UDIF/udif_8h_source.html

/* 2025-2026 Quantum Resistant Cryptographic Solutions Corporation

 * All Rights Reserved.

 *

 * NOTICE:

 * This software and all accompanying materials are the exclusive property of

 * Quantum Resistant Cryptographic Solutions Corporation (QRCS). The intellectual

 * and technical concepts contained herein are proprietary to QRCS and are

 * protected under applicable Canadian, U.S., and international copyright,

 * patent, and trade secret laws.

 *

 * CRYPTOGRAPHIC ALGORITHMS AND IMPLEMENTATIONS:

 * - This software includes implementations of cryptographic primitives and

 *   algorithms that are standardized or in the public domain, such as AES

 *   and SHA-3, which are not proprietary to QRCS.

 * - This software also includes cryptographic primitives, constructions, and

 *   algorithms designed by QRCS, including but not limited to RCS, SCB, CSX, QMAC, and

 *   related components, which are proprietary to QRCS.

 * - All source code, implementations, protocol compositions, optimizations,

 *   parameter selections, and engineering work contained in this software are

 *   original works of QRCS and are protected under this license.

 *

 * LICENSE AND USE RESTRICTIONS:

 * - This software is licensed under the Quantum Resistant Cryptographic Solutions

 *   Public Research and Evaluation License (QRCS-PREL), 2025-2026.

 * - Permission is granted solely for non-commercial evaluation, academic research,

 *   cryptographic analysis, interoperability testing, and feasibility assessment.

 * - Commercial use, production deployment, commercial redistribution, or

 *   integration into products or services is strictly prohibited without a

 *   separate written license agreement executed with QRCS.

 * - Licensing and authorized distribution are solely at the discretion of QRCS.

 *

 * EXPERIMENTAL CRYPTOGRAPHY NOTICE:

 * Portions of this software may include experimental, novel, or evolving

 * cryptographic designs. Use of this software is entirely at the user's risk.

 *

 * DISCLAIMER:

 * THIS SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR

 * IMPLIED, INCLUDING BUT NOT LIMITED TO WARRANTIES OF MERCHANTABILITY, FITNESS

 * FOR A PARTICULAR PURPOSE, SECURITY, OR NON-INFRINGEMENT. QRCS DISCLAIMS ALL

 * LIABILITY FOR ANY DIRECT, INDIRECT, INCIDENTAL, OR CONSEQUENTIAL DAMAGES

 * ARISING FROM THE USE OR MISUSE OF THIS SOFTWARE.

 *

 * FULL LICENSE:

 * This software is subject to the Quantum Resistant Cryptographic Solutions

 * Public Research and Evaluation License (QRCS-PREL), 2025-2026. The complete license terms

 * are provided in the accompanying LICENSE file or at https://www.qrcscorp.ca.

 *

 * Written by: John G. Underhill

 * Contact: contact@qrcscorp.ca

 */


#ifndef UDIF_H

#define UDIF_H


#include "udifcommon.h"

#include "sha3.h"

#include "socketbase.h"


#define UDIF_CONFIG_DILITHIUM_KYBER

//#define UDIF_CONFIG_SPHINCS_MCELIECE


#if defined(UDIF_CONFIG_DILITHIUM_KYBER)

#   include "dilithium.h"

#   include "kyber.h"

#elif defined(UDIF_CONFIG_SPHINCS_MCELIECE)

#   include "mceliece.h"

#   include "sphincsplus.h"

#else

#   error Invalid parameter set!

#endif


 /* Function Mapping Macros */


#define UDIF_USE_RCS_ENCRYPTION


#if defined(UDIF_USE_RCS_ENCRYPTION)

#   include "rcs.h"

#   define udif_cipher_state qsc_rcs_state

#   define udif_cipher_dispose qsc_rcs_dispose

#   define udif_cipher_initialize qsc_rcs_initialize

#   define udif_cipher_keyparams qsc_rcs_keyparams

#   define udif_cipher_set_associated qsc_rcs_set_associated

#   define udif_cipher_transform qsc_rcs_transform

#else

#   include "aes.h"

#   define udif_cipher_state qsc_aes_gcm256_state

#   define udif_cipher_dispose qsc_aes_gcm256_dispose

#   define udif_cipher_initialize qsc_aes_gcm256_initialize

#   define udif_cipher_keyparams qsc_aes_keyparams

#   define udif_cipher_set_associated qsc_aes_gcm256_set_associated

#   define udif_cipher_transform qsc_aes_gcm256_transform

#endif


#if defined(UDIF_CONFIG_SPHINCS_MCELIECE)

#   define udif_cipher_generate_keypair qsc_mceliece_generate_keypair

#   define udif_cipher_decapsulate qsc_mceliece_decapsulate

#   define udif_cipher_encapsulate qsc_mceliece_encapsulate

#   define udif_signature_generate_keypair qsc_sphincsplus_generate_keypair

#   define udif_signature_sign qsc_sphincsplus_sign

#   define udif_signature_verify qsc_sphincsplus_verify

#elif defined(UDIF_CONFIG_DILITHIUM_KYBER)

#   define udif_cipher_generate_keypair qsc_kyber_generate_keypair

#   define udif_cipher_decapsulate qsc_kyber_decapsulate

#   define udif_cipher_encapsulate qsc_kyber_encapsulate

#   define udif_signature_generate_keypair qsc_dilithium_generate_keypair

#   define udif_signature_sign qsc_dilithium_sign

#   define udif_signature_verify qsc_dilithium_verify

#else

#   error Invalid parameter set!

#endif


/* ### Modifiable Constants: These constants can be enabled to turn on protocol features ### */


//#define UDIF_NETWORK_PROTOCOL_IPV6


/* ### End of Modifiable Constants ### */


#if defined(UDIF_CONFIG_DILITHIUM_KYBER)

#   define UDIF_ASYMMETRIC_CIPHERTEXT_SIZE (QSC_KYBER_CIPHERTEXT_SIZE)


#   define UDIF_ASYMMETRIC_PRIVATE_KEY_SIZE (QSC_KYBER_PRIVATEKEY_SIZE)


#   define UDIF_ASYMMETRIC_PUBLIC_KEY_SIZE (QSC_KYBER_PUBLICKEY_SIZE)


#   define UDIF_ASYMMETRIC_SIGNATURE_SIZE (QSC_DILITHIUM_SIGNATURE_SIZE)


#   define UDIF_ASYMMETRIC_SIGNING_KEY_SIZE (QSC_DILITHIUM_PRIVATEKEY_SIZE)


#   define UDIF_ASYMMETRIC_VERIFICATION_KEY_SIZE (QSC_DILITHIUM_PUBLICKEY_SIZE)


#   if defined(QSC_DILITHIUM_S1P44) && defined(QSC_KYBER_S1K2P512)

#       define UDIF_PARAMATERS_DILITHIUM_KYBER_D1K1

#       define UDIF_SUITE_ID 1U

#   elif defined(QSC_DILITHIUM_S3P65) && defined(QSC_KYBER_S3K3P768)

#       define UDIF_PARAMATERS_DILITHIUM_KYBER_D3K3

#       define UDIF_SUITE_ID 2U

#   elif defined(QSC_DILITHIUM_S5P87) && defined(QSC_KYBER_S5K4P1024)

#       define UDIF_PARAMATERS_DILITHIUM_KYBER_D5K5

#       define UDIF_SUITE_ID 3U

#   elif defined(QSC_DILITHIUM_S5P87) && defined(QSC_KYBER_S6K5P1280)

#       define UDIF_PARAMATERS_DILITHIUM_KYBER_D5K6

#       define UDIF_SUITE_ID 4U

#   else

        /* The library signature scheme and asymmetric cipher parameter sets

        must be synchronized to a common security level; s1, s3, s5, s5+ */

#       error the library parameter sets are mismatched!

#   endif


#elif defined(UDIF_CONFIG_SPHINCS_MCELIECE)

