Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | cryptenroll: Implement support for unlocking via FIDO2 tokens | Peter Cai | 2022-12-22 | 1 | -0/+8 |
| | | | | | | | | | | | | This allows FIDO2 users to wipe out password slots and still be able to enroll new key slots via systemd-cryptenroll. Note that when the user wants to both unlock with a FIDO2 token and enroll a new FIDO2 token, they cannot be set to automatic discovery. This is to safeguard against confusion, because there will be multiple tokens connected to the system when doing so -- and we require users to explicitly confirm which one to use for unlocking and which one to use for enrollment. Addresses #20230 for the FIDO2 case. | ||||
* | tree-wide: use -EINVAL for enum invalid values | Zbigniew Jędrzejewski-Szmek | 2021-02-10 | 1 | -2/+4 |
| | | | | | | | | | As suggested in https://github.com/systemd/systemd/pull/11484#issuecomment-775288617. This does not touch anything exposed in src/systemd. Changing the defines there would be a compatibility break. Note that tests are broken after this commit. They will be fixed in the next one. | ||||
* | cryptenroll: support listing and wiping tokens | Lennart Poettering | 2020-12-17 | 1 | -0/+26 |