aboutsummaryrefslogtreecommitdiffstats
path: root/udev
AgeCommit message (Collapse)AuthorFilesLines
2017-09-16update for recent keyring changes in systemdsystemd-v235Gravatar Christian Hesse1-1/+1
With systemd v235 we will have new KeyringMode= for services. Setting KeyringMode=shared allows to share secrets between services. Use that for our services. As udev is not started with a shared keyring we can not run the worker directly. Instead always start the service.
2017-06-22rename the worker programGravatar Christian Hesse3-437/+1
This is no longer just udev... So rename and move.
2017-06-22wipe second factor from memoryGravatar Christian Hesse1-0/+1
2017-06-20Rework the code, update keyring handlingsystemd-v233Gravatar Christian Hesse1-180/+200
This had some historical issue... So rework the code: * split into more functions * drop the sleep and notify logic * update keyring handling Depending on setup and systemd version (233 and up) the keyring handling fails. Try to fix this by... * writing to session keyring first * setting permissions * linking to user keyring * unlinking from session keyring https://mjg59.dreamwidth.org/37333.html
2017-06-20Revert "request key from user keyring"Gravatar Christian Hesse1-1/+1
This reverts commit e90e36ae106b4c6ff30a6ce0c0b1d03a5615a363. The argument expects a destination keyring to create a key in case it is not found. So keep the zero, which means not to create a key.
2017-03-02request key from user keyringGravatar Christian Hesse1-1/+1
2017-03-02share memory for passphrase and askpass answerGravatar Christian Hesse1-9/+7
2017-03-02update copyright for 2017Gravatar Christian Hesse1-1/+1
2016-07-06proper clean up of resourcesGravatar Christian Hesse1-7/+15
2016-07-06fix some misc issuesGravatar Christian Hesse1-8/+10
2016-07-06simplify error pathGravatar Christian Hesse1-2/+1
2016-07-06open the Yubikey when neededGravatar Christian Hesse1-11/+57
Some key do an unplug/plug sequence after challenge/response. Thus the second challenge/response failed. So let's open the key only when needed and have a clean context.
2016-05-28indent with tabsGravatar Christian Hesse1-15/+15
2016-05-04simplify return code handlingGravatar Christian Hesse1-18/+5
We do not return the return codes from library functionen, but that is not a big issue...
2016-05-04fix error condition for yk_close_key() and yk_release()Gravatar Christian Hesse1-2/+2
2016-05-04fix error condition for yk_init()Gravatar Christian Hesse1-2/+3
2016-05-04fix error condition for yk_get_serial()Gravatar Christian Hesse1-1/+2
2016-05-03fix error condition for yk_challenge_response()Gravatar Christian Hesse1-3/+4
2016-05-03fix compiler and linker flags and produce binaries with full RELROGravatar Christian Hesse1-1/+2
2016-01-17unlink pid file before exitGravatar Christian Hesse1-0/+2
2016-01-16We have support for second factor. Yeah!Gravatar Christian Hesse2-88/+148
2016-01-04update copyright for 2016Gravatar Christian Hesse1-1/+1
2015-05-27iniparser_getstring() returns const char *Gravatar Christian Hesse1-1/+1
2015-05-12fix typo in commentGravatar Christian Hesse1-1/+1
2015-01-04add comment with Yubikey details to udev ruleGravatar Christian Hesse1-3/+26
2015-01-04aded more IDs to udev-ruleGravatar Benjamin Pereto1-1/+1
It exists new versions of yubikey, add support
2015-01-04udev rule is installed to mkinitcpio specific pathGravatar Christian Hesse1-1/+0
2015-01-04update copyright for 2015Gravatar Christian Hesse1-1/+1
2014-12-29introduce config.hGravatar Christian Hesse2-6/+3
We now have configuration in just one place.
2014-12-22replace shell script with C code, and many moreGravatar Christian Hesse1-52/+55
* place bin/ykfde with C source code bin/ykfde.c * challenge/response can be updated in place WARNING: This required config file syntax change! * updates and simplification to udev/ykfde * a lot more... Signed-off-by: Christian Hesse <mail@eworm.de>
2014-12-11build pisition independent executableGravatar Christian Hesse1-1/+1
2014-10-21use ISO C11 standardGravatar Christian Hesse1-1/+1
2014-05-05fix udev ruleGravatar Christian Hesse1-1/+2
Yubikey emits a lot of events when inserted and queried. We do have to act on insert, so make sure to match the correct case.
2014-05-04make output to /dev/console a compile time optionGravatar Christian Hesse1-1/+3
2014-04-16save a challenge for every keyGravatar Christian Hesse1-36/+39
2014-03-27better commentGravatar Christian Hesse1-1/+1
2014-03-27always use small characters in configGravatar Christian Hesse1-3/+3
2014-03-26allow to set slot for specific YubikeyGravatar Christian Hesse1-11/+25
2014-03-17update filename in commentGravatar Christian Hesse1-1/+1
2014-03-15allow Yubiky to blockGravatar Christian Hesse1-1/+1
2014-03-15also clear response_hex before using itGravatar Christian Hesse1-0/+1
2014-03-15add hint about debuggingGravatar Christian Hesse1-0/+3
2014-03-15unlink challenge file only on successGravatar Christian Hesse1-3/+4
2014-03-15set up inotify watch before looking at the dir, prevent raceGravatar Christian Hesse1-15/+15
2014-03-15add commentsGravatar Christian Hesse1-5/+17
2014-03-15clear response from memoryGravatar Christian Hesse1-1/+5
2014-03-14fix CFLAGSGravatar Christian Hesse1-1/+4
2014-03-14replace scripts with a C programGravatar Christian Hesse3-17/+267
2013-10-03add timeout to inotifywait and exit on wrong messageGravatar Christian Hesse1-2/+3
systemd should manage to ask for the passphrase within two seconds.
2013-10-03fix behavior of inotifywaitGravatar Christian Hesse1-1/+1
2013-10-01use inotifywait to work around race conditionGravatar Christian Hesse1-1/+2
It was passible that the keyfile was created too late, but the password agent was not ready yet. Work around this by waiting for a new request.
2013-10-01fix message stringGravatar Christian Hesse1-1/+1
2013-10-01discard errors by ykchalrespGravatar Christian Hesse1-1/+1
2013-10-01remove newline from response, answer password agentGravatar Christian Hesse1-1/+7
2013-10-01update for systemd in initramfsGravatar Christian Hesse2-0/+13