#   define UDIF_ASYMMETRIC_CIPHERTEXT_SIZE (QSC_MCELIECE_CIPHERTEXT_SIZE)

#   define UDIF_ASYMMETRIC_PRIVATE_KEY_SIZE (QSC_MCELIECE_PRIVATEKEY_SIZE)

#   define UDIF_ASYMMETRIC_PUBLIC_KEY_SIZE (QSC_MCELIECE_PUBLICKEY_SIZE)

#   define UDIF_ASYMMETRIC_SIGNATURE_SIZE (QSC_SPHINCSPLUS_SIGNATURE_SIZE)

#   define UDIF_ASYMMETRIC_SIGNING_KEY_SIZE (QSC_SPHINCSPLUS_PRIVATEKEY_SIZE)

#   define UDIF_ASYMMETRIC_VERIFICATION_KEY_SIZE (QSC_SPHINCSPLUS_PUBLICKEY_SIZE)


#   if defined(QSC_MCELIECE_S1N3488T64)&& defined(QSC_SPHINCSPLUS_S1S128SHAKERS)

#       define UDIF_PARAMATERS_SPHINCSPLUS_S1S128SHAKERS

#       define UDIF_SUITE_ID 5U

#   elif defined(QSC_MCELIECE_S3N4608T96) && defined(QSC_SPHINCSPLUS_S3S192SHAKERS)

#       define UDIF_PARAMATERS_SPHINCSPLUS_S3S192SHAKERS

#       define UDIF_SUITE_ID 6U

#   elif defined(QSC_MCELIECE_S5N6688T128) && defined(QSC_SPHINCSPLUS_S5S256SHAKERS)

#       define UDIF_PARAMATERS_SPHINCSPLUS_S5S256SHAKERS

#       define UDIF_SUITE_ID 7U

#   elif defined(QSC_MCELIECE_S6N6960T119) && defined(QSC_SPHINCSPLUS_S5S256SHAKERS)

#       define UDIF_PARAMATERS_SPHINCSPLUS_S6S256SHAKERS

#       define UDIF_SUITE_ID 8U

#   elif defined(QSC_MCELIECE_S7N8192T128) && defined(QSC_SPHINCSPLUS_S5S256SHAKERS)

#       define UDIF_PARAMATERS_SPHINCSPLUS_S7S256SHAKERS

#       define UDIF_SUITE_ID 9U

#   else

        /* The library signature scheme and asymmetric cipher parameter sets

        must be synchronized to a common security level; s1, s3, s5 or s6.

        Check the QSC library common.h file for cipher and signature security level alignment. */

#       error Invalid parameter sets, check the QSC library settings

#   endif

#endif


#define UDIF_CAPABILITY_BITMAP_SIZE 8U


#define UDIF_CAPABILITY_MASK_SIZE 8U


#define UDIF_CAPABILITY_TOKEN_MAX_SIZE 2048U


#define UDIF_CLAIM_ANCHOR_SIZE 32U


#define UDIF_CRYPTO_HASH_SIZE 32U


#define UDIF_CRYPTO_KEY_SIZE 32U


#if defined(UDIF_USE_RCS_ENCRYPTION)

#   define UDIF_CRYPTO_MAC_SIZE 32U

#else

#   define UDIF_CRYPTO_MAC_SIZE 16U

#endif


#if defined(UDIF_USE_RCS_ENCRYPTION)

#   define UDIF_CRYPTO_NONCE_SIZE 32U

#else

#   define UDIF_CRYPTO_NONCE_SIZE 16U

#endif


#define UDIF_IDENTITY_ID_SIZE 32U


#define UDIF_ISSUER_DOMAIN_CODE_SIZE 8U


#define UDIF_NAMESPACE_CODE_SIZE 8U


#define UDIF_PERMISSION_MASK_SIZE 8U


#define UDIF_POLICY_HASH_SIZE 32U


#define UDIF_POLICY_VERB_SIZE 4U


#define UDIF_PROTOCOL_SET_SIZE 41U


#define UDIF_ROLE_SIZE 1U


#define UDIF_SERIAL_NUMBER_SIZE 16U


#define UDIF_SIGNED_HASH_SIZE (UDIF_ASYMMETRIC_SIGNATURE_SIZE + UDIF_CRYPTO_HASH_SIZE)


#define UDIF_SUITEID_SIZE 1U


#define UDIF_TIME_WINDOW_SECONDS 60U


#define UDIF_VALID_TIME_SIZE 8U


#define UDIF_VALID_TIME_STRUCTURE_SIZE 16U


/* UDIF Enumerations */


UDIF_EXPORT_API typedef enum udif_claim_type

{

    udif_claim_unknown = 0U,

    udif_claim_commodity_id = 1U,

    udif_claim_biometric_hash = 2U,

    udif_claim_institution_id = 3U,

    udif_claim_public_key = 4U,

    udif_claim_age_over = 5U,

    udif_claim_citizenship = 6U,

    udif_claim_residency = 7U,

    udif_claim_membership_id = 8U,

    udif_claim_contact_email = 9U,

    udif_claim_contact_phone = 10U,

    udif_claim_address = 11U,

    udif_claim_custom = 12U

} udif_claim_type;


UDIF_EXPORT_API typedef enum udif_configuration_sets

{

    udif_configuration_set_none = 0x00U,

    udif_configuration_set_dilithium1_kyber1_rcs256_shake256 = 0x01U,

    udif_configuration_set_dilithium3_kyber3_rcs256_shake256 = 0x02U,

    udif_configuration_set_dilithium5_kyber5_rcs256_shake256 = 0x03U,

    udif_configuration_set_dilithium5_kyber6_rcs512_shake256 = 0x04U,

    udif_configuration_set_sphincsplus1_mceliece1_rcs256_shake256 = 0x05U,

    udif_configuration_set_sphincsplus3_mceliece3_rcs256_shake256 = 0x06U,

    udif_configuration_set_sphincsplus5_mceliece5_rcs256_shake256 = 0x07U,

    udif_configuration_set_sphincsplus5_mceliece6_rcs256_shake256 = 0x08U,

    udif_configuration_set_sphincsplus5_mceliece7_rcs256_shake256 = 0x09U,

} udif_configuration_sets;


