From owner-freebsd-fs@FreeBSD.ORG Wed Jan 23 23:11:06 2008 Return-Path: Delivered-To: freebsd-fs@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 453CC16A41B for ; Wed, 23 Jan 2008 23:11:06 +0000 (UTC) (envelope-from freebsd-fs@m.gmane.org) Received: from ciao.gmane.org (main.gmane.org [80.91.229.2]) by mx1.freebsd.org (Postfix) with ESMTP id 0FC7A13C4EB for ; Wed, 23 Jan 2008 23:11:05 +0000 (UTC) (envelope-from freebsd-fs@m.gmane.org) Received: from list by ciao.gmane.org with local (Exim 4.43) id 1JHokJ-0008Q0-Bn for freebsd-fs@freebsd.org; Wed, 23 Jan 2008 23:11:03 +0000 Received: from host71-40-static.74-81-b.business.telecomitalia.it ([81.74.40.71]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 23 Jan 2008 23:11:03 +0000 Received: from lapo by host71-40-static.74-81-b.business.telecomitalia.it with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 23 Jan 2008 23:11:03 +0000 X-Injected-Via-Gmane: http://gmane.org/ To: freebsd-fs@freebsd.org From: Lapo Luchini Date: Thu, 24 Jan 2008 00:10:52 +0100 Lines: 19 Message-ID: Mime-Version: 1.0 Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: 7bit X-Complaints-To: usenet@ger.gmane.org X-Gmane-NNTP-Posting-Host: host71-40-static.74-81-b.business.telecomitalia.it User-Agent: Thunderbird 2.0.0.9 (X11/20071228) X-Enigmail-Version: 0.95.0 OpenPGP: id=C8F252FB Sender: news Subject: can GELI wait for da0 to appear in order to load keys from it? X-BeenThere: freebsd-fs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Filesystems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Jan 2008 23:11:06 -0000 Dear Pawel (et al), when GELI is used in 'boot mode' (geli init -b), can it wait for the file system specified in loader.conf to appear? I have a key on a SD card and it gets probed just after GELI complained that "Found no key files in loader.conf for ad4s1d"... I'm trying to load the encrypted devices from loader.conf instead of rc.conf because there is a ZFS-on-root on these, so they must load before root mount is attempted... there's also the problem that that is before fstab is even taken into account, but I (think I) solved that part of the problem using a (single-sector) partition of that SD card to hold the key, so I can use da0s2 as a key without mounting anything (as far as command line "geom attach -p -k /dev/da0s2" goes, it works perfectly; I wonder if it can work before root, though). Or any other idea to achieve the same result? (i.e. having the "as much as possible" on ZFS+GELI) Lapo