phytrace_sdk/core/

provenance.rs

//! Provenance signing for data integrity verification.
//!
//! Provides HMAC-SHA256 signing of UDM events to ensure data integrity
//! and authenticity.

use base64::{engine::general_purpose::STANDARD as BASE64, Engine};
use chrono::Utc;
use hmac::{Hmac, Mac};
use sha2::Sha256;

use crate::core::config::ProvenanceConfig;
use crate::error::{PhyTraceError, PhyTraceResult};
use crate::models::event::{Provenance, UdmEvent};

type HmacSha256 = Hmac<Sha256>;

/// Provenance signer for UDM events.
#[derive(Clone)]
pub struct ProvenanceSigner {
    config: ProvenanceConfig,
    secret_key: Vec<u8>,
}

impl ProvenanceSigner {
    /// Create a new signer from configuration.
    pub fn from_config(config: &ProvenanceConfig) -> PhyTraceResult<Self> {
        let secret_key = config.secret_key.as_ref().ok_or_else(|| {
            PhyTraceError::Config(crate::error::ConfigError::MissingRequired(
                "secret_key is required for signing".to_string(),
            ))
        })?;

        // Decode base64-encoded key
        let decoded_key = BASE64.decode(secret_key).map_err(|e| {
            PhyTraceError::Config(crate::error::ConfigError::Validation(format!(
                "Invalid base64 secret_key: {}",
                e
            )))
        })?;

        Ok(Self {
            config: config.clone(),
            secret_key: decoded_key,
        })
    }

    /// Create a new signer with raw key bytes.
    pub fn new(key_id: impl Into<String>, secret_key: Vec<u8>) -> Self {
        Self {
            config: ProvenanceConfig {
                enabled: true,
                algorithm: "hmac-sha256".to_string(),
                key_id: Some(key_id.into()),
                secret_key: None, // Not stored in config when using raw key
                signed_fields: default_signed_fields(),
            },
            secret_key,
        }
    }

    /// Sign an event and add provenance information.
    pub fn sign(&self, event: &mut UdmEvent) -> PhyTraceResult<()> {
        let signature_input = self.create_signature_input(event)?;
        let signature = self.compute_signature(&signature_input)?;

        event.provenance = Some(Provenance {
            signature: Some(signature),
            key_id: self.config.key_id.clone(),
            algorithm: Some(self.config.algorithm.clone()),
            signed_fields: Some(self.config.signed_fields.clone()),
            signed_at: Some(Utc::now()),
        });

        Ok(())
    }

    /// Verify an event's provenance signature.
    pub fn verify(&self, event: &UdmEvent) -> PhyTraceResult<bool> {
        let provenance = event.provenance.as_ref().ok_or_else(|| {
            PhyTraceError::Validation("Event has no provenance information".to_string())
        })?;

        let stored_signature = provenance
            .signature
            .as_ref()
            .ok_or_else(|| PhyTraceError::Validation("Provenance has no signature".to_string()))?;

        // Create a copy without provenance for verification
        let mut event_copy = event.clone();
        event_copy.provenance = None;

        let signature_input = self.create_signature_input(&event_copy)?;
        let computed_signature = self.compute_signature(&signature_input)?;

        Ok(computed_signature == *stored_signature)
    }

    /// Create the canonical input for signing.
    fn create_signature_input(&self, event: &UdmEvent) -> PhyTraceResult<String> {
        // Build a canonical representation of signed fields
        let mut parts = Vec::new();

        for field in &self.config.signed_fields {
            let value = match field.as_str() {
                "event_id" => Some(event.event_id.clone()),
                "captured_at" => Some(event.captured_at.to_rfc3339()),
                "event_type" => Some(
                    serde_json::to_string(&event.event_type)
                        .unwrap_or_default()
                        .trim_matches('"')
                        .to_string(),
                ),
                "source_type" => Some(
                    serde_json::to_string(&event.source_type)
                        .unwrap_or_default()
                        .trim_matches('"')
                        .to_string(),
                ),
                "udm_version" => Some(event.udm_version.clone()),
                "identity" => event
                    .identity
                    .as_ref()
                    .and_then(|i| serde_json::to_string(i).ok()),
                "location" => event
                    .location
                    .as_ref()
                    .and_then(|l| serde_json::to_string(l).ok()),
                _ => None, // Unknown fields are skipped
            };

            if let Some(v) = value {
                parts.push(format!("{}={}", field, v));
            }
        }

