Klas Lindfors
da29e6947c
authentication failed is supposed to be 0x63cX not 0x630X
...
so mask everything but the low 4 bits for remaining tries
2015-08-24 08:28:49 +02:00
Klas Lindfors
81f3b608fd
continue looping over the readers if one fails during setup
...
also continues if a reader fails when selecting (no applet)
2015-08-20 09:25:18 +02:00
Klas Lindfors
89a212c831
Merge pull request #26 from syzzer/query-for-pin
...
Query for PIN/PUK/mgmt-key if not supplied on command line
2015-08-13 14:35:08 +02:00
Steffan Karger
723fe2f405
Query for PIN/PUK/mgmt-key if not supplied on command line
...
Do not force a user to specify the PIN/PUK/mgmt-key on the command line.
Instead, query the user to supply them through stdin when required for
the requested operation. This is both more user friendly and more
secure, since the secrets do not end up in the shell history and/or
visible to shoulder-surfers on the terminal.
Signed-off-by: Steffan Karger <steffan@karger.me >
2015-08-12 23:05:44 +02:00
Klas Lindfors
bc6a0d8465
drop BLURB (not used)
2015-08-10 10:42:28 +02:00
Klas Lindfors
23a3fcf684
bump versions
2015-07-10 13:58:27 +02:00
Klas Lindfors
a33241ce75
NEWS for 1.0.1
2015-07-10 13:14:05 +02:00
Klas Lindfors
8ece5ed26e
drop unused variable
...
found with clang scan-build
2015-07-09 11:03:11 +02:00
Klas Lindfors
fb0c437533
check result from get_length()
...
found with clang scan-build
2015-07-09 11:01:49 +02:00
Klas Lindfors
3fd716791b
avoid copying data to NULL pointer
...
found by clang scan-build
2015-07-09 10:34:39 +02:00
Klas Lindfors
43ffb65462
don't do memcpy with NULL argument
...
found with clang scan-build
2015-07-09 10:28:21 +02:00
Klas Lindfors
76e0dd5349
strip away unneeded stuff from the windows openssl build
2015-07-09 10:19:25 +02:00
Klas Lindfors
8a2401b1c7
add openssl to mac build
...
since the openssl bundled with mac is old and deprecated we build our
own instead
2015-07-09 10:18:57 +02:00
Klas Lindfors
fe0fd7b774
let the pkg-config check for openssl check for libcrypto instead
...
since we only use libcrypto
2015-07-08 14:51:45 +02:00
Klas Lindfors
103930daf9
add Requires.private on libcrypto
2015-07-08 14:50:43 +02:00
Klas Lindfors
306651a308
remove extra \
2015-07-03 13:28:12 +02:00
Klas Lindfors
0d88b0b38b
name include file .adoc instead
2015-07-03 09:52:41 +02:00
Klas Lindfors
5f8605dc7e
use asciidoc comments for comments in asciidoc file
2015-07-03 09:42:17 +02:00
Klas Lindfors
3b080dca45
relicense to 2-clause BSD license
2015-07-01 16:34:20 +02:00
Klas Lindfors
671b88c10e
add help2adoc processing on release
2015-07-01 13:25:46 +02:00
Klas Lindfors
561bf00c55
add include file for help2adoc
2015-07-01 13:23:22 +02:00
Klas Lindfors
67543021cb
bump openssl version for windows build
2015-06-23 14:40:46 +02:00
Klas Lindfors
3b434817c6
bump versions
2015-06-23 14:39:58 +02:00
Klas Lindfors
3669e62bfb
NEWS for 1.0.0
2015-06-23 14:38:09 +02:00
Klas Lindfors
7146451463
mark upcoming version as 1.0.0
...
fixes #22
2015-06-23 14:36:11 +02:00
Klas Lindfors
6b4b3001c4
verify that e is 0x10001 on import
...
fixes #13
2015-06-23 14:28:44 +02:00
Klas Lindfors
9bd32ff72c
drop --repo-token for coveralls
2015-05-25 20:23:33 +02:00
Henrik Stråth
7f0d778e0c
Added yubikey-piv-manager to software list
2015-05-25 09:49:38 +02:00
Klas Lindfors
18e057e58c
let RSA_public_encrypt() do the PKCS1 padding
...
noteworthy is that it will do pkcs1 type 2 padding
2015-05-19 15:11:30 +02:00
Klas Lindfors
3d0ff7b969
add a test-decipher command
...
test-decipher will for rsa do public encrypt on a random string and let
the key decrypt
for ec it will generate a new ec key and do ecdh and confirm it gets the
same answer back
2015-05-19 14:22:26 +02:00
Klas Lindfors
63345d1b3e
drop verbose prints from library
...
for ykpiv_verify() they're in tool as well.
2015-05-18 13:36:14 +02:00
Klas Lindfors
8ce4ab4997
add newline at end of output
2015-05-08 13:49:32 +02:00
Klas Lindfors
bf3fcc77fe
use a transation while sending and receiving data
2015-05-08 09:57:51 +02:00
Klas Lindfors
df018b24b4
add more extensions for certificates in doc
2015-04-09 10:13:30 +02:00
Klas Lindfors
4bd13b7254
mgm-key not needed for change-pin and change-puk
2015-04-07 07:58:17 +02:00
Klas Lindfors
c6e0f71133
bump version
2015-03-23 10:28:21 +01:00
Klas Lindfors
f44a155714
release 0.1.6
2015-03-23 10:20:11 +01:00
Klas Lindfors
a9c8cb9fd3
drop openssl/err.h again
2015-03-20 14:17:51 +01:00
Klas Lindfors
9db6d3d45a
replace EVP_MD_CTX_verify() stuff with RSA_verify()/ECDSA_verify()
...
since the EVP_MD_CTX stuff doesn't seem to exist on osx at all.
2015-03-20 14:04:26 +01:00
Klas Lindfors
8ada864df9
NEWS for 0.1.6
2015-03-20 10:51:40 +01:00
Klas Lindfors
f204987941
add a test-signature action
...
that takes a certificate in and does a signature with the given slot,
then verifying that signature with the given certificate.
2015-03-20 10:04:58 +01:00
Klas Lindfors
ef1ee5a6f6
bump openssl version
2015-03-20 09:56:13 +01:00
Klas Lindfors
b1cda2ffce
add missing }
...
that's why you should always build before push..
2015-03-19 15:52:20 +01:00
Klas Lindfors
da1f61f23a
move up validation of pin-retries parameters
2015-03-19 14:54:23 +01:00
Klas Lindfors
c85fd4eaa8
move more validation of parameters together
2015-03-19 14:52:38 +01:00
Klas Lindfors
9124e82ea6
write version to output file
2015-03-19 14:43:13 +01:00
Klas Lindfors
635729f339
call get_algorithm() to get the algorithm
...
as it was already implemented..
2015-03-19 14:37:59 +01:00
Klas Lindfors
91ddd394e4
give a better link for PIV standards
2015-03-19 09:14:39 +01:00
Klas Lindfors
24130c7154
mention version of gengetopt required
2015-03-19 09:00:55 +01:00
Klas Lindfors
0f26a7c1e3
refactor dump_hex to drop some redundant code
2015-03-18 15:09:32 +01:00