Auto-loading encryption keys during boot

All your general support questions for OpenZFS on OS X.

Auto-loading encryption keys during boot

Postby perry » Sat Nov 25, 2017 9:44 pm

I'm probably just missing the obvious here, but how do I arrange for an encrypted pool to be properly mounted during boot? In my experiments (1.7.0, 10.13.1), the pool gets added to the cache and gets automatically imported during boot, but no keys get loaded and so nothing is mounted until I log in and run mount -al. How do I tell zfs to do the "-l" thing during automatic import? (The key in question is in a file on the boot file system, of course.)

Thanks
-- perry
perry
 
Posts: 12
Joined: Mon Mar 09, 2015 7:27 am

Re: Auto-loading encryption keys during boot

Postby lundman » Sun Nov 26, 2017 4:42 pm

zpool import -l will load the keys, so you will need to edit the launchctl import script to have "-l" on it. It would be nice to make that nicer actually, we could use a "autoimport" property we use in the launchctl script or similar.
User avatar
lundman
 
Posts: 1335
Joined: Thu Mar 06, 2014 2:05 pm
Location: Tokyo, Japan


Return to General Help

Who is online

Users browsing this forum: No registered users and 26 guests

cron