptor>,
+}
 
 impl RPCProcessor {
     // Sends a get value request and wait for response
@@ -44,17 +48,24 @@ impl RPCProcessor {
 
         // Get the right answer type
         let (_, _, _, kind) = msg.operation.destructure();
-        let app_call_a = match kind {
+        let get_value_a = match kind {
             RPCOperationKind::Answer(a) => match a.destructure() {
-                RPCAnswerDetail::AppCallA(a) => a,
-                _ => return Err(RPCError::invalid_format("not an appcall answer")),
+                RPCAnswerDetail::GetValueA(a) => a,
+                _ => return Err(RPCError::invalid_format("not a getvalue answer")),
             },
             _ => return Err(RPCError::invalid_format("not an answer")),
         };
 
-        let a_message = app_call_a.destructure();
+        let (value, peers, descriptor) = get_value_a.destructure();
 
-        Ok(NetworkResult::value(Answer::new(latency, a_message)))
+        Ok(NetworkResult::value(Answer::new(
+            latency,
+            GetValueAnswer {
+                value,
+                peers,
+                descriptor,
+            },
+        )))
     }
 
     #[instrument(level = "trace", skip(self, msg), fields(msg.operation.op_id), ret, err)]
diff --git a/veilid-core/src/rpc_processor/rpc_return_receipt.rs b/veilid-core/src/rpc_processor/rpc_return_receipt.rs
index 9c2bed0d..383dcc6d 100644
--- a/veilid-core/src/rpc_processor/rpc_return_receipt.rs
+++ b/veilid-core/src/rpc_processor/rpc_return_receipt.rs
@@ -11,7 +11,7 @@ impl RPCProcessor {
     ) -> Result<NetworkResult<()>, RPCError> {
         let receipt = receipt.as_ref().to_vec();
 
-        let return_receipt = RPCOperationReturnReceipt { receipt };
+        let return_receipt = RPCOperationReturnReceipt::new(receipt)?;
         let statement = RPCStatement::new(RPCStatementDetail::ReturnReceipt(return_receipt));
 
         // Send the return_receipt request
@@ -27,9 +27,9 @@ impl RPCProcessor {
     ) -> Result<NetworkResult<()>, RPCError> {
         // Get the statement
         let (_, _, _, kind) = msg.operation.destructure();
-        let RPCOperationReturnReceipt { receipt } = match kind {
+        let receipt = match kind {
             RPCOperationKind::Statement(s) => match s.destructure() {
-                RPCStatementDetail::ReturnReceipt(s) => s,
+                RPCStatementDetail::ReturnReceipt(s) => s.destructure(),
                 _ => panic!("not a return receipt"),
             },
             _ => panic!("not a statement"),
diff --git a/veilid-core/src/rpc_processor/rpc_route.rs b/veilid-core/src/rpc_processor/rpc_route.rs
index 01e251ca..64bc884e 100644
--- a/veilid-core/src/rpc_processor/rpc_route.rs
+++ b/veilid-core/src/rpc_processor/rpc_route.rs
@@ -34,17 +34,17 @@ impl RPCProcessor {
         };
 
         // Apply sequencing preference
-        next_hop_nr.set_sequencing(routed_operation.sequencing);
+        next_hop_nr.set_sequencing(routed_operation.sequencing());
 
         // Pass along the route
-        let next_hop_route = RPCOperationRoute {
-            safety_route: SafetyRoute {
+        let next_hop_route = RPCOperationRoute::new(
+            SafetyRoute {
                 public_key: safety_route.public_key,
                 hop_count: safety_route.hop_count - 1,
                 hops: SafetyRouteHops::Data(route_hop.next_hop.unwrap()),
             },
-            operation: routed_operation,
-        };
+            routed_operation,
+        );
         let next_hop_route_stmt = RPCStatement::new(RPCStatementDetail::Route(next_hop_route));
 
         // Send the next route statement
@@ -76,17 +76,17 @@ impl RPCProcessor {
         };
 
         // Apply sequencing preference
-        next_hop_nr.set_sequencing(routed_operation.sequencing);
+        next_hop_nr.set_sequencing(routed_operation.sequencing());
 
         // Pass along the route
-        let next_hop_route = RPCOperationRoute {
-            safety_route: SafetyRoute {
+        let next_hop_route = RPCOperationRoute::new(
+            SafetyRoute {
                 public_key: safety_route_public_key,
                 hop_count: 0,
                 hops: SafetyRouteHops::Private(next_private_route),
             },
-            operation: routed_operation,
-        };
+            routed_operation,
+        );
         let next_hop_route_stmt = RPCStatement::new(RPCStatementDetail::Route(next_hop_route));
 
         // Send the next route statement
@@ -114,8 +114,8 @@ impl RPCProcessor {
             .cached_dh(&remote_sr_pubkey.value, &node_id_secret)
             .map_err(RPCError::protocol)?;
         let body = match vcrypto.decrypt_aead(
-            &routed_operation.data,
-            &routed_operation.nonce,
+            routed_operation.data(),
+            routed_operation.nonce(),
             &dh_secret,
             None,
         ) {
@@ -132,7 +132,7 @@ impl RPCProcessor {
         self.enqueue_safety_routed_message(
             detail,
             remote_sr_pubkey.value,
-            routed_operation.sequencing,
+            routed_operation.sequencing(),
             body,
         )
         .map_err(RPCError::internal)?;
@@ -162,8 +162,8 @@ impl RPCProcessor {
         let Some((secret_key, safety_spec)) = rss
             .with_signature_validated_route(
                 &pr_pubkey,
-                &routed_operation.signatures,
-                &routed_operation.data,
+                routed_operation.signatures(),
+                routed_operation.data(),
                 sender_id.value,
                 |rssd, rsd| { 
                     (
@@ -172,7 +172,7 @@ impl RPCProcessor {
                             preferred_route,
                             hop_count: rssd.hop_count(),
                             stability: rssd.get_stability(),
-                            sequencing: routed_operation.sequencing,
+                            sequencing: routed_operation.sequencing(),
                         },
                     )
                 }
@@ -188,8 +188,8 @@ impl RPCProcessor {
             .map_err(RPCError::protocol)?;
         let body = vcrypto
             .decrypt_aead(
-                &routed_operation.data,
-                &routed_operation.nonce,
+                routed_operation.data(),
+                routed_operation.nonce(),
                 &dh_secret,
                 None,
             )
@@ -353,9 +353,9 @@ impl RPCProcessor {
             let node_id = self.routing_table.node_id(crypto_kind);
             let node_id_secret = self.routing_table.node_id_secret_key(crypto_kind);
             let sig = vcrypto
-                .sign(&node_id.value, &node_id_secret, &route_operation.data)
+                .sign(&node_id.value, &node_id_secret, route_operation.data())
                 .map_err(RPCError::internal)?;
-            route_operation.signatures.push(sig);
+            route_operation.add_signature(sig);
         }
 
         Ok(NetworkResult::value(route_hop))
@@ -378,7 +378,7 @@ impl RPCProcessor {
 
         // Get the statement
         let (_,_,_,kind) = msg.operation.destructure();
-        let mut route = match kind {
+        let route = match kind {
             RPCOperationKind::Statement(s) => match s.destructure() {
                 RPCStatementDetail::Route(s) => s,
                 _ => panic!("not a route statement"),
@@ -387,7 +387,7 @@ impl RPCProcessor {
         };
 
         // Get crypto kind
-        let crypto_kind = route.safety_route.crypto_kind();
+        let crypto_kind = route.safety_route().crypto_kind();
         let Some(vcrypto) = self.crypto.get(crypto_kind) else {
             return Ok(NetworkResult::invalid_message(
                 "routed operation crypto is not supported",
@@ -395,13 +395,14 @@ impl RPCProcessor {
         };
 
         // See what kind of safety route we have going on here
-        match route.safety_route.hops {
+        let (safety_route, mut routed_operation) = route.destructure();
+        match safety_route.hops {
             // There is a safety route hop
             SafetyRouteHops::Data(ref route_hop_data) => {
                 // Decrypt the blob with DEC(nonce, DH(the SR's public key, this hop's secret)
                 let node_id_secret = self.routing_table.node_id_secret_key(crypto_kind);
                 let dh_secret = vcrypto
-                    .cached_dh(&route.safety_route.public_key.value, &node_id_secret)
+                    .cached_dh(&safety_route.public_key.value, &node_id_secret)
                     .map_err(RPCError::protocol)?;
                 let mut dec_blob_data = vcrypto
                     .decrypt_aead(
@@ -435,8 +436,8 @@ impl RPCProcessor {
                     // Switching from full safety route to private route first hop
                     network_result_try!(
                         self.process_private_route_first_hop(
-                            route.operation,
-                            route.safety_route.public_key,
+                            routed_operation,
+                            safety_route.public_key,
                             private_route,
                         )
                         .await?
@@ -456,9 +457,9 @@ impl RPCProcessor {
                     // Continue the full safety route with another hop
                     network_result_try!(
                         self.process_route_safety_route_hop(
-                            route.operation,
+                            routed_operation,
                             route_hop,
-                            route.safety_route
+                            safety_route
                         )
                         .await?
                     );
@@ -474,8 +475,8 @@ impl RPCProcessor {
                         // Safety route was a stub, start with the beginning of the private route
                         network_result_try!(
                             self.process_private_route_first_hop(
-                                route.operation,
-                                route.safety_route.public_key,
+                                routed_operation,
+                                safety_route.public_key,
                                 private_route,
                             )
                             .await?
@@ -486,7 +487,7 @@ impl RPCProcessor {
                         let route_hop = network_result_try!(self.decrypt_private_route_hop_data(
                             &route_hop_data,
                             &private_route.public_key,
-                            &mut route.operation
+                            &mut routed_operation
                         )?);
 
                         // Ensure hop count > 0
@@ -499,9 +500,9 @@ impl RPCProcessor {
                         // Make next PrivateRoute and pass it on
                         network_result_try!(
                             self.process_route_private_route_hop(
-                                route.operation,
+                                routed_operation,
                                 route_hop.node,
-                                route.safety_route.public_key,
+                                safety_route.public_key,
                                 PrivateRoute {
                                     public_key: private_route.public_key,
                                     hop_count: private_route.hop_count - 1,
@@ -521,7 +522,7 @@ impl RPCProcessor {
                                 "route should be at the end",
                             ));
                         }
-                        if route.safety_route.hop_count != 0 {
+                        if safety_route.hop_count != 0 {
                             return Ok(NetworkResult::invalid_message(
                                 "Safety hop count should be zero if switched to private route",
                             ));
@@ -531,8 +532,8 @@ impl RPCProcessor {
                         network_result_try!(self.process_routed_operation(
                             detail,
                             vcrypto,
-                            route.operation,
-                            route.safety_route.public_key,
+                            routed_operation,
+                            safety_route.public_key,
                             private_route.public_key,
                         )?);
                     }
diff --git a/veilid-core/src/rpc_processor/rpc_signal.rs b/veilid-core/src/rpc_processor/rpc_signal.rs
index f2d1d19e..57f81513 100644
--- a/veilid-core/src/rpc_processor/rpc_signal.rs
+++ b/veilid-core/src/rpc_processor/rpc_signal.rs
@@ -22,7 +22,7 @@ impl RPCProcessor {
             ));
         }
 
-        let signal = RPCOperationSignal { signal_info };
+        let signal = RPCOperationSignal::new(signal_info);
         let statement = RPCStatement::new(RPCStatementDetail::Signal(signal));
 
         // Send the signal request
diff --git a/veilid-core/src/rpc_processor/rpc_status.rs b/veilid-core/src/rpc_processor/rpc_status.rs
index 29b13d61..cedccf5c 100644
--- a/veilid-core/src/rpc_processor/rpc_status.rs
+++ b/veilid-core/src/rpc_processor/rpc_status.rs
@@ -68,7 +68,7 @@ impl RPCProcessor {
             }
         };
 
-        let status_q = RPCOperationStatusQ { node_status };
+        let status_q = RPCOperationStatusQ::new(node_status);
         let question = RPCQuestion::new(
             network_result_try!(self.get_destination_respond_to(&dest)?),
             RPCQuestionDetail::StatusQ(status_q),
@@ -88,8 +88,9 @@ impl RPCProcessor {
         };
 
         // Get the right answer type
-        let status_a = match msg.operation.into_kind() {
-            RPCOperationKind::Answer(a) => match a.into_detail() {
+        let (_, _, _, kind) = msg.operation.destructure();
+        let status_a = match kind {
+            RPCOperationKind::Answer(a) => match a.destructure() {
                 RPCAnswerDetail::StatusA(a) => a,
                 _ => return Err(RPCError::invalid_format("not a status answer")),
             },
@@ -98,7 +99,7 @@ impl RPCProcessor {
 
         // Ensure the returned node status is the kind for the routing domain we asked for
         if let Some(target_nr) = opt_target_nr {
-            if let Some(node_status) = status_a.node_status {
+            if let Some(node_status) = status_a.node_status() {
                 match routing_domain {
                     RoutingDomain::PublicInternet => {
                         if !matches!(node_status, NodeStatus::PublicInternet(_)) {
@@ -117,7 +118,7 @@ impl RPCProcessor {
                 }
 
                 // Update latest node status in routing table
-                target_nr.update_node_status(node_status);
+                target_nr.update_node_status(node_status.clone());
             }
         }
 
@@ -131,7 +132,7 @@ impl RPCProcessor {
                 safety_selection,
             } => {
                 if matches!(safety_selection, SafetySelection::Unsafe(_)) {
-                    if let Some(sender_info) = status_a.sender_info {
+                    if let Some(sender_info) = status_a.sender_info() {
                         match send_data_kind {
                             SendDataKind::Direct(connection_descriptor) => {
                                 // Directly requested status that actually gets sent directly and not over a relay will tell us what our IP address appears as
@@ -199,7 +200,7 @@ impl RPCProcessor {
                 let routing_domain = detail.routing_domain;
 
                 // Ensure the node status from the question is the kind for the routing domain we received the request in
-                if let Some(node_status) = &status_q.node_status {
+                if let Some(node_status) = status_q.node_status() {
                     match routing_domain {
                         RoutingDomain::PublicInternet => {
                             if !matches!(node_status, NodeStatus::PublicInternet(_)) {
@@ -244,10 +245,7 @@ impl RPCProcessor {
         };
 
         // Make status answer
-        let status_a = RPCOperationStatusA {
-            node_status,
-            sender_info,
-        };
+        let status_a = RPCOperationStatusA::new(node_status, sender_info);
 
         // Send status answer
         self.answer(msg, RPCAnswer::new(RPCAnswerDetail::StatusA(status_a)))
diff --git a/veilid-core/src/rpc_processor/rpc_validate_dial_info.rs b/veilid-core/src/rpc_processor/rpc_validate_dial_info.rs
index d5d860b6..e1530359 100644
--- a/veilid-core/src/rpc_processor/rpc_validate_dial_info.rs
+++ b/veilid-core/src/rpc_processor/rpc_validate_dial_info.rs
@@ -17,11 +17,7 @@ impl RPCProcessor {
             .generate_single_shot_receipt(receipt_time, [])
             .map_err(RPCError::internal)?;
 
-        let validate_dial_info = RPCOperationValidateDialInfo {
-            dial_info,
-            receipt,
-            redirect,
-        };
+        let validate_dial_info = RPCOperationValidateDialInfo::new(dial_info, receipt, redirect)?;
         let statement = RPCStatement::new(RPCStatementDetail::ValidateDialInfo(validate_dial_info));
 
         // Send the validate_dial_info request
@@ -134,11 +130,8 @@ impl RPCProcessor {
                 }
 
                 // Make a copy of the request, without the redirect flag
-                let validate_dial_info = RPCOperationValidateDialInfo {
-                    dial_info: dial_info.clone(),
-                    receipt: receipt.clone(),
-                    redirect: false,
-                };
+                let validate_dial_info =
+                    RPCOperationValidateDialInfo::new(dial_info.clone(), receipt.clone(), false)?;
                 let statement =
                     RPCStatement::new(RPCStatementDetail::ValidateDialInfo(validate_dial_info));
 
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index 6bbb125d..f96337f5 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -101,6 +101,7 @@ impl RecordStore {
     }
 
     fn add_to_subkey_cache(&mut self, key: SubkeyTableKey, record_data: RecordData) {
+        let record_data_total_size = record_data.total_size();
         // Write to subkey cache
         let mut dead_size = 0usize;
         if let Some(old_record_data) = self.subkey_cache.insert(key, record_data, |_, v| {
@@ -111,7 +112,7 @@ impl RecordStore {
             dead_size += old_record_data.total_size();
         }
         self.subkey_cache_total_size -= dead_size;
-        self.subkey_cache_total_size += record_data.total_size();
+        self.subkey_cache_total_size += record_data_total_size;
 
         // Purge over size limit
         if let Some(max_subkey_cache_memory_mb) = self.limits.max_subkey_cache_memory_mb {
@@ -270,16 +271,20 @@ impl RecordStore {
         F: FnOnce(&Record) -> R,
     {
         // Get record from index
+        let mut out = None;
         let rtk = RecordTableKey { key };
         if let Some(record) = self.record_index.get_mut(&rtk) {
+            // Callback
+            out = Some(f(record));
+
             // Touch
             record.touch(get_aligned_timestamp());
-            self.mark_record_changed(rtk);
-
-            // Callback
-            return Some(f(record));
         }
-        None
+        if out.is_some() {
+            self.mark_record_changed(rtk);
+        }
+
+        out
     }
 
     pub async fn get_subkey<R, F>(
diff --git a/veilid-core/src/veilid_api/types/app_message_call.rs b/veilid-core/src/veilid_api/types/app_message_call.rs
index 42035271..95fa27f8 100644
--- a/veilid-core/src/veilid_api/types/app_message_call.rs
+++ b/veilid-core/src/veilid_api/types/app_message_call.rs
@@ -8,10 +8,10 @@ use super::*;
 pub struct VeilidAppMessage {
     /// Some(sender) if the message was sent directly, None if received via a private/safety route
     #[serde(with = "opt_json_as_string")]
-    pub sender: Option<PublicKey>,
+    sender: Option<PublicKey>,
     /// The content of the message to deliver to the application
     #[serde(with = "json_as_base64")]
-    pub message: Vec<u8>,
+    message: Vec<u8>,
 }
 
 impl VeilidAppMessage {
diff --git a/veilid-core/src/veilid_api/types/dht/dht_record_descriptor.rs b/veilid-core/src/veilid_api/types/dht/dht_record_descriptor.rs
index ad2fac30..24e18337 100644
--- a/veilid-core/src/veilid_api/types/dht/dht_record_descriptor.rs
+++ b/veilid-core/src/veilid_api/types/dht/dht_record_descriptor.rs
@@ -25,11 +25,11 @@ impl DHTRecordDescriptor {
         Self { owner, schema }
     }
 
-    pub fn owner(&self) -> PublicKey {
-        self.owner
+    pub fn owner(&self) -> &PublicKey {
+        &self.owner
     }
 
-    pub fn schema(&self) -> DHTSchema {
-        self.schema
+    pub fn schema(&self) -> &DHTSchema {
+        &self.schema
     }
 }
diff --git a/veilid-core/src/veilid_api/types/dht/schema/smpl.rs b/veilid-core/src/veilid_api/types/dht/schema/smpl.rs
index 6ae08a26..1ac4a17b 100644
--- a/veilid-core/src/veilid_api/types/dht/schema/smpl.rs
+++ b/veilid-core/src/veilid_api/types/dht/schema/smpl.rs
@@ -58,7 +58,7 @@ impl DHTSchemaSMPL {
         // o_cnt
         out.extend_from_slice(&self.o_cnt.to_le_bytes());
         // members
-        for m in self.members {
+        for m in &self.members {
             // m_key
             out.extend_from_slice(&m.m_key.bytes);
             // m_cnt
diff --git a/veilid-flutter/rust/Cargo.toml b/veilid-flutter/rust/Cargo.toml
index 8b8b0773..002db7da 100644
--- a/veilid-flutter/rust/Cargo.toml
+++ b/veilid-flutter/rust/Cargo.toml
@@ -27,10 +27,10 @@ data-encoding = { version = "^2" }
 # Dependencies for native builds only
 # Linux, Windows, Mac, iOS, Android
 [target.'cfg(not(target_arch = "wasm32"))'.dependencies]
-tracing-opentelemetry = "^0"
-opentelemetry = { version = "^0" }
-opentelemetry-otlp = { version = "^0" }
-opentelemetry-semantic-conventions = "^0"
+tracing-opentelemetry = "0.18"
+opentelemetry = { version = "0.18" }
+opentelemetry-otlp = { version = "0.11" }
+opentelemetry-semantic-conventions = "0.10"
 async-std = { version = "^1", features = ["unstable"], optional = true }
 tokio = { version = "^1", features = ["full"], optional = true }
 tokio-stream = { version = "^0", features = ["net"], optional = true }
diff --git a/veilid-server/Cargo.toml b/veilid-server/Cargo.toml
index 6222cb83..b4ed29c7 100644
--- a/veilid-server/Cargo.toml
+++ b/veilid-server/Cargo.toml
@@ -24,11 +24,11 @@ veilid-core = { path = "../veilid-core", default-features = false }
 tracing = { version = "^0", features = ["log", "attributes"] }
 tracing-subscriber = { version = "^0", features = ["env-filter"] }
 tracing-appender = "^0"
-tracing-opentelemetry = "^0"
+tracing-opentelemetry = "0.18"
 # Buggy: tracing-error = "^0"
-opentelemetry = { version = "^0" }
-opentelemetry-otlp = { version = "^0" }
-opentelemetry-semantic-conventions = "^0"
+opentelemetry = { version = "0.18" }
+opentelemetry-otlp = { version = "0.11" }
+opentelemetry-semantic-conventions = "0.10"
 async-std = { version = "^1", features = ["unstable"], optional = true }
 tokio = { version = "^1", features = ["full", "tracing"], optional = true }
 console-subscriber = { version = "^0", optional = true }
diff --git a/veilid-server/src/settings.rs b/veilid-server/src/settings.rs
index 4d25c912..c0dc796a 100644
--- a/veilid-server/src/settings.rs
+++ b/veilid-server/src/settings.rs
@@ -6,7 +6,7 @@ use serde_derive::*;
 use std::ffi::OsStr;
 use std::net::SocketAddr;
 use std::path::{Path, PathBuf};
-use sysinfo::{DiskExt, System, SystemExt};
+use sysinfo::{DiskExt, SystemExt};
 use url::Url;
 use veilid_core::tools::*;
 use veilid_core::*;
@@ -174,7 +174,7 @@ core:
     )
     .replace(
         "%REMOTE_MAX_SUBKEY_CACHE_MEMORY_MB%",
-        &Settings::get_default_remote_max_subkey_cache_memory_mb().to_string_lossy(),
+        &Settings::get_default_remote_max_subkey_cache_memory_mb().to_string(),
     );
     config::Config::builder()
         .add_source(config::File::from_str(
@@ -638,7 +638,7 @@ impl Settings {
         }
 
         // Generate config
-        let inner: SettingsInner = cfg.try_deserialize()?;
+        let mut inner: SettingsInner = cfg.try_deserialize()?;
 
         // Fill in missing defaults
         if inner.core.network.dht.remote_max_storage_space_mb == 0 {
@@ -857,14 +857,13 @@ impl Settings {
     }
 
     pub fn get_default_remote_max_subkey_cache_memory_mb() -> usize {
-        let mut sys = System::new_with_specifics(sysinfo::RefreshKind::new().with_memory());
+        let sys = sysinfo::System::new_with_specifics(sysinfo::RefreshKind::new().with_memory());
         sys.free_memory() as usize / 8
     }
 
-    pub fn get_default_remote_max_storage_space_mb(inner: &SettingsInner) -> usize {
-        let mut sys = System::new_with_specifics(sysinfo::RefreshKind::new().with_disks());
+    pub fn get_default_remote_max_storage_space_mb(inner: &SettingsInner) -> u32 {
+        let mut sys = sysinfo::System::new_with_specifics(sysinfo::RefreshKind::new().with_disks());
         let dht_storage_path = inner.core.table_store.directory.clone();
-        let mut available_mb = 0usize;
         // Sort longer mount point paths first since we want the mount point closest to our table store directory
         sys.sort_disks_by(|a, b| {
             b.mount_point()
@@ -874,13 +873,13 @@ impl Settings {
         });
         for disk in sys.disks() {
             if dht_storage_path.starts_with(disk.mount_point()) {
-                let available_mb = disk.available_space() / 1_000_000usize;
+                let available_mb = disk.available_space() / 1_000_000u64;
                 if available_mb > 40_000 {
                     // Default to 10GB if more than 40GB is available
                     return 10_000;
                 }
                 // Default to 1/4 of the available space, if less than 40GB is available
-                return available_mb;
+                return available_mb as u32;
             }
         }
         // If we can't figure out our storage path go with 1GB of space and pray
diff --git a/veilid-server/src/unix.rs b/veilid-server/src/unix.rs
index fe66e943..1d2aa389 100644
--- a/veilid-server/src/unix.rs
+++ b/veilid-server/src/unix.rs
@@ -7,7 +7,7 @@ use clap::ArgMatches;
 use futures_util::StreamExt;
 use signal_hook::consts::signal::*;
 use signal_hook_async_std::Signals;
-use std::io::Read;
+//use std::io::Read;
 use tracing::*;
 
 #[instrument(skip(signals))]
@@ -34,23 +34,23 @@ pub fn run_daemon(settings: Settings, _matches: ArgMatches) -> EyreResult<()> {
         let s = settings.read();
         if let Some(pid_file) = s.daemon.pid_file.clone() {
             daemon = daemon.pid_file(pid_file.clone()); //.chown_pid_file(true);
-            daemon = daemon.exit_action(move || {
-                // wait for pid file to exist before exiting parent
-                let pid_path = std::path::Path::new(&pid_file);
-                loop {
-                    if let Ok(mut f) = std::fs::File::open(pid_path) {
-                        let mut s = String::new();
-                        if f.read_to_string(&mut s).is_ok()
-                            && !s.is_empty()
-                            && s.parse::<u32>().is_ok()
-                        {
-                            println!("pidfile found");
-                            break;
-                        }
-                    }
-                    std::thread::sleep(std::time::Duration::from_millis(100));
-                }
-            })
+                                                        // daemon = daemon.exit_action(move || {
+                                                        //     // wait for pid file to exist before exiting parent
+                                                        //     let pid_path = std::path::Path::new(&pid_file);
+                                                        //     loop {
+                                                        //         if let Ok(mut f) = std::fs::File::open(pid_path) {
+                                                        //             let mut s = String::new();
+                                                        //             if f.read_to_string(&mut s).is_ok()
+                                                        //                 && !s.is_empty()
+                                                        //                 && s.parse::<u32>().is_ok()
+                                                        //             {
+                                                        //                 println!("pidfile found");
+                                                        //                 break;
+                                                        //             }
+                                                        //         }
+                                                        //         std::thread::sleep(std::time::Duration::from_millis(100));
+                                                        //     }
+                                                        // })
         }
         if let Some(chroot) = &s.daemon.chroot {
             daemon = daemon.chroot(chroot);

From 75c16b8c51b593d581bb1cf205e8dfb8680401f9 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Sun, 23 Apr 2023 14:10:17 -0400
Subject: [PATCH 15/74] fix tests

---
 Cargo.lock                                    | 16 ++---
 Cargo.toml                                    |  1 -
 doc/config/sample.config                      | 27 ++++----
 doc/config/veilid-server-config.md            | 14 +++--
 veilid-core/Cargo.toml                        |  1 +
 veilid-core/src/attachment_manager.rs         | 11 +++-
 veilid-core/src/core_context.rs               | 50 +++++++--------
 veilid-core/src/network_manager/mod.rs        |  9 +++
 veilid-core/src/rpc_processor/mod.rs          | 62 ++++++++++---------
 veilid-core/src/storage_manager/mod.rs        | 21 +++----
 .../src/storage_manager/record_store.rs       |  6 +-
 .../src/tests/common/test_veilid_config.rs    | 14 +++--
 veilid-server/src/settings.rs                 | 14 ++---
 veilid-tools/Cargo.toml                       |  7 ++-
 veilid-tools/src/tools.rs                     | 18 ++++++
 veilid-wasm/Cargo.toml                        |  4 +-
 16 files changed, 160 insertions(+), 115 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 1cfb4ba9..65a1d656 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -752,9 +752,9 @@ checksum = "cc12a55e9bd3840279c248c96ecf541d5ba98d6654e08869fe167121384a582c"
 
 [[package]]
 name = "bumpalo"
-version = "3.12.0"
+version = "3.12.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "0d261e256854913907f67ed06efbc3338dfe6179796deefc1ff763fc1aee5535"
+checksum = "9b1ce199063694f33ffb7dd4e0ee620741495c32833cde5aa08f02a0bf96f0c8"
 
 [[package]]
 name = "byte-slice-cast"
@@ -2977,9 +2977,9 @@ checksum = "0717cef1bc8b636c6e1c1bbdefc09e6322da8a9321966e8928ef80d20f7f770f"
 
 [[package]]
 name = "linux-raw-sys"
-version = "0.3.3"
+version = "0.3.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "9b085a4f2cde5781fc4b1717f2e86c62f5cda49de7ba99a7c2eae02b61c9064c"
+checksum = "36eb31c1778188ae1e64398743890d0877fef36d11521ac60406b42016e8c2cf"
 
 [[package]]
 name = "lock_api"
@@ -4521,9 +4521,9 @@ dependencies = [
 
 [[package]]
 name = "rustix"
-version = "0.37.13"
+version = "0.37.14"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "f79bef90eb6d984c72722595b5b1348ab39275a5e5123faca6863bf07d75a4e0"
+checksum = "d9b864d3c18a5785a05953adeed93e2dca37ed30f18e69bba9f30079d51f363f"
 dependencies = [
  "bitflags 1.3.2",
  "errno",
@@ -5721,9 +5721,9 @@ dependencies = [
 
 [[package]]
 name = "tracing-subscriber"
-version = "0.3.16"
+version = "0.3.17"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a6176eae26dd70d0c919749377897b54a9276bd7061339665dd68777926b5a70"
+checksum = "30a651bc37f915e81f087d86e62a18eec5f79550c7faff886f7090b4ea757c77"
 dependencies = [
  "matchers",
  "nu-ansi-term",
diff --git a/Cargo.toml b/Cargo.toml
index 27fc702e..a70dbee8 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -1,5 +1,4 @@
 [workspace]
-
 members = [
     "veilid-tools",
     "veilid-core",
diff --git a/doc/config/sample.config b/doc/config/sample.config
index a7dc1033..60362d04 100644
--- a/doc/config/sample.config
+++ b/doc/config/sample.config
@@ -23,6 +23,8 @@ logging:
         enabled: false
         level: 'trace'
         grpc_endpoint: 'localhost:4317'
+    console:
+        enabled: false
 testing:
     subnode_index: 0
 core:
@@ -47,10 +49,10 @@ core:
         client_whitelist_timeout_ms: 300000 
         reverse_connection_receipt_time_ms: 5000 
         hole_punch_receipt_time_ms: 5000 
-        node_id: ''
-        node_id_secret: ''
-        bootstrap: ['bootstrap.dev.veilid.net']
         routing_table:
+            node_id: null
+            node_id_secret: null
+            bootstrap: ['bootstrap.dev.veilid.net']
             limit_over_attached: 64
             limit_fully_attached: 32
             limit_attached_strong: 16
@@ -61,27 +63,31 @@ core:
             queue_size: 1024
             max_timestamp_behind_ms: 10000
             max_timestamp_ahead_ms: 10000
-            timeout_ms: 10000
+            timeout_ms: 5000
             max_route_hop_count: 4
             default_route_hop_count: 1
-
         dht:
-            resolve_node_timeout:
+            resolve_node_timeout_ms: 10000
             resolve_node_count: 20
             resolve_node_fanout: 3
             max_find_node_count: 20
-            get_value_timeout:
+            get_value_timeout_ms: 10000
             get_value_count: 20
             get_value_fanout: 3
-            set_value_timeout:
+            set_value_timeout_ms: 10000
             set_value_count: 20
             set_value_fanout: 5
             min_peer_count: 20
             min_peer_refresh_time_ms: 2000
             validate_dial_info_receipt_time_ms: 2000
+            local_subkey_cache_size: 128
+            local_max_subkey_cache_memory_mb: 256
+            remote_subkey_cache_size: 1024
+            remote_max_records: 65536
+            remote_max_subkey_cache_memory_mb: %REMOTE_MAX_SUBKEY_CACHE_MEMORY_MB%
+            remote_max_storage_space_mb: 0
         upnp: true
         detect_address_changes: true
-        enable_local_peer_scope: false
         restricted_nat_retries: 0
         tls:
             certificate_path: '%CERTIFICATE_PATH%'
@@ -123,5 +129,4 @@ core:
                 max_connections: 16
                 listen_address: ':5150'
                 path: 'ws'
-                # url: ''
-
+                # url: ''
\ No newline at end of file
diff --git a/doc/config/veilid-server-config.md b/doc/config/veilid-server-config.md
index 525ce32d..13f556e9 100644
--- a/doc/config/veilid-server-config.md
+++ b/doc/config/veilid-server-config.md
@@ -225,7 +225,7 @@ rpc:
     queue_size: 1024
     max_timestamp_behind_ms: 10000
     max_timestamp_ahead_ms: 10000
-    timeout_ms: 10000
+    timeout_ms: 5000
     max_route_hop_count: 4
     default_route_hop_count: 1
 ```
@@ -234,19 +234,25 @@ rpc:
 
 ```yaml
 dht:
-    resolve_node_timeout:
+    resolve_node_timeout_ms: 10000
     resolve_node_count: 20
     resolve_node_fanout: 3
     max_find_node_count: 20
-    get_value_timeout:
+    get_value_timeout_ms: 10000
     get_value_count: 20
     get_value_fanout: 3
-    set_value_timeout:
+    set_value_timeout_ms: 10000
     set_value_count: 20
     set_value_fanout: 5
     min_peer_count: 20
     min_peer_refresh_time_ms: 2000
     validate_dial_info_receipt_time_ms: 2000
+    local_subkey_cache_size: 128
+    local_max_subkey_cache_memory_mb: 256
+    remote_subkey_cache_size: 1024
+    remote_max_records: 65536
+    remote_max_subkey_cache_memory_mb: %REMOTE_MAX_SUBKEY_CACHE_MEMORY_MB%
+    remote_max_storage_space_mb: 0
 ```
 
 #### core:network:tls
diff --git a/veilid-core/Cargo.toml b/veilid-core/Cargo.toml
index 60c077f4..e7e4f362 100644
--- a/veilid-core/Cargo.toml
+++ b/veilid-core/Cargo.toml
@@ -17,6 +17,7 @@ enable-crypto-vld0 = []
 enable-crypto-none = []
 rt-async-std = ["async-std", "async-std-resolver", "async_executors/async_std", "rtnetlink?/smol_socket", "veilid-tools/rt-async-std"]
 rt-tokio = ["tokio", "tokio-util", "tokio-stream", "trust-dns-resolver/tokio-runtime", "async_executors/tokio_tp", "async_executors/tokio_io", "async_executors/tokio_timer", "rtnetlink?/tokio_socket", "veilid-tools/rt-tokio"]
+rt-wasm-bindgen = ["veilid-tools/rt-wasm-bindgen", "async_executors/bindgen"]
 
 veilid_core_android_tests = ["dep:paranoid-android"]
 veilid_core_ios_tests = ["dep:tracing-oslog"]
diff --git a/veilid-core/src/attachment_manager.rs b/veilid-core/src/attachment_manager.rs
index d5a1323d..fca5650d 100644
--- a/veilid-core/src/attachment_manager.rs
+++ b/veilid-core/src/attachment_manager.rs
@@ -1,7 +1,8 @@
-use crate::crypto::Crypto;
-use crate::network_manager::*;
-use crate::routing_table::*;
 use crate::*;
+use crypto::Crypto;
+use network_manager::*;
+use routing_table::*;
+use storage_manager::*;
 
 pub struct AttachmentManagerInner {
     last_attachment_state: AttachmentState,
@@ -26,6 +27,7 @@ pub struct AttachmentManager {
 impl AttachmentManager {
     fn new_unlocked_inner(
         config: VeilidConfig,
+        storage_manager: StorageManager,
         protected_store: ProtectedStore,
         table_store: TableStore,
         block_store: BlockStore,
@@ -35,6 +37,7 @@ impl AttachmentManager {
             config: config.clone(),
             network_manager: NetworkManager::new(
                 config,
+                storage_manager,
                 protected_store,
                 table_store,
                 block_store,
@@ -54,6 +57,7 @@ impl AttachmentManager {
     }
     pub fn new(
         config: VeilidConfig,
+        storage_manager: StorageManager,
         protected_store: ProtectedStore,
         table_store: TableStore,
         block_store: BlockStore,
@@ -63,6 +67,7 @@ impl AttachmentManager {
             inner: Arc::new(Mutex::new(Self::new_inner())),
             unlocked_inner: Arc::new(Self::new_unlocked_inner(
                 config,
+                storage_manager,
                 protected_store,
                 table_store,
                 block_store,
diff --git a/veilid-core/src/core_context.rs b/veilid-core/src/core_context.rs
index 36e307f1..83add352 100644
--- a/veilid-core/src/core_context.rs
+++ b/veilid-core/src/core_context.rs
@@ -106,11 +106,27 @@ impl ServicesContext {
         }
         self.block_store = Some(block_store.clone());
 
+        // Set up storage manager
+        trace!("init storage manager");
+        let storage_manager = StorageManager::new(
+            self.config.clone(),
+            self.crypto.clone().unwrap(),
+            self.protected_store.clone().unwrap(),
+            self.table_store.clone().unwrap(),
+            self.block_store.clone().unwrap(),
+        );
+        if let Err(e) = storage_manager.init().await {
+            self.shutdown().await;
+            return Err(e);
+        }
+        self.storage_manager = Some(storage_manager.clone());
+
         // Set up attachment manager
         trace!("init attachment manager");
         let update_callback = self.update_callback.clone();
         let attachment_manager = AttachmentManager::new(
             self.config.clone(),
+            storage_manager,
             protected_store,
             table_store,
             block_store,
@@ -122,26 +138,6 @@ impl ServicesContext {
         }
         self.attachment_manager = Some(attachment_manager);
 
-        // Set up storage manager
-        trace!("init storage manager");
-        let storage_manager = StorageManager::new(
-            self.config.clone(),
-            self.crypto.clone().unwrap(),
-            self.protected_store.clone().unwrap(),
-            self.table_store.clone().unwrap(),
-            self.block_store.clone().unwrap(),
-            self.attachment_manager
-                .clone()
-                .unwrap()
-                .network_manager()
-                .rpc_processor(),
-        );
-        if let Err(e) = storage_manager.init().await {
-            self.shutdown().await;
-            return Err(e);
-        }
-        self.storage_manager = Some(storage_manager.clone());
-
         info!("Veilid API startup complete");
         Ok(())
     }
@@ -150,14 +146,14 @@ impl ServicesContext {
     pub async fn shutdown(&mut self) {
         info!("Veilid API shutting down");
 
-        if let Some(storage_manager) = &mut self.storage_manager {
-            trace!("terminate storage manager");
-            storage_manager.terminate().await;
-        }
         if let Some(attachment_manager) = &mut self.attachment_manager {
             trace!("terminate attachment manager");
             attachment_manager.terminate().await;
         }
+        if let Some(storage_manager) = &mut self.storage_manager {
+            trace!("terminate storage manager");
+            storage_manager.terminate().await;
+        }
         if let Some(block_store) = &mut self.block_store {
             trace!("terminate block store");
             block_store.terminate().await;
@@ -191,12 +187,12 @@ pub struct VeilidCoreContext {
     pub config: VeilidConfig,
     pub update_callback: UpdateCallback,
     // Services
+    pub storage_manager: StorageManager,
     pub protected_store: ProtectedStore,
     pub table_store: TableStore,
     pub block_store: BlockStore,
     pub crypto: Crypto,
     pub attachment_manager: AttachmentManager,
-    pub storage_manager: StorageManager,
 }
 
 impl VeilidCoreContext {
@@ -242,14 +238,14 @@ impl VeilidCoreContext {
         sc.startup().await.map_err(VeilidAPIError::generic)?;
 
         Ok(VeilidCoreContext {
-            update_callback: sc.update_callback,
             config: sc.config,
+            update_callback: sc.update_callback,
+            storage_manager: sc.storage_manager.unwrap(),
             protected_store: sc.protected_store.unwrap(),
             table_store: sc.table_store.unwrap(),
             block_store: sc.block_store.unwrap(),
             crypto: sc.crypto.unwrap(),
             attachment_manager: sc.attachment_manager.unwrap(),
-            storage_manager: sc.storage_manager.unwrap(),
         })
     }
 
diff --git a/veilid-core/src/network_manager/mod.rs b/veilid-core/src/network_manager/mod.rs
index 14e4153c..924a2531 100644
--- a/veilid-core/src/network_manager/mod.rs
+++ b/veilid-core/src/network_manager/mod.rs
@@ -33,6 +33,7 @@ use native::*;
 use receipt_manager::*;
 use routing_table::*;
 use rpc_processor::*;
+use storage_manager::*;
 #[cfg(target_arch = "wasm32")]
 use wasm::*;
 
@@ -146,6 +147,7 @@ struct NetworkManagerInner {
 struct NetworkManagerUnlockedInner {
     // Handles
     config: VeilidConfig,
+    storage_manager: StorageManager,
     protected_store: ProtectedStore,
     table_store: TableStore,
     block_store: BlockStore,
@@ -176,6 +178,7 @@ impl NetworkManager {
     }
     fn new_unlocked_inner(
         config: VeilidConfig,
+        storage_manager: StorageManager,
         protected_store: ProtectedStore,
         table_store: TableStore,
         block_store: BlockStore,
@@ -183,6 +186,7 @@ impl NetworkManager {
     ) -> NetworkManagerUnlockedInner {
         NetworkManagerUnlockedInner {
             config,
+            storage_manager,
             protected_store,
             table_store,
             block_store,
@@ -197,6 +201,7 @@ impl NetworkManager {
 
     pub fn new(
         config: VeilidConfig,
+        storage_manager: StorageManager,
         protected_store: ProtectedStore,
         table_store: TableStore,
         block_store: BlockStore,
@@ -206,6 +211,7 @@ impl NetworkManager {
             inner: Arc::new(Mutex::new(Self::new_inner())),
             unlocked_inner: Arc::new(Self::new_unlocked_inner(
                 config,
+                storage_manager,
                 protected_store,
                 table_store,
                 block_store,
@@ -226,6 +232,9 @@ impl NetworkManager {
     {
         f(&*self.unlocked_inner.config.get())
     }
+    pub fn storage_manager(&self) -> StorageManager {
+        self.unlocked_inner.storage_manager.clone()
+    }
     pub fn protected_store(&self) -> ProtectedStore {
         self.unlocked_inner.protected_store.clone()
     }
diff --git a/veilid-core/src/rpc_processor/mod.rs b/veilid-core/src/rpc_processor/mod.rs
index 065ad395..37efa402 100644
--- a/veilid-core/src/rpc_processor/mod.rs
+++ b/veilid-core/src/rpc_processor/mod.rs
@@ -34,7 +34,7 @@ use network_manager::*;
 use receipt_manager::*;
 use routing_table::*;
 use stop_token::future::FutureExt;
-use storage_manager::StorageManager;
+use storage_manager::*;
 
 /////////////////////////////////////////////////////////////////////
 
@@ -227,7 +227,6 @@ pub struct RPCProcessorInner {
     send_channel: Option<flume::Sender<(Option<Id>, RPCMessageEncoded)>>,
     stop_source: Option<StopSource>,
     worker_join_handles: Vec<MustJoinHandle<()>>,
-    opt_storage_manager: Option<StorageManager>,
 }
 
 pub struct RPCProcessorUnlockedInner {
@@ -246,6 +245,7 @@ pub struct RPCProcessor {
     crypto: Crypto,
     config: VeilidConfig,
     network_manager: NetworkManager,
+    storage_manager: StorageManager,
     routing_table: RoutingTable,
     inner: Arc<Mutex<RPCProcessorInner>>,
     unlocked_inner: Arc<RPCProcessorUnlockedInner>,
@@ -257,7 +257,6 @@ impl RPCProcessor {
             send_channel: None,
             stop_source: None,
             worker_join_handles: Vec::new(),
-            opt_storage_manager: None,
         }
     }
     fn new_unlocked_inner(
@@ -298,6 +297,7 @@ impl RPCProcessor {
             config: config.clone(),
             network_manager: network_manager.clone(),
             routing_table: network_manager.routing_table(),
+            storage_manager: network_manager.storage_manager(),
             inner: Arc::new(Mutex::new(Self::new_inner())),
             unlocked_inner: Arc::new(Self::new_unlocked_inner(config, update_callback)),
         }
@@ -311,14 +311,8 @@ impl RPCProcessor {
         self.routing_table.clone()
     }
 
-    pub fn set_storage_manager(&self, opt_storage_manager: Option<StorageManager>) {
-        let mut inner = self.inner.lock();
-        inner.opt_storage_manager = opt_storage_manager
-    }
-
-    pub fn storage_manager(&self) -> Option<StorageManager> {
-        let inner = self.inner.lock();
-        inner.opt_storage_manager.clone()
+    pub fn storage_manager(&self) -> StorageManager {
+        self.storage_manager.clone()
     }
 
     //////////////////////////////////////////////////////////////////////
@@ -326,28 +320,35 @@ impl RPCProcessor {
     #[instrument(level = "debug", skip_all, err)]
     pub async fn startup(&self) -> EyreResult<()> {
         debug!("startup rpc processor");
-        let mut inner = self.inner.lock();
+        {
+            let mut inner = self.inner.lock();
 
-        let channel = flume::bounded(self.unlocked_inner.queue_size as usize);
-        inner.send_channel = Some(channel.0.clone());
-        inner.stop_source = Some(StopSource::new());
+            let channel = flume::bounded(self.unlocked_inner.queue_size as usize);
+            inner.send_channel = Some(channel.0.clone());
+            inner.stop_source = Some(StopSource::new());
 
-        // spin up N workers
-        trace!(
-            "Spinning up {} RPC workers",
-            self.unlocked_inner.concurrency
-        );
-        for _ in 0..self.unlocked_inner.concurrency {
-            let this = self.clone();
-            let receiver = channel.1.clone();
-            let jh = spawn(Self::rpc_worker(
-                this,
-                inner.stop_source.as_ref().unwrap().token(),
-                receiver,
-            ));
-            inner.worker_join_handles.push(jh);
+            // spin up N workers
+            trace!(
+                "Spinning up {} RPC workers",
+                self.unlocked_inner.concurrency
+            );
+            for _ in 0..self.unlocked_inner.concurrency {
+                let this = self.clone();
+                let receiver = channel.1.clone();
+                let jh = spawn(Self::rpc_worker(
+                    this,
+                    inner.stop_source.as_ref().unwrap().token(),
+                    receiver,
+                ));
+                inner.worker_join_handles.push(jh);
+            }
         }
 
+        // Inform storage manager we are up
+        self.storage_manager
+            .set_rpc_processor(Some(self.clone()))
+            .await;
+
         Ok(())
     }
 
@@ -355,6 +356,9 @@ impl RPCProcessor {
     pub async fn shutdown(&self) {
         debug!("starting rpc processor shutdown");
 
+        // Stop storage manager from using us
+        self.storage_manager.set_rpc_processor(None).await;
+
         // Stop the rpc workers
         let mut unord = FuturesUnordered::new();
         {
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index 8a4d17c0..7c04adca 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -29,6 +29,8 @@ struct StorageManagerInner {
     local_record_store: Option<RecordStore>,
     /// Records that have been pushed to this node for distribution by other nodes
     remote_record_store: Option<RecordStore>,
+    /// RPC processor if it is available
+    rpc_processor: Option<RPCProcessor>,
 }
 
 struct StorageManagerUnlockedInner {
@@ -37,7 +39,6 @@ struct StorageManagerUnlockedInner {
     protected_store: ProtectedStore,
     table_store: TableStore,
     block_store: BlockStore,
-    rpc_processor: RPCProcessor,
 }
 
 #[derive(Clone)]
@@ -53,7 +54,6 @@ impl StorageManager {
         protected_store: ProtectedStore,
         table_store: TableStore,
         block_store: BlockStore,
-        rpc_processor: RPCProcessor,
     ) -> StorageManagerUnlockedInner {
         StorageManagerUnlockedInner {
             config,
@@ -61,7 +61,6 @@ impl StorageManager {
             protected_store,
             table_store,
             block_store,
-            rpc_processor,
         }
     }
     fn new_inner() -> StorageManagerInner {
@@ -69,6 +68,7 @@ impl StorageManager {
             initialized: false,
             local_record_store: None,
             remote_record_store: None,
+            rpc_processor: None,
         }
     }
 
@@ -106,7 +106,6 @@ impl StorageManager {
         protected_store: ProtectedStore,
         table_store: TableStore,
         block_store: BlockStore,
-        rpc_processor: RPCProcessor,
     ) -> StorageManager {
         StorageManager {
             unlocked_inner: Arc::new(Self::new_unlocked_inner(
@@ -115,7 +114,6 @@ impl StorageManager {
                 protected_store,
                 table_store,
                 block_store,
-                rpc_processor,
             )),
             inner: Arc::new(AsyncMutex::new(Self::new_inner())),
         }
@@ -148,11 +146,6 @@ impl StorageManager {
 
         inner.initialized = true;
 
-        // Let rpc processor access storage manager
-        self.unlocked_inner
-            .rpc_processor
-            .set_storage_manager(Some(self.clone()));
-
         Ok(())
     }
 
@@ -163,12 +156,14 @@ impl StorageManager {
         // Release the storage manager
         *inner = Self::new_inner();
 
-        // Remove storage manager from rpc processor
-        self.unlocked_inner.rpc_processor.set_storage_manager(None);
-
         debug!("finished storage manager shutdown");
     }
 
+    pub async fn set_rpc_processor(&self, opt_rpc_processor: Option<RPCProcessor>) {
+        let mut inner = self.inner.lock().await;
+        inner.rpc_processor = opt_rpc_processor
+    }
+
     /// # DHT Key = Hash(ownerKeyKind) of: [ ownerKeyValue, schema ]
     fn get_key(&self, vcrypto: CryptoSystemVersion, record: &Record) -> TypedKey {
         let compiled = record.descriptor().schema_data();
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index f96337f5..c0b67668 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -135,9 +135,9 @@ impl RecordStore {
     async fn purge_dead_records(&mut self, lazy: bool) {
         let purge_dead_records_mutex = self.purge_dead_records_mutex.clone();
         let lock = if lazy {
-            match purge_dead_records_mutex.try_lock() {
-                Ok(v) => v,
-                Err(_) => {
+            match mutex_try_lock!(purge_dead_records_mutex) {
+                Some(v) => v,
+                None => {
                     // If not ready now, just skip it if we're lazy
                     return;
                 }
diff --git a/veilid-core/src/tests/common/test_veilid_config.rs b/veilid-core/src/tests/common/test_veilid_config.rs
index 323abae7..43a08534 100644
--- a/veilid-core/src/tests/common/test_veilid_config.rs
+++ b/veilid-core/src/tests/common/test_veilid_config.rs
@@ -204,22 +204,28 @@ fn config_callback(key: String) -> ConfigCallbackReturn {
         "network.rpc.queue_size" => Ok(Box::new(1024u32)),
         "network.rpc.max_timestamp_behind_ms" => Ok(Box::new(Some(10_000u32))),
         "network.rpc.max_timestamp_ahead_ms" => Ok(Box::new(Some(10_000u32))),
-        "network.rpc.timeout_ms" => Ok(Box::new(10_000u32)),
+        "network.rpc.timeout_ms" => Ok(Box::new(5_000u32)),
         "network.rpc.max_route_hop_count" => Ok(Box::new(4u8)),
         "network.rpc.default_route_hop_count" => Ok(Box::new(1u8)),
-        "network.dht.resolve_node_timeout_ms" => Ok(Box::new(Option::<u32>::None)),
+        "network.dht.resolve_node_timeout_ms" => Ok(Box::new(10_000u32)),
         "network.dht.resolve_node_count" => Ok(Box::new(20u32)),
         "network.dht.resolve_node_fanout" => Ok(Box::new(3u32)),
         "network.dht.max_find_node_count" => Ok(Box::new(20u32)),
-        "network.dht.get_value_timeout_ms" => Ok(Box::new(10u32)),
+        "network.dht.get_value_timeout_ms" => Ok(Box::new(10_000u32)),
         "network.dht.get_value_count" => Ok(Box::new(20u32)),
         "network.dht.get_value_fanout" => Ok(Box::new(3u32)),
-        "network.dht.set_value_timeout_ms" => Ok(Box::new(10u32)),
+        "network.dht.set_value_timeout_ms" => Ok(Box::new(10_000u32)),
         "network.dht.set_value_count" => Ok(Box::new(20u32)),
         "network.dht.set_value_fanout" => Ok(Box::new(5u32)),
         "network.dht.min_peer_count" => Ok(Box::new(20u32)),
         "network.dht.min_peer_refresh_time_ms" => Ok(Box::new(2_000u32)),
         "network.dht.validate_dial_info_receipt_time_ms" => Ok(Box::new(5_000u32)),
+        "network.dht.local_subkey_cache_size" => Ok(Box::new(128u32)),
+        "network.dht.local_max_subkey_cache_memory_mb" => Ok(Box::new(256u32)),
+        "network.dht.remote_subkey_cache_size" => Ok(Box::new(1024u32)),
+        "network.dht.remote_max_records" => Ok(Box::new(4096u32)),
+        "network.dht.remote_max_subkey_cache_memory_mb" => Ok(Box::new(64u32)),
+        "network.dht.remote_max_storage_space_mb" => Ok(Box::new(64u32)),
         "network.upnp" => Ok(Box::new(false)),
         "network.detect_address_changes" => Ok(Box::new(true)),
         "network.restricted_nat_retries" => Ok(Box::new(3u32)),
diff --git a/veilid-server/src/settings.rs b/veilid-server/src/settings.rs
index c0dc796a..da8a1d7c 100644
--- a/veilid-server/src/settings.rs
+++ b/veilid-server/src/settings.rs
@@ -83,14 +83,14 @@ core:
             max_route_hop_count: 4
             default_route_hop_count: 1
         dht:
-            resolve_node_timeout: 10000
+            resolve_node_timeout_ms: 10000
             resolve_node_count: 20
             resolve_node_fanout: 3
             max_find_node_count: 20
-            get_value_timeout: 10000
+            get_value_timeout_ms: 10000
             get_value_count: 20
             get_value_fanout: 3
-            set_value_timeout: 10000
+            set_value_timeout_ms: 10000
             set_value_count: 20
             set_value_fanout: 5
             min_peer_count: 20
@@ -510,7 +510,7 @@ pub struct Rpc {
 
 #[derive(Debug, Deserialize, Serialize)]
 pub struct Dht {
-    pub resolve_node_timeout_ms: Option<u32>,
+    pub resolve_node_timeout_ms: u32,
     pub resolve_node_count: u32,
     pub resolve_node_fanout: u32,
     pub max_find_node_count: u32,
@@ -856,9 +856,9 @@ impl Settings {
         pk_path
     }
 
-    pub fn get_default_remote_max_subkey_cache_memory_mb() -> usize {
+    pub fn get_default_remote_max_subkey_cache_memory_mb() -> u32 {
         let sys = sysinfo::System::new_with_specifics(sysinfo::RefreshKind::new().with_memory());
-        sys.free_memory() as usize / 8
+        ((sys.free_memory() / (1024u64 * 1024u64)) / 16) as u32
     }
 
     pub fn get_default_remote_max_storage_space_mb(inner: &SettingsInner) -> u32 {
@@ -1534,7 +1534,7 @@ mod tests {
         assert_eq!(s.core.network.rpc.max_route_hop_count, 4);
         assert_eq!(s.core.network.rpc.default_route_hop_count, 1);
         //
-        assert_eq!(s.core.network.dht.resolve_node_timeout_ms, None);
+        assert_eq!(s.core.network.dht.resolve_node_timeout_ms, 10_000u32);
         assert_eq!(s.core.network.dht.resolve_node_count, 20u32);
         assert_eq!(s.core.network.dht.resolve_node_fanout, 3u32);
         assert_eq!(s.core.network.dht.max_find_node_count, 20u32);
diff --git a/veilid-tools/Cargo.toml b/veilid-tools/Cargo.toml
index e7f976b6..7e3f3d12 100644
--- a/veilid-tools/Cargo.toml
+++ b/veilid-tools/Cargo.toml
@@ -11,8 +11,9 @@ crate-type = [ "cdylib", "staticlib", "rlib" ]
 
 [features]
 default = []
-rt-async-std = [ "async-std", "async_executors/async_std", ]
-rt-tokio = [ "tokio", "tokio-util", "async_executors/tokio_tp", "async_executors/tokio_io", "async_executors/tokio_timer", ]
+rt-async-std = [ "async-std", "async_executors/async_std" ]
+rt-tokio = [ "tokio", "tokio-util", "async_executors/tokio_tp", "async_executors/tokio_io", "async_executors/tokio_timer" ]
+rt-wasm-bindgen = [ "async_executors/bindgen", "async_executors/timer"]
 
 veilid_tools_android_tests = [ "dep:paranoid-android" ]
 veilid_tools_ios_tests = [ "dep:oslog", "dep:tracing-oslog" ]
@@ -52,7 +53,7 @@ nix = "^0"
 wasm-bindgen = "^0"
 js-sys = "^0"
 wasm-bindgen-futures = "^0"
-async_executors = { version = "^0", default-features = false, features = [ "bindgen", "timer" ]}
+async_executors = { version = "^0", default-features = false}
 async-lock = "^2"
 send_wrapper = { version = "^0.6", features = ["futures"] }
 
diff --git a/veilid-tools/src/tools.rs b/veilid-tools/src/tools.rs
index a58a1fd6..380b30ad 100644
--- a/veilid-tools/src/tools.rs
+++ b/veilid-tools/src/tools.rs
@@ -32,6 +32,24 @@ macro_rules! bail_io_error_other {
     };
 }
 
+cfg_if::cfg_if! {
+    if #[cfg(feature="rt-tokio")] {
+        #[macro_export]
+        macro_rules! mutex_try_lock {
+            ($x:expr) => {
+                $x.try_lock().ok()
+            };
+        }
+    } else {
+        #[macro_export]
+        macro_rules! mutex_try_lock {
+            ($x:expr) => {
+                $x.try_lock()
+            };
+        }
+    }
+}
+
 //////////////////////////////////////////////////////////////////////////////////////////////////////////////
 
 pub fn system_boxed<'a, Out>(
diff --git a/veilid-wasm/Cargo.toml b/veilid-wasm/Cargo.toml
index b253fbf1..dfe6820c 100644
--- a/veilid-wasm/Cargo.toml
+++ b/veilid-wasm/Cargo.toml
@@ -10,8 +10,8 @@ crate-type = ["cdylib", "rlib"]
 
 
 [features]
-default = [ "veilid-core/rt-tokio", "veilid-core/default" ]
-crypto-test = [ "veilid-core/rt-tokio", "veilid-core/crypto-test"]
+default = [ "veilid-core/rt-wasm-bindgen", "veilid-core/default" ]
+crypto-test = [ "veilid-core/rt-wasm-bindgen", "veilid-core/crypto-test"]
 
 [dependencies]
 veilid-core = { path = "../veilid-core", default-features = false  }

From 31edb8c05933baa8fa8717645f99d2ec46975139 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Sun, 23 Apr 2023 19:19:54 -0400
Subject: [PATCH 16/74] fix tests

---
 veilid-core/run_tests.sh            | 2 +-
 veilid-core/src/tests/native/mod.rs | 2 +-
 veilid-core/tests/web.rs            | 4 ++--
 veilid-tools/run_tests.sh           | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/veilid-core/run_tests.sh b/veilid-core/run_tests.sh
index 0a8ec9af..713de207 100755
--- a/veilid-core/run_tests.sh
+++ b/veilid-core/run_tests.sh
@@ -3,7 +3,7 @@ SCRIPTDIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" >/dev/null 2>&1 && pwd )"
 
 pushd $SCRIPTDIR 2>/dev/null
 if [[ "$1" == "wasm" ]]; then
-    WASM_BINDGEN_TEST_TIMEOUT=120 wasm-pack test --firefox --headless
+    WASM_BINDGEN_TEST_TIMEOUT=120 wasm-pack test --firefox --headless --features=rt-wasm-bindgen
 elif [[ "$1" == "ios" ]]; then
     SYMROOT=/tmp/testout
     APPNAME=veilidcore-tests
diff --git a/veilid-core/src/tests/native/mod.rs b/veilid-core/src/tests/native/mod.rs
index 3dde78c7..d6fa1cfa 100644
--- a/veilid-core/src/tests/native/mod.rs
+++ b/veilid-core/src/tests/native/mod.rs
@@ -11,7 +11,7 @@ use crate::*;
 pub async fn run_all_tests() {
     info!("TEST: test_host_interface");
     test_host_interface::test_all().await;
-    info!("TEST: test_dht_key");
+    info!("TEST: test_types");
     test_types::test_all().await;
     info!("TEST: test_veilid_core");
     test_veilid_core::test_all().await;
diff --git a/veilid-core/tests/web.rs b/veilid-core/tests/web.rs
index 82fb397d..8d03d596 100644
--- a/veilid-core/tests/web.rs
+++ b/veilid-core/tests/web.rs
@@ -37,9 +37,9 @@ async fn run_test_host_interface() {
 }
 
 #[wasm_bindgen_test]
-async fn run_test_dht_key() {
+async fn run_test_types() {
     setup();
-    test_dht_key::test_all().await;
+    test_types::test_all().await;
 }
 
 #[wasm_bindgen_test]
diff --git a/veilid-tools/run_tests.sh b/veilid-tools/run_tests.sh
index de450f39..816b36cb 100755
--- a/veilid-tools/run_tests.sh
+++ b/veilid-tools/run_tests.sh
@@ -3,7 +3,7 @@ SCRIPTDIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" >/dev/null 2>&1 && pwd )"
 
 pushd $SCRIPTDIR 2>/dev/null
 if [[ "$1" == "wasm" ]]; then
-    WASM_BINDGEN_TEST_TIMEOUT=120 wasm-pack test --firefox --headless
+    WASM_BINDGEN_TEST_TIMEOUT=120 wasm-pack test --firefox --headless --features=rt-wasm-bindgen
 elif [[ "$1" == "ios" ]]; then
     SYMROOT=/tmp/testout
     APPNAME=veilidtools-tests

From 62615ad6576c011f8af4b63360be5b3a79fc7388 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Sun, 23 Apr 2023 21:40:53 -0400
Subject: [PATCH 17/74] storage manager background tasks

---
 veilid-core/src/network_manager/mod.rs        |  4 +-
 veilid-core/src/network_manager/tasks/mod.rs  |  4 +-
 veilid-core/src/routing_table/mod.rs          |  4 +-
 veilid-core/src/routing_table/tasks/mod.rs    |  4 +-
 veilid-core/src/storage_manager/mod.rs        | 40 ++++++++++++++++-
 .../src/storage_manager/record_store.rs       |  5 ++-
 .../tasks/flush_record_stores.rs              | 21 +++++++++
 veilid-core/src/storage_manager/tasks/mod.rs  | 43 +++++++++++++++++++
 8 files changed, 113 insertions(+), 12 deletions(-)
 create mode 100644 veilid-core/src/storage_manager/tasks/flush_record_stores.rs
 create mode 100644 veilid-core/src/storage_manager/tasks/mod.rs

diff --git a/veilid-core/src/network_manager/mod.rs b/veilid-core/src/network_manager/mod.rs
index 924a2531..609fe0ee 100644
--- a/veilid-core/src/network_manager/mod.rs
+++ b/veilid-core/src/network_manager/mod.rs
@@ -219,7 +219,7 @@ impl NetworkManager {
             )),
         };
 
-        this.start_tasks();
+        this.setup_tasks();
 
         this
     }
@@ -379,7 +379,7 @@ impl NetworkManager {
         debug!("starting network manager shutdown");
 
         // Cancel all tasks
-        self.stop_tasks().await;
+        self.cancel_tasks().await;
 
         // Shutdown network components if they started up
         debug!("shutting down network components");
diff --git a/veilid-core/src/network_manager/tasks/mod.rs b/veilid-core/src/network_manager/tasks/mod.rs
index 03f76a42..35e3e99c 100644
--- a/veilid-core/src/network_manager/tasks/mod.rs
+++ b/veilid-core/src/network_manager/tasks/mod.rs
@@ -4,7 +4,7 @@ pub mod rolling_transfers;
 use super::*;
 
 impl NetworkManager {
-    pub(crate) fn start_tasks(&self) {
+    pub(crate) fn setup_tasks(&self) {
         // Set rolling transfers tick task
         {
             let this = self.clone();
@@ -67,7 +67,7 @@ impl NetworkManager {
         Ok(())
     }
 
-    pub(crate) async fn stop_tasks(&self) {
+    pub(crate) async fn cancel_tasks(&self) {
         debug!("stopping rolling transfers task");
         if let Err(e) = self.unlocked_inner.rolling_transfers_task.stop().await {
             warn!("rolling_transfers_task not stopped: {}", e);
diff --git a/veilid-core/src/routing_table/mod.rs b/veilid-core/src/routing_table/mod.rs
index 021d9c40..50c4db74 100644
--- a/veilid-core/src/routing_table/mod.rs
+++ b/veilid-core/src/routing_table/mod.rs
@@ -211,7 +211,7 @@ impl RoutingTable {
             unlocked_inner,
         };
 
-        this.start_tasks();
+        this.setup_tasks();
 
         this
     }
@@ -262,7 +262,7 @@ impl RoutingTable {
         debug!("starting routing table terminate");
 
         // Stop tasks
-        self.stop_tasks().await;
+        self.cancel_tasks().await;
 
         // Load bucket entries from table db if possible
         debug!("saving routing table entries");
diff --git a/veilid-core/src/routing_table/tasks/mod.rs b/veilid-core/src/routing_table/tasks/mod.rs
index b7841b78..cf7f7cdc 100644
--- a/veilid-core/src/routing_table/tasks/mod.rs
+++ b/veilid-core/src/routing_table/tasks/mod.rs
@@ -9,7 +9,7 @@ pub mod rolling_transfers;
 use super::*;
 
 impl RoutingTable {
-    pub(crate) fn start_tasks(&self) {
+    pub(crate) fn setup_tasks(&self) {
         // Set rolling transfers tick task
         {
             let this = self.clone();
@@ -176,7 +176,7 @@ impl RoutingTable {
         Ok(())
     }
 
-    pub(crate) async fn stop_tasks(&self) {
+    pub(crate) async fn cancel_tasks(&self) {
         // Cancel all tasks being ticked
         debug!("stopping rolling transfers task");
         if let Err(e) = self.unlocked_inner.rolling_transfers_task.stop().await {
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index 7c04adca..68720be4 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -3,6 +3,7 @@ mod record;
 mod record_data;
 mod record_store;
 mod record_store_limits;
+mod tasks;
 mod types;
 
 use keys::*;
@@ -20,6 +21,8 @@ use crate::rpc_processor::*;
 const MAX_SUBKEY_SIZE: usize = ValueData::MAX_LEN;
 /// The maximum total size of all subkeys of a record
 const MAX_RECORD_DATA_SIZE: usize = 1_048_576;
+/// Frequency to flush record stores to disk
+const FLUSH_RECORD_STORES_INTERVAL_SECS: u32 = 1;
 
 /// Locked structure for storage manager
 struct StorageManagerInner {
@@ -31,6 +34,8 @@ struct StorageManagerInner {
     remote_record_store: Option<RecordStore>,
     /// RPC processor if it is available
     rpc_processor: Option<RPCProcessor>,
+    /// Background processing task (not part of attachment manager tick tree so it happens when detached too)
+    tick_future: Option<SendPinBoxFuture<()>>,
 }
 
 struct StorageManagerUnlockedInner {
@@ -39,6 +44,9 @@ struct StorageManagerUnlockedInner {
     protected_store: ProtectedStore,
     table_store: TableStore,
     block_store: BlockStore,
+
+    // Background processes
+    flush_record_stores_task: TickTask<EyreReport>,
 }
 
 #[derive(Clone)]
@@ -61,6 +69,7 @@ impl StorageManager {
             protected_store,
             table_store,
             block_store,
+            flush_record_stores_task: TickTask::new(FLUSH_RECORD_STORES_INTERVAL_SECS),
         }
     }
     fn new_inner() -> StorageManagerInner {
@@ -69,6 +78,7 @@ impl StorageManager {
             local_record_store: None,
             remote_record_store: None,
             rpc_processor: None,
+            tick_future: None,
         }
     }
 
@@ -107,7 +117,7 @@ impl StorageManager {
         table_store: TableStore,
         block_store: BlockStore,
     ) -> StorageManager {
-        StorageManager {
+        let this = StorageManager {
             unlocked_inner: Arc::new(Self::new_unlocked_inner(
                 config,
                 crypto,
@@ -116,7 +126,11 @@ impl StorageManager {
                 block_store,
             )),
             inner: Arc::new(AsyncMutex::new(Self::new_inner())),
-        }
+        };
+
+        this.setup_tasks();
+
+        this
     }
 
     #[instrument(level = "debug", skip_all, err)]
@@ -144,6 +158,18 @@ impl StorageManager {
         inner.local_record_store = Some(local_record_store);
         inner.remote_record_store = Some(remote_record_store);
 
+        // Schedule tick
+        let this = self.clone();
+        let tick_future = interval(1000, move || {
+            let this = this.clone();
+            async move {
+                if let Err(e) = this.tick().await {
+                    warn!("storage manager tick failed: {}", e);
+                }
+            }
+        });
+        inner.tick_future = Some(tick_future);
+
         inner.initialized = true;
 
         Ok(())
@@ -151,8 +177,18 @@ impl StorageManager {
 
     pub async fn terminate(&self) {
         debug!("starting storage manager shutdown");
+
         let mut inner = self.inner.lock().await;
 
+        // Stop ticker
+        let tick_future = inner.tick_future.take();
+        if let Some(f) = tick_future {
+            f.await;
+        }
+
+        // Cancel all tasks
+        self.cancel_tasks().await;
+
         // Release the storage manager
         *inner = Self::new_inner();
 
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index c0b67668..9490fc27 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -134,7 +134,7 @@ impl RecordStore {
 
     async fn purge_dead_records(&mut self, lazy: bool) {
         let purge_dead_records_mutex = self.purge_dead_records_mutex.clone();
-        let lock = if lazy {
+        let _lock = if lazy {
             match mutex_try_lock!(purge_dead_records_mutex) {
                 Some(v) => v,
                 None => {
@@ -212,9 +212,10 @@ impl RecordStore {
         }
     }
 
-    pub async fn tick(&mut self, last_ts: Timestamp, cur_ts: Timestamp) {
+    pub async fn tick(&mut self) -> EyreResult<()> {
         self.flush_changed_records().await;
         self.purge_dead_records(true).await;
+        Ok(())
     }
 
     pub async fn new_record(
diff --git a/veilid-core/src/storage_manager/tasks/flush_record_stores.rs b/veilid-core/src/storage_manager/tasks/flush_record_stores.rs
new file mode 100644
index 00000000..c2fb1b0d
--- /dev/null
+++ b/veilid-core/src/storage_manager/tasks/flush_record_stores.rs
@@ -0,0 +1,21 @@
+use super::*;
+
+impl StorageManager {
+    // Flush records stores to disk and remove dead records
+    #[instrument(level = "trace", skip(self), err)]
+    pub(crate) async fn flush_record_stores_task_routine(
+        self,
+        stop_token: StopToken,
+        _last_ts: Timestamp,
+        _cur_ts: Timestamp,
+    ) -> EyreResult<()> {
+        let mut inner = self.inner.lock().await;
+        if let Some(local_record_store) = &mut inner.local_record_store {
+            local_record_store.tick().await?;
+        }
+        if let Some(remote_record_store) = &mut inner.remote_record_store {
+            remote_record_store.tick().await?;
+        }
+        Ok(())
+    }
+}
diff --git a/veilid-core/src/storage_manager/tasks/mod.rs b/veilid-core/src/storage_manager/tasks/mod.rs
new file mode 100644
index 00000000..cd90a82e
--- /dev/null
+++ b/veilid-core/src/storage_manager/tasks/mod.rs
@@ -0,0 +1,43 @@
+pub mod flush_record_stores;
+
+use super::*;
+
+impl StorageManager {
+    pub(crate) fn setup_tasks(&self) {
+        // Set rolling transfers tick task
+        debug!("starting flush record stores task");
+        {
+            let this = self.clone();
+            self.unlocked_inner
+                .flush_record_stores_task
+                .set_routine(move |s, l, t| {
+                    Box::pin(
+                        this.clone()
+                            .flush_record_stores_task_routine(
+                                s,
+                                Timestamp::new(l),
+                                Timestamp::new(t),
+                            )
+                            .instrument(trace_span!(
+                                parent: None,
+                                "StorageManager flush record stores task routine"
+                            )),
+                    )
+                });
+        }
+    }
+
+    pub async fn tick(&self) -> EyreResult<()> {
+        // Run the rolling transfers task
+        self.unlocked_inner.flush_record_stores_task.tick().await?;
+
+        Ok(())
+    }
+
+    pub(crate) async fn cancel_tasks(&self) {
+        debug!("stopping flush record stores task");
+        if let Err(e) = self.unlocked_inner.flush_record_stores_task.stop().await {
+            warn!("flush_record_stores_task not stopped: {}", e);
+        }
+    }
+}

From 8368ca461aca09a465e0b92819cae34e0af6d47b Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Mon, 24 Apr 2023 21:24:40 -0400
Subject: [PATCH 18/74] rangesetblaze

---
 Cargo.lock                                    | 21 +++++
 veilid-core/Cargo.toml                        |  1 +
 .../src/veilid_api/serialize_helpers/mod.rs   | 37 ++++++++
 .../serialize_helpers/rkyv_enum_set.rs        | 53 +++++++++++
 .../serialize_helpers/rkyv_range_set_blaze.rs | 73 ++++++++++++++
 .../serialize_helpers/serialize_arc.rs        | 12 +++
 .../serialize_json.rs}                        | 94 -------------------
 .../serialize_range_set_blaze.rs              | 60 ++++++++++++
 8 files changed, 257 insertions(+), 94 deletions(-)
 create mode 100644 veilid-core/src/veilid_api/serialize_helpers/mod.rs
 create mode 100644 veilid-core/src/veilid_api/serialize_helpers/rkyv_enum_set.rs
 create mode 100644 veilid-core/src/veilid_api/serialize_helpers/rkyv_range_set_blaze.rs
 create mode 100644 veilid-core/src/veilid_api/serialize_helpers/serialize_arc.rs
 rename veilid-core/src/veilid_api/{serialize_helpers.rs => serialize_helpers/serialize_json.rs} (54%)
 create mode 100644 veilid-core/src/veilid_api/serialize_helpers/serialize_range_set_blaze.rs

diff --git a/Cargo.lock b/Cargo.lock
index 65a1d656..db294371 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -2150,6 +2150,12 @@ dependencies = [
  "slab",
 ]
 
+[[package]]
+name = "gen_ops"
+version = "0.2.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "3f41347f4fa32183c2549b86daf6b6b12a26029a77463e25358f7287580b088b"
+
 [[package]]
 name = "generic-array"
 version = "0.12.4"
@@ -4245,6 +4251,20 @@ dependencies = [
  "rand_core 0.5.1",
 ]
 
+[[package]]
+name = "range-set-blaze"
+version = "0.1.4"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "e139f0c5edf89edb65753e67eaf8e6031de21ea59f84cb63e0cfb36aaf80e6d0"
+dependencies = [
+ "gen_ops",
+ "itertools",
+ "num-integer",
+ "num-traits",
+ "rand 0.8.5",
+ "thiserror",
+]
+
 [[package]]
 name = "raw-window-handle"
 version = "0.5.2"
@@ -6064,6 +6084,7 @@ dependencies = [
  "paranoid-android",
  "parking_lot 0.12.1",
  "rand 0.7.3",
+ "range-set-blaze",
  "rkyv",
  "rtnetlink",
  "rusqlite",
diff --git a/veilid-core/Cargo.toml b/veilid-core/Cargo.toml
index e7e4f362..8df5b347 100644
--- a/veilid-core/Cargo.toml
+++ b/veilid-core/Cargo.toml
@@ -69,6 +69,7 @@ keyvaluedb = { path = "../external/keyvaluedb/keyvaluedb" }
 rkyv = { version = "^0", default_features = false, features = ["std", "alloc", "strict", "size_32", "validation"] }
 data-encoding = { version = "^2" }
 weak-table = "0.3.2"
+range-set-blaze = "0.1.4"
 
 # Dependencies for native builds only
 # Linux, Windows, Mac, iOS, Android
diff --git a/veilid-core/src/veilid_api/serialize_helpers/mod.rs b/veilid-core/src/veilid_api/serialize_helpers/mod.rs
new file mode 100644
index 00000000..edd6c968
--- /dev/null
+++ b/veilid-core/src/veilid_api/serialize_helpers/mod.rs
@@ -0,0 +1,37 @@
+mod rkyv_enum_set;
+mod rkyv_range_set_blaze;
+pub mod serialize_arc;
+pub mod serialize_range_set_blaze;
+mod serialize_json;
+
+use super::*;
+use core::fmt::Debug;
+
+pub use rkyv_enum_set::*;
+pub use rkyv_range_set_blaze::*;
+pub use serialize_json::*;
+
+pub fn to_rkyv<T>(v: &T) -> EyreResult<Vec<u8>>
+where
+    T: RkyvSerialize<rkyv::ser::serializers::AllocSerializer<1024>>,
+{
+    Ok(rkyv::to_bytes::<T, 1024>(v)
+        .wrap_err("failed to freeze object")?
+        .to_vec())
+}
+
+pub fn from_rkyv<T>(v: Vec<u8>) -> EyreResult<T>
+where
+    T: RkyvArchive,
+    <T as RkyvArchive>::Archived:
+        for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
+    <T as RkyvArchive>::Archived:
+        rkyv::Deserialize<T, rkyv::de::deserializers::SharedDeserializeMap>,
+{
+    match rkyv::from_bytes::<T>(&v) {
+        Ok(v) => Ok(v),
+        Err(e) => {
+            bail!("failed to deserialize frozen object: {}", e);
+        }
+    }
+}
diff --git a/veilid-core/src/veilid_api/serialize_helpers/rkyv_enum_set.rs b/veilid-core/src/veilid_api/serialize_helpers/rkyv_enum_set.rs
new file mode 100644
index 00000000..a3422b48
--- /dev/null
+++ b/veilid-core/src/veilid_api/serialize_helpers/rkyv_enum_set.rs
@@ -0,0 +1,53 @@
+use super::*;
+
+pub struct RkyvEnumSet;
+
+impl<T> rkyv::with::ArchiveWith<EnumSet<T>> for RkyvEnumSet
+where
+    T: EnumSetType + EnumSetTypeWithRepr,
+    <T as EnumSetTypeWithRepr>::Repr: rkyv::Archive,
+{
+    type Archived = rkyv::Archived<<T as EnumSetTypeWithRepr>::Repr>;
+    type Resolver = rkyv::Resolver<<T as EnumSetTypeWithRepr>::Repr>;
+
+    #[inline]
+    unsafe fn resolve_with(
+        field: &EnumSet<T>,
+        pos: usize,
+        resolver: Self::Resolver,
+        out: *mut Self::Archived,
+    ) {
+        let r = field.as_repr();
+        r.resolve(pos, resolver, out);
+    }
+}
+
+impl<T, S> rkyv::with::SerializeWith<EnumSet<T>, S> for RkyvEnumSet
+where
+    S: rkyv::Fallible + ?Sized,
+    T: EnumSetType + EnumSetTypeWithRepr,
+    <T as EnumSetTypeWithRepr>::Repr: rkyv::Serialize<S>,
+{
+    fn serialize_with(field: &EnumSet<T>, serializer: &mut S) -> Result<Self::Resolver, S::Error> {
+        let r = field.as_repr();
+        r.serialize(serializer)
+    }
+}
+
+impl<T, D>
+    rkyv::with::DeserializeWith<rkyv::Archived<<T as EnumSetTypeWithRepr>::Repr>, EnumSet<T>, D>
+    for RkyvEnumSet
+where
+    D: rkyv::Fallible + ?Sized,
+    T: EnumSetType + EnumSetTypeWithRepr,
+    <T as EnumSetTypeWithRepr>::Repr: rkyv::Archive,
+    rkyv::Archived<<T as EnumSetTypeWithRepr>::Repr>:
+        rkyv::Deserialize<<T as EnumSetTypeWithRepr>::Repr, D>,
+{
+    fn deserialize_with(
+        field: &rkyv::Archived<<T as EnumSetTypeWithRepr>::Repr>,
+        deserializer: &mut D,
+    ) -> Result<EnumSet<T>, D::Error> {
+        Ok(EnumSet::<T>::from_repr(field.deserialize(deserializer)?))
+    }
+}
diff --git a/veilid-core/src/veilid_api/serialize_helpers/rkyv_range_set_blaze.rs b/veilid-core/src/veilid_api/serialize_helpers/rkyv_range_set_blaze.rs
new file mode 100644
index 00000000..1acc20f6
--- /dev/null
+++ b/veilid-core/src/veilid_api/serialize_helpers/rkyv_range_set_blaze.rs
@@ -0,0 +1,73 @@
+use super::*;
+
+use range_set_blaze::*;
+
+pub struct RkyvRangeSetBlaze;
+
+impl<T> rkyv::with::ArchiveWith<RangeSetBlaze<T>> for RkyvRangeSetBlaze
+where
+    T: rkyv::Archive + Integer,
+{
+    type Archived = rkyv::Archived<Vec<T>>;
+    type Resolver = rkyv::Resolver<Vec<T>>;
+
+    #[inline]
+    unsafe fn resolve_with(
+        field: &RangeSetBlaze<T>,
+        pos: usize,
+        resolver: Self::Resolver,
+        out: *mut Self::Archived,
+    ) {
+        let mut r = Vec::<T>::with_capacity(field.ranges_len() * 2);
+        for range in field.ranges() {
+            r.push(*range.start());
+            r.push(*range.end());
+        }
+        r.resolve(pos, resolver, out);
+    }
+}
+
+impl<T, S> rkyv::with::SerializeWith<RangeSetBlaze<T>, S> for RkyvRangeSetBlaze
+where
+    S: rkyv::Fallible + ?Sized,
+    Vec<T>: rkyv::Serialize<S>,
+    T: rkyv::Archive + Integer,
+{
+    fn serialize_with(
+        field: &RangeSetBlaze<T>,
+        serializer: &mut S,
+    ) -> Result<Self::Resolver, S::Error> {
+        let mut r = Vec::<T>::with_capacity(field.ranges_len() * 2);
+        for range in field.ranges() {
+            r.push(*range.start());
+            r.push(*range.end());
+        }
+        r.serialize(serializer)
+    }
+}
+
+impl<T, D> rkyv::with::DeserializeWith<rkyv::Archived<Vec<T>>, RangeSetBlaze<T>, D>
+    for RkyvRangeSetBlaze
+where
+    D: rkyv::Fallible + ?Sized,
+    T: rkyv::Archive + Integer,
+    rkyv::Archived<T>: rkyv::Deserialize<T, D>,
+    D::Error: From<String>,
+{
+    fn deserialize_with(
+        field: &rkyv::Archived<Vec<T>>,
+        deserializer: &mut D,
+    ) -> Result<RangeSetBlaze<T>, D::Error> {
+        let mut out = RangeSetBlaze::<T>::new();
+        if field.len() % 2 == 1 {
+            return Err("invalid range set length".to_owned().into());
+        }
+        let f = field.as_slice();
+        for i in 0..field.len() / 2 {
+            let l: T = f[i].deserialize(deserializer)?;
+            let u: T = f[i + 1].deserialize(deserializer)?;
+            out.ranges_insert(l..=u);
+        }
+        Ok(out)
+    }
+}
diff --git a/veilid-core/src/veilid_api/serialize_helpers/serialize_arc.rs b/veilid-core/src/veilid_api/serialize_helpers/serialize_arc.rs
new file mode 100644
index 00000000..cf8097b2
--- /dev/null
+++ b/veilid-core/src/veilid_api/serialize_helpers/serialize_arc.rs
@@ -0,0 +1,12 @@
+use alloc::sync::Arc;
+use serde::{Deserialize, Deserializer, Serialize, Serializer};
+
+pub fn serialize<T: Serialize, S: Serializer>(v: &Arc<T>, s: S) -> Result<S::Ok, S::Error> {
+    T::serialize(v.as_ref(), s)
+}
+
+pub fn deserialize<'de, T: Deserialize<'de>, D: Deserializer<'de>>(
+    d: D,
+) -> Result<Arc<T>, D::Error> {
+    Ok(Arc::new(T::deserialize(d)?))
+}
diff --git a/veilid-core/src/veilid_api/serialize_helpers.rs b/veilid-core/src/veilid_api/serialize_helpers/serialize_json.rs
similarity index 54%
rename from veilid-core/src/veilid_api/serialize_helpers.rs
rename to veilid-core/src/veilid_api/serialize_helpers/serialize_json.rs
index e0ee3788..39494fd4 100644
--- a/veilid-core/src/veilid_api/serialize_helpers.rs
+++ b/veilid-core/src/veilid_api/serialize_helpers/serialize_json.rs
@@ -1,7 +1,5 @@
 use super::*;
 
-use core::fmt::Debug;
-
 // Don't trace these functions as they are used in the transfer of API logs, which will recurse!
 
 // #[instrument(level = "trace", ret, err)]
@@ -114,95 +112,3 @@ pub mod opt_json_as_string {
         }
     }
 }
-
-pub mod arc_serialize {
-    use alloc::sync::Arc;
-    use serde::{Deserialize, Deserializer, Serialize, Serializer};
-
-    pub fn serialize<T: Serialize, S: Serializer>(v: &Arc<T>, s: S) -> Result<S::Ok, S::Error> {
-        T::serialize(v.as_ref(), s)
-    }
-
-    pub fn deserialize<'de, T: Deserialize<'de>, D: Deserializer<'de>>(
-        d: D,
-    ) -> Result<Arc<T>, D::Error> {
-        Ok(Arc::new(T::deserialize(d)?))
-    }
-}
-
-pub fn to_rkyv<T>(v: &T) -> EyreResult<Vec<u8>>
-where
-    T: RkyvSerialize<rkyv::ser::serializers::AllocSerializer<1024>>,
-{
-    Ok(rkyv::to_bytes::<T, 1024>(v)
-        .wrap_err("failed to freeze object")?
-        .to_vec())
-}
-
-pub fn from_rkyv<T>(v: Vec<u8>) -> EyreResult<T>
-where
-    T: RkyvArchive,
-    <T as RkyvArchive>::Archived:
-        for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
-    <T as RkyvArchive>::Archived:
-        rkyv::Deserialize<T, rkyv::de::deserializers::SharedDeserializeMap>,
-{
-    match rkyv::from_bytes::<T>(&v) {
-        Ok(v) => Ok(v),
-        Err(e) => {
-            bail!("failed to deserialize frozen object: {}", e);
-        }
-    }
-}
-
-pub struct RkyvEnumSet;
-
-impl<T> rkyv::with::ArchiveWith<EnumSet<T>> for RkyvEnumSet
-where
-    T: EnumSetType + EnumSetTypeWithRepr,
-    <T as EnumSetTypeWithRepr>::Repr: rkyv::Archive,
-{
-    type Archived = rkyv::Archived<<T as EnumSetTypeWithRepr>::Repr>;
-    type Resolver = rkyv::Resolver<<T as EnumSetTypeWithRepr>::Repr>;
-
-    #[inline]
-    unsafe fn resolve_with(
-        field: &EnumSet<T>,
-        pos: usize,
-        resolver: Self::Resolver,
-        out: *mut Self::Archived,
-    ) {
-        let r = field.as_repr();
-        r.resolve(pos, resolver, out);
-    }
-}
-
-impl<T, S> rkyv::with::SerializeWith<EnumSet<T>, S> for RkyvEnumSet
-where
-    S: rkyv::Fallible + ?Sized,
-    T: EnumSetType + EnumSetTypeWithRepr,
-    <T as EnumSetTypeWithRepr>::Repr: rkyv::Serialize<S>,
-{
-    fn serialize_with(field: &EnumSet<T>, serializer: &mut S) -> Result<Self::Resolver, S::Error> {
-        let r = field.as_repr();
-        r.serialize(serializer)
-    }
-}
-
-impl<T, D>
-    rkyv::with::DeserializeWith<rkyv::Archived<<T as EnumSetTypeWithRepr>::Repr>, EnumSet<T>, D>
-    for RkyvEnumSet
-where
-    D: rkyv::Fallible + ?Sized,
-    T: EnumSetType + EnumSetTypeWithRepr,
-    <T as EnumSetTypeWithRepr>::Repr: rkyv::Archive,
-    rkyv::Archived<<T as EnumSetTypeWithRepr>::Repr>:
-        rkyv::Deserialize<<T as EnumSetTypeWithRepr>::Repr, D>,
-{
-    fn deserialize_with(
-        field: &rkyv::Archived<<T as EnumSetTypeWithRepr>::Repr>,
-        deserializer: &mut D,
-    ) -> Result<EnumSet<T>, D::Error> {
-        Ok(EnumSet::<T>::from_repr(field.deserialize(deserializer)?))
-    }
-}
diff --git a/veilid-core/src/veilid_api/serialize_helpers/serialize_range_set_blaze.rs b/veilid-core/src/veilid_api/serialize_helpers/serialize_range_set_blaze.rs
new file mode 100644
index 00000000..5ef5fa46
--- /dev/null
+++ b/veilid-core/src/veilid_api/serialize_helpers/serialize_range_set_blaze.rs
@@ -0,0 +1,60 @@
+use core::fmt;
+use core::marker::PhantomData;
+use range_set_blaze::*;
+use serde::{
+    de::SeqAccess, de::Visitor, ser::SerializeSeq, Deserialize, Deserializer, Serialize, Serializer,
+};
+
+pub fn serialize<T: Integer + Serialize, S: Serializer>(
+    v: &RangeSetBlaze<T>,
+    s: S,
+) -> Result<S::Ok, S::Error> {
+    let cnt = v.ranges_len() * 2;
+    let mut seq = s.serialize_seq(Some(cnt))?;
+    for range in v.ranges() {
+        seq.serialize_element(range.start())?;
+        seq.serialize_element(range.end())?;
+    }
+    seq.end()
+}
+
+pub fn deserialize<'de, T: Integer + Deserialize<'de>, D: Deserializer<'de>>(
+    d: D,
+) -> Result<RangeSetBlaze<T>, D::Error> {
+    struct RangeSetBlazeVisitor<T> {
+        marker: PhantomData<T>,
+    }
+
+    impl<'de, T> Visitor<'de> for RangeSetBlazeVisitor<T>
+    where
+        T: Deserialize<'de> + Integer,
+    {
+        type Value = RangeSetBlaze<T>;
+
+        fn expecting(&self, formatter: &mut fmt::Formatter) -> fmt::Result {
+            formatter.write_str("a RangeSetBlaze")
+        }
+
+        fn visit_seq<A>(self, mut seq: A) -> Result<Self::Value, A::Error>
+        where
+            A: SeqAccess<'de>,
+        {
+            let mut values = RangeSetBlaze::<T>::new();
+
+            while let Some(start) = seq.next_element()? {
+                let Some(end) = seq.next_element()? else {
+                    break;
+                };
+                values.ranges_insert(start..=end);
+            }
+
+            Ok(values)
+        }
+    }
+
+    let visitor = RangeSetBlazeVisitor {
+        marker: PhantomData,
+    };
+
+    d.deserialize_seq(visitor)
+}

From 36cb0687cb439e530da70a449858e5fc6e11463e Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Tue, 25 Apr 2023 21:52:53 -0400
Subject: [PATCH 19/74] record work

---
 .../src/rpc_processor/coders/value_detail.rs  |  38 -----
 veilid-core/src/storage_manager/mod.rs        | 146 +++++++++++++-----
 .../src/storage_manager/record_store.rs       |  16 +-
 .../types/local_record_detail.rs              |  15 ++
 veilid-core/src/storage_manager/types/mod.rs  |  10 ++
 .../storage_manager/types/opened_record.rs    |  21 +++
 .../src/storage_manager/{ => types}/record.rs |  27 ++--
 .../{ => types}/record_data.rs                |   0
 .../types/remote_record_detail.rs             |  10 ++
 .../src/storage_manager/types/value_detail.rs |  77 ---------
 veilid-core/src/veilid_api/routing_context.rs |   6 +-
 .../types/dht/dht_record_descriptor.rs        |  25 ++-
 veilid-tools/src/tools.rs                     |  17 +-
 13 files changed, 231 insertions(+), 177 deletions(-)
 delete mode 100644 veilid-core/src/rpc_processor/coders/value_detail.rs
 create mode 100644 veilid-core/src/storage_manager/types/local_record_detail.rs
 create mode 100644 veilid-core/src/storage_manager/types/opened_record.rs
 rename veilid-core/src/storage_manager/{ => types}/record.rs (82%)
 rename veilid-core/src/storage_manager/{ => types}/record_data.rs (100%)
 create mode 100644 veilid-core/src/storage_manager/types/remote_record_detail.rs
 delete mode 100644 veilid-core/src/storage_manager/types/value_detail.rs

diff --git a/veilid-core/src/rpc_processor/coders/value_detail.rs b/veilid-core/src/rpc_processor/coders/value_detail.rs
deleted file mode 100644
index 4eac9ee6..00000000
--- a/veilid-core/src/rpc_processor/coders/value_detail.rs
+++ /dev/null
@@ -1,38 +0,0 @@
-use super::*;
-use crate::storage_manager::ValueDetail;
-
-pub fn encode_value_detail(
-    value_detail: &ValueDetail,
-    builder: &mut veilid_capnp::value_detail::Builder,
-) -> Result<(), RPCError> {
-    let mut svdb = builder.reborrow().init_signed_value_data();
-    encode_signed_value_data(value_detail.signed_value_data(), &mut svdb)?;
-    if let Some(descriptor) = value_detail.descriptor() {
-        let mut db = builder.reborrow().init_descriptor();
-        encode_signed_value_descriptor(descriptor, &mut db)?;
-    }
-    Ok(())
-}
-
-pub fn decode_value_detail(
-    reader: &veilid_capnp::value_detail::Reader,
-) -> Result<ValueDetail, RPCError> {
-    let svdr = reader.get_signed_value_data().map_err(RPCError::protocol)?;
-    let signed_value_data = decode_signed_value_data(&svdr)?;
-
-    let descriptor = if reader.has_descriptor() {
-        let dr = reader
-            .reborrow()
-            .get_descriptor()
-            .map_err(RPCError::protocol)?;
-        let descriptor = decode_signed_value_descriptor(&dr)?;
-        Some(descriptor)
-    } else {
-        None
-    };
-
-    Ok(ValueDetail {
-        signed_value_data,
-        descriptor,
-    })
-}
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index 68720be4..e20ba720 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -1,14 +1,10 @@
 mod keys;
-mod record;
-mod record_data;
 mod record_store;
 mod record_store_limits;
 mod tasks;
 mod types;
 
 use keys::*;
-use record::*;
-use record_data::*;
 use record_store::*;
 use record_store_limits::*;
 
@@ -28,10 +24,12 @@ const FLUSH_RECORD_STORES_INTERVAL_SECS: u32 = 1;
 struct StorageManagerInner {
     /// If we are started up
     initialized: bool,
-    /// Records that have been 'created' or 'opened' by this node
-    local_record_store: Option<RecordStore>,
-    /// Records that have been pushed to this node for distribution by other nodes
-    remote_record_store: Option<RecordStore>,
+    /// Records that have been 'opened' and are not yet closed
+    opened_records: HashMap<TypedKey, OpenedRecord>,
+    /// Records that have ever been 'created' or 'opened' by this node, things we care about that we must republish to keep alive
+    local_record_store: Option<RecordStore<LocalRecordDetail>>,
+    /// Records that have been pushed to this node for distribution by other nodes, that we make an effort to republish
+    remote_record_store: Option<RecordStore<RemoteRecordDetail>>,
     /// RPC processor if it is available
     rpc_processor: Option<RPCProcessor>,
     /// Background processing task (not part of attachment manager tick tree so it happens when detached too)
@@ -75,6 +73,7 @@ impl StorageManager {
     fn new_inner() -> StorageManagerInner {
         StorageManagerInner {
             initialized: false,
+            opened_records: HashMap::new(),
             local_record_store: None,
             remote_record_store: None,
             rpc_processor: None,
@@ -201,7 +200,7 @@ impl StorageManager {
     }
 
     /// # DHT Key = Hash(ownerKeyKind) of: [ ownerKeyValue, schema ]
-    fn get_key(&self, vcrypto: CryptoSystemVersion, record: &Record) -> TypedKey {
+    fn get_key<D>(vcrypto: CryptoSystemVersion, record: &Record<D>) -> TypedKey {
         let compiled = record.descriptor().schema_data();
         let mut hash_data = Vec::<u8>::with_capacity(PUBLIC_KEY_LENGTH + 4 + compiled.len());
         hash_data.extend_from_slice(&vcrypto.kind().0);
@@ -211,20 +210,12 @@ impl StorageManager {
         TypedKey::new(vcrypto.kind(), hash)
     }
 
-    async fn new_local_record(
-        &self,
-        vcrypto: CryptoSystemVersion,
-        record: Record,
-    ) -> Result<TypedKey, VeilidAPIError> {
-        // add value record to record store
-        let mut inner = self.inner.lock().await;
+    async fn lock(&self) -> Result<AsyncMutexGuardArc<StorageManagerInner>, VeilidAPIError> {
+        let inner = asyncmutex_lock_arc!(&self.inner);
         if !inner.initialized {
             apibail_generic!("not initialized");
         }
-        let local_record_store = inner.local_record_store.as_mut().unwrap();
-        let key = self.get_key(vcrypto.clone(), &record);
-        local_record_store.new_record(key, record).await?;
-        Ok(key)
+        Ok(inner)
     }
 
     pub async fn create_record(
@@ -232,7 +223,9 @@ impl StorageManager {
         kind: CryptoKind,
         schema: DHTSchema,
         safety_selection: SafetySelection,
-    ) -> Result<TypedKey, VeilidAPIError> {
+    ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
+        let mut inner = self.lock().await?;
+
         // Get cryptosystem
         let Some(vcrypto) = self.unlocked_inner.crypto.get(kind) else {
             apibail_generic!("unsupported cryptosystem");
@@ -254,34 +247,113 @@ impl StorageManager {
 
         // Add new local value record
         let cur_ts = get_aligned_timestamp();
-        let record = Record::new(
-            cur_ts,
-            signed_value_descriptor,
-            Some(owner.secret),
-            safety_selection,
-        )?;
-        let dht_key = self
-            .new_local_record(vcrypto, record)
-            .await
-            .map_err(VeilidAPIError::internal)?;
+        let local_record_detail = LocalRecordDetail { safety_selection };
+        let record =
+            Record::<LocalRecordDetail>::new(cur_ts, signed_value_descriptor, local_record_detail)?;
 
-        Ok(dht_key)
+        let local_record_store = inner.local_record_store.as_mut().unwrap();
+        let dht_key = Self::get_key(vcrypto.clone(), &record);
+        local_record_store.new_record(dht_key, record).await?;
+
+        // Open the record
+        self.open_record_inner(inner, dht_key, Some(owner), safety_selection)
+            .await
+    }
+
+    async fn open_record_inner(
+        &self,
+        mut inner: AsyncMutexGuardArc<StorageManagerInner>,
+        key: TypedKey,
+        writer: Option<KeyPair>,
+        safety_selection: SafetySelection,
+    ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
+        // Get cryptosystem
+        let Some(vcrypto) = self.unlocked_inner.crypto.get(key.kind) else {
+            apibail_generic!("unsupported cryptosystem");
+        };
+
+        // See if we have a local record already or not
+        let cb = |r: &Record<LocalRecordDetail>| {
+            // Process local record
+            (r.owner().clone(), r.schema())
+        };
+        if let Some((owner, schema)) = inner.local_record_store.unwrap().with_record(key, cb) {
+            // Had local record
+
+            // If the writer we chose is also the owner, we have the owner secret
+            // Otherwise this is just another subkey writer
+            let owner_secret = if let Some(writer) = writer {
+                if writer.key == owner {
+                    Some(writer.secret)
+                } else {
+                    None
+                }
+            } else {
+                None
+            };
+
+            // Write open record
+            inner.opened_records.insert(key, OpenedRecord { writer });
+
+            // Make DHT Record Descriptor to return
+            let descriptor = DHTRecordDescriptor {
+                key,
+                owner,
+                owner_secret,
+                schema,
+            };
+            Ok(descriptor)
+        } else {
+            // No record yet
+
+            // Make DHT Record Descriptor to return
+            let descriptor = DHTRecordDescriptor {
+                key,
+                owner,
+                owner_secret,
+                schema,
+            };
+            Ok(descriptor)
+        }
     }
 
     pub async fn open_record(
         &self,
         key: TypedKey,
-        secret: Option<SecretKey>,
+        writer: Option<KeyPair>,
         safety_selection: SafetySelection,
     ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
-        unimplemented!();
+        let inner = self.lock().await?;
+        self.open_record_inner(inner, key, writer, safety_selection)
+            .await
+    }
+
+    async fn close_record_inner(
+        &self,
+        mut inner: AsyncMutexGuardArc<StorageManagerInner>,
+        key: TypedKey,
+    ) -> Result<(), VeilidAPIError> {
+        let Some(opened_record) = inner.opened_records.remove(&key) else {
+            apibail_generic!("record not open");
+        };
+        Ok(())
     }
 
     pub async fn close_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
-        unimplemented!();
+        let inner = self.lock().await?;
+        self.close_record_inner(inner, key).await
     }
 
     pub async fn delete_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
+        let inner = self.lock().await?;
+
+        // Ensure the record is closed
+        if inner.opened_records.contains_key(&key) {
+            self.close_record_inner(inner, key).await?;
+        }
+
+        // Remove
+
         unimplemented!();
     }
 
@@ -291,6 +363,7 @@ impl StorageManager {
         subkey: ValueSubkey,
         force_refresh: bool,
     ) -> Result<Option<ValueData>, VeilidAPIError> {
+        let inner = self.lock().await?;
         unimplemented!();
     }
 
@@ -300,6 +373,7 @@ impl StorageManager {
         subkey: ValueSubkey,
         data: Vec<u8>,
     ) -> Result<Option<ValueData>, VeilidAPIError> {
+        let inner = self.lock().await?;
         unimplemented!();
     }
 
@@ -310,6 +384,7 @@ impl StorageManager {
         expiration: Timestamp,
         count: u32,
     ) -> Result<Timestamp, VeilidAPIError> {
+        let inner = self.lock().await?;
         unimplemented!();
     }
 
@@ -318,6 +393,7 @@ impl StorageManager {
         key: TypedKey,
         subkeys: &[ValueSubkeyRange],
     ) -> Result<bool, VeilidAPIError> {
+        let inner = self.lock().await?;
         unimplemented!();
     }
 }
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index 9490fc27..06b659c4 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -7,25 +7,25 @@
 use super::*;
 use hashlink::LruCache;
 
-pub struct RecordStore {
+pub struct RecordStore<D> {
     table_store: TableStore,
     name: String,
     limits: RecordStoreLimits,
 
     record_table: Option<TableDB>,
     subkey_table: Option<TableDB>,
-    record_index: LruCache<RecordTableKey, Record>,
+    record_index: LruCache<RecordTableKey, Record<D>>,
     subkey_cache: LruCache<SubkeyTableKey, RecordData>,
     subkey_cache_total_size: usize,
     total_storage_space: usize,
 
-    dead_records: Vec<(RecordTableKey, Record)>,
+    dead_records: Vec<(RecordTableKey, Record<D>)>,
     changed_records: HashSet<RecordTableKey>,
 
     purge_dead_records_mutex: Arc<AsyncMutex<()>>,
 }
 
-impl RecordStore {
+impl<D> RecordStore<D> {
     pub fn new(table_store: TableStore, name: &str, limits: RecordStoreLimits) -> Self {
         let subkey_cache_size = limits.subkey_cache_size as usize;
         Self {
@@ -92,7 +92,7 @@ impl RecordStore {
         Ok(())
     }
 
-    fn add_dead_record(&mut self, key: RecordTableKey, record: Record) {
+    fn add_dead_record(&mut self, key: RecordTableKey, record: Record<D>) {
         self.dead_records.push((key, record));
     }
 
@@ -135,7 +135,7 @@ impl RecordStore {
     async fn purge_dead_records(&mut self, lazy: bool) {
         let purge_dead_records_mutex = self.purge_dead_records_mutex.clone();
         let _lock = if lazy {
-            match mutex_try_lock!(purge_dead_records_mutex) {
+            match asyncmutex_try_lock!(purge_dead_records_mutex) {
                 Some(v) => v,
                 None => {
                     // If not ready now, just skip it if we're lazy
@@ -221,7 +221,7 @@ impl RecordStore {
     pub async fn new_record(
         &mut self,
         key: TypedKey,
-        record: Record,
+        record: Record<D>,
     ) -> Result<(), VeilidAPIError> {
         let rtk = RecordTableKey { key };
         if self.record_index.contains_key(&rtk) {
@@ -269,7 +269,7 @@ impl RecordStore {
 
     pub fn with_record<R, F>(&mut self, key: TypedKey, f: F) -> Option<R>
     where
-        F: FnOnce(&Record) -> R,
+        F: FnOnce(&Record<D>) -> R,
     {
         // Get record from index
         let mut out = None;
diff --git a/veilid-core/src/storage_manager/types/local_record_detail.rs b/veilid-core/src/storage_manager/types/local_record_detail.rs
new file mode 100644
index 00000000..8c02f85e
--- /dev/null
+++ b/veilid-core/src/storage_manager/types/local_record_detail.rs
@@ -0,0 +1,15 @@
+use super::*;
+
+use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
+use serde::*;
+
+/// Information required to handle locally opened records
+#[derive(
+    Clone, Debug, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct LocalRecordDetail {
+    /// The last 'safety selection' used when creating/opening this record.
+    /// Even when closed, this safety selection applies to republication attempts by the system.
+    safety_selection: SafetySelection,
+}
diff --git a/veilid-core/src/storage_manager/types/mod.rs b/veilid-core/src/storage_manager/types/mod.rs
index 9eea4ad8..a295241b 100644
--- a/veilid-core/src/storage_manager/types/mod.rs
+++ b/veilid-core/src/storage_manager/types/mod.rs
@@ -1,7 +1,17 @@
+mod local_record_detail;
+mod opened_record;
+mod record;
+mod record_data;
+mod remote_record_detail;
 mod signed_value_data;
 mod signed_value_descriptor;
 
 use super::*;
 
+pub use local_record_detail::*;
+pub use opened_record::*;
+pub use record::*;
+pub use record_data::*;
+pub use remote_record_detail::*;
 pub use signed_value_data::*;
 pub use signed_value_descriptor::*;
diff --git a/veilid-core/src/storage_manager/types/opened_record.rs b/veilid-core/src/storage_manager/types/opened_record.rs
new file mode 100644
index 00000000..17424bfa
--- /dev/null
+++ b/veilid-core/src/storage_manager/types/opened_record.rs
@@ -0,0 +1,21 @@
+use super::*;
+
+/// The state associated with a local record when it is opened
+/// This is not serialized to storage as it is ephemeral for the lifetime of the opened record
+#[derive(Clone, Debug, Default)]
+pub struct OpenedRecord {
+    /// The key pair used to perform writes to subkey on this opened record
+    /// Without this, set_value() will fail regardless of which key or subkey is being written to
+    /// as all writes are signed
+    writer: Option<KeyPair>,
+}
+
+impl OpenedRecord {
+    pub fn new(writer: Option<KeyPair>) -> Self {
+        Self { writer }
+    }
+
+    pub fn writer(&self) -> Option<&KeyPair> {
+        self.writer.as_ref()
+    }
+}
diff --git a/veilid-core/src/storage_manager/record.rs b/veilid-core/src/storage_manager/types/record.rs
similarity index 82%
rename from veilid-core/src/storage_manager/record.rs
rename to veilid-core/src/storage_manager/types/record.rs
index b80a8d47..6b07eafe 100644
--- a/veilid-core/src/storage_manager/record.rs
+++ b/veilid-core/src/storage_manager/types/record.rs
@@ -6,32 +6,28 @@ use serde::*;
     Clone, Debug, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
 )]
 #[archive_attr(repr(C), derive(CheckBytes))]
-pub struct Record {
-    last_touched_ts: Timestamp,
+pub struct Record<D> {
     descriptor: SignedValueDescriptor,
     subkey_count: usize,
-
-    owner_secret: Option<SecretKey>,
-    safety_selection: SafetySelection,
+    last_touched_ts: Timestamp,
     record_data_size: usize,
+    detail: D,
 }
 
-impl Record {
+impl<D> Record<D> {
     pub fn new(
         cur_ts: Timestamp,
         descriptor: SignedValueDescriptor,
-        owner_secret: Option<SecretKey>,
-        safety_selection: SafetySelection,
+        detail: D,
     ) -> Result<Self, VeilidAPIError> {
         let schema = descriptor.schema()?;
         let subkey_count = schema.subkey_count();
         Ok(Self {
-            last_touched_ts: cur_ts,
             descriptor,
             subkey_count,
-            owner_secret,
-            safety_selection,
+            last_touched_ts: cur_ts,
             record_data_size: 0,
+            detail,
         })
     }
 
@@ -68,6 +64,13 @@ impl Record {
     }
 
     pub fn total_size(&self) -> usize {
-        mem::size_of::<Record>() + self.descriptor.total_size() + self.record_data_size
+        mem::size_of::<Record<D>>() + self.descriptor.total_size() + self.record_data_size
+    }
+
+    pub fn detail(&self) -> &D {
+        &self.detail
+    }
+    pub fn detail_mut(&mut self) -> &mut D {
+        &mut self.detail
     }
 }
diff --git a/veilid-core/src/storage_manager/record_data.rs b/veilid-core/src/storage_manager/types/record_data.rs
similarity index 100%
rename from veilid-core/src/storage_manager/record_data.rs
rename to veilid-core/src/storage_manager/types/record_data.rs
diff --git a/veilid-core/src/storage_manager/types/remote_record_detail.rs b/veilid-core/src/storage_manager/types/remote_record_detail.rs
new file mode 100644
index 00000000..40d41895
--- /dev/null
+++ b/veilid-core/src/storage_manager/types/remote_record_detail.rs
@@ -0,0 +1,10 @@
+use super::*;
+
+use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
+use serde::*;
+
+#[derive(
+    Clone, Debug, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct RemoteRecordDetail {}
diff --git a/veilid-core/src/storage_manager/types/value_detail.rs b/veilid-core/src/storage_manager/types/value_detail.rs
deleted file mode 100644
index 4f633dcc..00000000
--- a/veilid-core/src/storage_manager/types/value_detail.rs
+++ /dev/null
@@ -1,77 +0,0 @@
-use super::*;
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
-use serde::*;
-
-/////////////////////////////////////////////////////////////////////////////////////////////////////
-///
-
-#[derive(
-    Clone,
-    Debug,
-    PartialOrd,
-    PartialEq,
-    Eq,
-    Ord,
-    Serialize,
-    Deserialize,
-    RkyvArchive,
-    RkyvSerialize,
-    RkyvDeserialize,
-)]
-#[archive_attr(repr(C), derive(CheckBytes))]
-pub struct ValueDetail {
-    signed_value_data: SignedValueData,
-    descriptor: Option<SignedValueDescriptor>,
-}
-
-impl ValueDetail {
-    pub fn new(
-        signed_value_data: SignedValueData,
-        descriptor: Option<SignedValueDescriptor>,
-    ) -> Self {
-        Self {
-            signed_value_data,
-            descriptor,
-        }
-    }
-
-    pub fn validate(
-        &self,
-        last_descriptor: Option<&SignedValueDescriptor>,
-        subkey: ValueSubkey,
-        vcrypto: CryptoSystemVersion,
-    ) -> Result<(), VeilidAPIError> {
-        // Get descriptor to validate with
-        let descriptor = if let Some(descriptor) = &self.descriptor {
-            if let Some(last_descriptor) = last_descriptor {
-                if descriptor.cmp_no_sig(&last_descriptor) != cmp::Ordering::Equal {
-                    return Err(VeilidAPIError::generic(
-                        "value detail descriptor does not match last descriptor",
-                    ));
-                }
-            }
-            descriptor
-        } else {
-            let Some(descriptor) = last_descriptor else {
-                return Err(VeilidAPIError::generic(
-                    "no last descriptor, requires a descriptor",
-                ));
-            };
-            descriptor
-        };
-
-        // Ensure the descriptor itself validates
-        descriptor.validate(vcrypto.clone())?;
-
-        // And the signed value data
-        self.signed_value_data
-            .validate(descriptor.owner(), subkey, vcrypto)
-    }
-
-    pub fn signed_value_data(&self) -> &SignedValueData {
-        &self.signed_value_data
-    }
-    pub fn descriptor(&self) -> Option<&SignedValueDescriptor> {
-        self.descriptor.as_ref()
-    }
-}
diff --git a/veilid-core/src/veilid_api/routing_context.rs b/veilid-core/src/veilid_api/routing_context.rs
index c61d26af..ef0607d6 100644
--- a/veilid-core/src/veilid_api/routing_context.rs
+++ b/veilid-core/src/veilid_api/routing_context.rs
@@ -203,7 +203,7 @@ impl RoutingContext {
         &self,
         kind: CryptoKind,
         schema: DHTSchema,
-    ) -> Result<TypedKey, VeilidAPIError> {
+    ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager
             .create_record(kind, schema, self.unlocked_inner.safety_selection)
@@ -216,7 +216,7 @@ impl RoutingContext {
     pub async fn open_dht_record(
         &self,
         key: TypedKey,
-        secret: Option<SecretKey>,
+        writer: Option<KeyPair>,
     ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager
@@ -232,7 +232,7 @@ impl RoutingContext {
     }
 
     /// Deletes a DHT record at a specific key. If the record is opened, it must be closed before it is deleted.
-    /// Deleting a record does not delete it from the network immediately, but will remove the storage of the record
+    /// Deleting a record does not delete it from the network, but will remove the storage of the record
     /// locally, and will prevent its value from being refreshed on the network by this node.
     pub async fn delete_dht_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
         let storage_manager = self.api.storage_manager()?;
diff --git a/veilid-core/src/veilid_api/types/dht/dht_record_descriptor.rs b/veilid-core/src/veilid_api/types/dht/dht_record_descriptor.rs
index 24e18337..1c4d114e 100644
--- a/veilid-core/src/veilid_api/types/dht/dht_record_descriptor.rs
+++ b/veilid-core/src/veilid_api/types/dht/dht_record_descriptor.rs
@@ -16,19 +16,40 @@ use super::*;
 )]
 #[archive_attr(repr(C), derive(CheckBytes))]
 pub struct DHTRecordDescriptor {
+    /// DHT Key = Hash(ownerKeyKind) of: [ ownerKeyValue, schema ]
+    key: TypedKey,
+    /// The public key of the owner
     owner: PublicKey,
+    /// If this key is being created: Some(the secret key of the owner)
+    /// If this key is just being opened: None
+    owner_secret: Option<SecretKey>,
+    /// The schema in use associated with the key
     schema: DHTSchema,
 }
 
 impl DHTRecordDescriptor {
-    pub fn new(owner: PublicKey, schema: DHTSchema) -> Self {
-        Self { owner, schema }
+    pub fn new(
+        key: TypedKey,
+        owner: PublicKey,
+        owner_secret: Option<SecretKey>,
+        schema: DHTSchema,
+    ) -> Self {
+        Self {
+            key,
+            owner,
+            owner_secret,
+            schema,
+        }
     }
 
     pub fn owner(&self) -> &PublicKey {
         &self.owner
     }
 
+    pub fn owner_secret(&self) -> Option<&SecretKey> {
+        self.owner_secret.as_ref()
+    }
+
     pub fn schema(&self) -> &DHTSchema {
         &self.schema
     }
diff --git a/veilid-tools/src/tools.rs b/veilid-tools/src/tools.rs
index 380b30ad..a2ecb0fa 100644
--- a/veilid-tools/src/tools.rs
+++ b/veilid-tools/src/tools.rs
@@ -35,18 +35,31 @@ macro_rules! bail_io_error_other {
 cfg_if::cfg_if! {
     if #[cfg(feature="rt-tokio")] {
         #[macro_export]
-        macro_rules! mutex_try_lock {
+        macro_rules! asyncmutex_try_lock {
             ($x:expr) => {
                 $x.try_lock().ok()
             };
         }
+
+        #[macro_export]
+        macro_rules! asyncmutex_lock_arc {
+            ($x:expr) => {
+                $x.clone().lock_owned().await
+            };
+        }
     } else {
         #[macro_export]
-        macro_rules! mutex_try_lock {
+        macro_rules! asyncmutex_try_lock {
             ($x:expr) => {
                 $x.try_lock()
             };
         }
+        #[macro_export]
+        macro_rules! asyncmutex_lock_arc {
+            ($x:expr) => {
+                $x.lock_arc().await
+            };
+        }
     }
 }
 

From a03c00ac76dc6c873e86f7c2f22460e3c7ae034f Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Wed, 26 Apr 2023 21:07:24 -0400
Subject: [PATCH 20/74] checkpoint

---
 veilid-core/src/crypto/byte_array_types.rs    |  2 -
 veilid-core/src/crypto/types/mod.rs           |  2 -
 .../src/intf/native/protected_store.rs        |  1 -
 veilid-core/src/intf/table_db.rs              |  4 --
 veilid-core/src/lib.rs                        | 13 +++-
 veilid-core/src/network_manager/types/mod.rs  |  4 --
 veilid-core/src/routing_table/bucket_entry.rs |  4 +-
 .../src/routing_table/route_spec_store/mod.rs |  3 -
 veilid-core/src/routing_table/types/mod.rs    |  4 --
 veilid-core/src/rpc_processor/mod.rs          |  3 +
 veilid-core/src/storage_manager/mod.rs        | 71 +++++++++++++------
 .../src/storage_manager/record_store.rs       | 39 ++++++++--
 .../types/local_record_detail.rs              |  5 +-
 .../src/storage_manager/types/record.rs       | 16 +++--
 .../src/storage_manager/types/record_data.rs  |  2 -
 .../types/remote_record_detail.rs             |  3 -
 .../types/signed_value_data.rs                |  2 -
 .../types/signed_value_descriptor.rs          |  2 -
 veilid-core/src/veilid_api/error.rs           |  8 +++
 veilid-core/src/veilid_api/routing_context.rs |  2 +-
 veilid-core/src/veilid_config.rs              |  2 -
 21 files changed, 123 insertions(+), 69 deletions(-)

diff --git a/veilid-core/src/crypto/byte_array_types.rs b/veilid-core/src/crypto/byte_array_types.rs
index ff75900c..7922d32b 100644
--- a/veilid-core/src/crypto/byte_array_types.rs
+++ b/veilid-core/src/crypto/byte_array_types.rs
@@ -7,8 +7,6 @@ use core::hash::Hash;
 
 use data_encoding::BASE64URL_NOPAD;
 
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
-
 //////////////////////////////////////////////////////////////////////
 
 /// Length of a public key in bytes
diff --git a/veilid-core/src/crypto/types/mod.rs b/veilid-core/src/crypto/types/mod.rs
index 0c9b76d2..8b8de7de 100644
--- a/veilid-core/src/crypto/types/mod.rs
+++ b/veilid-core/src/crypto/types/mod.rs
@@ -5,8 +5,6 @@ use core::convert::TryInto;
 use core::fmt;
 use core::hash::Hash;
 
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
-
 /// Cryptography version fourcc code
 pub type CryptoKind = FourCC;
 
diff --git a/veilid-core/src/intf/native/protected_store.rs b/veilid-core/src/intf/native/protected_store.rs
index 9bc08620..47176ecd 100644
--- a/veilid-core/src/intf/native/protected_store.rs
+++ b/veilid-core/src/intf/native/protected_store.rs
@@ -1,7 +1,6 @@
 use crate::*;
 use data_encoding::BASE64URL_NOPAD;
 use keyring_manager::*;
-use rkyv::{bytecheck::CheckBytes, Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
 use std::path::Path;
 
 pub struct ProtectedStoreInner {
diff --git a/veilid-core/src/intf/table_db.rs b/veilid-core/src/intf/table_db.rs
index 194a19fe..485760f1 100644
--- a/veilid-core/src/intf/table_db.rs
+++ b/veilid-core/src/intf/table_db.rs
@@ -1,8 +1,4 @@
 use crate::*;
-use rkyv::{
-    bytecheck::CheckBytes, Archive as RkyvArchive, Deserialize as RkyvDeserialize,
-    Serialize as RkyvSerialize,
-};
 
 cfg_if! {
     if #[cfg(target_arch = "wasm32")] {
diff --git a/veilid-core/src/lib.rs b/veilid-core/src/lib.rs
index c9accd40..1a446dbb 100644
--- a/veilid-core/src/lib.rs
+++ b/veilid-core/src/lib.rs
@@ -42,9 +42,18 @@ pub use veilid_tools as tools;
 
 use enumset::*;
 use rkyv::{
-    bytecheck, bytecheck::CheckBytes, Archive as RkyvArchive, Deserialize as RkyvDeserialize,
-    Serialize as RkyvSerialize,
+    bytecheck, bytecheck::CheckBytes, de::deserializers::SharedDeserializeMap, with::Skip,
+    Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize,
 };
+type RkyvSerializer = rkyv::ser::serializers::CompositeSerializer<
+    rkyv::ser::serializers::AlignedSerializer<rkyv::AlignedVec>,
+    rkyv::ser::serializers::FallbackScratch<
+        rkyv::ser::serializers::HeapScratch<1024>,
+        rkyv::ser::serializers::AllocScratch,
+    >,
+    rkyv::ser::serializers::SharedSerializeMap,
+>;
+type RkyvDefaultValidator<'t> = rkyv::validation::validators::DefaultValidator<'t>;
 use serde::*;
 
 pub mod veilid_capnp {
diff --git a/veilid-core/src/network_manager/types/mod.rs b/veilid-core/src/network_manager/types/mod.rs
index e5b494f8..3c1c1e9d 100644
--- a/veilid-core/src/network_manager/types/mod.rs
+++ b/veilid-core/src/network_manager/types/mod.rs
@@ -25,7 +25,3 @@ pub use peer_address::*;
 pub use protocol_type::*;
 pub use signal_info::*;
 pub use socket_address::*;
-
-use enumset::*;
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
-use serde::*;
diff --git a/veilid-core/src/routing_table/bucket_entry.rs b/veilid-core/src/routing_table/bucket_entry.rs
index 0f1919d2..e6a992ff 100644
--- a/veilid-core/src/routing_table/bucket_entry.rs
+++ b/veilid-core/src/routing_table/bucket_entry.rs
@@ -1,8 +1,6 @@
 use super::*;
 use core::sync::atomic::{AtomicU32, Ordering};
-use rkyv::{
-    with::Skip, Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize,
-};
+
 
 /// Reliable pings are done with increased spacing between pings
 
diff --git a/veilid-core/src/routing_table/route_spec_store/mod.rs b/veilid-core/src/routing_table/route_spec_store/mod.rs
index 302b2b6f..618da7f8 100644
--- a/veilid-core/src/routing_table/route_spec_store/mod.rs
+++ b/veilid-core/src/routing_table/route_spec_store/mod.rs
@@ -16,9 +16,6 @@ pub use route_spec_store_content::*;
 pub use route_stats::*;
 
 use crate::veilid_api::*;
-use rkyv::{
-    with::Skip, Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize,
-};
 
 /// The size of the remote private route cache
 const REMOTE_PRIVATE_ROUTE_CACHE_SIZE: usize = 1024;
diff --git a/veilid-core/src/routing_table/types/mod.rs b/veilid-core/src/routing_table/types/mod.rs
index f86299bd..217c5d48 100644
--- a/veilid-core/src/routing_table/types/mod.rs
+++ b/veilid-core/src/routing_table/types/mod.rs
@@ -19,7 +19,3 @@ pub use routing_domain::*;
 pub use signed_direct_node_info::*;
 pub use signed_node_info::*;
 pub use signed_relayed_node_info::*;
-
-use enumset::*;
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
-use serde::*;
diff --git a/veilid-core/src/rpc_processor/mod.rs b/veilid-core/src/rpc_processor/mod.rs
index 37efa402..0e43f208 100644
--- a/veilid-core/src/rpc_processor/mod.rs
+++ b/veilid-core/src/rpc_processor/mod.rs
@@ -425,6 +425,9 @@ impl RPCProcessor {
         Err(RPCError::unimplemented("search_dht_multi_key")).map_err(logthru_rpc!(error))
     }
 
+get rid of multi key, finish resolve node with find_node_rpc, then do putvalue/getvalue, probably in storagemanager.
+
+
     /// Search the DHT for a specific node corresponding to a key unless we have that node in our routing table already, and return the node reference
     /// Note: This routine can possible be recursive, hence the SendPinBoxFuture async form
     pub fn resolve_node(
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index e20ba720..4dec1ce2 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -200,7 +200,12 @@ impl StorageManager {
     }
 
     /// # DHT Key = Hash(ownerKeyKind) of: [ ownerKeyValue, schema ]
-    fn get_key<D>(vcrypto: CryptoSystemVersion, record: &Record<D>) -> TypedKey {
+    fn get_key<D>(vcrypto: CryptoSystemVersion, record: &Record<D>) -> TypedKey
+    where
+        D: RkyvArchive + RkyvSerialize<RkyvSerializer>,
+        for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
+        <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
+    {
         let compiled = record.descriptor().schema_data();
         let mut hash_data = Vec::<u8>::with_capacity(PUBLIC_KEY_LENGTH + 4 + compiled.len());
         hash_data.extend_from_slice(&vcrypto.kind().0);
@@ -213,7 +218,7 @@ impl StorageManager {
     async fn lock(&self) -> Result<AsyncMutexGuardArc<StorageManagerInner>, VeilidAPIError> {
         let inner = asyncmutex_lock_arc!(&self.inner);
         if !inner.initialized {
-            apibail_generic!("not initialized");
+            apibail_not_initialized!();
         }
         Ok(inner)
     }
@@ -260,6 +265,18 @@ impl StorageManager {
             .await
     }
 
+    async fn do_get_value(
+        &self,
+        mut inner: AsyncMutexGuardArc<StorageManagerInner>,
+        key: TypedKey,
+        subkey: ValueSubkey,
+    ) -> Result<Option<GetValueAnswer>, VeilidAPIError> {
+        let Some(rpc_processor) = inner.rpc_processor.clone() else {
+            apibail_not_initialized!();
+        };
+
+        //
+    }
     async fn open_record_inner(
         &self,
         mut inner: AsyncMutexGuardArc<StorageManagerInner>,
@@ -267,17 +284,34 @@ impl StorageManager {
         writer: Option<KeyPair>,
         safety_selection: SafetySelection,
     ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
+        // Ensure the record is closed
+        if inner.opened_records.contains_key(&key) {
+            return Err(VeilidAPIError::generic(
+                "record is already open and should be closed first",
+            ));
+        }
+
         // Get cryptosystem
         let Some(vcrypto) = self.unlocked_inner.crypto.get(key.kind) else {
             apibail_generic!("unsupported cryptosystem");
         };
 
         // See if we have a local record already or not
-        let cb = |r: &Record<LocalRecordDetail>| {
+        let cb = |r: &mut Record<LocalRecordDetail>| {
             // Process local record
+
+            // Keep the safety selection we opened the record with
+            r.detail_mut().safety_selection = safety_selection;
+
+            // Return record details
             (r.owner().clone(), r.schema())
         };
-        if let Some((owner, schema)) = inner.local_record_store.unwrap().with_record(key, cb) {
+        if let Some((owner, schema)) = inner
+            .local_record_store
+            .as_mut()
+            .unwrap()
+            .with_record_mut(key, cb)
+        {
             // Had local record
 
             // If the writer we chose is also the owner, we have the owner secret
@@ -293,27 +327,23 @@ impl StorageManager {
             };
 
             // Write open record
-            inner.opened_records.insert(key, OpenedRecord { writer });
+            inner.opened_records.insert(key, OpenedRecord::new(writer));
 
             // Make DHT Record Descriptor to return
-            let descriptor = DHTRecordDescriptor {
-                key,
-                owner,
-                owner_secret,
-                schema,
-            };
+            let descriptor = DHTRecordDescriptor::new(key, owner, owner_secret, schema);
             Ok(descriptor)
         } else {
-            // No record yet
+            // No record yet, try to get it from the network
+            self.do_get_value(inner, key, 0).await
 
             // Make DHT Record Descriptor to return
-            let descriptor = DHTRecordDescriptor {
-                key,
-                owner,
-                owner_secret,
-                schema,
-            };
-            Ok(descriptor)
+            // let descriptor = DHTRecordDescriptor {
+            //     key,
+            //     owner,
+            //     owner_secret,
+            //     schema,
+            // };
+            // Ok(descriptor)
         }
     }
 
@@ -352,7 +382,8 @@ impl StorageManager {
             self.close_record_inner(inner, key).await?;
         }
 
-        // Remove
+        // Remove the record from the local store
+        //inner.local_record_store.unwrap().de
 
         unimplemented!();
     }
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index 06b659c4..966de820 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -7,7 +7,12 @@
 use super::*;
 use hashlink::LruCache;
 
-pub struct RecordStore<D> {
+pub struct RecordStore<D>
+where
+    D: RkyvArchive + RkyvSerialize<RkyvSerializer>,
+    for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
+    <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
+{
     table_store: TableStore,
     name: String,
     limits: RecordStoreLimits,
@@ -25,7 +30,12 @@ pub struct RecordStore<D> {
     purge_dead_records_mutex: Arc<AsyncMutex<()>>,
 }
 
-impl<D> RecordStore<D> {
+impl<D> RecordStore<D>
+where
+    D: RkyvArchive + RkyvSerialize<RkyvSerializer>,
+    for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
+    <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
+{
     pub fn new(table_store: TableStore, name: &str, limits: RecordStoreLimits) -> Self {
         let subkey_cache_size = limits.subkey_cache_size as usize;
         Self {
@@ -56,10 +66,10 @@ impl<D> RecordStore<D> {
 
         // Pull record index from table into a vector to ensure we sort them
         let record_table_keys = record_table.get_keys(0)?;
-        let mut record_index_saved: Vec<(RecordTableKey, Record)> =
+        let mut record_index_saved: Vec<(RecordTableKey, Record<D>)> =
             Vec::with_capacity(record_table_keys.len());
         for rtk in record_table_keys {
-            if let Some(vr) = record_table.load_rkyv::<Record>(0, &rtk)? {
+            if let Some(vr) = record_table.load_rkyv::<Record<D>>(0, &rtk)? {
                 let rik = RecordTableKey::try_from(rtk.as_ref())?;
                 record_index_saved.push((rik, vr));
             }
@@ -288,6 +298,27 @@ impl<D> RecordStore<D> {
         out
     }
 
+    pub fn with_record_mut<R, F>(&mut self, key: TypedKey, f: F) -> Option<R>
+    where
+        F: FnOnce(&mut Record<D>) -> R,
+    {
+        // Get record from index
+        let mut out = None;
+        let rtk = RecordTableKey { key };
+        if let Some(record) = self.record_index.get_mut(&rtk) {
+            // Callback
+            out = Some(f(record));
+
+            // Touch
+            record.touch(get_aligned_timestamp());
+        }
+        if out.is_some() {
+            self.mark_record_changed(rtk);
+        }
+
+        out
+    }
+
     pub async fn get_subkey<R, F>(
         &mut self,
         key: TypedKey,
diff --git a/veilid-core/src/storage_manager/types/local_record_detail.rs b/veilid-core/src/storage_manager/types/local_record_detail.rs
index 8c02f85e..e632e749 100644
--- a/veilid-core/src/storage_manager/types/local_record_detail.rs
+++ b/veilid-core/src/storage_manager/types/local_record_detail.rs
@@ -1,8 +1,5 @@
 use super::*;
 
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
-use serde::*;
-
 /// Information required to handle locally opened records
 #[derive(
     Clone, Debug, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
@@ -11,5 +8,5 @@ use serde::*;
 pub struct LocalRecordDetail {
     /// The last 'safety selection' used when creating/opening this record.
     /// Even when closed, this safety selection applies to republication attempts by the system.
-    safety_selection: SafetySelection,
+    pub safety_selection: SafetySelection,
 }
diff --git a/veilid-core/src/storage_manager/types/record.rs b/veilid-core/src/storage_manager/types/record.rs
index 6b07eafe..51a2edd0 100644
--- a/veilid-core/src/storage_manager/types/record.rs
+++ b/veilid-core/src/storage_manager/types/record.rs
@@ -1,12 +1,15 @@
 use super::*;
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
-use serde::*;
 
 #[derive(
     Clone, Debug, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
 )]
 #[archive_attr(repr(C), derive(CheckBytes))]
-pub struct Record<D> {
+pub struct Record<D>
+where
+    D: RkyvArchive + RkyvSerialize<RkyvSerializer>,
+    for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
+    <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
+{
     descriptor: SignedValueDescriptor,
     subkey_count: usize,
     last_touched_ts: Timestamp,
@@ -14,7 +17,12 @@ pub struct Record<D> {
     detail: D,
 }
 
-impl<D> Record<D> {
+impl<D> Record<D>
+where
+    D: RkyvArchive + RkyvSerialize<RkyvSerializer>,
+    for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
+    <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
+{
     pub fn new(
         cur_ts: Timestamp,
         descriptor: SignedValueDescriptor,
diff --git a/veilid-core/src/storage_manager/types/record_data.rs b/veilid-core/src/storage_manager/types/record_data.rs
index e439ed67..a9f8ed51 100644
--- a/veilid-core/src/storage_manager/types/record_data.rs
+++ b/veilid-core/src/storage_manager/types/record_data.rs
@@ -1,6 +1,4 @@
 use super::*;
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
-use serde::*;
 
 #[derive(
     Clone,
diff --git a/veilid-core/src/storage_manager/types/remote_record_detail.rs b/veilid-core/src/storage_manager/types/remote_record_detail.rs
index 40d41895..e835faa6 100644
--- a/veilid-core/src/storage_manager/types/remote_record_detail.rs
+++ b/veilid-core/src/storage_manager/types/remote_record_detail.rs
@@ -1,8 +1,5 @@
 use super::*;
 
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
-use serde::*;
-
 #[derive(
     Clone, Debug, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
 )]
diff --git a/veilid-core/src/storage_manager/types/signed_value_data.rs b/veilid-core/src/storage_manager/types/signed_value_data.rs
index 29c69dce..5f2759f7 100644
--- a/veilid-core/src/storage_manager/types/signed_value_data.rs
+++ b/veilid-core/src/storage_manager/types/signed_value_data.rs
@@ -1,6 +1,4 @@
 use super::*;
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
-use serde::*;
 
 /////////////////////////////////////////////////////////////////////////////////////////////////////
 ///
diff --git a/veilid-core/src/storage_manager/types/signed_value_descriptor.rs b/veilid-core/src/storage_manager/types/signed_value_descriptor.rs
index 917d3dfc..5cef1f2a 100644
--- a/veilid-core/src/storage_manager/types/signed_value_descriptor.rs
+++ b/veilid-core/src/storage_manager/types/signed_value_descriptor.rs
@@ -1,6 +1,4 @@
 use super::*;
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
-use serde::*;
 
 /////////////////////////////////////////////////////////////////////////////////////////////////////
 ///
diff --git a/veilid-core/src/veilid_api/error.rs b/veilid-core/src/veilid_api/error.rs
index 7e04b947..f2ae12e4 100644
--- a/veilid-core/src/veilid_api/error.rs
+++ b/veilid-core/src/veilid_api/error.rs
@@ -1,5 +1,13 @@
 use super::*;
 
+#[allow(unused_macros)]
+#[macro_export]
+macro_rules! apibail_not_initialized {
+    () => {
+        return Err(VeilidAPIError::not_initialized())
+    };
+}
+
 #[allow(unused_macros)]
 #[macro_export]
 macro_rules! apibail_timeout {
diff --git a/veilid-core/src/veilid_api/routing_context.rs b/veilid-core/src/veilid_api/routing_context.rs
index ef0607d6..ed950234 100644
--- a/veilid-core/src/veilid_api/routing_context.rs
+++ b/veilid-core/src/veilid_api/routing_context.rs
@@ -220,7 +220,7 @@ impl RoutingContext {
     ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager
-            .open_record(key, secret, self.unlocked_inner.safety_selection)
+            .open_record(key, writer, self.unlocked_inner.safety_selection)
             .await
     }
 
diff --git a/veilid-core/src/veilid_config.rs b/veilid-core/src/veilid_config.rs
index a45d7f62..c6dc1ddf 100644
--- a/veilid-core/src/veilid_config.rs
+++ b/veilid-core/src/veilid_config.rs
@@ -1,6 +1,4 @@
 use crate::*;
-use rkyv::{Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize};
-use serde::*;
 
 ////////////////////////////////////////////////////////////////////////////////////////////////
 pub type ConfigCallbackReturn = Result<Box<dyn core::any::Any + Send>, VeilidAPIError>;

From 514bc34e115d0e47b1b5c6640b359a834b32a387 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Thu, 27 Apr 2023 17:36:45 -0400
Subject: [PATCH 21/74] checkpoint

---
 veilid-core/src/rpc_processor/mod.rs | 18 ++++++++++--------
 1 file changed, 10 insertions(+), 8 deletions(-)

diff --git a/veilid-core/src/rpc_processor/mod.rs b/veilid-core/src/rpc_processor/mod.rs
index 0e43f208..77764d1c 100644
--- a/veilid-core/src/rpc_processor/mod.rs
+++ b/veilid-core/src/rpc_processor/mod.rs
@@ -405,12 +405,16 @@ impl RPCProcessor {
         _count: u32,
         _fanout: u32,
         _timeout: TimestampDuration,
+         
     ) -> Result<Option<NodeRef>, RPCError> {
-        //let routing_table = self.routing_table();
+        let routing_table = self.routing_table();
 
-        // xxx find node but stop if we find the exact node we want
-        // xxx return whatever node is closest after the timeout
-        Err(RPCError::unimplemented("search_dht_single_key")).map_err(logthru_rpc!(error))
+        // Get the 'count' closest nodes to the key out of our routing table
+        let mut closest_nodes = Vec::new();
+        routing_table.find_closest_nodes(count, node_id, filters, transform)
+
+
+        
     }
 
     /// Search the DHT for the 'count' closest nodes to a key, adding them all to the routing table if they are not there and returning their node references
@@ -425,14 +429,11 @@ impl RPCProcessor {
         Err(RPCError::unimplemented("search_dht_multi_key")).map_err(logthru_rpc!(error))
     }
 
-get rid of multi key, finish resolve node with find_node_rpc, then do putvalue/getvalue, probably in storagemanager.
-
-
     /// Search the DHT for a specific node corresponding to a key unless we have that node in our routing table already, and return the node reference
     /// Note: This routine can possible be recursive, hence the SendPinBoxFuture async form
     pub fn resolve_node(
         &self,
-        node_id: PublicKey,
+        node_id: PublicKey, xxx switch to typedkey for the api. everything else is going to need it.
     ) -> SendPinBoxFuture<Result<Option<NodeRef>, RPCError>> {
         let this = self.clone();
         Box::pin(async move {
@@ -457,6 +458,7 @@ get rid of multi key, finish resolve node with find_node_rpc, then do putvalue/g
                 )
             };
 
+            // Search in preferred cryptosystem order
             let nr = this
                 .search_dht_single_key(node_id, count, fanout, timeout)
                 .await?;

From 61415597dbaf88226c12614aade8f90775b75942 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Thu, 4 May 2023 21:26:14 -0400
Subject: [PATCH 22/74] checkpoint

---
 .../src/crypto/types/crypto_typed_set.rs      |  4 +-
 .../src/routing_table/routing_table_inner.rs  |  3 -
 veilid-core/src/rpc_processor/mod.rs          | 88 +++++++++++++++----
 3 files changed, 74 insertions(+), 21 deletions(-)

diff --git a/veilid-core/src/crypto/types/crypto_typed_set.rs b/veilid-core/src/crypto/types/crypto_typed_set.rs
index 3906d559..b8e17bf6 100644
--- a/veilid-core/src/crypto/types/crypto_typed_set.rs
+++ b/veilid-core/src/crypto/types/crypto_typed_set.rs
@@ -141,9 +141,9 @@ where
         }
         false
     }
-    pub fn contains_key(&self, key: &K) -> bool {
+    pub fn contains_value(&self, value: &K) -> bool {
         for tk in &self.items {
-            if tk.value == *key {
+            if tk.value == *value {
                 return true;
             }
         }
diff --git a/veilid-core/src/routing_table/routing_table_inner.rs b/veilid-core/src/routing_table/routing_table_inner.rs
index 4ec518cb..c2c92708 100644
--- a/veilid-core/src/routing_table/routing_table_inner.rs
+++ b/veilid-core/src/routing_table/routing_table_inner.rs
@@ -1209,9 +1209,6 @@ impl RoutingTableInner {
             };
 
             // distance is the next metric, closer nodes first
-            // since multiple cryptosystems are in use, the distance for a key is the shortest
-            // distance to that key over all supported cryptosystems
-
             let da = vcrypto.distance(&a_key.value, &node_id.value);
             let db = vcrypto.distance(&b_key.value, &node_id.value);
             da.cmp(&db)
diff --git a/veilid-core/src/rpc_processor/mod.rs b/veilid-core/src/rpc_processor/mod.rs
index 77764d1c..87286060 100644
--- a/veilid-core/src/rpc_processor/mod.rs
+++ b/veilid-core/src/rpc_processor/mod.rs
@@ -401,28 +401,84 @@ impl RPCProcessor {
     /// If no node was found in the timeout, this returns None
     pub async fn search_dht_single_key(
         &self,
-        _node_id: PublicKey,
-        _count: u32,
-        _fanout: u32,
-        _timeout: TimestampDuration,
-         
+        node_id: TypedKey,
+        count: usize,
+        fanout: usize,
+        timeout_us: TimestampDuration,
     ) -> Result<Option<NodeRef>, RPCError> {
         let routing_table = self.routing_table();
 
+        let filter = Box::new(
+            move |rti: &RoutingTableInner, opt_entry: Option<Arc<BucketEntry>>| {
+                // Exclude our own node
+                if opt_entry.is_none() {
+                    return false;
+                }
+
+                // Ensure only things that are valid/signed in the PublicInternet domain are returned
+                rti.filter_has_valid_signed_node_info(
+                    RoutingDomain::PublicInternet,
+                    true,
+                    opt_entry,
+                )
+            },
+        ) as RoutingTableEntryFilter;
+        let filters = VecDeque::from([filter]);
+
+        let transform = |_rti: &RoutingTableInner, v: Option<Arc<BucketEntry>>| {
+            NodeRef::new(routing_table.clone(), v.unwrap().clone(), None)
+        };
+
         // Get the 'count' closest nodes to the key out of our routing table
-        let mut closest_nodes = Vec::new();
-        routing_table.find_closest_nodes(count, node_id, filters, transform)
+        let closest_nodes = routing_table.find_closest_nodes(count, node_id, filters, transform);
 
+        // If the node we want to locate is one of the closest nodes, return it immediately
+        if let Some(out) = closest_nodes
+            .iter()
+            .find(|x| x.node_ids().contains(&node_id))
+        {
+            return Ok(Some(out.clone()));
+        }
 
-        
+        // Make accessible to fanout tasks
+        struct FanoutContext {
+            closest_nodes: Vec<NodeRef>,
+            called_nodes: TypedKeySet,
+        }
+        let closest_nodes = Arc::new(Mutex::new(closest_nodes));
+
+        // Otherwise contact the 'fanout' closest nodes to see if there's closer nodes
+        let mut unord = FuturesUnordered::new();
+        {
+            // Spin up 'fanout' tasks to process the fanout
+            for n in 0..4 {
+                // Fanout processor
+                let closest_nodes = closest_nodes.clone();
+                let h = async move {
+                    // Find the nth node to iterate on
+                    let cn = closest_nodes.lock();
+                    let n = n.clamp(0, cn.len()); xxx dont do this, use called nodes set, shouldnt need stop token canceller, but maybe at the top level? nothing is spawning. so maybe not.
+                    let mut node = 
+
+                };
+                unord.push(h);
+            }
+        }
+        // Wait for them to complete
+        timeout((timeout_us.as_u64() / 1000u64) as u32, async {
+            while let Some(_) = unord.next().await {}
+        })
+        .await;
+
+        Ok(None)
     }
 
     /// Search the DHT for the 'count' closest nodes to a key, adding them all to the routing table if they are not there and returning their node references
     pub async fn search_dht_multi_key(
         &self,
-        _node_id: PublicKey,
-        _count: u32,
-        _fanout: u32,
+        _node_id: TypedKey,
+        _count: usize,
+        _fanout: usize,
         _timeout: TimestampDuration,
     ) -> Result<Vec<NodeRef>, RPCError> {
         // xxx return closest nodes after the timeout
@@ -433,14 +489,14 @@ impl RPCProcessor {
     /// Note: This routine can possible be recursive, hence the SendPinBoxFuture async form
     pub fn resolve_node(
         &self,
-        node_id: PublicKey, xxx switch to typedkey for the api. everything else is going to need it.
+        node_id: TypedKey,
     ) -> SendPinBoxFuture<Result<Option<NodeRef>, RPCError>> {
         let this = self.clone();
         Box::pin(async move {
             let routing_table = this.routing_table();
 
             // First see if we have the node in our routing table already
-            if let Some(nr) = routing_table.lookup_any_node_ref(node_id) {
+            if let Some(nr) = routing_table.lookup_node_ref(node_id) {
                 // ensure we have some dial info for the entry already,
                 // if not, we should do the find_node anyway
                 if nr.has_any_dial_info() {
@@ -452,8 +508,8 @@ impl RPCProcessor {
             let (count, fanout, timeout) = {
                 let c = this.config.get();
                 (
-                    c.network.dht.resolve_node_count,
-                    c.network.dht.resolve_node_fanout,
+                    c.network.dht.resolve_node_count as usize,
+                    c.network.dht.resolve_node_fanout as usize,
                     TimestampDuration::from(ms_to_us(c.network.dht.resolve_node_timeout_ms)),
                 )
             };
@@ -464,7 +520,7 @@ impl RPCProcessor {
                 .await?;
 
             if let Some(nr) = &nr {
-                if nr.node_ids().contains_key(&node_id) {
+                if nr.node_ids().contains(&node_id) {
                     // found a close node, but not exact within our configured resolve_node timeout
                     return Ok(None);
                 }

From e2c5691d7e48affe9a1f5d12b87b2605b8b061b3 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Fri, 5 May 2023 21:23:17 -0400
Subject: [PATCH 23/74] checkpoint

---
 veilid-core/src/crypto/types/crypto_typed.rs  |  15 +-
 veilid-core/src/network_manager/mod.rs        |   2 +-
 veilid-core/src/routing_table/mod.rs          |  10 +
 .../src/routing_table/routing_table_inner.rs  |  68 +++++-
 veilid-core/src/rpc_processor/fanout_call.rs  | 222 ++++++++++++++++++
 veilid-core/src/rpc_processor/mod.rs          | 132 +++++------
 .../src/storage_manager/do_get_value.rs       | 107 +++++++++
 veilid-core/src/storage_manager/mod.rs        |  15 +-
 veilid-core/src/veilid_api/routing_context.rs |   7 +-
 veilid-flutter/rust/src/dart_ffi.rs           |   2 +-
 veilid-wasm/src/lib.rs                        |   2 +-
 11 files changed, 484 insertions(+), 98 deletions(-)
 create mode 100644 veilid-core/src/rpc_processor/fanout_call.rs
 create mode 100644 veilid-core/src/storage_manager/do_get_value.rs

diff --git a/veilid-core/src/crypto/types/crypto_typed.rs b/veilid-core/src/crypto/types/crypto_typed.rs
index b6575769..f37ac7ce 100644
--- a/veilid-core/src/crypto/types/crypto_typed.rs
+++ b/veilid-core/src/crypto/types/crypto_typed.rs
@@ -127,12 +127,17 @@ where
     type Err = VeilidAPIError;
     fn from_str(s: &str) -> Result<Self, Self::Err> {
         let b = s.as_bytes();
-        if b.len() != (5 + K::encoded_len()) || b[4..5] != b":"[..] {
-            apibail_parse_error!("invalid typed key", s);
+        if b.len() == (5 + K::encoded_len()) && b[4..5] != b":"[..] {
+            let kind: CryptoKind = b[0..4].try_into().expect("should not fail to convert");
+            let value = K::try_decode_bytes(&b[5..])?;
+            Ok(Self { kind, value })
+        } else if b.len() == K::encoded_len() {
+            let kind = best_crypto_kind();
+            let value = K::try_decode_bytes(b)?;
+            Ok(Self { kind, value })
+        } else {
+            apibail_generic!("invalid cryptotyped format");
         }
-        let kind: CryptoKind = b[0..4].try_into().expect("should not fail to convert");
-        let value = K::try_decode_bytes(&b[5..])?;
-        Ok(Self { kind, value })
     }
 }
 impl<'de, K> Deserialize<'de> for CryptoTyped<K>
diff --git a/veilid-core/src/network_manager/mod.rs b/veilid-core/src/network_manager/mod.rs
index 609fe0ee..6b71130d 100644
--- a/veilid-core/src/network_manager/mod.rs
+++ b/veilid-core/src/network_manager/mod.rs
@@ -1400,7 +1400,7 @@ impl NetworkManager {
 
             let some_relay_nr = if self.check_client_whitelist(sender_id) {
                 // Full relay allowed, do a full resolve_node
-                match rpc.resolve_node(recipient_id.value).await {
+                match rpc.resolve_node(recipient_id, SafetySelection::Unsafe(Sequencing::default())).await {
                     Ok(v) => v,
                     Err(e) => {
                         log_net!(debug "failed to resolve recipient node for relay, dropping outbound relayed packet: {}" ,e);
diff --git a/veilid-core/src/routing_table/mod.rs b/veilid-core/src/routing_table/mod.rs
index 50c4db74..8cdf65f7 100644
--- a/veilid-core/src/routing_table/mod.rs
+++ b/veilid-core/src/routing_table/mod.rs
@@ -964,6 +964,16 @@ impl RoutingTable {
             .find_closest_nodes(node_count, node_id, filters, transform)
     }
 
+    pub fn sort_and_clean_closest_noderefs(
+        &self,
+        node_id: TypedKey,
+        closest_nodes: &mut Vec<NodeRef>,
+    ) {
+        self.inner
+            .read()
+            .sort_and_clean_closest_noderefs(node_id, closest_nodes)
+    }
+
     #[instrument(level = "trace", skip(self), ret)]
     pub fn register_find_node_answer(
         &self,
diff --git a/veilid-core/src/routing_table/routing_table_inner.rs b/veilid-core/src/routing_table/routing_table_inner.rs
index c2c92708..e70e705d 100644
--- a/veilid-core/src/routing_table/routing_table_inner.rs
+++ b/veilid-core/src/routing_table/routing_table_inner.rs
@@ -1153,7 +1153,6 @@ impl RoutingTableInner {
         let vcrypto = self.unlocked_inner.crypto().get(crypto_kind).unwrap();
 
         // Filter to ensure entries support the crypto kind in use
-
         let filter = Box::new(
             move |_rti: &RoutingTableInner, opt_entry: Option<Arc<BucketEntry>>| {
                 if let Some(entry) = opt_entry {
@@ -1219,4 +1218,71 @@ impl RoutingTableInner {
         log_rtab!(">> find_closest_nodes: node count = {}", out.len());
         out
     }
+
+    pub fn sort_and_clean_closest_noderefs(
+        &self,
+        node_id: TypedKey,
+        closest_nodes: &mut Vec<NodeRef>,
+    ) {
+        // Lock all noderefs
+        let kind = node_id.kind;
+        let mut closest_nodes_locked: Vec<NodeRefLocked> = closest_nodes
+            .iter()
+            .filter_map(|x| {
+                if x.node_ids().kinds().contains(&kind) {
+                    Some(x.locked(self))
+                } else {
+                    None
+                }
+            })
+            .collect();
+
+        // Sort closest
+        let sort = make_closest_noderef_sort(self.unlocked_inner.crypto(), node_id);
+        closest_nodes_locked.sort_by(sort);
+
+        // Unlock noderefs
+        *closest_nodes = closest_nodes_locked.iter().map(|x| x.unlocked()).collect();
+    }
+}
+
+fn make_closest_noderef_sort(
+    crypto: Crypto,
+    node_id: TypedKey,
+) -> impl Fn(&NodeRefLocked, &NodeRefLocked) -> core::cmp::Ordering {
+    let cur_ts = get_aligned_timestamp();
+    let kind = node_id.kind;
+    // Get cryptoversion to check distance with
+    let vcrypto = crypto.get(node_id.kind).unwrap();
+
+    move |a: &NodeRefLocked, b: &NodeRefLocked| -> core::cmp::Ordering {
+        // same nodes are always the same
+        if a.same_entry(b) {
+            return core::cmp::Ordering::Equal;
+        }
+
+        // reliable nodes come first, pessimistically treating our own node as unreliable
+        a.operate(|_rti, a_entry| {
+            b.operate(|_rti, b_entry| {
+                let ra = a_entry.check_reliable(cur_ts);
+                let rb = b_entry.check_reliable(cur_ts);
+                if ra != rb {
+                    if ra {
+                        return core::cmp::Ordering::Less;
+                    } else {
+                        return core::cmp::Ordering::Greater;
+                    }
+                }
+
+                // get keys
+                let a_key = a_entry.node_ids().get(node_id.kind).unwrap();
+                let b_key = b_entry.node_ids().get(node_id.kind).unwrap();
+
+                // distance is the next metric, closer nodes first
+                let da = vcrypto.distance(&a_key.value, &node_id.value);
+                let db = vcrypto.distance(&b_key.value, &node_id.value);
+                da.cmp(&db)
+            })
+        })
+    }
 }
diff --git a/veilid-core/src/rpc_processor/fanout_call.rs b/veilid-core/src/rpc_processor/fanout_call.rs
new file mode 100644
index 00000000..ff0617e1
--- /dev/null
+++ b/veilid-core/src/rpc_processor/fanout_call.rs
@@ -0,0 +1,222 @@
+use super::*;
+
+struct FanoutContext<R>
+where
+    R: Unpin,
+{
+    closest_nodes: Vec<NodeRef>,
+    called_nodes: TypedKeySet,
+    result: Option<Result<R, RPCError>>,
+}
+
+pub type FanoutCallReturnType = Result<Option<Vec<PeerInfo>>, RPCError>;
+
+pub struct FanoutCall<R, F, C, D>
+where
+    R: Unpin,
+    F: Future<Output = FanoutCallReturnType>,
+    C: Fn(NodeRef) -> F,
+    D: Fn(&[NodeRef]) -> Option<R>,
+{
+    routing_table: RoutingTable,
+    crypto_kind: CryptoKind,
+    node_id: TypedKey,
+    context: Mutex<FanoutContext<R>>,
+    count: usize,
+    fanout: usize,
+    timeout_us: TimestampDuration,
+    call_routine: C,
+    check_done: D,
+}
+
+impl<R, F, C, D> FanoutCall<R, F, C, D>
+where
+    R: Unpin,
+    F: Future<Output = FanoutCallReturnType>,
+    C: Fn(NodeRef) -> F,
+    D: Fn(&[NodeRef]) -> Option<R>,
+{
+    pub fn new(
+        routing_table: RoutingTable,
+        node_id: TypedKey,
+        count: usize,
+        fanout: usize,
+        timeout_us: TimestampDuration,
+        call_routine: C,
+        check_done: D,
+    ) -> Arc<Self> {
+        let context = Mutex::new(FanoutContext {
+            closest_nodes: Vec::with_capacity(count),
+            called_nodes: TypedKeySet::new(),
+            result: None,
+        });
+
+        Arc::new(Self {
+            routing_table,
+            node_id,
+            crypto_kind: node_id.kind,
+            context,
+            count,
+            fanout,
+            timeout_us,
+            call_routine,
+            check_done,
+        })
+    }
+
+    fn add_new_nodes(self: Arc<Self>, new_nodes: Vec<NodeRef>) {
+        let mut ctx = self.context.lock();
+
+        for nn in new_nodes {
+            let mut dup = false;
+            for cn in &ctx.closest_nodes {
+                if cn.same_entry(&nn) {
+                    dup = true;
+                }
+            }
+            if !dup {
+                ctx.closest_nodes.push(nn.clone());
+            }
+        }
+
+        self.routing_table
+            .sort_and_clean_closest_noderefs(self.node_id, &mut ctx.closest_nodes);
+        ctx.closest_nodes.truncate(self.count);
+    }
+
+    fn remove_node(self: Arc<Self>, dead_node: NodeRef) {
+        let mut ctx = self.context.lock();
+        for n in 0..ctx.closest_nodes.len() {
+            let cn = &ctx.closest_nodes[n];
+            if cn.same_entry(&dead_node) {
+                ctx.closest_nodes.remove(n);
+                break;
+            }
+        }
+    }
+
+    fn get_next_node(self: Arc<Self>) -> Option<NodeRef> {
+        let mut next_node = None;
+        let mut ctx = self.context.lock();
+        for cn in &ctx.closest_nodes {
+            if let Some(key) = cn.node_ids().get(self.crypto_kind) {
+                if !ctx.called_nodes.contains(&key) {
+                    // New fanout call candidate found
+                    next_node = Some(cn.clone());
+                    ctx.called_nodes.add(key);
+                }
+            }
+        }
+        next_node
+    }
+
+    fn evaluate_done(self: Arc<Self>) -> bool {
+        let mut ctx = self.context.lock();
+
+        // If we have a result, then we're done
+        if ctx.result.is_some() {
+            return true;
+        }
+
+        // Check for a new done result
+        ctx.result = (self.check_done)(&ctx.closest_nodes).map(|o| Ok(o));
+        ctx.result.is_some()
+    }
+
+    async fn fanout_processor(self: Arc<Self>) {
+        // Check to see if we have a result or are done
+        while !self.clone().evaluate_done() {
+            // Get the closest node we haven't processed yet
+            let next_node = self.clone().get_next_node();
+
+            // If we don't have a node to process, stop fanning out
+            let Some(next_node) = next_node else {
+                return;
+            };
+
+            // Do the call for this node
+            match (self.call_routine)(next_node.clone()).await {
+                Ok(Some(v)) => {
+                    // Call succeeded
+                    // Register the returned nodes and add them to the closest nodes list in sorted order
+                    let new_nodes = self
+                        .routing_table
+                        .register_find_node_answer(self.crypto_kind, v);
+                    self.clone().add_new_nodes(new_nodes);
+                }
+                Ok(None) => {
+                    // Call failed, remove the node so it isn't included in the output
+                    self.clone().remove_node(next_node);
+                }
+                Err(e) => {
+                    // Error happened, abort everything and return the error
+                }
+            };
+        }
+    }
+
+    fn init_closest_nodes(self: Arc<Self>) {
+        // Get the 'count' closest nodes to the key out of our routing table
+        let closest_nodes = {
+            let routing_table = self.routing_table.clone();
+
+            let filter = Box::new(
+                move |rti: &RoutingTableInner, opt_entry: Option<Arc<BucketEntry>>| {
+                    // Exclude our own node
+                    if opt_entry.is_none() {
+                        return false;
+                    }
+
+                    // Ensure only things that are valid/signed in the PublicInternet domain are returned
+                    rti.filter_has_valid_signed_node_info(
+                        RoutingDomain::PublicInternet,
+                        true,
+                        opt_entry,
+                    )
+                },
+            ) as RoutingTableEntryFilter;
+            let filters = VecDeque::from([filter]);
+
+            let transform = |_rti: &RoutingTableInner, v: Option<Arc<BucketEntry>>| {
+                NodeRef::new(routing_table.clone(), v.unwrap().clone(), None)
+            };
+
+            routing_table.find_closest_nodes(self.count, self.node_id, filters, transform)
+        };
+
+        let mut ctx = self.context.lock();
+        ctx.closest_nodes = closest_nodes;
+    }
+
+    pub async fn run(self: Arc<Self>) -> TimeoutOr<Result<Option<R>, RPCError>> {
+        // Initialize closest nodes list
+        self.clone().init_closest_nodes();
+
+        // Do a quick check to see if we're already done
+        if self.clone().evaluate_done() {
+            let mut ctx = self.context.lock();
+            return TimeoutOr::value(ctx.result.take().transpose());
+        }
+
+        // If not, do the fanout
+        let mut unord = FuturesUnordered::new();
+        {
+            // Spin up 'fanout' tasks to process the fanout
+            for _ in 0..self.fanout {
+                let h = self.clone().fanout_processor();
+                unord.push(h);
+            }
+        }
+        // Wait for them to complete
+        timeout((self.timeout_us.as_u64() / 1000u64) as u32, async {
+            while let Some(_) = unord.next().await {}
+        })
+        .await
+        .into_timeout_or()
+        .map(|_| {
+            // Finished, return whatever value we came up with
+            let mut ctx = self.context.lock();
+            ctx.result.take().transpose()
+        })
+    }
+}
diff --git a/veilid-core/src/rpc_processor/mod.rs b/veilid-core/src/rpc_processor/mod.rs
index 87286060..702fd73c 100644
--- a/veilid-core/src/rpc_processor/mod.rs
+++ b/veilid-core/src/rpc_processor/mod.rs
@@ -1,5 +1,6 @@
 mod coders;
 mod destination;
+mod fanout_call;
 mod operation_waiter;
 mod rpc_app_call;
 mod rpc_app_message;
@@ -22,6 +23,7 @@ mod rpc_watch_value;
 
 pub use coders::*;
 pub use destination::*;
+pub use fanout_call::*;
 pub use operation_waiter::*;
 pub use rpc_error::*;
 pub use rpc_status::*;
@@ -399,90 +401,64 @@ impl RPCProcessor {
 
     /// Search the DHT for a single node closest to a key and add it to the routing table and return the node reference
     /// If no node was found in the timeout, this returns None
-    pub async fn search_dht_single_key(
+    async fn search_dht_single_key(
         &self,
         node_id: TypedKey,
         count: usize,
         fanout: usize,
         timeout_us: TimestampDuration,
-    ) -> Result<Option<NodeRef>, RPCError> {
+        safety_selection: SafetySelection,
+    ) -> TimeoutOr<Result<Option<NodeRef>, RPCError>> {
         let routing_table = self.routing_table();
 
-        let filter = Box::new(
-            move |rti: &RoutingTableInner, opt_entry: Option<Arc<BucketEntry>>| {
-                // Exclude our own node
-                if opt_entry.is_none() {
-                    return false;
+        // Routine to call to generate fanout
+        let call_routine = |next_node: NodeRef| {
+            let this = self.clone();
+            async move {
+                match this
+                    .clone()
+                    .rpc_call_find_node(
+                        Destination::direct(next_node).with_safety(safety_selection),
+                        node_id,
+                    )
+                    .await
+                {
+                    Ok(v) => {
+                        let v = network_result_value_or_log!(v => {
+                            // Any other failures, just try the next node
+                            return Ok(None);
+                        });
+                        Ok(Some(v.answer))
+                    }
+                    Err(e) => Err(e),
                 }
-
-                // Ensure only things that are valid/signed in the PublicInternet domain are returned
-                rti.filter_has_valid_signed_node_info(
-                    RoutingDomain::PublicInternet,
-                    true,
-                    opt_entry,
-                )
-            },
-        ) as RoutingTableEntryFilter;
-        let filters = VecDeque::from([filter]);
-
-        let transform = |_rti: &RoutingTableInner, v: Option<Arc<BucketEntry>>| {
-            NodeRef::new(routing_table.clone(), v.unwrap().clone(), None)
+            }
         };
 
-        // Get the 'count' closest nodes to the key out of our routing table
-        let closest_nodes = routing_table.find_closest_nodes(count, node_id, filters, transform);
-
-        // If the node we want to locate is one of the closest nodes, return it immediately
-        if let Some(out) = closest_nodes
-            .iter()
-            .find(|x| x.node_ids().contains(&node_id))
-        {
-            return Ok(Some(out.clone()));
-        }
-
-        // Make accessible to fanout tasks
-        struct FanoutContext {
-            closest_nodes: Vec<NodeRef>,
-            called_nodes: TypedKeySet,
-        }
-        let closest_nodes = Arc::new(Mutex::new(closest_nodes));
-
-        // Otherwise contact the 'fanout' closest nodes to see if there's closer nodes
-        let mut unord = FuturesUnordered::new();
-        {
-            // Spin up 'fanout' tasks to process the fanout
-            for n in 0..4 {
-                // Fanout processor
-                let closest_nodes = closest_nodes.clone();
-                let h = async move {
-                    // Find the nth node to iterate on
-                    let cn = closest_nodes.lock();
-                    let n = n.clamp(0, cn.len()); xxx dont do this, use called nodes set, shouldnt need stop token canceller, but maybe at the top level? nothing is spawning. so maybe not.
-                    let mut node = 
-
-                };
-                unord.push(h);
+        // Routine to call to check if we're done at each step
+        let check_done = |closest_nodes: &[NodeRef]| {
+            // If the node we want to locate is one of the closest nodes, return it immediately
+            if let Some(out) = closest_nodes
+                .iter()
+                .find(|x| x.node_ids().contains(&node_id))
+            {
+                return Some(out.clone());
             }
-        }
-        // Wait for them to complete
-        timeout((timeout_us.as_u64() / 1000u64) as u32, async {
-            while let Some(_) = unord.next().await {}
-        })
-        .await;
+            None
+        };
 
-        Ok(None)
-    }
+        // Call the fanout
+        let fanout_call = FanoutCall::new(
+            routing_table.clone(),
+            node_id,
+            count,
+            fanout,
+            timeout_us,
+            call_routine,
+            check_done,
+        );
 
-    /// Search the DHT for the 'count' closest nodes to a key, adding them all to the routing table if they are not there and returning their node references
-    pub async fn search_dht_multi_key(
-        &self,
-        _node_id: TypedKey,
-        _count: usize,
-        _fanout: usize,
-        _timeout: TimestampDuration,
-    ) -> Result<Vec<NodeRef>, RPCError> {
-        // xxx return closest nodes after the timeout
-        Err(RPCError::unimplemented("search_dht_multi_key")).map_err(logthru_rpc!(error))
+        fanout_call.run().await
     }
 
     /// Search the DHT for a specific node corresponding to a key unless we have that node in our routing table already, and return the node reference
@@ -490,6 +466,7 @@ impl RPCProcessor {
     pub fn resolve_node(
         &self,
         node_id: TypedKey,
+        safety_selection: SafetySelection,
     ) -> SendPinBoxFuture<Result<Option<NodeRef>, RPCError>> {
         let this = self.clone();
         Box::pin(async move {
@@ -515,9 +492,16 @@ impl RPCProcessor {
             };
 
             // Search in preferred cryptosystem order
-            let nr = this
-                .search_dht_single_key(node_id, count, fanout, timeout)
-                .await?;
+            let nr = match this
+                .search_dht_single_key(node_id, count, fanout, timeout, safety_selection)
+                .await
+            {
+                TimeoutOr::Timeout => None,
+                TimeoutOr::Value(Ok(v)) => v,
+                TimeoutOr::Value(Err(e)) => {
+                    return Err(e);
+                }
+            };
 
             if let Some(nr) = &nr {
                 if nr.node_ids().contains(&node_id) {
diff --git a/veilid-core/src/storage_manager/do_get_value.rs b/veilid-core/src/storage_manager/do_get_value.rs
new file mode 100644
index 00000000..5d9fd846
--- /dev/null
+++ b/veilid-core/src/storage_manager/do_get_value.rs
@@ -0,0 +1,107 @@
+use super::*;
+
+pub struct DoGetValueResult {
+    pub value: Option<SignedValueData>,
+    pub descriptor: Option<SignedValueDescriptor>,
+}
+
+impl StorageManager {
+
+    pub async fn do_get_value(
+        &self,
+        mut inner: AsyncMutexGuardArc<StorageManagerInner>,
+        key: TypedKey,
+        subkey: ValueSubkey,
+        min_seq: ValueSeqNum,
+        last_descriptor: Option<SignedValueDescriptor>,
+        safety_selection: SafetySelection,
+    ) -> Result<Option<DoGetValueResult>, VeilidAPIError> {
+        let Some(rpc_processor) = inner.rpc_processor.clone() else {
+            apibail_not_initialized!();
+        };
+
+        let routing_table = rpc_processor.routing_table();
+
+        // Get the DHT parameters for 'GetValue'
+        let (count, fanout, timeout) = {
+            let c = self.unlocked_inner.config.get();
+            (
+                c.network.dht.get_value_count as usize,
+                c.network.dht.get_value_fanout as usize,
+                TimestampDuration::from(ms_to_us(c.network.dht.get_value_timeout_ms)),
+            )
+        };
+
+        // Routine to call to generate fanout
+        let call_routine = |next_node: NodeRef| {
+            let rpc_processor = rpc_processor.clone();
+            async move {
+                match rpc_processor
+                    .clone()
+                    .rpc_call_get_value(
+                        Destination::direct(next_node).with_safety(safety_selection),
+                        key, subkey, last_descriptor
+                    )
+                    .await
+                {
+                    Ok(v) => {
+                        let v = network_result_value_or_log!(v => {
+                            // Any other failures, just try the next node
+                            return Ok(None);
+                        });
+                        
+                        // Keep the value if we got one and it is newer and it passes schema validation
+                        if let Some(value) = v.answer.value {
+                            // See if this is even a candidate
+                            if value.value_data().    xxx apply min_seq and also to OperationGetValueQ
+                            // Validate with scheam
+                        }
+
+                        // Return peers if we have some
+                        Ok(Some(v.answer.peers))
+                    }
+                    Err(e) => Err(e),
+                }
+            }
+        };
+
+        // Routine to call to check if we're done at each step
+        let check_done = |closest_nodes: &[NodeRef]| {
+            // If the node we want to locate is one of the closest nodes, return it immediately
+            if let Some(out) = closest_nodes
+                .iter()
+                .find(|x| x.node_ids().contains(&node_id))
+            {
+                return Some(out.clone());
+            }
+            None
+        };
+
+        // Call the fanout
+        let fanout_call = FanoutCall::new(
+            routing_table.clone(),
+            node_id,
+            count,
+            fanout,
+            timeout_us,
+            call_routine,
+            check_done,
+        );
+
+        fanout_call.run().await
+
+        // Search in preferred cryptosystem order
+        let nr = this
+            .search_dht_single_key(node_id, count, fanout, timeout, safety_selection)
+            .await?;
+
+        if let Some(nr) = &nr {
+            if nr.node_ids().contains(&node_id) {
+                // found a close node, but not exact within our configured resolve_node timeout
+                return Ok(None);
+            }
+        }
+
+        Ok(nr)
+    }
+}
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index 4dec1ce2..ef03e04c 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -1,3 +1,4 @@
+mod do_get_value;
 mod keys;
 mod record_store;
 mod record_store_limits;
@@ -265,18 +266,6 @@ impl StorageManager {
             .await
     }
 
-    async fn do_get_value(
-        &self,
-        mut inner: AsyncMutexGuardArc<StorageManagerInner>,
-        key: TypedKey,
-        subkey: ValueSubkey,
-    ) -> Result<Option<GetValueAnswer>, VeilidAPIError> {
-        let Some(rpc_processor) = inner.rpc_processor.clone() else {
-            apibail_not_initialized!();
-        };
-
-        //
-    }
     async fn open_record_inner(
         &self,
         mut inner: AsyncMutexGuardArc<StorageManagerInner>,
@@ -334,7 +323,7 @@ impl StorageManager {
             Ok(descriptor)
         } else {
             // No record yet, try to get it from the network
-            self.do_get_value(inner, key, 0).await
+            self.do_get_value(inner, key, 0, safety_selection).await
 
             // Make DHT Record Descriptor to return
             // let descriptor = DHTRecordDescriptor {
diff --git a/veilid-core/src/veilid_api/routing_context.rs b/veilid-core/src/veilid_api/routing_context.rs
index ed950234..fd06b286 100644
--- a/veilid-core/src/veilid_api/routing_context.rs
+++ b/veilid-core/src/veilid_api/routing_context.rs
@@ -4,7 +4,7 @@ use super::*;
 
 #[derive(Clone, Debug)]
 pub enum Target {
-    NodeId(PublicKey),     // Node by any of its public keys
+    NodeId(TypedKey),      // Node by its public key
     PrivateRoute(RouteId), // Remote private route by its id
 }
 
@@ -105,7 +105,10 @@ impl RoutingContext {
         match target {
             Target::NodeId(node_id) => {
                 // Resolve node
-                let mut nr = match rpc_processor.resolve_node(node_id).await {
+                let mut nr = match rpc_processor
+                    .resolve_node(node_id, self.unlocked_inner.safety_selection)
+                    .await
+                {
                     Ok(Some(nr)) => nr,
                     Ok(None) => apibail_invalid_target!(),
                     Err(e) => return Err(e.into()),
diff --git a/veilid-flutter/rust/src/dart_ffi.rs b/veilid-flutter/rust/src/dart_ffi.rs
index 4650844d..a3c96ff1 100644
--- a/veilid-flutter/rust/src/dart_ffi.rs
+++ b/veilid-flutter/rust/src/dart_ffi.rs
@@ -74,7 +74,7 @@ async fn parse_target(s: String) -> APIResult<veilid_core::Target> {
     }
 
     // Is this a node id?
-    if let Ok(nid) = veilid_core::PublicKey::from_str(&s) {
+    if let Ok(nid) = veilid_core::TypedKey::from_str(&s) {
         return Ok(veilid_core::Target::NodeId(nid));
     }
 
diff --git a/veilid-wasm/src/lib.rs b/veilid-wasm/src/lib.rs
index 26da17bf..82295e08 100644
--- a/veilid-wasm/src/lib.rs
+++ b/veilid-wasm/src/lib.rs
@@ -94,7 +94,7 @@ fn parse_target(s: String) -> APIResult<veilid_core::Target> {
     }
 
     // Is this a node id?
-    if let Ok(nid) = veilid_core::PublicKey::from_str(&s) {
+    if let Ok(nid) = veilid_core::TypedKey::from_str(&s) {
         return Ok(veilid_core::Target::NodeId(nid));
     }
 

From 1fe5004eef25500706b9fafc0c557b4d70a470a5 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Sat, 6 May 2023 21:09:40 -0400
Subject: [PATCH 24/74] checkpoint

---
 doc/config/sample.config                      |  14 +-
 doc/config/veilid-server-config.md            |  14 +-
 .../src/routing_table/routing_table_inner.rs  |   6 +-
 .../coders/operations/operation_get_value.rs  |   1 +
 veilid-core/src/rpc_processor/fanout_call.rs  |  29 ++-
 veilid-core/src/rpc_processor/mod.rs          |  21 +-
 .../src/rpc_processor/operation_waiter.rs     |   3 +-
 .../src/rpc_processor/rpc_find_node.rs        |   7 +-
 .../src/rpc_processor/rpc_get_value.rs        | 109 +++++++++-
 .../src/storage_manager/do_get_value.rs       | 151 ++++++++++----
 veilid-core/src/storage_manager/mod.rs        | 190 ++++++++++++------
 .../src/storage_manager/record_store.rs       |  30 ++-
 .../src/storage_manager/types/record.rs       |   4 +-
 .../src/tests/common/test_veilid_config.rs    |  27 +--
 veilid-core/src/veilid_api/error.rs           |  16 +-
 .../src/veilid_api/types/dht/schema/dflt.rs   |  23 +++
 .../src/veilid_api/types/dht/schema/mod.rs    |  13 ++
 .../src/veilid_api/types/dht/schema/smpl.rs   |  40 +++-
 veilid-core/src/veilid_config.rs              |   4 +-
 veilid-flutter/lib/veilid.dart                |  68 +++++--
 veilid-server/src/settings.rs                 |  38 ++--
 veilid-tools/src/tools.rs                     |   4 +
 veilid-wasm/tests/web.rs                      |  18 +-
 23 files changed, 627 insertions(+), 203 deletions(-)

diff --git a/doc/config/sample.config b/doc/config/sample.config
index 60362d04..1d52f579 100644
--- a/doc/config/sample.config
+++ b/doc/config/sample.config
@@ -67,16 +67,16 @@ core:
             max_route_hop_count: 4
             default_route_hop_count: 1
         dht:
-            resolve_node_timeout_ms: 10000
-            resolve_node_count: 20
-            resolve_node_fanout: 3
             max_find_node_count: 20
+            resolve_node_timeout_ms: 10000
+            resolve_node_count: 1
+            resolve_node_fanout: 4
             get_value_timeout_ms: 10000
-            get_value_count: 20
-            get_value_fanout: 3
+            get_value_count: 3
+            get_value_fanout: 4
             set_value_timeout_ms: 10000
-            set_value_count: 20
-            set_value_fanout: 5
+            set_value_count: 5
+            set_value_fanout: 4
             min_peer_count: 20
             min_peer_refresh_time_ms: 2000
             validate_dial_info_receipt_time_ms: 2000
diff --git a/doc/config/veilid-server-config.md b/doc/config/veilid-server-config.md
index 13f556e9..e4a2ecc5 100644
--- a/doc/config/veilid-server-config.md
+++ b/doc/config/veilid-server-config.md
@@ -234,16 +234,16 @@ rpc:
 