        Ok(parts.join("&"))
    }

    /// Compute HMAC-SHA256 signature.
    fn compute_signature(&self, input: &str) -> PhyTraceResult<String> {
        let mut mac = HmacSha256::new_from_slice(&self.secret_key)
            .map_err(|e| PhyTraceError::Crypto(format!("Invalid key length: {}", e)))?;

        mac.update(input.as_bytes());
        let result = mac.finalize();
        let signature = BASE64.encode(result.into_bytes());

        Ok(signature)
    }

    /// Get the key ID.
    pub fn key_id(&self) -> Option<&str> {
        self.config.key_id.as_deref()
    }

    /// Get the algorithm.
    pub fn algorithm(&self) -> &str {
        &self.config.algorithm
    }
}

fn default_signed_fields() -> Vec<String> {
    vec![
        "event_id".to_string(),
        "timestamp".to_string(),
        "source_type".to_string(),
        "identity".to_string(),
    ]
}

/// Generate a random secret key (32 bytes).
pub fn generate_secret_key() -> String {
    use rand::Rng;
    let key: [u8; 32] = rand::thread_rng().gen();
    BASE64.encode(key)
}

#[cfg(test)]
mod tests {
    use super::*;
    use crate::models::domains::IdentityDomain;
    use crate::models::enums::SourceType;

    fn test_signer() -> ProvenanceSigner {
        // Use a fixed test key
        let key = BASE64
            .decode("dGVzdC1zZWNyZXQta2V5LWZvci1waHl0cmFjZS1zZGstdGVzdA==")
            .unwrap();
        ProvenanceSigner::new("test-key-001", key)
    }

    fn test_event() -> UdmEvent {
        UdmEvent::new(SourceType::Amr).with_identity(IdentityDomain {
            source_id: Some("robot-001".to_string()),
            ..Default::default()
        })
    }

    #[test]
    fn test_sign_event() {
        let signer = test_signer();
        let mut event = test_event();

        signer.sign(&mut event).unwrap();

        assert!(event.provenance.is_some());
        let prov = event.provenance.as_ref().unwrap();
        assert!(prov.signature.is_some());
        assert_eq!(prov.key_id, Some("test-key-001".to_string()));
        assert_eq!(prov.algorithm, Some("hmac-sha256".to_string()));
    }

    #[test]
    fn test_verify_valid_signature() {
        let signer = test_signer();
        let mut event = test_event();

        signer.sign(&mut event).unwrap();
        let is_valid = signer.verify(&event).unwrap();

        assert!(is_valid);
    }

    #[test]
    fn test_verify_tampered_event() {
        let signer = test_signer();
        let mut event = test_event();

        signer.sign(&mut event).unwrap();

        // Tamper with the event
        event.event_id = "tampered-id".to_string();

        let is_valid = signer.verify(&event).unwrap();
        assert!(!is_valid);
    }

    #[test]
    fn test_verify_missing_provenance() {
        let signer = test_signer();
        let event = test_event(); // Not signed

        let result = signer.verify(&event);
        assert!(result.is_err());
    }

    #[test]
    fn test_different_keys_produce_different_signatures() {
        let signer1 = ProvenanceSigner::new(
            "key-1",
            vec![1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16],
        );
        let signer2 = ProvenanceSigner::new(
            "key-2",
            vec![16, 15, 14, 13, 12, 11, 10, 9, 8, 7, 6, 5, 4, 3, 2, 1],
        );

        let mut event1 = test_event();
        let mut event2 = event1.clone();

        signer1.sign(&mut event1).unwrap();
        signer2.sign(&mut event2).unwrap();

        let sig1 = event1.provenance.unwrap().signature.unwrap();
        let sig2 = event2.provenance.unwrap().signature.unwrap();

        assert_ne!(sig1, sig2);
    }

    #[test]
    fn test_from_config() {
        let config = ProvenanceConfig {
            enabled: true,
            algorithm: "hmac-sha256".to_string(),
            key_id: Some("config-key".to_string()),
            secret_key: Some("dGVzdC1zZWNyZXQta2V5LWZvci1waHl0cmFjZS1zZGstdGVzdA==".to_string()),
            signed_fields: vec!["event_id".to_string(), "timestamp".to_string()],
        };

        let signer = ProvenanceSigner::from_config(&config).unwrap();
        assert_eq!(signer.key_id(), Some("config-key"));
    }
}