From owner-freebsd-geom@FreeBSD.ORG Mon Apr 9 04:30:20 2012 Return-Path: Delivered-To: freebsd-geom@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 66420106566B for ; Mon, 9 Apr 2012 04:30:20 +0000 (UTC) (envelope-from ae@FreeBSD.org) Received: from mail.kirov.so-ups.ru (mail.kirov.so-ups.ru [178.74.170.1]) by mx1.freebsd.org (Postfix) with ESMTP id 071D38FC0C for ; Mon, 9 Apr 2012 04:30:20 +0000 (UTC) Received: from kas30pipe.localhost (localhost.kirov.so-ups.ru [127.0.0.1]) by mail.kirov.so-ups.ru (Postfix) with SMTP id 60B5CB8029; Mon, 9 Apr 2012 08:30:13 +0400 (MSK) Received: from kirov.so-ups.ru (unknown [172.21.81.1]) by mail.kirov.so-ups.ru (Postfix) with ESMTP id 5B387B801B; Mon, 9 Apr 2012 08:30:13 +0400 (MSK) Received: by ns.kirov.so-ups.ru (Postfix, from userid 1010) id 564A9BA028; Mon, 9 Apr 2012 08:30:13 +0400 (MSK) Received: from [127.0.0.1] (elsukov.kirov.oduur.so [10.118.3.52]) by ns.kirov.so-ups.ru (Postfix) with ESMTP id 207ABBA00F; Mon, 9 Apr 2012 08:30:13 +0400 (MSK) Message-ID: <4F8265D1.6090808@FreeBSD.org> Date: Mon, 09 Apr 2012 08:30:09 +0400 From: "Andrey V. Elsukov" User-Agent: Mozilla Thunderbird 1.5 (FreeBSD/20051231) MIME-Version: 1.0 To: Bengt Ahlgren References: <201204052210.q35MA5gt065889@freefall.freebsd.org> <4F7E72D7.6040501@FreeBSD.org> In-Reply-To: X-Enigmail-Version: 1.4 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enig47A74E6F80E713DA565FF978" X-SpamTest-Version: SMTP-Filter Version 3.0.0 [0284], KAS30/Release X-SpamTest-Info: Not protected Cc: freebsd-geom@FreeBSD.org Subject: Re: bin/165789: bsdlabel(8): partition c doesn't cover the whole unit! X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 09 Apr 2012 04:30:20 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig47A74E6F80E713DA565FF978 Content-Type: text/plain; charset=KOI8-R Content-Transfer-Encoding: quoted-printable On 06.04.2012 17:59, Bengt Ahlgren wrote: > The patch does fix the issue with bsdlabel - thanks! >=20 > I am however curious to why you refer to a sysinstall bug. I did not > use sysinstall to create the partitions. Hi, You said that you don't touch your partitions since installing. I thought you did system installation in sysinstall. --=20 WBR, Andrey V. Elsukov --------------enig47A74E6F80E713DA565FF978 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (MingW32) iQEcBAEBAgAGBQJPgmXVAAoJEAHF6gQQyKF6T0oH/RUMoq6onzbZKKTe7TUVzIpJ uirNoQvMYYdn+nTboBExj0uHa/MbqKbwuC1i4H8/xu+esMkwji/aMKfY3HbWyn9U 3CiQPYjX1W0YlaCWLBiFEDrJGUXugGmtvpOHb/nYP3NwmsRi5Oh94DwA+oK//zbj EqmMUDHG8yBvwwLc3jFW0kOihJY6isA9onaeT6Wz1aD8ukS3U6d8YlUsVHnUy2Vv EPEUc+tMdT+NXjHd7hFVnkTZ2XjTx+Jkms2SDjInD1Fk1BKbO5iaJxVwKR4prVR6 q5WyJhm9WRt5J1psQK6hll/NdQYMdSPu9UFnprVJtC8Ja5O1IHf+chB3Z0WyavI= =Zf0N -----END PGP SIGNATURE----- --------------enig47A74E6F80E713DA565FF978-- From owner-freebsd-geom@FreeBSD.ORG Mon Apr 9 11:07:11 2012 Return-Path: Delivered-To: freebsd-geom@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id E6178106566B for ; Mon, 9 Apr 2012 11:07:11 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id C733E8FC15 for ; Mon, 9 Apr 2012 11:07:11 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q39B7BUw039599 for ; Mon, 9 Apr 2012 11:07:11 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q39B7BjU039597 for freebsd-geom@FreeBSD.org; Mon, 9 Apr 2012 11:07:11 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 9 Apr 2012 11:07:11 GMT Message-Id: <201204091107.q39B7BjU039597@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-geom@FreeBSD.org Cc: Subject: Current problem reports assigned to freebsd-geom@FreeBSD.org X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 09 Apr 2012 11:07:12 -0000 Note: to view an individual PR, use: http://www.freebsd.org/cgi/query-pr.cgi?pr=(number). The following is a listing of current problems submitted by FreeBSD users. These represent problem reports covering all versions including experimental development code and obsolete releases. S Tracker Resp. Description -------------------------------------------------------------------------------- f bin/165789 geom bsdlabel(8): partition c doesn't cover the whole unit! o kern/165745 geom [geom] geom_multipath page fault on removed drive p kern/165573 geom [geom] Strange behavior of geom_part_* modules o kern/165428 geom [glabel][patch] Add xfs support to glabel o kern/164254 geom [geom] gjournal not stopping on GPT partitions o kern/164252 geom [geom] gjournal overflow o kern/164143 geom [geom] Partition table not recognized after upgrade R8 a kern/163020 geom [geli] [patch] enable the Camellia-XTS on GEOM ELI o kern/162010 geom [geli] panic: Provider's error should be set (error=0) o kern/161979 geom [geom] glabel doesn't update after newfs, and glabel s o kern/161752 geom [geom] glabel(8) doesn't get gpt label change o bin/161677 geom gpart(8) Probably bug in gptboot o kern/160562 geom [geom][patch] Allow to insert new component to geom_ra o kern/160409 geom [geli] failed to attach provider f kern/159595 geom [geom] [panic] panic on gmirror unload in vbox [regres p kern/158398 geom [headers] [patch] includes o kern/158197 geom [geom] geom_cache with size>1000 leads to panics o kern/157879 geom [libgeom] [regression] ABI change without version bump o kern/157863 geom [geli] kbdmux prevents geli passwords from being enter o kern/157739 geom [geom] GPT labels with geom_multipath o kern/157724 geom [geom] gpart(8) 'add' command must preserve gap for sc o kern/157723 geom [geom] GEOM should not process 'c' (raw) partitions fo o kern/157108 geom [gjournal] dumpon(8) fails on gjournal providers o kern/155994 geom [geom] Long "Suspend time" when reading large files fr o kern/154226 geom [geom] GEOM label does not change when you modify them o kern/150858 geom [geom] [geom_label] [patch] glabel(8) is not compatibl o kern/150626 geom [geom] [gjournal] gjournal(8) destroys label o kern/150555 geom [geom] gjournal unusable on GPT partitions o kern/150334 geom [geom] [udf] [patch] geom label does not support UDF o kern/149762 geom volume labels with rogue characters o bin/149215 geom [panic] [geom_part] gpart(8): Delete linux's slice via o kern/147667 geom [gmirror] Booting with one component of a gmirror, the o kern/145818 geom [geom] geom_stat_open showing cached information for n o kern/145042 geom [geom] System stops booting after printing message "GE o kern/143455 geom gstripe(8) in