#if defined(UDIF_PARAMATERS_DILITHIUM_KYBER_D1K1)

static const char UDIF_CONFIG_STRING[UDIF_PROTOCOL_SET_SIZE] = "dilithium-s1_kyber-s1_rcs-256_sha3-256";

static const udif_configuration_sets UDIF_CONFIGURATION_SET = udif_configuration_set_dilithium1_kyber1_rcs256_shake256;

#elif defined(UDIF_PARAMATERS_DILITHIUM_KYBER_D3K3)

static const char UDIF_CONFIG_STRING[UDIF_PROTOCOL_SET_SIZE] = "dilithium-s3_kyber-s3_rcs-256_sha3-256";

static const udif_configuration_sets UDIF_CONFIGURATION_SET = udif_configuration_set_dilithium3_kyber3_rcs256_shake256;

#elif defined(UDIF_PARAMATERS_DILITHIUM_KYBER_D5K5)

static const char UDIF_CONFIG_STRING[UDIF_PROTOCOL_SET_SIZE] = "dilithium-s5_kyber-s5_rcs-256_sha3-256";

static const udif_configuration_sets UDIF_CONFIGURATION_SET = udif_configuration_set_dilithium5_kyber5_rcs256_shake256;

#elif defined(UDIF_PARAMATERS_DILITHIUM_KYBER_D5K6)

static const char UDIF_CONFIG_STRING[UDIF_PROTOCOL_SET_SIZE] = "dilithium-s5_kyber-s6_rcs-512_sha3-512";

static const udif_configuration_sets UDIF_CONFIGURATION_SET = udif_configuration_set_dilithium5_kyber6_rcs512_shake256;

#elif defined(UDIF_PARAMATERS_SPHINCSPLUS_S1S128SHAKERS)

static const char UDIF_CONFIG_STRING[UDIF_PROTOCOL_SET_SIZE] = "sphincs-s1_mceliece-s1_rcs-256_sha3-256";

static const udif_configuration_sets UDIF_CONFIGURATION_SET = udif_configuration_set_sphincsplus1_mceliece1_rcs256_shake256;

#elif defined(UDIF_PARAMATERS_SPHINCSPLUS_S3S192SHAKERS)

static const char UDIF_CONFIG_STRING[UDIF_PROTOCOL_SET_SIZE] = "sphincs-s3_mceliece-s3_rcs-256_sha3-256";

static const udif_configuration_sets UDIF_CONFIGURATION_SET = udif_configuration_set_sphincsplus3_mceliece3_rcs256_shake256;

#elif defined(UDIF_PARAMATERS_SPHINCSPLUS_S5S256SHAKERS)

static const char UDIF_CONFIG_STRING[UDIF_PROTOCOL_SET_SIZE] = "sphincs-s5_mceliece-s5_rcs-256_sha3-256";

static const udif_configuration_sets UDIF_CONFIGURATION_SET = udif_configuration_set_sphincsplus5_mceliece5_rcs256_shake256;

#elif defined(UDIF_PARAMATERS_SPHINCSPLUS_S6S256SHAKERS)

static const char UDIF_CONFIG_STRING[UDIF_PROTOCOL_SET_SIZE] = "sphincs-s5_mceliece-s6_rcs-256_sha3-256";

static const udif_configuration_sets UDIF_CONFIGURATION_SET = udif_configuration_set_sphincsplus5_mceliece6_rcs256_shake256;

#elif defined(UDIF_PARAMATERS_SPHINCSPLUS_S7S256SHAKERS)

static const char UDIF_CONFIG_STRING[UDIF_PROTOCOL_SET_SIZE] = "sphincs-s5_mceliece-s7_rcs-256_sha3-256";

static const udif_configuration_sets UDIF_CONFIGURATION_SET = udif_configuration_set_sphincsplus5_mceliece7_rcs256_shake256;

#else

#   error Invalid parameter set!

#endif


UDIF_EXPORT_API typedef enum udif_errors

{

    udif_error_none = 0U,

    udif_error_invalid_input = 1U,

    udif_error_invalid_state = 2U,

    udif_error_auth_failure = 3U,

    udif_error_certificate_expired = 4U,

    udif_error_certificate_revoked = 5U,

    udif_error_capability_revoked = 6U,

    udif_error_invalid_sequence = 7U,

    udif_error_time_window = 8U,

    udif_error_epoch_mismatch = 9U,

    udif_error_suite_mismatch = 10U,

    udif_error_decode_failure = 11U,

    udif_error_encode_failure = 12U,

    udif_error_signature_invalid = 13U,

    udif_error_mac_invalid = 14U,

    udif_error_not_authorized = 15U,

    udif_error_object_not_found = 16U,

    udif_error_registry_full = 17U,

    udif_error_logging_failure = 18U,

    udif_error_anchor_invalid = 19U,

    udif_error_treaty_invalid = 20U,

    udif_error_invalid_request = 21U,

    udif_error_internal = 22U,

    udif_error_file_create_failed = 23U,

    udif_error_file_not_found = 24U,

    udif_error_invalid_parameter = 25U

} udif_errors;


UDIF_EXPORT_API typedef enum udif_error_capability

{

    udif_ecap_none = 0U,

    udif_ecap_denied = 1U,

    udif_ecap_mask_empty = 2U,

    udif_ecap_mask_conflict = 3U

} udif_error_capability;


UDIF_EXPORT_API typedef enum udif_error_claims

{

    udif_ecl_none = 0U,

    udif_ecl_type_unknown = 1U,

    udif_ecl_encoding_bad = 2U,

    udif_ecl_canonical_fail = 3U,

    udif_ecl_anchor_bad = 4U,

    udif_ecl_value_invalid = 5U

} udif_error_claims;


UDIF_EXPORT_API typedef enum udif_error_encoding

{

    udif_eenc_none = 0U,

    udif_eenc_overflow = 1U,

    udif_eenc_underflow = 2U,

    udif_eenc_format = 3U,

    udif_eenc_unsupported = 4U

} udif_error_encoding;


UDIF_EXPORT_API typedef enum udif_error_identity

{

    udif_eid_none = 0U,

    udif_eid_namespace_bad = 1U,

    udif_eid_issuer_bad = 2U,

    udif_eid_subject_bad = 3U,

    udif_eid_mask_invalid = 4U,

    udif_eid_anchor_mismatch = 5U,

    udif_eid_sig_invalid = 6U,

    udif_eid_expired = 7U,

    udif_eid_future = 8U

} udif_error_identity;


UDIF_EXPORT_API typedef enum udif_error_policy

{

    udif_epol_none = 0U,

    udif_epol_not_found = 1U,

    udif_epol_hash_mismatch = 2U,

    udif_epol_indeterminate = 3U

} udif_error_policy;


