From owner-freebsd-questions@FreeBSD.ORG Fri Jul 27 21:25:07 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 002BC16A418 for ; Fri, 27 Jul 2007 21:25:06 +0000 (UTC) (envelope-from lazlar@lazlarlyricon.com) Received: from proxy3.bredband.net (proxy3.bredband.net [195.54.101.73]) by mx1.freebsd.org (Postfix) with ESMTP id A3B2513C45D for ; Fri, 27 Jul 2007 21:25:06 +0000 (UTC) (envelope-from lazlar@lazlarlyricon.com) Received: from trapper.homedns.org (213.114.40.248) by proxy3.bredband.net (7.3.127) id 46A8FA4C0006BB9C; Fri, 27 Jul 2007 23:25:05 +0200 Received: from trapper.homedns.org (localhost [127.0.0.1]) by trapper.homedns.org (8.13.8/8.13.8) with ESMTP id l6RLP4jr009074; Fri, 27 Jul 2007 23:25:05 +0200 (CEST) (envelope-from lazlar@lazlarlyricon.com) Message-ID: <46AA62B0.5030007@lazlarlyricon.com> Date: Fri, 27 Jul 2007 23:25:04 +0200 From: Rolf G Nielsen User-Agent: Thunderbird 2.0.0.4 (X11/20070604) MIME-Version: 1.0 To: Reid Linnemann References: <46AA53CA.3090309@lazlarlyricon.com> <46AA5A62.1090309@cs.okstate.edu> <46AA5BB2.2010406@cs.okstate.edu> In-Reply-To: <46AA5BB2.2010406@cs.okstate.edu> Content-Type: multipart/mixed; boundary="------------030209030507090109030301" X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-questions@freebsd.org Subject: Re: ELI passphrase on boot with USB keyboard X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Jul 2007 21:25:07 -0000 This is a multi-part message in MIME format. --------------030209030507090109030301 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: quoted-printable Reid Linnemann wrote: > Written by Reid Linnemann on 07/27/07 15:49>> >> Written by Rolf G Nielsen on 07/27/07 15:21>> >>> Hi, >>> >>> I recently purchased a new USB keyboard, since my old PS/2 one has=20 >>> seen its best days. This has caused me annoying problems with my ELI = >>> disks, though. >>> >>> I have four SATA harddrives, all of which are encrypted using ELI=20 >>> encryption. I've encrypted the raw disks, ad0, ad1, ad2 and ad3. The = >>> resulting devices ad0.eli, ad1.eli, ad2.eli and ad3.eli, I've=20 >>> concatenated into a large device, cc0, on which I have several=20 >>> partitions. To get this working, I of course need to boot from a=20 >>> separate device, and for that I use an SD card, which holds a boot=20 >>> directory. With my old PS/2 keyboard, this worked like a charm, but=20 >>> it seems to me, the ukbd driver isnt activated until after the ELI=20 >>> encryption, which means I'm unable to enter the passphrases for the=20 >>> disks, thus I can't get the computer passed the first passphrase prom= pt. >>> >>> Currently I have both the old keyboard and the new USB one connected.= =20 >>> I use the PS/2 one to enter the passphrases, then I put it on the=20 >>> floor under my desk and use the USB keyboard. As you may very well=20 >>> understand, this is quite annoying. Is there a way to get the USB=20 >>> keyboard to work at the point where I enter the passphrases? >>> >>> I've tried to change the keys for the disks to not use a passphrase, = >>> but only keyfiles and load them from loader.conf, just as described=20 >>> in the GELI man page (yes I did set the -P option), but that simply=20 >>> will not work (and to be honest, it's not a solution I'd favour); if = >>> I set the -b option (ask for passphrase on boot), it still asks for=20 >>> the passphrase, though there is none, and if I set the -B option=20 >>> (don't ask for passphrase on boot), the computer ends up at the=20 >>> "mountroot>" prompt. >>> >>> I'd appreciate any help. >>> >>> Sincerly, >>> >>> Rolf Nielsen >>> >> >> Try setting hints.atkbd0.disabled to 1 in the loader, or in the=20 >> device.hints file. Your usb keyboard may work in early stages with=20 >> that device hint. >=20 > Erm, set the hint in the loader _first_, and then only put it in=20 > device.hints if it works! > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to=20 > "freebsd-questions-unsubscribe@freebsd.org" >=20 >=20 >=20 Thanks. I'll try it next time I reboot (which will be a while). I'm not=20 sure it'll work, though; I've tried a kernel without the atkbd and=20 atkbdc devices compiled in. --=20 V=C3=A4nligen / Sincerly, Rolf Nielsen P.S. Om du svarar p=C3=A5 detta mail, placera svaret nedanf=C3=B6r den tidigar= e texten,=20 annars kommer ditt svar automatiskt att kasseras, och d=C3=A4rf=C3=B6r in= te bli l=C3=A4st. Svaret kommer ocks=C3=A5 att kasseras automatiskt och allts=C3=A5 inte bl= i l=C3=A4st,=20 om det inneh=C3=A5ller HTML; skicka alltid e-post som oformaterad text. If you reply to this mail, please put the reply beneath the older text.=20 Otherwise your reply will be automatically discarded, thus it will not=20 be read. You reply will also be discarded if it contains HTML; always send e-mail = as plain text. --------------030209030507090109030301--