Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 24 Jan 2017 07:02:10 -0600
From:      "Dean E. Weimer" <dweimer@dweimer.net>
To:        Erwan David <erwan@rail.eu.org>
Cc:        freebsd-questions@freebsd.org, owner-freebsd-questions@freebsd.org
Subject:   Re: Not mounting a zpool at boot
Message-ID:  <82a4e454677dadbbce7542ff7221f578@dweimer.net>
In-Reply-To: <20170124061926.GH19230@rail.eu.org>
References:  <911a347a-a94c-717b-0d6c-eb9fd665e489@rail.eu.org> <7b235b14-4547-299e-0943-02037ab28630@rail.eu.org> <687791b8fb5fbe3e3da20a2e1b4e5a88@dweimer.net> <20170124061926.GH19230@rail.eu.org>
next in thread | previous in thread | raw e-mail | index | archive | help 
On 2017-01-24 12:19 am, Erwan David wrote:
> On Mon, Jan 23, 2017 at 10:49:14PM CET, "Dean E. Weimer"
> <dweimer@dweimer.net> said:
>> On 2017-01-23 3:23 pm, Erwan David wrote:
>> >Le 01/23/2017 à 22:20, Erwan David a écrit :
>> >>Hi,
>> >>
>> >>I have a machine (11-RELEASE) with 2 pools, one encrypted with the
>> >
>> >                                                  UNencrypted
>> >
>> >>system and one encrypted with data. I want to boot without having to
>> >>enter passphrase then ssh to the machine to import the encrypted pool.
>> >>
>> >>I put geli_devices="" in /etc/rc.conf in order to prevent the passphrase
>> >>question, but to no avail, system still asks it. How can I boot without
>> >>importing the encrypted pool, nor giving the passphrase (US keyboard is
>> >>unsuitable for this).
>> >>
>> 
>> Do you have geom_eli_load="YES" set in your /boot/loader.conf? If you 
>> don't
>> want to load the GELI volumes I think you can simply remove that. Once 
>> you
>> login and issue the geli attach command it should auto load the kernel
>> modules. I have a SATA drive in a hot swapable bay encrypted with GELI 
>> for
>> my backups. I have no problems with the system booting and not 
>> prompting for
>> password. Then once its booted I login and attach the geli volume so 
>> that
>> backups can run.
>> 
>> Without the GELI modules loaded at boot time it shouldn't be able to
>> determine that there are encrypted volumes and just ignore them at 
>> boot
>> time.
> 
> Yes I load the geli module, but need it for the gmirror+geli swap...

I guess you could always manually attach the Swap as well with swapon 
command after boot as well as mount the data volume. Other than that you 
maybe out of luck unless someone else has an idea

-- 
Thanks,
    Dean E. Weimer
    http://www.dweimer.net/

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?82a4e454677dadbbce7542ff7221f578>