Cloonar/nixos
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix ykfde_enroll

Browse Source
This commit is contained in:
Dominik Polakovics Polakovics
2023-11-22 17:50:59 +01:00
parent bfdff27021
commit 12c05e146c
1 changed files with 6 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
utils/pkgs/ykfde/scripts/ykfde_enroll
View File

@@ -20,11 +20,14 @@ YKFDE_STORAGE=/boot/crypt-storage/default
YKFDE_SLOT_CHECK="$(ykinfo -q -"$YKFDE_SLOT")" YKFDE_SLOT_CHECK="$(ykinfo -q -"$YKFDE_SLOT")"
printf '%s\n' " > YubiKey slot status 'ykinfo -q -$YKFDE_SLOT': $YKFDE_SLOT_CHECK" printf '%s\n' " > YubiKey slot status 'ykinfo -q -$YKFDE_SLOT': $YKFDE_SLOT_CHECK"
if [ "$YKFDE_SLOT_CHECK" != 1 ]; then if [ "$(ykinfo -q -"$YKFDE_SLOT")" != 1 ]; then
printf '%s\n' "ERROR: Chosen YubiKey slot '$YKFDE_SLOT' isn't configured. Please choose slot configured for 'HMAC-SHA1 Challenge-Response' mode in '/etc/ykfde.conf'" printf '%s\n' "ERROR: Chosen YubiKey slot '$YKFDE_SLOT' isn't configured. Please insert a YubiKey with the slot configured for 'HMAC-SHA1 Challenge-Response'."
exit 1
fi fi
while [ "$(ykinfo -q -"$YKFDE_SLOT")" != 1 ]
do
done
YKFDE_SALT="$(dd if=/dev/random bs=1 count=$YKFDE_SALT_LENGTH 2>/dev/null | rbtohex)" YKFDE_SALT="$(dd if=/dev/random bs=1 count=$YKFDE_SALT_LENGTH 2>/dev/null | rbtohex)"
if [ -f "$YKFDE_STORAGE" ]; then if [ -f "$YKFDE_STORAGE" ]; then
YKFDE_SALT="$(head -1 $YKFDE_STORAGE)" YKFDE_SALT="$(head -1 $YKFDE_STORAGE)"