pico-fido

mirror of https://github.com/polhenarejos/pico-fido.git synced 2024-09-20 03:10:10 +00:00

Author	SHA1	Message	Date
Pol Henarejos	23c7e16e6e	Fix counting PIN retries. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-11-23 16:42:49 +01:00
Pol Henarejos	5923f435fe	Add support for authenticatorConfig verification. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-11-23 15:24:09 +01:00
Pol Henarejos	04868f2d7b	Added permissions support. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-11-23 13:00:28 +01:00
Pol Henarejos	54c0769dbd	Upgrading to version 2.4 Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-11-15 12:12:06 +01:00
Pol Henarejos	0bbcba2f60	Upgrade to version 2.4 Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-11-15 11:59:46 +01:00
Pol Henarejos	723648173d	Update README.md	2022-11-15 11:59:06 +01:00
Pol Henarejos	e6c128fe0d	Linux uses the generic interface. Needs deep testing. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-11-07 13:15:24 +01:00
Pol Henarejos	2174b516c3	Using ecdh interface from mbedtls. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-11-07 13:15:09 +01:00
Pol Henarejos	4577e4430c	Moving AUT UNLOCK to Vendor command instead of using VendorConfig. To do this a MSE command is added, to manage a secure environment. It performs a ephemeral ECDH exchange to derive a shared secret that will be used by vendor commands to convey ciphered data. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-30 00:47:50 +02:00
Pol Henarejos	9a8f4c0f4d	Moving to last pico-hsm-sdk to support Vendor command. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-29 19:41:28 +02:00
Pol Henarejos	e21d985344	Adding support for specific vendor HID command (0x41). It is a self implementation, based on CBOR command. data[0] conveys the command and the contents mapped in CBOR encoding. The map uses the authConfig template, where the fist item in the map is the subcommand (enable/disable at this moment), the second is a map of the parameters, the third and fourth are the pinUvParam and pinUvProtocol. With this format only a single vendor HID command is necessary (0x41), which will be used for all my own commands, by using the command id in data[0] like with CBOR. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-29 19:41:00 +02:00
Pol Henarejos	43cd8869f9	Adding support for backup. Now it is possible to backup and restore the internal keys to recover a pico fido. The process is splitted in two parts: a list of 24 words and a file, which stores the security key. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-28 00:31:50 +02:00
Pol Henarejos	a42131876f	Adding disable secure key. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-27 20:11:12 +02:00
Pol Henarejos	e1f4e3035d	Adding first backend, for macOS. In macOS, a SECP256R1 key is generated locally and stored in the keyring. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-27 19:02:03 +02:00
Pol Henarejos	71ecb23af6	Adding support for disabling secure aut. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-24 00:04:55 +02:00
Pol Henarejos	8c21a2bbcd	Adding command line parsing. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-23 23:24:35 +02:00
Pol Henarejos	53cc16ab6d	Preliminar test tool for device lock/unlock Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-19 18:33:11 +02:00
Pol Henarejos	f213854f8b	Added unlock config command to unlock the device at every boot with an external key. Signed-off-by: trocotronic <trocotronic@redyc.com>	2022-10-19 16:46:32 +02:00
Pol Henarejos	2c125e76eb	Add ef of keydev encrypted. Signed-off-by: trocotronic <trocotronic@redyc.com>	2022-10-19 16:46:31 +02:00
Pol Henarejos	19d8f16056	Clean struct before return. Signed-off-by: trocotronic <trocotronic@redyc.com>	2022-10-19 16:46:31 +02:00
Pol Henarejos	40065217fd	Add a config command to unlock. Signed-off-by: trocotronic <trocotronic@redyc.com>	2022-10-19 16:46:31 +02:00
Pol Henarejos	32c938674a	Adding pico-fido-tool for enabling some configs. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-17 17:37:54 +02:00
Pol Henarejos	4425722a71	Adding support for CBOR CONFIG. This first support includes a vendor command for encrypting the key device with external key. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-17 17:37:39 +02:00
Pol Henarejos	69eef7651c	Adding EF_KEY_DEV_ENC. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-17 17:35:57 +02:00
Pol Henarejos	7f97ea4f24	Updating readme Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-05 12:56:50 +02:00
Pol Henarejos	467523769e	Upgrading version to v2.2. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-05 11:09:36 +02:00
Pol Henarejos	2d295d0d98	Fix severe bug zeroing outside memory. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-05 11:09:03 +02:00
Pol Henarejos	0758644583	Fix generic build Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-05 11:01:54 +02:00
Pol Henarejos	c3a5b8e708	Adding building script Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-05 06:55:32 +02:00
Pol Henarejos	b134d261ae	Adding hid tests. They worked... meh Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-04 20:02:36 +02:00
Pol Henarejos	4f93b984cd	Adding U2F tests. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-04 19:38:07 +02:00
Pol Henarejos	ea0547ef49	Adding tests for credProtect. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-04 17:29:47 +02:00
Pol Henarejos	e5b7dff8cc	Adding credential management tests. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-04 16:58:59 +02:00
Pol Henarejos	6a077d0d8f	Enabling credential management. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-04 16:58:49 +02:00
Pol Henarejos	7c271fc4f3	Fix counting mismatches. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-04 16:58:33 +02:00
Pol Henarejos	2734259c02	Cosmetic changes Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-04 16:58:19 +02:00
Pol Henarejos	ba4faa9840	No more icon Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-04 16:58:03 +02:00
Pol Henarejos	746c324113	Adding client_pin fixture. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-04 16:57:54 +02:00
Pol Henarejos	ac224063fc	Fix freeing memory. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-04 16:57:45 +02:00
Pol Henarejos	cf4778b9ad	Fixes in enumerations. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-04 16:57:34 +02:00
Pol Henarejos	3f80acc81b	Added ctap1 interoperability test. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-04 11:42:54 +02:00
Pol Henarejos	4cea6ebe87	U2F keys shall be verified only when the credID is u2f. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-04 11:42:41 +02:00
Pol Henarejos	02e5eb8dba	Updating pointer Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-04 00:37:24 +02:00
Pol Henarejos	037019b348	Update codeql.yml	2022-10-04 00:33:54 +02:00
Pol Henarejos	ae237db9ca	Added tests for PIN. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-04 00:00:13 +02:00
Pol Henarejos	c2e16fda41	Fix change pin for protocol v2. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-04 00:00:03 +02:00
Pol Henarejos	f84d36b1da	Add return error when no pin is set on getUVToken. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-03 17:47:27 +02:00
Pol Henarejos	04aaf0f572	Fix test. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-03 16:10:45 +02:00
Pol Henarejos	577edbb62f	Adding hmac-secret tests. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-03 16:10:36 +02:00
Pol Henarejos	40b5f70761	Fixes with hmac-secret and ProtocolV2. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>	2022-10-03 16:10:12 +02:00

... 3 4 5 6 7 ...

399 Commits