suit_validator 0.1.3

no_std-friendly Rust crate for decoding and verifying SUIT Manifest.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116

# SUIT Validator

A Rust implementation of the [SUIT (Software Updates for Internet of Things)](https://datatracker.ietf.org/doc/html/draft-ietf-suit-manifest) manifest parser with cryptographic signature verification.

This implementation targets **draft-ietf-suit-manifest-34** of the SUIT manifest specification.

## Features

- **`no_std` Compatible**: Designed for embedded systems and IoT devices
- **Safe CBOR Decoding**: Type-safe manifest parsing with zero unsafe code
- **Signature Verification**: COSE signatures validated against trusted keys
- **Custom Handlers**: Flexible trait-based handler system for manifest processing
- **Advanced Inspections**: Direct access to CBOR pairs via `PairView` for manual validation

## Quick Start

```rust
use suit_validator::handler::GenericStartHandler;
use suit_validator::SuitError;
use cose_minicbor::cose_keys::{CoseKey, CoseKeySetBuilder, KeyType, CoseAlg};

// Build trusted keys
let mut keys = CoseKeySetBuilder::<1>::try_new()?;
let mut key = CoseKey::new(KeyType::Ec2);
key.alg(CoseAlg::ES256P256);
key.x(x_bytes)?;
key.y(y_bytes)?;
keys.push_key(key)?;
let keys_bytes = keys.into_bytes()?;

// Decode manifest
let data: &[u8] = /* CBOR encoded SUIT manifest */;
let mut handler = GenericStartHandler {
    on_envelope: |env| {
        println!("Sequence: {}", env.manifest.sequence_number);
    },
    on_manifest: |_| {},
};

suit_validator::suit_decode(&data, &mut handler, &keys_bytes)?;
```

## Backend Cryptography

By default, `suit_validator` uses the [`cose_minicbor`] crate as its cryptographic backend.  
The default enabled features include:

- `hmac` — HMAC-based signatures
- `decrypt` — COSE decryption support
- `es256` — ECDSA P-256 signatures (ES256)
- `sha256` — SHA-256 digest computation

You can create a `CoseCrypto` instance with:

```rust
use suit_validator::crypto::CoseCrypto;

let keys_bytes = vec![0u8; 32]; // CBOR CoseKeySet for testing
let crypto = CoseCrypto::new(&keys_bytes);

```

## Manifest Structure

```
SUIT_Envelope (Tag 107)
├── SUIT_Authentication
│ ├── COSE_Sign1 (signature)
│ └── SuitDigest (SHA-256)
├── SUIT_Manifest (Tag 1070)
│ ├── version
│ ├── sequence-number
│ ├── common
│ │ └── shared-sequence
│ ├── invoke
│ ├── install
│ ├── fetch
│ ├── validate
│ └── load
└── severable-package-members

```

## Implementation

For custom manifest processing, implement [`handler::SuitStartHandler`](src/handler.rs):

```rust
struct MyHandler;

impl SuitStartHandler for MyHandler {
    fn on_envelope<'a>(&mut self, env: SuitEnvelope<'a>) -> Result<(), SuitError> {
        // Process authenticated manifest
        Ok(())
    }

    fn on_manifest<'a>(&mut self, manifest: SuitManifest<'a>) -> Result<(), SuitError> {
        // Process bare manifest
        Ok(())
    }
}

suit_validator::suit_decode(&data, &mut MyHandler, &keys)?;
```

For advanced CBOR pair inspection within handlers, use `PairView` to iterate and selectively decode manifest elements.

## References

- [SUIT Manifest Specification](https://datatracker.ietf.org/doc/html/draft-ietf-suit-manifest)
- [CBOR RFC 8949](https://tools.ietf.org/html/rfc8949)
- [COSE Signatures RFC 8152](https://tools.ietf.org/html/rfc8152)

## License

See LICENSE file.