Aegis/doc/db.md

# Database

The database is encoded in a simple binary format with JSON content at its core.

## Encryption

The content of the database can be encrypted with AES in GCM mode. The nonce and
authentication tag are stored in the plain section of this file.

If there is no Slots and/or EncryptionParameters section in the file, it is
implied that the content is unencrypted and Aegis will try to parse it as such.

## Format

The file format starts with a small header that contains some magic and a
version number. A list of sections follows. These sections contain some
information needed to perform decryption of the database. The (encrypted)
content of the database starts after the end marker section.

All integers are encoded in Little Endian.

### Header

| Length | Contents                 |
|:-------|:-------------------------|
| `5`    | "AEGIS" encoded in ASCII |
| `1`    | `uint8_t` Version        |
| `?`    | List of sections         |
| `?`    | Content                  |

### Sections

| Length | Contents          |
|:-------|:------------------|
| `1`    | `uint8_t` ID      |
| `4`    | `uint32_t` Length |
| `?`    | Section data      |

ID can be one of:

| Value  | Name                 |
|:-------|:---------------------|
| `0x00` | EncryptionParameters |
| `0x01` | Slots                |
| `0xFF` | End marker           |

#### EncryptionParameters

| Length | Contents |
|:-------|:---------|
| `12`   | Nonce    |
| `16`   | Tag      |

#### Slots

This section contains a SHA-256 hash of the master key and a list of slots. The
hash is used to verify the integrity of a decrypted slot. Note that this is
meant for convenience, not as a security measure.

| Length | Contents                  |
|:-------|:--------------------------|
| `32`   | `uint8_t` Master Key Hash |
| `?`    | Slots                     |

All slots contain the master key encrypted with raw AES. The key that is used for
encryption depends on the slot type.

A slot has the following structure.

| Length | Contents            |
|:-------|:--------------------|
| `1`    | `uint8_t` Type      |
| `16`   | ID                  |
| `32`   | Encrypted key       |
| `?`    | Additional data     |

Type can be one of:

| Value  | Name        |
|:-------|:------------|
| `0x00` | Raw         |
| `0x01` | Password    |
| `0x02` | Fingerprint |

##### Raw

This slot type contains no additional data.

##### Password

With this slot type the key used for the master key encryption is derived from a
user-provided password. The key derivation function is scrypt. The parameters
used for scrypt are stored as additional data.

| Length | Contents     |
|:-------|:-------------|
| `4`    | `uint32_t` N |
| `4`    | `uint32_t` r |
| `4`    | `uint32_t` p |
| `32`   | Salt         |

##### Fingerprint

A fingerprint slot is exactly the same as a Raw slot.

#### End marker

This section indicates the end of the list of sections. This section doesn't
have any content and thus its length is 0.

### Content

The content of the database is a JSON file encoded in UTF-8.

```json
{
    "version": 1,
    "counter": 10,
    "entries":
    [
        {
            "id": 1,
            "name": "ACME Co/john@example.com",
            "url": "otpauth://totp/ACME%20Co:john@example.com?secret=HXDMVJECJJWSRB3HWIZR4IFUGFTMXBOZ&issuer=ACME%20Co&algorithm=SHA1&digits=6&period=30",
        },
        ...
    ]
}
```
Replaced the sqlcipher database with a custom one Still a WIP. This change was made to allow us to use Android's SecretKey API. Which in turn allows us to store our secret keys in the Android KeyStore. You can read about the database file format here: doc/db.md 2016-11-13 18:21:00 +01:00			`# Database`

Push some work on yet another rework of the database. This time with slots! Details are in doc/db.md 2017-05-03 21:08:38 +02:00			`The database is encoded in a simple binary format with JSON content at its core.`
Replaced the sqlcipher database with a custom one Still a WIP. This change was made to allow us to use Android's SecretKey API. Which in turn allows us to store our secret keys in the Android KeyStore. You can read about the database file format here: doc/db.md 2016-11-13 18:21:00 +01:00
			`## Encryption`

Push some work on yet another rework of the database. This time with slots! Details are in doc/db.md 2017-05-03 21:08:38 +02:00			`The content of the database can be encrypted with AES in GCM mode. The nonce and`
			`authentication tag are stored in the plain section of this file.`

			`If there is no Slots and/or EncryptionParameters section in the file, it is`
Clarify the docs a bit 2017-08-19 13:52:22 +02:00			`implied that the content is unencrypted and Aegis will try to parse it as such.`
Replaced the sqlcipher database with a custom one Still a WIP. This change was made to allow us to use Android's SecretKey API. Which in turn allows us to store our secret keys in the Android KeyStore. You can read about the database file format here: doc/db.md 2016-11-13 18:21:00 +01:00
			`## Format`

Push some work on yet another rework of the database. This time with slots! Details are in doc/db.md 2017-05-03 21:08:38 +02:00			`The file format starts with a small header that contains some magic and a`
			`version number. A list of sections follows. These sections contain some`
			`information needed to perform decryption of the database. The (encrypted)`
			`content of the database starts after the end marker section.`
Replaced the sqlcipher database with a custom one Still a WIP. This change was made to allow us to use Android's SecretKey API. Which in turn allows us to store our secret keys in the Android KeyStore. You can read about the database file format here: doc/db.md 2016-11-13 18:21:00 +01:00
			`All integers are encoded in Little Endian.`

			`### Header`

			`\| Length \| Contents \|`
			`\|:-------\|:-------------------------\|`
			\| `5` \| "AEGIS" encoded in ASCII \|
			\| `1` \| `uint8_t` Version \|
			\| `?` \| List of sections \|
			\| `?` \| Content \|

			`### Sections`

			`\| Length \| Contents \|`
			`\|:-------\|:------------------\|`
			\| `1` \| `uint8_t` ID \|
			\| `4` \| `uint32_t` Length \|
			\| `?` \| Section data \|

