Tony Arcieri
0a100acdd2
Rename container module to mscmap
...
Better reflects what it actually is.
2019-12-08 10:01:00 -08:00
Tony Arcieri
39a81fc300
Merge pull request #67 from iqlusioninc/eliminate-consts-module
...
Finish eliminating `consts` module
2019-12-08 09:43:11 -08:00
Tony Arcieri
31efd4e78c
Finish eliminating consts module
...
Either moves constants into their relevant modules, or puts the
remaining ones into `lib.rs`
2019-12-08 09:32:57 -08:00
Tony Arcieri
86b8c6a6db
Merge pull request #66 from iqlusioninc/tame-consts
...
consts: Whittle down to the essentials
2019-12-08 08:51:51 -08:00
Tony Arcieri
104020d518
consts: Whittle down to the essentials
...
This factors the junk drawer of constants into the relevant files.
There are still a few "global" ones left but they can be addressed in a
followup commit.
2019-12-08 08:39:21 -08:00
Tony Arcieri
4dfac56753
Merge pull request #65 from iqlusioninc/cccid-chuid-tests-and-cleanups
...
CCCID/CHUID tests and cleanups
2019-12-07 13:33:28 -08:00
Tony Arcieri
9482ae62ab
CCCID/CHUID: add basic tests and do some cleanups
...
- Adds tests for CCCID/CHUID, allowing not found (is that ok?)
- Move constants under their respective modules and remove `YKPIV_`
2019-12-07 13:09:38 -08:00
Tony Arcieri
2587a4ac1e
CCCID/CHUID refactoring
...
- Move generate methods to the appropriate static types
- Remove redundant name prefixes (Rust [RFC#356])
[RFC#356]: https://github.com/rust-lang/rfcs/pull/356
2019-12-07 12:39:52 -08:00
Tony Arcieri
3cf3c0867f
Merge pull request #49 from carl-wallace/develop
...
change ccid handling to target entire CCC object
2019-12-07 12:10:44 -08:00
Tony Arcieri
b2f11f5058
Merge pull request #64 from iqlusioninc/config-tests
...
Test `Config::get`
2019-12-07 12:10:24 -08:00
Tony Arcieri
cdecfd92dd
Test Config::get
...
Tests reading configuration from a live device:
Config { protected_data_available: false, puk_blocked: false, puk_noblock_on_upgrade: false, pin_last_changed: 0, mgm_type: Manual }
2019-12-07 11:47:07 -08:00
Tony Arcieri
509c438330
Merge pull request #63 from iqlusioninc/drop-neo-support
...
Drop YubiKey NEO support (closes #18 )
2019-12-07 11:32:10 -08:00
Tony Arcieri
f6915ce5df
Drop YubiKey NEO support ( closes #18 )
...
YubiKey NEOs are legacy YubiKey devices, most of which contain
unpatchable security vulnerabilities.
They have smaller buffer sizes than YK4 and YK5, which necessitates a
whole bunch of conditional gating and buffer size calculations.
Getting rid of them simplifies this logic and allows us to assume
consistent buffer sizes everywhere.
We never tested on NEOs anyway, and looking at the deleted code it seems
it may have been miscalculating the NEO's buffer size!
If someone *really* wants to support NEOs, it shouldn't be that hard to
restore, but the codebase is definitely cleaner without it.
2019-12-07 11:22:51 -08:00
Tony Arcieri
962089dbf8
Merge pull request #62 from iqlusioninc/keys/move-import-and-attest
...
Move `import` and `attest` to the `key` module
2019-12-07 10:47:44 -08:00
Tony Arcieri
d6cd0130d3
Move sign/decrypt/import/attest to the key module
...
These are crypto key-related functions and are better factored under
this module.
2019-12-07 10:39:02 -08:00
Tony Arcieri
7d01dba11d
Merge pull request #61 from iqlusioninc/test-listing-keys
...
Test `Key::list`
2019-12-07 10:19:43 -08:00
Tony Arcieri
d1d384d304
Test Key::list
...
Adds a live-against-the-device test which ensures keys can be
successfully listed.
2019-12-07 10:09:56 -08:00
Tony Arcieri
cb9d5221b2
Merge pull request #60 from iqlusioninc/test-verify-pin
...
Test YubiKey::verify_pin (--ignored)
2019-12-07 08:52:09 -08:00
Tony Arcieri
c30cf5b83a
Test YubiKey::verify_pin (--ignored)
...
Adds an off-by-default test that the `YubiKey::verify_pin` function
works, and removes it from `untested` gating.
2019-12-07 08:44:12 -08:00
Tony Arcieri
3c88f1be13
Merge pull request #59 from str4d/elliptic-curve
...
Switch to elliptic-curve crate
2019-12-07 08:03:07 -08:00
Jack Grigg
0551263286
Switch to elliptic-curve crate
2019-12-07 15:47:24 +00:00
Tony Arcieri
63fbc1dcf2
Merge pull request #50 from str4d/key-generation
...
Key generation prep
2019-12-04 08:03:39 -08:00
Carl Wallace
82c2d08aec
Merge remote-tracking branch 'upstream/develop' into develop
2019-12-03 15:12:22 -05:00
Tony Arcieri
f25e14c52c
Merge pull request #58 from iqlusioninc/readme/fix-license-image
...
