aegis_vm_macro 0.2.51

Proc-macro for VM-protected functions - RustAegis
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129

//! Compile-time integrity hash generation
//!
//! Computes region-based hashes at compile time for runtime verification.

use crate::crypto::get_build_seed;
use hmac::{Hmac, Mac};
use sha2::Sha256;

type HmacSha256 = Hmac<Sha256>;

/// Default region size (64 bytes)
pub const DEFAULT_REGION_SIZE: usize = 64;

/// Region integrity information (compile-time)
#[derive(Debug, Clone, Copy)]
pub struct RegionHash {
    pub start: u32,
    pub end: u32,
    pub hash: u64,
}

/// Integrity data for embedding in generated code
#[derive(Debug, Clone)]
pub struct IntegrityData {
    /// Region hashes
    pub regions: Vec<RegionHash>,
    /// Full bytecode hash (for future use in quick verification)
    #[allow(dead_code)]
    pub full_hash: u64,
    /// Region size used (for debugging/logging)
    #[allow(dead_code)]
    pub region_size: usize,
}

impl IntegrityData {
    /// Compute integrity data for bytecode
    pub fn compute(bytecode: &[u8], region_size: usize) -> Self {
        let mut regions = Vec::new();
        let mut offset = 0;

        while offset < bytecode.len() {
            let end = (offset + region_size).min(bytecode.len());
            let region_data = &bytecode[offset..end];
            let hash = fnv1a_hash_with_seed(region_data);

            regions.push(RegionHash {
                start: offset as u32,
                end: end as u32,
                hash,
            });

            offset = end;
        }

        let full_hash = fnv1a_hash_with_seed(bytecode);

        IntegrityData {
            regions,
            full_hash,
            region_size,
        }
    }

    /// Compute with default region size
    pub fn compute_default(bytecode: &[u8]) -> Self {
        Self::compute(bytecode, DEFAULT_REGION_SIZE)
    }
}

/// FNV-1a hash using build-specific constants
/// Must match the runtime implementation in aegis_vm
pub fn fnv1a_hash_with_seed(data: &[u8]) -> u64 {
    let seed = get_build_seed();

    // Derive FNV constants from seed (same as build.rs)
    let hash_result = hmac_sha256(&seed, b"fnv-constants-v1");

    let basis = u64::from_le_bytes([
        hash_result[0], hash_result[1], hash_result[2], hash_result[3],
        hash_result[4], hash_result[5], hash_result[6], hash_result[7],
    ]) | 1; // Ensure odd

    let prime_modifier = u64::from_le_bytes([
        hash_result[16], hash_result[17], hash_result[18], hash_result[19],
        hash_result[20], hash_result[21], hash_result[22], hash_result[23],
    ]);
    let prime = 0x100000001b3 ^ ((prime_modifier & 0xFFFF_0000_0000_0000) >> 8);

    // Compute FNV-1a hash
    let mut hash = basis;
    for &byte in data {
        hash ^= byte as u64;
        hash = hash.wrapping_mul(prime);
    }
    hash
}

/// HMAC-SHA256 helper
fn hmac_sha256(key: &[u8], data: &[u8]) -> [u8; 32] {
    let mut mac = <HmacSha256 as Mac>::new_from_slice(key)
        .expect("HMAC can take any size key");
    mac.update(data);
    let result = mac.finalize();
    let mut output = [0u8; 32];
    output.copy_from_slice(&result.into_bytes());
    output
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_integrity_data_creation() {
        let bytecode = vec![0x42u8; 256];
        let data = IntegrityData::compute(&bytecode, 64);

        assert_eq!(data.regions.len(), 4);
        assert_eq!(data.region_size, 64);
    }

    #[test]
    fn test_hash_deterministic() {
        let data = b"test data";
        let hash1 = fnv1a_hash_with_seed(data);
        let hash2 = fnv1a_hash_with_seed(data);
        assert_eq!(hash1, hash2);
    }
}