UDIF_EXPORT_API typedef enum udif_logging_event_codes

{

    udif_event_enroll = 1U,

    udif_event_suspend = 2U,

    udif_event_resume = 3U,

    udif_event_revoke = 4U,

    udif_event_capability_grant = 5U,

    udif_event_capability_revoke = 6U,

    udif_event_registry_commit = 7U,

    udif_event_branch_create = 8U,

    udif_event_branch_suspend = 9U,

    udif_event_branch_revoke = 10U,

    udif_event_object_create = 11U,

    udif_event_object_transfer = 12U,

    udif_event_object_update = 13U,

    udif_event_object_destroy = 14U

} udif_logging_event_codes;


UDIF_EXPORT_API typedef enum udif_permission_class

{

    udif_perm_read_claims = 0U,

    udif_perm_write_claims = 1U,

    udif_perm_read_certs = 2U,

    udif_perm_write_certs = 3U,

    udif_perm_manage_policy = 4U,

    udif_perm_manage_caps = 5U,

    udif_perm_delegate = 6U,

    udif_perm_export_identity = 7U,

    udif_perm_import_identity = 8U

} udif_permission_class;


UDIF_EXPORT_API typedef enum udif_policy_decision

{

    udif_policy_permit = 0U,

    udif_policy_deny = 1U,

    udif_policy_indeterminate = 2U,

    udif_policy_not_applicable = 3U

} udif_policy_decision;


UDIF_EXPORT_API typedef enum udif_roles

{

    udif_role_none = 0U,

    udif_role_root = 1U,

    udif_role_udc = 2U,

    udif_role_uip = 3U,

    udif_role_uis = 4U,

    udif_role_client = 5U,

    udif_role_audit = 6U,

    udif_role_revoked = 7U,

    udif_role_any = 8U,

} udif_roles;


UDIF_EXPORT_API typedef enum udif_time_validation

{

    udif_time_valid = 0U,

    udif_time_future = 1U,

    udif_time_expired = 2U,

    udif_time_skew_exceeds = 3U

} udif_time_validation;


UDIF_EXPORT_API typedef enum udif_token_type

{

    udif_token_none = 0U,

    udif_token_capability = 1U,

    udif_token_attestation = 2U,

    udif_token_session = 3U

} udif_token_type;


UDIF_EXPORT_API typedef enum udif_status

{

    udif_status_success = 0U,

    udif_status_invalid_argument = 1U,

    udif_status_not_found = 2U,

    udif_status_already_exists = 3U,

    udif_status_out_of_memory = 4U,

    udif_status_buffer_too_small = 5U,

    udif_status_not_supported = 6U,

    udif_status_internal_error = 7U

} udif_status;


UDIF_EXPORT_API typedef enum udif_verify_policy

{

    udif_verify_strict = 0U,

    udif_verify_lenient = 1U

} udif_verify_policy;


UDIF_EXPORT_API typedef enum udif_version_sets

{

    udif_version_set_none = 0x00U,

    udif_version_set_one_zero = 0x01U,

} udif_version_sets;


#define UDIF_VERSION_STRING "UDIF:1.0a"


#define UDIF_SUITE_STRING "UDIF:RCS256-KMAC256-MLKEM5-MLDSA5"


/* Domain Separation Labels */


#define UDIF_LABEL_MAX_SIZE 64U


/* Domain separation label constants */

#define UDIF_LABEL_OBJ_DIGEST    "UDIF:OBJ-DIGEST:V1"

#define UDIF_LABEL_REGROOT       "UDIF:REGROOT:V1"

#define UDIF_LABEL_TXID          "UDIF:TXID:V1"

#define UDIF_LABEL_ANCHOR        "UDIF:ANCHOR:V1"

#define UDIF_LABEL_CAP_DIGEST    "UDIF:CAP-DIGEST:V1"

#define UDIF_LABEL_SESS_KDF      "UDIF:SESS-KDF:V1"

#define UDIF_LABEL_RATCHET       "UDIF:RATCHET:V1"

#define UDIF_LABEL_CERT_DIGEST   "UDIF:CERT-DIGEST:V1"

#define UDIF_LABEL_ROOT_DIGEST   "UDIF:ROOT-DIGEST:V1"


/* Role/Designation Strings */


#define UDIF_ERROR_STRING_DEPTH 26U


#define UDIF_ERROR_STRING_SIZE 128U


/* Protocol errors*/


static const char UDIF_ERROR_STRINGS[UDIF_ERROR_STRING_DEPTH][UDIF_ERROR_STRING_SIZE] =

{

    "No error condition",

    "Invalid input parameter",

    "Invalid function state"

    "Authentication failed",

    "The certificate expired",

    "The certificate has been revoked",

    "The capability has been revoked",

    "Invalid sequence number",

    "The time window has been exceeded",

    "Epoch time mismatch",

    "Protocol suite mismatch",

    "Decoding failure",

    "Encoding failure",

    "Invalid signature",

    "Invalid MAC",

    "Not authorized",

    "Object not found",

    "Registry full",

    "Log operation failed",

    "Invalid anchor record",

    "Invalid treaty",

    "Invalid request",

    "Internal error",

    "File creation failed",

    "File not found",

    "Invalid parameter",

    "Unknown error type"

};


/* Certificate errors */

static const char UDIF_CERTIFICATE_ERROR_STRINGS[][UDIF_ERROR_STRING_SIZE] =

{

    "No error",

    "Unknown certificate type",

    "Bad or unknown serial number",

    "Invalid certificate chain",

    "Signature invalid",

    "Certificate expired",

    "Certificate not yet valid",

    "Policy hash mismatch",

    "Certificate revoked"

};


/* Claims errors */

static const char UDIF_CLAIMS_ERROR_STRINGS[][UDIF_ERROR_STRING_SIZE] =

{

    "No error",

    "Unknown claim type",

    "Invalid encoding",

    "Canonicalization failed",

    "Anchor mismatch",

    "Invalid claim value"

};


/* Encoding errors */

static const char UDIF_ENCODING_ERROR_STRINGS[][UDIF_ERROR_STRING_SIZE] =

{

    "No error",

    "Buffer overflow",

    "Buffer underflow",

    "Bad format/version",

    "Unsupported encoding"

};


/* Identity errors */

static const char UDIF_IDENTITY_ERROR_STRINGS[][UDIF_ERROR_STRING_SIZE] =

{

    "No error",

    "Invalid namespace code",

    "Invalid issuer domain code",

    "Invalid subject identifier",

    "Capability/permission mask invalid",

    "Claim anchor mismatch",

    "Signature verification failed",

    "Identity expired",

    "Identity not yet valid"

};


/* Policy errors */

static const char UDIF_POLICY_ERROR_STRINGS[][UDIF_ERROR_STRING_SIZE] =

{

    "No error",

    "Policy not found",

    "Policy hash mismatch",

    "Policy evaluation indeterminate"

};


#define UDIF_ROLE_STRING_SIZE 32U


static const char UDIF_ROLE_STRINGS[][UDIF_ROLE_STRING_SIZE] =

{

    "udif_role_none",

    "udif_role_udc",

    "udif_role_uip",

    "udif_role_uis",

    "udif_role_client",

    "udif_role_audit",

    "udif_role_revoked",

    "udif_role_any"

