aboutsummaryrefslogtreecommitdiffstats
AgeCommit message (Expand)AuthorFilesLines
2024-05-21update include, use pkg-config for iniparser•••... which ships required files with release 4.2.2. iniparser-4-2-2Gravatar Christian Hesse3-3/+4
2024-05-21update CFLAGS handlingGravatar Christian Hesse1-4/+7
2024-01-01update copyright for 2024Gravatar Christian Hesse7-7/+7
2023-01-03update copyright for 2023Gravatar Christian Hesse7-7/+7
2022-11-14prepare version 0.7.90.7.9Gravatar Christian Hesse1-1/+1
2022-09-16dracut/module-setup.sh: replace deprecated `egrep` with `grep -E`Gravatar Christian Hesse1-1/+1
2022-09-16mkinitcpio/ykfde: replace deprecated `egrep` with `grep -E`Gravatar Christian Hesse1-1/+1
2022-01-30prepare version 0.7.80.7.8Gravatar Christian Hesse1-1/+1
2022-01-03update copyright for 2022Gravatar Christian Hesse7-7/+7
2021-05-10also give a basic example with systemd-boot•••Fixes #34 Gravatar Christian Hesse2-0/+24
2021-05-10document order of initramfs images•••Fixes #34 Gravatar Christian Hesse2-2/+4
2021-05-10make the compiler happy•••Depending on build flags the compiler complains: ykfde.c:307:3: error: ignoring return value of ‘getrandom’ declared with attribute ‘warn_unused_result’ [-Werror=unused-result] Let's add the return value to `len`, which is no longer used anyway. Fixes #33 Gravatar Christian Hesse1-1/+1
2021-03-01dracut: install shared library dependenciesGravatar Christian Hesse1-3/+2
2021-01-01prepare version 0.7.70.7.7Gravatar Christian Hesse1-1/+1
2021-01-01update copyright for 2021Gravatar Christian Hesse7-7/+7
2020-11-25Makefile: do not depend on config.def.hGravatar Christian Hesse1-1/+1
2020-11-25Makefile: change order of compiler parametersGravatar Christian Hesse1-3/+3
2020-11-25clearly state the licenseGravatar Christian Hesse9-22/+748
2020-11-25exchange challenge files•••This makes sure that the challenge file is never non-existent. Gravatar Christian Hesse1-5/+12
2020-11-25sync challenge file to disk before closingGravatar Christian Hesse1-0/+4
2020-02-08update copyright for 2020Gravatar Christian Hesse7-7/+7
2019-02-20prepare version 0.7.60.7.6Gravatar Christian Hesse1-1/+1
2019-02-18completly replace rand() with getrandom()Gravatar Christian Hesse1-12/+10
2019-02-18do not use hardcoded sizeGravatar Christian Hesse1-1/+1
2019-02-18replace getrandom() with getentropy()Gravatar Christian Hesse1-1/+1
2019-02-17Seed with real random numberGravatar Christian Hesse1-5/+7
2019-01-01update copyright for 2019Gravatar Christian Hesse7-7/+7
2018-08-14release: add comment with file name to signaturesGravatar Christian Hesse1-3/+3
2018-06-14update dependencies' upstream urlsGravatar Christian Hesse1-5/+5
2018-06-11prepare version 0.7.50.7.5Gravatar Christian Hesse1-1/+1
2018-06-08remove trailing spaces, update urlGravatar Christian Hesse1-2/+2
2018-06-08update .gitignoreGravatar Christian Hesse1-0/+4
2018-06-08make gitlab.com a mirror•••https://blog.github.com/2018-06-04-github-microsoft/ Gravatar Christian Hesse1-2/+6
2018-06-06release: write tar signature to git notesGravatar Christian Hesse1-0/+1
2018-04-01fix compiler warning/error with GCC 8.x•••GCC 8.x reports: worker.c:66:2: error: 'strncpy' specified bound 108 equals destination size [-Werror=stringop-truncation] Replace strncpy() with memcpy(), fixes #25. Gravatar Christian Hesse1-1/+1
2018-03-14drop grub workaround, use upstream support for multiple early initrd images•••This requires grub upstream support for multiple early initrd images: http://git.savannah.gnu.org/cgit/grub.git/commit/?id=a698240df0c43278b2d1d7259c8e7a6926c63112 grub-2-04Gravatar Christian Hesse4-27/+18