 ```yaml
 dht:
-    resolve_node_timeout_ms: 10000
-    resolve_node_count: 20
-    resolve_node_fanout: 3
     max_find_node_count: 20
+    resolve_node_timeout_ms: 10000
+    resolve_node_count: 1
+    resolve_node_fanout: 4
     get_value_timeout_ms: 10000
-    get_value_count: 20
-    get_value_fanout: 3
+    get_value_count: 3
+    get_value_fanout: 4
     set_value_timeout_ms: 10000
-    set_value_count: 20
-    set_value_fanout: 5
+    set_value_count: 5
+    set_value_fanout: 4
     min_peer_count: 20
     min_peer_refresh_time_ms: 2000
     validate_dial_info_receipt_time_ms: 2000
diff --git a/veilid-core/src/routing_table/routing_table_inner.rs b/veilid-core/src/routing_table/routing_table_inner.rs
index e70e705d..aa08c08f 100644
--- a/veilid-core/src/routing_table/routing_table_inner.rs
+++ b/veilid-core/src/routing_table/routing_table_inner.rs
@@ -1253,7 +1253,7 @@ fn make_closest_noderef_sort(
     let cur_ts = get_aligned_timestamp();
     let kind = node_id.kind;
     // Get cryptoversion to check distance with
-    let vcrypto = crypto.get(node_id.kind).unwrap();
+    let vcrypto = crypto.get(kind).unwrap();
 
     move |a: &NodeRefLocked, b: &NodeRefLocked| -> core::cmp::Ordering {
         // same nodes are always the same
@@ -1275,8 +1275,8 @@ fn make_closest_noderef_sort(
                 }
 
                 // get keys
-                let a_key = a_entry.node_ids().get(node_id.kind).unwrap();
-                let b_key = b_entry.node_ids().get(node_id.kind).unwrap();
+                let a_key = a_entry.node_ids().get(kind).unwrap();
+                let b_key = b_entry.node_ids().get(kind).unwrap();
 
                 // distance is the next metric, closer nodes first
                 let da = vcrypto.distance(&a_key.value, &node_id.value);
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs b/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
index f8f0a37f..e46bf5d3 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
@@ -102,6 +102,7 @@ impl RPCOperationGetValueA {
             descriptor,
         })
     }
+
     pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         let question_context = validate_context
             .question_context
diff --git a/veilid-core/src/rpc_processor/fanout_call.rs b/veilid-core/src/rpc_processor/fanout_call.rs
index ff0617e1..e55606f5 100644
--- a/veilid-core/src/rpc_processor/fanout_call.rs
+++ b/veilid-core/src/rpc_processor/fanout_call.rs
@@ -22,7 +22,7 @@ where
     crypto_kind: CryptoKind,
     node_id: TypedKey,
     context: Mutex<FanoutContext<R>>,
-    count: usize,
+    node_count: usize,
     fanout: usize,
     timeout_us: TimestampDuration,
     call_routine: C,
@@ -39,14 +39,14 @@ where
     pub fn new(
         routing_table: RoutingTable,
         node_id: TypedKey,
-        count: usize,
+        node_count: usize,
         fanout: usize,
         timeout_us: TimestampDuration,
         call_routine: C,
         check_done: D,
     ) -> Arc<Self> {
         let context = Mutex::new(FanoutContext {
-            closest_nodes: Vec::with_capacity(count),
+            closest_nodes: Vec::with_capacity(node_count),
             called_nodes: TypedKeySet::new(),
             result: None,
         });
@@ -56,7 +56,7 @@ where
             node_id,
             crypto_kind: node_id.kind,
             context,
-            count,
+            node_count,
             fanout,
             timeout_us,
             call_routine,
@@ -81,7 +81,7 @@ where
 
         self.routing_table
             .sort_and_clean_closest_noderefs(self.node_id, &mut ctx.closest_nodes);
-        ctx.closest_nodes.truncate(self.count);
+        ctx.closest_nodes.truncate(self.node_count);
     }
 
     fn remove_node(self: Arc<Self>, dead_node: NodeRef) {
@@ -98,7 +98,7 @@ where
     fn get_next_node(self: Arc<Self>) -> Option<NodeRef> {
         let mut next_node = None;
         let mut ctx = self.context.lock();
-        for cn in &ctx.closest_nodes {
+        for cn in ctx.closest_nodes.clone() {
             if let Some(key) = cn.node_ids().get(self.crypto_kind) {
                 if !ctx.called_nodes.contains(&key) {
                     // New fanout call candidate found
@@ -150,13 +150,16 @@ where
                 }
                 Err(e) => {
                     // Error happened, abort everything and return the error
+                    let mut ctx = self.context.lock();
+                    ctx.result = Some(Err(e));
+                    return;
                 }
             };
         }
     }
 
     fn init_closest_nodes(self: Arc<Self>) {
-        // Get the 'count' closest nodes to the key out of our routing table
+        // Get the 'node_count' closest nodes to the key out of our routing table
         let closest_nodes = {
             let routing_table = self.routing_table.clone();
 
@@ -181,7 +184,7 @@ where
                 NodeRef::new(routing_table.clone(), v.unwrap().clone(), None)
             };
 
-            routing_table.find_closest_nodes(self.count, self.node_id, filters, transform)
+            routing_table.find_closest_nodes(self.node_count, self.node_id, filters, transform)
         };
 
         let mut ctx = self.context.lock();
@@ -189,6 +192,14 @@ where
     }
 
     pub async fn run(self: Arc<Self>) -> TimeoutOr<Result<Option<R>, RPCError>> {
+        // Get timeout in milliseconds
+        let timeout_ms = match us_to_ms(self.timeout_us.as_u64()).map_err(RPCError::internal) {
+            Ok(v) => v,
+            Err(e) => {
+                return TimeoutOr::value(Err(e));
+            }
+        };
+
         // Initialize closest nodes list
         self.clone().init_closest_nodes();
 
@@ -208,7 +219,7 @@ where
             }
         }
         // Wait for them to complete
-        timeout((self.timeout_us.as_u64() / 1000u64) as u32, async {
+        timeout(timeout_ms, async {
             while let Some(_) = unord.next().await {}
         })
         .await
diff --git a/veilid-core/src/rpc_processor/mod.rs b/veilid-core/src/rpc_processor/mod.rs
index 702fd73c..663f54b2 100644
--- a/veilid-core/src/rpc_processor/mod.rs
+++ b/veilid-core/src/rpc_processor/mod.rs
@@ -482,9 +482,10 @@ impl RPCProcessor {
             }
 
             // If nobody knows where this node is, ask the DHT for it
-            let (count, fanout, timeout) = {
+            let (node_count, _consensus_count, fanout, timeout) = {
                 let c = this.config.get();
                 (
+                    c.network.dht.max_find_node_count as usize,
                     c.network.dht.resolve_node_count as usize,
                     c.network.dht.resolve_node_fanout as usize,
                     TimestampDuration::from(ms_to_us(c.network.dht.resolve_node_timeout_ms)),
@@ -493,7 +494,7 @@ impl RPCProcessor {
 
             // Search in preferred cryptosystem order
             let nr = match this
-                .search_dht_single_key(node_id, count, fanout, timeout, safety_selection)
+                .search_dht_single_key(node_id, node_count, fanout, timeout, safety_selection)
                 .await
             {
                 TimeoutOr::Timeout => None,
@@ -1136,7 +1137,7 @@ impl RPCProcessor {
         }))
     }
 
-    // Issue a statement over the network, possibly using an anonymized route
+    /// Issue a statement over the network, possibly using an anonymized route
     #[instrument(level = "debug", skip(self, statement), err)]
     async fn statement(
         &self,
@@ -1192,9 +1193,8 @@ impl RPCProcessor {
 
         Ok(NetworkResult::value(()))
     }
-
-    // Issue a reply over the network, possibly using an anonymized route
-    // The request must want a response, or this routine fails
+    /// Issue a reply over the network, possibly using an anonymized route
+    /// The request must want a response, or this routine fails
     #[instrument(level = "debug", skip(self, request, answer), err)]
     async fn answer(
         &self,
@@ -1253,6 +1253,9 @@ impl RPCProcessor {
         Ok(NetworkResult::value(()))
     }
 
+    /// Decoding RPC from the wire
+    /// This performs a capnp decode on the data, and if it passes the capnp schema
+    /// it performs the cryptographic validation required to pass the operation up for processing
     fn decode_rpc_operation(
         &self,
         encoded_msg: &RPCMessageEncoded,
@@ -1270,6 +1273,12 @@ impl RPCProcessor {
         Ok(operation)
     }
 
+    /// Cryptographic RPC validation
+    /// We do this as part of the RPC network layer to ensure that any RPC operations that are
+    /// processed have already been validated cryptographically and it is not the job of the
+    /// caller or receiver. This does not mean the operation is 'semantically correct'. For
+    /// complex operations that require stateful validation and a more robust context than
+    /// 'signatures', the caller must still perform whatever validation is necessary
     fn validate_rpc_operation(&self, operation: &mut RPCOperation) -> Result<(), RPCError> {
         // If this is an answer, get the question context for this answer
         // If we received an answer for a question we did not ask, this will return an error
diff --git a/veilid-core/src/rpc_processor/operation_waiter.rs b/veilid-core/src/rpc_processor/operation_waiter.rs
index e2da9e9c..2f39e200 100644
--- a/veilid-core/src/rpc_processor/operation_waiter.rs
+++ b/veilid-core/src/rpc_processor/operation_waiter.rs
@@ -139,8 +139,7 @@ where
         mut handle: OperationWaitHandle<T, C>,
         timeout_us: TimestampDuration,
     ) -> Result<TimeoutOr<(T, TimestampDuration)>, RPCError> {
-        let timeout_ms = u32::try_from(timeout_us.as_u64() / 1000u64)
-            .map_err(|e| RPCError::map_internal("invalid timeout")(e))?;
+        let timeout_ms = us_to_ms(timeout_us.as_u64()).map_err(RPCError::internal)?;
 
         // Take the instance
         // After this, we must manually cancel since the cancel on handle drop is disabled
diff --git a/veilid-core/src/rpc_processor/rpc_find_node.rs b/veilid-core/src/rpc_processor/rpc_find_node.rs
index b96a7ee8..a910dc1b 100644
--- a/veilid-core/src/rpc_processor/rpc_find_node.rs
+++ b/veilid-core/src/rpc_processor/rpc_find_node.rs
@@ -84,13 +84,17 @@ impl RPCProcessor {
         let find_node_q = match kind {
             RPCOperationKind::Question(q) => match q.destructure() {
                 (_, RPCQuestionDetail::FindNodeQ(q)) => q,
-                _ => panic!("not a status question"),
+                _ => panic!("not a findnode question"),
             },
             _ => panic!("not a question"),
         };
+        let node_id = find_node_q.destructure();
 
         // add node information for the requesting node to our routing table
         let routing_table = self.routing_table();
+
+xxx move this into routing table code, also do getvalue code
+
         let Some(own_peer_info) = routing_table.get_own_peer_info(RoutingDomain::PublicInternet) else {
             // Our own node info is not yet available, drop this request.
             return Ok(NetworkResult::service_unavailable());
@@ -114,7 +118,6 @@ impl RPCProcessor {
             c.network.dht.max_find_node_count as usize
         };
 
-        let node_id = find_node_q.destructure();
         let closest_nodes = routing_table.find_closest_nodes(
             node_count,
             node_id,
diff --git a/veilid-core/src/rpc_processor/rpc_get_value.rs b/veilid-core/src/rpc_processor/rpc_get_value.rs
index 9fe2dcaa..f2cc5f7d 100644
--- a/veilid-core/src/rpc_processor/rpc_get_value.rs
+++ b/veilid-core/src/rpc_processor/rpc_get_value.rs
@@ -9,8 +9,12 @@ pub struct GetValueAnswer {
 }
 
 impl RPCProcessor {
-    // Sends a get value request and wait for response
-    // Can be sent via all methods including relays and routes
+    /// Sends a get value request and wait for response
+    /// Can be sent via all methods including relays
+    /// Safety routes may be used, but never private routes.
+    /// Because this leaks information about the identity of the node itself,
+    /// replying to this request received over a private route will leak
+    /// the identity of the node and defeat the private route.
     #[instrument(level = "trace", skip(self), ret, err)]
     pub async fn rpc_call_get_value(
         self,
@@ -19,6 +23,19 @@ impl RPCProcessor {
         subkey: ValueSubkey,
         last_descriptor: Option<SignedValueDescriptor>,
     ) -> Result<NetworkResult<Answer<GetValueAnswer>>, RPCError> {
+        // Ensure destination never has a private route
+        if matches!(
+            dest,
+            Destination::PrivateRoute {
+                private_route: _,
+                safety_selection: _
+            }
+        ) {
+            return Err(RPCError::internal(
+                "Never send get value requests over private routes",
+            ));
+        }
+
         let get_value_q = RPCOperationGetValueQ::new(key, subkey, last_descriptor.is_none());
         let question = RPCQuestion::new(
             network_result_try!(self.get_destination_respond_to(&dest)?),
@@ -73,6 +90,92 @@ impl RPCProcessor {
         &self,
         msg: RPCMessage,
     ) -> Result<NetworkResult<()>, RPCError> {
-        Err(RPCError::unimplemented("process_get_value_q"))
+        // Ensure this never came over a private route, safety route is okay though
+        match &msg.header.detail {
+            RPCMessageHeaderDetail::Direct(_) | RPCMessageHeaderDetail::SafetyRouted(_) => {}
+            RPCMessageHeaderDetail::PrivateRouted(_) => {
+                return Ok(NetworkResult::invalid_message(
+                    "not processing get value request over private route",
+                ))
+            }
+        }
+
+        // Get the question
+        let kind = msg.operation.kind().clone();
+        let get_value_q = match kind {
+            RPCOperationKind::Question(q) => match q.destructure() {
+                (_, RPCQuestionDetail::GetValueQ(q)) => q,
+                _ => panic!("not a getvalue question"),
+            },
+            _ => panic!("not a question"),
+        };
+
+        // Destructure
+        let (key, subkey, want_descriptor) = get_value_q.destructure();
+
+        // add node information for the requesting node to our routing table
+        let crypto_kind = key.kind;
+        let routing_table = self.routing_table();
+        let own_node_id = routing_table.node_id(crypto_kind);
+
+        // find N nodes closest to the target node in our routing table
+        // ensure the nodes returned are only the ones closer to the target node than ourself
+        let Some(vcrypto) = self.crypto.get(crypto_kind) else {
+            return Ok(NetworkResult::invalid_message("unsupported cryptosystem"));
+        };
+        let own_distance = vcrypto.distance(&own_node_id.value, &key.value);
+
+        let filter = Box::new(
+            move |rti: &RoutingTableInner, opt_entry: Option<Arc<BucketEntry>>| {
+                // Exclude our own node
+                let Some(entry) = opt_entry else {
+                    return false;
+                };
+                // Ensure only things that are valid/signed in the PublicInternet domain are returned
+                if !rti.filter_has_valid_signed_node_info(
+                    RoutingDomain::PublicInternet,
+                    true,
+                    Some(entry.clone()),
+                ) {
+                    return false;
+                }
+                // Ensure things further from the key than our own node are not included
+                let Some(entry_node_id) = entry.with(rti, |_rti, e| e.node_ids().get(crypto_kind)) else {
+                    return false;
+                };
+                let entry_distance = vcrypto.distance(&entry_node_id.value, &key.value);
+                if entry_distance >= own_distance {
+                    return false;
+                }
+
+                true
+            },
+        ) as RoutingTableEntryFilter;
+        let filters = VecDeque::from([filter]);
+
+        let node_count = {
+            let c = self.config.get();
+            c.network.dht.max_find_node_count as usize
+        };
+
+        //
+        let closest_nodes = routing_table.find_closest_nodes(
+            node_count,
+            key,
+            filters,
+            // transform
+            |rti, entry| {
+                entry.unwrap().with(rti, |_rti, e| {
+                    e.make_peer_info(RoutingDomain::PublicInternet).unwrap()
+                })
+            },
+        );
+
+        // Make status answer
+        let find_node_a = RPCOperationFindNodeA::new(closest_nodes)?;
+
+        // Send status answer
+        self.answer(msg, RPCAnswer::new(RPCAnswerDetail::FindNodeA(find_node_a)))
+            .await
     }
 }
diff --git a/veilid-core/src/storage_manager/do_get_value.rs b/veilid-core/src/storage_manager/do_get_value.rs
index 5d9fd846..c6567d7b 100644
--- a/veilid-core/src/storage_manager/do_get_value.rs
+++ b/veilid-core/src/storage_manager/do_get_value.rs
@@ -1,46 +1,75 @@
 use super::*;
 
+/// The result of the do_get_value_operation
 pub struct DoGetValueResult {
+    /// The subkey value if we got one
     pub value: Option<SignedValueData>,
+    /// The descriptor if we got a fresh one or empty if no descriptor was needed
     pub descriptor: Option<SignedValueDescriptor>,
 }
 
+/// The context of the do_get_value operation
+struct DoGetValueContext {
+    /// The latest value of the subkey, may be the value passed in
+    pub value: Option<SignedValueData>,
+    /// The consensus count for the value we have received
+    pub value_count: usize,
+    /// The descriptor if we got a fresh one or empty if no descriptor was needed
+    pub descriptor: Option<SignedValueDescriptor>,
+    /// The parsed schema from the descriptor if we have one
+    pub schema: Option<DHTSchema>,
+}
+
 impl StorageManager {
 
     pub async fn do_get_value(
         &self,
-        mut inner: AsyncMutexGuardArc<StorageManagerInner>,
+        rpc_processor: RPCProcessor,
         key: TypedKey,
         subkey: ValueSubkey,
-        min_seq: ValueSeqNum,
+        last_value: Option<SignedValueData>,
         last_descriptor: Option<SignedValueDescriptor>,
         safety_selection: SafetySelection,
-    ) -> Result<Option<DoGetValueResult>, VeilidAPIError> {
-        let Some(rpc_processor) = inner.rpc_processor.clone() else {
-            apibail_not_initialized!();
-        };
-
+    ) -> Result<DoGetValueResult, VeilidAPIError> {
         let routing_table = rpc_processor.routing_table();
 
         // Get the DHT parameters for 'GetValue'
-        let (count, fanout, timeout) = {
+        let (key_count, consensus_count, fanout, timeout_us) = {
             let c = self.unlocked_inner.config.get();
             (
+                c.network.dht.max_find_node_count as usize,
                 c.network.dht.get_value_count as usize,
                 c.network.dht.get_value_fanout as usize,
                 TimestampDuration::from(ms_to_us(c.network.dht.get_value_timeout_ms)),
             )
         };
 
+        // Make do-get-value answer context
+        let schema = if let Some(d) = &last_descriptor {
+            Some(d.schema()?)
+        } else {
+            None
+        };
+        let context = Arc::new(Mutex::new(DoGetValueContext {
+            value: last_value,
+            value_count: 0,
+            descriptor: last_descriptor.clone(),
+            schema,
+        }));
+
         // Routine to call to generate fanout
         let call_routine = |next_node: NodeRef| {
             let rpc_processor = rpc_processor.clone();
+            let context = context.clone();
+            let last_descriptor = last_descriptor.clone();
             async move {
                 match rpc_processor
                     .clone()
                     .rpc_call_get_value(
                         Destination::direct(next_node).with_safety(safety_selection),
-                        key, subkey, last_descriptor
+                        key,
+                        subkey,
+                        last_descriptor,
                     )
                     .await
                 {
@@ -49,12 +78,61 @@ impl StorageManager {
                             // Any other failures, just try the next node
                             return Ok(None);
                         });
-                        
+
+                        // Keep the descriptor if we got one. If we had a last_descriptor it will
+                        // already be validated by rpc_call_get_value
+                        if let Some(descriptor) = v.answer.descriptor {
+                            let mut ctx = context.lock();
+                            if ctx.descriptor.is_none() && ctx.schema.is_none() {
+                                ctx.schema =
+                                    Some(descriptor.schema().map_err(RPCError::invalid_format)?);
+                                ctx.descriptor = Some(descriptor);
+                            }
+                        }
+
                         // Keep the value if we got one and it is newer and it passes schema validation
                         if let Some(value) = v.answer.value {
-                            // See if this is even a candidate
-                            if value.value_data().    xxx apply min_seq and also to OperationGetValueQ
-                            // Validate with scheam
+                            let mut ctx = context.lock();
+
+                            // Ensure we have a schema and descriptor
+                            let (Some(descriptor), Some(schema)) = (&ctx.descriptor, &ctx.schema) else {
+                                // Got a value but no descriptor for it
+                                // Move to the next node
+                                return Ok(None);
+                            };
+
+                            // Validate with schema
+                            if !schema.check_subkey_value_data(
+                                descriptor.owner(),
+                                subkey,
+                                value.value_data(),
+                            ) {
+                                // Validation failed, ignore this value
+                                // Move to the next node
+                                return Ok(None);
+                            }
+
+                            // If we have a prior value, see if this is a newer sequence number
+                            if let Some(prior_value) = &ctx.value {
+                                let prior_seq = prior_value.value_data().seq();
+                                let new_seq = value.value_data().seq();
+
+                                if new_seq == prior_seq {
+                                    // If sequence number is the same, the data should be the same
+                                    if prior_value.value_data() != value.value_data() {
+                                        // Move to the next node
+                                        return Ok(None);
+                                    }
+                                    // Increase the consensus count for the existing value
+                                    ctx.value_count += 1;
+                                } else if new_seq > prior_seq {
+                                    // If the sequence number is greater, go with it
+                                    ctx.value = Some(value);
+                                    ctx.value_count = 1;
+                                } else {
+                                    // If the sequence number is older, ignore it
+                                }
+                            }
                         }
 
                         // Return peers if we have some
@@ -66,13 +144,11 @@ impl StorageManager {
         };
 
         // Routine to call to check if we're done at each step
-        let check_done = |closest_nodes: &[NodeRef]| {
-            // If the node we want to locate is one of the closest nodes, return it immediately
-            if let Some(out) = closest_nodes
-                .iter()
-                .find(|x| x.node_ids().contains(&node_id))
-            {
-                return Some(out.clone());
+        let check_done = |_closest_nodes: &[NodeRef]| {
+            // If we have reached sufficient consensus, return done
+            let ctx = context.lock();
+            if ctx.value.is_some() && ctx.descriptor.is_some() && ctx.value_count >= consensus_count {
+                return Some(());
             }
             None
         };
@@ -80,28 +156,33 @@ impl StorageManager {
         // Call the fanout
         let fanout_call = FanoutCall::new(
             routing_table.clone(),
-            node_id,
-            count,
+            key,
+            key_count,
             fanout,
             timeout_us,
             call_routine,
             check_done,
         );
 
-        fanout_call.run().await
-
-        // Search in preferred cryptosystem order
-        let nr = this
-            .search_dht_single_key(node_id, count, fanout, timeout, safety_selection)
-            .await?;
-
-        if let Some(nr) = &nr {
-            if nr.node_ids().contains(&node_id) {
-                // found a close node, but not exact within our configured resolve_node timeout
-                return Ok(None);
+        match fanout_call.run().await {
+            // If we don't finish in the timeout (too much time passed checking for consensus)
+            TimeoutOr::Timeout | 
+            // If we finished with consensus (enough nodes returning the same value)
+            TimeoutOr::Value(Ok(Some(()))) | 
+            // If we finished without consensus (ran out of nodes before getting consensus)
+            TimeoutOr::Value(Ok(None)) => {
+                // Return the best answer we've got
+                let ctx = context.lock();
+                Ok(DoGetValueResult{
+                    value: ctx.value.clone(),
+                    descriptor: ctx.descriptor.clone(),
+                })
+            }
+            // Failed
+            TimeoutOr::Value(Err(e)) => {
+                // If we finished with an error, return that
+                Err(e.into())
             }
         }
-
-        Ok(nr)
     }
 }
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index ef03e04c..86f7301c 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -203,7 +203,7 @@ impl StorageManager {
     /// # DHT Key = Hash(ownerKeyKind) of: [ ownerKeyValue, schema ]
     fn get_key<D>(vcrypto: CryptoSystemVersion, record: &Record<D>) -> TypedKey
     where
-        D: RkyvArchive + RkyvSerialize<RkyvSerializer>,
+        D: Clone + RkyvArchive + RkyvSerialize<RkyvSerializer>,
         for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
         <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
     {
@@ -237,6 +237,11 @@ impl StorageManager {
             apibail_generic!("unsupported cryptosystem");
         };
 
+        // Get local record store
+        let Some(local_record_store) = inner.local_record_store.as_mut() else {
+            apibail_not_initialized!();
+        };
+
         // Compile the dht schema
         let schema_data = schema.compile();
 
@@ -257,7 +262,6 @@ impl StorageManager {
         let record =
             Record::<LocalRecordDetail>::new(cur_ts, signed_value_descriptor, local_record_detail)?;
 
-        let local_record_store = inner.local_record_store.as_mut().unwrap();
         let dht_key = Self::get_key(vcrypto.clone(), &record);
         local_record_store.new_record(dht_key, record).await?;
 
@@ -266,23 +270,16 @@ impl StorageManager {
             .await
     }
 
-    async fn open_record_inner(
+    fn open_record_inner_check_existing(
         &self,
         mut inner: AsyncMutexGuardArc<StorageManagerInner>,
         key: TypedKey,
         writer: Option<KeyPair>,
         safety_selection: SafetySelection,
-    ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
-        // Ensure the record is closed
-        if inner.opened_records.contains_key(&key) {
-            return Err(VeilidAPIError::generic(
-                "record is already open and should be closed first",
-            ));
-        }
-
-        // Get cryptosystem
-        let Some(vcrypto) = self.unlocked_inner.crypto.get(key.kind) else {
-            apibail_generic!("unsupported cryptosystem");
+    ) -> Option<Result<DHTRecordDescriptor, VeilidAPIError>> {
+        // Get local record store
+        let Some(local_record_store) = inner.local_record_store.as_mut() else {
+            return Some(Err(VeilidAPIError::not_initialized()));
         };
 
         // See if we have a local record already or not
@@ -295,45 +292,124 @@ impl StorageManager {
             // Return record details
             (r.owner().clone(), r.schema())
         };
-        if let Some((owner, schema)) = inner
-            .local_record_store
-            .as_mut()
-            .unwrap()
-            .with_record_mut(key, cb)
-        {
-            // Had local record
+        let Some((owner, schema)) = local_record_store.with_record_mut(key, cb) else {
+            return None;
+        };
+        // Had local record
 
-            // If the writer we chose is also the owner, we have the owner secret
-            // Otherwise this is just another subkey writer
-            let owner_secret = if let Some(writer) = writer {
-                if writer.key == owner {
-                    Some(writer.secret)
-                } else {
-                    None
-                }
+        // If the writer we chose is also the owner, we have the owner secret
+        // Otherwise this is just another subkey writer
+        let owner_secret = if let Some(writer) = writer {
+            if writer.key == owner {
+                Some(writer.secret)
             } else {
                 None
-            };
-
-            // Write open record
-            inner.opened_records.insert(key, OpenedRecord::new(writer));
-
-            // Make DHT Record Descriptor to return
-            let descriptor = DHTRecordDescriptor::new(key, owner, owner_secret, schema);
-            Ok(descriptor)
+            }
         } else {
-            // No record yet, try to get it from the network
-            self.do_get_value(inner, key, 0, safety_selection).await
+            None
+        };
 
-            // Make DHT Record Descriptor to return
-            // let descriptor = DHTRecordDescriptor {
-            //     key,
-            //     owner,
-            //     owner_secret,
-            //     schema,
-            // };
-            // Ok(descriptor)
+        // Write open record
+        inner.opened_records.insert(key, OpenedRecord::new(writer));
+
+        // Make DHT Record Descriptor to return
+        let descriptor = DHTRecordDescriptor::new(key, owner, owner_secret, schema);
+        Some(Ok(descriptor))
+    }
+
+    async fn open_record_inner(
+        &self,
+        inner: AsyncMutexGuardArc<StorageManagerInner>,
+        key: TypedKey,
+        writer: Option<KeyPair>,
+        safety_selection: SafetySelection,
+    ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
+        // Ensure the record is closed
+        if inner.opened_records.contains_key(&key) {
+            apibail_generic!("record is already open and should be closed first");
         }
+
+        // See if we have a local record already or not
+        if let Some(res) =
+            self.open_record_inner_check_existing(inner, key, writer, safety_selection)
+        {
+            return res;
+        }
+
+        // No record yet, try to get it from the network
+
+        // Get rpc processor and drop mutex so we don't block while getting the value from the network
+        let rpc_processor = {
+            let inner = self.lock().await?;
+            let Some(rpc_processor) = inner.rpc_processor.clone() else {
+                // Offline, try again later
+                apibail_try_again!();
+            };
+            rpc_processor
+        };
+
+        // No last descriptor, no last value
+        let subkey: ValueSubkey = 0;
+        let result = self
+            .do_get_value(rpc_processor, key, subkey, None, None, safety_selection)
+            .await?;
+
+        // If we got nothing back, the key wasn't found
+        if result.value.is_none() && result.descriptor.is_none() {
+            // No result
+            apibail_key_not_found!(key);
+        };
+
+        // Must have descriptor
+        let Some(signed_value_descriptor) = result.descriptor else {
+            // No descriptor for new record, can't store this
+            apibail_generic!("no descriptor");
+        };
+
+        let owner = signed_value_descriptor.owner().clone();
+        // If the writer we chose is also the owner, we have the owner secret
+        // Otherwise this is just another subkey writer
+        let owner_secret = if let Some(writer) = writer {
+            if writer.key == owner {
+                Some(writer.secret)
+            } else {
+                None
+            }
+        } else {
+            None
+        };
+        let schema = signed_value_descriptor.schema()?;
+
+        // Reopen inner to store value we just got
+        let mut inner = self.lock().await?;
+
+        // Get local record store
+        let Some(local_record_store) = inner.local_record_store.as_mut() else {
+            apibail_not_initialized!();
+        };
+
+        // Make and store a new record for this descriptor
+        let record = Record::<LocalRecordDetail>::new(
+            get_aligned_timestamp(),
+            signed_value_descriptor,
+            LocalRecordDetail { safety_selection },
+        )?;
+        local_record_store.new_record(key, record).await?;
+
+        // If we got a subkey with the getvalue, it has already been validated against the schema, so store it
+        if let Some(signed_value_data) = result.value {
+            // Write subkey to local store
+            local_record_store
+                .set_subkey(key, subkey, signed_value_data)
+                .await?;
+        }
+
+        // Write open record
+        inner.opened_records.insert(key, OpenedRecord::new(writer));
+
+        // Make DHT Record Descriptor to return
+        let descriptor = DHTRecordDescriptor::new(key, owner, owner_secret, schema);
+        Ok(descriptor)
     }
 
     pub async fn open_record(
@@ -349,32 +425,34 @@ impl StorageManager {
 
     async fn close_record_inner(
         &self,
-        mut inner: AsyncMutexGuardArc<StorageManagerInner>,
+        inner: &mut AsyncMutexGuardArc<StorageManagerInner>,
         key: TypedKey,
     ) -> Result<(), VeilidAPIError> {
-        let Some(opened_record) = inner.opened_records.remove(&key) else {
+        let Some(_opened_record) = inner.opened_records.remove(&key) else {
             apibail_generic!("record not open");
         };
         Ok(())
     }
 
     pub async fn close_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
-        let inner = self.lock().await?;
-        self.close_record_inner(inner, key).await
+        let mut inner = self.lock().await?;
+        self.close_record_inner(&mut inner, key).await
     }
 
     pub async fn delete_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
-        let inner = self.lock().await?;
+        let mut inner = self.lock().await?;
 
         // Ensure the record is closed
         if inner.opened_records.contains_key(&key) {
-            self.close_record_inner(inner, key).await?;
+            self.close_record_inner(&mut inner, key).await?;
         }
 
-        // Remove the record from the local store
-        //inner.local_record_store.unwrap().de
+        let Some(local_record_store) = inner.local_record_store.as_mut() else {
+            apibail_not_initialized!();
+        };
 
-        unimplemented!();
+        // Remove the record from the local store
+        local_record_store.delete_record(key).await
     }
 
     pub async fn get_value(
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index 966de820..dc30b35b 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -9,7 +9,7 @@ use hashlink::LruCache;
 
 pub struct RecordStore<D>
 where
-    D: RkyvArchive + RkyvSerialize<RkyvSerializer>,
+    D: Clone + RkyvArchive + RkyvSerialize<RkyvSerializer>,
     for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
     <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
 {
@@ -32,7 +32,7 @@ where
 
 impl<D> RecordStore<D>
 where
-    D: RkyvArchive + RkyvSerialize<RkyvSerializer>,
+    D: Clone + RkyvArchive + RkyvSerialize<RkyvSerializer>,
     for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
     <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
 {
@@ -169,6 +169,11 @@ where
         let st_xact = subkey_table.transact();
         let dead_records = mem::take(&mut self.dead_records);
         for (k, v) in dead_records {
+            // Record should already be gone from index
+            if self.record_index.contains_key(&k) {
+                log_stor!(error "dead record found in index: {:?}", k);
+            }
+
             // Delete record
             rt_xact.delete(0, &k.bytes());
 
@@ -205,7 +210,6 @@ where
         }
 
         let record_table = self.record_table.clone().unwrap();
-        let subkey_table = self.subkey_table.clone().unwrap();
 
         let rt_xact = record_table.transact();
         let changed_records = mem::take(&mut self.changed_records);
@@ -277,6 +281,22 @@ where
         Ok(())
     }
 
+    pub async fn delete_record(&mut self, key: TypedKey) -> Result<(), VeilidAPIError> {
+        // Get the record table key
+        let rtk = RecordTableKey { key };
+
+        // Remove record from the index
+        let Some(record) = self.record_index.remove(&rtk) else {
+            apibail_key_not_found!(key);
+        };
+
+        self.add_dead_record(rtk, record);
+
+        self.purge_dead_records(false).await;
+
+        Ok(())
+    }
+
     pub fn with_record<R, F>(&mut self, key: TypedKey, f: F) -> Option<R>
     where
         F: FnOnce(&Record<D>) -> R,
@@ -319,7 +339,7 @@ where
         out
     }
 
-    pub async fn get_subkey<R, F>(
+    pub async fn get_subkey(
         &mut self,
         key: TypedKey,
         subkey: ValueSubkey,
@@ -371,7 +391,7 @@ where
         return Ok(None);
     }
 
-    pub async fn set_subkey<R, F>(
+    pub async fn set_subkey(
         &mut self,
         key: TypedKey,
         subkey: ValueSubkey,
diff --git a/veilid-core/src/storage_manager/types/record.rs b/veilid-core/src/storage_manager/types/record.rs
index 51a2edd0..eab24579 100644
--- a/veilid-core/src/storage_manager/types/record.rs
+++ b/veilid-core/src/storage_manager/types/record.rs
@@ -6,7 +6,7 @@ use super::*;
 #[archive_attr(repr(C), derive(CheckBytes))]
 pub struct Record<D>
 where
-    D: RkyvArchive + RkyvSerialize<RkyvSerializer>,
+    D: Clone + RkyvArchive + RkyvSerialize<RkyvSerializer>,
     for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
     <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
 {
@@ -19,7 +19,7 @@ where
 
 impl<D> Record<D>
 where
-    D: RkyvArchive + RkyvSerialize<RkyvSerializer>,
+    D: Clone + RkyvArchive + RkyvSerialize<RkyvSerializer>,
     for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
     <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
 {
diff --git a/veilid-core/src/tests/common/test_veilid_config.rs b/veilid-core/src/tests/common/test_veilid_config.rs
index 43a08534..8fa4a634 100644
--- a/veilid-core/src/tests/common/test_veilid_config.rs
+++ b/veilid-core/src/tests/common/test_veilid_config.rs
@@ -207,16 +207,16 @@ fn config_callback(key: String) -> ConfigCallbackReturn {
         "network.rpc.timeout_ms" => Ok(Box::new(5_000u32)),
         "network.rpc.max_route_hop_count" => Ok(Box::new(4u8)),
         "network.rpc.default_route_hop_count" => Ok(Box::new(1u8)),
-        "network.dht.resolve_node_timeout_ms" => Ok(Box::new(10_000u32)),
-        "network.dht.resolve_node_count" => Ok(Box::new(20u32)),
-        "network.dht.resolve_node_fanout" => Ok(Box::new(3u32)),
         "network.dht.max_find_node_count" => Ok(Box::new(20u32)),
+        "network.dht.resolve_node_timeout_ms" => Ok(Box::new(10_000u32)),
+        "network.dht.resolve_node_count" => Ok(Box::new(1u32)),
+        "network.dht.resolve_node_fanout" => Ok(Box::new(4u32)),
         "network.dht.get_value_timeout_ms" => Ok(Box::new(10_000u32)),
-        "network.dht.get_value_count" => Ok(Box::new(20u32)),
-        "network.dht.get_value_fanout" => Ok(Box::new(3u32)),
+        "network.dht.get_value_count" => Ok(Box::new(3u32)),
+        "network.dht.get_value_fanout" => Ok(Box::new(4u32)),
         "network.dht.set_value_timeout_ms" => Ok(Box::new(10_000u32)),
-        "network.dht.set_value_count" => Ok(Box::new(20u32)),
-        "network.dht.set_value_fanout" => Ok(Box::new(5u32)),
+        "network.dht.set_value_count" => Ok(Box::new(5u32)),
+        "network.dht.set_value_fanout" => Ok(Box::new(4u32)),
         "network.dht.min_peer_count" => Ok(Box::new(20u32)),
         "network.dht.min_peer_refresh_time_ms" => Ok(Box::new(2_000u32)),
         "network.dht.validate_dial_info_receipt_time_ms" => Ok(Box::new(5_000u32)),
@@ -335,15 +335,16 @@ pub async fn test_config() {
     assert_eq!(inner.network.routing_table.limit_attached_good, 8u32);
     assert_eq!(inner.network.routing_table.limit_attached_weak, 4u32);
 
+    assert_eq!(inner.network.dht.max_find_node_count, 20u32);
     assert_eq!(inner.network.dht.resolve_node_timeout_ms, 10_000u32);
-    assert_eq!(inner.network.dht.resolve_node_count, 20u32);
-    assert_eq!(inner.network.dht.resolve_node_fanout, 3u32);
+    assert_eq!(inner.network.dht.resolve_node_count, 1u32);
+    assert_eq!(inner.network.dht.resolve_node_fanout, 4u32);
     assert_eq!(inner.network.dht.get_value_timeout_ms, 10_000u32);
-    assert_eq!(inner.network.dht.get_value_count, 20u32);
-    assert_eq!(inner.network.dht.get_value_fanout, 3u32);
+    assert_eq!(inner.network.dht.get_value_count, 3u32);
+    assert_eq!(inner.network.dht.get_value_fanout, 4u32);
     assert_eq!(inner.network.dht.set_value_timeout_ms, 10_000u32);
-    assert_eq!(inner.network.dht.set_value_count, 20u32);
-    assert_eq!(inner.network.dht.set_value_fanout, 5u32);
+    assert_eq!(inner.network.dht.set_value_count, 5u32);
+    assert_eq!(inner.network.dht.set_value_fanout, 4u32);
     assert_eq!(inner.network.dht.min_peer_count, 20u32);
     assert_eq!(inner.network.dht.min_peer_refresh_time_ms, 2_000u32);
     assert_eq!(
diff --git a/veilid-core/src/veilid_api/error.rs b/veilid-core/src/veilid_api/error.rs
index f2ae12e4..6978cb87 100644
--- a/veilid-core/src/veilid_api/error.rs
+++ b/veilid-core/src/veilid_api/error.rs
@@ -72,6 +72,14 @@ macro_rules! apibail_no_connection {
     };
 }
 
+#[allow(unused_macros)]
+#[macro_export]
+macro_rules! apibail_key_not_found {
+    ($x:expr) => {
+        return Err(VeilidAPIError::key_not_found($x))
+    };
+}
+
 #[allow(unused_macros)]
 #[macro_export]
 macro_rules! apibail_invalid_target {
@@ -127,8 +135,8 @@ pub enum VeilidAPIError {
     InvalidTarget,
     #[error("No connection: {message}")]
     NoConnection { message: String },
-    #[error("No peer info: {node_id}")]
-    NoPeerInfo { node_id: TypedKey },
+    #[error("Key not found: {key}")]
+    KeyNotFound { key: TypedKey },
     #[error("Internal: {message}")]
     Internal { message: String },
     #[error("Unimplemented: {message}")]
@@ -171,8 +179,8 @@ impl VeilidAPIError {
             message: msg.to_string(),
         }
     }
-    pub fn no_peer_info(node_id: TypedKey) -> Self {
-        Self::NoPeerInfo { node_id }
+    pub fn key_not_found(key: TypedKey) -> Self {
+        Self::KeyNotFound { key }
     }
     pub fn internal<T: ToString>(msg: T) -> Self {
         Self::Internal {
diff --git a/veilid-core/src/veilid_api/types/dht/schema/dflt.rs b/veilid-core/src/veilid_api/types/dht/schema/dflt.rs
index 332ecd90..bd9c0858 100644
--- a/veilid-core/src/veilid_api/types/dht/schema/dflt.rs
+++ b/veilid-core/src/veilid_api/types/dht/schema/dflt.rs
@@ -42,6 +42,29 @@ impl DHTSchemaDFLT {
     pub fn data_size(&self) -> usize {
         0
     }
+
+    /// Check a subkey value data against the schema
+    pub fn check_subkey_value_data(
+        &self,
+        owner: &PublicKey,
+        subkey: ValueSubkey,
+        value_data: &ValueData,
+    ) -> bool {
+        let subkey = subkey as usize;
+
+        // Check is subkey is in owner range
+        if subkey < (self.o_cnt as usize) {
+            // Check value data has valid writer
+            if value_data.writer() == owner {
+                return true;
+            }
+            // Wrong writer
+            return false;
+        }
+
+        // Subkey out of range
+        false
+    }
 }
 
 impl TryFrom<&[u8]> for DHTSchemaDFLT {
diff --git a/veilid-core/src/veilid_api/types/dht/schema/mod.rs b/veilid-core/src/veilid_api/types/dht/schema/mod.rs
index 160f1422..b043afcc 100644
--- a/veilid-core/src/veilid_api/types/dht/schema/mod.rs
+++ b/veilid-core/src/veilid_api/types/dht/schema/mod.rs
@@ -58,6 +58,19 @@ impl DHTSchema {
             DHTSchema::SMPL(s) => s.data_size(),
         }
     }
+
+    /// Check a subkey value data against the schema
+    pub fn check_subkey_value_data(
+        &self,
+        owner: &PublicKey,
+        subkey: ValueSubkey,
+        value_data: &ValueData,
+    ) -> bool {
+        match self {
+            DHTSchema::DFLT(d) => d.check_subkey_value_data(owner, subkey, value_data),
+            DHTSchema::SMPL(s) => s.check_subkey_value_data(owner, subkey, value_data),
+        }
+    }
 }
 
 impl Default for DHTSchema {
diff --git a/veilid-core/src/veilid_api/types/dht/schema/smpl.rs b/veilid-core/src/veilid_api/types/dht/schema/smpl.rs
index 1ac4a17b..90b20b86 100644
--- a/veilid-core/src/veilid_api/types/dht/schema/smpl.rs
+++ b/veilid-core/src/veilid_api/types/dht/schema/smpl.rs
@@ -18,7 +18,7 @@ use super::*;
 pub struct DHTSchemaSMPLMember {
     /// Member key
     pub m_key: PublicKey,
-    /// Member subkey countanyway,
+    /// Member subkey count
     pub m_cnt: u16,
 }
 
@@ -78,6 +78,44 @@ impl DHTSchemaSMPL {
     pub fn data_size(&self) -> usize {
         self.members.len() * mem::size_of::<DHTSchemaSMPLMember>()
     }
+
+    /// Check a subkey value data against the schema
+    pub fn check_subkey_value_data(
+        &self,
+        owner: &PublicKey,
+        subkey: ValueSubkey,
+        value_data: &ValueData,
+    ) -> bool {
+        let mut cur_subkey = subkey as usize;
+
+        // Check is subkey is in owner range
+        if cur_subkey < (self.o_cnt as usize) {
+            // Check value data has valid writer
+            if value_data.writer() == owner {
+                return true;
+            }
+            // Wrong writer
+            return false;
+        }
+        cur_subkey -= self.o_cnt as usize;
+
+        // Check all member ranges
+        for m in &self.members {
+            // Check if subkey is in member range
+            if cur_subkey < (m.m_cnt as usize) {
+                // Check value data has valid writer
+                if value_data.writer() == &m.m_key {
+                    return true;
+                }
+                // Wrong writer
+                return false;
+            }
+            cur_subkey -= m.m_cnt as usize;
+        }
+
+        // Subkey out of range
+        false
+    }
 }
 
 impl TryFrom<&[u8]> for DHTSchemaSMPL {
diff --git a/veilid-core/src/veilid_config.rs b/veilid-core/src/veilid_config.rs
index c6dc1ddf..46b14245 100644
--- a/veilid-core/src/veilid_config.rs
+++ b/veilid-core/src/veilid_config.rs
@@ -275,10 +275,10 @@ pub struct VeilidConfigTLS {
     RkyvDeserialize,
 )]
 pub struct VeilidConfigDHT {
+    pub max_find_node_count: u32,
     pub resolve_node_timeout_ms: u32,
     pub resolve_node_count: u32,
     pub resolve_node_fanout: u32,
-    pub max_find_node_count: u32,
     pub get_value_timeout_ms: u32,
     pub get_value_count: u32,
     pub get_value_fanout: u32,
@@ -653,10 +653,10 @@ impl VeilidConfig {
             get_config!(inner.network.routing_table.limit_attached_strong);
             get_config!(inner.network.routing_table.limit_attached_good);
             get_config!(inner.network.routing_table.limit_attached_weak);
+            get_config!(inner.network.dht.max_find_node_count);
             get_config!(inner.network.dht.resolve_node_timeout_ms);
             get_config!(inner.network.dht.resolve_node_count);
             get_config!(inner.network.dht.resolve_node_fanout);
-            get_config!(inner.network.dht.max_find_node_count);
             get_config!(inner.network.dht.get_value_timeout_ms);
             get_config!(inner.network.dht.get_value_count);
             get_config!(inner.network.dht.get_value_fanout);
diff --git a/veilid-flutter/lib/veilid.dart b/veilid-flutter/lib/veilid.dart
index 8ab3b705..387d0bba 100644
--- a/veilid-flutter/lib/veilid.dart
+++ b/veilid-flutter/lib/veilid.dart
@@ -631,10 +631,10 @@ class VeilidConfigDHT {
 
   Map<String, dynamic> get json {
     return {
+      'max_find_node_count': maxFindNodeCount,
       'resolve_node_timeout_ms': resolveNodeTimeoutMs,
       'resolve_node_count': resolveNodeCount,
       'resolve_node_fanout': resolveNodeFanout,
-      'max_find_node_count': maxFindNodeCount,
       'get_value_timeout_ms': getValueTimeoutMs,
       'get_value_count': getValueCount,
       'get_value_fanout': getValueFanout,
@@ -1557,17 +1557,25 @@ abstract class VeilidAPIException implements Exception {
         {
           return VeilidAPIExceptionTimeout();
         }
+      case "TryAgain":
+        {
+          return VeilidAPIExceptionTryAgain();
+        }
       case "Shutdown":
         {
           return VeilidAPIExceptionShutdown();
         }
-      case "NodeNotFound":
+      case "InvalidTarget":
         {
-          return VeilidAPIExceptionNodeNotFound(json["node_id"]);
+          return VeilidAPIExceptionInvalidTarget();
         }
-      case "NoDialInfo":
+      case "NoConnection":
         {
-          return VeilidAPIExceptionNoDialInfo(json["node_id"]);
+          return VeilidAPIExceptionNoConnection(json["message"]);
+        }
+      case "KeyNotFound":
+        {
+          return VeilidAPIExceptionKeyNotFound(json["key"]);
         }
       case "Internal":
         {
@@ -1642,6 +1650,18 @@ class VeilidAPIExceptionTimeout implements VeilidAPIException {
   }
 }
 
+class VeilidAPIExceptionTryAgain implements VeilidAPIException {
+  @override
+  String toString() {
+    return "VeilidAPIException: TryAgain";
+  }
+
+  @override
+  String toDisplayError() {
+    return "Try again";
+  }
+}
+
 class VeilidAPIExceptionShutdown implements VeilidAPIException {
   @override
   String toString() {
@@ -1654,38 +1674,50 @@ class VeilidAPIExceptionShutdown implements VeilidAPIException {
   }
 }
 
-class VeilidAPIExceptionNodeNotFound implements VeilidAPIException {
-  final String nodeId;
-
+class VeilidAPIExceptionInvalidTarget implements VeilidAPIException {
   @override
   String toString() {
-    return "VeilidAPIException: NodeNotFound (nodeId: $nodeId)";
+    return "VeilidAPIException: InvalidTarget";
   }
 
   @override
   String toDisplayError() {
-    return "Node node found: $nodeId";
+    return "Invalid target";
   }
-
-  //
-  VeilidAPIExceptionNodeNotFound(this.nodeId);
 }
 
-class VeilidAPIExceptionNoDialInfo implements VeilidAPIException {
-  final String nodeId;
+class VeilidAPIExceptionNoConnection implements VeilidAPIException {
+  final String message;
 
   @override
   String toString() {
-    return "VeilidAPIException: NoDialInfo (nodeId: $nodeId)";
+    return "VeilidAPIException: NoConnection (message: $message)";
   }
 
   @override
   String toDisplayError() {
-    return "No dial info: $nodeId";
+    return "No connection: $message";
   }
 
   //
-  VeilidAPIExceptionNoDialInfo(this.nodeId);
+  VeilidAPIExceptionNoConnection(this.message);
+}
+
+class VeilidAPIExceptionKeyNotFound implements VeilidAPIException {
+  final String key;
+
+  @override
+  String toString() {
+    return "VeilidAPIException: KeyNotFound (key: $key)";
+  }
+
+  @override
+  String toDisplayError() {
+    return "Key not found: $key";
+  }
+
+  //
+  VeilidAPIExceptionKeyNotFound(this.key);
 }
 
 class VeilidAPIExceptionInternal implements VeilidAPIException {
diff --git a/veilid-server/src/settings.rs b/veilid-server/src/settings.rs
index da8a1d7c..a53c1a31 100644
--- a/veilid-server/src/settings.rs
+++ b/veilid-server/src/settings.rs
@@ -83,16 +83,16 @@ core:
             max_route_hop_count: 4
             default_route_hop_count: 1
         dht:
-            resolve_node_timeout_ms: 10000
-            resolve_node_count: 20
-            resolve_node_fanout: 3
             max_find_node_count: 20
+            resolve_node_timeout_ms: 10000
+            resolve_node_count: 1
+            resolve_node_fanout: 4
             get_value_timeout_ms: 10000
-            get_value_count: 20
-            get_value_fanout: 3
+            get_value_count: 3
+            get_value_fanout: 4
             set_value_timeout_ms: 10000
-            set_value_count: 20
-            set_value_fanout: 5
+            set_value_count: 5
+            set_value_fanout: 4
             min_peer_count: 20
             min_peer_refresh_time_ms: 2000
             validate_dial_info_receipt_time_ms: 2000
@@ -510,10 +510,10 @@ pub struct Rpc {
 
 #[derive(Debug, Deserialize, Serialize)]
 pub struct Dht {
+    pub max_find_node_count: u32,
     pub resolve_node_timeout_ms: u32,
     pub resolve_node_count: u32,
     pub resolve_node_fanout: u32,
-    pub max_find_node_count: u32,
     pub get_value_timeout_ms: u32,
     pub get_value_count: u32,
     pub get_value_fanout: u32,
@@ -974,10 +974,10 @@ impl Settings {
         set_config_value!(inner.core.network.rpc.timeout_ms, value);
         set_config_value!(inner.core.network.rpc.max_route_hop_count, value);
         set_config_value!(inner.core.network.rpc.default_route_hop_count, value);
+        set_config_value!(inner.core.network.dht.max_find_node_count, value);
         set_config_value!(inner.core.network.dht.resolve_node_timeout_ms, value);
         set_config_value!(inner.core.network.dht.resolve_node_count, value);
         set_config_value!(inner.core.network.dht.resolve_node_fanout, value);
-        set_config_value!(inner.core.network.dht.max_find_node_count, value);
         set_config_value!(inner.core.network.dht.get_value_timeout_ms, value);
         set_config_value!(inner.core.network.dht.get_value_count, value);
         set_config_value!(inner.core.network.dht.get_value_fanout, value);
@@ -1173,6 +1173,9 @@ impl Settings {
                 "network.rpc.default_route_hop_count" => {
                     Ok(Box::new(inner.core.network.rpc.default_route_hop_count))
                 }
+                "network.dht.max_find_node_count" => {
+                    Ok(Box::new(inner.core.network.dht.max_find_node_count))
+                }
                 "network.dht.resolve_node_timeout_ms" => {
                     Ok(Box::new(inner.core.network.dht.resolve_node_timeout_ms))
                 }
@@ -1182,9 +1185,6 @@ impl Settings {
                 "network.dht.resolve_node_fanout" => {
                     Ok(Box::new(inner.core.network.dht.resolve_node_fanout))
                 }
-                "network.dht.max_find_node_count" => {
-                    Ok(Box::new(inner.core.network.dht.max_find_node_count))
-                }
                 "network.dht.get_value_timeout_ms" => {
                     Ok(Box::new(inner.core.network.dht.get_value_timeout_ms))
                 }
@@ -1534,16 +1534,16 @@ mod tests {
         assert_eq!(s.core.network.rpc.max_route_hop_count, 4);
         assert_eq!(s.core.network.rpc.default_route_hop_count, 1);
         //
-        assert_eq!(s.core.network.dht.resolve_node_timeout_ms, 10_000u32);
-        assert_eq!(s.core.network.dht.resolve_node_count, 20u32);
-        assert_eq!(s.core.network.dht.resolve_node_fanout, 3u32);
         assert_eq!(s.core.network.dht.max_find_node_count, 20u32);
+        assert_eq!(s.core.network.dht.resolve_node_timeout_ms, 10_000u32);
+        assert_eq!(s.core.network.dht.resolve_node_count, 1u32);
+        assert_eq!(s.core.network.dht.resolve_node_fanout, 4u32);
         assert_eq!(s.core.network.dht.get_value_timeout_ms, 10_000u32);
-        assert_eq!(s.core.network.dht.get_value_count, 20u32);
-        assert_eq!(s.core.network.dht.get_value_fanout, 3u32);
+        assert_eq!(s.core.network.dht.get_value_count, 3u32);
+        assert_eq!(s.core.network.dht.get_value_fanout, 4u32);
         assert_eq!(s.core.network.dht.set_value_timeout_ms, 10_000u32);
-        assert_eq!(s.core.network.dht.set_value_count, 20u32);
-        assert_eq!(s.core.network.dht.set_value_fanout, 5u32);
+        assert_eq!(s.core.network.dht.set_value_count, 5u32);
+        assert_eq!(s.core.network.dht.set_value_fanout, 4u32);
         assert_eq!(s.core.network.dht.min_peer_count, 20u32);
         assert_eq!(s.core.network.dht.min_peer_refresh_time_ms, 2_000u32);
         assert_eq!(
diff --git a/veilid-tools/src/tools.rs b/veilid-tools/src/tools.rs
index a2ecb0fa..4aba1f00 100644
--- a/veilid-tools/src/tools.rs
+++ b/veilid-tools/src/tools.rs
@@ -130,6 +130,10 @@ pub fn ms_to_us(ms: u32) -> u64 {
     (ms as u64) * 1000u64
 }
 
+pub fn us_to_ms(us: u64) -> EyreResult<u32> {
+    u32::try_from(us / 1000u64).wrap_err("could not convert microseconds")
+}
+
 // Calculate retry attempt with logarhythmic falloff
 pub fn retry_falloff_log(
     last_us: u64,
diff --git a/veilid-wasm/tests/web.rs b/veilid-wasm/tests/web.rs
index 2ae8ca70..4ef8a5bc 100644
--- a/veilid-wasm/tests/web.rs
+++ b/veilid-wasm/tests/web.rs
@@ -52,16 +52,16 @@ fn init_callbacks() {
             case "network.rpc.timeout": return 10000000;
             case "network.rpc.max_route_hop_count": return 4;
             case "network.rpc.default_route_hop_count": return 1;
-            case "network.dht.resolve_node_timeout": return null;
-            case "network.dht.resolve_node_count": return 20;
-            case "network.dht.resolve_node_fanout": return 3;
             case "network.dht.max_find_node_count": return 20;
-            case "network.dht.get_value_timeout": return null;
-            case "network.dht.get_value_count": return 20;
-            case "network.dht.get_value_fanout": return 3;
-            case "network.dht.set_value_timeout": return null;
-            case "network.dht.set_value_count": return 20;
-            case "network.dht.set_value_fanout": return 5;
+            case "network.dht.resolve_node_timeout": return 10000;
+            case "network.dht.resolve_node_count": return 1;
+            case "network.dht.resolve_node_fanout": return 4;
+            case "network.dht.get_value_timeout": return 10000;
+            case "network.dht.get_value_count": return 3;
+            case "network.dht.get_value_fanout": return 4;
+            case "network.dht.set_value_timeout": return 10000;
+            case "network.dht.set_value_count": return 5;
+            case "network.dht.set_value_fanout": return 4;
             case "network.dht.min_peer_count": return 20;
             case "network.dht.min_peer_refresh_time": return 2000000;
             case "network.dht.validate_dial_info_receipt_time": return 5000000;

From 76b8d569dcc45ecd3e0216e3d764676825ec54c2 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Sun, 7 May 2023 21:56:35 -0400
Subject: [PATCH 25/74] checkpoint

---
 veilid-core/src/routing_table/find_peers.rs   | 103 ++++++++++
 veilid-core/src/routing_table/mod.rs          |   2 +
 .../src/rpc_processor/rpc_find_node.rs        |  42 +---
 .../src/rpc_processor/rpc_get_value.rs        |  75 ++-----
 .../src/storage_manager/do_get_value.rs       | 148 +++++++-------
 veilid-core/src/storage_manager/mod.rs        | 173 +++++++---------
 .../src/storage_manager/record_store.rs       |  78 +++++---
 .../storage_manager/storage_manager_inner.rs  | 187 ++++++++++++++++++
 .../storage_manager/types/opened_record.rs    |  14 +-
 .../types/signed_value_data.rs                |   4 +
 10 files changed, 518 insertions(+), 308 deletions(-)
 create mode 100644 veilid-core/src/routing_table/find_peers.rs
 create mode 100644 veilid-core/src/storage_manager/storage_manager_inner.rs

diff --git a/veilid-core/src/routing_table/find_peers.rs b/veilid-core/src/routing_table/find_peers.rs
new file mode 100644
index 00000000..54a45796
--- /dev/null
+++ b/veilid-core/src/routing_table/find_peers.rs
@@ -0,0 +1,103 @@
+use super::*;
+
+impl RoutingTable {
+    /// Utility to find all closest nodes to a particular key, including possibly our own node and nodes further away from the key than our own, returning their peer info
+    pub fn find_all_closest_peers(&self, key: TypedKey) -> NetworkResult<Vec<PeerInfo>> {
+        let Some(own_peer_info) = self.get_own_peer_info(RoutingDomain::PublicInternet) else {
+            // Our own node info is not yet available, drop this request.
+            return NetworkResult::service_unavailable();
+        };
+
+        // find N nodes closest to the target node in our routing table
+        let filter = Box::new(
+            move |rti: &RoutingTableInner, opt_entry: Option<Arc<BucketEntry>>| {
+                // Ensure only things that are valid/signed in the PublicInternet domain are returned
+                rti.filter_has_valid_signed_node_info(
+                    RoutingDomain::PublicInternet,
+                    true,
+                    opt_entry,
+                )
+            },
+        ) as RoutingTableEntryFilter;
+        let filters = VecDeque::from([filter]);
+
+        let node_count = {
+            let c = self.config.get();
+            c.network.dht.max_find_node_count as usize
+        };
+
+        let closest_nodes = self.find_closest_nodes(
+            node_count,
+            key,
+            filters,
+            // transform
+            |rti, entry| {
+                rti.transform_to_peer_info(RoutingDomain::PublicInternet, &own_peer_info, entry)
+            },
+        );
+
+        NetworkResult::value(closest_nodes)
+    }
+
+    /// Utility to find nodes that are closer to a key than our own node, returning their peer info
+    pub fn find_peers_closer_to_key(&self, key: TypedKey) -> NetworkResult<Vec<PeerInfo>> {
+        // add node information for the requesting node to our routing table
+        let crypto_kind = key.kind;
+        let own_node_id = self.node_id(crypto_kind);
+
+        // find N nodes closest to the target node in our routing table
+        // ensure the nodes returned are only the ones closer to the target node than ourself
+        let Some(vcrypto) = self.crypto().get(crypto_kind) else {
+            return NetworkResult::invalid_message("unsupported cryptosystem");
+        };
+        let own_distance = vcrypto.distance(&own_node_id.value, &key.value);
+
+        let filter = Box::new(
+            move |rti: &RoutingTableInner, opt_entry: Option<Arc<BucketEntry>>| {
+                // Exclude our own node
+                let Some(entry) = opt_entry else {
+                    return false;
+                };
+                // Ensure only things that are valid/signed in the PublicInternet domain are returned
+                if !rti.filter_has_valid_signed_node_info(
+                    RoutingDomain::PublicInternet,
+                    true,
+                    Some(entry.clone()),
+                ) {
+                    return false;
+                }
+                // Ensure things further from the key than our own node are not included
+                let Some(entry_node_id) = entry.with(rti, |_rti, e| e.node_ids().get(crypto_kind)) else {
+                    return false;
+                };
+                let entry_distance = vcrypto.distance(&entry_node_id.value, &key.value);
+                if entry_distance >= own_distance {
+                    return false;
+                }
+
+                true
+            },
+        ) as RoutingTableEntryFilter;
+        let filters = VecDeque::from([filter]);
+
+        let node_count = {
+            let c = self.config.get();
+            c.network.dht.max_find_node_count as usize
+        };
+
+        //
+        let closest_nodes = self.find_closest_nodes(
+            node_count,
+            key,
+            filters,
+            // transform
+            |rti, entry| {
+                entry.unwrap().with(rti, |_rti, e| {
+                    e.make_peer_info(RoutingDomain::PublicInternet).unwrap()
+                })
+            },
+        );
+
+        NetworkResult::value(closest_nodes)
+    }
+}
diff --git a/veilid-core/src/routing_table/mod.rs b/veilid-core/src/routing_table/mod.rs
index 8cdf65f7..f8457d3e 100644
--- a/veilid-core/src/routing_table/mod.rs
+++ b/veilid-core/src/routing_table/mod.rs
@@ -1,6 +1,7 @@
 mod bucket;
 mod bucket_entry;
 mod debug;
+mod find_peers;
 mod node_ref;
 mod node_ref_filter;
 mod privacy;
@@ -22,6 +23,7 @@ use hashlink::LruCache;
 
 pub use bucket_entry::*;
 pub use debug::*;
+pub use find_peers::*;
 pub use node_ref::*;
 pub use node_ref_filter::*;
 pub use privacy::*;
diff --git a/veilid-core/src/rpc_processor/rpc_find_node.rs b/veilid-core/src/rpc_processor/rpc_find_node.rs
index a910dc1b..07dcc1c2 100644
--- a/veilid-core/src/rpc_processor/rpc_find_node.rs
+++ b/veilid-core/src/rpc_processor/rpc_find_node.rs
@@ -90,48 +90,14 @@ impl RPCProcessor {
         };
         let node_id = find_node_q.destructure();
 
-        // add node information for the requesting node to our routing table
+        // Get a chunk of the routing table near the requested node id
         let routing_table = self.routing_table();
+        let closest_nodes = network_result_try!(routing_table.find_all_closest_peers(node_id));
 
-xxx move this into routing table code, also do getvalue code
-
-        let Some(own_peer_info) = routing_table.get_own_peer_info(RoutingDomain::PublicInternet) else {
-            // Our own node info is not yet available, drop this request.
-            return Ok(NetworkResult::service_unavailable());
-        };
-
-        // find N nodes closest to the target node in our routing table
-        let filter = Box::new(
-            move |rti: &RoutingTableInner, opt_entry: Option<Arc<BucketEntry>>| {
-                // Ensure only things that are valid/signed in the PublicInternet domain are returned
-                rti.filter_has_valid_signed_node_info(
-                    RoutingDomain::PublicInternet,
-                    true,
-                    opt_entry,
-                )
-            },
-        ) as RoutingTableEntryFilter;
-        let filters = VecDeque::from([filter]);
-
-        let node_count = {
-            let c = self.config.get();
-            c.network.dht.max_find_node_count as usize
-        };
-
-        let closest_nodes = routing_table.find_closest_nodes(
-            node_count,
-            node_id,
-            filters,
-            // transform
-            |rti, entry| {
-                rti.transform_to_peer_info(RoutingDomain::PublicInternet, &own_peer_info, entry)
-            },
-        );
-
-        // Make status answer
+        // Make FindNode answer
         let find_node_a = RPCOperationFindNodeA::new(closest_nodes)?;
 
-        // Send status answer
+        // Send FindNode answer
         self.answer(msg, RPCAnswer::new(RPCAnswerDetail::FindNodeA(find_node_a)))
             .await
     }
diff --git a/veilid-core/src/rpc_processor/rpc_get_value.rs b/veilid-core/src/rpc_processor/rpc_get_value.rs
index f2cc5f7d..26b45861 100644
--- a/veilid-core/src/rpc_processor/rpc_get_value.rs
+++ b/veilid-core/src/rpc_processor/rpc_get_value.rs
@@ -113,69 +113,26 @@ impl RPCProcessor {
         // Destructure
         let (key, subkey, want_descriptor) = get_value_q.destructure();
 
-        // add node information for the requesting node to our routing table
-        let crypto_kind = key.kind;
+        // Get the nodes that we know about that are closer to the the key than our own node
         let routing_table = self.routing_table();
-        let own_node_id = routing_table.node_id(crypto_kind);
+        let closer_to_key_peers = network_result_try!(routing_table.find_peers_closer_to_key(key));
 
-        // find N nodes closest to the target node in our routing table
-        // ensure the nodes returned are only the ones closer to the target node than ourself
-        let Some(vcrypto) = self.crypto.get(crypto_kind) else {
-            return Ok(NetworkResult::invalid_message("unsupported cryptosystem"));
-        };
-        let own_distance = vcrypto.distance(&own_node_id.value, &key.value);
+        // See if we have this record ourselves
+        let storage_manager = self.storage_manager();
+        let subkey_result = storage_manager
+            .handle_get_value(key, subkey, want_descriptor)
+            .await
+            .map_err(RPCError::internal)?;
 
-        let filter = Box::new(
-            move |rti: &RoutingTableInner, opt_entry: Option<Arc<BucketEntry>>| {
-                // Exclude our own node
-                let Some(entry) = opt_entry else {
-                    return false;
-                };
-                // Ensure only things that are valid/signed in the PublicInternet domain are returned
-                if !rti.filter_has_valid_signed_node_info(
-                    RoutingDomain::PublicInternet,
-                    true,
-                    Some(entry.clone()),
-                ) {
-                    return false;
-                }
-                // Ensure things further from the key than our own node are not included
-                let Some(entry_node_id) = entry.with(rti, |_rti, e| e.node_ids().get(crypto_kind)) else {
-                    return false;
-                };
-                let entry_distance = vcrypto.distance(&entry_node_id.value, &key.value);
-                if entry_distance >= own_distance {
-                    return false;
-                }
+        // Make GetValue answer
+        let get_value_a = RPCOperationGetValueA::new(
+            subkey_result.value,
+            closer_to_key_peers,
+            subkey_result.descriptor,
+        )?;
 
-                true
-            },
-        ) as RoutingTableEntryFilter;
-        let filters = VecDeque::from([filter]);
-
-        let node_count = {
-            let c = self.config.get();
-            c.network.dht.max_find_node_count as usize
-        };
-
-        //
-        let closest_nodes = routing_table.find_closest_nodes(
-            node_count,
-            key,
-            filters,
-            // transform
-            |rti, entry| {
-                entry.unwrap().with(rti, |_rti, e| {
-                    e.make_peer_info(RoutingDomain::PublicInternet).unwrap()
-                })
-            },
-        );
-
-        // Make status answer
-        let find_node_a = RPCOperationFindNodeA::new(closest_nodes)?;
-
-        // Send status answer
-        self.answer(msg, RPCAnswer::new(RPCAnswerDetail::FindNodeA(find_node_a)))
+        // Send GetValue answer
+        self.answer(msg, RPCAnswer::new(RPCAnswerDetail::GetValueA(get_value_a)))
             .await
     }
 }
diff --git a/veilid-core/src/storage_manager/do_get_value.rs b/veilid-core/src/storage_manager/do_get_value.rs
index c6567d7b..4671fe47 100644
--- a/veilid-core/src/storage_manager/do_get_value.rs
+++ b/veilid-core/src/storage_manager/do_get_value.rs
@@ -1,13 +1,5 @@
 use super::*;
 
-/// The result of the do_get_value_operation
-pub struct DoGetValueResult {
-    /// The subkey value if we got one
-    pub value: Option<SignedValueData>,
-    /// The descriptor if we got a fresh one or empty if no descriptor was needed
-    pub descriptor: Option<SignedValueDescriptor>,
-}
-
 /// The context of the do_get_value operation
 struct DoGetValueContext {
     /// The latest value of the subkey, may be the value passed in
@@ -22,6 +14,7 @@ struct DoGetValueContext {
 
 impl StorageManager {
 
+    /// Perform a 'get value' query on the network
     pub async fn do_get_value(
         &self,
         rpc_processor: RPCProcessor,
@@ -30,7 +23,7 @@ impl StorageManager {
         last_value: Option<SignedValueData>,
         last_descriptor: Option<SignedValueDescriptor>,
         safety_selection: SafetySelection,
-    ) -> Result<DoGetValueResult, VeilidAPIError> {
+    ) -> Result<SubkeyResult, VeilidAPIError> {
         let routing_table = rpc_processor.routing_table();
 
         // Get the DHT parameters for 'GetValue'
@@ -63,7 +56,7 @@ impl StorageManager {
             let context = context.clone();
             let last_descriptor = last_descriptor.clone();
             async move {
-                match rpc_processor
+                let vres = rpc_processor
                     .clone()
                     .rpc_call_get_value(
                         Destination::direct(next_node).with_safety(safety_selection),
@@ -71,75 +64,70 @@ impl StorageManager {
                         subkey,
                         last_descriptor,
                     )
-                    .await
-                {
-                    Ok(v) => {
-                        let v = network_result_value_or_log!(v => {
-                            // Any other failures, just try the next node
-                            return Ok(None);
-                        });
+                    .await?;
+                let gva = network_result_value_or_log!(vres => {
+                    // Any other failures, just try the next node
+                    return Ok(None);
+                });
 
-                        // Keep the descriptor if we got one. If we had a last_descriptor it will
-                        // already be validated by rpc_call_get_value
-                        if let Some(descriptor) = v.answer.descriptor {
-                            let mut ctx = context.lock();
-                            if ctx.descriptor.is_none() && ctx.schema.is_none() {
-                                ctx.schema =
-                                    Some(descriptor.schema().map_err(RPCError::invalid_format)?);
-                                ctx.descriptor = Some(descriptor);
-                            }
-                        }
-
-                        // Keep the value if we got one and it is newer and it passes schema validation
-                        if let Some(value) = v.answer.value {
-                            let mut ctx = context.lock();
-
-                            // Ensure we have a schema and descriptor
-                            let (Some(descriptor), Some(schema)) = (&ctx.descriptor, &ctx.schema) else {
-                                // Got a value but no descriptor for it
-                                // Move to the next node
-                                return Ok(None);
-                            };
-
-                            // Validate with schema
-                            if !schema.check_subkey_value_data(
-                                descriptor.owner(),
-                                subkey,
-                                value.value_data(),
-                            ) {
-                                // Validation failed, ignore this value
-                                // Move to the next node
-                                return Ok(None);
-                            }
-
-                            // If we have a prior value, see if this is a newer sequence number
-                            if let Some(prior_value) = &ctx.value {
-                                let prior_seq = prior_value.value_data().seq();
-                                let new_seq = value.value_data().seq();
-
-                                if new_seq == prior_seq {
-                                    // If sequence number is the same, the data should be the same
-                                    if prior_value.value_data() != value.value_data() {
-                                        // Move to the next node
-                                        return Ok(None);
-                                    }
-                                    // Increase the consensus count for the existing value
-                                    ctx.value_count += 1;
-                                } else if new_seq > prior_seq {
-                                    // If the sequence number is greater, go with it
-                                    ctx.value = Some(value);
-                                    ctx.value_count = 1;
-                                } else {
-                                    // If the sequence number is older, ignore it
-                                }
-                            }
-                        }
-
-                        // Return peers if we have some
-                        Ok(Some(v.answer.peers))
+                // Keep the descriptor if we got one. If we had a last_descriptor it will
+                // already be validated by rpc_call_get_value
+                if let Some(descriptor) = gva.answer.descriptor {
+                    let mut ctx = context.lock();
+                    if ctx.descriptor.is_none() && ctx.schema.is_none() {
+                        ctx.schema =
+                            Some(descriptor.schema().map_err(RPCError::invalid_format)?);
+                        ctx.descriptor = Some(descriptor);
                     }
-                    Err(e) => Err(e),
                 }
+
+                // Keep the value if we got one and it is newer and it passes schema validation
+                if let Some(value) = gva.answer.value {
+                    let mut ctx = context.lock();
+
+                    // Ensure we have a schema and descriptor
+                    let (Some(descriptor), Some(schema)) = (&ctx.descriptor, &ctx.schema) else {
+                        // Got a value but no descriptor for it
+                        // Move to the next node
+                        return Ok(None);
+                    };
+
+                    // Validate with schema
+                    if !schema.check_subkey_value_data(
+                        descriptor.owner(),
+                        subkey,
+                        value.value_data(),
+                    ) {
+                        // Validation failed, ignore this value
+                        // Move to the next node
+                        return Ok(None);
+                    }
+
+                    // If we have a prior value, see if this is a newer sequence number
+                    if let Some(prior_value) = &ctx.value {
+                        let prior_seq = prior_value.value_data().seq();
+                        let new_seq = value.value_data().seq();
+
+                        if new_seq == prior_seq {
+                            // If sequence number is the same, the data should be the same
+                            if prior_value.value_data() != value.value_data() {
+                                // Move to the next node
+                                return Ok(None);
+                            }
+                            // Increase the consensus count for the existing value
+                            ctx.value_count += 1;
+                        } else if new_seq > prior_seq {
+                            // If the sequence number is greater, go with it
+                            ctx.value = Some(value);
+                            ctx.value_count = 1;
+                        } else {
+                            // If the sequence number is older, ignore it
+                        }
+                    }
+                }
+
+                // Return peers if we have some
+                Ok(Some(gva.answer.peers))
             }
         };
 
@@ -173,7 +161,7 @@ impl StorageManager {
             TimeoutOr::Value(Ok(None)) => {
                 // Return the best answer we've got
                 let ctx = context.lock();
-                Ok(DoGetValueResult{
+                Ok(SubkeyResult{
                     value: ctx.value.clone(),
                     descriptor: ctx.descriptor.clone(),
                 })
@@ -185,4 +173,10 @@ impl StorageManager {
             }
         }
     }
+
+    /// Handle a recieved 'Get Value' query
+    pub async fn handle_get_value(&self, key: TypedKey, subkey: ValueSubkey, want_descriptor: bool) -> Result<SubkeyResult, VeilidAPIError> {
+        let mut inner = self.lock().await?;
+        inner.handle_get_remote_value(key, subkey, want_descriptor)
+    }
 }
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index 86f7301c..9c87d84d 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -2,12 +2,14 @@ mod do_get_value;
 mod keys;
 mod record_store;
 mod record_store_limits;
+mod storage_manager_inner;
 mod tasks;
 mod types;
 
 use keys::*;
 use record_store::*;
 use record_store_limits::*;
+use storage_manager_inner::*;
 
 pub use types::*;
 
@@ -21,22 +23,6 @@ const MAX_RECORD_DATA_SIZE: usize = 1_048_576;
 /// Frequency to flush record stores to disk
 const FLUSH_RECORD_STORES_INTERVAL_SECS: u32 = 1;
 
-/// Locked structure for storage manager
-struct StorageManagerInner {
-    /// If we are started up
-    initialized: bool,
-    /// Records that have been 'opened' and are not yet closed
-    opened_records: HashMap<TypedKey, OpenedRecord>,
-    /// Records that have ever been 'created' or 'opened' by this node, things we care about that we must republish to keep alive
-    local_record_store: Option<RecordStore<LocalRecordDetail>>,
-    /// Records that have been pushed to this node for distribution by other nodes, that we make an effort to republish
-    remote_record_store: Option<RecordStore<RemoteRecordDetail>>,
-    /// RPC processor if it is available
-    rpc_processor: Option<RPCProcessor>,
-    /// Background processing task (not part of attachment manager tick tree so it happens when detached too)
-    tick_future: Option<SendPinBoxFuture<()>>,
-}
-
 struct StorageManagerUnlockedInner {
     config: VeilidConfig,
     crypto: Crypto,
@@ -72,14 +58,7 @@ impl StorageManager {
         }
     }
     fn new_inner() -> StorageManagerInner {
-        StorageManagerInner {
-            initialized: false,
-            opened_records: HashMap::new(),
-            local_record_store: None,
-            remote_record_store: None,
-            rpc_processor: None,
-            tick_future: None,
-        }
+        StorageManagerInner::default()
     }
 
     fn local_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
@@ -266,63 +245,16 @@ impl StorageManager {
         local_record_store.new_record(dht_key, record).await?;
 
         // Open the record
-        self.open_record_inner(inner, dht_key, Some(owner), safety_selection)
+        self.open_record_common(inner, dht_key, Some(owner), safety_selection)
             .await
     }
 
-    fn open_record_inner_check_existing(
+    async fn open_record_common(
         &self,
         mut inner: AsyncMutexGuardArc<StorageManagerInner>,
         key: TypedKey,
         writer: Option<KeyPair>,
         safety_selection: SafetySelection,
-    ) -> Option<Result<DHTRecordDescriptor, VeilidAPIError>> {
-        // Get local record store
-        let Some(local_record_store) = inner.local_record_store.as_mut() else {
-            return Some(Err(VeilidAPIError::not_initialized()));
-        };
-
-        // See if we have a local record already or not
-        let cb = |r: &mut Record<LocalRecordDetail>| {
-            // Process local record
-
-            // Keep the safety selection we opened the record with
-            r.detail_mut().safety_selection = safety_selection;
-
-            // Return record details
-            (r.owner().clone(), r.schema())
-        };
-        let Some((owner, schema)) = local_record_store.with_record_mut(key, cb) else {
-            return None;
-        };
-        // Had local record
-
-        // If the writer we chose is also the owner, we have the owner secret
-        // Otherwise this is just another subkey writer
-        let owner_secret = if let Some(writer) = writer {
-            if writer.key == owner {
-                Some(writer.secret)
-            } else {
-                None
-            }
-        } else {
-            None
-        };
-
-        // Write open record
-        inner.opened_records.insert(key, OpenedRecord::new(writer));
-
-        // Make DHT Record Descriptor to return
-        let descriptor = DHTRecordDescriptor::new(key, owner, owner_secret, schema);
-        Some(Ok(descriptor))
-    }
-
-    async fn open_record_inner(
-        &self,
-        inner: AsyncMutexGuardArc<StorageManagerInner>,
-        key: TypedKey,
-        writer: Option<KeyPair>,
-        safety_selection: SafetySelection,
     ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
         // Ensure the record is closed
         if inner.opened_records.contains_key(&key) {
@@ -330,25 +262,23 @@ impl StorageManager {
         }
 
         // See if we have a local record already or not
-        if let Some(res) =
-            self.open_record_inner_check_existing(inner, key, writer, safety_selection)
-        {
+        if let Some(res) = inner.open_record_check_existing(key, writer, safety_selection) {
             return res;
         }
 
         // No record yet, try to get it from the network
 
         // Get rpc processor and drop mutex so we don't block while getting the value from the network
-        let rpc_processor = {
-            let inner = self.lock().await?;
-            let Some(rpc_processor) = inner.rpc_processor.clone() else {
-                // Offline, try again later
-                apibail_try_again!();
-            };
-            rpc_processor
+        let Some(rpc_processor) = inner.rpc_processor.clone() else {
+            // Offline, try again later
+            apibail_try_again!();
         };
 
+        // Drop the mutex so we dont block during network access
+        drop(inner);
+
         // No last descriptor, no last value
+        // Use the safety selection we opened the record with
         let subkey: ValueSubkey = 0;
         let result = self
             .do_get_value(rpc_processor, key, subkey, None, None, safety_selection)
@@ -405,7 +335,9 @@ impl StorageManager {
         }
 
         // Write open record
-        inner.opened_records.insert(key, OpenedRecord::new(writer));
+        inner
+            .opened_records
+            .insert(key, OpenedRecord::new(writer, safety_selection));
 
         // Make DHT Record Descriptor to return
         let descriptor = DHTRecordDescriptor::new(key, owner, owner_secret, schema);
@@ -419,24 +351,13 @@ impl StorageManager {
         safety_selection: SafetySelection,
     ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
         let inner = self.lock().await?;
-        self.open_record_inner(inner, key, writer, safety_selection)
+        self.open_record_common(inner, key, writer, safety_selection)
             .await
     }
 
-    async fn close_record_inner(
-        &self,
-        inner: &mut AsyncMutexGuardArc<StorageManagerInner>,
-        key: TypedKey,
-    ) -> Result<(), VeilidAPIError> {
-        let Some(_opened_record) = inner.opened_records.remove(&key) else {
-            apibail_generic!("record not open");
-        };
-        Ok(())
-    }
-
     pub async fn close_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
         let mut inner = self.lock().await?;
-        self.close_record_inner(&mut inner, key).await
+        inner.close_record(key)
     }
 
     pub async fn delete_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
@@ -444,7 +365,7 @@ impl StorageManager {
 
         // Ensure the record is closed
         if inner.opened_records.contains_key(&key) {
-            self.close_record_inner(&mut inner, key).await?;
+            inner.close_record(key)?;
         }
 
         let Some(local_record_store) = inner.local_record_store.as_mut() else {
@@ -461,8 +382,60 @@ impl StorageManager {
         subkey: ValueSubkey,
         force_refresh: bool,
     ) -> Result<Option<ValueData>, VeilidAPIError> {
-        let inner = self.lock().await?;
-        unimplemented!();
+        let mut inner = self.lock().await?;
+
+        // Get rpc processor and drop mutex so we don't block while getting the value from the network
+        let Some(opened_record) = inner.opened_records.remove(&key) else {
+            apibail_generic!("record not open");
+        };
+
+        // See if the requested subkey is our local record store
+        let SubkeyResult { value, descriptor } = inner.handle_get_local_value(key, subkey, true)?;
+
+        // Return the existing value if we have one unless we are forcing a refresh
+        if !force_refresh {
+            if let Some(value) = value {
+                return Ok(Some(value.into_value_data()));
+            }
+        }
+
+        // Refresh if we can
+        let Some(rpc_processor) = inner.rpc_processor.clone() else {
+            // Offline, try again later
+            apibail_try_again!();
+        };
+
+        // Drop the lock for network access
+        drop(inner);
+
+        // May have last descriptor / value
+        // Use the safety selection we opened the record with
+        let opt_last_seq = value.as_ref().map(|v| v.value_data().seq());
+        let result = self
+            .do_get_value(
+                rpc_processor,
+                key,
+                subkey,
+                value,
+                descriptor,
+                opened_record.safety_selection(),
+            )
+            .await?;
+
+        // See if we got a value back
+        let Some(result_value) = result.value else {
+            // If we got nothing back then we also had nothing beforehand, return nothing
+            return Ok(None);
+        };
+
+        // If we got a new value back then write it to the opened record
+        if Some(result_value.value_data().seq()) != opt_last_seq {
+            let mut inner = self.lock().await?;
+            inner
+                .handle_set_local_value(key, subkey, result_value.clone())
+                .await?;
+        }
+        Ok(Some(result_value.into_value_data()))
     }
 
     pub async fn set_value(
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index dc30b35b..994e7b44 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -30,6 +30,14 @@ where
     purge_dead_records_mutex: Arc<AsyncMutex<()>>,
 }
 
+/// The result of the do_get_value_operation
+pub struct SubkeyResult {
+    /// The subkey value if we got one
+    pub value: Option<SignedValueData>,
+    /// The descriptor if we got a fresh one or empty if no descriptor was needed
+    pub descriptor: Option<SignedValueDescriptor>,
+}
+
 impl<D> RecordStore<D>
 where
     D: Clone + RkyvArchive + RkyvSerialize<RkyvSerializer>,
@@ -297,7 +305,7 @@ where
         Ok(())
     }
 
-    pub fn with_record<R, F>(&mut self, key: TypedKey, f: F) -> Option<R>
+    pub(super) fn with_record<R, F>(&mut self, key: TypedKey, f: F) -> Option<R>
     where
         F: FnOnce(&Record<D>) -> R,
     {
@@ -318,7 +326,7 @@ where
         out
     }
 
-    pub fn with_record_mut<R, F>(&mut self, key: TypedKey, f: F) -> Option<R>
+    pub(super) fn with_record_mut<R, F>(&mut self, key: TypedKey, f: F) -> Option<R>
     where
         F: FnOnce(&mut Record<D>) -> R,
     {
@@ -339,24 +347,27 @@ where
         out
     }
 
-    pub async fn get_subkey(
+    // pub fn get_descriptor(&mut self, key: TypedKey) -> Option<SignedValueDescriptor> {
+    //     self.with_record(key, |record| record.descriptor().clone())
+    // }
+
+    pub fn get_subkey(
         &mut self,
         key: TypedKey,
         subkey: ValueSubkey,
-    ) -> Result<Option<SignedValueData>, VeilidAPIError> {
+        want_descriptor: bool,
+    ) -> Result<Option<SubkeyResult>, VeilidAPIError> {
         // record from index
-        let rtk = RecordTableKey { key };
-        let subkey_count = {
-            let Some(record) = self.record_index.get_mut(&rtk) else {
-                apibail_invalid_argument!("no record at this key", "key", key);
-            };
-
-            // Touch
-            record.touch(get_aligned_timestamp());
-
-            record.subkey_count()
+        let Some((subkey_count, opt_descriptor)) = self.with_record(key, |record| {
+            (record.subkey_count(), if want_descriptor {
+                Some(record.descriptor().clone())
+            } else {
+                None
+            })
+        }) else {
+            // Record not available
+            return Ok(None);
         };
-        self.mark_record_changed(rtk);
 
         // Check if the subkey is in range
         if subkey as usize >= subkey_count {
@@ -373,7 +384,10 @@ where
         if let Some(record_data) = self.subkey_cache.get_mut(&stk) {
             let out = record_data.signed_value_data().clone();
 
-            return Ok(Some(out));
+            return Ok(Some(SubkeyResult {
+                value: Some(out),
+                descriptor: opt_descriptor,
+            }));
         }
         // If not in cache, try to pull from table store
         if let Some(record_data) = subkey_table
@@ -385,10 +399,17 @@ where
             // Add to cache, do nothing with lru out
             self.add_to_subkey_cache(stk, record_data);
 
-            return Ok(Some(out));
+            return Ok(Some(SubkeyResult {
+                value: Some(out),
+                descriptor: opt_descriptor,
+            }));
         };
 
-        return Ok(None);
+        // Record was available, but subkey was not found, maybe descriptor gets returned
+        Ok(Some(SubkeyResult {
+            value: None,
+            descriptor: opt_descriptor,
+        }))
     }
 
     pub async fn set_subkey(
@@ -403,18 +424,11 @@ where
         }
 
         // Get record from index
-        let rtk = RecordTableKey { key };
-        let (subkey_count, total_size) = {
-            let Some(record) = self.record_index.get_mut(&rtk) else {
-                apibail_invalid_argument!("no record at this key", "key", key);
-            };
-
-            // Touch
-            record.touch(get_aligned_timestamp());
-
+        let Some((subkey_count, total_size)) = self.with_record(key, |record| {
             (record.subkey_count(), record.total_size())
+        }) else {
+            apibail_invalid_argument!("no record at this key", "key", key);
         };
-        self.mark_record_changed(rtk);
 
         // Check if the subkey is in range
         if subkey as usize >= subkey_count {
@@ -474,10 +488,10 @@ where
         self.add_to_subkey_cache(stk, record_data);
 
         // Update record
-        let Some(record) = self.record_index.get_mut(&rtk) else {
-            apibail_invalid_argument!("no record at this key", "key", key);
-        };
-        record.set_record_data_size(new_record_data_size);
+        self.with_record_mut(key, |record| {
+            record.set_record_data_size(new_record_data_size);
+        })
+        .expect("record should still be here");
 
         Ok(())
     }
diff --git a/veilid-core/src/storage_manager/storage_manager_inner.rs b/veilid-core/src/storage_manager/storage_manager_inner.rs
new file mode 100644
index 00000000..d593d7a3
--- /dev/null
+++ b/veilid-core/src/storage_manager/storage_manager_inner.rs
@@ -0,0 +1,187 @@
+use super::*;
+
+/// Locked structure for storage manager
+#[derive(Default)]
+pub(super) struct StorageManagerInner {
+    /// If we are started up
+    pub initialized: bool,
+    /// Records that have been 'opened' and are not yet closed
+    pub opened_records: HashMap<TypedKey, OpenedRecord>,
+    /// Records that have ever been 'created' or 'opened' by this node, things we care about that we must republish to keep alive
+    pub local_record_store: Option<RecordStore<LocalRecordDetail>>,
+    /// Records that have been pushed to this node for distribution by other nodes, that we make an effort to republish
+    pub remote_record_store: Option<RecordStore<RemoteRecordDetail>>,
+    /// RPC processor if it is available
+    pub rpc_processor: Option<RPCProcessor>,
+    /// Background processing task (not part of attachment manager tick tree so it happens when detached too)
+    pub tick_future: Option<SendPinBoxFuture<()>>,
+}
+
+impl StorageManagerInner {
+    pub fn open_record_check_existing(
+        &mut self,
+        key: TypedKey,
+        writer: Option<KeyPair>,
+        safety_selection: SafetySelection,
+    ) -> Option<Result<DHTRecordDescriptor, VeilidAPIError>> {
+        // Get local record store
+        let Some(local_record_store) = self.local_record_store.as_mut() else {
+            return Some(Err(VeilidAPIError::not_initialized()));
+        };
+
+        // See if we have a local record already or not
+        let cb = |r: &mut Record<LocalRecordDetail>| {
+            // Process local record
+
+            // Keep the safety selection we opened the record with
+            r.detail_mut().safety_selection = safety_selection;
+
+            // Return record details
+            (r.owner().clone(), r.schema())
+        };
+        let Some((owner, schema)) = local_record_store.with_record_mut(key, cb) else {
+            return None;
+        };
+        // Had local record
+
+        // If the writer we chose is also the owner, we have the owner secret
+        // Otherwise this is just another subkey writer
+        let owner_secret = if let Some(writer) = writer {
+            if writer.key == owner {
+                Some(writer.secret)
+            } else {
+                None
+            }
+        } else {
+            None
+        };
+
+        // Write open record
+        self.opened_records
+            .insert(key, OpenedRecord::new(writer, safety_selection));
+
+        // Make DHT Record Descriptor to return
+        let descriptor = DHTRecordDescriptor::new(key, owner, owner_secret, schema);
+        Some(Ok(descriptor))
+    }
+
+    pub async fn new_local_record(
+        &mut self,
+        key: TypedKey,
+        subkey: ValueSubkey,
+        signed_value_descriptor: SignedValueDescriptor,
+        signed_value_data: Option<SignedValueData>,
+        safety_selection: SafetySelection,
+    ) -> Result<(), VeilidAPIError> {
+        // Get local record store
+        let Some(local_record_store) = self.local_record_store.as_mut() else {
+            apibail_not_initialized!();
+        };
+
+        // Make and store a new record for this descriptor
+        let record = Record::<LocalRecordDetail>::new(
+            get_aligned_timestamp(),
+            signed_value_descriptor,
+            LocalRecordDetail { safety_selection },
+        )?;
+        local_record_store.new_record(key, record).await?;
+
+        // If we got a subkey with the getvalue, it has already been validated against the schema, so store it
+        if let Some(signed_value_data) = signed_value_data {
+            // Write subkey to local store
+            local_record_store
+                .set_subkey(key, subkey, signed_value_data)
+                .await?;
+        }
+        // Write open record
+        self.opened_records
+            .insert(key, OpenedRecord::new(writer, safety_selection));
+
+        Ok(())
+    }
+
+    pub fn close_record(&mut self, key: TypedKey) -> Result<(), VeilidAPIError> {
+        let Some(_opened_record) = self.opened_records.remove(&key) else {
+            apibail_generic!("record not open");
+        };
+        Ok(())
+    }
+
+    pub fn handle_get_local_value(
+        &mut self,
+        key: TypedKey,
+        subkey: ValueSubkey,
+        want_descriptor: bool,
+    ) -> Result<SubkeyResult, VeilidAPIError> {
+        // See if it's in the local record store
+        let Some(local_record_store) = self.local_record_store.as_mut() else {
+            apibail_not_initialized!();
+        };
+        if let Some(subkey_result) = local_record_store.get_subkey(key, subkey, want_descriptor)? {
+            return Ok(subkey_result);
+        }
+
+        Ok(SubkeyResult {
+            value: None,
+            descriptor: None,
+        })
+    }
+
+    pub async fn handle_set_local_value(
+        &mut self,
+        key: TypedKey,
+        subkey: ValueSubkey,
+        signed_value_data: SignedValueData,
+    ) -> Result<(), VeilidAPIError> {
+        // See if it's in the local record store
+        let Some(local_record_store) = self.local_record_store.as_mut() else {
+            apibail_not_initialized!();
+        };
+
+        // Write subkey to local store
+        local_record_store
+            .set_subkey(key, subkey, signed_value_data)
+            .await?;
+
+        Ok(())
+    }
+
+    pub fn handle_get_remote_value(
+        &mut self,
+        key: TypedKey,
+        subkey: ValueSubkey,
+        want_descriptor: bool,
+    ) -> Result<SubkeyResult, VeilidAPIError> {
+        // See if it's in the remote record store
+        let Some(remote_record_store) = self.remote_record_store.as_mut() else {
+            apibail_not_initialized!();
+        };
+        if let Some(subkey_result) = remote_record_store.get_subkey(key, subkey, want_descriptor)? {
+            return Ok(subkey_result);
+        }
+
+        Ok(SubkeyResult {
+            value: None,
+            descriptor: None,
+        })
+    }
+
+    pub async fn handle_set_remote_value(
+        &mut self,
+        key: TypedKey,
+        subkey: ValueSubkey,
+        signed_value_data: SignedValueData,
+    ) -> Result<(), VeilidAPIError> {
+        // See if it's in the remote record store
+        let Some(remote_record_store) = self.remote_record_store.as_mut() else {
+            apibail_not_initialized!();
+        };
+
+        // Write subkey to remote store
+        remote_record_store
+            .set_subkey(key, subkey, signed_value_data)
+            .await?;
+
+        Ok(())
+    }
+}
diff --git a/veilid-core/src/storage_manager/types/opened_record.rs b/veilid-core/src/storage_manager/types/opened_record.rs
index 17424bfa..8f47786c 100644
--- a/veilid-core/src/storage_manager/types/opened_record.rs
+++ b/veilid-core/src/storage_manager/types/opened_record.rs
@@ -8,14 +8,24 @@ pub struct OpenedRecord {
     /// Without this, set_value() will fail regardless of which key or subkey is being written to
     /// as all writes are signed
     writer: Option<KeyPair>,
+
+    /// The safety selection in current use
+    safety_selection: SafetySelection,
 }
 
 impl OpenedRecord {
-    pub fn new(writer: Option<KeyPair>) -> Self {
-        Self { writer }
+    pub fn new(writer: Option<KeyPair>, safety_selection: SafetySelection) -> Self {
+        Self {
+            writer,
+            safety_selection,
+        }
     }
 
     pub fn writer(&self) -> Option<&KeyPair> {
         self.writer.as_ref()
     }
+
+    pub fn safety_selection(&self) -> SafetySelection {
+        self.safety_selection
+    }
 }
diff --git a/veilid-core/src/storage_manager/types/signed_value_data.rs b/veilid-core/src/storage_manager/types/signed_value_data.rs
index 5f2759f7..ca5231e7 100644
--- a/veilid-core/src/storage_manager/types/signed_value_data.rs
+++ b/veilid-core/src/storage_manager/types/signed_value_data.rs
@@ -61,6 +61,10 @@ impl SignedValueData {
         &self.value_data
     }
 
+    pub fn into_value_data(self) -> ValueData {
+        self.value_data
+    }
+
     pub fn signature(&self) -> &Signature {
         &self.signature
     }

From 43a2c0b699810fba13117d49332bf23b2ad3087f Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Mon, 8 May 2023 10:40:13 -0400
Subject: [PATCH 26/74] getvalue

---
 .../src/storage_manager/do_get_value.rs       |  11 +-
 veilid-core/src/storage_manager/mod.rs        | 203 +++++-------------
 .../src/storage_manager/record_store.rs       |   1 +
 .../storage_manager/storage_manager_inner.rs  | 128 +++++++++--
 4 files changed, 181 insertions(+), 162 deletions(-)

diff --git a/veilid-core/src/storage_manager/do_get_value.rs b/veilid-core/src/storage_manager/do_get_value.rs
index 4671fe47..1e1f0138 100644
--- a/veilid-core/src/storage_manager/do_get_value.rs
+++ b/veilid-core/src/storage_manager/do_get_value.rs
@@ -20,9 +20,8 @@ impl StorageManager {
         rpc_processor: RPCProcessor,
         key: TypedKey,
         subkey: ValueSubkey,
-        last_value: Option<SignedValueData>,
-        last_descriptor: Option<SignedValueDescriptor>,
         safety_selection: SafetySelection,
+        last_subkey_result: SubkeyResult,
     ) -> Result<SubkeyResult, VeilidAPIError> {
         let routing_table = rpc_processor.routing_table();
 
@@ -38,15 +37,15 @@ impl StorageManager {
         };
 
         // Make do-get-value answer context
-        let schema = if let Some(d) = &last_descriptor {
+        let schema = if let Some(d) = &last_subkey_result.descriptor {
             Some(d.schema()?)
         } else {
             None
         };
         let context = Arc::new(Mutex::new(DoGetValueContext {
-            value: last_value,
+            value: last_subkey_result.value,
             value_count: 0,
-            descriptor: last_descriptor.clone(),
+            descriptor: last_subkey_result.descriptor.clone(),
             schema,
         }));
 
@@ -54,7 +53,7 @@ impl StorageManager {
         let call_routine = |next_node: NodeRef| {
             let rpc_processor = rpc_processor.clone();
             let context = context.clone();
-            let last_descriptor = last_descriptor.clone();
+            let last_descriptor = last_subkey_result.descriptor.clone();
             async move {
                 let vres = rpc_processor
                     .clone()
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index 9c87d84d..c390ad80 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -57,8 +57,8 @@ impl StorageManager {
             flush_record_stores_task: TickTask::new(FLUSH_RECORD_STORES_INTERVAL_SECS),
         }
     }
-    fn new_inner() -> StorageManagerInner {
-        StorageManagerInner::default()
+    fn new_inner(unlocked_inner: Arc<StorageManagerUnlockedInner>) -> StorageManagerInner {
+        StorageManagerInner::new(unlocked_inner)
     }
 
     fn local_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
@@ -96,15 +96,16 @@ impl StorageManager {
         table_store: TableStore,
         block_store: BlockStore,
     ) -> StorageManager {
+        let unlocked_inner = Arc::new(Self::new_unlocked_inner(
+            config,
+            crypto,
+            protected_store,
+            table_store,
+            block_store,
+        ));
         let this = StorageManager {
-            unlocked_inner: Arc::new(Self::new_unlocked_inner(
-                config,
-                crypto,
-                protected_store,
-                table_store,
-                block_store,
-            )),
-            inner: Arc::new(AsyncMutex::new(Self::new_inner())),
+            unlocked_inner: unlocked_inner.clone(),
+            inner: Arc::new(AsyncMutex::new(Self::new_inner(unlocked_inner))),
         };
 
         this.setup_tasks();
@@ -169,7 +170,7 @@ impl StorageManager {
         self.cancel_tasks().await;
 
         // Release the storage manager
-        *inner = Self::new_inner();
+        *inner = Self::new_inner(self.unlocked_inner.clone());
 
         debug!("finished storage manager shutdown");
     }
@@ -179,22 +180,6 @@ impl StorageManager {
         inner.rpc_processor = opt_rpc_processor
     }
 
-    /// # DHT Key = Hash(ownerKeyKind) of: [ ownerKeyValue, schema ]
-    fn get_key<D>(vcrypto: CryptoSystemVersion, record: &Record<D>) -> TypedKey
-    where
-        D: Clone + RkyvArchive + RkyvSerialize<RkyvSerializer>,
-        for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
-        <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
-    {
-        let compiled = record.descriptor().schema_data();
-        let mut hash_data = Vec::<u8>::with_capacity(PUBLIC_KEY_LENGTH + 4 + compiled.len());
-        hash_data.extend_from_slice(&vcrypto.kind().0);
-        hash_data.extend_from_slice(&record.owner().bytes);
-        hash_data.extend_from_slice(compiled);
-        let hash = vcrypto.generate_hash(&hash_data);
-        TypedKey::new(vcrypto.kind(), hash)
-    }
-
     async fn lock(&self) -> Result<AsyncMutexGuardArc<StorageManagerInner>, VeilidAPIError> {
         let inner = asyncmutex_lock_arc!(&self.inner);
         if !inner.initialized {
@@ -203,6 +188,7 @@ impl StorageManager {
         Ok(inner)
     }
 
+    /// Create a local record from scratch with a new owner key, open it, and return the opened descriptor
     pub async fn create_record(
         &self,
         kind: CryptoKind,
@@ -211,59 +197,32 @@ impl StorageManager {
     ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
         let mut inner = self.lock().await?;
 
-        // Get cryptosystem
-        let Some(vcrypto) = self.unlocked_inner.crypto.get(kind) else {
-            apibail_generic!("unsupported cryptosystem");
-        };
+        // Create a new owned local record from scratch
+        let (key, owner) = inner
+            .create_new_owned_local_record(kind, schema, safety_selection)
+            .await?;
 
-        // Get local record store
-        let Some(local_record_store) = inner.local_record_store.as_mut() else {
-            apibail_not_initialized!();
-        };
-
-        // Compile the dht schema
-        let schema_data = schema.compile();
-
-        // New values require a new owner key
-        let owner = vcrypto.generate_keypair();
-
-        // Make a signed value descriptor for this dht value
-        let signed_value_descriptor = SignedValueDescriptor::make_signature(
-            owner.key,
-            schema_data,
-            vcrypto.clone(),
-            owner.secret,
-        )?;
-
-        // Add new local value record
-        let cur_ts = get_aligned_timestamp();
-        let local_record_detail = LocalRecordDetail { safety_selection };
-        let record =
-            Record::<LocalRecordDetail>::new(cur_ts, signed_value_descriptor, local_record_detail)?;
-
-        let dht_key = Self::get_key(vcrypto.clone(), &record);
-        local_record_store.new_record(dht_key, record).await?;
-
-        // Open the record
-        self.open_record_common(inner, dht_key, Some(owner), safety_selection)
-            .await
+        // Now that the record is made we should always succeed to open the existing record
+        // The initial writer is the owner of the record
+        inner
+            .open_existing_record(key, Some(owner), safety_selection)
+            .map(|r| r.unwrap())
     }
 
-    async fn open_record_common(
+    /// Open an existing local record if it exists,
+    /// and if it doesnt exist locally, try to pull it from the network and
+    /// open it and return the opened descriptor
+    pub async fn open_record(
         &self,
-        mut inner: AsyncMutexGuardArc<StorageManagerInner>,
         key: TypedKey,
         writer: Option<KeyPair>,
         safety_selection: SafetySelection,
     ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
-        // Ensure the record is closed
-        if inner.opened_records.contains_key(&key) {
-            apibail_generic!("record is already open and should be closed first");
-        }
+        let mut inner = self.lock().await?;
 
         // See if we have a local record already or not
-        if let Some(res) = inner.open_record_check_existing(key, writer, safety_selection) {
-            return res;
+        if let Some(res) = inner.open_existing_record(key, writer, safety_selection)? {
+            return Ok(res);
         }
 
         // No record yet, try to get it from the network
@@ -280,86 +239,38 @@ impl StorageManager {
         // No last descriptor, no last value
         // Use the safety selection we opened the record with
         let subkey: ValueSubkey = 0;
-        let result = self
-            .do_get_value(rpc_processor, key, subkey, None, None, safety_selection)
+        let subkey_result = self
+            .do_get_value(
+                rpc_processor,
+                key,
+                subkey,
+                safety_selection,
+                SubkeyResult::default(),
+            )
             .await?;
 
         // If we got nothing back, the key wasn't found
-        if result.value.is_none() && result.descriptor.is_none() {
+        if subkey_result.value.is_none() && subkey_result.descriptor.is_none() {
             // No result
             apibail_key_not_found!(key);
         };
 
-        // Must have descriptor
-        let Some(signed_value_descriptor) = result.descriptor else {
-            // No descriptor for new record, can't store this
-            apibail_generic!("no descriptor");
-        };
-
-        let owner = signed_value_descriptor.owner().clone();
-        // If the writer we chose is also the owner, we have the owner secret
-        // Otherwise this is just another subkey writer
-        let owner_secret = if let Some(writer) = writer {
-            if writer.key == owner {
-                Some(writer.secret)
-            } else {
-                None
-            }
-        } else {
-            None
-        };
-        let schema = signed_value_descriptor.schema()?;
-
         // Reopen inner to store value we just got
         let mut inner = self.lock().await?;
 
-        // Get local record store
-        let Some(local_record_store) = inner.local_record_store.as_mut() else {
-            apibail_not_initialized!();
-        };
-
-        // Make and store a new record for this descriptor
-        let record = Record::<LocalRecordDetail>::new(
-            get_aligned_timestamp(),
-            signed_value_descriptor,
-            LocalRecordDetail { safety_selection },
-        )?;
-        local_record_store.new_record(key, record).await?;
-
-        // If we got a subkey with the getvalue, it has already been validated against the schema, so store it
-        if let Some(signed_value_data) = result.value {
-            // Write subkey to local store
-            local_record_store
-                .set_subkey(key, subkey, signed_value_data)
-                .await?;
-        }
-
-        // Write open record
+        // Open the new record
         inner
-            .opened_records
-            .insert(key, OpenedRecord::new(writer, safety_selection));
-
-        // Make DHT Record Descriptor to return
-        let descriptor = DHTRecordDescriptor::new(key, owner, owner_secret, schema);
-        Ok(descriptor)
-    }
-
-    pub async fn open_record(
-        &self,
-        key: TypedKey,
-        writer: Option<KeyPair>,
-        safety_selection: SafetySelection,
-    ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
-        let inner = self.lock().await?;
-        self.open_record_common(inner, key, writer, safety_selection)
+            .open_new_record(key, writer, subkey, subkey_result, safety_selection)
             .await
     }
 
+    /// Close an opened local record
     pub async fn close_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
         let mut inner = self.lock().await?;
         inner.close_record(key)
     }
 
+    /// Delete a local record
     pub async fn delete_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
         let mut inner = self.lock().await?;
 
@@ -376,6 +287,8 @@ impl StorageManager {
         local_record_store.delete_record(key).await
     }
 
+    /// Get the value of a subkey from an opened local record
+    /// may refresh the record, and will if it is forced to or the subkey is not available locally yet
     pub async fn get_value(
         &self,
         key: TypedKey,
@@ -383,23 +296,23 @@ impl StorageManager {
         force_refresh: bool,
     ) -> Result<Option<ValueData>, VeilidAPIError> {
         let mut inner = self.lock().await?;
-
-        // Get rpc processor and drop mutex so we don't block while getting the value from the network
         let Some(opened_record) = inner.opened_records.remove(&key) else {
             apibail_generic!("record not open");
         };
 
         // See if the requested subkey is our local record store
-        let SubkeyResult { value, descriptor } = inner.handle_get_local_value(key, subkey, true)?;
+        let last_subkey_result = inner.handle_get_local_value(key, subkey, true)?;
 
         // Return the existing value if we have one unless we are forcing a refresh
         if !force_refresh {
-            if let Some(value) = value {
-                return Ok(Some(value.into_value_data()));
+            if let Some(last_subkey_result_value) = last_subkey_result.value {
+                return Ok(Some(last_subkey_result_value.into_value_data()));
             }
         }
 
         // Refresh if we can
+
+        // Get rpc processor and drop mutex so we don't block while getting the value from the network
         let Some(rpc_processor) = inner.rpc_processor.clone() else {
             // Offline, try again later
             apibail_try_again!();
@@ -410,32 +323,34 @@ impl StorageManager {
 
         // May have last descriptor / value
         // Use the safety selection we opened the record with
-        let opt_last_seq = value.as_ref().map(|v| v.value_data().seq());
-        let result = self
+        let opt_last_seq = last_subkey_result
+            .value
+            .as_ref()
+            .map(|v| v.value_data().seq());
+        let subkey_result = self
             .do_get_value(
                 rpc_processor,
                 key,
                 subkey,
-                value,
-                descriptor,
                 opened_record.safety_selection(),
+                last_subkey_result,
             )
             .await?;
 
         // See if we got a value back
-        let Some(result_value) = result.value else {
+        let Some(subkey_result_value) = subkey_result.value else {
             // If we got nothing back then we also had nothing beforehand, return nothing
             return Ok(None);
         };
 
         // If we got a new value back then write it to the opened record
-        if Some(result_value.value_data().seq()) != opt_last_seq {
+        if Some(subkey_result_value.value_data().seq()) != opt_last_seq {
             let mut inner = self.lock().await?;
             inner
-                .handle_set_local_value(key, subkey, result_value.clone())
+                .handle_set_local_value(key, subkey, subkey_result_value.clone())
                 .await?;
         }
-        Ok(Some(result_value.into_value_data()))
+        Ok(Some(subkey_result_value.into_value_data()))
     }
 
     pub async fn set_value(
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index 994e7b44..c6f8858a 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -31,6 +31,7 @@ where
 }
 
 /// The result of the do_get_value_operation
+#[derive(Default, Debug)]
 pub struct SubkeyResult {
     /// The subkey value if we got one
     pub value: Option<SignedValueData>,
diff --git a/veilid-core/src/storage_manager/storage_manager_inner.rs b/veilid-core/src/storage_manager/storage_manager_inner.rs
index d593d7a3..d756cbe8 100644
--- a/veilid-core/src/storage_manager/storage_manager_inner.rs
+++ b/veilid-core/src/storage_manager/storage_manager_inner.rs
@@ -1,8 +1,8 @@
 use super::*;
 
 /// Locked structure for storage manager
-#[derive(Default)]
 pub(super) struct StorageManagerInner {
+    unlocked_inner: Arc<StorageManagerUnlockedInner>,
     /// If we are started up
     pub initialized: bool,
     /// Records that have been 'opened' and are not yet closed
@@ -18,15 +18,74 @@ pub(super) struct StorageManagerInner {
 }
 
 impl StorageManagerInner {
-    pub fn open_record_check_existing(
+    pub fn new(unlocked_inner: Arc<StorageManagerUnlockedInner>) -> Self {
+        Self {
+            unlocked_inner,
+            initialized: false,
+            opened_records: Default::default(),
+            local_record_store: Default::default(),
+            remote_record_store: Default::default(),
+            rpc_processor: Default::default(),
+            tick_future: Default::default(),
+        }
+    }
+
+    pub async fn create_new_owned_local_record(
+        &mut self,
+        kind: CryptoKind,
+        schema: DHTSchema,
+        safety_selection: SafetySelection,
+    ) -> Result<(TypedKey, KeyPair), VeilidAPIError> {
+        // Get cryptosystem
+        let Some(vcrypto) = self.unlocked_inner.crypto.get(kind) else {
+            apibail_generic!("unsupported cryptosystem");
+        };
+
+        // Get local record store
+        let Some(local_record_store) = self.local_record_store.as_mut() else {
+            apibail_not_initialized!();
+        };
+
+        // Compile the dht schema
+        let schema_data = schema.compile();
+
+        // New values require a new owner key
+        let owner = vcrypto.generate_keypair();
+
+        // Make a signed value descriptor for this dht value
+        let signed_value_descriptor = SignedValueDescriptor::make_signature(
+            owner.key,
+            schema_data,
+            vcrypto.clone(),
+            owner.secret,
+        )?;
+
+        // Add new local value record
+        let cur_ts = get_aligned_timestamp();
+        let local_record_detail = LocalRecordDetail { safety_selection };
+        let record =
+            Record::<LocalRecordDetail>::new(cur_ts, signed_value_descriptor, local_record_detail)?;
+
+        let dht_key = Self::get_key(vcrypto.clone(), &record);
+        local_record_store.new_record(dht_key, record).await?;
+
+        Ok((dht_key, owner))
+    }
+
+    pub fn open_existing_record(
         &mut self,
         key: TypedKey,
         writer: Option<KeyPair>,
         safety_selection: SafetySelection,
-    ) -> Option<Result<DHTRecordDescriptor, VeilidAPIError>> {
+    ) -> Result<Option<DHTRecordDescriptor>, VeilidAPIError> {
+        // Ensure the record is closed
+        if self.opened_records.contains_key(&key) {
+            apibail_generic!("record is already open and should be closed first");
+        }
+
         // Get local record store
         let Some(local_record_store) = self.local_record_store.as_mut() else {
-            return Some(Err(VeilidAPIError::not_initialized()));
+            apibail_not_initialized!();
         };
 
         // See if we have a local record already or not
@@ -40,7 +99,7 @@ impl StorageManagerInner {
             (r.owner().clone(), r.schema())
         };
         let Some((owner, schema)) = local_record_store.with_record_mut(key, cb) else {
-            return None;
+            return Ok(None);
         };
         // Had local record
 
@@ -62,17 +121,43 @@ impl StorageManagerInner {
 
         // Make DHT Record Descriptor to return
         let descriptor = DHTRecordDescriptor::new(key, owner, owner_secret, schema);
-        Some(Ok(descriptor))
+        Ok(Some(descriptor))
     }
 
-    pub async fn new_local_record(
+    pub async fn open_new_record(
         &mut self,
         key: TypedKey,
+        writer: Option<KeyPair>,
         subkey: ValueSubkey,
-        signed_value_descriptor: SignedValueDescriptor,
-        signed_value_data: Option<SignedValueData>,
+        subkey_result: SubkeyResult,
         safety_selection: SafetySelection,
-    ) -> Result<(), VeilidAPIError> {
+    ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
+        // Ensure the record is closed
+        if self.opened_records.contains_key(&key) {
+            panic!("new record should never be opened at this point");
+        }
+
+        // Must have descriptor
+        let Some(signed_value_descriptor) = subkey_result.descriptor else {
+            // No descriptor for new record, can't store this
+            apibail_generic!("no descriptor");
+        };
+        // Get owner
+        let owner = signed_value_descriptor.owner().clone();
+
+        // If the writer we chose is also the owner, we have the owner secret
+        // Otherwise this is just another subkey writer
+        let owner_secret = if let Some(writer) = writer {
+            if writer.key == owner {
+                Some(writer.secret)
+            } else {
+                None
+            }
+        } else {
+            None
+        };
+        let schema = signed_value_descriptor.schema()?;
+
         // Get local record store
         let Some(local_record_store) = self.local_record_store.as_mut() else {
             apibail_not_initialized!();
@@ -87,17 +172,20 @@ impl StorageManagerInner {
         local_record_store.new_record(key, record).await?;
 
         // If we got a subkey with the getvalue, it has already been validated against the schema, so store it
-        if let Some(signed_value_data) = signed_value_data {
+        if let Some(signed_value_data) = subkey_result.value {
             // Write subkey to local store
             local_record_store
                 .set_subkey(key, subkey, signed_value_data)
                 .await?;
         }
+
         // Write open record
         self.opened_records
             .insert(key, OpenedRecord::new(writer, safety_selection));
 
-        Ok(())
+        // Make DHT Record Descriptor to return
+        let descriptor = DHTRecordDescriptor::new(key, owner, owner_secret, schema);
+        Ok(descriptor)
     }
 
     pub fn close_record(&mut self, key: TypedKey) -> Result<(), VeilidAPIError> {
@@ -184,4 +272,20 @@ impl StorageManagerInner {
 
         Ok(())
     }
+
+    /// # DHT Key = Hash(ownerKeyKind) of: [ ownerKeyValue, schema ]
+    fn get_key<D>(vcrypto: CryptoSystemVersion, record: &Record<D>) -> TypedKey
+    where
+        D: Clone + RkyvArchive + RkyvSerialize<RkyvSerializer>,
+        for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
+        <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
+    {
+        let compiled = record.descriptor().schema_data();
+        let mut hash_data = Vec::<u8>::with_capacity(PUBLIC_KEY_LENGTH + 4 + compiled.len());
+        hash_data.extend_from_slice(&vcrypto.kind().0);
+        hash_data.extend_from_slice(&record.owner().bytes);
+        hash_data.extend_from_slice(compiled);
+        let hash = vcrypto.generate_hash(&hash_data);
+        TypedKey::new(vcrypto.kind(), hash)
+    }
 }

From a3e2dbc74475bf4ca6358c179793177bcdb8b6d6 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Mon, 8 May 2023 22:05:51 -0400
Subject: [PATCH 27/74] checkpoint

---
 veilid-core/src/storage_manager/mod.rs        | 224 ++++++++++++------
 .../storage_manager/storage_manager_inner.rs  | 129 +++++++++-
 .../serialize_helpers/rkyv_range_set_blaze.rs |  12 +-
 veilid-core/src/veilid_api/types/dht/mod.rs   |   2 +
 .../src/veilid_api/types/dht/value_data.rs    |  10 -
 .../types/dht/value_subkey_range_set.rs       |  46 ++++
 6 files changed, 337 insertions(+), 86 deletions(-)
 create mode 100644 veilid-core/src/veilid_api/types/dht/value_subkey_range_set.rs

diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index c390ad80..528e339b 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -61,34 +61,6 @@ impl StorageManager {
         StorageManagerInner::new(unlocked_inner)
     }
 
-    fn local_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
-        let c = config.get();
-        RecordStoreLimits {
-            subkey_cache_size: c.network.dht.local_subkey_cache_size as usize,
-            max_subkey_size: MAX_SUBKEY_SIZE,
-            max_record_total_size: MAX_RECORD_DATA_SIZE,
-            max_records: None,
-            max_subkey_cache_memory_mb: Some(
-                c.network.dht.local_max_subkey_cache_memory_mb as usize,
-            ),
-            max_storage_space_mb: None,
-        }
-    }
-
-    fn remote_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
-        let c = config.get();
-        RecordStoreLimits {
-            subkey_cache_size: c.network.dht.remote_subkey_cache_size as usize,
-            max_subkey_size: MAX_SUBKEY_SIZE,
-            max_record_total_size: MAX_RECORD_DATA_SIZE,
-            max_records: Some(c.network.dht.remote_max_records as usize),
-            max_subkey_cache_memory_mb: Some(
-                c.network.dht.remote_max_subkey_cache_memory_mb as usize,
-            ),
-            max_storage_space_mb: Some(c.network.dht.remote_max_storage_space_mb as usize),
-        }
-    }
-
     pub fn new(
         config: VeilidConfig,
         crypto: Crypto,
@@ -118,39 +90,7 @@ impl StorageManager {
         debug!("startup storage manager");
         let mut inner = self.inner.lock().await;
 
-        let local_limits = Self::local_limits_from_config(self.unlocked_inner.config.clone());
-        let remote_limits = Self::remote_limits_from_config(self.unlocked_inner.config.clone());
-
-        let mut local_record_store = RecordStore::new(
-            self.unlocked_inner.table_store.clone(),
-            "local",
-            local_limits,
-        );
-        local_record_store.init().await?;
-
-        let mut remote_record_store = RecordStore::new(
-            self.unlocked_inner.table_store.clone(),
-            "remote",
-            remote_limits,
-        );
-        remote_record_store.init().await?;
-
-        inner.local_record_store = Some(local_record_store);
-        inner.remote_record_store = Some(remote_record_store);
-
-        // Schedule tick
-        let this = self.clone();
-        let tick_future = interval(1000, move || {
-            let this = this.clone();
-            async move {
-                if let Err(e) = this.tick().await {
-                    warn!("storage manager tick failed: {}", e);
-                }
-            }
-        });
-        inner.tick_future = Some(tick_future);
-
-        inner.initialized = true;
+        inner.init(self.clone()).await?;
 
         Ok(())
     }
@@ -159,12 +99,7 @@ impl StorageManager {
         debug!("starting storage manager shutdown");
 
         let mut inner = self.inner.lock().await;
-
-        // Stop ticker
-        let tick_future = inner.tick_future.take();
-        if let Some(f) = tick_future {
-            f.await;
-        }
+        inner.terminate().await;
 
         // Cancel all tasks
         self.cancel_tasks().await;
@@ -353,14 +288,165 @@ impl StorageManager {
         Ok(Some(subkey_result_value.into_value_data()))
     }
 
+    /// Set the value of a subkey on an opened local record
+    /// Puts changes to the network immediately and may refresh the record if the there is a newer subkey available online
     pub async fn set_value(
         &self,
         key: TypedKey,
         subkey: ValueSubkey,
         data: Vec<u8>,
     ) -> Result<Option<ValueData>, VeilidAPIError> {
-        let inner = self.lock().await?;
-        unimplemented!();
+        let mut inner = self.lock().await?;
+
+        // Get cryptosystem
+        let Some(vcrypto) = self.unlocked_inner.crypto.get(key.kind) else {
+            apibail_generic!("unsupported cryptosystem");
+        };
+
+        let Some(opened_record) = inner.opened_records.remove(&key) else {
+            apibail_generic!("record not open");
+        };
+
+        // If we don't have a writer then we can't write
+        let Some(writer) = opened_record.writer().cloned() else {
+            apibail_generic!("value is not writable");
+        };
+
+        // See if the subkey we are modifying has a last known local value
+        let last_subkey_result = inner.handle_get_local_value(key, subkey, true)?;
+
+        // Get the descriptor and schema for the key
+        let Some(descriptor) = last_subkey_result.descriptor else {
+            apibail_generic!("must have a descriptor");
+        };
+        let schema = descriptor.schema()?;
+
+        // Make new subkey data
+        let value_data = if let Some(signed_value_data) = last_subkey_result.value {
+            let seq = signed_value_data.value_data().seq();
+            ValueData::new_with_seq(seq + 1, data, writer.key)
+        } else {
+            ValueData::new(data, writer.key)
+        };
+
+        // Validate with schema
+        if !schema.check_subkey_value_data(descriptor.owner(), subkey, &value_data) {
+            // Validation failed, ignore this value
+            apibail_generic!("failed schema validation");
+        }
+
+        // Sign the new value data with the writer
+        let signed_value_data = SignedValueData::make_signature(
+            value_data,
+            descriptor.owner(),
+            subkey,
+            vcrypto,
+            writer.secret,
+        )?;
+        let subkey_result = SubkeyResult {
+            value: Some(signed_value_data),
+            descriptor: Some(descriptor)
+        };
+
+        // Get rpc processor and drop mutex so we don't block while getting the value from the network
+        let Some(rpc_processor) = inner.rpc_processor.clone() else {
+            // Offline, just write it locally and return immediately
+            inner
+                .handle_set_local_value(key, subkey, signed_value_data)
+                .await?;
+        };
+
+        // Drop the lock for network access
+        drop(inner);
+        
+        // Use the safety selection we opened the record with
+        let final_subkey_result = self
+            .do_set_value(
+                rpc_processor,
+                key,
+                subkey,
+                opened_record.safety_selection(),
+                subkey_result,
+            )
+            .await?;
+
+        // See if we got a value back
+        let Some(subkey_result_value) = subkey_result.value else {
+            // If we got nothing back then we also had nothing beforehand, return nothing
+            return Ok(None);
+        };
+
+        // If we got a new value back then write it to the opened record
+        if Some(subkey_result_value.value_data().seq()) != opt_last_seq {
+            let mut inner = self.lock().await?;
+            inner
+                .handle_set_local_value(key, subkey, subkey_result_value.clone())
+                .await?;
+        }
+        Ok(Some(subkey_result_value.into_value_data()))
+
+
+
+
+
+
+
+
+
+
+        // Store subkey locally
+        inner
+            .handle_set_local_value(key, subkey, signed_value_data)
+            .await?;
+
+        // Return the existing value if we have one unless we are forcing a refresh
+        if !force_refresh {
+            if let Some(last_subkey_result_value) = last_subkey_result.value {
+                return Ok(Some(last_subkey_result_value.into_value_data()));
+            }
+        }
+
+        // Refresh if we can
+
+        // Get rpc processor and drop mutex so we don't block while getting the value from the network
+        let Some(rpc_processor) = inner.rpc_processor.clone() else {
+            // Offline, try again later
+            apibail_try_again!();
+        };
+
+        // Drop the lock for network access
+        drop(inner);
+
+        // May have last descriptor / value
+        // Use the safety selection we opened the record with
+        let opt_last_seq = last_subkey_result
+            .value
+            .as_ref()
+            .map(|v| v.value_data().seq());
+        let subkey_result = self
+            .do_get_value(
+                rpc_processor,
+                key,
+                subkey,
+                opened_record.safety_selection(),
+                last_subkey_result,
+            )
+            .await?;
+
+        // See if we got a value back
+        let Some(subkey_result_value) = subkey_result.value else {
+            // If we got nothing back then we also had nothing beforehand, return nothing
+            return Ok(None);
+        };
+
+        // If we got a new value back then write it to the opened record
+        if Some(subkey_result_value.value_data().seq()) != opt_last_seq {
+            let mut inner = self.lock().await?;
+            inner
+                .handle_set_local_value(key, subkey, subkey_result_value.clone())
+                .await?;
+        }
+        Ok(Some(subkey_result_value.into_value_data()))
     }
 
     pub async fn watch_values(
diff --git a/veilid-core/src/storage_manager/storage_manager_inner.rs b/veilid-core/src/storage_manager/storage_manager_inner.rs
index d756cbe8..149feb6f 100644
--- a/veilid-core/src/storage_manager/storage_manager_inner.rs
+++ b/veilid-core/src/storage_manager/storage_manager_inner.rs
@@ -11,12 +11,44 @@ pub(super) struct StorageManagerInner {
     pub local_record_store: Option<RecordStore<LocalRecordDetail>>,
     /// Records that have been pushed to this node for distribution by other nodes, that we make an effort to republish
     pub remote_record_store: Option<RecordStore<RemoteRecordDetail>>,
+    /// Record subkeys that have not been pushed to the network because they were written to offline
+    pub offline_subkey_writes: HashMap<TypedKey, ValueSubkeyRangeSet>,
+    /// Storage manager metadata that is persistent, including copy of offline subkey writes
+    pub metadata_db: Option<TableDB>,
     /// RPC processor if it is available
     pub rpc_processor: Option<RPCProcessor>,
     /// Background processing task (not part of attachment manager tick tree so it happens when detached too)
     pub tick_future: Option<SendPinBoxFuture<()>>,
 }
 
+fn local_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
+    let c = config.get();
+    RecordStoreLimits {
+        subkey_cache_size: c.network.dht.local_subkey_cache_size as usize,
+        max_subkey_size: MAX_SUBKEY_SIZE,
+        max_record_total_size: MAX_RECORD_DATA_SIZE,
+        max_records: None,
+        max_subkey_cache_memory_mb: Some(
+            c.network.dht.local_max_subkey_cache_memory_mb as usize,
+        ),
+        max_storage_space_mb: None,
+    }
+}
+
+fn remote_limits_from_config(config: VeilidConfig) -> RecordStoreLimits {
+    let c = config.get();
+    RecordStoreLimits {
+        subkey_cache_size: c.network.dht.remote_subkey_cache_size as usize,
+        max_subkey_size: MAX_SUBKEY_SIZE,
+        max_record_total_size: MAX_RECORD_DATA_SIZE,
+        max_records: Some(c.network.dht.remote_max_records as usize),
+        max_subkey_cache_memory_mb: Some(
+            c.network.dht.remote_max_subkey_cache_memory_mb as usize,
+        ),
+        max_storage_space_mb: Some(c.network.dht.remote_max_storage_space_mb as usize),
+    }
+}
+
 impl StorageManagerInner {
     pub fn new(unlocked_inner: Arc<StorageManagerUnlockedInner>) -> Self {
         Self {
@@ -25,11 +57,106 @@ impl StorageManagerInner {
             opened_records: Default::default(),
             local_record_store: Default::default(),
             remote_record_store: Default::default(),
+            offline_subkey_writes: Default::default(),
+            metadata_db: Default::default(),
             rpc_processor: Default::default(),
             tick_future: Default::default(),
         }
     }
 
+    pub async fn init(&mut self, outer_self: StorageManager) -> EyreResult<()> {
+
+        let metadata_db = self.unlocked_inner
+            .table_store
+            .open(&format!("storage_manager_metadata"), 1)
+            .await?;
+
+        let local_limits = local_limits_from_config(self.unlocked_inner.config.clone());
+        let remote_limits = remote_limits_from_config(self.unlocked_inner.config.clone());
+
+        let mut local_record_store = RecordStore::new(
+            self.unlocked_inner.table_store.clone(),
+            "local",
+            local_limits,
+        );
+        local_record_store.init().await?;
+
+        let mut remote_record_store = RecordStore::new(
+            self.unlocked_inner.table_store.clone(),
+            "remote",
+            remote_limits,
+        );
+        remote_record_store.init().await?;
+
+        self.metadata_db = Some(metadata_db);
+        self.local_record_store = Some(local_record_store);
+        self.remote_record_store = Some(remote_record_store);
+
+        self.load_metadata().await?;
+
+        // Schedule tick
+        let tick_future = interval(1000, move || {
+            let this = outer_self.clone();
+            async move {
+                if let Err(e) = this.tick().await {
+                    log_stor!(warn "storage manager tick failed: {}", e);
+                }
+            }
+        });
+        self.tick_future = Some(tick_future);
+
+        self.initialized = true;
+
+        Ok(())
+    }
+
+    pub async fn terminate(&mut self) {
+
+        // Stop ticker
+        let tick_future = self.tick_future.take();
+        if let Some(f) = tick_future {
+            f.await;
+        }
+
+        // Final flush on record stores
+        if let Some(mut local_record_store) = self.local_record_store.take() {
+            local_record_store.tick().await;
+        }
+        if let Some(mut remote_record_store) = self.remote_record_store.take() {
+            remote_record_store.tick().await;
+        }
+
+        // Save metadata
+        if self.metadata_db.is_some() {
+            if let Err(e) = self.save_metadata().await {
+                log_stor!(error "termination metadata save failed: {}", e); 
+            }
+            self.metadata_db = None;
+        }
+        self.offline_subkey_writes.clear();
+
+        // Mark not initialized
+        self.initialized = false;
+    }
+
+    async fn save_metadata(&mut self) -> EyreResult<()>{
+        if let Some(metadata_db) = &self.metadata_db {
+            let tx = metadata_db.transact();
+            tx.store_rkyv(0, b"offline_subkey_writes", &self.offline_subkey_writes);
+            tx.commit().await.wrap_err("failed to commit")?
+        }
+        Ok(())
+    }
+
+    async fn load_metadata(&mut self) -> EyreResult<()> {
+        if let Some(metadata_db) = &self.metadata_db {
+            self.offline_subkey_writes = metadata_db.load_rkyv(0, b"offline_subkey_writes")?.unwrap_or_default();
+        }
+        Ok(())
+    }
+
+    write offline subkey write flush background task or make a ticket for it and get back to it after the rest of set value
+
     pub async fn create_new_owned_local_record(
         &mut self,
         kind: CryptoKind,
@@ -223,7 +350,7 @@ impl StorageManagerInner {
     ) -> Result<(), VeilidAPIError> {
         // See if it's in the local record store
         let Some(local_record_store) = self.local_record_store.as_mut() else {
-            apibail_not_initialized!();
+            apibail_not_initialized!();                 
         };
 
         // Write subkey to local store
diff --git a/veilid-core/src/veilid_api/serialize_helpers/rkyv_range_set_blaze.rs b/veilid-core/src/veilid_api/serialize_helpers/rkyv_range_set_blaze.rs
index 1acc20f6..6a2c4736 100644
--- a/veilid-core/src/veilid_api/serialize_helpers/rkyv_range_set_blaze.rs
+++ b/veilid-core/src/veilid_api/serialize_helpers/rkyv_range_set_blaze.rs
@@ -52,20 +52,20 @@ where
     D: rkyv::Fallible + ?Sized,
     T: rkyv::Archive + Integer,
     rkyv::Archived<T>: rkyv::Deserialize<T, D>,
-    D::Error: From<String>,
+    // D::Error: From<String>, // xxx this doesn't work
 {
     fn deserialize_with(
         field: &rkyv::Archived<Vec<T>>,
         deserializer: &mut D,
     ) -> Result<RangeSetBlaze<T>, D::Error> {
         let mut out = RangeSetBlaze::<T>::new();
-        if field.len() % 2 == 1 {
-            return Err("invalid range set length".to_owned().into());
-        }
+        // if field.len() % 2 == 1 {
+        //     return Err("invalid range set length".to_owned().into());
+        // }
         let f = field.as_slice();
         for i in 0..field.len() / 2 {
-            let l: T = f[i].deserialize(deserializer)?;
-            let u: T = f[i + 1].deserialize(deserializer)?;
+            let l: T = f[i * 2].deserialize(deserializer)?;
+            let u: T = f[i * 2 + 1].deserialize(deserializer)?;
             out.ranges_insert(l..=u);
         }
         Ok(out)
diff --git a/veilid-core/src/veilid_api/types/dht/mod.rs b/veilid-core/src/veilid_api/types/dht/mod.rs
index 55ca7803..3a830b47 100644
--- a/veilid-core/src/veilid_api/types/dht/mod.rs
+++ b/veilid-core/src/veilid_api/types/dht/mod.rs
@@ -1,12 +1,14 @@
 mod dht_record_descriptor;
 mod schema;
 mod value_data;
+mod value_subkey_range_set;
 
 use super::*;
 
 pub use dht_record_descriptor::*;
 pub use schema::*;
 pub use value_data::*;
+pub use value_subkey_range_set::*;
 
 /// Value subkey
 pub type ValueSubkey = u32;
diff --git a/veilid-core/src/veilid_api/types/dht/value_data.rs b/veilid-core/src/veilid_api/types/dht/value_data.rs
index 0cb34143..734e735d 100644
--- a/veilid-core/src/veilid_api/types/dht/value_data.rs
+++ b/veilid-core/src/veilid_api/types/dht/value_data.rs
@@ -48,16 +48,6 @@ impl ValueData {
         &self.data
     }
 
-    pub fn with_data_mut<F, R>(&mut self, f: F) -> R
-    where
-        F: FnOnce(&mut Vec<u8>) -> R,
-    {
-        let out = f(&mut self.data);
-        assert!(self.data.len() <= Self::MAX_LEN);
-        self.seq += 1;
-        out
-    }
-
     pub fn total_size(&self) -> usize {
         mem::size_of::<Self>() + self.data.len()
     }
diff --git a/veilid-core/src/veilid_api/types/dht/value_subkey_range_set.rs b/veilid-core/src/veilid_api/types/dht/value_subkey_range_set.rs
new file mode 100644
index 00000000..5cac4c93
--- /dev/null
+++ b/veilid-core/src/veilid_api/types/dht/value_subkey_range_set.rs
@@ -0,0 +1,46 @@
+use super::*;
+use core::ops::{Deref, DerefMut};
+use range_set_blaze::*;
+
+#[derive(
+    Clone,
+    Debug,
+    Default,
+    PartialOrd,
+    PartialEq,
+    Eq,
+    Ord,
+    Serialize,
+    Deserialize,
+    RkyvArchive,
+    RkyvSerialize,
+    RkyvDeserialize,
+)]
+#[archive_attr(repr(C), derive(CheckBytes))]
+pub struct ValueSubkeyRangeSet {
+    #[with(RkyvRangeSetBlaze)]
+    #[serde(with = "serialize_range_set_blaze")]
+    data: RangeSetBlaze<ValueSubkey>,
+}
+
+impl ValueSubkeyRangeSet {
+    pub fn new() -> Self {
+        Self {
+            data: Default::default(),
+        }
+    }
+}
+
+impl Deref for ValueSubkeyRangeSet {
+    type Target = RangeSetBlaze<ValueSubkey>;
+
+    fn deref(&self) -> &Self::Target {
+        &self.data
+    }
+}
+
+impl DerefMut for ValueSubkeyRangeSet {
+    fn deref_mut(&mut self) -> &mut Self::Target {
+        &mut self.data
+    }
+}

From 734606b6ad90ce37e4d27eb26f7f53740cd5eeec Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Wed, 10 May 2023 10:44:48 -0400
Subject: [PATCH 28/74] set value

---
 veilid-core/proto/veilid.capnp                |   2 +-
 .../src/intf/native/protected_store.rs        |   5 +-
 veilid-core/src/intf/table_db.rs              |   7 +-
 veilid-core/src/lib.rs                        |   8 -
 .../coders/operations/operation_app_call.rs   |  13 +-
 .../operations/operation_app_message.rs       |   6 +-
 .../coders/operations/operation_find_node.rs  |  12 +-
 .../coders/operations/operation_get_value.rs  |  36 +--
 .../operations/operation_return_receipt.rs    |   6 +-
 .../coders/operations/operation_set_value.rs  |  63 +++--
 .../coders/operations/operation_signal.rs     |   6 +-
 .../coders/operations/operation_status.rs     |  18 +-
 .../operation_validate_dial_info.rs           |  18 +-
 .../src/rpc_processor/rpc_find_node.rs        |   5 +-
 .../src/rpc_processor/rpc_get_value.rs        |   8 +-
 .../src/rpc_processor/rpc_set_value.rs        | 146 +++++++++++-
 veilid-core/src/rpc_processor/rpc_status.rs   |  27 ++-
 .../{do_get_value.rs => get_value.rs}         |  18 +-
 veilid-core/src/storage_manager/mod.rs        | 105 ++------
 .../src/storage_manager/record_store.rs       |  14 +-
 veilid-core/src/storage_manager/set_value.rs  | 225 ++++++++++++++++++
 .../storage_manager/storage_manager_inner.rs  |  27 ++-
 .../types/local_record_detail.rs              |   2 +-
 .../src/storage_manager/types/record.rs       |   8 +-
 .../src/veilid_api/serialize_helpers/mod.rs   |  29 +--
 .../serialize_helpers/rkyv_range_set_blaze.rs |   8 +-
 .../serialize_helpers/veilid_rkyv.rs          | 151 ++++++++++++
 .../types/dht/value_subkey_range_set.rs       |   5 +
 28 files changed, 716 insertions(+), 262 deletions(-)
 rename veilid-core/src/storage_manager/{do_get_value.rs => get_value.rs} (91%)
 create mode 100644 veilid-core/src/storage_manager/set_value.rs
 create mode 100644 veilid-core/src/veilid_api/serialize_helpers/veilid_rkyv.rs

diff --git a/veilid-core/proto/veilid.capnp b/veilid-core/proto/veilid.capnp
index 344a5128..2fa813b6 100644
--- a/veilid-core/proto/veilid.capnp
+++ b/veilid-core/proto/veilid.capnp
@@ -359,7 +359,7 @@ struct OperationSetValueQ @0xbac06191ff8bdbc5 {
 }
 
 struct OperationSetValueA @0x9378d0732dc95be2 {
-    set                     @0  :Bool;                  # true if the value was accepted
+    set                     @0  :Bool;                  # true if the set was close enough to be set
     value                   @1  :SignedValueData;       # optional: the current value at the key if the set seq number was lower or equal to what was there before
     peers                   @2  :List(PeerInfo);        # returned 'closer peer' information on either success or failure
 }
diff --git a/veilid-core/src/intf/native/protected_store.rs b/veilid-core/src/intf/native/protected_store.rs
index 47176ecd..5d1b9a28 100644
--- a/veilid-core/src/intf/native/protected_store.rs
+++ b/veilid-core/src/intf/native/protected_store.rs
@@ -152,7 +152,7 @@ impl ProtectedStore {
     pub async fn save_user_secret_rkyv<K, T>(&self, key: K, value: &T) -> EyreResult<bool>
     where
         K: AsRef<str> + fmt::Debug,
-        T: RkyvSerialize<rkyv::ser::serializers::AllocSerializer<1024>>,
+        T: RkyvSerialize<DefaultVeilidRkyvSerializer>,
     {
         let v = to_rkyv(value)?;
         self.save_user_secret(key, &v).await
@@ -175,8 +175,7 @@ impl ProtectedStore {
         T: RkyvArchive,
         <T as RkyvArchive>::Archived:
             for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
-        <T as RkyvArchive>::Archived:
-            RkyvDeserialize<T, rkyv::de::deserializers::SharedDeserializeMap>,
+        <T as RkyvArchive>::Archived: RkyvDeserialize<T, VeilidSharedDeserializeMap>,
     {
         let out = self.load_user_secret(key).await?;
         let b = match out {
diff --git a/veilid-core/src/intf/table_db.rs b/veilid-core/src/intf/table_db.rs
index 485760f1..f07e7aaa 100644
--- a/veilid-core/src/intf/table_db.rs
+++ b/veilid-core/src/intf/table_db.rs
@@ -92,7 +92,7 @@ impl TableDB {
     /// Store a key in rkyv format with a value in a column in the TableDB. Performs a single transaction immediately.
     pub async fn store_rkyv<T>(&self, col: u32, key: &[u8], value: &T) -> EyreResult<()>
     where
-        T: RkyvSerialize<rkyv::ser::serializers::AllocSerializer<1024>>,
+        T: RkyvSerialize<DefaultVeilidRkyvSerializer>,
     {
         let v = to_rkyv(value)?;
 
