The setting listed "-e aes" in geli_swap_flags in /etc/defaults/rc.conf is redundant. AES is already the default for geli volumes: "The default and recommended algorithm is AES-XTS." geli(8) man page. Fix: Patch included. Patch attached with submission follows:
Responsible Changed From-To: freebsd-bugs->freebsd-rc Over to maintainer(s).
As of RELEASE-10.0 geli_swap_flags in /etc/defaults/rc.conf are gone and geli_swap_flags in rc.conf are obsolete, the status "In Discussion" should be changed to its final destination.
batch change: For bugs that match the following - Status Is In progress AND - Untouched since 2018-01-01. AND - Affects Base System OR Documentation DO: Reset to open status. Note: I did a quick pass but if you are getting this email it might be worthwhile to double check to see if this bug ought to be closed.
Keyword: patch or patch-ready – in lieu of summary line prefix: [patch] * bulk change for the keyword * summary lines may be edited manually (not in bulk). Keyword descriptions and search interface: <https://bugs.freebsd.org/bugzilla/describekeywords.cgi>
According to a comment long, long ago: "As of RELEASE-10.0 geli_swap_flags in /etc/defaults/rc.conf are gone and geli_swap_flags in rc.conf are obsolete, the status "In Discussion" should be changed to its final destination." This bug needs to be closed in such a way that it doesn't keep getting re-opened by various automations and batch changes.