actr-hyper 0.3.1

Hyper — Actor platform infrastructure: sandbox, transport, scheduler, WASM engine, signing, AIS bootstrap, persistence & crypto primitives
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316

//! Trust provider — pluggable verifier for `.actr` package signatures.
//!
//! Replaces the old `TrustMode` enum. A `TrustProvider` answers the only
//! question Hyper cares about at load time: "is this package bytes-authentic
//! enough for me to execute?". How it answers is up to the provider:
//!
//! - [`StaticTrust`] — one pre-configured Ed25519 public key, accepts any
//!   manufacturer. Offline / air-gapped deployments.
//! - [`RegistryTrust`] — fetch MFR public keys from an AIS HTTP registry by
//!   `(manufacturer, signing_key_id)`, cached locally.
//! - [`ChainTrust`] — try a list of providers in order; first success wins.
//!
//! Both built-in Ed25519-based providers delegate to [`actr_pack::verify`],
//! which performs the full signature + binary-hash + resource-hash chain.
//! Custom providers (e.g. wasm-side keyless verification, HSM, threshold
//! signatures) may implement [`TrustProvider`] however they want — the trait
//! only obliges them to take raw bytes in and return a verified manifest out.

use std::sync::Arc;

use actr_pack::VerifiedPackage;
use async_trait::async_trait;
use ed25519_dalek::VerifyingKey;

use crate::error::{HyperError, HyperResult};
use crate::verify::cert_cache::MfrCertCache;

/// Verifier for `.actr` package signatures.
///
/// An implementation fully takes raw package bytes and returns the parsed,
/// trusted package — or errors. Callers must not use any field of the
/// returned [`VerifiedPackage`] before calling this.
#[async_trait]
pub trait TrustProvider: Send + Sync + std::fmt::Debug {
    async fn verify_package(&self, bytes: &[u8]) -> HyperResult<VerifiedPackage>;
}

// ── shared helper for the Ed25519 + pubkey path ──────────────────────────────

/// Verify an `.actr` package against a single Ed25519 public key.
///
/// Shared helper used by [`StaticTrust`] and [`RegistryTrust`].
pub(crate) fn verify_ed25519_manifest(
    bytes: &[u8],
    pubkey: &VerifyingKey,
) -> HyperResult<VerifiedPackage> {
    let verified = actr_pack::verify(bytes, pubkey).map_err(pack_err_to_hyper)?;

    tracing::info!(
        actr_type = %verified.manifest.actr_type_str(),
        ".actr package verified"
    );

    Ok(verified)
}

fn pack_err_to_hyper(e: actr_pack::PackError) -> HyperError {
    match e {
        actr_pack::PackError::SignatureVerificationFailed(msg) => {
            HyperError::SignatureVerificationFailed(msg)
        }
        actr_pack::PackError::BinaryHashMismatch { .. } => HyperError::BinaryHashMismatch,
        actr_pack::PackError::SignatureNotFound => {
            HyperError::SignatureVerificationFailed("signature not found in package".to_string())
        }
        actr_pack::PackError::BinaryNotFound(path) => {
            HyperError::InvalidManifest(format!("binary not found: {path}"))
        }
        actr_pack::PackError::ManifestNotFound => HyperError::ManifestNotFound,
        actr_pack::PackError::ManifestParseError(msg) => HyperError::InvalidManifest(msg),
        other => HyperError::InvalidManifest(other.to_string()),
    }
}

fn parse_pubkey(bytes: &[u8]) -> HyperResult<VerifyingKey> {
    let arr: [u8; 32] = bytes
        .try_into()
        .map_err(|_| HyperError::Config("Ed25519 pubkey must be exactly 32 bytes".to_string()))?;
    VerifyingKey::from_bytes(&arr)
        .map_err(|e| HyperError::Config(format!("invalid Ed25519 pubkey: {e}")))
}