@@ -127,8 +127,7 @@ impl TableDB {
         T: RkyvArchive,
         <T as RkyvArchive>::Archived:
             for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
-        <T as RkyvArchive>::Archived:
-            RkyvDeserialize<T, rkyv::de::deserializers::SharedDeserializeMap>,
+        <T as RkyvArchive>::Archived: RkyvDeserialize<T, VeilidSharedDeserializeMap>,
     {
         let db = self.inner.lock().database.clone();
         let out = db.get(col, key).wrap_err("failed to get key")?;
@@ -240,7 +239,7 @@ impl TableDBTransaction {
     /// Store a key in rkyv format with a value in a column in the TableDB
     pub fn store_rkyv<T>(&self, col: u32, key: &[u8], value: &T) -> EyreResult<()>
     where
-        T: RkyvSerialize<rkyv::ser::serializers::AllocSerializer<1024>>,
+        T: RkyvSerialize<DefaultVeilidRkyvSerializer>,
     {
         let v = to_rkyv(value)?;
         let mut inner = self.inner.lock();
diff --git a/veilid-core/src/lib.rs b/veilid-core/src/lib.rs
index 1a446dbb..b3381a5b 100644
--- a/veilid-core/src/lib.rs
+++ b/veilid-core/src/lib.rs
@@ -45,14 +45,6 @@ use rkyv::{
     bytecheck, bytecheck::CheckBytes, de::deserializers::SharedDeserializeMap, with::Skip,
     Archive as RkyvArchive, Deserialize as RkyvDeserialize, Serialize as RkyvSerialize,
 };
-type RkyvSerializer = rkyv::ser::serializers::CompositeSerializer<
-    rkyv::ser::serializers::AlignedSerializer<rkyv::AlignedVec>,
-    rkyv::ser::serializers::FallbackScratch<
-        rkyv::ser::serializers::HeapScratch<1024>,
-        rkyv::ser::serializers::AllocScratch,
-    >,
-    rkyv::ser::serializers::SharedSerializeMap,
->;
 type RkyvDefaultValidator<'t> = rkyv::validation::validators::DefaultValidator<'t>;
 use serde::*;
 
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_app_call.rs b/veilid-core/src/rpc_processor/coders/operations/operation_app_call.rs
index ae84a767..ef996b95 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_app_call.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_app_call.rs
@@ -19,9 +19,9 @@ impl RPCOperationAppCallQ {
         Ok(())
     }
 
-    pub fn message(&self) -> &[u8] {
-        &self.message
-    }
+    // pub fn message(&self) -> &[u8] {
+    //     &self.message
+    // }
 
     pub fn destructure(self) -> Vec<u8> {
         self.message
@@ -62,9 +62,9 @@ impl RPCOperationAppCallA {
         Ok(())
     }
 
-    pub fn message(&self) -> &[u8] {
-        &self.message
-    }
+    // pub fn message(&self) -> &[u8] {
+    //     &self.message
+    // }
 
     pub fn destructure(self) -> Vec<u8> {
         self.message
@@ -86,5 +86,4 @@ impl RPCOperationAppCallA {
         builder.set_message(&self.message);
         Ok(())
     }
-
 }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_app_message.rs b/veilid-core/src/rpc_processor/coders/operations/operation_app_message.rs
index a7456d63..b25ef5f6 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_app_message.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_app_message.rs
@@ -19,9 +19,9 @@ impl RPCOperationAppMessage {
         Ok(())
     }
 
-    pub fn message(&self) -> &[u8] {
-        &self.message
-    }
+    // pub fn message(&self) -> &[u8] {
+    //     &self.message
+    // }
     pub fn destructure(self) -> Vec<u8> {
         self.message
     }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_find_node.rs b/veilid-core/src/rpc_processor/coders/operations/operation_find_node.rs
index 046cb8dc..607dacbc 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_find_node.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_find_node.rs
@@ -15,9 +15,9 @@ impl RPCOperationFindNodeQ {
         Ok(())
     }
 
-    pub fn node_id(&self) -> &TypedKey {
-        &self.node_id
-    }
+    // pub fn node_id(&self) -> &TypedKey {
+    //     &self.node_id
+    // }
 
     pub fn destructure(self) -> TypedKey {
         self.node_id
@@ -57,9 +57,9 @@ impl RPCOperationFindNodeA {
         Ok(())
     }
 
-    pub fn peers(&self) -> &[PeerInfo] {
-        &self.peers
-    }
+    // pub fn peers(&self) -> &[PeerInfo] {
+    //     &self.peers
+    // }
 
     pub fn destructure(self) -> Vec<PeerInfo> {
         self.peers
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs b/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
index e46bf5d3..4261e461 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_get_value.rs
@@ -39,15 +39,15 @@ impl RPCOperationGetValueQ {
         Ok(())
     }
 
-    pub fn key(&self) -> &TypedKey {
-        &self.key
-    }
-    pub fn subkey(&self) -> ValueSubkey {
-        self.subkey
-    }
-    pub fn want_descriptor(&self) -> bool {
-        self.want_descriptor
-    }
+    // pub fn key(&self) -> &TypedKey {
+    //     &self.key
+    // }
+    // pub fn subkey(&self) -> ValueSubkey {
+    //     self.subkey
+    // }
+    // pub fn want_descriptor(&self) -> bool {
+    //     self.want_descriptor
+    // }
     pub fn destructure(self) -> (TypedKey, ValueSubkey, bool) {
         (self.key, self.subkey, self.want_descriptor)
     }
@@ -155,15 +155,15 @@ impl RPCOperationGetValueA {
         Ok(())
     }
 
-    pub fn value(&self) -> Option<&SignedValueData> {
-        self.value.as_ref()
-    }
-    pub fn peers(&self) -> &[PeerInfo] {
-        &self.peers
-    }
-    pub fn descriptor(&self) -> Option<&SignedValueDescriptor> {
-        self.descriptor.as_ref()
-    }
+    // pub fn value(&self) -> Option<&SignedValueData> {
+    //     self.value.as_ref()
+    // }
+    // pub fn peers(&self) -> &[PeerInfo] {
+    //     &self.peers
+    // }
+    // pub fn descriptor(&self) -> Option<&SignedValueDescriptor> {
+    //     self.descriptor.as_ref()
+    // }
     pub fn destructure(
         self,
     ) -> (
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_return_receipt.rs b/veilid-core/src/rpc_processor/coders/operations/operation_return_receipt.rs
index 6edcae84..f049ab1a 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_return_receipt.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_return_receipt.rs
@@ -20,9 +20,9 @@ impl RPCOperationReturnReceipt {
         Ok(())
     }
 
-    pub fn receipt(&self) -> &[u8] {
-        &self.receipt
-    }
+    // pub fn receipt(&self) -> &[u8] {
+    //     &self.receipt
+    // }
 
     pub fn destructure(self) -> Vec<u8> {
         self.receipt
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_set_value.rs b/veilid-core/src/rpc_processor/coders/operations/operation_set_value.rs
index f94095df..c7fa4cf2 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_set_value.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_set_value.rs
@@ -5,14 +5,15 @@ const MAX_SET_VALUE_A_PEERS_LEN: usize = 20;
 
 #[derive(Clone)]
 pub struct ValidateSetValueContext {
-    last_descriptor: Option<SignedValueDescriptor>,
-    subkey: ValueSubkey,
-    vcrypto: CryptoSystemVersion,
+    pub descriptor: SignedValueDescriptor,
+    pub subkey: ValueSubkey,
+    pub vcrypto: CryptoSystemVersion,
 }
+
 impl fmt::Debug for ValidateSetValueContext {
     fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
         f.debug_struct("ValidateSetValueContext")
-            .field("last_descriptor", &self.last_descriptor)
+            .field("descriptor", &self.descriptor)
             .field("subkey", &self.subkey)
             .field("vcrypto", &self.vcrypto.kind().to_string())
             .finish()
@@ -45,21 +46,21 @@ impl RPCOperationSetValueQ {
         Ok(())
     }
 
-    pub fn key(&self) -> &TypedKey {
-        &self.key
-    }
+    // pub fn key(&self) -> &TypedKey {
+    //     &self.key
+    // }
 
-    pub fn subkey(&self) -> ValueSubkey {
-        self.subkey
-    }
+    // pub fn subkey(&self) -> ValueSubkey {
+    //     self.subkey
+    // }
 
-    pub fn value(&self) -> &SignedValueData {
-        &self.value
-    }
+    // pub fn value(&self) -> &SignedValueData {
+    //     &self.value
+    // }
 
-    pub fn descriptor(&self) -> Option<&SignedValueDescriptor> {
-        self.descriptor.as_ref()
-    }
+    // pub fn descriptor(&self) -> Option<&SignedValueDescriptor> {
+    //     self.descriptor.as_ref()
+    // }
     pub fn destructure(
         self,
     ) -> (
@@ -137,22 +138,16 @@ impl RPCOperationSetValueA {
         };
 
         if let Some(value) = &self.value {
-            // Get descriptor to validate with
-            let Some(descriptor) = &set_value_context.last_descriptor else {
-                return Err(RPCError::protocol(
-                    "no last descriptor, requires a descriptor",
-                ));
-            };
-
             // Ensure the descriptor itself validates
-            descriptor
+            set_value_context
+                .descriptor
                 .validate(set_value_context.vcrypto.clone())
                 .map_err(RPCError::protocol)?;
 
             // And the signed value data
             value
                 .validate(
-                    descriptor.owner(),
+                    set_value_context.descriptor.owner(),
                     set_value_context.subkey,
                     set_value_context.vcrypto.clone(),
                 )
@@ -163,15 +158,15 @@ impl RPCOperationSetValueA {
         Ok(())
     }
 
-    pub fn set(&self) -> bool {
-        self.set
-    }
-    pub fn value(&self) -> Option<&SignedValueData> {
-        self.value.as_ref()
-    }
-    pub fn peers(&self) -> &[PeerInfo] {
-        &self.peers
-    }
+    // pub fn set(&self) -> bool {
+    //     self.set
+    // }
+    // pub fn value(&self) -> Option<&SignedValueData> {
+    //     self.value.as_ref()
+    // }
+    // pub fn peers(&self) -> &[PeerInfo] {
+    //     &self.peers
+    // }
     pub fn destructure(self) -> (bool, Option<SignedValueData>, Vec<PeerInfo>) {
         (self.set, self.value, self.peers)
     }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_signal.rs b/veilid-core/src/rpc_processor/coders/operations/operation_signal.rs
index 29311316..0b5ec38c 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_signal.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_signal.rs
@@ -12,9 +12,9 @@ impl RPCOperationSignal {
     pub fn validate(&mut self, validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         self.signal_info.validate(validate_context.crypto.clone())
     }
-    pub fn signal_info(&self) -> &SignalInfo {
-        &self.signal_info
-    }
+    // pub fn signal_info(&self) -> &SignalInfo {
+    //     &self.signal_info
+    // }
     pub fn destructure(self) -> SignalInfo {
         self.signal_info
     }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_status.rs b/veilid-core/src/rpc_processor/coders/operations/operation_status.rs
index 3c9853b4..99cb5985 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_status.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_status.rs
@@ -13,9 +13,9 @@ impl RPCOperationStatusQ {
         Ok(())
     }
 
-    pub fn node_status(&self) -> Option<&NodeStatus> {
-        self.node_status.as_ref()
-    }
+    // pub fn node_status(&self) -> Option<&NodeStatus> {
+    //     self.node_status.as_ref()
+    // }
     pub fn destructure(self) -> Option<NodeStatus> {
         self.node_status
     }
@@ -60,12 +60,12 @@ impl RPCOperationStatusA {
         Ok(())
     }
 
-    pub fn node_status(&self) -> Option<&NodeStatus> {
-        self.node_status.as_ref()
-    }
-    pub fn sender_info(&self) -> Option<&SenderInfo> {
-        self.sender_info.as_ref()
-    }
+    // pub fn node_status(&self) -> Option<&NodeStatus> {
+    //     self.node_status.as_ref()
+    // }
+    // pub fn sender_info(&self) -> Option<&SenderInfo> {
+    //     self.sender_info.as_ref()
+    // }
     pub fn destructure(self) -> (Option<NodeStatus>, Option<SenderInfo>) {
         (self.node_status, self.sender_info)
     }
diff --git a/veilid-core/src/rpc_processor/coders/operations/operation_validate_dial_info.rs b/veilid-core/src/rpc_processor/coders/operations/operation_validate_dial_info.rs
index 87fac84f..fa76e1bd 100644
--- a/veilid-core/src/rpc_processor/coders/operations/operation_validate_dial_info.rs
+++ b/veilid-core/src/rpc_processor/coders/operations/operation_validate_dial_info.rs
@@ -30,15 +30,15 @@ impl RPCOperationValidateDialInfo {
     pub fn validate(&mut self, _validate_context: &RPCValidateContext) -> Result<(), RPCError> {
         Ok(())
     }
-    pub fn dial_info(&self) -> &DialInfo {
-        &self.dial_info
-    }
-    pub fn receipt(&self) -> &[u8] {
-        &self.receipt
-    }
-    pub fn redirect(&self) -> bool {
-        self.redirect
-    }
+    // pub fn dial_info(&self) -> &DialInfo {
+    //     &self.dial_info
+    // }
+    // pub fn receipt(&self) -> &[u8] {
+    //     &self.receipt
+    // }
+    // pub fn redirect(&self) -> bool {
+    //     self.redirect
+    // }
     pub fn destructure(self) -> (DialInfo, Vec<u8>, bool) {
         (self.dial_info, self.receipt, self.redirect)
     }
diff --git a/veilid-core/src/rpc_processor/rpc_find_node.rs b/veilid-core/src/rpc_processor/rpc_find_node.rs
index 07dcc1c2..fe2b416f 100644
--- a/veilid-core/src/rpc_processor/rpc_find_node.rs
+++ b/veilid-core/src/rpc_processor/rpc_find_node.rs
@@ -52,7 +52,9 @@ impl RPCProcessor {
         };
 
         // Verify peers are in the correct peer scope
-        for peer_info in find_node_a.peers() {
+        let peers = find_node_a.destructure();
+
+        for peer_info in &peers {
             if !self.filter_node_info(RoutingDomain::PublicInternet, peer_info.signed_node_info()) {
                 return Err(RPCError::invalid_format(
                     "find_node response has invalid peer scope",
@@ -60,7 +62,6 @@ impl RPCProcessor {
             }
         }
 
-        let peers = find_node_a.destructure();
         Ok(NetworkResult::value(Answer::new(latency, peers)))
     }
 
diff --git a/veilid-core/src/rpc_processor/rpc_get_value.rs b/veilid-core/src/rpc_processor/rpc_get_value.rs
index 26b45861..7e68b172 100644
--- a/veilid-core/src/rpc_processor/rpc_get_value.rs
+++ b/veilid-core/src/rpc_processor/rpc_get_value.rs
@@ -45,7 +45,7 @@ impl RPCProcessor {
             return Err(RPCError::internal("unsupported cryptosystem"));
         };
 
-        // Send the app call question
+        // Send the getvalue question
         let question_context = QuestionContext::GetValue(ValidateGetValueContext {
             last_descriptor,
             subkey,
@@ -119,10 +119,10 @@ impl RPCProcessor {
 
         // See if we have this record ourselves
         let storage_manager = self.storage_manager();
-        let subkey_result = storage_manager
-            .handle_get_value(key, subkey, want_descriptor)
+        let subkey_result = network_result_try!(storage_manager
+            .inbound_get_value(key, subkey, want_descriptor)
             .await
-            .map_err(RPCError::internal)?;
+            .map_err(RPCError::internal)?);
 
         // Make GetValue answer
         let get_value_a = RPCOperationGetValueA::new(
diff --git a/veilid-core/src/rpc_processor/rpc_set_value.rs b/veilid-core/src/rpc_processor/rpc_set_value.rs
index 2f195412..cf4a61be 100644
--- a/veilid-core/src/rpc_processor/rpc_set_value.rs
+++ b/veilid-core/src/rpc_processor/rpc_set_value.rs
@@ -1,12 +1,154 @@
 use super::*;
 
+#[derive(Clone, Debug)]
+pub struct SetValueAnswer {
+    pub set: bool,
+    pub value: Option<SignedValueData>,
+    pub peers: Vec<PeerInfo>,
+}
+
 impl RPCProcessor {
+    /// Sends a set value request and wait for response
+    /// Can be sent via all methods including relays
+    /// Safety routes may be used, but never private routes.
+    /// Because this leaks information about the identity of the node itself,
+    /// replying to this request received over a private route will leak
+    /// the identity of the node and defeat the private route.
+    #[instrument(level = "trace", skip(self), ret, err)]
+    pub async fn rpc_call_set_value(
+        self,
+        dest: Destination,
+        key: TypedKey,
+        subkey: ValueSubkey,
+        value: SignedValueData,
+        descriptor: SignedValueDescriptor,
+        send_descriptor: bool,
+    ) -> Result<NetworkResult<Answer<SetValueAnswer>>, RPCError> {
+        // Ensure destination never has a private route
+        if matches!(
+            dest,
+            Destination::PrivateRoute {
+                private_route: _,
+                safety_selection: _
+            }
+        ) {
+            return Err(RPCError::internal(
+                "Never send set value requests over private routes",
+            ));
+        }
+
+        let set_value_q = RPCOperationSetValueQ::new(
+            key,
+            subkey,
+            value,
+            if send_descriptor {
+                Some(descriptor.clone())
+            } else {
+                None
+            },
+        );
+        let question = RPCQuestion::new(
+            network_result_try!(self.get_destination_respond_to(&dest)?),
+            RPCQuestionDetail::SetValueQ(set_value_q),
+        );
+        let Some(vcrypto) = self.crypto.get(key.kind) else {
+            return Err(RPCError::internal("unsupported cryptosystem"));
+        };
+
+        // Send the setvalue question
+        let question_context = QuestionContext::SetValue(ValidateSetValueContext {
+            descriptor,
+            subkey,
+            vcrypto,
+        });
+
+        let waitable_reply = network_result_try!(
+            self.question(dest, question, Some(question_context))
+                .await?
+        );
+
+        // Wait for reply
+        let (msg, latency) = match self.wait_for_reply(waitable_reply).await? {
+            TimeoutOr::Timeout => return Ok(NetworkResult::Timeout),
+            TimeoutOr::Value(v) => v,
+        };
+
+        // Get the right answer type
+        let (_, _, _, kind) = msg.operation.destructure();
+        let set_value_a = match kind {
+            RPCOperationKind::Answer(a) => match a.destructure() {
+                RPCAnswerDetail::SetValueA(a) => a,
+                _ => return Err(RPCError::invalid_format("not a setvalue answer")),
+            },
+            _ => return Err(RPCError::invalid_format("not an answer")),
+        };
+
+        let (set, value, peers) = set_value_a.destructure();
+
+        Ok(NetworkResult::value(Answer::new(
+            latency,
+            SetValueAnswer { set, value, peers },
+        )))
+    }
+
     #[instrument(level = "trace", skip(self, msg), fields(msg.operation.op_id), ret, err)]
     pub(crate) async fn process_set_value_q(
         &self,
         msg: RPCMessage,
     ) -> Result<NetworkResult<()>, RPCError> {
-        // tracing::Span::current().record("res", &tracing::field::display(res));
-        Err(RPCError::unimplemented("process_set_value_q"))
+        // Ensure this never came over a private route, safety route is okay though
+        match &msg.header.detail {
+            RPCMessageHeaderDetail::Direct(_) | RPCMessageHeaderDetail::SafetyRouted(_) => {}
+            RPCMessageHeaderDetail::PrivateRouted(_) => {
+                return Ok(NetworkResult::invalid_message(
+                    "not processing set value request over private route",
+                ))
+            }
+        }
+
+        // Get the question
+        let kind = msg.operation.kind().clone();
+        let set_value_q = match kind {
+            RPCOperationKind::Question(q) => match q.destructure() {
+                (_, RPCQuestionDetail::SetValueQ(q)) => q,
+                _ => panic!("not a setvalue question"),
+            },
+            _ => panic!("not a question"),
+        };
+
+        // Destructure
+        let (key, subkey, value, descriptor) = set_value_q.destructure();
+
+        // Get the nodes that we know about that are closer to the the key than our own node
+        let routing_table = self.routing_table();
+        let closer_to_key_peers = network_result_try!(routing_table.find_peers_closer_to_key(key));
+
+        // If there are less than 'set_value_count' peers that are closer, then store here too
+        let set_value_count = {
+            let c = self.config.get();
+            c.network.dht.set_value_fanout as usize
+        };
+        let (set, new_value) = if closer_to_key_peers.len() >= set_value_count {
+            // Not close enough
+            (false, None)
+        } else {
+            // Close enough, lets set it
+
+            // Save the subkey, creating a new record if necessary
+            let storage_manager = self.storage_manager();
+            let new_value = network_result_try!(storage_manager
+                .inbound_set_value(key, subkey, value, descriptor)
+                .await
+                .map_err(RPCError::internal)?);
+
+            (true, new_value)
+        };
+
+        // Make SetValue answer
+        let set_value_a = RPCOperationSetValueA::new(set, new_value, closer_to_key_peers)?;
+
+        // Send SetValue answer
+        self.answer(msg, RPCAnswer::new(RPCAnswerDetail::SetValueA(set_value_a)))
+            .await
     }
 }
diff --git a/veilid-core/src/rpc_processor/rpc_status.rs b/veilid-core/src/rpc_processor/rpc_status.rs
index cedccf5c..f45ea125 100644
--- a/veilid-core/src/rpc_processor/rpc_status.rs
+++ b/veilid-core/src/rpc_processor/rpc_status.rs
@@ -96,20 +96,21 @@ impl RPCProcessor {
             },
             _ => return Err(RPCError::invalid_format("not an answer")),
         };
+        let (a_node_status, sender_info) = status_a.destructure();
 
         // Ensure the returned node status is the kind for the routing domain we asked for
         if let Some(target_nr) = opt_target_nr {
-            if let Some(node_status) = status_a.node_status() {
+            if let Some(a_node_status) = a_node_status {
                 match routing_domain {
                     RoutingDomain::PublicInternet => {
-                        if !matches!(node_status, NodeStatus::PublicInternet(_)) {
+                        if !matches!(a_node_status, NodeStatus::PublicInternet(_)) {
                             return Ok(NetworkResult::invalid_message(
                                 "node status doesn't match PublicInternet routing domain",
                             ));
                         }
                     }
                     RoutingDomain::LocalNetwork => {
-                        if !matches!(node_status, NodeStatus::LocalNetwork(_)) {
+                        if !matches!(a_node_status, NodeStatus::LocalNetwork(_)) {
                             return Ok(NetworkResult::invalid_message(
                                 "node status doesn't match LocalNetwork routing domain",
                             ));
@@ -118,7 +119,7 @@ impl RPCProcessor {
                 }
 
                 // Update latest node status in routing table
-                target_nr.update_node_status(node_status.clone());
+                target_nr.update_node_status(a_node_status.clone());
             }
         }
 
@@ -132,7 +133,7 @@ impl RPCProcessor {
                 safety_selection,
             } => {
                 if matches!(safety_selection, SafetySelection::Unsafe(_)) {
-                    if let Some(sender_info) = status_a.sender_info() {
+                    if let Some(sender_info) = sender_info {
                         match send_data_kind {
                             SendDataKind::Direct(connection_descriptor) => {
                                 // Directly requested status that actually gets sent directly and not over a relay will tell us what our IP address appears as
@@ -186,13 +187,15 @@ impl RPCProcessor {
         msg: RPCMessage,
     ) -> Result<NetworkResult<()>, RPCError> {
         // Get the question
-        let status_q = match msg.operation.kind() {
-            RPCOperationKind::Question(q) => match q.detail() {
-                RPCQuestionDetail::StatusQ(q) => q,
+        let kind = msg.operation.kind().clone();
+        let status_q = match kind {
+            RPCOperationKind::Question(q) => match q.destructure() {
+                (_, RPCQuestionDetail::StatusQ(q)) => q,
                 _ => panic!("not a status question"),
             },
             _ => panic!("not a question"),
         };
+        let q_node_status = status_q.destructure();
 
         let (node_status, sender_info) = match &msg.header.detail {
             RPCMessageHeaderDetail::Direct(detail) => {
@@ -200,17 +203,17 @@ impl RPCProcessor {
                 let routing_domain = detail.routing_domain;
 
                 // Ensure the node status from the question is the kind for the routing domain we received the request in
-                if let Some(node_status) = status_q.node_status() {
+                if let Some(q_node_status) = q_node_status {
                     match routing_domain {
                         RoutingDomain::PublicInternet => {
-                            if !matches!(node_status, NodeStatus::PublicInternet(_)) {
+                            if !matches!(q_node_status, NodeStatus::PublicInternet(_)) {
                                 return Ok(NetworkResult::invalid_message(
                                     "node status doesn't match PublicInternet routing domain",
                                 ));
                             }
                         }
                         RoutingDomain::LocalNetwork => {
-                            if !matches!(node_status, NodeStatus::LocalNetwork(_)) {
+                            if !matches!(q_node_status, NodeStatus::LocalNetwork(_)) {
                                 return Ok(NetworkResult::invalid_message(
                                     "node status doesn't match LocalNetwork routing domain",
                                 ));
@@ -221,7 +224,7 @@ impl RPCProcessor {
                     // update node status for the requesting node to our routing table
                     if let Some(sender_nr) = msg.opt_sender_nr.clone() {
                         // Update latest node status in routing table for the statusq sender
-                        sender_nr.update_node_status(node_status.clone());
+                        sender_nr.update_node_status(q_node_status.clone());
                     }
                 }
 
diff --git a/veilid-core/src/storage_manager/do_get_value.rs b/veilid-core/src/storage_manager/get_value.rs
similarity index 91%
rename from veilid-core/src/storage_manager/do_get_value.rs
rename to veilid-core/src/storage_manager/get_value.rs
index 1e1f0138..7130e674 100644
--- a/veilid-core/src/storage_manager/do_get_value.rs
+++ b/veilid-core/src/storage_manager/get_value.rs
@@ -15,7 +15,7 @@ struct DoGetValueContext {
 impl StorageManager {
 
     /// Perform a 'get value' query on the network
-    pub async fn do_get_value(
+    pub async fn outbound_get_value(
         &self,
         rpc_processor: RPCProcessor,
         key: TypedKey,
@@ -116,8 +116,9 @@ impl StorageManager {
                             // Increase the consensus count for the existing value
                             ctx.value_count += 1;
                         } else if new_seq > prior_seq {
-                            // If the sequence number is greater, go with it
+                            // If the sequence number is greater, start over with the new value
                             ctx.value = Some(value);
+                            // One node has show us this value so far
                             ctx.value_count = 1;
                         } else {
                             // If the sequence number is older, ignore it
@@ -174,8 +175,17 @@ impl StorageManager {
     }
 
     /// Handle a recieved 'Get Value' query
-    pub async fn handle_get_value(&self, key: TypedKey, subkey: ValueSubkey, want_descriptor: bool) -> Result<SubkeyResult, VeilidAPIError> {
+    pub async fn inbound_get_value(&self, key: TypedKey, subkey: ValueSubkey, want_descriptor: bool) -> Result<NetworkResult<SubkeyResult>, VeilidAPIError> {
         let mut inner = self.lock().await?;
-        inner.handle_get_remote_value(key, subkey, want_descriptor)
+        let res = match inner.handle_get_remote_value(key, subkey, want_descriptor) {            
+            Ok(res) => res,
+            Err(VeilidAPIError::Internal { message }) => {
+                apibail_internal!(message);
+            },
+            Err(e) => {
+                return Ok(NetworkResult::invalid_message(e));
+            },
+        };
+        Ok(NetworkResult::value(res))
     }
 }
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index 528e339b..5e8b4fb5 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -1,7 +1,8 @@
-mod do_get_value;
+mod get_value;
 mod keys;
 mod record_store;
 mod record_store_limits;
+mod set_value;
 mod storage_manager_inner;
 mod tasks;
 mod types;
@@ -88,8 +89,8 @@ impl StorageManager {
     #[instrument(level = "debug", skip_all, err)]
     pub async fn init(&self) -> EyreResult<()> {
         debug!("startup storage manager");
-        let mut inner = self.inner.lock().await;
 
+        let mut inner = self.inner.lock().await;
         inner.init(self.clone()).await?;
 
         Ok(())
@@ -175,7 +176,7 @@ impl StorageManager {
         // Use the safety selection we opened the record with
         let subkey: ValueSubkey = 0;
         let subkey_result = self
-            .do_get_value(
+            .outbound_get_value(
                 rpc_processor,
                 key,
                 subkey,
@@ -224,6 +225,8 @@ impl StorageManager {
 
     /// Get the value of a subkey from an opened local record
     /// may refresh the record, and will if it is forced to or the subkey is not available locally yet
+    /// Returns Ok(None) if no value was found
+    /// Returns Ok(Some(value)) is a value was found online or locally
     pub async fn get_value(
         &self,
         key: TypedKey,
@@ -263,7 +266,7 @@ impl StorageManager {
             .as_ref()
             .map(|v| v.value_data().seq());
         let subkey_result = self
-            .do_get_value(
+            .outbound_get_value(
                 rpc_processor,
                 key,
                 subkey,
@@ -290,6 +293,8 @@ impl StorageManager {
 
     /// Set the value of a subkey on an opened local record
     /// Puts changes to the network immediately and may refresh the record if the there is a newer subkey available online
+    /// Returns Ok(None) if the value was set
+    /// Returns Ok(Some(newer value)) if a newer value was found online
     pub async fn set_value(
         &self,
         key: TypedKey,
@@ -328,6 +333,7 @@ impl StorageManager {
         } else {
             ValueData::new(data, writer.key)
         };
+        let seq = value_data.seq();
 
         // Validate with schema
         if !schema.check_subkey_value_data(descriptor.owner(), subkey, &value_data) {
@@ -343,110 +349,43 @@ impl StorageManager {
             vcrypto,
             writer.secret,
         )?;
-        let subkey_result = SubkeyResult {
-            value: Some(signed_value_data),
-            descriptor: Some(descriptor)
-        };
 
         // Get rpc processor and drop mutex so we don't block while getting the value from the network
         let Some(rpc_processor) = inner.rpc_processor.clone() else {
             // Offline, just write it locally and return immediately
             inner
-                .handle_set_local_value(key, subkey, signed_value_data)
+                .handle_set_local_value(key, subkey, signed_value_data.clone())
                 .await?;
-        };
 
-        // Drop the lock for network access
-        drop(inner);
-        
-        // Use the safety selection we opened the record with
-        let final_subkey_result = self
-            .do_set_value(
-                rpc_processor,
-                key,
-                subkey,
-                opened_record.safety_selection(),
-                subkey_result,
-            )
-            .await?;
-
-        // See if we got a value back
-        let Some(subkey_result_value) = subkey_result.value else {
-            // If we got nothing back then we also had nothing beforehand, return nothing
-            return Ok(None);
-        };
-
-        // If we got a new value back then write it to the opened record
-        if Some(subkey_result_value.value_data().seq()) != opt_last_seq {
-            let mut inner = self.lock().await?;
-            inner
-                .handle_set_local_value(key, subkey, subkey_result_value.clone())
-                .await?;
-        }
-        Ok(Some(subkey_result_value.into_value_data()))
-
-
-
-
-
-
-
-
-
-
-        // Store subkey locally
-        inner
-            .handle_set_local_value(key, subkey, signed_value_data)
-            .await?;
-
-        // Return the existing value if we have one unless we are forcing a refresh
-        if !force_refresh {
-            if let Some(last_subkey_result_value) = last_subkey_result.value {
-                return Ok(Some(last_subkey_result_value.into_value_data()));
-            }
-        }
-
-        // Refresh if we can
-
-        // Get rpc processor and drop mutex so we don't block while getting the value from the network
-        let Some(rpc_processor) = inner.rpc_processor.clone() else {
-            // Offline, try again later
-            apibail_try_again!();
+            // Add to offline writes to flush
+            inner.offline_subkey_writes.entry(key).and_modify(|x| { x.insert(subkey); } ).or_insert(ValueSubkeyRangeSet::single(subkey));
+            return Ok(Some(signed_value_data.into_value_data()))
         };
 
         // Drop the lock for network access
         drop(inner);
 
-        // May have last descriptor / value
         // Use the safety selection we opened the record with
-        let opt_last_seq = last_subkey_result
-            .value
-            .as_ref()
-            .map(|v| v.value_data().seq());
-        let subkey_result = self
-            .do_get_value(
+
+        let final_signed_value_data = self
+            .outbound_set_value(
                 rpc_processor,
                 key,
                 subkey,
                 opened_record.safety_selection(),
-                last_subkey_result,
+                signed_value_data,
+                descriptor,
             )
             .await?;
 
-        // See if we got a value back
-        let Some(subkey_result_value) = subkey_result.value else {
-            // If we got nothing back then we also had nothing beforehand, return nothing
-            return Ok(None);
-        };
-
         // If we got a new value back then write it to the opened record
-        if Some(subkey_result_value.value_data().seq()) != opt_last_seq {
+        if final_signed_value_data.value_data().seq() != seq {
             let mut inner = self.lock().await?;
             inner
-                .handle_set_local_value(key, subkey, subkey_result_value.clone())
+                .handle_set_local_value(key, subkey, final_signed_value_data.clone())
                 .await?;
         }
-        Ok(Some(subkey_result_value.into_value_data()))
+        Ok(Some(final_signed_value_data.into_value_data()))
     }
 
     pub async fn watch_values(
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index c6f8858a..d37e1d3b 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -9,9 +9,9 @@ use hashlink::LruCache;
 
 pub struct RecordStore<D>
 where
-    D: Clone + RkyvArchive + RkyvSerialize<RkyvSerializer>,
+    D: Clone + RkyvArchive + RkyvSerialize<DefaultVeilidRkyvSerializer>,
     for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
-    <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
+    <D as RkyvArchive>::Archived: RkyvDeserialize<D, VeilidSharedDeserializeMap>,
 {
     table_store: TableStore,
     name: String,
@@ -41,9 +41,9 @@ pub struct SubkeyResult {
 
 impl<D> RecordStore<D>
 where
-    D: Clone + RkyvArchive + RkyvSerialize<RkyvSerializer>,
+    D: Clone + RkyvArchive + RkyvSerialize<DefaultVeilidRkyvSerializer>,
     for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
-    <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
+    <D as RkyvArchive>::Archived: RkyvDeserialize<D, VeilidSharedDeserializeMap>,
 {
     pub fn new(table_store: TableStore, name: &str, limits: RecordStoreLimits) -> Self {
         let subkey_cache_size = limits.subkey_cache_size as usize;
@@ -421,7 +421,11 @@ where
     ) -> Result<(), VeilidAPIError> {
         // Check size limit for data
         if signed_value_data.value_data().data().len() > self.limits.max_subkey_size {
-            return Err(VeilidAPIError::generic("record subkey too large"));
+            apibail_invalid_argument!(
+                "record subkey too large",
+                "signed_value_data.value_data.data.len",
+                signed_value_data.value_data().data().len()
+            );
         }
 
         // Get record from index
diff --git a/veilid-core/src/storage_manager/set_value.rs b/veilid-core/src/storage_manager/set_value.rs
new file mode 100644
index 00000000..22afcc8a
--- /dev/null
+++ b/veilid-core/src/storage_manager/set_value.rs
@@ -0,0 +1,225 @@
+use super::*;
+
+/// The context of the do_get_value operation
+struct DoSetValueContext {
+    /// The latest value of the subkey, may be the value passed in
+    pub value: SignedValueData,
+    /// The consensus count for the value we have received
+    pub value_count: usize,
+    /// The parsed schema from the descriptor if we have one
+    pub schema: DHTSchema,
+}
+
+impl StorageManager {
+
+    /// Perform a 'set value' query on the network
+    pub async fn outbound_set_value(
+        &self,
+        rpc_processor: RPCProcessor,
+        key: TypedKey,
+        subkey: ValueSubkey,
+        safety_selection: SafetySelection,
+        value: SignedValueData,
+        descriptor: SignedValueDescriptor,
+    ) -> Result<SignedValueData, VeilidAPIError> {
+        let routing_table = rpc_processor.routing_table();
+
+        // Get the DHT parameters for 'SetValue'
+        let (key_count, consensus_count, fanout, timeout_us) = {
+            let c = self.unlocked_inner.config.get();
+            (
+                c.network.dht.max_find_node_count as usize,
+                c.network.dht.set_value_count as usize,
+                c.network.dht.set_value_fanout as usize,
+                TimestampDuration::from(ms_to_us(c.network.dht.set_value_timeout_ms)),
+            )
+        };
+
+        // Make do-set-value answer context
+        let schema = descriptor.schema()?;
+        let context = Arc::new(Mutex::new(DoSetValueContext {
+            value,
+            value_count: 0,
+            schema,
+        }));
+
+        // Routine to call to generate fanout
+        let call_routine = |next_node: NodeRef| {
+            let rpc_processor = rpc_processor.clone();
+            let context = context.clone();
+            let descriptor = descriptor.clone();
+            async move {
+
+                let send_descriptor = true; // xxx check if next_node needs the descriptor or not
+
+                // get most recent value to send
+                let value = {
+                    let ctx = context.lock();
+                    ctx.value.clone()
+                };
+
+                // send across the wire
+                let vres = rpc_processor
+                    .clone()
+                    .rpc_call_set_value(
+                        Destination::direct(next_node).with_safety(safety_selection),
+                        key,
+                        subkey,
+                        value,
+                        descriptor.clone(),
+                        send_descriptor,
+                    )
+                    .await?;
+                let sva = network_result_value_or_log!(vres => {
+                    // Any other failures, just try the next node
+                    return Ok(None);
+                });
+
+                // If the node was close enough to possibly set the value
+                if sva.answer.set {
+                    let mut ctx = context.lock();
+
+                    // Keep the value if we got one and it is newer and it passes schema validation
+                    if let Some(value) = sva.answer.value {
+
+                        // Validate with schema
+                        if !ctx.schema.check_subkey_value_data(
+                            descriptor.owner(),
+                            subkey,
+                            value.value_data(),
+                        ) {
+                            // Validation failed, ignore this value
+                            // Move to the next node
+                            return Ok(None);
+                        }
+
+                        // We have a prior value, ensure this is a newer sequence number
+                        let prior_seq = ctx.value.value_data().seq();
+                        let new_seq = value.value_data().seq();
+                        if new_seq > prior_seq {
+                            // If the sequence number is greater, keep it
+                            ctx.value = value;
+                            // One node has show us this value so far
+                            ctx.value_count = 1;
+                        } else {
+                            // If the sequence number is older, or an equal sequence number, 
+                            // node should have not returned a value here.
+                            // Skip this node's closer list because it is misbehaving
+                            return Ok(None);
+                        }
+                    }
+                    else
+                    {
+                        // It was set on this node and no newer value was found and returned,
+                        // so increase our consensus count
+                        ctx.value_count += 1;
+                    }
+                }
+
+                // Return peers if we have some
+                Ok(Some(sva.answer.peers))
+            }
+        };
+
+        // Routine to call to check if we're done at each step
+        let check_done = |_closest_nodes: &[NodeRef]| {
+            // If we have reached sufficient consensus, return done
+            let ctx = context.lock();
+            if ctx.value_count >= consensus_count {
+                return Some(());
+            }
+            None
+        };
+
+        // Call the fanout
+        let fanout_call = FanoutCall::new(
+            routing_table.clone(),
+            key,
+            key_count,
+            fanout,
+            timeout_us,
+            call_routine,
+            check_done,
+        );
+
+        match fanout_call.run().await {
+            // If we don't finish in the timeout (too much time passed checking for consensus)
+            TimeoutOr::Timeout | 
+            // If we finished with consensus (enough nodes returning the same value)
+            TimeoutOr::Value(Ok(Some(()))) | 
+            // If we finished without consensus (ran out of nodes before getting consensus)
+            TimeoutOr::Value(Ok(None)) => {
+                // Return the best answer we've got
+                let ctx = context.lock();
+                Ok(ctx.value.clone())
+            }
+            // Failed
+            TimeoutOr::Value(Err(e)) => {
+                // If we finished with an error, return that
+                Err(e.into())
+            }
+        }
+    }
+
+    /// Handle a recieved 'Set Value' query
+    /// Returns a None if the value passed in was set
+    /// Returns a Some(current value) if the value was older and the current value was kept
+    pub async fn inbound_set_value(&self, key: TypedKey, subkey: ValueSubkey, value: SignedValueData, descriptor: Option<SignedValueDescriptor>) -> Result<NetworkResult<Option<SignedValueData>>, VeilidAPIError> {
+        let mut inner = self.lock().await?;
+
+        // See if the subkey we are modifying has a last known local value
+        let last_subkey_result = inner.handle_get_local_value(key, subkey, true)?;
+
+        // Make sure this value would actually be newer
+        if let Some(last_value) = &last_subkey_result.value {
+            if value.value_data().seq() < last_value.value_data().seq() {
+                // inbound value is older than the one we have, just return the one we have
+                return Ok(NetworkResult::value(Some(last_value.clone())));
+            }
+        }
+
+        // Get the descriptor and schema for the key
+        let actual_descriptor = match last_subkey_result.descriptor {
+            Some(last_descriptor) => {
+                if let Some(descriptor) = descriptor {
+                    // Descriptor must match last one if it is provided
+                    if descriptor.cmp_no_sig(&last_descriptor) != cmp::Ordering::Equal {
+                        return Ok(NetworkResult::invalid_message("setvalue descriptor does not match last descriptor"));
+                    }
+                } else {
+                    // Descriptor was not provided always go with last descriptor
+                }
+                last_descriptor
+            }   
+            None => {
+                if let Some(descriptor) = descriptor {
+                    descriptor
+                } else {
+                    // No descriptor
+                    return Ok(NetworkResult::invalid_message("descriptor must be provided"));
+                }
+            }
+        };
+        let Ok(schema) = actual_descriptor.schema() else {
+            return Ok(NetworkResult::invalid_message("invalid schema"));
+        };
+
+        // Validate new value with schema
+        if !schema.check_subkey_value_data(actual_descriptor.owner(), subkey, value.value_data()) {
+            // Validation failed, ignore this value
+            return Ok(NetworkResult::invalid_message("failed schema validation"));
+        }
+
+        // Do the set and return no new value
+        match inner.handle_set_remote_value(key, subkey, value, actual_descriptor).await {            
+            Ok(()) => {},
+            Err(VeilidAPIError::Internal { message }) => {
+                apibail_internal!(message);
+            },
+            Err(e) => {
+                return Ok(NetworkResult::invalid_message(e));
+            },
+        }
+        Ok(NetworkResult::value(None))
+    }
+}
diff --git a/veilid-core/src/storage_manager/storage_manager_inner.rs b/veilid-core/src/storage_manager/storage_manager_inner.rs
index 149feb6f..58f0e46c 100644
--- a/veilid-core/src/storage_manager/storage_manager_inner.rs
+++ b/veilid-core/src/storage_manager/storage_manager_inner.rs
@@ -120,10 +120,14 @@ impl StorageManagerInner {
 
         // Final flush on record stores
         if let Some(mut local_record_store) = self.local_record_store.take() {
-            local_record_store.tick().await;
+            if let Err(e) = local_record_store.tick().await {
+                log_stor!(error "termination local record store tick failed: {}", e); 
+            }
         }
         if let Some(mut remote_record_store) = self.remote_record_store.take() {
-            remote_record_store.tick().await;
+            if let Err(e) = remote_record_store.tick().await {
+                log_stor!(error "termination remote record store tick failed: {}", e); 
+            }
         }
 
         // Save metadata
@@ -142,7 +146,7 @@ impl StorageManagerInner {
     async fn save_metadata(&mut self) -> EyreResult<()>{
         if let Some(metadata_db) = &self.metadata_db {
             let tx = metadata_db.transact();
-            tx.store_rkyv(0, b"offline_subkey_writes", &self.offline_subkey_writes);
+            tx.store_rkyv(0, b"offline_subkey_writes", &self.offline_subkey_writes)?;
             tx.commit().await.wrap_err("failed to commit")?
         }
         Ok(())
@@ -155,8 +159,6 @@ impl StorageManagerInner {
         Ok(())
     }
 
-    write offline subkey write flush background task or make a ticket for it and get back to it after the rest of set value
-
     pub async fn create_new_owned_local_record(
         &mut self,
         kind: CryptoKind,
@@ -386,12 +388,23 @@ impl StorageManagerInner {
         key: TypedKey,
         subkey: ValueSubkey,
         signed_value_data: SignedValueData,
+        signed_value_descriptor: SignedValueDescriptor,
     ) -> Result<(), VeilidAPIError> {
         // See if it's in the remote record store
         let Some(remote_record_store) = self.remote_record_store.as_mut() else {
             apibail_not_initialized!();
         };
 
+        // See if we have a remote record already or not
+        if remote_record_store.with_record(key, |_|{}).is_none() {
+            // record didn't exist, make it
+            let cur_ts = get_aligned_timestamp();
+            let remote_record_detail = RemoteRecordDetail { };
+            let record =
+                Record::<RemoteRecordDetail>::new(cur_ts, signed_value_descriptor, remote_record_detail)?;
+            remote_record_store.new_record(key, record).await?
+        };
+
         // Write subkey to remote store
         remote_record_store
             .set_subkey(key, subkey, signed_value_data)
@@ -403,9 +416,9 @@ impl StorageManagerInner {
     /// # DHT Key = Hash(ownerKeyKind) of: [ ownerKeyValue, schema ]
     fn get_key<D>(vcrypto: CryptoSystemVersion, record: &Record<D>) -> TypedKey
     where
-        D: Clone + RkyvArchive + RkyvSerialize<RkyvSerializer>,
+        D: Clone + RkyvArchive + RkyvSerialize<DefaultVeilidRkyvSerializer>,
         for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
-        <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
+        <D as RkyvArchive>::Archived: RkyvDeserialize<D, VeilidSharedDeserializeMap>,
     {
         let compiled = record.descriptor().schema_data();
         let mut hash_data = Vec::<u8>::with_capacity(PUBLIC_KEY_LENGTH + 4 + compiled.len());
diff --git a/veilid-core/src/storage_manager/types/local_record_detail.rs b/veilid-core/src/storage_manager/types/local_record_detail.rs
index e632e749..9f16ba80 100644
--- a/veilid-core/src/storage_manager/types/local_record_detail.rs
+++ b/veilid-core/src/storage_manager/types/local_record_detail.rs
@@ -7,6 +7,6 @@ use super::*;
 #[archive_attr(repr(C), derive(CheckBytes))]
 pub struct LocalRecordDetail {
     /// The last 'safety selection' used when creating/opening this record.
-    /// Even when closed, this safety selection applies to republication attempts by the system.
+    /// Even when closed, this safety selection applies to re-publication attempts by the system.
     pub safety_selection: SafetySelection,
 }
diff --git a/veilid-core/src/storage_manager/types/record.rs b/veilid-core/src/storage_manager/types/record.rs
index eab24579..68afa013 100644
--- a/veilid-core/src/storage_manager/types/record.rs
+++ b/veilid-core/src/storage_manager/types/record.rs
@@ -6,9 +6,9 @@ use super::*;
 #[archive_attr(repr(C), derive(CheckBytes))]
 pub struct Record<D>
 where
-    D: Clone + RkyvArchive + RkyvSerialize<RkyvSerializer>,
+    D: Clone + RkyvArchive + RkyvSerialize<DefaultVeilidRkyvSerializer>,
     for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
-    <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
+    <D as RkyvArchive>::Archived: RkyvDeserialize<D, VeilidSharedDeserializeMap>,
 {
     descriptor: SignedValueDescriptor,
     subkey_count: usize,
@@ -19,9 +19,9 @@ where
 
 impl<D> Record<D>
 where
-    D: Clone + RkyvArchive + RkyvSerialize<RkyvSerializer>,
+    D: Clone + RkyvArchive + RkyvSerialize<DefaultVeilidRkyvSerializer>,
     for<'t> <D as RkyvArchive>::Archived: CheckBytes<RkyvDefaultValidator<'t>>,
-    <D as RkyvArchive>::Archived: RkyvDeserialize<D, SharedDeserializeMap>,
+    <D as RkyvArchive>::Archived: RkyvDeserialize<D, VeilidSharedDeserializeMap>,
 {
     pub fn new(
         cur_ts: Timestamp,
diff --git a/veilid-core/src/veilid_api/serialize_helpers/mod.rs b/veilid-core/src/veilid_api/serialize_helpers/mod.rs
index edd6c968..5a3805fd 100644
--- a/veilid-core/src/veilid_api/serialize_helpers/mod.rs
+++ b/veilid-core/src/veilid_api/serialize_helpers/mod.rs
@@ -1,8 +1,9 @@
 mod rkyv_enum_set;
 mod rkyv_range_set_blaze;
 pub mod serialize_arc;
-pub mod serialize_range_set_blaze;
 mod serialize_json;
+pub mod serialize_range_set_blaze;
+mod veilid_rkyv;
 
 use super::*;
 use core::fmt::Debug;
@@ -10,28 +11,4 @@ use core::fmt::Debug;
 pub use rkyv_enum_set::*;
 pub use rkyv_range_set_blaze::*;
 pub use serialize_json::*;
-
-pub fn to_rkyv<T>(v: &T) -> EyreResult<Vec<u8>>
-where
-    T: RkyvSerialize<rkyv::ser::serializers::AllocSerializer<1024>>,
-{
-    Ok(rkyv::to_bytes::<T, 1024>(v)
-        .wrap_err("failed to freeze object")?
-        .to_vec())
-}
-
-pub fn from_rkyv<T>(v: Vec<u8>) -> EyreResult<T>
-where
-    T: RkyvArchive,
-    <T as RkyvArchive>::Archived:
-        for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
-    <T as RkyvArchive>::Archived:
-        rkyv::Deserialize<T, rkyv::de::deserializers::SharedDeserializeMap>,
-{
-    match rkyv::from_bytes::<T>(&v) {
-        Ok(v) => Ok(v),
-        Err(e) => {
-            bail!("failed to deserialize frozen object: {}", e);
-        }
-    }
-}
+pub use veilid_rkyv::*;
diff --git a/veilid-core/src/veilid_api/serialize_helpers/rkyv_range_set_blaze.rs b/veilid-core/src/veilid_api/serialize_helpers/rkyv_range_set_blaze.rs
index 6a2c4736..67388e4a 100644
--- a/veilid-core/src/veilid_api/serialize_helpers/rkyv_range_set_blaze.rs
+++ b/veilid-core/src/veilid_api/serialize_helpers/rkyv_range_set_blaze.rs
@@ -52,16 +52,16 @@ where
     D: rkyv::Fallible + ?Sized,
     T: rkyv::Archive + Integer,
     rkyv::Archived<T>: rkyv::Deserialize<T, D>,
-    // D::Error: From<String>, // xxx this doesn't work
+    D::Error: From<String>,
 {
     fn deserialize_with(
         field: &rkyv::Archived<Vec<T>>,
         deserializer: &mut D,
     ) -> Result<RangeSetBlaze<T>, D::Error> {
         let mut out = RangeSetBlaze::<T>::new();
-        // if field.len() % 2 == 1 {
-        //     return Err("invalid range set length".to_owned().into());
-        // }
+        if field.len() % 2 == 1 {
+            return Err("invalid range set length".to_owned().into());
+        }
         let f = field.as_slice();
         for i in 0..field.len() / 2 {
             let l: T = f[i * 2].deserialize(deserializer)?;
diff --git a/veilid-core/src/veilid_api/serialize_helpers/veilid_rkyv.rs b/veilid-core/src/veilid_api/serialize_helpers/veilid_rkyv.rs
new file mode 100644
index 00000000..e7658c95
--- /dev/null
+++ b/veilid-core/src/veilid_api/serialize_helpers/veilid_rkyv.rs
@@ -0,0 +1,151 @@
+use super::*;
+use rkyv::ser::Serializer;
+
+///////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+
+pub struct VeilidRkyvSerializer<S> {
+    inner: S,
+}
+
+impl<S> VeilidRkyvSerializer<S> {
+    pub fn into_inner(self) -> S {
+        self.inner
+    }
+}
+
+impl<S: rkyv::Fallible> rkyv::Fallible for VeilidRkyvSerializer<S> {
+    type Error = VeilidRkyvError<S::Error>;
+}
+
+impl<S: rkyv::ser::ScratchSpace> rkyv::ser::ScratchSpace for VeilidRkyvSerializer<S> {
+    unsafe fn push_scratch(
+        &mut self,
+        layout: core::alloc::Layout,
+    ) -> Result<core::ptr::NonNull<[u8]>, Self::Error> {
+        self.inner
+            .push_scratch(layout)
+            .map_err(VeilidRkyvError::Inner)
+    }
+    unsafe fn pop_scratch(
+        &mut self,
+        ptr: core::ptr::NonNull<u8>,
+        layout: core::alloc::Layout,
+    ) -> Result<(), Self::Error> {
+        self.inner
+            .pop_scratch(ptr, layout)
+            .map_err(VeilidRkyvError::Inner)
+    }
+}
+
+impl<S: rkyv::ser::Serializer> rkyv::ser::Serializer for VeilidRkyvSerializer<S> {
+    #[inline]
+    fn pos(&self) -> usize {
+        self.inner.pos()
+    }
+
+    #[inline]
+    fn write(&mut self, bytes: &[u8]) -> Result<(), Self::Error> {
+        self.inner.write(bytes).map_err(VeilidRkyvError::Inner)
+    }
+}
+
+impl<S: Default> Default for VeilidRkyvSerializer<S> {
+    fn default() -> Self {
+        Self {
+            inner: S::default(),
+        }
+    }
+}
+
+pub type DefaultVeilidRkyvSerializer =
+    VeilidRkyvSerializer<rkyv::ser::serializers::AllocSerializer<1024>>;
+
+///////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+
+#[derive(Debug, Default)]
+pub struct VeilidSharedDeserializeMap {
+    inner: SharedDeserializeMap,
+}
+
+impl VeilidSharedDeserializeMap {
+    #[inline]
+    pub fn new() -> Self {
+        Self {
+            inner: SharedDeserializeMap::new(),
+        }
+    }
+}
+impl rkyv::Fallible for VeilidSharedDeserializeMap {
+    type Error = VeilidRkyvError<rkyv::de::deserializers::SharedDeserializeMapError>;
+}
+
+impl rkyv::de::SharedDeserializeRegistry for VeilidSharedDeserializeMap {
+    fn get_shared_ptr(&mut self, ptr: *const u8) -> Option<&dyn rkyv::de::SharedPointer> {
+        self.inner.get_shared_ptr(ptr)
+    }
+
+    fn add_shared_ptr(
+        &mut self,
+        ptr: *const u8,
+        shared: Box<dyn rkyv::de::SharedPointer>,
+    ) -> Result<(), Self::Error> {
+        self.inner
+            .add_shared_ptr(ptr, shared)
+            .map_err(VeilidRkyvError::Inner)
+    }
+}
+
+///////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+
+#[derive(Debug)]
+pub enum VeilidRkyvError<E> {
+    Inner(E),
+    StringError(String),
+}
+
+impl<E: Debug> From<String> for VeilidRkyvError<E> {
+    fn from(s: String) -> Self {
+        Self::StringError(s)
+    }
+}
+
+impl<E: Debug + fmt::Display> fmt::Display for VeilidRkyvError<E> {
+    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
+        match self {
+            VeilidRkyvError::Inner(e) => write!(f, "Inner: {}", e),
+            VeilidRkyvError::StringError(s) => write!(f, "StringError: {}", s),
+        }
+    }
+}
+
+impl<E: Debug + fmt::Display> std::error::Error for VeilidRkyvError<E> {}
+
+///////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+
+pub fn to_rkyv<T>(value: &T) -> EyreResult<Vec<u8>>
+where
+    T: RkyvSerialize<DefaultVeilidRkyvSerializer>,
+{
+    let mut serializer = DefaultVeilidRkyvSerializer::default();
+    serializer
+        .serialize_value(value)
+        .wrap_err("failed to serialize object")?;
+    Ok(serializer
+        .into_inner()
+        .into_serializer()
+        .into_inner()
+        .to_vec())
+}
+
+pub fn from_rkyv<T>(bytes: Vec<u8>) -> EyreResult<T>
+where
+    T: RkyvArchive,
+    <T as RkyvArchive>::Archived:
+        for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
+    <T as RkyvArchive>::Archived: RkyvDeserialize<T, VeilidSharedDeserializeMap>,
+{
+    rkyv::check_archived_root::<T>(&bytes)
+        .map_err(|e| eyre!("checkbytes failed: {}", e))?
+        .deserialize(&mut VeilidSharedDeserializeMap::default())
+        .map_err(|e| eyre!("failed to deserialize: {}", e))
+}
diff --git a/veilid-core/src/veilid_api/types/dht/value_subkey_range_set.rs b/veilid-core/src/veilid_api/types/dht/value_subkey_range_set.rs
index 5cac4c93..3dd40f67 100644
--- a/veilid-core/src/veilid_api/types/dht/value_subkey_range_set.rs
+++ b/veilid-core/src/veilid_api/types/dht/value_subkey_range_set.rs
@@ -29,6 +29,11 @@ impl ValueSubkeyRangeSet {
             data: Default::default(),
         }
     }
+    pub fn single(value: ValueSubkey) -> Self {
+        let mut data = RangeSetBlaze::new();
+        data.insert(value);
+        Self { data }
+    }
 }
 
 impl Deref for ValueSubkeyRangeSet {

From ab2434dfd3c578be062806a7ca799b7116476c69 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Wed, 10 May 2023 15:32:43 -0400
Subject: [PATCH 29/74] fix tests

---
 veilid-core/src/crypto/tests/test_types.rs   | 33 ++++++++++++++++++++
 veilid-core/src/crypto/types/crypto_typed.rs |  2 +-
 2 files changed, 34 insertions(+), 1 deletion(-)

diff --git a/veilid-core/src/crypto/tests/test_types.rs b/veilid-core/src/crypto/tests/test_types.rs
index d61b1cff..72813ea0 100644
--- a/veilid-core/src/crypto/tests/test_types.rs
+++ b/veilid-core/src/crypto/tests/test_types.rs
@@ -225,6 +225,38 @@ pub async fn test_encode_decode(vcrypto: CryptoSystemVersion) {
     assert!(f2.is_err());
 }
 
+pub async fn test_typed_convert(vcrypto: CryptoSystemVersion) {
+    let tks1 = format!(
+        "{}:7lxDEabK_qgjbe38RtBa3IZLrud84P6NhGP-pRTZzdQ",
+        vcrypto.kind().to_string()
+    );
+    let tk1 = TypedKey::from_str(&tks1).expect("failed");
+    let tks1x = tk1.to_string();
+    assert_eq!(tks1, tks1x);
+
+    let tks2 = format!(
+        "{}:7lxDEabK_qgjbe38RtBa3IZLrud84P6NhGP-pRTZzd",
+        vcrypto.kind().to_string()
+    );
+    let _tk2 = TypedKey::from_str(&tks2).expect_err("succeeded when it shouldnt have");
+
+    let tks3 = format!("XXXX:7lxDEabK_qgjbe38RtBa3IZLrud84P6NhGP-pRTZzdQ",);
+    let tk3 = TypedKey::from_str(&tks3).expect("failed");
+    let tks3x = tk3.to_string();
+    assert_eq!(tks3, tks3x);
+
+    let tks4 = format!("XXXX:7lxDEabK_qgjbe38RtBa3IZLrud84P6NhGP-pRTZzd",);
+    let _tk4 = TypedKey::from_str(&tks4).expect_err("succeeded when it shouldnt have");
+
+    let tks5 = format!("XXX:7lxDEabK_qgjbe38RtBa3IZLrud84P6NhGP-pRTZzdQ",);
+    let _tk5 = TypedKey::from_str(&tks5).expect_err("succeeded when it shouldnt have");
+
+    let tks6 = format!("7lxDEabK_qgjbe38RtBa3IZLrud84P6NhGP-pRTZzdQ",);
+    let tk6 = TypedKey::from_str(&tks6).expect("failed");
+    let tks6x = tk6.to_string();
+    assert!(tks6x.ends_with(&tks6));
+}
+
 async fn test_hash(vcrypto: CryptoSystemVersion) {
     let mut s = BTreeSet::<PublicKey>::new();
 
@@ -333,6 +365,7 @@ pub async fn test_all() {
         test_sign_and_verify(vcrypto.clone()).await;
         test_key_conversions(vcrypto.clone()).await;
         test_encode_decode(vcrypto.clone()).await;
+        test_typed_convert(vcrypto.clone()).await;
         test_hash(vcrypto.clone()).await;
         test_operations(vcrypto).await;
     }
diff --git a/veilid-core/src/crypto/types/crypto_typed.rs b/veilid-core/src/crypto/types/crypto_typed.rs
index f37ac7ce..b0d3c61a 100644
--- a/veilid-core/src/crypto/types/crypto_typed.rs
+++ b/veilid-core/src/crypto/types/crypto_typed.rs
@@ -127,7 +127,7 @@ where
     type Err = VeilidAPIError;
     fn from_str(s: &str) -> Result<Self, Self::Err> {
         let b = s.as_bytes();
-        if b.len() == (5 + K::encoded_len()) && b[4..5] != b":"[..] {
+        if b.len() == (5 + K::encoded_len()) && b[4..5] == b":"[..] {
             let kind: CryptoKind = b[0..4].try_into().expect("should not fail to convert");
             let value = K::try_decode_bytes(&b[5..])?;
             Ok(Self { kind, value })

From cb899b44eab1b02210ee3034d2138c6fca10c567 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Fri, 12 May 2023 20:13:04 -0400
Subject: [PATCH 30/74] api work

---
 veilid-cli/src/client_api_connection.rs       |   2 +-
 veilid-cli/src/command_processor.rs           |   2 +-
 veilid-core/src/routing_table/debug.rs        |  48 ++-
 .../route_spec_store/route_spec_store.rs      |   2 +-
 veilid-core/src/storage_manager/debug.rs      |  18 +
 veilid-core/src/storage_manager/mod.rs        |   1 +
 .../src/storage_manager/record_store.rs       |  31 ++
 veilid-core/src/veilid_api/debug.rs           |  36 ++
 .../src/veilid_api/types/veilid_state.rs      |   4 +-
 veilid-flutter/lib/veilid.dart                | 345 ++++++++++++++++--
 veilid-server/src/cmdline.rs                  |   2 +-
 veilid-server/src/main.rs                     |  25 +-
 12 files changed, 448 insertions(+), 68 deletions(-)
 create mode 100644 veilid-core/src/storage_manager/debug.rs

diff --git a/veilid-cli/src/client_api_connection.rs b/veilid-cli/src/client_api_connection.rs
index 0bb89122..7a79dcd4 100644
--- a/veilid-cli/src/client_api_connection.rs
+++ b/veilid-cli/src/client_api_connection.rs
@@ -92,7 +92,7 @@ impl veilid_client::Server for VeilidClientImpl {
             VeilidUpdate::Config(config) => {
                 self.comproc.update_config(config);
             }
-            VeilidUpdate::Route(route) => {
+            VeilidUpdate::RouteChange(route) => {
                 self.comproc.update_route(route);
             }
             VeilidUpdate::Shutdown => self.comproc.update_shutdown(),
diff --git a/veilid-cli/src/command_processor.rs b/veilid-cli/src/command_processor.rs
index 5832fa21..60fe90d7 100644
--- a/veilid-cli/src/command_processor.rs
+++ b/veilid-cli/src/command_processor.rs
@@ -406,7 +406,7 @@ reply               - reply to an AppCall not handled directly by the server
     pub fn update_config(&mut self, config: veilid_core::VeilidStateConfig) {
         self.inner_mut().ui.set_config(config.config)
     }
-    pub fn update_route(&mut self, route: veilid_core::VeilidStateRoute) {
+    pub fn update_route(&mut self, route: veilid_core::VeilidRouteChange) {
         let mut out = String::new();
         if !route.dead_routes.is_empty() {
             out.push_str(&format!("Dead routes: {:?}", route.dead_routes));
diff --git a/veilid-core/src/routing_table/debug.rs b/veilid-core/src/routing_table/debug.rs
index 6b4772e9..7e1cf476 100644
--- a/veilid-core/src/routing_table/debug.rs
+++ b/veilid-core/src/routing_table/debug.rs
@@ -2,28 +2,6 @@ use super::*;
 use routing_table::tasks::bootstrap::BOOTSTRAP_TXT_VERSION_0;
 
 impl RoutingTable {
-    pub(crate) fn debug_info_nodeinfo(&self) -> String {
-        let mut out = String::new();
-        let inner = self.inner.read();
-        out += "Routing Table Info:\n";
-
-        out += &format!("   Node Ids: {}\n", self.unlocked_inner.node_ids());
-        out += &format!(
-            "   Self Latency Stats Accounting: {:#?}\n\n",
-            inner.self_latency_stats_accounting
-        );
-        out += &format!(
-            "   Self Transfer Stats Accounting: {:#?}\n\n",
-            inner.self_transfer_stats_accounting
-        );
-        out += &format!(
-            "   Self Transfer Stats: {:#?}\n\n",
-            inner.self_transfer_stats
-        );
-
-        out
-    }
-
     pub(crate) async fn debug_info_txtrecord(&self) -> String {
         let mut out = String::new();
 
@@ -71,14 +49,34 @@ impl RoutingTable {
                 node_ids,
                 some_hostname.unwrap()
             );
-            for short_url in short_urls {
-                out += &format!(",{}", short_url);
-            }
+            out += &short_urls.join(",");
             out += "\n";
         }
         out
     }
 
+    pub(crate) fn debug_info_nodeinfo(&self) -> String {
+        let mut out = String::new();
+        let inner = self.inner.read();
+        out += "Routing Table Info:\n";
+
+        out += &format!("   Node Ids: {}\n", self.unlocked_inner.node_ids());
+        out += &format!(
+            "   Self Latency Stats Accounting: {:#?}\n\n",
+            inner.self_latency_stats_accounting
+        );
+        out += &format!(
+            "   Self Transfer Stats Accounting: {:#?}\n\n",
+            inner.self_transfer_stats_accounting
+        );
+        out += &format!(
+            "   Self Transfer Stats: {:#?}\n\n",
+            inner.self_transfer_stats
+        );
+
+        out
+    }
+
     pub(crate) fn debug_info_dialinfo(&self) -> String {
         let ldis = self.dial_info_details(RoutingDomain::LocalNetwork);
         let gdis = self.dial_info_details(RoutingDomain::PublicInternet);
diff --git a/veilid-core/src/routing_table/route_spec_store/route_spec_store.rs b/veilid-core/src/routing_table/route_spec_store/route_spec_store.rs
index 134de46c..3f29ba0d 100644
--- a/veilid-core/src/routing_table/route_spec_store/route_spec_store.rs
+++ b/veilid-core/src/routing_table/route_spec_store/route_spec_store.rs
@@ -115,7 +115,7 @@ impl RouteSpecStore {
             dr
         };
 
-        let update = VeilidUpdate::Route(VeilidStateRoute {
+        let update = VeilidUpdate::RouteChange(VeilidRouteChange {
             dead_routes,
             dead_remote_routes,
         });
diff --git a/veilid-core/src/storage_manager/debug.rs b/veilid-core/src/storage_manager/debug.rs
new file mode 100644
index 00000000..0c47b56a
--- /dev/null
+++ b/veilid-core/src/storage_manager/debug.rs
@@ -0,0 +1,18 @@
+use super::*;
+
+impl StorageManager {
+    pub(crate) async fn debug_local_records(&self) -> String {
+        let inner = self.inner.lock().await;
+        let Some(local_record_store) = &inner.local_record_store else {
+            return "not initialized".to_owned();
+        };
+        local_record_store.debug_records()
+    }
+    pub(crate) async fn debug_remote_records(&self) -> String {
+        let inner = self.inner.lock().await;
+        let Some(remote_record_store) = &inner.remote_record_store else {
+            return "not initialized".to_owned();
+        };
+        remote_record_store.debug_records()
+    }
+}
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index 5e8b4fb5..b37142b3 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -1,3 +1,4 @@
+mod debug;
 mod get_value;
 mod keys;
 mod record_store;
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index d37e1d3b..d23eb14d 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -516,4 +516,35 @@ where
         }
         self.purge_dead_records(false).await;
     }
+
+    pub(super) fn debug_records(&self) -> String {
+        // Dump fields in an abbreviated way
+        let mut out = String::new();
+
+        out += "Record Index:\n";
+        for (rik, rec) in &self.record_index {
+            out += &format!(
+                "  {} @ {} len={}\n",
+                rik.key.to_string(),
+                rec.last_touched().as_u64(),
+                rec.record_data_size()
+            );
+        }
+        out += &format!("Subkey Cache Count: {}\n", self.subkey_cache.len());
+        out += &format!(
+            "Subkey Cache Total Size: {}\n",
+            self.subkey_cache_total_size
+        );
+        out += &format!("Total Storage Space: {}\n", self.total_storage_space);
+        out += &format!("Dead Records: {}\n", self.dead_records.len());
+        for dr in &self.dead_records {
+            out += &format!("  {}\n", dr.0.key.to_string());
+        }
+        out += &format!("Changed Records: {}\n", self.changed_records.len());
+        for cr in &self.changed_records {
+            out += &format!("  {}\n", cr.key.to_string());
+        }
+
+        out
+    }
 }
diff --git a/veilid-core/src/veilid_api/debug.rs b/veilid-core/src/veilid_api/debug.rs
index 2b7c3c49..f54471e2 100644
--- a/veilid-core/src/veilid_api/debug.rs
+++ b/veilid-core/src/veilid_api/debug.rs
@@ -874,6 +874,39 @@ impl VeilidAPI {
         }
     }
 
+    async fn debug_record_list(&self, args: Vec<String>) -> Result<String, VeilidAPIError> {
+        // <local|remote>
+        let storage_manager = self.storage_manager()?;
+
+        let scope = get_debug_argument_at(&args, 1, "debug_record_list", "scope", get_string)?;
+        let out = match scope.as_str() {
+            "local" => {
+                let mut out = format!("Local Records:\n");
+                out += &storage_manager.debug_local_records().await;
+                out
+            }
+            "remote" => {
+                let mut out = format!("Remote Records:\n");
+                out += &storage_manager.debug_remote_records().await;
+                out
+            }
+            _ => "Invalid scope\n".to_owned(),
+        };
+        return Ok(out);
+    }
+
+    async fn debug_record(&self, args: String) -> Result<String, VeilidAPIError> {
+        let args: Vec<String> = args.split_whitespace().map(|s| s.to_owned()).collect();
+
+        let command = get_debug_argument_at(&args, 0, "debug_record", "command", get_string)?;
+
+        if command == "list" {
+            self.debug_record_list(args).await
+        } else {
+            Ok(">>> Unknown command\n".to_owned())
+        }
+    }
+
     pub async fn debug_help(&self, _args: String) -> Result<String, VeilidAPIError> {
         Ok(r#">>> Debug commands:
         help
@@ -897,6 +930,7 @@ impl VeilidAPI {
               list
               import <blob>
               test <route>
+        record list <local|remote> 
 
         <destination> is:
          * direct:  <node>[+<safety>][<modifiers>]
@@ -953,6 +987,8 @@ impl VeilidAPI {
                 self.debug_restart(rest).await
             } else if arg == "route" {
                 self.debug_route(rest).await
+            } else if arg == "record" {
+                self.debug_record(rest).await
             } else {
                 Err(VeilidAPIError::generic("Unknown debug command"))
             }
diff --git a/veilid-core/src/veilid_api/types/veilid_state.rs b/veilid-core/src/veilid_api/types/veilid_state.rs
index d2bb50b2..739cbee3 100644
--- a/veilid-core/src/veilid_api/types/veilid_state.rs
+++ b/veilid-core/src/veilid_api/types/veilid_state.rs
@@ -96,7 +96,7 @@ pub struct VeilidStateNetwork {
     Debug, Clone, PartialEq, Eq, Serialize, Deserialize, RkyvArchive, RkyvSerialize, RkyvDeserialize,
 )]
 #[archive_attr(repr(C), derive(CheckBytes))]
-pub struct VeilidStateRoute {
+pub struct VeilidRouteChange {
     pub dead_routes: Vec<RouteId>,
     pub dead_remote_routes: Vec<RouteId>,
 }
@@ -130,7 +130,7 @@ pub enum VeilidUpdate {
     Attachment(VeilidStateAttachment),
     Network(VeilidStateNetwork),
     Config(VeilidStateConfig),
-    Route(VeilidStateRoute),
+    RouteChange(VeilidRouteChange),
     ValueChange(VeilidValueChange),
     Shutdown,
 }
diff --git a/veilid-flutter/lib/veilid.dart b/veilid-flutter/lib/veilid.dart
index 387d0bba..c6087efe 100644
--- a/veilid-flutter/lib/veilid.dart
+++ b/veilid-flutter/lib/veilid.dart
@@ -234,6 +234,201 @@ Object? veilidApiToEncodable(Object? value) {
   throw UnsupportedError('Cannot convert to JSON: $value');
 }
 
+//////////////////////////////////////
+/// Crypto
+
+typedef CryptoKind = String;
+const cryptoKindVLD0 = "VLD0";
+const cryptoKindNONE = "NONE";
+
+//////////////////////////////////////
+/// DHT Schema
+
+abstract class DHTSchema {
+  factory DHTSchema.fromJson(dynamic json) {
+    switch (json["kind"]) {
+      case "DFLT":
+        {
+          return DHTSchemaDFLT(oCnt: json["o_cnt"]);
+        }
+      case "SMPL":
+        {
+          return DHTSchemaSMPL(
+              oCnt: json["o_cnt"],
+              members: List<DHTSchemaMember>.from(
+                  json['members'].map((j) => DHTSchemaMember.fromJson(j))));
+        }
+      default:
+        {
+          throw VeilidAPIExceptionInternal(
+              "Invalid VeilidAPIException type: ${json['kind']}");
+        }
+    }
+  }
+  Map<String, dynamic> get json;
+}
+
+class DHTSchemaDFLT implements DHTSchema {
+  final int oCnt;
+  //
+  DHTSchemaDFLT({
+    required this.oCnt,
+  }) {
+    if (oCnt < 0 || oCnt > 65535) {
+      throw VeilidAPIExceptionInvalidArgument(
+          "value out of range", "oCnt", oCnt.toString());
+    }
+  }
+
+  @override
+  Map<String, dynamic> get json {
+    return {
+      'kind': "DFLT",
+      'o_cnt': oCnt,
+    };
+  }
+}
+
+class DHTSchemaMember {
+  String mKey;
+  int mCnt;
+
+  DHTSchemaMember({
+    required this.mKey,
+    required this.mCnt,
+  }) {
+    if (mCnt < 0 || mCnt > 65535) {
+      throw VeilidAPIExceptionInvalidArgument(
+          "value out of range", "mCnt", mCnt.toString());
+    }
+  }
+
+  Map<String, dynamic> get json {
+    return {
+      'm_key': mKey,
+      'm_cnt': mCnt,
+    };
+  }
+
+  DHTSchemaMember.fromJson(dynamic json)
+      : mKey = json['m_key'],
+        mCnt = json['m_cnt'];
+}
+
+class DHTSchemaSMPL implements DHTSchema {
+  final int oCnt;
+  final List<DHTSchemaMember> members;
+  //
+  DHTSchemaSMPL({
+    required this.oCnt,
+    required this.members,
+  }) {
+    if (oCnt < 0 || oCnt > 65535) {
+      throw VeilidAPIExceptionInvalidArgument(
+          "value out of range", "oCnt", oCnt.toString());
+    }
+  }
+  @override
+  Map<String, dynamic> get json {
+    return {
+      'kind': "SMPL",
+      'o_cnt': oCnt,
+      'members': members.map((p) => p.json).toList(),
+    };
+  }
+}
+
+//////////////////////////////////////
+/// DHTRecordDescriptor
+
+class DHTRecordDescriptor {
+  String key;
+  String owner;
+  String? ownerSecret;
+  DHTSchema schema;
+
+  DHTRecordDescriptor({
+    required this.key,
+    required this.owner,
+    this.ownerSecret,
+    required this.schema,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'key': key,
+      'owner': owner,
+      'owner_secret': ownerSecret,
+      'schema': schema.json,
+    };
+  }
+
+  DHTRecordDescriptor.fromJson(dynamic json)
+      : key = json['key'],
+        owner = json['owner'],
+        ownerSecret = json['owner_secret'],
+        schema = DHTSchema.fromJson(json['schema']);
+}
+
+//////////////////////////////////////
+/// ValueSubkeyRange
+
+class ValueSubkeyRange {
+  final int low;
+  final int high;
+
+  ValueSubkeyRange({
+    required this.low,
+    required this.high,
+  }) {
+    if (low < 0 || low > high) {
+      throw VeilidAPIExceptionInvalidArgument(
+          "invalid range", "low", low.toString());
+    }
+    if (high < 0) {
+      throw VeilidAPIExceptionInvalidArgument(
+          "invalid range", "high", high.toString());
+    }
+  }
+
+  ValueSubkeyRange.fromJson(dynamic json)
+      : low = json[0],
+        high = json[1] {
+    if ((json as List<int>).length != 2) {
+      throw VeilidAPIExceptionInvalidArgument(
+          "not a pair of integers", "json", json.toString());
+    }
+  }
+
+  List<dynamic> get json {
+    return [low, high];
+  }
+}
+
+//////////////////////////////////////
+/// ValueData
+
+class ValueData {
+  final int seq;
+  final Uint8List data;
+  final String writer;
+
+  ValueData({
+    required this.seq,
+    required this.data,
+    required this.writer,
+  });
+
+  ValueData.fromJson(dynamic json)
+      : seq = json['seq'],
+        data = base64UrlNoPadDecode(json['data']),
+        writer = json['writer'];
+
+  Map<String, dynamic> get json {
+    return {'seq': seq, 'data': base64UrlNoPadEncode(data), 'writer': writer};
+  }
+}
+
 //////////////////////////////////////
 /// AttachmentState
 
@@ -1287,9 +1482,21 @@ abstract class VeilidUpdate {
         {
           return VeilidUpdateConfig(state: VeilidStateConfig.fromJson(json));
         }
-      case "Route":
+      case "RouteChange":
         {
-          return VeilidUpdateRoute(state: VeilidStateRoute.fromJson(json));
+          return VeilidUpdateRouteChange(
+              deadRoutes: List<String>.from(json['dead_routes'].map((j) => j)),
+              deadRemoteRoutes:
+                  List<String>.from(json['dead_remote_routes'].map((j) => j)));
+        }
+      case "ValueChange":
+        {
+          return VeilidUpdateValueChange(
+              key: json['key'],
+              subkeys: List<ValueSubkeyRange>.from(
+                  json['subkeys'].map((j) => ValueSubkeyRange.fromJson(j))),
+              count: json['count'],
+              valueData: ValueData.fromJson(json['value_data']));
         }
       default:
         {
@@ -1405,16 +1612,46 @@ class VeilidUpdateConfig implements VeilidUpdate {
   }
 }
 
-class VeilidUpdateRoute implements VeilidUpdate {
-  final VeilidStateRoute state;
+class VeilidUpdateRouteChange implements VeilidUpdate {
+  final List<String> deadRoutes;
+  final List<String> deadRemoteRoutes;
   //
-  VeilidUpdateRoute({required this.state});
+  VeilidUpdateRouteChange({
+    required this.deadRoutes,
+    required this.deadRemoteRoutes,
+  });
 
   @override
   Map<String, dynamic> get json {
-    var jsonRep = state.json;
-    jsonRep['kind'] = "Route";
-    return jsonRep;
+    return {
+      'dead_routes': deadRoutes.map((p) => p).toList(),
+      'dead_remote_routes': deadRemoteRoutes.map((p) => p).toList()
+    };
+  }
+}
+
+class VeilidUpdateValueChange implements VeilidUpdate {
+  final String key;
+  final List<ValueSubkeyRange> subkeys;
+  final int count;
+  final ValueData valueData;
+
+  //
+  VeilidUpdateValueChange({
+    required this.key,
+    required this.subkeys,
+    required this.count,
+    required this.valueData,
+  });
+
+  @override
+  Map<String, dynamic> get json {
+    return {
+      'key': key,
+      'subkeys': subkeys.map((p) => p.json).toList(),
+      'count': count,
+      'value_data': valueData.json,
+    };
   }
 }
 
@@ -1492,31 +1729,6 @@ class VeilidStateConfig {
   }
 }
 
-//////////////////////////////////////
-/// VeilidStateRoute
-
-class VeilidStateRoute {
-  final List<String> deadRoutes;
-  final List<String> deadRemoteRoutes;
-
-  VeilidStateRoute({
-    required this.deadRoutes,
-    required this.deadRemoteRoutes,
-  });
-
-  VeilidStateRoute.fromJson(dynamic json)
-      : deadRoutes = List<String>.from(json['dead_routes'].map((j) => j)),
-        deadRemoteRoutes =
-            List<String>.from(json['dead_remote_routes'].map((j) => j));
-
-  Map<String, dynamic> get json {
-    return {
-      'dead_routes': deadRoutes.map((p) => p).toList(),
-      'dead_remote_routes': deadRemoteRoutes.map((p) => p).toList()
-    };
-  }
-}
-
 //////////////////////////////////////
 /// VeilidState
 
@@ -1893,12 +2105,79 @@ class RouteBlob {
 
 //////////////////////////////////////
 /// VeilidRoutingContext
+
 abstract class VeilidRoutingContext {
   VeilidRoutingContext withPrivacy();
   VeilidRoutingContext withCustomPrivacy(Stability stability);
   VeilidRoutingContext withSequencing(Sequencing sequencing);
   Future<Uint8List> appCall(String target, Uint8List request);
   Future<void> appMessage(String target, Uint8List message);
+
+  Future<DHTRecordDescriptor> createDHTRecord(
+      CryptoKind kind, DHTSchema schema);
+xxx continue here
+  // pub async fn open_dht_record(
+  //     &self,
+  //     key: TypedKey,
+  //     writer: Option<KeyPair>,
+  // ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
+  //     let storage_manager = self.api.storage_manager()?;
+  //     storage_manager
+  //         .open_record(key, writer, self.unlocked_inner.safety_selection)
+  //         .await
+  // }
+
+  // pub async fn close_dht_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
+  //     let storage_manager = self.api.storage_manager()?;
+  //     storage_manager.close_record(key).await
+  // }
+
+  // pub async fn delete_dht_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
+  //     let storage_manager = self.api.storage_manager()?;
+  //     storage_manager.delete_record(key).await
+  // }
+
+  // pub async fn get_dht_value(
+  //     &self,
+  //     key: TypedKey,
+  //     subkey: ValueSubkey,
+  //     force_refresh: bool,
+  // ) -> Result<Option<ValueData>, VeilidAPIError> {
+  //     let storage_manager = self.api.storage_manager()?;
+  //     storage_manager.get_value(key, subkey, force_refresh).await
+  // }
+
+  // pub async fn set_dht_value(
+  //     &self,
+  //     key: TypedKey,
+  //     subkey: ValueSubkey,
+  //     data: Vec<u8>,
+  // ) -> Result<Option<ValueData>, VeilidAPIError> {
+  //     let storage_manager = self.api.storage_manager()?;
+  //     storage_manager.set_value(key, subkey, data).await
+  // }
+
+  // pub async fn watch_dht_values(
+  //     &self,
+  //     key: TypedKey,
+  //     subkeys: &[ValueSubkeyRange],
+  //     expiration: Timestamp,
+  //     count: u32,
+  // ) -> Result<Timestamp, VeilidAPIError> {
+  //     let storage_manager = self.api.storage_manager()?;
+  //     storage_manager
+  //         .watch_values(key, subkeys, expiration, count)
+  //         .await
+  // }
+
+  // pub async fn cancel_dht_watch(
+  //     &self,
+  //     key: TypedKey,
+  //     subkeys: &[ValueSubkeyRange],
+  // ) -> Result<bool, VeilidAPIError> {
+  //     let storage_manager = self.api.storage_manager()?;
+  //     storage_manager.cancel_watch_values(key, subkeys).await
+  // }
 }
 
 /////////////////////////////////////
diff --git a/veilid-server/src/cmdline.rs b/veilid-server/src/cmdline.rs
index 9f37de05..f2e7906a 100644
--- a/veilid-server/src/cmdline.rs
+++ b/veilid-server/src/cmdline.rs
@@ -82,7 +82,7 @@ fn do_clap_matches(default_config_path: &OsStr) -> Result<clap::ArgMatches, clap
                 .long("generate-key-pair")
                 .takes_value(true)
                 .value_name("crypto_kind")
-                .default_missing_value("VLD0")
+                .default_missing_value("")
                 .help("Only generate a new keypair and print it")
                 .long_help("Generate a new keypair for a specific crypto kind and print both the key and its secret to the terminal, then exit immediately."),                
         )
diff --git a/veilid-server/src/main.rs b/veilid-server/src/main.rs
index 19b08b71..63bdf1b3 100644
--- a/veilid-server/src/main.rs
+++ b/veilid-server/src/main.rs
@@ -45,10 +45,27 @@ fn main() -> EyreResult<()> {
     // --- Generate DHT Key ---
     if matches.occurrences_of("generate-key-pair") != 0 {
         if let Some(ckstr) = matches.get_one::<String>("generate-key-pair") {
-            let ck: veilid_core::CryptoKind =
-                veilid_core::FourCC::from_str(ckstr).wrap_err("couldn't parse crypto kind")?;
-            let tkp = veilid_core::Crypto::generate_keypair(ck).wrap_err("invalid crypto kind")?;
-            println!("{}", tkp.to_string());
+            if ckstr == "" {
+                let mut tks = veilid_core::TypedKeySet::new();
+                let mut tss = veilid_core::TypedSecretSet::new();
+                for ck in veilid_core::VALID_CRYPTO_KINDS {
+                    let tkp = veilid_core::Crypto::generate_keypair(ck)
+                        .wrap_err("invalid crypto kind")?;
+                    tks.add(veilid_core::TypedKey::new(tkp.kind, tkp.value.key));
+                    tss.add(veilid_core::TypedSecret::new(tkp.kind, tkp.value.secret));
+                }
+                println!(
+                    "Public Keys:\n{}\nSecret Keys:\n{}\n",
+                    tks.to_string(),
+                    tss.to_string()
+                );
+            } else {
+                let ck: veilid_core::CryptoKind =
+                    veilid_core::FourCC::from_str(ckstr).wrap_err("couldn't parse crypto kind")?;
+                let tkp =
+                    veilid_core::Crypto::generate_keypair(ck).wrap_err("invalid crypto kind")?;
+                println!("{}", tkp.to_string());
+            }
             return Ok(());
         } else {
             bail!("missing crypto kind");

From 5eb2ea656c70427b3c3c377a9d5ae8719c3256ad Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Sat, 13 May 2023 20:36:52 -0400
Subject: [PATCH 31/74] api work

---
 veilid-core/src/network_manager/mod.rs        |    2 +-
 .../src/veilid_api/types/app_message_call.rs  |   12 +-
 .../src/veilid_api/types/veilid_state.rs      |    2 +-
 veilid-flutter/example/pubspec.lock           |  176 +-
 veilid-flutter/lib/base64url_no_pad.dart      |   15 -
 veilid-flutter/lib/routing_context.dart       |  277 ++
 veilid-flutter/lib/veilid.dart                | 2238 +----------------
 veilid-flutter/lib/veilid_api_exception.dart  |  286 +++
 veilid-flutter/lib/veilid_config.dart         |  744 ++++++
 veilid-flutter/lib/veilid_crypto.dart         |  155 ++
 veilid-flutter/lib/veilid_encoding.dart       |  116 +
 veilid-flutter/lib/veilid_ffi.dart            |  149 +-
 veilid-flutter/lib/veilid_js.dart             |   89 +
 veilid-flutter/lib/veilid_state.dart          |  594 +++++
 veilid-flutter/lib/veilid_table_db.dart       |   59 +
 veilid-flutter/pubspec.yaml                   |    1 +
 veilid-flutter/rust/src/dart_ffi.rs           |   91 +-
 17 files changed, 2745 insertions(+), 2261 deletions(-)
 delete mode 100644 veilid-flutter/lib/base64url_no_pad.dart
 create mode 100644 veilid-flutter/lib/routing_context.dart
 create mode 100644 veilid-flutter/lib/veilid_api_exception.dart
 create mode 100644 veilid-flutter/lib/veilid_config.dart
 create mode 100644 veilid-flutter/lib/veilid_crypto.dart
 create mode 100644 veilid-flutter/lib/veilid_encoding.dart
 create mode 100644 veilid-flutter/lib/veilid_state.dart
 create mode 100644 veilid-flutter/lib/veilid_table_db.dart

diff --git a/veilid-core/src/network_manager/mod.rs b/veilid-core/src/network_manager/mod.rs
index 6b71130d..3a57e134 100644
--- a/veilid-core/src/network_manager/mod.rs
+++ b/veilid-core/src/network_manager/mod.rs
@@ -1562,7 +1562,7 @@ impl NetworkManager {
                     if let Some(nr) = routing_table.lookup_node_ref(k) {
                         let peer_stats = nr.peer_stats();
                         let peer = PeerTableData {
-                            node_ids: nr.node_ids().iter().map(|x| x.to_string()).collect(),
+                            node_ids: nr.node_ids().iter().copied().collect(),
                             peer_address: v.last_connection.remote().to_string(),
                             peer_stats,
                         };
diff --git a/veilid-core/src/veilid_api/types/app_message_call.rs b/veilid-core/src/veilid_api/types/app_message_call.rs
index 95fa27f8..eb3b99e0 100644
--- a/veilid-core/src/veilid_api/types/app_message_call.rs
+++ b/veilid-core/src/veilid_api/types/app_message_call.rs
@@ -8,18 +8,18 @@ use super::*;
 pub struct VeilidAppMessage {
     /// Some(sender) if the message was sent directly, None if received via a private/safety route
     #[serde(with = "opt_json_as_string")]
-    sender: Option<PublicKey>,
+    sender: Option<TypedKey>, xxx continue propagating this publickey->typedkey and get all the FFI done
     /// The content of the message to deliver to the application
     #[serde(with = "json_as_base64")]
     message: Vec<u8>,
 }
 
 impl VeilidAppMessage {
-    pub fn new(sender: Option<PublicKey>, message: Vec<u8>) -> Self {
+    pub fn new(sender: Option<TypedKey>, message: Vec<u8>) -> Self {
         Self { sender, message }
     }
 
-    pub fn sender(&self) -> Option<&PublicKey> {
+    pub fn sender(&self) -> Option<&TypedKey> {
         self.sender.as_ref()
     }
     pub fn message(&self) -> &[u8] {
@@ -35,7 +35,7 @@ impl VeilidAppMessage {
 pub struct VeilidAppCall {
     /// Some(sender) if the request was sent directly, None if received via a private/safety route
     #[serde(with = "opt_json_as_string")]
-    sender: Option<PublicKey>,
+    sender: Option<TypedKey>,
     /// The content of the request to deliver to the application
     #[serde(with = "json_as_base64")]
     message: Vec<u8>,
@@ -45,7 +45,7 @@ pub struct VeilidAppCall {
 }
 
 impl VeilidAppCall {
-    pub fn new(sender: Option<PublicKey>, message: Vec<u8>, id: OperationId) -> Self {
+    pub fn new(sender: Option<TypedKey>, message: Vec<u8>, id: OperationId) -> Self {
         Self {
             sender,
             message,
@@ -53,7 +53,7 @@ impl VeilidAppCall {
         }
     }
 
-    pub fn sender(&self) -> Option<&PublicKey> {
+    pub fn sender(&self) -> Option<&TypedKey> {
         self.sender.as_ref()
     }
     pub fn message(&self) -> &[u8] {
diff --git a/veilid-core/src/veilid_api/types/veilid_state.rs b/veilid-core/src/veilid_api/types/veilid_state.rs
index 739cbee3..09f21a24 100644
--- a/veilid-core/src/veilid_api/types/veilid_state.rs
+++ b/veilid-core/src/veilid_api/types/veilid_state.rs
@@ -74,7 +74,7 @@ pub struct VeilidStateAttachment {
 )]
 #[archive_attr(repr(C), derive(CheckBytes))]
 pub struct PeerTableData {
-    pub node_ids: Vec<String>,
+    pub node_ids: Vec<TypedKey>,
     pub peer_address: String,
     pub peer_stats: PeerStats,
 }
diff --git a/veilid-flutter/example/pubspec.lock b/veilid-flutter/example/pubspec.lock
index 68059eef..c8f7903c 100644
--- a/veilid-flutter/example/pubspec.lock
+++ b/veilid-flutter/example/pubspec.lock
@@ -5,98 +5,120 @@ packages:
     dependency: "direct main"
     description:
       name: ansicolor
-      url: "https://pub.dartlang.org"
+      sha256: "607f8fa9786f392043f169898923e6c59b4518242b68b8862eb8a8b7d9c30b4a"
+      url: "https://pub.dev"
     source: hosted
     version: "2.0.1"
   async:
     dependency: transitive
     description:
       name: async
-      url: "https://pub.dartlang.org"
+      sha256: bfe67ef28df125b7dddcea62755991f807aa39a2492a23e1550161692950bbe0
+      url: "https://pub.dev"
     source: hosted
-    version: "2.9.0"
+    version: "2.10.0"
   boolean_selector:
     dependency: transitive
     description:
       name: boolean_selector
-      url: "https://pub.dartlang.org"
+      sha256: "6cfb5af12253eaf2b368f07bacc5a80d1301a071c73360d746b7f2e32d762c66"
+      url: "https://pub.dev"
     source: hosted
-    version: "2.1.0"
+    version: "2.1.1"
   change_case:
     dependency: transitive
     description:
       name: change_case
-      url: "https://pub.dartlang.org"
+      sha256: "2757d850a43d333fd12d6cce49e2f1248ac89a16ae10ce4ca34d4c7d73286f3c"
+      url: "https://pub.dev"
     source: hosted
     version: "1.0.2"
   characters:
     dependency: transitive
     description:
       name: characters
-      url: "https://pub.dartlang.org"
+      sha256: e6a326c8af69605aec75ed6c187d06b349707a27fbff8222ca9cc2cff167975c
+      url: "https://pub.dev"
     source: hosted
     version: "1.2.1"
+  charcode:
+    dependency: transitive
+    description:
+      name: charcode
+      sha256: fb98c0f6d12c920a02ee2d998da788bca066ca5f148492b7085ee23372b12306
+      url: "https://pub.dev"
+    source: hosted
+    version: "1.3.1"
   clock:
     dependency: transitive
     description:
       name: clock
-      url: "https://pub.dartlang.org"
+      sha256: cb6d7f03e1de671e34607e909a7213e31d7752be4fb66a86d29fe1eb14bfb5cf
+      url: "https://pub.dev"
     source: hosted
     version: "1.1.1"
   collection:
     dependency: transitive
     description:
       name: collection
-      url: "https://pub.dartlang.org"
+      sha256: cfc915e6923fe5ce6e153b0723c753045de46de1b4d63771530504004a45fae0
+      url: "https://pub.dev"
     source: hosted
-    version: "1.16.0"
+    version: "1.17.0"
   convert:
     dependency: transitive
     description:
       name: convert
-      url: "https://pub.dartlang.org"
+      sha256: "0f08b14755d163f6e2134cb58222dd25ea2a2ee8a195e53983d57c075324d592"
+      url: "https://pub.dev"
     source: hosted
     version: "3.1.1"
   cupertino_icons:
     dependency: "direct main"
     description:
       name: cupertino_icons
-      url: "https://pub.dartlang.org"
+      sha256: e35129dc44c9118cee2a5603506d823bab99c68393879edb440e0090d07586be
+      url: "https://pub.dev"
     source: hosted
     version: "1.0.5"
   equatable:
     dependency: transitive
     description:
       name: equatable
-      url: "https://pub.dartlang.org"
+      sha256: c2b87cb7756efdf69892005af546c56c0b5037f54d2a88269b4f347a505e3ca2
+      url: "https://pub.dev"
     source: hosted
     version: "2.0.5"
   fake_async:
     dependency: transitive
     description:
       name: fake_async
-      url: "https://pub.dartlang.org"
+      sha256: "511392330127add0b769b75a987850d136345d9227c6b94c96a04cf4a391bf78"
+      url: "https://pub.dev"
     source: hosted
     version: "1.3.1"
   ffi:
     dependency: transitive
     description:
       name: ffi
-      url: "https://pub.dartlang.org"
+      sha256: a38574032c5f1dd06c4aee541789906c12ccaab8ba01446e800d9c5b79c4a978
+      url: "https://pub.dev"
     source: hosted
     version: "2.0.1"
   file:
     dependency: transitive
     description:
       name: file
-      url: "https://pub.dartlang.org"
+      sha256: "1b92bec4fc2a72f59a8e15af5f52cd441e4a7860b49499d69dfa817af20e925d"
+      url: "https://pub.dev"
     source: hosted
     version: "6.1.4"
   file_utils:
     dependency: transitive
     description:
       name: file_utils
-      url: "https://pub.dartlang.org"
+      sha256: d1e64389a22649095c8405c9e177272caf05139255931c9ff30d53b5c9bcaa34
+      url: "https://pub.dev"
     source: hosted
     version: "1.0.1"
   flutter:
@@ -108,14 +130,16 @@ packages:
     dependency: "direct main"
     description:
       name: flutter_acrylic
-      url: "https://pub.dartlang.org"
+      sha256: "646200d98e8dd2bd4ab931d4ba4f6b4cb899475d6401414017ba5d71b0fac42b"
+      url: "https://pub.dev"
     source: hosted
     version: "1.0.0+2"
   flutter_lints:
     dependency: "direct dev"
     description:
       name: flutter_lints
-      url: "https://pub.dartlang.org"
+      sha256: aeb0b80a8b3709709c9cc496cdc027c5b3216796bc0af0ce1007eaf24464fd4c
+      url: "https://pub.dev"
     source: hosted
     version: "2.0.1"
   flutter_test:
@@ -132,140 +156,160 @@ packages:
     dependency: transitive
     description:
       name: globbing
-      url: "https://pub.dartlang.org"
+      sha256: "4f89cfaf6fa74c9c1740a96259da06bd45411ede56744e28017cc534a12b6e2d"
+      url: "https://pub.dev"
     source: hosted
     version: "1.0.0"
   js:
     dependency: transitive
     description:
       name: js
-      url: "https://pub.dartlang.org"
+      sha256: "5528c2f391ededb7775ec1daa69e65a2d61276f7552de2b5f7b8d34ee9fd4ab7"
+      url: "https://pub.dev"
     source: hosted
-    version: "0.6.4"
+    version: "0.6.5"
   lints:
     dependency: transitive
     description:
       name: lints
-      url: "https://pub.dartlang.org"
+      sha256: "5e4a9cd06d447758280a8ac2405101e0e2094d2a1dbdd3756aec3fe7775ba593"
+      url: "https://pub.dev"
     source: hosted
     version: "2.0.1"
   loggy:
     dependency: "direct main"
     description:
       name: loggy
-      url: "https://pub.dartlang.org"
+      sha256: "981e03162bbd3a5a843026f75f73d26e4a0d8aa035ae060456ca7b30dfd1e339"
+      url: "https://pub.dev"
     source: hosted
     version: "2.0.3"
   matcher:
     dependency: transitive
     description:
       name: matcher
-      url: "https://pub.dartlang.org"
+      sha256: "16db949ceee371e9b99d22f88fa3a73c4e59fd0afed0bd25fc336eb76c198b72"
+      url: "https://pub.dev"
     source: hosted
-    version: "0.12.12"
+    version: "0.12.13"
   material_color_utilities:
     dependency: transitive
     description:
       name: material_color_utilities
-      url: "https://pub.dartlang.org"
+      sha256: d92141dc6fe1dad30722f9aa826c7fbc896d021d792f80678280601aff8cf724
+      url: "https://pub.dev"
     source: hosted
-    version: "0.1.5"
+    version: "0.2.0"
   meta:
     dependency: transitive
     description:
       name: meta
-      url: "https://pub.dartlang.org"
+      sha256: "6c268b42ed578a53088d834796959e4a1814b5e9e164f147f580a386e5decf42"
+      url: "https://pub.dev"
     source: hosted
     version: "1.8.0"
   path:
     dependency: "direct main"
     description:
       name: path
-      url: "https://pub.dartlang.org"
+      sha256: db9d4f58c908a4ba5953fcee2ae317c94889433e5024c27ce74a37f94267945b
+      url: "https://pub.dev"
     source: hosted
     version: "1.8.2"
   path_provider:
     dependency: "direct main"
     description:
       name: path_provider
-      url: "https://pub.dartlang.org"
+      sha256: "050e8e85e4b7fecdf2bb3682c1c64c4887a183720c802d323de8a5fd76d372dd"
+      url: "https://pub.dev"
     source: hosted
     version: "2.0.11"
   path_provider_android:
     dependency: transitive
     description:
       name: path_provider_android
-      url: "https://pub.dartlang.org"
+      sha256: a776c088d671b27f6e3aa8881d64b87b3e80201c64e8869b811325de7a76c15e
+      url: "https://pub.dev"
     source: hosted
     version: "2.0.22"
   path_provider_ios:
     dependency: transitive
     description:
       name: path_provider_ios
-      url: "https://pub.dartlang.org"
+      sha256: "03d639406f5343478352433f00d3c4394d52dac8df3d847869c5e2333e0bbce8"
+      url: "https://pub.dev"
     source: hosted
     version: "2.0.11"
   path_provider_linux:
     dependency: transitive
     description:
       name: path_provider_linux
-      url: "https://pub.dartlang.org"
+      sha256: ab0987bf95bc591da42dffb38c77398fc43309f0b9b894dcc5d6f40c4b26c379
+      url: "https://pub.dev"
     source: hosted
     version: "2.1.7"
   path_provider_macos:
     dependency: transitive
     description:
       name: path_provider_macos
-      url: "https://pub.dartlang.org"
+      sha256: "2a97e7fbb7ae9dcd0dfc1220a78e9ec3e71da691912e617e8715ff2a13086ae8"
+      url: "https://pub.dev"
     source: hosted
     version: "2.0.6"
   path_provider_platform_interface:
     dependency: transitive
     description:
       name: path_provider_platform_interface
-      url: "https://pub.dartlang.org"
+      sha256: f0abc8ebd7253741f05488b4813d936b4d07c6bae3e86148a09e342ee4b08e76
+      url: "https://pub.dev"
     source: hosted
     version: "2.0.5"
   path_provider_windows:
     dependency: transitive
     description:
       name: path_provider_windows
-      url: "https://pub.dartlang.org"
+      sha256: bcabbe399d4042b8ee687e17548d5d3f527255253b4a639f5f8d2094a9c2b45c
+      url: "https://pub.dev"
     source: hosted
     version: "2.1.3"
   platform:
     dependency: transitive
     description:
       name: platform
-      url: "https://pub.dartlang.org"
+      sha256: "4a451831508d7d6ca779f7ac6e212b4023dd5a7d08a27a63da33756410e32b76"
+      url: "https://pub.dev"
     source: hosted
     version: "3.1.0"
   platform_info:
     dependency: transitive
     description:
       name: platform_info
-      url: "https://pub.dartlang.org"
+      sha256: "012e73712166cf0b56d3eb95c0d33491f56b428c169eca385f036448474147e4"
+      url: "https://pub.dev"
     source: hosted
     version: "3.2.0"
   plugin_platform_interface:
     dependency: transitive
     description:
       name: plugin_platform_interface
-      url: "https://pub.dartlang.org"
+      sha256: dbf0f707c78beedc9200146ad3cb0ab4d5da13c246336987be6940f026500d3a
+      url: "https://pub.dev"
     source: hosted
     version: "2.1.3"
   process:
     dependency: transitive
     description:
       name: process
-      url: "https://pub.dartlang.org"
+      sha256: "53fd8db9cec1d37b0574e12f07520d582019cb6c44abf5479a01505099a34a09"
+      url: "https://pub.dev"
     source: hosted
     version: "4.2.4"
   quiver:
     dependency: transitive
     description:
       name: quiver
-      url: "https://pub.dartlang.org"
+      sha256: "93982981971e812c94d4a6fa3a57b89f9ec12b38b6380cd3c1370c3b01e4580e"
+      url: "https://pub.dev"
     source: hosted
     version: "3.1.0"
   sky_engine:
@@ -277,65 +321,74 @@ packages:
     dependency: transitive
     description:
       name: source_span
-      url: "https://pub.dartlang.org"
+      sha256: dd904f795d4b4f3b870833847c461801f6750a9fa8e61ea5ac53f9422b31f250
+      url: "https://pub.dev"
     source: hosted
-    version: "1.9.0"
+    version: "1.9.1"
   stack_trace:
     dependency: transitive
     description:
       name: stack_trace
-      url: "https://pub.dartlang.org"
+      sha256: c3c7d8edb15bee7f0f74debd4b9c5f3c2ea86766fe4178eb2a18eb30a0bdaed5
+      url: "https://pub.dev"
     source: hosted
-    version: "1.10.0"
+    version: "1.11.0"
   stream_channel:
     dependency: transitive
     description:
       name: stream_channel
-      url: "https://pub.dartlang.org"
+      sha256: "83615bee9045c1d322bbbd1ba209b7a749c2cbcdcb3fdd1df8eb488b3279c1c8"
+      url: "https://pub.dev"
     source: hosted
-    version: "2.1.0"
+    version: "2.1.1"
   string_scanner:
     dependency: transitive
     description:
       name: string_scanner
-      url: "https://pub.dartlang.org"
+      sha256: "556692adab6cfa87322a115640c11f13cb77b3f076ddcc5d6ae3c20242bedcde"
+      url: "https://pub.dev"
     source: hosted
-    version: "1.1.1"
+    version: "1.2.0"
   system_info2:
     dependency: transitive
     description:
       name: system_info2
-      url: "https://pub.dartlang.org"
+      sha256: af2f948e3f31a3367a049932a8ad59faf0063ecf836a020d975b9f41566d8bc9
+      url: "https://pub.dev"
     source: hosted
     version: "3.0.2"
   term_glyph:
     dependency: transitive
     description:
       name: term_glyph
-      url: "https://pub.dartlang.org"
+      sha256: a29248a84fbb7c79282b40b8c72a1209db169a2e0542bce341da992fe1bc7e84
+      url: "https://pub.dev"
     source: hosted
     version: "1.2.1"
   test_api:
     dependency: transitive
     description:
       name: test_api
-      url: "https://pub.dartlang.org"
+      sha256: ad540f65f92caa91bf21dfc8ffb8c589d6e4dc0c2267818b4cc2792857706206
+      url: "https://pub.dev"
     source: hosted
-    version: "0.4.12"
+    version: "0.4.16"
   typed_data:
     dependency: transitive
     description:
       name: typed_data
-      url: "https://pub.dartlang.org"
+      sha256: "26f87ade979c47a150c9eaab93ccd2bebe70a27dc0b4b29517f2904f04eb11a5"
+      url: "https://pub.dev"
     source: hosted
     version: "1.3.1"
   vector_math:
     dependency: transitive
     description:
       name: vector_math
-      url: "https://pub.dartlang.org"
+      sha256: "80b3257d1492ce4d091729e3a67a60407d227c27241d6927be0130c98e741803"
+      url: "https://pub.dev"
     source: hosted
-    version: "2.1.2"
+    version: "2.1.4"
   veilid:
     dependency: "direct main"
     description:
@@ -347,21 +400,24 @@ packages:
     dependency: transitive
     description:
       name: win32
-      url: "https://pub.dartlang.org"
+      sha256: ca121dbbadb3e43b449053feab0cdf3f2bff93b107cacf0290e3d29f717374b6
+      url: "https://pub.dev"
     source: hosted
     version: "3.1.2"
   xdg_directories:
     dependency: transitive
     description:
       name: xdg_directories
-      url: "https://pub.dartlang.org"
+      sha256: "11541eedefbcaec9de35aa82650b695297ce668662bbd6e3911a7fabdbde589f"
+      url: "https://pub.dev"
     source: hosted
     version: "0.2.0+2"
   xterm:
     dependency: "direct main"
     description:
       name: xterm
-      url: "https://pub.dartlang.org"
+      sha256: "990286eead883ff5ad9b8ea7674183dced2fe5421771e95ce32cbaa9117d24d8"
+      url: "https://pub.dev"
     source: hosted
     version: "3.4.0"
 sdks:
diff --git a/veilid-flutter/lib/base64url_no_pad.dart b/veilid-flutter/lib/base64url_no_pad.dart
deleted file mode 100644
index 81f97a2d..00000000
--- a/veilid-flutter/lib/base64url_no_pad.dart
+++ /dev/null
@@ -1,15 +0,0 @@
-import 'dart:convert';
-import 'dart:typed_data';
-
-String base64UrlNoPadEncode(List<int> bytes) {
-  var x = base64Url.encode(bytes);
-  while (x.endsWith('=')) {
-    x = x.substring(0, x.length - 1);
-  }
-  return x;
-}
-
-Uint8List base64UrlNoPadDecode(String source) {
-  source = base64.normalize(source);
-  return base64.decode(source);
-}
diff --git a/veilid-flutter/lib/routing_context.dart b/veilid-flutter/lib/routing_context.dart
new file mode 100644
index 00000000..83414671
--- /dev/null
+++ b/veilid-flutter/lib/routing_context.dart
@@ -0,0 +1,277 @@
+import 'dart:async';
+import 'dart:typed_data';
+import 'dart:convert';
+
+import 'package:change_case/change_case.dart';
+
+import 'base64url_no_pad.dart';
+import 'veilid.dart';
+
+//////////////////////////////////////
+
+//////////////////////////////////////
+/// DHT Schema
+
+abstract class DHTSchema {
+  factory DHTSchema.fromJson(dynamic json) {
+    switch (json["kind"]) {
+      case "DFLT":
+        {
+          return DHTSchemaDFLT(oCnt: json["o_cnt"]);
+        }
+      case "SMPL":
+        {
+          return DHTSchemaSMPL(
+              oCnt: json["o_cnt"],
+              members: List<DHTSchemaMember>.from(
+                  json['members'].map((j) => DHTSchemaMember.fromJson(j))));
+        }
+      default:
+        {
+          throw VeilidAPIExceptionInternal(
+              "Invalid VeilidAPIException type: ${json['kind']}");
+        }
+    }
+  }
+  Map<String, dynamic> get json;
+}
+
+class DHTSchemaDFLT implements DHTSchema {
+  final int oCnt;
+  //
+  DHTSchemaDFLT({
+    required this.oCnt,
+  }) {
+    if (oCnt < 0 || oCnt > 65535) {
+      throw VeilidAPIExceptionInvalidArgument(
+          "value out of range", "oCnt", oCnt.toString());
+    }
+  }
+
+  @override
+  Map<String, dynamic> get json {
+    return {
+      'kind': "DFLT",
+      'o_cnt': oCnt,
+    };
+  }
+}
+
+class DHTSchemaMember {
+  Key mKey;
+  int mCnt;
+
+  DHTSchemaMember({
+    required this.mKey,
+    required this.mCnt,
+  }) {
+    if (mCnt < 0 || mCnt > 65535) {
+      throw VeilidAPIExceptionInvalidArgument(
+          "value out of range", "mCnt", mCnt.toString());
+    }
+  }
+
+  Map<String, dynamic> get json {
+    return {
+      'm_key': mKey,
+      'm_cnt': mCnt,
+    };
+  }
+
+  DHTSchemaMember.fromJson(dynamic json)
+      : mKey = json['m_key'],
+        mCnt = json['m_cnt'];
+}
+
+class DHTSchemaSMPL implements DHTSchema {
+  final int oCnt;
+  final List<DHTSchemaMember> members;
+  //
+  DHTSchemaSMPL({
+    required this.oCnt,
+    required this.members,
+  }) {
+    if (oCnt < 0 || oCnt > 65535) {
+      throw VeilidAPIExceptionInvalidArgument(
+          "value out of range", "oCnt", oCnt.toString());
+    }
+  }
+  @override
+  Map<String, dynamic> get json {
+    return {
+      'kind': "SMPL",
+      'o_cnt': oCnt,
+      'members': members.map((p) => p.json).toList(),
+    };
+  }
+}
+
+//////////////////////////////////////
+/// DHTRecordDescriptor
+
+class DHTRecordDescriptor {
+  TypedKey key;
+  Key owner;
+  Key? ownerSecret;
+  DHTSchema schema;
+
+  DHTRecordDescriptor({
+    required this.key,
+    required this.owner,
+    this.ownerSecret,
+    required this.schema,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'key': key.toString(),
+      'owner': owner,
+      'owner_secret': ownerSecret,
+      'schema': schema.json,
+    };
+  }
+
+  DHTRecordDescriptor.fromJson(dynamic json)
+      : key = TypedKey.fromString(json['key']),
+        owner = json['owner'],
+        ownerSecret = json['owner_secret'],
+        schema = DHTSchema.fromJson(json['schema']);
+}
+
+//////////////////////////////////////
+/// ValueSubkeyRange
+
+class ValueSubkeyRange {
+  final int low;
+  final int high;
+
+  ValueSubkeyRange({
+    required this.low,
+    required this.high,
+  }) {
+    if (low < 0 || low > high) {
+      throw VeilidAPIExceptionInvalidArgument(
+          "invalid range", "low", low.toString());
+    }
+    if (high < 0) {
+      throw VeilidAPIExceptionInvalidArgument(
+          "invalid range", "high", high.toString());
+    }
+  }
+
+  ValueSubkeyRange.fromJson(dynamic json)
+      : low = json[0],
+        high = json[1] {
+    if ((json as List<int>).length != 2) {
+      throw VeilidAPIExceptionInvalidArgument(
+          "not a pair of integers", "json", json.toString());
+    }
+  }
+
+  List<dynamic> get json {
+    return [low, high];
+  }
+}
+
+//////////////////////////////////////
+/// ValueData
+
+class ValueData {
+  final int seq;
+  final Uint8List data;
+  final Key writer;
+
+  ValueData({
+    required this.seq,
+    required this.data,
+    required this.writer,
+  });
+
+  ValueData.fromJson(dynamic json)
+      : seq = json['seq'],
+        data = base64UrlNoPadDecode(json['data']),
+        writer = json['writer'];
+
+  Map<String, dynamic> get json {
+    return {'seq': seq, 'data': base64UrlNoPadEncode(data), 'writer': writer};
+  }
+}
+
+/// Stability
+
+enum Stability {
+  lowLatency,
+  reliable,
+}
+
+extension StabilityExt on Stability {
+  String get json {
+    return name.toPascalCase();
+  }
+}
+
+Stability stabilityFromJson(String j) {
+  return Stability.values.byName(j.toCamelCase());
+}
+
+//////////////////////////////////////
+/// Sequencing
+
+enum Sequencing {
+  noPreference,
+  preferOrdered,
+  ensureOrdered,
+}
+
+extension SequencingExt on Sequencing {
+  String get json {
+    return name.toPascalCase();
+  }
+}
+
+Sequencing sequencingFromJson(String j) {
+  return Sequencing.values.byName(j.toCamelCase());
+}
+
+//////////////////////////////////////
+/// RouteBlob
+class RouteBlob {
+  final String routeId;
+  final Uint8List blob;
+
+  RouteBlob(this.routeId, this.blob);
+
+  RouteBlob.fromJson(dynamic json)
+      : routeId = json['route_id'],
+        blob = base64UrlNoPadDecode(json['blob']);
+
+  Map<String, dynamic> get json {
+    return {'route_id': routeId, 'blob': base64UrlNoPadEncode(blob)};
+  }
+}
+
+//////////////////////////////////////
+/// VeilidRoutingContext
+
+abstract class VeilidRoutingContext {
+  // Modifiers
+  VeilidRoutingContext withPrivacy();
+  VeilidRoutingContext withCustomPrivacy(Stability stability);
+  VeilidRoutingContext withSequencing(Sequencing sequencing);
+
+  // App call/message
+  Future<Uint8List> appCall(String target, Uint8List request);
+  Future<void> appMessage(String target, Uint8List message);
+
+  // DHT Operations
+  Future<DHTRecordDescriptor> createDHTRecord(
+      CryptoKind kind, DHTSchema schema);
+  Future<DHTRecordDescriptor> openDHTRecord(TypedKey key, KeyPair? writer);
+  Future<void> closeDHTRecord(TypedKey key);
+  Future<void> deleteDHTRecord(TypedKey key);
+  Future<ValueData?> getDHTValue(TypedKey key, int subkey, bool forceRefresh);
+  Future<ValueData?> setDHTValue(TypedKey key, int subkey, Uint8List data);
+  Future<Timestamp> watchDHTValues(
+      TypedKey key, ValueSubkeyRange subkeys, Timestamp expiration, int count);
+  Future<bool> cancelDHTWatch(TypedKey key, ValueSubkeyRange subkeys);
+}
diff --git a/veilid-flutter/lib/veilid.dart b/veilid-flutter/lib/veilid.dart
index c6087efe..181153a6 100644
--- a/veilid-flutter/lib/veilid.dart
+++ b/veilid-flutter/lib/veilid.dart
@@ -8,213 +8,25 @@ import 'veilid_stub.dart'
     if (dart.library.io) 'veilid_ffi.dart'
     if (dart.library.js) 'veilid_js.dart';
 
-import 'base64url_no_pad.dart';
+import 'veilid_encoding.dart';
 
 //////////////////////////////////////////////////////////
 
+import 'routing_context.dart';
+import 'veilid_config.dart';
+import 'veilid_crypto.dart';
+import 'veilid_table_db.dart';
+import 'veilid_api_exception.dart';
+import 'veilid_state.dart';
+
 export 'default_config.dart';
-
-//////////////////////////////////////////////////////////
-// FFI Platform-specific config
-
-class VeilidFFIConfigLoggingTerminal {
-  bool enabled;
-  VeilidConfigLogLevel level;
-
-  VeilidFFIConfigLoggingTerminal({
-    required this.enabled,
-    required this.level,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'enabled': enabled,
-      'level': level.json,
-    };
-  }
-
-  VeilidFFIConfigLoggingTerminal.fromJson(dynamic json)
-      : enabled = json['enabled'],
-        level = veilidConfigLogLevelFromJson(json['level']);
-}
-
-class VeilidFFIConfigLoggingOtlp {
-  bool enabled;
-  VeilidConfigLogLevel level;
-  String grpcEndpoint;
-  String serviceName;
-
-  VeilidFFIConfigLoggingOtlp({
-    required this.enabled,
-    required this.level,
-    required this.grpcEndpoint,
-    required this.serviceName,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'enabled': enabled,
-      'level': level.json,
-      'grpc_endpoint': grpcEndpoint,
-      'service_name': serviceName,
-    };
-  }
-
-  VeilidFFIConfigLoggingOtlp.fromJson(dynamic json)
-      : enabled = json['enabled'],
-        level = veilidConfigLogLevelFromJson(json['level']),
-        grpcEndpoint = json['grpc_endpoint'],
-        serviceName = json['service_name'];
-}
-
-class VeilidFFIConfigLoggingApi {
-  bool enabled;
-  VeilidConfigLogLevel level;
-
-  VeilidFFIConfigLoggingApi({
-    required this.enabled,
-    required this.level,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'enabled': enabled,
-      'level': level.json,
-    };
-  }
-
-  VeilidFFIConfigLoggingApi.fromJson(dynamic json)
-      : enabled = json['enabled'],
-        level = veilidConfigLogLevelFromJson(json['level']);
-}
-
-class VeilidFFIConfigLogging {
-  VeilidFFIConfigLoggingTerminal terminal;
-  VeilidFFIConfigLoggingOtlp otlp;
-  VeilidFFIConfigLoggingApi api;
-
-  VeilidFFIConfigLogging(
-      {required this.terminal, required this.otlp, required this.api});
-
-  Map<String, dynamic> get json {
-    return {
-      'terminal': terminal.json,
-      'otlp': otlp.json,
-      'api': api.json,
-    };
-  }
-
-  VeilidFFIConfigLogging.fromJson(dynamic json)
-      : terminal = VeilidFFIConfigLoggingTerminal.fromJson(json['terminal']),
-        otlp = VeilidFFIConfigLoggingOtlp.fromJson(json['otlp']),
-        api = VeilidFFIConfigLoggingApi.fromJson(json['api']);
-}
-
-class VeilidFFIConfig {
-  VeilidFFIConfigLogging logging;
-
-  VeilidFFIConfig({
-    required this.logging,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'logging': logging.json,
-    };
-  }
-
-  VeilidFFIConfig.fromJson(Map<String, dynamic> json)
-      : logging = VeilidFFIConfigLogging.fromJson(json['logging']);
-}
-
-//////////////////////////////////////////////////////////
-// WASM Platform-specific config
-
-class VeilidWASMConfigLoggingPerformance {
-  bool enabled;
-  VeilidConfigLogLevel level;
-  bool logsInTimings;
-  bool logsInConsole;
-
-  VeilidWASMConfigLoggingPerformance({
-    required this.enabled,
-    required this.level,
-    required this.logsInTimings,
-    required this.logsInConsole,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'enabled': enabled,
-      'level': level.json,
-      'logs_in_timings': logsInTimings,
-      'logs_in_console': logsInConsole,
-    };
-  }
-
-  VeilidWASMConfigLoggingPerformance.fromJson(dynamic json)
-      : enabled = json['enabled'],
-        level = veilidConfigLogLevelFromJson(json['level']),
-        logsInTimings = json['logs_in_timings'],
-        logsInConsole = json['logs_in_console'];
-}
-
-class VeilidWASMConfigLoggingApi {
-  bool enabled;
-  VeilidConfigLogLevel level;
-
-  VeilidWASMConfigLoggingApi({
-    required this.enabled,
-    required this.level,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'enabled': enabled,
-      'level': level.json,
-    };
-  }
-
-  VeilidWASMConfigLoggingApi.fromJson(dynamic json)
-      : enabled = json['enabled'],
-        level = veilidConfigLogLevelFromJson(json['level']);
-}
-
-class VeilidWASMConfigLogging {
-  VeilidWASMConfigLoggingPerformance performance;
-  VeilidWASMConfigLoggingApi api;
-
-  VeilidWASMConfigLogging({required this.performance, required this.api});
-
-  Map<String, dynamic> get json {
-    return {
-      'performance': performance.json,
-      'api': api.json,
-    };
-  }
-
-  VeilidWASMConfigLogging.fromJson(dynamic json)
-      : performance =
-            VeilidWASMConfigLoggingPerformance.fromJson(json['performance']),
-        api = VeilidWASMConfigLoggingApi.fromJson(json['api']);
-}
-
-class VeilidWASMConfig {
-  VeilidWASMConfigLogging logging;
-
-  VeilidWASMConfig({
-    required this.logging,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'logging': logging.json,
-    };
-  }
-
-  VeilidWASMConfig.fromJson(dynamic json)
-      : logging = VeilidWASMConfigLogging.fromJson(json['logging']);
-}
+export 'routing_context.dart';
+export 'veilid_config.dart';
+export 'veilid_crypto.dart';
+export 'veilid_table_db.dart';
+export 'veilid_api_exception.dart';
+export 'veilid_state.dart';
+export 'veilid.dart';
 
 //////////////////////////////////////
 /// JSON Encode Helper
@@ -234,1810 +46,6 @@ Object? veilidApiToEncodable(Object? value) {
   throw UnsupportedError('Cannot convert to JSON: $value');
 }
 
-//////////////////////////////////////
-/// Crypto
-
-typedef CryptoKind = String;
-const cryptoKindVLD0 = "VLD0";
-const cryptoKindNONE = "NONE";
-
-//////////////////////////////////////
-/// DHT Schema
-
-abstract class DHTSchema {
-  factory DHTSchema.fromJson(dynamic json) {
-    switch (json["kind"]) {
-      case "DFLT":
-        {
-          return DHTSchemaDFLT(oCnt: json["o_cnt"]);
-        }
-      case "SMPL":
-        {
-          return DHTSchemaSMPL(
-              oCnt: json["o_cnt"],
-              members: List<DHTSchemaMember>.from(
-                  json['members'].map((j) => DHTSchemaMember.fromJson(j))));
-        }
-      default:
-        {
-          throw VeilidAPIExceptionInternal(
-              "Invalid VeilidAPIException type: ${json['kind']}");
-        }
-    }
-  }
-  Map<String, dynamic> get json;
-}
-
-class DHTSchemaDFLT implements DHTSchema {
-  final int oCnt;
-  //
-  DHTSchemaDFLT({
-    required this.oCnt,
-  }) {
-    if (oCnt < 0 || oCnt > 65535) {
-      throw VeilidAPIExceptionInvalidArgument(
-          "value out of range", "oCnt", oCnt.toString());
-    }
-  }
-
-  @override
-  Map<String, dynamic> get json {
-    return {
-      'kind': "DFLT",
-      'o_cnt': oCnt,
-    };
-  }
-}
-
-class DHTSchemaMember {
-  String mKey;
-  int mCnt;
-
-  DHTSchemaMember({
-    required this.mKey,
-    required this.mCnt,
-  }) {
-    if (mCnt < 0 || mCnt > 65535) {
-      throw VeilidAPIExceptionInvalidArgument(
-          "value out of range", "mCnt", mCnt.toString());
-    }
-  }
-
-  Map<String, dynamic> get json {
-    return {
-      'm_key': mKey,
-      'm_cnt': mCnt,
-    };
-  }
-
-  DHTSchemaMember.fromJson(dynamic json)
-      : mKey = json['m_key'],
-        mCnt = json['m_cnt'];
-}
-
-class DHTSchemaSMPL implements DHTSchema {
-  final int oCnt;
-  final List<DHTSchemaMember> members;
-  //
-  DHTSchemaSMPL({
-    required this.oCnt,
-    required this.members,
-  }) {
-    if (oCnt < 0 || oCnt > 65535) {
-      throw VeilidAPIExceptionInvalidArgument(
-          "value out of range", "oCnt", oCnt.toString());
-    }
-  }
-  @override
-  Map<String, dynamic> get json {
-    return {
-      'kind': "SMPL",
-      'o_cnt': oCnt,
-      'members': members.map((p) => p.json).toList(),
-    };
-  }
-}
-
-//////////////////////////////////////
-/// DHTRecordDescriptor
-
-class DHTRecordDescriptor {
-  String key;
-  String owner;
-  String? ownerSecret;
-  DHTSchema schema;
-
-  DHTRecordDescriptor({
-    required this.key,
-    required this.owner,
-    this.ownerSecret,
-    required this.schema,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'key': key,
-      'owner': owner,
-      'owner_secret': ownerSecret,
-      'schema': schema.json,
-    };
-  }
-
-  DHTRecordDescriptor.fromJson(dynamic json)
-      : key = json['key'],
-        owner = json['owner'],
-        ownerSecret = json['owner_secret'],
-        schema = DHTSchema.fromJson(json['schema']);
-}
-
-//////////////////////////////////////
-/// ValueSubkeyRange
-
-class ValueSubkeyRange {
-  final int low;
-  final int high;
-
-  ValueSubkeyRange({
-    required this.low,
-    required this.high,
-  }) {
-    if (low < 0 || low > high) {
-      throw VeilidAPIExceptionInvalidArgument(
-          "invalid range", "low", low.toString());
-    }
-    if (high < 0) {
-      throw VeilidAPIExceptionInvalidArgument(
-          "invalid range", "high", high.toString());
-    }
-  }
-
-  ValueSubkeyRange.fromJson(dynamic json)
-      : low = json[0],
-        high = json[1] {
-    if ((json as List<int>).length != 2) {
-      throw VeilidAPIExceptionInvalidArgument(
-          "not a pair of integers", "json", json.toString());
-    }
-  }
-
-  List<dynamic> get json {
-    return [low, high];
-  }
-}
-
-//////////////////////////////////////
-/// ValueData
-
-class ValueData {
-  final int seq;
-  final Uint8List data;
-  final String writer;
-
-  ValueData({
-    required this.seq,
-    required this.data,
-    required this.writer,
-  });
-
-  ValueData.fromJson(dynamic json)
-      : seq = json['seq'],
-        data = base64UrlNoPadDecode(json['data']),
-        writer = json['writer'];
-
-  Map<String, dynamic> get json {
-    return {'seq': seq, 'data': base64UrlNoPadEncode(data), 'writer': writer};
-  }
-}
-
-//////////////////////////////////////
-/// AttachmentState
-
-enum AttachmentState {
-  detached,
-  attaching,
-  attachedWeak,
-  attachedGood,
-  attachedStrong,
-  fullyAttached,
-  overAttached,
-  detaching,
-}
-
-extension AttachmentStateExt on AttachmentState {
-  String get json {
-    return name.toPascalCase();
-  }
-}
-
-AttachmentState attachmentStateFromJson(String j) {
-  return AttachmentState.values.byName(j.toCamelCase());
-}
-
-//////////////////////////////////////
-/// VeilidLogLevel
-
-enum VeilidLogLevel {
-  error,
-  warn,
-  info,
-  debug,
-  trace,
-}
-
-extension VeilidLogLevelExt on VeilidLogLevel {
-  String get json {
-    return name.toPascalCase();
-  }
-}
-
-VeilidLogLevel veilidLogLevelFromJson(String j) {
-  return VeilidLogLevel.values.byName(j.toCamelCase());
-}
-
-//////////////////////////////////////
-/// VeilidConfigLogLevel
-
-enum VeilidConfigLogLevel {
-  off,
-  error,
-  warn,
-  info,
-  debug,
-  trace,
-}
-
-extension VeilidConfigLogLevelExt on VeilidConfigLogLevel {
-  String get json {
-    return name.toPascalCase();
-  }
-}
-
-VeilidConfigLogLevel veilidConfigLogLevelFromJson(String j) {
-  return VeilidConfigLogLevel.values.byName(j.toCamelCase());
-}
-
-//////////////////////////////////////
-/// VeilidConfig
-
-class VeilidConfigHTTPS {
-  bool enabled;
-  String listenAddress;
-  String path;
-  String? url;
-
-  VeilidConfigHTTPS({
-    required this.enabled,
-    required this.listenAddress,
-    required this.path,
-    this.url,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'enabled': enabled,
-      'listen_address': listenAddress,
-      'path': path,
-      'url': url
-    };
-  }
-
-  VeilidConfigHTTPS.fromJson(dynamic json)
-      : enabled = json['enabled'],
-        listenAddress = json['listen_address'],
-        path = json['path'],
-        url = json['url'];
-}
-
-////////////
-
-class VeilidConfigHTTP {
-  bool enabled;
-  String listenAddress;
-  String path;
-  String? url;
-
-  VeilidConfigHTTP({
-    required this.enabled,
-    required this.listenAddress,
-    required this.path,
-    this.url,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'enabled': enabled,
-      'listen_address': listenAddress,
-      'path': path,
-      'url': url
-    };
-  }
-
-  VeilidConfigHTTP.fromJson(dynamic json)
-      : enabled = json['enabled'],
-        listenAddress = json['listen_address'],
-        path = json['path'],
-        url = json['url'];
-}
-
-////////////
-
-class VeilidConfigApplication {
-  VeilidConfigHTTPS https;
-  VeilidConfigHTTP http;
-
-  VeilidConfigApplication({
-    required this.https,
-    required this.http,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'https': https.json,
-      'http': http.json,
-    };
-  }
-
-  VeilidConfigApplication.fromJson(dynamic json)
-      : https = VeilidConfigHTTPS.fromJson(json['https']),
-        http = VeilidConfigHTTP.fromJson(json['http']);
-}
-
-////////////
-
-class VeilidConfigUDP {
-  bool enabled;
-  int socketPoolSize;
-  String listenAddress;
-  String? publicAddress;
-
-  VeilidConfigUDP(
-      {required this.enabled,
-      required this.socketPoolSize,
-      required this.listenAddress,
-      this.publicAddress});
-
-  Map<String, dynamic> get json {
-    return {
-      'enabled': enabled,
-      'socket_pool_size': socketPoolSize,
-      'listen_address': listenAddress,
-      'public_address': publicAddress,
-    };
-  }
-
-  VeilidConfigUDP.fromJson(dynamic json)
-      : enabled = json['enabled'],
-        socketPoolSize = json['socket_pool_size'],
-        listenAddress = json['listen_address'],
-        publicAddress = json['publicAddress'];
-}
-
-////////////
-
-class VeilidConfigTCP {
-  bool connect;
-  bool listen;
-  int maxConnections;
-  String listenAddress;
-  String? publicAddress;
-
-  VeilidConfigTCP(
-      {required this.connect,
-      required this.listen,
-      required this.maxConnections,
-      required this.listenAddress,
-      this.publicAddress});
-
-  Map<String, dynamic> get json {
-    return {
-      'connect': connect,
-      'listen': listen,
-      'max_connections': maxConnections,
-      'listen_address': listenAddress,
-      'public_address': publicAddress,
-    };
-  }
-
-  VeilidConfigTCP.fromJson(dynamic json)
-      : connect = json['connect'],
-        listen = json['listen'],
-        maxConnections = json['max_connections'],
-        listenAddress = json['listen_address'],
-        publicAddress = json['publicAddress'];
-}
-
-////////////
-
-class VeilidConfigWS {
-  bool connect;
-  bool listen;
-  int maxConnections;
-  String listenAddress;
-  String path;
-  String? url;
-
-  VeilidConfigWS(
-      {required this.connect,
-      required this.listen,
-      required this.maxConnections,
-      required this.listenAddress,
-      required this.path,
-      this.url});
-
-  Map<String, dynamic> get json {
-    return {
-      'connect': connect,
-      'listen': listen,
-      'max_connections': maxConnections,
-      'listen_address': listenAddress,
-      'path': path,
-      'url': url,
-    };
-  }
-
-  VeilidConfigWS.fromJson(dynamic json)
-      : connect = json['connect'],
-        listen = json['listen'],
-        maxConnections = json['max_connections'],
-        listenAddress = json['listen_address'],
-        path = json['path'],
-        url = json['url'];
-}
-
-////////////
-
-class VeilidConfigWSS {
-  bool connect;
-  bool listen;
-  int maxConnections;
-  String listenAddress;
-  String path;
-  String? url;
-
-  VeilidConfigWSS(
-      {required this.connect,
-      required this.listen,
-      required this.maxConnections,
-      required this.listenAddress,
-      required this.path,
-      this.url});
-
-  Map<String, dynamic> get json {
-    return {
-      'connect': connect,
-      'listen': listen,
-      'max_connections': maxConnections,
-      'listen_address': listenAddress,
-      'path': path,
-      'url': url,
-    };
-  }
-
-  VeilidConfigWSS.fromJson(dynamic json)
-      : connect = json['connect'],
-        listen = json['listen'],
-        maxConnections = json['max_connections'],
-        listenAddress = json['listen_address'],
-        path = json['path'],
-        url = json['url'];
-}
-
-////////////
-
-class VeilidConfigProtocol {
-  VeilidConfigUDP udp;
-  VeilidConfigTCP tcp;
-  VeilidConfigWS ws;
-  VeilidConfigWSS wss;
-
-  VeilidConfigProtocol({
-    required this.udp,
-    required this.tcp,
-    required this.ws,
-    required this.wss,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'udp': udp.json,
-      'tcp': tcp.json,
-      'ws': ws.json,
-      'wss': wss.json,
-    };
-  }
-
-  VeilidConfigProtocol.fromJson(dynamic json)
-      : udp = VeilidConfigUDP.fromJson(json['udp']),
-        tcp = VeilidConfigTCP.fromJson(json['tcp']),
-        ws = VeilidConfigWS.fromJson(json['ws']),
-        wss = VeilidConfigWSS.fromJson(json['wss']);
-}
-
-////////////
-
-class VeilidConfigTLS {
-  String certificatePath;
-  String privateKeyPath;
-  int connectionInitialTimeoutMs;
-
-  VeilidConfigTLS({
-    required this.certificatePath,
-    required this.privateKeyPath,
-    required this.connectionInitialTimeoutMs,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'certificate_path': certificatePath,
-      'private_key_path': privateKeyPath,
-      'connection_initial_timeout_ms': connectionInitialTimeoutMs,
-    };
-  }
-
-  VeilidConfigTLS.fromJson(dynamic json)
-      : certificatePath = json['certificate_path'],
-        privateKeyPath = json['private_key_path'],
-        connectionInitialTimeoutMs = json['connection_initial_timeout_ms'];
-}
-
-////////////
-
-class VeilidConfigDHT {
-  int resolveNodeTimeoutMs;
-  int resolveNodeCount;
-  int resolveNodeFanout;
-  int maxFindNodeCount;
-  int getValueTimeoutMs;
-  int getValueCount;
-  int getValueFanout;
-  int setValueTimeoutMs;
-  int setValueCount;
-  int setValueFanout;
-  int minPeerCount;
-  int minPeerRefreshTimeMs;
-  int validateDialInfoReceiptTimeMs;
-  int localSubkeyCacheSize;
-  int localMaxSubkeyCacheMemoryMb;
-  int remoteSubkeyCacheSize;
-  int remoteMaxRecords;
-  int remoteMaxSubkeyCacheMemoryMb;
-  int remoteMaxStorageSpaceMb;
-
-  VeilidConfigDHT(
-      {required this.resolveNodeTimeoutMs,
-      required this.resolveNodeCount,
-      required this.resolveNodeFanout,
-      required this.maxFindNodeCount,
-      required this.getValueTimeoutMs,
-      required this.getValueCount,
-      required this.getValueFanout,
-      required this.setValueTimeoutMs,
-      required this.setValueCount,
-      required this.setValueFanout,
-      required this.minPeerCount,
-      required this.minPeerRefreshTimeMs,
-      required this.validateDialInfoReceiptTimeMs,
-      required this.localSubkeyCacheSize,
-      required this.localMaxSubkeyCacheMemoryMb,
-      required this.remoteSubkeyCacheSize,
-      required this.remoteMaxRecords,
-      required this.remoteMaxSubkeyCacheMemoryMb,
-      required this.remoteMaxStorageSpaceMb});
-
-  Map<String, dynamic> get json {
-    return {
-      'max_find_node_count': maxFindNodeCount,
-      'resolve_node_timeout_ms': resolveNodeTimeoutMs,
-      'resolve_node_count': resolveNodeCount,
-      'resolve_node_fanout': resolveNodeFanout,
-      'get_value_timeout_ms': getValueTimeoutMs,
-      'get_value_count': getValueCount,
-      'get_value_fanout': getValueFanout,
-      'set_value_timeout_ms': setValueTimeoutMs,
-      'set_value_count': setValueCount,
-      'set_value_fanout': setValueFanout,
-      'min_peer_count': minPeerCount,
-      'min_peer_refresh_time_ms': minPeerRefreshTimeMs,
-      'validate_dial_info_receipt_time_ms': validateDialInfoReceiptTimeMs,
-      'local_subkey_cache_size: 128': localSubkeyCacheSize,
-      'local_max_subkey_cache_memory_mb': localMaxSubkeyCacheMemoryMb,
-      'remote_subkey_cache_size': remoteSubkeyCacheSize,
-      'remote_max_records': remoteMaxRecords,
-      'remote_max_subkey_cache_memory_mb': remoteMaxSubkeyCacheMemoryMb,
-      'remote_max_storage_space_mb': remoteMaxStorageSpaceMb,
-    };
-  }
-
-  VeilidConfigDHT.fromJson(dynamic json)
-      : resolveNodeTimeoutMs = json['resolve_node_timeout_ms'],
-        resolveNodeCount = json['resolve_node_count'],
-        resolveNodeFanout = json['resolve_node_fanout'],
-        maxFindNodeCount = json['max_find_node_count'],
-        getValueTimeoutMs = json['get_value_timeout_ms'],
-        getValueCount = json['get_value_count'],
-        getValueFanout = json['get_value_fanout'],
-        setValueTimeoutMs = json['set_value_timeout_ms'],
-        setValueCount = json['set_value_count'],
-        setValueFanout = json['set_value_fanout'],
-        minPeerCount = json['min_peer_count'],
-        minPeerRefreshTimeMs = json['min_peer_refresh_time_ms'],
-        validateDialInfoReceiptTimeMs =
-            json['validate_dial_info_receipt_time_ms'],
-        localSubkeyCacheSize = json['local_subkey_cache_size'],
-        localMaxSubkeyCacheMemoryMb = json['local_max_subkey_cache_memory_mb'],
-        remoteSubkeyCacheSize = json['remote_subkey_cache_size'],
-        remoteMaxRecords = json['remote_max_records'],
-        remoteMaxSubkeyCacheMemoryMb =
-            json['remote_max_subkey_cache_memory_mb'],
-        remoteMaxStorageSpaceMb = json['remote_max_storage_space_mb'];
-}
-
-////////////
-
-class VeilidConfigRPC {
-  int concurrency;
-  int queueSize;
-  int? maxTimestampBehindMs;
-  int? maxTimestampAheadMs;
-  int timeoutMs;
-  int maxRouteHopCount;
-  int defaultRouteHopCount;
-
-  VeilidConfigRPC(
-      {required this.concurrency,
-      required this.queueSize,
-      this.maxTimestampBehindMs,
-      this.maxTimestampAheadMs,
-      required this.timeoutMs,
-      required this.maxRouteHopCount,
-      required this.defaultRouteHopCount});
-
-  Map<String, dynamic> get json {
-    return {
-      'concurrency': concurrency,
-      'queue_size': queueSize,
-      'max_timestamp_behind_ms': maxTimestampBehindMs,
-      'max_timestamp_ahead_ms': maxTimestampAheadMs,
-      'timeout_ms': timeoutMs,
-      'max_route_hop_count': maxRouteHopCount,
-      'default_route_hop_count': defaultRouteHopCount,
-    };
-  }
-
-  VeilidConfigRPC.fromJson(dynamic json)
-      : concurrency = json['concurrency'],
-        queueSize = json['queue_size'],
-        maxTimestampBehindMs = json['max_timestamp_behind_ms'],
-        maxTimestampAheadMs = json['max_timestamp_ahead_ms'],
-        timeoutMs = json['timeout_ms'],
-        maxRouteHopCount = json['max_route_hop_count'],
-        defaultRouteHopCount = json['default_route_hop_count'];
-}
-
-////////////
-
-class VeilidConfigRoutingTable {
-  List<String> nodeId;
-  List<String> nodeIdSecret;
-  List<String> bootstrap;
-  int limitOverAttached;
-  int limitFullyAttached;
-  int limitAttachedStrong;
-  int limitAttachedGood;
-  int limitAttachedWeak;
-
-  VeilidConfigRoutingTable({
-    required this.nodeId,
-    required this.nodeIdSecret,
-    required this.bootstrap,
-    required this.limitOverAttached,
-    required this.limitFullyAttached,
-    required this.limitAttachedStrong,
-    required this.limitAttachedGood,
-    required this.limitAttachedWeak,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'node_id': nodeId.map((p) => p).toList(),
-      'node_id_secret': nodeIdSecret.map((p) => p).toList(),
-      'bootstrap': bootstrap.map((p) => p).toList(),
-      'limit_over_attached': limitOverAttached,
-      'limit_fully_attached': limitFullyAttached,
-      'limit_attached_strong': limitAttachedStrong,
-      'limit_attached_good': limitAttachedGood,
-      'limit_attached_weak': limitAttachedWeak,
-    };
-  }
-
-  VeilidConfigRoutingTable.fromJson(dynamic json)
-      : nodeId = List<String>.from(json['node_id'].map((j) => j)),
-        nodeIdSecret = List<String>.from(json['node_id_secret'].map((j) => j)),
-        bootstrap = List<String>.from(json['bootstrap'].map((j) => j)),
-        limitOverAttached = json['limit_over_attached'],
-        limitFullyAttached = json['limit_fully_attached'],
-        limitAttachedStrong = json['limit_attached_strong'],
-        limitAttachedGood = json['limit_attached_good'],
-        limitAttachedWeak = json['limit_attached_weak'];
-}
-
-////////////
-
-class VeilidConfigNetwork {
-  int connectionInitialTimeoutMs;
-  int connectionInactivityTimeoutMs;
-  int maxConnectionsPerIp4;
-  int maxConnectionsPerIp6Prefix;
-  int maxConnectionsPerIp6PrefixSize;
-  int maxConnectionFrequencyPerMin;
-  int clientWhitelistTimeoutMs;
-  int reverseConnectionReceiptTimeMs;
-  int holePunchReceiptTimeMs;
-  VeilidConfigRoutingTable routingTable;
-  VeilidConfigRPC rpc;
-  VeilidConfigDHT dht;
-  bool upnp;
-  bool detectAddressChanges;
-  int restrictedNatRetries;
-  VeilidConfigTLS tls;
-  VeilidConfigApplication application;
-  VeilidConfigProtocol protocol;
-
-  VeilidConfigNetwork({
-    required this.connectionInitialTimeoutMs,
-    required this.connectionInactivityTimeoutMs,
-    required this.maxConnectionsPerIp4,
-    required this.maxConnectionsPerIp6Prefix,
-    required this.maxConnectionsPerIp6PrefixSize,
-    required this.maxConnectionFrequencyPerMin,
-    required this.clientWhitelistTimeoutMs,
-    required this.reverseConnectionReceiptTimeMs,
-    required this.holePunchReceiptTimeMs,
-    required this.routingTable,
-    required this.rpc,
-    required this.dht,
-    required this.upnp,
-    required this.detectAddressChanges,
-    required this.restrictedNatRetries,
-    required this.tls,
-    required this.application,
-    required this.protocol,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'connection_initial_timeout_ms': connectionInitialTimeoutMs,
-      'connection_inactivity_timeout_ms': connectionInactivityTimeoutMs,
-      'max_connections_per_ip4': maxConnectionsPerIp4,
-      'max_connections_per_ip6_prefix': maxConnectionsPerIp6Prefix,
-      'max_connections_per_ip6_prefix_size': maxConnectionsPerIp6PrefixSize,
-      'max_connection_frequency_per_min': maxConnectionFrequencyPerMin,
-      'client_whitelist_timeout_ms': clientWhitelistTimeoutMs,
-      'reverse_connection_receipt_time_ms': reverseConnectionReceiptTimeMs,
-      'hole_punch_receipt_time_ms': holePunchReceiptTimeMs,
-      'routing_table': routingTable.json,
-      'rpc': rpc.json,
-      'dht': dht.json,
-      'upnp': upnp,
-      'detect_address_changes': detectAddressChanges,
-      'restricted_nat_retries': restrictedNatRetries,
-      'tls': tls.json,
-      'application': application.json,
-      'protocol': protocol.json,
-    };
-  }
-
-  VeilidConfigNetwork.fromJson(dynamic json)
-      : connectionInitialTimeoutMs = json['connection_initial_timeout_ms'],
-        connectionInactivityTimeoutMs =
-            json['connection_inactivity_timeout_ms'],
-        maxConnectionsPerIp4 = json['max_connections_per_ip4'],
-        maxConnectionsPerIp6Prefix = json['max_connections_per_ip6_prefix'],
-        maxConnectionsPerIp6PrefixSize =
-            json['max_connections_per_ip6_prefix_size'],
-        maxConnectionFrequencyPerMin = json['max_connection_frequency_per_min'],
-        clientWhitelistTimeoutMs = json['client_whitelist_timeout_ms'],
-        reverseConnectionReceiptTimeMs =
-            json['reverse_connection_receipt_time_ms'],
-        holePunchReceiptTimeMs = json['hole_punch_receipt_time_ms'],
-        routingTable = VeilidConfigRoutingTable.fromJson(json['routing_table']),
-        rpc = VeilidConfigRPC.fromJson(json['rpc']),
-        dht = VeilidConfigDHT.fromJson(json['dht']),
-        upnp = json['upnp'],
-        detectAddressChanges = json['detect_address_changes'],
-        restrictedNatRetries = json['restricted_nat_retries'],
-        tls = VeilidConfigTLS.fromJson(json['tls']),
-        application = VeilidConfigApplication.fromJson(json['application']),
-        protocol = VeilidConfigProtocol.fromJson(json['protocol']);
-}
-
-////////////
-
-class VeilidConfigTableStore {
-  String directory;
-  bool delete;
-
-  VeilidConfigTableStore({
-    required this.directory,
-    required this.delete,
-  });
-
-  Map<String, dynamic> get json {
-    return {'directory': directory, 'delete': delete};
-  }
-
-  VeilidConfigTableStore.fromJson(dynamic json)
-      : directory = json['directory'],
-        delete = json['delete'];
-}
-
-////////////
-
-class VeilidConfigBlockStore {
-  String directory;
-  bool delete;
-
-  VeilidConfigBlockStore({
-    required this.directory,
-    required this.delete,
-  });
-
-  Map<String, dynamic> get json {
-    return {'directory': directory, 'delete': delete};
-  }
-
-  VeilidConfigBlockStore.fromJson(dynamic json)
-      : directory = json['directory'],
-        delete = json['delete'];
-}
-
-////////////
-
-class VeilidConfigProtectedStore {
-  bool allowInsecureFallback;
-  bool alwaysUseInsecureStorage;
-  String insecureFallbackDirectory;
-  bool delete;
-
-  VeilidConfigProtectedStore({
-    required this.allowInsecureFallback,
-    required this.alwaysUseInsecureStorage,
-    required this.insecureFallbackDirectory,
-    required this.delete,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'allow_insecure_fallback': allowInsecureFallback,
-      'always_use_insecure_storage': alwaysUseInsecureStorage,
-      'insecure_fallback_directory': insecureFallbackDirectory,
-      'delete': delete,
-    };
-  }
-
-  VeilidConfigProtectedStore.fromJson(dynamic json)
-      : allowInsecureFallback = json['allow_insecure_fallback'],
-        alwaysUseInsecureStorage = json['always_use_insecure_storage'],
-        insecureFallbackDirectory = json['insecure_fallback_directory'],
-        delete = json['delete'];
-}
-
-////////////
-
-class VeilidConfigCapabilities {
-  bool protocolUDP;
-  bool protocolConnectTCP;
-  bool protocolAcceptTCP;
-  bool protocolConnectWS;
-  bool protocolAcceptWS;
-  bool protocolConnectWSS;
-  bool protocolAcceptWSS;
-
-  VeilidConfigCapabilities({
-    required this.protocolUDP,
-    required this.protocolConnectTCP,
-    required this.protocolAcceptTCP,
-    required this.protocolConnectWS,
-    required this.protocolAcceptWS,
-    required this.protocolConnectWSS,
-    required this.protocolAcceptWSS,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'protocol_udp': protocolUDP,
-      'protocol_connect_tcp': protocolConnectTCP,
-      'protocol_accept_tcp': protocolAcceptTCP,
-      'protocol_connect_ws': protocolConnectWS,
-      'protocol_accept_ws': protocolAcceptWS,
-      'protocol_connect_wss': protocolConnectWSS,
-      'protocol_accept_wss': protocolAcceptWSS,
-    };
-  }
-
-  VeilidConfigCapabilities.fromJson(dynamic json)
-      : protocolUDP = json['protocol_udp'],
-        protocolConnectTCP = json['protocol_connect_tcp'],
-        protocolAcceptTCP = json['protocol_accept_tcp'],
-        protocolConnectWS = json['protocol_connect_ws'],
-        protocolAcceptWS = json['protocol_accept_ws'],
-        protocolConnectWSS = json['protocol_connect_wss'],
-        protocolAcceptWSS = json['protocol_accept_wss'];
-}
-
-////////////
-
-class VeilidConfig {
-  String programName;
-  String namespace;
-  VeilidConfigCapabilities capabilities;
-  VeilidConfigProtectedStore protectedStore;
-  VeilidConfigTableStore tableStore;
-  VeilidConfigBlockStore blockStore;
-  VeilidConfigNetwork network;
-
-  VeilidConfig({
-    required this.programName,
-    required this.namespace,
-    required this.capabilities,
-    required this.protectedStore,
-    required this.tableStore,
-    required this.blockStore,
-    required this.network,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'program_name': programName,
-      'namespace': namespace,
-      'capabilities': capabilities.json,
-      'protected_store': protectedStore.json,
-      'table_store': tableStore.json,
-      'block_store': blockStore.json,
-      'network': network.json
-    };
-  }
-
-  VeilidConfig.fromJson(dynamic json)
-      : programName = json['program_name'],
-        namespace = json['namespace'],
-        capabilities = VeilidConfigCapabilities.fromJson(json['capabilities']),
-        protectedStore =
-            VeilidConfigProtectedStore.fromJson(json['protected_store']),
-        tableStore = VeilidConfigTableStore.fromJson(json['table_store']),
-        blockStore = VeilidConfigBlockStore.fromJson(json['block_store']),
-        network = VeilidConfigNetwork.fromJson(json['network']);
-}
-
-////////////
-
-class LatencyStats {
-  BigInt fastest;
-  BigInt average;
-  BigInt slowest;
-
-  LatencyStats({
-    required this.fastest,
-    required this.average,
-    required this.slowest,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'fastest': fastest.toString(),
-      'average': average.toString(),
-      'slowest': slowest.toString(),
-    };
-  }
-
-  LatencyStats.fromJson(dynamic json)
-      : fastest = BigInt.parse(json['fastest']),
-        average = BigInt.parse(json['average']),
-        slowest = BigInt.parse(json['slowest']);
-}
-
-////////////
-
-class TransferStats {
-  BigInt total;
-  BigInt maximum;
-  BigInt average;
-  BigInt minimum;
-
-  TransferStats({
-    required this.total,
-    required this.maximum,
-    required this.average,
-    required this.minimum,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'total': total.toString(),
-      'maximum': maximum.toString(),
-      'average': average.toString(),
-      'minimum': minimum.toString(),
-    };
-  }
-
-  TransferStats.fromJson(dynamic json)
-      : total = BigInt.parse(json['total']),
-        maximum = BigInt.parse(json['maximum']),
-        average = BigInt.parse(json['average']),
-        minimum = BigInt.parse(json['minimum']);
-}
-
-////////////
-
-class TransferStatsDownUp {
-  TransferStats down;
-  TransferStats up;
-
-  TransferStatsDownUp({
-    required this.down,
-    required this.up,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'down': down.json,
-      'up': up.json,
-    };
-  }
-
-  TransferStatsDownUp.fromJson(dynamic json)
-      : down = TransferStats.fromJson(json['down']),
-        up = TransferStats.fromJson(json['up']);
-}
-
-////////////
-
-class RPCStats {
-  int messagesSent;
-  int messagesRcvd;
-  int questionsInFlight;
-  BigInt? lastQuestion;
-  BigInt? lastSeenTs;
-  BigInt? firstConsecutiveSeenTs;
-  int recentLostAnswers;
-  int failedToSend;
-
-  RPCStats({
-    required this.messagesSent,
-    required this.messagesRcvd,
-    required this.questionsInFlight,
-    required this.lastQuestion,
-    required this.lastSeenTs,
-    required this.firstConsecutiveSeenTs,
-    required this.recentLostAnswers,
-    required this.failedToSend,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'messages_sent': messagesSent,
-      'messages_rcvd': messagesRcvd,
-      'questions_in_flight': questionsInFlight,
-      'last_question': lastQuestion?.toString(),
-      'last_seen_ts': lastSeenTs?.toString(),
-      'first_consecutive_seen_ts': firstConsecutiveSeenTs?.toString(),
-      'recent_lost_answers': recentLostAnswers,
-      'failed_to_send': failedToSend,
-    };
-  }
-
-  RPCStats.fromJson(dynamic json)
-      : messagesSent = json['messages_sent'],
-        messagesRcvd = json['messages_rcvd'],
-        questionsInFlight = json['questions_in_flight'],
-        lastQuestion = json['last_question'] != null
-            ? BigInt.parse(json['last_question'])
-            : null,
-        lastSeenTs = json['last_seen_ts'] != null
-            ? BigInt.parse(json['last_seen_ts'])
-            : null,
-        firstConsecutiveSeenTs = json['first_consecutive_seen_ts'] != null
-            ? BigInt.parse(json['first_consecutive_seen_ts'])
-            : null,
-        recentLostAnswers = json['recent_lost_answers'],
-        failedToSend = json['failed_to_send'];
-}
-
-////////////
-
-class PeerStats {
-  BigInt timeAdded;
-  RPCStats rpcStats;
-  LatencyStats? latency;
-  TransferStatsDownUp transfer;
-
-  PeerStats({
-    required this.timeAdded,
-    required this.rpcStats,
-    required this.latency,
-    required this.transfer,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'time_added': timeAdded.toString(),
-      'rpc_stats': rpcStats.json,
-      'latency': latency?.json,
-      'transfer': transfer.json,
-    };
-  }
-
-  PeerStats.fromJson(dynamic json)
-      : timeAdded = BigInt.parse(json['time_added']),
-        rpcStats = RPCStats.fromJson(json['rpc_stats']),
-        latency = json['latency'] != null
-            ? LatencyStats.fromJson(json['latency'])
-            : null,
-        transfer = TransferStatsDownUp.fromJson(json['transfer']);
-}
-
-////////////
-
-class PeerTableData {
-  List<String> nodeIds;
-  PeerAddress peerAddress;
-  PeerStats peerStats;
-
-  PeerTableData({
-    required this.nodeIds,
-    required this.peerAddress,
-    required this.peerStats,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'node_ids': nodeIds.map((p) => p).toList(),
-      'peer_address': peerAddress.json,
-      'peer_stats': peerStats.json,
-    };
-  }
-
-  PeerTableData.fromJson(dynamic json)
-      : nodeIds = List<String>.from(json['node_ids'].map((j) => j)),
-        peerAddress = PeerAddress.fromJson(json['peer_address']),
-        peerStats = PeerStats.fromJson(json['peer_stats']);
-}
-
-//////////////////////////////////////
-/// AttachmentState
-
-enum ProtocolType {
-  udp,
-  tcp,
-  ws,
-  wss,
-}
-
-extension ProtocolTypeExt on ProtocolType {
-  String get json {
-    return name.toUpperCase();
-  }
-}
-
-ProtocolType protocolTypeFromJson(String j) {
-  return ProtocolType.values.byName(j.toLowerCase());
-}
-
-////////////
-
-class PeerAddress {
-  ProtocolType protocolType;
-  String socketAddress;
-
-  PeerAddress({
-    required this.protocolType,
-    required this.socketAddress,
-  });
-
-  Map<String, dynamic> get json {
-    return {
-      'protocol_type': protocolType.json,
-      'socket_address': socketAddress,
-    };
-  }
-
-  PeerAddress.fromJson(dynamic json)
-      : protocolType = protocolTypeFromJson(json['protocol_type']),
-        socketAddress = json['socket_address'];
-}
-
-//////////////////////////////////////
-/// VeilidUpdate
-
-abstract class VeilidUpdate {
-  factory VeilidUpdate.fromJson(dynamic json) {
-    switch (json["kind"]) {
-      case "Log":
-        {
-          return VeilidLog(
-              logLevel: veilidLogLevelFromJson(json["log_level"]),
-              message: json["message"],
-              backtrace: json["backtrace"]);
-        }
-      case "AppMessage":
-        {
-          return VeilidAppMessage(
-              sender: json["sender"], message: json["message"]);
-        }
-      case "AppCall":
-        {
-          return VeilidAppCall(
-              sender: json["sender"], message: json["message"], id: json["id"]);
-        }
-      case "Attachment":
-        {
-          return VeilidUpdateAttachment(
-              state: VeilidStateAttachment.fromJson(json));
-        }
-      case "Network":
-        {
-          return VeilidUpdateNetwork(state: VeilidStateNetwork.fromJson(json));
-        }
-      case "Config":
-        {
-          return VeilidUpdateConfig(state: VeilidStateConfig.fromJson(json));
-        }
-      case "RouteChange":
-        {
-          return VeilidUpdateRouteChange(
-              deadRoutes: List<String>.from(json['dead_routes'].map((j) => j)),
-              deadRemoteRoutes:
-                  List<String>.from(json['dead_remote_routes'].map((j) => j)));
-        }
-      case "ValueChange":
-        {
-          return VeilidUpdateValueChange(
-              key: json['key'],
-              subkeys: List<ValueSubkeyRange>.from(
-                  json['subkeys'].map((j) => ValueSubkeyRange.fromJson(j))),
-              count: json['count'],
-              valueData: ValueData.fromJson(json['value_data']));
-        }
-      default:
-        {
-          throw VeilidAPIExceptionInternal(
-              "Invalid VeilidAPIException type: ${json['kind']}");
-        }
-    }
-  }
-  Map<String, dynamic> get json;
-}
-
-class VeilidLog implements VeilidUpdate {
-  final VeilidLogLevel logLevel;
-  final String message;
-  final String? backtrace;
-  //
-  VeilidLog({
-    required this.logLevel,
-    required this.message,
-    required this.backtrace,
-  });
-
-  @override
-  Map<String, dynamic> get json {
-    return {
-      'kind': "Log",
-      'log_level': logLevel.json,
-      'message': message,
-      'backtrace': backtrace
-    };
-  }
-}
-
-class VeilidAppMessage implements VeilidUpdate {
-  final String? sender;
-  final Uint8List message;
-
-  //
-  VeilidAppMessage({
-    required this.sender,
-    required this.message,
-  });
-
-  @override
-  Map<String, dynamic> get json {
-    return {
-      'kind': "AppMessage",
-      'sender': sender,
-      'message': base64UrlNoPadEncode(message)
-    };
-  }
-}
-
-class VeilidAppCall implements VeilidUpdate {
-  final String? sender;
-  final Uint8List message;
-  final String id;
-
-  //
-  VeilidAppCall({
-    required this.sender,
-    required this.message,
-    required this.id,
-  });
-
-  @override
-  Map<String, dynamic> get json {
-    return {
-      'kind': "AppMessage",
-      'sender': sender,
-      'message': base64UrlNoPadEncode(message),
-      'id': id,
-    };
-  }
-}
-
-class VeilidUpdateAttachment implements VeilidUpdate {
-  final VeilidStateAttachment state;
-  //
-  VeilidUpdateAttachment({required this.state});
-
-  @override
-  Map<String, dynamic> get json {
-    var jsonRep = state.json;
-    jsonRep['kind'] = "Attachment";
-    return jsonRep;
-  }
-}
-
-class VeilidUpdateNetwork implements VeilidUpdate {
-  final VeilidStateNetwork state;
-  //
-  VeilidUpdateNetwork({required this.state});
-
-  @override
-  Map<String, dynamic> get json {
-    var jsonRep = state.json;
-    jsonRep['kind'] = "Network";
-    return jsonRep;
-  }
-}
-
-class VeilidUpdateConfig implements VeilidUpdate {
-  final VeilidStateConfig state;
-  //
-  VeilidUpdateConfig({required this.state});
-
-  @override
-  Map<String, dynamic> get json {
-    var jsonRep = state.json;
-    jsonRep['kind'] = "Config";
-    return jsonRep;
-  }
-}
-
-class VeilidUpdateRouteChange implements VeilidUpdate {
-  final List<String> deadRoutes;
-  final List<String> deadRemoteRoutes;
-  //
-  VeilidUpdateRouteChange({
-    required this.deadRoutes,
-    required this.deadRemoteRoutes,
-  });
-
-  @override
-  Map<String, dynamic> get json {
-    return {
-      'dead_routes': deadRoutes.map((p) => p).toList(),
-      'dead_remote_routes': deadRemoteRoutes.map((p) => p).toList()
-    };
-  }
-}
-
-class VeilidUpdateValueChange implements VeilidUpdate {
-  final String key;
-  final List<ValueSubkeyRange> subkeys;
-  final int count;
-  final ValueData valueData;
-
-  //
-  VeilidUpdateValueChange({
-    required this.key,
-    required this.subkeys,
-    required this.count,
-    required this.valueData,
-  });
-
-  @override
-  Map<String, dynamic> get json {
-    return {
-      'key': key,
-      'subkeys': subkeys.map((p) => p.json).toList(),
-      'count': count,
-      'value_data': valueData.json,
-    };
-  }
-}
-
-//////////////////////////////////////
-/// VeilidStateAttachment
-
-class VeilidStateAttachment {
-  final AttachmentState state;
-  final bool publicInternetReady;
-  final bool localNetworkReady;
-
-  VeilidStateAttachment(
-      this.state, this.publicInternetReady, this.localNetworkReady);
-
-  VeilidStateAttachment.fromJson(dynamic json)
-      : state = attachmentStateFromJson(json['state']),
-        publicInternetReady = json['public_internet_ready'],
-        localNetworkReady = json['local_network_ready'];
-
-  Map<String, dynamic> get json {
-    return {
-      'state': state.json,
-      'public_internet_ready': publicInternetReady,
-      'local_network_ready': localNetworkReady,
-    };
-  }
-}
-
-//////////////////////////////////////
-/// VeilidStateNetwork
-
-class VeilidStateNetwork {
-  final bool started;
-  final BigInt bpsDown;
-  final BigInt bpsUp;
-  final List<PeerTableData> peers;
-
-  VeilidStateNetwork(
-      {required this.started,
-      required this.bpsDown,
-      required this.bpsUp,
-      required this.peers});
-
-  VeilidStateNetwork.fromJson(dynamic json)
-      : started = json['started'],
-        bpsDown = BigInt.parse(json['bps_down']),
-        bpsUp = BigInt.parse(json['bps_up']),
-        peers = List<PeerTableData>.from(
-            json['peers'].map((j) => PeerTableData.fromJson(j)));
-
-  Map<String, dynamic> get json {
-    return {
-      'started': started,
-      'bps_down': bpsDown.toString(),
-      'bps_up': bpsUp.toString(),
-      'peers': peers.map((p) => p.json).toList(),
-    };
-  }
-}
-
-//////////////////////////////////////
-/// VeilidStateConfig
-
-class VeilidStateConfig {
-  final Map<String, dynamic> config;
-
-  VeilidStateConfig({
-    required this.config,
-  });
-
-  VeilidStateConfig.fromJson(dynamic json) : config = json['config'];
-
-  Map<String, dynamic> get json {
-    return {'config': config};
-  }
-}
-
-//////////////////////////////////////
-/// VeilidState
-
-class VeilidState {
-  final VeilidStateAttachment attachment;
-  final VeilidStateNetwork network;
-  final VeilidStateConfig config;
-
-  VeilidState.fromJson(dynamic json)
-      : attachment = VeilidStateAttachment.fromJson(json['attachment']),
-        network = VeilidStateNetwork.fromJson(json['network']),
-        config = VeilidStateConfig.fromJson(json['config']);
-
-  Map<String, dynamic> get json {
-    return {
-      'attachment': attachment.json,
-      'network': network.json,
-      'config': config.json
-    };
-  }
-}
-
-//////////////////////////////////////
-/// VeilidAPIException
-
-abstract class VeilidAPIException implements Exception {
-  factory VeilidAPIException.fromJson(dynamic json) {
-    switch (json["kind"]) {
-      case "NotInitialized":
-        {
-          return VeilidAPIExceptionNotInitialized();
-        }
-      case "AlreadyInitialized":
-        {
-          return VeilidAPIExceptionAlreadyInitialized();
-        }
-      case "Timeout":
-        {
-          return VeilidAPIExceptionTimeout();
-        }
-      case "TryAgain":
-        {
-          return VeilidAPIExceptionTryAgain();
-        }
-      case "Shutdown":
-        {
-          return VeilidAPIExceptionShutdown();
-        }
-      case "InvalidTarget":
-        {
-          return VeilidAPIExceptionInvalidTarget();
-        }
-      case "NoConnection":
-        {
-          return VeilidAPIExceptionNoConnection(json["message"]);
-        }
-      case "KeyNotFound":
-        {
-          return VeilidAPIExceptionKeyNotFound(json["key"]);
-        }
-      case "Internal":
-        {
-          return VeilidAPIExceptionInternal(json["message"]);
-        }
-      case "Unimplemented":
-        {
-          return VeilidAPIExceptionUnimplemented(json["unimplemented"]);
-        }
-      case "ParseError":
-        {
-          return VeilidAPIExceptionParseError(json["message"], json["value"]);
-        }
-      case "InvalidArgument":
-        {
-          return VeilidAPIExceptionInvalidArgument(
-              json["context"], json["argument"], json["value"]);
-        }
-      case "MissingArgument":
-        {
-          return VeilidAPIExceptionMissingArgument(
-              json["context"], json["argument"]);
-        }
-      case "Generic":
-        {
-          return VeilidAPIExceptionGeneric(json["message"]);
-        }
-      default:
-        {
-          throw VeilidAPIExceptionInternal(
-              "Invalid VeilidAPIException type: ${json['kind']}");
-        }
-    }
-  }
-
-  String toDisplayError();
-}
-
-class VeilidAPIExceptionNotInitialized implements VeilidAPIException {
-  @override
-  String toString() {
-    return "VeilidAPIException: NotInitialized";
-  }
-
-  @override
-  String toDisplayError() {
-    return "Not initialized";
-  }
-}
-
-class VeilidAPIExceptionAlreadyInitialized implements VeilidAPIException {
-  @override
-  String toString() {
-    return "VeilidAPIException: AlreadyInitialized";
-  }
-
-  @override
-  String toDisplayError() {
-    return "Already initialized";
-  }
-}
-
-class VeilidAPIExceptionTimeout implements VeilidAPIException {
-  @override
-  String toString() {
-    return "VeilidAPIException: Timeout";
-  }
-
-  @override
-  String toDisplayError() {
-    return "Timeout";
-  }
-}
-
-class VeilidAPIExceptionTryAgain implements VeilidAPIException {
-  @override
-  String toString() {
-    return "VeilidAPIException: TryAgain";
-  }
-
-  @override
-  String toDisplayError() {
-    return "Try again";
-  }
-}
-
-class VeilidAPIExceptionShutdown implements VeilidAPIException {
-  @override
-  String toString() {
-    return "VeilidAPIException: Shutdown";
-  }
-
-  @override
-  String toDisplayError() {
-    return "Currently shut down";
-  }
-}
-
-class VeilidAPIExceptionInvalidTarget implements VeilidAPIException {
-  @override
-  String toString() {
-    return "VeilidAPIException: InvalidTarget";
-  }
-
-  @override
-  String toDisplayError() {
-    return "Invalid target";
-  }
-}
-
-class VeilidAPIExceptionNoConnection implements VeilidAPIException {
-  final String message;
-
-  @override
-  String toString() {
-    return "VeilidAPIException: NoConnection (message: $message)";
-  }
-
-  @override
-  String toDisplayError() {
-    return "No connection: $message";
-  }
-
-  //
-  VeilidAPIExceptionNoConnection(this.message);
-}
-
-class VeilidAPIExceptionKeyNotFound implements VeilidAPIException {
-  final String key;
-
-  @override
-  String toString() {
-    return "VeilidAPIException: KeyNotFound (key: $key)";
-  }
-
-  @override
-  String toDisplayError() {
-    return "Key not found: $key";
-  }
-
-  //
-  VeilidAPIExceptionKeyNotFound(this.key);
-}
-
-class VeilidAPIExceptionInternal implements VeilidAPIException {
-  final String message;
-
-  @override
-  String toString() {
-    return "VeilidAPIException: Internal ($message)";
-  }
-
-  @override
-  String toDisplayError() {
-    return "Internal error: $message";
-  }
-
-  //
-  VeilidAPIExceptionInternal(this.message);
-}
-
-class VeilidAPIExceptionUnimplemented implements VeilidAPIException {
-  final String message;
-
-  @override
-  String toString() {
-    return "VeilidAPIException: Unimplemented ($message)";
-  }
-
-  @override
-  String toDisplayError() {
-    return "Unimplemented: $message";
-  }
-
-  //
-  VeilidAPIExceptionUnimplemented(this.message);
-}
-
-class VeilidAPIExceptionParseError implements VeilidAPIException {
-  final String message;
-  final String value;
-
-  @override
-  String toString() {
-    return "VeilidAPIException: ParseError ($message)\n    value: $value";
-  }
-
-  @override
-  String toDisplayError() {
-    return "Parse error: $message";
-  }
-
-  //
-  VeilidAPIExceptionParseError(this.message, this.value);
-}
-
-class VeilidAPIExceptionInvalidArgument implements VeilidAPIException {
-  final String context;
-  final String argument;
-  final String value;
-
-  @override
-  String toString() {
-    return "VeilidAPIException: InvalidArgument ($context:$argument)\n    value: $value";
-  }
-
-  @override
-  String toDisplayError() {
-    return "Invalid argument for $context: $argument";
-  }
-
-  //
-  VeilidAPIExceptionInvalidArgument(this.context, this.argument, this.value);
-}
-
-class VeilidAPIExceptionMissingArgument implements VeilidAPIException {
-  final String context;
-  final String argument;
-
-  @override
-  String toString() {
-    return "VeilidAPIException: MissingArgument ($context:$argument)";
-  }
-
-  @override
-  String toDisplayError() {
-    return "Missing argument for $context: $argument";
-  }
-
-  //
-  VeilidAPIExceptionMissingArgument(this.context, this.argument);
-}
-
-class VeilidAPIExceptionGeneric implements VeilidAPIException {
-  final String message;
-
-  @override
-  String toString() {
-    return "VeilidAPIException: Generic (message: $message)";
-  }
-
-  @override
-  String toDisplayError() {
-    return message;
-  }
-
-  //
-  VeilidAPIExceptionGeneric(this.message);
-}
-
 //////////////////////////////////////
 /// VeilidVersion
 
