poldi.git
13 years agoChanegLog:
Moritz Schulte [Sat, 8 Oct 2005 13:19:59 +0000 (13:19 +0000)]
ChanegLog:

2005-10-08  Moritz Schulte  <moritz@g10code.com>

* configure.ac (POLDI_CONF_DIRECTORY): Only set
PAM_MODULE_DIRECTORY in case it is the empty string; Use libdir
instead of hard-coded path.  This fixes `make distcheck', but it
forces users who want to install the PAM module directly beneath
/lib/security to set PAM_MODULE_DIRECTORY accordingly.
* THANKS: Updated.
* Makefile.am: Remove install-pam-module target.

src/ChangeLog:

2005-10-08  Moritz Schulte  <moritz@g10code.com>

* Makefile.am: Remove install-pam-module target.

src/pam/ChangeLog:

2005-10-08  Moritz Schulte  <moritz@g10code.com>

* Makefile.am: Drop ugly install-pam-module mechanism, implement
install-exec-local and uninstall-local target.

* pam_poldi.c (pam_sm_authenticate): Disable buffering on stderr.
We need to disable bufferring on stderr, since it might have been
enabled by log_set_file().  Buffering on stderr will complicate
PAM interaction, since e.g. libpam-misc's misc_conv() function
does expect stderr to be unbuffered.

13 years ago2005-10-08 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Fri, 7 Oct 2005 22:50:55 +0000 (22:50 +0000)]
2005-10-08  Moritz Schulte  <moritz@g10code.com>

* pam_poldi.c (pam_sm_authenticate): Disable buffering on stderr.
We need to disable bufferring on stderr, since it might have been
enabled by log_set_file().  Buffering on stderr will complicate
PAM interaction, since e.g. libpam-misc's misc_conv() function
does expect stderr to be unbuffered.

13 years ago2005-10-01 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Sat, 1 Oct 2005 11:39:52 +0000 (11:39 +0000)]
2005-10-01  Moritz Schulte  <moritz@g10code.com>

* poldi-ctrl.c (struct poldi_ctrl_opt): New member: WAIT_TIMEOUT.
(poldi_ctrl_opt): Exten struct initialization.
(arg_opt_ids): New entry: ARG_WAIT_TIMEOUT.
(arg_opts): New entry for ARG_WAIT_TIMEOUT.
(poldi_ctrl_options_cb): Handle ARG_WAIT_TIMEOUT.
(cmd_test): Pass WAIT_TIMEOUT to card_init.

13 years agoChangeLog:
Moritz Schulte [Fri, 30 Sep 2005 20:26:09 +0000 (20:26 +0000)]
ChangeLog:

2005-09-25  Moritz Schulte  <moritz@g10code.com>

* conf: New directory.
* configure.ac (AC_CONFIG_FILES): Added: conf/Makefile.am.
* Makefile.am (SUBDIRS): Added: conf.
* THANKS: updated.

src/ctrl/ChangeLog:

2005-09-30  Moritz Schulte  <moritz@g10code.com>

* poldi-ctrl.c (struct poldi_ctrl_opt): Remove unnecessary, rather
annoying const attributes.
(cmd_add_user): Likewise.

2005-09-27  Moritz Schulte  <moritz@g10code.com>

* poldi-ctrl.c: Adjust to new card_init API; pass zero timeout.

src/common/ChangeLog:

2005-09-26  Moritz Schulte  <moritz@g10code.com>

Thanks to Alessandro Rubini:

* card.c: Include <time.h>.
(wait_for_card): New parameter: TIMEOUT; new variables T0, T;
return 1 in case the specified timeout elapsed without any card
being inserted.
(card_init): New parameter: TIMEOUT; new variable: RET; pass
TIMEOUT to wait_for_card();
* card.h (card_sign): Updated card_init API.

src/pam/ChangeLog:

2005-09-27  Moritz Schulte  <moritz@g10code.com>

* pam_poldi.c (struct pam_poldi_opt): New member: TIMEOUT.
(pam_poldi_opt): Extend struct initialization.
(enum arg_opt_ids): New entry: ARG_WAIT_TIMEOUT.
(pam_poldi_options_cb): Handle ARG_WAIT_TIMEOUT.
(wait_for_card): New variables; TIMEOUT, WAIT; initialize them
depending on FAKE and PAM_POLDI_OPT.TIMEOUT; pass TIMEOUT and WAIT
to card_init.
(lookup_key): Use usersdb_lookup_by_username() instead of
username_to_serialno(); remove const attribute from SERIALNO.
(wait_for_card): Remove const attribute from SERIALNO.
(pam_sm_authenticate): Likewise.
(pam_sm_authenticate): Use usersdb_lookup_by_serialno() instead of
serialno_to_username(); remove const attribute from account.

