[pve-devel] The problem with offline encrypted zfs volumes
Stephan Leemburg
sleemburg at it-functions.nl
Tue Jul 23 16:47:13 CEST 2019
Hi All,
I have been using proxmox with offline encrypted volumes, based upon
luks encryption, for quite some time now.
Happy to see that ZFS native encryption is now available, I run into a
(for me well-known) issue while upgrading.
With the CT and VM pool entirely located on offline encrypted ZFS (be it
luks or native) would actually require a systemd 'intermediate' target.
So that the sys admin can log in, make the storage available and then
'isolate' the normal operation.
If not, and I experienced that many times, proxmox goes and creates
directories where the ZFS pool is meant to be mounted and things break
when the zpool becomes available.
Obviously, I can write such a systemd configuration. But would such a
configuration then be accepted within the Proxmox tree?
Or are there better solutions for this issue?
Kind regards,
Stephan
More information about the pve-devel
mailing list