From owner-freebsd-questions@FreeBSD.ORG  Sun Jan 20 17:25:43 2008
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id A9E1A16A41A
	for <freebsd-questions@freebsd.org>;
	Sun, 20 Jan 2008 17:25:43 +0000 (UTC)
	(envelope-from rakhesh@rakhesh.com)
Received: from an-out-0708.google.com (an-out-0708.google.com [209.85.132.242])
	by mx1.freebsd.org (Postfix) with ESMTP id 775E613C46E
	for <freebsd-questions@freebsd.org>;
	Sun, 20 Jan 2008 17:25:43 +0000 (UTC)
	(envelope-from rakhesh@rakhesh.com)
Received: by an-out-0708.google.com with SMTP id c14so430389anc.13
	for <freebsd-questions@freebsd.org>;
	Sun, 20 Jan 2008 09:25:43 -0800 (PST)
Received: by 10.100.206.11 with SMTP id d11mr12528330ang.88.1200849942645;
	Sun, 20 Jan 2008 09:25:42 -0800 (PST)
Received: from smtp.home.rakhesh.com ( [82.178.102.129])
	by mx.google.com with ESMTPS id l31sm5661699hsa.0.2008.01.20.09.25.40
	(version=TLSv1/SSLv3 cipher=OTHER);
	Sun, 20 Jan 2008 09:25:41 -0800 (PST)
Received: from dogmatix (dogmatix [192.168.17.31])
	by smtp.home.rakhesh.com (Postfix) with ESMTP id E738F1140C
	for <freebsd-questions@freebsd.org>;
	Sun, 20 Jan 2008 21:19:41 +0400 (GST)
Date: Sun, 20 Jan 2008 21:25:36 +0400 (GST)
X-X-Sender: rakhesh@dogmatix.home.rakhesh.com
To: freebsd-questions@freebsd.org
Message-ID: <20080120212048.J91357@dogmatix.home.rakhesh.com>
X-Blog: http://rakhesh.com/
X-Notes: http://rakhesh.net/
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
From: Rakhesh Sasidharan <rakhesh@rakhesh.com>
Subject: GELI key from a USB disk
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 20 Jan 2008 17:25:43 -0000

Hi,

I thought this should be easy but its not working ... :(

I have a USB disk /dev/da0. That's got a GELI key. I also have an external 
hard-disk with partitions /dev/da1s1[a-f]. All GELI encrypted.

What I want is that while booting up these encrypted partitions are 
loaded. And their key taken from the da0 USB disk.

I tried the obvious like mounting the USB disk in /etc/fstab and giving it 
a lower pass no. than the encrypted partitions. But turns out that doesn't 
work. FreeBSD tries to attach the GELI partitions before mounting local 
filesystems! Any way to delay this step till after the USB disk is mounted 
and the key available? Or any other suggestions?

Thanks,


 				- Rakhesh
                                 http://rakhesh.net/