13 years ago2005-07-13 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Wed, 27 Jul 2005 16:58:05 +0000 (16:58 +0000)]
2005-07-13  Moritz Schulte  <moritz@g10code.com>

* configure.ac: Bump version number up to 0.3-cvs.

src/common

2005-07-26  Moritz Schulte  <moritz@g10code.com>

* support.c (username_to_serialno): Renamed function to ...
(usersdb_lookup_by_username): ... this; changed callers.
(serialno_to_username): Renamed function to ...
(usersdb_lookup_by_serialno): ... this; changed callers.
(usersdb_translate): Remove const attribute for FOUND argument;
only fill FOUND if non-NULL.
(usersdb_lookup_by_serialno): Remove const attreibute for USERNAME
argument.
(usersdb_lookup_by_username): Remove const attreibute for SERIALNO
argument.
* support.h: Updated API.

* card.c: Some cosmetic changes.

2005-07-13  Moritz Schulte  <moritz@g10code.com>

* defs.h.in (POLDI_OLD_CARD_KEY_RETRIVAL_EXPLANATION): New symbol.
(POLDI_PIN2_QUERY_MSG, POLDI_PIN3_QUERY_MSG): Change strings.

* card.c: Include <assert.h>
(card_info): New API, return card version information, if
requested.
* card.h: Update card_info() API.

src/ctrl

2005-07-26  Moritz Schulte  <moritz@g10code.com>

* poldi-ctrl.c (cmd_test): Remove unnecessary const attributes and
cast.
(cmd_dump): Likewise.
(cmd_remove_user): Likewise.
(cmd_set_key): Likewise.
Updated to use new support.h API.
(cmd_add_user): Fail, if specified serial number does already
exist in database.
(cmd_add_user): Fail, if specified user does not exist on system.
(poldi_ctrl_options_cb): Better interaction with jnlib in respect
to error propagation.
(key_file_remove): Do not return error in case of ENOENT.

13 years ago2005-07-13 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Wed, 13 Jul 2005 17:24:41 +0000 (17:24 +0000)]
2005-07-13  Moritz Schulte  <moritz@g10code.com>

* configure.ac: Bump version number up to 0.3-cvs.

src/libscd

2005-07-13  Moritz Schulte  <moritz@g10code.com>

* apdu.c, apdu.h, ccid-driver.c, ccid-driver.h, iso7816.c,
iso7816.h, tlv.c, tlv.h: Updated from GnuPG.

src/common

2005-07-13  Moritz Schulte  <moritz@g10code.com>

* defs.h.in (POLDI_OLD_CARD_KEY_RETRIVAL_EXPLANATION): New symbol.
(POLDI_PIN2_QUERY_MSG, POLDI_PIN3_QUERY_MSG): Change strings.

* card.c: Include <assert.h>
(card_info): New API, return card version information, if
requested.
* card.h: Update card_info() API.

src/ctrl

2005-07-13  Moritz Schulte  <moritz@g10code.com>

* poldi-ctrl.c: Adjust to new card_info() API, use version
information in order to figure out if CHV3 is necessary for public
key retrival.

src/pam

2005-07-13  Moritz Schulte  <moritz@g10code.com>

* pam_poldi.c (wait_for_card): Adjust to new card_info() API.

14 years ago2004-11-29 Moritz Schulte <moritz@g10code.com> release-0.2
Moritz Schulte [Mon, 29 Nov 2004 18:41:53 +0000 (18:41 +0000)]
2004-11-29  Moritz Schulte  <moritz@g10code.com>

* THANKS: New file.
* configure.ac: Bumped version number up to 0.2; released.