};


/* UDIF Structures */


UDIF_EXPORT_API typedef struct udif_capability_mask

{

    uint8_t bits[UDIF_CAPABILITY_MASK_SIZE];

} udif_capability_mask;


UDIF_EXPORT_API typedef struct udif_claim

{

    udif_claim_type type;

    const uint8_t* value;

    uint32_t length;

} udif_claim;


UDIF_EXPORT_API typedef struct udif_claim_anchor

{

    uint8_t bytes[UDIF_CLAIM_ANCHOR_SIZE];

} udif_claim_anchor;


UDIF_EXPORT_API typedef struct udif_claim_set

{

    const udif_claim* items;

    uint32_t count;

    udif_claim_anchor anchor;

} udif_claim_set;


UDIF_EXPORT_API typedef struct udif_encoded_blob

{

    uint8_t* bytes;

    uint32_t size;

    uint32_t length;

} udif_encoded_blob;


UDIF_EXPORT_API typedef struct udif_identity_id

{

    uint8_t bytes[UDIF_IDENTITY_ID_SIZE];

} udif_identity_id;


UDIF_EXPORT_API typedef struct udif_issuer_domain_code

{

    uint8_t bytes[UDIF_ISSUER_DOMAIN_CODE_SIZE];

} udif_issuer_domain_code;


UDIF_EXPORT_API typedef struct udif_kem_keypair

{

    uint8_t pubkey[UDIF_ASYMMETRIC_PUBLIC_KEY_SIZE];

    uint8_t prikey[UDIF_ASYMMETRIC_PRIVATE_KEY_SIZE];

} udif_kem_keypair;


UDIF_EXPORT_API typedef struct udif_namespace_code

{

    uint8_t bytes[UDIF_NAMESPACE_CODE_SIZE];

} udif_namespace_code;


UDIF_EXPORT_API typedef struct udif_permission_mask

{

    uint8_t bits[UDIF_PERMISSION_MASK_SIZE];

} udif_permission_mask;


UDIF_EXPORT_API typedef struct udif_policy_hash

{

    uint8_t bytes[UDIF_POLICY_HASH_SIZE];

} udif_policy_hash;


UDIF_EXPORT_API typedef struct udif_signature_keypair

{

    uint8_t sigkey[UDIF_ASYMMETRIC_SIGNING_KEY_SIZE];

    uint8_t verkey[UDIF_ASYMMETRIC_VERIFICATION_KEY_SIZE];

} udif_signature_keypair;


UDIF_EXPORT_API typedef struct udif_time_window

{

    uint64_t before;

    uint64_t after;

} udif_time_window;


UDIF_EXPORT_API typedef struct udif_token_header

{

    udif_token_type ttype;

    udif_namespace_code nspace;

    udif_issuer_domain_code issuer;

    udif_time_window validity;

} udif_token_header;


UDIF_EXPORT_API typedef struct udif_token

{

    uint8_t signature[UDIF_ASYMMETRIC_SIGNATURE_SIZE];

    uint8_t payload[UDIF_CAPABILITY_TOKEN_MAX_SIZE];

    uint8_t chash[UDIF_CRYPTO_HASH_SIZE];

    udif_token_header head;

    udif_identity_id subject;

    udif_capability_mask caps;

    udif_permission_mask perms;

    uint32_t paylen;

} udif_token;


UDIF_EXPORT_API typedef struct udif_valid_time

{

    uint64_t from;

    uint64_t to;

} udif_valid_time;


UDIF_EXPORT_API typedef struct udif_identity_record

{

    udif_namespace_code nspace;

    udif_issuer_domain_code issuer;

    udif_identity_id subject;

    udif_time_window validity;

    udif_permission_mask perms;

    udif_capability_mask caps;

    udif_policy_hash policy;

    udif_claim_anchor anchor;

    uint8_t signature[UDIF_ASYMMETRIC_SIGNATURE_SIZE];

    uint8_t verkey[UDIF_ASYMMETRIC_VERIFICATION_KEY_SIZE];

    uint8_t chash[UDIF_CRYPTO_HASH_SIZE];

} udif_identity_record;


UDIF_EXPORT_API bool udif_suite_is_valid(uint8_t suiteid);


UDIF_EXPORT_API const char* udif_error_to_string(udif_errors error);


#endif

udif_capability_mask
Fixed-size capability bitset (issuer-/role-scoped). Capability bits; bit positions map to udif_capabi...
Definition udif.h:1016

udif_capability_mask::bits
uint8_t bits[UDIF_CAPABILITY_MASK_SIZE]
Definition udif.h:1017

udif_claim_anchor
Anchor (e.g., Merkle root) binding a claim set to an identity. Anchor/merkle root over canonical clai...
Definition udif.h:1037

udif_claim_set
A collection of claims bound to an identity by an anchor.
Definition udif.h:1046

udif_claim_set::items
const udif_claim * items
Definition udif.h:1047

udif_claim_set::count
uint32_t count
Definition udif.h:1048

udif_claim_set::anchor
udif_claim_anchor anchor
Definition udif.h:1049

udif_claim
A typed claim with deterministic canonical encoding.
Definition udif.h:1025

udif_claim::value
const uint8_t * value
Definition udif.h:1027

udif_claim::type
udif_claim_type type
Definition udif.h:1026

udif_claim::length
uint32_t length
Definition udif.h:1028

udif_encoded_blob
Generic encoded object buffer (for decode/encode APIs).
Definition udif.h:1057

udif_encoded_blob::bytes
uint8_t * bytes
Definition udif.h:1058

udif_encoded_blob::size
uint32_t size
Definition udif.h:1059

udif_encoded_blob::length
uint32_t length
Definition udif.h:1060

udif_identity_id
Subject identity identifier (opaque, canonicalized). Subject identifier bytes.
Definition udif.h:1069

udif_identity_id::bytes
uint8_t bytes[UDIF_IDENTITY_ID_SIZE]
Definition udif.h:1070

udif_identity_record
Core identity record bound to a namespace and issuer.
Definition udif.h:1196

udif_identity_record::policy
udif_policy_hash policy
Definition udif.h:1203

udif_identity_record::chash
uint8_t chash[UDIF_CRYPTO_HASH_SIZE]
Definition udif.h:1207

udif_identity_record::perms
udif_permission_mask perms
Definition udif.h:1201

udif_identity_record::nspace
udif_namespace_code nspace
Definition udif.h:1197

udif_identity_record::issuer
udif_issuer_domain_code issuer
Definition udif.h:1198

udif_identity_record::anchor
udif_claim_anchor anchor
Definition udif.h:1204

udif_identity_record::caps
udif_capability_mask caps
Definition udif.h:1202

udif_identity_record::validity
udif_time_window validity
Definition udif.h:1200

udif_identity_record::signature
uint8_t signature[UDIF_ASYMMETRIC_SIGNATURE_SIZE]
Definition udif.h:1205

