Flatcar [RFE] Add systemd-cryptenroll PKCS11 support to unlock LUKS encrypted volumes using HSMs

[RFE] Add systemd-cryptenroll PKCS11 support to unlock LUKS encrypted volumes using HSMs

Open ader1990 opened this issue 11 months ago • 5 comments

Current situation

Systemd does not support PKCS11 URIs.

$: sudo systemd-cryptenroll --pkcs11-token-uri=list
PKCS#11 tokens not supported on this build.

Implementation options

Add the pkcs11 flag to systemd build. Optional: Add dev-libs/opencryptoki for Software Token support. Optional: Add softhsm2 integration testing in Mantle.

Mar 15 '24 11:03 ader1990

Flatcar Flatcar copied to clipboard

[RFE] Add systemd-cryptenroll PKCS11 support to unlock LUKS encrypted volumes using HSMs

Current situation

Implementation options

Flatcar
Flatcar copied to clipboard