Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Both slots on Yubikey are now polled for challenge/response #1048

Merged
merged 1 commit into from
Oct 9, 2017
Merged

Both slots on Yubikey are now polled for challenge/response #1048

merged 1 commit into from
Oct 9, 2017

Conversation

droidmonkey
Copy link
Member

Description

Fixes #1045

The previous implementation bailed after finding the first slot that was configured for challenge/response. In order to overcome some threading interchanges and Yubikey limitations the implementation was expanded to be far more robust.

Also, yubikey signals are disconnected from all the unlock widgets when they are hidden. The previous behavior caused all created unlock widgets (about 4-5 per open database) to be updated when the yubikey was polled.

How has this been tested?

Manually with Yubikey Neo

Types of changes

  • ✅ Bug fix (non-breaking change which fixes an issue)

Checklist:

  • ✅ I have read the CONTRIBUTING document. [REQUIRED]
  • ✅ My code follows the code style of this project. [REQUIRED]
  • ✅ All new and existing tests passed. [REQUIRED]
  • ✅ I have compiled and verified my code with -DWITH_ASAN=ON. [REQUIRED]

@droidmonkey droidmonkey added this to the 2.2.2 milestone Oct 8, 2017
@droidmonkey droidmonkey requested a review from phoerious October 8, 2017 01:28
louib
louib reviewed Oct 8, 2017
View reviewed changes
src/keys/drivers/YubiKey.cpp Outdated

// Check slot 1 and 2 for Challenge-Response HMAC capability
for (int i=1; i <= 2; ++ i) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@droidmonkey spaces around =, and no spaces after ++

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This was clearly done by an amateur with questionable spacebar control. I'll fix it right quick 😉

@droidmonkey droidmonkey force-pushed the hotfix/yubikey-detection branch from 93a869b to aa47063 Compare October 8, 2017 23:55
@droidmonkey droidmonkey merged commit 3bc8a79 into release/2.2.2 Oct 9, 2017
@droidmonkey droidmonkey deleted the hotfix/yubikey-detection branch October 9, 2017 13:39
phoerious added a commit that referenced this pull request Oct 21, 2017
@phoerious
Release 2.2.2
6d46717 
- Fixed entries with empty URLs being reported to KeePassHTTP clients [#1031]
- Fixed YubiKey detection and enabled CLI tool for AppImage binary [#1100]
- Added AppStream description [#1082]
- Improved TOTP compatibility and added new Base32 implementation [#1069]
- Fixed error handling when processing invalid cipher stream [#1099]
- Fixed double warning display when opening a database [#1037]
- Fixed unlocking databases with --pw-stdin [#1087]
- Added ability to override QT_PLUGIN_PATH environment variable for AppImages [#1079]
- Fixed transform seed not being regenerated when saving the database [#1068]
- Fixed only one YubiKey slot being polled [#1048]
- Corrected an issue with entry icons while merging [#1008]
- Corrected desktop and tray icons in Snap package [#1030]
- Fixed screen lock and Google fallback settings [#1029]
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@louib louib louib approved these changes

@phoerious phoerious phoerious approved these changes

Assignees
No one assigned
Labels
feature: Hardware Keys
Projects
None yet
Milestone
v2.2.2
Development

Successfully merging this pull request may close these issues.
3 participants
@droidmonkey @phoerious @louib