Expand description
Shared Chio substrate types extracted from chio-core.
This crate holds the protocol-wide types that should remain stable while heavier domain crates split away from the compatibility facade.
§no_std support
The crate is no_std + alloc by source: under --no-default-features
every module compiles against core and alloc only. This is the
foundation that lets chio-kernel-core cross-compile to
wasm32-unknown-unknown and other embedded targets. The default std
feature re-enables std-backed error impls via thiserror, along with
the std feature on every transitive dependency.
Re-exports§
pub use canonical::canonical_json_bytes;pub use canonical::canonical_json_string;pub use canonical::canonicalize;pub use capability::canonicalize_attestation_verifier;pub use capability::validate_attenuation;pub use capability::validate_delegation_chain;pub use capability::Attenuation;pub use capability::AttestationTrustError;pub use capability::AttestationTrustPolicy;pub use capability::AttestationTrustRule;pub use capability::CapabilityToken;pub use capability::CapabilityTokenBody;pub use capability::ChioScope;pub use capability::Constraint;pub use capability::ContentReviewTier;pub use capability::DelegationLink;pub use capability::DelegationLinkBody;pub use capability::GovernedApprovalDecision;pub use capability::GovernedApprovalToken;pub use capability::GovernedApprovalTokenBody;pub use capability::GovernedAutonomyContext;pub use capability::GovernedAutonomyTier;pub use capability::GovernedCallChainContext;pub use capability::GovernedCommerceContext;pub use capability::GovernedTransactionIntent;pub use capability::MeteredBillingContext;pub use capability::MeteredBillingQuote;pub use capability::MeteredSettlementMode;pub use capability::ModelMetadata;pub use capability::ModelSafetyTier;pub use capability::MonetaryAmount;pub use capability::Operation;pub use capability::PromptGrant;pub use capability::ResolvedRuntimeAssurance;pub use capability::ResourceGrant;pub use capability::RuntimeAssuranceTier;pub use capability::RuntimeAttestationEvidence;pub use capability::SqlOperationClass;pub use capability::ToolGrant;pub use capability::WorkloadCredentialKind;pub use capability::WorkloadIdentity;pub use capability::WorkloadIdentityError;pub use capability::WorkloadIdentityScheme;pub use crypto::sha256_hex;pub use crypto::Ed25519Backend;pub use crypto::Keypair;pub use crypto::PublicKey;pub use crypto::Signature;pub use crypto::SigningAlgorithm;pub use crypto::SigningBackend;pub use error::Error;pub use error::Result;pub use hashing::sha256;pub use hashing::Hash;pub use manifest::PricingModel;pub use manifest::ToolAnnotations;pub use manifest::ToolDefinition;pub use manifest::ToolManifest;pub use manifest::ToolManifestBody;pub use manifest::ToolPricing;pub use merkle::leaf_hash;pub use merkle::node_hash;pub use merkle::MerkleProof;pub use merkle::MerkleTree;pub use message::AgentMessage;pub use message::KernelMessage;pub use message::ToolCallError;pub use message::ToolCallResult;pub use oracle::OracleConversionEvidence;pub use oracle::CHIO_ORACLE_CONVERSION_EVIDENCE_SCHEMA;pub use plan::PlanEvaluationRequest;pub use plan::PlanEvaluationResponse;pub use plan::PlanVerdict;pub use plan::PlannedToolCall;pub use plan::PlannedToolCallId;pub use plan::StepVerdict;pub use plan::StepVerdictKind;pub use receipt::ChildRequestReceipt;pub use receipt::ChildRequestReceiptBody;pub use receipt::ChioReceipt;pub use receipt::ChioReceiptBody;pub use receipt::Decision;pub use receipt::EconomicAmountBoundsReceiptMetadata;pub use receipt::EconomicAuthorizationMode;pub use receipt::EconomicAuthorizationReceiptMetadata;pub use receipt::EconomicAuthorizationReceiptMetadataVersion;pub use receipt::EconomicBudgetReceiptMetadata;pub use receipt::EconomicLiabilityReceiptMetadata;pub use receipt::EconomicMerchantReceiptMetadata;pub use receipt::EconomicMeteringReceiptMetadata;pub use receipt::EconomicPayeeReceiptMetadata;pub use