Currently, I have an encrypted root partition using luks with a
passphrase. refind is launching it successfully but I have to type the
passphrase. My goal is to type only the PIN for the smartcard which will
then unlock everything else.
Since refind does not have luks support I'm assuming that the grub code
running from efi is accessing the luks drive. Perhaps something similar
could be done for smartcard use?
What are the chances of getting refind to access a smartcard? It seems
like I would need an UEFI driver for smart card readers. There is one guy
on the internet working on this without any help (
https://ludovicrousseau.blogspot.com/2016/06/uefi-smart-card-reader-protocol.html
).
Currently, I have an encrypted root partition using luks with a
passphrase. refind is launching it successfully but I have to type the
passphrase. My goal is to type only the PIN for the smartcard which will
then unlock everything else.
Since refind does not have luks support I'm assuming that the grub code
running from efi is accessing the luks drive. Perhaps something similar
could be done for smartcard use?
--
JT