RELENG_8 (31st Jan 2010) broken o kern/142563 geom [geom] [hang] ioctl freeze in zpool o kern/141740 geom [geom] gjournal(8): g_journal_destroy concurrent error o kern/140352 geom [geom] gjournal + glabel not working o kern/135898 geom [geom] Severe filesystem corruption - large files or l o kern/134922 geom [gmirror] [panic] kernel panic when use fdisk on disk o kern/134113 geom [geli] Problem setting secondary GELI key o kern/133931 geom [geli] [request] intentionally wrong password to destr o bin/132845 geom [geom] [patch] ggated(8) does not close files opened a o bin/131415 geom [geli] keystrokes are unregulary sent to Geli when typ o kern/131353 geom [geom] gjournal(8) kernel lock o kern/129674 geom [geom] gjournal root did not mount on boot o kern/129645 geom gjournal(8): GEOM_JOURNAL causes system to fail to boo o kern/129245 geom [geom] gcache is more suitable for suffix based provid f kern/128276 geom [gmirror] machine lock up when gmirror module is used o kern/127420 geom [geom] [gjournal] [panic] Journal overflow on gmirrore o kern/124973 geom [gjournal] [patch] boot order affects geom_journal con o kern/124969 geom gvinum(8): gvinum raid5 plex does not detect missing s o kern/123962 geom [panic] [gjournal] gjournal (455Gb data, 8Gb journal), o kern/123122 geom [geom] GEOM / gjournal kernel lock o kern/122738 geom [geom] gmirror list "losts consumers" after gmirror de o kern/122067 geom [geom] [panic] Geom crashed during boot o kern/121364 geom [gmirror] Removing all providers create a "zombie" mir o kern/120091 geom [geom] [geli] [gjournal] geli does not prompt for pass o kern/115856 geom [geli] ZFS thought it was degraded when it should have o kern/115547 geom [geom] [patch] [request] let GEOM Eli get password fro o kern/114532 geom [geom] GEOM_MIRROR shows up in kldstat even if compile f kern/113957 geom [gmirror] gmirror is intermittently reporting a degrad o kern/113837 geom [geom] unable to access 1024 sector size storage o kern/113419 geom [geom] geom fox multipathing not failing back o kern/107707 geom [geom] [patch] [request] add new class geom_xbox360 to o kern/94632 geom [geom] Kernel output resets input while GELI asks for o kern/90582 geom [geom] [panic] Restore cause panic string (ffs_blkfree o bin/90093 geom fdisk(8) incapable of altering in-core geometry o kern/87544 geom [gbde] mmaping large files on a gbde filesystem deadlo o bin/86388 geom [geom] [geom_part] periodic(8) daily should backup gpa o kern/84556 geom [geom] [panic] GBDE-encrypted swap causes panic at shu o kern/79251 geom [2TB] newfs fails on 2.6TB gbde device o kern/79035 geom [vinum] gvinum unable to create a striped set of mirro o bin/78131 geom gbde(8) "destroy" not working. 74 problems total. From owner-freebsd-geom@FreeBSD.ORG Mon Apr 9 18:34:13 2012 Return-Path: Delivered-To: freebsd-geom@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 42484106582A for ; Mon, 9 Apr 2012 18:34:13 +0000 (UTC) (envelope-from fa-h-2007@hotmail.com) Received: from col0-omc3-s5.col0.hotmail.com (col0-omc3-s5.col0.hotmail.com [65.55.34.143]) by mx1.freebsd.org (Postfix) with ESMTP id 891A48FC0A for ; Mon, 9 Apr 2012 18:34:11 +0000 (UTC) Received: from COL115-W40 ([65.55.34.137]) by col0-omc3-s5.col0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4675); Mon, 9 Apr 2012 11:34:10 -0700 Message-ID: X-Originating-IP: [187.115.25.161] From: Fa bio To: Date: Mon, 9 Apr 2012 18:34:10 +0000 Importance: Normal MIME-Version: 1.0 X-OriginalArrivalTime: 09 Apr 2012 18:34:10.0746 (UTC) FILETIME=[5B0711A0:01CD167F] Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Automatic Geli? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 09 Apr 2012 18:34:13 -0000 Hi! Is it possible to recompile geli/kernel to automatically enter with passwor= d and/or key? I=B4ll explain with an example: If you see a cache system called SpeedR (http://www.speedr.com.br/?locale= =3Den)=2C in their site you can download the ISO and burn it to a CD (http:= //www.speedr.com.br/rc/speedr-0...rc18.2-x64.iso) It=B4s very interesting=2C because all partitions are encrypted with Geli= =2C=20 but there is no passphrase to enter at boot time or key directions in loade= r.conf file. If you mount the partition with another FreeBSD you see only /boot dir. All= files are secure! At boot time you can see this: Timecounters tick every 1.000 msec ipfw2 initialized=2C divert enabled=2C nat enabled=2C rule-based forwarding= enabled=2C default to accept=2C logging disabled load_dn_sched dn_sched FIFO loaded load_dn_sched dn_sched PRIO loaded load_dn_sched dn_sched QFQ loaded load_dn_sched dn_sched RR loaded load_dn_sched dn_sched WF2Q+ loaded usbus0: 12Mbps Full Speed USB v1.0 ad0: 20480MB at ata0-master WDMA2=20 ugen0.1: at usbus0 uhub0: on usb= us0 ad1: 30720MB at ata0-slave WDMA2=20 WARNING: ad0s1 expected rawoffset 0=2C found 63 uhub0: 2 ports with 2 removable=2C self powered GEOM_ELI: Wrong key for ad0s1d. Tries left: 2. ugen0.2: at usbus0 ums0: on usbus0 ums0: 3 buttons and [Z] coordinates ID=3D0 GEOM_ELI: Device ad0s1d.eli created. GEOM_ELI: Encryption: AES-XTS 128 GEOM_ELI: Crypto: software acd0: CDROM at ata1-slave WDMA2=20 SMP: AP CPU #2 Launched! SMP: AP CPU #3 Launched! SMP: AP CPU #1 Launched! GEOM_ELI: Wrong key for ad0s1cd. Tries left: 2. GEOM_ELI: Cannot create device ad0s1cd.eli. Trying to mount root from ufs:ad0s1d.eli GEOM_ELI: Device ad0s1g.eli created. GEOM_ELI: Encryption: AES-XTS 128 GEOM_ELI: Crypto: software GEOM_ELI: Device ad0s1f.eli created. GEOM_ELI: Encryption: AES-XTS 128 GEOM_ELI: Crypto: software GEOM_ELI: Device ad0s1e.eli created. GEOM_ELI: Encryption: AES-XTS 128 GEOM_ELI: Crypto: software How is it possible? Important: I don't want to get inside this system! I just want to=20 understand how it is possible to automatically mount geli partitions=20 without entering any key or passphrase. I saw many tutorials but they all ask to enter a passphrase! Any ideas? Thanks Felix =09 = From owner-freebsd-geom@FreeBSD.ORG Tue Apr 10 22:14:36 2012 Return-Path: Delivered-To: freebsd-geom@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 2900510657B9 for ; Tue, 10 Apr 2012 22:14:36 +0000 (UTC) (envelope-from rwmaillists@googlemail.com) Received: from mail-wg0-f50.google.com (mail-wg0-f50.google.com [74.125.82.50]) by mx1.freebsd.org (Postfix) with ESMTP id AE3EC8FC0C for ; Tue, 10 Apr 2012 22:14:35 +0000 (UTC) Received: by