pqrascv-hardware 1.0.0-rc.5

Hardware-rooted trust and distributed verifier consensus for PQ-RASCV
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72

use serde::{Deserialize, Serialize};

/// Represents an explicit checkpoint in a disaster recovery scenario.
///
/// Disaster recovery checkpoints maintain an append-only chain, providing
/// deterministic restoration boundaries that can be globally audited via Bitcoin.
#[derive(Debug, Clone, PartialEq, Eq, Serialize, Deserialize)]
pub struct DisasterRecoveryCheckpoint {
    /// A unique identifier for this recovery checkpoint.
    pub checkpoint_id: String,
    /// The canonical hash of the `FederationSnapshot` that this recovery anchors to.
    pub snapshot_hash: [u8; 32],
    /// The governance epoch at the time of recovery.
    pub recovery_epoch: u64,
    /// The root hash of the reconstructed federation state post-recovery.
    pub federation_state_hash: [u8; 32],
}

impl DisasterRecoveryCheckpoint {
    /// Validates the structural integrity of the recovery checkpoint.
    #[must_use]
    pub fn is_valid(&self) -> bool {
        if self.checkpoint_id.is_empty() {
            return false;
        }

        // Hashes must be populated
        if self.snapshot_hash == [0; 32] || self.federation_state_hash == [0; 32] {
            return false;
        }

        true
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn valid_disaster_recovery_checkpoint() {
        let cp = DisasterRecoveryCheckpoint {
            checkpoint_id: "dr-01".into(),
            snapshot_hash: [1; 32],
            recovery_epoch: 42,
            federation_state_hash: [2; 32],
        };
        assert!(cp.is_valid());
    }

    #[test]
    fn invalid_dr_checkpoint_empty_id() {
        let cp = DisasterRecoveryCheckpoint {
            checkpoint_id: "".into(),
            snapshot_hash: [1; 32],
            recovery_epoch: 42,
            federation_state_hash: [2; 32],
        };
        assert!(!cp.is_valid());
    }

    #[test]
    fn invalid_dr_checkpoint_zeroed_hash() {
        let cp = DisasterRecoveryCheckpoint {
            checkpoint_id: "dr-01".into(),
            snapshot_hash: [0; 32],
            recovery_epoch: 42,
            federation_state_hash: [2; 32],
        };
        assert!(!cp.is_valid());
    }
}