Arch Linux

Please read this before reporting a bug:
https://wiki.archlinux.org/index.php/Reporting_Bug_Guidelines

Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!
Tasklist

FS#68823 - [systemd] No support for fido2 by default

Attached to Project: Arch Linux
Opened by dorianpb (dorianpb) - Wednesday, 02 December 2020, 16:24 GMT
Last edited by Eli Schwartz (eschwartz) - Wednesday, 31 March 2021, 17:39 GMT
Task Type Feature Request
Category Packages: Core
Status Closed
Assigned To No-one
Architecture All
Severity Low
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 6
Private No

Details

Description:
The Arch Linux package for systemd is built without support for fido2, so commands such as `homectl update user --fido2-device=list` fail.
My request is to add "-Dlibfido2=true" to the build options for Arch Linux's systemd package.

Additional info:
* package version(s)
246.1-1
* link to upstream bug report, if any
https://github.com/systemd/systemd/issues/17784
This task depends upon

Closed by  Eli Schwartz (eschwartz)
Wednesday, 31 March 2021, 17:39 GMT
Reason for closing:  Implemented
Additional comments about closing:  systemd 248-1 in [testing]
Comment by max-k (max-k) - Sunday, 17 January 2021, 22:44 GMT
I can confirm this is required to unlock systemd-homed managed home directory using a fido2 device like a Yubikey 5.

Here is the output of the corresponding command:

$ homectl update user --fido2-device=auto
FIDO2 tokens not supported on this build.
Comment by loqs (loqs) - Thursday, 21 January 2021, 17:54 GMT
PKGBUILD.diff adds libfido2 and tpm2-tss to makedepends and as optdepends for systemd, the libraries are dlopened allowing them to be optdepends.
Also adds relevant options to _meson_options array to enable support to ensure is built in.
Comment by Shaleen Jain (shalzz) - Monday, 15 February 2021, 03:44 GMT
Hi,

Can this be resolved if there is no reason to keep fido2 disabled?
Comment by loqs (loqs) - Monday, 15 February 2021, 04:02 GMT
There are outstanding issues with the implementation in 247 see [1] it might be better to wait for 248.

[1] https://bbs.archlinux.org/viewtopic.php?id=263405
Comment by loqs (loqs) - Friday, 19 March 2021, 05:05 GMT
Update diff.

Loading...