Description
Full-disk-encryption passwords can be passed from the kernel keyring into user-space keyrings during login. Administrators install this module to reuse boot credentials for later secret unlocking.
Moving encryption secrets between keyrings increases credential exposure risk. Audit permissions and clear recovery procedures before enabling it.