Looking to move off Solaris where I currently have per dataset encrypted ZFS file systems using a key file. I've set up a Virtualbox FreeBSD 13.0 system to have a play, setup is a follows:
ada0 - zfs boot disk and root
ada1 & ada2 - mirrored zpool called testpool
I set up an encrypted dataset as follows : zfs create -o encryption=aes-256-ccm -o keyformat=raw -o keylocation=file:///root/qwerty.key testpool/encr1 (qwerty.key being a 32 byte file)
I can now create test files in the new dataset encr1, just like a normal ZFS filesystem.
However after a reboot the new dataset is not mounted, when I try to mount it I get "encryption key not loaded" even though the original keyfile is still where it was created.
Any ideas anyone?
ada0 - zfs boot disk and root
ada1 & ada2 - mirrored zpool called testpool
I set up an encrypted dataset as follows : zfs create -o encryption=aes-256-ccm -o keyformat=raw -o keylocation=file:///root/qwerty.key testpool/encr1 (qwerty.key being a 32 byte file)
I can now create test files in the new dataset encr1, just like a normal ZFS filesystem.
However after a reboot the new dataset is not mounted, when I try to mount it I get "encryption key not loaded" even though the original keyfile is still where it was created.
Any ideas anyone?