From nobody Sun Nov 28 15:51:32 2021 X-Original-To: freebsd-hackers@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 70EB018C1B76 for ; Sun, 28 Nov 2021 15:51:36 +0000 (UTC) (envelope-from grahamperrin@gmail.com) Received: from mail-wr1-x42a.google.com (mail-wr1-x42a.google.com [IPv6:2a00:1450:4864:20::42a]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1D4" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4J2Cdh1tkdz3J0d for ; Sun, 28 Nov 2021 15:51:36 +0000 (UTC) (envelope-from grahamperrin@gmail.com) Received: by mail-wr1-x42a.google.com with SMTP id c4so31044866wrd.9 for ; Sun, 28 Nov 2021 07:51:36 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=message-id:date:mime-version:user-agent:subject:content-language:to :references:from:in-reply-to:content-transfer-encoding; bh=rhfDG8qhKtApFShSeJzej9pLo+I4uBuLzmtHEpPiXgM=; b=U8Gd4mQlICAsV2zvb7z0TXqZZISIByUsOW5aCoHXQEq6FJZ95NRzu15cZH5sfiXbDh rTb6mC4lrcooSGU7z/doocSJZW+Tid8/hUcMUqsqao8RxhYfYNNEvKQmGjzUDpCMFwvm q7bLCfmDSCPfyNOQq5+HIIkI4wLq/SD/UaZX95xPtqVhT9h3qYDS1xJwtAJtNCB5jT/r QrQu9FeyK4QhynkZ+CXiYN9PFNZ5CtHQOUdjwlZwIBSY5N9oQxjZECfsVgAB2j9hk9fz jSMOdp4Gm1UUcza/N9fe8N2iHzZFx+xZVBvF/TNd4QjcK1rTwWCenKsRoCc/HPiz/7Id fThQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:message-id:date:mime-version:user-agent:subject :content-language:to:references:from:in-reply-to :content-transfer-encoding; bh=rhfDG8qhKtApFShSeJzej9pLo+I4uBuLzmtHEpPiXgM=; b=Kdn7pcXl/Vj9HMmfLVwY7iiJx+8OJT89n2OynDwEalz+V6qBllOLGV55IFcavdHtmq V8/Oila9M/Hen2o+mUTwf1Vxb41Rr7Ch+3eH/T9Aa5DQCkv2IFigf3zUyo4MuNR4YWdB L7WAsLCWnQV6nVeTQ4jkUolL+ZxtLXIgail8mT5T3QYVZoVsU7/aLAv+Eyh1U6lcth6N BSM30Z6Jl4RMQ9VTquvrMZqqfBdbCKnYAssKpklCVJpkm9vOfd8YJFADdZNzsbAvWL3x NeJGnyx5zAZtQc4L8kVvvQIImvLFQljWvnEMQ5RMUtntNxuCqOzqKwvkuExXDLf2xk8B zb1g== X-Gm-Message-State: AOAM530MAp13tjV/Mc25r0lqsNyM+8SKKi+5fv4ZGDSCVQWEmXA0S/0p lytgb6wJxw6cuo4ePW7cpTGFXnwBdvETig== X-Google-Smtp-Source: ABdhPJzpr3X5CZrrLP4YmI6FL2tXRL01VnbjjuFErWGxQA04FZjaHZAUoZCunVAMcnsRzgURV82nDQ== X-Received: by 2002:a5d:40c8:: with SMTP id b8mr27578748wrq.610.1638114694110; Sun, 28 Nov 2021 07:51:34 -0800 (PST) Received: from ?IPV6:2001:470:1f1c:a0::2? (tunnel642390-pt.tunnel.tserv1.lon2.ipv6.he.net. [2001:470:1f1c:a0::2]) by smtp.gmail.com with ESMTPSA id d15sm15384658wri.50.2021.11.28.07.51.33 for (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Sun, 28 Nov 2021 07:51:33 -0800 (PST) Message-ID: Date: Sun, 28 Nov 2021 15:51:32 +0000 List-Id: Technical discussions relating to FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-hackers List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-hackers@freebsd.org MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:91.0) Gecko/20100101 Thunderbird/91.3.2 Subject: OpenZFS: FreeBSD bootloader support for encrypted file systems (was: TPM2 Support in bootloader / kernel in order to retrieve GELI passphrase) Content-Language: en-GB To: freebsd-hackers@freebsd.org References: From: Graham Perrin In-Reply-To: Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Rspamd-Queue-Id: 4J2Cdh1tkdz3J0d X-Spamd-Bar: ---- Authentication-Results: mx1.freebsd.org; none X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[] X-ThisMailContainsUnwantedMimeParts: N On 27/11/2021 20:35, Stanislaw Adaszewski wrote: > … > > 6) Regarding ZFS encryption I am not sure if that is supported in the EFI > bootloader - at first glance I would say that it isn't. … (2021-06-21) described work in progress however, to the best of my knowledge: * there's not yet a dedicated place where discussion/work can be tracked. If so: which one of the following areas might be most suitable, for starters, for tracking?