Make the passphrase prompt configurable

Closes cornelinux#11
ageis · May 15, 2017 · 61a682d · 61a682d
1 parent 43d47d2
commit 61a682d
Show file tree

Hide file tree

Showing 7 changed files with 30 additions and 4 deletions.
diff --git a/Makefile b/Makefile
@@ -3,7 +3,7 @@ info:
 	@echo "ppa-dev       - upload to ppa launchpad. Development"
 	@echo "ppa	     - upload to ppa launchpad. Stable"
 
-VERSION=0.4
+VERSION=0.4.1
 SRC_DIR = yubikey_luks.orig
 
 debianize:

diff --git a/README.md b/README.md
@@ -35,8 +35,6 @@ You can now assign the Yubikey to a slot using the tool
 
 	yubikey-luks-enroll
 
-Note: The partition is hardcoded in yubikey-luks-enroll. You might need to change this!
-
 Technically this is done by writing the response to your password (1st factor
 knowlege) created by the Yubikey (2nd factor possession) to a key slot.
 
@@ -45,6 +43,18 @@ this:
 	bd438575f4e8df965c80363f8aa6fe1debbe9ea9
 it can be used as normal password.
 
+Changing the welcome text
+-------------------------
+
+If you want to change the welcome text a.k.a. the passphrase prompt you can edit
+the file /etc/ykluks.cfg.
+
+After changing this file, you need to run
+
+  update-initramfs -u
+
+so that the changes get transferred to the initramfs.
+
 Manage several Yubikeys and Machines
 ------------------------------------
 

diff --git a/debian/changelog b/debian/changelog
@@ -1,3 +1,9 @@
+yubikey-luks (0.4.1-1) trusty; urgency=low
+
+  * Make the passphrase welcome text configurable in /etc/ykluks.cfg
+
+ -- Cornelius Kölbel <cornelius.koelbel@netknights.it>  Mon, 15 Mar 2017 12:49:00 +0200
+
 yubikey-luks (0.4-1) trusty; urgency=low
 
   * Fix typo in program name

diff --git a/debian/rules b/debian/rules
@@ -11,3 +11,4 @@ override_dh_install:
 	install -D -o root -g root -m755 key-script debian/yubikey-luks/usr/share/yubikey-luks/ykluks-keyscript
 	install -D -o root -g root -m755 yubikey-luks-enroll debian/yubikey-luks/usr/bin/yubikey-luks-enroll
 	install -D -o root -g root -m644 yubikey-luks-enroll.1 debian/yubikey-luks/usr/man/man1/yubikey-luks-enroll.1
+	install -D -o root -g root -m644 ykluks.cfg debian/yubikey-luks/etc/ykluks.cfg
diff --git a/hook b/hook
@@ -20,4 +20,5 @@ esac
 
 copy_exec /usr/bin/ykchalresp
 cp /usr/share/yubikey-luks/ykluks-keyscript "${DESTDIR}/sbin/ykluks-keyscript"
+cp /etc/ykluks.cfg "${DESTDIR}/etc/ykluks.cfg"
 exit 0
diff --git a/key-script b/key-script
@@ -3,6 +3,11 @@
 # This is /sbin/ykluks-keyscript, which gets called when unlocking the disk
 #
 set -e
+. /etc/ykluks.cfg
+
+if [ -z "$WELCOME_TEXT" ]; then
+    WELCOME_TEXT="Please insert yubikey and press enter or enter a valid passphrase"
+fi
 
 message()
 {
@@ -34,7 +39,7 @@ if [ -z "$cryptkeyscript" ]; then
     fi
 fi
 
-PW="$($cryptkeyscript "Please insert yubikey and press enter or enter a valid passphrase")"
+PW="$($cryptkeyscript "$WELCOME_TEXT")"
 
 if check_yubikey_present; then
 	message "Accessing yubikey..."

diff --git a/ykluks.cfg b/ykluks.cfg
@@ -0,0 +1,3 @@
+# If you change this file, you need to run 
+#   update-initramfs -u
+WELCOME_TEXT="Please insert yubikey and press enter or enter a valid passphrase"