diff options
| author | Lennart Poettering <lennart@poettering.net> | 2021-05-27 18:47:48 +0200 |
|---|---|---|
| committer | Lennart Poettering <lennart@poettering.net> | 2021-05-28 16:36:25 +0200 |
| commit | 0735ed950a8a8c476dc7760eb294e3048a253369 (patch) | |
| tree | cd428c03683a5241be69fce47ed317dbc6fe70e1 /src/cryptenroll | |
| parent | 304e637c88aec54bec8a741605b05b208b95a11a (diff) | |
| download | systemd-0735ed950a8a8c476dc7760eb294e3048a253369.tar.gz | |
cryptenroll: handle FIDO2 tokens gracefully that lack requested features
Let's try to handle keys gracefully that do not implement all features
we ask for: simply turn the feature off, and continue.
This is in particular relevant since we enroll with PIN and UP by
default, and on devices that don't support that we should just work.
Replaces: #18509
Diffstat (limited to 'src/cryptenroll')
| -rw-r--r-- | src/cryptenroll/cryptenroll-fido2.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/src/cryptenroll/cryptenroll-fido2.c b/src/cryptenroll/cryptenroll-fido2.c index 3ba7866738..fbf76ee586 100644 --- a/src/cryptenroll/cryptenroll-fido2.c +++ b/src/cryptenroll/cryptenroll-fido2.c @@ -45,7 +45,8 @@ int enroll_fido2( &cid, &cid_size, &salt, &salt_size, &secret, &secret_size, - NULL); + NULL, + &lock_with); if (r < 0) return r; |