Rust interface to libnitrokey https://git.ireas.org/nitrokey-rs/atom?h=v0.6.0 2020-02-03T10:31:21Z 2020-02-03T10:31:21Z Robin Krahl robin.krahl@ireas.org 2020-01-28T16:56:53Z urn:sha1:d905aafe208536203dd319e5dc48bd250180a8ef The util module provides helper methods to deal with the C strings returned by libnitrokey. The current implementation has to problems: - It causes unnecessary allocations if we only want to look at the string, for example in get_serial_number. - If the conversion from a CStr to a String fails, the string pointer is not freed. Therefore this patch introduces the run_with_str function that executes a function with the string returned by libnitrokey and then makes sure that the pointer is freed correctly. 2020-02-03T10:30:57Z Robin Krahl robin.krahl@ireas.org 2020-01-28T16:38:47Z urn:sha1:4fb865af37093d9b0ee039d8ae48fb2a820f3760 In a previous commit, we changed the serial number representation from a string to an integer. This made it easier to compare serial numbers, but also introduced new problems: - Serial numbers should be formatted consistently, for example as "{:#010x}". It is hard to ensure this for an integer value. - The format of the serial number may be subject to change. Users should not rely too much on the u32 representation. Therefore we introduce a new SerialNumber struct that represents a serial number. Currently it only stores a u32 value. The following traits and functions can be used to access its value: - FromStr for string parsing - ToString/Display for string formatting - as_u32 to access the underlying integer value 2020-02-03T09:22:13Z Robin Krahl robin.krahl@ireas.org 2020-01-29T12:52:19Z urn:sha1:c1f48ce6c614586042db8891d2eebf19d2212ce4 libnitrokey’s NK_read_config function returns a pointer to an array that has been allocated using new[]. We would have to delete this pointer using delete[], but we only have access to free. Therefore this patch modifies the Device::get_config function to call NK_get_status instead of NK_read_config. This also makes the code more safe as we get the data as a struct instead of an array. It does not add much overhead as NK_read_config also executes the GET_STATUS command on the Nitrokey device. 2020-02-03T09:19:21Z Robin Krahl robin.krahl@ireas.org 2020-01-29T13:04:06Z urn:sha1:4a9dab94400cb00ae1e28485ddc64d46cf27ed3c This makes it easier to parse only the config part of the NK_status struct and avoids code duplication in the upcoming get_config refactoring. 2020-01-28T20:23:13Z Robin Krahl robin.krahl@ireas.org 2020-01-28T20:23:08Z urn:sha1:395ace0131ef6cd655a222734f2cc8d037395a3b 2020-01-28T20:05:33Z Robin Krahl robin.krahl@ireas.org 2020-01-28T19:31:56Z urn:sha1:ebd754d88330478981f65e4724cc561ceff4f9e7 Previously, we silently cut off temporary passwords that contained a null byte. With the change to CString, we returned a LibraryError instead. With this patch, we change to generate_password function to continue generating passwords until we have a password without a null byte. The chance of generating a password with a null byte is ca. 10 % for our temporary password with 25 characters. Therefore the chance of having to re-generate the password multiple times is low enough that we don’t bother with re-generating only the null bytes of the password for the time being. This should be improved in the future. 2020-01-28T20:05:13Z Robin Krahl robin.krahl@ireas.org 2020-01-28T18:47:39Z urn:sha1:777cbd0fee8187325b0272d3264b535828d4b4ea We introduced the AuthenticatedDevice::temp_password_ptr function to reduce the number of casts needed in our code base. Since we switched from Vec<u8> to CString, we no longer have to cast the return value of as_ptr. Therefore we can remove the temp_password_ptr function to reduce code complexity. 2020-01-28T20:05:03Z Robin Krahl robin.krahl@ireas.org 2020-01-28T18:42:41Z urn:sha1:669fbb40d894460e9603dcf6e953373e53a19347 This patch changes the generate_password function and the User and Admin structs to use a CString instead of a Vec<u8> when storing temporary passwords. This makes sure that the strings that are passed to the C API are properly null-terminated. 2020-01-28T11:02:28Z Robin Krahl robin.krahl@ireas.org 2020-01-26T13:26:01Z urn:sha1:24eebcdaaa32d55bf49d069d8320be5dbd6fdab9 This patch consistently uses u32 integers to store and return the serial number of a Nitrokey device. This makes it easier to convert and compare the serial number, as it is a unique representation and as formatting an integer cannot fail. For more details, see this RFC: https://lists.sr.ht/~ireas/nitrokey-rs-dev/%3C20200126074816.GA1314%40ireas.org%3E 2020-01-28T10:54:20Z Robin Krahl robin.krahl@ireas.org 2020-01-28T09:07:23Z urn:sha1:da8727996efacec4280696caefee3feecea4eae7 To make debugging of unexpected errors easier, this patch adds an associated String value with a description of the unexpected behavior to the UnexpectedError variant of the Error enum.