@@ -2050,189 +58,56 @@ class VeilidVersion {
 }
 
 //////////////////////////////////////
-/// Stability
+/// Timestamp
+class Timestamp {
+  final BigInt value;
+  Timestamp({required this.value});
 
-enum Stability {
-  lowLatency,
-  reliable,
-}
+  @override
+  String toString() {
+    return value.toString();
+  }
+
+  Timestamp.fromString(String s) : value = BigInt.parse(s);
+
+  Timestamp.fromJson(dynamic json) : this.fromString(json as String);
 
-extension StabilityExt on Stability {
   String get json {
-    return name.toPascalCase();
+    return toString();
+  }
+
+  TimestampDuration diff(Timestamp other) {
+    return TimestampDuration(value: value - other.value);
+  }
+
+  Timestamp offset(TimestampDuration dur) {
+    return Timestamp(value: value + dur.value);
   }
 }
 
-Stability stabilityFromJson(String j) {
-  return Stability.values.byName(j.toCamelCase());
-}
+class TimestampDuration {
+  final BigInt value;
+  TimestampDuration({required this.value});
 
-//////////////////////////////////////
-/// Sequencing
+  @override
+  String toString() {
+    return value.toString();
+  }
 
-enum Sequencing {
-  noPreference,
-  preferOrdered,
-  ensureOrdered,
-}
+  TimestampDuration.fromString(String s) : value = BigInt.parse(s);
+
+  TimestampDuration.fromJson(dynamic json) : this.fromString(json as String);
 
-extension SequencingExt on Sequencing {
   String get json {
-    return name.toPascalCase();
-  }
-}
-
-Sequencing sequencingFromJson(String j) {
-  return Sequencing.values.byName(j.toCamelCase());
-}
-
-//////////////////////////////////////
-/// RouteBlob
-class RouteBlob {
-  final String routeId;
-  final Uint8List blob;
-
-  RouteBlob(this.routeId, this.blob);
-
-  RouteBlob.fromJson(dynamic json)
-      : routeId = json['route_id'],
-        blob = base64UrlNoPadDecode(json['blob']);
-
-  Map<String, dynamic> get json {
-    return {'route_id': routeId, 'blob': base64UrlNoPadEncode(blob)};
-  }
-}
-
-//////////////////////////////////////
-/// VeilidRoutingContext
-
-abstract class VeilidRoutingContext {
-  VeilidRoutingContext withPrivacy();
-  VeilidRoutingContext withCustomPrivacy(Stability stability);
-  VeilidRoutingContext withSequencing(Sequencing sequencing);
-  Future<Uint8List> appCall(String target, Uint8List request);
-  Future<void> appMessage(String target, Uint8List message);
-
-  Future<DHTRecordDescriptor> createDHTRecord(
-      CryptoKind kind, DHTSchema schema);
-xxx continue here
-  // pub async fn open_dht_record(
-  //     &self,
-  //     key: TypedKey,
-  //     writer: Option<KeyPair>,
-  // ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
-  //     let storage_manager = self.api.storage_manager()?;
-  //     storage_manager
-  //         .open_record(key, writer, self.unlocked_inner.safety_selection)
-  //         .await
-  // }
-
-  // pub async fn close_dht_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
-  //     let storage_manager = self.api.storage_manager()?;
-  //     storage_manager.close_record(key).await
-  // }
-
-  // pub async fn delete_dht_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
-  //     let storage_manager = self.api.storage_manager()?;
-  //     storage_manager.delete_record(key).await
-  // }
-
-  // pub async fn get_dht_value(
-  //     &self,
-  //     key: TypedKey,
-  //     subkey: ValueSubkey,
-  //     force_refresh: bool,
-  // ) -> Result<Option<ValueData>, VeilidAPIError> {
-  //     let storage_manager = self.api.storage_manager()?;
-  //     storage_manager.get_value(key, subkey, force_refresh).await
-  // }
-
-  // pub async fn set_dht_value(
-  //     &self,
-  //     key: TypedKey,
-  //     subkey: ValueSubkey,
-  //     data: Vec<u8>,
-  // ) -> Result<Option<ValueData>, VeilidAPIError> {
-  //     let storage_manager = self.api.storage_manager()?;
-  //     storage_manager.set_value(key, subkey, data).await
-  // }
-
-  // pub async fn watch_dht_values(
-  //     &self,
-  //     key: TypedKey,
-  //     subkeys: &[ValueSubkeyRange],
-  //     expiration: Timestamp,
-  //     count: u32,
-  // ) -> Result<Timestamp, VeilidAPIError> {
-  //     let storage_manager = self.api.storage_manager()?;
-  //     storage_manager
-  //         .watch_values(key, subkeys, expiration, count)
-  //         .await
-  // }
-
-  // pub async fn cancel_dht_watch(
-  //     &self,
-  //     key: TypedKey,
-  //     subkeys: &[ValueSubkeyRange],
-  // ) -> Result<bool, VeilidAPIError> {
-  //     let storage_manager = self.api.storage_manager()?;
-  //     storage_manager.cancel_watch_values(key, subkeys).await
-  // }
-}
-
-/////////////////////////////////////
-/// VeilidTableDB
-abstract class VeilidTableDBTransaction {
-  Future<void> commit();
-  Future<void> rollback();
-  Future<void> store(int col, Uint8List key, Uint8List value);
-  Future<bool> delete(int col, Uint8List key);
-
-  Future<void> storeJson(int col, Uint8List key, Object? object,
-      {Object? Function(Object? nonEncodable)? toEncodable}) async {
-    return store(col, key,
-        utf8.encoder.convert(jsonEncode(object, toEncodable: toEncodable)));
+    return toString();
   }
 
-  Future<void> storeStringJson(int col, String key, Object? object,
-      {Object? Function(Object? nonEncodable)? toEncodable}) {
-    return storeJson(col, utf8.encoder.convert(key), object,
-        toEncodable: toEncodable);
-  }
-}
-
-abstract class VeilidTableDB {
-  int getColumnCount();
-  List<Uint8List> getKeys(int col);
-  VeilidTableDBTransaction transact();
-  Future<void> store(int col, Uint8List key, Uint8List value);
-  Future<Uint8List?> load(int col, Uint8List key);
-  Future<bool> delete(int col, Uint8List key);
-
-  Future<void> storeJson(int col, Uint8List key, Object? object,
-      {Object? Function(Object? nonEncodable)? toEncodable}) {
-    return store(col, key,
-        utf8.encoder.convert(jsonEncode(object, toEncodable: toEncodable)));
+  int toMillis() {
+    return (value ~/ BigInt.from(1000)).toInt();
   }
 
-  Future<void> storeStringJson(int col, String key, Object? object,
-      {Object? Function(Object? nonEncodable)? toEncodable}) {
-    return storeJson(col, utf8.encoder.convert(key), object,
-        toEncodable: toEncodable);
-  }
-
-  Future<Object?> loadJson(int col, Uint8List key,
-      {Object? Function(Object? key, Object? value)? reviver}) async {
-    var s = await load(col, key);
-    if (s == null) {
-      return null;
-    }
-    return jsonDecode(utf8.decode(s, allowMalformed: false), reviver: reviver);
-  }
-
-  Future<Object?> loadStringJson(int col, String key,
-      {Object? Function(Object? key, Object? value)? reviver}) {
-    return loadJson(col, utf8.encoder.convert(key), reviver: reviver);
+  BigInt toMicros(Timestamp other) {
+    return value;
   }
 }
 
@@ -2250,6 +125,16 @@ abstract class Veilid {
   Future<void> detach();
   Future<void> shutdownVeilidCore();
 
+  // Crypto
+  List<CryptoKind> validCryptoKinds();
+  VeilidCryptoSystem getCryptoSystem(CryptoKind kind);
+  VeilidCryptoSystem bestCryptoSystem();
+  List<TypedKey> verifySignatures(
+      List<TypedKey> nodeIds, Uint8List data, List<TypedSignature> signatures);
+  List<TypedSignature> generateSignatures(
+      Uint8List data, List<TypedKeyPair> keyPairs);
+  TypedKeyPair generateKeyPair(CryptoKind kind);
+
   // Routing context
   Future<VeilidRoutingContext> routingContext();
 
@@ -2268,6 +153,7 @@ abstract class Veilid {
   Future<bool> deleteTableDB(String name);
 
   // Misc
+  Timestamp now();
   String veilidVersionString();
   VeilidVersion veilidVersion();
   Future<String> debug(String command);
diff --git a/veilid-flutter/lib/veilid_api_exception.dart b/veilid-flutter/lib/veilid_api_exception.dart
new file mode 100644
index 00000000..40a9db66
--- /dev/null
+++ b/veilid-flutter/lib/veilid_api_exception.dart
@@ -0,0 +1,286 @@
+//////////////////////////////////////
+/// VeilidAPIException
+
+abstract class VeilidAPIException implements Exception {
+  factory VeilidAPIException.fromJson(dynamic json) {
+    switch (json["kind"]) {
+      case "NotInitialized":
+        {
+          return VeilidAPIExceptionNotInitialized();
+        }
+      case "AlreadyInitialized":
+        {
+          return VeilidAPIExceptionAlreadyInitialized();
+        }
+      case "Timeout":
+        {
+          return VeilidAPIExceptionTimeout();
+        }
+      case "TryAgain":
+        {
+          return VeilidAPIExceptionTryAgain();
+        }
+      case "Shutdown":
+        {
+          return VeilidAPIExceptionShutdown();
+        }
+      case "InvalidTarget":
+        {
+          return VeilidAPIExceptionInvalidTarget();
+        }
+      case "NoConnection":
+        {
+          return VeilidAPIExceptionNoConnection(json["message"]);
+        }
+      case "KeyNotFound":
+        {
+          return VeilidAPIExceptionKeyNotFound(json["key"]);
+        }
+      case "Internal":
+        {
+          return VeilidAPIExceptionInternal(json["message"]);
+        }
+      case "Unimplemented":
+        {
+          return VeilidAPIExceptionUnimplemented(json["unimplemented"]);
+        }
+      case "ParseError":
+        {
+          return VeilidAPIExceptionParseError(json["message"], json["value"]);
+        }
+      case "InvalidArgument":
+        {
+          return VeilidAPIExceptionInvalidArgument(
+              json["context"], json["argument"], json["value"]);
+        }
+      case "MissingArgument":
+        {
+          return VeilidAPIExceptionMissingArgument(
+              json["context"], json["argument"]);
+        }
+      case "Generic":
+        {
+          return VeilidAPIExceptionGeneric(json["message"]);
+        }
+      default:
+        {
+          throw VeilidAPIExceptionInternal(
+              "Invalid VeilidAPIException type: ${json['kind']}");
+        }
+    }
+  }
+
+  String toDisplayError();
+}
+
+class VeilidAPIExceptionNotInitialized implements VeilidAPIException {
+  @override
+  String toString() {
+    return "VeilidAPIException: NotInitialized";
+  }
+
+  @override
+  String toDisplayError() {
+    return "Not initialized";
+  }
+}
+
+class VeilidAPIExceptionAlreadyInitialized implements VeilidAPIException {
+  @override
+  String toString() {
+    return "VeilidAPIException: AlreadyInitialized";
+  }
+
+  @override
+  String toDisplayError() {
+    return "Already initialized";
+  }
+}
+
+class VeilidAPIExceptionTimeout implements VeilidAPIException {
+  @override
+  String toString() {
+    return "VeilidAPIException: Timeout";
+  }
+
+  @override
+  String toDisplayError() {
+    return "Timeout";
+  }
+}
+
+class VeilidAPIExceptionTryAgain implements VeilidAPIException {
+  @override
+  String toString() {
+    return "VeilidAPIException: TryAgain";
+  }
+
+  @override
+  String toDisplayError() {
+    return "Try again";
+  }
+}
+
+class VeilidAPIExceptionShutdown implements VeilidAPIException {
+  @override
+  String toString() {
+    return "VeilidAPIException: Shutdown";
+  }
+
+  @override
+  String toDisplayError() {
+    return "Currently shut down";
+  }
+}
+
+class VeilidAPIExceptionInvalidTarget implements VeilidAPIException {
+  @override
+  String toString() {
+    return "VeilidAPIException: InvalidTarget";
+  }
+
+  @override
+  String toDisplayError() {
+    return "Invalid target";
+  }
+}
+
+class VeilidAPIExceptionNoConnection implements VeilidAPIException {
+  final String message;
+
+  @override
+  String toString() {
+    return "VeilidAPIException: NoConnection (message: $message)";
+  }
+
+  @override
+  String toDisplayError() {
+    return "No connection: $message";
+  }
+
+  //
+  VeilidAPIExceptionNoConnection(this.message);
+}
+
+class VeilidAPIExceptionKeyNotFound implements VeilidAPIException {
+  final String key;
+
+  @override
+  String toString() {
+    return "VeilidAPIException: KeyNotFound (key: $key)";
+  }
+
+  @override
+  String toDisplayError() {
+    return "Key not found: $key";
+  }
+
+  //
+  VeilidAPIExceptionKeyNotFound(this.key);
+}
+
+class VeilidAPIExceptionInternal implements VeilidAPIException {
+  final String message;
+
+  @override
+  String toString() {
+    return "VeilidAPIException: Internal ($message)";
+  }
+
+  @override
+  String toDisplayError() {
+    return "Internal error: $message";
+  }
+
+  //
+  VeilidAPIExceptionInternal(this.message);
+}
+
+class VeilidAPIExceptionUnimplemented implements VeilidAPIException {
+  final String message;
+
+  @override
+  String toString() {
+    return "VeilidAPIException: Unimplemented ($message)";
+  }
+
+  @override
+  String toDisplayError() {
+    return "Unimplemented: $message";
+  }
+
+  //
+  VeilidAPIExceptionUnimplemented(this.message);
+}
+
+class VeilidAPIExceptionParseError implements VeilidAPIException {
+  final String message;
+  final String value;
+
+  @override
+  String toString() {
+    return "VeilidAPIException: ParseError ($message)\n    value: $value";
+  }
+
+  @override
+  String toDisplayError() {
+    return "Parse error: $message";
+  }
+
+  //
+  VeilidAPIExceptionParseError(this.message, this.value);
+}
+
+class VeilidAPIExceptionInvalidArgument implements VeilidAPIException {
+  final String context;
+  final String argument;
+  final String value;
+
+  @override
+  String toString() {
+    return "VeilidAPIException: InvalidArgument ($context:$argument)\n    value: $value";
+  }
+
+  @override
+  String toDisplayError() {
+    return "Invalid argument for $context: $argument";
+  }
+
+  //
+  VeilidAPIExceptionInvalidArgument(this.context, this.argument, this.value);
+}
+
+class VeilidAPIExceptionMissingArgument implements VeilidAPIException {
+  final String context;
+  final String argument;
+
+  @override
+  String toString() {
+    return "VeilidAPIException: MissingArgument ($context:$argument)";
+  }
+
+  @override
+  String toDisplayError() {
+    return "Missing argument for $context: $argument";
+  }
+
+  //
+  VeilidAPIExceptionMissingArgument(this.context, this.argument);
+}
+
+class VeilidAPIExceptionGeneric implements VeilidAPIException {
+  final String message;
+
+  @override
+  String toString() {
+    return "VeilidAPIException: Generic (message: $message)";
+  }
+
+  @override
+  String toDisplayError() {
+    return message;
+  }
+
+  //
+  VeilidAPIExceptionGeneric(this.message);
+}
diff --git a/veilid-flutter/lib/veilid_config.dart b/veilid-flutter/lib/veilid_config.dart
new file mode 100644
index 00000000..ce9e0380
--- /dev/null
+++ b/veilid-flutter/lib/veilid_config.dart
@@ -0,0 +1,744 @@
+import 'dart:async';
+import 'dart:typed_data';
+import 'dart:convert';
+
+import 'package:change_case/change_case.dart';
+
+import 'veilid_encoding.dart';
+import 'veilid.dart';
+
+//////////////////////////////////////
+/// VeilidConfigLogLevel
+
+enum VeilidConfigLogLevel {
+  off,
+  error,
+  warn,
+  info,
+  debug,
+  trace,
+}
+
+extension VeilidConfigLogLevelExt on VeilidConfigLogLevel {
+  String get json {
+    return name.toPascalCase();
+  }
+}
+
+VeilidConfigLogLevel veilidConfigLogLevelFromJson(String j) {
+  return VeilidConfigLogLevel.values.byName(j.toCamelCase());
+}
+
+//////////////////////////////////////
+/// VeilidConfig
+
+class VeilidConfigHTTPS {
+  bool enabled;
+  String listenAddress;
+  String path;
+  String? url;
+
+  VeilidConfigHTTPS({
+    required this.enabled,
+    required this.listenAddress,
+    required this.path,
+    this.url,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'enabled': enabled,
+      'listen_address': listenAddress,
+      'path': path,
+      'url': url
+    };
+  }
+
+  VeilidConfigHTTPS.fromJson(dynamic json)
+      : enabled = json['enabled'],
+        listenAddress = json['listen_address'],
+        path = json['path'],
+        url = json['url'];
+}
+
+////////////
+
+class VeilidConfigHTTP {
+  bool enabled;
+  String listenAddress;
+  String path;
+  String? url;
+
+  VeilidConfigHTTP({
+    required this.enabled,
+    required this.listenAddress,
+    required this.path,
+    this.url,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'enabled': enabled,
+      'listen_address': listenAddress,
+      'path': path,
+      'url': url
+    };
+  }
+
+  VeilidConfigHTTP.fromJson(dynamic json)
+      : enabled = json['enabled'],
+        listenAddress = json['listen_address'],
+        path = json['path'],
+        url = json['url'];
+}
+
+////////////
+
+class VeilidConfigApplication {
+  VeilidConfigHTTPS https;
+  VeilidConfigHTTP http;
+
+  VeilidConfigApplication({
+    required this.https,
+    required this.http,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'https': https.json,
+      'http': http.json,
+    };
+  }
+
+  VeilidConfigApplication.fromJson(dynamic json)
+      : https = VeilidConfigHTTPS.fromJson(json['https']),
+        http = VeilidConfigHTTP.fromJson(json['http']);
+}
+
+////////////
+
+class VeilidConfigUDP {
+  bool enabled;
+  int socketPoolSize;
+  String listenAddress;
+  String? publicAddress;
+
+  VeilidConfigUDP(
+      {required this.enabled,
+      required this.socketPoolSize,
+      required this.listenAddress,
+      this.publicAddress});
+
+  Map<String, dynamic> get json {
+    return {
+      'enabled': enabled,
+      'socket_pool_size': socketPoolSize,
+      'listen_address': listenAddress,
+      'public_address': publicAddress,
+    };
+  }
+
+  VeilidConfigUDP.fromJson(dynamic json)
+      : enabled = json['enabled'],
+        socketPoolSize = json['socket_pool_size'],
+        listenAddress = json['listen_address'],
+        publicAddress = json['publicAddress'];
+}
+
+////////////
+
+class VeilidConfigTCP {
+  bool connect;
+  bool listen;
+  int maxConnections;
+  String listenAddress;
+  String? publicAddress;
+
+  VeilidConfigTCP(
+      {required this.connect,
+      required this.listen,
+      required this.maxConnections,
+      required this.listenAddress,
+      this.publicAddress});
+
+  Map<String, dynamic> get json {
+    return {
+      'connect': connect,
+      'listen': listen,
+      'max_connections': maxConnections,
+      'listen_address': listenAddress,
+      'public_address': publicAddress,
+    };
+  }
+
+  VeilidConfigTCP.fromJson(dynamic json)
+      : connect = json['connect'],
+        listen = json['listen'],
+        maxConnections = json['max_connections'],
+        listenAddress = json['listen_address'],
+        publicAddress = json['publicAddress'];
+}
+
+////////////
+
+class VeilidConfigWS {
+  bool connect;
+  bool listen;
+  int maxConnections;
+  String listenAddress;
+  String path;
+  String? url;
+
+  VeilidConfigWS(
+      {required this.connect,
+      required this.listen,
+      required this.maxConnections,
+      required this.listenAddress,
+      required this.path,
+      this.url});
+
+  Map<String, dynamic> get json {
+    return {
+      'connect': connect,
+      'listen': listen,
+      'max_connections': maxConnections,
+      'listen_address': listenAddress,
+      'path': path,
+      'url': url,
+    };
+  }
+
+  VeilidConfigWS.fromJson(dynamic json)
+      : connect = json['connect'],
+        listen = json['listen'],
+        maxConnections = json['max_connections'],
+        listenAddress = json['listen_address'],
+        path = json['path'],
+        url = json['url'];
+}
+
+////////////
+
+class VeilidConfigWSS {
+  bool connect;
+  bool listen;
+  int maxConnections;
+  String listenAddress;
+  String path;
+  String? url;
+
+  VeilidConfigWSS(
+      {required this.connect,
+      required this.listen,
+      required this.maxConnections,
+      required this.listenAddress,
+      required this.path,
+      this.url});
+
+  Map<String, dynamic> get json {
+    return {
+      'connect': connect,
+      'listen': listen,
+      'max_connections': maxConnections,
+      'listen_address': listenAddress,
+      'path': path,
+      'url': url,
+    };
+  }
+
+  VeilidConfigWSS.fromJson(dynamic json)
+      : connect = json['connect'],
+        listen = json['listen'],
+        maxConnections = json['max_connections'],
+        listenAddress = json['listen_address'],
+        path = json['path'],
+        url = json['url'];
+}
+
+////////////
+
+class VeilidConfigProtocol {
+  VeilidConfigUDP udp;
+  VeilidConfigTCP tcp;
+  VeilidConfigWS ws;
+  VeilidConfigWSS wss;
+
+  VeilidConfigProtocol({
+    required this.udp,
+    required this.tcp,
+    required this.ws,
+    required this.wss,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'udp': udp.json,
+      'tcp': tcp.json,
+      'ws': ws.json,
+      'wss': wss.json,
+    };
+  }
+
+  VeilidConfigProtocol.fromJson(dynamic json)
+      : udp = VeilidConfigUDP.fromJson(json['udp']),
+        tcp = VeilidConfigTCP.fromJson(json['tcp']),
+        ws = VeilidConfigWS.fromJson(json['ws']),
+        wss = VeilidConfigWSS.fromJson(json['wss']);
+}
+
+////////////
+
+class VeilidConfigTLS {
+  String certificatePath;
+  String privateKeyPath;
+  int connectionInitialTimeoutMs;
+
+  VeilidConfigTLS({
+    required this.certificatePath,
+    required this.privateKeyPath,
+    required this.connectionInitialTimeoutMs,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'certificate_path': certificatePath,
+      'private_key_path': privateKeyPath,
+      'connection_initial_timeout_ms': connectionInitialTimeoutMs,
+    };
+  }
+
+  VeilidConfigTLS.fromJson(dynamic json)
+      : certificatePath = json['certificate_path'],
+        privateKeyPath = json['private_key_path'],
+        connectionInitialTimeoutMs = json['connection_initial_timeout_ms'];
+}
+
+////////////
+
+class VeilidConfigDHT {
+  int resolveNodeTimeoutMs;
+  int resolveNodeCount;
+  int resolveNodeFanout;
+  int maxFindNodeCount;
+  int getValueTimeoutMs;
+  int getValueCount;
+  int getValueFanout;
+  int setValueTimeoutMs;
+  int setValueCount;
+  int setValueFanout;
+  int minPeerCount;
+  int minPeerRefreshTimeMs;
+  int validateDialInfoReceiptTimeMs;
+  int localSubkeyCacheSize;
+  int localMaxSubkeyCacheMemoryMb;
+  int remoteSubkeyCacheSize;
+  int remoteMaxRecords;
+  int remoteMaxSubkeyCacheMemoryMb;
+  int remoteMaxStorageSpaceMb;
+
+  VeilidConfigDHT(
+      {required this.resolveNodeTimeoutMs,
+      required this.resolveNodeCount,
+      required this.resolveNodeFanout,
+      required this.maxFindNodeCount,
+      required this.getValueTimeoutMs,
+      required this.getValueCount,
+      required this.getValueFanout,
+      required this.setValueTimeoutMs,
+      required this.setValueCount,
+      required this.setValueFanout,
+      required this.minPeerCount,
+      required this.minPeerRefreshTimeMs,
+      required this.validateDialInfoReceiptTimeMs,
+      required this.localSubkeyCacheSize,
+      required this.localMaxSubkeyCacheMemoryMb,
+      required this.remoteSubkeyCacheSize,
+      required this.remoteMaxRecords,
+      required this.remoteMaxSubkeyCacheMemoryMb,
+      required this.remoteMaxStorageSpaceMb});
+
+  Map<String, dynamic> get json {
+    return {
+      'max_find_node_count': maxFindNodeCount,
+      'resolve_node_timeout_ms': resolveNodeTimeoutMs,
+      'resolve_node_count': resolveNodeCount,
+      'resolve_node_fanout': resolveNodeFanout,
+      'get_value_timeout_ms': getValueTimeoutMs,
+      'get_value_count': getValueCount,
+      'get_value_fanout': getValueFanout,
+      'set_value_timeout_ms': setValueTimeoutMs,
+      'set_value_count': setValueCount,
+      'set_value_fanout': setValueFanout,
+      'min_peer_count': minPeerCount,
+      'min_peer_refresh_time_ms': minPeerRefreshTimeMs,
+      'validate_dial_info_receipt_time_ms': validateDialInfoReceiptTimeMs,
+      'local_subkey_cache_size: 128': localSubkeyCacheSize,
+      'local_max_subkey_cache_memory_mb': localMaxSubkeyCacheMemoryMb,
+      'remote_subkey_cache_size': remoteSubkeyCacheSize,
+      'remote_max_records': remoteMaxRecords,
+      'remote_max_subkey_cache_memory_mb': remoteMaxSubkeyCacheMemoryMb,
+      'remote_max_storage_space_mb': remoteMaxStorageSpaceMb,
+    };
+  }
+
+  VeilidConfigDHT.fromJson(dynamic json)
+      : resolveNodeTimeoutMs = json['resolve_node_timeout_ms'],
+        resolveNodeCount = json['resolve_node_count'],
+        resolveNodeFanout = json['resolve_node_fanout'],
+        maxFindNodeCount = json['max_find_node_count'],
+        getValueTimeoutMs = json['get_value_timeout_ms'],
+        getValueCount = json['get_value_count'],
+        getValueFanout = json['get_value_fanout'],
+        setValueTimeoutMs = json['set_value_timeout_ms'],
+        setValueCount = json['set_value_count'],
+        setValueFanout = json['set_value_fanout'],
+        minPeerCount = json['min_peer_count'],
+        minPeerRefreshTimeMs = json['min_peer_refresh_time_ms'],
+        validateDialInfoReceiptTimeMs =
+            json['validate_dial_info_receipt_time_ms'],
+        localSubkeyCacheSize = json['local_subkey_cache_size'],
+        localMaxSubkeyCacheMemoryMb = json['local_max_subkey_cache_memory_mb'],
+        remoteSubkeyCacheSize = json['remote_subkey_cache_size'],
+        remoteMaxRecords = json['remote_max_records'],
+        remoteMaxSubkeyCacheMemoryMb =
+            json['remote_max_subkey_cache_memory_mb'],
+        remoteMaxStorageSpaceMb = json['remote_max_storage_space_mb'];
+}
+
+////////////
+
+class VeilidConfigRPC {
+  int concurrency;
+  int queueSize;
+  int? maxTimestampBehindMs;
+  int? maxTimestampAheadMs;
+  int timeoutMs;
+  int maxRouteHopCount;
+  int defaultRouteHopCount;
+
+  VeilidConfigRPC(
+      {required this.concurrency,
+      required this.queueSize,
+      this.maxTimestampBehindMs,
+      this.maxTimestampAheadMs,
+      required this.timeoutMs,
+      required this.maxRouteHopCount,
+      required this.defaultRouteHopCount});
+
+  Map<String, dynamic> get json {
+    return {
+      'concurrency': concurrency,
+      'queue_size': queueSize,
+      'max_timestamp_behind_ms': maxTimestampBehindMs,
+      'max_timestamp_ahead_ms': maxTimestampAheadMs,
+      'timeout_ms': timeoutMs,
+      'max_route_hop_count': maxRouteHopCount,
+      'default_route_hop_count': defaultRouteHopCount,
+    };
+  }
+
+  VeilidConfigRPC.fromJson(dynamic json)
+      : concurrency = json['concurrency'],
+        queueSize = json['queue_size'],
+        maxTimestampBehindMs = json['max_timestamp_behind_ms'],
+        maxTimestampAheadMs = json['max_timestamp_ahead_ms'],
+        timeoutMs = json['timeout_ms'],
+        maxRouteHopCount = json['max_route_hop_count'],
+        defaultRouteHopCount = json['default_route_hop_count'];
+}
+
+////////////
+
+class VeilidConfigRoutingTable {
+  List<Key> nodeId;
+  List<Key> nodeIdSecret;
+  List<String> bootstrap;
+  int limitOverAttached;
+  int limitFullyAttached;
+  int limitAttachedStrong;
+  int limitAttachedGood;
+  int limitAttachedWeak;
+
+  VeilidConfigRoutingTable({
+    required this.nodeId,
+    required this.nodeIdSecret,
+    required this.bootstrap,
+    required this.limitOverAttached,
+    required this.limitFullyAttached,
+    required this.limitAttachedStrong,
+    required this.limitAttachedGood,
+    required this.limitAttachedWeak,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'node_id': nodeId.map((p) => p.json).toList(),
+      'node_id_secret': nodeIdSecret.map((p) => p.json).toList(),
+      'bootstrap': bootstrap.map((p) => p).toList(),
+      'limit_over_attached': limitOverAttached,
+      'limit_fully_attached': limitFullyAttached,
+      'limit_attached_strong': limitAttachedStrong,
+      'limit_attached_good': limitAttachedGood,
+      'limit_attached_weak': limitAttachedWeak,
+    };
+  }
+
+  VeilidConfigRoutingTable.fromJson(dynamic json)
+      : nodeId = List<Key>.from(json['node_id'].map((j) => Key.fromJson(j))),
+        nodeIdSecret =
+            List<Key>.from(json['node_id_secret'].map((j) => Key.fromJson(j))),
+        bootstrap = List<String>.from(json['bootstrap'].map((j) => j)),
+        limitOverAttached = json['limit_over_attached'],
+        limitFullyAttached = json['limit_fully_attached'],
+        limitAttachedStrong = json['limit_attached_strong'],
+        limitAttachedGood = json['limit_attached_good'],
+        limitAttachedWeak = json['limit_attached_weak'];
+}
+
+////////////
+
+class VeilidConfigNetwork {
+  int connectionInitialTimeoutMs;
+  int connectionInactivityTimeoutMs;
+  int maxConnectionsPerIp4;
+  int maxConnectionsPerIp6Prefix;
+  int maxConnectionsPerIp6PrefixSize;
+  int maxConnectionFrequencyPerMin;
+  int clientWhitelistTimeoutMs;
+  int reverseConnectionReceiptTimeMs;
+  int holePunchReceiptTimeMs;
+  VeilidConfigRoutingTable routingTable;
+  VeilidConfigRPC rpc;
+  VeilidConfigDHT dht;
+  bool upnp;
+  bool detectAddressChanges;
+  int restrictedNatRetries;
+  VeilidConfigTLS tls;
+  VeilidConfigApplication application;
+  VeilidConfigProtocol protocol;
+
+  VeilidConfigNetwork({
+    required this.connectionInitialTimeoutMs,
+    required this.connectionInactivityTimeoutMs,
+    required this.maxConnectionsPerIp4,
+    required this.maxConnectionsPerIp6Prefix,
+    required this.maxConnectionsPerIp6PrefixSize,
+    required this.maxConnectionFrequencyPerMin,
+    required this.clientWhitelistTimeoutMs,
+    required this.reverseConnectionReceiptTimeMs,
+    required this.holePunchReceiptTimeMs,
+    required this.routingTable,
+    required this.rpc,
+    required this.dht,
+    required this.upnp,
+    required this.detectAddressChanges,
+    required this.restrictedNatRetries,
+    required this.tls,
+    required this.application,
+    required this.protocol,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'connection_initial_timeout_ms': connectionInitialTimeoutMs,
+      'connection_inactivity_timeout_ms': connectionInactivityTimeoutMs,
+      'max_connections_per_ip4': maxConnectionsPerIp4,
+      'max_connections_per_ip6_prefix': maxConnectionsPerIp6Prefix,
+      'max_connections_per_ip6_prefix_size': maxConnectionsPerIp6PrefixSize,
+      'max_connection_frequency_per_min': maxConnectionFrequencyPerMin,
+      'client_whitelist_timeout_ms': clientWhitelistTimeoutMs,
+      'reverse_connection_receipt_time_ms': reverseConnectionReceiptTimeMs,
+      'hole_punch_receipt_time_ms': holePunchReceiptTimeMs,
+      'routing_table': routingTable.json,
+      'rpc': rpc.json,
+      'dht': dht.json,
+      'upnp': upnp,
+      'detect_address_changes': detectAddressChanges,
+      'restricted_nat_retries': restrictedNatRetries,
+      'tls': tls.json,
+      'application': application.json,
+      'protocol': protocol.json,
+    };
+  }
+
+  VeilidConfigNetwork.fromJson(dynamic json)
+      : connectionInitialTimeoutMs = json['connection_initial_timeout_ms'],
+        connectionInactivityTimeoutMs =
+            json['connection_inactivity_timeout_ms'],
+        maxConnectionsPerIp4 = json['max_connections_per_ip4'],
+        maxConnectionsPerIp6Prefix = json['max_connections_per_ip6_prefix'],
+        maxConnectionsPerIp6PrefixSize =
+            json['max_connections_per_ip6_prefix_size'],
+        maxConnectionFrequencyPerMin = json['max_connection_frequency_per_min'],
+        clientWhitelistTimeoutMs = json['client_whitelist_timeout_ms'],
+        reverseConnectionReceiptTimeMs =
+            json['reverse_connection_receipt_time_ms'],
+        holePunchReceiptTimeMs = json['hole_punch_receipt_time_ms'],
+        routingTable = VeilidConfigRoutingTable.fromJson(json['routing_table']),
+        rpc = VeilidConfigRPC.fromJson(json['rpc']),
+        dht = VeilidConfigDHT.fromJson(json['dht']),
+        upnp = json['upnp'],
+        detectAddressChanges = json['detect_address_changes'],
+        restrictedNatRetries = json['restricted_nat_retries'],
+        tls = VeilidConfigTLS.fromJson(json['tls']),
+        application = VeilidConfigApplication.fromJson(json['application']),
+        protocol = VeilidConfigProtocol.fromJson(json['protocol']);
+}
+
+////////////
+
+class VeilidConfigTableStore {
+  String directory;
+  bool delete;
+
+  VeilidConfigTableStore({
+    required this.directory,
+    required this.delete,
+  });
+
+  Map<String, dynamic> get json {
+    return {'directory': directory, 'delete': delete};
+  }
+
+  VeilidConfigTableStore.fromJson(dynamic json)
+      : directory = json['directory'],
+        delete = json['delete'];
+}
+
+////////////
+
+class VeilidConfigBlockStore {
+  String directory;
+  bool delete;
+
+  VeilidConfigBlockStore({
+    required this.directory,
+    required this.delete,
+  });
+
+  Map<String, dynamic> get json {
+    return {'directory': directory, 'delete': delete};
+  }
+
+  VeilidConfigBlockStore.fromJson(dynamic json)
+      : directory = json['directory'],
+        delete = json['delete'];
+}
+
+////////////
+
+class VeilidConfigProtectedStore {
+  bool allowInsecureFallback;
+  bool alwaysUseInsecureStorage;
+  String insecureFallbackDirectory;
+  bool delete;
+
+  VeilidConfigProtectedStore({
+    required this.allowInsecureFallback,
+    required this.alwaysUseInsecureStorage,
+    required this.insecureFallbackDirectory,
+    required this.delete,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'allow_insecure_fallback': allowInsecureFallback,
+      'always_use_insecure_storage': alwaysUseInsecureStorage,
+      'insecure_fallback_directory': insecureFallbackDirectory,
+      'delete': delete,
+    };
+  }
+
+  VeilidConfigProtectedStore.fromJson(dynamic json)
+      : allowInsecureFallback = json['allow_insecure_fallback'],
+        alwaysUseInsecureStorage = json['always_use_insecure_storage'],
+        insecureFallbackDirectory = json['insecure_fallback_directory'],
+        delete = json['delete'];
+}
+
+////////////
+
+class VeilidConfigCapabilities {
+  bool protocolUDP;
+  bool protocolConnectTCP;
+  bool protocolAcceptTCP;
+  bool protocolConnectWS;
+  bool protocolAcceptWS;
+  bool protocolConnectWSS;
+  bool protocolAcceptWSS;
+
+  VeilidConfigCapabilities({
+    required this.protocolUDP,
+    required this.protocolConnectTCP,
+    required this.protocolAcceptTCP,
+    required this.protocolConnectWS,
+    required this.protocolAcceptWS,
+    required this.protocolConnectWSS,
+    required this.protocolAcceptWSS,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'protocol_udp': protocolUDP,
+      'protocol_connect_tcp': protocolConnectTCP,
+      'protocol_accept_tcp': protocolAcceptTCP,
+      'protocol_connect_ws': protocolConnectWS,
+      'protocol_accept_ws': protocolAcceptWS,
+      'protocol_connect_wss': protocolConnectWSS,
+      'protocol_accept_wss': protocolAcceptWSS,
+    };
+  }
+
+  VeilidConfigCapabilities.fromJson(dynamic json)
+      : protocolUDP = json['protocol_udp'],
+        protocolConnectTCP = json['protocol_connect_tcp'],
+        protocolAcceptTCP = json['protocol_accept_tcp'],
+        protocolConnectWS = json['protocol_connect_ws'],
+        protocolAcceptWS = json['protocol_accept_ws'],
+        protocolConnectWSS = json['protocol_connect_wss'],
+        protocolAcceptWSS = json['protocol_accept_wss'];
+}
+
+////////////
+
+class VeilidConfig {
+  String programName;
+  String namespace;
+  VeilidConfigCapabilities capabilities;
+  VeilidConfigProtectedStore protectedStore;
+  VeilidConfigTableStore tableStore;
+  VeilidConfigBlockStore blockStore;
+  VeilidConfigNetwork network;
+
+  VeilidConfig({
+    required this.programName,
+    required this.namespace,
+    required this.capabilities,
+    required this.protectedStore,
+    required this.tableStore,
+    required this.blockStore,
+    required this.network,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'program_name': programName,
+      'namespace': namespace,
+      'capabilities': capabilities.json,
+      'protected_store': protectedStore.json,
+      'table_store': tableStore.json,
+      'block_store': blockStore.json,
+      'network': network.json
+    };
+  }
+
+  VeilidConfig.fromJson(dynamic json)
+      : programName = json['program_name'],
+        namespace = json['namespace'],
+        capabilities = VeilidConfigCapabilities.fromJson(json['capabilities']),
+        protectedStore =
+            VeilidConfigProtectedStore.fromJson(json['protected_store']),
+        tableStore = VeilidConfigTableStore.fromJson(json['table_store']),
+        blockStore = VeilidConfigBlockStore.fromJson(json['block_store']),
+        network = VeilidConfigNetwork.fromJson(json['network']);
+}
diff --git a/veilid-flutter/lib/veilid_crypto.dart b/veilid-flutter/lib/veilid_crypto.dart
new file mode 100644
index 00000000..e18adee7
--- /dev/null
+++ b/veilid-flutter/lib/veilid_crypto.dart
@@ -0,0 +1,155 @@
+import 'dart:async';
+import 'dart:typed_data';
+
+import 'package:charcode/charcode.dart';
+
+import 'veilid_encoding.dart';
+import 'veilid.dart';
+
+//////////////////////////////////////
+/// CryptoKind
+
+typedef CryptoKind = int;
+const CryptoKind cryptoKindVLD0 =
+    $V << 0 | $L << 8 | $D << 16 | $0 << 24; // "VLD0"
+const CryptoKind cryptoKindNONE =
+    $N << 0 | $O << 8 | $N << 16 | $E << 24; // "NONE"
+
+String cryptoKindToString(CryptoKind kind) {
+  return "${String.fromCharCode(kind & 0xFF)}${String.fromCharCode((kind >> 8) & 0xFF)}${String.fromCharCode((kind >> 16) & 0xFF)}${String.fromCharCode((kind >> 24) & 0xFF)}";
+}
+
+CryptoKind cryptoKindFromString(String s) {
+  if (s.codeUnits.length != 4) {
+    throw const FormatException("malformed string");
+  }
+  CryptoKind kind = s.codeUnits[0] |
+      s.codeUnits[1] << 8 |
+      s.codeUnits[2] << 16 |
+      s.codeUnits[3] << 24;
+  return kind;
+}
+
+//////////////////////////////////////
+/// Types
+
+class Typed<V extends EncodedString> {
+  late CryptoKind kind;
+  late V value;
+  Typed({required this.kind, required this.value});
+
+  @override
+  String toString() {
+    return "${cryptoKindToString(kind)}:$value";
+  }
+
+  Typed.fromString(String s) {
+    var parts = s.split(":");
+    if (parts.length < 2 || parts[0].codeUnits.length != 4) {
+      throw const FormatException("malformed string");
+    }
+    kind = parts[0].codeUnits[0] |
+        parts[0].codeUnits[1] << 8 |
+        parts[0].codeUnits[2] << 16 |
+        parts[0].codeUnits[3] << 24;
+    value = EncodedString.fromString<V>(parts.sublist(1).join(":"));
+  }
+
+  String get json {
+    return toString();
+  }
+
+  Typed.fromJson(dynamic json) : this.fromString(json as String);
+}
+
+class KeyPair {
+  late Key key;
+  late Key secret;
+  KeyPair({required this.key, required this.secret});
+
+  @override
+  String toString() {
+    return "${key.toString()}:${secret.toString()}";
+  }
+
+  KeyPair.fromString(String s) {
+    var parts = s.split(":");
+    if (parts.length != 2 ||
+        parts[0].codeUnits.length != 43 ||
+        parts[1].codeUnits.length != 43) {
+      throw const FormatException("malformed string");
+    }
+    key = Key(parts[0]);
+    secret = Key(parts[1]);
+  }
+
+  String get json {
+    return toString();
+  }
+
+  KeyPair.fromJson(dynamic json) : this.fromString(json as String);
+}
+
+class TypedKeyPair {
+  late CryptoKind kind;
+  late Key key;
+  late Key secret;
+  TypedKeyPair({required this.kind, required this.key, required this.secret});
+
+  @override
+  String toString() {
+    return "${cryptoKindToString(kind)}:${key.toString()}:${secret.toString()}";
+  }
+
+  TypedKeyPair.fromString(String s) {
+    var parts = s.split(":");
+    if (parts.length != 3 ||
+        parts[0].codeUnits.length != 4 ||
+        parts[1].codeUnits.length != 43 ||
+        parts[2].codeUnits.length != 43) {
+      throw VeilidAPIExceptionInvalidArgument("malformed string", "s", s);
+    }
+    kind = cryptoKindFromString(parts[0]);
+    key = Key(parts[1]);
+    secret = Key(parts[2]);
+  }
+
+  String get json {
+    return toString();
+  }
+
+  TypedKeyPair.fromJson(dynamic json) : this.fromString(json as String);
+}
+
+typedef Key = FixedEncodedString43;
+typedef Signature = FixedEncodedString86;
+typedef Nonce = FixedEncodedString32;
+
+typedef TypedKey = Typed<Key>;
+typedef TypedSignature = Typed<Signature>;
+
+//////////////////////////////////////
+/// VeilidCryptoSystem
+
+abstract class VeilidCryptoSystem {
+  CryptoKind kind();
+  Key cachedDH(Key key, Key secret);
+  Key computeDH(Key key, Key secret);
+  Nonce randomNonce();
+  Key randomSharedSecret();
+  KeyPair generateKeyPair();
+  Key generateHash(Uint8List data);
+  Key generateHashReader(Stream<List<int>> reader);
+  bool validateKeyPair(Key key, Key secret);
+  bool validateHash(Uint8List data, Key hash);
+  bool validateHashReader(Stream<List<int>> reader, Key hash);
+  Key distance(Key key1, Key key2);
+  Signature sign(Key key, Key secret, Uint8List data);
+  void verify(Key key, Uint8List data, Signature signature);
+  BigInt aeadOverhead();
+  Uint8List decryptAead(
+      Uint8List body, Nonce nonce, Key sharedSecret, Uint8List? associatedData);
+  Uint8List encryptAead(
+      Uint8List body, Nonce nonce, Key sharedSecret, Uint8List? associatedData);
+  Uint8List cryptNoAuth(Uint8List body, Nonce nonce, Key sharedSecret);
+}
diff --git a/veilid-flutter/lib/veilid_encoding.dart b/veilid-flutter/lib/veilid_encoding.dart
new file mode 100644
index 00000000..f2746da9
--- /dev/null
+++ b/veilid-flutter/lib/veilid_encoding.dart
@@ -0,0 +1,116 @@
+import 'dart:convert';
+import 'dart:typed_data';
+
+String base64UrlNoPadEncode(List<int> bytes) {
+  var x = base64Url.encode(bytes);
+  while (x.endsWith('=')) {
+    x = x.substring(0, x.length - 1);
+  }
+  return x;
+}
+
+Uint8List base64UrlNoPadDecode(String source) {
+  source = base64.normalize(source);
+  return base64.decode(source);
+}
+
+abstract class EncodedString {
+  late String contents;
+  EncodedString(String s) {
+    validate(s);
+    contents = s;
+  }
+  EncodedString.encode(List<int> b) {
+    var s = base64UrlNoPadEncode(b);
+    validate(s);
+    contents = s;
+  }
+
+  int encodedLength();
+  int decodedLength();
+  void validate(String s) {
+    var d = base64UrlNoPadDecode(s);
+    if (d.length != decodedLength()) {
+      throw Exception("length ${s.length} should be ${encodedLength()}");
+    }
+  }
+
+  Uint8List decode() {
+    return base64UrlNoPadDecode(contents);
+  }
+
+  @override
+  String toString() {
+    return contents;
+  }
+
+  static T fromString<T extends EncodedString>(String s) {
+    switch (T) {
+      case FixedEncodedString32:
+        return FixedEncodedString32(s) as T;
+      case FixedEncodedString43:
+        return FixedEncodedString43(s) as T;
+      case FixedEncodedString86:
+        return FixedEncodedString86(s) as T;
+      default:
+        throw UnimplementedError();
+    }
+  }
+}
+
+class FixedEncodedString32 extends EncodedString {
+  FixedEncodedString32(String s) : super(s);
+  @override
+  int encodedLength() {
+    return 32;
+  }
+
+  @override
+  int decodedLength() {
+    return 24;
+  }
+
+  String get json {
+    return toString();
+  }
+
+  FixedEncodedString32.fromJson(dynamic json) : this(json as String);
+}
+
+class FixedEncodedString43 extends EncodedString {
+  FixedEncodedString43(String s) : super(s);
+  @override
+  int encodedLength() {
+    return 43;
+  }
+
+  @override
+  int decodedLength() {
+    return 32;
+  }
+
+  String get json {
+    return toString();
+  }
+
+  FixedEncodedString43.fromJson(dynamic json) : this(json as String);
+}
+
+class FixedEncodedString86 extends EncodedString {
+  FixedEncodedString86(String s) : super(s);
+  @override
+  int encodedLength() {
+    return 86;
+  }
+
+  @override
+  int decodedLength() {
+    return 64;
+  }
+
+  String get json {
+    return toString();
+  }
+
+  FixedEncodedString86.fromJson(dynamic json) : this(json as String);
+}
diff --git a/veilid-flutter/lib/veilid_ffi.dart b/veilid-flutter/lib/veilid_ffi.dart
index dd0b13a4..2bb17d96 100644
--- a/veilid-flutter/lib/veilid_ffi.dart
+++ b/veilid-flutter/lib/veilid_ffi.dart
@@ -10,6 +10,119 @@ import 'package:ffi/ffi.dart';
 import 'veilid.dart';
 import 'base64url_no_pad.dart';
 
+//////////////////////////////////////////////////////////
+// FFI Platform-specific config
+
+class VeilidFFIConfigLoggingTerminal {
+  bool enabled;
+  VeilidConfigLogLevel level;
+
+  VeilidFFIConfigLoggingTerminal({
+    required this.enabled,
+    required this.level,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'enabled': enabled,
+      'level': level.json,
+    };
+  }
+
+  VeilidFFIConfigLoggingTerminal.fromJson(dynamic json)
+      : enabled = json['enabled'],
+        level = veilidConfigLogLevelFromJson(json['level']);
+}
+
+class VeilidFFIConfigLoggingOtlp {
+  bool enabled;
+  VeilidConfigLogLevel level;
+  String grpcEndpoint;
+  String serviceName;
+
+  VeilidFFIConfigLoggingOtlp({
+    required this.enabled,
+    required this.level,
+    required this.grpcEndpoint,
+    required this.serviceName,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'enabled': enabled,
+      'level': level.json,
+      'grpc_endpoint': grpcEndpoint,
+      'service_name': serviceName,
+    };
+  }
+
+  VeilidFFIConfigLoggingOtlp.fromJson(dynamic json)
+      : enabled = json['enabled'],
+        level = veilidConfigLogLevelFromJson(json['level']),
+        grpcEndpoint = json['grpc_endpoint'],
+        serviceName = json['service_name'];
+}
+
+class VeilidFFIConfigLoggingApi {
+  bool enabled;
+  VeilidConfigLogLevel level;
+
+  VeilidFFIConfigLoggingApi({
+    required this.enabled,
+    required this.level,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'enabled': enabled,
+      'level': level.json,
+    };
+  }
+
+  VeilidFFIConfigLoggingApi.fromJson(dynamic json)
+      : enabled = json['enabled'],
+        level = veilidConfigLogLevelFromJson(json['level']);
+}
+
+class VeilidFFIConfigLogging {
+  VeilidFFIConfigLoggingTerminal terminal;
+  VeilidFFIConfigLoggingOtlp otlp;
+  VeilidFFIConfigLoggingApi api;
+
+  VeilidFFIConfigLogging(
+      {required this.terminal, required this.otlp, required this.api});
+
+  Map<String, dynamic> get json {
+    return {
+      'terminal': terminal.json,
+      'otlp': otlp.json,
+      'api': api.json,
+    };
+  }
+
+  VeilidFFIConfigLogging.fromJson(dynamic json)
+      : terminal = VeilidFFIConfigLoggingTerminal.fromJson(json['terminal']),
+        otlp = VeilidFFIConfigLoggingOtlp.fromJson(json['otlp']),
+        api = VeilidFFIConfigLoggingApi.fromJson(json['api']);
+}
+
+class VeilidFFIConfig {
+  VeilidFFIConfigLogging logging;
+
+  VeilidFFIConfig({
+    required this.logging,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'logging': logging.json,
+    };
+  }
+
+  VeilidFFIConfig.fromJson(Map<String, dynamic> json)
+      : logging = VeilidFFIConfigLogging.fromJson(json['logging']);
+}
+
 //////////////////////////////////////////////////////////
 
 // Load the veilid_flutter library once
@@ -603,7 +716,7 @@ class VeilidTableDBFFI extends VeilidTableDB {
 
     final recvPort = ReceivePort("veilid_table_db_delete");
     final sendPort = recvPort.sendPort;
-    _tdb.ffi._tableDbLoad(
+    _tdb.ffi._tableDbDelete(
       sendPort.nativePort,
       _tdb.id,
       col,
@@ -635,6 +748,14 @@ class VeilidFFI implements Veilid {
   final _RoutingContextWithSequencingDart _routingContextWithSequencing;
   final _RoutingContextAppCallDart _routingContextAppCall;
   final _RoutingContextAppMessageDart _routingContextAppMessage;
+  final _RoutingContextCreateDHTRecordDart _RoutingContextCreateDHTRecord;
+  final _RoutingContextOpenDHTRecordDart _RoutingContextOpenDHTRecord;
+  final _RoutingContextCloseDHTRecordDart _RoutingContextCloseDHTRecord;
+  final _RoutingContextDeleteDHTRecordDart _RoutingContextDeleteDHTRecord;
+  final _RoutingContextGetDHTValueDart _RoutingContextGetDHTValue;
+  final _RoutingContextSetDHTValueDart _RoutingContextSetDHTValue;
+  final _RoutingContextWatchDHTValuesDart _RoutingContextWatchDHTValues;
+  final _RoutingContextCancelDHTWatchDart _RoutingContextCancelDHTWatch;
 
   final _NewPrivateRouteDart _newPrivateRoute;
   final _NewCustomPrivateRouteDart _newCustomPrivateRoute;
@@ -658,6 +779,32 @@ class VeilidFFI implements Veilid {
   final _TableDbTransactionStoreDart _tableDbTransactionStore;
   final _TableDbTransactionDeleteDart _tableDbTransactionDelete;
 
+  final _ValidCryptoKindsDart _validCryptoKinds;
+  final _GetCryptoSystemDart _getCryptoSystem;
+  final _BestCryptoSystemDart _bestCryptoSystem;
+  final _VerifySignaturesDart _verifySignatures;
+  final _GenerateSignaturesDart _generateSignatures;
+  final _GenerateKeyPairDart _generateKeyPair;
+
+  final _CryptoCachedDHDart _cryptoCachedDH;
+  final _CryptoComputeDHDart _cryptoComputeDH;
+  final _CryptoRandomNonceDart _cryptoRandomNonce;
+  final _CryptoRandomSharedSecretDart _cryptoRandomSharedSecret;
+  final _CryptoGenerateKeyPairDart _cryptoGenerateKeyPair;
+  final _CryptoGenerateHashDart _cryptoGenerateHash;
+  final _CryptoGenerateHashReaderDart _cryptoGenerateHashReader;
+  final _CryptoValidateKeyPairDart _cryptoValidateKeyPair;
+  final _CryptoValidateHashDart _cryptoValidateHash;
+  final _CryptoValidateHashReaderDart _cryptoValidateHashReader;
+  final _CryptoDistanceDart _cryptoDistance;
+  final _CryptoSignDart _cryptoSign;
+  final _CryptoVerifyDart _cryptoVerify;
+  final _CryptoAaedOverheadDart _cryptoAeadOverhead;
+  final _CryptoDecryptAeadDart _cryptoDecryptAead;
+  final _CryptoEncryptAeadDart _cryptoEncryptAead;
+  final _CryptoCryptNoAuthDart _cryptoCryptNoAuth;
+
+  final _NowDart _now;
   final _DebugDart _debug;
   final _VeilidVersionStringDart _veilidVersionString;
   final _VeilidVersionDart _veilidVersion;
diff --git a/veilid-flutter/lib/veilid_js.dart b/veilid-flutter/lib/veilid_js.dart
index 963a5fca..ae6d6ac0 100644
--- a/veilid-flutter/lib/veilid_js.dart
+++ b/veilid-flutter/lib/veilid_js.dart
@@ -9,6 +9,95 @@ import 'dart:typed_data';
 
 import 'base64url_no_pad.dart';
 
+//////////////////////////////////////////////////////////
+// WASM Platform-specific config
+
+class VeilidWASMConfigLoggingPerformance {
+  bool enabled;
+  VeilidConfigLogLevel level;
+  bool logsInTimings;
+  bool logsInConsole;
+
+  VeilidWASMConfigLoggingPerformance({
+    required this.enabled,
+    required this.level,
+    required this.logsInTimings,
+    required this.logsInConsole,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'enabled': enabled,
+      'level': level.json,
+      'logs_in_timings': logsInTimings,
+      'logs_in_console': logsInConsole,
+    };
+  }
+
+  VeilidWASMConfigLoggingPerformance.fromJson(dynamic json)
+      : enabled = json['enabled'],
+        level = veilidConfigLogLevelFromJson(json['level']),
+        logsInTimings = json['logs_in_timings'],
+        logsInConsole = json['logs_in_console'];
+}
+
+class VeilidWASMConfigLoggingApi {
+  bool enabled;
+  VeilidConfigLogLevel level;
+
+  VeilidWASMConfigLoggingApi({
+    required this.enabled,
+    required this.level,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'enabled': enabled,
+      'level': level.json,
+    };
+  }
+
+  VeilidWASMConfigLoggingApi.fromJson(dynamic json)
+      : enabled = json['enabled'],
+        level = veilidConfigLogLevelFromJson(json['level']);
+}
+
+class VeilidWASMConfigLogging {
+  VeilidWASMConfigLoggingPerformance performance;
+  VeilidWASMConfigLoggingApi api;
+
+  VeilidWASMConfigLogging({required this.performance, required this.api});
+
+  Map<String, dynamic> get json {
+    return {
+      'performance': performance.json,
+      'api': api.json,
+    };
+  }
+
+  VeilidWASMConfigLogging.fromJson(dynamic json)
+      : performance =
+            VeilidWASMConfigLoggingPerformance.fromJson(json['performance']),
+        api = VeilidWASMConfigLoggingApi.fromJson(json['api']);
+}
+
+class VeilidWASMConfig {
+  VeilidWASMConfigLogging logging;
+
+  VeilidWASMConfig({
+    required this.logging,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'logging': logging.json,
+    };
+  }
+
+  VeilidWASMConfig.fromJson(dynamic json)
+      : logging = VeilidWASMConfigLogging.fromJson(json['logging']);
+}
+
 //////////////////////////////////////////////////////////
 
 Veilid getVeilid() => VeilidJS();
diff --git a/veilid-flutter/lib/veilid_state.dart b/veilid-flutter/lib/veilid_state.dart
new file mode 100644
index 00000000..344f3f47
--- /dev/null
+++ b/veilid-flutter/lib/veilid_state.dart
@@ -0,0 +1,594 @@
+import 'dart:typed_data';
+
+import 'package:change_case/change_case.dart';
+
+import 'veilid_encoding.dart';
+import 'veilid.dart';
+
+//////////////////////////////////////
+/// AttachmentState
+
+enum AttachmentState {
+  detached,
+  attaching,
+  attachedWeak,
+  attachedGood,
+  attachedStrong,
+  fullyAttached,
+  overAttached,
+  detaching,
+}
+
+extension AttachmentStateExt on AttachmentState {
+  String get json {
+    return name.toPascalCase();
+  }
+}
+
+AttachmentState attachmentStateFromJson(String j) {
+  return AttachmentState.values.byName(j.toCamelCase());
+}
+
+//////////////////////////////////////
+/// VeilidLogLevel
+
+enum VeilidLogLevel {
+  error,
+  warn,
+  info,
+  debug,
+  trace,
+}
+
+extension VeilidLogLevelExt on VeilidLogLevel {
+  String get json {
+    return name.toPascalCase();
+  }
+}
+
+VeilidLogLevel veilidLogLevelFromJson(String j) {
+  return VeilidLogLevel.values.byName(j.toCamelCase());
+}
+
+////////////
+
+class LatencyStats {
+  TimestampDuration fastest;
+  TimestampDuration average;
+  TimestampDuration slowest;
+
+  LatencyStats({
+    required this.fastest,
+    required this.average,
+    required this.slowest,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'fastest': fastest.json,
+      'average': average.json,
+      'slowest': slowest.json,
+    };
+  }
+
+  LatencyStats.fromJson(dynamic json)
+      : fastest = TimestampDuration.fromJson(json['fastest']),
+        average = TimestampDuration.fromJson(json['average']),
+        slowest = TimestampDuration.fromJson(json['slowest']);
+}
+
+////////////
+
+class TransferStats {
+  BigInt total;
+  BigInt maximum;
+  BigInt average;
+  BigInt minimum;
+
+  TransferStats({
+    required this.total,
+    required this.maximum,
+    required this.average,
+    required this.minimum,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'total': total.toString(),
+      'maximum': maximum.toString(),
+      'average': average.toString(),
+      'minimum': minimum.toString(),
+    };
+  }
+
+  TransferStats.fromJson(dynamic json)
+      : total = BigInt.parse(json['total']),
+        maximum = BigInt.parse(json['maximum']),
+        average = BigInt.parse(json['average']),
+        minimum = BigInt.parse(json['minimum']);
+}
+
+////////////
+
+class TransferStatsDownUp {
+  TransferStats down;
+  TransferStats up;
+
+  TransferStatsDownUp({
+    required this.down,
+    required this.up,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'down': down.json,
+      'up': up.json,
+    };
+  }
+
+  TransferStatsDownUp.fromJson(dynamic json)
+      : down = TransferStats.fromJson(json['down']),
+        up = TransferStats.fromJson(json['up']);
+}
+
+////////////
+
+class RPCStats {
+  int messagesSent;
+  int messagesRcvd;
+  int questionsInFlight;
+  Timestamp? lastQuestion;
+  Timestamp? lastSeenTs;
+  Timestamp? firstConsecutiveSeenTs;
+  int recentLostAnswers;
+  int failedToSend;
+
+  RPCStats({
+    required this.messagesSent,
+    required this.messagesRcvd,
+    required this.questionsInFlight,
+    required this.lastQuestion,
+    required this.lastSeenTs,
+    required this.firstConsecutiveSeenTs,
+    required this.recentLostAnswers,
+    required this.failedToSend,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'messages_sent': messagesSent,
+      'messages_rcvd': messagesRcvd,
+      'questions_in_flight': questionsInFlight,
+      'last_question': lastQuestion?.json,
+      'last_seen_ts': lastSeenTs?.json,
+      'first_consecutive_seen_ts': firstConsecutiveSeenTs?.json,
+      'recent_lost_answers': recentLostAnswers,
+      'failed_to_send': failedToSend,
+    };
+  }
+
+  RPCStats.fromJson(dynamic json)
+      : messagesSent = json['messages_sent'],
+        messagesRcvd = json['messages_rcvd'],
+        questionsInFlight = json['questions_in_flight'],
+        lastQuestion = json['last_question'] != null
+            ? Timestamp.fromJson(json['last_question'])
+            : null,
+        lastSeenTs = json['last_seen_ts'] != null
+            ? Timestamp.fromJson(json['last_seen_ts'])
+            : null,
+        firstConsecutiveSeenTs = json['first_consecutive_seen_ts'] != null
+            ? Timestamp.fromJson(json['first_consecutive_seen_ts'])
+            : null,
+        recentLostAnswers = json['recent_lost_answers'],
+        failedToSend = json['failed_to_send'];
+}
+
+////////////
+
+class PeerStats {
+  Timestamp timeAdded;
+  RPCStats rpcStats;
+  LatencyStats? latency;
+  TransferStatsDownUp transfer;
+
+  PeerStats({
+    required this.timeAdded,
+    required this.rpcStats,
+    required this.latency,
+    required this.transfer,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'time_added': timeAdded.json,
+      'rpc_stats': rpcStats.json,
+      'latency': latency?.json,
+      'transfer': transfer.json,
+    };
+  }
+
+  PeerStats.fromJson(dynamic json)
+      : timeAdded = Timestamp.fromJson(json['time_added']),
+        rpcStats = RPCStats.fromJson(json['rpc_stats']),
+        latency = json['latency'] != null
+            ? LatencyStats.fromJson(json['latency'])
+            : null,
+        transfer = TransferStatsDownUp.fromJson(json['transfer']);
+}
+
+////////////
+
+class PeerTableData {
+  List<TypedKey> nodeIds;
+  PeerAddress peerAddress;
+  PeerStats peerStats;
+
+  PeerTableData({
+    required this.nodeIds,
+    required this.peerAddress,
+    required this.peerStats,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'node_ids': nodeIds.map((p) => p.json).toList(),
+      'peer_address': peerAddress.json,
+      'peer_stats': peerStats.json,
+    };
+  }
+
+  PeerTableData.fromJson(dynamic json)
+      : nodeIds = List<TypedKey>.from(
+            json['node_ids'].map((j) => TypedKey.fromJson(j))),
+        peerAddress = PeerAddress.fromJson(json['peer_address']),
+        peerStats = PeerStats.fromJson(json['peer_stats']);
+}
+
+//////////////////////////////////////
+/// AttachmentState
+
+enum ProtocolType {
+  udp,
+  tcp,
+  ws,
+  wss,
+}
+
+extension ProtocolTypeExt on ProtocolType {
+  String get json {
+    return name.toUpperCase();
+  }
+}
+
+ProtocolType protocolTypeFromJson(String j) {
+  return ProtocolType.values.byName(j.toLowerCase());
+}
+
+////////////
+
+class PeerAddress {
+  ProtocolType protocolType;
+  String socketAddress;
+
+  PeerAddress({
+    required this.protocolType,
+    required this.socketAddress,
+  });
+
+  Map<String, dynamic> get json {
+    return {
+      'protocol_type': protocolType.json,
+      'socket_address': socketAddress,
+    };
+  }
+
+  PeerAddress.fromJson(dynamic json)
+      : protocolType = protocolTypeFromJson(json['protocol_type']),
+        socketAddress = json['socket_address'];
+}
+
+//////////////////////////////////////
+/// VeilidUpdate
+
+abstract class VeilidUpdate {
+  factory VeilidUpdate.fromJson(dynamic json) {
+    switch (json["kind"]) {
+      case "Log":
+        {
+          return VeilidLog(
+              logLevel: veilidLogLevelFromJson(json["log_level"]),
+              message: json["message"],
+              backtrace: json["backtrace"]);
+        }
+      case "AppMessage":
+        {
+          return VeilidAppMessage(
+              sender: json["sender"], message: json["message"]);
+        }
+      case "AppCall":
+        {
+          return VeilidAppCall(
+              sender: json["sender"], message: json["message"], id: json["id"]);
+        }
+      case "Attachment":
+        {
+          return VeilidUpdateAttachment(
+              state: VeilidStateAttachment.fromJson(json));
+        }
+      case "Network":
+        {
+          return VeilidUpdateNetwork(state: VeilidStateNetwork.fromJson(json));
+        }
+      case "Config":
+        {
+          return VeilidUpdateConfig(state: VeilidStateConfig.fromJson(json));
+        }
+      case "RouteChange":
+        {
+          return VeilidUpdateRouteChange(
+              deadRoutes: List<String>.from(json['dead_routes'].map((j) => j)),
+              deadRemoteRoutes:
+                  List<String>.from(json['dead_remote_routes'].map((j) => j)));
+        }
+      case "ValueChange":
+        {
+          return VeilidUpdateValueChange(
+              key: TypedKey.fromJson(json['key']),
+              subkeys: List<ValueSubkeyRange>.from(
+                  json['subkeys'].map((j) => ValueSubkeyRange.fromJson(j))),
+              count: json['count'],
+              valueData: ValueData.fromJson(json['value_data']));
+        }
+      default:
+        {
+          throw VeilidAPIExceptionInternal(
+              "Invalid VeilidAPIException type: ${json['kind']}");
+        }
+    }
+  }
+  Map<String, dynamic> get json;
+}
+
+class VeilidLog implements VeilidUpdate {
+  final VeilidLogLevel logLevel;
+  final String message;
+  final String? backtrace;
+  //
+  VeilidLog({
+    required this.logLevel,
+    required this.message,
+    required this.backtrace,
+  });
+
+  @override
+  Map<String, dynamic> get json {
+    return {
+      'kind': "Log",
+      'log_level': logLevel.json,
+      'message': message,
+      'backtrace': backtrace
+    };
+  }
+}
+
+class VeilidAppMessage implements VeilidUpdate {
+  final String? sender;
+  final Uint8List message;
+
+  //
+  VeilidAppMessage({
+    required this.sender,
+    required this.message,
+  });
+
+  @override
+  Map<String, dynamic> get json {
+    return {
+      'kind': "AppMessage",
+      'sender': sender,
+      'message': base64UrlNoPadEncode(message)
+    };
+  }
+}
+
+class VeilidAppCall implements VeilidUpdate {
+  final String? sender;
+  final Uint8List message;
+  final String id;
+
+  //
+  VeilidAppCall({
+    required this.sender,
+    required this.message,
+    required this.id,
+  });
+
+  @override
+  Map<String, dynamic> get json {
+    return {
+      'kind': "AppMessage",
+      'sender': sender,
+      'message': base64UrlNoPadEncode(message),
+      'id': id,
+    };
+  }
+}
+
+class VeilidUpdateAttachment implements VeilidUpdate {
+  final VeilidStateAttachment state;
+  //
+  VeilidUpdateAttachment({required this.state});
+
+  @override
+  Map<String, dynamic> get json {
+    var jsonRep = state.json;
+    jsonRep['kind'] = "Attachment";
+    return jsonRep;
+  }
+}
+
+class VeilidUpdateNetwork implements VeilidUpdate {
+  final VeilidStateNetwork state;
+  //
+  VeilidUpdateNetwork({required this.state});
+
+  @override
+  Map<String, dynamic> get json {
+    var jsonRep = state.json;
+    jsonRep['kind'] = "Network";
+    return jsonRep;
+  }
+}
+
+class VeilidUpdateConfig implements VeilidUpdate {
+  final VeilidStateConfig state;
+  //
+  VeilidUpdateConfig({required this.state});
+
+  @override
+  Map<String, dynamic> get json {
+    var jsonRep = state.json;
+    jsonRep['kind'] = "Config";
+    return jsonRep;
+  }
+}
+
+class VeilidUpdateRouteChange implements VeilidUpdate {
+  final List<String> deadRoutes;
+  final List<String> deadRemoteRoutes;
+  //
+  VeilidUpdateRouteChange({
+    required this.deadRoutes,
+    required this.deadRemoteRoutes,
+  });
+
+  @override
+  Map<String, dynamic> get json {
+    return {
+      'dead_routes': deadRoutes.map((p) => p).toList(),
+      'dead_remote_routes': deadRemoteRoutes.map((p) => p).toList()
+    };
+  }
+}
+
+class VeilidUpdateValueChange implements VeilidUpdate {
+  final TypedKey key;
+  final List<ValueSubkeyRange> subkeys;
+  final int count;
+  final ValueData valueData;
+
+  //
+  VeilidUpdateValueChange({
+    required this.key,
+    required this.subkeys,
+    required this.count,
+    required this.valueData,
+  });
+
+  @override
+  Map<String, dynamic> get json {
+    return {
+      'key': key.json,
+      'subkeys': subkeys.map((p) => p.json).toList(),
+      'count': count,
+      'value_data': valueData.json,
+    };
+  }
+}
+
+//////////////////////////////////////
+/// VeilidStateAttachment
+
+class VeilidStateAttachment {
+  final AttachmentState state;
+  final bool publicInternetReady;
+  final bool localNetworkReady;
+
+  VeilidStateAttachment(
+      this.state, this.publicInternetReady, this.localNetworkReady);
+
+  VeilidStateAttachment.fromJson(dynamic json)
+      : state = attachmentStateFromJson(json['state']),
+        publicInternetReady = json['public_internet_ready'],
+        localNetworkReady = json['local_network_ready'];
+
+  Map<String, dynamic> get json {
+    return {
+      'state': state.json,
+      'public_internet_ready': publicInternetReady,
+      'local_network_ready': localNetworkReady,
+    };
+  }
+}
+
+//////////////////////////////////////
+/// VeilidStateNetwork
+
+class VeilidStateNetwork {
+  final bool started;
+  final BigInt bpsDown;
+  final BigInt bpsUp;
+  final List<PeerTableData> peers;
+
+  VeilidStateNetwork(
+      {required this.started,
+      required this.bpsDown,
+      required this.bpsUp,
+      required this.peers});
+
+  VeilidStateNetwork.fromJson(dynamic json)
+      : started = json['started'],
+        bpsDown = BigInt.parse(json['bps_down']),
+        bpsUp = BigInt.parse(json['bps_up']),
+        peers = List<PeerTableData>.from(
+            json['peers'].map((j) => PeerTableData.fromJson(j)));
+
+  Map<String, dynamic> get json {
+    return {
+      'started': started,
+      'bps_down': bpsDown.toString(),
+      'bps_up': bpsUp.toString(),
+      'peers': peers.map((p) => p.json).toList(),
+    };
+  }
+}
+
+//////////////////////////////////////
+/// VeilidStateConfig
+
+class VeilidStateConfig {
+  final Map<String, dynamic> config;
+
+  VeilidStateConfig({
+    required this.config,
+  });
+
+  VeilidStateConfig.fromJson(dynamic json) : config = json['config'];
+
+  Map<String, dynamic> get json {
+    return {'config': config};
+  }
+}
+
+//////////////////////////////////////
+/// VeilidState
+
+class VeilidState {
+  final VeilidStateAttachment attachment;
+  final VeilidStateNetwork network;
+  final VeilidStateConfig config;
+
+  VeilidState.fromJson(dynamic json)
+      : attachment = VeilidStateAttachment.fromJson(json['attachment']),
+        network = VeilidStateNetwork.fromJson(json['network']),
+        config = VeilidStateConfig.fromJson(json['config']);
+
+  Map<String, dynamic> get json {
+    return {
+      'attachment': attachment.json,
+      'network': network.json,
+      'config': config.json
+    };
+  }
+}
diff --git a/veilid-flutter/lib/veilid_table_db.dart b/veilid-flutter/lib/veilid_table_db.dart
new file mode 100644
index 00000000..4790988d
--- /dev/null
+++ b/veilid-flutter/lib/veilid_table_db.dart
@@ -0,0 +1,59 @@
+import 'dart:async';
+import 'dart:typed_data';
+import 'dart:convert';
+
+/////////////////////////////////////
+/// VeilidTableDB
+abstract class VeilidTableDBTransaction {
+  Future<void> commit();
+  Future<void> rollback();
+  Future<void> store(int col, Uint8List key, Uint8List value);
+  Future<bool> delete(int col, Uint8List key);
+
+  Future<void> storeJson(int col, Uint8List key, Object? object,
+      {Object? Function(Object? nonEncodable)? toEncodable}) async {
+    return store(col, key,
+        utf8.encoder.convert(jsonEncode(object, toEncodable: toEncodable)));
+  }
+
+  Future<void> storeStringJson(int col, String key, Object? object,
+      {Object? Function(Object? nonEncodable)? toEncodable}) {
+    return storeJson(col, utf8.encoder.convert(key), object,
+        toEncodable: toEncodable);
+  }
+}
+
+abstract class VeilidTableDB {
+  int getColumnCount();
+  List<Uint8List> getKeys(int col);
+  VeilidTableDBTransaction transact();
+  Future<void> store(int col, Uint8List key, Uint8List value);
+  Future<Uint8List?> load(int col, Uint8List key);
+  Future<bool> delete(int col, Uint8List key);
+
+  Future<void> storeJson(int col, Uint8List key, Object? object,
+      {Object? Function(Object? nonEncodable)? toEncodable}) {
+    return store(col, key,
+        utf8.encoder.convert(jsonEncode(object, toEncodable: toEncodable)));
+  }
+
+  Future<void> storeStringJson(int col, String key, Object? object,
+      {Object? Function(Object? nonEncodable)? toEncodable}) {
+    return storeJson(col, utf8.encoder.convert(key), object,
+        toEncodable: toEncodable);
+  }
+
+  Future<Object?> loadJson(int col, Uint8List key,
+      {Object? Function(Object? key, Object? value)? reviver}) async {
+    var s = await load(col, key);
+    if (s == null) {
+      return null;
+    }
+    return jsonDecode(utf8.decode(s, allowMalformed: false), reviver: reviver);
+  }
+
+  Future<Object?> loadStringJson(int col, String key,
+      {Object? Function(Object? key, Object? value)? reviver}) {
+    return loadJson(col, utf8.encoder.convert(key), reviver: reviver);
+  }
+}
diff --git a/veilid-flutter/pubspec.yaml b/veilid-flutter/pubspec.yaml
index ad515fc1..5e5f7b02 100644
--- a/veilid-flutter/pubspec.yaml
+++ b/veilid-flutter/pubspec.yaml
@@ -18,6 +18,7 @@ dependencies:
   path_provider: ^2.0.9
   path: ^1.8.0
   system_info2: ^3.0.2
+  charcode: ^1.3.1
 
 dev_dependencies:
   flutter_test:
diff --git a/veilid-flutter/rust/src/dart_ffi.rs b/veilid-flutter/rust/src/dart_ffi.rs
index a3c96ff1..841c030f 100644
--- a/veilid-flutter/rust/src/dart_ffi.rs
+++ b/veilid-flutter/rust/src/dart_ffi.rs
@@ -481,7 +481,7 @@ pub extern "C" fn routing_context_app_message(port: i64, id: u32, target: FfiStr
         let routing_context = {
             let rc = ROUTING_CONTEXTS.lock();
             let Some(routing_context) = rc.get(&id) else {
-                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_app_call", "id", id));
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_app_message", "id", id));
             };
             routing_context.clone()
         };
@@ -492,6 +492,65 @@ pub extern "C" fn routing_context_app_message(port: i64, id: u32, target: FfiStr
     });
 }
 
+#[no_mangle]
+pub extern "C" fn routing_context_create_dht_record(port: i64, id: u32, kind: u32, schema: FfiStr) {
+    let crypto_kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind.to_be_bytes());
+    let schema: veilid_core::DHTSchema = veilid_core::deserialize_opt_json(schema.into_opt_string()).unwrap();
+
+    DartIsolateWrapper::new(port).spawn_result(async move {        
+        let routing_context = {
+            let rc = ROUTING_CONTEXTS.lock();
+            let Some(routing_context) = rc.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_create_dht_record", "id", id));
+            };
+            routing_context.clone()
+        };
+        
+        let dht_record_descriptor = routing_context.create_dht_record(crypto_kind, schema).await?;
+        let out = veilid_core::serialize_json(dht_record_descriptor);
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn routing_context_open_dht_record(port: i64, id: u32, key: FfiStr, writer: FfiStr) {
+    let key: veilid_core::TypedKey = veilid_core::deserialize_opt_json(key.into_opt_string()).unwrap();
+    let writer: Option<KeyPair> = writer.into_opt_string().map(|s| veilid_core::deserialize_json(&s).unwrap());
+    DartIsolateWrapper::new(port).spawn_result(async move {        
+        let routing_context = {
+            let rc = ROUTING_CONTEXTS.lock();
+            let Some(routing_context) = rc.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_open_dht_record", "id", id));
+            };
+            routing_context.clone()
+        };
+        let writer = match writer {
+            Some(w) => w.to_key_pair(key.kind)?,
+            None => None
+        };
+        let dht_record_descriptor = routing_context.open_dht_record(key, writer).await?;
+        let out = veilid_core::serialize_json(dht_record_descriptor);
+        APIResult::Ok(out)
+    });
+}
+
+
+
+// final _RoutingContextCloseDHTRecordDart _RoutingContextCloseDHTRecord;
+// final _RoutingContextDeleteDHTRecordDart _RoutingContextDeleteDHTRecord;
+// final _RoutingContextGetDHTValueDart _RoutingContextGetDHTValue;
+// final _RoutingContextSetDHTValueDart _RoutingContextSetDHTValue;
+// final _RoutingContextWatchDHTValuesDart _RoutingContextWatchDHTValues;
+// final _RoutingContextCancelDHTWatchDart _RoutingContextCancelDHTWatch;
+
+
+
+
+
+
+
+
+
 #[no_mangle]
 pub extern "C" fn new_private_route(port: i64) {
     DartIsolateWrapper::new(port).spawn_result_json(async move {
@@ -834,6 +893,36 @@ pub extern "C" fn table_db_delete(port: i64, id: u32, col: u32, key: FfiStr) {
     });
 }
 
+
+
+final _ValidCryptoKindsDart _validCryptoKinds;
+final _GetCryptoSystemDart _getCryptoSystem;
+final _BestCryptoSystemDart _bestCryptoSystem;
+final _VerifySignaturesDart _verifySignatures;
+final _GenerateSignaturesDart _generateSignatures;
+final _GenerateKeyPairDart _generateKeyPair;
+
+final _CryptoCachedDHDart _cryptoCachedDH;
+final _CryptoComputeDHDart _cryptoComputeDH;
+final _CryptoRandomNonceDart _cryptoRandomNonce;
+final _CryptoRandomSharedSecretDart _cryptoRandomSharedSecret;
+final _CryptoGenerateKeyPairDart _cryptoGenerateKeyPair;
+final _CryptoGenerateHashDart _cryptoGenerateHash;
+final _CryptoGenerateHashReaderDart _cryptoGenerateHashReader;
+final _CryptoValidateKeyPairDart _cryptoValidateKeyPair;
+final _CryptoValidateHashDart _cryptoValidateHash;
+final _CryptoValidateHashReaderDart _cryptoValidateHashReader;
+final _CryptoDistanceDart _cryptoDistance;
+final _CryptoSignDart _cryptoSign;
+final _CryptoVerifyDart _cryptoVerify;
+final _CryptoAaedOverheadDart _cryptoAeadOverhead;
+final _CryptoDecryptAeadDart _cryptoDecryptAead;
+final _CryptoEncryptAeadDart _cryptoEncryptAead;
+final _CryptoCryptNoAuthDart _cryptoCryptNoAuth;
+
+final _NowDart _now;
+
+
 #[no_mangle]
 pub extern "C" fn debug(port: i64, command: FfiStr) {
     let command = command.into_opt_string().unwrap_or_default();

From 5f9fec0b18eb477eff3f884ab45917ab1d36cd44 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Sun, 14 May 2023 20:50:28 -0400
Subject: [PATCH 32/74] ffi work

---
 veilid-core/src/crypto/byte_array_types.rs    |  52 +-
 veilid-core/src/crypto/crypto_system.rs       |  12 +-
 veilid-core/src/crypto/none/mod.rs            |   4 +-
 veilid-core/src/crypto/vld0/mod.rs            |   4 +-
 veilid-core/src/rpc_processor/rpc_app_call.rs |   2 +-
 .../src/rpc_processor/rpc_app_message.rs      |   2 +-
 veilid-core/src/storage_manager/mod.rs        |   4 +-
 veilid-core/src/veilid_api/routing_context.rs |   4 +-
 .../src/veilid_api/types/app_message_call.rs  |   2 +-
 veilid-core/src/veilid_api/types/fourcc.rs    |  13 +
 veilid-flutter/lib/routing_context.dart       |  10 +-
 veilid-flutter/lib/veilid.dart                |  10 +-
 veilid-flutter/lib/veilid_config.dart         |  11 +-
 veilid-flutter/lib/veilid_crypto.dart         |  65 ++-
 veilid-flutter/lib/veilid_ffi.dart            | 207 ++++++-
 veilid-flutter/lib/veilid_js.dart             |   2 +-
 veilid-flutter/lib/veilid_state.dart          |   2 +-
 veilid-flutter/rust/src/dart_ffi.rs           | 535 ++++++++++++++++--
 18 files changed, 796 insertions(+), 145 deletions(-)

diff --git a/veilid-core/src/crypto/byte_array_types.rs b/veilid-core/src/crypto/byte_array_types.rs
index 7922d32b..d17acb04 100644
--- a/veilid-core/src/crypto/byte_array_types.rs
+++ b/veilid-core/src/crypto/byte_array_types.rs
@@ -9,18 +9,24 @@ use data_encoding::BASE64URL_NOPAD;
 
 //////////////////////////////////////////////////////////////////////
 
-/// Length of a public key in bytes
+/// Length of a crypto key in bytes
 #[allow(dead_code)]
-pub const PUBLIC_KEY_LENGTH: usize = 32;
-/// Length of a public key in bytes after encoding to base64url
+pub const CRYPTO_KEY_LENGTH: usize = 32;
+/// Length of a crypto key in bytes after encoding to base64url
 #[allow(dead_code)]
-pub const PUBLIC_KEY_LENGTH_ENCODED: usize = 43;
+pub const CRYPTO_KEY_LENGTH_ENCODED: usize = 43;
+/// Length of a crypto key in bytes
+#[allow(dead_code)]
+pub const PUBLIC_KEY_LENGTH: usize = CRYPTO_KEY_LENGTH;
+/// Length of a crypto key in bytes after encoding to base64url
+#[allow(dead_code)]
+pub const PUBLIC_KEY_LENGTH_ENCODED: usize = CRYPTO_KEY_LENGTH_ENCODED;
 /// Length of a secret key in bytes
 #[allow(dead_code)]
-pub const SECRET_KEY_LENGTH: usize = 32;
+pub const SECRET_KEY_LENGTH: usize = CRYPTO_KEY_LENGTH;
 /// Length of a secret key in bytes after encoding to base64url
 #[allow(dead_code)]
-pub const SECRET_KEY_LENGTH_ENCODED: usize = 43;
+pub const SECRET_KEY_LENGTH_ENCODED: usize = CRYPTO_KEY_LENGTH_ENCODED;
 /// Length of a signature in bytes
 #[allow(dead_code)]
 pub const SIGNATURE_LENGTH: usize = 64;
@@ -35,22 +41,22 @@ pub const NONCE_LENGTH: usize = 24;
 pub const NONCE_LENGTH_ENCODED: usize = 32;
 /// Length of a shared secret in bytes
 #[allow(dead_code)]
-pub const SHARED_SECRET_LENGTH: usize = 32;
+pub const SHARED_SECRET_LENGTH: usize = CRYPTO_KEY_LENGTH;
 /// Length of a shared secret in bytes after encoding to base64url
 #[allow(dead_code)]
-pub const SHARED_SECRET_LENGTH_ENCODED: usize = 43;
+pub const SHARED_SECRET_LENGTH_ENCODED: usize = CRYPTO_KEY_LENGTH_ENCODED;
 /// Length of a route id in bytes
 #[allow(dead_code)]
-pub const ROUTE_ID_LENGTH: usize = 32;
+pub const ROUTE_ID_LENGTH: usize = CRYPTO_KEY_LENGTH;
 /// Length of a route id in bytes afer encoding to base64url
 #[allow(dead_code)]
-pub const ROUTE_ID_LENGTH_ENCODED: usize = 43;
+pub const ROUTE_ID_LENGTH_ENCODED: usize = CRYPTO_KEY_LENGTH_ENCODED;
 /// Length of a hash digest in bytes
 #[allow(dead_code)]
-pub const HASH_DIGEST_LENGTH: usize = 32;
+pub const HASH_DIGEST_LENGTH: usize = CRYPTO_KEY_LENGTH;
 /// Length of a hash digest in bytes after encoding to base64url
 #[allow(dead_code)]
-pub const HASH_DIGEST_LENGTH_ENCODED: usize = 43;
+pub const HASH_DIGEST_LENGTH_ENCODED: usize = CRYPTO_KEY_LENGTH_ENCODED;
 
 //////////////////////////////////////////////////////////////////////
 
@@ -255,18 +261,14 @@ macro_rules! byte_array_type {
 
 /////////////////////////////////////////
 
-byte_array_type!(PublicKey, PUBLIC_KEY_LENGTH, PUBLIC_KEY_LENGTH_ENCODED);
-byte_array_type!(SecretKey, SECRET_KEY_LENGTH, SECRET_KEY_LENGTH_ENCODED);
+byte_array_type!(CryptoKey, CRYPTO_KEY_LENGTH, CRYPTO_KEY_LENGTH_ENCODED);
+
+pub type PublicKey = CryptoKey;
+pub type SecretKey = CryptoKey;
+pub type HashDigest = CryptoKey;
+pub type SharedSecret = CryptoKey;
+pub type RouteId = CryptoKey;
+pub type CryptoKeyDistance = CryptoKey;
+
 byte_array_type!(Signature, SIGNATURE_LENGTH, SIGNATURE_LENGTH_ENCODED);
-byte_array_type!(
-    PublicKeyDistance,
-    PUBLIC_KEY_LENGTH,
-    PUBLIC_KEY_LENGTH_ENCODED
-);
 byte_array_type!(Nonce, NONCE_LENGTH, NONCE_LENGTH_ENCODED);
-byte_array_type!(
-    SharedSecret,
-    SHARED_SECRET_LENGTH,
-    SHARED_SECRET_LENGTH_ENCODED
-);
-byte_array_type!(RouteId, ROUTE_ID_LENGTH, ROUTE_ID_LENGTH_ENCODED);
diff --git a/veilid-core/src/crypto/crypto_system.rs b/veilid-core/src/crypto/crypto_system.rs
index 5de8fb57..84ac60a6 100644
--- a/veilid-core/src/crypto/crypto_system.rs
+++ b/veilid-core/src/crypto/crypto_system.rs
@@ -21,23 +21,23 @@ pub trait CryptoSystem {
         secret: &SecretKey,
     ) -> Result<SharedSecret, VeilidAPIError>;
     fn generate_keypair(&self) -> KeyPair;
-    fn generate_hash(&self, data: &[u8]) -> PublicKey;
+    fn generate_hash(&self, data: &[u8]) -> HashDigest;
     fn generate_hash_reader(
         &self,
         reader: &mut dyn std::io::Read,
-    ) -> Result<PublicKey, VeilidAPIError>;
+    ) -> Result<HashDigest, VeilidAPIError>;
 
     // Validation
-    fn validate_keypair(&self, dht_key: &PublicKey, dht_key_secret: &SecretKey) -> bool;
-    fn validate_hash(&self, data: &[u8], dht_key: &PublicKey) -> bool;
+    fn validate_keypair(&self, key: &PublicKey, secret: &SecretKey) -> bool;
+    fn validate_hash(&self, data: &[u8], hash: &HashDigest) -> bool;
     fn validate_hash_reader(
         &self,
         reader: &mut dyn std::io::Read,
-        key: &PublicKey,
+        hash: &HashDigest,
     ) -> Result<bool, VeilidAPIError>;
 
     // Distance Metric
-    fn distance(&self, key1: &PublicKey, key2: &PublicKey) -> PublicKeyDistance;
+    fn distance(&self, key1: &CryptoKey, key2: &CryptoKey) -> CryptoKeyDistance;
 
     // Authentication
     fn sign(
diff --git a/veilid-core/src/crypto/none/mod.rs b/veilid-core/src/crypto/none/mod.rs
index e4109b77..f59944ea 100644
--- a/veilid-core/src/crypto/none/mod.rs
+++ b/veilid-core/src/crypto/none/mod.rs
@@ -139,14 +139,14 @@ impl CryptoSystem for CryptoSystemNONE {
         Ok(bytes == dht_key.bytes)
     }
     // Distance Metric
-    fn distance(&self, key1: &PublicKey, key2: &PublicKey) -> PublicKeyDistance {
+    fn distance(&self, key1: &PublicKey, key2: &PublicKey) -> CryptoKeyDistance {
         let mut bytes = [0u8; PUBLIC_KEY_LENGTH];
 
         for (n, byte) in bytes.iter_mut().enumerate() {
             *byte = key1.bytes[n] ^ key2.bytes[n];
         }
 
-        PublicKeyDistance::new(bytes)
+        CryptoKeyDistance::new(bytes)
     }
 
     // Authentication
diff --git a/veilid-core/src/crypto/vld0/mod.rs b/veilid-core/src/crypto/vld0/mod.rs
index c8539381..cebe9a2b 100644
--- a/veilid-core/src/crypto/vld0/mod.rs
+++ b/veilid-core/src/crypto/vld0/mod.rs
@@ -134,14 +134,14 @@ impl CryptoSystem for CryptoSystemVLD0 {
         Ok(bytes == dht_key.bytes)
     }
     // Distance Metric
-    fn distance(&self, key1: &PublicKey, key2: &PublicKey) -> PublicKeyDistance {
+    fn distance(&self, key1: &PublicKey, key2: &PublicKey) -> CryptoKeyDistance {
         let mut bytes = [0u8; PUBLIC_KEY_LENGTH];
 
         for (n, byte) in bytes.iter_mut().enumerate() {
             *byte = key1.bytes[n] ^ key2.bytes[n];
         }
 
-        PublicKeyDistance::new(bytes)
+        CryptoKeyDistance::new(bytes)
     }
 
     // Authentication
diff --git a/veilid-core/src/rpc_processor/rpc_app_call.rs b/veilid-core/src/rpc_processor/rpc_app_call.rs
index 2ec9a24b..80919d4c 100644
--- a/veilid-core/src/rpc_processor/rpc_app_call.rs
+++ b/veilid-core/src/rpc_processor/rpc_app_call.rs
@@ -61,7 +61,7 @@ impl RPCProcessor {
         let sender = msg
             .opt_sender_nr
             .as_ref()
-            .map(|nr| nr.node_ids().get(crypto_kind).unwrap().value);
+            .map(|nr| nr.node_ids().get(crypto_kind).unwrap());
 
         // Register a waiter for this app call
         let handle = self
diff --git a/veilid-core/src/rpc_processor/rpc_app_message.rs b/veilid-core/src/rpc_processor/rpc_app_message.rs
index e8454f79..726515a4 100644
--- a/veilid-core/src/rpc_processor/rpc_app_message.rs
+++ b/veilid-core/src/rpc_processor/rpc_app_message.rs
@@ -38,7 +38,7 @@ impl RPCProcessor {
         let sender = msg
             .opt_sender_nr
             .as_ref()
-            .map(|nr| nr.node_ids().get(crypto_kind).unwrap().value);
+            .map(|nr| nr.node_ids().get(crypto_kind).unwrap());
 
         // Pass the message up through the update callback
         let message = app_message.destructure();
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index b37142b3..191fce92 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -392,7 +392,7 @@ impl StorageManager {
     pub async fn watch_values(
         &self,
         key: TypedKey,
-        subkeys: &[ValueSubkeyRange],
+        subkeys: ValueSubkeyRangeSet,
         expiration: Timestamp,
         count: u32,
     ) -> Result<Timestamp, VeilidAPIError> {
@@ -403,7 +403,7 @@ impl StorageManager {
     pub async fn cancel_watch_values(
         &self,
         key: TypedKey,
-        subkeys: &[ValueSubkeyRange],
+        subkeys: ValueSubkeyRangeSet,
     ) -> Result<bool, VeilidAPIError> {
         let inner = self.lock().await?;
         unimplemented!();
diff --git a/veilid-core/src/veilid_api/routing_context.rs b/veilid-core/src/veilid_api/routing_context.rs
index fd06b286..d7ba5e2c 100644
--- a/veilid-core/src/veilid_api/routing_context.rs
+++ b/veilid-core/src/veilid_api/routing_context.rs
@@ -277,7 +277,7 @@ impl RoutingContext {
     pub async fn watch_dht_values(
         &self,
         key: TypedKey,
-        subkeys: &[ValueSubkeyRange],
+        subkeys: ValueSubkeyRangeSet,
         expiration: Timestamp,
         count: u32,
     ) -> Result<Timestamp, VeilidAPIError> {
@@ -292,7 +292,7 @@ impl RoutingContext {
     pub async fn cancel_dht_watch(
         &self,
         key: TypedKey,
-        subkeys: &[ValueSubkeyRange],
+        subkeys: ValueSubkeyRangeSet,
     ) -> Result<bool, VeilidAPIError> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager.cancel_watch_values(key, subkeys).await
diff --git a/veilid-core/src/veilid_api/types/app_message_call.rs b/veilid-core/src/veilid_api/types/app_message_call.rs
index eb3b99e0..6f0805fe 100644
--- a/veilid-core/src/veilid_api/types/app_message_call.rs
+++ b/veilid-core/src/veilid_api/types/app_message_call.rs
@@ -8,7 +8,7 @@ use super::*;
 pub struct VeilidAppMessage {
     /// Some(sender) if the message was sent directly, None if received via a private/safety route
     #[serde(with = "opt_json_as_string")]
-    sender: Option<TypedKey>, xxx continue propagating this publickey->typedkey and get all the FFI done
+    sender: Option<TypedKey>,
     /// The content of the message to deliver to the application
     #[serde(with = "json_as_base64")]
     message: Vec<u8>,
diff --git a/veilid-core/src/veilid_api/types/fourcc.rs b/veilid-core/src/veilid_api/types/fourcc.rs
index c634b796..edce2b03 100644
--- a/veilid-core/src/veilid_api/types/fourcc.rs
+++ b/veilid-core/src/veilid_api/types/fourcc.rs
@@ -24,6 +24,19 @@ impl From<[u8; 4]> for FourCC {
         Self(b)
     }
 }
+
+impl From<u32> for FourCC {
+    fn from(u: u32) -> Self {
+        Self(u.to_be_bytes())
+    }
+}
+
+impl From<FourCC> for u32 {
+    fn from(u: FourCC) -> Self {
+        u32::from_be_bytes(u.0)
+    }
+}
+
 impl TryFrom<&[u8]> for FourCC {
     type Error = VeilidAPIError;
     fn try_from(b: &[u8]) -> Result<Self, Self::Error> {
diff --git a/veilid-flutter/lib/routing_context.dart b/veilid-flutter/lib/routing_context.dart
index 83414671..7fc15526 100644
--- a/veilid-flutter/lib/routing_context.dart
+++ b/veilid-flutter/lib/routing_context.dart
@@ -4,7 +4,7 @@ import 'dart:convert';
 
 import 'package:change_case/change_case.dart';
 
-import 'base64url_no_pad.dart';
+import 'veilid_encoding.dart';
 import 'veilid.dart';
 
 //////////////////////////////////////
@@ -58,7 +58,7 @@ class DHTSchemaDFLT implements DHTSchema {
 }
 
 class DHTSchemaMember {
-  Key mKey;
+  PublicKey mKey;
   int mCnt;
 
   DHTSchemaMember({
@@ -111,8 +111,8 @@ class DHTSchemaSMPL implements DHTSchema {
 
 class DHTRecordDescriptor {
   TypedKey key;
-  Key owner;
-  Key? ownerSecret;
+  PublicKey owner;
+  PublicKey? ownerSecret;
   DHTSchema schema;
 
   DHTRecordDescriptor({
@@ -179,7 +179,7 @@ class ValueSubkeyRange {
 class ValueData {
   final int seq;
   final Uint8List data;
-  final Key writer;
+  final PublicKey writer;
 
   ValueData({
     required this.seq,
diff --git a/veilid-flutter/lib/veilid.dart b/veilid-flutter/lib/veilid.dart
index 181153a6..e716b22b 100644
--- a/veilid-flutter/lib/veilid.dart
+++ b/veilid-flutter/lib/veilid.dart
@@ -127,13 +127,13 @@ abstract class Veilid {
 
   // Crypto
   List<CryptoKind> validCryptoKinds();
-  VeilidCryptoSystem getCryptoSystem(CryptoKind kind);
-  VeilidCryptoSystem bestCryptoSystem();
-  List<TypedKey> verifySignatures(
+  Future<VeilidCryptoSystem> getCryptoSystem(CryptoKind kind);
+  Future<VeilidCryptoSystem> bestCryptoSystem();
+  Future<List<TypedKey>> verifySignatures(
       List<TypedKey> nodeIds, Uint8List data, List<TypedSignature> signatures);
-  List<TypedSignature> generateSignatures(
+  Future<List<TypedSignature>> generateSignatures(
       Uint8List data, List<TypedKeyPair> keyPairs);
-  TypedKeyPair generateKeyPair(CryptoKind kind);
+  Future<TypedKeyPair> generateKeyPair(CryptoKind kind);
 
   // Routing context
   Future<VeilidRoutingContext> routingContext();
diff --git a/veilid-flutter/lib/veilid_config.dart b/veilid-flutter/lib/veilid_config.dart
index ce9e0380..7f5d0787 100644
--- a/veilid-flutter/lib/veilid_config.dart
+++ b/veilid-flutter/lib/veilid_config.dart
@@ -450,8 +450,8 @@ class VeilidConfigRPC {
 ////////////
 
 class VeilidConfigRoutingTable {
-  List<Key> nodeId;
-  List<Key> nodeIdSecret;
+  List<PublicKey> nodeId;
+  List<PublicKey> nodeIdSecret;
   List<String> bootstrap;
   int limitOverAttached;
   int limitFullyAttached;
@@ -484,9 +484,10 @@ class VeilidConfigRoutingTable {
   }
 
   VeilidConfigRoutingTable.fromJson(dynamic json)
-      : nodeId = List<Key>.from(json['node_id'].map((j) => Key.fromJson(j))),
-        nodeIdSecret =
-            List<Key>.from(json['node_id_secret'].map((j) => Key.fromJson(j))),
+      : nodeId = List<PublicKey>.from(
+            json['node_id'].map((j) => PublicKey.fromJson(j))),
+        nodeIdSecret = List<PublicKey>.from(
+            json['node_id_secret'].map((j) => PublicKey.fromJson(j))),
         bootstrap = List<String>.from(json['bootstrap'].map((j) => j)),
         limitOverAttached = json['limit_over_attached'],
         limitFullyAttached = json['limit_fully_attached'],
diff --git a/veilid-flutter/lib/veilid_crypto.dart b/veilid-flutter/lib/veilid_crypto.dart
index e18adee7..40be7f74 100644
--- a/veilid-flutter/lib/veilid_crypto.dart
+++ b/veilid-flutter/lib/veilid_crypto.dart
@@ -63,8 +63,8 @@ class Typed<V extends EncodedString> {
 }
 
 class KeyPair {
-  late Key key;
-  late Key secret;
+  late PublicKey key;
+  late PublicKey secret;
   KeyPair({required this.key, required this.secret});
 
   @override
@@ -79,8 +79,8 @@ class KeyPair {
         parts[1].codeUnits.length != 43) {
       throw const FormatException("malformed string");
     }
-    key = Key(parts[0]);
-    secret = Key(parts[1]);
+    key = PublicKey(parts[0]);
+    secret = PublicKey(parts[1]);
   }
 
   String get json {
@@ -92,8 +92,8 @@ class KeyPair {
 
 class TypedKeyPair {
   late CryptoKind kind;
-  late Key key;
-  late Key secret;
+  late PublicKey key;
+  late PublicKey secret;
   TypedKeyPair({required this.kind, required this.key, required this.secret});
 
   @override
@@ -110,8 +110,8 @@ class TypedKeyPair {
       throw VeilidAPIExceptionInvalidArgument("malformed string", "s", s);
     }
     kind = cryptoKindFromString(parts[0]);
-    key = Key(parts[1]);
-    secret = Key(parts[2]);
+    key = PublicKey(parts[1]);
+    secret = PublicKey(parts[2]);
   }
 
   String get json {
@@ -121,11 +121,17 @@ class TypedKeyPair {
   TypedKeyPair.fromJson(dynamic json) : this.fromString(json as String);
 }
 
-typedef Key = FixedEncodedString43;
+typedef CryptoKey = FixedEncodedString43;
 typedef Signature = FixedEncodedString86;
 typedef Nonce = FixedEncodedString32;
 
-typedef TypedKey = Typed<Key>;
+typedef PublicKey = CryptoKey;
+typedef SecretKey = CryptoKey;
+typedef HashDigest = CryptoKey;
+typedef SharedSecret = CryptoKey;
+typedef CryptoKeyDistance = CryptoKey;
+
+typedef TypedKey = Typed<CryptoKey>;
 typedef TypedSignature = Typed<Signature>;
 
 //////////////////////////////////////
@@ -133,23 +139,24 @@ typedef TypedSignature = Typed<Signature>;
 
 abstract class VeilidCryptoSystem {
   CryptoKind kind();
-  Key cachedDH(Key key, Key secret);
-  Key computeDH(Key key, Key secret);
-  Nonce randomNonce();
-  Key randomSharedSecret();
-  KeyPair generateKeyPair();
-  Key generateHash(Uint8List data);
-  Key generateHashReader(Stream<List<int>> reader);
-  bool validateKeyPair(Key key, Key secret);
-  bool validateHash(Uint8List data, Key hash);
-  bool validateHashReader(Stream<List<int>> reader, Key hash);
-  Key distance(Key key1, Key key2);
-  Signature sign(Key key, Key secret, Uint8List data);
-  void verify(Key key, Uint8List data, Signature signature);
-  BigInt aeadOverhead();
-  Uint8List decryptAead(
-      Uint8List body, Nonce nonce, Key sharedSecret, Uint8List? associatedData);
-  Uint8List encryptAead(
-      Uint8List body, Nonce nonce, Key sharedSecret, Uint8List? associatedData);
-  Uint8List cryptNoAuth(Uint8List body, Nonce nonce, Key sharedSecret);
+  Future<SharedSecret> cachedDH(PublicKey key, SecretKey secret);
+  Future<SharedSecret> computeDH(PublicKey key, SecretKey secret);
+  Future<Nonce> randomNonce();
+  Future<SharedSecret> randomSharedSecret();
+  Future<KeyPair> generateKeyPair();
+  Future<HashDigest> generateHash(Uint8List data);
+  Future<HashDigest> generateHashReader(Stream<List<int>> reader);
+  Future<bool> validateKeyPair(PublicKey key, SecretKey secret);
+  Future<bool> validateHash(Uint8List data, HashDigest hash);
+  Future<bool> validateHashReader(Stream<List<int>> reader, HashDigest hash);
+  Future<CryptoKeyDistance> distance(CryptoKey key1, CryptoKey key2);
+  Future<Signature> sign(PublicKey key, SecretKey secret, Uint8List data);
+  Future<void> verify(PublicKey key, Uint8List data, Signature signature);
+  Future<int> aeadOverhead();
+  Future<Uint8List> decryptAead(Uint8List body, Nonce nonce,
+      SharedSecret sharedSecret, Uint8List? associatedData);
+  Future<Uint8List> encryptAead(Uint8List body, Nonce nonce,
+      SharedSecret sharedSecret, Uint8List? associatedData);
+  Future<Uint8List> cryptNoAuth(
+      Uint8List body, Nonce nonce, SharedSecret sharedSecret);
 }
diff --git a/veilid-flutter/lib/veilid_ffi.dart b/veilid-flutter/lib/veilid_ffi.dart
index 2bb17d96..a1c352ca 100644
--- a/veilid-flutter/lib/veilid_ffi.dart
+++ b/veilid-flutter/lib/veilid_ffi.dart
@@ -8,7 +8,7 @@ import 'dart:typed_data';
 import 'package:ffi/ffi.dart';
 
 import 'veilid.dart';
-import 'base64url_no_pad.dart';
+import 'veilid_encoding.dart';
 
 //////////////////////////////////////////////////////////
 // FFI Platform-specific config
@@ -189,6 +189,46 @@ typedef _RoutingContextAppMessageC = Void Function(
     Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>);
 typedef _RoutingContextAppMessageDart = void Function(
     int, int, Pointer<Utf8>, Pointer<Utf8>);
+// fn routing_context_create_dht_record(port: i64, id: u32, kind: u32, schema: FfiStr)
+typedef _RoutingContextCreateDHTRecordC = Void Function(
+    Int64, Uint32, Uint32, Pointer<Utf8>);
+typedef _RoutingContextCreateDHTRecordDart = void Function(
+    int, int, int, Pointer<Utf8>);
+// fn routing_context_open_dht_record(port: i64, id: u32, key: FfiStr, writer: FfiStr)
+typedef _RoutingContextOpenDHTRecordC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>);
+typedef _RoutingContextOpenDHTRecordDart = void Function(
+    int, int, Pointer<Utf8>, Pointer<Utf8>);
+// fn routing_context_close_dht_record(port: i64, id: u32, key: FfiStr)
+typedef _RoutingContextCloseDHTRecordC = Void Function(
+    Int64, Uint32, Pointer<Utf8>);
+typedef _RoutingContextCloseDHTRecordDart = void Function(
+    int, int, Pointer<Utf8>);
+// fn routing_context_delete_dht_record(port: i64, id: u32, key: FfiStr)
+typedef _RoutingContextDeleteDHTRecordC = Void Function(
+    Int64, Uint32, Pointer<Utf8>);
+typedef _RoutingContextDeleteDHTRecordDart = void Function(
+    int, int, Pointer<Utf8>);
+// fn routing_context_get_dht_value(port: i64, id: u32, key: FfiStr, subkey: u32, force_refresh: bool)
+typedef _RoutingContextGetDHTValueC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Uint32, Bool);
+typedef _RoutingContextGetDHTValueDart = void Function(
+    int, int, Pointer<Utf8>, int, bool);
+// fn routing_context_set_dht_value(port: i64, id: u32, key: FfiStr, subkey: u32, data: FfiStr)
+typedef _RoutingContextSetDHTValueC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Uint32, Pointer<Utf8>);
+typedef _RoutingContextSetDHTValueDart = void Function(
+    int, int, Pointer<Utf8>, int, Pointer<Utf8>);
+// fn routing_context_watch_dht_values(port: i64, id: u32, key: FfiStr, subkeys: FfiStr, expiration: FfiStr, count: u32)
+typedef _RoutingContextWatchDHTValuesC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>, Uint32);
+typedef _RoutingContextWatchDHTValuesDart = void Function(
+    int, int, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>, int);
+// fn routing_context_cancel_dht_watch(port: i64, id: u32, key: FfiStr, subkeys: FfiStr)
+typedef _RoutingContextCancelDHTWatchC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>);
+typedef _RoutingContextCancelDHTWatchDart = void Function(
+    int, int, Pointer<Utf8>, Pointer<Utf8>);
 
 // fn new_private_route(port: i64)
 typedef _NewPrivateRouteC = Void Function(Int64);
@@ -257,7 +297,94 @@ typedef _TableDbTransactionDeleteC = Void Function(
     Int64, Uint32, Uint32, Pointer<Utf8>);
 typedef _TableDbTransactionDeleteDart = void Function(
     int, int, int, Pointer<Utf8>);
+// fn valid_crypto_kinds() -> *mut c_char
+typedef _ValidCryptoKindsC = Pointer<Utf8> Function();
+typedef _ValidCryptoKindsDart = Pointer<Utf8> Function();
+// fn best_crypto_kind() -> u32
+typedef _BestCryptoKindC = Uint32 Function();
+typedef _BestCryptoKindDart = int Function();
+// fn verify_signatures(port: i64, node_ids: FfiStr, data: FfiStr, signatures: FfiStr)
+typedef _VerifySignaturesC = Void Function(
+    Int64, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>);
+typedef _VerifySignaturesDart = void Function(
+    int, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>);
+// fn generate_signatures(port: i64, data: FfiStr, key_pairs: FfiStr)
+typedef _GenerateSignaturesC = Void Function(
+    Int64, Pointer<Utf8>, Pointer<Utf8>);
+typedef _GenerateSignaturesDart = void Function(
+    int, Pointer<Utf8>, Pointer<Utf8>);
+// fn generate_key_pair(port: i64, kind: u32) {
+typedef _GenerateKeyPairC = Void Function(Int64, Uint32);
+typedef _GenerateKeyPairDart = void Function(int, int);
+// fn crypto_cached_dh(port: i64, kind: u32, key: FfiStr, secret: FfiStr)
+typedef _CryptoCachedDHC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>);
+typedef _CryptoCachedDHDart = void Function(
+    int, int, Pointer<Utf8>, Pointer<Utf8>);
+// fn crypto_compute_dh(port: i64, kind: u32, key: FfiStr, secret: FfiStr)
+typedef _CryptoComputeDHC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>);
+typedef _CryptoComputeDHDart = void Function(
+    int, int, Pointer<Utf8>, Pointer<Utf8>);
+// fn crypto_random_nonce(port: i64, kind: u32)
+typedef _CryptoRandomNonceC = Void Function(Int64, Uint32);
+typedef _CryptoRandomNonceDart = void Function(int, int);
+// fn crypto_random_shared_secret(port: i64, kind: u32)
+typedef _CryptoRandomSharedSecretC = Void Function(Int64, Uint32);
+typedef _CryptoRandomSharedSecretDart = void Function(int, int);
+// fn crypto_generate_key_pair(port: i64, kind: u32)
+typedef _CryptoGenerateKeyPairC = Void Function(Int64, Uint32);
+typedef _CryptoGenerateKeyPairDart = void Function(int, int);
+// fn crypto_generate_hash(port: i64, kind: u32, data: FfiStr)
+typedef _CryptoGenerateHashC = Void Function(Int64, Uint32, Pointer<Utf8>);
+typedef _CryptoGenerateHashDart = void Function(int, int, Pointer<Utf8>);
+// fn crypto_validate_key_pair(port: i64, kind: u32, key: FfiStr, secret: FfiStr)
+typedef _CryptoValidateKeyPairC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>);
+typedef _CryptoValidateKeyPairDart = void Function(
+    int, int, Pointer<Utf8>, Pointer<Utf8>);
+// fn crypto_validate_hash(port: i64, kind: u32, data: FfiStr, hash: FfiStr)
+typedef _CryptoValidateHashC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>);
+typedef _CryptoValidateHashDart = void Function(
+    int, int, Pointer<Utf8>, Pointer<Utf8>);
+// fn crypto_distance(port: i64, kind: u32, key1: FfiStr, key2: FfiStr)
+typedef _CryptoDistanceC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>);
+typedef _CryptoDistanceDart = void Function(
+    int, int, Pointer<Utf8>, Pointer<Utf8>);
+// fn crypto_sign(port: i64, kind: u32, key: FfiStr, secret: FfiStr, data: FfiStr)
+typedef _CryptoSignC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>);
+typedef _CryptoSignDart = void Function(
+    int, int, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>);
+// fn crypto_verify(port: i64, kind: u32, key: FfiStr, data: FfiStr, signature: FfiStr)
+typedef _CryptoVerifyC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>);
+typedef _CryptoVerifyDart = void Function(
+    int, int, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>);
+// fn crypto_aead_overhead(port: i64, kind: u32)
+typedef _CryptoAeadOverheadC = Void Function(Int64, Uint32);
+typedef _CryptoAeadOverheadDart = void Function(int, int);
+// fn crypto_decrypt_aead(port: i64, kind: u32, body: FfiStr, nonce: FfiStr, shared_secret: FfiStr, associated_data: FfiStr)
+typedef _CryptoDecryptAeadC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>);
+typedef _CryptoDecryptAeadDart = void Function(
+    int, int, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>);
+// fn crypto_encrypt_aead(port: i64, kind: u32, body: FfiStr, nonce: FfiStr, shared_secret: FfiStr, associated_data: FfiStr)
+typedef _CryptoEncryptAeadC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>);
+typedef _CryptoEncryptAeadDart = void Function(
+    int, int, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>);
+// fn crypto_crypt_no_auth(port: i64, kind: u32, body: FfiStr, nonce: FfiStr, shared_secret: FfiStr)
+typedef _CryptoCryptNoAuthC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>);
+typedef _CryptoCryptNoAuthDart = void Function(
+    int, int, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>);
 
+// fn now() -> u64
+typedef _NowC = Uint64 Function();
+typedef _NowDart = int Function();
 // fn debug(port: i64, log_level: FfiStr)
 typedef _DebugC = Void Function(Int64, Pointer<Utf8>);
 typedef _DebugDart = void Function(int, Pointer<Utf8>);
@@ -748,14 +875,14 @@ class VeilidFFI implements Veilid {
   final _RoutingContextWithSequencingDart _routingContextWithSequencing;
   final _RoutingContextAppCallDart _routingContextAppCall;
   final _RoutingContextAppMessageDart _routingContextAppMessage;
-  final _RoutingContextCreateDHTRecordDart _RoutingContextCreateDHTRecord;
-  final _RoutingContextOpenDHTRecordDart _RoutingContextOpenDHTRecord;
-  final _RoutingContextCloseDHTRecordDart _RoutingContextCloseDHTRecord;
-  final _RoutingContextDeleteDHTRecordDart _RoutingContextDeleteDHTRecord;
-  final _RoutingContextGetDHTValueDart _RoutingContextGetDHTValue;
-  final _RoutingContextSetDHTValueDart _RoutingContextSetDHTValue;
-  final _RoutingContextWatchDHTValuesDart _RoutingContextWatchDHTValues;
-  final _RoutingContextCancelDHTWatchDart _RoutingContextCancelDHTWatch;
+  final _RoutingContextCreateDHTRecordDart _routingContextCreateDHTRecord;
+  final _RoutingContextOpenDHTRecordDart _routingContextOpenDHTRecord;
+  final _RoutingContextCloseDHTRecordDart _routingContextCloseDHTRecord;
+  final _RoutingContextDeleteDHTRecordDart _routingContextDeleteDHTRecord;
+  final _RoutingContextGetDHTValueDart _routingContextGetDHTValue;
+  final _RoutingContextSetDHTValueDart _routingContextSetDHTValue;
+  final _RoutingContextWatchDHTValuesDart _routingContextWatchDHTValues;
+  final _RoutingContextCancelDHTWatchDart _routingContextCancelDHTWatch;
 
   final _NewPrivateRouteDart _newPrivateRoute;
   final _NewCustomPrivateRouteDart _newCustomPrivateRoute;
@@ -780,8 +907,7 @@ class VeilidFFI implements Veilid {
   final _TableDbTransactionDeleteDart _tableDbTransactionDelete;
 
   final _ValidCryptoKindsDart _validCryptoKinds;
-  final _GetCryptoSystemDart _getCryptoSystem;
-  final _BestCryptoSystemDart _bestCryptoSystem;
+  final _BestCryptoKindDart _bestCryptoKind;
   final _VerifySignaturesDart _verifySignatures;
   final _GenerateSignaturesDart _generateSignatures;
   final _GenerateKeyPairDart _generateKeyPair;
@@ -792,14 +918,12 @@ class VeilidFFI implements Veilid {
   final _CryptoRandomSharedSecretDart _cryptoRandomSharedSecret;
   final _CryptoGenerateKeyPairDart _cryptoGenerateKeyPair;
   final _CryptoGenerateHashDart _cryptoGenerateHash;
-  final _CryptoGenerateHashReaderDart _cryptoGenerateHashReader;
   final _CryptoValidateKeyPairDart _cryptoValidateKeyPair;
   final _CryptoValidateHashDart _cryptoValidateHash;
-  final _CryptoValidateHashReaderDart _cryptoValidateHashReader;
   final _CryptoDistanceDart _cryptoDistance;
   final _CryptoSignDart _cryptoSign;
   final _CryptoVerifyDart _cryptoVerify;
-  final _CryptoAaedOverheadDart _cryptoAeadOverhead;
+  final _CryptoAeadOverheadDart _cryptoAeadOverhead;
   final _CryptoDecryptAeadDart _cryptoDecryptAead;
   final _CryptoEncryptAeadDart _cryptoEncryptAead;
   final _CryptoCryptNoAuthDart _cryptoCryptNoAuth;
@@ -850,6 +974,36 @@ class VeilidFFI implements Veilid {
         _routingContextAppMessage = dylib.lookupFunction<
             _RoutingContextAppMessageC,
             _RoutingContextAppMessageDart>('routing_context_app_message'),
+        _routingContextCreateDHTRecord = dylib.lookupFunction<
+                _RoutingContextCreateDHTRecordC,
+                _RoutingContextCreateDHTRecordDart>(
+            'routing_context_create_dht_record'),
+        _routingContextOpenDHTRecord = dylib.lookupFunction<
+                _RoutingContextOpenDHTRecordC,
+                _RoutingContextOpenDHTRecordDart>(
+            'routing_context_open_dht_record'),
+        _routingContextCloseDHTRecord = dylib.lookupFunction<
+                _RoutingContextCloseDHTRecordC,
+                _RoutingContextCloseDHTRecordDart>(
+            'routing_context_close_dht_record'),
+        _routingContextDeleteDHTRecord = dylib.lookupFunction<
+                _RoutingContextDeleteDHTRecordC,
+                _RoutingContextDeleteDHTRecordDart>(
+            'routing_context_delete_dht_record'),
+        _routingContextGetDHTValue = dylib.lookupFunction<
+            _RoutingContextGetDHTValueC,
+            _RoutingContextGetDHTValueDart>('routing_context_get_dht_value'),
+        _routingContextSetDHTValue = dylib.lookupFunction<
+            _RoutingContextSetDHTValueC,
+            _RoutingContextSetDHTValueDart>('routing_context_set_dht_value'),
+        _routingContextWatchDHTValues = dylib.lookupFunction<
+                _RoutingContextWatchDHTValuesC,
+                _RoutingContextWatchDHTValuesDart>(
+            'routing_context_watch_dht_values'),
+        _routingContextCancelDHTWatch = dylib.lookupFunction<
+                _RoutingContextCancelDHTWatchC,
+                _RoutingContextCancelDHTWatchDart>(
+            'routing_context_cancel_dht_watch'),
         _newPrivateRoute =
             dylib.lookupFunction<_NewPrivateRouteC, _NewPrivateRouteDart>(
                 'new_private_route'),
@@ -900,6 +1054,31 @@ class VeilidFFI implements Veilid {
         _tableDbTransactionDelete = dylib.lookupFunction<
             _TableDbTransactionDeleteC,
             _TableDbTransactionDeleteDart>('table_db_transaction_delete'),
+
+xxx
+  final _ValidCryptoKindsDart _validCryptoKinds;
+  final _BestCryptoKindDart _bestCryptoKind;
+  final _VerifySignaturesDart _verifySignatures;
+  final _GenerateSignaturesDart _generateSignatures;
+  final _GenerateKeyPairDart _generateKeyPair;
+
+  final _CryptoCachedDHDart _cryptoCachedDH;
+  final _CryptoComputeDHDart _cryptoComputeDH;
+  final _CryptoRandomNonceDart _cryptoRandomNonce;
+  final _CryptoRandomSharedSecretDart _cryptoRandomSharedSecret;
+  final _CryptoGenerateKeyPairDart _cryptoGenerateKeyPair;
+  final _CryptoGenerateHashDart _cryptoGenerateHash;
+  final _CryptoValidateKeyPairDart _cryptoValidateKeyPair;
+  final _CryptoValidateHashDart _cryptoValidateHash;
+  final _CryptoDistanceDart _cryptoDistance;
+  final _CryptoSignDart _cryptoSign;
+  final _CryptoVerifyDart _cryptoVerify;
+  final _CryptoAeadOverheadDart _cryptoAeadOverhead;
+  final _CryptoDecryptAeadDart _cryptoDecryptAead;
+  final _CryptoEncryptAeadDart _cryptoEncryptAead;
+  final _CryptoCryptNoAuthDart _cryptoCryptNoAuth;
+
+
         _debug = dylib.lookupFunction<_DebugC, _DebugDart>('debug'),
         _veilidVersionString = dylib.lookupFunction<_VeilidVersionStringC,
             _VeilidVersionStringDart>('veilid_version_string'),
diff --git a/veilid-flutter/lib/veilid_js.dart b/veilid-flutter/lib/veilid_js.dart
index ae6d6ac0..0125236a 100644
--- a/veilid-flutter/lib/veilid_js.dart
+++ b/veilid-flutter/lib/veilid_js.dart
@@ -7,7 +7,7 @@ import 'dart:async';
 import 'dart:convert';
 import 'dart:typed_data';
 
-import 'base64url_no_pad.dart';
+import 'veilid_encoding.dart';
 
 //////////////////////////////////////////////////////////
 // WASM Platform-specific config
diff --git a/veilid-flutter/lib/veilid_state.dart b/veilid-flutter/lib/veilid_state.dart
index 344f3f47..a1248f3f 100644
--- a/veilid-flutter/lib/veilid_state.dart
+++ b/veilid-flutter/lib/veilid_state.dart
@@ -373,7 +373,7 @@ class VeilidLog implements VeilidUpdate {
 }
 
 class VeilidAppMessage implements VeilidUpdate {
-  final String? sender;
+  final TypedKey? sender;
   final Uint8List message;
 
   //
diff --git a/veilid-flutter/rust/src/dart_ffi.rs b/veilid-flutter/rust/src/dart_ffi.rs
index 841c030f..3f341912 100644
--- a/veilid-flutter/rust/src/dart_ffi.rs
+++ b/veilid-flutter/rust/src/dart_ffi.rs
@@ -494,10 +494,10 @@ pub extern "C" fn routing_context_app_message(port: i64, id: u32, target: FfiStr
 
 #[no_mangle]
 pub extern "C" fn routing_context_create_dht_record(port: i64, id: u32, kind: u32, schema: FfiStr) {
-    let crypto_kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind.to_be_bytes());
+    let crypto_kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
     let schema: veilid_core::DHTSchema = veilid_core::deserialize_opt_json(schema.into_opt_string()).unwrap();
 
-    DartIsolateWrapper::new(port).spawn_result(async move {        
+    DartIsolateWrapper::new(port).spawn_result_json(async move {        
         let routing_context = {
             let rc = ROUTING_CONTEXTS.lock();
             let Some(routing_context) = rc.get(&id) else {
@@ -507,16 +507,15 @@ pub extern "C" fn routing_context_create_dht_record(port: i64, id: u32, kind: u3
         };
         
         let dht_record_descriptor = routing_context.create_dht_record(crypto_kind, schema).await?;
-        let out = veilid_core::serialize_json(dht_record_descriptor);
-        APIResult::Ok(out)
+        APIResult::Ok(dht_record_descriptor)
     });
 }
 
 #[no_mangle]
 pub extern "C" fn routing_context_open_dht_record(port: i64, id: u32, key: FfiStr, writer: FfiStr) {
     let key: veilid_core::TypedKey = veilid_core::deserialize_opt_json(key.into_opt_string()).unwrap();
-    let writer: Option<KeyPair> = writer.into_opt_string().map(|s| veilid_core::deserialize_json(&s).unwrap());
-    DartIsolateWrapper::new(port).spawn_result(async move {        
+    let writer: Option<veilid_core::KeyPair> = writer.into_opt_string().map(|s| veilid_core::deserialize_json(&s).unwrap());
+    DartIsolateWrapper::new(port).spawn_result_json(async move {        
         let routing_context = {
             let rc = ROUTING_CONTEXTS.lock();
             let Some(routing_context) = rc.get(&id) else {
@@ -524,31 +523,125 @@ pub extern "C" fn routing_context_open_dht_record(port: i64, id: u32, key: FfiSt
             };
             routing_context.clone()
         };
-        let writer = match writer {
-            Some(w) => w.to_key_pair(key.kind)?,
-            None => None
-        };
         let dht_record_descriptor = routing_context.open_dht_record(key, writer).await?;
-        let out = veilid_core::serialize_json(dht_record_descriptor);
-        APIResult::Ok(out)
+        APIResult::Ok(dht_record_descriptor)
     });
 }
 
 
-
-// final _RoutingContextCloseDHTRecordDart _RoutingContextCloseDHTRecord;
-// final _RoutingContextDeleteDHTRecordDart _RoutingContextDeleteDHTRecord;
-// final _RoutingContextGetDHTValueDart _RoutingContextGetDHTValue;
-// final _RoutingContextSetDHTValueDart _RoutingContextSetDHTValue;
-// final _RoutingContextWatchDHTValuesDart _RoutingContextWatchDHTValues;
-// final _RoutingContextCancelDHTWatchDart _RoutingContextCancelDHTWatch;
+#[no_mangle]
+pub extern "C" fn routing_context_close_dht_record(port: i64, id: u32, key: FfiStr) {
+    let key: veilid_core::TypedKey = veilid_core::deserialize_opt_json(key.into_opt_string()).unwrap();
+    DartIsolateWrapper::new(port).spawn_result(async move {        
+        let routing_context = {
+            let rc = ROUTING_CONTEXTS.lock();
+            let Some(routing_context) = rc.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_close_dht_record", "id", id));
+            };
+            routing_context.clone()
+        };
+        routing_context.close_dht_record(key).await?;
+        APIRESULT_VOID
+    });
+}
 
 
+#[no_mangle]
+pub extern "C" fn routing_context_delete_dht_record(port: i64, id: u32, key: FfiStr) {
+    let key: veilid_core::TypedKey = veilid_core::deserialize_opt_json(key.into_opt_string()).unwrap();
+    DartIsolateWrapper::new(port).spawn_result(async move {        
+        let routing_context = {
+            let rc = ROUTING_CONTEXTS.lock();
+            let Some(routing_context) = rc.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_delete_dht_record", "id", id));
+            };
+            routing_context.clone()
+        };
+        routing_context.delete_dht_record(key).await?;
+        APIRESULT_VOID
+    });
+}
 
 
+#[no_mangle]
+pub extern "C" fn routing_context_get_dht_value(port: i64, id: u32, key: FfiStr, subkey: u32, force_refresh: bool) {
+    let key: veilid_core::TypedKey = veilid_core::deserialize_opt_json(key.into_opt_string()).unwrap();
+    DartIsolateWrapper::new(port).spawn_result_json(async move {        
+        let routing_context = {
+            let rc = ROUTING_CONTEXTS.lock();
+            let Some(routing_context) = rc.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_get_dht_value", "id", id));
+            };
+            routing_context.clone()
+        };
+        let res = routing_context.get_dht_value(key, subkey, force_refresh).await?;
+        APIResult::Ok(res)
+    });
+}
 
 
+#[no_mangle]
+pub extern "C" fn routing_context_set_dht_value(port: i64, id: u32, key: FfiStr, subkey: u32, data: FfiStr) {
+    let key: veilid_core::TypedKey = veilid_core::deserialize_opt_json(key.into_opt_string()).unwrap();
+    let data: Vec<u8> = data_encoding::BASE64URL_NOPAD
+    .decode(
+        data.into_opt_string()
+            .unwrap()
+            .as_bytes(),
+    )
+    .unwrap();
 
+    DartIsolateWrapper::new(port).spawn_result_json(async move {        
+        let routing_context = {
+            let rc = ROUTING_CONTEXTS.lock();
+            let Some(routing_context) = rc.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_set_dht_value", "id", id));
+            };
+            routing_context.clone()
+        };
+        let res = routing_context.set_dht_value(key, subkey, data).await?;
+        APIResult::Ok(res)
+    });
+}
+
+
+#[no_mangle]
+pub extern "C" fn routing_context_watch_dht_values(port: i64, id: u32, key: FfiStr, subkeys: FfiStr, expiration: FfiStr, count: u32) {
+    let key: veilid_core::TypedKey = veilid_core::deserialize_opt_json(key.into_opt_string()).unwrap();
+    let subkeys: veilid_core::ValueSubkeyRangeSet = veilid_core::deserialize_opt_json(subkeys.into_opt_string()).unwrap();
+    let expiration = veilid_core::Timestamp::from_str(expiration.as_opt_str().unwrap()).unwrap();
+
+    DartIsolateWrapper::new(port).spawn_result(async move {        
+        let routing_context = {
+            let rc = ROUTING_CONTEXTS.lock();
+            let Some(routing_context) = rc.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_set_dht_value", "id", id));
+            };
+            routing_context.clone()
+        };
+        let res = routing_context.watch_dht_values(key, subkeys, expiration, count).await?;
+        APIResult::Ok(res.to_string())
+    });
+}
+
+
+#[no_mangle]
+pub extern "C" fn routing_context_cancel_dht_watch(port: i64, id: u32, key: FfiStr, subkeys: FfiStr) {
+    let key: veilid_core::TypedKey = veilid_core::deserialize_opt_json(key.into_opt_string()).unwrap();
+    let subkeys: veilid_core::ValueSubkeyRangeSet = veilid_core::deserialize_opt_json(subkeys.into_opt_string()).unwrap();
+
+    DartIsolateWrapper::new(port).spawn_result(async move {        
+        let routing_context = {
+            let rc = ROUTING_CONTEXTS.lock();
+            let Some(routing_context) = rc.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_set_dht_value", "id", id));
+            };
+            routing_context.clone()
+        };
+        let res = routing_context.cancel_dht_watch(key, subkeys).await?;
+        APIResult::Ok(res)
+    });
+}
 
 
 #[no_mangle]
@@ -894,34 +987,390 @@ pub extern "C" fn table_db_delete(port: i64, id: u32, col: u32, key: FfiStr) {
 }
 
 
+#[no_mangle]
+pub extern "C" fn valid_crypto_kinds() -> *mut c_char {
+    veilid_core::serialize_json(veilid_core::VALID_CRYPTO_KINDS.iter().map(|k| (*k).into()).collect::<Vec<u32>>()).into_ffi_value()
+}
 
-final _ValidCryptoKindsDart _validCryptoKinds;
-final _GetCryptoSystemDart _getCryptoSystem;
-final _BestCryptoSystemDart _bestCryptoSystem;
-final _VerifySignaturesDart _verifySignatures;
-final _GenerateSignaturesDart _generateSignatures;
-final _GenerateKeyPairDart _generateKeyPair;
+#[no_mangle]
+pub extern "C" fn best_crypto_kind() -> u32 {
+    veilid_core::best_crypto_kind().into()
+}
 
-final _CryptoCachedDHDart _cryptoCachedDH;
-final _CryptoComputeDHDart _cryptoComputeDH;
-final _CryptoRandomNonceDart _cryptoRandomNonce;
-final _CryptoRandomSharedSecretDart _cryptoRandomSharedSecret;
-final _CryptoGenerateKeyPairDart _cryptoGenerateKeyPair;
-final _CryptoGenerateHashDart _cryptoGenerateHash;
-final _CryptoGenerateHashReaderDart _cryptoGenerateHashReader;
-final _CryptoValidateKeyPairDart _cryptoValidateKeyPair;
-final _CryptoValidateHashDart _cryptoValidateHash;
-final _CryptoValidateHashReaderDart _cryptoValidateHashReader;
-final _CryptoDistanceDart _cryptoDistance;
-final _CryptoSignDart _cryptoSign;
-final _CryptoVerifyDart _cryptoVerify;
-final _CryptoAaedOverheadDart _cryptoAeadOverhead;
-final _CryptoDecryptAeadDart _cryptoDecryptAead;
-final _CryptoEncryptAeadDart _cryptoEncryptAead;
-final _CryptoCryptNoAuthDart _cryptoCryptNoAuth;
+#[no_mangle]
+pub extern "C" fn verify_signatures(port: i64, node_ids: FfiStr, data: FfiStr, signatures: FfiStr) {
+    let node_ids: Vec<veilid_core::TypedKey> =
+        veilid_core::deserialize_opt_json(node_ids.into_opt_string()).unwrap();
 
-final _NowDart _now;
+    let data: Vec<u8> = data_encoding::BASE64URL_NOPAD
+    .decode(
+        data.into_opt_string()
+            .unwrap()
+            .as_bytes(),
+    )
+    .unwrap();
 
+    let typed_signatures: Vec<veilid_core::TypedSignature> =
+        veilid_core::deserialize_opt_json(signatures.into_opt_string()).unwrap();
+
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let out = crypto.verify_signatures(&node_ids, &data, &typed_signatures)?;
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn generate_signatures(port: i64, data: FfiStr, key_pairs: FfiStr) {
+
+    let data: Vec<u8> = data_encoding::BASE64URL_NOPAD
+    .decode(
+        data.into_opt_string()
+            .unwrap()
+            .as_bytes(),
+    )
+    .unwrap();
+
+    let key_pairs: Vec<veilid_core::TypedKeyPair> =
+        veilid_core::deserialize_opt_json(key_pairs.into_opt_string()).unwrap();
+
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let out = crypto.generate_signatures(&data, &key_pairs, |k, s| {
+            veilid_core::TypedSignature::new(k.kind, s)
+        })?;
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn generate_key_pair(port: i64, kind: u32) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let out = veilid_core::Crypto::generate_keypair(kind)?;
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_cached_dh(port: i64, kind: u32, key: FfiStr, secret: FfiStr) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let key: veilid_core::PublicKey =
+        veilid_core::deserialize_opt_json(key.into_opt_string()).unwrap();
+    let secret: veilid_core::SecretKey =
+        veilid_core::deserialize_opt_json(secret.into_opt_string()).unwrap();
+    
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_cached_dh", "kind", kind.to_string()))?;
+        let out = csv.cached_dh(&key, &secret)?;
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_compute_dh(port: i64, kind: u32, key: FfiStr, secret: FfiStr) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+    
+    let key: veilid_core::PublicKey =
+        veilid_core::deserialize_opt_json(key.into_opt_string()).unwrap();
+    let secret: veilid_core::SecretKey =
+        veilid_core::deserialize_opt_json(secret.into_opt_string()).unwrap();
+
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_compute_dh", "kind", kind.to_string()))?;
+        let out = csv.compute_dh(&key, &secret)?;
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_random_nonce(port: i64, kind: u32) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_random_nonce", "kind", kind.to_string()))?;
+        let out = csv.random_nonce();
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_random_shared_secret(port: i64, kind: u32) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_random_shared_secret", "kind", kind.to_string()))?;
+        let out = csv.random_shared_secret();
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_generate_key_pair(port: i64, kind: u32) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_generate_key_pair", "kind", kind.to_string()))?;
+        let out = csv.generate_keypair();
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_generate_hash(port: i64, kind: u32, data: FfiStr) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let data: Vec<u8> = data_encoding::BASE64URL_NOPAD
+    .decode(
+        data.into_opt_string()
+            .unwrap()
+            .as_bytes(),
+    )
+    .unwrap();
+
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_generate_hash", "kind", kind.to_string()))?;
+        let out = csv.generate_hash(&data);
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_validate_key_pair(port: i64, kind: u32, key: FfiStr, secret: FfiStr) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let key: veilid_core::PublicKey =
+        veilid_core::deserialize_opt_json(key.into_opt_string()).unwrap();
+    let secret: veilid_core::SecretKey =
+        veilid_core::deserialize_opt_json(secret.into_opt_string()).unwrap();
+
+    DartIsolateWrapper::new(port).spawn_result(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_validate_key_pair", "kind", kind.to_string()))?;
+        let out = csv.validate_keypair(&key, &secret);
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_validate_hash(port: i64, kind: u32, data: FfiStr, hash: FfiStr) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let data: Vec<u8> = data_encoding::BASE64URL_NOPAD
+    .decode(
+        data.into_opt_string()
+            .unwrap()
+            .as_bytes(),
+    )
+    .unwrap();
+
+    let hash: veilid_core::HashDigest =
+        veilid_core::deserialize_opt_json(hash.into_opt_string()).unwrap();
+
+    DartIsolateWrapper::new(port).spawn_result(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_validate_hash", "kind", kind.to_string()))?;
+        let out = csv.validate_hash(&data, &hash);
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_distance(port: i64, kind: u32, key1: FfiStr, key2: FfiStr) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let key1: veilid_core::CryptoKey =
+        veilid_core::deserialize_opt_json(key1.into_opt_string()).unwrap();
+    let key2: veilid_core::CryptoKey =
+        veilid_core::deserialize_opt_json(key2.into_opt_string()).unwrap();
+
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_distance", "kind", kind.to_string()))?;
+        let out = csv.distance(&key1, &key2);
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_sign(port: i64, kind: u32, key: FfiStr, secret: FfiStr, data: FfiStr) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let key: veilid_core::CryptoKey =
+        veilid_core::deserialize_opt_json(key.into_opt_string()).unwrap();
+    let secret: veilid_core::CryptoKey =
+        veilid_core::deserialize_opt_json(secret.into_opt_string()).unwrap();
+    let data: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(
+            data.into_opt_string()
+                .unwrap()
+                .as_bytes(),
+        )
+        .unwrap();
+    
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_sign", "kind", kind.to_string()))?;
+        let out = csv.sign(&key, &secret, &data)?;
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_verify(port: i64, kind: u32, key: FfiStr, data: FfiStr, signature: FfiStr) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let key: veilid_core::CryptoKey =
+        veilid_core::deserialize_opt_json(key.into_opt_string()).unwrap();
+    let data: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(
+            data.into_opt_string()
+                .unwrap()
+                .as_bytes(),
+        )
+        .unwrap();
+    let signature: veilid_core::Signature =
+        veilid_core::deserialize_opt_json(signature.into_opt_string()).unwrap();
+    
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_verify", "kind", kind.to_string()))?;
+        let out = csv.verify(&key, &data, &signature)?;
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_aead_overhead(port: i64, kind: u32) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+    
+    DartIsolateWrapper::new(port).spawn_result(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_aead_overhead", "kind", kind.to_string()))?;
+        let out = csv.aead_overhead();
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_decrypt_aead(port: i64, kind: u32, body: FfiStr, nonce: FfiStr, shared_secret: FfiStr, associated_data: FfiStr) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+    
+    let body: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(
+            body.into_opt_string()
+                .unwrap()
+                .as_bytes(),
+        )
+        .unwrap();
+    
+    let nonce: veilid_core::Nonce =
+        veilid_core::deserialize_opt_json(nonce.into_opt_string()).unwrap();
+    
+    let shared_secret: veilid_core::SharedSecret =
+        veilid_core::deserialize_opt_json(shared_secret.into_opt_string()).unwrap();
+
+    let associated_data: Option<Vec<u8>> = associated_data.into_opt_string().map(|s| data_encoding::BASE64URL_NOPAD.decode(s.as_bytes()).unwrap());
+
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_decrypt_aead", "kind", kind.to_string()))?;
+        let out = csv.decrypt_aead(&body, &nonce, &shared_secret, match &associated_data {
+            Some(ad) => Some(ad.as_slice()),
+            None => None
+        })?;
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_encrypt_aead(port: i64, kind: u32, body: FfiStr, nonce: FfiStr, shared_secret: FfiStr, associated_data: FfiStr) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+    
+    let body: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(
+            body.into_opt_string()
+                .unwrap()
+                .as_bytes(),
+        )
+        .unwrap();
+    
+    let nonce: veilid_core::Nonce =
+        veilid_core::deserialize_opt_json(nonce.into_opt_string()).unwrap();
+    
+    let shared_secret: veilid_core::SharedSecret =
+        veilid_core::deserialize_opt_json(shared_secret.into_opt_string()).unwrap();
+
+    let associated_data: Option<Vec<u8>> = associated_data.into_opt_string().map(|s| data_encoding::BASE64URL_NOPAD.decode(s.as_bytes()).unwrap());
+
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_encrypt_aead", "kind", kind.to_string()))?;
+        let out = csv.encrypt_aead(&body, &nonce, &shared_secret, match &associated_data {
+            Some(ad) => Some(ad.as_slice()),
+            None => None
+        })?;
+        APIResult::Ok(out)
+    });
+}
+
+
+
+#[no_mangle]
+pub extern "C" fn crypto_crypt_no_auth(port: i64, kind: u32, body: FfiStr, nonce: FfiStr, shared_secret: FfiStr) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+    
+    let mut body: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(
+            body.into_opt_string()
+                .unwrap()
+                .as_bytes(),
+        )
+        .unwrap();
+    
+    let nonce: veilid_core::Nonce =
+        veilid_core::deserialize_opt_json(nonce.into_opt_string()).unwrap();
+    
+    let shared_secret: veilid_core::SharedSecret =
+        veilid_core::deserialize_opt_json(shared_secret.into_opt_string()).unwrap();
+
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_crypt_no_auth", "kind", kind.to_string()))?;
+        csv.crypt_in_place_no_auth(&mut body, &nonce, &shared_secret);
+        APIResult::Ok(body)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn now() -> u64 {
+    veilid_core::get_aligned_timestamp().as_u64()
+}
 
 #[no_mangle]
 pub extern "C" fn debug(port: i64, command: FfiStr) {

From cbdbd34af887a47ed675cf17622e96a55e5cf994 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Mon, 15 May 2023 11:33:32 -0400
Subject: [PATCH 33/74] work

