Age | Commit message (Expand) | Author | Files | Lines |
---|---|---|---|---|
2017-09-16 | update for recent keyring changes in systemd•••With systemd v235 we will have new KeyringMode= for services. Setting KeyringMode=shared allows to share secrets between services. Use that for our services. As udev is not started with a shared keyring we can not run the worker directly. Instead always start the service. systemd-v235 | Christian Hesse | 1 | -1/+1 |
2017-06-22 | rename the worker program•••This is no longer just udev... So rename and move. | Christian Hesse | 3 | -437/+1 |
2017-06-22 | wipe second factor from memory | Christian Hesse | 1 | -0/+1 |
2017-06-20 | Rework the code, update keyring handling•••This had some historical issue... So rework the code: * split into more functions * drop the sleep and notify logic * update keyring handling Depending on setup and systemd version (233 and up) the keyring handling fails. Try to fix this by... * writing to session keyring first * setting permissions * linking to user keyring * unlinking from session keyring https://mjg59.dreamwidth.org/37333.html systemd-v233 | Christian Hesse | 1 | -180/+200 |
2017-06-20 | Revert "request key from user keyring"•••This reverts commit e90e36ae106b4c6ff30a6ce0c0b1d03a5615a363. The argument expects a destination keyring to create a key in case it is not found. So keep the zero, which means not to create a key. | Christian Hesse | 1 | -1/+1 |
2017-03-02 | request key from user keyring | Christian Hesse | 1 | -1/+1 |
2017-03-02 | share memory for passphrase and askpass answer | Christian Hesse | 1 | -9/+7 |
2017-03-02 | update copyright for 2017 | Christian Hesse | 1 | -1/+1 |
2016-07-06 | proper clean up of resources | Christian Hesse | 1 | -7/+15 |
2016-07-06 | fix some misc issues | Christian Hesse | 1 | -8/+10 |
2016-07-06 | simplify error path | Christian Hesse | 1 | -2/+1 |
2016-07-06 | open the Yubikey when needed•••Some key do an unplug/plug sequence after challenge/response. Thus the second challenge/response failed. So let's open the key only when needed and have a clean context. | Christian Hesse | 1 | -11/+57 |
2016-05-28 | indent with tabs | Christian Hesse | 1 | -15/+15 |
2016-05-04 | simplify return code handling•••We do not return the return codes from library functionen, but that is not a big issue... | Christian Hesse | 1 | -18/+5 |
2016-05-04 | fix error condition for yk_close_key() and yk_release() | Christian Hesse | 1 | -2/+2 |
2016-05-04 | fix error condition for yk_init() | Christian Hesse | 1 | -2/+3 |
2016-05-04 | fix error condition for yk_get_serial() | Christian Hesse | 1 | -1/+2 |
2016-05-03 | fix error condition for yk_challenge_response() | Christian Hesse | 1 | -3/+4 |
2016-05-03 | fix compiler and linker flags and produce binaries with full RELRO | Christian Hesse | 1 | -1/+2 |
2016-01-17 | unlink pid file before exit | Christian Hesse | 1 | -0/+2 |
2016-01-16 | We have support for second factor. Yeah! | Christian Hesse | 2 | -88/+148 |
2016-01-04 | update copyright for 2016 | Christian Hesse | 1 | -1/+1 |
2015-05-27 | iniparser_getstring() returns const char * | Christian Hesse | 1 | -1/+1 |
2015-05-12 | fix typo in comment | Christian Hesse | 1 | -1/+1 |
2015-01-04 | add comment with Yubikey details to udev rule | Christian Hesse | 1 | -3/+26 |
2015-01-04 | aded more IDs to udev-rule•••It exists new versions of yubikey, add support | Benjamin Pereto | 1 | -1/+1 |
2015-01-04 | udev rule is installed to mkinitcpio specific path | Christian Hesse | 1 | -1/+0 |
2015-01-04 | update copyright for 2015 | Christian Hesse | 1 | -1/+1 |
2014-12-29 | introduce config.h•••We now have configuration in just one place. | Christian Hesse | 2 | -6/+3 |
2014-12-22 | replace shell script with C code, and many more•••* place bin/ykfde with C source code bin/ykfde.c * challenge/response can be updated in place WARNING: This required config file syntax change! * updates and simplification to udev/ykfde * a lot more... Signed-off-by: Christian Hesse <mail@eworm.de> | Christian Hesse | 1 | -52/+55 |
2014-12-11 | build pisition independent executable | Christian Hesse | 1 | -1/+1 |
2014-10-21 | use ISO C11 standard | Christian Hesse | 1 | -1/+1 |
2014-05-05 | fix udev rule•••Yubikey emits a lot of events when inserted and queried. We do have to act on insert, so make sure to match the correct case. | Christian Hesse | 1 | -1/+2 |
2014-05-04 | make output to /dev/console a compile time option | Christian Hesse | 1 | -1/+3 |
2014-04-16 | save a challenge for every key | Christian Hesse | 1 | -36/+39 |
2014-03-27 | better comment | Christian Hesse | 1 | -1/+1 |
2014-03-27 | always use small characters in config | Christian Hesse | 1 | -3/+3 |
2014-03-26 | allow to set slot for specific Yubikey | Christian Hesse | 1 | -11/+25 |
2014-03-17 | update filename in comment | Christian Hesse | 1 | -1/+1 |
2014-03-15 | allow Yubiky to block | Christian Hesse | 1 | -1/+1 |
2014-03-15 | also clear response_hex before using it | Christian Hesse | 1 | -0/+1 |
2014-03-15 | add hint about debugging | Christian Hesse | 1 | -0/+3 |
2014-03-15 | unlink challenge file only on success | Christian Hesse | 1 | -3/+4 |
2014-03-15 | set up inotify watch before looking at the dir, prevent race | Christian Hesse | 1 | -15/+15 |
2014-03-15 | add comments | Christian Hesse | 1 | -5/+17 |
2014-03-15 | clear response from memory | Christian Hesse | 1 | -1/+5 |
2014-03-14 | fix CFLAGS | Christian Hesse | 1 | -1/+4 |
2014-03-14 | replace scripts with a C program | Christian Hesse | 3 | -17/+267 |
2013-10-03 | add timeout to inotifywait and exit on wrong message•••systemd should manage to ask for the passphrase within two seconds. | Christian Hesse | 1 | -2/+3 |
2013-10-03 | fix behavior of inotifywait | Christian Hesse | 1 | -1/+1 |
2013-10-01 | use inotifywait to work around race condition•••It was passible that the keyfile was created too late, but the password agent was not ready yet. Work around this by waiting for a new request. | Christian Hesse | 1 | -1/+2 |
2013-10-01 | fix message string | Christian Hesse | 1 | -1/+1 |
2013-10-01 | discard errors by ykchalresp | Christian Hesse | 1 | -1/+1 |
2013-10-01 | remove newline from response, answer password agent | Christian Hesse | 1 | -1/+7 |
2013-10-01 | update for systemd in initramfs | Christian Hesse | 2 | -0/+13 |