licenz-core 0.2.0

Offline software license verification with RSA signatures, hardware binding, and anti-tamper detection
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88

# Security model (licenz-core)


This document describes **what this crate implements today**. Integrator-owned controls (passphrase policy, TLS pinning, TPM extensions) are in [IMPLEMENTATION_FMECA.md](IMPLEMENTATION_FMECA.md).

## Scope and trust boundaries


| In scope (this crate) | Out of scope |
| ----------------------- | ------------ |
| RSA / Ed25519 / ML-DSA-65 license signatures (per build features) | Policy: whether to allow use when attestation shows anomalies |
| Hardware binding comparison vs [`HardwareInfo`](src/hardware.rs) | TPM PCR quotes, measured boot, remote attestation verification |
| [`LicenseState`](src/anti_tamper.rs) HMAC at rest (32-byte app secret) | Where the integrator stores that secret |
| Encrypted private-key backup: Argon2id + AES-256-GCM, format **version 1** | User passphrase strength beyond minimum checks |
| Online client: HTTPS-only, JWS envelope, JWKS or PEM verifier key | API backend compromise, JWS signing key lifecycle |
| Strict online errors: transport / HTTP failure → `Err` (no silent `Unknown` from network) | Corporate TLS inspection (see IMPLEMENTATION_FMECA) |

## Deliberate choice: OS-visible binding by default


Default binding uses **MAC addresses, disk identifiers, hostname, machine id** exposed by the OS. This is **not** TPM-backed attestation.

**Why:** portable installs without a TPM stack, predictable CI, and support for VMs/containers where TPM semantics vary.

**Residual:** a motivated local attacker can often spoof OS-visible IDs more easily than forging a verified TPM quote. **Remediation:** implement [`HardwareEnvironment`](src/hardware.rs) in your application or a companion crate (e.g. populate `HardwareBinding.custom` from TPM or enclave material) and enforce it at issuance and verification. See [IMPLEMENTATION_FMECA.md](IMPLEMENTATION_FMECA.md) (rows **HB-***).

## Normative controls


### Signatures and license formats


- Licenses are validated with the configured public key material; algorithm is selected from the license payload (`CryptoVerifier` / `LicenseVerifier`).

### Hardware binding


- [`LicenseVerifier`](src/verifier.rs) / [`CryptoVerifier`](src/verifier.rs) call [`HardwareEnvironment::snapshot`](src/hardware.rs).
- Default: [`DefaultHardwareEnvironment`](src/hardware.rs)[`detect_hardware`](src/hardware.rs).
- Override: [`with_hardware_environment`](src/verifier.rs) or [`with_hardware_info`](src/verifier.rs).

### Persistent state


- [`LicenseState::save`](src/anti_tamper.rs) / [`LicenseState::load`](src/anti_tamper.rs) require a **32-byte HMAC key**; files use the `hmac1:` line format only.

### Encrypted key backup


- [`EncryptedKeyStore`](src/encrypted_store.rs): **version byte 1**, Argon2id KDF, AES-256-GCM. Other versions are rejected.

### Online revocation and sync


- [`OnlineCheckConfig`](src/online_check/mod.rs): `server_url` **must** start with `https://`; empty API keys rejected.
- Exactly **one** of `jwks_url` or `jws_verifying_key_pem` must be set (XOR).
- Successful HTTP responses must be JSON `{"jws":"<compact-JWS>"}`. Payloads verify as **RS256**, **PS256**, or **EdDSA**. JWKS path requires `kid` on the JWS header.
- JWS `exp` claim is **always validated** (prevents indefinitely-valid responses). `aud` is validated when `expected_audience` is configured.
- [`check_revocation_batch`](src/online_check/mod.rs): network failure or non-success HTTP → **`Err`**. [`RevocationStatus::Unknown`](src/online_check/mod.rs) applies only after successful JWS verification when the server's status string is unrecognized.
- [`sync_report`](src/online_check/mod.rs): same JWS envelope; claims deserialize to [`SyncResponse`](src/online_check/mod.rs).

### Admin unlock


- [`generate_challenge_from_state`](src/unlock.rs) persists an HMAC-protected `PendingChallenge` (nonce, timestamp, unlock type, fingerprint hash) as a one-time token.
- [`validate_response_code`](src/unlock.rs) loads and **deletes** the pending challenge (replay prevention), reconstructs the signed message, and verifies the signature using `CryptoRegistry` (RSA-SHA256 or Ed25519).
- Response format: `[timestamp(8)] || [unlock_type(1)] || [signature(variable)]`.

### Feature flags


| Flag | Gated modules / deps |
|------|---------------------|
| `hardware-detect` (default) | `sysinfo`, `mac_address`, `hostname` — OS-visible probes in `detect_hardware()` |
| `online-check` | `reqwest`, `jsonwebtoken``online_check` module |
| `cloud-metadata` | `url` — cloud instance-ID detection |
| `post-quantum` | `ml-dsa` (FIPS 204), `ml-kem` (FIPS 203) — ML-DSA-65 / ML-KEM-768 algorithms and hybrid modes |

### Security witness


- [`WitnessConfig`](src/witness.rs): if `check_clock` or `check_state_files` is **true**, `state_integrity_key` **must** be `Some`. Defaults keep both checks **off** so simple examples run without a key; enable them in production with a stable per-installation secret.

## Provider API contract (HTTP)


**Revocation (batch)** — POST `…/api/v1/licenses/check-revocation`  
Response body:

```json
{ "jws": "<compact-JWS>" }
```

JWS payload JSON (claims) matches [`CheckRevocationResponse`](src/online_check/mod.rs): `results[]` with `serial`, `status`, optional `revoked_at`, and `checked_at`.

**Sync** — POST `…/api/v1/licenses/sync`  
Response body: same `jws` wrapper; claims match [`SyncResponse`](src/online_check/mod.rs): `status`, optional `message`, `server_time`.

## References


- Integrator checklist and FMECA-style tables: [IMPLEMENTATION_FMECA.md](IMPLEMENTATION_FMECA.md)