wgbds12 with SMTP id ds12so272256wgb.31 for ; Tue, 10 Apr 2012 15:14:29 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=20120113; h=date:from:to:subject:message-id:in-reply-to:references:x-mailer :mime-version:content-type:content-transfer-encoding; bh=AV/sP3Q8H7v/EY6BbLh0TMb5jkHYzTXEnbJT4nFF5ME=; b=UJvJUDzuWzLE9Tqr3FPTU8Kez8L0p/EAKAqKX2GzejzYPXx6YeLHEcsH1QSt4nxKzc kTsACoBdfs7e+joUuNn0EXOQh6wvexIsBxZLU4NtTmVFN34yKlqYzY+zCHmn2YFSB7l0 0ArwaBJouRFsqu/RIkwUHD+IxRf9QyFP7mns1YvxrF3kQQbsIvVat3juWn7Go2FjYEoU b2c6zIGWj8E78YsGLl98FZmf65sMhlvukC7aLbxxUjYOeeXZAZFn3SI/o57WNz7uV/58 UXt209HFh5MlxWNwniEopR0ob1e2Rdclyo8W8+CLGHYOK7Kv+hMK4gzxTz9emTqwF+Rp LpUg== Received: by 10.216.132.140 with SMTP id o12mr7110364wei.67.1334096069358; Tue, 10 Apr 2012 15:14:29 -0700 (PDT) Received: from gumby.homeunix.com (87-194-105-247.bethere.co.uk. [87.194.105.247]) by mx.google.com with ESMTPS id fz9sm40583915wib.3.2012.04.10.15.14.26 (version=SSLv3 cipher=OTHER); Tue, 10 Apr 2012 15:14:28 -0700 (PDT) Date: Tue, 10 Apr 2012 23:14:23 +0100 From: RW To: freebsd-geom@freebsd.org Message-ID: <20120410231423.3a45e6d2@gumby.homeunix.com> In-Reply-To: References: X-Mailer: Claws Mail 3.8.0 (GTK+ 2.24.6; amd64-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Subject: Re: Automatic Geli? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Apr 2012 22:14:36 -0000 On Mon, 9 Apr 2012 18:34:10 +0000 Fa bio wrote: > Is it possible to recompile geli/kernel to automatically enter with > password and/or key?=20 If that's done you no longer have encryption, you have obfuscation, with the option to reinstate encryption.=20 > If you see a cache system called SpeedR > (http://www.speedr.com.br/?locale=3Den), in their site you can download > the ISO and burn it to a CD > (http://www.speedr.com.br/rc/speedr-0...rc18.2-x64.iso) >=20 > =20 > It=B4s very interesting, because all partitions are encrypted with > Geli, but there is no passphrase to enter at boot time or key > directions in loader.conf file. > ...=20 > How is it possible? I think the more important question is why. I don't see a good reason for encrypting caching software, except maybe as part of a scheme for enforcing their licensing. From owner-freebsd-geom@FreeBSD.ORG Tue Apr 10 22:25:52 2012 Return-Path: Delivered-To: freebsd-geom@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 56A00106566B for ; Tue, 10 Apr 2012 22:25:52 +0000 (UTC) (envelope-from fa-h-2007@hotmail.com) Received: from col0-omc2-s10.col0.hotmail.com (col0-omc2-s10.col0.hotmail.com [65.55.34.84]) by mx1.freebsd.org (Postfix) with ESMTP id 323258FC12 for ; Tue, 10 Apr 2012 22:25:52 +0000 (UTC) Received: from COL115-W65 ([65.55.34.71]) by col0-omc2-s10.col0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4675); Tue, 10 Apr 2012 15:25:46 -0700 Message-ID: X-Originating-IP: [187.115.25.161] From: Fa bio To: , Date: Tue, 10 Apr 2012 22:25:46 +0000 Importance: Normal In-Reply-To: <20120410231423.3a45e6d2@gumby.homeunix.com> References: , <20120410231423.3a45e6d2@gumby.homeunix.com> MIME-Version: 1.0 X-OriginalArrivalTime: 10 Apr 2012 22:25:46.0300 (UTC) FILETIME=[DFD617C0:01CD1768] Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: Subject: RE: Automatic Geli? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Apr 2012 22:25:52 -0000 Hello! The ideia is: you can run the system but you cannot access the sources=20 inside it=2C what is very interesting when you work with PHP=2C for example= . So=2C when machine is off nobody can read data from it because it is encryp= ted. When you turn the machine on it automatically enter a passphase or key=20 witch are hidden somewhere that we cannot detect! Amazing! My guess is that the keys/passphrase are compiled inside the kernel=2C so=20 it=B4s quite impossible to access it=2C but at the same time you can use th= e system! I used the system without internet access and it mounted the partition=20 ok! That=B4s why I think that the "magic" is in the kernel!=20 Any ideas how it=B4s done? Regards > Date: Tue=2C 10 Apr 2012 23:14:23 +0100 > From: rwmaillists@googlemail.com > To: freebsd-geom@freebsd.org > Subject: Re: Automatic Geli? >=20 > On Mon=2C 9 Apr 2012 18:34:10 +0000 > Fa bio wrote: >=20 > > Is it possible to recompile geli/kernel to automatically enter with > > password and/or key?=20 >=20 > If that's done you no longer have encryption=2C you have obfuscation=2C > with the option to reinstate encryption.=20 >=20 > > If you see a cache system called SpeedR > > (http://www.speedr.com.br/?locale=3Den)=2C in their site you can downlo= ad > > the ISO and burn it to a CD > > (http://www.speedr.com.br/rc/speedr-0...rc18.2-x64.iso) > >=20 > > =20 > > It=B4s very interesting=2C because all partitions are encrypted with > > Geli=2C but there is no passphrase to enter at boot time or key > > directions in loader.conf file. > > ...=20 > > How is it possible? >=20 > I think the more important question is why. I don't see a good reason > for encrypting caching software=2C except maybe as part of a scheme for > enforcing their licensing. > _______________________________________________ > freebsd-geom@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-geom > To unsubscribe=2C send any mail to "freebsd-geom-unsubscribe@freebsd.org" = From owner-freebsd-geom@FreeBSD.ORG Tue Apr 10 23:06:14 2012 Return-Path: Delivered-To: freebsd-geom@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8C4F2106564A for ; Tue, 10 Apr 2012 23:06:14 +0000 (UTC) (envelope-from rsimmons0@gmail.com) Received: from mail-vx0-f182.google.com (mail-vx0-f182.google.com [209.85.220.182]) by mx1.freebsd.org (Postfix) with ESMTP id 439C08FC15 for ; Tue, 10 Apr 2012 23:06:14 +0000 (UTC) Received: by vcmm1 with SMTP id m1so321016vcm.13 for ; Tue, 10 Apr 2012 16:06:12 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; bh=xO62NEQArtiH7msxTlDaeKmY9Q+sXTdfSuDyM77wJ80=; b=W6x85VaZ99zF+6Eom2ESzJx2WcQEHD14iNwV9R5CGRk6b/SqZiZsa3vr1tlDiijZav UtwFM8RQrUndkGwxbCPLETkVY+0sg7KE7wLn4RKXx7XFqJyfulOUGHroLzBoE271wZ+d sazaadzpnohGyZUd+na1pwGpwlgn4RxE60iAZ9EgxDI4VMJT0T+S9N/rJHwoGpIwLpuQ 9UBnC9Xx5f/UPZL5F5/4ENBeNPtrx7IjeeL6js12O3q9bYAukLvfMjL06cUfdCqzqFAb tYRvyB4h+T0JDrl0oavOA5PBiUhM0R57WS+/VeRAYoAVv7MIsoEozQfAKYi6wizoOovi 6YbA== MIME-Version: 1.0 Received: by 10.52.240.171 with SMTP id wb11mr5419065vdc.106.1334099172108; Tue, 10 Apr 2012 16:06:12 -0700 (PDT) Received: by 10.52.66.239 with HTTP; Tue, 10 Apr 2012 16:06:11 -0700 (PDT) In-Reply-To: References: <20120410231423.3a45e6d2@gumby.homeunix.com> Date: Tue, 10 Apr 2012 19:06:11 -0400 Message-ID: From: Robert Simmons To: Fa bio Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: rwmaillists@googlemail.com, freebsd-geom@freebsd.org Subject: Re: Automatic Geli? