rudi/pgplockd
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Added basic code

Browse Source
This commit is contained in:
Gregory Rudolph
2021-03-16 22:02:59 -04:00
parent c16bb36abc
commit 47e020ee18
5 changed files with 93 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
README.md
View File

@ -1,9 +1,20 @@
# pgplockd # pgplockd
A logind locker using PGP A logind locker using PGP
## Proposal ### Proposal
This program should be runnable as a systemd user service to periodically query the user's PGP key and lock the screen if the key is locked. This program should be runnable as a systemd user service to periodically query the user's PGP key and lock the screen if the key is locked.
## Current Status
* journald is being used for logging
* connection to logind is being made
* user's ~/.pgplockd file can be read for PGP Fingerprint
* current session is being found
* timeout loop can lock session using logind\
## To Do
* Implement an actual check for unlock status
* Random message generator?
## Workflow ## Workflow
* User logs in * User logs in
* pgplockd starts * pgplockd starts

5
go.mod Normal file
View File

@ -0,0 +1,5 @@
module github.com/Rudi9719/pgplockd
go 1.16
require github.com/coreos/go-systemd/v22 v22.1.0

4
go.sum Normal file
View File

@ -0,0 +1,4 @@
github.com/coreos/go-systemd/v22 v22.1.0 h1:kq/SbG2BCKLkDKkjQf5OWwKWUKj1lgs3lFI4PxnR5lg=
github.com/coreos/go-systemd/v22 v22.1.0/go.mod h1:xO0FLkIi5MaZafQlIrOotqXZ90ih+1atmu1JpKERPPk=
github.com/godbus/dbus/v5 v5.0.3 h1:ZqHaoEF7TBzh4jzPmqVhE/5A1z9of6orkAe5uHoAeME=
github.com/godbus/dbus/v5 v5.0.3/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=

72
main.go Normal file
View File

@ -0,0 +1,72 @@
package main
import (
"fmt"
"io/ioutil"
"os/user"
"time"
"github.com/coreos/go-systemd/v22/journal"
"github.com/coreos/go-systemd/v22/login1"
)
var (
conn login1.Conn
sess login1.Session
keyID string
unlock = false
)
func main() {
if !journal.Enabled() {
return
}
journal.Print(journal.PriAlert, "Starting pamlockd")
setUp()
go timeOutLoop()
fmt.Printf("%+v\n%+v\n", sess, keyID)
}
func timeOutLoop() {
//TODO: Implement an actual check for unlock status
for {
time.Sleep(30 * time.Second)
if !unlock {
journal.Print(journal.PriInfo, "Timeout reached waiting for unlock. Locking session!")
conn.LockSession(sess.ID)
}
time.Sleep(5 * time.Minute)
}
}
func setUp() {
journal.Print(journal.PriInfo, "Opening new connection to logind.")
conn, err := login1.New()
if err != nil {
journal.Print(journal.PriCrit, "Unable to open login1 connection: %+v\n", err)
return
}
journal.Print(journal.PriInfo, "Getting current user.")
usr, err := user.Current()
if err != nil {
journal.Print(journal.PriCrit, "Unable to determine current user: %+v\n", err)
return
}
journal.Print(journal.PriInfo, "Getting current session from Active Sessions.")
dop, err := conn.GetActiveSession()
sessions, err := conn.ListSessions()
for _, v := range sessions {
if v.Path == dop {
sess = v
}
}
content, err := ioutil.ReadFile(fmt.Sprintf("%+v/.pgplockd", usr.HomeDir))
if err != nil {
journal.Print(journal.PriCrit, "Unable to read ~/.pgplockd config: %+v\n", err)
return
}
keyID = string(content)
}

BIN
pgplockd Executable file
View File

Binary file not shown.