nickray
commented
4 years ago I have no LUKS nor initrd experience, just know that https://github.com/shimunn/fido2luks exists.
Closed saravanan30erd closed 3 years ago
nickray
commented
4 years ago I have no LUKS nor initrd experience, just know that https://github.com/shimunn/fido2luks exists.
saravanan30erd
commented
3 years ago @nickray thanks, I used this tool to create hook for initrd in Arch linux.
https://github.com/saravanan30erd/solokey-full-disk-encryption/blob/master/hooks/skfde
Looks like solokey is not detected in initrd stage, getting No such device or address (os error 6)
saravanan30erd
commented
3 years ago issue related to the tool, not about the device. closing the issue
coelner
I am trying to use its challenge response method for unlocking a LUKS-encrypted drive (encrypt complete / partition except /boot partition).
I tried to create custom hook(in Arch Linux) for solokey, challenge-response will be performed during booting sequence. The solokey tool is a python package, I tried to include the python & solo in custom hook on initrd image(using mkinitcpio) but facing issues related to python.
Since yubikey (ykchalresp) tool is a simple binary, its straightforward to include ykchalresp in initrd image(https://github.com/agherzan/yubikey-full-disk-encryption/blob/master/src/install/ykfde). But solokey is only available as python package, facing difficulty including python&solo in initrd image for Arch Linux. https://github.com/saravanan30erd/solokey-full-disk-encryption/blob/master/skfde-install
Is it any other tool(simple binary same as ykchalresp) for solokey?