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Apr 2012 23:06:14 -0000 On Tue, Apr 10, 2012 at 6:25 PM, Fa bio wrote: > > Hello! > > > > The ideia is: you can run the system but you cannot access the sources > inside it, what is very interesting when you work with PHP, for example. > > > > So, when machine is off nobody can read data from it because it is encryp= ted. > > > > When you turn the machine on it automatically enter a passphase or key > witch are hidden somewhere that we cannot detect! Amazing! > > > > My guess is that the keys/passphrase are compiled inside the kernel, so > it=B4s quite impossible to access it, but at the same time you can use th= e > =A0system! > > > > I used the system without internet access and it mounted the partition > ok! That=B4s why I think that the "magic" is in the kernel! > > > > Any ideas how it=B4s done? There are two options: 1) The key is in a file on the CD. 2) It is using geli onetime. The first choice above is stupid. Every copy of the software is therefore using the same key. If you want to have a key that you don't enter a passphrase for at boot: create the geli provider yourself, and have the key on a removable device. When the machine is booting, the device is available. When it is done, you remove your device with the key and store it somewhere safe. You can use a USB drive or a CD for this. The second choice above is more likely. The cache software that the OP mentioned would most likely be best served using geli onetime, which makes sense. If you want to read about geli onetime check the man page: http://www.freebsd.org/cgi/man.cgi?query=3Dgeli From owner-freebsd-geom@FreeBSD.ORG Wed Apr 11 09:08:25 2012 Return-Path: Delivered-To: freebsd-geom@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 8C1D5106566B for ; Wed, 11 Apr 2012 09:08:25 +0000 (UTC) (envelope-from vince@unsane.co.uk) Received: from unsane.co.uk (unsane-pt.tunnel.tserv5.lon1.ipv6.he.net [IPv6:2001:470:1f08:110::2]) by mx1.freebsd.org (Postfix) with ESMTP id ED9658FC0C for ; Wed, 11 Apr 2012 09:08:24 +0000 (UTC) Received: from vincemacbook.unsane.co.uk (vincemacbook.unsane.co.uk [10.10.10.20]) (authenticated bits=0) by unsane.co.uk (8.14.5/8.14.5) with ESMTP id q3B98N8w068403 (version=TLSv1/SSLv3 cipher=DHE-RSA-CAMELLIA256-SHA bits=256 verify=NO); Wed, 11 Apr 2012 10:08:23 +0100 (BST) (envelope-from vince@unsane.co.uk) Message-ID: <4F854A07.8030406@unsane.co.uk> Date: Wed, 11 Apr 2012 10:08:23 +0100 From: Vincent Hoffman User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:11.0) Gecko/20120327 Thunderbird/11.0.1 MIME-Version: 1.0 To: Robert Simmons References: <20120410231423.3a45e6d2@gumby.homeunix.com> In-Reply-To: X-Enigmail-Version: 1.4 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit Cc: rwmaillists@googlemail.com, Fa bio , freebsd-geom@freebsd.org Subject: Re: Automatic Geli? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 11 Apr 2012 09:08:25 -0000 On 11/04/2012 00:06, Robert Simmons wrote: > On Tue, Apr 10, 2012 at 6:25 PM, Fa bio wrote: >> Hello! >> >> >> >> The ideia is: you can run the system but you cannot access the sources >> inside it, what is very interesting when you work with PHP, for example. >> >> >> >> So, when machine is off nobody can read data from it because it is encrypted. >> >> >> >> When you turn the machine on it automatically enter a passphase or key >> witch are hidden somewhere that we cannot detect! Amazing! >> >> >> >> My guess is that the keys/passphrase are compiled inside the kernel, so >> itīs quite impossible to access it, but at the same time you can use the >> system! >> >> >> >> I used the system without internet access and it mounted the partition >> ok! Thatīs why I think that the "magic" is in the kernel! >> >> >> >> Any ideas how itīs done? > There are two options: > > 1) The key is in a file on the CD. > > 2) It is using geli onetime. > > The first choice above is stupid. Every copy of the software is > therefore using the same key. If you want to have a key that you > don't enter a passphrase for at boot: create the geli provider > yourself, and have the key on a removable device. When the machine is > booting, the device is available. When it is done, you remove your > device with the key and store it somewhere safe. You can use a USB > drive or a CD for this. > > The second choice above is more likely. The cache software that the > OP mentioned would most likely be best served using geli onetime, > which makes sense. If you want to read about geli onetime check the > man page: > http://www.freebsd.org/cgi/man.cgi?query=geli >From a quick look in the mfsroot this looks likely (08:57:31 ) 0 root@fbsd2 # grep geli /mnt/stand/etc/defaults/rc.conf geli_devices="" geli_tries="" geli_default_flags="" geli_autodetach="YES" geli_swap_flags="-e aes -l 256 -s 4096 -d" Running sysinstall in the /stand dir on the mfsroot gives what i assume is the installer (it was in Portuguese so not certain.) I didnt look further. (to the OP, I just mounted the ISO using mdconfig, gunziped the mfsroot.gz in the boot dir then mounted that mfsroot using mdconfig again.) Vince > _______________________________________________ > freebsd-geom@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-geom > To unsubscribe, send any mail to "freebsd-geom-unsubscribe@freebsd.org" From owner-freebsd-geom@FreeBSD.ORG Wed Apr 11 09:36:37 2012 Return-Path: Delivered-To: freebsd-geom@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id A8C341065672 for ; Wed, 11 Apr 2012 09:36:37 +0000 (UTC) (envelope-from pawel@dawidek.net) Received: from mail.dawidek.net (60.wheelsystems.com [83.12.187.60]) by mx1.freebsd.org (Postfix) with ESMTP id 5A52B8FC08 for ; Wed, 11 Apr 2012 09:36:37 +0000 (UTC) Received: from localhost (58.wheelsystems.com [83.12.187.58]) by mail.dawidek.net (Postfix) with ESMTPSA id 8154F9B4; Wed, 11 Apr 2012 11:36:29 +0200 (CEST) Date: Wed, 11 Apr 2012 11:34:59 +0200 From: Pawel Jakub Dawidek To: Fa bio Message-ID: <20120411093458.GC1319@garage.freebsd.pl> References: MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="8X7/QrJGcKSMr1RN" Content-Disposition: inline In-Reply-To: X-OS: FreeBSD 10.0-CURRENT amd64 User-Agent: Mutt/1.5.21 (2010-09-15) Cc: freebsd-geom@freebsd.org Subject: Re: Automatic Geli? