tibet-zip-core 0.2.1

Core tibet-zip block format, TIBET envelope, and zstd frame handling
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126

//! TBZ block: header + TIBET envelope + zstd payload + signature

use crate::{BlockType, JisLevel, MAGIC, VERSION};
use serde::{Deserialize, Serialize};
use thiserror::Error;

#[derive(Error, Debug)]
pub enum BlockError {
    #[error("Invalid magic bytes: expected TBZ (0x54425A)")]
    InvalidMagic,
    #[error("Unsupported version: {0}")]
    UnsupportedVersion(u8),
    #[error("Block validation failed: {0}")]
    ValidationFailed(String),
    #[error("Decompression failed: {0}")]
    DecompressionFailed(String),
    #[error("Signature verification failed")]
    SignatureInvalid,
    #[error("JIS authorization insufficient: required level {required}, got {provided}")]
    Unauthorized { required: JisLevel, provided: JisLevel },
}

/// Block header — fixed-size prefix for every TBZ block
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct BlockHeader {
    /// Magic bytes: must be 0x54425A
    pub magic: [u8; 3],
    /// Format version
    pub version: u8,
    /// Block index within archive (0 = manifest)
    pub block_index: u32,
    /// Block type (manifest, data, nested)
    pub block_type: BlockType,
    /// JIS authorization level required to decompress
    pub jis_level: JisLevel,
    /// Size of uncompressed payload
    pub uncompressed_size: u64,
    /// Size of compressed payload (zstd frame)
    pub compressed_size: u64,
}

impl BlockHeader {
    /// Create a new block header
    pub fn new(
        block_index: u32,
        block_type: BlockType,
        jis_level: JisLevel,
        uncompressed_size: u64,
        compressed_size: u64,
    ) -> Self {
        Self {
            magic: MAGIC,
            version: VERSION,
            block_index,
            block_type,
            jis_level,
            uncompressed_size,
            compressed_size,
        }
    }

    /// Validate the header
    pub fn validate(&self) -> Result<(), BlockError> {
        if self.magic != MAGIC {
            return Err(BlockError::InvalidMagic);
        }
        if self.version != VERSION {
            return Err(BlockError::UnsupportedVersion(self.version));
        }
        Ok(())
    }
}

/// A complete TBZ block: header + envelope + payload + signature
#[derive(Debug, Clone)]
pub struct Block {
    pub header: BlockHeader,
    pub envelope: crate::envelope::TibetEnvelope,
    /// zstd-compressed payload
    pub payload: Vec<u8>,
    /// Ed25519 signature over header + envelope + payload
    pub signature: Vec<u8>,
    /// Raw JSON bytes of header (needed for signature verification)
    pub header_raw: Vec<u8>,
    /// Raw JSON bytes of envelope (needed for signature verification)
    pub envelope_raw: Vec<u8>,
}

impl Block {
    /// Validate this block's integrity (header only, no signature check)
    pub fn validate(&self) -> Result<(), BlockError> {
        self.header.validate()?;
        Ok(())
    }

    /// Verify the Ed25519 signature of this block against a verifying key.
    /// Reconstructs the signing payload from raw header + envelope + compressed payload.
    pub fn verify_signature(
        &self,
        verifying_key: &ed25519_dalek::VerifyingKey,
    ) -> Result<(), BlockError> {
        let mut sign_data = Vec::new();
        sign_data.extend_from_slice(&self.header_raw);
        sign_data.extend_from_slice(&self.envelope_raw);
        sign_data.extend_from_slice(&self.payload);
        crate::signature::verify(&sign_data, &self.signature, verifying_key)
            .map_err(|_| BlockError::SignatureInvalid)
    }

    /// Decompress the payload via zstd
    pub fn decompress(&self) -> Result<Vec<u8>, BlockError> {
        zstd::decode_all(self.payload.as_slice())
            .map_err(|e| BlockError::DecompressionFailed(e.to_string()))
    }

    /// Check if the caller has sufficient JIS authorization
    pub fn check_authorization(&self, caller_level: JisLevel) -> Result<(), BlockError> {
        if caller_level < self.header.jis_level {
            return Err(BlockError::Unauthorized {
                required: self.header.jis_level,
                provided: caller_level,
            });
        }
        Ok(())
    }
}