kync 0.1.7

KyNc – a generic API for key encapsulation and a Rust interface to KyNc-plugins
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252

= Kync v1
:toc:


== General
Kync describes a **K**e**Y**e**NC**apsulation plugin-API for key encapsulation plugins.

Key encapsulation is the process of encrypting an already existing key with another different key.
This allows you to separate your application from the key storage so that the user can specify how
the key is stored – e.g. password-encrypted in a file or in the OS' keychain.


== Plugin API
To achieve a simple and cross-platform compatible API, we use dynamic libraries that expose a C
API/ABI.


=== General Design
Those design rules apply to all functions:

. Functions that may fail return a pointer to a _thread local_ error struct (similar to `errno` but
  with more information) or `NULL` in case of success

. The thread local error struct is only valid until another plugin function is called on the same
  thread

. Functions that will not fail return `void`

. No ownership is transferred

. An API-call *MUST NOT* take longer than 90 seconds before returning

. All functions *MUST* be threadsafe as long as their parameters are not shared

. Human readable/UTF-8 names/identifiers must not include a `\0` byte/`NUL` codepoint – if such an
  identifier is passed as `\0`-terminated string, the `\0` bytes *MUST NOT* be included in the
  length field

. Passing immutable data to a function follows the `uint8_t const* data, size_t data_len` rule

. To pass a mutable buffer, get the buffer size using `buf_len` and create and pass a buffer using
  the `uint8_t* buf, size_t* buf_written` rule


=== API Overview
These functions are defined by the API and *MUST* be implemented:

. `init`: Takes care of the library initialization and returns the implemented API version

. `buf_len`: Determines the buffer size required for a specific function call

. `capsule_format_uid`: Returns the capsule format UID for the implemented format

. `crypto_item_ids`: Gets all available crypto item IDs (for plugins that implement multiple
  algorithms or have their own key storage; e.g. GnuPG)

. `seal`: Seals some key bytes into a capsule

. `open`: Extracts the key bytes from a capsule

. `error_t`: The error type of the thread local error struct


=== init
[source,cpp]
----
void init(uint8_t* api_version, uint8_t log_level);
----

This function initializes the library, sets the `log_level` and writes the API version to the
`api_version` pointer. It *MUST NOT* fail. The API version for this specification is `0x01`.

Parameters:

. `api_version`: The target to write the supported API version to

. `log_level`: The logging level the plugin should use (`0` means no logging). _Note: This applies
  to StdErr-logging only_


=== buf_len
[source,cpp]
----
void buf_len(size_t* buf_len, uint8_t const* fn_name, size_t fn_name_len, size_t input_len);
----

This function computes the buffer size necessary for a call to `fn_name` which will process
`input_len` bytes of input and writes the result to `buf_len`

Parameters:

. `buf_len`:The target to write the computed buffer length to

. `fn_name`: The function name

. `input_len`: The amount of bytes `func` will process when called


=== capsule_format_uid
[source,cpp]
----
void capsule_format_uid(uint8_t* uid, size_t* uid_written);
----

This function writes the capsule UID to `uid`. It *MUST NOT* fail. The capsule format UID is
consists of UTF-8 data which *MUST* map to one format only. To achieve this, a random UUID is
appended to each name; e.g. `AES-256-GCM-IETF.v1.B593CCDE-B5C3-433A-ABBA-9087FBF13E60`. If you write
a fully compatible drop-in replacement for an already existing plugin, you *MAY* use the original
format UID.

Parameter `uid`: The target to write the UID to


=== crypto_item_ids
[source,cpp]
----
error_t const* crypto_item_ids(uint8_t* buf, size_t* buf_written);
----

This function writes all available crypto item IDs as concatenated, `'\0'`-terminated UTF-8 data to
`buf`.

Crypto item IDs identify a specific algorithm or key in case the plugin allows multiple algorithms
(e.g. `"AES-128"` vs. `"AES-256"`) or offers multiple keys from a key store (e.g. GnuPG).

If the plugin does not support multiple crypto items, it *MUST* return an `ENOTFOUND`-error.


=== seal
[source,cpp]
----
error_t const* seal(
	uint8_t* buf, size_t* buf_written,
	uint8_t const* key, size_t key_len,
	uint8_t const* crypto_item_id, size_t crypto_item_id_len,
	uint8_t const* user_secret, size_t user_secret_len
);
----

This function seals a `key` and writes the resulting data to `sink`.

Parameters:

. `buf`: The payload destination

. `key`: The slice containing the key bytes to seal

. `crypto_item_id`: The `'\0'`-terminated UTF-8 crypto item ID to use (see `crypto_item_ids`)
** The pointer *MUST* be `NULL` if the plugin does not support multiple crypto items – if violated,
   an `EINVAL`-error *MUST* be returned.
** The pointer *MAY* have a `0` length even if the plugin supports multiple crypto items in which
   case a reasonable default *SHOULD* be selected if possible – if not possible, an
   `ENOTFOUND`-error *MUST* be returned.

. `user_secret`: A user-provided secret which may have multiple, plugin-dependent purposes; ranging
  from a hardware-token-PIN to the capsule key itself
** The pointer *MAY* be `NULL` in it case is not necessary for the call – _if_ it is `NULL`, a
   plugin *MUST NOT* perform any authentication attempts that could decrease a retry counter.


=== open
[source,cpp]
----
error_t const* open(
	uint8_t* buf, size_t* buf_written,
	uint8_t const* capsule, size_t capsule_len,
	uint8_t const* user_secret, size_t user_secret_len
);
----

This function opens a `capsule` and writes the resulting key bytes into `sink`.

Parameters:

. `buf`: The plaintext-key destination

. `capsule`: The capsule data

. `user_secret`: A user-provided secret which may have multiple, plugin-dependent purposes; ranging
  from a hardware-token-PIN to the capsule key itself
** The pointer *MAY* be `NULL` in case it is not necessary for the call – _if_ it is `NULL`, a
   plugin *MUST NOT* perform any authentication attempts that could decrease a retry counter.


=== error_t
[source,cpp]
----
typedef struct {
	uint8_t const* error_type;
	size_t error_type_len;

	uint8_t const* description;
	size_t description_len;

	uint64_t info;
} error_t;
----

The error type.

Fields:

. `error_type`: The error type as UTF-8 data; *MAY* be `NULL` if no error occurred

. `info`: An error-specific info field

. `description`: An error description as UTF-8 data; *MAY* be `NULL`


==== EPERM
`EPERM` indicates that an operation is not permitted (at least without providing authentication
data).

`info` indicates if the action requires authentication (`info != 0`) or if the action will always
fail (`info == 0`).


==== EACCES
`EACCES` indicates an authentication error. `info` indicates the amount of retries left; if there
is no retry-limit, `info` is `UINT64_MAX`.


==== EIO
`EIO` indicates an I/O-related error. `info` is unused.


==== EILSEQ
`EILSEQ` indicates invalid capsule data. `info` is unused.


==== ENOTFOUND
`ENOTFOUND` indicates that there is no matching key available to decrypt the capsule. `info` is
unused.


==== EINVAL
`EINVAL` indicates an invalid parameter. `info` is the `0`-based index of the parameter.


==== ECANCELED
`ECANCELED` indicates that the operation was canceled. `info` is unused.


==== ETIMEDOUT
`ETIMEDOUT` indicates that the operation timed out – either because it hit the 90s deadline or
because something else
timed out (e.g. hardware token). `info` is unused.


==== EOTHER
`EOTHER` indicates that an unspecified fatal error occurred. `info` *MAY* be a plugin-specific
error code and *MUST* be ignored if it's meaning is unknown.