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 11 Apr 2012 09:36:37 -0000 --8X7/QrJGcKSMr1RN Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Apr 09, 2012 at 06:34:10PM +0000, Fa bio wrote: > Is it possible to recompile geli/kernel to automatically enter with passw= ord and/or key? I=B4ll explain with an example: >=20 > If you see a cache system called SpeedR (http://www.speedr.com.br/?locale= =3Den), in their site you can download the ISO and burn it to a CD (http://= www.speedr.com.br/rc/speedr-0...rc18.2-x64.iso) >=20 > It=B4s very interesting, because all partitions are encrypted with Geli,= =20 > but there is no passphrase to enter at boot time or key directions in loa= der.conf file. If they distribute encrypted image that actually works, it means they distribute the key along with the image. As was already noted this serves no purpose, as you can extract the key from the image and decrypt the whole thing on your own. --=20 Pawel Jakub Dawidek http://www.wheelsystems.com FreeBSD committer http://www.FreeBSD.org Am I Evil? Yes, I Am! http://tupytaj.pl --8X7/QrJGcKSMr1RN Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.18 (FreeBSD) iEYEARECAAYFAk+FUEIACgkQForvXbEpPzSbsgCguqs5FkCakPLv+995tJLIcghn iCIAn3r1oLb2yLayKUvPZ4TANcQHUFUp =X3Lp -----END PGP SIGNATURE----- --8X7/QrJGcKSMr1RN-- From owner-freebsd-geom@FreeBSD.ORG Wed Apr 11 20:38:40 2012 Return-Path: Delivered-To: freebsd-geom@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 5F81B1065674; Wed, 11 Apr 2012 20:38:40 +0000 (UTC) (envelope-from perryh@pluto.rain.com) Received: from agora.rdrop.com (unknown [IPv6:2607:f678:1010::34]) by mx1.freebsd.org (Postfix) with ESMTP id 3902D8FC0A; Wed, 11 Apr 2012 20:38:40 +0000 (UTC) Received: from agora.rdrop.com (66@localhost [127.0.0.1]) by agora.rdrop.com (8.13.1/8.12.7) with ESMTP id q3BKcdQq008047 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Wed, 11 Apr 2012 13:38:39 -0700 (PDT) (envelope-from perryh@pluto.rain.com) Received: (from uucp@localhost) by agora.rdrop.com (8.13.1/8.14.2/Submit) with UUCP id q3BKcdoc008046; Wed, 11 Apr 2012 13:38:39 -0700 (PDT) (envelope-from perryh@pluto.rain.com) Received: from fbsd81 ([192.168.200.81]) by pluto.rain.com (4.1/SMI-4.1-pluto-M2060407) id AA01056; Wed, 11 Apr 12 13:28:54 PDT Date: Wed, 11 Apr 2012 20:27:48 -0700 From: perryh@pluto.rain.com To: pjd@freebsd.org Message-Id: <4f864bb4.Q7/highsGaOoTKF6%perryh@pluto.rain.com> References: <20120411093458.GC1319@garage.freebsd.pl> In-Reply-To: <20120411093458.GC1319@garage.freebsd.pl> User-Agent: nail 11.25 7/29/05 Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Cc: fa-h-2007@hotmail.com, freebsd-geom@freebsd.org Subject: Re: Automatic Geli? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 11 Apr 2012 20:38:40 -0000 Pawel Jakub Dawidek wrote: > If they distribute encrypted image that actually works, it means > they distribute the key along with the image. As was already noted > this serves no purpose, as you can extract the key from the image > and decrypt the whole thing on your own. s/serves no purpose/provides no real security/ It will stop those who can't figure out _how_ to extract the key from the image, and it will deter those whose interest in bypassing the encryption is not strong enough to justify the effort. Making offline access non-trivial might also have legal implications in some jurisdictions, since having gone to the trouble of extracting the key would impair the credibility of a subsequent assertion that any improprieties had been inadvertent. From owner-freebsd-geom@FreeBSD.ORG Thu Apr 12 16:24:32 2012 Return-Path: Delivered-To: freebsd-geom@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 1B759106566C for ; Thu, 12 Apr 2012 16:24:32 +0000 (UTC) (envelope-from rsimmons0@gmail.com) Received: from mail-vx0-f182.google.com (mail-vx0-f182.google.com [209.85.220.182]) by mx1.freebsd.org (Postfix) with ESMTP id C71778FC12 for ; Thu, 12 Apr 2012 16:24:31 +0000 (UTC) Received: by vcmm1 with SMTP id m1so2062424vcm.13 for ; Thu, 12 Apr 2012 09:24:25 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; bh=hbwX5P7mTfJ4moKvJbEmbieSwG1ITmDBT2CEGmzzrV0=; b=caoIYKTojb/zdanHsGukp1/J5ys+kdob07EslukesLU0FYRsAwqrgrL2qrkuna0btF NPjZdsnn7iEdimEUunwuCxTr1NbYREBQ3zdROqZ5obvZn78PeRmQhSJU3EkxRUKB2pqH rEnixU3lNV2v4Ce3UsVkvrwRTn8IsE3l/6N5+67+Zau/rvoHz/8fFNUZrukoMx16V9M7 vOfThHhHzvvWOt0TYqaOV44rRpfEeFd5s5czZ8z0D5vcxG+ZCLRo7zPHfUjHdSUBbvT0 aRR6ePSw6XgQWplepTektdFZhWqZSXV+wq9xVd5hJGC76+9r44zcWD5UCR8UV57eK5aN AGlA== MIME-Version: 1.0 Received: by 10.220.147.198 with SMTP id m6mr1575719vcv.49.1334247865483; Thu, 12 Apr 2012 09:24:25 -0700 (PDT) Received: by 10.52.66.239 with HTTP; Thu, 12 Apr 2012 09:24:25 -0700 (PDT) In-Reply-To: <4f864bb4.Q7/highsGaOoTKF6%perryh@pluto.rain.com> References: <20120411093458.GC1319@garage.freebsd.pl> <4f864bb4.Q7/highsGaOoTKF6%perryh@pluto.rain.com> Date: Thu, 12 Apr 2012 12:24:25 -0400 Message-ID: From: Robert Simmons To: freebsd-geom@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Subject: Re: Automatic Geli? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 12 Apr 2012 16:24:32 -0000 On Wed, Apr 11, 2012 at 11:27 PM, wrote: > Pawel Jakub Dawidek wrote: > >> If they distribute encrypted image that actually works, it means >> they distribute the key along with the image. As was already noted >> this serves no purpose, as you can extract the key from the image >> and decrypt the whole thing on your own. > > s/serves no purpose/provides no real security/ > > It will stop those who can't figure out _how_ to extract the key > from the image, and it will deter those whose interest in bypassing > the encryption is not strong enough to justify the effort. =A0Making > offline access non-trivial might also have legal implications in > some jurisdictions, since having gone to the trouble of extracting > the key would impair the credibility of a subsequent assertion that > any improprieties had been inadvertent. It will stop those who can figure out how???? It's a file in the unencrypted portion of the image. "extracting" would entail "geli attach -j /pathto/foo.pass -k /pathto/foo.key /dev/foo0" There is no effort involved. And