Date: Tue, 1 Dec 2015 18:31:09 GMT From: def@FreeBSD.org To: svn-soc-all@FreeBSD.org Subject: socsvn commit: r294696 - soc2013/def/crashdump-head/sbin/dumpon Message-ID: <201512011831.tB1IV9GV089556@socsvn.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: def Date: Tue Dec 1 18:31:08 2015 New Revision: 294696 URL: http://svnweb.FreeBSD.org/socsvn/?view=rev&rev=294696 Log: Add -k flag description to dumpon(8). Modified: soc2013/def/crashdump-head/sbin/dumpon/dumpon.8 Modified: soc2013/def/crashdump-head/sbin/dumpon/dumpon.8 ============================================================================== --- soc2013/def/crashdump-head/sbin/dumpon/dumpon.8 Tue Dec 1 17:38:52 2015 (r294695) +++ soc2013/def/crashdump-head/sbin/dumpon/dumpon.8 Tue Dec 1 18:31:08 2015 (r294696) @@ -37,6 +37,7 @@ .Sh SYNOPSIS .Nm .Op Fl v +.Op Fl k Ar public_key .Ar special_file .Nm .Op Fl v @@ -56,7 +57,9 @@ .Pa /etc/rc , controlled by the .Dq dumpdev -variable in the boot time configuration file +and +.Dq dumppubkey +variables in the boot time configuration file .Pa /etc/rc.conf . .Pp The default type of kernel crash dump is the mini crash dump. @@ -82,6 +85,29 @@ variable. .Pp The +.Op Fl k Ar public_key +flag causes +.Nm +to generate an one-time key for kernel crash dump encryption. The key is +encrypted using +.Ar public_key . +This process is sandboxed using +.Xr capsicum 4 . +Both plain and encrypted keys are send to kernel using +.Dv DIOCSKERNELDUMP +.Xr ioctl 2 . +User can specify +.Ar public_key +in +.Dq dumppubkey +variable defined in +.Pa /etc/rc.conf +for use with +.Pa /etc/rc.d/dumpon +.Xr rc 8 +script. +.Pp +The .Fl l flag causes .Nm
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201512011831.tB1IV9GV089556>