14 years ago2004-11-29 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Mon, 29 Nov 2004 18:39:34 +0000 (18:39 +0000)]
2004-11-29  Moritz Schulte  <moritz@g10code.com>

* poldi-ctrl.c: Fix contact address.

14 years ago2004-11-27 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Sat, 27 Nov 2004 11:48:55 +0000 (11:48 +0000)]
2004-11-27  Moritz Schulte  <moritz@g10code.com>

* configure.ac: Bumped version up to 0.2-cvs2.

14 years ago2004-11-27 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Sat, 27 Nov 2004 11:48:42 +0000 (11:48 +0000)]
2004-11-27  Moritz Schulte  <moritz@g10code.com>

* poldi-ctrl.c (cmd_test): Adjust card_init caller.
(cmd_dump): Likewise.
(cmd_set_key): Likewise.
Implement require-card-switch option.
(cmd_test): Do not require that the uid of the current process is
equal to the one of the user to test authentication for.

14 years ago2004-11-27 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Sat, 27 Nov 2004 11:48:29 +0000 (11:48 +0000)]
2004-11-27  Moritz Schulte  <moritz@g10code.com>

* pam_poldi.c (wait_for_card): Adjust card_init caller.
Implement require_card_switch option.

14 years ago2004-11-27 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Sat, 27 Nov 2004 11:46:02 +0000 (11:46 +0000)]
2004-11-27  Moritz Schulte  <moritz@g10code.com>

* options.c (options_parse_conf): Do not fail if file does not
exist.

* card.c (wait_for_new_card): Renamed to ...
(wait_for_card): ... this; new argument: require_card_switch;
adjust function accordingly; adjust callers.
(card_init): Rename argument `wait_for_card' to `wait'; new
argument: require_card_switch; pass to wait_for_card.
* card.h (card_open): Update declaration.

14 years ago(no commit message)
Moritz Schulte [Tue, 23 Nov 2004 16:35:33 +0000 (16:35 +0000)]

14 years ago(no commit message)
Moritz Schulte [Tue, 23 Nov 2004 16:35:15 +0000 (16:35 +0000)]

14 years ago(no commit message)
Moritz Schulte [Tue, 23 Nov 2004 16:35:05 +0000 (16:35 +0000)]

14 years ago2004-11-13 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Tue, 23 Nov 2004 16:34:48 +0000 (16:34 +0000)]
2004-11-13  Moritz Schulte  <moritz@g10code.com>

* support.c (file_to_string): NUL-terminate string.
* card.c (wait_for_new_card): New function, merged from gscutils ...
(card_init): ... use it here.

14 years ago(no commit message)
Moritz Schulte [Tue, 9 Nov 2004 17:46:19 +0000 (17:46 +0000)]

14 years ago(no commit message)
Moritz Schulte [Tue, 9 Nov 2004 17:46:08 +0000 (17:46 +0000)]

14 years agoMinor fix.
Moritz Schulte [Wed, 3 Nov 2004 20:31:18 +0000 (20:31 +0000)]
Minor fix.

14 years agoBumped version number up to: 0.2-cvs.
Moritz Schulte [Mon, 1 Nov 2004 21:20:07 +0000 (21:20 +0000)]
Bumped version number up to: 0.2-cvs.

14 years ago(no commit message)
Moritz Schulte [Mon, 1 Nov 2004 21:17:15 +0000 (21:17 +0000)]

14 years agoMostly rewritten/reorganized.
Moritz Schulte [Mon, 1 Nov 2004 21:16:18 +0000 (21:16 +0000)]
Mostly rewritten/reorganized.

14 years ago2004-10-10 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Sun, 10 Oct 2004 19:19:57 +0000 (19:19 +0000)]
2004-10-10  Moritz Schulte  <moritz@g10code.com>

* poldi-key2sexp: Do not report error in case hte master key is
not RSA.

* poldi.c (pam_sm_authenticate): Use pam_get_item instead of
pam_get_user.
(pam_sm_authenticate): Use pam_set_item for username.

