diff options
| author | Lennart Poettering <lennart@poettering.net> | 2022-04-19 15:08:23 +0200 |
|---|---|---|
| committer | Lennart Poettering <lennart@poettering.net> | 2022-04-20 16:58:18 +0200 |
| commit | eb81249e8a311e78310acbe92245c2ec8d72370c (patch) | |
| tree | 0c2e75ccadfbd7efce4f7dcd0fba70ac0574f29e /man/systemd-creds.xml | |
| parent | creds-tool: add new "has-tpm2" verb (diff) | |
| download | systemd-eb81249e8a311e78310acbe92245c2ec8d72370c.tar.xz systemd-eb81249e8a311e78310acbe92245c2ec8d72370c.zip | |
man: document new has-tpm2 verb
Diffstat (limited to 'man/systemd-creds.xml')
| -rw-r--r-- | man/systemd-creds.xml | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/man/systemd-creds.xml b/man/systemd-creds.xml index d3c0295d64..2d6a4fd577 100644 --- a/man/systemd-creds.xml +++ b/man/systemd-creds.xml @@ -163,6 +163,20 @@ and thus decryption is entirely automatic.</para></listitem> </varlistentry> + <varlistentry> + <term><command>has-tpm2</command></term> + + <listitem><para>Reports whether the system is equipped with a TPM2 device usable for protecting + credentials. If the a TPM2 device has been discovered, is supported, and is being used by firmware, + by the OS kernel drivers and by userspace (i.e. systemd) this prints <literal>yes</literal> and exits + with exit status zero. If no such device is discovered/supported/used, prints + <literal>no</literal>. Otherwise prints <literal>partial</literal>. In either of these two cases + exits with non-zero exit status. It also shows three lines indicating separately whether drivers, + firmware and the system discovered/support/use TPM2.</para> + + <para>Combine with <option>--quiet</option> to suppress the output.</para></listitem> + </varlistentry> + <xi:include href="standard-options.xml" xpointer="help" /> <xi:include href="standard-options.xml" xpointer="version" /> </variablelist> @@ -305,6 +319,14 @@ <citerefentry><refentrytitle>systemd-cryptenroll</refentrytitle><manvolnum>1</manvolnum></citerefentry>.</para></listitem> </varlistentry> + <varlistentry> + <term><option>--quiet</option></term> + <term><option>-q</option></term> + + <listitem><para>When used with <command>has-tpm2</command> suppresses the output, and only returns an + exit status indicating support for TPM2.</para></listitem> + </varlistentry> + <xi:include href="standard-options.xml" xpointer="no-pager" /> <xi:include href="standard-options.xml" xpointer="no-legend" /> <xi:include href="standard-options.xml" xpointer="json" /> @@ -315,6 +337,12 @@ <title>Exit status</title> <para>On success, 0 is returned.</para> + + <para>In case of the <command>has-tpm2</command> command returns 0 if a TPM2 device is discovered, + supported and used by firmware, driver, and userspace (i.e. systemd). Otherwise returns the OR + combination of the value 1 (in case firmware support is missing), 2 (in case driver support is missing) + and 4 (in case userspace support is missing). If no TPM2 support is available at all, value 7 is hence + returned.</para> </refsect1> <refsect1> |