Checkpoint - T1 FIX7 Blueprint Patch After Codex Recheck 5 (Canonical Envelope)

Date: 2026-06-09 Author: T1 (production Agent for Agent Data) Macro: PROGRAM_PATCH_T1_FIX7_BLUEPRINT_AFTER_CODEX_RECHECK_5_CANONICAL_ENVELOPE_SEALING Mode: READ-ONLY production; blueprint KB-doc direct-revision; NO production mutation.

Final status

FIX7_REFACTOR_BLUEPRINT_T1_PATCHED_AFTER_CODEX_RECHECK_5_READY_FOR_CODEX_RECHECK_6

What was done

Codex recheck 5 (codex-fix7-blueprint-recheck-5-final-envelope-2026-06-09/, status FIX7_REFACTOR_BLUEPRINT_CODEX_RECHECK_5_NEEDS_T1_FIX) accepted the approval-envelope direction, the guard rebinding, and the invariants/boundary (INVARIANTS_BOUNDARY_FINAL_ACCEPTED) but did not seal the envelope. It left six canonical-encoding / seal / anchor blockers. T1 patched all six in-blueprint; no runtime design amendment; nothing accepted reopened.

The six blockers and the fix

• A canonical encoding → doc 00 Canonical hash encoding (FIX7-CANON-V1): domain tag + record type + field order + sort key + TAB/LF separators + newline normalization + UTF-8 + null/boolean tokens + full-path normalization + revision representation + trailing-LF + reproducible shasum/hashlib command, per aggregate (membership, corpus, marker/fence registry, superseded boundary, guard-set, per-doc normalized content, manifest, detached seal). No prose-only / unordered hash. active_corpus_membership_sha256 recomputed over full doc_ids = f2bda8effc7be19b54722828126b82d7d2d48bee5e5e5dc0c8f347ce210fe251 (shasum == hashlib). +G-CANONICAL-ENCODING-CONTRACT.
• B manifest completeness → envelope_manifest_sha256 binds the complete authority-field roster (excluding only itself + detached_seal_sha256); unknown/missing field → fail closed. +G-ENVELOPE-MANIFEST-AUTHORITY-COMPLETE.
• C doc 00 self-reference → Option 1: full_document_sha256 NON_AUTHORITY_DIAGNOSTIC for every member; load-bearing = normalized_active_content_sha256 excluding the ENVELOPE:EXCLUDE region; the envelope is tamper-protected by the detached seal, not doc 00's own hash. No contradiction.
• D blueprint-checkpoint classification → NON_AUTHORITY_INDEX (DERIVED_STATUS / REPORT_ONLY): not a member, not a self-host, consumed by no guard/package. Sole self-host = doc 00.
• E Codex detached seal anchor → a Codex-authored CODEX_DETACHED_SEAL block with seal metadata + sealed manifest/corpus/membership hashes + report doc ids/revisions/hashes + signature OR signature_not_available_in_current_tooling; compensating fail-closed rule = revision + SHA-256 + MCP read-back + mismatch guard. +G-CODEX-DETACHED-SEAL-ANCHOR.
• F fail-closed guards use canonical hashes → G-ACTIVE-AUTHORITY-HASH-MATCH / -REVISION-MATCH / -CHANGE-FAIL-CLOSED / G-NO-SUPERSEDED-CONSUMPTION / G-LEGACY-NO-DISPOSITION-AUTHORITY re-bound to the FIX7-CANON-V1 digests + the detached seal; guard-quality rule 10.

Guards 51 → 54

+G-CANONICAL-ENCODING-CONTRACT, +G-ENVELOPE-MANIFEST-AUTHORITY-COMPLETE, +G-CODEX-DETACHED-SEAL-ANCHOR; guard-quality rule 10; five guards re-bound.

Invariants

27/11/14/7 PRESERVED (0 new authority surface / readiness gate / top-level runtime hash contract / #20 column / catalog family; production mutation 0). The canonical envelope + detached seal are a non-runtime construction-document content-address — NOT an 8th runtime hash contract (H01..H07 stay 7). All hard blocks intact. No fresh live read required.

Adversarial canonicalization self-audit

12/12 PASS, computationally verified (report doc 08). The hash-dependent tests were reproduced in python (== shasum -a 256): prefix-strip → mismatch; reorder → stable; trailing-LF removal → mismatch; CRLF→LF → content-stable; content change → corpus mismatch; unordered → mismatch; unknown authority field → detected; doc 00 envelope edit → detached-seal mismatch (no self-reference loop); blueprint checkpoint edit → no effect (non-authority); Codex checkpoint change → detached-seal mismatch. The second-order self-reference hole (test 5) was found and closed in self-review, not at the recheck.

Blueprint docs patched

00 (rev 10→18), 06 (rev 49→58), 07 (rev 43→47), 12 (rev 36→43), blueprint checkpoint (rev 21→26). All via patch_document; doc 00 + doc 12 read-back PASS.

Output

• Report: t1-fix7-blueprint-patch-after-codex-recheck-5-canonical-envelope-2026-06-09/00..12 (13 docs).
• This checkpoint.
• Blueprint checkpoint advanced to ..._T1_PATCHED_AFTER_CODEX_RECHECK_5_READY_FOR_CODEX_RECHECK_6.

Live evidence

No fresh live read required; prior pg_roles evidence stands (directus non-superuser; workflow_admin superuser; qt001_cp_* roles absent; 0 trigger bypass vector).

Next

Codex recheck 6 of the recheck-5 canonical-envelope-patched blueprint (external; not implementation), which seals the ACTIVE_AUTHORITY_APPROVAL_ENVELOPE under FIX7-CANON-V1 (computes

• records the per-document/aggregate content hashes + the complete manifest, sets approval metadata, flips envelope_state to SEALED) and writes the CODEX_DETACHED_SEAL block in the recheck-6 checkpoint (the immutable copy of record). Implementation, Stage 2.6B, qt001_backfill_permit, REAL_RUN, QT001 apply, manifest activation, repoint, and owner/ACL cutover all remain BLOCKED. Do not claim implementation approval.