security-and-privacy/gnupg
security-and-privacy/gnupg
1
0
Fork 0
mirror of git://git.gnupg.org/gnupg.git synced 2025-04-17 15:44:34 +02:00
Code Activity

Add login feature.

Browse Source 
Tested with YKCS#11 ECDSA and SoftHSM2 RSA.

Signed-off-by: NIIBE Yutaka <gniibe@fsij.org>
This commit is contained in:
NIIBE Yutaka 2023-03-06 14:08:04 +09:00
parent e944cead95
commit 86d1d3ecd2
No known key found for this signature in database
GPG Key ID: 640114AF89DE6054
1 changed files with 27 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
tkd/pkcs11.c
View File

@ -10,6 +10,10 @@
#include "../common/util.h" #include "../common/util.h"
#include "pkcs11.h" #include "pkcs11.h"
/* Maximum length allowed as a PIN; used for INQUIRE NEEDPIN. That
* length needs to small compared to the maximum Assuan line length. */
#define MAXLEN_PIN 100
/* Maximum allowed total data size for VALUE. */ /* Maximum allowed total data size for VALUE. */
#define MAXLEN_VALUE 4096 #define MAXLEN_VALUE 4096
@ -1030,11 +1034,29 @@ token_slotlist (ctrl_t ctrl, assuan_context_t ctx)
continue; continue;
} }
#if 0/*INQUIRE PIN and use the pin*/ if (token->login_required)
/* XXX: Support each PIN for each token. */ {
if (token->login_required && pin) char *command;
login (token, pin, pin_len); int rc;
#endif unsigned char *value;
size_t valuelen;
log_debug ("asking for PIN '%ld'\n", token->slot_id);
rc = gpgrt_asprintf (&command, "NEEDPIN %ld", token->slot_id);
if (rc < 0)
return gpg_error (gpg_err_code_from_errno (errno));
assuan_begin_confidential (ctx);
err = assuan_inquire (ctx, command, &value, &valuelen, MAXLEN_PIN);
assuan_end_confidential (ctx);
xfree (command);
if (err)
return err;
login (token, value, valuelen);
xfree (value);
}
num_tokens++; num_tokens++;
r = learn_keys (token); r = learn_keys (token);