Skip to content
This repository has been archived by the owner on Jun 3, 2020. It is now read-only.

Initial YubiHSM2 support #56

Merged
merged 1 commit into from
Oct 11, 2018
Merged

Initial YubiHSM2 support #56

merged 1 commit into from
Oct 11, 2018

Conversation

tony-iqlusion
Copy link
Contributor

@tony-iqlusion tony-iqlusion commented Sep 21, 2018
edited by tarcieri
Loading

Adds a yubihsm cargo feature with support for generating signatures using Ed25519 keys stored in YubiHSM2 devices (accessed via USB).

Also adds a set of yubihsm subcommands:

  • detect: print a list of detected YubiHSM2 devices and their serials
  • keys generate: generate an Ed25519 key within the YubiHSM2
  • keys list: list the keys within the YubiHSM2

@tarcieri tarcieri force-pushed the yubihsm branch 2 times, most recently from ac45d24 to 97ce715 Compare September 21, 2018 19:19
tony-iqlusion
tony-iqlusion commented Sep 21, 2018
View reviewed changes
src/commands/yubihsm/mod.rs
YubihsmCommand::Detect(detect) => detect.call(),
YubihsmCommand::Help(help) => help.call(),
YubihsmCommand::Keygen(keygen) => keygen.call(),
YubihsmCommand::Keys(keys) => keys.call(),
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I should probably make this work as close to how gaiacli keys works today, and have yubihsm keys new in lieu of yubihsm keygen. How about:

  • yubihsm keys or yubihsm keys list: lists keys
  • yubihsm keys generate: generates a new key
  • yubihsm keys delete: delete an existing key
  • yubihsm keys show: show detailed information about a key
  • yubihsm keys export: export a key under keywrap
  • yubihsm keys import: import a key under keywrap

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

so excited to try this :)

@tarcieri tarcieri mentioned this pull request Sep 21, 2018
Closed
@tarcieri tarcieri mentioned this pull request Oct 10, 2018
Closed
@tarcieri tarcieri force-pushed the yubihsm branch 3 times, most recently from 316ad04 to 96b9633 Compare October 11, 2018 17:57
@tony-iqlusion
Initial YubiHSM2 support
cf13ac7 
Adds a `yubihsm` cargo feature with support for generating signatures
using Ed25519 keys stored in YubiHSM2 devices (accessed via USB).

Also adds a set of `yubihsm` subcommands:

- `detect`: print a list of detected YubiHSM2 devices and their serials
- `keys generate`: generate an Ed25519 key within the YubiHSM2
- `keys list`: list the keys within the YubiHSM2
@tarcieri tarcieri merged commit 6a36d7d into master Oct 11, 2018
@tarcieri tarcieri deleted the yubihsm branch October 11, 2018 18:16
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@zramsay zramsay zramsay left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@tony-iqlusion @zramsay @tarcieri