Age | Commit message (Expand) | Author | Files | Lines |
2020-11-25 | exchange challenge files•••This makes sure that the challenge file is never non-existent.
| Christian Hesse | 1 | -5/+12 |
2020-11-25 | sync challenge file to disk before closing | Christian Hesse | 1 | -0/+4 |
2020-02-08 | update copyright for 2020 | Christian Hesse | 3 | -3/+3 |
2019-02-18 | completly replace rand() with getrandom() | Christian Hesse | 1 | -12/+10 |
2019-02-18 | do not use hardcoded size | Christian Hesse | 1 | -1/+1 |
2019-02-18 | replace getrandom() with getentropy() | Christian Hesse | 1 | -1/+1 |
2019-02-17 | Seed with real random number | Christian Hesse | 1 | -5/+7 |
2019-01-01 | update copyright for 2019 | Christian Hesse | 3 | -3/+3 |
2018-04-01 | fix compiler warning/error with GCC 8.x•••GCC 8.x reports:
worker.c:66:2: error: 'strncpy' specified bound 108 equals destination
size [-Werror=stringop-truncation]
Replace strncpy() with memcpy(), fixes #25.
| Christian Hesse | 1 | -1/+1 |
2018-01-29 | improve systemd notification handling | Christian Hesse | 1 | -1/+3 |
2018-01-19 | less conditions for string duplication•••This makes sure second_factor is not NULL and prevents later NULL
dereferences. Fixes #23.
| Christian Hesse | 1 | -4/+4 |
2018-01-02 | update copyright for 2018 | Christian Hesse | 3 | -3/+3 |
2017-11-25 | link required libraries only | Christian Hesse | 1 | -6/+6 |
2017-11-21 | prevent systemd from reporting failed with result 'protocol'•••A systemd service with Type=notify expects READY=1.
| Christian Hesse | 1 | -3/+5 |
2017-10-30 | update the logic for second factor | Christian Hesse | 1 | -9/+20 |
2017-10-30 | make sure the worker is run from systemd service | Christian Hesse | 2 | -2/+15 |
2017-07-03 | undo the changes with session keyring•••The keyring handling has been fixed with systemd v234, so revert using
the session keyring.
systemd-v234 | Christian Hesse | 1 | -16/+1 |
2017-06-22 | rename the worker program•••This is no longer just udev... So rename and move.
| Christian Hesse | 2 | -3/+425 |
2017-06-20 | Rework the code, update keyring handling•••This had some historical issue... So rework the code:
* split into more functions
* drop the sleep and notify logic
* update keyring handling
Depending on setup and systemd version (233 and up) the keyring handling
fails. Try to fix this by...
* writing to session keyring first
* setting permissions
* linking to user keyring
* unlinking from session keyring
https://mjg59.dreamwidth.org/37333.html
systemd-v233 | Christian Hesse | 1 | -1/+1 |
2017-06-14 | invert condition | Christian Hesse | 1 | -8/+5 |
2017-06-14 | FIX: save old termio structure properly | Benjamin Pereto | 1 | -2/+2 |
2017-04-28 | Updated ykfde.c to silently skip terminal updates when tcgetattr fails so tha... | Alec Lanter | 1 | -14/+20 |
2017-03-02 | update copyright for 2017 | Christian Hesse | 2 | -2/+2 |
2016-05-28 | indent with tabs | Christian Hesse | 2 | -2/+2 |
2016-05-06 | use own function to ask for LUKS passphrase | Christian Hesse | 1 | -5/+11 |
2016-05-06 | give hint we want the *current* second factor | Christian Hesse | 1 | -1/+1 |
2016-05-04 | update help output | Christian Hesse | 2 | -2/+3 |
2016-05-04 | move terminal input to function, verify matching strings for new factor | Christian Hesse | 1 | -37/+49 |
2016-05-04 | simplify code structure | Christian Hesse | 1 | -47/+49 |
2016-05-04 | simplify return code handling•••We do not return the return codes from library functionen, but that is
not a big issue...
| Christian Hesse | 2 | -49/+25 |
2016-05-04 | support reading second factor from terminal•••This increases security by not displaying on display and not writing
to shell history.
