From 9a2d94dd27ce5ff59db698828a3a8b7e35d23e1b Mon Sep 17 00:00:00 2001 From: Antonio Alvarez Feijoo Date: Thu, 9 Jun 2022 11:47:10 +0200 Subject: bash-completion: add systemd-cryptenroll support --- shell-completion/bash/meson.build | 1 + shell-completion/bash/systemd-cryptenroll | 102 ++++++++++++++++++++++++++++++ 2 files changed, 103 insertions(+) create mode 100644 shell-completion/bash/systemd-cryptenroll diff --git a/shell-completion/bash/meson.build b/shell-completion/bash/meson.build index fb7314348a..04945e28d6 100644 --- a/shell-completion/bash/meson.build +++ b/shell-completion/bash/meson.build @@ -43,6 +43,7 @@ items = [['busctl', ''], ['oomctl', 'ENABLE_OOMD'], ['portablectl', 'ENABLE_PORTABLED'], ['resolvectl', 'ENABLE_RESOLVE'], + ['systemd-cryptenroll', 'HAVE_LIBCRYPTSETUP'], ['systemd-resolve', 'ENABLE_RESOLVE'], ['timedatectl', 'ENABLE_TIMEDATED']] diff --git a/shell-completion/bash/systemd-cryptenroll b/shell-completion/bash/systemd-cryptenroll new file mode 100644 index 0000000000..10a35ccaac --- /dev/null +++ b/shell-completion/bash/systemd-cryptenroll @@ -0,0 +1,102 @@ +# systemd-cryptenroll(1) completion -*- shell-script -*- +# SPDX-License-Identifier: LGPL-2.1-or-later +# +# This file is part of systemd. +# +# systemd is free software; you can redistribute it and/or modify it +# under the terms of the GNU Lesser General Public License as published by +# the Free Software Foundation; either version 2.1 of the License, or +# (at your option) any later version. +# +# systemd is distributed in the hope that it will be useful, but +# WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU +# General Public License for more details. +# +# You should have received a copy of the GNU Lesser General Public License +# along with systemd; If not, see . + +__contains_word() { + local w word=$1; shift + for w in "$@"; do + [[ $w = "$word" ]] && return + done +} + +__get_fido2_devices() { + local i + for i in /dev/hidraw*; do + [ -c "$i" ] && printf '%s\n' "$i" + done +} + +__get_tpm2_devices() { + local i + for i in /dev/tpmrm*; do + [ -c "$i" ] && printf '%s\n' "$i" + done +} + +__get_block_devices() { + local i + for i in /dev/*; do + [ -b "$i" ] && printf '%s\n' "$i" + done +} + +_systemd-cryptenroll() { + local comps + local cur=${COMP_WORDS[COMP_CWORD]} prev=${COMP_WORDS[COMP_CWORD-1]} words cword + local -A OPTS=( + [STANDALONE]='-h --help --version + --password --recovery-key' + [ARG]='--pkcs11-token-uri + --fido2-credential-algorithm + --fido2-device + --fido2-with-client-pin + --fido2-with-user-presence + --fido2-with-user-verification + --tpm2-device + --tpm2-pcrs + --tpm2-with-pin + --wipe-slot' + ) + + _init_completion || return + + if __contains_word "$prev" ${OPTS[ARG]}; then + case $prev in + --pkcs11-token-uri) + comps='auto list pkcs11:' + ;; + --fido2-credential-algorithm) + comps='es256 rs256 eddsa' + ;; + --fido2-device) + comps="auto list $(__get_fido2_devices)" + ;; + --fido2-with-client-pin|--fido2-with-user-presence|--fido2-with-user-verification|--tpm2-with-pin) + comps='yes no' + ;; + --tpm2-device) + comps="auto list $(__get_tpm2_devices)" + ;; + --wipe-slot) + comps='all empty password recovery pkcs11 fido2 tpm2' + ;; + esac + COMPREPLY=( $(compgen -W '$comps' -- "$cur") ) + return 0 + fi + + if [[ "$cur" = -* ]]; then + COMPREPLY=( $(compgen -W '${OPTS[*]}' -- "$cur") ) + return 0 + fi + + comps=$(__get_block_devices) + COMPREPLY=( $(compgen -W '$comps' -- "$cur") ) + return 0 +} + +complete -F _systemd-cryptenroll systemd-cryptenroll -- cgit v1.2.1