From owner-freebsd-geom@FreeBSD.ORG Fri Nov 19 19:08:33 2010 Return-Path: Delivered-To: freebsd-geom@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8978F106564A for ; Fri, 19 Nov 2010 19:08:33 +0000 (UTC) (envelope-from olavgjerde@yahoo.no) Received: from nm19-vm0.bullet.mail.ukl.yahoo.com (nm19-vm0.bullet.mail.ukl.yahoo.com [217.146.183.113]) by mx1.freebsd.org (Postfix) with SMTP id EE3278FC08 for ; Fri, 19 Nov 2010 19:08:32 +0000 (UTC) Received: from [217.146.183.211] by nm19.bullet.mail.ukl.yahoo.com with NNFMP; 19 Nov 2010 18:56:09 -0000 Received: from [217.146.183.35] by tm4.bullet.mail.ukl.yahoo.com with NNFMP; 19 Nov 2010 18:56:09 -0000 Received: from [127.0.0.1] by omp1024.mail.ukl.yahoo.com with NNFMP; 19 Nov 2010 18:56:09 -0000 X-Yahoo-Newman-Property: ymail-3 X-Yahoo-Newman-Id: 953373.17262.bm@omp1024.mail.ukl.yahoo.com Received: (qmail 75294 invoked by uid 60001); 19 Nov 2010 18:56:09 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.no; s=s1024; t=1290192969; bh=tiFsNmvm7pTOP64PKfp10O+ufDJgJ8p9AdvQtO5xIWE=; h=Message-ID:X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=XmhZBRtgGuG8E+M/8W0WUc0T8udgZ0ABIckWW3XnVrtdy4k2pNYPcWm2KMC0jlO6TiOeLpoKzqLbmYwd7tHeFSD9/FyO44v1dYrGJkWfldqu7wfMqpJCOgxN8rZgCxgEt+aZpw+S5jq6Ztv3gOwKEgN9lGAs+MM9J8YVgkfH+FE= DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.no; h=Message-ID:X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=A/kck3/4MzlPMrLiJT5E93+g63EKHT6y/eoRt+UhIu/JNFe6stxnEAM37Nprok5KAqC0K+Vmcks0Sz+aC80lK9r+bPe9hc4lIYYCm3FbZnfbgoi+sNdHJ0TiqysO7aCp1aD53gkWrYT9bGIE1B4MQR6bv9JwaW8nx81V2/Hb4gE=; Message-ID: <837076.74458.qm@web28208.mail.ukl.yahoo.com> X-YMail-OSG: LPm6r.oVM1kGsJXr7pH7KOdYVCGrApWvtK8r8JSnRN90bxD .ghTKZ3PdF_Sw5DJ2TVfVAqXy50K5OEq2LR6c.6bPCjiiWy_b07v8MxDXMwg 4J50Xtrl4lQWK6ZYnQzd1ArV7Au9wOFP6cInU_bVBYDtYBEo3ZpT_bgdausR G79fZOpnEDqF6kH4QCqZYowD0pbwDw.TNXXdtHea2dUihSoqsJX28Fl.m8Fm 6hvebArzXLR9nEqaWAMqA6TnwHHiaPRq4msrt3rm9zICkW2CVjRpZlNLFSt4 gJZCJzvqa91vV6yWuFkuY6PZyfSE_NYYaTjgJzw-- Received: from [79.161.100.157] by web28208.mail.ukl.yahoo.com via HTTP; Fri, 19 Nov 2010 18:56:09 GMT X-Mailer: YahooMailClassic/11.4.9 YahooMailWebService/0.8.107.285259 Date: Fri, 19 Nov 2010 18:56:09 +0000 (GMT) From: Olav Gjerde To: freebsd-geom@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Subject: How to unlock a md0 device with GELI during boot? X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Nov 2010 19:08:33 -0000 I'm trying to unlock a geli encrypted file which contains multiple GELI key= s to unlock several hard drives. The reason for this is that I want to unlo= ck all the harddrives without typing the password for each harddrive for ea= ch reboot.=0A=0AI've created a small file with dd, used mdconfig to create = a md0 device, used geli init on the md0 device, attached it and finally I c= reated an ufs filesystem on the /dev/md0.eli device=0ASo far everything wor= ks fine.=0A=0AFor the boot process I added this line in /etc/rc.conf=0Amdco= nfig_md0=3D"-t vnode -f /boot/geli.img"=0AThis successfully created the md0= device.=0A=0AI've also added this below the mdconfig line in rc.conf=0Agel= i_devices=3D"md0"=0Ageli_md0_flags=3D"-k /boot/geli.key"=0A=0AIf I reboot I= get the following error message during the boot:=0ACreating md0 device (vn= ode)=0Afsck: Could not determine filesystem type.=0AFsck failed on /dev/md0= not mounting the filesystem.=0A=0ABut file works fine when I after the boo= t do this:=0Ageli attach -k /boot/geli.key md0=0A=0AIs it possible to geli = to unlock the md0 device during the boot process?=0AAre there any other alt= ernatives for my problem?=0A=0A-- Olav=0A=0A=0A