// ── StaticTrust ──────────────────────────────────────────────────────────────

/// Pre-configured single Ed25519 public key. Accepts packages from any
/// manufacturer as long as they verify against this key.
///
/// Intended for dev / air-gapped / self-hosted deployments where the
/// manufacturer's public key is shipped alongside the package (typically as
/// `public-key.json`) instead of queried from a registry.
#[derive(Debug, Clone)]
pub struct StaticTrust {
    pubkey: VerifyingKey,
}

impl StaticTrust {
    /// Construct from 32 raw Ed25519 public key bytes.
    pub fn new(pubkey: impl AsRef<[u8]>) -> HyperResult<Self> {
        Ok(Self {
            pubkey: parse_pubkey(pubkey.as_ref())?,
        })
    }

    /// Development-only trust provider seeded with an all-zero Ed25519 public
    /// key. Accepts **no real package** (signatures against a zero key always
    /// fail), but lets test and example code wire a valid `TrustProvider`
    /// without pulling a real key file.
    ///
    /// Never use in production — the only reason this exists is so
    /// `Node::from_config_file` can distinguish an explicit opt-in to dev
    /// mode from a missing trust configuration (which is a hard error).
    /// Emits no warning of its own; callers should log at their discretion
    /// (`Node::from_config_file` emits a `tracing::warn!` when it selects
    /// this provider from a `kind = "dev_only"` config entry).
    pub fn dev_only() -> Self {
        // `from_bytes` accepts all-zero 32 bytes (it is a valid curve point,
        // just a broken one for signing) so `.unwrap()` here is sound.
        Self {
            pubkey: VerifyingKey::from_bytes(&[0u8; 32]).expect("all-zero pubkey parses"),
        }
    }
}

#[async_trait]
impl TrustProvider for StaticTrust {
    async fn verify_package(&self, bytes: &[u8]) -> HyperResult<VerifiedPackage> {
        verify_ed25519_manifest(bytes, &self.pubkey)
    }
}

// ── RegistryTrust ────────────────────────────────────────────────────────────

/// Resolve manufacturer public keys from an AIS HTTP registry and verify
/// Ed25519 signatures against them. Internal cache with configurable TTL
/// (default 1h).
///
/// The package manifest must carry `signing_key_id`; otherwise the provider
/// errors out — rebuild with the latest `actr build` to embed one.
#[derive(Debug, Clone)]
pub struct RegistryTrust {
    cache: Arc<MfrCertCache>,
}

impl RegistryTrust {
    pub fn new(endpoint: impl Into<String>) -> Self {
        Self {
            cache: MfrCertCache::new(endpoint),
        }
    }
}

#[async_trait]
impl TrustProvider for RegistryTrust {
    async fn verify_package(&self, bytes: &[u8]) -> HyperResult<VerifiedPackage> {
        let pack_manifest = actr_pack::read_manifest(bytes).map_err(|e| match e {
            actr_pack::PackError::ManifestNotFound => HyperError::ManifestNotFound,
            actr_pack::PackError::ManifestParseError(msg) => HyperError::InvalidManifest(msg),
            other => HyperError::InvalidManifest(other.to_string()),
        })?;

        let key_id = pack_manifest.signing_key_id.as_deref().ok_or_else(|| {
            HyperError::InvalidManifest(
                "package manifest missing `signing_key_id`; rebuild with the latest `actr build`"
                    .to_string(),
            )
        })?;

        let pubkey = self
            .cache
            .get_or_fetch(&pack_manifest.manufacturer, Some(key_id))
            .await?;

        verify_ed25519_manifest(bytes, &pubkey)
    }
}

// ── ChainTrust ───────────────────────────────────────────────────────────────

/// Try a list of providers in order; the first `Ok(_)` wins.
///
/// Useful for "local cache first, registry fallback" setups or for rolling
/// key migrations where an old static key and a new registry-backed provider
/// coexist.
#[derive(Debug, Clone)]
pub struct ChainTrust {
    providers: Vec<Arc<dyn TrustProvider>>,
}

impl ChainTrust {
    pub fn new(providers: Vec<Arc<dyn TrustProvider>>) -> Self {
        Self { providers }
    }

    /// Shortcut for a two-provider chain.
    pub fn of(first: Arc<dyn TrustProvider>, second: Arc<dyn TrustProvider>) -> Self {
        Self::new(vec![first, second])
    }
}