---
 veilid-flutter/example/lib/app.dart         |   7 +-
 veilid-flutter/example/lib/veilid_init.dart |   4 +-
 veilid-flutter/lib/routing_context.dart     |  24 +-
 veilid-flutter/lib/veilid.dart              |  31 +-
 veilid-flutter/lib/veilid_config.dart       |  76 ++---
 veilid-flutter/lib/veilid_crypto.dart       |   6 +-
 veilid-flutter/lib/veilid_encoding.dart     |   6 +-
 veilid-flutter/lib/veilid_ffi.dart          | 333 ++++++++++++++++----
 veilid-flutter/lib/veilid_js.dart           |  44 ++-
 veilid-flutter/lib/veilid_state.dart        | 102 +++---
 veilid-flutter/rust/src/dart_ffi.rs         |   6 +-
 11 files changed, 436 insertions(+), 203 deletions(-)

diff --git a/veilid-flutter/example/lib/app.dart b/veilid-flutter/example/lib/app.dart
index 00e6600a..06576424 100644
--- a/veilid-flutter/example/lib/app.dart
+++ b/veilid-flutter/example/lib/app.dart
@@ -1,4 +1,5 @@
 import 'dart:async';
+import 'dart:convert';
 
 import 'package:flutter/material.dart';
 import 'package:flutter/services.dart';
@@ -97,11 +98,11 @@ class _MyAppState extends State<MyApp> with UiLoggy {
         if (update is VeilidLog) {
           await processLog(update);
         } else if (update is VeilidAppMessage) {
-          loggy.info("AppMessage: ${update.json}");
+          loggy.info("AppMessage: ${jsonEncode(update)}");
         } else if (update is VeilidAppCall) {
-          loggy.info("AppCall: ${update.json}");
+          loggy.info("AppCall: ${jsonEncode(update)}");
         } else {
-          loggy.trace("Update: ${update.json}");
+          loggy.trace("Update: ${jsonEncode(update)}");
         }
       }
     }
diff --git a/veilid-flutter/example/lib/veilid_init.dart b/veilid-flutter/example/lib/veilid_init.dart
index 7d0f8fb3..a7d6b5b7 100644
--- a/veilid-flutter/example/lib/veilid_init.dart
+++ b/veilid-flutter/example/lib/veilid_init.dart
@@ -14,7 +14,7 @@ void veilidInit() {
                 logsInConsole: false),
             api: VeilidWASMConfigLoggingApi(
                 enabled: true, level: VeilidConfigLogLevel.info)));
-    Veilid.instance.initializeVeilidCore(platformConfig.json);
+    Veilid.instance.initializeVeilidCore(platformConfig.toJson());
   } else {
     var platformConfig = VeilidFFIConfig(
         logging: VeilidFFIConfigLogging(
@@ -29,6 +29,6 @@ void veilidInit() {
                 serviceName: "VeilidExample"),
             api: VeilidFFIConfigLoggingApi(
                 enabled: true, level: VeilidConfigLogLevel.info)));
-    Veilid.instance.initializeVeilidCore(platformConfig.json);
+    Veilid.instance.initializeVeilidCore(platformConfig.toJson());
   }
 }
diff --git a/veilid-flutter/lib/routing_context.dart b/veilid-flutter/lib/routing_context.dart
index 7fc15526..6d7345b4 100644
--- a/veilid-flutter/lib/routing_context.dart
+++ b/veilid-flutter/lib/routing_context.dart
@@ -33,7 +33,7 @@ abstract class DHTSchema {
         }
     }
   }
-  Map<String, dynamic> get json;
+  Map<String, dynamic> toJson();
 }
 
 class DHTSchemaDFLT implements DHTSchema {
@@ -49,7 +49,7 @@ class DHTSchemaDFLT implements DHTSchema {
   }
 
   @override
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'kind': "DFLT",
       'o_cnt': oCnt,
@@ -71,7 +71,7 @@ class DHTSchemaMember {
     }
   }
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'm_key': mKey,
       'm_cnt': mCnt,
@@ -97,11 +97,11 @@ class DHTSchemaSMPL implements DHTSchema {
     }
   }
   @override
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'kind': "SMPL",
       'o_cnt': oCnt,
-      'members': members.map((p) => p.json).toList(),
+      'members': members.map((p) => p.toJson()).toList(),
     };
   }
 }
@@ -122,12 +122,12 @@ class DHTRecordDescriptor {
     required this.schema,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'key': key.toString(),
       'owner': owner,
       'owner_secret': ownerSecret,
-      'schema': schema.json,
+      'schema': schema.toJson(),
     };
   }
 
@@ -168,7 +168,7 @@ class ValueSubkeyRange {
     }
   }
 
-  List<dynamic> get json {
+  List<dynamic> toJson() {
     return [low, high];
   }
 }
@@ -192,7 +192,7 @@ class ValueData {
         data = base64UrlNoPadDecode(json['data']),
         writer = json['writer'];
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {'seq': seq, 'data': base64UrlNoPadEncode(data), 'writer': writer};
   }
 }
@@ -205,7 +205,7 @@ enum Stability {
 }
 
 extension StabilityExt on Stability {
-  String get json {
+  String toJson() {
     return name.toPascalCase();
   }
 }
@@ -224,7 +224,7 @@ enum Sequencing {
 }
 
 extension SequencingExt on Sequencing {
-  String get json {
+  String toJson() {
     return name.toPascalCase();
   }
 }
@@ -245,7 +245,7 @@ class RouteBlob {
       : routeId = json['route_id'],
         blob = base64UrlNoPadDecode(json['blob']);
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {'route_id': routeId, 'blob': base64UrlNoPadEncode(blob)};
   }
 }
diff --git a/veilid-flutter/lib/veilid.dart b/veilid-flutter/lib/veilid.dart
index e716b22b..f6e1e78d 100644
--- a/veilid-flutter/lib/veilid.dart
+++ b/veilid-flutter/lib/veilid.dart
@@ -36,16 +36,29 @@ Object? veilidApiToEncodable(Object? value) {
     return value;
   }
   switch (value.runtimeType) {
-    case AttachmentState:
-      return (value as AttachmentState).json;
-    case VeilidLogLevel:
-      return (value as VeilidLogLevel).json;
-    case VeilidConfigLogLevel:
-      return (value as VeilidConfigLogLevel).json;
+    // case KeyPair:
+    //   return (value as KeyPair).json;
   }
   throw UnsupportedError('Cannot convert to JSON: $value');
 }
 
+T? Function(dynamic) optFromJson<T>(T Function(dynamic) jsonConstructor) {
+  return (dynamic j) {
+    if (j == null) {
+      return null;
+    } else {
+      return jsonConstructor(j);
+    }
+  };
+}
+
+List<T> Function(dynamic) jsonListConstructor<T>(
+    T Function(dynamic) jsonConstructor) {
+  return (dynamic j) {
+    return (j as List<dynamic>).map((e) => jsonConstructor(e)).toList();
+  };
+}
+
 //////////////////////////////////////
 /// VeilidVersion
 
@@ -71,8 +84,7 @@ class Timestamp {
   Timestamp.fromString(String s) : value = BigInt.parse(s);
 
   Timestamp.fromJson(dynamic json) : this.fromString(json as String);
-
-  String get json {
+  String toJson() {
     return toString();
   }
 
@@ -97,8 +109,7 @@ class TimestampDuration {
   TimestampDuration.fromString(String s) : value = BigInt.parse(s);
 
   TimestampDuration.fromJson(dynamic json) : this.fromString(json as String);
-
-  String get json {
+  String toJson() {
     return toString();
   }
 
diff --git a/veilid-flutter/lib/veilid_config.dart b/veilid-flutter/lib/veilid_config.dart
index 7f5d0787..176fe2b3 100644
--- a/veilid-flutter/lib/veilid_config.dart
+++ b/veilid-flutter/lib/veilid_config.dart
@@ -20,7 +20,7 @@ enum VeilidConfigLogLevel {
 }
 
 extension VeilidConfigLogLevelExt on VeilidConfigLogLevel {
-  String get json {
+  String toJson() {
     return name.toPascalCase();
   }
 }
@@ -45,7 +45,7 @@ class VeilidConfigHTTPS {
     this.url,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'enabled': enabled,
       'listen_address': listenAddress,
@@ -76,7 +76,7 @@ class VeilidConfigHTTP {
     this.url,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'enabled': enabled,
       'listen_address': listenAddress,
@@ -103,10 +103,10 @@ class VeilidConfigApplication {
     required this.http,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
-      'https': https.json,
-      'http': http.json,
+      'https': https.toJson(),
+      'http': http.toJson(),
     };
   }
 
@@ -129,7 +129,7 @@ class VeilidConfigUDP {
       required this.listenAddress,
       this.publicAddress});
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'enabled': enabled,
       'socket_pool_size': socketPoolSize,
@@ -161,7 +161,7 @@ class VeilidConfigTCP {
       required this.listenAddress,
       this.publicAddress});
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'connect': connect,
       'listen': listen,
@@ -197,7 +197,7 @@ class VeilidConfigWS {
       required this.path,
       this.url});
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'connect': connect,
       'listen': listen,
@@ -235,7 +235,7 @@ class VeilidConfigWSS {
       required this.path,
       this.url});
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'connect': connect,
       'listen': listen,
@@ -270,12 +270,12 @@ class VeilidConfigProtocol {
     required this.wss,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
-      'udp': udp.json,
-      'tcp': tcp.json,
-      'ws': ws.json,
-      'wss': wss.json,
+      'udp': udp.toJson(),
+      'tcp': tcp.toJson(),
+      'ws': ws.toJson(),
+      'wss': wss.toJson(),
     };
   }
 
@@ -299,7 +299,7 @@ class VeilidConfigTLS {
     required this.connectionInitialTimeoutMs,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'certificate_path': certificatePath,
       'private_key_path': privateKeyPath,
@@ -357,7 +357,7 @@ class VeilidConfigDHT {
       required this.remoteMaxSubkeyCacheMemoryMb,
       required this.remoteMaxStorageSpaceMb});
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'max_find_node_count': maxFindNodeCount,
       'resolve_node_timeout_ms': resolveNodeTimeoutMs,
@@ -425,7 +425,7 @@ class VeilidConfigRPC {
       required this.maxRouteHopCount,
       required this.defaultRouteHopCount});
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'concurrency': concurrency,
       'queue_size': queueSize,
@@ -470,10 +470,10 @@ class VeilidConfigRoutingTable {
     required this.limitAttachedWeak,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
-      'node_id': nodeId.map((p) => p.json).toList(),
-      'node_id_secret': nodeIdSecret.map((p) => p.json).toList(),
+      'node_id': nodeId.map((p) => p.toJson()).toList(),
+      'node_id_secret': nodeIdSecret.map((p) => p.toJson()).toList(),
       'bootstrap': bootstrap.map((p) => p).toList(),
       'limit_over_attached': limitOverAttached,
       'limit_fully_attached': limitFullyAttached,
@@ -539,7 +539,7 @@ class VeilidConfigNetwork {
     required this.protocol,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'connection_initial_timeout_ms': connectionInitialTimeoutMs,
       'connection_inactivity_timeout_ms': connectionInactivityTimeoutMs,
@@ -550,15 +550,15 @@ class VeilidConfigNetwork {
       'client_whitelist_timeout_ms': clientWhitelistTimeoutMs,
       'reverse_connection_receipt_time_ms': reverseConnectionReceiptTimeMs,
       'hole_punch_receipt_time_ms': holePunchReceiptTimeMs,
-      'routing_table': routingTable.json,
-      'rpc': rpc.json,
-      'dht': dht.json,
+      'routing_table': routingTable.toJson(),
+      'rpc': rpc.toJson(),
+      'dht': dht.toJson(),
       'upnp': upnp,
       'detect_address_changes': detectAddressChanges,
       'restricted_nat_retries': restrictedNatRetries,
-      'tls': tls.json,
-      'application': application.json,
-      'protocol': protocol.json,
+      'tls': tls.toJson(),
+      'application': application.toJson(),
+      'protocol': protocol.toJson(),
     };
   }
 
@@ -597,7 +597,7 @@ class VeilidConfigTableStore {
     required this.delete,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {'directory': directory, 'delete': delete};
   }
 
@@ -617,7 +617,7 @@ class VeilidConfigBlockStore {
     required this.delete,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {'directory': directory, 'delete': delete};
   }
 
@@ -641,7 +641,7 @@ class VeilidConfigProtectedStore {
     required this.delete,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'allow_insecure_fallback': allowInsecureFallback,
       'always_use_insecure_storage': alwaysUseInsecureStorage,
@@ -678,7 +678,7 @@ class VeilidConfigCapabilities {
     required this.protocolAcceptWSS,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'protocol_udp': protocolUDP,
       'protocol_connect_tcp': protocolConnectTCP,
@@ -721,15 +721,15 @@ class VeilidConfig {
     required this.network,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'program_name': programName,
       'namespace': namespace,
-      'capabilities': capabilities.json,
-      'protected_store': protectedStore.json,
-      'table_store': tableStore.json,
-      'block_store': blockStore.json,
-      'network': network.json
+      'capabilities': capabilities.toJson(),
+      'protected_store': protectedStore.toJson(),
+      'table_store': tableStore.toJson(),
+      'block_store': blockStore.toJson(),
+      'network': network.toJson()
     };
   }
 
diff --git a/veilid-flutter/lib/veilid_crypto.dart b/veilid-flutter/lib/veilid_crypto.dart
index 40be7f74..9f90ed39 100644
--- a/veilid-flutter/lib/veilid_crypto.dart
+++ b/veilid-flutter/lib/veilid_crypto.dart
@@ -55,7 +55,7 @@ class Typed<V extends EncodedString> {
     value = EncodedString.fromString<V>(parts.sublist(1).join(":"));
   }
 
-  String get json {
+  String toJson() {
     return toString();
   }
 
@@ -83,7 +83,7 @@ class KeyPair {
     secret = PublicKey(parts[1]);
   }
 
-  String get json {
+  String toJson() {
     return toString();
   }
 
@@ -114,7 +114,7 @@ class TypedKeyPair {
     secret = PublicKey(parts[2]);
   }
 
-  String get json {
+  String toJson() {
     return toString();
   }
 
diff --git a/veilid-flutter/lib/veilid_encoding.dart b/veilid-flutter/lib/veilid_encoding.dart
index f2746da9..9d56b58d 100644
--- a/veilid-flutter/lib/veilid_encoding.dart
+++ b/veilid-flutter/lib/veilid_encoding.dart
@@ -70,7 +70,7 @@ class FixedEncodedString32 extends EncodedString {
     return 24;
   }
 
-  String get json {
+  String toJson() {
     return toString();
   }
 
@@ -89,7 +89,7 @@ class FixedEncodedString43 extends EncodedString {
     return 32;
   }
 
-  String get json {
+  String toJson() {
     return toString();
   }
 
@@ -108,7 +108,7 @@ class FixedEncodedString86 extends EncodedString {
     return 64;
   }
 
-  String get json {
+  String toJson() {
     return toString();
   }
 
diff --git a/veilid-flutter/lib/veilid_ffi.dart b/veilid-flutter/lib/veilid_ffi.dart
index a1c352ca..1ad56fa4 100644
--- a/veilid-flutter/lib/veilid_ffi.dart
+++ b/veilid-flutter/lib/veilid_ffi.dart
@@ -22,10 +22,10 @@ class VeilidFFIConfigLoggingTerminal {
     required this.level,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'enabled': enabled,
-      'level': level.json,
+      'level': level.toJson(),
     };
   }
 
@@ -47,10 +47,10 @@ class VeilidFFIConfigLoggingOtlp {
     required this.serviceName,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'enabled': enabled,
-      'level': level.json,
+      'level': level.toJson(),
       'grpc_endpoint': grpcEndpoint,
       'service_name': serviceName,
     };
@@ -72,10 +72,10 @@ class VeilidFFIConfigLoggingApi {
     required this.level,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'enabled': enabled,
-      'level': level.json,
+      'level': level.toJson(),
     };
   }
 
@@ -92,11 +92,11 @@ class VeilidFFIConfigLogging {
   VeilidFFIConfigLogging(
       {required this.terminal, required this.otlp, required this.api});
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
-      'terminal': terminal.json,
-      'otlp': otlp.json,
-      'api': api.json,
+      'terminal': terminal.toJson(),
+      'otlp': otlp.toJson(),
+      'api': api.toJson(),
     };
   }
 
@@ -113,9 +113,9 @@ class VeilidFFIConfig {
     required this.logging,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
-      'logging': logging.json,
+      'logging': logging.toJson(),
     };
   }
 
@@ -221,9 +221,9 @@ typedef _RoutingContextSetDHTValueDart = void Function(
     int, int, Pointer<Utf8>, int, Pointer<Utf8>);
 // fn routing_context_watch_dht_values(port: i64, id: u32, key: FfiStr, subkeys: FfiStr, expiration: FfiStr, count: u32)
 typedef _RoutingContextWatchDHTValuesC = Void Function(
-    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>, Uint32);
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>, Uint64, Uint32);
 typedef _RoutingContextWatchDHTValuesDart = void Function(
-    int, int, Pointer<Utf8>, Pointer<Utf8>, Pointer<Utf8>, int);
+    int, int, Pointer<Utf8>, Pointer<Utf8>, int, int);
 // fn routing_context_cancel_dht_watch(port: i64, id: u32, key: FfiStr, subkeys: FfiStr)
 typedef _RoutingContextCancelDHTWatchC = Void Function(
     Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>);
@@ -652,14 +652,14 @@ class VeilidRoutingContextFFI implements VeilidRoutingContext {
   @override
   VeilidRoutingContextFFI withCustomPrivacy(Stability stability) {
     final newId = _ctx.ffi._routingContextWithCustomPrivacy(
-        _ctx.id, stability.json.toNativeUtf8());
+        _ctx.id, jsonEncode(stability).toNativeUtf8());
     return VeilidRoutingContextFFI._(_Ctx(newId, _ctx.ffi));
   }
 
   @override
   VeilidRoutingContextFFI withSequencing(Sequencing sequencing) {
-    final newId = _ctx.ffi
-        ._routingContextWithSequencing(_ctx.id, sequencing.json.toNativeUtf8());
+    final newId = _ctx.ffi._routingContextWithSequencing(
+        _ctx.id, jsonEncode(sequencing).toNativeUtf8());
     return VeilidRoutingContextFFI._(_Ctx(newId, _ctx.ffi));
   }
 
@@ -677,7 +677,7 @@ class VeilidRoutingContextFFI implements VeilidRoutingContext {
   }
 
   @override
-  Future<void> appMessage(String target, Uint8List message) async {
+  Future<void> appMessage(String target, Uint8List message) {
     final nativeEncodedTarget = target.toNativeUtf8();
     final nativeEncodedMessage = base64UrlNoPadEncode(message).toNativeUtf8();
 
@@ -687,6 +687,111 @@ class VeilidRoutingContextFFI implements VeilidRoutingContext {
         nativeEncodedTarget, nativeEncodedMessage);
     return processFutureVoid(recvPort.first);
   }
+
+  @override
+  Future<DHTRecordDescriptor> createDHTRecord(
+      CryptoKind kind, DHTSchema schema) async {
+    final nativeSchema = jsonEncode(schema).toNativeUtf8();
+    final recvPort = ReceivePort("routing_context_create_dht_record");
+    final sendPort = recvPort.sendPort;
+    _ctx.ffi._routingContextCreateDHTRecord(
+        sendPort.nativePort, _ctx.id, kind, nativeSchema);
+    final dhtRecordDescriptor =
+        await processFutureJson(DHTRecordDescriptor.fromJson, recvPort.first);
+    return dhtRecordDescriptor;
+  }
+
+  @override
+  Future<DHTRecordDescriptor> openDHTRecord(
+      TypedKey key, KeyPair? writer) async {
+    final nativeKey = jsonEncode(key).toNativeUtf8();
+    final nativeWriter =
+        writer != null ? jsonEncode(key).toNativeUtf8() : nullptr;
+    final recvPort = ReceivePort("routing_context_open_dht_record");
+    final sendPort = recvPort.sendPort;
+    _ctx.ffi._routingContextOpenDHTRecord(
+        sendPort.nativePort, _ctx.id, nativeKey, nativeWriter);
+    final dhtRecordDescriptor =
+        await processFutureJson(DHTRecordDescriptor.fromJson, recvPort.first);
+    return dhtRecordDescriptor;
+  }
+
+  @override
+  Future<void> closeDHTRecord(TypedKey key) {
+    final nativeKey = jsonEncode(key).toNativeUtf8();
+    final recvPort = ReceivePort("routing_context_close_dht_record");
+    final sendPort = recvPort.sendPort;
+    _ctx.ffi
+        ._routingContextCloseDHTRecord(sendPort.nativePort, _ctx.id, nativeKey);
+    return processFutureVoid(recvPort.first);
+  }
+
+  @override
+  Future<void> deleteDHTRecord(TypedKey key) {
+    final nativeKey = jsonEncode(key).toNativeUtf8();
+    final recvPort = ReceivePort("routing_context_delete_dht_record");
+    final sendPort = recvPort.sendPort;
+    _ctx.ffi._routingContextDeleteDHTRecord(
+        sendPort.nativePort, _ctx.id, nativeKey);
+    return processFutureVoid(recvPort.first);
+  }
+
+  @override
+  Future<ValueData?> getDHTValue(
+      TypedKey key, int subkey, bool forceRefresh) async {
+    final nativeKey = jsonEncode(key).toNativeUtf8();
+    final recvPort = ReceivePort("routing_context_get_dht_value");
+    final sendPort = recvPort.sendPort;
+    _ctx.ffi._routingContextGetDHTValue(
+        sendPort.nativePort, _ctx.id, nativeKey, subkey, forceRefresh);
+    final valueData = await processFutureJson(
+        optFromJson(ValueData.fromJson), recvPort.first);
+    return valueData;
+  }
+
+  @override
+  Future<ValueData?> setDHTValue(
+      TypedKey key, int subkey, Uint8List data) async {
+    final nativeKey = jsonEncode(key).toNativeUtf8();
+    final nativeData = base64UrlNoPadEncode(data).toNativeUtf8();
+
+    final recvPort = ReceivePort("routing_context_set_dht_value");
+    final sendPort = recvPort.sendPort;
+    _ctx.ffi._routingContextSetDHTValue(
+        sendPort.nativePort, _ctx.id, nativeKey, subkey, nativeData);
+    final valueData = await processFutureJson(
+        optFromJson(ValueData.fromJson), recvPort.first);
+    return valueData;
+  }
+
+  @override
+  Future<Timestamp> watchDHTValues(TypedKey key, ValueSubkeyRange subkeys,
+      Timestamp expiration, int count) async {
+    final nativeKey = jsonEncode(key).toNativeUtf8();
+    final nativeSubkeys = jsonEncode(subkeys).toNativeUtf8();
+    final nativeExpiration = expiration.value.toInt();
+
+    final recvPort = ReceivePort("routing_context_watch_dht_values");
+    final sendPort = recvPort.sendPort;
+    _ctx.ffi._routingContextWatchDHTValues(sendPort.nativePort, _ctx.id,
+        nativeKey, nativeSubkeys, nativeExpiration, count);
+    final actualExpiration = Timestamp(
+        value: BigInt.from(await processFuturePlain<int>(recvPort.first)));
+    return actualExpiration;
+  }
+
+  @override
+  Future<bool> cancelDHTWatch(TypedKey key, ValueSubkeyRange subkeys) async {
+    final nativeKey = jsonEncode(key).toNativeUtf8();
+    final nativeSubkeys = jsonEncode(subkeys).toNativeUtf8();
+
+    final recvPort = ReceivePort("routing_context_cancel_dht_watch");
+    final sendPort = recvPort.sendPort;
+    _ctx.ffi._routingContextCancelDHTWatch(
+        sendPort.nativePort, _ctx.id, nativeKey, nativeSubkeys);
+    final cancelled = await processFuturePlain<bool>(recvPort.first);
+    return cancelled;
+  }
 }
 
 class _TDBT {
@@ -853,6 +958,56 @@ class VeilidTableDBFFI extends VeilidTableDB {
   }
 }
 
+// FFI implementation of VeilidCryptoSystem
+class VeilidCryptoSystemFFI implements VeilidCryptoSystem {
+  final CryptoKind _kind;
+
+  VeilidCryptoSystemFFI._(this._kind);
+
+  @override
+  CryptoKind kind() {
+    return _kind;
+  }
+
+  @override
+  Future<SharedSecret> cachedDH(PublicKey key, SecretKey secret) {}
+  @override
+  Future<SharedSecret> computeDH(PublicKey key, SecretKey secret) {}
+  @override
+  Future<Nonce> randomNonce() {}
+  @override
+  Future<SharedSecret> randomSharedSecret() {}
+  @override
+  Future<KeyPair> generateKeyPair() {}
+  @override
+  Future<HashDigest> generateHash(Uint8List data) {}
+  @override
+  Future<HashDigest> generateHashReader(Stream<List<int>> reader) {}
+  @override
+  Future<bool> validateKeyPair(PublicKey key, SecretKey secret) {}
+  @override
+  Future<bool> validateHash(Uint8List data, HashDigest hash) {}
+  @override
+  Future<bool> validateHashReader(Stream<List<int>> reader, HashDigest hash) {}
+  @override
+  Future<CryptoKeyDistance> distance(CryptoKey key1, CryptoKey key2) {}
+  @override
+  Future<Signature> sign(PublicKey key, SecretKey secret, Uint8List data) {}
+  @override
+  Future<void> verify(PublicKey key, Uint8List data, Signature signature) {}
+  @override
+  Future<int> aeadOverhead() {}
+  @override
+  Future<Uint8List> decryptAead(Uint8List body, Nonce nonce,
+      SharedSecret sharedSecret, Uint8List? associatedData) {}
+  @override
+  Future<Uint8List> encryptAead(Uint8List body, Nonce nonce,
+      SharedSecret sharedSecret, Uint8List? associatedData) {}
+  @override
+  Future<Uint8List> cryptNoAuth(
+      Uint8List body, Nonce nonce, SharedSecret sharedSecret) {}
+}
+
 // FFI implementation of high level Veilid API
 class VeilidFFI implements Veilid {
   // veilid_core shared library
@@ -1054,31 +1209,63 @@ class VeilidFFI implements Veilid {
         _tableDbTransactionDelete = dylib.lookupFunction<
             _TableDbTransactionDeleteC,
             _TableDbTransactionDeleteDart>('table_db_transaction_delete'),
-
-xxx
-  final _ValidCryptoKindsDart _validCryptoKinds;
-  final _BestCryptoKindDart _bestCryptoKind;
-  final _VerifySignaturesDart _verifySignatures;
-  final _GenerateSignaturesDart _generateSignatures;
-  final _GenerateKeyPairDart _generateKeyPair;
-
-  final _CryptoCachedDHDart _cryptoCachedDH;
-  final _CryptoComputeDHDart _cryptoComputeDH;
-  final _CryptoRandomNonceDart _cryptoRandomNonce;
-  final _CryptoRandomSharedSecretDart _cryptoRandomSharedSecret;
-  final _CryptoGenerateKeyPairDart _cryptoGenerateKeyPair;
-  final _CryptoGenerateHashDart _cryptoGenerateHash;
-  final _CryptoValidateKeyPairDart _cryptoValidateKeyPair;
-  final _CryptoValidateHashDart _cryptoValidateHash;
-  final _CryptoDistanceDart _cryptoDistance;
-  final _CryptoSignDart _cryptoSign;
-  final _CryptoVerifyDart _cryptoVerify;
-  final _CryptoAeadOverheadDart _cryptoAeadOverhead;
-  final _CryptoDecryptAeadDart _cryptoDecryptAead;
-  final _CryptoEncryptAeadDart _cryptoEncryptAead;
-  final _CryptoCryptNoAuthDart _cryptoCryptNoAuth;
-
-
+        _validCryptoKinds =
+            dylib.lookupFunction<_ValidCryptoKindsC, _ValidCryptoKindsDart>(
+                'valid_crypto_kinds'),
+        _bestCryptoKind =
+            dylib.lookupFunction<_BestCryptoKindC, _BestCryptoKindDart>(
+                'best_crypto_kind'),
+        _verifySignatures =
+            dylib.lookupFunction<_VerifySignaturesC, _VerifySignaturesDart>(
+                'verify_signatures'),
+        _generateSignatures =
+            dylib.lookupFunction<_GenerateSignaturesC, _GenerateSignaturesDart>(
+                'generate_signatures'),
+        _generateKeyPair =
+            dylib.lookupFunction<_GenerateKeyPairC, _GenerateKeyPairDart>(
+                'generate_key_pair'),
+        _cryptoCachedDH =
+            dylib.lookupFunction<_CryptoCachedDHC, _CryptoCachedDHDart>(
+                'crypto_cached_dh'),
+        _cryptoComputeDH =
+            dylib.lookupFunction<_CryptoComputeDHC, _CryptoComputeDHDart>(
+                'crypto_compute_dh'),
+        _cryptoRandomNonce =
+            dylib.lookupFunction<_CryptoRandomNonceC, _CryptoRandomNonceDart>(
+                'crypto_random_nonce'),
+        _cryptoRandomSharedSecret = dylib.lookupFunction<
+            _CryptoRandomSharedSecretC,
+            _CryptoRandomSharedSecretDart>('crypto_random_shared_secret'),
+        _cryptoGenerateKeyPair = dylib.lookupFunction<_CryptoGenerateKeyPairC,
+            _CryptoGenerateKeyPairDart>('crypto_generate_key_pair'),
+        _cryptoGenerateHash =
+            dylib.lookupFunction<_CryptoGenerateHashC, _CryptoGenerateHashDart>(
+                'crypto_generate_hash'),
+        _cryptoValidateKeyPair = dylib.lookupFunction<_CryptoValidateKeyPairC,
+            _CryptoValidateKeyPairDart>('crypto_validate_key_pair'),
+        _cryptoValidateHash =
+            dylib.lookupFunction<_CryptoValidateHashC, _CryptoValidateHashDart>(
+                'crypto_validate_hash'),
+        _cryptoDistance =
+            dylib.lookupFunction<_CryptoDistanceC, _CryptoDistanceDart>(
+                'crypto_distance'),
+        _cryptoSign =
+            dylib.lookupFunction<_CryptoSignC, _CryptoSignDart>('crypto_sign'),
+        _cryptoVerify = dylib
+            .lookupFunction<_CryptoVerifyC, _CryptoVerifyDart>('crypto_verify'),
+        _cryptoAeadOverhead =
+            dylib.lookupFunction<_CryptoAeadOverheadC, _CryptoAeadOverheadDart>(
+                'crypto_aead_overhead'),
+        _cryptoDecryptAead =
+            dylib.lookupFunction<_CryptoDecryptAeadC, _CryptoDecryptAeadDart>(
+                'crypto_decrypt_aead'),
+        _cryptoEncryptAead =
+            dylib.lookupFunction<_CryptoEncryptAeadC, _CryptoEncryptAeadDart>(
+                'crypto_encrypt_aead'),
+        _cryptoCryptNoAuth =
+            dylib.lookupFunction<_CryptoCryptNoAuthC, _CryptoCryptNoAuthDart>(
+                'crypto_crypt_no_auth'),
+        _now = dylib.lookupFunction<_NowC, _NowDart>('now'),
         _debug = dylib.lookupFunction<_DebugC, _DebugDart>('debug'),
         _veilidVersionString = dylib.lookupFunction<_VeilidVersionStringC,
             _VeilidVersionStringDart>('veilid_version_string'),
@@ -1094,9 +1281,7 @@ xxx
 
   @override
   void initializeVeilidCore(Map<String, dynamic> platformConfigJson) {
-    var nativePlatformConfig =
-        jsonEncode(platformConfigJson, toEncodable: veilidApiToEncodable)
-            .toNativeUtf8();
+    var nativePlatformConfig = jsonEncode(platformConfigJson).toNativeUtf8();
 
     _initializeVeilidCore(nativePlatformConfig);
 
@@ -1105,9 +1290,7 @@ xxx
 
   @override
   void changeLogLevel(String layer, VeilidConfigLogLevel logLevel) {
-    var nativeLogLevel =
-        jsonEncode(logLevel.json, toEncodable: veilidApiToEncodable)
-            .toNativeUtf8();
+    var nativeLogLevel = jsonEncode(logLevel).toNativeUtf8();
     var nativeLayer = layer.toNativeUtf8();
     _changeLogLevel(nativeLayer, nativeLogLevel);
     malloc.free(nativeLayer);
@@ -1116,9 +1299,7 @@ xxx
 
   @override
   Future<Stream<VeilidUpdate>> startupVeilidCore(VeilidConfig config) {
-    var nativeConfig =
-        jsonEncode(config.json, toEncodable: veilidApiToEncodable)
-            .toNativeUtf8();
+    var nativeConfig = jsonEncode(config).toNativeUtf8();
     final recvStreamPort = ReceivePort("veilid_api_stream");
     final sendStreamPort = recvStreamPort.sendPort;
     final recvPort = ReceivePort("startup_veilid_core");
@@ -1185,8 +1366,10 @@ xxx
       Stability stability, Sequencing sequencing) async {
     final recvPort = ReceivePort("new_custom_private_route");
     final sendPort = recvPort.sendPort;
-    _newCustomPrivateRoute(sendPort.nativePort, stability.json.toNativeUtf8(),
-        sequencing.json.toNativeUtf8());
+    _newCustomPrivateRoute(
+        sendPort.nativePort,
+        jsonEncode(stability).toNativeUtf8(),
+        jsonEncode(sequencing).toNativeUtf8());
     final routeBlob =
         await processFutureJson(RouteBlob.fromJson, recvPort.first);
     return routeBlob;
@@ -1240,6 +1423,48 @@ xxx
     return deleted;
   }
 
+  @override
+  List<CryptoKind> validCryptoKinds() {
+    final vckString = _validCryptoKinds();
+    final vck = jsonDecode(vckString.toDartString());
+    _freeString(vckString);
+    return vck;
+  }
+
+  @override
+  Future<VeilidCryptoSystem> getCryptoSystem(CryptoKind kind) async {
+    if (!validCryptoKinds().contains(kind)) {
+      throw VeilidAPIExceptionGeneric("unsupported cryptosystem");
+    }
+    return VeilidCryptoSystemFFI._(kind);
+  }
+
+  @override
+  Future<VeilidCryptoSystem> bestCryptoSystem() async {
+    return VeilidCryptoSystemFFI._(_bestCryptoKind());
+  }
+
+  @override
+  Future<List<TypedKey>> verifySignatures(
+      List<TypedKey> nodeIds, Uint8List data, List<TypedSignature> signatures) {
+    final nativeNodeIds = jsonEncode(nodeIds).toNativeUtf8();
+    final nativeData = base64UrlNoPadEncode(data).toNativeUtf8();
+    final nativeSignatures = jsonEncode(signatures).toNativeUtf8();
+
+    final recvPort = ReceivePort("app_call_reply");
+    final sendPort = recvPort.sendPort;
+    _verifySignatures(
+        sendPort.nativePort, nativeNodeIds, nativeData, nativeSignatures);
+    return processFutureJson(
+        jsonListConstructor<TypedKey>(TypedKey.fromJson), recvPort.first);
+  }
+xxx
+  @override
+  Future<List<TypedSignature>> generateSignatures(
+      Uint8List data, List<TypedKeyPair> keyPairs) {}
+  @override
+  Future<TypedKeyPair> generateKeyPair(CryptoKind kind) {}
+
   @override
   Future<String> debug(String command) async {
     var nativeCommand = command.toNativeUtf8();
diff --git a/veilid-flutter/lib/veilid_js.dart b/veilid-flutter/lib/veilid_js.dart
index 0125236a..3cc9efc1 100644
--- a/veilid-flutter/lib/veilid_js.dart
+++ b/veilid-flutter/lib/veilid_js.dart
@@ -25,10 +25,10 @@ class VeilidWASMConfigLoggingPerformance {
     required this.logsInConsole,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'enabled': enabled,
-      'level': level.json,
+      'level': level.toJson(),
       'logs_in_timings': logsInTimings,
       'logs_in_console': logsInConsole,
     };
@@ -50,10 +50,10 @@ class VeilidWASMConfigLoggingApi {
     required this.level,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'enabled': enabled,
-      'level': level.json,
+      'level': level.toJson(),
     };
   }
 
@@ -68,10 +68,10 @@ class VeilidWASMConfigLogging {
 
   VeilidWASMConfigLogging({required this.performance, required this.api});
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
-      'performance': performance.json,
-      'api': api.json,
+      'performance': performance.toJson(),
+      'api': api.toJson(),
     };
   }
 
@@ -88,9 +88,9 @@ class VeilidWASMConfig {
     required this.logging,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
-      'logging': logging.json,
+      'logging': logging.toJson(),
     };
   }
 
@@ -137,15 +137,17 @@ class VeilidRoutingContextJS implements VeilidRoutingContext {
   @override
   VeilidRoutingContextJS withCustomPrivacy(Stability stability) {
     final newId = js_util.callMethod(
-        wasm, "routing_context_with_custom_privacy", [_ctx.id, stability.json]);
+        wasm,
+        "routing_context_with_custom_privacy",
+        [_ctx.id, jsonEncode(stability)]);
 
     return VeilidRoutingContextJS._(_Ctx(newId, _ctx.js));
   }
 
   @override
   VeilidRoutingContextJS withSequencing(Sequencing sequencing) {
-    final newId = js_util.callMethod(
-        wasm, "routing_context_with_sequencing", [_ctx.id, sequencing.json]);
+    final newId = js_util.callMethod(wasm, "routing_context_with_sequencing",
+        [_ctx.id, jsonEncode(sequencing)]);
     return VeilidRoutingContextJS._(_Ctx(newId, _ctx.js));
   }
 
@@ -292,16 +294,14 @@ class VeilidTableDBJS extends VeilidTableDB {
 class VeilidJS implements Veilid {
   @override
   void initializeVeilidCore(Map<String, dynamic> platformConfigJson) {
-    var platformConfigJsonString =
-        jsonEncode(platformConfigJson, toEncodable: veilidApiToEncodable);
+    var platformConfigJsonString = jsonEncode(platformConfigJson);
     js_util
         .callMethod(wasm, "initialize_veilid_core", [platformConfigJsonString]);
   }
 
   @override
   void changeLogLevel(String layer, VeilidConfigLogLevel logLevel) {
-    var logLevelJsonString =
-        jsonEncode(logLevel.json, toEncodable: veilidApiToEncodable);
+    var logLevelJsonString = jsonEncode(logLevel);
     js_util.callMethod(wasm, "change_log_level", [layer, logLevelJsonString]);
   }
 
@@ -318,10 +318,8 @@ class VeilidJS implements Veilid {
       }
     }
 
-    await _wrapApiPromise(js_util.callMethod(wasm, "startup_veilid_core", [
-      js.allowInterop(updateCallback),
-      jsonEncode(config.json, toEncodable: veilidApiToEncodable)
-    ]));
+    await _wrapApiPromise(js_util.callMethod(wasm, "startup_veilid_core",
+        [js.allowInterop(updateCallback), jsonEncode(config)]));
 
     return streamController.stream;
   }
@@ -365,10 +363,8 @@ class VeilidJS implements Veilid {
   @override
   Future<RouteBlob> newCustomPrivateRoute(
       Stability stability, Sequencing sequencing) async {
-    var stabilityString =
-        jsonEncode(stability, toEncodable: veilidApiToEncodable);
-    var sequencingString =
-        jsonEncode(sequencing, toEncodable: veilidApiToEncodable);
+    var stabilityString = jsonEncode(stability);
+    var sequencingString = jsonEncode(sequencing);
 
     Map<String, dynamic> blobJson = jsonDecode(await _wrapApiPromise(js_util
         .callMethod(
diff --git a/veilid-flutter/lib/veilid_state.dart b/veilid-flutter/lib/veilid_state.dart
index a1248f3f..39142d20 100644
--- a/veilid-flutter/lib/veilid_state.dart
+++ b/veilid-flutter/lib/veilid_state.dart
@@ -20,7 +20,7 @@ enum AttachmentState {
 }
 
 extension AttachmentStateExt on AttachmentState {
-  String get json {
+  String toJson() {
     return name.toPascalCase();
   }
 }
@@ -41,7 +41,7 @@ enum VeilidLogLevel {
 }
 
 extension VeilidLogLevelExt on VeilidLogLevel {
-  String get json {
+  String toJson() {
     return name.toPascalCase();
   }
 }
@@ -63,11 +63,11 @@ class LatencyStats {
     required this.slowest,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
-      'fastest': fastest.json,
-      'average': average.json,
-      'slowest': slowest.json,
+      'fastest': fastest.toJson(),
+      'average': average.toJson(),
+      'slowest': slowest.toJson(),
     };
   }
 
@@ -92,7 +92,7 @@ class TransferStats {
     required this.minimum,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'total': total.toString(),
       'maximum': maximum.toString(),
@@ -119,10 +119,10 @@ class TransferStatsDownUp {
     required this.up,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
-      'down': down.json,
-      'up': up.json,
+      'down': down.toJson(),
+      'up': up.toJson(),
     };
   }
 
@@ -154,14 +154,14 @@ class RPCStats {
     required this.failedToSend,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'messages_sent': messagesSent,
       'messages_rcvd': messagesRcvd,
       'questions_in_flight': questionsInFlight,
-      'last_question': lastQuestion?.json,
-      'last_seen_ts': lastSeenTs?.json,
-      'first_consecutive_seen_ts': firstConsecutiveSeenTs?.json,
+      'last_question': lastQuestion?.toJson(),
+      'last_seen_ts': lastSeenTs?.toJson(),
+      'first_consecutive_seen_ts': firstConsecutiveSeenTs?.toJson(),
       'recent_lost_answers': recentLostAnswers,
       'failed_to_send': failedToSend,
     };
@@ -199,12 +199,12 @@ class PeerStats {
     required this.transfer,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
-      'time_added': timeAdded.json,
-      'rpc_stats': rpcStats.json,
-      'latency': latency?.json,
-      'transfer': transfer.json,
+      'time_added': timeAdded.toJson(),
+      'rpc_stats': rpcStats.toJson(),
+      'latency': latency?.toJson(),
+      'transfer': transfer.toJson(),
     };
   }
 
@@ -230,11 +230,11 @@ class PeerTableData {
     required this.peerStats,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
-      'node_ids': nodeIds.map((p) => p.json).toList(),
-      'peer_address': peerAddress.json,
-      'peer_stats': peerStats.json,
+      'node_ids': nodeIds.map((p) => p.toJson()).toList(),
+      'peer_address': peerAddress.toJson(),
+      'peer_stats': peerStats.toJson(),
     };
   }
 
@@ -256,7 +256,7 @@ enum ProtocolType {
 }
 
 extension ProtocolTypeExt on ProtocolType {
-  String get json {
+  String toJson() {
     return name.toUpperCase();
   }
 }
@@ -276,9 +276,9 @@ class PeerAddress {
     required this.socketAddress,
   });
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
-      'protocol_type': protocolType.json,
+      'protocol_type': protocolType.toJson(),
       'socket_address': socketAddress,
     };
   }
@@ -347,7 +347,7 @@ abstract class VeilidUpdate {
         }
     }
   }
-  Map<String, dynamic> get json;
+  Map<String, dynamic> toJson();
 }
 
 class VeilidLog implements VeilidUpdate {
@@ -362,10 +362,10 @@ class VeilidLog implements VeilidUpdate {
   });
 
   @override
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'kind': "Log",
-      'log_level': logLevel.json,
+      'log_level': logLevel.toJson(),
       'message': message,
       'backtrace': backtrace
     };
@@ -383,7 +383,7 @@ class VeilidAppMessage implements VeilidUpdate {
   });
 
   @override
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'kind': "AppMessage",
       'sender': sender,
@@ -405,7 +405,7 @@ class VeilidAppCall implements VeilidUpdate {
   });
 
   @override
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'kind': "AppMessage",
       'sender': sender,
@@ -421,8 +421,8 @@ class VeilidUpdateAttachment implements VeilidUpdate {
   VeilidUpdateAttachment({required this.state});
 
   @override
-  Map<String, dynamic> get json {
-    var jsonRep = state.json;
+  Map<String, dynamic> toJson() {
+    var jsonRep = state.toJson();
     jsonRep['kind'] = "Attachment";
     return jsonRep;
   }
@@ -434,8 +434,8 @@ class VeilidUpdateNetwork implements VeilidUpdate {
   VeilidUpdateNetwork({required this.state});
 
   @override
-  Map<String, dynamic> get json {
-    var jsonRep = state.json;
+  Map<String, dynamic> toJson() {
+    var jsonRep = state.toJson();
     jsonRep['kind'] = "Network";
     return jsonRep;
   }
@@ -447,8 +447,8 @@ class VeilidUpdateConfig implements VeilidUpdate {
   VeilidUpdateConfig({required this.state});
 
   @override
-  Map<String, dynamic> get json {
-    var jsonRep = state.json;
+  Map<String, dynamic> toJson() {
+    var jsonRep = state.toJson();
     jsonRep['kind'] = "Config";
     return jsonRep;
   }
@@ -464,7 +464,7 @@ class VeilidUpdateRouteChange implements VeilidUpdate {
   });
 
   @override
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'dead_routes': deadRoutes.map((p) => p).toList(),
       'dead_remote_routes': deadRemoteRoutes.map((p) => p).toList()
@@ -487,12 +487,12 @@ class VeilidUpdateValueChange implements VeilidUpdate {
   });
 
   @override
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
-      'key': key.json,
-      'subkeys': subkeys.map((p) => p.json).toList(),
+      'key': key.toJson(),
+      'subkeys': subkeys.map((p) => p.toJson()).toList(),
       'count': count,
-      'value_data': valueData.json,
+      'value_data': valueData.toJson(),
     };
   }
 }
@@ -513,9 +513,9 @@ class VeilidStateAttachment {
         publicInternetReady = json['public_internet_ready'],
         localNetworkReady = json['local_network_ready'];
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
-      'state': state.json,
+      'state': state.toJson(),
       'public_internet_ready': publicInternetReady,
       'local_network_ready': localNetworkReady,
     };
@@ -544,12 +544,12 @@ class VeilidStateNetwork {
         peers = List<PeerTableData>.from(
             json['peers'].map((j) => PeerTableData.fromJson(j)));
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
       'started': started,
       'bps_down': bpsDown.toString(),
       'bps_up': bpsUp.toString(),
-      'peers': peers.map((p) => p.json).toList(),
+      'peers': peers.map((p) => p.toJson()).toList(),
     };
   }
 }
@@ -566,7 +566,7 @@ class VeilidStateConfig {
 
   VeilidStateConfig.fromJson(dynamic json) : config = json['config'];
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {'config': config};
   }
 }
@@ -584,11 +584,11 @@ class VeilidState {
         network = VeilidStateNetwork.fromJson(json['network']),
         config = VeilidStateConfig.fromJson(json['config']);
 
-  Map<String, dynamic> get json {
+  Map<String, dynamic> toJson() {
     return {
-      'attachment': attachment.json,
-      'network': network.json,
-      'config': config.json
+      'attachment': attachment.toJson(),
+      'network': network.toJson(),
+      'config': config.toJson()
     };
   }
 }
diff --git a/veilid-flutter/rust/src/dart_ffi.rs b/veilid-flutter/rust/src/dart_ffi.rs
index 3f341912..cd44552d 100644
--- a/veilid-flutter/rust/src/dart_ffi.rs
+++ b/veilid-flutter/rust/src/dart_ffi.rs
@@ -606,10 +606,10 @@ pub extern "C" fn routing_context_set_dht_value(port: i64, id: u32, key: FfiStr,
 
 
 #[no_mangle]
-pub extern "C" fn routing_context_watch_dht_values(port: i64, id: u32, key: FfiStr, subkeys: FfiStr, expiration: FfiStr, count: u32) {
+pub extern "C" fn routing_context_watch_dht_values(port: i64, id: u32, key: FfiStr, subkeys: FfiStr, expiration: u64, count: u32) {
     let key: veilid_core::TypedKey = veilid_core::deserialize_opt_json(key.into_opt_string()).unwrap();
     let subkeys: veilid_core::ValueSubkeyRangeSet = veilid_core::deserialize_opt_json(subkeys.into_opt_string()).unwrap();
-    let expiration = veilid_core::Timestamp::from_str(expiration.as_opt_str().unwrap()).unwrap();
+    let expiration = veilid_core::Timestamp::from(expiration);
 
     DartIsolateWrapper::new(port).spawn_result(async move {        
         let routing_context = {
@@ -620,7 +620,7 @@ pub extern "C" fn routing_context_watch_dht_values(port: i64, id: u32, key: FfiS
             routing_context.clone()
         };
         let res = routing_context.watch_dht_values(key, subkeys, expiration, count).await?;
-        APIResult::Ok(res.to_string())
+        APIResult::Ok(res.as_u64())
     });
 }
 

From 46e67d7b0cf04bebe6d04595723ea34a56f692d1 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Mon, 15 May 2023 21:20:54 -0400
Subject: [PATCH 34/74] wasm work

---
 Cargo.lock                                   |   3 +-
 veilid-cli/src/peers_table_view.rs           |   2 +-
 veilid-core/Cargo.toml                       |   2 +-
 veilid-core/src/intf/wasm/protected_store.rs |   5 +-
 veilid-flutter/lib/veilid_config.dart        | 202 ++++++
 veilid-flutter/lib/veilid_crypto.dart        |   4 +-
 veilid-flutter/lib/veilid_ffi.dart           | 336 +++++-----
 veilid-flutter/lib/veilid_js.dart            |  89 ---
 veilid-flutter/rust/src/dart_ffi.rs          |   2 +-
 veilid-wasm/src/lib.rs                       | 619 ++++++++++++++++++-
 10 files changed, 1016 insertions(+), 248 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index db294371..31c87f8f 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -4254,8 +4254,7 @@ dependencies = [
 [[package]]
 name = "range-set-blaze"
 version = "0.1.4"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e139f0c5edf89edb65753e67eaf8e6031de21ea59f84cb63e0cfb36aaf80e6d0"
+source = "git+https://github.com/crioux/range-set-blaze.git#102c239382a8c79414dcf1257923ac2fe4772342"
 dependencies = [
  "gen_ops",
  "itertools",
diff --git a/veilid-cli/src/peers_table_view.rs b/veilid-cli/src/peers_table_view.rs
index e81a7e86..ff328476 100644
--- a/veilid-cli/src/peers_table_view.rs
+++ b/veilid-cli/src/peers_table_view.rs
@@ -53,7 +53,7 @@ impl TableViewItem<PeerTableColumn> for PeerTableData {
             PeerTableColumn::NodeId => self
                 .node_ids
                 .first()
-                .cloned()
+                .map(|n| n.to_string())
                 .unwrap_or_else(|| "???".to_owned()),
             PeerTableColumn::Address => self.peer_address.clone(),
             PeerTableColumn::LatencyAvg => format!(
diff --git a/veilid-core/Cargo.toml b/veilid-core/Cargo.toml
index 8df5b347..29d0ea05 100644
--- a/veilid-core/Cargo.toml
+++ b/veilid-core/Cargo.toml
@@ -69,7 +69,7 @@ keyvaluedb = { path = "../external/keyvaluedb/keyvaluedb" }
 rkyv = { version = "^0", default_features = false, features = ["std", "alloc", "strict", "size_32", "validation"] }
 data-encoding = { version = "^2" }
 weak-table = "0.3.2"
-range-set-blaze = "0.1.4"
+range-set-blaze = { git = "https://github.com/crioux/range-set-blaze.git" } # "0.1.4" xxx replace with git repo
 
 # Dependencies for native builds only
 # Linux, Windows, Mac, iOS, Android
diff --git a/veilid-core/src/intf/wasm/protected_store.rs b/veilid-core/src/intf/wasm/protected_store.rs
index 842de5ab..126d2b7c 100644
--- a/veilid-core/src/intf/wasm/protected_store.rs
+++ b/veilid-core/src/intf/wasm/protected_store.rs
@@ -136,7 +136,7 @@ impl ProtectedStore {
     pub async fn save_user_secret_rkyv<K, T>(&self, key: K, value: &T) -> EyreResult<bool>
     where
         K: AsRef<str> + fmt::Debug,
-        T: RkyvSerialize<rkyv::ser::serializers::AllocSerializer<1024>>,
+        T: RkyvSerialize<DefaultVeilidRkyvSerializer>,
     {
         let v = to_rkyv(value)?;
         self.save_user_secret(key, &v).await
@@ -159,8 +159,7 @@ impl ProtectedStore {
         T: RkyvArchive,
         <T as RkyvArchive>::Archived:
             for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
-        <T as RkyvArchive>::Archived:
-            RkyvDeserialize<T, rkyv::de::deserializers::SharedDeserializeMap>,
+        <T as RkyvArchive>::Archived: RkyvDeserialize<T, VeilidSharedDeserializeMap>,
     {
         let out = self.load_user_secret(key).await?;
         let b = match out {
diff --git a/veilid-flutter/lib/veilid_config.dart b/veilid-flutter/lib/veilid_config.dart
index 176fe2b3..de814df1 100644
--- a/veilid-flutter/lib/veilid_config.dart
+++ b/veilid-flutter/lib/veilid_config.dart
@@ -7,6 +7,119 @@ import 'package:change_case/change_case.dart';
 import 'veilid_encoding.dart';
 import 'veilid.dart';
 
+//////////////////////////////////////////////////////////
+// FFI Platform-specific config
+
+class VeilidFFIConfigLoggingTerminal {
+  bool enabled;
+  VeilidConfigLogLevel level;
+
+  VeilidFFIConfigLoggingTerminal({
+    required this.enabled,
+    required this.level,
+  });
+
+  Map<String, dynamic> toJson() {
+    return {
+      'enabled': enabled,
+      'level': level.toJson(),
+    };
+  }
+
+  VeilidFFIConfigLoggingTerminal.fromJson(dynamic json)
+      : enabled = json['enabled'],
+        level = veilidConfigLogLevelFromJson(json['level']);
+}
+
+class VeilidFFIConfigLoggingOtlp {
+  bool enabled;
+  VeilidConfigLogLevel level;
+  String grpcEndpoint;
+  String serviceName;
+
+  VeilidFFIConfigLoggingOtlp({
+    required this.enabled,
+    required this.level,
+    required this.grpcEndpoint,
+    required this.serviceName,
+  });
+
+  Map<String, dynamic> toJson() {
+    return {
+      'enabled': enabled,
+      'level': level.toJson(),
+      'grpc_endpoint': grpcEndpoint,
+      'service_name': serviceName,
+    };
+  }
+
+  VeilidFFIConfigLoggingOtlp.fromJson(dynamic json)
+      : enabled = json['enabled'],
+        level = veilidConfigLogLevelFromJson(json['level']),
+        grpcEndpoint = json['grpc_endpoint'],
+        serviceName = json['service_name'];
+}
+
+class VeilidFFIConfigLoggingApi {
+  bool enabled;
+  VeilidConfigLogLevel level;
+
+  VeilidFFIConfigLoggingApi({
+    required this.enabled,
+    required this.level,
+  });
+
+  Map<String, dynamic> toJson() {
+    return {
+      'enabled': enabled,
+      'level': level.toJson(),
+    };
+  }
+
+  VeilidFFIConfigLoggingApi.fromJson(dynamic json)
+      : enabled = json['enabled'],
+        level = veilidConfigLogLevelFromJson(json['level']);
+}
+
+class VeilidFFIConfigLogging {
+  VeilidFFIConfigLoggingTerminal terminal;
+  VeilidFFIConfigLoggingOtlp otlp;
+  VeilidFFIConfigLoggingApi api;
+
+  VeilidFFIConfigLogging(
+      {required this.terminal, required this.otlp, required this.api});
+
+  Map<String, dynamic> toJson() {
+    return {
+      'terminal': terminal.toJson(),
+      'otlp': otlp.toJson(),
+      'api': api.toJson(),
+    };
+  }
+
+  VeilidFFIConfigLogging.fromJson(dynamic json)
+      : terminal = VeilidFFIConfigLoggingTerminal.fromJson(json['terminal']),
+        otlp = VeilidFFIConfigLoggingOtlp.fromJson(json['otlp']),
+        api = VeilidFFIConfigLoggingApi.fromJson(json['api']);
+}
+
+class VeilidFFIConfig {
+  VeilidFFIConfigLogging logging;
+
+  VeilidFFIConfig({
+    required this.logging,
+  });
+
+  Map<String, dynamic> toJson() {
+    return {
+      'logging': logging.toJson(),
+    };
+  }
+
+  VeilidFFIConfig.fromJson(Map<String, dynamic> json)
+      : logging = VeilidFFIConfigLogging.fromJson(json['logging']);
+}
+
 //////////////////////////////////////
 /// VeilidConfigLogLevel
 
@@ -29,6 +142,95 @@ VeilidConfigLogLevel veilidConfigLogLevelFromJson(String j) {
   return VeilidConfigLogLevel.values.byName(j.toCamelCase());
 }
 
+//////////////////////////////////////////////////////////
+// WASM Platform-specific config
+
+class VeilidWASMConfigLoggingPerformance {
+  bool enabled;
+  VeilidConfigLogLevel level;
+  bool logsInTimings;
+  bool logsInConsole;
+
+  VeilidWASMConfigLoggingPerformance({
+    required this.enabled,
+    required this.level,
+    required this.logsInTimings,
+    required this.logsInConsole,
+  });
+
+  Map<String, dynamic> toJson() {
+    return {
+      'enabled': enabled,
+      'level': level.toJson(),
+      'logs_in_timings': logsInTimings,
+      'logs_in_console': logsInConsole,
+    };
+  }
+
+  VeilidWASMConfigLoggingPerformance.fromJson(dynamic json)
+      : enabled = json['enabled'],
+        level = veilidConfigLogLevelFromJson(json['level']),
+        logsInTimings = json['logs_in_timings'],
+        logsInConsole = json['logs_in_console'];
+}
+
+class VeilidWASMConfigLoggingApi {
+  bool enabled;
+  VeilidConfigLogLevel level;
+
+  VeilidWASMConfigLoggingApi({
+    required this.enabled,
+    required this.level,
+  });
+
+  Map<String, dynamic> toJson() {
+    return {
+      'enabled': enabled,
+      'level': level.toJson(),
+    };
+  }
+
+  VeilidWASMConfigLoggingApi.fromJson(dynamic json)
+      : enabled = json['enabled'],
+        level = veilidConfigLogLevelFromJson(json['level']);
+}
+
+class VeilidWASMConfigLogging {
+  VeilidWASMConfigLoggingPerformance performance;
+  VeilidWASMConfigLoggingApi api;
+
+  VeilidWASMConfigLogging({required this.performance, required this.api});
+
+  Map<String, dynamic> toJson() {
+    return {
+      'performance': performance.toJson(),
+      'api': api.toJson(),
+    };
+  }
+
+  VeilidWASMConfigLogging.fromJson(dynamic json)
+      : performance =
+            VeilidWASMConfigLoggingPerformance.fromJson(json['performance']),
+        api = VeilidWASMConfigLoggingApi.fromJson(json['api']);
+}
+
+class VeilidWASMConfig {
+  VeilidWASMConfigLogging logging;
+
+  VeilidWASMConfig({
+    required this.logging,
+  });
+
+  Map<String, dynamic> toJson() {
+    return {
+      'logging': logging.toJson(),
+    };
+  }
+
+  VeilidWASMConfig.fromJson(dynamic json)
+      : logging = VeilidWASMConfigLogging.fromJson(json['logging']);
+}
+
 //////////////////////////////////////
 /// VeilidConfig
 
diff --git a/veilid-flutter/lib/veilid_crypto.dart b/veilid-flutter/lib/veilid_crypto.dart
index 9f90ed39..f11f0ac9 100644
--- a/veilid-flutter/lib/veilid_crypto.dart
+++ b/veilid-flutter/lib/veilid_crypto.dart
@@ -145,10 +145,10 @@ abstract class VeilidCryptoSystem {
   Future<SharedSecret> randomSharedSecret();
   Future<KeyPair> generateKeyPair();
   Future<HashDigest> generateHash(Uint8List data);
-  Future<HashDigest> generateHashReader(Stream<List<int>> reader);
+  //Future<HashDigest> generateHashReader(Stream<List<int>> reader);
   Future<bool> validateKeyPair(PublicKey key, SecretKey secret);
   Future<bool> validateHash(Uint8List data, HashDigest hash);
-  Future<bool> validateHashReader(Stream<List<int>> reader, HashDigest hash);
+  //Future<bool> validateHashReader(Stream<List<int>> reader, HashDigest hash);
   Future<CryptoKeyDistance> distance(CryptoKey key1, CryptoKey key2);
   Future<Signature> sign(PublicKey key, SecretKey secret, Uint8List data);
   Future<void> verify(PublicKey key, Uint8List data, Signature signature);
diff --git a/veilid-flutter/lib/veilid_ffi.dart b/veilid-flutter/lib/veilid_ffi.dart
index 1ad56fa4..4bce79b2 100644
--- a/veilid-flutter/lib/veilid_ffi.dart
+++ b/veilid-flutter/lib/veilid_ffi.dart
@@ -10,119 +10,6 @@ import 'package:ffi/ffi.dart';
 import 'veilid.dart';
 import 'veilid_encoding.dart';
 
-//////////////////////////////////////////////////////////
-// FFI Platform-specific config
-
-class VeilidFFIConfigLoggingTerminal {
-  bool enabled;
-  VeilidConfigLogLevel level;
-
-  VeilidFFIConfigLoggingTerminal({
-    required this.enabled,
-    required this.level,
-  });
-
-  Map<String, dynamic> toJson() {
-    return {
-      'enabled': enabled,
-      'level': level.toJson(),
-    };
-  }
-
-  VeilidFFIConfigLoggingTerminal.fromJson(dynamic json)
-      : enabled = json['enabled'],
-        level = veilidConfigLogLevelFromJson(json['level']);
-}
-
-class VeilidFFIConfigLoggingOtlp {
-  bool enabled;
-  VeilidConfigLogLevel level;
-  String grpcEndpoint;
-  String serviceName;
-
-  VeilidFFIConfigLoggingOtlp({
-    required this.enabled,
-    required this.level,
-    required this.grpcEndpoint,
-    required this.serviceName,
-  });
-
-  Map<String, dynamic> toJson() {
-    return {
-      'enabled': enabled,
-      'level': level.toJson(),
-      'grpc_endpoint': grpcEndpoint,
-      'service_name': serviceName,
-    };
-  }
-
-  VeilidFFIConfigLoggingOtlp.fromJson(dynamic json)
-      : enabled = json['enabled'],
-        level = veilidConfigLogLevelFromJson(json['level']),
-        grpcEndpoint = json['grpc_endpoint'],
-        serviceName = json['service_name'];
-}
-
-class VeilidFFIConfigLoggingApi {
-  bool enabled;
-  VeilidConfigLogLevel level;
-
-  VeilidFFIConfigLoggingApi({
-    required this.enabled,
-    required this.level,
-  });
-
-  Map<String, dynamic> toJson() {
-    return {
-      'enabled': enabled,
-      'level': level.toJson(),
-    };
-  }
-
-  VeilidFFIConfigLoggingApi.fromJson(dynamic json)
-      : enabled = json['enabled'],
-        level = veilidConfigLogLevelFromJson(json['level']);
-}
-
-class VeilidFFIConfigLogging {
-  VeilidFFIConfigLoggingTerminal terminal;
-  VeilidFFIConfigLoggingOtlp otlp;
-  VeilidFFIConfigLoggingApi api;
-
-  VeilidFFIConfigLogging(
-      {required this.terminal, required this.otlp, required this.api});
-
-  Map<String, dynamic> toJson() {
-    return {
-      'terminal': terminal.toJson(),
-      'otlp': otlp.toJson(),
-      'api': api.toJson(),
-    };
-  }
-
-  VeilidFFIConfigLogging.fromJson(dynamic json)
-      : terminal = VeilidFFIConfigLoggingTerminal.fromJson(json['terminal']),
-        otlp = VeilidFFIConfigLoggingOtlp.fromJson(json['otlp']),
-        api = VeilidFFIConfigLoggingApi.fromJson(json['api']);
-}
-
-class VeilidFFIConfig {
-  VeilidFFIConfigLogging logging;
-
-  VeilidFFIConfig({
-    required this.logging,
-  });
-
-  Map<String, dynamic> toJson() {
-    return {
-      'logging': logging.toJson(),
-    };
-  }
-
-  VeilidFFIConfig.fromJson(Map<String, dynamic> json)
-      : logging = VeilidFFIConfigLogging.fromJson(json['logging']);
-}
-
 //////////////////////////////////////////////////////////
 
 // Load the veilid_flutter library once
@@ -961,8 +848,9 @@ class VeilidTableDBFFI extends VeilidTableDB {
 // FFI implementation of VeilidCryptoSystem
 class VeilidCryptoSystemFFI implements VeilidCryptoSystem {
   final CryptoKind _kind;
+  VeilidFFI _ffi;
 
-  VeilidCryptoSystemFFI._(this._kind);
+  VeilidCryptoSystemFFI._(this._ffi, this._kind);
 
   @override
   CryptoKind kind() {
@@ -970,42 +858,183 @@ class VeilidCryptoSystemFFI implements VeilidCryptoSystem {
   }
 
   @override
-  Future<SharedSecret> cachedDH(PublicKey key, SecretKey secret) {}
+  Future<SharedSecret> cachedDH(PublicKey key, SecretKey secret) {
+    final nativeKey = jsonEncode(key).toNativeUtf8();
+    final nativeSecret = jsonEncode(secret).toNativeUtf8();
+
+    final recvPort = ReceivePort("crypto_cached_dh");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoCachedDH(sendPort.nativePort, _kind, nativeKey, nativeSecret);
+    return processFutureJson(SharedSecret.fromJson, recvPort.first);
+  }
+
   @override
-  Future<SharedSecret> computeDH(PublicKey key, SecretKey secret) {}
+  Future<SharedSecret> computeDH(PublicKey key, SecretKey secret) {
+    final nativeKey = jsonEncode(key).toNativeUtf8();
+    final nativeSecret = jsonEncode(secret).toNativeUtf8();
+
+    final recvPort = ReceivePort("crypto_compute_dh");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoComputeDH(sendPort.nativePort, _kind, nativeKey, nativeSecret);
+    return processFutureJson(SharedSecret.fromJson, recvPort.first);
+  }
+
   @override
-  Future<Nonce> randomNonce() {}
+  Future<Nonce> randomNonce() {
+    final recvPort = ReceivePort("crypto_random_nonce");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoRandomNonce(sendPort.nativePort, _kind);
+    return processFutureJson(Nonce.fromJson, recvPort.first);
+  }
+
   @override
-  Future<SharedSecret> randomSharedSecret() {}
+  Future<SharedSecret> randomSharedSecret() {
+    final recvPort = ReceivePort("crypto_random_shared_secret");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoRandomSharedSecret(sendPort.nativePort, _kind);
+    return processFutureJson(SharedSecret.fromJson, recvPort.first);
+  }
+
   @override
-  Future<KeyPair> generateKeyPair() {}
+  Future<KeyPair> generateKeyPair() {
+    final recvPort = ReceivePort("crypto_generate_key_pair");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoGenerateKeyPair(sendPort.nativePort, _kind);
+    return processFutureJson(KeyPair.fromJson, recvPort.first);
+  }
+
   @override
-  Future<HashDigest> generateHash(Uint8List data) {}
+  Future<HashDigest> generateHash(Uint8List data) {
+    final nativeEncodedData = base64UrlNoPadEncode(data).toNativeUtf8();
+
+    final recvPort = ReceivePort("crypto_generate_hash");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoGenerateHash(sendPort.nativePort, _kind, nativeEncodedData);
+    return processFutureJson(HashDigest.fromJson, recvPort.first);
+  }
+
   @override
-  Future<HashDigest> generateHashReader(Stream<List<int>> reader) {}
+  Future<bool> validateKeyPair(PublicKey key, SecretKey secret) {
+    final nativeKey = jsonEncode(key).toNativeUtf8();
+    final nativeSecret = jsonEncode(secret).toNativeUtf8();
+
+    final recvPort = ReceivePort("crypto_validate_key_pair");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoValidateKeyPair(
+        sendPort.nativePort, _kind, nativeKey, nativeSecret);
+    return processFuturePlain(recvPort.first);
+  }
+
   @override
-  Future<bool> validateKeyPair(PublicKey key, SecretKey secret) {}
+  Future<bool> validateHash(Uint8List data, HashDigest hash) {
+    final nativeEncodedData = base64UrlNoPadEncode(data).toNativeUtf8();
+    final nativeHash = jsonEncode(hash).toNativeUtf8();
+
+    final recvPort = ReceivePort("crypto_validate_hash");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoValidateHash(
+        sendPort.nativePort, _kind, nativeEncodedData, nativeHash);
+    return processFuturePlain(recvPort.first);
+  }
+
   @override
-  Future<bool> validateHash(Uint8List data, HashDigest hash) {}
+  Future<CryptoKeyDistance> distance(CryptoKey key1, CryptoKey key2) {
+    final nativeKey1 = jsonEncode(key1).toNativeUtf8();
+    final nativeKey2 = jsonEncode(key2).toNativeUtf8();
+
+    final recvPort = ReceivePort("crypto_distance");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoDistance(sendPort.nativePort, _kind, nativeKey1, nativeKey2);
+    return processFutureJson(CryptoKeyDistance.fromJson, recvPort.first);
+  }
+
   @override
-  Future<bool> validateHashReader(Stream<List<int>> reader, HashDigest hash) {}
+  Future<Signature> sign(PublicKey key, SecretKey secret, Uint8List data) {
+    final nativeKey = jsonEncode(key).toNativeUtf8();
+    final nativeSecret = jsonEncode(secret).toNativeUtf8();
+    final nativeEncodedData = base64UrlNoPadEncode(data).toNativeUtf8();
+
+    final recvPort = ReceivePort("crypto_sign");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoSign(
+        sendPort.nativePort, _kind, nativeKey, nativeSecret, nativeEncodedData);
+    return processFutureJson(Signature.fromJson, recvPort.first);
+  }
+
   @override
-  Future<CryptoKeyDistance> distance(CryptoKey key1, CryptoKey key2) {}
+  Future<void> verify(PublicKey key, Uint8List data, Signature signature) {
+    final nativeKey = jsonEncode(key).toNativeUtf8();
+    final nativeEncodedData = base64UrlNoPadEncode(data).toNativeUtf8();
+    final nativeSignature = jsonEncode(signature).toNativeUtf8();
+
+    final recvPort = ReceivePort("crypto_sign");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoSign(sendPort.nativePort, _kind, nativeKey, nativeEncodedData,
+        nativeSignature);
+    return processFutureVoid(recvPort.first);
+  }
+
   @override
-  Future<Signature> sign(PublicKey key, SecretKey secret, Uint8List data) {}
-  @override
-  Future<void> verify(PublicKey key, Uint8List data, Signature signature) {}
-  @override
-  Future<int> aeadOverhead() {}
+  Future<int> aeadOverhead() {
+    final recvPort = ReceivePort("crypto_aead_overhead");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoAeadOverhead(
+      sendPort.nativePort,
+      _kind,
+    );
+    return processFuturePlain(recvPort.first);
+  }
+
   @override
   Future<Uint8List> decryptAead(Uint8List body, Nonce nonce,
-      SharedSecret sharedSecret, Uint8List? associatedData) {}
+      SharedSecret sharedSecret, Uint8List? associatedData) async {
+    final nativeEncodedBody = base64UrlNoPadEncode(body).toNativeUtf8();
+    final nativeNonce = jsonEncode(nonce).toNativeUtf8();
+    final nativeSharedSecret = jsonEncode(sharedSecret).toNativeUtf8();
+    final nativeSignature = (associatedData != null)
+        ? jsonEncode(associatedData).toNativeUtf8()
+        : nullptr;
+
+    final recvPort = ReceivePort("crypto_decrypt_aead");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoDecryptAead(sendPort.nativePort, _kind, nativeEncodedBody,
+        nativeNonce, nativeSharedSecret, nativeSignature);
+    final out = await processFuturePlain(recvPort.first);
+    return base64UrlNoPadDecode(out);
+  }
+
   @override
   Future<Uint8List> encryptAead(Uint8List body, Nonce nonce,
-      SharedSecret sharedSecret, Uint8List? associatedData) {}
+      SharedSecret sharedSecret, Uint8List? associatedData) async {
+    final nativeEncodedBody = base64UrlNoPadEncode(body).toNativeUtf8();
+    final nativeNonce = jsonEncode(nonce).toNativeUtf8();
+    final nativeSharedSecret = jsonEncode(sharedSecret).toNativeUtf8();
+    final nativeSignature = (associatedData != null)
+        ? jsonEncode(associatedData).toNativeUtf8()
+        : nullptr;
+
+    final recvPort = ReceivePort("crypto_encrypt_aead");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoEncryptAead(sendPort.nativePort, _kind, nativeEncodedBody,
+        nativeNonce, nativeSharedSecret, nativeSignature);
+    final out = await processFuturePlain(recvPort.first);
+    return base64UrlNoPadDecode(out);
+  }
+
   @override
   Future<Uint8List> cryptNoAuth(
-      Uint8List body, Nonce nonce, SharedSecret sharedSecret) {}
+      Uint8List body, Nonce nonce, SharedSecret sharedSecret) async {
+    final nativeEncodedBody = base64UrlNoPadEncode(body).toNativeUtf8();
+    final nativeNonce = jsonEncode(nonce).toNativeUtf8();
+    final nativeSharedSecret = jsonEncode(sharedSecret).toNativeUtf8();
+
+    final recvPort = ReceivePort("crypto_crypt_no_auth");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoCryptNoAuth(sendPort.nativePort, _kind, nativeEncodedBody,
+        nativeNonce, nativeSharedSecret);
+    final out = await processFuturePlain(recvPort.first);
+    return base64UrlNoPadDecode(out);
+  }
 }
 
 // FFI implementation of high level Veilid API
@@ -1363,16 +1392,15 @@ class VeilidFFI implements Veilid {
 
   @override
   Future<RouteBlob> newCustomPrivateRoute(
-      Stability stability, Sequencing sequencing) async {
+      Stability stability, Sequencing sequencing) {
     final recvPort = ReceivePort("new_custom_private_route");
     final sendPort = recvPort.sendPort;
     _newCustomPrivateRoute(
         sendPort.nativePort,
         jsonEncode(stability).toNativeUtf8(),
         jsonEncode(sequencing).toNativeUtf8());
-    final routeBlob =
-        await processFutureJson(RouteBlob.fromJson, recvPort.first);
-    return routeBlob;
+
+    return processFutureJson(RouteBlob.fromJson, recvPort.first);
   }
 
   @override
@@ -1436,12 +1464,12 @@ class VeilidFFI implements Veilid {
     if (!validCryptoKinds().contains(kind)) {
       throw VeilidAPIExceptionGeneric("unsupported cryptosystem");
     }
-    return VeilidCryptoSystemFFI._(kind);
+    return VeilidCryptoSystemFFI._(this, kind);
   }
 
   @override
   Future<VeilidCryptoSystem> bestCryptoSystem() async {
-    return VeilidCryptoSystemFFI._(_bestCryptoKind());
+    return VeilidCryptoSystemFFI._(this, _bestCryptoKind());
   }
 
   @override
@@ -1451,19 +1479,41 @@ class VeilidFFI implements Veilid {
     final nativeData = base64UrlNoPadEncode(data).toNativeUtf8();
     final nativeSignatures = jsonEncode(signatures).toNativeUtf8();
 
-    final recvPort = ReceivePort("app_call_reply");
+    final recvPort = ReceivePort("verify_signatures");
     final sendPort = recvPort.sendPort;
     _verifySignatures(
         sendPort.nativePort, nativeNodeIds, nativeData, nativeSignatures);
     return processFutureJson(
         jsonListConstructor<TypedKey>(TypedKey.fromJson), recvPort.first);
   }
-xxx
+
   @override
   Future<List<TypedSignature>> generateSignatures(
-      Uint8List data, List<TypedKeyPair> keyPairs) {}
+      Uint8List data, List<TypedKeyPair> keyPairs) {
+    final nativeData = base64UrlNoPadEncode(data).toNativeUtf8();
+    final nativeKeyPairs = jsonEncode(keyPairs).toNativeUtf8();
+
+    final recvPort = ReceivePort("generate_signatures");
+    final sendPort = recvPort.sendPort;
+    _generateSignatures(sendPort.nativePort, nativeData, nativeKeyPairs);
+    return processFutureJson(
+        jsonListConstructor<TypedSignature>(TypedSignature.fromJson),
+        recvPort.first);
+  }
+
   @override
-  Future<TypedKeyPair> generateKeyPair(CryptoKind kind) {}
+  Timestamp now() {
+    final ts = _now();
+    return Timestamp(value: BigInt.from(ts));
+  }
+
+  @override
+  Future<TypedKeyPair> generateKeyPair(CryptoKind kind) {
+    final recvPort = ReceivePort("generate_key_pair");
+    final sendPort = recvPort.sendPort;
+    _generateKeyPair(sendPort.nativePort, kind);
+    return processFutureJson(TypedKeyPair.fromJson, recvPort.first);
+  }
 
   @override
   Future<String> debug(String command) async {
diff --git a/veilid-flutter/lib/veilid_js.dart b/veilid-flutter/lib/veilid_js.dart
index 3cc9efc1..a46eefa5 100644
--- a/veilid-flutter/lib/veilid_js.dart
+++ b/veilid-flutter/lib/veilid_js.dart
@@ -9,95 +9,6 @@ import 'dart:typed_data';
 
 import 'veilid_encoding.dart';
 
-//////////////////////////////////////////////////////////
-// WASM Platform-specific config
-
-class VeilidWASMConfigLoggingPerformance {
-  bool enabled;
-  VeilidConfigLogLevel level;
-  bool logsInTimings;
-  bool logsInConsole;
-
-  VeilidWASMConfigLoggingPerformance({
-    required this.enabled,
-    required this.level,
-    required this.logsInTimings,
-    required this.logsInConsole,
-  });
-
-  Map<String, dynamic> toJson() {
-    return {
-      'enabled': enabled,
-      'level': level.toJson(),
-      'logs_in_timings': logsInTimings,
-      'logs_in_console': logsInConsole,
-    };
-  }
-
-  VeilidWASMConfigLoggingPerformance.fromJson(dynamic json)
-      : enabled = json['enabled'],
-        level = veilidConfigLogLevelFromJson(json['level']),
-        logsInTimings = json['logs_in_timings'],
-        logsInConsole = json['logs_in_console'];
-}
-
-class VeilidWASMConfigLoggingApi {
-  bool enabled;
-  VeilidConfigLogLevel level;
-
-  VeilidWASMConfigLoggingApi({
-    required this.enabled,
-    required this.level,
-  });
-
-  Map<String, dynamic> toJson() {
-    return {
-      'enabled': enabled,
-      'level': level.toJson(),
-    };
-  }
-
-  VeilidWASMConfigLoggingApi.fromJson(dynamic json)
-      : enabled = json['enabled'],
-        level = veilidConfigLogLevelFromJson(json['level']);
-}
-
-class VeilidWASMConfigLogging {
-  VeilidWASMConfigLoggingPerformance performance;
-  VeilidWASMConfigLoggingApi api;
-
-  VeilidWASMConfigLogging({required this.performance, required this.api});
-
-  Map<String, dynamic> toJson() {
-    return {
-      'performance': performance.toJson(),
-      'api': api.toJson(),
-    };
-  }
-
-  VeilidWASMConfigLogging.fromJson(dynamic json)
-      : performance =
-            VeilidWASMConfigLoggingPerformance.fromJson(json['performance']),
-        api = VeilidWASMConfigLoggingApi.fromJson(json['api']);
-}
-
-class VeilidWASMConfig {
-  VeilidWASMConfigLogging logging;
-
-  VeilidWASMConfig({
-    required this.logging,
-  });
-
-  Map<String, dynamic> toJson() {
-    return {
-      'logging': logging.toJson(),
-    };
-  }
-
-  VeilidWASMConfig.fromJson(dynamic json)
-      : logging = VeilidWASMConfigLogging.fromJson(json['logging']);
-}
-
 //////////////////////////////////////////////////////////
 
 Veilid getVeilid() => VeilidJS();
diff --git a/veilid-flutter/rust/src/dart_ffi.rs b/veilid-flutter/rust/src/dart_ffi.rs
index cd44552d..8294ea19 100644
--- a/veilid-flutter/rust/src/dart_ffi.rs
+++ b/veilid-flutter/rust/src/dart_ffi.rs
@@ -615,7 +615,7 @@ pub extern "C" fn routing_context_watch_dht_values(port: i64, id: u32, key: FfiS
         let routing_context = {
             let rc = ROUTING_CONTEXTS.lock();
             let Some(routing_context) = rc.get(&id) else {
-                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_set_dht_value", "id", id));
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_watch_dht_values", "id", id));
             };
             routing_context.clone()
         };
diff --git a/veilid-wasm/src/lib.rs b/veilid-wasm/src/lib.rs
index 82295e08..aa09a491 100644
--- a/veilid-wasm/src/lib.rs
+++ b/veilid-wasm/src/lib.rs
@@ -375,9 +375,6 @@ pub fn routing_context_app_call(id: u32, target: String, request: String) -> Pro
         .decode(request.as_bytes())
         .unwrap();
     wrap_api_future_plain(async move {
-        let veilid_api = get_veilid_api()?;
-        let routing_table = veilid_api.routing_table()?;
-
         let routing_context = {
             let rc = (*ROUTING_CONTEXTS).borrow();
             let Some(routing_context) = rc.get(&id) else {
@@ -399,9 +396,6 @@ pub fn routing_context_app_message(id: u32, target: String, message: String) ->
         .decode(message.as_bytes())
         .unwrap();
     wrap_api_future_void(async move {
-        let veilid_api = get_veilid_api()?;
-        let routing_table = veilid_api.routing_table()?;
-
         let routing_context = {
             let rc = (*ROUTING_CONTEXTS).borrow();
             let Some(routing_context) = rc.get(&id) else {
@@ -416,6 +410,167 @@ pub fn routing_context_app_message(id: u32, target: String, message: String) ->
     })
 }
 
+#[wasm_bindgen()]
+pub fn routing_context_create_dht_record(id: u32, kind: u32, schema: String) -> Promise {
+    let crypto_kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+    let schema: veilid_core::DHTSchema = veilid_core::deserialize_json(&schema).unwrap();
+
+    wrap_api_future_json(async move {
+        let routing_context = {
+            let rc = (*ROUTING_CONTEXTS).borrow();
+            let Some(routing_context) = rc.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_create_dht_record", "id", id));
+            };
+            routing_context.clone()
+        };
+
+        let dht_record_descriptor = routing_context
+            .create_dht_record(crypto_kind, schema)
+            .await?;
+        APIResult::Ok(dht_record_descriptor)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn routing_context_open_dht_record(id: u32, key: String, writer: Option<String>) -> Promise {
+    let key: veilid_core::TypedKey = veilid_core::deserialize_json(&key).unwrap();
+    let writer: Option<veilid_core::KeyPair> =
+        writer.map(|s| veilid_core::deserialize_json(&s).unwrap());
+    wrap_api_future_json(async move {
+        let routing_context = {
+            let rc = (*ROUTING_CONTEXTS).borrow();
+            let Some(routing_context) = rc.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_open_dht_record", "id", id));
+            };
+            routing_context.clone()
+        };
+        let dht_record_descriptor = routing_context.open_dht_record(key, writer).await?;
+        APIResult::Ok(dht_record_descriptor)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn routing_context_close_dht_record(id: u32, key: String) -> Promise {
+    let key: veilid_core::TypedKey = veilid_core::deserialize_json(&key).unwrap();
+    wrap_api_future_void(async move {
+        let routing_context = {
+            let rc = (*ROUTING_CONTEXTS).borrow();
+            let Some(routing_context) = rc.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_close_dht_record", "id", id));
+            };
+            routing_context.clone()
+        };
+        routing_context.close_dht_record(key).await?;
+        APIRESULT_UNDEFINED
+    })
+}
+
+#[wasm_bindgen()]
+pub fn routing_context_delete_dht_record(id: u32, key: String) -> Promise {
+    let key: veilid_core::TypedKey = veilid_core::deserialize_json(&key).unwrap();
+    wrap_api_future_void(async move {
+        let routing_context = {
+            let rc = (*ROUTING_CONTEXTS).borrow();
+            let Some(routing_context) = rc.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_delete_dht_record", "id", id));
+            };
+            routing_context.clone()
+        };
+        routing_context.delete_dht_record(key).await?;
+        APIRESULT_UNDEFINED
+    })
+}
+
+#[wasm_bindgen()]
+pub fn routing_context_get_dht_value(
+    id: u32,
+    key: String,
+    subkey: u32,
+    force_refresh: bool,
+) -> Promise {
+    let key: veilid_core::TypedKey = veilid_core::deserialize_json(&key).unwrap();
+    wrap_api_future_json(async move {
+        let routing_context = {
+            let rc = (*ROUTING_CONTEXTS).borrow();
+            let Some(routing_context) = rc.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_get_dht_value", "id", id));
+            };
+            routing_context.clone()
+        };
+        let res = routing_context
+            .get_dht_value(key, subkey, force_refresh)
+            .await?;
+        APIResult::Ok(res)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn routing_context_set_dht_value(id: u32, key: String, subkey: u32, data: String) -> Promise {
+    let key: veilid_core::TypedKey = veilid_core::deserialize_json(&key).unwrap();
+    let data: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(&data.as_bytes())
+        .unwrap();
+
+    wrap_api_future_json(async move {
+        let routing_context = {
+            let rc = (*ROUTING_CONTEXTS).borrow();
+            let Some(routing_context) = rc.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_set_dht_value", "id", id));
+            };
+            routing_context.clone()
+        };
+        let res = routing_context.set_dht_value(key, subkey, data).await?;
+        APIResult::Ok(res)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn routing_context_watch_dht_values(
+    id: u32,
+    key: String,
+    subkeys: String,
+    expiration: String,
+    count: u32,
+) -> Promise {
+    let key: veilid_core::TypedKey = veilid_core::deserialize_json(&key).unwrap();
+    let subkeys: veilid_core::ValueSubkeyRangeSet =
+        veilid_core::deserialize_json(&subkeys).unwrap();
+    let expiration = veilid_core::Timestamp::from_str(&expiration).unwrap();
+
+    wrap_api_future_plain(async move {
+        let routing_context = {
+            let rc = (*ROUTING_CONTEXTS).borrow();
+            let Some(routing_context) = rc.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_watch_dht_values", "id", id));
+            };
+            routing_context.clone()
+        };
+        let res = routing_context
+            .watch_dht_values(key, subkeys, expiration, count)
+            .await?;
+        APIResult::Ok(res.to_string())
+    })
+}
+
+#[wasm_bindgen()]
+pub fn routing_context_cancel_dht_watch(id: u32, key: String, subkeys: String) -> Promise {
+    let key: veilid_core::TypedKey = veilid_core::deserialize_json(&key).unwrap();
+    let subkeys: veilid_core::ValueSubkeyRangeSet =
+        veilid_core::deserialize_json(&subkeys).unwrap();
+
+    wrap_api_future_plain(async move {
+        let routing_context = {
+            let rc = (*ROUTING_CONTEXTS).borrow();
+            let Some(routing_context) = rc.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("routing_context_cancel_dht_watch", "id", id));
+            };
+            routing_context.clone()
+        };
+        let res = routing_context.cancel_dht_watch(key, subkeys).await?;
+        APIResult::Ok(res)
+    })
+}
+
 #[wasm_bindgen()]
 pub fn new_private_route() -> Promise {
     wrap_api_future_json(async move {
@@ -738,6 +893,458 @@ pub fn table_db_delete(id: u32, col: u32, key: String) -> Promise {
     })
 }
 
+#[wasm_bindgen()]
+pub fn valid_crypto_kinds() -> String {
+    veilid_core::serialize_json(
+        veilid_core::VALID_CRYPTO_KINDS
+            .iter()
+            .map(|k| (*k).into())
+            .collect::<Vec<u32>>(),
+    )
+}
+
+#[wasm_bindgen()]
+pub fn best_crypto_kind() -> u32 {
+    veilid_core::best_crypto_kind().into()
+}
+
+#[wasm_bindgen()]
+pub fn verify_signatures(node_ids: String, data: String, signatures: String) -> Promise {
+    let node_ids: Vec<veilid_core::TypedKey> = veilid_core::deserialize_json(&node_ids).unwrap();
+
+    let data: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(data.as_bytes())
+        .unwrap();
+
+    let typed_signatures: Vec<veilid_core::TypedSignature> =
+        veilid_core::deserialize_json(&signatures).unwrap();
+
+    wrap_api_future_json(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let out = crypto.verify_signatures(&node_ids, &data, &typed_signatures)?;
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn generate_signatures(data: String, key_pairs: String) -> Promise {
+    let data: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(data.as_bytes())
+        .unwrap();
+
+    let key_pairs: Vec<veilid_core::TypedKeyPair> =
+        veilid_core::deserialize_json(&key_pairs).unwrap();
+
+    wrap_api_future_json(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let out = crypto.generate_signatures(&data, &key_pairs, |k, s| {
+            veilid_core::TypedSignature::new(k.kind, s)
+        })?;
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn generate_key_pair(kind: u32) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    wrap_api_future_json(async move {
+        let out = veilid_core::Crypto::generate_keypair(kind)?;
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_cached_dh(kind: u32, key: String, secret: String) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let key: veilid_core::PublicKey = veilid_core::deserialize_json(&key).unwrap();
+    let secret: veilid_core::SecretKey = veilid_core::deserialize_json(&secret).unwrap();
+
+    wrap_api_future_json(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_cached_dh",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.cached_dh(&key, &secret)?;
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_compute_dh(kind: u32, key: String, secret: String) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let key: veilid_core::PublicKey = veilid_core::deserialize_json(&key).unwrap();
+    let secret: veilid_core::SecretKey = veilid_core::deserialize_json(&secret).unwrap();
+
+    wrap_api_future_json(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_compute_dh",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.compute_dh(&key, &secret)?;
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_random_nonce(kind: u32) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    wrap_api_future_json(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_random_nonce",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.random_nonce();
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_random_shared_secret(kind: u32) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    wrap_api_future_json(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_random_shared_secret",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.random_shared_secret();
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_generate_key_pair(kind: u32) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    wrap_api_future_json(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_generate_key_pair",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.generate_keypair();
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_generate_hash(kind: u32, data: String) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let data: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(data.as_bytes())
+        .unwrap();
+
+    wrap_api_future_json(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_generate_hash",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.generate_hash(&data);
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_validate_key_pair(kind: u32, key: String, secret: String) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let key: veilid_core::PublicKey = veilid_core::deserialize_json(&key).unwrap();
+    let secret: veilid_core::SecretKey = veilid_core::deserialize_json(&secret).unwrap();
+
+    wrap_api_future_plain(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_validate_key_pair",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.validate_keypair(&key, &secret);
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_validate_hash(kind: u32, data: String, hash: String) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let data: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(data.as_bytes())
+        .unwrap();
+
+    let hash: veilid_core::HashDigest = veilid_core::deserialize_json(&hash).unwrap();
+
+    wrap_api_future_plain(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_validate_hash",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.validate_hash(&data, &hash);
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_distance(kind: u32, key1: String, key2: String) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let key1: veilid_core::CryptoKey = veilid_core::deserialize_json(&key1).unwrap();
+    let key2: veilid_core::CryptoKey = veilid_core::deserialize_json(&key2).unwrap();
+
+    wrap_api_future_json(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_distance",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.distance(&key1, &key2);
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_sign(kind: u32, key: String, secret: String, data: String) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let key: veilid_core::CryptoKey = veilid_core::deserialize_json(&key).unwrap();
+    let secret: veilid_core::CryptoKey = veilid_core::deserialize_json(&secret).unwrap();
+
+    let data: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(data.as_bytes())
+        .unwrap();
+
+    wrap_api_future_json(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument("crypto_sign", "kind", kind.to_string())
+        })?;
+        let out = csv.sign(&key, &secret, &data)?;
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_verify(kind: u32, key: String, data: String, signature: String) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let key: veilid_core::CryptoKey = veilid_core::deserialize_json(&key).unwrap();
+    let data: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(data.as_bytes())
+        .unwrap();
+    let signature: veilid_core::Signature = veilid_core::deserialize_json(&signature).unwrap();
+
+    wrap_api_future_json(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument("crypto_verify", "kind", kind.to_string())
+        })?;
+        let out = csv.verify(&key, &data, &signature)?;
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_aead_overhead(kind: u32) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    wrap_api_future_plain(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_aead_overhead",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.aead_overhead();
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_decrypt_aead(
+    kind: u32,
+    body: String,
+    nonce: String,
+    shared_secret: String,
+    associated_data: Option<String>,
+) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let body: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(body.as_bytes())
+        .unwrap();
+
+    let nonce: veilid_core::Nonce = veilid_core::deserialize_json(&nonce).unwrap();
+
+    let shared_secret: veilid_core::SharedSecret =
+        veilid_core::deserialize_json(&shared_secret).unwrap();
+
+    let associated_data: Option<Vec<u8>> = associated_data.map(|ad| {
+        data_encoding::BASE64URL_NOPAD
+            .decode(ad.as_bytes())
+            .unwrap()
+    });
+
+    wrap_api_future_json(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_decrypt_aead",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.decrypt_aead(
+            &body,
+            &nonce,
+            &shared_secret,
+            match &associated_data {
+                Some(ad) => Some(ad.as_slice()),
+                None => None,
+            },
+        )?;
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_encrypt_aead(
+    kind: u32,
+    body: String,
+    nonce: String,
+    shared_secret: String,
+    associated_data: Option<String>,
+) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let body: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(body.as_bytes())
+        .unwrap();
+
+    let nonce: veilid_core::Nonce = veilid_core::deserialize_json(&nonce).unwrap();
+
+    let shared_secret: veilid_core::SharedSecret =
+        veilid_core::deserialize_json(&shared_secret).unwrap();
+
+    let associated_data: Option<Vec<u8>> = associated_data.map(|ad| {
+        data_encoding::BASE64URL_NOPAD
+            .decode(ad.as_bytes())
+            .unwrap()
+    });
+
+    wrap_api_future_json(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_encrypt_aead",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.encrypt_aead(
+            &body,
+            &nonce,
+            &shared_secret,
+            match &associated_data {
+                Some(ad) => Some(ad.as_slice()),
+                None => None,
+            },
+        )?;
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_crypt_no_auth(
+    kind: u32,
+    body: String,
+    nonce: String,
+    shared_secret: String,
+) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    let mut body: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(body.as_bytes())
+        .unwrap();
+
+    let nonce: veilid_core::Nonce = veilid_core::deserialize_json(&nonce).unwrap();
+
+    let shared_secret: veilid_core::SharedSecret =
+        veilid_core::deserialize_json(&shared_secret).unwrap();
+
+    wrap_api_future_json(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_crypt_no_auth",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        csv.crypt_in_place_no_auth(&mut body, &nonce, &shared_secret);
+        APIResult::Ok(body)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn now() -> u64 {
+    veilid_core::get_aligned_timestamp().as_u64()
+}
+
 #[wasm_bindgen()]
 pub fn debug(command: String) -> Promise {
     wrap_api_future_plain(async move {

From 10af290e2f03c776e1cb567bc004b84509679948 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Tue, 16 May 2023 13:28:09 -0400
Subject: [PATCH 35/74] wasm work

---
 veilid-flutter/lib/veilid_ffi.dart            |  40 ++-
 veilid-flutter/lib/veilid_js.dart             | 269 +++++++++++++++++-
 veilid-flutter/rust/src/dart_ffi.rs           |  10 +-
 .../rust/src/dart_isolate_wrapper.rs          |  21 ++
 veilid-wasm/src/lib.rs                        |  24 +-
 5 files changed, 346 insertions(+), 18 deletions(-)

diff --git a/veilid-flutter/lib/veilid_ffi.dart b/veilid-flutter/lib/veilid_ffi.dart
index 4bce79b2..7597d7c0 100644
--- a/veilid-flutter/lib/veilid_ffi.dart
+++ b/veilid-flutter/lib/veilid_ffi.dart
@@ -380,6 +380,42 @@ Future<T> processFutureJson<T>(
   });
 }
 
+Future<T?> processFutureOptJson<T>(
+    T Function(dynamic) jsonConstructor, Future<dynamic> future) {
+  return future.then((value) {
+    final list = value as List<dynamic>;
+    switch (list[0] as int) {
+      case messageErr:
+        {
+          throw VeilidAPIExceptionInternal("Internal API Error: ${list[1]}");
+        }
+      case messageOkJson:
+        {
+          if (list[1] == null) {
+            return null;
+          }
+          var ret = jsonDecode(list[1] as String);
+          return jsonConstructor(ret);
+        }
+      case messageErrJson:
+        {
+          throw VeilidAPIException.fromJson(jsonDecode(list[1]));
+        }
+      default:
+        {
+          throw VeilidAPIExceptionInternal(
+              "Unexpected async return message type: ${list[0]}");
+        }
+    }
+  }).catchError((e) {
+    // Wrap all other errors in VeilidAPIExceptionInternal
+    throw VeilidAPIExceptionInternal(e.toString());
+  }, test: (e) {
+    // Pass errors that are already VeilidAPIException through without wrapping
+    return e is! VeilidAPIException;
+  });
+}
+
 Future<void> processFutureVoid(Future<dynamic> future) {
   return future.then((value) {
     final list = value as List<dynamic>;
@@ -967,9 +1003,9 @@ class VeilidCryptoSystemFFI implements VeilidCryptoSystem {
     final nativeEncodedData = base64UrlNoPadEncode(data).toNativeUtf8();
     final nativeSignature = jsonEncode(signature).toNativeUtf8();
 
-    final recvPort = ReceivePort("crypto_sign");
+    final recvPort = ReceivePort("crypto_verify");
     final sendPort = recvPort.sendPort;
-    _ffi._cryptoSign(sendPort.nativePort, _kind, nativeKey, nativeEncodedData,
+    _ffi._cryptoVerify(sendPort.nativePort, _kind, nativeKey, nativeEncodedData,
         nativeSignature);
     return processFutureVoid(recvPort.first);
   }
diff --git a/veilid-flutter/lib/veilid_js.dart b/veilid-flutter/lib/veilid_js.dart
index a46eefa5..dad121af 100644
--- a/veilid-flutter/lib/veilid_js.dart
+++ b/veilid-flutter/lib/veilid_js.dart
@@ -77,6 +77,216 @@ class VeilidRoutingContextJS implements VeilidRoutingContext {
     return _wrapApiPromise(js_util.callMethod(wasm,
         "routing_context_app_message", [_ctx.id, target, encodedMessage]));
   }
+
+  @override
+  Future<DHTRecordDescriptor> createDHTRecord(
+      CryptoKind kind, DHTSchema schema) async {
+    return DHTRecordDescriptor.fromJson(jsonDecode(await _wrapApiPromise(js_util
+        .callMethod(wasm, "routing_context_create_dht_record",
+            [_ctx.id, kind, jsonEncode(schema)]))));
+  }
+
+  @override
+  Future<DHTRecordDescriptor> openDHTRecord(
+      TypedKey key, KeyPair? writer) async {
+    return DHTRecordDescriptor.fromJson(jsonDecode(await _wrapApiPromise(js_util
+        .callMethod(wasm, "routing_context_open_dht_record", [
+      _ctx.id,
+      jsonEncode(key),
+      writer != null ? jsonEncode(writer) : null
+    ]))));
+  }
+
+  @override
+  Future<void> closeDHTRecord(TypedKey key) {
+    return _wrapApiPromise(js_util.callMethod(
+        wasm, "routing_context_close_dht_record", [_ctx.id, jsonEncode(key)]));
+  }
+
+  @override
+  Future<void> deleteDHTRecord(TypedKey key) {
+    return _wrapApiPromise(js_util.callMethod(
+        wasm, "routing_context_delete_dht_record", [_ctx.id, jsonEncode(key)]));
+  }
+
+  @override
+  Future<ValueData?> getDHTValue(
+      TypedKey key, int subkey, bool forceRefresh) async {
+    final opt = await _wrapApiPromise(js_util.callMethod(
+        wasm,
+        "routing_context_get_dht_value",
+        [_ctx.id, jsonEncode(key), subkey, forceRefresh]));
+    return opt == null ? null : ValueData.fromJson(jsonDecode(opt));
+  }
+
+  @override
+  Future<ValueData?> setDHTValue(
+      TypedKey key, int subkey, Uint8List data) async {
+    final opt = await _wrapApiPromise(js_util.callMethod(
+        wasm,
+        "routing_context_set_dht_value",
+        [_ctx.id, jsonEncode(key), subkey, base64UrlNoPadEncode(data)]));
+    return opt == null ? null : ValueData.fromJson(jsonDecode(opt));
+  }
+
+  @override
+  Future<Timestamp> watchDHTValues(TypedKey key, ValueSubkeyRange subkeys,
+      Timestamp expiration, int count) async {
+    final ts = await _wrapApiPromise(js_util.callMethod(
+        wasm, "routing_context_watch_dht_values", [
+      _ctx.id,
+      jsonEncode(key),
+      jsonEncode(subkeys),
+      expiration.toString(),
+      count
+    ]));
+    return Timestamp.fromString(ts);
+  }
+
+  @override
+  Future<bool> cancelDHTWatch(TypedKey key, ValueSubkeyRange subkeys) {
+    return _wrapApiPromise(js_util.callMethod(
+        wasm,
+        "routing_context_cancel_dht_watch",
+        [_ctx.id, jsonEncode(key), jsonEncode(subkeys)]));
+  }
+}
+
+// JS implementation of VeilidCryptoSystem
+class VeilidCryptoSystemJS implements VeilidCryptoSystem {
+  final CryptoKind _kind;
+  final VeilidJS _js;
+
+  VeilidCryptoSystemJS._(this._js, this._kind);
+
+  @override
+  CryptoKind kind() {
+    return _kind;
+  }
+
+  @override
+  Future<SharedSecret> cachedDH(PublicKey key, SecretKey secret) async {
+    return SharedSecret.fromJson(jsonDecode(await _wrapApiPromise(js_util
+        .callMethod(wasm, "crypto_cached_dh",
+            [_kind, jsonEncode(key), jsonEncode(secret)]))));
+  }
+
+  @override
+  Future<SharedSecret> computeDH(PublicKey key, SecretKey secret) async {
+    return SharedSecret.fromJson(jsonDecode(await _wrapApiPromise(js_util
+        .callMethod(wasm, "crypto_compute_dh",
+            [_kind, jsonEncode(key), jsonEncode(secret)]))));
+  }
+
+  @override
+  Future<Nonce> randomNonce() async {
+    return Nonce.fromJson(jsonDecode(await _wrapApiPromise(
+        js_util.callMethod(wasm, "crypto_random_nonce", [_kind]))));
+  }
+
+  @override
+  Future<SharedSecret> randomSharedSecret() async {
+    return SharedSecret.fromJson(jsonDecode(await _wrapApiPromise(
+        js_util.callMethod(wasm, "crypto_random_shared_secret", [_kind]))));
+  }
+
+  @override
+  Future<KeyPair> generateKeyPair() async {
+    return KeyPair.fromJson(jsonDecode(await _wrapApiPromise(
+        js_util.callMethod(wasm, "crypto_generate_key_pair", [_kind]))));
+  }
+
+  @override
+  Future<HashDigest> generateHash(Uint8List data) async {
+    return HashDigest.fromJson(jsonDecode(await _wrapApiPromise(js_util
+        .callMethod(wasm, "crypto_generate_hash",
+            [_kind, base64UrlNoPadEncode(data)]))));
+  }
+
+  @override
+  Future<bool> validateKeyPair(PublicKey key, SecretKey secret) {
+    return _wrapApiPromise(js_util.callMethod(wasm, "crypto_validate_key_pair",
+        [_kind, jsonEncode(key), jsonEncode(secret)]));
+  }
+
+  @override
+  Future<bool> validateHash(Uint8List data, HashDigest hash) {
+    return _wrapApiPromise(js_util.callMethod(wasm, "crypto_validate_hash",
+        [_kind, base64UrlNoPadEncode(data), jsonEncode(hash)]));
+  }
+
+  @override
+  Future<CryptoKeyDistance> distance(CryptoKey key1, CryptoKey key2) async {
+    return CryptoKeyDistance.fromJson(jsonDecode(await _wrapApiPromise(js_util
+        .callMethod(wasm, "crypto_distance",
+            [_kind, jsonEncode(key1), jsonEncode(key2)]))));
+  }
+
+  @override
+  Future<Signature> sign(
+      PublicKey key, SecretKey secret, Uint8List data) async {
+    return Signature.fromJson(jsonDecode(await _wrapApiPromise(js_util
+        .callMethod(wasm, "crypto_sign", [
+      _kind,
+      jsonEncode(key),
+      jsonEncode(secret),
+      base64UrlNoPadEncode(data)
+    ]))));
+  }
+
+  @override
+  Future<void> verify(PublicKey key, Uint8List data, Signature signature) {
+    return _wrapApiPromise(js_util.callMethod(wasm, "crypto_verify", [
+      _kind,
+      jsonEncode(key),
+      base64UrlNoPadEncode(data),
+      jsonEncode(signature),
+    ]));
+  }
+
+  @override
+  Future<int> aeadOverhead() {
+    return _wrapApiPromise(
+        js_util.callMethod(wasm, "crypto_aead_overhead", [_kind]));
+  }
+
+  @override
+  Future<Uint8List> decryptAead(Uint8List body, Nonce nonce,
+      SharedSecret sharedSecret, Uint8List? associatedData) async {
+    return base64UrlNoPadDecode(
+        await _wrapApiPromise(js_util.callMethod(wasm, "crypto_decrypt_aead", [
+      _kind,
+      base64UrlNoPadEncode(body),
+      jsonEncode(nonce),
+      jsonEncode(sharedSecret),
+      associatedData != null ? base64UrlNoPadEncode(associatedData) : null
+    ])));
+  }
+
+  @override
+  Future<Uint8List> encryptAead(Uint8List body, Nonce nonce,
+      SharedSecret sharedSecret, Uint8List? associatedData) async {
+    return base64UrlNoPadDecode(
+        await _wrapApiPromise(js_util.callMethod(wasm, "crypto_encrypt_aead", [
+      _kind,
+      base64UrlNoPadEncode(body),
+      jsonEncode(nonce),
+      jsonEncode(sharedSecret),
+      associatedData != null ? base64UrlNoPadEncode(associatedData) : null
+    ])));
+  }
+
+  @override
+  Future<Uint8List> cryptNoAuth(
+      Uint8List body, Nonce nonce, SharedSecret sharedSecret) async {
+    return base64UrlNoPadDecode(await _wrapApiPromise(js_util.callMethod(
+        wasm, "crypto_crypt_no_auth", [
+      _kind,
+      base64UrlNoPadEncode(body),
+      jsonEncode(nonce),
+      jsonEncode(sharedSecret)
+    ])));
+  }
 }
 
 class _TDBT {
@@ -257,6 +467,50 @@ class VeilidJS implements Veilid {
         js_util.callMethod(wasm, "shutdown_veilid_core", []));
   }
 
+  @override
+  List<CryptoKind> validCryptoKinds() {
+    return jsonDecode(js_util.callMethod(wasm, "valid_crypto_kinds", []));
+  }
+
+  @override
+  Future<VeilidCryptoSystem> getCryptoSystem(CryptoKind kind) async {
+    if (!validCryptoKinds().contains(kind)) {
+      throw VeilidAPIExceptionGeneric("unsupported cryptosystem");
+    }
+    return VeilidCryptoSystemJS._(this, kind);
+  }
+
+  @override
+  Future<VeilidCryptoSystem> bestCryptoSystem() async {
+    return VeilidCryptoSystemJS._(
+        this, js_util.callMethod(wasm, "best_crypto_kind", []));
+  }
+
+  @override
+  Future<List<TypedKey>> verifySignatures(List<TypedKey> nodeIds,
+      Uint8List data, List<TypedSignature> signatures) async {
+    return jsonListConstructor(TypedKey.fromJson)(jsonDecode(
+        await _wrapApiPromise(js_util.callMethod(wasm, "verify_signatures", [
+      jsonEncode(nodeIds),
+      base64UrlNoPadEncode(data),
+      jsonEncode(signatures)
+    ]))));
+  }
+
+  @override
+  Future<List<TypedSignature>> generateSignatures(
+      Uint8List data, List<TypedKeyPair> keyPairs) async {
+    return jsonListConstructor(TypedSignature.fromJson)(jsonDecode(
+        await _wrapApiPromise(js_util.callMethod(wasm, "generate_signatures",
+            [base64UrlNoPadEncode(data), jsonEncode(keyPairs)]))));
+  }
+
+  @override
+  Future<TypedKeyPair> generateKeyPair(CryptoKind kind) async {
+    return TypedKeyPair.fromJson(jsonDecode(await _wrapApiPromise(
+        js_util.callMethod(wasm, "generate_key_pair", [kind]))));
+  }
+
   @override
   Future<VeilidRoutingContext> routingContext() async {
     int id =
@@ -266,9 +520,8 @@ class VeilidJS implements Veilid {
 
   @override
   Future<RouteBlob> newPrivateRoute() async {
-    Map<String, dynamic> blobJson = jsonDecode(await _wrapApiPromise(
-        js_util.callMethod(wasm, "new_private_route", [])));
-    return RouteBlob.fromJson(blobJson);
+    return RouteBlob.fromJson(jsonDecode(await _wrapApiPromise(
+        js_util.callMethod(wasm, "new_private_route", []))));
   }
 
   @override
@@ -277,10 +530,9 @@ class VeilidJS implements Veilid {
     var stabilityString = jsonEncode(stability);
     var sequencingString = jsonEncode(sequencing);
 
-    Map<String, dynamic> blobJson = jsonDecode(await _wrapApiPromise(js_util
+    return RouteBlob.fromJson(jsonDecode(await _wrapApiPromise(js_util
         .callMethod(
-            wasm, "new_private_route", [stabilityString, sequencingString])));
-    return RouteBlob.fromJson(blobJson);
+            wasm, "new_private_route", [stabilityString, sequencingString]))));
   }
 
   @override
@@ -315,6 +567,11 @@ class VeilidJS implements Veilid {
     return _wrapApiPromise(js_util.callMethod(wasm, "delete_table_db", [name]));
   }
 
+  @override
+  Timestamp now() {
+    return Timestamp.fromString(js_util.callMethod(wasm, "now", []));
+  }
+
   @override
   Future<String> debug(String command) async {
     return await _wrapApiPromise(js_util.callMethod(wasm, "debug", [command]));
diff --git a/veilid-flutter/rust/src/dart_ffi.rs b/veilid-flutter/rust/src/dart_ffi.rs
index 8294ea19..8e521ecf 100644
--- a/veilid-flutter/rust/src/dart_ffi.rs
+++ b/veilid-flutter/rust/src/dart_ffi.rs
@@ -566,7 +566,7 @@ pub extern "C" fn routing_context_delete_dht_record(port: i64, id: u32, key: Ffi
 #[no_mangle]
 pub extern "C" fn routing_context_get_dht_value(port: i64, id: u32, key: FfiStr, subkey: u32, force_refresh: bool) {
     let key: veilid_core::TypedKey = veilid_core::deserialize_opt_json(key.into_opt_string()).unwrap();
-    DartIsolateWrapper::new(port).spawn_result_json(async move {        
+    DartIsolateWrapper::new(port).spawn_result_opt_json(async move {        
         let routing_context = {
             let rc = ROUTING_CONTEXTS.lock();
             let Some(routing_context) = rc.get(&id) else {
@@ -591,7 +591,7 @@ pub extern "C" fn routing_context_set_dht_value(port: i64, id: u32, key: FfiStr,
     )
     .unwrap();
 
-    DartIsolateWrapper::new(port).spawn_result_json(async move {        
+    DartIsolateWrapper::new(port).spawn_result_opt_json(async move {        
         let routing_context = {
             let rc = ROUTING_CONTEXTS.lock();
             let Some(routing_context) = rc.get(&id) else {
@@ -1252,12 +1252,12 @@ pub extern "C" fn crypto_verify(port: i64, kind: u32, key: FfiStr, data: FfiStr,
     let signature: veilid_core::Signature =
         veilid_core::deserialize_opt_json(signature.into_opt_string()).unwrap();
     
-    DartIsolateWrapper::new(port).spawn_result_json(async move {
+    DartIsolateWrapper::new(port).spawn_result(async move {
         let veilid_api = get_veilid_api().await?;
         let crypto = veilid_api.crypto()?;
         let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_verify", "kind", kind.to_string()))?;
-        let out = csv.verify(&key, &data, &signature)?;
-        APIResult::Ok(out)
+        csv.verify(&key, &data, &signature)?;
+        APIRESULT_VOID
     });
 }
 
diff --git a/veilid-flutter/rust/src/dart_isolate_wrapper.rs b/veilid-flutter/rust/src/dart_isolate_wrapper.rs
index 2c0bb371..3adc7d50 100644
--- a/veilid-flutter/rust/src/dart_isolate_wrapper.rs
+++ b/veilid-flutter/rust/src/dart_isolate_wrapper.rs
@@ -52,6 +52,17 @@ impl DartIsolateWrapper {
         });
     }
 
+    pub fn spawn_result_opt_json<F, T, E>(self, future: F)
+    where
+        F: Future<Output = Result<Option<T>, E>> + Send + 'static,
+        T: Serialize + Debug,
+        E: Serialize + Debug,
+    {
+        spawn(async move {
+            self.result_opt_json(future.await);
+        });
+    }
+
     pub fn result<T: IntoDart + Debug, E: Serialize + Debug>(self, result: Result<T, E>) -> bool {
         match result {
             Ok(v) => self.ok(v),
@@ -67,6 +78,16 @@ impl DartIsolateWrapper {
             Err(e) => self.err_json(e),
         }
     }
+    pub fn result_opt_json<T: Serialize + Debug, E: Serialize + Debug>(
+        self,
+        result: Result<Option<T>, E>,
+    ) -> bool {
+        match result {
+            Ok(Some(v)) => self.ok_json(v),
+            Ok(None) => self.ok(()),
+            Err(e) => self.err_json(e),
+        }
+    }
     pub fn ok<T: IntoDart>(self, value: T) -> bool {
         self.isolate
             .post(vec![MESSAGE_OK.into_dart(), value.into_dart()])
diff --git a/veilid-wasm/src/lib.rs b/veilid-wasm/src/lib.rs
index aa09a491..86a4126e 100644
--- a/veilid-wasm/src/lib.rs
+++ b/veilid-wasm/src/lib.rs
@@ -59,6 +59,12 @@ fn take_veilid_api() -> Result<veilid_core::VeilidAPI, veilid_core::VeilidAPIErr
 pub fn to_json<T: Serialize + Debug>(val: T) -> JsValue {
     JsValue::from_str(&serialize_json(val))
 }
+pub fn to_opt_json<T: Serialize + Debug>(val: Option<T>) -> JsValue {
+    match val {
+        Some(v) => JsValue::from_str(&serialize_json(v)),
+        None => JsValue::UNDEFINED,
+    }
+}
 
 pub fn to_jsvalue<T>(val: T) -> JsValue
 where
@@ -113,6 +119,14 @@ where
     future_to_promise(future.map(|res| res.map(|v| to_json(v)).map_err(|e| to_json(e))))
 }
 
+pub fn wrap_api_future_opt_json<F, T>(future: F) -> Promise
+where
+    F: Future<Output = APIResult<Option<T>>> + 'static,
+    T: Serialize + Debug + 'static,
+{
+    future_to_promise(future.map(|res| res.map(|v| to_opt_json(v)).map_err(|e| to_json(e))))
+}
+
 pub fn wrap_api_future_plain<F, T>(future: F) -> Promise
 where
     F: Future<Output = APIResult<T>> + 'static,
@@ -489,7 +503,7 @@ pub fn routing_context_get_dht_value(
     force_refresh: bool,
 ) -> Promise {
     let key: veilid_core::TypedKey = veilid_core::deserialize_json(&key).unwrap();
-    wrap_api_future_json(async move {
+    wrap_api_future_opt_json(async move {
         let routing_context = {
             let rc = (*ROUTING_CONTEXTS).borrow();
             let Some(routing_context) = rc.get(&id) else {
@@ -511,7 +525,7 @@ pub fn routing_context_set_dht_value(id: u32, key: String, subkey: u32, data: St
         .decode(&data.as_bytes())
         .unwrap();
 
-    wrap_api_future_json(async move {
+    wrap_api_future_opt_json(async move {
         let routing_context = {
             let rc = (*ROUTING_CONTEXTS).borrow();
             let Some(routing_context) = rc.get(&id) else {
@@ -1181,14 +1195,14 @@ pub fn crypto_verify(kind: u32, key: String, data: String, signature: String) ->
         .unwrap();
     let signature: veilid_core::Signature = veilid_core::deserialize_json(&signature).unwrap();
 
-    wrap_api_future_json(async move {
+    wrap_api_future_void(async move {
         let veilid_api = get_veilid_api()?;
         let crypto = veilid_api.crypto()?;
         let csv = crypto.get(kind).ok_or_else(|| {
             veilid_core::VeilidAPIError::invalid_argument("crypto_verify", "kind", kind.to_string())
         })?;
-        let out = csv.verify(&key, &data, &signature)?;
-        APIResult::Ok(out)
+        csv.verify(&key, &data, &signature)?;
+        APIRESULT_UNDEFINED
     })
 }
 

From 8660457f953de6671eaf83943231bbad97306a6f Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Tue, 16 May 2023 17:08:15 -0400
Subject: [PATCH 36/74] add slow hashes and password derivation

---
 Cargo.lock                                  | 38 +++++++++++++
 veilid-core/Cargo.toml                      |  7 ++-
 veilid-core/src/crypto/crypto_system.rs     | 13 +++++
 veilid-core/src/crypto/none/mod.rs          | 49 +++++++++++++++-
 veilid-core/src/crypto/tests/test_crypto.rs | 63 ++++++++++++++++++++-
 veilid-core/src/crypto/vld0/mod.rs          | 61 ++++++++++++++++++++
 6 files changed, 226 insertions(+), 5 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 31c87f8f..142cc8d4 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -175,6 +175,17 @@ version = "1.0.70"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "7de8ce5e0f9f8d88245311066a578d72b7af3e7088f32783804676302df237e4"
 
+[[package]]
+name = "argon2"
+version = "0.5.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "95c2fcf79ad1932ac6269a738109997a83c227c09b75842ae564dc8ede6a861c"
+dependencies = [
+ "base64ct",
+ "blake2",
+ "password-hash",
+]
+
 [[package]]
 name = "arraydeque"
 version = "0.4.5"
@@ -595,6 +606,12 @@ version = "0.21.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "a4a4ddaa51a5bc52a6948f74c06d20aaaddb71924eab79b8c97a8c556e942d6a"
 
+[[package]]
+name = "base64ct"
+version = "1.6.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "8c3c1a368f70d6cf7302d78f8f7093da241fb8e8807c05cc9e51a125895a6d5b"
+
 [[package]]
 name = "bindgen"
 version = "0.57.0"
@@ -661,6 +678,15 @@ dependencies = [
  "wyz",
 ]
 
+[[package]]
+name = "blake2"
+version = "0.10.6"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "46502ad458c9a52b69d4d4d32775c788b7a1b85e8bc9d482d92250fc0e3f8efe"
+dependencies = [
+ "digest 0.10.6",
+]
+
 [[package]]
 name = "blake3"
 version = "1.3.3"
@@ -3809,6 +3835,17 @@ dependencies = [
  "windows-sys 0.45.0",
 ]
 
+[[package]]
+name = "password-hash"
+version = "0.5.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "346f04948ba92c43e8469c1ee6736c7563d71012b17d40745260fe106aac2166"
+dependencies = [
+ "base64ct",
+ "rand_core 0.6.4",
+ "subtle",
+]
+
 [[package]]
 name = "paste"
 version = "1.0.12"
@@ -6030,6 +6067,7 @@ dependencies = [
 name = "veilid-core"
 version = "0.1.0"
 dependencies = [
+ "argon2",
  "async-io",
  "async-lock",
  "async-std",
diff --git a/veilid-core/Cargo.toml b/veilid-core/Cargo.toml
index 29d0ea05..10a053ec 100644
--- a/veilid-core/Cargo.toml
+++ b/veilid-core/Cargo.toml
@@ -10,9 +10,9 @@ license = "LGPL-2.0-or-later OR MPL-2.0 OR (MIT AND BSD-3-Clause)"
 crate-type = ["cdylib", "staticlib", "rlib"]
 
 [features]
-default = [ "enable-crypto-vld0" ]
-crypto-test = [ "enable-crypto-vld0", "enable-crypto-none" ]
-crypto-test-none = [ "enable-crypto-none" ]
+default = ["enable-crypto-vld0"]
+crypto-test = ["enable-crypto-vld0", "enable-crypto-none"]
+crypto-test-none = ["enable-crypto-none"]
 enable-crypto-vld0 = []
 enable-crypto-none = []
 rt-async-std = ["async-std", "async-std-resolver", "async_executors/async_std", "rtnetlink?/smol_socket", "veilid-tools/rt-async-std"]
@@ -70,6 +70,7 @@ rkyv = { version = "^0", default_features = false, features = ["std", "alloc", "
 data-encoding = { version = "^2" }
 weak-table = "0.3.2"
 range-set-blaze = { git = "https://github.com/crioux/range-set-blaze.git" } # "0.1.4" xxx replace with git repo
+argon2 = "0.5.0"
 
 # Dependencies for native builds only
 # Linux, Windows, Mac, iOS, Android
diff --git a/veilid-core/src/crypto/crypto_system.rs b/veilid-core/src/crypto/crypto_system.rs
index 84ac60a6..b8b30dc1 100644
--- a/veilid-core/src/crypto/crypto_system.rs
+++ b/veilid-core/src/crypto/crypto_system.rs
@@ -13,6 +13,19 @@ pub trait CryptoSystem {
     ) -> Result<SharedSecret, VeilidAPIError>;
 
     // Generation
+    fn random_bytes(&self, len: u32) -> Vec<u8>;
+    fn default_salt_length(&self) -> u32;
+    fn hash_password(&self, password: &[u8], salt: &[u8]) -> Result<String, VeilidAPIError>;
+    fn verify_password(
+        &self,
+        password: &[u8],
+        password_hash: String,
+    ) -> Result<bool, VeilidAPIError>;
+    fn derive_shared_secret(
+        &self,
+        password: &[u8],
+        salt: &[u8],
+    ) -> Result<SharedSecret, VeilidAPIError>;
     fn random_nonce(&self) -> Nonce;
     fn random_shared_secret(&self) -> SharedSecret;
     fn compute_dh(
diff --git a/veilid-core/src/crypto/none/mod.rs b/veilid-core/src/crypto/none/mod.rs
index f59944ea..18af6b3a 100644
--- a/veilid-core/src/crypto/none/mod.rs
+++ b/veilid-core/src/crypto/none/mod.rs
@@ -1,7 +1,8 @@
 use super::*;
+use argon2::password_hash::Salt;
+use data_encoding::BASE64URL_NOPAD;
 use digest::Digest;
 use rand::RngCore;
-
 const AEAD_OVERHEAD: usize = PUBLIC_KEY_LENGTH;
 pub const CRYPTO_KIND_NONE: CryptoKind = FourCC([b'N', b'O', b'N', b'E']);
 
@@ -80,6 +81,52 @@ impl CryptoSystem for CryptoSystemNONE {
     }
 
     // Generation
+    fn random_bytes(&self, len: u32) -> Vec<u8> {
+        let mut bytes = Vec::<u8>::with_capacity(len as usize);
+        bytes.resize(len as usize, 0u8);
+        random_bytes(bytes.as_mut()).unwrap();
+        bytes
+    }
+    fn default_salt_length(&self) -> u32 {
+        4
+    }
+    fn hash_password(&self, password: &[u8], salt: &[u8]) -> Result<String, VeilidAPIError> {
+        if salt.len() < Salt::MIN_LENGTH || salt.len() > Salt::MAX_LENGTH {
+            apibail_generic!("invalid salt length");
+        }
+        Ok(format!(
+            "{}:{}",
+            BASE64URL_NOPAD.encode(salt),
+            BASE64URL_NOPAD.encode(password)
+        ))
+    }
+    fn verify_password(
+        &self,
+        password: &[u8],
+        password_hash: String,
+    ) -> Result<bool, VeilidAPIError> {
+        let Some((salt, _)) = password_hash.split_once(":") else {
+            apibail_generic!("invalid format");
+        };
+        let Ok(salt) = BASE64URL_NOPAD.decode(salt.as_bytes()) else {
+            apibail_generic!("invalid salt");
+        };
+        return Ok(self.hash_password(password, &salt)? == password_hash);
+    }
+
+    fn derive_shared_secret(
+        &self,
+        password: &[u8],
+        salt: &[u8],
+    ) -> Result<SharedSecret, VeilidAPIError> {
+        if salt.len() < Salt::MIN_LENGTH || salt.len() > Salt::MAX_LENGTH {
+            apibail_generic!("invalid salt length");
+        }
+        Ok(SharedSecret::new(
+            *blake3::hash(self.hash_password(password, salt)?.as_bytes()).as_bytes(),
+        ))
+    }
+
     fn random_nonce(&self) -> Nonce {
         let mut nonce = [0u8; NONCE_LENGTH];
         random_bytes(&mut nonce).unwrap();
diff --git a/veilid-core/src/crypto/tests/test_crypto.rs b/veilid-core/src/crypto/tests/test_crypto.rs
index 3f236b2e..469e3689 100644
--- a/veilid-core/src/crypto/tests/test_crypto.rs
+++ b/veilid-core/src/crypto/tests/test_crypto.rs
@@ -162,6 +162,66 @@ pub async fn test_dh(vcrypto: CryptoSystemVersion) {
     trace!("cached_dh: {:?}", r5);
 }
 
+pub async fn test_generation(vcrypto: CryptoSystemVersion) {
+    let b1 = vcrypto.random_bytes(32);
+    let b2 = vcrypto.random_bytes(32);
+    assert_ne!(b1, b2);
+    assert_eq!(b1.len(), 32);
+    assert_eq!(b2.len(), 32);
+    let b3 = vcrypto.random_bytes(0);
+    let b4 = vcrypto.random_bytes(0);
+    assert_eq!(b3, b4);
+    assert_eq!(b3.len(), 0);
+
+    assert_ne!(vcrypto.default_salt_length(), 0);
+
+    let pstr1 = vcrypto.hash_password(b"abc123", b"qwerasdf").unwrap();
+    let pstr2 = vcrypto.hash_password(b"abc123", b"qwerasdf").unwrap();
+    assert_eq!(pstr1, pstr2);
+    let pstr3 = vcrypto.hash_password(b"abc123", b"qwerasdg").unwrap();
+    assert_ne!(pstr1, pstr3);
+    let pstr4 = vcrypto.hash_password(b"abc124", b"qwerasdf").unwrap();
+    assert_ne!(pstr1, pstr4);
+    let pstr5 = vcrypto.hash_password(b"abc124", b"qwerasdg").unwrap();
+    assert_ne!(pstr3, pstr5);
+
+    vcrypto
+        .hash_password(b"abc123", b"qwe")
+        .expect_err("should reject short salt");
+    vcrypto
+        .hash_password(
+            b"abc123",
+            b"qwerqwerqwerqwerqwerqwerqwerqwerqwerqwerqwerqwerqwerqwerqwerqwerz",
+        )
+        .expect_err("should reject long salt");
+
+    assert!(vcrypto.verify_password(b"abc123", pstr1.clone()).unwrap());
+    assert!(vcrypto.verify_password(b"abc123", pstr2.clone()).unwrap());
+    assert!(vcrypto.verify_password(b"abc123", pstr3.clone()).unwrap());
+    assert!(!vcrypto.verify_password(b"abc123", pstr4.clone()).unwrap());
+    assert!(!vcrypto.verify_password(b"abc123", pstr5.clone()).unwrap());
+
+    let ss1 = vcrypto.derive_shared_secret(b"abc123", b"qwerasdf");
+    let ss2 = vcrypto.derive_shared_secret(b"abc123", b"qwerasdf");
+    assert_eq!(ss1, ss2);
+    let ss3 = vcrypto.derive_shared_secret(b"abc123", b"qwerasdg");
+    assert_ne!(ss1, ss3);
+    let ss4 = vcrypto.derive_shared_secret(b"abc124", b"qwerasdf");
+    assert_ne!(ss1, ss4);
+    let ss5 = vcrypto.derive_shared_secret(b"abc124", b"qwerasdg");
+    assert_ne!(ss3, ss5);
+
+    vcrypto
+        .derive_shared_secret(b"abc123", b"qwe")
+        .expect_err("should reject short salt");
+    vcrypto
+        .derive_shared_secret(
+            b"abc123",
+            b"qwerqwerqwerqwerqwerqwerqwerqwerqwerqwerqwerqwerqwerqwerqwerqwerz",
+        )
+        .expect_err("should reject long salt");
+}
+
 pub async fn test_all() {
     let api = crypto_tests_startup().await;
     let crypto = api.crypto().unwrap();
@@ -171,7 +231,8 @@ pub async fn test_all() {
         let vcrypto = crypto.get(v).unwrap();
         test_aead(vcrypto.clone()).await;
         test_no_auth(vcrypto.clone()).await;
-        test_dh(vcrypto).await;
+        test_dh(vcrypto.clone()).await;
+        test_generation(vcrypto).await;
     }
 
     crypto_tests_shutdown(api.clone()).await;
diff --git a/veilid-core/src/crypto/vld0/mod.rs b/veilid-core/src/crypto/vld0/mod.rs
index cebe9a2b..04e4c5f6 100644
--- a/veilid-core/src/crypto/vld0/mod.rs
+++ b/veilid-core/src/crypto/vld0/mod.rs
@@ -1,5 +1,9 @@
 use super::*;
 
+use argon2::{
+    password_hash::{PasswordHash, PasswordHasher, PasswordVerifier, Salt, SaltString},
+    Argon2,
+};
 use chacha20::cipher::{KeyIvInit, StreamCipher};
 use chacha20::XChaCha20;
 use chacha20poly1305 as ch;
@@ -71,6 +75,63 @@ impl CryptoSystem for CryptoSystemVLD0 {
     }
 
     // Generation
+    fn random_bytes(&self, len: u32) -> Vec<u8> {
+        let mut bytes = Vec::<u8>::with_capacity(len as usize);
+        bytes.resize(len as usize, 0u8);
+        random_bytes(bytes.as_mut()).unwrap();
+        bytes
+    }
+    fn default_salt_length(&self) -> u32 {
+        16
+    }
+    fn hash_password(&self, password: &[u8], salt: &[u8]) -> Result<String, VeilidAPIError> {
+        if salt.len() < Salt::MIN_LENGTH || salt.len() > Salt::MAX_LENGTH {
+            apibail_generic!("invalid salt length");
+        }
+
+        // Hash password to PHC string ($argon2id$v=19$...)
+        let salt = SaltString::encode_b64(salt).map_err(VeilidAPIError::generic)?;
+
+        // Argon2 with default params (Argon2id v19)
+        let argon2 = Argon2::default();
+
+        let password_hash = argon2
+            .hash_password(password, &salt)
+            .map_err(VeilidAPIError::generic)?
+            .to_string();
+        Ok(password_hash)
+    }
+    fn verify_password(
+        &self,
+        password: &[u8],
+        password_hash: String,
+    ) -> Result<bool, VeilidAPIError> {
+        let parsed_hash = PasswordHash::new(&password_hash).map_err(VeilidAPIError::generic)?;
+        // Argon2 with default params (Argon2id v19)
+        let argon2 = Argon2::default();
+
+        Ok(argon2.verify_password(password, &parsed_hash).is_ok())
+    }
+
+    fn derive_shared_secret(
+        &self,
+        password: &[u8],
+        salt: &[u8],
+    ) -> Result<SharedSecret, VeilidAPIError> {
+        if salt.len() < Salt::MIN_LENGTH || salt.len() > Salt::MAX_LENGTH {
+            apibail_generic!("invalid salt length");
+        }
+
+        // Argon2 with default params (Argon2id v19)
+        let argon2 = Argon2::default();
+
+        let mut output_key_material = [0u8; SHARED_SECRET_LENGTH];
+        argon2
+            .hash_password_into(password, salt, &mut output_key_material)
+            .map_err(VeilidAPIError::generic)?;
+        Ok(SharedSecret::new(output_key_material))
+    }
+
     fn random_nonce(&self) -> Nonce {
         let mut nonce = [0u8; NONCE_LENGTH];
         random_bytes(&mut nonce).unwrap();

From 9a43faaf10ee051886337d408da82a646347fc01 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Tue, 16 May 2023 21:34:34 -0400
Subject: [PATCH 37/74] crypto update

---
 veilid-core/src/crypto/crypto_system.rs     |   7 +-
 veilid-core/src/crypto/none/mod.rs          |   4 +-
 veilid-core/src/crypto/tests/test_crypto.rs |  10 +-
 veilid-core/src/crypto/vld0/mod.rs          |   4 +-
 veilid-flutter/example/.gitignore           |   1 -
 veilid-flutter/lib/veilid_crypto.dart       |   5 +
 veilid-flutter/lib/veilid_ffi.dart          |  98 ++++++++++++++++-
 veilid-flutter/lib/veilid_js.dart           |  40 ++++++-
 veilid-flutter/rust/src/dart_ffi.rs         | 103 ++++++++++++++++++
 veilid-wasm/src/lib.rs                      | 111 ++++++++++++++++++++
 10 files changed, 366 insertions(+), 17 deletions(-)

diff --git a/veilid-core/src/crypto/crypto_system.rs b/veilid-core/src/crypto/crypto_system.rs
index b8b30dc1..d97a87bc 100644
--- a/veilid-core/src/crypto/crypto_system.rs
+++ b/veilid-core/src/crypto/crypto_system.rs
@@ -16,11 +16,8 @@ pub trait CryptoSystem {
     fn random_bytes(&self, len: u32) -> Vec<u8>;
     fn default_salt_length(&self) -> u32;
     fn hash_password(&self, password: &[u8], salt: &[u8]) -> Result<String, VeilidAPIError>;
-    fn verify_password(
-        &self,
-        password: &[u8],
-        password_hash: String,
-    ) -> Result<bool, VeilidAPIError>;
+    fn verify_password(&self, password: &[u8], password_hash: &str)
+        -> Result<bool, VeilidAPIError>;
     fn derive_shared_secret(
         &self,
         password: &[u8],
diff --git a/veilid-core/src/crypto/none/mod.rs b/veilid-core/src/crypto/none/mod.rs
index 18af6b3a..7a2ac32f 100644
--- a/veilid-core/src/crypto/none/mod.rs
+++ b/veilid-core/src/crypto/none/mod.rs
@@ -103,7 +103,7 @@ impl CryptoSystem for CryptoSystemNONE {
     fn verify_password(
         &self,
         password: &[u8],
-        password_hash: String,
+        password_hash: &str,
     ) -> Result<bool, VeilidAPIError> {
         let Some((salt, _)) = password_hash.split_once(":") else {
             apibail_generic!("invalid format");
@@ -111,7 +111,7 @@ impl CryptoSystem for CryptoSystemNONE {
         let Ok(salt) = BASE64URL_NOPAD.decode(salt.as_bytes()) else {
             apibail_generic!("invalid salt");
         };
-        return Ok(self.hash_password(password, &salt)? == password_hash);
+        return Ok(&self.hash_password(password, &salt)? == password_hash);
     }
 
     fn derive_shared_secret(
diff --git a/veilid-core/src/crypto/tests/test_crypto.rs b/veilid-core/src/crypto/tests/test_crypto.rs
index 469e3689..e7e0c73e 100644
--- a/veilid-core/src/crypto/tests/test_crypto.rs
+++ b/veilid-core/src/crypto/tests/test_crypto.rs
@@ -195,11 +195,11 @@ pub async fn test_generation(vcrypto: CryptoSystemVersion) {
         )
         .expect_err("should reject long salt");
 
-    assert!(vcrypto.verify_password(b"abc123", pstr1.clone()).unwrap());
-    assert!(vcrypto.verify_password(b"abc123", pstr2.clone()).unwrap());
-    assert!(vcrypto.verify_password(b"abc123", pstr3.clone()).unwrap());
-    assert!(!vcrypto.verify_password(b"abc123", pstr4.clone()).unwrap());
-    assert!(!vcrypto.verify_password(b"abc123", pstr5.clone()).unwrap());
+    assert!(vcrypto.verify_password(b"abc123", &pstr1).unwrap());
+    assert!(vcrypto.verify_password(b"abc123", &pstr2).unwrap());
+    assert!(vcrypto.verify_password(b"abc123", &pstr3).unwrap());
+    assert!(!vcrypto.verify_password(b"abc123", &pstr4).unwrap());
+    assert!(!vcrypto.verify_password(b"abc123", &pstr5).unwrap());
 
     let ss1 = vcrypto.derive_shared_secret(b"abc123", b"qwerasdf");
     let ss2 = vcrypto.derive_shared_secret(b"abc123", b"qwerasdf");
diff --git a/veilid-core/src/crypto/vld0/mod.rs b/veilid-core/src/crypto/vld0/mod.rs
index 04e4c5f6..1ead81c7 100644
--- a/veilid-core/src/crypto/vld0/mod.rs
+++ b/veilid-core/src/crypto/vld0/mod.rs
@@ -104,9 +104,9 @@ impl CryptoSystem for CryptoSystemVLD0 {
     fn verify_password(
         &self,
         password: &[u8],
-        password_hash: String,
+        password_hash: &str,
     ) -> Result<bool, VeilidAPIError> {
-        let parsed_hash = PasswordHash::new(&password_hash).map_err(VeilidAPIError::generic)?;
+        let parsed_hash = PasswordHash::new(password_hash).map_err(VeilidAPIError::generic)?;
         // Argon2 with default params (Argon2id v19)
         let argon2 = Argon2::default();
 
diff --git a/veilid-flutter/example/.gitignore b/veilid-flutter/example/.gitignore
index 0fa6b675..a1345d01 100644
--- a/veilid-flutter/example/.gitignore
+++ b/veilid-flutter/example/.gitignore
@@ -32,7 +32,6 @@
 /build/
 
 # Web related
-lib/generated_plugin_registrant.dart
 
 # Symbolication related
 app.*.symbols
diff --git a/veilid-flutter/lib/veilid_crypto.dart b/veilid-flutter/lib/veilid_crypto.dart
index f11f0ac9..881f98db 100644
--- a/veilid-flutter/lib/veilid_crypto.dart
+++ b/veilid-flutter/lib/veilid_crypto.dart
@@ -141,6 +141,11 @@ abstract class VeilidCryptoSystem {
   CryptoKind kind();
   Future<SharedSecret> cachedDH(PublicKey key, SecretKey secret);
   Future<SharedSecret> computeDH(PublicKey key, SecretKey secret);
+  Future<Uint8List> randomBytes(int len);
+  Future<int> defaultSaltLength();
+  Future<String> hashPassword(Uint8List password, Uint8List salt);
+  Future<bool> verifyPassword(Uint8List password, String passwordHash);
+  Future<SharedSecret> deriveSharedSecret(Uint8List password, Uint8List salt);
   Future<Nonce> randomNonce();
   Future<SharedSecret> randomSharedSecret();
   Future<KeyPair> generateKeyPair();
diff --git a/veilid-flutter/lib/veilid_ffi.dart b/veilid-flutter/lib/veilid_ffi.dart
index 7597d7c0..004d6957 100644
--- a/veilid-flutter/lib/veilid_ffi.dart
+++ b/veilid-flutter/lib/veilid_ffi.dart
@@ -213,6 +213,28 @@ typedef _CryptoComputeDHC = Void Function(
     Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>);
 typedef _CryptoComputeDHDart = void Function(
     int, int, Pointer<Utf8>, Pointer<Utf8>);
+// fn crypto_random_bytes(port: i64, kind: u32, len: u32)
+typedef _CryptoRandomBytesC = Void Function(Int64, Uint32, Uint32);
+typedef _CryptoRandomBytesDart = void Function(int, int, int);
+// fn crypto_default_salt_length(port: i64, kind: u32)
+typedef _CryptoDefaultSaltLengthC = Void Function(Int64, Uint32);
+typedef _CryptoDefaultSaltLengthDart = void Function(int, int);
+// fn crypto_hash_password(port: i64, kind: u32, password: FfiStr, salt: FfiStr )
+typedef _CryptoHashPasswordC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>);
+typedef _CryptoHashPasswordDart = void Function(
+    int, int, Pointer<Utf8>, Pointer<Utf8>);
+// fn crypto_verify_password(port: i64, kind: u32, password: FfiStr, password_hash: FfiStr )
+typedef _CryptoVerifyPasswordC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>);
+typedef _CryptoVerifyPasswordDart = void Function(
+    int, int, Pointer<Utf8>, Pointer<Utf8>);
+// fn crypto_derive_shared_secret(port: i64, kind: u32, password: FfiStr, salt: FfiStr )
+typedef _CryptoDeriveSharedSecretC = Void Function(
+    Int64, Uint32, Pointer<Utf8>, Pointer<Utf8>);
+typedef _CryptoDeriveSharedSecretDart = void Function(
+    int, int, Pointer<Utf8>, Pointer<Utf8>);
+
 // fn crypto_random_nonce(port: i64, kind: u32)
 typedef _CryptoRandomNonceC = Void Function(Int64, Uint32);
 typedef _CryptoRandomNonceDart = void Function(int, int);
@@ -884,7 +906,7 @@ class VeilidTableDBFFI extends VeilidTableDB {
 // FFI implementation of VeilidCryptoSystem
 class VeilidCryptoSystemFFI implements VeilidCryptoSystem {
   final CryptoKind _kind;
-  VeilidFFI _ffi;
+  final VeilidFFI _ffi;
 
   VeilidCryptoSystemFFI._(this._ffi, this._kind);
 
@@ -915,6 +937,59 @@ class VeilidCryptoSystemFFI implements VeilidCryptoSystem {
     return processFutureJson(SharedSecret.fromJson, recvPort.first);
   }
 
+  @override
+  Future<Uint8List> randomBytes(int len) async {
+    final recvPort = ReceivePort("crypto_random_bytes");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoRandomBytes(sendPort.nativePort, _kind, len);
+    final out = await processFuturePlain(recvPort.first);
+    return base64UrlNoPadDecode(out);
+  }
+
+  @override
+  Future<int> defaultSaltLength() {
+    final recvPort = ReceivePort("crypto_default_salt_length");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoDefaultSaltLength(sendPort.nativePort, _kind);
+    return processFuturePlain(recvPort.first);
+  }
+
+  @override
+  Future<String> hashPassword(Uint8List password, Uint8List salt) {
+    final nativeEncodedPassword = base64UrlNoPadEncode(password).toNativeUtf8();
+    final nativeEncodedSalt = base64UrlNoPadEncode(salt).toNativeUtf8();
+
+    final recvPort = ReceivePort("crypto_hash_password");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoHashPassword(
+        sendPort.nativePort, _kind, nativeEncodedPassword, nativeEncodedSalt);
+    return processFuturePlain(recvPort.first);
+  }
+
+  @override
+  Future<bool> verifyPassword(Uint8List password, String passwordHash) {
+    final nativeEncodedPassword = base64UrlNoPadEncode(password).toNativeUtf8();
+    final nativeEncodedPasswordHash = passwordHash.toNativeUtf8();
+
+    final recvPort = ReceivePort("crypto_verify_password");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoVerifyPassword(sendPort.nativePort, _kind,
+        nativeEncodedPassword, nativeEncodedPasswordHash);
+    return processFuturePlain(recvPort.first);
+  }
+
+  @override
+  Future<SharedSecret> deriveSharedSecret(Uint8List password, Uint8List salt) {
+    final nativeEncodedPassword = base64UrlNoPadEncode(password).toNativeUtf8();
+    final nativeEncodedSalt = base64UrlNoPadEncode(salt).toNativeUtf8();
+
+    final recvPort = ReceivePort("crypto_derive_shared_secret");
+    final sendPort = recvPort.sendPort;
+    _ffi._cryptoHashPassword(
+        sendPort.nativePort, _kind, nativeEncodedPassword, nativeEncodedSalt);
+    return processFutureJson(SharedSecret.fromJson, recvPort.first);
+  }
+
   @override
   Future<Nonce> randomNonce() {
     final recvPort = ReceivePort("crypto_random_nonce");
@@ -1134,6 +1209,13 @@ class VeilidFFI implements Veilid {
 
   final _CryptoCachedDHDart _cryptoCachedDH;
   final _CryptoComputeDHDart _cryptoComputeDH;
+
+  final _CryptoRandomBytesDart _cryptoRandomBytes;
+  final _CryptoDefaultSaltLengthDart _cryptoDefaultSaltLength;
+  final _CryptoHashPasswordDart _cryptoHashPassword;
+  final _CryptoVerifyPasswordDart _cryptoVerifyPassword;
+  final _CryptoDeriveSharedSecretDart _cryptoDeriveSharedSecret;
+
   final _CryptoRandomNonceDart _cryptoRandomNonce;
   final _CryptoRandomSharedSecretDart _cryptoRandomSharedSecret;
   final _CryptoGenerateKeyPairDart _cryptoGenerateKeyPair;
@@ -1295,6 +1377,20 @@ class VeilidFFI implements Veilid {
         _cryptoComputeDH =
             dylib.lookupFunction<_CryptoComputeDHC, _CryptoComputeDHDart>(
                 'crypto_compute_dh'),
+        _cryptoRandomBytes =
+            dylib.lookupFunction<_CryptoRandomBytesC, _CryptoRandomBytesDart>(
+                'crypto_random_bytes'),
+        _cryptoDefaultSaltLength = dylib.lookupFunction<
+            _CryptoDefaultSaltLengthC,
+            _CryptoDefaultSaltLengthDart>('crypto_default_salt_length'),
+        _cryptoHashPassword =
+            dylib.lookupFunction<_CryptoHashPasswordC, _CryptoHashPasswordDart>(
+                'crypto_hash_password'),
+        _cryptoVerifyPassword = dylib.lookupFunction<_CryptoVerifyPasswordC,
+            _CryptoVerifyPasswordDart>('crypto_verify_password'),
+        _cryptoDeriveSharedSecret = dylib.lookupFunction<
+            _CryptoDeriveSharedSecretC,
+            _CryptoVerifyPasswordDart>('crypto_derive_shared_secret'),
         _cryptoRandomNonce =
             dylib.lookupFunction<_CryptoRandomNonceC, _CryptoRandomNonceDart>(
                 'crypto_random_nonce'),
diff --git a/veilid-flutter/lib/veilid_js.dart b/veilid-flutter/lib/veilid_js.dart
index dad121af..8badebe6 100644
--- a/veilid-flutter/lib/veilid_js.dart
+++ b/veilid-flutter/lib/veilid_js.dart
@@ -157,7 +157,10 @@ class VeilidCryptoSystemJS implements VeilidCryptoSystem {
   final CryptoKind _kind;
   final VeilidJS _js;
 
-  VeilidCryptoSystemJS._(this._js, this._kind);
+  VeilidCryptoSystemJS._(this._js, this._kind) {
+    // Keep the reference
+    _js;
+  }
 
   @override
   CryptoKind kind() {
@@ -178,6 +181,41 @@ class VeilidCryptoSystemJS implements VeilidCryptoSystem {
             [_kind, jsonEncode(key), jsonEncode(secret)]))));
   }
 
+  @override
+  Future<Uint8List> randomBytes(int len) async {
+    return base64UrlNoPadDecode(await _wrapApiPromise(
+        js_util.callMethod(wasm, "crypto_random_bytes", [_kind, len])));
+  }
+
+  @override
+  Future<int> defaultSaltLength() {
+    return _wrapApiPromise(
+        js_util.callMethod(wasm, "crypto_default_salt_length", [_kind]));
+  }
+
+  @override
+  Future<String> hashPassword(Uint8List password, Uint8List salt) {
+    return _wrapApiPromise(js_util.callMethod(wasm, "crypto_hash_password",
+        [_kind, base64UrlNoPadEncode(password), base64UrlNoPadEncode(salt)]));
+  }
+
+  @override
+  Future<bool> verifyPassword(Uint8List password, String passwordHash) {
+    return _wrapApiPromise(js_util.callMethod(wasm, "crypto_verify_password",
+        [_kind, base64UrlNoPadEncode(password), passwordHash]));
+  }
+
+  @override
+  Future<SharedSecret> deriveSharedSecret(
+      Uint8List password, Uint8List salt) async {
+    return SharedSecret.fromJson(jsonDecode(await _wrapApiPromise(js_util
+        .callMethod(wasm, "crypto_derive_shared_secret", [
+      _kind,
+      base64UrlNoPadEncode(password),
+      base64UrlNoPadEncode(salt)
+    ]))));
+  }
+
   @override
   Future<Nonce> randomNonce() async {
     return Nonce.fromJson(jsonDecode(await _wrapApiPromise(
diff --git a/veilid-flutter/rust/src/dart_ffi.rs b/veilid-flutter/rust/src/dart_ffi.rs
index 8e521ecf..d5ebd305 100644
--- a/veilid-flutter/rust/src/dart_ffi.rs
+++ b/veilid-flutter/rust/src/dart_ffi.rs
@@ -1091,6 +1091,109 @@ pub extern "C" fn crypto_compute_dh(port: i64, kind: u32, key: FfiStr, secret: F
     });
 }
 
+
+#[no_mangle]
+pub extern "C" fn crypto_random_bytes(port: i64, kind: u32, len: u32) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    DartIsolateWrapper::new(port).spawn_result(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_random_bytes", "kind", kind.to_string()))?;
+        let out = csv.random_bytes(len);
+        let out = data_encoding::BASE64URL_NOPAD.encode(&out);
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_default_salt_length(port: i64, kind: u32) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    DartIsolateWrapper::new(port).spawn_result(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_default_salt_length", "kind", kind.to_string()))?;
+        let out = csv.default_salt_length();
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_hash_password(port: i64, kind: u32, password: FfiStr, salt: FfiStr ) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+    let password: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(
+            password.into_opt_string()
+                .unwrap()
+                .as_bytes(),
+        )
+        .unwrap();
+    let salt: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(
+            salt.into_opt_string()
+                .unwrap()
+                .as_bytes(),
+        )
+        .unwrap();
+
+    DartIsolateWrapper::new(port).spawn_result(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_hash_password", "kind", kind.to_string()))?;
+        let out = csv.hash_password(&password, &salt)?;
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_verify_password(port: i64, kind: u32, password: FfiStr, password_hash: FfiStr ) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+    let password: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(
+            password.into_opt_string()
+                .unwrap()
+                .as_bytes(),
+        )
+        .unwrap();
+    let password_hash = password_hash.into_opt_string().unwrap();
+
+    DartIsolateWrapper::new(port).spawn_result(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_verify_password", "kind", kind.to_string()))?;
+        let out = csv.verify_password(&password, &password_hash)?;
+        APIResult::Ok(out)
+    });
+}
+
+#[no_mangle]
+pub extern "C" fn crypto_derive_shared_secret(port: i64, kind: u32, password: FfiStr, salt: FfiStr ) {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+    let password: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(
+            password.into_opt_string()
+                .unwrap()
+                .as_bytes(),
+        )
+        .unwrap();
+        let salt: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(
+            salt.into_opt_string()
+                .unwrap()
+                .as_bytes(),
+        )
+        .unwrap();
+
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let veilid_api = get_veilid_api().await?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| veilid_core::VeilidAPIError::invalid_argument("crypto_derive_shared_secret", "kind", kind.to_string()))?;
+        let out = csv.derive_shared_secret(&password, &salt)?;
+        APIResult::Ok(out)
+    });
+}
+
 #[no_mangle]
 pub extern "C" fn crypto_random_nonce(port: i64, kind: u32) {
     let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
diff --git a/veilid-wasm/src/lib.rs b/veilid-wasm/src/lib.rs
index 86a4126e..80703dd9 100644
--- a/veilid-wasm/src/lib.rs
+++ b/veilid-wasm/src/lib.rs
@@ -1014,6 +1014,117 @@ pub fn crypto_compute_dh(kind: u32, key: String, secret: String) -> Promise {
     })
 }
 
+#[wasm_bindgen()]
+pub fn crypto_random_bytes(kind: u32, len: u32) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    wrap_api_future_plain(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_random_bytes",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.random_bytes(len);
+        let out = data_encoding::BASE64URL_NOPAD.encode(&out);
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_default_salt_length(kind: u32) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+
+    wrap_api_future_plain(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_default_salt_length",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.default_salt_length();
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_hash_password(kind: u32, password: String, salt: String) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+    let password: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(password.as_bytes())
+        .unwrap();
+    let salt: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(salt.as_bytes())
+        .unwrap();
+
+    wrap_api_future_plain(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_hash_password",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.hash_password(&password, &salt)?;
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_verify_password(kind: u32, password: String, password_hash: String) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+    let password: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(password.as_bytes())
+        .unwrap();
+
+    wrap_api_future_plain(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_verify_password",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.verify_password(&password, &password_hash)?;
+        APIResult::Ok(out)
+    })
+}
+
+#[wasm_bindgen()]
+pub fn crypto_derive_shared_secret(kind: u32, password: String, salt: String) -> Promise {
+    let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);
+    let password: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(password.as_bytes())
+        .unwrap();
+    let salt: Vec<u8> = data_encoding::BASE64URL_NOPAD
+        .decode(salt.as_bytes())
+        .unwrap();
+
+    wrap_api_future_json(async move {
+        let veilid_api = get_veilid_api()?;
+        let crypto = veilid_api.crypto()?;
+        let csv = crypto.get(kind).ok_or_else(|| {
+            veilid_core::VeilidAPIError::invalid_argument(
+                "crypto_derive_shared_secret",
+                "kind",
+                kind.to_string(),
+            )
+        })?;
+        let out = csv.derive_shared_secret(&password, &salt)?;
+        APIResult::Ok(out)
+    })
+}
+
 #[wasm_bindgen()]
 pub fn crypto_random_nonce(kind: u32) -> Promise {
     let kind: veilid_core::CryptoKind = veilid_core::FourCC::from(kind);

From 51b8de61d072eb268ea7a20fdbee8f95e896ca17 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Wed, 17 May 2023 07:55:41 -0400
Subject: [PATCH 38/74] flutter update

---
 .../Flutter/GeneratedPluginRegistrant.swift   |   6 +-
 veilid-flutter/example/pubspec.lock           | 120 +++++++++---------
 2 files changed, 63 insertions(+), 63 deletions(-)

diff --git a/veilid-flutter/example/macos/Flutter/GeneratedPluginRegistrant.swift b/veilid-flutter/example/macos/Flutter/GeneratedPluginRegistrant.swift
index 298c79e7..bcc47afb 100644
--- a/veilid-flutter/example/macos/Flutter/GeneratedPluginRegistrant.swift
+++ b/veilid-flutter/example/macos/Flutter/GeneratedPluginRegistrant.swift
@@ -5,12 +5,12 @@
 import FlutterMacOS
 import Foundation
 