| Christian Hesse | 1 | -17/+70 |
2016-05-04 | do not allow to give second factor twice | Christian Hesse | 1 | -0/+12 |
2016-05-04 | fix error condition for yk_close_key() and yk_release() | Christian Hesse | 1 | -2/+2 |
2016-05-04 | fix error condition for yk_init() | Christian Hesse | 1 | -2/+3 |
2016-05-04 | fix error condition for yk_get_serial() | Christian Hesse | 1 | -1/+2 |
2016-05-03 | add empty line for indention | Christian Hesse | 1 | -0/+1 |
2016-05-03 | fix error condition for yk_challenge_response() | Christian Hesse | 1 | -6/+8 |
2016-05-03 | do not crypt_free() when crypt_status() fails | Christian Hesse | 1 | -1/+1 |
2016-05-03 | make ykfde-cpio understand command parameters | Christian Hesse | 2 | -2/+35 |
2016-05-03 | fix compiler and linker flags and produce binaries with full RELRO | Christian Hesse | 1 | -1/+2 |
2016-05-03 | warn when second factor is preocessed but not enabled in config | Christian Hesse | 1 | -0/+5 |
2016-05-03 | define new constant for max second factor length | Christian Hesse | 1 | -2/+3 |
2016-01-18 | we have command options to control behaviour, remove loop hack | Christian Hesse | 1 | -40/+21 |
2016-01-18 | update comment about compiler command | Christian Hesse | 1 | -1/+1 |
2016-01-18 | remove macro, this works with gcc option -std=gnu11 | Christian Hesse | 1 | -7/+0 |
2016-01-16 | We have support for second factor. Yeah! | Christian Hesse | 2 | -67/+169 |
2016-01-04 | update copyright for 2016 | Christian Hesse | 2 | -2/+2 |
2015-05-27 | iniparser_getstring() returns const char * | Christian Hesse | 1 | -1/+1 |
2015-01-04 | make defines more portable•••Looks like _DEFAULT_SOURCE requires a recent glibc and does not work on
Fedora. So use _XOPEN_SOURCE and _XOPEN_SOURCE_EXTENDED instead.
Reported-by: Benjamin Pereto <benjamin.pereto@gmail.com>
| Christian Hesse | 2 | -4/+10 |
2015-01-04 | update copyright for 2015 | Christian Hesse | 2 | -2/+2 |
2014-12-29 | introduce config.h•••We now have configuration in just one place.
| Christian Hesse | 3 | -12/+5 |
2014-12-29 | do not create directory '.' in archive•••This has been changes in mkinitcpio, so we do it the same.
https://projects.archlinux.org/mkinitcpio.git/commit/?id=514d5f1fa641b0bfc66d43f4c0c7e7830f747899
| Christian Hesse | 1 | -5/+0 |
2014-12-23 | support updating the challenge on boot | Christian Hesse | 3 | -5/+228 |
2014-12-22 | replace shell script with C code, and many more•••* place bin/ykfde with C source code bin/ykfde.c
* challenge/response can be updated in place
WARNING: This required config file syntax change!
* updates and simplification to udev/ykfde
* a lot more...
Signed-off-by: Christian Hesse <mail@eworm.de>
| Christian Hesse | 3 | -74/+297 |
2014-04-17 | fix getopt options | Christian Hesse | 1 | -1/+1 |
2014-04-17 | get encrypted device from /etc/crypttab.initramfs | Christian Hesse | 1 | -9/+5 |
2014-04-17 | add infos about /etc/crypttab.initramfs to documentation | Christian Hesse | 1 | -2/+1 |
2014-04-16 | save a challenge for every key | Christian Hesse | 1 | -33/+18 |
2014-03-26 | add some basic documentation | Christian Hesse | 1 | -2/+0 |
2013-10-01 | create temporary directory, not file | Christian Hesse | 1 | -1/+1 |
2013-10-01 | remove newline from response, answer password agent | Christian Hesse | 1 | -1/+1 |
2013-10-01 | add hint about /etc/crypttab.initramfs | Christian Hesse | 1 | -1/+2 |
2013-10-01 | update warning about slot | Christian Hesse | 1 | -2/+6 |
2013-10-01 | update for systemd in initramfs | Christian Hesse | 1 | -3/+4 |
2013-08-05 | fix option to mktemp | Christian Hesse | 1 | -1/+1 |
2013-08-02 | use mktemp for temporarily directory handling | Christian Hesse | 1 | -10/+9 |
2013-05-27 | Initial import0.2.0 | Christian Hesse | 1 | -0/+91 |