Re: [OATH-Toolkit-help] PSKC file locking

oath-toolkit-help

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [OATH-Toolkit-help] PSKC file locking

From:	David Woodhouse
Subject:	Re: [OATH-Toolkit-help] PSKC file locking
Date:	Thu, 14 Aug 2014 14:58:21 +0100

On Thu, 2014-08-14 at 13:31 +0200, Simon Josefsson wrote:
> First let's take a step.  Why do you want to increment the counter and
> save it back to the same file, in a concurrent-safe way?  Are you using
> the PSKC file as the "live" database format in some application?

Yes. Sorry, I should have made it clear that this I'm looking at the
*client* side.

The OpenConnect VPN client can automatically fill in password fields
with tokencodes from RSA SecurID, TOTP and HOTP tokens:
http://www.infradead.org/openconnect/token.html

For SecurID and TOTP it's fairly simple as the token data are read-only.
But with HOTP we need to increment the counter. Hence the requirement
for writing it back to the file, with appropriate locking in case there
are multiple concurrent users of the token.

-- 
David Woodhouse                            Open Source Technology Centre
address@hidden                              Intel Corporation

smime.p7s
Description: S/MIME cryptographic signature

[Prev in Thread]

Current Thread

[Next in Thread]

[OATH-Toolkit-help] PSKC file locking, David Woodhouse, 2014/08/14
- Re: [OATH-Toolkit-help] PSKC file locking, Simon Josefsson, 2014/08/14
  - Re: [OATH-Toolkit-help] PSKC file locking, David Woodhouse <=
    - Re: [OATH-Toolkit-help] PSKC file locking, Simon Josefsson, 2014/08/14
    - Re: [OATH-Toolkit-help] PSKC file locking, David Woodhouse, 2014/08/14

Prev by Date: Re: [OATH-Toolkit-help] pskc_build_xml() use-after-free
Next by Date: Re: [OATH-Toolkit-help] PSKC file locking
Previous by thread: Re: [OATH-Toolkit-help] PSKC file locking
Next by thread: Re: [OATH-Toolkit-help] PSKC file locking
Index(es):
- Date
- Thread