-import flutter_acrylic
-import path_provider_macos
+import macos_window_utils
+import path_provider_foundation
 import veilid
 
 func RegisterGeneratedPlugins(registry: FlutterPluginRegistry) {
-  FlutterAcrylicPlugin.register(with: registry.registrar(forPlugin: "FlutterAcrylicPlugin"))
+  MacOSWindowUtilsPlugin.register(with: registry.registrar(forPlugin: "MacOSWindowUtilsPlugin"))
   PathProviderPlugin.register(with: registry.registrar(forPlugin: "PathProviderPlugin"))
   VeilidPlugin.register(with: registry.registrar(forPlugin: "VeilidPlugin"))
 }
diff --git a/veilid-flutter/example/pubspec.lock b/veilid-flutter/example/pubspec.lock
index c8f7903c..1466401e 100644
--- a/veilid-flutter/example/pubspec.lock
+++ b/veilid-flutter/example/pubspec.lock
@@ -13,10 +13,10 @@ packages:
     dependency: transitive
     description:
       name: async
-      sha256: bfe67ef28df125b7dddcea62755991f807aa39a2492a23e1550161692950bbe0
+      sha256: "947bfcf187f74dbc5e146c9eb9c0f10c9f8b30743e341481c1e2ed3ecc18c20c"
       url: "https://pub.dev"
     source: hosted
-    version: "2.10.0"
+    version: "2.11.0"
   boolean_selector:
     dependency: transitive
     description:
@@ -29,18 +29,18 @@ packages:
     dependency: transitive
     description:
       name: change_case
-      sha256: "2757d850a43d333fd12d6cce49e2f1248ac89a16ae10ce4ca34d4c7d73286f3c"
+      sha256: f4e08feaa845e75e4f5ad2b0e15f24813d7ea6c27e7b78252f0c17f752cf1157
       url: "https://pub.dev"
     source: hosted
-    version: "1.0.2"
+    version: "1.1.0"
   characters:
     dependency: transitive
     description:
       name: characters
-      sha256: e6a326c8af69605aec75ed6c187d06b349707a27fbff8222ca9cc2cff167975c
+      sha256: "04a925763edad70e8443c99234dc3328f442e811f1d8fd1a72f1c8ad0f69a605"
       url: "https://pub.dev"
     source: hosted
-    version: "1.2.1"
+    version: "1.3.0"
   charcode:
     dependency: transitive
     description:
@@ -61,10 +61,10 @@ packages:
     dependency: transitive
     description:
       name: collection
-      sha256: cfc915e6923fe5ce6e153b0723c753045de46de1b4d63771530504004a45fae0
+      sha256: "4a07be6cb69c84d677a6c3096fcf960cc3285a8330b4603e0d463d15d9bd934c"
       url: "https://pub.dev"
     source: hosted
-    version: "1.17.0"
+    version: "1.17.1"
   convert:
     dependency: transitive
     description:
@@ -101,10 +101,10 @@ packages:
     dependency: transitive
     description:
       name: ffi
-      sha256: a38574032c5f1dd06c4aee541789906c12ccaab8ba01446e800d9c5b79c4a978
+      sha256: ed5337a5660c506388a9f012be0288fb38b49020ce2b45fe1f8b8323fe429f99
       url: "https://pub.dev"
     source: hosted
-    version: "2.0.1"
+    version: "2.0.2"
   file:
     dependency: transitive
     description:
@@ -130,10 +130,10 @@ packages:
     dependency: "direct main"
     description:
       name: flutter_acrylic
-      sha256: "646200d98e8dd2bd4ab931d4ba4f6b4cb899475d6401414017ba5d71b0fac42b"
+      sha256: "5aea2c850c560c07717a62434ea9cb1565c2282dc78dd2e60f98a78c05f13d7b"
       url: "https://pub.dev"
     source: hosted
-    version: "1.0.0+2"
+    version: "1.1.2"
   flutter_lints:
     dependency: "direct dev"
     description:
@@ -164,18 +164,18 @@ packages:
     dependency: transitive
     description:
       name: js
-      sha256: "5528c2f391ededb7775ec1daa69e65a2d61276f7552de2b5f7b8d34ee9fd4ab7"
+      sha256: f2c445dce49627136094980615a031419f7f3eb393237e4ecd97ac15dea343f3
       url: "https://pub.dev"
     source: hosted
-    version: "0.6.5"
+    version: "0.6.7"
   lints:
     dependency: transitive
     description:
       name: lints
-      sha256: "5e4a9cd06d447758280a8ac2405101e0e2094d2a1dbdd3756aec3fe7775ba593"
+      sha256: "6b0206b0bf4f04961fc5438198ccb3a885685cd67d4d4a32cc20ad7f8adbe015"
       url: "https://pub.dev"
     source: hosted
-    version: "2.0.1"
+    version: "2.1.0"
   loggy:
     dependency: "direct main"
     description:
@@ -184,14 +184,22 @@ packages:
       url: "https://pub.dev"
     source: hosted
     version: "2.0.3"
+  macos_window_utils:
+    dependency: transitive
+    description:
+      name: macos_window_utils
+      sha256: "510de576b5432dd9ef9e4c258abcc021c6dfbb17a78a344688848a6784b352b8"
+      url: "https://pub.dev"
+    source: hosted
+    version: "1.1.2"
   matcher:
     dependency: transitive
     description:
       name: matcher
-      sha256: "16db949ceee371e9b99d22f88fa3a73c4e59fd0afed0bd25fc336eb76c198b72"
+      sha256: "6501fbd55da300384b768785b83e5ce66991266cec21af89ab9ae7f5ce1c4cbb"
       url: "https://pub.dev"
     source: hosted
-    version: "0.12.13"
+    version: "0.12.15"
   material_color_utilities:
     dependency: transitive
     description:
@@ -204,74 +212,66 @@ packages:
     dependency: transitive
     description:
       name: meta
-      sha256: "6c268b42ed578a53088d834796959e4a1814b5e9e164f147f580a386e5decf42"
+      sha256: "3c74dbf8763d36539f114c799d8a2d87343b5067e9d796ca22b5eb8437090ee3"
       url: "https://pub.dev"
     source: hosted
-    version: "1.8.0"
+    version: "1.9.1"
   path:
     dependency: "direct main"
     description:
       name: path
-      sha256: db9d4f58c908a4ba5953fcee2ae317c94889433e5024c27ce74a37f94267945b
+      sha256: "8829d8a55c13fc0e37127c29fedf290c102f4e40ae94ada574091fe0ff96c917"
       url: "https://pub.dev"
     source: hosted
-    version: "1.8.2"
+    version: "1.8.3"
   path_provider:
     dependency: "direct main"
     description:
       name: path_provider
-      sha256: "050e8e85e4b7fecdf2bb3682c1c64c4887a183720c802d323de8a5fd76d372dd"
+      sha256: "3087813781ab814e4157b172f1a11c46be20179fcc9bea043e0fba36bc0acaa2"
       url: "https://pub.dev"
     source: hosted
-    version: "2.0.11"
+    version: "2.0.15"
   path_provider_android:
     dependency: transitive
     description:
       name: path_provider_android
-      sha256: a776c088d671b27f6e3aa8881d64b87b3e80201c64e8869b811325de7a76c15e
+      sha256: "2cec049d282c7f13c594b4a73976b0b4f2d7a1838a6dd5aaf7bd9719196bee86"
       url: "https://pub.dev"
     source: hosted
-    version: "2.0.22"
-  path_provider_ios:
+    version: "2.0.27"
+  path_provider_foundation:
     dependency: transitive
     description:
-      name: path_provider_ios
-      sha256: "03d639406f5343478352433f00d3c4394d52dac8df3d847869c5e2333e0bbce8"
+      name: path_provider_foundation
+      sha256: "1995d88ec2948dac43edf8fe58eb434d35d22a2940ecee1a9fefcd62beee6eb3"
       url: "https://pub.dev"
     source: hosted
-    version: "2.0.11"
+    version: "2.2.3"
   path_provider_linux:
     dependency: transitive
     description:
       name: path_provider_linux
-      sha256: ab0987bf95bc591da42dffb38c77398fc43309f0b9b894dcc5d6f40c4b26c379
+      sha256: "2ae08f2216225427e64ad224a24354221c2c7907e448e6e0e8b57b1eb9f10ad1"
       url: "https://pub.dev"
     source: hosted
-    version: "2.1.7"
-  path_provider_macos:
-    dependency: transitive
-    description:
-      name: path_provider_macos
-      sha256: "2a97e7fbb7ae9dcd0dfc1220a78e9ec3e71da691912e617e8715ff2a13086ae8"
-      url: "https://pub.dev"
-    source: hosted
-    version: "2.0.6"
+    version: "2.1.10"
   path_provider_platform_interface:
     dependency: transitive
     description:
       name: path_provider_platform_interface
-      sha256: f0abc8ebd7253741f05488b4813d936b4d07c6bae3e86148a09e342ee4b08e76
+      sha256: "57585299a729335f1298b43245842678cb9f43a6310351b18fb577d6e33165ec"
       url: "https://pub.dev"
     source: hosted
-    version: "2.0.5"
+    version: "2.0.6"
   path_provider_windows:
     dependency: transitive
     description:
       name: path_provider_windows
-      sha256: bcabbe399d4042b8ee687e17548d5d3f527255253b4a639f5f8d2094a9c2b45c
+      sha256: d3f80b32e83ec208ac95253e0cd4d298e104fbc63cb29c5c69edaed43b0c69d6
       url: "https://pub.dev"
     source: hosted
-    version: "2.1.3"
+    version: "2.1.6"
   platform:
     dependency: transitive
     description:
@@ -292,10 +292,10 @@ packages:
     dependency: transitive
     description:
       name: plugin_platform_interface
-      sha256: dbf0f707c78beedc9200146ad3cb0ab4d5da13c246336987be6940f026500d3a
+      sha256: "6a2128648c854906c53fa8e33986fc0247a1116122f9534dd20e3ab9e16a32bc"
       url: "https://pub.dev"
     source: hosted
-    version: "2.1.3"
+    version: "2.1.4"
   process:
     dependency: transitive
     description:
@@ -308,10 +308,10 @@ packages:
     dependency: transitive
     description:
       name: quiver
-      sha256: "93982981971e812c94d4a6fa3a57b89f9ec12b38b6380cd3c1370c3b01e4580e"
+      sha256: b1c1ac5ce6688d77f65f3375a9abb9319b3cb32486bdc7a1e0fdf004d7ba4e47
       url: "https://pub.dev"
     source: hosted
-    version: "3.1.0"
+    version: "3.2.1"
   sky_engine:
     dependency: transitive
     description: flutter
@@ -369,18 +369,18 @@ packages:
     dependency: transitive
     description:
       name: test_api
-      sha256: ad540f65f92caa91bf21dfc8ffb8c589d6e4dc0c2267818b4cc2792857706206
+      sha256: eb6ac1540b26de412b3403a163d919ba86f6a973fe6cc50ae3541b80092fdcfb
       url: "https://pub.dev"
     source: hosted
-    version: "0.4.16"
+    version: "0.5.1"
   typed_data:
     dependency: transitive
     description:
       name: typed_data
-      sha256: "26f87ade979c47a150c9eaab93ccd2bebe70a27dc0b4b29517f2904f04eb11a5"
+      sha256: facc8d6582f16042dd49f2463ff1bd6e2c9ef9f3d5da3d9b087e244a7b564b3c
       url: "https://pub.dev"
     source: hosted
-    version: "1.3.1"
+    version: "1.3.2"
   vector_math:
     dependency: transitive
     description:
@@ -400,26 +400,26 @@ packages:
     dependency: transitive
     description:
       name: win32
-      sha256: ca121dbbadb3e43b449053feab0cdf3f2bff93b107cacf0290e3d29f717374b6
+      sha256: "5a751eddf9db89b3e5f9d50c20ab8612296e4e8db69009788d6c8b060a84191c"
       url: "https://pub.dev"
     source: hosted
-    version: "3.1.2"
+    version: "4.1.4"
   xdg_directories:
     dependency: transitive
     description:
       name: xdg_directories
-      sha256: "11541eedefbcaec9de35aa82650b695297ce668662bbd6e3911a7fabdbde589f"
+      sha256: ee1505df1426458f7f60aac270645098d318a8b4766d85fde75f76f2e21807d1
       url: "https://pub.dev"
     source: hosted
-    version: "0.2.0+2"
+    version: "1.0.0"
   xterm:
     dependency: "direct main"
     description:
       name: xterm
-      sha256: "990286eead883ff5ad9b8ea7674183dced2fe5421771e95ce32cbaa9117d24d8"
+      sha256: "6a02b15d03152b8186e12790902ff28c8a932fc441e89fa7255a7491661a8e69"
       url: "https://pub.dev"
     source: hosted
-    version: "3.4.0"
+    version: "3.5.0"
 sdks:
-  dart: ">=2.18.0 <3.0.0"
-  flutter: ">=3.0.0"
+  dart: ">=3.0.0-417 <4.0.0"
+  flutter: ">=3.7.0"

From 909b86a04d8563c51790892a45bff58d409db7c3 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Wed, 17 May 2023 13:38:36 -0400
Subject: [PATCH 39/74] fix macos

---
 Cargo.lock                                    | 600 +++++++++---------
 veilid-flutter/example/lib/log_terminal.dart  |   3 -
 veilid-flutter/example/lib/main.dart          |   1 -
 veilid-flutter/example/macos/Podfile          |   2 +-
 veilid-flutter/example/macos/Podfile.lock     |  29 +-
 .../macos/Runner.xcodeproj/project.pbxproj    |   9 +-
 veilid-flutter/example/pubspec.lock           |   2 +-
 veilid-flutter/example/pubspec.yaml           |   2 +-
 veilid-flutter/lib/routing_context.dart       |  21 +-
 veilid-flutter/lib/veilid.dart                |   8 +-
 veilid-flutter/lib/veilid_config.dart         |  27 +-
 veilid-flutter/lib/veilid_ffi.dart            |  10 +-
 veilid-flutter/lib/veilid_js.dart             |  15 +-
 veilid-flutter/lib/veilid_state.dart          |  73 +--
 veilid-flutter/macos/veilid.podspec           |   4 +-
 veilid-flutter/pubspec.yaml                   |   3 +-
 veilid-flutter/test/veilid_test.dart          |   2 +-
 17 files changed, 368 insertions(+), 443 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 142cc8d4..e8562a1a 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -171,9 +171,9 @@ dependencies = [
 
 [[package]]
 name = "anyhow"
-version = "1.0.70"
+version = "1.0.71"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7de8ce5e0f9f8d88245311066a578d72b7af3e7088f32783804676302df237e4"
+checksum = "9c7d0618f0e0b7e8ff11427422b64564d5fb0be1940354bfe2e0529b18a9d9b8"
 
 [[package]]
 name = "argon2"
@@ -375,7 +375,7 @@ checksum = "16e62a023e7c117e27523144c5d2459f4397fcc3cab0085af8e2224f643a0193"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.15",
+ "syn 2.0.16",
 ]
 
 [[package]]
@@ -419,7 +419,7 @@ checksum = "b9ccdd8f2a161be9bd5c023df56f1b2a0bd1d83872ae53b71a84a12c9bf6e842"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.15",
+ "syn 2.0.16",
 ]
 
 [[package]]
@@ -437,9 +437,9 @@ dependencies = [
 
 [[package]]
 name = "async-tungstenite"
-version = "0.21.0"
+version = "0.22.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "b6d2c69d237cf761215175f390021344f5530101cca8164d69878b8a1779e80c"
+checksum = "6a48bf42ab2178374a79853bceef600e279258c75049b20481b022d73c908882"
 dependencies = [
  "async-tls 0.12.0",
  "futures-io",
@@ -461,9 +461,9 @@ dependencies = [
  "futures-task",
  "futures-timer",
  "futures-util",
- "pin-project 1.0.12",
+ "pin-project 1.1.0",
  "rustc_version 0.4.0",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "wasm-bindgen-futures",
 ]
 
@@ -480,12 +480,9 @@ dependencies = [
 
 [[package]]
 name = "atomic"
-version = "0.5.1"
+version = "0.5.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "b88d82667eca772c4aa12f0f1348b3ae643424c8876448f3f7bd5787032e234c"
-dependencies = [
- "autocfg",
-]
+checksum = "c59bdb34bc650a32731b31bd8f0829cc15d24a708ee31559e0bb34f2bc320cba"
 
 [[package]]
 name = "atomic-waker"
@@ -524,9 +521,9 @@ checksum = "d468802bab17cbc0cc575e9b053f41e72aa36bfa6b7f55e3529ffa43161b97fa"
 
 [[package]]
 name = "axum"
-version = "0.6.16"
+version = "0.6.18"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "113713495a32dd0ab52baf5c10044725aa3aec00b31beda84218e469029b72a3"
+checksum = "f8175979259124331c1d7bf6586ee7e0da434155e4b2d48ec2c8386281d8df39"
 dependencies = [
  "async-trait",
  "axum-core",
@@ -577,7 +574,7 @@ dependencies = [
  "cc",
  "cfg-if 1.0.0",
  "libc",
- "miniz_oxide",
+ "miniz_oxide 0.6.2",
  "object",
  "rustc-demangle",
 ]
@@ -662,9 +659,9 @@ checksum = "bef38d45163c2f1dde094a7dfd33ccf595c92905c8f8f4fdc18d06fb1037718a"
 
 [[package]]
 name = "bitflags"
-version = "2.1.0"
+version = "2.3.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c70beb79cbb5ce9c4f8e20849978f34225931f665bb49efa6982875a4d5facb3"
+checksum = "0f6b0c9ebae276e207a3e4e989ed9f3be8b7ce8728b80629c98c21d27742e6ba"
 
 [[package]]
 name = "bitvec"
@@ -778,9 +775,9 @@ checksum = "cc12a55e9bd3840279c248c96ecf541d5ba98d6654e08869fe167121384a582c"
 
 [[package]]
 name = "bumpalo"
-version = "3.12.1"
+version = "3.12.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "9b1ce199063694f33ffb7dd4e0ee620741495c32833cde5aa08f02a0bf96f0c8"
+checksum = "3c6ed94e98ecff0c12dd1b04c15ec0d7d9458ca8fe806cea6f12954efe74c63b"
 
 [[package]]
 name = "byte-slice-cast"
@@ -790,9 +787,9 @@ checksum = "c3ac9f8b63eca6fd385229b3675f6cc0dc5c8a5c8a54a59d4f52ffd670d87b0c"
 
 [[package]]
 name = "bytecheck"
-version = "0.6.10"
+version = "0.6.11"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "13fe11640a23eb24562225322cd3e452b93a3d4091d62fab69c70542fcd17d1f"
+checksum = "8b6372023ac861f6e6dc89c8344a8f398fb42aaba2b5dbc649ca0c0e9dbcb627"
 dependencies = [
  "bytecheck_derive",
  "ptr_meta",
@@ -801,9 +798,9 @@ dependencies = [
 
 [[package]]
 name = "bytecheck_derive"
-version = "0.6.10"
+version = "0.6.11"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e31225543cb46f81a7e224762764f4a6a0f097b1db0b175f69e8065efaa42de5"
+checksum = "a7ec4c6f261935ad534c0c22dbef2201b45918860eb1c574b972bd213a76af61"
 dependencies = [
  "proc-macro2",
  "quote",
@@ -830,15 +827,15 @@ checksum = "89b2fd2a0dcf38d7971e2194b6b6eebab45ae01067456a7fd93d5547a61b70be"
 
 [[package]]
 name = "capnp"
-version = "0.16.1"
+version = "0.17.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "18eca1b9aca7e3623dda158213b1b79c1e5c4293fbbf0ead6b9ed28a1763bbff"
+checksum = "13e2d432d1601d61d1e11140d04e9d239b5cf7316fa1106523c3d86eea19c29d"
 
 [[package]]
 name = "capnp-futures"
-version = "0.16.0"
+version = "0.17.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "6cbe2479d667c6d44219a07d3da971379e4321ea7343b319994695be7da97a17"
+checksum = "71d520e0af228b92de357f230f4987ee4f9786f2b8aa24b9cfe53f5b11c17198"
 dependencies = [
  "capnp",
  "futures",
@@ -846,9 +843,9 @@ dependencies = [
 
 [[package]]
 name = "capnp-rpc"
-version = "0.16.2"
+version = "0.17.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "619ac0423bdd1dc0b9bb4348cc80daaf81e8e41d64210822e603d44c668534e6"
+checksum = "9ab8e869783e491cbcc350427a5e775aa4d8a1deaa5198d74332957cfa430779"
 dependencies = [
  "capnp",
  "capnp-futures",
@@ -857,9 +854,9 @@ dependencies = [
 
 [[package]]
 name = "capnpc"
-version = "0.16.4"
+version = "0.17.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "1bee1608054cd103343a6ba6d02488483b8a5060cdc926d16d81c1d2e2e4ecc4"
+checksum = "93a9ad66f56468a890565d818ec4ab1300c1f6c62adbbc3295392f61d8f7dbd7"
 dependencies = [
  "capnp",
 ]
@@ -888,7 +885,7 @@ version = "0.4.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "f4aedb84272dbe89af497cf81375129abda4fc0a9e7c5d317498c15cc30c0d27"
 dependencies = [
- "nom 5.1.2",
+ "nom 5.1.3",
 ]
 
 [[package]]
@@ -965,9 +962,9 @@ dependencies = [
 
 [[package]]
 name = "ciborium"
-version = "0.2.0"
+version = "0.2.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "b0c137568cc60b904a7724001b35ce2630fd00d5d84805fbb608ab89509d788f"
+checksum = "effd91f6c78e5a4ace8a5d3c0b6bfaec9e2baaef55f3efc00e45fb2e477ee926"
 dependencies = [
  "ciborium-io",
  "ciborium-ll",
@@ -976,15 +973,15 @@ dependencies = [
 
 [[package]]
 name = "ciborium-io"
-version = "0.2.0"
+version = "0.2.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "346de753af073cc87b52b2083a506b38ac176a44cfb05497b622e27be899b369"
+checksum = "cdf919175532b369853f5d5e20b26b43112613fd6fe7aee757e35f7a44642656"
 
 [[package]]
 name = "ciborium-ll"
-version = "0.2.0"
+version = "0.2.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "213030a2b5a4e0c0892b6652260cf6ccac84827b83a85a534e178e3906c4cf1b"
+checksum = "defaa24ecc093c77630e6c15e17c51f5e187bf35ee514f4e2d67baaa96dae22b"
 dependencies = [
  "ciborium-io",
  "half",
@@ -1037,9 +1034,9 @@ dependencies = [
 
 [[package]]
 name = "clap"
-version = "3.2.23"
+version = "3.2.25"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "71655c45cb9845d3270c9d6df84ebe72b4dad3c2ba3f7023ad47c144e4e473a5"
+checksum = "4ea181bf566f71cb9a5d17a59e1871af638180a18fb0035c92ae62b705207123"
 dependencies = [
  "atty",
  "bitflags 1.3.2",
@@ -1068,16 +1065,6 @@ dependencies = [
  "cc",
 ]
 
-[[package]]
-name = "codespan-reporting"
-version = "0.11.1"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "3538270d33cc669650c4b093848450d380def10c331d38c768e34cac80576e6e"
-dependencies = [
- "termcolor",
- "unicode-width",
-]
-
 [[package]]
 name = "color-eyre"
 version = "0.6.2"
@@ -1131,21 +1118,21 @@ dependencies = [
 
 [[package]]
 name = "console-api"
-version = "0.4.0"
+version = "0.5.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e57ff02e8ad8e06ab9731d5dc72dc23bef9200778eae1a89d555d8c42e5d4a86"
+checksum = "c2895653b4d9f1538a83970077cb01dfc77a4810524e51a110944688e916b18e"
 dependencies = [
  "prost",
  "prost-types",
- "tonic",
+ "tonic 0.9.2",
  "tracing-core",
 ]
 
 [[package]]
 name = "console-subscriber"
-version = "0.1.8"
+version = "0.1.9"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "22a3a81dfaf6b66bce5d159eddae701e3a002f194d378cbf7be5f053c281d9be"
+checksum = "57ab2224a0311582eb03adba4caaf18644f7b1f10a760803a803b9b605187fc7"
 dependencies = [
  "console-api",
  "crossbeam-channel",
@@ -1157,9 +1144,9 @@ dependencies = [
  "serde",
  "serde_json",
  "thread_local",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "tokio-stream",
- "tonic",
+ "tonic 0.9.2",
  "tracing",
  "tracing-core",
  "tracing-subscriber",
@@ -1257,7 +1244,7 @@ dependencies = [
  "atty",
  "cast",
  "ciborium",
- "clap 3.2.23",
+ "clap 3.2.25",
  "criterion-plot",
  "itertools",
  "lazy_static",
@@ -1411,7 +1398,7 @@ dependencies = [
  "libc",
  "log",
  "signal-hook",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "unicode-segmentation",
  "unicode-width",
 ]
@@ -1426,7 +1413,7 @@ dependencies = [
  "flexi_logger",
  "lazy_static",
  "log",
- "time 0.3.20",
+ "time 0.3.21",
  "unicode-width",
 ]
 
@@ -1456,8 +1443,8 @@ dependencies = [
  "log",
  "num",
  "owning_ref",
- "time 0.3.20",
- "tokio 1.27.0",
+ "time 0.3.21",
+ "tokio 1.28.1",
  "toml",
  "unicode-segmentation",
  "unicode-width",
@@ -1499,50 +1486,6 @@ dependencies = [
  "zeroize",
 ]
 
-[[package]]
-name = "cxx"
-version = "1.0.94"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "f61f1b6389c3fe1c316bf8a4dccc90a38208354b330925bce1f74a6c4756eb93"
-dependencies = [
- "cc",
- "cxxbridge-flags",
- "cxxbridge-macro",
- "link-cplusplus",
-]
-
-[[package]]
-name = "cxx-build"
-version = "1.0.94"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "12cee708e8962df2aeb38f594aae5d827c022b6460ac71a7a3e2c3c2aae5a07b"
-dependencies = [
- "cc",
- "codespan-reporting",
- "once_cell",
- "proc-macro2",
- "quote",
- "scratch",
- "syn 2.0.15",
-]
-
-[[package]]
-name = "cxxbridge-flags"
-version = "1.0.94"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7944172ae7e4068c533afbb984114a56c46e9ccddda550499caa222902c7f7bb"
-
-[[package]]
-name = "cxxbridge-macro"
-version = "1.0.94"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "2345488264226bf682893e25de0769f3360aac9957980ec49361b083ddaa5bc5"
-dependencies = [
- "proc-macro2",
- "quote",
- "syn 2.0.15",
-]
-
 [[package]]
 name = "daemonize"
 version = "0.5.0"
@@ -1564,12 +1507,12 @@ dependencies = [
 
 [[package]]
 name = "darling"
-version = "0.14.4"
+version = "0.20.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7b750cb3417fd1b327431a470f388520309479ab0bf5e323505daf0290cd3850"
+checksum = "0558d22a7b463ed0241e993f76f09f30b126687447751a8638587b864e4b3944"
 dependencies = [
- "darling_core 0.14.4",
- "darling_macro 0.14.4",
+ "darling_core 0.20.1",
+ "darling_macro 0.20.1",
 ]
 
 [[package]]
@@ -1588,15 +1531,15 @@ dependencies = [
 
 [[package]]
 name = "darling_core"
-version = "0.14.4"
+version = "0.20.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "109c1ca6e6b7f82cc233a97004ea8ed7ca123a9af07a8230878fcfda9b158bf0"
+checksum = "ab8bfa2e259f8ee1ce5e97824a3c55ec4404a0d772ca7fa96bf19f0752a046eb"
 dependencies = [
  "fnv",
  "ident_case",
  "proc-macro2",
  "quote",
- "syn 1.0.109",
+ "syn 2.0.16",
 ]
 
 [[package]]
@@ -1612,13 +1555,13 @@ dependencies = [
 
 [[package]]
 name = "darling_macro"
-version = "0.14.4"
+version = "0.20.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a4aab4dbc9f7611d8b55048a3a16d2d010c2c8334e46304b40ac1cc14bf3b48e"
+checksum = "29a358ff9f12ec09c3e61fef9b5a9902623a695a46a917b07f269bff1445611a"
 dependencies = [
- "darling_core 0.14.4",
+ "darling_core 0.20.1",
  "quote",
- "syn 1.0.109",
+ "syn 2.0.16",
 ]
 
 [[package]]
@@ -1628,7 +1571,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "907076dfda823b0b36d2a1bb5f90c96660a5bbcd7729e10727f07858f22c4edc"
 dependencies = [
  "cfg-if 1.0.0",
- "hashbrown",
+ "hashbrown 0.12.3",
  "lock_api",
  "once_cell",
  "parking_lot_core 0.9.7",
@@ -1786,9 +1729,9 @@ dependencies = [
 
 [[package]]
 name = "enumset"
-version = "1.0.12"
+version = "1.1.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "19be8061a06ab6f3a6cf21106c873578bf01bd42ad15e0311a9c76161cb1c753"
+checksum = "e875f1719c16de097dee81ed675e2d9bb63096823ed3f0ca827b7dea3028bbbb"
 dependencies = [
  "enumset_derive",
  "serde",
@@ -1796,14 +1739,14 @@ dependencies = [
 
 [[package]]
 name = "enumset_derive"
-version = "0.6.1"
+version = "0.8.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "03e7b551eba279bf0fa88b83a46330168c1560a52a94f5126f892f0b364ab3e0"
+checksum = "e08b6c6ab82d70f08844964ba10c7babb716de2ecaeab9be5717918a5177d3af"
 dependencies = [
- "darling 0.14.4",
+ "darling 0.20.1",
  "proc-macro2",
  "quote",
- "syn 1.0.109",
+ "syn 2.0.16",
 ]
 
 [[package]]
@@ -1976,12 +1919,12 @@ checksum = "0ce7134b9999ecaf8bcd65542e436736ef32ddca1b3e06094cb6ec5755203b80"
 
 [[package]]
 name = "flate2"
-version = "1.0.25"
+version = "1.0.26"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a8a2db397cb1c8772f31494cb8917e48cd1e64f0fa7efac59fbd741a0a8ce841"
+checksum = "3b9429470923de8e8cbd4d2dc513535400b4b3fef0319fb5c4e1f520a7bef743"
 dependencies = [
  "crc32fast",
- "miniz_oxide",
+ "miniz_oxide 0.7.1",
 ]
 
 [[package]]
@@ -1999,7 +1942,7 @@ dependencies = [
  "regex",
  "rustversion",
  "thiserror",
- "time 0.3.20",
+ "time 0.3.21",
 ]
 
 [[package]]
@@ -2011,7 +1954,7 @@ dependencies = [
  "futures-core",
  "futures-sink",
  "nanorand",
- "pin-project 1.0.12",
+ "pin-project 1.1.0",
  "spin 0.9.8",
 ]
 
@@ -2133,7 +2076,7 @@ checksum = "89ca545a94061b6365f2c7355b4b32bd20df3ff95f02da9329b34ccc3bd6ee72"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.15",
+ "syn 2.0.16",
 ]
 
 [[package]]
@@ -2303,9 +2246,9 @@ dependencies = [
 
 [[package]]
 name = "h2"
-version = "0.3.18"
+version = "0.3.19"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "17f8a914c2987b688368b5138aa05321db91f4090cf26118185672ad588bce21"
+checksum = "d357c7ae988e7d2182f7d7871d0b963962420b0678b0997ce7de72001aeab782"
 dependencies = [
  "bytes 1.4.0",
  "fnv",
@@ -2315,7 +2258,7 @@ dependencies = [
  "http",
  "indexmap",
  "slab",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "tokio-util",
  "tracing",
 ]
@@ -2345,20 +2288,29 @@ dependencies = [
 ]
 
 [[package]]
-name = "hashlink"
-version = "0.8.1"
+name = "hashbrown"
+version = "0.13.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "43a3c133739dddd0d2990f9a4bdf8eb4b21ef50e4851ca85ab661199821d510e"
 dependencies = [
- "hashbrown",
- "serde",
+ "ahash 0.8.3",
 ]
 
 [[package]]
 name = "hashlink"
 version = "0.8.1"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "69fe1fcf8b4278d860ad0548329f892a3631fb63f82574df68275f34cdbe0ffa"
 dependencies = [
- "hashbrown",
+ "hashbrown 0.12.3",
+ "serde",
+]
+
+[[package]]
+name = "hashlink"
+version = "0.8.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "0761a1b9491c4f2e3d66aa0f62d0fba0af9a0e2852e4d48ea506632a4b56e6aa"
+dependencies = [
+ "hashbrown 0.13.2",
 ]
 
 [[package]]
@@ -2511,7 +2463,7 @@ dependencies = [
  "itoa",
  "pin-project-lite 0.2.9",
  "socket2 0.4.9",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "tower-service",
  "tracing",
  "want",
@@ -2525,7 +2477,7 @@ checksum = "bbb958482e8c7be4bc3cf272a766a2b0bf1a6755e7a6ae777f017a31d11b13b1"
 dependencies = [
  "hyper",
  "pin-project-lite 0.2.9",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "tokio-io-timeout",
 ]
 
@@ -2545,12 +2497,11 @@ dependencies = [
 
 [[package]]
 name = "iana-time-zone-haiku"
-version = "0.1.1"
+version = "0.1.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "0703ae284fc167426161c2e3f1da3ea71d94b21bedbcc9494e92b28e334e3dca"
+checksum = "f31827a206f56af32e590ba56d5d2d085f558508192593743f16b2306495269f"
 dependencies = [
- "cxx",
- "cxx-build",
+ "cc",
 ]
 
 [[package]]
@@ -2604,7 +2555,7 @@ dependencies = [
  "simplelog 0.9.0",
  "tokio 0.2.25",
  "tokio 0.3.7",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "url",
  "xmltree",
 ]
@@ -2660,7 +2611,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "bd070e393353796e801d209ad339e89596eb4c8d430d18ede6a1cced8fafbd99"
 dependencies = [
  "autocfg",
- "hashbrown",
+ "hashbrown 0.12.3",
 ]
 
 [[package]]
@@ -2784,9 +2735,9 @@ checksum = "8eaf4bc02d17cbdd7ff4c7438cafcdf7fb9a4613313ad11b4f8fefe7d3fa0130"
 
 [[package]]
 name = "js-sys"
-version = "0.3.61"
+version = "0.3.63"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "445dde2150c55e483f3d8416706b97ec8e8237c307e5b7b4b8dd15e6af2a0730"
+checksum = "2f37a4a5928311ac501dee68b3c7613a1037d0edb30c8e5427bd832d55d1b790"
 dependencies = [
  "wasm-bindgen",
 ]
@@ -2878,7 +2829,7 @@ dependencies = [
  "keyvaluedb",
  "keyvaluedb-shared-tests",
  "parking_lot 0.12.1",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "wasm-bindgen-futures",
  "wasm-bindgen-test",
 ]
@@ -2907,9 +2858,9 @@ dependencies = [
  "parking_lot 0.12.1",
  "rand 0.8.5",
  "rusqlite",
- "sysinfo",
+ "sysinfo 0.29.0",
  "tempfile",
- "tokio 1.27.0",
+ "tokio 1.28.1",
 ]
 
 [[package]]
@@ -2955,9 +2906,9 @@ checksum = "830d08ce1d1d941e6b30645f1a0eb5643013d835ce3779a5fc208261dbe10f55"
 
 [[package]]
 name = "libc"
-version = "0.2.142"
+version = "0.2.144"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "6a987beff54b60ffa6d51982e1aa1146bc42f19bd26be28b0586f252fccf5317"
+checksum = "2b00cc1c228a6782d0f076e7b232802e0c5689d41bb5df366f2a6b6621cfdfe1"
 
 [[package]]
 name = "libloading"
@@ -2982,9 +2933,9 @@ dependencies = [
 
 [[package]]
 name = "libz-sys"
-version = "1.1.8"
+version = "1.1.9"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "9702761c3935f8cc2f101793272e202c72b99da8f4224a19ddcf1279a6450bbf"
+checksum = "56ee889ecc9568871456d42f603d6a0ce59ff328d291063a45cbdf0036baf6db"
 dependencies = [
  "cc",
  "libc",
@@ -2992,15 +2943,6 @@ dependencies = [
  "vcpkg",
 ]
 
-[[package]]
-name = "link-cplusplus"
-version = "1.0.8"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ecd207c9c713c34f95a097a5b029ac2ce6010530c7b49d7fea24d977dede04f5"
-dependencies = [
- "cc",
-]
-
 [[package]]
 name = "linked-hash-map"
 version = "0.5.6"
@@ -3009,9 +2951,9 @@ checksum = "0717cef1bc8b636c6e1c1bbdefc09e6322da8a9321966e8928ef80d20f7f770f"
 
 [[package]]
 name = "linux-raw-sys"
-version = "0.3.4"
+version = "0.3.7"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "36eb31c1778188ae1e64398743890d0877fef36d11521ac60406b42016e8c2cf"
+checksum = "ece97ea872ece730aed82664c424eb4c8291e1ff2480247ccf7409044bc6479f"
 
 [[package]]
 name = "lock_api"
@@ -3135,6 +3077,15 @@ dependencies = [
  "adler",
 ]
 
+[[package]]
+name = "miniz_oxide"
+version = "0.7.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "e7810e0be55b428ada41041c41f32c9f1a42817901b4ccf45fa3d4b6561e74c7"
+dependencies = [
+ "adler",
+]
+
 [[package]]
 name = "mio"
 version = "0.6.23"
@@ -3356,7 +3307,7 @@ dependencies = [
  "log",
  "netlink-packet-core",
  "netlink-sys",
- "tokio 1.27.0",
+ "tokio 1.28.1",
 ]
 
 [[package]]
@@ -3368,7 +3319,7 @@ dependencies = [
  "futures",
  "libc",
  "log",
- "tokio 1.27.0",
+ "tokio 1.28.1",
 ]
 
 [[package]]
@@ -3410,9 +3361,9 @@ dependencies = [
 
 [[package]]
 name = "nom"
-version = "5.1.2"
+version = "5.1.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ffb4262d26ed83a1c0a33a38fe2bb15797329c85770da05e6b828ddb782627af"
+checksum = "08959a387a676302eebf4ddbcbc611da04285579f76f88ee0506c63b1a61dd4b"
 dependencies = [
  "memchr",
  "version_check 0.9.4",
@@ -3625,8 +3576,8 @@ dependencies = [
  "prost",
  "protobuf",
  "thiserror",
- "tokio 1.27.0",
- "tonic",
+ "tokio 1.28.1",
+ "tonic 0.8.3",
 ]
 
 [[package]]
@@ -3641,7 +3592,7 @@ dependencies = [
  "opentelemetry",
  "prost",
  "protobuf",
- "tonic",
+ "tonic 0.8.3",
  "tonic-build",
 ]
 
@@ -3689,7 +3640,7 @@ dependencies = [
  "percent-encoding",
  "rand 0.8.5",
  "thiserror",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "tokio-stream",
 ]
 
@@ -3700,7 +3651,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "ccd746e37177e1711c20dd619a1620f34f5c8b569c53590a72dedd5344d8924a"
 dependencies = [
  "dlv-list",
- "hashbrown",
+ "hashbrown 0.12.3",
 ]
 
 [[package]]
@@ -3757,9 +3708,9 @@ dependencies = [
 
 [[package]]
 name = "parity-scale-codec"
-version = "3.4.0"
+version = "3.5.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "637935964ff85a605d114591d4d2c13c5d1ba2806dae97cea6bf180238a749ac"
+checksum = "5ddb756ca205bd108aee3c62c6d3c994e1df84a59b9d6d4a5ea42ee1fd5a9a28"
 dependencies = [
  "arrayvec",
  "bitvec",
@@ -3872,9 +3823,9 @@ checksum = "478c572c3d73181ff3c2539045f6eb99e5491218eae919370993b890cdbdd98e"
 
 [[package]]
 name = "pest"
-version = "2.5.7"
+version = "2.6.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7b1403e8401ad5dedea73c626b99758535b342502f8d1e361f4a2dd952749122"
+checksum = "e68e84bfb01f0507134eac1e9b410a12ba379d064eab48c50ba4ce329a527b70"
 dependencies = [
  "thiserror",
  "ucd-trie",
@@ -3882,9 +3833,9 @@ dependencies = [
 
 [[package]]
 name = "pest_derive"
-version = "2.5.7"
+version = "2.6.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "be99c4c1d2fc2769b1d00239431d711d08f6efedcecb8b6e30707160aee99c15"
+checksum = "6b79d4c71c865a25a4322296122e3924d30bc8ee0834c8bfc8b95f7f054afbfb"
 dependencies = [
  "pest",
  "pest_generator",
@@ -3892,22 +3843,22 @@ dependencies = [
 
 [[package]]
 name = "pest_generator"
-version = "2.5.7"
+version = "2.6.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e56094789873daa36164de2e822b3888c6ae4b4f9da555a1103587658c805b1e"
+checksum = "6c435bf1076437b851ebc8edc3a18442796b30f1728ffea6262d59bbe28b077e"
 dependencies = [
  "pest",
  "pest_meta",
  "proc-macro2",
  "quote",
- "syn 2.0.15",
+ "syn 2.0.16",
 ]
 
 [[package]]
 name = "pest_meta"
-version = "2.5.7"
+version = "2.6.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "6733073c7cff3d8459fda0e42f13a047870242aed8b509fe98000928975f359e"
+checksum = "745a452f8eb71e39ffd8ee32b3c5f51d03845f99786fa9b68db6ff509c505411"
 dependencies = [
  "once_cell",
  "pest",
@@ -3945,11 +3896,11 @@ dependencies = [
 
 [[package]]
 name = "pin-project"
-version = "1.0.12"
+version = "1.1.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ad29a609b6bcd67fee905812e544992d216af9d755757c05ed2d0e15a74c6ecc"
+checksum = "c95a7476719eab1e366eaf73d0260af3021184f18177925b07f54b30089ceead"
 dependencies = [
- "pin-project-internal 1.0.12",
+ "pin-project-internal 1.1.0",
 ]
 
 [[package]]
@@ -3965,13 +3916,13 @@ dependencies = [
 
 [[package]]
 name = "pin-project-internal"
-version = "1.0.12"
+version = "1.1.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "069bdb1e05adc7a8990dce9cc75370895fbe4e3d58b9b73bf1aee56359344a55"
+checksum = "39407670928234ebc5e6e580247dd567ad73a3578460c5990f9503df207e8f07"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 1.0.109",
+ "syn 2.0.16",
 ]
 
 [[package]]
@@ -3994,9 +3945,9 @@ checksum = "8b870d8c151b6f2fb93e84a13146138f05d02ed11c7e7c54f8826aaaf7c9f184"
 
 [[package]]
 name = "pkg-config"
-version = "0.3.26"
+version = "0.3.27"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "6ac9a59f73473f1b8d852421e59e64809f025994837ef743615c6d0c5b305160"
+checksum = "26072860ba924cbfa98ea39c8c19b4dd6a4a25423dbdf219c1eca91aa0cf6964"
 
 [[package]]
 name = "plotters"
@@ -4109,9 +4060,9 @@ checksum = "dc375e1527247fe1a97d8b7156678dfe7c1af2fc075c9a4db3690ecd2a148068"
 
 [[package]]
 name = "proc-macro2"
-version = "1.0.56"
+version = "1.0.58"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "2b63bdb0cd06f1f4dedf69b254734f9b45af66e4a031e42a7480257d9898b435"
+checksum = "fa1fb82fc0c281dd9671101b66b771ebbe1eaf967b96ac8740dcba4b70005ca8"
 dependencies = [
  "unicode-ident",
 ]
@@ -4204,9 +4155,9 @@ checksum = "a1d01941d82fa2ab50be1e79e6714289dd7cde78eba4c074bc5a4374f650dfe0"
 
 [[package]]
 name = "quote"
-version = "1.0.26"
+version = "1.0.27"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "4424af4bf778aae2051a77b60283332f386554255d722233d09fbfc7e30da2fc"
+checksum = "8f4f29d145265ec1c483c7c654450edde0bfe043d3938d6972630663356d9500"
 dependencies = [
  "proc-macro2",
 ]
@@ -4426,23 +4377,26 @@ dependencies = [
 
 [[package]]
 name = "rkyv"
-version = "0.7.41"
+version = "0.7.42"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "21499ed91807f07ae081880aabb2ccc0235e9d88011867d984525e9a4c3cfa3e"
+checksum = "0200c8230b013893c0b2d6213d6ec64ed2b9be2e0e016682b7224ff82cff5c58"
 dependencies = [
+ "bitvec",
  "bytecheck",
- "hashbrown",
+ "hashbrown 0.12.3",
  "ptr_meta",
  "rend",
  "rkyv_derive",
  "seahash",
+ "tinyvec",
+ "uuid",
 ]
 
 [[package]]
 name = "rkyv_derive"
-version = "0.7.41"
+version = "0.7.42"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ac1c672430eb41556291981f45ca900a0239ad007242d1cb4b4167af842db666"
+checksum = "b2e06b915b5c230a17d7a736d1e2e63ee753c256a8614ef3f5147b13a4f5541d"
 dependencies = [
  "proc-macro2",
  "quote",
@@ -4493,7 +4447,7 @@ dependencies = [
  "netlink-proto",
  "nix 0.22.3",
  "thiserror",
- "tokio 1.27.0",
+ "tokio 1.28.1",
 ]
 
 [[package]]
@@ -4502,10 +4456,10 @@ version = "0.29.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "549b9d036d571d42e6e85d1c1425e2ac83491075078ca9a15be021c56b1641f2"
 dependencies = [
- "bitflags 2.1.0",
+ "bitflags 2.3.0",
  "fallible-iterator",
  "fallible-streaming-iterator",
- "hashlink 0.8.1 (registry+https://github.com/rust-lang/crates.io-index)",
+ "hashlink 0.8.2",
  "libsqlite3-sys",
  "smallvec",
 ]
@@ -4577,9 +4531,9 @@ dependencies = [
 
 [[package]]
 name = "rustix"
-version = "0.37.14"
+version = "0.37.19"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d9b864d3c18a5785a05953adeed93e2dca37ed30f18e69bba9f30079d51f363f"
+checksum = "acf8729d8542766f1b2cf77eb034d52f40d375bb8b615d0b147089946e16613d"
 dependencies = [
  "bitflags 1.3.2",
  "errno",
@@ -4675,12 +4629,6 @@ version = "1.1.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "d29ab0c6d3fc0ee92fe66e2d99f700eab17a8d57d1c1d3b748380fb20baa78cd"
 
-[[package]]
-name = "scratch"
-version = "1.0.5"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "1792db035ce95be60c3f8853017b3999209281c24e2ba5bc8e59bf97a0c590c1"
-
 [[package]]
 name = "sct"
 version = "0.6.1"
@@ -4738,9 +4686,9 @@ dependencies = [
 
 [[package]]
 name = "security-framework"
-version = "2.8.2"
+version = "2.9.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a332be01508d814fed64bf28f798a146d73792121129962fdf335bb3c49a4254"
+checksum = "ca2855b3715770894e67cbfa3df957790aa0c9edc3bf06efa1a84d77fa0839d1"
 dependencies = [
  "bitflags 1.3.2",
  "core-foundation 0.9.3",
@@ -4751,9 +4699,9 @@ dependencies = [
 
 [[package]]
 name = "security-framework-sys"
-version = "2.8.0"
+version = "2.9.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "31c9bb296072e961fcbd8853511dd39c2d8be2deb1e17c6860b1d30732b323b4"
+checksum = "f51d0c0d83bec45f16480d0ce0058397a69e48fcdc52d1dc8855fb68acbd31a7"
 dependencies = [
  "core-foundation-sys 0.8.4",
  "libc",
@@ -4797,9 +4745,9 @@ dependencies = [
 
 [[package]]
 name = "serde"
-version = "1.0.160"
+version = "1.0.163"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "bb2f3770c8bce3bcda7e149193a069a0f4365bda1fa5cd88e03bca26afc1216c"
+checksum = "2113ab51b87a539ae008b5c6c02dc020ffa39afd2d83cffcb3f4eb2722cebec2"
 dependencies = [
  "serde_derive",
 ]
@@ -4825,13 +4773,13 @@ dependencies = [
 
 [[package]]
 name = "serde_derive"
-version = "1.0.160"
+version = "1.0.163"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "291a097c63d8497e00160b166a967a4a79c64f3facdd01cbd7502231688d77df"
+checksum = "8c805777e3930c8883389c602315a24224bcc738b63905ef87cd1420353ea93e"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.15",
+ "syn 2.0.16",
 ]
 
 [[package]]
@@ -4853,7 +4801,7 @@ checksum = "bcec881020c684085e55a25f7fd888954d56609ef363479dc5a1305eb0d40cab"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.15",
+ "syn 2.0.16",
 ]
 
 [[package]]
@@ -5051,7 +4999,7 @@ checksum = "acee08041c5de3d5048c8b3f6f13fafb3026b24ba43c6a695a0c76179b844369"
 dependencies = [
  "log",
  "termcolor",
- "time 0.3.20",
+ "time 0.3.21",
 ]
 
 [[package]]
@@ -5091,9 +5039,9 @@ dependencies = [
 
 [[package]]
 name = "socket2"
-version = "0.5.2"
+version = "0.5.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "6d283f86695ae989d1e18440a943880967156325ba025f05049946bff47bcc2b"
+checksum = "2538b18701741680e0322a2302176d3253a35388e2e62f172f64f4f16605f877"
 dependencies = [
  "libc",
  "windows-sys 0.48.0",
@@ -5233,9 +5181,9 @@ dependencies = [
 
 [[package]]
 name = "syn"
-version = "2.0.15"
+version = "2.0.16"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "a34fcf3e8b60f57e6a14301a2e916d323af98b0ea63c599441eec8558660c822"
+checksum = "a6f671d4b5ffdb8eadec19c0ae67fe2639df8684bd7bc4b83d986b8db549cf01"
 dependencies = [
  "proc-macro2",
  "quote",
@@ -5265,6 +5213,20 @@ name = "sysinfo"
 version = "0.28.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "b4c2f3ca6693feb29a89724516f016488e9aafc7f37264f898593ee4b942f31b"
+dependencies = [
+ "cfg-if 1.0.0",
+ "core-foundation-sys 0.8.4",
+ "libc",
+ "ntapi 0.4.1",
+ "once_cell",
+ "winapi 0.3.9",
+]
+
+[[package]]
+name = "sysinfo"
+version = "0.29.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "02f1dc6930a439cc5d154221b5387d153f8183529b07c19aca24ea31e0a167e1"
 dependencies = [
  "cfg-if 1.0.0",
  "core-foundation-sys 0.8.4",
@@ -5335,7 +5297,7 @@ checksum = "f9456a42c5b0d803c8cd86e73dd7cc9edd429499f37a3550d286d5e86720569f"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.15",
+ "syn 2.0.16",
 ]
 
 [[package]]
@@ -5376,23 +5338,23 @@ dependencies = [
 
 [[package]]
 name = "time"
-version = "0.3.20"
+version = "0.3.21"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "cd0cbfecb4d19b5ea75bb31ad904eb5b9fa13f21079c3b92017ebdf4999a5890"
+checksum = "8f3403384eaacbca9923fa06940178ac13e4edb725486d70e8e15881d0c836cc"
 dependencies = [
  "itoa",
  "libc",
  "num_threads",
  "serde",
  "time-core",
- "time-macros 0.2.8",
+ "time-macros 0.2.9",
 ]
 
 [[package]]
 name = "time-core"
-version = "0.1.0"
+version = "0.1.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "2e153e1f1acaef8acc537e68b44906d2db6436e2b35ac2c6b42640fff91f00fd"
+checksum = "7300fbefb4dadc1af235a9cef3737cea692a9d97e1b9cbcd4ebdae6f8868e6fb"
 
 [[package]]
 name = "time-macros"
@@ -5406,9 +5368,9 @@ dependencies = [
 
 [[package]]
 name = "time-macros"
-version = "0.2.8"
+version = "0.2.9"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "fd80a657e71da814b8e5d60d3374fc6d35045062245d80224748ae522dd76f36"
+checksum = "372950940a5f07bf38dbe211d7283c9e6d7327df53794992d293e534c733d09b"
 dependencies = [
  "time-core",
 ]
@@ -5490,9 +5452,9 @@ dependencies = [
 
 [[package]]
 name = "tokio"
-version = "1.27.0"
+version = "1.28.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d0de47a4eecbe11f498978a9b29d792f0d2692d1dd003650c24c76510e3bc001"
+checksum = "0aa32867d44e6f2ce3385e89dceb990188b8bb0fb25b0cf576647a6f98ac5105"
 dependencies = [
  "autocfg",
  "bytes 1.4.0",
@@ -5505,7 +5467,7 @@ dependencies = [
  "socket2 0.4.9",
  "tokio-macros",
  "tracing",
- "windows-sys 0.45.0",
+ "windows-sys 0.48.0",
 ]
 
 [[package]]
@@ -5515,43 +5477,43 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "30b74022ada614a1b4834de765f9bb43877f910cc8ce4be40e89042c9223a8bf"
 dependencies = [
  "pin-project-lite 0.2.9",
- "tokio 1.27.0",
+ "tokio 1.28.1",
 ]
 
 [[package]]
 name = "tokio-macros"
-version = "2.0.0"
+version = "2.1.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "61a573bdc87985e9d6ddeed1b3d864e8a302c847e40d647746df2f1de209d1ce"
+checksum = "630bdcf245f78637c13ec01ffae6187cca34625e8c63150d424b59e55af2675e"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.15",
+ "syn 2.0.16",
 ]
 
 [[package]]
 name = "tokio-stream"
-version = "0.1.12"
+version = "0.1.14"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "8fb52b74f05dbf495a8fba459fdc331812b96aa086d9eb78101fa0d4569c3313"
+checksum = "397c988d37662c7dda6d2208364a706264bf3d6138b11d436cbac0ad38832842"
 dependencies = [
  "futures-core",
  "pin-project-lite 0.2.9",
- "tokio 1.27.0",
+ "tokio 1.28.1",
 ]
 
 [[package]]
 name = "tokio-util"
-version = "0.7.7"
+version = "0.7.8"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "5427d89453009325de0d8f342c9490009f76e999cb7672d77e46267448f7e6b2"
+checksum = "806fe8c2c87eccc8b3267cbae29ed3ab2d0bd37fca70ab622e46aaa9375ddb7d"
 dependencies = [
  "bytes 1.4.0",
  "futures-core",
  "futures-io",
  "futures-sink",
  "pin-project-lite 0.2.9",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "tracing",
 ]
 
@@ -5600,10 +5562,10 @@ dependencies = [
  "hyper",
  "hyper-timeout",
  "percent-encoding",
- "pin-project 1.0.12",
+ "pin-project 1.1.0",
  "prost",
  "prost-derive",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "tokio-stream",
  "tokio-util",
  "tower",
@@ -5613,6 +5575,34 @@ dependencies = [
  "tracing-futures",
 ]
 
+[[package]]
+name = "tonic"
+version = "0.9.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "3082666a3a6433f7f511c7192923fa1fe07c69332d3c6a2e6bb040b569199d5a"
+dependencies = [
+ "async-trait",
+ "axum",
+ "base64 0.21.0",
+ "bytes 1.4.0",
+ "futures-core",
+ "futures-util",
+ "h2",
+ "http",
+ "http-body",
+ "hyper",
+ "hyper-timeout",
+ "percent-encoding",
+ "pin-project 1.1.0",
+ "prost",
+ "tokio 1.28.1",
+ "tokio-stream",
+ "tower",
+ "tower-layer",
+ "tower-service",
+ "tracing",
+]
+
 [[package]]
 name = "tonic-build"
 version = "0.8.4"
@@ -5635,11 +5625,11 @@ dependencies = [
  "futures-core",
  "futures-util",
  "indexmap",
- "pin-project 1.0.12",
+ "pin-project 1.1.0",
  "pin-project-lite 0.2.9",
  "rand 0.8.5",
  "slab",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "tokio-util",
  "tower-layer",
  "tower-service",
@@ -5678,26 +5668,26 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "09d48f71a791638519505cefafe162606f706c25592e4bde4d97600c0195312e"
 dependencies = [
  "crossbeam-channel",
- "time 0.3.20",
+ "time 0.3.21",
  "tracing-subscriber",
 ]
 
 [[package]]
 name = "tracing-attributes"
-version = "0.1.23"
+version = "0.1.24"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "4017f8f45139870ca7e672686113917c71c7a6e02d4924eda67186083c03081a"
+checksum = "0f57e3ca2a01450b1a921183a9c9cbfda207fd822cef4ccb00a65402cbba7a74"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 1.0.109",
+ "syn 2.0.16",
 ]
 
 [[package]]
 name = "tracing-core"
-version = "0.1.30"
+version = "0.1.31"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "24eb03ba0eab1fd845050058ce5e616558e8f8d8fca633e6b163fe25c797213a"
+checksum = "0955b8137a1df6f1a2e9a37d8a6656291ff0297c1a97c24e0d8425fe2312f79a"
 dependencies = [
  "once_cell",
  "valuable",
@@ -5719,7 +5709,7 @@ version = "0.2.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "97d095ae15e245a057c8e8451bab9b3ee1e1f68e9ba2b4fbc18d0ac5237835f2"
 dependencies = [
- "pin-project 1.0.12",
+ "pin-project 1.1.0",
  "tracing",
 ]
 
@@ -5824,7 +5814,7 @@ dependencies = [
  "smallvec",
  "thiserror",
  "tinyvec",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "tracing",
  "url",
 ]
@@ -5844,7 +5834,7 @@ dependencies = [
  "resolv-conf",
  "smallvec",
  "thiserror",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "tracing",
  "trust-dns-proto",
 ]
@@ -6001,6 +5991,12 @@ version = "0.7.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "09cc8ee72d2a9becf2f2febe0205bbed8fc6615b7cb429ad062dc7b7ddd036a9"
 
+[[package]]
+name = "uuid"
+version = "1.3.3"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "345444e32442451b267fc254ae85a209c64be56d2890e601a0c37ff0c3c5ecd2"
+
 [[package]]
 name = "valuable"
 version = "0.1.0"
@@ -6040,7 +6036,7 @@ dependencies = [
  "capnp-rpc",
  "capnpc",
  "cfg-if 1.0.0",
- "clap 3.2.23",
+ "clap 3.2.25",
  "config",
  "crossbeam-channel",
  "cursive",
@@ -6058,7 +6054,7 @@ dependencies = [
  "serde_derive",
  "serial_test",
  "thiserror",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "tokio-util",
  "veilid-core",
 ]
@@ -6073,7 +6069,7 @@ dependencies = [
  "async-std",
  "async-std-resolver",
  "async-tls 0.11.0",
- "async-tungstenite 0.21.0",
+ "async-tungstenite 0.22.1",
  "async_executors",
  "backtrace",
  "blake3",
@@ -6134,11 +6130,11 @@ dependencies = [
  "serde_json",
  "serial_test",
  "simplelog 0.12.1",
- "socket2 0.5.2",
+ "socket2 0.5.3",
  "static_assertions",
  "stop-token",
  "thiserror",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "tokio-stream",
  "tokio-util",
  "tracing",
@@ -6184,7 +6180,7 @@ dependencies = [
  "parking_lot 0.12.1",
  "serde",
  "serde_json",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "tokio-stream",
  "tokio-util",
  "tracing",
@@ -6199,14 +6195,14 @@ version = "0.1.0"
 dependencies = [
  "ansi_term",
  "async-std",
- "async-tungstenite 0.21.0",
+ "async-tungstenite 0.22.1",
  "backtrace",
  "bugsalot",
  "capnp",
  "capnp-rpc",
  "capnpc",
  "cfg-if 1.0.0",
- "clap 3.2.23",
+ "clap 3.2.25",
  "color-eyre",
  "config",
  "console-subscriber",
@@ -6231,8 +6227,8 @@ dependencies = [
  "signal-hook",
  "signal-hook-async-std",
  "stop-token",
- "sysinfo",
- "tokio 1.27.0",
+ "sysinfo 0.28.4",
+ "tokio 1.28.1",
  "tokio-stream",
  "tokio-util",
  "tracing",
@@ -6281,7 +6277,7 @@ dependencies = [
  "static_assertions",
  "stop-token",
  "thiserror",
- "tokio 1.27.0",
+ "tokio 1.28.1",
  "tokio-util",
  "tracing",
  "tracing-oslog",
@@ -6376,9 +6372,9 @@ checksum = "9c8d87e72b64a3b4db28d11ce29237c246188f4f51057d65a7eab63b7987e423"
 
 [[package]]
 name = "wasm-bindgen"
-version = "0.2.84"
+version = "0.2.86"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "31f8dcbc21f30d9b8f2ea926ecb58f6b91192c17e9d33594b3df58b2007ca53b"
+checksum = "5bba0e8cb82ba49ff4e229459ff22a191bbe9a1cb3a341610c9c33efc27ddf73"
 dependencies = [
  "cfg-if 1.0.0",
  "serde",
@@ -6388,24 +6384,24 @@ dependencies = [
 
 [[package]]
 name = "wasm-bindgen-backend"
-version = "0.2.84"
+version = "0.2.86"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "95ce90fd5bcc06af55a641a86428ee4229e44e07033963a2290a8e241607ccb9"
+checksum = "19b04bc93f9d6bdee709f6bd2118f57dd6679cf1176a1af464fca3ab0d66d8fb"
 dependencies = [
  "bumpalo",
  "log",
  "once_cell",
  "proc-macro2",
  "quote",
- "syn 1.0.109",
+ "syn 2.0.16",
  "wasm-bindgen-shared",
 ]
 
 [[package]]
 name = "wasm-bindgen-futures"
-version = "0.4.34"
+version = "0.4.36"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "f219e0d211ba40266969f6dbdd90636da12f75bee4fc9d6c23d1260dadb51454"
+checksum = "2d1985d03709c53167ce907ff394f5316aa22cb4e12761295c5dc57dacb6297e"
 dependencies = [
  "cfg-if 1.0.0",
  "js-sys",
@@ -6415,9 +6411,9 @@ dependencies = [
 
 [[package]]
 name = "wasm-bindgen-macro"
-version = "0.2.84"
+version = "0.2.86"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "4c21f77c0bedc37fd5dc21f897894a5ca01e7bb159884559461862ae90c0b4c5"
+checksum = "14d6b024f1a526bb0234f52840389927257beb670610081360e5a03c5df9c258"
 dependencies = [
  "quote",
  "wasm-bindgen-macro-support",
@@ -6425,28 +6421,28 @@ dependencies = [
 
 [[package]]
 name = "wasm-bindgen-macro-support"
-version = "0.2.84"
+version = "0.2.86"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "2aff81306fcac3c7515ad4e177f521b5c9a15f2b08f4e32d823066102f35a5f6"
+checksum = "e128beba882dd1eb6200e1dc92ae6c5dbaa4311aa7bb211ca035779e5efc39f8"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 1.0.109",
+ "syn 2.0.16",
  "wasm-bindgen-backend",
  "wasm-bindgen-shared",
 ]
 
 [[package]]
 name = "wasm-bindgen-shared"
-version = "0.2.84"
+version = "0.2.86"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "0046fef7e28c3804e5e38bfa31ea2a0f73905319b677e57ebe37e49358989b5d"
+checksum = "ed9d5b4305409d1fc9482fee2d7f9bcbf24b3972bf59817ef757e23982242a93"
 
 [[package]]
 name = "wasm-bindgen-test"
-version = "0.3.34"
+version = "0.3.36"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "6db36fc0f9fb209e88fb3642590ae0205bb5a56216dabd963ba15879fe53a30b"
+checksum = "c9e636f3a428ff62b3742ebc3c70e254dfe12b8c2b469d688ea59cdd4abcf502"
 dependencies = [
  "console_error_panic_hook",
  "js-sys",
@@ -6458,9 +6454,9 @@ dependencies = [
 
 [[package]]
 name = "wasm-bindgen-test-macro"
-version = "0.3.34"
+version = "0.3.36"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "0734759ae6b3b1717d661fe4f016efcfb9828f5edb4520c18eaee05af3b43be9"
+checksum = "f18c1fad2f7c4958e7bcce014fa212f59a65d5e3721d0f77e6c0b27ede936ba3"
 dependencies = [
  "proc-macro2",
  "quote",
@@ -6485,9 +6481,9 @@ checksum = "323f4da9523e9a669e1eaf9c6e763892769b1d38c623913647bfdc1532fe4549"
 
 [[package]]
 name = "web-sys"
-version = "0.3.61"
+version = "0.3.63"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e33b99f4b23ba3eec1a53ac264e35a755f00e966e0065077d6027c0f575b0b97"
+checksum = "3bdd9ef4e984da1187bf8110c5cf5b845fbc87a23602cdf912386a76fcd3a7c2"
 dependencies = [
  "js-sys",
  "wasm-bindgen",
@@ -6831,9 +6827,9 @@ checksum = "1a515f5799fe4961cb532f983ce2b23082366b898e52ffbce459c86f67c8378a"
 
 [[package]]
 name = "winnow"
-version = "0.4.1"
+version = "0.4.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ae8970b36c66498d8ff1d66685dc86b91b29db0c7739899012f63a63814b4b28"
+checksum = "61de7bac303dc551fe038e2b3cef0f571087a47571ea6e79a87692ac99b99699"
 dependencies = [
  "memchr",
 ]
@@ -6905,9 +6901,9 @@ checksum = "a67300977d3dc3f8034dae89778f502b6ba20b269527b3223ba59c0cf393bb8a"
 
 [[package]]
 name = "xml-rs"
-version = "0.8.4"
+version = "0.8.11"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d2d7d3948613f75c98fd9328cfdcc45acc4d360655289d0a7d4ec931392200a3"
+checksum = "1690519550bfa95525229b9ca2350c63043a4857b3b0013811b2ccf4a2420b01"
 
 [[package]]
 name = "xmltree"
@@ -6979,7 +6975,7 @@ checksum = "ce36e65b0d2999d2aafac989fb249189a141aee1f53c612c1f37d72631959f69"
 dependencies = [
  "proc-macro2",
  "quote",
- "syn 2.0.15",
+ "syn 2.0.16",
 ]
 
 [[package]]
diff --git a/veilid-flutter/example/lib/log_terminal.dart b/veilid-flutter/example/lib/log_terminal.dart
index b19d4af6..b9c8eacd 100644
--- a/veilid-flutter/example/lib/log_terminal.dart
+++ b/veilid-flutter/example/lib/log_terminal.dart
@@ -1,6 +1,3 @@
-import 'dart:convert';
-import 'dart:io';
-
 import 'package:flutter/material.dart';
 import 'package:flutter/services.dart';
 import 'package:xterm/xterm.dart';
diff --git a/veilid-flutter/example/lib/main.dart b/veilid-flutter/example/lib/main.dart
index b93e91bd..08dfb159 100644
--- a/veilid-flutter/example/lib/main.dart
+++ b/veilid-flutter/example/lib/main.dart
@@ -2,7 +2,6 @@ import 'dart:async';
 
 import 'package:flutter/material.dart';
 import 'package:flutter/foundation.dart';
-import 'package:veilid/veilid.dart';
 import 'package:flutter_acrylic/flutter_acrylic.dart';
 
 import 'veilid_theme.dart';
diff --git a/veilid-flutter/example/macos/Podfile b/veilid-flutter/example/macos/Podfile
index b5c9c07c..404ad4ea 100644
--- a/veilid-flutter/example/macos/Podfile
+++ b/veilid-flutter/example/macos/Podfile
@@ -1,4 +1,4 @@
-platform :osx, '10.12.2'
+platform :osx, '10.14.6'
 
 # CocoaPods analytics sends network stats synchronously affecting flutter build latency.
 ENV['COCOAPODS_DISABLE_STATS'] = 'true'
diff --git a/veilid-flutter/example/macos/Podfile.lock b/veilid-flutter/example/macos/Podfile.lock
index 38ac07f6..c1a60126 100644
--- a/veilid-flutter/example/macos/Podfile.lock
+++ b/veilid-flutter/example/macos/Podfile.lock
@@ -1,34 +1,35 @@
 PODS:
-  - flutter_acrylic (0.1.0):
-    - FlutterMacOS
   - FlutterMacOS (1.0.0)
-  - path_provider_macos (0.0.1):
+  - macos_window_utils (1.0.0):
+    - FlutterMacOS
+  - path_provider_foundation (0.0.1):
+    - Flutter
     - FlutterMacOS
   - veilid (0.0.1):
     - FlutterMacOS
 
 DEPENDENCIES:
-  - flutter_acrylic (from `Flutter/ephemeral/.symlinks/plugins/flutter_acrylic/macos`)
   - FlutterMacOS (from `Flutter/ephemeral`)
-  - path_provider_macos (from `Flutter/ephemeral/.symlinks/plugins/path_provider_macos/macos`)
+  - macos_window_utils (from `Flutter/ephemeral/.symlinks/plugins/macos_window_utils/macos`)
+  - path_provider_foundation (from `Flutter/ephemeral/.symlinks/plugins/path_provider_foundation/darwin`)
   - veilid (from `Flutter/ephemeral/.symlinks/plugins/veilid/macos`)
 
 EXTERNAL SOURCES:
-  flutter_acrylic:
-    :path: Flutter/ephemeral/.symlinks/plugins/flutter_acrylic/macos
   FlutterMacOS:
     :path: Flutter/ephemeral
-  path_provider_macos:
-    :path: Flutter/ephemeral/.symlinks/plugins/path_provider_macos/macos
+  macos_window_utils:
+    :path: Flutter/ephemeral/.symlinks/plugins/macos_window_utils/macos
+  path_provider_foundation:
+    :path: Flutter/ephemeral/.symlinks/plugins/path_provider_foundation/darwin
   veilid:
     :path: Flutter/ephemeral/.symlinks/plugins/veilid/macos
 
 SPEC CHECKSUMS:
-  flutter_acrylic: c3df24ae52ab6597197837ce59ef2a8542640c17
-  FlutterMacOS: ae6af50a8ea7d6103d888583d46bd8328a7e9811
-  path_provider_macos: 3c0c3b4b0d4a76d2bf989a913c2de869c5641a19
-  veilid: ef97d3a2d5fda3b25a4017eae65c37afa8035203
+  FlutterMacOS: 8f6f14fa908a6fb3fba0cd85dbd81ec4b251fb24
+  macos_window_utils: 933f91f64805e2eb91a5bd057cf97cd097276663
+  path_provider_foundation: eaf5b3e458fc0e5fbb9940fb09980e853fe058b8
+  veilid: a54f57b7bcf0e4e072fe99272d76ca126b2026d0
 
-PODFILE CHECKSUM: baac1aaddb7c3a00c396723592a2ffb396a7fed7
+PODFILE CHECKSUM: 73d2f470b1d889e27fcfda1d6e6efec66f98af3f
 
 COCOAPODS: 1.11.3
diff --git a/veilid-flutter/example/macos/Runner.xcodeproj/project.pbxproj b/veilid-flutter/example/macos/Runner.xcodeproj/project.pbxproj
index 2211295b..d8402d5b 100644
--- a/veilid-flutter/example/macos/Runner.xcodeproj/project.pbxproj
+++ b/veilid-flutter/example/macos/Runner.xcodeproj/project.pbxproj
@@ -3,7 +3,7 @@
 	archiveVersion = 1;
 	classes = {
 	};
-	objectVersion = 51;
+	objectVersion = 54;
 	objects = {
 
 /* Begin PBXAggregateTarget section */
@@ -261,6 +261,7 @@
 /* Begin PBXShellScriptBuildPhase section */
 		3399D490228B24CF009A79C7 /* ShellScript */ = {
 			isa = PBXShellScriptBuildPhase;
+			alwaysOutOfDate = 1;
 			buildActionMask = 2147483647;
 			files = (
 			);
@@ -409,7 +410,7 @@
 				GCC_WARN_UNINITIALIZED_AUTOS = YES_AGGRESSIVE;
 				GCC_WARN_UNUSED_FUNCTION = YES;
 				GCC_WARN_UNUSED_VARIABLE = YES;
-				MACOSX_DEPLOYMENT_TARGET = 10.12.2;
+				MACOSX_DEPLOYMENT_TARGET = 10.14.6;
 				MTL_ENABLE_DEBUG_INFO = NO;
 				SDKROOT = macosx;
 				SWIFT_COMPILATION_MODE = wholemodule;
@@ -496,7 +497,7 @@
 				GCC_WARN_UNINITIALIZED_AUTOS = YES_AGGRESSIVE;
 				GCC_WARN_UNUSED_FUNCTION = YES;
 				GCC_WARN_UNUSED_VARIABLE = YES;
-				MACOSX_DEPLOYMENT_TARGET = 10.12.2;
+				MACOSX_DEPLOYMENT_TARGET = 10.14.6;
 				MTL_ENABLE_DEBUG_INFO = YES;
 				ONLY_ACTIVE_ARCH = YES;
 				SDKROOT = macosx;
@@ -543,7 +544,7 @@
 				GCC_WARN_UNINITIALIZED_AUTOS = YES_AGGRESSIVE;
 				GCC_WARN_UNUSED_FUNCTION = YES;
 				GCC_WARN_UNUSED_VARIABLE = YES;
-				MACOSX_DEPLOYMENT_TARGET = 10.12.2;
+				MACOSX_DEPLOYMENT_TARGET = 10.14.6;
 				MTL_ENABLE_DEBUG_INFO = NO;
 				SDKROOT = macosx;
 				SWIFT_COMPILATION_MODE = wholemodule;
diff --git a/veilid-flutter/example/pubspec.lock b/veilid-flutter/example/pubspec.lock
index 1466401e..1daa306a 100644
--- a/veilid-flutter/example/pubspec.lock
+++ b/veilid-flutter/example/pubspec.lock
@@ -421,5 +421,5 @@ packages:
     source: hosted
     version: "3.5.0"
 sdks:
-  dart: ">=3.0.0-417 <4.0.0"
+  dart: ">=3.0.0 <4.0.0"
   flutter: ">=3.7.0"
diff --git a/veilid-flutter/example/pubspec.yaml b/veilid-flutter/example/pubspec.yaml
index a781e59b..a3ac6915 100644
--- a/veilid-flutter/example/pubspec.yaml
+++ b/veilid-flutter/example/pubspec.yaml
@@ -7,7 +7,7 @@ version: 1.0.0+1
 publish_to: "none" # Remove this line if you wish to publish to pub.dev
 
 environment:
-  sdk: ">=2.17.0 <3.0.0"
+  sdk: '>=3.0.0 <4.0.0'
 
 # Dependencies specify other packages that your package needs in order to work.
 # To automatically upgrade your package dependencies to the latest versions
diff --git a/veilid-flutter/lib/routing_context.dart b/veilid-flutter/lib/routing_context.dart
index 6d7345b4..39956503 100644
--- a/veilid-flutter/lib/routing_context.dart
+++ b/veilid-flutter/lib/routing_context.dart
@@ -1,6 +1,5 @@
 import 'dart:async';
 import 'dart:typed_data';
-import 'dart:convert';
 
 import 'package:change_case/change_case.dart';
 
@@ -201,17 +200,15 @@ class ValueData {
 
 enum Stability {
   lowLatency,
-  reliable,
-}
+  reliable;
 
-extension StabilityExt on Stability {
   String toJson() {
     return name.toPascalCase();
   }
-}
 
-Stability stabilityFromJson(String j) {
-  return Stability.values.byName(j.toCamelCase());
+  factory Stability.fromJson(String j) {
+    return Stability.values.byName(j.toCamelCase());
+  }
 }
 
 //////////////////////////////////////
@@ -220,17 +217,15 @@ Stability stabilityFromJson(String j) {
 enum Sequencing {
   noPreference,
   preferOrdered,
-  ensureOrdered,
-}
+  ensureOrdered;
 
-extension SequencingExt on Sequencing {
   String toJson() {
     return name.toPascalCase();
   }
-}
 
-Sequencing sequencingFromJson(String j) {
-  return Sequencing.values.byName(j.toCamelCase());
+  factory Sequencing.fromJson(String j) {
+    return Sequencing.values.byName(j.toCamelCase());
+  }
 }
 
 //////////////////////////////////////
diff --git a/veilid-flutter/lib/veilid.dart b/veilid-flutter/lib/veilid.dart
index f6e1e78d..650513a7 100644
--- a/veilid-flutter/lib/veilid.dart
+++ b/veilid-flutter/lib/veilid.dart
@@ -1,22 +1,16 @@
 import 'dart:async';
 import 'dart:typed_data';
-import 'dart:convert';
-
-import 'package:change_case/change_case.dart';
 
 import 'veilid_stub.dart'
     if (dart.library.io) 'veilid_ffi.dart'
     if (dart.library.js) 'veilid_js.dart';
 
-import 'veilid_encoding.dart';
-
 //////////////////////////////////////////////////////////
 
 import 'routing_context.dart';
 import 'veilid_config.dart';
 import 'veilid_crypto.dart';
 import 'veilid_table_db.dart';
-import 'veilid_api_exception.dart';
 import 'veilid_state.dart';
 
 export 'default_config.dart';
@@ -126,7 +120,7 @@ class TimestampDuration {
 /// Veilid singleton factory
 
 abstract class Veilid {
-  static late Veilid instance = getVeilid();
+  static Veilid instance = getVeilid();
 
   void initializeVeilidCore(Map<String, dynamic> platformConfigJson);
   void changeLogLevel(String layer, VeilidConfigLogLevel logLevel);
diff --git a/veilid-flutter/lib/veilid_config.dart b/veilid-flutter/lib/veilid_config.dart
index de814df1..060e6c3e 100644
--- a/veilid-flutter/lib/veilid_config.dart
+++ b/veilid-flutter/lib/veilid_config.dart
@@ -1,10 +1,5 @@
-import 'dart:async';
-import 'dart:typed_data';
-import 'dart:convert';
-
 import 'package:change_case/change_case.dart';
 
-import 'veilid_encoding.dart';
 import 'veilid.dart';
 
 //////////////////////////////////////////////////////////
@@ -28,7 +23,7 @@ class VeilidFFIConfigLoggingTerminal {
 
   VeilidFFIConfigLoggingTerminal.fromJson(dynamic json)
       : enabled = json['enabled'],
-        level = veilidConfigLogLevelFromJson(json['level']);
+        level = VeilidConfigLogLevel.fromJson(json['level']);
 }
 
 class VeilidFFIConfigLoggingOtlp {
@@ -55,7 +50,7 @@ class VeilidFFIConfigLoggingOtlp {
 
   VeilidFFIConfigLoggingOtlp.fromJson(dynamic json)
       : enabled = json['enabled'],
-        level = veilidConfigLogLevelFromJson(json['level']),
+        level = VeilidConfigLogLevel.fromJson(json['level']),
         grpcEndpoint = json['grpc_endpoint'],
         serviceName = json['service_name'];
 }
@@ -78,7 +73,7 @@ class VeilidFFIConfigLoggingApi {
 
   VeilidFFIConfigLoggingApi.fromJson(dynamic json)
       : enabled = json['enabled'],
-        level = veilidConfigLogLevelFromJson(json['level']);
+        level = VeilidConfigLogLevel.fromJson(json['level']);
 }
 
 class VeilidFFIConfigLogging {
@@ -129,17 +124,15 @@ enum VeilidConfigLogLevel {
   warn,
   info,
   debug,
-  trace,
-}
+  trace;
 
-extension VeilidConfigLogLevelExt on VeilidConfigLogLevel {
   String toJson() {
     return name.toPascalCase();
   }
-}
 
-VeilidConfigLogLevel veilidConfigLogLevelFromJson(String j) {
-  return VeilidConfigLogLevel.values.byName(j.toCamelCase());
+  factory VeilidConfigLogLevel.fromJson(dynamic j) {
+    return VeilidConfigLogLevel.values.byName((j as String).toCamelCase());
+  }
 }
 
 //////////////////////////////////////////////////////////
@@ -169,7 +162,7 @@ class VeilidWASMConfigLoggingPerformance {
 
   VeilidWASMConfigLoggingPerformance.fromJson(dynamic json)
       : enabled = json['enabled'],
-        level = veilidConfigLogLevelFromJson(json['level']),
+        level = VeilidConfigLogLevel.fromJson(json['level']),
         logsInTimings = json['logs_in_timings'],
         logsInConsole = json['logs_in_console'];
 }
@@ -192,7 +185,7 @@ class VeilidWASMConfigLoggingApi {
 
   VeilidWASMConfigLoggingApi.fromJson(dynamic json)
       : enabled = json['enabled'],
-        level = veilidConfigLogLevelFromJson(json['level']);
+        level = VeilidConfigLogLevel.fromJson(json['level']);
 }
 
 class VeilidWASMConfigLogging {
@@ -574,7 +567,7 @@ class VeilidConfigDHT {
       'min_peer_count': minPeerCount,
       'min_peer_refresh_time_ms': minPeerRefreshTimeMs,
       'validate_dial_info_receipt_time_ms': validateDialInfoReceiptTimeMs,
-      'local_subkey_cache_size: 128': localSubkeyCacheSize,
+      'local_subkey_cache_size': localSubkeyCacheSize,
       'local_max_subkey_cache_memory_mb': localMaxSubkeyCacheMemoryMb,
       'remote_subkey_cache_size': remoteSubkeyCacheSize,
       'remote_max_records': remoteMaxRecords,
diff --git a/veilid-flutter/lib/veilid_ffi.dart b/veilid-flutter/lib/veilid_ffi.dart
index 004d6957..f461bd46 100644
--- a/veilid-flutter/lib/veilid_ffi.dart
+++ b/veilid-flutter/lib/veilid_ffi.dart
@@ -305,7 +305,7 @@ typedef _VeilidVersionStringC = Pointer<Utf8> Function();
 typedef _VeilidVersionStringDart = Pointer<Utf8> Function();
 
 // fn veilid_version() -> VeilidVersion
-class VeilidVersionFFI extends Struct {
+final class VeilidVersionFFI extends Struct {
   @Uint32()
   external int major;
   @Uint32()
@@ -582,7 +582,7 @@ class _Ctx {
 class VeilidRoutingContextFFI implements VeilidRoutingContext {
   final _Ctx _ctx;
   static final Finalizer<_Ctx> _finalizer =
-      Finalizer((ctx) => {ctx.ffi._releaseRoutingContext(ctx.id)});
+      Finalizer((ctx) => ctx.ffi._releaseRoutingContext(ctx.id));
 
   VeilidRoutingContextFFI._(this._ctx) {
     _finalizer.attach(this, _ctx, detach: this);
@@ -751,7 +751,7 @@ class _TDBT {
 class VeilidTableDBTransactionFFI extends VeilidTableDBTransaction {
   final _TDBT _tdbt;
   static final Finalizer<_TDBT> _finalizer =
-      Finalizer((tdbt) => {tdbt.ffi._releaseTableDbTransaction(tdbt.id)});
+      Finalizer((tdbt) => tdbt.ffi._releaseTableDbTransaction(tdbt.id));
 
   VeilidTableDBTransactionFFI._(this._tdbt) {
     _finalizer.attach(this, _tdbt, detach: this);
@@ -822,7 +822,7 @@ class _TDB {
 class VeilidTableDBFFI extends VeilidTableDB {
   final _TDB _tdb;
   static final Finalizer<_TDB> _finalizer =
-      Finalizer((tdb) => {tdb.ffi._releaseTableDb(tdb.id)});
+      Finalizer((tdb) => tdb.ffi._releaseTableDb(tdb.id));
 
   VeilidTableDBFFI._(this._tdb) {
     _finalizer.attach(this, _tdb, detach: this);
@@ -985,7 +985,7 @@ class VeilidCryptoSystemFFI implements VeilidCryptoSystem {
 
     final recvPort = ReceivePort("crypto_derive_shared_secret");
     final sendPort = recvPort.sendPort;
-    _ffi._cryptoHashPassword(
+    _ffi._cryptoDeriveSharedSecret(
         sendPort.nativePort, _kind, nativeEncodedPassword, nativeEncodedSalt);
     return processFutureJson(SharedSecret.fromJson, recvPort.first);
   }
diff --git a/veilid-flutter/lib/veilid_js.dart b/veilid-flutter/lib/veilid_js.dart
index 8badebe6..cd1c590a 100644
--- a/veilid-flutter/lib/veilid_js.dart
+++ b/veilid-flutter/lib/veilid_js.dart
@@ -30,9 +30,8 @@ class _Ctx {
 // JS implementation of VeilidRoutingContext
 class VeilidRoutingContextJS implements VeilidRoutingContext {
   final _Ctx _ctx;
-  static final Finalizer<_Ctx> _finalizer = Finalizer((ctx) => {
-        js_util.callMethod(wasm, "release_routing_context", [ctx.id])
-      });
+  static final Finalizer<_Ctx> _finalizer = Finalizer(
+      (ctx) => js_util.callMethod(wasm, "release_routing_context", [ctx.id]));
 
   VeilidRoutingContextJS._(this._ctx) {
     _finalizer.attach(this, _ctx, detach: this);
@@ -338,9 +337,8 @@ class _TDBT {
 // JS implementation of VeilidTableDBTransaction
 class VeilidTableDBTransactionJS extends VeilidTableDBTransaction {
   final _TDBT _tdbt;
-  static final Finalizer<_TDBT> _finalizer = Finalizer((tdbt) => {
-        js_util.callMethod(wasm, "release_table_db_transaction", [tdbt.id])
-      });
+  static final Finalizer<_TDBT> _finalizer = Finalizer((tdbt) =>
+      js_util.callMethod(wasm, "release_table_db_transaction", [tdbt.id]));
 
   VeilidTableDBTransactionJS._(this._tdbt) {
     _finalizer.attach(this, _tdbt, detach: this);
@@ -388,9 +386,8 @@ class _TDB {
 // JS implementation of VeilidTableDB
 class VeilidTableDBJS extends VeilidTableDB {
   final _TDB _tdb;
-  static final Finalizer<_TDB> _finalizer = Finalizer((tdb) => {
-        js_util.callMethod(wasm, "release_table_db", [tdb.id])
-      });
+  static final Finalizer<_TDB> _finalizer = Finalizer(
+      (tdb) => js_util.callMethod(wasm, "release_table_db", [tdb.id]));
 
   VeilidTableDBJS._(this._tdb) {
     _finalizer.attach(this, _tdb, detach: this);
diff --git a/veilid-flutter/lib/veilid_state.dart b/veilid-flutter/lib/veilid_state.dart
index 39142d20..fea12cdf 100644
--- a/veilid-flutter/lib/veilid_state.dart
+++ b/veilid-flutter/lib/veilid_state.dart
@@ -16,17 +16,15 @@ enum AttachmentState {
   attachedStrong,
   fullyAttached,
   overAttached,
-  detaching,
-}
+  detaching;
 
-extension AttachmentStateExt on AttachmentState {
   String toJson() {
     return name.toPascalCase();
   }
-}
 
-AttachmentState attachmentStateFromJson(String j) {
-  return AttachmentState.values.byName(j.toCamelCase());
+  factory AttachmentState.fromJson(String j) {
+    return AttachmentState.values.byName(j.toCamelCase());
+  }
 }
 
 //////////////////////////////////////
@@ -37,17 +35,15 @@ enum VeilidLogLevel {
   warn,
   info,
   debug,
-  trace,
-}
+  trace;
 
-extension VeilidLogLevelExt on VeilidLogLevel {
   String toJson() {
     return name.toPascalCase();
   }
-}
 
-VeilidLogLevel veilidLogLevelFromJson(String j) {
-  return VeilidLogLevel.values.byName(j.toCamelCase());
+  factory VeilidLogLevel.fromJson(String j) {
+    return VeilidLogLevel.values.byName(j.toCamelCase());
+  }
 }
 
 ////////////
@@ -221,7 +217,7 @@ class PeerStats {
 
 class PeerTableData {
   List<TypedKey> nodeIds;
-  PeerAddress peerAddress;
+  String peerAddress;
   PeerStats peerStats;
 
   PeerTableData({
@@ -233,7 +229,7 @@ class PeerTableData {
   Map<String, dynamic> toJson() {
     return {
       'node_ids': nodeIds.map((p) => p.toJson()).toList(),
-      'peer_address': peerAddress.toJson(),
+      'peer_address': peerAddress,
       'peer_stats': peerStats.toJson(),
     };
   }
@@ -241,53 +237,10 @@ class PeerTableData {
   PeerTableData.fromJson(dynamic json)
       : nodeIds = List<TypedKey>.from(
             json['node_ids'].map((j) => TypedKey.fromJson(j))),
-        peerAddress = PeerAddress.fromJson(json['peer_address']),
+        peerAddress = json['peer_address'],
         peerStats = PeerStats.fromJson(json['peer_stats']);
 }
 
-//////////////////////////////////////
-/// AttachmentState
-
-enum ProtocolType {
-  udp,
-  tcp,
-  ws,
-  wss,
-}
-
-extension ProtocolTypeExt on ProtocolType {
-  String toJson() {
-    return name.toUpperCase();
-  }
-}
-
-ProtocolType protocolTypeFromJson(String j) {
-  return ProtocolType.values.byName(j.toLowerCase());
-}
-
-////////////
-
-class PeerAddress {
-  ProtocolType protocolType;
-  String socketAddress;
-
-  PeerAddress({
-    required this.protocolType,
-    required this.socketAddress,
-  });
-
-  Map<String, dynamic> toJson() {
-    return {
-      'protocol_type': protocolType.toJson(),
-      'socket_address': socketAddress,
-    };
-  }
-
-  PeerAddress.fromJson(dynamic json)
-      : protocolType = protocolTypeFromJson(json['protocol_type']),
-        socketAddress = json['socket_address'];
-}
-
 //////////////////////////////////////
 /// VeilidUpdate
 
@@ -297,7 +250,7 @@ abstract class VeilidUpdate {
       case "Log":
         {
           return VeilidLog(
-              logLevel: veilidLogLevelFromJson(json["log_level"]),
+              logLevel: VeilidLogLevel.fromJson(json["log_level"]),
               message: json["message"],
               backtrace: json["backtrace"]);
         }
@@ -509,7 +462,7 @@ class VeilidStateAttachment {
       this.state, this.publicInternetReady, this.localNetworkReady);
 
   VeilidStateAttachment.fromJson(dynamic json)
-      : state = attachmentStateFromJson(json['state']),
+      : state = AttachmentState.fromJson(json['state']),
         publicInternetReady = json['public_internet_ready'],
         localNetworkReady = json['local_network_ready'];
 
diff --git a/veilid-flutter/macos/veilid.podspec b/veilid-flutter/macos/veilid.podspec
index 3646e82e..fd6ced3f 100644
--- a/veilid-flutter/macos/veilid.podspec
+++ b/veilid-flutter/macos/veilid.podspec
@@ -16,8 +16,8 @@ Veilid Network Plugin
   s.source_files     = 'Classes/**/*'
   s.dependency 'FlutterMacOS'
 
-  s.platform = :osx, '10.12.2'
-  s.osx.deployment_target = '10.12.2'
+  s.platform = :osx, '10.14.6'
+  s.osx.deployment_target = '10.14.6'
   s.pod_target_xcconfig = { 'DEFINES_MODULE' => 'YES' }
   s.swift_version = '5.0'
 
diff --git a/veilid-flutter/pubspec.yaml b/veilid-flutter/pubspec.yaml
index 5e5f7b02..04dbdad0 100644
--- a/veilid-flutter/pubspec.yaml
+++ b/veilid-flutter/pubspec.yaml
@@ -5,8 +5,7 @@ homepage: https://veilid.com
 publish_to: "none" # Remove this line if you wish to publish to pub.dev
 
 environment:
-  sdk: ">=2.16.1 <3.0.0"
-  flutter: ">=2.5.0"
+  sdk: '>=3.0.0 <4.0.0'
 
 dependencies:
   flutter:
diff --git a/veilid-flutter/test/veilid_test.dart b/veilid-flutter/test/veilid_test.dart
index 659ebb1d..82a21982 100644
--- a/veilid-flutter/test/veilid_test.dart
+++ b/veilid-flutter/test/veilid_test.dart
@@ -11,6 +11,6 @@ void main() {
   tearDown(() {});
 
   test('veilidVersionString', () async {
-    expect(Veilid.instance.veilidVersionString(), '0.1.0');
+    expect(api.veilidVersionString(), '0.1.0');
   });
 }

From b1bbeb392ba6610be9728d02f2d19afbe103441e Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Wed, 17 May 2023 17:26:21 -0400
Subject: [PATCH 40/74] fix deployment targets

---
 doc/config/sample.config                      |  2 +-
 doc/config/veilid-server-config.md            |  2 +-
 package/linux/veilid-server.conf              |  2 +-
 scripts/ios_build.sh                          |  2 +-
 scripts/macos_build.sh                        |  2 +-
 .../src/intf/native/protected_store.rs        |  5 ++--
 veilid-core/src/routing_table/debug.rs        | 13 +++++++++--
 .../src/tests/common/test_veilid_config.rs    |  7 ++----
 veilid-core/src/veilid_config.rs              |  4 ++--
 veilid-flutter/lib/default_config.dart        |  2 +-
 veilid-flutter/lib/veilid_config.dart         |  8 +++----
 veilid-server/src/settings.rs                 | 23 ++++++++-----------
 12 files changed, 37 insertions(+), 35 deletions(-)

