]> git.ipfire.org Git - thirdparty/systemd.git/commit
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f573629) | patch
cryptsetup: add native pkcs#11 support to cryptsetup
authorLennart Poettering <lennart@poettering.net>
Thu, 22 Aug 2019 08:21:11 +0000 (10:21 +0200)
committerLennart Poettering <lennart@poettering.net>
Mon, 9 Dec 2019 18:25:25 +0000 (19:25 +0100)
commit086697094ec7ea5e51b8fb7d545ecbadab6b9a11
treedc434a824079f73521e6f03e5960495168e68fb8tree | snapshot
parentf573629c0bba7cb3cbd49f149945e802c136788acommit | diff
cryptsetup: add native pkcs#11 support to cryptsetup

This adds a new crypttab option for volumes "pkcs11-uri=" which takes a
PKCS#11 URI. When used the key stored in the line's key file is
decrypted with the private key the PKCS#11 URI indiciates.

This means any smartcard that can store private RSA keys is usable for
unlocking LUKS devices.
meson.build diff | blob | blame | history
src/cryptsetup/cryptsetup-pkcs11.c [new file with mode: 0644] blob
src/cryptsetup/cryptsetup-pkcs11.h [new file with mode: 0644] blob
src/cryptsetup/cryptsetup.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.