summaryrefslogtreecommitdiffstats
path: root/man/pam_systemd_loadkey.xml
diff options
context:
space:
mode:
authorDaniel Baumann <daniel.baumann@progress-linux.org>2024-06-12 03:50:40 +0000
committerDaniel Baumann <daniel.baumann@progress-linux.org>2024-06-12 03:50:40 +0000
commitfc53809803cd2bc2434e312b19a18fa36776da12 (patch)
treeb4b43bd6538f51965ce32856e9c053d0f90919c8 /man/pam_systemd_loadkey.xml
parentAdding upstream version 255.5. (diff)
downloadsystemd-fc53809803cd2bc2434e312b19a18fa36776da12.tar.xz
systemd-fc53809803cd2bc2434e312b19a18fa36776da12.zip
Adding upstream version 256.upstream/256
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to 'man/pam_systemd_loadkey.xml')
-rw-r--r--man/pam_systemd_loadkey.xml45
1 files changed, 42 insertions, 3 deletions
diff --git a/man/pam_systemd_loadkey.xml b/man/pam_systemd_loadkey.xml
index afb41f3..13d1686 100644
--- a/man/pam_systemd_loadkey.xml
+++ b/man/pam_systemd_loadkey.xml
@@ -1,6 +1,6 @@
<?xml version='1.0'?> <!--*-nxml-*-->
<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
- "http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd">
+ "http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd">
<!-- SPDX-License-Identifier: LGPL-2.1-or-later -->
<refentry id="pam_systemd_loadkey" conditional='HAVE_PAM' xmlns:xi="http://www.w3.org/2001/XInclude">
@@ -49,9 +49,47 @@
<term><varname>keyname=</varname></term>
<listitem><para>Takes a string argument which sets the keyname to read.
- The default is <literal>cryptsetup</literal>, which is used by
+ The default is <literal>cryptsetup</literal>.
+ During boot,
<citerefentry><refentrytitle>systemd-cryptsetup@.service</refentrytitle><manvolnum>8</manvolnum></citerefentry>
- to store LUKS passphrase during boot.</para>
+ stores a passphrase or PIN in the keyring.
+ The LUKS2 volume key can also be used, via the <option>link-volume-key</option> option in
+ <citerefentry><refentrytitle>crypttab</refentrytitle><manvolnum>5</manvolnum></citerefentry>.</para>
+
+ <table>
+ <title>
+ Possible values for <varname>keyname</varname>.
+ </title>
+
+ <tgroup cols='2'>
+ <colspec colname='value' />
+ <colspec colname='description' />
+ <thead>
+ <row>
+ <entry>Value</entry>
+ <entry>Description</entry>
+ </row>
+ </thead>
+ <tbody>
+ <row>
+ <entry>cryptsetup</entry>
+ <entry>Passphrase or recovery key</entry>
+ </row>
+ <row>
+ <entry>fido2-pin</entry>
+ <entry>Security token PIN</entry>
+ </row>
+ <row>
+ <entry>luks2-pin</entry>
+ <entry>LUKS2 token PIN</entry>
+ </row>
+ <row>
+ <entry>tpm2-pin</entry>
+ <entry>TPM2 PIN</entry>
+ </row>
+ </tbody>
+ </tgroup>
+ </table>
<xi:include href="version-info.xml" xpointer="v255"/></listitem>
</varlistentry>
@@ -78,6 +116,7 @@
<programlisting>
-auth optional pam_systemd_loadkey.so
+-auth optional pam_gnome_keyring.so
-session optional pam_gnome_keyring.so auto_start
-session optional pam_kwallet5.so auto_start
</programlisting>