Add SUB_MESSAGES coding to distinguish IDB container messages from plain BYTES

Container messages (VISA, ETD, PROOF_OF_TESTING, etc.) now use explicit
SUB_MESSAGES coding instead of overloading BYTES. Parsing validates the
first byte against expected child tags before attempting DER-TLV parsing.
IdbSeal now passes sub-messages through in getMessageByName/Tag/messageList.

Author: tsenger

src/commonMain/kotlin/de/tsenger/vdstools/DataEncoder.kt

@@ -486,7 +486,7 @@ object DataEncoder {
         return when (coding) {
             MessageCoding.C40, MessageCoding.MRZ -> encodeC40(value as String)
             MessageCoding.UTF8_STRING -> (value as String).encodeToByteArray()
-            MessageCoding.BYTES -> value as ByteArray
+            MessageCoding.BYTES, MessageCoding.SUB_MESSAGES -> value as ByteArray
             MessageCoding.BYTE -> when (value) {
                 is Int -> byteArrayOf((value and 0xFF).toByte())
                 is Byte -> byteArrayOf(value)

src/commonMain/kotlin/de/tsenger/vdstools/generic/MessageCoding.kt

@@ -8,6 +8,7 @@ enum class MessageCoding {
     C40,
     UTF8_STRING,
     BYTES,
+    SUB_MESSAGES,
     BYTE,
     MASKED_DATE,
     DATE,

src/commonMain/kotlin/de/tsenger/vdstools/generic/MessageValue.kt

@@ -203,7 +203,7 @@ sealed class MessageValue {
                     }
 
                     MessageCoding.VALIDITY_DATES -> ValidityDatesValue.parse(bytes)
-                    MessageCoding.BYTES, MessageCoding.UNKNOWN -> BytesValue(bytes)
+                    MessageCoding.BYTES, MessageCoding.SUB_MESSAGES, MessageCoding.UNKNOWN -> BytesValue(bytes)
                 }
             } catch (e: Exception) {
                 // If decoding fails, fall back to raw bytes

src/commonMain/kotlin/de/tsenger/vdstools/idb/IdbMessageGroup.kt

@@ -147,11 +147,17 @@ class IdbMessageGroup {
 
             val childDefs = msgDef?.messages
                 ?: DataEncoder.idbMessageTypes.getMessageTypeDto(tagInt)?.messages
-            val subMessages = if (!childDefs.isNullOrEmpty() && coding == MessageCoding.BYTES) {
-                try {
-                    val childTlvs = DataEncoder.parseDerTLvs(derTlv.value)
-                    childTlvs.map { childTlv -> parseMessage(childTlv, childDefs) }
-                } catch (_: Exception) {
+            val subMessages = if (!childDefs.isNullOrEmpty() && coding == MessageCoding.SUB_MESSAGES) {
+                val expectedTags = childDefs.map { it.tag.toByte() }.toSet()
+                val firstByte = derTlv.value.firstOrNull()
+                if (firstByte != null && firstByte in expectedTags) {
+                    try {
+                        val childTlvs = DataEncoder.parseDerTLvs(derTlv.value)
+                        childTlvs.map { childTlv -> parseMessage(childTlv, childDefs) }
+                    } catch (_: Exception) {
+                        emptyList()
+                    }
+                } else {
                     emptyList()
                 }
             } else {

src/commonMain/kotlin/de/tsenger/vdstools/idb/IdbSeal.kt

@@ -65,17 +65,17 @@ class IdbSeal : Seal {
 
     override fun getMessageByName(name: String): Message? {
         val idbMessage = payLoad.idbMessageGroup.getMessageByName(name) ?: return null
-        return Message(idbMessage.tag, idbMessage.name, idbMessage.coding, idbMessage.value)
+        return Message(idbMessage.tag, idbMessage.name, idbMessage.coding, idbMessage.value, idbMessage.messages)
     }
 
     override fun getMessageByTag(tag: Int): Message? {
         val idbMessage = payLoad.idbMessageGroup.getMessageByTag(tag) ?: return null
-        return Message(idbMessage.tag, idbMessage.name, idbMessage.coding, idbMessage.value)
+        return Message(idbMessage.tag, idbMessage.name, idbMessage.coding, idbMessage.value, idbMessage.messages)
     }
 
     override fun getMessageByTag(tag: String): Message? {
         val idbMessage = payLoad.idbMessageGroup.getMessageByTag(tag) ?: return null
-        return Message(idbMessage.tag, idbMessage.name, idbMessage.coding, idbMessage.value)
+        return Message(idbMessage.tag, idbMessage.name, idbMessage.coding, idbMessage.value, idbMessage.messages)
     }
 
     /**
@@ -94,7 +94,7 @@ class IdbSeal : Seal {
 
     override val messageList: List<Message>
         get() = payLoad.idbMessageGroup.messageList.map { idbMessage ->
-            Message(idbMessage.tag, idbMessage.name, idbMessage.coding, idbMessage.value)
+            Message(idbMessage.tag, idbMessage.name, idbMessage.coding, idbMessage.value, idbMessage.messages)
         }
 
     override val signatureInfo: SignatureInfo?