			`ID can be one of:`

			`\| Value \| Name \|`
			`\|:-------\|:---------------------\|`
			\| `0x00` \| EncryptionParameters \|
Push some work on yet another rework of the database. This time with slots! Details are in doc/db.md 2017-05-03 21:08:38 +02:00			\| `0x01` \| Slots \|
Replaced the sqlcipher database with a custom one Still a WIP. This change was made to allow us to use Android's SecretKey API. Which in turn allows us to store our secret keys in the Android KeyStore. You can read about the database file format here: doc/db.md 2016-11-13 18:21:00 +01:00			\| `0xFF` \| End marker \|

			`#### EncryptionParameters`

			`\| Length \| Contents \|`
			`\|:-------\|:---------\|`
			\| `12` \| Nonce \|
			\| `16` \| Tag \|

Push some work on yet another rework of the database. This time with slots! Details are in doc/db.md 2017-05-03 21:08:38 +02:00			`#### Slots`

Verify integrity of decrypted slots and display a dialog on error 2017-08-18 22:12:45 +02:00			`This section contains a SHA-256 hash of the master key and a list of slots. The`
Clarify the docs a bit 2017-08-19 13:52:22 +02:00			`hash is used to verify the integrity of a decrypted slot. Note that this is`
			`meant for convenience, not as a security measure.`
Verify integrity of decrypted slots and display a dialog on error 2017-08-18 22:12:45 +02:00
			`\| Length \| Contents \|`
			`\|:-------\|:--------------------------\|`
			\| `32` \| `uint8_t` Master Key Hash \|
			\| `?` \| Slots \|

			`All slots contain the master key encrypted with raw AES. The key that is used for`
			`encryption depends on the slot type.`
Push some work on yet another rework of the database. This time with slots! Details are in doc/db.md 2017-05-03 21:08:38 +02:00
			`A slot has the following structure.`

			`\| Length \| Contents \|`
			`\|:-------\|:--------------------\|`
			\| `1` \| `uint8_t` Type \|
Match slot ID's to keystore aliases 2018-02-10 17:20:41 +01:00			\| `16` \| ID \|
Push some work on yet another rework of the database. This time with slots! Details are in doc/db.md 2017-05-03 21:08:38 +02:00			\| `32` \| Encrypted key \|
			\| `?` \| Additional data \|

			`Type can be one of:`

			`\| Value \| Name \|`
			`\|:-------\|:------------\|`
			\| `0x00` \| Raw \|
			\| `0x01` \| Password \|
			\| `0x02` \| Fingerprint \|

			`##### Raw`

			`This slot type contains no additional data.`

			`##### Password`

			`With this slot type the key used for the master key encryption is derived from a`
Update docs to reflect the key derivation function changes 2017-08-07 22:39:43 +02:00			`user-provided password. The key derivation function is scrypt. The parameters`
			`used for scrypt are stored as additional data.`

			`\| Length \| Contents \|`
			`\|:-------\|:-------------\|`
			\| `4` \| `uint32_t` N \|
			\| `4` \| `uint32_t` r \|
			\| `4` \| `uint32_t` p \|
			\| `32` \| Salt \|
Replaced the sqlcipher database with a custom one Still a WIP. This change was made to allow us to use Android's SecretKey API. Which in turn allows us to store our secret keys in the Android KeyStore. You can read about the database file format here: doc/db.md 2016-11-13 18:21:00 +01:00
Push some work on yet another rework of the database. This time with slots! Details are in doc/db.md 2017-05-03 21:08:38 +02:00			`##### Fingerprint`

			`A fingerprint slot is exactly the same as a Raw slot.`

Replaced the sqlcipher database with a custom one Still a WIP. This change was made to allow us to use Android's SecretKey API. Which in turn allows us to store our secret keys in the Android KeyStore. You can read about the database file format here: doc/db.md 2016-11-13 18:21:00 +01:00			`#### End marker`

			`This section indicates the end of the list of sections. This section doesn't`
			`have any content and thus its length is 0.`

			`### Content`

Push some work on yet another rework of the database. This time with slots! Details are in doc/db.md 2017-05-03 21:08:38 +02:00			`The content of the database is a JSON file encoded in UTF-8.`
Replaced the sqlcipher database with a custom one Still a WIP. This change was made to allow us to use Android's SecretKey API. Which in turn allows us to store our secret keys in the Android KeyStore. You can read about the database file format here: doc/db.md 2016-11-13 18:21:00 +01:00
Push some work on yet another rework of the database. This time with slots! Details are in doc/db.md 2017-05-03 21:08:38 +02:00			```json
Replaced the sqlcipher database with a custom one Still a WIP. This change was made to allow us to use Android's SecretKey API. Which in turn allows us to store our secret keys in the Android KeyStore. You can read about the database file format here: doc/db.md 2016-11-13 18:21:00 +01:00			`{`
			`"version": 1,`
Add a new activity that allows editing key profiles 2017-12-27 22:04:22 +01:00			`"counter": 10,`
Replaced the sqlcipher database with a custom one Still a WIP. This change was made to allow us to use Android's SecretKey API. Which in turn allows us to store our secret keys in the Android KeyStore. You can read about the database file format here: doc/db.md 2016-11-13 18:21:00 +01:00			`"entries":`
			`[`
			`{`
			`"id": 1,`
			`"name": "ACME Co/john@example.com",`
			`"url": "otpauth://totp/ACME%20Co:john@example.com?secret=HXDMVJECJJWSRB3HWIZR4IFUGFTMXBOZ&issuer=ACME%20Co&algorithm=SHA1&digits=6&period=30",`
			`},`
			`...`
			`]`
			`}`
			```