From owner-freebsd-geom@FreeBSD.ORG Sun Nov 13 10:59:20 2005 Return-Path: X-Original-To: freebsd-geom@freebsd.org Delivered-To: freebsd-geom@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 012E916A41F; Sun, 13 Nov 2005 10:59:20 +0000 (GMT) (envelope-from alexl@alkar.net) Received: from cmail.optima.ua (cmail.optima.ua [195.248.191.121]) by mx1.FreeBSD.org (Postfix) with ESMTP id 196BB43D45; Sun, 13 Nov 2005 10:59:18 +0000 (GMT) (envelope-from alexl@alkar.net) X-Spam-Level: 2 [X] Received: from [127.0.0.1] (HELO cmail.optima.ua) by cmail.optima.ua (CommuniGate Pro SMTP 4.3.6) with ESMTPS id 10747671; Sun, 13 Nov 2005 12:59:16 +0200 Received: (from alexl@localhost) by cmail.optima.ua (8.13.3/8.13.1/Submit) id jADAxFbv094108; Sun, 13 Nov 2005 12:59:15 +0200 (EET) (envelope-from alexl@alkar.net) X-Authentication-Warning: cmail.optima.ua: alexl set sender to alexl@alkar.net using -f Date: Sun, 13 Nov 2005 12:59:15 +0200 From: Alexey Luckyanchikov To: freebsd-geom@freebsd.org, pjd@freebsd.org Message-ID: <20051113105915.GC13743@alkar.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Organization: ISP Alkar Teleport Cc: Subject: GELI doesn't ask passphrase on boot X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 13 Nov 2005 10:59:20 -0000 Hi. I want GELI to ask password on boot as described in GELI(8): -b Ask for the passphrase on boot, before the root parti- tion is mounted. This makes it possible to use an encrypted root partition. One will still need bootable unencrypted storage with a /boot/ directory, which can be a CD-ROM disc or USB pen-drive, that can be removed after boot. But on boot GELI doesn't ask passphrase and doesn't create provider. FreeBSD version is 6.0-RELEASE, provider was initialized with: geli init -b -v -l 256 -s 2048 /dev/ad1s1a /boot/loader.conf contain: geom_eli_load="YES" kern.geom.eli.debug="255" kern.geom.debugflags="1" After boot "dmesg -a | fgrep -i eli" show: GEOM_ELI[1]: Start tasting. g_modevent(ELI, LOAD) g_load_class(ELI) g_eli_taste(ELI, ad0) GEOM_ELI[3]: Tasting ad0. g_destroy_geom(0xc1257300(eli:taste)) g_eli_taste(ELI, ad0s1) GEOM_ELI[3]: Tasting ad0s1. g_destroy_geom(0xc1256e80(eli:taste)) GEOM_ELI[1]: Tasting no more. g_eli_taste(ELI, ad0s1a) g_eli_taste(ELI, ad0s1b) g_eli_taste(ELI, ad0s1c) g_eli_taste(ELI, ad1) g_eli_taste(ELI, ad1s1) g_eli_taste(ELI, ad1s1a) g_eli_taste(ELI, ad1s1c) g_eli_taste(ELI, ad0s1a) It seems that problem is in g_eli.c, line 1092: SYSINIT(geli_boot_end, SI_SUB_RUN_SCHEDULER, SI_ORDER_ANY, g_eli_on_boot_end, NULL) geli_boot_end() called before GELI finish tasting. -- Sincerely, Alexey Luckyanchikov