they are not "bypassing the encryption" or "making offline access non-trivial". They are "doing it wrong". I'm not sure that anything you said makes sense. From owner-freebsd-geom@FreeBSD.ORG Thu Apr 12 23:10:52 2012 Return-Path: Delivered-To: freebsd-geom@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 6F8DF106566C for ; Thu, 12 Apr 2012 23:10:52 +0000 (UTC) (envelope-from rsimmons0@gmail.com) Received: from mail-vb0-f54.google.com (mail-vb0-f54.google.com [209.85.212.54]) by mx1.freebsd.org (Postfix) with ESMTP id 292388FC0A for ; Thu, 12 Apr 2012 23:10:52 +0000 (UTC) Received: by vbmv11 with SMTP id v11so2434346vbm.13 for ; Thu, 12 Apr 2012 16:10:45 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; bh=q8g6wbwR9cR5eQRSDIWcusLB4HraMemFDHGVpk4Ydcs=; b=CNGkRZ+nUU+alSpaFW0winOTCDPUPh9D5TP1T9EQegeJfINfduKjk+DrPs10OlNczj zMlvd+idh3ixHsdZNAc0uBusgyTEP2pf8HVBks+kFCwTjAUKvxb3W58vpyzAcDiZOI5d 9i6+aVyDsNN8gm+SM5E/DwE3ujijo/pje4w3kh0uncHXb91DiVudQd0KCgY+hrbd8X3h PmLheAntpb0o/7+F1BvlJlireMhGrxDTtgj8ebXHaVPniZpyWF4u485xU84tKxc7WgBn qaR9kReSPbn+rlfBdY8/ndRYKQUAchmkdWalvpIHTnt2J+e1gqeu8W9iLxqUe39YMWpQ G5dA== MIME-Version: 1.0 Received: by 10.52.173.83 with SMTP id bi19mr40679vdc.15.1334272244971; Thu, 12 Apr 2012 16:10:44 -0700 (PDT) Received: by 10.52.66.239 with HTTP; Thu, 12 Apr 2012 16:10:44 -0700 (PDT) In-Reply-To: References: <20120411093458.GC1319@garage.freebsd.pl> <4f864bb4.Q7/highsGaOoTKF6%perryh@pluto.rain.com> Date: Thu, 12 Apr 2012 19:10:44 -0400 Message-ID: From: Robert Simmons To: freebsd-geom@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Subject: Re: Automatic Geli? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 12 Apr 2012 23:10:52 -0000 On Thu, Apr 12, 2012 at 5:48 PM, Fa bio wrote: > Hello! > > =A0 There is no key file or passphrase... > > =A0 In rc.conf we have: > > > > vfs.root.mountfrom=3D"ufs:ad0s1d.eli" > rootdev=3D"ad0s1d" > > > So you can mount it: > > geli attach /dev/ada1s1d > # Just press [Enter] when asked for a password > mount /dev/ada1s1d.eli /mnt > > > There is no protection!! Fascinating. A blank passphrase. What's the point? From owner-freebsd-geom@FreeBSD.ORG Fri Apr 13 04:19:28 2012 Return-Path: Delivered-To: freebsd-geom@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 36AF31065672; Fri, 13 Apr 2012 04:19:28 +0000 (UTC) (envelope-from ae@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 0970A8FC19; Fri, 13 Apr 2012 04:19:28 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q3D4JRYc062366; Fri, 13 Apr 2012 04:19:27 GMT (envelope-from ae@freefall.freebsd.org) Received: (from ae@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q3D4JR2Z062362; Fri, 13 Apr 2012 04:19:27 GMT (envelope-from ae) Date: Fri, 13 Apr 2012 04:19:27 GMT Message-Id: <201204130419.q3D4JR2Z062362@freefall.freebsd.org> To: timp87@gmail.com, ae@FreeBSD.org, freebsd-geom@FreeBSD.org From: ae@FreeBSD.org Cc: Subject: Re: kern/165573: [geom] Strange behavior of geom_part_* modules X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 13 Apr 2012 04:19:28 -0000 Synopsis: [geom] Strange behavior of geom_part_* modules State-Changed-From-To: patched->closed State-Changed-By: ae State-Changed-When: Fri Apr 13 04:18:58 UTC 2012 State-Changed-Why: Merged to stable/8 and stable/9. Thanks! http://www.freebsd.org/cgi/query-pr.cgi?pr=165573 From owner-freebsd-geom@FreeBSD.ORG Fri Apr 13 04:20:14 2012 Return-Path: Delivered-To: freebsd-geom@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 8DA1E106566B for ; Fri, 13 Apr 2012 04:20:14 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 6ECE28FC08 for ; Fri, 13 Apr 2012 04:20:14 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q3D4KEa2062545 for ; Fri, 13 Apr 2012 04:20:14 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q3D4KEtT062544; Fri, 13 Apr 2012 04:20:14 GMT (envelope-from gnats) Date: Fri, 13 Apr 2012 04:20:14 GMT Message-Id: <201204130420.q3D4KEtT062544@freefall.freebsd.org> To: freebsd-geom@FreeBSD.org From: dfilter@FreeBSD.ORG (dfilter service) Cc: Subject: Re: kern/165573: commit references a PR X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: dfilter service List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 13 Apr 2012 04:20:14 -0000 The following reply was made to PR kern/165573; it has been noted by GNATS. From: dfilter@FreeBSD.ORG (dfilter service) To: bug-followup@FreeBSD.org Cc: Subject: Re: kern/165573: commit references a PR Date: Fri, 13 Apr 2012 04:17:59 +0000 (UTC) Author: ae Date: Fri Apr 13 04:17:43 2012 New Revision: 234198 URL: http://svn.freebsd.org/changeset/base/234198 Log: MFC r233000: Add MODULE_DEPEND() to geom_part modules. MFC r233342: Check that scheme is not already registered. This may happens when a KLD is preloaded with loader(8) and leads to infinity loop. Also do not return EEXIST error code from MOD_LOAD handler, because we have undocumented(?) ability replace kernel's module with preloaded one. And if we have so, then preloaded module will be initialized first. Thus error in MOD_LOAD handler will be triggered for the kernel. PR: kern/165573 Modified: stable/9/sys/geom/part/g_part.c stable/9/sys/geom/part/g_part.h Directory Properties: stable/9/sys/ (props changed) Modified: stable/9/sys/geom/part/g_part.c ============================================================================== --- stable/9/sys/geom/part/g_part.c Thu Apr 12 23:06:07 2012 (r234197) +++ stable/9/sys/geom/part/g_part.c Fri Apr 13 04:17:43 2012 (r234198) @@ -145,6 +145,7 @@ static struct g_class g_part_class = { }; DECLARE_GEOM_CLASS(g_part_class, g_part); +MODULE_VERSION(g_part, 0); /* * Support functions. @@ -2208,23 +2209,32 @@ g_part_unload_event(void *arg, int flag) int g_part_modevent(module_t mod, int type, struct g_part_scheme *scheme) { + struct g_part_scheme *iter; uintptr_t arg; int error; + error = 0; switch (type) { case MOD_LOAD: - TAILQ_INSERT_TAIL(&g_part_schemes, scheme, scheme_list); - - error = g_retaste(&g_part_class); - if (error) - TAILQ_REMOVE(&g_part_schemes, scheme, scheme_list); + TAILQ_FOREACH(iter, &g_part_schemes, scheme_list) { + if (scheme == iter) { + printf("GEOM_PART: scheme %s is already " + "registered!\n", scheme->name); + break; + } + } + if (iter == NULL) { + TAILQ_INSERT_TAIL(&g_part_schemes, scheme, + scheme_list); + g_retaste(&g_part_class); + } break; case MOD_UNLOAD: arg = (uintptr_t)scheme; error = g_waitfor_event(g_part_unload_event, &arg, M_WAITOK, NULL); - if (!error) - error = (arg == (uintptr_t)scheme) ? EDOOFUS : arg; + if (error == 0) + error = arg; break; default: error = EOPNOTSUPP; Modified: stable/9/sys/geom/part/g_part.h ============================================================================== --- stable/9/sys/geom/part/g_part.h Thu Apr 12 23:06:07 2012 (r234197) +++ stable/9/sys/geom/part/g_part.h Fri Apr 13 04:17:43 2012 (r234198) @@ -208,6 +208,7 @@ int g_part_modevent(module_t, int, struc name##_modevent, \ &name##_scheme \ }; \ - DECLARE_MODULE(name, name##_mod, SI_SUB_DRIVERS, SI_ORDER_ANY) + DECLARE_MODULE(name, name##_mod, SI_SUB_DRIVERS, SI_ORDER_ANY); \ + MODULE_DEPEND(name, g_part, 0, 0, 0) #endif /* !_GEOM_PART_H_ */ _______________________________________________ svn-src-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/svn-src-all To unsubscribe, send any mail to "svn-src-all-unsubscribe@freebsd.org" From owner-freebsd-geom@FreeBSD.ORG Fri Apr 13 04:20:16 2012 Return-Path: Delivered-To: freebsd-geom@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id D49ED1065670 for ; Fri, 13 Apr 2012 04:20:16 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id B50DB8FC0A for ; Fri, 13 Apr 2012 04:20:16 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q3D4KG7N062553 for ; Fri, 13 Apr 2012 04:20:16 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q3D4KGPE062552; Fri, 13 Apr 2012 04:20:16 GMT (envelope-from gnats) Date: Fri, 13 Apr 2012 04:20:16 GMT Message-Id: <201204130420.q3D4KGPE062552@freefall.freebsd.org> To: freebsd-geom@FreeBSD.org From: dfilter@FreeBSD.ORG (dfilter service) Cc: Subject: Re: kern/165573: commit references a PR X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: dfilter service List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 13 Apr 2012 04:20:16 -0000 The following reply was made to PR kern/165573; it has been noted by GNATS. From: dfilter@FreeBSD.ORG (dfilter service) To: bug-followup@FreeBSD.org Cc: Subject: Re: kern/165573: commit references a PR Date: Fri, 13 Apr 2012 04:18:21 +0000 (UTC) Author: ae Date: Fri Apr 13 04:18:12 2012 New Revision: 234199 URL: http://svn.freebsd.org/changeset/base/234199 Log: MFC r233000: Add MODULE_DEPEND() to geom_part modules. MFC r233342: Check that scheme is not already registered. This may happens when a KLD is preloaded with loader(8) and leads to infinity loop. Also do not return EEXIST error code from MOD_LOAD handler, because we have undocumented(?) ability replace kernel's module with preloaded one. And if we have so, then preloaded module will be initialized first. Thus error in MOD_LOAD handler will be triggered for the kernel. PR: kern/165573 Modified: stable/8/sys/geom/part/g_part.c stable/8/sys/geom/part/g_part.h Directory Properties: stable/8/sys/ (props changed) Modified: stable/8/sys/geom/part/g_part.c ============================================================================== --- stable/8/sys/geom/part/g_part.c Fri Apr 13 04:17:43 2012 (r234198) +++ stable/8/sys/geom/part/g_part.c Fri Apr 13 04:18:12 2012 (r234199) @@ -145,6 +145,7 @@ static struct g_class g_part_class = { }; DECLARE_GEOM_CLASS(g_part_class, g_part); +MODULE_VERSION(g_part, 0); /* * Support functions. @@ -2135,23 +2136,32 @@ g_part_unload_event(void *arg, int flag) int g_part_modevent(module_t mod, int type, struct g_part_scheme *scheme) { + struct g_part_scheme *iter; uintptr_t arg; int error; + error = 0; switch (type) { case MOD_LOAD: - TAILQ_INSERT_TAIL(&g_part_schemes, scheme, scheme_list); - - error = g_retaste(&g_part_class); - if (error) - TAILQ_REMOVE(&g_part_schemes, scheme, scheme_list); + TAILQ_FOREACH(iter, &g_part_schemes, scheme_list) { + if (scheme == iter) { + printf("GEOM_PART: scheme %s is already " + "registered!\n", scheme->name); + break; + } + } + if (iter == NULL) { + TAILQ_INSERT_TAIL(&g_part_schemes, scheme, + scheme_list); + g_retaste(&g_part_class); + } break; case MOD_UNLOAD: arg = (uintptr_t)scheme; error = g_waitfor_event(g_part_unload_event, &arg, M_WAITOK, NULL); - if (!error) - error = (arg == (uintptr_t)scheme) ? EDOOFUS : arg; + if (error == 0) + error = arg; break; default: error = EOPNOTSUPP; Modified: stable/8/sys/geom/part/g_part.h ============================================================================== --- stable/8/sys/geom/part/g_part.h Fri Apr 13 04:17:43 2012 (r234198) +++ stable/8/sys/geom/part/g_part.h Fri Apr 13 04:18:12 2012 (r234199) @@ -208,6 +208,7 @@ int g_part_modevent(module_t, int, struc name##_modevent, \ &name##_scheme \ }; \ - DECLARE_MODULE(name, name##_mod, SI_SUB_DRIVERS, SI_ORDER_ANY) + DECLARE_MODULE(name, name##_mod, SI_SUB_DRIVERS, SI_ORDER_ANY); \ + MODULE_DEPEND(name, g_part, 0, 0, 0) #endif /* !_GEOM_PART_H_ */ _______________________________________________ svn-src-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/svn-src-all To unsubscribe, send any mail to "svn-src-all-unsubscribe@freebsd.org" From owner-freebsd-geom@FreeBSD.ORG Sat Apr 14 04:13:32 2012 Return-Path: Delivered-To: geom@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 949C5106564A; Sat, 14 Apr 2012 04:13:32 +0000 (UTC) (envelope-from gjb@semihalf.com) Received: from smtp.semihalf.com (smtp.semihalf.com [213.17.239.109]) by mx1.freebsd.org (Postfix) with ESMTP id 048C98FC12; Sat, 14 Apr 2012 04:13:31 +0000 (UTC) Received: from localhost (unknown [213.17.239.109]) by smtp.semihalf.com (Postfix) with ESMTP id C3749D8D82; Sat, 14 Apr 2012 06:13:22 +0200 (CEST) X-Virus-Scanned: by amavisd-new at semihalf.com Received: from smtp.semihalf.com ([213.17.239.109]) by localhost (smtp.semihalf.com [213.17.239.109]) (amavisd-new, port 10024) with ESMTP id Ut97wpc9CmkH; Sat, 14 Apr 2012 06:13:21 +0200 (CEST) Received: from [172.17.136.194] (adsl-66-120-169-242.dsl.sntc01.pacbell.net [66.120.169.242]) by smtp.semihalf.com (Postfix) with ESMTPSA id 82913D8D7C; Sat, 14 Apr 2012 06:13:20 +0200 (CEST) Message-ID: <4F88F966.5030300@semihalf.com> Date: Sat, 14 Apr 2012 06:13:26 +0200 From: Grzegorz Bernacki User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:11.0) Gecko/20120327 Thunderbird/11.0.1 MIME-Version: 1.0 To: Marcel Moolenaar References: <4F7A6A0B.5000308@semihalf.com> In-Reply-To: <4F7A6A0B.5000308@semihalf.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: geom@FreeBSD.org, fs@FreeBSD.org Subject: Re: Review of projects/nand branch X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 14 Apr 2012 04:13:32 -0000 Hi Marcel, Please find updated status of fixing bugs inlined. W dniu 2012-04-03 05:10, Grzegorz Bernacki pisze: > W dniu 2012-04-02 23:37, Marcel Moolenaar pisze: >> Grzegorz, >> >> I reviewed the changes on the projects/nand branch and in general >> it's of high quality and any problems, improvements and/or cleanups >> can be addressed after it gets merged into -current, with the >> following caveat: >> 1. Changes to sys/kern, sys/geom and sys/sys should be reviewed and >> approved by people on fs@freebsd.org and/or geom@freebsd.org. I >> saw comments from pjd already for example. Changes to geom has been reverted. We are working on remove rest of changes from sys/kern and sys/sys >> >> 2. Please address the following points before merging onto head: >> >> o In include/Makefile: fs/fifofs is removed. Deliberate? I applied incorrectly created patch. It was fixed with merge from HEAD. >> >> o In sbin/Makefile: we should have a distinct MK_NANDFS option >> for use by the file system code. - Is a separate MK_NANDFS knob really needed? Other filesystems don't seem to follow this route - The sys/fs/nandfs is only included per kernel config option, other userspace components per MK_NAND - Do you really think it is useful to have NAND framework built without NANDFS and vice versa, the FS without userland tools for it? >> o In sbin/nandfs/nandfs.8: could elaborate for what one could >> use the snapshots. Will be fixed >> o In sbin/nandfs/nandfs.h: define NANDFS_H. Fixed >> o In sbin/nandfs/nandfs.c: usage() is wrong. >> o In sbin/nandfs/Makefile: $FreeBSD$ is missing. Fixed >> o In sbin/mount_nandfs/mount_nandfs.8: copyright notice seems >> bogusly copied. Also, cleanerd is gone so it needs updating. >> o In sbin/mount_nandfs/mount_nandfs.c: cleanerd is gone, so >> this file could do with a some cleanups. >> o In sbin/mount_nandfs/Makefile: $FreeBSD$ is missing. mount_nandfs have been removed. >> o In sbin/mount/mntopts.h: cleanerd is gone, so should not be >> needed anymore. Fixed >> o In sbin/newfs_nandfs/newfs_nandfs.c: we have CRC32 code for >> re-use. No need to implement again. Will be fixed later. >> >> o In sbin/newfs_nandfs/Makefile: missing DPADD. Fixed >> >> o In share/mk/bsd.own.mk: Add NANDFS as well. May also want to >> add NANDSIM separately. >> o In share/man/man5/Makefile: should be NANDFS. Both above will be fixed soon. >> >> o In usr.sbin/nandtool/Makefile: missing $FreeBSD$ >> o In usr.sbin/nandsim/Makefile: missing $FreeBSD$ Both above are fixed >> o usr.sbin/Makefile should have nandtool and nandsim when >> MK_NAND is defined. >> o In lib/Makefile: should be MK_NANDFS; not MK_NAND. >> o In lib/libstand/nandfs.c: should use common CRC32 impl. >> o In lib/libstand/Makefile: should be MK_NANDFS; not MK_NAND. >> o Please get buy-in for changes to sys/kern/vfs_vnops.c, >> sys/kern/vfs_bio.c and sys/kern/vfs_subr.c from people >> on fs@freebsd.org. >> o In sys/modules/Makefile: always build nandfs module. Make >> nandsim module dependent on MK_NAND or MK_NANDSIM if added. All above will be fixed soon. >> >> o Please get buy-in for changes to sys/geom/geom_dev.c, >> sys/geom/geom_disk.c, sys/geom/geom_disk.h, sys/geom/geom.h >> and sys/geom/geom_slice.c from people on geom@freebsd.org. Geom changes has been removed. >> >> o Please get buy-in for changes to sys/sys/disk.h and >> sys/sys/bio.h from people on either fs@freebsd.org or >> geom@freebsd.org. Those changes has been removed. >> >> I also have a general usability question relating snapshots. >> Currently snapshots are read-only. A useful feature in the >> embedded space is to make a snapshot, attempt a software >> update and revert to the snapshot if and when the update fails >> or gets aborted. Is it possible to extend the snapshot feature >> in the future to allow for this use case (i.e. ignore any and >> all modifications that happened after a snapshot was made and >> mount the snapshot R/W as representing the current/latest state >> of the file system)? We are working on this. thanks, Grzesiek From owner-freebsd-geom@FreeBSD.ORG Sat Apr 14 15:44:38 2012 Return-Path: Delivered-To: geom@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A2006106566C; Sat, 14 Apr 2012 15:44:38 +0000 (UTC) (envelope-from marcel@xcllnt.net) Received: from mail.xcllnt.net (mail.xcllnt.net [70.36.220.4]) by mx1.freebsd.org (Postfix) with ESMTP id 6C00C8FC16; Sat, 14 Apr 2012 15:44:38 +0000 (UTC) Received: from dhcp-192-168-2-14.wifi.xcllnt.net (atm.xcllnt.net [70.36.220.6]) (authenticated bits=0) by mail.xcllnt.net (8.14.5/8.14.5) with ESMTP id q3EFiRom057697 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NO); Sat, 14 Apr 2012 08:44:32 -0700 (PDT) (envelope-from marcel@xcllnt.net) Mime-Version: 1.0 (Apple Message framework v1257) Content-Type: text/plain; charset=iso-8859-1 From: Marcel Moolenaar In-Reply-To: <4F88F966.5030300@semihalf.com> Date: Sat, 14 Apr 2012 08:44:36 -0700 Content-Transfer-Encoding: quoted-printable Message-Id: References: <4F7A6A0B.5000308@semihalf.com> <4F88F966.5030300@semihalf.com> To: Grzegorz Bernacki X-Mailer: Apple Mail (2.1257) Cc: geom@FreeBSD.org, fs@FreeBSD.org Subject: Re: Review of projects/nand branch X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 14 Apr 2012 15:44:38 -0000 On Apr 13, 2012, at 9:13 PM, Grzegorz Bernacki wrote: Hi Gregorz, It was good to finally meet you! >>> o In sbin/Makefile: we should have a distinct MK_NANDFS option >>> for use by the file system code. >=20 > - Is a separate MK_NANDFS knob really needed? Other filesystems don't = seem to > follow this route > - The sys/fs/nandfs is only included per kernel config option, other = userspace > components per MK_NAND > - Do you really think it is useful to have NAND framework built = without NANDFS > and vice versa, the FS without userland tools for it? I don't think it's *really* needed per se, but since nandfs is a useful file system on any kind of storage media, I can see that people may want the file system, but not the NAND framework bits. I thought that keeping the distinction between the 2 (as we do in the kernel with "options NANDFS" and "device nand") is probably a good thing. I leave it up to you. It's not of any real significance either way... Thanks for taking care of all the review comments! Cheers, --=20 Marcel Moolenaar marcel@xcllnt.net