zlicenser-protocol 0.3.0

Shared protocol types, wire formats, cryptographic primitives, and hardware fingerprinting for the zlicenser licensing framework.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61

use std::{fs, path::PathBuf};

use crate::{
    error::Error,
    fingerprint::identifier::{HardwareIdentifier, IdentifierKind},
};

const BLOCK_PATH: &str = "/sys/block";

// Partition devices and loop/ram/zram devices aren't useful identifiers.
const SKIP_PREFIXES: &[&str] = &["loop", "ram", "zram", "dm-", "md"];

/// Collects disk serial numbers from sysfs, sorted by device name for stable indexing.
pub fn disk_serials() -> crate::Result<Vec<HardwareIdentifier>> {
    let mut results: Vec<(String, Vec<u8>)> = fs::read_dir(BLOCK_PATH)
        .map_err(|e| Error::Collection(format!("{BLOCK_PATH}: {e}")))?
        .filter_map(|e| e.ok())
        .filter_map(|entry| {
            let name = entry.file_name().to_string_lossy().into_owned();
            if SKIP_PREFIXES.iter().any(|p| name.starts_with(p)) {
                return None;
            }
            // Try the standard sysfs serial path first, then the NVMe variant.
            let serial = read_block_serial(&name)?;
            Some((name, serial))
        })
        .collect();

    if results.is_empty() {
        return Err(Error::Collection("no disk serial numbers found".into()));
    }

    results.sort_by(|a, b| a.0.cmp(&b.0));

    Ok(results
        .into_iter()
        .enumerate()
        .map(|(i, (_, serial))| {
            HardwareIdentifier::new(IdentifierKind::DiskSerial { index: i as u8 }, serial)
        })
        .collect())
}

fn read_block_serial(device: &str) -> Option<Vec<u8>> {
    // Classic SATA/SAS devices
    let sata_path: PathBuf = [BLOCK_PATH, device, "device", "serial"].iter().collect();
    // NVMe devices expose serial under a slightly different path
    let nvme_path: PathBuf = [BLOCK_PATH, device, "device", "device", "serial"]
        .iter()
        .collect();

    for path in [&sata_path, &nvme_path] {
        if let Ok(serial) = fs::read_to_string(path) {
            let s = serial.trim();
            if !s.is_empty() && s != "unknown" {
                return Some(s.as_bytes().to_vec());
            }
        }
    }
    None
}