alpine-protocol-rs 2.0.2

Authenticated Lighting Protocol (alpine): secure control-plane + streaming guard for lighting data.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106

use std::net::SocketAddr;

use ed25519_dalek::{Signature, Signer, Verifier, VerifyingKey};
use rand::{rngs::OsRng, RngCore};
use thiserror::Error;
use tokio::net::UdpSocket;

use crate::messages::{CapabilitySet, DiscoveryReply, DiscoveryRequest, MessageType};

#[derive(Debug, Error)]
pub enum DiscoveryError {
    #[error("socket error: {0}")]
    Io(String),
    #[error("decode error: {0}")]
    Decode(String),
    #[error("signature invalid")]
    InvalidSignature,
    #[error("nonce mismatch")]
    NonceMismatch,
    #[error("unsupported version")]
    UnsupportedVersion,
}

/// Controller-side discovery helper.
pub struct DiscoveryClient;

impl DiscoveryClient {
    pub async fn broadcast(
        socket: &UdpSocket,
        broadcast: SocketAddr,
        requested: Vec<String>,
    ) -> Result<Vec<u8>, DiscoveryError> {
        let mut nonce = vec![0u8; 32];
        OsRng.fill_bytes(&mut nonce);
        let request = DiscoveryRequest::new(requested, nonce.clone());
        let bytes =
            serde_cbor::to_vec(&request).map_err(|e| DiscoveryError::Decode(e.to_string()))?;
        socket
            .send_to(&bytes, broadcast)
            .await
            .map_err(|e| DiscoveryError::Io(e.to_string()))?;
        Ok(nonce)
    }

    pub async fn recv_reply(
        socket: &UdpSocket,
        expected_nonce: &[u8],
        verifier: &VerifyingKey,
    ) -> Result<DiscoveryReply, DiscoveryError> {
        let mut buf = vec![0u8; 2048];
        let (len, _) = socket
            .recv_from(&mut buf)
            .await
            .map_err(|e| DiscoveryError::Io(e.to_string()))?;
        let reply: DiscoveryReply = serde_cbor::from_slice(&buf[..len])
            .map_err(|e| DiscoveryError::Decode(e.to_string()))?;
        verify_reply(&reply, expected_nonce, verifier)?;
        Ok(reply)
    }
}

/// Device-side responder skeleton.
pub struct DiscoveryResponder {
    pub identity: crate::messages::DeviceIdentity,
    pub mac_address: String,
    pub capabilities: CapabilitySet,
    pub signer: ed25519_dalek::SigningKey,
}

impl DiscoveryResponder {
    pub fn reply(&self, server_nonce: Vec<u8>, client_nonce: &[u8]) -> DiscoveryReply {
        let mut data = server_nonce.clone();
        data.extend_from_slice(client_nonce);
        let signature = self.signer.sign(&data).to_vec();
        DiscoveryReply::new(
            &self.identity,
            self.mac_address.clone(),
            server_nonce,
            self.capabilities.clone(),
            signature,
        )
    }
}

fn verify_reply(
    reply: &DiscoveryReply,
    expected_client_nonce: &[u8],
    verifier: &VerifyingKey,
) -> Result<(), DiscoveryError> {
    if reply.message_type != MessageType::AlpineDiscoverReply {
        return Err(DiscoveryError::UnsupportedVersion);
    }
    if reply.alpine_version != crate::messages::ALPINE_VERSION {
        return Err(DiscoveryError::UnsupportedVersion);
    }

    // Signature is taken over server_nonce || client_nonce to bind request/response.
    let mut data = reply.server_nonce.clone();
    data.extend_from_slice(expected_client_nonce);
    let sig =
        Signature::from_slice(&reply.signature).map_err(|_| DiscoveryError::InvalidSignature)?;
    verifier
        .verify(&data, &sig)
        .map_err(|_| DiscoveryError::InvalidSignature)?;
    Ok(())
}