geli load key before rootfs is mounted

Alin-Adrian Anton aanton at spintech.ro
Sat Dec 23 08:17:14 PST 2006


Chris wrote:
> I think you maybe running into a bug in 6.1 where the keyboard wont 
> respond during the boot process. Of course you don't notice because 
> keystrokes have no visual feedback at password input.
> 
> Try adding this line to "/boot/device.hint" on your boot media:
> 
> hint.kbdmux.0.disabled="1"
> 
> I'm booting an encrypted root file system fine with GELI.
> 

Thank's for the tip. After reinitializing the geli device with -b flag, 
it works.  Before, I used an rc script to geli attach, my mistake. Of 
course, rc scripts are read after boot. It seems loader.conf contents 
(which are exactly as before) are somehow ignored if the -b flag for 
that device is missing. I didn't dig for the details.

Without the hint for kbdmux, it freezes. Or at least appears so, because 
it has no reaction to anything pressed.

After adding the hint, it will attach the geli device correctly, 
however, the kernel fault traps right after that. I'm wondering if this 
is still a kbdmux issue, perhaps removing it from the kernel is better.


-- 
Alin-Adrian Anton
GPG keyID 0x183087BA (B129 E8F4 7B34 15A9 0785  2F7C 5823 ABA0 1830 87BA)
gpg --keyserver pgp.mit.edu --recv-keys 0x183087BA

"It is dangerous to be right when the government is wrong." - Voltaire


More information about the freebsd-questions mailing list