Rust interface to libnitrokey https://git.ireas.org/nitrokey-rs/atom?h=v0.5.2 2020-01-28T20:05:57Z 2020-01-28T20:05:57Z Robin Krahl robin.krahl@ireas.org 2020-01-28T20:04:01Z urn:sha1:ebe75339a3fb29c51ea22a0bb25fd113b15759f1 This patch release makes the handling of the randomly generated temporary passwords more robust. 2020-01-28T20:05:33Z Robin Krahl robin.krahl@ireas.org 2020-01-28T19:31:56Z urn:sha1:ebd754d88330478981f65e4724cc561ceff4f9e7 Previously, we silently cut off temporary passwords that contained a null byte. With the change to CString, we returned a LibraryError instead. With this patch, we change to generate_password function to continue generating passwords until we have a password without a null byte. The chance of generating a password with a null byte is ca. 10 % for our temporary password with 25 characters. Therefore the chance of having to re-generate the password multiple times is low enough that we don’t bother with re-generating only the null bytes of the password for the time being. This should be improved in the future. 2020-01-28T20:05:13Z Robin Krahl robin.krahl@ireas.org 2020-01-28T18:47:39Z urn:sha1:777cbd0fee8187325b0272d3264b535828d4b4ea We introduced the AuthenticatedDevice::temp_password_ptr function to reduce the number of casts needed in our code base. Since we switched from Vec<u8> to CString, we no longer have to cast the return value of as_ptr. Therefore we can remove the temp_password_ptr function to reduce code complexity. 2020-01-28T20:05:03Z Robin Krahl robin.krahl@ireas.org 2020-01-28T18:42:41Z urn:sha1:669fbb40d894460e9603dcf6e953373e53a19347 This patch changes the generate_password function and the User and Admin structs to use a CString instead of a Vec<u8> when storing temporary passwords. This makes sure that the strings that are passed to the C API are properly null-terminated. 2020-01-15T12:24:58Z Robin Krahl robin.krahl@ireas.org 2020-01-15T12:24:48Z urn:sha1:817409140a8778215d2d65d614d3672166fff576 2020-01-15T12:22:22Z Robin Krahl robin.krahl@ireas.org 2020-01-15T12:22:22Z urn:sha1:5e5d5493331305c97f6ffd059246f0cbff4ae696 This patch release contains a fix for the serial number formatting in the list_devices function for Nitrokey Pro devices with firmware versions older than 0.9. 2020-01-15T12:19:13Z Robin Krahl robin.krahl@ireas.org 2020-01-15T12:19:13Z urn:sha1:c472c53d6ae8a80cc18659006f3df5fbcace7140 Previously, we assumed that the serial number returned by hidapi contains the Nitrokey serial number as the least significant bytes. As disussed here [0], this is not true for Nitrokey Pro devices with firmware version 0.8 or older: They write the serial number to the most significant bytes instead. This patch update the get_hidapi_serial_number function so that list_devices now returns the correctly formatted and truncated serial number for all Nitrokey Pro devices. It also makes sure that the serial number is lowercase to be consistent with libnitrokey’s formatting. 2020-01-14T17:28:47Z Robin Krahl robin.krahl@ireas.org 2020-01-14T17:28:47Z urn:sha1:8ef4e3904688b7050d3ce6b876ceef3d60ebcce8 docs.rs seems to support only versioned links to source files. This patch replaces the link to docs.rs with a link to git.ireas.org to avoid having to update the link with every release. (Note that the last release already contained a link to the wrong version.) 2020-01-14T17:20:25Z Robin Krahl robin.krahl@ireas.org 2020-01-14T17:20:25Z urn:sha1:aa74f1e98f978b4b740fe8e076768f3df6f35632 This patch replaces the invalid license identifier CC-0 with the correct identifier CC0-1.0. 2020-01-14T17:11:02Z Robin Krahl robin.krahl@ireas.org 2020-01-14T17:11:02Z urn:sha1:62d37c8d4e7d1caca21f23978198b721efc5973b