From owner-freebsd-geom@FreeBSD.ORG Sat Nov 23 05:44:54 2013 Return-Path: Delivered-To: freebsd-geom@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 48A8B2F7 for ; Sat, 23 Nov 2013 05:44:54 +0000 (UTC) Received: from mail-wg0-x235.google.com (mail-wg0-x235.google.com [IPv6:2a00:1450:400c:c00::235]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id CB8C42615 for ; Sat, 23 Nov 2013 05:44:53 +0000 (UTC) Received: by mail-wg0-f53.google.com with SMTP id b13so1976580wgh.20 for ; Fri, 22 Nov 2013 21:44:52 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:content-type; bh=p3lj2UauW+pw+CH0mEABUj4eCA/3KH/XF+XalOpmP+A=; b=XeGPHPjZMcnRbmR4MjCv+V2Vc/e8lxlhDAoaWlU92FxvUoh/ETqo3rUAdKyzBX5/5L zdBdfW2MGJgRdcgjj76J5506Xyh4d9n8UPiCy65oH9K/HdFqX7P6EcHkzBPbaSlSFuIW Sn/5y9WwlD2PM0zkf4CIugPckpHA+0dKD+OFiob2xg1lrCclD2J9TCsdI4lemAMi3td8 HFiZMrervn/6soIIifFK/WXAY+DzFIfh7j3DR6NVh6Wd2TJEGlDbZlgWteghtWYxgeYI nCCI5Swoaw8WPdVF2AOOxzryvf2AjTJjsobobK8naDXJHmQ04e5jYOIgsbxahrb0YVSf 2r+g== X-Received: by 10.180.189.49 with SMTP id gf17mr5395477wic.23.1385185492115; Fri, 22 Nov 2013 21:44:52 -0800 (PST) MIME-Version: 1.0 Sender: s.khanchi@gmail.com Received: by 10.194.236.4 with HTTP; Fri, 22 Nov 2013 21:44:32 -0800 (PST) In-Reply-To: <20131121200642.GZ2279@funkthat.com> References: <20131121080749.GO2279@funkthat.com> <20131121200642.GZ2279@funkthat.com> From: h bagade Date: Sat, 23 Nov 2013 09:14:32 +0330 X-Google-Sender-Auth: VlQVpfh0CLeDRL1EaWFJb7U6iTU Message-ID: Subject: Re: root mount failure in freebsd 9.2 encrypted disk! To: h bagade , freebsd-geom@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.16 X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.16 Precedence: list List-Id: GEOM-specific discussions and implementations List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 23 Nov 2013 05:44:54 -0000 On Thu, Nov 21, 2013 at 11:36 PM, John-Mark Gurney wrote: > h bagade wrote this message on Thu, Nov 21, 2013 at 12:24 +0330: > > On Thu, Nov 21, 2013 at 11:37 AM, John-Mark Gurney > wrote: > > > > > h bagade wrote this message on Thu, Nov 21, 2013 at 11:16 +0330: > > > > I've tried to encrypt my disk in freebsd 9.2 based on the following > > > guide: > > > > http://cgarcia.org/posts/FreeBSD-FDE-Install.html > > > > > > > > but it failed to mount root and encountered the following error: > > > > mounting from ufs /dev/ada0p3.eli failed with error 19 > > > > > > > > I have tried so many ways but all ends in above error. I have done > the > > > same > > > > process in freebsd 8.2 without any problem and I don't know why the > error > > > > occurs in freebsd 9.2?! > > > > > > > > Does anyone have any idea about this or how I can fix it? > > > > > > Did you see the ask for the passphrase on boot option for the > > > partition? It's the -b option, and you can fix that w/: > > > geli configure -b /dev/ada0p3.eli > > > > > > > Thank you so much, my problem is solved by this command. > > > > > > > > The guide you referenced does use the -b in the geli init command... > > > > > > > So -b option on init command doesn't work?!! it was fine with freebsd > 8.2! > > I'd be surprised if it doesn't. Are you sure you didn't acidentally > not include the -b on init? I'm pretty sure it worked when I setup my > 9.1-PR box, and not much has changed w/ geli... I'm pretty sure I > didn't know about configure till I looked it up for you... > > Glad it's working though! > > -- > John-Mark Gurney Voice: +1 415 225 5579 > > "All that I will do, has been done, All that I have, has not." > May be problem is somewhere else! The configure command works for the mentioned guide; but I still have problems with my own way and it doesn't ask for passphrase when it boots! :( I have checked flags and BOOT flag is set. Differences between working encrypted disk and non-working based on "geli list" are: 1- RW-DETACH flag is set for the working one which is not in non-working 2- Mode option in providers part is r1w1e1 for working one and r0w0e0 for non-working Also, you mentioned the poor performance of geli in freebsd 9.2. I want to know if it affects only on boot or entire accesses to disk is influenced?! In other words, is disk decryption is done on start-up one and disk will remain unencrypted till the end or encryption/decryption is done on each disk access? And the last question, is performance decrease in compare with older freebsd versions or there is a serious issue?