mirror of
https://github.com/systemd/systemd
synced 2024-10-15 20:45:09 +00:00
man: Document the crypttab keyfile syntax specifying a device
Feature introduced in 50d2eba27b
. Also documented
as part of the kernel parameter syntax in systemd-cryptsetup-generator(8), but
should also be documented here as part of the overall file syntax.
This commit is contained in:
parent
550c14fedd
commit
f1a20afacd
|
@ -60,13 +60,15 @@
|
||||||
device or file, or a specification of a block device via
|
device or file, or a specification of a block device via
|
||||||
<literal>UUID=</literal> followed by the UUID.</para>
|
<literal>UUID=</literal> followed by the UUID.</para>
|
||||||
|
|
||||||
<para>The third field specifies an absolute path to a file to read the encryption key from. If the field
|
<para>The third field specifies an absolute path to a file to read the encryption key from. Optionally,
|
||||||
is not present or set to <literal>none</literal> or <literal>-</literal>, a key file named after the
|
the path may be followed by <literal>:</literal> and an fstab device specification (e.g. starting with
|
||||||
volume to unlock (i.e. the first column of the line), suffixed with <filename>.key</filename> is
|
<literal>LABEL=</literal> or similar); in which case, the path is relative to the device file system
|
||||||
automatically loaded from the <filename>/etc/cryptsetup-keys.d/</filename> and
|
root. If the field is not present or set to <literal>none</literal> or <literal>-</literal>, a key file
|
||||||
<filename>/run/cryptsetup-keys.d/</filename> directories, if present. Otherwise, the password has to be
|
named after the volume to unlock (i.e. the first column of the line), suffixed with
|
||||||
manually entered during system boot. For swap encryption, <filename>/dev/urandom</filename> may be used
|
<filename>.key</filename> is automatically loaded from the <filename>/etc/cryptsetup-keys.d/</filename>
|
||||||
as key file.</para>
|
and <filename>/run/cryptsetup-keys.d/</filename> directories, if present. Otherwise, the password has to
|
||||||
|
be manually entered during system boot. For swap encryption, <filename>/dev/urandom</filename> may be
|
||||||
|
used as key file.</para>
|
||||||
|
|
||||||
<para>The fourth field, if present, is a comma-delimited list of
|
<para>The fourth field, if present, is a comma-delimited list of
|
||||||
options. The following options are recognized:</para>
|
options. The following options are recognized:</para>
|
||||||
|
|
Loading…
Reference in a new issue