Order of geli "passphrase prompt" on boot

Miguel Clara miguelmclara at gmail.com
Tue Nov 4 14:37:10 UTC 2014

Sorry to bring this one back but I see no changes have been made to this in

The issue is that USB devices are detected after the geli prompt and so the
"geli paraphrase" prompt becomes hidden, and the simple solution would be
to change the order the prompt show.... as in wait a few secs for the usb
devices to be detected.

Also the FreeBSD installer includes the zfs+geli install options, which
encrypts root, so any user can do it now, yet when they boot they won't
even see the passphrase prompt, which to me is really not inviting when we
want to bring over the linux folks!

Some linux distros even allow you to type the passphrase for the device in
a neat prompt (black background mint logo ec...) but I don't think we need
to go that far, that's probably something PC-BSD folks can do though (if
they don't already).

I understand tough that what some times seems simple from user perspective
its really not for devs, so my question is: Is this a hard change to
implement, and by change I just mean change the order or wait a few secs
for usb device detection, or somehow stop this detection of the devices to
"spam" the screen until a passphrase is entered!?


Melhores Cumprimentos // Best Regards
*Miguel Clara*
*IT - Sys Admin & Developer*
*E-mail:    *miguelmclara at gmail.com

On Thu, Aug 28, 2014 at 5:01 PM, dweimer <dweimer at dweimer.net> wrote:

> On 08/28/2014 10:20 am, Francesco Toscan wrote:
>> On Wed, Aug 27, 2014 at 12:42:31PM +0100, Miguel Clara wrote:
>>> Hi,
>> Hi,
>>> Does any one know if there's a way to change the order of the passphrase
>>> prompt when the disk is encrypted?
>>> The ways it is now devices get detected after this prompt (usb devices it
>>> seems) and makes the prompt kind of hidden which complicates things for
>>> less experience users!
>> I experienced this issue running 9.0.
>> 10-RELEASE seems fine (as works for me...) but i didn't investigate.
>> If your root partition is not encrypted, you can try to mount encrypted
>> volumes later, adding the relevant bits into /etc/rc.local or a rc.d
>> script. Just remove the BOOT flag from your volumes with
>> geli configure -B provider
> I can confirm the issue on my laptop (Dell Lattitude E6520) with
> 10.0-RELEASE-p7 using an encrypted boot on zfs, and booting from usb thumb
> drive.  It doesn't do it if I have no other USB devices plugged in in
> addition to the USB thumb frive.  However if its in the port replicator,
> with external mouse/keyboard I get a lot of device discovery prompts
> following the prompt for the password.  Its only a nuisance for me, though
> when I built it off the port replicator then took it into the office and
> booted it the first time I thought I broke it and hard reset it.  The next
> boot I was watching closely and saw the prompt go by.
> --
> Thanks,
>    Dean E. Weimer
>    http://www.dweimer.net/

More information about the freebsd-questions mailing list