From owner-freebsd-questions@FreeBSD.ORG Wed Mar 12 15:18:01 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 86C83FE6; Wed, 12 Mar 2014 15:18:01 +0000 (UTC) Received: from mx1.fisglobal.com (mx1.fisglobal.com [199.200.24.190]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 4E49497A; Wed, 12 Mar 2014 15:18:00 +0000 (UTC) Received: from smarthost.fisglobal.com ([10.132.206.192]) by ltcfislmsgpa06.fnfis.com (8.14.5/8.14.5) with ESMTP id s2CFGce2006213 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NOT); Wed, 12 Mar 2014 10:16:38 -0500 Received: from THEMADHATTER (10.242.181.54) by smarthost.fisglobal.com (10.132.206.192) with Microsoft SMTP Server id 14.3.174.1; Wed, 12 Mar 2014 10:16:36 -0500 From: Sender: Devin Teske To: "=?iso-8859-1?Q?'Trond_Endrest=F8l'?=" , "'David Christensen'" References: <53197EF6.4070902@holgerdanske.com> <5319913D.4040207@infracaninophile.co.uk> <10334f5b74b05d9445d071bd08f73a24@dweimer.net> <531A0A0B.3010902@holgerdanske.com> <531D51EF.1080804@holgerdanske.com> <531D6737.4020708@infracaninophile.co.uk> <531E0287.6060907@holgerdanske.com> In-Reply-To: Subject: RE: FreeBSD 10 installer and ZFS root Date: Wed, 12 Mar 2014 08:16:34 -0700 Message-ID: <1d7201cf3e06$0f3e49e0$2dbadda0$@FreeBSD.org> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-Mailer: Microsoft Outlook 15.0 Thread-Index: AQF0C2PIOT0DD3gD1tjGF6Qa8NBRSQKo1RoEAUpEAJABeRIy2QLDDkCEAVpqnP0CUWSQhgEucmDPAaTbn4CbHn5VYA== Content-Language: en-us X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:5.11.87, 1.0.14, 0.0.0000 definitions=2014-03-12_05:2014-03-12,2014-03-12,1970-01-01 signatures=0 Cc: dteske@FreeBSD.org, freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 12 Mar 2014 15:18:01 -0000 > -----Original Message----- > From: Trond Endrest=F8l [mailto:Trond.Endrestol@fagskolen.gjovik.no] > Sent: Tuesday, March 11, 2014 12:28 AM > To: David Christensen > Cc: freebsd-questions@freebsd.org > Subject: Re: FreeBSD 10 installer and ZFS root >=20 > On Mon, 10 Mar 2014 11:20-0700, David Christensen wrote: >=20 > > On 03/10/2014 12:18 AM, Matthew Seaman wrote: > > > On 10/03/2014 05:47, David Christensen wrote: > > > > Question -- can I set encryption options for ada0s1d.eli > > > > during installation? > > > Not sure. Unless you know exactly what you're doing with crypto > > > stuff, I'd advise taking the defaults the installer gives you, or > > > you could accidentally end up with something less secure than you > intended. > > > > It sounds like I'm making feature requests for the FreeBSD installer. >=20 > +1. >=20 > Re the above: It would be nice if the installer could be told to pause between > creating the pools and creating the filesystem layout, and between creating the > filesystem layout and extracting the system. Make that two separate toggles to > maximize flexibility. That way we could switch to another vty and set the > zpool/zfs properties ourselves before proceeding. >=20 I guess that's an approach. I'm still left wondering why you wouldn't just create the file /etc/installerconfig and set the ZFSBOOT_DATASETS variable. Setting this variable in /etc/installerconfig on the installation media will override the default value of: 116 ZFSBOOT_DATASETS=3D"=20 117 # DATASET OPTIONS (comma or space separated; or both)=20 118=20=20 119 # Boot Environment [BE] root and default boot dataset=20 120 /$ZFSBOOT_BEROOT_NAME mountpoint=3Dnone=20 121 /$ZFSBOOT_BEROOT_NAME/$ZFSBOOT_BOOTFS_NAME mountpoint=3D/=20 122=20=20 123 # Compress /tmp, allow exec but not setuid=20 124 /tmp mountpoint=3D/tmp,compression=3Dlz4,exec=3Don,setuid=3Doff=20 125=20=20 126 # Don't mount /usr so that 'base' files go to the BEROOT=20 127 /usr mountpoint=3D/usr,canmount=3Doff=20 128=20=20 129 # Home directories separated so they are common to all BEs=20 130 /usr/home # NB: /home is a symlink to /usr/home=20 131=20=20 132 # Ports tree=20 133 /usr/ports compression=3Dlz4,setuid=3Doff=20 134=20=20 135 # Source tree (compressed)=20 136 /usr/src compression=3Dlz4,exec=3Doff,setuid=3Doff=20 137=20=20 138 # Create /var and friends=20 139 /var mountpoint=3D/var=20 140 /var/crash compression=3Dlz4,exec=3Doff,setuid=3Doff=20 141 /var/log compression=3Dlz4,exec=3Doff,setuid=3Doff=20 142 /var/mail compression=3Dlz4,atime=3Don=20 143 /var/tmp compression=3Dlz4,exec=3Don,setuid=3Doff=20 144 " # END-QUOTE The variable is a multi-line string that describes the datasets and their properties. NOTE WELL: When overriding the variable with different contents, the variables ZFSBOOT_BEROOT_NAME and ZFSBOOT_BOOTFS_NAME have not yet been defined, so those should be translated to their literal string values, shown below... ZFSBOOT_BEROOT_NAME=3DROOT ZFSBOOT_BOOTFS_NAME=3Ddefault --=20 Devin _____________ The information contained in this message is proprietary and/or confidentia= l. If you are not the intended recipient, please: (i) delete the message an= d all copies; (ii) do not disclose, distribute or use the message in any ma= nner; and (iii) notify the sender immediately. In addition, please be aware= that any message addressed to our domain is subject to archiving and revie= w by persons other than the intended recipient. Thank you.