git.ipfire.org Git - thirdparty/systemd.git/commit - src/libsystemd/sd-bus/bus-common-errors.h

author	Lennart Poettering <lennart@poettering.net>
	Mon, 17 Aug 2020 16:19:13 +0000 (18:19 +0200)
committer	Lennart Poettering <lennart@poettering.net>
	Tue, 25 Aug 2020 16:14:55 +0000 (18:14 +0200)
commit	87d7893cfbdebc86f7d47d090231ca58d44a1e01
tree	c5884a4482d5f97f1df05054e59128a25b0551fa	tree \| snapshot
parent	aecbc87df4b51e879cd8dfd753c0e55065b5b338	commit \| diff

homed: support recovery keys

For discussion around this see: https://pagure.io/fedora-workstation/issue/82

Recovery keys for homed are very similar to regular passwords, except
that they are exclusively generated by the computer, and not chosen by
the user. The idea is that they are printed or otherwise stored
externally and not what users type in every day.

Taking inspiration from Windows and MacOS this uses 256bit keys. We
format them in 64 yubikey modhex characters, in groups of 8 chars
separated by dashes.

Why yubikey modhex? modhex only uses characters that are are located at
the same place in western keyboard designs. This should reduce the
chance for incorrect inputs for a major chunk of our users, though
certainly not all. This is particular relevant during early boot and
recovery situations, where there's a good chance the keyboard mapping is
not correctly set up.

src/home/homed-home.c		diff \| blob \| blame \| history
src/home/homework.c		diff \| blob \| blame \| history
src/home/user-record-util.c		diff \| blob \| blame \| history
src/home/user-record-util.h		diff \| blob \| blame \| history
src/libsystemd/sd-bus/bus-common-errors.h		diff \| blob \| blame \| history