Module holochain::prelude::dependencies::kitsune_p2p_types::dependencies::lair_keystore_api::prelude
source · Expand description
Re-export module of types generally used with lair.
Structs§
- Wrapper newtype for serde encoding / decoding binary data.
- Wrapper newtype for serde encoding / decoding sized binary data.
- Public information associated with a given tls certificate.
- Instructions for how to argon2id pwhash a passphrase for use in deep locking a seed.
- Request “crypto_box” encryption.
- Request “crypto_box_open” decryption.
- Derive a new lair seed from an existing seed.
- Request “crypto_box” encryption.
- Get entry_info for an entry by tag from lair.
- Request the private key associated with a tagged wka tls cert.
- Initiate communication with the target lair instance.
- Request “crypto_box_open” decryption.
- Request a list of entries from lair.
- Instruct lair to generate a new seed from cryptographically secure random data with given tag.
- Instruct lair to generate a new wka tls certificate from cryptographically secure random data with given tag.
- Request “crypto_box” encryption.
- Request “crypto_box” encryption.
- Request a signature.
- Unlock the keystore – this verifies the client to the keystore.
- A “crypto_box” encryption response.
- A “crypto_box_open” decryption response.
- Response to a ReqDeriveSeed request.
- An error response from the remote instance.
- A “crypto_box” encryption response.
- Response to a GetEntry request.
- Returns the private key associated with a tagged wka tls cert.
- The hello response from the target lair instance. This data allows us to verify we are speaking to our expected target.
- A “crypto_box_open” decryption response.
- Respond to a list entries request.
- On new seed generation, lair will respond with info about that seed.
- On new cert generation, lair will respond with info about that cert.
- A “crypto_box” encryption response.
- A “crypto_box” encryption response.
- A signature response.
- Sucess / Failure of the unlock request.
- A lair keystore client handle. Use this to make requests of the keystore.
- A lair keystore server handle. Use this to handle incoming client connections.
- Inner config type used by lair servers. This will be wrapped in an
Arc
in the typedef LairServerConfig. - A handle to a running lair keystore backend persistance instance. Allows storing, listing, and retrieving keystore secrets.
- A factory abstraction allowing connecting to a lair keystore persistance backend with an unlock secret (generally derived from a user passphrase).
- Secret data. Encrypted with sodium secretstream. The key used to encrypt / decrypt is context dependent.
- Sized secret data. Encrypted with sodium secretstream. The key used to encrypt / decrypt is context dependent.
- Public information associated with a given seed.
Enums§
- Lair api enum.
- The type and tag of this lair entry.
- The raw lair entry inner types that can be stored. This is generally wrapped by an
Arc
. See the typedef LairEntry. - Enum for configuring signature fallback handling.
- Enum to specify limits (difficulty) for argon2id pwhashing algorithm.
Functions§
- Get the connection “path”. This could have different meanings depending on if we are a unix domain socket or named pipe, etc.
- Helper utility for extracting a server_pub_key from a connection_url.
- Spawn a tokio task managing a lair server with given store factory.
Type Aliases§
- The 32 byte blake2b digest of the der encoded tls certificate.
- The secret bytes of the passphrase
- Ed25519 signature public key derived from this seed.
- Ed25519 signature bytes.
- An actual LairEntry. Unlike LairEntryInfo, this type contains the actual secrets associated with the keystore entry.
- Lair result type.
- Configuration for running a lair-keystore server instance.
- Data type for secret seed
- X25519 encryption public key derived from this seed.