Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Manage security environment #60

Merged
merged 8 commits into from
Oct 17, 2022
Merged

Manage security environment #60

merged 8 commits into from
Oct 17, 2022

Conversation

sosthene-nitrokey
Copy link
Collaborator

@sosthene-nitrokey sosthene-nitrokey commented Sep 28, 2022
edited
Loading

This PR adds support for the MANAGE SECURITY ENVIRONMENT command.

  • This PR allows using the DEC key for INTERNAL AUTHENTICATE and vice versa. Should we drop the distinction between AuthenticationAlgorithm and DecryptionAlgorithm enums ? This would simplify the code and be more flexible, but would allow generation/import of keys that aren't usable.
  • There are currently no tests, as neither GnuPG nor the openpgp-card crate expose the functionality. I think the easiest way to test it would be to add the functionality to openpgp-card. See openpgp-card#8

@robin-nitrokey robin-nitrokey mentioned this pull request Sep 29, 2022
Open
23 tasks
@sosthene-nitrokey
Copy link
Collaborator Author

I don't understand why the CI fails. It runs on my machine

@sosthene-nitrokey
Copy link
Collaborator Author

Ok, it's because of openpgp-card-pcsc which was updated and broke semver. https://gitlab.com/openpgp-card/openpgp-card/-/issues/41

@sosthene-nitrokey
Copy link
Collaborator Author

Upgrading to v0.3 could solve the issue. But v0.3 adds Sync bounds which are pretty restrictive. I've made PRs to make it possible to implement it on our end:

trussed-dev/interchange#7
trussed-dev/trussed#50

@sosthene-nitrokey sosthene-nitrokey mentioned this pull request Oct 4, 2022
Merged
@sosthene-nitrokey sosthene-nitrokey force-pushed the manage-security-environment branch 2 times, most recently from e7e8610 to 25d77d7 Compare October 7, 2022 07:43
@sosthene-nitrokey sosthene-nitrokey changed the title WIP: Manage security environment Manage security environment Oct 10, 2022
robin-nitrokey
robin-nitrokey approved these changes Oct 17, 2022
View reviewed changes
Copy link
Member

@robin-nitrokey robin-nitrokey left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good to me, thank you! Please add a changelog entry and merge.

@sosthene-nitrokey sosthene-nitrokey merged commit 4c57222 into main Oct 17, 2022
@sosthene-nitrokey sosthene-nitrokey deleted the manage-security-environment branch October 17, 2022 14:10
@robin-nitrokey robin-nitrokey added this to the v0.2.0 milestone Oct 17, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@robin-nitrokey robin-nitrokey robin-nitrokey approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
v0.2.0
Development

Successfully merging this pull request may close these issues.
2 participants
@sosthene-nitrokey @robin-nitrokey