kern/157863: kbdmux prevents geli passwords from being entered
properly on boot
Robert Simmons
rsimmons0 at gmail.com
Tue Jun 14 04:00:21 UTC 2011
>Number: 157863
>Category: kern
>Synopsis: kbdmux prevents geli passwords from being entered properly on boot
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Tue Jun 14 04:00:20 UTC 2011
>Closed-Date:
>Last-Modified:
>Originator: Robert Simmons
>Release: 8.2-RELEASE
>Organization:
>Environment:
>Description:
If you initialize a geli encrypted provider using the "-b" flag to have it ask for the password during boot and you have kbdmux enabled as it is by default there is a conflict and the correct password is not accepted.
>How-To-Repeat:
Initialize a geli encrypted provider with the "-b" option.
Add it to fstab so it is mounted at boot.
Reboot.
Notice that the correct password is rejected.
>Fix:
The workaround is to add the following line to /boot/device.hints
hint.kbdmux.0.disabled="1"
You can confirm that you are entering the correct password by adding the following line to /boot/loader.conf
kern.geom.eli.visible_passphrase=1
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-bugs
mailing list