blob: 3f463cb25ec699af806e30c3040cdf24ed6401fe (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
|
#!/usr/bin/bash
build() {
add_file "/etc/libccid_Info.plist"
add_file "/usr/lib/pcsc/drivers/ifd-ccid.bundle/Contents/Info.plist"
add_binary "/usr/lib/pcsc/drivers/ifd-ccid.bundle/Contents/Linux/libccid.so"
add_systemd_unit "pcscd.service"
add_dir "/usr/lib/systemd/system/pcscd.service.d/"
(
echo "[Unit]"
echo "DefaultDependencies=no"
echo "[Service]"
echo "ExecStart="
echo "ExecStart=/usr/bin/pcscd --foreground --disable-polkit"
) > "$BUILDROOT/usr/lib/systemd/system/pcscd.service.d/mkinitcpio.conf"
add_systemd_unit "pcscd.socket"
add_dir "/usr/lib/systemd/system/pcscd.socket.d/"
(
echo "[Unit]"
echo "DefaultDependencies=no"
) > "$BUILDROOT/usr/lib/systemd/system/pcscd.socket.d/mkinitcpio.conf"
# pcscd.socket -> cryptsetup-pre.target -> systemd-cryptsetup@.service -> cryptsetup.target
add_systemd_unit "cryptsetup-pre.target"
add_symlink "/usr/lib/systemd/system/cryptsetup-pre.target.wants/pcscd.socket" "/usr/lib/systemd/system/pcscd.socket"
add_symlink "/usr/lib/systemd/system/cryptsetup.target.wants/cryptsetup-pre.target" "/usr/lib/systemd/system/cryptsetup-pre.target"
for FILE in /usr/lib/libp11-kit.so* /usr/lib/libpcsclite_real.so*; do
if [[ -L "${FILE}" ]]; then
add_symlink "${FILE}"
else
add_binary "${FILE}"
fi
done
add_binary "/usr/lib/pkcs11/librtpkcs11ecp.so"
add_file "/usr/share/p11-kit/modules/rutoken.module"
}
help() {
cat <<HELPEOF
This hook allows systemd to unlock LUKS2 volumes with the RuToken PKCS#11 module.
HELPEOF
}
|