geli load key before rootfs is mounted
Chris
phatfish at gmail.com
Tue Dec 19 05:26:09 PST 2006
I think you maybe running into a bug in 6.1 where the keyboard wont respond
during the boot process. Of course you don't notice because keystrokes have
no visual feedback at password input.
Try adding this line to "/boot/device.hint" on your boot media:
hint.kbdmux.0.disabled="1"
I'm booting an encrypted root file system fine with GELI.
On 18/12/06, Alin-Adrian Anton <aanton at spintech.ro> wrote:
> I've been playing around with geli and I was wondering if anyone
> managed to actually use the feature which loads the keyfile before the
> root filesystem is mounted.
>
> Specifically, to use something similar in /boot/loader.conf:
>
> geli_da1s3a_keyfile0_load="YES"
> geli_da1s3a_keyfile0_type="da1s3a:geli_keyfile0"
> geli_da1s3a_keyfile0_name="/boot/keys/da1s3a.key"
>
> If it worked, please let me know. I couldn't do it on a 6.1-REL0.
> (keeps saying password is wrong, probably because it doesn't "see" the
> keyfile). Of course, the .key file is on unencrypted media.
>
> I appreciate your time and suggestions.
>
> Thanks,
More information about the freebsd-questions
mailing list