mirror of
https://github.com/systemd/systemd.git
synced 2025-01-24 06:04:05 +03:00
2ccacdd57c
And also use it to list suitable block devices.
118 lines
3.7 KiB
Bash
118 lines
3.7 KiB
Bash
# shellcheck shell=bash
|
|
# systemd-cryptenroll(1) completion -*- shell-script -*-
|
|
# SPDX-License-Identifier: LGPL-2.1-or-later
|
|
#
|
|
# This file is part of systemd.
|
|
#
|
|
# systemd is free software; you can redistribute it and/or modify it
|
|
# under the terms of the GNU Lesser General Public License as published by
|
|
# the Free Software Foundation; either version 2.1 of the License, or
|
|
# (at your option) any later version.
|
|
#
|
|
# systemd is distributed in the hope that it will be useful, but
|
|
# WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
# General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU Lesser General Public License
|
|
# along with systemd; If not, see <https://www.gnu.org/licenses/>.
|
|
|
|
__contains_word() {
|
|
local w word=$1; shift
|
|
for w in "$@"; do
|
|
[[ $w = "$word" ]] && return
|
|
done
|
|
}
|
|
|
|
__get_fido2_devices() {
|
|
local i
|
|
for i in /dev/hidraw*; do
|
|
[ -c "$i" ] && printf '%s\n' "$i"
|
|
done
|
|
}
|
|
|
|
__get_tpm2_devices() {
|
|
local i
|
|
for i in /dev/tpmrm*; do
|
|
[ -c "$i" ] && printf '%s\n' "$i"
|
|
done
|
|
}
|
|
|
|
_systemd_cryptenroll() {
|
|
local comps
|
|
local cur=${COMP_WORDS[COMP_CWORD]} prev=${COMP_WORDS[COMP_CWORD-1]} words cword
|
|
local -A OPTS=(
|
|
[STANDALONE]='-h --help --version
|
|
--password --recovery-key --list-devices'
|
|
[ARG]='--unlock-key-file
|
|
--unlock-fido2-device
|
|
--unlock-tpm2-device
|
|
--pkcs11-token-uri
|
|
--fido2-credential-algorithm
|
|
--fido2-device
|
|
--fido2-salt-file
|
|
--fido2-parameters-in-header
|
|
--fido2-with-client-pin
|
|
--fido2-with-user-presence
|
|
--fido2-with-user-verification
|
|
--tpm2-device
|
|
--tpm2-device-key
|
|
--tpm2-seal-key-handle
|
|
--tpm2-pcrs
|
|
--tpm2-public-key
|
|
--tpm2-public-key-pcrs
|
|
--tpm2-signature
|
|
--tpm2-with-pin
|
|
--tpm2-pcrlock
|
|
--wipe-slot'
|
|
)
|
|
|
|
_init_completion || return
|
|
|
|
if __contains_word "$prev" ${OPTS[ARG]}; then
|
|
case $prev in
|
|
--unlock-key-file|--fido2-salt-file|--tpm2-device-key|--tpm2-public-key|--tpm2-signature|--tpm2-pcrlock)
|
|
comps=$(compgen -A file -- "$cur")
|
|
compopt -o filenames
|
|
;;
|
|
--unlock-fido2-device)
|
|
comps="auto $(__get_fido2_devices)"
|
|
;;
|
|
--unlock-tpm2-device)
|
|
comps="auto $(__get_tpm2_devices)"
|
|
;;
|
|
--pkcs11-token-uri)
|
|
comps='auto list pkcs11:'
|
|
;;
|
|
--fido2-credential-algorithm)
|
|
comps='es256 rs256 eddsa'
|
|
;;
|
|
--fido2-device)
|
|
comps="auto list $(__get_fido2_devices)"
|
|
;;
|
|
--fido2-parameters-in-header|--fido2-with-client-pin|--fido2-with-user-presence|--fido2-with-user-verification|--tpm2-with-pin)
|
|
comps='yes no'
|
|
;;
|
|
--tpm2-device)
|
|
comps="auto list $(__get_tpm2_devices)"
|
|
;;
|
|
--wipe-slot)
|
|
comps='all empty password recovery pkcs11 fido2 tpm2'
|
|
;;
|
|
esac
|
|
COMPREPLY=( $(compgen -W '$comps' -- "$cur") )
|
|
return 0
|
|
fi
|
|
|
|
if [[ "$cur" = -* ]]; then
|
|
COMPREPLY=( $(compgen -W '${OPTS[*]}' -- "$cur") )
|
|
return 0
|
|
fi
|
|
|
|
comps=$(systemd-cryptenroll --list-devices)
|
|
COMPREPLY=( $(compgen -W '$comps' -- "$cur") )
|
|
return 0
|
|
}
|
|
|
|
complete -F _systemd_cryptenroll systemd-cryptenroll
|