From owner-freebsd-questions@FreeBSD.ORG  Sat Aug 23 12:58:43 2014
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 9F7D353E
 for <questions@freebsd.org>; Sat, 23 Aug 2014 12:58:43 +0000 (UTC)
Received: from feeder.usenet4all.se (1-1-1-38a.far.sth.bostream.se
 [82.182.32.53])
 (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 1FF3E31FA
 for <questions@freebsd.org>; Sat, 23 Aug 2014 12:58:41 +0000 (UTC)
Received: from kw.news4all.se (localhost [127.0.0.1])
 by feeder.usenet4all.se (8.13.1/8.13.1) with ESMTP id s7NCwVFP029991;
 Sat, 23 Aug 2014 14:58:31 +0200 (CEST)
 (envelope-from bah@bananmonarki.se)
Message-ID: <53F88FF7.5000105@bananmonarki.se>
Date: Sat, 23 Aug 2014 14:58:31 +0200
From: Bernt Hansson <bah@bananmonarki.se>
User-Agent: Mozilla/5.0 (X11; FreeBSD amd64;
 rv:24.0) Gecko/20100101 Thunderbird/24.3.0
MIME-Version: 1.0
To: "Michael W. Lucas" <mwlucas@michaelwlucas.com>,
 Anton Sayetsky <vsjcfm@gmail.com>
Subject: Re: geli keyfile not loading at boot
References: <20140820150557.GA90970@bewilderbeast.blackhelicopters.org>
 <CAFG2KCKhY_4M-=+nA1Wz8LyRKt=K8t4bhQxQ84LakRLmHVdXLA@mail.gmail.com>
 <20140820211307.GA92271@bewilderbeast.blackhelicopters.org>
In-Reply-To: <20140820211307.GA92271@bewilderbeast.blackhelicopters.org>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Cc: questions <questions@freebsd.org>
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.18-1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 23 Aug 2014 12:58:43 -0000

On 2014-08-20 23:13, Michael W. Lucas wrote:
> On Wed, Aug 20, 2014 at 06:10:51PM +0300, Anton Sayetsky wrote:
>> 2014-08-20 18:05 GMT+03:00 Michael W. Lucas <mwlucas@michaelwlucas.com>:
>>> Hi,
>>>
>>> I have a default FreeBSD 10.0/amd64 install.
>>>
>>> I'm trying to make a GELI device attach at boot. I initialized the
>>> partition with -b, and am prompted at boot. When I try to enter the
>>> passphrase, I keep getting told that it's incorrect. Once I get into
>>> multi-user mode and manually attach the device, it attaches just fine.
>>>
>>> It seems that GELI isn't finding my key file.
>>>
>>> My initial root partition is da0p2. The key is /boot/da1p1.key. The
>>> GELI partition is da1p1. Here's my loader.conf:
>>>
>>> geom_eli_load=YES
>>> geli_da1p1_keyfile0_load="YES"
>>
>> ->>>
>>> geli_da1p1_keyfile0_type="da0p2:geli_da1p1_keyfile0"
>> -<<<
>> This is wrong.
> 
> Thanks, Anton. This stuff is poorly documented.
> 
>>From looking at
> https://lists.freebsd.org/pipermail/freebsd-geom/2014-June/005944.html,
> it looks like this should work, but it doesn't.
> 
> geli_da1p1key_keyfile0_load="YES"
> geli_da1p1key_keyfile0_type="da0p2:geli_keyfile0"
> geli_da1p1key_keyfile0_name="/boot/da1p1.key"
> boot_verbose=1
> 
> Any suggestions, folks? Is there a good explanation out there
> anywhere? All I've found are PRs and very specific mailing list posts
> aimed at specific situations. If I can figure out the general case,
> I'll get it in the man page.

This page is quite good.
http://cb.vu/unixtoolbox.xhtml