From owner-freebsd-geom@FreeBSD.ORG  Thu Apr  6 06:57:38 2006
Return-Path: <owner-freebsd-geom@FreeBSD.ORG>
X-Original-To: freebsd-geom@freebsd.org
Delivered-To: freebsd-geom@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3670E16A43B
	for <freebsd-geom@freebsd.org>; Thu,  6 Apr 2006 06:57:38 +0000 (UTC)
	(envelope-from pjd@garage.freebsd.pl)
Received: from mail.garage.freebsd.pl (arm132.internetdsl.tpnet.pl
	[83.17.198.132])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 8CEDA43D55
	for <freebsd-geom@freebsd.org>; Thu,  6 Apr 2006 06:57:33 +0000 (GMT)
	(envelope-from pjd@garage.freebsd.pl)
Received: by mail.garage.freebsd.pl (Postfix, from userid 65534)
	id 69F1F51CCF; Thu,  6 Apr 2006 08:57:30 +0200 (CEST)
Received: from localhost (dkv92.neoplus.adsl.tpnet.pl [83.24.25.92])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by mail.garage.freebsd.pl (Postfix) with ESMTP id AD5925174E;
	Thu,  6 Apr 2006 08:57:21 +0200 (CEST)
Date: Thu, 6 Apr 2006 08:56:18 +0200
From: Pawel Jakub Dawidek <pjd@FreeBSD.org>
To: Adam Wood <aswood@gmail.com>
Message-ID: <20060406065618.GC2667@garage.freebsd.pl>
References: <77518d100604051833u92d3581mbd1dc90dfe8f5638@mail.gmail.com>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="KdquIMZPjGJQvRdI"
Content-Disposition: inline
In-Reply-To: <77518d100604051833u92d3581mbd1dc90dfe8f5638@mail.gmail.com>
X-PGP-Key-URL: http://people.freebsd.org/~pjd/pjd.asc
X-OS: FreeBSD 7.0-CURRENT i386
User-Agent: mutt-ng/devel-r535 (FreeBSD)
X-Spam-Checker-Version: SpamAssassin 3.0.4 (2005-06-05) on 
	mail.garage.freebsd.pl
X-Spam-Level: 
X-Spam-Status: No, score=-0.5 required=3.0 tests=BAYES_00,RCVD_IN_NJABL_DUL,
	RCVD_IN_SORBS_DUL autolearn=no version=3.0.4
Cc: freebsd-geom@freebsd.org
Subject: Re: geli not prompting for password on boot
X-BeenThere: freebsd-geom@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: GEOM-specific discussions and implementations
	<freebsd-geom.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-geom>,
	<mailto:freebsd-geom-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-geom>
List-Post: <mailto:freebsd-geom@freebsd.org>
List-Help: <mailto:freebsd-geom-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-geom>,
	<mailto:freebsd-geom-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Apr 2006 06:57:38 -0000


--KdquIMZPjGJQvRdI
Content-Type: text/plain; charset=iso-8859-2
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Wed, Apr 05, 2006 at 08:33:55PM -0500, Adam Wood wrote:
+> Hello,
+>=20
+> I've recently began researching GELI and disk-encryption altogether
+> and have run into a problem.
+>=20
+> I've created a bootable media with the 6.0-RELEASE kernel with all the
+> standard modules. It also has geom_eli_load=3D"YES" in loader.conf. I
+> also have the following /etc/fstab in the boot media:
+>=20
+> # Device                Mountpoint      FStype  Options         Dump    =
Pass#
+> /dev/ad0.elib           none            swap    sw              0       0
+> /dev/ad0.elia           /               ufs     rw              1       1
+> /dev/ad0.elie           /tmp            ufs     rw              2       2
+> /dev/ad0.elif           /usr            ufs     rw              2       2
+> /dev/ad0.elid           /var            ufs     rw              2       2
+>=20
+> I created /dev/ad0.eli via the following:
+>=20
+> geli init -b -l 256 /dev/ad0
+>=20
+> and the partitions:
+>=20
+> bsdlabel -w /dev/ad0.eli
+> bsdlabel -e /dev/ad0.eli
+>=20
+> However, when I boot, I can see that geom_eli is loaded, but it does
+> not ever ask me for the password. I believe that is the point of the
+> -b argument I supplied to the geli init command.
+>=20
+> When I boot I am greeted with the following error:
+>=20
+> Trying to mount root from ufs:/dev/ad0.elia
+>=20
+> Manual root filesystem specification:
+>  <fstype>:<device> Mount <device> using filesystem <fstype>
+>                                  eg. ufs:da0s1a
+> ?                           List valid disk boot devices
+> <empty line>          Abort manual input
+>=20
+> mountroot>
+>=20
+> Any help you could provide would be much appreciated.

Which FreeBSD version are you using? There could be a race in earlier
versions where geli stops waiting for providers before they actually
show up. You increase debug level to 1 by adding:

kern.geom.eli.debug=3D1

to the /boot/loader.conf and see when message "Tasting no more." is
printed.

This problem is fixed in 6-STABLE and will be also in 6.1-RELEASE.

--=20
Pawel Jakub Dawidek                       http://www.wheel.pl
pjd@FreeBSD.org                           http://www.FreeBSD.org
FreeBSD committer                         Am I Evil? Yes, I Am!

--KdquIMZPjGJQvRdI
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)

iD8DBQFENLuSForvXbEpPzQRAoDdAKDN3YyUBh+6SDrqr/cynN9ggqjNqACdGQi8
N+7jXx3PCLvUVBcAb1eO3x0=
=oOCp
-----END PGP SIGNATURE-----

--KdquIMZPjGJQvRdI--