diff --git a/doc/config/sample.config b/doc/config/sample.config
index 1d52f579..3fd37b59 100644
--- a/doc/config/sample.config
+++ b/doc/config/sample.config
@@ -31,7 +31,7 @@ core:
     protected_store:
         allow_insecure_fallback: true
         always_use_insecure_storage: true
-        insecure_fallback_directory: '%INSECURE_FALLBACK_DIRECTORY%'
+        directory: '%DIRECTORY%'
         delete: false
     table_store:
         directory: '%TABLE_STORE_DIRECTORY%'
diff --git a/doc/config/veilid-server-config.md b/doc/config/veilid-server-config.md
index e4a2ecc5..388e3b0f 100644
--- a/doc/config/veilid-server-config.md
+++ b/doc/config/veilid-server-config.md
@@ -155,7 +155,7 @@ testing:
 protected_store:
     allow_insecure_fallback: true
     always_use_insecure_storage: true
-    insecure_fallback_directory: '%INSECURE_FALLBACK_DIRECTORY%'
+    directory: '%DIRECTORY%'
     delete: false
 ```
 
diff --git a/package/linux/veilid-server.conf b/package/linux/veilid-server.conf
index cd94b5d7..c7126e01 100644
--- a/package/linux/veilid-server.conf
+++ b/package/linux/veilid-server.conf
@@ -14,7 +14,7 @@ logging:
     enabled: false
 core:
   protected_store:
-    insecure_fallback_directory: '/var/db/veilid-server/protected_store'
+    directory: '/var/db/veilid-server/protected_store'
   table_store:
     directory: '/var/db/veilid-server/table_store'
   block_store:
diff --git a/scripts/ios_build.sh b/scripts/ios_build.sh
index 51307e68..26d50ff4 100755
--- a/scripts/ios_build.sh
+++ b/scripts/ios_build.sh
@@ -57,7 +57,7 @@ do
         HOMEBREW_DIR=$(dirname `which brew`)
     fi
 
-    env -i PATH=/usr/bin:/bin:$HOMEBREW_DIR:$CARGO_DIR HOME="$HOME" USER="$USER" cargo $CARGO_TOOLCHAIN build $EXTRA_CARGO_OPTIONS --target $CARGO_TARGET --manifest-path $CARGO_MANIFEST_PATH
+    env -i PATH=/usr/bin:/bin:$HOMEBREW_DIR:$CARGO_DIR HOME="$HOME" USER="$USER" IPHONEOS_DEPLOYMENT_TARGET="$IPHONEOS_DEPLOYMENT_TARGET" cargo $CARGO_TOOLCHAIN build $EXTRA_CARGO_OPTIONS --target $CARGO_TARGET --manifest-path $CARGO_MANIFEST_PATH
 
     LIPOS="$LIPOS $TARGET_PATH/$CARGO_TARGET/$BUILD_MODE/lib$PACKAGE_NAME.a"
 
diff --git a/scripts/macos_build.sh b/scripts/macos_build.sh
index 88fc470c..61703127 100755
--- a/scripts/macos_build.sh
+++ b/scripts/macos_build.sh
@@ -47,7 +47,7 @@ do
         HOMEBREW_DIR=$(dirname `which brew`)
     fi
 
-    env -i PATH=/usr/bin:/bin:$HOMEBREW_DIR:$CARGO_DIR HOME="$HOME" USER="$USER" cargo $CARGO_TOOLCHAIN build $EXTRA_CARGO_OPTIONS --target $CARGO_TARGET --manifest-path $CARGO_MANIFEST_PATH
+    env -i PATH=/usr/bin:/bin:$HOMEBREW_DIR:$CARGO_DIR HOME="$HOME" USER="$USER" MACOSX_DEPLOYMENT_TARGET="$MACOSX_DEPLOYMENT_TARGET" cargo $CARGO_TOOLCHAIN build $EXTRA_CARGO_OPTIONS --target $CARGO_TARGET --manifest-path $CARGO_MANIFEST_PATH
 
     LIPOS="$LIPOS $TARGET_PATH/$CARGO_TARGET/$BUILD_MODE/lib$PACKAGE_NAME.dylib"
 
diff --git a/veilid-core/src/intf/native/protected_store.rs b/veilid-core/src/intf/native/protected_store.rs
index 5d1b9a28..40d566a4 100644
--- a/veilid-core/src/intf/native/protected_store.rs
+++ b/veilid-core/src/intf/native/protected_store.rs
@@ -64,9 +64,8 @@ impl ProtectedStore {
                 || c.protected_store.allow_insecure_fallback)
                 && inner.keyring_manager.is_none()
             {
-                let insecure_fallback_directory =
-                    Path::new(&c.protected_store.insecure_fallback_directory);
-                let insecure_keyring_file = insecure_fallback_directory.to_owned().join(format!(
+                let directory = Path::new(&c.protected_store.directory);
+                let insecure_keyring_file = directory.to_owned().join(format!(
                     "insecure_keyring{}",
                     if c.namespace.is_empty() {
                         "".to_owned()
diff --git a/veilid-core/src/routing_table/debug.rs b/veilid-core/src/routing_table/debug.rs
index 7e1cf476..36bd83d0 100644
--- a/veilid-core/src/routing_table/debug.rs
+++ b/veilid-core/src/routing_table/debug.rs
@@ -130,13 +130,22 @@ impl RoutingTable {
                     for e in filtered_entries {
                         let state = e.1.with(inner, |_rti, e| e.state(cur_ts));
                         out += &format!(
-                            "    {} [{}]\n",
+                            "    {} [{}] {}\n",
                             e.0.encode(),
                             match state {
                                 BucketEntryState::Reliable => "R",
                                 BucketEntryState::Unreliable => "U",
                                 BucketEntryState::Dead => "D",
-                            }
+                            },
+                            e.1.with(inner, |_rti, e| {
+                                e.peer_stats()
+                                    .latency
+                                    .as_ref()
+                                    .map(|l| {
+                                        format!("{:.2}ms", timestamp_to_secs(l.average.as_u64()))
+                                    })
+                                    .unwrap_or_else(|| "???.??ms".to_string())
+                            })
                         );
                     }
                 }
diff --git a/veilid-core/src/tests/common/test_veilid_config.rs b/veilid-core/src/tests/common/test_veilid_config.rs
index 8fa4a634..e2670f94 100644
--- a/veilid-core/src/tests/common/test_veilid_config.rs
+++ b/veilid-core/src/tests/common/test_veilid_config.rs
@@ -181,7 +181,7 @@ fn config_callback(key: String) -> ConfigCallbackReturn {
         "block_store.delete" => Ok(Box::new(false)),
         "protected_store.allow_insecure_fallback" => Ok(Box::new(true)),
         "protected_store.always_use_insecure_storage" => Ok(Box::new(false)),
-        "protected_store.insecure_fallback_directory" => Ok(Box::new(get_protected_store_path())),
+        "protected_store.directory" => Ok(Box::new(get_protected_store_path())),
         "protected_store.delete" => Ok(Box::new(false)),
         "network.connection_initial_timeout_ms" => Ok(Box::new(2_000u32)),
         "network.connection_inactivity_timeout_ms" => Ok(Box::new(60_000u32)),
@@ -307,10 +307,7 @@ pub async fn test_config() {
     assert_eq!(inner.block_store.delete, false);
     assert_eq!(inner.protected_store.allow_insecure_fallback, true);
     assert_eq!(inner.protected_store.always_use_insecure_storage, false);
-    assert_eq!(
-        inner.protected_store.insecure_fallback_directory,
-        get_protected_store_path()
-    );
+    assert_eq!(inner.protected_store.directory, get_protected_store_path());
     assert_eq!(inner.protected_store.delete, false);
     assert_eq!(inner.network.connection_initial_timeout_ms, 2_000u32);
     assert_eq!(inner.network.connection_inactivity_timeout_ms, 60_000u32);
diff --git a/veilid-core/src/veilid_config.rs b/veilid-core/src/veilid_config.rs
index 46b14245..d79377af 100644
--- a/veilid-core/src/veilid_config.rs
+++ b/veilid-core/src/veilid_config.rs
@@ -429,7 +429,7 @@ pub struct VeilidConfigBlockStore {
 pub struct VeilidConfigProtectedStore {
     pub allow_insecure_fallback: bool,
     pub always_use_insecure_storage: bool,
-    pub insecure_fallback_directory: String,
+    pub directory: String,
     pub delete: bool,
 }
 
@@ -634,7 +634,7 @@ impl VeilidConfig {
             get_config!(inner.block_store.delete);
             get_config!(inner.protected_store.allow_insecure_fallback);
             get_config!(inner.protected_store.always_use_insecure_storage);
-            get_config!(inner.protected_store.insecure_fallback_directory);
+            get_config!(inner.protected_store.directory);
             get_config!(inner.protected_store.delete);
             get_config!(inner.network.connection_initial_timeout_ms);
             get_config!(inner.network.connection_inactivity_timeout_ms);
diff --git a/veilid-flutter/lib/default_config.dart b/veilid-flutter/lib/default_config.dart
index 7d92a7e8..f246bb07 100644
--- a/veilid-flutter/lib/default_config.dart
+++ b/veilid-flutter/lib/default_config.dart
@@ -64,7 +64,7 @@ Future<VeilidConfig> getDefaultVeilidConfig(String programName) async {
     protectedStore: VeilidConfigProtectedStore(
       allowInsecureFallback: false,
       alwaysUseInsecureStorage: false,
-      insecureFallbackDirectory: "",
+      directory: "",
       delete: false,
     ),
     tableStore: VeilidConfigTableStore(
diff --git a/veilid-flutter/lib/veilid_config.dart b/veilid-flutter/lib/veilid_config.dart
index 060e6c3e..a062b8d3 100644
--- a/veilid-flutter/lib/veilid_config.dart
+++ b/veilid-flutter/lib/veilid_config.dart
@@ -826,13 +826,13 @@ class VeilidConfigBlockStore {
 class VeilidConfigProtectedStore {
   bool allowInsecureFallback;
   bool alwaysUseInsecureStorage;
-  String insecureFallbackDirectory;
+  String directory;
   bool delete;
 
   VeilidConfigProtectedStore({
     required this.allowInsecureFallback,
     required this.alwaysUseInsecureStorage,
-    required this.insecureFallbackDirectory,
+    required this.directory,
     required this.delete,
   });
 
@@ -840,7 +840,7 @@ class VeilidConfigProtectedStore {
     return {
       'allow_insecure_fallback': allowInsecureFallback,
       'always_use_insecure_storage': alwaysUseInsecureStorage,
-      'insecure_fallback_directory': insecureFallbackDirectory,
+      'directory': directory,
       'delete': delete,
     };
   }
@@ -848,7 +848,7 @@ class VeilidConfigProtectedStore {
   VeilidConfigProtectedStore.fromJson(dynamic json)
       : allowInsecureFallback = json['allow_insecure_fallback'],
         alwaysUseInsecureStorage = json['always_use_insecure_storage'],
-        insecureFallbackDirectory = json['insecure_fallback_directory'],
+        directory = json['directory'],
         delete = json['delete'];
 }
 
diff --git a/veilid-server/src/settings.rs b/veilid-server/src/settings.rs
index a53c1a31..4be95521 100644
--- a/veilid-server/src/settings.rs
+++ b/veilid-server/src/settings.rs
@@ -47,7 +47,7 @@ core:
     protected_store:
         allow_insecure_fallback: true
         always_use_insecure_storage: true
-        insecure_fallback_directory: '%INSECURE_FALLBACK_DIRECTORY%'
+        directory: '%DIRECTORY%'
         delete: false
     table_store:
         directory: '%TABLE_STORE_DIRECTORY%'
@@ -157,8 +157,8 @@ core:
         &Settings::get_default_block_store_path().to_string_lossy(),
     )
     .replace(
-        "%INSECURE_FALLBACK_DIRECTORY%",
-        &Settings::get_default_protected_store_insecure_fallback_directory().to_string_lossy(),
+        "%DIRECTORY%",
+        &Settings::get_default_protected_store_directory().to_string_lossy(),
     )
     .replace(
         "%CERTIFICATE_PATH%",
@@ -586,7 +586,7 @@ pub struct BlockStore {
 pub struct ProtectedStore {
     pub allow_insecure_fallback: bool,
     pub always_use_insecure_storage: bool,
-    pub insecure_fallback_directory: PathBuf,
+    pub directory: PathBuf,
     pub delete: bool,
 }
 
@@ -795,7 +795,7 @@ impl Settings {
         bs_path
     }
 
-    pub fn get_default_protected_store_insecure_fallback_directory() -> PathBuf {
+    pub fn get_default_protected_store_directory() -> PathBuf {
         #[cfg(unix)]
         {
             let globalpath = PathBuf::from("/var/db/veilid-server/protected_store");
@@ -935,10 +935,7 @@ impl Settings {
             inner.core.protected_store.always_use_insecure_storage,
             value
         );
-        set_config_value!(
-            inner.core.protected_store.insecure_fallback_directory,
-            value
-        );
+        set_config_value!(inner.core.protected_store.directory, value);
         set_config_value!(inner.core.protected_store.delete, value);
         set_config_value!(inner.core.table_store.directory, value);
         set_config_value!(inner.core.table_store.delete, value);
@@ -1065,11 +1062,11 @@ impl Settings {
                 "protected_store.always_use_insecure_storage" => Ok(Box::new(
                     inner.core.protected_store.always_use_insecure_storage,
                 )),
-                "protected_store.insecure_fallback_directory" => Ok(Box::new(
+                "protected_store.directory" => Ok(Box::new(
                     inner
                         .core
                         .protected_store
-                        .insecure_fallback_directory
+                        .directory
                         .to_string_lossy()
                         .to_string(),
                 )),
@@ -1504,8 +1501,8 @@ mod tests {
         assert_eq!(s.core.protected_store.allow_insecure_fallback, true);
         assert_eq!(s.core.protected_store.always_use_insecure_storage, true);
         assert_eq!(
-            s.core.protected_store.insecure_fallback_directory,
-            Settings::get_default_protected_store_insecure_fallback_directory()
+            s.core.protected_store.directory,
+            Settings::get_default_protected_store_directory()
         );
         assert_eq!(s.core.protected_store.delete, false);
 

From 24bd401c902f19d49f8f138ed6dfe414d2d3b7fe Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Wed, 17 May 2023 19:16:39 -0400
Subject: [PATCH 41/74] fix shutdown

---
 veilid-server/src/server.rs | 19 ++++++++++---------
 1 file changed, 10 insertions(+), 9 deletions(-)

diff --git a/veilid-server/src/server.rs b/veilid-server/src/server.rs
index 45385203..1ffa64f1 100644
--- a/veilid-server/src/server.rs
+++ b/veilid-server/src/server.rs
@@ -59,8 +59,10 @@ pub async fn run_veilid_server_internal(
 
     // Create VeilidCore setup
     let update_callback = Arc::new(move |change: veilid_core::VeilidUpdate| {
-        if sender.send(change).is_err() {
-            error!("error sending veilid update callback");
+        if let Err(e) = sender.send(change) {
+            // Don't log here, as that loops the update callback in some cases and will deadlock
+            let change = e.into_inner();
+            eprintln!("error sending veilid update callback: {:?}", change);
         }
     });
     let config_callback = settings.get_core_config_callback();
@@ -88,12 +90,8 @@ pub async fn run_veilid_server_internal(
 
     // Process all updates
     let capi2 = capi.clone();
-    let mut shutdown_switch = {
-        let shutdown_switch_locked = SHUTDOWN_SWITCH.lock();
-        (*shutdown_switch_locked).as_ref().map(|ss| ss.instance())
-    }
-    .unwrap()
-    .fuse();
+    let update_receiver_shutdown = SingleShotEventual::new(Some(()));
+    let mut update_receiver_shutdown_instance = update_receiver_shutdown.instance().fuse();
     let update_receiver_jh = spawn_local(async move {
         loop {
             select! {
@@ -107,7 +105,7 @@ pub async fn run_veilid_server_internal(
                         break;
                     }
                 }
-                _ = shutdown_switch => {
+                _ = update_receiver_shutdown_instance => {
                     break;
                 }
             };
@@ -177,6 +175,9 @@ pub async fn run_veilid_server_internal(
     // Shut down Veilid API to release state change sender
     veilid_api.shutdown().await;
 
+    // Shut down update receiver now that there are no more updates
+    update_receiver_shutdown.resolve(()).await;
+
     // Wait for update receiver to exit
     let _ = update_receiver_jh.await;
 

From 9f22e90fbc70c646e9863eeda7ce14c72b3c5da8 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Wed, 17 May 2023 21:51:42 -0400
Subject: [PATCH 42/74] keyvaluedb

---
 external/keyvaluedb                           |  2 +-
 veilid-core/src/intf/mod.rs                   | 14 +++++++++
 veilid-core/src/intf/native/mod.rs            |  2 ++
 .../src/intf/native/protected_store.rs        | 20 +++++-------
 veilid-core/src/intf/native/table_store.rs    | 31 +++++--------------
 veilid-core/src/intf/wasm/mod.rs              |  2 ++
 veilid-core/src/intf/wasm/protected_store.rs  | 20 +++++-------
 veilid-core/src/intf/wasm/table_store.rs      | 14 +++------
 8 files changed, 45 insertions(+), 60 deletions(-)

diff --git a/external/keyvaluedb b/external/keyvaluedb
index 3408e0b2..1ec47c11 160000
--- a/external/keyvaluedb
+++ b/external/keyvaluedb
@@ -1 +1 @@
-Subproject commit 3408e0b2ae3df0088e0714bc23fb33c82a58e22c
+Subproject commit 1ec47c11f6319153e219d5f18ddbd9e026c9342e
diff --git a/veilid-core/src/intf/mod.rs b/veilid-core/src/intf/mod.rs
index 842e5351..6c1ae9f3 100644
--- a/veilid-core/src/intf/mod.rs
+++ b/veilid-core/src/intf/mod.rs
@@ -1,4 +1,5 @@
 mod table_db;
+use super::*;
 
 #[cfg(target_arch = "wasm32")]
 mod wasm;
@@ -8,3 +9,16 @@ pub use wasm::*;
 mod native;
 #[cfg(not(target_arch = "wasm32"))]
 pub use native::*;
+
+pub static KNOWN_TABLE_NAMES: [&'static str; 7] = [
+    "crypto_caches",
+    "RouteSpecStore",
+    "routing_table",
+    "local_records",
+    "local_subkeys",
+    "remote_records",
+    "remote_subkeys",
+];
+
+pub static KNOWN_PROTECTED_STORE_KEYS: [&'static str; 4] =
+    ["node_id", "node_id_secret", "_test_key", "RouteSpecStore"];
diff --git a/veilid-core/src/intf/native/mod.rs b/veilid-core/src/intf/native/mod.rs
index 786b2dd1..6f2b8791 100644
--- a/veilid-core/src/intf/native/mod.rs
+++ b/veilid-core/src/intf/native/mod.rs
@@ -11,3 +11,5 @@ pub use table_store::*;
 #[cfg(target_os = "android")]
 pub mod android;
 pub mod network_interfaces;
+
+use super::*;
diff --git a/veilid-core/src/intf/native/protected_store.rs b/veilid-core/src/intf/native/protected_store.rs
index 40d566a4..d8e46918 100644
--- a/veilid-core/src/intf/native/protected_store.rs
+++ b/veilid-core/src/intf/native/protected_store.rs
@@ -1,4 +1,4 @@
-use crate::*;
+use super::*;
 use data_encoding::BASE64URL_NOPAD;
 use keyring_manager::*;
 use std::path::Path;
@@ -29,18 +29,12 @@ impl ProtectedStore {
 
     #[instrument(level = "trace", skip(self), err)]
     pub async fn delete_all(&self) -> EyreResult<()> {
-        // Delete all known keys
-        if self.remove_user_secret("node_id").await? {
-            debug!("deleted protected_store key 'node_id'");
-        }
-        if self.remove_user_secret("node_id_secret").await? {
-            debug!("deleted protected_store key 'node_id_secret'");
-        }
-        if self.remove_user_secret("_test_key").await? {
-            debug!("deleted protected_store key '_test_key'");
-        }
-        if self.remove_user_secret("RouteSpecStore").await? {
-            debug!("deleted protected_store key 'RouteSpecStore'");
+        for kpsk in &KNOWN_PROTECTED_STORE_KEYS {
+            if let Err(e) = self.remove_user_secret(kpsk).await {
+                error!("failed to delete '{}': {}", kpsk, e);
+            } else {
+                debug!("deleted table '{}'", kpsk);
+            }
         }
         Ok(())
     }
diff --git a/veilid-core/src/intf/native/table_store.rs b/veilid-core/src/intf/native/table_store.rs
index cd9ebff9..376b8efa 100644
--- a/veilid-core/src/intf/native/table_store.rs
+++ b/veilid-core/src/intf/native/table_store.rs
@@ -1,6 +1,6 @@
+use super::*;
 use crate::intf::table_db::TableDBInner;
 pub use crate::intf::table_db::{TableDB, TableDBTransaction};
-use crate::*;
 use keyvaluedb_sqlite::*;
 use std::path::PathBuf;
 
@@ -31,29 +31,12 @@ impl TableStore {
 
     /// Delete all known tables
     pub async fn delete_all(&self) {
-        if let Err(e) = self.delete("crypto_caches").await {
-            error!("failed to delete 'crypto_caches': {}", e);
-        }
-        if let Err(e) = self.delete("RouteSpecStore").await {
-            error!("failed to delete 'RouteSpecStore': {}", e);
-        }
-        if let Err(e) = self.delete("routing_table").await {
-            error!("failed to delete 'routing_table': {}", e);
-        }
-        if let Err(e) = self.delete("routing_table").await {
-            error!("failed to delete 'routing_table': {}", e);
-        }
-        if let Err(e) = self.delete("local_records").await {
-            error!("failed to delete 'local_records': {}", e);
-        }
-        if let Err(e) = self.delete("local_subkeys").await {
-            error!("failed to delete 'local_subkeys': {}", e);
-        }
-        if let Err(e) = self.delete("remote_records").await {
-            error!("failed to delete 'remote_records': {}", e);
-        }
-        if let Err(e) = self.delete("remote_subkeys").await {
-            error!("failed to delete 'remote_subkeys': {}", e);
+        for ktn in &KNOWN_TABLE_NAMES {
+            if let Err(e) = self.delete(ktn).await {
+                error!("failed to delete '{}': {}", ktn, e);
+            } else {
+                debug!("deleted table '{}'", ktn);
+            }
         }
     }
 
diff --git a/veilid-core/src/intf/wasm/mod.rs b/veilid-core/src/intf/wasm/mod.rs
index 53faa230..a2b0f374 100644
--- a/veilid-core/src/intf/wasm/mod.rs
+++ b/veilid-core/src/intf/wasm/mod.rs
@@ -7,3 +7,5 @@ pub use block_store::*;
 pub use protected_store::*;
 pub use system::*;
 pub use table_store::*;
+
+use super::*;
diff --git a/veilid-core/src/intf/wasm/protected_store.rs b/veilid-core/src/intf/wasm/protected_store.rs
index 126d2b7c..39c9bacd 100644
--- a/veilid-core/src/intf/wasm/protected_store.rs
+++ b/veilid-core/src/intf/wasm/protected_store.rs
@@ -1,4 +1,4 @@
-use crate::*;
+use super::*;
 use data_encoding::BASE64URL_NOPAD;
 use rkyv::{
     bytecheck::CheckBytes, Archive as RkyvArchive, Deserialize as RkyvDeserialize,
@@ -19,18 +19,12 @@ impl ProtectedStore {
 
     #[instrument(level = "trace", skip(self), err)]
     pub async fn delete_all(&self) -> EyreResult<()> {
-        // Delete all known keys
-        if self.remove_user_secret("node_id").await? {
-            debug!("deleted protected_store key 'node_id'");
-        }
-        if self.remove_user_secret("node_id_secret").await? {
-            debug!("deleted protected_store key 'node_id_secret'");
-        }
-        if self.remove_user_secret("_test_key").await? {
-            debug!("deleted protected_store key '_test_key'");
-        }
-        if self.remove_user_secret("RouteSpecStore").await? {
-            debug!("deleted protected_store key 'RouteSpecStore'");
+        for kpsk in &KNOWN_PROTECTED_STORE_KEYS {
+            if let Err(e) = self.remove_user_secret(kpsk).await {
+                error!("failed to delete '{}': {}", kpsk, e);
+            } else {
+                debug!("deleted table '{}'", kpsk);
+            }
         }
         Ok(())
     }
diff --git a/veilid-core/src/intf/wasm/table_store.rs b/veilid-core/src/intf/wasm/table_store.rs
index f401220d..3d8cd513 100644
--- a/veilid-core/src/intf/wasm/table_store.rs
+++ b/veilid-core/src/intf/wasm/table_store.rs
@@ -1,6 +1,6 @@
+use super::*;
 use crate::intf::table_db::TableDBInner;
 pub use crate::intf::table_db::{TableDB, TableDBTransaction};
-use crate::*;
 use keyvaluedb_web::*;
 
 struct TableStoreInner {
@@ -30,14 +30,10 @@ impl TableStore {
 
     /// Delete all known tables
     pub async fn delete_all(&self) {
-        if let Err(e) = self.delete("crypto_caches").await {
-            error!("failed to delete 'crypto_caches': {}", e);
-        }
-        if let Err(e) = self.delete("RouteSpecStore").await {
-            error!("failed to delete 'RouteSpecStore': {}", e);
-        }
-        if let Err(e) = self.delete("routing_table").await {
-            error!("failed to delete 'routing_table': {}", e);
+        for ktn in &KNOWN_TABLE_NAMES {
+            if let Err(e) = self.delete(ktn).await {
+                error!("failed to delete '{}': {}", ktn, e);
+            }
         }
     }
 

From 1e2b7429f64792907fa5a38e299074cb5b4d70e6 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Fri, 19 May 2023 21:19:38 -0400
Subject: [PATCH 43/74] checkpoint

---
 Cargo.lock          | 2 ++
 external/keyvaluedb | 2 +-
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/Cargo.lock b/Cargo.lock
index e8562a1a..3da52d29 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -1246,6 +1246,7 @@ dependencies = [
  "ciborium",
  "clap 3.2.25",
  "criterion-plot",
+ "futures",
  "itertools",
  "lazy_static",
  "num-traits",
@@ -2867,6 +2868,7 @@ dependencies = [
 name = "keyvaluedb-web"
 version = "0.1.0"
 dependencies = [
+ "async-lock",
  "console_log",
  "flume",
  "futures",
diff --git a/external/keyvaluedb b/external/keyvaluedb
index 1ec47c11..75c0a42c 160000
--- a/external/keyvaluedb
+++ b/external/keyvaluedb
@@ -1 +1 @@
-Subproject commit 1ec47c11f6319153e219d5f18ddbd9e026c9342e
+Subproject commit 75c0a42cd724b3c959f7742785f167c9ca7bc131

From 4326626c0c9d7c513b93c5d732b948ff3a582322 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Sat, 20 May 2023 13:36:51 -0400
Subject: [PATCH 44/74] keyvaluedb

---
 external/keyvaluedb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/external/keyvaluedb b/external/keyvaluedb
index 75c0a42c..47e33551 160000
--- a/external/keyvaluedb
+++ b/external/keyvaluedb
@@ -1 +1 @@
-Subproject commit 75c0a42cd724b3c959f7742785f167c9ca7bc131
+Subproject commit 47e335515869160efd8a119f6f066f7009270246

From f574e63d90e19a28385b54e95ec7f72eaca2b602 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Sat, 20 May 2023 13:41:38 -0400
Subject: [PATCH 45/74] keyvaluedb

---
 external/keyvaluedb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/external/keyvaluedb b/external/keyvaluedb
index 47e33551..4a21429c 160000
--- a/external/keyvaluedb
+++ b/external/keyvaluedb
@@ -1 +1 @@
-Subproject commit 47e335515869160efd8a119f6f066f7009270246
+Subproject commit 4a21429c5ea10ba550b793818e691793d7d8016b

From dea8be65220ba76d0bf372a67d8d709f4f1c4228 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Sat, 20 May 2023 14:53:55 -0400
Subject: [PATCH 46/74] checkpoint

---
 external/keyvaluedb                        |  2 +-
 veilid-core/src/intf/native/table_store.rs |  4 +-
 veilid-core/src/intf/table_db.rs           | 69 +++++++++++-----------
 3 files changed, 37 insertions(+), 38 deletions(-)

diff --git a/external/keyvaluedb b/external/keyvaluedb
index 4a21429c..e92252f5 160000
--- a/external/keyvaluedb
+++ b/external/keyvaluedb
@@ -1 +1 @@
-Subproject commit 4a21429c5ea10ba550b793818e691793d7d8016b
+Subproject commit e92252f573c3ba98eebf71a5d115c44cff52af3d
diff --git a/veilid-core/src/intf/native/table_store.rs b/veilid-core/src/intf/native/table_store.rs
index 376b8efa..c4ba94fe 100644
--- a/veilid-core/src/intf/native/table_store.rs
+++ b/veilid-core/src/intf/native/table_store.rs
@@ -1,11 +1,11 @@
 use super::*;
-use crate::intf::table_db::TableDBInner;
+use crate::intf::table_db::TableDBUnlockedInner;
 pub use crate::intf::table_db::{TableDB, TableDBTransaction};
 use keyvaluedb_sqlite::*;
 use std::path::PathBuf;
 
 struct TableStoreInner {
-    opened: BTreeMap<String, Weak<Mutex<TableDBInner>>>,
+    opened: BTreeMap<String, Weak<Mutex<TableDBUnlockedInner>>>,
 }
 
 /// Veilid Table Storage
diff --git a/veilid-core/src/intf/table_db.rs b/veilid-core/src/intf/table_db.rs
index f07e7aaa..fb9d3396 100644
--- a/veilid-core/src/intf/table_db.rs
+++ b/veilid-core/src/intf/table_db.rs
@@ -10,19 +10,19 @@ cfg_if! {
     }
 }
 
-pub struct TableDBInner {
+pub struct TableDBUnlockedInner {
     table: String,
     table_store: TableStore,
     database: Database,
 }
 
-impl fmt::Debug for TableDBInner {
+impl fmt::Debug for TableDBUnlockedInner {
     fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
         write!(f, "TableDBInner(table={})", self.table)
     }
 }
 
-impl Drop for TableDBInner {
+impl Drop for TableDBUnlockedInner {
     fn drop(&mut self) {
         self.table_store.on_table_db_drop(self.table.clone());
     }
@@ -30,60 +30,58 @@ impl Drop for TableDBInner {
 
 #[derive(Debug, Clone)]
 pub struct TableDB {
-    inner: Arc<Mutex<TableDBInner>>,
+    unlocked_inner: Arc<TableDBUnlockedInner>,
 }
 
 impl TableDB {
     pub(super) fn new(table: String, table_store: TableStore, database: Database) -> Self {
         Self {
-            inner: Arc::new(Mutex::new(TableDBInner {
+            unlocked_inner: Arc::new(TableDBUnlockedInner {
                 table,
                 table_store,
                 database,
-            })),
+            }),
         }
     }
 
-    pub(super) fn try_new_from_weak_inner(weak_inner: Weak<Mutex<TableDBInner>>) -> Option<Self> {
-        weak_inner.upgrade().map(|table_db_inner| Self {
-            inner: table_db_inner,
+    pub(super) fn try_new_from_weak_inner(weak_inner: Weak<TableDBUnlockedInner>) -> Option<Self> {
+        weak_inner.upgrade().map(|table_db_unlocked_inner| Self {
+            unlocked_inner: table_db_unlocked_inner,
         })
     }
 
-    pub(super) fn weak_inner(&self) -> Weak<Mutex<TableDBInner>> {
-        Arc::downgrade(&self.inner)
+    pub(super) fn weak_inner(&self) -> Weak<TableDBUnlockedInner> {
+        Arc::downgrade(&self.unlocked_inner)
     }
 
     /// Get the total number of columns in the TableDB
     pub fn get_column_count(&self) -> EyreResult<u32> {
-        let db = &self.inner.lock().database;
+        let db = &self.unlocked_inner.database;
         db.num_columns().wrap_err("failed to get column count: {}")
     }
 
     /// Get the list of keys in a column of the TableDB
-    pub fn get_keys(&self, col: u32) -> EyreResult<Vec<Box<[u8]>>> {
-        let db = &self.inner.lock().database;
+    pub async fn get_keys(&self, col: u32) -> EyreResult<Vec<Box<[u8]>>> {
+        let db = self.unlocked_inner.database.clone();
         let mut out: Vec<Box<[u8]>> = Vec::new();
-        db.iter(col, None, &mut |kv| {
+        db.iter(col, None, |kv| {
             out.push(kv.0.clone().into_boxed_slice());
-            Ok(true)
+            Ok(Option::<()>::None)
         })
+        .await
         .wrap_err("failed to get keys for column")?;
         Ok(out)
     }
 
     /// Start a TableDB write transaction. The transaction object must be committed or rolled back before dropping.
     pub fn transact(&self) -> TableDBTransaction {
-        let dbt = {
-            let db = &self.inner.lock().database;
-            db.transaction()
-        };
+        let dbt = self.unlocked_inner.database.transaction();
         TableDBTransaction::new(self.clone(), dbt)
     }
 
     /// Store a key with a value in a column in the TableDB. Performs a single transaction immediately.
     pub async fn store(&self, col: u32, key: &[u8], value: &[u8]) -> EyreResult<()> {
-        let db = self.inner.lock().database.clone();
+        let db = self.unlocked_inner.database.clone();
         let mut dbt = db.transaction();
         dbt.put(col, key, value);
         db.write(dbt).await.wrap_err("failed to store key")
@@ -96,7 +94,7 @@ impl TableDB {
     {
         let v = to_rkyv(value)?;
 
-        let db = self.inner.lock().database.clone();
+        let db = self.unlocked_inner.database.clone();
         let mut dbt = db.transaction();
         dbt.put(col, key, v.as_slice());
         db.write(dbt).await.wrap_err("failed to store key")
@@ -109,28 +107,28 @@ impl TableDB {
     {
         let v = serde_json::to_vec(value)?;
 
-        let db = self.inner.lock().database.clone();
+        let db = self.unlocked_inner.database.clone();
         let mut dbt = db.transaction();
         dbt.put(col, key, v.as_slice());
         db.write(dbt).await.wrap_err("failed to store key")
     }
 
     /// Read a key from a column in the TableDB immediately.
-    pub fn load(&self, col: u32, key: &[u8]) -> EyreResult<Option<Vec<u8>>> {
-        let db = self.inner.lock().database.clone();
-        db.get(col, key).wrap_err("failed to get key")
+    pub async fn load(&self, col: u32, key: &[u8]) -> EyreResult<Option<Vec<u8>>> {
+        let db = self.unlocked_inner.database.clone();
+        db.get(col, key).await.wrap_err("failed to get key")
     }
 
     /// Read an rkyv key from a column in the TableDB immediately
-    pub fn load_rkyv<T>(&self, col: u32, key: &[u8]) -> EyreResult<Option<T>>
+    pub async fn load_rkyv<T>(&self, col: u32, key: &[u8]) -> EyreResult<Option<T>>
     where
         T: RkyvArchive,
         <T as RkyvArchive>::Archived:
             for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
         <T as RkyvArchive>::Archived: RkyvDeserialize<T, VeilidSharedDeserializeMap>,
     {
-        let db = self.inner.lock().database.clone();
-        let out = db.get(col, key).wrap_err("failed to get key")?;
+        let db = self.unlocked_inner.database.clone();
+        let out = db.get(col, key).await.wrap_err("failed to get key")?;
         let b = match out {
             Some(v) => v,
             None => {
@@ -142,12 +140,12 @@ impl TableDB {
     }
 
     /// Read an serde-json key from a column in the TableDB immediately
-    pub fn load_json<T>(&self, col: u32, key: &[u8]) -> EyreResult<Option<T>>
+    pub async fn load_json<T>(&self, col: u32, key: &[u8]) -> EyreResult<Option<T>>
     where
         T: for<'de> serde::Deserialize<'de>,
     {
-        let db = self.inner.lock().database.clone();
-        let out = db.get(col, key).wrap_err("failed to get key")?;
+        let db = self.unlocked_inner.database.clone();
+        let out = db.get(col, key).await.wrap_err("failed to get key")?;
         let b = match out {
             Some(v) => v,
             None => {
@@ -159,9 +157,10 @@ impl TableDB {
     }
 
     /// Delete key with from a column in the TableDB
+    xxx fix me
     pub async fn delete(&self, col: u32, key: &[u8]) -> EyreResult<bool> {
-        let db = self.inner.lock().database.clone();
-        let found = db.get(col, key).wrap_err("failed to get key")?;
+        let db = self.unlocked_inner.database.clone();
+        let found = db.get(col, key).await.wrap_err("failed to get key")?;
         match found {
             None => Ok(false),
             Some(_) => {
@@ -218,7 +217,7 @@ impl TableDBTransaction {
                 .take()
                 .ok_or_else(|| eyre!("transaction already completed"))?
         };
-        let db = self.db.inner.lock().database.clone();
+        let db = self.db.unlocked_inner.lock().database.clone();
         db.write(dbt)
             .await
             .wrap_err("commit failed, transaction lost")

From 135b66298cd01166905d21453684521ddcba3401 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Sun, 21 May 2023 00:42:19 +0100
Subject: [PATCH 47/74] prop keystore changes checkpoint

---
 veilid-core/src/crypto/mod.rs                 |  4 +-
 veilid-core/src/intf/native/table_store.rs    |  2 +-
 veilid-core/src/intf/table_db.rs              | 72 ++++++++------
 veilid-core/src/routing_table/mod.rs          |  4 +-
 .../route_spec_store_content.rs               |  2 +-
 veilid-core/src/storage_manager/get_value.rs  |  2 +-
 veilid-core/src/storage_manager/mod.rs        |  4 +-
 .../src/storage_manager/record_store.rs       |  8 +-
 veilid-core/src/storage_manager/set_value.rs  |  2 +-
 .../storage_manager/storage_manager_inner.rs  | 10 +-
 .../src/tests/common/test_table_store.rs      | 97 +++++++++++++++----
 veilid-flutter/rust/src/dart_ffi.rs           |  2 +-
 12 files changed, 140 insertions(+), 69 deletions(-)

diff --git a/veilid-core/src/crypto/mod.rs b/veilid-core/src/crypto/mod.rs
index f273562c..15eb43e4 100644
--- a/veilid-core/src/crypto/mod.rs
+++ b/veilid-core/src/crypto/mod.rs
@@ -170,12 +170,12 @@ impl Crypto {
 
         // load caches if they are valid for this node id
         let mut db = table_store.open("crypto_caches", 1).await?;
-        let caches_valid = match db.load(0, b"cache_validity_key")? {
+        let caches_valid = match db.load(0, b"cache_validity_key").await? {
             Some(v) => v == cache_validity_key,
             None => false,
         };
         if caches_valid {
-            if let Some(b) = db.load(0, b"dh_cache")? {
+            if let Some(b) = db.load(0, b"dh_cache").await? {
                 let mut inner = self.inner.lock();
                 bytes_to_cache(&b, &mut inner.dh_cache);
             }
diff --git a/veilid-core/src/intf/native/table_store.rs b/veilid-core/src/intf/native/table_store.rs
index c4ba94fe..a2868cce 100644
--- a/veilid-core/src/intf/native/table_store.rs
+++ b/veilid-core/src/intf/native/table_store.rs
@@ -5,7 +5,7 @@ use keyvaluedb_sqlite::*;
 use std::path::PathBuf;
 
 struct TableStoreInner {
-    opened: BTreeMap<String, Weak<Mutex<TableDBUnlockedInner>>>,
+    opened: BTreeMap<String, Weak<TableDBUnlockedInner>>,
 }
 
 /// Veilid Table Storage
diff --git a/veilid-core/src/intf/table_db.rs b/veilid-core/src/intf/table_db.rs
index fb9d3396..0070b537 100644
--- a/veilid-core/src/intf/table_db.rs
+++ b/veilid-core/src/intf/table_db.rs
@@ -127,16 +127,11 @@ impl TableDB {
             for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
         <T as RkyvArchive>::Archived: RkyvDeserialize<T, VeilidSharedDeserializeMap>,
     {
-        let db = self.unlocked_inner.database.clone();
-        let out = db.get(col, key).await.wrap_err("failed to get key")?;
-        let b = match out {
-            Some(v) => v,
-            None => {
-                return Ok(None);
-            }
+        let out = match self.load(col, key).await? {
+            Some(v) => from_rkyv(v)?,
+            None => None,
         };
-        let obj = from_rkyv(b)?;
-        Ok(Some(obj))
+        Ok(out)
     }
 
     /// Read an serde-json key from a column in the TableDB immediately
@@ -144,32 +139,47 @@ impl TableDB {
     where
         T: for<'de> serde::Deserialize<'de>,
     {
-        let db = self.unlocked_inner.database.clone();
-        let out = db.get(col, key).await.wrap_err("failed to get key")?;
-        let b = match out {
-            Some(v) => v,
-            None => {
-                return Ok(None);
-            }
+        let out = match self.load(col, key).await? {
+            Some(v) => serde_json::from_slice(&v)?,
+            None => None,
         };
-        let obj = serde_json::from_slice(&b)?;
-        Ok(Some(obj))
+        Ok(out)
     }
 
     /// Delete key with from a column in the TableDB
-    xxx fix me
-    pub async fn delete(&self, col: u32, key: &[u8]) -> EyreResult<bool> {
+    pub async fn delete(&self, col: u32, key: &[u8]) -> EyreResult<Option<Vec<u8>>> {
         let db = self.unlocked_inner.database.clone();
-        let found = db.get(col, key).await.wrap_err("failed to get key")?;
-        match found {
-            None => Ok(false),
-            Some(_) => {
-                let mut dbt = db.transaction();
-                dbt.delete(col, key);
-                db.write(dbt).await.wrap_err("failed to delete key")?;
-                Ok(true)
-            }
-        }
+        let old_value = db.delete(col, key).await.wrap_err("failed to delete key")?;
+        Ok(old_value)
+    }
+
+    /// Delete rkyv key with from a column in the TableDB
+    pub async fn delete_rkyv<T>(&self, col: u32, key: &[u8]) -> EyreResult<Option<T>>
+    where
+        T: RkyvArchive,
+        <T as RkyvArchive>::Archived:
+            for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
+        <T as RkyvArchive>::Archived: RkyvDeserialize<T, VeilidSharedDeserializeMap>,
+    {
+        let db = self.unlocked_inner.database.clone();
+        let old_value = match db.delete(col, key).await.wrap_err("failed to delete key")? {
+            Some(v) => from_rkyv(v)?,
+            None => None,
+        };
+        Ok(old_value)
+    }
+
+    /// Delete serde-json key with from a column in the TableDB
+    pub async fn delete_json<T>(&self, col: u32, key: &[u8]) -> EyreResult<Option<T>>
+    where
+        T: for<'de> serde::Deserialize<'de>,
+    {
+        let db = self.unlocked_inner.database.clone();
+        let old_value = match db.delete(col, key).await.wrap_err("failed to delete key")? {
+            Some(v) => serde_json::from_slice(&v)?,
+            None => None,
+        };
+        Ok(old_value)
     }
 }
 
@@ -217,7 +227,7 @@ impl TableDBTransaction {
                 .take()
                 .ok_or_else(|| eyre!("transaction already completed"))?
         };
-        let db = self.db.unlocked_inner.lock().database.clone();
+        let db = self.db.unlocked_inner.database.clone();
         db.write(dbt)
             .await
             .wrap_err("commit failed, transaction lost")
diff --git a/veilid-core/src/routing_table/mod.rs b/veilid-core/src/routing_table/mod.rs
index f8457d3e..8bd93aeb 100644
--- a/veilid-core/src/routing_table/mod.rs
+++ b/veilid-core/src/routing_table/mod.rs
@@ -339,11 +339,11 @@ impl RoutingTable {
         // Deserialize bucket map and all entries from the table store
         let tstore = self.unlocked_inner.network_manager().table_store();
         let tdb = tstore.open("routing_table", 1).await?;
-        let Some(serialized_bucket_map): Option<BTreeMap<CryptoKind, Vec<Vec<u8>>>> = tdb.load_rkyv(0, b"serialized_bucket_map")? else {
+        let Some(serialized_bucket_map): Option<BTreeMap<CryptoKind, Vec<Vec<u8>>>> = tdb.load_rkyv(0, b"serialized_bucket_map").await? else {
             log_rtab!(debug "no bucket map in saved routing table");
             return Ok(());
         };
-        let Some(all_entry_bytes): Option<Vec<Vec<u8>>> = tdb.load_rkyv(0, b"all_entry_bytes")? else {
+        let Some(all_entry_bytes): Option<Vec<Vec<u8>>> = tdb.load_rkyv(0, b"all_entry_bytes").await? else {
             log_rtab!(debug "no all_entry_bytes in saved routing table");
             return Ok(());
         };
diff --git a/veilid-core/src/routing_table/route_spec_store/route_spec_store_content.rs b/veilid-core/src/routing_table/route_spec_store/route_spec_store_content.rs
index 4b5b06ec..c5b1d404 100644
--- a/veilid-core/src/routing_table/route_spec_store/route_spec_store_content.rs
+++ b/veilid-core/src/routing_table/route_spec_store/route_spec_store_content.rs
@@ -23,7 +23,7 @@ impl RouteSpecStoreContent {
         let table_store = routing_table.network_manager().table_store();
         let rsstdb = table_store.open("RouteSpecStore", 1).await?;
         let mut content: RouteSpecStoreContent =
-            rsstdb.load_rkyv(0, b"content")?.unwrap_or_default();
+            rsstdb.load_rkyv(0, b"content").await?.unwrap_or_default();
 
         // Look up all route hop noderefs since we can't serialize those
         let mut dead_ids = Vec::new();
diff --git a/veilid-core/src/storage_manager/get_value.rs b/veilid-core/src/storage_manager/get_value.rs
index 7130e674..f41dd578 100644
--- a/veilid-core/src/storage_manager/get_value.rs
+++ b/veilid-core/src/storage_manager/get_value.rs
@@ -177,7 +177,7 @@ impl StorageManager {
     /// Handle a recieved 'Get Value' query
     pub async fn inbound_get_value(&self, key: TypedKey, subkey: ValueSubkey, want_descriptor: bool) -> Result<NetworkResult<SubkeyResult>, VeilidAPIError> {
         let mut inner = self.lock().await?;
-        let res = match inner.handle_get_remote_value(key, subkey, want_descriptor) {            
+        let res = match inner.handle_get_remote_value(key, subkey, want_descriptor).await {            
             Ok(res) => res,
             Err(VeilidAPIError::Internal { message }) => {
                 apibail_internal!(message);
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index 191fce92..9e9810d4 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -240,7 +240,7 @@ impl StorageManager {
         };
 
         // See if the requested subkey is our local record store
-        let last_subkey_result = inner.handle_get_local_value(key, subkey, true)?;
+        let last_subkey_result = inner.handle_get_local_value(key, subkey, true).await?;
 
         // Return the existing value if we have one unless we are forcing a refresh
         if !force_refresh {
@@ -319,7 +319,7 @@ impl StorageManager {
         };
 
         // See if the subkey we are modifying has a last known local value
-        let last_subkey_result = inner.handle_get_local_value(key, subkey, true)?;
+        let last_subkey_result = inner.handle_get_local_value(key, subkey, true).await?;
 
         // Get the descriptor and schema for the key
         let Some(descriptor) = last_subkey_result.descriptor else {
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index d23eb14d..25e62725 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -74,11 +74,11 @@ where
             .await?;
 
         // Pull record index from table into a vector to ensure we sort them
-        let record_table_keys = record_table.get_keys(0)?;
+        let record_table_keys = record_table.get_keys(0).await?;
         let mut record_index_saved: Vec<(RecordTableKey, Record<D>)> =
             Vec::with_capacity(record_table_keys.len());
         for rtk in record_table_keys {
-            if let Some(vr) = record_table.load_rkyv::<Record<D>>(0, &rtk)? {
+            if let Some(vr) = record_table.load_rkyv::<Record<D>>(0, &rtk).await? {
                 let rik = RecordTableKey::try_from(rtk.as_ref())?;
                 record_index_saved.push((rik, vr));
             }
@@ -352,7 +352,7 @@ where
     //     self.with_record(key, |record| record.descriptor().clone())
     // }
 
-    pub fn get_subkey(
+    pub async fn get_subkey(
         &mut self,
         key: TypedKey,
         subkey: ValueSubkey,
@@ -393,6 +393,7 @@ where
         // If not in cache, try to pull from table store
         if let Some(record_data) = subkey_table
             .load_rkyv::<RecordData>(0, &stk.bytes())
+            .await
             .map_err(VeilidAPIError::internal)?
         {
             let out = record_data.signed_value_data().clone();
@@ -458,6 +459,7 @@ where
             // If not in cache, try to pull from table store
             if let Some(record_data) = subkey_table
                 .load_rkyv::<RecordData>(0, &stk_bytes)
+                .await
                 .map_err(VeilidAPIError::internal)?
             {
                 prior_record_data_size = record_data.total_size();
diff --git a/veilid-core/src/storage_manager/set_value.rs b/veilid-core/src/storage_manager/set_value.rs
index 22afcc8a..911109f7 100644
--- a/veilid-core/src/storage_manager/set_value.rs
+++ b/veilid-core/src/storage_manager/set_value.rs
@@ -168,7 +168,7 @@ impl StorageManager {
         let mut inner = self.lock().await?;
 
         // See if the subkey we are modifying has a last known local value
-        let last_subkey_result = inner.handle_get_local_value(key, subkey, true)?;
+        let last_subkey_result = inner.handle_get_local_value(key, subkey, true).await?;
 
         // Make sure this value would actually be newer
         if let Some(last_value) = &last_subkey_result.value {
diff --git a/veilid-core/src/storage_manager/storage_manager_inner.rs b/veilid-core/src/storage_manager/storage_manager_inner.rs
index 58f0e46c..068b3075 100644
--- a/veilid-core/src/storage_manager/storage_manager_inner.rs
+++ b/veilid-core/src/storage_manager/storage_manager_inner.rs
@@ -154,7 +154,7 @@ impl StorageManagerInner {
 
     async fn load_metadata(&mut self) -> EyreResult<()> {
         if let Some(metadata_db) = &self.metadata_db {
-            self.offline_subkey_writes = metadata_db.load_rkyv(0, b"offline_subkey_writes")?.unwrap_or_default();
+            self.offline_subkey_writes = metadata_db.load_rkyv(0, b"offline_subkey_writes").await?.unwrap_or_default();
         }
         Ok(())
     }
@@ -324,7 +324,7 @@ impl StorageManagerInner {
         Ok(())
     }
 
-    pub fn handle_get_local_value(
+    pub async fn handle_get_local_value(
         &mut self,
         key: TypedKey,
         subkey: ValueSubkey,
@@ -334,7 +334,7 @@ impl StorageManagerInner {
         let Some(local_record_store) = self.local_record_store.as_mut() else {
             apibail_not_initialized!();
         };
-        if let Some(subkey_result) = local_record_store.get_subkey(key, subkey, want_descriptor)? {
+        if let Some(subkey_result) = local_record_store.get_subkey(key, subkey, want_descriptor).await? {
             return Ok(subkey_result);
         }
 
@@ -363,7 +363,7 @@ impl StorageManagerInner {
         Ok(())
     }
 
-    pub fn handle_get_remote_value(
+    pub async fn handle_get_remote_value(
         &mut self,
         key: TypedKey,
         subkey: ValueSubkey,
@@ -373,7 +373,7 @@ impl StorageManagerInner {
         let Some(remote_record_store) = self.remote_record_store.as_mut() else {
             apibail_not_initialized!();
         };
-        if let Some(subkey_result) = remote_record_store.get_subkey(key, subkey, want_descriptor)? {
+        if let Some(subkey_result) = remote_record_store.get_subkey(key, subkey, want_descriptor).await? {
             return Ok(subkey_result);
         }
 
diff --git a/veilid-core/src/tests/common/test_table_store.rs b/veilid-core/src/tests/common/test_table_store.rs
index d7af7094..1a487bc0 100644
--- a/veilid-core/src/tests/common/test_table_store.rs
+++ b/veilid-core/src/tests/common/test_table_store.rs
@@ -58,7 +58,7 @@ pub async fn test_store_delete_load(ts: TableStore) {
     );
 
     assert_eq!(
-        db.load(0, b"foo").unwrap(),
+        db.load(0, b"foo").await.unwrap(),
         None,
         "should not load missing key"
     );
@@ -67,11 +67,14 @@ pub async fn test_store_delete_load(ts: TableStore) {
         "should store new key"
     );
     assert_eq!(
-        db.load(0, b"foo").unwrap(),
+        db.load(0, b"foo").await.unwrap(),
         None,
         "should not load missing key"
     );
-    assert_eq!(db.load(1, b"foo").unwrap(), Some(b"1234567890".to_vec()));
+    assert_eq!(
+        db.load(1, b"foo").await.unwrap(),
+        Some(b"1234567890".to_vec())
+    );
 
     assert!(
         db.store(1, b"bar", b"FNORD").await.is_ok(),
@@ -96,16 +99,22 @@ pub async fn test_store_delete_load(ts: TableStore) {
         "should store new key"
     );
 
-    assert_eq!(db.load(1, b"bar").unwrap(), Some(b"FNORD".to_vec()));
+    assert_eq!(db.load(1, b"bar").await.unwrap(), Some(b"FNORD".to_vec()));
     assert_eq!(
-        db.load(0, b"bar").unwrap(),
+        db.load(0, b"bar").await.unwrap(),
         Some(b"ABCDEFGHIJKLMNOPQRSTUVWXYZ".to_vec())
     );
-    assert_eq!(db.load(2, b"bar").unwrap(), Some(b"QWERTYUIOP".to_vec()));
-    assert_eq!(db.load(2, b"baz").unwrap(), Some(b"QWERTY".to_vec()));
+    assert_eq!(
+        db.load(2, b"bar").await.unwrap(),
+        Some(b"QWERTYUIOP".to_vec())
+    );
+    assert_eq!(db.load(2, b"baz").await.unwrap(), Some(b"QWERTY".to_vec()));
 
-    assert_eq!(db.delete(1, b"bar").await.unwrap(), true);
-    assert_eq!(db.delete(1, b"bar").await.unwrap(), false);
+    assert_eq!(
+        db.delete(1, b"bar").await.unwrap(),
+        Some(b"QWERTYUIOP".to_vec())
+    );
+    assert_eq!(db.delete(1, b"bar").await.unwrap(), None);
     assert!(
         db.delete(4, b"bar").await.is_err(),
         "can't delete from column that doesn't exist"
@@ -114,17 +123,20 @@ pub async fn test_store_delete_load(ts: TableStore) {
     drop(db);
     let db = ts.open("test", 3).await.expect("should have opened");
 
-    assert_eq!(db.load(1, b"bar").unwrap(), None);
+    assert_eq!(db.load(1, b"bar").await.unwrap(), None);
     assert_eq!(
-        db.load(0, b"bar").unwrap(),
+        db.load(0, b"bar").await.unwrap(),
         Some(b"ABCDEFGHIJKLMNOPQRSTUVWXYZ".to_vec())
     );
-    assert_eq!(db.load(2, b"bar").unwrap(), Some(b"QWERTYUIOP".to_vec()));
-    assert_eq!(db.load(2, b"baz").unwrap(), Some(b"QWERTY".to_vec()));
+    assert_eq!(
+        db.load(2, b"bar").await.unwrap(),
+        Some(b"QWERTYUIOP".to_vec())
+    );
+    assert_eq!(db.load(2, b"baz").await.unwrap(), Some(b"QWERTY".to_vec()));
 }
 
-pub async fn test_frozen(vcrypto: CryptoSystemVersion, ts: TableStore) {
-    trace!("test_frozen");
+pub async fn test_rkyv(vcrypto: CryptoSystemVersion, ts: TableStore) {
+    trace!("test_rkyv");
 
     let _ = ts.delete("test");
     let db = ts.open("test", 3).await.expect("should have opened");
@@ -132,9 +144,17 @@ pub async fn test_frozen(vcrypto: CryptoSystemVersion, ts: TableStore) {
 
     assert!(db.store_rkyv(0, b"asdf", &keypair).await.is_ok());
 
-    assert_eq!(db.load_rkyv::<KeyPair>(0, b"qwer").unwrap(), None);
+    assert_eq!(db.load_rkyv::<KeyPair>(0, b"qwer").await.unwrap(), None);
 
-    let d = match db.load_rkyv::<KeyPair>(0, b"asdf") {
+    let d = match db.load_rkyv::<KeyPair>(0, b"asdf").await {
+        Ok(x) => x,
+        Err(e) => {
+            panic!("couldn't decode: {}", e);
+        }
+    };
+    assert_eq!(d, Some(keypair), "keys should be equal");
+
+    let d = match db.delete_rkyv::<KeyPair>(0, b"asdf").await {
         Ok(x) => x,
         Err(e) => {
             panic!("couldn't decode: {}", e);
@@ -148,7 +168,45 @@ pub async fn test_frozen(vcrypto: CryptoSystemVersion, ts: TableStore) {
     );
 
     assert!(
-        db.load_rkyv::<TypedKey>(1, b"foo").is_err(),
+        db.load_rkyv::<TypedKey>(1, b"foo").await.is_err(),
+        "should fail to unfreeze"
+    );
+}
+
+pub async fn test_json(vcrypto: CryptoSystemVersion, ts: TableStore) {
+    trace!("test_json");
+
+    let _ = ts.delete("test");
+    let db = ts.open("test", 3).await.expect("should have opened");
+    let keypair = vcrypto.generate_keypair();
+
+    assert!(db.store_json(0, b"asdf", &keypair).await.is_ok());
+
+    assert_eq!(db.load_json::<KeyPair>(0, b"qwer").await.unwrap(), None);
+
+    let d = match db.load_json::<KeyPair>(0, b"asdf").await {
+        Ok(x) => x,
+        Err(e) => {
+            panic!("couldn't decode: {}", e);
+        }
+    };
+    assert_eq!(d, Some(keypair), "keys should be equal");
+
+    let d = match db.delete_json::<KeyPair>(0, b"asdf").await {
+        Ok(x) => x,
+        Err(e) => {
+            panic!("couldn't decode: {}", e);
+        }
+    };
+    assert_eq!(d, Some(keypair), "keys should be equal");
+
+    assert!(
+        db.store(1, b"foo", b"1234567890").await.is_ok(),
+        "should store new key"
+    );
+
+    assert!(
+        db.load_json::<TypedKey>(1, b"foo").await.is_err(),
         "should fail to unfreeze"
     );
 }
@@ -162,7 +220,8 @@ pub async fn test_all() {
         let vcrypto = crypto.get(ck).unwrap();
         test_delete_open_delete(ts.clone()).await;
         test_store_delete_load(ts.clone()).await;
-        test_frozen(vcrypto, ts.clone()).await;
+        test_rkyv(vcrypto.clone(), ts.clone()).await;
+        test_json(vcrypto, ts.clone()).await;
         let _ = ts.delete("test").await;
     }
 
diff --git a/veilid-flutter/rust/src/dart_ffi.rs b/veilid-flutter/rust/src/dart_ffi.rs
index d5ebd305..ed1cf5b8 100644
--- a/veilid-flutter/rust/src/dart_ffi.rs
+++ b/veilid-flutter/rust/src/dart_ffi.rs
@@ -785,7 +785,7 @@ pub extern "C" fn table_db_get_keys(id: u32, col: u32) -> *mut c_char {
     let table_dbs = TABLE_DBS.lock();
     let Some(table_db) = table_dbs.get(&id) else {
         return std::ptr::null_mut();
-    };
+    }; xxx continue here and run all tests
     let Ok(keys) = table_db.clone().get_keys(col) else {
         return std::ptr::null_mut();
     };

From f31044e8a3a6e6792d28e9b330093bb44b120a6f Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Sun, 21 May 2023 12:57:37 +0100
Subject: [PATCH 48/74] tabledb work

---
 veilid-flutter/lib/veilid_encoding.dart |  6 +++++
 veilid-flutter/lib/veilid_ffi.dart      | 26 ++++++++++-----------
 veilid-flutter/lib/veilid_js.dart       | 12 ++++------
 veilid-flutter/lib/veilid_table_db.dart | 18 +++++++++++++--
 veilid-flutter/rust/src/dart_ffi.rs     | 28 +++++++++++++----------
 veilid-wasm/src/lib.rs                  | 30 +++++++++++++------------
 6 files changed, 71 insertions(+), 49 deletions(-)

diff --git a/veilid-flutter/lib/veilid_encoding.dart b/veilid-flutter/lib/veilid_encoding.dart
index 9d56b58d..9ef54f14 100644
--- a/veilid-flutter/lib/veilid_encoding.dart
+++ b/veilid-flutter/lib/veilid_encoding.dart
@@ -14,6 +14,12 @@ Uint8List base64UrlNoPadDecode(String source) {
   return base64.decode(source);
 }
 
+Uint8List base64UrlNoPadDecodeDynamic(dynamic source) {
+  source = source as String;
+  source = base64.normalize(source);
+  return base64.decode(source);
+}
+
 abstract class EncodedString {
   late String contents;
   EncodedString(String s) {
diff --git a/veilid-flutter/lib/veilid_ffi.dart b/veilid-flutter/lib/veilid_ffi.dart
index f461bd46..5f17e7ec 100644
--- a/veilid-flutter/lib/veilid_ffi.dart
+++ b/veilid-flutter/lib/veilid_ffi.dart
@@ -148,9 +148,9 @@ typedef _DeleteTableDbDart = void Function(int, Pointer<Utf8>);
 // fn table_db_get_column_count(id: u32) -> u32
 typedef _TableDbGetColumnCountC = Uint32 Function(Uint32);
 typedef _TableDbGetColumnCountDart = int Function(int);
-// fn table_db_get_keys(id: u32, col: u32) -> *mut c_char
-typedef _TableDbGetKeysC = Pointer<Utf8> Function(Uint32, Uint32);
-typedef _TableDbGetKeysDart = Pointer<Utf8> Function(int, int);
+// fn table_db_get_keys(port: i64, id: u32, col: u32)
+typedef _TableDbGetKeysC = Pointer<Utf8> Function(Uint64, Uint32, Uint32);
+typedef _TableDbGetKeysDart = Pointer<Utf8> Function(int, int, int);
 // fn table_db_store(port: i64, id: u32, col: u32, key: FfiStr, value: FfiStr)
 typedef _TableDbStoreC = Void Function(
     Int64, Uint32, Uint32, Pointer<Utf8>, Pointer<Utf8>);
@@ -834,15 +834,15 @@ class VeilidTableDBFFI extends VeilidTableDB {
   }
 
   @override
-  List<Uint8List> getKeys(int col) {
-    final s = _tdb.ffi._tableDbGetKeys(_tdb.id, col);
-    if (s.address == nullptr.address) {
-      throw VeilidAPIExceptionInternal("No db for id");
-    }
-    String ja = s.toDartString();
-    _tdb.ffi._freeString(s);
-    List<dynamic> jarr = jsonDecode(ja);
-    return jarr.map((e) => base64UrlNoPadDecode(e)).toList();
+  Future<List<Uint8List>> getKeys(int col) {
+    final recvPort = ReceivePort("veilid_table_db_get_keys");
+    final sendPort = recvPort.sendPort;
+
+    _tdb.ffi._tableDbGetKeys(sendPort.nativePort, _tdb.id, col);
+
+    return processFutureJson(
+        jsonListConstructor<Uint8List>(base64UrlNoPadDecodeDynamic),
+        recvPort.first);
   }
 
   @override
@@ -888,7 +888,7 @@ class VeilidTableDBFFI extends VeilidTableDB {
   }
 
   @override
-  Future<bool> delete(int col, Uint8List key) {
+  Future<Uint8List?> delete(int col, Uint8List key) {
     final nativeEncodedKey = base64UrlNoPadEncode(key).toNativeUtf8();
 
     final recvPort = ReceivePort("veilid_table_db_delete");
diff --git a/veilid-flutter/lib/veilid_js.dart b/veilid-flutter/lib/veilid_js.dart
index cd1c590a..8a323516 100644
--- a/veilid-flutter/lib/veilid_js.dart
+++ b/veilid-flutter/lib/veilid_js.dart
@@ -399,13 +399,9 @@ class VeilidTableDBJS extends VeilidTableDB {
   }
 
   @override
-  List<Uint8List> getKeys(int col) {
-    String? s = js_util.callMethod(wasm, "table_db_get_keys", [_tdb.id, col]);
-    if (s == null) {
-      throw VeilidAPIExceptionInternal("No db for id");
-    }
-    List<dynamic> jarr = jsonDecode(s);
-    return jarr.map((e) => base64UrlNoPadDecode(e)).toList();
+  Future<List<Uint8List>> getKeys(int col) async {
+    return jsonListConstructor(base64UrlNoPadDecodeDynamic)(jsonDecode(
+        await js_util.callMethod(wasm, "table_db_get_keys", [_tdb.id, col])));
   }
 
   @override
@@ -437,7 +433,7 @@ class VeilidTableDBJS extends VeilidTableDB {
   }
 
   @override
-  Future<bool> delete(int col, Uint8List key) {
+  Future<Uint8List?> delete(int col, Uint8List key) {
     final encodedKey = base64UrlNoPadEncode(key);
 
     return _wrapApiPromise(js_util
diff --git a/veilid-flutter/lib/veilid_table_db.dart b/veilid-flutter/lib/veilid_table_db.dart
index 4790988d..84923fd0 100644
--- a/veilid-flutter/lib/veilid_table_db.dart
+++ b/veilid-flutter/lib/veilid_table_db.dart
@@ -25,11 +25,11 @@ abstract class VeilidTableDBTransaction {
 
 abstract class VeilidTableDB {
   int getColumnCount();
-  List<Uint8List> getKeys(int col);
+  Future<List<Uint8List>> getKeys(int col);
   VeilidTableDBTransaction transact();
   Future<void> store(int col, Uint8List key, Uint8List value);
   Future<Uint8List?> load(int col, Uint8List key);
-  Future<bool> delete(int col, Uint8List key);
+  Future<Uint8List?> delete(int col, Uint8List key);
 
   Future<void> storeJson(int col, Uint8List key, Object? object,
       {Object? Function(Object? nonEncodable)? toEncodable}) {
@@ -56,4 +56,18 @@ abstract class VeilidTableDB {
       {Object? Function(Object? key, Object? value)? reviver}) {
     return loadJson(col, utf8.encoder.convert(key), reviver: reviver);
   }
+
+  Future<Object?> deleteJson(int col, Uint8List key,
+      {Object? Function(Object? key, Object? value)? reviver}) async {
+    var s = await delete(col, key);
+    if (s == null) {
+      return null;
+    }
+    return jsonDecode(utf8.decode(s, allowMalformed: false), reviver: reviver);
+  }
+
+  Future<Object?> deleteStringJson(int col, String key,
+      {Object? Function(Object? key, Object? value)? reviver}) {
+    return deleteJson(col, utf8.encoder.convert(key), reviver: reviver);
+  }
 }
diff --git a/veilid-flutter/rust/src/dart_ffi.rs b/veilid-flutter/rust/src/dart_ffi.rs
index ed1cf5b8..bc1502aa 100644
--- a/veilid-flutter/rust/src/dart_ffi.rs
+++ b/veilid-flutter/rust/src/dart_ffi.rs
@@ -781,17 +781,20 @@ pub extern "C" fn table_db_get_column_count(id: u32) -> u32 {
 }
 
 #[no_mangle]
-pub extern "C" fn table_db_get_keys(id: u32, col: u32) -> *mut c_char {
-    let table_dbs = TABLE_DBS.lock();
-    let Some(table_db) = table_dbs.get(&id) else {
-        return std::ptr::null_mut();
-    }; xxx continue here and run all tests
-    let Ok(keys) = table_db.clone().get_keys(col) else {
-        return std::ptr::null_mut();
-    };
-    let keys: Vec<String> = keys.into_iter().map(|k| BASE64URL_NOPAD.encode(&k)).collect();
-    let out = veilid_core::serialize_json(keys);
-    out.into_ffi_value()
+pub extern "C" fn table_db_get_keys(port: i64, id: u32, col: u32) {
+    DartIsolateWrapper::new(port).spawn_result_json(async move {
+        let table_db = {
+            let table_dbs = TABLE_DBS.lock();
+            let Some(table_db) = table_dbs.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("table_db_get_keys", "id", id));
+            };
+            table_db.clone()
+        };
+
+        let keys = table_db.get_keys(col).await.map_err(veilid_core::VeilidAPIError::generic)?;
+        let out: Vec<String> = keys.into_iter().map(|k| BASE64URL_NOPAD.encode(&k)).collect();
+        APIResult::Ok(out)
+    });
 }
 
 fn add_table_db_transaction(tdbt: veilid_core::TableDBTransaction) -> u32 {
@@ -957,7 +960,7 @@ pub extern "C" fn table_db_load(port: i64, id: u32, col: u32, key: FfiStr) {
             table_db.clone()
         };
         
-        let out = table_db.load(col, &key).map_err(veilid_core::VeilidAPIError::generic)?;
+        let out = table_db.load(col, &key).await.map_err(veilid_core::VeilidAPIError::generic)?;
         let out = out.map(|x| data_encoding::BASE64URL_NOPAD.encode(&x));
         APIResult::Ok(out)
     });
@@ -982,6 +985,7 @@ pub extern "C" fn table_db_delete(port: i64, id: u32, col: u32, key: FfiStr) {
         };
         
         let out = table_db.delete(col, &key).await.map_err(veilid_core::VeilidAPIError::generic)?;
+        let out = out.map(|x| data_encoding::BASE64URL_NOPAD.encode(&x));
         APIResult::Ok(out)
     });
 }
diff --git a/veilid-wasm/src/lib.rs b/veilid-wasm/src/lib.rs
index 80703dd9..ef1e6fa3 100644
--- a/veilid-wasm/src/lib.rs
+++ b/veilid-wasm/src/lib.rs
@@ -717,20 +717,21 @@ pub fn table_db_get_column_count(id: u32) -> u32 {
 }
 
 #[wasm_bindgen()]
-pub fn table_db_get_keys(id: u32, col: u32) -> Option<String> {
-    let table_dbs = (*TABLE_DBS).borrow();
-    let Some(table_db) = table_dbs.get(&id) else {
-        return None;
-    };
-    let Ok(keys) = table_db.clone().get_keys(col) else {
-        return None;
-    };
-    let keys: Vec<String> = keys
-        .into_iter()
-        .map(|k| data_encoding::BASE64URL_NOPAD.encode(&k))
-        .collect();
-    let out = veilid_core::serialize_json(keys);
-    Some(out)
+pub fn table_db_get_keys(id: u32, col: u32) -> Promise {
+    wrap_api_future_json(async move {
+        let table_dbs = (*TABLE_DBS).borrow();
+        let Some(table_db) = table_dbs.get(&id) else {
+            return None;
+        };
+        let Ok(keys) = table_db.clone().get_keys(col) else {
+            return None;
+        };
+        let out: Vec<String> = keys
+            .into_iter()
+            .map(|k| data_encoding::BASE64URL_NOPAD.encode(&k))
+            .collect();
+        APIResult::Ok(Some(out))
+    });
 }
 
 fn add_table_db_transaction(tdbt: veilid_core::TableDBTransaction) -> u32 {
@@ -903,6 +904,7 @@ pub fn table_db_delete(id: u32, col: u32, key: String) -> Promise {
             .delete(col, &key)
             .await
             .map_err(veilid_core::VeilidAPIError::generic)?;
+        let out = out.map(|x| data_encoding::BASE64URL_NOPAD.encode(&x));
         APIResult::Ok(out)
     })
 }

From f54a6fcf31c2621e66f4665fcd20b31220cf359d Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Sun, 21 May 2023 22:16:27 +0100
Subject: [PATCH 49/74] debugging

---
 scripts/new_ios_sim.sh                        |  3 +-
 setup_macos.sh                                |  2 +-
 veilid-core/src/core_context.rs               |  6 ++
 veilid-core/src/intf/native/table_store.rs    | 11 ++--
 veilid-core/src/intf/table_db.rs              | 62 +++++++++----------
 veilid-core/src/intf/wasm/table_store.rs      |  6 +-
 veilid-core/src/routing_table/bucket_entry.rs |  2 +-
 veilid-core/src/routing_table/debug.rs        |  5 +-
 veilid-core/src/routing_table/mod.rs          |  4 +-
 veilid-core/src/routing_table/node_ref.rs     |  4 +-
 .../src/routing_table/routing_table_inner.rs  |  7 +++
 veilid-core/src/rpc_processor/mod.rs          |  3 +-
 .../storage_manager/storage_manager_inner.rs  | 10 ++-
 .../src/tests/common/test_table_store.rs      |  5 +-
 veilid-core/src/veilid_api/error.rs           | 33 ++++++++++
 .../serialize_helpers/veilid_rkyv.rs          | 10 +--
 veilid-flutter/example/macos/Podfile.lock     |  2 +-
 veilid-flutter/rust/src/dart_ffi.rs           | 16 ++---
 veilid-wasm/src/lib.rs                        | 36 +++++------
 19 files changed, 139 insertions(+), 88 deletions(-)

diff --git a/scripts/new_ios_sim.sh b/scripts/new_ios_sim.sh
index 4f3b78d4..db938398 100755
--- a/scripts/new_ios_sim.sh
+++ b/scripts/new_ios_sim.sh
@@ -1,5 +1,6 @@
 #!/bin/bash
-ID=$(xcrun simctl create test-iphone com.apple.CoreSimulator.SimDeviceType.iPhone-14-Pro com.apple.CoreSimulator.SimRuntime.iOS-16-1 2>/dev/null)
+RUNTIME=$(xcrun simctl runtime list -j | jq '.[].runtimeIdentifier' -r | head -1)
+ID=$(xcrun simctl create test-iphone com.apple.CoreSimulator.SimDeviceType.iPhone-14-Pro $RUNTIME 2>/dev/null)
 xcrun simctl boot $ID
 xcrun simctl bootstatus $ID
 echo Simulator ID is $ID
diff --git a/setup_macos.sh b/setup_macos.sh
index f5045efd..cdbbc342 100755
--- a/setup_macos.sh
+++ b/setup_macos.sh
@@ -122,5 +122,5 @@ if [ "$BREW_USER" == "" ]; then
         BREW_USER=`whoami`
     fi
 fi
-sudo -H -u $BREW_USER brew install capnp cmake wabt llvm protobuf openjdk@11
+sudo -H -u $BREW_USER brew install capnp cmake wabt llvm protobuf openjdk@11 jq
 sudo gem install cocoapods
diff --git a/veilid-core/src/core_context.rs b/veilid-core/src/core_context.rs
index 83add352..6bce23a4 100644
--- a/veilid-core/src/core_context.rs
+++ b/veilid-core/src/core_context.rs
@@ -70,6 +70,7 @@ impl ServicesContext {
         trace!("init protected store");
         let protected_store = ProtectedStore::new(self.config.clone());
         if let Err(e) = protected_store.init().await {
+            error!("failed to init protected store: {}", e);
             self.shutdown().await;
             return Err(e);
         }
@@ -79,6 +80,7 @@ impl ServicesContext {
         trace!("init table store");
         let table_store = TableStore::new(self.config.clone());
         if let Err(e) = table_store.init().await {
+            error!("failed to init table store: {}", e);
             self.shutdown().await;
             return Err(e);
         }
@@ -92,6 +94,7 @@ impl ServicesContext {
             protected_store.clone(),
         );
         if let Err(e) = crypto.init().await {
+            error!("failed to init crypto: {}", e);
             self.shutdown().await;
             return Err(e);
         }
@@ -101,6 +104,7 @@ impl ServicesContext {
         trace!("init block store");
         let block_store = BlockStore::new(self.config.clone());
         if let Err(e) = block_store.init().await {
+            error!("failed to init block store: {}", e);
             self.shutdown().await;
             return Err(e);
         }
@@ -116,6 +120,7 @@ impl ServicesContext {
             self.block_store.clone().unwrap(),
         );
         if let Err(e) = storage_manager.init().await {
+            error!("failed to init storage manager: {}", e);
             self.shutdown().await;
             return Err(e);
         }
@@ -133,6 +138,7 @@ impl ServicesContext {
             crypto,
         );
         if let Err(e) = attachment_manager.init(update_callback).await {
+            error!("failed to init attachment manager: {}", e);
             self.shutdown().await;
             return Err(e);
         }
diff --git a/veilid-core/src/intf/native/table_store.rs b/veilid-core/src/intf/native/table_store.rs
index a2868cce..5200c12f 100644
--- a/veilid-core/src/intf/native/table_store.rs
+++ b/veilid-core/src/intf/native/table_store.rs
@@ -45,10 +45,13 @@ impl TableStore {
     }
 
     pub(crate) async fn terminate(&self) {
-        assert!(
-            self.inner.lock().opened.is_empty(),
-            "all open databases should have been closed"
-        );
+        let inner = self.inner.lock();
+        if !inner.opened.is_empty() {
+            panic!(
+                "all open databases should have been closed: {:?}",
+                inner.opened
+            );
+        }
     }
 
     pub(crate) fn on_table_db_drop(&self, table: String) {
diff --git a/veilid-core/src/intf/table_db.rs b/veilid-core/src/intf/table_db.rs
index 0070b537..05ebdf8b 100644
--- a/veilid-core/src/intf/table_db.rs
+++ b/veilid-core/src/intf/table_db.rs
@@ -55,13 +55,13 @@ impl TableDB {
     }
 
     /// Get the total number of columns in the TableDB
-    pub fn get_column_count(&self) -> EyreResult<u32> {
+    pub fn get_column_count(&self) -> VeilidAPIResult<u32> {
         let db = &self.unlocked_inner.database;
-        db.num_columns().wrap_err("failed to get column count: {}")
+        db.num_columns().map_err(VeilidAPIError::from)
     }
 
     /// Get the list of keys in a column of the TableDB
-    pub async fn get_keys(&self, col: u32) -> EyreResult<Vec<Box<[u8]>>> {
+    pub async fn get_keys(&self, col: u32) -> VeilidAPIResult<Vec<Box<[u8]>>> {
         let db = self.unlocked_inner.database.clone();
         let mut out: Vec<Box<[u8]>> = Vec::new();
         db.iter(col, None, |kv| {
@@ -69,7 +69,7 @@ impl TableDB {
             Ok(Option::<()>::None)
         })
         .await
-        .wrap_err("failed to get keys for column")?;
+        .map_err(VeilidAPIError::from)?;
         Ok(out)
     }
 
@@ -80,15 +80,15 @@ impl TableDB {
     }
 
     /// Store a key with a value in a column in the TableDB. Performs a single transaction immediately.
-    pub async fn store(&self, col: u32, key: &[u8], value: &[u8]) -> EyreResult<()> {
+    pub async fn store(&self, col: u32, key: &[u8], value: &[u8]) -> VeilidAPIResult<()> {
         let db = self.unlocked_inner.database.clone();
         let mut dbt = db.transaction();
         dbt.put(col, key, value);
-        db.write(dbt).await.wrap_err("failed to store key")
+        db.write(dbt).await.map_err(VeilidAPIError::generic)
     }
 
     /// Store a key in rkyv format with a value in a column in the TableDB. Performs a single transaction immediately.
-    pub async fn store_rkyv<T>(&self, col: u32, key: &[u8], value: &T) -> EyreResult<()>
+    pub async fn store_rkyv<T>(&self, col: u32, key: &[u8], value: &T) -> VeilidAPIResult<()>
     where
         T: RkyvSerialize<DefaultVeilidRkyvSerializer>,
     {
@@ -97,30 +97,30 @@ impl TableDB {
         let db = self.unlocked_inner.database.clone();
         let mut dbt = db.transaction();
         dbt.put(col, key, v.as_slice());
-        db.write(dbt).await.wrap_err("failed to store key")
+        db.write(dbt).await.map_err(VeilidAPIError::generic)
     }
 
     /// Store a key in json format with a value in a column in the TableDB. Performs a single transaction immediately.
-    pub async fn store_json<T>(&self, col: u32, key: &[u8], value: &T) -> EyreResult<()>
+    pub async fn store_json<T>(&self, col: u32, key: &[u8], value: &T) -> VeilidAPIResult<()>
     where
         T: serde::Serialize,
     {
-        let v = serde_json::to_vec(value)?;
+        let v = serde_json::to_vec(value).map_err(VeilidAPIError::internal)?;
 
         let db = self.unlocked_inner.database.clone();
         let mut dbt = db.transaction();
         dbt.put(col, key, v.as_slice());
-        db.write(dbt).await.wrap_err("failed to store key")
+        db.write(dbt).await.map_err(VeilidAPIError::generic)
     }
 
     /// Read a key from a column in the TableDB immediately.
-    pub async fn load(&self, col: u32, key: &[u8]) -> EyreResult<Option<Vec<u8>>> {
+    pub async fn load(&self, col: u32, key: &[u8]) -> VeilidAPIResult<Option<Vec<u8>>> {
         let db = self.unlocked_inner.database.clone();
-        db.get(col, key).await.wrap_err("failed to get key")
+        db.get(col, key).await.map_err(VeilidAPIError::from)
     }
 
     /// Read an rkyv key from a column in the TableDB immediately
-    pub async fn load_rkyv<T>(&self, col: u32, key: &[u8]) -> EyreResult<Option<T>>
+    pub async fn load_rkyv<T>(&self, col: u32, key: &[u8]) -> VeilidAPIResult<Option<T>>
     where
         T: RkyvArchive,
         <T as RkyvArchive>::Archived:
@@ -128,33 +128,33 @@ impl TableDB {
         <T as RkyvArchive>::Archived: RkyvDeserialize<T, VeilidSharedDeserializeMap>,
     {
         let out = match self.load(col, key).await? {
-            Some(v) => from_rkyv(v)?,
+            Some(v) => Some(from_rkyv(v)?),
             None => None,
         };
         Ok(out)
     }
 
     /// Read an serde-json key from a column in the TableDB immediately
-    pub async fn load_json<T>(&self, col: u32, key: &[u8]) -> EyreResult<Option<T>>
+    pub async fn load_json<T>(&self, col: u32, key: &[u8]) -> VeilidAPIResult<Option<T>>
     where
         T: for<'de> serde::Deserialize<'de>,
     {
         let out = match self.load(col, key).await? {
-            Some(v) => serde_json::from_slice(&v)?,
+            Some(v) => Some(serde_json::from_slice(&v).map_err(VeilidAPIError::internal)?),
             None => None,
         };
         Ok(out)
     }
 
     /// Delete key with from a column in the TableDB
-    pub async fn delete(&self, col: u32, key: &[u8]) -> EyreResult<Option<Vec<u8>>> {
+    pub async fn delete(&self, col: u32, key: &[u8]) -> VeilidAPIResult<Option<Vec<u8>>> {
         let db = self.unlocked_inner.database.clone();
-        let old_value = db.delete(col, key).await.wrap_err("failed to delete key")?;
+        let old_value = db.delete(col, key).await.map_err(VeilidAPIError::from)?;
         Ok(old_value)
     }
 
     /// Delete rkyv key with from a column in the TableDB
-    pub async fn delete_rkyv<T>(&self, col: u32, key: &[u8]) -> EyreResult<Option<T>>
+    pub async fn delete_rkyv<T>(&self, col: u32, key: &[u8]) -> VeilidAPIResult<Option<T>>
     where
         T: RkyvArchive,
         <T as RkyvArchive>::Archived:
@@ -162,21 +162,21 @@ impl TableDB {
         <T as RkyvArchive>::Archived: RkyvDeserialize<T, VeilidSharedDeserializeMap>,
     {
         let db = self.unlocked_inner.database.clone();
-        let old_value = match db.delete(col, key).await.wrap_err("failed to delete key")? {
-            Some(v) => from_rkyv(v)?,
+        let old_value = match db.delete(col, key).await.map_err(VeilidAPIError::from)? {
+            Some(v) => Some(from_rkyv(v)?),
             None => None,
         };
         Ok(old_value)
     }
 
     /// Delete serde-json key with from a column in the TableDB
-    pub async fn delete_json<T>(&self, col: u32, key: &[u8]) -> EyreResult<Option<T>>
+    pub async fn delete_json<T>(&self, col: u32, key: &[u8]) -> VeilidAPIResult<Option<T>>
     where
         T: for<'de> serde::Deserialize<'de>,
     {
         let db = self.unlocked_inner.database.clone();
-        let old_value = match db.delete(col, key).await.wrap_err("failed to delete key")? {
-            Some(v) => serde_json::from_slice(&v)?,
+        let old_value = match db.delete(col, key).await.map_err(VeilidAPIError::from)? {
+            Some(v) => Some(serde_json::from_slice(&v).map_err(VeilidAPIError::internal)?),
             None => None,
         };
         Ok(old_value)
@@ -219,18 +219,18 @@ impl TableDBTransaction {
     }
 
     /// Commit the transaction. Performs all actions atomically.
-    pub async fn commit(self) -> EyreResult<()> {
+    pub async fn commit(self) -> VeilidAPIResult<()> {
         let dbt = {
             let mut inner = self.inner.lock();
             inner
                 .dbt
                 .take()
-                .ok_or_else(|| eyre!("transaction already completed"))?
+                .ok_or_else(|| VeilidAPIError::generic("transaction already completed"))?
         };
         let db = self.db.unlocked_inner.database.clone();
         db.write(dbt)
             .await
-            .wrap_err("commit failed, transaction lost")
+            .map_err(|e| VeilidAPIError::generic(format!("commit failed, transaction lost: {}", e)))
     }
 
     /// Rollback the transaction. Does nothing to the TableDB.
@@ -246,7 +246,7 @@ impl TableDBTransaction {
     }
 
     /// Store a key in rkyv format with a value in a column in the TableDB
-    pub fn store_rkyv<T>(&self, col: u32, key: &[u8], value: &T) -> EyreResult<()>
+    pub fn store_rkyv<T>(&self, col: u32, key: &[u8], value: &T) -> VeilidAPIResult<()>
     where
         T: RkyvSerialize<DefaultVeilidRkyvSerializer>,
     {
@@ -257,11 +257,11 @@ impl TableDBTransaction {
     }
 
     /// Store a key in rkyv format with a value in a column in the TableDB
-    pub fn store_json<T>(&self, col: u32, key: &[u8], value: &T) -> EyreResult<()>
+    pub fn store_json<T>(&self, col: u32, key: &[u8], value: &T) -> VeilidAPIResult<()>
     where
         T: serde::Serialize,
     {
-        let v = serde_json::to_vec(value)?;
+        let v = serde_json::to_vec(value).map_err(VeilidAPIError::internal)?;
         let mut inner = self.inner.lock();
         inner.dbt.as_mut().unwrap().put(col, key, v.as_slice());
         Ok(())
diff --git a/veilid-core/src/intf/wasm/table_store.rs b/veilid-core/src/intf/wasm/table_store.rs
index 3d8cd513..6828b3bf 100644
--- a/veilid-core/src/intf/wasm/table_store.rs
+++ b/veilid-core/src/intf/wasm/table_store.rs
@@ -1,10 +1,10 @@
 use super::*;
-use crate::intf::table_db::TableDBInner;
+use crate::intf::table_db::TableDBUnlockedInner;
 pub use crate::intf::table_db::{TableDB, TableDBTransaction};
 use keyvaluedb_web::*;
 
 struct TableStoreInner {
-    opened: BTreeMap<String, Weak<Mutex<TableDBInner>>>,
+    opened: BTreeMap<String, Weak<TableDBUnlockedInner>>,
 }
 
 #[derive(Clone)]
@@ -95,7 +95,7 @@ impl TableStore {
                 };
             }
         }
-        let db = Database::open(table_name.clone(), column_count)
+        let db = Database::open(table_name.clone(), column_count, false)
             .await
             .wrap_err("failed to open tabledb")?;
         trace!(
diff --git a/veilid-core/src/routing_table/bucket_entry.rs b/veilid-core/src/routing_table/bucket_entry.rs
index e6a992ff..46206d0c 100644
--- a/veilid-core/src/routing_table/bucket_entry.rs
+++ b/veilid-core/src/routing_table/bucket_entry.rs
@@ -538,7 +538,7 @@ impl BucketEntryInner {
         }
     }
 
-    pub fn set_our_node_info_ts(&mut self, routing_domain: RoutingDomain, seen_ts: Timestamp) {
+    pub fn set_seen_our_node_info_ts(&mut self, routing_domain: RoutingDomain, seen_ts: Timestamp) {
         match routing_domain {
             RoutingDomain::LocalNetwork => {
                 self.local_network.last_seen_our_node_info_ts = seen_ts;
diff --git a/veilid-core/src/routing_table/debug.rs b/veilid-core/src/routing_table/debug.rs
index 36bd83d0..f329a4b4 100644
--- a/veilid-core/src/routing_table/debug.rs
+++ b/veilid-core/src/routing_table/debug.rs
@@ -142,7 +142,10 @@ impl RoutingTable {
                                     .latency
                                     .as_ref()
                                     .map(|l| {
-                                        format!("{:.2}ms", timestamp_to_secs(l.average.as_u64()))
+                                        format!(
+                                            "{:.2}ms",
+                                            timestamp_to_secs(l.average.as_u64()) * 1000.0
+                                        )
                                     })
                                     .unwrap_or_else(|| "???.??ms".to_string())
                             })
diff --git a/veilid-core/src/routing_table/mod.rs b/veilid-core/src/routing_table/mod.rs
index 8bd93aeb..04e21ee5 100644
--- a/veilid-core/src/routing_table/mod.rs
+++ b/veilid-core/src/routing_table/mod.rs
@@ -324,11 +324,11 @@ impl RoutingTable {
         let dbx = tdb.transact();
         if let Err(e) = dbx.store_rkyv(0, b"serialized_bucket_map", &serialized_bucket_map) {
             dbx.rollback();
-            return Err(e);
+            return Err(e.into());
         }
         if let Err(e) = dbx.store_rkyv(0, b"all_entry_bytes", &all_entry_bytes) {
             dbx.rollback();
-            return Err(e);
+            return Err(e.into());
         }
         dbx.commit().await?;
         Ok(())
diff --git a/veilid-core/src/routing_table/node_ref.rs b/veilid-core/src/routing_table/node_ref.rs
index 09dd0070..1f637801 100644
--- a/veilid-core/src/routing_table/node_ref.rs
+++ b/veilid-core/src/routing_table/node_ref.rs
@@ -170,8 +170,8 @@ pub trait NodeRefBase: Sized {
     ) -> bool {
         self.operate(|_rti, e| e.has_seen_our_node_info_ts(routing_domain, our_node_info_ts))
     }
-    fn set_our_node_info_ts(&self, routing_domain: RoutingDomain, seen_ts: Timestamp) {
-        self.operate_mut(|_rti, e| e.set_our_node_info_ts(routing_domain, seen_ts));
+    fn set_seen_our_node_info_ts(&self, routing_domain: RoutingDomain, seen_ts: Timestamp) {
+        self.operate_mut(|_rti, e| e.set_seen_our_node_info_ts(routing_domain, seen_ts));
     }
     fn network_class(&self, routing_domain: RoutingDomain) -> Option<NetworkClass> {
         self.operate(|_rt, e| e.node_info(routing_domain).map(|n| n.network_class()))
diff --git a/veilid-core/src/routing_table/routing_table_inner.rs b/veilid-core/src/routing_table/routing_table_inner.rs
index aa08c08f..409f2a0c 100644
--- a/veilid-core/src/routing_table/routing_table_inner.rs
+++ b/veilid-core/src/routing_table/routing_table_inner.rs
@@ -557,11 +557,18 @@ impl RoutingTableInner {
                     .map(|nr| nr.same_bucket_entry(&entry))
                     .unwrap_or(false);
                 if e.needs_ping(cur_ts, is_our_relay) {
+                    debug!("needs_ping: {}", e.best_node_id());
                     return true;
                 }
                 // If we need a ping because this node hasn't seen our latest node info, then do it
                 if let Some(own_node_info_ts) = own_node_info_ts {
                     if !e.has_seen_our_node_info_ts(routing_domain, own_node_info_ts) {
+                        //xxx remove this when we fix
+                        debug!(
+                            "!has_seen_our_node_info_ts: {} own_node_info_ts={}",
+                            e.best_node_id(),
+                            own_node_info_ts
+                        );
                         return true;
                     }
                 }
diff --git a/veilid-core/src/rpc_processor/mod.rs b/veilid-core/src/rpc_processor/mod.rs
index 663f54b2..c526c77f 100644
--- a/veilid-core/src/rpc_processor/mod.rs
+++ b/veilid-core/src/rpc_processor/mod.rs
@@ -1350,7 +1350,8 @@ impl RPCProcessor {
                 // Update the 'seen our node info' timestamp to determine if this node needs a
                 // 'node info update' ping
                 if let Some(sender_nr) = &opt_sender_nr {
-                    sender_nr.set_our_node_info_ts(routing_domain, operation.target_node_info_ts());
+                    sender_nr
+                        .set_seen_our_node_info_ts(routing_domain, operation.target_node_info_ts());
                 }
 
                 // Make the RPC message
diff --git a/veilid-core/src/storage_manager/storage_manager_inner.rs b/veilid-core/src/storage_manager/storage_manager_inner.rs
index 068b3075..133f631d 100644
--- a/veilid-core/src/storage_manager/storage_manager_inner.rs
+++ b/veilid-core/src/storage_manager/storage_manager_inner.rs
@@ -154,7 +154,15 @@ impl StorageManagerInner {
 
     async fn load_metadata(&mut self) -> EyreResult<()> {
         if let Some(metadata_db) = &self.metadata_db {
-            self.offline_subkey_writes = metadata_db.load_rkyv(0, b"offline_subkey_writes").await?.unwrap_or_default();
+            self.offline_subkey_writes = match metadata_db.load_rkyv(0, b"offline_subkey_writes").await {
+                Ok(v) => v.unwrap_or_default(),
+                Err(_) => {
+                    if let Err(e) = metadata_db.delete(0,b"offline_subkey_writes").await {
+                        debug!("offline_subkey_writes format changed, clearing: {}", e);
+                    }
+                    Default::default()
+                }
+            }
         }
         Ok(())
     }
diff --git a/veilid-core/src/tests/common/test_table_store.rs b/veilid-core/src/tests/common/test_table_store.rs
index 1a487bc0..7118fb27 100644
--- a/veilid-core/src/tests/common/test_table_store.rs
+++ b/veilid-core/src/tests/common/test_table_store.rs
@@ -110,10 +110,7 @@ pub async fn test_store_delete_load(ts: TableStore) {
     );
     assert_eq!(db.load(2, b"baz").await.unwrap(), Some(b"QWERTY".to_vec()));
 
-    assert_eq!(
-        db.delete(1, b"bar").await.unwrap(),
-        Some(b"QWERTYUIOP".to_vec())
-    );
+    assert_eq!(db.delete(1, b"bar").await.unwrap(), Some(b"FNORD".to_vec()));
     assert_eq!(db.delete(1, b"bar").await.unwrap(), None);
     assert!(
         db.delete(4, b"bar").await.is_err(),
diff --git a/veilid-core/src/veilid_api/error.rs b/veilid-core/src/veilid_api/error.rs
index 6978cb87..778b4830 100644
--- a/veilid-core/src/veilid_api/error.rs
+++ b/veilid-core/src/veilid_api/error.rs
@@ -221,3 +221,36 @@ impl VeilidAPIError {
         }
     }
 }
+
+pub type VeilidAPIResult<T> = Result<T, VeilidAPIError>;
+
+impl From<std::io::Error> for VeilidAPIError {
+    fn from(e: std::io::Error) -> Self {
+        match e.kind() {
+            std::io::ErrorKind::TimedOut => VeilidAPIError::timeout(),
+            std::io::ErrorKind::ConnectionRefused => VeilidAPIError::no_connection(e.to_string()),
+            std::io::ErrorKind::ConnectionReset => VeilidAPIError::no_connection(e.to_string()),
+            #[cfg(feature = "io_error_more")]
+            std::io::ErrorKind::HostUnreachable => VeilidAPIError::no_connection(e.to_string()),
+            #[cfg(feature = "io_error_more")]
+            std::io::ErrorKind::NetworkUnreachable => VeilidAPIError::no_connection(e.to_string()),
+            std::io::ErrorKind::ConnectionAborted => VeilidAPIError::no_connection(e.to_string()),
+            std::io::ErrorKind::NotConnected => VeilidAPIError::no_connection(e.to_string()),
+            std::io::ErrorKind::AddrInUse => VeilidAPIError::no_connection(e.to_string()),
+            std::io::ErrorKind::AddrNotAvailable => VeilidAPIError::no_connection(e.to_string()),
+            #[cfg(feature = "io_error_more")]
+            std::io::ErrorKind::NetworkDown => VeilidAPIError::no_connection(e.to_string()),
+            #[cfg(feature = "io_error_more")]
+            std::io::ErrorKind::ReadOnlyFilesystem => VeilidAPIError::internal(e.to_string()),
+            #[cfg(feature = "io_error_more")]
+            std::io::ErrorKind::NotSeekable => VeilidAPIError::internal(e.to_string()),
+            #[cfg(feature = "io_error_more")]
+            std::io::ErrorKind::FilesystemQuotaExceeded => VeilidAPIError::internal(e.to_string()),
+            #[cfg(feature = "io_error_more")]
+            std::io::ErrorKind::Deadlock => VeilidAPIError::internal(e.to_string()),
+            std::io::ErrorKind::Unsupported => VeilidAPIError::internal(e.to_string()),
+            std::io::ErrorKind::OutOfMemory => VeilidAPIError::internal(e.to_string()),
+            _ => VeilidAPIError::generic(e.to_string()),
+        }
+    }
+}
diff --git a/veilid-core/src/veilid_api/serialize_helpers/veilid_rkyv.rs b/veilid-core/src/veilid_api/serialize_helpers/veilid_rkyv.rs
index e7658c95..cff3c7f8 100644
--- a/veilid-core/src/veilid_api/serialize_helpers/veilid_rkyv.rs
+++ b/veilid-core/src/veilid_api/serialize_helpers/veilid_rkyv.rs
@@ -122,14 +122,14 @@ impl<E: Debug + fmt::Display> std::error::Error for VeilidRkyvError<E> {}
 
 ///////////////////////////////////////////////////////////////////////////////////////////////////////////////////
 
-pub fn to_rkyv<T>(value: &T) -> EyreResult<Vec<u8>>
+pub fn to_rkyv<T>(value: &T) -> VeilidAPIResult<Vec<u8>>
 where
     T: RkyvSerialize<DefaultVeilidRkyvSerializer>,
 {
     let mut serializer = DefaultVeilidRkyvSerializer::default();
     serializer
         .serialize_value(value)
-        .wrap_err("failed to serialize object")?;
+        .map_err(|e| VeilidAPIError::generic(format!("failed to serialize object: {}", e)))?;
     Ok(serializer
         .into_inner()
         .into_serializer()
@@ -137,7 +137,7 @@ where
         .to_vec())
 }
 
-pub fn from_rkyv<T>(bytes: Vec<u8>) -> EyreResult<T>
+pub fn from_rkyv<T>(bytes: Vec<u8>) -> VeilidAPIResult<T>
 where
     T: RkyvArchive,
     <T as RkyvArchive>::Archived:
@@ -145,7 +145,7 @@ where
     <T as RkyvArchive>::Archived: RkyvDeserialize<T, VeilidSharedDeserializeMap>,
 {
     rkyv::check_archived_root::<T>(&bytes)
-        .map_err(|e| eyre!("checkbytes failed: {}", e))?
+        .map_err(|e| VeilidAPIError::generic(format!("checkbytes failed: {}", e)))?
         .deserialize(&mut VeilidSharedDeserializeMap::default())
-        .map_err(|e| eyre!("failed to deserialize: {}", e))
+        .map_err(|e| VeilidAPIError::generic(format!("failed to deserialize: {}", e)))
 }
diff --git a/veilid-flutter/example/macos/Podfile.lock b/veilid-flutter/example/macos/Podfile.lock
index c1a60126..dad885d8 100644
--- a/veilid-flutter/example/macos/Podfile.lock
+++ b/veilid-flutter/example/macos/Podfile.lock
@@ -32,4 +32,4 @@ SPEC CHECKSUMS:
 
 PODFILE CHECKSUM: 73d2f470b1d889e27fcfda1d6e6efec66f98af3f
 
-COCOAPODS: 1.11.3
+COCOAPODS: 1.12.1
diff --git a/veilid-flutter/rust/src/dart_ffi.rs b/veilid-flutter/rust/src/dart_ffi.rs
index bc1502aa..d18d0e30 100644
--- a/veilid-flutter/rust/src/dart_ffi.rs
+++ b/veilid-flutter/rust/src/dart_ffi.rs
@@ -33,7 +33,7 @@ lazy_static! {
         Mutex::new(BTreeMap::new());
 }
 
-async fn get_veilid_api() -> Result<veilid_core::VeilidAPI, veilid_core::VeilidAPIError> {
+async fn get_veilid_api() -> veilid_core::VeilidAPIResult<veilid_core::VeilidAPI> {
     let api_lock = VEILID_API.lock().await;
     api_lock
         .as_ref()
@@ -41,7 +41,7 @@ async fn get_veilid_api() -> Result<veilid_core::VeilidAPI, veilid_core::VeilidA
         .ok_or(veilid_core::VeilidAPIError::NotInitialized)
 }
 
-async fn take_veilid_api() -> Result<veilid_core::VeilidAPI, veilid_core::VeilidAPIError> {
+async fn take_veilid_api() -> veilid_core::VeilidAPIResult<veilid_core::VeilidAPI> {
     let mut api_lock = VEILID_API.lock().await;
     api_lock
         .take()
@@ -55,7 +55,7 @@ async fn take_veilid_api() -> Result<veilid_core::VeilidAPI, veilid_core::Veilid
 define_string_destructor!(free_string);
 
 // Utility types for async API results
-type APIResult<T> = Result<T, veilid_core::VeilidAPIError>;
+type APIResult<T> = veilid_core::VeilidAPIResult<T>;
 const APIRESULT_VOID: APIResult<()> = APIResult::Ok(());
 
 // Parse target
@@ -791,7 +791,7 @@ pub extern "C" fn table_db_get_keys(port: i64, id: u32, col: u32) {
             table_db.clone()
         };
 
-        let keys = table_db.get_keys(col).await.map_err(veilid_core::VeilidAPIError::generic)?;
+        let keys = table_db.get_keys(col).await?;
         let out: Vec<String> = keys.into_iter().map(|k| BASE64URL_NOPAD.encode(&k)).collect();
         APIResult::Ok(out)
     });
@@ -839,7 +839,7 @@ pub extern "C" fn table_db_transaction_commit(port: i64, id: u32) {
             tdbt.clone()
         };
         
-        tdbt.commit().await.map_err(veilid_core::VeilidAPIError::generic)?;
+        tdbt.commit().await?;
         APIRESULT_VOID
     });
 }
@@ -938,7 +938,7 @@ pub extern "C" fn table_db_store(port: i64, id: u32, col: u32, key: FfiStr, valu
             table_db.clone()
         };
         
-        table_db.store(col, &key, &value).await.map_err(veilid_core::VeilidAPIError::generic)?;
+        table_db.store(col, &key, &value).await?;
         APIRESULT_VOID
     });
 }
@@ -960,7 +960,7 @@ pub extern "C" fn table_db_load(port: i64, id: u32, col: u32, key: FfiStr) {
             table_db.clone()
         };
         
-        let out = table_db.load(col, &key).await.map_err(veilid_core::VeilidAPIError::generic)?;
+        let out = table_db.load(col, &key).await?;
         let out = out.map(|x| data_encoding::BASE64URL_NOPAD.encode(&x));
         APIResult::Ok(out)
     });
@@ -984,7 +984,7 @@ pub extern "C" fn table_db_delete(port: i64, id: u32, col: u32, key: FfiStr) {
             table_db.clone()
         };
         
-        let out = table_db.delete(col, &key).await.map_err(veilid_core::VeilidAPIError::generic)?;
+        let out = table_db.delete(col, &key).await?;
         let out = out.map(|x| data_encoding::BASE64URL_NOPAD.encode(&x));
         APIResult::Ok(out)
     });
diff --git a/veilid-wasm/src/lib.rs b/veilid-wasm/src/lib.rs
index ef1e6fa3..a43f7ce5 100644
--- a/veilid-wasm/src/lib.rs
+++ b/veilid-wasm/src/lib.rs
@@ -719,19 +719,21 @@ pub fn table_db_get_column_count(id: u32) -> u32 {
 #[wasm_bindgen()]
 pub fn table_db_get_keys(id: u32, col: u32) -> Promise {
     wrap_api_future_json(async move {
-        let table_dbs = (*TABLE_DBS).borrow();
-        let Some(table_db) = table_dbs.get(&id) else {
-            return None;
-        };
-        let Ok(keys) = table_db.clone().get_keys(col) else {
-            return None;
+        let table_db = {
+            let table_dbs = (*TABLE_DBS).borrow();
+            let Some(table_db) = table_dbs.get(&id) else {
+                return APIResult::Err(veilid_core::VeilidAPIError::invalid_argument("table_db_store", "id", id));
+            };
+            table_db.clone()
         };
+
+        let keys = table_db.clone().get_keys(col).await?;
         let out: Vec<String> = keys
             .into_iter()
             .map(|k| data_encoding::BASE64URL_NOPAD.encode(&k))
             .collect();
-        APIResult::Ok(Some(out))
-    });
+        APIResult::Ok(out)
+    })
 }
 
 fn add_table_db_transaction(tdbt: veilid_core::TableDBTransaction) -> u32 {
@@ -775,9 +777,7 @@ pub fn table_db_transaction_commit(id: u32) -> Promise {
             tdbt.clone()
         };
 
-        tdbt.commit()
-            .await
-            .map_err(veilid_core::VeilidAPIError::generic)?;
+        tdbt.commit().await?;
         APIRESULT_UNDEFINED
     })
 }
@@ -856,10 +856,7 @@ pub fn table_db_store(id: u32, col: u32, key: String, value: String) -> Promise
             table_db.clone()
         };
 
-        table_db
-            .store(col, &key, &value)
-            .await
-            .map_err(veilid_core::VeilidAPIError::generic)?;
+        table_db.store(col, &key, &value).await?;
         APIRESULT_UNDEFINED
     })
 }
@@ -878,9 +875,7 @@ pub fn table_db_load(id: u32, col: u32, key: String) -> Promise {
             table_db.clone()
         };
 
-        let out = table_db
-            .load(col, &key)
-            .map_err(veilid_core::VeilidAPIError::generic)?;
+        let out = table_db.load(col, &key).await?;
         let out = out.map(|x| data_encoding::BASE64URL_NOPAD.encode(&x));
         APIResult::Ok(out)
     })
@@ -900,10 +895,7 @@ pub fn table_db_delete(id: u32, col: u32, key: String) -> Promise {
             table_db.clone()
         };
 
-        let out = table_db
-            .delete(col, &key)
-            .await
-            .map_err(veilid_core::VeilidAPIError::generic)?;
+        let out = table_db.delete(col, &key).await?;
         let out = out.map(|x| data_encoding::BASE64URL_NOPAD.encode(&x));
         APIResult::Ok(out)
     })

From a1f295da78a5e5eb0240e3b1dfa968508304b810 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Mon, 22 May 2023 23:54:25 +0100
Subject: [PATCH 50/74] checkpoint

---
 veilid-core/src/core_context.rs               |   2 +-
 veilid-core/src/crypto/mod.rs                 |   5 +-
 veilid-core/src/crypto/none/mod.rs            |   2 +-
 veilid-core/src/crypto/types/mod.rs           |   2 +
 veilid-core/src/crypto/vld0/mod.rs            |   6 +-
 veilid-core/src/intf/mod.rs                   |  11 -
 veilid-core/src/intf/native/mod.rs            |   2 -
 veilid-core/src/intf/native/table_store.rs    | 148 ---------
 veilid-core/src/intf/wasm/mod.rs              |   2 -
 veilid-core/src/intf/wasm/table_store.rs      | 147 ---------
 veilid-core/src/lib.rs                        |   1 +
 .../src/routing_table/routing_table_inner.rs  |   2 +-
 veilid-core/src/table_store/mod.rs            |  15 +
 veilid-core/src/table_store/native.rs         |  53 +++
 .../src/{intf => table_store}/table_db.rs     |   9 +-
 veilid-core/src/table_store/table_store.rs    | 305 ++++++++++++++++++
 veilid-core/src/table_store/wasm.rs           |  40 +++
 veilid-core/src/veilid_api/mod.rs             |   2 +-
 veilid-tools/src/random.rs                    |  15 +-
 19 files changed, 441 insertions(+), 328 deletions(-)
 delete mode 100644 veilid-core/src/intf/native/table_store.rs
 delete mode 100644 veilid-core/src/intf/wasm/table_store.rs
 create mode 100644 veilid-core/src/table_store/mod.rs
 create mode 100644 veilid-core/src/table_store/native.rs
 rename veilid-core/src/{intf => table_store}/table_db.rs (97%)
 create mode 100644 veilid-core/src/table_store/table_store.rs
 create mode 100644 veilid-core/src/table_store/wasm.rs

diff --git a/veilid-core/src/core_context.rs b/veilid-core/src/core_context.rs
index 6bce23a4..52983521 100644
--- a/veilid-core/src/core_context.rs
+++ b/veilid-core/src/core_context.rs
@@ -78,7 +78,7 @@ impl ServicesContext {
 
         // Set up tablestore
         trace!("init table store");
-        let table_store = TableStore::new(self.config.clone());
+        let table_store = TableStore::new(self.config.clone(), protected_store.clone());
         if let Err(e) = table_store.init().await {
             error!("failed to init table store: {}", e);
             self.shutdown().await;
diff --git a/veilid-core/src/crypto/mod.rs b/veilid-core/src/crypto/mod.rs
index 15eb43e4..c2026237 100644
--- a/veilid-core/src/crypto/mod.rs
+++ b/veilid-core/src/crypto/mod.rs
@@ -169,7 +169,10 @@ impl Crypto {
         };
 
         // load caches if they are valid for this node id
-        let mut db = table_store.open("crypto_caches", 1).await?;
+        let mut db = table_store
+            .open("crypto_caches", 1)
+            .await
+            .wrap_err("failed to open crypto_caches")?;
         let caches_valid = match db.load(0, b"cache_validity_key").await? {
             Some(v) => v == cache_validity_key,
             None => false,
diff --git a/veilid-core/src/crypto/none/mod.rs b/veilid-core/src/crypto/none/mod.rs
index 7a2ac32f..69ae1377 100644
--- a/veilid-core/src/crypto/none/mod.rs
+++ b/veilid-core/src/crypto/none/mod.rs
@@ -84,7 +84,7 @@ impl CryptoSystem for CryptoSystemNONE {
     fn random_bytes(&self, len: u32) -> Vec<u8> {
         let mut bytes = Vec::<u8>::with_capacity(len as usize);
         bytes.resize(len as usize, 0u8);
-        random_bytes(bytes.as_mut()).unwrap();
+        random_bytes(bytes.as_mut());
         bytes
     }
     fn default_salt_length(&self) -> u32 {
diff --git a/veilid-core/src/crypto/types/mod.rs b/veilid-core/src/crypto/types/mod.rs
index 8b8de7de..1e22829a 100644
--- a/veilid-core/src/crypto/types/mod.rs
+++ b/veilid-core/src/crypto/types/mod.rs
@@ -53,8 +53,10 @@ pub type TypedKey = CryptoTyped<PublicKey>;
 pub type TypedSecret = CryptoTyped<SecretKey>;
 pub type TypedKeyPair = CryptoTyped<KeyPair>;
 pub type TypedSignature = CryptoTyped<Signature>;
+pub type TypedSharedSecret = CryptoTyped<SharedSecret>;
 
 pub type TypedKeySet = CryptoTypedSet<PublicKey>;
 pub type TypedSecretSet = CryptoTypedSet<SecretKey>;
 pub type TypedKeyPairSet = CryptoTypedSet<KeyPair>;
 pub type TypedSignatureSet = CryptoTypedSet<Signature>;
+pub type TypedSharedSecretSet = CryptoTypedSet<SharedSecret>;
diff --git a/veilid-core/src/crypto/vld0/mod.rs b/veilid-core/src/crypto/vld0/mod.rs
index 1ead81c7..41e6c640 100644
--- a/veilid-core/src/crypto/vld0/mod.rs
+++ b/veilid-core/src/crypto/vld0/mod.rs
@@ -78,7 +78,7 @@ impl CryptoSystem for CryptoSystemVLD0 {
     fn random_bytes(&self, len: u32) -> Vec<u8> {
         let mut bytes = Vec::<u8>::with_capacity(len as usize);
         bytes.resize(len as usize, 0u8);
-        random_bytes(bytes.as_mut()).unwrap();
+        random_bytes(bytes.as_mut());
         bytes
     }
     fn default_salt_length(&self) -> u32 {
@@ -134,12 +134,12 @@ impl CryptoSystem for CryptoSystemVLD0 {
 
     fn random_nonce(&self) -> Nonce {
         let mut nonce = [0u8; NONCE_LENGTH];
-        random_bytes(&mut nonce).unwrap();
+        random_bytes(&mut nonce);
         Nonce::new(nonce)
     }
     fn random_shared_secret(&self) -> SharedSecret {
         let mut s = [0u8; SHARED_SECRET_LENGTH];
-        random_bytes(&mut s).unwrap();
+        random_bytes(&mut s);
         SharedSecret::new(s)
     }
     fn compute_dh(
diff --git a/veilid-core/src/intf/mod.rs b/veilid-core/src/intf/mod.rs
index 6c1ae9f3..ab9d5759 100644
--- a/veilid-core/src/intf/mod.rs
+++ b/veilid-core/src/intf/mod.rs
@@ -1,4 +1,3 @@
-mod table_db;
 use super::*;
 
 #[cfg(target_arch = "wasm32")]
@@ -10,15 +9,5 @@ mod native;
 #[cfg(not(target_arch = "wasm32"))]
 pub use native::*;
 
-pub static KNOWN_TABLE_NAMES: [&'static str; 7] = [
-    "crypto_caches",
-    "RouteSpecStore",
-    "routing_table",
-    "local_records",
-    "local_subkeys",
-    "remote_records",
-    "remote_subkeys",
-];
-
 pub static KNOWN_PROTECTED_STORE_KEYS: [&'static str; 4] =
     ["node_id", "node_id_secret", "_test_key", "RouteSpecStore"];
diff --git a/veilid-core/src/intf/native/mod.rs b/veilid-core/src/intf/native/mod.rs
index 6f2b8791..018cba41 100644
--- a/veilid-core/src/intf/native/mod.rs
+++ b/veilid-core/src/intf/native/mod.rs
@@ -1,12 +1,10 @@
 mod block_store;
 mod protected_store;
 mod system;
-mod table_store;
 
 pub use block_store::*;
 pub use protected_store::*;
 pub use system::*;
-pub use table_store::*;
 
 #[cfg(target_os = "android")]
 pub mod android;
diff --git a/veilid-core/src/intf/native/table_store.rs b/veilid-core/src/intf/native/table_store.rs
deleted file mode 100644
index 5200c12f..00000000
--- a/veilid-core/src/intf/native/table_store.rs
+++ /dev/null
@@ -1,148 +0,0 @@
-use super::*;
-use crate::intf::table_db::TableDBUnlockedInner;
-pub use crate::intf::table_db::{TableDB, TableDBTransaction};
-use keyvaluedb_sqlite::*;
-use std::path::PathBuf;
-
-struct TableStoreInner {
-    opened: BTreeMap<String, Weak<TableDBUnlockedInner>>,
-}
-
-/// Veilid Table Storage
-/// Database for storing key value pairs persistently across runs
-#[derive(Clone)]
-pub struct TableStore {
-    config: VeilidConfig,
-    inner: Arc<Mutex<TableStoreInner>>,
-}
-
-impl TableStore {
-    fn new_inner() -> TableStoreInner {
-        TableStoreInner {
-            opened: BTreeMap::new(),
-        }
-    }
-    pub(crate) fn new(config: VeilidConfig) -> Self {
-        Self {
-            config,
-            inner: Arc::new(Mutex::new(Self::new_inner())),
-        }
-    }
-
-    /// Delete all known tables
-    pub async fn delete_all(&self) {
-        for ktn in &KNOWN_TABLE_NAMES {
-            if let Err(e) = self.delete(ktn).await {
-                error!("failed to delete '{}': {}", ktn, e);
-            } else {
-                debug!("deleted table '{}'", ktn);
-            }
-        }
-    }
-
-    pub(crate) async fn init(&self) -> EyreResult<()> {
-        Ok(())
-    }
-
-    pub(crate) async fn terminate(&self) {
-        let inner = self.inner.lock();
-        if !inner.opened.is_empty() {
-            panic!(
-                "all open databases should have been closed: {:?}",
-                inner.opened
-            );
-        }
-    }
-
-    pub(crate) fn on_table_db_drop(&self, table: String) {
-        let mut inner = self.inner.lock();
-        if inner.opened.remove(&table).is_none() {
-            unreachable!("should have removed an item");
-        }
-    }
-
-    fn get_dbpath(&self, table: &str) -> EyreResult<PathBuf> {
-        if !table
-            .chars()
-            .all(|c| char::is_alphanumeric(c) || c == '_' || c == '-')
-        {
-            bail!("table name '{}' is invalid", table);
-        }
-        let c = self.config.get();
-        let tablestoredir = c.table_store.directory.clone();
-        std::fs::create_dir_all(&tablestoredir).wrap_err("failed to create tablestore path")?;
-
-        let dbpath: PathBuf = [tablestoredir, String::from(table)].iter().collect();
-        Ok(dbpath)
-    }
-
-    fn get_table_name(&self, table: &str) -> EyreResult<String> {
-        if !table
-            .chars()
-            .all(|c| char::is_alphanumeric(c) || c == '_' || c == '-')
-        {
-            bail!("table name '{}' is invalid", table);
-        }
-        let c = self.config.get();
-        let namespace = c.namespace.clone();
-        Ok(if namespace.is_empty() {
-            table.to_string()
-        } else {
-            format!("_ns_{}_{}", namespace, table)
-        })
-    }
-
-    /// Get or create a TableDB database table. If the column count is greater than an
-    /// existing TableDB's column count, the database will be upgraded to add the missing columns
-    pub async fn open(&self, name: &str, column_count: u32) -> EyreResult<TableDB> {
-        let table_name = self.get_table_name(name)?;
-
-        let mut inner = self.inner.lock();
-        if let Some(table_db_weak_inner) = inner.opened.get(&table_name) {
-            match TableDB::try_new_from_weak_inner(table_db_weak_inner.clone()) {
-                Some(tdb) => {
-                    return Ok(tdb);
-                }
-                None => {
-                    inner.opened.remove(&table_name);
-                }
-            };
-        }
-
-        let dbpath = self.get_dbpath(&table_name)?;
-
-        // Ensure permissions are correct
-        ensure_file_private_owner(&dbpath)?;
-
-        let cfg = DatabaseConfig::with_columns(column_count);
-        let db = Database::open(&dbpath, cfg).wrap_err("failed to open tabledb")?;
-
-        // Ensure permissions are correct
-        ensure_file_private_owner(&dbpath)?;
-
-        trace!(
-            "opened table store '{}' at path '{:?}' with {} columns",
-            name,
-            dbpath,
-            column_count
-        );
-        let table_db = TableDB::new(table_name.clone(), self.clone(), db);
-
-        inner.opened.insert(table_name, table_db.weak_inner());
-
-        Ok(table_db)
-    }
-
-    /// Delete a TableDB table by name
-    pub async fn delete(&self, name: &str) -> EyreResult<bool> {
-        let table_name = self.get_table_name(name)?;
-
-        let inner = self.inner.lock();
-        if inner.opened.contains_key(&table_name) {
-            bail!("Not deleting table that is still opened");
-        }
-        let dbpath = self.get_dbpath(&table_name)?;
-        let ret = std::fs::remove_file(dbpath).is_ok();
-        Ok(ret)
-    }
-}
diff --git a/veilid-core/src/intf/wasm/mod.rs b/veilid-core/src/intf/wasm/mod.rs
index a2b0f374..b69ada7b 100644
--- a/veilid-core/src/intf/wasm/mod.rs
+++ b/veilid-core/src/intf/wasm/mod.rs
@@ -1,11 +1,9 @@
 mod block_store;
 mod protected_store;
 mod system;
-mod table_store;
 
 pub use block_store::*;
 pub use protected_store::*;
 pub use system::*;
-pub use table_store::*;
 
 use super::*;
diff --git a/veilid-core/src/intf/wasm/table_store.rs b/veilid-core/src/intf/wasm/table_store.rs
deleted file mode 100644
index 6828b3bf..00000000
--- a/veilid-core/src/intf/wasm/table_store.rs
+++ /dev/null
@@ -1,147 +0,0 @@
-use super::*;
-use crate::intf::table_db::TableDBUnlockedInner;
-pub use crate::intf::table_db::{TableDB, TableDBTransaction};
-use keyvaluedb_web::*;
-
-struct TableStoreInner {
-    opened: BTreeMap<String, Weak<TableDBUnlockedInner>>,
-}
-
-#[derive(Clone)]
-pub struct TableStore {
-    config: VeilidConfig,
-    inner: Arc<Mutex<TableStoreInner>>,
-    async_lock: Arc<AsyncMutex<()>>,
-}
-
-impl TableStore {
-    fn new_inner() -> TableStoreInner {
-        TableStoreInner {
-            opened: BTreeMap::new(),
-        }
-    }
-    pub(crate) fn new(config: VeilidConfig) -> Self {
-        Self {
-            config,
-            inner: Arc::new(Mutex::new(Self::new_inner())),
-            async_lock: Arc::new(AsyncMutex::new(())),
-        }
-    }
-
-    /// Delete all known tables
-    pub async fn delete_all(&self) {
-        for ktn in &KNOWN_TABLE_NAMES {
-            if let Err(e) = self.delete(ktn).await {
-                error!("failed to delete '{}': {}", ktn, e);
-            }
-        }
-    }
-
-    pub(crate) async fn init(&self) -> EyreResult<()> {
-        let _async_guard = self.async_lock.lock().await;
-        Ok(())
-    }
-
-    pub(crate) async fn terminate(&self) {
-        let _async_guard = self.async_lock.lock().await;
-        assert!(
-            self.inner.lock().opened.len() == 0,
-            "all open databases should have been closed"
-        );
-    }
-
-    pub(crate) fn on_table_db_drop(&self, table: String) {
-        let mut inner = self.inner.lock();
-        match inner.opened.remove(&table) {
-            Some(_) => (),
-            None => {
-                assert!(false, "should have removed an item");
-            }
-        }
-    }
-
-    fn get_table_name(&self, table: &str) -> EyreResult<String> {
-        if !table
-            .chars()
-            .all(|c| char::is_alphanumeric(c) || c == '_' || c == '-')
-        {
-            bail!("table name '{}' is invalid", table);
-        }
-        let c = self.config.get();
-        let namespace = c.namespace.clone();
-        Ok(if namespace.len() == 0 {
-            format!("{}", table)
-        } else {
-            format!("_ns_{}_{}", namespace, table)
-        })
-    }
-
-    /// Get or create a TableDB database table. If the column count is greater than an
-    /// existing TableDB's column count, the database will be upgraded to add the missing columns
-    pub async fn open(&self, name: &str, column_count: u32) -> EyreResult<TableDB> {
-        let _async_guard = self.async_lock.lock().await;
-        let table_name = self.get_table_name(name)?;
-
-        {
-            let mut inner = self.inner.lock();
-            if let Some(table_db_weak_inner) = inner.opened.get(&table_name) {
-                match TableDB::try_new_from_weak_inner(table_db_weak_inner.clone()) {
-                    Some(tdb) => {
-                        return Ok(tdb);
-                    }
-                    None => {
-                        inner.opened.remove(&table_name);
-                    }
-                };
-            }
-        }
-        let db = Database::open(table_name.clone(), column_count, false)
-            .await
-            .wrap_err("failed to open tabledb")?;
-        trace!(
-            "opened table store '{}' with table name '{:?}' with {} columns",
-            name,
-            table_name,
-            column_count
-        );
-
-        let table_db = TableDB::new(table_name.clone(), self.clone(), db);
-
-        {
-            let mut inner = self.inner.lock();
-            inner.opened.insert(table_name, table_db.weak_inner());
-        }
-
-        Ok(table_db)
-    }
-
-    /// Delete a TableDB table by name
-    pub async fn delete(&self, name: &str) -> EyreResult<bool> {
-        let _async_guard = self.async_lock.lock().await;
-        trace!("TableStore::delete {}", name);
-        let table_name = self.get_table_name(name)?;
-
-        {
-            let inner = self.inner.lock();
-            if inner.opened.contains_key(&table_name) {
-                trace!(
-                    "TableStore::delete {}: Not deleting, still open.",
-                    table_name
-                );
-                bail!("Not deleting table that is still opened");
-            }
-        }
-
-        if is_browser() {
-            let out = match Database::delete(table_name.clone()).await {
-                Ok(_) => true,
-                Err(_) => false,
-            };
-            //.map_err(|e| format!("failed to delete tabledb at: {} ({})", table_name, e))?;
-            trace!("TableStore::deleted {}", table_name);
-            Ok(out)
-        } else {
-            unimplemented!();
-        }
-    }
-}
diff --git a/veilid-core/src/lib.rs b/veilid-core/src/lib.rs
index b3381a5b..bca8a6fe 100644
--- a/veilid-core/src/lib.rs
+++ b/veilid-core/src/lib.rs
@@ -29,6 +29,7 @@ mod receipt_manager;
 mod routing_table;
 mod rpc_processor;
 mod storage_manager;
+mod table_store;
 mod veilid_api;
 mod veilid_config;
 mod veilid_layer_filter;
diff --git a/veilid-core/src/routing_table/routing_table_inner.rs b/veilid-core/src/routing_table/routing_table_inner.rs
index 409f2a0c..d66f7ed0 100644
--- a/veilid-core/src/routing_table/routing_table_inner.rs
+++ b/veilid-core/src/routing_table/routing_table_inner.rs
@@ -563,7 +563,7 @@ impl RoutingTableInner {
                 // If we need a ping because this node hasn't seen our latest node info, then do it
                 if let Some(own_node_info_ts) = own_node_info_ts {
                     if !e.has_seen_our_node_info_ts(routing_domain, own_node_info_ts) {
-                        //xxx remove this when we fix
+                        //xxx remove this when we fix #208
                         debug!(
                             "!has_seen_our_node_info_ts: {} own_node_info_ts={}",
                             e.best_node_id(),
diff --git a/veilid-core/src/table_store/mod.rs b/veilid-core/src/table_store/mod.rs
new file mode 100644
index 00000000..16ab5483
--- /dev/null
+++ b/veilid-core/src/table_store/mod.rs
@@ -0,0 +1,15 @@
+use super::*;
+
+mod table_db;
+mod table_store;
+pub use table_db::*;
+pub use table_store::*;
+
+#[cfg(target_arch = "wasm32")]
+mod wasm;
+#[cfg(target_arch = "wasm32")]
+use wasm::*;
+#[cfg(not(target_arch = "wasm32"))]
+mod native;
+#[cfg(not(target_arch = "wasm32"))]
+use native::*;
diff --git a/veilid-core/src/table_store/native.rs b/veilid-core/src/table_store/native.rs
new file mode 100644
index 00000000..9e1186d5
--- /dev/null
+++ b/veilid-core/src/table_store/native.rs
@@ -0,0 +1,53 @@
+use super::*;
+pub use keyvaluedb_sqlite::*;
+use std::path::PathBuf;
+
+#[derive(Clone)]
+pub(crate) struct TableStoreDriver {
+    config: VeilidConfig,
+}
+
+impl TableStoreDriver {
+    pub fn new(config: VeilidConfig) -> Self {
+        Self { config }
+    }
+
+    fn get_dbpath(&self, table: &str) -> VeilidAPIResult<PathBuf> {
+        let c = self.config.get();
+        let tablestoredir = c.table_store.directory.clone();
+        std::fs::create_dir_all(&tablestoredir).map_err(VeilidAPIError::from)?;
+
+        let dbpath: PathBuf = [tablestoredir, String::from(table)].iter().collect();
+        Ok(dbpath)
+    }
+
+    pub async fn open(&self, table_name: &str, column_count: u32) -> VeilidAPIResult<Database> {
+        let dbpath = self.get_dbpath(&table_name)?;
+
+        // Ensure permissions are correct
+        ensure_file_private_owner(&dbpath).map_err(VeilidAPIError::internal)?;
+
+        let cfg = DatabaseConfig::with_columns(column_count);
+        let db = Database::open(&dbpath, cfg).map_err(VeilidAPIError::from)?;
+
+        // Ensure permissions are correct
+        ensure_file_private_owner(&dbpath).map_err(VeilidAPIError::internal)?;
+
+        trace!(
+            "opened table store '{}' at path '{:?}' with {} columns",
+            table_name,
+            dbpath,
+            column_count
+        );
+        Ok(db)
+    }
+
+    pub async fn delete(&self, table_name: &str) -> VeilidAPIResult<bool> {
+        let dbpath = self.get_dbpath(&table_name)?;
+        if !dbpath.exists() {
+            return Ok(false);
+        }
+        std::fs::remove_file(dbpath).map_err(VeilidAPIError::from)?;
+        Ok(true)
+    }
+}
diff --git a/veilid-core/src/intf/table_db.rs b/veilid-core/src/table_store/table_db.rs
similarity index 97%
rename from veilid-core/src/intf/table_db.rs
rename to veilid-core/src/table_store/table_db.rs
index 05ebdf8b..cfa8cba3 100644
--- a/veilid-core/src/intf/table_db.rs
+++ b/veilid-core/src/table_store/table_db.rs
@@ -14,6 +14,7 @@ pub struct TableDBUnlockedInner {
     table: String,
     table_store: TableStore,
     database: Database,
+    encryption_key: Option<TypedSharedSecret>,
 }
 
 impl fmt::Debug for TableDBUnlockedInner {
@@ -34,12 +35,18 @@ pub struct TableDB {
 }
 
 impl TableDB {
-    pub(super) fn new(table: String, table_store: TableStore, database: Database) -> Self {
+    pub(super) fn new(
+        table: String,
+        table_store: TableStore,
+        database: Database,
+        encryption_key: Option<TypedSharedSecret>,
+    ) -> Self {
         Self {
             unlocked_inner: Arc::new(TableDBUnlockedInner {
                 table,
                 table_store,
                 database,
+                encryption_key,
             }),
         }
     }
diff --git a/veilid-core/src/table_store/table_store.rs b/veilid-core/src/table_store/table_store.rs
new file mode 100644
index 00000000..d035bac8
--- /dev/null
+++ b/veilid-core/src/table_store/table_store.rs
@@ -0,0 +1,305 @@
+use super::*;
+use keyvaluedb::*;
+
+struct TableStoreInner {
+    opened: BTreeMap<String, Weak<TableDBUnlockedInner>>,
+    encryption_key: Option<TypedSharedSecret>,
+    all_table_names: HashMap<String, String>,
+    all_tables_db: Option<Database>,
+}
+
+/// Veilid Table Storage
+/// Database for storing key value pairs persistently and securely across runs
+#[derive(Clone)]
+pub struct TableStore {
+    config: VeilidConfig,
+    protected_store: ProtectedStore,
+    table_store_driver: TableStoreDriver,
+    inner: Arc<Mutex<TableStoreInner>>, // Sync mutex here because TableDB drops can happen at any time
+    async_lock: Arc<AsyncMutex<()>>,    // Async mutex for operations
+}
+
+impl TableStore {
+    fn new_inner() -> TableStoreInner {
+        TableStoreInner {
+            opened: BTreeMap::new(),
+            encryption_key: None,
+            all_table_names: HashMap::new(),
+            all_tables_db: None,
+        }
+    }
+    pub(crate) fn new(config: VeilidConfig, protected_store: ProtectedStore) -> Self {
+        let inner = Self::new_inner();
+        let table_store_driver = TableStoreDriver::new(config.clone());
+
+        Self {
+            config,
+            protected_store,
+            inner: Arc::new(Mutex::new(inner)),
+            table_store_driver,
+            async_lock: Arc::new(AsyncMutex::new(())),
+        }
+    }
+
+    // Flush internal control state
+    async fn flush(&self) {
+        let (all_table_names_value, all_tables_db) = {
+            let inner = self.inner.lock();
+            let all_table_names_value =
+                to_rkyv(&inner.all_table_names).expect("failed to archive all_table_names");
+            (all_table_names_value, inner.all_tables_db.clone().unwrap())
+        };
+        let mut dbt = DBTransaction::new();
+        dbt.put(0, b"all_table_names", &all_table_names_value);
+        if let Err(e) = all_tables_db.write(dbt).await {
+            error!("failed to write all tables db: {}", e);
+        }
+    } xxx must from_rkyv the all_table_names
+
+    // Internal naming support
+    // Adds rename capability and ensures names of tables are totally unique and valid
+
+    fn namespaced_name(&self, table: &str) -> VeilidAPIResult<String> {
+        if !table
+            .chars()
+            .all(|c| char::is_alphanumeric(c) || c == '_' || c == '-')
+        {
+            apibail_invalid_argument!("table name is invalid", "table", table);
+        }
+        let c = self.config.get();
+        let namespace = c.namespace.clone();
+        Ok(if namespace.is_empty() {
+            table.to_string()
+        } else {
+            format!("_ns_{}_{}", namespace, table)
+        })
+    }
+
+    async fn name_get_or_create(&self, table: &str) -> VeilidAPIResult<String> {
+        let name = self.namespaced_name(table)?;
+
+        let mut inner = self.inner.lock();
+        // Do we have this name yet?
+        if let Some(real_name) = inner.all_table_names.get(&name) {
+            return Ok(real_name.clone());
+        }
+
+        // If not, make a new low level name mapping
+        let mut real_name_bytes = [0u8; 32];
+        random_bytes(&mut real_name_bytes);
+        let real_name = data_encoding::BASE64URL_NOPAD.encode(&real_name_bytes);
+
+        if inner
+            .all_table_names
+            .insert(name.to_owned(), real_name.clone())
+            .is_some()
+        {
+            panic!("should not have had some value");
+        };
+
+        Ok(real_name)
+    }
+
+    async fn name_delete(&self, table: &str) -> VeilidAPIResult<Option<String>> {
+        let name = self.namespaced_name(table)?;
+        let mut inner = self.inner.lock();
+        let real_name = inner.all_table_names.remove(&name);
+        Ok(real_name)
+    }
+
+    async fn name_get(&self, table: &str) -> VeilidAPIResult<Option<String>> {
+        let name = self.namespaced_name(table)?;
+        let inner = self.inner.lock();
+        let real_name = inner.all_table_names.get(&name).cloned();
+        Ok(real_name)
+    }
+
+    async fn name_rename(&self, old_table: &str, new_table: &str) -> VeilidAPIResult<()> {
+        let old_name = self.namespaced_name(old_table)?;
+        let new_name = self.namespaced_name(new_table)?;
+
+        let mut inner = self.inner.lock();
+        // Ensure new name doesn't exist
+        if inner.all_table_names.contains_key(&new_name) {
+            return Err(VeilidAPIError::generic("new table already exists"));
+        }
+        // Do we have this name yet?
+        let Some(real_name) = inner.all_table_names.remove(&old_name) else {
+            return Err(VeilidAPIError::generic("table does not exist"));
+        };
+        // Insert with new name
+        inner.all_table_names.insert(new_name.to_owned(), real_name);
+
+        Ok(())
+    }
+
+    /// Delete all known tables
+    async fn delete_all(&self) {
+        // Get all tables
+        let real_names = {
+            let mut inner = self.inner.lock();
+            let real_names = inner
+                .all_table_names
+                .values()
+                .cloned()
+                .collect::<Vec<String>>();
+            inner.all_table_names.clear();
+            real_names
+        };
+
+        // Delete all tables
+        for table_name in real_names {
+            if let Err(e) = self.table_store_driver.delete(&table_name).await {
+                error!("error deleting table: {}", e);
+            }
+        }
+        self.flush().await;
+    }
+
+    pub(crate) async fn init(&self) -> EyreResult<()> {
+        let _async_guard = self.async_lock.lock().await;
+
+        let encryption_key: Option<TypedSharedSecret> = self
+            .protected_store
+            .load_user_secret_rkyv("device_encryption_key")
+            .await?;
+
+        let all_tables_db = self
+            .table_store_driver
+            .open("__veilid_all_tables", 1)
+            .await
+            .wrap_err("failed to create all tables table")?;
+
+        {
+            let mut inner = self.inner.lock();
+            inner.encryption_key = encryption_key;
+            inner.all_tables_db = Some(all_tables_db);
+        }
+
+        let do_delete = {
+            let c = self.config.get();
+            c.table_store.delete
+        };
+
+        if do_delete {
+            self.delete_all().await;
+        }
+
+        Ok(())
+    }
+
+    pub(crate) async fn terminate(&self) {
+        let _async_guard = self.async_lock.lock().await;
+        let mut inner = self.inner.lock();
+        if !inner.opened.is_empty() {
+            panic!(
+                "all open databases should have been closed: {:?}",
+                inner.opened
+            );
+        }
+        inner.all_tables_db = None;
+        inner.encryption_key = None;
+    }
+
+    pub(crate) fn on_table_db_drop(&self, table: String) {
+        let mut inner = self.inner.lock();
+        if inner.opened.remove(&table).is_none() {
+            unreachable!("should have removed an item");
+        }
+    }
+
+    /// Get or create a TableDB database table. If the column count is greater than an
+    /// existing TableDB's column count, the database will be upgraded to add the missing columns
+    pub async fn open(&self, name: &str, column_count: u32) -> VeilidAPIResult<TableDB> {
+        let _async_guard = self.async_lock.lock().await;
+        let table_name = self.name_get_or_create(name).await?;
+
+        // See if this table is already opened
+        {
+            let mut inner = self.inner.lock();
+            if let Some(table_db_weak_inner) = inner.opened.get(&table_name) {
+                match TableDB::try_new_from_weak_inner(table_db_weak_inner.clone()) {
+                    Some(tdb) => {
+                        return Ok(tdb);
+                    }
+                    None => {
+                        inner.opened.remove(&table_name);
+                    }
+                };
+            }
+        }
+
+        // Open table db using platform-specific driver
+        let db = match self
+            .table_store_driver
+            .open(&table_name, column_count)
+            .await
+        {
+            Ok(db) => db,
+            Err(e) => {
+                self.name_delete(name).await.expect("cleanup failed");
+                self.flush().await;
+                return Err(e);
+            }
+        };
+
+        // Flush table names to disk
+        self.flush().await;
+
+        // Wrap low-level Database in TableDB object
+        let mut inner = self.inner.lock();
+        let table_db = TableDB::new(
+            table_name.clone(),
+            self.clone(),
+            db,
+            inner.encryption_key.clone(),
+        );
+
+        // Keep track of opened DBs
+        inner
+            .opened
+            .insert(table_name.clone(), table_db.weak_inner());
+
+        Ok(table_db)
+    }
+
+    /// Delete a TableDB table by name
+    pub async fn delete(&self, name: &str) -> VeilidAPIResult<bool> {
+        let _async_guard = self.async_lock.lock().await;
+        let Some(table_name) = self.name_get(name).await? else {
+            // Did not exist in name table
+            return Ok(false);
+        };
+
+        // See if this table is opened
+        {
+            let inner = self.inner.lock();
+            if inner.opened.contains_key(&table_name) {
+                apibail_generic!("Not deleting table that is still opened");
+            }
+        }
+
+        // Delete table db using platform-specific driver
+        let deleted = self.table_store_driver.delete(&table_name).await?;
+        if !deleted {
+            // Table missing? Just remove name
+            self.name_delete(&name)
+                .await
+                .expect("failed to delete name");
+            warn!(
+                "table existed in name table but not in storage: {} : {}",
+                name, table_name
+            );
+            return Ok(false);
+        }
+
+        Ok(true)
+    }
+
+    /// Rename a TableDB table
+    pub async fn rename(&self, old_name: &str, new_name: &str) -> VeilidAPIResult<()> {
+        let _async_guard = self.async_lock.lock().await;
+        trace!("TableStore::rename {} -> {}", old_name, new_name);
+        self.name_rename(old_name, new_name).await
+    }
+}
diff --git a/veilid-core/src/table_store/wasm.rs b/veilid-core/src/table_store/wasm.rs
new file mode 100644
index 00000000..71b2b4fa
--- /dev/null
+++ b/veilid-core/src/table_store/wasm.rs
@@ -0,0 +1,40 @@
+use super::*;
+pub use keyvaluedb_web::*;
+
+#[derive(Clone)]
+pub struct TableStoreDriver {
+    _config: VeilidConfig,
+}
+
+impl TableStoreDriver {
+    pub(crate) fn new(config: VeilidConfig) -> Self {
+        Self { _config: config }
+    }
+
+    pub async fn open(&self, table_name: &str, column_count: u32) -> VeilidAPIResult<Database> {
+        let db = Database::open(table_name, column_count, false)
+            .await
+            .map_err(VeilidAPIError::generic)?;
+        trace!(
+            "opened table store '{}' with {} columns",
+            table_name,
+            column_count
+        );
+        Ok(db)
+    }
+
+    /// Delete a TableDB table by name
+    pub async fn delete(&self, table_name: &str) -> VeilidAPIResult<bool> {
+        if is_browser() {
+            let out = Database::delete(table_name).await.is_ok();
+            if out {
+                trace!("TableStore::delete {} deleted", table_name);
+            } else {
+                debug!("TableStore::delete {} not deleted", table_name);
+            }
+            Ok(out)
+        } else {
+            unimplemented!();
+        }
+    }
+}
diff --git a/veilid-core/src/veilid_api/mod.rs b/veilid-core/src/veilid_api/mod.rs
index 8cc28366..eb4cb312 100644
--- a/veilid-core/src/veilid_api/mod.rs
+++ b/veilid-core/src/veilid_api/mod.rs
@@ -20,9 +20,9 @@ pub use core::str::FromStr;
 pub use crypto::*;
 pub use intf::BlockStore;
 pub use intf::ProtectedStore;
-pub use intf::{TableDB, TableDBTransaction, TableStore};
 pub use network_manager::NetworkManager;
 pub use routing_table::{NodeRef, NodeRefBase};
+pub use table_store::{TableDB, TableDBTransaction, TableStore};
 
 use crate::*;
 use core::fmt;
diff --git a/veilid-tools/src/random.rs b/veilid-tools/src/random.rs
index 9c3d9fa7..0ac52be3 100644
--- a/veilid-tools/src/random.rs
+++ b/veilid-tools/src/random.rs
@@ -16,13 +16,12 @@ impl RngCore for VeilidRng {
     }
 
     fn fill_bytes(&mut self, dest: &mut [u8]) {
-        if let Err(e) = self.try_fill_bytes(dest) {
-            panic!("Error: {}", e);
-        }
+        random_bytes(dest);
     }
 
     fn try_fill_bytes(&mut self, dest: &mut [u8]) -> Result<(), rand::Error> {
-        random_bytes(dest).map_err(rand::Error::new)
+        random_bytes(dest);
+        Ok(())
     }
 }
 
@@ -30,7 +29,7 @@ cfg_if! {
     if #[cfg(target_arch = "wasm32")] {
         use js_sys::Math;
 
-        pub fn random_bytes(dest: &mut [u8]) -> EyreResult<()> {
+        pub fn random_bytes(dest: &mut [u8]) {
             let len = dest.len();
             let u32len = len / 4;
             let remlen = len % 4;
@@ -49,8 +48,6 @@ cfg_if! {
                     dest[u32len * 4 + n] = ((r >> (n * 8)) & 0xFF) as u8;
                 }
             }
-
-            Ok(())
         }
 
         pub fn get_random_u32() -> u32 {
@@ -65,9 +62,9 @@ cfg_if! {
 
     } else {
 
-        pub fn random_bytes(dest: &mut [u8]) -> EyreResult<()> {
+        pub fn random_bytes(dest: &mut [u8]) {
             let mut rng = rand::thread_rng();
-            rng.try_fill_bytes(dest).wrap_err("failed to fill bytes")
+            rng.fill_bytes(dest);
         }
 
         pub fn get_random_u32() -> u32 {

From fd7257e9bfa5258254631ccd8e6376323d925d9b Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Mon, 22 May 2023 23:55:00 +0100
Subject: [PATCH 51/74] checkpoint

---
 external/keyvaluedb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/external/keyvaluedb b/external/keyvaluedb
index e92252f5..d5c98a36 160000
--- a/external/keyvaluedb
+++ b/external/keyvaluedb
@@ -1 +1 @@
-Subproject commit e92252f573c3ba98eebf71a5d115c44cff52af3d
+Subproject commit d5c98a36aeec1c0d5d2627ed4e55347dee1ae0e4

From 5760096fcb1cc2594a4012a8a850d1251cab8901 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Wed, 24 May 2023 00:05:27 +0100
Subject: [PATCH 52/74] encryption checkpoint

---
 veilid-core/src/crypto/byte_array_types.rs | 14 +++++
 veilid-core/src/crypto/crypto_system.rs    | 10 ++--
 veilid-core/src/crypto/envelope.rs         |  9 ++-
 veilid-core/src/crypto/mod.rs              |  3 +
 veilid-core/src/crypto/none/mod.rs         | 10 +---
 veilid-core/src/crypto/vld0/mod.rs         | 17 +++---
 veilid-core/src/table_store/table_db.rs    | 66 +++++++++++++++++++++-
 veilid-core/src/table_store/table_store.rs | 51 ++++++++++++++++-
 8 files changed, 150 insertions(+), 30 deletions(-)

diff --git a/veilid-core/src/crypto/byte_array_types.rs b/veilid-core/src/crypto/byte_array_types.rs
index d17acb04..4e8018c8 100644
--- a/veilid-core/src/crypto/byte_array_types.rs
+++ b/veilid-core/src/crypto/byte_array_types.rs
@@ -256,6 +256,20 @@ macro_rules! byte_array_type {
                 })
             }
         }
+
+        impl core::ops::Deref for $name {
+            type Target = [u8; $size];
+
+            fn deref(&self) -> &Self::Target {
+                &self.bytes
+            }
+        }
+
+        impl core::ops::DerefMut for $name {
+            fn deref_mut(&mut self) -> &mut Self::Target {
+                &mut self.bytes
+            }
+        }
     };
 }
 
diff --git a/veilid-core/src/crypto/crypto_system.rs b/veilid-core/src/crypto/crypto_system.rs
index d97a87bc..70967e04 100644
--- a/veilid-core/src/crypto/crypto_system.rs
+++ b/veilid-core/src/crypto/crypto_system.rs
@@ -97,27 +97,27 @@ pub trait CryptoSystem {
     // NoAuth Encrypt/Decrypt
     fn crypt_in_place_no_auth(
         &self,
-        body: &mut Vec<u8>,
-        nonce: &Nonce,
+        body: &mut [u8],
+        nonce: &[u8; NONCE_LENGTH],
         shared_secret: &SharedSecret,
     );
     fn crypt_b2b_no_auth(
         &self,
         in_buf: &[u8],
         out_buf: &mut [u8],
-        nonce: &Nonce,
+        nonce: &[u8; NONCE_LENGTH],
         shared_secret: &SharedSecret,
     );
     fn crypt_no_auth_aligned_8(
         &self,
         body: &[u8],
-        nonce: &Nonce,
+        nonce: &[u8; NONCE_LENGTH],
         shared_secret: &SharedSecret,
     ) -> Vec<u8>;
     fn crypt_no_auth_unaligned(
         &self,
         body: &[u8],
-        nonce: &Nonce,
+        nonce: &[u8; NONCE_LENGTH],
         shared_secret: &SharedSecret,
     ) -> Vec<u8>;
 }
diff --git a/veilid-core/src/crypto/envelope.rs b/veilid-core/src/crypto/envelope.rs
index fe22f2fc..4a043588 100644
--- a/veilid-core/src/crypto/envelope.rs
+++ b/veilid-core/src/crypto/envelope.rs
@@ -183,8 +183,11 @@ impl Envelope {
         let dh_secret = vcrypto.cached_dh(&self.sender_id, node_id_secret)?;
 
         // Decrypt message without authentication
-        let body =
-            vcrypto.crypt_no_auth_aligned_8(&data[0x6A..data.len() - 64], &self.nonce, &dh_secret);
+        let body = vcrypto.crypt_no_auth_aligned_8(
+            &data[0x6A..data.len() - 64],
+            &self.nonce.bytes,
+            &dh_secret,
+        );
 
         Ok(body)
     }
@@ -227,7 +230,7 @@ impl Envelope {
         data[0x4A..0x6A].copy_from_slice(&self.recipient_id.bytes);
 
         // Encrypt and authenticate message
-        let encrypted_body = vcrypto.crypt_no_auth_unaligned(body, &self.nonce, &dh_secret);
+        let encrypted_body = vcrypto.crypt_no_auth_unaligned(body, &self.nonce.bytes, &dh_secret);
 
         // Write body
         if !encrypted_body.is_empty() {
diff --git a/veilid-core/src/crypto/mod.rs b/veilid-core/src/crypto/mod.rs
index c2026237..816c9515 100644
--- a/veilid-core/src/crypto/mod.rs
+++ b/veilid-core/src/crypto/mod.rs
@@ -139,6 +139,9 @@ impl Crypto {
         trace!("Crypto::init");
         let table_store = self.unlocked_inner.table_store.clone();
 
+        // Set crypto for table store
+        table_store.set_crypto(self.clone());
+
         // Init node id from config
         if let Err(e) = self
             .unlocked_inner
diff --git a/veilid-core/src/crypto/none/mod.rs b/veilid-core/src/crypto/none/mod.rs
index 69ae1377..9b92783c 100644
--- a/veilid-core/src/crypto/none/mod.rs
+++ b/veilid-core/src/crypto/none/mod.rs
@@ -82,8 +82,7 @@ impl CryptoSystem for CryptoSystemNONE {
 
     // Generation
     fn random_bytes(&self, len: u32) -> Vec<u8> {
-        let mut bytes = Vec::<u8>::with_capacity(len as usize);
-        bytes.resize(len as usize, 0u8);
+        let mut bytes = unsafe { unaligned_u8_vec_uninit(len as usize) };
         random_bytes(bytes.as_mut());
         bytes
     }
@@ -322,12 +321,7 @@ impl CryptoSystem for CryptoSystemNONE {
     }
 
     // NoAuth Encrypt/Decrypt
-    fn crypt_in_place_no_auth(
-        &self,
-        body: &mut Vec<u8>,
-        nonce: &Nonce,
-        shared_secret: &SharedSecret,
-    ) {
+    fn crypt_in_place_no_auth(&self, body: &mut [u8], nonce: &Nonce, shared_secret: &SharedSecret) {
         let mut blob = nonce.bytes.to_vec();
         blob.extend_from_slice(&[0u8; 8]);
         let blob = do_xor_32(&blob, &shared_secret.bytes);
diff --git a/veilid-core/src/crypto/vld0/mod.rs b/veilid-core/src/crypto/vld0/mod.rs
index 41e6c640..9bd65567 100644
--- a/veilid-core/src/crypto/vld0/mod.rs
+++ b/veilid-core/src/crypto/vld0/mod.rs
@@ -76,8 +76,7 @@ impl CryptoSystem for CryptoSystemVLD0 {
 
     // Generation
     fn random_bytes(&self, len: u32) -> Vec<u8> {
-        let mut bytes = Vec::<u8>::with_capacity(len as usize);
-        bytes.resize(len as usize, 0u8);
+        let mut bytes = unsafe { unaligned_u8_vec_uninit(len as usize) };
         random_bytes(bytes.as_mut());
         bytes
     }
@@ -318,11 +317,11 @@ impl CryptoSystem for CryptoSystemVLD0 {
     // NoAuth Encrypt/Decrypt
     fn crypt_in_place_no_auth(
         &self,
-        body: &mut Vec<u8>,
-        nonce: &Nonce,
+        body: &mut [u8],
+        nonce: &[u8; NONCE_LENGTH],
         shared_secret: &SharedSecret,
     ) {
-        let mut cipher = XChaCha20::new(&shared_secret.bytes.into(), &nonce.bytes.into());
+        let mut cipher = XChaCha20::new(&shared_secret.bytes.into(), nonce.into());
         cipher.apply_keystream(body);
     }
 
@@ -330,17 +329,17 @@ impl CryptoSystem for CryptoSystemVLD0 {
         &self,
         in_buf: &[u8],
         out_buf: &mut [u8],
-        nonce: &Nonce,
+        nonce: &[u8; NONCE_LENGTH],
         shared_secret: &SharedSecret,
     ) {
-        let mut cipher = XChaCha20::new(&shared_secret.bytes.into(), &nonce.bytes.into());
+        let mut cipher = XChaCha20::new(&shared_secret.bytes.into(), nonce.into());
         cipher.apply_keystream_b2b(in_buf, out_buf).unwrap();
     }
 
     fn crypt_no_auth_aligned_8(
         &self,
         in_buf: &[u8],
-        nonce: &Nonce,
+        nonce: &[u8; NONCE_LENGTH],
         shared_secret: &SharedSecret,
     ) -> Vec<u8> {
         let mut out_buf = unsafe { aligned_8_u8_vec_uninit(in_buf.len()) };
@@ -351,7 +350,7 @@ impl CryptoSystem for CryptoSystemVLD0 {
     fn crypt_no_auth_unaligned(
         &self,
         in_buf: &[u8],
-        nonce: &Nonce,
+        nonce: &[u8; NONCE_LENGTH],
         shared_secret: &SharedSecret,
     ) -> Vec<u8> {
         let mut out_buf = unsafe { unaligned_u8_vec_uninit(in_buf.len()) };
diff --git a/veilid-core/src/table_store/table_db.rs b/veilid-core/src/table_store/table_db.rs
index cfa8cba3..d85383b2 100644
--- a/veilid-core/src/table_store/table_db.rs
+++ b/veilid-core/src/table_store/table_db.rs
@@ -10,11 +10,26 @@ cfg_if! {
     }
 }
 
+struct CryptInfo {
+    vcrypto: CryptoSystemVersion,
+    key: SharedSecret,
+}
+impl CryptInfo {
+    pub fn new(crypto: Crypto, typed_key: TypedSharedSecret) -> Self {
+        let vcrypto = crypto.get(typed_key.kind).unwrap();
+        let key = typed_key.value;
+        Self { vcrypto, key }
+    }
+}
+
 pub struct TableDBUnlockedInner {
     table: String,
     table_store: TableStore,
+    crypto: Crypto,
     database: Database,
-    encryption_key: Option<TypedSharedSecret>,
+    // Encryption and decryption key will be the same unless configured for an in-place migration
+    encrypt_info: Option<CryptInfo>,
+    decrypt_info: Option<CryptInfo>,
 }
 
 impl fmt::Debug for TableDBUnlockedInner {
@@ -38,15 +53,22 @@ impl TableDB {
     pub(super) fn new(
         table: String,
         table_store: TableStore,
+        crypto: Crypto,
         database: Database,
         encryption_key: Option<TypedSharedSecret>,
+        decryption_key: Option<TypedSharedSecret>,
     ) -> Self {
+        let encrypt_info = encryption_key.map(|ek| CryptInfo::new(crypto.clone(), ek));
+        let decrypt_info = dcryption_key.map(|dk| CryptInfo::new(crypto.clone(), dk));
+
         Self {
             unlocked_inner: Arc::new(TableDBUnlockedInner {
                 table,
                 table_store,
+                crypto,
                 database,
-                encryption_key,
+                encrypt_info,
+                decrypt_info,
             }),
         }
     }
@@ -67,8 +89,46 @@ impl TableDB {
         db.num_columns().map_err(VeilidAPIError::from)
     }
 
+    fn maybe_encrypt(&self, data: &[u8]) -> Vec<u8> {
+        if let Some(ei) = &self.unlocked_inner.encrypt_info {
+            let mut out = unsafe { unaligned_u8_vec_uninit(NONCE_LENGTH + data.len()) };
+            random_bytes(&mut out[0..NONCE_LENGTH]);
+
+            ei.vcrypto.crypt_b2b_no_auth(
+                data,
+                &mut out[NONCE_LENGTH..],
+                &out[0..NONCE_LENGTH],
+                &ei.key,
+            );
+            out
+        } else {
+            data.to_vec()
+        }
+    }
+
+    fn maybe_decrypt(&self, data: &[u8]) -> VeilidAPIResult<Vec<u8>> {
+        if let Some(di) = &self.unlocked_inner.decrypt_info {
+            if data.len() <= NONCE_LENGTH {
+                return Err(VeilidAPIError::internal("data too short"));
+            }
+            xxxx make decrypt
+            let mut out = unsafe { unaligned_u8_vec_uninit(NONCE_LENGTH + data.len()) };
+            random_bytes(&mut out[0..NONCE_LENGTH]);
+
+            ei.vcrypto.crypt_b2b_no_auth(
+                data,
+                &mut out[NONCE_LENGTH..],
+                &out[0..NONCE_LENGTH],
+                &ei.key,
+            );
+            out
+        } else {
+            Ok(data.to_vec())
+        }
+    }
+
     /// Get the list of keys in a column of the TableDB
-    pub async fn get_keys(&self, col: u32) -> VeilidAPIResult<Vec<Box<[u8]>>> {
+    pub async fn get_keys(&self, col: u32) -> VeilidAPIResult<Vec<Vec<u8>>> {
         let db = self.unlocked_inner.database.clone();
         let mut out: Vec<Box<[u8]>> = Vec::new();
         db.iter(col, None, |kv| {
diff --git a/veilid-core/src/table_store/table_store.rs b/veilid-core/src/table_store/table_store.rs
index d035bac8..b3a60080 100644
--- a/veilid-core/src/table_store/table_store.rs
+++ b/veilid-core/src/table_store/table_store.rs
@@ -6,6 +6,7 @@ struct TableStoreInner {
     encryption_key: Option<TypedSharedSecret>,
     all_table_names: HashMap<String, String>,
     all_tables_db: Option<Database>,
+    crypto: Option<Crypto>,
 }
 
 /// Veilid Table Storage
@@ -26,6 +27,7 @@ impl TableStore {
             encryption_key: None,
             all_table_names: HashMap::new(),
             all_tables_db: None,
+            crypto: None,
         }
     }
     pub(crate) fn new(config: VeilidConfig, protected_store: ProtectedStore) -> Self {
@@ -41,6 +43,11 @@ impl TableStore {
         }
     }
 
+    pub(crate) fn set_crypto(&self, crypto: Crypto) {
+        let mut inner = self.inner.lock();
+        inner.crypto = Some(crypto);
+    }
+
     // Flush internal control state
     async fn flush(&self) {
         let (all_table_names_value, all_tables_db) = {
@@ -54,7 +61,7 @@ impl TableStore {
         if let Err(e) = all_tables_db.write(dbt).await {
             error!("failed to write all tables db: {}", e);
         }
-    } xxx must from_rkyv the all_table_names
+    }
 
     // Internal naming support
     // Adds rename capability and ensures names of tables are totally unique and valid
@@ -159,16 +166,50 @@ impl TableStore {
     pub(crate) async fn init(&self) -> EyreResult<()> {
         let _async_guard = self.async_lock.lock().await;
 
-        let encryption_key: Option<TypedSharedSecret> = self
+        // Get device encryption key from protected store
+        let mut encryption_key: Option<TypedSharedSecret> = self
             .protected_store
             .load_user_secret_rkyv("device_encryption_key")
             .await?;
 
+        if let Some(encryption_key) = encryption_key {
+            // If encryption in current use is not the best encryption, then run table migration
+            let best_kind = best_crypto_kind();
+            if encryption_key.kind != best_kind {
+                // XXX: Run migration. See issue #209
+            }
+        } else {
+            // If we don't have an encryption key yet, then make one with the best cryptography and save it
+            let best_kind = best_crypto_kind();
+            let mut shared_secret = SharedSecret::default();
+            random_bytes(&mut shared_secret.bytes);
+            encryption_key = Some(TypedSharedSecret::new(best_kind, shared_secret));
+        }
+
+        // Deserialize all table names
         let all_tables_db = self
             .table_store_driver
             .open("__veilid_all_tables", 1)
             .await
             .wrap_err("failed to create all tables table")?;
+        match all_tables_db.get(0, b"all_table_names").await {
+            Ok(Some(v)) => match from_rkyv::<HashMap<String, String>>(v) {
+                Ok(all_table_names) => {
+                    let mut inner = self.inner.lock();
+                    inner.all_table_names = all_table_names;
+                }
+                Err(e) => {
+                    error!("could not deserialize __veilid_all_tables: {}", e);
+                }
+            },
+            Ok(None) => {
+                // No table names yet, that's okay
+                trace!("__veilid_all_tables is empty");
+            }
+            Err(e) => {
+                error!("could not get __veilid_all_tables: {}", e);
+            }
+        };
 
         {
             let mut inner = self.inner.lock();
@@ -190,6 +231,9 @@ impl TableStore {
 
     pub(crate) async fn terminate(&self) {
         let _async_guard = self.async_lock.lock().await;
+
+        self.flush().await;
+
         let mut inner = self.inner.lock();
         if !inner.opened.is_empty() {
             panic!(
@@ -198,6 +242,7 @@ impl TableStore {
             );
         }
         inner.all_tables_db = None;
+        inner.all_table_names.clear();
         inner.encryption_key = None;
     }
 
@@ -251,8 +296,10 @@ impl TableStore {
         let table_db = TableDB::new(
             table_name.clone(),
             self.clone(),
+            inner.crypto.as_ref().unwrap().clone(),
             db,
             inner.encryption_key.clone(),
+            inner.encryption_key.clone(),
         );
 
         // Keep track of opened DBs

From 01df18c0819b31d27b7ab2bb24c06314c8946daf Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Wed, 24 May 2023 09:58:45 +0100
Subject: [PATCH 53/74] encryption checkpoint

---
 veilid-core/src/table_store/table_db.rs | 107 +++++++++++++++++-------
 1 file changed, 76 insertions(+), 31 deletions(-)

diff --git a/veilid-core/src/table_store/table_db.rs b/veilid-core/src/table_store/table_db.rs
index d85383b2..e28f716e 100644
--- a/veilid-core/src/table_store/table_db.rs
+++ b/veilid-core/src/table_store/table_db.rs
@@ -1,3 +1,5 @@
+use rustls::internal::msgs::handshake::EncryptedExtensions;
+
 use crate::*;
 
 cfg_if! {
@@ -59,7 +61,7 @@ impl TableDB {
         decryption_key: Option<TypedSharedSecret>,
     ) -> Self {
         let encrypt_info = encryption_key.map(|ek| CryptInfo::new(crypto.clone(), ek));
-        let decrypt_info = dcryption_key.map(|dk| CryptInfo::new(crypto.clone(), dk));
+        let decrypt_info = decryption_key.map(|dk| CryptInfo::new(crypto.clone(), dk));
 
         Self {
             unlocked_inner: Arc::new(TableDBUnlockedInner {
@@ -89,15 +91,17 @@ impl TableDB {
         db.num_columns().map_err(VeilidAPIError::from)
     }
 
+    /// Encrypt buffer using encrypt key and prepend nonce to output
     fn maybe_encrypt(&self, data: &[u8]) -> Vec<u8> {
         if let Some(ei) = &self.unlocked_inner.encrypt_info {
             let mut out = unsafe { unaligned_u8_vec_uninit(NONCE_LENGTH + data.len()) };
             random_bytes(&mut out[0..NONCE_LENGTH]);
 
+            let (nonce, encout) = out.split_at_mut(NONCE_LENGTH);
             ei.vcrypto.crypt_b2b_no_auth(
                 data,
-                &mut out[NONCE_LENGTH..],
-                &out[0..NONCE_LENGTH],
+                encout,
+                (nonce as &[u8]).try_into().unwrap(),
                 &ei.key,
             );
             out
@@ -106,33 +110,31 @@ impl TableDB {
         }
     }
 
-    fn maybe_decrypt(&self, data: &[u8]) -> VeilidAPIResult<Vec<u8>> {
+    /// Decrypt buffer using decrypt key with nonce prepended to input
+    fn maybe_decrypt(&self, data: &[u8]) -> Vec<u8> {
         if let Some(di) = &self.unlocked_inner.decrypt_info {
-            if data.len() <= NONCE_LENGTH {
-                return Err(VeilidAPIError::internal("data too short"));
-            }
-            xxxx make decrypt
-            let mut out = unsafe { unaligned_u8_vec_uninit(NONCE_LENGTH + data.len()) };
-            random_bytes(&mut out[0..NONCE_LENGTH]);
+            assert!(data.len() > NONCE_LENGTH);
 
-            ei.vcrypto.crypt_b2b_no_auth(
-                data,
-                &mut out[NONCE_LENGTH..],
-                &out[0..NONCE_LENGTH],
-                &ei.key,
+            let mut out = unsafe { unaligned_u8_vec_uninit(data.len() - NONCE_LENGTH) };
+
+            di.vcrypto.crypt_b2b_no_auth(
+                &data[NONCE_LENGTH..],
+                &mut out,
+                (&data[0..NONCE_LENGTH]).try_into().unwrap(),
+                &di.key,
             );
             out
         } else {
-            Ok(data.to_vec())
+            data.to_vec()
         }
     }
 
     /// Get the list of keys in a column of the TableDB
     pub async fn get_keys(&self, col: u32) -> VeilidAPIResult<Vec<Vec<u8>>> {
         let db = self.unlocked_inner.database.clone();
-        let mut out: Vec<Box<[u8]>> = Vec::new();
+        let mut out = Vec::new();
         db.iter(col, None, |kv| {
-            out.push(kv.0.clone().into_boxed_slice());
+            out.push(self.maybe_decrypt(&kv.0));
             Ok(Option::<()>::None)
         })
         .await
@@ -150,7 +152,7 @@ impl TableDB {
     pub async fn store(&self, col: u32, key: &[u8], value: &[u8]) -> VeilidAPIResult<()> {
         let db = self.unlocked_inner.database.clone();
         let mut dbt = db.transaction();
-        dbt.put(col, key, value);
+        dbt.put(col, self.maybe_encrypt(key), self.maybe_encrypt(value));
         db.write(dbt).await.map_err(VeilidAPIError::generic)
     }
 
@@ -163,7 +165,11 @@ impl TableDB {
 
         let db = self.unlocked_inner.database.clone();
         let mut dbt = db.transaction();
-        dbt.put(col, key, v.as_slice());
+        dbt.put(
+            col,
+            self.maybe_encrypt(key),
+            self.maybe_encrypt(v.as_slice()),
+        );
         db.write(dbt).await.map_err(VeilidAPIError::generic)
     }
 
@@ -176,14 +182,23 @@ impl TableDB {
 
         let db = self.unlocked_inner.database.clone();
         let mut dbt = db.transaction();
-        dbt.put(col, key, v.as_slice());
+        dbt.put(
+            col,
+            self.maybe_encrypt(key),
+            self.maybe_encrypt(v.as_slice()),
+        );
         db.write(dbt).await.map_err(VeilidAPIError::generic)
     }
 
     /// Read a key from a column in the TableDB immediately.
     pub async fn load(&self, col: u32, key: &[u8]) -> VeilidAPIResult<Option<Vec<u8>>> {
         let db = self.unlocked_inner.database.clone();
-        db.get(col, key).await.map_err(VeilidAPIError::from)
+        let ekey = self.maybe_encrypt(key);
+        Ok(db
+            .get(col, &ekey)
+            .await
+            .map_err(VeilidAPIError::from)?
+            .map(|v| self.maybe_decrypt(&v)))
     }
 
     /// Read an rkyv key from a column in the TableDB immediately
@@ -194,7 +209,9 @@ impl TableDB {
             for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
         <T as RkyvArchive>::Archived: RkyvDeserialize<T, VeilidSharedDeserializeMap>,
     {
-        let out = match self.load(col, key).await? {
+        let ekey = self.maybe_encrypt(key);
+
+        let out = match self.load(col, &ekey).await?.map(|v| self.maybe_decrypt(&v)) {
             Some(v) => Some(from_rkyv(v)?),
             None => None,
         };
@@ -206,7 +223,9 @@ impl TableDB {
     where
         T: for<'de> serde::Deserialize<'de>,
     {
-        let out = match self.load(col, key).await? {
+        let ekey = self.maybe_encrypt(key);
+
+        let out = match self.load(col, &ekey).await?.map(|v| self.maybe_decrypt(&v)) {
             Some(v) => Some(serde_json::from_slice(&v).map_err(VeilidAPIError::internal)?),
             None => None,
         };
@@ -215,8 +234,14 @@ impl TableDB {
 
     /// Delete key with from a column in the TableDB
     pub async fn delete(&self, col: u32, key: &[u8]) -> VeilidAPIResult<Option<Vec<u8>>> {
+        let ekey = self.maybe_encrypt(key);
+
         let db = self.unlocked_inner.database.clone();
-        let old_value = db.delete(col, key).await.map_err(VeilidAPIError::from)?;
+        let old_value = db
+            .delete(col, &ekey)
+            .await
+            .map_err(VeilidAPIError::from)?
+            .map(|v| self.maybe_decrypt(&v));
         Ok(old_value)
     }
 
@@ -228,8 +253,15 @@ impl TableDB {
             for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
         <T as RkyvArchive>::Archived: RkyvDeserialize<T, VeilidSharedDeserializeMap>,
     {
+        let ekey = self.maybe_encrypt(key);
+
         let db = self.unlocked_inner.database.clone();
-        let old_value = match db.delete(col, key).await.map_err(VeilidAPIError::from)? {
+        let old_value = match db
+            .delete(col, &ekey)
+            .await
+            .map_err(VeilidAPIError::from)?
+            .map(|v| self.maybe_decrypt(&v))
+        {
             Some(v) => Some(from_rkyv(v)?),
             None => None,
         };
@@ -241,13 +273,29 @@ impl TableDB {
     where
         T: for<'de> serde::Deserialize<'de>,
     {
+        let ekey = self.maybe_encrypt(key);
+
         let db = self.unlocked_inner.database.clone();
-        let old_value = match db.delete(col, key).await.map_err(VeilidAPIError::from)? {
+        let old_value = match db
+            .delete(col, &ekey)
+            .await
+            .map_err(VeilidAPIError::from)?
+            .map(|v| self.maybe_decrypt(&v))
+        {
             Some(v) => Some(serde_json::from_slice(&v).map_err(VeilidAPIError::internal)?),
             None => None,
         };
         Ok(old_value)
     }
+
+    /// Perform commit
+    async fn do_commit(&self, dbt: TableDBTransaction) -> VeilidAPIResult<()> {
+        let db = self.unlocked_inner.database.clone();
+        xxx translate transaction to encrypt
+        db.write(dbt)
+            .await
+            .map_err(|e| VeilidAPIError::generic(format!("commit failed, transaction lost: {}", e)))
+    }
 }
 
 ////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
@@ -294,10 +342,7 @@ impl TableDBTransaction {
                 .take()
                 .ok_or_else(|| VeilidAPIError::generic("transaction already completed"))?
         };
-        let db = self.db.unlocked_inner.database.clone();
-        db.write(dbt)
-            .await
-            .map_err(|e| VeilidAPIError::generic(format!("commit failed, transaction lost: {}", e)))
+        self.db.do_commit(dbt).await
     }
 
     /// Rollback the transaction. Does nothing to the TableDB.

From 4994f540395a9acd3191dd5fc2629cd09f3bb3a8 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Thu, 25 May 2023 00:39:44 +0100
Subject: [PATCH 54/74] table store encryption

---
 veilid-core/src/crypto/types/keypair.rs |   4 +-
 veilid-core/src/table_store/table_db.rs | 130 +++++++++++-------------
 2 files changed, 58 insertions(+), 76 deletions(-)

diff --git a/veilid-core/src/crypto/types/keypair.rs b/veilid-core/src/crypto/types/keypair.rs
index 253f84ea..0ea30b23 100644
--- a/veilid-core/src/crypto/types/keypair.rs
+++ b/veilid-core/src/crypto/types/keypair.rs
@@ -56,9 +56,7 @@ impl fmt::Display for KeyPair {
 
 impl fmt::Debug for KeyPair {
     fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
-        write!(f, concat!(stringify!($name), "("))?;
-        write!(f, "{}", self.encode())?;
-        write!(f, ")")
+        write!(f, "KeyPair({})", self.encode())
     }
 }
 
diff --git a/veilid-core/src/table_store/table_db.rs b/veilid-core/src/table_store/table_db.rs
index e28f716e..7b90509e 100644
--- a/veilid-core/src/table_store/table_db.rs
+++ b/veilid-core/src/table_store/table_db.rs
@@ -1,5 +1,3 @@
-use rustls::internal::msgs::handshake::EncryptedExtensions;
-
 use crate::*;
 
 cfg_if! {
@@ -27,7 +25,6 @@ impl CryptInfo {
 pub struct TableDBUnlockedInner {
     table: String,
     table_store: TableStore,
-    crypto: Crypto,
     database: Database,
     // Encryption and decryption key will be the same unless configured for an in-place migration
     encrypt_info: Option<CryptInfo>,
@@ -67,7 +64,6 @@ impl TableDB {
             unlocked_inner: Arc::new(TableDBUnlockedInner {
                 table,
                 table_store,
-                crypto,
                 database,
                 encrypt_info,
                 decrypt_info,
@@ -92,10 +88,26 @@ impl TableDB {
     }
 
     /// Encrypt buffer using encrypt key and prepend nonce to output
-    fn maybe_encrypt(&self, data: &[u8]) -> Vec<u8> {
+    /// Keyed nonces are unique because keys must be unique
+    /// Normally they must be sequential or random, but the critical
+    /// requirement is that they are different for each encryption
+    /// but if the contents are guaranteed to be unique, then a nonce
+    /// can be generated from the hash of the contents and the encryption key itself
+    fn maybe_encrypt(&self, data: &[u8], keyed_nonce: bool) -> Vec<u8> {
         if let Some(ei) = &self.unlocked_inner.encrypt_info {
             let mut out = unsafe { unaligned_u8_vec_uninit(NONCE_LENGTH + data.len()) };
-            random_bytes(&mut out[0..NONCE_LENGTH]);
+
+            if keyed_nonce {
+                // Key content nonce
+                let mut noncedata = Vec::with_capacity(data.len() + PUBLIC_KEY_LENGTH);
+                noncedata.extend_from_slice(data);
+                noncedata.extend_from_slice(&ei.key.bytes);
+                let noncehash = ei.vcrypto.generate_hash(&noncedata);
+                out[0..NONCE_LENGTH].copy_from_slice(&noncehash[0..NONCE_LENGTH])
+            } else {
+                // Random nonce
+                random_bytes(&mut out[0..NONCE_LENGTH]);
+            }
 
             let (nonce, encout) = out.split_at_mut(NONCE_LENGTH);
             ei.vcrypto.crypt_b2b_no_auth(
@@ -133,8 +145,8 @@ impl TableDB {
     pub async fn get_keys(&self, col: u32) -> VeilidAPIResult<Vec<Vec<u8>>> {
         let db = self.unlocked_inner.database.clone();
         let mut out = Vec::new();
-        db.iter(col, None, |kv| {
-            out.push(self.maybe_decrypt(&kv.0));
+        db.iter_keys(col, None, |k| {
+            out.push(self.maybe_decrypt(k));
             Ok(Option::<()>::None)
         })
         .await
@@ -152,7 +164,11 @@ impl TableDB {
     pub async fn store(&self, col: u32, key: &[u8], value: &[u8]) -> VeilidAPIResult<()> {
         let db = self.unlocked_inner.database.clone();
         let mut dbt = db.transaction();
-        dbt.put(col, self.maybe_encrypt(key), self.maybe_encrypt(value));
+        dbt.put(
+            col,
+            self.maybe_encrypt(key, true),
+            self.maybe_encrypt(value, false),
+        );
         db.write(dbt).await.map_err(VeilidAPIError::generic)
     }
 
@@ -161,16 +177,8 @@ impl TableDB {
     where
         T: RkyvSerialize<DefaultVeilidRkyvSerializer>,
     {
-        let v = to_rkyv(value)?;
-
-        let db = self.unlocked_inner.database.clone();
-        let mut dbt = db.transaction();
-        dbt.put(
-            col,
-            self.maybe_encrypt(key),
-            self.maybe_encrypt(v.as_slice()),
-        );
-        db.write(dbt).await.map_err(VeilidAPIError::generic)
+        let value = to_rkyv(value)?;
+        self.store(col, key, &value).await
     }
 
     /// Store a key in json format with a value in a column in the TableDB. Performs a single transaction immediately.
@@ -178,24 +186,16 @@ impl TableDB {
     where
         T: serde::Serialize,
     {
-        let v = serde_json::to_vec(value).map_err(VeilidAPIError::internal)?;
-
-        let db = self.unlocked_inner.database.clone();
-        let mut dbt = db.transaction();
-        dbt.put(
-            col,
-            self.maybe_encrypt(key),
-            self.maybe_encrypt(v.as_slice()),
-        );
-        db.write(dbt).await.map_err(VeilidAPIError::generic)
+        let value = serde_json::to_vec(value).map_err(VeilidAPIError::internal)?;
+        self.store(col, key, &value).await
     }
 
     /// Read a key from a column in the TableDB immediately.
     pub async fn load(&self, col: u32, key: &[u8]) -> VeilidAPIResult<Option<Vec<u8>>> {
         let db = self.unlocked_inner.database.clone();
-        let ekey = self.maybe_encrypt(key);
+        let key = self.maybe_encrypt(key, true);
         Ok(db
-            .get(col, &ekey)
+            .get(col, &key)
             .await
             .map_err(VeilidAPIError::from)?
             .map(|v| self.maybe_decrypt(&v)))
@@ -209,9 +209,7 @@ impl TableDB {
             for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
         <T as RkyvArchive>::Archived: RkyvDeserialize<T, VeilidSharedDeserializeMap>,
     {
-        let ekey = self.maybe_encrypt(key);
-
-        let out = match self.load(col, &ekey).await?.map(|v| self.maybe_decrypt(&v)) {
+        let out = match self.load(col, key).await? {
             Some(v) => Some(from_rkyv(v)?),
             None => None,
         };
@@ -223,9 +221,7 @@ impl TableDB {
     where
         T: for<'de> serde::Deserialize<'de>,
     {
-        let ekey = self.maybe_encrypt(key);
-
-        let out = match self.load(col, &ekey).await?.map(|v| self.maybe_decrypt(&v)) {
+        let out = match self.load(col, key).await? {
             Some(v) => Some(serde_json::from_slice(&v).map_err(VeilidAPIError::internal)?),
             None => None,
         };
@@ -234,11 +230,11 @@ impl TableDB {
 
     /// Delete key with from a column in the TableDB
     pub async fn delete(&self, col: u32, key: &[u8]) -> VeilidAPIResult<Option<Vec<u8>>> {
-        let ekey = self.maybe_encrypt(key);
+        let key = self.maybe_encrypt(key, true);
 
         let db = self.unlocked_inner.database.clone();
         let old_value = db
-            .delete(col, &ekey)
+            .delete(col, &key)
             .await
             .map_err(VeilidAPIError::from)?
             .map(|v| self.maybe_decrypt(&v));
@@ -253,15 +249,7 @@ impl TableDB {
             for<'t> CheckBytes<rkyv::validation::validators::DefaultValidator<'t>>,
         <T as RkyvArchive>::Archived: RkyvDeserialize<T, VeilidSharedDeserializeMap>,
     {
-        let ekey = self.maybe_encrypt(key);
-
-        let db = self.unlocked_inner.database.clone();
-        let old_value = match db
-            .delete(col, &ekey)
-            .await
-            .map_err(VeilidAPIError::from)?
-            .map(|v| self.maybe_decrypt(&v))
-        {
+        let old_value = match self.delete(col, key).await? {
             Some(v) => Some(from_rkyv(v)?),
             None => None,
         };
@@ -273,29 +261,12 @@ impl TableDB {
     where
         T: for<'de> serde::Deserialize<'de>,
     {
-        let ekey = self.maybe_encrypt(key);
-
-        let db = self.unlocked_inner.database.clone();
-        let old_value = match db
-            .delete(col, &ekey)
-            .await
-            .map_err(VeilidAPIError::from)?
-            .map(|v| self.maybe_decrypt(&v))
-        {
+        let old_value = match self.delete(col, key).await? {
             Some(v) => Some(serde_json::from_slice(&v).map_err(VeilidAPIError::internal)?),
             None => None,
         };
         Ok(old_value)
     }
-
-    /// Perform commit
-    async fn do_commit(&self, dbt: TableDBTransaction) -> VeilidAPIResult<()> {
-        let db = self.unlocked_inner.database.clone();
-        xxx translate transaction to encrypt
-        db.write(dbt)
-            .await
-            .map_err(|e| VeilidAPIError::generic(format!("commit failed, transaction lost: {}", e)))
-    }
 }
 
 ////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
@@ -342,7 +313,11 @@ impl TableDBTransaction {
                 .take()
                 .ok_or_else(|| VeilidAPIError::generic("transaction already completed"))?
         };
-        self.db.do_commit(dbt).await
+
+        let db = self.db.unlocked_inner.database.clone();
+        db.write(dbt)
+            .await
+            .map_err(|e| VeilidAPIError::generic(format!("commit failed, transaction lost: {}", e)))
     }
 
     /// Rollback the transaction. Does nothing to the TableDB.
@@ -353,8 +328,10 @@ impl TableDBTransaction {
 
     /// Store a key with a value in a column in the TableDB
     pub fn store(&self, col: u32, key: &[u8], value: &[u8]) {
+        let key = self.db.maybe_encrypt(key, true);
+        let value = self.db.maybe_encrypt(value, false);
         let mut inner = self.inner.lock();
-        inner.dbt.as_mut().unwrap().put(col, key, value);
+        inner.dbt.as_mut().unwrap().put_owned(col, key, value);
     }
 
     /// Store a key in rkyv format with a value in a column in the TableDB
@@ -362,9 +339,12 @@ impl TableDBTransaction {
     where
         T: RkyvSerialize<DefaultVeilidRkyvSerializer>,
     {
-        let v = to_rkyv(value)?;
+        let value = to_rkyv(value)?;
+        let key = self.db.maybe_encrypt(key, true);
+        let value = self.db.maybe_encrypt(&value, false);
+
         let mut inner = self.inner.lock();
-        inner.dbt.as_mut().unwrap().put(col, key, v.as_slice());
+        inner.dbt.as_mut().unwrap().put_owned(col, key, value);
         Ok(())
     }
 
@@ -373,16 +353,20 @@ impl TableDBTransaction {
     where
         T: serde::Serialize,
     {
-        let v = serde_json::to_vec(value).map_err(VeilidAPIError::internal)?;
+        let value = serde_json::to_vec(value).map_err(VeilidAPIError::internal)?;
+        let key = self.db.maybe_encrypt(key, true);
+        let value = self.db.maybe_encrypt(&value, false);
+
         let mut inner = self.inner.lock();
-        inner.dbt.as_mut().unwrap().put(col, key, v.as_slice());
+        inner.dbt.as_mut().unwrap().put_owned(col, key, value);
         Ok(())
     }
 
     /// Delete key with from a column in the TableDB
     pub fn delete(&self, col: u32, key: &[u8]) {
+        let key = self.db.maybe_encrypt(key, true);
         let mut inner = self.inner.lock();
-        inner.dbt.as_mut().unwrap().delete(col, key);
+        inner.dbt.as_mut().unwrap().delete_owned(col, key);
     }
 }
 

From 1654d03ad22f193269e9a83361247d75240c24cd Mon Sep 17 00:00:00 2001
From: Teknique <teknique@honeypot.net>
Date: Tue, 23 May 2023 11:03:46 -0700
Subject: [PATCH 55/74] Added 1st simple rkyv serializer test

---
 veilid-core/src/tests/mod.rs                     |  1 +
 veilid-core/src/tests/native/mod.rs              | 10 ++++++++++
 veilid-core/src/veilid_api/mod.rs                |  2 ++
 veilid-core/src/veilid_api/tests/mod.rs          |  3 +++
 .../src/veilid_api/tests/test_serialize_rkyv.rs  | 16 ++++++++++++++++
 5 files changed, 32 insertions(+)
 create mode 100644 veilid-core/src/veilid_api/tests/mod.rs
 create mode 100644 veilid-core/src/veilid_api/tests/test_serialize_rkyv.rs

diff --git a/veilid-core/src/tests/mod.rs b/veilid-core/src/tests/mod.rs
index 2a050ac5..609182dd 100644
--- a/veilid-core/src/tests/mod.rs
+++ b/veilid-core/src/tests/mod.rs
@@ -12,3 +12,4 @@ use super::*;
 pub use common::*;
 pub use crypto::tests::*;
 pub use network_manager::tests::*;
+pub use veilid_api::tests::*;
diff --git a/veilid-core/src/tests/native/mod.rs b/veilid-core/src/tests/native/mod.rs
index d6fa1cfa..f7fcef81 100644
--- a/veilid-core/src/tests/native/mod.rs
+++ b/veilid-core/src/tests/native/mod.rs
@@ -3,6 +3,7 @@
 use crate::crypto::tests::*;
 use crate::network_manager::tests::*;
 use crate::tests::common::*;
+use crate::veilid_api::tests::*;
 use crate::*;
 
 ///////////////////////////////////////////////////////////////////////////
@@ -163,5 +164,14 @@ cfg_if! {
             })
         }
 
+        #[test]
+        #[serial]
+        fn run_test_serialize_rkyv() {
+            setup();
+            block_on(async {
+                test_serialize_rkyv::test_all().await;
+            })
+        }
+
     }
 }
diff --git a/veilid-core/src/veilid_api/mod.rs b/veilid-core/src/veilid_api/mod.rs
index eb4cb312..d046b71f 100644
--- a/veilid-core/src/veilid_api/mod.rs
+++ b/veilid-core/src/veilid_api/mod.rs
@@ -7,6 +7,8 @@ mod routing_context;
 mod serialize_helpers;
 mod types;
 
+pub mod tests;
+
 pub use api::*;
 pub use debug::*;
 pub use error::*;
diff --git a/veilid-core/src/veilid_api/tests/mod.rs b/veilid-core/src/veilid_api/tests/mod.rs
new file mode 100644
index 00000000..97891419
--- /dev/null
+++ b/veilid-core/src/veilid_api/tests/mod.rs
@@ -0,0 +1,3 @@
+pub mod test_serialize_rkyv;
+
+use super::*;
diff --git a/veilid-core/src/veilid_api/tests/test_serialize_rkyv.rs b/veilid-core/src/veilid_api/tests/test_serialize_rkyv.rs
new file mode 100644
index 00000000..0566f7b7
--- /dev/null
+++ b/veilid-core/src/veilid_api/tests/test_serialize_rkyv.rs
@@ -0,0 +1,16 @@
+use crate::*;
+
+pub async fn test_simple_string() {
+    let plain = "basic string".to_string();
+    let serialized = b"basic string\x0c\x00\x00\x00\xf4\xff\xff\xff".to_vec();
+
+    let a = to_rkyv(&plain);
+    assert_eq!(a.unwrap(), serialized);
+
+    let b = from_rkyv::<String>(serialized);
+    assert_eq!(b.unwrap(), plain);
+}
+
+pub async fn test_all() {
+    test_simple_string().await;
+}

From f46fb878646bff944c94dd68d67e4bee38814c48 Mon Sep 17 00:00:00 2001
From: Teknique <teknique@honeypot.net>
Date: Tue, 23 May 2023 11:04:36 -0700
Subject: [PATCH 56/74] Remove extra parens that annoy `cargo check`

---
 veilid-core/src/network_manager/connection_table.rs | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/veilid-core/src/network_manager/connection_table.rs b/veilid-core/src/network_manager/connection_table.rs
index 0a09eb21..b0879150 100644
--- a/veilid-core/src/network_manager/connection_table.rs
+++ b/veilid-core/src/network_manager/connection_table.rs
@@ -187,7 +187,7 @@ impl ConnectionTable {
     pub fn get_last_connection_by_remote(&self, remote: PeerAddress) -> Option<ConnectionHandle> {
         let mut inner = self.inner.lock();
 
-        let id = inner.ids_by_remote.get(&remote).map(|v| v[(v.len() - 1)])?;
+        let id = inner.ids_by_remote.get(&remote).map(|v| v[v.len() - 1])?;
         let protocol_index = Self::protocol_to_index(remote.protocol_type());
         let out = inner.conn_by_id[protocol_index].get(&id).unwrap();
         Some(out.get_handle())

From f7c5154fab25d0d398852209d88ad2cb824d13ec Mon Sep 17 00:00:00 2001
From: Teknique <teknique@honeypot.net>
Date: Wed, 24 May 2023 16:54:07 -0700
Subject: [PATCH 57/74] Basic framework for testing RoutingTable load/save

---
 veilid-core/src/routing_table/mod.rs          | 25 +++++-
 veilid-core/src/routing_table/tests/mod.rs    |  3 +
 .../src/routing_table/tests/test_serialize.rs | 80 +++++++++++++++++++
 veilid-core/src/tests/mod.rs                  |  1 +
 veilid-core/src/tests/native/mod.rs           |  9 +++
 5 files changed, 115 insertions(+), 3 deletions(-)
 create mode 100644 veilid-core/src/routing_table/tests/mod.rs
 create mode 100644 veilid-core/src/routing_table/tests/test_serialize.rs

diff --git a/veilid-core/src/routing_table/mod.rs b/veilid-core/src/routing_table/mod.rs
index 04e21ee5..3665c3c9 100644
--- a/veilid-core/src/routing_table/mod.rs
+++ b/veilid-core/src/routing_table/mod.rs
@@ -13,6 +13,8 @@ mod stats_accounting;
 mod tasks;
 mod types;
 
+pub mod tests;
+
 use super::*;
 
 use crate::crypto::*;
@@ -290,8 +292,8 @@ impl RoutingTable {
         debug!("finished routing table terminate");
     }
 
-    /// Serialize routing table to table store
-    async fn save_buckets(&self) -> EyreResult<()> {
+    /// Serialize the routing table.
+    fn serialized_buckets(&self) -> EyreResult<(BTreeMap<CryptoKind, Vec<Vec<u8>>>, Vec<Vec<u8>>)> {
         // Since entries are shared by multiple buckets per cryptokind
         // we need to get the list of all unique entries when serializing
         let mut all_entries: Vec<Arc<BucketEntry>> = Vec::new();
@@ -319,6 +321,13 @@ impl RoutingTable {
             all_entry_bytes.push(entry_bytes);
         }
 
+        Ok((serialized_bucket_map, all_entry_bytes))
+    }
+
+    /// Write the serialized routing table to the table store.
+    async fn save_buckets(&self) -> EyreResult<()> {
+        let (serialized_bucket_map, all_entry_bytes) = self.serialized_buckets()?;
+
         let table_store = self.unlocked_inner.network_manager().table_store();
         let tdb = table_store.open("routing_table", 1).await?;
         let dbx = tdb.transact();
@@ -333,7 +342,6 @@ impl RoutingTable {
         dbx.commit().await?;
         Ok(())
     }
-
     /// Deserialize routing table from table store
     async fn load_buckets(&self) -> EyreResult<()> {
         // Deserialize bucket map and all entries from the table store
@@ -350,7 +358,18 @@ impl RoutingTable {
 
         // Reconstruct all entries
         let inner = &mut *self.inner.write();
+        self.populate_routing_table(inner, serialized_bucket_map, all_entry_bytes)?;
 
+        Ok(())
+    }
+
+    /// Write the deserialized table store data to the routing table.
+    pub fn populate_routing_table(
+        &self,
+        inner: &mut RoutingTableInner,
+        serialized_bucket_map: BTreeMap<CryptoKind, Vec<Vec<u8>>>,
+        all_entry_bytes: Vec<Vec<u8>>,
+    ) -> EyreResult<()> {
         let mut all_entries: Vec<Arc<BucketEntry>> = Vec::with_capacity(all_entry_bytes.len());
