hello, macOS has this rather user friendly operating mode where one is able to set the volume's FileVault (apple's full disk encryption) password to be the same as their user password and the password is asked only once. after bootup i get a login screen, enter my password, and voila, i am both logged in, and can access the encrypted volume. this works with a boot volume as well.
i would like to achieve something similar on OpenBSD but in a bit simpler setup. my softraid crypto volume is just a "data" mount under my home, the system and /home are not encrypted. this setup came to be partly because it's a pain in the ass to always mount the encrypted folder after logging in, so i left some common stuff unencrypted (yes, i know, keydisks...). but it would be nice to have a fully encrypted /home that gets mounted when i enter my user password at the login screen, i don't mind leaving the system unencrypted... any ideas how to achieve this? some nice post auth hooks? in some ways it's bit like authpf... -f --
