Initial commit with support for OTP generationHEAD master

author: Robin Krahl <robin.krahl@ireas.org> 2018-02-14 11:12:45 +0100
committer: Robin Krahl <robin.krahl@ireas.org> 2018-02-14 11:14:30 +0100
commit: 10fcd3a946a270fc6d111252b2de08dcd625a2b8 (patch)
tree: 32f874025493ee14563a02dc9c767b3f9e3739b8 /TODO.md
download: nkotp-master.tar.gz
nkotp-master.tar.bz2
1 files changed, 12 insertions, 0 deletions
diff --git a/TODO.md b/TODO.md
new file mode 100644
index 0000000..19d1eb7
--- /dev/null
+++ b/TODO.md
@@ -0,0 +1,12 @@
+- Decide what we want to do if passwords are too long:  truncate, fail
+  silently, fail with error message (current solution).  Affects
+  `read_user_password` and `read_password` in `nkotp.c`.
+- Consider moving some constants to `libnitrokey`, especially the maximum
+  password lengths and the number of HOTP and TOTP slots.
+- Find out the appropriate values to pass to `NK_get_totp_code` and
+  `NK_get_totp_code_PIN`.  Affects `otp_generate` and `otp_generate_password`
+  in `nkotp.c`.
+- Use a better seed than the current time stamp for the generation of the
+  temporary password (`generate_tmp_password` in `nkotp.c`).  Consider
+  switching to a better random number generator in the first place
+  (`getrandom` for Linux).
author	Robin Krahl <robin.krahl@ireas.org>	2018-02-14 11:12:45 +0100
committer	Robin Krahl <robin.krahl@ireas.org>	2018-02-14 11:14:30 +0100
commit	10fcd3a946a270fc6d111252b2de08dcd625a2b8 (patch)
tree	32f874025493ee14563a02dc9c767b3f9e3739b8 /TODO.md
download	nkotp-master.tar.gz nkotp-master.tar.bz2