The setting listed "-e aes" in geli_swap_flags in /etc/defaults/rc.conf is redundant. AES is already the default for geli volumes:
"The default and recommended algorithm is AES-XTS." geli(8) man page.
Fix: Patch included.
Patch attached with submission follows:
Over to maintainer(s).
As of RELEASE-10.0 geli_swap_flags in /etc/defaults/rc.conf are gone and geli_swap_flags in rc.conf are obsolete, the status "In Discussion" should be changed to its final destination.
For bugs that match the following
- Status Is In progress
- Untouched since 2018-01-01.
- Affects Base System OR Documentation
Reset to open status.
I did a quick pass but if you are getting this email it might be worthwhile to double check to see if this bug ought to be closed.