#[async_trait]
impl TrustProvider for ChainTrust {
    async fn verify_package(&self, bytes: &[u8]) -> HyperResult<VerifiedPackage> {
        let mut last_err: Option<HyperError> = None;
        for p in &self.providers {
            match p.verify_package(bytes).await {
                Ok(m) => return Ok(m),
                Err(e) => last_err = Some(e),
            }
        }
        Err(last_err.unwrap_or_else(|| {
            HyperError::SignatureVerificationFailed("empty trust chain".to_string())
        }))
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use ed25519_dalek::{Signer, SigningKey};
    use rand::rngs::OsRng;

    fn make_minimal_package(signing_key: &SigningKey) -> Vec<u8> {
        let manifest = actr_pack::PackageManifest {
            manufacturer: "test-mfr".to_string(),
            name: "Test".to_string(),
            version: "1.0.0".to_string(),
            binary: actr_pack::BinaryEntry {
                path: "bin/actor.wasm".to_string(),
                target: "wasm32-wasip1".to_string(),
                hash: String::new(),
                size: None,
                kind: None,
            },
            signature_algorithm: "ed25519".to_string(),
            signing_key_id: Some(actr_pack::compute_key_id(
                &signing_key.verifying_key().to_bytes(),
            )),
            resources: vec![],
            proto_files: vec![],
            lock_file: None,
            metadata: actr_pack::ManifestMetadata::default(),
        };
        actr_pack::pack(&actr_pack::PackOptions {
            manifest,
            binary_bytes: b"wasm".to_vec(),
            resources: vec![],
            proto_files: vec![],
            lock_file: None,
            signing_key: signing_key.clone(),
        })
        .unwrap()
    }

    #[tokio::test]
    async fn static_trust_accepts_valid_package() {
        let key = SigningKey::generate(&mut OsRng);
        let vk = key.verifying_key();
        let pkg = make_minimal_package(&key);

        let trust = StaticTrust::new(vk.to_bytes()).unwrap();
        let verified = trust.verify_package(&pkg).await.unwrap();
        assert_eq!(verified.manifest.manufacturer, "test-mfr");
    }

    #[tokio::test]
    async fn static_trust_rejects_wrong_key() {
        let key = SigningKey::generate(&mut OsRng);
        let wrong = SigningKey::generate(&mut OsRng);
        let pkg = make_minimal_package(&key);

        let trust = StaticTrust::new(wrong.verifying_key().to_bytes()).unwrap();
        assert!(matches!(
            trust.verify_package(&pkg).await,
            Err(HyperError::SignatureVerificationFailed(_))
        ));
    }

    #[tokio::test]
    async fn chain_first_match_wins() {
        let key = SigningKey::generate(&mut OsRng);
        let other = SigningKey::generate(&mut OsRng);
        let pkg = make_minimal_package(&key);

        let wrong: Arc<dyn TrustProvider> =
            Arc::new(StaticTrust::new(other.verifying_key().to_bytes()).unwrap());
        let right: Arc<dyn TrustProvider> =
            Arc::new(StaticTrust::new(key.verifying_key().to_bytes()).unwrap());

        let chain = ChainTrust::of(wrong, right);
        let verified = chain.verify_package(&pkg).await.unwrap();
        assert_eq!(verified.manifest.manufacturer, "test-mfr");
    }

    #[tokio::test]
    async fn chain_all_fail_returns_last_error() {
        let key = SigningKey::generate(&mut OsRng);
        let wrong1 = SigningKey::generate(&mut OsRng);
        let wrong2 = SigningKey::generate(&mut OsRng);
        let pkg = make_minimal_package(&key);

        let chain = ChainTrust::of(
            Arc::new(StaticTrust::new(wrong1.verifying_key().to_bytes()).unwrap()),
            Arc::new(StaticTrust::new(wrong2.verifying_key().to_bytes()).unwrap()),
        );
        assert!(matches!(
            chain.verify_package(&pkg).await,
            Err(HyperError::SignatureVerificationFailed(_))
        ));
    }

    // Just so the minimum-bound test doesn't compile away unused Signer import.
    #[allow(dead_code)]
    fn _signer_sanity(key: &SigningKey) -> ed25519_dalek::Signature {
        key.sign(b"x")
    }
}