crypto

package

v0.0.0-...-55e27cd Latest Latest Go to latest Published: Oct 1, 2023 License: GPL-3.0-only Imports: 24 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/usbarmory/armory-drive

Links

Open Source Insights

Documentation ¶

Constants ¶

View Source

const (
	// flag to select DCP for on supported block ciphers
	DCP = true
	// flag to allow DCP, when flagged, for XTS computation
	DCPXTS = false
	// flag to select DCP for ESSIV computation
	DCPIV = false

	// key derivation iteration count
	PBKDF2_ITER = 4096

	// DEK key derivation diversifier
	DEK_DIV = "floppyDEK"
	// ESSIV key derivation diversifier
	ESSIV_DIV = "floppyESSIV"
	// SNVS key derivation diversifier
	SNVS_DIV = "floppySNVS"
)

View Source

const (
	MMC_CONF_BLOCK = 2097152
	CONF_BLOCKS_V1 = 2
	CONF_BLOCKS_V2 = 2048
)

View Source

const (
	BLOCK_KEY = iota
	ESSIV_KEY
	SNVS_KEY
)

DCP key RAM indices

View Source

const (
	UA_LONGTERM_KEY = iota
	UA_EPHEMERAL_KEY
	MD_LONGTERM_KEY
	MD_EPHEMERAL_KEY
)

BLE key indices

Variables ¶

View Source

var ESSIV = false

flag to select ESSIV on AES-128 CBC ciphers

Functions ¶

func Rand ¶

func Rand(n int) []byte

Types ¶

type Keyring ¶

type Keyring struct {
	// FDE function
	Cipher func(buf []byte, lba int, blocks int, blockSize int, enc bool, wg *sync.WaitGroup)

	// Configuration instance
	Conf *PersistentConfiguration

	// long term BLE peer authentication keys
	ArmoryLongterm *ecdsa.PrivateKey
	MobileLongterm *ecdsa.PublicKey
	// contains filtered or unexported fields
}

func (*Keyring) ClearSessionKeys ¶

func (k *Keyring) ClearSessionKeys()

func (*Keyring) DecryptOFB ¶

func (k *Keyring) DecryptOFB(ciphertext []byte) (plaintext []byte, err error)

func (*Keyring) EncryptOFB ¶

func (k *Keyring) EncryptOFB(plaintext []byte) (ciphertext []byte, err error)

func (*Keyring) Export ¶

func (k *Keyring) Export(index int, private bool) ([]byte, error)

func (*Keyring) Import ¶

func (k *Keyring) Import(index int, private bool, der []byte) (err error)

func (*Keyring) Init ¶

func (k *Keyring) Init(overwrite bool) (err error)

func (*Keyring) Load ¶

func (k *Keyring) Load() (err error)

func (*Keyring) NewLongtermKey ¶

func (k *Keyring) NewLongtermKey() (err error)

func (*Keyring) NewSessionKeys ¶

func (k *Keyring) NewSessionKeys(nonce []byte) (err error)

func (*Keyring) Save ¶

func (k *Keyring) Save() (err error)

func (*Keyring) SetCipher ¶

func (k *Keyring) SetCipher(kind api.Cipher, diversifier []byte) (err error)

func (*Keyring) SignECDSA ¶

func (k *Keyring) SignECDSA(data []byte, ephemeral bool) (sig *api.Signature, err error)

func (*Keyring) VerifyECDSA ¶

func (k *Keyring) VerifyECDSA(data []byte, sig *api.Signature, ephemeral bool) (err error)

type PersistentConfiguration ¶

type PersistentConfiguration struct {
	// serialized long term BLE peer authentication keys
	ArmoryLongterm []byte
	MobileLongterm []byte

	// BLE API Configuration
	Settings *api.Configuration

	// Transparency Log Checkpoint
	ProofBundle *logapi.ProofBundle
}

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL