Page 1 of 1

Auto-loading encryption keys during boot

PostPosted: Sat Nov 25, 2017 9:44 pm
by perry
I'm probably just missing the obvious here, but how do I arrange for an encrypted pool to be properly mounted during boot? In my experiments (1.7.0, 10.13.1), the pool gets added to the cache and gets automatically imported during boot, but no keys get loaded and so nothing is mounted until I log in and run mount -al. How do I tell zfs to do the "-l" thing during automatic import? (The key in question is in a file on the boot file system, of course.)

Thanks
-- perry

Re: Auto-loading encryption keys during boot

PostPosted: Sun Nov 26, 2017 4:42 pm
by lundman
zpool import -l will load the keys, so you will need to edit the launchctl import script to have "-l" on it. It would be nice to make that nicer actually, we could use a "autoimport" property we use in the launchctl script or similar.