         for entry_bytes in all_entry_bytes {
             let entryinner =
diff --git a/veilid-core/src/routing_table/tests/mod.rs b/veilid-core/src/routing_table/tests/mod.rs
new file mode 100644
index 00000000..8205daa2
--- /dev/null
+++ b/veilid-core/src/routing_table/tests/mod.rs
@@ -0,0 +1,3 @@
+pub mod test_serialize;
+
+use super::*;
diff --git a/veilid-core/src/routing_table/tests/test_serialize.rs b/veilid-core/src/routing_table/tests/test_serialize.rs
new file mode 100644
index 00000000..14df616c
--- /dev/null
+++ b/veilid-core/src/routing_table/tests/test_serialize.rs
@@ -0,0 +1,80 @@
+use crate::*;
+
+fn fake_routing_table() -> routing_table::RoutingTable {
+    let veilid_config = VeilidConfig::new();
+    let block_store = BlockStore::new(veilid_config.clone());
+    let protected_store = ProtectedStore::new(veilid_config.clone());
+    let table_store = TableStore::new(veilid_config.clone());
+    let crypto = Crypto::new(
+        veilid_config.clone(),
+        table_store.clone(),
+        protected_store.clone(),
+    );
+    let storage_manager = storage_manager::StorageManager::new(
+        veilid_config.clone(),
+        crypto.clone(),
+        protected_store.clone(),
+        table_store.clone(),
+        block_store.clone(),
+    );
+    let network_manager = network_manager::NetworkManager::new(
+        veilid_config.clone(),
+        storage_manager,
+        protected_store.clone(),
+        table_store.clone(),
+        block_store.clone(),
+        crypto.clone(),
+    );
+    routing_table::RoutingTable::new(network_manager)
+}
+
+pub async fn test_routingtable_buckets_round_trip() {
+    let original = fake_routing_table();
+    let copy = fake_routing_table();
+    original.init().await.unwrap();
+    copy.init().await.unwrap();
+
+    // Add lots of routes to `original` here to exercise all various types.
+
+    let (serialized_bucket_map, all_entry_bytes) = original.serialized_buckets().unwrap();
+
+    copy.populate_routing_table(
+        &mut copy.inner.write(),
+        serialized_bucket_map,
+        all_entry_bytes,
+    )
+    .unwrap();
+
+    let original_inner = &*original.inner.read();
+    let copy_inner = &*copy.inner.read();
+
+    let routing_table_keys: Vec<_> = original_inner.buckets.keys().clone().collect();
+    let copy_keys: Vec<_> = copy_inner.buckets.keys().clone().collect();
+
+    assert_eq!(routing_table_keys.len(), copy_keys.len());
+
+    for crypto in routing_table_keys {
+        // The same keys are present in the original and copy RoutingTables.
+        let original_buckets = original_inner.buckets.get(&crypto).unwrap();
+        let copy_buckets = copy_inner.buckets.get(&crypto).unwrap();
+
+        // Recurse into RoutingTable.inner.buckets
+        for (left_buckets, right_buckets) in original_buckets.iter().zip(copy_buckets.iter()) {
+            // Recurse into RoutingTable.inner.buckets.entries
+            for ((left_crypto, left_entries), (right_crypto, right_entries)) in
+                left_buckets.entries().zip(right_buckets.entries())
+            {
+                assert_eq!(left_crypto, right_crypto);
+
+                assert_eq!(
+                    format!("{:?}", left_entries),
+                    format!("{:?}", right_entries)
+                );
+            }
+        }
+    }
+}
+
+pub async fn test_all() {
+    test_routingtable_buckets_round_trip().await;
+}
diff --git a/veilid-core/src/tests/mod.rs b/veilid-core/src/tests/mod.rs
index 609182dd..8e9d815f 100644
--- a/veilid-core/src/tests/mod.rs
+++ b/veilid-core/src/tests/mod.rs
@@ -12,4 +12,5 @@ use super::*;
 pub use common::*;
 pub use crypto::tests::*;
 pub use network_manager::tests::*;
+pub use routing_table::tests::*;
 pub use veilid_api::tests::*;
diff --git a/veilid-core/src/tests/native/mod.rs b/veilid-core/src/tests/native/mod.rs
index f7fcef81..57855174 100644
--- a/veilid-core/src/tests/native/mod.rs
+++ b/veilid-core/src/tests/native/mod.rs
@@ -2,6 +2,7 @@
 #![cfg(not(target_arch = "wasm32"))]
 use crate::crypto::tests::*;
 use crate::network_manager::tests::*;
+use crate::routing_table::tests::*;
 use crate::tests::common::*;
 use crate::veilid_api::tests::*;
 use crate::*;
@@ -173,5 +174,13 @@ cfg_if! {
             })
         }
 
+        #[test]
+        #[serial]
+        fn run_test_routing_table_serialize() {
+            setup();
+            block_on(async {
+                routing_table::tests::test_serialize::test_all().await;
+            })
+        }
     }
 }

From 4d3d549a4a1c9da177a31f33452faeeedde9f739 Mon Sep 17 00:00:00 2001
From: Teknique <teknique@honeypot.net>
Date: Wed, 24 May 2023 17:52:11 -0700
Subject: [PATCH 58/74] TableStore requires a ProtectedStore arg now

---
 veilid-core/src/routing_table/tests/test_serialize.rs | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/veilid-core/src/routing_table/tests/test_serialize.rs b/veilid-core/src/routing_table/tests/test_serialize.rs
index 14df616c..d959ded0 100644
--- a/veilid-core/src/routing_table/tests/test_serialize.rs
+++ b/veilid-core/src/routing_table/tests/test_serialize.rs
@@ -4,7 +4,7 @@ fn fake_routing_table() -> routing_table::RoutingTable {
     let veilid_config = VeilidConfig::new();
     let block_store = BlockStore::new(veilid_config.clone());
     let protected_store = ProtectedStore::new(veilid_config.clone());
-    let table_store = TableStore::new(veilid_config.clone());
+    let table_store = TableStore::new(veilid_config.clone(), protected_store.clone());
     let crypto = Crypto::new(
         veilid_config.clone(),
         table_store.clone(),

From ff711080ab0f17548b890275c889648cb03ae8f3 Mon Sep 17 00:00:00 2001
From: Teknique <teknique@honeypot.net>
Date: Thu, 25 May 2023 09:59:55 -0700
Subject: [PATCH 59/74] Extract RoutingTable inline types

---
 veilid-core/src/routing_table/mod.rs | 14 ++++++++------
 1 file changed, 8 insertions(+), 6 deletions(-)

diff --git a/veilid-core/src/routing_table/mod.rs b/veilid-core/src/routing_table/mod.rs
index 3665c3c9..1d63fcb5 100644
--- a/veilid-core/src/routing_table/mod.rs
+++ b/veilid-core/src/routing_table/mod.rs
@@ -57,6 +57,8 @@ pub struct LowLevelPortInfo {
 }
 pub type RoutingTableEntryFilter<'t> =
     Box<dyn FnMut(&RoutingTableInner, Option<Arc<BucketEntry>>) -> bool + Send + 't>;
+pub type SerializedBuckets = Vec<Vec<u8>>;
+pub type SerializedBucketMap = BTreeMap<CryptoKind, SerializedBuckets>;
 
 #[derive(Clone, Debug, Default, Eq, PartialEq)]
 pub struct RoutingTableHealth {
@@ -293,13 +295,13 @@ impl RoutingTable {
     }
 
     /// Serialize the routing table.
-    fn serialized_buckets(&self) -> EyreResult<(BTreeMap<CryptoKind, Vec<Vec<u8>>>, Vec<Vec<u8>>)> {
+    fn serialized_buckets(&self) -> EyreResult<(SerializedBucketMap, SerializedBuckets)> {
         // Since entries are shared by multiple buckets per cryptokind
         // we need to get the list of all unique entries when serializing
         let mut all_entries: Vec<Arc<BucketEntry>> = Vec::new();
 
         // Serialize all buckets and get map of entries
-        let mut serialized_bucket_map: BTreeMap<CryptoKind, Vec<Vec<u8>>> = BTreeMap::new();
+        let mut serialized_bucket_map: SerializedBucketMap = BTreeMap::new();
         {
             let mut entry_map: HashMap<*const BucketEntry, u32> = HashMap::new();
             let inner = &*self.inner.read();
@@ -347,11 +349,11 @@ impl RoutingTable {
         // Deserialize bucket map and all entries from the table store
         let tstore = self.unlocked_inner.network_manager().table_store();
         let tdb = tstore.open("routing_table", 1).await?;
-        let Some(serialized_bucket_map): Option<BTreeMap<CryptoKind, Vec<Vec<u8>>>> = tdb.load_rkyv(0, b"serialized_bucket_map").await? else {
+        let Some(serialized_bucket_map): Option<SerializedBucketMap> = tdb.load_rkyv(0, b"serialized_bucket_map").await? else {
             log_rtab!(debug "no bucket map in saved routing table");
             return Ok(());
         };
-        let Some(all_entry_bytes): Option<Vec<Vec<u8>>> = tdb.load_rkyv(0, b"all_entry_bytes").await? else {
+        let Some(all_entry_bytes): Option<SerializedBuckets> = tdb.load_rkyv(0, b"all_entry_bytes").await? else {
             log_rtab!(debug "no all_entry_bytes in saved routing table");
             return Ok(());
         };
@@ -367,8 +369,8 @@ impl RoutingTable {
     pub fn populate_routing_table(
         &self,
         inner: &mut RoutingTableInner,
-        serialized_bucket_map: BTreeMap<CryptoKind, Vec<Vec<u8>>>,
-        all_entry_bytes: Vec<Vec<u8>>,
+        serialized_bucket_map: SerializedBucketMap,
+        all_entry_bytes: SerializedBuckets,
     ) -> EyreResult<()> {
         let mut all_entries: Vec<Arc<BucketEntry>> = Vec::with_capacity(all_entry_bytes.len());
         for entry_bytes in all_entry_bytes {

From a01e5934803326cd2d388218eef3dcde65753903 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Thu, 25 May 2023 18:28:03 +0100
Subject: [PATCH 60/74] reduce dependence on protected store and move keys to
 encrypted table store

---
 veilid-cli/src/client_api_connection.rs       | 12 +--
 veilid-core/src/core_context.rs               | 10 +-
 veilid-core/src/crypto/byte_array_types.rs    |  6 +-
 veilid-core/src/crypto/crypto_system.rs       | 52 +++--------
 veilid-core/src/crypto/envelope.rs            |  6 +-
 veilid-core/src/crypto/mod.rs                 | 10 +-
 veilid-core/src/crypto/none/mod.rs            | 45 +++------
 veilid-core/src/crypto/receipt.rs             | 10 +-
 veilid-core/src/crypto/types/keypair.rs       |  2 +-
 veilid-core/src/crypto/vld0/mod.rs            | 49 +++-------
 veilid-core/src/intf/mod.rs                   |  3 +-
 .../src/network_manager/types/address.rs      |  2 +-
 .../network_manager/types/dial_info/mod.rs    | 10 +-
 .../src/network_manager/types/peer_address.rs |  2 +-
 .../network_manager/types/protocol_type.rs    |  2 +-
 .../network_manager/types/socket_address.rs   |  2 +-
 veilid-core/src/routing_table/privacy.rs      |  8 +-
 .../route_spec_store/route_set_spec_detail.rs |  1 -
 .../route_spec_store_content.rs               | 53 -----------
 .../src/routing_table/types/peer_info.rs      |  2 +-
 .../types/signed_direct_node_info.rs          | 10 +-
 .../routing_table/types/signed_node_info.rs   |  6 +-
 .../types/signed_relayed_node_info.rs         | 10 +-
 veilid-core/src/storage_manager/get_value.rs  |  4 +-
 veilid-core/src/storage_manager/mod.rs        | 18 ++--
 .../src/storage_manager/record_store.rs       | 12 +--
 veilid-core/src/storage_manager/set_value.rs  |  4 +-
 .../storage_manager/storage_manager_inner.rs  | 16 ++--
 .../src/storage_manager/types/record.rs       |  2 +-
 .../types/signed_value_data.rs                |  6 +-
 .../types/signed_value_descriptor.rs          |  6 +-
 veilid-core/src/table_store/table_store.rs    | 11 ++-
 veilid-core/src/veilid_api/api.rs             | 46 +++++-----
 veilid-core/src/veilid_api/debug.rs           | 56 +++++------
 veilid-core/src/veilid_api/routing_context.rs | 41 +++------
 .../serialize_helpers/serialize_json.rs       |  6 +-
 veilid-core/src/veilid_config.rs              | 92 ++++++++-----------
 veilid-server/src/client_api.rs               |  2 +-
 38 files changed, 235 insertions(+), 400 deletions(-)

diff --git a/veilid-cli/src/client_api_connection.rs b/veilid-cli/src/client_api_connection.rs
index 7a79dcd4..b2681257 100644
--- a/veilid-cli/src/client_api_connection.rs
+++ b/veilid-cli/src/client_api_connection.rs
@@ -38,7 +38,7 @@ fn map_to_internal_error<T: ToString>(e: T) -> VeilidAPIError {
 
 fn decode_api_result<T: DeserializeOwned + fmt::Debug>(
     reader: &api_result::Reader,
-) -> Result<T, VeilidAPIError> {
+) -> VeilidAPIResult<T> {
     match reader.which().map_err(map_to_internal_error)? {
         api_result::Which::Ok(v) => {
             let ok_val = v.map_err(map_to_internal_error)?;
@@ -355,7 +355,7 @@ impl ClientApiConnection {
             .map_err(map_to_string)?
             .get_result()
             .map_err(map_to_string)?;
-        let res: Result<(), VeilidAPIError> = decode_api_result(&reader);
+        let res: VeilidAPIResult<()> = decode_api_result(&reader);
         res.map_err(map_to_string)
     }
 
@@ -379,7 +379,7 @@ impl ClientApiConnection {
             .map_err(map_to_string)?
             .get_result()
             .map_err(map_to_string)?;
-        let res: Result<(), VeilidAPIError> = decode_api_result(&reader);
+        let res: VeilidAPIResult<()> = decode_api_result(&reader);
         res.map_err(map_to_string)
     }
 
@@ -422,7 +422,7 @@ impl ClientApiConnection {
             .map_err(map_to_string)?
             .get_result()
             .map_err(map_to_string)?;
-        let res: Result<String, VeilidAPIError> = decode_api_result(&reader);
+        let res: VeilidAPIResult<String> = decode_api_result(&reader);
         res.map_err(map_to_string)
     }
 
@@ -453,7 +453,7 @@ impl ClientApiConnection {
             .map_err(map_to_string)?
             .get_result()
             .map_err(map_to_string)?;
-        let res: Result<(), VeilidAPIError> = decode_api_result(&reader);
+        let res: VeilidAPIResult<()> = decode_api_result(&reader);
         res.map_err(map_to_string)
     }
 
@@ -483,7 +483,7 @@ impl ClientApiConnection {
             .map_err(map_to_string)?
             .get_result()
             .map_err(map_to_string)?;
-        let res: Result<(), VeilidAPIError> = decode_api_result(&reader);
+        let res: VeilidAPIResult<()> = decode_api_result(&reader);
         res.map_err(map_to_string)
     }
 
diff --git a/veilid-core/src/core_context.rs b/veilid-core/src/core_context.rs
index 52983521..97096083 100644
--- a/veilid-core/src/core_context.rs
+++ b/veilid-core/src/core_context.rs
@@ -206,7 +206,7 @@ impl VeilidCoreContext {
     async fn new_with_config_callback(
         update_callback: UpdateCallback,
         config_callback: ConfigCallback,
-    ) -> Result<VeilidCoreContext, VeilidAPIError> {
+    ) -> VeilidAPIResult<VeilidCoreContext> {
         // Set up config from callback
         trace!("setup config with callback");
         let mut config = VeilidConfig::new();
@@ -219,7 +219,7 @@ impl VeilidCoreContext {
     async fn new_with_config_json(
         update_callback: UpdateCallback,
         config_json: String,
-    ) -> Result<VeilidCoreContext, VeilidAPIError> {
+    ) -> VeilidAPIResult<VeilidCoreContext> {
         // Set up config from callback
         trace!("setup config with json");
         let mut config = VeilidConfig::new();
@@ -231,7 +231,7 @@ impl VeilidCoreContext {
     async fn new_common(
         update_callback: UpdateCallback,
         config: VeilidConfig,
-    ) -> Result<VeilidCoreContext, VeilidAPIError> {
+    ) -> VeilidAPIResult<VeilidCoreContext> {
         cfg_if! {
             if #[cfg(target_os = "android")] {
                 if !crate::intf::android::is_android_ready() {
@@ -281,7 +281,7 @@ lazy_static::lazy_static! {
 pub async fn api_startup(
     update_callback: UpdateCallback,
     config_callback: ConfigCallback,
-) -> Result<VeilidAPI, VeilidAPIError> {
+) -> VeilidAPIResult<VeilidAPI> {
     // See if we have an API started up already
     let mut initialized_lock = INITIALIZED.lock().await;
     if *initialized_lock {
@@ -304,7 +304,7 @@ pub async fn api_startup(
 pub async fn api_startup_json(
     update_callback: UpdateCallback,
     config_json: String,
-) -> Result<VeilidAPI, VeilidAPIError> {
+) -> VeilidAPIResult<VeilidAPI> {
     // See if we have an API started up already
     let mut initialized_lock = INITIALIZED.lock().await;
     if *initialized_lock {
diff --git a/veilid-core/src/crypto/byte_array_types.rs b/veilid-core/src/crypto/byte_array_types.rs
index 4e8018c8..8a1f7a01 100644
--- a/veilid-core/src/crypto/byte_array_types.rs
+++ b/veilid-core/src/crypto/byte_array_types.rs
@@ -66,11 +66,11 @@ where
 {
     fn encode(&self) -> String;
     fn encoded_len() -> usize;
-    fn try_decode<S: AsRef<str>>(input: S) -> Result<Self, VeilidAPIError> {
+    fn try_decode<S: AsRef<str>>(input: S) -> VeilidAPIResult<Self> {
         let b = input.as_ref().as_bytes();
         Self::try_decode_bytes(b)
     }
-    fn try_decode_bytes(b: &[u8]) -> Result<Self, VeilidAPIError>;
+    fn try_decode_bytes(b: &[u8]) -> VeilidAPIResult<Self>;
 }
 
 //////////////////////////////////////////////////////////////////////
@@ -180,7 +180,7 @@ macro_rules! byte_array_type {
             fn encoded_len() -> usize {
                 $encoded_size
             }
-            fn try_decode_bytes(b: &[u8]) -> Result<Self, VeilidAPIError> {
+            fn try_decode_bytes(b: &[u8]) -> VeilidAPIResult<Self> {
                 let mut bytes = [0u8; $size];
                 let res = BASE64URL_NOPAD.decode_len(b.len());
                 match res {
diff --git a/veilid-core/src/crypto/crypto_system.rs b/veilid-core/src/crypto/crypto_system.rs
index 70967e04..c2a65695 100644
--- a/veilid-core/src/crypto/crypto_system.rs
+++ b/veilid-core/src/crypto/crypto_system.rs
@@ -6,36 +6,20 @@ pub trait CryptoSystem {
     fn crypto(&self) -> Crypto;
 
     // Cached Operations
-    fn cached_dh(
-        &self,
-        key: &PublicKey,
-        secret: &SecretKey,
-    ) -> Result<SharedSecret, VeilidAPIError>;
+    fn cached_dh(&self, key: &PublicKey, secret: &SecretKey) -> VeilidAPIResult<SharedSecret>;
 
     // Generation
     fn random_bytes(&self, len: u32) -> Vec<u8>;
     fn default_salt_length(&self) -> u32;
-    fn hash_password(&self, password: &[u8], salt: &[u8]) -> Result<String, VeilidAPIError>;
-    fn verify_password(&self, password: &[u8], password_hash: &str)
-        -> Result<bool, VeilidAPIError>;
-    fn derive_shared_secret(
-        &self,
-        password: &[u8],
-        salt: &[u8],
-    ) -> Result<SharedSecret, VeilidAPIError>;
+    fn hash_password(&self, password: &[u8], salt: &[u8]) -> VeilidAPIResult<String>;
+    fn verify_password(&self, password: &[u8], password_hash: &str) -> VeilidAPIResult<bool>;
+    fn derive_shared_secret(&self, password: &[u8], salt: &[u8]) -> VeilidAPIResult<SharedSecret>;
     fn random_nonce(&self) -> Nonce;
     fn random_shared_secret(&self) -> SharedSecret;
-    fn compute_dh(
-        &self,
-        key: &PublicKey,
-        secret: &SecretKey,
-    ) -> Result<SharedSecret, VeilidAPIError>;
+    fn compute_dh(&self, key: &PublicKey, secret: &SecretKey) -> VeilidAPIResult<SharedSecret>;
     fn generate_keypair(&self) -> KeyPair;
     fn generate_hash(&self, data: &[u8]) -> HashDigest;
-    fn generate_hash_reader(
-        &self,
-        reader: &mut dyn std::io::Read,
-    ) -> Result<HashDigest, VeilidAPIError>;
+    fn generate_hash_reader(&self, reader: &mut dyn std::io::Read) -> VeilidAPIResult<HashDigest>;
 
     // Validation
     fn validate_keypair(&self, key: &PublicKey, secret: &SecretKey) -> bool;
@@ -44,24 +28,14 @@ pub trait CryptoSystem {
         &self,
         reader: &mut dyn std::io::Read,
         hash: &HashDigest,
-    ) -> Result<bool, VeilidAPIError>;
+    ) -> VeilidAPIResult<bool>;
 
     // Distance Metric
     fn distance(&self, key1: &CryptoKey, key2: &CryptoKey) -> CryptoKeyDistance;
 
     // Authentication
-    fn sign(
-        &self,
-        key: &PublicKey,
-        secret: &SecretKey,
-        data: &[u8],
-    ) -> Result<Signature, VeilidAPIError>;
-    fn verify(
-        &self,
-        key: &PublicKey,
-        data: &[u8],
-        signature: &Signature,
-    ) -> Result<(), VeilidAPIError>;
+    fn sign(&self, key: &PublicKey, secret: &SecretKey, data: &[u8]) -> VeilidAPIResult<Signature>;
+    fn verify(&self, key: &PublicKey, data: &[u8], signature: &Signature) -> VeilidAPIResult<()>;
 
     // AEAD Encrypt/Decrypt
     fn aead_overhead(&self) -> usize;
@@ -71,28 +45,28 @@ pub trait CryptoSystem {
         nonce: &Nonce,
         shared_secret: &SharedSecret,
         associated_data: Option<&[u8]>,
-    ) -> Result<(), VeilidAPIError>;
+    ) -> VeilidAPIResult<()>;
     fn decrypt_aead(
         &self,
         body: &[u8],
         nonce: &Nonce,
         shared_secret: &SharedSecret,
         associated_data: Option<&[u8]>,
-    ) -> Result<Vec<u8>, VeilidAPIError>;
+    ) -> VeilidAPIResult<Vec<u8>>;
     fn encrypt_in_place_aead(
         &self,
         body: &mut Vec<u8>,
         nonce: &Nonce,
         shared_secret: &SharedSecret,
         associated_data: Option<&[u8]>,
-    ) -> Result<(), VeilidAPIError>;
+    ) -> VeilidAPIResult<()>;
     fn encrypt_aead(
         &self,
         body: &[u8],
         nonce: &Nonce,
         shared_secret: &SharedSecret,
         associated_data: Option<&[u8]>,
-    ) -> Result<Vec<u8>, VeilidAPIError>;
+    ) -> VeilidAPIResult<Vec<u8>>;
 
     // NoAuth Encrypt/Decrypt
     fn crypt_in_place_no_auth(
diff --git a/veilid-core/src/crypto/envelope.rs b/veilid-core/src/crypto/envelope.rs
index 4a043588..c123ea52 100644
--- a/veilid-core/src/crypto/envelope.rs
+++ b/veilid-core/src/crypto/envelope.rs
@@ -66,7 +66,7 @@ impl Envelope {
         }
     }
 
-    pub fn from_signed_data(crypto: Crypto, data: &[u8]) -> Result<Envelope, VeilidAPIError> {
+    pub fn from_signed_data(crypto: Crypto, data: &[u8]) -> VeilidAPIResult<Envelope> {
         // Ensure we are at least the length of the envelope
         // Silent drop here, as we use zero length packets as part of the protocol for hole punching
         if data.len() < MIN_ENVELOPE_SIZE {
@@ -175,7 +175,7 @@ impl Envelope {
         crypto: Crypto,
         data: &[u8],
         node_id_secret: &SecretKey,
-    ) -> Result<Vec<u8>, VeilidAPIError> {
+    ) -> VeilidAPIResult<Vec<u8>> {
         // Get DH secret
         let vcrypto = crypto
             .get(self.crypto_kind)
@@ -197,7 +197,7 @@ impl Envelope {
         crypto: Crypto,
         body: &[u8],
         node_id_secret: &SecretKey,
-    ) -> Result<Vec<u8>, VeilidAPIError> {
+    ) -> VeilidAPIResult<Vec<u8>> {
         // Ensure body isn't too long
         let envelope_size: usize = body.len() + MIN_ENVELOPE_SIZE;
         if envelope_size > MAX_ENVELOPE_SIZE {
diff --git a/veilid-core/src/crypto/mod.rs b/veilid-core/src/crypto/mod.rs
index 816c9515..be5879a3 100644
--- a/veilid-core/src/crypto/mod.rs
+++ b/veilid-core/src/crypto/mod.rs
@@ -146,7 +146,7 @@ impl Crypto {
         if let Err(e) = self
             .unlocked_inner
             .config
-            .init_node_ids(self.clone(), self.unlocked_inner.protected_store.clone())
+            .init_node_ids(self.clone(), table_store.clone())
             .await
         {
             return Err(e).wrap_err("init node id failed");
@@ -267,7 +267,7 @@ impl Crypto {
         node_ids: &[TypedKey],
         data: &[u8],
         typed_signatures: &[TypedSignature],
-    ) -> Result<TypedKeySet, VeilidAPIError> {
+    ) -> VeilidAPIResult<TypedKeySet> {
         let mut out = TypedKeySet::with_capacity(node_ids.len());
         for sig in typed_signatures {
             for nid in node_ids {
@@ -290,7 +290,7 @@ impl Crypto {
         data: &[u8],
         typed_key_pairs: &[TypedKeyPair],
         transform: F,
-    ) -> Result<Vec<R>, VeilidAPIError>
+    ) -> VeilidAPIResult<Vec<R>>
     where
         F: Fn(&TypedKeyPair, Signature) -> R,
     {
@@ -306,7 +306,7 @@ impl Crypto {
 
     /// Generate keypair
     /// Does not require startup/init
-    pub fn generate_keypair(crypto_kind: CryptoKind) -> Result<TypedKeyPair, VeilidAPIError> {
+    pub fn generate_keypair(crypto_kind: CryptoKind) -> VeilidAPIResult<TypedKeyPair> {
         #[cfg(feature = "enable-crypto-vld0")]
         if crypto_kind == CRYPTO_KIND_VLD0 {
             let kp = vld0_generate_keypair();
@@ -327,7 +327,7 @@ impl Crypto {
         vcrypto: &T,
         key: &PublicKey,
         secret: &SecretKey,
-    ) -> Result<SharedSecret, VeilidAPIError> {
+    ) -> VeilidAPIResult<SharedSecret> {
         Ok(
             match self.inner.lock().dh_cache.entry(
                 DHCacheKey {
diff --git a/veilid-core/src/crypto/none/mod.rs b/veilid-core/src/crypto/none/mod.rs
index 9b92783c..b81056b6 100644
--- a/veilid-core/src/crypto/none/mod.rs
+++ b/veilid-core/src/crypto/none/mod.rs
@@ -71,11 +71,7 @@ impl CryptoSystem for CryptoSystemNONE {
     }
 
     // Cached Operations
-    fn cached_dh(
-        &self,
-        key: &PublicKey,
-        secret: &SecretKey,
-    ) -> Result<SharedSecret, VeilidAPIError> {
+    fn cached_dh(&self, key: &PublicKey, secret: &SecretKey) -> VeilidAPIResult<SharedSecret> {
         self.crypto
             .cached_dh_internal::<CryptoSystemNONE>(self, key, secret)
     }
@@ -89,7 +85,7 @@ impl CryptoSystem for CryptoSystemNONE {
     fn default_salt_length(&self) -> u32 {
         4
     }
-    fn hash_password(&self, password: &[u8], salt: &[u8]) -> Result<String, VeilidAPIError> {
+    fn hash_password(&self, password: &[u8], salt: &[u8]) -> VeilidAPIResult<String> {
         if salt.len() < Salt::MIN_LENGTH || salt.len() > Salt::MAX_LENGTH {
             apibail_generic!("invalid salt length");
         }
@@ -99,11 +95,7 @@ impl CryptoSystem for CryptoSystemNONE {
             BASE64URL_NOPAD.encode(password)
         ))
     }
-    fn verify_password(
-        &self,
-        password: &[u8],
-        password_hash: &str,
-    ) -> Result<bool, VeilidAPIError> {
+    fn verify_password(&self, password: &[u8], password_hash: &str) -> VeilidAPIResult<bool> {
         let Some((salt, _)) = password_hash.split_once(":") else {
             apibail_generic!("invalid format");
         };
@@ -113,11 +105,7 @@ impl CryptoSystem for CryptoSystemNONE {
         return Ok(&self.hash_password(password, &salt)? == password_hash);
     }
 
-    fn derive_shared_secret(
-        &self,
-        password: &[u8],
-        salt: &[u8],
-    ) -> Result<SharedSecret, VeilidAPIError> {
+    fn derive_shared_secret(&self, password: &[u8], salt: &[u8]) -> VeilidAPIResult<SharedSecret> {
         if salt.len() < Salt::MIN_LENGTH || salt.len() > Salt::MAX_LENGTH {
             apibail_generic!("invalid salt length");
         }
@@ -136,11 +124,7 @@ impl CryptoSystem for CryptoSystemNONE {
         random_bytes(&mut s).unwrap();
         SharedSecret::new(s)
     }
-    fn compute_dh(
-        &self,
-        key: &PublicKey,
-        secret: &SecretKey,
-    ) -> Result<SharedSecret, VeilidAPIError> {
+    fn compute_dh(&self, key: &PublicKey, secret: &SecretKey) -> VeilidAPIResult<SharedSecret> {
         let s = do_xor_32(&key.bytes, &secret.bytes);
         Ok(SharedSecret::new(s))
     }
@@ -150,10 +134,7 @@ impl CryptoSystem for CryptoSystemNONE {
     fn generate_hash(&self, data: &[u8]) -> PublicKey {
         PublicKey::new(*blake3::hash(data).as_bytes())
     }
-    fn generate_hash_reader(
-        &self,
-        reader: &mut dyn std::io::Read,
-    ) -> Result<PublicKey, VeilidAPIError> {
+    fn generate_hash_reader(&self, reader: &mut dyn std::io::Read) -> VeilidAPIResult<PublicKey> {
         let mut hasher = blake3::Hasher::new();
         std::io::copy(reader, &mut hasher).map_err(VeilidAPIError::generic)?;
         Ok(PublicKey::new(*hasher.finalize().as_bytes()))
@@ -178,7 +159,7 @@ impl CryptoSystem for CryptoSystemNONE {
         &self,
         reader: &mut dyn std::io::Read,
         dht_key: &PublicKey,
-    ) -> Result<bool, VeilidAPIError> {
+    ) -> VeilidAPIResult<bool> {
         let mut hasher = blake3::Hasher::new();
         std::io::copy(reader, &mut hasher).map_err(VeilidAPIError::generic)?;
         let bytes = *hasher.finalize().as_bytes();
@@ -201,7 +182,7 @@ impl CryptoSystem for CryptoSystemNONE {
         dht_key: &PublicKey,
         dht_key_secret: &SecretKey,
         data: &[u8],
-    ) -> Result<Signature, VeilidAPIError> {
+    ) -> VeilidAPIResult<Signature> {
         if !is_bytes_eq_32(&do_xor_32(&dht_key.bytes, &dht_key_secret.bytes), 0xFFu8) {
             return Err(VeilidAPIError::parse_error(
                 "Keypair is invalid",
@@ -224,7 +205,7 @@ impl CryptoSystem for CryptoSystemNONE {
         dht_key: &PublicKey,
         data: &[u8],
         signature: &Signature,
-    ) -> Result<(), VeilidAPIError> {
+    ) -> VeilidAPIResult<()> {
         let mut dig = Blake3Digest512::new();
         dig.update(data);
         let sig = dig.finalize();
@@ -261,7 +242,7 @@ impl CryptoSystem for CryptoSystemNONE {
         nonce: &Nonce,
         shared_secret: &SharedSecret,
         _associated_data: Option<&[u8]>,
-    ) -> Result<(), VeilidAPIError> {
+    ) -> VeilidAPIResult<()> {
         let mut blob = nonce.bytes.to_vec();
         blob.extend_from_slice(&[0u8; 8]);
         let blob = do_xor_32(&blob, &shared_secret.bytes);
@@ -283,7 +264,7 @@ impl CryptoSystem for CryptoSystemNONE {
         nonce: &Nonce,
         shared_secret: &SharedSecret,
         associated_data: Option<&[u8]>,
-    ) -> Result<Vec<u8>, VeilidAPIError> {
+    ) -> VeilidAPIResult<Vec<u8>> {
         let mut out = body.to_vec();
         self.decrypt_in_place_aead(&mut out, nonce, shared_secret, associated_data)
             .map_err(map_to_string)
@@ -297,7 +278,7 @@ impl CryptoSystem for CryptoSystemNONE {
         nonce: &Nonce,
         shared_secret: &SharedSecret,
         _associated_data: Option<&[u8]>,
-    ) -> Result<(), VeilidAPIError> {
+    ) -> VeilidAPIResult<()> {
         let mut blob = nonce.bytes.to_vec();
         blob.extend_from_slice(&[0u8; 8]);
         let blob = do_xor_32(&blob, &shared_secret.bytes);
@@ -312,7 +293,7 @@ impl CryptoSystem for CryptoSystemNONE {
         nonce: &Nonce,
         shared_secret: &SharedSecret,
         associated_data: Option<&[u8]>,
-    ) -> Result<Vec<u8>, VeilidAPIError> {
+    ) -> VeilidAPIResult<Vec<u8>> {
         let mut out = body.to_vec();
         self.encrypt_in_place_aead(&mut out, nonce, shared_secret, associated_data)
             .map_err(map_to_string)
diff --git a/veilid-core/src/crypto/receipt.rs b/veilid-core/src/crypto/receipt.rs
index 50496d04..4f8d4b15 100644
--- a/veilid-core/src/crypto/receipt.rs
+++ b/veilid-core/src/crypto/receipt.rs
@@ -49,7 +49,7 @@ impl Receipt {
         nonce: Nonce,
         sender_id: PublicKey,
         extra_data: D,
-    ) -> Result<Self, VeilidAPIError> {
+    ) -> VeilidAPIResult<Self> {
         assert!(VALID_ENVELOPE_VERSIONS.contains(&version));
         assert!(VALID_CRYPTO_KINDS.contains(&crypto_kind));
 
@@ -68,7 +68,7 @@ impl Receipt {
         })
     }
 
-    pub fn from_signed_data(crypto: Crypto, data: &[u8]) -> Result<Receipt, VeilidAPIError> {
+    pub fn from_signed_data(crypto: Crypto, data: &[u8]) -> VeilidAPIResult<Receipt> {
         // Ensure we are at least the length of the envelope
         if data.len() < MIN_RECEIPT_SIZE {
             apibail_parse_error!("receipt too small", data.len());
@@ -153,11 +153,7 @@ impl Receipt {
         })
     }
 
-    pub fn to_signed_data(
-        &self,
-        crypto: Crypto,
-        secret: &SecretKey,
-    ) -> Result<Vec<u8>, VeilidAPIError> {
+    pub fn to_signed_data(&self, crypto: Crypto, secret: &SecretKey) -> VeilidAPIResult<Vec<u8>> {
         // Ensure extra data isn't too long
         let receipt_size: usize = self.extra_data.len() + MIN_RECEIPT_SIZE;
         if receipt_size > MAX_RECEIPT_SIZE {
diff --git a/veilid-core/src/crypto/types/keypair.rs b/veilid-core/src/crypto/types/keypair.rs
index 0ea30b23..fc53af44 100644
--- a/veilid-core/src/crypto/types/keypair.rs
+++ b/veilid-core/src/crypto/types/keypair.rs
@@ -39,7 +39,7 @@ impl Encodable for KeyPair {
     fn encoded_len() -> usize {
         PublicKey::encoded_len() + 1 + SecretKey::encoded_len()
     }
-    fn try_decode_bytes(b: &[u8]) -> Result<Self, VeilidAPIError> {
+    fn try_decode_bytes(b: &[u8]) -> VeilidAPIResult<Self> {
         if b.len() != Self::encoded_len() {
             apibail_parse_error!("input has wrong encoded length", format!("len={}", b.len()));
         }
diff --git a/veilid-core/src/crypto/vld0/mod.rs b/veilid-core/src/crypto/vld0/mod.rs
index 9bd65567..5d3a30bf 100644
--- a/veilid-core/src/crypto/vld0/mod.rs
+++ b/veilid-core/src/crypto/vld0/mod.rs
@@ -17,7 +17,7 @@ use x25519_dalek as xd;
 const AEAD_OVERHEAD: usize = 16;
 pub const CRYPTO_KIND_VLD0: CryptoKind = FourCC([b'V', b'L', b'D', b'0']);
 
-fn ed25519_to_x25519_pk(key: &ed::PublicKey) -> Result<xd::PublicKey, VeilidAPIError> {
+fn ed25519_to_x25519_pk(key: &ed::PublicKey) -> VeilidAPIResult<xd::PublicKey> {
     let bytes = key.to_bytes();
     let compressed = cd::edwards::CompressedEdwardsY(bytes);
     let point = compressed
@@ -26,7 +26,7 @@ fn ed25519_to_x25519_pk(key: &ed::PublicKey) -> Result<xd::PublicKey, VeilidAPIE
     let mp = point.to_montgomery();
     Ok(xd::PublicKey::from(mp.to_bytes()))
 }
-fn ed25519_to_x25519_sk(key: &ed::SecretKey) -> Result<xd::StaticSecret, VeilidAPIError> {
+fn ed25519_to_x25519_sk(key: &ed::SecretKey) -> VeilidAPIResult<xd::StaticSecret> {
     let exp = ed::ExpandedSecretKey::from(key);
     let bytes: [u8; ed::EXPANDED_SECRET_KEY_LENGTH] = exp.to_bytes();
     let lowbytes: [u8; 32] = bytes[0..32].try_into().map_err(VeilidAPIError::internal)?;
@@ -65,11 +65,7 @@ impl CryptoSystem for CryptoSystemVLD0 {
     }
 
     // Cached Operations
-    fn cached_dh(
-        &self,
-        key: &PublicKey,
-        secret: &SecretKey,
-    ) -> Result<SharedSecret, VeilidAPIError> {
+    fn cached_dh(&self, key: &PublicKey, secret: &SecretKey) -> VeilidAPIResult<SharedSecret> {
         self.crypto
             .cached_dh_internal::<CryptoSystemVLD0>(self, key, secret)
     }
@@ -83,7 +79,7 @@ impl CryptoSystem for CryptoSystemVLD0 {
     fn default_salt_length(&self) -> u32 {
         16
     }
-    fn hash_password(&self, password: &[u8], salt: &[u8]) -> Result<String, VeilidAPIError> {
+    fn hash_password(&self, password: &[u8], salt: &[u8]) -> VeilidAPIResult<String> {
         if salt.len() < Salt::MIN_LENGTH || salt.len() > Salt::MAX_LENGTH {
             apibail_generic!("invalid salt length");
         }
@@ -100,11 +96,7 @@ impl CryptoSystem for CryptoSystemVLD0 {
             .to_string();
         Ok(password_hash)
     }
-    fn verify_password(
-        &self,
-        password: &[u8],
-        password_hash: &str,
-    ) -> Result<bool, VeilidAPIError> {
+    fn verify_password(&self, password: &[u8], password_hash: &str) -> VeilidAPIResult<bool> {
         let parsed_hash = PasswordHash::new(password_hash).map_err(VeilidAPIError::generic)?;
         // Argon2 with default params (Argon2id v19)
         let argon2 = Argon2::default();
@@ -112,11 +104,7 @@ impl CryptoSystem for CryptoSystemVLD0 {
         Ok(argon2.verify_password(password, &parsed_hash).is_ok())
     }
 
-    fn derive_shared_secret(
-        &self,
-        password: &[u8],
-        salt: &[u8],
-    ) -> Result<SharedSecret, VeilidAPIError> {
+    fn derive_shared_secret(&self, password: &[u8], salt: &[u8]) -> VeilidAPIResult<SharedSecret> {
         if salt.len() < Salt::MIN_LENGTH || salt.len() > Salt::MAX_LENGTH {
             apibail_generic!("invalid salt length");
         }
@@ -141,11 +129,7 @@ impl CryptoSystem for CryptoSystemVLD0 {
         random_bytes(&mut s);
         SharedSecret::new(s)
     }
-    fn compute_dh(
-        &self,
-        key: &PublicKey,
-        secret: &SecretKey,
-    ) -> Result<SharedSecret, VeilidAPIError> {
+    fn compute_dh(&self, key: &PublicKey, secret: &SecretKey) -> VeilidAPIResult<SharedSecret> {
         let pk_ed = ed::PublicKey::from_bytes(&key.bytes).map_err(VeilidAPIError::internal)?;
         let pk_xd = ed25519_to_x25519_pk(&pk_ed)?;
         let sk_ed = ed::SecretKey::from_bytes(&secret.bytes).map_err(VeilidAPIError::internal)?;
@@ -158,10 +142,7 @@ impl CryptoSystem for CryptoSystemVLD0 {
     fn generate_hash(&self, data: &[u8]) -> PublicKey {
         PublicKey::new(*blake3::hash(data).as_bytes())
     }
-    fn generate_hash_reader(
-        &self,
-        reader: &mut dyn std::io::Read,
-    ) -> Result<PublicKey, VeilidAPIError> {
+    fn generate_hash_reader(&self, reader: &mut dyn std::io::Read) -> VeilidAPIResult<PublicKey> {
         let mut hasher = blake3::Hasher::new();
         std::io::copy(reader, &mut hasher).map_err(VeilidAPIError::generic)?;
         Ok(PublicKey::new(*hasher.finalize().as_bytes()))
@@ -187,7 +168,7 @@ impl CryptoSystem for CryptoSystemVLD0 {
         &self,
         reader: &mut dyn std::io::Read,
         dht_key: &PublicKey,
-    ) -> Result<bool, VeilidAPIError> {
+    ) -> VeilidAPIResult<bool> {
         let mut hasher = blake3::Hasher::new();
         std::io::copy(reader, &mut hasher).map_err(VeilidAPIError::generic)?;
         let bytes = *hasher.finalize().as_bytes();
@@ -210,7 +191,7 @@ impl CryptoSystem for CryptoSystemVLD0 {
         dht_key: &PublicKey,
         dht_key_secret: &SecretKey,
         data: &[u8],
-    ) -> Result<Signature, VeilidAPIError> {
+    ) -> VeilidAPIResult<Signature> {
         let mut kpb: [u8; SECRET_KEY_LENGTH + PUBLIC_KEY_LENGTH] =
             [0u8; SECRET_KEY_LENGTH + PUBLIC_KEY_LENGTH];
 
@@ -237,7 +218,7 @@ impl CryptoSystem for CryptoSystemVLD0 {
         dht_key: &PublicKey,
         data: &[u8],
         signature: &Signature,
-    ) -> Result<(), VeilidAPIError> {
+    ) -> VeilidAPIResult<()> {
         let pk = ed::PublicKey::from_bytes(&dht_key.bytes)
             .map_err(|e| VeilidAPIError::parse_error("Public key is invalid", e))?;
         let sig = ed::Signature::from_bytes(&signature.bytes)
@@ -261,7 +242,7 @@ impl CryptoSystem for CryptoSystemVLD0 {
         nonce: &Nonce,
         shared_secret: &SharedSecret,
         associated_data: Option<&[u8]>,
-    ) -> Result<(), VeilidAPIError> {
+    ) -> VeilidAPIResult<()> {
         let key = ch::Key::from(shared_secret.bytes);
         let xnonce = ch::XNonce::from(nonce.bytes);
         let aead = ch::XChaCha20Poly1305::new(&key);
@@ -276,7 +257,7 @@ impl CryptoSystem for CryptoSystemVLD0 {
         nonce: &Nonce,
         shared_secret: &SharedSecret,
         associated_data: Option<&[u8]>,
-    ) -> Result<Vec<u8>, VeilidAPIError> {
+    ) -> VeilidAPIResult<Vec<u8>> {
         let mut out = body.to_vec();
         self.decrypt_in_place_aead(&mut out, nonce, shared_secret, associated_data)
             .map_err(map_to_string)
@@ -290,7 +271,7 @@ impl CryptoSystem for CryptoSystemVLD0 {
         nonce: &Nonce,
         shared_secret: &SharedSecret,
         associated_data: Option<&[u8]>,
-    ) -> Result<(), VeilidAPIError> {
+    ) -> VeilidAPIResult<()> {
         let key = ch::Key::from(shared_secret.bytes);
         let xnonce = ch::XNonce::from(nonce.bytes);
         let aead = ch::XChaCha20Poly1305::new(&key);
@@ -306,7 +287,7 @@ impl CryptoSystem for CryptoSystemVLD0 {
         nonce: &Nonce,
         shared_secret: &SharedSecret,
         associated_data: Option<&[u8]>,
-    ) -> Result<Vec<u8>, VeilidAPIError> {
+    ) -> VeilidAPIResult<Vec<u8>> {
         let mut out = body.to_vec();
         self.encrypt_in_place_aead(&mut out, nonce, shared_secret, associated_data)
             .map_err(map_to_string)
diff --git a/veilid-core/src/intf/mod.rs b/veilid-core/src/intf/mod.rs
index ab9d5759..81756b61 100644
--- a/veilid-core/src/intf/mod.rs
+++ b/veilid-core/src/intf/mod.rs
@@ -9,5 +9,4 @@ mod native;
 #[cfg(not(target_arch = "wasm32"))]
 pub use native::*;
 
-pub static KNOWN_PROTECTED_STORE_KEYS: [&'static str; 4] =
-    ["node_id", "node_id_secret", "_test_key", "RouteSpecStore"];
+pub static KNOWN_PROTECTED_STORE_KEYS: [&'static str; 2] = ["device_encryption_key", "_test_key"];
diff --git a/veilid-core/src/network_manager/types/address.rs b/veilid-core/src/network_manager/types/address.rs
index c343c8da..45ec1c98 100644
--- a/veilid-core/src/network_manager/types/address.rs
+++ b/veilid-core/src/network_manager/types/address.rs
@@ -115,7 +115,7 @@ impl fmt::Display for Address {
 
 impl FromStr for Address {
     type Err = VeilidAPIError;
-    fn from_str(host: &str) -> Result<Address, VeilidAPIError> {
+    fn from_str(host: &str) -> VeilidAPIResult<Address> {
         if let Ok(addr) = Ipv4Addr::from_str(host) {
             Ok(Address::IPV4(addr))
         } else if let Ok(addr) = Ipv6Addr::from_str(host) {
diff --git a/veilid-core/src/network_manager/types/dial_info/mod.rs b/veilid-core/src/network_manager/types/dial_info/mod.rs
index 4d6a8428..a6a12c69 100644
--- a/veilid-core/src/network_manager/types/dial_info/mod.rs
+++ b/veilid-core/src/network_manager/types/dial_info/mod.rs
@@ -82,7 +82,7 @@ impl fmt::Display for DialInfo {
 
 impl FromStr for DialInfo {
     type Err = VeilidAPIError;
-    fn from_str(s: &str) -> Result<DialInfo, VeilidAPIError> {
+    fn from_str(s: &str) -> VeilidAPIResult<DialInfo> {
         let (proto, rest) = s.split_once('|').ok_or_else(|| {
             VeilidAPIError::parse_error("DialInfo::from_str missing protocol '|' separator", s)
         })?;
@@ -175,7 +175,7 @@ impl DialInfo {
             socket_address: socket_address.to_canonical(),
         })
     }
-    pub fn try_ws(socket_address: SocketAddress, url: String) -> Result<Self, VeilidAPIError> {
+    pub fn try_ws(socket_address: SocketAddress, url: String) -> VeilidAPIResult<Self> {
         let split_url = SplitUrl::from_str(&url).map_err(|e| {
             VeilidAPIError::parse_error(format!("unable to split WS url: {}", e), &url)
         })?;
@@ -199,7 +199,7 @@ impl DialInfo {
             request: url[5..].to_string(),
         }))
     }
-    pub fn try_wss(socket_address: SocketAddress, url: String) -> Result<Self, VeilidAPIError> {
+    pub fn try_wss(socket_address: SocketAddress, url: String) -> VeilidAPIResult<Self> {
         let split_url = SplitUrl::from_str(&url).map_err(|e| {
             VeilidAPIError::parse_error(format!("unable to split WSS url: {}", e), &url)
         })?;
@@ -321,7 +321,7 @@ impl DialInfo {
     pub fn try_vec_from_short<S: AsRef<str>, H: AsRef<str>>(
         short: S,
         hostname: H,
-    ) -> Result<Vec<Self>, VeilidAPIError> {
+    ) -> VeilidAPIResult<Vec<Self>> {
         let short = short.as_ref();
         let hostname = hostname.as_ref();
 
@@ -348,7 +348,7 @@ impl DialInfo {
         Self::try_vec_from_url(url)
     }
 
-    pub fn try_vec_from_url<S: AsRef<str>>(url: S) -> Result<Vec<Self>, VeilidAPIError> {
+    pub fn try_vec_from_url<S: AsRef<str>>(url: S) -> VeilidAPIResult<Vec<Self>> {
         let url = url.as_ref();
         let split_url = SplitUrl::from_str(url)
             .map_err(|e| VeilidAPIError::parse_error(format!("unable to split url: {}", e), url))?;
diff --git a/veilid-core/src/network_manager/types/peer_address.rs b/veilid-core/src/network_manager/types/peer_address.rs
index 2ca52329..83df0bea 100644
--- a/veilid-core/src/network_manager/types/peer_address.rs
+++ b/veilid-core/src/network_manager/types/peer_address.rs
@@ -55,7 +55,7 @@ impl fmt::Display for PeerAddress {
 
 impl FromStr for PeerAddress {
     type Err = VeilidAPIError;
-    fn from_str(s: &str) -> Result<PeerAddress, VeilidAPIError> {
+    fn from_str(s: &str) -> VeilidAPIResult<PeerAddress> {
         let Some((first, second)) = s.split_once(':') else {
             return Err(VeilidAPIError::parse_error("PeerAddress is missing a colon: {}", s));
         };
diff --git a/veilid-core/src/network_manager/types/protocol_type.rs b/veilid-core/src/network_manager/types/protocol_type.rs
index d0ca4c99..4ba47000 100644
--- a/veilid-core/src/network_manager/types/protocol_type.rs
+++ b/veilid-core/src/network_manager/types/protocol_type.rs
@@ -87,7 +87,7 @@ impl fmt::Display for ProtocolType {
 
 impl FromStr for ProtocolType {
     type Err = VeilidAPIError;
-    fn from_str(s: &str) -> Result<ProtocolType, VeilidAPIError> {
+    fn from_str(s: &str) -> VeilidAPIResult<ProtocolType> {
         match s.to_ascii_uppercase().as_str() {
             "UDP" => Ok(ProtocolType::UDP),
             "TCP" => Ok(ProtocolType::TCP),
diff --git a/veilid-core/src/network_manager/types/socket_address.rs b/veilid-core/src/network_manager/types/socket_address.rs
index bbd21c8a..35515b90 100644
--- a/veilid-core/src/network_manager/types/socket_address.rs
+++ b/veilid-core/src/network_manager/types/socket_address.rs
@@ -69,7 +69,7 @@ impl fmt::Display for SocketAddress {
 
 impl FromStr for SocketAddress {
     type Err = VeilidAPIError;
-    fn from_str(s: &str) -> Result<SocketAddress, VeilidAPIError> {
+    fn from_str(s: &str) -> VeilidAPIResult<SocketAddress> {
         let sa = SocketAddr::from_str(s)
             .map_err(|e| VeilidAPIError::parse_error("Failed to parse SocketAddress", e))?;
         Ok(SocketAddress::from_socket_addr(sa))
diff --git a/veilid-core/src/routing_table/privacy.rs b/veilid-core/src/routing_table/privacy.rs
index 06819993..fc670375 100644
--- a/veilid-core/src/routing_table/privacy.rs
+++ b/veilid-core/src/routing_table/privacy.rs
@@ -22,7 +22,7 @@ pub enum RouteNode {
 }
 
 impl RouteNode {
-    pub fn validate(&self, crypto: Crypto) -> Result<(), VeilidAPIError> {
+    pub fn validate(&self, crypto: Crypto) -> VeilidAPIResult<()> {
         match self {
             RouteNode::NodeId(_) => Ok(()),
             RouteNode::PeerInfo(pi) => pi.validate(crypto),
@@ -74,7 +74,7 @@ pub struct RouteHop {
     pub next_hop: Option<RouteHopData>,
 }
 impl RouteHop {
-    pub fn validate(&self, crypto: Crypto) -> Result<(), VeilidAPIError> {
+    pub fn validate(&self, crypto: Crypto) -> VeilidAPIResult<()> {
         self.node.validate(crypto)
     }
 }
@@ -91,7 +91,7 @@ pub enum PrivateRouteHops {
 }
 
 impl PrivateRouteHops {
-    pub fn validate(&self, crypto: Crypto) -> Result<(), VeilidAPIError> {
+    pub fn validate(&self, crypto: Crypto) -> VeilidAPIResult<()> {
         match self {
             PrivateRouteHops::FirstHop(rh) => rh.validate(crypto),
             PrivateRouteHops::Data(_) => Ok(()),
@@ -129,7 +129,7 @@ impl PrivateRoute {
         }
     }
 
-    pub fn validate(&self, crypto: Crypto) -> Result<(), VeilidAPIError> {
+    pub fn validate(&self, crypto: Crypto) -> VeilidAPIResult<()> {
         self.hops.validate(crypto)
     }
 
diff --git a/veilid-core/src/routing_table/route_spec_store/route_set_spec_detail.rs b/veilid-core/src/routing_table/route_spec_store/route_set_spec_detail.rs
index e7858816..7f5c0334 100644
--- a/veilid-core/src/routing_table/route_spec_store/route_set_spec_detail.rs
+++ b/veilid-core/src/routing_table/route_spec_store/route_set_spec_detail.rs
@@ -6,7 +6,6 @@ pub struct RouteSpecDetail {
     /// Crypto kind
     pub crypto_kind: CryptoKind,
     /// Secret key
-    #[with(Skip)]
     pub secret_key: SecretKey,
     /// Route hops (node id keys)
     pub hops: Vec<PublicKey>,
diff --git a/veilid-core/src/routing_table/route_spec_store/route_spec_store_content.rs b/veilid-core/src/routing_table/route_spec_store/route_spec_store_content.rs
index c5b1d404..b193c398 100644
--- a/veilid-core/src/routing_table/route_spec_store/route_spec_store_content.rs
+++ b/veilid-core/src/routing_table/route_spec_store/route_spec_store_content.rs
@@ -55,47 +55,6 @@ impl RouteSpecStoreContent {
             content.remove_detail(&id);
         }
 
-        // Load secrets from pstore
-        let pstore = routing_table.network_manager().protected_store();
-        let secret_key_map: HashMap<PublicKey, SecretKey> = pstore
-            .load_user_secret_rkyv("RouteSpecStore")
-            .await?
-            .unwrap_or_default();
-
-        // Ensure we got secret keys for all the public keys
-        let mut got_secret_key_ids = HashSet::new();
-        for (rsid, rssd) in content.details.iter_mut() {
-            let mut found_all = true;
-            for (pk, rsd) in rssd.iter_route_set_mut() {
-                if let Some(sk) = secret_key_map.get(pk) {
-                    rsd.secret_key = *sk;
-                } else {
-                    found_all = false;
-                    break;
-                }
-            }
-            if found_all {
-                got_secret_key_ids.insert(rsid.clone());
-            }
-        }
-
-        // If we missed any, nuke those route ids
-        let dead_ids: Vec<RouteId> = content
-            .details
-            .keys()
-            .filter_map(|id| {
-                if !got_secret_key_ids.contains(id) {
-                    Some(*id)
-                } else {
-                    None
-                }
-            })
-            .collect();
-        for id in dead_ids {
-            log_rtab!(debug "missing secret key, killing off private route: {}", id);
-            content.remove_detail(&id);
-        }
-
         Ok(content)
     }
 
@@ -106,18 +65,6 @@ impl RouteSpecStoreContent {
         let rsstdb = table_store.open("RouteSpecStore", 1).await?;
         rsstdb.store_rkyv(0, b"content", self).await?;
 
-        // Keep secrets in protected store as well
-        let pstore = routing_table.network_manager().protected_store();
-
-        let mut out: HashMap<PublicKey, SecretKey> = HashMap::new();
-        for (_rsid, rssd) in self.details.iter() {
-            for (pk, rsd) in rssd.iter_route_set() {
-                out.insert(*pk, rsd.secret_key);
-            }
-        }
-
-        let _ = pstore.save_user_secret_rkyv("RouteSpecStore", &out).await?; // ignore if this previously existed or not
-
         Ok(())
     }
 
diff --git a/veilid-core/src/routing_table/types/peer_info.rs b/veilid-core/src/routing_table/types/peer_info.rs
index 179de3ef..b7037646 100644
--- a/veilid-core/src/routing_table/types/peer_info.rs
+++ b/veilid-core/src/routing_table/types/peer_info.rs
@@ -16,7 +16,7 @@ impl PeerInfo {
         }
     }
 
-    pub fn validate(&self, crypto: Crypto) -> Result<(), VeilidAPIError> {
+    pub fn validate(&self, crypto: Crypto) -> VeilidAPIResult<()> {
         let validated_node_ids = self.signed_node_info.validate(&self.node_ids, crypto)?;
         if validated_node_ids.is_empty() {
             // Shouldn't get here because signed node info validation also checks this
diff --git a/veilid-core/src/routing_table/types/signed_direct_node_info.rs b/veilid-core/src/routing_table/types/signed_direct_node_info.rs
index ea8ae032..e6fee40d 100644
--- a/veilid-core/src/routing_table/types/signed_direct_node_info.rs
+++ b/veilid-core/src/routing_table/types/signed_direct_node_info.rs
@@ -20,11 +20,7 @@ impl SignedDirectNodeInfo {
         }
     }
 
-    pub fn validate(
-        &self,
-        node_ids: &TypedKeySet,
-        crypto: Crypto,
-    ) -> Result<TypedKeySet, VeilidAPIError> {
+    pub fn validate(&self, node_ids: &TypedKeySet, crypto: Crypto) -> VeilidAPIResult<TypedKeySet> {
         let node_info_bytes = Self::make_signature_bytes(&self.node_info, self.timestamp)?;
 
         // Verify the signatures that we can
@@ -41,7 +37,7 @@ impl SignedDirectNodeInfo {
         crypto: Crypto,
         typed_key_pairs: Vec<TypedKeyPair>,
         node_info: NodeInfo,
-    ) -> Result<Self, VeilidAPIError> {
+    ) -> VeilidAPIResult<Self> {
         let timestamp = get_aligned_timestamp();
         let node_info_bytes = Self::make_signature_bytes(&node_info, timestamp)?;
         let typed_signatures =
@@ -58,7 +54,7 @@ impl SignedDirectNodeInfo {
     fn make_signature_bytes(
         node_info: &NodeInfo,
         timestamp: Timestamp,
-    ) -> Result<Vec<u8>, VeilidAPIError> {
+    ) -> VeilidAPIResult<Vec<u8>> {
         let mut node_info_bytes = Vec::new();
 
         // Add nodeinfo to signature
diff --git a/veilid-core/src/routing_table/types/signed_node_info.rs b/veilid-core/src/routing_table/types/signed_node_info.rs
index 2a98ceae..5557a76a 100644
--- a/veilid-core/src/routing_table/types/signed_node_info.rs
+++ b/veilid-core/src/routing_table/types/signed_node_info.rs
@@ -8,11 +8,7 @@ pub enum SignedNodeInfo {
 }
 
 impl SignedNodeInfo {
-    pub fn validate(
-        &self,
-        node_ids: &TypedKeySet,
-        crypto: Crypto,
-    ) -> Result<TypedKeySet, VeilidAPIError> {
+    pub fn validate(&self, node_ids: &TypedKeySet, crypto: Crypto) -> VeilidAPIResult<TypedKeySet> {
         match self {
             SignedNodeInfo::Direct(d) => d.validate(node_ids, crypto),
             SignedNodeInfo::Relayed(r) => r.validate(node_ids, crypto),
diff --git a/veilid-core/src/routing_table/types/signed_relayed_node_info.rs b/veilid-core/src/routing_table/types/signed_relayed_node_info.rs
index 3439baf7..8a429e4c 100644
--- a/veilid-core/src/routing_table/types/signed_relayed_node_info.rs
+++ b/veilid-core/src/routing_table/types/signed_relayed_node_info.rs
@@ -31,11 +31,7 @@ impl SignedRelayedNodeInfo {
         }
     }
 
-    pub fn validate(
-        &self,
-        node_ids: &TypedKeySet,
-        crypto: Crypto,
-    ) -> Result<TypedKeySet, VeilidAPIError> {
+    pub fn validate(&self, node_ids: &TypedKeySet, crypto: Crypto) -> VeilidAPIResult<TypedKeySet> {
         // Ensure the relay info for the node has a superset of the crypto kinds of the node it is relaying
         if common_crypto_kinds(
             self.node_info.crypto_support(),
@@ -68,7 +64,7 @@ impl SignedRelayedNodeInfo {
         node_info: NodeInfo,
         relay_ids: TypedKeySet,
         relay_info: SignedDirectNodeInfo,
-    ) -> Result<Self, VeilidAPIError> {
+    ) -> VeilidAPIResult<Self> {
         let timestamp = get_aligned_timestamp();
         let node_info_bytes =
             Self::make_signature_bytes(&node_info, &relay_ids, &relay_info, timestamp)?;
@@ -90,7 +86,7 @@ impl SignedRelayedNodeInfo {
         relay_ids: &[TypedKey],
         relay_info: &SignedDirectNodeInfo,
         timestamp: Timestamp,
-    ) -> Result<Vec<u8>, VeilidAPIError> {
+    ) -> VeilidAPIResult<Vec<u8>> {
         let mut sig_bytes = Vec::new();
 
         // Add nodeinfo to signature
diff --git a/veilid-core/src/storage_manager/get_value.rs b/veilid-core/src/storage_manager/get_value.rs
index f41dd578..3d5584e7 100644
--- a/veilid-core/src/storage_manager/get_value.rs
+++ b/veilid-core/src/storage_manager/get_value.rs
@@ -22,7 +22,7 @@ impl StorageManager {
         subkey: ValueSubkey,
         safety_selection: SafetySelection,
         last_subkey_result: SubkeyResult,
-    ) -> Result<SubkeyResult, VeilidAPIError> {
+    ) -> VeilidAPIResult<SubkeyResult> {
         let routing_table = rpc_processor.routing_table();
 
         // Get the DHT parameters for 'GetValue'
@@ -175,7 +175,7 @@ impl StorageManager {
     }
 
     /// Handle a recieved 'Get Value' query
-    pub async fn inbound_get_value(&self, key: TypedKey, subkey: ValueSubkey, want_descriptor: bool) -> Result<NetworkResult<SubkeyResult>, VeilidAPIError> {
+    pub async fn inbound_get_value(&self, key: TypedKey, subkey: ValueSubkey, want_descriptor: bool) -> VeilidAPIResult<NetworkResult<SubkeyResult>> {
         let mut inner = self.lock().await?;
         let res = match inner.handle_get_remote_value(key, subkey, want_descriptor).await {            
             Ok(res) => res,
diff --git a/veilid-core/src/storage_manager/mod.rs b/veilid-core/src/storage_manager/mod.rs
index 9e9810d4..96f772d2 100644
--- a/veilid-core/src/storage_manager/mod.rs
+++ b/veilid-core/src/storage_manager/mod.rs
@@ -117,7 +117,7 @@ impl StorageManager {
         inner.rpc_processor = opt_rpc_processor
     }
 
-    async fn lock(&self) -> Result<AsyncMutexGuardArc<StorageManagerInner>, VeilidAPIError> {
+    async fn lock(&self) -> VeilidAPIResult<AsyncMutexGuardArc<StorageManagerInner>> {
         let inner = asyncmutex_lock_arc!(&self.inner);
         if !inner.initialized {
             apibail_not_initialized!();
@@ -131,7 +131,7 @@ impl StorageManager {
         kind: CryptoKind,
         schema: DHTSchema,
         safety_selection: SafetySelection,
-    ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
+    ) -> VeilidAPIResult<DHTRecordDescriptor> {
         let mut inner = self.lock().await?;
 
         // Create a new owned local record from scratch
@@ -154,7 +154,7 @@ impl StorageManager {
         key: TypedKey,
         writer: Option<KeyPair>,
         safety_selection: SafetySelection,
-    ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
+    ) -> VeilidAPIResult<DHTRecordDescriptor> {
         let mut inner = self.lock().await?;
 
         // See if we have a local record already or not
@@ -202,13 +202,13 @@ impl StorageManager {
     }
 
     /// Close an opened local record
-    pub async fn close_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
+    pub async fn close_record(&self, key: TypedKey) -> VeilidAPIResult<()> {
         let mut inner = self.lock().await?;
         inner.close_record(key)
     }
 
     /// Delete a local record
-    pub async fn delete_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
+    pub async fn delete_record(&self, key: TypedKey) -> VeilidAPIResult<()> {
         let mut inner = self.lock().await?;
 
         // Ensure the record is closed
@@ -233,7 +233,7 @@ impl StorageManager {
         key: TypedKey,
         subkey: ValueSubkey,
         force_refresh: bool,
-    ) -> Result<Option<ValueData>, VeilidAPIError> {
+    ) -> VeilidAPIResult<Option<ValueData>> {
         let mut inner = self.lock().await?;
         let Some(opened_record) = inner.opened_records.remove(&key) else {
             apibail_generic!("record not open");
@@ -301,7 +301,7 @@ impl StorageManager {
         key: TypedKey,
         subkey: ValueSubkey,
         data: Vec<u8>,
-    ) -> Result<Option<ValueData>, VeilidAPIError> {
+    ) -> VeilidAPIResult<Option<ValueData>> {
         let mut inner = self.lock().await?;
 
         // Get cryptosystem
@@ -395,7 +395,7 @@ impl StorageManager {
         subkeys: ValueSubkeyRangeSet,
         expiration: Timestamp,
         count: u32,
-    ) -> Result<Timestamp, VeilidAPIError> {
+    ) -> VeilidAPIResult<Timestamp> {
         let inner = self.lock().await?;
         unimplemented!();
     }
@@ -404,7 +404,7 @@ impl StorageManager {
         &self,
         key: TypedKey,
         subkeys: ValueSubkeyRangeSet,
-    ) -> Result<bool, VeilidAPIError> {
+    ) -> VeilidAPIResult<bool> {
         let inner = self.lock().await?;
         unimplemented!();
     }
diff --git a/veilid-core/src/storage_manager/record_store.rs b/veilid-core/src/storage_manager/record_store.rs
index 25e62725..27119fe7 100644
--- a/veilid-core/src/storage_manager/record_store.rs
+++ b/veilid-core/src/storage_manager/record_store.rs
@@ -241,11 +241,7 @@ where
         Ok(())
     }
 
-    pub async fn new_record(
-        &mut self,
-        key: TypedKey,
-        record: Record<D>,
-    ) -> Result<(), VeilidAPIError> {
+    pub async fn new_record(&mut self, key: TypedKey, record: Record<D>) -> VeilidAPIResult<()> {
         let rtk = RecordTableKey { key };
         if self.record_index.contains_key(&rtk) {
             apibail_internal!("record already exists");
@@ -290,7 +286,7 @@ where
         Ok(())
     }
 
-    pub async fn delete_record(&mut self, key: TypedKey) -> Result<(), VeilidAPIError> {
+    pub async fn delete_record(&mut self, key: TypedKey) -> VeilidAPIResult<()> {
         // Get the record table key
         let rtk = RecordTableKey { key };
 
@@ -357,7 +353,7 @@ where
         key: TypedKey,
         subkey: ValueSubkey,
         want_descriptor: bool,
-    ) -> Result<Option<SubkeyResult>, VeilidAPIError> {
+    ) -> VeilidAPIResult<Option<SubkeyResult>> {
         // record from index
         let Some((subkey_count, opt_descriptor)) = self.with_record(key, |record| {
             (record.subkey_count(), if want_descriptor {
@@ -419,7 +415,7 @@ where
         key: TypedKey,
         subkey: ValueSubkey,
         signed_value_data: SignedValueData,
-    ) -> Result<(), VeilidAPIError> {
+    ) -> VeilidAPIResult<()> {
         // Check size limit for data
         if signed_value_data.value_data().data().len() > self.limits.max_subkey_size {
             apibail_invalid_argument!(
diff --git a/veilid-core/src/storage_manager/set_value.rs b/veilid-core/src/storage_manager/set_value.rs
index 911109f7..2ea9ddf2 100644
--- a/veilid-core/src/storage_manager/set_value.rs
+++ b/veilid-core/src/storage_manager/set_value.rs
@@ -21,7 +21,7 @@ impl StorageManager {
         safety_selection: SafetySelection,
         value: SignedValueData,
         descriptor: SignedValueDescriptor,
-    ) -> Result<SignedValueData, VeilidAPIError> {
+    ) -> VeilidAPIResult<SignedValueData> {
         let routing_table = rpc_processor.routing_table();
 
         // Get the DHT parameters for 'SetValue'
@@ -164,7 +164,7 @@ impl StorageManager {
     /// Handle a recieved 'Set Value' query
     /// Returns a None if the value passed in was set
     /// Returns a Some(current value) if the value was older and the current value was kept
-    pub async fn inbound_set_value(&self, key: TypedKey, subkey: ValueSubkey, value: SignedValueData, descriptor: Option<SignedValueDescriptor>) -> Result<NetworkResult<Option<SignedValueData>>, VeilidAPIError> {
+    pub async fn inbound_set_value(&self, key: TypedKey, subkey: ValueSubkey, value: SignedValueData, descriptor: Option<SignedValueDescriptor>) -> VeilidAPIResult<NetworkResult<Option<SignedValueData>>> {
         let mut inner = self.lock().await?;
 
         // See if the subkey we are modifying has a last known local value
diff --git a/veilid-core/src/storage_manager/storage_manager_inner.rs b/veilid-core/src/storage_manager/storage_manager_inner.rs
index 133f631d..e50cbcc3 100644
--- a/veilid-core/src/storage_manager/storage_manager_inner.rs
+++ b/veilid-core/src/storage_manager/storage_manager_inner.rs
@@ -172,7 +172,7 @@ impl StorageManagerInner {
         kind: CryptoKind,
         schema: DHTSchema,
         safety_selection: SafetySelection,
-    ) -> Result<(TypedKey, KeyPair), VeilidAPIError> {
+    ) -> VeilidAPIResult<(TypedKey, KeyPair)> {
         // Get cryptosystem
         let Some(vcrypto) = self.unlocked_inner.crypto.get(kind) else {
             apibail_generic!("unsupported cryptosystem");
@@ -214,7 +214,7 @@ impl StorageManagerInner {
         key: TypedKey,
         writer: Option<KeyPair>,
         safety_selection: SafetySelection,
-    ) -> Result<Option<DHTRecordDescriptor>, VeilidAPIError> {
+    ) -> VeilidAPIResult<Option<DHTRecordDescriptor>> {
         // Ensure the record is closed
         if self.opened_records.contains_key(&key) {
             apibail_generic!("record is already open and should be closed first");
@@ -268,7 +268,7 @@ impl StorageManagerInner {
         subkey: ValueSubkey,
         subkey_result: SubkeyResult,
         safety_selection: SafetySelection,
-    ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
+    ) -> VeilidAPIResult<DHTRecordDescriptor> {
         // Ensure the record is closed
         if self.opened_records.contains_key(&key) {
             panic!("new record should never be opened at this point");
@@ -325,7 +325,7 @@ impl StorageManagerInner {
         Ok(descriptor)
     }
 
-    pub fn close_record(&mut self, key: TypedKey) -> Result<(), VeilidAPIError> {
+    pub fn close_record(&mut self, key: TypedKey) -> VeilidAPIResult<()> {
         let Some(_opened_record) = self.opened_records.remove(&key) else {
             apibail_generic!("record not open");
         };
@@ -337,7 +337,7 @@ impl StorageManagerInner {
         key: TypedKey,
         subkey: ValueSubkey,
         want_descriptor: bool,
-    ) -> Result<SubkeyResult, VeilidAPIError> {
+    ) -> VeilidAPIResult<SubkeyResult> {
         // See if it's in the local record store
         let Some(local_record_store) = self.local_record_store.as_mut() else {
             apibail_not_initialized!();
@@ -357,7 +357,7 @@ impl StorageManagerInner {
         key: TypedKey,
         subkey: ValueSubkey,
         signed_value_data: SignedValueData,
-    ) -> Result<(), VeilidAPIError> {
+    ) -> VeilidAPIResult<()> {
         // See if it's in the local record store
         let Some(local_record_store) = self.local_record_store.as_mut() else {
             apibail_not_initialized!();                 
@@ -376,7 +376,7 @@ impl StorageManagerInner {
         key: TypedKey,
         subkey: ValueSubkey,
         want_descriptor: bool,
-    ) -> Result<SubkeyResult, VeilidAPIError> {
+    ) -> VeilidAPIResult<SubkeyResult> {
         // See if it's in the remote record store
         let Some(remote_record_store) = self.remote_record_store.as_mut() else {
             apibail_not_initialized!();
@@ -397,7 +397,7 @@ impl StorageManagerInner {
         subkey: ValueSubkey,
         signed_value_data: SignedValueData,
         signed_value_descriptor: SignedValueDescriptor,
-    ) -> Result<(), VeilidAPIError> {
+    ) -> VeilidAPIResult<()> {
         // See if it's in the remote record store
         let Some(remote_record_store) = self.remote_record_store.as_mut() else {
             apibail_not_initialized!();
diff --git a/veilid-core/src/storage_manager/types/record.rs b/veilid-core/src/storage_manager/types/record.rs
index 68afa013..c8ec9cb7 100644
--- a/veilid-core/src/storage_manager/types/record.rs
+++ b/veilid-core/src/storage_manager/types/record.rs
@@ -27,7 +27,7 @@ where
         cur_ts: Timestamp,
         descriptor: SignedValueDescriptor,
         detail: D,
-    ) -> Result<Self, VeilidAPIError> {
+    ) -> VeilidAPIResult<Self> {
         let schema = descriptor.schema()?;
         let subkey_count = schema.subkey_count();
         Ok(Self {
diff --git a/veilid-core/src/storage_manager/types/signed_value_data.rs b/veilid-core/src/storage_manager/types/signed_value_data.rs
index ca5231e7..466764c8 100644
--- a/veilid-core/src/storage_manager/types/signed_value_data.rs
+++ b/veilid-core/src/storage_manager/types/signed_value_data.rs
@@ -34,7 +34,7 @@ impl SignedValueData {
         owner: &PublicKey,
         subkey: ValueSubkey,
         vcrypto: CryptoSystemVersion,
-    ) -> Result<(), VeilidAPIError> {
+    ) -> VeilidAPIResult<()> {
         let node_info_bytes = Self::make_signature_bytes(&self.value_data, owner, subkey)?;
         // validate signature
         vcrypto.verify(&self.value_data.writer(), &node_info_bytes, &self.signature)
@@ -46,7 +46,7 @@ impl SignedValueData {
         subkey: ValueSubkey,
         vcrypto: CryptoSystemVersion,
         writer_secret: SecretKey,
-    ) -> Result<Self, VeilidAPIError> {
+    ) -> VeilidAPIResult<Self> {
         let node_info_bytes = Self::make_signature_bytes(&value_data, owner, subkey)?;
 
         // create signature
@@ -77,7 +77,7 @@ impl SignedValueData {
         value_data: &ValueData,
         owner: &PublicKey,
         subkey: ValueSubkey,
-    ) -> Result<Vec<u8>, VeilidAPIError> {
+    ) -> VeilidAPIResult<Vec<u8>> {
         let mut node_info_bytes =
             Vec::with_capacity(PUBLIC_KEY_LENGTH + 4 + 4 + value_data.data().len());
 
diff --git a/veilid-core/src/storage_manager/types/signed_value_descriptor.rs b/veilid-core/src/storage_manager/types/signed_value_descriptor.rs
index 5cef1f2a..fa718dcb 100644
--- a/veilid-core/src/storage_manager/types/signed_value_descriptor.rs
+++ b/veilid-core/src/storage_manager/types/signed_value_descriptor.rs
@@ -31,7 +31,7 @@ impl SignedValueDescriptor {
         }
     }
 
-    pub fn validate(&self, vcrypto: CryptoSystemVersion) -> Result<(), VeilidAPIError> {
+    pub fn validate(&self, vcrypto: CryptoSystemVersion) -> VeilidAPIResult<()> {
         // validate signature
         vcrypto.verify(&self.owner, &self.schema_data, &self.signature)
     }
@@ -44,7 +44,7 @@ impl SignedValueDescriptor {
         &self.schema_data
     }
 
-    pub fn schema(&self) -> Result<DHTSchema, VeilidAPIError> {
+    pub fn schema(&self) -> VeilidAPIResult<DHTSchema> {
         DHTSchema::try_from(self.schema_data.as_slice())
     }
 
@@ -57,7 +57,7 @@ impl SignedValueDescriptor {
         schema_data: Vec<u8>,
         vcrypto: CryptoSystemVersion,
         owner_secret: SecretKey,
-    ) -> Result<Self, VeilidAPIError> {
+    ) -> VeilidAPIResult<Self> {
         // create signature
         let signature = vcrypto.sign(&owner, &owner_secret, &schema_data)?;
         Ok(Self {
diff --git a/veilid-core/src/table_store/table_store.rs b/veilid-core/src/table_store/table_store.rs
index b3a60080..c8fd03a1 100644
--- a/veilid-core/src/table_store/table_store.rs
+++ b/veilid-core/src/table_store/table_store.rs
@@ -169,7 +169,7 @@ impl TableStore {
         // Get device encryption key from protected store
         let mut encryption_key: Option<TypedSharedSecret> = self
             .protected_store
-            .load_user_secret_rkyv("device_encryption_key")
+            .load_user_secret_json("device_encryption_key")
             .await?;
 
         if let Some(encryption_key) = encryption_key {
@@ -183,7 +183,14 @@ impl TableStore {
             let best_kind = best_crypto_kind();
             let mut shared_secret = SharedSecret::default();
             random_bytes(&mut shared_secret.bytes);
-            encryption_key = Some(TypedSharedSecret::new(best_kind, shared_secret));
+            let device_encryption_key = TypedSharedSecret::new(best_kind, shared_secret);
+
+            // Save the new device encryption key
+            self.protected_store
+                .save_user_secret_json("device_encryption_key", &device_encryption_key)
+                .await?;
+
+            encryption_key = Some(device_encryption_key);
         }
 
         // Deserialize all table names
diff --git a/veilid-core/src/veilid_api/api.rs b/veilid-core/src/veilid_api/api.rs
index 7069f0cd..ab40f11f 100644
--- a/veilid-core/src/veilid_api/api.rs
+++ b/veilid-core/src/veilid_api/api.rs
@@ -49,70 +49,70 @@ impl VeilidAPI {
 
     ////////////////////////////////////////////////////////////////
     // Accessors
-    pub fn config(&self) -> Result<VeilidConfig, VeilidAPIError> {
+    pub fn config(&self) -> VeilidAPIResult<VeilidConfig> {
         let inner = self.inner.lock();
         if let Some(context) = &inner.context {
             return Ok(context.config.clone());
         }
         Err(VeilidAPIError::NotInitialized)
     }
-    pub fn crypto(&self) -> Result<Crypto, VeilidAPIError> {
+    pub fn crypto(&self) -> VeilidAPIResult<Crypto> {
         let inner = self.inner.lock();
         if let Some(context) = &inner.context {
             return Ok(context.crypto.clone());
         }
         Err(VeilidAPIError::NotInitialized)
     }
-    pub fn table_store(&self) -> Result<TableStore, VeilidAPIError> {
+    pub fn table_store(&self) -> VeilidAPIResult<TableStore> {
         let inner = self.inner.lock();
         if let Some(context) = &inner.context {
             return Ok(context.table_store.clone());
         }
         Err(VeilidAPIError::not_initialized())
     }
-    pub fn block_store(&self) -> Result<BlockStore, VeilidAPIError> {
+    pub fn block_store(&self) -> VeilidAPIResult<BlockStore> {
         let inner = self.inner.lock();
         if let Some(context) = &inner.context {
             return Ok(context.block_store.clone());
         }
         Err(VeilidAPIError::not_initialized())
     }
-    pub fn protected_store(&self) -> Result<ProtectedStore, VeilidAPIError> {
+    pub fn protected_store(&self) -> VeilidAPIResult<ProtectedStore> {
         let inner = self.inner.lock();
         if let Some(context) = &inner.context {
             return Ok(context.protected_store.clone());
         }
         Err(VeilidAPIError::not_initialized())
     }
-    pub fn attachment_manager(&self) -> Result<AttachmentManager, VeilidAPIError> {
+    pub fn attachment_manager(&self) -> VeilidAPIResult<AttachmentManager> {
         let inner = self.inner.lock();
         if let Some(context) = &inner.context {
             return Ok(context.attachment_manager.clone());
         }
         Err(VeilidAPIError::not_initialized())
     }
-    pub fn network_manager(&self) -> Result<NetworkManager, VeilidAPIError> {
+    pub fn network_manager(&self) -> VeilidAPIResult<NetworkManager> {
         let inner = self.inner.lock();
         if let Some(context) = &inner.context {
             return Ok(context.attachment_manager.network_manager());
         }
         Err(VeilidAPIError::not_initialized())
     }
-    pub fn rpc_processor(&self) -> Result<RPCProcessor, VeilidAPIError> {
+    pub fn rpc_processor(&self) -> VeilidAPIResult<RPCProcessor> {
         let inner = self.inner.lock();
         if let Some(context) = &inner.context {
             return Ok(context.attachment_manager.network_manager().rpc_processor());
         }
         Err(VeilidAPIError::NotInitialized)
     }
-    pub fn routing_table(&self) -> Result<RoutingTable, VeilidAPIError> {
+    pub fn routing_table(&self) -> VeilidAPIResult<RoutingTable> {
         let inner = self.inner.lock();
         if let Some(context) = &inner.context {
             return Ok(context.attachment_manager.network_manager().routing_table());
         }
         Err(VeilidAPIError::NotInitialized)
     }
-    pub fn storage_manager(&self) -> Result<StorageManager, VeilidAPIError> {
+    pub fn storage_manager(&self) -> VeilidAPIResult<StorageManager> {
         let inner = self.inner.lock();
         if let Some(context) = &inner.context {
             return Ok(context.storage_manager.clone());
@@ -124,7 +124,7 @@ impl VeilidAPI {
     // Attach/Detach
 
     /// Get a full copy of the current state
-    pub async fn get_state(&self) -> Result<VeilidState, VeilidAPIError> {
+    pub async fn get_state(&self) -> VeilidAPIResult<VeilidState> {
         let attachment_manager = self.attachment_manager()?;
         let network_manager = attachment_manager.network_manager();
         let config = self.config()?;
@@ -142,7 +142,7 @@ impl VeilidAPI {
 
     /// Connect to the network
     #[instrument(level = "debug", err, skip_all)]
-    pub async fn attach(&self) -> Result<(), VeilidAPIError> {
+    pub async fn attach(&self) -> VeilidAPIResult<()> {
         let attachment_manager = self.attachment_manager()?;
         if !attachment_manager.attach().await {
             apibail_generic!("Already attached");
@@ -152,7 +152,7 @@ impl VeilidAPI {
 
     /// Disconnect from the network
     #[instrument(level = "debug", err, skip_all)]
-    pub async fn detach(&self) -> Result<(), VeilidAPIError> {
+    pub async fn detach(&self) -> VeilidAPIResult<()> {
         let attachment_manager = self.attachment_manager()?;
         if !attachment_manager.detach().await {
             apibail_generic!("Already detached");
@@ -175,7 +175,7 @@ impl VeilidAPI {
     /// Returns a route id and a publishable 'blob' with the route encrypted with each crypto kind
     /// Those nodes importing the blob will have their choice of which crypto kind to use
     #[instrument(level = "debug", skip(self))]
-    pub async fn new_private_route(&self) -> Result<(RouteId, Vec<u8>), VeilidAPIError> {
+    pub async fn new_private_route(&self) -> VeilidAPIResult<(RouteId, Vec<u8>)> {
         self.new_custom_private_route(
             &VALID_CRYPTO_KINDS,
             Stability::default(),
@@ -191,7 +191,7 @@ impl VeilidAPI {
         crypto_kinds: &[CryptoKind],
         stability: Stability,
         sequencing: Sequencing,
-    ) -> Result<(RouteId, Vec<u8>), VeilidAPIError> {
+    ) -> VeilidAPIResult<(RouteId, Vec<u8>)> {
         let default_route_hop_count: usize = {
             let config = self.config()?;
             let c = config.get();
@@ -238,14 +238,14 @@ impl VeilidAPI {
     }
 
     #[instrument(level = "debug", skip(self))]
-    pub fn import_remote_private_route(&self, blob: Vec<u8>) -> Result<RouteId, VeilidAPIError> {
+    pub fn import_remote_private_route(&self, blob: Vec<u8>) -> VeilidAPIResult<RouteId> {
         let rss = self.routing_table()?.route_spec_store();
         rss.import_remote_private_route(blob)
             .map_err(|e| VeilidAPIError::invalid_argument(e, "blob", "private route blob"))
     }
 
     #[instrument(level = "debug", skip(self))]
-    pub fn release_private_route(&self, route_id: RouteId) -> Result<(), VeilidAPIError> {
+    pub fn release_private_route(&self, route_id: RouteId) -> VeilidAPIResult<()> {
         let rss = self.routing_table()?.route_spec_store();
         if !rss.release_route(route_id) {
             apibail_invalid_argument!("release_private_route", "key", route_id);
@@ -257,11 +257,7 @@ impl VeilidAPI {
     // App Calls
 
     #[instrument(level = "debug", skip(self))]
-    pub async fn app_call_reply(
-        &self,
-        id: OperationId,
-        message: Vec<u8>,
-    ) -> Result<(), VeilidAPIError> {
+    pub async fn app_call_reply(&self, id: OperationId, message: Vec<u8>) -> VeilidAPIResult<()> {
         let rpc_processor = self.rpc_processor()?;
         rpc_processor
             .app_call_reply(id, message)
@@ -277,7 +273,7 @@ impl VeilidAPI {
         &self,
         _endpoint_mode: TunnelMode,
         _depth: u8,
-    ) -> Result<PartialTunnel, VeilidAPIError> {
+    ) -> VeilidAPIResult<PartialTunnel> {
         panic!("unimplemented");
     }
 
@@ -287,12 +283,12 @@ impl VeilidAPI {
         _endpoint_mode: TunnelMode,
         _depth: u8,
         _partial_tunnel: PartialTunnel,
-    ) -> Result<FullTunnel, VeilidAPIError> {
+    ) -> VeilidAPIResult<FullTunnel> {
         panic!("unimplemented");
     }
 
     #[instrument(level = "debug", err, skip(self))]
-    pub async fn cancel_tunnel(&self, _tunnel_id: TunnelId) -> Result<bool, VeilidAPIError> {
+    pub async fn cancel_tunnel(&self, _tunnel_id: TunnelId) -> VeilidAPIResult<bool> {
         panic!("unimplemented");
     }
 }
diff --git a/veilid-core/src/veilid_api/debug.rs b/veilid-core/src/veilid_api/debug.rs
index f54471e2..7151b680 100644
--- a/veilid-core/src/veilid_api/debug.rs
+++ b/veilid-core/src/veilid_api/debug.rs
@@ -305,7 +305,7 @@ fn get_debug_argument<T, G: FnOnce(&str) -> Option<T>>(
     context: &str,
     argument: &str,
     getter: G,
-) -> Result<T, VeilidAPIError> {
+) -> VeilidAPIResult<T> {
     let Some(val) = getter(value) else {
         apibail_invalid_argument!(context, argument, value);
     };
@@ -317,7 +317,7 @@ fn get_debug_argument_at<T, G: FnOnce(&str) -> Option<T>>(
     context: &str,
     argument: &str,
     getter: G,
-) -> Result<T, VeilidAPIError> {
+) -> VeilidAPIResult<T> {
     if pos >= debug_args.len() {
         apibail_missing_argument!(context, argument);
     }
@@ -329,7 +329,7 @@ fn get_debug_argument_at<T, G: FnOnce(&str) -> Option<T>>(
 }
 
 impl VeilidAPI {
-    async fn debug_buckets(&self, args: String) -> Result<String, VeilidAPIError> {
+    async fn debug_buckets(&self, args: String) -> VeilidAPIResult<String> {
         let args: Vec<String> = args.split_whitespace().map(|s| s.to_owned()).collect();
         let mut min_state = BucketEntryState::Unreliable;
         if args.len() == 1 {
@@ -345,19 +345,19 @@ impl VeilidAPI {
         Ok(routing_table.debug_info_buckets(min_state))
     }
 
-    async fn debug_dialinfo(&self, _args: String) -> Result<String, VeilidAPIError> {
+    async fn debug_dialinfo(&self, _args: String) -> VeilidAPIResult<String> {
         // Dump routing table dialinfo
         let routing_table = self.network_manager()?.routing_table();
         Ok(routing_table.debug_info_dialinfo())
     }
 
-    async fn debug_txtrecord(&self, _args: String) -> Result<String, VeilidAPIError> {
+    async fn debug_txtrecord(&self, _args: String) -> VeilidAPIResult<String> {
         // Dump routing table txt record
         let routing_table = self.network_manager()?.routing_table();
         Ok(routing_table.debug_info_txtrecord().await)
     }
 
-    async fn debug_entries(&self, args: String) -> Result<String, VeilidAPIError> {
+    async fn debug_entries(&self, args: String) -> VeilidAPIResult<String> {
         let args: Vec<String> = args.split_whitespace().map(|s| s.to_owned()).collect();
 
         let mut min_state = BucketEntryState::Unreliable;
@@ -374,7 +374,7 @@ impl VeilidAPI {
         Ok(routing_table.debug_info_entries(min_state))
     }
 
-    async fn debug_entry(&self, args: String) -> Result<String, VeilidAPIError> {
+    async fn debug_entry(&self, args: String) -> VeilidAPIResult<String> {
         let args: Vec<String> = args.split_whitespace().map(|s| s.to_owned()).collect();
         let routing_table = self.network_manager()?.routing_table();
 
@@ -391,13 +391,13 @@ impl VeilidAPI {
         Ok(routing_table.debug_info_entry(node_ref))
     }
 
-    async fn debug_nodeinfo(&self, _args: String) -> Result<String, VeilidAPIError> {
+    async fn debug_nodeinfo(&self, _args: String) -> VeilidAPIResult<String> {
         // Dump routing table entry
         let routing_table = self.network_manager()?.routing_table();
         Ok(routing_table.debug_info_nodeinfo())
     }
 
-    async fn debug_config(&self, args: String) -> Result<String, VeilidAPIError> {
+    async fn debug_config(&self, args: String) -> VeilidAPIResult<String> {
         let config = self.config()?;
         let args = args.trim_start();
         if args.is_empty() {
@@ -426,7 +426,7 @@ impl VeilidAPI {
         Ok("Config value set".to_owned())
     }
 
-    async fn debug_restart(&self, args: String) -> Result<String, VeilidAPIError> {
+    async fn debug_restart(&self, args: String) -> VeilidAPIResult<String> {
         let args = args.trim_start();
         if args.is_empty() {
             apibail_missing_argument!("debug_restart", "arg_0");
@@ -452,7 +452,7 @@ impl VeilidAPI {
         }
     }
 
-    async fn debug_purge(&self, args: String) -> Result<String, VeilidAPIError> {
+    async fn debug_purge(&self, args: String) -> VeilidAPIResult<String> {
         let args: Vec<String> = args.split_whitespace().map(|s| s.to_owned()).collect();
         if !args.is_empty() {
             if args[0] == "buckets" {
@@ -504,7 +504,7 @@ impl VeilidAPI {
         }
     }
 
-    async fn debug_attach(&self, _args: String) -> Result<String, VeilidAPIError> {
+    async fn debug_attach(&self, _args: String) -> VeilidAPIResult<String> {
         if !matches!(
             self.get_state().await?.attachment.state,
             AttachmentState::Detached
@@ -517,7 +517,7 @@ impl VeilidAPI {
         Ok("Attached".to_owned())
     }
 
-    async fn debug_detach(&self, _args: String) -> Result<String, VeilidAPIError> {
+    async fn debug_detach(&self, _args: String) -> VeilidAPIResult<String> {
         if matches!(
             self.get_state().await?.attachment.state,
             AttachmentState::Detaching
@@ -530,7 +530,7 @@ impl VeilidAPI {
         Ok("Detached".to_owned())
     }
 
-    async fn debug_contact(&self, args: String) -> Result<String, VeilidAPIError> {
+    async fn debug_contact(&self, args: String) -> VeilidAPIResult<String> {
         let args: Vec<String> = args.split_whitespace().map(|s| s.to_owned()).collect();
 
         let network_manager = self.network_manager()?;
@@ -551,7 +551,7 @@ impl VeilidAPI {
         Ok(format!("{:#?}", cm))
     }
 
-    async fn debug_ping(&self, args: String) -> Result<String, VeilidAPIError> {
+    async fn debug_ping(&self, args: String) -> VeilidAPIResult<String> {
         let netman = self.network_manager()?;
         let routing_table = netman.routing_table();
         let rpc = netman.rpc_processor();
@@ -593,7 +593,7 @@ impl VeilidAPI {
         Ok(format!("{:#?}", out))
     }
 
-    async fn debug_route_allocate(&self, args: Vec<String>) -> Result<String, VeilidAPIError> {
+    async fn debug_route_allocate(&self, args: Vec<String>) -> VeilidAPIResult<String> {
         // [ord|*ord] [rel] [<count>] [in|out] [avoid_node_id]
 
         let netman = self.network_manager()?;
@@ -652,7 +652,7 @@ impl VeilidAPI {
 
         Ok(out)
     }
-    async fn debug_route_release(&self, args: Vec<String>) -> Result<String, VeilidAPIError> {
+    async fn debug_route_release(&self, args: Vec<String>) -> VeilidAPIResult<String> {
         // <route id>
         let netman = self.network_manager()?;
         let routing_table = netman.routing_table();
@@ -684,7 +684,7 @@ impl VeilidAPI {
 
         Ok(out)
     }
-    async fn debug_route_publish(&self, args: Vec<String>) -> Result<String, VeilidAPIError> {
+    async fn debug_route_publish(&self, args: Vec<String>) -> VeilidAPIResult<String> {
         // <route id> [full]
         let netman = self.network_manager()?;
         let routing_table = netman.routing_table();
@@ -736,7 +736,7 @@ impl VeilidAPI {
 
         Ok(out)
     }
-    async fn debug_route_unpublish(&self, args: Vec<String>) -> Result<String, VeilidAPIError> {
+    async fn debug_route_unpublish(&self, args: Vec<String>) -> VeilidAPIResult<String> {
         // <route id>
         let netman = self.network_manager()?;
         let routing_table = netman.routing_table();
@@ -758,7 +758,7 @@ impl VeilidAPI {
         };
         Ok(out)
     }
-    async fn debug_route_print(&self, args: Vec<String>) -> Result<String, VeilidAPIError> {
+    async fn debug_route_print(&self, args: Vec<String>) -> VeilidAPIResult<String> {
         // <route id>
         let netman = self.network_manager()?;
         let routing_table = netman.routing_table();
@@ -777,7 +777,7 @@ impl VeilidAPI {
             None => Ok("Route does not exist".to_owned()),
         }
     }
-    async fn debug_route_list(&self, _args: Vec<String>) -> Result<String, VeilidAPIError> {
+    async fn debug_route_list(&self, _args: Vec<String>) -> VeilidAPIResult<String> {
         //
         let netman = self.network_manager()?;
         let routing_table = netman.routing_table();
@@ -800,7 +800,7 @@ impl VeilidAPI {
 
         Ok(out)
     }
-    async fn debug_route_import(&self, args: Vec<String>) -> Result<String, VeilidAPIError> {
+    async fn debug_route_import(&self, args: Vec<String>) -> VeilidAPIResult<String> {
         // <blob>
 
         let blob = get_debug_argument_at(&args, 1, "debug_route", "blob", get_string)?;
@@ -820,7 +820,7 @@ impl VeilidAPI {
         return Ok(out);
     }
 
-    async fn debug_route_test(&self, args: Vec<String>) -> Result<String, VeilidAPIError> {
+    async fn debug_route_test(&self, args: Vec<String>) -> VeilidAPIResult<String> {
         // <route id>
         let netman = self.network_manager()?;
         let routing_table = netman.routing_table();
@@ -848,7 +848,7 @@ impl VeilidAPI {
         return Ok(out);
     }
 
-    async fn debug_route(&self, args: String) -> Result<String, VeilidAPIError> {
+    async fn debug_route(&self, args: String) -> VeilidAPIResult<String> {
         let args: Vec<String> = args.split_whitespace().map(|s| s.to_owned()).collect();
 
         let command = get_debug_argument_at(&args, 0, "debug_route", "command", get_string)?;
@@ -874,7 +874,7 @@ impl VeilidAPI {
         }
     }
 
-    async fn debug_record_list(&self, args: Vec<String>) -> Result<String, VeilidAPIError> {
+    async fn debug_record_list(&self, args: Vec<String>) -> VeilidAPIResult<String> {
         // <local|remote>
         let storage_manager = self.storage_manager()?;
 
@@ -895,7 +895,7 @@ impl VeilidAPI {
         return Ok(out);
     }
 
-    async fn debug_record(&self, args: String) -> Result<String, VeilidAPIError> {
+    async fn debug_record(&self, args: String) -> VeilidAPIResult<String> {
         let args: Vec<String> = args.split_whitespace().map(|s| s.to_owned()).collect();
 
         let command = get_debug_argument_at(&args, 0, "debug_record", "command", get_string)?;
@@ -907,7 +907,7 @@ impl VeilidAPI {
         }
     }
 
-    pub async fn debug_help(&self, _args: String) -> Result<String, VeilidAPIError> {
+    pub async fn debug_help(&self, _args: String) -> VeilidAPIResult<String> {
         Ok(r#">>> Debug commands:
         help
         buckets [dead|reliable]
@@ -947,7 +947,7 @@ impl VeilidAPI {
         .to_owned())
     }
 
-    pub async fn debug(&self, args: String) -> Result<String, VeilidAPIError> {
+    pub async fn debug(&self, args: String) -> VeilidAPIResult<String> {
         let res = {
             let args = args.trim_start();
             if args.is_empty() {
diff --git a/veilid-core/src/veilid_api/routing_context.rs b/veilid-core/src/veilid_api/routing_context.rs
index d7ba5e2c..952a42b7 100644
--- a/veilid-core/src/veilid_api/routing_context.rs
+++ b/veilid-core/src/veilid_api/routing_context.rs
@@ -45,11 +45,11 @@ impl RoutingContext {
         }
     }
 
-    pub fn with_privacy(self) -> Result<Self, VeilidAPIError> {
+    pub fn with_privacy(self) -> VeilidAPIResult<Self> {
         self.with_custom_privacy(Stability::default())
     }
 
-    pub fn with_custom_privacy(self, stability: Stability) -> Result<Self, VeilidAPIError> {
+    pub fn with_custom_privacy(self, stability: Stability) -> VeilidAPIResult<Self> {
         let config = self.api.config()?;
         let c = config.get();
 
@@ -96,10 +96,7 @@ impl RoutingContext {
         self.api.clone()
     }
 
-    async fn get_destination(
-        &self,
-        target: Target,
-    ) -> Result<rpc_processor::Destination, VeilidAPIError> {
+    async fn get_destination(&self, target: Target) -> VeilidAPIResult<rpc_processor::Destination> {
         let rpc_processor = self.api.rpc_processor()?;
 
         match target {
@@ -141,11 +138,7 @@ impl RoutingContext {
     // App-level Messaging
 
     #[instrument(level = "debug", err, skip(self))]
-    pub async fn app_call(
-        &self,
-        target: Target,
-        request: Vec<u8>,
-    ) -> Result<Vec<u8>, VeilidAPIError> {
+    pub async fn app_call(&self, target: Target, request: Vec<u8>) -> VeilidAPIResult<Vec<u8>> {
         let rpc_processor = self.api.rpc_processor()?;
 
         // Get destination
@@ -170,11 +163,7 @@ impl RoutingContext {
     }
 
     #[instrument(level = "debug", err, skip(self))]
-    pub async fn app_message(
-        &self,
-        target: Target,
-        message: Vec<u8>,
-    ) -> Result<(), VeilidAPIError> {
+    pub async fn app_message(&self, target: Target, message: Vec<u8>) -> VeilidAPIResult<()> {
         let rpc_processor = self.api.rpc_processor()?;
 
         // Get destination
@@ -206,7 +195,7 @@ impl RoutingContext {
         &self,
         kind: CryptoKind,
         schema: DHTSchema,
-    ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
+    ) -> VeilidAPIResult<DHTRecordDescriptor> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager
             .create_record(kind, schema, self.unlocked_inner.safety_selection)
@@ -220,7 +209,7 @@ impl RoutingContext {
         &self,
         key: TypedKey,
         writer: Option<KeyPair>,
-    ) -> Result<DHTRecordDescriptor, VeilidAPIError> {
+    ) -> VeilidAPIResult<DHTRecordDescriptor> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager
             .open_record(key, writer, self.unlocked_inner.safety_selection)
@@ -229,7 +218,7 @@ impl RoutingContext {
 
     /// Closes a DHT record at a specific key that was opened with create_dht_record or open_dht_record.
     /// Closing a record allows you to re-open it with a different routing context
-    pub async fn close_dht_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
+    pub async fn close_dht_record(&self, key: TypedKey) -> VeilidAPIResult<()> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager.close_record(key).await
     }
@@ -237,7 +226,7 @@ impl RoutingContext {
     /// Deletes a DHT record at a specific key. If the record is opened, it must be closed before it is deleted.
     /// Deleting a record does not delete it from the network, but will remove the storage of the record
     /// locally, and will prevent its value from being refreshed on the network by this node.
-    pub async fn delete_dht_record(&self, key: TypedKey) -> Result<(), VeilidAPIError> {
+    pub async fn delete_dht_record(&self, key: TypedKey) -> VeilidAPIResult<()> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager.delete_record(key).await
     }
@@ -251,7 +240,7 @@ impl RoutingContext {
         key: TypedKey,
         subkey: ValueSubkey,
         force_refresh: bool,
-    ) -> Result<Option<ValueData>, VeilidAPIError> {
+    ) -> VeilidAPIResult<Option<ValueData>> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager.get_value(key, subkey, force_refresh).await
     }
@@ -264,7 +253,7 @@ impl RoutingContext {
         key: TypedKey,
         subkey: ValueSubkey,
         data: Vec<u8>,
-    ) -> Result<Option<ValueData>, VeilidAPIError> {
+    ) -> VeilidAPIResult<Option<ValueData>> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager.set_value(key, subkey, data).await
     }
@@ -280,7 +269,7 @@ impl RoutingContext {
         subkeys: ValueSubkeyRangeSet,
         expiration: Timestamp,
         count: u32,
-    ) -> Result<Timestamp, VeilidAPIError> {
+    ) -> VeilidAPIResult<Timestamp> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager
             .watch_values(key, subkeys, expiration, count)
@@ -293,7 +282,7 @@ impl RoutingContext {
         &self,
         key: TypedKey,
         subkeys: ValueSubkeyRangeSet,
-    ) -> Result<bool, VeilidAPIError> {
+    ) -> VeilidAPIResult<bool> {
         let storage_manager = self.api.storage_manager()?;
         storage_manager.cancel_watch_values(key, subkeys).await
     }
@@ -301,11 +290,11 @@ impl RoutingContext {
     ///////////////////////////////////
     /// Block Store
 
-    pub async fn find_block(&self, _block_id: PublicKey) -> Result<Vec<u8>, VeilidAPIError> {
+    pub async fn find_block(&self, _block_id: PublicKey) -> VeilidAPIResult<Vec<u8>> {
         panic!("unimplemented");
     }
 
-    pub async fn supply_block(&self, _block_id: PublicKey) -> Result<bool, VeilidAPIError> {
+    pub async fn supply_block(&self, _block_id: PublicKey) -> VeilidAPIResult<bool> {
         panic!("unimplemented");
     }
 }
diff --git a/veilid-core/src/veilid_api/serialize_helpers/serialize_json.rs b/veilid-core/src/veilid_api/serialize_helpers/serialize_json.rs
index 39494fd4..5e98624c 100644
--- a/veilid-core/src/veilid_api/serialize_helpers/serialize_json.rs
+++ b/veilid-core/src/veilid_api/serialize_helpers/serialize_json.rs
@@ -3,9 +3,7 @@ use super::*;
 // Don't trace these functions as they are used in the transfer of API logs, which will recurse!
 
 // #[instrument(level = "trace", ret, err)]
-pub fn deserialize_json<'a, T: de::Deserialize<'a> + Debug>(
-    arg: &'a str,
-) -> Result<T, VeilidAPIError> {
+pub fn deserialize_json<'a, T: de::Deserialize<'a> + Debug>(arg: &'a str) -> VeilidAPIResult<T> {
     serde_json::from_str(arg).map_err(|e| VeilidAPIError::ParseError {
         message: e.to_string(),
         value: format!(
@@ -19,7 +17,7 @@ pub fn deserialize_json<'a, T: de::Deserialize<'a> + Debug>(
 // #[instrument(level = "trace", ret, err)]
 pub fn deserialize_opt_json<T: de::DeserializeOwned + Debug>(
     arg: Option<String>,
-) -> Result<T, VeilidAPIError> {
+) -> VeilidAPIResult<T> {
     let arg = arg.as_ref().ok_or_else(|| VeilidAPIError::ParseError {
         message: "invalid null string".to_owned(),
         value: format!(
diff --git a/veilid-core/src/veilid_config.rs b/veilid-core/src/veilid_config.rs
index d79377af..2b2aab55 100644
--- a/veilid-core/src/veilid_config.rs
+++ b/veilid-core/src/veilid_config.rs
@@ -1,7 +1,7 @@
 use crate::*;
 
 ////////////////////////////////////////////////////////////////////////////////////////////////
-pub type ConfigCallbackReturn = Result<Box<dyn core::any::Any + Send>, VeilidAPIError>;
+pub type ConfigCallbackReturn = VeilidAPIResult<Box<dyn core::any::Any + Send>>;
 pub type ConfigCallback = Arc<dyn Fn(String) -> ConfigCallbackReturn + Send + Sync>;
 
 /// Enable and configure HTTPS access to the Veilid node
@@ -585,7 +585,7 @@ impl VeilidConfig {
         &mut self,
         config: String,
         update_cb: UpdateCallback,
-    ) -> Result<(), VeilidAPIError> {
+    ) -> VeilidAPIResult<()> {
         self.update_cb = Some(update_cb);
 
         self.with_mut(|inner| {
@@ -594,11 +594,7 @@ impl VeilidConfig {
         })
     }
 
-    pub fn setup(
-        &mut self,
-        cb: ConfigCallback,
-        update_cb: UpdateCallback,
-    ) -> Result<(), VeilidAPIError> {
+    pub fn setup(&mut self, cb: ConfigCallback, update_cb: UpdateCallback) -> VeilidAPIResult<()> {
         self.update_cb = Some(update_cb);
         self.with_mut(|inner| {
             // Simple config transformation
@@ -738,9 +734,9 @@ impl VeilidConfig {
         safe_cfg
     }
 
-    pub fn with_mut<F, R>(&self, f: F) -> Result<R, VeilidAPIError>
+    pub fn with_mut<F, R>(&self, f: F) -> VeilidAPIResult<R>
     where
-        F: FnOnce(&mut VeilidConfigInner) -> Result<R, VeilidAPIError>,
+        F: FnOnce(&mut VeilidConfigInner) -> VeilidAPIResult<R>,
     {
         let out = {
             let inner = &mut *self.inner.write();
@@ -764,7 +760,7 @@ impl VeilidConfig {
         Ok(out)
     }
 
-    pub fn get_key_json(&self, key: &str) -> Result<String, VeilidAPIError> {
+    pub fn get_key_json(&self, key: &str) -> VeilidAPIResult<String> {
         let c = self.get();
 
         // Generate json from whole config
@@ -787,7 +783,7 @@ impl VeilidConfig {
             Ok(out.to_string())
         }
     }
-    pub fn set_key_json(&self, key: &str, value: &str) -> Result<(), VeilidAPIError> {
+    pub fn set_key_json(&self, key: &str, value: &str) -> VeilidAPIResult<()> {
         self.with_mut(|c| {
             // Split key into path parts
             let keypath: Vec<&str> = key.split('.').collect();
@@ -824,7 +820,7 @@ impl VeilidConfig {
         })
     }
 
-    fn validate(inner: &VeilidConfigInner) -> Result<(), VeilidAPIError> {
+    fn validate(inner: &VeilidConfigInner) -> VeilidAPIResult<()> {
         if inner.program_name.is_empty() {
             apibail_generic!("Program name must not be empty in 'program_name'");
         }
@@ -929,12 +925,12 @@ impl VeilidConfig {
         Ok(())
     }
 
-    #[cfg(not(test))]
+    //xxx#[cfg(not(test))]
     async fn init_node_id(
         &self,
         vcrypto: CryptoSystemVersion,
-        protected_store: intf::ProtectedStore,
-    ) -> Result<(TypedKey, TypedSecret), VeilidAPIError> {
+        table_store: TableStore,
+    ) -> VeilidAPIResult<(TypedKey, TypedSecret)> {
         let ck = vcrypto.kind();
         let mut node_id = self.inner.read().network.routing_table.node_id.get(ck);
         let mut node_id_secret = self
@@ -945,45 +941,36 @@ impl VeilidConfig {
             .node_id_secret
             .get(ck);
 
-        // See if node id was previously stored in the protected store
+        // See if node id was previously stored in the table store
+        let config_table = table_store.open("__veilid_config", 1).await?;
+
+        let table_key_node_id = format!("node_id_{}", ck);
+        let table_key_node_id_secret = format!("node_id_secret_{}", ck);
+
         if node_id.is_none() {
-            debug!("pulling node_id_{} from storage", ck);
-            if let Some(s) = protected_store
-                .load_user_secret_string(format!("node_id_{}", ck))
+            debug!("pulling {} from storage", table_key_node_id);
+            if let Ok(Some(stored_node_id)) = config_table
+                .load_json::<TypedKey>(0, table_key_node_id.as_bytes())
                 .await
-                .map_err(VeilidAPIError::internal)?
             {
-                debug!("node_id_{} found in storage", ck);
-                node_id = match TypedKey::from_str(s.as_str()) {
-                    Ok(v) => Some(v),
-                    Err(_) => {
-                        debug!("node id in protected store is not valid");
-                        None
-                    }
-                }
+                debug!("{} found in storage", table_key_node_id);
+                node_id = Some(stored_node_id);
             } else {
-                debug!("node_id_{} not found in storage", ck);
+                debug!("{} not found in storage", table_key_node_id);
             }
         }
 
         // See if node id secret was previously stored in the protected store
         if node_id_secret.is_none() {
-            debug!("pulling node id secret from storage");
-            if let Some(s) = protected_store
-                .load_user_secret_string(format!("node_id_secret_{}", ck))
+            debug!("pulling {} from storage", table_key_node_id_secret);
+            if let Ok(Some(stored_node_id_secret)) = config_table
+                .load_json::<TypedSecret>(0, table_key_node_id_secret.as_bytes())
                 .await
-                .map_err(VeilidAPIError::internal)?
             {
-                debug!("node_id_secret_{} found in storage", ck);
-                node_id_secret = match TypedSecret::from_str(s.as_str()) {
-                    Ok(v) => Some(v),
-                    Err(_) => {
-                        debug!("node id secret in protected store is not valid");
-                        None
-                    }
-                }
+                debug!("{} found in storage", table_key_node_id_secret);
+                node_id_secret = Some(stored_node_id_secret);
             } else {
-                debug!("node_id_secret_{} not found in storage", ck);
+                debug!("{} not found in storage", table_key_node_id_secret);
             }
         }
 
@@ -1007,14 +994,12 @@ impl VeilidConfig {
         info!("Node Id: {}", node_id);
 
         // Save the node id / secret in storage
-        protected_store
-            .save_user_secret_string(format!("node_id_{}", ck), node_id.to_string())
-            .await
-            .map_err(VeilidAPIError::internal)?;
-        protected_store
-            .save_user_secret_string(format!("node_id_secret_{}", ck), node_id_secret.to_string())
-            .await
-            .map_err(VeilidAPIError::internal)?;
+        config_table
+            .store_json(0, table_key_node_id.as_bytes(), &node_id)
+            .await?;
+        config_table
+            .store_json(0, table_key_node_id_secret.as_bytes(), &node_id_secret)
+            .await?;
 
         Ok((node_id, node_id_secret))
     }
@@ -1025,8 +1010,8 @@ impl VeilidConfig {
     pub async fn init_node_ids(
         &self,
         crypto: Crypto,
-        protected_store: intf::ProtectedStore,
-    ) -> Result<(), VeilidAPIError> {
+        table_store: TableStore,
+    ) -> VeilidAPIResult<()> {
         let mut out_node_id = TypedKeySet::new();
         let mut out_node_id_secret = TypedSecretSet::new();
 
@@ -1041,8 +1026,7 @@ impl VeilidConfig {
                 (TypedKey::new(ck, kp.key), TypedSecret::new(ck, kp.secret))
             };
             #[cfg(not(test))]
-            let (node_id, node_id_secret) =
-                self.init_node_id(vcrypto, protected_store.clone()).await?;
+            let (node_id, node_id_secret) = self.init_node_id(vcrypto, table_store.clone()).await?;
 
             // Save for config
             out_node_id.add(node_id);
diff --git a/veilid-server/src/client_api.rs b/veilid-server/src/client_api.rs
index fac14b9a..269dce3a 100644
--- a/veilid-server/src/client_api.rs
+++ b/veilid-server/src/client_api.rs
@@ -19,7 +19,7 @@ use veilid_core::*;
 
 // Encoding for ApiResult
 fn encode_api_result<T: Serialize + fmt::Debug>(
-    result: &Result<T, VeilidAPIError>,
+    result: &VeilidAPIResult<T>,
     builder: &mut api_result::Builder,
 ) {
     match result {

From f9a9949466f3a325a15abe89725105e3e6982f25 Mon Sep 17 00:00:00 2001
From: Teknique <teknique@honeypot.net>
Date: Thu, 25 May 2023 10:42:25 -0700
Subject: [PATCH 61/74] Added serialization tests to iOS/Android and wasm

---
 veilid-core/src/tests/native/mod.rs |  7 ++++++-
 veilid-core/tests/web.rs            | 12 ++++++++++++
 2 files changed, 18 insertions(+), 1 deletion(-)

diff --git a/veilid-core/src/tests/native/mod.rs b/veilid-core/src/tests/native/mod.rs
index 57855174..f6675a6f 100644
--- a/veilid-core/src/tests/native/mod.rs
+++ b/veilid-core/src/tests/native/mod.rs
@@ -11,6 +11,7 @@ use crate::*;
 
 #[allow(dead_code)]
 pub async fn run_all_tests() {
+    // iOS and Android tests also run these.
     info!("TEST: test_host_interface");
     test_host_interface::test_all().await;
     info!("TEST: test_types");
@@ -31,6 +32,10 @@ pub async fn run_all_tests() {
     test_crypto::test_all().await;
     info!("TEST: test_envelope_receipt");
     test_envelope_receipt::test_all().await;
+    info!("TEST: veilid_api::test_serialize");
+    veilid_api::tests::test_serialize_rkyv::test_all().await;
+    info!("TEST: routing_table::test_serialize");
+    routing_table::tests::test_serialize::test_all().await;
 
     info!("Finished unit tests");
 }
@@ -170,7 +175,7 @@ cfg_if! {
         fn run_test_serialize_rkyv() {
             setup();
             block_on(async {
-                test_serialize_rkyv::test_all().await;
+                veilid_api::tests::test_serialize_rkyv::test_all().await;
             })
         }
 
diff --git a/veilid-core/tests/web.rs b/veilid-core/tests/web.rs
index 8d03d596..4e77ee6b 100644
--- a/veilid-core/tests/web.rs
+++ b/veilid-core/tests/web.rs
@@ -89,3 +89,15 @@ async fn exec_test_envelope_receipt() {
     setup();
     test_envelope_receipt::test_all().await;
 }
+
+#[wasm_bindgen_test]
+async fn veilid_api__test_serialize_rkyv() {
+    setup();
+    veilid_api::test_serialize_rkyv::test_all().await;
+}
+
+#[wasm_bindgen_test]
+async fn routing_table__test_serialize() {
+    setup();
+    routing_table::test_serialize::test_all().await;
+}

From 983176a9e7496132404b3d5e3e83acbd8c16e070 Mon Sep 17 00:00:00 2001
From: Teknique <teknique@honeypot.net>
Date: Thu, 25 May 2023 10:56:24 -0700
Subject: [PATCH 62/74] =?UTF-8?q?terminate()=20what=20we=E2=80=99ve=20init?=
 =?UTF-8?q?()ed.?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 veilid-core/src/routing_table/tests/test_serialize.rs | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/veilid-core/src/routing_table/tests/test_serialize.rs b/veilid-core/src/routing_table/tests/test_serialize.rs
index d959ded0..169796d9 100644
--- a/veilid-core/src/routing_table/tests/test_serialize.rs
+++ b/veilid-core/src/routing_table/tests/test_serialize.rs
@@ -73,6 +73,10 @@ pub async fn test_routingtable_buckets_round_trip() {
             }
         }
     }
+
+    // Even if these are mocks, we should still practice good hygiene.
+    original.terminate().await;
+    copy.terminate().await;
 }
 
 pub async fn test_all() {

From db4646a7160131260d43115de9875ef7fb6f71e3 Mon Sep 17 00:00:00 2001
From: Teknique <teknique@honeypot.net>
Date: Thu, 25 May 2023 11:02:49 -0700
Subject: [PATCH 63/74] Warnings cleanups

---
 veilid-core/src/routing_table/tests/mod.rs | 2 --
 veilid-core/src/tests/native/mod.rs        | 4 ++--
 veilid-core/src/veilid_api/tests/mod.rs    | 2 --
 3 files changed, 2 insertions(+), 6 deletions(-)

diff --git a/veilid-core/src/routing_table/tests/mod.rs b/veilid-core/src/routing_table/tests/mod.rs
index 8205daa2..209cc9d3 100644
--- a/veilid-core/src/routing_table/tests/mod.rs
+++ b/veilid-core/src/routing_table/tests/mod.rs
@@ -1,3 +1 @@
 pub mod test_serialize;
-
-use super::*;
diff --git a/veilid-core/src/tests/native/mod.rs b/veilid-core/src/tests/native/mod.rs
index f6675a6f..911af7c3 100644
--- a/veilid-core/src/tests/native/mod.rs
+++ b/veilid-core/src/tests/native/mod.rs
@@ -2,9 +2,9 @@
 #![cfg(not(target_arch = "wasm32"))]
 use crate::crypto::tests::*;
 use crate::network_manager::tests::*;
-use crate::routing_table::tests::*;
+use crate::routing_table;
 use crate::tests::common::*;
-use crate::veilid_api::tests::*;
+use crate::veilid_api;
 use crate::*;
 
 ///////////////////////////////////////////////////////////////////////////
diff --git a/veilid-core/src/veilid_api/tests/mod.rs b/veilid-core/src/veilid_api/tests/mod.rs
index 97891419..3c3d2f33 100644
--- a/veilid-core/src/veilid_api/tests/mod.rs
+++ b/veilid-core/src/veilid_api/tests/mod.rs
@@ -1,3 +1 @@
 pub mod test_serialize_rkyv;
-
-use super::*;

From cefbeed09aec0056d6691f323b6e5231a9b00875 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Fri, 26 May 2023 00:51:14 +0100
Subject: [PATCH 64/74] fix submodules

---
 external/keyvaluedb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/external/keyvaluedb b/external/keyvaluedb
index d5c98a36..9bb05a54 160000
--- a/external/keyvaluedb
+++ b/external/keyvaluedb
@@ -1 +1 @@
-Subproject commit d5c98a36aeec1c0d5d2627ed4e55347dee1ae0e4
+Subproject commit 9bb05a54b4c0278a289841b2bf7c1749aa0fbd5d

From 5b0bfcef48da836b96f047f8098e3cecab802323 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Fri, 26 May 2023 00:53:07 +0100
Subject: [PATCH 65/74] checkpoint

---
 veilid-core/src/core_context.rs            |  6 +-
 veilid-core/src/crypto/mod.rs              |  8 +-
 veilid-core/src/table_store/table_store.rs | 96 ++++++++++++++++++----
 veilid-core/src/veilid_config.rs           |  6 +-
 veilid-flutter/lib/default_config.dart     |  2 +
 veilid-flutter/lib/veilid_config.dart      | 21 +++--
 veilid-server/src/cmdline.rs               | 13 +++
 veilid-server/src/settings.rs              | 61 +++++++++++++-
 8 files changed, 178 insertions(+), 35 deletions(-)

diff --git a/veilid-core/src/core_context.rs b/veilid-core/src/core_context.rs
index 97096083..b3d46ab3 100644
--- a/veilid-core/src/core_context.rs
+++ b/veilid-core/src/core_context.rs
@@ -88,11 +88,7 @@ impl ServicesContext {
 
         // Set up crypto
         trace!("init crypto");
-        let crypto = Crypto::new(
-            self.config.clone(),
-            table_store.clone(),
-            protected_store.clone(),
-        );
+        let crypto = Crypto::new(self.config.clone(), table_store.clone());
         if let Err(e) = crypto.init().await {
             error!("failed to init crypto: {}", e);
             self.shutdown().await;
diff --git a/veilid-core/src/crypto/mod.rs b/veilid-core/src/crypto/mod.rs
index be5879a3..d70be8f7 100644
--- a/veilid-core/src/crypto/mod.rs
+++ b/veilid-core/src/crypto/mod.rs
@@ -82,7 +82,6 @@ struct CryptoInner {
 struct CryptoUnlockedInner {
     config: VeilidConfig,
     table_store: TableStore,
-    protected_store: ProtectedStore,
 }
 
 /// Crypto factory implementation
@@ -104,16 +103,11 @@ impl Crypto {
         }
     }
 
-    pub fn new(
-        config: VeilidConfig,
-        table_store: TableStore,
-        protected_store: ProtectedStore,
-    ) -> Self {
+    pub fn new(config: VeilidConfig, table_store: TableStore) -> Self {
         let out = Self {
             unlocked_inner: Arc::new(CryptoUnlockedInner {
                 config,
                 table_store,
-                protected_store,
             }),
             inner: Arc::new(Mutex::new(Self::new_inner())),
         };
diff --git a/veilid-core/src/table_store/table_store.rs b/veilid-core/src/table_store/table_store.rs
index c8fd03a1..3f0c3574 100644
--- a/veilid-core/src/table_store/table_store.rs
+++ b/veilid-core/src/table_store/table_store.rs
@@ -163,19 +163,87 @@ impl TableStore {
         self.flush().await;
     }
 
+    async fn load_device_encryption_key(&self) -> EyreResult<Option<TypedSharedSecret>> {
+        let dek_bytes: Option<Vec<u8>> = self
+            .protected_store
+            .load_user_secret("device_encryption_key")
+            .await?;
+        let Some(dek_bytes) = dek_bytes else {
+            return Ok(None);
+        };
+
+        // Ensure the key is at least as long as necessary if unencrypted
+        if dek_bytes.len() < (4 + SHARED_SECRET_LENGTH) {
+            bail!("device encryption key is not valid");
+        }
+
+        // Get cryptosystem
+        let kind = FourCC::try_from(&dek_bytes[0..4]).unwrap();
+        let crypto = self.inner.lock().crypto.as_ref().unwrap().clone();
+        let Some(vcrypto) = crypto.get(kind) else {
+            bail!("unsupported cryptosystem");
+        };
+
+        // Decrypt encryption key if we have it
+        let device_encryption_key_password = {
+            let c = self.config.get();
+            c.protected_store.device_encryption_key_password.clone()
+        };
+        if !device_encryption_key_password.is_empty() {
+            if dek_bytes.len()
+                != (4 + SHARED_SECRET_LENGTH + vcrypto.aead_overhead() + NONCE_LENGTH)
+            {
+                bail!("password protected device encryption key is not valid");
+            }
+            let protected_key = &dek_bytes[4..(4 + SHARED_SECRET_LENGTH + vcrypto.aead_overhead())];
+            let nonce = &dek_bytes[(4 + SHARED_SECRET_LENGTH + vcrypto.aead_overhead())..];
+
+            let shared_secret = vcrypto
+                .derive_shared_secret(device_encryption_key_password.as_bytes(), &nonce)
+                .wrap_err("failed to derive shared secret")?;
+            let unprotected_key = vcrypto
+                .decrypt_aead(
+                    &protected_key,
+                    &Nonce::try_from(nonce).wrap_err("invalid nonce")?,
+                    &shared_secret,
+                    None,
+                )
+                .wrap_err("failed to decrypt device encryption key")?;
+            return Ok(Some(TypedSharedSecret::new(
+                kind,
+                SharedSecret::try_from(unprotected_key.as_slice())
+                    .wrap_err("invalid shared secret")?,
+            )));
+        }
+
+        Ok(Some(TypedSharedSecret::new(
+            kind,
+            SharedSecret::try_from(&dek_bytes[4..])?,
+        )))
+    }
+    async fn save_device_encryption_key(
+        &self,
+        device_encryption_key: Option<TypedSharedSecret>,
+    ) -> EyreResult<()> {
+        // Save the new device encryption key
+        self.protected_store
+            .save_user_secret_json("device_encryption_key", &device_encryption_key)
+            .await?;
+
+xxxx
+        Ok(())
+    }
+
     pub(crate) async fn init(&self) -> EyreResult<()> {
         let _async_guard = self.async_lock.lock().await;
 
         // Get device encryption key from protected store
-        let mut encryption_key: Option<TypedSharedSecret> = self
-            .protected_store
-            .load_user_secret_json("device_encryption_key")
-            .await?;
-
-        if let Some(encryption_key) = encryption_key {
+        let mut device_encryption_key = self.load_device_encryption_key().await?;
+        let mut device_encryption_key_changed = false;
+        if let Some(device_encryption_key) = device_encryption_key {
             // If encryption in current use is not the best encryption, then run table migration
             let best_kind = best_crypto_kind();
-            if encryption_key.kind != best_kind {
+            if device_encryption_key.kind != best_kind {
                 // XXX: Run migration. See issue #209
             }
         } else {
@@ -183,14 +251,14 @@ impl TableStore {
             let best_kind = best_crypto_kind();
             let mut shared_secret = SharedSecret::default();
             random_bytes(&mut shared_secret.bytes);
-            let device_encryption_key = TypedSharedSecret::new(best_kind, shared_secret);
 
-            // Save the new device encryption key
-            self.protected_store
-                .save_user_secret_json("device_encryption_key", &device_encryption_key)
+            device_encryption_key = Some(TypedSharedSecret::new(best_kind, shared_secret));
+            device_encryption_key_changed = true;
+        }
+
+        if device_encryption_key_changed {
+            self.save_device_encryption_key(device_encryption_key)
                 .await?;
-
-            encryption_key = Some(device_encryption_key);
         }
 
         // Deserialize all table names
@@ -220,7 +288,7 @@ impl TableStore {
 
         {
             let mut inner = self.inner.lock();
-            inner.encryption_key = encryption_key;
+            inner.encryption_key = device_encryption_key;
             inner.all_tables_db = Some(all_tables_db);
         }
 
diff --git a/veilid-core/src/veilid_config.rs b/veilid-core/src/veilid_config.rs
index 2b2aab55..8b00a40d 100644
--- a/veilid-core/src/veilid_config.rs
+++ b/veilid-core/src/veilid_config.rs
@@ -431,6 +431,8 @@ pub struct VeilidConfigProtectedStore {
     pub always_use_insecure_storage: bool,
     pub directory: String,
     pub delete: bool,
+    pub device_encryption_key_password: String,
+    pub new_device_encryption_key_password: Option<String>,
 }
 
 #[derive(
@@ -632,6 +634,8 @@ impl VeilidConfig {
             get_config!(inner.protected_store.always_use_insecure_storage);
             get_config!(inner.protected_store.directory);
             get_config!(inner.protected_store.delete);
+            get_config!(inner.protected_store.device_encryption_key_password);
+            get_config!(inner.protected_store.new_device_encryption_key_password);
             get_config!(inner.network.connection_initial_timeout_ms);
             get_config!(inner.network.connection_inactivity_timeout_ms);
             get_config!(inner.network.max_connections_per_ip4);
@@ -925,7 +929,7 @@ impl VeilidConfig {
         Ok(())
     }
 
-    //xxx#[cfg(not(test))]
+    #[cfg(not(test))]
     async fn init_node_id(
         &self,
         vcrypto: CryptoSystemVersion,
diff --git a/veilid-flutter/lib/default_config.dart b/veilid-flutter/lib/default_config.dart
index f246bb07..30f08c68 100644
--- a/veilid-flutter/lib/default_config.dart
+++ b/veilid-flutter/lib/default_config.dart
@@ -66,6 +66,8 @@ Future<VeilidConfig> getDefaultVeilidConfig(String programName) async {
       alwaysUseInsecureStorage: false,
       directory: "",
       delete: false,
+      deviceEncryptionKey: "",
+      newDeviceEncryptionKey: null,
     ),
     tableStore: VeilidConfigTableStore(
       directory: kIsWeb
diff --git a/veilid-flutter/lib/veilid_config.dart b/veilid-flutter/lib/veilid_config.dart
index a062b8d3..7a2134a8 100644
--- a/veilid-flutter/lib/veilid_config.dart
+++ b/veilid-flutter/lib/veilid_config.dart
@@ -828,13 +828,16 @@ class VeilidConfigProtectedStore {
   bool alwaysUseInsecureStorage;
   String directory;
   bool delete;
+  String deviceEncryptionKey;
+  String? newDeviceEncryptionKey;
 
-  VeilidConfigProtectedStore({
-    required this.allowInsecureFallback,
-    required this.alwaysUseInsecureStorage,
-    required this.directory,
-    required this.delete,
-  });
+  VeilidConfigProtectedStore(
+      {required this.allowInsecureFallback,
+      required this.alwaysUseInsecureStorage,
+      required this.directory,
+      required this.delete,
+      required this.deviceEncryptionKey,
+      String? newDeviceEncryptionKey});
 
   Map<String, dynamic> toJson() {
     return {
@@ -842,6 +845,8 @@ class VeilidConfigProtectedStore {
       'always_use_insecure_storage': alwaysUseInsecureStorage,
       'directory': directory,
       'delete': delete,
+      'device_encryption_key': deviceEncryptionKey,
+      'new_device_encryption_key': newDeviceEncryptionKey,
     };
   }
 
@@ -849,7 +854,9 @@ class VeilidConfigProtectedStore {
       : allowInsecureFallback = json['allow_insecure_fallback'],
         alwaysUseInsecureStorage = json['always_use_insecure_storage'],
         directory = json['directory'],
-        delete = json['delete'];
+        delete = json['delete'],
+        deviceEncryptionKey = json['device_encryption_key'],
+        newDeviceEncryptionKey = json['new_device_encryption_key'];
 }
 
 ////////////
diff --git a/veilid-server/src/cmdline.rs b/veilid-server/src/cmdline.rs
index f2e7906a..1a349bf6 100644
--- a/veilid-server/src/cmdline.rs
+++ b/veilid-server/src/cmdline.rs
@@ -42,6 +42,19 @@ fn do_clap_matches(default_config_path: &OsStr) -> Result<clap::ArgMatches, clap
                 .multiple_occurrences(true)
                 .help("Specify configuration value to set (key in dot format, value in json format), eg: logging.api.enabled=true")
         )
+        .arg(
+            Arg::new("password")
+                .short('p')
+                .long("password")
+                .takes_value(true)
+                .help("Specify password to use to protect the device encryption key")
+        )
+        .arg(
+            Arg::new("new-password")
+                .long("new-password")
+                .takes_value(true)
+                .help("Change password used to protect the device encryption key. Device storage will be migrated.")
+        )        
         .arg(
             Arg::new("attach")
                 .long("attach")
diff --git a/veilid-server/src/settings.rs b/veilid-server/src/settings.rs
index 4be95521..ab7e36ef 100644
--- a/veilid-server/src/settings.rs
+++ b/veilid-server/src/settings.rs
@@ -6,13 +6,14 @@ use serde_derive::*;
 use std::ffi::OsStr;
 use std::net::SocketAddr;
 use std::path::{Path, PathBuf};
+use std::sync::Arc;
 use sysinfo::{DiskExt, SystemExt};
 use url::Url;
 use veilid_core::tools::*;
 use veilid_core::*;
 
 pub fn load_default_config() -> EyreResult<config::Config> {
-    let default_config = String::from(
+    let mut default_config = String::from(
         r#"---
 daemon:
     enabled: false
@@ -49,6 +50,8 @@ core:
         always_use_insecure_storage: true
         directory: '%DIRECTORY%'
         delete: false
+        device_encryption_key_password: '%DEVICE_ENCRYPTION_KEY_PASSWORD%'
+        new_device_encryption_key_password: %NEW_DEVICE_ENCRYPTION_KEY_PASSWORD%
     table_store:
         directory: '%TABLE_STORE_DIRECTORY%'
         delete: false
@@ -176,6 +179,30 @@ core:
         "%REMOTE_MAX_SUBKEY_CACHE_MEMORY_MB%",
         &Settings::get_default_remote_max_subkey_cache_memory_mb().to_string(),
     );
+
+    let dek_password = if let Some(dek_password) = std::env::var_os("DEK_PASSWORD") {
+        dek_password
+            .to_str()
+            .ok_or_else(|| eyre!("DEK_PASSWORD is not valid unicode"))?
+            .to_owned()
+    } else {
+        "".to_owned()
+    };
+    default_config = default_config.replace("%DEVICE_ENCRYPTION_KEY_PASSWORD%", &dek_password);
+
+    let new_dek_password = if let Some(new_dek_password) = std::env::var_os("NEW_DEK_PASSWORD") {
+        format!(
+            "'{}'",
+            new_dek_password
+                .to_str()
+                .ok_or_else(|| eyre!("NEW_DEK_PASSWORD is not valid unicode"))?
+        )
+    } else {
+        "null".to_owned()
+    };
+    default_config =
+        default_config.replace("%NEW_DEVICE_ENCRYPTION_KEY_PASSWORD%", &new_dek_password);
+
     config::Config::builder()
         .add_source(config::File::from_str(
             &default_config,
@@ -588,6 +615,8 @@ pub struct ProtectedStore {
     pub always_use_insecure_storage: bool,
     pub directory: PathBuf,
     pub delete: bool,
+    pub device_encryption_key_password: String,
+    pub new_device_encryption_key_password: Option<String>,
 }
 
 #[derive(Debug, Deserialize, Serialize)]
@@ -937,6 +966,17 @@ impl Settings {
         );
         set_config_value!(inner.core.protected_store.directory, value);
         set_config_value!(inner.core.protected_store.delete, value);
+        set_config_value!(
+            inner.core.protected_store.device_encryption_key_password,
+            value
+        );
+        set_config_value!(
+            inner
+                .core
+                .protected_store
+                .new_device_encryption_key_password,
+            value
+        );
         set_config_value!(inner.core.table_store.directory, value);
         set_config_value!(inner.core.table_store.delete, value);
         set_config_value!(inner.core.block_store.directory, value);
@@ -1071,6 +1111,20 @@ impl Settings {
                         .to_string(),
                 )),
                 "protected_store.delete" => Ok(Box::new(inner.core.protected_store.delete)),
+                "protected_store.device_encryption_key_password" => Ok(Box::new(
+                    inner
+                        .core
+                        .protected_store
+                        .device_encryption_key_password
+                        .clone(),
+                )),
+                "protected_store.new_device_encryption_key_password" => Ok(Box::new(
+                    inner
+                        .core
+                        .protected_store
+                        .new_device_encryption_key_password
+                        .clone(),
+                )),
 
                 "table_store.directory" => Ok(Box::new(
                     inner
@@ -1505,6 +1559,11 @@ mod tests {
             Settings::get_default_protected_store_directory()
         );
         assert_eq!(s.core.protected_store.delete, false);
+        assert_eq!(s.core.protected_store.device_encryption_key_password, "");
+        assert_eq!(
+            s.core.protected_store.new_device_encryption_key_password,
+            None
+        );
 
         assert_eq!(s.core.network.connection_initial_timeout_ms, 2_000u32);
         assert_eq!(s.core.network.connection_inactivity_timeout_ms, 60_000u32);

From 5f8b440d84f9ed4fc390c7bc1ea457c77c3a9515 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Fri, 26 May 2023 19:37:03 +0100
Subject: [PATCH 66/74] test work

---
 ...qrl21wlR1IjCA13sIOjw7Byk8ruCfPcnVBRxMLHCrk | Bin 0 -> 24576 bytes
 ...rpdAUI1bcti0_vJinSu42N9w-vNQRfWBGaR8DLGnAY | Bin 0 -> 24576 bytes
 ...azGk6a59NnYJyQ-s5bQu3GogeYnRpkHJss5vba1khA | Bin 0 -> 24576 bytes
 .../src/routing_table/tests/test_serialize.rs |   6 +-
 veilid-core/src/table_store/mod.rs            |   2 +
 veilid-core/src/table_store/table_store.rs    | 135 +++++++++++++++---
 veilid-core/src/table_store/tests/mod.rs      |   1 +
 .../tests}/test_table_store.rs                |  53 ++++++-
 veilid-core/src/tests/common/mod.rs           |   1 -
 .../src/tests/common/test_veilid_config.rs    |  26 +++-
 veilid-core/src/tests/mod.rs                  |   1 +
 veilid-core/src/tests/native/mod.rs           |   1 +
 veilid-core/src/veilid_config.rs              |   3 +
 veilid-wasm/tests/web.rs                      |   4 +
 14 files changed, 196 insertions(+), 37 deletions(-)
 create mode 100644 veilid-core/0qrl21wlR1IjCA13sIOjw7Byk8ruCfPcnVBRxMLHCrk
 create mode 100644 veilid-core/BrpdAUI1bcti0_vJinSu42N9w-vNQRfWBGaR8DLGnAY
 create mode 100644 veilid-core/bazGk6a59NnYJyQ-s5bQu3GogeYnRpkHJss5vba1khA
 create mode 100644 veilid-core/src/table_store/tests/mod.rs
 rename veilid-core/src/{tests/common => table_store/tests}/test_table_store.rs (75%)

diff --git a/veilid-core/0qrl21wlR1IjCA13sIOjw7Byk8ruCfPcnVBRxMLHCrk b/veilid-core/0qrl21wlR1IjCA13sIOjw7Byk8ruCfPcnVBRxMLHCrk
new file mode 100644
index 0000000000000000000000000000000000000000..7fc33331d4e0c8680c25babde7849df4b542c0af
GIT binary patch
literal 24576
zcmeI(%WB&|6oBCwUzEl)R(Dzm!z^RsUP51>vJu79aS~O6m{5%BC}1i}B$i6L%;R;{
z_vo^u&}Bx71x>)Kt}6aP!(8l<bUt}=Wa;DSWSK?kGQD1fnR+W;2r0!orGyYoT@78U
z($Jk&HPEg6tG}(=6t6CS?wNl?yBi48Gryan8+3nc`#SRoAb<b@2q1s}0tg_000RG&
zz)fq%>h<L9C<{Nw(ISoWRWg55we6ATI=-uXXE<?HHLLcQ7iv89-S@7iPQ3Av<IU6u
zccz@cKORr@nj?4W57haW=-VgdyJx-%rsLDV9jLEioJVRnIUe?3w+(C5lVX`%L^tcJ
zSm(C$FwfF*Jg<&5KdgGjNz<?n4&<yn)6If)bd^WRB6>1xJv#3vAMPjNDjMjO{ao%?
zwk>a+P4G!}oyLo_Y#NVtv6=km$P0}A%Z6b&_V&oj;}?OKog%k?R{W;+bd}~Wp*IQw
z2q1s}0tg_000IagfB*sr)JEXBYzf<ZxB;?0?C7|p`CI6Xf&c;tAb<b@2q1s}0tg_0
z00MOq=rrx!%?*Hu|NrlVc~_?Zi3I@!5I_I{1Q0*~0R#|0009I#vdsU>7Xga=U%&KE
zK>z^+5I_I{1Q0*~0R#|00D&3{6wm*Y|JV2e6B+^tAb<b@2q1s}0tg_000LUz9`UlG
AA^-pY

literal 0
HcmV?d00001

diff --git a/veilid-core/BrpdAUI1bcti0_vJinSu42N9w-vNQRfWBGaR8DLGnAY b/veilid-core/BrpdAUI1bcti0_vJinSu42N9w-vNQRfWBGaR8DLGnAY
new file mode 100644
index 0000000000000000000000000000000000000000..7fc33331d4e0c8680c25babde7849df4b542c0af
GIT binary patch
literal 24576
zcmeI(%WB&|6oBCwUzEl)R(Dzm!z^RsUP51>vJu79aS~O6m{5%BC}1i}B$i6L%;R;{
z_vo^u&}Bx71x>)Kt}6aP!(8l<bUt}=Wa;DSWSK?kGQD1fnR+W;2r0!orGyYoT@78U
z($Jk&HPEg6tG}(=6t6CS?wNl?yBi48Gryan8+3nc`#SRoAb<b@2q1s}0tg_000RG&
zz)fq%>h<L9C<{Nw(ISoWRWg55we6ATI=-uXXE<?HHLLcQ7iv89-S@7iPQ3Av<IU6u
zccz@cKORr@nj?4W57haW=-VgdyJx-%rsLDV9jLEioJVRnIUe?3w+(C5lVX`%L^tcJ
zSm(C$FwfF*Jg<&5KdgGjNz<?n4&<yn)6If)bd^WRB6>1xJv#3vAMPjNDjMjO{ao%?
zwk>a+P4G!}oyLo_Y#NVtv6=km$P0}A%Z6b&_V&oj;}?OKog%k?R{W;+bd}~Wp*IQw
z2q1s}0tg_000IagfB*sr)JEXBYzf<ZxB;?0?C7|p`CI6Xf&c;tAb<b@2q1s}0tg_0
z00MOq=rrx!%?*Hu|NrlVc~_?Zi3I@!5I_I{1Q0*~0R#|0009I#vdsU>7Xga=U%&KE
zK>z^+5I_I{1Q0*~0R#|00D&3{6wm*Y|JV2e6B+^tAb<b@2q1s}0tg_000LUz9`UlG
AA^-pY

literal 0
HcmV?d00001

diff --git a/veilid-core/bazGk6a59NnYJyQ-s5bQu3GogeYnRpkHJss5vba1khA b/veilid-core/bazGk6a59NnYJyQ-s5bQu3GogeYnRpkHJss5vba1khA
new file mode 100644
index 0000000000000000000000000000000000000000..7fc33331d4e0c8680c25babde7849df4b542c0af
GIT binary patch
literal 24576
zcmeI(%WB&|6oBCwUzEl)R(Dzm!z^RsUP51>vJu79aS~O6m{5%BC}1i}B$i6L%;R;{
z_vo^u&}Bx71x>)Kt}6aP!(8l<bUt}=Wa;DSWSK?kGQD1fnR+W;2r0!orGyYoT@78U
z($Jk&HPEg6tG}(=6t6CS?wNl?yBi48Gryan8+3nc`#SRoAb<b@2q1s}0tg_000RG&
zz)fq%>h<L9C<{Nw(ISoWRWg55we6ATI=-uXXE<?HHLLcQ7iv89-S@7iPQ3Av<IU6u
zccz@cKORr@nj?4W57haW=-VgdyJx-%rsLDV9jLEioJVRnIUe?3w+(C5lVX`%L^tcJ
zSm(C$FwfF*Jg<&5KdgGjNz<?n4&<yn)6If)bd^WRB6>1xJv#3vAMPjNDjMjO{ao%?
zwk>a+P4G!}oyLo_Y#NVtv6=km$P0}A%Z6b&_V&oj;}?OKog%k?R{W;+bd}~Wp*IQw
z2q1s}0tg_000IagfB*sr)JEXBYzf<ZxB;?0?C7|p`CI6Xf&c;tAb<b@2q1s}0tg_0
z00MOq=rrx!%?*Hu|NrlVc~_?Zi3I@!5I_I{1Q0*~0R#|0009I#vdsU>7Xga=U%&KE
zK>z^+5I_I{1Q0*~0R#|00D&3{6wm*Y|JV2e6B+^tAb<b@2q1s}0tg_000LUz9`UlG
AA^-pY

literal 0
HcmV?d00001

diff --git a/veilid-core/src/routing_table/tests/test_serialize.rs b/veilid-core/src/routing_table/tests/test_serialize.rs
index 169796d9..3290de9a 100644
--- a/veilid-core/src/routing_table/tests/test_serialize.rs
+++ b/veilid-core/src/routing_table/tests/test_serialize.rs
@@ -5,11 +5,7 @@ fn fake_routing_table() -> routing_table::RoutingTable {
     let block_store = BlockStore::new(veilid_config.clone());
     let protected_store = ProtectedStore::new(veilid_config.clone());
     let table_store = TableStore::new(veilid_config.clone(), protected_store.clone());
-    let crypto = Crypto::new(
-        veilid_config.clone(),
-        table_store.clone(),
-        protected_store.clone(),
-    );
+    let crypto = Crypto::new(veilid_config.clone(), table_store.clone());
     let storage_manager = storage_manager::StorageManager::new(
         veilid_config.clone(),
         crypto.clone(),
diff --git a/veilid-core/src/table_store/mod.rs b/veilid-core/src/table_store/mod.rs
index 16ab5483..1e2f27e8 100644
--- a/veilid-core/src/table_store/mod.rs
+++ b/veilid-core/src/table_store/mod.rs
@@ -5,6 +5,8 @@ mod table_store;
 pub use table_db::*;
 pub use table_store::*;
 
+pub mod tests;
+
 #[cfg(target_arch = "wasm32")]
 mod wasm;
 #[cfg(target_arch = "wasm32")]
diff --git a/veilid-core/src/table_store/table_store.rs b/veilid-core/src/table_store/table_store.rs
index 3f0c3574..cd35dacb 100644
--- a/veilid-core/src/table_store/table_store.rs
+++ b/veilid-core/src/table_store/table_store.rs
@@ -163,15 +163,11 @@ impl TableStore {
         self.flush().await;
     }
 
-    async fn load_device_encryption_key(&self) -> EyreResult<Option<TypedSharedSecret>> {
-        let dek_bytes: Option<Vec<u8>> = self
-            .protected_store
-            .load_user_secret("device_encryption_key")
-            .await?;
-        let Some(dek_bytes) = dek_bytes else {
-            return Ok(None);
-        };
-
+    pub fn maybe_unprotect_device_encryption_key(
+        &self,
+        dek_bytes: &[u8],
+        device_encryption_key_password: &str,
+    ) -> EyreResult<TypedSharedSecret> {
         // Ensure the key is at least as long as necessary if unencrypted
         if dek_bytes.len() < (4 + SHARED_SECRET_LENGTH) {
             bail!("device encryption key is not valid");
@@ -184,11 +180,6 @@ impl TableStore {
             bail!("unsupported cryptosystem");
         };
 
-        // Decrypt encryption key if we have it
-        let device_encryption_key_password = {
-            let c = self.config.get();
-            c.protected_store.device_encryption_key_password.clone()
-        };
         if !device_encryption_key_password.is_empty() {
             if dek_bytes.len()
                 != (4 + SHARED_SECRET_LENGTH + vcrypto.aead_overhead() + NONCE_LENGTH)
@@ -209,28 +200,126 @@ impl TableStore {
                     None,
                 )
                 .wrap_err("failed to decrypt device encryption key")?;
-            return Ok(Some(TypedSharedSecret::new(
+            return Ok(TypedSharedSecret::new(
                 kind,
                 SharedSecret::try_from(unprotected_key.as_slice())
                     .wrap_err("invalid shared secret")?,
-            )));
+            ));
         }
 
-        Ok(Some(TypedSharedSecret::new(
+        Ok(TypedSharedSecret::new(
             kind,
             SharedSecret::try_from(&dek_bytes[4..])?,
-        )))
+        ))
+    }
+
+    pub fn maybe_protect_device_encryption_key(
+        &self,
+        dek: TypedSharedSecret,
+        device_encryption_key_password: &str,
+    ) -> EyreResult<Vec<u8>> {
+        // Check if we are to protect the key
+        if device_encryption_key_password.is_empty() {
+            // Return the unprotected key bytes
+            let mut out = Vec::with_capacity(4 + SHARED_SECRET_LENGTH);
+            out.extend_from_slice(&dek.kind.0);
+            out.extend_from_slice(&dek.value.bytes);
+            return Ok(out);
+        }
+
+        // Get cryptosystem
+        let crypto = self.inner.lock().crypto.as_ref().unwrap().clone();
+        let Some(vcrypto) = crypto.get(dek.kind) else {
+            bail!("unsupported cryptosystem");
+        };
+
+        let nonce = vcrypto.random_nonce();
+        let shared_secret = vcrypto
+            .derive_shared_secret(device_encryption_key_password.as_bytes(), &nonce.bytes)
+            .wrap_err("failed to derive shared secret")?;
+        let mut protected_key = vcrypto
+            .encrypt_aead(
+                &dek.value.bytes,
+                &Nonce::try_from(nonce).wrap_err("invalid nonce")?,
+                &shared_secret,
+                None,
+            )
+            .wrap_err("failed to decrypt device encryption key")?;
+        let mut out =
+            Vec::with_capacity(4 + SHARED_SECRET_LENGTH + vcrypto.aead_overhead() + NONCE_LENGTH);
+        out.extend_from_slice(&dek.kind.0);
+        out.append(&mut protected_key);
+        out.extend_from_slice(&nonce.bytes);
+        assert!(out.len() == 4 + SHARED_SECRET_LENGTH + vcrypto.aead_overhead() + NONCE_LENGTH);
+        Ok(out)
+    }
+
+    async fn load_device_encryption_key(&self) -> EyreResult<Option<TypedSharedSecret>> {
+        let dek_bytes: Option<Vec<u8>> = self
+            .protected_store
+            .load_user_secret("device_encryption_key")
+            .await?;
+        let Some(dek_bytes) = dek_bytes else {
+            return Ok(None);
+        };
+
+        // Get device encryption key protection password if we have it
+        let device_encryption_key_password = {
+            let c = self.config.get();
+            c.protected_store.device_encryption_key_password.clone()
+        };
+
+        Ok(Some(self.maybe_unprotect_device_encryption_key(
+            &dek_bytes,
+            &device_encryption_key_password,
+        )?))
     }
     async fn save_device_encryption_key(
         &self,
         device_encryption_key: Option<TypedSharedSecret>,
     ) -> EyreResult<()> {
-        // Save the new device encryption key
-        self.protected_store
-            .save_user_secret_json("device_encryption_key", &device_encryption_key)
-            .await?;
+        let Some(device_encryption_key) = device_encryption_key else {
+            // Remove the device encryption key
+            let existed = self
+                .protected_store
+                .remove_user_secret("device_encryption_key")
+                .await?;
+            trace!("removed device encryption key. existed: {}", existed);
+            return Ok(());
+        };
 
-xxxx
+        // Get new device encryption key protection password if we are changing it
+        let new_device_encryption_key_password = {
+            let c = self.config.get();
+            c.protected_store.new_device_encryption_key_password.clone()
+        };
+        let device_encryption_key_password =
+            if let Some(new_device_encryption_key_password) = new_device_encryption_key_password {
+                // Change password
+                self.config
+                    .with_mut(|c| {
+                        c.protected_store.device_encryption_key_password =
+                            new_device_encryption_key_password.clone();
+                        Ok(new_device_encryption_key_password)
+                    })
+                    .unwrap()
+            } else {
+                // Get device encryption key protection password if we have it
+                let c = self.config.get();
+                c.protected_store.device_encryption_key_password.clone()
+            };
+
+        let dek_bytes = self.maybe_protect_device_encryption_key(
+            device_encryption_key,
+            &device_encryption_key_password,
+        )?;
+
+        // Save the new device encryption key
+        let existed = self
+            .protected_store
+            .save_user_secret("device_encryption_key", &dek_bytes)
+            .await?;
+        trace!("saving device encryption key. existed: {}", existed);
         Ok(())
     }
 
diff --git a/veilid-core/src/table_store/tests/mod.rs b/veilid-core/src/table_store/tests/mod.rs
new file mode 100644
index 00000000..e749760f
--- /dev/null
+++ b/veilid-core/src/table_store/tests/mod.rs
@@ -0,0 +1 @@
+pub mod test_table_store;
diff --git a/veilid-core/src/tests/common/test_table_store.rs b/veilid-core/src/table_store/tests/test_table_store.rs
similarity index 75%
rename from veilid-core/src/tests/common/test_table_store.rs
rename to veilid-core/src/table_store/tests/test_table_store.rs
index 7118fb27..41bfd022 100644
--- a/veilid-core/src/tests/common/test_table_store.rs
+++ b/veilid-core/src/table_store/tests/test_table_store.rs
@@ -1,4 +1,4 @@
-use super::test_veilid_config::*;
+use crate::tests::test_veilid_config::*;
 use crate::*;
 
 async fn startup() -> VeilidAPI {
@@ -208,6 +208,56 @@ pub async fn test_json(vcrypto: CryptoSystemVersion, ts: TableStore) {
     );
 }
 
+pub async fn test_protect_unprotect(vcrypto: CryptoSystemVersion, ts: TableStore) {
+    trace!("test_protect_unprotect");
+
+    let dek1 = TypedSharedSecret::new(
+        vcrypto.kind(),
+        SharedSecret::new([
+            0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
+            0, 0, 0,
+        ]),
+    );
+    let dek2 = TypedSharedSecret::new(
+        vcrypto.kind(),
+        SharedSecret::new([
+            1, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
+            0, 0, 0xFF,
+        ]),
+    );
+    let dek3 = TypedSharedSecret::new(
+        vcrypto.kind(),
+        SharedSecret::new([0x80u8; SHARED_SECRET_LENGTH]),
+    );
+
+    let deks = [dek1, dek2, dek3];
+    let passwords = ["", " ", "  ", "12345678", "|/\\!@#$%^&*()_+", "Ⓜ️", "🔥🔥♾️"];
+
+    for dek in deks {
+        for password in passwords {
+            let dek_bytes = ts
+                .maybe_protect_device_encryption_key(dek, password)
+                .expect(&format!("protect: dek: '{}' pw: '{}'", dek, password));
+            let unprotected = ts
+                .maybe_unprotect_device_encryption_key(&dek_bytes, password)
+                .expect(&format!("unprotect: dek: '{}' pw: '{}'", dek, password));
+            assert_eq!(unprotected, dek);
+            let invalid_password = format!("{}x", password);
+            let _ = ts
+                .maybe_unprotect_device_encryption_key(&dek_bytes, &invalid_password)
+                .expect_err(&format!(
+                    "invalid_password: dek: '{}' pw: '{}'",
+                    dek, &invalid_password
+                ));
+            if password != "" {
+                let _ = ts
+                    .maybe_unprotect_device_encryption_key(&dek_bytes, "")
+                    .expect_err(&format!("empty_password: dek: '{}' pw: ''", dek));
+            }
+        }
+    }
+}
+
 pub async fn test_all() {
     let api = startup().await;
     let crypto = api.crypto().unwrap();
@@ -215,6 +265,7 @@ pub async fn test_all() {
 
     for ck in VALID_CRYPTO_KINDS {
         let vcrypto = crypto.get(ck).unwrap();
+        test_protect_unprotect(vcrypto.clone(), ts.clone()).await;
         test_delete_open_delete(ts.clone()).await;
         test_store_delete_load(ts.clone()).await;
         test_rkyv(vcrypto.clone(), ts.clone()).await;
diff --git a/veilid-core/src/tests/common/mod.rs b/veilid-core/src/tests/common/mod.rs
index f0fbc066..13d151cd 100644
--- a/veilid-core/src/tests/common/mod.rs
+++ b/veilid-core/src/tests/common/mod.rs
@@ -1,5 +1,4 @@
 pub mod test_host_interface;
 pub mod test_protected_store;
-pub mod test_table_store;
 pub mod test_veilid_config;
 pub mod test_veilid_core;
diff --git a/veilid-core/src/tests/common/test_veilid_config.rs b/veilid-core/src/tests/common/test_veilid_config.rs
index e2670f94..c8458d43 100644
--- a/veilid-core/src/tests/common/test_veilid_config.rs
+++ b/veilid-core/src/tests/common/test_veilid_config.rs
@@ -166,7 +166,7 @@ pub fn setup_veilid_core() -> (UpdateCallback, ConfigCallback) {
 
 fn config_callback(key: String) -> ConfigCallbackReturn {
     match key.as_str() {
-        "program_name" => Ok(Box::new(String::from("Veilid"))),
+        "program_name" => Ok(Box::new(String::from("VeilidCoreTests"))),
         "namespace" => Ok(Box::new(String::from(""))),
         "capabilities.protocol_udp" => Ok(Box::new(true)),
         "capabilities.protocol_connect_tcp" => Ok(Box::new(true)),
@@ -176,13 +176,17 @@ fn config_callback(key: String) -> ConfigCallbackReturn {
         "capabilities.protocol_connect_wss" => Ok(Box::new(true)),
         "capabilities.protocol_accept_wss" => Ok(Box::new(true)),
         "table_store.directory" => Ok(Box::new(get_table_store_path())),
-        "table_store.delete" => Ok(Box::new(false)),
+        "table_store.delete" => Ok(Box::new(true)),
         "block_store.directory" => Ok(Box::new(get_block_store_path())),
-        "block_store.delete" => Ok(Box::new(false)),
+        "block_store.delete" => Ok(Box::new(true)),
         "protected_store.allow_insecure_fallback" => Ok(Box::new(true)),
         "protected_store.always_use_insecure_storage" => Ok(Box::new(false)),
         "protected_store.directory" => Ok(Box::new(get_protected_store_path())),
-        "protected_store.delete" => Ok(Box::new(false)),
+        "protected_store.delete" => Ok(Box::new(true)),
+        "protected_store.device_encryption_key_password" => Ok(Box::new("".to_owned())),
+        "protected_store.new_device_encryption_key_password" => {
+            Ok(Box::new(Option::<String>::None))
+        }
         "network.connection_initial_timeout_ms" => Ok(Box::new(2_000u32)),
         "network.connection_inactivity_timeout_ms" => Ok(Box::new(60_000u32)),
         "network.max_connections_per_ip4" => Ok(Box::new(8u32)),
@@ -302,13 +306,21 @@ pub async fn test_config() {
     assert_eq!(inner.capabilities.protocol_connect_wss, true);
     assert_eq!(inner.capabilities.protocol_accept_wss, true);
     assert_eq!(inner.table_store.directory, get_table_store_path());
-    assert_eq!(inner.table_store.delete, false);
+    assert_eq!(inner.table_store.delete, true);
     assert_eq!(inner.block_store.directory, get_block_store_path());
-    assert_eq!(inner.block_store.delete, false);
+    assert_eq!(inner.block_store.delete, true);
     assert_eq!(inner.protected_store.allow_insecure_fallback, true);
     assert_eq!(inner.protected_store.always_use_insecure_storage, false);
     assert_eq!(inner.protected_store.directory, get_protected_store_path());
-    assert_eq!(inner.protected_store.delete, false);
+    assert_eq!(inner.protected_store.delete, true);
+    assert_eq!(
+        inner.protected_store.device_encryption_key_password,
+        "".to_owned()
+    );
+    assert_eq!(
+        inner.protected_store.new_device_encryption_key_password,
+        Option::<String>::None
+    );
     assert_eq!(inner.network.connection_initial_timeout_ms, 2_000u32);
     assert_eq!(inner.network.connection_inactivity_timeout_ms, 60_000u32);
     assert_eq!(inner.network.max_connections_per_ip4, 8u32);
diff --git a/veilid-core/src/tests/mod.rs b/veilid-core/src/tests/mod.rs
index 8e9d815f..e82fa3cc 100644
--- a/veilid-core/src/tests/mod.rs
+++ b/veilid-core/src/tests/mod.rs
@@ -13,4 +13,5 @@ pub use common::*;
 pub use crypto::tests::*;
 pub use network_manager::tests::*;
 pub use routing_table::tests::*;
+pub use table_store::tests::*;
 pub use veilid_api::tests::*;
diff --git a/veilid-core/src/tests/native/mod.rs b/veilid-core/src/tests/native/mod.rs
index 911af7c3..f2c5ab07 100644
--- a/veilid-core/src/tests/native/mod.rs
+++ b/veilid-core/src/tests/native/mod.rs
@@ -3,6 +3,7 @@
 use crate::crypto::tests::*;
 use crate::network_manager::tests::*;
 use crate::routing_table;
+use crate::table_store::tests::*;
 use crate::tests::common::*;
 use crate::veilid_api;
 use crate::*;
diff --git a/veilid-core/src/veilid_config.rs b/veilid-core/src/veilid_config.rs
index 8b00a40d..68c06e6f 100644
--- a/veilid-core/src/veilid_config.rs
+++ b/veilid-core/src/veilid_config.rs
@@ -734,6 +734,9 @@ impl VeilidConfig {
 
         // Remove secrets
         safe_cfg.network.routing_table.node_id_secret = TypedSecretSet::new();
+        safe_cfg.protected_store.device_encryption_key_password = "".to_owned();
+        safe_cfg.protected_store.new_device_encryption_key_password = None;
+
 
         safe_cfg
     }
diff --git a/veilid-wasm/tests/web.rs b/veilid-wasm/tests/web.rs
index 4ef8a5bc..5cfbfd26 100644
--- a/veilid-wasm/tests/web.rs
+++ b/veilid-wasm/tests/web.rs
@@ -1,4 +1,8 @@
 //! Test suite for the Web and headless browsers.
+
+//XXXXXXXXXXXXXXX
+//XXX DOES NOT WORK.
+
 #![cfg(target_arch = "wasm32")]
 
 extern crate alloc;

From e8392013c3925802b41f8ee96f7e8acb32301f16 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Fri, 26 May 2023 19:40:58 +0100
Subject: [PATCH 67/74] remove cruft

---
 .../0qrl21wlR1IjCA13sIOjw7Byk8ruCfPcnVBRxMLHCrk | Bin 24576 -> 0 bytes
 .../BrpdAUI1bcti0_vJinSu42N9w-vNQRfWBGaR8DLGnAY | Bin 24576 -> 0 bytes
 .../bazGk6a59NnYJyQ-s5bQu3GogeYnRpkHJss5vba1khA | Bin 24576 -> 0 bytes
 3 files changed, 0 insertions(+), 0 deletions(-)
 delete mode 100644 veilid-core/0qrl21wlR1IjCA13sIOjw7Byk8ruCfPcnVBRxMLHCrk
 delete mode 100644 veilid-core/BrpdAUI1bcti0_vJinSu42N9w-vNQRfWBGaR8DLGnAY
 delete mode 100644 veilid-core/bazGk6a59NnYJyQ-s5bQu3GogeYnRpkHJss5vba1khA

diff --git a/veilid-core/0qrl21wlR1IjCA13sIOjw7Byk8ruCfPcnVBRxMLHCrk b/veilid-core/0qrl21wlR1IjCA13sIOjw7Byk8ruCfPcnVBRxMLHCrk
deleted file mode 100644
index 7fc33331d4e0c8680c25babde7849df4b542c0af..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 24576
zcmeI(%WB&|6oBCwUzEl)R(Dzm!z^RsUP51>vJu79aS~O6m{5%BC}1i}B$i6L%;R;{
z_vo^u&}Bx71x>)Kt}6aP!(8l<bUt}=Wa;DSWSK?kGQD1fnR+W;2r0!orGyYoT@78U
z($Jk&HPEg6tG}(=6t6CS?wNl?yBi48Gryan8+3nc`#SRoAb<b@2q1s}0tg_000RG&
zz)fq%>h<L9C<{Nw(ISoWRWg55we6ATI=-uXXE<?HHLLcQ7iv89-S@7iPQ3Av<IU6u
zccz@cKORr@nj?4W57haW=-VgdyJx-%rsLDV9jLEioJVRnIUe?3w+(C5lVX`%L^tcJ
zSm(C$FwfF*Jg<&5KdgGjNz<?n4&<yn)6If)bd^WRB6>1xJv#3vAMPjNDjMjO{ao%?
zwk>a+P4G!}oyLo_Y#NVtv6=km$P0}A%Z6b&_V&oj;}?OKog%k?R{W;+bd}~Wp*IQw
z2q1s}0tg_000IagfB*sr)JEXBYzf<ZxB;?0?C7|p`CI6Xf&c;tAb<b@2q1s}0tg_0
z00MOq=rrx!%?*Hu|NrlVc~_?Zi3I@!5I_I{1Q0*~0R#|0009I#vdsU>7Xga=U%&KE
zK>z^+5I_I{1Q0*~0R#|00D&3{6wm*Y|JV2e6B+^tAb<b@2q1s}0tg_000LUz9`UlG
AA^-pY

diff --git a/veilid-core/BrpdAUI1bcti0_vJinSu42N9w-vNQRfWBGaR8DLGnAY b/veilid-core/BrpdAUI1bcti0_vJinSu42N9w-vNQRfWBGaR8DLGnAY
deleted file mode 100644
index 7fc33331d4e0c8680c25babde7849df4b542c0af..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 24576
zcmeI(%WB&|6oBCwUzEl)R(Dzm!z^RsUP51>vJu79aS~O6m{5%BC}1i}B$i6L%;R;{
z_vo^u&}Bx71x>)Kt}6aP!(8l<bUt}=Wa;DSWSK?kGQD1fnR+W;2r0!orGyYoT@78U
z($Jk&HPEg6tG}(=6t6CS?wNl?yBi48Gryan8+3nc`#SRoAb<b@2q1s}0tg_000RG&
zz)fq%>h<L9C<{Nw(ISoWRWg55we6ATI=-uXXE<?HHLLcQ7iv89-S@7iPQ3Av<IU6u
zccz@cKORr@nj?4W57haW=-VgdyJx-%rsLDV9jLEioJVRnIUe?3w+(C5lVX`%L^tcJ
zSm(C$FwfF*Jg<&5KdgGjNz<?n4&<yn)6If)bd^WRB6>1xJv#3vAMPjNDjMjO{ao%?
zwk>a+P4G!}oyLo_Y#NVtv6=km$P0}A%Z6b&_V&oj;}?OKog%k?R{W;+bd}~Wp*IQw
z2q1s}0tg_000IagfB*sr)JEXBYzf<ZxB;?0?C7|p`CI6Xf&c;tAb<b@2q1s}0tg_0
z00MOq=rrx!%?*Hu|NrlVc~_?Zi3I@!5I_I{1Q0*~0R#|0009I#vdsU>7Xga=U%&KE
zK>z^+5I_I{1Q0*~0R#|00D&3{6wm*Y|JV2e6B+^tAb<b@2q1s}0tg_000LUz9`UlG
AA^-pY

diff --git a/veilid-core/bazGk6a59NnYJyQ-s5bQu3GogeYnRpkHJss5vba1khA b/veilid-core/bazGk6a59NnYJyQ-s5bQu3GogeYnRpkHJss5vba1khA
deleted file mode 100644
index 7fc33331d4e0c8680c25babde7849df4b542c0af..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 24576
zcmeI(%WB&|6oBCwUzEl)R(Dzm!z^RsUP51>vJu79aS~O6m{5%BC}1i}B$i6L%;R;{
z_vo^u&}Bx71x>)Kt}6aP!(8l<bUt}=Wa;DSWSK?kGQD1fnR+W;2r0!orGyYoT@78U
z($Jk&HPEg6tG}(=6t6CS?wNl?yBi48Gryan8+3nc`#SRoAb<b@2q1s}0tg_000RG&
zz)fq%>h<L9C<{Nw(ISoWRWg55we6ATI=-uXXE<?HHLLcQ7iv89-S@7iPQ3Av<IU6u
zccz@cKORr@nj?4W57haW=-VgdyJx-%rsLDV9jLEioJVRnIUe?3w+(C5lVX`%L^tcJ
zSm(C$FwfF*Jg<&5KdgGjNz<?n4&<yn)6If)bd^WRB6>1xJv#3vAMPjNDjMjO{ao%?
zwk>a+P4G!}oyLo_Y#NVtv6=km$P0}A%Z6b&_V&oj;}?OKog%k?R{W;+bd}~Wp*IQw
z2q1s}0tg_000IagfB*sr)JEXBYzf<ZxB;?0?C7|p`CI6Xf&c;tAb<b@2q1s}0tg_0
z00MOq=rrx!%?*Hu|NrlVc~_?Zi3I@!5I_I{1Q0*~0R#|0009I#vdsU>7Xga=U%&KE
zK>z^+5I_I{1Q0*~0R#|00D&3{6wm*Y|JV2e6B+^tAb<b@2q1s}0tg_000LUz9`UlG
AA^-pY


From 800101733822d4396a8ef2cfa1ec2fece0ee9a11 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Fri, 26 May 2023 20:39:35 +0100
Subject: [PATCH 68/74] more table store work for password protecting
 encryption key, also fix unit tests hang in routing table test

---
 .../src/routing_table/tests/test_serialize.rs | 44 ++++++++++---------
 veilid-core/src/table_store/table_store.rs    | 24 ++++++++++
 .../src/tests/common/test_veilid_config.rs    |  2 +-
 3 files changed, 49 insertions(+), 21 deletions(-)

diff --git a/veilid-core/src/routing_table/tests/test_serialize.rs b/veilid-core/src/routing_table/tests/test_serialize.rs
index 3290de9a..14e07930 100644
--- a/veilid-core/src/routing_table/tests/test_serialize.rs
+++ b/veilid-core/src/routing_table/tests/test_serialize.rs
@@ -41,31 +41,35 @@ pub async fn test_routingtable_buckets_round_trip() {
     )
     .unwrap();
 
-    let original_inner = &*original.inner.read();
-    let copy_inner = &*copy.inner.read();
+    // Wrap to close lifetime of 'inner' which is borrowed here so terminate() can succeed
+    // (it also .write() locks routing table inner)
+    {
+        let original_inner = &*original.inner.read();
+        let copy_inner = &*copy.inner.read();
 
-    let routing_table_keys: Vec<_> = original_inner.buckets.keys().clone().collect();
-    let copy_keys: Vec<_> = copy_inner.buckets.keys().clone().collect();
+        let routing_table_keys: Vec<_> = original_inner.buckets.keys().clone().collect();
+        let copy_keys: Vec<_> = copy_inner.buckets.keys().clone().collect();
 
-    assert_eq!(routing_table_keys.len(), copy_keys.len());
+        assert_eq!(routing_table_keys.len(), copy_keys.len());
 
-    for crypto in routing_table_keys {
-        // The same keys are present in the original and copy RoutingTables.
-        let original_buckets = original_inner.buckets.get(&crypto).unwrap();
-        let copy_buckets = copy_inner.buckets.get(&crypto).unwrap();
+        for crypto in routing_table_keys {
+            // The same keys are present in the original and copy RoutingTables.
+            let original_buckets = original_inner.buckets.get(&crypto).unwrap();
+            let copy_buckets = copy_inner.buckets.get(&crypto).unwrap();
 
-        // Recurse into RoutingTable.inner.buckets
-        for (left_buckets, right_buckets) in original_buckets.iter().zip(copy_buckets.iter()) {
-            // Recurse into RoutingTable.inner.buckets.entries
-            for ((left_crypto, left_entries), (right_crypto, right_entries)) in
-                left_buckets.entries().zip(right_buckets.entries())
-            {
-                assert_eq!(left_crypto, right_crypto);
+            // Recurse into RoutingTable.inner.buckets
+            for (left_buckets, right_buckets) in original_buckets.iter().zip(copy_buckets.iter()) {
+                // Recurse into RoutingTable.inner.buckets.entries
+                for ((left_crypto, left_entries), (right_crypto, right_entries)) in
+                    left_buckets.entries().zip(right_buckets.entries())
+                {
+                    assert_eq!(left_crypto, right_crypto);
 
-                assert_eq!(
-                    format!("{:?}", left_entries),
-                    format!("{:?}", right_entries)
-                );
+                    assert_eq!(
+                        format!("{:?}", left_entries),
+                        format!("{:?}", right_entries)
+                    );
+                }
             }
         }
     }
diff --git a/veilid-core/src/table_store/table_store.rs b/veilid-core/src/table_store/table_store.rs
index cd35dacb..05703849 100644
--- a/veilid-core/src/table_store/table_store.rs
+++ b/veilid-core/src/table_store/table_store.rs
@@ -421,6 +421,15 @@ impl TableStore {
     /// existing TableDB's column count, the database will be upgraded to add the missing columns
     pub async fn open(&self, name: &str, column_count: u32) -> VeilidAPIResult<TableDB> {
         let _async_guard = self.async_lock.lock().await;
+
+        // If we aren't initialized yet, bail
+        {
+            let inner = self.inner.lock();
+            if inner.all_tables_db.is_none() {
+                apibail_not_initialized!();
+            }
+        }
+
         let table_name = self.name_get_or_create(name).await?;
 
         // See if this table is already opened
@@ -477,6 +486,14 @@ impl TableStore {
     /// Delete a TableDB table by name
     pub async fn delete(&self, name: &str) -> VeilidAPIResult<bool> {
         let _async_guard = self.async_lock.lock().await;
+        // If we aren't initialized yet, bail
+        {
+            let inner = self.inner.lock();
+            if inner.all_tables_db.is_none() {
+                apibail_not_initialized!();
+            }
+        }
+
         let Some(table_name) = self.name_get(name).await? else {
             // Did not exist in name table
             return Ok(false);
@@ -510,6 +527,13 @@ impl TableStore {
     /// Rename a TableDB table
     pub async fn rename(&self, old_name: &str, new_name: &str) -> VeilidAPIResult<()> {
         let _async_guard = self.async_lock.lock().await;
+        // If we aren't initialized yet, bail
+        {
+            let inner = self.inner.lock();
+            if inner.all_tables_db.is_none() {
+                apibail_not_initialized!();
+            }
+        }
         trace!("TableStore::rename {} -> {}", old_name, new_name);
         self.name_rename(old_name, new_name).await
     }
diff --git a/veilid-core/src/tests/common/test_veilid_config.rs b/veilid-core/src/tests/common/test_veilid_config.rs
index c8458d43..f7951d6d 100644
--- a/veilid-core/src/tests/common/test_veilid_config.rs
+++ b/veilid-core/src/tests/common/test_veilid_config.rs
@@ -296,7 +296,7 @@ pub async fn test_config() {
     }
 
     let inner = vc.get();
-    assert_eq!(inner.program_name, String::from("Veilid"));
+    assert_eq!(inner.program_name, String::from("VeilidCoreTests"));
     assert_eq!(inner.namespace, String::from(""));
     assert_eq!(inner.capabilities.protocol_udp, true);
     assert_eq!(inner.capabilities.protocol_connect_tcp, true);

From 3b96f75c94f6a250d76fc41f620b94e9f8ae0ae5 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Fri, 26 May 2023 22:29:26 +0100
Subject: [PATCH 69/74] some fixes

---
 veilid-core/src/core_context.rs            | 12 +++++++++---
 veilid-core/src/crypto/mod.rs              |  4 ----
 veilid-core/src/table_store/table_store.rs | 10 +++++++---
 veilid-server/src/cmdline.rs               |  7 +++++++
 4 files changed, 23 insertions(+), 10 deletions(-)

diff --git a/veilid-core/src/core_context.rs b/veilid-core/src/core_context.rs
index b3d46ab3..555bdcf2 100644
--- a/veilid-core/src/core_context.rs
+++ b/veilid-core/src/core_context.rs
@@ -76,9 +76,16 @@ impl ServicesContext {
         }
         self.protected_store = Some(protected_store.clone());
 
-        // Set up tablestore
-        trace!("init table store");
+        // Set up tablestore and crypto system
+        trace!("create table store and crypto system");
         let table_store = TableStore::new(self.config.clone(), protected_store.clone());
+        let crypto = Crypto::new(self.config.clone(), table_store.clone());
+        table_store.set_crypto(crypto.clone());
+
+        // Initialize table store first, so crypto code can load caches
+        // Tablestore can use crypto during init, just not any cached operations or things
+        // that require flushing back to the tablestore
+        trace!("init table store");
         if let Err(e) = table_store.init().await {
             error!("failed to init table store: {}", e);
             self.shutdown().await;
@@ -88,7 +95,6 @@ impl ServicesContext {
 
         // Set up crypto
         trace!("init crypto");
-        let crypto = Crypto::new(self.config.clone(), table_store.clone());
         if let Err(e) = crypto.init().await {
             error!("failed to init crypto: {}", e);
             self.shutdown().await;
diff --git a/veilid-core/src/crypto/mod.rs b/veilid-core/src/crypto/mod.rs
index d70be8f7..822687eb 100644
--- a/veilid-core/src/crypto/mod.rs
+++ b/veilid-core/src/crypto/mod.rs
@@ -132,10 +132,6 @@ impl Crypto {
     pub async fn init(&self) -> EyreResult<()> {
         trace!("Crypto::init");
         let table_store = self.unlocked_inner.table_store.clone();
-
-        // Set crypto for table store
-        table_store.set_crypto(self.clone());
-
         // Init node id from config
         if let Err(e) = self
             .unlocked_inner
diff --git a/veilid-core/src/table_store/table_store.rs b/veilid-core/src/table_store/table_store.rs
index 05703849..0f86f3f3 100644
--- a/veilid-core/src/table_store/table_store.rs
+++ b/veilid-core/src/table_store/table_store.rs
@@ -48,7 +48,7 @@ impl TableStore {
         inner.crypto = Some(crypto);
     }
 
-    // Flush internal control state
+    // Flush internal control state (must not use crypto)
     async fn flush(&self) {
         let (all_table_names_value, all_tables_db) = {
             let inner = self.inner.lock();
@@ -220,6 +220,7 @@ impl TableStore {
     ) -> EyreResult<Vec<u8>> {
         // Check if we are to protect the key
         if device_encryption_key_password.is_empty() {
+            debug!("no dek password");
             // Return the unprotected key bytes
             let mut out = Vec::with_capacity(4 + SHARED_SECRET_LENGTH);
             out.extend_from_slice(&dek.kind.0);
@@ -260,6 +261,7 @@ impl TableStore {
             .load_user_secret("device_encryption_key")
             .await?;
         let Some(dek_bytes) = dek_bytes else {
+            debug!("no device encryption key");
             return Ok(None);
         };
 
@@ -284,7 +286,7 @@ impl TableStore {
                 .protected_store
                 .remove_user_secret("device_encryption_key")
                 .await?;
-            trace!("removed device encryption key. existed: {}", existed);
+            debug!("removed device encryption key. existed: {}", existed);
             return Ok(());
         };
 
@@ -296,6 +298,7 @@ impl TableStore {
         let device_encryption_key_password =
             if let Some(new_device_encryption_key_password) = new_device_encryption_key_password {
                 // Change password
+                debug!("changing dek password");
                 self.config
                     .with_mut(|c| {
                         c.protected_store.device_encryption_key_password =
@@ -305,6 +308,7 @@ impl TableStore {
                     .unwrap()
             } else {
                 // Get device encryption key protection password if we have it
+                debug!("saving with existing dek password");
                 let c = self.config.get();
                 c.protected_store.device_encryption_key_password.clone()
             };
@@ -319,7 +323,7 @@ impl TableStore {
             .protected_store
             .save_user_secret("device_encryption_key", &dek_bytes)
             .await?;
-        trace!("saving device encryption key. existed: {}", existed);
+        debug!("saving device encryption key. existed: {}", existed);
         Ok(())
     }
 
diff --git a/veilid-server/src/cmdline.rs b/veilid-server/src/cmdline.rs
index 1a349bf6..3d4fe163 100644
--- a/veilid-server/src/cmdline.rs
+++ b/veilid-server/src/cmdline.rs
@@ -244,6 +244,13 @@ pub fn process_command_line() -> EyreResult<(Settings, ArgMatches)> {
     if matches.occurrences_of("delete-table-store") != 0 {
         settingsrw.core.table_store.delete = true;
     }
+    if matches.occurrences_of("password") != 0 {
+        settingsrw.core.protected_store.device_encryption_key_password = matches.value_of("password").unwrap().to_owned();
+    }
+    if matches.occurrences_of("new-password") != 0 {
+        settingsrw.core.protected_store.new_device_encryption_key_password = Some(matches.value_of("new-password").unwrap().to_owned());
+    }
+
     if matches.occurrences_of("dump-txt-record") != 0 {
         // Turn off terminal logging so we can be interactive
         settingsrw.logging.terminal.enabled = false;

From 699c0db3dbb335f31853e0d3f3b2e5bfde5b1318 Mon Sep 17 00:00:00 2001
From: John Smith <jsmith@example.com>
Date: Sat, 27 May 2023 18:07:24 +0100
Subject: [PATCH 70/74] fix password

---
 Cargo.lock                                 | 30 +++++++++++++++++-----
 veilid-core/Cargo.toml                     |  4 +--
 veilid-core/src/table_store/table_store.rs | 15 ++++++++++-
 veilid-core/src/tests/mod.rs               |  2 +-
 veilid-core/tests/web.rs                   | 28 ++++++++++----------
 veilid-server/Cargo.toml                   |  2 +-
 6 files changed, 55 insertions(+), 26 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 3da52d29..495b0e9d 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -767,12 +767,27 @@ dependencies = [
  "cmake",
 ]
 
+[[package]]
+name = "bugsalot"
+version = "0.2.2"
+dependencies = [
+ "libc",
+]
+
 [[package]]
 name = "bugsalot"
 version = "0.2.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "cc12a55e9bd3840279c248c96ecf541d5ba98d6654e08869fe167121384a582c"
 
+[[package]]
+name = "bugsalot"
+version = "0.2.2"
+source = "git+https://github.com/crioux/bugsalot.git#336a7053faadf990b9362edf5752ef34fa1f9615"
+dependencies = [
+ "libc",
+]
+
 [[package]]
 name = "bumpalo"
 version = "3.12.2"
@@ -2122,9 +2137,9 @@ dependencies = [
 
 [[package]]
 name = "gen_ops"
-version = "0.2.0"
+version = "0.3.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "3f41347f4fa32183c2549b86daf6b6b12a26029a77463e25358f7287580b088b"
+checksum = "e7c56cad8ee78109d547e40bf4ad78968a25157e7963d799d79921655629825a"
 
 [[package]]
 name = "generic-array"
@@ -4243,8 +4258,9 @@ dependencies = [
 
 [[package]]
 name = "range-set-blaze"
-version = "0.1.4"
-source = "git+https://github.com/crioux/range-set-blaze.git#102c239382a8c79414dcf1257923ac2fe4772342"
+version = "0.1.5"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "ef51566f3ed218c92f4711b54af1c68c4f0c43935d31d216f9cc31b30af6ec64"
 dependencies = [
  "gen_ops",
  "itertools",
@@ -6033,7 +6049,7 @@ version = "0.1.0"
 dependencies = [
  "async-std",
  "async-tungstenite 0.8.0",
- "bugsalot",
+ "bugsalot 0.2.2 (registry+https://github.com/rust-lang/crates.io-index)",
  "capnp",
  "capnp-rpc",
  "capnpc",
@@ -6075,7 +6091,7 @@ dependencies = [
  "async_executors",
  "backtrace",
  "blake3",
- "bugsalot",
+ "bugsalot 0.2.2 (git+https://github.com/crioux/bugsalot.git)",
  "capnp",
  "capnpc",
  "cfg-if 1.0.0",
@@ -6199,7 +6215,7 @@ dependencies = [
  "async-std",
  "async-tungstenite 0.22.1",
  "backtrace",
- "bugsalot",
+ "bugsalot 0.2.2",
  "capnp",
  "capnp-rpc",
  "capnpc",
diff --git a/veilid-core/Cargo.toml b/veilid-core/Cargo.toml
index 10a053ec..e145fb2c 100644
--- a/veilid-core/Cargo.toml
+++ b/veilid-core/Cargo.toml
@@ -69,7 +69,7 @@ keyvaluedb = { path = "../external/keyvaluedb/keyvaluedb" }
 rkyv = { version = "^0", default_features = false, features = ["std", "alloc", "strict", "size_32", "validation"] }
 data-encoding = { version = "^2" }
 weak-table = "0.3.2"
-range-set-blaze = { git = "https://github.com/crioux/range-set-blaze.git" } # "0.1.4" xxx replace with git repo
+range-set-blaze = "0.1.5"
 argon2 = "0.5.0"
 
 # Dependencies for native builds only
@@ -93,7 +93,7 @@ rustls-pemfile = "^0.2"
 futures-util = { version = "^0", default-features = false, features = ["async-await", "sink", "std", "io"] }
 keyvaluedb-sqlite = { path = "../external/keyvaluedb/keyvaluedb-sqlite" }
 socket2 = { version = "^0", features = ["all"] }
-bugsalot = "^0"
+bugsalot = { git = "https://github.com/crioux/bugsalot.git" }
 chrono = "^0"
 libc = "^0"
 nix = "^0"
diff --git a/veilid-core/src/table_store/table_store.rs b/veilid-core/src/table_store/table_store.rs
index 0f86f3f3..648fa65c 100644
--- a/veilid-core/src/table_store/table_store.rs
+++ b/veilid-core/src/table_store/table_store.rs
@@ -207,6 +207,10 @@ impl TableStore {
             ));
         }
 
+        if dek_bytes.len() != (4 + SHARED_SECRET_LENGTH) {
+            bail!("password protected device encryption key is not valid");
+        }
+
         Ok(TypedSharedSecret::new(
             kind,
             SharedSecret::try_from(&dek_bytes[4..])?,
@@ -349,7 +353,16 @@ impl TableStore {
             device_encryption_key_changed = true;
         }
 
-        if device_encryption_key_changed {
+        // Check for password change
+        let changing_password = self
+            .config
+            .get()
+            .protected_store
+            .new_device_encryption_key_password
+            .is_some();
+
+        // Save encryption key if it has changed or if the protecting password wants to change
+        if device_encryption_key_changed || changing_password {
             self.save_device_encryption_key(device_encryption_key)
                 .await?;
         }
diff --git a/veilid-core/src/tests/mod.rs b/veilid-core/src/tests/mod.rs
index e82fa3cc..3ef5396d 100644
--- a/veilid-core/src/tests/mod.rs
+++ b/veilid-core/src/tests/mod.rs
@@ -12,6 +12,6 @@ use super::*;
 pub use common::*;
 pub use crypto::tests::*;
 pub use network_manager::tests::*;
-pub use routing_table::tests::*;
+pub use routing_table::tests::test_serialize as test_routing_table_serialize;
 pub use table_store::tests::*;
 pub use veilid_api::tests::*;
diff --git a/veilid-core/tests/web.rs b/veilid-core/tests/web.rs
index 4e77ee6b..f8a2b6fd 100644
--- a/veilid-core/tests/web.rs
+++ b/veilid-core/tests/web.rs
@@ -31,73 +31,73 @@ pub fn setup() -> () {
 }
 
 #[wasm_bindgen_test]
-async fn run_test_host_interface() {
+async fn wasm_test_host_interface() {
     setup();
     test_host_interface::test_all().await;
 }
 
 #[wasm_bindgen_test]
-async fn run_test_types() {
+async fn wasm_test_types() {
     setup();
     test_types::test_all().await;
 }
 
 #[wasm_bindgen_test]
-async fn run_test_veilid_core() {
+async fn wasm_test_veilid_core() {
     setup();
     test_veilid_core::test_all().await;
 }
 
 #[wasm_bindgen_test]
-async fn test_veilid_config() {
+async fn wasm_test_veilid_config() {
     setup();
     test_veilid_config::test_all().await;
 }
 
 #[wasm_bindgen_test]
-async fn run_test_connection_table() {
+async fn wasm_test_connection_table() {
     setup();
     test_connection_table::test_all().await;
 }
 
 #[wasm_bindgen_test]
-async fn run_test_signed_node_info() {
+async fn wasm_test_signed_node_info() {
     setup();
     test_signed_node_info::test_all().await;
 }
 
 #[wasm_bindgen_test]
-async fn exec_test_table_store() {
+async fn wasm_test_table_store() {
     setup();
     test_table_store::test_all().await;
 }
 
 #[wasm_bindgen_test]
-async fn exec_test_protected_store() {
+async fn wasm_test_protected_store() {
     setup();
     test_protected_store::test_all().await;
 }
 
 #[wasm_bindgen_test]
-async fn exec_test_crypto() {
+async fn wasm_test_crypto() {
     setup();
     test_crypto::test_all().await;
 }
 
 #[wasm_bindgen_test]
-async fn exec_test_envelope_receipt() {
+async fn wasm_test_envelope_receipt() {
     setup();
     test_envelope_receipt::test_all().await;
 }
 
 #[wasm_bindgen_test]
-async fn veilid_api__test_serialize_rkyv() {
+async fn wasm_test_serialize_rkyv() {
     setup();
-    veilid_api::test_serialize_rkyv::test_all().await;
+    test_serialize_rkyv::test_all().await;
 }
 
 #[wasm_bindgen_test]
-async fn routing_table__test_serialize() {
+async fn wasm_test_routing_table_serialize() {
     setup();
-    routing_table::test_serialize::test_all().await;
+    test_routing_table_serialize::test_all().await;
 }
diff --git a/veilid-server/Cargo.toml b/veilid-server/Cargo.toml
index b4ed29c7..11c54918 100644
--- a/veilid-server/Cargo.toml
+++ b/veilid-server/Cargo.toml
@@ -52,7 +52,7 @@ futures-util = { version = "^0", default_features = false, features = ["alloc"]
 url = "^2"
 ctrlc = "^3"
 lazy_static = "^1"
-bugsalot = "^0"
+bugsalot = { path = "../../bugsalot" }
 flume = { version = "^0", features = ["async"] }
 rpassword = "^6"
 hostname = "^0"

From 6ca7ec19f94d19d49b513b8a816691936f48ccca Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Mon, 29 May 2023 10:00:56 -0400
Subject: [PATCH 71/74] fix bugsalot

---
 Cargo.lock               | 21 +++------------------
 external/keyvaluedb      |  2 +-
 veilid-cli/Cargo.toml    |  2 +-
 veilid-server/Cargo.toml |  2 +-
 4 files changed, 6 insertions(+), 21 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 495b0e9d..3f91cc56 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -767,19 +767,6 @@ dependencies = [
  "cmake",
 ]
 
-[[package]]
-name = "bugsalot"
-version = "0.2.2"
-dependencies = [
- "libc",
-]
-
-[[package]]
-name = "bugsalot"
-version = "0.2.2"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "cc12a55e9bd3840279c248c96ecf541d5ba98d6654e08869fe167121384a582c"
-
 [[package]]
 name = "bugsalot"
 version = "0.2.2"
@@ -1261,7 +1248,6 @@ dependencies = [
  "ciborium",
  "clap 3.2.25",
  "criterion-plot",
- "futures",
  "itertools",
  "lazy_static",
  "num-traits",
@@ -2883,7 +2869,6 @@ dependencies = [
 name = "keyvaluedb-web"
 version = "0.1.0"
 dependencies = [
- "async-lock",
  "console_log",
  "flume",
  "futures",
@@ -6049,7 +6034,7 @@ version = "0.1.0"
 dependencies = [
  "async-std",
  "async-tungstenite 0.8.0",
- "bugsalot 0.2.2 (registry+https://github.com/rust-lang/crates.io-index)",
+ "bugsalot",
  "capnp",
  "capnp-rpc",
  "capnpc",
@@ -6091,7 +6076,7 @@ dependencies = [
  "async_executors",
  "backtrace",
  "blake3",
- "bugsalot 0.2.2 (git+https://github.com/crioux/bugsalot.git)",
+ "bugsalot",
  "capnp",
  "capnpc",
  "cfg-if 1.0.0",
@@ -6215,7 +6200,7 @@ dependencies = [
  "async-std",
  "async-tungstenite 0.22.1",
  "backtrace",
- "bugsalot 0.2.2",
+ "bugsalot",
  "capnp",
  "capnp-rpc",
  "capnpc",
diff --git a/external/keyvaluedb b/external/keyvaluedb
index 9bb05a54..3408e0b2 160000
--- a/external/keyvaluedb
+++ b/external/keyvaluedb
@@ -1 +1 @@
-Subproject commit 9bb05a54b4c0278a289841b2bf7c1749aa0fbd5d
+Subproject commit 3408e0b2ae3df0088e0714bc23fb33c82a58e22c
diff --git a/veilid-cli/Cargo.toml b/veilid-cli/Cargo.toml
index 3a9ad7b6..ce11242e 100644
--- a/veilid-cli/Cargo.toml
+++ b/veilid-cli/Cargo.toml
@@ -38,7 +38,7 @@ cfg-if = "^1"
 capnp = "^0"
 capnp-rpc = "^0"
 config = { version = "^0", features = ["yaml"] }
-bugsalot = "^0"
+bugsalot = { git = "https://github.com/crioux/bugsalot.git" }
 flexi_logger = { version = "^0", features = ["use_chrono_for_offset"] }
 thiserror = "^1"
 crossbeam-channel = "^0"
diff --git a/veilid-server/Cargo.toml b/veilid-server/Cargo.toml
index 11c54918..977e55a1 100644
--- a/veilid-server/Cargo.toml
+++ b/veilid-server/Cargo.toml
@@ -52,7 +52,7 @@ futures-util = { version = "^0", default_features = false, features = ["alloc"]
 url = "^2"
 ctrlc = "^3"
 lazy_static = "^1"
-bugsalot = { path = "../../bugsalot" }
+bugsalot = { git = "https://github.com/crioux/bugsalot.git" }
 flume = { version = "^0", features = ["async"] }
 rpassword = "^6"
 hostname = "^0"

From 67eefbd0389ea5caa0c442b15a0af7bdf5d4b8a2 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Mon, 29 May 2023 10:07:56 -0400
Subject: [PATCH 72/74] oops keyvaluedb

---
 external/keyvaluedb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/external/keyvaluedb b/external/keyvaluedb
index 3408e0b2..9bb05a54 160000
--- a/external/keyvaluedb
+++ b/external/keyvaluedb
@@ -1 +1 @@
-Subproject commit 3408e0b2ae3df0088e0714bc23fb33c82a58e22c
+Subproject commit 9bb05a54b4c0278a289841b2bf7c1749aa0fbd5d

From 532ef0b9ac9156d752028dc1eb88c98a308a14a9 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Mon, 29 May 2023 12:26:36 -0400
Subject: [PATCH 73/74] fix bug when setting node id

---
 Cargo.lock                              | 2 ++
 veilid-core/src/table_store/table_db.rs | 5 ++++-
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/Cargo.lock b/Cargo.lock
index 3f91cc56..32980e79 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -1248,6 +1248,7 @@ dependencies = [
  "ciborium",
  "clap 3.2.25",
  "criterion-plot",
+ "futures",
  "itertools",
  "lazy_static",
  "num-traits",
@@ -2869,6 +2870,7 @@ dependencies = [
 name = "keyvaluedb-web"
 version = "0.1.0"
 dependencies = [
+ "async-lock",
  "console_log",
  "flume",
  "futures",
diff --git a/veilid-core/src/table_store/table_db.rs b/veilid-core/src/table_store/table_db.rs
index 7b90509e..0702a6de 100644
--- a/veilid-core/src/table_store/table_db.rs
+++ b/veilid-core/src/table_store/table_db.rs
@@ -125,7 +125,10 @@ impl TableDB {
     /// Decrypt buffer using decrypt key with nonce prepended to input
     fn maybe_decrypt(&self, data: &[u8]) -> Vec<u8> {
         if let Some(di) = &self.unlocked_inner.decrypt_info {
-            assert!(data.len() > NONCE_LENGTH);
+            assert!(data.len() >= NONCE_LENGTH);
+            if data.len() == NONCE_LENGTH {
+                return Vec::new();
+            }
 
             let mut out = unsafe { unaligned_u8_vec_uninit(data.len() - NONCE_LENGTH) };
 

From 08f3caf181afe1874c060f2aadc3d583db33afd9 Mon Sep 17 00:00:00 2001
From: John Smith <jsmithveilid@protonmail.com>
Date: Mon, 29 May 2023 14:57:44 -0400
Subject: [PATCH 74/74] node not own relay detection bug

---
 veilid-core/src/routing_table/routing_table_inner.rs | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/veilid-core/src/routing_table/routing_table_inner.rs b/veilid-core/src/routing_table/routing_table_inner.rs
index d66f7ed0..1d4b409c 100644
--- a/veilid-core/src/routing_table/routing_table_inner.rs
+++ b/veilid-core/src/routing_table/routing_table_inner.rs
@@ -810,7 +810,7 @@ impl RoutingTableInner {
         peer_info: PeerInfo,
         allow_invalid: bool,
     ) -> Option<NodeRef> {
-        // if our own node if is in the list then ignore it, as we don't add ourselves to our own routing table
+        // if our own node is in the list, then ignore it as we don't add ourselves to our own routing table
         if self
             .unlocked_inner
             .matches_own_node_id(peer_info.node_ids())
@@ -821,7 +821,8 @@ impl RoutingTableInner {
 
         // node can not be its own relay
         let rids = peer_info.signed_node_info().relay_ids();
-        if self.unlocked_inner.matches_own_node_id(&rids) {
+        let nids = peer_info.node_ids();
+        if nids.contains_any(&rids) {
             log_rtab!(debug "node can not be its own relay");
             return None;
         }