shimun/fido2luks
1
0
Fork 0
Code Issues Pull Requests 3 Releases Wiki Activity

include password
Some checks failed
continuous-integration/drone/push Build is failing
Details

Browse Source
This commit is contained in:
shimun 2020-09-25 01:19:47 +02:00
parent d4094b8a6a
commit 985f6f664b
Signed by: shimun
GPG Key ID: E81D8382DC2F971B
1 changed files with 12 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
src/lib.rs
View File

@ -79,13 +79,16 @@ impl PamFido2Luks {
.collect(); .collect();
let credentials: Vec<&FidoCredential> = credentials.iter().collect(); let credentials: Vec<&FidoCredential> = credentials.iter().collect();
if !credentials.is_empty() { if !credentials.is_empty() {
let secret = util::sha256(&[&perform_challenge( let secret = util::sha256(&[
&credentials[..], password.as_bytes(),
&util::sha256(&[password.as_bytes()]), &perform_challenge(
Duration::from_secs(15), &credentials[..],
pin.map(AsRef::as_ref), &util::sha256(&[password.as_bytes()]),
)? Duration::from_secs(15),
.0[..]]); pin.map(AsRef::as_ref),
)?
.0[..],
]);
device.activate(name.as_str(), &secret[..], None)?; device.activate(name.as_str(), &secret[..], None)?;
} else { } else {
unimplemented!("custom error") unimplemented!("custom error")
@ -112,11 +115,11 @@ impl PamServiceModule for PamFido2Luks {
Ok(_) => PamError::SUCCESS, Ok(_) => PamError::SUCCESS,
Err(e) => match e { Err(e) => match e {
//TODO: output more detailed error //TODO: output more detailed error
_ => dbg!(PamError::AUTH_ERR), _ => PamError::AUTH_ERR,
}, },
} }
} else { } else {
dbg!(PamError::AUTH_ERR) PamError::AUTH_ERR
} }
} }
} }