Using /etc/rc.d/geli with labeled devices on 6.3
Raphael Becker
rabe at uugrn.org
Thu Mar 20 07:23:34 PDT 2008
On Tue, Mar 18, 2008 at 04:04:52PM +0100, Raphael Becker wrote:
[ getting /dev/label/FOOcrypt.eli configured through /etc/rc.d/geli ]
> How should I set up /etc/rc.conf to get this by /etc/rc.d/geli on boot?
>
> geli_enable="YES"
> geli_devices="label/FOOcrypt"
> geli_label/FOOcrypt_flags="-k /root/keys/geli.FOO.key"
> ^^^^^^^^^^^^^^
> This won't work. How?
geli_label_FOOcrytp_flags="-k /root/keys/geli.FOO.key"
^^^
from /etc/rc.d/geli:
provider_=`ltr ${provider} '/' '_'`
eval "flags=\${geli_${provider_}_flags}"
Seems to work. This should be documented in rc.conf(5) as ppl who use
'geli' for encryption might also know about and use 'glabel'.
Regards
Raphael Becker
--
Raphael Becker <rabe at uugrn.org> http://rabe.uugrn.org/
GnuPG: E7B2 1D66 3AF2 EDC7 9828 6D7A 9CDA 3E7B 10CA 9F2D
.........|.........|.........|.........|.........|.........|.........|..
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20080320/393e7447/attachment.pgp
More information about the freebsd-stable
mailing list