diff options
author | Daniel Mueller <deso@posteo.net> | 2019-06-08 11:02:12 -0700 |
---|---|---|
committer | Daniel Mueller <deso@posteo.net> | 2019-06-08 11:02:12 -0700 |
commit | a83454bcc9cb3f7d10b4ee5926490c80b222430b (patch) | |
tree | 3a48e86219c175258130c3854287d08b7b046597 /nitrocli/src/commands.rs | |
parent | 74be24daf592f3408524081c3760ca153294d643 (diff) | |
download | nitrocli-a83454bcc9cb3f7d10b4ee5926490c80b222430b.tar.gz nitrocli-a83454bcc9cb3f7d10b4ee5926490c80b222430b.tar.bz2 |
Add support for changing read-write mode of unencrypted volume
This change adds support for changing the read-write mode of the
unencrypted volume. To do so, we introduce a new top-level command,
unencrypted, with a new subcommand, set, that accepts the new mode of
the volume.
Diffstat (limited to 'nitrocli/src/commands.rs')
-rw-r--r-- | nitrocli/src/commands.rs | 24 |
1 files changed, 24 insertions, 0 deletions
diff --git a/nitrocli/src/commands.rs b/nitrocli/src/commands.rs index 3cad8f1..8db5cd8 100644 --- a/nitrocli/src/commands.rs +++ b/nitrocli/src/commands.rs @@ -361,6 +361,30 @@ pub fn reset(ctx: &mut args::ExecCtx<'_>) -> Result<()> { }) } +/// Change the configuration of the unencrypted volume. +pub fn unencrypted_set( + ctx: &mut args::ExecCtx<'_>, + mode: args::UnencryptedVolumeMode, +) -> Result<()> { + let device = get_storage_device(ctx)?; + let pin_entry = pinentry::PinEntry::from(pinentry::PinType::Admin, &device)?; + let mode = match mode { + args::UnencryptedVolumeMode::ReadWrite => nitrokey::VolumeMode::ReadWrite, + args::UnencryptedVolumeMode::ReadOnly => nitrokey::VolumeMode::ReadOnly, + }; + + // The unencrypted volume may reconnect, so be sure to flush caches to + // disk. + unsafe { sync() }; + + try_with_pin( + ctx, + &pin_entry, + "Changing unencrypted volume mode failed", + |pin| device.set_unencrypted_volume_mode(&pin, mode), + ) +} + /// Open the encrypted volume on the Nitrokey. pub fn encrypted_open(ctx: &mut args::ExecCtx<'_>) -> Result<()> { let device = get_storage_device(ctx)?; |