Documentation
¶
Overview ¶
Package yubikey implements basic support for getting status and details about YubiKey tokens.
Index ¶
- Constants
- Variables
- func GetFIPSMode(c *iso.Card) (bool, error)
- func GetSerialNumber(c *iso.Card) (uint32, error)
- func HasFIDO2(name string, card *iso.Card) (bool, error)
- func HasFormFactor(ff FormFactor) filter.Filter
- func HasHSMAuth(name string, card *iso.Card) (bool, error)
- func HasOATH(name string, card *iso.Card) (bool, error)
- func HasOTP(name string, card *iso.Card) (bool, error)
- func HasOpenPGP(name string, card *iso.Card) (bool, error)
- func HasPIV(name string, card *iso.Card) (bool, error)
- func HasU2F(name string, card *iso.Card) (bool, error)
- func IsSerialNumber(sno uint32) filter.Filter
- type Capability
- type DeviceFlag
- type DeviceInfo
- type FormFactor
- type Status
- type Version
Constants ¶
View Source
const ( TagCapsSupportedUSB tlv.Tag = 0x01 TagSerialNumber tlv.Tag = 0x02 TagCapsEnabledUSB tlv.Tag = 0x03 TagFormFactor tlv.Tag = 0x04 TagFirmwareVersion tlv.Tag = 0x05 TagAutoEjectTimeout tlv.Tag = 0x06 TagChalRespTimeout tlv.Tag = 0x07 TagDeviceFlags tlv.Tag = 0x08 TagAppVersions tlv.Tag = 0x09 TagConfigLock tlv.Tag = 0x0a TagUnlock tlv.Tag = 0x0b TagReboot tlv.Tag = 0x0c TagCapsSupportedNFC tlv.Tag = 0x0d TagCapsEnabledNFC tlv.Tag = 0x0e )
View Source
const ( // https://docs.yubico.com/yesdk/users-manual/application-otp/otp-commands.html InsOTP iso.Instruction = 0x01 // Most commands of the OTP applet use this value InsReadStatus iso.Instruction = 0x03 )
Variables ¶
View Source
var ( IsFIPS = withDeviceInfo(func(di *DeviceInfo) bool { return di.IsFIPS }) IsLocked = withDeviceInfo(func(di *DeviceInfo) bool { return di.IsLocked }) )
View Source
var ErrInvalidResponseLength = errors.New("invalid response length")
Functions ¶
func GetFIPSMode ¶
GetFIPSMode returns returns the FIPS compliancy state of the YubiKey token.
func GetSerialNumber ¶
GetSerialNumber returns the serial number of the YubiKey token.
func HasFormFactor ¶
func HasFormFactor(ff FormFactor) filter.Filter
HasFormFactor returns a filter which checks if the YubiKey has a given form factor.
func HasHSMAuth ¶
HasHSMAuth is a filter which checks if the YubiKey has the HSM authentication applet enabled.
func HasOpenPGP ¶
HasOpenPGP is a filter which checks if the YubiKey has the OpenPGP applet enabled.
func IsSerialNumber ¶
Types ¶
type Capability ¶
type Capability int
const ( CapOTP Capability = 0x01 CapU2F Capability = 0x02 CapFIDO2 Capability = 0x200 CapOATH Capability = 0x20 CapPIV Capability = 0x10 CapOpenPGP Capability = 0x08 CapHSMAUTH Capability = 0x100 )
type DeviceFlag ¶
type DeviceFlag byte
const ( DeviceFlagRemoteWakeup DeviceFlag = 0x40 DeviceFlagEject DeviceFlag = 0x80 )
type DeviceInfo ¶
type DeviceInfo struct {
Flags DeviceFlag
CapsSupportedUSB Capability
CapsEnabledUSB Capability
CapsSupportedNFC Capability
CapsEnabledNFC Capability
SerialNumber uint32
FirmwareVersion Version
FormFactor FormFactor
AutoEjectTimeout time.Duration
ChalRespTimeout time.Duration
IsLocked bool
IsSky bool
IsFIPS bool
}
func GetDeviceInfo ¶
func GetDeviceInfo(c *iso.Card) (*DeviceInfo, error)
GetDeviceInfo returns device information about the YubiKey token.
type FormFactor ¶
type FormFactor byte
const ( FormFactorUnknown FormFactor = 0x00 FormFactorUSBAKeychain FormFactor = 0x01 FormFactorUSBANano FormFactor = 0x02 FormFactorUSBCKeychain FormFactor = 0x03 FormFactorUSBCNano FormFactor = 0x04 FormFactorUSBCLightning FormFactor = 0x05 FormFactorUSBABio FormFactor = 0x06 FormFactorUSBCBio FormFactor = 0x07 )
Source Files
Click to show internal directories.
Click to hide internal directories.