summaryrefslogtreecommitdiffstats
path: root/bin
AgeCommit message (Collapse)AuthorFilesLines
2021-05-10make the compiler happyGravatar Christian Hesse1-1/+1
Depending on build flags the compiler complains: ykfde.c:307:3: error: ignoring return value of ‘getrandom’ declared with attribute ‘warn_unused_result’ [-Werror=unused-result] Let's add the return value to `len`, which is no longer used anyway. Fixes #33
2021-01-01update copyright for 2021Gravatar Christian Hesse3-3/+3
2020-11-25Makefile: change order of compiler parametersGravatar Christian Hesse1-3/+3
2020-11-25clearly state the licenseGravatar Christian Hesse3-14/+35
2020-11-25exchange challenge filesGravatar Christian Hesse1-5/+12
This makes sure that the challenge file is never non-existent.
2020-11-25sync challenge file to disk before closingGravatar Christian Hesse1-0/+4
2020-02-08update copyright for 2020Gravatar Christian Hesse3-3/+3
2019-02-18completly replace rand() with getrandom()Gravatar Christian Hesse1-12/+10
2019-02-18do not use hardcoded sizeGravatar Christian Hesse1-1/+1
2019-02-18replace getrandom() with getentropy()Gravatar Christian Hesse1-1/+1
2019-02-17Seed with real random numberGravatar Christian Hesse1-5/+7
2019-01-01update copyright for 2019Gravatar Christian Hesse3-3/+3
2018-04-01fix compiler warning/error with GCC 8.xGravatar Christian Hesse1-1/+1
GCC 8.x reports: worker.c:66:2: error: 'strncpy' specified bound 108 equals destination size [-Werror=stringop-truncation] Replace strncpy() with memcpy(), fixes #25.
2018-01-29improve systemd notification handlingGravatar Christian Hesse1-1/+3
2018-01-19less conditions for string duplicationGravatar Christian Hesse1-4/+4
This makes sure second_factor is not NULL and prevents later NULL dereferences. Fixes #23.
2018-01-02update copyright for 2018Gravatar Christian Hesse3-3/+3
2017-11-25link required libraries onlyGravatar Christian Hesse1-6/+6
2017-11-21prevent systemd from reporting failed with result 'protocol'Gravatar Christian Hesse1-3/+5
A systemd service with Type=notify expects READY=1.
2017-10-30update the logic for second factorGravatar Christian Hesse1-9/+20
2017-10-30make sure the worker is run from systemd serviceGravatar Christian Hesse2-2/+15
2017-07-03undo the changes with session keyringsystemd-v234Gravatar Christian Hesse1-16/+1
The keyring handling has been fixed with systemd v234, so revert using the session keyring.
2017-06-22rename the worker programGravatar Christian Hesse2-3/+425
This is no longer just udev... So rename and move.
2017-06-20Rework the code, update keyring handlingsystemd-v233Gravatar Christian Hesse1-1/+1
This had some historical issue... So rework the code: * split into more functions * drop the sleep and notify logic * update keyring handling Depending on setup and systemd version (233 and up) the keyring handling fails. Try to fix this by... * writing to session keyring first * setting permissions * linking to user keyring * unlinking from session keyring https://mjg59.dreamwidth.org/37333.html
2017-06-14invert conditionGravatar Christian Hesse1-8/+5
2017-06-14FIX: save old termio structure properlyGravatar Benjamin Pereto1-2/+2
2017-04-28Updated ykfde.c to silently skip terminal updates when tcgetattr fails so ↵Gravatar Alec Lanter1-14/+20
that keys can be piped through from other commands.
2017-03-02update copyright for 2017Gravatar Christian Hesse2-2/+2
2016-05-28indent with tabsGravatar Christian Hesse2-2/+2
2016-05-06use own function to ask for LUKS passphraseGravatar Christian Hesse1-5/+11
2016-05-06give hint we want the *current* second factorGravatar Christian Hesse1-1/+1
2016-05-04update help outputGravatar Christian Hesse2-2/+3
2016-05-04move terminal input to function, verify matching strings for new factorGravatar Christian Hesse1-37/+49
2016-05-04simplify code structureGravatar Christian Hesse1-47/+49
2016-05-04simplify return code handlingGravatar Christian Hesse2-49/+25
We do not return the return codes from library functionen, but that is not a big issue...
