Date: Wed, 27 May 2009 16:25:03 +0300 From: Dan Naumov <dan.naumov@gmail.com> To: freebsd-geom@freebsd.org Subject: Re: Questions on GELI encryption Message-ID: <cf9b1ee00905270625g51c4803cj9b246097da0ad3a0@mail.gmail.com> In-Reply-To: <E1M9IDy-000B1z-U0@dilbert.ticketswitch.com> References: <cf9b1ee00905270445k179b9354sa44acee91507cfb8@mail.gmail.com> <E1M9IDy-000B1z-U0@dilbert.ticketswitch.com>
next in thread | previous in thread | raw e-mail | index | archive | help
I decided to give geom / geli a bit of a disaster test (inside a VM) 1) I created a new disk "ad1" 2) Created a new slice on it "ad1s1" 3) Created 2 similarly sized (~20GB) partitions inside the silce: "ad1s1d" and "ad1s1e" ======================= geli init -s 4096 /dev/ad1s1d Enter new passphrase: geli attach /dev/ad1s1d Enter passphrase: newfs /dev/a1s1d.eli mount /dev/a1s1d.eli /mnt/geli1 ======================= Alright, now we have a passphrase-protected geli partition working and mounted at /mnt/geli1, now the stress test: cp -R /usr/ports /mnt/geli1 <wait 10 seconds> <pull the plug> Now that we have rebooted the machine: ======================= geli attach /dev/ad1s1d Enter passphrase: GEOM_ELI: Device ad1s1d.eli created. GEOM_ELI: Encryption: AES-CBC 128 GEOM_ELI: Crypto: software GEOM_LABEL: Label for provider ad1s1d.eli is ufsid/4a1d391db28ff834. ======================= Looking good so far, right? ======================= mount /dev/ad1s1d.eli /mnt/geli1 mount: /dev/ad1s1d.eli : Operation not permitted fsck /dev/ad1s1d.eli fsck: Could not determine filesystem type ======================= Oops :( - Dan Naumov
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?cf9b1ee00905270625g51c4803cj9b246097da0ad3a0>