git.ipfire.org Git - thirdparty/mdadm.git/commit

Add key ENCRYPTION_NO_VERIFY to conf

Add ENCRYPTION_NO_VERIFY config key and allow to disable checking
encryption status for given type of drives.

The key is introduced because of SATA Opal disks for which TPM commands
must be enabled in libata kernel module, (libata.allow_tpm=1), otherwise
it is impossible to verify encryption status. TPM commands are disabled by
default.

Currently the key only supports the "sata_opal" value, if necessary,
the functionality is ready to support more types of disks. This
functionality will be used in the next patches.

Signed-off-by: Blazej Kucman <blazej.kucman@intel.com>
Signed-off-by: Mariusz Tkaczyk <mariusz.tkaczyk@linux.intel.com>

author	Blazej Kucman <blazej.kucman@intel.com>
	Fri, 22 Mar 2024 11:51:18 +0000 (12:51 +0100)
committer	Mariusz Tkaczyk <mariusz.tkaczyk@linux.intel.com>
	Tue, 2 Apr 2024 06:29:07 +0000 (08:29 +0200)
commit	336e13fc5ef43bc5b4633a9dadac5f7208e6c241
tree	0d832318dc73ed2b209bafe80ae7d0d0c6895dd0	tree \| snapshot
parent	df38df3052c3386c0fd076e0d534b4f688b5c8a4	commit \| diff

config.c		diff \| blob \| blame \| history
drive_encryption.c		diff \| blob \| blame \| history
mdadm.conf.5.in		diff \| blob \| blame \| history
mdadm.h		diff \| blob \| blame \| history