2018-01-29improve systemd notification handlingGravatar Christian Hesse1-1/+3
2018-01-22prepare version 0.7.40.7.4Gravatar Christian Hesse1-1/+1
2018-01-19less conditions for string duplication•••This makes sure second_factor is not NULL and prevents later NULL dereferences. Fixes #23. Gravatar Christian Hesse1-4/+4
2018-01-02update copyright for 2018Gravatar Christian Hesse7-7/+7
2017-11-25link required libraries onlyGravatar Christian Hesse1-6/+6
2017-11-25prepare version 0.7.30.7.3Gravatar Christian Hesse1-1/+1
2017-11-22use printf to generate version.hGravatar Christian Hesse1-3/+1
2017-11-21prevent systemd from reporting failed with result 'protocol'•••A systemd service with Type=notify expects READY=1. Gravatar Christian Hesse1-3/+5
2017-10-30allow access to the service status notification socketGravatar Christian Hesse1-0/+1
2017-10-30update the logic for second factorGravatar Christian Hesse1-9/+20
2017-10-30make sure the worker is run from systemd serviceGravatar Christian Hesse3-3/+16
2017-10-30add missing header commentGravatar Christian Hesse1-0/+5
2017-10-20use annotated (and signed) tags onlyGravatar Christian Hesse1-1/+1
2017-10-06prepare version 0.7.20.7.2Gravatar Christian Hesse1-1/+1
2017-09-22run ykfde-worker after ykfde-2f, but do not requireGravatar Christian Hesse1-1/+0
2017-09-22sleep and pkill are no longer requiredGravatar Christian Hesse3-6/+0
2017-09-22... same for dracutGravatar Christian Hesse1-2/+2
2017-09-22we always need the workerGravatar Christian Hesse1-2/+2
2017-09-16update for recent keyring changes in systemd•••With systemd v235 we will have new KeyringMode= for services. Setting KeyringMode=shared allows to share secrets between services. Use that for our services. As udev is not started with a shared keyring we can not run the worker directly. Instead always start the service. systemd-v235Gravatar Christian Hesse4-1/+4
2017-07-04prepare version 0.7.10.7.1Gravatar Christian Hesse1-1/+1
2017-07-03undo the changes with session keyring•••The keyring handling has been fixed with systemd v234, so revert using the session keyring. systemd-v234Gravatar Christian Hesse1-16/+1
2017-07-03prepare version 0.7.00.7.0Gravatar Christian Hesse1-1/+1
2017-06-22do not track changes in /etc/ykfde.d/Gravatar Christian Hesse2-1/+4
2017-06-22rename the worker program•••This is no longer just udev... So rename and move. Gravatar Christian Hesse9-33/+17
2017-06-22wipe second factor from memoryGravatar Christian Hesse1-0/+1
2017-06-20Rework the code, update keyring handling•••This had some historical issue... So rework the code: * split into more functions * drop the sleep and notify logic * update keyring handling Depending on setup and systemd version (233 and up) the keyring handling fails. Try to fix this by... * writing to session keyring first * setting permissions * linking to user keyring * unlinking from session keyring https://mjg59.dreamwidth.org/37333.html systemd-v233Gravatar Christian Hesse6-194/+208
2017-06-20Revert "request key from user keyring"•••This reverts commit e90e36ae106b4c6ff30a6ce0c0b1d03a5615a363. The argument expects a destination keyring to create a key in case it is not found. So keep the zero, which means not to create a key. Gravatar Christian Hesse1-1/+1
2017-06-14invert conditionGravatar Christian Hesse1-8/+5
2017-06-14FIX: save old termio structure properlyGravatar Benjamin Pereto1-2/+2
