scp-platform 0.1.0-beta.1

Platform abstraction traits for SCP (Shared Context Protocol)
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124

//! In-memory [`DeviceAttestation`] implementation for testing.
//!
//! Returns synthetic attestation tokens that always verify. No actual device
//! verification is performed. See ADR-006 in `.docs/adrs/phase-1.md`.

use std::sync::atomic::{AtomicU64, Ordering};

use crate::error::PlatformError;
use crate::traits::{DeviceAttestation, DeviceAttestationToken};

/// A synthetic attestation magic prefix used to identify tokens produced by
/// this adapter.
const SYNTHETIC_ATTESTATION_PREFIX: &[u8] = b"scp-test-attestation-v1:";

/// In-memory implementation of [`DeviceAttestation`] for testing and development.
///
/// Produces synthetic attestation tokens that always verify. This adapter
/// exists to satisfy the trait requirements for Phase 1 testing where no
/// actual device attestation hardware is available.
///
/// Tokens produced by this adapter carry a known prefix
/// (`scp-test-attestation-v1:`) followed by a monotonically increasing
/// sequence number. The [`verify`](DeviceAttestation::verify) method checks
/// for this prefix and returns `true` for any token that has it.
///
/// See ADR-006 in `.docs/adrs/phase-1.md`.
pub struct InMemoryDeviceAttestation {
    counter: AtomicU64,
}

impl InMemoryDeviceAttestation {
    /// Creates a new in-memory device attestation adapter.
    #[must_use]
    pub const fn new() -> Self {
        Self {
            counter: AtomicU64::new(1),
        }
    }
}

impl Default for InMemoryDeviceAttestation {
    fn default() -> Self {
        Self::new()
    }
}

// Trait uses RPITIT with explicit `+ Send` bound; async fn in trait
// does not guarantee Send futures, so manual impl Future is required.
#[allow(clippy::manual_async_fn)]
impl DeviceAttestation for InMemoryDeviceAttestation {
    fn attest(&self) -> impl Future<Output = Result<DeviceAttestationToken, PlatformError>> + Send {
        async move {
            let seq = self.counter.fetch_add(1, Ordering::Relaxed);
            let mut token_bytes = Vec::from(SYNTHETIC_ATTESTATION_PREFIX);
            token_bytes.extend_from_slice(&seq.to_le_bytes());
            Ok(DeviceAttestationToken::new(token_bytes))
        }
    }

    fn verify(
        &self,
        token: &DeviceAttestationToken,
    ) -> impl Future<Output = Result<bool, PlatformError>> + Send {
        let has_prefix = token.as_bytes().starts_with(SYNTHETIC_ATTESTATION_PREFIX);
        async move { Ok(has_prefix) }
    }
}

#[cfg(test)]
#[allow(clippy::unwrap_used, clippy::expect_used)]
mod tests {
    use super::*;

    #[tokio::test]
    async fn attest_returns_token_with_prefix() {
        let attestation = InMemoryDeviceAttestation::new();
        let token = attestation.attest().await.unwrap();
        assert!(token.as_bytes().starts_with(SYNTHETIC_ATTESTATION_PREFIX));
    }

    #[tokio::test]
    async fn verify_own_attestation_returns_true() {
        let attestation = InMemoryDeviceAttestation::new();
        let token = attestation.attest().await.unwrap();
        assert!(attestation.verify(&token).await.unwrap());
    }

    #[tokio::test]
    async fn verify_foreign_token_returns_false() {
        let attestation = InMemoryDeviceAttestation::new();
        let foreign = DeviceAttestationToken::new(b"not-our-token".to_vec());
        assert!(!attestation.verify(&foreign).await.unwrap());
    }

    #[tokio::test]
    async fn verify_empty_token_returns_false() {
        let attestation = InMemoryDeviceAttestation::new();
        let empty = DeviceAttestationToken::new(vec![]);
        assert!(!attestation.verify(&empty).await.unwrap());
    }

    #[tokio::test]
    async fn sequential_attestations_produce_unique_tokens() {
        let attestation = InMemoryDeviceAttestation::new();
        let first = attestation.attest().await.unwrap();
        let second = attestation.attest().await.unwrap();
        assert_ne!(first.as_bytes(), second.as_bytes());
    }

    #[tokio::test]
    async fn multiple_attestation_instances_both_verify_own_tokens() {
        let first_att = InMemoryDeviceAttestation::new();
        let second_att = InMemoryDeviceAttestation::new();

        let first_token = first_att.attest().await.unwrap();
        let second_token = second_att.attest().await.unwrap();

        // Both instances verify tokens with the synthetic prefix.
        assert!(first_att.verify(&first_token).await.unwrap());
        assert!(second_att.verify(&second_token).await.unwrap());
        assert!(first_att.verify(&second_token).await.unwrap());
        assert!(second_att.verify(&first_token).await.unwrap());
    }
}