nitrokey-rs, branch v0.6.0

Release v0.6.0

2020-02-03T11:55:52Z

This release introduces a new struct SerialNumber that represents the serial number of a Nitrokey device, replacing the strings we used previously.

Refactor string handling in util

2020-02-03T10:31:21Z

The util module provides helper methods to deal with the C strings returned by libnitrokey. The current implementation has to problems: - It causes unnecessary allocations if we only want to look at the string, for example in get_serial_number. - If the conversion from a CStr to a String fails, the string pointer is not freed. Therefore this patch introduces the run_with_str function that executes a function with the string returned by libnitrokey and then makes sure that the pointer is freed correctly.

Represent serial numbers using SerialNumber struct

2020-02-03T10:30:57Z

In a previous commit, we changed the serial number representation from a string to an integer. This made it easier to compare serial numbers, but also introduced new problems: - Serial numbers should be formatted consistently, for example as "{:#010x}". It is hard to ensure this for an integer value. - The format of the serial number may be subject to change. Users should not rely too much on the u32 representation. Therefore we introduce a new SerialNumber struct that represents a serial number. Currently it only stores a u32 value. The following traits and functions can be used to access its value: - FromStr for string parsing - ToString/Display for string formatting - as_u32 to access the underlying integer value

Merge branch 'get_config' into next

2020-02-03T09:22:37Z

This patch series changes the Device::get_config implementation to use libnitrokey’s NK_get_status instead of NK_read_config. This does results in the same command being sent to the Nitrokey device, but avoids a new[]/free mismatch and makes the parsing more robust.

Use NK_get_status to implement Device::get_config

2020-02-03T09:22:13Z

libnitrokey’s NK_read_config function returns a pointer to an array that has been allocated using new[]. We would have to delete this pointer using delete[], but we only have access to free. Therefore this patch modifies the Device::get_config function to call NK_get_status instead of NK_read_config. This also makes the code more safe as we get the data as a struct instead of an array. It does not add much overhead as NK_read_config also executes the GET_STATUS command on the Nitrokey device.

Implement From<&NK_status> for RawConfig

2020-02-03T09:19:21Z

This makes it easier to parse only the config part of the NK_status struct and avoids code duplication in the upcoming get_config refactoring.

Merge branch 'hotfix-0.5.2' into next

2020-01-28T20:23:13Z

Release v0.5.2

2020-01-28T20:05:57Z

This patch release makes the handling of the randomly generated temporary passwords more robust.

Regenerate temporary passwords with null bytes

2020-01-28T20:05:33Z

Previously, we silently cut off temporary passwords that contained a null byte. With the change to CString, we returned a LibraryError instead. With this patch, we change to generate_password function to continue generating passwords until we have a password without a null byte. The chance of generating a password with a null byte is ca. 10 % for our temporary password with 25 characters. Therefore the chance of having to re-generate the password multiple times is low enough that we don’t bother with re-generating only the null bytes of the password for the time being. This should be improved in the future.

Remove AuthenticatedDevice::temp_password_ptr

2020-01-28T20:05:13Z

We introduced the AuthenticatedDevice::temp_password_ptr function to reduce the number of casts needed in our code base. Since we switched from Vec to CString, we no longer have to cast the return value of as_ptr. Therefore we can remove the temp_password_ptr function to reduce code complexity.