src/commonMain/resources/IdbMessageTypes.json

@@ -2,7 +2,7 @@
   {
     "name": "VISA",
     "tag": 1,
-    "coding": "BYTES",
+    "coding": "SUB_MESSAGES",
     "minBytes": 62,
     "maxBytes": 328,
     "messages": [
@@ -67,7 +67,7 @@
   {
     "name": "EMERGENCY_TRAVEL_DOCUMENT",
     "tag": 2,
-    "coding": "BYTES",
+    "coding": "SUB_MESSAGES",
     "minBytes": 50,
     "maxBytes": 50,
     "messages": [
@@ -84,7 +84,7 @@
   {
     "name": "PROOF_OF_TESTING",
     "tag": 3,
-    "coding": "BYTES",
+    "coding": "SUB_MESSAGES",
     "minBytes": 68,
     "maxBytes": 659,
     "messages": [
@@ -221,7 +221,7 @@
   {
     "name": "PROOF_OF_VACCINATION",
     "tag": 4,
-    "coding": "BYTES",
+    "coding": "SUB_MESSAGES",
     "minBytes": 57,
     "maxBytes": 951,
     "messages": [
@@ -292,7 +292,7 @@
       {
         "name": "VACCINATION_EVENT",
         "tag": 9,
-        "coding": "BYTES",
+        "coding": "SUB_MESSAGES",
         "required": true,
         "minBytes": 44,
         "maxBytes": 842,
@@ -340,7 +340,7 @@
           {
             "name": "VACCINATION_DETAILS",
             "tag": 36,
-            "coding": "BYTES",
+            "coding": "SUB_MESSAGES",
             "required": true,
             "minBytes": 22,
             "maxBytes": 56,
@@ -418,7 +418,7 @@
   {
     "name": "PROOF_OF_RECOVERY",
     "tag": 5,
-    "coding": "BYTES",
+    "coding": "SUB_MESSAGES",
     "minBytes": 46,
     "maxBytes": 108,
     "messages": [
@@ -507,7 +507,7 @@
   {
     "name": "DIGITAL_TRAVEL_AUTHORIZATION",
     "tag": 6,
-    "coding": "BYTES",
+    "coding": "SUB_MESSAGES",
     "minBytes": 58,
     "maxBytes": 197,
     "messages": [

src/commonTest/kotlin/de/tsenger/vdstools/idb/IdbMessageGroupCommonTest.kt

@@ -4,6 +4,7 @@ import de.tsenger.vdstools.DataEncoder
 import de.tsenger.vdstools.asn1.DerTlv
 import de.tsenger.vdstools.idb.IdbMessageGroup.Companion.fromByteArray
 import kotlinx.io.IOException
+import de.tsenger.vdstools.generic.MessageCoding
 import kotlin.test.Test
 import kotlin.test.assertEquals
 import kotlin.test.assertNotNull
@@ -214,6 +215,37 @@ class IdbMessageGroupCommonTest {
         assertEquals("DE", country.value.toString())
     }
 
+    @Test
+    fun testPlainBytesNotParsedAsSubMessages() {
+        // EF_CARD_ACCESS (tag 10) has coding BYTES — even if the content happens to look like DER-TLV,
+        // it must NOT be parsed as sub-messages
+        val fakeContent = byteArrayOf(0x01, 0x04, 0xAA.toByte(), 0xBB.toByte(), 0xCC.toByte(), 0xDD.toByte())
+        val derTlv = DerTlv(0x0A, fakeContent)
+        val messageGroup = IdbMessageGroup(listOf(derTlv))
+
+        val msg = messageGroup.getMessageByTag(0x0A)
+        assertNotNull(msg)
+        assertEquals("EF_CARD_ACCESS", msg.name)
+        assertEquals(MessageCoding.BYTES, msg.coding)
+        assertTrue(msg.messages.isEmpty(), "BYTES-coded message must not have sub-messages")
+    }
+
+    @Test
+    fun testCorruptedSubMessageDataGracefullyFails() {
+        // Build a container message (EMERGENCY_TRAVEL_DOCUMENT, tag 2) with corrupted data
+        // that cannot be parsed as valid DER-TLV sub-messages
+        val corruptedData = byteArrayOf(0x02, 0xFF.toByte(), 0x00, 0x01)
+        val derTlv = DerTlv(0x02, corruptedData)
+        val messageGroup = IdbMessageGroup(listOf(derTlv))
+
+        val msg = messageGroup.getMessageByTag(0x02)
+        assertNotNull(msg)
+        assertEquals("EMERGENCY_TRAVEL_DOCUMENT", msg.name)
+        assertEquals(MessageCoding.SUB_MESSAGES, msg.coding)
+        // Corrupted data should result in empty sub-messages, not an exception
+        assertTrue(msg.messages.isEmpty(), "Corrupted sub-message data should result in empty messages list")
+    }
+
     @Test
     fun testVdsMessagesHaveEmptySubMessages() {
         // Non-container messages should have empty messages list