Lennart Poettering
|
1abaa19781
|
fido2: when listing fido2/hmac-secret devices, actually validate feature set
|
2020-12-17 20:02:28 +01:00 |
|
Lennart Poettering
|
e3fb662b67
|
fido2: don't use up/uv/rk when device doesn't support it
Apparently devices are supposed to generate failures if we try to turn
off features they don't have. Thus don't.
Prompted-by: https://github.com/systemd/systemd/issues/17784#issuecomment-737730395
|
2020-12-17 20:00:27 +01:00 |
|
Lennart Poettering
|
ebcb3f38d2
|
homed: split out HMAC-HASH fido2 decode code into src/shared/
That way we can use it later on in systemd-cryptsetup to unlock devices
with FIDO2 tokens.
|
2020-12-17 20:00:15 +01:00 |
|
Lennart Poettering
|
17599e129b
|
homed: move fido2 setup code to src/shared/
That way we can reuse it from systemd-cryptenroll
|
2020-12-17 20:00:03 +01:00 |
|
Lennart Poettering
|
fb2d839c06
|
homed: move fido2 device enumeration logic to shared code
|
2020-12-17 19:59:50 +01:00 |
|
Lennart Poettering
|
69cb28965b
|
homed: turn libfido2 into a dlopen() type dependency
|
2020-12-17 19:59:32 +01:00 |