From owner-freebsd-questions@FreeBSD.ORG Fri Jul 27 20:41:47 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 21B7116A417 for ; Fri, 27 Jul 2007 20:41:47 +0000 (UTC) (envelope-from lazlar@lazlarlyricon.com) Received: from proxy3.bredband.net (proxy3.bredband.net [195.54.101.73]) by mx1.freebsd.org (Postfix) with ESMTP id C779A13C45A for ; Fri, 27 Jul 2007 20:41:46 +0000 (UTC) (envelope-from lazlar@lazlarlyricon.com) Received: from trapper.homedns.org (213.114.40.248) by proxy3.bredband.net (7.3.127) id 46A8FA4C00069D5E for freebsd-questions@freebsd.org; Fri, 27 Jul 2007 22:21:31 +0200 Received: from trapper.homedns.org (localhost [127.0.0.1]) by trapper.homedns.org (8.13.8/8.13.8) with ESMTP id l6RKLU7j008785 for ; Fri, 27 Jul 2007 22:21:30 +0200 (CEST) (envelope-from lazlar@lazlarlyricon.com) Message-ID: <46AA53CA.3090309@lazlarlyricon.com> Date: Fri, 27 Jul 2007 22:21:30 +0200 From: Rolf G Nielsen User-Agent: Thunderbird 2.0.0.4 (X11/20070604) MIME-Version: 1.0 To: freebsd-questions@freebsd.org Content-Type: multipart/mixed; boundary="------------020308000507040000090608" X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: ELI passphrase on boot with USB keyboard X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Jul 2007 20:41:47 -0000 This is a multi-part message in MIME format. --------------020308000507040000090608 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Hi, I recently purchased a new USB keyboard, since my old PS/2 one has seen its best days. This has caused me annoying problems with my ELI disks, though. I have four SATA harddrives, all of which are encrypted using ELI encryption. I've encrypted the raw disks, ad0, ad1, ad2 and ad3. The resulting devices ad0.eli, ad1.eli, ad2.eli and ad3.eli, I've concatenated into a large device, cc0, on which I have several partitions. To get this working, I of course need to boot from a separate device, and for that I use an SD card, which holds a boot directory. With my old PS/2 keyboard, this worked like a charm, but it seems to me, the ukbd driver isnt activated until after the ELI encryption, which means I'm unable to enter the passphrases for the disks, thus I can't get the computer passed the first passphrase prompt. Currently I have both the old keyboard and the new USB one connected. I use the PS/2 one to enter the passphrases, then I put it on the floor under my desk and use the USB keyboard. As you may very well understand, this is quite annoying. Is there a way to get the USB keyboard to work at the point where I enter the passphrases? I've tried to change the keys for the disks to not use a passphrase, but only keyfiles and load them from loader.conf, just as described in the GELI man page (yes I did set the -P option), but that simply will not work (and to be honest, it's not a solution I'd favour); if I set the -b option (ask for passphrase on boot), it still asks for the passphrase, though there is none, and if I set the -B option (don't ask for passphrase on boot), the computer ends up at the "mountroot>" prompt. I'd appreciate any help. Sincerly, Rolf Nielsen --------------020308000507040000090608--