mirrors/lazygit
1
0
Fork 0
mirror of https://github.com/jesseduffield/lazygit.git synced 2025-05-10 20:05:50 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Prompt for PIN on tpm-backed ssh keys

Browse source
This commit is contained in:
oliverpool 2024-10-29 20:40:15 +01:00
parent a0dd3bec8e
commit ed73e514d0
2 changed files with 11 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

7
pkg/commands/oscommands/cmd_obj_runner.go
View file

@ -376,8 +376,11 @@ func (self *cmdObjRunner) getCheckForCredentialRequestFunc() func([]byte) (Crede
`Password\s*for\s*'.+':`: Password,
`Username\s*for\s*'.+':`: Username,
`Enter\s*passphrase\s*for\s*key\s*'.+':`: Passphrase,
`Enter\s*PIN\s*for\s*.+\s*key\s*.+:`: PIN,
`.*2FA Token.*`: Token,
// With a tpm, ssh prompts:
// Enter PIN for '%s':
// https://github.com/openssh/libopenssh/blob/05dfdd5f54d9a1bae5544141a7ee65baa3313ecd/ssh/ssh-pkcs11.c#L251
`Enter\s*PIN\s*for\s*.+\s*(key\s*.+|'.+'):`: PIN,
`.*2FA Token.*`: Token,
}
compiledPrompts := map[*regexp.Regexp]CredentialType{}

6
pkg/commands/oscommands/cmd_obj_runner_test.go
View file

@ -94,6 +94,12 @@ func TestProcessOutput(t *testing.T) {
output: "Enter PIN for key '123':",
expectedToWrite: "pin",
},
{
name: "tpm pin prompt",
promptUserForCredential: defaultPromptUserForCredential,
output: "Enter PIN for 'label':", // https://github.com/tpm2-software/tpm2-pkcs11/blob/d7fd660dd3ad2b8382afc57a768872032bd71d64/docs/SSH.md?plain=1#L86S
expectedToWrite: "pin",
},
{
name: "2FA token prompt",
promptUserForCredential: defaultPromptUserForCredential,