Allow to omit keyfile number for the first keyfile.
This commit is contained in:
@@ -24,7 +24,7 @@
|
|||||||
.\"
|
.\"
|
||||||
.\" $FreeBSD$
|
.\" $FreeBSD$
|
||||||
.\"
|
.\"
|
||||||
.Dd June 18, 2014
|
.Dd June 2, 2015
|
||||||
.Dt GELI 8
|
.Dt GELI 8
|
||||||
.Os
|
.Os
|
||||||
.Sh NAME
|
.Sh NAME
|
||||||
@@ -893,6 +893,13 @@ geli_da1s3a_keyfile0_type="da1s3a:geli_keyfile0"
|
|||||||
geli_da1s3a_keyfile0_name="/boot/keys/da1s3a.key"
|
geli_da1s3a_keyfile0_name="/boot/keys/da1s3a.key"
|
||||||
.Ed
|
.Ed
|
||||||
.Pp
|
.Pp
|
||||||
|
If there is only one keyfile, the index might be omitted:
|
||||||
|
.Bd -literal -offset indent
|
||||||
|
geli_da1s3a_keyfile_load="YES"
|
||||||
|
geli_da1s3a_keyfile_type="da1s3a:geli_keyfile"
|
||||||
|
geli_da1s3a_keyfile_name="/boot/keys/da1s3a.key"
|
||||||
|
.Ed
|
||||||
|
.Pp
|
||||||
Not only configure encryption, but also data integrity verification using
|
Not only configure encryption, but also data integrity verification using
|
||||||
.Nm HMAC/SHA256 .
|
.Nm HMAC/SHA256 .
|
||||||
.Bd -literal -offset indent
|
.Bd -literal -offset indent
|
||||||
|
|||||||
@@ -998,6 +998,13 @@ g_eli_keyfiles_load(struct hmac_ctx *ctx, const char *provider)
|
|||||||
for (i = 0; ; i++) {
|
for (i = 0; ; i++) {
|
||||||
snprintf(name, sizeof(name), "%s:geli_keyfile%d", provider, i);
|
snprintf(name, sizeof(name), "%s:geli_keyfile%d", provider, i);
|
||||||
keyfile = preload_search_by_type(name);
|
keyfile = preload_search_by_type(name);
|
||||||
|
if (keyfile == NULL && i == 0) {
|
||||||
|
/*
|
||||||
|
* If there is only one keyfile, allow simpler name.
|
||||||
|
*/
|
||||||
|
snprintf(name, sizeof(name), "%s:geli_keyfile", provider);
|
||||||
|
keyfile = preload_search_by_type(name);
|
||||||
|
}
|
||||||
if (keyfile == NULL)
|
if (keyfile == NULL)
|
||||||
return (i); /* Return number of loaded keyfiles. */
|
return (i); /* Return number of loaded keyfiles. */
|
||||||
data = preload_fetch_addr(keyfile);
|
data = preload_fetch_addr(keyfile);
|
||||||
|
|||||||
Reference in New Issue
Block a user