GELI support on /boot folder

[Wojciech Puchar]

>> in bootloader as a GSoC project, thus the /boot folder could be
>> encrypted.
>
> What's the benefit of encrypting /boot?  If it's encrypted, will the

exactly none.

> (Use passphrase only is a bad idea because that would mean we
> essentially encrypt different data with the same key, if two encrypted
> providers both use the same passphrase.  This is probably not a big

i use passphrase for root filesystem, put keyfiles generated from 
/dev/urandom on it and use for other filesystems.