[−][src]Struct yubikey_piv::yubikey::YubiKey
YubiKey Device: this is the primary API for opening a session and performing various operations.
Almost all functionality in this library will require an open session with a YubiKey which is represented by this type.
Methods
impl YubiKey[src]
pub fn open() -> Result<Self, Error>[src]
Open a connection to a YubiKey.
Returns an error if there is more than one YubiKey detected.
If you need to operate in environments with more than one YubiKey
attached to the same system, use [yubikey_piv::Readers] to select
from the available PC/SC readers connected.
pub fn reconnect(&mut self) -> Result<(), Error>[src]
Reconnect to a YubiKey
pub fn version(&mut self) -> Version[src]
Get the YubiKey's PIV application version.
This always uses the cached version queried when the key is initialized.
pub fn serial(&mut self) -> Serial[src]
Get YubiKey device serial number.
This always uses the cached version queried when the key is initialized.
pub fn device_model(&self) -> u32[src]
Get YubiKey device model
pub fn authenticate(&mut self, mgm_key: MgmKey) -> Result<(), Error>[src]
Authenticate to the card using the provided management key (MGM).
pub fn deauthenticate(&mut self) -> Result<(), Error>[src]
Deauthenticate
pub fn sign_data(
&mut self,
raw_in: &[u8],
algorithm: AlgorithmId,
key: SlotId
) -> Result<Zeroizing<Vec<u8>>, Error>[src]
&mut self,
raw_in: &[u8],
algorithm: AlgorithmId,
key: SlotId
) -> Result<Zeroizing<Vec<u8>>, Error>
Sign data using a PIV key
pub fn decrypt_data(
&mut self,
input: &[u8],
algorithm: AlgorithmId,
key: SlotId
) -> Result<Zeroizing<Vec<u8>>, Error>[src]
&mut self,
input: &[u8],
algorithm: AlgorithmId,
key: SlotId
) -> Result<Zeroizing<Vec<u8>>, Error>
Decrypt data using a PIV key
pub fn verify_pin(&mut self, pin: &[u8]) -> Result<(), Error>[src]
Verify device PIN.
pub fn get_pin_retries(&mut self) -> Result<u8, Error>[src]
Get the number of PIN retries
pub fn set_pin_retries(
&mut self,
pin_tries: u8,
puk_tries: u8
) -> Result<(), Error>[src]
&mut self,
pin_tries: u8,
puk_tries: u8
) -> Result<(), Error>
Set the number of PIN retries
pub fn change_pin(
&mut self,
current_pin: &[u8],
new_pin: &[u8]
) -> Result<(), Error>[src]
&mut self,
current_pin: &[u8],
new_pin: &[u8]
) -> Result<(), Error>
Change the Personal Identification Number (PIN).
The default PIN code is 123456
pub fn set_pin_last_changed(yubikey: &mut YubiKey) -> Result<(), Error>[src]
Set PIN last changed
pub fn change_puk(
&mut self,
current_puk: &[u8],
new_puk: &[u8]
) -> Result<(), Error>[src]
&mut self,
current_puk: &[u8],
new_puk: &[u8]
) -> Result<(), Error>
Change the PIN Unblocking Key (PUK). PUKs are codes for resetting lost/forgotten PINs, or devices that have become blocked because of too many failed attempts.
The PUK is part of the PIV standard that the YubiKey follows.
The default PUK code is 12345678.
pub fn block_puk(yubikey: &mut YubiKey) -> Result<(), Error>[src]
Block PUK: permanently prevent the PIN from becoming unblocked
pub fn unblock_pin(&mut self, puk: &[u8], new_pin: &[u8]) -> Result<(), Error>[src]
Unblock a Personal Identification Number (PIN) using a previously configured PIN Unblocking Key (PUK).
pub fn fetch_object(
&mut self,
object_id: ObjectId
) -> Result<Zeroizing<Vec<u8>>, Error>[src]
&mut self,
object_id: ObjectId
) -> Result<Zeroizing<Vec<u8>>, Error>
Fetch an object from the YubiKey
pub fn save_object(
&mut self,
object_id: ObjectId,
indata: &mut [u8]
) -> Result<(), Error>[src]
&mut self,
object_id: ObjectId,
indata: &mut [u8]
) -> Result<(), Error>
Save an object
pub fn import_private_key(
&mut self,
key: SlotId,
algorithm: AlgorithmId,
p: Option<&[u8]>,
q: Option<&[u8]>,
dp: Option<&[u8]>,
dq: Option<&[u8]>,
qinv: Option<&[u8]>,
ec_data: Option<&[u8]>,
pin_policy: u8,
touch_policy: u8
) -> Result<(), Error>[src]
&mut self,
key: SlotId,
algorithm: AlgorithmId,
p: Option<&[u8]>,
q: Option<&[u8]>,
dp: Option<&[u8]>,
dq: Option<&[u8]>,
qinv: Option<&[u8]>,
ec_data: Option<&[u8]>,
pin_policy: u8,
touch_policy: u8
) -> Result<(), Error>
Import a private encryption or signing key into the YubiKey
pub fn attest(&mut self, key: SlotId) -> Result<Zeroizing<Vec<u8>>, Error>[src]
Generate an attestation certificate for a stored key. https://developers.yubico.com/PIV/Introduction/PIV_attestation.html
pub fn get_auth_challenge(&mut self) -> Result<[u8; 8], Error>[src]
Get an auth challenge
pub fn verify_auth_response(&mut self, response: [u8; 8]) -> Result<(), Error>[src]
Verify an auth response
pub fn reset_device(&mut self) -> Result<(), Error>[src]
Reset YubiKey.
WARNING: this is a destructive operation which will destroy all keys!
The reset function is only available when both pins are blocked.
Trait Implementations
Auto Trait Implementations
impl Send for YubiKey
impl Sync for YubiKey
impl Unpin for YubiKey
impl UnwindSafe for YubiKey
impl RefUnwindSafe for YubiKey
Blanket Implementations
impl<T> From<T> for T[src]
impl<T, U> Into<U> for T where
U: From<T>, [src]
U: From<T>,
impl<T, U> TryFrom<U> for T where
U: Into<T>, [src]
U: Into<T>,
type Error = !
The type returned in the event of a conversion error.
fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>[src]
impl<T, U> TryInto<U> for T where
U: TryFrom<T>, [src]
U: TryFrom<T>,
type Error = <U as TryFrom<T>>::Error
The type returned in the event of a conversion error.
fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>[src]
impl<T> Borrow<T> for T where
T: ?Sized, [src]
T: ?Sized,
impl<T> BorrowMut<T> for T where
T: ?Sized, [src]
T: ?Sized,
fn borrow_mut(&mut self) -> &mut T[src]
impl<T> Any for T where
T: 'static + ?Sized, [src]
T: 'static + ?Sized,
impl<T> Same<T> for T
type Output = T
Should always be Self