From owner-freebsd-bugs@FreeBSD.ORG Wed Apr 20 16:30:23 2005 Return-Path: Delivered-To: freebsd-bugs@hub.freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 066E916A4D9 for ; Wed, 20 Apr 2005 16:30:23 +0000 (GMT) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id B648943D53 for ; Wed, 20 Apr 2005 16:30:22 +0000 (GMT) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.13.3/8.13.3) with ESMTP id j3KGUMQt003508 for ; Wed, 20 Apr 2005 16:30:22 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.13.3/8.13.1/Submit) id j3KGUMDl003507; Wed, 20 Apr 2005 16:30:22 GMT (envelope-from gnats) Resent-Date: Wed, 20 Apr 2005 16:30:22 GMT Resent-Message-Id: <200504201630.j3KGUMDl003507@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, David Duchscher Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7192B16A4CE for ; Wed, 20 Apr 2005 16:20:56 +0000 (GMT) Received: from www.freebsd.org (www.freebsd.org [216.136.204.117]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4A15443D5D for ; Wed, 20 Apr 2005 16:20:56 +0000 (GMT) (envelope-from nobody@FreeBSD.org) Received: from www.freebsd.org (localhost [127.0.0.1]) by www.freebsd.org (8.13.1/8.13.1) with ESMTP id j3KGKtRE031759 for ; Wed, 20 Apr 2005 16:20:55 GMT (envelope-from nobody@www.freebsd.org) Received: (from nobody@localhost) by www.freebsd.org (8.13.1/8.13.1/Submit) id j3KGKtB9031757; Wed, 20 Apr 2005 16:20:55 GMT (envelope-from nobody) Message-Id: <200504201620.j3KGKtB9031757@www.freebsd.org> Date: Wed, 20 Apr 2005 16:20:55 GMT From: David Duchscher To: freebsd-gnats-submit@FreeBSD.org X-Send-Pr-Version: www-2.3 Subject: conf/80158: request configuration option for specifing the GBDE passphrase. X-BeenThere: freebsd-bugs@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 20 Apr 2005 16:30:23 -0000 >Number: 80158 >Category: conf >Synopsis: request configuration option for specifing the GBDE passphrase. >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: change-request >Submitter-Id: current-users >Arrival-Date: Wed Apr 20 16:30:22 GMT 2005 >Closed-Date: >Last-Modified: >Originator: David Duchscher >Release: FreeBSD 5.4-RC3 >Organization: Texas A&M University >Environment: FreeBSD backup.net.tamu.edu 5.4-RC3 FreeBSD 5.4-RC3 #0: Tue Apr 19 15:44:06 UTC 2005 root@backup.net.tamu.edu:/usr/obj/data/usr/src/sys/CUSTOM i386 >Description: I need to encrypt data on a RAID 5 device so that when drive failures happen and the drive is replaced, data on that failed disk is secure. We needed the system to still returned to operation without user intervention. I have modified the /etc/rc.d/gbde script to do what I need and figured I would float the idea of getting this added into the system. >How-To-Repeat: >Fix: Here is the patch to /etc/rc.d/gbde that I have made to add the passphrase to rc.conf. --- /usr/src/etc/rc.d/gbde Sun Jan 30 05:05:01 2005 +++ /etc/rc.d/gbde Wed Apr 20 11:02:42 2005 @@ -109,10 +109,13 @@ count=1 while [ ${count} -le ${gbde_attach_attempts} ]; do + if [ ! -z "${gbde_passphrase}" ]; then + passphrase="-p ${gbde_passphrase}" + fi if [ -e "${lock}" ]; then - gbde attach ${parent} -l ${lock} + gbde attach ${parent} -l ${lock} ${passphrase} else - gbde attach ${parent} + gbde attach ${parent} ${passphrase} fi if [ -e "/dev/${parent}.bde" ]; then break >Release-Note: >Audit-Trail: >Unformatted: