Date: Thu, 19 Feb 2004 22:00:39 -0500 From: Dany Nativel <dany_list@natzo.com> To: freebsd-questions@freebsd.org Subject: Re: GBDE - Destroy command not working Message-ID: <40357857.1040705@natzo.com> In-Reply-To: <40314E16.3040909@natzo.com> References: <40314E16.3040909@natzo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
It didn't work but after several other attempts. I've been able to run it using a specific combination. So to summarize, in my case, I can only run "destroy" : - using external lock files (-l parameter mandatory) - with the current key only (no -n -1 parameter to say destroy them all) - using /dev/xxx (xxx only doesn't work) First, what's not working : --> Without detached lockfile # kldload geom_bde # gbde init /dev/da0 -i # gbde attach da0 # gbde detach da0 # gbde destroy da0 Enter passphrase: gbde: read: Inappropriate ioctl for device and also # gbde destroy /dev/da0 Enter passphrase: gbde: No -L option and no space in sector 0 for lockfile --> With detached lockfile # gbde destroy da0 -l /etc/mykey Enter passphrase: gbde: Error 22 decrypting lock and then # gbde destroy /dev/da0 -l /etc/mykey Enter passphrase: Wrote key 0 at 5371894 And it worked for the current key. I also tried to use the -n x, --n x parameter (with x= -1, 1) but it never worked! At one point I even received a Fatal trap 12: page fault while in kernel mode (many of them in fact) Dany Nativel wrote: > I've been playing around with GBDE under 5.2RC2-1. It's a fantastic > encrypted FS. > Following the man page, I've tried to use the destroy command but > without success. > > Here is what I did to create the encrypted FS (for this test I didn't > use the /dev/random to fill-up the disc). > > # kldload geom_bde > # gbde init /dev/da0 -i > # gbde setkey /dev/da0 -n 2 > # gbde attach /dev/da0 # newfs /dev/da0.bde > # mount /dev/da0.bde /mnt/usbkey > --> use the FS, works fine > # umount /mnt/usbkey > # gbde detach da0 > > Then according to the man page I should use : > #gbde destroy da0 -n -1 to purge all keys but I get : > gbde: illegal option -- n > > so I changed to : > #gbde destroy da0 --n -1 and got : > gbde: read: Innapropriate ioctl for device > > so I changed to : > #gbde destroy /dev/da0 --n -1 and this time I get the password prompt > but it fails to destroy anything : > Enter passphrase: > Opened with key 0 > gbde: No -L option and no space in sector 0 for lockfile > > Maybe I didn't understand the purpose of the this command. I thought > it was going to replace each lock key with some random data. > Can somebody explain me how to use the "destroy" command ? > > Thanks > Dany > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?40357857.1040705>