solokeys/openpgp
0
0
Fork 0
mirror of https://github.com/solokeys/openpgp.git synced 2026-03-11 17:15:00 -07:00
Code Issues Packages Projects Releases Wiki Activity
371 Commits 2 Branches 0 Tags
bugfixes
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Conor Patrick 9ae712eba2 do not support all ecdsa curves
2019-12-17 14:45:15 -08:00
gtest
add make test for goole test directory
2019-10-14 23:09:14 +03:00
libs
do not support all ecdsa curves
2019-12-17 14:45:15 -08:00
obj
make works
2019-07-01 10:39:32 -07:00
pc
spiffs integration
2019-11-26 00:45:50 +02:00
pytest
do not support all ecdsa curves
2019-12-17 14:45:15 -08:00
src
fix crash with freeing ecdh structure
2019-12-17 14:44:52 -08:00
.gitignore
gitignore
2019-09-25 20:37:48 +03:00
.gitmodules
added spiffs
2019-11-25 20:21:05 +02:00
card_reader.py
first commit
2019-05-17 17:09:44 -04:00
Makefile
fix spiffs compile
2019-12-17 14:41:11 -08:00
README.md
Update README.md
2019-10-30 20:57:39 +02:00

README.md

This repository contains a portable implementation for OpenPGP and will be able to run on PC for testing and development, and can run on Solo.

Requirements

This should run fine on Linux, OS X, or Ubuntu on Windows.

Set up

Clone Gnuk to get their testing suite. Note, there are symlinks in the repo, so make sure you clone using a *nix environment!

git clone https://github.com/solokeys/openpgp.git

Install Python test tools to run Gnuk tests.

sudo apt install python3-pytest python3-usb python3-cffi libmbedtls-dev

Build our CCID/OpenPGP application

make

Running

In one terminal, run our CCID/OpenPGP application.

./main

In another terminal:

connect it via USBIP

sudo usbip attach -r 127.0.0.1 -b 1-1
kill pcscd (somehow)

run python test suite.

cd pytest 
sudo py.test-3 -s -x

Work with USBIP

Setup

sudo mkdir /usr/share/hwdata
sudo cp /var/lib/usbutils/usb.ids /usr/share/hwdata/usb.ids

init commands

sudo modprobe vhci-hcd  (once after reboot!!!)
sudo usbip attach -r 127.0.0.1 -b 1-1
sudo lsusb -d 072f:90cc -v

Check if all is in working state

pcsc_scan
gpg2 --card-edit (command line: admin, list, name, lang, generate)
gpg2 --card-edit --expert (admin, key-attr)

list devices:

usbip list -r 127.0.0.1
or
usbip list -l

gpg export keys

To get a simple file of your public key, you can just use 
gpg2 --armor --export keyID > pubkey.asc
gpg2 --output pubkey.pgp --armor --export keyID
gpg2 --armor --export-secret-key keyID > privatekey.asc
gpg2 --output backupkeys.pgp --armor --export --export-options export-backup user@email

gpg import keys from card

gpg2 --import pubkey.asc
gpg --card-status
gpg --list-secret

Google test

Test some critical parts of code

install

sudo apt-get install libgtest-dev

check

cd gtest

make test

TODO

  1. Change name from Applet to Application
  2. test via virtual USB in linux
  3. Add tests for:
  • init card at the begining of tests
  • access rights to commands and DO
  • refactor some tests and change some "magic" values in them
  • test RSA4096 generation and increase interface timeouts
  1. Add tests and functionality for:
  • ECDSA
  • reset card
  • user DO (0101-0104) and check access rights
  • add user DO length check
  • add checking algorithm attributes. ECDSA curves and deny access ECDSA for decipher.
  • PSO:ENCIPHER and DECIPHER with AES
  • check AES key length
  • ECDH for standard curves
  • Secure messaging????
  • ALGO_ED25519 (EdDSA), ALGO_CURVE25519(ECDH)???
Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme 2 MiB
Languages
C 80.5%
C++ 14.4%
Python 5%