[pkg-cryptsetup-devel] Bug#1065801: Bug#1065801: cryptsetup: Crypttab man pages does not list option _netdev which is required for Network based unlocking via Tang
Christoph Anton Mitterer
calestyo at scientia.org
Sat Mar 9 22:14:21 GMT 2024
On Sat, 2024-03-09 at 16:06 -0600, bigops wrote:
> The crypttab which is part of the cryptsetup package in its man page
> does not include the option _netdev. _netdev is required for
> unlocking Luks volumes via Clevis/Tang.
>
> Confirmed that the block device is not unlocked without this option
> in the crypttab even though it is not documented. The manpages in
> freedesktop.org has this option (_netdev)
> documented
> (https://www.freedesktop.org/software/systemd/man/latest/crypttab.htm
> l)
That's because it's from systemd's crypttab, which is a latter
development that is in incompatible but uses the same filename.
crypttab(5) manpage already contains a reference on that:
> ON DIFFERENT CRYPTTAB FORMATS
> Please note that there are several independent cryptsetup wrappers with
> their own crypttab format. This manpage covers Debian's implementation
> for initramfs scripts and SysVinit init scripts. systemd brings its own
> crypttab implementation. We try to cover the differences between the
> systemd and our implementation in this manpage, but if in doubt, better
> check the systemd crypttab(5) manpage, e.g. online at
> https://www.freedesktop.org/software/systemd/man/crypttab.html.
Cheers,
Chris.
More information about the pkg-cryptsetup-devel
mailing list