Implement keetanetwork-block crate with block and operation types

[mamonet]

This PR adds the following features:

• Shared keetanetwork-block crate for block and operation types
• Zero-copy types with lifetime parameters for no_std environments
• Includes all 11 operation types matching the protocol spec
• Add address validation based on algorithm prefix (secp256k1/Ed25519/secp256r1) [REMOVED - Duplicate with account code]

TODO

• Vote types (X.509 certificate-based)
• VoteStaple types
• MultiSigSignerInfo (nested multisig)

[rkeene]

Suggested change

	pub const SECP256R1: u8 = 0x02;
	pub const SECP256R1: u8 = 0x06;

[rkeene]

The amount may exceed u64's range and a bigint type is really required

Same is true of all below

[mamonet]

This types are shared with a Ledger device app (no_std, no alloc). I'm already using &'a [u8] for addresses, tokens, and other fields to reference the raw DER bytes directly (zero-copy). The same approach works for integers, &'a [u8] stores the big-endian DER integer bytes, representing arbitrary-precision values without allocation.

[sephynox]

He is referring to amount which will overflow.

[sephynox]

Would https://github.com/RustCrypto/crypto-bigint work? PS, this is re-exported in keetanetwork-crypto.

[mamonet]

From docs.keeta.com/components/ledger: "balances are maintained on a per-token basis on each account and are maintained as an arbitrary large big integer." but in other 3rd-party websites like https://coingecko.com/learn/what-is-keeta-network I can see "KTA is the native token of the Keeta Network and the backbone of its economy. It has a fixed maximum supply of 1 billion tokens" in this case we can safely use crypto-bigint U128

[rkeene]

That only refers to that native KTA token, other tokens exist on the network.

[mamonet]

In this case, we will get back to the reference approach since all crypto-bigint types are limited.

[Copilot]

Pull request overview

This PR introduces a new keetanetwork-block crate that provides foundational block and operation type definitions for the Keeta blockchain. The implementation emphasizes zero-copy design with lifetime parameters to support no_std environments while maintaining flexibility through optional alloc and std features.

Changes:

• Added shared type definitions for blocks (V1 and V2) and all 11 blockchain operations
• Implemented address validation based on algorithm prefix (secp256k1, Ed25519, secp256r1)
• Configured feature flags to support no_std, alloc, and std environments

Reviewed changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated 4 comments.

File	Description
keetanetwork-block/Cargo.toml	Defines feature flags for std/alloc/no_std support and removes unused dependencies
keetanetwork-block/src/lib.rs	Exports public API with conditional compilation for alloc-dependent types
keetanetwork-block/src/types.rs	Implements all block types, operation structures, and address validation logic

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[mamonet]

@rkeene do you suggest to put the remaining types here or in different PR?

[sephynox]

The TS uses Subtract not Remove. We should probably keep the naming consistent.

[mamonet]

ASN.1 uses Remove instead of Subtract, I was confused by this one too.

[mamonet]

should I change it for AdjustMethodRelative too?

[ezraripps]

Yes, naming should be the same

[sephynox]

The signatures are currently missing. Is this going to be added later?

[mamonet]

I will add signatures next

[sephynox]

You used TOKEN_ADMIN_SUPPLY but not TOKEN_ADMIN_MODIFY_BALANCE. We could probably make it consistent.

[rkeene]

@rkeene do you suggest to put the remaining types here or in different PR?

I think it's fine to include that change in this PR since it's a dependency -- otherwise you would need to re-org and re-base but without much gained from it here.

[ezraripps]

This should reject/throw since its invalid otherwise

[sephynox]

It cannot so it will need to be a TryFrom instead.

[mamonet]

I used TryFrom instead

[sephynox]

The operation IDs would need to be explicitly defined with implemented DER.

[sephynox]

Moreover, I don't know if this would work as expected. We would need explicit context tagging.

[mamonet]

I plan to address that by adding #[derive(Choice)] with #[asn1(context_specific = "N")] attributes - the der crate handles explicit tagging automatically

[sephynox]

I am not sure this is a good approach. We should just return Result instead when using an unsupported AdjustMethod.

[mamonet]

Done!

[sephynox]

We should return Result not use Unknown.

[mamonet]

Done!

[sephynox]

We may want a KeetaBlockBuilder instead of new_v*

let block = KeetaBlockBuilder::from(BlockVersion::V*)
    .with_block_header(header)
    .with_operations(operations)
    .build();

Something like so.

[mamonet]

I added KeetaBlockBuilder but I set header in constructor since it's not optional for both versions

[sephynox]

There should be no Unknowns.

[mamonet]

Fixed

[sephynox]

These things should probably be in keetanetwork-crypto if they are not already.

[sephynox]

We can feature gate minimal items like constants and utils

[sephynox]

This should also probably be in keetanetwork-accounts.

[sephynox]

We can feature gate minimal items like constants and utils.

[ezraripps]

Should this be a reference to an account instead?

[mamonet]

Using &[u8] for accounts/addresses is intentional, this is a zero-copy design for Ledger (no alloc). The field name and doc comment convey the semantic type.

[mamonet]

I think the changes covers the keetanetwork-block work we scoped.

Summary of implementation:

• DER encoding/decoding: support for all types (V1/V2 blocks, operations, signatures) with support for no_alloc environments
• Multisig support: Added signer types in addition to vote & certificate types
• JS SDK compatibility: Roundtrip tests verify byte-exact encoding against real mainnet blocks and manually constructed test vectors

Unrelated Changes

• Fixed clippy useless_vec warning in keetanetwork-x509/src/utils.rs (replaced vec![] with array literal in test)

All tests passing. Ready for review.

[rkeene]

Why do we use undifferentiated Bytes here instead of something higher-level and more specific (account) ?

[mamonet]

This layer mirrors the ASN.1 (all OCTET STRING); semantic validation happens upstream in TS via assertKeyType()
can add aliases for clarity: pub type TokenId<'a> = Bytes<'a>; No compile-time safety, but documents intent. Prefer newtype wrappers instead?

[rkeene]

@sephynox @mamonet It still seems like it should be a type with an assertKeyType() method rather than undifferentiated bytes

[rkeene]

Vote Staples make few other guarantees as well:

1. All votes have the same set of block hashes in the same order
2. All blocks are referenced by the votes
3. All blocks referenced in the votes are present
4. All votes are of the same level of permanence (temporary or permanent)

[mamonet]

Interesting design for packaging - I'm familiar with OCSP stapling, which bundles certificate status proofs so verifiers don't need extra roundtrips, similar concept here with votes and blocks.
These invariants make sense for that model, want me to add them as doc comments on VoteStaple, implement a validate() method or both?

[rkeene]

Either is fine at this point, but the validation is important to do at some point because it's not a valid vote staple unless those conditions are met

[sonarqubecloud]

Quality Gate passed

Issues
1 New issue
0 Accepted issues

Measures
0 Security Hotspots
91.2% Coverage on New Code
0.7% Duplication on New Code

See analysis details on SonarQube Cloud