14 years ago(no commit message)
Moritz Schulte [Sat, 26 Jun 2004 22:43:49 +0000 (22:43 +0000)]

14 years ago(no commit message)
Moritz Schulte [Sat, 26 Jun 2004 22:42:24 +0000 (22:42 +0000)]

14 years ago(no commit message)
Moritz Schulte [Sat, 26 Jun 2004 22:27:23 +0000 (22:27 +0000)]

14 years ago(no commit message)
Moritz Schulte [Sat, 26 Jun 2004 22:26:04 +0000 (22:26 +0000)]

14 years ago2004-06-22 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Tue, 22 Jun 2004 18:31:02 +0000 (18:31 +0000)]
2004-06-22  Moritz Schulte  <moritz@g10code.com>

* configure.ac: Check for GnuPG types.

14 years agoUpdated
Moritz Schulte [Tue, 22 Jun 2004 18:30:10 +0000 (18:30 +0000)]
Updated

14 years ago2004-06-22 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Tue, 22 Jun 2004 18:20:37 +0000 (18:20 +0000)]
2004-06-22  Moritz Schulte  <moritz@g10code.com>

* poldi.c (pam_sm_authenticate): Ask for PIN only, when the
username retrieved through PAM matches the one associated with the
authentication key contained on the card.

* options.c, options.h: New files.
* Makefile.am (libpam_poldi_a_SOURCES): Added: options.c,
options.h.

* Added jnlib into directory "jnlib".
* Makefile.am (SUBDIRS): Added: jnlib.

* defs.h.in: Added symbol: POLDI_CONF_FILE.

* poldi.c: Added logging and stuff.

* support.c (challenge_verify_sexp): Declare static.
(key_get_sexp): Likewise.
(key_destroy_sexp): Likewise.

14 years agoNew.
Moritz Schulte [Tue, 22 Jun 2004 18:19:44 +0000 (18:19 +0000)]
New.

14 years ago2004-06-22 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Tue, 22 Jun 2004 18:19:01 +0000 (18:19 +0000)]
2004-06-22  Moritz Schulte  <moritz@g10code.com>

* Makefile.am (libscd_a_SOURCES): Removed: opt.c.
* opt.c: Removed file.

* scd.h: Include "../options.h", do not declare struct opt.

* Removed files from jnlib.

* Updated code from GnuPG.

14 years ago2004-05-13 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Thu, 13 May 2004 19:16:55 +0000 (19:16 +0000)]
2004-05-13  Moritz Schulte  <moritz@g10code.com>

* poldi.c (pam_sm_authenticate): Use pam_get_user instead of
pam_get_item.  D'oh.

14 years ago2004-05-13 Moritz Schulte <moritz@g10ode.com>
Moritz Schulte [Thu, 13 May 2004 14:45:10 +0000 (14:45 +0000)]
2004-05-13  Moritz Schulte  <moritz@g10ode.com>

* card.h (card_info): Change arguments.
* card.c (card_info): Likewise, don't return login data.

* defs.h.in (POLDI_USERS_DB_FILE): New symbol.

* support.c (keyid_to_username): New function.
* support.h (keyid_to_username): Declare.

* poldi.c (pam_sm_authenticate): Adjusted for keyid_to_username.
Initialize card after the PIN has been provided.
Don't forget to call card_close.

14 years ago2004-05-13 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Thu, 13 May 2004 13:03:57 +0000 (13:03 +0000)]
2004-05-13  Moritz Schulte  <moritz@g10code.com>

* configure.ac: Fix comment.

14 years ago2004-05-13 Moritz Schulte <moritz@g10code.com>
Moritz Schulte [Thu, 13 May 2004 13:03:36 +0000 (13:03 +0000)]
2004-05-13  Moritz Schulte  <moritz@g10code.com>

* support.h: Fix Copyright-line, fix license.
* poldi.c: Likewise.
* defs.h.in: Likewise.
* card.c: Likewise.
* card.h: Likewise.

* support.c (key_get_sexp): Use MMAP_FAILED.
(key_get_sexp) Use memset to zero-out struct.
(key_get_sexp): Use sizeof instead of strlen in order to fix an
off-by-one error.
Use gpg_err_code_from_errno wherever necesarry.
Fix Copyright-line, fix license.

14 years agoIntial checking from Moritz 0.1 tarball
Werner Koch [Fri, 30 Apr 2004 15:26:49 +0000 (15:26 +0000)]
Intial checking from Moritz 0.1 tarball