2017-04-28Updated ykfde.c to silently skip terminal updates when tcgetattr fails so tha...Gravatar Alec Lanter1-14/+20
2017-03-08use https for my mirrorGravatar Christian Hesse1-1/+1
2017-03-02request key from user keyringGravatar Christian Hesse1-1/+1
2017-03-02share memory for passphrase and askpass answerGravatar Christian Hesse1-9/+7
2017-03-02systemd-ask-password: give id as suggested by man pageGravatar Christian Hesse1-1/+1
2017-03-02update copyright for 2017Gravatar Christian Hesse6-6/+6
2016-07-09prepare version 0.6.40.6.4Gravatar Christian Hesse1-1/+1
2016-07-07Small grammar and instruction updates•••Modified a bit of grammar, added a clarifying paragraph or two, and added a working HOOKS example Signed-off-by: Christian Hesse <mail@eworm.de> Gravatar Steve Divskinsy2-42/+62
2016-07-06proper clean up of resourcesGravatar Christian Hesse1-7/+15
2016-07-06fix some misc issuesGravatar Christian Hesse1-8/+10
2016-07-06simplify error pathGravatar Christian Hesse1-2/+1
2016-07-06open the Yubikey when needed•••Some key do an unplug/plug sequence after challenge/response. Thus the second challenge/response failed. So let's open the key only when needed and have a clean context. Gravatar Christian Hesse1-11/+57
2016-07-06update dracut for latest code•••Did I get everyting? This is untested... Gravatar Christian Hesse1-3/+5
2016-05-28add EditorConfig configurationGravatar Christian Hesse1-0/+18
2016-05-28indent with tabsGravatar Christian Hesse3-17/+17
2016-05-28Merge branch 'systemd-units'Gravatar Christian Hesse6-29/+31
2016-05-28install systemd unit file without execute permissionGravatar Christian Hesse1-1/+1
2016-05-22do not install ykfde-2f but ykfde-notify.serviceGravatar Christian Hesse1-1/+1
2016-05-22update dependenciesGravatar Christian Hesse1-1/+3
2016-05-22add comment about sleep•••Is there any better way than sleeping? Gravatar Christian Hesse1-0/+3
2016-05-22do not write password to log•••This requires systemd-ask-password with option --no-output, so it depends on systemd v230 (or commit a5a4e365). systemd-v230Gravatar Christian Hesse1-1/+1
2016-05-22fix start order of unitsGravatar Christian Hesse1-0/+1
2016-05-22drop shell script and implement with systemd unitsGravatar Christian Hesse4-27/+23
2016-05-06use own function to ask for LUKS passphraseGravatar Christian Hesse1-5/+11
2016-05-06prepare version 0.6.30.6.3Gravatar Christian Hesse1-1/+1
2016-05-06make ykfde-cpio depend on version.hGravatar Christian Hesse1-1/+1
2016-05-06give hint we want the *current* second factorGravatar Christian Hesse1-1/+1
2016-05-04update documentation again, give real exampleGravatar Christian Hesse2-16/+20
2016-05-04update help outputGravatar Christian Hesse2-2/+3
2016-05-04update documentation•••* Use long version of switches. * Use --new-2nd-factor (instead of --2nd-factor) for initialization. Gravatar Christian Hesse2-16/+24
2016-05-04move terminal input to function, verify matching strings for new factorGravatar Christian Hesse1-37/+49
2016-05-04simplify code structureGravatar Christian Hesse1-47/+49
2016-05-04simplify return code handling•••We do not return the return codes from library functionen, but that is not a big issue... Gravatar Christian Hesse3-67/+30
2016-05-04support reading second factor from terminal•••This increases security by not displaying on display and not writing to shell history. Gravatar Christian Hesse3-17/+78
2016-05-04do not allow to give second factor twiceGravatar Christian Hesse1-0/+12