Expand description
tf-core-no-std — TrustForge embedded core (Phase K1).
This crate is the no_std subset of tf-types, intended for
microcontrollers (Cortex-M4F, RV32IMAC, ESP32-class) that cannot pull
in the full std-only protocol surface. It re-implements just the
bits a constrained device must do on its own:
packet— sign / verify a packet-mode envelope (TF-0011).relay— verify aRelayAuthorityso a relay can refuse to forward unauthorised frames offline.orl— load and consult an Offline Revocation List.nonce_cache— fixed-capacity replay-protected packet receiver.
The crate is #![no_std]. With the default alloc feature it uses
BTreeMap / Vec / String; with --no-default-features it falls
back to heapless containers and is strictly no_alloc, so it links
on bare-metal targets without an allocator.
Canonicalisation note: the std side (tf-types::packet) hashes a
canonical-JSON serialisation. Doing that without alloc would
require a streaming canonical-JSON encoder, which the embedded
profile does not need: in packet mode the wire format is CBOR. We
therefore hash the CBOR-encoded packet (with the signature field
zeroed) for the embedded path. The two derivations are not
byte-compatible across modes; an embedded device verifies packets
signed by another embedded device or by a host that uses this same
crate. Cross-mode interop with the std Packet is intentionally
out of scope for K1 and is the responsibility of a future bridge
adaptor.
Modules§
- nonce_
cache - Replay-protected packet receiver — no_std edition.
- orl
- Offline revocation list (TF-0011 §6 / TF-0012 §3) — no_std edition.
- packet
- Packet-mode (TF-0011) sign/verify, embedded edition.
- relay
- Relay-authority verification (TF-0011 §5), no_std edition.
Type Aliases§
- Public
KeyBytes - Compact ed25519 public key (32 bytes).
- Secret
Seed Bytes - Compact ed25519 secret-key seed (32 bytes).
- Signature
Bytes - Compact ed25519 signature (64 bytes).