diff options
author | Lennart Poettering <lennart@poettering.net> | 2021-10-11 11:15:08 +0200 |
---|---|---|
committer | Lennart Poettering <lennart@poettering.net> | 2021-10-11 11:15:08 +0200 |
commit | ccd25f41f52e72846ea7940769076094e4601ec3 (patch) | |
tree | ca2af57f37233f6f52a62c9e1e0c7cd7fa3c7533 /docs | |
parent | 2c7ec8203ef38a21217c5777dcbebc622a2429ee (diff) | |
download | systemd-ccd25f41f52e72846ea7940769076094e4601ec3.tar.gz |
docs: document $SYSTEMD_CRYPTSETUP_USE_TOKEN_MODULE
Diffstat (limited to 'docs')
-rw-r--r-- | docs/ENVIRONMENT.md | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/docs/ENVIRONMENT.md b/docs/ENVIRONMENT.md index 5b7c01d149..175bb8a819 100644 --- a/docs/ENVIRONMENT.md +++ b/docs/ENVIRONMENT.md @@ -364,3 +364,10 @@ disk images with `--image=` or similar: against any of the certificates in `/etc/verity.d/*.crt` (and similar directores in `/usr/lib/`, `/run`, …) or passed to the kernel for validation against its built-in certificates. + +`systemd-cryptsetup`: + +* `$SYSTEMD_CRYPTSETUP_USE_TOKEN_MODULE` – takes a boolean, which controls + whether to use the libcryptsetup "token" plugin module logic even when + activating via FIDO2, PKCS#11, TPM2, i.e. mechanisms natively supported by + `systemd-cryptsetup`. Defaults to enabled. |