[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[PATCH v19 32/33] cryptodisk: Document the '-P' option
From: |
Gary Lin |
Subject: |
[PATCH v19 32/33] cryptodisk: Document the '-P' option |
Date: |
Fri, 6 Sep 2024 17:11:24 +0800 |
The '-P' option is introduced to support the key protectors framework.
This commit adds the new option to the GRUB manual.
Signed-off-by: Gary Lin <glin@suse.com>
---
docs/grub.texi | 5 +++--
1 file changed, 3 insertions(+), 2 deletions(-)
diff --git a/docs/grub.texi b/docs/grub.texi
index 2ea6c56d1..3e6f602b2 100644
--- a/docs/grub.texi
+++ b/docs/grub.texi
@@ -6695,13 +6695,14 @@ Alias for @code{hashsum --hash crc32 arg @dots{}}. See
command @command{hashsum}
@node cryptomount
@subsection cryptomount
-@deffn Command cryptomount [ [@option{-p} password] | [@option{-k} keyfile
[@option{-O} keyoffset] [@option{-S} keysize] ] ] [@option{-H} file]
device|@option{-u} uuid|@option{-a}|@option{-b}
+@deffn Command cryptomount [ [@option{-p} password] | [@option{-k} keyfile
[@option{-O} keyoffset] [@option{-S} keysize] ] | [@option{-P} protector] ]
[@option{-H} file] device|@option{-u} uuid|@option{-a}|@option{-b}
Setup access to encrypted device. A passphrase will be requested interactively,
if neither the @option{-p} nor @option{-k} options are given. The option
@option{-p} can be used to supply a passphrase (useful for scripts).
Alternatively the @option{-k} option can be used to supply a keyfile with
options @option{-O} and @option{-S} optionally supplying the offset and size,
-respectively, of the key data in the given key file. The @option{-H} options
can
+respectively, of the key data in the given key file. The @option{-P} option can
+be used to retrieve the key from a key protector. The @option{-H} options can
be used to supply cryptomount backends with an alternative header file (aka
detached header). Not all backends have headers nor support alternative header
files (currently only LUKS1 and LUKS2 support them).
--
2.35.3
- Re: [PATCH v19 21/33] tss2: Add TPM2 Software Stack (TSS2) support, (continued)
- [PATCH v19 24/33] util/grub-protect: Add new tool, Gary Lin, 2024/09/06
- [PATCH v19 25/33] tpm2_key_protector: Support authorized policy, Gary Lin, 2024/09/06
- [PATCH v19 26/33] tpm2_key_protector: Implement NV index, Gary Lin, 2024/09/06
- [PATCH v19 27/33] cryptodisk: Fallback to passphrase, Gary Lin, 2024/09/06
- [PATCH v19 28/33] cryptodisk: wipe out the cached keys from protectors, Gary Lin, 2024/09/06
- [PATCH v19 29/33] diskfilter: look up cryptodisk devices first, Gary Lin, 2024/09/06
- [PATCH v19 30/33] tpm2_key_protector: Add grub-emu support, Gary Lin, 2024/09/06
- [PATCH v19 31/33] tests: Add tpm2_key_protector_test, Gary Lin, 2024/09/06
- [PATCH v19 32/33] cryptodisk: Document the '-P' option,
Gary Lin <=
- [PATCH v19 33/33] docs: Document TPM2 key protector, Gary Lin, 2024/09/06
- Re: [PATCH v19 00/33] Automatic Disk Unlock with TPM2, Stefan Berger, 2024/09/13