svn commit: r214118 - in head: sbin/geom/class/eli sys/geom/eli
Garrett Cooper
gcooper at FreeBSD.org
Thu Oct 21 09:29:54 UTC 2010
On Thu, Oct 21, 2010 at 1:55 AM, Pawel Jakub Dawidek <pjd at freebsd.org> wrote:
> On Thu, Oct 21, 2010 at 07:25:53AM +0100, Rui Paulo wrote:
>> Great work. Might be worth adding the geli commands to /etc/rc.suspend & /etc/rc.resume.
>>
>> You could do something that requires the minimum user configuration, like:
>>
>> ---
>> geli list 2>&1 > /dev/null
>> if [ $? -eq 0 ]; then
>> geli suspend -a
>> fi
>
> Well, this is not always safe. As I mentioned in the commit message this
> will cause deadlock if geli(8) command is stored on encrypted file
> system (you won't be able to resume). Good example of such situation is
> when you encrypt even your root file system.
I think it's pretty safe to say that if the user understands this
limitation that they can add the relevant code to the end of
rc.resume. Maybe rc.{resume,suspend}.local script hooks should be
added for user-defined commands like this?
Thanks,
-Garrett
More information about the svn-src-head
mailing list