Commit Graph

400 Commits

Author SHA1 Message Date
Klas Lindfors 7640d34245 use 261 byte buffer for receive 2015-09-28 11:15:30 +02:00
Alessio Di Mauro 17ebced2e6 Mask more one pin change. 2015-09-24 14:20:25 +02:00
Klas Lindfors b952a4a3c5 Output a no if nothing is found on windows/mac check 2015-09-16 16:21:54 +02:00
Klas Lindfors d30f6fc781 unblock-pin shouldn't tell you new puk 2015-09-16 14:32:30 +02:00
Klas Lindfors 147dcb1bfe don't auto-select windows backend on else
less confusing to fall through, also better message for no pcsc library
found
2015-09-16 09:59:35 +02:00
Klas Lindfors 1b8d819cc2 bump versions 2015-09-04 09:22:32 +02:00
Klas Lindfors f511a3730d NEWS for 1.0.2 2015-09-04 09:13:34 +02:00
Klas Lindfors da29e6947c authentication failed is supposed to be 0x63cX not 0x630X
so mask everything but the low 4 bits for remaining tries
2015-08-24 08:28:49 +02:00
Klas Lindfors 81f3b608fd continue looping over the readers if one fails during setup
also continues if a reader fails when selecting (no applet)
2015-08-20 09:25:18 +02:00
Klas Lindfors 89a212c831 Merge pull request #26 from syzzer/query-for-pin
Query for PIN/PUK/mgmt-key if not supplied on command line
2015-08-13 14:35:08 +02:00
Steffan Karger 723fe2f405 Query for PIN/PUK/mgmt-key if not supplied on command line
Do not force a user to specify the PIN/PUK/mgmt-key on the command line.
Instead, query the user to supply them through stdin when required for
the requested operation.  This is both more user friendly and more
secure, since the secrets do not end up in the shell history and/or
visible to shoulder-surfers on the terminal.

Signed-off-by: Steffan Karger <steffan@karger.me>
2015-08-12 23:05:44 +02:00
Klas Lindfors bc6a0d8465 drop BLURB (not used) 2015-08-10 10:42:28 +02:00
Klas Lindfors 23a3fcf684 bump versions 2015-07-10 13:58:27 +02:00
Klas Lindfors a33241ce75 NEWS for 1.0.1 2015-07-10 13:14:05 +02:00
Klas Lindfors 8ece5ed26e drop unused variable
found with clang scan-build
2015-07-09 11:03:11 +02:00
Klas Lindfors fb0c437533 check result from get_length()
found with clang scan-build
2015-07-09 11:01:49 +02:00
Klas Lindfors 3fd716791b avoid copying data to NULL pointer
found by clang scan-build
2015-07-09 10:34:39 +02:00
Klas Lindfors 43ffb65462 don't do memcpy with NULL argument
found with clang scan-build
2015-07-09 10:28:21 +02:00
Klas Lindfors 76e0dd5349 strip away unneeded stuff from the windows openssl build 2015-07-09 10:19:25 +02:00
Klas Lindfors 8a2401b1c7 add openssl to mac build
since the openssl bundled with mac is old and deprecated we build our
own instead
2015-07-09 10:18:57 +02:00
Klas Lindfors fe0fd7b774 let the pkg-config check for openssl check for libcrypto instead
since we only use libcrypto
2015-07-08 14:51:45 +02:00
Klas Lindfors 103930daf9 add Requires.private on libcrypto 2015-07-08 14:50:43 +02:00
Klas Lindfors 306651a308 remove extra \ 2015-07-03 13:28:12 +02:00
Klas Lindfors 0d88b0b38b name include file .adoc instead 2015-07-03 09:52:41 +02:00
Klas Lindfors 5f8605dc7e use asciidoc comments for comments in asciidoc file 2015-07-03 09:42:17 +02:00
Klas Lindfors 3b080dca45 relicense to 2-clause BSD license 2015-07-01 16:34:20 +02:00
Klas Lindfors 671b88c10e add help2adoc processing on release 2015-07-01 13:25:46 +02:00
Klas Lindfors 561bf00c55 add include file for help2adoc 2015-07-01 13:23:22 +02:00
Klas Lindfors 67543021cb bump openssl version for windows build 2015-06-23 14:40:46 +02:00
Klas Lindfors 3b434817c6 bump versions 2015-06-23 14:39:58 +02:00
Klas Lindfors 3669e62bfb NEWS for 1.0.0 2015-06-23 14:38:09 +02:00
Klas Lindfors 7146451463 mark upcoming version as 1.0.0
fixes #22
2015-06-23 14:36:11 +02:00
Klas Lindfors 6b4b3001c4 verify that e is 0x10001 on import
fixes #13
2015-06-23 14:28:44 +02:00
Klas Lindfors 9bd32ff72c drop --repo-token for coveralls 2015-05-25 20:23:33 +02:00
Henrik Stråth 7f0d778e0c Added yubikey-piv-manager to software list 2015-05-25 09:49:38 +02:00
Klas Lindfors 18e057e58c let RSA_public_encrypt() do the PKCS1 padding
noteworthy is that it will do pkcs1 type 2 padding
2015-05-19 15:11:30 +02:00
Klas Lindfors 3d0ff7b969 add a test-decipher command
test-decipher will for rsa do public encrypt on a random string and let
the key decrypt
for ec it will generate a new ec key and do ecdh and confirm it gets the
same answer back
2015-05-19 14:22:26 +02:00
Klas Lindfors 63345d1b3e drop verbose prints from library
for ykpiv_verify() they're in tool as well.
2015-05-18 13:36:14 +02:00
Klas Lindfors 8ce4ab4997 add newline at end of output 2015-05-08 13:49:32 +02:00
Klas Lindfors bf3fcc77fe use a transation while sending and receiving data 2015-05-08 09:57:51 +02:00
Klas Lindfors df018b24b4 add more extensions for certificates in doc 2015-04-09 10:13:30 +02:00
Klas Lindfors 4bd13b7254 mgm-key not needed for change-pin and change-puk 2015-04-07 07:58:17 +02:00
Klas Lindfors c6e0f71133 bump version 2015-03-23 10:28:21 +01:00
Klas Lindfors f44a155714 release 0.1.6 2015-03-23 10:20:11 +01:00
Klas Lindfors a9c8cb9fd3 drop openssl/err.h again 2015-03-20 14:17:51 +01:00
Klas Lindfors 9db6d3d45a replace EVP_MD_CTX_verify() stuff with RSA_verify()/ECDSA_verify()
since the EVP_MD_CTX stuff doesn't seem to exist on osx at all.
2015-03-20 14:04:26 +01:00
Klas Lindfors 8ada864df9 NEWS for 0.1.6 2015-03-20 10:51:40 +01:00
Klas Lindfors f204987941 add a test-signature action
that takes a certificate in and does a signature with the given slot,
then verifying that signature with the given certificate.
2015-03-20 10:04:58 +01:00
Klas Lindfors ef1ee5a6f6 bump openssl version 2015-03-20 09:56:13 +01:00
Klas Lindfors b1cda2ffce add missing }
that's why you should always build before push..
2015-03-19 15:52:20 +01:00