-
Notifications
You must be signed in to change notification settings - Fork 65
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
piv: fixes for older YubiKey versions
This change: * Introduces a fallback when creating a PrivateKey if the YubiKey doesn't support attestation certificates. * Fixes tests for older YubiKeys. * Notes a bug in PIN caching for older YubiKeys. Despite the spec[1], older YubiKeys don't let you determine if a PIN is or isn't needed. This makes it impossible for the package to figure out if a PIN is cached or we need to prompt. Add a BUG comment warning against PINPolicyOnce for older YubiKeys. [1] https://csrc.nist.gov/CSRC/media/Publications/sp/800-73/4/archive/2015-05-29/documents/sp800_73-4_pt2_draft.pdf#page=20
- Loading branch information
1 parent
564f246
commit 2184bb6
Showing
4 changed files
with
94 additions
and
16 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters