From owner-freebsd-questions@FreeBSD.ORG Tue Jul 14 08:06:34 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 822251065674 for ; Tue, 14 Jul 2009 08:06:34 +0000 (UTC) (envelope-from gortaur@gmail.com) Received: from fg-out-1718.google.com (fg-out-1718.google.com [72.14.220.152]) by mx1.freebsd.org (Postfix) with ESMTP id 1711F8FC0C for ; Tue, 14 Jul 2009 08:06:33 +0000 (UTC) (envelope-from gortaur@gmail.com) Received: by fg-out-1718.google.com with SMTP id 13so760662fge.12 for ; Tue, 14 Jul 2009 01:06:33 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:date:message-id:subject :from:to:content-type:content-transfer-encoding; bh=5HTjwr7uifhyjNdzFVN0yR0SEhpUtcdR0+JdFSVjd+8=; b=pV/Ht+lsXUrTc13YqUp1F2CcngyuJYhYjo89pckl7oBJ8weJo8++KFbbLmklc3sjR8 v8sZjoQ0j2Y+8nzM/W0DeWnznF9d2kNayqBKiSn/MOQKUhbeNgfp2/wt0Y2P2Z29Dr0w 2x/+y+32RBYRztSvK5B5PpJM0j7NgEwNbb8Fk= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type :content-transfer-encoding; b=aQAEK2/c4AUgdBrDOyvrHg6SmPxjExSMkaVUpDa7gUjpEW25Qclz/8MTLkKUUXulQG +ZhPMYugfZvOrJgC+CS7xxonSo5myg027bJoBEj78gH7QKn10Hrnb5hEuLpBgtrUXTws WDhXxtEgHi8m3m4KnNXvyA8MnNLHJYGBEhB6U= MIME-Version: 1.0 Received: by 10.86.9.12 with SMTP id 12mr3838677fgi.46.1247556943621; Tue, 14 Jul 2009 00:35:43 -0700 (PDT) Date: Tue, 14 Jul 2009 10:35:43 +0300 Message-ID: <89b086450907140035h285b916dm9a199c9b9086e538@mail.gmail.com> From: Taras Danko To: freebsd-questions@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Subject: gmirror + geli problem : wrong key for mirror/gm0 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 14 Jul 2009 08:06:34 -0000 Hello to all. I've got a problem setting up the gmirror + geli combination for / under the FreeBSD 7.2-RELEASE. I have successfully created the mirror/gm0 device from "fixit" bsd livecd, then I've initialized the geli provider using the command geli init -b -l 256 -s 4096 -K /usb/gm0.key /dev/mirror/gm0 geli attach -k /usb/gm0.key /dev/mirror/gm0 went successfully as well as detach/re-attach so passphrase and the key is ok. after that I've detached the gm0 and rebooted from the bootable usb-stick, which contained the /boot/ /etc/ and key-file + loader.conf with the following: geli_gm0_keyfile0_load="YES" geli_gm0_keyfile0_type="gm0:geli_keyfile0" geli_gm0_keyfile0_name="/boot/keys/gm0.key" kern.geom.eli.visible_passphrase=1 During the boot process I got a message that mirror/gm0 is created and after that I was asked for my pass-phrase. I've typed the pass-phrase (for the experiment clearance it was "aaa" - without any "special" characters or something) and got an error: GEOM_ELI: wrong key for mirror/gm0 The keyboard is ok - I see all the characters typed (due to visible_passphrase param in my loader.conf) I have disabled the kbdmux device in kernel which was blamed as a geli troublemaker as well. GEOM mirror and eli options as well as cryptodevice are compiled into the kernel. Booting from "fixit" cd again shows that cryptoprovider creates and mounts ok with the mentioned key and passphrase. My guess was to change the "gm0" to mirror/gm0 at geli_ strings of loader.conf file - I've tried that but with no luck (maybe I did it incorrectly) There are really a very few articles over internet describing geli+gmirror combination - so I'll very much appreciate any suggestions! -- wbr, Taras Danko