aiden
/
Aegis
mirror of https://github.com/beemdevelopment/Aegis
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
v2.0.3-release
v1.2.1-release
v1.0.3-release
v3.3.4
v3.3.3
v3.3.2
v3.3.1
v3.3
v3.3-beta1
v3.2
v3.1.1
v3.1.1-beta1
v3.1
v3.1-beta1
v3.0.1
v3.0
v3.0-beta1
v2.2.2
v2.2.1
v2.2
v2.2-beta1
v2.1.3
v2.1.2
v2.1.1
v2.1
v2.1-beta2
v2.1-beta1
v2.0.3
v2.0.2
v2.0.1
v2.0
v2.0-beta2
v2.0-beta1
v1.4.2
v1.4.1
v1.4
v1.4-beta2
v1.4-beta1
v1.3
v1.3-beta2
v1.3-beta1
v1.2.1
v1.2
v1.2-beta5
v1.2-beta4
v1.2-beta3
v1.2-beta2
v1.2-beta1
v1.1.4
v1.1.3
v1.1.2
v1.1.1
v1.1
v1.1-beta1
v1.0.3
v0.1
v0.1.1
v0.2
v0.2.1
v0.2.2
v0.3
v0.3.1
v0.3.2
v0.3.3
v0.4
v0.4.1
v0.4.2
v0.4.3
v1.0
v1.0-beta1
v1.0.1
v1.0.2
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'b581cd17fc'
${ noResults }
Aegis/doc/db.md

3.3 KiB
Raw Blame History

Database

The database is encoded in a simple binary format with JSON content at its core.

Encryption

The content of the database can be encrypted with AES in GCM mode. The nonce and authentication tag are stored in the plain section of this file.

If there is no Slots and/or EncryptionParameters section in the file, it is implied that the content is unencrypted and Aegis will try to parse it as such.

Format

The file format starts with a small header that contains some magic and a version number. A list of sections follows. These sections contain some information needed to perform decryption of the database. The (encrypted) content of the database starts after the end marker section.

All integers are encoded in Little Endian.

Header

Length Contents
5 "AEGIS" encoded in ASCII
1 uint8_t Version
? List of sections
? Content

Sections

Length Contents
1 uint8_t ID
4 uint32_t Length
? Section data

ID can be one of:

Value Name
0x00 EncryptionParameters
0x01 Slots
0xFF End marker

EncryptionParameters

Length Contents
12 Nonce
16 Tag

Slots

This section contains a SHA-256 hash of the master key and a list of slots. The hash is used to verify the integrity of a decrypted slot. Note that this is meant for convenience, not as a security measure.

Length Contents
32 uint8_t Master Key Hash
? Slots

All slots contain the master key encrypted with raw AES. The key that is used for encryption depends on the slot type.

A slot has the following structure.

Length Contents
1 uint8_t Type
16 ID
32 Encrypted key
? Additional data

Type can be one of:

Value Name
0x00 Raw
0x01 Password
0x02 Fingerprint
Raw

This slot type contains no additional data.

Password

With this slot type the key used for the master key encryption is derived from a user-provided password. The key derivation function is scrypt. The parameters used for scrypt are stored as additional data.

Length Contents
4 uint32_t N
4 uint32_t r
4 uint32_t p
32 Salt
Fingerprint

A fingerprint slot is exactly the same as a Raw slot.

End marker

This section indicates the end of the list of sections. This section doesn't have any content and thus its length is 0.

Content

The content of the database is a JSON file encoded in UTF-8.

{
    "version": 1,
    "counter": 10,
    "entries":
    [
        {
            "id": 1,
            "name": "ACME Co/john@example.com",
            "url": "otpauth://totp/ACME%20Co:john@example.com?secret=HXDMVJECJJWSRB3HWIZR4IFUGFTMXBOZ&issuer=ACME%20Co&algorithm=SHA1&digits=6&period=30",
        },
        ...
    ]
}