madhogs
commented
2 months ago Thanks for looking into this :smile: Tested on my physical watch and the normal mode works great :partying_face:, tested with lots of very long 128 character secrets and again with my real secrets and everything worked well. Codes produced were correct and no memory issues, I also didn't see any filesystem issues at all with this code (previously i had to reformat it each time anything went wrong).
The 'secure mode' however did not work as expected, even with just 2 short example codes when activated it would work whilst remaining on that face however when moving away from the totp_lfs face and back again the watch would reset, which would then load 'no codes' as the file has been deleted.
I hope you don't mind me saying as it is a nice idea but considering the memory restrictions on the physical watch do you think it is worth keeping this 'secure mode'? Even in the best case I imagine it could only handle a few secrets before the watch would run out of memory.
wryun
This should fix #392
I've refactored this so it doesn't allocate the secrets on startup, but instead reads them from lfs each time. Not a fan of the filesystem API here... (would be so much more efficient if I had easy access to the underlying seek/read and could just leave the file open, but putting all that in this PR seemed like overkill).
I've also added a 'secure mode' which lets you remove from the secrets from the flash (see doco in header).
@madhogs - I haven't tried this on a real watch yet, so if you want to be a guinea pig that would be awesome :)