Documentation
¶
Overview ¶
Package yubikey implements basic support for getting status and details about YubiKey tokens.
Index ¶
- Constants
- Variables
- func GetFIPSMode(card *iso.Card) (bool, error)
- func GetSerialNumber(card *iso.Card) (uint32, error)
- func HasFIDO2(reader string, card *iso.Card) (bool, error)
- func HasFormFactor(ff FormFactor) filter.Filter
- func HasHSMAuth(reader string, card *iso.Card) (bool, error)
- func HasOATH(reader string, card *iso.Card) (bool, error)
- func HasOTP(reader string, card *iso.Card) (bool, error)
- func HasOpenPGP(reader string, card *iso.Card) (bool, error)
- func HasPIV(reader string, card *iso.Card) (bool, error)
- func HasU2F(reader string, card *iso.Card) (bool, error)
- func HasVersion(v iso.Version) filter.Filter
- func HasVersionStr(s string) filter.Filter
- func IsSerialNumber(sno uint32) filter.Filter
- func Metadata(card *iso.Card) (meta map[string]any)
- type Capability
- type DeviceFlag
- type DeviceInfo
- type FormFactor
- type Status
Constants ¶
View Source
const ( TagCapsSupportedUSB tlv.Tag = 0x01 TagSerialNumber tlv.Tag = 0x02 TagCapsEnabledUSB tlv.Tag = 0x03 TagFormFactor tlv.Tag = 0x04 TagFirmwareVersion tlv.Tag = 0x05 TagAutoEjectTimeout tlv.Tag = 0x06 TagChalRespTimeout tlv.Tag = 0x07 TagDeviceFlags tlv.Tag = 0x08 TagAppVersions tlv.Tag = 0x09 TagConfigLock tlv.Tag = 0x0a TagUnlock tlv.Tag = 0x0b TagReboot tlv.Tag = 0x0c TagCapsSupportedNFC tlv.Tag = 0x0d TagCapsEnabledNFC tlv.Tag = 0x0e )
View Source
const ( // https://docs.yubico.com/yesdk/users-manual/application-otp/otp-commands.html InsOTP iso.Instruction = 0x01 // Most commands of the OTP applet use this value InsReadStatus iso.Instruction = 0x03 )
Variables ¶
View Source
var ( IsFIPS = withDeviceInfo(func(di *DeviceInfo) bool { return di.IsFIPS }) IsLocked = withDeviceInfo(func(di *DeviceInfo) bool { return di.IsLocked }) )
View Source
var ErrInvalidResponseLength = errors.New("invalid response length")
Functions ¶
func GetFIPSMode ¶
GetFIPSMode returns returns the FIPS compliancy state of the YubiKey token.
func GetSerialNumber ¶
GetSerialNumber returns the serial number of the YubiKey token.
func HasFormFactor ¶
func HasFormFactor(ff FormFactor) filter.Filter
HasFormFactor returns a filter which checks if the YubiKey has a given form factor.
func HasHSMAuth ¶
HasHSMAuth is a filter which checks if the YubiKey has the HSM authentication applet enabled.
func HasOpenPGP ¶
HasOpenPGP is a filter which checks if the YubiKey has the OpenPGP applet enabled.
func HasVersion ¶ added in v0.2.0
HasVersion checks that the card has a firmware version equal or higher than the given one.
func HasVersionStr ¶ added in v0.2.0
func IsSerialNumber ¶
Types ¶
type Capability ¶
type Capability int
const ( CapOTP Capability = 0x01 CapU2F Capability = 0x02 CapFIDO2 Capability = 0x200 CapOATH Capability = 0x20 CapPIV Capability = 0x10 CapOpenPGP Capability = 0x08 CapHSMAUTH Capability = 0x100 )
type DeviceFlag ¶
type DeviceFlag byte
const ( DeviceFlagRemoteWakeup DeviceFlag = 0x40 DeviceFlagEject DeviceFlag = 0x80 )
type DeviceInfo ¶
type DeviceInfo struct {
Flags DeviceFlag
CapsSupportedUSB Capability
CapsEnabledUSB Capability
CapsSupportedNFC Capability
CapsEnabledNFC Capability
SerialNumber uint32
FirmwareVersion iso.Version
FormFactor FormFactor
AutoEjectTimeout time.Duration
ChalRespTimeout time.Duration
IsLocked bool
IsSky bool
IsFIPS bool
}
func GetDeviceInfo ¶
func GetDeviceInfo(card *iso.Card) (*DeviceInfo, error)
GetDeviceInfo returns device information about the YubiKey token.
type FormFactor ¶
type FormFactor byte
const ( FormFactorUnknown FormFactor = 0x00 FormFactorUSBAKeychain FormFactor = 0x01 FormFactorUSBANano FormFactor = 0x02 FormFactorUSBCKeychain FormFactor = 0x03 FormFactorUSBCNano FormFactor = 0x04 FormFactorUSBCLightning FormFactor = 0x05 FormFactorUSBABio FormFactor = 0x06 FormFactorUSBCBio FormFactor = 0x07 )
Source Files
Click to show internal directories.
Click to hide internal directories.