From owner-freebsd-questions@FreeBSD.ORG  Thu Oct 25 18:05:14 2007
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@FreeBSD.ORG
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id EC9FF16A41A
	for <freebsd-questions@FreeBSD.ORG>;
	Thu, 25 Oct 2007 18:05:14 +0000 (UTC)
	(envelope-from iaccounts@ibctech.ca)
Received: from pearl.ibctech.ca (pearl.ibctech.ca [208.70.104.210])
	by mx1.freebsd.org (Postfix) with ESMTP id 7344A13C4B8
	for <freebsd-questions@FreeBSD.ORG>;
	Thu, 25 Oct 2007 18:05:14 +0000 (UTC)
	(envelope-from iaccounts@ibctech.ca)
Received: (qmail 27547 invoked by uid 1002); 25 Oct 2007 18:05:13 -0000
Received: from iaccounts@ibctech.ca by pearl.ibctech.ca by uid 89 with
	qmail-scanner-1.22 
	(spamassassin: 2.64.  Clear:RC:1(208.70.104.100):. 
	Processed in 15.682238 secs); 25 Oct 2007 18:05:13 -0000
Received: from unknown (HELO ?192.168.30.110?)
	(steve@ibctech.ca@208.70.104.100)
	by pearl.ibctech.ca with (DHE-RSA-AES256-SHA encrypted) SMTP;
	25 Oct 2007 18:04:57 -0000
Message-ID: <4720DACD.9040302@ibctech.ca>
Date: Thu, 25 Oct 2007 14:05:01 -0400
From: Steve Bertrand <iaccounts@ibctech.ca>
User-Agent: Thunderbird 2.0.0.6 (Windows/20070728)
MIME-Version: 1.0
To: freebsd-questions@FreeBSD.ORG
References: <200710251634.l9PGYlPV068519@lurza.secnetix.de>
In-Reply-To: <200710251634.l9PGYlPV068519@lurza.secnetix.de>
X-Enigmail-Version: 0.95.3
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Cc: 
Subject: Re: Booting a GELI encrypted hard disk
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Oct 2007 18:05:15 -0000

Oliver Fromme wrote:
> Steve Bertrand wrote:
>  > I haven't tried it yet, but I don't think that /boot on the encrypted
>  > disk is necessary. I will rename the directory and reboot and see if it
>  > barfs.
> 
> It shouldn't be necessary.  Once the kernel is loaded, the
> system never looks at /boot again.
> 
> Unless, of course, you want to load a kernel module.  Those
> are located in /boot/kernel by default, but you can change
> the if needed (see sysctl kern.module_path).
> 
> Also, some system utilities that use KVM functions (vmstat,
> top, ps) might require access to the kernel file.  But that
> can be changed, too:  sysctl kern.bootfile.
> 
> Other than that, the /boot directory isn't used at all
> during normal operation.

This is correct, I tested it.

Also, this system (with GEOM_ELI built into kernel) successfully
upgraded from 6.2 to 7.0 with ULE scheduler enabled with no problems at all.

Cheers!

Steve