udif_identity_record::subject
udif_identity_id subject
Definition udif.h:1199

udif_identity_record::verkey
uint8_t verkey[UDIF_ASYMMETRIC_VERIFICATION_KEY_SIZE]
Definition udif.h:1206

udif_issuer_domain_code
Issuer domain/controller identifier. Issuer domain code (ASCII or compact code)
Definition udif.h:1079

udif_issuer_domain_code::bytes
uint8_t bytes[UDIF_ISSUER_DOMAIN_CODE_SIZE]
Definition udif.h:1080

udif_kem_keypair
KEM key pair.
Definition udif.h:1090

udif_kem_keypair::pubkey
uint8_t pubkey[UDIF_ASYMMETRIC_PUBLIC_KEY_SIZE]
Definition udif.h:1091

udif_kem_keypair::prikey
uint8_t prikey[UDIF_ASYMMETRIC_PRIVATE_KEY_SIZE]
Definition udif.h:1092

udif_namespace_code
Namespace partition identifier. Namespace code (ASCII or compact code)
Definition udif.h:1101

udif_namespace_code::bytes
uint8_t bytes[UDIF_NAMESPACE_CODE_SIZE]
Definition udif.h:1102

udif_permission_mask
Fixed-size permission bitset (subject-/resource-scoped). Permission bits; bit positions map to udif_p...
Definition udif.h:1111

udif_permission_mask::bits
uint8_t bits[UDIF_PERMISSION_MASK_SIZE]
Definition udif.h:1112

udif_policy_hash
Policy identifier (hash of canonical policy). SHA3/SHAKE hash of policy document.
Definition udif.h:1121

udif_policy_hash::bytes
uint8_t bytes[UDIF_POLICY_HASH_SIZE]
Definition udif.h:1122

udif_signature_keypair
The UDIF asymmetric signature scheme key container.
Definition udif.h:1130

udif_signature_keypair::sigkey
uint8_t sigkey[UDIF_ASYMMETRIC_SIGNING_KEY_SIZE]
Definition udif.h:1131

udif_signature_keypair::verkey
uint8_t verkey[UDIF_ASYMMETRIC_VERIFICATION_KEY_SIZE]
Definition udif.h:1132

udif_time_window
A validity interval expressed in UTC seconds.
Definition udif.h:1140

udif_time_window::before
uint64_t before
Definition udif.h:1141

udif_time_window::after
uint64_t after
Definition udif.h:1142

udif_token_header
Common header for UDIF tokens (capability/attestation/session).
Definition udif.h:1150

udif_token_header::nspace
udif_namespace_code nspace
Definition udif.h:1152

udif_token_header::issuer
udif_issuer_domain_code issuer
Definition udif.h:1153

udif_token_header::validity
udif_time_window validity
Definition udif.h:1154

udif_token_header::ttype
udif_token_type ttype
Definition udif.h:1151

udif_token
Serialized token container with optional envelope protection.
Definition udif.h:1166

udif_token::chash
uint8_t chash[UDIF_CRYPTO_HASH_SIZE]
Definition udif.h:1169

udif_token::perms
udif_permission_mask perms
Definition udif.h:1173

udif_token::payload
uint8_t payload[UDIF_CAPABILITY_TOKEN_MAX_SIZE]
Definition udif.h:1168

udif_token::paylen
uint32_t paylen
Definition udif.h:1174

udif_token::caps
udif_capability_mask caps
Definition udif.h:1172

udif_token::signature
uint8_t signature[UDIF_ASYMMETRIC_SIGNATURE_SIZE]
Definition udif.h:1167

udif_token::subject
udif_identity_id subject
Definition udif.h:1171

udif_token::head
udif_token_header head
Definition udif.h:1170

udif_valid_time
The certificate expiration time structure.
Definition udif.h:1182

udif_valid_time::to
uint64_t to
Definition udif.h:1184

udif_valid_time::from
uint64_t from
Definition udif.h:1183

udif_roles
udif_roles
UDIF entity roles.
Definition udif.h:781

udif_role_root
@ udif_role_root
Definition udif.h:783

udif_role_udc
@ udif_role_udc
Definition udif.h:784

udif_role_none
@ udif_role_none
Definition udif.h:782

udif_role_client
@ udif_role_client
Definition udif.h:787

udif_role_uis
@ udif_role_uis
Definition udif.h:786

udif_role_uip
@ udif_role_uip
Definition udif.h:785

udif_role_audit
@ udif_role_audit
Definition udif.h:788

udif_role_any
@ udif_role_any
Definition udif.h:790

udif_role_revoked
@ udif_role_revoked
Definition udif.h:789

UDIF_ASYMMETRIC_SIGNING_KEY_SIZE
#define UDIF_ASYMMETRIC_SIGNING_KEY_SIZE
The byte size of the asymmetric signature signing-key array.
Definition udif.h:258

UDIF_POLICY_HASH_SIZE
#define UDIF_POLICY_HASH_SIZE
The size of a policy identifier hash in bytes.
Definition udif.h:495

udif_claim_type
udif_claim_type
Claim type identifiers (deterministic canonicalization required).
Definition udif.h:558

udif_claim_unknown
@ udif_claim_unknown
Definition udif.h:559

udif_claim_custom
@ udif_claim_custom
Definition udif.h:571

udif_claim_citizenship
@ udif_claim_citizenship
Definition udif.h:565

udif_claim_age_over
@ udif_claim_age_over
Definition udif.h:564

udif_claim_address
@ udif_claim_address
Definition udif.h:570

udif_claim_contact_email
@ udif_claim_contact_email
Definition udif.h:568

udif_claim_membership_id
@ udif_claim_membership_id
Definition udif.h:567

udif_claim_contact_phone
@ udif_claim_contact_phone
Definition udif.h:569

udif_claim_commodity_id
@ udif_claim_commodity_id
Definition udif.h:560

udif_claim_residency
@ udif_claim_residency
Definition udif.h:566

udif_claim_biometric_hash
@ udif_claim_biometric_hash
Definition udif.h:561

udif_claim_public_key
@ udif_claim_public_key
Definition udif.h:563

udif_claim_institution_id
@ udif_claim_institution_id
Definition udif.h:562

UDIF_NAMESPACE_CODE_SIZE
#define UDIF_NAMESPACE_CODE_SIZE
The size of a namespace code (short string or numeric).
Definition udif.h:483

udif_error_policy
udif_error_policy
Policy evaluation/lookup errors.
Definition udif.h:718

udif_epol_none
@ udif_epol_none
Definition udif.h:719

udif_epol_not_found
@ udif_epol_not_found
Definition udif.h:720

udif_epol_indeterminate
@ udif_epol_indeterminate
Definition udif.h:722

udif_epol_hash_mismatch
@ udif_epol_hash_mismatch
Definition udif.h:721

udif_logging_event_codes
udif_logging_event_codes
Membership and transaction log event codes.
Definition udif.h:730

