mirror of https://github.com/ubuntu/kstore.git synced 2025-10-26 15:02:29 +01:00

No description

Find a file

Didier Roche b9e1121bce Ignore packaging artefacts		2020-07-16 08:11:59 +02:00
debian	fixed naming of .install file	2020-07-02 07:27:02 +02:00
.gitignore	Ignore packaging artefacts	2020-07-16 08:11:59 +02:00
meson.build	Added debian/ directory	2020-07-01 07:48:24 +02:00
pam_kstore.c	cleanup unused imports	2020-07-01 11:28:21 +02:00
README.md	Updated README.md	2020-07-01 10:35:35 +02:00
user_kstore	Added comments and fixed indentation.	2020-07-01 09:58:51 +02:00

README.md

kstore

Unlocks a LUKS encrypted key store that contains key of user's encrypted file system.

About

This software is made of 2 components: a PAM module and a helper shell script.

PAM module

The PAM module is used for user authentication, session start and end.

During user authentication, it calls the helper script user_kstore to unlock the user's key store containing the keys that will decrypt its partition or file system.

The password is read from stdin.

When the session starts, it locks the home directory to prevent systemd from auto-unmounting it. The lock is released when the session ends.

When there is no active session left and the lock file is removed, systemd autofs will unmount the home directory.

user_kstore

This helper script used to lock and unlock a LUKS encrypted user key store.

Synopsis

This helper script used to lock and unlock a LUKS encrypted user key store.

Usage: user_kstore [COMMAND] [OPTIONS...]

Commands

unlock  Open the keystore, need passphrase on stdin.
lock    Close the keystore

Options

-h, --help      This help
-d, --debug     Enable debug mode