/* * Copyright (c) 2018 Yubico AB. All rights reserved. * Use of this source code is governed by a BSD-style * license that can be found in the LICENSE file. * SPDX-License-Identifier: BSD-2-Clause */ #include #include #include #include #include #ifdef HAVE_UNISTD_H #include #endif #include "../openbsd-compat/openbsd-compat.h" #include "extern.h" int pin_set(char *path) { fido_dev_t *dev = NULL; char prompt[1024]; char pin1[128]; char pin2[128]; int r; int status = 1; dev = open_dev(path); r = snprintf(prompt, sizeof(prompt), "Enter new PIN for %s: ", path); if (r < 0 || (size_t)r >= sizeof(prompt)) { warnx("snprintf"); goto out; } if (!readpassphrase(prompt, pin1, sizeof(pin1), RPP_ECHO_OFF)) { warnx("readpassphrase"); goto out; } r = snprintf(prompt, sizeof(prompt), "Enter the same PIN again: "); if (r < 0 || (size_t)r >= sizeof(prompt)) { warnx("snprintf"); goto out; } if (!readpassphrase(prompt, pin2, sizeof(pin2), RPP_ECHO_OFF)) { warnx("readpassphrase"); goto out; } if (strcmp(pin1, pin2) != 0) { fprintf(stderr, "PINs do not match. Try again.\n"); goto out; } if (strlen(pin1) < 4 || strlen(pin1) > 63) { fprintf(stderr, "invalid PIN length\n"); goto out; } if ((r = fido_dev_set_pin(dev, pin1, NULL)) != FIDO_OK) { warnx("fido_dev_set_pin: %s", fido_strerr(r)); goto out; } fido_dev_close(dev); fido_dev_free(&dev); status = 0; out: explicit_bzero(pin1, sizeof(pin1)); explicit_bzero(pin2, sizeof(pin2)); exit(status); } int pin_set2(char *path, const char *pin1) { fido_dev_t *dev = NULL; char mutable_pin[64]; // Temporary buffer for mutable PIN int r, status = 1; if (strlen(pin1) < 4 || strlen(pin1) > 63) { fprintf(stderr, "Invalid PIN length\n"); return status; } // Copy the PIN to a mutable buffer strncpy(mutable_pin, pin1, sizeof(mutable_pin) - 1); mutable_pin[sizeof(mutable_pin) - 1] = '\0'; // Null-terminate dev = open_dev(path); if (!dev) { fprintf(stderr, "Failed to open device\n"); return status; } r = fido_dev_set_pin(dev, mutable_pin, NULL); if (r != FIDO_OK) { fprintf(stderr, "Error setting PIN: %s\n", fido_strerr(r)); goto out; } status = 0; // Success out: if (dev) { fido_dev_close(dev); fido_dev_free(&dev); } // Clear the PIN from memory explicit_bzero(mutable_pin, sizeof(mutable_pin)); return status; } int pin_change(char *path) { fido_dev_t *dev = NULL; char prompt[1024]; char pin0[128]; char pin1[128]; char pin2[128]; int r; int status = 1; if (path == NULL) usage(); dev = open_dev(path); r = snprintf(prompt, sizeof(prompt), "Enter current PIN for %s: ", path); if (r < 0 || (size_t)r >= sizeof(prompt)) { warnx("snprintf"); goto out; } if (!readpassphrase(prompt, pin0, sizeof(pin0), RPP_ECHO_OFF)) { warnx("readpassphrase"); goto out; } if (strlen(pin0) < 4 || strlen(pin0) > 63) { warnx("invalid PIN length"); goto out; } r = snprintf(prompt, sizeof(prompt), "Enter new PIN for %s: ", path); if (r < 0 || (size_t)r >= sizeof(prompt)) { warnx("snprintf"); goto out; } if (!readpassphrase(prompt, pin1, sizeof(pin1), RPP_ECHO_OFF)) { warnx("readpassphrase"); goto out; } r = snprintf(prompt, sizeof(prompt), "Enter the same PIN again: "); if (r < 0 || (size_t)r >= sizeof(prompt)) { warnx("snprintf"); goto out; } if (!readpassphrase(prompt, pin2, sizeof(pin2), RPP_ECHO_OFF)) { warnx("readpassphrase"); goto out; } if (strcmp(pin1, pin2) != 0) { fprintf(stderr, "PINs do not match. Try again.\n"); goto out; } if (strlen(pin1) < 4 || strlen(pin1) > 63) { fprintf(stderr, "invalid PIN length\n"); goto out; } if ((r = fido_dev_set_pin(dev, pin1, pin0)) != FIDO_OK) { warnx("fido_dev_set_pin: %s", fido_strerr(r)); goto out; } fido_dev_close(dev); fido_dev_free(&dev); status = 0; out: explicit_bzero(pin0, sizeof(pin0)); explicit_bzero(pin1, sizeof(pin1)); explicit_bzero(pin2, sizeof(pin2)); exit(status); }