README.md: Fix license image
2019-12-03 11:24:42 -08:00
Tony Arcieri
b1e8702059
README.md: Fix license image
2019-12-03 11:13:00 -08:00
Tony Arcieri
f4f7041626
Merge pull request #57 from iqlusioninc/dependabot/cargo/zeroize-1.1.0
...
Bump zeroize from 1.0.0 to 1.1.0
2019-12-03 06:45:13 -08:00
dependabot-preview[bot]
d6ad70f7d1
Bump zeroize from 1.0.0 to 1.1.0
...
Bumps [zeroize](https://github.com/iqlusioninc/crates ) from 1.0.0 to 1.1.0.
- [Release notes](https://github.com/iqlusioninc/crates/releases )
- [Commits](https://github.com/iqlusioninc/crates/compare/zeroize/v1.0.0...zeroize/v1.1.0 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com >
2019-12-03 13:51:52 +00:00
Jack Grigg
76c093e68e
Minor cleanups
2019-12-03 03:24:10 +00:00
Jack Grigg
ada3454d26
Fix bug in MgmKey::decrypt
2019-12-03 03:24:09 +00:00
Jack Grigg
370a90f800
Correctly return StatusWords from transfer_data
2019-12-03 03:24:07 +00:00
Jack Grigg
7bcd8664a4
AlgorithmId::write helper to match policy helpers
2019-12-03 03:24:06 +00:00
Jack Grigg
3a4515d902
Convert PIN and touch policies into enums
2019-12-03 03:23:59 +00:00
Tony Arcieri
7b70ea0f91
Merge pull request #56 from iqlusioninc/cli/fix-readme-badge
...
cli: fix build badge
2019-12-02 12:31:30 -08:00
Tony Arcieri
9bc28f4f75
cli: fix build badge
2019-12-02 12:18:44 -08:00
Tony Arcieri
140016bbd7
Merge pull request #54 from iqlusioninc/yubikey-cli/v0.0.1
...
yubikey-cli v0.0.1
2019-12-02 12:08:13 -08:00
Tony Arcieri
3a41fdc3bc
yubikey-cli v0.0.1
yubikey-cli/v0.0.1
2019-12-02 11:54:41 -08:00
Tony Arcieri
c377f226e2
Merge pull request #53 from iqlusioninc/yubikey-piv/v0.0.3
...
yubikey-piv v0.0.3
2019-12-02 11:40:43 -08:00
Tony Arcieri
da897b99bb
yubikey-piv v0.0.3
yubikey-piv/v0.0.3
2019-12-02 11:17:10 -08:00
Tony Arcieri
9fa2d1c051
Merge pull request #52 from iqlusioninc/cli
...
cli: Initial `yubikey-cli` utility with `list` command
2019-12-02 11:00:09 -08:00
Tony Arcieri
07f70bccb5
cli: Initial yubikey-cli utility with list command
...
Adds a `yubikey-cli` crate to the workspace, with a `yubikey` binary,
which presently provides a `list` command for listing detected readers.
Dependencies:
- `env_logger`: logging
- `gumdrop`: argument parsing
- `termcolor`: colored terminal output
As this repo now contains a binary, it also checks in `Cargo.lock`.
2019-12-02 10:42:17 -08:00
Tony Arcieri
8e1469cff6
Merge pull request #51 from iqlusioninc/readers
...
readers: Initial `Readers` enumerator for detecting YubiKeys
2019-12-02 10:20:04 -08:00
Tony Arcieri
9ce2ffe938
readers: Use Reader to connect to YubiKey
...
Removes the legacy API inherited from `yubico-piv-tool` and uses
the `reader` module exclusively for selecting and opening the PC/SC
reader.
2019-12-02 10:11:58 -08:00
Tony Arcieri
589ca3de12
readers: Initial Readers enumerator for detecting YubiKeys
...
Adds a `yubikey_piv::Readers` type which opens a PC/SC context and can
enumerate detected PC/SC readers with a slightly more ergonomic API than
what's provided in the upstream crate.
Does not support actually instantiating a `YubiKey` from a `Reader<'_>`
yet, but ideally all connections to YubiKeys should go through this API.
2019-12-02 09:32:42 -08:00
Carl Wallace
a9e0363d09
remove spurious blank lines flagged by fmt
2019-12-01 18:23:32 -05:00
Carl Wallace
bfd728d1ac
remove sha2, which was rendered OBE as print cert info was moved to CLI
2019-12-01 18:22:18 -05:00
Carl Wallace
a110289910
move print cert info to CLI
2019-12-01 18:20:18 -05:00
Carl Wallace
b9d6057d4e
address fmt issues
2019-12-01 15:12:05 -05:00
Carl Wallace
2087e53109
add print cert info method in support of status action a la yubico-piv-tool
2019-12-01 14:59:21 -05:00
Carl Wallace
5f5844ccb4
Merge remote-tracking branch 'upstream/develop' into develop
2019-12-01 14:49:41 -05:00
Tony Arcieri
ae071e706c
Merge pull request #45 from str4d/certificate-parsing
...
Certificate parsing
2019-12-01 11:17:49 -08:00