From owner-freebsd-stable@FreeBSD.ORG  Wed Nov  7 02:48:17 2007
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 0DF9F16A418
	for <freebsd-stable@freebsd.org>; Wed,  7 Nov 2007 02:48:17 +0000 (UTC)
	(envelope-from marcolz@serv1-mk3.ilse.net)
Received: from serv1-mk3.ilse.net (serv1-mk3.ilse.net [62.69.160.41])
	by mx1.freebsd.org (Postfix) with ESMTP id 7CCD313C4AA
	for <freebsd-stable@freebsd.org>; Wed,  7 Nov 2007 02:48:15 +0000 (UTC)
	(envelope-from marcolz@serv1-mk3.ilse.net)
Received: (from marcolz@localhost)
	by serv1-mk3.ilse.net (8.13.4/8.12.11) id lA6FZOhe017362;
	Tue, 6 Nov 2007 16:35:24 +0100 (CET) (envelope-from marcolz)
Date: Tue, 6 Nov 2007 16:35:24 +0100
From: Marc Olzheim <marcolz@ilse.net>
To: FreeBSD <freebsd-stable@freebsd.org>
Message-ID: <20071106153524.GD89335@ilse.net>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="JwB53PgKC5A7+0Ej"
Content-Disposition: inline
User-Agent: Mutt/1.5.11
Cc: Marc Olzheim <marcolz@stack.nl>
Subject: Boot-time pass for geli on 7.0-BETA2 (and RELENG_7) not working for
	me.
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>, 
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Nov 2007 02:48:17 -0000


--JwB53PgKC5A7+0Ej
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Hi.

I can't get the kernel to accept my passphrase at boot time.

Excerpt from dmesg:

=2E..

FreeBSD 7.0-BETA2 #0: Tue Nov  6 15:06:03 UTC 2007
    root@lapcat.ilse.net:/usr/obj/usr/src/sys/LAPCAT
Preloaded elf kernel "/boot/kernel/kernel" at 0xffffffff808a5000.
Preloaded elf obj module "/boot/kernel/geom_eli.ko" at 0xffffffff808a5288.
Preloaded elf obj module "/boot/kernel/crypto.ko" at 0xffffffff808a58f8.
Preloaded elf obj module "/boot/kernel/zlib.ko" at 0xffffffff808a5f60.
Preloaded ad4s3e:keyfile0 "/boot/keys/ad4s3e.key" at 0xffffffff808a64c8.
Calibrating clock(s) ... i8254 clock: 1193193 Hz
CLK_USE_I8254_CALIBRATION not specified - using default frequency
Timecounter "i8254" frequency 1193182 Hz quality 0
Calibrating TSC clock ... TSC clock: 1496263977 Hz
CPU: Intel(R) Core(TM)2 Duo CPU     T5250  @ 1.50GHz (1496.26-MHz K8-class =
CPU)
  Origin =3D "GenuineIntel"  Id =3D 0x6fd  Stepping =3D 13
  Features=3D0xbfebfbff<FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PG=
E,MCA,CMOV,PAT,PSE36,CLFLUSH,DTS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE>
  Features2=3D0xe39d<SSE3,RSVD2,MON,DS_CPL,EST,TM2,SSSE3,CX16,xTPR,PDCM>
  AMD Features=3D0x20100800<SYSCALL,NX,LM>
  AMD Features2=3D0x1<LAHF>
  Cores per package: 2
usable memory =3D 2128379904 (2029 MB)

=2E..

ad4: 114473MB <FUJITSU MHW2120BH 8918> at ata2-master SATA150
ad4: 234441648 sectors [232581C/16H/63S] 16 sectors/interrupt 1 depth queue
GEOM: new disk ad4
battery0: battery initialization done, tried 1 times
GEOM_LABEL: Label for provider ad4s4 is ntfs/HP_RECOVERY.
Enter passphrase for ad4s3e: (probe4:sbp0:0:4:0): error 22
(probe4:sbp0:0:4:0): Unretryable Error
(probe5:sbp0:0:5:0): error 22
(probe5:sbp0:0:5:0): Unretryable Error
(probe6:sbp0:0:6:0): error 22
(probe6:sbp0:0:6:0): Unretryable Error
(probe0:sbp0:0:0:0): error 22
(probe0:sbp0:0:0:0): Unretryable Error
(probe1:sbp0:0:1:0): error 22
(probe1:sbp0:0:1:0): Unretryable Error
(probe2:sbp0:0:2:0): error 22
(probe2:sbp0:0:2:0): Unretryable Error
(probe3:sbp0:0:3:0): error 22
(probe3:sbp0:0:3:0): Unretryable Error

GEOM_ELI: Wrong key for ad4s3e. Tries left: 2.
Enter passphrase for ad4s3e:=20
GEOM_ELI: Wrong key for ad4s3e. Tries left: 1.
Enter passphrase for ad4s3e:=20
GEOM_ELI: Wrong key for ad4s3e. No tries left.
SMP: AP CPU #1 Launched!
cpu1 AP:
     ID: 0x01000000   VER: 0x00050014 LDR: 0x00000000 DFR: 0xffffffff
  lint0: 0x00010700 lint1: 0x00000400 TPR: 0x00000000 SVR: 0x000001ff
  timer: 0x000200ef therm: 0x00010000 err: 0x00010000 pcm: 0x00010000

=2E..

Trying to mount root from ufs:/dev/ad4s3a
start_init: trying /sbin/init
Loading configuration files.
No suitable dump device was found.
Entropy harvesting:
 interrupts
 ethernet
 point_to_point
 kickstart
=2E
Starting file system checks:
Setting hostuuid: 434e4637-3332-3352-3451-001b24850b51.
Setting hostid: 0x55ee28a8.
Mounting local file systems:

=2E..

But when trying after boot, "geli attach -k /boot/keys/ad4s3e.key":

GEOM_ELI: Device ad4s3e.eli created.
GEOM_ELI: Encryption: AES-CBC 128
GEOM_ELI:     Crypto: software

Then it works fine.

Any ideas ?



Another issue with BETA1.5 was that when disklabeling /dev/ad4s3e.eli
into multiple slices, after newfsing and mounting, I could create files
and fsck the filesystem, but as soon as I created a directory, it caused
a panic. I didn't see that after cvsuping to RELENG_7 then though, so i
assume something was already fixed in that department.

Marc

--JwB53PgKC5A7+0Ej
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)

iD8DBQFHMIm8ezjnobFOgrERAtmzAJoCc547dHspBbPbDmeSKrGOKKOyVQCfTyQK
KnFuVGbJfo4EvU1ZyWDa7Qc=
=iibO
-----END PGP SIGNATURE-----

--JwB53PgKC5A7+0Ej--