bluetooth_mesh 0.1.4

Cross-platform, full Bluetooth Mesh stack implemented in Rust. Following the Bluetooth Mesh Spec Core v1.0 by SIG. Designed to work with any almost any BLE radio (uses https://github.com/AndrewGi/btle/ for platform dependent Bluetooth drivers). While a stack is provided by the library, all the primatives and objects needed to customize and create your own stack are provided. See https://github.com/AndrewGi/BluetoothMeshRust for more.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198

//! A module for crypto AES functions. Essentially a wrapper around a 3rd party AES crypto lib
//! (aes_soft in this case). This lets the rest of the library code to not have a hard dependence
//! on any 3rd party libs. Bluetooth Mesh uses 128-bit exclusively as its Key bit size.

use crate::crypto::aes_cmac::Cmac;
use crate::crypto::key::Key;
use crate::crypto::{nonce::Nonce, Salt, MIC};
use aes::block_cipher_trait::{
    generic_array::{
        typenum::consts::{U4, U8},
        GenericArray,
    },
    BlockCipher,
};
use aes::Aes128;
use block_modes::block_padding::ZeroPadding;
use block_modes::BlockMode;

use crate::bytes::ToFromBytesEndian;
use aead::Aead;
use core::convert::TryInto;
use core::slice;

const AES_BLOCK_LEN: usize = 16;
type AesBlock = [u8; AES_BLOCK_LEN];
const ZERO_BLOCK: AesBlock = [0_u8; AES_BLOCK_LEN];
/// Returned when a key can't be used to decrypt. (Wrong Key?)
#[derive(Clone, Copy, Debug, Eq, Hash, Ord, PartialEq, PartialOrd)]
pub struct Error;
type AesEcb = block_modes::Ecb<Aes128, ZeroPadding>;
type AesCcmBigMic = crate::crypto::aes_ccm::AesCcm<U8>;
type AesCcmSmallMic = crate::crypto::aes_ccm::AesCcm<U4>;
#[derive(Ord, PartialOrd, Eq, PartialEq, Copy, Clone, Debug, Hash)]
pub enum MicSize {
    Big,
    Small,
}
impl MicSize {
    pub fn byte_size(self) -> usize {
        match self {
            MicSize::Big => MIC::big_size(),
            MicSize::Small => MIC::small_size(),
        }
    }
    pub fn is_big(self) -> bool {
        match self {
            MicSize::Big => true,
            MicSize::Small => false,
        }
    }
}
pub struct AESCipher(Aes128);
impl AESCipher {
    #[must_use]
    pub fn new(key: Key) -> AESCipher {
        AESCipher(Aes128::new(GenericArray::from_slice(key.as_ref())))
    }
    #[must_use]
    fn cipher(&self) -> &Aes128 {
        &self.0
    }
    #[must_use]
    fn ecb_cipher(&self) -> AesEcb {
        AesEcb::new(self.cipher().clone(), &Default::default())
    }
    #[must_use]
    fn cmac_cipher(&self) -> Cmac<Aes128> {
        Cmac::from_cipher(self.cipher().clone())
    }
    #[must_use]
    fn ccm_big_mic_cipher(&self) -> AesCcmBigMic {
        self.cipher().into()
    }
    #[must_use]
    fn ccm_small_mic_cipher(&self) -> AesCcmSmallMic {
        self.cipher().into()
    }
    /// Decrypts `input` in-place with 128-bit `key` back into `input`.
    #[must_use]
    pub fn ecb_decrypt(&self, input: &mut [u8]) -> Result<(), Error> {
        self.ecb_cipher().decrypt(input).or(Err(Error))?;
        Ok(())
    }
    /// Encrypt `input` in-place with 128-bit `key` back into `input`.
    pub fn ecb_encrypt(&self, input: &mut [u8]) {
        let input_len = input.len();
        let mut ecb_cipher = self.ecb_cipher();
        // ecb encrypt input len must be a multiple of 16 but `input` might not be.
        // So we chunk the input and we encrypt all the blocks in place expect the last block gets copy.
        {
            let chunks = input.chunks_exact_mut(AES_BLOCK_LEN);
            for block_u8s in chunks {
                let block_ga = GenericArray::from_mut_slice(block_u8s);
                ecb_cipher.encrypt_blocks(slice::from_mut(block_ga));
            }
        }
        // Recalculate length aligned to block size. Integer division is used to align the len.
        let aligned_len = (input_len / AES_BLOCK_LEN) * AES_BLOCK_LEN;
        let rest = &mut input[..aligned_len];
        // If `input.len()` is not evenly divide into blocks (16 bytes), encrypt the last bit of
        // data not in place.
        if !rest.is_empty() {
            let l = rest.len();
            let mut block_buf = ZERO_BLOCK;
            block_buf[..l].copy_from_slice(rest);
            ecb_cipher.encrypt_blocks(slice::from_mut(GenericArray::from_mut_slice(
                &mut block_buf[..],
            )));
            rest.copy_from_slice(&block_buf[..l]);
        }
    }
    #[must_use]
    pub fn cmac(&self, m: &[u8]) -> Key {
        self.cmac_slice(&[m])
    }
    #[must_use]
    pub fn cmac_slice(&self, ms: &[&[u8]]) -> Key {
        let mut cmac_context = self.cmac_cipher();
        for m in ms {
            if !m.is_empty() {
                cmac_context.input(m);
            }
        }
        cmac_context
            .result()
            .code()
            .as_ref()
            .try_into()
            .expect("cmac code should be 16 bytes (SALT_LEN)")
    }
    pub fn ccm_encrypt(
        &self,
        nonce: &Nonce,
        associated_data: &[u8],
        payload: &mut [u8],
        mic_size: MicSize,
    ) -> MIC {
        let nonce = nonce.as_ref().into();
        match mic_size {
            MicSize::Big => self
                .ccm_big_mic_cipher()
                .encrypt_in_place_detached(nonce, associated_data, payload)
                .expect("payload or associated data too big")
                .as_slice()
                .try_into()
                .unwrap(),
            MicSize::Small => self
                .ccm_small_mic_cipher()
                .encrypt_in_place_detached(nonce, associated_data, payload)
                .expect("payload or associated data too big")
                .as_slice()
                .try_into()
                .unwrap(),
        }
    }
    /// AES CCM decryption of the payload. To supply no associated data, pass it an empty slice
    /// (such as `b""`). This function will return an [`Error`]
    pub fn ccm_decrypt(
        &self,
        nonce: &Nonce,
        associated_data: &[u8],
        payload: &mut [u8],
        mic: MIC,
    ) -> Result<(), Error> {
        let nonce = nonce.as_ref().into();
        match mic {
            MIC::Big(b) => self
                .ccm_small_mic_cipher()
                .decrypt_in_place_detached(
                    nonce,
                    associated_data,
                    payload,
                    b.to_bytes_be().as_ref().into(),
                )
                .or(Err(Error)),
            MIC::Small(s) => self
                .ccm_small_mic_cipher()
                .decrypt_in_place_detached(
                    nonce,
                    associated_data,
                    payload,
                    s.to_bytes_be().as_ref().into(),
                )
                .or(Err(Error)),
        }
    }
}

impl From<Key> for AESCipher {
    fn from(k: Key) -> Self {
        Self::new(k)
    }
}
impl From<Salt> for AESCipher {
    fn from(s: Salt) -> Self {
        s.as_key().into()
    }
}