2016-05-04support reading second factor from terminalGravatar Christian Hesse1-17/+70
This increases security by not displaying on display and not writing to shell history.
2016-05-04do not allow to give second factor twiceGravatar Christian Hesse1-0/+12
2016-05-04fix error condition for yk_close_key() and yk_release()Gravatar Christian Hesse1-2/+2
2016-05-04fix error condition for yk_init()Gravatar Christian Hesse1-2/+3
2016-05-04fix error condition for yk_get_serial()Gravatar Christian Hesse1-1/+2
2016-05-03add empty line for indentionGravatar Christian Hesse1-0/+1
2016-05-03fix error condition for yk_challenge_response()Gravatar Christian Hesse1-6/+8
2016-05-03do not crypt_free() when crypt_status() failsGravatar Christian Hesse1-1/+1
2016-05-03make ykfde-cpio understand command parametersGravatar Christian Hesse2-2/+35
2016-05-03fix compiler and linker flags and produce binaries with full RELROGravatar Christian Hesse1-1/+2
2016-05-03warn when second factor is preocessed but not enabled in configGravatar Christian Hesse1-0/+5
2016-05-03define new constant for max second factor lengthGravatar Christian Hesse1-2/+3
2016-01-18we have command options to control behaviour, remove loop hackGravatar Christian Hesse1-40/+21
2016-01-18update comment about compiler commandGravatar Christian Hesse1-1/+1
2016-01-18remove macro, this works with gcc option -std=gnu11Gravatar Christian Hesse1-7/+0
2016-01-16We have support for second factor. Yeah!Gravatar Christian Hesse2-67/+169
2016-01-04update copyright for 2016Gravatar Christian Hesse2-2/+2
2015-05-27iniparser_getstring() returns const char *Gravatar Christian Hesse1-1/+1
2015-01-04make defines more portableGravatar Christian Hesse2-4/+10
Looks like _DEFAULT_SOURCE requires a recent glibc and does not work on Fedora. So use _XOPEN_SOURCE and _XOPEN_SOURCE_EXTENDED instead. Reported-by: Benjamin Pereto <benjamin.pereto@gmail.com>
2015-01-04update copyright for 2015Gravatar Christian Hesse2-2/+2
2014-12-29introduce config.hGravatar Christian Hesse3-12/+5
We now have configuration in just one place.
2014-12-29do not create directory '.' in archiveGravatar Christian Hesse1-5/+0
This has been changes in mkinitcpio, so we do it the same. https://projects.archlinux.org/mkinitcpio.git/commit/?id=514d5f1fa641b0bfc66d43f4c0c7e7830f747899
2014-12-23support updating the challenge on bootGravatar Christian Hesse3-5/+228
2014-12-22replace shell script with C code, and many moreGravatar Christian Hesse3-74/+297
* place bin/ykfde with C source code bin/ykfde.c * challenge/response can be updated in place WARNING: This required config file syntax change! * updates and simplification to udev/ykfde * a lot more... Signed-off-by: Christian Hesse <mail@eworm.de>
2014-04-17fix getopt optionsGravatar Christian Hesse1-1/+1
2014-04-17get encrypted device from /etc/crypttab.initramfsGravatar Christian Hesse1-9/+5
2014-04-17add infos about /etc/crypttab.initramfs to documentationGravatar Christian Hesse1-2/+1
2014-04-16save a challenge for every keyGravatar Christian Hesse1-33/+18
2014-03-26add some basic documentationGravatar Christian Hesse1-2/+0
2013-10-01create temporary directory, not fileGravatar Christian Hesse1-1/+1
2013-10-01remove newline from response, answer password agentGravatar Christian Hesse1-1/+1
2013-10-01add hint about /etc/crypttab.initramfsGravatar Christian Hesse1-1/+2
2013-10-01update warning about slotGravatar Christian Hesse1-2/+6
2013-10-01update for systemd in initramfsGravatar Christian Hesse1-3/+4
2013-08-05fix option to mktempGravatar Christian Hesse1-1/+1
2013-08-02use mktemp for temporarily directory handlingGravatar Christian Hesse1-10/+9
2013-05-27Initial import0.2.0Gravatar Christian Hesse1-0/+91