Date: Sat, 24 Apr 2021 10:44:00 +0200 From: Andrea Venturoli <ml@netfence.it> To: freebsd-stable@freebsd.org Subject: Re: zfs native encryption best practices on RELENG13 Message-ID: <c4e2fb46-05c4-de1b-7710-971da2d9ca2c@netfence.it> In-Reply-To: <56a4a35f-b4d7-661a-f59b-8cd399784e6e@delphij.net> References: <e79a8278-0fd8-532f-2a72-87d43cf27e7a@sentex.net> <56a4a35f-b4d7-661a-f59b-8cd399784e6e@delphij.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On 4/23/21 11:23 PM, Xin Li via freebsd-stable wrote: > I think loader do not support the native OpenZFS encryption yet. > However, you can encrypt non-essential datasets on a boot pool (that is, > if com.datto:encryption is "active" AND the bootfs dataset is not > encrypted, you can still boot from it). This is what my tests showed too (on 12.2 with OpenZFS from ports). This is in contrast to what is written here: https://openzfs.github.io/openzfs-docs/Getting%20Started/FreeBSD.html Can we get that page corrected? bye & Thanks av.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?c4e2fb46-05c4-de1b-7710-971da2d9ca2c>