diff options
| author | Daan De Meyer <daan.j.demeyer@gmail.com> | 2022-10-27 11:12:10 +0200 |
|---|---|---|
| committer | Daan De Meyer <daan.j.demeyer@gmail.com> | 2022-11-01 14:50:47 +0100 |
| commit | 300bba79c22e4be1effe2faad0e59ac725d396a1 (patch) | |
| tree | c5192a0c6db13c6b790a936628430abd47cf01ea /man | |
| parent | build(deps): bump github/codeql-action from 2.1.17 to 2.1.29 (diff) | |
| download | systemd-300bba79c22e4be1effe2faad0e59ac725d396a1.tar.xz systemd-300bba79c22e4be1effe2faad0e59ac725d396a1.zip | |
condition: Check that subsystem is enabled in ConditionSecurity=tpm2
Instead of succeeding when either the firmware reports a TPM device
or we find a TPM device, let's check that the firmware reports a TPM
device and the TPM subsystem is enabled in the kernel.
To check whether the subsystem enabled, we check if the relevant
subdirectory in /sys exists at all.
Diffstat (limited to 'man')
| -rw-r--r-- | man/systemd-creds.xml | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/man/systemd-creds.xml b/man/systemd-creds.xml index 1e5632e63d..003fbcd463 100644 --- a/man/systemd-creds.xml +++ b/man/systemd-creds.xml @@ -175,8 +175,8 @@ by the OS kernel drivers and by userspace (i.e. systemd) this prints <literal>yes</literal> and exits with exit status zero. If no such device is discovered/supported/used, prints <literal>no</literal>. Otherwise prints <literal>partial</literal>. In either of these two cases - exits with non-zero exit status. It also shows three lines indicating separately whether drivers, - firmware and the system discovered/support/use TPM2.</para> + exits with non-zero exit status. It also shows four lines indicating separately whether firmware, + drivers, the system and the kernel discovered/support/use TPM2.</para> <para>Combine with <option>--quiet</option> to suppress the output.</para></listitem> </varlistentry> |