OpenZFS on OS X

Hi all
Apologies if I'm not grasping this correctly.

On my Mac with bunch of disks attached, I can create a RAIDZ pool happily, eg:

Code: Select all

zpool create -f -o ashift=12 -O casesensitivity=insensitive -O normalization=formD MyRAID raidz /dev/disk2 /dev/disk3 /dev/disk4 /dev/disk5

All good. This pool immediately mounts in the Finder at /Volumes/MyRAID
As the man page says:

The root of the pool can be accessed as a file system, such as mounting and unmounting, taking snapshots, and setting properties.

All good.

But if I want to use native encryption, it seems that I can't encrypt the root filesystem in a pool (/), only a dataset subsequently created

Code: Select all

zpool set feature@encryption=enabled MyRAID
zfs create -o encryption=on -o keylocation=prompt -o keyformat=passphrase MyRAID/Encrypted

Have I understood that correctly?
So if I create a dataset (filesystem) called Encrypted in the pool it appears as a folder in the mounted pool and ALSO is mounted at /Volumes/MyRAID/Encrypted
That's fine, but call me fussy, how do I get ONLY the Encrypted filesystem to appear in the Finder without the container pool showing as well?

Hi,

I've had this (minor) annoyance for some time and haven't been able to figure out a solution. My workaround was to create my encrypted zfs data sets with com.apple.browse=off so that only the main zpool shows up in the Finder:

Code: Select all

$ sudo zfs create -o com.apple.browse=off -o com.apple.mimic_hfs=on -o encryption=on -o keylocation=prompt -o keyformat=passphrase [dataset]

HTH,

-ranga

zpool takes -o for pool option, and -O for dataset options.
zfs takes -o for dataset options.

So zfs create -o encryption. would become zpool create -O encryption.

ie,

zpool create -f -o ashift=12 -O casesensitivity=insensitive -O normalization=formD -O encryption=aes-256-ccm -O keyformat=passphrase MyRAID raidz /dev/disk2 /dev/disk3 /dev/disk4 /dev/disk5

Fabulous. That makes sense. Thank you very much.