Date: Mon, 18 Apr 2011 20:03:16 +0200 From: Pawel Jakub Dawidek <pjd@FreeBSD.org> To: John Baldwin <jhb@freebsd.org> Cc: rank1seeker@gmail.com, freebsd-hackers@freebsd.org Subject: Re: Add SUM sysctl Message-ID: <20110418180316.GA3097@garage.freebsd.pl> In-Reply-To: <201104180824.57541.jhb@freebsd.org> References: <20110415.150349.671.1@DEV> <D18D23C3-5179-46BE-BAA6-288B06DB0408@gsoft.com.au> <20110416.142444.546.5@DEV> <201104180824.57541.jhb@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--h31gzZEtNLTqOjlF Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Apr 18, 2011 at 08:24:57AM -0400, John Baldwin wrote: > On Saturday, April 16, 2011 10:24:44 am rank1seeker@gmail.com wrote: > > After compilation of kernel and world in MUM, kernel is installed in MU= M,=20 > > but to install world, we reboot into SUM, then install world. (HANDBOOK) > > Now, in case of GELI usage AND if upgrading is taking place, i.e; 8.2 -= >=20 > > 8.3, once you reboot into SUM to install world, you are doomed, BECAUSE= =20 > > ... > > Kernel will bitch (GELI part), about world->kernel mismatch and you won= 't=20 > > be able to install world as you cant decrypt geom providers!! > > The only way to save yourself in that case is to restore /boot/kernel.o= ld,=20 > > or one is doomed. >=20 > This seems broken to me. An 8.3 kernel+modules should be able to handle = GELI=20 > devices with an 8.2 world. If they can't, it means someone broke the ABI= =2E =20 > Even a 9.0 kernel should work fine with an 8.x-stable world. This is generally not expected to have a bit of the system encrypted. You either have whole root encrypted and there is no userland involved to attach it or you have some secure partition encrypted. I don't fully understand how you can boot your system and then need to attach GELI provider to be able to install world. If you booted fine then your system is available and not encrypted. --=20 Pawel Jakub Dawidek http://www.wheelsystems.com FreeBSD committer http://www.FreeBSD.org Am I Evil? Yes, I Am! http://yomoli.com --h31gzZEtNLTqOjlF Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.14 (FreeBSD) iEYEARECAAYFAk2sfOQACgkQForvXbEpPzQ3iQCguZmX062IEPzPMBYNMAHwAWtB 3S0AoOhJt7imwkuOzGpKAQ3MPe8jQCGx =UOMQ -----END PGP SIGNATURE----- --h31gzZEtNLTqOjlF--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20110418180316.GA3097>