udif_event_revoke
@ udif_event_revoke
Definition udif.h:734

udif_event_object_create
@ udif_event_object_create
Definition udif.h:741

udif_event_branch_create
@ udif_event_branch_create
Definition udif.h:738

udif_event_capability_grant
@ udif_event_capability_grant
Definition udif.h:735

udif_event_registry_commit
@ udif_event_registry_commit
Definition udif.h:737

udif_event_suspend
@ udif_event_suspend
Definition udif.h:732

udif_event_resume
@ udif_event_resume
Definition udif.h:733

udif_event_branch_suspend
@ udif_event_branch_suspend
Definition udif.h:739

udif_event_enroll
@ udif_event_enroll
Definition udif.h:731

udif_event_branch_revoke
@ udif_event_branch_revoke
Definition udif.h:740

udif_event_object_transfer
@ udif_event_object_transfer
Definition udif.h:742

udif_event_capability_revoke
@ udif_event_capability_revoke
Definition udif.h:736

udif_event_object_update
@ udif_event_object_update
Definition udif.h:743

udif_event_object_destroy
@ udif_event_object_destroy
Definition udif.h:744

udif_error_identity
udif_error_identity
Identity-specific error codes.
Definition udif.h:701

udif_eid_mask_invalid
@ udif_eid_mask_invalid
Definition udif.h:706

udif_eid_expired
@ udif_eid_expired
Definition udif.h:709

udif_eid_subject_bad
@ udif_eid_subject_bad
Definition udif.h:705

udif_eid_issuer_bad
@ udif_eid_issuer_bad
Definition udif.h:704

udif_eid_namespace_bad
@ udif_eid_namespace_bad
Definition udif.h:703

udif_eid_future
@ udif_eid_future
Definition udif.h:710

udif_eid_none
@ udif_eid_none
Definition udif.h:702

udif_eid_sig_invalid
@ udif_eid_sig_invalid
Definition udif.h:708

udif_eid_anchor_mismatch
@ udif_eid_anchor_mismatch
Definition udif.h:707

UDIF_ISSUER_DOMAIN_CODE_SIZE
#define UDIF_ISSUER_DOMAIN_CODE_SIZE
The size of an issuer domain code (unique identifier).
Definition udif.h:477

UDIF_IDENTITY_ID_SIZE
#define UDIF_IDENTITY_ID_SIZE
The size of a subject identity identifier in bytes.
Definition udif.h:471

UDIF_ASYMMETRIC_PRIVATE_KEY_SIZE
#define UDIF_ASYMMETRIC_PRIVATE_KEY_SIZE
The byte size of the asymmetric cipher private-key array.
Definition udif.h:240

UDIF_CLAIM_ANCHOR_SIZE
#define UDIF_CLAIM_ANCHOR_SIZE
The size of a claim anchor or merkle root in bytes.
Definition udif.h:433

udif_token_type
udif_token_type
Token families issued/validated within UDIF.
Definition udif.h:810

udif_token_session
@ udif_token_session
Definition udif.h:814

udif_token_attestation
@ udif_token_attestation
Definition udif.h:813

udif_token_none
@ udif_token_none
Definition udif.h:811

udif_token_capability
@ udif_token_capability
Definition udif.h:812

udif_error_encoding
udif_error_encoding
Encoding/decoding errors for UDIF objects.
Definition udif.h:688

udif_eenc_none
@ udif_eenc_none
Definition udif.h:689

udif_eenc_overflow
@ udif_eenc_overflow
Definition udif.h:690

udif_eenc_format
@ udif_eenc_format
Definition udif.h:692

udif_eenc_underflow
@ udif_eenc_underflow
Definition udif.h:691

udif_eenc_unsupported
@ udif_eenc_unsupported
Definition udif.h:693

UDIF_PROTOCOL_SET_SIZE
#define UDIF_PROTOCOL_SET_SIZE
The size of the protocol configuration string.
Definition udif.h:507

UDIF_CAPABILITY_MASK_SIZE
#define UDIF_CAPABILITY_MASK_SIZE
The size of a capability mask in hex characters.
Definition udif.h:421

udif_verify_policy
udif_verify_policy
Verification strictness for identity/cert/claim checks.
Definition udif.h:838

udif_verify_lenient
@ udif_verify_lenient
Definition udif.h:840

udif_verify_strict
@ udif_verify_strict
Definition udif.h:839

UDIF_CAPABILITY_TOKEN_MAX_SIZE
#define UDIF_CAPABILITY_TOKEN_MAX_SIZE
The maximum size of a serialized capability token.
Definition udif.h:427

udif_permission_class
udif_permission_class
Permission classes whose bits populate the permission mask.
Definition udif.h:752

udif_perm_export_identity
@ udif_perm_export_identity
Definition udif.h:760

udif_perm_write_claims
@ udif_perm_write_claims
Definition udif.h:754

udif_perm_import_identity
@ udif_perm_import_identity
Definition udif.h:761

udif_perm_delegate
@ udif_perm_delegate
Definition udif.h:759

udif_perm_read_claims
@ udif_perm_read_claims
Definition udif.h:753

udif_perm_manage_caps
@ udif_perm_manage_caps
Definition udif.h:758

udif_perm_read_certs
@ udif_perm_read_certs
Definition udif.h:755

udif_perm_write_certs
@ udif_perm_write_certs
Definition udif.h:756

udif_perm_manage_policy
@ udif_perm_manage_policy
Definition udif.h:757

udif_time_validation
udif_time_validation
Results of time/validity-window checks.
Definition udif.h:798

udif_time_skew_exceeds
@ udif_time_skew_exceeds
Definition udif.h:802

udif_time_valid
@ udif_time_valid
Definition udif.h:799

udif_time_expired
@ udif_time_expired
Definition udif.h:801

udif_time_future
@ udif_time_future
Definition udif.h:800

udif_policy_decision
udif_policy_decision
Policy evaluation outcome.
Definition udif.h:769

udif_policy_permit
@ udif_policy_permit
Definition udif.h:770

udif_policy_deny
@ udif_policy_deny
Definition udif.h:771

udif_policy_not_applicable
@ udif_policy_not_applicable
Definition udif.h:773

udif_policy_indeterminate
@ udif_policy_indeterminate
Definition udif.h:772

udif_status
udif_status
Generic status codes for UDIF operations.
Definition udif.h:822

udif_status_internal_error
@ udif_status_internal_error
Definition udif.h:830

udif_status_out_of_memory
@ udif_status_out_of_memory
Definition udif.h:827

udif_status_not_found
@ udif_status_not_found
Definition udif.h:825

udif_status_invalid_argument
@ udif_status_invalid_argument
Definition udif.h:824

udif_status_buffer_too_small
@ udif_status_buffer_too_small
Definition udif.h:828

udif_status_already_exists
@ udif_status_already_exists
Definition udif.h:826

udif_status_not_supported
@ udif_status_not_supported
Definition udif.h:829

udif_status_success
@ udif_status_success
Definition udif.h:823

UDIF_ASYMMETRIC_SIGNATURE_SIZE
#define UDIF_ASYMMETRIC_SIGNATURE_SIZE
The byte size of the asymmetric signature array.
Definition udif.h:252

UDIF_CRYPTO_HASH_SIZE
#define UDIF_CRYPTO_HASH_SIZE
The size of the certificate hash in bytes.
Definition udif.h:439

UDIF_ASYMMETRIC_PUBLIC_KEY_SIZE
#define UDIF_ASYMMETRIC_PUBLIC_KEY_SIZE
The byte size of the asymmetric cipher public-key array.
Definition udif.h:246

udif_configuration_sets
udif_configuration_sets
The UDIF algorithm configuration sets.
Definition udif.h:579

udif_configuration_set_none
@ udif_configuration_set_none
Definition udif.h:580

udif_configuration_set_sphincsplus5_mceliece7_rcs256_shake256
@ udif_configuration_set_sphincsplus5_mceliece7_rcs256_shake256
Definition udif.h:589

udif_configuration_set_sphincsplus5_mceliece6_rcs256_shake256
@ udif_configuration_set_sphincsplus5_mceliece6_rcs256_shake256
Definition udif.h:588

udif_configuration_set_dilithium1_kyber1_rcs256_shake256
@ udif_configuration_set_dilithium1_kyber1_rcs256_shake256
Definition udif.h:581

udif_configuration_set_dilithium5_kyber5_rcs256_shake256
@ udif_configuration_set_dilithium5_kyber5_rcs256_shake256
Definition udif.h:583

udif_configuration_set_dilithium5_kyber6_rcs512_shake256
@ udif_configuration_set_dilithium5_kyber6_rcs512_shake256
Definition udif.h:584

udif_configuration_set_dilithium3_kyber3_rcs256_shake256
@ udif_configuration_set_dilithium3_kyber3_rcs256_shake256
Definition udif.h:582

udif_configuration_set_sphincsplus3_mceliece3_rcs256_shake256
@ udif_configuration_set_sphincsplus3_mceliece3_rcs256_shake256
Definition udif.h:586

udif_configuration_set_sphincsplus1_mceliece1_rcs256_shake256
@ udif_configuration_set_sphincsplus1_mceliece1_rcs256_shake256
Definition udif.h:585

udif_configuration_set_sphincsplus5_mceliece5_rcs256_shake256
@ udif_configuration_set_sphincsplus5_mceliece5_rcs256_shake256
Definition udif.h:587

UDIF_ASYMMETRIC_VERIFICATION_KEY_SIZE
#define UDIF_ASYMMETRIC_VERIFICATION_KEY_SIZE
The byte size of the asymmetric signature verification-key array.
Definition udif.h:264

udif_suite_is_valid
UDIF_EXPORT_API bool udif_suite_is_valid(uint8_t suiteid)
Check if the suite id valid.
Definition udif.c:7

udif_errors
udif_errors
UDIF error codes.
Definition udif.h:628

udif_error_suite_mismatch
@ udif_error_suite_mismatch
Definition udif.h:639

udif_error_auth_failure
@ udif_error_auth_failure
Definition udif.h:632

udif_error_certificate_expired
@ udif_error_certificate_expired
Definition udif.h:633

udif_error_file_create_failed
@ udif_error_file_create_failed
Definition udif.h:652

udif_error_epoch_mismatch
@ udif_error_epoch_mismatch
Definition udif.h:638

udif_error_registry_full
@ udif_error_registry_full
Definition udif.h:646

udif_error_invalid_input
@ udif_error_invalid_input
Definition udif.h:630

udif_error_invalid_request
@ udif_error_invalid_request
Definition udif.h:650

udif_error_encode_failure
@ udif_error_encode_failure
Definition udif.h:641

udif_error_internal
@ udif_error_internal
Definition udif.h:651

udif_error_not_authorized
@ udif_error_not_authorized
Definition udif.h:644

udif_error_anchor_invalid
@ udif_error_anchor_invalid
Definition udif.h:648

udif_error_capability_revoked
@ udif_error_capability_revoked
Definition udif.h:635

udif_error_mac_invalid
@ udif_error_mac_invalid
Definition udif.h:643

udif_error_time_window
@ udif_error_time_window
Definition udif.h:637

udif_error_invalid_state
@ udif_error_invalid_state
Definition udif.h:631

udif_error_treaty_invalid
@ udif_error_treaty_invalid
Definition udif.h:649

udif_error_decode_failure
@ udif_error_decode_failure
Definition udif.h:640

udif_error_invalid_sequence
@ udif_error_invalid_sequence
Definition udif.h:636

udif_error_file_not_found
@ udif_error_file_not_found
Definition udif.h:653

udif_error_signature_invalid
@ udif_error_signature_invalid
Definition udif.h:642

udif_error_certificate_revoked
@ udif_error_certificate_revoked
Definition udif.h:634

udif_error_invalid_parameter
@ udif_error_invalid_parameter
Definition udif.h:654

udif_error_object_not_found
@ udif_error_object_not_found
Definition udif.h:645

udif_error_none
@ udif_error_none
Definition udif.h:629

udif_error_logging_failure
@ udif_error_logging_failure
Definition udif.h:647

UDIF_PERMISSION_MASK_SIZE
#define UDIF_PERMISSION_MASK_SIZE
The size of a permission mask in bytes.
Definition udif.h:489

udif_error_capability
udif_error_capability
Capability/permission evaluation errors.
Definition udif.h:662

udif_ecap_denied
@ udif_ecap_denied
Definition udif.h:664

udif_ecap_mask_conflict
@ udif_ecap_mask_conflict
Definition udif.h:666

udif_ecap_mask_empty
@ udif_ecap_mask_empty
Definition udif.h:665

udif_ecap_none
@ udif_ecap_none
Definition udif.h:663

udif_error_claims
udif_error_claims
Claim/claim-set error codes.
Definition udif.h:674

udif_ecl_value_invalid
@ udif_ecl_value_invalid
Definition udif.h:680

udif_ecl_canonical_fail
@ udif_ecl_canonical_fail
Definition udif.h:678

udif_ecl_anchor_bad
@ udif_ecl_anchor_bad
Definition udif.h:679

udif_ecl_none
@ udif_ecl_none
Definition udif.h:675

udif_ecl_encoding_bad
@ udif_ecl_encoding_bad
Definition udif.h:677

udif_ecl_type_unknown
@ udif_ecl_type_unknown
Definition udif.h:676

udif_error_to_string
UDIF_EXPORT_API const char * udif_error_to_string(udif_errors error)
Convert an error to a string.
Definition udif.c:12

udif_version_sets
udif_version_sets
The UDIF version sets.
Definition udif.h:848

udif_version_set_none
@ udif_version_set_none
Definition udif.h:849

udif_version_set_one_zero
@ udif_version_set_one_zero
Definition udif.h:850

udifcommon.h
UDIF common definitions and constants.

UDIF_EXPORT_API
#define UDIF_EXPORT_API
The api export prefix.
Definition udifcommon.h:103