mirror of
https://git.sr.ht/~nabijaczleweli/tzpfms
synced 2025-04-11 09:30:02 +03:00
44 lines
773 B
ObjectPascal
44 lines
773 B
ObjectPascal
.\" SPDX-License-Identifier: MIT
|
|
.
|
|
.Dd
|
|
.Dt ZFS-TPM2-CLEAR-KEY 8
|
|
.Os
|
|
.
|
|
.Sh NAME
|
|
.Nm zfs-tpm2-clear-key
|
|
.Nd rewrap ZFS dataset key in passsword and clear tzpfms TPM2 metadata
|
|
.Sh SYNOPSIS
|
|
.Nm
|
|
.Ar dataset
|
|
.
|
|
.Sh DESCRIPTION
|
|
After verifying
|
|
.Ar dataset
|
|
was encrypted with the
|
|
.Nm tzpfms
|
|
.Sy TPM2
|
|
backend:
|
|
.Bl -enum -compact -offset 2n -width 2n
|
|
.It
|
|
performs the equivalent of
|
|
.Nm zfs Cm change-key Fl o Li keylocation=prompt Fl o Li keyformat=passphrase Ar dataset ,
|
|
.It
|
|
frees the sealed key previously used to encrypt
|
|
.Ar dataset ,
|
|
.It
|
|
removes the
|
|
.Li xyz.nabijaczleweli:tzpfms.\& Ns Brq Li backend , key
|
|
properties from
|
|
.Ar dataset .
|
|
.El
|
|
.Pp
|
|
See
|
|
.Xr zfs-tpm2-change-key 8
|
|
for a detailed description.
|
|
.
|
|
#include "passphrase.h"
|
|
.
|
|
#include "backend-tpm2.h"
|
|
.
|
|
#include "common.h"
|