implement authoritative server runtime and input ingestion — BUILD_PR_LEVEL_12_2_AUTHORITATIVE_SERVER_RUNTIME

Author: DavidQ

docs/dev/CODEX_COMMANDS.md

@@ -1,4 +1,4 @@
 MODEL: GPT-5.3-codex
 REASONING: high
 COMMAND:
-Prepare for implementation of authoritative server runtime per PLAN_PR_LEVEL_12_2_AUTHORITATIVE_SERVER_RUNTIME. No engine API breakage.
+Implement BUILD_PR_LEVEL_12_2_AUTHORITATIVE_SERVER_RUNTIME exactly as defined. Ensure deterministic server loop and input ingestion.

docs/dev/COMMIT_COMMENT.txt

@@ -1 +1 @@
-define authoritative server runtime contracts — PLAN_PR_LEVEL_12_2_AUTHORITATIVE_SERVER_RUNTIME
+implement authoritative server runtime and input ingestion — BUILD_PR_LEVEL_12_2_AUTHORITATIVE_SERVER_RUNTIME

docs/dev/reports/validation_checklist.txt

@@ -1,3 +1,4 @@
-- Server loop defined
-- Input ingestion defined
-- Ownership boundaries defined
+- Server loop working
+- Input ingestion working
+- Ownership enforced
+- No regressions

docs/dev/roadmaps/MASTER_ROADMAP_HIGH_LEVEL.md

@@ -667,3 +667,4 @@
 [ ] any doc that is a move/rename/etc. should be deleted (verify content is in the correct doc before deleting)
 [ ] consolidate PR for easier, one stop, review, no need to look as 6 different docs for one capability (a good example of this is bezel/background), all people care about is what it does.
 [ ] some games are actually samples/demo, identify and recomment a phase-xx to move to.
+[ ] simulated code (like some of the netword samples) should be coverted to use real networks) understanding, tests may need some moch

docs/pr/BUILD_PR_LEVEL_12_2_AUTHORITATIVE_SERVER_RUNTIME.md

@@ -1,55 +1,14 @@
 # BUILD_PR_LEVEL_12_2_AUTHORITATIVE_SERVER_RUNTIME
 
-## Purpose
-Implement the first authoritative server runtime slice on top of Level 12.1 transport/session contracts with no engine API breakage.
+## Build Scope
+Implement authoritative server runtime loop and input ingestion contracts.
 
-## Scope
-Primary target files:
-- `src/engine/network/AuthoritativeServerRuntime.js`
-- `src/engine/network/AuthoritativeInputIngestionContract.js`
-- `src/engine/network/index.js`
-- `tests/final/MultiplayerNetworkingStack.test.mjs`
-- `docs/pr/LEVEL_12_2_AUTHORITATIVE_SERVER_RUNTIME_CONTRACTS.md`
-
-Allowed nearby reads:
-- `src/engine/network/TransportContract.js`
-- `src/engine/network/SessionLifecycleContract.js`
-- `src/engine/network/HandshakeSimulator.js`
-- `src/engine/network/HostServerBootstrap.js`
-- `docs/pr/LEVEL_12_1_REAL_NETWORK_FOUNDATION_CONTRACTS.md`
-
-## Required implementation
-- Add an authoritative server runtime contract with an isolated tick loop that can run independently of gameplay code.
-- Add a client input ingestion contract that validates and normalizes input envelopes before queueing.
-- Enforce server-owned state boundaries so only server runtime code mutates authoritative state snapshots.
-- Keep handshake simulation compatible and testable with Level 12.1 foundations.
-- Export new runtime/contract symbols additively from `src/engine/network/index.js` only.
-- Extend `tests/final/MultiplayerNetworkingStack.test.mjs` with focused assertions for:
-  - runtime loop start/step/stop behavior
-  - input ingestion acceptance and rejection paths
-  - server ownership boundary protection
-  - existing handshake simulation still passing
-
-## Acceptance criteria
-- Server runtime contract documented and implemented.
-- Input ingestion contract documented and implemented.
-- Authoritative ownership boundaries are enforced by runtime behavior and tests.
-- No existing engine network exports are removed or renamed.
-- Existing handshake simulation remains green.
+## Deliverables
+- Server loop execution model
+- Input ingestion pipeline
+- State ownership enforcement
 
 ## Validation
-Run only:
-- `node --check src/engine/network/AuthoritativeServerRuntime.js`
-- `node --check src/engine/network/AuthoritativeInputIngestionContract.js`
-- `node --input-type=module -e "import('./tests/final/MultiplayerNetworkingStack.test.mjs').then(async ({ run }) => { await run(); console.log('PASS MultiplayerNetworkingStack'); })"`
-- `node --input-type=module -e "import('./tests/production/EnginePublicBarrelImports.test.mjs').then(async ({ run }) => { await run(); console.log('PASS EnginePublicBarrelImports'); })"`
-
-## Non-goals
-- no replication implementation
-- no gameplay coupling
-- no UI/debug expansion
-- no engine core API redesign
-- no repo-wide cleanup or unrelated refactor
-
-## Working tree rule
-If the tree is already dirty, ignore unrelated files and modify only the scoped files for this PR purpose.
+- Server loop executes deterministically
+- Inputs processed correctly
+- No engine API breakage

