Struct IdentityRegistry 

pub struct IdentityRegistry { /* private fields */ }

TOFU Identity Registry

Maintains a mapping of node IDs to their public keys, implementing Trust On First Use semantics.

Implementations

impl IdentityRegistry

pub const DEFAULT_MAX_IDENTITIES: usize = 256

Default maximum identities (suitable for most deployments)

pub fn new() -> Self

Create a new empty registry

pub fn with_capacity(max_identities: usize) -> Self

Create a registry with custom capacity limit

pub fn verify_or_register( &mut self, attestation: &IdentityAttestation, ) -> RegistryResult

Verify an identity attestation or register it if new

This is the main TOFU operation:

1. Verify the attestation signature
2. If node_id is new, register the public key
3. If node_id is known, verify the public key matches

pub fn verify_or_register_at( &mut self, attestation: &IdentityAttestation, now_ms: u64, ) -> RegistryResult

Verify or register with explicit timestamp (for testing)

pub fn is_known(&self, node_id: NodeId) -> bool

Check if a node_id is known without modifying the registry

pub fn get_public_key(&self, node_id: NodeId) -> Option<&[u8; 32]>

Get the public key for a known node

pub fn get_record(&self, node_id: NodeId) -> Option<&IdentityRecord>

Get the full identity record for a node

pub fn len(&self) -> usize

Get the number of known identities

pub fn is_empty(&self) -> bool

Check if the registry is empty

pub fn remove(&mut self, node_id: NodeId) -> Option<IdentityRecord>

Remove an identity from the registry

Use with caution - this allows re-registration with a different key.

pub fn clear(&mut self)

Clear all known identities

Use with extreme caution - this resets all TOFU trust.

pub fn known_nodes(&self) -> Vec<NodeId>

Get all known node IDs

pub fn pre_register( &mut self, node_id: NodeId, public_key: [u8; 32], now_ms: u64, )

Pre-register a known identity (for out-of-band key exchange)

This allows registering an identity without an attestation, useful when keys are exchanged through a secure side channel.

pub fn register_member( &mut self, token: &MembershipToken, authority_public_key: &[u8; 32], now_ms: u64, ) -> Result<NodeId, RegistryResult>

Register a member via MembershipToken

Validates the token signature and stores the callsign binding. Returns the NodeId for the registered member.

Arguments

• token - The membership token to register
• authority_public_key - The mesh authority’s public key for verification
• now_ms - Current time for expiration checking

Returns

• Ok(NodeId) - The node was registered successfully
• Err(RegistryResult) - Registration failed (invalid signature or key mismatch)

pub fn get_callsign(&self, node_id: NodeId) -> Option<&str>

Get the callsign for a known node

pub fn find_by_callsign(&self, callsign: &str) -> Option<NodeId>

Find a node by callsign

pub fn encode(&self) -> Vec<u8>

Encode registry for persistence

Format v2:

• version (1 byte) = 2
• count (4 bytes)
• Per entry (77 bytes):
  • node_id (4 bytes)
  • public_key (32 bytes)
  • first_seen_ms (8 bytes)
  • last_seen_ms (8 bytes)
  • verification_count (4 bytes)
  • has_callsign (1 byte): 0 = no callsign, 1 = has callsign
  • callsign (12 bytes, only if has_callsign)
  • token_expires_ms (8 bytes, only if has_callsign)

pub fn decode(data: &[u8]) -> Option<Self>

Decode registry from bytes (supports v1 and v2 formats)

Trait Implementations

impl Clone for IdentityRegistry

fn clone(&self) -> IdentityRegistry

Returns a duplicate of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Debug for IdentityRegistry

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl Default for IdentityRegistry

fn default() -> Self

Returns the “default value” for a type.