receipt::EconomicPayerReceiptMetadata;pub use receipt::EconomicPricingBasisReceiptMetadata;pub use receipt::EconomicRailReceiptMetadata;pub use receipt::EconomicSettlementReceiptMetadata;pub use receipt::FinancialReceiptMetadata;pub use receipt::GovernedApprovalReceiptMetadata;pub use receipt::GovernedAutonomyReceiptMetadata;pub use receipt::GovernedCommerceReceiptMetadata;pub use receipt::GovernedTransactionReceiptMetadata;pub use receipt::GuardEvidence;pub use receipt::MeteredBillingReceiptMetadata;pub use receipt::MeteredUsageEvidenceReceiptMetadata;pub use receipt::ReceiptAttributionMetadata;pub use receipt::RuntimeAssuranceReceiptMetadata;pub use receipt::SettlementStatus;pub use receipt::SignedExportEnvelope;pub use receipt::ToolCallAction;pub use receipt::TrustLevel;pub use runtime_attestation::verifier_family_for_attestation_schema;pub use runtime_attestation::AttestationVerifierFamily;pub use runtime_attestation::AWS_NITRO_ATTESTATION_SCHEMA;pub use runtime_attestation::AWS_NITRO_VERIFIER_ADAPTER;pub use runtime_attestation::AZURE_MAA_ATTESTATION_SCHEMA;pub use runtime_attestation::AZURE_MAA_VERIFIER_ADAPTER;pub use runtime_attestation::ENTERPRISE_VERIFIER_ADAPTER;pub use runtime_attestation::ENTERPRISE_VERIFIER_ATTESTATION_SCHEMA;pub use runtime_attestation::GOOGLE_CONFIDENTIAL_VM_ATTESTATION_SCHEMA;pub use runtime_attestation::GOOGLE_CONFIDENTIAL_VM_VERIFIER_ADAPTER;pub use session::ChioIdentityAssertion;pub use session::CompleteOperation;pub use session::CompletionArgument;pub use session::CompletionReference;pub use session::CompletionResult;pub use session::CreateElicitationOperation;pub use session::CreateElicitationResult;pub use session::CreateMessageOperation;pub use session::CreateMessageResult;pub use session::ElicitationAction;pub use session::EnterpriseFederationMethod;pub use session::EnterpriseIdentityContext;pub use session::GetPromptOperation;pub use session::NormalizedRoot;pub use session::OAuthBearerFederatedClaims;pub use session::OAuthBearerSessionAuthInput;pub use session::OperationContext;pub use session::OperationKind;pub use session::OperationTerminalState;pub use session::ProgressToken;pub use session::PromptArgument;pub use session::PromptDefinition;pub use session::PromptMessage;pub use session::PromptResult;pub use session::ReadResourceOperation;pub use session::RequestId;pub use session::RequestOwnershipSnapshot;pub use session::ResourceContent;pub use session::ResourceDefinition;pub use session::ResourceTemplateDefinition;pub use session::ResourceUriClassification;pub use session::RootDefinition;pub use session::SamplingMessage;pub use session::SamplingTool;pub use session::SamplingToolChoice;pub use session::SessionAuthContext;pub use session::SessionAuthMethod;pub use session::SessionId;pub use session::SessionOperation;pub use session::SessionTransport;pub use session::StreamOwner;pub use session::TaskOwnershipSnapshot;pub use session::ToolCallOperation;pub use session::WorkOwner;
Modules§
- canonical
- Canonical JSON serialization (RFC 8785 / JCS).
- capability
- Capability tokens: Ed25519-signed, scoped, time-bounded authorizations.
- crypto
- Signing and verification primitives for Chio artifacts.
- error
- Error types for chio-core.
- hashing
- Cryptographic hashing (SHA-256).
- manifest
- Tool server manifests: signed declarations of available tools.
- merkle
- RFC 6962-compatible Merkle tree (Certificate Transparency style).
- message
- Protocol messages between Agent and Kernel.
- oracle
- plan
- Plan-level evaluation DTOs (Phase 2.4).
- receipt
- Chio receipts: signed proof that a tool call was evaluated.
- runtime_
attestation - session
- Session-scoped identifiers and normalized operations.
Type Aliases§
- AgentId
- Opaque agent identifier. In practice this is a hex-encoded Ed25519 public key or a SPIFFE URI, but the core treats it as an opaque string.
- Capability
Id - UUIDv7 capability identifier (time-ordered).
- Server
Id - Opaque tool server identifier.