src/engine/network/AuthoritativeInputIngestionContract.js

@@ -0,0 +1,160 @@
+/*
+Toolbox Aid
+David Quesenberry
+04/15/2026
+AuthoritativeInputIngestionContract.js
+*/
+export const INPUT_INGESTION_REJECTION_CODES = Object.freeze({
+  ENVELOPE_REQUIRED: 'ENVELOPE_REQUIRED',
+  SESSION_ID_REQUIRED: 'SESSION_ID_REQUIRED',
+  SESSION_MISMATCH: 'SESSION_MISMATCH',
+  CLIENT_ID_REQUIRED: 'CLIENT_ID_REQUIRED',
+  SEQUENCE_INVALID: 'SEQUENCE_INVALID',
+  INPUT_TYPE_REQUIRED: 'INPUT_TYPE_REQUIRED',
+  PAYLOAD_OBJECT_REQUIRED: 'PAYLOAD_OBJECT_REQUIRED',
+  SENT_AT_INVALID: 'SENT_AT_INVALID',
+  SERVER_OWNERSHIP_VIOLATION: 'SERVER_OWNERSHIP_VIOLATION',
+});
+
+export const SERVER_OWNED_STATE_FIELDS = Object.freeze([
+  'authoritativeTick',
+  'runtimePhase',
+  'connectedClients',
+  'acceptedInputQueue',
+]);
+
+function clone(value) {
+  return JSON.parse(JSON.stringify(value));
+}
+
+function isPlainObject(value) {
+  return value !== null
+    && typeof value === 'object'
+    && Object.getPrototypeOf(value) === Object.prototype;
+}
+
+function createReject(code, message) {
+  return {
+    ok: false,
+    code,
+    message,
+  };
+}
+
+export function validateClientInputEnvelope(envelope, { sessionId = null } = {}) {
+  if (!isPlainObject(envelope)) {
+    return createReject(
+      INPUT_INGESTION_REJECTION_CODES.ENVELOPE_REQUIRED,
+      'Input envelope must be a plain object.',
+    );
+  }
+
+  if (typeof envelope.sessionId !== 'string' || envelope.sessionId.length === 0) {
+    return createReject(
+      INPUT_INGESTION_REJECTION_CODES.SESSION_ID_REQUIRED,
+      'sessionId must be a non-empty string.',
+    );
+  }
+
+  if (typeof sessionId === 'string' && sessionId.length > 0 && envelope.sessionId !== sessionId) {
+    return createReject(
+      INPUT_INGESTION_REJECTION_CODES.SESSION_MISMATCH,
+      'Input envelope sessionId does not match runtime session.',
+    );
+  }
+
+  if (typeof envelope.clientId !== 'string' || envelope.clientId.length === 0) {
+    return createReject(
+      INPUT_INGESTION_REJECTION_CODES.CLIENT_ID_REQUIRED,
+      'clientId must be a non-empty string.',
+    );
+  }
+
+  if (!Number.isInteger(envelope.sequence) || envelope.sequence < 0) {
+    return createReject(
+      INPUT_INGESTION_REJECTION_CODES.SEQUENCE_INVALID,
+      'sequence must be a non-negative integer.',
+    );
+  }
+
+  if (typeof envelope.inputType !== 'string' || envelope.inputType.length === 0) {
+    return createReject(
+      INPUT_INGESTION_REJECTION_CODES.INPUT_TYPE_REQUIRED,
+      'inputType must be a non-empty string.',
+    );
+  }
+
+  if (!isPlainObject(envelope.payload)) {
+    return createReject(
+      INPUT_INGESTION_REJECTION_CODES.PAYLOAD_OBJECT_REQUIRED,
+      'payload must be a plain object.',
+    );
+  }
+
+  if (!Number.isFinite(envelope.sentAtMs)) {
+    return createReject(
+      INPUT_INGESTION_REJECTION_CODES.SENT_AT_INVALID,
+      'sentAtMs must be a finite number.',
+    );
+  }
+
+  const violatingKey = SERVER_OWNED_STATE_FIELDS.find(
+    (serverOwnedField) => Object.prototype.hasOwnProperty.call(envelope.payload, serverOwnedField),
+  );
+  if (violatingKey) {
+    return createReject(
+      INPUT_INGESTION_REJECTION_CODES.SERVER_OWNERSHIP_VIOLATION,
+      `payload cannot include server-owned field: ${violatingKey}`,
+    );
+  }
+
+  return { ok: true };
+}
+
+export function normalizeClientInputEnvelope(
+  envelope,
+  { acceptedAtTick = 0, acceptedAtMs = 0 } = {},
+) {
+  return {
+    sessionId: envelope.sessionId,
+    clientId: envelope.clientId,
+    sequence: envelope.sequence,
+    inputType: envelope.inputType,
+    payload: clone(envelope.payload),
+    sentAtMs: Number(envelope.sentAtMs),
+    acceptedAtTick,
+    acceptedAtMs,
+  };
+}
+
+export default class AuthoritativeInputIngestionContract {
+  constructor({ sessionId = 'session' } = {}) {
+    this.sessionId = sessionId;
+    this.stats = {
+      accepted: 0,
+      rejected: 0,
+    };
+  }
+
+  validate(envelope, { sessionId = this.sessionId } = {}) {
+    const result = validateClientInputEnvelope(envelope, { sessionId });
+    if (result.ok) {
+      this.stats.accepted += 1;
+    } else {
+      this.stats.rejected += 1;
+    }
+    return result;
+  }
+
+  normalize(envelope, metadata = {}) {
+    return normalizeClientInputEnvelope(envelope, metadata);
+  }
+
+  getStats() {
+    return {
+      ...this.stats,
+      sessionId: this.sessionId,
+    };
+  }
+}
+